Starting from M4 cores and MacOS 15.2 SDK, HVF can virtualise FEAT_SME2.
Signed-off-by: Manos Pitsidianakis <manos.pitsidianakis@linaro.org>
---
target/arm/hvf/hvf.c | 29 +++++++++++++++++------------
1 file changed, 17 insertions(+), 12 deletions(-)
diff --git a/target/arm/hvf/hvf.c b/target/arm/hvf/hvf.c
index 3d194680cc87e78835098df2e0e7987ed544c553..bc650c682ea6b0f1b6a144a2ccdbb3e8aaec29b4 100644
--- a/target/arm/hvf/hvf.c
+++ b/target/arm/hvf/hvf.c
@@ -315,6 +315,7 @@ typedef struct ARMHostCPUFeatures {
uint64_t features;
uint64_t midr;
uint32_t reset_sctlr;
+ uint32_t sme_vq_supported;
const char *dtb_compatible;
} ARMHostCPUFeatures;
@@ -1121,18 +1122,18 @@ static bool hvf_arm_get_host_cpu_features(ARMHostCPUFeatures *ahcf)
clamp_id_aa64mmfr0_parange_to_ipa_size(&host_isar);
- /*
- * Disable SME, which is not properly handled by QEMU hvf yet.
- * To allow this through we would need to:
- * - make sure that the SME state is correctly handled in the
- * get_registers/put_registers functions
- * - get the SME-specific CPU properties to work with accelerators
- * other than TCG
- * - fix any assumptions we made that SME implies SVE (since
- * on the M4 there is SME but not SVE)
- */
- SET_IDREG(&host_isar, ID_AA64PFR1,
- GET_IDREG(&host_isar, ID_AA64PFR1) & ~R_ID_AA64PFR1_SME_MASK);
+ if (hvf_arm_sme2_supported()) {
+ t = GET_IDREG(&host_isar, ID_AA64PFR1);
+ t = FIELD_DP64(t, ID_AA64PFR1, SME, 2); /* FEAT_SME2 */
+ SET_IDREG(&host_isar, ID_AA64PFR1, t);
+
+ t = GET_IDREG(&host_isar, ID_AA64SMFR0);
+ t = FIELD_DP64(t, ID_AA64SMFR0, SMEVER, 1); /* FEAT_SME2 */
+ SET_IDREG(&host_isar, ID_AA64SMFR0, t);
+ } else {
+ SET_IDREG(&host_isar, ID_AA64PFR1,
+ GET_IDREG(&host_isar, ID_AA64PFR1) & ~R_ID_AA64PFR1_SME_MASK);
+ }
ahcf->isar = host_isar;
@@ -1148,6 +1149,8 @@ static bool hvf_arm_get_host_cpu_features(ARMHostCPUFeatures *ahcf)
*/
ahcf->reset_sctlr |= 0x00800000;
+ ahcf->sme_vq_supported = hvf_arm_sme2_supported() ? hvf_arm_sme2_get_svl() : 0;
+
/* Make sure we don't advertise AArch32 support for EL0/EL1 */
if ((GET_IDREG(&host_isar, ID_AA64PFR0) & 0xff) != 0x11) {
return false;
@@ -1199,6 +1202,7 @@ void hvf_arm_set_cpu_features_from_host(ARMCPU *cpu)
cpu->env.features = arm_host_cpu_features.features;
cpu->midr = arm_host_cpu_features.midr;
cpu->reset_sctlr = arm_host_cpu_features.reset_sctlr;
+ cpu->sme_vq.supported = arm_host_cpu_features.sme_vq_supported;
}
void hvf_arch_vcpu_destroy(CPUState *cpu)
@@ -1339,6 +1343,7 @@ int hvf_arch_init_vcpu(CPUState *cpu)
arm_cpu->isar.idregs[ID_AA64MMFR0_EL1_IDX]);
assert_hvf_ok(ret);
+ aarch64_add_sme_properties(OBJECT(cpu));
return 0;
}
--
2.47.3On 2/27/26 19:56, Manos Pitsidianakis wrote:
> @@ -1121,18 +1122,18 @@ static bool hvf_arm_get_host_cpu_features(ARMHostCPUFeatures *ahcf)
>
> clamp_id_aa64mmfr0_parange_to_ipa_size(&host_isar);
>
> - /*
> - * Disable SME, which is not properly handled by QEMU hvf yet.
> - * To allow this through we would need to:
> - * - make sure that the SME state is correctly handled in the
> - * get_registers/put_registers functions
> - * - get the SME-specific CPU properties to work with accelerators
> - * other than TCG
> - * - fix any assumptions we made that SME implies SVE (since
> - * on the M4 there is SME but not SVE)
> - */
> - SET_IDREG(&host_isar, ID_AA64PFR1,
> - GET_IDREG(&host_isar, ID_AA64PFR1) & ~R_ID_AA64PFR1_SME_MASK);
> + if (hvf_arm_sme2_supported()) {
> + t = GET_IDREG(&host_isar, ID_AA64PFR1);
> + t = FIELD_DP64(t, ID_AA64PFR1, SME, 2); /* FEAT_SME2 */
> + SET_IDREG(&host_isar, ID_AA64PFR1, t);
> +
> + t = GET_IDREG(&host_isar, ID_AA64SMFR0);
> + t = FIELD_DP64(t, ID_AA64SMFR0, SMEVER, 1); /* FEAT_SME2 */
> + SET_IDREG(&host_isar, ID_AA64SMFR0, t);
Why would you need to do this? Surely these values are already correct. And if they're
not, did we miss enabling something earlier?
This will break the moment FEAT_SME2p1 is supported.
r~
> On 1. Mar 2026, at 23:29, Richard Henderson <richard.henderson@linaro.org> wrote:
>
> On 2/27/26 19:56, Manos Pitsidianakis wrote:
>> @@ -1121,18 +1122,18 @@ static bool hvf_arm_get_host_cpu_features(ARMHostCPUFeatures *ahcf)
>> clamp_id_aa64mmfr0_parange_to_ipa_size(&host_isar);
>> - /*
>> - * Disable SME, which is not properly handled by QEMU hvf yet.
>> - * To allow this through we would need to:
>> - * - make sure that the SME state is correctly handled in the
>> - * get_registers/put_registers functions
>> - * - get the SME-specific CPU properties to work with accelerators
>> - * other than TCG
>> - * - fix any assumptions we made that SME implies SVE (since
>> - * on the M4 there is SME but not SVE)
>> - */
>> - SET_IDREG(&host_isar, ID_AA64PFR1,
>> - GET_IDREG(&host_isar, ID_AA64PFR1) & ~R_ID_AA64PFR1_SME_MASK);
>> + if (hvf_arm_sme2_supported()) {
>> + t = GET_IDREG(&host_isar, ID_AA64PFR1);
>> + t = FIELD_DP64(t, ID_AA64PFR1, SME, 2); /* FEAT_SME2 */
>> + SET_IDREG(&host_isar, ID_AA64PFR1, t);
>> +
>> + t = GET_IDREG(&host_isar, ID_AA64SMFR0);
>> + t = FIELD_DP64(t, ID_AA64SMFR0, SMEVER, 1); /* FEAT_SME2 */
>> + SET_IDREG(&host_isar, ID_AA64SMFR0, t);
>
> Why would you need to do this? Surely these values are already correct. And if they're not, did we miss enabling something earlier?
>
> This will break the moment FEAT_SME2p1 is supported.
>
FEAT_SME2p1 is already shipped on the Apple M5
> r~
© 2016 - 2026 Red Hat, Inc.