From mboxrd@z Thu Jan  1 00:00:00 1970
From: Ian Jackson <ian.jackson@citrix.com>
Subject: Re: [PATCH] docs/qemu-deprivilege: Revise and update
 with status and future plans
Date: Mon, 26 Mar 2018 17:43:17 +0100
Message-ID: <23225.8997.574938.415857@mariner.uk.xensource.com>
References: <20180322182437.936-1-george.dunlap@citrix.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
Return-path: <xen-devel-bounces@lists.xenproject.org>
Received: from all-amaz-eas1.inumbo.com ([34.197.232.57])
 by lists.xenproject.org with esmtp (Exim 4.89) (envelope-from
 <srs0=urmw=gq=citrix.com=prvs=6161f7288=ian.jackson@srs-us1.protection.inumbo.net>)
 id 1f0VDO-0000P9-Ly
 for xen-devel@lists.xenproject.org; Mon, 26 Mar 2018 16:43:22 +0000
In-Reply-To: <20180322182437.936-1-george.dunlap@citrix.com>
List-Unsubscribe: <https://lists.xenproject.org/mailman/options/xen-devel>,
 <mailto:xen-devel-request@lists.xenproject.org?subject=unsubscribe>
List-Post: <mailto:xen-devel@lists.xenproject.org>
List-Help: <mailto:xen-devel-request@lists.xenproject.org?subject=help>
List-Subscribe: <https://lists.xenproject.org/mailman/listinfo/xen-devel>,
 <mailto:xen-devel-request@lists.xenproject.org?subject=subscribe>
Errors-To: xen-devel-bounces@lists.xenproject.org
Sender: "Xen-devel" <xen-devel-bounces@lists.xenproject.org>
To: George Dunlap <george.dunlap@citrix.com>
Cc: Stefano Stabellini <sstabellini@kernel.org>, Wei Liu <wei.liu2@citrix.com>, Andrew Cooper <andrew.cooper3@citrix.com>, Tim Deegan <tim@xen.org>, Ross Lagerwall <ross.lagerwall@citrix.com>, Julien Grall <julien.grall@arm.com>, Jan Beulich <jbeulich@suse.com>, Anthony Perard <anthony.perard@citrix.com>, xen-devel@lists.xenproject.org
List-Id: xen-devel@lists.xenproject.org
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==