Sponsor 27

Project Title: Onion Services

Project Period: 4/1/2019 - 3/31/2020

Teams involved:

  • network
  • applications
  • ux

Project Goals/Activities

Objective 1: Enhance onion services and make v3 the default version on Core Tor, so it can scale and be more stable, with the goal of enabling more organizations to adopt it for their users.

Objective 2: Improve the end user experience of onion services with the goal of increasing user adoption and retention.

Project Tracking


Tickets related

Sponsor: Sponsor27 (11 matches)

Ticket Summary Status Owner Keywords Priority
#13410 Disable self-signed certificate warnings when visiting .onion sites needs_information pospeselr ux-team, TorBrowserTeam202008 Very High
#13747 Block non .onion content on .onion addresses (mixed content blocking) new tbb-team tbb-security, TorBrowserTeam201903 High
#18696 .onion names contain their own validator, we should use that new tbb-team Medium
#21728 Features that are made "HTTPS-only" should be available on .onion sites as well new tbb-team Medium
#25872 When Clicking more information when visiting a V3 onion some of the buttons are cut off new tbb-team Medium
#27395 Refactor the .onion related logic in nsMixedContentBlocker.cpp new tbb-team Medium
#28478 Enable http2 for .onion without https new tbb-team Medium
#29705 Enable Brotli compression for .onion domains new tbb-team Medium
#30937 Expired CA-signed SSL Cert causes error in Tor Browser new tbb-team TorBrowserTeam202008 Medium
#31899 Hook .onion with URI_IS_POTENTIALLY_TRUSTWORTHY? new tbb-team TorBrowserTeam202006 Medium
#33298 HTTP onion sites do not give a popup warning when submiting form data to non-onion HTTP sites assigned pospeselr ux-team, TorBrowserTeam202007 Medium

Sponsor: Sponsor27-can (41 matches)

Ticket Summary Status Owner Keywords Priority
#6418 Drop support for older versions of the hidden service protocol new tor-hs technical-debt deprecation Medium
#7046 TBB Comfort loader when connecting to Tor Hidden Services new tbb-team tbb-usability, tbb-torbutton, ux-team, gitlab-tb-torbutton Medium
#13194 Track time between ESTABLISH_RENDEZVOUS and RENDEZVOUS1 cell new tor-relay, tor-hs, needs-design privcount-maybe metrics performance Very Low
#16059 Add a "rendezvous approver" control API new tor-hs, tor-control, needs-proposal, term-project-ideas tor-dos Medium
#16387 Improve reachability of hidden services on mobile phones new tor-hs, sponsor8-maybe, 034-triage-20180328, 034-removed-20180328 Medium
#17254 Scalable HSes by splitting intro/rendezvous needs_revision TvdW tor-hs multicore scaling tor-dos Medium
#17640 Handle CREATE/CREATED cell processing gracefully under load. assigned yawning tor-hs, scaling, tor-dos, tor-relay Medium
#18098 prop224: Implement tor-genkey tool for offline HS key creation needs_revision haxxpop tor-hs, 040-deferred-20190220 Medium
#19950 Replace Tor Project bookmarks in TBB to their onion service equivalent new tbb-team Medium
#20212 Tor can be forced to open too many circuits by embedding .onion resources new tbb-team guard-discovery, TorBrowserTeam201803, 034-roadmap-proposed, security, tor-hs, 042-deferred-20190918 network-team-roadmap-2020Q1 Medium
#20371 Lower HSDir query backoff delay new tor-hs, research, prop224, reachability Medium
#22893 prop224: Make intro point per-service and not per-descriptor new tor-hs, prop224-extra, 034-triage-20180328, 034-removed-20180328 Very High
#23126 HSDirs should publish some count about new-style onion addresses new prop224, tor-hs, prop224-extra, research, privcount, 032-unreached Medium
#23764 hs-v3: No live consensus on client with a bridge new tor-hs, prop224, technical-debt, 034-triage-20180328, 034-removed-20180328, network-team-roadmap-2020Q1 High
#23875 Facebook's onion site is a single hop onion, but clicking on the Tor onion icon shows that it is a 6 hop circuit. new tbb-team tbb-circuit-display, ux-team, gitlab-tb-torbutton Medium
#24192 When I visit a V3 onion that supplies a invalid certificate, torbrowser will lookup the onion when the get certifice button is clicked new tbb-team High
#24973 Tor should be more gentle when launching dozens of circuits at once new tor-dos, tor-hs, performance, 034-triage-20180328, 034-removed-20180502, network-team-roadmap-2020Q1 Medium
#25066 Rendezvous points should return signed proof of the established rend point new needs-proposal, 034-triage-20180328, 034-removed-20180328 Medium
#25609 Investigate Tor client retry behavior on failing onions new guard-discovery, 034-triage-20180328, 034-removed-20180328 Medium
#26176 Display .onion services with "mixed" content in circuit display properly new tbb-team tbb-torbutton, tbb-circuit-display, gitlab-tb-torbutton Medium
#26294 attacker can force intro point rotation by ddos needs_revision asn tor-hs, tor-dos, network-team-roadmap-2020Q1, 043-deferred, 044-deferred Medium
#26322 Circuit display - UI bug - Long v3 name new tbb-team tbb-torbutton, tbb-circuit-display, gitlab-tb-torbutton Medium
#26491 Onion+cert UI text is black with Tor Browser 8.0a9 - it should be green new tbb-team ff60-esr, ux-team, TorBrowserTeam202008 Medium
#27842 Consider end-to-end introduction ACKs new tor-hs, 034-deferred-20180602 035-removed reachability Medium
#28174 Block non-.onion subresources on .onion websites? needs_information tbb-team TorBrowserTeam202006 Medium
#28992 Bug: ../src/feature/hs/hs_client.c:571: send_introduce1: Non-fatal assertion !(ip == NULL) failed. merge_ready dgoulet consider-backport-after-0434, tor-hs, 043-must, 035-backport, 041-backport, 042-backport, 043-backport, BugSmashFund High
#30221 HS performance optimizations of codebase (master ticket) new tor-dos tor-hs refactoring Medium
#30291 Optimize our path selection code new tor-performance tor-hs path-selection refactoring tor-dos Medium
#30466 hs: Do not allow more than one control cell on a circuit needs_information tor-dos, tor-hs, tor-relay Medium
#31062 token bucket: Improve library to handle under/overflow and clock jump new token-bucket, 043-deferred, 044-deferred Medium
#31223 Research approaches for improving the availability of services under DoS new tor-hs, tor-dos, network-team-roadmap-2020Q1, network-health, 043-deferred Medium
#31632 hs-v3: Service doesn't re-upload descriptor on circuit failure needs_revision dgoulet tor-hs, 042-deferred-20190918, 043-deferred Medium
#31857 Consider adopting vanguard's security suggestions for onionbalance new tor-hs scaling onionbalance tor-spec Medium
#32256 TorBrowser should advertise Onion Networking capability new tbb-team TorBrowserTeam202006 Medium
#32349 hs-v2: Intro point circuit TIMEOUT failure is not reported assigned dgoulet 035-backport, 040-backport, 041-backport, 042-backport, tor-hs, 043-deferred Medium
#32604 Add HiddenServiceExportRendPoint and HiddenServiceExportInstanceID directive needs_revision moonsikpark tor-hs, tor-dos, extra-review, needs-proposal, 043-deferred Medium
#32614 hs-v3: Consider flagging an intro point as bad if rendezvous fails multiple times needs_review neel tor-circuit, tor-hs Medium
#32623 Tor Browser should support ENS needs_information tbb-team Medium
#32824 Upgrade tpo onions to v3. new tpa High
#33517 Create onion indicator entries in portals new ux-team Medium
#33518 Create "Learn More" links in Tor Browser manual to explain common Onion Service connection errors new ggus ux-team Medium

Sponsor: Sponsor27-must (3 matches)

Ticket Summary Status Owner Keywords Priority
#27590 Display .onion alt-svc route in the circuit display assigned tbb-team tbb-circuit-display, ux-team, TorBrowserTeam202008 Medium
#27636 .onion indicator for non-self-signed but non-trusted sites assigned pospeselr ux-team, TorBrowserTeam202008 Medium
#33873 client: Send back SOCKS extended error F6 in case of bad hostname assigned dgoulet tor-hs, tor-client, socks, 044-must, postfreeze-ok Medium

Last modified 9 months ago Last modified on Jan 16, 2020, 11:09:55 AM