mirror of https://github.com/TecharoHQ/anubis.git synced 2025-08-03 09:48:08 -04:00

Go to file

fix(web): amend future leak on proof of work solution (#879 )

Possible fix for #877

In some cases, the parallel solution finder in Anubis could cause
all of the worker promises to leak due to the fact the promises
were being improperly terminated. A recursion bomb happens in the
following scenario:

1. A worker sends a message indicating it found a solution to the proof
   of work challenge.
2. The `onmessage` handler for that worker calls `terminate()`
3. Inside `terminate()`, the parent process loops through all other
   workers and calls `w.terminate()` on them.
4. It's possible that terminating a worker could lead to the `onerror`
   event handler.
5. This would create a recursive loop of `onmessage` -> `terminate` ->
   `onerror` -> `terminate` -> `onerror` and so on.

This infinite recursion quickly consumes all available stack space, but
this has never been noticed in development because all of my computers
have at least 64Gi of ram provisioned to them under the axiom paying for
more ram is cheaper than paying in my time spent having to work around
not having enough ram. Additionally, ia32 has a smaller base stack size,
which means that they will run into this issue much sooner than users on
other CPU architectures will.

The fix adds a boolean `settled` flag to prevent termination from
running more than once.

Signed-off-by: Xe Iaso <me@xeiaso.net>

2025-07-21 17:50:31 -04:00

.devcontainer

chore: fix name of backoff-retry, expose in devcontainer

2025-07-18 17:51:13 +00:00

.github

build(deps): bump the github-actions group with 2 updates (#871 )

2025-07-20 20:54:50 -04:00

.vscode

feat: dev container support (#734 )

2025-06-29 23:41:29 -04:00

cmd

fix(cmd/anubis): add signal handling to metrics server (#856 )

2025-07-18 13:56:52 +00:00

data

Add services folder, add Uptime Robot policy definition (#838 )

2025-07-16 09:17:48 -04:00

decaymap

feat(lib): use new challenge creation flow (#749 )

2025-07-04 20:42:28 +00:00

docs

fix(web): amend future leak on proof of work solution (#879 )

2025-07-21 17:50:31 -04:00

internal

feat(anubis): add /healthz route to metrics server (#843 )

2025-07-17 00:31:18 +00:00

lib

Remove duplicated string in Filipino language file (#875 )

2025-07-20 23:17:48 -04:00

run

fix(run/anubis@.service): unique runtimedir per instance (#750 )

2025-07-03 10:29:05 +00:00

test

chore: fix name of backoff-retry, expose in devcontainer

2025-07-18 17:51:13 +00:00

utils/cmd/backoff-retry

test(ssh-ci): deflake SSH CI with exponential backoff (#859 )

2025-07-18 17:46:49 +00:00

var

initial import from /x/ monorepo

2025-03-17 19:33:07 -04:00

web

fix(web): amend future leak on proof of work solution (#879 )

2025-07-21 17:50:31 -04:00

xess

chore: Remove unused/dead code (#703 )

2025-06-25 09:31:33 -04:00

.air.toml

feat: add a strip-base-prefix option (#655 )

2025-06-12 17:46:08 -04:00

.gitattributes

fix(gitattributes): update pattern for generated files (#652 )

2025-06-11 21:00:37 +00:00

.gitignore

feat: implement localization system (#716 )

2025-06-27 17:49:15 +00:00

.ko.yaml

Try using ko to build images

2025-03-19 09:10:29 -04:00

anubis.go

feat(localization): Add option for forcing a language (#742 )

2025-07-02 05:33:00 +00:00

Brewfile

all: do not commit generated JS/CSS to source control (#148 )

2025-03-28 14:55:25 -04:00

go.mod

Revert "build(deps): bump the gomod group with 6 updates (#873 )" (#874 )

2025-07-21 01:22:40 +00:00

go.sum

Revert "build(deps): bump the gomod group with 6 updates (#873 )" (#874 )

2025-07-21 01:22:40 +00:00

LICENSE

initial import from /x/ monorepo

2025-03-17 19:33:07 -04:00

Makefile

Makefile: Build robots2policy (#699 )

2025-06-20 11:08:56 -04:00

package-lock.json

build(deps-dev): bump the npm group with 3 updates (#872 )

2025-07-20 20:56:02 -04:00

package.json

build(deps-dev): bump the npm group with 3 updates (#872 )

2025-07-20 20:56:02 -04:00

README.md

chore(sponsors): add fabulous systems

2025-07-12 23:08:30 +00:00

VERSION

chore: release v1.21.0 (#844 )

2025-07-16 21:21:20 -04:00

yeetfile.js

feat: add robots2policy CLI to convert robots.txt to Anubis CEL (#657 )

2025-06-14 23:41:00 -04:00

README.md

Anubis

A smiling chibi dark-skinned anthro jackal with brown hair and tall ears looking victorious with a thumbs-up

Overview

Anubis is a Web AI Firewall Utility that weighs the soul of your connection using one or more challenges in order to protect upstream resources from scraper bots.

This program is designed to help protect the small internet from the endless storm of requests that flood in from AI companies. Anubis is as lightweight as possible to ensure that everyone can afford to protect the communities closest to them.

Anubis is a bit of a nuclear response. This will result in your website being blocked from smaller scrapers and may inhibit "good bots" like the Internet Archive. You can configure bot policy definitions to explicitly allowlist them and we are working on a curated set of "known good" bots to allow for a compromise between discoverability and uptime.

In most cases, you should not need this and can probably get by using Cloudflare to protect a given origin. However, for circumstances where you can't or won't use Cloudflare, Anubis is there for you.

If you want to try this out, connect to anubis.techaro.lol.

Support

If you run into any issues running Anubis, please open an issue. Please include all the information I would need to diagnose your issue.

For live chat, please join the Patreon and ask in the Patron discord in the channel #anubis.

Star History

Packaging Status

Contributors

Made with contrib.rocks.

Languages

Go 87.4%

JavaScript 5.4%

Shell 4%

templ 1.9%

CSS 0.7%

Other 0.5%

README.md

Anubis

Sponsors

Diamond Tier

Gold Tier

Overview

Support

Star History

Packaging Status

Contributors