Struct Meow 

pub struct Meow { /* private fields */ }

Represents the state of a Meow instance.

This is the main object you interact with when using Meow, and all of the functionalities of the framework are derived from methods on this object.

The basic idea is that each party creates their own local instance of Meow, and then performs various operations in sync, allowing them to hash data, encrypt it, verify its integrity, etc.

This crate contains examples of composite operations like that in its main documentation.

This object is cloneable, and that’s very useful in certain situations, but one should be careful that the states are identical, and so some operations may not be secure because of common randomness between the states.

For example, the PRF output from both states will be the same right after forking them.

Many operations are divided into send and recv pairs. The idea is that one party performs send, sends some data, and then the other party uses recv with this data.

Many operations have a meta variant. These variants basically do the same thing as their normal variants, but have a bit of domain separation so that their result is separate.

Many operations also have a more argument. This can be used to split up an operation over multiple calls. For example, you might want to encrypt 1 GB of data as a single logical operation, but without having to store this entire piece of data in memory. Using more allows you to do this chunk by chunk, as if it were a single large operation. Each call after the first would set more = true, in order to indicate that it’s a continuation of the previous call.

Implementations

impl Meow

pub fn new(protocol: &[u8]) -> Self

Create a new Meow instance.

This function takes in a protocol string, which gets hashed into the state. The intention is to use this for domain separation of different protocols based on Meow.

pub fn ad(&mut self, data: &[u8], more: bool)

Absorb additional data into this state.

This can be used as a way to hash in additional data, such as when implementing an AEAD, or just a simple hash function.

The semantics of this are also that each party already knows the data, and doesn’t have to send it to the other person.

pub fn meta_ad(&mut self, data: &[u8], more: bool)

Absorb additional metadata into this state.

This is intended to be used to describe additional data, or for framing: describing the operations being done.

pub fn key(&mut self, data: &[u8], more: bool)

Include a secret key into the state.

This makes further operations dependent on knowing this secret key.

For forward secrecy, the state is also ratcheted.

pub fn send_clr(&mut self, data: &[u8], more: bool)

Send some plaintext data to the other party.

This is similar to ad, except the semantics are that the other person will not already know this information, and so we additionally have to send it to them.

pub fn meta_send_clr(&mut self, data: &[u8], more: bool)

Send some plaintext metadata to the other party.

Similarly to send_clr, the semantics are that the other party doesn’t know this information, and we need to send it to them.

pub fn recv_clr(&mut self, data: &[u8], more: bool)

Receive plaintext data.

This is the counterpart to send_clr.

pub fn meta_recv_clr(&mut self, data: &[u8], more: bool)

Receive plaintext metadata.

This is the counterpart to meta_recv_clr.

pub fn send_enc(&mut self, data: &mut [u8], more: bool)

Send encrypted data.

This function takes in the plaintext data to encrypt, and modifies it in place to contain the encrypted data. This should then be sent to the other party.

pub fn meta_send_enc(&mut self, data: &mut [u8], more: bool)

Send encrypted metadata.

The intention of this operation is to send encrypted framing data, which might be useful for some situations.

pub fn recv_enc(&mut self, data: &mut [u8], more: bool)

Receive encrypted data.

This is the counterpart to send_enc.

We start with a buffer of encrypted data, and then modify it to contain the plaintext.

pub fn meta_recv_enc(&mut self, data: &mut [u8], more: bool)

Received encrypted metadata.

pub fn send_mac(&mut self, data: &mut [u8])

Send a MAC to the other party.

The buffer will be filled with a MAC, which verifies the integrity of the operations done so far. This MAC is then intended to be sent to the other party.

This operation intentionally does not allow more to be used. This is to match recv_mac.

pub fn meta_send_mac(&mut self, data: &mut [u8])

Send a MAC of metadata to the other party.

This is very similar to send_mac.

pub fn recv_mac(&mut self, data: &mut [u8]) -> Result<(), MacError>

Receive and verify a MAC.

The buffer contains the MAC to verify, and we need to mutate it to be able to more conveniently check its correctness.

This operation intentionally does not allow more to be used. This is because a MAC should always be verified all at once, rather than in chunks.

pub fn meta_recv_mac(&mut self, data: &mut [u8]) -> Result<(), MacError>

Receive and verify a MAC of metadata.

This is very similar to recv_mac.

pub fn prf(&mut self, data: &mut [u8], more: bool)

Generate random bytes from the state.

pub fn ratchet(&mut self)

Ratchet the state forward.

Because the state is modified with a permutation, we can use new states to derive information about old states. Ratcheting prevents this flow of information backwards.

pub fn ratchet_many(&mut self, len: usize, more: bool)

Ratchet the state forward many times.

The difference with ratchet is that you can specify how far to ratchet the state. For S bits of security, you want to ratchet at least S / 8 bytes. Ratcheting more can function as a kind of “difficulty”, like you might want for password hashing.

That said, you probably want a function dedicated for hashing passwords, which have other security features, like being memory hard, and things like that.

Trait Implementations

impl Clone for Meow

fn clone(&self) -> Meow

Returns a duplicate of the value.

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source.

impl Drop for Meow

fn drop(&mut self)

Executes the destructor for this type.