--- gvpe/NEWS	2013/07/16 16:44:36	1.114
+++ gvpe/NEWS	2013/07/17 04:36:09	1.115
@@ -19,6 +19,8 @@
    hmac_key = hkdf(hkdf-salt, hmac | ecdh)
    aes_key  = hkdf(hkdf-salt, aes  | ecdh)
 
+TODO: very much larger intiial seed
+TODO: don't use RAND_pseudo_bytes :/
 	- INCOMPATIBLE CHANGE: core protocol version 1.0.
         - while individual packets couldn't be replayed, a whole session
           could be replayed - this has been fixed by an extra key exchange.
@@ -28,12 +30,13 @@
         - rsa key sizes are now configurable and larger (default is 3072).
           correspondingly, the minimum mtu is no longer 296 but 576.
         - fixed a potential (unverified) buffer overrun on rsa decryption.
-        - RAND_bytes was used when generating session keys, potentially
-          leading to temporary freezes when entropy was low.
         - gvpectrl no longer generates all missing public keys, but
           only missing private keys. private keys are also put
           into the configured location.
         - the pid-file now accepts %s as nodename as elsewhere.
+        - no longer use RAND_bytes to generate session keys - you NEED
+          a real source of entropy now (e.g. egd or /dev/random - see the
+          openssl documentation).
 
 2.25 Sat Jul 13 06:42:33 CEST 2013
 	- INCOMPATIBLE CHANGE: no longer enable udp protocol if no other