������xen-doc-html-4.12.4_04-lp151.2.33.1����������������������������������������������������������� ���4���>�������$�����������������������
�����������������������A�������������������������������������������������������������������������p�����_Ȯݸ/=����#�&lXy09O�t��XS`fqy*vx{S�TC(`ۮk,��Д��VEF���|N-j��D�?7��uQ�1Л\jCcxɄ\[;[GnT�=&����j3yb�>q���O# j:_�)a5�)�?"Ng�ˏmq Q(jz|� �������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������>����p����������������9�����?�������������d��������������������������������������������������������������� ���&���������� ���M������������������������������������������������������������������������������������������������������������ ��������������������������������A��������������G���������������P���M��������������M��� �����������M���
����������M��������������M��������������M���
�����������M�����������<���M��������������M�����������>���������������d���M��������������������������������������������������������O�������(�������s�������8�������|���U���9������"���U���:������9���U���G������D���M���H������x���M���I���������M���X�������������Y��������������\������4���M���]������h���M���^�������������b�������������c�������������d��������������e��������������f��������������l������!�������u������4���M���v������h�������������<�������������@�������������F�����������������C�xen-doc-html�4.12.4_04�lp151.2.33.1�Xen Virtualization: HTML documentation�Xen is a virtual machine monitor for x86 that supports execution of
multiple guest operating systems with unprecedented levels of
performance and resource isolation.
xen-doc-html contains the online documentation in HTML format. Point
your browser at file:/usr/share/doc/packages/xen/html/
Authors:
--------
Ian Pratt �_Ȯlamb75��� =openSUSE Leap 15.1�openSUSE�GPL-2.0-only�http://bugs.opensuse.org�Documentation/HTML�http://www.cl.cam.ac.uk/Research/SRG/netos/xen/�linux�x86_64�������������������������o������������������������t��������9��D��A'�����������������������6�����@�����7x��3����#����������B��������������������(����������W��
c������
������e�����
���$��,��7�����6H��"y���j�������Q����� ��<��3�����
���"������z��7���9������
�����;#�����\xAAAA큤A큤A큤A큤A큤A큤A큤A큤����������������������������������������������������������������������������������������������������������������������������������������������������������_ȭ_Ȭ_Ȭ_ȭ_Ȭ_Ȭ_ȭ_Ȭ_ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_Ȭ_ȭ_Ȭ_Ȭ_ȭ_Ȭ_ȭ����e171864f5cfbf7c7b3fecd9b9fbeb3da9e87f63a7284ee52eeed093f8ad303ec�f53beaf653f26eae12ff7ced3bf0735dbedad0d8baf45d31e32d33e0b868bfa9��54e980d65bcde307bad2efeab9640ef5c720b4ebc78ac8cc1eb48bd6134a5280��b3422df9c1ad850ce9b456e83713da51f123c2286cf1f9fd4eb97f57c3eca9ad�bd5267a76a14fe4153f4ca727fb99f1c0bec9e8ff77302865a83919fa74e2b8d��b80b94ff1a198b4d6e03dcc25f86a1b332a80cf36f7df4bba07c19d192059b2c�ef514a67cdff39837020d8d96a1ba5eda7d01962b24dab6fee8c475ef8081dd8�37e73cf353da4bddd8d662b9cf85d2a807ecca293298fe8b00cd352cf958104b�078f07651ae04fc86183bc953a94d4437042b3a3e5182bfd03e899ed64ce4bbd�561b47426bf32b42f14d7c7c61466a753a6c7dff614ed227f34a3e646040c6cb�d344261e1861b09d9bb8bb11a3caa1fcf632c9edc2107b175ecd48555e9bc639�851050a5d238d9b38e13e23f494782688926fa6c7aa008016b3ea433277f32c6�d7554269b2dc588684a32eea5da8b59ef1347b8fcebabf743127a8d51f8ed283�8c60977071d97490acda0485b064d9480c95b878f280d9c1f79d960b7854985c�2015fd56a367e006535db8b49524ae66cd08c0afcd4ef0602fe65a9807c3302d�61b4dbbfa7a6fa0573416e7292e459d6493fb933380541ba8fc8598dff289775�d07b7ee778bc7d235842e6fbfb0e33f9459e0d93dea5311bd00894c6495d7e8f�e466c9be077fa0ef0ced23a246e92d14cc0cc8fd757931079cf928689b544b32�6b03382516373fc9221dc98277ed58043f0d5b49a8cf0913e57e5e47220c2c96�9ee6135d71a7bc45978b5053451cfbb78bf8b1a5f6494e677bde29652eee3ff5�9a8c771f2fb58d22ee3f0764495a5a3a33d4b3fbe946ff9f9db3734ec8b211ad�4040c61e56acba239b76d0bdd6f9a10b0e60f694e5b9832577336615df9416bf�b01e547a2fd520ec38974f159ee03f56ee49cbab40a916fcb20b4eaf75c2fa93�4371cc47909aee32715d5104b6a3c97d6a699beefe9587b72087783636c328d3�3863d96b9419f4afb48eb0535f312a84a3def79f7d7a5b41e3747366bb46340e�b3e1c4bbda2c55f72a5a5a11d272e7d4ce4bb5c2d12c4c2d6b40de640b4912d3��df5076c347e7cad2371f3dc0bc10c6877c8f5251a5a57ddc6c79e1f9b532f89f��9b3fc4dd2d139ace9382e594c2c73439a9d4f100fc61c4e4f9294d4239776620�fbf590c80aef40b7e6ab58cefe9e4351ef6afaa6bcaf4e55d7809df6392fdb96��aadfa0507b89d930b9500c7a95869685253e2082a4d704ad9ab9a720307e4e19�a4e5ede94dd88cd418f7f9055306474ee16f502772341ee0cd7fe83eb735ee68�4faf9f22847781296550c42f0955595f5f23eff9cf7b00ca27ee70988aaee9f7�ec2154a382909b7652464c29ad603492e27c76bd7d0de3b5198d0867fe0a75eb�d93bafe2e73cf681a88dca3217d79376c353ff4e1e5ecee8c41c70e11b8c9e2d�cfcdd851724d27ac6e7db6d1ebea36939bfc87abb5ee94ed0789538023410245�976728897864907825a5a2538c25cd0aa407ba15e58bed9f42232379103f1ee4�738b1644bb9c4dfc41af8064e2a518120b48fbc4e08145393f66b0c5a021e938�2871a17c16c95ab0ee99f64d6dc5c3a303ee5d0ea203246d629ec9a01164f799�91b95599c26b803f2c8bfb407d7ea7de55a783c40780dcb7f993af187e4d4200�a7cd1ffaf63b68eb2cc3c3d663847edfeeeed22d3b1039b423ec94b5198ad7da�ba0315ada992171ac097279a5924539c83bc431e243edc9efd772f673fd5301b�c159111fcd005b864ab1f4b803e059590043471e04d0ac7ec96fe74dbf857c00�3a9b4163966919de58c0d14d493b5d7c6826e43bd61f2eda3c2a4a33fd26f285�982fb97cc7b4730fc7c1c5289c87cc4d1dfe6184c7908079cfb34de8b6d4d200�fa7a5cd899e7aab4589a5d0193118825ac5072abd29bfa809c3b3aa704ec1d43�2c80a00b3c661489ab62333993243951154c8ffe56cf475ebcb8a54982ecbd14�5cbe19ee58416bcf16a88f474895a8626db19ae5f3654c894d7337bcf72c1fc5�9037f947f713649a84322888eb75d9dad867249c4c135787affea14ee1cf2c50�b4403362cc91e5249e9a32270b77e1d08f1217206215cbdcbd7b4f179b7787b0�56e065805b649e73f32af8d7b9fd0a5b317668d9ecd29a382e968e6466945103�b1f10e378ccf028b0040d857506d6a2f9f9f7202547fb83347ebc6cf52cf4d32�28d603a99a49af40bf7589771dd6810ba68ffd01c20c7d7743ec76891e07a485�1f086e043731368850e313269ca98ab91c156529ac3b961a67f54a522ef09396�5d6be4431b21e9ec2fc3e6c70050a26c3c78777e5200cad4282b96411eb4c871�e9845d2b4b1163c8f2f71b3f232161df132b103360ee3fb48495eabd71c2be87�437b2d33715486da3e3443c567a5b9cb6b8f54c07b3fac562cc7f7d20c570e6d�f66605f996aa6d38f8234276f2b8fa5c54a10903b7fa29d49d6dbdae30ef984b�372a6dbe9c2786b09c1d722ffa63f7cff6848a3b35a68d4fbd7770dfee8c9157�c4151eb9d4bb2e16e25f710099b13ab6c7b0dec076e76d504e091cf2642a805f�f778edfde8be1bff36fe3825f070a22662ca16c8b8dc1ee56c4c73c3e56dcee0�9a80dbf1fabbfc82ede8ce1fe4f43a5c4bb36450cafa0e20cb488f196d3031a4��ba0315ada992171ac097279a5924539c83bc431e243edc9efd772f673fd5301b�e9845d2b4b1163c8f2f71b3f232161df132b103360ee3fb48495eabd71c2be87�035880f29f41521dc183e25605c34d8753b41f1a124161c920949ee537f424a6�372a6dbe9c2786b09c1d722ffa63f7cff6848a3b35a68d4fbd7770dfee8c9157�98394ef67fe837f917dc3f0101b89193414868cd6bd7c94ceb5ab3ccc7ed408f����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�xen-4.12.4_04-lp151.2.33.1.src.rpm����xen-doc-html�xen-doc-html(x86-64)������
���
���
���
���
rpmlib(CompressedFileNames)�rpmlib(FileDigests)�rpmlib(PartialHardlinkSets)�rpmlib(PayloadFilesHavePrefix)�rpmlib(PayloadIsXz)�3.0.4-1�4.6.0-1�4.0.4-1�4.0-1�5.2-1�4.14.1���________[f_X_Wr@_)M_�{_�^)@^^@^ϧ^x^@^^�^s^^ku^h^V]^M#@^0"@^�@^�!@]B]*]X]d@]@]@]]fl]M`@]B@]�@]�]�@\\ޢ@\ڭ\\@\@\�@\,@\7\\N\�@\\+@\\M\M\�\�\@\}�@\k\X)@\J@\I\A\?�\=@\9\73\4\$\�l@[H[k@[@[^[^[/[@[@[9@[v[W�[CN@[<[6�@[0@[0@['[!�@[�5@Z@ZnZ�@ZZZ@ZmZԐ@ZZZ@ZZ}@Z}@Z}@Z}@Zz@Zz@Zo�Zk�@ZV�@ZS]@ZOhZ:PZ1�@Z.s@Z&@Z�OZ�OZ� Z� Z� Z�@Z�@Z
}Z�C@Z�Y�Y�Y�Y|Y@Y{Y*@Y5YA@Y4YY�YbY�Y@Y3Y@YJYJY@YYV@Y�@Ym@Yw2Yp@YlYh@Yh@YS@YJ_YI�@Y5GY0�Y-^Y(�Y"Y�Y�;@Y�Y��Y�@Y�tY�.X@XQ@X@XۡXg@X@XƉX@X @X@X@X�@X�@XXX@XXXwoXs{@XlXWXRXQ4@XEVX43@X.@X*X lX�&X�@X�X�@W@W֘W֘W^@WiW:Wt@W.@W9WW@Wk@Wi,@WbWZWZWZWYZ@WV@WEWBW=W;�W3�W1@W1@W,@W(W(W(W(W(W#LW�VbV(@V3VJVxV'@VV2V͛@VŲ@V`VwVVV=@VV@VHV@VvV%@VV<@V@VS@V�V@V^VwVqR@Vn@VXEVUVTQ@VMVMVMVA@V;DV9@V7P@V0V*!@V V�@V�CV�V�V�f@V�qV�@UYU�@U�@UUݪ@U�@UnU4@UUK@U�U@UU>U@Ux&Un@U\w@U[%UUUPUKSU>$U6;U%�@U�U�@U�U�U�.@TgT-@TT@TZ@TZ@T@T�T@T5T@TLTLT~@Tl@Ti@Ta@THT?@T=�@carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�James Fehlig �carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�Jim Fehlig �ohering@suse.de�Martin Liška �ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�Jan Engelhardt �Guillaume GARDET �Guillaume GARDET �Bernhard Wiedemann �carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�Bernhard Wiedemann �ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�trenn@suse.de�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�ohering@suse.de�ohering@suse.de�jfehlig@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�ohering@suse.de�ohering@suse.de�ohering@suse.de�rbrown@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�jfehlig@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�jfehlig@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�jfehlig@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�jfehlig@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�jfehlig@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�ohering@suse.de�carnold@suse.com�ohering@suse.de�jfehlig@suse.com�carnold@suse.com�jfehlig@suse.com�jfehlig@suse.com�carnold@suse.com�carnold@suse.com�jfehlig@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�jfehlig@suse.com�carnold@suse.com�carnold@suse.com�mlatimer@suse.com�carnold@suse.com�cyliu@suse.com�jfehlig@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�ohering@suse.de�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�jfehlig@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�rguenther@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�rguenther@suse.com�carnold@suse.com�meissner@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�ohering@suse.de�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�ohering@suse.de�ohering@suse.de�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�- bsc#1178963 - VUL-0: xen: stack corruption from XSA-346 change
(XSA-355)
xsa355.patch�- Enhance libxc.migrate_tracking.patch
Hide SUSEINFO messages from pause/unpause/resume from xl command.
They are intended for libvirt logging, but lacked info about
execution context.�- bsc#1178591 - VUL-0: CVE-2020-28368: xen: Intel RAPL sidechannel
attack aka PLATYPUS attack aka XSA-351
xsa351-1.patch
xsa351-2.patch
xsa351-3.patch�- Upstream bug fix (bsc#1027519)
5f92909a-PCI-cleanup-MSI-before-removing-device.patch�- Update to Xen 4.12.4 bug fix release (bsc#1027519)
xen-4.12.4-testing-src.tar.bz2
- Dropped patches contained in new tarball
5c87be47-libx86-helper-to-deserialise-msr_policy.patch
5d976da3-libxl-attach-PCI-device-to-qemu-only-after-setting-pciback-pcifront.patch
5ec2a760-x86-determine-MXCSR-mask-always.patch
5ec50b05-x86-idle-rework-C6-EOI-workaround.patch
5ec7dcaa-x86-dont-enter-C6-with-in-service-intr.patch
5ec7dcf6-x86-dont-enter-C3-C6-with-errata.patch
5ec82237-x86-extend-ISR-C6-workaround-to-Haswell.patch
5ece1b91-x86-clear-RDRAND-CPUID-bit-on-AMD-fam-15-16.patch
5ece8ac4-x86-load_system_tables-NMI-MC-safe.patch
5eda60cb-SVM-split-recalc-NPT-fault-handling.patch
5edf6ad8-ioreq-pending-emulation-server-destruction-race.patch
5edfbbea-x86-spec-ctrl-CPUID-MSR-defs-for-SRBDS.patch
5edfbbea-x86-spec-ctrl-mitigate-SRBDS.patch
5ee24d0e-x86-spec-ctrl-document-SRBDS-workaround.patch
5ef44e0d-x86-PMTMR-use-FADT-flags.patch
5ef6156a-x86-disallow-access-to-PT-MSRs.patch
5efcb354-x86-protect-CALL-JMP-straight-line-speculation.patch
5f046c18-evtchn-dont-ignore-error-in-get_free_port.patch
5f046c48-x86-shadow-dirty-VRAM-inverted-conditional.patch
5f046c64-EPT-set_middle_entry-adjustments.patch
5f046c78-EPT-atomically-modify-ents-in-ept_next_level.patch
5f046c9a-VT-d-improve-IOMMU-TLB-flush.patch
5f046cb5-VT-d-prune-rename-cache-flush-funcs.patch
5f046cca-x86-IOMMU-introduce-cache-sync-hook.patch
5f046ce9-VT-d-sync_cache-misaligned-addresses.patch
5f046cfd-x86-introduce-alternative_2.patch
5f046d1a-VT-d-optimize-CPU-cache-sync.patch
5f046d2b-EPT-flush-cache-when-modifying-PTEs.patch
5f046d5c-check-VCPUOP_register_vcpu_info-alignment.patch
5f1a9916-x86-S3-put-data-sregs-into-known-state.patch
5f21b9fd-x86-cpuid-APIC-bit-clearing.patch
5f479d9e-x86-begin-to-support-MSR_ARCH_CAPS.patch
5f4cf06e-x86-Dom0-expose-MSR_ARCH_CAPS.patch
5f4cf96a-x86-PV-fix-SEGBASE_GS_USER_SEL.patch
5f560c42-x86-PV-64bit-segbase-consistency.patch
5f560c42-x86-PV-rewrite-segment-ctxt-switch.patch
xsa286-0.patch
xsa286-1.patch
xsa286-2.patch
xsa286-3.patch
xsa286-4.patch
xsa286-5.patch
xsa286-6.patch
xsa333.patch
xsa334.patch
xsa336.patch
xsa337-1.patch
xsa337-2.patch
xsa338.patch
xsa339.patch
xsa340.patch
xsa342.patch
xsa343-1.patch
xsa343-2.patch
xsa343-3.patch
xsa344-1.patch
xsa344-2.patch
xsa345-1.patch
xsa345-2.patch
xsa345-3.patch
xsa346-1.patch
xsa346-2.patch
xsa347-1.patch
xsa347-2.patch�- bsc#1177950 - adjust help for --max_iters, default is 5
libxl.set-migration-constraints-from-cmdline.patch�- bsc#1177409 - VUL-0: CVE-2020-27674: xen: x86 PV guest
INVLPG-like flushes may leave stale TLB entries (XSA-286)
xsa286-0.patch
xsa286-1.patch
xsa286-2.patch
xsa286-3.patch
xsa286-4.patch
xsa286-5.patch
xsa286-6.patch
- bsc#1177412 - VUL-0: CVE-2020-27672: xen: Race condition in Xen
mapping code (XSA-345)
xsa345-1.patch
xsa345-2.patch
xsa345-3.patch
- bsc#1177413 - VUL-0: CVE-2020-27671: xen: undue deferral of IOMMU
TLB flushes (XSA-346)
xsa346-1.patch
xsa346-2.patch
- bsc#1177414 - VUL-0: CVE-2020-27670: xen: unsafe AMD IOMMU page
table updates (XSA-347)
xsa347-1.patch
xsa347-2.patch�- Escape some % chars in xen.spec, they have to appear verbatim�- Enhance libxc.migrate_tracking.patch
Print number of allocated pages on sending side, this is more
accurate than p2m_size.�- bsc#1176339 - VUL-0: CVE-2020-25602: xen: x86 pv: Crash when
handling guest access to MSR_MISC_ENABLE (XSA-333)
xsa333.patch
- bsc#1176341 - VUL-0: CVE-2020-25598: xen: Missing unlock in
XENMEM_acquire_resource error path (XSA-334)
xsa334.patch
- bsc#1176343 - VUL-0: CVE-2020-25604: xen: race when migrating
timers between x86 HVM vCPU-s (XSA-336)
xsa336.patch
- bsc#1176344 - VUL-0: CVE-2020-25595: xen: PCI passthrough code
reading back hardware registers (XSA-337)
xsa337-1.patch
xsa337-2.patch
- bsc#1176346 - VUL-0: CVE-2020-25597: xen: once valid event
channels may not turn invalid (XSA-338)
xsa338.patch
- bsc#1176345 - VUL-0: CVE-2020-25596: xen: x86 pv guest kernel
DoS via SYSENTER (XSA-339)
xsa339.patch
- bsc#1176347 - VUL-0: CVE-2020-25603: xen: Missing barrier
barriers when accessing/allocating an event channel (XSA-340)
xsa340.patch
- bsc#1176348 - VUL-0: CVE-2020-25600: xen: out of bounds event
channels available to 32-bit x86 domains (XSA-342)
xsa342.patch
- bsc#1176349 - VUL-0: CVE-2020-25599: xen: races with
evtchn_reset() (XSA-343)
xsa343-1.patch
xsa343-2.patch
xsa343-3.patch
- bsc#1176350 - VUL-0: CVE-2020-25601: xen: lack of preemption in
evtchn_reset() / evtchn_destroy() (XSA-344)
xsa344-1.patch
xsa344-2.patch
- Upstream bug fixes (bsc#1027519)
5c87be47-libx86-helper-to-deserialise-msr_policy.patch
5f479d9e-x86-begin-to-support-MSR_ARCH_CAPS.patch
5f4cf06e-x86-Dom0-expose-MSR_ARCH_CAPS.patch
5f4cf96a-x86-PV-fix-SEGBASE_GS_USER_SEL.patch
5f560c42-x86-PV-64bit-segbase-consistency.patch
5f560c42-x86-PV-rewrite-segment-ctxt-switch.patch�- Upstream bug fixes (bsc#1027519)
5ef44e0d-x86-PMTMR-use-FADT-flags.patch
5ef6156a-x86-disallow-access-to-PT-MSRs.patch
5efcb354-x86-protect-CALL-JMP-straight-line-speculation.patch
5f046c18-evtchn-dont-ignore-error-in-get_free_port.patch (Replaces xsa317.patch)
5f046c48-x86-shadow-dirty-VRAM-inverted-conditional.patch (Replaces xsa319.patch)
5f046c64-EPT-set_middle_entry-adjustments.patch (Replaces xsa328-1.patch)
5f046c78-EPT-atomically-modify-ents-in-ept_next_level.patch (Replaces xsa328-2.patch)
5f046c9a-VT-d-improve-IOMMU-TLB-flush.patch (Replaces xsa321-1.patch)
5f046cb5-VT-d-prune-rename-cache-flush-funcs.patch (Replaces xsa321-2.patch)
5f046cca-x86-IOMMU-introduce-cache-sync-hook.patch (Replaces xsa321-3.patch)
5f046ce9-VT-d-sync_cache-misaligned-addresses.patch (Replaces xsa32141.patch)
5f046cfd-x86-introduce-alternative_2.patch (Replaces xsa321-5.patch)
5f046d1a-VT-d-optimize-CPU-cache-sync.patch (Replaces xsa321-6.patch)
5f046d2b-EPT-flush-cache-when-modifying-PTEs.patch (Replaces xsa321-7.patch)
5f046d5c-check-VCPUOP_register_vcpu_info-alignment.patch (Replaces xsa327.patch)
5f1a9916-x86-S3-put-data-sregs-into-known-state.patch
5f21b9fd-x86-cpuid-APIC-bit-clearing.patch
5cf8da09-adjust-sysdom-creation-call-earlier-on-x86.patch�- bsc#1172356 - Not able to hot-plug NIC via virt-manager, asks to
attach on next reboot while it should be live attached
ignore-ip-command-script-errors.patch�- Enhance libxc.migrate_tracking.patch
After transfer of domU memory, the target host has to assemble
the backend devices. Track the time prior xc_domain_unpause.�- Add libxc.migrate_tracking.patch to track live migrations
unconditionally in logfiles, especially in libvirt.
This will track how long a domU was suspended during transit.�- bsc#1173376 - VUL-0: CVE-2020-15566: xen: XSA-317 - Incorrect
error handling in event channel port allocation
xsa317.patch
- bsc#1173377 - VUL-0: CVE-2020-15563: xen: XSA-319 - inverted code
paths in x86 dirty VRAM tracking
xsa319.patch
- bsc#1173378 - VUL-0: CVE-2020-15565: xen: XSA-321 - insufficient
cache write- back under VT-d
xsa321-1.patch
xsa321-2.patch
xsa321-3.patch
xsa321-4.patch
xsa321-5.patch
xsa321-6.patch
xsa321-7.patch
- bsc#1173380 - VUL-0: CVE-2020-15567: xen: XSA-328 - non-atomic
modification of live EPT PTE
xsa328-1.patch
xsa328-2.patch�- bsc#1172205 - VUL-0: CVE-2020-0543: xen: Special Register Buffer
Data Sampling (SRBDS) aka "CrossTalk" (XSA-320)
5ee24d0e-x86-spec-ctrl-document-SRBDS-workaround.patch
5edfbbea-x86-spec-ctrl-CPUID-MSR-defs-for-SRBDS.patch (Replaces xsa320-1.patch)
5edfbbea-x86-spec-ctrl-mitigate-SRBDS.patch (Replaces xsa320-2.patch)
- Upstream bug fixes (bsc#1027519)
5ec50b05-x86-idle-rework-C6-EOI-workaround.patch
5ec7dcaa-x86-dont-enter-C6-with-in-service-intr.patch
5ec7dcf6-x86-dont-enter-C3-C6-with-errata.patch
5ec82237-x86-extend-ISR-C6-workaround-to-Haswell.patch
5ece1b91-x86-clear-RDRAND-CPUID-bit-on-AMD-fam-15-16.patch
5ece8ac4-x86-load_system_tables-NMI-MC-safe.patch
5eda60cb-SVM-split-recalc-NPT-fault-handling.patch
5edf6ad8-ioreq-pending-emulation-server-destruction-race.patch�- bsc#1172205 - VUL-0: CVE-2020-0543: xen: Special Register Buffer
Data Sampling (SRBDS) aka "CrossTalk" (XSA-320)
xsa320-1.patch
xsa320-2.patch�- Update to Xen 4.12.3 bug fix release (bsc#1027519)
xen-4.12.3-testing-src.tar.bz2
5ec2a760-x86-determine-MXCSR-mask-always.patch
- Drop patches contained in new tarball
5e16fb6a-x86-clear-per-cpu-stub-page-info.patch
5e1da013-IRQ-u16-is-too-narrow-for-evtchn.patch
5e1dcedd-Arm-place-speculation-barrier-after-ERET.patch
5e21ce98-x86-time-update-TSC-stamp-after-deep-C-state.patch
5e286cce-VT-d-dont-pass-bridges-to-domain_context_mapping_one.patch
5e318cd4-x86-apic-fix-disabling-LVT0.patch
5e3bd385-EFI-recheck-variable-name-strings.patch
5e3bd3d1-EFI-dont-leak-heap-VIA-XEN_EFI_get_next_variable_name.patch
5e3bd3f8-xmalloc-guard-against-overflow.patch
5e46e090-x86-smp-reset-x2apic_enabled-in-smp_send_stop.patch
5e4c00ef-VT-d-check-full-RMRR-for-E820-reserved.patch
5e4ec20e-x86-virtualise-MSR_PLATFORM_ID-properly.patch
5e6f53dd-AMD-IOMMU-fix-off-by-one-get_paging_mode.patch
5e7cfb29-x86-ucode-fix-error-paths-in-apply_microcode.patch
5e7dd83b-libx86-CPUID-fix-not-just-leaf-7.patch
5e7dfbf6-x86-ucode-AMD-potential-buffer-overrun-equiv-tab.patch
5e846cce-x86-HVM-fix-AMD-ECS-handling-for-Fam10.patch
5e84905c-x86-ucode-AMD-fix-more-potential-buffer-overruns.patch
5e86f7b7-credit2-avoid-vCPUs-with-lower-creds-than-idle.patch
5e86f7fd-credit2-fix-credit-too-few-resets.patch
5e876b0f-tools-xenstore-fix-use-after-free-in-xenstored.patch
5e95ad61-xenoprof-clear-buffer-intended-to-be-shared-with-guests.patch
5e95ad8f-xenoprof-limit-consumption-of-shared-buffer-data.patch
5e95ae77-Add-missing-memory-barrier-in-the-unlock-path-of-rwlock.patch
5e95af5e-xen-gnttab-Fix-error-path-in-map_grant_ref.patch
5e95afb8-gnttab-fix-GNTTABOP_copy-continuation-handling.patch�- Advertise support for new 64bit libxl memory APIs introduced by
patch 5db1be79-libxl-Offer-API-versions-0x040700-and-0x040800.patch
bsc#1167007 and bsc#1157490�- bsc#1169392 - VUL-0: CVE-2020-11742: xen: Bad continuation
handling in GNTTABOP_copy (XSA-318)
5e95afb8-gnttab-fix-GNTTABOP_copy-continuation-handling.patch�- bsc#1168140 - VUL-0: CVE-2020-11740, CVE-2020-11741: xen: XSA-313
multiple xenoprof issues
5e95ad61-xenoprof-clear-buffer-intended-to-be-shared-with-guests.patch
5e95ad8f-xenoprof-limit-consumption-of-shared-buffer-data.patch
- bsc#1168142 - VUL-0: CVE-2020-11739: xen: XSA-314 - Missing
memory barriers in read-write unlock paths
5e95ae77-Add-missing-memory-barrier-in-the-unlock-path-of-rwlock.patch
- bsc#1168143 - VUL-0: CVE-2020-11743: xen: XSA-316 - Bad error
path in GNTTABOP_map_grant
5e95af5e-xen-gnttab-Fix-error-path-in-map_grant_ref.patch
- bsc#1167152 - L3: Xenstored Crashed during VM install Need Core
analyzed
5e876b0f-tools-xenstore-fix-use-after-free-in-xenstored.patch
- bsc#1165206 - Xen 4.12 DomU hang / freeze / stall / NMI watchdog
bug soft lockup CPU #0 stuck under high load / upstream with
workaround. See also bsc#1134506
5e86f7b7-credit2-avoid-vCPUs-with-lower-creds-than-idle.patch
5e86f7fd-credit2-fix-credit-too-few-resets.patch
- Drop for upstream solution (bsc#1165206)
01-xen-credit2-avoid-vcpus-to.patch
02-xen-credit2-fix-runq-cand-skip.patch
- Upstream bug fixes (bsc#1027519)
5e6f53dd-AMD-IOMMU-fix-off-by-one-get_paging_mode.patch
5e7cfb29-x86-ucode-fix-error-paths-in-apply_microcode.patch
5e7dd83b-libx86-CPUID-fix-not-just-leaf-7.patch
5e7dfbf6-x86-ucode-AMD-potential-buffer-overrun-equiv-tab.patch
5e846cce-x86-HVM-fix-AMD-ECS-handling-for-Fam10.patch
5e84905c-x86-ucode-AMD-fix-more-potential-buffer-overruns.patch�- Update API compatibility versions. Fixes issues for libvirt.
See bsc#1167007 and bsc#1157490�- bsc#1155200 - L3: L3-Support: aacraid blocks xen commands - ref:
_00D1igLOd._5001iIvV1f:ref
5d976da3-libxl-attach-PCI-device-to-qemu-only-after-setting-pciback-pcifront.patch�- bsc#1165206 - Xen 4.12 DomU hang / freeze / stall / NMI watchdog
bug soft lockup CPU #0 stuck under high load / upstream with
workaround. See also bsc#1134506
01-xen-credit2-avoid-vcpus-to.patch
02-xen-credit2-fix-runq-cand-skip.patch�- bsc#1160932 - VUL-0: xen: XSA-312 v1: arm: a CPU may speculate
past the ERET instruction
5e1dcedd-Arm-place-speculation-barrier-after-ERET.patch
- Upstream bug fixes (bsc#1027519)
5e21ce98-x86-time-update-TSC-stamp-after-deep-C-state.patch
5e286cce-VT-d-dont-pass-bridges-to-domain_context_mapping_one.patch
5e318cd4-x86-apic-fix-disabling-LVT0.patch
5e3bd385-EFI-recheck-variable-name-strings.patch
5e3bd3d1-EFI-dont-leak-heap-VIA-XEN_EFI_get_next_variable_name.patch
5e3bd3f8-xmalloc-guard-against-overflow.patch
5e46e090-x86-smp-reset-x2apic_enabled-in-smp_send_stop.patch
5e4c00ef-VT-d-check-full-RMRR-for-E820-reserved.patch
5e4ec20e-x86-virtualise-MSR_PLATFORM_ID-properly.patch
- Drop 5e1dd8f3-Arm-fix-build-after-892b9dcebdb7.patch�- Fix broken ARM build
5e1dd8f3-Arm-fix-build-after-892b9dcebdb7.patch�- bsc#1162040 - L3: Problems Booting Fedora31 VM on sles15 sp1 Xen
Dom0
5d53ed45-pygrub-Failing-to-set-value-to-0-in-Grub2ConfigFile.patch�- Upstream bug fixes (bsc#1027519)
5e16fb6a-x86-clear-per-cpu-stub-page-info.patch
5e1da013-IRQ-u16-is-too-narrow-for-evtchn.patch�- Update to Xen 4.12.2 bug fix release (bsc#1027519)
xen-4.12.2-testing-src.tar.bz2
- Drop patches contained in new tarball
5d419d49-x86-spec-ctrl-report-proper-status.patch
5d43253c-x86-ucode-always-collect_cpu_info-at-boot.patch
5d4aa36f-x86-apic-enable-x2APIC-mode-earlier.patch
5d4afa7a-credit2-fix-memory-leak.patch
5d4d850a-introduce-bss-percpu-page-aligned.patch
5d516531-x86-xpti-dont-leak-TSS-adjacent-data.patch
5d5bf475-x86-PV-fix-handling-of-iommu-mappings.patch
5d6524ca-x86-mm-correctly-init-M2P-entries.patch
5d67ceaf-x86-properly-gate-PKU-clearing.patch
5d70bfba-x86-shadow-dont-enable-with-too-small-allocation.patch
5d779811-x86-fix-CPUID7-0-eax-levelling-MSR.patch
5d77b40f-fix-hvm_all_ioreq_servers_add_vcpu-cleanup.patch
5d80ea13-vpci-honor-read-only-devices.patch
5d89d8d9-libxc-x86-avoid-overflow-in-CPUID-APIC-ID.patch
5d8b715f-ACPI-cpuidle-bump-max-num-of-states.patch
5d8ce179-sched-dont-leak-XEN_RUNSTATE_UPDATE.patch
5d947b01-x86-crash-force-unlock-console.patch
5d948bdb-IOMMU-add-missing-HVM-check.patch
5d9ef2a1-EFI-deref-pointer-in-set_color.patch
5d9ef2c5-EFI-gfx-mode-for-MB2-boot.patch
5d9ef2ef-PCI-clear-maskall-fields-on-assign.patch
5d9f454a-x86-EFI-pixel-reserved-0.patch
5db07974-x86-update-time-info-on-TSC-adjustments.patch
5db2b4a2-x86-is_xen_fixed_mfn-off-by-1.patch
5db892ac-VT-x-correct-BDF93-workaround.patch
5db892ac-VT-x-fix-Haswell-Broadwell-LBR-TSX-errata.patch
5dbaf89f-dont-use-BUG-for-parameter-checking.patch
5dbaf8e0-x86-PV-check-GDT-LDT-limits-during-emulation.patch
5dbaf990-x86-mm-L1TF-checks-dont-leave-partial-entry.patch
5dbaf9b2-x86-mm-dont-re-set-PGT_pinned-on-partial-page.patch
5dbaf9ce-x86-mm-split-partial_pte-tristate.patch
5dbaf9f5-x86-mm-use-flags-for-_put_page_type.patch
5dbafa13-x86-mm-rework-get_page_and_type_from_mfn-conditional.patch
5dbafa46-x86-mm-alloc_lN_table-clear-partial_flags-when-preempting.patch
5dbafa5c-x86-mm-always-retain-general-ref-on-partial.patch
5dbafa7f-x86-mm-collapse-PTF_partial_.patch
5dbafaa4-x86-mm-properly-handle-linear-pt-promotion-failure.patch
5dbafabd-x86-mm-fix-nested-devalidation-on-error.patch
5dbafad5-x86-mm-dont-drop-type-ref-unless.patch
5dbafb0d-Arm-p2m-avoid-aliasing-guest-physical-frame.patch
5dbafb4e-Arm-p2m-avoid-off-by-1-check-on-max_mapped_gfn.patch
5dbafb72-Arm-p2m-dont-check-p2m_get_root_pointer-ret-with-BUG_ON.patch
5dbafba5-passthrough-quarantine-PCI-devices.patch
5dbafbda-Arm32-entry-Split-__DEFINE_ENTRY_TRAP.patch
5dbafbfd-Arm32-entry-fold-SAVE_ALL-into-vector-macro.patch
5dbafc3a-Arm32-dont-unmask-interrupts-on-trap-without-level-change.patch
5dbafc4f-Arm64-dont-unmask-interrupts-on-trap-without-level-change.patch
5dbc0d64-x86-fix-CONFIG_PV-build-following-XSA-299.patch
5dca846c-x86-fix-clear_IO_APIC_pin-raw-writes.patch
5dca84a2-AMD-IOMMU-dont-needlessly-trigger-errors-on-unmap.patch
5dcae816-VT-d-hide-superpages-for-SandyBridge.patch
5dcae816-VT-x-runtime-modification-of-exec-sp.patch
5dcae816-VT-x-work-around-executable-EPT-superpages.patch
5dcae816-x86-introduce-tsx-option.patch
5dcae816-x86-spec-ctrl-mitigate-TAA.patch
5dd6b229-add-va_end-to-hypercall_create_continuation.patch
5dd8126b-x86-vLAPIC-allow-APIC_SPIV_FOCUS_DISABLED.patch
5dd93ce0-vVMX-fix-livelock-with-XSA-304-fix.patch
5ddbb3d3-x86-mm-adjust-linear-usage-accounting.patch
5ddcff90-libxc-x86-dont-bump-ApicIdCoreSize-past-7.patch
5ddd2555-IOMMU-always-quarantine-PCI-devs.patch
5ddd25f9-EFI-fix-efi=attr-handling.patch
5ddfa851-VMX-always-sync-PIR-to-IRR.patch
5ddfd62b-x86-internal-IRQs-honor-PEOI-stack.patch
5de0007e-SVM-always-intercept-ICEBP.patch
5de0007e-SVM-write-correct-eip-into-outgoing-task.patch
5de0007e-VMX-early-task-switch-failures-semantics.patch
5de1632a-x86-IOMMU-scratch-page-in-quarantine-dom.patch
5de19115-rationalize-max-grant_frames-maptrack_frames.patch
5de52a86-x86-PSR-dont-write-out-of-range-COS.patch
5de65f84-gnttab-map-always-do-IOMMU-part.patch
5de65fc4-x86-avoid-HPET-use-on-certain-Intel.patch
xsa307.patch
xsa308.patch
xsa309.patch
xsa310-1.patch
xsa310-2.patch
xsa310-3.patch
xsa311.patch�- bsc#1158003 - VUL-0: CVE-2019-19581,CVE-2019-19582: xen: XSA-307
- find_next_bit() issues
xsa307.patch
- bsc#1158004 - VUL-0: CVE-2019-19583: xen: XSA-308 - VMX: VMentry
failure with debug exceptions and blocked states
xsa308.patch
- bsc#1158005 - VUL-0: CVE-2019-19578: xen: XSA-309 - Linear
pagetable use / entry miscounts
xsa309.patch
- bsc#1158006 - VUL-0: CVE-2019-19580: xen: XSA-310 - Further
issues with restartable PV type change operations
xsa310-1.patch
xsa310-2.patch
xsa310-3.patch
- bsc#1158007 - VUL-0: CVE-2019-19577: xen: XSA-311 - dynamic
height for the IOMMU pagetables
xsa311.patch
- Upstream bug fixes (bsc#1027519)
5dd6b229-add-va_end-to-hypercall_create_continuation.patch
5dd8126b-x86-vLAPIC-allow-APIC_SPIV_FOCUS_DISABLED.patch
5dd93ce0-vVMX-fix-livelock-with-XSA-304-fix.patch
5ddbb3d3-x86-mm-adjust-linear-usage-accounting.patch
5ddcff90-libxc-x86-dont-bump-ApicIdCoreSize-past-7.patch
5ddd2555-IOMMU-always-quarantine-PCI-devs.patch (Replaces xsa306.patch)
5ddd25f9-EFI-fix-efi=attr-handling.patch
5ddfa851-VMX-always-sync-PIR-to-IRR.patch
5ddfd62b-x86-internal-IRQs-honor-PEOI-stack.patch
5de0007e-VMX-early-task-switch-failures-semantics.patch
5de0007e-SVM-always-intercept-ICEBP.patch
5de0007e-SVM-write-correct-eip-into-outgoing-task.patch
5de1632a-x86-IOMMU-scratch-page-in-quarantine-dom.patch
5de19115-rationalize-max-grant_frames-maptrack_frames.patch
5de52a86-x86-PSR-dont-write-out-of-range-COS.patch
5de65f84-gnttab-map-always-do-IOMMU-part.patch
5de65fc4-x86-avoid-HPET-use-on-certain-Intel.patch�- bsc#1157047 - PCI passthrough failed on AMD machine xen host
5dca846c-x86-fix-clear_IO_APIC_pin-raw-writes.patch
5dca84a2-AMD-IOMMU-dont-needlessly-trigger-errors-on-unmap.patch
- bsc#1157888 - - VUL-0: xen: Device quarantine for alternate pci
assignment methods
xsa306.patch
- Upstream bug fixes (bsc#1027519)
5dcae816-VT-x-runtime-modification-of-exec-sp.patch
5dcae816-VT-d-hide-superpages-for-SandyBridge.patch (Replaces xsa304-1.patch)
5dcae816-VT-x-work-around-executable-EPT-superpages.patch (Replaces xsa304-2.patch)
5dcae816-x86-introduce-tsx-option.patch (Replaces xsa305-1.patch)
5dcae816-x86-spec-ctrl-mitigate-TAA.patch (Replaces xsa305-2.patch)�- Minor adjustments to these security patches for bsc#1155945 and
bsc#1152497
xsa304-1.patch
xsa304-2.patch
xsa305-1.patch
xsa305-2.patch�- bsc#1154448 - VUL-0: CVE-2019-18420: xen: XSA-296:
VCPUOP_initialise DoS
5dbaf89f-dont-use-BUG-for-parameter-checking.patch
- bsc#1154456 - VUL-0: CVE-2019-18425: xen: XSA-298: missing
descriptor table limit checking in x86 PV emulation
5dbaf8e0-x86-PV-check-GDT-LDT-limits-during-emulation.patch
- bsc#1154458 - VUL-0: CVE-2019-18421: xen: XSA-299: Issues with
restartable PV type change operations
5dbaf990-x86-mm-L1TF-checks-dont-leave-partial-entry.patch
5dbaf9b2-x86-mm-dont-re-set-PGT_pinned-on-partial-page.patch
5dbaf9ce-x86-mm-split-partial_pte-tristate.patch
5dbaf9f5-x86-mm-use-flags-for-_put_page_type.patch
5dbafa13-x86-mm-rework-get_page_and_type_from_mfn-conditional.patch
5dbafa46-x86-mm-alloc_lN_table-clear-partial_flags-when-preempting.patch
5dbafa5c-x86-mm-always-retain-general-ref-on-partial.patch
5dbafaa4-x86-mm-properly-handle-linear-pt-promotion-failure.patch
5dbafabd-x86-mm-fix-nested-devalidation-on-error.patch
5dbafad5-x86-mm-dont-drop-type-ref-unless.patch
5dbc0d64-x86-fix-CONFIG_PV-build-following-XSA-299.patch
- bsc#1154460 - VUL-0: CVE-2019-18423: xen: XSA-301: add-to-physmap
can be abused to DoS Arm hosts
5dbafb0d-Arm-p2m-avoid-aliasing-guest-physical-frame.patch
5dbafb4e-Arm-p2m-avoid-off-by-1-check-on-max_mapped_gfn.patch
5dbafb72-Arm-p2m-dont-check-p2m_get_root_pointer-ret-with-BUG_ON.patch
- bsc#1154461 - VUL-0: CVE-2019-18424: xen: XSA-302: passed through
PCI devices may corrupt host memory after deassignment
5dbafba5-passthrough-quarantine-PCI-devices.patch
- bsc#1154464 - VUL-0: CVE-2019-18422: xen: XSA-303: ARM:
Interrupts are unconditionally unmasked in exception handlers
5dbafbda-Arm32-entry-Split-__DEFINE_ENTRY_TRAP.patch
5dbafbfd-Arm32-entry-fold-SAVE_ALL-into-vector-macro.patch
5dbafc3a-Arm32-dont-unmask-interrupts-on-trap-without-level-change.patch
5dbafc4f-Arm64-dont-unmask-interrupts-on-trap-without-level-change.patch
- bsc#1155945 - VUL-0: CVE-2018-12207: xen: Machine Check Error
Avoidance on Page Size Change (aka IFU issue)
xsa304-1.patch
xsa304-2.patch
- bsc#1152497 - VUL-0: CVE-2019-11135: xen: XSA-305: TSX
Asynchronous Abort (TAA) issue
xsa305-1.patch
xsa305-2.patch
- Upstream bug fixes (bsc#1027519)
5d9ef2a1-EFI-deref-pointer-in-set_color.patch
5d9f454a-x86-EFI-pixel-reserved-0.patch
5db2b4a2-x86-is_xen_fixed_mfn-off-by-1.patch
5d9ee2f0-AMD-IOMMU-allocate_buffer-avoid-memset.patch
5db892ac-VT-x-fix-Haswell-Broadwell-LBR-TSX-errata.patch
5d948bdb-IOMMU-add-missing-HVM-check.patch
5d9ee312-AMD-IOMMU-prefill-all-DTEs.patch
5d9ef2c5-EFI-gfx-mode-for-MB2-boot.patch
5db892ac-VT-x-correct-BDF93-workaround.patch
5d947b01-x86-crash-force-unlock-console.patch
5d8ce179-sched-dont-leak-XEN_RUNSTATE_UPDATE.patch
5d9ef2ef-PCI-clear-maskall-fields-on-assign.patch
5d9ee2a8-AMD-IOMMU-alloc-1-devtab-per-PCI-seg.patch
5db07974-x86-update-time-info-on-TSC-adjustments.patch
5dbafa7f-x86-mm-collapse-PTF_partial_.patch�- bsc#1120095 - add code to change LIBXL_HOTPLUG_TIMEOUT at runtime
The included README has details about the impact of this change
libxl.LIBXL_HOTPLUG_TIMEOUT.patch�- bsc#1135799 - Partner-L3: Xen crashes on AMD ROME based machines
5ca7660f-x86-entry-drop-unused-includes.patch
5cf8da09-adjust-sysdom-creation-call-earlier-on-x86.patch
5cab2a6b-x86-ACPI-also-parse-AMD-tables-early.patch
5cab2ab7-x86-IOMMU-introduce-init-ops.patch
5cab2ae8-x86-IOMMU-abstract-iommu_supports_eim.patch
5cab2b4e-x86-IOMMU-abstract-iommu_enable_x2apic_IR.patch
5cab2b95-x86-IOMMU-initialize-iommu_ops-in.patch
5cac9a4b-x86-IOMMU-abstract-adjust_vtd_irq_affinities.patch
5cdeac7f-AMD-IOMMU-adjust-IOMMU-list-head-init.patch
5d0cf4e4-AMD-IOMMU-initialize-IRQ-tasklet-once.patch
5d149bb0-AMD-IOMMU-dont-add-IOMMUs.patch
5d1b3fab-AMD-IOMMU-restrict-feature-logging.patch
5d358508-x86-IRQ-desc-affinity-represents-request.patch
5d358534-x86-IRQ-consolidate-arch-cpu_mask-use.patch
5d358a67-AMD-IOMMU-pass-IOMMU-to-iterate_ivrs_entries-cb.patch
5d358a92-AMD-IOMMU-pass-IOMMU-to-amd_iommu_alloc_intremap_table.patch
5d39811c-x86-IOMMU-dont-restrict-IRQ-affinities.patch
5d417813-AMD-IOMMU-bitfield-extended-features.patch
5d417838-AMD-IOMMU-bitfield-control-reg.patch
5d41785b-AMD-IOMMU-bitfield-IRTE.patch
5d41787e-AMD-IOMMU-pass-IOMMU-to-gfu-intremap-entry.patch
5d4178ad-AMD-IOMMU-128bit-non-guest-APIC-IRTE.patch
5d4178fc-AMD-IOMMU-split-amd_iommu_init_one.patch
5d41793f-AMD-IOMMU-allow-enabling-without-IRQ.patch
5d417a16-AMD-IOMMU-adjust-IRQ-setup-for-x2APIC.patch
5d417ab6-AMD-IOMMU-enable-x2APIC-mode.patch
5d417b38-AMD-IOMMU-correct-IRTE-updating.patch
5d417b6a-AMD-IOMMU-dont-needlessly-log-headers.patch
5d4a9d25-AMD-IOMMU-drop-not-found-message.patch
5d80e7c0-AMD-IOMMU-free-shared-IRT-once.patch
5d80e80d-AMD-IOMMU-valid-flag-for-IVRS-mappings.patch
5d80e82e-AMD-IOMMU-alloc_intremap_table-callers-handle-errors.patch
5d80e857-x86-PCI-read-MSI-X-table-entry-count-early.patch
5d8b72e5-AMD-IOMMU-dont-blindly-alloc-intremap-tables.patch
5d8b730e-AMD-IOMMU-phantom-funcs-share-intremap-tables.patch
5d8b733b-x86-PCI-read-max-MSI-vector-count-early.patch
5d8b736d-AMD-IOMMU-replace-INTREMAP_ENTRIES.patch
5d8b7393-AMD-IOMMU-restrict-intremap-table-sizes.patch
- bsc#1145240 - [Migration]Can't pre-allocate 1 shadow pages
5d70bfba-x86-shadow-dont-enable-with-too-small-allocation.patch
- bsc#1137717 - [HPS Bug] Unable to install Windows Server 2016
with 2 CPUs setting (or above) under SLES12 SP4 Xen Server on AMD
ROME platform
5d89d8d9-libxc-x86-avoid-overflow-in-CPUID-APIC-ID.patch
- Upstream bug fixes (bsc#1027519)
5d67ceaf-x86-properly-gate-PKU-clearing.patch
5d779811-x86-fix-CPUID7-0-eax-levelling-MSR.patch
5d77b40f-fix-hvm_all_ioreq_servers_add_vcpu-cleanup.patch
5d80ea13-vpci-honor-read-only-devices.patch
5d8b715f-ACPI-cpuidle-bump-max-num-of-states.patch�- bsc#1145774 - Libivrtd segfaults when trying to live migrate a VM
Fix crash in an error path of libxl_domain_suspend with
libxl.helper_done-crash.patch�- Upstream bug fixes (bsc#1027519)
5d419d49-x86-spec-ctrl-report-proper-status.patch
5d43253c-x86-ucode-always-collect_cpu_info-at-boot.patch
5d4aa36f-x86-apic-enable-x2APIC-mode-earlier.patch
5d4afa7a-credit2-fix-memory-leak.patch
5d4d850a-introduce-bss-percpu-page-aligned.patch
5d516531-x86-xpti-dont-leak-TSS-adjacent-data.patch
5d5bf475-x86-PV-fix-handling-of-iommu-mappings.patch
5d6524ca-x86-mm-correctly-init-M2P-entries.patch
- Drop 5d419d49-x86-spec-ctrl-facilities-report-wrong-status.patch�- Update to Xen 4.12.1 bug fix release (bsc#1027519)
xen-4.12.1-testing-src.tar.bz2
- Drop patches contained in new tarball
5c87b644-IOMMU-leave-enabled-for-kexec-crash.patch
5c87b6a2-x86-HVM-dont-crash-guest-in-find_mmio_cache.patch
5c87b6c8-drop-arch_evtchn_inject.patch
5c87b6e8-avoid-atomic-rmw-accesses-in-map_vcpu_info.patch
5c87e6d1-x86-TSX-controls-for-RTM-force-abort-mode.patch
5c8f752c-x86-e820-build-with-gcc9.patch
5c8fb92d-x86-HVM-split-linear-reads-and-writes.patch
5c8fb951-x86-HVM-finish-IOREQs-correctly-on-completion.patch
5c8fc6c0-x86-MSR-shorten-ARCH_CAPABILITIES.patch
5c8fc6c0-x86-SC-retpoline-safety-calculations-for-eIBRS.patch
5c9e63c5-credit2-SMT-idle-handling.patch
5ca46b68-x86emul-no-GPR-update-upon-AVX-gather-failures.patch
5ca773d1-x86emul-dont-read-mask-reg-without-AVX512F.patch
5cab1f66-timers-fix-memory-leak-with-cpu-plug.patch
5cac6cba-vmx-Fixup-removals-of-MSR-load-save-list-entries.patch
5cd921fb-trace-fix-build-with-gcc9.patch
5cd9224b-AMD-IOMMU-disable-upon-init-fail.patch
5cd922c5-x86-MTRR-recalc-p2mt-when-iocaps.patch
5cd9230f-VMX-correctly-get-GS_SHADOW-for-current.patch
5cd926d0-bitmap_fill-zero-sized.patch
5cd92724-drivers-video-drop-constraints.patch
5cd93a69-x86-MSR_INTEL_CORE_THREAD_COUNT.patch
5cd93a69-x86-boot-detect-Intel-SMT-correctly.patch
5cd93a69-x86-spec-ctrl-reposition-XPTI-parsing.patch
5cd981ff-x86-IRQ-tracing-avoid-UB-or-worse.patch
5cdad090-x86-spec-ctrl-CPUID-MSR-definitions-for-MDS.patch
5cdad090-x86-spec-ctrl-infrastructure-for-VERW-flush.patch
5cdad090-x86-spec-ctrl-misc-non-functional-cleanup.patch
5cdad090-x86-spec-ctrl-opts-to-control-VERW-flush.patch
5cdeb9fd-sched-fix-csched2_deinit_pdata.patch
5ce7a92f-x86-IO-APIC-fix-build-with-gcc9.patch
5cf0f6a4-x86-vhpet-resume-avoid-small-diff.patch
5cf16e51-x86-spec-ctrl-Knights-retpoline-safe.patch
5d03a0c4-1-Arm-add-an-isb-before-reading-CNTPCT_EL0.patch
5d03a0c4-2-gnttab-rework-prototype-of-set_status.patch
5d03a0c4-3-Arm64-rewrite-bitops-in-C.patch
5d03a0c4-4-Arm32-rewrite-bitops-in-C.patch
5d03a0c4-5-Arm-bitops-consolidate-prototypes.patch
5d03a0c4-6-Arm64-cmpxchg-simplify.patch
5d03a0c4-7-Arm32-cmpxchg-simplify.patch
5d03a0c4-8-Arm-bitops-helpers-with-timeout.patch
5d03a0c4-9-Arm-cmpxchg-helper-with-timeout.patch
5d03a0c4-A-Arm-turn-on-SILO-mode-by-default.patch
5d03a0c4-B-bitops-guest-helpers.patch
5d03a0c4-C-cmpxchg-guest-helpers.patch
5d03a0c4-D-use-guest-atomics-helpers.patch
5d03a0c4-E-Arm-add-perf-counters-in-guest-atomic-helpers.patch
5d03a0c4-F-Arm-protect-gnttab_clear_flag.patch
- Refreshed patches
libxl.pvscsi.patch�- bsc#1143563 - Speculative mitigation facilities report wrong status
5d419d49-x86-spec-ctrl-facilities-report-wrong-status.patch�- bsc#1138563 - L3: xenpvnetboot improperly ported to Python 3
fix-xenpvnetboot.patch�- bsc#1138294 - VUL-0: CVE-2019-17349: XSA-295: Unlimited Arm
Atomics Operations
5d03a0c4-1-Arm-add-an-isb-before-reading-CNTPCT_EL0.patch
5d03a0c4-2-gnttab-rework-prototype-of-set_status.patch
5d03a0c4-3-Arm64-rewrite-bitops-in-C.patch
5d03a0c4-4-Arm32-rewrite-bitops-in-C.patch
5d03a0c4-5-Arm-bitops-consolidate-prototypes.patch
5d03a0c4-6-Arm64-cmpxchg-simplify.patch
5d03a0c4-7-Arm32-cmpxchg-simplify.patch
5d03a0c4-8-Arm-bitops-helpers-with-timeout.patch
5d03a0c4-9-Arm-cmpxchg-helper-with-timeout.patch
5d03a0c4-A-Arm-turn-on-SILO-mode-by-default.patch
5d03a0c4-B-bitops-guest-helpers.patch
5d03a0c4-C-cmpxchg-guest-helpers.patch
5d03a0c4-D-use-guest-atomics-helpers.patch
5d03a0c4-E-Arm-add-perf-counters-in-guest-atomic-helpers.patch
5d03a0c4-F-Arm-protect-gnttab_clear_flag.patch
- Upstream bug fixes (bsc#1027519)
5c87b6c8-drop-arch_evtchn_inject.patch
5c87b6e8-avoid-atomic-rmw-accesses-in-map_vcpu_info.patch
5cd921fb-trace-fix-build-with-gcc9.patch
5cd9224b-AMD-IOMMU-disable-upon-init-fail.patch
5cd922c5-x86-MTRR-recalc-p2mt-when-iocaps.patch
5cd9230f-VMX-correctly-get-GS_SHADOW-for-current.patch
5cd926d0-bitmap_fill-zero-sized.patch
5cd92724-drivers-video-drop-constraints.patch
5cd93a69-x86-spec-ctrl-reposition-XPTI-parsing.patch (Replaces xsa297-0a.patch)
5cd93a69-x86-MSR_INTEL_CORE_THREAD_COUNT.patch (Replaces xsa297-0b.patch)
5cd93a69-x86-boot-detect-Intel-SMT-correctly.patch (Replaces xsa297-0c.patch)
5cdad090-x86-spec-ctrl-misc-non-functional-cleanup.patch (Replaces xsa297-0d.patch)
5cdad090-x86-spec-ctrl-CPUID-MSR-definitions-for-MDS.patch (Replaces xsa297-1.patch)
5cdad090-x86-spec-ctrl-infrastructure-for-VERW-flush.patch (Replaces xsa297-2.patch)
5cdad090-x86-spec-ctrl-opts-to-control-VERW-flush.patch (Replaces xsa297-3.patch)
5cd981ff-x86-IRQ-tracing-avoid-UB-or-worse.patch
5cdeb9fd-sched-fix-csched2_deinit_pdata.patch
5ce7a92f-x86-IO-APIC-fix-build-with-gcc9.patch
5cf0f6a4-x86-vhpet-resume-avoid-small-diff.patch
5cf16e51-x86-spec-ctrl-Knights-retpoline-safe.patch�- Fix some outdated information in the readme
README.SUSE�- spec: xen-tools: require matching version of xen package
bsc#1137471�- Remove two stale patches
xen.build-compare.man.patch
xenpaging.doc.patch�- Disable LTO (boo#1133296).�- Remove arm32 from ExclusiveArch to fix build�- bsc#1111331 - VUL-0: CPU issues Q2 2019 aka "Group 4".
CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091
xsa297-0a.patch
xsa297-0b.patch
xsa297-0c.patch
xsa297-0d.patch
xsa297-1.patch
xsa297-2.patch
xsa297-3.patch
- Update 5cab1f66-timers-fix-memory-leak-with-cpu-plug.patch and
drop 5cac6219-xen-cpu-Fix-ARM-build-following-cs-597fbb8.patch
Refresh 5cac6cba-vmx-Fixup-removals-of-MSR-load-save-list-entries.patch�- bsc#1131811 - [XEN] internal error: libxenlight failed to create
new domain. This patch is a workaround for a systemd issue. See
patch header for additional comments.
xenstore-launch.patch�- bsc#1125378 - [xen][pygrub] Can not restore sle11sp4 pv guest
after upgrading host from sle11sp4 to sle15sp1
pygrub-python3-conversion.patch
- Fix "TypeError: virDomainDefineXML() argument 2 must be str or
None, not bytes" when converting VMs from using the xm/xend
toolstack to the libxl/libvirt toolstack. (bsc#1123378)
xen2libvirt.py�- bsc#1124560 - Fully virtualized guests crash on boot
5cac6cba-vmx-Fixup-removals-of-MSR-load-save-list-entries.patch
- bsc#1121391 - GCC 9: xen build fails
5c8f752c-x86-e820-build-with-gcc9.patch
- Upstream bug fixes (bsc#1027519)
5c87b644-IOMMU-leave-enabled-for-kexec-crash.patch
5c87b6a2-x86-HVM-dont-crash-guest-in-find_mmio_cache.patch
5c87e6d1-x86-TSX-controls-for-RTM-force-abort-mode.patch
5c8fb92d-x86-HVM-split-linear-reads-and-writes.patch
5c8fb951-x86-HVM-finish-IOREQs-correctly-on-completion.patch
5c8fc6c0-x86-MSR-shorten-ARCH_CAPABILITIES.patch
5c8fc6c0-x86-SC-retpoline-safety-calculations-for-eIBRS.patch
5c9e63c5-credit2-SMT-idle-handling.patch
5ca46b68-x86emul-no-GPR-update-upon-AVX-gather-failures.patch
5ca773d1-x86emul-dont-read-mask-reg-without-AVX512F.patch
5cab1f66-timers-fix-memory-leak-with-cpu-plug.patch
5cac6219-xen-cpu-Fix-ARM-build-following-cs-597fbb8.patch�- Install pkgconfig files into libdir instead of datadir�- Update to Xen 4.12.0 FCS release (fate#325107, fate#323901)
xen-4.12.0-testing-src.tar.bz2
* HVM/PVH and PV only Hypervisor: The Xen 4.12 release separates
the HVM/PVH and PV code paths in Xen and provides KCONFIG
options to build a PV only or HVM/PVH only hypervisor.
* QEMU Deprivilege (DM_RESTRICT): In Xen 4.12, this feature has
been vastly improved.
* Argo - Hypervisor-Mediated data eXchange: Argo is a new inter-
domain communication mechanism.
* Improvements to Virtual Machine Introspection: The VMI subsystem
which allows detection of 0-day vulnerabilities has seen many
functional and performance improvements.
* Credit 2 Scheduler: The Credit2 scheduler is now the Xen Project
default scheduler.
* PVH Support: Grub2 boot support has been added to Xen and Grub2.
* PVH Dom0: PVH Dom0 support has now been upgraded from experimental
to tech preview.
* The Xen 4.12 upgrade also includes improved IOMMU mapping code,
which is designed to significantly improve the startup times of
AMD EPYC based systems.
* The upgrade also features Automatic Dom0 Sizing which allows the
setting of Dom0 memory size as a percentage of host memory (e.g.
10%) or with an offset (e.g. 1G+10%).�- bsc#1130485 - Please drop Requires on multipath-tools in
xen-tools. Now using Recommends multipath-tools.
xen.spec�- Update to Xen 4.12.0 RC7 release (fate#325107, fate#323901)
xen-4.12.0-testing-src.tar.bz2�- Update to Xen 4.12.0 RC6 release (fate#325107, fate#323901)
xen-4.12.0-testing-src.tar.bz2�- bsc#1026236 - add Xen cmdline option "suse_vtsc_tolerance" to
avoid TSC emulation for HVM domUs if their expected frequency
does not match exactly the frequency of the receiving host
xen.bug1026236.suse_vtsc_tolerance.patch�- Update to Xen 4.12.0 RC5 release (fate#325107, fate#323901)
xen-4.12.0-testing-src.tar.bz2�- jsc#SLE-3059 - Disable Xen auto-ballooning
- Add CONFIG_DOM0_MEM to the spec file for managing dom0 memory.
xen.spec
- Disable autoballooning in xl.con
xl-conf-disable-autoballoon.patch�- Update gcc9-ignore-warnings.patch to fix build in SLE12�- bsc#1126325 - fix crash in libxl in error path
Setup of grant_tables and other variables may fail
libxl.prepare-environment-for-domcreate_stream_done.patch�- bsc#1127620 - Documentation for the xl configuration file allows
for firmware=pvgrub64 but we don't ship pvgrub64.
Create a link from grub.xen to pvgrub64
xen.spec�- Update to Xen 4.12.0 RC4 release (fate#325107, fate#323901)
xen-4.12.0-testing-src.tar.bz2
- Tarball also contains additional post RC4 security fixes for
Xen Security Advisories 287, 288, and 290 through 294.�- Update to Xen 4.12.0 RC3 release (fate#325107, fate#323901)
xen-4.12.0-testing-src.tar.bz2�- Update to Xen 4.12.0 RC2 release (fate#325107, fate#323901)
xen-4.12.0-testing-src.tar.bz2�- bsc#1121391 - GCC 9: xen build fails
gcc9-ignore-warnings.patch�- bsc#1122563 - Virtualization/xen: Bug no Xen on boot, missing
/proc/xen, after 4.11 -> 4.12 upgrade on X86_64/efi.
Keep xen.efi in /usr/lib64/efi for booting older distros.
xen.spec�- fate#326960: Package grub2 as noarch.
As part of the effort to have a unified bootloader across
architectures, modify the xen.spec file to move the Xen efi files
to /usr/share/efi/$(uname -m) from /usr/lib64/efi.�- Update to Xen 4.12.0 RC1 release (fate#325107, fate#323901)
xen-4.12.0-testing-src.tar.bz2
- Drop
5b505d59-tools-xentop-replace-use-of-deprecated-vwprintw.patch
5b76ec82-libxl-arm-Fix-build-on-arm64-acpi-w-gcc-8.2.patch
5b8fae26-tools-libxl-correct-vcpu-affinity-output-with-sparse-physical-cpu-map.patch
5b8fae26-xen-fill-topology-info-for-all-present-cpus.patch
5b8fb5af-tools-xl-refuse-to-set-number-of-vcpus-to-0-via-xl-vcpu-set.patch
5b9784ad-x86-HVM-drop-hvm_fetch_from_guest_linear.patch
5b9784d2-x86-HVM-add-known_gla-helper.patch
5b9784f2-x86-HVM-split-page-straddling-accesses.patch
5bdc31d5-VMX-fix-vmx_handle_eoi.patch
gcc8-fix-array-warning-on-i586.patch
gcc8-fix-format-warning-on-i586.patch
gcc8-inlining-failed.patch
xen.bug1079730.patch�- bsc#1121960 - xen: sync with Factory
xen.spec
xen.changes�- Replace old $RPM_* shell vars.
- Run fdupes for all architectures, and not crossing
subvolume boundaries.�- Do not run %fdupes on aarch64 to avoid the hardlink-across-partition
rpmlint error�- Require qemu-seabios only on x86* as it is not available on non-x86
systems�- Avoid creating dangling symlinks (bsc#1116524)
This reverts the revert of tmp_build.patch�- Update to Xen 4.11.1 bug fix release (bsc#1027519)
xen-4.11.1-testing-src.tar.bz2
- 5b505d59-tools-xentop-replace-use-of-deprecated-vwprintw.patch
replaces xen.2b50cdbc444c637575580dcfa6c9525a84d5cc62.patch
- 5b76ec82-libxl-arm-Fix-build-on-arm64-acpi-w-gcc-8.2.patch
replaces xen.b8f33431f3dd23fb43a879f4bdb4283fdc9465ad.patch
- Drop the following patches contained in the new tarball
5b34b8fe-VMX-defer-vmx_vmcs_exit-as-long-as-possible.patch
5b3cab8e-1-VMX-MSR_DEBUGCTL-handling.patch
5b3cab8e-2-VMX-improve-MSR-load-save-API.patch
5b3cab8e-3-VMX-cleanup-MSR-load-save-infra.patch
5b3cab8f-1-VMX-factor-out-locate_msr_entry.patch
5b3cab8f-2-VMX-remote-access-to-MSR-lists.patch
5b3cab8f-3-VMX-improve-LBR-MSR-handling.patch
5b3cab8f-4-VMX-pass-MSR-value-into-vmx_msr_add.patch
5b3cab8f-5-VMX-load-only-guest-MSR-entries.patch
5b3f8fa5-port-array_index_nospec-from-Linux.patch
5b4321f6-x86-correctly-set-nonlazy_xstate_used-when-loading-full-state.patch
5b4488e7-x86-spec-ctrl-cmdline-handling.patch
5b471517-page_alloc-correct-first_dirty-calc-in-block-merging.patch
5b4c9a60-allow-cpu_down-to-be-called-earlier.patch
5b4db308-SVM-fix-cleanup-svm_inject_event.patch
5b5040c3-cpupools-fix-state-when-downing-a-CPU-failed.patch
5b5040f2-x86-AMD-distinguish-CU-from-HT.patch
5b505fe5-VMX-fix-find-msr-build.patch
5b508775-1-x86-distinguish-CPU-offlining-and-removal.patch
5b508775-2-x86-possibly-bring-up-all-CPUs.patch
5b508775-3-x86-cmdline-opt-to-avoid-use-of-secondary-HTs.patch
5b508ce8-VMX-dont-clobber-dr6-while-debug-state-is-lazy.patch
5b50df16-1-x86-xstate-use-guest-CPUID-policy.patch
5b50df16-2-x86-make-xstate-calculation-errors-more-obvious.patch
5b56feb1-hvm-Disallow-unknown-MSR_EFER-bits.patch
5b56feb2-spec-ctrl-Fix-the-parsing-of-xpti--on-fixed-Intel-hardware.patch
5b62ca93-VMX-avoid-hitting-BUG_ON.patch
5b6d84ac-x86-fix-improve-vlapic-read-write.patch
5b6d8ce2-x86-XPTI-parsing.patch
5b72fbbe-ARM-disable-grant-table-v2.patch
5b72fbbe-oxenstored-eval-order.patch
5b72fbbe-vtx-Fix-the-checking-for-unknown-invalid-MSR_DEBUGCTL-bits.patch
5b72fbbf-1-spec-ctrl-Calculate-safe-PTE-addresses-for-L1TF-mitigations.patch
5b72fbbf-2-spec-ctrl-Introduce-an-option-to-control-L1TF-mitigation-for-PV-guests.patch
5b72fbbf-3-shadow-Infrastructure-to-force-a-PV-guest-into-shadow-mode.patch
5b72fbbf-4-mm-Plumbing-to-allow-any-PTE-update-to-fail-with--ERESTART.patch
5b72fbbf-5-pv-Force-a-guest-into-shadow-mode-when-it-writes-an-L1TF-vulnerable-PTE.patch
5b72fbbf-6-spec-ctrl-CPUID-MSR-definitions-for-L1D_FLUSH.patch
5b72fbbf-7-msr-Virtualise-MSR_FLUSH_CMD-for-guests.patch
5b72fbbf-8-spec-ctrl-Introduce-an-option-to-control-L1D_FLUSH-for-HVM-HAP-guests.patch
5b72fbbf-x86-Make-spec-ctrl-no-a-global-disable-of-all-mitigations.patch
5b72fbbf-xl.conf-Add-global-affinity-masks.patch
5b74190e-x86-hvm-ioreq-MMIO-range-check-honor-DF.patch
5b752762-x86-hvm-emul-rep-IO-should-not-cross-GFN-boundaries.patch
5b75afef-x86-setup-avoid-OoB-E820-lookup.patch
5b76b780-rangeset-inquiry-functions-tolerate-NULL.patch
5b83c654-VT-d-dmar-iommu-mem-leak-fix.patch
5b8d5832-x86-assorted-array_index_nospec-insertions.patch
5ba11ed4-credit2-fix-moving-CPUs-between-cpupools.patch
5bacae4b-x86-boot-allocate-extra-module-slot.patch
5bae44ce-x86-silence-false-log-messages.patch
5bb60c12-x86-split-opt_xpti.patch
5bb60c4f-x86-split-opt_pv_l1tf.patch
5bb60c74-x86-fix-xpti-and-pv-l1tf.patch
5bcf0722-x86-boot-enable-NMIs.patch
5bd076e9-dombuilder-init-vcpu-debug-regs-correctly.patch
5bd076e9-x86-boot-init-debug-regs-correctly.patch
5bd076e9-x86-init-vcpu-debug-regs-correctly.patch
5bd0e0cf-vvmx-Disallow-the-use-of-VT-x-instructions-when-nested-virt-is-disabled.patch
5bd0e11b-x86-disallow-VT-x-insns-without-nested-virt.patch
5bd85bfd-x86-fix-crash-on-xl-set-parameter-pcid.patch
5be2a308-x86-extend-get_platform_badpages.patch
5be2a354-x86-work-around-HLE-host-lockup-erratum.patch
xsa275-1.patch
xsa275-2.patch
xsa276-1.patch
xsa276-2.patch
xsa277.patch
xsa279.patch
xsa280-1.patch
xsa280-2.patch�- bsc#1116524 - Package xen-tools-4.11.0_09-2.1.x86_64 broken:
Missing /bin/domu-xenstore. This was broken because "make
package build reproducible" change. (boo#1047218, boo#1062303)
This fix reverses the change to this patch.
tmp_build.patch�- bsc#1115040 - VUL-0: CVE-2018-19961 CVE-2018-19962: xen:
insufficient TLB flushing / improper large page mappings with AMD
IOMMUs (XSA-275)
xsa275-1.patch
xsa275-2.patch
- bsc#1115043 - VUL-0: CVE-2018-19963: xen: resource accounting
issues in x86 IOREQ server handling (XSA-276)
xsa276-1.patch
xsa276-2.patch
- bsc#1115044 - VUL-0: CVE-2018-19964: xen: x86: incorrect error
handling for guest p2m page removals (XSA-277)
xsa277.patch
- bsc#1114405 - VUL-0: CVE-2018-18883: xen: Nested VT-x usable even
when disabled (XSA-278)
5bd0e11b-x86-disallow-VT-x-insns-without-nested-virt.patch
- bsc#1115045 - VUL-0: xen: CVE-2018-19965: x86: DoS from attempting
to use INVPCID with a non-canonical addresses (XSA-279)
xsa279.patch
- bsc#1115047 - VUL-0: CVE-2018-19966: xen: Fix for XSA-240
conflicts with shadow paging (XSA-280)
xsa280-1.patch
xsa280-2.patch
- bsc#1114988 - VUL-0: CVE-2018-19967: xen: guest use of HLE
constructs may lock up host (XSA-282)
5be2a308-x86-extend-get_platform_badpages.patch
5be2a354-x86-work-around-HLE-host-lockup-erratum.patch
- bsc#1108940 - L3: XEN SLE12-SP1 domU hang on SLE12-SP3 HV
5bdc31d5-VMX-fix-vmx_handle_eoi.patch
- Upstream bug fixes (bsc#1027519)
5b752762-x86-hvm-emul-rep-IO-should-not-cross-GFN-boundaries.patch
5ba11ed4-credit2-fix-moving-CPUs-between-cpupools.patch
5bacae4b-x86-boot-allocate-extra-module-slot.patch
5bae44ce-x86-silence-false-log-messages.patch
5bb60c12-x86-split-opt_xpti.patch
5bb60c4f-x86-split-opt_pv_l1tf.patch
5bb60c74-x86-fix-xpti-and-pv-l1tf.patch
5bcf0722-x86-boot-enable-NMIs.patch
5bd076e9-dombuilder-init-vcpu-debug-regs-correctly.patch
5bd076e9-x86-boot-init-debug-regs-correctly.patch
5bd076e9-x86-init-vcpu-debug-regs-correctly.patch
5bd85bfd-x86-fix-crash-on-xl-set-parameter-pcid.patch�- bsc#1114405 - VUL-0: CVE-2018-18883: xen: Nested VT-x usable even
when disabled (XSA-278)
5bd0e0cf-vvmx-Disallow-the-use-of-VT-x-instructions-when-nested-virt-is-disabled.patch�- Use SMBIOS_REL_DATE instead of SMBIOS_DATE for reproducible binaries�- make package build reproducible (boo#1047218, boo#1062303)
* Set SMBIOS_REL_DATE
* Update tmp_build.patch to use SHA instead of random build-id
* Add reproducible.patch to use --no-insert-timestamp�- Building with ncurses 6.1 will fail without
xen.2b50cdbc444c637575580dcfa6c9525a84d5cc62.patch
- Building libxl acpi support on aarch64 with gcc 8.2 will fail without
xen.b8f33431f3dd23fb43a879f4bdb4283fdc9465ad.patch�- bsc#1106263 - L3: The affinity reporting via 'xl vcpu-list' is
apparently broken
5b8fae26-tools-libxl-correct-vcpu-affinity-output-with-sparse-physical-cpu-map.patch
5b8fae26-xen-fill-topology-info-for-all-present-cpus.patch
5b8fb5af-tools-xl-refuse-to-set-number-of-vcpus-to-0-via-xl-vcpu-set.patch�- bsc#1094508 - L3: Kernel oops in fs/dcache.c called by
d_materialise_unique()
5b9784ad-x86-HVM-drop-hvm_fetch_from_guest_linear.patch
5b9784d2-x86-HVM-add-known_gla-helper.patch
5b9784f2-x86-HVM-split-page-straddling-accesses.patch
- bsc#1103279 - (CVE-2018-15470) VUL-0: CVE-2018-15470: xen:
oxenstored does not apply quota-maxentity (XSA-272)
5b72fbbe-oxenstored-eval-order.patch
- bsc#1103275 - (CVE-2018-15469) VUL-0: CVE-2018-15469: xen: Use of
v2 grant tables may cause crash on ARM (XSA-268)
5b72fbbe-ARM-disable-grant-table-v2.patch
- Upstream patches from Jan (bsc#1027519)
5b6d84ac-x86-fix-improve-vlapic-read-write.patch
5b74190e-x86-hvm-ioreq-MMIO-range-check-honor-DF.patch
5b75afef-x86-setup-avoid-OoB-E820-lookup.patch
5b76b780-rangeset-inquiry-functions-tolerate-NULL.patch
5b83c654-VT-d-dmar-iommu-mem-leak-fix.patch
5b8d5832-x86-assorted-array_index_nospec-insertions.patch
- Drop 5b741962-x86-write-to-correct-variable-in-parse_pv_l1tf.patch�- bsc#1078292 - rpmbuild -ba SPECS/xen.spec with xen-4.9.1 failed
xen.spec�- bsc#1091107 - VUL-0: CVE-2018-3646: xen: L1 Terminal Fault -VMM
(XSA-273)
5b72fbbf-1-spec-ctrl-Calculate-safe-PTE-addresses-for-L1TF-mitigations.patch
5b72fbbf-2-spec-ctrl-Introduce-an-option-to-control-L1TF-mitigation-for-PV-guests.patch
5b72fbbf-3-shadow-Infrastructure-to-force-a-PV-guest-into-shadow-mode.patch
5b72fbbf-4-mm-Plumbing-to-allow-any-PTE-update-to-fail-with--ERESTART.patch
5b72fbbf-5-pv-Force-a-guest-into-shadow-mode-when-it-writes-an-L1TF-vulnerable-PTE.patch
5b72fbbf-6-spec-ctrl-CPUID-MSR-definitions-for-L1D_FLUSH.patch
5b72fbbf-7-msr-Virtualise-MSR_FLUSH_CMD-for-guests.patch
5b72fbbf-8-spec-ctrl-Introduce-an-option-to-control-L1D_FLUSH-for-HVM-HAP-guests.patch
- bsc#1103276 - VUL-0: CVE-2018-15468: xen: x86: Incorrect
MSR_DEBUGCTL handling lets guests enable BTS (XSA-269)
5b72fbbe-vtx-Fix-the-checking-for-unknown-invalid-MSR_DEBUGCTL-bits.patch
- Upstream prereq patches for XSA-273 and other upstream fixes
(bsc#1027519)
5b34b8fe-VMX-defer-vmx_vmcs_exit-as-long-as-possible.patch
5b3cab8e-1-VMX-MSR_DEBUGCTL-handling.patch
5b3cab8e-2-VMX-improve-MSR-load-save-API.patch
5b3cab8e-3-VMX-cleanup-MSR-load-save-infra.patch
5b3cab8f-1-VMX-factor-out-locate_msr_entry.patch
5b3cab8f-2-VMX-remote-access-to-MSR-lists.patch
5b3cab8f-3-VMX-improve-LBR-MSR-handling.patch
5b3cab8f-4-VMX-pass-MSR-value-into-vmx_msr_add.patch
5b3cab8f-5-VMX-load-only-guest-MSR-entries.patch
5b4321f6-x86-correctly-set-nonlazy_xstate_used-when-loading-full-state.patch
5b505fe5-VMX-fix-find-msr-build.patch
5b56feb1-hvm-Disallow-unknown-MSR_EFER-bits.patch
5b56feb2-spec-ctrl-Fix-the-parsing-of-xpti--on-fixed-Intel-hardware.patch
5b62ca93-VMX-avoid-hitting-BUG_ON.patch
5b6d8ce2-x86-XPTI-parsing.patch
5b72fbbf-x86-Make-spec-ctrl-no-a-global-disable-of-all-mitigations.patch
5b72fbbf-xl.conf-Add-global-affinity-masks.patch
5b741962-x86-write-to-correct-variable-in-parse_pv_l1tf.patch�- Upstream patches from Jan (bsc#1027519)
5b3f8fa5-port-array_index_nospec-from-Linux.patch
5b4488e7-x86-spec-ctrl-cmdline-handling.patch
5b471517-page_alloc-correct-first_dirty-calc-in-block-merging.patch
5b4c9a60-allow-cpu_down-to-be-called-earlier.patch
5b4db308-SVM-fix-cleanup-svm_inject_event.patch
5b5040c3-cpupools-fix-state-when-downing-a-CPU-failed.patch
5b5040f2-x86-AMD-distinguish-CU-from-HT.patch
5b508775-1-x86-distinguish-CPU-offlining-and-removal.patch
5b508775-2-x86-possibly-bring-up-all-CPUs.patch
5b508775-3-x86-cmdline-opt-to-avoid-use-of-secondary-HTs.patch
5b508ce8-VMX-dont-clobber-dr6-while-debug-state-is-lazy.patch
5b50df16-1-x86-xstate-use-guest-CPUID-policy.patch
5b50df16-2-x86-make-xstate-calculation-errors-more-obvious.patch
gcc8-fix-format-warning-on-i586.patch
gcc8-fix-array-warning-on-i586.patch
- Drop xen.fuzz-_FORTIFY_SOURCE.patch
gcc8-fix-warning-on-i586.patch�- Update to Xen 4.11.0 FCS (fate#325202, fate#325123)
xen-4.11.0-testing-src.tar.bz2
disable-building-pv-shim.patch
- Dropped patches
5a33a12f-domctl-improve-locking-during-domain-destruction.patch
5a6703cb-x86-move-invocations-of-hvm_flush_guest_tlbs.patch
5a79d7ed-libxc-packed-initrd-dont-fail-domain-creation.patch
5a9985bd-x86-invpcid-support.patch
5ac72a48-gcc8.patch
5ac72a5f-gcc8.patch
5ac72a64-gcc8.patch
5ac72a69-gcc8.patch
5ac72a6e-gcc8.patch
5ac72a74-gcc8.patch
5ac72a7b-gcc8.patch
5ad4923e-x86-correct-S3-resume-ordering.patch
5ad49293-x86-suppress-BTI-mitigations-around-S3.patch
5ad600d4-x86-pv-introduce-x86emul_read_dr.patch
5ad600d4-x86-pv-introduce-x86emul_write_dr.patch
5ad8c3a7-x86-spec_ctrl-update-retpoline-decision-making.patch
5adda097-x86-HPET-fix-race-triggering-ASSERT.patch
5adda0d5-x86-HVM-never-retain-emulated-insn-cache.patch
5adde9ed-xpti-fix-double-fault-handling.patch
5ae06fad-SVM-fix-intercepts-for-SYS-CALL-ENTER-MSRs.patch
5ae31917-x86-cpuidle-init-stats-lock-once.patch
5aeaeae4-introduce-vcpu_sleep_nosync_locked.patch
5aeaeaf0-sched-fix-races-in-vcpu-migration.patch
5aeb2c57-x86-retval-checks-of-set-guest-trapbounce.patch
5aec7393-1-x86-xpti-avoid-copy.patch
5aec7393-2-x86-xpti-write-cr3.patch
5aec744a-3-x86-xpti-per-domain-flag.patch
5aec744a-4-x86-xpti-use-invpcid.patch
5aec744a-5-x86-xpti-no-global-pages.patch
5aec744a-6-x86-xpti-cr3-valid-flag.patch
5aec744a-7-x86-xpti-pv_guest_cr4_to_real_cr4.patch
5aec744b-8-x86-xpti-cr3-helpers.patch
5aec74a8-9-x86-xpti-use-pcid.patch
5af1daa9-1-x86-traps-fix-dr6-handing-in-DB-handler.patch
5af1daa9-2-x86-pv-move-exception-injection-into-test_all_events.patch
5af1daa9-3-x86-traps-use-IST-for-DB.patch
5af1daa9-4-x86-traps-fix-handling-of-DB-in-hypervisor-context.patch
5af1daa9-x86-HVM-guard-against-bogus-emulator-ioreq-state.patch
5af1daa9-x86-vpt-support-IO-APIC-routed-intr.patch
5af97999-viridian-cpuid-leaf-40000003.patch
5afc13ae-1-x86-read-MSR_ARCH_CAPABILITIES-once.patch
5afc13ae-2-x86-express-Xen-SPEC_CTRL-choice-as-variable.patch
5afc13ae-3-x86-merge-bti_ist_info-use_shadow_spec_ctrl.patch
5afc13ae-4-x86-fold-XEN_IBRS-ALTERNATIVES.patch
5afc13ae-5-x86-rename-bits-of-spec_ctrl-infrastructure.patch
5afc13ae-6-x86-elide-MSR_SPEC_CTRL-handling-in-idle.patch
5afc13ae-7-x86-split-X86_FEATURE_SC_MSR.patch
5afc13ae-8-x86-explicitly-set-Xen-default-SPEC_CTRL.patch
5afc13ae-9-x86-cpuid-improve-guest-policies-for-speculative.patch
5afc13ae-A-x86-introduce-spec-ctrl-cmdline-opt.patch
5b02c786-x86-AMD-mitigations-for-GPZ-SP4.patch
5b02c786-x86-Intel-mitigations-for-GPZ-SP4.patch
5b02c786-x86-msr-virtualise-SPEC_CTRL-SSBD.patch
5b0bc9da-x86-XPTI-fix-S3-resume.patch
5b0d2286-libxc-x86-PV-dont-hand-through-CPUID-leaf-0x80000008.patch
5b0d2d91-x86-suppress-sync-when-XPTI-off.patch
5b0d2dbc-x86-correct-default_xen_spec_ctrl.patch
5b0d2ddc-x86-CPUID-dont-override-tool-stack-hidden-STIBP.patch
5b150ef9-x86-fix-error-handling-of-pv-dr7-shadow.patch
5b21825d-1-x86-support-fully-eager-FPU-context-switching.patch
5b21825d-2-x86-spec-ctrl-mitigations-for-LazyFPU.patch
5b238b92-x86-HVM-account-for-fully-eager-FPU.patch
5b2b7172-x86-EFI-fix-FPU-state-handling-around-runtime-calls.patch
5b31e004-x86-HVM-emul-attempts-FPU-set-fpu_initialised.patch
5b323e3c-x86-EFI-fix-FPU-state-handling-around-runtime-calls.patch
5b34882d-x86-mm-dont-bypass-preemption-checks.patch
5b348874-x86-refine-checks-in-DB-handler.patch
5b348897-libxl-qemu_disk_scsi_drive_string-break-out-common.patch
5b3488a2-libxl-restore-passing-ro-to-qemu-for-SCSI-disks.patch
5b34891a-x86-HVM-dont-cause-NM-to-be-raised.patch
5b348954-x86-guard-against-NM.patch
libxl.Add-a-version-check-of-QEMU-for-QMP-commands.patch
libxl.LIBXL_DESTROY_TIMEOUT.patch
libxl.qmp-Tell-QEMU-about-live-migration-or-snapshot.patch
xen_fix_build_with_acpica_20180427_and_new_packages.patch�- Submit upstream patch libacpi: fixes for iasl >= 20180427
git commit 858dbaaeda33b05c1ac80aea0ba9a03924e09005
xen_fix_build_with_acpica_20180427_and_new_packages.patch
This is needed for acpica package to get updated in our build service�- Upstream patches from Jan (bsc#1027519)
5b02c786-x86-AMD-mitigations-for-GPZ-SP4.patch (Replaces Spectre-v4-1.patch)
5b02c786-x86-Intel-mitigations-for-GPZ-SP4.patch (Replaces Spectre-v4-2.patch)
5b02c786-x86-msr-virtualise-SPEC_CTRL-SSBD.patch (Replaces Spectre-v4-3.patch)
5b0bc9da-x86-XPTI-fix-S3-resume.patch
5b0d2286-libxc-x86-PV-dont-hand-through-CPUID-leaf-0x80000008.patch
5b0d2d91-x86-suppress-sync-when-XPTI-off.patch
5b0d2dbc-x86-correct-default_xen_spec_ctrl.patch
5b0d2ddc-x86-CPUID-dont-override-tool-stack-hidden-STIBP.patch
5b150ef9-x86-fix-error-handling-of-pv-dr7-shadow.patch
5b21825d-1-x86-support-fully-eager-FPU-context-switching.patch (Replaces xsa267-1.patch)
5b21825d-2-x86-spec-ctrl-mitigations-for-LazyFPU.patch (Replaces xsa267-2.patch)
5b238b92-x86-HVM-account-for-fully-eager-FPU.patch
5b2b7172-x86-EFI-fix-FPU-state-handling-around-runtime-calls.patch
5b31e004-x86-HVM-emul-attempts-FPU-set-fpu_initialised.patch
5b323e3c-x86-EFI-fix-FPU-state-handling-around-runtime-calls.patch
5b34882d-x86-mm-dont-bypass-preemption-checks.patch (Replaces xsa264.patch)
5b348874-x86-refine-checks-in-DB-handler.patch (Replaces xsa265.patch)
5b348897-libxl-qemu_disk_scsi_drive_string-break-out-common.patch (Replaces xsa266-1-<>.patch)
5b3488a2-libxl-restore-passing-ro-to-qemu-for-SCSI-disks.patch (Replaces xsa266-2-<>.patch)
5b34891a-x86-HVM-dont-cause-NM-to-be-raised.patch
5b348954-x86-guard-against-NM.patch�- Fix more build gcc8 related failures with xen.fuzz-_FORTIFY_SOURCE.patch�- bsc#1098403 - fix regression introduced by changes for bsc#1079730
a PV domU without qcow2 and/or vfb has no qemu attached.
Ignore QMP errors for PV domUs to handle PV domUs with and without
an attached qemu-xen.
xen.bug1079730.patch�- bsc#1097521 - VUL-0: CVE-2018-12891: xen: preemption checks
bypassed in x86 PV MM handling (XSA-264)
xsa264.patch
- bsc#1097522 - VUL-0: CVE-2018-12893: xen: x86: #DB exception
safety check can be triggered by a guest (XSA-265)
xsa265.patch
- bsc#1097523 - VUL-0: CVE-2018-12892: xen: libxl fails to honour
readonly flag on HVM emulated SCSI disks (XSA-266)
xsa266-1-libxl-qemu_disk_scsi_drive_string-Break-out-common-p.patch
xsa266-2-libxl-restore-passing-readonly-to-qemu-for-SCSI-disk.patch�- bsc#1095242 - VUL-0: CVE-2018-3665: xen: Lazy FP Save/Restore
(XSA-267)
xsa267-1.patch
xsa267-2.patch�- bsc#1092543 - GCC 8: xen build fails
gcc8-fix-warning-on-i586.patch�- bsc#1092631 - VUL-0: CVE-2018-3639: xen: V4 – Speculative Store
Bypass aka "Memory Disambiguation" (XSA-263)
5ad4923e-x86-correct-S3-resume-ordering.patch
5ad49293-x86-suppress-BTI-mitigations-around-S3.patch
5afc13ae-1-x86-read-MSR_ARCH_CAPABILITIES-once.patch
5afc13ae-2-x86-express-Xen-SPEC_CTRL-choice-as-variable.patch
5afc13ae-3-x86-merge-bti_ist_info-use_shadow_spec_ctrl.patch
5afc13ae-4-x86-fold-XEN_IBRS-ALTERNATIVES.patch
5afc13ae-5-x86-rename-bits-of-spec_ctrl-infrastructure.patch
5afc13ae-6-x86-elide-MSR_SPEC_CTRL-handling-in-idle.patch
5afc13ae-7-x86-split-X86_FEATURE_SC_MSR.patch
5afc13ae-8-x86-explicitly-set-Xen-default-SPEC_CTRL.patch
5afc13ae-9-x86-cpuid-improve-guest-policies-for-speculative.patch
5afc13ae-A-x86-introduce-spec-ctrl-cmdline-opt.patch
Spectre-v4-1.patch
Spectre-v4-2.patch
Spectre-v4-3.patch�- Always call qemus xen-save-devices-state in suspend/resume to
fix migration with qcow2 images (bsc#1079730)
libxl.Add-a-version-check-of-QEMU-for-QMP-commands.patch
libxl.qmp-Tell-QEMU-about-live-migration-or-snapshot.patch
xen.bug1079730.patch�- bsc#1087289 - L3: Xen BUG at sched_credit.c:1663
5aeaeae4-introduce-vcpu_sleep_nosync_locked.patch
5aeaeaf0-sched-fix-races-in-vcpu-migration.patch
- Upstream patches from Jan (bsc#1027519)
5ad600d4-x86-pv-introduce-x86emul_read_dr.patch
5ad600d4-x86-pv-introduce-x86emul_write_dr.patch
5ad8c3a7-x86-spec_ctrl-update-retpoline-decision-making.patch
5adda097-x86-HPET-fix-race-triggering-ASSERT.patch
5adda0d5-x86-HVM-never-retain-emulated-insn-cache.patch
5ae06fad-SVM-fix-intercepts-for-SYS-CALL-ENTER-MSRs.patch
5ae31917-x86-cpuidle-init-stats-lock-once.patch
5aeb2c57-x86-retval-checks-of-set-guest-trapbounce.patch
5af1daa9-1-x86-traps-fix-dr6-handing-in-DB-handler.patch (Replaces xsa260-1.patch)
5af1daa9-2-x86-pv-move-exception-injection-into-test_all_events.patch (Replaces xsa260-2.patch)
5af1daa9-3-x86-traps-use-IST-for-DB.patch (Replaces xsa260-3.patch)
5af1daa9-4-x86-traps-fix-handling-of-DB-in-hypervisor-context.patch (Replaces xsa260-4.patch)
5af1daa9-x86-HVM-guard-against-bogus-emulator-ioreq-state.patch (Replaces xsa262.patch)
5af1daa9-x86-vpt-support-IO-APIC-routed-intr.patch (Replaces xsa261.patch)
5af97999-viridian-cpuid-leaf-40000003.patch�- Fixes related to Page Table Isolation (XPTI). bsc#1074562 XSA-254
5a6703cb-x86-move-invocations-of-hvm_flush_guest_tlbs.patch
5a9985bd-x86-invpcid-support.patch
5adde9ed-xpti-fix-double-fault-handling.patch
5aec7393-1-x86-xpti-avoid-copy.patch
5aec7393-2-x86-xpti-write-cr3.patch
5aec744a-3-x86-xpti-per-domain-flag.patch
5aec744a-4-x86-xpti-use-invpcid.patch
5aec744a-5-x86-xpti-no-global-pages.patch
5aec744a-6-x86-xpti-cr3-valid-flag.patch
5aec744a-7-x86-xpti-pv_guest_cr4_to_real_cr4.patch
5aec744b-8-x86-xpti-cr3-helpers.patch
5aec74a8-9-x86-xpti-use-pcid.patch�- bsc#1092543 - GCC 8: xen build fails
5ac72a48-gcc8.patch
5ac72a5f-gcc8.patch
5ac72a64-gcc8.patch
5ac72a69-gcc8.patch
5ac72a6e-gcc8.patch
5ac72a74-gcc8.patch
5ac72a7b-gcc8.patch
gcc8-inlining-failed.patch�- Update to Xen 4.10.1 bug fix release (bsc#1027519)
xen-4.10.1-testing-src.tar.bz2
disable-building-pv-shim.patch
- Drop the following patches contained in the new tarball
5a21a77e-x86-pv-construct-d0v0s-GDT-properly.patch
5a2fda0d-x86-mb2-avoid-Xen-when-looking-for-module-crashkernel-pos.patch
5a2ffc1f-x86-mm-drop-bogus-paging-mode-assertion.patch
5a313972-x86-microcode-add-support-for-AMD-Fam17.patch
5a32bd79-x86-vmx-dont-use-hvm_inject_hw_exception-in-.patch
5a4caa5e-x86-IRQ-conditionally-preserve-access-perm.patch
5a4caa8c-x86-E820-don-t-overrun-array.patch
5a4e2bca-x86-free-msr_vcpu_policy-during-destruction.patch
5a4e2c2c-x86-upcall-inject-spurious-event-after-setting-vector.patch
5a4fd893-1-x86-break-out-alternative-asm-into-separate-header.patch
5a4fd893-2-x86-introduce-ALTERNATIVE_2-macros.patch
5a4fd893-3-x86-hvm-rename-update_guest_vendor-to-cpuid_policy_changed.patch
5a4fd893-4-x86-introduce-cpuid_policy_updated.patch
5a4fd893-5-x86-entry-remove-partial-cpu_user_regs.patch
5a4fd894-1-x86-rearrange-RESTORE_ALL-to-restore-in-stack-order.patch
5a4fd894-2-x86-hvm-use-SAVE_ALL-after-VMExit.patch
5a4fd894-3-x86-erase-guest-GPRs-on-entry-to-Xen.patch
5a4fd894-4-clarifications-to-wait-infrastructure.patch
5a534c78-x86-dont-use-incorrect-CPUID-values-for-topology.patch
5a5cb24c-x86-mm-always-set-_PAGE_ACCESSED-on-L4-updates.patch
5a5e2cff-x86-Meltdown-band-aid.patch
5a5e2d73-x86-Meltdown-band-aid-conditional.patch
5a5e3a4e-1-x86-support-compiling-with-indirect-branch-thunks.patch
5a5e3a4e-2-x86-support-indirect-thunks-from-asm.patch
5a5e3a4e-3-x86-report-speculative-mitigation-details.patch
5a5e3a4e-4-x86-AMD-set-lfence-as-Dispatch-Serialising.patch
5a5e3a4e-5-x86-introduce-alternative-indirect-thunks.patch
5a5e3a4e-6-x86-definitions-for-Indirect-Branch-Controls.patch
5a5e3a4e-7-x86-cmdline-opt-to-disable-IBRS-IBPB-STIBP.patch
5a5e459c-1-x86-SVM-offer-CPUID-faulting-to-AMD-HVM-guests.patch
5a5e459c-2-x86-report-domain-id-on-CPUID.patch
5a68bc16-x86-acpi-process-softirqs-logging-Cx.patch
5a69c0b9-x86-fix-GET_STACK_END.patch
5a6b36cd-1-x86-cpuid-handling-of-IBRS-IBPB-STIBP-and-IBRS-for-guests.patch
5a6b36cd-2-x86-msr-emulation-of-SPEC_CTRL-PRED_CMD.patch
5a6b36cd-3-x86-migrate-MSR_SPEC_CTRL.patch
5a6b36cd-4-x86-hvm-permit-direct-access-to-SPEC_CTRL-PRED_CMD.patch
5a6b36cd-5-x86-use-SPEC_CTRL-on-entry.patch
5a6b36cd-6-x86-clobber-RSB-RAS-on-entry.patch
5a6b36cd-7-x86-no-alternatives-in-NMI-MC-paths.patch
5a6b36cd-8-x86-boot-calculate-best-BTI-mitigation.patch
5a6b36cd-9-x86-issue-speculation-barrier.patch
5a6b36cd-A-x86-offer-Indirect-Branch-Controls-to-guests.patch
5a6b36cd-B-x86-clear-SPEC_CTRL-while-idle.patch
5a7b1bdd-x86-reduce-Meltdown-band-aid-IPI-overhead.patch
5a843807-x86-spec_ctrl-fix-bugs-in-SPEC_CTRL_ENTRY_FROM_INTR_IST.patch
5a856a2b-x86-emul-fix-64bit-decoding-of-segment-overrides.patch
5a856a2b-x86-use-32bit-xors-for-clearing-GPRs.patch
5a856a2b-x86-xpti-hide-almost-all-of-Xen-image-mappings.patch
5a8be788-x86-nmi-start-NMI-watchdog-on-CPU0-after-SMP.patch
5a95373b-x86-PV-avoid-leaking-other-guests-MSR_TSC_AUX.patch
5a95571f-memory-dont-implicitly-unpin-in-decrease-res.patch
5a95576c-gnttab-ARM-dont-corrupt-shared-GFN-array.patch
5a955800-gnttab-dont-free-status-pages-on-ver-change.patch
5a955854-x86-disallow-HVM-creation-without-LAPIC-emul.patch
5a956747-x86-HVM-dont-give-wrong-impression-of-WRMSR-success.patch
5a9eb7f1-x86-xpti-dont-map-stack-guard-pages.patch
5a9eb85c-x86-slightly-reduce-XPTI-overhead.patch
5a9eb890-x86-remove-CR-reads-from-exit-to-guest-path.patch
5aa2b6b9-cpufreq-ondemand-CPU-offlining-race.patch
5aaa9878-x86-vlapic-clear-TMR-bit-for-edge-triggered-intr.patch
xsa258.patch
xsa259.patch�- bsc#1090820 - VUL-0: CVE-2018-8897: xen: x86: mishandling of
debug exceptions (XSA-260)
xsa260-1.patch
xsa260-2.patch
xsa260-3.patch
xsa260-4.patch
- bsc#1090822 - VUL-0: CVE-2018-10982: xen: x86 vHPET interrupt
injection errors (XSA-261)
xsa261.patch
- bsc#1090823 - VUL-0: CVE-2018-10981: xen: qemu may drive Xen into
unbounded loop (XSA-262)
xsa262.patch�- bsc#1089152 - VUL-0: CVE-2018-10472: xen: Information leak via
crafted user-supplied CDROM (XSA-258)
xsa258.patch
- bsc#1089635 - VUL-0: CVE-2018-10471: xen: x86: PV guest may crash
Xen with XPTI (XSA-259)
xsa259.patch�- Preserve xen-syms from xen-dbg.gz to allow processing vmcores
with crash(1) (bsc#1087251)�- Upstream patches from Jan (bsc#1027519) and fixes related to
Page Table Isolation (XPTI). See also bsc#1074562 XSA-254
5a856a2b-x86-xpti-hide-almost-all-of-Xen-image-mappings.patch
5a9eb7f1-x86-xpti-dont-map-stack-guard-pages.patch
5a9eb85c-x86-slightly-reduce-XPTI-overhead.patch
5a9eb890-x86-remove-CR-reads-from-exit-to-guest-path.patch
5aa2b6b9-cpufreq-ondemand-CPU-offlining-race.patch
5aaa9878-x86-vlapic-clear-TMR-bit-for-edge-triggered-intr.patch�- bsc#1072834 - Xen HVM: unchecked MSR access error: RDMSR from
0xc90 at rIP: 0xffffffff93061456 (native_read_msr+0x6/0x30)
5a956747-x86-HVM-dont-give-wrong-impression-of-WRMSR-success.patch
- Upstream patches from Jan (bsc#1027519)
5a79d7ed-libxc-packed-initrd-dont-fail-domain-creation.patch
5a7b1bdd-x86-reduce-Meltdown-band-aid-IPI-overhead.patch
5a843807-x86-spec_ctrl-fix-bugs-in-SPEC_CTRL_ENTRY_FROM_INTR_IST.patch
5a856a2b-x86-emul-fix-64bit-decoding-of-segment-overrides.patch
5a856a2b-x86-use-32bit-xors-for-clearing-GPRs.patch
5a8be788-x86-nmi-start-NMI-watchdog-on-CPU0-after-SMP.patch
5a95373b-x86-PV-avoid-leaking-other-guests-MSR_TSC_AUX.patch
5a95571f-memory-dont-implicitly-unpin-in-decrease-res.patch (Replaces xsa252.patch)
5a95576c-gnttab-ARM-dont-corrupt-shared-GFN-array.patch (Replaces xsa255-1.patch)
5a955800-gnttab-dont-free-status-pages-on-ver-change.patch (Replaces xsa255-2.patch)
5a955854-x86-disallow-HVM-creation-without-LAPIC-emul.patch (Replaces xsa256.patch)
- Drop
xsa252.patch
xsa255-1.patch
xsa255-2.patch
xsa256.patch�- bsc#1080635 - VUL-0: CVE-2018-7540: xen: DoS via non-preemptable
L3/L4 pagetable freeing (XSA-252)
xsa252.patch
- bsc#1080662 - VUL-0: CVE-2018-7541: xen: grant table v2 -> v1
transition may crash Xen (XSA-255)
xsa255-1.patch
xsa255-2.patch
- bsc#1080634 - VUL-0: CVE-2018-7542: xen: x86 PVH guest without
LAPIC may DoS the host (XSA-256)
xsa256.patch�- Remove stale systemd presets code for 13.2 and older�- fate#324965 - add script, udev rule and systemd service to watch
for vcpu online/offline events in a HVM domU
They are triggered via xl vcpu-set domU N�- Replace hardcoded xen with Name tag when refering to subpkgs�- Make sure tools and tools-domU require libs from the very same build�- tools-domU: Add support for qemu guest agent. New files
80-xen-channel-setup.rules and xen-channel-setup.sh configure a
xen-pv-channel for use by the guest agent
FATE#324963�- Remove outdated /etc/xen/README*�- bsc#1073961 - VUL-0: CVE-2018-5244: xen: x86: memory leak with
MSR emulation (XSA-253)
5a4e2bca-x86-free-msr_vcpu_policy-during-destruction.patch
- bsc#1074562 - VUL-0: CVE-2017-5753,CVE-2017-5715,CVE-2017-5754
xen: Information leak via side effects of speculative execution
(XSA-254). Includes Spectre v2 mitigation.
5a4caa5e-x86-IRQ-conditionally-preserve-access-perm.patch
5a4caa8c-x86-E820-don-t-overrun-array.patch
5a4e2c2c-x86-upcall-inject-spurious-event-after-setting-vector.patch
5a4fd893-1-x86-break-out-alternative-asm-into-separate-header.patch
5a4fd893-2-x86-introduce-ALTERNATIVE_2-macros.patch
5a4fd893-3-x86-hvm-rename-update_guest_vendor-to-cpuid_policy_changed.patch
5a4fd893-4-x86-introduce-cpuid_policy_updated.patch
5a4fd893-5-x86-entry-remove-partial-cpu_user_regs.patch
5a4fd894-1-x86-rearrange-RESTORE_ALL-to-restore-in-stack-order.patch
5a4fd894-2-x86-hvm-use-SAVE_ALL-after-VMExit.patch
5a4fd894-3-x86-erase-guest-GPRs-on-entry-to-Xen.patch
5a4fd894-4-clarifications-to-wait-infrastructure.patch
5a534c78-x86-dont-use-incorrect-CPUID-values-for-topology.patch
5a5cb24c-x86-mm-always-set-_PAGE_ACCESSED-on-L4-updates.patch
5a5e2cff-x86-Meltdown-band-aid.patch
5a5e2d73-x86-Meltdown-band-aid-conditional.patch
5a5e3a4e-1-x86-support-compiling-with-indirect-branch-thunks.patch
5a5e3a4e-2-x86-support-indirect-thunks-from-asm.patch
5a5e3a4e-3-x86-report-speculative-mitigation-details.patch
5a5e3a4e-4-x86-AMD-set-lfence-as-Dispatch-Serialising.patch
5a5e3a4e-5-x86-introduce-alternative-indirect-thunks.patch
5a5e3a4e-6-x86-definitions-for-Indirect-Branch-Controls.patch
5a5e3a4e-7-x86-cmdline-opt-to-disable-IBRS-IBPB-STIBP.patch
5a5e459c-1-x86-SVM-offer-CPUID-faulting-to-AMD-HVM-guests.patch
5a5e459c-2-x86-report-domain-id-on-CPUID.patch
5a68bc16-x86-acpi-process-softirqs-logging-Cx.patch
5a69c0b9-x86-fix-GET_STACK_END.patch
5a6b36cd-1-x86-cpuid-handling-of-IBRS-IBPB-STIBP-and-IBRS-for-guests.patch
5a6b36cd-2-x86-msr-emulation-of-SPEC_CTRL-PRED_CMD.patch
5a6b36cd-3-x86-migrate-MSR_SPEC_CTRL.patch
5a6b36cd-4-x86-hvm-permit-direct-access-to-SPEC_CTRL-PRED_CMD.patch
5a6b36cd-5-x86-use-SPEC_CTRL-on-entry.patch
5a6b36cd-6-x86-clobber-RSB-RAS-on-entry.patch
5a6b36cd-7-x86-no-alternatives-in-NMI-MC-paths.patch
5a6b36cd-8-x86-boot-calculate-best-BTI-mitigation.patch
5a6b36cd-9-x86-issue-speculation-barrier.patch
5a6b36cd-A-x86-offer-Indirect-Branch-Controls-to-guests.patch
5a6b36cd-B-x86-clear-SPEC_CTRL-while-idle.patch�- Fix python3 deprecated atoi call (bsc#1067224)
pygrub-python3-conversion.patch
- Drop xenmon-python3-conversion.patch�- bsc#1067317 - pass cache=writeback|unsafe|directsync to qemu,
depending on the libxl disk settings
libxl.add-option-to-disable-disk-cache-flushes-in-qdisk.patch�- Remove libxl.LIBXL_DESTROY_TIMEOUT.debug.patch�- bsc#1067224 - xen-tools have hard dependency on Python 2
build-python3-conversion.patch
bin-python3-conversion.patch�- bsc#1070165 - xen crashes after aborted localhost migration
5a2ffc1f-x86-mm-drop-bogus-paging-mode-assertion.patch
- bsc#1035442 - L3: libxl: error: libxl.c:1676:devices_destroy_cb:
libxl__devices_destroy failed
5a33a12f-domctl-improve-locking-during-domain-destruction.patch
- Upstream patches from Jan (bsc#1027519)
5a21a77e-x86-pv-construct-d0v0s-GDT-properly.patch
5a2fda0d-x86-mb2-avoid-Xen-when-looking-for-module-crashkernel-pos.patch
5a313972-x86-microcode-add-support-for-AMD-Fam17.patch
5a32bd79-x86-vmx-dont-use-hvm_inject_hw_exception-in-.patch�- Update to Xen 4.10.0 FCS (fate#321394, fate#322686)
xen-4.10.0-testing-src.tar.bz2�- Rebuild initrd if xen-tools-domU is updated�- Update to Xen 4.10.0-rc8 (fate#321394, fate#322686)
xen-4.10.0-testing-src.tar.bz2�- Increase the value of LIBXL_DESTROY_TIMEOUT from 10 to 100 seconds
If many domUs shutdown in parallel the backends can not keep up
Add some debug output to track how long backend shutdown takes (bsc#1035442)
libxl.LIBXL_DESTROY_TIMEOUT.patch
libxl.LIBXL_DESTROY_TIMEOUT.debug.patch�- Adjust xenstore-run-in-studomain.patch to change the defaults
in the code instead of changing the sysconfig template, to also
cover the upgrade case�- Update to Xen 4.10.0-rc6 (fate#321394, fate#322686)
xen-4.10.0-testing-src.tar.bz2�- Since xen switched to Kconfig, building a debug hypervisor
was done by default. Adjust make logic to build a non-debug
hypervisor by default, and continue to provide one as xen-dbg.gz�- fate#316614: set migration constraints from cmdline
fix libxl.set-migration-constraints-from-cmdline.patch for xen-4.10�- Document the suse-diskcache-disable-flush option in
xl-disk-configuration(5) (bsc#879425,bsc#1067317)�- Replace references to /var/adm/fillup-templates with new
%_fillupdir macro (boo#1069468)�- Update to Xen 4.10.0-rc5 (fate#321394, fate#322686)
xen-4.10.0-testing-src.tar.bz2
- fate#323663 - Run Xenstore in stubdomain
xenstore-run-in-studomain.patch�- bsc#1067224 - xen-tools have hard dependency on Python 2
pygrub-python3-conversion.patch
xenmon-python3-conversion.patch
migration-python3-conversion.patch
xnloader.py
xen2libvirt.py�- Remove xendriverdomain.service (bsc#1065185)
Driver domains must be configured manually with custom .service file�- Update to Xen 4.10.0-rc3 (fate#321394, fate#322686)
xen-4.10.0-testing-src.tar.bz2
- Drop 59f31268-libxc-remove-stale-error-check-for-domain-size.patch�- Adjust xen-dom0-modules.service to ignore errors (bsc#1065187)�- fate#324052 Support migration of Xen HVM domains larger than 1TB
59f31268-libxc-remove-stale-error-check-for-domain-size.patch�- Update to Xen 4.10.0-rc2 (fate#321394, fate#322686)
xen-4.10.0-testing-src.tar.bz2�- Update to Xen 4.10.0-rc1 (fate#321394, fate#322686)
xen-4.10.0-testing-src.tar.bz2
- Drop patches included in new tarball
592fd5f0-stop_machine-fill-result-only-in-case-of-error.patch
596f257e-x86-fix-hvmemul_insn_fetch.patch
5982fd99-VT-d-don-t-panic-warn-on-iommu-no-igfx.patch
598c3630-VT-d-PI-disable-when-CPU-side-PI-is-off.patch
598c3706-cpufreq-only-stop-ondemand-governor-if-started.patch
5992f1e5-x86-grant-disallow-misaligned-PTEs.patch
5992f20d-gnttab-split-maptrack-lock-to-make-it-useful-again.patch
5992f233-gnttab-correct-pin-status-fixup-for-copy.patch
59958e76-gnttab-dont-use-possibly-unbounded-tail-calls.patch
59958ebf-gnttab-fix-transitive-grant-handling.patch
59958edd-gnttab-avoid-spurious-maptrack-handle-alloc-failures.patch
599da329-arm-mm-release-grant-lock-on-xatp1-error-paths.patch
59a01223-x86-check-for-alloc-errors-in-modify_xen_mappings.patch
59a0130c-x86-efi-dont-write-relocs-in-efi_arch_relocate_image-1st-pass.patch
59a9221f-VT-d-use-correct-BDF-for-VF-to-search-VT-d-unit.patch
59ae9177-x86-emul-fix-handling-of-unimplemented-Grp7-insns.patch
59aec335-x86emul-correct-VEX-W-handling-for-VPINSRD.patch
59aec375-x86emul-correct-VEX-L-handling-for-VCVTx2SI.patch
59afcea0-x86-introduce-and-use-setup_force_cpu_cap.patch
59b2a7f2-x86-HVM-correct-repeat-count-update-linear-phys.patch
59b7d664-mm-make-sure-node-is-less-than-MAX_NUMNODES.patch
59b7d69b-grant_table-fix-GNTTABOP_cache_flush-handling.patch
59b7d6c8-xenstore-dont-unlink-connection-object-twice.patch
59b7d6d9-gnttab-also-validate-PTE-perms-upon-destroy-replace.patch
gcc7-arm.patch
gcc7-mini-os.patch�- bsc#1061084 - VUL-0: xen: page type reference leak on x86
(XSA-242)
xsa242.patch
- bsc#1061086 - VUL-0: xen: x86: Incorrect handling of self-linear
shadow mappings with translated guests (XSA-243)
xsa243.patch
- bsc#1061087 - VUL-0: xen: x86: Incorrect handling of IST settings
during CPU hotplug (XSA-244)
xsa244.patch�- bsc#1061077 - VUL-0: xen: DMOP map/unmap missing argument checks
(XSA-238)
xsa238.patch
- bsc#1061080 - VUL-0: xen: hypervisor stack leak in x86 I/O
intercept code (XSA-239)
xsa239.patch
- bsc#1061081 - VUL-0: xen: Unlimited recursion in linear pagetable
de-typing (XSA-240)
xsa240-1.patch
xsa240-2.patch
- bsc#1061082 - VUL-0: xen: Stale TLB entry due to page type
release race (XSA-241)
xsa241.patch�- bsc#1061075 - VUL-0: xen: pin count / page reference race in
grant table code (XSA-236)
xsa236.patch
- bsc#1061076 - VUL-0: xen: multiple MSI mapping issues on x86
(XSA-237)
xsa237-1.patch
xsa237-2.patch
xsa237-3.patch
xsa237-4.patch
xsa237-5.patch�- bsc#1056278 - VUL-0: xen: Missing NUMA node parameter
verification (XSA-231)
59b7d664-mm-make-sure-node-is-less-than-MAX_NUMNODES.patch
- bsc#1056280 - VUL-0: xen: Missing check for grant table (XSA-232)
59b7d69b-grant_table-fix-GNTTABOP_cache_flush-handling.patch
- bsc#1056281 - VUL-0: xen: cxenstored: Race in domain cleanup
(XSA-233)
59b7d6c8-xenstore-dont-unlink-connection-object-twice.patch
- bsc#1056282 - VUL-0: xen: insufficient grant unmapping checks for
x86 PV guests (XSA-234)
59b7d6d9-gnttab-also-validate-PTE-perms-upon-destroy-replace.patch
- bsc#1055321 - VUL-0: xen: add-to-physmap error paths fail to
release lock on ARM (XSA-235)
599da329-arm-mm-release-grant-lock-on-xatp1-error-paths.patch
- Upstream patches from Jan (bsc#1027519)
59a01223-x86-check-for-alloc-errors-in-modify_xen_mappings.patch
59a0130c-x86-efi-dont-write-relocs-in-efi_arch_relocate_image-1st-pass.patch
59a9221f-VT-d-use-correct-BDF-for-VF-to-search-VT-d-unit.patch
59ae9177-x86-emul-fix-handling-of-unimplemented-Grp7-insns.patch
59aec335-x86emul-correct-VEX-W-handling-for-VPINSRD.patch
59aec375-x86emul-correct-VEX-L-handling-for-VCVTx2SI.patch
59afcea0-x86-introduce-and-use-setup_force_cpu_cap.patch
59b2a7f2-x86-HVM-correct-repeat-count-update-linear-phys.patch
- Dropped gcc7-xen.patch�- bsc#1057358 - Cannot Boot into SLES12.3 with Xen hypervisor when
Secure Boot is Enabled
xen.spec�- bsc#1055695 - XEN: 11SP4 and 12SP3 HVM guests can not be restored
update from v6 to v9 to cover more cases for ballooned domUs
libxc.sr.superpage.patch�- bsc#1026236 - remove suse_vtsc_tolerance= cmdline option for Xen
drop the patch because it is not upstream acceptable
remove xen.suse_vtsc_tolerance.patch�- bsc#1055695 - XEN: 11SP4 and 12SP3 HVM guests can not be restored
after the save using xl stack
libxc.sr.superpage.patch�- Unignore gcc-PIE
the toolstack disables PIE for firmware builds as needed�- Upstream patches from Jan (bsc#1027519)
592fd5f0-stop_machine-fill-result-only-in-case-of-error.patch
596f257e-x86-fix-hvmemul_insn_fetch.patch
5982fd99-VT-d-don-t-panic-warn-on-iommu-no-igfx.patch
598c3630-VT-d-PI-disable-when-CPU-side-PI-is-off.patch
598c3706-cpufreq-only-stop-ondemand-governor-if-started.patch
5992f1e5-x86-grant-disallow-misaligned-PTEs.patch (Replaces xsa227.patch)
5992f20d-gnttab-split-maptrack-lock-to-make-it-useful-again.patch (Replaces xsa228.patch)
5992f233-gnttab-correct-pin-status-fixup-for-copy.patch (Replaces xsa230.patch)
59958e76-gnttab-dont-use-possibly-unbounded-tail-calls.patch (Replaces xsa226-1.patch)
59958ebf-gnttab-fix-transitive-grant-handling.patch (Replaces xsa226-2.patch)
59958edd-gnttab-avoid-spurious-maptrack-handle-alloc-failures.patch�- bsc#1044974 - xen-tools require python-pam
xen.spec�- Clean up spec file errors and a few warnings. (bsc#1027519)
- Removed conditional 'with_systemd' and some old deprecated
'sles_version' checks.
xen.spec�- Remove use of brctl utiltiy from supportconfig plugin
FATE#323639�- Use upstream variant of mini-os __udivmoddi4 change
gcc7-mini-os.patch�- fate#323639 Move bridge-utils to legacy
replace-obsolete-network-configuration-commands-in-s.patch�- bsc#1052686 - VUL-0: xen: grant_table: possibly premature
clearing of GTF_writing / GTF_reading (XSA-230)
xsa230.patch�- bsc#1035231 - migration of HVM domU does not use superpages
on destination dom0
libxc.sr.superpage.patch�- bsc#1051787 - VUL-0: CVE-2017-12135: xen: possibly unbounded
recursion in grant table code (XSA-226)
xsa226-1.patch
xsa226-2.patch
- bsc#1051788 - VUL-0: CVE-2017-12137: xen: x86: PV privilege
escalation via map_grant_ref (XSA-227)
xsa227.patch
- bsc#1051789 - VUL-0: CVE-2017-12136: xen: grant_table: Race
conditions with maptrack free list handling (XSA-228)
xsa228.patch�- Add a supportconfig plugin
xen-supportconfig
FATE#323661�- bsc#1026236 - add suse_vtsc_tolerance= cmdline option for Xen
To avoid emulation of TSC access from a domU after live migration
add a global tolerance for the measured host kHz
xen.suse_vtsc_tolerance.patch�- fate#323662 Drop qemu-dm from xen-tools package
The following tarball and patches have been removed
qemu-xen-traditional-dir-remote.tar.bz2
VNC-Support-for-ExtendedKeyEvent-client-message.patch
0001-net-move-the-tap-buffer-into-TAPState.patch
0002-net-increase-tap-buffer-size.patch
0003-e1000-fix-access-4-bytes-beyond-buffer-end.patch
0004-e1000-secrc-support.patch
0005-e1000-multi-buffer-packet-support.patch
0006-e1000-clear-EOP-for-multi-buffer-descriptors.patch
0007-e1000-verify-we-have-buffers-upfront.patch
0008-e1000-check-buffer-availability.patch
CVE-2013-4533-qemut-pxa2xx-buffer-overrun-on-incoming-migration.patch
CVE-2013-4534-qemut-openpic-buffer-overrun-on-incoming-migration.patch
CVE-2013-4537-qemut-ssi-sd-fix-buffer-overrun-on-invalid-state-load.patch
CVE-2013-4538-qemut-ssd0323-fix-buffer-overun-on-invalid-state.patch
CVE-2013-4539-qemut-tsc210x-fix-buffer-overrun-on-invalid-state-load.patch
CVE-2014-0222-qemut-qcow1-validate-l2-table-size.patch
CVE-2014-3640-qemut-slirp-NULL-pointer-deref-in-sosendto.patch
CVE-2015-4037-qemut-smb-config-dir-name.patch
CVE-2015-5154-qemut-fix-START-STOP-UNIT-command-completion.patch
CVE-2015-5278-qemut-Infinite-loop-in-ne2000_receive-function.patch
CVE-2015-6815-qemut-e1000-fix-infinite-loop.patch
CVE-2015-7512-qemut-net-pcnet-buffer-overflow-in-non-loopback-mode.patch
CVE-2015-8345-qemut-eepro100-infinite-loop-fix.patch
CVE-2015-8504-qemut-vnc-avoid-floating-point-exception.patch
CVE-2016-1714-qemut-fw_cfg-add-check-to-validate-current-entry-value.patch
CVE-2016-1981-qemut-e1000-eliminate-infinite-loops-on-out-of-bounds-transfer.patch
CVE-2016-2391-qemut-usb-null-pointer-dereference-in-ohci-module.patch
CVE-2016-2841-qemut-ne2000-infinite-loop-in-ne2000_receive.patch
CVE-2016-4439-qemut-scsi-esp-OOB-write-while-writing-to-cmdbuf-in-esp_reg_write.patch
CVE-2016-4441-qemut-scsi-esp-OOB-write-while-writing-to-cmdbuf-in-get_cmd.patch
CVE-2016-5238-qemut-scsi-esp-OOB-write-when-using-non-DMA-mode-in-get_cmd.patch
CVE-2016-5338-qemut-scsi-esp-OOB-rw-access-while-processing-ESP_FIFO.patch
CVE-2016-6351-qemut-scsi-esp-make-cmdbuf-big-enough-for-maximum-CDB-size.patch
CVE-2016-7908-qemut-net-Infinite-loop-in-mcf_fec_do_tx.patch
CVE-2016-7909-qemut-net-pcnet-infinite-loop-in-pcnet_rdra_addr.patch
CVE-2016-8667-qemut-dma-rc4030-divide-by-zero-error-in-set_next_tick.patch
CVE-2016-8669-qemut-char-divide-by-zero-error-in-serial_update_parameters.patch
CVE-2016-8910-qemut-net-rtl8139-infinite-loop-while-transmit-in-Cplus-mode.patch
CVE-2016-9921-qemut-display-cirrus_vga-divide-by-zero-in-cirrus_do_copy.patch
CVE-2017-6505-qemut-usb-an-infinite-loop-issue-in-ohci_service_ed_list.patch
CVE-2017-8309-qemut-audio-host-memory-leakage-via-capture-buffer.patch
CVE-2017-9330-qemut-usb-ohci-infinite-loop-due-to-incorrect-return-value.patch
blktap.patch
cdrom-removable.patch
xen-qemu-iscsi-fix.patch
qemu-security-etch1.patch
xen-disable-qemu-monitor.patch
xen-hvm-default-bridge.patch
qemu-ifup-set-mtu.patch
ioemu-vnc-resize.patch
capslock_enable.patch
altgr_2.patch
log-guest-console.patch
bdrv_open2_fix_flags.patch
bdrv_open2_flags_2.patch
ioemu-7615-qcow2-fix-alloc_cluster_link_l2.patch
qemu-dm-segfault.patch
bdrv_default_rwflag.patch
kernel-boot-hvm.patch
ioemu-watchdog-support.patch
ioemu-watchdog-linkage.patch
ioemu-watchdog-ib700-timer.patch
ioemu-hvm-pv-support.patch
pvdrv_emulation_control.patch
ioemu-disable-scsi.patch
ioemu-disable-emulated-ide-if-pv.patch
xenpaging.qemu.flush-cache.patch
ioemu-devicemodel-include.patch
- Cleanup spec file and remove unused KMP patches
kmp_filelist
supported_module.patch
xen_pvonhvm.xen_emul_unplug.patch�- bsc#1002573 - Optimize LVM functions in block-dmmd
block-dmmd�- Record initial Xen dmesg in /var/log/xen/xen-boot.log for
supportconfig. Keep previous log in /var/log/xen/xen-boot.prev.log�- Remove storytelling from description in xen.rpm�- Update to Xen 4.9.0 FCS (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2�- Update block-dmmd script (bsc#1002573)
block-dmmd�- Update to Xen 4.9.0-rc8+ (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2
gcc7-arm.patch
- Drop gcc7-error-xenpmd.patch�- Update to Xen 4.9.0-rc8 (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2�- bsc#1042160 - VUL-1: CVE-2017-9330: xen: usb: ohci: infinite loop
due to incorrect return value
CVE-2017-9330-qemut-usb-ohci-infinite-loop-due-to-incorrect-return-value.patch�- bsc#1037243 - VUL-1: CVE-2017-8309: xen: audio: host memory
leakage via capture buffer
CVE-2017-8309-qemut-audio-host-memory-leakage-via-capture-buffer.patch�- Update to Xen 4.9.0-rc7 (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2�- Update to Xen 4.9.0-rc6 (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2�- bsc#1031343 - xen fails to build with GCC 7
gcc7-mini-os.patch
gcc7-xen.patch�- bsc#1031343 - xen fails to build with GCC 7
gcc7-error-xenpmd.patch�- Update to Xen 4.9.0-rc5 (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2
- Drop xen-tools-pkgconfig-xenlight.patch�- bsc#1037779 - xen breaks kexec-tools build
xen-tools-pkgconfig-xenlight.patch�- Update to Xen 4.9.0-rc4 (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2�- bsc#1036146 - sles12sp2 xen VM dumps core to wrong path
xen.spec�- Update to Xen 4.9.0-rc3 (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2
aarch64-maybe-uninitialized.patch�- Update to Xen 4.9.0-rc2 (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2�- Update to Xen 4.9.0-rc1 (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2
ioemu-devicemodel-include.patch
- Dropped patches contained in new tarball
xen-4.8.0-testing-src.tar.bz2
0001-xenstore-let-write_node-and-some-callers-return-errn.patch
0002-xenstore-undo-function-rename.patch
0003-xenstore-rework-of-transaction-handling.patch
584806ce-x86emul-correct-PUSHF-POPF.patch
584fc649-fix-determining-when-domain-creation-is-complete.patch
58510c06-x86emul-CMPXCHGnB-ignore-prefixes.patch
58510cac-x86emul-MOVNTI-no-REP-prefixes.patch
58526ccc-x86emul-64bit-ignore-most-segment-bases-in-align-check.patch
5853ed37-VT-d-correct-dma_msi_set_affinity.patch
5853ee07-x86emul-CMPXCHG16B-aligned-operand.patch
58580060-x86-emul-correct-SYSCALL-eflags-handling.patch
585aa3c5-x86-force-EFLAGS-IF-on-upon-exit-to-PV.patch
585aa407-x86-HVM-NULL-check-before-using-VMFUNC-hook.patch
585bd5fe-x86-emul-correct-VMFUNC-return-value-handling.patch
586ba81c-x86-cpu-dont-update-this_cpu-for-guest-get_cpu_vendor.patch
587d04d6-x86-xstate-fix-array-overrun-with-LWP.patch
587de4a9-x86emul-VEX-B-ignored-in-compat-mode.patch
5882129d-x86emul-LOCK-check-adjustments.patch
58821300-x86-segment-attribute-handling.patch
58873c1f-x86emul-correct-FPU-stub-asm-constraints.patch
58873c80-x86-hvm-do-not-set-msr_tsc_adjust-on-.patch
5887888f-credit2-fix-shutdown-suspend-with-cpupools.patch
5887888f-credit2-never-consider-CPUs-outside-of-pool.patch
5887888f-credit2-use-the-correct-scratch-cpumask.patch
5888b1b3-x86-emulate-dont-assume-addr_size-32-implies-protmode.patch
5899cbd9-EPT-allow-wrcomb-MMIO-mappings-again.patch
589b3272-libxl-dont-segfault-when-creating-domain-with-invalid-pvusb-device.patch
58a44771-IOMMU-always-call-teardown-callback.patch
58a48ccc-x86-fix-p2m_flush_table-for-non-nested.patch
58a59f4b-libxl-correct-xenstore-entry-for-empty-cdrom.patch
58a70d94-VMX-fix-VMCS-race-on-cswitch-paths.patch
58ac1f3f-VMX-dont-leak-host-syscall-MSRs.patch
58b5a2de-x86-correct-Xens-idea-of-its-memory-layout.patch
58b6fd42-credit2-always-mark-a-tickled-pCPU-as-tickled.patch
58b6fd42-credit2-dont-miss-accounting-during-credit-reset.patch
58cbf682-x86-EFI-avoid-overrunning-mb_modules.patch
58cf9200-x86-EFI-avoid-IOMMU-faults-on-tail-gap.patch
58cf9260-x86-EFI-avoid-Xen-when-looking-for-mod-kexec-pos.patch
58cf9277-x86-time-dont-use-vTSC-if-host-guest-freqs-match.patch
58d25ea2-xenstore-add-missing-checks-for-allocation-failure.patch
58d91365-sched-dont-call-wrong-hook-via-VCPU2OP.patch
CVE-2017-2615-qemut-display-cirrus-oob-access-while-doing-bitblt-copy-backward-mode.patch
CVE-2017-2620-xsa209-qemut-cirrus_bitblt_cputovideo-does-not-check-if-memory-region-safe.patch
glibc-2.25-compatibility-fix.patch
xs-09-add_change_node-params.patch
xs-10-call-add_change_node.patch
xs-11-tdb-record-header.patch
xs-12-node-gen-count.patch
xs-13-read-directory-part-support.patch
xs-14-command-array.patch
xs-15-command-return-val.patch
xs-16-function-static.patch
xs-17-arg-parsing.patch
xs-18-default-buffer.patch
xs-19-handle-alloc-failures.patch
xs-20-tdb-version.patch
xs-21-empty-tdb-database.patch
xs-22-reopen_log-fix.patch
xs-23-XS_DEBUG-rename.patch
xs-24-xenstored_control.patch
xs-25-control-enhance.patch
xs-26-log-control.patch
xs-27-memory-report.patch
xs-28-remove-talloc-report.patch
xs-29-define-off_t.patch
xsa206-0001-xenstored-apply-a-write-transaction-rate-limit.patch
xsa206-0002-xenstored-Log-when-the-write-transaction-rate-limit.patch�- bsc#1022703 - Xen HVM guest with OVMF hangs with unattached CDRom
58a59f4b-libxl-correct-xenstore-entry-for-empty-cdrom.patch�- bsc#1015348 - L3: libvirtd does not start during boot
suse-xendomains-service.patch�- bsc#1014136 - Partner-L3: kdump can't dump a kernel on SLES12-SP2
with Xen hypervisor.
58cf9260-x86-EFI-avoid-Xen-when-looking-for-mod-kexec-pos.patch
- bsc#1026236 - L3: Paravirtualized vs. fully virtualized migration
- latter one much faster
58cf9277-x86-time-dont-use-vTSC-if-host-guest-freqs-match.patch
- Upstream patch from Jan
58cbf682-x86-EFI-avoid-overrunning-mb_modules.patch
58cf9200-x86-EFI-avoid-IOMMU-faults-on-tail-gap.patch
58d91365-sched-dont-call-wrong-hook-via-VCPU2OP.patch�- bsc#1022555 - L3: Timeout in "execution of /etc/xen/scripts/block
add"
58d25ea2-xenstore-add-missing-checks-for-allocation-failure.patch
0001-xenstore-let-write_node-and-some-callers-return-errn.patch
0002-xenstore-undo-function-rename.patch
0003-xenstore-rework-of-transaction-handling.patch
- bsc#1030144 - VUL-0: xen: xenstore denial of service via repeated
update (XSA-206)
xsa206-0001-xenstored-apply-a-write-transaction-rate-limit.patch
xsa206-0002-xenstored-Log-when-the-write-transaction-rate-limit.patch
- bsc#1029827 - Forward port xenstored
xs-09-add_change_node-params.patch
xs-10-call-add_change_node.patch
xs-11-tdb-record-header.patch
xs-12-node-gen-count.patch
xs-13-read-directory-part-support.patch
xs-14-command-array.patch
xs-15-command-return-val.patch
xs-16-function-static.patch
xs-17-arg-parsing.patch
xs-18-default-buffer.patch
xs-19-handle-alloc-failures.patch
xs-20-tdb-version.patch
xs-21-empty-tdb-database.patch
xs-22-reopen_log-fix.patch
xs-23-XS_DEBUG-rename.patch
xs-24-xenstored_control.patch
xs-25-control-enhance.patch
xs-26-log-control.patch
xs-27-memory-report.patch
xs-28-remove-talloc-report.patch
xs-29-define-off_t.patch�- bsc#1029128 - fix make xen to really produce xen.efi with gcc48�- bsc#1028235 - VUL-0: CVE-2017-6505: xen: qemu: usb: an infinite
loop issue in ohci_service_ed_list
CVE-2017-6505-qemut-usb-an-infinite-loop-issue-in-ohci_service_ed_list.patch
- Upstream patches from Jan (bsc#1027519)
5887888f-credit2-fix-shutdown-suspend-with-cpupools.patch
5887888f-credit2-use-the-correct-scratch-cpumask.patch
5899cbd9-EPT-allow-wrcomb-MMIO-mappings-again.patch
589b3272-libxl-dont-segfault-when-creating-domain-with-invalid-pvusb-device.patch
58a44771-IOMMU-always-call-teardown-callback.patch
58a48ccc-x86-fix-p2m_flush_table-for-non-nested.patch
58a70d94-VMX-fix-VMCS-race-on-cswitch-paths.patch
58ac1f3f-VMX-dont-leak-host-syscall-MSRs.patch
58b5a2de-x86-correct-Xens-idea-of-its-memory-layout.patch
58b6fd42-credit2-always-mark-a-tickled-pCPU-as-tickled.patch
58b6fd42-credit2-dont-miss-accounting-during-credit-reset.patch�- bsc#1027654 - XEN fails to build against glibc 2.25
glibc-2.25-compatibility-fix.patch
libxl.pvscsi.patch�- fate#316613: Refresh and enable libxl.pvscsi.patch�- bsc#1024834 - VUL-0: CVE-2017-2620: xen: cirrus_bitblt_cputovideo
does not check if memory region is safe (XSA-209)
CVE-2017-2620-xsa209-qemut-cirrus_bitblt_cputovideo-does-not-check-if-memory-region-safe.patch�- bsc#1023948 - [pvusb][sles12sp3][openqa] Segmentation fault
happened when adding usbctrl devices via xl
589b3272-libxl-dont-segfault-when-creating-domain-with-invalid-pvusb-device.patch�- Upstream patches from Jan (bsc#1027519)
587d04d6-x86-xstate-fix-array-overrun-with-LWP.patch
587de4a9-x86emul-VEX-B-ignored-in-compat-mode.patch
5882129d-x86emul-LOCK-check-adjustments.patch
58821300-x86-segment-attribute-handling.patch
58873c1f-x86emul-correct-FPU-stub-asm-constraints.patch
58873c80-x86-hvm-do-not-set-msr_tsc_adjust-on-.patch
5887888f-credit2-use-the-correct-scratch-cpumask.patch
5887888f-credit2-never-consider-CPUs-outside-of-pool.patch
5887888f-credit2-fix-shutdown-suspend-with-cpupools.patch
5888b1b3-x86-emulate-dont-assume-addr_size-32-implies-protmode.patch�- bsc#1023004 - VUL-0: CVE-2017-2615: qemu: display: cirrus: oob
access while doing bitblt copy backward mode
CVE-2017-2615-qemut-display-cirrus-oob-access-while-doing-bitblt-copy-backward-mode.patch�- fate#322313 and fate#322150 require the acpica package ported to
aarch64 which Xen 4.8 needs to build. Temporarily disable aarch64
until these fates are complete.
xen.spec�- bsc#1021952 - Virutalization/xen: Bug xen-tools missing
/usr/bin/domu-xenstore; guests fail to launch
tmp_build.patch
xen.spec�- No systemd presets for 42.3+ and SLE12SP3+ (bsc#1012842)�- bsc#1007224 - broken symlinks in /usr/share/doc/packages/xen/misc/
xen.spec�- 585aa3c5-x86-force-EFLAGS-IF-on-upon-exit-to-PV.patch
Replaces xsa202.patch (bsc#1014298)
- 585aa407-x86-HVM-NULL-check-before-using-VMFUNC-hook.patch
Replaces xsa203.patch (bsc#1014300)
- 58580060-x86-emul-correct-SYSCALL-eflags-handling.patch
Replaces xsa204.patch (bsc#1016340)
- Upstream patches from Jan
58526ccc-x86emul-64bit-ignore-most-segment-bases-in-align-check.patch
5853ed37-VT-d-correct-dma_msi_set_affinity.patch
5853ee07-x86emul-CMPXCHG16B-aligned-operand.patch
585bd5fe-x86-emul-correct-VMFUNC-return-value-handling.patch
586ba81c-x86-cpu-dont-update-this_cpu-for-guest-get_cpu_vendor.patch�- bsc#1015169 - VUL-0: CVE-2016-9921, CVE-2016-9922: xen: qemu:
display: cirrus_vga: a divide by zero in cirrus_do_copy
CVE-2016-9921-qemut-display-cirrus_vga-divide-by-zero-in-cirrus_do_copy.patch�- bsc#1016340 - VUL-0: CVE-2016-10013: xen: x86: Mishandling of
SYSCALL singlestep during emulation (XSA-204)
xsa204.patch�- bsc#1012651 - VUL-0: CVE-2016-9932: xen: x86 CMPXCHG8B emulation
fails to ignore operand size override (XSA-200)
58510c06-x86emul-CMPXCHGnB-ignore-prefixes.patch�- bsc#1014298 - VUL-0: CVE-2016-10024: xen: x86 PV guests may be
able to mask interrupts (XSA-202)
xsa202.patch
- bsc#1014300 - VUL-0: CVE-2016-10025: xen: x86: missing NULL
pointer check in VMFUNC emulation (XSA-203)
xsa203.patch
- Upstream patches from Jan
584806ce-x86emul-correct-PUSHF-POPF.patch
584fc649-fix-determining-when-domain-creation-is-complete.patch
58510c06-x86emul-CMPXCHGnB-ignore-prefixes.patch
58510cac-x86emul-MOVNTI-no-REP-prefixes.patch�- Update to Xen 4.8 FCS
xen-4.8.0-testing-src.tar.bz2
- Dropped
xen-4.7.1-testing-src.tar.bz2
0001-libxc-Rework-extra-module-initialisation.patch
0002-libxc-Prepare-a-start-info-structure-for-hvmloader.patch
0003-configure-define-SEABIOS_PATH-and-OVMF_PATH.patch
0004-firmware-makefile-install-BIOS-blob.patch
0005-libxl-Load-guest-BIOS-from-file.patch
0006-xen-Move-the-hvm_start_info-C-representation-from-li.patch
0007-hvmloader-Grab-the-hvm_start_info-pointer.patch
0008-hvmloader-Locate-the-BIOS-blob.patch
0009-hvmloader-Check-modules-whereabouts-in-perform_tests.patch
0010-hvmloader-Load-SeaBIOS-from-hvm_start_info-modules.patch
0011-hvmloader-Load-OVMF-from-modules.patch
0012-hvmloader-Specific-bios_load-function-required.patch
0013-hvmloader-Always-build-in-SeaBIOS-and-OVMF-loader.patch
0014-configure-do-not-depend-on-SEABIOS_PATH-or-OVMF_PATH.patch
57580bbd-kexec-allow-relaxed-placement-via-cmdline.patch
576001df-x86-time-use-local-stamp-in-TSC-calibration-fast-path.patch
5769106e-x86-generate-assembler-equates-for-synthesized.patch
57a1e603-x86-time-adjust-local-system-time-initialization.patch
57a1e64c-x86-time-introduce-and-use-rdtsc_ordered.patch
57a2f6ac-x86-time-calibrate-TSC-against-platform-timer.patch
57a30261-x86-support-newer-Intel-CPU-models.patch
5810a9cc-x86-emul-Correct-decoding-of-SReg3-operands.patch
581b2c3b-x86-emul-reject-LGDT-LIDT-with-non-canonical-addresses.patch
581b647a-x86emul-L-S-G-I-DT-ignore-opsz-overrides-in-64-bit-mode.patch
58249392-x86-svm-dont-clobber-eax-edx-if-RDMSR-intercept-fails.patch
582c35d6-x86-vmx-correct-long-mode-check-in-vmx_cpuid_intercept.patch
582c35ee-x86-traps-dont-call-hvm_hypervisor_cpuid_leaf-for-PV.patch
58343dc2-x86-hvm-Fix-the-handling-of-non-present-segments.patch
58343df8-x86-HVM-dont-load-LDTR-with-VM86-mode-attrs-during-task-switch.patch
58343e24-x86-PV-writes-of-fs-and-gs-base-MSRs-require-canonical-addresses.patch
58343e9e-libelf-fix-stack-memory-leak-when-loading-32-bit-symbol-tables.patch
58343ec2-x86emul-fix-huge-bit-offset-handling.patch
58343f29-x86-emul-correct-the-IDT-entry-calculation-in-inject_swint.patch
58343f44-x86-svm-fix-injection-of-software-interrupts.patch
58343f79-pygrub-Properly-quote-results-when-returning-them-to-the-caller.patch
CVE-2016-9381-xsa197-qemut.patch
CVE-2016-9637-xsa199-qemut.patch�- bsc#1011652 - VUL-0: xen: qemu ioport array overflow
CVE-2016-9637-xsa199-qemut.patch�- bsc#1009100 - VUL-0: CVE-2016-9386: XSA-191: xen: x86 null
segments not always treated as unusable
58343dc2-x86-hvm-Fix-the-handling-of-non-present-segments.patch
- bsc#1009103 - VUL-0: CVE-2016-9382: XSA-192: xen: x86 task switch
to VM86 mode mis-handled
58343df8-x86-HVM-dont-load-LDTR-with-VM86-mode-attrs-during-task-switch.patch
- bsc#1009104 - VUL-0: CVE-2016-9385: XSA-193: xen: x86 segment base
write emulation lacking canonical address checks
58343e24-x86-PV-writes-of-fs-and-gs-base-MSRs-require-canonical-addresses.patch
- bsc#1009105 - VUL-0: CVE-2016-9384: XSA-194: xen: guest 32-bit
ELF symbol table load leaking host data
58343e9e-libelf-fix-stack-memory-leak-when-loading-32-bit-symbol-tables.patch
- bsc#1009107 - VUL-0: CVE-2016-9383: XSA-195: xen: x86 64-bit bit
test instruction emulation broken
58343ec2-x86emul-fix-huge-bit-offset-handling.patch
- bsc#1009108 - VUL-0: CVE-2016-9377,CVE-2016-9378: XSA-196: xen:
x86 software interrupt injection mis-handled
58343f29-x86-emul-correct-the-IDT-entry-calculation-in-inject_swint.patch
58343f44-x86-svm-fix-injection-of-software-interrupts.patch
- bsc#1009109 - VUL-0: CVE-2016-9381: XSA-197: xen: qemu incautious
about shared ring processing
CVE-2016-9381-xsa197-qemut.patch
- bsc#1009111 - VUL-0: CVE-2016-9379,CVE-2016-9380: XSA-198: xen:
delimiter injection vulnerabilities in pygrub
58343f79-pygrub-Properly-quote-results-when-returning-them-to-the-caller.patch
- Upstream patches from Jan
581b2c3b-x86-emul-reject-LGDT-LIDT-with-non-canonical-addresses.patch
581b647a-x86emul-L-S-G-I-DT-ignore-opsz-overrides-in-64-bit-mode.patch
58249392-x86-svm-dont-clobber-eax-edx-if-RDMSR-intercept-fails.patch
582c35d6-x86-vmx-correct-long-mode-check-in-vmx_cpuid_intercept.patch
582c35ee-x86-traps-dont-call-hvm_hypervisor_cpuid_leaf-for-PV.patch�- Update to Xen Version 4.7.1
xen-4.7.1-testing-src.tar.bz2
- Dropped patches contained in new tarball
xen-4.7.0-testing-src.tar.bz2
575e9ca0-nested-vmx-Validate-host-VMX-MSRs-before-accessing-them.patch
57640448-xen-sched-use-default-scheduler-upon-an-invalid-sched.patch
57973099-have-schedulers-revise-initial-placement.patch
579730e6-remove-buggy-initial-placement-algorithm.patch
57976073-x86-remove-unsafe-bits-from-mod_lN_entry-fastpath.patch
57976078-x86-avoid-SMAP-violation-in-compat_create_bounce_frame.patch
57ac6316-don-t-restrict-DMA-heap-to-node-0.patch
57b71fc5-x86-EFI-don-t-apply-relocations-to-l-2-3-_bootmap.patch
57b7447b-dont-permit-guest-to-populate-PoD-pages-for-itself.patch
57c4412b-x86-HVM-add-guarding-logic-for-VMX-specific-code.patch
57c57f73-libxc-correct-max_pfn-calculation-for-saving-domain.patch
57c805bf-x86-levelling-restrict-non-architectural-OSXSAVE-handling.patch
57c805c1-x86-levelling-pass-vcpu-to-ctxt_switch_levelling.patch
57c805c3-x86-levelling-provide-architectural-OSXSAVE-handling.patch
57c82be2-x86-32on64-adjust-call-gate-emulation.patch
57c93e52-fix-error-in-libxl_device_usbdev_list.patch
57c96df3-credit1-fix-a-race-when-picking-initial-pCPU.patch
57c96e2c-x86-correct-PT_NOTE-file-position.patch
57cfed43-VMX-correct-feature-checks-for-MPX-and-XSAVES.patch
57d1563d-x86-32on64-don-t-allow-recursive-page-tables-from-L3.patch
57d15679-x86-emulate-Correct-boundary-interactions-of-emulated-insns.patch
57d1569a-x86-shadow-Avoid-overflowing-sh_ctxt-seg_reg.patch
57d18642-hvm-fep-Allow-test-insns-crossing-1-0-boundary.patch
57d18642-x86-segment-Bounds-check-accesses-to-emulation-ctxt-seg_reg.patch
57d7ca5f-x86-domctl-fix-TOCTOU-race-in-XEN_DOMCTL_getvcpuextstate.patch
57d7ca64-x86-domctl-fix-migration-of-guests-not-using-xsave.patch
57da8883-credit1-fix-mask-to-be-used-for-tickling.patch
57da8883-credit2-properly-schedule-migration-of-running-vcpu.patch
57dfb1c5-x86-Intel-hide-CPUID-faulting-capability-from-guests.patch
57e93e1d-x86emul-correct-loading-of-ss.patch
57e93e4a-x86emul-don-t-allow-null-selector-for-LTR.patch
57e93e89-x86-AMD-apply-erratum-665-workaround.patch
57ee6cbc-credit1-return-time-remaining-to-limit-as-next-timeslice.patch
57f3a8ee-x86emul-honor-guest-CR0-TS-and-CR0-EM.patch
57fb6a91-x86-defer-not-present-segment-checks.patch
5800c51d-x86-hvm-Clobber-cs-L-when-LME-becomes-set.patch
5800caec-x86emul-fix-pushing-of-selector-registers.patch
5800cb06-x86-Viridian-don-t-depend-on-undefined-register-state.patch
580e29f9-x86-MISALIGNSSE-feature-depends-on-SSE.patch
57dfb2ff-x86-Intel-Broadwell-no-PKG_C8-10_RESIDENCY-MSRs.patch�- bsc#1004981 - Xen RPM doesn't contain debug hypervisor for EFI
systems
xen.spec�- bsc#1000106 - VUL-0: CVE-2016-7777: xen: CR0.TS and CR0.EM not
always honored for x86 HVM guests (XSA-190)
57f3a8ee-x86emul-honor-guest-CR0-TS-and-CR0-EM.patch
- bsc#996191 - [XEN][acpi]residency -n 88 -c will cause xen panic
on broadwell-ep
57dfb2ff-x86-Intel-Broadwell-no-PKG_C8-10_RESIDENCY-MSRs.patch
- Upstream patches from Jan
57d7ca5f-x86-domctl-fix-TOCTOU-race-in-XEN_DOMCTL_getvcpuextstate.patch
57d7ca64-x86-domctl-fix-migration-of-guests-not-using-xsave.patch
57da8883-credit1-fix-mask-to-be-used-for-tickling.patch
57da8883-credit2-properly-schedule-migration-of-running-vcpu.patch
57dfb1c5-x86-Intel-hide-CPUID-faulting-capability-from-guests.patch
57e93e1d-x86emul-correct-loading-of-ss.patch
57e93e4a-x86emul-don-t-allow-null-selector-for-LTR.patch
57e93e89-x86-AMD-apply-erratum-665-workaround.patch
57ee6cbc-credit1-return-time-remaining-to-limit-as-next-timeslice.patch
57fb6a91-x86-defer-not-present-segment-checks.patch
5800c51d-x86-hvm-Clobber-cs-L-when-LME-becomes-set.patch
5800caec-x86emul-fix-pushing-of-selector-registers.patch
5800cb06-x86-Viridian-don-t-depend-on-undefined-register-state.patch
580e29f9-x86-MISALIGNSSE-feature-depends-on-SSE.patch
5810a9cc-x86-emul-Correct-decoding-of-SReg3-operands.patch�- bsc#1007941 - Xen tools limit the number of vcpus to 256 when the
system has 384
xen-arch-kconfig-nr_cpus.patch�- bsc#1007157 - VUL-0: CVE-2016-8910: xen: net: rtl8139: infinite
loop while transmit in C+ mode
CVE-2016-8910-qemut-net-rtl8139-infinite-loop-while-transmit-in-Cplus-mode.patch�- bsc#1005004 - CVE-2016-8667: xen: dma: rc4030 divide by zero
error in set_next_tick
CVE-2016-8667-qemut-dma-rc4030-divide-by-zero-error-in-set_next_tick.patch
- bsc#1005005 - VUL-0: CVE-2016-8669: xen: char: divide by zero
error in serial_update_parameters
CVE-2016-8669-qemut-char-divide-by-zero-error-in-serial_update_parameters.patch�- bsc#1003030 - VUL-0: CVE-2016-7908: xen: net: Infinite loop in
mcf_fec_do_tx
CVE-2016-7908-qemut-net-Infinite-loop-in-mcf_fec_do_tx.patch
- bsc#1003032 - VUL-0: CVE-2016-7909: xen: net: pcnet: infinite
loop in pcnet_rdra_addr
CVE-2016-7909-qemut-net-pcnet-infinite-loop-in-pcnet_rdra_addr.patch�- bsc#995785 - VUL-0: CVE-2016-7092: xen: x86: Disallow L3
recursive pagetable for 32-bit PV guests (XSA-185)
57d1563d-x86-32on64-don-t-allow-recursive-page-tables-from-L3.patch
- bsc#995789 - VUL-0: CVE-2016-7093: xen: x86: Mishandling of
instruction pointer truncation during emulation (XSA-186)
57d15679-x86-emulate-Correct-boundary-interactions-of-emulated-insns.patch
57d18642-hvm-fep-Allow-test-insns-crossing-1-0-boundary.patch
- bsc#995792 - VUL-0: CVE-2016-7094: xen: x86 HVM: Overflow of
sh_ctxt->seg_reg[] (XSA-187)
57d1569a-x86-shadow-Avoid-overflowing-sh_ctxt-seg_reg.patch
57d18642-x86-segment-Bounds-check-accesses-to-emulation-ctxt-seg_reg.patch
- bsc#991934 - xen hypervisor crash in csched_acct
57c96df3-credit1-fix-a-race-when-picking-initial-pCPU.patch
- Upstream patches from Jan
57c4412b-x86-HVM-add-guarding-logic-for-VMX-specific-code.patch
57c57f73-libxc-correct-max_pfn-calculation-for-saving-domain.patch
57c805bf-x86-levelling-restrict-non-architectural-OSXSAVE-handling.patch
57c805c1-x86-levelling-pass-vcpu-to-ctxt_switch_levelling.patch
57c805c3-x86-levelling-provide-architectural-OSXSAVE-handling.patch
57c82be2-x86-32on64-adjust-call-gate-emulation.patch
57c96e2c-x86-correct-PT_NOTE-file-position.patch
57cfed43-VMX-correct-feature-checks-for-MPX-and-XSAVES.patch�- bsc#979002 - add 60-persistent-xvd.rules and helper script
also to initrd, add the relevant dracut helper�- bnc#953518 - unplug also SCSI disks in qemu-xen-traditional for
upstream unplug protocol�- bsc#989679 - [pvusb feature] USB device not found when
'virsh detach-device guest usb.xml'
57c93e52-fix-error-in-libxl_device_usbdev_list.patch�- bsc#992224 - [HPS Bug] During boot of Xen Hypervisor, Failed to
get contiguous memory for DMA from Xen
57ac6316-don-t-restrict-DMA-heap-to-node-0.patch
- bsc#978755 - xen uefi systems fail to boot
- bsc#983697 - SLES12 SP2 Xen UEFI mode cannot boot
57b71fc5-x86-EFI-don-t-apply-relocations-to-l-2-3-_bootmap.patch
- Upstream patch from Jan
57b7447b-dont-permit-guest-to-populate-PoD-pages-for-itself.patch�- spec: to stay compatible with the in-tree qemu-xen binary, use
/usr/bin/qemu-system-i386 instead of /usr/bin/qemu-system-x86_64
bsc#986164�- bsc#970135 - new virtualization project clock test randomly fails
on Xen
576001df-x86-time-use-local-stamp-in-TSC-calibration-fast-path.patch
5769106e-x86-generate-assembler-equates-for-synthesized.patch
57a1e603-x86-time-adjust-local-system-time-initialization.patch
57a1e64c-x86-time-introduce-and-use-rdtsc_ordered.patch
57a2f6ac-x86-time-calibrate-TSC-against-platform-timer.patch
- bsc#991934 - xen hypervisor crash in csched_acct
57973099-have-schedulers-revise-initial-placement.patch
579730e6-remove-buggy-initial-placement-algorithm.patch
- bsc#988675 - VUL-0: CVE-2016-6258: xen: x86: Privilege escalation
in PV guests (XSA-182)
57976073-x86-remove-unsafe-bits-from-mod_lN_entry-fastpath.patch
- bsc#988676 - VUL-0: CVE-2016-6259: xen: x86: Missing SMAP
whitelisting in 32-bit exception / event delivery (XSA-183)
57976078-x86-avoid-SMAP-violation-in-compat_create_bounce_frame.patch
- Upstream patches from Jan
57a30261-x86-support-newer-Intel-CPU-models.patch�- bsc#985503 - vif-route broken
vif-route.patch�- bsc#978413 - PV guest upgrade from sles11sp4 to sles12sp2 alpha3
failed on sles11sp4 xen host.
pygrub-handle-one-line-menu-entries.patch�- bsc#990843 - VUL-1: CVE-2016-6351: xen: qemu: scsi: esp: OOB
write access in esp_do_dma
CVE-2016-6351-qemut-scsi-esp-make-cmdbuf-big-enough-for-maximum-CDB-size.patch�- bsc#900418 - Dump cannot be performed on SLES12 XEN
57580bbd-kexec-allow-relaxed-placement-via-cmdline.patch
- Upstream patches from Jan
575e9ca0-nested-vmx-Validate-host-VMX-MSRs-before-accessing-them.patch
57640448-xen-sched-use-default-scheduler-upon-an-invalid-sched.patch�- fate#319989 - Update to Xen 4.7 FCS
xen-4.7.0-testing-src.tar.bz2
- Drop CVE-2014-3672-qemut-xsa180.patch�- bsc#954872 - script block-dmmd not working as expected - libxl:
error: libxl_dm.c (Additional fixes)
block-dmmd�- Convert with_stubdom into build_conditional to allow adjusting
via prjconf
- Convert with_debug into build_conditional to allow adjusting
via prjconf�- bsc#979002 - add 60-persistent-xvd.rules and helper script to
xen-tools-domU to simplify transition to pvops based kernels�- Convert with_oxenstored into build_conditional to allow
adjusting via prjconf (fate#320836)�- bsc#983984 - VUL-0: CVE-2016-5338: xen: qemu: scsi: esp: OOB r/w
access while processing ESP_FIFO
CVE-2016-5338-qemut-scsi-esp-OOB-rw-access-while-processing-ESP_FIFO.patch
- bsc#982960 - VUL-0: CVE-2016-5238: xen: qemu: scsi: esp: OOB
write when using non-DMA mode in get_cmd
CVE-2016-5238-qemut-scsi-esp-OOB-write-when-using-non-DMA-mode-in-get_cmd.patch�- fate#319989 - Update to Xen 4.7 RC5
xen-4.7.0-testing-src.tar.bz2�- fate#319989 - Update to Xen 4.7 RC4
xen-4.7.0-testing-src.tar.bz2
- Dropped
xen.pkgconfig-4.7.patch
xsa164.patch�- bsc#981264 - VUL-0: CVE-2014-3672: xen: Unrestricted qemu logging
(XSA-180)
CVE-2014-3672-qemut-xsa180.patch�- bsc#980724 - VUL-0: CVE-2016-4441: Qemu: scsi: esp: OOB write
while writing to 's->cmdbuf' in get_cmd
CVE-2016-4441-qemut-scsi-esp-OOB-write-while-writing-to-cmdbuf-in-get_cmd.patch
- bsc#980716 - VUL-0: CVE-2016-4439: xen: scsi: esp: OOB write
while writing to 's->cmdbuf' in esp_reg_write
CVE-2016-4439-qemut-scsi-esp-OOB-write-while-writing-to-cmdbuf-in-esp_reg_write.patch�- fate#319989 - Update to Xen 4.7 RC3
xen-4.7.0-testing-src.tar.bz2
- Dropped
libxl-remove-cdrom-cachemode.patch
x86-PoD-only-reclaim-if-needed.patch
gcc6-warnings-as-errors.patch�- bsc#954872 - script block-dmmd not working as expected - libxl:
error: libxl_dm.c (another modification)
block-dmmd�- fate#319989 - Update to Xen 4.7 RC2
xen-4.7.0-testing-src.tar.bz2�- bsc#961600 - L3: poor performance when Xen HVM domU configured
with max memory > current memory
x86-PoD-only-reclaim-if-needed.patch�- Mark SONAMEs and pkgconfig as xen 4.7
xen.pkgconfig-4.7.patch�- bsc#977329 - Xen: Cannot boot HVM guests with empty cdrom
libxl-remove-cdrom-cachemode.patch�- fate#319989 - Update to Xen 4.7 RC1
xen-4.7.0-testing-src.tar.bz2�- fate#316614: set migration constraints from cmdline
restore libxl.set-migration-constraints-from-cmdline.patch�- Remove obsolete patch for xen-kmp
magic_ioport_compat.patch�- fate#316613: update to v12
libxl.pvscsi.patch�- Update to the latest Xen 4.7 pre-release c2994f86
Drop libxl.migrate-legacy-stream-read.patch�- bnc#972756 - Can't migrate HVM guest from SLES12SP1 Xen host
to SLES12SP2 Alpha 1 host using xl migrate
libxl.migrate-legacy-stream-read.patch�- Add patches from proposed upstream series to load BIOS's from
the toolstack instead of embedding in hvmloader
http://lists.xenproject.org/archives/html/xen-devel/2016-03/msg01626.html
0001-libxc-Rework-extra-module-initialisation.patch,
0002-libxc-Prepare-a-start-info-structure-for-hvmloader.patch,
0003-configure-define-SEABIOS_PATH-and-OVMF_PATH.patch,
0004-firmware-makefile-install-BIOS-blob.patch,
0005-libxl-Load-guest-BIOS-from-file.patch,
0006-xen-Move-the-hvm_start_info-C-representation-from-li.patch,
0007-hvmloader-Grab-the-hvm_start_info-pointer.patch,
0008-hvmloader-Locate-the-BIOS-blob.patch,
0009-hvmloader-Check-modules-whereabouts-in-perform_tests.patch,
0010-hvmloader-Load-SeaBIOS-from-hvm_start_info-modules.patch,
0011-hvmloader-Load-OVMF-from-modules.patch,
0012-hvmloader-Specific-bios_load-function-required.patch,
0013-hvmloader-Always-build-in-SeaBIOS-and-OVMF-loader.patch,
0014-configure-do-not-depend-on-SEABIOS_PATH-or-OVMF_PATH.patch
- Enable support for UEFI on x86_64 using the ovmf-x86_64-ms.bin
firmware from qemu-ovmf-x86_64. The firmware is preloaded with
Microsoft keys to more closely resemble firmware on real hardware
FATE#320490�- fate#319989: Update to Xen 4.7 (pre-release)
xen-4.7.0-testing-src.tar.bz2
- Dropped:
xen-4.6.1-testing-src.tar.bz2
55f7f9d2-libxl-slightly-refine-pci-assignable-add-remove-handling.patch
5628fc67-libxl-No-emulated-disk-driver-for-xvdX-disk.patch
5644b756-x86-HVM-don-t-inject-DB-with-error-code.patch
5649bcbe-libxl-relax-readonly-check-introduced-by-XSA-142-fix.patch
hotplug-Linux-block-performance-fix.patch
set-mtu-from-bridge-for-tap-interface.patch
xendomains-libvirtd-conflict.patch
xsa154.patch
xsa155-xen-0001-xen-Add-RING_COPY_REQUEST.patch
xsa155-xen-0002-blktap2-Use-RING_COPY_REQUEST.patch
xsa155-xen-0003-libvchan-Read-prod-cons-only-once.patch
xsa170.patch�- Use system SeaBIOS instead of building/installing another one
FATE#320638
Dropped files:
seabios-dir-remote.tar.bz2
xen-c99-fix.patch
xen.build-compare.seabios.patch�- spec: drop BuildRequires that were only needed for qemu-xen�- bsc#969377 - xen does not build with GCC 6
ipxe-use-rpm-opt-flags.patch
gcc6-warnings-as-errors.patch�- bsc#969351 - VUL-0: CVE-2016-2841: xen: net: ne2000: infinite
loop in ne2000_receive
CVE-2016-2841-qemut-ne2000-infinite-loop-in-ne2000_receive.patch
- Drop xsa154-fix.patch�- Use system qemu instead of building/installing yet another qemu
FATE#320638
- Dropped files
qemu-xen-dir-remote.tar.bz2
CVE-2014-0222-qemuu-qcow1-validate-l2-table-size.patch
CVE-2015-1779-qemuu-incrementally-decode-websocket-frames.patch
CVE-2015-1779-qemuu-limit-size-of-HTTP-headers-from-websockets-clients.patch
CVE-2015-4037-qemuu-smb-config-dir-name.patch
CVE-2015-7512-qemuu-net-pcnet-buffer-overflow-in-non-loopback-mode.patch
CVE-2015-7549-qemuu-pci-null-pointer-dereference-issue.patch
CVE-2015-8345-qemuu-eepro100-infinite-loop-fix.patch
CVE-2015-8504-qemuu-vnc-avoid-floating-point-exception.patch
CVE-2015-8558-qemuu-usb-infinite-loop-in-ehci_advance_state-results-in-DoS.patch
CVE-2015-8568-qemuu-net-vmxnet3-avoid-memory-leakage-in-activate_device.patch
CVE-2015-8613-qemuu-scsi-initialise-info-object-with-appropriate-size.patch
CVE-2015-8743-qemuu-ne2000-OOB-memory-access-in-ioport-rw-functions.patch
CVE-2015-8744-qemuu-net-vmxnet3-incorrect-l2-header-validation-leads-to-crash.patch
CVE-2015-8745-qemuu-net-vmxnet3-read-IMR-registers-instead-of-assert.patch
CVE-2016-1568-qemuu-ide-ahci-reset-ncq-object-to-unused-on-error.patch
CVE-2016-1714-qemuu-fw_cfg-add-check-to-validate-current-entry-value.patch
CVE-2014-7815-qemut-vnc-sanitize-bits_per_pixel-from-the-client.patch
CVE-2016-1981-qemuu-e1000-eliminate-infinite-loops-on-out-of-bounds-transfer.patch
CVE-2016-2538-qemuu-usb-integer-overflow-in-remote-NDIS-message-handling.patch
CVE-2015-8619-qemuu-stack-based-OOB-write-in-hmp_sendkey-routine.patch
qemu-xen-enable-spice-support.patch
qemu-xen-upstream-qdisk-cache-unsafe.patch
tigervnc-long-press.patch
xsa162-qemuu.patch�- bsc#962321 - VUL-0: CVE-2016-1922: xen: i386: null pointer
dereference in vapic_write()
CVE-2016-1922-qemuu-i386-null-pointer-dereference-in-vapic_write.patch�- bsc#968004 - VUL-0: CVE-2016-2538: xen: usb: integer overflow in
remote NDIS control message handling
CVE-2016-2538-qemuu-usb-integer-overflow-in-remote-NDIS-message-handling.patch�- bsc#954872 - L3: script block-dmmd not working as expected -
libxl: error: libxl_dm.c
block-dmmd
- Update libxl to recognize dmmd and npiv prefix in disk spec
xen.libxl.dmmd.patch�- bsc#967101 - VUL-0: CVE-2016-2391: xen: usb: multiple eof_timers
in ohci module leads to null pointer dereference
CVE-2016-2391-qemuu-usb-null-pointer-dereference-in-ohci-module.patch
CVE-2016-2391-qemut-usb-null-pointer-dereference-in-ohci-module.patch
- bsc#967090 - VUL-0: CVE-2016-2392: xen: usb: null pointer
dereference in remote NDIS control message handling
CVE-2016-2392-qemuu-usb-null-pointer-dereference-in-NDIS-message-handling.patch�- Update to Xen Version 4.6.1
xen-4.6.1-testing-src.tar.bz2
- Dropped patches now contained in tarball or unnecessary
xen-4.6.0-testing-src.tar.bz2
5604f239-x86-PV-properly-populate-descriptor-tables.patch
561bbc8b-VT-d-don-t-suppress-invalidation-address-write-when-it-is-zero.patch
561d2046-VT-d-use-proper-error-codes-in-iommu_enable_x2apic_IR.patch
561d20a0-x86-hide-MWAITX-from-PV-domains.patch
561e3283-x86-NUMA-fix-SRAT-table-processor-entry-parsing-and-consumption.patch
5632118e-arm-Support-hypercall_create_continuation-for-multicall.patch
56321222-arm-rate-limit-logging-from-unimplemented-PHYSDEVOP-and-HVMOP.patch
56321249-arm-handle-races-between-relinquish_memory-and-free_domheap_pages.patch
5632127b-x86-guard-against-undue-super-page-PTE-creation.patch
5632129c-free-domain-s-vcpu-array.patch
563212c9-x86-PoD-Eager-sweep-for-zeroed-pages.patch
563212e4-xenoprof-free-domain-s-vcpu-array.patch
563212ff-x86-rate-limit-logging-in-do_xen-oprof-pmu-_op.patch
56323737-libxl-adjust-PoD-target-by-memory-fudge-too.patch
56377442-x86-PoD-Make-p2m_pod_empty_cache-restartable.patch
5641ceec-x86-HVM-always-intercept-AC-and-DB.patch
56549f24-x86-vPMU-document-as-unsupported.patch
5677f350-x86-make-debug-output-consistent-in-hvm_set_callback_via.patch
xsa155-qemut-qdisk-double-access.patch
xsa155-qemut-xenfb.patch
xsa155-qemuu-qdisk-double-access.patch
xsa155-qemuu-xenfb.patch
xsa159.patch
xsa160.patch
xsa162-qemut.patch
xsa165.patch
xsa166.patch
xsa167.patch
xsa168.patch�- bsc#965315 - VUL-0: CVE-2016-2270: xen: x86: inconsistent
cachability flags on guest mappings (XSA-154)
xsa154.patch
- bsc#965317 - VUL-0: CVE-2016-2271: xen: VMX: guest user mode may
crash guest with non-canonical RIP (XSA-170)
xsa170.patch�- bsc#965269 - VUL-1: CVE-2015-8619: xen: stack based OOB write in
hmp_sendkey routine
CVE-2015-8619-qemuu-stack-based-OOB-write-in-hmp_sendkey-routine.patch�- bsc#965156 - VUL-0: CVE-2015-6855: xen: ide: divide by zero issue
CVE-2015-6855-qemuu-ide-divide-by-zero-issue.patch
- bsc#965112 - VUL-0: CVE-2014-3640: xen: slirp: NULL pointer deref
in sosendto()
CVE-2014-3640-qemut-slirp-NULL-pointer-deref-in-sosendto.patch�- bsc#964947 - VUL-0: CVE-2015-5278: xen: Infinite loop in
ne2000_receive() function
CVE-2015-5278-qemut-Infinite-loop-in-ne2000_receive-function.patch
- bsc#956832 - VUL-0: CVE-2015-8345: xen: qemu: net: eepro100:
infinite loop in processing command block list
CVE-2015-8345-qemuu-eepro100-infinite-loop-fix.patch
CVE-2015-8345-qemut-eepro100-infinite-loop-fix.patch�- bsc#964644 - VUL-0: CVE-2013-4533: xen pxa2xx: buffer overrun on
incoming migration
CVE-2013-4533-qemut-pxa2xx-buffer-overrun-on-incoming-migration.patch
- bsc#964925 - VUL-0: CVE-2014-0222: xen: qcow1: validate L2 table
size to avoid integer overflows
CVE-2014-0222-blktap-qcow1-validate-l2-table-size.patch
- Dropped CVE-2014-0222-qemuu-qcow1-validate-l2-table-size.patch�- bsc#964415 - VUL-1: CVE-2016-2198: xen: usb: ehci null pointer
dereference in ehci_caps_write
CVE-2016-2198-qemuu-usb-ehci-null-pointer-dereference-in-ehci_caps_write.patch
- bsc#964452 - VUL-0: CVE-2013-4534: xen: openpic: buffer overrun
on incoming migration
CVE-2013-4534-qemut-openpic-buffer-overrun-on-incoming-migration.patch�- bsc#963783 - VUL-1: CVE-2016-1981: xen: net: e1000 infinite loop
in start_xmit and e1000_receive_iov routines
CVE-2016-1981-qemuu-e1000-eliminate-infinite-loops-on-out-of-bounds-transfer.patch
CVE-2016-1981-qemut-e1000-eliminate-infinite-loops-on-out-of-bounds-transfer.patch�- bsc#962758 - VUL-0: CVE-2013-4539: xen: tsc210x: buffer overrun
on invalid state load
CVE-2013-4539-qemut-tsc210x-fix-buffer-overrun-on-invalid-state-load.patch�- bsc#962632 - VUL-0: CVE-2015-1779: xen: vnc: insufficient
resource limiting in VNC websockets decoder
CVE-2015-1779-qemuu-limit-size-of-HTTP-headers-from-websockets-clients.patch
CVE-2015-1779-qemuu-incrementally-decode-websocket-frames.patch
- bsc#962642 - VUL-0: CVE-2013-4537: xen: ssi-sd: buffer overrun on
invalid state load
CVE-2013-4537-qemut-ssi-sd-fix-buffer-overrun-on-invalid-state-load.patch
- bsc#962627 - VUL-0: CVE-2014-7815: xen: vnc: insufficient
bits_per_pixel from the client sanitization
CVE-2014-7815-qemut-vnc-sanitize-bits_per_pixel-from-the-client.patch�- bsc#962335 - VUL-0: CVE-2013-4538: xen: ssd0323: fix buffer
overun on invalid state
CVE-2013-4538-qemut-ssd0323-fix-buffer-overun-on-invalid-state.patch
- bsc#962360 - VUL-0: CVE-2015-7512: xen: net: pcnet: buffer
overflow in non-loopback mode
CVE-2015-7512-qemuu-net-pcnet-buffer-overflow-in-non-loopback-mode.patch
CVE-2015-7512-qemut-net-pcnet-buffer-overflow-in-non-loopback-mode.patch�- bsc#961692 - VUL-0: CVE-2016-1714: xen: nvram: OOB r/w access in
processing firmware configurations
CVE-2016-1714-qemuu-fw_cfg-add-check-to-validate-current-entry-value.patch
CVE-2016-1714-qemut-fw_cfg-add-check-to-validate-current-entry-value.patch�- bsc#961358 - VUL-0: CVE-2015-8613: xen: qemu: scsi: stack based
buffer overflow in megasas_ctrl_get_info
CVE-2015-8613-qemuu-scsi-initialise-info-object-with-appropriate-size.patch
- bsc#961332 - VUL-0: CVE-2016-1568: xen: Qemu: ide: ahci
use-after-free vulnerability in aio port commands
CVE-2016-1568-qemuu-ide-ahci-reset-ncq-object-to-unused-on-error.patch�- bsc#959695 - missing docs for xen
xen.spec�- bsc#960862 - VUL-0: CVE-2016-1571: xen: VMX: intercept issue with
INVLPG on non-canonical address (XSA-168)
xsa168.patch
- bsc#960861 - VUL-0: CVE-2016-1570: xen: PV superpage
functionality missing sanity checks (XSA-167)
xsa167.patch
- bsc#960836 - VUL-0: CVE-2015-8744: xen: net: vmxnet3: incorrect
l2 header validation leads to a crash via assert(2) call
CVE-2015-8744-qemuu-net-vmxnet3-incorrect-l2-header-validation-leads-to-crash.patch�- bsc#960707 - VUL-0: CVE-2015-8745: xen: reading IMR registers
leads to a crash via assert(2) call
CVE-2015-8745-qemuu-net-vmxnet3-read-IMR-registers-instead-of-assert.patch
- bsc#960726 - VUL-0: CVE-2015-8743: xen: ne2000: OOB memory access
in ioport r/w functions
CVE-2015-8743-qemuu-ne2000-OOB-memory-access-in-ioport-rw-functions.patch�- bsc#960093 - VUL-0: CVE-2015-8615: xen: x86: unintentional
logging upon guest changing callback method (XSA-169)
5677f350-x86-make-debug-output-consistent-in-hvm_set_callback_via.patch�- Adjust xen-dom0-modules.service to run Before xenstored.service
instead of proc-xen.mount to workaround a bug in systemd "design"
(bnc#959845)�- bsc#959387 - VUL-0: CVE-2015-8568 CVE-2015-8567: xen: qemu: net:
vmxnet3: host memory leakage
CVE-2015-8568-qemuu-net-vmxnet3-avoid-memory-leakage-in-activate_device.patch�- bsc#957988 - VUL-0: CVE-2015-8550: xen: paravirtualized drivers
incautious about shared memory contents (XSA-155)
xsa155-xen-0001-xen-Add-RING_COPY_REQUEST.patch
xsa155-xen-0002-blktap2-Use-RING_COPY_REQUEST.patch
xsa155-xen-0003-libvchan-Read-prod-cons-only-once.patch
xsa155-qemuu-qdisk-double-access.patch
xsa155-qemut-qdisk-double-access.patch
xsa155-qemuu-xenfb.patch
xsa155-qemut-xenfb.patch
- bsc#959006 - VUL-0: CVE-2015-8558: xen: qemu: usb: infinite loop
in ehci_advance_state results in DoS
CVE-2015-8558-qemuu-usb-infinite-loop-in-ehci_advance_state-results-in-DoS.patch
- bsc#958918 - VUL-0: CVE-2015-7549: xen: qemu pci: null pointer
dereference issue
CVE-2015-7549-qemuu-pci-null-pointer-dereference-issue.patch
- bsc#958493 - VUL-0: CVE-2015-8504: xen: qemu: ui: vnc: avoid
floating point exception
CVE-2015-8504-qemuu-vnc-avoid-floating-point-exception.patch
CVE-2015-8504-qemut-vnc-avoid-floating-point-exception.patch
- bsc#958007 - VUL-0: CVE-2015-8554: xen: qemu-dm buffer overrun in
MSI-X handling (XSA-164)
xsa164.patch
- bsc#958009 - VUL-0: CVE-2015-8555: xen: information leak in
legacy x86 FPU/XMM initialization (XSA-165)
xsa165.patch
- bsc#958523 - VUL-0: xen: ioreq handling possibly susceptible to
multiple read issue (XSA-166)
xsa166.patch�- bsc#956832 - VUL-0: CVE-2015-8345: xen: qemu: net: eepro100:
infinite loop in processing command block list
CVE-2015-8345-qemuu-eepro100-infinite-loop-fix.patch
CVE-2015-8345-qemut-eepro100-infinite-loop-fix.patch
- Upstream patches from Jan
56377442-x86-PoD-Make-p2m_pod_empty_cache-restartable.patch
5641ceec-x86-HVM-always-intercept-AC-and-DB.patch (Replaces CVE-2015-5307-xsa156.patch)
5644b756-x86-HVM-don-t-inject-DB-with-error-code.patch
56544a57-VMX-fix-adjust-trap-injection.patch
56546ab2-sched-fix-insert_vcpu-locking.patch�- bsc#956592 - VUL-0: xen: virtual PMU is unsupported (XSA-163)
56549f24-x86-vPMU-document-as-unsupported.patch
- bsc#956408 - VUL-0: CVE-2015-8339, CVE-2015-8340: xen:
XENMEM_exchange error handling issues (XSA-159)
xsa159.patch
- bsc#956409 - VUL-0: CVE-2015-8341: xen: libxl leak of pv kernel
and initrd on error (XSA-160)
xsa160.patch
- bsc#956411 - VUL-0: CVE-2015-7504: xen: heap buffer overflow
vulnerability in pcnet emulator (XSA-162)
xsa162-qemuu.patch
xsa162-qemut.patch
- bsc#947165 - VUL-0: CVE-2015-7311: xen: libxl fails to honour
readonly flag on disks with qemu-xen (xsa-142)
5628fc67-libxl-No-emulated-disk-driver-for-xvdX-disk.patch
5649bcbe-libxl-relax-readonly-check-introduced-by-XSA-142-fix.patch�- fate#315712: XEN: Use the PVOPS kernel
Turn off building the KMPs now that we are using the pvops kernel
xen.spec�- Upstream patches from Jan
561bbc8b-VT-d-don-t-suppress-invalidation-address-write-when-it-is-zero.patch
561d20a0-x86-hide-MWAITX-from-PV-domains.patch
561e3283-x86-NUMA-fix-SRAT-table-processor-entry-parsing-and-consumption.patch
5632118e-arm-Support-hypercall_create_continuation-for-multicall.patch
56321222-arm-rate-limit-logging-from-unimplemented-PHYSDEVOP-and-HVMOP.patch
56321249-arm-handle-races-between-relinquish_memory-and-free_domheap_pages.patch
5632127b-x86-guard-against-undue-super-page-PTE-creation.patch
5632129c-free-domain-s-vcpu-array.patch (Replaces CVE-2015-7969-xsa149.patch)
563212c9-x86-PoD-Eager-sweep-for-zeroed-pages.patch
563212e4-xenoprof-free-domain-s-vcpu-array.patch
563212ff-x86-rate-limit-logging-in-do_xen-oprof-pmu-_op.patch
56323737-libxl-adjust-PoD-target-by-memory-fudge-too.patch
56377442-x86-PoD-Make-p2m_pod_empty_cache-restartable.patch
5641ceec-x86-HVM-always-intercept-AC-and-DB.patch (Replaces CVE-2015-5307-xsa156.patch)
5644b756-x86-HVM-don-t-inject-DB-with-error-code.patch
- Dropped 55b0a2db-x86-MSI-track-guest-masking.patch�- Use upstream variants of block-iscsi and block-nbd�- Remove xenalyze.hg, its part of xen-4.6�- Update to Xen Version 4.6.0
xen-4.6.0-testing-src.tar.bz2
mini-os.tar.bz2
blktap2-no-uninit.patch
stubdom-have-iovec.patch
- Renamed
xsa149.patch to CVE-2015-7969-xsa149.patch
- Dropped patches now contained in tarball or unnecessary
xen-4.5.2-testing-src.tar.bz2
54c2553c-grant-table-use-uint16_t-consistently-for-offset-and-length.patch
54ca33bc-grant-table-refactor-grant-copy-to-reduce-duplicate-code.patch
54ca340e-grant-table-defer-releasing-pages-acquired-in-a-grant-copy.patch
54f4985f-libxl-fix-libvirtd-double-free.patch
55103616-vm-assist-prepare-for-discontiguous-used-bit-numbers.patch
551ac326-xentop-add-support-for-qdisk.patch
552d0fd2-x86-hvm-don-t-include-asm-spinlock-h.patch
552d0fe8-x86-mtrr-include-asm-atomic.h.patch
552d293b-x86-vMSI-X-honor-all-mask-requests.patch
552d2966-x86-vMSI-X-add-valid-bits-for-read-acceleration.patch
5537a4d8-libxl-use-DEBUG-log-level-instead-of-INFO.patch
5548e903-domctl-don-t-truncate-XEN_DOMCTL_max_mem-requests.patch
5548e95d-x86-allow-to-suppress-M2P-user-mode-exposure.patch
554c7aee-x86-provide-arch_fetch_and_add.patch
554c7b00-arm-provide-arch_fetch_and_add.patch
554cc211-libxl-add-qxl.patch 55534b0a-x86-provide-add_sized.patch
55534b25-arm-provide-add_sized.patch
5555a4f8-use-ticket-locks-for-spin-locks.patch
5555a5b9-x86-arm-remove-asm-spinlock-h.patch
5555a8ec-introduce-non-contiguous-allocation.patch
556d973f-unmodified-drivers-tolerate-IRQF_DISABLED-being-undefined.patch
5576f143-x86-adjust-PV-I-O-emulation-functions-types.patch
55795a52-x86-vMSI-X-support-qword-MMIO-access.patch
557eb55f-gnttab-per-active-entry-locking.patch
557eb5b6-gnttab-introduce-maptrack-lock.patch
557eb620-gnttab-make-the-grant-table-lock-a-read-write-lock.patch
557ffab8-evtchn-factor-out-freeing-an-event-channel.patch
5582bf43-evtchn-simplify-port_is_valid.patch
5582bf81-evtchn-remove-the-locking-when-unmasking-an-event-channel.patch
5583d9c5-x86-MSI-X-cleanup.patch
5583da09-x86-MSI-track-host-and-guest-masking-separately.patch
5583da64-gnttab-use-per-VCPU-maptrack-free-lists.patch
5583da8c-gnttab-steal-maptrack-entries-from-other-VCPUs.patch
5587d711-evtchn-clear-xen_consumer-when-clearing-state.patch
5587d779-evtchn-defer-freeing-struct-evtchn-s-until-evtchn_destroy_final.patch
5587d7b7-evtchn-use-a-per-event-channel-lock-for-sending-events.patch
5587d7e2-evtchn-pad-struct-evtchn-to-64-bytes.patch
55b0a218-x86-PCI-CFG-write-intercept.patch
55b0a255-x86-MSI-X-maskall.patch 55b0a283-x86-MSI-X-teardown.patch
55b0a2ab-x86-MSI-X-enable.patch blktapctrl-close-fifos.patch
blktapctrl-default-to-ioemu.patch blktapctrl-disable-debug-printf.patch
blktap-no-uninit.patch blktap-pv-cdrom.patch build-tapdisk-ioemu.patch
ioemu-bdrv-open-CACHE_WB.patch ioemu-blktap-barriers.patch
ioemu-blktap-fv-init.patch ioemu-blktap-image-format.patch
ioemu-blktap-zero-size.patch libxl.set-migration-constraints-from-cmdline.patch
local_attach_support_for_phy.patch pci-attach-fix.patch
qemu-xen-upstream-megasas-buildtime.patch tapdisk-ioemu-logfile.patch
tapdisk-ioemu-shutdown-fix.patch udev-rules.patch xen.build-compare.ipxe.patch
xen.build-compare.mini-os.patch xen.build-compare.smbiosdate.patch
xen.build-compare.vgabios.patch xen.build-compare.xen_compile_h.patch
xl-coredump-file-location.patch�- bsc#954405 - VUL-0: CVE-2015-8104: Xen: guest to host DoS by
triggering an infinite loop in microcode via #DB exception
- bsc#954018 - VUL-0: CVE-2015-5307: xen: x86: CPU lockup during
fault delivery (XSA-156)
CVE-2015-5307-xsa156.patch�- Update to Xen 4.5.2
xen-4.5.2-testing-src.tar.bz2
- Drop the following
xen-4.5.1-testing-src.tar.bz2
552d0f49-x86-traps-identify-the-vcpu-in-context-when-dumping-regs.patch
5576f178-kexec-add-more-pages-to-v1-environment.patch
55780be1-x86-EFI-adjust-EFI_MEMORY_WP-handling-for-spec-version-2.5.patch
558bfaa0-x86-traps-avoid-using-current-too-early.patch
5592a116-nested-EPT-fix-the-handling-of-nested-EPT.patch
559b9dd6-x86-p2m-ept-don-t-unmap-in-use-EPT-pagetable.patch
559bc633-x86-cpupool-clear-proper-cpu_valid-bit-on-CPU-teardown.patch
559bc64e-credit1-properly-deal-with-CPUs-not-in-any-pool.patch
559bc87f-x86-hvmloader-avoid-data-corruption-with-xenstore-rw.patch
559bdde5-pull-in-latest-linux-earlycpio.patch
55a62eb0-xl-correct-handling-of-extra_config-in-main_cpupoolcreate.patch
55a66a1e-make-rangeset_report_ranges-report-all-ranges.patch
55a77e4f-dmar-device-scope-mem-leak-fix.patch
55c1d83d-x86-gdt-Drop-write-only-xalloc-d-array.patch
55c3232b-x86-mm-Make-hap-shadow-teardown-preemptible.patch
55dc78e9-x86-amd_ucode-skip-updates-for-final-levels.patch
55df2f76-IOMMU-skip-domains-without-page-tables-when-dumping.patch
55e43fd8-x86-NUMA-fix-setup_node.patch
55e43ff8-x86-NUMA-don-t-account-hotplug-regions.patch
55e593f1-x86-NUMA-make-init_node_heap-respect-Xen-heap-limit.patch
55f2e438-x86-hvm-fix-saved-pmtimer-and-hpet-values.patch
55f9345b-x86-MSI-fail-if-no-hardware-support.patch
5604f2e6-vt-d-fix-IM-bit-mask-and-unmask-of-FECTL_REG.patch
560a4af9-x86-EPT-tighten-conditions-of-IOMMU-mapping-updates.patch
560a7c36-x86-p2m-pt-delay-freeing-of-intermediate-page-tables.patch
560a7c53-x86-p2m-pt-ignore-pt-share-flag-for-shadow-mode-guests.patch
560bd926-credit1-fix-tickling-when-it-happens-from-a-remote-pCPU.patch
560e6d34-x86-p2m-pt-tighten-conditions-of-IOMMU-mapping-updates.patch
561bbc8b-VT-d-don-t-suppress-invalidation-address-write-when-0.patch
561d20a0-x86-hide-MWAITX-from-PV-domains.patch
561e3283-x86-NUMA-fix-SRAT-table-processor-entry-handling.patch
563212c9-x86-PoD-Eager-sweep-for-zeroed-pages.patch
CVE-2015-4106-xsa131-9.patch CVE-2015-3259-xsa137.patch
CVE-2015-7311-xsa142.patch CVE-2015-7835-xsa148.patch
xsa139-qemuu.patch xsa140-qemuu-1.patch xsa140-qemuu-2.patch
xsa140-qemuu-3.patch xsa140-qemuu-4.patch xsa140-qemuu-5.patch
xsa140-qemuu-6.patch xsa140-qemuu-7.patch xsa140-qemut-1.patch
xsa140-qemut-2.patch xsa140-qemut-3.patch xsa140-qemut-4.patch
xsa140-qemut-5.patch xsa140-qemut-6.patch xsa140-qemut-7.patch
xsa151.patch xsa152.patch xsa153-libxl.patch
CVE-2015-5154-qemuu-check-array-bounds-before-writing-to-io_buffer.patch
CVE-2015-5154-qemuu-fix-START-STOP-UNIT-command-completion.patch
CVE-2015-5154-qemuu-clear-DRQ-after-handling-all-expected-accesses.patch
CVE-2015-5154-qemut-check-array-bounds-before-writing-to-io_buffer.patch
CVE-2015-5154-qemut-clear-DRQ-after-handling-all-expected-accesses.patch
CVE-2015-6815-qemuu-e1000-fix-infinite-loop.patch
CVE-2015-5239-qemuu-limit-client_cut_text-msg-payload-size.patch
CVE-2015-5239-qemut-limit-client_cut_text-msg-payload-size.patch"�- bsc#950704 - CVE-2015-7970 VUL-1: xen: x86: Long latency
populate-on-demand operation is not preemptible (XSA-150)
563212c9-x86-PoD-Eager-sweep-for-zeroed-pages.patch�- Upstream patches from Jan
5604f239-x86-PV-properly-populate-descriptor-tables.patch
561bbc8b-VT-d-don-t-suppress-invalidation-address-write-when-0.patch
561d2046-VT-d-use-proper-error-codes-in-iommu_enable_x2apic_IR.patch
561d20a0-x86-hide-MWAITX-from-PV-domains.patch
561e3283-x86-NUMA-fix-SRAT-table-processor-entry-handling.patch�- bsc#951845 - VUL-0: CVE-2015-7972: xen: x86: populate-on-demand
balloon size inaccuracy can crash guests (XSA-153)
xsa153-libxl.patch�- bsc#950703 - VUL-1: CVE-2015-7969: xen: leak of main per-domain
vcpu pointer array (DoS) (XSA-149)
xsa149.patch
- bsc#950705 - VUL-1: CVE-2015-7969: xen: x86: leak of per-domain
profiling-related vcpu pointer array (DoS) (XSA-151)
xsa151.patch
- bsc#950706 - VUL-0: CVE-2015-7971: xen: x86: some pmu and
profiling hypercalls log without rate limiting (XSA-152)
xsa152.patch
- Dropped
55dc7937-x86-IO-APIC-don-t-create-pIRQ-mapping-from-masked-RTE.patch
5604f239-x86-PV-properly-populate-descriptor-tables.patch�- bsc#932267 - VUL-1: CVE-2015-4037: qemu,kvm,xen: insecure
temporary file use in /net/slirp.c
CVE-2015-4037-qemuu-smb-config-dir-name.patch
CVE-2015-4037-qemut-smb-config-dir-name.patch
- bsc#877642 - VUL-0: CVE-2014-0222: qemu: qcow1: validate L2 table
size to avoid integer overflows
CVE-2014-0222-qemuu-qcow1-validate-l2-table-size.patch
CVE-2014-0222-qemut-qcow1-validate-l2-table-size.patch�- bsc#950367 - VUL-0: CVE-2015-7835: xen: x86: Uncontrolled
creation of large page mappings by PV guests (XSA-148)
CVE-2015-7835-xsa148.patch�- bsc#949138 - Setting vcpu affinity under Xen causes libvirtd
abort
54f4985f-libxl-fix-libvirtd-double-free.patch�- bsc#949046 - Increase %suse_version in SP1 to 1316
xen.spec
- Update README.SUSE detailing dom0 ballooning recommendations�- bsc#945167 - Running command ’ xl pci-assignable-add 03:10.1’
secondly show errors
55f7f9d2-libxl-slightly-refine-pci-assignable-add-remove-handling.patch
- Upstream patches from Jan
55f2e438-x86-hvm-fix-saved-pmtimer-and-hpet-values.patch
55f9345b-x86-MSI-fail-if-no-hardware-support.patch
5604f239-x86-PV-properly-populate-descriptor-tables.patch
5604f2e6-vt-d-fix-IM-bit-mask-and-unmask-of-FECTL_REG.patch
560a4af9-x86-EPT-tighten-conditions-of-IOMMU-mapping-updates.patch
560a7c36-x86-p2m-pt-delay-freeing-of-intermediate-page-tables.patch
560a7c53-x86-p2m-pt-ignore-pt-share-flag-for-shadow-mode-guests.patch
560bd926-credit1-fix-tickling-when-it-happens-from-a-remote-pCPU.patch
560e6d34-x86-p2m-pt-tighten-conditions-of-IOMMU-mapping-updates.patch�- bsc#941074 - VmError: Device 51728 (vbd) could not be connected.
Hotplug scripts not working.
hotplug-Linux-block-performance-fix.patch�- bsc#947165 - VUL-0: CVE-2015-7311: xen: libxl fails to honour
readonly flag on disks with qemu-xen (xsa-142)
CVE-2015-7311-xsa142.patch�- bsc#945165 - Xl pci-attach show error with kernel of SLES 12 sp1
pci-attach-fix.patch�- bsc#945164 - Xl destroy show error with kernel of SLES 12 sp1
5537a4d8-libxl-use-DEBUG-log-level-instead-of-INFO.patch�- Upstream patches from Jan
55dc78e9-x86-amd_ucode-skip-updates-for-final-levels.patch
55dc7937-x86-IO-APIC-don-t-create-pIRQ-mapping-from-masked-RTE.patch
55df2f76-IOMMU-skip-domains-without-page-tables-when-dumping.patch
55e43fd8-x86-NUMA-fix-setup_node.patch
55e43ff8-x86-NUMA-don-t-account-hotplug-regions.patch
55e593f1-x86-NUMA-make-init_node_heap-respect-Xen-heap-limit.patch
54c2553c-grant-table-use-uint16_t-consistently-for-offset-and-length.patch
54ca33bc-grant-table-refactor-grant-copy-to-reduce-duplicate-code.patch
54ca340e-grant-table-defer-releasing-pages-acquired-in-a-grant-copy.patch�- bsc#944463 - VUL-0: CVE-2015-5239: qemu-kvm: Integer overflow in
vnc_client_read() and protocol_client_msg()
CVE-2015-5239-qemuu-limit-client_cut_text-msg-payload-size.patch
CVE-2015-5239-qemut-limit-client_cut_text-msg-payload-size.patch
- bsc#944697 - VUL-1: CVE-2015-6815: qemu: net: e1000: infinite
loop issue
CVE-2015-6815-qemuu-e1000-fix-infinite-loop.patch
CVE-2015-6815-qemut-e1000-fix-infinite-loop.patch�- bnc#935634 - VUL-0: CVE-2015-3259: xen: XSA-137: xl command line
config handling stack overflow
55a62eb0-xl-correct-handling-of-extra_config-in-main_cpupoolcreate.patch�- bsc#907514 - Bus fatal error & sles12 sudden reboot has been
observed
- bsc#910258 - SLES12 Xen host crashes with FATAL NMI after
shutdown of guest with VT-d NIC
- bsc#918984 - Bus fatal error & sles11-SP4 sudden reboot has been
observed
- bsc#923967 - Partner-L3: Bus fatal error & sles11-SP3 sudden
reboot has been observed
552d293b-x86-vMSI-X-honor-all-mask-requests.patch
552d2966-x86-vMSI-X-add-valid-bits-for-read-acceleration.patch
5576f143-x86-adjust-PV-I-O-emulation-functions-types.patch
55795a52-x86-vMSI-X-support-qword-MMIO-access.patch
5583d9c5-x86-MSI-X-cleanup.patch
5583da09-x86-MSI-track-host-and-guest-masking-separately.patch
55b0a218-x86-PCI-CFG-write-intercept.patch
55b0a255-x86-MSI-X-maskall.patch
55b0a283-x86-MSI-X-teardown.patch
55b0a2ab-x86-MSI-X-enable.patch
55b0a2db-x86-MSI-track-guest-masking.patch
- Upstream patches from Jan
552d0f49-x86-traps-identify-the-vcpu-in-context-when-dumping-regs.patch
559bc633-x86-cpupool-clear-proper-cpu_valid-bit-on-CPU-teardown.patch
559bc64e-credit1-properly-deal-with-CPUs-not-in-any-pool.patch
559bc87f-x86-hvmloader-avoid-data-corruption-with-xenstore-rw.patch
55a66a1e-make-rangeset_report_ranges-report-all-ranges.patch
55a77e4f-dmar-device-scope-mem-leak-fix.patch
55c1d83d-x86-gdt-Drop-write-only-xalloc-d-array.patch
55c3232b-x86-mm-Make-hap-shadow-teardown-preemptible.patch
- Dropped for upstream version
x86-MSI-mask.patch
x86-MSI-pv-unmask.patch
x86-MSI-X-enable.patch
x86-MSI-X-maskall.patch
x86-MSI-X-teardown.patch
x86-pci_cfg_okay.patch
x86-PCI-CFG-write-intercept.patch�- bsc#939712 - VUL-0: XSA-140: QEMU leak of uninitialized heap
memory in rtl8139 device model
xsa140-qemuu-1.patch
xsa140-qemuu-2.patch
xsa140-qemuu-3.patch
xsa140-qemuu-4.patch
xsa140-qemuu-5.patch
xsa140-qemuu-6.patch
xsa140-qemuu-7.patch
xsa140-qemut-1.patch
xsa140-qemut-2.patch
xsa140-qemut-3.patch
xsa140-qemut-4.patch
xsa140-qemut-5.patch
xsa140-qemut-6.patch
xsa140-qemut-7.patch
- bsc#939709 - VUL-0: XSA-139: xen: Use after free in QEMU/Xen
block unplug protocol
xsa139-qemuu.patch�- bsc#937371 - xen vm's running after reboot
xendomains-libvirtd-conflict.patch�- bsc#938344 - VUL-0: CVE-2015-5154: qemu,kvm,xen: host code
execution via IDE subsystem CD-ROM
CVE-2015-5154-qemuu-check-array-bounds-before-writing-to-io_buffer.patch
CVE-2015-5154-qemut-check-array-bounds-before-writing-to-io_buffer.patch
CVE-2015-5154-qemuu-fix-START-STOP-UNIT-command-completion.patch
CVE-2015-5154-qemut-fix-START-STOP-UNIT-command-completion.patch
CVE-2015-5154-qemuu-clear-DRQ-after-handling-all-expected-accesses.patch
CVE-2015-5154-qemut-clear-DRQ-after-handling-all-expected-accesses.patch�- Remove xendomains.service from systemd preset file because it
conflicts with libvirt-guests.service (bnc#937371)
Its up to the admin to run systemctl enable xendomains.service�- bnc#935634 - VUL-0: CVE-2015-3259: xen: XSA-137: xl command line
config handling stack overflow
CVE-2015-3259-xsa137.patch
- Upstream patches from Jan
558bfaa0-x86-traps-avoid-using-current-too-early.patch
5592a116-nested-EPT-fix-the-handling-of-nested-EPT.patch
559b9dd6-x86-p2m-ept-don-t-unmap-in-use-EPT-pagetable.patch
559bdde5-pull-in-latest-linux-earlycpio.patch
- Upstream patches from Jan pending review
552d0fd2-x86-hvm-don-t-include-asm-spinlock-h.patch
552d0fe8-x86-mtrr-include-asm-atomic.h.patch
552d293b-x86-vMSI-X-honor-all-mask-requests.patch
552d2966-x86-vMSI-X-add-valid-bits-for-read-acceleration.patch
554c7aee-x86-provide-arch_fetch_and_add.patch
554c7b00-arm-provide-arch_fetch_and_add.patch
55534b0a-x86-provide-add_sized.patch
55534b25-arm-provide-add_sized.patch
5555a4f8-use-ticket-locks-for-spin-locks.patch
5555a5b9-x86-arm-remove-asm-spinlock-h.patch
5555a8ec-introduce-non-contiguous-allocation.patch
55795a52-x86-vMSI-X-support-qword-MMIO-access.patch
557eb55f-gnttab-per-active-entry-locking.patch
557eb5b6-gnttab-introduce-maptrack-lock.patch
557eb620-gnttab-make-the-grant-table-lock-a-read-write-lock.patch
557ffab8-evtchn-factor-out-freeing-an-event-channel.patch
5582bf43-evtchn-simplify-port_is_valid.patch
5582bf81-evtchn-remove-the-locking-when-unmasking-an-event-channel.patch
5583d9c5-x86-MSI-X-cleanup.patch
5583da09-x86-MSI-track-host-and-guest-masking-separately.patch
5583da64-gnttab-use-per-VCPU-maptrack-free-lists.patch
5583da8c-gnttab-steal-maptrack-entries-from-other-VCPUs.patch
5587d711-evtchn-clear-xen_consumer-when-clearing-state.patch
5587d779-evtchn-defer-freeing-struct-evtchn-s-until-evtchn_destroy_final.patch
5587d7b7-evtchn-use-a-per-event-channel-lock-for-sending-events.patch
5587d7e2-evtchn-pad-struct-evtchn-to-64-bytes.patch
x86-MSI-pv-unmask.patch
x86-pci_cfg_okay.patch
x86-PCI-CFG-write-intercept.patch
x86-MSI-X-maskall.patch
x86-MSI-X-teardown.patch
x86-MSI-X-enable.patch
x86-MSI-mask.patch�- Adjust more places to use br0 instead of xenbr0�- bnc#936516 - xen fails to build with kernel update(4.1.0 from
stable)
556d973f-unmodified-drivers-tolerate-IRQF_DISABLED-being-undefined.patch�- Update to Xen Version 4.5.1 FCS (fate#315675)
xen-4.5.1-testing-src.tar.bz2
- Dropped patches now contained in tarball
556c2cf2-x86-don-t-crash-mapping-a-page-using-EFI-rt-page-tables.patch
556d9718-efi-fix-allocation-problems-if-ExitBootServices-fails.patch
556eabf7-x86-apic-Disable-the-LAPIC-later-in-smp_send_stop.patch
556eac15-x86-crash-don-t-use-set_fixmap-in-the-crash-path.patch
55780aaa-efi-avoid-calling-boot-services-after-ExitBootServices.patch
55780aff-x86-EFI-fix-EFI_MEMORY_WP-handling.patch
55780b43-EFI-early-add-mapbs-to-map-EfiBootServices-Code-Data.patch
55780b97-EFI-support-default-attributes-to-map-Runtime-service-areas.patch
5513b458-allow-reboot-overrides-when-running-under-EFI.patch
5513b4d1-dont-apply-reboot-quirks-if-reboot-set-by-user.patch
5576f178-kexec-add-more-pages-to-v1-environment.patch
5535f633-dont-leak-hypervisor-stack-to-toolstacks.patch
CVE-2015-3456-xsa133-qemuu.patch
CVE-2015-3456-xsa133-qemut.patch
qemu-MSI-X-enable-maskall.patch
qemu-MSI-X-latch-writes.patch
x86-MSI-X-guest-mask.patch�- Replace 5124efbe-add-qxl-support.patch with the variant that
finally made it upstream, 554cc211-libxl-add-qxl.patch�- bsc#931627 - VUL-0: CVE-2015-4105: XSA-130: xen: Guest triggerable
qemu MSI-X pass-through error messages
qemu-MSI-X-latch-writes.patch
- bsc#907514 - Bus fatal error & sles12 sudden reboot has been observed
- bsc#910258 - SLES12 Xen host crashes with FATAL NMI after shutdown
of guest with VT-d NIC
- bsc#918984 - Bus fatal error & sles11-SP4 sudden reboot has been
observed
- bsc#923967 - Partner-L3: Bus fatal error & sles11-SP3 sudden reboot
has been observed
x86-MSI-X-teardown.patch
x86-MSI-X-enable.patch
x86-MSI-X-guest-mask.patch
x86-MSI-X-maskall.patch
qemu-MSI-X-enable-maskall.patch
- Upstream patches from Jan
55780aaa-efi-avoid-calling-boot-services-after-ExitBootServices.patch
55780aff-x86-EFI-fix-EFI_MEMORY_WP-handling.patch
55780b43-EFI-early-add-mapbs-to-map-EfiBootServices-Code-Data.patch
55780b97-EFI-support-default-attributes-to-map-Runtime-service-areas.patch
55780be1-x86-EFI-adjust-EFI_MEMORY_WP-handling-for-spec-version-2.5.patch
55103616-vm-assist-prepare-for-discontiguous-used-bit-numbers.patch
5548e95d-x86-allow-to-suppress-M2P-user-mode-exposure.patch
- Dropped the following patches now contained in the tarball
xen-no-array-bounds.patch CVE-2015-4103-xsa128.patch
CVE-2015-4104-xsa129.patch CVE-2015-4105-xsa130.patch
CVE-2015-4106-xsa131-1.patch CVE-2015-4106-xsa131-2.patch
CVE-2015-4106-xsa131-3.patch CVE-2015-4106-xsa131-4.patch
CVE-2015-4106-xsa131-5.patch CVE-2015-4106-xsa131-6.patch
CVE-2015-4106-xsa131-7.patch CVE-2015-4106-xsa131-8.patch�- Update to Xen 4.5.1 RC2
- bsc#931628 - VUL-0: CVE-2015-4106: XSA-131: xen: Unmediated PCI
register access in qemu
CVE-2015-4106-xsa131-1.patch
CVE-2015-4106-xsa131-2.patch
CVE-2015-4106-xsa131-3.patch
CVE-2015-4106-xsa131-4.patch
CVE-2015-4106-xsa131-5.patch
CVE-2015-4106-xsa131-6.patch
CVE-2015-4106-xsa131-7.patch
CVE-2015-4106-xsa131-8.patch
CVE-2015-4106-xsa131-9.patch
- bsc#931627 - VUL-0: CVE-2015-4105: XSA-130: xen: Guest triggerable
qemu MSI-X pass-through error messages
CVE-2015-4105-xsa130.patch
- bsc#931626 - VUL-0: CVE-2015-4104: XSA-129: xen: PCI MSI mask
bits inadvertently exposed to guests
CVE-2015-4104-xsa129.patch
- bsc#931625 - VUL-0: CVE-2015-4103: XSA-128: xen: Potential
unintended writes to host MSI message data field via qemu
CVE-2015-4103-xsa128.patch
- Upstream patches from Jan
5548e903-domctl-don-t-truncate-XEN_DOMCTL_max_mem-requests.patch
556c2cf2-x86-don-t-crash-mapping-a-page-using-EFI-rt-page-tables.patch
556d9718-efi-fix-allocation-problems-if-ExitBootServices-fails.patch
556d973f-unmodified-drivers-tolerate-IRQF_DISABLED-being-undefined.patch
556eabf7-x86-apic-Disable-the-LAPIC-later-in-smp_send_stop.patch
556eac15-x86-crash-don-t-use-set_fixmap-in-the-crash-path.patch�- Add DefaultDependencies=no to xen-dom0-modules.service because
it has to run before proc-xen.mount�- Update to Xen 4.5.1 RC1�- Update blktap-no-uninit.patch to work with gcc-4.5�- bsc#927967 - VUL-0: CVE-2015-3340: xen: Information leak through
XEN_DOMCTL_gettscinfo (XSA-132)
5535f633-dont-leak-hypervisor-stack-to-toolstacks.patch�- bnc#929339 - VUL-0: CVE-2015-3456: qemu kvm xen: VENOM qemu
floppy driver host code execution
CVE-2015-3456-xsa133-qemuu.patch
CVE-2015-3456-xsa133-qemut.patch�- bsc#928783 - Reboot failure; Request backport of upstream Xen
patch to 4.5.0, or update pkgs to 4.5.1
5513b458-allow-reboot-overrides-when-running-under-EFI.patch
5513b4d1-dont-apply-reboot-quirks-if-reboot-set-by-user.patch�- bnc#927750 - Avoid errors reported by system-modules-load.service�- Add xen-no-array-bounds.patch and blktap-no-uninit.patch to selectively
turn errors back to warnings to fix build with GCC 5.
- Amend xen.stubdom.newlib.patch to pull in declaration of strcmp to
avoid implicit-fortify-decl rpmlint error.
- Fix quoting of __SMBIOS_DATE__ in xen.build-compare.smbiosdate.patch.�- xentop: Fix memory leak on read failure
551ac326-xentop-add-support-for-qdisk.patch�- Dropped xentop-add-support-for-qdisk.patch in favor of upstream
version
551ac326-xentop-add-support-for-qdisk.patch�- Enable spice support in qemu for x86_64
5124efbe-add-qxl-support.patch
qemu-xen-enable-spice-support.patch�- Add xen-c99-fix.patch to remove pointless inline specifier on
function declarations which break build with a C99 compiler which
GCC 5 is by default. (bsc#921994)
- Add ipxe-no-error-logical-not-parentheses.patch to supply
- Wno-logical-not-parentheses to the ipxe build to fix
breakage with GCC 5. (bsc#921994)�- bnc#921842 - Xentop doesn't display disk statistics for VMs using
qdisks
xentop-add-support-for-qdisk.patch�- Disable the PIE enablement done for Factory, as the XEN code
is not buildable with PIE and it does not make much sense
to build the hypervisor code with it.�- bnc#918169 - XEN fixes required to work with Kernel 3.19.0
xen.spec�- Package xen.changes because its referenced in xen.spec�- Update seabios to rel-1.7.5 which is the correct version for
Xen 4.5�- Update to Xen 4.5.0 FCS�- Include systemd presets in 13.2 and older�- bnc#897352 - Enable xencommons/xendomains only during fresh install
- disable restart on upgrade because the toolstack is not restartable�- adjust seabios, vgabios, stubdom and hvmloader build to reduce
build-compare noise
xen.build-compare.mini-os.patch
xen.build-compare.smbiosdate.patch
xen.build-compare.ipxe.patch
xen.build-compare.vgabios.patch
xen.build-compare.seabios.patch
xen.build-compare.man.patch�- Update to Xen 4.5.0 RC4�- Remove xend specific if-up scripts
Recording bridge slaves is a generic task which should be handled
by generic network code�- Use systemd features from upstream
requires updated systemd-presets-branding package�- Update to Xen 4.5.0 RC3�- Set GIT, WGET and FTP to /bin/false�- Use new configure features instead of make variables
xen.stubdom.newlib.patch�- adjust docs and xen build to reduce build-compare noise
xen.build-compare.doc_html.patch
xen.build-compare.xen_compile_h.patch�- Drop trailing B_CNT from XEN_EXTRAVERSION to reduce build-compare noise�- Update to Xen 4.5.0 RC2�- Update to Xen 4.5.0 RC1
xen-4.5.0-testing-src.tar.bz2
- Remove all patches now contained in the new tarball
xen-4.4.1-testing-src.tar.bz2
5315a3bb-x86-don-t-propagate-acpi_skip_timer_override-do-Dom0.patch
5315a43a-x86-ACPI-also-print-address-space-for-PM1x-fields.patch
53299d8f-xenconsole-reset-tty-on-failure.patch
53299d8f-xenconsole-tolerate-tty-errors.patch
5346a7a0-x86-AMD-support-further-feature-masking-MSRs.patch
53563ea4-x86-MSI-drop-workaround-for-insecure-Dom0-kernels.patch
537c9c77-libxc-check-return-values-on-mmap-and-madvise.patch
537cd0b0-hvmloader-also-cover-PCI-MMIO-ranges-above-4G-with-UC-MTRR-ranges.patch
537cd0cc-hvmloader-PA-range-0xfc000000-0xffffffff-should-be-UC.patch
539ebe62-x86-EFI-improve-boot-time-diagnostics.patch
53aac342-x86-HVM-consolidate-and-sanitize-CR4-guest-reserved-bit-determination.patch
53c9151b-Fix-xl-vncviewer-accesses-port-0-by-any-invalid-domid.patch
53d124e7-fix-list_domain_details-check-config-data-length-0.patch
53dba447-x86-ACPI-allow-CMOS-RTC-use-even-when-ACPI-says-there-is-none.patch
53df727b-x86-HVM-extend-LAPIC-shortcuts-around-P2M-lookups.patch
53e8be5f-x86-vHPET-use-rwlock-instead-of-simple-one.patch
53f737b1-VMX-fix-DebugCtl-MSR-clearing.patch
53f7386d-x86-irq-process-softirqs-in-irq-keyhandlers.patch
53fcebab-xen-pass-kernel-initrd-to-qemu.patch
53ff3659-x86-consolidate-boolean-inputs-in-hvm-and-p2m.patch
53ff36ae-x86-hvm-treat-non-insn-fetch-NPF-also-as-read-violations.patch
53ff36d5-x86-mem_event-deliver-gla-fault-EPT-violation-information.patch
53ff3716-x86-ats-Disable-Address-Translation-Services-by-default.patch
53ff3899-x86-NMI-allow-processing-unknown-NMIs-with-watchdog.patch
54005472-EPT-utilize-GLA-GPA-translation-known-for-certain-faults.patch
540effe6-evtchn-check-control-block-exists-when-using-FIFO-based-events.patch
540f2624-x86-idle-add-barriers-to-CLFLUSH-workaround.patch
541825dc-VMX-don-t-leave-x2APIC-MSR-intercepts-disabled.patch
541ad385-x86-suppress-event-check-IPI-to-MWAITing-CPUs.patch
541ad3ca-x86-HVM-batch-vCPU-wakeups.patch
541ad81a-VT-d-suppress-UR-signaling-for-further-desktop-chipsets.patch
54216833-x86-shadow-fix-race-when-sampling-dirty-vram-state.patch
54216882-x86-emulate-check-cpl-for-all-privileged-instructions.patch
542168ae-x86emul-only-emulate-swint-injection-for-real-mode.patch
54228a37-x86-EFI-fix-freeing-of-uninitialized-pointer.patch
5423e61c-x86emul-fix-SYSCALL-SYSENTER-SYSEXIT-emulation.patch
5424057f-x86-HVM-fix-miscellaneous-aspects-of-x2APIC-emulation.patch
542405b4-x86-HVM-fix-ID-handling-of-x2APIC-emulation.patch
542bf997-x86-HVM-properly-bound-x2APIC-MSR-range.patch
54325cc0-x86-MSI-fix-MSI-X-case-of-freeing-IRQ.patch
54325d2f-x86-restore-reserving-of-IO-APIC-pages-in-XENMEM_machine_memory_map-output.patch
54325d95-don-t-allow-Dom0-access-to-IOMMUs-MMIO-pages.patch
54325ecc-AMD-guest_iommu-properly-disable-guest-iommu-support.patch
54325f3c-x86-paging-make-log-dirty-operations-preemptible.patch
54379e6d-x86-vlapic-don-t-silently-accept-bad-vectors.patch
CVE-2013-4540-qemu.patch qemu-support-xen-hvm-direct-kernel-boot.patch
qemu-xen-upstream-blkif-discard.patch change-vnc-passwd.patch
libxc-pass-errno-to-callers-of-xc_domain_save.patch
libxl.honor-more-top-level-vfb-options.patch
libxl.add-option-for-discard-support-to-xl-disk-conf.patch
libxl.introduce-an-option-to-disable-the-non-O_DIRECT-workaround.patch
x86-dom-print.patch x86-extra-trap-info.patch tmp_build.patch
xl-check-for-libvirt-managed-domain.patch disable-wget-check.patch
- Xend/xm is no longer supported and is not part of the upstream code. Remove
all xend/xm specific patches, configs, and scripts
xen-xmexample.patch bridge-opensuse.patch xmexample.disks xmclone.sh
init.xend xend-relocation.sh xend.service xend-relocation-server.fw
domUloader.py xmexample.domUloader xmexample.disks
bridge-vlan.patch bridge-bonding.patch bridge-record-creation.patch
network-nat-open-SuSEfirewall2-FORWARD.patch
xend-set-migration-constraints-from-cmdline.patch
xen.migrate.tools-xend_move_assert_to_exception_block.patch
xend-pvscsi-recognize-also-SCSI-CDROM-devices.patch
xend-config.patch xend-max-free-mem.patch xend-hvm-default-pae.patch
xend-vif-route-ifup.patch xend-xenapi-console-protocol.patch xend-core-dump-loc.patch
xend-xen-api-auth.patch xend-checkpoint-rename.patch xend-xm-save-check-file.patch
xend-xm-create-xflag.patch xend-domu-usb-controller.patch xend-devid-or-name.patch
xend-migration-domname-fix.patch xend-del_usb_xend_entry.patch xend-xen-domUloader.patch
xend-multi-xvdp.patch xend-check_device_status.patch xend-change_home_server.patch
xend-minimum-restart-time.patch xend-disable-internal-logrotate.patch xend-config-enable-dump-comment.patch
xend-tools-watchdog-support.patch xend-console-port-restore.patch xend-vcpu-affinity-fix.patch
xend-migration-bridge-check.patch xend-managed-pci-device.patch xend-hvm-firmware-passthrough.patch
xend-cpuinfo-model-name.patch xend-xm-reboot-fix.patch xend-domain-lock.patch
xend-domain-lock-sfex.patch xend-32on64-extra-mem.patch xend-hv_extid_compatibility.patch
xend-xenpaging.autostart.patch xend-remove-xm-deprecation-warning.patch libxen_permissive.patch
tmp-initscript-modprobe.patch init.xendomains xendomains.service
xen-watchdog.service xen-updown.sh�- bnc#901317 - L3: increase limit domUloader to 32MB
domUloader.py�- bnc#898772 - SLES 12 RC3 - XEN Host crashes when assigning non-VF
device (SR-IOV) to guest
54325cc0-x86-MSI-fix-MSI-X-case-of-freeing-IRQ.patch
- bnc#882089 - Windows 2012 R2 fails to boot up with greater than
60 vcpus
54325ecc-AMD-guest_iommu-properly-disable-guest-iommu-support.patch
- bnc#826717 - VUL-0: CVE-2013-3495: XSA-59: xen: Intel VT-d
Interrupt Remapping engines can be evaded by native NMI interrupts
541ad81a-VT-d-suppress-UR-signaling-for-further-desktop-chipsets.patch
- Upstream patches from Jan
540effe6-evtchn-check-control-block-exists-when-using-FIFO-based-events.patch (Replaces xsa107.patch)
54216833-x86-shadow-fix-race-when-sampling-dirty-vram-state.patch (Replaces xsa104.patch)
54216882-x86-emulate-check-cpl-for-all-privileged-instructions.patch (Replaces xsa105.patch)
542168ae-x86emul-only-emulate-swint-injection-for-real-mode.patch (Replaces xsa106.patch)
54228a37-x86-EFI-fix-freeing-of-uninitialized-pointer.patch
5423e61c-x86emul-fix-SYSCALL-SYSENTER-SYSEXIT-emulation.patch
5424057f-x86-HVM-fix-miscellaneous-aspects-of-x2APIC-emulation.patch
542405b4-x86-HVM-fix-ID-handling-of-x2APIC-emulation.patch
542bf997-x86-HVM-properly-bound-x2APIC-MSR-range.patch (Replaces xsa108.patch)
54325d2f-x86-restore-reserving-of-IO-APIC-pages-in-XENMEM_machine_memory_map-output.patch
54325d95-don-t-allow-Dom0-access-to-IOMMUs-MMIO-pages.patch
54325f3c-x86-paging-make-log-dirty-operations-preemptible.patch (Replaces xsa97.patch)
54379e6d-x86-vlapic-don-t-silently-accept-bad-vectors.patch�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������� ���
�����������
��������������������������������������������������������������������������� ���!���"���#���$���%���&���'���(���)���*���+���,���-���.���/���0���1���2���3���4���5���6���7���8���9���:���;���<���=���>���?���@���A���B���C���D���E���F���G���H���3���A���K���D���M����������������������������������������������������������������������������������������4.12.4_04-lp151.2.33.1�4.12.4_04-lp151.2.33.1������������������������������������������������������������������������������������������������������������������������������������������������������ ��� ��� ���
���
���
���
���
��� ��� ��� ��� ��������������������������������������������������������������������������������������������������������������������xen�html�hypercall�arm�index.html�index.html�x86_32�index.html�x86_64�index.html�index.html�man�index.html�xen-pci-device-reservations.7.html�xen-pv-channel.7.html�xen-tscmode.7.html�xen-vtpm.7.html�xen-vtpmmgr.7.html�xenstore-chmod.1.html�xenstore-ls.1.html�xenstore-read.1.html�xenstore-write.1.html�xenstore.1.html�xentop.1.html�xentrace.8.html�xentrace_format.1.html�xl-disk-configuration.5.html�xl-network-configuration.5.html�xl-numa-placement.7.html�xl.1.html�xl.cfg.5.html�xl.conf.5.html�xlcpupool.cfg.5.html�misc�amd-ucode-container.txt�arm�big.LITTLE.txt�booting.txt�device-tree�acpi.txt�booting.txt�guest.txt�index.html�passthrough.txt�early-printk.txt�index.html�passthrough.txt�silicon-errata.txt�block-scripts.txt�console.txt�crashdb.txt�distro_mapping.txt�dump-core-format.txt�grant-tables.txt�index.html�kconfig-language.txt�kconfig.txt�kexec_and_kdump.txt�libxl_memory.txt�printk-formats.txt�qemu-backends.txt�stubdom.txt�vtd-pi.txt�vtd.txt�vtpm-platforms.txt�xen-error-handling.txt�xenmon.txt�xenpaging.txt�xenstore-ring.txt�xenstore.txt�xsm-flask.txt�misc�crashdb.txt�vtpm-platforms.txt�xen-command-line.pandoc�xenpaging.txt�xenstore-paths.pandoc�/usr/share/doc/packages/�/usr/share/doc/packages/xen/�/usr/share/doc/packages/xen/html/�/usr/share/doc/packages/xen/html/hypercall/�/usr/share/doc/packages/xen/html/hypercall/arm/�/usr/share/doc/packages/xen/html/hypercall/x86_32/�/usr/share/doc/packages/xen/html/hypercall/x86_64/�/usr/share/doc/packages/xen/html/man/�/usr/share/doc/packages/xen/html/misc/�/usr/share/doc/packages/xen/html/misc/arm/�/usr/share/doc/packages/xen/html/misc/arm/device-tree/�/usr/share/doc/packages/xen/misc/�-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -g�obs://build.opensuse.org/openSUSE:Maintenance:15230/openSUSE_Leap_15.1_Update/302bf22eb726e93ad839a22e33b5a81a-xen.openSUSE_Leap_15.1_Update�cpio�xz�5�x86_64-suse-linux����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������directory�HTML document, ASCII text�XML 1.0 document, ASCII text, with very long lines�XML 1.0 document, ASCII text�C source, ASCII text�ASCII text�ASCII text, with very long lines�Algol 68 source, ASCII text��������utf-8�6fba4fc22ddb7b461a53d32d3942d360f5731258f3706ff18664c3d3b1c24147���������?����p����7zXZ��
���!�����t/,]��
�cr�t:bLL��8i�Vs[#bv�)RItVm2E-*e�G��m*�֍,'�*迤=|�THz�i>7��ϣc^�.!W,OcZY띔J��[.w`ױd/qjZ#hjg��QZastY;̀�~.:hw>&S&Ud�f3m,� J�S˭v.Ɵ�kH�vD{�x=$[2Z
��圱;^C�$>I�|D6sY�|@h~UR8i
�Tm�Y(M&�A9X+1�CɻXa&G5xX7-(w���aYJH3IHeR�a-6у^�^o]
1�-w�FWS&(r`8aR
�yu] �_�{or�1lF-�.0i�cJFxή�IWZ5�{J7?*X�+Y�ƌ}sS�VLeJ8w�f�r�Iܺ(F鄎�!�ɴ�tB�;V&ۀ\8�)�4
^ O\V�]ߚԏTlsb�"�
7ei(kk]�63"4
|*6Cg~ZN1k 'gh�ZW5�W/k{ W~ǁ^N0:�B't]:!�SoYo7��A�Z�Y� L$Ïֽh>YX{B+込1�.E@��KKU�:-�Jhu�Z M����$�ϰߔC~TG�\@X
�Nʦe�@~�]
�qU�V7� szetA"M[G
�n'LJk���=b� 4E+Ԗ�뮎^.�(Ww#|rxN>",m7�RAP}cle!y ߞ�HO,�Unj˛{Nk'#ו�*jao9@�uz5�77-[ 0·%j7OVOHQɔw�5�lRu<�듢?@5GC�7/ V1
+vCݍ�S>rS,=TiCb�A�9;创xfVq�Mt\/�>ERaR8[:7&[-Q՚e#�z�}Fz;8dڹ�`De3:$Dy6�g��\|=��^GL�Sn�X`'߶�H���r}Ѡ,�͛aʧab�;&>s^r?+8UPBǐsXqPFWB�}=N\^�C&ЦQz^�\i��˥�<۪hvBw]
��]�L�L5h2X";b1VM]n�73vC\T:1 S')�2
kǒ|����lzC?Q*ӱ�-�sؠ9tM~l�Z;�Co5
�Hh ghF9�(x1'/��T�=ڝnCy_�l�IoXS��Zeݚ`M?5�HA�+e��9J.Gjn3T؈wE
SҡdTN=�� �lqp�H���c7�3ےOpٟ?6}$ONv�;^2"�_2�����TG>藩
��J**RKu{||bgd(esL(ڣ("L�}1Xu/AH6l%h�2�'y�Dc0�6�6eU7�m���z1|.cO*�2�3c(-پ�e"pX(0nEP>��FvcKi�lΘ��wcmn�hwa�M� @)\LG�;֊k�!X�D+�����H��M5U^9vGDF\Μ0]5>ktT3f�枳W a�`r*_\O �zp��Vݜ^H'�Q�͵}]A�HJMG�ڱa5Ph�k1JX �.P�aކ�&�k���3U-3v$eoq(z!mɢ|!4'�-Ab>��jy�H�s!W5xݎ|,�~��]1߿Nw.E�h"m�Qv[�rbálU�FQqER%�': qA0o."dUfh\-FRAzO"8+�4�;P&=EZc#�N\4}m1sV�(�VCN:Iw$��8a٢=}+ܠƍ��~\r�B,#k؇ernLکbQ�rM�8B3}E�~%�n� %Y[ݙp�oGl{�y�
UԾkI/�x3ZM�lzIZ�O[�<$ K�d�]O;U(K[1By")��k`(o\H%T(c��*p>s00��`]����J�%nb�2>5o}Uw�9va�츻3m?$0pd��j �z@=P�\0[524�\$���8G>i�BX�U1�`���U�{d}�{,57W0�JN�\�A7~5y&sv��@|.o&�zp�2�(Y��ͿjXގ8{GjW8 W,��N3%Jf/zI\�@"����jf:��}�֕]ڨ[7p|K�L Wwu
_QWg�F�s,:j-':
�s�m�рI�A�;w;r&s>�'ץT$g`�gcr't��ؼj6�)J�5�լ h#\#�2"�!���U%['1CP?BoD)�>tʯ�9
_��5.�1"!IJ|wܪ9wA��Iس���w�8LJ:c]YzU��Y0Q)I_^^^}+�9n"،�v�9#*CA�ڛ3<.NN�Yz���B)A�F�lxIЋܪ�vI9ˬ�s�;vv�II�$yÉ)�
��`oފ)�^�||�g-lp�y�"g[FHG^N[2�lG#"3xÁLNiK��ɲrf{J
8+jkNE�7b.!
ۛ2gߡ)5�06��v�ϕUe閞-4Mv�2�zr#HOǗ�G�[/y��N9O�l'*cwzQLn�=�5F�A
dEJje�H?�r�h�6��XnUT�9�qNg\ѧi܍ ~�(eN;g]D76ME+}'qʙ@{rڇ;*-�_J*@]6GN6A�{ a�T?PCliIG�7`oˍYāMŐy(�MP �fXj@G]H �p�r]W.�iYpHH7}E?�&:$+σA_szn:y�/�>L�t}�i�Np��\�/�gD��0(l(!ǚre (AAPz]MAK>C;"!�4ߺ2.^k�JJMT ;w;��NT�Cɉ<9챃mq�g�b�$/B�qo3+=*o 9ş{&���KQ@� o
��jY�A9&&i$sK/t{+�^h���wK��t�:W)�Xc"�Uwg��{�V��l_.覹80P) `y?�ÔNJl1fo�E@}?�x�_S%Y��
�Lv�&Ꞁ�m��`�vȮ{? 5?3$���C�p"xx1j7_9�+�}|�u{'�0��odaj6s��}�}M�O�[r�[%�6x1J;I�8��p8GLSS\r(y�_iiGd#NP�_'q}3�z��M,0*�. фkAT/Ig�ds�V0" ]��$+볌
WK\[��$잗�bCdI�Ozw:=C�F�/��s6E×B�;QCcXw�87>A3�A&\|W9��ZY~Qx vR}E0�aK�eyuV"Dq���L߮jޖ!�Z�d}��$n�OR�P?1HV9D���n;�k���+쬙�OzAgx�'HS�E\=15[&Dmkx_[jOG?˝e�qSr]�#�9zk�Uw)uH9y]$?r$SQAM�A?�uPRxƼxMb3ARKb@�_@n/$)0�9��o`mn7(Aw2C*۾U`^_s/�-J�S�s̝蝈L�D�YuNͫ?�o&1A'u'q@Bld�pX/=)�/w!t�8`;l"~�|Ug~���!�6Sv�3F:Y�jXL��)�GD�0�ǣ~eFw�MQ-lYM:i~�tePv44ӫ�oS||
�qs^�'>_O�~,GGMV(���,�Hx�ĕôS6��@�{1"RLnziYRf�'�;oK<%#G*Ã<=��*�;$/`}t=Y�)�hU�uE$��fF�\�kqE ߠQd{Ñ<3e[mU��_K`7!<�̣qMg7Cr4f6cHL�BիAz�B6�^�:�:��E�µ�
�\�O*m�r"4��
s`[{ʵNv8/}SZq�S9o�arܜ�&Q]�J�\h%\�E��� g`_yCX[{q( �ͽ!�\n9�k=xϫx9a$�>�˗uj>��;��ҚٴX���peSH�^|Т3�K%JH}3ͻ�-R#J+]ly�*e-A5�aYH���{�P,�b
@1l6�JE_A�4mu�q�r�1c3E��V�z�B�
A�LQ��MJ�ŬPx{�4�/�X~�I��&�u>|f#�n9]*H�'3.yIBR�vnt�K|Pl�|`�v#lU��MFY"x;�fh5?"1�~C�j@.�K0Q+r>[ ?N =m#qp�/ڎd��]>��l�ۗۀ]@;�Y��tzD9\Ԍ�FY,Ky�߉%�G�"`J��KAF���8/�u%]g̐�P�V,o�`
G
��9-iEDaF�\A8�! +0%:=� �=UǞl�,ˉxd9 �XՀ~@k_��iq?��G�9<`9;!�)s)�<�l�:,/�Ç�iѡ=v�.}&-!�Ō"`Z�؋Ip@� �}:l
BDS9�lP5S?G4 � ]�6�ڏjkƷH�- &M=x|Qd�R*=;iTԄbYy��
ͷ)&h裄H:T4q
��&,C�)TDjk�qY�ڇ:�ԖE܆m1s),2LKyCD1[kCGex�p#9Ι4�ude��˪> nr�[�I=;ڗ�Nv>C:�s5` 7 _D{P�1p�OZ*n�l���U%ç�uP`�r!jWG�0��E�#O9X�Gl*�,�}?,^99z�$=g vdԼ4�
E9
%t"=9�
29uD~3[M��bij�)6˶``
!�M�q�ʇh�~�WV�'ɤ{7O�5�p f\[Tfay'\8~z��,(�q�wu�3��4~#0z�*iR"is�zԟ��Pn3~iǼ1�� g
tfLGOr]=wBh~�cw�&b4nR��&NT�~֝KT9b�S*�3Gh(��DrhAd:-�Ii2XB�U(�?Q<�1�%>`7n�C�(/6M?�`p
���nqV�vy:�# b}Gk%O:;q�HW�f~Ί��:G,:���vi�X�v:1d�ׯ9hfN�e^�or�6�Md"j��tں0XP�N
;aOx�q%bu|l.`C-�qV�[ r$Rb ~I5cWHВ:hQ߈��|�S#-�>e�\l~�k鲿�썊�,T+g]c�6s�}ˏ,qL]��M/M(��
iBFs.��8]>Tt(\i9;EC�c؇hRVe۩�+Gibۚc
y/^$[�Z,=9�<閮P�b}�[|"/�{�)8A]Z爛ep��[ьd�Yw��K�0VP��S���~ʷ��!&n0z��]R�2[ l@U�ͨ"wi��i��Ok�Ӯ�h7UdVI`9{9��׀Qrq{>-`c�eET+Ϝ�2|�O6Zg�8�|b|m9m�^B ;Y�$�0:��Ne/],V=}A<�@Oa1l�l6�\a\!vW=�%:},0�(j%q<�c;ءwRz[דAK03l]l7Ǖ"=o
9s>x3*V!�2ػa|5�;#wH�;4m2L
j�|7%[)p��GUbq�7ӋZmJwJ"r�D�$PoIZH�WUzVgQ�:--cjq�0'K!�
U�HyH��zmci��Cu�Ќ;&žj�6S2c�plﱲԤ�Oi�t+Mcv禃7t3ċg0H2L,Ir�
r:G�4K̨ԔyLTYly�t��}u��Hq}݀D�5�$3>>^E�)yPH\W4k
�[Ywjp+Mp7נY6P-OҔA�h�fM+[�o>�#H0@~�TG.>uՂ�.^i`@��V�VPbVEf'f-�a*�X�^Q�6)OgpB(/(}V�VoZ�8�xM�{p.�:N4�U!�Ք�ӸKTmr<�q���ٟnXP��N\eD
}�a~6Bz�~:3v�م%YJ�ܽ}{�2�!pC5ڛ`-&|<|-m�74�ˋ}�yX�0-�@B>DǶXT~
+TTa4�Ѣb6Oī}<��72CΚ�)Pl,*v���Aj�N{m�0�Sy�N.P�,g�NL�
=K�G_?�j>
1_�bw9E{JL٬��t35��ᣚ�MZF%�aOp"'�?7^T��K7�82+o]�ŐC}繄��vK;>�)n=Y=Z8F틨,Ti��G0>WC�CVS�g*
�oה%�B{/"!LJ~W":X͒*I� �lȮwX&��pF=�
4[U�#U�,6�K�y�XuR�_`E�@١�d�a5�ǂ(0K)s�cQvS>;x郊�-Uu�.�3A�n�&rcl&}c@>9L+3��F:�MeQ3/ѶԠӑ08w�Y�-,V�PR*n;}bi��X-fB�k؊VfWr#}ädwN�h��$��Ma9D=f�3��U7lMy
T2R.qO~;wM�|gd i��6b}�aㇻ<@~V*TrGQK 0d*g��/2Igh�IL6�=|(P�|wuC(�|��Ğ�WFC-��/�Bw/y��<^~/#*�S�iɧ�=�/��#2{Oڧ��
wtasʋLLN=F/jGC5nƞ2)ayy!@AAt _R�~?��7�]9`찠zpcw.\�~&��X){]e��F ��KۙqY`Ւ�Tng5�n
�L]ҙ!=]yLB)ٜ >z-4(�}I)+ȨE�ȚMN,D��9a?ٵ<ʓ'Q�����e�:-v�=��ʹ�TOQ��x5z!>�z9p��0W��`h� \M[Z3SlNJ O?n܆4�Nx:qsצ�Ҁ�
\�
v�c~AKɿ_�t+;\KLO�rMz!܅FP�/�?vBS�|Ɗ9?��%�9`�Mw�d\tQ]j^��x5/;t
*9>]f!Ԓ)�P��s�nF!wP¶냷~u��/voL!8Hw�-fvy=*¢D�ll̝pbfHހ@z~L~,�OH-??J:�a8�4tdQQVqg(R\B41r%�v7VܕV=jZZm[<߹)jLQ�}Oxhc*z=F/7d�6y/�!
>q-o%�!mY�X�g�[�uG}#�o;{�M.H��#gXW;pW%I0�q>ԀRG8� �E;s�f�I\�0S� Ŗ9/�$/]��UBK�jv臁?vi53N'Y/AD�cu}]�Dك_ԏ 7V7Bmk�DZEF"{�-Z@X-)KA
hX���i\4d��~)M]y�5k�m�Q HۃI�iP_67�xę1f3�qA�Epi텭{�V܈C��g�
�h-qjFG�Fj5�Bj7c؛�or^ށY0aAynmJր,��g?�CTfI*ҩ�Ⱥ~,\pku�O�$|�c
_�b߰'ҡo=_@X� Uٻ�|mGYmȂ�Y=9ͺ/ѫd�X�05h
52e
.�c��/j6P)G-yu~�xwVK�$C��}�ԇ " \#rʽ�&}.z�a^UV:=G.IY*0K�Hgu~b{o*MigЀ<��@�)pR�Z517�gKd��_=FHDb?c�:[Ѹa�/~Y櫚zd
�'�ԓOWoO��@#lUn,
; $!ކ;h�nYrb!
r,.bQs�n�)v?p8Ygl�w,ko)OP5|�� =%�v3G�ϕ{W4oo~(X�:6Tdb�sD,:ǽd!q2Ly2UZyIuJQewg.فp-s JTA&x�h**�0ocQsv�6W��KWi
9Fs4�
dUg�RH�}�T.ϗg�JYEs�2_�wwn/{?Bv6kƻ?uI}X �9J!@Dc�p7�keu�
ѥ�Xj4ՇGe��9Ё͓�d��Kbhy,ꍂ�`J1Fb
.J$���fyz3b�?bn��B�b�r�x��0tg1 �c��³�͏ђ�^|2�t��:DP{o'pfmu!n�p.'}�d�ۢx,K2-lKi&н�XWYo���!J�
@EΝq%�fԵ*�캘HnfbuW
+ƭqhol5sE�8
1ڹyOS��М~U\Bo�gq?�0MΑŌ��q.Lp3+�bGŸ��&m��E(J��`KkjV
f9'N>z�ÒO�L^�|Tkg�{YW�B���eej����CB_� O5��*`>lqT�6}�"eD`F�9�D�)�r T"�KƛKcO(.u�`: \n)ԉc�/EhZH@}ԡE�A7˳ńγ�n_VBiH]@qQ44t'
n��j�Jag5�R&`:)�Fr4'�`V
�Zj!�Y�VBTҾ`�?�\7(H8�b)z�-�j5jL|zǚ�oO�Z[!nქ�j.|/P�� �TI�nn^1�+-y�<1�D[k�kֽshL5S6��6a�r`�CKr�>_<{o�?C��z
[��F*�bg�KҴ�AȣQ:f%f:J�
7Us�[�Jl"Ҧ=FZ�r�;PEesQb\k�A1ht�q4��vs'*U�h
�J/X)S#�
I��(+]}?ߙln&�<$J!:8/C�x
lmܯo..V/�:��_��~LabiN�Fn��X'�r~8Q�93�FCҥ��9vqNC�'}�"�Fw�#T�7ca78�q8~.�<
[q�f0vZc�$7rDh�C02΄7.��<9�s!9��N�5L7'cƗ)U�n/wP
$OeU=�5Oҳ,`ND�=�,(D:D)B�W.1B- ,U��l37Xy.�I=? l+�;a��ۂٷ��9 .{C�L�s���
1�D6m�8c`߈X�r|0k�}sv����Pvr@��03,
4i3rRS~ױ�Goe�w
A
�g){8Z:QX/HAR5Fp�y}�H
ڹw�Ǘށ{, ��8"Wsg?��5qhi�g\�ݷ\x[tpl�*��$P��d��' ��#�Q]wĽ7pԒn��'¤�F>Byòrs�˷�o#�Jf97
:URqB?Bi�W�Q�t�1kߜ|g�B#�.?uVBQ9Ʋ
��r��mAP@Y5_V�7Q#�s7�YڒuC6�J~Y|��<[M��5%=#b�W�ł㒠�̇[MԒt@uQM%j�$�Eo;D!dpv\rخ3)��4Eje̔ݡ:Q�ں*�[cX674Ϲ�#`x"͍{b�O/>Q�PQrV��H[U nP~�p}�/okNȼY�e-Gn~i|bW�,:Q{b@X5\���;Co,~{5G+9�&�Xd{8=gi�7{�C�,d}2MM4�CoSf@q9�8&@ˀuǭ iQc
x-OAjxH�#�C^^7E;�j.�KYw+Y��2C�r�W}7�N�r N?�G�d9�+Mk
Q|�M�:cf;��s:���Cn;�x%զ/U12w+ob=( !I�*O4 Mt�A�(c2g`F;Z|ˌ,JyKaKMs�[FK�=@(8� ��3=B"flo_NW[��ēQG�]6,�~�uE'�'F�g�OJ&7Ҵ%~ߎǯ+�f�5wS��H�\��cE�4aB~i#vLvOzU5�'
Iz�٪X:5�Xt�nH�F�C)�|y/1N{1�\Me�
-Tczti7d�dHg+ &�C�1^/#Eɔlʾmb*n\C}+Vd]z�:�e^X�r0lYjh� �
V4y;�~�]De�TQ��psMŵա|uq $��gú`�u� 2P�kr1ȿ&""JR��/Fsu�QԀ[CG6�]t�eB�Jѵ�!
�P?�qġY2Р<�cu7��P�Zw�ҶOh�g�w�й&`֤�8;�}qL:gv���|P;s6D/]D�K���1�9vrv\@�ҍt%�̲r7 ՜Iw5:G(>H*c���șhsYv�5>RPU�pɠEv���瘛B˵X�f@~wd)�g�3�5�Qe��Bm*�q��5* �D5�UH%�d�9KYfxtI$
~[5dz$Ph��
#Bg�8\a�[X�?Rf�>xC��ب1b֩�Б/
M]��Nrו)V)>�1q��L㓲U9;ٹTd)��{���%%IF.�/��Տb-2Io�gҫgd?�C�(=SF�/*!5@k�ɅmŞ7��\cd��V�=}:
c@w.
�G慪&Ò9kZ;j(7r�S
xL{1S] 1�y�.+&�Y7 'Gr���KXg?�٫;E_WXGK`҅u~0��la'�c�Vntmʶ��7@'�^>�/gم,�NjR˯ll$�F\�Mah*j5cZ�B,�%�m#��K�`Kr�@7;A6.;#xAc3u��\]zChGH��Tk�)���CsԷ4/zL�D)}GM"��wN5nl�!/Mj�Zcc%(�
�;�^)L1Y,B#�k{��:JX�\L:�}�-+B =8r|QA�x�dC���|q5o�/n2tSB�Y҅Sޭ�Iۼ�J1v]wV_./!hWex<�ͻnŘťO[&E0)}9R
ޢF�AٶK��Bm,8��
�V1ͳaҙru�]Y�toHf?�>?a
O%�9o�gfv�S�I!T�T뀨\�<#�B'snşOI<�8+M|pp?�E�S_Y
Ym ��Krg0dJQ���UuV̚�_VLz
�`D^\C7�z0�(�FCqC
k{mu5��>G8�`<��^!<�ХNV�20 �X�uAhow҂Էz|Kf
�|�fbZ�mL{1Fz
��8p\$Z]l�W]v�2�4y颕�XJ%6OX̮4]-NpI"=hppP*lل�zk*/J.(2t!��X?=:lhۃ�R]z%LKا&WK.ug3"hX5�l �m(.T܈t.T㓻`X y�_H�R�c+f~Fż) f�KE+*ڋM�ơ�6��]#K'Ɩ .G`K\;�g8�idXwN&\Z3GU[W3t(G�H2=Hs
3h'��HVsjvK�Qq�%G
c98�i�h�-3/~�E_/(hD7`PwIk�(Q��8
.qbv�` ڪi� ֤�uY�7ۗĖcʂ4h�%Ж6ex�đgSj"&PuHH�̀^$)t*`ۆ^?C]Tb�ibt6"�[O0��eb*T4�d�aϲ'�cP�Bw>4
ٌ5�O�3�%>�OupP)�:A9;:LJ?{S�4<�ؚ5,Q"oޠl|3HJ&�--(S� ٮO]�H�tԺ) Y>Vۭ�ܣE%�b5�9E3�-#⣗D6ٛ8QW�}(o�!H5N(ޅjBnB]Nh\#vF�p�!�݅�J�.R�딲*&
@k�,R�.֢i�%WGYrI�@T nk£pjv(p�dbƶ&=PQ\�ڒT|KɏבZ�W�lM&t�fm#ސ:\8ܔ3$绎g3bǎ�
��%D|;L�h/'�Oet�f��Q%c,m�\K9S�#L�i$piu�L�'�2�JxI\ڀkDH _]�3oK�lL@�z�*�hoZq�F�9yutf+�J�0-ڐnUXGn窾8OL7j��>Lmn ��CLDzF97pnQ����>I
s�&Hz[�\
Y�e"�&�3Z'�Z4{91gG^amb-qK'79h<_-��jL�}�0AUyҴ5 $K0Fٷ+h'��N֞ߚoڰXIfVz��V~ 0Դŷlڷ-?ۓҎ2���}G���gёN tƟ=wy䕲qxAh{E>վߟ�ql�P^@>HBՁr24��S+3}?C*@2*X8�`1ĵj�<�iYzG�:+�cTslr9�xYY�kUw�[kx4u�LS]B�q~JQcZQ93b�� 1�ħL<�AĔ "%,�?�iI�wM�f���ϊ�Oj��X�VϳY�ܘ�:$85L�I#+0ِW�68ˌs���|�,b3Ha�rv�O��ψĤhd4@S�4�ˈ窅.!ٽ|O+gܪ(ā:YU��šJf+zJd q�2](���:%Ba\Gt:�2G�QM�l|v�8��H�p�~ KR�gHA�+�*NbW.E {;9._eHP+�Hl^G�UN)_Y=�Ƈg8w
�U#*�H�f)o"(R�xS!e�e?���WS�2(!�O�{�:I[(7�3E$L4��.�=s܅]o_?b%R:�:m5LOy9MMΪ-
F(?�y�07Mz::$'+Z�5`�YQ�l[I<�XRIJ��� ES~���t3�pd b��r
u[? A0�n*� 57d�
kOMs�+I*S
İ�|]1�ÑO"�
4�l]D�4ۇY��WEH�ƴ��ݣp;Aw4Fۅȓ&Ya%./�Яz
�H_={dVb�XJ!fujK1bq,+mʢJ�c|=�Th�)1}H��@E-�^~"N�aO��(6�ÿnJlfUKTէ{*o��M;Z5Z҆-�0pU&�c#v7y!�mv�t�eW�gZhN~"�ݫs՜�^߫HB(2LG]/u\�~q^:��k,'�}Rs�2K.�TϡfvW
PM�/����;|�GcM] �f_[�M�X���FtV��W(W9{Ǧ%�
=QX]*Qxv[�UԯzoRVp
R˟Tl]�~ͤ2K��HLvaEt0}{ex+�B�1�tL1~,32dluF&�%LFElY�No4�ScF��iHHs ho�{V_d�cD"�ײ|#d�]QW9+��_F%s/��yQ/I.W?+8hπ��1�4���p��c�7M~0#Ĭ&j�%0fUo�:^p�$Se�&Jsm�1?_Bsp'g1`
Wa9�F�"�{Ð�>nh3�Q�ҀQng&`?.�����8���;s#|ch��$Y�ׄ�>��;Y�Gb�f�gXzSB:|Э�kt
_h�.uy�;'QeQj{"s0p_n�FS�/A K`9Z٬,5`CV�
)|VSOV� �i�H:A4?+ǣ�.О%C��8�<.2K<�tNɋ�dx�&x��TEpQΊf�r,X
ǘs�B̖�:ڷT.Q�W�0FK P@#z4/�U|��k(k�q��v&gP�~��^K��G�uX
�4TPqg&2tl/H�Իk�Fwx8�[J5KfkDK*2�M^_`e-"
<�\�z<0X�]��{}BB6w�?4E�FfGWɱrAU�>��#֨6[�J{�6[�BIgHf%?#`UZL|~AH6PvtoǸ�S@Z!�f�7�Fq!oP(N]=Z L@ʩCEq�a#��?@�O�}`BB*"�Ԣy=Z8.?::�C�X'%�마zx�iu*�o�j�TWkk
+%;#t߮�$�l�~�Ɛ0�&7]/`RǺ��Q*oaГ
ҕ}�n_ތ87S� Ju1RQpzP=@�h�}y6d,��w*juPצ9j�i�
WU]I4̡�8YL>5M&,�$Vڢzk_5 �rɖV4.f��_2L�bg\&��>t
o�F_F yU�aV
�N#�FǛB�L�|+Jߞ#Ao�!q�b,U犅le{,?(
b/�N}�zG<;M���ZQL}
9i��ah@+IBs85rp:\ZmQ��K]!�Sbv�*+am�#�):c!d'bh
,r)-�8&[�n6��H�i�
Ym&;�VXNy:�ٚu⍑ O[�ȼ),���.I��/Cjv��bǂ9{�KhM��fB#ܠFOZ,Ap3ǃꠡgS �@6�g횺b\
�.ڼоv�1!4PYx7\75c)�x��LMy��Ȏ�4VزER#ma^$}MI8�(0K�"tT�ߠ[��h�=!b$�6{]��WBEn���ř��E&��&²+^��=[T9!9_2摒.&Ucc$f/�I�kcO�Sh-),Y 1?�@/�~In3��a�>ߧ
�u]�0Bs�k�,Up�G>.se�d+P�ؐ��w.�|\3=�FDv=!wFL3y�] _D�ٽz}�u._*Z&a4"\u��Nی�,�A�&ˋK_tG��+"ryDT=l(R
_Ul�rw
�!�cb8w{BF`B�;%ҿ_$'lA\s`=9�UX!Ra�-j%!��UYP&u0m�r.�v�a:��.�S8��I|LT���N1
�Gd�hy=D{#Т& N'\~~3BEK&7eLu��{Y< BT#ve�V5vecq{ټ.жi
ho,g6
��z#V��D��8cЭVG1v_�"N'Ρۅ�uœa�aW-֖i=R(��w-=�?^R<|V��L�ےNQF{?ZI-?eUB4/*�Rg�Y,XQ_ݹﬡ9ݑ~Ƴ$YIgV�kG1�pa�x&�#�NU�5혖ɢ=Lޖ(Pܮ'�gJ���GJh�U���=
;���\K^$M>8_�3A9B:�`e��9�
B�KPU��>�l6p
͏N�3�Tkh��
kA55搹/DNdiyIb�+�(݄nזTQ,�e(�yVr�z\
^^N;8^|?b\m-Z[�".|�~:�W@Qѿ�ŗ�^�AR
A7la%-'a�$CbH�?G�9� AwضS.$S�:.6{eϭJGxMގ�j��xZ+P}Q[.�`.�0vIC�o*V~Z:;1V<{韮\l�v�):O{.}H*nWlsk܅|~ܱc%m=-~i�MS7�i%فe?sD�?$U 7`9]X4mWDVOc9֏%
|~s�̴wf|�s�?ZlHl�Bc i(x�}W
(ư[���Q?*DzY͋Q�O!�#.Syt� aO��̈ +/xL̦&��t7#nG8Oʢ8Nj[4P^y~/R;zT=Z}T?zr8��Th}�ʂ�Ӗ&A�h)nk&�->-H�kat"aͅT6aY��Hvh}bBu)h�3=�4a|y�̿6h{`f�&槮�UU��Z^�3ۥd
I1�z$y�"�H쳑�O,syڜoT,2ՉѨ�k&(<,Vp7��
Q)^p!S'H?θT�\`"`����%#3x�5Q1�<@t Ϙz�R�~�GW^R�70iQ5o|ø˧-v�M�i}wbQJE8܄ԝ�q�a.jq�,UKN�nncω`0S�-SQbN)Y��͆?TL+R5q�@5aձ
��$�o7~jSM)p]E$�Q�+
_L/�h0)�b'80_{BGTml芉1;:9a,NA}^QVo&q.�{J/�z_���O�bJ��wJW��q'dh�Qn̫5��D�nG�"}�,\^(DMBRwL@EPY[\G_aV=|КJT[/%4}IE뼳%VR2|yt�~̶�dzږ,a'ammhNTzMn;*=�TVg3�/ *9<�MN2fρBJ*~v0M,ۥ��RCGiڻR_z71mp2r��}�5Z?�gc8#jB$�~(h'%yba/�Cn6+njW�S1�a:I�97RGKKw|e)dlZ��4x�qe��u9MO�Լ`(~`*�sq?1T� ڥ�XƊ ��O+:4ӄ ntK$HOYx���C},?�HƬbF@4a&.J�:�#_ep ��$G$��λ9R6��Q1@jU�7�4Ÿy�^�LKL=�ML�u&(�N6UQbN�xP\umK}stboFp
Dش̕>օ ^U!�p
�˙x�ʨFkpFXl�m�Ӄ�Tϫ<)W�3oW�q^v�HW1WP��zMe;j_dݺ�1V&)#*�4Ã& B�Gj�\(�+2>`�vx!j0��u��'�V@�:�8{~�r+T=A,֬.du d�un�w {B]Mk�$9\a#�6D�g8:H�Ⱦtdzd)�g{�T324Q�f��,i&�
8J]'�'g;LCZ3�08mbKOO�B�n+�gIt
�ݏ'M�c<�KW�a(Q�V{GO� E��.If�ෙZ^v>"~ێV
�- qx�wȼ cjS 9WY��ڳ�AX峫�ـ^�[4ة0�a�VXR�hpv�^I`P�B%ểAhH�
i�!]�b6N�XF1�oFV dl�!Nj,Ѩ(4~�M�h�7x�#�@C��:�-S=9ӄ*a[ENXck�Jm#8>��F:z�`�a?F�@�&�̳/B
wDOC
.-_Z(b_xS�:�&hV"詖�{\ ZؠԎ2رf2/sk[gwB�W?�ap�-y�G�#i��[Q_U"�5tn�Q��$13,4@�l+kJr��Y識�c�wKGCE&l<�9M[v�IdU5R#�*$�8鎄4l|p~.Pzˋw)[��]+A��k�!Z�"排�@_E7l j:P�J>&6�s�B!|]{!tO8�)� zm��Zv:{�Ū
1�#�A<_r��8}E|ێZ2�h 6
ȷgq;&��Bj"�ҰB}Ĺq�-Z.�t=�&K*̨�i~̡l0Tӡopc2xܹtރA���\qOc/3�+�aڷv�z�3K>��s;P%$X!gaS�C�@QZziWl�Z[xayLRUY�@iii�p`.�>bĊ>"fή,&RMvg6A[��b�X�I?d(:�#�5CqK!直T�'���Պz2:/zЭ@�.5C ԋ �-P��Y82+�e�I
j?GlN(��Ϫ�EVD�-.�jL�D^+9:�[y)fl>6䯎p/*%߭�n)_�&ׂb13W+W%ɥ@)]m�k��?�T�*Otdvj@�
rjp��i�J¦ZA
9�}ܥ+(Rh�^�3��5?"�o3XR�yE LT&O(,n9KrG,Hjy"0!S�8�C�{\�'D��i����|Lt@�Y�4i`�8��1%�*CTUX� Qfmc w۔�A@
�?%$'Q3Ϲ]��o�Xu�)�ɂ�%iJ]Wd\Ƿ(z49�m��krA08W5/$/鷩\��ʠLr
J��z8CW=�5/.Y��iGK�^m`O�
�.c.<ؤo@���y8T( C5՜O~ʝ9�
�\;-OLNT�.!�dZmt�Q�`uX��j\v4�5��o H�;t�q��ϜOhG&IRiJ�~�k�2x�gNY �i=!QsK.NͮZ՝δ�a!+H~
HŽi�@CIlcl�fhFgJ�i=�kՏhe:("("e�*@'3F�)u�i,E.<)�1b�{�aP�ӿ>�BPXz?�yXt�g�N�#-aL�π�v`!Ϋϩ:&]��ܳ��©��4�u7
2wыS�S 4t`YʎV5XsۖT
bK3ux-}�
�a6K�
i6��ͿaIݛ�w:Dm��E�bGDG]�{��ٓ<��hŌ59.�L!\"sTq»�1WNܭ_E(��7�q�+C�4MAzr*&UL�����4G�6 v½;!MΑ3&��i.�U��A�v}+@nVhZ4�q�B?K0bNv�:;_�}lDe:n�_�9*�3�zkBuЇ9Q��kDD��+JF8Wp{j��9*|Y���V
��
v�Y|pE�7gy)Ak�=)��x{L2 %@�>�JZX1p~r&�$ՋCܲK(App\L3C0һΆ�d^PJjN0j��v��$�("Im�1`oqL* $�Z8��̢<H�D�2�q $w�x���w�. t�D;U@f�Q�
hh~I.G2NqC�Ay{ڀ?�jڤ?z5ۤ! <7� �%P+;Ј~F)\ʊHVv"One/�c:K~��5y�gh"&ul�1��Tkjesru]I2�.9x��x�xBJsyG#��xJ#!�$Ic�kVsV?f�Zr#ꏅ$58HE�d�b`�
A6�D2�%3KZ�Km�2Z҈�
,�"�d'NdU�h��Rꚰut�,~2�`g(mqxtja\O0?,hID7Sj҈Kͼ��~H��0�w�$ISm�]Tm�Ck�B�@ĩ�h��'nAr\��]x��ZdI��tZA$|̃�6^�PųTI�%fzj�O�
el�+[�y4�ONA5�D
�|�לsFo+o�U�23eO�ǐձ5/��f!%@>�?�30ֽq{Ͳ*FP���'8=M_e䙹]=BNGXCg�X%x�ڃR�cCBXQ5znE�*��[�>9�0�@�vkXh1l6'mv
p��T�tI>�m
+�}g℘�7X7T#K�Ֆ/E�ڥ_5[ۢp �|h��e<遗�@77:�pXx99�,]Ybk~Y5v�+uٱY(%SMኍ,fO�PxD^�kQ�8AO�j2�{d5�z[��\%�4�л�h�sk�B� us67i-�\8��14)`}�:��A��˱>���qAA�9~.pcoE �|x%z#0y1C 2SF&�EӐ.�,Q�] *#B|r��cL4{0|U&:X5U͊Y'
]h_�Fe�k�
��)c�%��+/�diF%>i
ɷ�}Y4�%���N�v=z9e(O�T" �ǛxC@${L#}~�]�t�JT`GUUEտ�}�yr�?��hgvp�^:pֽa�3Ժ@@*,Ln�S�=�+^^I�ٶ{$𠦣x4d�
b2c�����I�Iؔ*Bo�;Ū-��GD0�R8bh�gH/rlɕl?Ɠ9e;��T�GJE<|e՚�zSNvCzҦٕbz�~�mdp�CdgbM�:S)��k,|�-ۃ�]�5=j|rO4b"v.a{�h_{b�]v< k:�m�OR�%(AܺeI#b#敓����~i?�Zs7w|iӗ�@�;.Dh�?Α�|�&"�1"��>V0i`�$�Y;j�>��|K!4h-e�:a9��c8Irym�Y�l@qTp�G�lzЗMm$�E�w<;b`\"|BΞ��wrJ�>�y@:/6v�Ox�n�SkN�q�L"��1ivyoH�QShZg�L�;ºCB�J
W�Z�j8o5D�6�I�Oc@o�$L7ݩ7T.�kq[O�?> �T�?�6U"'gf�2x2<+Bt�ز�&Qn�Io4[6S?}�7~ܟN�l��"L4�#��h�!=|E�lD')�;va\sHݠ,zK?iW);�L��F3@��dIv=Eb�{%%[)q8�vUjܻ6 �9BK
^�+�KT��6p��"KҭEU9s�oGc�GT`PPZp]d�.f֞wo=I#Daa �Zbh6iWg&c#1k�# 5$I�@~M�JXrc"gZ�w9J�b��� �
�A˦:vX�Dϭ>#F!J�*�{� ��B��K�0Bݑ/L<ׯ=�Z
p�jU3�ӗ%V7(s�=S5Nd�!=sPޮ�Y�=f!�vPk��"5,nDgM܌ K�e@r&�@�4qY{�lWM��U�31b8K
#_eMh҄!2l3r_SMڜEgUjE�nIYm�xDtB6�O�j((mx
�z[XQd0�1�mɗ�nkgA�5&JFs׀D�ƀDS`><4`C-+� fS��p.�:)�8Gw@4v�^cUl�kRȘ=Yg�r\>i+Y��i �Vbz;2�){7|%%�
3:_H]C&_l_$"eq`O��-jc,|�W��
@`�.g&{f(I803<��-(�V��ۤ�FsX/O]�V�#Yq�[+*v,TWR\.D�˟sP�gT2�5�-�T�|�-�c��۞,;hPg&d8l:
��
5 8$Ĝ�gP~PG'
g���\�.#s��ocN.>��eTE�(ӑE{�W~~0r^��B1>kqƎ�[Hܷ?'�gbU�+qT;˹
IEj4ANsb�Αȏ�9�J$ݺg�,3�A/=Zٰ>Th���"1SI5|�K;�G��.ϕ]yWs�k3|IW`7#V�N혦ixΚ.z'�(!8y#�FajO�èB�k
/��96��c�S+kߜeN�qW1�VHP�
�ګ"$*�O9�vY%��:
sou>'ܑSS`}o��@8�1_|$�2�6Wh��c2ʰ�|e�~�-0k��N.,��/8�S$9-JzF�-%X�}�.b.Bˆ6w-ubJ#'�^��!![K�'y�HsQ+QqW�Jˇ>bzL�ԡǿ0NM:W,Y�bK˅B
P��_ !LUU#~jw�a&LYS5ywPO�$�3-#���2
dz�M@�ڶ�]z��$R2b��>F>]�A�7?x�ְ]"^�P�[Xwydk�GCjk;��R1z}SZXD]Z,Yе�x(x8Hm}v n:
.��kjʾ֊�;L Gs;(l!-�L11w`Y� Tv$h|:?>r)撄>N��1N,%nD�+VpSC�wD�4�PߦA6uk(^]��?� k;xUB3m^�~~eO+�x%2.�@ �zfaCB/�!bu:~�t�@LtH�jZ1� ssz#.\m�ii5�0A�D5i��&w�X��7|HI
- Խy`C�F
�-+��k~�2}qnzi� �qr=��&H !<:عS�Kc.5E<�.Ըa`=.�{�F�N�,v!5�t?$%(|Y)WSkS\�q !;6_q䤨-�trC�����#���-R�A�$%&kf=�Z̭x�:l�șM@2g&�A�xfbgO|��D�BN��ӟ�D1͠K�Gq(fhU>Rj{��,MH�1�--v(/�X@ig����G�Xkuh�h�lͤ2=!@߱|#:i4!�hSx3�5�W�bۧ� ���Tzߘ��b��3/R!!*ͰO�t7ohze��77gt@
3�*@E�~f���xF|�2.G>�ł�&u1^J�(�fqRٜDA�ǫ�9�o.0��˷\�3�|%I�3aFZքLݒİ"!�9$$ _�`X�o"ЕhZ�ʁ�
V4r9�O�Q[ǵB0ٟA78�
d4w��,�>.�.ZY-Ǫ'"QIm"Qji�^�g�Z0o$c3bヽ�Y:�*"
��$̟�Q�qPH}P͙mglr�53_o
oӑ�uo|V<���66Ԥ4�i̽
O�'�gmΏ�
U_�
U/����Vn�1\{=z1o;&ڛ!l[>�9gvj@�!5aaФ�Q��919l*g4H�o��$KbcɊN�::�z`ft�7�VXVq��7��
�`0�P)3F�9-Se�5c�˼Rk,}l9m])�RmO
t�%o,ƣ\~�e�T�]C1Tlr!�3ZKI�+�l{z�y%;>vwWZb�C�|�w
�-Lڔ(R%3u%Fgn6UT�ol/+�^$�^j*~_�-;t.&{a�q�lޣ2nt9jүy
uN!oy� P�I\!Sdϒ1*4lP�iz醇�ݧKO�~��L�t}箿ByW\Mp$&�-:�5M4ͻjB�Wk}D*x|%X!Cw1"j78Ϯ'�əR�K&g�gH2o��g(}T2\2�NLK�BᑝτbU)%Z
{.b���֯º}Ϸ8
K-�:)3�*��9zx�J؇ 6}ejJ1(�Kc)�p-a\&�yVaX�e6"X0'ns.LI�BC]n+�d�ԑ|
vF܂s�N"xư��z~,QR+*s沿/ mc`�ct�ҥrz3Љ�v
��ɭ$Lhڱ'N�u��"�q-� kTӶb7JD�Y�ޤ?kXI%s7p6]㝽IYۙRUn�h y&SbDC1I<ڭ}X�\�
J4�9Sb`ey>1T�F,Im/mRwnۃ]�ououh1xSxnG Bۙ;
�=ܳ�x_n)~�j0xiYi5\EOOhp1u�(,9�pvңa[<њU�Ǜ�dqzl�>�VdOԉ�^?)Ǯ"\�"�~a\wƱ)GR'iU
�'c핌��Sp�p�`ezkX��D@`�O%\δu|)X_ٿb&."Dn�]I�p龑]K͗u༁k�twg�[s�4�<^�6tf�l:o$+5]�\厓,*�B�\֛_��E��.|k�ɵv'Tإ?0ڍD�`�l^iq�7
�4t+C*��0Y�r�M�g;JSf
n��I[��J{pyfɊKR/bv��AN[)h abEN]F뫁VЪ-_hce]�CE�SBs7�3b9Ml`+7
��qN
�b'�Dn
jp""9p|%2҈�>�ZK�(��fRZF�WtQ6kBPvh��1�TQ!;�Z�po-\RhN���5n.;M��o#@fo^̐3�Yq%A* N��mmxz۬gTҝ|)W:�h`�NE�8AƝV�`�b3-�-L۬f�9��Oy��#���^ht35
V
v.��xŏA $¬h�!n9wfb(a-kJdu�h6|�*Z� bW#sX�XVݺ"Cz��|!�b>p{z/��dEn/v00�ةexʂ�L�(
2c
��M7S/\/u��#0jX�fh5I -ƋU`(�W�f��ŔtJT��wE?oc��>�
$WB�;N�7�g9hoܮ��^�[C���c�0"�qi~?l=Zl%Z>tC�Ȥv�;eofj�zo1\/��BG�>}sx�.փerҋ�ݗvnh}Yb)����qCBq8�;�,�Ku@#;�cΟS2NɮP%�;k28oq;S��|aXks^yd`o4PL)hJo�S�jp�n2+
Mn:7��t�aV|ys\
'^"U�Pa�ibs.lT�B4�ihL�鸀��-A
�"a1 u{SF尝�4G>eEWɸ�0�V\$��(��b8C-O�R�d�va(umfiO�r
l��"T�d5=�nBL�!�P��$+�,�?C�e צzdave6n;T]@f�ԸQTFyP0E,n�
@D&6U!z4�K_^% G%;Zw;���d&rB̟kGh�뻁�L�|�w#39�eE]����Y@ U04k�s1CCtpp)"d_u� �@@
A]�cS�^(,9=�mAg�W\R�_�q6v$j?3�t9��T�Ed_A(�#x��Hr�kN{>��O&dY��mL)
2,aw�i�/��UEI��(Zuq�ާ;� ke�w?ҫOa�u#k��+�s�@�fxC�Xʘ�
ۡªM_e�u1�%�Mˈ@ =`~+Q$UԞps ��\2s*�|�,Vp)t�f�?A,|�{d�E<"rK��p,��£[;V2�S�Q�(ˤRٱ�D^GtW6im���E&gi9��
R7O8ifݽ4Ҝ`Y?)r,��х`b˹BL�@Q=uZ
4�ĭ1�@xZ)g�M镲D4P-l|SIz�)>ә� >bE1�*v��#m[a�HB
2�`&[L`0�НBꇆN지T-Tzp7��y�SZ;�%>Ѥ_Ej�?r�3�N?�Zp==@z(c3ZL�>&9jkUz�HƊ����Sb�[�=g.ֹ`t�βCN>3!,Wf(Ӽ¤M �-�S{q">Q@��d� �-�JБx%�Nݰ7�W��j6�#,��а�iCcX8H6il6CTcrJ�M�0aΗ:%A�lm�G)
apXN�Z7.1
v�
`×?Tc۫)S
G5;3�S?�KAe)>�kՓ�FMC�<��
Ѭuap%�V\��[pK�Ut@�5795VE|��0
v�*T"r�@P��Tu�-��|�JY[Lq��/ |�amvG>�<}=[0vp�NE�F=|1Q,ݑQ-p/
A|T>̂݅&�5^|�n�u
Ͽn7WчB9U�5�ukU��>eZ�3t�pr�ן�}[1~FYƌټcg��70y�EcW-�=r�GM�l00�Q
sR�Mg>+�s|P�>�2�ckߖ�kŘ�Q{N'>�?�ǥF�Ӡm[y���M=�|�CV8GȞ%�Go�fCמ(铨�)@5`0]9&eU��u(݀�=�*�mֻu`�C%P
t6��5,Er(-dpD¯1u9unM2c1?^�ɿÛ;rUG K|�2z,�f[��p2��aU풇UG҇E��+R2SGL�߮ȴ�!_vK!iUy<4uh/��0�7$ƾZQ4e%˲g�פ֧̚YI�nH�_ �eBeOX�eɊ{5�Xbj��A>�%-D�h���R/2lA
ĨQH2C*2$<�(ըȹ뱉 C9��Imdr+8��M�<
r@@8r,L!
/_Y�O�(lC.^msZ>B�k(p��d�a}
dk�q��M�b$m$/663Vt])&՝[_7�*Z@=\"�<�29bsksG?�v8q}_ze5z�l�kf~�m�^%=hBLcWAؓ~rj![x��aΠ�LB^Z@Nhɸ̕O^�r!�;$9ל6F+{/̼�Iq�opdk=�h;SQYCp;釋F8e/,�!@·j����2tP新:߂K9�:e*&CA>%0D]Gi�K8?a?J}~�[:�C;P
�DK�u�E�a�3J+kz3ĨL!&&1OZ5_(�U]zClj=��lv�K`nzol�wᛙϱ]KAhͭ�l��P ߇�x0%�/��g.껳dto뵶�H"U~�=�?w��|ŷʳWuݮؖwz65k�L��g�$OIV5�;ĢQ�
�xEpRiOӁ.؆[�&~#bgM[� ���z��}��-?4<|G2$�ׇ~Y(oZO167$�[<�K9~L�8�^ؖzR6Cz`
��pFރ�xe�㫨K(g4A9JC('Rz��ϼ�Xh�M��ytسW�a6Q.��<Ɲx:�ǔ>>&�)� �Kh�`�_��U}W�vlPb`uZ#]0=?�J�DmJ�ME~$Wl-%F�X�V)h3.}G�q9~`�B* q�zt 9e��y;�TS$5k�?nז ��mu:���J�aI'�Sk�zA1�k;a1?�
IO˷2���g�C:�S<�ѵ�knV<�t֔CTp
�]֜��γjePzu�>'z�^tYl�Hl��Ȯ)f��t�bL
�ֿ[;`Izd�#|�3_N@M3V~_f[j�a�$L˹Zkܩ�m ho�k�v�Ur]�\/12N{yd�I蓋xMb<# Nܝ%a*J:�b(�چ[�g��i;%�b%G,@�֭�lGP�'�{C�zLBj2O-]7'P�WCAĖWce?p(��YqU1|/��Ο�fN#[4ؾ
�ȷ�C�2YJ�^nP85I�[�!S��*Bga5��S3iW8Au.�ai�s^��&>�//&i_^`z>zF,r�M��i~~Q!
MYQTU�&�,��myu~<'f��s��TG�#��W�]O:�:TIĺ&,0*�eYs(t!=Ks~+#L�����%K7@תp� 7:EFĵ(��e
���X>X*1��M/�f� �>b��b�!y�/*+H==E1#YUW#+&/^ޯ"Y笑lsuژL0�Q.MFʸ>N?"sNUSk�֟DŽSdy,Wc� �}��=�0Нwد xu�`gsg��'CZ̳J�6�b]��eáJkK
\v든ҨO
U�]EUgNdK�)��N�w* !S�w�)C1B/J5{�~c;` h슞_mzdjX;�8�DG�x�x|~л/#vTB3M�R���ڣ�m�ۦ*;AG.>ʚ�](�S|+H.�&A|0�醔M|MF' �ƫ`b�L)r?��G0&nm:fU.�_t;x,�?19�
{3ŦQ՞�I�R>�u@�"�\<_eغbyֶƹvl �~_RV#4۵�G�&ߪ!^�/fT�jT�Z�@{dԭ�c܁�MOwj��9]�C*E�'�)�udOۦ�-Q~�|��I�
U-]V_
�P�V1�h
%+P�jCظ]&#�r��א�E!*^g4={�j52b�Ѧ;}�=�'ږ&�ϸ/D|˨ ǜH��Si��`
ɮ�к%
����eǢl~_��<0/cEX8̀G 7P4��]6+^D-�HO�m�P8�W#}4oXH�Vc+%E�n!�
�AUpim8x*zF1e�r-*V�`sG�
�Gfkf&H\D.�!e}ͳNSCEIVv�l4�S"��p�I/�p0�t�M\U(�|
n�Q;6p�;i`o�'~xW�Ae3S�á�OWJnd酵Se癩�gX�;Q[e?��h1rZ�['Sje9Bgql"?`��;jFd>7�3�#
P2]�'LXӭPj�da2�Zk�CL}]BrOG+�`;M�N·|I֠&
IW0N^�`/ M8rqN`__WFcE!G->W�ѮHвYbygt��[�.rk^GF
�
��I�s�� ;Id�[N^558�o{{%Y�bBZWFXҢ_.b
�
VA8S�TyW$�5qxXqg-W,>A�Hp�="h��a�CrkލU�b|-O�}i�4\K�%e<�`nI%;sb&[�9.X���|WO�l~(^a&g=hDbC`�v1^Fn\4EQ\�>hN2A�Ci?���h�4�϶tҹ^M#)RHez��D䬗i~�{ɋ��7H.dw;UVwƲ���4a�.zbfA�kna�p�O;aIE$f>+T7Gf+LOW:s>�b��4}�V
=wQ�+=H�bs�9"�Ha3角O�%Ş�p5�hrH-tsx�Cg�qWso$0dVI:ƆSǠ0{71�Gf!'/E'`2*.12
�t
� .aBvڷA$�fj>�ԍBQ¶-�EU�Hr}8~䵢
ıyC8�C`(5�%�Y,!u��1Ȱg��Ń"I�?DLf.�EaA1�ݙY8��Mbx �c#a��B/u-(8O pt&Z3j5'K���>4
J3�j@XA"I�Õ�Nr�>b"4��'`Ye5GTʹJv]- F���N}�K
��UrZϞsjǕs�h�/�(B΄�~by�U�>$:;l��d
H�@�y&B�-xjR1R�(bF\
Gh%�2%F�%8�K6Ӡ́U&&�AR66 t-N �� �K��7Q@뇅�
K�,:c�Ђ�
^u�*���<�S��IP?��DΡ[RjQ9$�ՕvJK �7OP/Yg2E�g[B��iEJ;vv11*zbf1 ӄk�S|�B�#7�λz\��qd٨DC� >*-�?�T"�K-ɀ5]�r=` 4��(|-˧1s �Iΰ|ZI�F�xt?m�7x��CRInF��"�I%Y(tpO4'�wX�5�Z3�R=U
5��-���/>Ld:/^�puZ꿱r�{'�O
R拸p_�!_憛h}zP
5LJ^~�.,Bٶ(hk(:oD�M�k[+r�2�S}!o�nhy/��Mv�x+-?# {![lp8"}W@و!mqi~L-/#�Q>L4�͜0��ٟ���?F%؋�Dhr85{҈V
w9 An{c/}M3�"� ;gdʻe4d�.8y|�{jF0E1${7tE"W�=]�A$��[G�ݕ|{d3iQν��1 �6@`���8cZ��t��Vw��XaC߱N�D~iao��㼃ۋ.g�9�O
*2#%qVO|s7Lͽú)USCbSpf>O\[*OU�"W�O+"@$r-�m`HYL�h�Ițg�wAHV]�HGxcv>{�l�"9F@wK J�`=<;��?N��\!:케W�C>��gej9aE-�GuJdHձD�W�R_'[w` g6N~뤪hO��,H�`�&/sF8�w��I][`$�ف �š�x99�.gg8b�naf�Xd=�
,R�&etcGs�9|%
!�jWĔ�.!�at_��k=�
j9[�MRԺ|LBtXZ¤SfVTbziwX-?G�_C�LN
�貞EkF�{f��Im�yۮϨ.�'=[e8�̯2߯�$M]�%�[k��c*,�^ù].�Ɨ6Y%�B+!"�54Dqqwz''j&5�geA:[
@ ,��b��$[[V�A�"uԹ�gd,\ܵ�5�v����]ߘ!e q[Vq3fD��r DgIF7�h0Y�YdzQDܝ+.G86]_�TaZXɯ^iv_T.b]6,k�aLZ>'Xl6SB�TLe�";SDjj�nXUʸexq�&K��-e2,t>Ӡ'0��P2ϧ
�[4C�a�I�ȶ߸�R��rMafR��Ε+-ձ~`вg|y٢B60lnCp�].s"TD�
Zkȅ�:�\O9Z'UX]�&�Jws'M8�Il+y̷l)qU��&��!Sc|��0k\�`5y|d,a*}}S�����tߟ�T_<:
��ÿXe� i"�V{;�E#D;�X` NYR�`ή`��i9h[ݔm13e_S���&�Qjab�J1(0�m#M�n�nLvBA|�5�?c^ږ~
�A'FgvMl"ۖhiM�T4y}�b (L)7VK{�A�K9(.8�_��DT# �C\d7?;b?qK��Co +32e}2�R��.�0wIlz 9��g]b#B�=Dz�.5ťXA;t!yHޑ |$~ anwTP$�wT+w1���1w�V&Ic:8��s.zF+}�v�)O��ԩ,,MLFsrmמ5�Wiz��I�rC>c7���pj\~3��+vVfl>e.w)�ePP|�Ϩ�,t4�k_lcleo��ݒ�rV8�1`�]�mӆ�BF�T?���Wrbzs?(74D�ntȃ�;֍L
n��F&s(%"�jȵ%sy;#UL~5tP;STm�ʿ"ԍ��
��0V7~uF�O�`��<�Ӕ���en�R}w�9�� �('Н��Yu2M�c#*�-Sky�fu#�gX�+XӒ�*c�=��j+�GNbVߣ#[�fWQ#:g| �r��?B��';/Sȵ@Bց쳳�4s��Wb2'q�CJ�
IpjƇg�U�Q|A7�Y��X=�l°�>q���C]*�Υ c�nH d�E1Zė>6#1�c݇!}̉ݔ|va�.-uEGF��cL'�ը�|t⌁&S¡BK
%;gjs䷳��l�
:FAa-?2�K�4#*Aod��mŜ5�G�B�6̕LSz˒ΐ Hpx�?sܹ㺐x'mQN�)ڦ�*9V!r#:�ޱ¯KPP5Oa24ص}k>�;`�i{�\U]�gD{7nm!Xd�m#^��a;Q%H�Q
2n��syr,Tlo<9L*E�ע� }aŘ��Oz��_�a�9�*U̥}^ΜhCGx��Yk�2#םvfeZy���TPxR�T�f mٺg�&�·S*-D�=g7gI&8喎}u '
1�]dࡼ$�S�?�J��}ɉ�W�m#�:>�xpCB`vu��?�Rf�?(2Y*YL3a�ٿ&��&PP3Z�!R{۾v�d�G-#6G �0G:+�c@1OV>Pk
]�EȔ�vh%~z�RPHC_�A��r*�_#�ZbvPYgդ�X��%-�IM)Ʋ���Ѭ�f͔Ƥ`�
f�ls쁼AoH���Jу?;�j&�)s�q"��f�����[L��ժzQp7F��S헨X�R�)Mց�fx��݃��ESp�O`���xˢ/�7/TK/o��F����jR#}D�ZH��+Q->y�vOw{2U��ޓG���q'Mq�
T$ܩp�ߋ֍TL>y��z�Ec�փM6BV �ғ]*q �#r)|I=d<}&1����ThnE܌gP��7(揬�yΡN7JO".'9ۼm5[7h��G&nM�ߞ�#ML!1A]�:Ĭh�:s?�mUS2xa
�rl�eyɵ�2�&~@�X��[{6'W�KMb,�z@RClVt
O�,�)yzHEjh"o|x
���(A=!k&M�4�UE#K2/R.ڬ/Z:YHx�Ԕ$Cg92m��Y|�Z7~�o ^�*4Uiarc�z�v(�3��h�bm4n��Je^tGl
d5[Vm^��6��Ú`:
cD��s�h\�m�|G;�RݸA7qx7�&e5a�_40+�ΟoCg>?x�MIor��ܻVyr
7D!e:�4� Q)짳4�SCХť�bl6��1K�k;4
H*ulS�>Z6��ىe9e��~_P(��ʂ�'�:�M%ԘQCz��IOf%S��xP^z���Ŝ��F�mLU.<^�m˥K9R͗Sqv)soNd�w�o��9_hsm2�0&j%�xUG+cZ\V�irc}oW=�# 0��&�Jnq.]Y�ZHǡ&G56`� F�oQIQl�Kvj� >���9-hu.�Y^�~c��j?n5mu
���̍s(�Z4ůE�!^Abpda5w���mȩ?`0�
w-)�4%c�>ϴ$�e{<�B��i�u�̧+�>T^mY���EO}Xl�t+ꤑ
�ID� �UцnV\qFT"�05]=鲝)
^F� p��8ug�]Kw�`l�>2�f IӵJ[��)C\]{`R�k�gzK:&0%_p��첼n�ۗ~cO8Zl�j'�vD�~I:aZhOs�D2r.8��篈!OMz����$C�Ԛ<��$?9➭�7]�j��`|L� 4bsm%�Ԥ� ���`d&ً�"��U~
�n&{f�zGÎ��C=4K�91ms&ld��^�+- ,�Qfo/�,fй �A�SS �!S��;q$m=�̣�J�5\N�NT�REZJ.bQ��3u�ޯT[ڪfH1.]Wj?PSFM>|Z<0�vQN�Զ�S�M��t�P@_��ͦH{/rޫX�eg6ƶ_!1ja
'>|ʫH�^'$*.ki�f��$x9��av�->ÍeL$��Z=iUcCa;�(~Uz~��3JN�y�C�zLC�qG䗯��p-HU�RoMI{=2XX�#4ruY[g%WC:DA���>4#\0(V?]'�'qX09�NݣCvNfc�F��Cc/d/T� YĥI'P;nh�FnLaF�I)$S&�5b"%�2RP6�㽫M�l*e���Ye�/O.ͽj.֞W45� FvX�9ھR�_7oVE 1+�(P\p֙pb^e3?�/"�HIJ*V--R*!��!!]YeD}Ძ,�3u>ݞv6{??UØ�GNщ{7�5NIZ�{SmKIE4@�:z1�Ins{ ovrER2,v"'A�o,o-ǶU8KZ 1VtQ/y�_�?Q.*96B^B#
7�7.jܢtk20E�J�( �^.l���E9GH"7aU,WCSWf;�nD�M]�Qmai9`̸̗�n^N/˞1P�ʭy�LX �QIP�殩Wqfc�&Թ�#K!A763oF.�ZQ샮%(Xm��ly=I!4�[�$5J�N8f>�Sy.Pq[�a�6�}�I,k��zDN_xW oG�ǐmQ.0;ɏo��yApך^H)^ܘ&_KW(*��c2�e=a#wg4zf^�vmd9�YCݥ`�o�yӹBfB.�{'�Ƕ�N.�jOLr�y5$J$dAj,v�٫nl7L{OCp˩�'4K:93w�g�A_8R�� u�
[QJ��Nw?�j Ixm'W9�Xճx#Jg�
*�;;MKc�Eة"lQS|[;�oG? MT6AyQ�f��gc1NuD�t+��/ߴːߞ�@߅ 8J(�aA}~�~50XZ�+54+ +.�QO|�&JLX`z7_�дMFGs[b]I�w��K87��RJ�a��AD`i��]m`�� Y4�k|XnLP͛,cb88I�K2P.״x
6dW?]mxe;&3r#F�ڊ.(4x1�K6�|}#@d47C4ǒ�
ao�'.BbE�J�F�!oskG~֪ؠT$U� lϧ�,FI7eX?\P�
n�p[w1~8$$\Bh�>�aq�v�i�&d�j� Ԃ*˔]兞" }��@cb&¥��sS
_Cl/.t�Tҋd9@un�S3"Xl�&�@7_D_3�0:HD!h:(Q�B:BE�M�i8a0{(xZ�9�I��czaև8�>��.�d��@,Ӳ�'�}h؞h�צ����W�NJ2Z���&k&
hb8��X� Io�*C���ǻ"L?BüžӒJ�Kc��
Sz;//8gL�A�d&MsixvDU*�Wq1&�7
8��뱉�y4BunTԍ#<.M]zE�iJN8ˁgDtIO�y'ąXJdn^�s[�;Ѻ+�*IObBezԸ/ك*�<㼦sx-@2G�-POS�Rs�!�_�HκV#,%�1v)3p��wnb�:�?�=Z-C�7߯}l`]N8B�):pO�k�S&1/?[>b(k?Z"�[x��Β~p`=es L}F&}L8~��{N[�,�S�Tū^��e8'Ñߐ�(�JёGw-E|et�1 o6lA8p:(]G]\4f,Lre"0ʹO,RB�}z]aX8Mj]�q]%��
�A+u�0-%P0>��ɂ<33x&r�!��34gj\JY* +1Jj2wLTa�H�>9LN
"
l0F+z�MmHh%u A2n}Gu�x@
4�$"i1�CI4~�UsJ3�ܗpx��EDe+W
ߞ|�!$@�<�I;b�v�TjW^<�J
UPi��Lr}<)5B>2Vޒ0��^T�.k~���X� .�s4k͝�}0�+R9T[mC>'U��J(,2
.���zs[p�>�e�ݑ"9^DPVuݕS,J N���Q9}ڿo"Y6�:X5=Ir���H:����Q�;�גd'º��ӗ�yp�x'[[�Z%\u˹��o$�kQ=4B6fn�u3ca~�Hdo=�VA?cJ3b5 lS0��ɿ�ʌ�kK,(�Zqj�S�%
tCux�UJlf; ,mE�W`xmΛ��rAԻd�*o(�I%x+Z�->)ج�r$:`cҬ9=k3/¼��MiĨ?8QxkJ�
b]@cV�PZAB�Os�-&Bv`<ȇQ6�ua��"m�z��ԃ]�9xGNL[A|>:,m`�^�k߫m
:*U9B�{�K9jgmnCˡ�[�+�U��Ar:D�}ו9%�je?�7NYpT�v�L7pQ|O]�u>�9AUk?�E(σT| ����"{)JX�j�ƈjd04�+D�=Jl��DVu1|E�Y�SLF@O
F%bj6\Ik-g�d�&{�T
:T.�kDhajlb0il�5-\��pd�8`ift�V5_C�k��B�Ht�
T�W
w'B[h�Ve뭞U�'p�w!�[NZ#dS9��׃i
<�'�S�ˍ{tgúc+!._�V>YpO��^ 9'�RXF.Q}W�QsR1^*ԫS]ar-N�ј.m m�Fdo�N)]NHR0@�K*�"`x'Q�/IFcrj8/.Xe19(A#q�kUɡE|!
�D��FJ9Pa�.e�"<Ѕœ۶Uח)t #u*:#�o���ܳ6<�o;�N$8ʇ]y*x;ҠP[��4Cx}Fs�ڭg�'��\V{Ǝ8�k|m��ibx#N}�s(�`X�W^�|ȎywbӜ�C'-vR�l�("IM|�j2O=-Jz�\�ReWE;@�0!��
�k2� {ku�f"KD}ۨ[sU 5"��f��eEt˥
�Z� Wlczplz�V~Hf&�@H��]`W�mfF T��m�ח/`z��4W/>CIe�p_FN:~,fGZhlO+^=:�t)v;4\Fu�EÝe� tm<`DZv�(
�=A\�2�4wzU2҄Յ9.
V �h"V1��'�T�igII��n+f�y�5E3h($
�禸@*k� ӕ
zJW2�Z͎�%/ʗ \hrblBju&źJ-��[rK`�0g+r%m��vGo�weա`VO�g)�e9"`A0V^
49(�&Ls{O�d}v,�u
?KzfOۉUZvd�U�3>�2j
VX�&T�#�:vgxd�SE�Dy*5Sq_q*Gj$�v�XG]y1$J���S3q&��_�U*{�,iQ~aB00m'WJ.OԋFnut@���&m];��
`�OILU�E:#G+ �}�y�8x.?T�(:`6(Od[u�hlIj�lET}Y
vS�4�oU]�x��G�eXXJ_�,2S;�,PӤLtGS4�H(_v.ʇhZ>+e�ȯQȜz�;sɥ�W^&�e�.kԌy]c�`�,BѰt�&��c�F,�ΤzbnÂ"s^Ԥ}ɇpqİ?�F?+q�r�DծT;)/M�e/�3ܩ2m=Khs��B�>+~ �cfX3yk�r�v
��jc{d6@Yb�:4�q[+q2M4�FB2y-�k_����6q0otvq��{��8eߜ��>�4�1ZyL�84m@0Ä$�
Hݜ7ztT�͠h~vG[c99��_IS"+6%}m��)2�*U�`oT�q &�"�Bȑr{k��=R YY0PP_57
i����Ȃ�f!
���+0ّ+%*� }V�p/�rQ�J3VDE�g�Q^�~i�ϓ0B&g-hgL�Ӱ�J��6HR�R4� �Eyɻ�=ܤQ�<�_{W 6�ƻ�Z-|f�:2JJ2un36_2Uo�fi�Ӷv�U0]oaG�b�I�KzS��t?MմIԿT;V4Õc5 G}FDGL̎f�⓴�69R��"zm|�_vі$^X"*x\`M`�#*�sBH�y*Mi�=r�l�̱'1K"$|߲�;IԺL
еx|&ޛ��o&e�H�MP]$ԅO@,@Ӣ#�i3�S(�7Ňy0��π;�Z*�!yWڅyx'Wm�K,L?�[
魆�`#ST&�
� �t[`8`�.1ii5f�)�O2�/�N٥��0_`K"�?V7M W'M�PCd`
5W
�nFl��d/�ՎbA���`x�R��O
g)`5�S�O?ru�kbc;G�,qe�e��kB�_na_Laxق�8@L^ZÎ`��skd
⫮$v?5ܾ�+G{l�e/Bd(��{KtY�qPU?a����kV-SH7zؠba;ad&�H�>�,>E11"@iZ�L
hoJ�!h|.�5ro�yW?K؏���zRO��
%"a�2pn6!ngڈ:��ر1.gC�(V6:D9
EKOLR/M6 YLBg�爃7> 6=w*A9q{2Ae�y3]mԕg**�H��+x+2Yj�TQu�b)g8>T�=Pb��zao��쉜:j?0J.$
Os{~9MT�)�N"nY978|:wYsB*
c`}W%Z[��ֲ,!�1�Y��`�х<`I|u)߇,#]IY��+v澬8kXDDZ�ř$v4�uՕNC-�I 3J3RE9X�,��Im}c,)oa�@oWvjk�xIt5?4�e{r~YPLhhT&Ij⩞$EgD +K}sz~5�&-LJ@=Km˓_�\y;iZ-2҈ƼvU�M�H�e0�´Lnew$H F�S0R76p�GԞD�,R8>F:jdh, 2744HE~
d]�]`��?&-*�DP�8]�rU��;N٭ 1eos5c��Df0pv.$�kgc�JN�rɇԟBHH��x\n�f`+䙘/2fS&/>;!`n0��{tN�8v.T�DS�8`ԤLgGh\+n�X/�*k՛�,֨�\/�;#_#�a�$aO�r$S8*W<{ES��bu�3��BY>_{_a�8r/�u�fsŞqW��VN}��l�7Ӳ�`Y��S*00jV�=�[�-eIлEqK�~@i4%L��e
,Q2WRe�*2+s�T$W0uGVRl1;C�#Ͼ7uxYs2ߪ�tH�}
/τ�xx?Pk2�9Z$7WЀ��Zaד(0i��\?q�+rkSRoac�GXw�`�W0L߀"V:Ap��:���^�0j]C.9�/�jvl֖Qz��ނX�Ff�HLSgR`�k~egl�i^�g,*̒�A>aI$V*�G=N!俓�&k%�(
4.S�?F�-Tξ���y��G6/�c}yZ~]9wF)Ehx(₾{vTI7G"�_>�veYXeљ�lO�lϿY>
zH�*0p^ʂ@4͉�@ڽ� YT9\?-vt/7��-@�pݼ�0iqxr_7ķ�O9֏Rqj3hC�1kl2H#Q��ӕ,
'�k��RG�&�&X�T1Y9PB����\�4�yXY
���ߛ�`�3t@H-ml`Ϥ�$�C'VKt%=
�{7u7ω2�,+kBsj/t( _eAKjCCXW�TzE~XI�r:Z0��M��.�;Êf�屾E$~,ܳ�Uږ.xEo A.�ߢRY�aV�Ď1&�,�
֡0�P{�FLPe9P ��v]�K"xSO� 4�zw.�_(]�L*!k?@��w3]_0V{�ԜҨ`
ubdcsw7�f�yO�3TOP*�)/xxvu7r,ct�_"dsKhu��M[DP>C`�i�Ē�'JQRn$c�YŎ9ZhFi�*"{ea�)`W�s3M\���g,>-2AH!-�SKE�
aOS$�^3"(1a�=�T�W�+Ma"q]�8+M.��rg�b>$:f䶔 h�-Iخ6�6h6�1cH
���lXk7m�%Tml.j_ٝ�#Wg}PLnEBVTs%̱:,s؎o��dp+?\�9��yҗg&t�o�B��?�_N:جW&Ch�hz4L7}8l)�Kz�-Y5�W˭��Xk�皻ת4P>*Ns�NjiC6�gJ.ͫPGd��{<�h~�ރ,hًa Qi%#�*̢mb<�[š�;�y.��b/�.'
�%FS���vo�6�~|7�q/.�[(}�jG
/X�- PI-nM�cFwx9�Hy�k1C�Z}�sdX]s~#p�ם@��〰T�MmQ3r�6]3E#` b3�F��y�m{`
V�IՉS)dw#^Fe�y���Y$-0د�~�C�Xڭ��c{>nEArE"�T�I5X�+ξ¶p�P�xdQ��Ji�£-":k]1 (<&Bs9I'k(|ܼܠ.Y.v%�7\
%+`^&+how�-a5J^`�N]�j�Y�T]W.�j
d0.<_r4,w�r?�>M~fksʊpGu[y�Vy猘`�p
Ycfµ1.<�6㉄nQR�t8\k"(�"�u."�8 %1�L'!�ޛUZK]1%IېՊ \dHǸ&�o �3�naAKoNb|;@붔7i~qR֖��8/S�R%m3RW��Zo;�fPM4`롽$�_�D֦4zd ?�D*��?*cJ�nV_��l.P�~b��WO��3\u]�$ӿ l�zŪ��ꢳ9PA&1�|%\" %2J/J!f�-25x|
a�Am�igaBE֎!�1y4Lh�N-xZ5N
!�zsDhp Z5a��b)HL�XA*ZU��w]5Z\փQwgvSƩZ[HZl9e�N��l2_�$��(m~1e�5~nNd7���Au~+!(K&!���X�vgހUg"W$<�G���4�BP9D��[ѲJ5Xܶ%`+�_˿P$*P��5��kT:0� .9^�ۂ!SzgƖ�L^ȧ]a)⺪'i[-^oP��û�7f,�\~wV·h�RLo�.`�'C�FE�ȫY3>�Bm%�h&-��(
Wu9VWb20z�g^ {��z藦>bꖓ"wt�j�%>pt@xdNԜ�8��t7OD@Io(
�M,�WqH�@n]de9uaK�mg�.�hC[Vy.;XkW
i>��%V&�οz)hxzɏ{h.=iHBӘ?WS0� �D}>;Ee�Nè&%|a,r�k�bRk2~(.j-i��6˜ސƌ ���?(E�=2D�CW_��v(eb>eme�r�߶0З� ,�HA �.0(r�llYi<�m+~N�>)Nrh��"���.fF�UxL�0+k�>㫕0͵{W|3>�p\v|ԬSkf�hCH}L�U\,lΆ�vܘlcsm����Q�hnMv"vD�P�;7_!9�pkSS��?< xH�ݖJQ��9�[�:M-u7�w0;Gt}ж��H)�H?C�O��g�Oq&.53�q'Cb[og�n�N�
00;ӉҨ�)�p@eC�@|<~7�p�%5=��FBTGerwE@9Ǽ8vzkwޱHfa4QF5�9�Dgv6�Yn:L�?7._�W N#:|�vh'6ؼJ3z8���\�?GC
hgךq/ȯ���ĭ�t7�Dv�"9dN@%�;U1JgįM >)��ݔ00Yf�b(`ΦkE8�m�l1�!�'O��o?a[Kns<+N<71��
}Ȝ;�%;Epe�z&2$&"l/n8D�a6К�z'hs g�p-`(��hVwwa�V3d>,e6uc�-rdD �ɤg�W9dCAOL
f5fl:�c-�tS�}�hqZ+-%� �=̋F[|9�oe%E�-E[(Y@t[���#Պg=@������5A��╦2Hy� 9}HSX|āy>^S�|+PwnuϘQvoLՆ&C^+�H:L3K4-#{7<^ +bl���$^�V�[,brD��Cݓ|TNa v*�$?dv.v$_-%0SF+�?x+̴ۣ�
˥�BT�ȅ:ɜ[r�,k�l�fC:ffҩ|�κ���~Zl�y2ҍ
5{17z�y]Ђ:��h�yS%9)J�c%�"�`浼܋j�@
�7Xߦ8���Ow_��V>yB`.}6XP"&ҢB��l3~[5��D^*)o!�@"�j)z36}]%6v�[�nw,s"Up�F0,p7/!қ|��$�*�
Bg� py*WAai
�EعƁaO�7Z)~^Y^Eӑ�/?pv#MJGI�DEXl��I7$ekstFlW@@V����"Ų�HpOMAD#QN//ձ]%�l?��%Nn�|�15͝�M�~zc$��!EBK?u�:-�@{�$#�r�(?犍�ڹ,©>��}r'7�
[3=^O57k�� 0�*#bdM
N?P4HP;�q�W95�I���EZ/~g{��uGʣ4ZѰ�
%1�n�1JJB�O�JMC٫�@cL1"&<���A{U&$8�zH�8=̫��l2)-GhY�7%�ѥj�p:zŚ+@ZGųBv^�s��@ftڧ� _;.�OI ��Z|�GYP1
0p0{}k@(�Wߠ8"`%�F�8�@*hG�J�){!\)C
��/;�'�l"�^��_ep=��pIRI)T����1j)�m$aؤk�o
FոgH�}-i�7`n��(-!ros�Q �++@Twq(SC$C$V�&��'Pm dBl@PLf'�=�nY�wÄ5 G�W!Y!��&Ӕe����u6iT5s�k̖T�wP�a�(F�SZ"th�T�3�^M(,jQ{�hWn8#i8߁K�囯~|*`�
rt E C'FnL�-[+D�gg�(.%j+o��b�
^�0'1ˑ�{3Z�}0b���{Jy*|sb_,T4ƪ@p}>QRZ�낉lMY!WAY.9#"x`(ܳ5-(r/slA�vb^i33�Öcr�evٻ6Ie�O�l㻥AjL{H1Ns0KcHQv��[Vye@><0�ܳqw���Yo$;#Ow!�X_iC>�cV&#�A]¼�"/�gJxM�El�I7G?s
huM2х='��C00i: |/'��7ʢ�!N��Qdv�w�he#N.
��Co�t]x֍1otޝ#Vo"+�a+([.�~�`^@*<-$$�HnC[BB�Pk
@2é&]y�
l9{N�&h�zl72w@Pj7��7�2uQSJOփ��Q4/+�P�!~"2"�1N��<=�4|��!�'�l����LLG/>)Xܬ0ݱ�h]`۞8@��O2.P3ZAbV*lfVMTƕ�̙L!v�եz�.KzX}�Wf`�ȍ9�%͉S�:��x9��G��F�jܑ�:L��̬WkZ�~.M=�*|GRnbg�g^kcN~k.�irs��hRg<�G�c�
K&o_s~NiM툼۷
9J"
H�ӑ=6�Ɩ=Bi|qe1^RhKIaBhթ0t&h�q~�&q:
,�VHҥPd'hH!ɔ�Rxr2\�x2*Q2Hm;Ǫ>{Bg#mY)}���7tS����Q4s�4?Do+ց�
T@���MMBs0JQ|4�,'
� �S�̲nox+$�f}Ex3��BF/x�|?Qt�֪mmޚmdQ��2Al�Z� 6izr>-�xf
/잡N��)'>��s=)
��ʨx>T7|lt�)=�X�٢˛eO% '��|u~���KK#oAoK7�R�h�RW� J?k \��ү>m�=@�^M3A0�}Tm�D�#,:$XH5tWA_j+�<;�:~#��v%gq�}DּS�ԁ%yE(�l3_l<�H=[��ھ:4ms�dVCގ�ta$I�#4/<��2Ƥ̆KPN jGĖ�!�F4!`#N5w'�j<"<(0~tƿiYX/Hm4]M,��f�Vvʰ�d+
G\ZAEi�qB
�j\,���0X�yeԴFv�uI� �'$1
:|����QZ�Z�1fjR6w�!T&[
H숀Fh��ɨv���cL*&ڐg�%2�!#�vQx䈵7"ښ;j�[ż)�h(
9vm̍�Y�is b�(O[OXQz'-aL|�67Em"14,4}Z^jSMgqFs�v?" tY'�EGI�gجv#;ŻC{b�l/~pt�e�ncyDe�u)jw{]�V �QB�.Rr=pT�3tfuQN�H*lxN�aS9�H`.��J!T=w\NW�TO[n�Z�-YaƷ1W�n�E{dդy{=0�lPV
ZO"KphWYHSm=?
J[
9�HR혟NR�!Y�~��ai�>Nťy�($'�0?dJ�1>>�WA5f�3��.Kg��,3RZz�o�q
*���MA5i�h*�hz#
�I\5�|'I,}/�".9joQ%��|Yj݊✹
80��Cx"`/l0?&!`�1k�LXʂG���>Q8L9�SoqQnjNX#s�~x?��v4Zzj�ɠ��Tҍ<���㈤2vʤ[�[|pI�yU�דݵÍӮ�9`-yCΘ;3R�P(\GU=��I4�F8�+w�<-Kzoޥ\C% ]�7q?1�찁 S_M!Q?�rLQi?c{r!o1�VWeӇ8 Xn6wB/
k?ژSָ+-|z{Ei�C�qp���ch\X�`d�f`h
�r|E1<�҇k�2pwMM"m
�Z�$Zc]'b�/d;�vѱ��}/w&�(Q�4$ Zt~'ܡ6�"��3XȪ5[硹�"v
MHB�7l*˿2"x=�yBw" ;�S-7AL�+�TW&X>wuI�ܚ�SU��[��40E`�Wu�,N^چ#W�_z2�R1mܝhS̿3왘"UỲ�wfZ�e|ALDwB~cq� ~QCۗq( K>�;�?=��V�غVCeQ5/UKOE=S'xWeoG�o4�;�6&�zq𡽥ϓA����WD�$ M5���˴JO�QZF$e;!d�bюbƜ~�[�5xs_-:5n"IDdQ��mGȓ겞5s7�w9/*�iP����Ұ�ԈT"(PU�x4�ia�$n�9
Eɖl���?φѡy��r*eV�a]l�B3� ~P#Nkj*Gܭ��cdٝ0ܽ~{�<ߕ"HJ@5}�x?n,�7WF+�g}dMes
C{nc�֮c*ױ@�sFД�>XHt�l=n3�EN �A�S7W ��f ]W$�1�
)��7r��2�n =&q۴!tb,��|8v`�n�]SKǙ(`n2S���P{k`���ߩpΒȖL�ֲ:Hbk�Еm�ȏ�"ձ�]?�A�Vo�:,./!tT\�8AWBy~�{T˚ڻJ.�AО+i.-ҧඦ~G�+b��/JY|9
�|'1Lr���tH7N��ȃ9xM1^�s9�G*?�F%��ve˓�ܷg;#d
��E~��^9Y
F�.x�P��w�Z�X��7�>mJq#;�7[�l�x˚��'�x/bP�[����K;�gn^sc}
�\)gb�YܛU8 L3`*U�`n��=MdFOt,3o�$gā>I�`XZjN_�I�XHD쫅4"�&�{(ue?�4\!:RLu ^}P\#i
�QDTv�4A�Aלڬ*t{QElU<3qyp͏�I���z�,�wlYRpxAM��Pjkdg)XJ�ԣSz. a70^)>J��d�%Q
Q�(aQh2;%kAp0ÐZZ�N'm��t�'sO\�tѥzV5S>uIy1Ö�~ѩF�ܔM5D=�h
nvIN
1E@�A)�N��eAE1w*R?~n�I�z�BDiπ\1eAMu�3�Z�6YALvyS�s,l��L7y?n�DOd�L5
rT�|L6�O�q\:�ʌUY�Q@vXFwϻk'{ah@^+�8K;^�M�9�j>&رĖͦi{Uoպfu2�q��p1zvnK4@MqT`;t�7_(퍏w�z*U�ێ2�h ~�`'J2ת?*;n�ԔCiS6D��QclW)��{
\�l@|�[Qz^
GxÛ��,=o~|ʤ#$gjud��.7QYpdE۞�|ZN�U�HA�i�F]9"I6�}"@8I;?^�X(k�#4*�Oǀ5�ס2aU'��V��
K�c=ǻ�r|� �."z &�3-�4�u�)�c@�d:Bvi+^G8)>=�v'MȽUa��m+w9Ap� PJ�-vg"Zy��+[װ;&RU{�~;i>t�-ߺ`|hS\]#b .! �~�0RsH��a
+y$l�uJ8w���WxF� �y'y%N4f�(!G4V@�cHi�ՒjozzwO5_^89�[ҵ����k�_h�˱Dj^�f-ɐL6Z|�9Q�K%#7r�8OG�^�pzrCQ`t?�fVE�l%d"5Z�Wɝ�r|�r2��%[^|�;5Jqt-Uw^wYS\9�C.=Dtʫ^
�m�4�"~YY
�L��]�G$�SRqeN9��5�\g*j��~}f�*eHڭ.O&W?Վ�EO1�u0Nwl4mI��>*8KU`��ӓ1��m9��Ye9 �S˯�O j&��=��O>~!�J7!^v+ۛRT8D)9K�r!lO-ZIh�J.W\ Iwz$љ
YLJz6�9��o�j�B~\H� 5|j#�4>n&S22^c�\M2i�Gϸz�>vXid)bb4
#��V�a'-c!;sJw4~b�J#1~�nPaI_tHaҨ|M+?�U@A`3[R/Vw�^��"̮4gJʂ
ݱW�Cpjڷ
xb1.'%�>$o-�@�/��Ce�(N^U|kvվAOMci9$2|ʭup0-us!H�dO�jv 9z7H�l#�8r�㤤zd#�y��PnM�u�,�T�qPD��*z'tS͇u|Lg�oPG%{_l�ӯj�Z5(*��YC3lo�RSoe6��#;�a�4tPC@5�}�qCE�}AH�>8�`i�IC�8u^J+Ze�,[r+ڊjgC;G9f�֔SBrHpt{T RDQ+Ȕӣ͌��ư�623cb�+ce@o�l�ؑ_�̪0z�瘙/kIkI~\ey Ӕ�l��Mӧ�j^ߞWhו�i��U5\�.�|M�<Źfv-w�6ˊ94,L$w�>�g/)�K�ez�EچE[H`�F/�yAh W��K1�^
#$ꑁ"v�!fW�b�JBH�^QY1˛
�xEIHt˛yY٭�a5t$/0;Q1BJ)H�զқ:¿hhM{���˖-Lޛ�WqWxE}aE��7i>9mޞ-<�ኵ�_
gwDd.�ܞVw�kf|A%LS6ᄃ<)B7,!#nu�(3,!X��Hw*>z:�=�.2�M�if�:h�Fell^3�a��^x��[;;�X'n>�����P"eo�-A'c.xAM ò6c���m^/oD'4�Ƶ�}91��*"=+Oo��R6+H8=q�d>LZ!�
�s]8K9y��[0I~S�06=�ͷ_RlX@A;Tw$Ғ��$vCɇ7Jvꈻ_h�i3S$�{iD
j�I9=%B~K�*���xC4{�N7d+�*U͐$G]W��b>�_"|n
ߛ�KA�v<ƙ�&7[T�0'Џ\w+iAx�?P0��#�]lun4�^�)L�D�Yu�M��ӌf]�ÈX/
go(H�9{W7��DQ䦸�SU۽�$#wx�4ޭw��
[Ag�`0�# M������r�o=ް*+3W5iw(:o|V>�Ai
̄W9ƞ< So
S$}{Sq43P$v"�|V8u� l\qoՌv(q�gS0*7;KvT>�|j]=\���Wh/$%Gme�/�WӾRev�H��5&TzկͲGew��?B�G��X�1t�:H�H3s�vB�>UDSp|:Lt2׆�sXk�6s.>;W�:�%�*\Pڦ�D�
Ƚ\ލJT^Ά>=;
�R)
�&4�Ovm1[��e6`yC�4)t9�8�Id[_���A�g='�섓`s]xS@r&P
1�+ CS���)�AVr���Q1)s�k{"E\obON��hhPaS7Jf|75_٬���w�4Pӣ5@9x�\btg ɡ�')J o\V5My13y>7D�U�(�Oh�l�I|m-\�<;*�1�]^2҇�`��3S^+?F$���6��e9�U.ΗɱD�|B��n�^��\\JO;;sԊxo1Po,&F#jJ<�R�
WhhR[�MO1�~�%eY�mMmJ�`�4$X
Yln�'5HFЕi O\sdREU%X53Xnꩳ*?2~Q�:�:n6kw6��i*+]�M2giʦS��)y}�f�gSTbQlW_�U
SvҋP= �9`��x�2��YZO}c�$Ei6h�g�P&L
�״1"ep*�6sfaItj$ulE
X�?K�V0�
BhK|
$e^mIs�6��ql+^%o�|vVQ.+w@yf*{[p�մ] ]:
v.C\�?�w+8=4��5{
�L�vvcLmM%mt/Fc՞�v���F'$
w;q}_ GFQ#E`z�7Tc�v%
�p:Ő:rC�qH-�^i�E� "JC6�FLscɁ̒{^Q�I7S�/a$ޣ;U�t�8M#5"tg~Fdwʃ$?q3SG
tbza�Rkxx>� t'(^:F�9�fKs{/i�jv�g"Xz*YFb�|8ؕ]3I�D�Ն2۠w�nB�Z*_e�
6�O�Cz)p6kClL^�2$[>骽W ~�k]mTĊ.DIlz}^��1/]��QT<ך[hMA(�!��xa��n��sa3d�X4mÉ4fuϤ5�=�ˍRT�G�d6nP<�C�~HlBӠj��7r
]�c:HRdM;�=�4��7{Л�6GG"���N�'^G͕zP{*AuERv)꧱hgO ��Ɂ`ӽ%t�Paij�t>ƦӤeV�ش*F�}K�%0qd\z55�@Kc��8*nwxt[�t�㊋r�S7f�J1$o���y
s}SŲe1�unc�aG�e�!��F�O2
bY����*�z;Z?�`_Kp�EOX�-��3l7$?Sn>�y;ܯ *m551|yJ��t�;UN�> @8���e{_$�}�Q� U
F?�GD)!A=ɒaM,�Jo{_1�D�ҿ!˽2X/˰d0ybm:`ְ㱿o��Wy\iWZ�>b|�(�a�nn�&S�7�4o��`yN�ms 1BыU�p�L2Χ͉���d6#y�)�ΔG�N4�Z�G'y�P�oS�U)$;N\a};��S{tMhU7��D!��:q9쮮{<腜_?�yAZ"aw �ߝy>b9�!0K9?ُCvJ�v
ns_�PoL7�JC{w�Џ��>~ψRݦFyvIG�H>�ċS7~�1�ȀT~�h-b .A.�vʌ6W\k8����֤�Òhň
ɛNQ̺�C>
*O�Թ%s�R.Ұv%�?jp78�CMuP��ֱXla�,ןn*5CۃX=:�i3 +cd�8R8śF^k3�?н lScq0��zZqb݈�qFlrVsy�kB"�O��x>Â�;I�439u�^;�#p6<Р�t9�f<#^I(�"2��bHc9U�at�ݎMDjw4h2�H|EX5ؒ�('�zbF�Zg��M�0k�fkn��@i
IO]&�]+>,UQ4<�7�
0Z˩hC�([3[L^zn}�FYl�&?+�oh#w�h̲7s"tFA~�f�a6QlX9M �#S)BFW�(+P8ĝ##���^b�Ҿڶc7�j'Z�^]�|m4+`"�k=[��b>voы<6Uox)٪+*\A�^��nR&jh)pMexzPi!B�U'Lb�5(_g69�&*�І�P
��3j.�M'=�ϗk/LN<�Մ=bٍJn;|�`:8°:)P;@SG.C5P6�G���6!
9U*|�[qtQ�b>x�] 0�M,ob߇+kۺI]�NYfNoM�yv�
pq[�<�Z)
$ I�T@ՊWeBv%�d�ٴХ,�GdzI�,�DŽ[2%Zr#{P�1ImS=gݬ+]2S-Ed&T�×NU$h�a{]Ð}+8�d!ċ!\�H?֒7ID%:]�+'�\_/o̭\ ѧp0/`6qn{DxߧaDZ.Ү%ªd5R0fbgu%��1w�[��\��3I�nSLGU�-+v���o��CwƼgU �1yz|� Q8h�+8^iHE)"D��H9�Wq(�
ʾ�kJPKg,��8xy?!yni/�iЏVg�z8�dPs:L
z5�B{ίuMvT< %M�3N:MHS�y[m"_NU]$;sbQ��m{U�j+1-`�oY,JIc!��.19<��;UU+��i1�f��3ŕP��XEZƅ@hq=$k1Q%s�HEZ�tI+m�Nj���[' 7��;}C7ƙp6HP*/S }HVkr�V�n˾�<���n�$(�b�L��E%��)�.q��D�g�05Z�P�V�
�E턚~�3��+�~ #kdK5dٮ
k3vN)�6{az~"f+-eE�aѦ<9~g"AR�xoA91])��p:
�!J�M��jhԏ��=7�K?�k�̏#��%�Mw�ϥCԎ�0�غ1\8b�A�1,�&zQd�ĀP��O�3Oڟy`�<��Fe[Sc#ޠmqlBP���Yk� 5m�61EYjϚm��p!f�w՜>�db ��Aqm]>�8&x(����CV<� ecZ{f/Tșg=�q%m0WF��quWNu�{�^}7�R(L-�^ `XO^/���a�1f=Q�?CMjpy䦋'bࡹ'1T}].Oo� 1c�T{�;ЖAh�1Db^��̶{y<ˉ�I5~#Jt.^��$s̟
k��o146CyKGk�k�`Xj֡H{LSOΖ�.]k`xa96�@�+���
U{�)�y1>5@$ �/Fv"9Ɛwq.99[
�pZj�`!'%x�:)j#�W>cM˿�>>�ǔTԓ����6�f0M|Q��7y!W�7bk�Vs�<Ȧ\2_795
O�~Ty��HYDԂ-
atv.&Dl0!p>�w��C_�O%
��)ym_kPvru@vPQ�PQ E��s�?짜FK\tqDM(B~9G�2u;V7L�wF1Fj"�Z"�!Zka0KP��D�gW�*̸'T�ըK+
KFsLNZ
kR`[$ =MZI�nW
�>9Ŏ��.�h"v TġȲFmJ��CleĂ�ghŧ=�Kn[$K35o+N.W\%Fu�
2$�T{f�ҝ�%E�B%�,o>b~
A)��&7*�x�v|y/�~
f"U;U�s[f|y�}xW9j8��9�xwVSN1�@���ƧK
j
�,�oa��s:A0^p D/z8�vS�O�gAvuh/N%�-8�+�6r-cAs��A_Dh_;��6�
0�$�P賀%a>noR�Ti_tك��x
<:P��ҹ��@'Zvai5��p"�V��X0!KcXȴlˬ�e>X�>Ȯ�q餔�Z)>;"bb5?5*Ih7d$m�;[]�E �2ީ�+ǺF�@ϚO_/0mVG�&�43y8J�=TM!_B.V�!�d/B(aV�o);�.{܅08g,(Yw�[�X٬ʃ-HY=��Ibe�e#Td��O5�VwVw⬤�1e'r>N��b�hVCnu@�]jh:C,io/
�q����L~� �{eR-ư #50玺Ͼh�wEd�AŧV�|j(
Cg'k�
y,r0
^�W�nj)��1MO~�|XO7N<-�i" �V;�:�/L.BMzǹT/E*#�ԥ1=q5�["�gߤ^%�aÏc*|�Dž|��Ӗ� }yvK~?9�%Uί#'Xu��\��� tVD0�P�Q"+DSYqvN
k<@v~��py݃`E��+AkA5Ѥ^�Á�YLQ�{hEwd?k�Z|�F�~�U�q2�6
E�L
�BF�nd]Qvulam=TzB��u]%}�ə'QYm�,E�g;cHEFqv>¦bL�BוKcD��j�`k��@:�A7h5�:�ӝ:TշI.S��0h3e,i�{6uY�i��=�ߛ:�STS�\@:& ?�����pL`u��L4S#W%P�<�7�ɬik_>�K(�Gѷ֭yV~4-n��L35MYn4�Vj���<8Z}(I̜��8]Cr�V~�R��/�2w�+:ei�)8Ęif(�e-,@
2��½+J�9KjVM3<�83��1Mm�dT}H�Ǝ���Ӧۦ�2�JG
{H0+�^md�b8/��I-^I�/�N>U?&
ɕ�j!h9�J��?˸X�8):;�L%#�tWZی6q0�LrL33-,s/ēG��Ÿ}]]B5�d5&߆oLFV�a!d� znbnI=ֹ�O瞻zX㜀 푂PY%o�[ d�մ?+8V�J,�#_~�K~T:W=-:}�/earY "sԼrK�([]OӽSRCJ(/�حsуb�w?}{+��{So�%9G6%Ql\^o2
7�`$W;JVV1UX�����)'��wT�k'} ĥ<
us+d2:��q�Xi-,��x3���Ռ_1���H���@t[l��l-,B'O'��vhiEa2N]:ߙR큪�
X*8�
(�1[S��'?(IrI%=SC5�M�'N-;횪hsF�:^K�0�(8�$z'6.KT6C58?Wo;+�Ť/ gjde�ioyk��#B_Mi�;*-�{-Y�;pg~9-RN(cf3�~d>*&�Im/{eP�T�ײ�7�ݾťک4C%'
�L�drN92>>Sn8^R''FS;�r;Au\{xk[5�EB[t`$BX?�죮7�䰱�|x�Pa�7~|Kn�"T$4U?27%Ñw!m �ՈjG��̈�;4WlS�m�O>Vޱ=9)_uml�[5��T��Ujlm{�}dz9Mܺ^(g欷ިs�3É�荐n%�֞ ̃İ#�ɠkYR:U3@{@gZ-�ōTio\t|5/�6,@fJ��a7�sܨa�ќ;钡%(a��`>�wYo�ܣ���k;ch/JP{M�-B3Iwغł
)#}�e�2�nmM[�xO/p�c�?؎ӎ7dP5�W^(r�1PWJ�
fl1/Rm$�#�AF⽡Te|'c#:$0[UG9P�@s|d}Kaf�^pɘ�qkD�&
d
oyꞘ'tfQ�6
Ӆ�L�Hg*/ኀ`I�_�q�PJ?�r�_k�d}�F�J���5Tx:{/⢂�5a#EGKY@^
BӘ,|��/'�v>J (ߞ
,�Ӝ��]%Pk�h��-i&'e��D-"�ϼ�t�GEZ�^Zo41̅�Iu�(�q4Vd�n{��]��"݊4pnGR_h�ȑ
4�z^Xz! jѝN.m;$D�5&No=�'I!K[hp�L]�=ߖ6�t�XM*^BgD�"xx�x�R)
ImU[(*�-9pb�7L4�+K@���/Y T=NH"7ϔX>?J�Зn�H�{��,~���SmH0U9l?ދ��1|]Lp���:fI-gLfUaL0K�Ϯgޏ"�HuFL%h-�>�Ss�CF\0�Z�{ �_mUF[wf#iL}<�!U=9A}�>d"�hp@eL�oww]0g$8.-/AlMDMg~U3�ōEXn��Bǂ�F�;Ai[k�ⱘ7�K�jl'�.���KNUʄOD�j?0oсSiϩAA#np��G|3�T8XZ]B��}0
Yxhwu-1�# ��qHQ�r�p$�f0D�+kR�Y�~",�Eݦ}(6Ny��Ӈ���vgU;^7F*_d"Y۟�+3��^6LC釩�*:?�[]k9.M?�f�98wڎv&WFƇ>_qXfMzğ~#�Wx�-tszz"�7L|_� 8(�J,2Ő,!WTmT3(M`nC٧҅� Y5
7�uAЙ�HVޣ*>�?fReۻ��C7�73FIܖ~!Ne
Qu籸�Ⱦ" �t]|�YG�a{߯���;��[!��3:��\.� L��KpH!x݉I>��?[��a 4i]�90�:W;p$��3"mOc,R/tw'MnWIy,'"WC�m��W(dH4�!p}."ƜU=�pS�b^�bL-�FFg
PT9 6�"tC4��
{U]@cðf��1:L�1w4ҁ� �
( *,f\j:/�P�͠w�p�2� �9�S �0�C �aT܁ב̋����?Z ��hw^)Wmm}��(dkM,E_.\&&%6�ĨO58M�h5襭vխd0f�Ĩ�Ӊ��_�͋�p4w\��jXs/��4JG�M:ܵ�P�czfv<�-uƩ::T*�ߔ�\GbC|�}~
�GrҩS�NExImsS��P�
|�M�0Uf1jݪh�>k'�U_���qzB�+-:m筃Խ��+)X'�eԏ_6P `|4?2z۔`$kܥaڤ4��4N|qK-�Q�.�b_�,傂z@X�M1:��r¬ Ɔ�#s�A��{zH�UhЋ�($r7}�¢vGREP*ŵ0�װ|�G+VYI��f�:uHh�+ߦtĬ� eʾ턜~>oL mJ�d>�4^K��`[ J�.݁}\cCpI"scWsji*Z`�2�%�RX0"EGO:*ƜR�E[HMCj{BS0JF[a�s�Edi%D2R.q
Ӕ]>4�`.�';5fጻ)whMO`2MTcP4�SDAcNa%'�<'$E>$pBd{`):kZB
�l��Jjmց
:Kiu�61q�''Ü�a'�1J�c[a$K=$# 2pB�gCR:]S�Tq!r}TS:�a�RmfaN3͜9�Q�5dT>|Z+vȵ!P{*�x�g \�Ld� , uĸo���+~V|J��C@S��
Ee^!RW �y�F��E ^F;dhX*9�8�Ϫ@b-,C:չh OL&U9;Fcyϯ�[ Y�+?h@K�Hߤ0mi����@6�W�xY &�N[b2o ni��*V�nE"q�E$�l�)V�@��Z�?{Ri���$�.B��sb0sں[jJsIo42{�GDlh��[|}�R�eNЖ˖�%8%�^%b+9iW
�?91;���[ҽ�ğS��|�9C&4�?�&߶+eFyY2:[!G}wx5l�5�MԨ0<:|5�UvWM�R��FQ�@�Cg/YP~
�y�o���?��
\99r"A{_Uso~4e�UV,"M�XG�/HmׁtX��R@�ϯ�,}Ry)��gW�J'_2���;FTo#8-'�~(ឥ��A�X5j��2\R��JUep�m؉I|o!44q)/=�Sό7NӯFGEO6ӫ9QhLj3x>8�<�em`�}T收Q'GTЖtTҎ5�X'���-xyzi}W�
9Y=9tE=8]L�P��[����#���7k%R�i���*\%',2p+/�qy$} u/�@ێ{uYBw�>-[Uz
דx�J)BG)@UB�/�8��WFF]}a[;^TAo�g.JKd"{+t�>=�!o�췈[ox�v^T\?�s;І]
[�n~T>�kW؟),g/_u]ΎyD�?�e �}ë2�lZ�U�^UA}V�uhB��
廠]8*�.ȇԮ `htv7-�"Cv6G1�RHGv`f�k{7l�U빎_(#?�-+�#Q ĉoճ4F&#N�\,�t�g�kt [oH_�ev9_?8�g�}�
xq>WMғyb}o�[� �l�`l� �h�MD�vshM����v-Ё��sb%��xFn% K�R~+60NҟV�v*xYyZ�;$x3%g�[a�Q�m�P�;SgB~T�o
ȩqŠqg6=��ظ�ň/ƍ)�{�
SS@�_ދeWĤ&yچ*�kBMuG7 }�0Ġ]ueت Raj;gͯ��mnʺ�F�
�ʎ��M��"hߠ�`o˗w(R�x��WmN)0 .||ԡz��d|TxDE;+%,Nۮ�]�H< m
�%� e����u4c�>l.�-a�&Wkx��!]3eC&D+IQl�T'ѝ/)L+J;cTu�i�m�c
{MR=EbW:P�>U
�j
r¿O�%RAE>Ȱ O[JkL�Ӥ'+�»6g�J�o�,eh#' �K}mWK[BbB_BvCf#?�ä9�Å�O:9ܚWbg͉�Y�ʔMQ� (�^F;
D=I�nې��Z3êI;#Drq>.Eym,_ZiWHi�Rc!>TҟBMɪ7ܪ-f?2n�놦BNjN|q�U&^�,*CR7Z.s�XYo[!T0p'>w�
E;��W�mxf."nL~aMH%$?6�bX9[Z���CQ���\/�m"^ 84`�~[nJ�o�L#3#AY��1Q>Tk0�xhR~�7)SD���O(^*/~�Jvb�����n{�fY~NɪN4�u�U�㍽�_k�|2(-�?�!F
T*Nw�k�c�f�O_6�;��5>ƀ*�k)*#�;(bz.�5�JN^,�N�8]��A[┭A�
ր�Jnηe.Z�3*g8V45ׅ�L�]1v�I��K&A>�̔�:�[>a-Faq_2n%) �&\_oy3r¾�#Fi�͛�� ӑ)E�mnRr>&��oץqo�"J}ު]lE�M(1�,f�$-��=b:��*}rS\��Fk�Ӣ̣}wYh�ܛ8@R`c�b /Ka�ʴBRpsW3�T1a!�M5D{$BcOAS)>fylTaz6ӫ]$�B��VMbęGL��.�Rf. 1c�#ɟeT VN�IQ�h; n5WY�UX>o�>s'c
�%bo4z:W>fFD��gܘ�=�xJ!��Mҟs�p=_�vMMK<(8 qxy-C��ȥs^�(�)7R.1)�
KD?A��@QA�"9U�P $z
_(u9<׆X�ec�f1+0Xr_@@Z}G�U*P} ˗�E{%�#S�Ke#̟�瓝CjA~s�a
bƯK ,KR�(ׇq;S&н_�y* �RwJ�,~EaDǂ
L�Kn�:tn��N&p[��2w@XȶZt1�Ph��&f ώC��C[XGbo��
>d^cV^iZ0HJ[L9?:8/��@P᭵wmgC:`{jd,,G'Ш�)�g6G�Ε*=;\5UdǤx�j57�0XS
F;[d#a��yk|@$BtS'tEj�W�fK̍X2m+0���leTq#��O�N:}v^��$��v|mɴ�]&��~��?�9�3�ٺZyDCe~sT:Kc!kD���: O�bBߚ!5y�m{�/C{&V0�Е3(2\�
}R�^�D��!ŹCϐ��^�ZN+q�V�p�JjP�/�=Q�Π%*Wqݵ�z��Ss6V�iNۍ&+熦�p)�i�Լ'X�],�>f\Q�փ0?|�`�K܀�npe�)
LM1" ��Ȁ$T�
6ؙ eʁAL~nH6~X)V9;w�sC;�&J5|Y#�+��5[HFr-\u�譃�"w2sAc�QVf$�T�U9�2c"i�p)J�(U�lV6J&$R5�P
�Y'MLI|#!!
Gy>|J�y��V`�.*SL
��)/̣:�yQ&�TO's8u7k�T|ss�Y5ʝE�a'�r�XX@N7&���zwF�_ó��l��1�}��IHPa<7ŏ�D}1۪�u
֟�=;eJ 1t'#4gRZ]>b[8g��`#*&�l�ײSːǑQY � w�+��༷2�8�R'מt8�9�1z�D&iT+0*d"(K�pP!�pmF;8ZPFv<� �&�E*\$ư�+iDm&pYKdZ;M\c�'aRNU]6i�YI��Ac�e5s!3�f��RlT݂ιBBo�dB�'��B�ٙC�c�Pq9
(u (' ��˦č�ﱸ7Xu}9Ԁ'kVb
5qހ<�(-BDDSZʀfϽ��0��eD
3o(WXϪ|XQ.�`oWH0E:x5G\���7'1lg�9+I mwYp3�f7
476?'��hkgv2M��ޥ/y_湍sȉGa'�8sSMG�k5n�&`5٩crG}?۹uM���7F� Q�>�aˌ�֒'(!R�|~Ef�D{9�"M_UY�S1cc.Z[�n�ָ}OE��_"W4Kμ:7ͦ~�m�M�2[1"j;rr�Heh+��Fy>r�Qi+`�HΜ7D얪2u*
ا �ڣҋp�-d�oWb|-QP2`mJ��ER3�bk��ř�!Fcgi�>�2r�_-.Wull`TUԸ�gDZ,j/3;�+�-UK_fJX`5�d?d:\a^J(2�Pw�-3տ�!s$#�Զ~aGk�`L��%�.G��-JhhN兾2�Ek,Yh�*L�AHbU(n2']7.ȸ+K^ض ]"@sGp&=�X"���MڡT/�k^uO'W�_Ql���UJ%/��n:rJݶw�P�c~W�Ê"Do=�d&֏(o�LҟC2s�|�"Ŭ
#�[
W/db
�V]�DU7�5�4 6XQ�ЛfIG�0"K
;��Ŀ{\q�Q ��zEhϮ큮@�*~��eg530T_:�l^�kToK]B !.2�F���| /Xx�ʒE]RCbr:]�i6NAo:�v6̒[pF{7πe AD�>4�u)�GZR�UP;���d�Yk2k��+ hOL#P~ڏM�ZT�늡.0e_dM�n� �Ö ����мP]ƨB�U�܈I?aA:�{g,(T>�r}J@ZW?����%g0\"!J>�[>�ت[�;>�oQaEwJ?ߜN]s+_Ej̦žlc
s�XiD�håC_1]�ŧs�+nz5Wd�@`ˁ��L=[[:eAu�i<�iY7
9L7�-T�։hKXּ
{Jk3ס �e{.cb�-�[s]�9U+�EjӯV�6Cc�s)�#NX[߲�� %FAt{�H0}�K�VťH�.X:�
CG7Re`Er>M4%�C1�=U�i%Q��mV�4uB�3:՜k#�f�!b u^l��xdl�r1yA~K`a �J�v8jc=FJ���_
�Ǯ�Nk"@Uw�*$
��aַÔBf�;f�/ �)M1xDS�/
i�
YRS�.�Ao�3$/,�1Z�i<�k)0]zn|oT^ro{l�S9&%\bJ-<2m[7s/�ұHj�Tqc��r\"`ZlVhLOg}GhI\ ܛ�%ƙ0>T�o�0W4QEO��geohSRm�IR|AyF`��J:IO_%s��
n��PP�z/p���4Ͻ:�Q_xZD V$�1�*�&:[i!?�+/uЇ7(7�TPN6tD}Fhu|�5rK|v1>�ڕo�PP�S�R�
�Ԟg�ڳt&b0-D{�;���捪u�;reMwܡrFyݓ;~,-�ђ
�P( Y,S@
R��?��d<��r��m� �lUfǫ-%�#�78w}��Au;�i� ]JѧK1~<��]`Q�Qsk�Ðe!�^+=}�EjE%{cAWL�[MIZ�a{�'8i�`g=̍�t>Ɲh8,q-Eh\#�ẏt&#C��=I(М��ܼB*(�Ng}\j�|�_T!��66ݪ�5yq�k�G@�_d�5RCYXo����;i#B<社u0�S'QH'rx�x
��v2s5%�nl%,E8?RJؔ�xu�h(u>,,&�"̼�Җ;�\�3w����,F·$�娡~Z+Ja᷋|o'ɣ/Ƶg��Q+k~Z�y'z�,n��X܃NBpVelN`F�rq[
��+}-�P�ĵ�&]eK
럵 &�#�I��Ȑ_CriJ�A]���7�zUd8�VfHMw0
2am$�ऴY��o\/y!��1�䁯u$��OO8M��W�2S_�=Or�F�GvZ�fYska(��2e�&am�sRfi+��lne^~�;I$'"<�hզЧ(Y¾�Ưf%BJ3cj���Dߌ�cEܢ3^%�i1E]u_�l��c
ۦ�zL=QQw{(�COXp�dvI;�[wX�qY
�Wwb�>,�Y}8LwþH1�B�d�9ZæxtӃB8U&�>UmhD6n�
FtzC;J�@2e�1tsO~jN0'Hu(cK#:IK��у(MK�L|1�*0<<��{?$&pA��_$\�:Jk=dLզIx)[c�Wbɡ0þG1�G\\!U0XH-1(Uܥ R)`d82939%V4CI�oTuXGjE:(-Յ��Y�shl4d�T--�{�YqP62#�ĢtdAWSJ\#EUI-<6 ; D(V|r0�0��nMlA:�+4Ww](D9(U�5s9�S,lkm!_ܹt �|5u�]xܻй
BJ���uƇ�]�
!Im-F@A�ud_RFV��f92{��8zw���;
۫�a&V�ڃL�DK듗t;x5�
��#ɑ>�B1�(�+�G� ϢU~�,+A�4�2!$�a�Xo]~w�9w_t%Ʈ�bL��CK.@yNW�(>*>5`Vޝ���N
>Q@
űh" J�2
�[@;)0^^�ɜ[G7Qb= �&�倯tv �!0�}u8]:`3%xEdG]]Qq ��upյBdK^$;^�-: �')־<
�&�
#%.3]Wi/Tش0e��q)eݣ>Wl;O y~M�DZ|6ZNlD9G�߷4&\\��23ٹ�AsiLO�zV�Os-
0L�I[No=DwWײp<�!êLJF~
1�'MdCIhp@϶�Y�3w=8(WRvW�7'v��H��1g}ǀ�>ڡ�Bq'2�(䞐TӃ7�k&=,`HW
NClM}1XrJ3&àVLu] \�E�M.IMnll�hI�ƗS�!
x#Wk�Gٰ{h$V\-�D)|*�b{2�+,@:9[�ᱳu^IcA^M쌢�@m�}5P�NrL3/^2=�=Z~�RV�r��XA�U�AF
c6�
hie�z!MT�2HF
R`ϯzk-@&%�4
BռF �W{TJH�v\m)Y.OM�-y�Tɤ�~?]SjyLR�1�^@_�j�[�Fȝ>,ιER|OAEI~1AGm(^͂_E'_6Y��9���/ABzHX$]^�n"=|^U;p+0�X6yEP��p : mSᗳ
�6k�)XJl�a��
̨9D3:g���)���-pṝ�q`!9hf.5681:Oטƨsp]ڿ|�gQw}�U@ڋmHB�2w <[#ʃ���s],2�R�x�Zpϖ8�wAT%!
HP)�Uykvu!/c��0|�j4zC�!�juv` 0B{w
'`9x<5O[9L����[poD�bܳ��!Lj��IQ5�����!P�DZ�' F5~�V���0ae:9I6{wNgH(nɜ�Sŗ1�&ߖsbW2`%r=��=#��8F~c %!H0�![졂
q:Q7^�v$pߏ1A
?>3Y�:ڗOS~�7D�QPAF)M.H��RWb B%j�~!ȧ0"Biߛ�w:5#r Bc�o!]Tt֯�y7H/I�V.\���n�8" 8>;ʦK]K�>�ty1%(Y:�9U�s?ȳ0�+��oJad/ș�ۣ4/448'ߋȻ6k���)�7FlK]N}���zAB�?�Y*;}�сN �1 ˾��3/u��ױԲ5-X~{��2�sC)QC~ͤk5tu]�ːtNU�:-�[�Z�cPU)h[�TWmCuhW0+f�~(r]75�w%9Gv/^H xav06�gy>jBGRg+{�4Q+L+ɸ%�Ê+A+
�pmҭ��i�v�DVλ_�̫�96r1t}@o
�v�#��Zz|3�OP\�tiIJ.N5GQf�>gΙ5qp�wPu��mU�%%�Z��`n쌵N`LSVɓX,1Veշ"L82ZM.T� ʏP-/#,RbbyE�� 3�Ŕʡ%n�20�N䫥+��םH=פn/0�Q�
�}B�1@ϞZ9JhWك`��>�U�$;p:�l0\evmS-we��Ԕ$I$D�]s[�1:GG"�G�-OEɤ:u�3Ɲ�j@�5�||�OM|ݻз
Z
wvB�NI1<}ޕ�m��e�3M��)':HL7¢Z`̬=�-x I*`bD�V{.W-�,]~Gk6:ې5mE�r l�Eg��jʌ0$[u3Zh[}���Yz:!�?F7V儩Qi
rp/p k�d�|i 3 J�֟8.� z ]vˋ*wk}"DeumFbt3ˋB�e$ii(�ϧ"=(Cೖ�I?S 䧴ak'Jbh2
l̙}pk\3n��!~#J�+�P3)&"ǻq�dx\a97�ݔ.WT AK��*eIu~uH0 輾oK,ƴ2?Jde��0.goKk?��&{�e�S륓μ�,R�4
~1�A�0BE^S5��# PX[{$ޘO�'0@$u6Ӵah7
;1[)t�g=1WU|W,A�$ei���:My\.�|AREFτW`i,"������ q.גQ �rn�C}̬3]&D��tּ*M��z�@l-kСn~E8VeI|�Co8�>qʜ\64>
YP6�ގ|hٓ�}ų]�>j�p}\dKM�ş���P�-�ts0$�vܓH9.:l(nZ�92AIR�c4z^�U| ,Xk���D� �kbmAa|QHI\?�0m
�2(j, ;P^C6�ȕᆿ�~�Rr�2`8.i�ś�!˘Н\GA}ti$
;Fk@pe?4.�R\t�.h���Fէ9%Y��q7
e9Β�v7
� x;r8V5W%pjU@- ^8~ebu,T��S�ze��ݭ!:˭?q3J%Jy�Yc\H^z4�H^m�NJ'A�YT&?"U��ࡍu�
�I�A�ᓊ� 3ZYn
a#50#S�겈��Vj=s|ܫ:'W
I
=cTh�ԉ_a=^EQj2��\}\��sz0�S*AfG�(5Uu!R�g%ɮ�wU0n]�ޡּtP^70^_]Qn�Z*
L5s�?x�O�dˌQ2�P���j�S<�7
z��[%WC~L�9tM9�{Zֈu&�\DvQq��g�ƈ�O;l]�BQ���,+c��B�wVsB�zaeYA�ѓ nܡ�!oo�s?Nte�ʋ�o�H�{tP�
�
�U��h6W$߱'+r��g�icZ�a=�5�q5�s�@۶ F}v�Z�8q�D`�,0�Uh�O|R��c`�ݟyʮJp�%;�Е
a 4��+XgSi2"�5B�ŁX;q¾Q{G2s.+V�n/Yl��8601
8\km$�;7wGTϕ r�x,�&Tu'��6O5�zn��9$��fm�C|.Mb܂x|!0 T<;ǝ85xgE� *EDFa�\��sTZQՇ�QyO.�;0)ZFR|���#w�e
z
FZKGk�OÐ�&m5Ԉ..e��Gks
kB/,h�
�j��}5Z&�n�5A�I�\_jz>l/)�fW~�_ \*y/\vy|�W|0�Sim̎h�|j$tQG[HU�倁%�ݟ3*q*]8ԾiS�2>�5º�V5)��Z2�ȍoC�f�M�t?w
r7��#^����a�(J�q,h�IU��a>��ɣm~70-cqe�:&[&�0��--7��h��n!-�B59�\Q14htyωnmG�PMѻn.PZ��kq6�m9wQJ{泮�@��
�iC�[à@a5h|�8Axb֨w6o���߿%_s{/8n��y�U-�8_^h�Eh=OwP:?t9@�SK�-;+H9�Vu�INUe�|!/d;psvR?AL[}V�H��5zY#5.ee^�ER�R�E16�0VvHt��h�SVk,+>[��e�7)�r2/�lgU($�+�ڨ�/Fq��cJ�'JxFt/\mD(\�ˁOܸ��HB�sΙ1ָ�F~smXO<�3GHKop߿~$g~m�˞�nC
�7NO'VZFﵼ6,%�.VHҽg#��7U�WIxTm_ԍ�6I�\p'wKС
�5�umN?�٢�N�61ݟ��a~��nVwnXy{>J -g�/gG&Ϡ�h;���
zN25#�jR��O+hM�JBVw����B;+*�^1jhlGQO9�ڝS}&s}�Ig�8w�/4"*�8�hd)b�ߖvi�W&V�v ö{;
Dg?D]�$՜�a�=e'�!�F:�i:IAONc� v}G�l/&�3�H(ḓX�@חBS/��.߁,&wd)qS#×]t[?�CDi�s��FmYuOK:^Q鸯#� �'�+\'fw�E+��O[�
:ts}r�c6UwfKNWM{�wpt\_5!j8!�V`z{+1A�2gF#D�u�Nr�L6@2=WY${,e4y5�&CV
Fާʒ_�4�lcV@o3誁!S}z�N~]>|�q4�#n#�͟�?LyF
]u%�;R?l+sWš^�W�^pGpw[@cm�$"���&@&$¡N= >�MKΒ"xz�CW=��K`<.9"{�ߎ v�0��u�Y ��ex[%Umw>�l P�^[dN>|@a2e,I1ӃO.8�U/L�.h[m[n!4J�f W#k{�F!@@ZN�I{z��\7A�}��y�
o�L
�¡ل?"iWsԍE��y˶8ז>q%�3Y4a9T!UbW4DzKc��j��H1B}�N}˳hg�7E"���Űko=-���|2EݿB�3zp8#^&�Z��cХde�F�f.Td@{[z�Dxc29�7���hN{[,J*%$'Qze��>LYB��8�Lg ud�pJs���2c8FPVVʆ,G�a}"�%��&m"d�8���A$�\o8
ۯYC�1֢Nm}״2��0��T�&*=7�C�w�_Rhn*�hm�.�錪"6G�y_]l�tHEt�/��V% ��
Ciz4)Bү0n�rUpO\1UB8p!>[�G/8��iq)ҽ/Lx06z>���n!!qH떗)ϩ�Nn
j}BAZAr����ƀQhP�g@Ɛkc�FQ�S�Z\[gwdqܰ�
:F,n*(r�<"JA q:'a��.�-O19"3c=0ڀ$ܼ*�j�lMu1}Lw(MM�u�D>
-ȊPu2� ɶvOl�(7U6p}�q.W�jpނ�HBᷡ�%6]&Lg`8U]!R�@\?RW_s6@P�&�U=Q
�%��f�"�تf̠mڜĝsdq�bǁ>�ۛ�8--S?ল;ݪT锻*�/��.»�n�S�w{N�Jќs�,Ɋd?$d��7uCik&%�CEK!�H�^uPF��ERJm?�eֹgi&qx՝�edĵ`���|#Щ[3-]$ߵҜ�"�5q�Hk{�\m�P%Ʌ(*3viדc<ӊMY^�?+ k�c�G
8g�^:ϸ~H�&�
`i�#$5�cٌ��!.%!�V {N"bI#�v;-Z�^fH42=1JV�}ˮK�[}99*]8t'LD*A�*-Ϊ<20{ځDYx 3^�lE1Pp]ZE/��9�I�fZ�PDcSJ��ޕ��pUld0y7?H�-/S--�G�eO-4�-ݒ-WWvl�ڇZNN�qd<�XoNS�-I�_l�V*3ihmu-�'vWf��8*2q:��ܩ0�nD"Ȭ�ÄQ�
0L15`!("fd$kFBrV��uCӱ"]}a3�X`G}/Z[8EUt V0ٚ��
A��Lĵ�9D]xw��`K�͂M�\hpn*�ga%CY*v/(��V�SڴL()'t�Uo:x�zT+_%r�5h�t?.zȀ ps ;g%XZFްzc>��U�L�ϯ��С/aɁrP?i4{BߜKk+Hn�s�*1}O(f~>q$h���ɽ�[�M=Bk
g��W�o.(�Eh
��oIp:3LzuB:6eTvJԗ}X2b"�OٰS�*\ch �HP��pN'=,h>:fY>uU
W�kz~)`1a̲:U,=NUH[[�{X�8�Lc,�
͒sc$�r�v��uv�g)q�U/>k3�d�
�<$-gh+�|�X�pZ��WN�JKZ$q?G4N$}>�N)]]%֝l�)���<��\E!<�Nj�p(�;
~*0Q�Q�Y#x)�B!ه9�!kC)Dϭ��{E˿�5etvva}:_+.PX���'Lbu?%�A�
%X.tD{ �'Aki[z�2ޯm~er��"�ދ;`n0�]ho0�z3�QY�~ǭF�KrK��E�)gi�썭7
q{놳Le�A{~�E9%E���4C�\´7^�']r�=>'�6�Im9Ne\#�>?E�Vnϱ���P\��ॊ9#�A1��nkֿh�Q8[\ˊbj
mGԗ쏫oa } H�2�,�հi�)P�pC{``�\а~)födS�וa�2P՜h�d�OφN4E�`�su�OniX�Cz*>'�xy�Q��RJ:ѣؼZ}b1�5��B��:y�Ni\MCS��5
XKO 6\LʇS^�j�_�Oǒ��1.�)sfx0"i��Z+W�̈́gl��晨f�i�CW�A�u#BT�7ZBͩ.4�|@��W�)�,�y -�~9҇C�j�bFA�Ix3"�W� $3c8�uUY}
W!70"M6\$i�m�{5b'8֡2C�AN)C]�i:|,W|�z#��H��_��3K�ĕf�|t̏Zm@r,$j"[�TMƶ*4��Ha�G>묯?a71`c�t1vi�ܘzC�3A� v�fӑ��+�g�ƅ�i��|½¾`t�F7hNKV%���G2�n8<$,F�9�T��\xh?D5FU�\I�
\~.]u�"�~aN!?n�ךZ0
3$�'�
7���/4f+JRge�
x
4M�4��ԍ}�Ȃ獓A�@�,�e�>v�Uɵo�#�J�PhYQd_uh�601tM6L"hR ��_7$�3�Eh�yi.яY&c!l˾v
�^zN�{�*fXPn�T1�Z=6*�w'0~<ۼl-�u
^*�nBu �OG
k`:"~� 1G;f+E��
'4i5Sa�ġkr+T$?VAzZ(oG^']�~�}�{3Omd[��C)㹰*3ư+@r t�}
:�x pVn*�!([}#"i0Om�Y.d� Jŋ9DZcP9�Q��^��&�5"�QV Aj#dw��ܱ�/�j�V-�j�ڿ���u�\H5,�J�\#2,�"� +ы���]+�,B�X}43�('qPO3�p
�q�
$��a�-ibl_kRV"y�GÂRN��0
ƎwX2�A;@�*<5XaX?XM-^aEG~�N~�tL,jݯr�*\dkW(�Ȼ2DP*e /la-Rh�1[D+@X�$eZ-NTE�*o3];V�}-?swq�@<0�ڕg-njX�+mXV
m�Lc+�[l�lLӉiN.��f�N EA�COkJ207qWS�WI+-r٢>e �f��`߮(2ٝ#C�8�MZa.x�7In�8V^��Th`IV)�\X^F
�iޤP0oj5�@Vf\v?XO45I;$|[� 9�Ȍ-!~��&:Ec+KEr62�L���ި�E�y_*�Ef� �;yn �)J8`�i:ײԦ�kŵ��y5�ɭk��bQu&�ĄF�p(�f2bː�0���ڨ�\7ɢ(a�H�Qa3��mNvYQ)=8>�7Z2!xf�Ib_~Ce3
F%�a4,^ӟ�:��;��=DA� EK
]\�:�V$GKz-re�~{mkhz
OwE�cq�?
,�Z>�=Ւ:TQI>�
5O��[�LT)qx�,ؗ��XB; �G�}�hV)0h[od��98�Vؕ=`�l�f k$%hf@GD6bA1&|l�0/V�/H�)mS�W"qA�%12��O�.2�ɗ��D�v�'&�:�I�~͎"18@Y_QmR9�߭2���jS@�nÿ�W2XD|J��~�zЖ-�g�6�AI{ao-r��ׁ:~
\ڒqjad-qbв0)Pq�C[G^[4�
Oq� �^#TԶP�+ɴ�3Han!�kJdֈs�$�hU[�OY~=6�-ي�6a�9/ѻGQ�=6c}%��uWC}tGI�-ZơÅA�:V0��̈́)�㱤}/gHP5ɫV(3K�
�R�HK?�9_IKrTWflϦۢm#Fu�|�*K2kyIkD=`E7O�gє;[K �N[�
|-;ț�#>�' 4��Hy{ͨ4C,msEZ �
�A
OD
�fL.XݯcBx~5]��a� ]*k
bCa"'܄R�j
w7iٓx0]:<]F�x�sԮt�jTv �Eda6�{3nM#�ԟm��Q۵oSkv Eυjݯ7:d%P��5IE~ē�
k5$�]�'!4
��4�Ej�Sr�W&��X�T#ܬ�-WHzLs�G�|
2o7
:ȜqE`EI]fio�{;s8�au0�jU{a�%,h1|vaN;�-O>WTkPryu[�'jQ�~2}�>yD0�ٶOO�͢7>p:}JA~$A
o�O�S_�N,l�aI*dPG-ר��55Ou�FM[#bC],�c�y�L1\��rM���Yt��an�@i��=W��q�e&��Jms��C�zDuM%L�zn@*)S}}Kqv.(RY�"^��V;ؠ}�f�cD%�Yg҇a>Gg,D� _ɲC
�ӺNꔲtU˿/�Y�B�Y bƪ���^eHK�*at���w,yTO}J Mlb7Zt�Mq��Hu]�?sxT�,n���ͪCr/� %
�IU
� Q�ȾBᬓ~I�l�_J�IڵΣ[xm�Za��]p'}�0D;X8mdv�� ,pZ6I��hʰ3]b�s[$:w�BI@���8lS�@A�UjFB�
_�n!W>em;^@�4߁wEP�;?�m��:&t)h�Ʀ�Ln(6!(�go
og�{��G/Qh,7,X`��?blP 9c�(,{H,R!uh_x�#<71O�y���t�&* �>¨θ3�}@/=Ȁ#�ҽ;ǰx+8Ȓ�{;t�BEndž+�ݳ'8��Yg"<�yj^DBØ�b)$RE7C$۫�o#&'ܮ u���)S"3�IbuOLh|�Ƿֿ@dCLd` 9���_�j\*9 ����bQX*J[� �HzfSN`ӹ1yI
DcUs_MI/�J
]�+KTN�y.料*J�CzǮNVbCMmhlaԱ�B�2h9�Ѷv�+65�v;Dmn�5G~�|ʹ{~Foq�m�eWNȤ!J�RTPOwa) YC�!?3Fk�D>f=Ng_$(v:r�1'$���_2�dg0iNO<��{6rx!�E�}e�y�e!:^[�](@I3qu5+^G�+1ܕ̨l
�/��8z:,,!�aqp�d5JR#
}YFf�T�/ �3�wy��&?B�.i�.2O G��Ϩ�oC
݅R+Z�ybivٚc�?&<=�_֣!1j
杫h.Hp���u:׀$�Tmcd6w�&S)��H~�{- T}hc��rez��3QoQҐed:˙�ń3L�7�2�W]w>���8YtUn+�D�� %��j|� �6BjC_�'!Ywc6iʃ�o ��WH8=:�
:A3HjICV�)m��43g`]�bf>hhx|5�ц
)�3��"5Odh#K
}�u�ZUlSf#*[TiJ�<��MfP]��?0!qd%.�T6 �C\t$b� blh~՛mQ%�¡P����c.94�'�/�N~��_˙k,�X[/�C��18)A$� ґH)Qu"љY,^�"46�6J}] rYw�ҋe6���*tیleMn�:z1ӹ?A�Oɾ#9jZXNgw�
a�Oj%iJR0u3%bT]&\QԮ��^&l*CX���\멗5W�[+Mѧ*Q v�Hj~
0IiGwn�~JCe�;UONV�pWXD2+י*43]Q;Nz.ΥUuξpـ�u=h@��@وYp�M
p:㳙Nڌ:+�|9$f�e�;zje�a�4�y#=�e�a�>&��H�X��Th<�[v��Ra
��sMFZ&v̬m'/+z]%UK쮼cquz8^%k,p~�_;i8"
�ulw9K-|Ĭ\xU���=5p��˜q��F�Va��'G0m��Xw�ǼI�B4*|��e̞&@; ~rs�/RurE0L(B[Cz�~G3b
Ƕd*4��;o�zχ 2�or�o�|2O;A�cYw+��ajڼ
�3VtVf[#G�n�8J6�判ϵ� 9��?iJcj`Qҹ+v'Om^`�#m(j>؈��B�IWT:6)+Wl�Ļ2!)bC�nAwDɡ/)s$/�=42�EB�ztQ4�7n?3Fa0Ú
Uldb�6�䪬7g��}b GJd1d2s-p�zp+ֺ�>�#-k�0�мMߎn��@UȤƺy�UI4�'��)S
FV����8R)5KaO\�gٔA�Hm\tL90�kϾ$HDR)�?ˣ z{(|�i!Pfxz7hbF
UB�@ފ�ع.�7�VB{s�51����SG�wP!>6]́4D9,̊31Cw����Ѐz�`Vγez�i�?E,K�%L#o�(\;Z�sN
~Q,5�j
yzGY(䰴L�hPy�%Hpi�
v;�pl�K���i$�0biŨuH}*(pD:-40f�vv!vz?S�LVxh�-(blf_��(Ln�' :��6ȷJ�3��#eF##
:>3,˞�)|?8"mL%�;M1?�g>^�&U@c-*�0�Oy:̽��0A(� H[r�Nz�b8e�z_r/
�u
'(Dΰ*H�1v��KtCޠ���
e �aA:�9�h�Ղ7�w�U�/ov5��l�±C?��>�kĹVXeҏQ�C�=ғ§h�]�2�W�w\ W��!Eޣ�ɢ�S�1�4]ᘽ)g�|W&A
`K ^�w�Pwy-�ĂPJ��s-�@S!�~qCjnD�Eh5)�vi}=
�4�}9��ܚ]PfÐ�g;aK߂Ks}�NϪv(߾Ճ>�]�A�҃�GX�-�N�(bK�F{dN�t�P:Ut��2#1�K��v5�ca
��̻�9}��ګw/�O2�'>�mjߪ^ۓg�,W�tꡘMFvaҳJGU/JvBLk)oxv�X* 7���sT0*`�43bh|Xg�(drc���ÐA :Hϖ!Uo\̣-�@l�v�l7�O;y+V�s�hzL�Մ֎b�>a
[cze>P[J�*1V�s>Y㷰�[�u
Z\{�P\:zhDP�=lJݬ[ZzjB]#��Bc;�Id5ɾ$4.m�"F �M3s=��I�=DD�N;) 4-:!k+cϐ-UJ�<Dž6�1k�<�HT�p{{A��v@y-=gM1M7YL
d?�BO2R1m*\"{�^9[?51Y�. 9�'d��{�wH$p
ׯ.�jBqNpL}d+otCO-#�^0݂v�h���vJQV�G!��S4�=34|.ykAfj�mB_v?j�;?�|���pqԚ�8MC_Mrt���AԽ�>y8wa�4m>���To�Y us4Lq
E�`%f/-q�5hwKWVoQg2ƶ
�&BE&RHg�F�ЍޜZ�|"W �XiHF8.bjr�M�D깎Z�>MI~|c�f
;V@gRǒ?@�$rqJ|4?qXN�Rm7(��a�; KP�+.\OK~A�PضaP��51SMDn
^/�b���[[olKҮ
��?yʊ}d�8G�Յ.xH�;�_'kSoDu0
3Q*_�w�|��'Mn�vE���7XB^HBZ�Ǧ�F�\F祝c>]f^9�n_Gqu
յ9Sg+`e%�Q��trz}2m6ל@)�vnSc�Ws39G�i?Q�_큤�8M8張D�b]|�u"6}w[3A�Y�?f0/I��Hz�F$�C�:��v=8�J~�j�A#q0|tؕQb~`$y��ξKZ|F\�g:TgZQ�]"#InO�O=�G�@YqDK��C0)aH�b{n]�Zv�LG~D8�Tst��}q"h{�־8V��[ �E�ػWY�P)L
Hޞ[��h��k;
Z�df�uW!Ĝߵe,4?�mJi�Ԇ�/؊u}[�Kak}G>4P(�}z�Vc`.U-uMnp[\�~4�N2�e'+ z�P }t9
uF|DiU>&C08.>GR'@TXav�mn=.)mu�7��']qNѧB'I!8f_�L;pQ�0 n�>3�K�:�tľ]
hQc�3yQ�1]Ҵ۪A�%ݳd l
���Aߠ�T:�o摫2 :ڔJ2lb/bͰ-Pt5�c,<+yKI9^5!�Y�m��˾����_�
;��Y<�Ϡ ?I]a�@Я�{7:�̻b�dx~Dz�1dHѧ]0%Ab�mM�({i/xl=�c{!#c(cn&�zSa��%.�_;O@JML@a>�X�+A6�'��"Sݧ6�էd�TQ;w-SÅ!hey
Y-Z�=W!a!�1 �Q'Y����Awa��*RL^]
Iv��A�d�Zcq[$"qdjZ٨0I0@�Ƭ�K% ;I�p%��j0P
6¢ۙ�'"#��[i<*Y"�\Oez6RN;.�eħ',{%�5�6HYL�ԙl#
:m1Q�n L<[l_Dz�0uAA���N>s>�n�_TJ盎ԊZ
�N �BP%^w4,+\ U�/2��3o��P8ٛׯ�j*|�&�s�\|�A]^Rʋg@tO4A��CJ`S]PkRNiĶ!q#�@-�q�W��g�/=P܆.3Z<^b�DF~;�iT)p�%�b2?ôVG�͐^=U �-vJG+Ƈ��a:a"2��]teg_ͮrE�v@�́'�� ۔5А�;Z']^?i���YV?iE2F
#(Ų;�.J
}ؕ�R�z��
~h"}cx]$�xjV"�$ɼfi}j
��Ozٗm�%r]k�ȿ]Y-�/^}P�ˆw"}MfV`��*����ᦃǠJT�F�#R,WW?'5%Z8.E_J/l*�XtBAb{!]2O��;R{B�k�n5B@O�ǰs.{Mik�+ᢀGk.%�ЮHHQ8fӱ� !X)�A�ʁ�T-Q*�tP��}cX(ݽ/Y���OW
ƨ
�$�H}ՇL�Q;Qy��QmTqÌ'�QJ��BB};dȧ
sHrһM'_[jrfZ=D�m70ց0T"#��Ac�4St�
%}c0vW�XN}#�X3��\
i�h1a9.XkhaL` v]]p�+襫pwm?y?~�=�_<�?;%+bm�9H$j>NO\K��̶%+�^S�0}`+HvB@�;"�8gH�x8ٓ
T](F/ �h���@^cK*r&T���X{�y�.0�n'U�'ΕU,'O�K�kȈ;?~dRBX;HXgzۯ�%tD�:�EWH<wmx|'�?�F/c$�Q8=RŜz=a[�L _�t�+1_X�d�4��V (�P+o�Sc�6eH_D/a�m�Y'/d)!Nf^`9f W�'1�et"�Rhr~y-셀R=*[G"��d��#X
$W�
ElOؖy:�y.Afx,aVm�œ�I_;,h�ά�/)p}\�)=H[r3
>n"�p-F�cJ=b�)!\Mmz#y=�~'$D>5ׇ.A
,wBxO� |ʃ#eL�e\WV�J�
J8�4GݴE^XsTSI�GkDe@kAِzΑ>:�Pj�{ڸ�h 5|f=��9O2��NK��sj�,�4�+coay- Dל`�V�p+KY�#BNXB+daRu���x?(��E2g{Uη'�^�ֆ-uz
:5gQ�<#uQmι7L��-HǞx_ӠRRsI5R\�fX>GDl\�o0#RצJ�;g�����!Buػi`
[FQ(j�+P�ʽ�3ܦTX+�)V܈3ON>NKrr 5GPFs]~acŠh�;��3�$�Lݢ�^@"mm^t�U�̀�su&.l��|sxG�+�,�$;@9[g^=}{{N';�YL2>�gY&?*[pX@��k#�SV�2�[44=O�)��w=|3h\s�k".#�*&h8�&4.ԏ) &�/~l_F��T�X/�q!'}��H�hkpuam쳆 ,42�YA1�K}H^�b�GHbZ]�;c�~iJ�ND3ݴО�rݭ�Ss Coϔ�ʈώ[Rb+c?뷜=Z�F�GhH�a'q֮'�K[2ۢNt`Dd�Pm��Mgkr�e�Dw�BE�~�殣i%~loͥs3w5wS�D;8EB-ğ{cטÄ4��aE5̇0np3yu\+I4S�f"5-qB/XA�q^NX�C�YeX�xޟ8e4~PjM�)@M�x�b(oG2,�R(�vϲXΣT1-+�E?k�Dh�\wŗLJTڣ_iۇ
,&�0-?
�{-*%@6[BS� ��,LxbO/5W]�H��? 95ʇfBL���!Ǹ4{=t� ^X�̴:��Q�Epp1
{䉺N
4i�M/H�hg'ә#ʀ�EbfM#}Xn*K:��o@�ӢfMzfd:�.�[R
g`i(�
�KM�02^Nn>v�/!ewa �p5oS*!>X*:t��0�*R6L]ܱb`uʾ=�b�6���=�_>n�
�zs�"{5�Қ]HPj^5ZͶ_Xk:/b�
!$S\|o /��L)kB�df̖`%Js�ZٚFK�^k�%rN_LhƬ\ ~Gn}1)�M�.;N!Π;�/�v[{k`lo�Lx}@�O*6HC�\N�}+p�pqJ[dS�5c�+l5L!Ɓ�f
A>9j̴:$>2~VnRE}�T}+(O�ZbnlZ��;�^'��j�¯1ŒY,�ϜH�n/KFr��+'E�_=/}�Ƙ�X��ѪEcq=n݅sm7/[oQ
�v7�a��Ǚ\>
�6{s�=�Ud�J痷`B^�L.��CZ#O0�ai⧮@�o�[A^LΌm!Q0:1rE�̨e}eżO�'>UQ#Ѭ"lJϏB�ͺ�i˙g`0
o0g(9&Z43>�ADҁ6�L�p�o9٫U�Q�RC[�^;Y#Ao&u~�`*iv[zCi�
u�1N���S�9w*; 6Vx.f/tmOR|y�6r3a
l�V�pgʶ�hgvE/h�pf�Ǣ闇�
1o^'>6�i
Yk9Yb�v�3:�.6�Q�oQf�JHb[j ���/v|�?\/L��V@el&��\mGjvsn|)}?x)�'s/�yf��z�-�lpA`:|�{�Tiz"�J?Jb|5�"f.�y�.�k�s3A)�����d=*ρ�xpx�[mbg'
un[
�GZSJY0}a\��Y9oG7B�p?X�ub+B��R\`$�!1@on)qB"6� Ԑ�OE8S��xvg�#�!�en`7) �Z`܆G �
c^Y{]Ir+bN,_[]�H?�
XpkZ#�w��#ω�r<�pOobRp!W$a)P#"!:WB�H��>�B@e;�7vU�R�*w7`ӄRHè3ҏ4JHE\w�kMr ��z�&V�Ufh1O�wgEC)pӈ*37�R)*.K�}ȋBQ]�%X�2q�&*�}xv)́%qNPx|.*�K9uB�rF�-WGQ�`!`wHL�E0�j(4�ۑiM?�4&=�k����;;+qD`�h&9�?B�33�$PØy�.��XpwXXʂ�ޖ�]lP7� e�J�wSZ����fJ�J0�"uJw�?,0�jwvr�� &M;������
YZ