1 files changed, 452 insertions, 217 deletions
diff --git a/src/util/pseudonym.c b/src/util/pseudonym.c
index fa48e19e3..02600cd6d 100644
--- a/src/util/pseudonym.c
+++ b/src/util/pseudonym.c
@@ -1,6 +1,6 @@
 /*
     This file is part of GNUnet
-     (C) 2003, 2004, 2005, 2006, 2007, 2008 Christian Grothoff (and other contributing authors)
+     (C) 2003, 2004, 2005, 2006, 2007, 2008, 2013 Christian Grothoff (and other contributing authors)
     GNUnet is free software; you can redistribute it and/or modify
     it under the terms of the GNU General Public License as published
@@ -17,19 +17,22 @@
     Free Software Foundation, Inc., 59 Temple Place - Suite 330,
     Boston, MA 02111-1307, USA.
 */
 /**
 * @file util/pseudonym.c
 * @brief helper functions
 * @author Christian Grothoff
+ *
+ * TODO:
+ * - all cryptographic operations are currently NOT implemented and
+ *   provided by stubs that merely pretend to work!
 */
 #include "platform.h"
 #include "gnunet_common.h"
 #include "gnunet_container_lib.h"
 #include "gnunet_disk_lib.h"
 #include "gnunet_pseudonym_lib.h"
 #include "gnunet_bio_lib.h"
+#include <gcrypt.h>
 #define LOG(kind,...) GNUNET_log_from (kind, "util", __VA_ARGS__)
@@ -38,12 +41,12 @@
 /**
 * Name of the directory which stores meta data for pseudonym
 */
-#define PS_METADATA_DIR DIR_SEPARATOR_STR "data" DIR_SEPARATOR_STR "pseudonyms" DIR_SEPARATOR_STR "metadata" DIR_SEPARATOR_STR
+#define PS_METADATA_DIR DIR_SEPARATOR_STR "data" DIR_SEPARATOR_STR "pseudonym" DIR_SEPARATOR_STR "metadata" DIR_SEPARATOR_STR
 /**
 * Name of the directory which stores names for pseudonyms
 */
-#define PS_NAMES_DIR    DIR_SEPARATOR_STR "data" DIR_SEPARATOR_STR "pseudonyms" DIR_SEPARATOR_STR "names"    DIR_SEPARATOR_STR
+#define PS_NAMES_DIR    DIR_SEPARATOR_STR "data" DIR_SEPARATOR_STR "pseudonym" DIR_SEPARATOR_STR "names"    DIR_SEPARATOR_STR
 /**
@@ -52,16 +55,22 @@
 #define GNUNET_CLIENT_SERVICE_NAME "client"
+/* ************************* Disk operations (pseudonym data mgmt) **************** */
 /**
 * Registered callbacks for discovery of pseudonyms.
 */
-struct DiscoveryCallback
+struct GNUNET_PSEUDONYM_DiscoveryHandle
 {
  /**
-   * This is a linked list.
+   * This is a doubly linked list.
   */
-  struct DiscoveryCallback *next;
+  struct GNUNET_PSEUDONYM_DiscoveryHandle *next;
+  /**
+   * This is a doubly linked list.
+   */
+  struct GNUNET_PSEUDONYM_DiscoveryHandle *prev;
  /**
   * Function to call each time a pseudonym is discovered.
@@ -71,7 +80,7 @@ struct DiscoveryCallback
  /**
   * Closure for callback.
   */
-  void *closure;
+  void *callback_cls;
 };
@@ -79,28 +88,33 @@ struct DiscoveryCallback
 * Head of the linked list of functions to call when
 * new pseudonyms are added.
 */
-static struct DiscoveryCallback *head;
+static struct GNUNET_PSEUDONYM_DiscoveryHandle *disco_head;
+/**
+ * Tail of the linked list of functions to call when
+ * new pseudonyms are added.
+ */
+static struct GNUNET_PSEUDONYM_DiscoveryHandle *disco_tail;
 /**
 * Internal notification about new tracked URI.
- * @param id a point to the hash code of pseudonym
+ *
+ * @param pseudonym public key of the pseudonym
 * @param md meta data to be written
 * @param rating rating of pseudonym
 */
 static void
-internal_notify (const struct GNUNET_HashCode * id,
+internal_notify (const struct GNUNET_PseudonymIdentifier *pseudonym,
                 const struct GNUNET_CONTAINER_MetaData *md, int rating)
 {
-  struct DiscoveryCallback *pos;
+  struct GNUNET_PSEUDONYM_DiscoveryHandle *pos;
-  pos = head;
+  for (pos = disco_head; NULL != pos; pos = pos->next)
-  while (pos != NULL)
+    pos->callback (pos->callback_cls, pseudonym, NULL, NULL, md, rating);
-  {
-    pos->callback (pos->closure, id, NULL, NULL, md, rating);
-    pos = pos->next;
-  }
 }
 /**
 * Register callback to be invoked whenever we discover
 * a new pseudonym.
@@ -109,164 +123,197 @@ internal_notify (const struct GNUNET_HashCode * id,
 *
 * @param cfg configuration to use
 * @param iterator iterator over pseudonym
- * @param closure point to a closure
+ * @param iterator_cls point to a closure
+ * @return registration handle
 */
-int
+struct GNUNET_PSEUDONYM_DiscoveryHandle *
 GNUNET_PSEUDONYM_discovery_callback_register (const struct
-                                              GNUNET_CONFIGURATION_Handle *cfg,
+                                              GNUNET_CONFIGURATION_Handle *cfg,
-                                              GNUNET_PSEUDONYM_Iterator
+                                              GNUNET_PSEUDONYM_Iterator iterator, 
-                                              iterator, void *closure)
+                                              void *iterator_cls)
 {
-  struct DiscoveryCallback *list;
+  struct GNUNET_PSEUDONYM_DiscoveryHandle *dh;
-  list = GNUNET_malloc (sizeof (struct DiscoveryCallback));
+  dh = GNUNET_malloc (sizeof (struct GNUNET_PSEUDONYM_DiscoveryHandle));
-  list->callback = iterator;
+  dh->callback = iterator;
-  list->closure = closure;
+  dh->callback_cls = iterator_cls;
-  list->next = head;
+  GNUNET_CONTAINER_DLL_insert (disco_head, disco_tail, dh);
-  head = list;
+  GNUNET_PSEUDONYM_list_all (cfg, iterator, iterator_cls);
-  GNUNET_PSEUDONYM_list_all (cfg, iterator, closure);
+  return dh;
-  return GNUNET_OK;
 }
 /**
 * Unregister pseudonym discovery callback.
- * @param iterator iterator over pseudonym
+ *
- * @param closure point to a closure
+ * @param dh registration to unregister
 */
-int
+void
-GNUNET_PSEUDONYM_discovery_callback_unregister (GNUNET_PSEUDONYM_Iterator
+GNUNET_PSEUDONYM_discovery_callback_unregister (struct GNUNET_PSEUDONYM_DiscoveryHandle *dh)
-                                                iterator, void *closure)
 {
-  struct DiscoveryCallback *prev;
+  GNUNET_CONTAINER_DLL_remove (disco_head, disco_tail, dh);
-  struct DiscoveryCallback *pos;
+  GNUNET_free (dh);
-  prev = NULL;
-  pos = head;
-  while ((pos != NULL) &&
-         ((pos->callback != iterator) || (pos->closure != closure)))
-  {
-    prev = pos;
-    pos = pos->next;
-  }
-  if (pos == NULL)
-    return GNUNET_SYSERR;
-  if (prev == NULL)
-    head = pos->next;
-  else
-    prev->next = pos->next;
-  GNUNET_free (pos);
-  return GNUNET_OK;
 }
 /**
 * Get the filename (or directory name) for the given
 * pseudonym identifier and directory prefix.
+ *
 * @param cfg configuration to use
 * @param prefix path components to append to the private directory name
- * @param psid hash code of pseudonym, can be NULL
+ * @param pseudonym the pseudonym, can be NULL
- * @return filename of the pseudonym (if psid != NULL) or directory with the data (if psid == NULL)
+ * @return filename of the pseudonym (if pseudonym != NULL) or directory with the data (if pseudonym == NULL)
 */
 static char *
 get_data_filename (const struct GNUNET_CONFIGURATION_Handle *cfg,
-                   const char *prefix, const struct GNUNET_HashCode * psid)
+                   const char *prefix, 
+                   const struct GNUNET_PseudonymIdentifier *pseudonym)
 {
  struct GNUNET_CRYPTO_HashAsciiEncoded enc;
+  struct GNUNET_HashCode psid;
-  if (psid != NULL)
+  if (NULL != pseudonym)
-    GNUNET_CRYPTO_hash_to_enc (psid, &enc);
+  {
-  return GNUNET_DISK_get_home_filename (cfg, GNUNET_CLIENT_SERVICE_NAME, prefix,
+    GNUNET_CRYPTO_hash (pseudonym,
-                                        (psid ==
+                        sizeof (struct GNUNET_PseudonymIdentifier),
-                                         NULL) ? NULL : (const char *) &enc,
+                        &psid);
+    GNUNET_CRYPTO_hash_to_enc (&psid, &enc);
+  }
+  return GNUNET_DISK_get_home_filename (cfg, 
+                                        GNUNET_CLIENT_SERVICE_NAME, prefix,
+                                        (NULL == pseudonym) 
+                                        ? NULL 
+                                        : (const char *) &enc,
                                        NULL);
 }
 /**
- * Write the pseudonym infomation into a file
+ * Get the filename (or directory name) for the given
+ * hash code and directory prefix.
+ *
 * @param cfg configuration to use
- * @param nsid hash code of a pseudonym
+ * @param prefix path components to append to the private directory name
- * @param meta meta data to be written into a file
+ * @param hc some hash code
- * @param ranking ranking of a pseudonym
+ * @return filename of the pseudonym (if hc != NULL) or directory with the data (if hc == NULL)
- * @param ns_name non-unique name of a pseudonym
 */
-static void
+static char *
-write_pseudonym_info (const struct GNUNET_CONFIGURATION_Handle *cfg,
+get_data_filename_hash (const struct GNUNET_CONFIGURATION_Handle *cfg,
-                      const struct GNUNET_HashCode * nsid,
+                        const char *prefix, 
-                      const struct GNUNET_CONTAINER_MetaData *meta,
+                        const struct GNUNET_HashCode *hc)
-                      int32_t ranking, const char *ns_name)
+{
+  struct GNUNET_CRYPTO_HashAsciiEncoded enc;
+  if (NULL != hc)
+    GNUNET_CRYPTO_hash_to_enc (hc, &enc);
+  return GNUNET_DISK_get_home_filename (cfg, 
+                                        GNUNET_CLIENT_SERVICE_NAME, prefix,
+                                        (NULL == hc) 
+                                        ? NULL 
+                                        : (const char *) &enc,
+                                        NULL);
+}
+/**
+ * Set the pseudonym metadata, rank and name.
+ * Writes the pseudonym infomation into a file
+ *
+ * @param cfg overall configuration
+ * @param nsid id of the pseudonym
+ * @param name name to set. Must be the non-unique version of it.
+ *        May be NULL, in which case it erases pseudonym's name!
+ * @param md metadata to set
+ *        May be NULL, in which case it erases pseudonym's metadata!
+ * @param rank rank to assign
+ * @return GNUNET_OK on success, GNUNET_SYSERR on failure
+ */
+int
+GNUNET_PSEUDONYM_set_info (const struct GNUNET_CONFIGURATION_Handle *cfg,
+                           const struct GNUNET_PseudonymIdentifier *pseudonym,
+                           const char *name,
+                           const struct GNUNET_CONTAINER_MetaData *md, 
+                           int32_t rank)
 {
  char *fn;
  struct GNUNET_BIO_WriteHandle *fileW;
-  fn = get_data_filename (cfg, PS_METADATA_DIR, nsid);
+  fn = get_data_filename (cfg, PS_METADATA_DIR, pseudonym);
-  GNUNET_assert (fn != NULL);
+  if (NULL == (fileW = GNUNET_BIO_write_open (fn)))
-  fileW = GNUNET_BIO_write_open (fn);
-  if (NULL != fileW)
  {
-    if ((GNUNET_OK != GNUNET_BIO_write_int32 (fileW, ranking)) ||
+    GNUNET_free (fn);
-        (GNUNET_OK != GNUNET_BIO_write_string (fileW, ns_name)) ||
+    return GNUNET_SYSERR;
-        (GNUNET_OK != GNUNET_BIO_write_meta_data (fileW, meta)))
-    {
-      (void) GNUNET_BIO_write_close (fileW);
-      GNUNET_break (GNUNET_OK == GNUNET_DISK_directory_remove (fn));
-      GNUNET_free (fn);
-      return;
-    }
-    if (GNUNET_OK != GNUNET_BIO_write_close (fileW))
-    {
-      GNUNET_break (GNUNET_OK == GNUNET_DISK_directory_remove (fn));
-      GNUNET_free (fn);
-      return;
-    }
  }
+  if ((GNUNET_OK != GNUNET_BIO_write (fileW, pseudonym, 
+                                      sizeof (struct GNUNET_PseudonymIdentifier))) ||
+      (GNUNET_OK != GNUNET_BIO_write_int32 (fileW, rank)) ||
+      (GNUNET_OK != GNUNET_BIO_write_string (fileW, name)) ||
+      (GNUNET_OK != GNUNET_BIO_write_meta_data (fileW, md)))
+  {
+    (void) GNUNET_BIO_write_close (fileW);
+    GNUNET_break (GNUNET_OK == GNUNET_DISK_directory_remove (fn));
+    GNUNET_free (fn);
+    return GNUNET_SYSERR;
+  }
+  if (GNUNET_OK != GNUNET_BIO_write_close (fileW))
+  {
+    GNUNET_break (GNUNET_OK == GNUNET_DISK_directory_remove (fn));
+    GNUNET_free (fn);
+    return GNUNET_SYSERR;
+  } 
  GNUNET_free (fn);
  /* create entry for pseudonym name in names */
-  if (ns_name != NULL)
+  if (NULL != name)
-    GNUNET_free_non_null (GNUNET_PSEUDONYM_name_uniquify (cfg, nsid, ns_name,
+    GNUNET_free_non_null (GNUNET_PSEUDONYM_name_uniquify (cfg, pseudonym, 
-        NULL));
+                                                          name, NULL));
+  return GNUNET_OK;
 }
 /**
- * read the pseudonym infomation from a file
+ * Read pseudonym infomation from a file
+ *
 * @param cfg configuration to use
 * @param nsid hash code of a pseudonym
 * @param meta meta data to be read from a file
- * @param ranking ranking of a pseudonym
+ * @param rank rank of a pseudonym
 * @param ns_name name of a pseudonym
+ * @return GNUNET_OK on success, GNUNET_SYSERR on error
 */
 static int
 read_info (const struct GNUNET_CONFIGURATION_Handle *cfg,
-           const struct GNUNET_HashCode * nsid,
+           const struct GNUNET_PseudonymIdentifier *pseudonym,
-           struct GNUNET_CONTAINER_MetaData **meta, int32_t * ranking,
+           struct GNUNET_CONTAINER_MetaData **meta,
+           int32_t *rank,
           char **ns_name)
 {
+  struct GNUNET_PseudonymIdentifier pd;
  char *fn;
  char *emsg;
  struct GNUNET_BIO_ReadHandle *fileR;
-  fn = get_data_filename (cfg, PS_METADATA_DIR, nsid);
+  fn = get_data_filename (cfg, PS_METADATA_DIR, pseudonym);
-  GNUNET_assert (fn != NULL);
  if (GNUNET_YES !=
      GNUNET_DISK_file_test (fn))
  {
    GNUNET_free (fn);
    return GNUNET_SYSERR;
  }
-  fileR = GNUNET_BIO_read_open (fn);
+  if (NULL == (fileR = GNUNET_BIO_read_open (fn)))
-  if (fileR == NULL)
  {
    GNUNET_free (fn);
    return GNUNET_SYSERR;
  }
  emsg = NULL;
  *ns_name = NULL;
-  if ((GNUNET_OK != GNUNET_BIO_read_int32 (fileR, ranking)) ||
+  if ( (GNUNET_OK != GNUNET_BIO_read (fileR, "pseudonym", &pd, sizeof (pd))) ||
-      (GNUNET_OK !=
+       (0 != memcmp (&pd, pseudonym, sizeof (pd))) ||
-       GNUNET_BIO_read_string (fileR, "Read string error!", ns_name, 200)) ||
+       (GNUNET_OK != GNUNET_BIO_read_int32 (fileR, rank)) ||
-      (GNUNET_OK !=
+       (GNUNET_OK !=
-       GNUNET_BIO_read_meta_data (fileR, "Read meta data error!", meta)))
+        GNUNET_BIO_read_string (fileR, "Read string error!", ns_name, 200)) ||
+       (GNUNET_OK !=
+       GNUNET_BIO_read_meta_data (fileR, "Read meta data error!", meta)) )
  {
    (void) GNUNET_BIO_read_close (fileR, &emsg);
    GNUNET_free_non_null (emsg);
@@ -296,12 +343,11 @@ read_info (const struct GNUNET_CONFIGURATION_Handle *cfg,
 /**
- * Return unique variant of the namespace name.
+ * Return unique variant of the namespace name.  Use it after
- * Use it after GNUNET_PSEUDONYM_get_info() to make sure
+ * GNUNET_PSEUDONYM_get_info() to make sure that name is unique.
- * that name is unique.
 *
 * @param cfg configuration
- * @param nsid cryptographic ID of the namespace
+ * @param pseudonym public key of the pseudonym
 * @param name name to uniquify
 * @param suffix if not NULL, filled with the suffix value
 * @return NULL on failure (should never happen), name on success.
@@ -309,9 +355,12 @@ read_info (const struct GNUNET_CONFIGURATION_Handle *cfg,
 */
 char *
 GNUNET_PSEUDONYM_name_uniquify (const struct GNUNET_CONFIGURATION_Handle *cfg,
-    const struct GNUNET_HashCode * nsid, const char *name, unsigned int *suffix)
+                                const struct GNUNET_PseudonymIdentifier *pseudonym,
+                                const char *name,
+                                unsigned int *suffix)
 {
  struct GNUNET_HashCode nh;
+  struct GNUNET_PseudonymIdentifier pi;
  uint64_t len;
  char *fn;
  struct GNUNET_DISK_FileHandle *fh;
@@ -321,9 +370,7 @@ GNUNET_PSEUDONYM_name_uniquify (const struct GNUNET_CONFIGURATION_Handle *cfg,
  struct stat sbuf;
  GNUNET_CRYPTO_hash (name, strlen (name), &nh);
-  fn = get_data_filename (cfg, PS_NAMES_DIR, &nh);
+  fn = get_data_filename_hash (cfg, PS_NAMES_DIR, &nh);
-  GNUNET_assert (fn != NULL);
  len = 0;
  if (0 == STAT (fn, &sbuf))
    GNUNET_break (GNUNET_OK == GNUNET_DISK_file_size (fn, &len, GNUNET_YES, GNUNET_YES));
@@ -334,11 +381,11 @@ GNUNET_PSEUDONYM_name_uniquify (const struct GNUNET_CONFIGURATION_Handle *cfg,
                              GNUNET_DISK_PERM_USER_WRITE);
  i = 0;
  idx = -1;
-  while ((len >= sizeof (struct GNUNET_HashCode)) &&
+  while ((len >= sizeof (struct GNUNET_PseudonymIdentifier)) &&
-         (sizeof (struct GNUNET_HashCode) ==
+         (sizeof (struct GNUNET_PseudonymIdentifier) ==
-          GNUNET_DISK_file_read (fh, &nh, sizeof (struct GNUNET_HashCode))))
+          GNUNET_DISK_file_read (fh, &pi, sizeof (struct GNUNET_PseudonymIdentifier))))
  {
-    if (0 == memcmp (&nh, nsid, sizeof (struct GNUNET_HashCode)))
+    if (0 == memcmp (&pi, pseudonym, sizeof (struct GNUNET_PseudonymIdentifier)))
    {
      idx = i;
      break;
@@ -346,11 +393,11 @@ GNUNET_PSEUDONYM_name_uniquify (const struct GNUNET_CONFIGURATION_Handle *cfg,
    i++;
    len -= sizeof (struct GNUNET_HashCode);
  }
-  if (idx == -1)
+  if (-1 == idx)
  {
    idx = i;
-    if (sizeof (struct GNUNET_HashCode) !=
+    if (sizeof (struct GNUNET_PseudonymIdentifier) !=
-        GNUNET_DISK_file_write (fh, nsid, sizeof (struct GNUNET_HashCode)))
+        GNUNET_DISK_file_write (fh, pseudonym, sizeof (struct GNUNET_PseudonymIdentifier)))
      LOG_STRERROR_FILE (GNUNET_ERROR_TYPE_WARNING, "write", fn);
  }
  GNUNET_DISK_file_close (fh);
@@ -362,13 +409,14 @@ GNUNET_PSEUDONYM_name_uniquify (const struct GNUNET_CONFIGURATION_Handle *cfg,
  return ret;
 }
 /**
 * Get namespace name, metadata and rank
 * This is a wrapper around internal read_info() call, and ensures that
 * returned data is not invalid (not NULL).
 *
 * @param cfg configuration
- * @param nsid cryptographic ID of the namespace
+ * @param pseudonym public key of the pseudonym
 * @param ret_meta a location to store metadata pointer. NULL, if metadata
 *        is not needed. Destroy with GNUNET_CONTAINER_meta_data_destroy().
 * @param ret_rank a location to store rank. NULL, if rank not needed.
@@ -382,8 +430,11 @@ GNUNET_PSEUDONYM_name_uniquify (const struct GNUNET_CONFIGURATION_Handle *cfg,
 */
 int
 GNUNET_PSEUDONYM_get_info (const struct GNUNET_CONFIGURATION_Handle *cfg,
-    const struct GNUNET_HashCode * nsid, struct GNUNET_CONTAINER_MetaData **ret_meta,
+                           const struct GNUNET_PseudonymIdentifier *pseudonym, 
-    int32_t *ret_rank, char **ret_name, int *name_is_a_dup)
+                           struct GNUNET_CONTAINER_MetaData **ret_meta,
+                           int32_t *ret_rank, 
+                           char **ret_name, 
+                           int *name_is_a_dup)
 {
  struct GNUNET_CONTAINER_MetaData *meta;
  char *name;
@@ -391,7 +442,7 @@ GNUNET_PSEUDONYM_get_info (const struct GNUNET_CONFIGURATION_Handle *cfg,
  meta = NULL;
  name = NULL;
-  if (GNUNET_OK == read_info (cfg, nsid, &meta, &rank, &name))
+  if (GNUNET_OK == read_info (cfg, pseudonym, &meta, &rank, &name))
  {
    if ((meta != NULL) && (name == NULL))
      name =
@@ -446,17 +497,19 @@ GNUNET_PSEUDONYM_get_info (const struct GNUNET_CONFIGURATION_Handle *cfg,
  return GNUNET_SYSERR;
 }
 /**
 * Get the namespace ID belonging to the given namespace name.
 *
 * @param cfg configuration to use
 * @param ns_uname unique (!) human-readable name for the namespace
- * @param nsid set to namespace ID based on 'ns_uname'
+ * @param pseudonym set to public key of pseudonym based on 'ns_uname'
 * @return GNUNET_OK on success, GNUNET_SYSERR on failure
 */
 int
 GNUNET_PSEUDONYM_name_to_id (const struct GNUNET_CONFIGURATION_Handle *cfg,
-    const char *ns_uname, struct GNUNET_HashCode * nsid)
+                             const char *ns_uname, 
+                             struct GNUNET_PseudonymIdentifier *pseudonym)
 {
  size_t slen;
  uint64_t len;
@@ -470,19 +523,18 @@ GNUNET_PSEUDONYM_name_to_id (const struct GNUNET_CONFIGURATION_Handle *cfg,
  slen = strlen (ns_uname);
  while ((slen > 0) && (1 != SSCANF (&ns_uname[slen - 1], "-%u", &idx)))
    slen--;
-  if (slen == 0)
+  if (0 == slen)
    return GNUNET_SYSERR;
  name = GNUNET_strdup (ns_uname);
  name[slen - 1] = '\0';
  GNUNET_CRYPTO_hash (name, strlen (name), &nh);
  GNUNET_free (name);
-  fn = get_data_filename (cfg, PS_NAMES_DIR, &nh);
+  fn = get_data_filename_hash (cfg, PS_NAMES_DIR, &nh);
-  GNUNET_assert (fn != NULL);
  if ((GNUNET_OK != GNUNET_DISK_file_test (fn) ||
       (GNUNET_OK != GNUNET_DISK_file_size (fn, &len, GNUNET_YES, GNUNET_YES))) ||
-      ((idx + 1) * sizeof (struct GNUNET_HashCode) > len))
+      ((idx + 1) * sizeof (struct GNUNET_PseudonymIdentifier) > len))
  {
    GNUNET_free (fn);
    return GNUNET_SYSERR;
@@ -494,14 +546,14 @@ GNUNET_PSEUDONYM_name_to_id (const struct GNUNET_CONFIGURATION_Handle *cfg,
                              GNUNET_DISK_PERM_USER_WRITE);
  GNUNET_free (fn);
  if (GNUNET_SYSERR ==
-      GNUNET_DISK_file_seek (fh, idx * sizeof (struct GNUNET_HashCode),
+      GNUNET_DISK_file_seek (fh, idx * sizeof (struct GNUNET_PseudonymIdentifier),
                             GNUNET_DISK_SEEK_SET))
  {
    GNUNET_DISK_file_close (fh);
    return GNUNET_SYSERR;
  }
-  if (sizeof (struct GNUNET_HashCode) !=
+  if (sizeof (struct GNUNET_PseudonymIdentifier) !=
-      GNUNET_DISK_file_read (fh, nsid, sizeof (struct GNUNET_HashCode)))
+      GNUNET_DISK_file_read (fh, pseudonym, sizeof (struct GNUNET_PseudonymIdentifier)))
  {
    GNUNET_DISK_file_close (fh);
    return GNUNET_SYSERR;
@@ -526,7 +578,7 @@ struct ListPseudonymClosure
  /**
   * Closure for iterator.
   */
-  void *closure;
+  void *iterator_cls;
  /**
   * Configuration to use.
@@ -537,47 +589,59 @@ struct ListPseudonymClosure
 /**
- * the help function to list all available pseudonyms
+ * Helper function to list all available pseudonyms
+ *
 * @param cls point to a struct ListPseudonymClosure
 * @param fullname name of pseudonym
 */
 static int
 list_pseudonym_helper (void *cls, const char *fullname)
 {
-  struct ListPseudonymClosure *c = cls;
+  struct ListPseudonymClosure *lpc = cls;
-  int ret;
+  struct GNUNET_PseudonymIdentifier pd;
-  struct GNUNET_HashCode id;
+  char *emsg;
-  int32_t rating;
+  struct GNUNET_BIO_ReadHandle *fileR;
+  int32_t rank;
+  char *ns_name;
  struct GNUNET_CONTAINER_MetaData *meta;
-  const char *fn;
+  int ret; 
-  char *str;
  char *name_unique;
-  if (strlen (fullname) < sizeof (struct GNUNET_CRYPTO_HashAsciiEncoded))
+  if (NULL == (fileR = GNUNET_BIO_read_open (fullname)))
-    return GNUNET_OK;
+    return GNUNET_SYSERR;
-  fn = &fullname[strlen (fullname) + 1 -
+  emsg = NULL;
-                 sizeof (struct GNUNET_CRYPTO_HashAsciiEncoded)];
+  ns_name = NULL;
-  if (fn[-1] != DIR_SEPARATOR)
+  if ( (GNUNET_OK != GNUNET_BIO_read (fileR, "pseudonym", &pd, sizeof (pd))) ||
-    return GNUNET_OK;
+       (GNUNET_OK != GNUNET_BIO_read_int32 (fileR, &rank)) ||
-  ret = GNUNET_OK;
+       (GNUNET_OK !=
-  if (GNUNET_OK != GNUNET_CRYPTO_hash_from_string (fn, &id))
+        GNUNET_BIO_read_string (fileR, "Read string error!", &ns_name, 200)) ||
-    return GNUNET_OK;           /* invalid name */
+       (GNUNET_OK !=
-  str = NULL;
+       GNUNET_BIO_read_meta_data (fileR, "Read meta data error!", &meta)) )
-  if (GNUNET_OK != GNUNET_PSEUDONYM_get_info (c->cfg, &id, &meta, &rating,
-      &str, NULL))
  {
-    /* ignore entry. FIXME: Why? Lack of data about a pseudonym is not a reason
+    (void) GNUNET_BIO_read_close (fileR, &emsg);
-     * to ignore it... So yeah, it will have placeholders instead of name,
+    GNUNET_free_non_null (emsg);
-     * empty metadata container and a default rank == -1, so what? We know
+    GNUNET_free_non_null (ns_name);
-     * its nsid - that's all we really need. Right? */
+    GNUNET_break (GNUNET_OK == GNUNET_DISK_directory_remove (fullname));
-    GNUNET_free (str);
+    return GNUNET_SYSERR;
+  }
+  if (NULL == ns_name)
+    ns_name = GNUNET_strdup (_("no-name"));
+  if (GNUNET_OK != GNUNET_BIO_read_close (fileR, &emsg))
+  {
+    LOG (GNUNET_ERROR_TYPE_WARNING,
+         _("Failed to parse metadata about pseudonym from file `%s': %s\n"), fullname,
+         emsg);
+    GNUNET_break (GNUNET_OK == GNUNET_DISK_directory_remove (fullname));
    GNUNET_CONTAINER_meta_data_destroy (meta);
-    return GNUNET_OK;
+    GNUNET_free (ns_name);
+    GNUNET_free_non_null (emsg);
+    return GNUNET_SYSERR;
  }
-  name_unique = GNUNET_PSEUDONYM_name_uniquify (c->cfg, &id, str, NULL);
+  ret = GNUNET_OK;
-  if (c->iterator != NULL)
+  name_unique = GNUNET_PSEUDONYM_name_uniquify (lpc->cfg, &pd, ns_name, NULL);
-    ret = c->iterator (c->closure, &id, str, name_unique, meta, rating);
+  if (NULL != lpc->iterator)
-  GNUNET_free_non_null (str);
+    ret = lpc->iterator (lpc->iterator_cls, &pd, ns_name, name_unique, meta, rank);
+  GNUNET_free (ns_name);
  GNUNET_free_non_null (name_unique);
  GNUNET_CONTAINER_meta_data_destroy (meta);
  return ret;
@@ -589,19 +653,20 @@ list_pseudonym_helper (void *cls, const char *fullname)
 *
 * @param cfg overall configuration
 * @param iterator function to call for each pseudonym
- * @param closure closure for iterator
+ * @param iterator_cls closure for iterator
 * @return number of pseudonyms found
 */
 int
 GNUNET_PSEUDONYM_list_all (const struct GNUNET_CONFIGURATION_Handle *cfg,
-                           GNUNET_PSEUDONYM_Iterator iterator, void *closure)
+                           GNUNET_PSEUDONYM_Iterator iterator, 
+                           void *iterator_cls)
 {
  struct ListPseudonymClosure cls;
  char *fn;
  int ret;
  cls.iterator = iterator;
-  cls.closure = closure;
+  cls.iterator_cls = iterator_cls;
  cls.cfg = cfg;
  fn = get_data_filename (cfg, PS_METADATA_DIR, NULL);
  GNUNET_assert (fn != NULL);
@@ -613,60 +678,35 @@ GNUNET_PSEUDONYM_list_all (const struct GNUNET_CONFIGURATION_Handle *cfg,
 /**
- * Change the ranking of a pseudonym.
+ * Change the rank of a pseudonym.
 *
 * @param cfg overall configuration
- * @param nsid id of the pseudonym
+ * @param pseudonym the pseudonym
- * @param delta by how much should the rating be
+ * @param delta by how much should the rating be changed?
- *  changed?
 * @return new rating of the pseudonym
 */
 int
 GNUNET_PSEUDONYM_rank (const struct GNUNET_CONFIGURATION_Handle *cfg,
-                       const struct GNUNET_HashCode * nsid, int delta)
+                       const struct GNUNET_PseudonymIdentifier *pseudonym, 
+                       int32_t delta)
 {
  struct GNUNET_CONTAINER_MetaData *meta;
  int ret;
-  int32_t ranking;
+  int32_t rank;
  char *name;
  name = NULL;
-  ret = read_info (cfg, nsid, &meta, &ranking, &name);
+  ret = read_info (cfg, pseudonym, &meta, &rank, &name);
  if (ret == GNUNET_SYSERR)
  {
-    ranking = 0;
+    rank = 0;
    meta = GNUNET_CONTAINER_meta_data_create ();
  }
-  ranking += delta;
+  rank += delta;
-  write_pseudonym_info (cfg, nsid, meta, ranking, name);
+  GNUNET_PSEUDONYM_set_info (cfg, pseudonym, name, meta, rank);
  GNUNET_CONTAINER_meta_data_destroy (meta);
  GNUNET_free_non_null (name);
-  return ranking;
+  return rank;
-}
-/**
- * Set the pseudonym metadata, rank and name.
- *
- * @param cfg overall configuration
- * @param nsid id of the pseudonym
- * @param name name to set. Must be the non-unique version of it.
- *        May be NULL, in which case it erases pseudonym's name!
- * @param md metadata to set
- *        May be NULL, in which case it erases pseudonym's metadata!
- * @param rank rank to assign
- * @return GNUNET_OK on success, GNUNET_SYSERR on failure
- */
-int
-GNUNET_PSEUDONYM_set_info (const struct GNUNET_CONFIGURATION_Handle *cfg,
-    const struct GNUNET_HashCode * nsid, const char *name,
-    const struct GNUNET_CONTAINER_MetaData *md, int rank)
-{
-  GNUNET_assert (cfg != NULL);
-  GNUNET_assert (nsid != NULL);
-  write_pseudonym_info (cfg, nsid, md, rank, name);
-  return GNUNET_OK;
 }
@@ -676,38 +716,233 @@ GNUNET_PSEUDONYM_set_info (const struct GNUNET_CONFIGURATION_Handle *cfg,
 * FS should automatically call this function.
 *
 * @param cfg overall configuration
- * @param id the pseudonym identifier
+ * @param pseudonym the pseudonym to add
 * @param meta metadata for the pseudonym
+ * @return GNUNET_OK on success, GNUNET_SYSERR on failure
 */
-void
+int
 GNUNET_PSEUDONYM_add (const struct GNUNET_CONFIGURATION_Handle *cfg,
-                      const struct GNUNET_HashCode * id,
+                      const struct GNUNET_PseudonymIdentifier *pseudonym,
                      const struct GNUNET_CONTAINER_MetaData *meta)
 {
  char *name;
-  int32_t ranking;
+  int32_t rank;
  struct GNUNET_CONTAINER_MetaData *old;
  char *fn;
  struct stat sbuf;
+  int ret;
-  ranking = 0;
+  rank = 0;
-  fn = get_data_filename (cfg, PS_METADATA_DIR, id);
+  fn = get_data_filename (cfg, PS_METADATA_DIR, pseudonym);
  GNUNET_assert (fn != NULL);
  if ((0 == STAT (fn, &sbuf)) &&
-      (GNUNET_OK == read_info (cfg, id, &old, &ranking, &name)))
+      (GNUNET_OK == read_info (cfg, pseudonym, &old, &rank, &name)))
  {
    GNUNET_CONTAINER_meta_data_merge (old, meta);
-    write_pseudonym_info (cfg, id, old, ranking, name);
+    ret = GNUNET_PSEUDONYM_set_info (cfg, pseudonym, name, old, rank);
    GNUNET_CONTAINER_meta_data_destroy (old);
    GNUNET_free_non_null (name);
  }
  else
  {
-    write_pseudonym_info (cfg, id, meta, ranking, NULL);
+    ret = GNUNET_PSEUDONYM_set_info (cfg, pseudonym, NULL, meta, rank);
  }
  GNUNET_free (fn);
-  internal_notify (id, meta, ranking);
+  internal_notify (pseudonym, meta, rank);
+  return ret;
+}
+/* ***************************** cryptographic operations ************************* */
+/**
+ * Handle for a pseudonym (private key).
+ */
+struct GNUNET_PseudonymHandle
+{
+  /**
+   * FIXME.
+   */
+  char data[42];
+};
+/**
+ * Create a pseudonym.
+ *
+ * @param filename name of the file to use for storage, NULL for in-memory only
+ * @return handle to the private key of the pseudonym
+ */
+struct GNUNET_PseudonymHandle *
+GNUNET_PSEUDONYM_create (const char *filename)
+{
+  struct GNUNET_PseudonymHandle *ph;
+  ssize_t ret;
+  ph = GNUNET_malloc (sizeof (struct GNUNET_PseudonymHandle));
+  if (NULL != filename)
+  {
+    ret = GNUNET_DISK_fn_read (filename, ph, 
+                               sizeof (struct GNUNET_PseudonymHandle));
+    if (sizeof (struct GNUNET_PseudonymHandle) == ret)
+      return ph;
+  }
+  GNUNET_break (0); // not implemented...
+  gcry_randomize (ph, sizeof (struct GNUNET_PseudonymHandle),
+                  GCRY_STRONG_RANDOM);
+  if (NULL != filename)
+  {
+    ret = GNUNET_DISK_fn_write (filename, ph, sizeof (struct GNUNET_PseudonymHandle),
+                                GNUNET_DISK_PERM_USER_READ | GNUNET_DISK_PERM_USER_WRITE);
+    if (sizeof (struct GNUNET_PseudonymHandle) != ret)
+    {
+      GNUNET_free (ph);
+      return NULL;
+    }
+  }
+  return ph;
+}
+/**
+ * Create a pseudonym, from a file that must already exist.
+ *
+ * @param filename name of the file to use for storage, NULL for in-memory only
+ * @return handle to the private key of the pseudonym
+ */
+struct GNUNET_PseudonymHandle *
+GNUNET_PSEUDONYM_create_from_existing_file (const char *filename)
+{
+  struct GNUNET_PseudonymHandle *ph;
+  ssize_t ret;
+  ph = GNUNET_malloc (sizeof (struct GNUNET_PseudonymHandle));
+  ret = GNUNET_DISK_fn_read (filename, ph, 
+                             sizeof (struct GNUNET_PseudonymHandle));
+  if (sizeof (struct GNUNET_PseudonymHandle) == ret)
+    return ph;
+  GNUNET_free (ph);
+  return NULL;
+}
+/**
+ * Get the handle for the 'anonymous' pseudonym shared by all users.
+ * That pseudonym uses a fixed 'secret' for the private key; this
+ * construction is useful to make anonymous and pseudonymous APIs
+ * (and packets) indistinguishable on the network.  See #2564.
+ *
+ * @return handle to the (non-secret) private key of the 'anonymous' pseudonym
+ */
+struct GNUNET_PseudonymHandle *
+GNUNET_PSEUDONYM_get_anonymous_pseudonym_handle ()
+{
+  struct GNUNET_PseudonymHandle *ph;
+  ph = GNUNET_malloc (sizeof (struct GNUNET_PseudonymHandle));
+  GNUNET_break (0);
+  return ph;
+}
+/**
+ * Destroy a pseudonym handle.  Does NOT remove the private key from
+ * the disk.
+ *
+ * @param ph pseudonym handle to destroy
+ */
+void
+GNUNET_PSEUDONYM_destroy (struct GNUNET_PseudonymHandle *ph)
+{
+  GNUNET_free (ph);
+}
+/**
+ * Cryptographically sign some data with the pseudonym.
+ *
+ * @param ph private key used for signing (corresponds to 'x' in #2564)
+ * @param purpose data to sign
+ * @param seed hash of the plaintext of the data that we are signing, 
+ *             used for deterministic PRNG for anonymous signing;
+ *             corresponds to 'k' in section 2.7 of #2564
+ * @param signing_key modifier to apply to the private key for signing;
+ *                    corresponds to 'h' in section 2.3 of #2564.
+ * @param signature where to store the signature
+ */
+void
+GNUNET_PSEUDONYM_sign (struct GNUNET_PseudonymHandle *ph,
+                       const struct GNUNET_PseudonymSignaturePurpose *purpose,
+                       const struct GNUNET_HashCode *seed,
+                       const struct GNUNET_HashCode *signing_key,
+                       struct GNUNET_PseudonymSignature *signature)
+{
+  memset (signature, 0, sizeof (struct GNUNET_PseudonymSignature));
+  GNUNET_break (0);
+}
+/**
+ * Given a pseudonym and a signing key, derive the corresponding public
+ * key that would be used to verify the resulting signature.
+ *
+ * @param pseudonym the public key (g^x)
+ * @param signing_key input to derive 'h' (see section 2.4 of #2564)
+ * @param verification_key resulting public key to verify the signature
+ *        created from the 'ph' of 'pseudonym' and the 'signing_key';
+ *        the value stored here can then be given to GNUNET_PSEUDONYM_verify.
+ */
+void
+GNUNET_PSEUDONYM_derive_verification_key (struct GNUNET_PseudonymIdentifier *pseudonym,
+                                          const struct GNUNET_HashCode *signing_key,
+                                          struct GNUNET_PseudonymIdentifier *verification_key)
+{
+  struct GNUNET_HashCode hc;
+  struct GNUNET_HashCode x;
+  GNUNET_break (0);
+  GNUNET_CRYPTO_hash (pseudonym, sizeof (*pseudonym), &hc);
+  GNUNET_CRYPTO_hash_xor (&hc, signing_key, &x);  
+  memset (verification_key, 0, sizeof (struct GNUNET_PseudonymIdentifier));
+  memcpy (verification_key, &x, GNUNET_MIN (sizeof (x), sizeof (*verification_key)));
+}
+/**
+ * Verify a signature made with a pseudonym.
+ *
+ * @param purpose data that was signed
+ * @param signature signature to verify
+ * @param verification_key public key to use for checking the signature;
+ *                    corresponds to 'g^(x+h)' in section 2.4 of #2564.
+ * @return GNUNET_OK on success (signature valid, 'pseudonym' set),
+ *         GNUNET_SYSERR if the signature is invalid
+ */
+int
+GNUNET_PSEUDONYM_verify (const struct GNUNET_PseudonymSignaturePurpose *purpose,
+                         const struct GNUNET_PseudonymSignature *signature,
+                         const struct GNUNET_PseudonymIdentifier *verification_key)
+{
+  GNUNET_break (0);
+  return GNUNET_OK;
+}
+/**
+ * Get the identifier (public key) of a pseudonym.
+ *
+ * @param ph pseudonym handle with the private key
+ * @param pseudonym pseudonym identifier (set based on 'ph')
+ */
+void
+GNUNET_PSEUDONYM_get_identifier (struct GNUNET_PseudonymHandle *ph,
+                                 struct GNUNET_PseudonymIdentifier *pseudonym)
+{
+  GNUNET_break (0);
+  memcpy (pseudonym, ph, 
+          GNUNET_MIN (sizeof (struct GNUNET_PseudonymIdentifier),
+                      sizeof (*ph)));
 }