TIL that from Linux 5.6 on /dev/random = /dev/urandom, except that it blocks if the CSRNG has not been initialized.
So, now, do we all go back to "OMG!!! Don't use /dev/urandom, it's insecure!!!!"?
Conversation
New /dev/random behavior is the way getrandom has worked from the beginning. Everyone should have been migrating to getrandom from /dev/urandom already.
It still makes more sense to use getrandom than /dev/random. Doesn't require fd (can hit limit), works without /dev available.