From: SJ Park <sj@kernel.org>
To: Roman Gushchin <roman.gushchin@linux.dev>
Cc: SJ Park <sj@kernel.org>, ksummit@lists.linux.dev
Subject: Re: [MAINTAINERS SUMMIT] The place of AI code review in the Linux Kernel process
Date: Wed, 15 Jul 2026 17:30:13 -0700 [thread overview]
Message-ID: <20260716003014.89963-1-sj@kernel.org> (raw)
In-Reply-To: <7ia4qzl45h20.fsf@castle.c.googlers.com>
On Wed, 15 Jul 2026 16:55:03 +0000 Roman Gushchin <roman.gushchin@linux.dev> wrote:
> Sashiko and AI code reviews in general have gained a lot of traction in
> the kernel community over the last few months. I think it is fair to say
> that at this point there are no more questions about the usefulness of
> AI code review in general. However, there are many questions about how
> to improve current workflows and better integrate them into the kernel
> development process.
It is very helpful for me. Appreciate your efforts again.
>
> Some specific topics I propose we discuss:
> * Review of LTS patches and kernel releases.
> Currently, Sashiko reviews only publicly proposed changes, and it is
> completely up to individual maintainers whether to take the findings
> into account. By starting to review kernel releases and LTS backports,
> we can likely significantly improve security and minimize the number of
> regressions. However, this adds to the workload of maintainers, and we
> need to agree on a specific process. For example, we could agree to
> bring up only critical and high-severity issues and expect the authors
> of corresponding changes to provide a fix-up or explain why it is not an
> issue.
I once made a mistake in a manual stable backport of a patch that was failed to
be automatically backported by the stable kernel maintainers. I was able to
fix it because Sashiko found and reported the mistake, because I was Cc-ing a
mailing list that onboarded to Sashiko. So I can show the clear advantage of
LTS patches.
But I'm also concerned if I will have to read and (optionally) reply to same
Sashiko findings that I already decided to ignore for each of the stable
backports.
Doing that for each release could also be useful at finding issues made during
the merges into the trees towards the mainline. But I'm concerned if this can
be seen like ignoring each subsystem's decision about Sashiko. My previous
concern about a case that I have to read Sashiko's comment that I already
decided to ignore again. Probably just one more time, so less concerned than
the LTS case, but still concerned and better to be avoided.
>
> * How to maintain the long-term stability of Sashiko?
> Several kernel engineers and maintainers have rightfully expressed
> concerns about relying on infrastructure provided by a single company
> without clear formal guarantees. It would be great to discuss what a
> more sustainable model could realistically look like and how we might
> get there.
I personally not really worrry about this at this stage. To my understanding,
it is already Linux Foundation's open source project, and can learn with any
LLM including open models on any setup. But, if this is a real concern, I'm
wondering if moving the entire infrastructure to Linux Foundation (like
kernel.org) and using an open model for the public instance can relieve the
concern.
I'm bit concerned if using an open model will increase the false positives of
Sashiko. But I feel like that would still be useful for small subsystems
having no many reviewers. And we might be able to let more people help
improving Sashiko prompts by running a setup same to the public one on their
local setup? Like normal open source projects do.
>
> * Handling of pre-existing bugs.
> Currently, Sashiko reports pre-existing bugs alongside new issues
> (while trying hard to highlight that these issues were not introduced by
> the proposed change). This approach comes with significant pros (a
> steady stream of bug fixes) and cons (additional noise and workload for
> maintainers). I am considering a database of pre-existing issues to
> ensure they are reported only once (or once per year), with an option
> for the respective maintainers to flag them as false positives. This
> will also provide maintainers an access to a deduplicated and ranked
> list of potential issues in their subsystem’s codebase.
I know Sashiko has evolved to handle this issue much better than the initial
days and appreciate the developers' efforts. But, still it is true it still
has rooms to improve.
I think having the database will be super helpful. I personally show its value
more on reducing duplicated reports. And in this case, I would be less
bothered and even prefer repeated reporting if it mentions it is a duplicated
reports of an issue that I can check later on the database.
The false positive flagging would also be nice. For a case that even the
maintainer can mistake or change minds, having a way to revoke it would also be
nice. For cases that maintainer wants to fix in long term, but with low
priority, having the score would also be helpful.
>
> * Prompt development and testing.
> Currently, prompts are maintained in two GitHub repositories and are
> changed manually or with the help of AI coding agents. However, there is
> no established practice for testing them, especially across various LLM
> models. At the last LSFMMBPF conference, there was a discussion about
> moving them into the kernel tree. I see some pros and cons to this
> approach, but the ownership and testing models are not entirely clear.
I find no reason to say no to the idea of having the prompts inside the kernel
tree. I think those are at lest need to be hosted on some trusted safe place,
like kernel.org.
If we have the trusted found issues database, and if we have ways to give
feedback to issues. Maybe we could use the feedback to the issues as a way to
measure if it is getting better or worse?
>
> * Interactive mode.
> Many engineers have asked for some sort of interactive mode where they
> can ask additional questions or follow up on the initial feedback from
> Sashiko. I plan to add this to the local review mode, but for the
> central public instance, it is problematic from both security and token
> cost perspectives. Sashiko could analyze false-positive cases reported by
> engineers, attempt to verify them, and automatically suggest specific
> prompt adjustments. However, there is a non-trivial number of cases
> where people are wrong to dismiss AI findings. How should we treat these
> cases?
I really wish this feature. Top two use cases I want to be in real are:
1. Applying patch on specific tree.
2. Review of a fixup patch.
I agree the cost and security are concerns. I wonder if we could have a kind
of limitation for the request frequency and scope to mitigate those issues.
For example, we could restrict the specific tree for use case 1 to trees hosted
in kernel.org or signed by known and trusted developers.
>
> Thanks!
Thanks,
SJ
prev parent reply other threads:[~2026-07-16 0:30 UTC|newest]
Thread overview: 9+ messages / expand[flat|nested] mbox.gz Atom feed top
2026-07-15 16:55 [MAINTAINERS SUMMIT] The place of AI code review in the Linux Kernel process Roman Gushchin
2026-07-15 17:51 ` Miguel Ojeda
2026-07-15 21:37 ` Roman Gushchin
2026-07-15 17:56 ` Mauro Carvalho Chehab
2026-07-15 18:57 ` Jason Gunthorpe
2026-07-15 21:21 ` Roman Gushchin
2026-07-15 19:45 ` Dmitry Torokhov
2026-07-16 0:03 ` Steven Rostedt
2026-07-16 0:30 ` SJ Park [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20260716003014.89963-1-sj@kernel.org \
--to=sj@kernel.org \
--cc=ksummit@lists.linux.dev \
--cc=roman.gushchin@linux.dev \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.