Getting the random driver well initialised early enough is a hard problem, at least on some machines. Solutions have been proposed by various people. If I understand them right, Ted Ts'o suggests modifying the boot loader to provide some entropy & John Denker suggests that every machine should be provisioned with some entropy in the kernel image at install time. Both are general solutions, but I think both would require updating the entropy store later. As far as I know, neither has yet been implemented as accepted patches Is a fix that only deals with a subset of the problem worth considering? Just patch the VM support code so that any time a VM is either booted or re-started after a save, the host system drops in some entropy, This looks relatively easy to do, at least for Linux VMs, and some of the code might be the same as what the more general approaches would need.
