Skip to content

feat: add non-SHA256 proof of work challenge method#1151

Closed
Xe wants to merge 27 commits into
mainfrom
Xe/wasm3
Closed

feat: add non-SHA256 proof of work challenge method#1151
Xe wants to merge 27 commits into
mainfrom
Xe/wasm3

Conversation

@Xe

@Xe Xe commented Sep 23, 2025
edited
Loading

Copy link
Copy Markdown
Contributor

Closes #283
Closes #1116
Closes #1159

  • Base implementation in Rust
  • Base implementation in the client
  • Add Rust to the build closure in CI
  • Fix package builds in CI
  • Fix smoke tests
  • Documentation
  • Add wasm feature detection to choose between baseline and simd128
  • Find a better algorithm than argon2id

This adds Rust to the build closure of Anubis. Any complaints about this will be deleted.

Checklist:

  • Added a description of the changes to the [Unreleased] section of docs/docs/CHANGELOG.md
  • Added test cases to the relevant parts of the codebase
  • Ran integration tests npm run test:integration (unsupported on Windows, please use WSL)
  • All of my commits have verified signatures

@Xe Xe self-assigned this Sep 23, 2025
github-advanced-security[bot]
github-advanced-security AI found potential problems Sep 23, 2025
View reviewed changes

@github-advanced-security github-advanced-security AI left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

check-spelling found more than 20 potential problems in the proposed changes. Check the Files changed tab for more details.

@awilfox

awilfox commented Sep 23, 2025

Copy link
Copy Markdown

This adds Rust to the build closure of Anubis. Any complaints about this will be deleted.

Yes hello I would like to complain about the fact it still uses Go. Can't the rest of it be rewritten in Rust, so it can be more portable?

@Xe

Xe commented Sep 23, 2025

Copy link
Copy Markdown
Contributor Author

This adds Rust to the build closure of Anubis. Any complaints about this will be deleted.

Yes hello I would like to complain about the fact it still uses Go. Can't the rest of it be rewritten in Rust, so it can be more portable?

With enough money, anything is possible :)

@Xe
feat: add wasm rigging
908f85d 
Signed-off-by: Xe Iaso <me@xeiaso.net>
Xe added 4 commits September 27, 2025 18:33
@Xe
chore: add rust-toolchain.toml
03a6c07 
Signed-off-by: Xe Iaso <me@xeiaso.net>
@Xe
feat(web/js): add wasm client side runner
a63cbc7 
Signed-off-by: Xe Iaso <me@xeiaso.net>
@Xe
feat(lib/challenge/wasm): server side validation logic
8999303 
Signed-off-by: Xe Iaso <me@xeiaso.net>
@Xe
ci: fix rust dependencies
f150e4b 
Signed-off-by: Xe Iaso <me@xeiaso.net>
github-advanced-security[bot]
github-advanced-security AI found potential problems Sep 28, 2025
View reviewed changes
Comment thread .github/workflows/docker.yml Fixed
Comment thread .github/workflows/rust.yml Dismissed
Comment thread .github/workflows/rust.yml Fixed
Comment thread .github/workflows/rust.yml Fixed
Xe added 9 commits September 28, 2025 02:45
@Xe
ci: fix rust wasm32 target
9959cb0 
Signed-off-by: Xe Iaso <me@xeiaso.net>
@Xe
ci(packages): fix builds
bed126e 
Signed-off-by: Xe Iaso <me@xeiaso.net>
@Xe
ci: test ssh ci for the wasm stack
1c5ce19 
Signed-off-by: Xe Iaso <me@xeiaso.net>
@Xe
test(ssh-ci): use TecharoHQ/ci-images SSH runner image
41bfbf7 
Signed-off-by: Xe Iaso <me@xeiaso.net>
@Xe
chore(wasm): argon2id -> hashx
8b60b43 
Signed-off-by: Xe Iaso <me@xeiaso.net>
@Xe
fix(lib): detect failures on challenge method initialization
cf931cc 
Signed-off-by: Xe Iaso <me@xeiaso.net>
@Xe
feat(web/wasm): use simd128 if available
097c9e9 
Signed-off-by: Xe Iaso <me@xeiaso.net>
@Xe
chore: cleanups
a0df3d4 
Signed-off-by: Xe Iaso <me@xeiaso.net>
@Xe
feat(web/wasm): start work on wasm2js, found bugs in the code, stoppi…
bd5613c 
…ng to go to bed

Signed-off-by: Xe Iaso <me@xeiaso.net>
@Xe

Xe commented Sep 28, 2025

Copy link
Copy Markdown
Contributor Author

Update: wasm2js has a weird bug involving parsing the output of the Rust compiler. Gonna debug tomorrow when I'm not dog tired. I may need help from a WebAssembly expert on this.

@Xe

Xe commented Sep 28, 2025

Copy link
Copy Markdown
Contributor Author

Trying this instead: https://www.npmjs.com/package/webassemblyjs

@Xe

Xe commented Sep 28, 2025

Copy link
Copy Markdown
Contributor Author
Screenshot 2025-09-28 at 10 46 22

This both requires a nightly compiler (to build this with the "MVP" CPU target, or without bulk memory instructions), and doesn't work.

@Xe
fix: disable broken wasm interpreter flow for now
705da2f 
Signed-off-by: Xe Iaso <me@xeiaso.net>
@Xe Xe mentioned this pull request Sep 28, 2025
Open
@Xe

Xe commented Sep 28, 2025

Copy link
Copy Markdown
Contributor Author

I broke the pure JS flow out into #1159.

@Xe
feat(wasm): support "pure JS" mode
643b471 
Closes #1159

This uses the binaryen tool wasm2js to compile the Anubis WASM blobs
to JavaScript. This produces biblically large (520Ki) outputs when you
inline both hashx and sha256 solvers, but this is a tradeoff that I'm
willing to accept. The performance is good enough in my testing with
JIT enabled. I fear that this may end up being terrible with JIT
disabled. I have no idea if this will work on big endian or not.

Signed-off-by: Xe Iaso <me@xeiaso.net>
@Xe

Xe commented Sep 30, 2025

Copy link
Copy Markdown
Contributor Author

Aha! I figured it out! I have to use wasm2js on the "baseline" build. This causes everything to work correctly.

Xe added 2 commits September 30, 2025 14:27
@Xe
chore: clean up places I forced things in testing
bba000e 
Signed-off-by: Xe Iaso <me@xeiaso.net>
@Xe
ci: fix invocations of setup-binaryen
a29025c 
Signed-off-by: Xe Iaso <me@xeiaso.net>
Xe added 2 commits September 30, 2025 14:30
@Xe
Update metadata
45c9cb6 
check-spelling run (pull_request) for Xe/wasm3

Signed-off-by: check-spelling-bot <check-spelling-bot@users.noreply.github.com>
on-behalf-of: @check-spelling <check-spelling-bot@check-spelling.dev>
@Xe
ci: use binaryen 108
2ad7be2 
Signed-off-by: Xe Iaso <me@xeiaso.net>
github-advanced-security[bot]
github-advanced-security AI found potential problems Sep 30, 2025
View reviewed changes
Comment thread wasm/pow/hashx/src/lib.rs Fixed
Comment thread wasm/pow/sha256/run.js
}

// Example usage:
const data = hexToUint8Array("98ea6e4f216f2fb4b69fff9b3a44842c38686ca685f3f55dc48c5d3fb1107be4");

Check warning

Code scanning / check-spelling

Candidate Pattern Warning

Line matches candidate pattern (sha-... -- uses a fancy capture) (\?['\"]|")[0-9a-f]{40,}\\g{-1}
Comment thread wasm/pow/sha256/run.js
}

// Example usage:
const data = hexToUint8Array("98ea6e4f216f2fb4b69fff9b3a44842c38686ca685f3f55dc48c5d3fb1107be4");

Check warning

Code scanning / check-spelling

Candidate Pattern Warning

Line matches candidate pattern (hex runs) \\b[0-9a-fA-F]{16,}\\b
Comment thread wasm/pow/sha256/src/lib.rs Fixed
Xe added 4 commits September 30, 2025 14:39
@Xe
fix(wasm): use interpreter on aarch64 for now
7f1a719 
Signed-off-by: Xe Iaso <me@xeiaso.net>
@Xe
docs: add wasm documentation
0699f33 
Signed-off-by: Xe Iaso <me@xeiaso.net>
@Xe
fix(wasm): support loading webassembly again
c04bd48 
Signed-off-by: Xe Iaso <me@xeiaso.net>
@Xe
chore(wasm): spelling fixes
accffa6 
Signed-off-by: Xe Iaso <me@xeiaso.net>
github-advanced-security[bot]
github-advanced-security AI found potential problems Sep 30, 2025
View reviewed changes
Comment thread docs/docs/admin/configuration/challenges/wasm.mdx Dismissed
Comment thread docs/docs/admin/configuration/challenges/wasm.mdx

:::note

The difficulty values for the WebAssembly based checks are going to be much higher than the equivalent difficulty values for the [JavaScript based checks](./proof-of-work.mdx). Generally these count the number of leading _bits_ that much match instead of the number of leading _nibbles_ that must match. Here's a rough translation table:

Check failure

Code scanning / check-spelling

Forbidden Pattern Error documentation

higher than matches a line_forbidden.patterns rule: Should be 'greater than' - '\\bhigher than\\b'
Comment thread docs/docs/admin/configuration/challenges/wasm.mdx

:::note

This is included mostly as a fallback for usecases that specifically require this hashing function. There are known tools that solve this particular challenge. Prefer [hashx](#hashx) unless you know what you are doing.

Check failure

Code scanning / check-spelling

Unrecognized Spelling Error documentation

usecases is not a recognized word
@Xe
docs: update CHANGELOG
1530eab 
Signed-off-by: Xe Iaso <me@xeiaso.net>
@Xe Xe marked this pull request as ready for review September 30, 2025 21:03
@Xe
docs: update CHANGELOG with binaryen dependency
158a3b8 
Signed-off-by: Xe Iaso <me@xeiaso.net>
@Xe Xe changed the title feat: add wasm rigging feat: add non-SHA256 proof of work challenge method Sep 30, 2025
@Xe
ci: fix smoke tests
8cc2c4d 
Signed-off-by: Xe Iaso <me@xeiaso.net>
@s5bug

s5bug commented Jun 15, 2026

Copy link
Copy Markdown

What's left to do here (or new now that there's conflicts)?

@Xe

Xe commented Jun 15, 2026

Copy link
Copy Markdown
Contributor Author

There are a bunch of things I need to do in order to better rethink how this should work. I'm going to start from a fresh fork and publish it as Xe/wasm4. There's been private/offline experimentation and load testing that has informed the designs at play.

@Xe Xe mentioned this pull request Jun 15, 2026
Open
9 tasks
@Xe

Xe commented Jun 15, 2026

Copy link
Copy Markdown
Contributor Author

moved to #1684

@Xe Xe closed this Jun 15, 2026
@s5bug

s5bug commented Jun 15, 2026

Copy link
Copy Markdown

Awesome, thx!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@Xe Xe

Labels

None yet

Projects

None yet

Milestone

No milestone

4 participants

@Xe @awilfox @s5bug @github-advanced-security