Unexplained drop in Snowflake client polls and bandwidth, testers wanted

[wkrp]

Since the beginning of protests and shutdowns in Iran, we have been applying numerous performance optimizations to the Snowflake bridge. As a result, peak bandwidth has risen from 1 Gbps to 4 Gbps and the estimated number of simultaneous users has grown from 20,000 to 100,000. But about two days ago, at 2022-10-04 17:15, usage dropped suddenly and drastically. Likely related, users reported failed Snowflake connection from Iran starting 2022-10-05. We have been investigating, but the exact cause is not clear. We would like help, especially logs from failed Snowflake connections.

You can see the sudden drop in client polls at the Snowflake broker:

It was accompanied by a simultaneous drop in bandwidth at the bridge:

The most likely explanation for a pattern like this is censorship of the broker, probably in Iran. Clients cannot reach the broker, therefore they do not get proxy service, therefore they do not use bridge bandwidth. But the evidence is somewhat ambiguous, and anyway we need to understand how the broker is being blocked, if indeed that is what's happening.

Some of the evidence:

• Usage decreased about 70% in Iran, but not only in Iran. The US, Tunisia, and Mauritius also had decreases of 40–70%. Some countries' counts remained about the same (Russia, China), and others' increased (Germany, United Kingdom, France).
• OONI measurements of Snowflake connectivity and the default broker domain front do not show any notable increase in blocking in the past couple of days.
• We have investigated possible causes of slowness at the broker and the bridge (e.g. network misconfigurations), and so far have not found anything.

There are various possible explanations. For example, connectivity to the broker domain front may be blocked only for certain TLS fingerprints. Perhaps OONI coverage is lacking in the networks most affected. For this we would like help.

How you can help

• We would like to see snowflake-client logs from failed connections. This log provides more information (e.g. "unable to create broker channel") than the Tor log does ("Bootstrapped 10%"), but you need to take special steps to activate it. In Tor Browser desktop, edit the file Browser/TorBrowser/Data/Tor/torrc-defaults. Find the line that starts with

  ClientTransportPlugin snowflake
  

  and add this to the end of the line:

  -log snowflake-client.log -log-to-state-dir
  

  Then, when you restart Tor Browser, you will find the log at:
  • linux: Browser/TorBrowser/Data/Tor/pt_state/snowflake-client.log
  • windows: Browser\TorBrowser\Data\Tor\pt_state\snowflake-client.log
  • mac: ~/Library/Application Support/TorBrowser-Data/Tor/pt_state/snowflake-client.log
    (Use Go to Folder... in the Finder menu.)
• If you use Orbot or Onion Browser, try choosing the Built-in snowflake (AMP) option, which uses an alternative form of rendezvous.

[wkrp]

Custom snowflake bridge lines to test. Custom snowflake bridge lines do not yet work in Orbot.

• Alternate broker domain front. Go to where Tor Browser lets you enter a bridge address. (Settings → Connection → Bridges in Tor Browser desktop.) Copy and paste the following bridge line, the whole thing:
  snowflake 192.0.2.3:80 2B280B23E1107BB62ABFC40DDCC8824814F80A72 fingerprint=2B280B23E1107BB62ABFC40DDCC8824814F80A72 url=https://snowflake-broker.azureedge.net/ front=ajax.aspnetcdn.com ice=stun:stun.voip.blackberry.com:3478,stun:stun.altar.com.pl:3478,stun:stun.antisip.com:3478,stun:stun.bluesip.net:3478,stun:stun.dus.net:3478,stun:stun.epygi.com:3478,stun:stun.sonetel.com:3478,stun:stun.sonetel.net:3478,stun:stun.stunprotocol.org:3478,stun:stun.uls.co.za:3478,stun:stun.voipgate.com:3478,stun:stun.voys.nl:3478
  The difference from usual is the url and front parameters.
• AMP cache rendezvous. Snowflake in Orbot for Android or iOS has a built-in AMP cache rendezvous setting, but you can enable it in desktop Tor Browser by manually entering a bridge address. Go to where Tor Browser lets you enter a bridge address. (Settings → Connection → Bridges.) Copy and paste the following bridge line, the whole thing:
  snowflake 192.0.2.3:80 2B280B23E1107BB62ABFC40DDCC8824814F80A72 fingerprint=2B280B23E1107BB62ABFC40DDCC8824814F80A72 url=https://snowflake-broker.torproject.net/ ampcache=https://cdn.ampproject.org/ front=cdn.ampproject.org ice=stun:stun.voip.blackberry.com:3478,stun:stun.altar.com.pl:3478,stun:stun.antisip.com:3478,stun:stun.bluesip.net:3478,stun:stun.dus.net:3478,stun:stun.epygi.com:3478,stun:stun.sonetel.com:3478,stun:stun.sonetel.net:3478,stun:stun.stunprotocol.org:3478,stun:stun.uls.co.za:3478,stun:stun.voipgate.com:3478,stun:stun.voys.nl:3478
  The difference from usual is the url, ampcache, and front parameters. You can experiment with different Google domains for the front parameter.

EDIT 2022-10-07: Removed the QR codes as they do not work in Orbot.

[quartermarsh]

Other things to test:

Would you like standalone hosts to try this with that url, ampcache, and front parameters in the torrc file at ~snowflake/client/torrc - then attach verbose logs here?

[wkrp]

Would you like standalone hosts to try this with that url, ampcache, and front parameters in the torrc file at ~snowflake/client/torrc - then attach verbose logs here?

Yes, you can also test these settings from the command line using tor -f torrc and a torrc file like one of the following:

UseBridges 1
DataDirectory datadir
SocksPort auto
ClientTransportPlugin snowflake exec ./client -log snowflake.log
Bridge snowflake 192.0.2.3:80 2B280B23E1107BB62ABFC40DDCC8824814F80A72 fingerprint=2B280B23E1107BB62ABFC40DDCC8824814F80A72 url=https://snowflake-broker.azureedge.net/ front=ajax.aspnetcdn.com ice=stun:stun.voip.blackberry.com:3478,stun:stun.altar.com.pl:3478,stun:stun.antisip.com:3478,stun:stun.bluesip.net:3478,stun:stun.dus.net:3478,stun:stun.epygi.com:3478,stun:stun.sonetel.com:3478,stun:stun.sonetel.net:3478,stun:stun.stunprotocol.org:3478,stun:stun.uls.co.za:3478,stun:stun.voipgate.com:3478,stun:stun.voys.nl:3478

UseBridges 1
DataDirectory datadir
SocksPort auto
ClientTransportPlugin snowflake exec ./client -log snowflake.log
Bridge snowflake 192.0.2.3:80 2B280B23E1107BB62ABFC40DDCC8824814F80A72 fingerprint=2B280B23E1107BB62ABFC40DDCC8824814F80A72 url=https://snowflake-broker.torproject.net/ ampcache=https://cdn.ampproject.org/ front=cdn.ampproject.org ice=stun:stun.voip.blackberry.com:3478,stun:stun.altar.com.pl:3478,stun:stun.antisip.com:3478,stun:stun.bluesip.net:3478,stun:stun.dus.net:3478,stun:stun.epygi.com:3478,stun:stun.sonetel.com:3478,stun:stun.sonetel.net:3478,stun:stun.stunprotocol.org:3478,stun:stun.uls.co.za:3478,stun:stun.voipgate.com:3478,stun:stun.voys.nl:3478

We are mainly interested in logs from connection failures. Then we may want to do some follow-up to see if there are changes we can apply to make the connection succeed.

[quartermarsh]

Excellent. I’ll give it a whirl and report back (probably tomorrow, it’s late here now).

Just to add for now: with the default torrc file traffic relayed and hourly connection metrics seem to be picking up with no connection errors/failures in the log since the bridge was rebooted at 2022-10-06 19:48:48. Also, probetest is reporting unrestricted NAT more frequently.

[SaSyda]

ok, the thing is i've been using tor in the first days of outage, but for certain reasons, been using other solution for the days since. As i saw ur post last night, decided to help out and started things up, first thing i realised, i could connect from my pc but not my mac laptop, but on a second thought i'm using tor browser on windows and orbot on mac. so i downloaded tor browser on mac os and wow! it's connecting with superspeeds, so, my conclusion, it's not actually a problem of ur systems, but the fact that people are mainly using orbot, and whatever thing they've done to stop us, is related to that app and the streams its using and going through. actually i'm more confident about my assumption, cuz i've suggested orbot to many people as it runs on mobile devices and clearly most users in iran use a phone to get to websites like instagram or certain messengers. And computer celebs over twitter and other places, been suggesting that app as well.

And i assume, as I can connect to the free internet, my log is no use to u, but still, tell me if u need me to send it as i could successfully go through ur tutorial.

and in my next experiments, i'll be using cellular connection, as it has been way heavier censored and the so called "national internet" which is an actual intranet with measures to limit connection to foreign servers and computers, is mainly implemented on OTG internet connections.

[wkrp]

@SaSyda thank you for your helpful feedback. Let me summarize to see if I understand correctly.

operating system	client software	bridge	result
Windows	Tor Browser for desktop	?	works
macOS	Orbot	?	doesn't work
macOS	Tor Browser for desktop	?	works

My question: did you use bridges (pluggable transports) in the tests? Were you using Snowflake, or did it connect easily without configuring a bridge? If using Snowflake, did you use one of the custom bridge lines from #131 (comment), or the default?

I want to know if macOS+Orbot fails with every bridge line (default, snowflake/azure, snowflake/ampcache), or if it works with one of them. The difference could be important in learning what blocking technique is used.

If you have failed logs from the macOS+Orbot case, those are possibly useful. You can attach the logs here or email to david@bamsoftware.com.

[SaSyda]

first off, ure welcome, it is thanks to people like u that we have a chance. Secondly, yes, u got it right, and i have to insist all my tests are on home adsl connection, and the more exact listing of outcomes are as follows.

on iOS: no bridge, obfs4, snowflake and AMP dont work, all giving bootstrapped 10% as u mentioned above and general socks server failure. for the custom bridge u provided I receive: there is no configured transport called snowflake.
p.s. when i scan the qr code, it gives me the error of qr code could not be decoded! are u sure u scanned...

on Android: likewise no bridge, obs4, snowflake and AMP dont work, all giving these lines, and nothing more:
updating settings in Tor service
Updating torrc custom configuration…
Orbot is starting…
Connected to tor control port
Added control port event handler
and for the custom bridge provided, i concludes with:
NOTICE: Application request when we haven't used client functionality lately. Optimistically trying known bridges again.

and on windows and macOS, the only working protocol for tor browser, is by using snowflake or custom bridges provided elsewhere, and not even the meek-azure.

I dont have the means to give u more detailed feedback from android as i'm not an expert in using android debuggers and tools like wireshark, but if there's any other way to help, keep me posted.
and about the macOS+orbot, i'm not sure how to generate and copy the failed logs. in case u could give me a stepped tutorial like u just did, for setup of advanced logging on orbot i'll sure do it.

As followed, I uploaded my whole snowflake-client file, from this morning that i setup the current advanced logging mode. For the record, my last try in this log file was done using the custom bridge u provided up there.

sorry if i misunderstood any step or question of urs, and thanks again for being there for us.
snowflake-client.log

[wkrp]

Thanks so much. I'll summarize my understanding of the results. In short, the only working configuration is Tor Browser for desktop with snowflake, and there, any configuration of snowflake works (default, custom front, custom ampcache). Additionally, it appears not to be possible to configure a custom snowflake bridge in Orbot for iOS.

works	OS	client software	bridge	front	ampcache
	iOS	Orbot	none
	iOS	Orbot	obfs4
	iOS	Orbot	snowflake/builtin	cdn.sstatic.net
	iOS	Orbot	snowflake/builtin	www.google.com	cdn.ampproject.org
*	iOS	Orbot	snowflake/custom	ajax.aspnetcdn.com
*	iOS	Orbot	snowflake/custom	cdn.ampproject.org	cdn.ampproject.org
	Android	Orbot	none
	Android	Orbot	obfs4
	Android	Orbot	snowflake/builtin	cdn.sstatic.net
	Android	Orbot	snowflake/builtin	www.google.com	cdn.ampproject.org
*	Android	Orbot	snowflake/custom	ajax.aspnetcdn.com
*	Android	Orbot	snowflake/custom	cdn.ampproject.org	cdn.ampproject.org
	Windows	Tor Browser	none
✓	Windows	Tor Browser	snowflake/builtin
✓	Windows	Tor Browser	snowflake/custom	ajax.aspnetcdn.com
✓	Windows	Tor Browser	snowflake/custom	cdn.ampproject.org	cdn.ampproject.org
	Windows	Tor Browser	meek-azure
	macOS	Tor Browser	none
✓	macOS	Tor Browser	snowflake/builtin
✓	macOS	Tor Browser	snowflake/custom	ajax.aspnetcdn.com
✓	macOS	Tor Browser	snowflake/custom	cdn.ampproject.org	cdn.ampproject.org
	macOS	Tor Browser	meek-azure

* = "there is no configured transport called 'snowflake'"

I will contact the Guardian Project to see if they know why snowflake in Orbot is not working while snowflake in desktop Tor Browser is working.

for the custom bridge u provided I receive: there is no configured transport called snowflake.

It is surprising to me, but it looks like Orbot for iOS does not support custom snowflake bridge lines, only the two built-in configurations. See here, where "custom" is hardcoded to mean "obfs4":

https://github.com/tladesignz/IPtProxyUI-ios/blob/49b8b61b864a9f2c4b839744146c50905d886467/IPtProxyUI/Classes/Transport.swift#L74

p.s. when i scan the qr code, it gives me the error of qr code could not be decoded! are u sure u scanned...

Sorry about that. I'm not sure what's wrong. You may have to zoom in. I tried decoding the QR code image files using zbarimg and they produced the expected output.

[SaSyda]

answering in reverse order, no problem about that, i copied it anyways, it's fine.

and oh! so that's why i couldnt use custom bridges on my phone! thanks for the notice.

and about usability of snowflake in orbot and browser, due to the fact that orbot is an ipad app, i can simply install it on my macbook, so if they could make advanced logging possible on it, i can simply run any test for u, revealing any small details u might need.

and lastly, i've been living in this country for years, and i've been a long term user of vpns and anti-filtering apps :D due to my experience with these apps, i can say that ive been seeing certain censorship protocols, such as closing fundamental app servers for the whole internet, such as what has happened for ultrasurf and 1.1.1.1 many times, if it's the case in the app, it might be true for it aswell. Maybe a more dynamic approach could solve the problem. Anyways i'm not an expert in this field, so pardon me for any stupid words up there 😄

Regards.
btw, i'll send u an email.

[free-the-internet]

snowflake-client (1).log
Some of my contacts can connect only by Orbot on Android but it was too slow to be usable, and some of them only by windows client. All set in snowflake.
The log is collected from Iran.

Considering the Iran's situation, could you do something fast, or rollback to the previous stable state?
We predict that in the next days the Internet shutdown and censorship in Iran to increase.

Also, do you have any research plans for solutions where there are some sort of "Intranet" like what we have sometimes in Iran? The situation where only the internal network is working, and the world internet is cut off. By this the regime can cut off the free flow of the information while internal services are connected and working.

Thanks.

[wkrp]

Talking to Orbot developers today, I've learned that Orbot does not directly support custom snowflake bridge lines like the ones in #131 (comment). However, there may be a way to "trick" Orbot into using a custom snowflake bridge line, at least in Orbot for Android.

1. From the main screen, tap Use Bridges, then Snowflake (Method 1 - Fastly), then go back to the main screen.
2. Open the Settings menu, then under Debug, tap Torrc Custom Config, and paste in the following line:
   Bridge snowflake 192.0.2.3:80 2B280B23E1107BB62ABFC40DDCC8824814F80A72 fingerprint=2B280B23E1107BB62ABFC40DDCC8824814F80A72 url=https://snowflake-broker.azureedge.net/ front=ajax.aspnetcdn.com ice=stun:stun.voip.blackberry.com:3478,stun:stun.altar.com.pl:3478,stun:stun.antisip.com:3478,stun:stun.bluesip.net:3478,stun:stun.dus.net:3478,stun:stun.epygi.com:3478,stun:stun.sonetel.com:3478,stun:stun.sonetel.net:3478,stun:stun.stunprotocol.org:3478,stun:stun.uls.co.za:3478,stun:stun.voipgate.com:3478,stun:stun.voys.nl:3478
   This line is the same as the first one in Unexplained drop in Snowflake client polls and bandwidth, testers wanted #131 (comment), with the addition of a Bridge prefix.
3. Tap OK, go back the main screen, and start Tor.

If this works the way I think it does, then the resulting torrc file will have two Bridge snowflake lines, the default one that does not work, and the manually entered one that works. You can also experiment with the ampcache line from #131 (comment).

[wkrp]

I captured a pcap of Orbot 16.6.1-RC-3-tor.0.4.6.10 on Android bootstrapping with Snowflake (Method 1 - Fastly). I also got a pcap of Tor Browser 11.5.2 on Linux bootstrapping with Snowflake. The fingerprints of the two Client Hellos are the same, differing only in fields that are expected to differ (Random, Session ID, key_share).

What does this mean? @SaSyda reported Orbot not working and desktop Tor Browser working on the same network connection. It could be that the TLS fingerprints on platforms I haven't tested are different. Or that the issue is not (only) about TLS fingerprint. It could be that a stage of the connection process other than the connection to the broker is being disrupted. (Though because of the almost instantaneous drop in client polling requests at the broker, it really looks like the rendezvous process is being disrupted, at least.)

Orbot 16.6.1-RC-3-tor.0.4.6.10 on Android Snowflake Client Hello dissection

Secure Sockets Layer
    TLSv1.2 Record Layer: Handshake Protocol: Client Hello
        Content Type: Handshake (22)
        Version: TLS 1.0 (0x0301)
        Length: 280
        Handshake Protocol: Client Hello
            Handshake Type: Client Hello (1)
            Length: 276
            Version: TLS 1.2 (0x0303)
            Random: f8ef130cc7fbe002d51cff3fce81d9ec1d90120e14390c1e...
                GMT Unix Time: May  6, 2102 21:59:08.000000000 MDT
                Random Bytes: c7fbe002d51cff3fce81d9ec1d90120e14390c1ea5099737...
            Session ID Length: 32
            Session ID: a58815e59c7f07496cf0f26575cc4ffa3e93f09f26b9af29...
            Cipher Suites Length: 38
            Cipher Suites (19 suites)
                Cipher Suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 (0xcca9)
                Cipher Suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 (0xcca8)
                Cipher Suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 (0xc02b)
                Cipher Suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xc02f)
                Cipher Suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 (0xc02c)
                Cipher Suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (0xc030)
                Cipher Suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA (0xc009)
                Cipher Suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA (0xc013)
                Cipher Suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA (0xc00a)
                Cipher Suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (0xc014)
                Cipher Suite: TLS_RSA_WITH_AES_128_GCM_SHA256 (0x009c)
                Cipher Suite: TLS_RSA_WITH_AES_256_GCM_SHA384 (0x009d)
                Cipher Suite: TLS_RSA_WITH_AES_128_CBC_SHA (0x002f)
                Cipher Suite: TLS_RSA_WITH_AES_256_CBC_SHA (0x0035)
                Cipher Suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA (0xc012)
                Cipher Suite: TLS_RSA_WITH_3DES_EDE_CBC_SHA (0x000a)
                Cipher Suite: TLS_CHACHA20_POLY1305_SHA256 (0x1303)
                Cipher Suite: TLS_AES_128_GCM_SHA256 (0x1301)
                Cipher Suite: TLS_AES_256_GCM_SHA384 (0x1302)
            Compression Methods Length: 1
            Compression Methods (1 method)
                Compression Method: null (0)
            Extensions Length: 165
            Extension: server_name (len=20)
                Type: server_name (0)
                Length: 20
                Server Name Indication extension
                    Server Name list length: 18
                    Server Name Type: host_name (0)
                    Server Name length: 15
                    Server Name: cdn.sstatic.net
            Extension: status_request (len=5)
                Type: status_request (5)
                Length: 5
                Certificate Status Type: OCSP (1)
                Responder ID list Length: 0
                Request Extensions Length: 0
            Extension: supported_groups (len=10)
                Type: supported_groups (10)
                Length: 10
                Supported Groups List Length: 8
                Supported Groups (4 groups)
                    Supported Group: x25519 (0x001d)
                    Supported Group: secp256r1 (0x0017)
                    Supported Group: secp384r1 (0x0018)
                    Supported Group: secp521r1 (0x0019)
            Extension: ec_point_formats (len=2)
                Type: ec_point_formats (11)
                Length: 2
                EC point formats Length: 1
                Elliptic curves point formats (1)
                    EC point format: uncompressed (0)
            Extension: signature_algorithms (len=26)
                Type: signature_algorithms (13)
                Length: 26
                Signature Hash Algorithms Length: 24
                Signature Hash Algorithms (12 algorithms)
                    Signature Algorithm: rsa_pss_rsae_sha256 (0x0804)
                        Signature Hash Algorithm Hash: Unknown (8)
                        Signature Hash Algorithm Signature: Unknown (4)
                    Signature Algorithm: ecdsa_secp256r1_sha256 (0x0403)
                        Signature Hash Algorithm Hash: SHA256 (4)
                        Signature Hash Algorithm Signature: ECDSA (3)
                    Signature Algorithm: ed25519 (0x0807)
                        Signature Hash Algorithm Hash: Unknown (8)
                        Signature Hash Algorithm Signature: Unknown (7)
                    Signature Algorithm: rsa_pss_rsae_sha384 (0x0805)
                        Signature Hash Algorithm Hash: Unknown (8)
                        Signature Hash Algorithm Signature: Unknown (5)
                    Signature Algorithm: rsa_pss_rsae_sha512 (0x0806)
                        Signature Hash Algorithm Hash: Unknown (8)
                        Signature Hash Algorithm Signature: Unknown (6)
                    Signature Algorithm: rsa_pkcs1_sha256 (0x0401)
                        Signature Hash Algorithm Hash: SHA256 (4)
                        Signature Hash Algorithm Signature: RSA (1)
                    Signature Algorithm: rsa_pkcs1_sha384 (0x0501)
                        Signature Hash Algorithm Hash: SHA384 (5)
                        Signature Hash Algorithm Signature: RSA (1)
                    Signature Algorithm: rsa_pkcs1_sha512 (0x0601)
                        Signature Hash Algorithm Hash: SHA512 (6)
                        Signature Hash Algorithm Signature: RSA (1)
                    Signature Algorithm: ecdsa_secp384r1_sha384 (0x0503)
                        Signature Hash Algorithm Hash: SHA384 (5)
                        Signature Hash Algorithm Signature: ECDSA (3)
                    Signature Algorithm: ecdsa_secp521r1_sha512 (0x0603)
                        Signature Hash Algorithm Hash: SHA512 (6)
                        Signature Hash Algorithm Signature: ECDSA (3)
                    Signature Algorithm: rsa_pkcs1_sha1 (0x0201)
                        Signature Hash Algorithm Hash: SHA1 (2)
                        Signature Hash Algorithm Signature: RSA (1)
                    Signature Algorithm: ecdsa_sha1 (0x0203)
                        Signature Hash Algorithm Hash: SHA1 (2)
                        Signature Hash Algorithm Signature: ECDSA (3)
            Extension: renegotiation_info (len=1)
                Type: renegotiation_info (65281)
                Length: 1
                Renegotiation Info extension
                    Renegotiation info extension length: 0
            Extension: application_layer_protocol_negotiation (len=14)
                Type: application_layer_protocol_negotiation (16)
                Length: 14
                ALPN Extension Length: 12
                ALPN Protocol
                    ALPN string length: 2
                    ALPN Next Protocol: h2
                    ALPN string length: 8
                    ALPN Next Protocol: http/1.1
            Extension: signed_certificate_timestamp (len=0)
                Type: signed_certificate_timestamp (18)
                Length: 0
            Extension: supported_versions (len=9)
                Type: supported_versions (43)
                Length: 9
                Supported Versions length: 8
                Supported Version: TLS 1.3 (0x0304)
                Supported Version: TLS 1.2 (0x0303)
                Supported Version: TLS 1.1 (0x0302)
                Supported Version: TLS 1.0 (0x0301)
            Extension: key_share (len=38)
                Type: key_share (51)
                Length: 38
                Key Share extension
                    Client Key Share Length: 36
                    Key Share Entry: Group: x25519, Key Exchange length: 32
                        Group: x25519 (29)
                        Key Exchange Length: 32
                        Key Exchange: 0ed373eb1c4003e6e797f56e9ed190d0032c2555fee48404...

[wkrp]

@free-the-internet thank you for the logs. To me, it looks like a log of a successful connection on desktop Tor Browser, is that correct? It looks like it took about 3 minutes to find a proxy that was working well, but it did eventually connect.

Considering the Iran's situation, could you do something fast, or rollback to the previous stable state?

Unfortunately it's nothing we changed. There's no different earlier state to roll back to. The difference seems to be a new form of blocking instituted about 3 days ago. We are doing our best to identify the cause and find workarounds.

[SaSyda]

@wkrp i'm giving more thoughts to ur idea. Thought i should report this as well. I downloaded onion browser on ios and the whole process went on like orbot, can't see much of debug log on that app either, but felt the same from what i could see.
It's actually 4 am so it might be better for me to sleep and give my opinion, after giving it more thoughts. In the meantime, I, as a not expert, yeah i insist, might take a look at the steps taken after the 10% bootstrapped, it sure must be sth dropping in those moments, and yeah, i dont think it has anything to do with TLS fingerprint either.