[tor-project] Anti-censorship meeting notes

meskio meskio at torproject.org
Thu Jul 1 16:48:39 UTC 2021


Hey everyone!                                                                                                                                                                                                                                 
                                                                                                                                                                                                                                              
Here are our meeting logs:                                                                                                                                                                                                                    
                                                                                                                                                                                                                                              
http://meetbot.debian.net/tor-meeting/2021/tor-meeting.2021-07-01-15.59.html
                                                                                                                                                                                                                                              
and our meeting pad:

Anti-censorship work meeting pad
--------------------------------

Next meeting: Thursday July 1st 16:00 UTC

Weekly meetings, every Thursday at 16:00 UTC, in #tor-meeting at OFTC (channel is logged while meetings are in progress)

== Goal of this meeting ==

Weekly checkin about the status of anti-censorship work at Tor.
Coordinate collaboration between people/teams on anti-censorship at Tor.

== Links to Useful documents ==

    Our anti-censorship roadmap:

    Roadmap: https://gitlab.torproject.org/groups/tpo/anti-censorship/-/boards

    The anti-censorship team's wiki page:

    https://gitlab.torproject.org/tpo/anti-censorship/team/-/wikis/home

    Past meeting notes can be found at:

    https://lists.torproject.org/pipermail/tor-project/

    Tickets that need reviews:  from sponsors we are working on:

    All needs review tickets: https://gitlab.torproject.org/groups/tpo/anti-censorship/-/merge_requests?scope=all&utf8=%E2%9C%93&state=opened&assignee_id=None

    Sponsor 30

    https://gitlab.torproject.org/groups/tpo/-/milestones/4

    https://gitlab.torproject.org/groups/tpo/-/milestones/7

    https://gitlab.torproject.org/groups/tpo/-/milestones/5

    https://gitlab.torproject.org/groups/tpo/-/milestones/6

    Sponsor 28

    must-do tickets: https://gitlab.torproject.org/groups/tpo/-/milestones/10

    possible tickets: https://gitlab.torproject.org/groups/tpo/-/issues?scope=all&utf8=%E2%9C%93&state=opened&label_name%5b%5d=Sponsor%2028&milestone_title=None

    Public bug-reporting pad:

    https://pad.riseup.net/p/tor-anti-censorship-bugs-keep <-- we have anonymous tickets handling now. Let's see which anti-censorship repos to include.


== Announcements ==



== Discussion ==

    Potential to increase Snowflake performance by increasing buffer sizes. Any questions about this?

    https://lists.torproject.org/pipermail/anti-censorship-team/2021-July/000178.html

    For what KCP and smux are and how they fit together, see a summary at https://github.com/net4people/bbs/issues/14

    it will increase the memory consumption of the client, not the proxies. Not measured yet, not sure if it might affect on android devices.

    There was previos work modifying the KCP window size, but but smux buffer size should have a bigger effect https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snowflake/-/issues/40026 

    cohosh has scripts for snowflake performance testing somewhere

    golang TLS implementation fingerprinting: https://ooni.org/post/making-ooni-probe-android-more-resilient/#changing-our-android-tls-fingerprint

    in some countries golang TLS fingerprint in android triggers a blocking, not sure if that could affect snowflake

    there is already an issue about DTLS fingerprinting https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snowflake/-/issues/40014

    A list of snowflake detection research so far is at https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snowflake/-/wikis/Fingerprinting

     a script for Zeek (then it was called Bro) for extracting DTLS fingerprints for research purposes. https://github.com/miagilepner/DTLS-fingerprint

    Another point, for TLS fingerprinting in general, see https://tlsfingerprint.io/ and https://tlsfingerprint.io/static/frolov2019.pdf

    there is a TLS fingerprinting tool called JA3: https://github.com/salesforce/ja3

    dtls is not in the golang standard library, we get it from pion: https://github.com/pion/dtls


== Actions ==



== Interesting links ==

    https://www.vyprvpn.com/features/chameleon

    found linked from https://ntc.party/t/rkn-will-try-to-block-the-following-vpn-services/1022/30



== Reading group ==

    We will discuss "" on 


    Questions to ask and goals to have:

    What aspects of the paper are questionable?

    Are there immediate actions we can take based on this work?

    Are there long-term actions we can take based on this work?

    Is there future work that we want to call out, in hopes that others will pick it up?


== Updates ==

Name:
    This week:
        - What you worked on this week.
    Next week:
        - What you are planning to work on next week.
    Help with:

         - Something you need help with.


cecylia (cohosh): last updated 2021-06-24
Last week:
    - wrote, deployed snowflake!43 to solve a stats bug
    - fixed up snowflake!42 and found a few more race conditions
    - commented on bridgestrap#15
    - worked on debugging snowflake memory leak (snowflake#40052)
        - deployed some memory profiling tools
        - wrote a fix snowflake!45
    - started reviewing rdsys!11
    - s28 deadline work
    - planning for new s96
    - reviewed bridgedb!20
This week:
    - finish reviewing rdsys!11
    - review bridgstrap#15 when ready
    - work on bridgedb#32276 deployment
    - follow up on arlo's snowflake broker work
    - afk next week
Needs help with:
    - review of snowflake!45

arlolra: 2021-06-10

    Last week:

    - More snowflake!39

    Next week:

    - Maybe get back to snowflake-webext #10

    Help with:

    - snowflake !39


dcf: 2021-07-01

    Last week:

    - posted about increasing performance by enlarging smux buffers in snowflake https://lists.torproject.org/pipermail/anti-censorship-team/2021-July/000178.html

    - reviewed fix for snowflake server resource leak https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snowflake/-/merge_requests/45

    Next week:

    - AMP cache rendezvous for snowflake https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snowflake/-/issues/25985

    Help with:


agix:2021-07-01

    Last week:

    -Off till next week due to final exams

    Next week:

    -Work on bridgebox for rdsys

    -More research on httpt #4 

    Help with:

    -


hanneloresx: 2021-3-4

    Last week: 

    - Submitted MR for bridgestrap issue #14

    Next week:

    - Finish bridgestrap #14

    - Find new issue to work on

    Help with:

    - 


maxb: 2021-06-03

    Last week:

    - Made some improvements to github.com/max-b/nat-testing for https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snowflake/-/issues/25595 

    - Now have separate containers for each piece along w/ a reasonably simulated network topology

    - Got really good feedback from cohosh as always

    Next week:

    - Make config fixes cohosh suggested

    - Implement alternative NAT types

    - Add testing wrapper w/ "pass/fail" conditions


meskio: 2021-07-01

    Last week:

          - OONI training

          - modify snowflake proxy to assign proxies based on self-reported client load (snowflake#40048)

          - add collector metricst to bridgestrap (bridgestrap#15)

          - brainstorm on bridgedb using the user location (bridgedb#31875)

        - act on snowflake!11 review

    Next week: 

    - continue work on gettor in rdsys (rdsys!11 rdsys#32)

    Help with:

    - 


-- 
meskio | https://meskio.net/
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
 My contact info: https://meskio.net/crypto.txt
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Nos vamos a Croatan.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: signature
URL: <http://lists.torproject.org/pipermail/tor-project/attachments/20210701/766541e5/attachment.sig>


More information about the tor-project mailing list