4 days ago
21
Follow ZDNET: Add america arsenic a preferred source connected Google.
ZDNET's cardinal takeaways
- Ubuntu 26.04 is designed from the crushed up for AI developers.
- The caller Ubuntu Linux comes with AI-specific dev environments.
- This Linux besides comes with Rust-based representation information built in.
In London, Canonical laminitis and CEO Mark Shuttleworth argued that Ubuntu 26.04, Ubuntu Linux, is the operating strategy for the "AI agentic era." Well, that's casual to claim, but what does Canonical person that tin backmost up that claim?
Shuttleworth: from curl-to-bash to confined snaps
In his keynote for Ubuntu Summit 26.04, Shuttleworth framed unfastened root arsenic the "raw material" of the adjacent question of technological disruption. Specifically, helium stated that the gait of AI-driven bundle innovation has outstripped accepted packaging and merchandise processes. For AI, Linux users indispensable determination beyond Advanced Packaging Tool (APT) and Red Hat Package Manager (RPM) to signed, auto-updated, policy-driven snaps. Of course, snaps person agelong been Canonical's reply to delivering upstream software, but present AI requires updates astatine net velocity without sacrificing auditability oregon control, and that means snaps.
Also: Ubuntu 26.04 vs. Fedora 44: After years of investigating some Linux distros, here's my verdict
Shuttleworth cited caller telemetry from developer Alan Pope's Snap Store dashboard that shows dozens of drawback updates landing successful a azygous morning, crossed architectures from x86 and Arm to RISC-V and Power, each coming from the aforesaid tested bits. He positioned snaps, with confinement, progressive rollouts, channels, and endeavor gating, arsenic the "single best, safest mode to present bits to immoderate Linux distro connected the planet."
While Shuttleworth defended snaps successful general, Ubuntu VP of Engineering Jon Seager drilled into caller user-facing behavior: fine-grained support prompts for snapped apps, akin to those successful Android and iOS. For example, erstwhile a confined app archetypal tries to entree the camera, the desktop tin present aboveground a punctual asking the idiosyncratic to assistance oregon contradict access, acknowledgment to caller plumbing from the kernel and AppArmor up done snapd and GNOME's show manager.
Sandbox everything: from snaps to LXD, Multipass, and microVMs
The different crushed Ubuntu is the operating strategy you privation for AI, according to Shuttleworth, is security. With this Ubuntu release, everything tin tally successful a layered toolbox. Everything? Everything. It's not conscionable apps, but AI agents and third-party bundle improvement kits (SDKs) arsenic well. On Ubuntu today, that spans drawback confinement, Docker/OCI containers, LXD strategy containers, accepted virtual machines (VMs) via Multipass, and a caller procreation of microVMs that blur the enactment betwixt containers and virtualization.
Also: Ubuntu 26.04 amazed maine - this upcoming merchandise is earnestly secure
This premix is essential, Shuttleworth claims, for "agentic engineering," wherever organizations whitethorn privation to tally thousands of agents, each believing it has a afloat Linux strategy portion really being tightly constrained for density and safety. LXD-based strategy containers supply the illusion of afloat machines for agents, portion microVMs, delivered via an "Open Shell" snap that spins up hardened, per-agent environments for tools similar Claude oregon Copilot, adhd hardware-enforced isolation erstwhile a kernel bound is not enough.
Workshop: a caller mode to onboard developers and agents
Also, 1 factual caller portion is Workshop. This is simply a instrumentality Canonical built connected LXD to make "agentic workspaces." It's meant to lick a long-standing symptom point: combining delicate developer credentials with untrusted oregon semi-trusted code.
Developers oregon teams tin perpetrate a Workshop explanation to a repo. Thus, onboarding a caller quality oregon cause becomes "git clone, store launch." With these, the institution claims, you tin motorboat sandboxed improvement environments and agentic workflows that are composable and repeatable with a azygous command, portion keeping your big strategy isolated.
Also: Ubuntu Core 26 offers an immutable Linux you tin spot done 2041
Workshop works by booting a strategy instrumentality and past selectively binding successful high-value secrets and resources, specified arsenic SSH keys for signed commits, entree to circumstantial datasets, and routes to distant Git servers, without dumping a developer's full laptop situation into the sandbox. Canonical is already moving with ISVs to vessel signed SDKs into a dedicated Workshop store truthful that closed-source SDKs and agents tin tally alongside Ubuntu and Debian packages successful a controlled environment.
AI, Ubuntu, and the 'implicit features' stake
Seager picked up wherever Shuttleworth near off, arguing that Canonical has nary prime but to beryllium "in the heavy of" AI and agents if unfastened root is to person immoderate accidental successful however these systems evolve. Rather than racing to bolt an LLM gimmick into the shell, Seager outlined a two-track strategy: implicit AI features that softly amended existing capabilities, and explicit AI features that Canonical volition rotation retired much cautiously.
On the implicit side, helium pointed to accessibility and media arsenic near-term opportunities: section speech-to-text, amended camera autofocus, and microphone enhancement powered by tiny on-device models that tin tally adjacent connected CPU-only laptops. On the explicit side, helium previewed a extremity for Ubuntu 26.10: a desktop wherever "you tin property a fastener and speech into immoderate tract you could antecedently benignant in," backed by models similar Whisper and plumbed into each substance introduction aboveground connected the system.
Also: This is my favourite Linux distro of each clip - and I've tried them all
Seager was explicit that AI-driven accessibility is simply a halfway plan target, not an afterthought. He called today's Linux surface readers "bluntly suck," and argued that feeding a framebuffer oregon camera seizure into an LLM could radically amended some the statement of on-screen contented and the presumption of imaginable actions to visually impaired users.
Beyond accessibility, Seager teased "new ways of interacting with your machine" that thin connected Ubuntu's existing confinement story: In an agentic desktop, each instrumentality an cause tin telephone would beryllium packaged arsenic its ain confined snap, giving fine-grained power implicit what the cause tin bash connected the user's behalf. He promised thing factual to "play with successful the adjacent six months," describing it arsenic a mode for non-experts to get "20 years of Linux desktop hacker" capableness via agents, without needing the hacker inheritance themselves.
Additionally, connected the AI and HPC front, Seager stressed Canonical's enactment with NVIDIA and AMD to marque GPU enablement boring ... successful a bully way. Ubuntu users tin present "just apt instal CUDA and apt instal ROCm," with Canonical and the vendors collaborating to guarantee that the drivers and stacks are decently integrated and tested connected 26.04.
Seager added that his ain AMD GPU "has ne'er sung arsenic nicely arsenic it does connected 26.04" and that, for the archetypal time, helium "didn't person to endure immoderate pain" to marque it happen. Combined with Ubuntu's enactment connected architecture variants, shipping full archives compiled for circumstantial instruction-set levels specified arsenic amd64v3, Canonical wants to guarantee that the costly acceleration hardware enterprises are buying is afloat supported by Ubuntu Linux and its bundled tools.
Keeping Ubuntu accessible successful a token-metered world
Both Shuttleworth and Seager ended by promising to support Ubuntu's historical committedness alive, shipping "precisely the aforesaid bits" to hedge-fund quants and kids successful the suburbs of Kolkata, successful a satellite wherever AI usage is metered successful costly tokens. Shuttleworth warned that tying productivity and adjacent basal knowing of codification to proprietary, cloud-hosted models risks locking retired the "poorest members of our integer society" unless open-weight models and unfastened tooling stay a superior focus.
Also: 6 reasons wherefore I've stuck with Ubuntu-based Linux distros for the past 20 years
Seager, for his part, rejected some "moral" disengagement from AI and vanity metrics similar "who tin walk the astir tokens." He argued that open-source-savvy players similar Canonical person to enactment engaged, assistance the assemblage enactment done a messy play of AI-generated "slop contributions," and usher the eventual convergence connected a caller procreation of high-quality open-source components, present with agents and AI portion of the toolkit.
Beyond AI: Rust, security, and crypto
Seager besides highlighted however Ubuntu 26.04 incorporates representation information successful the basal system. He highlighted 3 pillars: Rust-based rewrites of captious utilities, a caller Rust-based cryptographic instauration called Universal Public Key Infrastructure (UPKI), and a unified, Rust-based time-sync stack.
On 26.04 Long Term Support (LTS), coreutils specified arsenic mv, cp, rm, and ls are present backed by the Rust-based uutils project, pursuing 2 Canonical-funded information audits. Sudo has been replaced by sudo-rs, a Rust implementation that drops long-accumulated "ill-informed" features and tightens representation information astatine the privilege bound connected each Ubuntu machine. Next, Canonical plans to swap bzip2 for a Rust implementation that Seager says is "up to 50% much efficient," with Zlib and Zstandard targeted by 28.04 -- changes helium argued could construe into important planetary vigor savings fixed however wide these codecs are used.
Also: Rust volition prevention Linux from AI, says Greg Kroah-Hartman
The constituent of UPKI is to bring browser-grade PKI hygiene to the Linux bid line. Today, Seager noted, curl happily ignores certificate revocation lists, and command-line TLS often breaks connected misconfigured certificate chains that browsers silently tolerate. UPKI volition centralize revocation, intermediate preloading, and yet post-quantum algorithms specified arsenic Merkle-tree-based schemes, with glue codification being written for OpenSSL, GnuTLS, curl, and others truthful that tools crossed the stack tin devour the aforesaid modern PKI data.
On the different side, a caller NTP-rs utility volition present NTP, NTS, and PTP "in a azygous binary, azygous configuration," aiming to radically simplify precision clip configuration connected Linux.
Speeding up Ubuntu releases for the AI age
Seager described 26.04 arsenic the archetypal LTS delivered nether a caller engineering "manifesto" that included a monthly shipping subject enforced by an all-new merchandise pipeline built with Go and Temporal. The team, helium said, deed each monthly target, which successful crook made the LTS merchandise smoother.
Also: The 3rd large Linux kernel flaw successful 2 weeks has been recovered - acknowledgment to AI
He added that Canonical has besides been softly rebuilding its assemblage and communications muscle. Seager claimed that Canonical has added much halfway developers successful the past six months than successful the erstwhile 3 years and has deliberately accrued its blogging, Mastodon posts, podcasts, and assemblage appearances. The result, Seager joked, is that "for anybody who doesn't similar Ubuntu, it's a spot of a unsmooth clip ... you virtually can't get distant from america connected the Internet."
It besides means Ubuntu tin support up with AI's unthinkable pace.
English (US) ·