From 52a1ab757ae8d89f2395224740b76ca24db63f48 Mon Sep 17 00:00:00 2001
From: OBattler <oubattler@gmail.com>
Date: Fri, 20 Aug 2021 17:25:27 +0200
Subject: [PATCH] CPL is now forced to 0 when switching from real to protected
 mode.

---
 src/cpu/x86_ops_mov_ctrl.h | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/src/cpu/x86_ops_mov_ctrl.h b/src/cpu/x86_ops_mov_ctrl.h
index 16e7aa7fa..17f51b971 100644
--- a/src/cpu/x86_ops_mov_ctrl.h
+++ b/src/cpu/x86_ops_mov_ctrl.h
@@ -125,6 +125,9 @@ static int opMOV_CRx_r_a16(uint32_t fetchdat)
                 case 0:
                 if ((cpu_state.regs[cpu_rm].l ^ cr0) & 0x80000001)
                         flushmmucache();
+		/* Make sure CPL = 0 when switching from real mode to protected mode. */
+		if ((cpu_state.regs[cpu_rm].l & 0x01) && !(cr0 & 0x01))
+			cpu_state.seg_cs.access &= 0x9f;
                 cr0 = cpu_state.regs[cpu_rm].l;
                 if (cpu_16bitbus)
                         cr0 |= 0x10;
@@ -181,6 +184,9 @@ static int opMOV_CRx_r_a32(uint32_t fetchdat)
                 case 0:
                 if ((cpu_state.regs[cpu_rm].l ^ cr0) & 0x80000001)
                         flushmmucache();
+		/* Make sure CPL = 0 when switching from real mode to protected mode. */
+		if ((cpu_state.regs[cpu_rm].l & 0x01) && !(cr0 & 0x01))
+			cpu_state.seg_cs.access &= 0x9f;
                 cr0 = cpu_state.regs[cpu_rm].l;
                 if (cpu_16bitbus)
                         cr0 |= 0x10;