Hi() is, essentially, PBKDF2 [RFC2898] with HMAC() as the pseudorandom function (PRF) and with dkLen == output length of HMAC() == output length of H()

In cryptography, a nonce is an arbitrary number that can be used just once. It is similar in spirit to a nonce * word, hence the name. It is often a random or pseudo-random number issued in an authentication protocol to * ensure that old communications cannot be reused in replay attacks.

From https://tools.ietf.org/html/rfc5802#section-5.1

The characters ',' or '=' in usernames are sent as '=2C' and '=3D' respectively. If the server receives a username that contains '=' not followed by either '2C' or '3D', then the server MUST fail the authentication.

Apply the exclusive-or operation to combine the octet string on the left of this operator with the octet string on the right of this operator. The length of the output and each of the two inputs will be the same for this use