The xsha1 package

Caution: XSHA1 is weak, and should not be used as a hash.

XSHA1 is used in password and CD key authentication in older Blizzard games (Starcraft, Diablo 2) among other things. The fact that it's cryptographically weak has been known for years: this is a public analysis of the weakness. The goal is to determine risk posed to users, and find safeguards if possible.

The code is geared for rapid interactive development with GHCI. Excuse the lax conventions.

Data.Digest.* implements and explores XSHA1, while Data.Codec.* contains applications.

Properties

Version	0.0.0
Dependencies	base (4.*), HUnit, QuickCheck, uniplate, vector
License	MIT
Author	Alex Kropivny <alex.kropivny@gmail.com>
Maintainer	Alex Kropivny <alex.kropivny@gmail.com>
Stability	Experimental
Category	Cryptography
Upload date	Thu Mar 15 05:10:20 UTC 2012
Uploaded by	AlexKropivny
Built on	ghc-7.4

Modules

Data
- Codec
  - Blizz
    - Data.Codec.Blizz.CDHash
- Digest
  - Data.Digest.XSHA1
    - Data.Digest.XSHA1.Compress
    - Data.Digest.XSHA1.Extend
Numeric
- Taint
  - Numeric.Taint.Word32

Downloads

xsha1-0.0.0.tar.gz (Cabal source package)
package description (included in the package)