From mboxrd@z Thu Jan  1 00:00:00 1970
From: Tim Deegan <tim@xen.org>
Subject: Re: [PATCH] x86/HVM: restrict permitted instructions
 during special purpose emulation
Date: Wed, 4 Jan 2017 10:10:18 +0000
Message-ID: <20170104101018.GA92031@deinos.phlegethon.org>
References: <586BB0ED020000780012CA03@prv-mh.provo.novell.com>
 <37ce7fe6-541f-6a99-feb5-7de785216e39@citrix.com>
 <586BDD3F020000780012CBAE@prv-mh.provo.novell.com>
 <35236bc3-9c7a-0545-6d6a-94d9f250a73f@citrix.com>
 <586CCD01020000780012CE26@prv-mh.provo.novell.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
Return-path: <xen-devel-bounces@lists.xen.org>
Received: from mail6.bemta6.messagelabs.com ([193.109.254.103])
 by lists.xenproject.org with esmtp (Exim 4.84_2)
 (envelope-from <tim@xen.org>) id 1cOiWc-0007V8-J7
 for xen-devel@lists.xenproject.org; Wed, 04 Jan 2017 10:10:30 +0000
Content-Disposition: inline
In-Reply-To: <586CCD01020000780012CE26@prv-mh.provo.novell.com>
List-Unsubscribe: <https://lists.xen.org/cgi-bin/mailman/options/xen-devel>,
 <mailto:xen-devel-request@lists.xen.org?subject=unsubscribe>
List-Post: <mailto:xen-devel@lists.xen.org>
List-Help: <mailto:xen-devel-request@lists.xen.org?subject=help>
List-Subscribe: <https://lists.xen.org/cgi-bin/mailman/listinfo/xen-devel>,
 <mailto:xen-devel-request@lists.xen.org?subject=subscribe>
Errors-To: xen-devel-bounces@lists.xen.org
Sender: "Xen-devel" <xen-devel-bounces@lists.xen.org>
To: Jan Beulich <JBeulich@suse.com>
Cc: Kevin Tian <kevin.tian@intel.com>, Suravee Suthikulpanit <suravee.suthikulpanit@amd.com>, Andrew Cooper <andrew.cooper3@citrix.com>, Paul Durrant <paul.durrant@citrix.com>, JunNakajima <jun.nakajima@intel.com>, xen-devel <xen-devel@lists.xenproject.org>, Boris Ostrovsky <boris.ostrovsky@oracle.com>
List-Id: xen-devel@lists.xenproject.org
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