Max Lv

You can specify the `cert` and `key` paths in the plugin options. Just make sure `nobody` can access these files.

Don't specify acme host, if you want to set TLS cert keys and certs manually.

@riobard I'm afraid not.

It looks `rustls` doesn't support this format. So, you need to convert them first. ref: https://github.com/rustls/rustls/issues/245

IIRC, by default, `acme.sh` only issue RSA format keys. So, if you issue some ECC keys [explicitly](https://github.com/acmesh-official/acme.sh#10-issue-ecc-certificates), you'd better convert them by yourself. Of course, any contribution is welcome. Feel...

Can you try the command line options first? Server ``` ./ssserver -s 0.0.0.0:443 -k example -m aes-256-gcm --plugin ./qtun-server --plugin-opts "acme_host=example.com" ``` Client ``` ./sslocal -s example.com:443 -k example -m...

If so, the `SS_LOCAL_HOST` and `SS_LOCAL_PORT` environment variables should be parsed correctly in qtun-client. Guess there's something wrong in ss-rust while launching multiple SIP003 plugins. Can you try v2ray-plugin's quic...

@Smartype We're using VPNService and tun2socks (badvpn) to implement the VPN mode of shadowsocks-android. You can get more details from here https://github.com/shadowsocks/shadowsocks-android/tree/master/src/main/jni/badvpn/tun2socks

Two issues: 1. No English documentation. 2. Still missing UDP associate and SIP003 support. So, please fix the above issues before getting your project transferred to our org.

To avoid the short-term replay attacks to the clients, we'd better keep the bloom-filter persistent on the disk. @zonyitoo Can you try implement this in shaowsocks-rust first? The implementation should...