Dirkjan Ochtman
LightNews LightNews
djc.ochtman.nl
Dirkjan Ochtman
@djc.ochtman.nl
1K followers 130 following 360 posts
Fan of Rust, open source maintainer. Please consider sponsoring my OSS work on GitHub.
Posts Media Videos Starter Packs
djc.ochtman.nl
Dirkjan Ochtman @djc.ochtman.nl · 2h
How long are you here?
1
djc.ochtman.nl
Dirkjan Ochtman @djc.ochtman.nl · 10h
In other words, this moves more of the complexity from the API user to the API provider, which seems like the right side of that trade-off to me. (Note that I still see a use for something between Copy and Clone, but further increases closure capture complexity seem like the wrong thing.
2
djc.ochtman.nl
Dirkjan Ochtman @djc.ochtman.nl · 10h
One reason I’m excited about the Move/Destruct direction is that it should alleviate the use for callback-like APIs because more invariants/capabilities can be enforced via guard types, which allows API users to write more boring straight-line Rust code.
1 3
djc.ochtman.nl
Dirkjan Ochtman @djc.ochtman.nl · 15h
Hot take: closures (above a certain fairly low complexity level) kinda suck and elaborating them into an explicit struct with an explicit method usually makes code easier to read. (More so in async world.) Instead, work on reducing the need (over guards), like partial borrowing?
nikomatsakis.com nikomatsakis @nikomatsakis.com · 21h
New rust-lang blog post on explicit capture clauses, continuing to document thoughts about ergonomic ref-counting:

smallcultfollowing.com/babysteps/bl...
Explicit capture clauses · baby steps
smallcultfollowing.com
1 1 15
djc.ochtman.nl
Dirkjan Ochtman @djc.ochtman.nl · 1d
Is it translating into revenue for you?
1 1
djc.ochtman.nl
Dirkjan Ochtman @djc.ochtman.nl · 1d
edera.dev/stories/tarm...
TARmageddon (CVE-2025-62518): RCE Vulnerability Highlights the Challenges of Open Source Abandonware | Edera Blog
Edera uncovers TARmageddon (CVE-2025-62518), a Rust async-tar RCE flaw exposing the real dangers of open-source abandonware and supply chain security.
edera.dev
2 4
djc.ochtman.nl
Dirkjan Ochtman @djc.ochtman.nl · 1d
This is going to be cool.
nikomatsakis.com nikomatsakis @nikomatsakis.com · 1d
New #rust blog post on how we could get types that cannot be forgotten, types that must be moved, async and const drop, and other fun stuff:

smallcultfollowing.com/babysteps/bl...
Move, Destruct, Leak, and Rust · baby steps
smallcultfollowing.com
4
djc.ochtman.nl
Dirkjan Ochtman @djc.ochtman.nl · 2d
RustSec advisories for TARmaggedon are coming soon (probably tomorrow).
2 12
djc.ochtman.nl
Dirkjan Ochtman @djc.ochtman.nl · 2d
From the other direction, putting Oxide racks into shared data centers might get a lot of those wins.
1 1
Reposted by Dirkjan Ochtman
schier.co
Greg Schier 👨‍💻 @schier.co · 3d
WTF. 🤯

Postman's server's are down and you can't even use desktop app with your local APIs!

This is exactly why I made yaak.app. It works offline, is open source, has no telemetry, no VC funding, and even syncs with Git!

Give it a try and let me know what you think ✨
3 7 27
djc.ochtman.nl
Dirkjan Ochtman @djc.ochtman.nl · 3d
Just take the crates.io git commit, done.

(Until they squash again.)
crates.io: Rust Package Registry
crates.io
2
djc.ochtman.nl
Dirkjan Ochtman @djc.ochtman.nl · 3d
Unfortunately, not everyone seems to like it.

github.com/nushell/nu-a...

github.com/lambda-fairy...
Replace windows-sys dependency with generated bindings by djc · Pull Request #71 · nushell/nu-ansi-term
This avoids the substantial churn and large downloads from the windows-sys dependency in favor of generating checked in code using the windows-bindgen crate (which ultimately also generates the win...
github.com
djc.ochtman.nl
Dirkjan Ochtman @djc.ochtman.nl · 5d
I’m tests/codegen.rs-pilled.
2 6
djc.ochtman.nl
Dirkjan Ochtman @djc.ochtman.nl · 6d
I guess Pop!OS still wins, especially when Cosmic Desktop lands.
2
Reposted by Dirkjan Ochtman
filippo.abyssdomain.expert
Filippo Valsorda @filippo.abyssdomain.expert · 7d
It's been 14 months since the ML-KEM spec was published.

age still isn't PQ because it's waiting for trivial details of the HPKE hybrids to stabilize, but they are blocked on the CFRG.

The TLS, SSHM, and LAMPS (X.509) IETF WGs are not waiting for CFRG. I just posted a plea for HPKE to do the same.
[hpke] Let's ship post-quantum HPKE
Search IETF mail list archives
mailarchive.ietf.org
1 8 53
djc.ochtman.nl
Dirkjan Ochtman @djc.ochtman.nl · 9d
Their chat messages do kinda feel like they’re structured for an LLM. 🤪
1
djc.ochtman.nl
Dirkjan Ochtman @djc.ochtman.nl · 9d
Ahh, thanks for the pointer/reminder about Rosenpass!
Reposted by Dirkjan Ochtman
rustnl.bsky.social
RustNL @rustnl.bsky.social · 9d
We're excited to announce a new initiative to support the Rust Project, our Rust Maintainers Fund!

We are setting out to employ 6 full-time maintainers and 6 interns in 2026 to make sure #rustlang is well maintained and bugs and contributions get the attention they need.

Read more: rustnl.org/fund
RustNL - Rust Maintainers Fund - Keeping the Rust Project maintained so you can focus on building reliable software
1 15 62
djc.ochtman.nl
Dirkjan Ochtman @djc.ochtman.nl · 9d
TFW when someone asks you to "resolve compilation errors" in their post-quantum VPN implementation and it's 4k lines of slop.
3 14
djc.ochtman.nl
Dirkjan Ochtman @djc.ochtman.nl · 9d
Any #rust suggestions on how to get build-std to work with sanitizers?

github.com/rust-lang/ru...
Running sanitizer tests fails with mixed ABI errors · Issue #147394 · rust-lang/rust
I tried this code: RUSTFLAGS="-Z sanitizer=address -Cunsafe-allow-abi-mismatch=sanitizer" cargo +nightly -Z build-std test --target x86_64-unknown-linux-gnu --all-features I expected to see this ha...
github.com
1 2
Reposted by Dirkjan Ochtman
servo.org
Servo @servo.org · 13d
Igalia is excited to announce a new commission from the Sovereign Tech Fund to advance the Servo web engine.

www.igalia.com/2025/10/09/I...
Igalia, Servo, and the Sovereign Tech Fund | Igalia
Igalia is an open source consultancy specialised in the development of innovative projects and solutions. Our engineers have expertise in a wide range of technological areas, including browsers and cl...
www.igalia.com
3 22 69
djc.ochtman.nl
Dirkjan Ochtman @djc.ochtman.nl · 15d
I like Handle for the trait (noun) but as a method name I don’t love handle(). Especially since it’s both a verb (but in a way that doesn’t quite fit here) and as a noun (which also doesn’t quite fit since it matches getter style but it’s not really a getter).
2 6
Reposted by Dirkjan Ochtman
molly.wiki
Molly White @molly.wiki · 16d
"[Ars Technica] asked Cruz's office to explain why a senator pressuring Wikipedia is appropriate while an FCC chair pressuring ABC is not and will update this article if we get a response."

arstechnica.com/tech-policy/...
Ted Cruz picks a fight with Wikipedia, accusing platform of left-wing bias
Cruz sends letter demanding answers from Wikimedia Foundation.
arstechnica.com
40 130 580
djc.ochtman.nl
Dirkjan Ochtman @djc.ochtman.nl · 16d
Screenshot: “WorkOS. Your app, Enterprise Ready. Start selling to enterprise customers with just a few lines of code. Implement features like single sign-on in minutes instead of months. Get started / Talk to an expert.”
1
djc.ochtman.nl
Dirkjan Ochtman @djc.ochtman.nl · 18d
It should probably have been stabilized years ago.
1