Hey everyone!
Here are our meeting logs:
http://meetbot.debian.net/tor-meeting/2022/tor-meeting.2022-02-03-16.00.html
And our meeting pad:
Anti-censorship work meeting pad --------------------------------
Next meeting: Thursday February 3rd 16:00 UTC
Weekly meetings, every Thursday at 16:00 UTC, in #tor-meeting at OFTC (channel is logged while meetings are in progress)
== Goal of this meeting ==
Weekly checkin about the status of anti-censorship work at Tor. Coordinate collaboration between people/teams on anti-censorship at Tor.
== Links to Useful documents ==
Our anti-censorship roadmap:
Roadmap: https://gitlab.torproject.org/groups/tpo/anti-censorship/-/boards
The anti-censorship team's wiki page:
https://gitlab.torproject.org/tpo/anti-censorship/team/-/wikis/home
Past meeting notes can be found at:
https://lists.torproject.org/pipermail/tor-project/
Tickets that need reviews: from sponsors we are working on:
All needs review tickets: https://gitlab.torproject.org/groups/tpo/anti-censorship/-/merge_requests?sc...
Sponsor 30
https://gitlab.torproject.org/groups/tpo/-/milestones/4
https://gitlab.torproject.org/groups/tpo/-/milestones/7
https://gitlab.torproject.org/groups/tpo/-/milestones/5
https://gitlab.torproject.org/groups/tpo/-/milestones/6
Sponsor 28
must-do tickets: https://gitlab.torproject.org/groups/tpo/-/milestones/10
possible tickets: https://gitlab.torproject.org/groups/tpo/-/issues?scope=all&utf8=%E2%9C%...
== Announcements ==
== Discussion ==
snowflake bridge is now switched back from staging to production
https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snowf...
load balancing is effective - the bridge is now using all its CPU resources effectively, and is no longer bottlenecked on tor
as a consequence, the bridge is providing about twice as much bandwidth as before (now 20 MB/s, from 10 MB/s)
however, it is now at the limit of its CPU capability, and will not be able to go faster than it does now
for the 6 days the staging server was in use, it was going even faster, up to 30 MB/s.
there's no obvious low-hanging fruit in the snowflake-server CPU profile
https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snowf...
profiling extor-static-cookie could be worthwhile
== Actions ==
== Interesting links ==
== Reading group ==
We will discuss "Weaponizing Middleboxes for TCP Reflected Amplification" on 2022-02-17
https://censorbib.nymity.ch/#Bock2021b
Questions to ask and goals to have:
What aspects of the paper are questionable?
Are there immediate actions we can take based on this work?
Are there long-term actions we can take based on this work?
Is there future work that we want to call out, in hopes that others will pick it up?
== Updates ==
Name: This week: - What you worked on this week. Next week: - What you are planning to work on next week. Help with:
- Something you need help with.
anadahz: 2022-01-27
Last weeek:
- Increase timeout check cycles for default-bridge-felix-1 and default-bridge-felix-2 as they have been generating too many alerts: https://gitlab.torproject.org/tpo/anti-censorship/monit-configuration/-/merg...
cecylia (cohosh): last updated 2022-02-03 Last week: - deployed new version of snowflake webextension + badge - fixed issue with file limits at probetest (snowflake#40096) - Updated documentation on schleuder mailing list admin (tpa/wiki-replica!22) - filed issue about mailing list public key change (tpa/team#40609) - reviews - responded to ooni questions about snowflake tests (snowflake#40097) - https://github.com/ooni/probe/issues/2004 - lots of meetings This week: - more reviews - try out recent shadow bug fixes - work with ooni on tor related tests - s28 evaluation prep - look at what's necessary for tapdance/conjure - write up more documentation Needs help with:
dcf: 2022-02-03
Last week:
- profiled snowflake-server on the staging bridge https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snowf...
- found a solution to prevent onion key rotation on the load-balanced bridge: a preexisting directory at a destination path https://forum.torproject.net/t/tor-relays-how-to-reduce-tor-cpu-load-on-a-si...
- opened an issue for an assertion failure that happens when onion key rotation is prevented https://gitlab.torproject.org/tpo/core/tor/-/issues/40554
- monitored the switchover from the staging snowflake bridge to production, and debugged resulting issues https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snowf...
- wrote scripts to graph multi-instance bandwidth and clients https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snowf...
- discovered a couple of minor bugs in snowflake-server https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snowf... https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snowf...
Next week:
- update snowflake bridge installation and survival guides
- open an issue for metrics graphs correctly showing graphs for fingerprints with multiple instances
- start a discussion on tor-dev about alternatives for ExtORPort authentication (remove the need for extor-static-cookie)
- start a discussion on tor-dev about supported ways to disable onion key authentication
Help with:
agix: 2021-01-13
Last week:
- Busy with work on Censored Planet
Next week:
- Continue work on gettor-twitter
Help with:
-
arlolra: 2022-01-20
Last week:
- [added 2022-01-20 by dcf] ALPN support for pion DTLS https://github.com/pion/dtls/pull/415
Next week:
- Figure out where in pion/webrtc ALPN should be configured and used
- Maybe add Chacha20Poly1305 to pion/dtls
https://github.com/pion/dtls#planned-features
https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snowf...
Help with:
-
maxb: 2021-09-23
Last week:
- Worked on https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snowf... re: utls for broker negotiation
- Had conversation with someone about upstream utls http round tripper https://github.com/refraction-networking/utls/pull/74
- Too busy with work :/
Next week:
- _Really_ want to get a PR for utls round tripper
meskio: 2022-02-03
Last week:
- test deployment for the new rdsys/bridgedb setup (rdsys#12)
- read the rdsys token from a file (bridgedb!33)
- fixes on country block mechanism for rdsys and bridgedb (rdsys!26)
- review bridgedb web redesign in lektor (bridgedb!31)
- feedback on the debian package for obfs4proxy (obfs4#33736)
- API rethinking for circumvention settings (bridgedb#40043 TorBrowser#40781)
Next week:
- make easier to test bridgedb ater rdsys change (bridgedb#40034)
Shelikhoo: 2022-02-03 Last Week: - [Merge Request Awaiting] Add SOCKS5 forward proxy support to snowflake(snowflake!64) - [Merge Request Done] Privacy preserving stats in Snowflake standalone proxy(snowflake#40079, snowflake!72) - [Merge Request Review Done] Configure what distributor does distribute each resource type
- [Discussion] Implement metrics to measure snowflake churn(snowflake#34075)
- [Discussion] Proposal: Support for Dynamic IP obfs4 bridges with unattended proxy information update(aka "Subscription")
- [Discussion] Proposal: Push Notification Based Signaling Channel
- [Discussion] Proposal: Centralized Probe Result Collector(anti-censorship/team#54)
- [Discussion] HTTPT & Websocket(https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/httpt...)
- [Investigate] Is there a better moat/snowflake SNI than cdn.sstatic.net? (snowflake#40068)
- [Investigate] Multi-instance Load Balanced Tor - Snowflake Deployment
- [Investigate] China "Anti-Fraud" Webpage Redirection Censorship(censorship-analysis#40026)
- [Investigate] uTLS for broker negotiation
Next Week: - [Discussion] Implement metrics to measure snowflake churn (snowflake#34075) - [Discussion] Proposal: Push Notification Based Signaling Channel - [Merge Request] Add verbosity switch to suppress diagnostic output(snowflake#40079, snowflake!74) - [Discussion] Proposal: Centralized Probe Result Collector(anti-censorship/team#54) - [Investigate] uTLS for broker negotiation
HackerNCoder: 2021-12-16 This week: Last/done: Setup web mirror on tor.encryptionin.space Next: Get (new VPs with) new IP and setup new web mirror on new domain
hanneloresx: 2021-3-4
Last week:
- Submitted MR for bridgestrap issue #14
Next week:
- Finish bridgestrap #14
- Find new issue to work on
Help with:
-
tor-project@lists.torproject.org
-
meskio