Hey everyone!
Here are our meeting logs:
http://meetbot.debian.net/tor-meeting/2022/tor-meeting.2022-04-07-15.59.html
And our meeting pad:
Anti-censorship work meeting pad
-------------------------------- Anti-censorship work meeting pad -------------------------------- Next meeting: Thursday April 14th 16:00 UTC Weekly meetings, every Thursday at 16:00 UTC, in #tor-meeting at OFTC (channel is logged while meetings are in progress) == Goal of this meeting == Weekly checkin about the status of anti-censorship work at Tor. Coordinate collaboration between people/teams on anti-censorship at Tor. == Links to Useful documents == * Our anti-censorship roadmap: * Roadmap: Development · Boards · Anti-censorship · GitLab * The anti-censorship team's wiki page: * Home · Wiki · The Tor Project / Anti-censorship / Team · GitLab * Past meeting notes can be found at: * The tor-project Archives * Tickets that need reviews: from sponsors we are working on: * All needs review tickets: Merge requests · Anti-censorship · GitLab * Sponsor 28 * must-do tickets: Sponsor 28: Reliable Anonymous Communication Evading Censors and Repressors (RACECAR) · The Tor Project · GitLab * possible tickets: Issues · The Tor Project · GitLab * Sponsor 96 * Sponsor 96: Rapid Expansion of Access to the Uncensored Internet through Tor in China, Hong Kong, & Tibet · The Tor Project · GitLab == Announcements == * Next snowflake bridge migration scheduled for next week Set DNS for snowflake.torproject.net to snowflake-01 host (#40716) · Issues · The Tor Project / TPA / TPA team · GitLab == Discussion == * Nickname for second bridge site? Set up a second snowflake bridge site (#40122) · Issues · The Tor Project / Anti-censorship / Pluggable Transports / Snowflake · GitLab * The existing bridge site has nickname "flakey" (actually flakey1, flakey2, etc.), since the second bridge site will have a different fingerprint it should have a different nickname * Can leave suggestions on the issue * Discuss about cooperation with Greatfire (by serene) * keroserene and shelikhoo had a call with Greatfire * one of the topics discussed was collaboration regarding FreeBrowser (https://freebrowser.org/, GitHub - greatfire/freebrowser) and Snowflake * Some notes from the call: Riseup Pad == Actions == * == Interesting links == * Extended DNS Error provides more error codes to indicate why a DNS query failed; code 16 means "censored". (Like status code 451 in HTTP.) RFC 8914: Extended DNS Errors * Ukraine-focused circumvention VPN, only unblocks a handful of sites like VK, Mail.ru * https://zaborona.help/ * Ukraine - #3 by ValdikSS - Ukraine - NTC * Uses static SOCKS proxies? E.g. srv1.vpn.zaborona.help Статистика сети Zaborona VPN == Reading group == * We will discuss "Balboa: Bobbing and Weaving around Network Censorship" on April 7 * https://www.usenix.org/system/files/sec21-rosen.pdf * The Internet censorship bibliography * Questions to ask and goals to have: * What aspects of the paper are questionable? * Are there immediate actions we can take based on this work? * Are there long-term actions we can take based on this work? * Is there future work that we want to call out, in hopes that others will pick it up? == Updates == Name: This week: - What you worked on this week. Next week: - What you are planning to work on next week. Help with: - Something you need help with. anadahz: 2022-01-27 Last week: - Increase timeout check cycles for default-bridge-felix-1 and default-bridge-felix-2 as they have been generating too many alerts: Increase number of cycles for felix bridges (!1) · Merge requests · The Tor Project / Anti-censorship / monit-configuration · GitLab cecylia (cohosh): last updated 2022-03-31 Last week: - onboarded itchy onion onto s28 tasks - reviews - work on conjure PT This week: - continued work on conjure PT - continue to monitor snowflake broker stats Needs help with: dcf: 2022-04-07 Last week: - set up the snowflake bridge's permanent server and scheduled a time for the migration Move bridge to a permanent faster server (#40111) · Issues · The Tor Project / Anti-censorship / Pluggable Transports / Snowflake · GitLab Set DNS for snowflake.torproject.net to snowflake-01 host (#40716) · Issues · The Tor Project / TPA / TPA team · GitLab - opened an issue for tracking the installation of a second bridge site Set up a second snowflake bridge site (#40122) · Issues · The Tor Project / Anti-censorship / Pluggable Transports / Snowflake · GitLab - approved last piece of forward-fingerprint patch Forward bridge fingerprint (!81) · Merge requests · The Tor Project / Anti-censorship / Pluggable Transports / Snowflake · GitLab - posted hints about CPU profiling snowflake-webext in Chrome Snowflake extension on Firefox uses 100% cpu and stays there (#30) · Issues · The Tor Project / Anti-censorship / Pluggable Transports / Snowflake WebExtension · GitLab - more correspondence with OTF about a rapid response grant for the snowflake bridge Next week: - look at STATUS VERSION proposal Add STATUS VERSION message for PT protcol (!63) · Merge requests · The Tor Project / Core / Tor Specifications · GitLab - install second snowflake bridge site Set up a second snowflake bridge site (#40122) · Issues · The Tor Project / Anti-censorship / Pluggable Transports / Snowflake · GitLab Help with: agix: 2021-02-10 Last week: - Continued work on gettor-twitter Next week: - Hopefully finish the task Help with: - arlolra: 2022-04-07 Last week: - Merged the rest of snowflake !81 Next week: - Get to snowflake-webext #10 Evergreen: - Figure out where in pion/webrtc ALPN should be configured and used - Maybe add Chacha20Poly1305 to pion/dtls GitHub - pion/dtls: DTLS 1.2 Server/Client implementation for Go Make Snowflake's DTLS fingerprint more similar to popular WebRTC implementations (#40014) · Issues · The Tor Project / Anti-censorship / Pluggable Transports / Snowflake · GitLab Help with: - maxb: 2021-09-23 Last week: - Worked on uTLS for broker negotiation (#40054) · Issues · The Tor Project / Anti-censorship / Pluggable Transports / Snowflake · GitLab re: utls for broker negotiation - Had conversation with someone about upstream utls http round tripper feat: sketch out utls http.RoundTripper by bassosimone · Pull Request #74 · refraction-networking/utls · GitHub - Too busy with work 
Next week: - _Really_ want to get a PR for utls round tripper meskio: 2022-04-07 Last week: - document circumvention settings API (bridgedb#40043) - accept bridge distributor request changes (rdsys#104) - investigate bridgestrap reporting odd timing (tor#40592) - review cross compile docker snowflake-proxy (docker-snowflake-proxy!6) Next week: AFK Shelikhoo: 2022-04-07 Last Week: - [Merge Request Awaiting] Add SOCKS5 forward proxy support to snowflake (snowflake!64) - [Coding & Deployment] Proposal: Centralized Probe Result Collector (anti-censorship/team#54) - [Discussion] Centralized Probe Log Collection Ascension Request - [Discussion] Hosting Centralized Probe Log Collection Server on TPA managed VPS - [Discussion] Bridges should report implementation versions of their pluggable transports - [Coding] Add SOCKS5 forward proxy support to snowflake (snowflake!64) - built-in DNS - [Coding] Distributed Snowflake Bridges - Broker(continue) - (Reply a lot of emails) Next Week: - [Coding] Distributed Snowflake Bridges - Broker (continue) Itchy Onion: 2022-04-07 Last week: - snowflake !84 - racecar onboarding This week: - racecar local testing - set up LDAP Help with: - upgrade to be compatible with racecar 2.1.0 HackerNCoder: 2021-12-16 This week: Last/done: Setup web mirror on tor.encryptionin.space Next: Get (new VPs with) new IP and setup new web mirror on new domain hanneloresx: 2021-3-4 Last week: - Submitted MR for bridgestrap issue #14 Next week: - Finish bridgestrap #14 - Find new issue to work on Help with: - ln5: 2022-03-24 Last week: - Received hardware for a new home for snowflake.tpn; discussed OS configuration with dcf in private email Next week: - Install Debian 11 on new snowflake.tpn - Possibly rack new snowflake.tpn, if I can get access and find time to do the transportation Need help with: - Input on urgency appreciated, for my planning - Input on preferred CPU configuration, esp wrt HyperThreading -- lacking input before deployment in data centre, the machine will *not* have HT disabled and CPU bug mitigation will thus have to be carried out by the kernel