pakery-core 0.2.0

Shared utilities for PAKE protocol implementations
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21

//! Message authentication code trait.

use crate::error::PakeError;
use alloc::vec::Vec;
use subtle::ConstantTimeEq;

/// A message authentication code.
pub trait Mac {
    /// Compute a MAC tag.
    fn mac(key: &[u8], msg: &[u8]) -> Result<Vec<u8>, PakeError>;

    /// Verify a MAC tag in constant time.
    fn verify(key: &[u8], msg: &[u8], tag: &[u8]) -> Result<(), PakeError> {
        let computed = Self::mac(key, msg)?;
        if computed.ct_eq(tag).into() {
            Ok(())
        } else {
            Err(PakeError::ProtocolError("MAC verification failed"))
        }
    }
}