| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20250728184931.4b26e95f@foz.lan> Date: Mon, 28 Jul 2025 18:49:31 +0200 From: Mauro Carvalho Chehab <mchehab+huawei@...nel.org> To: Sasha Levin <sashal@...nel.org> Cc: workflows@...r.kernel.org, linux-doc@...r.kernel.org, linux-kernel@...r.kernel.org, rostedt@...dmis.org, kees@...nel.org, konstantin@...uxfoundation.org, corbet@....net, josh@...htriplett.org Subject: Re: [RFC 0/2] Add AI coding assistant configuration to Linux kernel Em Fri, 25 Jul 2025 13:53:56 -0400 Sasha Levin <sashal@...nel.org> escreveu: > This patch series adds unified configuration and documentation for AI > coding assistants working with the Linux kernel codebase. As AI tools > become increasingly common in software development, it's important to > establish clear guidelines for their use in kernel development. ... > The series consists of two patches: > > 1. The first patch adds unified configuration files for various AI > coding assistants (Claude, GitHub Copilot, Cursor, Codeium, Continue, > Windsurf, and Aider). These are all symlinked to a central documentation > file to ensure consistency across tools. Agreed with the goal, however people may be using other LLM tools, like chatgpt and deepseek, as a development aid tool, but not directly writing patches from it. Some LLM tools can be very useful when handling some bugs that may require seeking the web for some possible alternatives. On such kind of usage, it is not different of using a search engine like duckduckgo, google, yahoo,... LLMs can also be used to write unit tests/functional tests, where the actual patch can be independent of any LLM coding, if the testing toolchain is not submitted. > 2. The second patch adds the actual rules and documentation that guide > AI assistants on Linux kernel development practices, including: > - Following kernel coding standards > - Respecting the development process > - Properly attributing AI-generated contributions > - Understanding licensing requirements > > The examples below demonstrate how these guidelines work in practice, showing > proper AI attribution in commits and the assistant's understanding of kernel > documentation requirements. > > All AI assistants are required to identify themselves in commits using > Co-developed-by tags, ensuring full transparency about AI involvement in > code development. > > "Hello world" test: > > $ claude -p "do you need to attribute your commits?" > Yes, according to the CLAUDE.md file in this Linux kernel repository, I must identify myself as an AI assistant in commits by including: > > ``` > Co-developed-by: Claude claude-opus-4-20250514 Due to the above, I don't think that Co-developed-by is the best tag here, nor if we want a tag or some text written at the patch description describing how AI was used. For instance, on your example: > - /* dont operate on the pointer.. just do a sanity check.. */ > + /* don't operate on the pointer.. just do a sanity check.. */ LLM is not developing anything. It is just doing what any other spellchecker tool would do. We don't have any tags to document that, although we sometimes add comment saying that we used cocci or some other tool to identify (and/or autocorrect) the coding style and/or grammar/syntax issues. Thanks, Mauro
Powered by blists - more mailing lists