[hypervisor][x86] Check CPL when handling a VMCALL

Only allow guest CPL 0 to make a hypercall. If anything other than the
guest kernel attempts a VMCALL, return NOT_PERMITTED.

Bug: b/154791063
Change-Id: I08d7f0d00df002ef90bb9be14c52697027df03bb
Reviewed-on: https://fuchsia-review.googlesource.com/c/fuchsia/+/383975
Testability-Review: Abdulla Kamar <abdulla@google.com>
Reviewed-by: Venkatesh Srinivas <venkateshs@google.com>
Commit-Queue: Abdulla Kamar <abdulla@google.com>
5 files changed
tree: cded48a74c9f4c67ce2c7dbe61eb0cccd6e3553a
  1. .clang-format
  2. .clang-tidy
  3. .dir-locals.el
  4. .gitattributes
  5. .gitignore
  6. .gn
  7. .style.yapf
  8. AUTHORS
  9. BUILD.gn
  10. CODE_OF_CONDUCT.md
  11. CONTRIBUTING.md
  12. LICENSE
  13. OWNERS
  14. PATENTS
  15. README.md
  16. boards/
  17. build/
  18. bundles/
  19. docs/
  20. examples/
  21. garnet/
  22. products/
  23. rustfmt.toml
  24. scripts/
  25. sdk/
  26. src/
  27. third_party/
  28. tools/
  29. zircon/
README.md

Fuchsia

Pink + Purple == Fuchsia (a new operating system)

What is Fuchsia?

Fuchsia is a modular, capability-based operating system. Fuchsia runs on modern 64-bit Intel and ARM processors.

Fuchsia is an open source project with a code of conduct that we expect everyone who interacts with the project to respect.

How can I build and run Fuchsia?

See Getting Started.

Where can I learn more about Fuchsia?

See fuchsia.dev.