Hacker News: jaromilrojo

New comment by jaromilrojo in "CJIT: C, Just in Time"

jaromilrojo — Wed, 29 Apr 2026 11:45:55 +0000

hi! matter of timing I guess, development isn't stopping :^) a friend just prompted me to look at unx - fun to see if it all works with cjit

Show HN: CJIT, a single-binary C compiler that can self host

jaromilrojo — Mon, 13 Apr 2026 13:11:27 +0000

CJIT started as a hobby project around Fabrice Bellard’s tinyCC and slowly grew into something much more practical. It is now a small portable C compiler and runner that works across Linux, macOS, and Windows, can self host, and is packaged as a single executable.

What mattered most to me was keeping the barrier to entry low. You can take one small binary, drop it onto a system, and compile or run C code using the libraries already available there, without setting up a full toolchain or installing a large stack of dependencies.

I find that useful for quick prototyping, testing, auditing, learning, and generally exploring real systems with less friction. The codebase also reached a point where it feels solid and maintainable, not just experimental.

It is still a small project, and I want to keep it that way: simple, useful, and easy to carry around.

A fun extra: it works nicely with raylib as well.

Interested in feedback from people here, especially on the single-binary approach and whether this kind of tool feels useful in practice.

Comments URL: https://news.ycombinator.com/item?id=47751458

Points: 7

# Comments: 1

New comment by jaromilrojo in "The Future Was Federated"

jaromilrojo — Fri, 06 Feb 2026 07:59:07 +0000

This article was never meant as a comparison between existing federated and decentralized protocols. But we do take up the challenge for the next, good idea!

New comment by jaromilrojo in "C, Just in Time"

jaromilrojo — Fri, 06 Dec 2024 08:43:14 +0000

Hi! thanks for your enthusiasm. I am writing a tutorial that can be fun both for experienced and newbie coders here https://dyne.org/docs/cjit

New comment by jaromilrojo in "C, Just in Time"

jaromilrojo — Tue, 26 Nov 2024 14:46:11 +0000

As a fun project we hacked a C interpreter (based on tinyCC) that compiles C code in-memory and runs it live. CJIT today is a 2MB executable that can do a lot, including call functions from any installed library on Linux, Windows, and MacOSX.

C, Just in Time

jaromilrojo — Tue, 26 Nov 2024 14:46:11 +0000

Article URL: https://dyne.org/cjit/

Comments URL: https://news.ycombinator.com/item?id=42246209

Points: 15

# Comments: 7

New comment by jaromilrojo in "Benchmark of the BBS+ Signature Scheme"

jaromilrojo — Fri, 16 Aug 2024 09:34:57 +0000

For anyone interested, benchmarks of the zero-knowledge proof signature closer to standardization today.

Benchmark of the BBS+ Signature Scheme

jaromilrojo — Fri, 16 Aug 2024 09:34:57 +0000

Article URL: https://news.dyne.org/benchmark-of-the-bbs-signature-scheme-v06/

Comments URL: https://news.ycombinator.com/item?id=41264752

Points: 3

# Comments: 1

New comment by jaromilrojo in "Backdoor in upstream xz/liblzma leading to SSH server compromise"

jaromilrojo — Sun, 31 Mar 2024 06:11:52 +0000

thanks for your review! tho you are referring to the tomb-portable unfinished experiment which is about to be dismissed since cross-platform experiments with veracrypt show very bad performance.

you are welcome to share a review of the tomb script, but be warned in that we use a lot of zsh specific features. It is a script that works since 15+ years so it has a discrete amount of patchwork to avoid regressions.

New comment by jaromilrojo in "Backdoor in upstream xz/liblzma leading to SSH server compromise"

jaromilrojo — Sat, 30 Mar 2024 20:54:52 +0000

I really appreciate your tone and dialectic reasoning, thanks for your reply. And yes, as simple as it sounds, I believe that shell scripts help a lot to maintain mission critical tools. One hands-on example is https://dyne.org/software/tomb where I took this approach to replace whole disk encryption which is nowadays also dependent on systemd-cryptsetup.

New comment by jaromilrojo in "Backdoor in upstream xz/liblzma leading to SSH server compromise"

jaromilrojo — Sat, 30 Mar 2024 15:07:09 +0000

It is 10 and more years that I experience such ad-hominem attacks.

You are so quickly labeling an identifiable professional as troll, while hiding behind your throwaway identity, that I am confident readers will be able to discern.

Meanwhile let us be precise and add more facts https://github.com/systemd/systemd/pull/31550

Our community is swamped by people like you, so I will refrain from answering further provocations, believing I have provided enough details to back my assertion.

New comment by jaromilrojo in "Backdoor in upstream xz/liblzma leading to SSH server compromise"

jaromilrojo — Sat, 30 Mar 2024 13:54:45 +0000

You are distracting from facts with speculations and trolling FUD. I refer to what is known and has happened, you are speculating on what is not known.

New comment by jaromilrojo in "Backdoor in upstream xz/liblzma leading to SSH server compromise"

jaromilrojo — Sat, 30 Mar 2024 13:40:20 +0000

This is another proof that systemd is an anti-pattern for security: with its crawling and ever growing web of dependencies, it extends the surface of vulnerability to orders of magnitude, and once embraced not even large distro communities can defend you from that.

A malware code injection in upstream xz-tools is a vector for remote exploitation of the ssh daemon due to a dependency on systemd for notifications and due to systemd's call to dlopen() liblzma library (CVE-2024-3094). The resulting build interferes with authentication in sshd via systemd.

New comment by jaromilrojo in "Devuan 5.0 Released For Debian 12 Without systemd"

jaromilrojo — Tue, 15 Aug 2023 21:11:38 +0000

The people's appreciation we get is impressive: desktop Linux users (a 3% niche in the world, I know...) really like Devuan and, in general report a better experience on distros without systemd, see https://distrowatch.com/dwres.php?resource=ranking

thanks for posting the news here, there is a lot of love and attention to detail in Daedalus <3

New comment by jaromilrojo in "Brave New Trusted Boot World"

jaromilrojo — Fri, 28 Oct 2022 20:49:56 +0000

IMHO we should maintain GNU/Linux/BSD systems as tools that can free us, not entangle us or turn us into guinea pigs.

The world is already full of proprietary systems, including the one produced by the employer of systemd. WSL has improved a lot in the past years, he should be focusing on that, or at least use that as a testing ground.

Not confining new technology like systemd has lead to an infinite amount of CVEs to deal with in the past years, this could have been avoided by not allowing a tech prototype to bypass community adoption and impose itself as a ego-driven standard.

The machine-id and its privacy implications

jaromilrojo — Sun, 01 Dec 2019 10:21:45 +0000

Article URL: https://linux.slashdot.org/story/19/11/30/0538211/the-file-varlibdbusmachine-id-matters-for-your-privacy-and-devuan-fixed-it

Comments URL: https://news.ycombinator.com/item?id=21674809

Points: 5

# Comments: 0

New comment by jaromilrojo in "Open Letter to the Free Software Movement"

jaromilrojo — Fri, 27 Sep 2019 07:29:28 +0000

fixed thanks

Devuan Jessie 1.0.0 stable release candidate announced

jaromilrojo — Sat, 22 Apr 2017 04:29:16 +0000

Article URL: https://devuan.org/os/debian-fork/stable-candidate-announce-042017

Comments URL: https://news.ycombinator.com/item?id=14171119

Points: 3

# Comments: 0

New comment by jaromilrojo in "Ask HN: What do you want to see in Ubuntu 17.10?"

jaromilrojo — Fri, 31 Mar 2017 14:19:58 +0000

also check https://www.devuan.org

we are very close to release Jessie stable, backed by a vibrant community

http://distrowatch.com/table.php?distribution=devuan

For those preferring an introductory video: https://www.youtube.com/watch?v=wMvyOGawNwo

New comment by jaromilrojo in "Balde: a microframework to develop web applications in C"

jaromilrojo — Mon, 23 May 2016 11:34:22 +0000

I used my own C code generator for CGIs for years, along mongoose for other tasks. Nowadays I'm using https://kore.io and I'm VERY happy with it, great developer experience, well written and understandable code, minimal in dependencies and no bugs so far. I'm using it quite heavily in a project, it was easy to add templating and other amenities to it. Highly recommended.