From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from us-smtp-delivery-124.mimecast.com (us-smtp-delivery-124.mimecast.com [170.10.133.124])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id CB59F3C3BE8
	for <linux-kernel@vger.kernel.org>; Mon, 11 May 2026 09:04:18 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=170.10.133.124
ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1778490260; cv=none; b=UWHOabkjgFcKNzrE3eicRZyoaZLiYggzn03UrUW/RDK22HmioKhu4Uu5bdGGHZjPUDKNG8DT1bbCxVRE52Abj1uQQoWTvtnLKke+FVv0400ePv9nWVqt7oG3OcCwWKPW7c3vewXwoGcbAuXpEmxrF4qdvS91qpTlZTrVbF7SNr4=
ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1778490260; c=relaxed/simple;
	bh=hR2o2io1GAVOsJv3zXjIRMgKCnEd5FQaTzCnowpFuV8=;
	h=Date:From:To:Cc:Subject:Message-ID:References:MIME-Version:
	 Content-Type:Content-Disposition:In-Reply-To; b=bdp0NHu/LSPKdsIOGad/+p9Jp3xhZ5ng+pb4//mdbQ2iwcW0Jqyc6h+iKab+Lto2bwRe2Lw2iSljK0xTLBdH/W0U+Sm5F9PeOLPHs8wbsEWu1PKJT2hR7b2zCEfoLmF4ZsWNg0WRd7APAWdlF+WBu4l1o7Ep3HGTCQBrQr2bExE=
ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dmarc=pass (p=quarantine dis=none) header.from=redhat.com; spf=pass smtp.mailfrom=redhat.com; dkim=pass (1024-bit key) header.d=redhat.com header.i=@redhat.com header.b=CVvPNRvn; dkim=pass (2048-bit key) header.d=redhat.com header.i=@redhat.com header.b=dpyxhX4/; arc=none smtp.client-ip=170.10.133.124
Authentication-Results: smtp.subspace.kernel.org; dmarc=pass (p=quarantine dis=none) header.from=redhat.com
Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=redhat.com
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (1024-bit key) header.d=redhat.com header.i=@redhat.com header.b="CVvPNRvn";
	dkim=pass (2048-bit key) header.d=redhat.com header.i=@redhat.com header.b="dpyxhX4/"
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=redhat.com;
	s=mimecast20190719; t=1778490258;
	h=from:from:reply-to:subject:subject:date:date:message-id:message-id:
	 to:to:cc:cc:mime-version:mime-version:content-type:content-type:
	 in-reply-to:in-reply-to:references:references;
	bh=t2QKjWRUGZavYM1HdL6nJ1yLQpyzjFP+uSIPdSalIxY=;
	b=CVvPNRvnHR6mIgpHrBsHoT6CItRwAQO2jmrXxEZdaRyHYyQ2NSYo8lfdd01OdCw13+hbb5
	LNcR4xbaoYa+aSkQRs4r/6ewwNclM5mf2MEZPHvkRvlpzpG5r/iAB/d6T4iu34e8OBKYH5
	IOBMck+qjG1lwFadotrFEFGE+HkvG/M=
Received: from mail-wm1-f71.google.com (mail-wm1-f71.google.com
 [209.85.128.71]) by relay.mimecast.com with ESMTP with STARTTLS
 (version=TLSv1.3, cipher=TLS_AES_256_GCM_SHA384) id
 us-mta-54-QPDfNx0dMp2kJvgGfhSJVw-1; Mon, 11 May 2026 05:04:16 -0400
X-MC-Unique: QPDfNx0dMp2kJvgGfhSJVw-1
X-Mimecast-MFC-AGG-ID: QPDfNx0dMp2kJvgGfhSJVw_1778490255
Received: by mail-wm1-f71.google.com with SMTP id 5b1f17b1804b1-488ba2f4094so31584135e9.1
        for <linux-kernel@vger.kernel.org>; Mon, 11 May 2026 02:04:15 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=redhat.com; s=google; t=1778490254; x=1779095054; darn=vger.kernel.org;
        h=in-reply-to:content-disposition:mime-version:references:message-id
         :subject:cc:to:from:date:from:to:cc:subject:date:message-id:reply-to;
        bh=t2QKjWRUGZavYM1HdL6nJ1yLQpyzjFP+uSIPdSalIxY=;
        b=dpyxhX4/DrGeggCgzI1Kjp+vD69GikRFPPRQkcR77JnzHDwkMPJ3VYYDB4RN/a659A
         izAotbyYojjTWYCGPCHifN0TmEioBV2g+T+HJnKLobk0sYqQyi+T7P+2GgcU1EkGgrFa
         FhWuNyGSe1ZcD0WXQCbSDUEX39XBLSnYF1M6WPiOPopXyHSj+NuDxvB5nxl2LV4y/4WV
         lDshXdOG+O+2yjJ4eNegOq7/iEz+tRhWqms32dYG1fcTghu8z4KYgv1EPaeK8PKc1BV5
         spHo/STX2Yp/QUKW+AUVixIYZ5hLeYHiw1FSv2JwDKWOton8ufO+gEAXXas63JZNpnEC
         kuSg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20251104; t=1778490254; x=1779095054;
        h=in-reply-to:content-disposition:mime-version:references:message-id
         :subject:cc:to:from:date:x-gm-gg:x-gm-message-state:from:to:cc
         :subject:date:message-id:reply-to;
        bh=t2QKjWRUGZavYM1HdL6nJ1yLQpyzjFP+uSIPdSalIxY=;
        b=ilPzb2cS6N18toLuYTv33J+aah6yc5LiTAh2xd9uo02LXmL3AoCQxa/l7zX/hFV27s
         QecbOJrZLWql9doIgEwn2AZLVytWfI67FUSuWtkfhxmc85Rv7tn8hYiXGb2Rt/UThVBM
         Xa2vSqxkkYHl62qG9Mqnw2hpc44ewi8kKxOVPTsccxr+Hg/Wjc52WQaq0jzaioKeFpQf
         jCnTSn5IyGCnSQ4kZlaqiZZZhi0sLKPxLJXg+UPoz8sA4TilgHLb7LhMQ7WWmNsdhvNZ
         nUYTogIGpH9dIZflKGnd09TzqIl+jMZ/mjvd7v8dr+PYG9kyUS26Xapi8ReTN3moBvgm
         o/aw==
X-Gm-Message-State: AOJu0Yy7hrtboAVFRiK7lGfDeYXcSbGCuEUYcAk0RgeXCvc1zs4Q9UXX
	3/QPtC9+Ax9ACGWUKpOZLg2QnCo3gMrc7FESo3Ebt6FKd3Wm8X2gWfVn/rqgTqmHgzjbM55QGwL
	1uqZa2sP81k25MzwYViOQ3zaS3XcRtO2XIyQQgAaXY/byQgMbgmf3P0COrMC7Jx2t915pvmBtvz
	ibhLLqWXxWzIVGwDEVzcnC+PkH+unS2XUnDIENoHFfTC8=
X-Gm-Gg: Acq92OHuEAdtPa8M70qcVlUvEY7/5UJB0LlCMH6b6jVH8yJ1JW+bzfSjzm+z3sxS0zE
	D2S4iiYxqPF0Wy/765r8nRUW3gXPf3/s5pygfXr0B0Wt+ZddJxjEqVVSlI1T8EbnAemCh9ApKjA
	OBZX0Apgq/Bc/Glsy5n1zqDkebB5vZGTLUIHHQPYtqzJnFt7ij7p4X/tPRSp64Ro3FyBWHUPmoD
	OCdIOkaot0hP+/pPMP2XtZSJzLS9WYtUEIJnFIsn479Sy0SukVNTTyJVq2c2KIzRNyvqXq9/wMP
	+8F7hJzBYjlzGzAftSzl8jxuDWa79zXAD2+udXRMvV2icWYpbZ9uhBJSiq2k4eLD9EXsgq2I3Rs
	aPHD4RGma7zkXb3N9z4ImhjCAA40G0f4xcR9kEec7
X-Received: by 2002:a05:600d:1:b0:48e:7f1c:8760 with SMTP id 5b1f17b1804b1-48e7f1c87bdmr67342715e9.27.1778490254418;
        Mon, 11 May 2026 02:04:14 -0700 (PDT)
X-Received: by 2002:a05:600d:1:b0:48e:7f1c:8760 with SMTP id 5b1f17b1804b1-48e7f1c87bdmr67341395e9.27.1778490253720;
        Mon, 11 May 2026 02:04:13 -0700 (PDT)
Received: from redhat.com (IGLD-80-230-48-7.inter.net.il. [80.230.48.7])
        by smtp.gmail.com with ESMTPSA id 5b1f17b1804b1-48e6db0b08asm78949215e9.8.2026.05.11.02.04.09
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Mon, 11 May 2026 02:04:13 -0700 (PDT)
Date: Mon, 11 May 2026 05:04:08 -0400
From: "Michael S. Tsirkin" <mst@redhat.com>
To: linux-kernel@vger.kernel.org
Cc: "David Hildenbrand (Arm)" <david@kernel.org>,
	Jason Wang <jasowang@redhat.com>,
	Xuan Zhuo <xuanzhuo@linux.alibaba.com>,
	Eugenio =?utf-8?B?UMOpcmV6?= <eperezma@redhat.com>,
	Muchun Song <muchun.song@linux.dev>,
	Oscar Salvador <osalvador@suse.de>,
	Andrew Morton <akpm@linux-foundation.org>,
	Lorenzo Stoakes <ljs@kernel.org>,
	"Liam R. Howlett" <Liam.Howlett@oracle.com>,
	Vlastimil Babka <vbabka@kernel.org>,
	Mike Rapoport <rppt@kernel.org>,
	Suren Baghdasaryan <surenb@google.com>,
	Michal Hocko <mhocko@suse.com>,
	Brendan Jackman <jackmanb@google.com>,
	Johannes Weiner <hannes@cmpxchg.org>, Zi Yan <ziy@nvidia.com>,
	Baolin Wang <baolin.wang@linux.alibaba.com>,
	Nico Pache <npache@redhat.com>, Ryan Roberts <ryan.roberts@arm.com>,
	Dev Jain <dev.jain@arm.com>, Barry Song <baohua@kernel.org>,
	Lance Yang <lance.yang@linux.dev>, Hugh Dickins <hughd@google.com>,
	Matthew Brost <matthew.brost@intel.com>,
	Joshua Hahn <joshua.hahnjy@gmail.com>, Rakie Kim <rakie.kim@sk.com>,
	Byungchul Park <byungchul@sk.com>,
	Gregory Price <gourry@gourry.net>,
	Ying Huang <ying.huang@linux.alibaba.com>,
	Alistair Popple <apopple@nvidia.com>,
	Christoph Lameter <cl@gentwo.org>,
	David Rientjes <rientjes@google.com>,
	Roman Gushchin <roman.gushchin@linux.dev>,
	Harry Yoo <harry.yoo@oracle.com>,
	Axel Rasmussen <axelrasmussen@google.com>,
	Yuanchu Xie <yuanchu@google.com>, Wei Xu <weixugc@google.com>,
	Chris Li <chrisl@kernel.org>, Kairui Song <kasong@tencent.com>,
	Kemeng Shi <shikemeng@huaweicloud.com>,
	Nhat Pham <nphamcs@gmail.com>, Baoquan He <bhe@redhat.com>,
	virtualization@lists.linux.dev, linux-mm@kvack.org,
	Andrea Arcangeli <aarcange@redhat.com>
Subject: [PATCH resend v6 26/30] virtio_balloon: disable reporting zeroed
 optimization for confidential guests
Message-ID: <77585f29352cb5fa235898db07e7a3fa04d4d04e.1778489843.git.mst@redhat.com>
References: <cover.1778489843.git.mst@redhat.com>
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <cover.1778489843.git.mst@redhat.com>
X-Mailer: git-send-email 2.27.0.106.g8ac3dc51b1
X-Mutt-Fcc: =sent

In confidential computing environments (TDX, SEV-SNP), the host
is untrusted and may lie about zeroing reported pages. Clear
DEVICE_INIT_REPORTED in validate() so the guest does not skip
re-zeroing based on hints from an untrusted device.

Signed-off-by: Michael S. Tsirkin <mst@redhat.com>
Assisted-by: Claude:claude-opus-4-6
Assisted-by: cursor-agent:GPT-5.4-xhigh
---
 drivers/virtio/virtio_balloon.c | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/drivers/virtio/virtio_balloon.c b/drivers/virtio/virtio_balloon.c
index e5d11782ce41..d1cdb904d60b 100644
--- a/drivers/virtio/virtio_balloon.c
+++ b/drivers/virtio/virtio_balloon.c
@@ -18,6 +18,7 @@
 #include <linux/wait.h>
 #include <linux/mm.h>
 #include <linux/page_reporting.h>
+#include <linux/cc_platform.h>
 
 /*
  * Balloon device works in 4K page units.  So each page is pointed to by
@@ -1190,6 +1191,8 @@ static int virtballoon_validate(struct virtio_device *vdev)
 	    !want_init_on_free())
 		__virtio_clear_bit(vdev, VIRTIO_BALLOON_F_DEVICE_INIT_REPORTED);
 
+	if (cc_platform_has(CC_ATTR_GUEST_MEM_ENCRYPT))
+		__virtio_clear_bit(vdev, VIRTIO_BALLOON_F_DEVICE_INIT_REPORTED);
 	__virtio_clear_bit(vdev, VIRTIO_F_ACCESS_PLATFORM);
 	return 0;
 }
-- 
MST