Skip to content

feat(kernel): Enable LWTUNNEL_BPF and SCHED_CORE#15607

Merged
rlmenge merged 3 commits into3.0-devfrom
rlmenge/kernel/lwtunnel
Feb 25, 2026
Merged

feat(kernel): Enable LWTUNNEL_BPF and SCHED_CORE#15607
rlmenge merged 3 commits into3.0-devfrom
rlmenge/kernel/lwtunnel

Conversation

@rlmenge
Copy link
Contributor

@rlmenge rlmenge commented Jan 28, 2026
edited
Loading

Merge Checklist

All boxes should be checked before merging the PR (just tick any boxes which don't apply to this PR)

  • The toolchain has been rebuilt successfully (or no changes were made to it)
  • The toolchain/worker package manifests are up-to-date
  • Any updated packages successfully build (or no packages were changed)
  • Packages depending on static components modified in this PR (Golang, *-static subpackages, etc.) have had their Release tag incremented.
  • Package tests (%check section) have been verified with RUN_CHECK=y for existing SPEC files, or added to new SPEC files
  • All package sources are available
  • cgmanifest files are up-to-date and sorted (./cgmanifest.json, ./toolkit/scripts/toolchain/cgmanifest.json, .github/workflows/cgmanifest.json)
  • LICENSE-MAP files are up-to-date (./LICENSES-AND-NOTICES/SPECS/data/licenses.json, ./LICENSES-AND-NOTICES/SPECS/LICENSES-MAP.md, ./LICENSES-AND-NOTICES/SPECS/LICENSE-EXCEPTIONS.PHOTON)
  • All source files have up-to-date hashes in the *.signatures.json files
  • sudo make go-tidy-all and sudo make go-test-coverage pass
  • Documentation has been updated to match any changes to the build system
  • Ready to merge
Summary

Enables CONFIG_LWTUNNEL_BPF (Lightweight Tunnel BPF) support in the kernel. This allows attaching eBPF programs to routing entries (via encap bpf) so routes can execute BPF-based encapsulation/forwarding actions without requiring a dedicated tunnel netdevice. No behavior changes unless encap bpf routes are configured.

Enable SCHED_CORE to support core scheduling, allowing the scheduler to restrict which tasks may co-run on sibling hyperthreads for improved SMT isolation and side-channel risk reduction.

Change Log
  • Enable LWTUNNEL_BPF and SCHED_CORE
Does this affect the toolchain?

YES

Associated issues

Deliverable 60731579
Deliverable 56815298
Deliverable 56763828
#8224

Test Methodology
  • Pipeline build id: xxxx

@rlmenge rlmenge changed the title kernel, kernel-ipe: Enable LWTUNNEL_BPF and SCHED_CORE kernel: Enable LWTUNNEL_BPF and SCHED_CORE Jan 28, 2026
@microsoft-github-policy-service microsoft-github-policy-service bot added Packaging specs-extended PR to fix SPECS-EXTENDED 3.0-dev PRs Destined for AzureLinux 3.0 labels Jan 28, 2026
@rlmenge rlmenge force-pushed the rlmenge/kernel/lwtunnel branch from f50fe08 to 324119e Compare February 23, 2026 23:21
@rlmenge rlmenge changed the title kernel: Enable LWTUNNEL_BPF and SCHED_CORE feat(kernel): Enable LWTUNNEL_BPF and SCHED_CORE Feb 24, 2026
@rlmenge rlmenge mentioned this pull request Feb 24, 2026
Merged
12 tasks
@rlmenge rlmenge marked this pull request as ready for review February 25, 2026 02:07
@rlmenge rlmenge requested review from a team as code owners February 25, 2026 02:07
rlmenge
rlmenge commented Feb 25, 2026
View reviewed changes
Copy link
Contributor Author

@rlmenge rlmenge left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Github workflow check failures due to known ptest failures for systemd and libguestfs

This was referenced Feb 25, 2026
Open
Merged
@rlmenge rlmenge merged commit b1778a8 into 3.0-dev Feb 25, 2026
29 of 32 checks passed
@rlmenge rlmenge deleted the rlmenge/kernel/lwtunnel branch February 25, 2026 17:29
@rlmenge rlmenge mentioned this pull request Feb 26, 2026
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@christopherco christopherco christopherco approved these changes

Assignees

No one assigned

Labels

3.0-dev PRs Destined for AzureLinux 3.0 Packaging specs-extended PR to fix SPECS-EXTENDED

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@rlmenge @christopherco