[tor-project] Anti-censorship team meeting notes, 2022-08-11

meskio meskio at torproject.org
Thu Aug 11 17:03:01 UTC 2022 

Hey everyone!

Here are our meeting logs:
http://meetbot.debian.net/tor-meeting/2022/tor-meeting.2022-08-11-15.58.html  

And our meeting pad:

Anti-censorship work meeting pad

--------------------------------

Next meeting: Thursday Aug 18 16:00 UTC

Weekly meetings, every Thursday at 16:00 UTC, in #tor-meeting at OFTC
(channel is logged while meetings are in progress)

== Goal of this meeting ==

Weekly check-in about the status of anti-censorship work at Tor.
Coordinate collaboration between people/teams on anti-censorship at Tor.

== Links to Useful documents ==

	* Our anti-censorship roadmap:
		* Roadmap: https://gitlab.torproject.org/groups/tpo/anti-censorship/-/boards
	* The anti-censorship team's wiki page:
		* https://gitlab.torproject.org/tpo/anti-censorship/team/-/wikis/home
	* Past meeting notes can be found at:
		* https://lists.torproject.org/pipermail/tor-project/
	* Tickets that need reviews:  from sponsors we are working on:
		* All needs review tickets:
			* https://gitlab.torproject.org/groups/tpo/anti-censorship/-/merge_requests?scope=all&utf8=%E2%9C%93&state=opened&assignee_id=None
		* Sponsor 28
			* must-do tickets: https://gitlab.torproject.org/groups/tpo/-/milestones/10
			* possible tickets: https://gitlab.torproject.org/groups/tpo/-/issues?scope=all&utf8=%E2%9C%93&state=opened&label_name%5b%5d=Sponsor%2028&milestone_title=None
		* Sponsor 96
			* https://gitlab.torproject.org/groups/tpo/-/milestones/24

== Announcements ==

	* 

== Discussion ==


	* What is the status of adjusting snowflake (pion) DTLS signature to avoid blocking in Russia? (Based on offset of supported_groups extension.)
		* https://gitlab.torproject.org/tpo/anti-censorship/censorship-analysis/-/issues/40030#note_2804998
		* https://github.com/pion/dtls/pull/474
		* https://ntc.party/t/webrtc/2174/21
		* https://gitlab.torproject.org/tpo/community/support/-/issues/40050 (generally)
		* shell have produced a TB tgz with a modified snowflake to test
			* https://people.torproject.org/~shelikhoo/dqo8apcai4/tor-browser/tor-browser-11.5a13-linux-x86_64-176893/tor-browser-linux64-11.5a13_en-US.tar.xz
		* shell will post it on ntc and tor forum
			* https://ntc.party/t/testing-invitation-for-tor-browser-with-supported-groups-patch-countermeasure-in-snowflake-to-evade-censorship-observed-in-russia/2837
			* (Not working???)
			* >>> Request a packet capture
			* https://forum.torproject.net/t/testing-invitation-for-tor-browser-with-supported-groups-patch-countermeasure-in-snowflake-to-evade-censorship-observed-in-russia/4029
			* (No reply #~#)
			* User reports that the problem now is the presence of a Hello Verify Request message
				* https://gitlab.torproject.org/tpo/anti-censorship/censorship-analysis/-/issues/40030#note_2823140
		* This discussion will be moved to censorship-analysis#40030 and remove from the pad


	* Snowflake
		* Umbrel asked us: "If you push multi-architecture builds to Docker Hub after your releases automatically, it would just be super simple PR to update the version number and checksum to keep Umbrel up to date". https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snowflake/-/issues/40169
			* we are not conforably giving gitlab access to push images to docker hub
			* but we can build binaries in the CI

(New)
	* Use azure as snowflake's fronting service: context -> Turkmenistan meek working, snowflake blocked https://gitlab.torproject.org/tpo/anti-censorship/censorship-analysis/-/issues/40029#note_2826894 https://gitlab.torproject.org/tpo/anti-censorship/censorship-analysis/-/issues/40024#note_2826883 src shell (conflicting evidence: https://snowflake-broker.freehaven.net/metrics shows 1 TM IP, but proxy based test show cover site reachable)
		* meskio will find who has access to meek-azure and if we can change the domain front from the circumvention settings just for TM
		* there is a merge request in tor to fix some issues connecting to Tor from TM: https://gitlab.torproject.org/tpo/core/tor/-/merge_requests/599
		* most obfs4 bridges are blocked as most IP ranges are not reachable from TM

	* HTTPT discussion RFC: https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/httpt/-/issues/1 src shell
		* shell will start working on that proposal

== Actions ==


== Interesting links ==


== Reading group ==

	* We will discuss "" on
		* 
		* Questions to ask and goals to have:
			* What aspects of the paper are questionable?
			* Are there immediate actions we can take based on this work?
			* Are there long-term actions we can take based on this work?
			* Is there future work that we want to call out in hopes that others will pick it up?

== Updates ==

Name:
    This week:
        - What you worked on this week.
    Next week:
        - What you are planning to work on next week.
    Help with:
	     - Something you need help with.

cecylia (cohosh): last updated 2022-06-30
	Last week:
    - got tor to bootstrap fully with the deployed conjure station and bridge
    - met with CU Boulder team to discuss conjure rollout plan
	This week:
    - follow up with CU Boulder team about a wireguard connection between the station and bridge
    - a few quality of life conjure issues
        - https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/conjure/-/issues/?sort=updated_desc&state=opened&assignee_username%5B%5D=cohosh&first_page_size=20
    - draft an announcement of conjure for forum and development community mailing lists
	Needs help with:

dcf: 2022-08-04
	Last week:
		- answered some questions about snowflake polling https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snowflake-webext/-/issues/43#note_2820375 https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snowflake/-/issues/40158#note_2821713
		- snowflake CDN bookkeeping https://gitlab.torproject.org/tpo/anti-censorship/team/-/wikis/Snowflake-costs/diff?version_id=3df00c8ccef8016d2b73aaf851c04343768d3e83
		- made a mirror of shelikhoo's tor-browser-11.5a13-snowflake-dtlslib-20220712-9d73998bca39 https://gitlab.torproject.org/tpo/anti-censorship/team/-/issues/83#note_2822221
		- answered a question about pluggable transports and FascistFirewall https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snowflake/-/issues/40159#note_2822202
		- archived snowflake-webextension-0.6.1 https://archive.org/details/snowflake-webextension-0.6.1
	Next week:
		- disable non-WireGuard SSH access to snowflake-02
		- migrate goptlib to gitlab https://gitlab.torproject.org/tpo/anti-censorship/team/-/issues/86#note_2823122
	Help with:

meskio: 2022-08-11
   Last week:
       - set upa testing environment of rdsys-gettor
       - prepare a deployment of rdsys-gettor
       - catch up after vacation
   Next week:
       - deploy moat shim-token support
       - deploy rdsys-gettor

Shelikhoo: 2022-08-04
   Last Week:
		- [Merge Request Awaiting] Add SOCKS5 forward proxy support to snowflake (snowflake!64)
		- [Discussion & Deployment] Migrating Controlling git repo to Tor Gitlab Instance (shelikhoo/LogCollectorAncillary#5)
		- [Discussion & Deployment] Rollout of Distributed Snowflake Support
		- [Coding & Deployment] Proposal: Centralized Probe Result Collector (anti-censorship/team#54)
		- [Research+Coding] Raw Probe Log Data Collection https://gitlab.torproject.org/tpo/anti-censorship/connectivity-measurement/logcollector/-/issues/1
		- [Investigate] China "Anti-Fraud" Webpage Redirection Censorship (censorship-analysis#40026): update the research based on updated ooni
		- [Merge Request Awaiting] Raw Probe Log Data Collection https://gitlab.torproject.org/tpo/anti-censorship/connectivity-measurement/logcollector/-/issues/1
		- [Research] HTTPT Planning https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/httpt/-/issues/1
		- [Deployment] Enable unprivilaged user namespace support on probetelemetry-01@ for systemd user unit isolation https://gitlab.torproject.org/tpo/tpa/team/-/issues/40855
   Next Week:
		- [Investigate] China "Anti-Fraud" Webpage Redirection Censorship (censorship-analysis#40026): update the research based on updated ooni
		- [Research+Coding] Raw Probe Log Data Collection https://gitlab.torproject.org/tpo/anti-censorship/connectivity-measurement/logcollector/-/issues/1
		- [Research] HTTPT Planning(Continue)

Itchy Onion: 2022-08-11
    Last week:
        - Updated snowflake plugin for RACE 2.2.0
    This week:
        - Fixing leaking file descriptor issue




-- 
meskio | https://meskio.net/
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
 My contact info: https://meskio.net/crypto.txt
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Nos vamos a Croatan.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: signature
URL: <http://lists.torproject.org/pipermail/tor-project/attachments/20220811/946958a1/attachment.sig>

More information about the tor-project mailing list