libvirt-daemon-driver-secret-8.0.0-150400.7.6.1 >  A dvAp9|gAn3~`n a_[ MkfDט:03b;ӅeW̍y|JK{j7B%Oߢً f޵rr~ %rmmnȍ_irQUཋ;4y.vI{ǃ(Jnvko_Da][[+T7[ӊ!釡PpǾk(5-x2PAz*4< OZ`k24nREʃVŊ0176dab1dcf32d9031c1a2caccb236457d74f5ad3e3bbcf69882ab0560ffa5c4a78915a3f4823fa2eabf8eadd0cba1dc11fc56fc dvAp9|$3gAT։K[ ZCYy+kg3K31Y8uxdG3'FK¬0L-X:]^} 9oe+/[0?>!%2r}sJ<@<Kb5W,f 'ޞehW#q7l)F\"iEMEX7Bqcәu ]W%\.&X[Ī=3>/t'5< >pFuL?u<d% 2 _, BThnvh      (  X     ( d  {l{%q{(&(8&0T9+T:BlT=l|>l?l@lFlGl Hl Im Xm$Ym4\mp ]m ^nbo=codphepmfpplprup vpwr xr yr|zttttu8Clibvirt-daemon-driver-secret8.0.0150400.7.6.1Secret driver plugin for the libvirtd daemonThe secret driver plugin for the libvirtd daemon, providing an implementation of the secret key APIs.dv@ibs-centriq-3 SUSE Linux Enterprise 15SUSE LLC LGPL-2.1-or-laterhttps://www.suse.com/System/Managementhttp://libvirt.org/linuxaarch64 if [ -x /usr/bin/systemctl ]; then test -n "$FIRST_ARG" || FIRST_ARG="$1" [ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || : for service in virtsecretd.service virtsecretd.socket virtsecretd-ro.socket virtsecretd-admin.socket ; do sysv_service=${service%.*} if [ ! -e /usr/lib/systemd/system/$service ] && [ ! -e /etc/init.d/$sysv_service ]; then mkdir -p /run/systemd/rpm/needs-preset touch /run/systemd/rpm/needs-preset/$service elif [ -e /etc/init.d/$sysv_service ] && [ ! -e /var/lib/systemd/migrated/$sysv_service ]; then /usr/sbin/systemd-sysv-convert --save $sysv_service || : mkdir -p /run/systemd/rpm/needs-sysv-convert touch /run/systemd/rpm/needs-sysv-convert/$service fi done fi if [ -x /usr/bin/systemctl ]; then test -n "$FIRST_ARG" || FIRST_ARG="$1" [ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || : if [ "$YAST_IS_RUNNING" != "instsys" ]; then /usr/bin/systemctl daemon-reload || : fi for service in virtsecretd.service virtsecretd.socket virtsecretd-ro.socket virtsecretd-admin.socket ; do sysv_service=${service%.*} if [ -e /run/systemd/rpm/needs-preset/$service ]; then /usr/bin/systemctl preset $service || : rm "/run/systemd/rpm/needs-preset/$service" || : elif [ -e /run/systemd/rpm/needs-sysv-convert/$service ]; then /usr/sbin/systemd-sysv-convert --apply $sysv_service || : rm "/run/systemd/rpm/needs-sysv-convert/$service" || : touch /var/lib/systemd/migrated/$sysv_service || : fi done fi test -n "$FIRST_ARG" || FIRST_ARG="$1" if [ "$FIRST_ARG" -eq 0 -a -x /usr/bin/systemctl ]; then # Package removal, not upgrade /usr/bin/systemctl --no-reload disable virtsecretd.service virtsecretd.socket virtsecretd-ro.socket virtsecretd-admin.socket || : ( test "$YAST_IS_RUNNING" = instsys && exit 0 test -f /etc/sysconfig/services -a \ -z "$DISABLE_STOP_ON_REMOVAL" && . /etc/sysconfig/services test "$DISABLE_STOP_ON_REMOVAL" = yes -o \ "$DISABLE_STOP_ON_REMOVAL" = 1 && exit 0 /usr/bin/systemctl stop virtsecretd.service virtsecretd.socket virtsecretd-ro.socket virtsecretd-admin.socket ) || : fi test -n "$FIRST_ARG" || FIRST_ARG="$1" if [ $1 -eq 0 ]; then # Package removal for service in virtsecretd.service virtsecretd.socket virtsecretd-ro.socket virtsecretd-admin.socket ; do sysv_service="${service%.*}" rm -f "/var/lib/systemd/migrated/$sysv_service" || : done fi if [ -x /usr/bin/systemctl ]; then /usr/bin/systemctl daemon-reload || : fi if [ "$FIRST_ARG" -ge 1 ]; then # Package upgrade, not uninstall if [ -x /usr/bin/systemctl ]; then ( test "$YAST_IS_RUNNING" = instsys && exit 0 test -f /etc/sysconfig/services -a \ -z "$DISABLE_RESTART_ON_UPDATE" && . /etc/sysconfig/services test "$DISABLE_RESTART_ON_UPDATE" = yes -o \ "$DISABLE_RESTART_ON_UPDATE" = 1 && exit 0 /usr/bin/systemctl try-restart virtsecretd.service virtsecretd.socket virtsecretd-ro.socket virtsecretd-admin.socket ) || : fi fi0\Ee D~A큤dv>dv>dv>dv>dv>dv@_dv@_dv@bdv@`dv?dv>dv@;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-8.0.0-150400.7.6.1.src.rpmconfig(libvirt-daemon-driver-secret)libvirt-daemon-driver-secretlibvirt-daemon-driver-secret(aarch-64)libvirt_driver_secret.so()(64bit) @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@    /bin/sh/bin/sh/bin/sh/bin/shconfig(libvirt-daemon-driver-secret)ld-linux-aarch64.so.1()(64bit)ld-linux-aarch64.so.1(GLIBC_2.17)(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.17)(64bit)libgcc_s.so.1()(64bit)libgcc_s.so.1(GCC_3.0)(64bit)libgcc_s.so.1(GCC_3.3.1)(64bit)libgio-2.0.so.0()(64bit)libglib-2.0.so.0()(64bit)libgobject-2.0.so.0()(64bit)libtirpc.so.3()(64bit)libtirpc.so.3(TIRPC_0.3.0)(64bit)libvirt-daemonlibvirt-lxc.so.0()(64bit)libvirt-lxc.so.0(LIBVIRT_LXC_1.0.2)(64bit)libvirt-qemu.so.0()(64bit)libvirt-qemu.so.0(LIBVIRT_QEMU_0.10.0)(64bit)libvirt-qemu.so.0(LIBVIRT_QEMU_0.8.3)(64bit)libvirt-qemu.so.0(LIBVIRT_QEMU_0.9.4)(64bit)libvirt-qemu.so.0(LIBVIRT_QEMU_1.2.3)(64bit)libvirt.so.0()(64bit)libvirt.so.0(LIBVIRT_0.0.3)(64bit)libvirt.so.0(LIBVIRT_0.0.5)(64bit)libvirt.so.0(LIBVIRT_0.1.0)(64bit)libvirt.so.0(LIBVIRT_0.1.1)(64bit)libvirt.so.0(LIBVIRT_0.1.4)(64bit)libvirt.so.0(LIBVIRT_0.1.5)(64bit)libvirt.so.0(LIBVIRT_0.1.9)(64bit)libvirt.so.0(LIBVIRT_0.10.0)(64bit)libvirt.so.0(LIBVIRT_0.10.2)(64bit)libvirt.so.0(LIBVIRT_0.2.0)(64bit)libvirt.so.0(LIBVIRT_0.2.1)(64bit)libvirt.so.0(LIBVIRT_0.2.3)(64bit)libvirt.so.0(LIBVIRT_0.3.0)(64bit)libvirt.so.0(LIBVIRT_0.3.2)(64bit)libvirt.so.0(LIBVIRT_0.3.3)(64bit)libvirt.so.0(LIBVIRT_0.4.1)(64bit)libvirt.so.0(LIBVIRT_0.4.2)(64bit)libvirt.so.0(LIBVIRT_0.4.5)(64bit)libvirt.so.0(LIBVIRT_0.5.0)(64bit)libvirt.so.0(LIBVIRT_0.6.1)(64bit)libvirt.so.0(LIBVIRT_0.6.3)(64bit)libvirt.so.0(LIBVIRT_0.6.4)(64bit)libvirt.so.0(LIBVIRT_0.7.0)(64bit)libvirt.so.0(LIBVIRT_0.7.1)(64bit)libvirt.so.0(LIBVIRT_0.7.2)(64bit)libvirt.so.0(LIBVIRT_0.7.3)(64bit)libvirt.so.0(LIBVIRT_0.7.5)(64bit)libvirt.so.0(LIBVIRT_0.7.7)(64bit)libvirt.so.0(LIBVIRT_0.8.0)(64bit)libvirt.so.0(LIBVIRT_0.8.1)(64bit)libvirt.so.0(LIBVIRT_0.8.2)(64bit)libvirt.so.0(LIBVIRT_0.8.5)(64bit)libvirt.so.0(LIBVIRT_0.8.6)(64bit)libvirt.so.0(LIBVIRT_0.8.8)(64bit)libvirt.so.0(LIBVIRT_0.9.0)(64bit)libvirt.so.0(LIBVIRT_0.9.10)(64bit)libvirt.so.0(LIBVIRT_0.9.11)(64bit)libvirt.so.0(LIBVIRT_0.9.13)(64bit)libvirt.so.0(LIBVIRT_0.9.2)(64bit)libvirt.so.0(LIBVIRT_0.9.3)(64bit)libvirt.so.0(LIBVIRT_0.9.4)(64bit)libvirt.so.0(LIBVIRT_0.9.5)(64bit)libvirt.so.0(LIBVIRT_0.9.7)(64bit)libvirt.so.0(LIBVIRT_0.9.8)(64bit)libvirt.so.0(LIBVIRT_0.9.9)(64bit)libvirt.so.0(LIBVIRT_1.0.0)(64bit)libvirt.so.0(LIBVIRT_1.0.1)(64bit)libvirt.so.0(LIBVIRT_1.0.2)(64bit)libvirt.so.0(LIBVIRT_1.0.3)(64bit)libvirt.so.0(LIBVIRT_1.0.5)(64bit)libvirt.so.0(LIBVIRT_1.0.6)(64bit)libvirt.so.0(LIBVIRT_1.1.1)(64bit)libvirt.so.0(LIBVIRT_1.1.3)(64bit)libvirt.so.0(LIBVIRT_1.2.1)(64bit)libvirt.so.0(LIBVIRT_1.2.11)(64bit)libvirt.so.0(LIBVIRT_1.2.12)(64bit)libvirt.so.0(LIBVIRT_1.2.14)(64bit)libvirt.so.0(LIBVIRT_1.2.15)(64bit)libvirt.so.0(LIBVIRT_1.2.16)(64bit)libvirt.so.0(LIBVIRT_1.2.19)(64bit)libvirt.so.0(LIBVIRT_1.2.3)(64bit)libvirt.so.0(LIBVIRT_1.2.5)(64bit)libvirt.so.0(LIBVIRT_1.2.6)(64bit)libvirt.so.0(LIBVIRT_1.2.7)(64bit)libvirt.so.0(LIBVIRT_1.2.8)(64bit)libvirt.so.0(LIBVIRT_1.2.9)(64bit)libvirt.so.0(LIBVIRT_1.3.3)(64bit)libvirt.so.0(LIBVIRT_2.0.0)(64bit)libvirt.so.0(LIBVIRT_2.2.0)(64bit)libvirt.so.0(LIBVIRT_3.0.0)(64bit)libvirt.so.0(LIBVIRT_3.1.0)(64bit)libvirt.so.0(LIBVIRT_3.4.0)(64bit)libvirt.so.0(LIBVIRT_3.7.0)(64bit)libvirt.so.0(LIBVIRT_3.9.0)(64bit)libvirt.so.0(LIBVIRT_4.1.0)(64bit)libvirt.so.0(LIBVIRT_4.10.0)(64bit)libvirt.so.0(LIBVIRT_4.4.0)(64bit)libvirt.so.0(LIBVIRT_4.5.0)(64bit)libvirt.so.0(LIBVIRT_5.10.0)(64bit)libvirt.so.0(LIBVIRT_5.2.0)(64bit)libvirt.so.0(LIBVIRT_5.5.0)(64bit)libvirt.so.0(LIBVIRT_5.6.0)(64bit)libvirt.so.0(LIBVIRT_5.7.0)(64bit)libvirt.so.0(LIBVIRT_5.8.0)(64bit)libvirt.so.0(LIBVIRT_6.0.0)(64bit)libvirt.so.0(LIBVIRT_6.10.0)(64bit)libvirt.so.0(LIBVIRT_7.1.0)(64bit)libvirt.so.0(LIBVIRT_7.2.0)(64bit)libvirt.so.0(LIBVIRT_7.3.0)(64bit)libvirt.so.0(LIBVIRT_7.7.0)(64bit)libvirt.so.0(LIBVIRT_7.8.0)(64bit)libvirt.so.0(LIBVIRT_8.0.0)(64bit)libvirt.so.0(LIBVIRT_PRIVATE_8.0.0)(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)8.0.0-150400.7.6.18.0.0-150400.7.6.13.0.4-14.6.0-14.0-15.2-14.14.3du@d7dc@cdc@ccc@blb@bEbBb,@b@b[@b a7a@aaa@a5a@a@aaa@amaaim@aim@a`2a^@aV@aLl@a@a/k@aa@a@`@`@`E`g@`S@`Q@`KW`H`<@`<@`0`-@`%@`"y@```_@_H@_м@_@_0@_u@_@_/@_F@___]@_@_u_Z@_Z@_O@_N7_N7_D@_"@^א^l@^@^@^@^@^s^^p^^F^:@^8 @^8 @^2@^2@^1s^^]f@]]]e@]A]ʞ]M@]µ]z@]rJ@]nU]e@]V]M`@]D%]D%]A]9]0_@] #]@\\@\\\@\@\C@\|\\\\\\M\@\@\}@\v{\k\]o@\HW@\HW@\@n@\=@\,\[@[0[@[][[:@[@[r@[qr[h8@[dC[>@[<[0@[{@[{@[)[@Z?Z@ZZZI@ZZ`@ZZZ@Z@Z1@Z@Z_@Z}@Zk@ZiZaZWQZLZ:PZ7Z2gZ%8Z!D@ZZZ@ZfZfZ@Z@ZZYY@YY@Yܶ@YdYp@YY@Y{YA@YX@YYYKY@YW@Y@Yx@Yx@YqY\YTY7Y6@Y1S@Y"Y@Y]Y.XX9@XӸXg@X~@XXZX @X7@X@X@X@X@XYX@X6@X6@X6@XXXc@XEVX,J@X!@X@W@WiWF@W@WWWW@WW@W~WWv[@WgWbWaC@WYZ@WUeWH6WEWEW package instead of libvirt-daemon-. The latter are not required packages for a functioning hypervisor driver.- Update to libvirt 7.6.0 - storage_driver: Unlock object on ACL fail in storagePoolLookupByTargetPath CVE-2021-3667 bsc#1188843 - jsc#SLE-18354 - Many incremental improvements and bug fixes, see https://libvirt.org/news.html - Added patches: suse-qemu-ovmf-paths.patch, suse-xen-ovmf-paths.patch - Dropped patches: ee3dc2c2-libxl-default-pcistub-name.patch, 6b8e9613-avoid-use-after-free.patch, eab7ae6b-fix-array-access.patch, c363f03e-virnetdaemon-intro-virNetDaemonQuitExecRestart.patch, ccc6dd8f-fix-exec-restart.patch, 15073504-CVE-2021-3631.patch, de1e0ae0-lockd-no-error-if-lockspace.patch, 447f69de-CVE-2021-3667.patch, suse-ovmf-paths.patch, suse-apparmor-libnl-paths.patch, suse-xen-ovmf-loaders.patch, suse-bump-xen-version.patch - libxl: ovmf now provides only one firmware for Xen. The firmware is named ovmf-x86_64-xen-4m.bin in the SUSE ovmf package. Adjust the upstream default firmware path to match the SUSE name. - packaging: To improve maintainability, rename suse-ovmf-paths.patch to suse-qemu-ovmf-paths.patch and suse-xen-ovmf-loaders.patch to suse-xen-ovmf-paths.patch - spec: Remove the sysconfig fillup files for the various daemons - Dropped patches: suse-libvirtd-sysconfig-settings.patch, suse-virtlockd-sysconfig-settings.patch, suse-virtlogd-sysconfig-settings.patch - qemu: Use correct flag constant for enabling storage migration f58349c9-qemu-storage-migration.patch bsc#1188171 - apparmor: Permit new capabilities required by libvirtd boo#1186888 - supportconfig plugin improvements - Suggest numad package instead of requiring it. numad is not required for libvirt daemon to run, it does not support the cgroup2 API and it has been superseded by the kernel NUMA balancer which is enabled by default. bsc#1184722 - libvirt-admin package merged with libvirt-daemon - libvirt-bash-completion package merged with libvirt-client and libvirt-daemon packages- storage_driver: Unlock object on ACL fail in storagePoolLookupByTargetPath CVE-2021-3667 bsc#1188843- spec: Don't forcibly remove '--listen' arg from /etc/sysconfig/libvirtd. Add '--timeout 120' if '--listen' is not specified. bsc#1188232- virtlockd: Don't report error if lockspace exists de1e0ae0-lockd-no-error-if-lockspace.patch bsc#1184253- CVE-2021-3631: fix SELinux label generation logic 15073504-CVE-2021-3631.patch bsc#1187871- spec: Remove use of %fdupes since it was only acting on files that should be excluded bsc#1184293 - Remove bogus comment from /etc/sysconfig/libvirtd bsc#1184253- spec: Fix exec-restart of virtlockd and virtlogd on package upgrade bsc#1183411- spec: Move netcat-openbsd requirement from the libs to the daemon subpackage. It is only needed by the daemon and introduces an unneeded dependency for users of libvirt-libs.- virtlockd, virtlogd: Fix exec-restart 6b8e9613-avoid-use-after-free.patch, eab7ae6b-fix-array-access.patch, c363f03e-virnetdaemon-intro-virNetDaemonQuitExecRestart.patch, ccc6dd8f-fix-exec-restart.patch bsc#1183411- Replace libxl-default-pcistub-name.patch with upstream variant ee3dc2c2-libxl-default-pcistub-name.patch- libxl: Fix node device detach when driver unspecified libxl-default-pcistub-name.patch boo#1182885 - spec: Bump minimum glib version to 2.56- Update to libvirt 7.1.0 - Many incremental improvements and bug fixes, see https://libvirt.org/news.html - bsc#1182367, bsc#1182515 - Dropped patches: 32c5e432-revert-f035f53b.patch, e3d60f76-fix-socket-file-gen.patch, 7cf60006-qemu-swtpm-aarch64.patch, afb823fc-qemu-validate-swtpm.patch, 8a4b8996-conf-move-virDomainCheckVirtioOptions.patch, c05f0066-conf-drop-empty-virDomainNetDefPostParse.patch, 19d4e467-conf-improve-virDomainVirtioOptionsCheckABIStability.patch, bd112c9e-qemu-virtio-options-vsock.patch- Remove old initscript patching of libvirt-guests.sh Modified suse-libvirt-guests-service.patch boo#1182494- qemu: Add virtio related options to vsock 8a4b8996-conf-move-virDomainCheckVirtioOptions.patch, c05f0066-conf-drop-empty-virDomainNetDefPostParse.patch, 19d4e467-conf-improve-virDomainVirtioOptionsCheckABIStability.patch, bd112c9e-qemu-virtio-options-vsock.patch bsc#1182365- qemu: Fix swtpm device with aarch64 7cf60006-qemu-swtpm-aarch64.patch, afb823fc-qemu-validate-swtpm.patch bsc#1181893- build: Fix generation of virtproxyd socket files e3d60f76-fix-socket-file-gen.patch boo#1181838- Revert "Add libvirtd dependency to virt-guest-shutdown.target" 32c5e432-revert-f035f53b.patch bsc#1177902- spec: Enable the libvirt firewalld zone in SLE >= 15 SP3 jsc#SLE-17336- Update to libvirt 7.0.0 - jsc#SLE-15860 - Many incremental improvements and bug fixes, see https://libvirt.org/news.html - Dropped patches: 0d05d51b-apparmor-lxc-fix.patch, cf4e7e62-lxc-def-secmodel.patch, 0ddebdb4-qemu-snapshot-deletion.patch- Update libxl-set-migration-constraints.patch Remove code which handled --max_factor. The total amount of transferred data is no indicator to trigger the final stop+copy. This should have been removed during upgrade to Xen 4.7. Reduce default value of --max_iters from 5 to 2. The workload within domU will continue to produce dirty pages. It is unreasonable to expect any slowdown during migration. Now there is one initial copy of all memory, one instead of four iteration for dirty memory, and a final copy iteration prior move.- qemu: Fix logic bug in inactive snapshot deletion 0ddebdb4-qemu-snapshot-deletion.patch boo#1180049- spec: Enable mdevctl support in the nodedev driver for SLE15 SP3 jsc#SLE-15861, bsc#1179770- apparmor: Allow lxc processes to receive signals from libvirt lxc: Set default security model in XML parser config 0d05d51b-apparmor-lxc-fix.patch, cf4e7e62-lxc-def-secmodel.patch bsc#1179735- Update to libvirt 6.10.0 - jsc#SLE-13688 - Many incremental improvements and bug fixes, see https://libvirt.org/news.html - Dropped patches: f035f53b-virt-guest-shutdown.patch- spec: Remove creation of libvirt group and add Requires to the libvirt group created with GID 108 by the system-group-libvirt package. jsc#SLE-11629- spec: Add 'Requires: bash-completion' to the libvirt-bash-completion subpackage bsc#1178498- Add libvirtd dependency to virt-guest-shutdown.target f035f53b-virt-guest-shutdown.patch boo#1175914, bsc#1177902- Replace '%service_del_postun -n' with '%service_del_postun_without_restart' '-n' is deprecated and will be removed in the future.- Update to libvirt 6.9.0 - jsc#SLE-13688, jsc#SLE-16754 - Many incremental improvements and bug fixes, see https://libvirt.org/news.html- bsc#1177950 - adjust help for --max_iters, default is 5 libxl-set-migration-constraints.patch- Drop use of $DISABLE_RESTART_ON_UPDATE in %postrans Testing "$DISABLE_RESTART_ON_UPDATE != yes" had no effect since its value is supposed to be read from /etc/sysconfig/services.- Fix 'make check' with all downstream patches applied. Some patches touch config files and needed the corresponding augeaus test files updated. Updated patches: suse-libvirtd-disable-tls.patch, suse-qemu-conf.patch, suse-ovmf-paths.patch, suse-libxl-disable-autoballoon.patch boo#1175574- Update to libvirt 6.8.0 - jsc#SLE-12684, jsc#SLE-15861 - bsc#1174955 (CVE-2020-15708) - bsc#1177155 (CVE-2020-25637) - Many incremental improvements and bug fixes, see https://libvirt.org/news.html - Dropped patches: 2ad009ea-qemu-check-modules-dir.patch, 8abd1ffe-qemu-tolerate-non-existent-files.patch, 4a72b76b-qemu-namespace-memleak-fix.patch- spec: Increase test timeout to account for slower test execution on some architectures- qemu: Tolerate non-existing files such as /dev/kvm when populating domain private namespace 8abd1ffe-qemu-tolerate-non-existent-files.patch, 4a72b76b-qemu-namespace-memleak-fix.patch boo#1176380- spec: Enable the same hypervisor drivers for openSUSE and SLE jsc#SLE-11772 - spec: Enable the same storage drivers for openSUSE and SLE jsc#SLE-11877- qemu: Reprobe capabilities if the qemu modules directory changes 2ad009ea-qemu-check-modules-dir.patch boo#1175320- Update to libvirt 6.7.0 - jsc#SLE-14253, jsc#SLE-15159 - CVE-2020-14339 - Many incremental improvements and bug fixes, see https://libvirt.org/news.html - Dropped patches: 2edd63a0-fix-virFileSetCOW-logic.patch, 82bb167f-dont-cache-devmapper-major.patch, feb8564a-handle-no-devmapper.patch, 53d9af1e-ignore-devmapper-open-errors.patch, support-managed-pci-xen-driver.patch, disable-multipath-pr-tests.patch- Update to libvirt 6.6.0 - jsc#SLE-14253 - CVE-2020-14339 - Many incremental improvements and bug fixes, see https://libvirt.org/news.html - Added patches: 2edd63a0-fix-virFileSetCOW-logic.patch, 82bb167f-dont-cache-devmapper-major.patch, feb8564a-handle-no-devmapper.patch, 53d9af1e-ignore-devmapper-open-errors.patch Dropped patches: 6c1dddaf-libxl-shutdown-inhibit.patch, 849052ec-libxl-support-credit2.patch, 72ed254b-drop-exec-perms-bashcompletion.patch, e092daac-prohib-parallel-tunneled-mig.patch, ae9e6c2a-qemu-allow-cond-format-probe.patch, a30078cb-qemu-create-mp-target.patch, aeb909bf-qemu-multipath-fix.patch, 8e669b38-conf-add-event-channels.patch, a93f55c5-libxl-add-event-channels.patch, 967f4eeb-xenconfig-event-channels.patch, 4cc90c2e-CVE-2020-10701.patch, 93b15ba0-qemu-fix-hang-in-p2p-xbzrle-compression-parallel-mig.patch, b7d6648d-conf-add-e820-host.patch, 5749395b-libxl-e820-host.patch, f3ef7daf-xenconfig-e820-host.patch, 34077c1b-tests-check-e820-host.patch, fadbaa23-conf-add-passthrough.patch, 9529e007-libxl-passthrough.patch, 9cb8bc6f-xenconfig-refactor-features.patch, b523e225-xenconfig-passthrough.patch, bed32525-tests-check-passthrough.patch, 9bf9e0ae-CVE-2020-12430.patch, ec07aad8-libxl-normalize-mac-addr.patch, 22494556-CVE-2020-14339.patch, c5fffb95-kernel-cmdline-parser.patch, b611b620-check-s390-secure-guest.patch, 657365e7-check-amd-secure-guest.patch, 0254ceab-s390-host-validate-check.patch, 4b561d49-amd-host-validate-check.patch, 2c3ffa37-update-amd-doc.patch, f0d0cd61-update-s390-doc.patch, 8cb9d249-autoptr-file-callback.patch, a551dd5f-intro-virHostCPUGetSignature.patch, 44f826e4-virHostCPUGetSignature-x86.patch, 2a68ceaa-virHostCPUGetSignature-ppc64.patch, d3d87e0c-virHostCPUGetSignature-s390.patch, 004804a7-qemu-invalidate-caps.patch - qemu: Avoid stale capabilities cache host CPU or kernel command line changes bsc#1173157 - virdevmapper: Handle kernel without device-mapper support 82bb167f-dont-cache-devmapper-major.patch, feb8564a-handle-no-devmapper.patch, 53d9af1e-ignore-devmapper-open-errors.patch boo#1175465 - util: Fix logic in virFileSetCOW 2edd63a0-fix-virFileSetCOW-logic.patch boo#1175463- CVE-2020-14339: Don't leak /dev/mapper/control into QEMU. Use ioctl's to obtain the dependency tree of disks and drop use of libdevmapper. 22494556-CVE-2020-14339.patch bsc#1161883, bsc#1174458- libxl: Normalize MAC address in device conf on netdev hotplug ec07aad8-libxl-normalize-mac-addr.patch bsc#1172052- qemu: Fix memory leak in qemuDomainGetStatsIOThread CVE-2020-12430 9bf9e0ae-CVE-2020-12430.patch bsc#1170765- libxl: Add support for 'passthrough' and 'e820_host' settings b7d6648d-conf-add-e820-host.patch, 5749395b-libxl-e820-host.patch, f3ef7daf-xenconfig-e820-host.patch, 34077c1b-tests-check-e820-host.patch, fadbaa23-conf-add-passthrough.patch, 9529e007-libxl-passthrough.patch, 9cb8bc6f-xenconfig-refactor-features.patch, b523e225-xenconfig-passthrough.patch, bed32525-tests-check-passthrough.patch bsc#1167217- qemu: fix hang in p2p + xbzrle compression + parallel migration 93b15ba0-qemu-fix-hang-in-p2p-xbzrle-compression-parallel-mig.patch bsc#1161159- api: Disallow virDomainAgentSetResponseTimeout on read-only connections. CVE-2020-10701 4cc90c2e-CVE-2020-10701.patch bsc#1168680- libxl: Add support for max event channels with maxEventChannel attribute on the xenbus controller 8e669b38-conf-add-event-channels.patch, a93f55c5-libxl-add-event-channels.patch, 967f4eeb-xenconfig-event-channels.patch bsc#1168767- libxl: Bump minimum supported Xen version to 4.9, allowing use of newer libxl APIs for retrieving memory statistics suse-bump-xen-version.patch bsc#1157490, bsc#1167007- qemu: Create multipath targets for PRs a30078cb-qemu-create-mp-target.patch, aeb909bf-qemu-multipath-fix.patch bsc#1161883- qemu: Allow format probing under special circumstances ae9e6c2a-qemu-allow-cond-format-probe.patch bsc#1165588- xen: Fix the list of supported ovmf firmwares suse-xen-ovmf-loaders.patch bsc#1159793- lib: Prohibit parallel connections with tunneled migration e092daac-prohib-parallel-tunneled-mig.patch jsc#SLE-6998- BuildRequire pkgconfig((lib)?udev) instead of (lib)?udev: allow OBS to shortcut through -mini flavors.- spec: Fix several rpmlint warnings 72ed254b-drop-exec-perms-bashcompletion.patch- xen: Support setting credit2 scheduler parameters 849052ec-libxl-support-credit2.patch bsc#1162160- xen: Inhibit libvirtd shutdown when domains are running 6c1dddaf-libxl-shutdown-inhibit.patch bsc#1157100- Update to libvirt 6.0.0 - jsc#SLE-6997, jsc#SLE-6998 - Many incremental improvements and bug fixes, see https://libvirt.org/news.html - Dropped patches: 0a65cba4-news-fix.patch 07aaced4-Add-TAA-No.patch, f411b7ef6-Add-TSX-CTRL.patch, 50d7465f-qemu-firmware1.patch, 57f9067c-qemu-firmware2.patch, 7c5264d2-qemu-firmware3.patch, 8e1804f9-qemu-firmware4.patch, 8fcee478-qemu-firmware5.patch- qemu: Fix firmware auto detection 50d7465f-qemu-firmware1.patch, 57f9067c-qemu-firmware2.patch, 7c5264d2-qemu-firmware3.patch, 8e1804f9-qemu-firmware4.patch, 8fcee478-qemu-firmware5.patch boo#1157378, bsc#1159796- CVE-2019-11135: Add TSX_CTRL and TAA_NO bits for IA32_ARCH_CAPABILITIES MSR 07aaced4-Add-TAA-No.patch, f411b7ef6-Add-TSX-CTRL.patch bsc#1152505- virt-create-rootfs: add SLE 15 and SLE 12 service packs support bsc#1154093- Update to libvirt 5.10.0 - bsc#1157149 - Many incremental improvements and bug fixes, see https://libvirt.org/news.html - Dropped patches: 2552752f-libxl-fix-lock-manager-lock-ordering.patch - Added patches: 0a65cba4-news-fix.patch- spec: Enable 'libvirt' firewalld zone for firewalld >= 0.7.0 boo#1157766- libxl: Fix lock manager lock ordering 2552752f-libxl-fix-lock-manager-lock-ordering.patch bsc#1145774- spec: Forcibly remove '--listen' option from LIBVIRTD_ARGS in /etc/sysconfig/libvirtd since it is incompatible with socket activation. Also add '--timeout' option for consistency with upstream. boo#1156161- Enable automatic firmware seletction and add the new smm flavor to the build-time firmware list jsc#SLE-6997- Update to libvirt 5.9.0 - jsc#SLE-7440 - Many incremental improvements and bug fixes, see https://libvirt.org/news.html- Update to libvirt 5.8.0 - bsc#1149100 - Many incremental improvements and bug fixes, see https://libvirt.org/news.html- Update to libvirt 5.7.0 - Experimental split of libvirtd into separate daemons - bsc#1145440, bsc#1145586 - Many incremental improvements and bug fixes, see https://libvirt.org/news.html - Dropped patches: 4ec3cf9a-apparmor-rules.patch, f38ef0fa-no-RDMA-check.patch, 411cdaf8-apparmor-check-profile-name.patch. 696239ba-qemu-fix-query-cpus-fast.patch, 09eb1ae0-conf-add-xenbus-controller.patch, fb059757-libxl-add-xenbus-controller.patch, ec5a1191-libxl-support-max-grant-frames.patch, 5a64c202-xenconfig-support-max-grant-frames.patch, CVE-2019-3886-api.patch, CVE-2019-3886-remote.patch, e0246257-cputest-add-data-for-Cascadelake-Server.patch, 5cd9db3a-cputest-add-data-E3-1225-v5.patch, 538d8735-cpu_map-Define-md-clear-CPUID-bit.patch, 96f41cd7-admin-reject-clients.patch, f111e094-locking-restrict-sockets-to-mode-0600.patch, e37bd65f-logging-restrict-sockets-to-mode-0600.patch, 9f4e35dc-network-improve-chain-create-error-report.patch, 686803a1-network-split-ipv4-ipv6-chains.patch, c1c235eb-nework-clear-cached-error.patch, 4330d138-network-refactor-global-chains.patch, 3b66bd9a-add-debug-chain-creation.patch, c6cbe187-network-delay-global-fw-setup.patch, CVE-2019-10161-api-disallow-virDomainSaveImageGetXMLDesc.patch, CVE-2019-10166-api-disallow-virDomainManagedSaveDefineXML.patch, CVE-2019-10167-api-disallow-virConnectGetDomainCapabilities.patch, CVE-2019-10168-api-disallow-virConnect-HypervisorCPU.patch, 51f9f80d-fix-copying-bitmaps.patch, 2878278c-cpu_map-add-Cascaselake-Server.patch, 4a0f604d-cpu_map-distribute-Cascaselake-Server.patch, d5572f62-qemu-support-override-max-thread.patch, 673f805d-qemu-chown-uniqDir.patch, 975b004d-virtlogd-over-logrotate.patch, 18d47d61-revert-d00c77ae.patch, d6943eab-libxl-pmsuspend-event.patch, 3d179919-virsh-precopy-bandwidth.patch, f4bdd829-rename-precopy-bandwidth.patch, xen-pv-cdrom.patch, blockcopy-check-dst-identical-device.patch, suse-libvirtd-service-xen.patch, xen-sxpr-disk-type.patch- virsh: use upstream name for migration precopy bandwidth parameter f4bdd829-rename-precopy-bandwidth.patch bsc#1145586- virsh: support for setting precopy bandwidth in migrate 3d179919-virsh-precopy-bandwidth.patch bsc#1145586 - Rename patches to include commit ID revert-d00c77ae.patch -> 18d47d61-revert-d00c77ae.patch libxl-pmsuspend-event.patch -> d6943eab-libxl-pmsuspend-event.patch- libxl: fix domain state following successful suspend operation revert-d00c77ae.patch, libxl-pmsuspend-event.patch bsc#1145440- logging: ensure virtlogd rollover takes priority over logrotate 975b004d-virtlogd-over-logrotate.patch bsc#1137137- qemu: fix default value of security_default_confined Updated suse-qemu-conf.patch bsc#1143871- qemu: Change owner of temp directories under /var/lib/libvirt/qemu 673f805d-qemu-chown-uniqDir.patch bsc#1143497- Add apparmor-abstractions as a required package for daemon (bsc#1142992)- qemu: Add support for overriding max threads per process limit d5572f62-qemu-support-override-max-thread.patch bsc#1133719- cpu_map: Add Cascadelake-Server CPU model e0246257-cputest-add-data-for-Cascadelake-Server.patch, 2878278c-cpu_map-add-Cascaselake-Server.patch, 4a0f604d-cpu_map-distribute-Cascaselake-Server.patch bsc#1141251- util: fix copying bitmap to larger data buffer 51f9f80d-fix-copying-bitmaps.patch bsc#1138734- api: disallow virConnect*HypervisorCPU, virConnectGetDomainCapabilities, virDomainManagedSaveDefineXML, and virDomainSaveImageGetXMLDesc on read-only connections CVE-2019-10161-api-disallow-virDomainSaveImageGetXMLDesc.patch, CVE-2019-10166-api-disallow-virDomainManagedSaveDefineXML.patch, CVE-2019-10167-api-disallow-virConnectGetDomainCapabilities.patch, CVE-2019-10168-api-disallow-virConnect-HypervisorCPU.patch CVE-2019-10161, CVE-2019-10166, CVE-2019-10167, CVE-2019-10168 bsc#1138301, bsc#1138302, bsc#1138303, bsc#1138305- network: delay global firewall setup if no networks are running 9f4e35dc-network-improve-chain-create-error-report.patch, 686803a1-network-split-ipv4-ipv6-chains.patch, c1c235eb-nework-clear-cached-error.patch, 4330d138-network-refactor-global-chains.patch, 3b66bd9a-add-debug-chain-creation.patch, c6cbe187-network-delay-global-fw-setup.patch, Dropped patches: revert-7431b3eb.patch, revert-8b967198.patch bsc#1133229 - Renamed patches to include commit id: CVE-2019-10132-admin-reject-clients.patch -> 96f41cd7-admin-reject-clients.patch CVE-2019-10132-locking-restrict-sockets-to-mode-0600.patch -> f111e094-locking-restrict-sockets-to-mode-0600.patch CVE-2019-10132-logging-restrict-sockets-to-mode-0600.patch -> e37bd65f-logging-restrict-sockets-to-mode-0600.patch- spec: add systemd-container dependency to qemu and lxc drivers bsc#1136109- cpu: add tests for md-clear feature Updated 538d8735-cpu_map-Define-md-clear-CPUID-bit.patch and added 5cd9db3a-cputest-add-data-E3-1225-v5.patch bsc#1135273- CVE-2019-10132: admin: reject clients unless their UID matches the server UID CVE-2019-10132-admin-reject-clients.patch, CVE-2019-10132-locking-restrict-sockets-to-mode-0600.patch, CVE-2019-10132-logging-restrict-sockets-to-mode-0600.patch bsc#1134348- cpu_map: add cpu feature md-clear. CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091 538d8735-cpu_map-Define-md-clear-CPUID-bit.patch bsc#1111331 bsc#1135273- Revert commits 5f1e6a7d and f6c5babb to avoid loading conntrack module at libvird start revert-7431b3eb.patch, revert-8b967198.patch bsc#1133229- CVE-2019-3886: disallow virDomainGetHostname and virDomainGetTime for read-only connections and users CVE-2019-3886-api.patch, CVE-2019-3886-remote.patch bsc#1131595- apparmor: reintroduce upstream lxc mount rules Drop apparmor-no-mount.patch bsc#1130129- supportconfig: collect rotated logs in /var/log/libvirt/* Modified libvirt-supportconfig bsc#1124667- hook: encode incoming XML to UTF-8 before passing to lxml etree fromstring method Modifed suse-qemu-domain-hook.py boo#1123642- libxl: change autoballooning default to disabled suse-libxl-disable-autoballoon.patch jsc#SLE-3059- conf: add new 'xenbus' controller type 09eb1ae0-conf-add-xenbus-controller.patch - libxl: support Xen's max_grant_frames setting with maxGrantFrames attribute on the xenbus controller fb059757-libxl-add-xenbus-controller.patch, ec5a1191-libxl-support-max-grant-frames.patch, 5a64c202-xenconfig-support-max-grant-frames.patch bsc#1126325- Replace patches with upstream variants Old: 0001-apparmor-Check-libvirtd-profile-status-by-name.patch, 0001-qemu-Fix-query-cpus-fast-target-architecture-detecti.patch New: 411cdaf8-apparmor-check-profile-name.patch, 696239ba-qemu-fix-query-cpus-fast.patch- util: skip RDMA detection for non-PCI network devices f38ef0fa-no-RDMA-check.patch bsc#1112182- qemu: s390: show correct CPU status after guest crash 0001-qemu-Fix-query-cpus-fast-target-architecture-detecti.patch bsc#1127841- apparmor: fix more fallout from changing libvirtd profile to a named profile 4ec3cf9a-apparmor-rules.patch, 0001-apparmor-Check-libvirtd-profile-status-by-name.patch boo#1125841- Update to libvirt 5.1.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: 11c8aca9-libxl-set-mem-after-balloon.patch, 70c2933d-apparmor-named-profiles.patch, a3ab6d42-apparmor-conv-libvirtd-named-profile.patch, b6440119-qemu-conf-sev.patch, a404ac34-qemu-cgroup-sev.patch, 6fd4c8f8-qemu-domain-sev.patch, 17f6a257-security-dac-sev.patch, a2d3dea9-qemu-caps-dac-override-sev.patch, 620d9dd5-qemu-no-dac-override-nonroot.patch - jsc#SLE-3887, jsc#SLE-4480, jsc#SLE-4577- spec: disable VirtualBox driver- qemu: don't use CAP_DAC_OVERRIDE capability if non-root 620d9dd5-qemu-no-dac-override-nonroot.patch boo#1125665- qemu: fix issues related to restricted permissions on /dev/sev b6440119-qemu-conf-sev.patch, a404ac34-qemu-cgroup-sev.patch, 6fd4c8f8-qemu-domain-sev.patch, 17f6a257-security-dac-sev.patch, a2d3dea9-qemu-caps-dac-override-sev.patch bsc#1124842- apparmor: add support for named profiles and convert libvirtd profile to a named profile 70c2933d-apparmor-named-profiles.patch, a3ab6d42-apparmor-conv-libvirtd-named-profile.patch boo#1118952 - libxl: save current memory value after successful balloon 11c8aca9-libxl-set-mem-after-balloon.patch bsc#1120813- Noun phrase for %description doc. - Remove idempotent %if..%endif pair around %package bash-completion. - Reduce hard requirements on bash-c and documentation.- Enable bash completion in Leap15/SLE15 and newer- Update to libvirt 5.0.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Remove UML hypervisor driver - Dropped patches: de09ae2f-libxl-support-openvswitch.patch, 0a1b5653-xenconfig-support-openvswitch.patch - FATE#320928, FATE#325817, FATE#326380, FATE#326698- Requires: ncurses expands to Requires: libncurses5, which is not required by any component of this package. Remove it along with the BuildRequires: ncurses-devel- Update to libvirt 4.10.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: 14d03b27-libxl-rm-redundant-virObjectEventStateQueue.patch, 82452a5d-libxl-rm-goto-libxlDomainShutdownThread.patch, da4b0fd9-libxl-support-soft-reset.patch, libxl-qemu-emulator-caps.patch - Added patches: de09ae2f-libxl-support-openvswitch.patch, 0a1b5653-xenconfig-support-openvswitch.patch - FATE#320928, FATE#325817, FATE#326380, FATE#326698- libxl: add support for soft reset 14d03b27-libxl-rm-redundant-virObjectEventStateQueue.patch, 82452a5d-libxl-rm-goto-libxlDomainShutdownThread.patch, da4b0fd9-libxl-support-soft-reset.patch bsc#1081516- Update to libvirt 4.9.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - FATE#326371- Update SLE15 SP1 with openSUSE Factory package FATE#325848, FATE#326368 - FATE and bug references made in the SLE15 package since the last Factory update: FATE#325817, bsc#959329, bsc#1074014, bsc#1106420, bsc#1108395 - Patches in SLE15 package that are dropped by this update: 1b0c42ff-libvirtd-depend-machined.patch, ac4a12db-libxl-fix-hasManagedSave.patch- Update to libvirt 4.8.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: 60b4fd90-libxl-rm-vm-finish-phase.patch, e39c66d3-libxl-fix-p2p-migration.patch, 47da84e0-libxl-fix-job-handling-migsrc.patch, 0149464a-libxl-fix-job-handling-migdst.patch, 5ea2abb3-libxl-join-mig-rcv-thread.patch- Fix RPM groups. Remove idempotent %if..%endif guards. - Remove redundant %clean section.- libxl: fix VM migration on busy hosts 60b4fd90-libxl-rm-vm-finish-phase.patch, e39c66d3-libxl-fix-p2p-migration.patch, 47da84e0-libxl-fix-job-handling-migsrc.patch, 0149464a-libxl-fix-job-handling-migdst.patch, 5ea2abb3-libxl-join-mig-rcv-thread.patch bsc#1108086- Update to libvirt 4.7.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: 9ed59012--revert-jansson1.patch, 54f2b5e3-revert-jansson2.patch, b56950fd-revert-jansson3.patch, 6c3d66ac-revert-jansson4.patch, 8e373e6d-revert-jansson5.patch, 6f99de31-revert-jansson6.patch, f204cf51-revert-jansson7.patch, 5a58b5ed-revert-jansson8.patch, 63f6e0e9-revert-jansson9.patch, 8687eba-revert-jansson10.patch, e96e71d8-revert-jansson11.patch, d99a8959-revert-jansson12.patch, 074a7e14-revert-jansson13.patch, 86db0db9-revert-jansson14.patch- Revert switch to jansson boo#1104820 - Dropped: temp-build-fix.patch - Added: 9ed59012--revert-jansson1.patch, 54f2b5e3-revert-jansson2.patch, b56950fd-revert-jansson3.patch, 6c3d66ac-revert-jansson4.patch, 8e373e6d-revert-jansson5.patch, 6f99de31-revert-jansson6.patch, f204cf51-revert-jansson7.patch, 5a58b5ed-revert-jansson8.patch, 63f6e0e9-revert-jansson9.patch, 8687eba-revert-jansson10.patch, e96e71d8-revert-jansson11.patch, d99a8959-revert-jansson12.patch, 074a7e14-revert-jansson13.patch, 86db0db9-revert-jansson14.patch- spec: don't restart libvirt-guests when updating libvirt-client bsc#1104662- Update to libvirt 4.6.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Switch from yajl to jansson - Dropped patches: libvirt-4.5.0-apparmor-add-missing-comma.patch - Patches added to fix upstream bugs: temp-build-fix.patch- Fix apparmor failure at startup because of syntax error in libvirt profile: * Add libvirt-4.5.0-apparmor-add-missing-comma.patch (picked from upstream).- Update to libvirt 4.5.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: 67c56f6e-libxl-logfd-leak-fix.patch - spec: use more macros in file paths - libxl: Implement virDomainBlockResize 0001-libxl-add-support-for-BlockResize-API.patch FATE#325467, bsc#1094325, bsc#1094725- spec: enable gluster storage backend for openSUSE- spec: BuildRequires glusterfs-devel when gluster support is enabled- spec: use wireshark plugin directory from pkg-config- virt-aa-helper: add SUSE path to OVMF and AAVMF images Adjusted suse-ovmf-paths.patch boo#1095556- Update to libvirt 4.4.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - CVE-2018-3639 - Dropped patches: 1dbca2ec-CVE-2018-3639.patch, 92673422-CVE-2018-3639.patch - libxl: fix leaking logfile fds 67c56f6e-libxl-logfd-leak-fix.patch bsc#1094480- cpu: add support for 'ssbd' and 'virt-ssbd' CPUID feature bits CVE-2018-3639 1dbca2ec-CVE-2018-3639.patch, 92673422-CVE-2018-3639.patch bsc#1092885- spec: enable libssh support for suse_version >= 1500- Update to libvirt 4.3.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Remove legacy Xen driver - Dropped patches: 09877303-virSocketAddrParseInternal.patch, 412afdb8-intro-virSocketAddrParseAny.patch- util: improvements in error handling 09877303-virSocketAddrParseInternal.patch, 412afdb8-intro-virSocketAddrParseAny.patch bsc#1080957- Update to libvirt 4.2.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: 6b3d716e-keycodemap-py3.patch, 33c6eb96-fix-libvirtd-reload-deadlock.patch, 464889ff-rpc-aquire-ref-dispatch.patch, c6f1d519-rpc-simplify-dispatch.patch, 06e7ebb6-rpc-invoke-dispatch-unlocked.patch, 86cae503-rpc-fix-pre-exec.patch, eefabb38-rpc-virtlockd-virtlogd-single-thread.patch, fbf31e1a-CVE-2018-1064.patch, fb327ac2-virtlockd-admin-socket.patch, 64370c4b-libxl-MigrateBegin.patch, 99486799-libxl-MigrateConfirm.patch, f5eacf2a-libxl-MigratePerform.patch, 4e6fcdb6-libxl-libxlDomObjFromDomain-cleanup.patch, fe51dbda-libxl-use-FindByRef.patch, 60b3fcd9-libxl-MigratePrepare.patch, 3c89868c-libxl-lock-after-ListRemove.patch, 13e81fc6-libxl-EndJob-on-error.patch, 594b8b99-libxl-DefineXMLFlags-API-pattern.patch, c66e344e-libxl-dont-deref-NULL.patch, 83edaf44-libxl-dont-hardcode-sched-weight.patch, apibuild-py3.patch- libxl: don't hardcode scheduler weight 83edaf44-libxl-dont-hardcode-sched-weight.patch bsc#1086377- libxl: fixes and improvements in migration APIs 64370c4b-libxl-MigrateBegin.patch, 99486799-libxl-MigrateConfirm.patch, f5eacf2a-libxl-MigratePerform.patch, 4e6fcdb6-libxl-libxlDomObjFromDomain-cleanup.patch, fe51dbda-libxl-use-FindByRef.patch, 60b3fcd9-libxl-MigratePrepare.patch, 3c89868c-libxl-lock-after-ListRemove.patch, 13e81fc6-libxl-EndJob-on-error.patch, 594b8b99-libxl-DefineXMLFlags-API-pattern.patch, c66e344e-libxl-dont-deref-NULL.patch bsc#1080957- lockd: fix typo in virtlockd-admin.socket fb327ac2-virtlockd-admin-socket.patch bsc#1085386- Install correct firewall service file depending on availability of firewalld vs SuSEfirewall2 libvirtd-relocation-server.xml bsc#1083455- qemu: avoid denial of service reading from QEMU guest agent CVE-2018-1064 fbf31e1a-CVE-2018-1064.patch bsc#1083625- virtlockd: fix loosing lock on re-exec 464889ff-rpc-aquire-ref-dispatch.patch, c6f1d519-rpc-simplify-dispatch.patch, 06e7ebb6-rpc-invoke-dispatch-unlocked.patch, 86cae503-rpc-fix-pre-exec.patch, eefabb38-rpc-virtlockd-virtlogd-single-thread.patch bsc#1076861- libvirtd: fix potential deadlock when reloading 33c6eb96-fix-libvirtd-reload-deadlock.patch bsc#1079150- Update to libvirt 4.1.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: 72adaf2f-revert-qemu-monitor-error-report.patch, 71d56a39-nodedev-fix-parse-PCI-address.patch, 68eed56b-conf-smbios-oem-strings.patch, 76977061-qemu-smbios-oem-strings.patch, 0c710a37-libxl-resume-lock-on-mig-failure.patch, 759b4d1b-virlog-determine-the-hostname-on-startup-CVE-2018-67.patch, c2dc6698-fix-deadlock-obtaining-hostname.patch, c391e07e-libxl-clock-settings.patch, ef71caea-libxl-memalign.patch, suse-apparmor-signal.patch- libxl: round memory values to next 1MiB increment ef71caea-libxl-memalign.patch bsc#1082041- libxl: add support for specifying clock offset and adjustment c391e07e-libxl-clock-settings.patch bsc#1082161- Remove all uses of python2 during the build (bsc#1080034) 6b3d716e-keycodemap-py3.patch apibuild-py3.patch - Determine hostname early to avoid code injection in lxc driver. (bsc#1080042) 759b4d1b-virlog-determine-the-hostname-on-startup-CVE-2018-67.patch c2dc6698-fix-deadlock-obtaining-hostname.patch - Add basic support of connectGetAllDomainStats for lxc driver (fate#323742) 0001-Extract-stats-functions-from-the-qemu-driver.patch 0002-lxc-implement-connectGetAllDomainStats.patch- qemu: Support setting OEM strings in SMBIOS 68eed56b-conf-smbios-oem-strings.patch, 76977061-qemu-smbios-oem-strings.patch FATE#323624 - libxl: resume lock process after failed migration 0c710a37-libxl-resume-lock-on-mig-failure.patch bsc#1076861- qemu hook: Change shebang to /usr/bin/python3 - spec: Require python lxml in daemon-hooks subpackage- Update to libvirt 4.0.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: 2d07f1f0-fix-storage-crash.patch, 69ed99c7-dom0-persistent.patch, 8599aedd-libvirt-guests-dom0-filter.patch, 0f33025a-virt-aa-helper-handle-more-disk-images.patch, b475a91b-add-virStringFilterChars-string-utility.patch, faec1958-lxc-set-hostname-based-on-container-name.patch, 2089ab21-netserver-close-clients-before-stopping-all-drivers.patch, fix-virt-aa-helper-profile.patch, - Patches added to fix upstream bugs: 72adaf2f-revert-qemu-monitor-error-report.patch, 71d56a39-nodedev-fix-parse-PCI-address.patch - CVE-2018-5748, CVE-2017-5715, bsc#1071651, bsc#1076500- Add a qemu hook script providing functionality similar to Xen's block-dmmd script suse-qemu-domain-hook.py FATE#324177- Fix apparmor rules for virt-aa-helper (bsc#1074265) fix-virt-aa-helper-profile.patch - Lift VirtualBox dependency version to include 5.2.x - Update upstreamed patches Removed patches: * daemon-close-crasher.patch * lxc-hostname.patch Added patches: * 2089ab21-netserver-close-clients-before-stopping-all-drivers.patch * b475a91b-add-virStringFilterChars-string-utility.patch * faec1958-lxc-set-hostname-based-on-container-name.patch- Close clients before drivers are cleaned up to avoid crash at libvirtd stop (bsc#1073730) daemon-close-crasher.patch - Set a hostname on lxc containers based on guest's name. lxc-hostname.patch - Enhance apparmor rules for virt-aa-helper (bsc#1070916) 0f33025a-virt-aa-helper-handle-more-disk-images.patch- libvirt-guests: fix 'stop' operation when action is 'suspend' 69ed99c7-dom0-persistent.patch, 8599aedd-libvirt-guests-dom0-filter.patch bsc#1070130- storage: Don't dereference driver object if virStorageSource is not initialized 2d07f1f0-fix-storage-crash.patch bsc#1072974- Update to libvirt 3.10.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - bsc#1070285, bsc#1070478, boo#1070914, - FATE#323473, FATE#324365, FATE#324479- Update to libvirt 3.10.0 RC2 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: 8056721c-qemu-null-storage-source.patch, 74a13be4-xdr-flags.patch, apparmor-rules-for-new-mediation-features.patch, apparmor-fine-grained-mount-rules.patch - bsc#1070285, bsc#1070478, FATE#323473, FATE#324479- spec: remove use of 'systemctl enable' bsc#1038401- spec: enable firewalld support for SLE15, Leap15, and Tumbleweed FATE#320794- Replace references to /var/adm/fillup-templates with new %_fillupdir macro (boo#1069468)- spec: Add BuildRequires for libtirpc-devel in preparation of removal of sunrpc from glibc - build: Use XDR_CFLAGS in more places 74a13be4-xdr-flags.patch- Replace hardcoded libvirt with Name tag when refering to subpkgs - Remove dependencies to /bin/sh in libs and nss %post scripts- apparmor: allow libvirtd to send signals to unconfined processes suse-apparmor-signal.patch boo#1065123- qemu: Tolerate storage source private data being NULL 8056721c-qemu-null-storage-source.patch bsc#1068752- apparmor: add rules for new mediation features apparmor-rules-for-new-mediation-features.patch, apparmor-fine-grained-mount-rules.patch bsc#1066124, boo#1065123 - spec: unconditionally enable the wireshark dissector- Replace %{with_sle_build} by ! 0%{?is_opensuse} bsc#940315- Update to libvirt 3.9.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: c44b29aa-apparmor-dnsmasq-ptrace.patch, 441d3eb6-qemu-tls-client-verify-server-cert.patch- qemu: ensure TLS clients always verify the server certificate CVE-2017-1000256 441d3eb6-qemu-tls-client-verify-server-cert.patch bsc#1062563- Do not ignore errors from useradd/groupadd. - Invoke/expand %service_* just once per scriptlet. - Replace some old macros.- spec: libvirt-daemon-qemu requires libvirt-daemon-driver-storage bsc#1062620- spec: reload libvirtd Apparmor profile in %post bsc#1060860- apparmor: add dnsmasq ptrace rule to libvirtd profile c44b29aa-apparmor-dnsmasq-ptrace.patch bsc#1060860- spec: Add dependency to UEFI firmwares since paths are specified at build time- Update to libvirt 3.8.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: 92bd87a2-ryzen-test-data.patch, 5c83b360-epyc-test-data.patch, a0b62843-epyc-cpu-model.patch, f305d8a1-apparmor-attach_disconnected.patch, b482925c-apparmor-ptrace-support.patch- Enable firewalld support for openSUSE >= 42.2- apparmor: Add rules for kernel 4.13 ptrace checks b482925c-apparmor-ptrace-support.patch Drop temporary workaround apparmor-ptrace-support.patch bsc#1058847 - apparmor: Add rules for denial encountered when starting confined domains f305d8a1-apparmor-attach_disconnected.patch, suse-apparmor-libnl-paths.patch Drop old, useless, undocumented apparmor-fixes.patch- apparmor: add temporary profile fixes to allow starting domains apparmor-ptrace-support.patch bsc#1058847- cpu: Add new EPYC CPU model 92bd87a2-ryzen-test-data.patch, 5c83b360-epyc-test-data.patch, a0b62843-epyc-cpu-model.patch bsc#1052825- Update to libvirt 3.7.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: 8982f3ab-util-hash-header.patch, 0b1ecf7b-virHashCodeGen-mockable.patch, f536b0dd-tests-arch-independent-hash.patch, e4cb8500-avoid-malicious-ssh-hostname-as-args.patch- Support OVMF 4MB firmware images Adjustment to spec file and suse-ovmf-paths.patch- supportconfig plugin: list active networks, interfaces and storage pools- rpc: avoid ssh interpreting malicious hostname as arguments e4cb8500-avoid-malicious-ssh-hostname-as-args.patch bsc#1053600- Update to libvirt 3.6.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Fix unit tests on s390x and ppc64 8982f3ab-util-hash-header.patch, 0b1ecf7b-virHashCodeGen-mockable.patch. f536b0dd-tests-arch-independent-hash.patch - Patch cleanup - Renamed libvirtd-defaults.patch to suse-libvirtd-disable-tls.patch - Renamed libvirtd-init-script.patch to suse-libvirtd-sysconfig-settings.patch - Renamed virtlockd-init-script.patch to suse-virtlockd-sysconfig-settings.patch - Renamed virtlogd-init-script.patch to suse-virtlogd-sysconfig-settings.patch - Renamed libvirt-guests-init-script.patch to suse-libvirt-guests-service.patch - Combined suse-libvirtd-service.patch and systemd-service-xen.patch to suse-libvirtd-service-xen.patch since both patches add Xen support to libvirtd service file - Pull OVMF-related changes from suse-qemu-conf.patch into a new suse-ovmf-paths.patch- Add a supportconfig plugin libvirt-supportconfig FATE#323661- Remove Requires on bridge-utils FATE#323639- drop dependency on xen for armv6hl (not supported and does not build)- Update to libvirt 3.5.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: 5004f121-virFdStreamThread-dont-exceed-length.patch, 1a4b21f1-set-EOF-on-end-of-stream.patch- Remove --with-pic which is only for static libs - Use %_smp_mflags instead of just %jobs- misc spec file cleanup - remove checks for old distros well beyond EOL - enable wireshark dissector for Leap >= 42.2 and Factory - remove support for old, non-systemd distros - replace $RPM_ shell vars with modern macros- Don't exceed specified length when reading from stream 5004f121-virFdStreamThread-dont-exceed-length.patch, 1a4b21f1-set-EOF-on-end-of-stream.patch- Update to libvirt 3.4.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: aeda1b8c-qemu-no-error-shutdown.patch, 8023b21a-conf-ioapic.patch, 6b5c6314-qemu-irqchip.patch, 2020e2c6-conf-intremap.patch, 04028a9d-qemu-intremap.patch, d12781b4-conf-iommu-cache-mode-attr.patch, a5691448-qemu-iommu-cache-mode.patch, 3a276c65-conf-iommu-def-stability-check.patch, 935d927a-conf-iommu-ABI-stability-check.patch, 4cd3f241-fix-NULL-disk-source.patch, 975ea20f-loopback-macro.patch, dbb85e0c-libxl-graphics-listen-addr.patch, libxl-def-usbctrl.patch, revert-2841e675-mtu.patch - FATE#321335, bsc#1031056, bsc#1037774, bsc#1040207, bsc#1040213- libxl: add default listen address for VNC and spice 975ea20f-loopback-macro.patch, dbb85e0c-libxl-graphics-listen-addr.patch bsc#1040207 - xenconfig: fix handling of NULL disk source 4cd3f241-fix-NULL-disk-source.patch bsc#1040213- qemu: add support for 288 VCPUS aeda1b8c-qemu-no-error-shutdown.patch, 8023b21a-conf-ioapic.patch, 6b5c6314-qemu-irqchip.patch, 2020e2c6-conf-intremap.patch, 04028a9d-qemu-intremap.patch, d12781b4-conf-iommu-cache-mode-attr.patch, a5691448-qemu-iommu-cache-mode.patch, 3a276c65-conf-iommu-def-stability-check.patch, 935d927a-conf-iommu-ABI-stability-check.patch FATE#321335 - revert commit 2841e675: qemu: propagate bridge MTU into qemu "host_mtu" revert-2841e675-mtu.patch bsc#1037774- Update to libvirt 3.3.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Bug fixes: bsc#978121, bsc#1017017, bsc#1032863, bsc#1033117, bsc#1034024, bsc#1034146, bsc#1035995 - libxl: updated libxl-def-usbctrl.patch bsc#1031056- Update to libvirt 3.3.0 RC1 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: ae102b5d7-qemu-fix-regression-when-hyperv-vendor_id-feature-is-used.patch - Bug fixes: bsc#978121, bsc#1017017, bsc#1032863, bsc#1033117, bsc#1034024, bsc#1034146 - libxl: add default controllers for USB devices libxl-def-usbctrl.patch bsc#1031056- qemu: Fix regression when hyperv/vendor_id feature is used Added patch: ae102b5d7-qemu-fix-regression-when-hyperv-vendor_id-feature-is-used.patch boo#1033893- Update to libvirt 3.2.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: 67dcb797-virTimeBackOffWait-sleepcap.patch, 85af0b80-qemu-adaptive-montimeout.patch, d68cb4f55-extract-the-request-sending-code-from-virNetlin.patch, 754515b7d-add-virNetlinkDumpCommand.patch, 3ee35d7d6-more-uses-of-SYSCTL_PATH.patch, 5dd607059-add-virNetDevGetName.patch, 00d28a78b-check-accept_ra-before-enabling-ipv6-forward.patch - Add Conflicts=xendomains.service to libvirtd service suse-libvirtd-service.patch bsc#1015348- RPM group fix- Fail to start network instead of losing routes if IPv6 forwarding is required. bsc#1025252 Added patches: 00d28a78b-check-accept_ra-before-enabling-ipv6-forward.patch 3ee35d7d6-more-uses-of-SYSCTL_PATH.patch 5dd607059-add-virNetDevGetName.patch 754515b7d-add-virNetlinkDumpCommand.patch d68cb4f55-extract-the-request-sending-code-from-virNetlin.patch- qemu: Fix monitor timeout with large memory VMs 67dcb797-virTimeBackOffWait-sleepcap.patch 85af0b80-qemu-adaptive-montimeout.patch bsc#1013113- network: don't use dhcp-authoritative on static networks bsc#1015588 * added network-don-t-use-dhcp-authoritative-on-static-netwo.patch- Update to libvirt 3.1.0 - Modularize storage driver by splitting it into backend-specific subpackages - CVE-2017-2635, bsc#1027075 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: b018ada3-shunloadtest-build-fix.patch, f86a7a83-libxl-dom0-balloon-fix.patch, 6e4759d0-libxl-timer-fix.patch, 87df87e0-libxl-timer-tsc-emulate.patch, b4386fda-xenconfig-timer-fix.patch, d3970925-timer-tests.patch, 321a28c6-libxl-default-disk-format.patch, bd116810-libxl-fix-disk-detach.patch, ff225538-libxl-autoballoon-setting.patch, c89a6e78-libxl-physinfo-cleanup.patch, d2b77608-libxl-maxmem-fix.patch, 79692c38-libxl-dom0-maxmem.patch, 4ab0c959-libxl-mem-leak.patch, 2dc1cf19-libxl-double-free.patch, apparmor-errormsg-fix.patch, apparmor-alt-seclabel.patch, qemu-disable-namespaces.patch- Drop author list from description. Fix summary to be more accurate as to what the subpackage pertains to.- Don't call insserv if we use systemd and don't require it.- libxl: more fixes for dom0 maxmem setting 4ab0c959-libxl-mem-leak.patch, 2dc1cf19-libxl-double-free.patch bsc#1017762- apparmor: don't fail on non-apparmor apparmor-errormsg-fix.patch, apparmor-alt-seclabel.patch bsc#1023436- libxl: fix reporting of domain maximum memory ff225538-libxl-autoballoon-setting.patch, c89a6e78-libxl-physinfo-cleanup.patch, d2b77608-libxl-maxmem-fix.patch, 79692c38-libxl-dom0-maxmem.patch bsc#1017762- libxl: set disk format to raw if not specified and fix disk detach 321a28c6-libxl-default-disk-format.patch, bd116810-libxl-fix-disk-detach.patch bsc#1003379- libxl: fix timer configurations 6e4759d0-libxl-timer-fix.patch, 87df87e0-libxl-timer-tsc-emulate.patch, b4386fda-xenconfig-timer-fix.patch, d3970925-timer-tests.patch bsc#1019969- SLE12 SP2 bugs merged via version updates of the Factory libvirt package: bsc#986718 - SLE12 SP2 FATEs merged via version updates of the Factory libvirt package: FATE#316228, FATE#316628, FATE#319531, FATE#319810, FATE#320490 - Replaced libxl-dom0-balloon-fix.patch with upstream patch f86a7a83-libxl-dom0-balloon-fix.patch- Fix dom0 ballooning with Xen >= 4.8 libxl-dom0-balloon-fix.patch bsc#1020755- SLE12 SP2 bugs merged via version updates of the Factory libvirt package: bsc#996020, bsc#987002, bsc#997278, bsc#998005, bsc#998389, bsc#1001446, bsc#1001698, bsc#1005288, bsc#1013991, bsc#1016253, bsc#1017086, bsc#1017762, bsc#1018189- virt-create-rootfs is a temporary SLE-only hack that was never added to the Factory libvirt package, causing it to be dropped when rebasing SLE on Factory. Add it now but only apply associated patch when building for SLE. virt-create-rootfs.patch bsc#995981- Update to libvirt 3.0.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Add b018ada3-shunloadtest-build-fix.patch to fix 'make check' failures - Add qemu-disable-namespaces.patch to temporarily disable qemu namespace feature until all issues are resolved- In order to avoid issues like bsc#1017189, explicitly specify supported VirtualBox versions- Update to libvirt 2.5.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Import new public signing key- spec: explicitly set qemu-bridge-helper path to /usr/lib/ bsc#999070- Package org.libvirt.api.policy polkit file (bsc#959297) - Fix postun systemd services cleanup - Mark /etc/libvirt/nwfilter/*.xml files as config files- Update to libvirt 2.4.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html- Update to libvirt 2.3.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: pci-use-driver-override-sysfs.patch, virHostdevFindUSBDevice-privsyms.patch, libxl-usb-vendor.patch, apparmor-qemu-bridge-helper.patch- Update to libvirt 2.2.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: 856965b3-qemu-secdriver.patch, 541e9ae6-cpu-vendor-crash-fix.patch, d53d4650-qemu-rbd-auth.patch- libxl: allow vendor/product addressing for USB hostdevs virHostdevFindUSBDevice-privsyms.patch, libxl-usb-vendor.patch bsc#989646 - qemu: fix auth for rbd network disks d53d4650-qemu-rbd-auth.patch bsc#988998 - Replace cpumodel-vendor-crash-fix.patch with upstream variant 541e9ae6-cpu-vendor-crash-fix.patch bsc#992425- Update to libvirt 2.1.0 - New subpackages libvirt-libs and libvirt-admin - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: c8f08e48-systemd-notify-fix.patch - qemu: fix qemu.conf security_driver regression in 2.1.0 release 856965b3-qemu-secdriver.patch- cpu_x86: fix libvirtd segfault when host cpu is 'qemu64' cpumodel-vendor-crash-fix.patch bsc#992425- bsc#988279. Move the qemu-bridge-helper apparmor profile from the qemu abstraction to the usr.sbin.libvirtd profile. apparmor-qemu-bridge-helper.patch- spec: minor improvements to logic enabling numactl and numad support and fix nested if indentation FATE#319979- Update patches providing support for driver_override sysfs interface with latest upstream variant. Dropped pci-simplify-stub.patch and updated pci-use-driver-override-sysfs.patch bsc#986718- spec: enable numactl and numad support for aarch64 FATE#319979, bsc#991377- BuildRequires: use librbd-devel instead of ceph-devel - Enable rbd support for aarch64 bsc#979473- Use driver_override sysfs interface for binding/unbinding PCI stub drivers pci-simplify-stub.patch, pci-use-driver-override-sysfs.patch bsc#986718- systemd: fix ready notification on abstract socket c8f08e48-systemd-notify-fix.patch boo#987668- Update to libvirt 2.0.0 - Change version scheme to match libvirt's time-driven release schedule. will be incremented on first release of new calendar year, on each monthly release, and on stable branch maintenance release - Include libvirt-admin utility and API - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: apparmor-dont-scrub-environment-of-virtlogd-process.patch, e33cd67a-xenconfig-backendtype-fix.patch- spec: Recent simplification allows using a common spec file for SLE and openSUSE - Add SLE patches missing in openSUSE libxl-dom-reset.patch, libxl-set-migration-constraints.patch, libxl-set-cach-mode.patch- xenconfig: fix conversion of to backendtype e33cd67a-xenconfig-backendtype-fix.patch bsc#984798- Advertise aarch64 UEFI firmware paths - adjust spec file to include aarch64 paths in '--with-loader-nvram=' configure option - adjust qemu.conf 'nvram' option to include the SUSE paths bsc#981836, bsc#983747- apparmor: Don't scrub environment of virtlogd process apparmor-dont-scrub-environment-of-virtlogd-process.patch boo#980441- Update to libvirt 1.3.5 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: e4d131b8-mv-virDomainDefPostParseInternal.patch, 3e428670-post-parse-implicit-video.patch, 538012c8-default-vram.patch, 96b21fb0-vram-tests.patch, 400e716d-libxl-noprope-emulator.patch, b90c4b5f-tests-use-qemu-xen.patch, fccf2725-libxl-API-4.4.patch, 5325123d-libxl-migv2-save-restore.patch, f9edcfa4-libxl-migv2-migration.patch, a1c9a81a-libxl-rbd-fix.patch, ba566428-libxl-dom-iface-addrs.patch - spec: simplify and cleanup by removing many conditionals that are never toogled. Also drop conditionals for suse_version < 1310- Avoid suppressing errors during useradd/groupadd- libxl: add domainInterfaceAddresses API ba566428-libxl-dom-iface-addrs.patch bsc#979425- libxl: default to qemu driver for network disks a1c9a81a-libxl-rbd-fix.patch boo#981094- spec: Remove %defattr usage Inspired by upstream commit 90f9193c- libxl: support Xen migration stream V2 fccf2725-libxl-API-4.4.patch, 5325123d-libxl-migv2-save-restore.patch, f9edcfa4-libxl-migv2-migration.patch bsc#978361- Fix default video RAM setting e4d131b8-mv-virDomainDefPostParseInternal.patch, 3e428670-post-parse-implicit-video.patch, 538012c8-default-vram.patch, 96b21fb0-vram-tests.patch, 400e716d-libxl-noprope-emulator.patch, b90c4b5f-tests-use-qemu-xen.patch bsc#979397- Remove unknown locales to fix build in old dists- Update to libvirt 1.3.4 - Add support for migration data compression in QEMU driver - Drop libvirtd.socket - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: 216650f1-libxl-build-fix.patch, 6d8b6d28-mark-implicit-video-primary.patch, 03e8d5fb-qemu-perf-memory-corruption.patch, libvirtd-systemd-socket.patch- qemu: perf: Fix crash/memory corruption on failed VM start 03e8d5fb-qemu-perf-memory-corruption.patch bsc#977131- Fix setting implicit video devices as primary 6d8b6d28-mark-implicit-video-primary.patch bsc#977150- Update to libvirt 1.3.3 - perf events - post-copy migration support - NSS module - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Add rpmlintrc file to filter shlib-policy-name-error for new libnss_libvirt plugin - Fix build with Xen4.7 216650f1-libxl-build-fix.patch- spec: restart daemons in %posttrans after connection drivers have been processed bsc#854343, bsc#968483- libxl: advertise system qemu instead of qemu-xen in caps libxl-qemu-emulator-caps.patch FATE#320638- Update to libvirt 1.3.2 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html- libxl: Add support for block-{dmmd,drbd,npiv} scripts libxl-support-block-script.patch bsc#954872- qemu: set /usr/share/qemu/ovmf-x86_64-ms-{code,vars}.bin as default UEFI firmwares for x86_64 bsc#961853- Update to libvirt 1.3.1 - CVE-2015-5313 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: 034e47c3-CVE-2015-5313.patch, ace1ee22-qemuxml2argv-test.patch, add-with-login-shell.patch, virt-aa-helper-rw-mounts.patch- spec: perform one-time enable and start of virtlogd.socket when upgrading from libvirt < 1.3.0. Inspired by upstream libvirt.git commit da054f35.- CVE-2015-5313: don't allow '/' in filesystem volume names 034e47c3-CVE-2015-5313.patch bsc#953110 - Fix failing qemuxml2argv test on 32-bit platforms ace1ee22-qemuxml2argv-test.patch- Update to libvirt 1.3.0 - New virtlogd log daemon - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patch: 703ec1b7-qemu-bridge-helper-fix.patch - Added patch: virtlogd-init-script.patch- Run udevadm settle after removing NICs in lxc driver. bsc#829033. lxc-wait-after-eth-del.patch- Don't add apparmor deny rw rule for 9P readonly mounts. bsc#952849. virt-aa-helper-rw-mounts.patch- Don't package virt-login-shell anymore as shipping it as non-setuid doesn't make sense. bsc#837609 add-with-login-shell.patch- Detect path of qemu-bridge-helper during %configure - add qemu-tools as BuildRequires for suse_version > 1130 - add upstream patch 703ec1b7-qemu-bridge-helper-fix.patch- Update to libvirt 1.2.21 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: disable-virCgroupGetPercpuStats-test.patch- spec: some minor wireshark fixups. Essentially a backport of commit 7c8250d7.- spec: remove all dependencies on apparmor to keep it optional. bsc#949793- xenconfig: set disk type to BLOCK when driver is not tap or file xen-sxpr-disk-type.patch bsc#938228- spec: the libvirt apparmor profiles #include files from the apparmor-profiles package, thus should have a dependency on it bsc#949793- Remove Wants=xencommons.service from libvirtd.service xencommons is already enabled by a global preset, and the absence of xen-tools.rpm causes a systemd warning- Update to libvirt 1.2.20 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped upstream patches: 3468542f-virFileUnlink.patch, 8b1d84e6-refreshVol-failure.patch, e0025d29-storage-mode-check.patch, ba25c214-libxl-log-level.patch, 56945e13-libxl-AttachDeviceConfig-hostdev.patch- bsc#945962: SLES12 SP1 Beta3 - Pass-through NIC device via virsh not available to VM. 56945e13-libxl-AttachDeviceConfig-hostdev.patch- libxl: set driver log level to the log_level specified in libvirtd.conf ba25c214-libxl-log-level.patch bsc#945796- CVE-2015-5247 - denial of service through root-squash NFS storage bsc#945645 3468542f-virFileUnlink.patch 8b1d84e6-refreshVol-failure.patch e0025d29-storage-mode-check.patch- Update to libvirt 1.2.19 - Improved ppc64 support - New virDomainRename API - Support for PCI Express controllers in QEMU - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped upstream patches: 269d39af-storage-allocation-fix.patch, 26c5fa3a-virt-aa-helper-missing-doc.patch, d25a5e08-virt-aa-helper-simplify-restriction-logic.patch, 2f01cfdf-virt-aa-helper-allow-ovmf.patch, 91fdcefa-virt-aa-helper-allow-nvram.patch, 52970dec-virt-aa-helper-improve-valid-path.patch, 44a54eb0-libxl-fix-refcnt-MigrationDstArgs.patch, 15120b8c-libxl-no-resume-on-suspend-fail.patch, e80b84a7-libxl-acquire-job-on-migrate.patch, 60acb38-revert-curmem-inactive-dom.patch- Replace local libxl patches with upstream variants Dropped: 0003-libxl-fix-ref-counting-of-libxlMigrationDstArgs.patch 0004-libxl-don-t-attempt-to-resume-domain-when-suspend-fa.patch 0005-libxl-acquire-a-job-when-receiving-a-migrating-domai.patch Added: 44a54eb0-libxl-fix-refcnt-MigrationDstArgs.patch 15120b8c-libxl-no-resume-on-suspend-fail.patch e80b84a7-libxl-acquire-job-on-migrate.patch bsc#936185 - Added another virt-aa-helper upstream patch 52970dec-virt-aa-helper-improve-valid-path.patch lp#1483071 - Added upstream patch to fix libvirt-tck memory balloon test failure on Xen 60acb38-revert-curmem-inactive-dom.patch- Fix generated apparmor profile to allow access to ovmf and nvram. 26c5fa3a-virt-aa-helper-missing-doc.patch 2f01cfdf-virt-aa-helper-allow-ovmf.patch 91fdcefa-virt-aa-helper-allow-nvram.patch d25a5e08-virt-aa-helper-simplify-restriction-logic.patch lp#1483071- storage: only run safezero if allocation is > 0 269d39af-storage-allocation-fix.patch bsc#942085- Update to libvirt 1.2.18 - libxl: support dom0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped upstream patches: e44bcae-virt-aa-helper-trailing-slash.patch, a55a5e7-virt-aa-helper-log.patch, 61dab0f-virt-aa-helper-renaming.patch, 24f3c2f-virt-aa-helper-fix-caps.patch, 45697fe5-libxl-support-dom0.patch, e9c27344-libxl-fix-virDomainObj-state.patch, 4ffb21c8-libxl-dom0-state-fix.patch, qemu-nbd-cleanup-fix.patch- Fix crash in libxl driver on receiving side 0003-libxl-fix-ref-counting-of-libxlMigrationDstArgs.patch 0004-libxl-don-t-attempt-to-resume-domain-when-suspend-fa.patch 0005-libxl-acquire-a-job-when-receiving-a-migrating-domai.patch bsc#936185- libxl: set dom0 state to running 4ffb21c8-libxl-dom0-state-fix.patch bsc#937316 - libxl: support management of dom0 45697fe5-libxl-support-dom0.patch bsc#937316 - libxl: libxl: fix setting state of virDomainObj e9c27344-libxl-fix-virDomainObj-state.patch bsc#934937- Fixed virt-aa-helper bugs preventing virt-sandbox to work. 24f3c2f-virt-aa-helper-fix-caps.patch 61dab0f-virt-aa-helper-renaming.patch a55a5e7-virt-aa-helper-log.patch e44bcae-virt-aa-helper-trailing-slash.patch bsc#936841 - Fixed crasher due to uninitialized values qemu-nbd-cleanup-fix.patch bsc#936841- Update to libvirt 1.2.17 - parallels driver renamed to vz (Virtuozzo) - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - spec: re-enable tests that have received upstream fixes and are now passing- Remove unsupported settings in libvirtd.socket unit file when systemd version < 214 libvirtd-systemd-socket.patch bsc#933043 - spec: always apply Apparmor and netcontrol patches- spec: Add libvirtd.socket unit file to service_add_pre and service_del_postun macros- Update to libvirt 1.2.16 - Introduce pci-serial - Introduce virDomainSetUserPassword API - Introduce protected key mgmt ops - Add domain vmport feature - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Drop upstream patches c0d3f608-libxl-soundhw.patch and 8910e063-arch-caps.patch - Drop polkit-10-virt.rules in favor of upstream 50-libvirt.rules- qemu: fix regression defaulting to host arch 8910e063-arch-caps.patch rhb#1219191- spec: build libxl driver for aarch64 and remove useless 'suse_version <= 1220' conditional- libxl: support virtual sound devices in HVM domains c0d3f608-libxl-soundhw.patch bsc#875216- Update to libvirt 1.2.15 - Implement virDomainAddIOThread and virDomainDelIOThread - libxl: Introduce configuration file for libxl driver - Add VIR_DOMAIN_EVENT_ID_DEVICE_ADDED event - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Drop upstream patches da33a1ac-lxc-init-statedir.patch and open-ns-files-readonly.patch - spec file fixups for building --without-driver-modules- boo#926765: add libvirt-daemon-driver-qemu dependency on libvirt-daemon-driver-storage.- boo#926153: make sure /var/run/libvirt/lxc folder exists when starting the driver. da33a1ac-lxc-init-statedir.patch - Fix lxc-enter-namespace for 3.19+ kernels. open-ns-files-readonly.patch- Disable building wireshark dissector. Commit 37397320 requires wireshark pkgconfig, which SUSE wireshark packages do not provide. - Disable building the legacy Xen driver since Xen no longer provides the xend toolstack. Remove xend-specific patches while at it: fix-pci-attach-xen-driver.patch, xen-name-for-devid.patch- Update to libvirt 1.2.14 - qemu: Implement memory device hotplug - Implement public API for virDomainPinIOThread - Implement public API for virDomainGetIOThreadsInfo - SRIOV NIC offload feature discovery - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Drop disable-hugepage-test.patch in favor of upstream fix- Fix build on older distros containing a polkit package that lacks support for /etc/polkit-1/rules.d drop directory- Disable interface driver if libnetcontrol cannot be initialized Modified libvirt-suse-netcontrol.patch boo#920551- Fix crash in libnetcontrol-backed interface driver Modified libvirt-suse-netcontrol.patch boo#920551- Instruct polkit to allow memebers of the 'libvirt' group to connect to libvirt without providing any password (bnc#920804) - Added polkit-10-virt.rules to fix bnc#920804- Change default setting of security_default_confined in /etc/libvirt/qemu.conf instead of in code. Making the change in code changes the default behavior for all users, even those that have a custom security setup in their /etc/libvirt/qemu.conf. Modified suse-qemu-conf.patch bsc#921586- Fixed a number of QEMU apparmor abstraction problems. bsc#921355 apparmor-fixes.patch- Update to libvirt 1.2.13 - qemu: improved support for host and guest NUMA - Many incremental improvements and bug fixes, see http://libvirt.org/news.html- Update to libvirt 1.2.12 - CVE-2015-0236: qemu: Check ACLs when dumping security info from snapshots - CVE-2015-0236: qemu: Check ACLs when dumping security info from save image - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Drop upstream patches: 30c6aecc-apparmor-lib64.patch, apparmor-xen-fixup.patch, apparmor-allow-helpers.patch, apparmor-tck-raw-packets.patch - Disable a hugepage test that is failing on ppc, ppc64, and ppc64le architectures - disable-hugepage-test.patch- Fixed patches to pass make syntax-check- Apparmor profile regression breaks Xen domains. bsc#913799 apparmor-xen-fixup.patch apparmor-allow-helpers.patch apparmor-tck-raw-packets.patch- Replaced hard to maintain install-apparmor-profiles.patch by upstreamed 30c6aecc-apparmor-lib64.patch. - Reformatted libvirt.spec and libvirtd.init to pass upstream make syntax-check- fix bashisms in libvirt-guests.sh script - update patches: + libvirt-guests-init-script.patch- Update to libvirt 1.2.11 - Implement public API for virDomainGetFSInfo - qemu: Add define for the new throttle options - CVE-2014-8131: Fix possible deadlock and segfault in qemuConnectGetAllDomainStats() - CVE-2014-7823: dumpxml: security hole with migratable flag - Drop upstream patches: 2222123-virt-aa-helper-crash.patch, 433b427-iplink-name.patch, 52691f99-qemu-mig-crash.patch, 72fecf1-lxc-resolve-symlinks.patch, b1674ad5-CVE-2014-7823.patch, ba9b7252-sys-net-rw.patch, c264eea-virt-aa-helper-sandbox.patch, e50457d-lxc-unmount-check.patch, cgroup-all-devices.patch, libvirt-ppc64le-support.patch- Get /proc/sys/net/ipv[46] read-write for wicked to work in containers. bsc#904432. ba9b7252-sys-net-rw.patch - Fixed allowing devices for containers. cgroup-all-devices.patch- qemu: Fix crash in tunnelled migration 52691f99-qemu-mig-crash.patch boo#908008- Fix potential crasher in virt-aa-helper 2222123-virt-aa-helper-crash.patch - ip link add now needs the 'name' parameter. 433b427-iplink-name.patch - Fixes for virt-sandbox-service to work: - Allow adding virt-sandbox service config to apparmor rules. c264eea-virt-aa-helper-sandbox.patch - fix symlink resolving for containers to start. 72fecf1-lxc-resolve-symlinks.patch - fix unmounting file system if it contains the source to mount. e50457d-lxc-unmount-check.patch- Remove security_driver = "none" in qemu config. This completely disabled all security drivers instead of probing them. - Changed default value of QEMU's security_default_confined to 0 to keep QEMU domains unconfined by default.- CVE-2014-7823: dumpxml: security hole with migratable flag b1674ad5-CVE-2014-7823.patch bsc#904176- Fix Qemu AppArmor abstraction. - qemu-block.so was denied on x86_64. install-apparmor-profiles.patch - Temporary fix access to screenshot temporary file. bsc#904426. qemu-apparmor-screenshot.patch- Update to libvirt 1.2.10 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html- Added package wireshark-plugin-libvirt to provide the wireshark dissector for the libvirt RPC protocol/bin/sh/bin/sh/bin/sh/bin/shibs-centriq-3 1685471397 8.0.0-150400.7.6.18.0.0-150400.7.6.18.0.0-150400.7.6.1virtsecretd.confvirtsecretd-admin.socketvirtsecretd-ro.socketvirtsecretd.servicevirtsecretd.socketconnection-driverlibvirt_driver_secret.sorcvirtsecretdvirtsecretdtest_virtsecretd.augvirtsecretd.augvirtsecretd.8.gz/etc/libvirt//usr/lib/systemd/system//usr/lib64/libvirt//usr/lib64/libvirt/connection-driver//usr/sbin//usr/share/augeas/lenses/tests//usr/share/augeas/lenses//usr/share/man/man8/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:29155/SUSE_SLE-15-SP4_Update/d3be4e68c94e37d2fe58ad7572bee432-libvirt.SUSE_SLE-15-SP4_Updatecpioxz5aarch64-suse-linuxASCII textdirectoryELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=f0cc75b9cc786cc1f2e0ffb37378cbd02c96ef1f, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, interpreter /lib/ld-linux-aarch64.so.1, BuildID[sha1]=1af9322bc83499f4217e16bae49aa1b18fe3939f, for GNU/Linux 3.7.0, strippedtroff or preprocessor input, ASCII text (gzip compressed data, max compression, from Unix) qPRRR R RvRR R RRRRR R RRRRRRRpR8RiRLR[RaRVRGR+R^R*RCRsRR(R>R:R%RMRPR.RJRRQRdRZRnR-m@m5x*8=ܓY :)ř`b&KW;f t*>B<@0&ыC$U)̉A؟|U@3EWѡBJNx[@E!Y #d ȁv%-hlR*'A\O۲(jdshRbk3ur=8s+d?jc6#pN$BwIo:'?oڽ4$x^/2h)|OL_]cT$E B_ݳu^[zxx:l' 3\"b96V2ȕK_۬n45 a;gfH>X^`ՖdM/̀ Đ}&$IfG<[Z`"] x9zn '˵UD XHIKW#Mk.V@I`T8C7(m {]uQؖf>Qb%)({mu'gh$<;vZr$eӔf8#R.f:Q( {;W-Bd[bda3h$? *PgGr'<Zv1]|5ƬhFAvVڻ3xUѹoFf߆m:ݎnFM) uF$ɦfʇQW]WQ_2π:;.\E<_’KHkt ybX7*?7 QpE/@nlL:Dn4E;(vNEiQ; Cxt#&ZHkxH=z  ,s.*vr `ݙZ;dDLqx\ F'Aw+ɼ{g(!ZϤu1BwXb%u㹀_؈npncy>U'j3 :(@VdN7#{/Uf㞚d j|.2APoB!KC FE{Rsm*dgH*ɸqHrf^q=՗i/,c"pPDbu[`Cg šE%hAŢ Qu3k!N{R)fQ6d#/>a(enĕ*rd/nU/񣃎P $ '}r6. W>hֺ4œ_U vfv*GWw\E{܉%A[.4g^E+OQm&z'} mJ8m(7,`KH3Tvi`@!Tޅ_sr9~qj͚413Ŗ:%kÇ̧SĈ7_ydDZӌ"<p œEh BYX#KNͯ*zhq|j7_W9gW-<71қJa>׌x8vcB<ָb+3G见c@Hkw+. /? whY.( ''Zkh=&C6Jn/tπ:<]w7t<<*e~m Ǩڱ*G`rƳ(<#ʳzs14dvB:8sB3@/y%[vP, Jǻ25r`UcJs`o,Ϳb;|Ͻ|{s=Qԉa;ySOS;_q`?G0sx,pk^ ud:;tnC>^^2z8L|ZӐ ɯms 0*#jJ ,@R45KdPT^2e|6<mƾ/=!dP"ƅ葌nVa s!Ρax ~g^`p!Z$Z|jcX+:|`Z^f`8[\|&ߵrWyyqSRl9 Yr؆Rl u_ndl|mJYoT2ٴk%_pHE&gxZD$"M*aBIm3=e,a&G|ⶮ'[#ZZw *"ș0ylA(hb+[)s:r˺X_5HqWxz[)Cw-vD /?j#FR׷>$_ C[ىgZmDY< `&mĦتodvBXŒXtpS~+wd+y\9޿u2ߠĖGs]wt N_bzŁ.ϡAG7^TNʗOqwA/06 "%[ZaZK -Ȕp̄%D /bljIQʧ߶0eg mYl 0VGsÁr ִʂhCDK[()eω QGI ׄ1;؜ bo Iꣿ8~/ Uo?!b|Y.69SDn+A]50lNx蚰#SxZJvsO@I|$jekZ˖`U7j;#*s>шX 8_-R WقBA3j}ɇY*6S)ҧ_1L'W`FAl6<(',JI @N[tE?AAZ-vzBa6FH(RdyR0\yTc~zr[6jvYc U&WwMbڤ:-1zy9 0o2͙rC_,m,ܦ08,\ f5ҕhx}ؕ[m'sG弉A-ɮe΃@ vIϡP)ZIf_HQ>M\ߢ! Æ6tsz5-%ލhQB3a Xxk`F -!tfɚVk" ba1ce;2 Ѯs2-^lN\5V0O?-^juRmTZ v^)/Ǹ#[RW3xg|QNIief!6Dew,ւ|gfZ3ِ̮ͧ!%nUY{[eoҀ~) &?'ǐ 9hC![7i#-\j{*4A=X<%R%l}%W|u/1o= ۖVZdtb0k 'i,^5`5[Ks v]jufH=Bi^vj>*?S࿕)f~yS+ xzGoIzu` 0*3|'a|{e (c?*N7E"0LX fDE&wl.& aUq_L}bdB:nG]\MYoZ@mЌWL@#D\(+ HIC$,ՆҼe9W (W> 4OZ1CsYdxg'ܺPGiS/?~;Y 0<% 픷=Zk!]3=( c+L".|LڏX[YJNecm(s8ׄp짭$x/Fބ[:!i]/ <[)R~4@Nt`bu1+a|B]T/g:qB뒜-GnGB;" d;xjkxmG^ BN4HM#gBgXw?2+" c"kNSy'h/ID_:廸̷!RˌtC[v*!Aξ::4kK~kbB;ۙosRs5-bX@ \ Jū+ɸ~yG~@pO f8N B}ݳUz<)g߀Ҁ2o Pĝk{:7iPxмOyn5pem*F+v>JiL-`xV& gaFO}c,Fy3qJeΟF_#Zflv/Uӌ_Ξzf?vth4ym4a ,f^cS1O$9 T-쳔uz/l|9ncJ٧:I2&%R}!QyTuֳd ;I `M9:~EU,RG"_+ 󈶍;Ѕ+9Ј$""f'uj @|z@sa-aJT(}%X{gi&'CR 3k|kk [lҌ L$t3Iyih-CiM/? l_ kcDŽbsHfz>iS}On |)!JJ!zd^ՔI#h̔l~B?Bw~(ΗHԞdV9b_\XN7^+ .ď ) qs0xoc+_k9Yf]U-$'u*|Ӂ<~ϘK?fmgRW#g0K$]A4xwQqT-֥EJ4cC| sɼ,Zpd-3K3&(I `U,7_6['W\W`B>i~%$2҇&aN([?u1XW4fpK+"ag>^`ҒiH*骘0zRuLrK{W[Z^ދÃ3Z"z%poӵ6a^?Ib<H>С\/LƵOZ+'[Dɾo+cFu "1 @Mq. x9EINZ6i"ct'MA%cbSs&~I^G%Wc߃띚;33e(θp9T{ok7lߠZk T?&TN!/T4kۦ߃Ҩ k7C]Q!=1-4E/Gu b[ܙb}|ljgJ;b-FHtnzج/OvF"sq7W# rt02ŋ/S_.Wf龣3PHcL 'ee;[zE&֊myUȀ.#8ɵf ]4PsRaAQkh˵1v󼁋0ڼuګH]6?VuO_h ۀI7$Ķ j|;1i)_X/Ua13m×ݕq<9SQ`AϐMxF9~HkD-Us nb@ &{`V!x~#(ڠW{+د5-nȢuዢ+Z?JW(5B(\K mֻszOVŴeLuaPUg'c.7#9& !6clF;j[}{00+zrSHWXb 6Ed/CWDdv`>X cS2akq=S{2W' ,(USc]o0! vt=W1`OgCCDڐ%aĕFZdMF8Rȩw!i$G3NH@grNMף\ n^(!{\+9 \s1G—ZZd?hMrT Ham?nksBu)xcJJW: ܓ.t3aYů}؉M^טo@!ʰ%Wp4`؍s}Puqc,Nmߞp#Xb8+٪(h~g#u$IӨqIR%pԣi bķB ׺-IȜ e=ԢRaXAg^Ԣ?2LDJ?7#h>[b䶬#i$lұ'vqJP߲MWy2ٗ.ysR_z:(XQGoIB(a gmFdlPGJ873V%+OLqF=r,\_jƠM &cG֠$'@R98|'`l8<<E;K :Mq;Mx`A{؅6W]ߊq8d,sEC=C0ZnamAn6g:s'ʀOv$<5 =DwhUFұ$nLP>|Gg[4q̚;t"842͌jd~B./{m*wtm07PMB>aR p0Kq֏-8K}Cݢ/Y$LXJvs  q*|`bq;6 mvFҪfSɒ6H/[^Ϯ4={Ei/pCyQJ"B/omq- ]o,(k&3N,!~1ƯU<͖o8@!{ {SL # F-ke\ga!p^PV,'ll1}1xĔLBP0CAA>J?/auxHb(`$|b/d5PN<嶥Qf)(XJ \ %xVx/"[QW%AWI3e&biǥ: ӱ\ضF}{Wk {Z5>U@4H^"NGI ?okܖV]JՄ<5`9Qr2Nz/<$51XRu6 /d#fKvڟ [I OAm$#t=Ģ6Jt ٣œ#MQ-qМbsWYT9O"ZӒ $HRg3DgڻgZ8]7 U(S'k.AhQ= MSE]W)Thfww(@?BWE9XA:=iat0b)U &`e'MA5@yu3ɪaH 9R9̭qM%SrYb(pƁ`t:FtLUT^doQ;> +0w7ikFrqBzWOAwB8@&du>A'SrH(*y f(5͏T4{nxD h+v7^uR)5Bf~>7ӰBˣS_~(14s.=Q`)cut4Z߁ 'Rd!8VÅ+3@%:)(mÜB$; Lp 3x^ X5Xi%$% ӫ A#I2j՜\ȯu2WRhݶ|y*Y XDI_Y3u? Cy{?h]c8hQ"emy|s MG, %/i*h)}ؚ`~[ u5N 9zk_ιpkv͆ [=ۗ4Dy?;gg/]WPDuQ>&hCZKzN Mvp YYgrcVwK}PٶT/XZI+e >vUyUh^T@"+:;+T޴實'5o\Xˬl,ϞgW?^–ֿE!ʺ{`c=ǠZNă9:Z5XlT$SgEdH>s,ĞBpShil9ף-nEC; )#2/V* u"fUQ4縭T}YX۰2,\ ɖzr536Fӿ ~hl,vOy_D&%Q;i4,4fu"%.ٺ%^(k :**.mQZ؃Vu/7r{TC'qXJ-A`;2G463+UDFmnIG5 Sof)sh:JPH:\IzyqK+ ߅t9~{ z#< ~_'odcNp[K}UVi$^+0c"m ۳ƣɑ()XߪG]zzp+z]ݲP?|Ոp81ŒGH!YA>o_,@,^>, ':ݮFį8Iki΁cx^, #|qEҼ(zŃż@+KYWaxjqW` Fvz$c-tf+T8.X?*UTg""=1ÃAf=g:`20E}yW:k9 T7|)qlzlKIrx s ]]:uL6>jЮ8ĜryX^<"JdS \ eSк) 0ѮkH~&wBI6IG$BQLy ' WN|F^ϛHQBR?E+qiӳ'Vܧ& 7INˀ*RܯĪko4#攌Xgҙ1W*sQUr)3Lq ~do-D. I. 5ȠE4Wc ~`)[R"p⋔FaIj,\Jd\C\* RI<LZM"#zz mn~H]uאs2֦9I;#έ W7byNFgu&A?)>lS'w6-|s`ETDJ€st}ĘjZ:Ķ}KeQtJa;(5-U}&%#jh(2g'%'{IEiwᏓA&?G} @j=Y V~$t**~1DJi.b+j~(~@r+: Bq!ա~f́UfI@pR!TXax*dޫp-WR0I\.b<*xt:p^{#-L.$U]͐( ykuE&RS^hiW5\8rz$ (&EYzWF!hn*z3+DW; }7+7^_`Jws N>>."Ñȃ]v:\F5:X$/8@vi"Ibd ~HG~^!^wNڰpALyiJb\uHCQ;`~ov|R<="ӆ}NS"={dwWm`pZ;K(=}kv2W8ep*a35w?ѱMhE~CP OKgE pvc(3>ҥsaoſq53եp;v-5 GM$w`W\ J*;&иE˽$C!P;L>~c!bݼgii5h,KjjRrZ'vA .SPTZSAdڙw9h Zk?'3eܭ{(OJ`ê r:6!JõphWw9X2 5l7 *U>~=MiK{kHS۸-u˯]"&<' /|P'gQdsap.! ݋D&4 MbjV0=z'-4'O$N.̸ajQ:?-& }ϰ%8z0Al}cķXV|A貦_9Smd7ǎrOhavL~Hs/Ыx/tf;0;-*xrVxs`/>R&zgg/ɱ:hزAuIYI3$1ԩ<@[] ̛U҇έ1/%?WVq+džcէxĂPX]۟>4Bf'Ea.F΃7Qɍr8غa(}zg{= RL0vl S<#yթ_$n^[kzndA o>@Q ͭb:'Ƀ,&B%ANEt[\[+ Lf!% njK^:<ک{ȫ OJA-͖X划T "KY|kK Alչ=*`=pn>0@Xc -qɠ Vh2;A#ܘ'c]u*QZIhq^L _UR1 恡x^S||6@8ctW`EBsa<ҨuJzfqi*"˫wEzid a|$ۨx#滞TaÅP UpX]srF* + {ufM*䡢`XޣR,RnxlфZ6m,c 0}Jb|1,~ۨc Lف r NاU22Z)8 ž '8.ufW6t#Hmb?icSS/8t4 ĎɏF='fs!3BkG5,펨 P1gXgaUޝac6rFJm7_R˦Q=ⱐ.v:sJӡ{tZUVl0l"3*m%Jf:1#9UY> 饈<5$LP+X:!PfH^8Z>Q>>Mݡg)k)]*o :ys$s>x?Ĕ\WfE @Pz0:?Wo%m'ye(`!&.'lwJ84 )%J/򨎽B.e ౝ:Oډ~hRa IH?_q:.hD,E>T:KH^]b$;K 7R,xFlpy;75"\夜a5ՆpK>ՙlCAю [1BOE]ёf aҷ܌V G&jOa~p]&!Mf 5U5wnR-F%hw!s^-̏5Ю5ҹS@*_$gV[6UqRI`>7}ıUvf+=Z-5SzmjVl7}Mw£4+S:^_#Rs.3G5YFmL\I$ahpV=e%}tH'ZGms:K9.swf~[v/['tG'dr!D!a lS[0Ö⡐4Q_~vWrd0ν H->ҹ69gш@bY$&wǨ6 &a$-&O 8s![ Nꦋp1! momӐpIbrdĵ}W?T|YR C?)h'Xw98ڛle tTYJvH_]T*G98 Wc? cq3}BmIh Q|7p ZaTԔ7=Ɋ9:$gFFw_ޕ47 vWX?F8X h `fwn{0'+7oĐ1S_IfMRXzq0{ LCӔ;GM?%$(E]Ϣ!\ $ԟ 3#T7㡑|\gb=8扵k05¹߫P,DCU/xMF*Íu{wji͇`?mKGD3Is3[ Oa"10IpH Gz؆؍X10Z"o=.ĐαE%\~ UCV5O ( 1Cte 8hctbdƋ<{]"Ch يwk|rLB[_m^!L/YoMy/ ZKXXt3ayhkX[8}b~,چ"Yz`_l:}J [FW7X~:HTN)%H!WNVĞ=;tUkm8R~|оm.Jn%Lmb#^o=4 B‚Ѕ{i\y f*sjф-:O_7=yrk:cz77>-#k~9=#FezնuZUШ5( UK|sH@y=FC%P dܞ֨TښEYsh׎ȴڸ*eV(9͠K{kd4ZGfÕ[BmO]B{4qaD􋹓Q WsmT / Ùc8Z"^T=} 9IV0=v+ B̹737gDtFugv9]&;ieE6'w96Fr*]c~j? L² *6x4ڨڨsόݝI3tƺ?Ľun?Ţ.w4 u4Xu2DǸȳ=+ږ> VJ½]F8'w3N&U߃sh!1J&݅!0̯L_x@;;B؃s-q͟b))Ǜ?-X 8^:NsT[Z \hű<m5婡8W14yבSö}}X'MrŌ%#no1Ҍ]0-OpbCh== FU56;ER.9ZP TnfkAj]!Wp_Tr,3P?0WF^'ZS=tN˶x3 ?9LoOѺwڅ7?Ս_îA)Ɛ[=YW^/p(Qvbo4 c.Jrx.z r *E.%@ifvݸOyU !nfi zɁ A1=6# }9IﮧNs+.N%K)8rN͒lv$E34JIE2Dc"$~a{}B ϵqXf8#dur,Eb;mu>Kj^ͬsg0oр_uiX;4Ẅ́ђ96ndƲ!0f/sk+/aO X%|Dxܞ &L(ՋLXfr7nLer\G4-;3Vsp`&Xo[qoAsD7l 3+>3@E0QHp$;1YdXWDZ1:ۏ;Qd>sm2=i. hPFS|uפTHH7 ' v=s xm~C 6oy wi֩|yjGdbf$Ӑ@,fOw,M$wmf!K%IF6J>d\RClchtqX3%-pU%|ؗ1Huw`&$MIAKOgΘɖc$@fznGyqe;j9ÙMKpsOۅ[S<5Ʉ]|<49?rM\;o0|a)ڕߟE$^.{쇽=~Ԋy| DW 8JJ>0ed&[CB0].Z#PYbLuu(8<,YǸT ݩpeʃ*`ty_{sf]Xi,aq)oRDS?׹ d v(~l8a.kWN l'.fHO2[Dʫ<֘yLEAdm|Vp1B &a\dœ}<%m8BgjMٴXn+(#<d@[LKCr|D \Vr&&ٷDqSBo%QH̛Bm$k׀e!ef@#W&yCUTPw(mKͲQdFnC(zOqV,jiR+\&2U)`$S",8=T?s}Y72QI'm|b!t KcɏL| (;U15QY]˗@zgw:țE]\@x$ʼXF!A;K\ؿ8KQwOoÿ/<&tt3¸@ 29m</z{a=b=DohO`<h ;W~W1JG5~js*4yuF8*wF (yX虳|vxˈ9Э%-ɵj+B.tPrf/f20>hqa60?bAdg3aMl^.vR97u?7FNi*~Igo Ƹ+4Aq(LFFx{?wT89ZfnwT}N3lty>>F"DE )QW&-|d.%d7A, O)>h;])h@ڞ:gQM˕n.iG8fu5]bq͵{zk!̹{n)xt{XߣV?V` oO$9b sH_˃>g{gUY"Lzڇ!izxR]/lͯV2NȔ.=f-v:u"YUEwze0Æ'~5>o" ?!G:͞[1}:4s1J5…?H;gJ($Vcb$)5 G ЈC|د}.N'~(L@UA0bc:>؏w[hC^)"dnGݨhN]DS>"pJHu2-ڪ]`$ =iH [M/Ap5cp;JZ AK'\# i؝0IHzрΝ`{}ˆV-ϓPe*3]kI3a[<?"|mG47}}.}h(} T jtiph+Ռ)o{!qjSbz;撽AB̥`h(#$W]z.MiIzT{=Ѳ/d 7cįA`մ2:W1 h0Ia7`sFKûZg2wՙjZ0L~I{ΎTT[N!*ڲ.!? ej} _PWk!˴+@yejkwKR`vy9ӿ;gW0ZBg'>дr?߁s6h}bdCLiʬ1^^-\`NΜ҉\2ւO9Jշ .֬Y0>,VL z B~Y^ \QMae?'e/!PdNMub@{%9aru%MmlGOu9_mim%aNmSnSgv "٧LO9bo݂DO(j"uuE+6~*Zz/K?chs($R9 ^V {:RAh$.&@$WY[#6[zƫ#AgZ;p$;aCpP'ffNH)U6(<F_}mz)yao3q "R%'RU]|Ă\FItCnZC6M>NNL3O%Xsr%XFQiPnlLZDf>{*Ո." PYk(طSϑ ,%/SsO=%^Yn(^7`9_$«b (/A%z!50 M>D= 6Ꞵ 'Fϑuޮ3mܥ`rk7Bࡪ$ցKl;v5TyݽE%f6*C*P:TP,{A u&3JRs ڄL;uFݐa/uՔKjP MK[2>ZP|@)%zD2FzF̩<[2~  zEJ_N)PeIONC-J -z> S Y-An .9⁚+7 Ok>)xhUh-_x5 !㎪-75/ YFK5,q_)9R.߁۹'@B:aD;qr @Dj9&twP܅kk\ڹmF0pKcr!^-^Rv{GЦMDj+>=} ̒k'͚n1`ȇ*Fħф.GwBJDmp1ػTTGQU=n𬶋>7n)x4EḰp_L:=,)Tr ˋm݃28|O"JJYF:8 F6r-IJ V%.?i_aO.m,-p.hriƖd%Ь45;?.gD-{l&E2Y}9(zq)`B?-%{ NAj8rjRC_])xrw+zP̓5oiNw|Xݍ*ƃuJgMKOH6C=`B";64["2j#Pnv\$d )^BUhpxwy}n'Nq(Ot} *N:MXseBr^NjOu/C?C+])1y3eը7SQY  {CǏ(-jȅeIl;T5+B7ug4T<*cz*88HRKxGYcYg zWm/#[J[WUu-.Őp4 #/PejB,qvm,Œ1r:BqCos2 EET3k]=ǷĤn<P z ]pŻq\ِ#CX0sʞBk i84dgO{F|};A-k\Uᴬt4狙jDW#ZֳGwӔZe2q"R~bݘVl2Woj/3^<@W]jR TRO]qhX~ SV؜˹r7b8 ۵^Ki9pyrJ<ʳIk2Solm#αI#4,/'YMYV_?yDUi 9H"~+;}TtY@RA=.f=>'3}[!]ZfhFp=~oǧ `Z puX\}N# zE;Ʀi%:n8jYJJbm禑;*>jv_+WNGZ@w_ JyV</aσ~[[ wR ̄cm3(i_m"DW%p. !߫6n$I%dD iGg륡dOϪgcN>\ljN,y"K*]J`o/ȁwaG q>Ϛѷ!'27S{ov]r h{gDaCP~39|8b~8M|պ-#B*U.Ý΍EG9*lmjB8$ tu0'R+sC +Gf30ƺ>cD5J&'4\iÙ/sfcpe`K&&6Q@ѻ:v|?QRk䤄'ZOyɛaB"pD%`ϐtS7ʋu"T<=R? UX 99FcXq`5Au&cWLӘ9GhC<:;<B5&g PB^BȁUXOYƑU F3NfQ[ݒg@cs&2H(HBFE?'J=HoEV}Zgu*hSw]\ ښ1 уX]t -h\έё,-sp`w^ 3?J~=Xu#dTut6)CFF? d2Q$ָV]²cDhV0#x꧟2Z@i֮t@g'dLUw%E[twGMjqZw]H:){ t[my6U0nֽSeMT*h 7*ylB0ugƠjkm}&eN讞zP4l*!&/Zj'qV->-Dć/ NP>՟=mt2ʑsVK BFsLHgCa\t1)1ԕqSorwG~e/ʩ/g#r<5";ђ5P0H >e "=v772d٩;yܥks׶/Ekޏ&P]ӣ'sZDgti񰝬'-mk EV$3@k˳xntt,TP첮ɥIVzY6޻FLISLG~Cϐ#5)wR[{y r6.4PrYV HBhbw h TR.HF+FSmI, GV+م{SH~^[  Mx8 B]DQN:ȉL ~]tSU^6-wJP_82zx aIfmcT/Ylz55jBWUa;fNvUa]}$cdz dka!'ǔ,R^"'_' /҇0k!OzB V*(vK Vެ^-H*/? G56"tj.>Ɂ226aٸ9ԥqA!t%\s+dn|~PP;z ?"xQi")9oo2N+Gi>#rk)ʂd +'yWحiؽ)@Ġ+iSQ3*,k3'L '1TJӒOIJ?NQD,L`n&"u-8$4_yĐMBV)"FaLbJ?$TtP#u8z8cM2@rEw!˸_=3 q-wYΏU])2S,E %*ћָ*2 >r4#j _.$$)7rgC+/Hb5bR ci2W `_T\`=2"Xkj^]B{J0L (xϕQjpÌvsW⍔|n$@fLXn!KO[I4?;WBS|3h%#@U9;%I[N,mO[HbM n4yq7u3$[h5-ԙZ_`N<K48ucфW{÷Ob6 왪OyOHSS tN*x;?eV*V`1a1N 2^ 8&H9P G!tSjxRXUoJn?C6ؐĆ_$]5-28!Ez|_'{}CnTXVlsoԵvay7Jj*bْ*'MSḦWx9|Mܳ+^;- FԐf .^8)/)c$>S bOfvS4ٍ)oGIϕsr.sdϴߚ@+S4C'Q fb`bE\ҭ3h:'9T*b'5Ye\֚MA/CJgS9|#Kg␙e ;29Rv>] cLNwMY%S<=1BV.xɮaɆVRfINlQY΋O26˄[@@)Kla /a&GUF @&ߚBM 'H6.L:_S|̔6g㹞Ott#V S UJ!ʣSv)`7W '=&Vhd~$G-eQSNDlGrTTq &A1:=C˫X4ԚbA~JKho&3ewꈥA*%)oD3[vLMtC_rK~J,T`l/ IJ=zAr99nU7>Ph,E\;y2KBn6YN.$; ؃+Ie0 ~jvȣCα8CkYgncoLz|`H38 `9Mߴp 9;HXGu[^i8$]ġo p} !B.zfe_۷a7J/HHƋ?=g&sL̼-)>ajY(q;0QpsU8-VgG&-W_"G,)q/-Xjm6UV@' ?b hDקs#!f̸jxŴSnV?mdˑ[0!}7C)rjH﷡+<%&P>`ågwMf4V a HɤSQҮ?dDw`zLd;b,BXK\[3C/"~y* E'"F>eS90OQ]ʖ!<4-r+b k ũM7ױG~W+<޽R\#(c_֛v?gd3E:Ri8^`P8ۈ@6R$S;,i腿Z+qA#yENT˭3Bt[[nc *fFG~i-WgY8'rҊ]GJx1~JRg"LT1?Ti ecP6o?ݒQZuCF]f~bVwăpX T/ S#~f=V"|^ԕv9[v?|mt :Y i@H֏/ PV1$V Xh{n*Y1ΎCm S  ~apG/Or LS->T߾gX|9^䢄\mH%+E$77g*OaBuU k5vt>1NXe%Wx7!}>L/P!mZo{c+L-r7hl^OgO0ek+ަeŬ>rW$^ERp&pWuwCHgJ}i_ɗ)iJ ï-+?P1+n՟j;,S q%Ծ~t_ & # b 7ـ6m~ %n hJ' k,~,䞘sqQ""hªuq3ōiV7A,y3 ;e[S*=jXpPz3 %aN:uqk~I*FxM1 Đ@$} ^u)lIm56'R/ +wb.:VzEwڰ"2~? \Y[?vbYvNzi ;R x pH2 ӛP}esp[{E|7VKp4~ld_9ܲ+;3q9|!qsRΖO c혒Э_c10Rv>Cht +<_*oѐɁ`}C:$;Z̦tO0 )nɗBhq3u21xC؛" z)2 {qїxmFM4I¤ xFPTjR_6*?4i%h >Ԡo+iV#Kj .=ݑJE[)qU> 0S7k*ɳ{}[S#lTs'hqr;^P~%&sLpvZܚ }x .⇊G'?c<8ЛHϊNi1 23t+ p}HI۞Ti sXGP{~Ybm;V yg:Z_}V\XSz+xU:$~3HJՑ'CA"g^: YMy2-'}kYDUsXH(S[;~AH[(qdHRߌΘ6L?7{=kئWNN7 OpM =#\?U^8ܛ]X GsM(UY\>4ZM|Wٹ!g;%ƚX^S @U(O4'T^ʐsqaYлo™Kq5Rↅ\IC_ޓ =XCDɼ{w~읹)[YڢձtKfu'hN8܍K[XH0rONJqZGREdn|+ZÓՁ4'@:Oet# ƐD8TX˞*{Lac+B*tv$3&֬oEd:tkh0-”) ? bOV 1xt=w,Zw5JNC#jư 9k \5!)dQ_:a$+odeeX^\!z.5Ylc>d#+ -'~6,SEsld[߮W |~ #J0$B"A^+:m-*+tGt#D.U@{σq'URWP{-9iNR@Y:ebr?Y349x zDjuc].V81aWߛ܃ݾ..) IdaOl1r8)081;97z jt+D?}`ik"A5@ n#|/'#狶K"TyjHrk6ovX江Bƹ_sd 8ץzhX/9 7ČnΥ8";il #_ى*`9 'M6(0I1\'ii6LA5AiB.\N/n~[I͒x1D8ދcDg J̭܀פ4_tE B`rXoT{U*I%I @SSMɝy}7j_C6S1gxe'@ bAS޻gO"н|EecU7Ѯ'Ф|A4T]yqq E{4p9eQV5ĝJ|xK2FOPkM.\2k_GӌiX )Of(@l@wh;=; "'<_VRa.cVFkб2-wmOx3f{Кxh=&5)M4F%xbq )m _HR(WBW|I4$r:zLbXhxqVD4SBg`f1фMcmvUU*4C%C3u.G㧴 [sMrtv,9oP_`o;呋]~8*dQA> M 8b/#á vl[ Վ^i"t?IfU)1 \K#k)wLϲM՘@N|J@]qflD'J+1a\iz_Oz qT\p%|'y${;mD&Aֺ]{EL;70i RCQl9=BpDda4ЕbT ˬ5bjAlPn Zx򭺗y2ƍIU-BgUS=ïw`pI׹I2SPaPG%G.PgTR`, (8r8dLRsT^o[ Ij5xK lMy3AHhhXj'*@gK@[vc*y6l*CIa|~ f^?2fn`YI~YUE/Ӑ$٧fDK(.h F[crq:;ؽZ,VxbI z47nmqTxXsi>k!<$+)Bݺ0QU*oTjL*H)QMl9]79hb |)Yp/R1TmP wP ZB?4X|RC^th7v\۩Ս`MN2a@}BCgZӒQɭVS%?)kfgΗܾXߣRo!z|f9TT֥OcC $iI|1a".6zExS@s蕍"aUKiR9>b7G`.b]BܢK%Pz3Ic: 4RሼQzț)$_q=zެҟ=ak"3QM.'Gzp=B y{(Z JZpu3tu|=na3E t)hu]S@SDq;Β1%gBu Y b_tz4E)-)-8FM~Ϸt^ m (3[i,:BO)#gF^AZưG^W[$\Ɓa~ /c nyJĒPwj~ Ce>f@oHJAgX޶ $&H\5fO2}:_(صPVD=gG%Pމ;Sj1.67PBe J'sZq>.ȏ8Ǒ3} AwpWn 6I_+Vp}A!E Уkwym#a uVH֒50]¾P޶Hm^yF_nywńg1p2!> v *EVG֞ m gcWQ8qOi@N\߽\O*⒊Q7(zLLHq|X} AÊP-PF^O]ׇ;[ˣȥXuh!KXvǺ55rk@_Ҟ0yE[6V')Nz $1SM.hKJݜ F$0HlA7k`". t2&FUJDݣ9\p +>pʰ&7EuFD2%g nz}*]PyR7=`H5 =o,&lM;F{~6H[?.{#o sSH3C aXB &A%1VW  æKg^ ڰٻkFBU@dI\r{?{ۘpاd&˻ Ś+X^ M]<gkGގk5R=ݼrItv*`݊Ň}=T[\Yf:s;> yMŠa*V;n  hE 2}1ǎ [pkȕC~r fܒP(wb=)<<@RYH0Ƈd+Cw.g (UO`fQ:*m-Զ&a kI{f%uG-r7?Ufc<XM8(32:Mx:N"˧d袭%[v2שk&Zy:MD|*G ~4* g?ǂH%C;v&mK5mFaV^wFJ .Y,#ṀGVx!(MtG|c!$Ikܾ !z!L88H)0ODдݮGd?]ͯ8ASnO_Pf YVR+(?'%-7Hl۩ 4#i]ՁKL/-SNsɈhjitZʼn2t 7oQԋ!)9̰Ɍ^PI ' \H@Z~)*βՀeh )0@n&q@_Ynk^Q(zf%q|s8E:օ$;jAkx?{YoS.#~WJKAZI;a 6s,%LrMkY9Ssvgƕ4~:U&"0C՛9tarVbL2)|<@J?!P^r@쿔23MI*vД4Aq]X=lhӓSFz قbA(6KO6y O[$nK>ڮJoPίMqrubX93ggԙH~r:hboYkX-D*zwe!s4\M : &|<ݧ{dʣ OEAڪrMC֖A8aRw Ȣ.9wgG˝ҶmH ev2xKB8Xˈᵌl5ՔߍTPoׅõI+Ae\Gd! ȳ K7\R q(+ۅcNylcffb7빰S-$xR#Xv+f۹NKSj87-UhشYFTy'km)VA-Q|ȼ7z| E3D4}SM)[Dv bI3-/_Ў48 I|S>v'v3-rb,Z*q4QQZnc@Jr4zhuU*2n15hAPCG#aq~U$fxM$Ϣ-ƈ߂#[_=mMuF?pNدuLN+>\\@^qMjyP0zf$MTbqd,0ڵ@n {mmU]g:O4U䡗7)c=EO7CCIt 䤾Ajކm&WF'9&;ڭvӾM,6>bXG PKa_db+Tx;ߦxL+Q] Bh[LjEfe-J2v}!#Ґ*K9XGQk+ ?*;Bz+O 9wĜ#D Epɍe'D2;dɮ溜ym^FG*@x0$em7;~⯴>ClyD'u:R4WishP$xm΀s'@yn|ТNLX8;%$`Wh.,9_YE1-JHr-ٜG %R&,F;D@\)g2G퍓K| ~ޔ] 0|!P;d}|3ز+@( OشJU;iP-AA83j}ᔉ3q* {Is\ # 8.qRPAXnP ţɢZ7Er@ULPuP{S:% La~&X7 ]8_9\R~K~ .>k%U_R:VCmz(KD%h GG^1p b>+5lԝNVzxB~L;) (z|X:~\:Ua =~yM5>TN#lj6$sm3iyr%2EQp̼ރDg\Q Z4^I<&fഷQ'ՒyEj0OZ]Mtʏ0YMtD/#o,r0eSא%B70P|&'digF{| xܣTS~bnXG;;Ys6w 6ڧ8߆w%NNm$ l"Yp39ԚT=brKt#/ƺ?+{Oք3'#N@=Fj+#V͙mAq]˥UC\ש4y3 nHđ+fDOqTZ[:;#m-./#=+R%C| yn\b!NK,Ky:Pe-::U4\i{q]lѩ*=#ZC: ]Y@LKPh@R6r>_ !,i)i{7v<.Z#tx7g&re|"Ď @?%=Ƿ$O N_,>k!'A* b5kĠ_>~t|fzsw.y);i ą࠭v+)Ԛ漊BFܥje0Q_IFvu@k5?ӅT -Ϥ=W#c1VAۛDI8m;a3![[cWV,(rm$72(Q8^"d7vk )w껇DjdFՑ4zeonfȬPsF)CO`snq΃ Lٲqrez\UPgi;fmu ܰi@[wrB3GҹN1bO>rjQrb|:Y+*Nl[1O~wP\ؕN3xЫi*܇zlaIBW#[TA*dYLާ@_dTdc8~['DHa%YsʳeMcqYNcAcMT ,B) ``}+7Q@^9̗ :hoCŵE]PL(fmkPқ:)WpoF0d{t < !W[ B/;|V#gG߯ć]EXV̛=ichd>Fӎ~2[1K ݓJW2G}fJv14:/뜑R nr)ѹ3rE2@5 /G3k\7#匤pf9\bvOY%<'UBhs:4+uIcUٚ0\gW*7N(IJ~jxig kq] *2ÈHC8t[8!B6 4}r! K yR_߆u5,͵ WY^qz*n0M^ީCo{ɵha&r$NMz5|z!}nہ]qs ՘#L(%aF{bp͟'h(8"׀M3"̃.q}fgBvݺ М5Y4:nggIpx);1cʱGFXLAP!?#B? l{% )a^>~,M#dE•!yg3?֓s3*j箸R4-e6]/ dANL:ZerSpr[E+pFGZ/%&m̈́'ZoWz0bqO_{W1*Ov$6k>rˆlm aD-rJ^RpsfR)?=ۑw]Ƒ&*m#˜r"|A )1/1$5ym 46Qxg6~4-e8GӜ8_ji!68?Dd? N^Dl~difpGYi] O >.b5yu kdn=DL\{b_=>xtR9"(۠2TK>,%ALܡe!G:4pڇ 7f1&õ4!m[5BSH7w*N62L!:ag뛘Tm|_[V{6)^6@(TtsۛuS Ov[`߀L}k \fam/NT=..#z1f~w09C_p4'T70Km-- nf`4$1|dXL'30 m[:54aӷNIMCu GW:`Im[cK_y#ˎ;] s[e(XmYUg7cV6TXgl{TtzMNuR:C[_"')rjxt:FKËٵbc;G -='Km_&_u-4nMg9< j8!W(tAqW>LI2]Fx7riYDX-y4GMK`a L!aZ3>oLs}t,>-PJ~#-e(^{BCr1j}.Z1CHPŌ +~&1<@`=@1]{#+ff,#DNܔmh՟҃ūQ=Dg4[kRD'č vܫwc )D-s94BɵRnN6iek}Dn7պYyfWWZ\ݽC<\NW9/{'PkQbo`zQz :z,6M([zpzIXi(K3.⫩fg0$z Uz1UH)`Uv-^%W(~>vM#yֶn=w: AȀB 9 h/s3Ge h%Wʰr0̺CA,kqoQ\Bj oR[.W,Gլz.~X{ wt/2,u%OLú? E#yRraEO͘P1XߓսuFv`hVzOn<.UuN $tS SwLKoE{)D\m6cSc5*lF4+Pi@H2d Vj GoNVc遃Żk&L=zlr*;~mYa?m3\ =InBʡ_ وytqiZ@t}MK6[hZ;HYU>3y۠swM"Jӯ,>_r4*Ysx6JCY~ǿz=YO8ZÛ[AfXt:j/r%D/]6 V޹!{iqUES.p{3yC`|M80 !wWuj 낖lCxYsՙ=늯fHc~V ]TxMK2V5R7OM $%֢[fKV00pV< }:tN>bxC+wۑ#'|^C0P3BAqi; c~0s1f][!06 ˇG3wݰ&Bgx֮n] /|"-+8t\n( mY| {bh+ש5fkO>CR HٮW c;zB 2ŸUI-do< da|۬:!>[yߝ3Y`Xbk2 W9 i9IsxXQ£Lt]LB!`9̘ɼ>lpZT|xVfV/ Fրoz \% RȱB>ߜtS70#1Zc'h>Z I̵~C\H wnwl+4hIrޜQmew/Rc)mCs9m<!֡[V/ۖg[m84YZmIo>|zj/ҼХȟ- QTRxml*apShPՏ/y%+ćQS"1 iGk:F^ Xp噎,wNǙ%y!%u}#q2ECihz]gͼ z}S m\7)YKI1!h!vл*AT\%ji,]iViY`K(ra-$+;m?;KDXtd E'2/yfEX'z|͜40-ÙGzg/A6i6z/QW/'SJآβb- iOENt;f~5FͿfCAʋv8Nz;(> kLT Ge𢡷¯SV6eJ, $,OV6{}~!mr1 kwo=8&oVA TEu ` @v7$e ;<-ù1C͉Ul 2{^!+ ',PAÕ Jh-(,2vU_MHPiɟyom۳趱U#1Al9 {&Pd V`(JѺh ԷG 4"MHm$k|W /Azvک.r1Xi+ \O=s2ג[@cAQؚ%ughs1SidPW犷{.'y dA`he.Cc -TA $auXj7_/Ey|Sެཏ-)N?+tsDB+{eС}R*7]Ϻ+{C G2[@EMյOP-QVʋRq{iћ `)}{3(DBeҳx.FV+ xEJN2|i\JDz-"[nנS`HS"M)ϕ.K`LsD@ikV'i8(B9N#*|.{C,gBʲo rF,an]E#='UtFy!V9|: w>?h:i;$ˮΓ$_j5Kjj-!*L~^Pk4cI+ ?4Lv1uW-c5c]ŸE^);ν9g$6 +cmuDϋY^b[ ى-u%bïjx:*v$,~c<>Vci*H5^:֛vTb=]sUV m{M:'k"\@NHf\+G6A8Et?Sʱ聦nGhMA5 PmAX(ԟ&S ^qovL'Bd2@5UՕ*LL'QRՂ)<IPUH4`VmaTx dWYj(ּ eG5l:}\*h,YQX{"p񗋌-]>H?Fmuh Z.kE5OWMTKvnbrU/_Ai4a)ƌM M ėꈠѨ"j;83Uit§8 8ê!jt7!&h ~1F[bKAR 0Z!VZ:=Z.&ձ 2>H3 4|`iɖ}8=IGl؅~#PH6b0%0 0P)[y+~_t4/Eg +Fa`?V/ 4Xu훽\SZERwdVlx!ȈVx +ݒ07.RؕbRi~s?5Ă7Xw7bݤ*C]?}o&DřaULƋm.`4 @K=kE``[̠*#_"Ow "5;-23C~f")V2/7 Aڏߎ TćFu!} 8Vc%f$KA->'Ph$yNû}`/ɵOx v6v AIM~ƛGL^KT94 >ȖJD{{ :*}64\m 񔋚/}>Funw}ÚgxlrR *?4֦U *Y^h1ө?A4-!<:eSڃG 3(&w:d3Mha9yLi;ϡb{÷{ QXbEs-h_]1߫Etˉ+Y&*Rbd0iIVbl{g#nƤtJn&mOl&Kʁ( ..j HUUdFu 6AMx|k ق%M^$C:$ Q=zR4; ,Z>xI y*qSN:朵 /x^L7KR5MUnQlwY.'>J( APfcOy ü[wLԥȍTj?x77VVn_S{%s ! /5bMZܲڱ[mѸp xX ZKwi쎢gZ(0lZFWԇH!NLc/$68+]\ Fq`45ݻ"׫9cT\aqHdp{T`4DM] e1myJS=0֛Qo{gLBz +-m~> #bE!.CZYAHM:Jo ᔆw6lI M@w Xt6y-mm2b+R_Kfi߉/NBON 4(=y.ysdEoOJ4r9 H#۞k+H4~|DdQY:1Èm#mz(&b3<=IJ_$NʗA6."\lL*Ka+|n0~$7BX[DS$XB^&WD) BK,ՓN[ T]J:s>iig7 ^ %ɬt?nd'GB0 k[ɗУjr0{!!}(K/hQOX3; @DB}=JyIzojj_ɿE5>vSŧV\I8Ԋq RzUN VM(V9U#6 ‡|az\*usb_0^ +Vݡ 2LHJnLeoyʐXؖytz&w+SM{SA<<0nyFaҩ cur=@gyo m[ɕg 5]Mi9viMvc =fɜ ћ\˷֯G9̡A$|;fɚj*0_,,g^H].p閲_ ?'V ^n ͺ=us3)}gsC΁pt@kp+ѭ]jJX:r)!wtdV/oI+s6s.S E*0=w-gb- aXas`)$ENo= )n&VݬyPRG[ I{=.G:#!Oݟ}&L'KgZp=/Pʸ:nrOr0/C^Wžꦋ7p}48s{ՈOz<[`C։|RD^B)+(#LӸ*BViٝ웥!==0 ԍ1)sZ}L=)0'*.qg7&ǍLf'ɐx8 QTt%Z7{9p-m_r$4mrAU:41X ih8{҇Ԃ :Ԃ侭3nߨb@3HF%G뛙oxxdFdW.S2S9Uw iio.0.4ARЈсh(ܚx-Q;6- 4Kv f;4u*OL7 ~y9WflPunH* 8ci6uB-"rK{'7jCQE`qLR_b4F=>6 (be*3̍֏h$Kmϋq3͐xޡl'X:##lN"kX$kE{/Lo|L6Ё~#,I}W Cw,_Y"tn ҦX3%@$n9n2Wҙ7p7J v2gM8|NzYIjQx R(#dt]* ڧKXY_0tp;6uA:V`eb&~X {&wIR?Ӵb=PoVG}6r曓"J֒3B4FKpF-m3 i^oF>ۋD \2R1zU~HM> QVC(3R]7}G3KoooUb6kWb(ׅ62HU<Ӏex\hD{@^5F0y3rT! WNnD*7 85WHf>dkrYѐ{t7@ruĠUf+05cCK{"!+y$ƴ3P~K BVOO"Q9: wgvm!<~=b;l-T=!k-_}RϪ\<ԪC78xE <0ȹ+tR703u+U:2Q[]S!g8Q4bfV q{,O#s2WRMǨ[S1Ή*0O9' {0]%Vz|lPh$ UgY ۍ9BA7}/9O9RC! QLd1twqNRU:yKpSvIJ@'S_W8grG|ȁ)S@?)2ea+Х''!VfM46Gr:I1wxJ* HcblZaueM\>MEK^(w?-sd[د2ayPn3c2x[r>Mܠx,O гϴU ꘨-E%S6BJŀّR^SOn$OL޴ (KE]$1v1f\ ĸ7omЛc2*]t.zs3!o dw)ݼL4mS -m|_hK#G|JŻZӝ^PB]FG{Pbq]O6;HgˌK {S FBYᩊ~"jʴO# >U6!qpTߟR'C R%S#?3-}p tadyOh  K_."zFqU˙glrp[ 4jF4- v0yV}Oڣ94jcqN@pưudDQč>L%QBptU}Tcb] "Eh&4AT'%|$-rQ°W@ObQlS&+YDM:Q,~/ߘ9YUypRaGuAKR`^%sř<6 7N -1O pDـQ ]bc \}{* 9Q.w#ՊaV#[Ζ5_2S phm YՍQW8GL4 k68NWrk\y`喗UQT) /(R]LȔ2174aA%ȏ)ش(4ۿ5g7_lL3AEI]~8oSP%a kЧw%cdeQ a5.! -~u$$k!o@n@ֹs},lX26⡮XTؓqGGܔ΍v%l `/Ç[*GVUч#{2߮ID"=*7wTFhܵN<-gY,v!#;-Hʒ?L}MbNէf46W%3wz~ |} Q%\ L~/yrԹ4s"FBּ6y^ΙM*'0㹎 Ou{ x|%NEo2,jm8:V v1><z¨^uLa9w4B|EE豦ۻKm Q^ Iw}I@쯟m 'h[.%MƐ)k..Bb7zmdCؖ-VY͟eXV}5 ]' `ZI}=Ŏf׆V bLjP <"^fjL:`Z0SOHxӿҽ]zFs{)i(v%ƇwmVJ_liz($~RG- )CˋH7D1Tf53! " mbt%zj*6px~oQsc jO-*=32K_N.)Au?aI\`#&<_k5vLв˻s]pG:+8ρ y5/'z+Afl 2t^sw^^sG\൶HE“S}f1J 6Ej%_<-p&1@D~<͒|ۦlSC"VsYh\&VJG8[ș&Հ%YCH(m^ #.SU^FcN@M43 WmYJK~^ӟr (+ >.Ҳ]"j3#-._DGfkLg|\ҧxbb-3VVʰL Al7ʨ(t;YDe_9cܻ1rB!Z+ϻ=Z|'{!}7II&I)4]lz{}5a WX:7>C" .u%w;m\۽΃RȠ k8g}Jq ݱ[ݥhZ W]aƽZa~qMͥ X,\ u]WڢJ/B1}󊤍I-odf0 sTj'NIy0!rd (-t KF Bi;qڋU2M][PbA-i &8C-YBBJV̾"݋~K)o(Ou B55HE|2:U?.mz&V/۾T4'%szQn2&S0I4y p8}+ Ych=RqQJ(Jht=eP'W~`%h KhEe{I . 8Q5AHw)P ǧengh1:AiZq(*?CK[wDTDaAʪ9? @,y8;WɄ;|G@܃u`ޙ2&wGe$]}tś Ȱu4d#q_St^g?68w}.X${=:QK`sB5'[~$u6&V$iVojm+Gj{e2Ӌ,pτmH+B5q!ARj%hд1s1:UѪ }1b}@ؚSG#,XɂQgClgY.3=_"Sb@3'a)?EEӦjWӝ BZ#@瀈[7i{ w!j4yq TIӨ$8FܜrkfW\ 7&={i 74T,BK:CvAiHG*OL3AdyXcAP, fsX8?%uf)*ƠL⮣[[daPi[ ۠LMSW o& IQ,2j&BkpBNؙZm pH~BF?9N+v?ʤ1!ZKƨ ClN̆v*;vYXZE yYfks o `O  d=nuY:(fu0(gzbukL tqlZXǝ|΅),\ %@C|Hд ~.srMLnˮ 9B&'[rL ]Ҭb@̯\fsB*Q  wsg^$'<[͏ ݸI?9U{ `럁A&W紬!þC0bɡ9_:R1ld0OYFSX5Yf柋 zXu%'E[tF瞵 #KQ[,=JY!!a$EhDs߀b'JyӁu+0Ǹy T%"87)$H#6L}{|1PzjY eǂX[qU#"/F/͢dža^צоEUɏG.UBF᫰Cr"AaWAC&=?Er%S(?\P'} "ZъQ\j X0R ]Ń:iU8Zc?_2[%Y/k8~'nK=;?z>C`]jj }%R89 ZWA1AOAez^s tu=wo!!P&5|#JjdI ,uT:{qln.;ǹ:3$V.=bEAizbZ{X. v!.;H6ު6ɤl[35t ɩ#wrذ`˲1Ía{3Ei9q#OCFpLRhY#J. Y)%GKZـH#ou) .-Ef? !4U]]yȤx>NVvdMؑaKW2 }"Pc_{}bj<Gxeu2;)ˬZy8@EXDpuEt1U)[m >OAŲFXG+M+>}GO=5K]X]>W:@  ^@*; Hl#;7{wX /@ܖޣIn&&gxCF[*4;3a"MBЖ'ތ DӝM :O~8?_6qK/9ܻ{ulMl=Q:TRr,-#ABV)q>ϋRrOC>"{5V%&,"FcQ8r_`]s@,~)kn^{+m,>TG=Q9Me5n7 G0W^&uom)En9K=MCHJA!!>?equs*1i>9SLk|I%c=q6ܯ%%w30 faSX`Go-3"XZQT mSx#UMZSi )T3-#A*GN$ cf?:^NYP.ڲ%3}i^lkx:oSx[ \KJt:{5~M J,o $X#jFɯH#In] ^>Li0\=5#DT ' C~. 2WL#:4"T ͉ݰ?\ӔaVL8H%p5abU$1PrMC0?B<mdT[jY&U rCQfR_Tx~IC(9S]ڛ^ >|Obk & ti#^p7! <L!X;}'G7:z;Sn7#4N&lrk6 49Tn%8S+㿂mӡWQT{k:FhCحx x~A8/>ODs۷N2ClZM:2 2|LF\w4bܝTvz?.Cq/+/DA_r(3t ?wJ ~sS6ͣNoa( Ba:Ӫ 8~i2!=V1ª I-V}Ro3+L%8yWst՞#e{>-'dVw34EG9_,et@t$%=\*0s`6ӯ}+G1!=BŋZ;Amt]XVQX"M J{x%:E5FJrs"0G{ u)%>32;xVYgU(v^a&nS_]6,;{yr@FDx^%P-;= ֱ{?D@Q,5KJL]~ B:q$ei VNcRO[ mnć1yP&iĪ'X_<H}"J j`oJP7o pZICR޷_=а EjDSkWu{ R@I#0Z2Rr3۷^ibz]r9nP=Qّ0uլMt&#L`9t.}%/zt7\W§yhgE{DT᫒ zf5-A+;-n<' !PtjlVr Uw@QqȮ9ʇA^޺5 Ļp![L|וUrS?Šs e) /qiIȬYRJ<`cyYTBE{ct~fy=_U7c6{rys+\lgƂǝ<N; C׳H1_Gihsxޭ!`9bf'ɼ8&߽giMKۘ0Gtx=8(4iS/EI'Zyd XCu銑 WETPʥp?9a7E3! 1:ĮCzKh?T9X>kPCpZr>=a' h[ _ n_g6U|K =dVYu۬9lhd =O,rTJTC'`d<TI~ Sn7xW}#AZu>Y9<  5$VM}ԙgF](.xe2YN>FuQu;Z Mޏ5%2m-zRDsNyF(OaEWap!`1y-n=0"*RJ|*XYUG\p.sjkmOXZRj̛vtdBTg)QK|&ݬW)XUIJPT*]лq"?k-x uxovy6VLmPLl QgԒIjY+B9?1eGoR&hٕ3N-ymI'Ty#2T?WgdcxTR[}R,/dc@ϱj/mf=5 pQevu6:#)zs>l!QO{ɗ*c ·"8?YA]1*e0;nWǯG>,^tAo{P.HT?A])(]ZgFzgHo2dtkstMA tJ&rk`Ao̜eܹS®!yaBʡ )KSLNyvG27l`SlV suj;4 q6JVّ>sc[:iN9JnEd!lUkA="}=Co>a{6aG\xym|GphKmF%큓I6+T2`.@1}{7o1& 3UbBE&t@]Lb3,f b 6dJ$g>3񹹯@CW4U"R_:bgP=UA|x֣@]F5gOV% N gEEMD VZOX9}R?hy8A@ Y@*Pq-DZ}Œ 쬥PW{eiΜn)Pe  u1otʯo`~2}<}UxuΠ_*[*q[۩9p%Yt*[A{TX35}y<[,ӅϦ]Lkr|^ӑuMϐQVަc- s4|aiLb@\u.b1\BW3UkK@+T`?;H?Qa^N|.Ͱ2*~p硏\j3;*:yޱEMr\%87CE+רT>Sp%̗YI)g ^ɋ?Uˇv2=|κIAW=&J,0`)twxǿo~ }}pg79{RPa1n4ٓM4rʮЄM1@<ΈFf؍q*6'XPqo䛩`{I_3 zaʅ>0ˢ}> &ɨ65T`K v4;jӢ qLՐިe K7-Qn,-Lq6CxrbBV*N4>ץG+s\5#Ŵ:՘ Į<=sR7x:?O`nrXXM P@؂ :r2.aDu8 ƲP&F 8(;|蕚 *#OEtt/gs|p^9;[8҇CFN 2}foGCoOe:.Ek620y2<[~]Nx[]t YOM"kXQ e3ǿIxjkpJb!(\Uug_MX+?w[iGEH+dWQ:otD6u=wØj/zy oHgj;m:A4\ɠۧ3O]Aꏀn "dCWQ1 ;652\@oRII"TkI$\O f+8w$D4},*@ sWbV!xBϸ(IS= ̯ xHd)qpk |6V 83wuZ'M6R̲FliƆ4ۈDMGIBw&@3WTèCۀ҆9Mt@p4;hcǰ_-S]6쿔#)-9e$\yEOAm*c+}橝LETw\y|jm0aLCY<4af1qLiu#hEp#"](ĻʼnMTUDOٞRܾʡ@-SgH|[KgRz#F+ ]KI Հ4&ѼR&v`+DSe0 qc=`\8|/93Mٖ-@]"gX7uz \H>򊆰oQRǦ[kwŗ 9Lt䒑$FξfȤZw\W2.Br>9ʯV[ZL,ed72 ku{6YjVp9|Xn%?K)(% mЙ wWwkQv XG.nˇ:9XmJ47}=šFKƉߖbNT4E>nhv#5fb_TI GYר`\UOxdqH=|CQ,Bɧ@.ʚ1ߌ~8Hb'$Ci 0%OPN|jǂ-RQ,genmvS޹[6ϫTlj7i^ўz}pooN@`RFrȜAnh[MC%϶@VNA CG5rWTOޝ^(ږ"[eY=! aQ~⦎ݘ6 hPPab~F~_ƮؙkVZR<%{VPy4c #{l՜7FTHDt73?t0M&H.ŐLFVJ58 Jg=;:EzvMfcRAi/dO ;Uͬ?"U6 * DHȕ+0fjL(_Ϳ B1oƨxB]3dW>H鰦]$gF3WïQ7Mv8eH锓%;ŵRGOxo>DhAi5\d %䖀W2 %v&e `JǓQa^A o$Xfl]kHqd'ux~Sm_Ĵ^F+gu(^TKKDm@z]&)0>< &| =Wv0c_䧁ſjX2W&P:Ao&X`9Z,l-TOae'jJ8%;:S&ʄx9UӸvR3.s TD>fPU)!Ӫz^U=z gY(ȿZ_@A#)-28*!2Of`6VJD;ΑF'xj[ BT+ZU"uɞ 6S9"tum u0G˜}My˜>KE6<[1l:ekNd\o0vרvj@նv3wu0.BwFrb~PGLx!1ɤ1ed|"?[rwhy{ڧ2TPrahDth9&Mڂx< w~N9bfpR_Tc\8.?y@dKVUTpw Yo%JReS$#ѕҤ{[! Bj^AQ)Ñ~*I^Zk ^KF<*$–bX{=%ޥ,[ Ehd+T˴O(6ºWR4IQFnE7&w!4Dtnvg8CeZI§Z?پWZ8Z&6eRL҈M u;FEj/fS]rS4)s aZW@*ǺjoyqpTdڎ&w7&*pF1) H|DRnH`<|mH oh\Os^NluM,iV,] {Z(ۙs?!Z$htzH '"4Wc?Ӡf%!"7ߵ=_LD976lsR*TËnl&<: !o}L&Mpŋ+pcD9f$J@}n<7{.Vbj+M|iX] 0i16I'ոcG&GsYDk]-$ؽ/oߢqDқ$~HG]8.U& vmϺ, N~ƌym4gzGm_͙d"P=@cT>VV+VNsR#WG: Hz ֺ/IpGE]2QAdw^Q;Iq̇b9Iqxd1_|VVIJ)O#IqduL}.< ڙjtiG7"tȐq u3(guQ(,@%@539asɑ;ٲexd7k>olXMLUxՇ<=ODh7eܲ˨ D6roJR_%E `#AU|pІyx/`|Jr7ЦuQJ^@?] /PToL_dSi>@6G?g+Bޱ~ '-S1ejZ}s_+q$nXy@Bt~Xf|/;1Lψ4 _%8(0_rrYS^|gP^ܽV]4-)x&Au= Bܒn4oCp*bPbD}b9$/3}B!RKQAWO4{77k 2}̐ \C溗yL )G=BZ0 6`Oj]ͼ(A @;B{vP SXT8,8z&&e ?ށنJwߘ[K%)ҹeG/Dh |mIّ CeЛg,p[(/Q`qAsVMi·LVK=Z;~2&$;ⷥ6}.HIѹ\2\mE  |E6;#1GKw-h(q(7\1@D# s߅63}^ĭdz;'U_[!i7z 4\xW+)w4/ӧy3>:Ǭ.W@8 Z_ū?"ؖݹQ X04OT #קO&H 0FXά ᕔ-\ :&C{菆ˁq%GEf qOQmO46rT23ƢdJL\!"?)Mƅ}_/?2E?9ƈ*śm@ȞZҁ2)MRNLVD BN ÛѡFù)D` F ń2 Z8imz$?k-> b((M$yQ=gP.>3 3TyLN=ze ~jݯ! zĕC`kX#ӨU䛧|7?+f?H+:c3Odshe$ lG7}O B(;$FwoU-qs s{F!p7nIϗ>U B |ЇRht2״_V׽PZZ9Q`Q'q,s@69C\U )>ڄ:lȈIVn]% d+<ACKMbֶ -ԉ F)/5azdԆ+Գr1[SBgwӢ5ֽW@+L6ISK༵%>~?`@0 č Cg|,kK-ߐ`eC*rWh v% w8<xA+q:k/tAO; (,O$3,s1UjP| Ar8OH$g-93z2jsa\_O*r:1GY"N.u!nawgNF~+RWh3=x2)![3FB`B3u(aLܩF2>"QY?mx`\~wo%&T S4':r%C}Ҍ9 $@0Soh ʌ[B3:N !*om؁䳥Ys<2Pa SyHjSթZvr(W {bir"(W '`VOo cD`E&`3pɊA'Y,Y"M>2Xe0ٺq4@ǵXa? }!<}KCU`#ϩJC>2,h=9٦k:NZ⧝żs3[ }HG;%n \E<slo?c N<: չ{HqyS IsW%{$# U1Ũ_ ͛]_7ߖvVcd~|z>=;?MrD20)V|!RMKCtzQ?H6-m'`4_"@:؀y #ߣjÅKwೠռ+{$p"JxaĢ 3_{8B\ ܈O.xMUjqySboGSGh)X|)4ׯ=fgl"}VR 2a0qJñ3\Pٌ3q+ #\@׼޻| t>KNtX:3| ݩϙs3b?8eCHs λook~xV"S }J\k%2t=_!{AQ]~.˥Ʉqۨ# d9Sآf&߆,^X7kKWP,/ؽ؏@ni4-,E_!R421"k[OV Fvn?T+&#Y5f#D1FT$wZh:50s(\ O:ǾyA݊zc!w*kSclzS78)&ϗ?q WjdSάdv(*|h R 9g=zt.xZLٚVmwԡEڤ4)@Ah[cG=f@Pp22PtE"Y \W [,U,r $>/5ἡ7׻M>6sd,d27;9$'r|Ogl<~&QzAʽc`C,Iq`p$`s%:`$`O8/,8x,5ˡzKFry]YF:wJm=dٚ_"Kt4*=Y<3mg~gҴXBSvg#vK5EBh0pF-$F0'As> x_ KUrF7WbvV#iJy噹o+\vR3[i\ ]iL^'4p}%oinb-qi#>V-Fb Wa2$89Y\PqX~Du09yғr!L5HΑv5N=H3o}q):pJA#dI[Y:WD/n#w//=h9[[Q*-1ڪ̵) W7V l2i` o#Oچ.%K~_P a M99AJDFe [yܮo% wVRw'tZ6,VApփSLuɀd^1P $aD2S\CiW=銒WWM:+ׄ\k*a%N U=鋛= 掄ߩv'v[dv9(S3*-Kܽ`'DlXвHr-?ݭLw9qL q1XR- gh- 8KIB>4Xv 1²}0RK~'I!*?l{`p\o_~?o@K _4Mdyi"$[C$LijUahmcG-NPx ۨy9벡T #Xd^sI IVhܔ[BKd7?tW^Ի}4ZxQKky/⊿ixw'2Q BMz/i%ké|ȟ=%d#sSppR{ #ɥM!ŏ~;<!M,B*eT> `;#x ɭǵxkJiOuj2;_o8_Js:iqEDKr4 Q)4xCݩg7p0a`!%+|rv2M@F$ 쓬K L? ^j3Y|WÜh} `VRx@=Pa`:E# UF&?3봐[z֖ a-ٓ0XXX1QqşQ^,( DO#Y'*&=|8"хom)Z놥Z@i`~LQ݌Yk!a] zMr,v·9L%&)=K7>C7 Kư j0C11ͼ#|q )3c/>=A?&HF)%FXI2P̔4`"dxjEzXLn|0E@{^98 !gjoD Vб{$﾿ӰGG&oeB9RVjMmvlw5z +>57:u:/hִmUaJ :1fY$%cze)BM8.=Oq'aFYsmAb~15m#EZ1 Ĉ0"z5ZW3eaPqYU: m!ṕHxE4P,y0>+D Ӑ]h,MQ'㜕_F]92zkٓnz)̞ 'l(c@][/kq'Iu ifMהB~=msŊ5R/q/ఱO?GiAR}^$5F@dKcN|\FFC9"{8|%deɩj<Ʒ5ǯȉ1ͦvWVv٬8QD! r#3z|hw-gtAϜ;y at8 #֑ۨK㊣ `euuGa!twY]wz%B VSP4r9I>Auʶ3R)R*L]6HУs CyMP, n TDȢ(}]fcw>-m.{FE\p͊;kA&7M1duXZ[˂hΞGOv\,Fx׶*]^ FՖC@/@l_imإNm'"EhKNQyuBk2.5Q}\BG3s<)EhVv~q-r'LuEzhr$%}:b?HT\d{=kCz])ctDaUkjoyxz{.J.[PzEϜ0~7tօtřI[Bƍ a7EP-u"_v#}`]u]|x"cut;3\F:r_SO}|l-/Zq`2-}]igL"c͜*[AI9q_>=hlSCG>+K[5=[x͉奐ȱt }Xg}:ˮr[J&[6 ‡EH n;ՋB _dgd驭 1LWJBu+\K͉h%&Xs55OpT¥z؋C9w$>K֝{*[bZT RGy"όR?'[U _g;8EPxU<0 t7?WS2? 8ʛF}=bg3KOmQ~ ^ѻ?+fUbR!cqbmD ʲD$~ |?.Ԏ0\QpoDbW&m9NĠJS/U&Ԩ]%?Pۤ_BBt*%4q8qJx>5ψysyVoxr:ZQha$T\znNF/ѐպipH`;c+e#T(,r3S"5!C]NyY#@iR0 J:~ #ӓS@B_UDO~[w7.P uxu۾m5= ?Tp s"Cs4lb{AE-e F9vCN1*K79 8RT8DĦ7=i_[֧{7TH|lpP0;RBӆfJW0#UFCYЖ"Oi}9KzzBPwXmһs)̴pJW,{ G㧻XxW7-T<3[Eja!i% 5!`!KFE gV 0^lS'b)0 qJ ?kab=! Kx7θig!HF@VZihc͛(͋b*^"B*YI݆t%Fmh׮P7Kb hMz K˻rXͨP3}r[ߛсm9Y`yoJP901bI~|j5۞X>)荊S T*{h(J\QFi M">Dޢ dL6Îg5#C-97kaקy'J; v*#P\wE4qAʂB*jL-;1ɾKgBKF=P2+&/-RpR#FA}_#m!P' ]_v2~-떿IA:Bxz6wmQgӞ[$0OקxlI]d9qk?vorerxk1w"?n$oO=h≊}z3A1Ⱦ ݨ=!P4 ZaY_>&CCq^8i#3U UbtFMNk\\h+~ibdfsnf(\{Q2"1ͣ\_Vb~!͂/RYHzx1u~mqfLSSsvA~4>EDLp&)K՞#u~lF^I',ZvC(j"-F@j'R-L/4U'ZMVYqufl$=ͧjNv<9SYC#E{@EۃڲiODơb͵2%eVsx 0e}ǎ3(A\`?z\U(:)QB$YxNg'VNddK?#1UV@yNZz1FƢ3/9-"D?gOLm"ߤ :X gb0s1UEEB$̤]Xs^hR]*X`4ȿLMIUaS.OJ}!2؉|%2.{"ܯh^CT}Fv$:nxnW*vL**d3lh}jK^1~I$‰ЩN:􎃣:j_B:#VΑq\ku20{_s1@}U^%gj>8_VIzG:)y^%5V\;l50=q.`[ɝʂ7m|"Pnq'ɕjdgi~)ʙ)mW ۔3NGg5J`G6 'h(fl%m ^UnBo4AJ/eżgif }k&"G&m+{{wS7֌BD/j ~sj2̋%hS 6^66"Be;]@Q&|6n6(yJ~ Vݘ!\\յ#bNK^J$PQ&/xceVMhyq㒧 8%=c9.F2r^FZ(]3+7@-aĨZ1m]1]xتyWN\š^]ݵr0WY=9%d6$;/4[ F:=CYSm2Ktꩈ$drק29x-͡R )b,Y T-6}>)]i<6}KhkWrš]J>L;̺ޝ)-1V߃Xk7o#>kGd}ٔSa, SJn5"!y!mDǞcf ~4,h = '.x,%iNSCDT7Wb|e9{n?Ą,9j T#teB396YoZ`Lm(=~L FMjoʜ0%y0ٕ3 \*H/X~bmR̶9ؗ$zҨ*A<Iu3./$BU#L*t ȦPc{Ug gnugpDq=]z1m!eyڐ!J0}2\gk"W]-^@ x8FW箏HeZЧLuާ!ew j쟛u>I7J U?,*AN[r (_`ޓSaB? yes0 ^j_H9=&9~[C׈&9 ƗيUxb"N>w3187`G!և5r?ؙJ6Ϸ_~ZȳRsF5P\Chi8R)xLhЧK<[d0h=َ$~&Rx%qc!Fm6'k~M[p%,Ho k 7gL[޳]6zŬa~`zkͮtwro"7v+.PZ!\uWB܃b%YJ)^M OO1[3VC)| L}`C  m>)kv[`p*| ԋ!zR8 A{;5n./(&ЃcS0 L(c&.жjD$'ÀA;R#ե]V͋tβi[g}"zz%gxt,HdZ"JkM @a7AUzlB Did.|:W c._\Nl(\PMv_)~WKpܔ-EQ٣.y[d/+ᓶY|u?sx׮`ƏqhW-i|d#ʍ r>UE v"4ί_1ń91']fXܒttr"D f)pOvOQ;˷t[P¨r<۾7jAs5iv~8snFہsSbbpadͅ"et)+>eqcwLy5Р |d~|@!q N=3W)04%Uh!:w{}t7c['D*V) p5f#'گc?O"77:5SBV)vqq$Kb r쁻4(MM2NDJTizWYjnQ{3y8nQ*kK?QqgeO'JߍZy=ɨjU{[Ǫ׏xYWxʭR|0{& "{M͔:²E."d<7A8Ye#҇O4FOO5t? >7ǯbR8g$'c{(+^$WGt26v;@sn[BIrSNdd!r~@ņJh6f قU҉I{6ȁWB  FNh:oꃣmav5ĥP2ަm IZM֩'P\<ϖ#[퍽Ϲ/ ud[Gњ 3%7Yၫ1u:~ $c5&V6QVy4n`ROwDQ׵m/I@wķ$ulξ;>Y#uԒ(.;a+WsГd`9:&.l-11V#Jdy\ 1nsj&,EYIu#/ؘ]jh.؈`_G" Sy1*S'/>_f-aT nᴁcAmi9YKu6b膽 (?׸dd oCK)g_yCŜFˀ&Bb|bSX&Q!so*edzKjįN8RヾWհo-qT7k+_T'nn1:s\} x1N~zfṛkHAo_dbS&-o243uǟkM},2uR@d]hn/i&Irفj3 g W{4-['fMSH@{Cb )%P)ad >K;Y u`[usKm#<@ ~T/m{2Ɨ8\2y 1\k=A[ 0Jk/((]s2l4HwF0&sQ hnӱl{;^[My00[)쩱Uj9>, ő-!v;Ws3N5TEǜ@3fi&(#*|;Պpٛ[> am|8?cIӅu>1!_ae+&qK}=|N_0&Cobl2~t [2߁EqAv$oWtdE=\]@ .50wv㐅lׯ: Y D ;Ow\$hI˹MWw/?{d~ Ro?NzU}̅!𥞫O<87;tSH1g|Pɟ9WpX}^=9 _ܹ|lRUr xBvH" WT(!Fbc$e dLz ;+ nX,ӝVˤUI|Gu(0{%IvxVPe`_,ӂLxA8ʿIT8a3sx6oYٞa]lfk*ؘj >)vq%dNyzp+=2gNV;JrZffm[¿_W<3X&4cYD}t҆IFA\)_)mı1a6JVZ䕆|K|UԱ]&:1+يZcv;[iu= o6ݹH˰U!;f"'@x =/ s,mV$BUl|jom.Ǎ: e @{8>5Gɰ j;buxDxfgu[]z#GrZνqeFS]Q*D͙@FZK08:ls骍k+.wy3rJbJi9rMJԺʐl%@;öT>d}o_e,F*Y_ Jf8R9_’0 ;$GK: qOBgar'5,7NVZ*maK,aKg<AJuޘME)?.%{TQU>s[bƞ)Nq:d(F4[{O^{ĸ?qѼѽn;cb,ֲl41fOE̮jH<$n.mx%@$d9W9XbNHr|bQH-=s;imHTyh[Y= 2[̊ u[E&\J$rf/7T3Ӑj-Ei;,Ѫ#622$l] K`Q%?cIG1S(w߆b=V8 5kL;}5gV *vaA.wI!Ncd6!d ra2'pTi3%r<ρZSA r)"3xUBgD2Ǒ7`km=a+ۑ뱧oQ cHtjx!m;Gg*GmI,'#3i,e&Mܜ4+9vf>ZjܾtQ%$”>1@SP)m=C\#FFmbJ :[G5YET= VJ ?$ egڏC:%3l׳x:msfNZ؈o8VZ{,]QGh~z2 fnVLԻ#빙W1'CYV'S_ЂQ-|aJ)/Fؐj7SG]t$!w>4*65Uu↋DW9BՈK5ࢣ`~ yZۑ09^(ti%mVmED2jɿֵwU@9sYO/gRwX ʹn/R[3cMhe1P()$ӱ{!<s"$-$v Qx͔YbUEA8Q"0;hJU<ĕQZO+LvܻN\bbJ`R9;R7ݧ{ݕ>HmA2;֕ NNoyގsq$Hk8H/ߞu*v1 " a׽yrPHGo6-b^`PLR7N4\|pd1Qs0V2K~4PލWt(xĕro@\vߎ(?![+\ݏf.ӏ}|۽srfQZgӴhq ­y4cUAtˋ(nVL m QF#G! A*Rzpjv >(x3&>iAd8 d)(je ~g&fЉ\wk<(!vFζ>dWK!-ap 7?JLVO*]'HK6eCƯry JQ(l uxU HiP]Xŗ0{w |tJ;V'=\Vef2s*h\i#}[G[+?aD]kl}<j%U:ߑDÀsJa֙_$aˠ{6Ϋi%6=vymt;ϻ9R Sre5TخqUj^T-38Q̳֬'R!L2 rtʒXrS}8): 8r>Ng$V3/GU+ d/3tt"Svމ^‘ j[#~RۑH\A+Q}tiD%V}A+Y+) -0氮 -c P#;Pq` ?Sv!:Ʀgı#17OtT/[6<3\Qn1apИN!^;v=^Ǹ[7 XN$&J/>d^ؿn0VqM ccQB]~ Kň6 $zCz,n /p[}V>fZ2[Ͻg9TK'G !0Yna 's ߿*ӌA5a?lW|_\T% TNGXEֈnYz.;U^v `#;E4X- >uf3NyV YUa?4{,>%n^^ZfY?tKMQ6n4]x-Ϭ t"!fgR3Rr EL2*  Ovsn4.,+#ɉѾe/!%+%tm؎5F,uI_2'\.߮?2 ;Zl!3> S.Cx_ 4r0:!.dװ80pgh>S=87!ՠ+'r8֡wkCE;S^#6!3R4}/|9c: >7p87:Q?Im<^!kϦN_ 9DaX֪֙jcd%pY/I_-/2í/x^D+6^60!4ϐ1]+` ޵RM\ =0&"]rY&fĹl]o}Cv%d5|>NQAS5t+"sx,u6۶^EQ7 Qu4Ϻ lSiQ}L}&j*Q)@@%`["&W&~FC7ߗo/-G 46T*{]^hej׀?["B(Ƚ"nV7aV$&Lt%x~,7H5(;7`NB#zd@uw]E$k}N܌?Pty`5H% Nq`= @;'p D$ ہkˍ 1kYLO?R1AX؍>($5]5BV{T]`"+̱ 89+Y!II-twY!RbCm*OJc.RL" bZ3!M)LH5?OɋQ!SV"d<$,:S7~y @S~} Kvܾ}lb~PMh;5^]ͽБ 0ӝk MwS?ecy]a+&;3R_8~D67E/2.8l% u "~l=m7[PDJEq]dxϗKHJc=&>mFx[J[DhETρ=jR+SˆSbLDMHC:B(=~U:owr֜`Ӊ}ty=ObYTеbA=G"\eN[Z6X*ɒ;2s(X^te祋 ַjr %{<xtZEֽF}fL$xW~ CMohhV2,Y(axm+3tdm #'gLU"%=o- '0j9VC(6R< 7kws;yܟ> +"-t.KJ;'KU#vw' l*׃oDc{ /P,je!PeQl̉|)y, 0 G/Eԣ>G'>^] QUmq:[?3t} u\WF} 1& ~sJx_!7J!& jըJ'UPMғSmBSݯ1|Y0Z[yr2G">jCjRE݂1$EkLMzYl43wx>@0lHDtsITsb1NQtMr6ѥ%{Nd-ێbw.Z6mصe╝ nYN9jEmĹco,qaɅKѓ6G ٓ: ^ZTcHϣVv@>WU^ dJ JVM@elrE(MF2NK^8@GBfpmudA[eVT3{}n4[FŘ*vW'eZi֯N9w9I>(<78/Uu1"ߙ })ob;*#HЎ}\1#3X*@CT~=-0حLyՋ51sZϹsac^֤[jCxׅ4N5&;AA#ⴡ `.K/ P~+ {~leǘՈ`Y Ёdq54թE yB{`%Șz.ηTڧ_aa.]ġخ1[Uj@cMf~!cWr*ӡeXcWq쨞% :FnNřbEwBhDTi+P!?6*d1lbbR"TT(e"L>喱8 =D36u{%6Wx{r;r;%G\.)mc ͽ xWrs$99v'qnQ;;APߋ5a4Z#]'|j#r(Eu?]zkTF» {&|ZmՓgeVC+c7/gEU$Ηx=V.^]#'^YDt"&ÙgH(ӹ%P]/] qwZqMh]à!nhY7!=fh؀UJs(3 -%Q~MM7Z57R ܤno\f+iHD"y܁ijj5r@> ,!'!#64 ZJ{u5D\bˌ"dz: 'b&z R Z}Sz; t(|taxO)\>HDE+ό DG߾d":Ka?cʃ𪨑 V7H~mYZg V0fNXs'a)a j=_6*Sp> UMSų?u?xC;Ѡ;}wkL[HGܢ$;$`_9 ݿ --RЪ~7L";-I)_*cOLrM7*hTxaAϯx{?9^2/!t[ Bm ;!87* 6?^>{.@q!hGsDuԖ(i4TYA+RAlmzSbVԂq{ ks8Vdiۘr;E! nXƑ`L"!6K)]geKP|F)8#V|b׌OXq 9UN/6{[e_Bfԍ 9VK8(~Saqi~4c  EZ)lru߰z@#ڹ4ˁ4?"|nZD}H\0 Y^ ̰]_v>8kIaKjrOdN}$"FF!u"Hju$_ZlCNm~p4ܝqt1eңI'l$0?nGZ)7RgmPE,sIoػ">oܓc\v3ICQAzk m//Fxe խE'k@QnqMnTzp9Mbů9=XiY-Δɼ j6a窒XCS7a c7,1~5-'{o@4A&"RJř,بrk,(i)iÏ+u\uGK\1DZm)P>wa,Y\}/z.\Ђ!;M O.)M\;}F{eEX2sMN2d|, b3奃0ܧ,?fҘc{3|[6/MN>+`\쑸1NzhFs0ڥ]i-3kV]fꤋ1DF5<6yTZ%c$FBu洯ΰW{⠰b&2nk{rBOɹi/9X?7&oY̲ϿC[sCTV~ j J.\ &S}nj;|U:⌺q>g>[e,/g\q-<䈁OQ * /x;[|FX-?@=&eGx4_CqȒ LU`SQ?+*6h*Ƣ\`NhYq8,q8MI~'5G02 UFB+ /gTNHs9 T? eEU9YQ^δA[3=Sxي6ym\EMrIpO}/#5)s #+c0h}jʒ Z0sioF=c;VLAuʚ2|C\,N]*Ŋ̨&j?2 ݅y>SeW7qȣ<4?kţ~ 7n+4@c1e(-Bf"QΎ}T mHۑy9,⤈=q\K{QmZAm.,(H. 2,M^x`mDjK #.ZJPVeVDN22so4?(,gM+t3Qߑ~[7wyJp7V1 #oR gG::ުr%Xg4zg>1UrLmM͇B ~()I@cb)}ᝇMhgNI@ =HU*M-X7 Y 㠶W!KkM=2@iDd/Ho^?m֙eXe;1ٷ|@ ʢ[&2"R36QᏟ.?ScTJu#3_tyc|S⸮MWw5xt2m7я{zmiHx$^O]:#m%z2̭'02] YZ