raaz: The raaz cryptographic library.

This is a package candidate release! Here you can preview how this package release will appear once published to the main package index (which can be accomplished via the 'maintain' link below). Please note that once a package has been published to the main package index it cannot be undone! Please consult the package uploading documentation for more information.



Raaz is a cryptographic library for Haskell. The library is designed with a special emphasis on using the type system of Haskell to eliminate a large set of vulnerabilities like buffer overflows, timing attacks etc. It also strives to achieve this safety with no compromise on performance.

[Skip to ReadMe]


Versions0.0.1, 0.0.2, 0.1.0, 0.1.1, 0.2.0, 0.2.0, 0.2.1
Change logCHANGELOG.md
Dependenciesbase (>=4.6 && <4.11), bytestring (>=0.9 && <0.11), deepseq (>=1.1 && <1.5), optparse-applicative (>=0.10.0), raaz, transformers, vector (>=0.7.1 && <0.13) [details]
AuthorPiyush P Kurur
CategoryCodec, Raaz
Home pagehttp://github.com/raaz-crypto/raaz
Bug trackerhttps://github.com/raaz-crypto/raaz/issues
Source repositoryhead: git clone https://github.com/raaz-crypto/raaz
UploadedFri Aug 25 03:29:27 UTC 2017 by PiyushKurur





Use optimisation for the platform on which it is being built. Do not enable this when cross compiling as it can break the implementation. Also tested only with gcc.


Make use of vector instructions with size being 128. Do not enable this unless you have reasons to. It is better to use opt-native and opt-vectorise and let gcc have a go at the portable implementation


Make use of gcc vector instructions with size being 256. Do not enable this unless you have reasons to. It is better to use opt-native and opt-vectorise and let gcc have a go at the portable implementation.


Make use of gcc vector instructions with size being 512.


Support avx2 optimisations. Warning: enable only if you are sure of support.


Use the getrandom for system entropy instead of devurandom. Available only on linux kernel > 3.17.


Use liquid haskell form verifying properties. Only for developers.


Use -f <flag> to enable a flag, or -f -<flag> to disable that flag. More info


Maintainers' corner

For package maintainers and hackage trustees

Readme for raaz-0.2.0

[back to package description]

Raaz: A secure cryptographic library

Build Staus Build Windows In Progress Stackage LTS Stackage Nightly Hackage Hackage Dependencies

This is the repository of raaz, a Haskell library that implements some standard cryptographic primitives. This library is the basis on which we plan to build a cryptographic framework in Haskell. For example, there are plans to implement some common cryptographic protocols like ssh. Thus applications that require cryptographic security, in particular secure networking applications can be built out of this.

Raaz is also an attempt to provide better security guarantees by making use of Haskell's strong typing. Besides, we put a lot of emphasis on better API design and good documentation which, we believe, makes the usage of the library secure.

The word Raaz (राज़) stands for secret in Hindi.

Hacking and Discussion

For details please refer to our wiki.

Releasing and reviewing.

The repository also contains the file Releasing.md which contains checklist for releasing a new version of the library. Any crypto library should undergo through review by multiple people. In the file Reviewing.md, we collect some common pitfalls to look for while reviewing the code. It is good to actively look for some of the problems suggested there but of course one should also look for other problems.