Auth
HMAC-SHA512256 symmetric MAC - produces and verifies 32-byte authentication tags. The verification step runs in constant time to prevent timing attacks. Both parties must share the same secret key; use an AEAD module for encrypted messages.
Summary
Functions
Section titled “Functions”keygen
Section titled “keygen”Auth . keygen ( ) -> buffer
Generates a random 32-byte authentication key via libsodium’s CSPRNG.
Returns
| buffer |
Auth . sign ( message , key ) -> buffer
Computes a 32-byte HMAC-SHA512256 authentication tag for message under key.
Parameters
| message: buffer | |
| key: buffer |
Returns
| buffer |
verify
Section titled “verify”Auth . verify ( mac , message , key ) -> boolean
Verifies mac against message under key in constant time.
Returns true if valid, false otherwise - does not error on failed verification.
Parameters
| mac: buffer | |
| message: buffer | |
| key: buffer |
Returns
| boolean |