[tor-project] Anti-censorship meeting notes
meskio
meskio at torproject.org
Thu Jul 1 16:48:39 UTC 2021
Hey everyone!
Here are our meeting logs:
http://meetbot.debian.net/tor-meeting/2021/tor-meeting.2021-07-01-15.59.html
and our meeting pad:
Anti-censorship work meeting pad
--------------------------------
Next meeting: Thursday July 1st 16:00 UTC
Weekly meetings, every Thursday at 16:00 UTC, in #tor-meeting at OFTC (channel is logged while meetings are in progress)
== Goal of this meeting ==
Weekly checkin about the status of anti-censorship work at Tor.
Coordinate collaboration between people/teams on anti-censorship at Tor.
== Links to Useful documents ==
Our anti-censorship roadmap:
Roadmap: https://gitlab.torproject.org/groups/tpo/anti-censorship/-/boards
The anti-censorship team's wiki page:
https://gitlab.torproject.org/tpo/anti-censorship/team/-/wikis/home
Past meeting notes can be found at:
https://lists.torproject.org/pipermail/tor-project/
Tickets that need reviews: from sponsors we are working on:
All needs review tickets: https://gitlab.torproject.org/groups/tpo/anti-censorship/-/merge_requests?scope=all&utf8=%E2%9C%93&state=opened&assignee_id=None
Sponsor 30
https://gitlab.torproject.org/groups/tpo/-/milestones/4
https://gitlab.torproject.org/groups/tpo/-/milestones/7
https://gitlab.torproject.org/groups/tpo/-/milestones/5
https://gitlab.torproject.org/groups/tpo/-/milestones/6
Sponsor 28
must-do tickets: https://gitlab.torproject.org/groups/tpo/-/milestones/10
possible tickets: https://gitlab.torproject.org/groups/tpo/-/issues?scope=all&utf8=%E2%9C%93&state=opened&label_name%5b%5d=Sponsor%2028&milestone_title=None
Public bug-reporting pad:
https://pad.riseup.net/p/tor-anti-censorship-bugs-keep <-- we have anonymous tickets handling now. Let's see which anti-censorship repos to include.
== Announcements ==
== Discussion ==
Potential to increase Snowflake performance by increasing buffer sizes. Any questions about this?
https://lists.torproject.org/pipermail/anti-censorship-team/2021-July/000178.html
For what KCP and smux are and how they fit together, see a summary at https://github.com/net4people/bbs/issues/14
it will increase the memory consumption of the client, not the proxies. Not measured yet, not sure if it might affect on android devices.
There was previos work modifying the KCP window size, but but smux buffer size should have a bigger effect https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snowflake/-/issues/40026
cohosh has scripts for snowflake performance testing somewhere
golang TLS implementation fingerprinting: https://ooni.org/post/making-ooni-probe-android-more-resilient/#changing-our-android-tls-fingerprint
in some countries golang TLS fingerprint in android triggers a blocking, not sure if that could affect snowflake
there is already an issue about DTLS fingerprinting https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snowflake/-/issues/40014
A list of snowflake detection research so far is at https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snowflake/-/wikis/Fingerprinting
a script for Zeek (then it was called Bro) for extracting DTLS fingerprints for research purposes. https://github.com/miagilepner/DTLS-fingerprint
Another point, for TLS fingerprinting in general, see https://tlsfingerprint.io/ and https://tlsfingerprint.io/static/frolov2019.pdf
there is a TLS fingerprinting tool called JA3: https://github.com/salesforce/ja3
dtls is not in the golang standard library, we get it from pion: https://github.com/pion/dtls
== Actions ==
== Interesting links ==
https://www.vyprvpn.com/features/chameleon
found linked from https://ntc.party/t/rkn-will-try-to-block-the-following-vpn-services/1022/30
== Reading group ==
We will discuss "" on
Questions to ask and goals to have:
What aspects of the paper are questionable?
Are there immediate actions we can take based on this work?
Are there long-term actions we can take based on this work?
Is there future work that we want to call out, in hopes that others will pick it up?
== Updates ==
Name:
This week:
- What you worked on this week.
Next week:
- What you are planning to work on next week.
Help with:
- Something you need help with.
cecylia (cohosh): last updated 2021-06-24
Last week:
- wrote, deployed snowflake!43 to solve a stats bug
- fixed up snowflake!42 and found a few more race conditions
- commented on bridgestrap#15
- worked on debugging snowflake memory leak (snowflake#40052)
- deployed some memory profiling tools
- wrote a fix snowflake!45
- started reviewing rdsys!11
- s28 deadline work
- planning for new s96
- reviewed bridgedb!20
This week:
- finish reviewing rdsys!11
- review bridgstrap#15 when ready
- work on bridgedb#32276 deployment
- follow up on arlo's snowflake broker work
- afk next week
Needs help with:
- review of snowflake!45
arlolra: 2021-06-10
Last week:
- More snowflake!39
Next week:
- Maybe get back to snowflake-webext #10
Help with:
- snowflake !39
dcf: 2021-07-01
Last week:
- posted about increasing performance by enlarging smux buffers in snowflake https://lists.torproject.org/pipermail/anti-censorship-team/2021-July/000178.html
- reviewed fix for snowflake server resource leak https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snowflake/-/merge_requests/45
Next week:
- AMP cache rendezvous for snowflake https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snowflake/-/issues/25985
Help with:
agix:2021-07-01
Last week:
-Off till next week due to final exams
Next week:
-Work on bridgebox for rdsys
-More research on httpt #4
Help with:
-
hanneloresx: 2021-3-4
Last week:
- Submitted MR for bridgestrap issue #14
Next week:
- Finish bridgestrap #14
- Find new issue to work on
Help with:
-
maxb: 2021-06-03
Last week:
- Made some improvements to github.com/max-b/nat-testing for https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snowflake/-/issues/25595
- Now have separate containers for each piece along w/ a reasonably simulated network topology
- Got really good feedback from cohosh as always
Next week:
- Make config fixes cohosh suggested
- Implement alternative NAT types
- Add testing wrapper w/ "pass/fail" conditions
meskio: 2021-07-01
Last week:
- OONI training
- modify snowflake proxy to assign proxies based on self-reported client load (snowflake#40048)
- add collector metricst to bridgestrap (bridgestrap#15)
- brainstorm on bridgedb using the user location (bridgedb#31875)
- act on snowflake!11 review
Next week:
- continue work on gettor in rdsys (rdsys!11 rdsys#32)
Help with:
-
--
meskio | https://meskio.net/
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
My contact info: https://meskio.net/crypto.txt
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Nos vamos a Croatan.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: signature
URL: <http://lists.torproject.org/pipermail/tor-project/attachments/20210701/766541e5/attachment.sig>
More information about the tor-project
mailing list