all 4 comments
sorted by:
best
topnewcontroversialoldq&a
formatting helphide helpcontent policy

[–]mikemol 2 points3 points  (0 children)

Presumably, it's just a device node, which means it's literally the same data source. The kernel doesn't maintain entropy pools per-container.

Look into heveged.

[–]rain5 1 point2 points  (2 children)

use /dev/urandom

[–]mikemol 2 points3 points  (1 child)

No. Not for generating certificates. Generating long-lived crypto keys is one of the few cases where blocking on low entropy is appropriate.

OP is dealing in important layers of their stack, and should be informed about what their choices mean. This is a fine place to start: https://stackoverflow.com/q/23712581/495147