[tor-project] Anti-censorship team meeting notes, 2023-02-16

Hey everyone!

Here are our meeting logs:

And our meeting pad:

Anti-censorship work meeting pad




Next meeting: Thursday, February 23 16:00 UTC

Weekly meetings, every Thursday at 16:00 UTC, in #tor-meeting at OFTC
(channel is logged while meetings are in progress)

== Goal of this meeting ==

Weekly check-in about the status of anti-censorship work at Tor.
Coordinate collaboration between people/teams on anti-censorship at the Tor Project and Tor community.

== Links to Useful documents ==

 \* Our anti\-censorship roadmap:
     \* Roadmap: https://gitlab.torproject.org/groups/tpo/anti-censorship/-/boards
 \* The anti\-censorship team's wiki page:
     \* https://gitlab.torproject.org/tpo/anti-censorship/team/-/wikis/home
 \* Past meeting notes can be found at:
     \* https://lists.torproject.org/pipermail/tor-project/
 \* Tickets that need reviews:  from sponsors, we are working on:
     \* All needs review tickets:
         \* https://gitlab.torproject.org/groups/tpo/anti-censorship/-/merge_requests?scope=all&utf8=%E2%9C%93&state=opened&assignee_id=None
     \* Sponsor 28
         \* must\-do tickets: https://gitlab.torproject.org/groups/tpo/-/milestones/10
         \* possible\-do tickets: https://gitlab.torproject.org/groups/tpo/-/issues?scope=all&utf8=%E2%9C%93&state=opened&label_name%5b%5d=Sponsor%2028&milestone_title=None
     \* Sponsor 96
         \* https://gitlab.torproject.org/groups/tpo/-/milestones/24
     \* Sponsor 139 <\-\- hackerncoder, irl, joydeep, meskio, emmapeel working on it
         \* https://pad.riseup.net/p/sponsor139-meeting-pad

== Announcements ==

 \* Tor Browser 12\.0\.3 released with Hello Verify Request mitigation for Snowflake
     \* https://blog.torproject.org/new-release-tor-browser-1203/
     \* we are in the process of upstreaming, last remaining piece is https://github.com/pion/webrtc/pull/2407
     \* success reports:
         \* https://ntc.party/t/second-snowflake-bridge-available-for-testing/3445/12
         \* https://gitlab.torproject.org/tpo/anti-censorship/connectivity-measurement/bridgestatus/-/blob/main/recentResult_russia

== Discussion ==

 \* What is the status of activating the snowflake\-02 bridge in Orbot?
     \* snowflake\-01 is still pretty much saturated, and snowflake\-02 relatively almost unused
     \* no news yet from Orbot on status of deployment
     \* latest Orbot release was 2023\-01\-13
     \* will add to S96 agenda and discuss in 2 weeks if they are not around
 \* Proposal for reading group:
     \* https://www.ndss-symposium.org/wp-content/uploads/madweb2021_23011_paper.pdf
     \* Detecting Tor Bridge from Sampled Traffic in Backbone Networks
     \* "Current researches on Tor bridge detection have used a small amount of complete traffic, which makes their methods not very practical in the backbone network\. In this paper, we proposed a method for the detection of obfs4 bridge in backbone networks\. To solve current limitations, we sample traffic to reduce the amount of data and put forward the Nested Count Bloom Filter structure to process the sampled network traffic\. Besides, we extract features that can be used for bridge detection after traffic sampling\. The experiment uses real backbone network traffic mixed with Tor traffic for verification\."

== Actions ==

 \* We should make a ticket for pion to cache its stun answers when possible, because right now it surprises us by asking way more stun questions than it actually needs to\.
     \* is this about DNS?
     \* BTW stun\.stunprotocol\.org is going away: https://groups.google.com/g/stunprotocol/c/upVwaG97ggY/m/3ddUBGA_FAAJ
         \* it's been removed from proxies and Tor Browser clients \(https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snowflake/-/issues/40241) and circumvention settings, but is likely still being used by Orbot
 \* We might want to be able to spin up our own stun servers, on our own ip/port, for debugging\. We should talk to TPA about that goal at some point \(not urgent\)\.

== Interesting links ==


== Reading group ==

 \* We will discuss "Detecting Tor Bridge from Sampled Traffic in Backbone Networks" on March 9
     \* https://www.ndss-symposium.org/wp-content/uploads/madweb2021_23011_paper.pdf
     \* Questions to ask and goals to have:
         \* What aspects of the paper are questionable?
         \* Are there immediate actions we can take based on this work?
         \* Are there long\-term actions we can take based on this work?
         \* Is there future work that we want to call out in hopes that others will pick it up?

== Updates ==

This week:
- What you worked on this week.
Next week:
- What you are planning to work on next week.
Help with:
- Something you need help with.

cecylia (cohosh): last updated 2023-02-16
Last week:
- FOCI workshop prep
- Lox tor browser integration work in progress
- Files · lox-integration · Cecylia Bocovich / Tor Browser · GitLab
This week:
- Lox tor browser integration
- continue work on conjure client-side recovery
Needs help with:

dcf: 2023-02-16
Last week:
- opened issue to restart snowflake bridges for haproxy CVE-2023-0056, CVE-2023-25725 Restart snowflake bridges for haproxy CVE-2023-0056, CVE-2023-25725 (#40253) · Issues · The Tor Project / Anti-censorship / Pluggable Transports / Snowflake · GitLab
Next week:
- restart snowflake bridges Restart snowflake bridges for haproxy CVE-2023-0056, CVE-2023-25725 (#40253) · Issues · The Tor Project / Anti-censorship / Pluggable Transports / Snowflake · GitLab
- migrate goptlib to gitlab migrate away from git.torproject.org (#86) · Issues · The Tor Project / Anti-censorship / Team · GitLab (for real)
Help with:

meskio: 2023-02-16
Last week:
- integrate onbasca into rdsys to test bridge speed (rdsys#150)
- UAE circumvention settings configuration doesn't seem to be necesary (team#106)
- merge whatsapp integration in rdsys (rdsys#74)
- review bridgestatus README (bridgestatus!1)
Next week:
- integrate onbasca into rdsys to test bridge speed (rdsys#150)
- deploy onbasca in polyanthum

Shelikhoo: 2023-02-16
Last Week:
- [Merge Request Awaiting] Add SOCKS5 forward proxy support to snowflake (snowflake!64)
- [Research] HTTPT Planning Add HTTPT as a pluggable transport to Tor Browser (#1) · Issues · The Tor Project / Anti-censorship / Pluggable Transports / HTTPT · GitLab
- Try to find a place to host another vantage point(not working so far)
- WebTunnel @ TorBrowser mobile
Next Week:
- [Research] WebTunnel planning (Continue)
- Try to find a place to host another vantage point
- WebTunnel @ TorBrowser mobile

onyinyang: 2023-02-16
Last week:
- Lox wasm bindings for Tor integration:
- public keys
- open invitation
- trust promotion
- trust migration
This week:
- continuing with bindings for the rest of the Lox protocols:
- encrypted bridge table
- level up
- issue invitation
- check blockage
- blockage migration
Help with:
- questions about best way to handle timing for freshness credentials (fresh for x time period or fresh until x time each day)<this is not especially urgent>

Itchy Onion: 2023-02-16
Last week:
- Continue working on issue #40108 (standalone proxy bind specific IP)
- RACE T&E meeting
This week:
- Continue working on issue #40108 (standalone proxy bind specific IP)
- Created issue #40252 (NAT probetest for standalone proxy)
- Foci
- Work on updating snowflake plugin for the latest race version (code freeze on Friday)

hackerncoder: 2023-02-02
last week:
- Lunar New Year break
Next week:
- getting ooni-exporter to work with torsf (snowflake)
- work on monitoring bridges health
- work on "bridgetester"?

cece: 2022-12-22
This week:
- working on creating a dummy WhatsApp bot
Next week:
- My bot is not yet working as expected s? still trying to figure that out
Help with:
- resources