libnghttp2-14-1.39.2-lp151.3.3.1 4>$  Ap]s/=„,gvVݣ%!lLHS4cy8*4wB3NH+t[F V1.oZ[~3kPyOUAA}Vw\4s͕rzZjKMCe!f!8ynkj4s>`CpiLoբbE*ЫoIuuڕz4 5Nܐۖs¢ *%svL{0ycd8ba762554b502d80dec5113a5c949fd2baf0dcd2cb6e51cd441a02e610caacb1ded8344c57c89551091978f1f55a38a7b82174]s/=„_Gȥ^o"4 ^ҝrvM0~nM[e~[$a+&Ld&2\Lw|"\uXp"J/!!*B2ʧ!Xkmv5eM+)t܀]&"N^"*J}7vSۃi%jg\: ѭē7.䜦eJ7:' *r%A ô\[;!6d[`@+|ɷ-= F}>p@?d # >   $ , <  8H   (8C9C: C>@FG(H8IHXLYX\ـ]ِ^bcd^ecfflhuxvۈw0x@yPzhx|܂Clibnghttp2-141.39.2lp151.3.3.1Shared library for nghttp2Shared C libraries for implementation of Hypertext Transfer Protocol version 2.]s{build70openSUSE Leap 15.1openSUSEMIThttp://bugs.opensuse.orgSystem/Librarieshttps://nghttp2.org/linuxi586`A큤]sk]sm]sz]SG267517691d3d8c06e456ccc0f89caad24fd67ee774a824728dfe895f0c4c3f8e6b94f3abc1aabd0c72a7c7d92a77f79dda7c8a0cb3df839a97890b4116a2de2alibnghttp2.so.14.18.0rootrootrootrootrootrootrootrootnghttp2-1.39.2-lp151.3.3.1.src.rpmlibnghttp2-14libnghttp2-14(x86-32)libnghttp2.so.14@@@@@    /sbin/ldconfig/sbin/ldconfiglibc.so.6libc.so.6(GLIBC_2.0)libc.so.6(GLIBC_2.1.3)libc.so.6(GLIBC_2.3.4)libc.so.6(GLIBC_2.4)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)3.0.4-14.6.0-14.0-15.2-14.14.1]Z@]Z@]R@\g\A\A\8@[F[t[CN@ZЛZUZUZZOhZ.s@Z'ZY@YdYYlYcl@YX@XӸX@Xk@XQ4@X6@W@WRW"W~WXW W4V@V>@V@VV_V@VzV]VI@V4@V@UU@UUȒ@UUUUUcU]USAdam Majer Martin Pluskal Tomáš Chvátal seanlew@opensuse.orgTomáš Chvátal Martin Pluskal adam.majer@suse.deadam.majer@suse.dempluskal@suse.comtchvatal@suse.comtchvatal@suse.comtchvatal@suse.comfvogt@suse.commpluskal@suse.comdimstar@opensuse.orgmpluskal@suse.commpluskal@suse.commpluskal@suse.comschwab@suse.dempluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.comadam.majer@suse.dempluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.comidonmez@suse.commpluskal@suse.commpluskal@suse.comidonmez@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.comrguenther@suse.commpluskal@suse.compgajdos@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.comsor.alexei@meowr.rumpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.comjengelh@inai.dempluskal@suse.commpluskal@suse.commpluskal@suse.com- Require correct library from devel package - boo#1125689- Update to version 1.39.2 (bsc#1146184, bsc#1146182): * This release fixes CVE-2019-9511 “Data Dribble” and CVE-2019-9513 “Resource Loop” vulnerability in nghttpx and nghttpd. Specially crafted HTTP/2 frames cause Denial of Service by consuming CPU time. Check out https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md for details. For nghttpx, additionally limiting inbound traffic by - -read-rate and --read-burst options is quite effective against this kind of attack. * Add nghttp2_option_set_max_outbound_ack API function * nghttpx: Fix request stall- Update to version 1.39.1: * This release fixes the bug that log-level is not set with cmd-line or configuration file. It also fixes FPE with default backend. - Changes for version 1.39.0: * libnghttp2 now ignores content-length in 200 response to CONNECT request as per RFC 7230. * mruby has been upgraded to 2.0.1. * libnghttp2-asio now supports boost-1.70. * http-parser has been replaced with llhttp. * nghttpx now ignores Content-Length and Transfer-Encoding in 1xx or 200 to CONNECT. - Drop no longer needed boost170.patch- Update to 1.38.0: * This release fixes the bug that authority and path altered by per-pattern mruby script can affect backend selection on retry. * It also fixes the bug that HTTP/1.1 chunked request stalls. * Now nghttpx does not log authorization request header field value with -LINFO. * This release fixes possible backend stall when header and request body are sent in their own packets. * The backend option gets weight parameter to influence backend selection. * This release fixes compile error with BoringSSL. - Add patch from upstream to build with new boost bsc#1134616: * boost170.patch- Update to 1.36.0 * build: disable shared library if ENABLE_SHARED_LIB is off * third-party: use http-parser to v2.9.0 (GH-1294) * third-party: Update mruby to 2.0.0 * nghttpx: Pool h1 backend connection per address (GH-1292) * nghttpx: Randomize backend address round robin order per thread (GH-1291) * nghttpx: Fix getting long SNs for openssl < 1.1 (GH-1287) * h2load: add an option to write per-request logs (GH-1256) * asio: added access to # of the current server port (GH-1257)- Use multibuild to not pull in python3 in first build, nghttp2 is low in the system- Update to version 1.35.1: * nghttpx: Fix broken trailing slash handling (GH-1276) - Changes for version 1.35: * build: cmake: Fix libevent version detection (Patch from Jan Kundrát) (GH-1238) * lib: Use __has_declspec_attribute for shared builds (Patch from Don) (GH-1222) * src: Require C++14 language feature * nghttpx: Write mruby send_info early * nghttpx: Fix assertion failure on mruby send_info with HTTP/1 frontend * h2load: Handle HTTP/1 non-final response (GH-1259) * h2load: Clarify that time for connect includes TLS handshake- Update to version 1.34.0: (bsc#1112438, FATE#326776) * lib: Implement RFC 8441 :protocol support * nghttpx: Add read/write-timeout parameters to backend option * nghttpx: Fix mruby parameter validation in backend option * nghttpx: Implement RFC 8441 Bootstrapping WebSocket with HTTP/2 * nghttpx: Update neverbleed to fix OpenSSL 1.1.1 issues * nghttpx: Update mruby 1.4.1 * nghttpx: Add mruby env.tls_handshake_finished * nghttpx: Add --tls13-ciphers and --tls-client-ciphers options * nghttpx: Add RFC 8470 Early-Data header field support * nghttpx: Add RFC 8446 TLSv1.3 0-RTT early data support- Update to version 1.33.0: * lib: Tweak nghttp2_session_set_stream_user_data * lib: Fix handling of SETTINGS_MAX_CONCURRENT_STREAMS. * lib: Implement ORIGIN frame * asio: support definition of local endpoint for cleartext client session * integration: Remove remaining SPDY code from the integration tests * nghttpx: Fix worker process crash with neverbleed write error * nghttpx: Support per-backend mruby script * nghttpx: Fix stream reset if data from client is arrived before dconn is attached- Update to version 1.32.0: * lib: Ignore all input after calling session_terminate_session * lib: Fix treatment of padding * lib: Don't allow 101 HTTP status code because HTTP/2 removes HTTP Upgrade * build: add ENABLE_STATIC_LIB option to build static lib * third-party: Upgrade neverbleed to the latest master * asio: Support client side SNI * src: Compile with libressl 2.7.2 * src: Allow building without NPN * h2load: -r and --duration are mutually exclusive- Version umpdate to 1.31.1: * Fix bsc#1088639 CVE-2018-1000168 * https://nghttp2.org/blog/2018/04/12/nghttp2-v1-31-1/- Version update to 1.31.0: * lib: Add nghttp2_session_set_user_data() public API function (GH-1137) * src: Define nghttp2_inet_pton wrapper to avoid inet_pton macro (GH-1128) * nghttpx: Close listening socket on graceful shutdown * nghttpx: Add an option to accept expired client certificate (GH-1126) * nghttpx: Add mruby tls_client_not_before, and tls_client_not_after (GH-1123) * nghttpx: Fix potential memory leak * lib: Allow PING frame to be sent after GOAWAY (GH-1103) * nghttpx: Fix bug that h1 backend idle timeout expires sooner * nghttpx: Stop overwrite of first header on mruby call to env.req.set_header(..) (Patch from Dylan Plecki) (GH-1119) * nghttpx: Add upgrade-scheme parameter to backend option (GH-1099) * nghttpx: Fix missing ALPN validation (--npn-list) (GH-1094) * nghttpx: Remember which resource is pushed for RFC 8297 (GH-1101)- Drop spdylay dependency as it is deprecated since version 1.28.0 and removed from cofnigure.ac since 1.29.0- Use %license (boo#1082318)- Update to version 1.29.0: * lib: Use NGHTTP2_REFUSED_STREAM for streams which are closed by GOAWAY * build: Remove SPDY * build: Fix CMAKE_MODULE_PATH * nghttpx: Revert "nghttpx: Use an existing h2 backend connection as much as possible" * nghttpx: Write API request body in temporary file * nghttpx: Increase api-max-request-body * nghttpx: Faster configuration loading with lots of backends * nghttpx: Fix crash with --backend-http-proxy-uri option- Export PYTHON=/usr/bin/python3 before running configure: allow to build without (comnplete) python2 in the buildroot. In any case we only ship python3-bindings already.- Upodate to version 1.28.0: * lib: Add nghttp2_error_callback2 * build: Add deprecation warning when spdylay support is enabled * Switch to clang-format-5.0 * examples: Make client and server work with libevent-2.1.8 * third-party: Update neverbleed * integration: Fix issues reported by the go vet tool. * nghttpx: Fix affinity retry * nghttpx: Fix stalled backend connection on retry * nghttpx: Cookie based session affinity * nghttpx: Expose additional TLS related variables to mruby and accesslog- Drop forgotten python2 build dependency- Update to version 1.27.0: * h2load: Print out h2 header fields with --verbose option * nghttpx: Send non-final response to HTTP/1.1 or HTTP/2 client only - Changes for version 1.26.0: * docs: Fix some typos in the nghttpx how-to * h2load: Fix bug that timing script stalls with -m1 * h2load: Reservoir sampling (GH-984) * h2load: Add timing-based load-testing in h2load - Switch to python3 support- Don't use jemalloc on ppc or %arm, where it is broken.- Update to version 1.25.0: * lib: add nghttp2_rcbuf_is_static() (Patch from Anna Henningsen) (GH-983) * nghttpx: Fix bug that forwarded for is not affected by proxy protocol (GH-979) * nghttpx: Update mruby to 1.3.0 (GH-957)- Drop doc building - Rename python subpackage to python2- Update to version 1.24.0: * doc: README.rst: fix typo (Patch from Simone Basso) (GH-947) * doc: fix up grammar in submit_trailer docs (Patch from Benjamin Peterson) (GH-945) * doc: fix cleaning in out-of-tree builds (Patch from Benjamin Peterson) (GH-938) * nghttp: Fix bug that upgrade fails if reason-phrase is missing (GH-949) * nghttpx: Verify OCSP response using trusted CA certificates (GH-943) * nghttpx: Set default minimum TLS version to TLSv1.2 (GH-937) - Changes for version 1.23.1: * nghttpx: Fix crash in OCSP response verification - Changes for version 1.23.0: * lib: nghttp2_session: Allow for compiling library with -DNDEBUG set (Patch from Angus Gratton) (GH-919) * lib: Treat incoming invalid regular header field as stream error (GH-900) * lib: Call nghttp2_on_invalid_frame_callback if altsvc validation fails (GH-904) * doc: spelling mistake in arguments to build nghttp apps (Patch from Soham Sinha) (GH-925) * doc: Add notes for installation on linux systems (Patch from Tapanito) (GH-917) * doc: Clarify the effect of nghttp2_option_set_no_http_messaging * nghttpx: Verify OCSP response (GH-929) * nghttpx: Fix certificate selection based on pub key algorithm (GH-924) * nghttpx: Fix certificate indexing bug * nghttpx: Run OCSP at startup (GH-922) * nghttpx: Wildcard path matching (GH-914) * nghttpx: Forward multiple via, xff, and xfp header fields (GH-903) * nghttp: Add -y, --no-verify-peer option to suppress peer verify warn (GH-906)- Update to version 1.22.0: * lib: Add missing free call on error in inflight_settings_new() (Patch from lstefani) (GH-884) * asio: Support specifying stream priority via session::submit() (Patch from Matt Way) (GH-881) * nghttpx: Clarify --conf option behaviour * nghttpx: Add $tls_sni access log variable (GH-896) * nghttpx: Rename ssl_* log variables as tls_* (GH-895) * nghttpx: Fix path matching bug (GH-894) * nghttpx: SNI based backend server selection (GH-892) * nghttpx: Enable signed_certificate_timestamp extension for TLSv1.3 (GH-878) * nghttpx: Add options for X-Forwarded-Proto header field (GH-872) * nghttpx: Add --single-process option (GH-869) * nghttpx: Use 502 as server error code * nghttpx: Use SSL_CTX_set_early_data_enabled with boringssl * nghttp: Verify server certificate and show warning if it fails (GH-870) * integration: Use nip.io instead of xip.io- Update to version 1.21.1: * asio: Fix crash if connect takes longer time than ping interval (GH-866) * nghttpx: Fix bug that 204 from h1 backend is always treated as error (GH-871) - Changes for version 1.21.0: * lib: Fix nghttp2_session_want_write (GH-832) * doc: Document pkg-config path usage * build: Eliminate U macro; Instead use (void)VAR for better compiler compatibility. * src: BoringSSL supports SSL_CTX_set_{min,max}_proto_version. (Patch from Piotr Sikora) (GH-853) * src: Use Mozilla's "Modern compatibility" ciphers by default * src: nghttp2_gzip: fix this statement may fall through [-Werror=implicit-fallthrough=] found by gcc7 (Patch from Alexis La Goutte) (GH-823) * nghttpx: Print version number with -v option * nghttpx: Enable X25519 with boringssl * nghttpx: Retry getaddrinfo without AI_ADDRCONFIG (GH-858) * nghttpx: Failing to listen on server socket is fatal error * nghttpx: Escape certain characters in access log (GH-856) * nghttpx: Ignore further input if connection is going to close * nghttpx: Don't call functions which are not async-signal-safe after fork but before execv in multithreaded process. * nghttpx: Enable backend pattern matching with http2-proxy (GH-733) * asio: client: Send PING after 30 seconds idle (GH-847)- Update to version 1.20.0: * lib: nghttp2_session: fix The 'then' statement is equivalent to the subsequent code fragment found by PVS Studio (V523) (Patch from Alexis La Goutte) (GH-814) * lib: Add nghttp2_option_set_no_closed_streams (GH-810) * build: Disable spdylay detection by default * build: Add --with-systemd option to configure * fuzz: Add fuzzer for oss-fuzz (GH-799) * src: Enable TLSv1.3 if it is supported by OpenSSL (or BoringSSL) (GH-816) * src: h2 requires >= TLSv1.2 * asio: More graceful stop of nghttp2::asio_http2::server::http2 (Patch from Amir Pakdel) (GH-805) * asio: Holding more shared_ptrs instead of raw ptrs to make sure called objects don't get deleted. (Patch from clemahieu) * asio: Fix infinite loop in acceptor handler (Patch from clemahieu) (GH-794) * asio: close_stream erases from streams_ while it's being iterated over. (Patch from clemahieu) (GH-795) * nghttpx: Strip version number from server header field * nghttpx: Add --single-worker option * nghttpx: Fix bug that send_reply does not participate graceful shutdown * nghttpx: Add --frontend-max-requests option * nghttpx: Enable stream-write-timeout by default * nghttpx: Fix stream write timer handling * nghttpx: Add configrevision API endpoint (GH-820) * nghttpx: Redirect to HTTPS URI with redirect-if-not-tls parameter (GH-819) * nghttpx: Update log time stamp in millisecond interval * nghttpx: Better error message when private key and certificate are missing * nghttpx: Fix bug that old config is used during reloading configuration * nghttpx: Specify TLS protocol by version range (GH-809) * nghttpx: Send SIGQUIT to the original master process (GH-807) * nghttpx: Restrict HTTP major and minor in 0 or 1 * nghttpx: Drop privilege of neverbleed daemon first * nghttpx: add systemd support (Patch from Tomasz Torcz) (GH-802) * nghttpx: Fix crash on SIGHUP with multi thread configuration (GH-801) * nghttpx: Send 1xx non-final response using mruby script (GH-800) * nghttpx: Select certificate by client's supported signature algorithm (GH-792) * nghttpx: Recommend POST for backendconfig API request * nghttpx: Don't build PSK features with LibreSSL (Patch from Bernard Spil) (GH-789) * nghttp: add support for link rel="preload" for --get-assets (Patch from Benedikt Christoph Wolters) (GH-791) * h2load: Fix wrong req_stat updates * h2load: Explicitly count the number of requests left and inflight * integration: Fix deprecation warnings * integration: Redirect nghttpx stdout/stderr to test driver's stdout/stderr - Changes for version 1.19.0: * lib: Fix memory leak of nghttp2_stream object in server side nghttp2_session object * Fix issues found by PVS Studio (Patch from Alexis La Goutte) (GH-769) * doc: Update README file to write about the issue of Alpine Linux's inability to replace malloc (Patch from makovich) (GH-768) * build: Compile with Android NDK r13b using clang * src: Fix assertion error with boringssl * nghttp: Take into account scheme and port when parsing HTML links * nghttp: Fix authority for --get-assets if IP address is used in conjunction with user-defined :authority header (Patch from Benedikt Christoph Wolters) (GH-783) * nghttpx: Add --accesslog-write-early option (GH-777) * nghttpx: Fix access.log timestamp (GH-778) * nghttpx: Show default cipher list in -h * nghttpx: Add client-ciphers option * nghttpx: Add client-no-http2-cipher-black-list option * nghttpx: Fix the bug that no-http2-cipher-black-list does not work on backend HTTP/2 connections. * nghttpx: Add --client-psk-secret option to enable PSK in backend (GH-612) * nghttpx: Add --psk-secret option to enable PSK in frontend connection (GH-612) * nghttpx: Enable SCT with OpenSSL 1.1.0 * nghttpx: Add proxyproto to frontend option to accept PROXY protocol (GH-765) * h2load: Show default cipher list in -h * h2load: Show custom server temp key such as X25519 * h2load: Fix incorrect return value from spdylay_send_callback - Changes for version 1.18.1: * nghttpx: Fix assertion error in libev ev_io_start (GH-759) * nghttpx: Handle c-ares success without result * nghttpx: Fix bug that DNS timeout was erroneously disabled (GH-763) * nghttpx: Fix bug that DNS timeout was ignored (GH-763)- use individual libboost-*-devel packages instead of boost-devel- Update to version 1.18.0: * lib: Accept and ignore content-length: 0 in 204 response for now * build: Use pkg-config to detect libxml2 * build: Require c-ares to compile applications under src * build: Add Windows CI via AppVeyor (Patch from Alexis La Goutte) * examples: Delete tiny-nghttpd * nghttpx: Retry h1 backend request if first write fails (GH-757) * nghttpx: Keep reading after backend write failed (GH-756) * nghttpx: Add frontend-keep-alive-timeout option (GH-755) * nghttpx: New error log format (GH-749) * nghttpx: Fix bug that fetch-ocsp-response does not work with OpenSSL 1.1.0 (GH-742) * nghttpx: Backend API call allows non-numeric host with dns parameter (GH-731) * nghttpx: Lookup backend host name dynamically (GH-721) * nghttpx: Accept and ignore content-length: 0 in 204 response for now (GH-735) * nghttpx: Wait for child process to exit- Update to version 1.17.0: * lib: Disallow content-length in 1xx, 204, or 200 to a CONNECT request (GH-722) * lib: Avoid memcpy against NULL src * build: MSVC version resource support (Patch from Remo E) (GH-718) * asio: server: Call on_close callback on connection close (GH-729) * nghttpx: Fix frequent crash with --backend-http-proxy-uri * nghttpx: Robust backend read timeout * nghttpx: Fix bug that mishandles response header from h1 backend * nghttpx: Fix bug that zero-length POST is not forwarded (GH-726) * nghttpx: Remove optional reason-phrase from SPDY :status * nghttpx: Header key and value must be string in mruby script * nghttpx: Strip content-length with 204 or 200 to CONNECT in mruby (GH-722) * nghttpx: Strict handling for Content-Length or Transfer-Encoding in h1 (GH-722) * nghttpx: Fix compilation with BoringSSL (Patch from dalf) (GH-717) * nghttpd, nghttpx, asio: Add missing mandatory SP after status code- Update to version 1.16.1: * lib: Prevent undefined behavior in decode_length * nghttpx: Fix bug which may crash nghttpx if non-final response is forwarded from origin server to HTTP/1.1 client - Changes for version 1.16.0: * lib: Add nghttp2_set_debug_vprintf_callback to take advantage of DEBUGF statements in when building DEBUGBUILD. * Update .clang-format for clang-format-3.9 * build: Make it possible to include nghttp2/CMakeLists.txt in another project using add_subdirectory. * third-party: Update http-parser to feae95a3a69f111bc1897b9048d9acbc290992f9 * asio: Fix crash when end() is called outside nghttp2 callback * nghttpx: Add --backend-connect-timeout option * nghttpx: Add TLS signed_certificate_timestamp extension support * nghttpx: Add --ecdh-curves option to specify list of named curves * h2load: Add --header-table-size and --encoder-header-table-size options- Update to version 1.15.0: * lib: Add nghttp2_option_set_max_deflate_dynamic_table_size() API function (GH-684) * lib: Allow NGHTTP2_ERR_PAUSE from nghttp2_data_source_read_callback (GH-671) * lib: Add nghttp2_session_get_hd_deflate_dynamic_table_size() and nghttp2_session_get_hd_inflate_dynamic_table_size() API functions to get current HPACK dynamic table size (GH-664) * lib: Add nghttp2_session_get_local_settings() API function * lib: Add nghttp2_session_get_local_window_size() and nghttp2_session_get_stream_local_window_size() API functions * build: Add -lsocket -lnsl to APPLDFLAGS for solaris build * neverbleed: Update neverbleed to support ECDSA certificate * doc: Mention --enable-lib-only configure option in README * integration: Fix test failure with go1.7.1 * src: Fix compile error with openssl 1.1.0 * nghttpx: Improve performance with HTTP/1.1 backend when request body is involved * nghttpx: Use std::atomic_* overloads for std::shared_ptr if available * nghttpx: Migrate backend stream to another h2 session on graceful shutdown * nghttpx: Add option to specify HPACK encoder/decoder dynamic table size * nghttpx: Log client address * nghttpx: Add tls_sni to mruby Nghttpx::Env class * nghttpx: Add --frontend-http2-window-size option, and its family functions * nghttpx: Add experimental TCP optimization for h2 frontend * nghttpx: Workaround for std::make_shared bug in Xcode7, 7.1, and 7.2 (GH-670) * nghttpx: Fix bug that bytes are doubly counted to rate limit for TLS connections * nghttpx: Add --no-server-rewrite option not to rewrite server header field (GH-667) * nghttpx: Retry if backend h1 connection cannot be established due to timeout * nghttpx: Reset stream if invalid header field is received in h2 * nghttpx: Add --server-name option to change server response header field (GH-667) * nghttpd: Add --encoder-header-table-size option * nghttp: Add --encoder-header-table-size option * python: Support ALPN, require Python 3.5- Update to version 1.14.0: * lib: Make emit_header() return void since it always succeed * lib: Add nghttp2_hd_deflate_hd_vec() deflate API to support multiple buffer input * lib: since hd_inflate_commit_indexed() always return 0, remove the return value check in nghttp2_hd_inflate_hd_nv() * lib: Use memeq() instead of lstreq() in lookup_token() * lib: More strict stream state handling * lib: Modify genlibtokenlookup.py to remove redundant header comparisons and remove inline qualifier of lookup_token() in genlibtokenlookup.py * lib: Fix wrong tree operation to avoid cycle * lib: Make get_max_index() return the max index in frame, so we don't need to do extra calculation * lib: Add nghttp2_on_invalid_header_callback * lib: Log frame's stream ID for header debug logging * doc: Remove old doc about differential encoding in HPACK * doc: Document about ALPN in nghttpx howto * nghttpx: Log error code from getsockopt(SO_ERROR) on first write event * nghttpx: Don't change pushed stream's priority * nghttpx: Log backend connection failure in WARN level * nghttpx: Fix bug that api and healthmon parameters do not work with http2 proxy * nghttpx: Add access log variable for backend host and port * nghttpx: Use copy instead of const reference of backend group * nghttpx: Reload configuration with SIGHUP * nghttp: Adjust weight according to Firefox stable * nghttp: Call error callback when invalid header field is received and ignored * nghttp: Allow multiple -p option * deflatehd: Call nghttp2_hd_deflate_change_table_size only if table size is changed from default- Update to version 1.13.0: * lib: Cancel non-DATA frame transmission from nghttp2_before_frame_send_callback * doc: Fix warning with Sphinx 1.4 * build: Work with Android NDK r12b * nghttpx: Use consistent hashing for client IP based session affinity * nghttpx: Fix FTBFS on armel by explicitly including the header * nghttpx: Cast to double to fix build with gcc 4.8 on Solaris 11 * nghttpx: Fix build error with libressl * examples: Fix compile error with OpenSSL v1.1.0-beta2- Update to version 1.12.0: * Add nghttp2_session_set_local_window_size API function * Add nghttp2_option_set_max_send_header_block_length API function (GH-613) * Fix warning: declaration of 'free' shadows a global declaration (Patch from Alexis La Goutte) * examples: Add ALPN support to tutorial client/server (GH-614) * nghttpx: Reduce TTFB with large number of incoming connections * nghttpx: Rewrite read timer handling * nghttpx: Clean up neverbleed AF_UNIX socket * nghttpx: Add --backend-max-backoff option * nghttpx: Use 16KiB buffer for reading to match TLS record size * nghttpx: Add healthmon parameter to -f option to enable health monitor mode * nghttpx: Receive reference of std::mt19937, not making a copy * nghttpx: Fix bug that backend never return to online (GH-615) * nghttpx: Implement client IP based session affinity * nghttpx: Add --api-max-request-body option to set maximum API request body size * nghttpx: Add api parameter to --frontend option to mark API endpoint * h2load: Add content-length header field for HTTP/2 and SPDY as well * h2load: Implement HTTP/1 upload (GH-611)- Update to 1.11.1 * lib: Add nghttp2_hd_inflate_hd2() and deprecate nghttp2_hd_inflate_hd() * lib: Avoid 0-length DATA if NGHTTP2_DATA_FLAG_NO_END_STREAM is set * lib: Fix bug that PING flags are ignored in nghttp2_submit_ping * integration: Workaround runtime error: cgo argument has Go pointer to Go pointer * nghttp: Eliminate zero length DATA frame at the end if possible * nghttpd: Set content-length in status response * nghttpx: Add sni keyword to --backend option * nghttpx: Allow mixed protocol and TLS settings among backends under same pattern * nghttpx: Don't add 0-length DATA when response HEADERS bears END_STREAM flag * nghttpx: Don't add chunked encoded response body for HEAD request * nghttpx: Don't use CN if we have dNSName or iPAddress field * nghttpx: Just call execv instead of execve to pass environ * nghttpx: Make SETTINGS timeout value configurable * nghttpx: Save PID file after it is ready to accept connections * nghttpx: Treat backend failure if SETTINGS is not received within timeout * nghttpx: Wait for SETTINGS ACK to make sure that backend h2 server is alive- Update to 1.10.0 * Pass unknown SETTINGS values to nghttp2_on_frame_recv_callback * Add ALTSVC frame support * Run error callback when peer does not send initial SETTINGS frame * Update http-parser * Update sphinx_rtd_theme * nghttp: add an --expect-continue option * nghttpx: Fix downstream connect callback called early * nghttpx: Truncate too long -b option signature * nghttpx: Fix bug that server push from mruby script did not work * nghttpx: Try next HTTP/1 backend address when connection cannot be made * nghttpx: Retry next HTTP/2 backend address when connection cannot be made * nghttpx: Enable link header field based push for non-final response * nghttpx: Detect online/offline state of backend servers * nghttpx: Better load balancing between backend HTTP/2 servers * nghttpx: Fix crash with backend failure- Update to 1.9.2 * nghttpx: Fix crash with backend failure * nghttpx: Better distribute load to backend h2 servers * nghttpx: Fix error messages on deprecated mode * nghttpx: Fix bug that logger wrote string which was not NULL-terminated * nghttpx: Fix bug that proxy with HTTP/1.1 CONNECT did not work- Update to 1.9.1 * nghttpx: Fix bug that backend tls keyword did not work with -s option * nghttpx: Fix handing stream after connection check was failed - Changes for 1.9.0 * lib: Add nghttp2_error_callback to tell application human readable error message * lib: Reference counted HPACK name/value pair, adding * nghttp2_on_header_callback2 * lib: Add nghttp2_option_set_no_auto_ping_ack() option * lib: Add nghttp2_http2_strerror() to return HTTP/2 error code string * build: Makefile.msvc enhancements (Patch from Jan-E) * build: Lower libev version requirement (Patch from Peter Wu) * build: cmake build support (Patch from Peter Wu) * asio: Fix bug that server event loop breaks with exception * integration: Disable tests that sometimes break randomly on travis * integration: do not use recursive target (Patch from Peter Wu) * h2load: Fix bug that it did not try to connect to server again * h2load: Fix bug that initial max concurrent streams was too large * nghttpx: Memcached connection encryption with tls keyword * nghttpx: Enable/disable TLS per frontend address * nghttpx: Configure TLS per backend routing pattern * nghttpx: Workaround for Ubuntu 15.04 which does not value-initialize on std::make_shared. * nghttpx: Add --error-page option to set custom error pages * nghttpx: Add wildcard host routing * nghttpx: Change read timeout reset timing * nghttpx: Don't push if Link header field includes nopush * nghttpx: Deprecate backend-http1-connections-per-host in favor of backend-connections-per-host * nghttpx: Restructure mode settings, removing --http2-bridge, - -client, and --client-proxy options * nghttpx: Deprecate backend-http1-connections-per-frontend in favor of backend-connections-per-frontend * nghttpx: Don't share session which is already in draining state * nghttpx: Effectively disable backend HTTP/2 connection flow control * nghttpx: Add --frontend-http2-max-concurrent-streams and - -backend-http2-max-concurrent-streams, and deprecate - -http2-max-concurrent-streams option * nghttpx: Deprecate --backend-http2-connections-per-worker option * nghttpx: Share TLS session cache between HTTP/2 and HTTP/1 backend * nghttpx: Rewrite backend HTTP/2 connection coalesce strategy- Update to 1.8.0 * Add Architecture documents (work in progress) * List all contributors in AUTHORS * doc: fix out-of-tree doc builds (Patch from Peter Wu) * Wrap AM_PATH_XML2 by m4_ifdef to handle the case when _PATH_XML2 is not found * Fix configure script for non-gcc, clang build * Document compiling apps and include h2load in configure (Patch from David Beitey) * Don't check for dlopen/libdl on *BSD (Patch from Bernard Spil) * Don't taint CXXFLAGS from AX_CXX_COMPILE_STDCXX_11 * Fixing Windows Makefile version detection (Patch from Reza Tavakoli) * lib: Tokenize extra HTTP header fields * lib: Fix typo in HAVE_CONFIG_H name (Patch from Peter Wu) * lib: Add HTTP/2 extension framework to send and receive non-critical frames * tests: remove unused macros (Patch from Peter Wu) * src: Update default cipher list * src: Fix compile error with gcc-6 which enables C++14 by default * asio: client: Fix connect timeout does not work, return from cb if session stopped, removing client::session::connect_timeout() functon * nghttpd: Start SETTINGS timer after it is written to output buffer * nghttpd: Add trailer header field to status responses * nghttpd: Add -w and -W options to change window size * nghttpx: Worker wide blocker which is used when socket(2) is failed * nghttpx: ConnectBlocker per backend address * nghttpx: Interleave text/html pushed resources with associated resource * nghttpx: Add headers given in add-response-headers for mruby response * nghttpx: Deprecate --backend-ipv4 and --backend-ipv6 in favor of --backend-address-family * nghttpx: Add options to specify address family of memcached connections * nghttpx: Add encryption support for TLS ticket key retrieval * nghttpx: Add TLS support for session cache memcached connection * nghttpx: Refactor blacklisted cipher suite check (Patch from Jay Satiro) * nghttpx: Add TLS support for HTTP/1 backend * nghttpx: Add request-header-field-buffer and max-request-header-fields options, deprecating header-field-buffer and max-header-fields options. * nghttpx: Add --no-http2-cipher-black-list to allow black listed cipher suite * nghttpx: Limit header fields from backend * nghttpx: Fix bug that IPv6 address in Forwarded "for" is not quoted-string * nghttpx: Support multiple frontend addresses * integration-tests: support out-of-tree tests (Patch from Peter Wu) * examples: fix compile warnings (Patch from Peter Wu) - Drop upstreamed nghttp2-c++14.patch- Update to 1.7.1 * Fix CVE-2016-1544 (boo#966514)- Add nghttp2-c++14.patch to properly guard make_unique templates. [bsc#964140]- Update to 1.7.0 * Reset (RST_STREAM) stream if flow control window gets overflow * Validate :authroity, host, and :scheme value more strictly * Check request/response submission error based side of session * Strict outgoing idle stream detection * Return error from nghttp2_submit_{headers,request} when self dependency is made * Add -ldl to APPLDFLAGS for static openssl linking * asio: Stop acceptor on server::http2::stop * asio: Rename http2::get_io_services() as http2::io_services() * h2load: Support UNIX domain socket * h2load: Improve readability of traffic numbers * h2load: Remove "auto" for -m option * h2load: Show progress in rate mode * h2load: Perform sampling for request and connection timings to reduce memory consumption * nghttpd: Add --no-content-length option to omit content-length in response * nghttpx: Interleave pushed streams with the associated stream if pushed streams are javascript and CSS resources * nghttpx: The initial value of request/response buffer is increased to 128K * nghttpx: Fix bug that --listener-disable-timeout option is not used * nghttpx: Don't emit :authority if request does not contain authority information * nghttpx: Add clarification of quotes in configuration file * nghttpx: Don't allow certain characters in host and :scheme header field * nghttpx: Add RFC 7239 Forwarded header field support * nghttpx: Fix crash when running on IPv6 only (Patch from Vernon Tang) * nghttpx: Take into account of trailers when applying max_header_fields * nghttpx: Don't apply max_header_fields and header_field_buffer limit to response * nghttpx: Strict validation for header fields given in configuration * nghttpx: header value should not be lower-cased (Patch from ayanamist)- fixed typo in libnghttp2_asio1 [bsc#962914]- Update to 1.6.0 * Fix heap-use-after-free bug when handling idle streams * Strict error handling for frames which are not allowed after closed (remote) * Set max number of outgoing concurrent streams to 100 by default * Keep incoming streams only at server side * Create stream object for pushed resource during nghttp2_submit_push_promise() * Add nghttp2_session_create_idle_stream() API * Handle response in nghttp2_on_begin_frame_callback * Add --lib-only configure option * Compile with OpenSSL 1.1.0-pre1 * Fix build when OpenSSL 1.0.2 is not available (patch from Sunpoet Po-Chuan Hsieh) * asio: Add connect and read timeout to client API * asio: Add TLS handshake and read timeout to server API * asio: Added access to a requests remote endpoint (patch from Andreas Pohl) * asio: libnghttp2_asio: Added io_service accessors (patch from Andreas Pohl) * h2load: Add req/s min, max, mean and sd for clients * h2load: Fix broken connection times- Update to 1.5.0 * Fix bug that nghttp2_session_find_stream(session, 0) returned NULL * Add nghttp2_session_change_stream_priority() to change stream priority without sending PRIORITY frame * Add nghttp2_session_check_server_session() API * Consider to use CANCEL error code when closing streams with GOAWAY * Don't send push response if GOAWAY has been received * Use error code CANCEL to reset pushed reserved stream from remote * Add nghttp2_session_upgrade2(), deprecate nghttp2_session_upgrade() * Workaround HTTP upgrade with HEAD request in nghttp2_session_upgrade() * Introduce NGHTTP2_NV_FLAG_NO_COPY_NAME and NGHTTP2_NV_FLAG_NO_COPY_VALUE * Add nghttp2_session_check_request_allowed() API function * Switch to clang-format-3.6 * Update mruby to 1.2.0 * tests: fix broken linkage with --disable-static (Patch from Kamil Dudka) * python: Send RST_STREAM if remote side is not closed and response finished * asio: client: call on_error when connection is dropped * asio: ALPN support * h2load: Add --h1 option to force http/1.1 for both http and https URI * h2load: Fix crash when dealing with "connection: close" form HTTP/1.1 server * h2load: h2load goes into infinite loop when timing script file starts with 0.0 in first line (Patch from Kit Chan) * h2load: Override user-agent with -H option * h2load: Print "space savings" to measure header compression efficiency * h2load: Stream error should be counted toward errored * h2load: Show application protocol with OpenSSL < 1.0.2 * nghttpx: Don't send RST_STREAM to h2 backend if backend is disconnected state * nghttpx: Support server push from HTTP/2 backend * nghttpx: Fix bug that causes connection failure with backend proxy URI * nghttpx: Use --backend-tls-sni-field to verify certificate hostname * nghttpx: Log :authority as $http_host if available * nghttpd: Fix crash with CONNECT request * nghttpd: Defered eviction of cached fd using timer * nghttpd: Read /etc/mime.types to set content-type header field * nghttp: Record request method to output it in har correctly * nghttp: Use method given in -H with ":method" in HTTP Upgrade - Drop nghttp2-1.4.0-fix-tests.patch (now in upstream)- Enable spdy and more example applications- Update to 1.4.0: * lib: Don't always expect dynamic table size update. * lib: Shrink to the minimum table size seen in local SETTINGS. * lib: Add new error code NGHTTP2_ERR_PAUSE to send_data_callback. * lib: Avoid excessive WINDOW_UPDATE queuing. * lib: Return fatal error if flooding is detected to close session immediately. * lib: Return type of nghttp2_submit_trailer is int. * lib: Don't send WINDOW_UPDATE with 0 increment. * lib: Fix bug that headers in CONTINUATION were ignored after HEADERS with padding. * package: Use -fvisibility=hidden for internal functions. * package: Show more information in configure summary. * package: Add PIDFile directive to systemd service. * package: Fix daemon upgrade when running under systemd. * app: Compile with BoringSSL. * nghttp: Allow multiple -c option occurrence, and take min and last value. * nghttpd: Fix leak when server failed to listen to given port. * nghttpx: Add TLS dynamic record size behaviour command line options. * nghttpx: Reduce default timeouts for read sockets to 1m. * nghttpx: Fix bug that PUT is replaced with POST. * nghttpx: Change mruby script handling. * nghttpx: Added support for RFC 7413 (TCP Fast Open) on nghttpx proxy listening connections. * nghttpx: Add neverbleed support. * h2load: Don't DOS our server! * h2load: Use duration syntax for timeouts. * h2load: Support subsecond rate period. * h2load: Simplify rate mode. * h2load: Add option for user-definable rate period. * h2load: Reuse SSL/TLS session. * h2load: Reconnect server on connection: close. * h2load: Don't exit in the case of no ALPN protocol overlap. * integration: Update go's http2 package URI. - Add missing baselibs.conf. - Add nghttp2-1.4.0-fix-tests.patch from commit 4825009. - Small spec cleanup.- Update to 1.3.4 * Make traditional init script fail if new config file is broken (Patch from Janusz Dziemidowicz) * nghttpx-logrotate: Don't use killall since we have multiple processes * nghttpx: Fix improper signal handling - Changes for 1.3.3 * Fix bug in padding handling of DATA frame * Use hash table for dynamic table lookup * More warning flags for --enable-werror * Update mruby * h2load: HTTP/1.1 support (Patch from Lucas Pardue) * nghttpx: Do not try to set TCP_NODELAY when frontend is an UNIX socket (Patch from Janusz Dziemidowicz) * nghttpx: Chown UNIX domain socket to user specified as --user * nghttpx: Split monolithic one process into control and worker processes * nghttpx: Handle SSL/TLS data following PROXY protocol line - Changes for 1.3.2 * Check header block limit after new stream is opened * nghttp: Show error if HEADERS frame cannot be sent for whatever reason * nghttpx: Fix assertion failure on TLS handshake * nghttpx: Add x-http2-push header field for pushed resource * nghttpx: Fix compile error with --disable-threads- Update to 1.3.1 * Avoid usage of typeof and replace __builtin_offsetof with offsetof * Honor stream->weight even if stream->last_writelen is 0 * Compile third-party libraries if hpack-tools is enabled * nghttpx-init: Start nghttpx with --daemon * Bundle sphinxcontrib.rubydomain https://bitbucket.org/birkenfeld/sphinx-contrib/src/default/rubydomain/ * Bundle mruby * h2load: Record TTFB on first byte of response body, rather than first socket read * h2load: Improve checking for timing script input, prevent false positive in certain situations * nghttpx: Implement PROXY protocol version 1 (--accept-proxy-protocol option) * nghttpx: Allow link header server push for HTTP/2 backend as well * nghttpx: Don't initiate push if client disabled push * nghttpx: Allow absolute URI in Link header field for push * nghttpx: Fix crash with multi workers and QUIT signal * nghttpx: Add mruby support which is disabled by default (use --with-mruby configure option to enable it) * nghttpx: Drop connection before TLS finish if h2 requirement is not fulfilled - Fix typo in previous changelog entry- Update to 1.3.1 * Limit the number of incoming reserved (remote) streams * Add stream public API * Rewrite priority tree handling * Fix parallel make distcheck * Define it and itprep recursive target if AM_EXTRA_RECURSIVE_TARGETS is defined * fetch-ocsp-response: Handle spurious openssl exist status 0 * nghttpx: Use nghttp2::ssl::DEFAULT_CIPHER_LIST for backend TLS connection * nghttpx: Don't allow blacked listed cipher suites for HTTP/2 connection * nghttpx: better handle /dev/stderr and /dev/stdout (Patch from Tomasz Buchert) * nghttpd: GOAWAY if SSL/TLS requirements for HTTP/2 are not met * nghttpd: Return date header field for 304 * nghttpd: Support HEAD request * h2load: Add Timing-script and base URI support (Patch from Lucas Pardue) * h2load: Add timeout options (Patch from Nora) - Fix typo in changelog- Update to 1.2.1 * doc: Reword the HPACK tutorial (Patch from Tom Harwood) * nghttpx: Fix stability issues * h2load: Fix crash if -r > -n- Update to 1.2.0 * Fix crash if response or data is submitted to closing stream * Header table size UINT32_MAX must be accepted * Use PROTOCOL_ERROR against DATA sent to idle stream * Allow multiple in-flight SETTINGS * Strictly check occurrence of dynamic table size update * Fix configure warning that 'missing' is missing or too old * Fix rm: cannot remove ‘*.rst’: No such file or directory when "make clean" (Patch from Alexis La Goutte) * doc: Reword some of the server and client tutorial (Patch from Tom Harwood) * src: Remove monotonic_clock replacement macro for gcc-4.6 * nghttpx: Add TLS ticket key sharing among nghttpx instances using memcached * nghttpx: Add shared session cache using memcached * nghttpx: Set SSL/TLS session timeout to 12 hours * nghttpx: Enable session resumption on HTTP/2 backend * nghttpx: Don't rewrite host header field by default * nghttpx: Generate new ticket key every 1hr and its life time is now 12hrs * nghttpx: Don't reuse backend connection if it is not clean * nghttpx: Add AES-256-CBC encryption for TLS session ticket * nghttpd: Fix the bug that 304 response has non-empty body * h2load: Add -r and -C options to h2load (Patch from Nora Shoemaker) - Changes for 1.1.2 * Fix linker error with libnghttp2_asio * Allow custom installation location for Python bindings - Drop no longer needed missing_nghttp2_timegm.patch- Update to 1.1.1 * nghttpx: Fix various stability issues and memory leak bug - Changes for 1.1.0 * Fix DATA is not consumed if nghttp2_http_on_data_chunk failed * nghttp2_submit_response and nghttp2_submit_headers may return * NGHTTP2_ERR_DATA_EXIST * msvc build fixes and enchantments (Patch from Gabi Davar) * Compile with IRIX gcc-4.7 (Patch from Klaus Ziegler) * nghttp: Add --max-concurrent-streams option * nghttp: Add comment on HAR on pushed objects (Patch from acesso) * nghttpx: Add --include option to read additional configuration from given file * nghttpx: Add backend routing based on request host and path by extending -b option * nghttpx: Allow log variable to be enclosed by curly braces for disambiguation * nghttpx: Add log variables related to SSL/TLS connection * h2load: Add --ciphers option - Add patches * missing_nghttp2_timegm.patch to fix building of asio library * nghttp2-remove-python-build.patch to fix python bindings installation when autotools are used- Update to 1.0.5 * Add STREAM_DEP_DEBUG macro switch to enable runtime validation of depedency tree * Fix another bug in priority handling; sibling's item is not queued when ancestor's item is detached * nghttpx: Fix crash with --http2-bridge and both frontend and backend TLS- Update to 1.0.4 * Fix assertion failure in stream_update_dep_on_detach_item (GH-264) - Changes for 1.0.3 * Fix bug that idle self-depending PRIORITY is not handled gracefully * Optimize dependency based priority code to Firefox style tree * enable third-party for asio_lib too (Patch from Mike Frysinger) * fetch-ocsp-response: Support LibreSSL, and include port in ocsp_host * src: Support compile with LibreSSL * nghttpx: Fix bug that x-forwarded-proto header field does not reflect frontend scheme on HTTP/2 backend * nghttpx: Validate :path on SPDY frontend- Update to 1.0.2 * Fix bug that data are not consumed for connection in race condition (GH-253) * Define NGHTTP2_EXTERN to __declspec(dllimport) when using nghttp2 for Windows build * Translate fetch-ocsp-response into Python * libevent-client: Fix bug that path is broken if URI does not contain path part * python: Call on_close callback when connection is lost for server session * python: Expose client certificate, if available (Patch from Fabian Wiesel) * python: Catch and log failure to set TCP_NODELAY (Patch from Fabian Wiesel) * nghttpx: Add --add-request-header option * nghttpx: Make WebSocket upgrade work * nghttpx: Fix bug that END_STREAM is not set in backend for POST with Upgrade * nghttpx: Don't send "Expect" header field twice- Update to 1.0.1 * Include stdint.h instead of inttypes.h when compiled with MSVC < 2013 * Fix invalid memory free on out-of-memory handling * integration: Use our own copy of golang spdy package * android: Don't link zlib bundled with android NDK * Dockerfile.android: Update NDK ver, and ubuntu; build and link zlib * src, examples: Fix up OpenSSL initialization * nghttpx: Allow HTTP Upgrade from POST request if response header has not been sent to the client * nghttpx: Fix bug that PUSH_PROMISE is sent after associated response HEADERS * nghttpd: Close connection after settings timeout and GOAWAY was sent * h2load: Fix bug that NPN fails if ALPN is enabled- Update to 1.0.0 * v1.0.0 introduced backward incompatible changes from 0.7 series. Read https://nghttp2.org/documentation/package_README.html#migration-from-v0-7-15-or-earlier to migrate from older version to this latest version. - Changes for 0.7.15 * Hopefully, this is the last release for 0.7.x series. Development continues in 1.x series. * Access violation in buffers (GH-232) (Patch from Etienne Cimon) * Retry finding jemalloc lib by je_malloc_stats_print (GH-233) * inflatehd: Fix crash if 'wire' value is not string (GH-235) * nghttpx: Revert 585af93 to fix crash with TLS (GH-234) * nghttpd: Add --echo-upload option to send back request body- Update to 0.7.14 * Fix global-buffer-overflow in HPACK code * Fix doc for nghttp2_select_next_protocol * Fix bug that promised stream was not reset on decompression error * Add systemd and upstart configuration file for nghttpx (Patch from Zhuoyun Wei) * Improve nghttpx logrotate configuration file (Patch from Zhuoyun Wei) * Update sphinx_rtd_theme * h2load: Update h2load to give connect time and ttfb stats (Patch from ericcarlschwartz) * nghttpd: Add -m, --max-concurrent-streams option * nghttpx: Log absolute URI for HTTP/2 or client proxy request * nghttpx: Add --header-field-buffer and --max-header-fields options * nghttp: Fix assertion error if very large value is given to -t- Update to 0.7.13 * Fix bug that promised stream was not reset by returning NGHTTP2_ERR_TEMPORAL_CALLBACK_FAILURE from nghttp2_on_header_callback. Instead, associated stream was reset. * Allow NGHTTP2_ERR_TEMPORAL_CALLBACK_FAILURE from nghttp2_on_begin_headers_callback * h2load: Effectively disable flow control by setting large window size * asio: Graceful shutdown and joinable server (Patch from Xiaoguang Sun)- Update to 0.7.12 * Fix bug that nghttp2_session_set_next_stream_id accepts invalid stream_id * HPACK: Rewrite static header table handling * HPACK: Never index authorization and small cookie header field * Don't install libnghttp2_asio headers if they are disabled * doc: Specify program directive so that hyperlink to option is correctly pointed to the intended location * asio: client: Call error_cb on error occurred in do_read and do_write (Fixes GH-207) * nghttp: Add --no-push option to disable server push * nghttp: Show stream ID in statistics output * nghttp: Remove --dep-idle option * nghttp: Use same priority anchor nodes as Firefox does * nghttpx: Don't push resource if link header has non empty loadpolicy * nghttpx: Add logging for somewhat important events (logs, tickets, and ocsp) * nghttpx: Set Downstream to stream user data on HTTP Upgrade to h2- Update to 0.7.11 * nghttpx: Fix waitpid race condition in ocsp response update * nghttp: Consider user-provided :authority header field for SNI as well as host header field - Changes for 0.7.10 * Make sure that nghttp2 license is MIT license * Add nghttp2_session_consume_{connection,stream} to consume bytes independent * Add nghttp2_send_data_callback to send DATA payload without copying "static inline" fix for build with VS2013 (Patch from Remo E) * Update lib/Makefile.msvc (Patch from Remo E) * Remove dependency on libws2_32 on Windows build * Define NGHTTP2_EXTERN macro to export function for Windows build * doc: Generate API doc per function * python: Add async body generation support * python: Fix pseudo-header field ordering bug * nghttpx: Redirect stderr to errorlog file * nghttpx: Fix bug that data buffered in SSL object are not read * nghttpx: Remove --tls-ctx-per-worker option * nghttpx: Add OCSP stapling feature- Enable python bindings - Update to 0.7.9 * Implements h2-14 protocol (http://tools.ietf.org/html/draft-ietf-httpbis-http2-14) * Implements HPACK 09 (http://tools.ietf.org/html/draft-ietf-httpbis-header-compression-09) * h2load: Fix crash if -t > -c * h2load: Add -d option to upload data to server * nghttpx: Forward only "trailers" keyword in te when forwarding HTTP/2 backend * nghttpx: Fix PUSH_PROMISE header field corruption [GH-194] * nghttpx: Fix te header field is duplicated when forwarding HTTP/2 backend * nghttp, nghttpd: Add --hexdump option to hexdump incoming traffic. * examples: Place AM_CPPFLAGS first to use in-package header files first [GH-192] - Changes for 0.7.8 * Implements h2-14 protocol (http://tools.ietf.org/html/draft-ietf-httpbis-http2-14) * Implements HPACK 09 (http://tools.ietf.org/html/draft-ietf-httpbis-header-compression-09) * Validate :path header field for http or https URI scheme * NULL-terminate header field name and value presented by callback * README.rst: Cleaned up the grammar a bit (Patch from Ross Smith II) * h2load: fix for segfault by reserving correct worker count (Patch from Stefan Eissing)- Avoid shipping documentation redundantly. Set RPM groups.- Fix rpm group- Update to 0.7.5 * Implements h2-14 protocol (http://tools.ietf.org/html/draft-ietf-httpbis-http2-14) * Implements HPACK 09 (http://tools.ietf.org/html/draft-ietf-httpbis-header-compression-09) * Validate HTTP semantics by default * Add nghttp2_option_set_no_http_messaging() API function * Update http-parser * nghttp, nghttpd, nghttpx: Use "sensitive" to indicate "never indexed" header field * nghttp, nghttpd, nghttpx, h2load: Select/announce h2 in ALPN/NPN * nghttp: Fix unaligned field output in --stat * nghttp: Fix -H does not work with -u upgrade request * nghttp: Update resource timing terminology according to Resource Timing TR * nghttpd: Add -a option which takes an address parameter that allows nghttpd to bind to a non-default address. Patch from Brian Card * nghttpx: Use omit minor version in case of HTTP/2 in via header and access log * nghttpx: Support UNIX domain socket on both frontend and backend * nghttpx: Fix crash in http/1 backend when backend returns more bytes than CL * nghttpx: Cast configuration value to rlim_t to avoid compile error on 32bit * nghttpx: Fix 1 second delay in HTTP/2 backend connection * nghttpx: Fix request re-submission bug in HTTP/2 backend * asio-sv2: Fix compile error with OS X- Initial packaging of 0.7.4/sbin/ldconfig/sbin/ldconfigbuild70 15694856911.39.2-lp151.3.3.11.39.2-lp151.3.3.1libnghttp2.so.14libnghttp2.so.14.18.0libnghttp2-14COPYING/usr/lib//usr/share/licenses//usr/share/licenses/libnghttp2-14/-fomit-frame-pointer -fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.opensuse.org/openSUSE:Maintenance:11146/openSUSE_Leap_15.1_Update/2687078546d58ee07df54bbf2ea228ec-nghttp2.openSUSE_Leap_15.1_Updatecpioxz5i586-suse-linuxELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=2f8deb2c60c40bf3a13fc44e81a4f48e6814c22f, strippeddirectoryASCII textPRRRRR|C9`Rg(,0outf-84e8ad0177ff0a745008db5594bc144d44544f358bf38ff51a357266fe6e879ca?7zXZ !t/vL] cr$x# YyXB,\ fD58"թ5nO!ISydx Xdc ׶֭` SU"rNo^#DaM^)dm`oߎoW's龿A6dbFTR?a;GDTI¡5 ЊX|1YLghԟui@IF)4,uL7,j%CV]jRJda99!;}<~Zf%gwp+! T&,ws%8^,)?)6x)]87/`(R 7֪ZGT B@p;ʫǬ }+֖!wBD\C -lkпa06 ym OAb(253gg{ĀDeHhTNFryѬ)5!XQrގ=2?Đ/ p -+MH 1I8|^[Qhr)5ͩ~J(Uv@{ mB3o^1} ze}1=b9Vu yW&UA. L0I[ u@J5KV%7bN`c}icvERh:>z4UY4Ѯr%wn w oT,AzJ1PI<5}f8X)_:&irimmXDYӂmF=R>ls|"?#)6b :o11ÄZ|  <} 0zuuNMxw|!N0HuG*YQl ^Y-FIt>X E4 ]u"!.(U&QP+]V6磎ʟo)}$A)tMxJr/,.2!ǝ0=!t2?OްB=th\.~c+ֲO }}ƣer+!IX-/6VP pˢ&mAM&U78M2f?hKGN # `H4N3ʡRelԞ"[xma 8Bä!-|4D4 "a xM#} LOV\ ߇qwj҃ZdvNLyҮ".~e۽y}6!VuFNdT*֏XqjP#;}t7ɜH:YJEWUZ>͊d-څ8x xSF=W %ml& acP`AKH 'MSvX{g]2z 5:>d,rVOee(y9#>v㺕o)BӞ{AȜ(KoAS1ӧ4)Egfb.=V?cX@֫GKgin(.PB}cJ@QYBkwR@5"b[;3n,gXqPvՎv䵠6L1CACmj RW60hq[Fagu߫pCIcsȧ(9[yS¯o" $E=mpgZG*j<[Qd~-qcYPnɟsMo,K  4P*YzԛjaEO,Voa+Sb3tӬ)-q$w#>!]TO=QǛ*+֯M=hm8V߆z;al"}qPMRiBEo+aVuE0I#L1=JCQ<S2 8Wm14zA438I@dLi> ZF%wDr.$ȽGElG⒖uM 8hE;A~e(M{6<U8ƣm2h{FQmFţvLʆ ϊ$ Ċ-OS$T J) ğFͧRzx{BlH\E^}hrjsTd&o\pYmҁzkoWAKmkE$B }Zn~o,%97f5Sj(\ 8 ]DzOJ Gkm>/z=vҁ6)iib#I 'K@V^QtNf7 OS<jǀsZ)EGBKnw"&դ50-OC.IϏr@~_5CZ)=Q8Y춵&e6Wڈ-Y#sx8Cgڠpt鋫yK([|Fr}\c,S a?Wvς#\dU2M.bMl G)^}TY‘{SH55$bbȹz.h_!:(jJYpg$@},JZ\wή6:8ҿ!iAGD6U{ݐA!%j%|` 3ԚX57;( }s&TKd+$߇qT#yY@V+WGE&Ѫ%ˏAT:VH\μ|xA׈'X,ABui6@B"ٹ˔I<^_7XiS` JN1F+6A0{j+|w`?} ?axA KOx8iL(ZWVxG9Re|/p0MhlBv!gN#?^-l_ʍ+{cse-۴ |!ju CRVy#l-`y}ă B {_{Di*%Ɖ%0 [2CqDSc^P8RVsb{h Mà6 I;c`"(lL׏ s]H[7omm)Beϼ)s"2{a,#UĖ ] .3;2oU6f{u;[z1\yu@oDyjI71qs`HҾbi9W.~st{ZX`!`G0C@*PhÚyE9+;jn 4(90h7h ,*", AJ^ܟHAYYX.\Ucǃty|~TJ0w 4!MIϷFBu÷k~rzr,Xb. +<0rOKQ59cjPΙRQ1)# D '/a VV~%F+s2ͲJ>&=D!~]"mNg*D cE1q sk >c އOլ WXfi.ȓ6KOތ(0ok뀓 BxN 0֥5#xhLS s7j B97-*)cqgRm -Ե˪AzT棲jD ѸV?,CU`szChkY ~ '%꧎vML/'\)xtF!ȶwtٚF2h5d(Dn 2£^ʟ>3yMot|8_x\G:ț>Yq-pfDWp (o#ӯ g3AU1VR0.lu|m3 |'VB25EcDq: VC?Inq'!&ʀ آ8jN3&ve~$Yƾ8!-왛Ԯ}(#57BödҚ{0$on2(liե-??)u}w48tcJ3,t azՑhhH|ON5s=DX%}?&hp]fACCx*?P븩g-'GX}ήDnGlS_Çrx\~jMRJZ$0 jzxX`8QgԼf1OfXӽ+ZeO2˾{[(=꘰V/v F"R<{=޺ֿvyItǐʌ__0X81lmh38E>ؐ]j1SpۜYaZ>I|MM ]-^߳ln XO=UѡQ$z}¿* }Isɠ({}+@(UPҊPOe$WhЋ7PƭvX;Dk^ )h {.bv87c szX$ojlݾ7|9:]*1NcJDH KdTw("2CIWIfM@裓M6ұ- TI/h["3ӞځأLMZl DDuiԌ$t,sL{?}++)fuKcT7W9#Xur1F)881i.  Q=AhHz`u6Az83嶀s׆ֶjY K u}`'4Nx:< f>m3C$GOsJ5$;YWY' ; 1VUn/k~<$wʞ.Ja0辟v5 c(A4'+P&X+ ҳ Y\-ݳ}ǫѰ-\mT.s kfH]Y280eQAw``Ck;ۉ[Nr:w`=D2;;7V2iU0 Ü\NQʆ+u}$Y\IR*j$.|F6"Q2)M) eS0EړM<փ 4C)K\!;J|Nǻ᯶2w=TeyjQi^-a M_ ɏӐw6t{N0-PBGK(*&7@c^B 䠦#2$[O&;#Fr1n*ra 0 Λ c6RhBrщho'^WV7Ez= Z <]NOM)N2`g'j7Ɉ$W7E-%lhGO• =iߎA#X;vxަ3=/q?b%葘N SHm]O#B6XA mR0#bPn#yIl+3 v7I摻U R\*D2*0\M?ȩ ^>χ>-Gv hPߎ~/ʼn- nv%{sP:$p{%Ԭ&׷vH esȓBmξ^K(/һ_^,Gh2c{b"dA'^ h+s6RYpÅ^blU D4P+d^W{`k[ eܗa%dϸܒ['[]EYK0ՍГ̰Sӥ_u@Y6LWܸwzu׌}\UN^hgv9ߥJN^A`o-@{VW jxU +7䲔 BoF=pғKfi8LS I ?Bpz,Q+!p+0njb7 j:K[~9S!a;<(+m8zhtp 9I|3}#H.X%Zʜqq4xo&& |'ڄPzX;Q;5MmG)Ӷ!9ZPVsTE#ʴQ5KE!9`G-O9("z^LU7 )a:: -%o@]qkva;*#'3kJ'! IPhҒFY<`3({ 3 jX*PidE6A~Ûus_oժ&D[Jf*d zc#8l}^ళ f[-7 IG{}^Bf[S:}4 KQ㊟VֻAcчr{0.}lOHN `:Xz=ug%0TY}5SZoaN[RYhba0.ᒃri]¾#3S#Ĭ'ˇ.]d}9)8h"5>Qt`'IH/EHz/yÁbd_Ї,mqn0ֆ(hK*~FW[^c>1z\:ٕѾ[kd_2lu&-4q)"s3y\Ozx1'|w#mh;gV}۞|NxKW,罋\OYu>!ћLM?F4 F;B?~^gZ 1EmPbV(كɔb)8"EO,o\\d__frץV2.]t.=?#9Sф-LyaN, c([pȲP,'~c\./{,, o(1[]b*)% l*y<2;ēi(-1LiiCQD;i\w3l 9ɰѢ98N&; 9oGʞHc2^_dmt2ka 0n 6( {d٦dƾ#΢۔C0]vni*OipJ‚EVxp?:_' g=iڂm5ZuV?2awx~fD0s\8Y)=OkyLޝTA>}={׬-dO-nio}?&}t ZX 2K qsYK*xoNrIp~A_;Pr" JJ~b@"k<*d9U٩3ciq=jbf˒L-M;%3wC#]`T: &a[U5K9sMHo9$W1pzL UQzbyTy]1\Xs~Lb`xv9ތ͏*OO| oOs9 'n'XyJ3@VIⲕn\4\c^k&θ+&Auj9ϋe7}H f{} L8iR.k)t!ҙ,3 XbOҚ3|I)"v9'$aKWSnȚ-=}US7+] R>X4e8]Zvr+,FM\}or}8ָ3t i$#Z -3 l~Fߢ®%cM18+'IL0=I{myLи3Jj+|,HlUCCg$LRR[mתSc k{+n]}Q%3ѠbxNO{iZd߈s5yK$x/#c?7`}m̄4BiLƂߛ[9yr19BeRIļ%9㉀nJIS0ibGHG9\, WHº". N(Z_7"^"؏M О<=Y!uw^V/ڗV&:YrwcahY#&bǽdPa`B6ͬv8yןkԑvxs|c D&Y_,4<(.֖ٔ1BD|e"s =w22lHAG'֙C/ ЭQ䞁K& ]QnAdBo$|V/c&+$9J op{0k!Z'%GSVg335̩Co#󼧪D87*Q)(oz~Ceo]<'.mQ{bWzb3NEE^f-[f |E9Rɛ\š;gih}_ R:IE"F=ya}T e,>)6=1cshycCAl C0e*$!r.RU63ל(pH鼴$jfZ>w!(6YsothM{ c%'j?71 kD5"Go@4H9RTD̨`P*i%;}&g{&ĹZڤ>x߯0ޏ_8"PPo&p;xdߔNKu]NCJY` QgmC%}i4eځxuV1W%M% PͶ8tM]trC]yZC* 37PrA0DV.763<ׅQ%S*^;΂S[Jw?0VsywI iC^[ 5kge/Оxў'v@5./0d b^u; (m+ݍ+ (j*\vœW- B,YnL&\grѥrm8ˠL{-=Ko̾zJk}38bH5}&oyU]AWRsk߶PBKiӜBMۖqŵnmje,RrȀFOO-[2,<,9Թ~xlN Y~ݪWp/z=5Ǝ<c)|?Ʋnq=7-uM~zc=X"1ҷhVqʮO%hHa~ G`)+ vaϣXCu0 Ò1Ffۗď,4dx†B]B1 =ٙŲ]GhUx8ͩDߓ]>01+@ɬ1!eRj4'vDGgҧLl/V1ڨ0_#u3q+.#z==\pn"`,ް%i;V`v9kS_`#yb q,4kVW*95(cob`^'cqt"񐑯 u-tz_U[e%Zzok}y xK*Q2L˛'T:Ejy])t>Z~L)V{m@ FЪ ;'6_=iDcPggYHT߽nt(!ph9՗mh@"|zu"ώ@2i.%ب}LHVyK%G#~q2s7>N+:&Y7 O.4K(˧ ޲o[z3Q V2+$uKϲP L/ƬԳJ@!f6 ?# b2-k5,IQ,βU,oZPQ$کJԅ~>IK~8cdb~\&e;IdfqG0 빫pKl_J62OB0wriQ,7:_:f>R.Lb `F3O clZM _ס_F0Inw-8|ِ^G n}]2FJm=3%}!ϼB0=%Gp7\(N}W\I@˧W le炭ˆo ᙀ""]o"%)(3gSXqԱJPk\wBU`v^t#~n{?DŽ7cԠGgȹ;ϖXL׸1Jpg_sxz:8,M>1+) ዶJY((c%H83/(*5h[Rm\y*=>B ތnH{dLmoɰI )"il1SdkU(cd=6c矵e̺}\n;'`œh]"4<î{Yk*nNzmeشrnq'ef0{,.}Cb\YE"_7ML@+ۤ{X-z{c?+qs{X5'}|œ|^џ3o2uh4{oJ^8E i C%T;>P}K>*Bz;&–7uZ1ѹN2#x&cTJFLEy1?‡sM&d]| !Vy>'`Tr8?TjMP+8ݞdoiigݺ;i u-)jS+L(2H5,Pj{ ;BY)"?6nAPo;L !y޳:s%7t1^3IX|!2eB_q/7sj}>-W|hŊxmAgʹĸqѠvNedG%(9;#0X˪8I2츞P2=+UxWi{o,HC$ۥ4HWHͽul+l mLA_35q`^}gܑRL!= ՟{Kb/Z-e wIpu%BpYM1bT,ρ@]fYzk9Jt#K@2&e.⛻*¬{sVh5cH$sӫr- K|rC[}ɗMWd-ڒy.(6XKn*?~R[JЂ/'&HփoR^/ߢWkut߆s%CDeNǾnEB(X^g5_8bӐ]Zo?3i=jJq$X ̺)8-lɛk9HCם12 (AIGՋz!Qxvf9H[@A&U[IgɱkQYTUFfXrE$q>x ۜ .cla|SjwIv3=M'z5I>z۠6N6,m}DsG*=m::_B6KbXF3|0Av} rjK$dvc<!Fw6WR -3oXhW;ݒ85&bdpOHD6UԜmZvdd)ǻ]Ç)־1Ǡ%zdYdxʜTHXjO3&*]G#0^W ڿ[:fֽ34vM zMڮی7?1>TN^iW*.(A|%HTO%9|_Hz^O]_5҂ْ";kpk`gyaH`>x{nH(4̠\)vuё [L7Aʾ"3<' C(~ 1G͊AzJ;IײpE&4 m|!Q+lŠriNPԯ|гhX7Lyov lEH2qw0o "_S*}׊QX :.{-OF4\S:"'lx+c2+݋(nu77 5P`c""'DЦ(-ޚDJu<^4f[j8j=g&ُh= =ўvO =G:*1 H0t͙UxV^T?4,8ѴVe7LJ!eec3~ހ$ej=,S`tuV%8lRqݲF=j{tυ!jVEa1ˠGnuH:ӁKԦ.5ZTS?b&%4)<%sVRr.}ӀhA=iG$MW835Aj3R@V}<X2|Jo# z5QAʍ$љ.pȎD!’',\'d؇/&sQ _:>imټI-5"YeB$׌5"C LO;SO]j.StsE+ao'ur)J'#a*ezȮCPOGitY4Q&l5WvU8Y(vr&mk0 ݋զ Vgz}uflw^$IYTg si&5 ӣƏ$ -x,]OczFȚZPv6,1lBn7_sdАce L˕* RZV weBT zRc:9OL8uߐPeϕ{ڔ^ƂgvI΁OV~W|k{E"~ҽ ߛg8j`f5 dAƋopE?AۄO{O,od!R&_fS)>Q)i*!N7k~ Jȇ0վ "Ǩ G{qULpɇ/wHuRSœXATfؾ%!leJy_ߎU<%J\ͶcҢ%/F{U2+_p/Ӥ`ȶYH&/b)1a&qWJ R#n>~E|Yhr:q|8}*4g4EtG+[^&~+sBfbcUx 5(2u}esOyqϗt~OCL8BzL= 9q#ːy 5*lD&|@3; @T=iC?}CI9EFd7ժ2?ɡr^bй fUF Q4%g SZ|p&29ՙN>dat(LwԬL(XQ S^>>x:DYk3\ q-V@/5fP,x[fDoԧvwMNVWk$m"7j(e ̆$my-&`%&ZqR1\@6O~Io.oNyN:PGwUZOr_׼ e:߁?^Lm4M\%\P6i47H {ݼ[2+xH+MXM;ɭ&A))_UX*h/j`21Cdu ]&i.#E=@guPPκp_8ȏԑSa TYlm˶%2:h2/@]_(*N"VFp\mC:<S9+8ضN.:@9^szS:k0l.kSˑԢ!Ў s^z&m ff'AG1=LYYf_}=#Z`eC>ͶdE1ndKq alCkF"$pEXjG'hd7B1+_ɍ&8Ӂa& b% }0uIX]3eK^$z q'"$X;.S(to?jF_y+iav@yK5֍i<V~#_j*{]K0 lu{W>8s.Ѧ r ՒYDb;G悳Rn]~ޛ{tZ(jdꜚ s?ǥK}=oHS͟V_zoFZ|(b:65CE(kVח#[HvUeCƧ|l@kara "c{Eh@+q9ҧKR _D 2LoCjrK%F.wIOlѕYtlv)ȩ&Ѓ$J,HvF?Sy]4^&%MQZAԅ㌌fԥ WU۝Lk%hqԑxCw1%6^e9 U#9'Ӗ`]l̫&K0=^ NU߲ I'M՞#FnD |;WԞv _+rǻV8Ƣx%^@M?CcSp2L 8r璍 qm18ww8+3$~\fhL 0%ˤq%IxD@%ȸk>?xa(J3o' j77xDp\PWR42N} 1S|:`#;$MwdT}`5rC4͐:x1;\g~1O&qpI21?%{t2 Lmܭ;}\6[uT_m ~=)kJ4KԝY"9-I 8~HX0=UxH@ZAM^ 'ʳ$޲< SIzVwB~J$H#"х7ĉ!:}$u=ȯ L4]Y `5#֑\~\G xL^nyO2j` U 3.^U7#mHW %[@wI-5ũ;cbBWq-#{mD:kp- xP?h\!@+KO%- kXhb]CDDߥf u*8đ 7YSUr0["JmW| B j.Ei}=&WJ;`;L'8{ף`Q9Z Q:av;σAp@aX9"fE^*|?WY~iƾR᡹wB|hkĬ MG=©/Nx)ReJW=l$tFMq\Dw lsP+5"|'"Lrw)ʈ4g{NSzvg uR2( W,g^"gt'/wmc.[ E}-sX_LKFQ nxyDl妾}h ^;TD*Qe R5q w׀S*4?+b[>vTy+ NJ'쌈;.,Q%}QKrHO)Dd~ AKcMFF}Oz|06T1%Vצ߳,"MӗG!Y+x椶 >VN4Hf'YrPXHհWDžQXJ{k|>1?"eTˎN}7Gcb١F7~{M򗥼2 Ӧ*%)[LiyB'>r;vY)&Y8߀+|$189jj{<8DĴW{vZYS>)D?,D!EAr^o{Y`RQam^iٷzc81Пxmї9kScBIsW |`eo3-?NHؕ TAҞ!t kr#{ ql~ #9ڰT j"E-p@*BC5KOȴ}Sӿj3PO-'K`-ʜ^g,1 jTs)?%DY-ÂKAs9|q@gn{cH}7Hi w18*F Oc q +1.{jʠƒf$]pi |;۬g)j3υ G&KA&Gѽ3ֱ0sZ@?mφGܳMEm=D!Z '4I_iڗ3'>bYRɻ]bU[bDZE<tSWM>NB:'=.NF=-g me!d[1tkwBu?5W;& pqb^8ъcًO!&'3L`{fg0%^H} c=ݛdv,dSw"`OZf/[E .PX.7jj")8KZ$1W0HA| UAQWe12F#ֹa`WLj,7h { in#\ vPpKUODzdgl` *$i;)M+FfuuG0M?( C-bl<4 4,pJSMw/ ECKɐ+U.,QزFO@4l2YKb QUyaj_ N ܂u}Q8,~Nl7n&/ +@SpAw΢'].U<}MæηwyGt>O0bhm'f][۠P :DF \L4'>'+=uG_ w~5l =3ڝ-1P{g JIcIjXt1Y9ʺ( Ws?=BtS˫t&aje587 i L]olډ|,e.&;A1C ΢.Gk""McPF5o["Я]c/IgsX+=Hog+prUД:w\ '\{y!u[ ?Gg״"ahexVV~ 0HMF@Nr)Me1g \q^ V 哷+lZ5uT"h 4ɳ߈Aᶲu>۝գ)6e..s*А25ݷgWj_vl DjBz[vY¤ds9)u)Jf =d{ +-x%Pjß 7% e52J Of\i=&4i>jF[*ͣHb1UsVhE `9-):'/>%.pkл,_ +-a&ñ)[Q='#KtKIe^%JJߛZSS> +J}>O2B˭2ܢ'5se]t({U(a \T }g(jS]OU-&iYߏ]I0}-i(gaþDELjjشǔs%qjЧ'KL5"ϒsHj]M-~8BWxz3u4yż^ġ8-"M$h?FR_0d wV}aGT.^?eXc@N^-lӒ&t1[Yj4g)lWK@&?lx诳Wx>ʂ_Nݼ=%͸yXtuu4),qÈڟgXLTI!aqH6{P|YZ=N #9ͥ 3૖YM>;eǥfHS%Bٓp}W >C=cK\E<1 #E)A9g,zK .[7[y:R D#DŽJ ݨPLS]FߝK50OO=9GՌnYJbF*-ï lR}IfeW7 q\+*r/+JEr*v=hU<x>Q "! ߹H^wtd˿aw;]8` ElP~z*J3h+b=yOl|7Py{& #9/MzSYܕjid+g(sQvtFdSO@\B\fRa ̵Ħ-s(;6|`s-zÂ׫1`r!)D.zָKC5&x*˞ZϿ`+-U-˚v:J8Q &Uf1!ѫ^@Du1")cոg9\%9_A-`63S5?]#:wa XE Lrm{"`d}-)J407#=j<BC}u71n,W84o? r?B&|EmKVu7s doGYʰ "$Д2%Wn4KuuͶā"Hd"+{ _\Wxm$]Ա4 \ERn6_dn4EGq8*9*+ Z:ϝ8H} N>NJ.;B)n^o<nh sD4+c!{>K6eq!e?Liȸh=7witD'y Dتx(=vBԂAz1Y'yҵlA}8S ^EgjOTu?m ']pŸ` =&)0КؕIط{RgoK'avn)l%|?7m7I]h1!l#2'lf/ڶ2h^@PS[MWw0M8\k7>\~dW#PH {nB Kߌk(JsMߐ"=Ȭ-3qg4G9k MӒE}Op귐әkNw?32}o| %DT~UMQUW(N2Փf=ЈI'%ǂR(N-`}[p 'n*#2;J&{lk]0f0vsT G*'zZǖ^YM}ڶHaJ~zT6+ܔ Xxq'>!@UpRx᪛X}V7]B9n⑞1 ⹴=m ct" dxTܨѝ݃|0,S+ Rd;9+PvVW_y DM{X?[uW=fѥ9lWox} ivg2iؿÄ TtP';xˋF7);M*qvZ2/go /_A:ߏr#'yK $k^8UT{<9< ="ol$"'+`mғ}b'P>2(";aCջ[ټVˬUs3 ځ@VHƉYe _5fr*!d$bvrqZgo"E.;+YZO^}=Av lSe'0Ybc4Ԯ.aHXKwϮلoNrgL塮>: H'c5LN~0>2Np5 tդ#U+7#=#͜hcxBCK1h{ ĩ(ŮH:NJ~-v4r a2&nYujWL\"My2ʴشz"u3j3&TGN5ޤT֨5tϭTJ$r_W!ȳp^P&8 Nu; `gfHGHu"3 DR%/rfIy=릟g]vYi"]uC)E?Ft(* ;DPzvh(6E ̈́ĕJס7\CڤrNGBF j.GKX;뢉3Ʀ_I'cF $3 +7$Uo[O xU"D|G*\LID%v̌]xF^4:T%d9Tt$Zqm> hkEXeJ>;Aq. ʱz㸼p [zg3ئoisjDhߛY*eU ,XAd]F3NoTap CX!\mI>›>CjF93¨W!h7~p8!y"+ȯH Yp9C; 4Ʉ/#L0γ@EVXӴ8Ratf Tw%Djpg8 i nvri[ŒxbB) Lֶ1.tG{uLH \¦D">8kHv_[=8֜^z .-N TTh38@'e+u;S:G:i,e/df X/b"{?yTF&-T0=%Ö-Πo  t9gХ2(zΧmFL>M.Ӭ AZxX) 烂BT$2aDŌKJLd,LHeL;7B *83v{qk_@x#.̻NBF:$Fx]Dݐu:dDr88ÕOxw?٠3i#h-ˣ@[R- k/J痨X{r-P2+=޴-25ˮ!ǪH27dxu^>!)>Ƚ:Q rrQp٣GrMb^SfNhɌ$cS IT (yGM ,J24y6f}p&*vn꣙.iV!fGzF({@3,~Á>XH|y,^EŝѨzt_{+Y]2ҍKV%ip_&(Yl9Wl4jλNA3L$`W ~JU盃v1V$Ŕ@#6 }ĔlʴSu"ǦkPfD[@3Xj!6+Rc+٠Քpp(A읺!;B\_ᩥ\A'7hp%!H;C\DhZYmvy 1AMx3]]ov8ۿ3knМYϵX.si ɭ O@EI -_,$zeǹ? m:ʓ _QY1dRe'%1uM>~n}Zq2^Z }EINY9=YEK|g!);1 F髥ywZ^ycUɌB{jDs@$o|ifTT=sA}rč`8o$j[Oܗ6yf{K?h4P<$DpdF݂ )FSKXxepNuh)h#^CQҭrD?%F4#i~(/>&[]kshBG%@uvz >O}Z{hlsILdݕ箄k; 6M }&.w,B3bj/FY@@Mih)@ (Gw&\1dj'O!Bsam/rnfk"M AuG]h^/! * T\gbSa\[e dcin%(sъmE:pwwi4&#KKYp׳C1ݷ6e81>o2c(n/fZ 9BY J)_2sN!8~p>~rO9;K~N'gNGN2kA8j)L@XKO3ĢbbwRM l n BS9=ny\[&  ؾŚuPB>q0YF7LJCƐv‰m6%]EwYE%vr9I ;OAe,:SmӺD_&v]bi0UyLۀQ!n3pn|wϞcSͬ)TĴ?0yL6cx`^E:bNYM'[d]Jz d =+~RPo6:@+d*u*s"wǂTo~ ūwnbƃ{=|/,pv2ja&)̫FB.R͍56.a\m{*ĀM܍T] YW'duiP.3\I}ŵ h H1C6cuG2 FVʋNk 5\;U_ 19 G;?W9Z{}Sbyz0RHXߒKWNjʂA[ FmNLI7[A|pt3$E])meLQd( Kӱ3#C(~mEDp^ o߻Gjsz?~]b:Ӭe%ܜ3"2kúa&l}0< /iK>*um/E^򾍄KbzaAbG.8S{`,z',Ƈ*)$u|a%@gsڀDy vڼYsn¬Zv>bP(E(!63 ;׹d5}}DOz|K%&3״k)(EkIxڤ 2d߲4' XMsY_p)X*^J܄ TT Z% ! la̎'B2>X!2ަ?L Q7*4'ߓ i FxFtrt=i(nrafM`JP嘷{%ZCQ,bcR儽+G9VdLG c(?V[n:mʹy->7??D}h>?g]L kxX̱{?jˌ!Y_k޸>1`>w9&ԝ叶VlAXƤͺ+g2>L:9!p+X}B]1r8=/I&OH >)B,$UV rgwd\J MIFC%ґeƫ/KlyJL2!|E/<0ٖt@gťc_ʆsL#~"#T^w<5 '&Ti4aU 3Ŀ?ny|3/fX/q'7'IqJSVMQKOc8ު{3m0{%/wH͑P싡w$Iijyl;ntXH:e-&9FRQe&-'ø̥ǖ*vRUϧQ k>pI.k\{+kx`W{}mFtM+E!pURSX xx¥uxj#y9U9Pv{ǭA&&^ck㚗 7e j4v#Z8.l}MFI9^|s7  lk'q iZk0]Gd+_ pƄ[w83dELlݺj)J+v`n%-ҫ%wp᲻uqP`2l&M3^p/( CR)R2ϽhR0q-h Xwvm>m.`l_D^[]C.l*%l!@`q>еTPL O=>8M* Pu2ԮSY (JqD $WнѰk h%ЪTrpVދRTh/f %$h&"}pif dts#3DtcOfVޑ7Tb^:wgb[5uh4ʨJ7(yzhA\Q_M~s'VsGx7ԇFbѧ( EloFgJ;2&z,^;$_WyM0ljfԃ`F]!-JCBldx+,qNMRΦL΁ZKG0aG^_@xVq^놣ZO|/84j}dqc{9;JX{u )_j,r PؚthRۧ %jE<''>^iUVZ)C+~M6ֆO %{nc@JHN2|It^YZgA&,Q_)dUꗖ9Y%rpɿDz4;z| ۆ6eYC1DG'o -U5^Ȼ˥t@-sjnlKY ֤;`\+h0`*_oj bcV`gH"ym^fݙGw,NT[/25ڒBm 8*n'BN Ԛ"$V=E93 yybNրAdjP*h|v{S֢۲4X8?@`` w&17Z 3E?!PP0ߞȎ :kZW=< #]q 4}?,ge ITtOkkSaϜ8,A7a9&o4՗X'}=蝚A IZGA2?vI_olk *,'=o ^K\/ܷ!b}M/p\f14V\ܕRiyO~sIyNb(*9lc Bk)g:Y/TTL+窚fn$C[DK)X4צI#큻T TEm;I D$+)Ƴ~M}[l'5>@`?9?+Omhc a^7*@YsSXx|Wn\#'B:d䚵ͽ`̎ގ/&\p˂2-Qs:_CS.@=jM FQ_[uYS )G^5G՜eNZ0wD(GCbA]7#tX{|&kᶺTu$ҋz{D*`a4C__u>>_}aygi(o;(Y/Ovxw5rש>R \ihU ̿-+Eh0Xp ALetr{ok+ Rƌ,Sc[if?]GHKGosGyfZRZ 5{=/#)hVx/&{{/ԂdWlj}ggrUɜ<4ydgW04>pJ#qk`y Af2XTUUC(,n ?YD$uѢ0 ʞIeY5(0A4RNHV),l>!n^HR6˂C yڵ .N&9sBZ097[E.,-u4`U~8p ۑ_v5u7zmq27Vk/MJmb֯| @0CRD(!߯?Y2B{N\cw*\f hV0fp"Q+UZvAS5_D41 nӭc jl ׳ & \ Ҕyv3A65gcΐ-SUxtLO d|=VCmuI03>BH#Wnmz]PXH uhwl-[W_K*0=R*pj/܏o=!D7kչ1Ă{2ʁcᗴ6ҒO(eRkjk1@;LS%b06O9Q}6[ڌކK\ȃӼ'USPAkBC5YsL QLm2'-Z}!;ʡl|4ҕAgTZje9VҔlC2ܼW|NA ]ly+_NK;,!JI}59C:Y[Zu"bTF))}x"dּཞBfe E#Uolg&5zx1^~ZPbEwKoB]}}=bO3?cHq{\J#<ƴ9P"vR3 7y#JH "nUDES#P !*`H?ddgһE[ yxY>ʧ%Xj\9ց<$%Vf9QI Mޠs! u]bL $N&vDmEY0ugbQ*$%WBT3͸Rbq߶b yGlӢzLpz1uwJ@v(޷0Nn0c?gcq'qo_P#f.߿H!*GkʩDXB|4>lѨqrOz'cPC(נX!#ȕtˠ.q yhޯ](~V쁻X}{xزNNhb{0K>Ffur <Lo$ଉϺO.+kZ,h;M}h gչhH s!B8QM|lk=ZV&+4DdI9(Q+h})KgMAd|U9|JB=0߷y@mH__LCHi [!7b-4hHX /uAV$H*h-"pǭGyOw::;Fbo0u.ܤ+yw!.*wRYE4 Q%eS(gy5 KR(h6+0%o\OG(qcP.5'T&@Z0R;x{ADCNoK>h/8gձr`|x XxW]Q@bR'Tf\) KWo[ő<$^1TJuA>=&^ߖpeZt1)sMi+%Y^Oc'17Dk=1WR-nt2TQE S[e+wv)Ry@Y͑CmEƞq\(y: Q" !J[R+?bTu Or<ɰ ?f8{Ȣh&2!%1 EE"邶J^p$ |!G+Q/bz3UD54>TRT#beW=䧝\ %nhzPX'wA n-N{J87⳾7; yQ# tcE+[O g7< "79|o~m-9Ay2a&ӔR<3ƫީej#?xSV!ńgL\Eݏ: 6uaR <gλ1@݋tx= wu(j n B *Qe)-?IX0€i;,k_RcNr=|"=ov``?Vh tnGGZE u'̔,<+Rڇ3Nϱ\ZQV&c\8WBS" hrԵsN+>b)GOm68g]SHZ30R(fmv4^yN% \?yL@)%Ѥ"ԝ]s]Y1)~=Nh3zH!_4:o44|eT\hV@+.~>5J.(?1Qbdʣ<3g|_/Yh1}$iFOA'똶) R>AfdiF :S zS p1rή\[3"mTWv[nfIw؍S-G-^ )iǕ9L+%)rržv,p 5UL/)fQw<7Q3RAXGqc [aA>i?]ttv'y ƿSi\n"JOO{ e_-N3:c_7`p b'K j橃HX7흎冠&A3+0pqV+3,avnDlAG.+Z4Q1}Ys<8Q_,wvxpA7:A78ezMf|MbB\ `=+5PߩW17X4qtU_o;;|c BB _.2TAlF`ȫ@Z|:"':/z߸/P&6z构:G~+!xvr"Tz#i3m#Y*,Rr3|2℁I<L1C);T=}R _D5748;' DӨb;aAe^.eq ^IF lQU"<8L4miX7,ߴ.bƗfLZ ,Ugs@kQePs6]+tSi#y@]ӷ8[^B C7:6/؁gF4L=9rChx˱Fu7KD@edH`_Ug\^/S;*B`tm&IyrzgQz-ϻwfDc;vM|p ZxwWs9D&3A}'ّ`qpp! 0r&%jA{V\Mq|čSj]~BLV!m_tJ|m7v8mFdd [ sW(!3y栺MtQWב/0@p}ʿGu'MuPyΒUw=%Xnzvy=1ܐDnr,wې1ɥEӑs%G ymK< W8b op_^؈KLf/~p?o 5zBzg(9M]8=F&u@kN?uA\Jvaho`x FϜ_K7Onffq)Uی$s\;HD  mf\ͯSM$~Hا6L`PB_˯F1FTxz9lw1!үg\[M pO9pha1[\~p,OϾǤ\=kېejRV[rϽ:Gp)1Q`ZE(-, 8u 0dK /^h0ˣwKzc?f1^i+)Ay , w&|]NLmĕ| ܾD|h68LP^X/'}<ׯ򲱠VsD>Xƻؾsjƒ|CM"H60<-*R#m!3ܰ(:ɋ{Gqk ؉Rl+ /Zof1OP^ZKDwrnCd@#@vJ_CbķNCݭ%YK$ÿqN#b%%q)zuvza= q?gt(`.f3S;D(le]l#ty5sHSQmLoe-\aw]8II,!x_Wz 8Q<5ưFå,-[@Y ]S>ָ\>x ?&‹DN)XiP+.'\6G"1x]QCXʟwh^<NEy+l73k(H+-(T|ZϔO$ZJ(jUh " 2zSv3g$b-pm DK_TD&c$ֽly ܯc*'*.26Ͻ(f^4.|AB ;E(i9q%` (iT/M{O@K0& 4Jwoo̴5xqN>-2焐Ȝ?_xКY3Ұݵ, fRۚNV p P#В|4#+hcuS9us_NKİaI.&mF 8HԌP# |BQ)&!o柩:r;c "Nt9Ym%qcՎ.#PZ3 4%L|+OEL|zGJҵ"F̛@L?L^LpCQxȕt 䩫VW4V#|]GTVE:eSSh+6gM"v?-]? W@X [.$Pu:.qĖ u5EyL9;L(X-ՙ@l?~R?Ҟcys d@)dqAI`#+i{Q / v;࣎=6 j~BlV=@ ;Hő#fDTFS$C{76(yz47* "s ǣӝDZ"GXvO/zi=TIdL<%zwUhyMؤ*^.n=ȌЕ-Nf*:;/Zx Y=1xrs欑4 d1 ,ř:Z`dD7`ըSß&t`MHT<{[_ExpQO ;#HF3ڲ<[Jb֙U&J̐zNߩ*e㼻elR;]۸dq,ۖ="83w g,-ȭ+eW6XQ$7Ҽ= > š{^j/1(bo]:RDdS~ L8yv@Mʃ?)E5(`54u@4 J.mYn%7Y,-&lp0 Rˣõ'NA&d1H]ãy= ύ%O(1XAp㞖ܞlKNO2!l8JM֌e~OfB:is[Bmi`nrÄ =bi;m8t,L&{ICIY1KІRT'<1Z8PuN9=}ə<`Z\1 QgFcfN85ATG.Q)%"'1: waPEhV_sosejz%w2Wo0^́Pl?6Z!(\Eù]r+<4#< \czdd;(7'o Y4{Ʀ;R8YlD7BHg5c8!$"2\s ۤVNj (D!FL[G&} iQ|͎&4`}tNJHO<I$WO FmZ9|6(jWK W<[L'RޣNnFа7h/f8JVKXURj\sO%wa\O:IUޥf5Ayq%E(6CjNW71M3 U7.6{"8?2 ` >6㹑E /pk5NznȭJ{OX0Oyl/A=s?7("-t}Y:ʗqg%aCh8J9 7%Ioɺ՜m1CrևEedG*E(Ys ʈ\xwT!q18gkCL=PAiu;uhw;߫Kvl;#R_On)_Gs:C_.ٵ9%Ċ)cESN?8vy~PfG7먝RBa.˖P鼼tZ;D+Ƴ^CCn" !*V34IC U56[ ;C3NrKyQF#:ZKZ*҆J ~Mu>X =}G;%DnBdb Q 5jz'&{;>9w4/WWSp5wl˾W_6ׂF@~}h} Yɷ/9Zϻ~9?#%zoa;[m(JHOִ͐ł o,Uq;YYH*'Z/8_C#ъw#y(KеKPS(!ݺ]D.pz4n%xC1ꠒW| 7<16oc9MmFkW Ktv b1ԇ>YIc 穬G):f&4V1̲*S{`ڡMAp3'>[7P>T,ÑbErf +ʀm$D\l#JG~i⾀AsuK-Ó$!~vgNʦxDrJ`/Ey3uRn;;9)'RC46uZT[$q(0ݏ) l=CkȚz@xAý>?g"^֧0sD̮Jj:VȖgK t%aүZ0}@^VJ@n~S_Sܪ˵L%fш.v y[a)ҝV8psEȀrb؊z85㐭sd] n"WI6UTOy|hr{p[3\']qy#@=E*#h74+ $LTw &rԏ`Q6|2,1{qYNL^ϔU08AΉixHjTP7%?ۈR8«$n5%odeI=cJQqzq~݊^ )F:ffR"ڦOJw{0-mO8Ь2ffv,{ 4XvRvM%ς>9^^*^O7:6`P 6K̰eÌ{u4GcM߰y\7|֍p\OCS*Z"쓫 ALL& Cco0,[I̙QmPWS0IskǛMH9wL"/!-i"N_wijA0gnT xyk78BUjrmd=hrzCŞjR_V8~E8`Ęj,(c-+а<ҍA@{yMgϘU" ԝ lZ,攄H,P4A-GiY9DmjFpK7qxzrd>oϹ{6(utbpMBZQ뽀~ix*a=8 @nm7.8DzNwޚQӝӟ!kcxOy.04.pN\AZ= 3?w!%Kw,O7FImpvam6Zd3ŵ&9žCQjFxC?|}!X3Enp^1d֏WNo)w[4I؞ߗ"×9"CFEP$>ƢtbM, B: o74rm(-=qOh Le&ˤ/,:,0~, .bULaN bʎXT~*gjUyn`y|^$DC8P,6|i@rJGD,2qs8Ѫ(`&\[}Jkc=+3y1 |}s'T, D dۯyOwU&F5grQQL픈j؅W2winʂI.Qm!S>6c>Cj_FH$N~!`nb{kOѬ:$D=+_S{c.X'U˘ xrY*Xh"w(p#ϫ,5h[{FS%8i DUei _c6iQwOڧcs0sIwm7Y~.!]鹂|۾jcڑmA1ȣ\ԷzG ?DkBn[w+$Xօ) \%1Ak'\]MtL2*6ˏ .5JjnC7ػ9jl8O\4sy5~fϡB"2-5X[>Kk[<,CP6B',MKUڰ5jnw*bB-MY"rˈ*^TXsS:+1_xC}뵐bOh!I:{((Mi4{@d-?dz:F~XRx; gm~qjƻTS]u *f:  ~ùKY=k<+~wOp͊`lvY~vX;:0 GضCTek/f5 8H^x1X%Y0<[F?@W@0=1z*(j5_{yehذ\ {/5S~?,5N8*C@[- U"O(&c_YAJmi 4a-ܝ[+F6ʱY UI_|u3Ґ[nBkNɻzhw՟\kbvǑY<(Tm8J+Fq*oYWRɯHO䚱ʂJt[;VH(O 1TҨ|R/HNusZ՗ F̯_T+KmpF\O5HPH?4v1Y2Y*ؖ3ܸF`;y֦`F ~' $ 3I?@.ln߹N=yF}Zfz([c36͹ 8 0Oϵ0 A(}lpPރ=VzK \Cb'&XeVqvUɠiK{ aTng`ST^撘blWUn^%&*i]4@1֎(pԽ.Gbr¬^2QLRHU~myRrd@$ OW K;KVVl Rt~vg)Hhq?^q֋_ap ":$MZ*HB}U& 0g_R}+foGeC2Bf_c7^Yq خyv3(';8} cAom{ 1ix.kqKț W8S4z3kih0-*`?HJfmՙ$^V&uN>(D5]?&9rJѫ8Xj޻6= ʬ!@On_UM)" Sڥ*Gn>t _(+O7sVm*WM*SsF0FNE9xSF:f'X2/eb*͗\ 0{hp9iyv4D-aO@|w9ӧ8ϑ9>Iok1쭑5g)Tn k] J4jQ~)e)BEg].w(4F`P4d}y=vEHDNZ*詌심BxIK d`6GclQeB=i5pK%oyزjl VDW"0ⲗTLs*sH{Zg"$(`,>FJ U&Zc,Dg'a+[0"(\=QL6ͷN>~GnC1d'n Nd|81qfg'?Up.IԅQf?ef"?HK|FHcgm8R4~.3~ce1wLJ-h R"^%-qv)c2Q{5; "B-ȋfi{dE0k.BX C6JwJ:gt`CsVnx'h:NyYu)jaKkBV8W&U0|cH:'G+ofIb.?M@WM͝l2.l!v8Fv"ׄer,? :姩aMh!Mx M-~lMAFf_fzk9[DqYKdžgi L g5n/Nh@j'v{HpЍ5Uç5u®n}'C"$` =*nλB+J[@j*h]oKW:=BCwo'YO*JxcHXn Ļ%s(L,' /XFq +_u/Qa)ٵBPe#8ʝK%#>HhRue{#6T k8;sRh]ջ;;35b$hEI&[ɜ7)G*'S|p*XoKNRagԙa' @JGF&s_1ФcM_~mN-|gkR[ iKG՘tJ@T+D0MEu ֛09lhA=jZT-?UrGҷʺGcO IJ:,W8S($ 0ne9uvFdu/=(GzUy6>[iFܦp|} /{v.~E5<'Ҭu)NMӅј\L(J9~ Fa:&+Hԛ37,{kcnclΥ_c(&A K:kW ٸЏLSWXmaSu u]=L}I.{u*ɈHԝ8Z6N,E\.[߮o'K7ׅ`uw@gw[fw )]](jFIhSMGļ͎s~Hv[WI_{J7l7Nw =w]k@an)/!֥&*>k!ˎ6?1r[!LRˈvÿE$D֩ z:rM7S=U~m4l5/ [u>}3+qE oƄD]'uA=~ xFi~"Q9b>ѿ`s4?+@GKy_S!#ٺ_UDM1Elj2ԉͪahҲ]3.NȣΟ|'z f|jR-|CXJTm>an -kGZH4!ᣃwmcqr5zGbz3Vea& <DٺjWD/g7)H"K׭t??8SzO|otBWgad+-³4^q(l(@q-LrпvC\!s]| Oe.I֒OHwG^{jJ 3W 8|A_kCguz}.(8 ȡ¼˜2գ FsP 9!ǖ܂|nX,w)oi.Ͱ8ݸ_fdWw/7|7Yq9A+Ps ʓE'P5wo$JI rݗqq?^M}潔]Ou+A)TWO,~-F=]H˪s+|/!#Y{DGX0e[ES[o`Gn"*$?)ձW|$a?pQ޺NJ6: x-%/ Bv/J,؅2$zNk*2? 2?`I9x W$ʹA1 Wbt]"`uM 00>"Qˆ?\]/0[bXVqcJ/2'?V7HgUbOjY~\gA8ϸIƒ}Λg!ثq\QY8"/[p vRux6Kr#OaIԌãJjTvMEվn;m~&V&]TN4Eas~0ܼldN0fyR>YH:A8Th^@G8&|@G]pھXZxUZgXYWڦ,x6BK]m&Jkʾ 1;>L,[% Jf/-'ɲ.91SϮө(tlEʆƫؒ@o5:W̳_z$*nQX4T#{eb$GP44䫌 fVQ^Yjpf_G `xJ"ى qpKA  M!fN驂(F/SZIbbkY %RnJ-dyˈPR /?̤Y܉9p:Z1- &:z_5 rr [;$ky_ʎ?RuoIl;{azB["QD5mĚ-܀M&qt]22C}~{»,I:Jpx"j9S[Kh*rN4ٝ7F{bgÑ- l$#G:D5IW0L E@9UT1Dƅf`'ݛELqUf\lu:>fO' YwVᔗД q!lWL;[sW}S""_W͖ 5All^^eN;bo0UڲG_RO:8eͩNZ5+ 3Xfmq /ZO3Nqtl$jk2Sq)61@%acJH$uάa>.}x9a d1/ch B&םU{ouڋW E 戦ɑ5 | W!7-l `V|a to(Q z5" *ڥES\~u*szJm*`A3#5 U4 8\M6+),jسh\Ma }5ܢ_*Z,$Ug5QOsAͪiKd{qW?." b&e DhG) vjw)2! C-Caƚ4@ؚIE$3kBz Kϱ+"ͯM85I1ϡrnhvQ x(yIᔗ%ߴK cX,wԬ˭B^{gTڄÑjVW&Ϊtͭ_"`wZ@i7^GlW"U<۪G8@!i)ZCsy\klOKfϗ,sƢX)XƤBԖ%+ڦ/$#96|ێ"Rm+ _GAշ=(UQh hL?yWHSɱ}E$L*%2VG.bS_}Aユy2匦@eq|"YaXuO*עU yoU>Ma!j@hvdTk®\Π qRCrOMMIQ"+4~J(=S0|*!T0}wܔ/phC@8:ru20k5jY[itYݎk>Z;+ZbrۗAgPrGR&q >+-~{ ,d'YXC/oh3=u~aC=bʧ k@CnT<0h_e /‘/b[@-=3MA薴 -s4 X`\iNq[AfRr3T~m^z9j+xo>C0*"jJg>A'cƐG$\yӾ=2 KM_|ݢPc񞲤Fb8ZRt .[IY"$n D̞(Q c6cHXM͎ԗ沾.==ebOld _5sYA+OʎXJ`opR,gQ(D$9M+&]Bs݃;1Z?imsF?U;LR-0f)@ގ+J&| du4A*҄!cܥfLJ=mpk6<T7D c1|`֌v0j=/k.#NsSe1u9)vJ^c#-xA`ygܯ\! g0% cxz͞^0 .TEIK:#=5ï1$J7LsDJ"޴l4u!d,˫ii;_*Ed'Ks6 w!7y+T^e!L+Ќ9M vaݵ1{r ʪPFC,6۶ $blLvk7#Aswʅ85ve>Ii9H_f4?$.p Xe"Nc-2ud[1/Rxq>!s?%Cpd-`v {^5遀wBk߂V4s=` 'PWp- ^Rx||Dvv5jD\KW/>2%ip.֒^"8Uhr'5n@߂pz[B6Akm$\ ag9֔VѰ 8 Ii4ƎU !eU?cKg&4blO9sejΛJ(ԇa>-z .E/:%d֭? l]N6? ux̾ȑz_cJq=-j$)^V A!gԫ-ہk9hMftKWN^tfjM|Z F+mvrjҼL)% 78Y+,F$F{/ BROtb$щwݵs O.qLJ)p'9 P7[ K©X͐4ٚqҫ"atb"v1/LxGF\K!b%"QZBE#Me9;ʼ7c<(,?y9C+ѭȽ 67u3p_a͢_L46V @6ĹXemMn2J=c;mbY98u*}S 4JfT/|n&u^ckg*;'MA%~P˨Q A^)tz!|D  MԻ[ld},496SU6AZF4ۭ sM&!M}+f$`X1Cd>Z,,fx'Iϊf@[ϐNfl4i@}ԉa+!tb^`ǺQHiy:]?#^lJSq4*0XPcll( BYL/L(x"DjsW:X AQT1¶ LLЃߥw <p4XaPl8i_HJ6IݮJ@ e* w*>^\Yb "IPD' I]\z\WdVW%JZ5)7Ԑe4g+Vy'o>IP v&Ϊ OoK\ǹ;bN3/C/8*9a 壝R"Cצ O>}# {=Z #J\zI D d0EQ('v+M,SE6 5~ԚV AhrS-<[_"rkuknHQiRKKcP,dR4բ7m鱼^5rg"Xj? VL4([H ;Äʒ^K}d[YI_!ʼO;!|oxn.1 >;$)`d:| 4K^.>&c~JEem;U',BͩvB>ƍx\v;zsY0>#Ζ~Iy:mPɰ :th?Yy`/@1U.9~Ns󢧯z$](3?oQzѻ\_+-2c[J U94*EU,%s̏q}<݄xZoߨ#fb6cq H[SOaKs!$3='_gm͉U)"T _yƒly"nʮsA.*c7mߎȊj_.Nd e)θyUZzc-My61Bu7Te)Oɇ8!h4x9c7M6R5ha"n5gXp&ݔhtߍ%?]DQV7f-1U[2\]Z!|LIގ./`e"\m*'V7=SlGvs2QiҫיkPopT}VD2]Z9ܜieBU+h}̿!N=Ăd]6j^\_S-^Ϭ-݇;3M3$,#[EEv;cX-dKN]9fAߤ:pl!\S4A넅I4Mmٴa~Sl:fp 5] kgCǓԃ3w KVԝ8a/h͠q=>{>$3pz"NY0eoq2OƘhrBc>7W8<0jrWMQR ׷(%`)J#e͙+p΍6N,|m-$ M΢ADydC&ZJxf4q'mJYD0t.Kkf|0~8LR>>1Q5Qw2֛4 ?8y"E-'ӖјHN_I=1b5b_0ۓ68y3>[ts8a#ͱ{ Bfpf2yY+I6!QwH%9&ܸz: U!ʮ߶HyPdEbu|ntA(8)5)WMѫv> rU{ e 1ڒptJ`Iף%rXo|"<frz,5+PwV~OPoH硔`R 8zwoJ@ŦEҭ1:|}tF~Q_ V1}/3W>c܋ t߃p^yX8^k3'\Leރ꽬,Y\ճ\EX1)b7 W-&Ƹ=YoFq+'Y5_Xlbc.q)ka˄,8*w`OSs0.32-~6|}\~MS{N`u>2}-Dm!ʳxNcɠ?UB̛AzV/T5~-NlfnkORmKz^pjV~VK()Y҉ Xj9dzƑG9FAnX>%)iE}nzQ$ƺ J`0p;AZ/e(+(ՙJĻ 㑶 YZ