轨道：一种自托管语言，仅支持TLS。

轨道：一种自托管语言，仅支持TLS。
Rail: A self-hosting language that speaks TLS alone

## Rail：一种自举的系统编程语言 Rail 是一种新颖的、自举的系统编程语言，专为速度和简洁性而设计。它不依赖 C 语言，并且占用的空间非常小——一个 729KB 的 ARM64 二进制文件可以编译自身，并达到字节级的固定点。核心运行时功能，包括垃圾回收，直接用 ARM64 汇编实现。最近的进展（v3.0.0）引入了通过纯 Rail TLS 1.3 协议栈实现的本地 HTTPS 支持，消除了对 OpenSSL、curl 或类似库的依赖。这允许直接与 Anthropic 的 Claude 等 API 通信。 Rail 支持多种后端（macOS ARM64、Linux ARM64/x86_64、WASM），并具有独特的自我改进系统，编译器充当 AI 训练的适应度函数。它包括原生浮点数、效果处理程序以及带有模式匹配和 ADT 的函数式编程风格等特性。 Rail 不追求形式化验证或 ANSI 标准化，而是优先考虑性能、可靠性和狭窄、明确定义的表面积。它采用商业源代码许可证，可免费用于非生产用途。

一种名为“Rail”的新型自托管语言发布，旨在单独处理TLS，但正在受到Hacker News社区的批评。用户声称该项目似乎主要由人工智能驱动，作者似乎使用LLM生成代码和营销材料——优先考虑编译而非正确性。具体而言，担忧集中在一个有缺陷的TLS实现上：它无法正确验证证书链，即使使用自签名证书也容易受到中间人攻击。安全漏洞还包括用于私钥创建的可预测随机数生成器以及静态文件服务器中的目录遍历漏洞。评论员认为该项目的声明被夸大，并且代码本身难以理解，质疑发布广泛的加密组件而不进行适当实现的语言的价值。

原文

A self-hosting systems language that speaks TLS alone.
_{Zero C dependencies. GC in ARM64 assembly. HTTPS in pure Rail.}

Quick start · What Rail does · Why Rail · Changelog · Releases

Rail compiles itself. The compiler — 4,687 lines of Rail — produces a 729 KB ARM64 binary that compiles the compiler again and reaches byte-identical fixed point. There is no C in the runtime, no libc in the binary. The garbage collector is ARM64 assembly. As of v3.0.0, the TLS 1.3 client is Rail too: import "stdlib/anthropic_client.rail" and your program talks HTTPS to api.anthropic.com with zero OpenSSL, zero curl, zero socat.

./rail_native self && cp /tmp/rail_self ./rail_native
./rail_native self && cmp rail_native /tmp/rail_self  # byte-identical
./rail_native test                                     # 116/116

git clone https://github.com/zemo-g/rail
cd rail
./rail_native run examples/hello.rail

Apple Silicon (ARM64 macOS) is the primary target; Linux ARM64, Linux x86_64, and WASM backends are supported.

./rail_native <file.rail>        # compile to /tmp/rail_out
./rail_native run <file.rail>    # compile + execute
./rail_native test               # run the 116-test suite
./rail_native self               # self-compile, fixed point
./rail_native x86 <file.rail>    # cross-compile to Linux x86_64
./rail_native linux <file.rail>  # cross-compile to Linux ARM64

1. Compiles itself, byte-identical

./rail_native self                    -- 4,687 lines of Rail →
                                      --   a 729 KB ARM64 binary
cp /tmp/rail_self ./rail_native
./rail_native self                    -- that binary compiles the
                                      --   compiler again
cmp rail_native /tmp/rail_self        -- and the output is identical

The GC, allocator, and runtime support are ARM64 assembly embedded in the compiler itself. No gcc, no libc, no linker scripts — just as and ld.

2. Speaks HTTPS, natively ✨ new in v3.0.0

import "stdlib/anthropic_client.rail"

main =
  let (status, reply) = anthropic_chat
                          "claude-haiku-4-5-20251001"
                          "Reply with exactly: hello from pure rail"
                          40
                          "/Users/me/.fleet/anthropic_key"
  let _ = print reply
  0

-- → "hello from pure rail"
-- → 6.9 s wall. Full TLS 1.3: x25519 ECDHE, ECDSA-P256 cert verify,
--   SAN hostname match, validity period, ChaCha20-Poly1305 record
--   layer. Zero OpenSSL, zero curl, zero socat.

The full X.509 chain for api.anthropic.com (leaf → WE1 intermediate → GTS Root R4) validates end-to-end to the macOS /etc/ssl/cert.pem trust store — ECDSA-P256-SHA256 at the leaf, ECDSA-P384-SHA384 at the root edge, all verified in Rail.

3. Trains its own AI, verified by the compiler

-- The self-training loop, in one flow:
--   LLM generates Rail → rail_native compiles (the oracle) →
--   passes harvested → training data feeds next round

The compiler is the fitness function. Programs that compile become training data; programs that don't are the gradient. Three independent lineages (LoRA on Gemma, Metal-GPU MLP, PCFG-REINFORCE) all use the same compiler as the binary verifier. 92 % strict pass rate on the PCFG lineage in 30 ticks.

Zero C transitive dependency. The seed binary needs only as + ld + the kernel. No glibc. No OpenSSL. No runtime C at all — the GC is 300 lines of ARM64 assembly inside the compiler.
Byte-identical self-compile. ./rail_native self produces output identical to the binary that produced it. The compiler's own source is the regression suite.
The compiler is the source of truth. Training loops, tests, site generation, HTTPS clients — they all get compiled by the same binary you cloned. If it compiles, it runs.
Production surface is narrow and honest. Rail v3.0.0 ships the crypto it uses (ChaCha20-Poly1305, x25519, SHA-256/384/512, ECDSA-P256/P384, RSA-PSS/PKCS1) and nothing more. Every primitive is NIST- or RFC-vector-validated.
Four backends travel with the language. macOS ARM64, Linux ARM64 (Pi Zero 2 W), Linux x86_64, and WASM — the same compiler cross-compiles to all of them.

-- Functions, pattern matching, ADTs
type Expr = | Num x | Add a b | Mul a b

eval e = match e
  | Num x   -> x
  | Add a b -> eval a + eval b
  | Mul a b -> eval a * eval b

main = let _ = print (show (eval (Add (Num 3) (Mul (Num 4) (Num 5))))) in 0
-- → 23

-- Higher-order, pipes, real I/O
gt3 x = x > 3
inc x = x + 1

main =
  let _ = print (show (fold (\a b -> a + b) 0 (range 101)))  -- 5050
  let _ = print (show (length (filter gt3 [1,2,3,4,5,6])))   -- 3
  let _ = write_file "/tmp/out.txt" "hello"
  let _ = print (read_file "/tmp/out.txt")                   -- hello
  0

-- Native floats (unboxed IEEE 754 in ARM64 d-registers)
-- Effect handlers (setjmp/longjmp non-local error recovery)
-- WASM output (closures + ADTs + pattern matching in the browser)
-- Metal GPU IR (JIT-compiled GPU kernels from Rail AST)

Component	Implementation	Detail
Lexer + parser	Rail	Tokenizer + recursive-descent AST builder, ~900 lines
Type checker	Rail	Forward inference, exhaustiveness warnings
Codegen	Rail	Walks AST, emits ARM64 / x86_64 / WASM directly
Allocator	ARM64 assembly	512 MB bump arena + free list + malloc fallback
GC	ARM64 assembly	Conservative mark-sweep. Scans stack frames, traces tagged objects, sweeps into free list.
Tagged pointers	Inline	Integers: `(v << 1) \| 1`. Heap: raw pointer. Tag bit 0 distinguishes.
Runtime float	d-registers	Unboxed IEEE 754. `fadd`/`fmul` direct, no heap boxing. ~10× vs boxed.

Tail-recursive loops match C -O2 (5 instructions per iteration). The full architecture is documented in CHANGELOG.md — see v2.0.0 for the compiler/runtime; v3.0.0 for the TLS stack.

v3.0.0 — 2026-04-18 — Rail speaks TLS

A complete pure-Rail TLS 1.3 stack + X.509 chain validation + HTTPS client. The ~/.fleet/tls_proxies.sh socat daemons are no longer on any critical path.

Live on release day, in production:

anthropic_chat "claude-haiku-4-5-20251001" "Reply with exactly: hello from pure rail"
  → HTTP 200, "hello from pure rail"       (6.9 s, pure Rail → Anthropic)

slack_post_text "D0ATHQ1BQD7" "v3.0.0 smoke: pure-Rail TLS"
  → ok=true, HTTP 200                      (1.0 s, pure Rail → Slack)

https_get_url "https://www.amazon.com/"
  → HTTP 200 with set-cookie, x-amz-rid    (4.0 s, RSA chain validated
                                            to DigiCert Global Root G2)

~3,800 lines of new pure-Rail crypto + TLS across 16 new stdlib modules. Every primitive NIST- or RFC-vector validated. 22 pure-Rail TLS tests, all green. Self-compile 2-pass byte-identical preserved.

Layer	Modules
Hash / MAC	`sha256`, `sha512` (SHA-384/512), `hmac`, `hkdf`
Symmetric	`chacha20`, `poly1305`, `aead` (ChaCha20-Poly1305)
Public key	`x25519`, `ecdsa_p256`, `ecdsa_p384`, `rsa_pss` (PSS + PKCS1)
Bignum	`bignum_n` — parameterised n-limb arithmetic
X.509 / PKI	`asn1`, `b64`, `pem` (128 roots from `/etc/ssl/cert.pem`)
TLS 1.3	`tls13`, `tls13_hs`, `tls13_record`, `tls13_cert_verify`, `tls13_client`, `cert_chain`, `cert_p384`
Application	`https_client`, `dns`, `anthropic_client`, `slack_client`

Full release notes: CHANGELOG.md.

v2.0.0 — 2026-04-06 — Rail becomes a self-improving system

Native floats in ARM64 d-registers, effect handlers via setjmp/longjmp, GC in assembly, four backends (macOS ARM64 / Linux ARM64 / Linux x86_64 / WASM), and three independent training lineages — all driven by the same compiler as the binary fitness function. 121 commits. 92/92 tests. Full details in CHANGELOG.md →.

Version	Date	Headline
v3.0.0	2026-04-18	Rail speaks TLS — pure-Rail HTTPS, chain validation to macOS trust store
v2.23.0	2026-04-17	Pure-Rail HTTP/1.1 client + `char_from_int`
v2.0.0	2026-04-06	Self-improving flywheel, native floats, effect handlers, GC in asm
v1.5	2026-03-25	C-matching performance, hyperagent, DNA training
v1.4	2026-03-22	GC in assembly, nested lambdas, exhaustiveness
v1.3	2026-03-21	MCP server, 32-layer LoRA, open source
v1.1	2026-03-20	Metal GPU, WASM, x86_64, fibers, flywheel
v1.0	2026-03-17	Self-hosting. Rust deleted. 67 tests.

Things Rail v3.0.0 doesn't do, so you don't hit them as surprises:

TLS ships one cipher suite (TLS_CHACHA20_POLY1305_SHA256), one ECDHE group (x25519), and three sig-algs (rsa_pss_rsae_sha256 | ecdsa_secp256r1_sha256 | rsa_pkcs1_sha256). Modern CDN fronts work; legacy servers may not.
No TLS session resumption, no 0-RTT, no client certificates.
No constant-time or side-channel resistance guarantees. This is not OpenSSL; don't ship it to a Defense customer.
Each HTTPS connection is 5–8 seconds wall time (public-key verify dominates). Great for one-shot API calls, not for an HTTP proxy.
Response body is assembled via join "" — O(N²), caps cleanly around 64 KB. Streaming is a v3.1 item.
Rail is not ANSI-standardised. There is no formal type system or soundness proof. Use it because it's fast, small, and honest — not because it's Haskell.

Business Source License 1.1. Free for non-production use; the Additional Use Grant covers research, education, and personal projects. Converts to Apache 2.0 on 2030-04-06.

GitHub's language bar shows this repo as Haskell because github-linguist doesn't know Rail exists yet. A PR is in flight to fix that. This is a Rail codebase.