Kernel code removals driven by LLM-created security reports

# Kernel code removals driven by LLM-created security reports Source: [https://lwn.net/Articles/1068928/](https://lwn.net/Articles/1068928/) \[Posted April 22, 2026 by corbet\] There are a number of ongoing efforts to remove kernel code, mostly from the networking subsystem, as an alternative to dealing with the increase in security\-bug reports from large language models\. The proposed removals include[ISA and PCMCIA Ethernet drivers](https://lwn.net/ml/all/20260421-v7-0-0-net-next-driver-removal-v1-v1-0-69517c689d1f@lunn.ch), a[pair of PCI drivers](https://lwn.net/ml/all/[email protected]), the[ax25 and amateur radio subsystem](https://lwn.net/ml/all/[email protected]), the[ATM protocols and drivers](https://lwn.net/ml/all/[email protected]), and the[ISDN subsystem](https://lwn.net/ml/all/[email protected])\.> Remove the amateur radio \(AX\.25, NET/ROM, ROSE\) protocol implementation and all associated hamradio device drivers from the kernel tree\. This set of protocols has long been a huge bug/syzbot magnet, and since nobody stepped up to help us deal with the influx of the AI\-generated bug reports we need to move it out of tree to protect our sanity\. --- to post comments### Slightly Ambiguous Title Posted Apr 22, 2026 7:01 UTC \(Wed\) by**sneela**\(subscriber, \#180826\) \[[Link](https://lwn.net/Articles/1068930/)\] \(4 responses\) The title sort of reads like the LLM\-created security reports \_helped\_ remove the kernel code, whereas it's the problem of increasing number of LLM\-created security reports which drove the kernel code being removed\. ### Slightly Ambiguous Title Posted Apr 22, 2026 8:19 UTC \(Wed\) by**taladar**\(subscriber, \#68407\) \[[Link](https://lwn.net/Articles/1068944/)\] \(3 responses\) No, the problem is all the unmaintained code in large projects like the kernel which has been pretending to be maintained by being part of some large project instead of being a separate project where the unmaintained status would have been visible years ago\. ### Slightly Ambiguous Title Posted Apr 22, 2026 9:42 UTC \(Wed\) by**aragilar**\(subscriber, \#122569\) \[[Link](https://lwn.net/Articles/1068959/)\] \(2 responses\) Is it \(in every case\) unmaintained? Looking through the patches it seems to be older hardware, where I'd expect the only changes to be from kernel infrastructure evolution, not new features\.[https://lwn\.net/ml/all/e056d348\-4560\-4df3\-85c4\-e29393b004\.\.\.](https://lwn.net/ml/all/[email protected]/)I think highlights the problem as junk reports/code, and so reducing the number of things to review seems to be aim, even if such devices are still in use\. Leaving people to be stuck on old kernels isn't great\. ### Slightly Ambiguous Title Posted Apr 22, 2026 12:44 UTC \(Wed\) by**NAR**\(subscriber, \#1313\) \[[Link](https://lwn.net/Articles/1068976/)\] \(1 responses\) *"Leaving people to be stuck on old kernels isn't great\."*Can newer kernels boot on hardware that still has PCMCIA Ethernet cards? I mean software \(including the Linux kernel\) tend to require more and more resources over time and I'm not sure that a laptop from 1998 is able to run a Linux 7\.0\-based system anyway\.\.\. Might as well stick to a kernel from that age and if security is required \(who will want to pown that machine?\), one can always put a firewall in front of it\.\.\. ### Slightly Ambiguous Title Posted Apr 22, 2026 12:51 UTC \(Wed\) by**pizza**\(subscriber, \#46\) \[[Link](https://lwn.net/Articles/1068978/)\] ### I prefer bogus Amateur Radio than no driver Posted Apr 22, 2026 7:12 UTC \(Wed\) by**Alterego**\(guest, \#55989\) \[[Link](https://lwn.net/Articles/1068931/)\] \(3 responses\) ### I prefer bogus Amateur Radio than no driver Posted Apr 22, 2026 7:27 UTC \(Wed\) by**Funcan**\(guest, \#44209\) \[[Link](https://lwn.net/Articles/1068935/)\] This is less AI telling us what to do, and more AI pwning systems\. Rather different thing\. ### Does Amateur Radio really need drivers? Posted Apr 22, 2026 9:18 UTC \(Wed\) by**arnout**\(subscriber, \#94240\) \[[Link](https://lwn.net/Articles/1068951/)\] ### I prefer bogus Amateur Radio than no driver Posted Apr 22, 2026 10:36 UTC \(Wed\) by**tao**\(subscriber, \#17563\) \[[Link](https://lwn.net/Articles/1068964/)\] If you're willing to maintain all of those drivers and fix the bugs then I'm sure they can be kept in\-tree\. But just because they are functional doesn't mean they're secure\. Finding security issues and reporting them isn't some AI conspiracy\. But no matter in what subsystem issues are found they need to be fixed\. If there is no maintainer willing to do so, then \(especially when there are viable user\-space solutions\) the safest bet is to remove such drivers\. ### If they generate bug reports, they must also generate fixes Posted Apr 22, 2026 7:55 UTC \(Wed\) by**jafd**\(subscriber, \#129642\) \[[Link](https://lwn.net/Articles/1068940/)\] \(6 responses\) I would demand that LLMs used to generate bug reports MUST also generate patches to fix those, on pain of being ignored\. ### If they generate bug reports, they must also generate fixes Posted Apr 22, 2026 8:11 UTC \(Wed\) by**mjg59**\(subscriber, \#23239\) \[[Link](https://lwn.net/Articles/1068942/)\] \(5 responses\) The bug exists independent of whether a patch is provided or not\. This is brutally unfair on all the humans involved in developing the codebase and also ignoring the report is unfair on all the humans whose privacy and security depend on the codebase\. ### If they generate bug reports, they must also generate fixes Posted Apr 22, 2026 8:37 UTC \(Wed\) by**ballombe**\(subscriber, \#9523\) \[[Link](https://lwn.net/Articles/1068946/)\] \(4 responses\) Removing support for HAM radio will not increase the security of anyone\. ### If they generate bug reports, they must also generate fixes Posted Apr 22, 2026 8:43 UTC \(Wed\) by**taladar**\(subscriber, \#68407\) \[[Link](https://lwn.net/Articles/1068947/)\] \(3 responses\) ### If they generate bug reports, they must also generate fixes Posted Apr 22, 2026 9:31 UTC \(Wed\) by**darmengod**\(subscriber, \#130659\) \[[Link](https://lwn.net/Articles/1068956/)\] \(1 responses\) We will increase the security of HAM radio operators by removing their ability to operate their HAM radio\. ### If they generate bug reports, they must also generate fixes Posted Apr 22, 2026 9:59 UTC \(Wed\) by**farnz**\(subscriber, \#17727\) \[[Link](https://lwn.net/Articles/1068960/)\] You're not removing the ability to operate a ham radio \- this doesn't remove CAT \(serial port\) or soundcard support, nor does it prevent userspace applications like direwolf, WSJT\-X, nor are you preventing AGWPE \(the current state of the art for AX\.25 applications\) from being used\.### If they generate bug reports, they must also generate fixes Posted Apr 22, 2026 11:49 UTC \(Wed\) by**pizza**\(subscriber, \#46\) \[[Link](https://lwn.net/Articles/1068973/)\] ### Security audits for ISA card drivers\. What's the point? What's the goal here? Posted Apr 22, 2026 7:56 UTC \(Wed\) by**darmengod**\(subscriber, \#130659\) \[[Link](https://lwn.net/Articles/1068932/)\] \(4 responses\) ### Security audits for ISA card drivers\. What's the point? What's the goal here? Posted Apr 22, 2026 8:22 UTC \(Wed\) by**taladar**\(subscriber, \#68407\) \[[Link](https://lwn.net/Articles/1068945/)\] \(2 responses\) Actually I would expect the effort focused on security to depend on how easy it is for others to inject data that is then processed by that code so actually something handling data from a radio antenna where literally anyone could send data should be more hardened than most other code\. ### Security audits for ISA card drivers\. What's the point? What's the goal here? Posted Apr 22, 2026 9:25 UTC \(Wed\) by**farnz**\(subscriber, \#17727\) \[[Link](https://lwn.net/Articles/1068949/)\] \(1 responses\) The radio antenna is less of a concern \- more of a concern is that if I can load the modules on a system*without*ham radio gear installed \(e\.g\. via protocol module autoloading\), I can exploit bugs in them that allow me to get privileged access I should not have\.As an aside, if someone's affected by this,[direwolf](https://github.com/wb2osz/direwolf/blob/dev/doc/README.md)does a lot of what the ham radio stack used to do with hardware TNCs and the like in software, using your radio's soundcard interface \(the one you'd also use for things like FT8 and JS8CALL\)\. ### Security audits for ISA card drivers\. What's the point? What's the goal here? Posted Apr 22, 2026 10:33 UTC \(Wed\) by**epa**\(subscriber, \#39769\) \[[Link](https://lwn.net/Articles/1068962/)\] ### Security audits for ISA card drivers\. What's the point? What's the goal here? Posted Apr 22, 2026 11:39 UTC \(Wed\) by**pm215**\(subscriber, \#98099\) \[[Link](https://lwn.net/Articles/1068970/)\] ### Rewrite\-in\-Rust projects Posted Apr 22, 2026 8:08 UTC \(Wed\) by**hailfinger**\(subscriber, \#76962\) \[[Link](https://lwn.net/Articles/1068939/)\] \(2 responses\) ### Rewrite\-in\-Rust projects Posted Apr 22, 2026 10:31 UTC \(Wed\) by**tao**\(subscriber, \#17563\) \[[Link](https://lwn.net/Articles/1068961/)\] \(1 responses\) ### Rewrite\-in\-Rust projects Posted Apr 22, 2026 10:41 UTC \(Wed\) by**epa**\(subscriber, \#39769\) \[[Link](https://lwn.net/Articles/1068965/)\] The idea is that even if the code stays unmaintained, no matter how horribly buggy it is, if implemented in safe Rust it won't be able to cause memory corruption in the wider kernel\. \(At most an attacker would be able to interfere with the functioning of that device, which I guess could be considered a security issue if you have an NFS filesystem mounted over your PCMCIA Ethernet link or ham radio\.\)