{"id":50293536,"url":"https://github.com/ssrlive/reality-rs","last_synced_at":"2026-05-28T07:07:13.391Z","repository":{"id":353533497,"uuid":"1218239456","full_name":"ssrlive/reality-rs","owner":"ssrlive","description":"AnyReality: A REALITY-wrapped AnyTLS proxy implementation in Rust","archived":false,"fork":false,"pushed_at":"2026-05-14T17:37:17.000Z","size":16421,"stargazers_count":0,"open_issues_count":1,"forks_count":0,"subscribers_count":0,"default_branch":"main","last_synced_at":"2026-05-14T19:11:41.536Z","etag":null,"topics":["anyreality","anytls","client","gfw","proxy","reality","server","vpn"],"latest_commit_sha":null,"homepage":"","language":"Rust","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"other","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/ssrlive.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":"CONTRIBUTING.md","funding":".github/FUNDING.yml","license":"LICENSE","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":"audit/TLS-01-report.pdf","citation":null,"codeowners":null,"security":"SECURITY.md","support":null,"governance":null,"roadmap":"ROADMAP.md","authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null},"funding":{"github":["cpu","ctz","djc"]}},"created_at":"2026-04-22T17:13:46.000Z","updated_at":"2026-05-14T17:10:45.000Z","dependencies_parsed_at":null,"dependency_job_id":null,"html_url":"https://github.com/ssrlive/reality-rs","commit_stats":null,"previous_names":["ssrlive/reality-rs"],"tags_count":4,"template":false,"template_full_name":null,"purl":"pkg:github/ssrlive/reality-rs","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ssrlive%2Freality-rs","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ssrlive%2Freality-rs/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ssrlive%2Freality-rs/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ssrlive%2Freality-rs/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/ssrlive","download_url":"https://codeload.github.com/ssrlive/reality-rs/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ssrlive%2Freality-rs/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":33597957,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-05-26T15:22:16.424Z","status":"online","status_checked_at":"2026-05-28T02:00:06.440Z","response_time":99,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["anyreality","anytls","client","gfw","proxy","reality","server","vpn"],"created_at":"2026-05-28T07:07:01.022Z","updated_at":"2026-05-28T07:07:13.366Z","avatar_url":"https://github.com/ssrlive.png","language":"Rust","funding_links":["https://github.com/sponsors/cpu","https://github.com/sponsors/ctz","https://github.com/sponsors/djc"],"categories":[],"sub_categories":[],"readme":"## About anyreality\n\nThis repository contains a fork of `rustls` for a REALITY-wrapped AnyTLS proxy implementation.\nKey user-facing binaries live in `anyreality/`:\n\n- `anyreality-client`: a SOCKS5 client that tunnels traffic over REALITY+TLS\n  and the AnyTLS session protocol.\n- `anyreality-server`: the corresponding server that accepts REALITY+TLS\n  connections and forwards streams to upstream targets.\n\nIf you only want to run the proxy pair quickly on a Linux system, the\nconvenience installer is provided at `install/installer.sh` (it generates a\nlocal CA, server cert, REALITY keys, writes configs and attempts to enable a\nsystemd service).\n\n[中文版安装指南](install.md)\n\n### Quick install\n\nOptions:\n\n- Install with the automated script (Linux, run as root):\n\n```sh\nsudo bash install/installer.sh install [domain] [port]\n```\n\nIf you omit `[domain]` the script will prompt and may pick a random common\nhostname for certificate generation. `[port]` defaults to `443`.\n\n- Build and run from source (developer flow):\n\n```sh\n# build and install the anyreality binaries into your cargo bin\ncargo install --path ./anyreality\n\n# run the server with a config file\ncargo run -p anyreality --bin anyreality-server -- --config anyreality/config/reality-server.toml\n\n# run the client\ncargo run -p anyreality --bin anyreality-client -- --config anyreality/config/reality-client.toml\n```\n\nSee [anyreality/README.md](anyreality/README.md) for additional runtime and smoke-test instructions.\n\n---\n\n\u003cp align=\"center\"\u003e\n  \u003cimg width=\"512\" src=\"https://raw.githubusercontent.com/rustls/rustls/main/admin/logo/rustls.svg\"\u003e\n\u003c/p\u003e\n\n\u003cp align=\"center\"\u003e\nRustls is a modern TLS library written in Rust.\n\u003c/p\u003e\n\n# Status\n\nRustls is used in production at many organizations and projects. We aim to maintain\nreasonable API surface stability but the API may evolve as we make changes to accommodate\nnew features or performance improvements.\n\nWe have a [roadmap](ROADMAP.md) for our future plans. We also have [benchmarks](BENCHMARKING.md) to\nprevent performance regressions and to let you evaluate rustls on your target hardware.\n\nIf you'd like to help out, please see [CONTRIBUTING.md](CONTRIBUTING.md).\n\n[![Build Status](https://github.com/rustls/rustls/actions/workflows/build.yml/badge.svg?branch=main)](https://github.com/rustls/rustls/actions/workflows/build.yml?query=branch%3Amain)\n[![Coverage Status (codecov.io)](https://codecov.io/gh/rustls/rustls/branch/main/graph/badge.svg)](https://codecov.io/gh/rustls/rustls/)\n[![Documentation](https://docs.rs/rustls/badge.svg)](https://docs.rs/rustls/)\n[![Chat](https://img.shields.io/discord/976380008299917365?logo=discord)](https://discord.gg/MCSB76RU96)\n[![OpenSSF Best Practices](https://www.bestpractices.dev/projects/9034/badge)](https://www.bestpractices.dev/projects/9034)\n\nThe maintainers pronounce \"rustls\" as rustles (rather than rust-TLS), but we don't feel strongly\nabout it.\n\n## Changelog\n\nThe detailed list of changes in each release can be found at\nhttps://github.com/rustls/rustls/releases.\n\n# Documentation\n\nhttps://docs.rs/rustls/\n\n# Approach\n\nRustls is a TLS library that aims to provide a good level of cryptographic security,\nrequires no configuration to achieve that security, and provides no unsafe features or\nobsolete cryptography by default.\n\nRustls implements TLS1.2 and TLS1.3 for both clients and servers. See [the full\nlist of protocol features](https://docs.rs/rustls/latest/rustls/manual/_04_features/index.html).\n\n### Platform support\n\nWhile Rustls itself is platform independent, it requires the use of cryptography primitives\nfor implementing the cryptography algorithms used in TLS. In Rustls, a\n[`crypto::CryptoProvider`] represents a collection of crypto primitive implementations.\n\nBy providing a custom instance of the [`crypto::CryptoProvider`] struct, you\ncan replace all cryptography dependencies of rustls.  This is a route to being portable\nto a wider set of architectures and environments, or compliance requirements.  See the\n[`crypto::CryptoProvider`] documentation for more details.\n\n[`crypto::CryptoProvider`]: https://docs.rs/rustls/latest/rustls/crypto/struct.CryptoProvider.html\n\n### Cryptography providers\n\nSince Rustls 0.22 it has been possible to choose the provider of the cryptographic primitives\nthat Rustls uses. This may be appealing if you have specific platform, compliance or feature\nrequirements.\n\nFrom 0.24, users must explicitly provide a crypto provider when constructing `ClientConfig` or\n`ServerConfig` instances. See the [`crypto::CryptoProvider`] documentation for more details.\n\n#### First-party providers\n\nThe Rustls project currently maintains two cryptography providers:\n\n* [`rustls-aws-lc-rs`] - a provider that uses the [`aws-lc-rs`] crate for cryptography.\nWhile this provider can be harder to build on [some platforms][aws-lc-rs-platforms-faq], it provides excellent\nperformance and a complete feature set (including post-quantum algorithms).\n* [`rustls-ring`] - a provider that uses the [`ring`] crate for cryptography. This\nprovider is easier to build on a variety of platforms, but has a more limited feature set\n(for example, it does not support post-quantum algorithms).\n\nThe Rustls team recommends using the [`rustls-aws-lc-rs`] crate for its complete feature set\nand performance. See [the aws-lc-rs FAQ][aws-lc-rs-platforms-faq] for more details of the\nplatform/architecture support constraints in aws-lc-rs.\n\nSee the documentation for [`crypto::CryptoProvider`] for details on how providers are\nselected.\n\n(For rustls versions prior to 0.24, both of these providers were shipped as part of the rustls\ncrate, and Cargo features were used to select the preferred provider. The `aws-lc-rs` feature\nwas enabled by default.)\n\n[`rustls-aws-lc-rs`]: https://crates.io/crates/rustls-aws-lc-rs\n[`aws-lc-rs`]: https://crates.io/crates/aws-lc-rs\n[aws-lc-rs-platforms-faq]: https://aws.github.io/aws-lc-rs/faq.html#can-i-run-aws-lc-rs-on-x-platform-or-architecture\n[`rustls-ring`]: https://crates.io/crates/rustls-ring\n[`ring`]: https://crates.io/crates/ring\n\n#### Third-party providers\n\nThe community has also started developing third-party providers for Rustls:\n\n* [`boring-rustls-provider`] - a work-in-progress provider that uses [`boringssl`] for\ncryptography.\n* [`rustls-ccm`] - adds AES-CCM cipher suites (TLS 1.2 and 1.3) using [`RustCrypto`], for IoT/constrained-device protocols (IEEE 2030.5, Matter, RFC 7925).\n* [`rustls-graviola`] - a provider that uses [`graviola`] for cryptography.\n* [`rustls-mbedtls-provider`] - a provider that uses [`mbedtls`] for cryptography.\n* [`rustls-openssl`] - a provider that uses [OpenSSL] for cryptography.\n* [`rustls-rustcrypto`] - an experimental provider that uses the crypto primitives\nfrom [`RustCrypto`] for cryptography.\n* [`rustls-symcrypt`] - a provider that uses Microsoft's [SymCrypt] library.\n* [`rustls-wolfcrypt-provider`] - a work-in-progress provider that uses [`wolfCrypt`] for cryptography.\n\n[`rustls-ccm`]: https://github.com/jsulmont/rustls-ccm\n[`rustls-graviola`]: https://crates.io/crates/rustls-graviola\n[`graviola`]: https://github.com/ctz/graviola\n[`rustls-mbedtls-provider`]: https://github.com/fortanix/rustls-mbedtls-provider\n[`mbedtls`]: https://github.com/Mbed-TLS/mbedtls\n[`rustls-openssl`]: https://github.com/tofay/rustls-openssl\n[OpenSSL]: https://openssl-library.org/\n[`rustls-symcrypt`]: https://github.com/microsoft/rustls-symcrypt\n[SymCrypt]: https://github.com/microsoft/SymCrypt\n[`boring-rustls-provider`]: https://github.com/janrueth/boring-rustls-provider\n[`boringssl`]: https://github.com/google/boringssl\n[`rustls-rustcrypto`]: https://github.com/RustCrypto/rustls-rustcrypto\n[`RustCrypto`]: https://github.com/RustCrypto\n[`rustls-wolfcrypt-provider`]: https://github.com/wolfSSL/rustls-wolfcrypt-provider\n[`wolfCrypt`]: https://www.wolfssl.com/products/wolfcrypt\n\nSee the [Making a custom CryptoProvider] section of the documentation for more information\non this topic.\n\n[Making a custom CryptoProvider]: https://docs.rs/rustls/latest/rustls/crypto/struct.CryptoProvider.html#making-a-custom-cryptoprovider\n\n# Example code\n\nOur [examples] directory contains demos that show how to handle I/O using the\n[`stream::Stream`] helper, as well as more complex asynchronous I/O using [`mio`].\nIf you're already using Tokio for an async runtime you may prefer to use\n[`tokio-rustls`] instead of interacting with rustls directly.\n\nThe [`mio`] based examples are the most complete, and discussed below. Users\nnew to Rustls may prefer to look at the simple client/server examples before\ndiving in to the more complex MIO examples.\n\n[examples]: examples/\n[`stream::Stream`]: https://docs.rs/rustls/latest/rustls/struct.Stream.html\n[`mio`]: https://docs.rs/mio/latest/mio/\n[`tokio-rustls`]: https://docs.rs/tokio-rustls/latest/tokio_rustls/\n\n## Client example program\n\nThe MIO client example program is named `tlsclient-mio`.\n\nSome sample runs:\n\n```\n$ cargo run --bin tlsclient-mio -- --http mozilla-modern.badssl.com\nHTTP/1.1 200 OK\nServer: nginx/1.6.2 (Ubuntu)\nDate: Wed, 01 Jun 2016 18:44:00 GMT\nContent-Type: text/html\nContent-Length: 644\n(...)\n```\n\nor\n\n```\n$ cargo run --bin tlsclient-mio -- --http expired.badssl.com\nTLS error: InvalidCertificate(Expired)\nConnection closed\n```\n\nRun `cargo run --bin tlsclient-mio -- --help` for more options.\n\n## Server example program\n\nThe MIO server example program is named `tlsserver-mio`.\n\nHere's a sample run; we start a TLS echo server, then connect to it with\n`openssl` and `tlsclient-mio`:\n\n```\n$ cargo run --bin tlsserver-mio -- --certs test-ca/rsa-2048/end.fullchain --key test-ca/rsa-2048/end.key -p 8443 echo \u0026\n$ echo hello world | openssl s_client -ign_eof -quiet -connect localhost:8443\ndepth=2 CN = ponytown RSA CA\nverify error:num=19:self signed certificate in certificate chain\nhello world\n^C\n$ echo hello world | cargo run --bin tlsclient-mio -- --cafile test-ca/rsa-2048/ca.cert --port 8443 localhost\nhello world\n^C\n```\n\nRun `cargo run --bin tlsserver-mio -- --help` for more options.\n\n# License\n\nRustls is distributed under the following three licenses:\n\n- Apache License version 2.0.\n- MIT license.\n- ISC license.\n\nThese are included as LICENSE-APACHE, LICENSE-MIT and LICENSE-ISC\nrespectively.  You may use this software under the terms of any\nof these licenses, at your option.\n\n# Project Membership\n\n- Joe Birr-Pixton ([@ctz], Project Founder - full-time funded by [Prossimo])\n- Dirkjan Ochtman ([@djc], Co-maintainer)\n- Daniel McCarney ([@cpu], Co-maintainer)\n- Josh Aas ([@bdaehlie], Project Management)\n\n[@ctz]: https://github.com/ctz\n[@djc]: https://github.com/djc\n[@cpu]: https://github.com/cpu\n[@bdaehlie]: https://github.com/bdaehlie\n[Prossimo]: https://www.memorysafety.org/initiative/rustls/\n\n# Code of conduct\n\nThis project adopts the [Rust Code of Conduct](https://www.rust-lang.org/policies/code-of-conduct).\nPlease email rustls-mod@googlegroups.com to report any instance of misconduct, or if you\nhave any comments or questions on the Code of Conduct.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fssrlive%2Freality-rs","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fssrlive%2Freality-rs","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fssrlive%2Freality-rs/lists"}