Rust Will Save Linux from AI: Greg Kroah-Hartman on C Bugs and Rust's Safety Guarantees
At Rust Week 2026, Linux stable kernel maintainer Greg Kroah-Hartman made a bold claim: Rust will save Linux from the escalating flood of AI-discovered security vulnerabilities. He cited recent serious bugs like Dirty Frag, Copy Fail, and Fragnesia as evidence that traditional C code can't keep up with automated bug-finding tools. The kernel team now issues roughly 13 CVEs per day.
Why Rust? Compile-Time Enforcement
Kroah-Hartman demonstrated with real examples: a 15-year-old Bluetooth bug that dereferenced a pointer without checking, and a Xen bug where a lock was forgotten in an error path. He estimates that 60% of kernel bugs fall into two categories: unchecked error conditions and locking errors. Rust eliminates these entirely at compile time.
He highlighted Rust's locking abstractions in the kernel: "The only way you can get access to inner pointers of structures is by grabbing that lock, and releasing the lock automatically. The compiler does it... You just can't write code to access these values without grabbing the lock." This shifts correctness checking from human review to the compiler.
Impact on C Code
Even if Rust vanished tomorrow, Kroah-Hartman said its influence has already forced Linux to adopt better C patterns: "We stole this from Rust. Thank you." New C "guards" and scoped locks inspired by Rust's ownership model now make it harder for C code to mishandle locks and memory.
With ~5,000 developers but only ~700 maintainers, review time is the bottleneck. Rust's safety guarantees let maintainers approve code faster: "If I can review your code more easily, I can glance at it and say, 'Hey, look, you obviously got it right because you use that pattern.'"
The Bottom Line
Kroah-Hartman isn't claiming Rust is magic — he's saying it directly removes the most common and dangerous bug classes. AI tools are accelerating vulnerability discovery, but Rust's compile-time checks offer a scalable defense. More Linux kernel code will be written in Rust going forward, and existing C code is being cleaned up under Rust's influence.
📖 Read the full source: HN AI Agents
👀 See Also
Anthropic's New Claude Subscription Credits: Agent SDK and claude -p Get Separate Capped Pool Starting June 15
Starting June 15, Claude subscribers get a separate monthly credit for Agent SDK and claude -p usage: $200/mo for Max 20x, $100 for Max 5x, $20 for Pro. Usage stops when credit depletes unless extra billing is opted in. Interactive Claude Code and chat remain on the subscription pool.
Google Quietly Buying Play Store Code to Train AI Coding Tools
Google is emailing Android developers offering to pay for their app codebases to train AI coding tools, as part of a confidential pilot program.
ChatGPT Workspace Agents Free Preview Ends Today — How It Compares to OpenClaw and Hermes
OpenAI's ChatGPT Workspace Agents free preview ends May 6, switching to credit-based pricing. The Reddit post compares it to OpenClaw, Hermes, and managed platforms like BetterClaw for team vs. personal use.
Kimi K2.6 vs Claude Opus 4.7: Hands-On Test with a Minetest Bounty Board Mod
A developer tested Kimi K2.6 and Claude Opus 4.7 on building a Minetest/Luanti bounty board mod with TypeScript backend and Google Sheets logging. Opus got it working cleanly; Kimi failed on the integration part.