[tptacek]

It's best to think of this as an OS/distro detail; if you can reasonably expect /dev/urandom to give you insecure bits, your distro has a vulnerability.

That said: today you'd just use some variant of getrandom.

[cbsmith]

> It's best to think of this as an OS/distro detail; if you can reasonably expect /dev/urandom to give you insecure bits, your distro has a vulnerability.

Isn't that more a function of hardware than software? The hardware random number generators on modern CPUs pretty much eliminate the need to worry about entropy...

[tptacek]

No, this has nothing at all to do with hardware; the state of play is the same on machines that don't have instructions like RDRAND.

[cbsmith]

I think I still don't understand. Can you explain why it is not a hypothetical problem on a deterministic virtual machine?