AFAIK urandom is provided by the host kernel to all guests and does not need to be initialized/have seed state stored by a given guest. Therefore it makes sense to remove urandom from the 'boot' runlevel when running in LXC. Reproducible: Always Steps to Reproduce: 1. Start in an LXC container Actual Results: urandom seed stuff happens Expected Results: urandom is skipped
We don't actually remove it from the boot runlevel, but we add a keyword to the script so it will not run in an lxc environment. This has been done in commit 7d8dca7 and will be released with OpenRC-0.11.