Check that OpenSSL's RNG is ready for keygen
Check if OpenSSL's PRNG is ready for key generation. If it isn't, just
error out, because up until now we've been assuming that the right thing
was happening automatically, and not taking corrective action here will
flush out any places where that's been the wrong thing.