Hi friends, Here's what the anti-censorship team has accomplished in March 2020: Snowflake ========= * Released version 0.2.2 of the Snowflake WebExtension: <https://addons.mozilla.org/en-US/firefox/addon/torproject-snowflake/> <https://chrome.google.com/webstore/detail/snowflake/mafpmfcccpbjnhfhjnllmmalhifmlcie> * Posted a third draft of Snowflake–Turbo Tunnel packages, allowing one Snowflake proxy to be shared among many upstream connections <https://lists.torproject.org/pipermail/anti-censorship-team/2020-March/000075.html> * Made some progress on debugging and detecting Snowflake proxy issues: <https://bugs.torproject.org/33666> <https://bugs.torproject.org/32938> * Added module support to make builds and versioning easier: <https://bugs.torproject.org/33330> * Updated versions of Snowflake and pion-webrtc in Tor Browser: <https://bugs.torproject.org/33578> <https://bugs.torproject.org/33576> * Removed unused server-webrtc code: <https://bugs.torproject.org/33636> * Updated Snowflake license: <https://bugs.torproject.org/33637> * Investigated the work for making a Debian package of Snowflake: <https://bugs.torproject.org/19409> BridgeDB ======== * We added instructions to BridgeDB explaining how to add bridges on mobile platforms: <https://bugs.torproject.org/30317> * Worked with the Metrics Team to add a "bridge distribution mechanism" field to Relay Search, allowing bridge operators to see how their bridge is distributed: <https://bugs.torproject.org/33008> * Re-determined the success rate of both users and (what we believe to be) bots in how well they solve our newly-created BridgeDB CAPTCHAs: <https://bugs.torproject.org/24607#comment:17> * Made progress on having BridgeDB report internal metrics: <https://bugs.torproject.org/31422> * Debugged an issue in BridgeDB's deployment scripts: <https://bugs.torproject.org/33709> * Merged a patch (thanks to agix!) that makes BridgeDB use a CSPRNG when selecting cached CAPTCHAs: <https://bugs.torproject.org/31967> * Noticed that BridgeDB wouldn't allow bridges to change their distribution mechanism; i.e., if a bridge is first assigned to the HTTP mechanism, it wasn't able to change this by setting its BridgeDistribution config option. Implemented a fix for this issue: <https://bugs.torproject.org/33631> GetTor ====== * Patched updated procedure for Gitlab provider: <https://bugs.torproject.org/33034> * Make sure GetTor always responds to (malformed) emails too: <https://bugs.torproject.org/33543> * Overhaul of GetTor help and links message bodies: <https://bugs.torproject.org/23226> * Deployed fix for ignoring quoted messages in GetTor: <https://bugs.torproject.org/23225> Obfs4 ===== * Obfs4's extra25519 dependency changed, which breaks versioning-agnostic builds but as long as one is using Go modules (like Tor Browser does), it still works: <https://bugs.torproject.org/33464> * Merged a patch (thanks to thymbahutymba!) that makes our obfs4 docker image support docker-compose. This simplifies the deployment process. Miscellaneous ============= * Filed a ticket to get our noisebridge01 default bridge removed from Tor Browser because it no longer has a maintainer: <https://bugs.torproject.org/13727> * Worked with prospective GSoC students on their proposals. * Finished writing our NSF TTP grant. * We let bridge operators of soon-to-be-obsolete versions know that it's time to upgrade: <https://bugs.torproject.org/32672>