libnghttp2-14-32bit-1.40.0-lp152.1.3 >  A ^d/=„Pfޘܭ9?P: (*X/wG ivޫ~YY&bgem=I] Ie˰E><0*%Q1}).'pϪ/Bw+!{sc9>7;]p>?d ' B $, 0 4 < ~ $ L  (;8DE9XE: E>GHIXY \D]L^sb}c;dݙeݞfݡlݣuݸvwTx\yd|ހކClibnghttp2-14-32bit1.40.0lp152.1.3Shared library for nghttp2Shared C libraries for implementation of Hypertext Transfer Protocol version 2.^Ocloud135dopenSUSE Leap 15.2openSUSEMIThttps://bugs.opensuse.orgSystem/Librarieshttps://nghttp2.org/linuxx86_64/sbin/ldconfigd^O^O82087e00521a576b2442b5509c44071edd295f90f537dba896c018bca42bd78dlibnghttp2.so.14.19.0rootrootrootrootnghttp2-1.40.0-lp152.1.3.src.rpmlibnghttp2-14-32bitlibnghttp2-14-32bit(x86-32)libnghttp2.so.14@@@@@    /bin/shlibc.so.6libc.so.6(GLIBC_2.0)libc.so.6(GLIBC_2.1.3)libc.so.6(GLIBC_2.3.4)libc.so.6(GLIBC_2.4)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)3.0.4-14.6.0-14.0-15.2-14.14.1^@]i]Z@]Z@]R@\g\A\A\8@[F[t[CN@ZЛZUZUZZOhZ.s@Z'ZY@YdYYlYcl@YX@XӸX@Xk@XQ4@X6@W@WRW"W~WXW W4V@V>@V@VV_V@VzV]VI@V4@V@UU@UUȒ@UUUUUcU]USMartin Pluskal Martin Pluskal Adam Majer Martin Pluskal Tomáš Chvátal seanlew@opensuse.orgTomáš Chvátal Martin Pluskal adam.majer@suse.deadam.majer@suse.dempluskal@suse.comtchvatal@suse.comtchvatal@suse.comtchvatal@suse.comfvogt@suse.commpluskal@suse.comdimstar@opensuse.orgmpluskal@suse.commpluskal@suse.commpluskal@suse.comschwab@suse.dempluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.comadam.majer@suse.dempluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.comidonmez@suse.commpluskal@suse.commpluskal@suse.comidonmez@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.comrguenther@suse.commpluskal@suse.compgajdos@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.comsor.alexei@meowr.rumpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.comjengelh@inai.dempluskal@suse.commpluskal@suse.commpluskal@suse.com- Update to version 1.40.0 to fix CVE-2019-18802 in envoy-proxy and cilium-proxy (bsc#1166481) * lib: Add nghttp2_check_authority as public API * lib: Fix the bug that stream is closed with wrong error code * lib: Faster huffman encoding and decoding * build: Avoid filename collision of static and dynamic lib * build: Add new flag ENABLE_STATIC_CRT for Windows * build: cmake: Support building nghttpx with systemd * third-party: Update neverbleed to fix memory leak * nghttpx: Fix bug that mruby is incorrectly shared between backends * nghttpx: Reconnect h1 backend if it lost connection before sending headers * nghttpx: Returns 408 if backend timed out before sending headers * nghttpx: Fix request stal- Conditionally remove dependecy on jemalloc for SLE-12- Require correct library from devel package - boo#1125689- Update to version 1.39.2 (bsc#1146184, bsc#1146182): * This release fixes CVE-2019-9511 “Data Dribble” and CVE-2019-9513 “Resource Loop” vulnerability in nghttpx and nghttpd. Specially crafted HTTP/2 frames cause Denial of Service by consuming CPU time. Check out https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md for details. For nghttpx, additionally limiting inbound traffic by - -read-rate and --read-burst options is quite effective against this kind of attack. * Add nghttp2_option_set_max_outbound_ack API function * nghttpx: Fix request stall- Update to version 1.39.1: * This release fixes the bug that log-level is not set with cmd-line or configuration file. It also fixes FPE with default backend. - Changes for version 1.39.0: * libnghttp2 now ignores content-length in 200 response to CONNECT request as per RFC 7230. * mruby has been upgraded to 2.0.1. * libnghttp2-asio now supports boost-1.70. * http-parser has been replaced with llhttp. * nghttpx now ignores Content-Length and Transfer-Encoding in 1xx or 200 to CONNECT. - Drop no longer needed boost170.patch- Update to 1.38.0: * This release fixes the bug that authority and path altered by per-pattern mruby script can affect backend selection on retry. * It also fixes the bug that HTTP/1.1 chunked request stalls. * Now nghttpx does not log authorization request header field value with -LINFO. * This release fixes possible backend stall when header and request body are sent in their own packets. * The backend option gets weight parameter to influence backend selection. * This release fixes compile error with BoringSSL. - Add patch from upstream to build with new boost bsc#1134616: * boost170.patch- Update to 1.36.0 * build: disable shared library if ENABLE_SHARED_LIB is off * third-party: use http-parser to v2.9.0 (GH-1294) * third-party: Update mruby to 2.0.0 * nghttpx: Pool h1 backend connection per address (GH-1292) * nghttpx: Randomize backend address round robin order per thread (GH-1291) * nghttpx: Fix getting long SNs for openssl < 1.1 (GH-1287) * h2load: add an option to write per-request logs (GH-1256) * asio: added access to # of the current server port (GH-1257)- Use multibuild to not pull in python3 in first build, nghttp2 is low in the system- Update to version 1.35.1: * nghttpx: Fix broken trailing slash handling (GH-1276) - Changes for version 1.35: * build: cmake: Fix libevent version detection (Patch from Jan Kundrát) (GH-1238) * lib: Use __has_declspec_attribute for shared builds (Patch from Don) (GH-1222) * src: Require C++14 language feature * nghttpx: Write mruby send_info early * nghttpx: Fix assertion failure on mruby send_info with HTTP/1 frontend * h2load: Handle HTTP/1 non-final response (GH-1259) * h2load: Clarify that time for connect includes TLS handshake- Update to version 1.34.0: (bsc#1112438, FATE#326776) * lib: Implement RFC 8441 :protocol support * nghttpx: Add read/write-timeout parameters to backend option * nghttpx: Fix mruby parameter validation in backend option * nghttpx: Implement RFC 8441 Bootstrapping WebSocket with HTTP/2 * nghttpx: Update neverbleed to fix OpenSSL 1.1.1 issues * nghttpx: Update mruby 1.4.1 * nghttpx: Add mruby env.tls_handshake_finished * nghttpx: Add --tls13-ciphers and --tls-client-ciphers options * nghttpx: Add RFC 8470 Early-Data header field support * nghttpx: Add RFC 8446 TLSv1.3 0-RTT early data support- Update to version 1.33.0: * lib: Tweak nghttp2_session_set_stream_user_data * lib: Fix handling of SETTINGS_MAX_CONCURRENT_STREAMS. * lib: Implement ORIGIN frame * asio: support definition of local endpoint for cleartext client session * integration: Remove remaining SPDY code from the integration tests * nghttpx: Fix worker process crash with neverbleed write error * nghttpx: Support per-backend mruby script * nghttpx: Fix stream reset if data from client is arrived before dconn is attached- Update to version 1.32.0: * lib: Ignore all input after calling session_terminate_session * lib: Fix treatment of padding * lib: Don't allow 101 HTTP status code because HTTP/2 removes HTTP Upgrade * build: add ENABLE_STATIC_LIB option to build static lib * third-party: Upgrade neverbleed to the latest master * asio: Support client side SNI * src: Compile with libressl 2.7.2 * src: Allow building without NPN * h2load: -r and --duration are mutually exclusive- Version umpdate to 1.31.1: * Fix bsc#1088639 CVE-2018-1000168 * https://nghttp2.org/blog/2018/04/12/nghttp2-v1-31-1/- Version update to 1.31.0: * lib: Add nghttp2_session_set_user_data() public API function (GH-1137) * src: Define nghttp2_inet_pton wrapper to avoid inet_pton macro (GH-1128) * nghttpx: Close listening socket on graceful shutdown * nghttpx: Add an option to accept expired client certificate (GH-1126) * nghttpx: Add mruby tls_client_not_before, and tls_client_not_after (GH-1123) * nghttpx: Fix potential memory leak * lib: Allow PING frame to be sent after GOAWAY (GH-1103) * nghttpx: Fix bug that h1 backend idle timeout expires sooner * nghttpx: Stop overwrite of first header on mruby call to env.req.set_header(..) (Patch from Dylan Plecki) (GH-1119) * nghttpx: Add upgrade-scheme parameter to backend option (GH-1099) * nghttpx: Fix missing ALPN validation (--npn-list) (GH-1094) * nghttpx: Remember which resource is pushed for RFC 8297 (GH-1101)- Drop spdylay dependency as it is deprecated since version 1.28.0 and removed from cofnigure.ac since 1.29.0- Use %license (boo#1082318)- Update to version 1.29.0: * lib: Use NGHTTP2_REFUSED_STREAM for streams which are closed by GOAWAY * build: Remove SPDY * build: Fix CMAKE_MODULE_PATH * nghttpx: Revert "nghttpx: Use an existing h2 backend connection as much as possible" * nghttpx: Write API request body in temporary file * nghttpx: Increase api-max-request-body * nghttpx: Faster configuration loading with lots of backends * nghttpx: Fix crash with --backend-http-proxy-uri option- Export PYTHON=/usr/bin/python3 before running configure: allow to build without (comnplete) python2 in the buildroot. In any case we only ship python3-bindings already.- Upodate to version 1.28.0: * lib: Add nghttp2_error_callback2 * build: Add deprecation warning when spdylay support is enabled * Switch to clang-format-5.0 * examples: Make client and server work with libevent-2.1.8 * third-party: Update neverbleed * integration: Fix issues reported by the go vet tool. * nghttpx: Fix affinity retry * nghttpx: Fix stalled backend connection on retry * nghttpx: Cookie based session affinity * nghttpx: Expose additional TLS related variables to mruby and accesslog- Drop forgotten python2 build dependency- Update to version 1.27.0: * h2load: Print out h2 header fields with --verbose option * nghttpx: Send non-final response to HTTP/1.1 or HTTP/2 client only - Changes for version 1.26.0: * docs: Fix some typos in the nghttpx how-to * h2load: Fix bug that timing script stalls with -m1 * h2load: Reservoir sampling (GH-984) * h2load: Add timing-based load-testing in h2load - Switch to python3 support- Don't use jemalloc on ppc or %arm, where it is broken.- Update to version 1.25.0: * lib: add nghttp2_rcbuf_is_static() (Patch from Anna Henningsen) (GH-983) * nghttpx: Fix bug that forwarded for is not affected by proxy protocol (GH-979) * nghttpx: Update mruby to 1.3.0 (GH-957)- Drop doc building - Rename python subpackage to python2- Update to version 1.24.0: * doc: README.rst: fix typo (Patch from Simone Basso) (GH-947) * doc: fix up grammar in submit_trailer docs (Patch from Benjamin Peterson) (GH-945) * doc: fix cleaning in out-of-tree builds (Patch from Benjamin Peterson) (GH-938) * nghttp: Fix bug that upgrade fails if reason-phrase is missing (GH-949) * nghttpx: Verify OCSP response using trusted CA certificates (GH-943) * nghttpx: Set default minimum TLS version to TLSv1.2 (GH-937) - Changes for version 1.23.1: * nghttpx: Fix crash in OCSP response verification - Changes for version 1.23.0: * lib: nghttp2_session: Allow for compiling library with -DNDEBUG set (Patch from Angus Gratton) (GH-919) * lib: Treat incoming invalid regular header field as stream error (GH-900) * lib: Call nghttp2_on_invalid_frame_callback if altsvc validation fails (GH-904) * doc: spelling mistake in arguments to build nghttp apps (Patch from Soham Sinha) (GH-925) * doc: Add notes for installation on linux systems (Patch from Tapanito) (GH-917) * doc: Clarify the effect of nghttp2_option_set_no_http_messaging * nghttpx: Verify OCSP response (GH-929) * nghttpx: Fix certificate selection based on pub key algorithm (GH-924) * nghttpx: Fix certificate indexing bug * nghttpx: Run OCSP at startup (GH-922) * nghttpx: Wildcard path matching (GH-914) * nghttpx: Forward multiple via, xff, and xfp header fields (GH-903) * nghttp: Add -y, --no-verify-peer option to suppress peer verify warn (GH-906)- Update to version 1.22.0: * lib: Add missing free call on error in inflight_settings_new() (Patch from lstefani) (GH-884) * asio: Support specifying stream priority via session::submit() (Patch from Matt Way) (GH-881) * nghttpx: Clarify --conf option behaviour * nghttpx: Add $tls_sni access log variable (GH-896) * nghttpx: Rename ssl_* log variables as tls_* (GH-895) * nghttpx: Fix path matching bug (GH-894) * nghttpx: SNI based backend server selection (GH-892) * nghttpx: Enable signed_certificate_timestamp extension for TLSv1.3 (GH-878) * nghttpx: Add options for X-Forwarded-Proto header field (GH-872) * nghttpx: Add --single-process option (GH-869) * nghttpx: Use 502 as server error code * nghttpx: Use SSL_CTX_set_early_data_enabled with boringssl * nghttp: Verify server certificate and show warning if it fails (GH-870) * integration: Use nip.io instead of xip.io- Update to version 1.21.1: * asio: Fix crash if connect takes longer time than ping interval (GH-866) * nghttpx: Fix bug that 204 from h1 backend is always treated as error (GH-871) - Changes for version 1.21.0: * lib: Fix nghttp2_session_want_write (GH-832) * doc: Document pkg-config path usage * build: Eliminate U macro; Instead use (void)VAR for better compiler compatibility. * src: BoringSSL supports SSL_CTX_set_{min,max}_proto_version. (Patch from Piotr Sikora) (GH-853) * src: Use Mozilla's "Modern compatibility" ciphers by default * src: nghttp2_gzip: fix this statement may fall through [-Werror=implicit-fallthrough=] found by gcc7 (Patch from Alexis La Goutte) (GH-823) * nghttpx: Print version number with -v option * nghttpx: Enable X25519 with boringssl * nghttpx: Retry getaddrinfo without AI_ADDRCONFIG (GH-858) * nghttpx: Failing to listen on server socket is fatal error * nghttpx: Escape certain characters in access log (GH-856) * nghttpx: Ignore further input if connection is going to close * nghttpx: Don't call functions which are not async-signal-safe after fork but before execv in multithreaded process. * nghttpx: Enable backend pattern matching with http2-proxy (GH-733) * asio: client: Send PING after 30 seconds idle (GH-847)- Update to version 1.20.0: * lib: nghttp2_session: fix The 'then' statement is equivalent to the subsequent code fragment found by PVS Studio (V523) (Patch from Alexis La Goutte) (GH-814) * lib: Add nghttp2_option_set_no_closed_streams (GH-810) * build: Disable spdylay detection by default * build: Add --with-systemd option to configure * fuzz: Add fuzzer for oss-fuzz (GH-799) * src: Enable TLSv1.3 if it is supported by OpenSSL (or BoringSSL) (GH-816) * src: h2 requires >= TLSv1.2 * asio: More graceful stop of nghttp2::asio_http2::server::http2 (Patch from Amir Pakdel) (GH-805) * asio: Holding more shared_ptrs instead of raw ptrs to make sure called objects don't get deleted. (Patch from clemahieu) * asio: Fix infinite loop in acceptor handler (Patch from clemahieu) (GH-794) * asio: close_stream erases from streams_ while it's being iterated over. (Patch from clemahieu) (GH-795) * nghttpx: Strip version number from server header field * nghttpx: Add --single-worker option * nghttpx: Fix bug that send_reply does not participate graceful shutdown * nghttpx: Add --frontend-max-requests option * nghttpx: Enable stream-write-timeout by default * nghttpx: Fix stream write timer handling * nghttpx: Add configrevision API endpoint (GH-820) * nghttpx: Redirect to HTTPS URI with redirect-if-not-tls parameter (GH-819) * nghttpx: Update log time stamp in millisecond interval * nghttpx: Better error message when private key and certificate are missing * nghttpx: Fix bug that old config is used during reloading configuration * nghttpx: Specify TLS protocol by version range (GH-809) * nghttpx: Send SIGQUIT to the original master process (GH-807) * nghttpx: Restrict HTTP major and minor in 0 or 1 * nghttpx: Drop privilege of neverbleed daemon first * nghttpx: add systemd support (Patch from Tomasz Torcz) (GH-802) * nghttpx: Fix crash on SIGHUP with multi thread configuration (GH-801) * nghttpx: Send 1xx non-final response using mruby script (GH-800) * nghttpx: Select certificate by client's supported signature algorithm (GH-792) * nghttpx: Recommend POST for backendconfig API request * nghttpx: Don't build PSK features with LibreSSL (Patch from Bernard Spil) (GH-789) * nghttp: add support for link rel="preload" for --get-assets (Patch from Benedikt Christoph Wolters) (GH-791) * h2load: Fix wrong req_stat updates * h2load: Explicitly count the number of requests left and inflight * integration: Fix deprecation warnings * integration: Redirect nghttpx stdout/stderr to test driver's stdout/stderr - Changes for version 1.19.0: * lib: Fix memory leak of nghttp2_stream object in server side nghttp2_session object * Fix issues found by PVS Studio (Patch from Alexis La Goutte) (GH-769) * doc: Update README file to write about the issue of Alpine Linux's inability to replace malloc (Patch from makovich) (GH-768) * build: Compile with Android NDK r13b using clang * src: Fix assertion error with boringssl * nghttp: Take into account scheme and port when parsing HTML links * nghttp: Fix authority for --get-assets if IP address is used in conjunction with user-defined :authority header (Patch from Benedikt Christoph Wolters) (GH-783) * nghttpx: Add --accesslog-write-early option (GH-777) * nghttpx: Fix access.log timestamp (GH-778) * nghttpx: Show default cipher list in -h * nghttpx: Add client-ciphers option * nghttpx: Add client-no-http2-cipher-black-list option * nghttpx: Fix the bug that no-http2-cipher-black-list does not work on backend HTTP/2 connections. * nghttpx: Add --client-psk-secret option to enable PSK in backend (GH-612) * nghttpx: Add --psk-secret option to enable PSK in frontend connection (GH-612) * nghttpx: Enable SCT with OpenSSL 1.1.0 * nghttpx: Add proxyproto to frontend option to accept PROXY protocol (GH-765) * h2load: Show default cipher list in -h * h2load: Show custom server temp key such as X25519 * h2load: Fix incorrect return value from spdylay_send_callback - Changes for version 1.18.1: * nghttpx: Fix assertion error in libev ev_io_start (GH-759) * nghttpx: Handle c-ares success without result * nghttpx: Fix bug that DNS timeout was erroneously disabled (GH-763) * nghttpx: Fix bug that DNS timeout was ignored (GH-763)- use individual libboost-*-devel packages instead of boost-devel- Update to version 1.18.0: * lib: Accept and ignore content-length: 0 in 204 response for now * build: Use pkg-config to detect libxml2 * build: Require c-ares to compile applications under src * build: Add Windows CI via AppVeyor (Patch from Alexis La Goutte) * examples: Delete tiny-nghttpd * nghttpx: Retry h1 backend request if first write fails (GH-757) * nghttpx: Keep reading after backend write failed (GH-756) * nghttpx: Add frontend-keep-alive-timeout option (GH-755) * nghttpx: New error log format (GH-749) * nghttpx: Fix bug that fetch-ocsp-response does not work with OpenSSL 1.1.0 (GH-742) * nghttpx: Backend API call allows non-numeric host with dns parameter (GH-731) * nghttpx: Lookup backend host name dynamically (GH-721) * nghttpx: Accept and ignore content-length: 0 in 204 response for now (GH-735) * nghttpx: Wait for child process to exit- Update to version 1.17.0: * lib: Disallow content-length in 1xx, 204, or 200 to a CONNECT request (GH-722) * lib: Avoid memcpy against NULL src * build: MSVC version resource support (Patch from Remo E) (GH-718) * asio: server: Call on_close callback on connection close (GH-729) * nghttpx: Fix frequent crash with --backend-http-proxy-uri * nghttpx: Robust backend read timeout * nghttpx: Fix bug that mishandles response header from h1 backend * nghttpx: Fix bug that zero-length POST is not forwarded (GH-726) * nghttpx: Remove optional reason-phrase from SPDY :status * nghttpx: Header key and value must be string in mruby script * nghttpx: Strip content-length with 204 or 200 to CONNECT in mruby (GH-722) * nghttpx: Strict handling for Content-Length or Transfer-Encoding in h1 (GH-722) * nghttpx: Fix compilation with BoringSSL (Patch from dalf) (GH-717) * nghttpd, nghttpx, asio: Add missing mandatory SP after status code- Update to version 1.16.1: * lib: Prevent undefined behavior in decode_length * nghttpx: Fix bug which may crash nghttpx if non-final response is forwarded from origin server to HTTP/1.1 client - Changes for version 1.16.0: * lib: Add nghttp2_set_debug_vprintf_callback to take advantage of DEBUGF statements in when building DEBUGBUILD. * Update .clang-format for clang-format-3.9 * build: Make it possible to include nghttp2/CMakeLists.txt in another project using add_subdirectory. * third-party: Update http-parser to feae95a3a69f111bc1897b9048d9acbc290992f9 * asio: Fix crash when end() is called outside nghttp2 callback * nghttpx: Add --backend-connect-timeout option * nghttpx: Add TLS signed_certificate_timestamp extension support * nghttpx: Add --ecdh-curves option to specify list of named curves * h2load: Add --header-table-size and --encoder-header-table-size options- Update to version 1.15.0: * lib: Add nghttp2_option_set_max_deflate_dynamic_table_size() API function (GH-684) * lib: Allow NGHTTP2_ERR_PAUSE from nghttp2_data_source_read_callback (GH-671) * lib: Add nghttp2_session_get_hd_deflate_dynamic_table_size() and nghttp2_session_get_hd_inflate_dynamic_table_size() API functions to get current HPACK dynamic table size (GH-664) * lib: Add nghttp2_session_get_local_settings() API function * lib: Add nghttp2_session_get_local_window_size() and nghttp2_session_get_stream_local_window_size() API functions * build: Add -lsocket -lnsl to APPLDFLAGS for solaris build * neverbleed: Update neverbleed to support ECDSA certificate * doc: Mention --enable-lib-only configure option in README * integration: Fix test failure with go1.7.1 * src: Fix compile error with openssl 1.1.0 * nghttpx: Improve performance with HTTP/1.1 backend when request body is involved * nghttpx: Use std::atomic_* overloads for std::shared_ptr if available * nghttpx: Migrate backend stream to another h2 session on graceful shutdown * nghttpx: Add option to specify HPACK encoder/decoder dynamic table size * nghttpx: Log client address * nghttpx: Add tls_sni to mruby Nghttpx::Env class * nghttpx: Add --frontend-http2-window-size option, and its family functions * nghttpx: Add experimental TCP optimization for h2 frontend * nghttpx: Workaround for std::make_shared bug in Xcode7, 7.1, and 7.2 (GH-670) * nghttpx: Fix bug that bytes are doubly counted to rate limit for TLS connections * nghttpx: Add --no-server-rewrite option not to rewrite server header field (GH-667) * nghttpx: Retry if backend h1 connection cannot be established due to timeout * nghttpx: Reset stream if invalid header field is received in h2 * nghttpx: Add --server-name option to change server response header field (GH-667) * nghttpd: Add --encoder-header-table-size option * nghttp: Add --encoder-header-table-size option * python: Support ALPN, require Python 3.5- Update to version 1.14.0: * lib: Make emit_header() return void since it always succeed * lib: Add nghttp2_hd_deflate_hd_vec() deflate API to support multiple buffer input * lib: since hd_inflate_commit_indexed() always return 0, remove the return value check in nghttp2_hd_inflate_hd_nv() * lib: Use memeq() instead of lstreq() in lookup_token() * lib: More strict stream state handling * lib: Modify genlibtokenlookup.py to remove redundant header comparisons and remove inline qualifier of lookup_token() in genlibtokenlookup.py * lib: Fix wrong tree operation to avoid cycle * lib: Make get_max_index() return the max index in frame, so we don't need to do extra calculation * lib: Add nghttp2_on_invalid_header_callback * lib: Log frame's stream ID for header debug logging * doc: Remove old doc about differential encoding in HPACK * doc: Document about ALPN in nghttpx howto * nghttpx: Log error code from getsockopt(SO_ERROR) on first write event * nghttpx: Don't change pushed stream's priority * nghttpx: Log backend connection failure in WARN level * nghttpx: Fix bug that api and healthmon parameters do not work with http2 proxy * nghttpx: Add access log variable for backend host and port * nghttpx: Use copy instead of const reference of backend group * nghttpx: Reload configuration with SIGHUP * nghttp: Adjust weight according to Firefox stable * nghttp: Call error callback when invalid header field is received and ignored * nghttp: Allow multiple -p option * deflatehd: Call nghttp2_hd_deflate_change_table_size only if table size is changed from default- Update to version 1.13.0: * lib: Cancel non-DATA frame transmission from nghttp2_before_frame_send_callback * doc: Fix warning with Sphinx 1.4 * build: Work with Android NDK r12b * nghttpx: Use consistent hashing for client IP based session affinity * nghttpx: Fix FTBFS on armel by explicitly including the header * nghttpx: Cast to double to fix build with gcc 4.8 on Solaris 11 * nghttpx: Fix build error with libressl * examples: Fix compile error with OpenSSL v1.1.0-beta2- Update to version 1.12.0: * Add nghttp2_session_set_local_window_size API function * Add nghttp2_option_set_max_send_header_block_length API function (GH-613) * Fix warning: declaration of 'free' shadows a global declaration (Patch from Alexis La Goutte) * examples: Add ALPN support to tutorial client/server (GH-614) * nghttpx: Reduce TTFB with large number of incoming connections * nghttpx: Rewrite read timer handling * nghttpx: Clean up neverbleed AF_UNIX socket * nghttpx: Add --backend-max-backoff option * nghttpx: Use 16KiB buffer for reading to match TLS record size * nghttpx: Add healthmon parameter to -f option to enable health monitor mode * nghttpx: Receive reference of std::mt19937, not making a copy * nghttpx: Fix bug that backend never return to online (GH-615) * nghttpx: Implement client IP based session affinity * nghttpx: Add --api-max-request-body option to set maximum API request body size * nghttpx: Add api parameter to --frontend option to mark API endpoint * h2load: Add content-length header field for HTTP/2 and SPDY as well * h2load: Implement HTTP/1 upload (GH-611)- Update to 1.11.1 * lib: Add nghttp2_hd_inflate_hd2() and deprecate nghttp2_hd_inflate_hd() * lib: Avoid 0-length DATA if NGHTTP2_DATA_FLAG_NO_END_STREAM is set * lib: Fix bug that PING flags are ignored in nghttp2_submit_ping * integration: Workaround runtime error: cgo argument has Go pointer to Go pointer * nghttp: Eliminate zero length DATA frame at the end if possible * nghttpd: Set content-length in status response * nghttpx: Add sni keyword to --backend option * nghttpx: Allow mixed protocol and TLS settings among backends under same pattern * nghttpx: Don't add 0-length DATA when response HEADERS bears END_STREAM flag * nghttpx: Don't add chunked encoded response body for HEAD request * nghttpx: Don't use CN if we have dNSName or iPAddress field * nghttpx: Just call execv instead of execve to pass environ * nghttpx: Make SETTINGS timeout value configurable * nghttpx: Save PID file after it is ready to accept connections * nghttpx: Treat backend failure if SETTINGS is not received within timeout * nghttpx: Wait for SETTINGS ACK to make sure that backend h2 server is alive- Update to 1.10.0 * Pass unknown SETTINGS values to nghttp2_on_frame_recv_callback * Add ALTSVC frame support * Run error callback when peer does not send initial SETTINGS frame * Update http-parser * Update sphinx_rtd_theme * nghttp: add an --expect-continue option * nghttpx: Fix downstream connect callback called early * nghttpx: Truncate too long -b option signature * nghttpx: Fix bug that server push from mruby script did not work * nghttpx: Try next HTTP/1 backend address when connection cannot be made * nghttpx: Retry next HTTP/2 backend address when connection cannot be made * nghttpx: Enable link header field based push for non-final response * nghttpx: Detect online/offline state of backend servers * nghttpx: Better load balancing between backend HTTP/2 servers * nghttpx: Fix crash with backend failure- Update to 1.9.2 * nghttpx: Fix crash with backend failure * nghttpx: Better distribute load to backend h2 servers * nghttpx: Fix error messages on deprecated mode * nghttpx: Fix bug that logger wrote string which was not NULL-terminated * nghttpx: Fix bug that proxy with HTTP/1.1 CONNECT did not work- Update to 1.9.1 * nghttpx: Fix bug that backend tls keyword did not work with -s option * nghttpx: Fix handing stream after connection check was failed - Changes for 1.9.0 * lib: Add nghttp2_error_callback to tell application human readable error message * lib: Reference counted HPACK name/value pair, adding * nghttp2_on_header_callback2 * lib: Add nghttp2_option_set_no_auto_ping_ack() option * lib: Add nghttp2_http2_strerror() to return HTTP/2 error code string * build: Makefile.msvc enhancements (Patch from Jan-E) * build: Lower libev version requirement (Patch from Peter Wu) * build: cmake build support (Patch from Peter Wu) * asio: Fix bug that server event loop breaks with exception * integration: Disable tests that sometimes break randomly on travis * integration: do not use recursive target (Patch from Peter Wu) * h2load: Fix bug that it did not try to connect to server again * h2load: Fix bug that initial max concurrent streams was too large * nghttpx: Memcached connection encryption with tls keyword * nghttpx: Enable/disable TLS per frontend address * nghttpx: Configure TLS per backend routing pattern * nghttpx: Workaround for Ubuntu 15.04 which does not value-initialize on std::make_shared. * nghttpx: Add --error-page option to set custom error pages * nghttpx: Add wildcard host routing * nghttpx: Change read timeout reset timing * nghttpx: Don't push if Link header field includes nopush * nghttpx: Deprecate backend-http1-connections-per-host in favor of backend-connections-per-host * nghttpx: Restructure mode settings, removing --http2-bridge, - -client, and --client-proxy options * nghttpx: Deprecate backend-http1-connections-per-frontend in favor of backend-connections-per-frontend * nghttpx: Don't share session which is already in draining state * nghttpx: Effectively disable backend HTTP/2 connection flow control * nghttpx: Add --frontend-http2-max-concurrent-streams and - -backend-http2-max-concurrent-streams, and deprecate - -http2-max-concurrent-streams option * nghttpx: Deprecate --backend-http2-connections-per-worker option * nghttpx: Share TLS session cache between HTTP/2 and HTTP/1 backend * nghttpx: Rewrite backend HTTP/2 connection coalesce strategy- Update to 1.8.0 * Add Architecture documents (work in progress) * List all contributors in AUTHORS * doc: fix out-of-tree doc builds (Patch from Peter Wu) * Wrap AM_PATH_XML2 by m4_ifdef to handle the case when _PATH_XML2 is not found * Fix configure script for non-gcc, clang build * Document compiling apps and include h2load in configure (Patch from David Beitey) * Don't check for dlopen/libdl on *BSD (Patch from Bernard Spil) * Don't taint CXXFLAGS from AX_CXX_COMPILE_STDCXX_11 * Fixing Windows Makefile version detection (Patch from Reza Tavakoli) * lib: Tokenize extra HTTP header fields * lib: Fix typo in HAVE_CONFIG_H name (Patch from Peter Wu) * lib: Add HTTP/2 extension framework to send and receive non-critical frames * tests: remove unused macros (Patch from Peter Wu) * src: Update default cipher list * src: Fix compile error with gcc-6 which enables C++14 by default * asio: client: Fix connect timeout does not work, return from cb if session stopped, removing client::session::connect_timeout() functon * nghttpd: Start SETTINGS timer after it is written to output buffer * nghttpd: Add trailer header field to status responses * nghttpd: Add -w and -W options to change window size * nghttpx: Worker wide blocker which is used when socket(2) is failed * nghttpx: ConnectBlocker per backend address * nghttpx: Interleave text/html pushed resources with associated resource * nghttpx: Add headers given in add-response-headers for mruby response * nghttpx: Deprecate --backend-ipv4 and --backend-ipv6 in favor of --backend-address-family * nghttpx: Add options to specify address family of memcached connections * nghttpx: Add encryption support for TLS ticket key retrieval * nghttpx: Add TLS support for session cache memcached connection * nghttpx: Refactor blacklisted cipher suite check (Patch from Jay Satiro) * nghttpx: Add TLS support for HTTP/1 backend * nghttpx: Add request-header-field-buffer and max-request-header-fields options, deprecating header-field-buffer and max-header-fields options. * nghttpx: Add --no-http2-cipher-black-list to allow black listed cipher suite * nghttpx: Limit header fields from backend * nghttpx: Fix bug that IPv6 address in Forwarded "for" is not quoted-string * nghttpx: Support multiple frontend addresses * integration-tests: support out-of-tree tests (Patch from Peter Wu) * examples: fix compile warnings (Patch from Peter Wu) - Drop upstreamed nghttp2-c++14.patch- Update to 1.7.1 * Fix CVE-2016-1544 (boo#966514)- Add nghttp2-c++14.patch to properly guard make_unique templates. [bsc#964140]- Update to 1.7.0 * Reset (RST_STREAM) stream if flow control window gets overflow * Validate :authroity, host, and :scheme value more strictly * Check request/response submission error based side of session * Strict outgoing idle stream detection * Return error from nghttp2_submit_{headers,request} when self dependency is made * Add -ldl to APPLDFLAGS for static openssl linking * asio: Stop acceptor on server::http2::stop * asio: Rename http2::get_io_services() as http2::io_services() * h2load: Support UNIX domain socket * h2load: Improve readability of traffic numbers * h2load: Remove "auto" for -m option * h2load: Show progress in rate mode * h2load: Perform sampling for request and connection timings to reduce memory consumption * nghttpd: Add --no-content-length option to omit content-length in response * nghttpx: Interleave pushed streams with the associated stream if pushed streams are javascript and CSS resources * nghttpx: The initial value of request/response buffer is increased to 128K * nghttpx: Fix bug that --listener-disable-timeout option is not used * nghttpx: Don't emit :authority if request does not contain authority information * nghttpx: Add clarification of quotes in configuration file * nghttpx: Don't allow certain characters in host and :scheme header field * nghttpx: Add RFC 7239 Forwarded header field support * nghttpx: Fix crash when running on IPv6 only (Patch from Vernon Tang) * nghttpx: Take into account of trailers when applying max_header_fields * nghttpx: Don't apply max_header_fields and header_field_buffer limit to response * nghttpx: Strict validation for header fields given in configuration * nghttpx: header value should not be lower-cased (Patch from ayanamist)- fixed typo in libnghttp2_asio1 [bsc#962914]- Update to 1.6.0 * Fix heap-use-after-free bug when handling idle streams * Strict error handling for frames which are not allowed after closed (remote) * Set max number of outgoing concurrent streams to 100 by default * Keep incoming streams only at server side * Create stream object for pushed resource during nghttp2_submit_push_promise() * Add nghttp2_session_create_idle_stream() API * Handle response in nghttp2_on_begin_frame_callback * Add --lib-only configure option * Compile with OpenSSL 1.1.0-pre1 * Fix build when OpenSSL 1.0.2 is not available (patch from Sunpoet Po-Chuan Hsieh) * asio: Add connect and read timeout to client API * asio: Add TLS handshake and read timeout to server API * asio: Added access to a requests remote endpoint (patch from Andreas Pohl) * asio: libnghttp2_asio: Added io_service accessors (patch from Andreas Pohl) * h2load: Add req/s min, max, mean and sd for clients * h2load: Fix broken connection times- Update to 1.5.0 * Fix bug that nghttp2_session_find_stream(session, 0) returned NULL * Add nghttp2_session_change_stream_priority() to change stream priority without sending PRIORITY frame * Add nghttp2_session_check_server_session() API * Consider to use CANCEL error code when closing streams with GOAWAY * Don't send push response if GOAWAY has been received * Use error code CANCEL to reset pushed reserved stream from remote * Add nghttp2_session_upgrade2(), deprecate nghttp2_session_upgrade() * Workaround HTTP upgrade with HEAD request in nghttp2_session_upgrade() * Introduce NGHTTP2_NV_FLAG_NO_COPY_NAME and NGHTTP2_NV_FLAG_NO_COPY_VALUE * Add nghttp2_session_check_request_allowed() API function * Switch to clang-format-3.6 * Update mruby to 1.2.0 * tests: fix broken linkage with --disable-static (Patch from Kamil Dudka) * python: Send RST_STREAM if remote side is not closed and response finished * asio: client: call on_error when connection is dropped * asio: ALPN support * h2load: Add --h1 option to force http/1.1 for both http and https URI * h2load: Fix crash when dealing with "connection: close" form HTTP/1.1 server * h2load: h2load goes into infinite loop when timing script file starts with 0.0 in first line (Patch from Kit Chan) * h2load: Override user-agent with -H option * h2load: Print "space savings" to measure header compression efficiency * h2load: Stream error should be counted toward errored * h2load: Show application protocol with OpenSSL < 1.0.2 * nghttpx: Don't send RST_STREAM to h2 backend if backend is disconnected state * nghttpx: Support server push from HTTP/2 backend * nghttpx: Fix bug that causes connection failure with backend proxy URI * nghttpx: Use --backend-tls-sni-field to verify certificate hostname * nghttpx: Log :authority as $http_host if available * nghttpd: Fix crash with CONNECT request * nghttpd: Defered eviction of cached fd using timer * nghttpd: Read /etc/mime.types to set content-type header field * nghttp: Record request method to output it in har correctly * nghttp: Use method given in -H with ":method" in HTTP Upgrade - Drop nghttp2-1.4.0-fix-tests.patch (now in upstream)- Enable spdy and more example applications- Update to 1.4.0: * lib: Don't always expect dynamic table size update. * lib: Shrink to the minimum table size seen in local SETTINGS. * lib: Add new error code NGHTTP2_ERR_PAUSE to send_data_callback. * lib: Avoid excessive WINDOW_UPDATE queuing. * lib: Return fatal error if flooding is detected to close session immediately. * lib: Return type of nghttp2_submit_trailer is int. * lib: Don't send WINDOW_UPDATE with 0 increment. * lib: Fix bug that headers in CONTINUATION were ignored after HEADERS with padding. * package: Use -fvisibility=hidden for internal functions. * package: Show more information in configure summary. * package: Add PIDFile directive to systemd service. * package: Fix daemon upgrade when running under systemd. * app: Compile with BoringSSL. * nghttp: Allow multiple -c option occurrence, and take min and last value. * nghttpd: Fix leak when server failed to listen to given port. * nghttpx: Add TLS dynamic record size behaviour command line options. * nghttpx: Reduce default timeouts for read sockets to 1m. * nghttpx: Fix bug that PUT is replaced with POST. * nghttpx: Change mruby script handling. * nghttpx: Added support for RFC 7413 (TCP Fast Open) on nghttpx proxy listening connections. * nghttpx: Add neverbleed support. * h2load: Don't DOS our server! * h2load: Use duration syntax for timeouts. * h2load: Support subsecond rate period. * h2load: Simplify rate mode. * h2load: Add option for user-definable rate period. * h2load: Reuse SSL/TLS session. * h2load: Reconnect server on connection: close. * h2load: Don't exit in the case of no ALPN protocol overlap. * integration: Update go's http2 package URI. - Add missing baselibs.conf. - Add nghttp2-1.4.0-fix-tests.patch from commit 4825009. - Small spec cleanup.- Update to 1.3.4 * Make traditional init script fail if new config file is broken (Patch from Janusz Dziemidowicz) * nghttpx-logrotate: Don't use killall since we have multiple processes * nghttpx: Fix improper signal handling - Changes for 1.3.3 * Fix bug in padding handling of DATA frame * Use hash table for dynamic table lookup * More warning flags for --enable-werror * Update mruby * h2load: HTTP/1.1 support (Patch from Lucas Pardue) * nghttpx: Do not try to set TCP_NODELAY when frontend is an UNIX socket (Patch from Janusz Dziemidowicz) * nghttpx: Chown UNIX domain socket to user specified as --user * nghttpx: Split monolithic one process into control and worker processes * nghttpx: Handle SSL/TLS data following PROXY protocol line - Changes for 1.3.2 * Check header block limit after new stream is opened * nghttp: Show error if HEADERS frame cannot be sent for whatever reason * nghttpx: Fix assertion failure on TLS handshake * nghttpx: Add x-http2-push header field for pushed resource * nghttpx: Fix compile error with --disable-threads- Update to 1.3.1 * Avoid usage of typeof and replace __builtin_offsetof with offsetof * Honor stream->weight even if stream->last_writelen is 0 * Compile third-party libraries if hpack-tools is enabled * nghttpx-init: Start nghttpx with --daemon * Bundle sphinxcontrib.rubydomain https://bitbucket.org/birkenfeld/sphinx-contrib/src/default/rubydomain/ * Bundle mruby * h2load: Record TTFB on first byte of response body, rather than first socket read * h2load: Improve checking for timing script input, prevent false positive in certain situations * nghttpx: Implement PROXY protocol version 1 (--accept-proxy-protocol option) * nghttpx: Allow link header server push for HTTP/2 backend as well * nghttpx: Don't initiate push if client disabled push * nghttpx: Allow absolute URI in Link header field for push * nghttpx: Fix crash with multi workers and QUIT signal * nghttpx: Add mruby support which is disabled by default (use --with-mruby configure option to enable it) * nghttpx: Drop connection before TLS finish if h2 requirement is not fulfilled - Fix typo in previous changelog entry- Update to 1.3.1 * Limit the number of incoming reserved (remote) streams * Add stream public API * Rewrite priority tree handling * Fix parallel make distcheck * Define it and itprep recursive target if AM_EXTRA_RECURSIVE_TARGETS is defined * fetch-ocsp-response: Handle spurious openssl exist status 0 * nghttpx: Use nghttp2::ssl::DEFAULT_CIPHER_LIST for backend TLS connection * nghttpx: Don't allow blacked listed cipher suites for HTTP/2 connection * nghttpx: better handle /dev/stderr and /dev/stdout (Patch from Tomasz Buchert) * nghttpd: GOAWAY if SSL/TLS requirements for HTTP/2 are not met * nghttpd: Return date header field for 304 * nghttpd: Support HEAD request * h2load: Add Timing-script and base URI support (Patch from Lucas Pardue) * h2load: Add timeout options (Patch from Nora) - Fix typo in changelog- Update to 1.2.1 * doc: Reword the HPACK tutorial (Patch from Tom Harwood) * nghttpx: Fix stability issues * h2load: Fix crash if -r > -n- Update to 1.2.0 * Fix crash if response or data is submitted to closing stream * Header table size UINT32_MAX must be accepted * Use PROTOCOL_ERROR against DATA sent to idle stream * Allow multiple in-flight SETTINGS * Strictly check occurrence of dynamic table size update * Fix configure warning that 'missing' is missing or too old * Fix rm: cannot remove ‘*.rst’: No such file or directory when "make clean" (Patch from Alexis La Goutte) * doc: Reword some of the server and client tutorial (Patch from Tom Harwood) * src: Remove monotonic_clock replacement macro for gcc-4.6 * nghttpx: Add TLS ticket key sharing among nghttpx instances using memcached * nghttpx: Add shared session cache using memcached * nghttpx: Set SSL/TLS session timeout to 12 hours * nghttpx: Enable session resumption on HTTP/2 backend * nghttpx: Don't rewrite host header field by default * nghttpx: Generate new ticket key every 1hr and its life time is now 12hrs * nghttpx: Don't reuse backend connection if it is not clean * nghttpx: Add AES-256-CBC encryption for TLS session ticket * nghttpd: Fix the bug that 304 response has non-empty body * h2load: Add -r and -C options to h2load (Patch from Nora Shoemaker) - Changes for 1.1.2 * Fix linker error with libnghttp2_asio * Allow custom installation location for Python bindings - Drop no longer needed missing_nghttp2_timegm.patch- Update to 1.1.1 * nghttpx: Fix various stability issues and memory leak bug - Changes for 1.1.0 * Fix DATA is not consumed if nghttp2_http_on_data_chunk failed * nghttp2_submit_response and nghttp2_submit_headers may return * NGHTTP2_ERR_DATA_EXIST * msvc build fixes and enchantments (Patch from Gabi Davar) * Compile with IRIX gcc-4.7 (Patch from Klaus Ziegler) * nghttp: Add --max-concurrent-streams option * nghttp: Add comment on HAR on pushed objects (Patch from acesso) * nghttpx: Add --include option to read additional configuration from given file * nghttpx: Add backend routing based on request host and path by extending -b option * nghttpx: Allow log variable to be enclosed by curly braces for disambiguation * nghttpx: Add log variables related to SSL/TLS connection * h2load: Add --ciphers option - Add patches * missing_nghttp2_timegm.patch to fix building of asio library * nghttp2-remove-python-build.patch to fix python bindings installation when autotools are used- Update to 1.0.5 * Add STREAM_DEP_DEBUG macro switch to enable runtime validation of depedency tree * Fix another bug in priority handling; sibling's item is not queued when ancestor's item is detached * nghttpx: Fix crash with --http2-bridge and both frontend and backend TLS- Update to 1.0.4 * Fix assertion failure in stream_update_dep_on_detach_item (GH-264) - Changes for 1.0.3 * Fix bug that idle self-depending PRIORITY is not handled gracefully * Optimize dependency based priority code to Firefox style tree * enable third-party for asio_lib too (Patch from Mike Frysinger) * fetch-ocsp-response: Support LibreSSL, and include port in ocsp_host * src: Support compile with LibreSSL * nghttpx: Fix bug that x-forwarded-proto header field does not reflect frontend scheme on HTTP/2 backend * nghttpx: Validate :path on SPDY frontend- Update to 1.0.2 * Fix bug that data are not consumed for connection in race condition (GH-253) * Define NGHTTP2_EXTERN to __declspec(dllimport) when using nghttp2 for Windows build * Translate fetch-ocsp-response into Python * libevent-client: Fix bug that path is broken if URI does not contain path part * python: Call on_close callback when connection is lost for server session * python: Expose client certificate, if available (Patch from Fabian Wiesel) * python: Catch and log failure to set TCP_NODELAY (Patch from Fabian Wiesel) * nghttpx: Add --add-request-header option * nghttpx: Make WebSocket upgrade work * nghttpx: Fix bug that END_STREAM is not set in backend for POST with Upgrade * nghttpx: Don't send "Expect" header field twice- Update to 1.0.1 * Include stdint.h instead of inttypes.h when compiled with MSVC < 2013 * Fix invalid memory free on out-of-memory handling * integration: Use our own copy of golang spdy package * android: Don't link zlib bundled with android NDK * Dockerfile.android: Update NDK ver, and ubuntu; build and link zlib * src, examples: Fix up OpenSSL initialization * nghttpx: Allow HTTP Upgrade from POST request if response header has not been sent to the client * nghttpx: Fix bug that PUSH_PROMISE is sent after associated response HEADERS * nghttpd: Close connection after settings timeout and GOAWAY was sent * h2load: Fix bug that NPN fails if ALPN is enabled- Update to 1.0.0 * v1.0.0 introduced backward incompatible changes from 0.7 series. Read https://nghttp2.org/documentation/package_README.html#migration-from-v0-7-15-or-earlier to migrate from older version to this latest version. - Changes for 0.7.15 * Hopefully, this is the last release for 0.7.x series. Development continues in 1.x series. * Access violation in buffers (GH-232) (Patch from Etienne Cimon) * Retry finding jemalloc lib by je_malloc_stats_print (GH-233) * inflatehd: Fix crash if 'wire' value is not string (GH-235) * nghttpx: Revert 585af93 to fix crash with TLS (GH-234) * nghttpd: Add --echo-upload option to send back request body- Update to 0.7.14 * Fix global-buffer-overflow in HPACK code * Fix doc for nghttp2_select_next_protocol * Fix bug that promised stream was not reset on decompression error * Add systemd and upstart configuration file for nghttpx (Patch from Zhuoyun Wei) * Improve nghttpx logrotate configuration file (Patch from Zhuoyun Wei) * Update sphinx_rtd_theme * h2load: Update h2load to give connect time and ttfb stats (Patch from ericcarlschwartz) * nghttpd: Add -m, --max-concurrent-streams option * nghttpx: Log absolute URI for HTTP/2 or client proxy request * nghttpx: Add --header-field-buffer and --max-header-fields options * nghttp: Fix assertion error if very large value is given to -t- Update to 0.7.13 * Fix bug that promised stream was not reset by returning NGHTTP2_ERR_TEMPORAL_CALLBACK_FAILURE from nghttp2_on_header_callback. Instead, associated stream was reset. * Allow NGHTTP2_ERR_TEMPORAL_CALLBACK_FAILURE from nghttp2_on_begin_headers_callback * h2load: Effectively disable flow control by setting large window size * asio: Graceful shutdown and joinable server (Patch from Xiaoguang Sun)- Update to 0.7.12 * Fix bug that nghttp2_session_set_next_stream_id accepts invalid stream_id * HPACK: Rewrite static header table handling * HPACK: Never index authorization and small cookie header field * Don't install libnghttp2_asio headers if they are disabled * doc: Specify program directive so that hyperlink to option is correctly pointed to the intended location * asio: client: Call error_cb on error occurred in do_read and do_write (Fixes GH-207) * nghttp: Add --no-push option to disable server push * nghttp: Show stream ID in statistics output * nghttp: Remove --dep-idle option * nghttp: Use same priority anchor nodes as Firefox does * nghttpx: Don't push resource if link header has non empty loadpolicy * nghttpx: Add logging for somewhat important events (logs, tickets, and ocsp) * nghttpx: Set Downstream to stream user data on HTTP Upgrade to h2- Update to 0.7.11 * nghttpx: Fix waitpid race condition in ocsp response update * nghttp: Consider user-provided :authority header field for SNI as well as host header field - Changes for 0.7.10 * Make sure that nghttp2 license is MIT license * Add nghttp2_session_consume_{connection,stream} to consume bytes independent * Add nghttp2_send_data_callback to send DATA payload without copying "static inline" fix for build with VS2013 (Patch from Remo E) * Update lib/Makefile.msvc (Patch from Remo E) * Remove dependency on libws2_32 on Windows build * Define NGHTTP2_EXTERN macro to export function for Windows build * doc: Generate API doc per function * python: Add async body generation support * python: Fix pseudo-header field ordering bug * nghttpx: Redirect stderr to errorlog file * nghttpx: Fix bug that data buffered in SSL object are not read * nghttpx: Remove --tls-ctx-per-worker option * nghttpx: Add OCSP stapling feature- Enable python bindings - Update to 0.7.9 * Implements h2-14 protocol (http://tools.ietf.org/html/draft-ietf-httpbis-http2-14) * Implements HPACK 09 (http://tools.ietf.org/html/draft-ietf-httpbis-header-compression-09) * h2load: Fix crash if -t > -c * h2load: Add -d option to upload data to server * nghttpx: Forward only "trailers" keyword in te when forwarding HTTP/2 backend * nghttpx: Fix PUSH_PROMISE header field corruption [GH-194] * nghttpx: Fix te header field is duplicated when forwarding HTTP/2 backend * nghttp, nghttpd: Add --hexdump option to hexdump incoming traffic. * examples: Place AM_CPPFLAGS first to use in-package header files first [GH-192] - Changes for 0.7.8 * Implements h2-14 protocol (http://tools.ietf.org/html/draft-ietf-httpbis-http2-14) * Implements HPACK 09 (http://tools.ietf.org/html/draft-ietf-httpbis-header-compression-09) * Validate :path header field for http or https URI scheme * NULL-terminate header field name and value presented by callback * README.rst: Cleaned up the grammar a bit (Patch from Ross Smith II) * h2load: fix for segfault by reserving correct worker count (Patch from Stefan Eissing)- Avoid shipping documentation redundantly. Set RPM groups.- Fix rpm group- Update to 0.7.5 * Implements h2-14 protocol (http://tools.ietf.org/html/draft-ietf-httpbis-http2-14) * Implements HPACK 09 (http://tools.ietf.org/html/draft-ietf-httpbis-header-compression-09) * Validate HTTP semantics by default * Add nghttp2_option_set_no_http_messaging() API function * Update http-parser * nghttp, nghttpd, nghttpx: Use "sensitive" to indicate "never indexed" header field * nghttp, nghttpd, nghttpx, h2load: Select/announce h2 in ALPN/NPN * nghttp: Fix unaligned field output in --stat * nghttp: Fix -H does not work with -u upgrade request * nghttp: Update resource timing terminology according to Resource Timing TR * nghttpd: Add -a option which takes an address parameter that allows nghttpd to bind to a non-default address. Patch from Brian Card * nghttpx: Use omit minor version in case of HTTP/2 in via header and access log * nghttpx: Support UNIX domain socket on both frontend and backend * nghttpx: Fix crash in http/1 backend when backend returns more bytes than CL * nghttpx: Cast configuration value to rlim_t to avoid compile error on 32bit * nghttpx: Fix 1 second delay in HTTP/2 backend connection * nghttpx: Fix request re-submission bug in HTTP/2 backend * asio-sv2: Fix compile error with OS X- Initial packaging of 0.7.4/bin/sh1.40.0-lp152.1.31.40.0-lp152.1.3libnghttp2.so.14libnghttp2.so.14.19.0/usr/lib/-fomit-frame-pointer -fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.opensuse.org/openSUSE:Leap:15.2/standard/dd045b4613e9e118c5c17cfc0c7c7f4f-nghttp2cpioxz5x86_64-suse-linuxELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=7e97e13da01fa8d1569b4f55a4e33e86c6a14251, strippedPRRRRRutf-80adb8e79f3a4d99ff882669fd706dad632b346a62db1b3bed23adf71fad8f7b5? 7zXZ !t/t] cr$x#*ʺwm,,굶 %!?FY[+8%'vp{Oi-P=IVIN)Tê:!F4R>kl( q⟅6{,Qkƻ|H. c}hB@ދ'A){ZgA*|MNA*R `7_:CDXxyLPvD*EJ5N-7Z /Rrk #Cv<ë̜6;S&qH ZyGJՒyp/@57yhZ^ F5,ݥ)yo룯SN`<\>C89Ӓ_+ӔUr_ LVO܊|-+H]gN2E~{->l =5b sFf]?k@*Jֿe/_A F$@ jpP'-0 ӨP0<LG !7ۛn`cS_D1v,rQ­Z{;/~"P8|p[[T* j4a3̐oDd0= 48 |L GZOXx2]l̳vl\ҚBlЋ?w,FYk(KPRdƌo`ET=jU.|#Bd1S2#^&Uqw+5)'?vžEfLyç4y+y_5];79E4t~=U4ٖ25["h6v2 pZB;BD6lqwP.$sN C~t/YF}@qYpfG)}d7|$^a$ 7xk}dfل6Nq_ qaZS+SNMwC :f ^=tU.jذ"! Ya#̎awtŠ+ pd#%mn%VAqȕPG,VR:W9xq ɊG[h`rߒpժJ[#1zJT-‚u.  `KIwgBwҗtvFm6z?ur?83Rqۗ3)FU*TZ[}e%Fu Zj ėkFY#A_/YmP4HH;muDl _(Soy5#ߊVOR,B9H3\)D2~/Q\H ?Yxd2>ݬOA4iabc")[ХȹƯp(CdzU{Vp5/#eLw`Gu>';d~7M"N;ه7P6az%o9Ni!ï`ǶJXZQ>Vs,4 cUd xO 6+ToV 3qJ.R86*^J`mc!E$9 yC84tqJIy8d4f({"'AUIN)|grYm|6'ƀıxrke2o*N }wzB'o7f#fPFᷰ=E1Ӵt PUa,o. ;#f(iPh编»"|&,IɭS;3$V>MlP\'ъ\C_1ҫ]$ jV|ygesʱ%C!17}~^Nlx/6@PEL򝦃XYϓVZ[&Ed>Th9`:E9f;3 h2nat.r`6 XFVW@dڧF:h%Z*uUgX&#kB2D4=!Br|.%'JJAWU斞ݷ;׻ueԓE5#xZbi| &h6Dccvw d 9*$kpvk9{p1#hޱ1q7H%y?ERc~V5y(`j;t s 0T|>Ĕ <%)SQlig㘬Ku<`S$'[A)zPSyŀ1=0C׶OؐqvA<>$$v| + yr2Qy:@^bUBI{)`ŗ`.6P71Ch RpP<ȩUx#tS^"~G-;ǞG52Ob/y[ [:/ cq7a"ڀYb. dz@}QUkތFCތݘNB-ȣJT##~=&^~EԑsټCO"~c@wB -2Td w,6)ۯ2@e$$=E=X#W*\ՓZ%gzbCSxk[ueOfOsK%Be>] G?ŏrS*#D{IX[ ⺟q$x 00Ѻ^X(S]V/Gb}IYbXxsXS|k)~zv<ќ>x˦KaiF ⸃-fWD4|Dճ{?kqw4[v " O&]ыvm#=\PÊd.*r?t71ծ̒0 'ZeTDžINb[*0 Vn@7D^7hohU0hy-\^ewZ{e"(C Al~!RDBs"rϦ `Fӧ.bBKs"&q|E}NK)1t|h-..>q3%ŢΊ q;j(,2.W)쿪I1˅pcTNh1bJ} hx9" Acx C:N|\ :5ιM)t 1D0vZ-ǭ}]?sknζBM(϶V ɑm?7^ӻ >lb l=obl0J)Je$JMd|Q&[b†dD8%J :8}g5,g `,ӫk}69 AzHF#U x5]^eKX I5 H!>ux*ofߝt%trL<~MCD Gy] `Z/ns5[{IsA굡F/qslI S+NgvF#a`!0W|,ڔ_[\+"e Zs(.HLni gוiNUdzNyYڕ9ŻR6f_,%bqK/ҴDݝ-[#T\||3{(n$<9sZͽRŤpK=P&.{B%y 8[@OqӞF\ C4EcO:,7mA96~]@/`q 隄R} u&jx:WFY[$K1:)hY^GO,mƎÙȟ5*jXqTAm屦3l~HrvE`vɑ0vx/pNX;K{ʓhWwDQ-K'kijgiᩅK̅rbw/15f>.ƎnO':\:`G1<mvfQV#'>jkܻSV5c΍d(T5(%Ty?v=a\FyDǢll ]5Pw(3pOe&ԋND''QcĊ᳖A4z 6_963'g-Oy` "ջYsk^@>/ށpQ#@gNY$HjfUu& NAb(i$V!,s`r#߀,#t*XAlk1!]:XJ \D%(Vh .7U..K2| Z!wJƣsb=Gقv`. Kgp2~>*%b%;nM/ZL,8؝+VH3ikn֑s)J;XJYKLʺ==?Uyґ2JFN}LM^^sV `НK|VUnLPvEV!67Vzfմn  /E:"IH|crĠއ'O(elԓe yv5Hb,F|E|OҬ]<4UD!]1Na|Wh "O>Bl Zn\rDyw J2R$V>'p)n(& VN]uπ EY%ٗJ&n ^C,>)#mq (J^d`Ϫe/8[(2ۘx [˽X"e NHЀ@nhvOɾr/}М~Sr\w1 [@6 f4SR)&&bd"MXb,ȌHV#jQ yFzJl }G&&M].b ٷzz],H!YP+a|~ΆSA-%5 ɻ$2d[Zh\E$M7h8 J%O6h?aWūIܣ0ی3#6?8.:ΓT!# :Gq#䨕}9j5 , Iw͟{LDR5q X)| ?36{74E>`YjOL9]1*s$svA[8IP!dIjr-XA+)_/<4g)Ij I7Yý<_-wb3]Ao ko&p!. 5u_ptH[JFR{ΏEeFCr 4հlO,'K&[鄨srOϰl (( uPk]B?`MmWczA@̓~$GpZ0lv)kǸG'vω&mt`J>WltR|aa0MeDh$?Qt,lg5PI2ǭw;?Bku;04y0`rks"G0B4f61CTz6X "siO g$'q GẄaپ;gq$5H0'hƓ0C/1$r?rqLs{qpg`jل[K,T/}$ɹ6)/ S06}B@l:bgK#6 +K@-b\OȌal *n 3rnvK@e4*nb59PfGcWщm Aɔqs옅S ǡ5F*8u{ tVIg6eR"ez6?M_(g.jt;6{oVBȺibw%xkYr@CW#i > MMv𯯑2&w/}Lib!@Zo2Sbk9N4 ng}\A/4+Tg1մ*r:Ks^֕x{Q P̋yp7gc|NYRBvAq=Ī p$ͪ vNMrvnyM2cQX@CJ̗xŌeo؆ݟ*y?_Ԍ96>qF{_y - ZНwn|BI*^ k(qAnZڙ78ժWN{_>=rhq}157C_[#X61#<@1֢4)f~쏫b5Lm;~wxL= Y$X=ZZ8SR~WS,aESY/tDv<߬ARv:1AvK)XSvf;ӈmx̢+})UpEGO8c:׮>Ygš帝tXOʩ7&^AhvύqMs ?+饨( JGOX]'"iW뒻a` */lLllHK{ jˤ~d $ݾ@eHYW3$yހ6i=8H&yɃ5]\j w7AImXx*ƳL]Tg ė=py+L[{: 1EsxT.Cr\g (tS,4$TG.JPo$9@mSُjbL9Xť ᜱ)5ro.0Hh0ZؽZ@`^beHSxzL>v|:Tۧ.g\ȵd/=< #Rvf#rwp'l:ۺjwq1j\ZM Oxk4l=ƢSw7 EiNmA.qIς+b߁H:JO<.[| d:7 RL?gPJD-̝gو*1SZmT}p$4nw*jLzŴ鴕?ɷ,)%m6VGEebol\c-} ?夤HTMKRy秈{B 9BX`钎NSNDֻ>uo,r1?r7\5(l[,t^\}4=-~b>GS>MF痑dVl.i:$;Do# X[P^]}_$n>EB2VEGCBIhկI-ғdqؓlLPNP)zcQOΖ`UmhQ^׭L6oV/v&57'1:vڸHۭ+d6N\pqh dIS?I]G+<$!P;&zQiflFVQ2~YPM;XrxW MGqxAL?yq\l2acIyM.]o{{C;ڍ-s.woFZ|eOWSB%bjxO D,^,1E_2365rP(1 ɓ+PN:`odΈiJGj3?hl޻t&^8W &Cȵ]?kmݥǃ{YirPuiҵ:w3o[K1t6oZ݅X{@iElWɈ~Cas%N 5a:X[J#;%Kӌr3SdA̲ܗ;Ą^y< =x?"GmH8qwSe]V= ֧A32XRk?=V4nEV(nKL~Gqo|@d=-z~tÊYU"(Z$Oxb;C~}fIn ،U~#a> LU&KNs3UB^Uxr Y[ԕ~>#L%˝lW#>R u ~4}]~/1J,nn/qٞͨɔ%jf0PXt׎簌W}TkH;2^?e_jb̡M𚹼y/)QrvK'd~Ԃ'XSSӇz92x`c,V\WAacw ZR;gzicjcey5]ɣ6r_ #QIcs0{fR䤐,^$z-*WKկ@Șl N"4p*ȦE!Q;(CQ?,jc8!XlBxWWH1:ژa`)ٙӡԼGER:f]q2nmYnw_RaVrfJ4OW}1oQ~1ZBTCk1D՚2e1hO .)󊆭3 aҩL9md;ݦ=_8~v"+:/D՜g¦4" iZ`Zu S%߬@.:8Y,G{Tj2;wͤ1ǼHAkDl"^e!Lq ɍX^AygWyC`Opсà GnBT巿)A[?Cl`JgA;.:W6{*z^l\4{n-,_吃Iǂ;](=;*tA'xάCl5 kl|1U?L[kJ0|}[E+p߾yV,^1/H):-K sl$F@hX)$Pp裆bN <K\{s)CvѝTXrafNKq=\žnwΚ'I!4 y[ծ׬=``0v#5dڰ;* (u@#gR4Q%*'u N\'+dx/FpTvV~+Qʻ.Xn4}ALo`jK2ʹ tRE3q:G^WsJXAIȬRFf8'Ml0K\!GSFV}9WvAߵ;sUF*t<}2cVxrVNFfPUY$VPp} |<-y eH2>ؕ7e<3X_kx՜*l.V`s"`%p y#%rl?Mo9F\?%`%!HvnMn/Zy56ЩGN!b~zmG~'I̅X6":zrK/44R:@i(|4t3uIG.-W]6o_p6̃m/mPs:/RȽ'}_m8 ܁+^uAUCCv\KWٵD-,=!6LԩO' Vsɰ39okd%['bf΢+=)\9"[^_}.r96H5x)ca 4]ނFd_Gs&bM(rC?|6MxX4qN'"M!M %U*t)Dg (_AmY#8 LY[@{dT}ûn_ewL_o{!)U f8k?I})1^9{A|6t(J+e؂j.E}Ymk_ Ru)S^R[B5lAP_t>6tVc&I/|ؑƷ狳GOY$2%u8cnik9IGJze*aknY'=ߐHWeyu龟qp8enLۺn'H)u8GN7i4Y>H 4LWk`ЬΫG'F5;e3Y =eCp9q`duޯ؞C#Z_'M5.xYTցWp8`_d@G>Z˒Sy݁ EcP})'_PN"1U}Aؠ{̦۪Y#4uQ#OI'll 3_>&\#$a%tyD?-vka墙C\]!L`q`4[fCcWHs+ZbGuSY`l$\ɛN.V>qPL 2>ݮqBm3ȎE wDZOB O"jKŲeZ,YK,TDfՐ7H^lW2xO4)Uts4m:[{O҂s-Hr Ğ`} 1'Fφ/A"S $-2laS\r4J[~ӼAIW YaA3cĪ )}‚zu֊H?_mC k5frCU78"psϫ-hC*k h:lcjw.&$\V/|pKír]W(j fo]BhJ`1p}qp`3ftyahkuL;?<_ #p'*}]5j=۳DX&\ŴWQJXHKì|A=2fYKA.l[ZD n& {09MM/~CJw8UK2íh`wvlhŔL* v?P0Nq }N\~\1WI/ɧA Zc':p1@V/?[V<#E[^AGLwA>p 8,RǸjb&9IsǿPv 2ޝXu#41Wml?uWW_?j_&ᰕ; ~HU>P+}Hhs@pvDGN/OVaāKݿnVml\0~sdP7`^SGkAWCF׋z)\s3DJdJw0%";v;Fº!]Xwg&ӹ^E6+:hs@ci-ˇ&G;}; /0BR^.8.`-T- ֛,Y,8ViNޒei's:uOqFI$jA7XrWY2+V.X4{GCkwݞFVY+PL*iN6 ѽM+tSHڔ!hpQ_w]Guxm8ŀBN$&)}ʞ˹~@NNQ]гl w/!dμYr)c2L7ycB[+6}NďRR9!LAxq꼾imee?! qZLtdyk92b/:s}Fnw7PhuT6AĢbۯh)!yy0p\2Xi31>#/c WpP LV؉󋨂M@|]3.4W34 ۾Zikgv=";Rp/Vp#>;ǂ=.i[z^h星!4㖠8^?E9UVw ARHȍjm'Ծm_c uNE/=JO2 MYT]KU62ϕw BqTc_P<zJYwpo;ip1^,.h9|穎 BT;k:_;4JG8 -d:+u/6i+$(] -gUO>,WuߋT`8SY4JxcZW8$|iSR_:ߎF1L&$qx1F`m* *r'½*0ۂf5ZՃҡi{s<19M /7fīW6LT'svX:qrY21F]K  ƾX-"Ģk2QQ .sv7ǾҞ[(O-–Shk`9!{UycV0ҨȂ;l39h:f2KA4gdfj 7x[`}rL Uh ɽ6p^%(=Nl4?0B}<Й]}JpkW0Z>%$y!'RwZi@fii߁8qOs[$4TJͬYeb*.NRC"uᬤy\M=Mζ;cOrD_TVLsVLYrzt!Vy{!S38eωrjiN;@kZ.o '`Ĝ.baE^{*k"[ V#ʄ[QͽBiRlz*^G@ׇH $wS3L΀ ){1IqZmʬ x4z`먳̧2/ >* R7Rn6IqSD:m;Qd2>eB Է(zzn'xCQ g`kvTa z7{Pvl1eq{vԊh4\[(ݒ^h o^ "g'-d<+~Dbְϡy݌jVJ(OpJ9UHn8"(SYP%75ю}H,JR^[C5MW6] ߣɈ>2QRiۢR)nAT QV 6c[>Tqͭ-BxjRH^F]EfuHmuh]*"O6յGIg3;ߴo$iu2tIgT1ybPMioC.UZ~ZJ2 6<*h]X^k{ T/i]j5\f)L&&:snXn lZkYxp!R &zɿd9qmn i)>cf%;,~pa1s}l9B3IY^_zp~K8Y~%aS~TmyGS1gOxo(צP< It'f*ct+7K泓Թv2r,l1/v|6rw$3Rg^ )Wό%#}wLub6G<ET*NMG!ƙx 3g%PC 6qbwAiM*eQ(<}*j",*6)Unl#aū'O˯@2VOlJ"e t^k<l8/"'" I:@ߤ <;0†dE`\qe=H6 :{GmaǩC/ozln.:΂MF*V}91u#Gݮ32$gj~O_/ORXH9CzZ($B*JG@6H}*@8{/8 ߿ pn,+reچl] '`D/Rd\%\HKHP:ݕg4U(I{[/vmکQ #X{ RuEL"5rB;*. 7ػHGsEjKD=?AQr*R:B:49{'ak&1h5E_nLkMm;^ÑMuߧQ]3\Wp BIIBX'Bд_ԬXSFt:@ %[O@#0t;{>*z myjA/"b##Q!|Ml9ƓC 9`N852q#%`+^ۅ>/֪L11e溛aXs?!E:׊vPk*Q._^֗j8ϐg* Y| 1jJʶi/J d3j~&Hmz&2EBt0-Pw{6Bϗ Qo}*pvX22=vD}#3D_lĤgnT?A(!H R13 qo'\7efk3Kf[b WkEpT#4V_7V4Q7t@l"Gk;>4$hz_t9S=XcFu;-x/z_BX8+ sQJ! Цi<PVXkqY_װblQZ3lD/*s؞:1~YWL?Y&Oj]_~5\k9$*.92l"86JpP$HcrL$ q֔t>sqL;Q+7]/3lbǬND(]ֿcqg&&~L#EwƺnW򹽃 La"\@%C7AcjBm,! >6E ^%(I(qpnU8 XDކnvVtu9_:7VjBmy\ .t-.q[e !T; ~iW΀ՉE78/*.-&Jv_BjދV*4xY0ϯ^B^ؓw9{sq1>(]Ğ9 TЍ~~| A1<™liPM&gּ]ʶjm6c#},q&Hӵ<sޢ)# .s4%ھB+2KnLj]*XQҡfF'hTgbhEgARrDjlMs|E J֦B,$րw}b5(/[QÖ T&[~=# G.1H:<ًLkI*gN`1% ܧNT&МtNAD O/&[`^fzoJ8*0ի 1Q+bh>q*673t'.@F2Y3 m\ W0׌X"S~~!<2Q@m+؃ɲO lֲ6EK\ʄUe޵j&u6prQxcydfkT l{8dB! Q])%(l28Jl>in@:mّ8.fґ:LXp'`LLYgVl*UIΗ{&?V Z*@nErnÆ1e)ޱ=?^Os;ADDY}epZ@vT9;DHQ~G9Aô=HZV ~Rlu fd <ӻMwHcfX~I!PF ^"Nar(I8šl,Ţ,# 'Ce&Y)s0t ~L~+JB^KIH,s6}E.U4?=]g\LQkW18s6SdGJ mEcp LXô u;Eb:']\ >Nu`yd Mʮ,٣Mߢnv'!FdGV~dP<S N^Kř؅I-\禢Kx,$~RQ5uځэg<]/73(7Eaw)@z087GD32 sF-ςtr4x7MP]OF<o.5s@dCZ*H׉z1Jr$7;׌wp(.Tet>5<'~Xc.i {%W@*;S,NNцR+L.݊Gj=mq0fa5K~rNJ5著ӲyjT-Ԝ,Hra}*N;!u^bN~*{&;,iRyf&P("$6]=d@8NfKl=jNHeH,}-S YCvI-GcN\1nݹ b;NWcQJnKdžEn}p緇~D l/y n偒'؆lZۗar=* 90T)/mʰV#SܙDj*kKBhvj߸39WR'4gKհS&Cl +e9DYOqM4=[?Uj"l@a"jQr;Ic΁T\ADּ=JhA hntV5Ynaѝԑى2 *5a$?:WVNEݕoUkYJpkG1@G-ܫ%-aK 1󂦶 mcu^Hޠ}i>}D fhe;w[h8B4¯^T’öjwmʊ'dQL W׋У?W`\l' 9 ?|I- V[>FDWvX#W¿>Sy21Z1GΖ ARtZ_ K~E cծcݡ-I űOrq.GJ>Ȥa# >̓y5uؿF9sHLFa_^N3^!ھk Q h$ IEsXMB@ ־W6tt- \وq vQ44t4+JL׬:: #moUe%1F;#@ `E,%;8' n[_wW!UxW03gAf2Kڟd<#^ܷƼUyWiYjoTj)d$;_\7 E<"G44n{Pa]ƋѶ| *FВ xfa"-* % uM!76P8 k SBZ%N K>Md57%1wYg+(mJLevIoQqHor6-Gœ"`*owŐ,\MΥb1/9~FߪёMyn)q>o%n0ɿNF3]#הt[h!Kc*|5~2 U FkQ#,ůICiQk$lͨ :˙PAS 7 K]gE=ZPC fߙ +jH~U2ł], Lŷ=GdLRXx8 mDϦ5ݕo^]4{kI#mQ>B!`I$'&]o+?ةŕrQ?pnbW+l7Z&5'6)&Tp夀V{11 x,be*tc fOw'E{х{s yA]O&d,g|tpe w^ҿI [;QZʬOLf.&/-'Ď% x\Ԋ퓽K1hx{֗JA۳w7FYfո3uT1PH[Hތ&a )ef;a)jϱ [F~* UNCuꦋnN++9ji:iG~:|IFϹHT5h{ɍ7Se8 _4PrbJ2+Viڹ=Z~:0R=xOCx8a ?ӛ x#+`goǏx|t95K *d[DõUˡ6Uamې[Μ[Kӻ)q0-i%ڪICIL@ ̔R>LUQtxIDڇN{95Ob/@&Ӷ#E@\0.XD~u:8 ?^-"HۆLIf^jŏcvH]B贎IV(u#D,b**qQzjlzt?PX`z,%RLf*Mv7h(R0"b ڜCb C'J0(j=x߫nywJmp_ʂc7.i]/E'VN18^:tc{ | |Kcہ}x_|*yu hB+U,s8n4J a8Roh&#pnK7PK d:2e;%Y} 2e0ۅ I݊s,xv<^cn[$F oCo16ux}Q#dZD|Oia a}ˡ`Ey \F炕"kbΕiqxh=1 C#H1zW@CcJc$=G.jc"KwlUdR`fVt֮h 1.yoU C>"B놽#*4e!*i -WY&';=}f x<"ɈSY; zRb̝-YãJqCIHf} ~*/j NE!OΟE;3?V|P(A/ݢڕȣIBܜE23 ?G;XhΡ0()B*yΰLro^/KI,URZ=h2@6 ҫOѧ? +L,g}!65+!Kt` \͊x ;ؙGqcw)D[rGl%u^~-Z9,@eVm}*Tzyԇ4L!-HFªr y2.VfM(f{cX]& #`F)"7c$-LAaJ[dAcYFhy? /P6MgV z.@8&NB2Ϲ٭D#n씒jSC v35#8C lLJB mk#'#-0ps0k _x-rpKtcbPbrqNMeмjDoߑ(zM#*ѧ43ZBi4 9Ğ~J|=Fq5>y*L9чcG NfחL+_QO0wCb @P8{-E pT v g1jQcU0ɵ# 3sPȜѢ;Ra \a1wZ"E 0|* 0OC"/w%vfގl CWVahjL-j0o WjVv(2f4a?ʆjzBS].!0!4*;(1JM*>oo! OoC1/GrnC )P{6f=4 l-pԸV= 0BR/b$ؾB ;x-x+R P%28 Ae2CQ68˾q" gC>AWZPzƭژ7B1tKІ}wtO@|%I+SM+1(Y1l  D޼0N}yHaoq2s-Y¸~`ڥ㫩 ti}]0S|ן)͗ĂB{:ЯƺSݺ*f W7$.yy&oΟtt`&R#1؋s~C* ^ XCqj_bdqZ ꏑ(|R0rƜߡ¯Ga]E;zuM7izuפh@le`^"5Dno @S;fb0 MTC@5erJ]wp#E3`@eB_QsrBɢ~7DʖG3TRhzѵF{qd}LUPq/{H ju)v& 12t;}캂~ޯXnb^L5 \wShմK裾 Ik4[^ZRh׻}G2a u68KRD:ID_-ͳ!+L“7Xue3B k6J̉Tт<9$#pA,(E@Tlߎ.ɦl0oOֱ՛5ʼn߉ 탞8%#YnNg/u ޶SôITÃWm'q-Xy1;MLw<=9{hyyj- z쯾dvIPb4HK qZB7Ujl"SgO82n{X.>QjחC'6/_V?CjO'RBzLgxpXZ$x}̟v(N\0{_>0ifRVZc;Rx1E$n* [j2LpQţDM!Xp>5N9kPMj[>@u|k:ߴ* $3;sL4f[y1Ss&R=̒[0a!$&ef:yԅ"D'& Ro-D}> ʻiGP"IbS-8ynZ9N΀Cɦ"+88- :eP: 3:Η<)qj4[\cD}\oK&r{ޤ.Xn " m$L= CE}|* j">2o񟯖\eƷ+ C\ *Nr#v|.1+l-j Qs7Z>`iGLΙ׹H:,Yn۰7F |(bcHQG<`=8Ј&;eiopJepx6A"^ R'p(k #~l:H1j>GIzY_1@^M.ڨ[81q , I}aoǃzqq 3N[_Jz`^+z.3Of0D0ݾبo&J|*?ahV@?v2p蓘úvЈ$d8p<e4 Z@#z_ٙBJh0&Yur6hLt }wdQ!}d+jDȬ"o2PP"A.f 0d=b~XB窖q\I D)ocֱ@m%BPSw8!5 =]q:?75sHWaBA"?.MW^bE'k!z4w||+b c F`(YW'Hz˴VWOV3d`S+a3/fKoR 6c֤ 6|BǢ'FW/EHu뾷b۫} *j2֫XRy+$XנRąFd .$½ԃ ᰹z,r gU<f5 W((&H‘JAuCP CД_QѳZm1O`aNl033GU]20ɨ) M#d0sAȈ;,U;2Zn-] p;3o}ȴ,%GztGl=x63>h:(?ylٖ1Ehh²Y0ntm\]U fltݪ;(u20ӌ@0aN$eVSQ D4&{oݍJFvGXSpu+vOܹfZ\yA$ЪXڰ`K]R=•*X h4b|;kT IJ,b<hKL3(0p` 'MAZZ[%ϙ_||ޝގwי<4v0!'Kalı ?=^2 ?' [e>]rЕVY킁Ȉ` k6R˛4+ëӾ 3acs)hI O\1LS6Ddߍ\hw($+/.:S?H~gh8cAL' d%` ,ѝ] L1'`W^~Ů(Np؅UܴkF`{Tuk${|.bFZd9S׿O)rء 3B!T4uǂgf-: >9gtv˿Dӻb20)ΰLl<ݜ}?h|M4f9c`ktgt[Ֆyl[}|ίUW59.ZpL1/­|Z东\P5C.@ \:Kiu@!ѹ$gR/fk![ƇBi)ٱ xFoվXe6iq/kgu2y~B0;~"fi"j*䔌g gI[k!L j  q}C̴J4>+w{5|$F~E닿 /IQ& HS -ga\J>iRҎI\*L|$!9бke*s. oM ikU@xb6͍Ij 8'2/1n¤V I: B.hVNٯIJ +MyڕqpEߒe ET]|㠯ƀ9-kLw rPGӜ{/x;lkg&}c j|C,r)k[wD`{OoPH\)p_QzzLywy]^v$gv ՁAadZ"$!;;z@ /-щ" mxӁXg*ez7MfWpz^fGWhsz124%A@ mj7~nxHdATDu4!h5'R`m-z?xpgy-jAai1zz]Z Fhba[O>|OK^ogQbzʢiIO* < 5\s/"0o_z8&g_쐯;W݃_gN98qDXIPnt>jK2yd4 MvmH秧U3"C`{Ph Բʛæ&n;+OGø)5So-`P4HS4 An|SZ7v?"s ޘ /lmW*w^87kOpz'g-Eb&at5EJ~CѩDEx?;K樹nDtʭŤq\ ?zdU]4!x:@.|Z1f<!v]0J {퍽KCVZn:?zcփ!eg!`kE{S%/0jVdKpW[<'@LY!m3y>S?a5/b?B ?5ɮoIZ(AΣQaQ ƎbƅE@>o 2kMDlTqy'JQ 6M8U4kaC& NZˑ1,ź,/GNƳͅzɓ5ҥED*f̉턲rvX{`fN^|1D84gFD[>Sa>!,E^ ew>OJfK^ ?Ϫ(L[ҌeRF9ն_V=-Z YL he i;7'ϳ)2ӋoRȫۿTn2;7]˺| h2;Fkf X~{#sʰ|龦6kۋH cAZ40@Y~/#JyOHӂq`+].b7f6me4 C芁.rsmWg}G"Rp"Cl|wHԧ"fCvEjhV:3 At#>nӿ.xx$q_rAe'"olH青V;#Jdc{޸ˤz̦BYϺېYM*AaȳTP$*@Τ۹S*e琕;4]vȬ3pd͛:{HAmgwUkר;꥾Sy+ tF)Θ@goUtCb"W4yN: 0>Lv[GeJk7O8V'KsnLS _ ! E)HE| %|v%}%WCZ _c=2. b dT87`O䚛|.#Y?iͭ}QW(Mس,faj/z 6_pl5X /ue,R2C(, Ɋ#N+$1؅W7o4pME'Uv&XfbEH)y(ZeVzD|%$0KFy(Xai-oƂf?\1I!<` ̲郼TPK=s;Y=Z.iTD9 ;faqjߥLDm1Q&~Z8]b->'4Q9QLy&jp,=sYXd :gRw0ZâUyxh#*tւ>"%(?:QA}:ʱx!PZop7k)uBtmうѦI<"cǫX$RhN aC*VF:&xG+uU4__):U^+ R/2돟~ؽd7ZrhDPrƲOyQ}ܼ*q YvXk!%HB31ROvV**j \^<@cMB[=L; zНrWO 4:9e50 v2VbgA5^tǙy{ERխvy\mLcqB "֜2;6 XzaUx Lj.'EgQE%T9g{1o028^2L$Z`Hۭ߬o_ܛh:ї>^uܰZ,|Q:‡\%쭽T6U'htҜ+dVkS.l!cU9bC^5w`fTG kRK;4<5eA41 K/o^ O@R^ !>[$2äT$omtQ6Y WwizUμW$`&XoC#id!o]xNWl{u`NB0j]&mz!qm~՘hSD|W}lޅB/Ϥ9k,q{jGQaO?CP>q;+a廣=~Շl:g&ϔ^#P49>0>b'C|2 r` kFxa+V}ZBBK" xOr8 dlD}M^Y!ڿb'sub [7r…݊u.<GDiF?qiƟAD&h,ZB$ǥјỴ@$p Rİ=E]os 6ݯۋ`x'Y3kc[ӱzМ}j]6$6>'B圳n-&82խ0Yx2r|>:Ã>U;Nxz\4?lzI{ lZ@h@93a[ЗBQ:s<j7h<ڸ7=[,燯cmh6zkT|=RmY31*U=˝3TߝWC=d '6 B*gVLG ]TٓMkOu͑bC`֝Ě7[|Omz$e-=Jj3x59yPHܨbUH@ۢ 9(#It]B Q#'ΨLfXY{y(a יG9ӺC=GkuLBAOG&/ llV]QwZ|r WRǯM-v&!.r+}WV8@N|oنTju&fb!M*uCOK:7ς1E&ӳϥʨKq3Z5Xݰ w&X҉E+UQ%Fr%CXםdOD>#iObAY{n'>7Eh$ȅiHWiLw^cQ :Ď9̽E1dđi{r"H`ه5"$~=`@3~Q&QX3?*++6Sr XsR]UW Tƈ%rE^pٔz̗We%λѨjM̰^ $OpD4\W䧏z A8y/RJu8LG urqs%CXʫL8J1T-;j 7apLڏ$w"\$ſA{0M3e*3"`uɀCu؝wV꿗LRjN"!e} _8/yq_ 'Jh\+Ś@RjQaۛf觷PU$_!gnVLF!й\W$`ܼ_ Л_k9qMn27(}9b7K72/"Rm#p;3#㼁: n k˸PBe⾵Ds1uaAa^Mh.5#5A3Qs2v["lD37FҪuan3˧bQfЛN$2Kڤ[9?P&o0. A@ʲ 3  XGrv6)[#xsl$a~˔! wS%lcǢ:SF[ VĆMII}IǮ`[u$|za܄>-[UUUo*#~h$B`P:\D).U\X~zH`#ܾ]TN(#qc79Ab'i4De0SsSɌVL-oLhv_6icy{.qBkȴ`SpZ% &h~9VWC0sއY.BĒ ?zmU :1=9 OUݨ>-JbTrg8.}Wl吤kXxuSrauU!;crTeϻ 6rװ1+;*.rLj8WRR ~B0p2ĸ@%3.F%XD[ǣ{h )X/]00@7 w SFFڄԷن~eKց4k(I0hmA(&ƖT9i}jz2.֘z SYU~jR`r2!=83zy&橋X9˽]&`Y 憀9mnƶgAg*8ȷ/;*m66=S]VsB5U Bqn\SYB'¥>{XX8{$J_OrO:89\/ZBeN-O/Pn/w{wйV^&nc9gG˼ObJmkW((yvAtyh3\vga., ̗3kܣZͳעPd;xY0 Vw=z8oSUvha@O!UnjBKvʆ>(g=թPjNu%!x;%S$~n htӦh";>]-([*K>!}]2^ͻFS m]!_zh(g v}gjy N?P_958?Yzp}~$,a"E7OF## &6X)`x?NsL !S82JdpJ CrϭZĚ.Hubxej5:kU@Rm'XRȍ"@C(14Q(ҁ }j($:H[& %A:$"ܻSui7 SՑupX ʺ R;>N_ ]=DG cD+T՚Յ̽䌌;gGe0ŀgn+5@sC;bbzYM?gKN>y+ZRϠbmHݧ i>RF"u Z@̍b@Z[2Xݘvc?/F$82X!RJbmn{;Ȧ4|'G '~}7h\+A}#Y ;X=ͨGBCMR>hVKߡ'|`= 幤h37'~@1WYu´*f$uAM|ged_F*qUzƦ>L9v bA@(_ݕ()W .8F)PKVrsq%2"Uĩ6),nJdH$l_GwƁUw~p i]O #U(bP1D [.'& M?6\F?Uwƒ z` S`?Zwj;YCmR0Wc BCGzcaFK]bvS̅axpG_m]v<!@R/_v/$_96> *!)w@At'HYsnc2@\%;h%|1hfSy1s8ZB# IE>aW\X#O8BbH/q{aDCc`yɈAG6=hL@΂XhڶfWr5fȍ #D1Q|Y\ q*}Hxb?$$#g˄RL`?Y LK5|ml? _Cx)3^u.Qrhݻyc 7|~q@DpIȚ%[o[8KgpZWq2=-,$K׷O="MR2m`g2K˔K?Q .R:$rsp$A2. XJvU}*bd6#wa1 Q|1Jx5_@.S6OCBw_hJqH{IVLY:cypR\"wX5tP|"n_cڥ4|pHm@xLP9 |.b&li.QTa XH=YQXELpp o>vk #_?Q&scOT) vgͱגDUjw~ϛ):#^*XMw66~1#dy5?5 >fk+RqIZY!:@)vej\V`5rh%/'Oi=AŠRҺ*̊Ky<=:prgdz~q;%%]+efrY Bݫ2RfNq enEJ2]!/?9f*Fl`읯Lev譢DPj÷T8)Z-FX df#8R<•Hζe0)|JJ OO8_ڨV/'gq%8H`L3LSV?o)\1n!~ ESVX(!?"=*fM!N H-ʱ,vdl_vWkQ!. NC5MP5l~Ǽ&_kJ KXU8EaD/?̥6Ԡ&Ş2'=du&hM *l2CTh,>Id#?w#m>A럧v}FX|e/Xb:& \n>AxtT~Ý C?)I:rbc: /|6k6ԤL0Eڿx9w|CK?=,Rz,`t-hŦeR4݃vD];Fs`Kı-3[膭nfRdUW!H^Ewz{f Ū4/ HO_Ec bL21ªzT}u4îYJq*/\ L Dm_mIrUX"45| WȄVoMMv~L }9]PJ2{/[sa)3W2si o=]ޤX=ZhN5$٧h̜GTÉt $Il|_,R`yA`6bu8q#=c9Pue' d-!|R77E MS"\Kb3ƽvy2 ;1s3`ӪiQzv[M!+0:^̛rbpBgAxQYM)f*N԰+nRI:< }&4s'Xoij59) >~&]kن-0ѿfROJچHa="w+cXuSDRu;iiQy$v,g<!g>7%Q/КD辷guRrFp+( 2us !k%.AV6 9؉9XCCI(ޛͦ6)-[ӑwB[ r oxWB'zL|L+QxKKR??X+.v寻L9ԎEƚ_RL\:dTHC$d`D47cLeKR(`Ƴ2y}𣢚|3GK|0=[_^ 6fsU8G ݅ݺ)gw0ߋh~UMgw9WER Ru֨fv&'ʣ{!?S76"k-QW/Jzv @u6W4vTMS(ÀV퇺=7ؤWWj_\cB 7VlW0?JpDNc_+ٹcT%4Ue G#4]Q+o?:sbF j: Ni!xg4 _(D#6 aQ*/^%ž^tו{a ?z^06}/Leexp j~Ȭ#MWGKsLj\)OoBʮ渚X) LNs,r)bt7aV4]36jlL(EjYDI5Z}&rJW?cJBVj?;i.yvtH!it9<5a̯>g' ^m=BR&0;;`%ɮ4=tFC5U0=V\ݧ.'7NPI}׭&̌2/s["O :FNY M*~PuKn{Nck&6\'_H]$N,Qq M ;+9 o>0n~4)CmK.5\y&!@Z4;8 e½T*i9Wj_(Hb9\CH,{a&pVeǞG:Շv{L Ѓ?'܅_!0APPqSϞ|w"LTlU%v@⡡Af!%qA}>SBM-(@{\qzFc̋#n(uo+!F;U9g`9<| G3 ^a2\׿07/O8*JO.Eoo݋'  W5oR tج+*kRs2%aQ5NL[mA@;N5S{w~S;|QBhH"jUŹ"&y+,?k7yjwjf>ȝ2ʷ0"ccj˶c)Y߶G`&XK4/ pPtlktUF6A{b3{pk4rzjzpxҥ& 29+(p%C;xn e-CۡhR##>:rn^ke'퐟2&qi!&lӤ-Ufsxd SZ,#HAFV};_ &D{ߏ%UMAKU>0ѭܿ95|8st~9nщwG>v4nv `q⯣t(@M=yb)/Fc[*V9H>I'@Q Hؑ%+Y$ɔٗ首h4z$aI8鴃3S}_T R^ imtyxLIjXyBl]rjH3F:߂3}BʹU" ob4Rޜq pYmՈ=7>M%dKCy_vP[#CȄ~S4J_玂;g=T,*Th`E_%6Z6+%dxvp3GZlsG ~`zo6ޅ]Xc y.G~%R$Պ2_b[,.I$k)Q30.elg }i38^5 HVmu$A5ղR|rmF1n*pJ ăedYCM[7|h'?*G>7%BgM c5{.$ʁڽE14D. ėTt Gbn >>/f9RQV$CH@I#7o3 6F7s5pߌo]HɈ:WI {e/YMP (":ObfpZ7:7rE|?H>K (."qIk{$Ӱ7LBg+Lptu*/hRo1kdnʓ zSOט~NiHΟo͇Ht"t$'!.;T(["iH3u]BDPXEf^T-3S ]RYI3%=g))NQǣ  Շ, bo y|@ y˟w}k[@ MHLtqjyKQ?Kx{<pBEI-[n;I1$Z5wh\}ȉKS&XXs%NhoC^3W`l T~ Y˄ vc=Wn[]n[Ua~Q/CÝc=u5??d@'P,f1W[ IĤ;Ĵ%{4 To" MT6ǎiIQPoTs,#e| W41_M7+/%ѷ^Q~\إbAbeœsZW+)y׎sMf QU]Ovc/Oc@< RR95fxhxhIiv /?ʲrb#>F}`IH+gXop+;lHqYmo9Xf@E[N+S+D9Л⺫1A(|2 oڪIfZՋ%8䫊S7)HZ\bNH%۩Y0wp(r`o4}HJe3Yzv uhӠ q́C͆ Oӗ50$ԪQqao^ ʙԬ8;XQL`Vb/|^Dbi7:݋ڪdeÇ2%T9(c"oJ< 5&?vLxX px"q@2?fLʋ=$H+¡ғD8"6-& pcéZр'3!ɂ &*{-{0).T&k'-NV˕oj+d%eԱXM@oOK~XY ·I}%vi¼\)>h#К}KB(M:I?q:Dxd]pş4Hugq|x[f߭@EU "@`ƺ֙KbW5$m1/l+G¨D@!H^:K㯆fr$dcfA _yaESm Mj"!IHA8UvԻon 1)cE)"(2J?@.Yrд6sG#8\\s&+F0`*2)M_כ"SA˫pߞQ}eg13y%FJ2k8'ZU/D-8H($V/{ȣwna7 qnFtU;%FF\3\Uzε uhc>sR]xbuJHt*U >DKyjav¶ʑh]Rkr*C'R}r;Ptӧg*;beSw\ZcXHڅG:@qT8: p}FV|N%KD ۷5Tûa^0sC)8XVi*a~ 7{$Vk=&%mğ咒buc=r(a ZH8R,@S}g  "JvQ"Ǹâ g|z銊<79:3  .88 pdjnWt-Cib 1 |[,_BFJ z\" a|݃L |׏V9bm򾓤&!<q]3C&W{〄nhsBy x>]Y=.'" tne8Rz~nVXo4WS2Z Mq֎BZxhALM1\&0g?'!\*K>V [6cn8ݚӷZJ[hΟ`=.fzt<Ζy%~KBX8+j, (~&s8 zE;#@#!bqY8jԹ̉KU#ѽ `};>xHX_ցΙS(hNOK=.?@8wG(M,; ]zZ;siIj\dQ͕3?ԱVVJB#Lm'd泋>]c蛜(Ox6||/YJ9сmƹ':I~b}1ca\"$AdDsB %/;/Ǝ:[~Oh[며q NV|}ރ(U-Iv,(>lb=brZ7]}WRP&+67b[]H`-h.홇\ΊeO] D4""EwQҝh贇ٔ8l($#s:AOX2qݠD"͙a&[ac_;|q.ж]+!V}^c?.m9/ꃦAseGΨAv4Q}|Yx{Ux$aoWFQE<(){}1j Uc\D 0jdhqҰ WO(._RH;hHIѥ)WCKGWl@dBqNwJA89/ܜE[_1C5MIޯ^x*z^ >[P".|P0tҡXGkg¶e3]?scW'o+A x"v>J!#}@v¯WæNz6N+]mLJb3|g3 T=<x 2gVm?1{џ .RK6D&Smʷⳬ=1-=mƽ,]h( >1r eO>|Z; t.¯&‡4<)G'u[`5ڻ)}>ՋNd?R*YM+ 3kN +^Lt14C-3`eY⟘oaMbvol=\̓f0ƴ1 _kcQ醎ғ=.UG\Bп˺zM^"eI uz2L`sx=FEb,a$*vd$ke [S1pL5Fi޶M E2;l庻0Jf|8~Rxx $nZ[0d@Mia$s@%IU1zJH) hPawjj4@DY1FmvwdnT' i?o^Eu͆T$Rk0zn g{^,͇zRrƽf\$^|D-Ye]r+JcS?G 6Ҕ ,XcnSzCFNtQ\Q4.=12Odͫ$Yo 8):`'av N^I؋}tVuyد ![g{aM8Y>39='R죃ݛ(G~nz^.jس~) -=.$ˀKlUP=\udl] Py Mn -D77NUl:0JƽE<ҹܓXO͌8dimoH=ڐP+A t.B:?B)&tQ$vjg`RP|c-XӰ wdf m@f0qC݋1% ?bo6"w^>'ʀYD'-3s2(AX xFUZ,`ap̲X: P81 .4c[Jc#*d@DK ΐ@!~0~Z;o8w N#ˡ&?YoWk{BSd9NRtR"P7M ds!8oX_bpPԓ ł4 sH{IO5qoRue;R]`31X=IX[p隩 $ +E[2VyB(戻O`T4gaٷ$fSH<TalKq|m?-nsM?bHjZV088UzDu+r-}AU _s+0VZJ.rh!L߷5-"^a[-x]jN@Y@˨0Nʀt)8z %>݄ v6QW>mX5mPmTPD^EUczjAm* *'Ayx6| dI jh%TxE,թg[O1;$FR]I(t[N( =0W9otٰNd 8VqNcMu MCh&6zU3̸4ۙ% e X7!),UŒȿjLZpa<|v,oY <F,O[>pFתWWT9̅^&l jpC8JFEw '[9S.vp:N/T;]HĖF (6-<׻_.$RЧ?Y.<wSH1 ͅ=Nb >[]` ^Gd%n/D'P1:1j^+~yw5=w/ϵ Iٜ~=:΢ɤÅW``QCoggA{I +yx.UY$~ݠ4 MX2½N$|U|aFݾoi3*T#7 ,ߎ:唦XE!P7-Fˁ[qUfF;*!45Br[͚jE{8B|N=ʝE\w'F2o7SʺzW Vi":*Q QXJ&aPFn S>[Ad}MR .Jp<2|XVg`foX+c5^!\v&>-p_8֊6E di2Tm>[[To?f㤪IO~ړ(7.^L4|A\wu&0F6D 9cffx!ۍސiKWMQR|Ny jybG |_-‡?~#"(8I=N>b¼I[AM]vh/F޲Fzopᶭ9 ''ipn>SoҫΩHoqj+bP8oCޖ]&f {,=>z굇 [ !\n)ݔRu$zhHGshepeť[*| bI*G5e.sX'vNH;4{\z:%׾ jK|0 )`Գ\JC3C/RϦ&ȱ4`=G灴ŚTɗm2h*8 `Ŭ+x ct3:c$ml"Crad[ pISy~V8c*% TT%C[^'EFuy)Py8??u(íF2<%R+iŔI(z2D pӫQ m[gZG vg ݆@;$DLwd{g6 vǧ@KtzxDx!$&A\$s> V" "5. )3Fgˑ&41}fĞ܀lbxw/KF,vg1&8{Z*kbRkEq:1auݥ& *C\<핌1piaqmL鮴JN#yrFZWZA۽Z8a4Xqxɘ 3YTM>m+Kp·\N_A %~mv:98k mYVqA gΨ#MMXuzc)@b/V~,n5>00Js`dۇ"@2K4bhG2.Z$9d0px"GbY jg-jAg!.~x&$黎W$[(뇢r(-T{H\vKm Z5͎&`;̒9_<*y8rDf/2qinK֚[9Eg_C v2䒖cȬ yX. Gݮ=M(4r_*=pk׷z`ȄK Wb5v돭Y4{OC+XVl<[?9]UΓ ZE26*1P v%=C>ͫd@>ՅV})z$IרR)7͸"-2)H]u'QJ>ץ`] U*+ԓ pUyI|D4b1`l,j%Yi$\ [XiFuZ5e_^^{7`0NbuF7aU1J3rUu;o.ǴY%~N.dArsnZSO;]E(C܄kŨšLJ!vR\& -W |Xgѡ2V̜Z,R)<@sh{& k,ˢ,6dܪRzօ e1%ަcJ_h2cb Ansk-@^qTpl*-Z64bTd" )Yfi(`U}.5p0yeFs`k8o;-Ud-29&=;.49<x /u)hlX ɡi.:4,NGз \AG*`Q)8r, -Ne,?AkҹyУY3VX