{"id":13531210,"url":"https://github.com/mesalock-linux/mesalink","last_synced_at":"2026-04-09T05:32:15.601Z","repository":{"id":45710663,"uuid":"126401507","full_name":"mesalock-linux/mesalink","owner":"mesalock-linux","description":"OpenSSL compatibility layer for the Rust SSL/TLS stack","archived":false,"fork":false,"pushed_at":"2021-03-09T17:17:43.000Z","size":3563,"stargazers_count":1483,"open_issues_count":6,"forks_count":68,"subscribers_count":51,"default_branch":"master","last_synced_at":"2026-01-02T10:57:25.453Z","etag":null,"topics":["rust","tls"],"latest_commit_sha":null,"homepage":"https://mesalink.io","language":"Rust","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"other","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/mesalock-linux.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2018-03-22T22:18:47.000Z","updated_at":"2025-10-12T16:40:11.000Z","dependencies_parsed_at":"2022-09-17T04:31:17.981Z","dependency_job_id":null,"html_url":"https://github.com/mesalock-linux/mesalink","commit_stats":null,"previous_names":[],"tags_count":7,"template":false,"template_full_name":null,"purl":"pkg:github/mesalock-linux/mesalink","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/mesalock-linux%2Fmesalink","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/mesalock-linux%2Fmesalink/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/mesalock-linux%2Fmesalink/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/mesalock-linux%2Fmesalink/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/mesalock-linux","download_url":"https://codeload.github.com/mesalock-linux/mesalink/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/mesalock-linux%2Fmesalink/sbom","scorecard":{"id":637165,"data":{"date":"2025-08-11","repo":{"name":"github.com/mesalock-linux/mesalink","commit":"ef12dd6339e42a37a2c24fa4b8f0a3ce155563a5"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":1.5,"checks":[{"name":"Code-Review","score":0,"reason":"Found 1/27 approved changesets -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Maintained","score":0,"reason":"0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Dangerous-Workflow","score":-1,"reason":"no workflows found","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"Token-Permissions","score":-1,"reason":"No tokens found","details":null,"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"Pinned-Dependencies","score":-1,"reason":"no dependencies found","details":null,"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Security-Policy","score":0,"reason":"security policy file not detected","details":["Warn: no security policy file detected","Warn: no security file to analyze","Warn: no security file to analyze","Warn: no security file to analyze"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"License","score":9,"reason":"license file detected","details":["Info: project has a license file: LICENSE:0","Warn: project license file does not contain an FSF or OSI license."],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Signed-Releases","score":0,"reason":"Project has not signed or included provenance with any releases.","details":["Warn: release artifact v1.0.0 not signed: https://api.github.com/repos/mesalock-linux/mesalink/releases/16506369","Warn: release artifact v0.8.0 not signed: https://api.github.com/repos/mesalock-linux/mesalink/releases/15205512","Warn: release artifact v0.7.2 not signed: https://api.github.com/repos/mesalock-linux/mesalink/releases/14166533","Warn: release artifact v0.7.1 not signed: https://api.github.com/repos/mesalock-linux/mesalink/releases/12753159","Warn: release artifact v0.7.0 not signed: https://api.github.com/repos/mesalock-linux/mesalink/releases/12424234","Warn: release artifact v1.0.0 does not have provenance: https://api.github.com/repos/mesalock-linux/mesalink/releases/16506369","Warn: release artifact v0.8.0 does not have provenance: https://api.github.com/repos/mesalock-linux/mesalink/releases/15205512","Warn: release artifact v0.7.2 does not have provenance: https://api.github.com/repos/mesalock-linux/mesalink/releases/14166533","Warn: release artifact v0.7.1 does not have provenance: https://api.github.com/repos/mesalock-linux/mesalink/releases/12753159","Warn: release artifact v0.7.0 does not have provenance: https://api.github.com/repos/mesalock-linux/mesalink/releases/12424234"],"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Branch-Protection","score":0,"reason":"branch protection not enabled on development/release branches","details":["Warn: branch protection not enabled for branch 'master'"],"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"SAST","score":0,"reason":"SAST tool is not run on all commits -- score normalized to 0","details":["Warn: 0 commits out of 13 are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"Vulnerabilities","score":0,"reason":"15 existing vulnerabilities detected","details":["Warn: Project is vulnerable to: RUSTSEC-2021-0145 / GHSA-g98v-hv3f-hcfr","Warn: Project is vulnerable to: RUSTSEC-2024-0375","Warn: Project is vulnerable to: RUSTSEC-2020-0006 / GHSA-vqx7-pw4r-29rr","Warn: Project is vulnerable to: RUSTSEC-2022-0078 / GHSA-f85w-wvc7-crwc","Warn: Project is vulnerable to: RUSTSEC-2024-0384","Warn: Project is vulnerable to: RUSTSEC-2020-0070 / GHSA-5wg8-7c9q-794v / GHSA-gmv4-vmx3-x9f3 / GHSA-hj9h-wrgg-hgmx / GHSA-ppj3-7jw3-8vc4 / GHSA-vh4p-6j7g-f4j9","Warn: Project is vulnerable to: RUSTSEC-2022-0013 / GHSA-m5pq-gvj9-9vr8","Warn: Project is vulnerable to: RUSTSEC-2025-0010","Warn: Project is vulnerable to: GHSA-4p46-pwfr-66x6","Warn: Project is vulnerable to: RUSTSEC-2025-0009","Warn: Project is vulnerable to: GHSA-c86p-w88r-qvqr","Warn: Project is vulnerable to: RUSTSEC-2024-0336","Warn: Project is vulnerable to: RUSTSEC-2021-0003 / GHSA-43w2-9j62-hq99","Warn: Project is vulnerable to: RUSTSEC-2022-0006 / GHSA-9hpw-r23r-xgm5","Warn: Project is vulnerable to: RUSTSEC-2023-0052 / GHSA-8qv2-5vq6-g2g7"],"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-21T09:32:56.171Z","repository_id":45710663,"created_at":"2025-08-21T09:32:56.172Z","updated_at":"2025-08-21T09:32:56.172Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":31587807,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-04-08T14:31:17.711Z","status":"online","status_checked_at":"2026-04-09T02:00:06.848Z","response_time":112,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["rust","tls"],"created_at":"2024-08-01T07:01:00.954Z","updated_at":"2026-04-09T05:32:15.577Z","avatar_url":"https://github.com/mesalock-linux.png","language":"Rust","funding_links":[],"categories":["Rust","Cryptography"],"sub_categories":["Collection library"],"readme":"\u003cp align=\"center\"\u003e\u003cimg src=\"logo.png\" height=\"86\" /\u003e\u003c/p\u003e\n\n\u003ch1 align=\"center\"\u003eAn OpenSSL compatibility layer for the Rust SSL/TLS stack.\u003c/h1\u003e\n\n[![Build Status](https://travis-ci.com/mesalock-linux/mesalink.svg?branch=master)](https://travis-ci.com/mesalock-linux/mesalink)\n[![Build Status](https://dev.azure.com/mesalink/MesaLink/_apis/build/status/mesalock-linux.mesalink?branchName=master)](https://dev.azure.com/mesalink/MesaLink/_build/latest?definitionId=1\u0026branchName=master)\n[![Coverage Status](https://codecov.io/gh/mesalock-linux/mesalink/branch/master/graph/badge.svg)](https://codecov.io/gh/mesalock-linux/mesalink)\n[![Documentation Status](https://img.shields.io/badge/docs-latest-brightgreen.svg?style=flat)](https://mesalock-linux.github.io/mesalink-doc/doc/mesalink/index.html)\n[![Release](https://img.shields.io/github/release/mesalock-linux/mesalink.svg)](https://github.com/mesalock-linux/mesalink/releases)\n[![License](https://img.shields.io/badge/license-BSD-blue.svg)](LICENSE)\n\nMesaLink is an OpenSSL compatibility layer for the Rust SSL/TLS stack, namely\n[rustls](https://github.com/ctz/rustls),\n[webpki](https://github.com/briansmith/webpki), and\n[ring](https://github.com/briansmith/ring).\n\nTHE SOFTWARE IS PROVIDED \"AS IS\" AND THE AUTHORS DISCLAIM ALL WARRANTIES WITH\nREGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND\nFITNESS. IN NO EVENT SHALL THE AUTHORS BE LIABLE FOR ANY SPECIAL, DIRECT,\nINDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS\nOF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER\nTORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF\nTHIS SOFTWARE.\n\n## Release history\n\n* 1.0.0/0.10.0 (Apr 2, 2019)\n  - CMake support; see the updated\n    [CROSS_COMPILE.md](https://github.com/mesalock-linux/mesalink/blob/master/CROSS_COMPILE.md)\n    for cross-compilation instructions\n  - Windows builds (MSVC and MinGW)\n  - CI/CD migrated to Azure Pipelines\n  - NSIS installer for Win64 available\n  - Mutex/RwLock from [parking_lot](https://crates.io/crates/parking_lot)\n  - Session caches with [hashbrown](https://crates.io/crates/hashbrown)\n  - Optional jemalloc memory allocator with\n    [jemallocator](https://crates.io/crates/jemallocator)\n  - Renovated website\n* 0.8.0 (Jan 25, 2019)\n  - 40 new OpenSSL APIs, covering BIO, EVP_PKEY, PEM and X509\n  - SSL_CTX and SSL are thread-safe\n  - Configurable session cache\n  - SHA1 signatures discontinued\n  - Tested with rust-san memory and leak sanitizers\n  - Rust 2018 edition\n  - Based on rustls 0.15, webpki 0.19, and \\*ring\\* 0.14\n  - TLS backend for curl since 7.62.0\n  - TLS backend for brpc, an industrial-grade RPC framework; see the `patches`\n    directory\n  - Experimental SGX Remote Attestation for Untrusted Enclaves (see\n    [SGX_README.md](examples/sgx_uera_client/SGX_README.md))\n\nSee [OLD_CHANGES.md](OLD_CHANGES.md) for further change history.\n\n## Supported ciphersuites\n\n* TLS13-CHACHA20-POLY1305-SHA256\n* TLS13-AES-256-GCM-SHA384\n* TLS13-AES-128-GCM_SHA256\n* TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256\n* TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256\n* TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384\n* TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256\n* TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384\n* TLS-ECDHE-RSA-WITH-AES-128-GCM-SHA256\n\n## Building instructions for Autotools\n\n```\n$ sudo apt-get install m4 autoconf automake libtool make gcc curl\n$ curl https://sh.rustup.rs -sSf | sh\n\n$ git clone https://github.com/mesalock-linux/mesalink.git\n$ ./autogen.sh --enable-examples\n$ make\n```\n\n## Building instructions for CMake\n\n```\n$ sudo apt-get install cmake make gcc curl\n$ curl https://sh.rustup.rs -sSf | sh\n\n$ git clone https://github.com/mesalock-linux/mesalink.git\n$ mkdir build \u0026\u0026 cd build\n$ cmake ..\n$ cmake --build .\n```\n\n## Examples\nMesaLink comes with two examples that demonstrate a TLS client and a TLS\nserver. Both of them are located at `examples/`.\n\nThe client example connects to a remote HTTPS server and prints the server's\nresponse.\n\n```\n$ ./examples/client/client api.ipify.org\n[+] Negotiated ciphersuite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, enc_length=16, version=TLS1.2\n[+] Subject name: /OU=Domain Control Validated/OU=PositiveSSL Wildcard/CN=*.ipify.org\n[+] Subject alternative names:*.ipify.org ipify.org\n[+] Sent 85 bytes\n\nGET / HTTP/1.0\nHost: api.ipify.org\nConnection: close\nAccept-Encoding: identity\n\n\nHTTP/1.1 200 OK\nServer: Cowboy\nConnection: close\nContent-Type: text/plain\nVary: Origin\nDate: Thu, 09 Aug 2018 21:44:35 GMT\nContent-Length: 10\nVia: 1.1 vegur\n\n1.2.3.4\n[+] TLS protocol version: TLS1.2\n\n[+] Received 177 bytes\n```\n\nThe server example comes with a pair of certificate and private key. The\ncertificate file is in the PEM format and contains a chain of certificates from\nthe server's certificate to the root CA certificate. The private key file\ncontains a PKCS8-encoded private key in the PEM format. Once the server is up\nand running, open [https://127.0.0.1:8443](https://127.0.0.1:8443) and expect to\nsee the hello message.\n\n```\n$ ./examples/server/server\nUsage: ./examples/server/server \u003cportnum\u003e \u003ccert_file\u003e \u003cprivate_key_file\u003e\n$ cd examples/server/server\n$ ./server 8443 certificates private_key\n[+] Listening at 0.0.0.0:8443\n[+] Negotiated ciphersuite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, enc_length=16, version=TLS1.2\n[+] Received:\nGET / HTTP/1.1\nHost: 127.0.0.1:8443\nConnection: keep-alive\nUser-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_2) AppleWebKit/537.36\n(KHTML, like Gecko) Chrome/63.0.3239.84 Safari/537.36\nUpgrade-Insecure-Requests: 1\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng\nAccept-Encoding: gzip, deflate, br\nAccept-Language: en-US,en;q=0.9\n```\n\n## Unit tests\nMesaLink uses cargo for unit tests. Simply run `cargo test`.\n\n```\n$ cargo test\n```\n\n## BoringSSL SSL tests\n[BoGo](https://github.com/google/boringssl/tree/master/ssl/test) is BoringSSL's\nprotocol level test suite. We have ported BoGo for testing the functionality and\ncompatibility of MesaLink. To run BoGo test cases, run the following:\n\n```\n$ cd bogo \u0026\u0026 ./runme\n```\n\n## Maintainer\n\n * Yiming Jing `\u003cyjing@apache.org\u003e` [@ymjing](https://github.com/ymjing)\n\n## License\nMesaLink is provided under the 3-Clause BSD license. For a copy, see the LICENSE\nfile.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fmesalock-linux%2Fmesalink","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fmesalock-linux%2Fmesalink","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fmesalock-linux%2Fmesalink/lists"}