Hey everyone!
Here are our meeting logs:
http://meetbot.debian.net/tor-meeting/2022/tor-meeting.2022-01-27-15.59.html
And our meeting pad:
Anti-censorship work meeting pad
···
--------------------------------
Next meeting: Thursday January 27th 16:00 UTC
Weekly meetings, every Thursday at 16:00 UTC, in #tor-meeting at OFTC (channel is logged while meetings are in progress)
== Goal of this meeting ==
Weekly checkin about the status of anti-censorship work at Tor.
Coordinate collaboration between people/teams on anti-censorship at Tor.
== Links to Useful documents ==
Our anti-censorship roadmap:
Roadmap: Development · Boards · Anti-censorship · GitLab
The anti-censorship team's wiki page:
Home · Wiki · The Tor Project / Anti-censorship / Team · GitLab
Past meeting notes can be found at:
Tickets that need reviews: from sponsors we are working on:
All needs review tickets: Merge requests · Anti-censorship · GitLab
Sponsor 30
Sponsor 30 - Objective 2.1 · The Tor Project · GitLab
Sponsor 30 - Objective 2.2 · The Tor Project · GitLab
Sponsor 30 - Objective 2.3 · The Tor Project · GitLab
Sponsor 30 - Objective 2.4 · The Tor Project · GitLab
Sponsor 28
must-do tickets: Sponsor 28: Reliable Anonymous Communication Evading Censors and Repressors (RACECAR) · The Tor Project · GitLab
possible tickets: Issues · The Tor Project · GitLab
== Announcements ==
== Discussion ==
no news about obfs4 security fixes, needs to be looked into
Tor Browser will update first: Pick up obfsproxy 0.0.12 (#40416) · Issues · The Tor Project / Applications / tor-browser-build · GitLab
status of snowflake load balancing upgrade
currently staging bridge is handling almost all the traffic
plan to do the upgrade on the production bridge today or tomorrow
then switch the DNS back next week
our metrics are low, the current hypothesis is that the counts are coming from only one of the instances
plan to prevent onion key rotation by making the key files read-only
will try profiling on the staging bridge to help reduce CPU usage of snowflake-server Profile snowflake-server and attempt to reduce CPU usage (#40086) · Issues · The Tor Project / Anti-censorship / Pluggable Transports / Snowflake · GitLab
test deployment of rdsys + bridgedb
next week, will be available to @torproject.org email addresses
aim for production in February
Hetzner networking issue, shall we add it to the timeline
Find more details of the incident and if it has affected any parts of the Tor network
bridgedb and many bridges are in hetzner
== Actions ==
== Interesting links ==
== Reading group ==
We will discuss "Meteor: Cryptographically Secure Steganography for Realistic Distributions" on 2022-02-03
https://dl.acm.org/doi/10.1145/3460120.3484550
Questions to ask and goals to have:
What aspects of the paper are questionable?
Are there immediate actions we can take based on this work?
Are there long-term actions we can take based on this work?
Is there future work that we want to call out, in hopes that others will pick it up?
== Updates ==
Name:
This week:
- What you worked on this week.
Next week:
- What you are planning to work on next week.
Help with:
- Something you need help with.
anadahz: 2022-01-27
Last weeek:
- Increase timeout check cycles for default-bridge-felix-1 and default-bridge-felix-2 as they have been generating too many alerts: Increase number of cycles for felix bridges (!1) · Merge requests · The Tor Project / Anti-censorship / monit-configuration · GitLab
cecylia (cohosh): last updated 2022-01-27
Last week:
- filed shadow bug: getaddrinfo tests work on linux but fail in Shadow · Issue #1869 · shadow/shadow · GitHub
- lots of reviews
- roadmapping and documentation writing
- sponsor reports
- reached out to default bridge operators about down or unreliable bridges
- helped with deployment of bridge-port-scan fixes
This week:
- more reviews
- finish documenting and cleaning up shadow simulation scripts
- use these snowflake + shadow scripts to do more performance testing
- start looking at what is needed for a tapdance/conjure PT
- write up more documentation
Needs help with:
dcf: 2022-01-27
Last week:
- set up load balanced staging bridge for snowflake, monitored its switchover from the production bridge Add load balancing to bridge (#40095) · Issues · The Tor Project / Anti-censorship / Pluggable Transports / Snowflake · GitLab [tor-relays] How to reduce tor CPU load on a single bridge? - #16 by dcf
Next week:
- test the read-only file idea for preventing onion key rotation [tor-relays] How to reduce tor CPU load on a single bridge? - #16 by dcf
- upgrade the snowflake production bridge for load balancing Add load balancing to bridge (#40095) · Issues · The Tor Project / Anti-censorship / Pluggable Transports / Snowflake · GitLab
- switch snowflake DNS records back to the production bridge Set DNS record for snowflake.torproject.net back to production bridge (#40602) · Issues · The Tor Project / TPA / TPA team · GitLab
- before switching over, enable profiling on the staging bridge for Profile snowflake-server and attempt to reduce CPU usage (#40086) · Issues · The Tor Project / Anti-censorship / Pluggable Transports / Snowflake · GitLab
Help with:
agix: 2021-01-13
Last week:
- Busy with work on Censored Planet
Next week:
- Continue work on gettor-twitter
Help with:
-
arlolra: 2022-01-20
Last week:
- [added 2022-01-20 by dcf] ALPN support for pion DTLS Implement rfc7301 by arlolra · Pull Request #415 · pion/dtls · GitHub
Next week:
- Figure out where in pion/webrtc ALPN should be configured and used
- Maybe add Chacha20Poly1305 to pion/dtls
GitHub - pion/dtls: DTLS 1.2 Server/Client implementation for Go
Help with:
-
maxb: 2021-09-23
Last week:
- Worked on uTLS for broker negotiation (#40054) · Issues · The Tor Project / Anti-censorship / Pluggable Transports / Snowflake · GitLab re: utls for broker negotiation
- Had conversation with someone about upstream utls http round tripper feat: sketch out utls http.RoundTripper by bassosimone · Pull Request #74 · refraction-networking/utls · GitHub
- Too busy with work
Next week:
- _Really_ want to get a PR for utls round tripper
meskio: 2022-01-27
Last week:
- select the type of bridges distributed by each distributor (rdsys#63)
- add a third pool to the telegram bot (team#53)
- rdsys/bridgedb setup coordination with tpa (tpa/team#40581)
- update gettor links (gettor#85)
- implement country block mechanism for rdsys and bridgedb (bridgedb#40036)
Next week:
- test deployment for the new rdsys/bridgedb setup (rdsys#12)
- make easier to test bridgedb ater rdsys change (bridgedb#40034)
- check whats up with obfs4 security fixes
Shelikhoo: 2022-01-27
Last Week:
- [Merge Request Awaiting] Add SOCKS5 forward proxy support to snowflake(snowflake!64)
- [Merge Request Awaiting] Privacy preserving stats in Snowflake standalone proxy(snowflake#40079, snowflake!72)
- [Merge Request Done] Add Google backend support for gettor updater(rdsys!19)
- [Merge Request Done] Add callbacks in the client for key events during snowflake connections(snowflake#40076)
- [Discussion] Implement metrics to measure snowflake churn(snowflake#34075)
- [Discussion] Proposal: Support for Dynamic IP obfs4 bridges with unattended proxy information update(aka "Subscription")
- [Discussion] Proposal: Push Notification Based Signaling Channel
- [Discussion] Proposal: Centralized Probe Result Collector(anti-censorship/team#54)
- [Investigate] Is there a better moat/snowflake SNI than cdn.sstatic.net? (snowflake#40068)
- [Investigate] Multi-instance Load Balanced Tor - Snowflake Deployment
- [Investigate] China "Anti-Fraud" Webpage Redirection Censorship(censorship-analysis#40026)
Next Week:
- [Discussion] Designing the Container Layout for rdsys
- [Discussion] Implement metrics to measure snowflake churn (snowflake#34075)
- [Discussion] Proposal: Push Notification Based Signaling Channel
- [Merge Request] Privacy preserving stats in Snowflake standalone proxy(snowflake#40079, snowflake!72)
- [Merge Request Review] Configure what distributor does distribute each resource type
- [Discussion] Proposal: Centralized Probe Result Collector(anti-censorship/team#54)
- [Investigate] uTLS for broker negotiation
HackerNCoder: 2021-12-16
This week:
Last/done:
Setup web mirror on tor.encryptionin.space
Next:
Get (new VPs with) new IP and setup new web mirror on new domain
hanneloresx: 2021-3-4
Last week:
- Submitted MR for bridgestrap issue #14
Next week:
- Finish bridgestrap #14
- Find new issue to work on
Help with:
-
--
meskio | https://meskio.net/
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
My contact info: https://meskio.net/crypto.txt
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Nos vamos a Croatan.