LoongArch: BPF: Fix sign extension for 12-bit immediates

georgejguo · Kernel Patches Daemon · commit a6d116d9231c · 2025-11-03T00:48:59.000-08:00
When loading immediate values that fit within 12-bit signed range, the move_imm function incorrectly used zero extension instead of sign extension. The bug was exposed when scx_simple scheduler failed with -EINVAL in ops.init() after passing node = -1 to scx_bpf_create_dsq(). Due to incorrect sign extension, `node >= (int)nr_node_ids` evaluated to true instead of false, causing BPF program failure. Verified by testing with the scx_simple scheduler (located in tools/sched_ext/). After building with `make` and running ./tools/sched_ext/build/bin/scx_simple, the scheduler now initializes successfully with this fix. Fix this by using sign extension (sext) instead of zero extension for signed immediate values in move_imm. Fixes: 5dc6155 ("LoongArch: Add BPF JIT support") Reported-by: Bing Huang <huangbing@kylinos.cn> Signed-off-by: George Guo <guodongtai@kylinos.cn>
diff --git a/arch/loongarch/net/bpf_jit.h b/arch/loongarch/net/bpf_jit.h
@@ -122,7 +122,8 @@ static inline void move_imm(struct jit_ctx *ctx, enum loongarch_gpr rd, long imm
 	/* addiw rd, $zero, imm_11_0 */
 	if (is_signed_imm12(imm)) {
 		emit_insn(ctx, addiw, rd, LOONGARCH_GPR_ZERO, imm);
-		goto zext;
+		emit_sext_32(ctx, rd, is32);
+		return;
 	}
 
 	/* ori rd, $zero, imm_11_0 */

Original file line number	Diff line number	Diff line change
`@@ -122,7 +122,8 @@ static inline void move_imm(struct jit_ctx *ctx, enum loongarch_gpr rd, long imm`
`122`	`122`	`/* addiw rd, $zero, imm_11_0 */`
`123`	`123`	`if (is_signed_imm12(imm)) {`
`124`	`124`	`emit_insn(ctx, addiw, rd, LOONGARCH_GPR_ZERO, imm);`
`125`		`- goto zext;`
	`125`	`+ emit_sext_32(ctx, rd, is32);`
	`126`	`+ return;`
`126`	`127`	`}`
`127`	`128`
`128`	`129`	`/* ori rd, $zero, imm_11_0 */`