- tor-project - lists.torproject.org

Anti-censorship meeting notes, 2026-06-25
by onyinyang 25 Jun '26

25 Jun '26

Hey everyone! Here are our meeting logs: https://meetbot.debian.net/tor-meeting/2026/tor-meeting.2026-06-25-16.00.ht… And our meeting pad: Anti-censorship work meeting pad -------------------------------- Anti-censorship -------------------------------- Next meeting: Thursday, July 2 16:00 UTC Facilitator: shelikhoo ^^^(See Facilitator Queue at tail) Weekly meetings, every Thursday at 16:00 UTC, in #tor-meeting at OFTC (channel is logged while meetings are in progress) This week's Facilitator: onyinyang == Goal of this meeting == Weekly check-in about the status of anti-censorship work at Tor. Coordinate collaboration between people/teams on anti-censorship at the Tor Project and Tor community. == Links to Useful documents == * Our anti-censorship roadmap: * Roadmap:https://gitlab.torproject.org/groups/tpo/anti-censorship/-/boards * The anti-censorship team's wiki page: * https://gitlab.torproject.org/tpo/anti-censorship/team/-/wikis/home * Past meeting notes can be found at: * https://lists.torproject.org/pipermail/tor-project/ * Tickets that need reviews: from projects, we are working on: * All needs review tickets: * https://gitlab.torproject.org/groups/tpo/anti-censorship/-/merge_requests?s… * Projects the TPI anti-censorship team is working on: * Project 146: Expanding access to digital media through the use of secure communications, infrastructure, tools, and techniques * https://gitlab.torproject.org/groups/tpo/anti-censorship/-/issues/?label_na… * Project 170: Monitoring and reporting on censorship against the Tor network * epic: https://gitlab.torproject.org/groups/tpo/-/epics/17 * Project 201: Signaling channels * board https://gitlab.torproject.org/groups/tpo/-/boards/2675?label_name[]=Project… == Announcements == * Tor mid-year break: July 6-10 * no meeting on July 9 == Discussion == * == Actions == * == Interesting links == == Reading group == * We will discuss "" on * * Questions to ask and goals to have: * What aspects of the paper are questionable? * Are there immediate actions we can take based on this work? * Are there long-term actions we can take based on this work? * * Is there future work that we want to call out in hopes that others will pick it up? * Next in the Reading Group Queue: * == Updates == Name: This week: - What you worked on this week. Next week: - What you are planning to work on next week. Help with: - Something you need help with. cecylia (cohosh): 2026-06-25 Last week: - fixed security issue in Snowflake where malformed webrtc offers and answers could cause crashes in the client, proxy, and broker (snowflake#40546) - worked on rate limiting feature of proxy fairness proposal (snowflake#40506) Next week: - continue to review PT spec implementation in UAT - make proxy-bridge reachability checks robust to bridge outages (snowflake#40504) - more work on letting broker inform proxies how often to poll - rate limiting - follow up about running shadow simulations for snowflake performance - revisit conjure integration with lyrebird - take a look at potential snowflake orbot bug - https://github.com/guardianproject/orbot-android/issues/1183 dcf: 2026-06-25 Last week: Next week: - look at issues https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/meek… meek-server session ID file descriptor limit https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/meek… goptlib upgrade in meek Help with: meskio: 2026-06-25 Last week: - telegram distributing bridges with local addresses (rdsys#306) - research security report on rdsys memory exhaustion (rdsys#309) - update meek dependencies (meek!2) Next week: - telegram distributing bridges with local addresses (rdsys#306) Shelikhoo: 2026-06-18 Last Week: - [Testing] Unreliable+unordered WebRTC data channel transport for Snowflake rev2 (cont.)( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) testing environment setup/research - Merge request Reviews - [Research] proxy pool overload and potential blocking in Iran ( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) - [Research] Add three NAT type buckets to the snowflake broker ( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) - Add Socks5 Based Interactive Connectivity Test for snowflake (https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow…) (Done) - [Research] Request for Comment: Rust Library for TLS Fingerprint Imitation with Delegation Route Usage in Tor Browser) https://gitlab.torproject.org/tpo/applications/tor-browser/-/work_items/450… Next (working) Week/TODO: - Merge request reviews - [Deployment]Unreliable+unordered WebRTC data channel transport for Snowflake rev2 (cont.)( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) Building custom Tor Browser with patch applied - Vantage point maintaince - [Research] proxy pool overload and potential blocking in Iran ( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) - [Research] Add three NAT type buckets to the snowflake broker ( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) - Add 3 type nat bucket to snowflake broker - [Research] Request for Comment: Rust Library for TLS Fingerprint Imitation with Delegation Route Usage in Tor Browser) https://gitlab.torproject.org/tpo/applications/tor-browser/-/work_items/450… (cont.) onyinyang: 2026-06-25 Last week(s): - Work for project #170 to detect bridge blocking Next week: - Continue tasks for project #170 Switch back to some of these: As time allows: - Continue work on rdsys#196 - Continue Investigating rdsys#248 i.e., why dysfunctional webtunnel bridges are being distributed - Troubleshooting conjure not connecting in China - waiting for more information from conjure authors/maintainers - Lox still seems to be filling up the disk on the rdsys-test server despite changes made to delete old entries, look into what's going wrong Blog post for conjure: https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/conj… - review Tor browser Lox integration https://gitlab.torproject.org/tpo/applications/tor-browser/-/merge_requests… - add TTL cache to lox MR for duplicate responses: https://gitlab.torproject.org/tpo/anti-censorship/lox/-/merge_requests/305 - Work on outstanding milestone issues: - key rotation automation Later: pending decision on abandoning lox wasm in favour of some kind of FFI? https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/43096) - add pref to handle timing for pubkey checks in Tor browser - add trusted invitation logic to tor browser integration: https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/42974 - improve metrics collection/think about how to show Lox is working/valuable - sketch out Lox blog post/usage notes for forum (long term things were discussed at the meeting!): - brainstorming grouping strategies for Lox buckets (of bridges) and gathering context on how types of bridges are distributed/use in practice Question: What makes a bridge usable for a given user, and how can we encode that to best ensure we're getting the most appropriate resources to people? 1. Are there some obvious grouping strategies that we can already consider? e.g., by PT, by bandwidth (lower bandwidth bridges sacrificed to open-invitation buckets?), by locale (to be matched with a requesting user's geoip or something?) 2. Does it make sense to group 3 bridges/bucket, so trusted users have access to 3 bridges (and untrusted users have access to 1)? More? Less? theodorsm: 2026-05-28 Last weeks: - Researching possible DTLS block in Russia - https://github.com/net4people/bbs/issues/603#issuecomment-4451730751 - Implementing DTLS 1.3 in pion Next weeks: - Implementing DTLS 1.3 in pion Help with: - Facilitator Queue: onyinyang shelikhoo cohosh meskio 1. First available staff in the Facilitator Queue will be the facilitator for the meeting 2. After facilitating the meeting, the facilitator will be moved to the tail of the queue -- --- onyinyang GPG Fingerprint 3CC3 F8CC E9D0 A92F A108 38EF 156A 6435 430C 2036

1 0

nti-censorship meeting notes, 2026-06-18
by meskio 18 Jun '26

18 Jun '26

Hey everyone! Here are our meeting logs: https://meetbot.debian.net/tor-meeting/2026/tor-meeting.2026-06-18-16.00.ht… And our meeting pad: Anti-censorship -------------------------------- Next meeting: Thursday, June 25 16:00 UTC Facilitator: onyinyang ^^^(See Facilitator Queue at tail) Weekly meetings, every Thursday at 16:00 UTC, in #tor-meeting at OFTC (channel is logged while meetings are in progress) This week's Facilitator: meskio == Goal of this meeting == Weekly check-in about the status of anti-censorship work at Tor. Coordinate collaboration between people/teams on anti-censorship at the Tor Project and Tor community. == Links to Useful documents == * Our anti-censorship roadmap: * Roadmap:https://gitlab.torproject.org/groups/tpo/anti-censorship/-/boards * The anti-censorship team's wiki page: * https://gitlab.torproject.org/tpo/anti-censorship/team/-/wikis/home * Past meeting notes can be found at: * https://lists.torproject.org/pipermail/tor-project/ * Tickets that need reviews: from projects, we are working on: * All needs review tickets: * https://gitlab.torproject.org/groups/tpo/anti-censorship/-/merge_requests?s… * Projects the TPI anti-censorship team is working on: * Project 201: Signaling channels * milestone for may https://gitlab.torproject.org/groups/tpo/-/milestones/83 * board https://gitlab.torproject.org/groups/tpo/-/boards/2675?label_name[]=Project… == Announcements == * == Discussion == * TLS imitation route * opened an issue to talk about it with the applications team * https://gitlab.torproject.org/tpo/applications/tor-browser/-/work_items/450… == Actions == * == Interesting links == == Reading group == * We will discuss "" on * * Questions to ask and goals to have: * What aspects of the paper are questionable? * Are there immediate actions we can take based on this work? * Are there long-term actions we can take based on this work? * * Is there future work that we want to call out in hopes that others will pick it up? * Next in the Reading Group Queue: * == Updates == Name: This week: - What you worked on this week. Next week: - What you are planning to work on next week. Help with: - Something you need help with. cecylia (cohosh): 2026-06-18 Last week: - lead a learning session on snowflake prometheus metrics at all hands - started implementation of rate limiting feature of proxy fairness proposal - reviews Next week: - continue to review PT spec implementation in UAT - make proxy-bridge reachability checks robust to bridge outages (snowflake#40504) - more work on letting broker inform proxies how often to poll - monitor proxy poll rates and adjust as needed - follow up about running shadow simulations for snowflake performance - revisit conjure integration with lyrebird - take a look at potential snowflake orbot bug - https://github.com/guardianproject/orbot-android/issues/1183 dcf: 2026-06-18 Last week: Next week: Help with: meskio: 2026-06-18 Last week: - make debian packages of lyrebird, snowflake and webtunnel with goreleaser (tpa/team#42549) Next week: - telegram distributing bridges with local addresses (rdsys#306) Shelikhoo: 2026-06-18 Last Week: - [Testing] Unreliable+unordered WebRTC data channel transport for Snowflake rev2 (cont.)( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) testing environment setup/research - Merge request Reviews - [Research] proxy pool overload and potential blocking in Iran ( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) - [Research] Add three NAT type buckets to the snowflake broker ( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) - Add Socks5 Based Interactive Connectivity Test for snowflake (https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow…) (Done) - [Research] Request for Comment: Rust Library for TLS Fingerprint Imitation with Delegation Route Usage in Tor Browser) https://gitlab.torproject.org/tpo/applications/tor-browser/-/work_items/450… Next (working) Week/TODO: - Merge request reviews - [Deployment]Unreliable+unordered WebRTC data channel transport for Snowflake rev2 (cont.)( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) Building custom Tor Browser with patch applied - Vantage point maintaince - [Research] proxy pool overload and potential blocking in Iran ( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) - [Research] Add three NAT type buckets to the snowflake broker ( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) - Add 3 type nat bucket to snowflake broker - [Research] Request for Comment: Rust Library for TLS Fingerprint Imitation with Delegation Route Usage in Tor Browser) https://gitlab.torproject.org/tpo/applications/tor-browser/-/work_items/450… (cont.) onyinyang: 2026-06-18 Last week(s): - Work for project #170 to detect bridge blocking Next week: - Continue tasks for project #170 Switch back to some of these: As time allows: - Continue work on rdsys#196 - Continue Investigating rdsys#248 i.e., why dysfunctional webtunnel bridges are being distributed - Troubleshooting conjure not connecting in China - waiting for more information from conjure authors/maintainers - Lox still seems to be filling up the disk on the rdsys-test server despite changes made to delete old entries, look into what's going wrong Blog post for conjure: https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/conj… - review Tor browser Lox integration https://gitlab.torproject.org/tpo/applications/tor-browser/-/merge_requests… - add TTL cache to lox MR for duplicate responses: https://gitlab.torproject.org/tpo/anti-censorship/lox/-/merge_requests/305 - Work on outstanding milestone issues: - key rotation automation Later: pending decision on abandoning lox wasm in favour of some kind of FFI? https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/43096) - add pref to handle timing for pubkey checks in Tor browser - add trusted invitation logic to tor browser integration: https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/42974 - improve metrics collection/think about how to show Lox is working/valuable - sketch out Lox blog post/usage notes for forum (long term things were discussed at the meeting!): - brainstorming grouping strategies for Lox buckets (of bridges) and gathering context on how types of bridges are distributed/use in practice Question: What makes a bridge usable for a given user, and how can we encode that to best ensure we're getting the most appropriate resources to people? 1. Are there some obvious grouping strategies that we can already consider? e.g., by PT, by bandwidth (lower bandwidth bridges sacrificed to open-invitation buckets?), by locale (to be matched with a requesting user's geoip or something?) 2. Does it make sense to group 3 bridges/bucket, so trusted users have access to 3 bridges (and untrusted users have access to 1)? More? Less? theodorsm: 2026-05-28 Last weeks: - Researching possible DTLS block in Russia - https://github.com/net4people/bbs/issues/603#issuecomment-4451730751 - Implementing DTLS 1.3 in pion Next weeks: - Implementing DTLS 1.3 in pion Help with: - Facilitator Queue: onyinyang shelikhoo cohosh meskio 1. First available staff in the Facilitator Queue will be the facilitator for the meeting 2. After facilitating the meeting, the facilitator will be moved to the tail of the queue -- meskio | https://meskio.net/ -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- My contact info: https://meskio.net/crypto.txt -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Nos vamos a Croatan.

1 0

Anti-censorship meeting notes, 2026-06-11
by Cecylia Bocovich 11 Jun '26

11 Jun '26

Hey everyone! Here are our meeting logs: https://meetbot.debian.net/tor-meeting/2026/tor-meeting.2026-06-11-16.02.ht… And our meeting pad: Anti-censorship -------------------------------- Next meeting: Thursday, June 11 16:00 UTC Facilitator: cohosh ^^^(See Facilitator Queue at tail) Weekly meetings, every Thursday at 16:00 UTC, in #tor-meeting at OFTC (channel is logged while meetings are in progress) This week's Facilitator: shelikhoo == Goal of this meeting == Weekly check-in about the status of anti-censorship work at Tor. Coordinate collaboration between people/teams on anti-censorship at the Tor Project and Tor community. == Links to Useful documents == Our anti-censorship roadmap: Roadmap:https://gitlab.torproject.org/groups/tpo/anti-censorship/-/boards The anti-censorship team's wiki page: https://gitlab.torproject.org/tpo/anti-censorship/team/-/wikis/home Past meeting notes can be found at: https://lists.torproject.org/pipermail/tor-project/ Tickets that need reviews: from projects, we are working on: All needs review tickets: https://gitlab.torproject.org/groups/tpo/anti-censorship/-/merge_requests?s… Projects the TPI anti-censorship team is working on: Project 201: Signaling channels milestone for may https://gitlab.torproject.org/groups/tpo/-/milestones/83 board https://gitlab.torproject.org/groups/tpo/-/boards/2675?label_name[]=Project… == Announcements == == Discussion == shelikhoo report on TLS fingerprint camouflage in rust https://gitlab.torproject.org/tpo/anti-censorship/team/-/work_items/194#not… https://gitlab.torproject.org/-/snippets/243 Need a decision about which route to pursue. "imitate" (utls) or "delegate" (ktls) cohosh recall's arturo's utls-light https://github.com/ooni/utls-light craftls https://github.com/3andne/craftls We are considering "delegate" route first, pending discussion with browser team(Application Team) M4i: submission of UAT to the Open Technology Fund == Actions == == Interesting links == https://medium.com/jigsaw/introducing-the-outline-foundation-an-independent… == Reading group == We will discuss "QUICstep: Evaluating connection migration based QUIC censorship circumvention " on June 11 https://petsymposium.org/popets/2026/popets-2026-0014.pdf Questions to ask and goals to have: What aspects of the paper are questionable? Are there immediate actions we can take based on this work? Are there long-term actions we can take based on this work? Is there future work that we want to call out in hopes that others will pick it up? Next in the Reading Group Queue: == Updates == Name: This week: - What you worked on this week. Next week: - What you are planning to work on next week. Help with: - Something you need help with. cecylia (cohosh): 2026-06-11 Last week: - revised proxy implementation of broker-informed poll interval - released a new version of the snowflake webextension - released a new version of the snowflake Go library - helped debug some issues with go module updates and the GitLab DoS defenses - https://gitlab.torproject.org/tpo/tpa/team/-/work_items/42697 Next week: - continue to review PT spec implementation in UAT - make proxy-bridge reachability checks robust to bridge outages (snowflake#40504) - more work on letting broker inform proxies how often to poll - monitor proxy poll rates and adjust as needed - follow up about running shadow simulations for snowflake performance - revisit conjure integration with lyrebird - take a look at potential snowflake orbot bug - https://github.com/guardianproject/orbot-android/issues/1183 dcf: 2026-06-11 Last week: - commented on Whonix proposal to add a metadata output to lyrebird https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/lyre… Next week: Help with: meskio: 2026-05-28 Last week: - investigate ideas for signaling channels (team#192) - investigate problems with netlify (tor-browser#44997) - c-tor crashed on bridgestrap, add an alert to detect it (bridgestrap#49) Next week: - AFK Shelikhoo: 2026-06-04 Last Week: - [Testing] Unreliable+unordered WebRTC data channel transport for Snowflake rev2 (cont.)( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) testing environment setup/research - Merge request Reviews - [Research] proxy pool overload and potential blocking in Iran ( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) - [Research] Add three NAT type buckets to the snowflake broker ( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) - Add Socks5 Based Interactive Connectivity Test for snowflake (https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow…) Next (working) Week/TODO: - Merge request reviews - [Deployment]Unreliable+unordered WebRTC data channel transport for Snowflake rev2 (cont.)( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) Building custom Tor Browser with patch applied - Vantage point maintaince - [Research] proxy pool overload and potential blocking in Iran ( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) - [Research] Add three NAT type buckets to the snowflake broker ( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) - Add Socks5 Based Interactive Connectivity Test for snowflake (https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow…) (cont.) onyinyang: 2026-06-11 Last week(s): - Returned to work for project #170 to detect bridge blocking Next week: - Continue tasks for project #170 (Postponed for May) Switch back to some of these: As time allows: - Continue work on rdsys#196 - Continue Investigating rdsys#248 i.e., why dysfunctional webtunnel bridges are being distributed - Troubleshooting conjure not connecting in China - waiting for more information from conjure authors/maintainers - Lox still seems to be filling up the disk on the rdsys-test server despite changes made to delete old entries, look into what's going wrong Blog post for conjure: https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/conj… - review Tor browser Lox integration https://gitlab.torproject.org/tpo/applications/tor-browser/-/merge_requests… - add TTL cache to lox MR for duplicate responses: https://gitlab.torproject.org/tpo/anti-censorship/lox/-/merge_requests/305 - Work on outstanding milestone issues: - key rotation automation Later: pending decision on abandoning lox wasm in favour of some kind of FFI? https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/43096) - add pref to handle timing for pubkey checks in Tor browser - add trusted invitation logic to tor browser integration: https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/42974 - improve metrics collection/think about how to show Lox is working/valuable - sketch out Lox blog post/usage notes for forum (long term things were discussed at the meeting!): - brainstorming grouping strategies for Lox buckets (of bridges) and gathering context on how types of bridges are distributed/use in practice Question: What makes a bridge usable for a given user, and how can we encode that to best ensure we're getting the most appropriate resources to people? 1. Are there some obvious grouping strategies that we can already consider? e.g., by PT, by bandwidth (lower bandwidth bridges sacrificed to open-invitation buckets?), by locale (to be matched with a requesting user's geoip or something?) 2. Does it make sense to group 3 bridges/bucket, so trusted users have access to 3 bridges (and untrusted users have access to 1)? More? Less? theodorsm: 2026-05-28 Last weeks: - Researching possible DTLS block in Russia - https://github.com/net4people/bbs/issues/603#issuecomment-4451730751 - Implementing DTLS 1.3 in pion Next weeks: - Implementing DTLS 1.3 in pion Help with: - Facilitator Queue: onyinyang cohosh meskio shelikhoo 1. First available staff in the Facilitator Queue will be the facilitator for the meeting 2. After facilitating the meeting, the facilitator will be moved to the tail of the queue

1 0

Anti-censorship team meeting notes, 2026-06-04
by Shelikhoo 04 Jun '26

04 Jun '26

Hey everyone! Here are our meeting logs: https://meetbot.debian.net/tor-meeting/2026/tor-meeting.2026-06-04-16.01.ht… And our meeting pad: Anti-censorship work meeting pad -------------------------------- Anti-censorship -------------------------------- Next meeting: Thursday, June 11 16:00 UTC Facilitator: cohosh ^^^(See Facilitator Queue at tail) Weekly meetings, every Thursday at 16:00 UTC, in #tor-meeting at OFTC (channel is logged while meetings are in progress) This week's Facilitator: shelikhoo == Goal of this meeting == Weekly check-in about the status of anti-censorship work at Tor. Coordinate collaboration between people/teams on anti-censorship at the Tor Project and Tor community. == Links to Useful documents == * Our anti-censorship roadmap: * Roadmap:https://gitlab.torproject.org/groups/tpo/anti-censorship/-/boards * The anti-censorship team's wiki page: * https://gitlab.torproject.org/tpo/anti-censorship/team/-/wikis/home * Past meeting notes can be found at: * https://lists.torproject.org/pipermail/tor-project/ * Tickets that need reviews: from projects, we are working on: * All needs review tickets: * https://gitlab.torproject.org/groups/tpo/anti-censorship/-/merge_requests?s… * Projects the TPI anti-censorship team is working on: * Project 201: Signaling channels * milestone for may https://gitlab.torproject.org/groups/tpo/-/milestones/83 * board https://gitlab.torproject.org/groups/tpo/-/boards/2675?label_name[]=Project… == Announcements == * == Discussion == * cohosh created an issue for last week's discussion about broker metrics * https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… * shelikhoo report on TLS fingerprint camouflage in rust * https://gitlab.torproject.org/tpo/anti-censorship/team/-/work_items/194#not… * https://gitlab.torproject.org/-/snippets/243 * Need a decision about which route to pursue. * Better to wait for a full crew meeting. In the meantime, everyone read the report. == Actions == * == Interesting links == * https://medium.com/jigsaw/introducing-the-outline-foundation-an-independent… == Reading group == * We will discuss "QUICstep: Evaluating connection migration based QUIC censorship circumvention " on June 11 * https://petsymposium.org/popets/2026/popets-2026-0014.pdf * Questions to ask and goals to have: * What aspects of the paper are questionable? * Are there immediate actions we can take based on this work? * Are there long-term actions we can take based on this work? * * Is there future work that we want to call out in hopes that others will pick it up? * Next in the Reading Group Queue: * == Updates == Name: This week: - What you worked on this week. Next week: - What you are planning to work on next week. Help with: - Something you need help with. cecylia (cohosh): 2026-06-04 Last week: - worked on documentation of signalling channel use (https://gitlab.torproject.org/tpo/anti-censorship/team/-/work_items/189) - helped with initial exploration of writing SQS in rust (https://gitlab.torproject.org/tpo/anti-censorship/team/-/work_items/191) - revised snowflake webext implementation of next poll field (https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow…) - continued review of UAT (https://gitlab.torproject.org/tpo/anti-censorship/team/-/work_items/178) - tried to reproduce potential webext bug (https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow…) Next week: - continue to review PT spec implementation in UAT - make proxy-bridge reachability checks robust to bridge outages (snowflake#40504) - more work on letting broker inform proxies how often to poll - revise and deploy proxy support - follow up about running shadow simulations for snowflake performance - revisit conjure integration with lyrebird - take a look at potential snowflake orbot bug - https://github.com/guardianproject/orbot-android/issues/1183 dcf: 2026-06-04 Last week: - gave advice on ampcache implementation Next week: Help with: meskio: 2026-05-28 Last week: - investigate ideas for signaling channels (team#192) - investigate problems with netlify (tor-browser#44997) - c-tor crashed on bridgestrap, add an alert to detect it (bridgestrap#49) Next week: - AFK Shelikhoo: 2026-06-04 Last Week: - [Testing] Unreliable+unordered WebRTC data channel transport for Snowflake rev2 (cont.)( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) testing environment setup/research - Merge request Reviews - [Research] proxy pool overload and potential blocking in Iran ( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) - [Research] Add three NAT type buckets to the snowflake broker ( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) - Add Socks5 Based Interactive Connectivity Test for snowflake (https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow…) Next (working) Week/TODO: - Merge request reviews - [Deployment]Unreliable+unordered WebRTC data channel transport for Snowflake rev2 (cont.)( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) Building custom Tor Browser with patch applied - Vantage point maintaince - [Research] proxy pool overload and potential blocking in Iran ( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) - [Research] Add three NAT type buckets to the snowflake broker ( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) - Add Socks5 Based Interactive Connectivity Test for snowflake (https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow…) (cont.) onyinyang: 2026-05-28 Last week(s): - Continued working on implementing Project 201: - AMPCache Library in Rust - SQS Rustlang Library in Rust Next week: - Continue working on Project 201 -AMPCache Rustlang Library - SQS Rustlang Library - Continue tasks for project #170 (Postponed for May) Switch back to some of these: As time allows: - Continue work on rdsys#196 - Continue Investigating rdsys#248 i.e., why dysfunctional webtunnel bridges are being distributed - Troubleshooting conjure not connecting in China - waiting for more information from conjure authors/maintainers - Lox still seems to be filling up the disk on the rdsys-test server despite changes made to delete old entries, look into what's going wrong Blog post for conjure: https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/conj… - review Tor browser Lox integration https://gitlab.torproject.org/tpo/applications/tor-browser/-/merge_requests… - add TTL cache to lox MR for duplicate responses: https://gitlab.torproject.org/tpo/anti-censorship/lox/-/merge_requests/305 - Work on outstanding milestone issues: - key rotation automation Later: pending decision on abandoning lox wasm in favour of some kind of FFI? https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/43096) - add pref to handle timing for pubkey checks in Tor browser - add trusted invitation logic to tor browser integration: https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/42974 - improve metrics collection/think about how to show Lox is working/valuable - sketch out Lox blog post/usage notes for forum (long term things were discussed at the meeting!): - brainstorming grouping strategies for Lox buckets (of bridges) and gathering context on how types of bridges are distributed/use in practice Question: What makes a bridge usable for a given user, and how can we encode that to best ensure we're getting the most appropriate resources to people? 1. Are there some obvious grouping strategies that we can already consider? e.g., by PT, by bandwidth (lower bandwidth bridges sacrificed to open-invitation buckets?), by locale (to be matched with a requesting user's geoip or something?) 2. Does it make sense to group 3 bridges/bucket, so trusted users have access to 3 bridges (and untrusted users have access to 1)? More? Less? theodorsm: 2026-05-28 Last weeks: - Researching possible DTLS block in Russia - https://github.com/net4people/bbs/issues/603#issuecomment-4451730751 - Implementing DTLS 1.3 in pion Next weeks: - Implementing DTLS 1.3 in pion Help with: - Facilitator Queue: onyinyang cohosh meskio shelikhoo 1. First available staff in the Facilitator Queue will be the facilitator for the meeting 2. After facilitating the meeting, the facilitator will be moved to the tail of the queue

1 0

New Browser Release Calendar Public Link
by Morgan 04 Jun '26

04 Jun '26

Hi folks, We have a new public link for the Tor Browser Release Calendar in NextCloud: - https://nc.torproject.net/apps/calendar/p/rgbZsJPm6wsCC9SR Please update your bookmarks :) best, -morgan

1 0

introducing torprojectstatus.org
by Antoine Beaupré 02 Jun '26

02 Jun '26

Hi, Starting today, our status page is now available under: https://torprojectstatus.org/ This is the same old reliable site you might already know as: https://status.torproject.org/ Both sites are currently available, but in about a week, we will retire the latter and redirect it to the former. The goal of this change is to provide better availability, redundancy and improve our disaster recovery scenarios. And if you didn't know about the site, congratulations, you are one of the lucky people to learn something today! You can read more about the reasoning behind that change in ADR-109: https://gitlab.torproject.org/tpo/tpa/team/-/wikis/policy/109-status-page-h… Thanks! a. -- Antoine Beaupré torproject.org system administration

1 0

Anti-censorship team meeting notes, 2026-05-28
by Cecylia Bocovich 28 May '26

28 May '26

Hey everyone! Here are our meeting logs: https://meetbot.debian.net/tor-meeting/2026/tor-meeting.2026-05-28-16.00.ht… And our meeting pad: Anti-censorship -------------------------------- Next meeting: Thursday, May 28 16:00 UTC Facilitator: cohosh ^^^(See Facilitator Queue at tail) Weekly meetings, every Thursday at 16:00 UTC, in #tor-meeting at OFTC (channel is logged while meetings are in progress) This week's Facilitator: shelikhoo == Goal of this meeting == Weekly check-in about the status of anti-censorship work at Tor. Coordinate collaboration between people/teams on anti-censorship at the Tor Project and Tor community. == Links to Useful documents == Our anti-censorship roadmap: Roadmap:https://gitlab.torproject.org/groups/tpo/anti-censorship/-/boards The anti-censorship team's wiki page: https://gitlab.torproject.org/tpo/anti-censorship/team/-/wikis/home Past meeting notes can be found at: https://lists.torproject.org/pipermail/tor-project/ Tickets that need reviews: from projects, we are working on: All needs review tickets: https://gitlab.torproject.org/groups/tpo/anti-censorship/-/merge_requests?s… Projects the TPI anti-censorship team is working on: Project 201: Signaling channels milestone for may https://gitlab.torproject.org/groups/tpo/-/milestones/83 board https://gitlab.torproject.org/groups/tpo/-/boards/2675?label_name[]=Project… == Announcements == Signaling channels evaluation conclusions: https://gitlab.torproject.org/tpo/anti-censorship/team/-/work_items/192#not… feel free to post comments in the issue if you have https://gitlab.torproject.org/tpo/anti-censorship/team/-/wikis/Signaling-Ch… Report on Rust TLS Fingerprint Diversification/Imitation Implementation Routes https://gitlab.torproject.org/tpo/anti-censorship/team/-/work_items/194#not… == Discussion == Request from GP for orbot-* proxy type names more specific than "iptproxy" which non-orbot IPtProxy apps are now using orbot-ios, orbot-android == Actions == == Interesting links == https://github.com/net4people/bbs/issues/603#issuecomment-4529373091 rumors about relay traffic in russia, might block all p2p traffic not going through approved TURN servers == Reading group == We will discuss "QUICstep: Evaluating connection migration based QUIC censorship circumvention " on June 11 https://petsymposium.org/popets/2026/popets-2026-0014.pdf Questions to ask and goals to have: What aspects of the paper are questionable? Are there immediate actions we can take based on this work? Are there long-term actions we can take based on this work? Is there future work that we want to call out in hopes that others will pick it up? Next in the Reading Group Queue: == Updates == Name: This week: - What you worked on this week. Next week: - What you are planning to work on next week. Help with: - Something you need help with. cecylia (cohosh): 2026-05-28 Last week: - worked on documentation of signalling channel use (https://gitlab.torproject.org/tpo/anti-censorship/team/-/work_items/189) - helped with initial exploration of writing SQS in rust (https://gitlab.torproject.org/tpo/anti-censorship/team/-/work_items/191) Next week: - continue signaling channel documentation - continue to review PT spec implementation in UAT - make proxy-bridge reachability checks robust to bridge outages (snowflake#40504) - more work on letting broker inform proxies how often to poll - revise and deploy proxy support - follow up about running shadow simulations for snowflake performance - revisit conjure integration with lyrebird - take a look at potential snowflake orbot bug - https://github.com/guardianproject/orbot-android/issues/1183 dcf: 2026-05-28 Last week: - upgraded tor on snowflake bridges to 0.4.9.8 for security release https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… - did analysis of zlib compression of snowflake rendezvous messages https://gitlab.torproject.org/dcf/snowflake-rendezvous-zlib https://lists.torproject.org/mailman3/hyperkitty/list/anti-censorship-team@… Next week: Help with: meskio: 2026-05-28 Last week: - investigate ideas for signaling channels (team#192) - investigate problems with netlify (tor-browser#44997) - c-tor crashed on bridgestrap, add an alert to detect it (bridgestrap#49) Next week: - AFK Shelikhoo: 2026-05-28 Last Week: - [Testing] Unreliable+unordered WebRTC data channel transport for Snowflake rev2 (cont.)( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) testing environment setup/research - Merge request Reviews - [Research] proxy pool overload and potential blocking in Iran ( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) - [Research] Add three NAT type buckets to the snowflake broker ( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) - WebTunnel Censorship Research - Vantage point maintaince - Research on Signaling Channel: TLS fingerprint diversification/imitation Next (working) Week/TODO: - Merge request reviews - [Deployment]Unreliable+unordered WebRTC data channel transport for Snowflake rev2 (cont.)( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) Building custom Tor Browser with patch applied - Vantage point maintaince - [Research] proxy pool overload and potential blocking in Iran ( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) - [Research] Add three NAT type buckets to the snowflake broker ( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) - WebTunnel Censorship Research - Research on Signaling Channel: TLS fingerprint diversification/imitation - Writing Reports on TLS fingerprint diversification/imitation onyinyang: 2026-05-28 Last week(s): - Continued working on implementing Project 201: - AMPCache Library in Rust - SQS Rustlang Library in Rust Next week: - Continue working on Project 201 -AMPCache Rustlang Library - SQS Rustlang Library - Continue tasks for project #170 (Postponed for May) Switch back to some of these: As time allows: - Continue work on rdsys#196 - Continue Investigating rdsys#248 i.e., why dysfunctional webtunnel bridges are being distributed - Troubleshooting conjure not connecting in China - waiting for more information from conjure authors/maintainers - Lox still seems to be filling up the disk on the rdsys-test server despite changes made to delete old entries, look into what's going wrong Blog post for conjure: https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/conj… - review Tor browser Lox integration https://gitlab.torproject.org/tpo/applications/tor-browser/-/merge_requests… - add TTL cache to lox MR for duplicate responses: https://gitlab.torproject.org/tpo/anti-censorship/lox/-/merge_requests/305 - Work on outstanding milestone issues: - key rotation automation Later: pending decision on abandoning lox wasm in favour of some kind of FFI? https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/43096) - add pref to handle timing for pubkey checks in Tor browser - add trusted invitation logic to tor browser integration: https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/42974 - improve metrics collection/think about how to show Lox is working/valuable - sketch out Lox blog post/usage notes for forum (long term things were discussed at the meeting!): - brainstorming grouping strategies for Lox buckets (of bridges) and gathering context on how types of bridges are distributed/use in practice Question: What makes a bridge usable for a given user, and how can we encode that to best ensure we're getting the most appropriate resources to people? 1. Are there some obvious grouping strategies that we can already consider? e.g., by PT, by bandwidth (lower bandwidth bridges sacrificed to open-invitation buckets?), by locale (to be matched with a requesting user's geoip or something?) 2. Does it make sense to group 3 bridges/bucket, so trusted users have access to 3 bridges (and untrusted users have access to 1)? More? Less? theodorsm: 2026-05-28 Last weeks: - Researching possible DTLS block in Russia - https://github.com/net4people/bbs/issues/603#issuecomment-4451730751 - Implementing DTLS 1.3 in pion Next weeks: - Implementing DTLS 1.3 in pion Help with: - Facilitator Queue: onyinyang cohosh meskio shelikhoo 1. First available staff in the Facilitator Queue will be the facilitator for the meeting 2. After facilitating the meeting, the facilitator will be moved to the tail of the queue

1 0

Anti-censorship team meeting notes, 2026-05-21
by Shelikhoo 21 May '26

21 May '26

Hey everyone! Here are our meeting logs: https://meetbot.debian.net/tor-meeting/2026/tor-meeting.2026-05-21-16.00.ht… And our meeting pad: Anti-censorship work meeting pad -------------------------------- Anti-censorship -------------------------------- Next meeting: Thursday, May 28 16:00 UTC Facilitator: cohosh ^^^(See Facilitator Queue at tail) Weekly meetings, every Thursday at 16:00 UTC, in #tor-meeting at OFTC (channel is logged while meetings are in progress) This week's Facilitator: shelikhoo == Goal of this meeting == Weekly check-in about the status of anti-censorship work at Tor. Coordinate collaboration between people/teams on anti-censorship at the Tor Project and Tor community. == Links to Useful documents == * Our anti-censorship roadmap: * Roadmap:https://gitlab.torproject.org/groups/tpo/anti-censorship/-/boards * The anti-censorship team's wiki page: * https://gitlab.torproject.org/tpo/anti-censorship/team/-/wikis/home * Past meeting notes can be found at: * https://lists.torproject.org/pipermail/tor-project/ * Tickets that need reviews: from projects, we are working on: * All needs review tickets: * https://gitlab.torproject.org/groups/tpo/anti-censorship/-/merge_requests?s… * Projects the TPI anti-censorship team is working on: * Project 201: Signaling channels * milestone for may https://gitlab.torproject.org/groups/tpo/-/milestones/83 * board https://gitlab.torproject.org/groups/tpo/-/boards/2675?label_name[]=Project… == Announcements == * == Discussion == * == Actions == * == Interesting links == == Reading group == * We will discuss "QUICstep: Evaluating connection migration based QUIC censorship circumvention " on June 11 * https://petsymposium.org/popets/2026/popets-2026-0014.pdf * Questions to ask and goals to have: * What aspects of the paper are questionable? * Are there immediate actions we can take based on this work? * Are there long-term actions we can take based on this work? * * Is there future work that we want to call out in hopes that others will pick it up? * Next in the Reading Group Queue: * == Updates == Name: This week: - What you worked on this week. Next week: - What you are planning to work on next week. Help with: - Something you need help with. cecylia (cohosh): 2026-05-07 Last week: - deployed broker fix to prevent proxies from reporting negative client counts - started audit of UAT (anti-censorshipteam#178) - started documentation of signalling channel use and implementations (anti-censorship/team#189) - fixed up browser implementation of poll interval timeouts (snowflake-webext!100) Next week: - continue signaling channel documentation - continue to review PT spec implementation in UAT - make proxy-bridge reachability checks robust to bridge outages (snowflake#40504) - more work on letting broker inform proxies how often to poll - revise and deploy proxy support - follow up about running shadow simulations for snowflake performance - revisit conjure integration with lyrebird - take a look at potential snowflake orbot bug - https://github.com/guardianproject/orbot-android/issues/1183 dcf: 2026-05-21 Last week: - opened issue to update tor on snowflake bridges for security fixes https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… - commented more on snowflake-stats descriptors having an incorrect format in collector https://gitlab.torproject.org/tpo/network-health/metrics/collector-rs/-/iss… Next week: Help with: meskio: 2026-05-21 Last week: - read Google's Pub/Sub paper - remove onionize.space from the snowflake web extension (webextension#124) - grant planning work Next week: - investigate ideas for signaling channels (team#192) Shelikhoo: 2026-05-21 Last Week: - [Testing] Unreliable+unordered WebRTC data channel transport for Snowflake rev2 (cont.)( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) testing environment setup/research - Merge request Reviews - [Research] proxy pool overload and potential blocking in Iran ( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) - [Research] Add three NAT type buckets to the snowflake broker ( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) - WebTunnel Censorship Research - Vantage point maintaince - Research on Signaling Channel: TLS fingerprint diversification/imitation Next (working) Week/TODO: - Merge request reviews - [Deployment]Unreliable+unordered WebRTC data channel transport for Snowflake rev2 (cont.)( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) Building custom Tor Browser with patch applied - Vantage point maintaince - [Research] proxy pool overload and potential blocking in Iran ( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) - [Research] Add three NAT type buckets to the snowflake broker ( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) - WebTunnel Censorship Research - Research on Signaling Channel: TLS fingerprint diversification/imitation - Writing Reports on TLS fingerprint diversification/imitation onyinyang: 2026-05-21 Last week(s): - Continued working on implementing Project 201: - AMPCache Library in Rust - SQS Rustlang Library in Rust Next week: - Continue working on Project 201 -AMPCache Rustlang Library - SQS Rustlang Library - Continue tasks for project #170 (Postponed for May) Switch back to some of these: As time allows: - Continue work on rdsys#196 - Continue Investigating rdsys#248 i.e., why dysfunctional webtunnel bridges are being distributed - Troubleshooting conjure not connecting in China - waiting for more information from conjure authors/maintainers - Lox still seems to be filling up the disk on the rdsys-test server despite changes made to delete old entries, look into what's going wrong Blog post for conjure: https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/conj… - review Tor browser Lox integration https://gitlab.torproject.org/tpo/applications/tor-browser/-/merge_requests… - add TTL cache to lox MR for duplicate responses: https://gitlab.torproject.org/tpo/anti-censorship/lox/-/merge_requests/305 - Work on outstanding milestone issues: - key rotation automation Later: pending decision on abandoning lox wasm in favour of some kind of FFI? https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/43096) - add pref to handle timing for pubkey checks in Tor browser - add trusted invitation logic to tor browser integration: https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/42974 - improve metrics collection/think about how to show Lox is working/valuable - sketch out Lox blog post/usage notes for forum (long term things were discussed at the meeting!): - brainstorming grouping strategies for Lox buckets (of bridges) and gathering context on how types of bridges are distributed/use in practice Question: What makes a bridge usable for a given user, and how can we encode that to best ensure we're getting the most appropriate resources to people? 1. Are there some obvious grouping strategies that we can already consider? e.g., by PT, by bandwidth (lower bandwidth bridges sacrificed to open-invitation buckets?), by locale (to be matched with a requesting user's geoip or something?) 2. Does it make sense to group 3 bridges/bucket, so trusted users have access to 3 bridges (and untrusted users have access to 1)? More? Less? theodorsm: 2026-05-14 Last weeks: - Researching possible DTLS block in Russia - https://github.com/net4people/bbs/issues/603#issuecomment-4451730751 - Implementing DTLS 1.3 in pion Next weeks: - Implementing DTLS 1.3 in pion Help with: - Facilitator Queue: onyinyang cohosh meskio shelikhoo 1. First available staff in the Facilitator Queue will be the facilitator for the meeting 2. After facilitating the meeting, the facilitator will be moved to the tail of the queue

1 0

Anti-censorship team meeting notes, 2026-05-14
by onyinyang 14 May '26

14 May '26

Hey everyone! Here are our meeting logs: https://meetbot.debian.net/tor-meeting/2026/tor-meeting.2026-05-14-16.00.ht… And our meeting pad: Anti-censorship work meeting pad -------------------------------- Anti-censorship -------------------------------- Next meeting: Thursday, May 21 16:00 UTC Facilitator: cohosh ^^^(See Facilitator Queue at tail) Weekly meetings, every Thursday at 16:00 UTC, in #tor-meeting at OFTC (channel is logged while meetings are in progress) This week's Facilitator: onyinyang == Goal of this meeting == Weekly check-in about the status of anti-censorship work at Tor. Coordinate collaboration between people/teams on anti-censorship at the Tor Project and Tor community. == Links to Useful documents == * Our anti-censorship roadmap: * Roadmap:https://gitlab.torproject.org/groups/tpo/anti-censorship/-/boards * The anti-censorship team's wiki page: * https://gitlab.torproject.org/tpo/anti-censorship/team/-/wikis/home * Past meeting notes can be found at: * https://lists.torproject.org/pipermail/tor-project/ * Tickets that need reviews: from projects, we are working on: * All needs review tickets: * https://gitlab.torproject.org/groups/tpo/anti-censorship/-/merge_requests?s… * Projects the TPI anti-censorship team is working on: * Project 201: Signaling channels * milestone for may https://gitlab.torproject.org/groups/tpo/-/milestones/83 * board https://gitlab.torproject.org/groups/tpo/-/boards/2675?label_name[]=Project… == Announcements == * Latest Information on UAT == Discussion == * Project 201: Status and plan for next week and any blocker?. --gaba * Activity 1.1: Review existing implementations, research literature, and internal documentation. * https://gitlab.torproject.org/tpo/anti-censorship/team/-/work_items/189 * Activity 2.1: Research possible fingerprint diversification system implementations * https://gitlab.torproject.org/tpo/anti-censorship/team/-/work_items/194 * Activity 3.4: Implement AMP Cache in Rust. 3.4.1 prototype of ampcache in rust. * https://gitlab.torproject.org/tpo/anti-censorship/team/-/work_items/190 * Activity 3.6: Implement SQS in Rust. 3.6.1 prototype sqs in rust. * https://gitlab.torproject.org/tpo/anti-censorship/team/-/work_items/191 * Activity 4.1: Evaluate nine promising signaling channels for use in library * https://gitlab.torproject.org/tpo/anti-censorship/team/-/work_items/192 == Actions == * == Interesting links == == Reading group == * We will discuss "" on * * Questions to ask and goals to have: * What aspects of the paper are questionable? * Are there immediate actions we can take based on this work? * Are there long-term actions we can take based on this work? * * Is there future work that we want to call out in hopes that others will pick it up? * Next in the Reading Group Queue: * == Updates == Name: This week: - What you worked on this week. Next week: - What you are planning to work on next week. Help with: - Something you need help with. cecylia (cohosh): 2026-05-07 Last week: - deployed broker fix to prevent proxies from reporting negative client counts - started audit of UAT (anti-censorshipteam#178) - started documentation of signalling channel use and implementations (anti-censorship/team#189) - fixed up browser implementation of poll interval timeouts (snowflake-webext!100) Next week: - continue signaling channel documentation - continue to review PT spec implementation in UAT - make proxy-bridge reachability checks robust to bridge outages (snowflake#40504) - more work on letting broker inform proxies how often to poll - revise and deploy proxy support - follow up about running shadow simulations for snowflake performance - revisit conjure integration with lyrebird - take a look at potential snowflake orbot bug - https://github.com/guardianproject/orbot-android/issues/1183 dcf: 2026-05-07 Last week: - made a merge request to report an error binding to the metrics port in the snowflake proxy https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… - reviewed merge request for snowflake proxy self-reported client counts https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… - commented on issue about meek-server trusting Meek-IP and X-Forwarded-For HTTP headers https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/meek… - reported broken snowflake-stats metrics tarballs for April 2026 https://gitlab.torproject.org/tpo/network-health/metrics/collector-rs/-/iss… Next week: Help with: meskio: 2026-05-14 Last week: - read Fountain codes paper - read skyhook (S3 signaling) paper and evaluate it (team#192) - review previous discussions on Signaling Channels and bring ideas (team#189) - investigate high load on postgres in polyanthum (tpa/team#42642) - grant planning work Next week: - investigate ideas for signaling channels (team#192) Shelikhoo: 2026-05-14 Last Week: - [Testing] Unreliable+unordered WebRTC data channel transport for Snowflake rev2 (cont.)( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) testing environment setup/research - Merge request Reviews - [Research] proxy pool overload and potential blocking in Iran ( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) - [Research] Add three NAT type buckets to the snowflake broker ( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) - WebTunnel Censorship Research - Vantage point maintaince - Research on Signaling Channel: TLS fingerprint diversification/imitation Next (working) Week/TODO: - Merge request reviews - [Deployment]Unreliable+unordered WebRTC data channel transport for Snowflake rev2 (cont.)( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) Building custom Tor Browser with patch applied - Vantage point maintaince - [Research] proxy pool overload and potential blocking in Iran ( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) - [Research] Add three NAT type buckets to the snowflake broker ( https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… ) - WebTunnel Censorship Research - Research on Signaling Channel: TLS fingerprint diversification/imitation onyinyang: 2026-05-14 Last week(s): - Continued working on implementing Project 201: - AMPCache Library in Rust Next week: - Sonctinue working on Project 201 -AMPCache Rustlang Library - SQS Rustlang Library - Continue tasks for project #170 (Postponed for May) Switch back to some of these: As time allows: - Continue work on rdsys#196 - Continue Investigating rdsys#248 i.e., why dysfunctional webtunnel bridges are being distributed - Troubleshooting conjure not connecting in China - waiting for more information from conjure authors/maintainers - Lox still seems to be filling up the disk on the rdsys-test server despite changes made to delete old entries, look into what's going wrong Blog post for conjure: https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/conj… - review Tor browser Lox integration https://gitlab.torproject.org/tpo/applications/tor-browser/-/merge_requests… - add TTL cache to lox MR for duplicate responses: https://gitlab.torproject.org/tpo/anti-censorship/lox/-/merge_requests/305 - Work on outstanding milestone issues: - key rotation automation Later: pending decision on abandoning lox wasm in favour of some kind of FFI? https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/43096) - add pref to handle timing for pubkey checks in Tor browser - add trusted invitation logic to tor browser integration: https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/42974 - improve metrics collection/think about how to show Lox is working/valuable - sketch out Lox blog post/usage notes for forum (long term things were discussed at the meeting!): - brainstorming grouping strategies for Lox buckets (of bridges) and gathering context on how types of bridges are distributed/use in practice Question: What makes a bridge usable for a given user, and how can we encode that to best ensure we're getting the most appropriate resources to people? 1. Are there some obvious grouping strategies that we can already consider? e.g., by PT, by bandwidth (lower bandwidth bridges sacrificed to open-invitation buckets?), by locale (to be matched with a requesting user's geoip or something?) 2. Does it make sense to group 3 bridges/bucket, so trusted users have access to 3 bridges (and untrusted users have access to 1)? More? Less? theodorsm: 2026-05-14 Last weeks: - Researching possible DTLS block in Russia - https://github.com/net4people/bbs/issues/603#issuecomment-4451730751 - Implementing DTLS 1.3 in pion Next weeks: - Implementing DTLS 1.3 in pion Help with: - Facilitator Queue: onyinyang cohosh meskio shelikhoo 1. First available staff in the Facilitator Queue will be the facilitator for the meeting 2. After facilitating the meeting, the facilitator will be moved to the tail of the queue -- --- onyinyang GPG Fingerprint 3CC3 F8CC E9D0 A92F A108 38EF 156A 6435 430C 2036

1 0

User Support Report for April 2026
by ebanam 13 May '26

13 May '26

Hello everyone, This is the report from user support team for the month of April 2026. You can access the previous report (March 2026) here: https://lists.torproject.org/mailman3/hyperkitty/list/tor-project@lists.tor… Note: (↑), (↓) and (-) are indicating if the number of tickets we received for these topics have been increasing, decreasing or have been the same from the previous month respectively. - Summary of updates from user support - General user support - Farsi-speaking user support - Russian-speaking user support - Frontdesk (email user support channel) - Telegram, WhatsApp and Signal user support channels - Highlights from the Tor Forum - Highlights from Google Play Store # Summary of updates from user support ## General user support * 455 tickets in total (↓31 as compared to March) * 284 tickets on Email * 143 tickets on Telegram * 28 tickets on Signal * Updated instructions for Tor users in China, encouraging them to obtain WebTunnel bridges from @GetBridgesBot on Telegram or from our Bridges website (bridges.torproject.org) * In April, although the support channel over WhatsApp being accessible, we did not receive any messages through it. Users can reach our support team via a text message to our WhatsApp number: +447421000612. This service is only available for text messages; videos or calls are not supported. ## Farsi-speaking user support * 100 tickets in total (↑67 as compared to March) * 48 tickets on Email * 52 tickets on Telegram * In April, as per reports from users in Iran, users regained access to some Google-powered services like Gmail and Google Drive. As a result of which, we also saw a significant increase in tickets coming through Email. Nonetheless, internet restrictions remain very severe. * We have continued to encourage users to try dnstt bridges with Tor, especially Orbot. Latest releases of Orbot, on Android as well as iOS, ship with built-in support for dnstt bridges. Instructions to use [dnstt bridges with Orbot][] is available on the Tor Forum in both English and Farsi. Finding a DNS resolver that will work with dnstt for users in Iran remains a major challenge. We have been monitoring relevant forums and social media threads to find DNS resolvers that were reportedly still reachable from inside Iran and shared the modified dnstt bridge addresses with users. Feedback has been mostly negative with users still unable to connect to Tor because finding an unblocked DNS resolver for dnstt has been hard and other Tor PTs aren't working. [dnstt bridges with Orbot]: https://forum.torproject.org/t/connecting-to-tor-from-iran-using-dnstt-with… ## Russian-speaking user support * 615 tickets in total (↓94 as compared to March) * 194 tickets on Email * 414 tickets on Telegram (↓104 March, ↓311 February) * 7 tickets on Signal * The visible decline in the number of tickets from Russia we received over Telegram is due to Telegram being blocked in April in Russia: https://explorer.ooni.org/findings/96225549500. # Frontdesk (email user support channel) * 502(↑) RT tickets created * 526(↑) RT tickets resolved Tickets by topics and numbers: 1. 194(↓) tickets: circumventing censorship in Russian speaking countries. 2. 173(↑) tickets: instructions to circumvent censorship for Chinese speaking users. 3. 60(↓) tickets: help with troubleshooting existing Tor Browser install on Desktop (Windows, macOS and Linux). 4. 49(↑) tickets: circumventing censorship with Tor in Farsi. 5. 12(↓) tickets: help with troubleshooting Tor VPN beta. 6. 7(↓) tickets: reports of fake apps on iOS AppStore masquerading as official Tor Browser. 7. 4(↓) tickets: report of websites blocking Tor connections or not performing well in Tor Browser. 8. 3(↑) tickets: reports of anti-virus software blocking Tor Browser from running on Windows. 9. 2(-) tickets: can't use Tor VPN when Private DNS is configured on Android's Network settings. 10. 2(↑) tickets: instructions to get started with Tor Browser desktop post-install. 11. 2(-) tickets: help with troubleshooting Tor Browser for Android. 12. 2(-) tickets: help with setting up Snowflake proxy. 13. 2(↑) tickets: questions about whether it's possible to retrieve browsing history across browsing sessions on Tor Browser. 14. 2(↑) tickets: instructions to install Tor Browser on Linux. 15. 2(↑) tickets: name string of the [pluggable transports directory gets truncated][] on Tor Browser for Desktop, resulting in failure to use pluggable transports. 16. 1(↓) ticket: instructions on how to get Tor Browser binaries from GetTor. 17. 1(↓) ticket: query about Tor Browser support for Windows 8.1 (legacy operating system). 18. 1(↑) ticket: instructions to configure the 'exit' location on Tor VPN. 19. 1(↓) ticket: questions about which Tor app to install on iOS (i.e. Onion Browser or Orbot). 20. 1(↑) ticket: instructions to verify Tor Browser's GPG signature. 21. 1(↑) ticket: instructions to change app appearance of Tor VPN. 22. 1(↑) ticket: [ExoneraTor bug][]. 23. 1(↑) ticket: instructions to setup a onion service on a ipv6-only host. 24. 1(↑) ticket: instructions to update Tor Browser on Desktop. 25. 1(↑) ticket: report of ['Uptime' label][] on Tor metrics is misleading. 26. 1(↑) ticket: question whether it is safe to install Tor Browser Nightly. (It is not recommended to install nightly versions of Tor Browser apart from testing.) 27. 1(↑) ticket: Tor Browser (i.e. Firefox) [security features][] warning on Ubuntu Linux. [pluggable transports directory gets truncated]: https://gitlab.torproject.org/tpo/applications/tor-browser/-/work_items/449… [ExoneraTor Bug]: https://gitlab.torproject.org/tpo/web/tpo/-/work_items/520 ['Uptime' label]: https://gitlab.torproject.org/tpo/network-health/metrics/website/-/work_ite… [security features]: https://support.mozilla.org/en-US/kb/linux-security-warning # Telegram, WhatsApp and Signal user support channels * 644(↓) tickets resolved Breakdown: * 609(↓) tickets on Telegram * 35(↑) tickets on Signal * 0(↓) tickets on WhatsApp Tickets by topics and numbers: 1. 421(↓) tickets: circumventing censorship in Russian speaking countries. 2. 44(↑) tickets: help with troubleshooting Tor VPN beta. 3. 31(↓) tickets: help with troubleshooting existing Tor Browser install on Desktop (Windows, macOS and Linux). 4. 36(↑) tickets: instructions to circumvent censorship for Chinese speaking users. 5. 52(↑) tickets: circumventing censorship with Tor in Farsi. 6. 29(↑) tickets: instructions to fetch bridges from Bridge distributors on Telegram or Email and use them with Tor Browser and Tor VPN beta. 7. 20(↑) tickets: instructions to use [dnstt bridges with Orbot][]. 8. 14(↓) tickets: questions about which Tor app to install on iOS (i.e. Onion Browser or Orbot). 9. 14(↓) tickets: help with using bridges with Tor VPN Beta. 10. 10(↓) tickets: helping users on iOS, using Onion Browser or Orbot, to use censorship circumvention methods. 11. 10(↑) tickets: help with troubleshooting existing Tor Browser install on Android. 12. 9(↓) tickets: instructions on how to get Tor Browser binaries from GetTor. 13. 9(↑) tickets: instructions to use WebTunnel bridges with Tor Browser. 14. 4(-) tickets: help with using bridges with Tails. 15. 4(↑) tickets: query about Tor Browser support [legacy operating systems][]. 16. 3(↑) tickets: help with configuring bridges to use with little-t tor (the network daemon). 17. 2(↑) tickets: reports of fake apps on iOS AppStore masquerading as official Tor Browser. 18. 2(↑) tickets: help with installing Tor Browser on Desktop on Linux. 19. 1(↓) ticket: questions about onion services and how to access them. 20. 1(↓) ticket: report of websites blocking Tor connections or not performing well in Tor Browser. 21. 1(↑) ticket: name string of the pluggable transports directory gets truncated on Tor Browser for Desktop, resulting in failure to use pluggable transports. [dnstt bridges with Orbot]: https://forum.torproject.org/t/connecting-to-tor-from-iran-using-dnstt-with… [legacy operating systems]: https://support.torproject.org/tor-browser/security/legacy-os/ # Highlights from the Tor Forum * Instructions to [connect to Telegram][] using Tor's SOCKS proxy from Russia. * Connecting to Tor from Iran using [dnstt with Orbot]. * Call for Testers: [Snowflake Volunteer][], an Android app to help others circumvent censorship. [connect to Telegram]: https://forum.torproject.org/t/telegram-tor-how-to-bypass-russian-block-on-… [dnstt with Orbot]: https://forum.torproject.org/t/connecting-to-tor-from-iran-using-dnstt-with… [Snowflake volunteer]: https://forum.torproject.org/t/call-for-testers-snowflake-volunteer-an-andr… # Highlights from Google Play Store ## Tor Browser for Android * Tor Browser for Android (TBA) had a Google Play rating of 4.426 stars in April, which is the same as compared to in March. * Tor Browser for Android (TBA) got 508 (↓73) new reviews. The total count of reviews for the app stands at 68,794. * For Tor Browser, the most common issue mentioned on reviews was the censorship against Tor in countries like Russia, China, Iran. ## Tor Browser for Android Alpha * Tor Browser for Android Alpha app had a rating of 4.128(↓0.003) in April which is lower compared to March. * In March, Tor Browser for Android Alpha got 12 (↓9) new reviews. The total count of reviews for the app stands at 8,785. ## Tor VPN Beta * Tor VPN beta number of unique daily users is around 68,000 at the end of April. * The top 5 countries by the number of installations being (in descending order): Russia, India, the United States, Turkmenistan, and Iran. Thanks! -- ebanam

1 0