libnghttp2-14-1.40.0-lp152.2.3.1 4>$  Ap`3X/=„ei x}`Vb\"}^B"}NM9o>W<'Nr&|Ȩ+$^1lLF |c_!`b%8+\,_sZZԻksF#ЄW:e3I|;I "l_%Oɝ^˕MYk&tِEuSwߘt3f";x5&5>42?Tn4ӼFRAn6Gd0784ca7341c2493b8ce922dfdc6b66263ea71d3d6fea1644f8ae021bf194afaaa5e12591f1af11ad379b74f6939a1e14f187050L`3X/=„+0v\b-{6S,LVTy睜Y^9PrXJRPCZjVy.GlOzϻ^B`<ݣkkP9W P$a;d1:WuN.X\ZNS(*=[aF¡CдιASu|v[p %9! ' y/{dx夵><[J|a械PP#:Zmϓy+^ [Icʶ^9)김Y>p@P?@d # >   $ , <  8H   (8E9E: ;E>n@}F܌GܠHܰIXY\]^Eb݇cEdefluvwߨx߸yz<Clibnghttp2-141.40.0lp152.2.3.1Shared library for nghttp2Shared C libraries for implementation of Hypertext Transfer Protocol version 2.`3/lamb15openSUSE Leap 15.2openSUSEMIThttp://bugs.opensuse.orgSystem/Librarieshttps://nghttp2.org/linuxi586dA큤`3#`3&`3/]γe213cde2e04d376eb5a52396b9ce1f92f81717ccd07b5e947776802bdd773aaa6b94f3abc1aabd0c72a7c7d92a77f79dda7c8a0cb3df839a97890b4116a2de2alibnghttp2.so.14.19.0rootrootrootrootrootrootrootrootnghttp2-1.40.0-lp152.2.3.1.src.rpmlibnghttp2-14libnghttp2-14(x86-32)libnghttp2.so.14@@@@@    /sbin/ldconfig/sbin/ldconfiglibc.so.6libc.so.6(GLIBC_2.0)libc.so.6(GLIBC_2.1.3)libc.so.6(GLIBC_2.3.4)libc.so.6(GLIBC_2.4)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)3.0.4-14.6.0-14.0-15.2-14.14.1^@]i]Z@]Z@]R@\g\A\A\8@[F[t[CN@ZЛZUZUZZOhZ.s@Z'ZY@YdYYlYcl@YX@XӸX@Xk@XQ4@X6@W@WRW"W~WXW W4V@V>@V@VV_V@VzV]VI@V4@V@UU@UUȒ@UUUUUcU]USMartin Pluskal Martin Pluskal Adam Majer Martin Pluskal Tomáš Chvátal seanlew@opensuse.orgTomáš Chvátal Martin Pluskal adam.majer@suse.deadam.majer@suse.dempluskal@suse.comtchvatal@suse.comtchvatal@suse.comtchvatal@suse.comfvogt@suse.commpluskal@suse.comdimstar@opensuse.orgmpluskal@suse.commpluskal@suse.commpluskal@suse.comschwab@suse.dempluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.comadam.majer@suse.dempluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.comidonmez@suse.commpluskal@suse.commpluskal@suse.comidonmez@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.comrguenther@suse.commpluskal@suse.compgajdos@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.comsor.alexei@meowr.rumpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.commpluskal@suse.comjengelh@inai.dempluskal@suse.commpluskal@suse.commpluskal@suse.com- Update to version 1.40.0 to fix CVE-2019-18802 in envoy-proxy and cilium-proxy (bsc#1166481) * lib: Add nghttp2_check_authority as public API * lib: Fix the bug that stream is closed with wrong error code * lib: Faster huffman encoding and decoding * build: Avoid filename collision of static and dynamic lib * build: Add new flag ENABLE_STATIC_CRT for Windows * build: cmake: Support building nghttpx with systemd * third-party: Update neverbleed to fix memory leak * nghttpx: Fix bug that mruby is incorrectly shared between backends * nghttpx: Reconnect h1 backend if it lost connection before sending headers * nghttpx: Returns 408 if backend timed out before sending headers * nghttpx: Fix request stal- Conditionally remove dependecy on jemalloc for SLE-12- Require correct library from devel package - boo#1125689- Update to version 1.39.2 (bsc#1146184, bsc#1146182): * This release fixes CVE-2019-9511 “Data Dribble” and CVE-2019-9513 “Resource Loop” vulnerability in nghttpx and nghttpd. Specially crafted HTTP/2 frames cause Denial of Service by consuming CPU time. Check out https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md for details. For nghttpx, additionally limiting inbound traffic by - -read-rate and --read-burst options is quite effective against this kind of attack. * Add nghttp2_option_set_max_outbound_ack API function * nghttpx: Fix request stall- Update to version 1.39.1: * This release fixes the bug that log-level is not set with cmd-line or configuration file. It also fixes FPE with default backend. - Changes for version 1.39.0: * libnghttp2 now ignores content-length in 200 response to CONNECT request as per RFC 7230. * mruby has been upgraded to 2.0.1. * libnghttp2-asio now supports boost-1.70. * http-parser has been replaced with llhttp. * nghttpx now ignores Content-Length and Transfer-Encoding in 1xx or 200 to CONNECT. - Drop no longer needed boost170.patch- Update to 1.38.0: * This release fixes the bug that authority and path altered by per-pattern mruby script can affect backend selection on retry. * It also fixes the bug that HTTP/1.1 chunked request stalls. * Now nghttpx does not log authorization request header field value with -LINFO. * This release fixes possible backend stall when header and request body are sent in their own packets. * The backend option gets weight parameter to influence backend selection. * This release fixes compile error with BoringSSL. - Add patch from upstream to build with new boost bsc#1134616: * boost170.patch- Update to 1.36.0 * build: disable shared library if ENABLE_SHARED_LIB is off * third-party: use http-parser to v2.9.0 (GH-1294) * third-party: Update mruby to 2.0.0 * nghttpx: Pool h1 backend connection per address (GH-1292) * nghttpx: Randomize backend address round robin order per thread (GH-1291) * nghttpx: Fix getting long SNs for openssl < 1.1 (GH-1287) * h2load: add an option to write per-request logs (GH-1256) * asio: added access to # of the current server port (GH-1257)- Use multibuild to not pull in python3 in first build, nghttp2 is low in the system- Update to version 1.35.1: * nghttpx: Fix broken trailing slash handling (GH-1276) - Changes for version 1.35: * build: cmake: Fix libevent version detection (Patch from Jan Kundrát) (GH-1238) * lib: Use __has_declspec_attribute for shared builds (Patch from Don) (GH-1222) * src: Require C++14 language feature * nghttpx: Write mruby send_info early * nghttpx: Fix assertion failure on mruby send_info with HTTP/1 frontend * h2load: Handle HTTP/1 non-final response (GH-1259) * h2load: Clarify that time for connect includes TLS handshake- Update to version 1.34.0: (bsc#1112438, FATE#326776) * lib: Implement RFC 8441 :protocol support * nghttpx: Add read/write-timeout parameters to backend option * nghttpx: Fix mruby parameter validation in backend option * nghttpx: Implement RFC 8441 Bootstrapping WebSocket with HTTP/2 * nghttpx: Update neverbleed to fix OpenSSL 1.1.1 issues * nghttpx: Update mruby 1.4.1 * nghttpx: Add mruby env.tls_handshake_finished * nghttpx: Add --tls13-ciphers and --tls-client-ciphers options * nghttpx: Add RFC 8470 Early-Data header field support * nghttpx: Add RFC 8446 TLSv1.3 0-RTT early data support- Update to version 1.33.0: * lib: Tweak nghttp2_session_set_stream_user_data * lib: Fix handling of SETTINGS_MAX_CONCURRENT_STREAMS. * lib: Implement ORIGIN frame * asio: support definition of local endpoint for cleartext client session * integration: Remove remaining SPDY code from the integration tests * nghttpx: Fix worker process crash with neverbleed write error * nghttpx: Support per-backend mruby script * nghttpx: Fix stream reset if data from client is arrived before dconn is attached- Update to version 1.32.0: * lib: Ignore all input after calling session_terminate_session * lib: Fix treatment of padding * lib: Don't allow 101 HTTP status code because HTTP/2 removes HTTP Upgrade * build: add ENABLE_STATIC_LIB option to build static lib * third-party: Upgrade neverbleed to the latest master * asio: Support client side SNI * src: Compile with libressl 2.7.2 * src: Allow building without NPN * h2load: -r and --duration are mutually exclusive- Version umpdate to 1.31.1: * Fix bsc#1088639 CVE-2018-1000168 * https://nghttp2.org/blog/2018/04/12/nghttp2-v1-31-1/- Version update to 1.31.0: * lib: Add nghttp2_session_set_user_data() public API function (GH-1137) * src: Define nghttp2_inet_pton wrapper to avoid inet_pton macro (GH-1128) * nghttpx: Close listening socket on graceful shutdown * nghttpx: Add an option to accept expired client certificate (GH-1126) * nghttpx: Add mruby tls_client_not_before, and tls_client_not_after (GH-1123) * nghttpx: Fix potential memory leak * lib: Allow PING frame to be sent after GOAWAY (GH-1103) * nghttpx: Fix bug that h1 backend idle timeout expires sooner * nghttpx: Stop overwrite of first header on mruby call to env.req.set_header(..) (Patch from Dylan Plecki) (GH-1119) * nghttpx: Add upgrade-scheme parameter to backend option (GH-1099) * nghttpx: Fix missing ALPN validation (--npn-list) (GH-1094) * nghttpx: Remember which resource is pushed for RFC 8297 (GH-1101)- Drop spdylay dependency as it is deprecated since version 1.28.0 and removed from cofnigure.ac since 1.29.0- Use %license (boo#1082318)- Update to version 1.29.0: * lib: Use NGHTTP2_REFUSED_STREAM for streams which are closed by GOAWAY * build: Remove SPDY * build: Fix CMAKE_MODULE_PATH * nghttpx: Revert "nghttpx: Use an existing h2 backend connection as much as possible" * nghttpx: Write API request body in temporary file * nghttpx: Increase api-max-request-body * nghttpx: Faster configuration loading with lots of backends * nghttpx: Fix crash with --backend-http-proxy-uri option- Export PYTHON=/usr/bin/python3 before running configure: allow to build without (comnplete) python2 in the buildroot. In any case we only ship python3-bindings already.- Upodate to version 1.28.0: * lib: Add nghttp2_error_callback2 * build: Add deprecation warning when spdylay support is enabled * Switch to clang-format-5.0 * examples: Make client and server work with libevent-2.1.8 * third-party: Update neverbleed * integration: Fix issues reported by the go vet tool. * nghttpx: Fix affinity retry * nghttpx: Fix stalled backend connection on retry * nghttpx: Cookie based session affinity * nghttpx: Expose additional TLS related variables to mruby and accesslog- Drop forgotten python2 build dependency- Update to version 1.27.0: * h2load: Print out h2 header fields with --verbose option * nghttpx: Send non-final response to HTTP/1.1 or HTTP/2 client only - Changes for version 1.26.0: * docs: Fix some typos in the nghttpx how-to * h2load: Fix bug that timing script stalls with -m1 * h2load: Reservoir sampling (GH-984) * h2load: Add timing-based load-testing in h2load - Switch to python3 support- Don't use jemalloc on ppc or %arm, where it is broken.- Update to version 1.25.0: * lib: add nghttp2_rcbuf_is_static() (Patch from Anna Henningsen) (GH-983) * nghttpx: Fix bug that forwarded for is not affected by proxy protocol (GH-979) * nghttpx: Update mruby to 1.3.0 (GH-957)- Drop doc building - Rename python subpackage to python2- Update to version 1.24.0: * doc: README.rst: fix typo (Patch from Simone Basso) (GH-947) * doc: fix up grammar in submit_trailer docs (Patch from Benjamin Peterson) (GH-945) * doc: fix cleaning in out-of-tree builds (Patch from Benjamin Peterson) (GH-938) * nghttp: Fix bug that upgrade fails if reason-phrase is missing (GH-949) * nghttpx: Verify OCSP response using trusted CA certificates (GH-943) * nghttpx: Set default minimum TLS version to TLSv1.2 (GH-937) - Changes for version 1.23.1: * nghttpx: Fix crash in OCSP response verification - Changes for version 1.23.0: * lib: nghttp2_session: Allow for compiling library with -DNDEBUG set (Patch from Angus Gratton) (GH-919) * lib: Treat incoming invalid regular header field as stream error (GH-900) * lib: Call nghttp2_on_invalid_frame_callback if altsvc validation fails (GH-904) * doc: spelling mistake in arguments to build nghttp apps (Patch from Soham Sinha) (GH-925) * doc: Add notes for installation on linux systems (Patch from Tapanito) (GH-917) * doc: Clarify the effect of nghttp2_option_set_no_http_messaging * nghttpx: Verify OCSP response (GH-929) * nghttpx: Fix certificate selection based on pub key algorithm (GH-924) * nghttpx: Fix certificate indexing bug * nghttpx: Run OCSP at startup (GH-922) * nghttpx: Wildcard path matching (GH-914) * nghttpx: Forward multiple via, xff, and xfp header fields (GH-903) * nghttp: Add -y, --no-verify-peer option to suppress peer verify warn (GH-906)- Update to version 1.22.0: * lib: Add missing free call on error in inflight_settings_new() (Patch from lstefani) (GH-884) * asio: Support specifying stream priority via session::submit() (Patch from Matt Way) (GH-881) * nghttpx: Clarify --conf option behaviour * nghttpx: Add $tls_sni access log variable (GH-896) * nghttpx: Rename ssl_* log variables as tls_* (GH-895) * nghttpx: Fix path matching bug (GH-894) * nghttpx: SNI based backend server selection (GH-892) * nghttpx: Enable signed_certificate_timestamp extension for TLSv1.3 (GH-878) * nghttpx: Add options for X-Forwarded-Proto header field (GH-872) * nghttpx: Add --single-process option (GH-869) * nghttpx: Use 502 as server error code * nghttpx: Use SSL_CTX_set_early_data_enabled with boringssl * nghttp: Verify server certificate and show warning if it fails (GH-870) * integration: Use nip.io instead of xip.io- Update to version 1.21.1: * asio: Fix crash if connect takes longer time than ping interval (GH-866) * nghttpx: Fix bug that 204 from h1 backend is always treated as error (GH-871) - Changes for version 1.21.0: * lib: Fix nghttp2_session_want_write (GH-832) * doc: Document pkg-config path usage * build: Eliminate U macro; Instead use (void)VAR for better compiler compatibility. * src: BoringSSL supports SSL_CTX_set_{min,max}_proto_version. (Patch from Piotr Sikora) (GH-853) * src: Use Mozilla's "Modern compatibility" ciphers by default * src: nghttp2_gzip: fix this statement may fall through [-Werror=implicit-fallthrough=] found by gcc7 (Patch from Alexis La Goutte) (GH-823) * nghttpx: Print version number with -v option * nghttpx: Enable X25519 with boringssl * nghttpx: Retry getaddrinfo without AI_ADDRCONFIG (GH-858) * nghttpx: Failing to listen on server socket is fatal error * nghttpx: Escape certain characters in access log (GH-856) * nghttpx: Ignore further input if connection is going to close * nghttpx: Don't call functions which are not async-signal-safe after fork but before execv in multithreaded process. * nghttpx: Enable backend pattern matching with http2-proxy (GH-733) * asio: client: Send PING after 30 seconds idle (GH-847)- Update to version 1.20.0: * lib: nghttp2_session: fix The 'then' statement is equivalent to the subsequent code fragment found by PVS Studio (V523) (Patch from Alexis La Goutte) (GH-814) * lib: Add nghttp2_option_set_no_closed_streams (GH-810) * build: Disable spdylay detection by default * build: Add --with-systemd option to configure * fuzz: Add fuzzer for oss-fuzz (GH-799) * src: Enable TLSv1.3 if it is supported by OpenSSL (or BoringSSL) (GH-816) * src: h2 requires >= TLSv1.2 * asio: More graceful stop of nghttp2::asio_http2::server::http2 (Patch from Amir Pakdel) (GH-805) * asio: Holding more shared_ptrs instead of raw ptrs to make sure called objects don't get deleted. (Patch from clemahieu) * asio: Fix infinite loop in acceptor handler (Patch from clemahieu) (GH-794) * asio: close_stream erases from streams_ while it's being iterated over. (Patch from clemahieu) (GH-795) * nghttpx: Strip version number from server header field * nghttpx: Add --single-worker option * nghttpx: Fix bug that send_reply does not participate graceful shutdown * nghttpx: Add --frontend-max-requests option * nghttpx: Enable stream-write-timeout by default * nghttpx: Fix stream write timer handling * nghttpx: Add configrevision API endpoint (GH-820) * nghttpx: Redirect to HTTPS URI with redirect-if-not-tls parameter (GH-819) * nghttpx: Update log time stamp in millisecond interval * nghttpx: Better error message when private key and certificate are missing * nghttpx: Fix bug that old config is used during reloading configuration * nghttpx: Specify TLS protocol by version range (GH-809) * nghttpx: Send SIGQUIT to the original master process (GH-807) * nghttpx: Restrict HTTP major and minor in 0 or 1 * nghttpx: Drop privilege of neverbleed daemon first * nghttpx: add systemd support (Patch from Tomasz Torcz) (GH-802) * nghttpx: Fix crash on SIGHUP with multi thread configuration (GH-801) * nghttpx: Send 1xx non-final response using mruby script (GH-800) * nghttpx: Select certificate by client's supported signature algorithm (GH-792) * nghttpx: Recommend POST for backendconfig API request * nghttpx: Don't build PSK features with LibreSSL (Patch from Bernard Spil) (GH-789) * nghttp: add support for link rel="preload" for --get-assets (Patch from Benedikt Christoph Wolters) (GH-791) * h2load: Fix wrong req_stat updates * h2load: Explicitly count the number of requests left and inflight * integration: Fix deprecation warnings * integration: Redirect nghttpx stdout/stderr to test driver's stdout/stderr - Changes for version 1.19.0: * lib: Fix memory leak of nghttp2_stream object in server side nghttp2_session object * Fix issues found by PVS Studio (Patch from Alexis La Goutte) (GH-769) * doc: Update README file to write about the issue of Alpine Linux's inability to replace malloc (Patch from makovich) (GH-768) * build: Compile with Android NDK r13b using clang * src: Fix assertion error with boringssl * nghttp: Take into account scheme and port when parsing HTML links * nghttp: Fix authority for --get-assets if IP address is used in conjunction with user-defined :authority header (Patch from Benedikt Christoph Wolters) (GH-783) * nghttpx: Add --accesslog-write-early option (GH-777) * nghttpx: Fix access.log timestamp (GH-778) * nghttpx: Show default cipher list in -h * nghttpx: Add client-ciphers option * nghttpx: Add client-no-http2-cipher-black-list option * nghttpx: Fix the bug that no-http2-cipher-black-list does not work on backend HTTP/2 connections. * nghttpx: Add --client-psk-secret option to enable PSK in backend (GH-612) * nghttpx: Add --psk-secret option to enable PSK in frontend connection (GH-612) * nghttpx: Enable SCT with OpenSSL 1.1.0 * nghttpx: Add proxyproto to frontend option to accept PROXY protocol (GH-765) * h2load: Show default cipher list in -h * h2load: Show custom server temp key such as X25519 * h2load: Fix incorrect return value from spdylay_send_callback - Changes for version 1.18.1: * nghttpx: Fix assertion error in libev ev_io_start (GH-759) * nghttpx: Handle c-ares success without result * nghttpx: Fix bug that DNS timeout was erroneously disabled (GH-763) * nghttpx: Fix bug that DNS timeout was ignored (GH-763)- use individual libboost-*-devel packages instead of boost-devel- Update to version 1.18.0: * lib: Accept and ignore content-length: 0 in 204 response for now * build: Use pkg-config to detect libxml2 * build: Require c-ares to compile applications under src * build: Add Windows CI via AppVeyor (Patch from Alexis La Goutte) * examples: Delete tiny-nghttpd * nghttpx: Retry h1 backend request if first write fails (GH-757) * nghttpx: Keep reading after backend write failed (GH-756) * nghttpx: Add frontend-keep-alive-timeout option (GH-755) * nghttpx: New error log format (GH-749) * nghttpx: Fix bug that fetch-ocsp-response does not work with OpenSSL 1.1.0 (GH-742) * nghttpx: Backend API call allows non-numeric host with dns parameter (GH-731) * nghttpx: Lookup backend host name dynamically (GH-721) * nghttpx: Accept and ignore content-length: 0 in 204 response for now (GH-735) * nghttpx: Wait for child process to exit- Update to version 1.17.0: * lib: Disallow content-length in 1xx, 204, or 200 to a CONNECT request (GH-722) * lib: Avoid memcpy against NULL src * build: MSVC version resource support (Patch from Remo E) (GH-718) * asio: server: Call on_close callback on connection close (GH-729) * nghttpx: Fix frequent crash with --backend-http-proxy-uri * nghttpx: Robust backend read timeout * nghttpx: Fix bug that mishandles response header from h1 backend * nghttpx: Fix bug that zero-length POST is not forwarded (GH-726) * nghttpx: Remove optional reason-phrase from SPDY :status * nghttpx: Header key and value must be string in mruby script * nghttpx: Strip content-length with 204 or 200 to CONNECT in mruby (GH-722) * nghttpx: Strict handling for Content-Length or Transfer-Encoding in h1 (GH-722) * nghttpx: Fix compilation with BoringSSL (Patch from dalf) (GH-717) * nghttpd, nghttpx, asio: Add missing mandatory SP after status code- Update to version 1.16.1: * lib: Prevent undefined behavior in decode_length * nghttpx: Fix bug which may crash nghttpx if non-final response is forwarded from origin server to HTTP/1.1 client - Changes for version 1.16.0: * lib: Add nghttp2_set_debug_vprintf_callback to take advantage of DEBUGF statements in when building DEBUGBUILD. * Update .clang-format for clang-format-3.9 * build: Make it possible to include nghttp2/CMakeLists.txt in another project using add_subdirectory. * third-party: Update http-parser to feae95a3a69f111bc1897b9048d9acbc290992f9 * asio: Fix crash when end() is called outside nghttp2 callback * nghttpx: Add --backend-connect-timeout option * nghttpx: Add TLS signed_certificate_timestamp extension support * nghttpx: Add --ecdh-curves option to specify list of named curves * h2load: Add --header-table-size and --encoder-header-table-size options- Update to version 1.15.0: * lib: Add nghttp2_option_set_max_deflate_dynamic_table_size() API function (GH-684) * lib: Allow NGHTTP2_ERR_PAUSE from nghttp2_data_source_read_callback (GH-671) * lib: Add nghttp2_session_get_hd_deflate_dynamic_table_size() and nghttp2_session_get_hd_inflate_dynamic_table_size() API functions to get current HPACK dynamic table size (GH-664) * lib: Add nghttp2_session_get_local_settings() API function * lib: Add nghttp2_session_get_local_window_size() and nghttp2_session_get_stream_local_window_size() API functions * build: Add -lsocket -lnsl to APPLDFLAGS for solaris build * neverbleed: Update neverbleed to support ECDSA certificate * doc: Mention --enable-lib-only configure option in README * integration: Fix test failure with go1.7.1 * src: Fix compile error with openssl 1.1.0 * nghttpx: Improve performance with HTTP/1.1 backend when request body is involved * nghttpx: Use std::atomic_* overloads for std::shared_ptr if available * nghttpx: Migrate backend stream to another h2 session on graceful shutdown * nghttpx: Add option to specify HPACK encoder/decoder dynamic table size * nghttpx: Log client address * nghttpx: Add tls_sni to mruby Nghttpx::Env class * nghttpx: Add --frontend-http2-window-size option, and its family functions * nghttpx: Add experimental TCP optimization for h2 frontend * nghttpx: Workaround for std::make_shared bug in Xcode7, 7.1, and 7.2 (GH-670) * nghttpx: Fix bug that bytes are doubly counted to rate limit for TLS connections * nghttpx: Add --no-server-rewrite option not to rewrite server header field (GH-667) * nghttpx: Retry if backend h1 connection cannot be established due to timeout * nghttpx: Reset stream if invalid header field is received in h2 * nghttpx: Add --server-name option to change server response header field (GH-667) * nghttpd: Add --encoder-header-table-size option * nghttp: Add --encoder-header-table-size option * python: Support ALPN, require Python 3.5- Update to version 1.14.0: * lib: Make emit_header() return void since it always succeed * lib: Add nghttp2_hd_deflate_hd_vec() deflate API to support multiple buffer input * lib: since hd_inflate_commit_indexed() always return 0, remove the return value check in nghttp2_hd_inflate_hd_nv() * lib: Use memeq() instead of lstreq() in lookup_token() * lib: More strict stream state handling * lib: Modify genlibtokenlookup.py to remove redundant header comparisons and remove inline qualifier of lookup_token() in genlibtokenlookup.py * lib: Fix wrong tree operation to avoid cycle * lib: Make get_max_index() return the max index in frame, so we don't need to do extra calculation * lib: Add nghttp2_on_invalid_header_callback * lib: Log frame's stream ID for header debug logging * doc: Remove old doc about differential encoding in HPACK * doc: Document about ALPN in nghttpx howto * nghttpx: Log error code from getsockopt(SO_ERROR) on first write event * nghttpx: Don't change pushed stream's priority * nghttpx: Log backend connection failure in WARN level * nghttpx: Fix bug that api and healthmon parameters do not work with http2 proxy * nghttpx: Add access log variable for backend host and port * nghttpx: Use copy instead of const reference of backend group * nghttpx: Reload configuration with SIGHUP * nghttp: Adjust weight according to Firefox stable * nghttp: Call error callback when invalid header field is received and ignored * nghttp: Allow multiple -p option * deflatehd: Call nghttp2_hd_deflate_change_table_size only if table size is changed from default- Update to version 1.13.0: * lib: Cancel non-DATA frame transmission from nghttp2_before_frame_send_callback * doc: Fix warning with Sphinx 1.4 * build: Work with Android NDK r12b * nghttpx: Use consistent hashing for client IP based session affinity * nghttpx: Fix FTBFS on armel by explicitly including the header * nghttpx: Cast to double to fix build with gcc 4.8 on Solaris 11 * nghttpx: Fix build error with libressl * examples: Fix compile error with OpenSSL v1.1.0-beta2- Update to version 1.12.0: * Add nghttp2_session_set_local_window_size API function * Add nghttp2_option_set_max_send_header_block_length API function (GH-613) * Fix warning: declaration of 'free' shadows a global declaration (Patch from Alexis La Goutte) * examples: Add ALPN support to tutorial client/server (GH-614) * nghttpx: Reduce TTFB with large number of incoming connections * nghttpx: Rewrite read timer handling * nghttpx: Clean up neverbleed AF_UNIX socket * nghttpx: Add --backend-max-backoff option * nghttpx: Use 16KiB buffer for reading to match TLS record size * nghttpx: Add healthmon parameter to -f option to enable health monitor mode * nghttpx: Receive reference of std::mt19937, not making a copy * nghttpx: Fix bug that backend never return to online (GH-615) * nghttpx: Implement client IP based session affinity * nghttpx: Add --api-max-request-body option to set maximum API request body size * nghttpx: Add api parameter to --frontend option to mark API endpoint * h2load: Add content-length header field for HTTP/2 and SPDY as well * h2load: Implement HTTP/1 upload (GH-611)- Update to 1.11.1 * lib: Add nghttp2_hd_inflate_hd2() and deprecate nghttp2_hd_inflate_hd() * lib: Avoid 0-length DATA if NGHTTP2_DATA_FLAG_NO_END_STREAM is set * lib: Fix bug that PING flags are ignored in nghttp2_submit_ping * integration: Workaround runtime error: cgo argument has Go pointer to Go pointer * nghttp: Eliminate zero length DATA frame at the end if possible * nghttpd: Set content-length in status response * nghttpx: Add sni keyword to --backend option * nghttpx: Allow mixed protocol and TLS settings among backends under same pattern * nghttpx: Don't add 0-length DATA when response HEADERS bears END_STREAM flag * nghttpx: Don't add chunked encoded response body for HEAD request * nghttpx: Don't use CN if we have dNSName or iPAddress field * nghttpx: Just call execv instead of execve to pass environ * nghttpx: Make SETTINGS timeout value configurable * nghttpx: Save PID file after it is ready to accept connections * nghttpx: Treat backend failure if SETTINGS is not received within timeout * nghttpx: Wait for SETTINGS ACK to make sure that backend h2 server is alive- Update to 1.10.0 * Pass unknown SETTINGS values to nghttp2_on_frame_recv_callback * Add ALTSVC frame support * Run error callback when peer does not send initial SETTINGS frame * Update http-parser * Update sphinx_rtd_theme * nghttp: add an --expect-continue option * nghttpx: Fix downstream connect callback called early * nghttpx: Truncate too long -b option signature * nghttpx: Fix bug that server push from mruby script did not work * nghttpx: Try next HTTP/1 backend address when connection cannot be made * nghttpx: Retry next HTTP/2 backend address when connection cannot be made * nghttpx: Enable link header field based push for non-final response * nghttpx: Detect online/offline state of backend servers * nghttpx: Better load balancing between backend HTTP/2 servers * nghttpx: Fix crash with backend failure- Update to 1.9.2 * nghttpx: Fix crash with backend failure * nghttpx: Better distribute load to backend h2 servers * nghttpx: Fix error messages on deprecated mode * nghttpx: Fix bug that logger wrote string which was not NULL-terminated * nghttpx: Fix bug that proxy with HTTP/1.1 CONNECT did not work- Update to 1.9.1 * nghttpx: Fix bug that backend tls keyword did not work with -s option * nghttpx: Fix handing stream after connection check was failed - Changes for 1.9.0 * lib: Add nghttp2_error_callback to tell application human readable error message * lib: Reference counted HPACK name/value pair, adding * nghttp2_on_header_callback2 * lib: Add nghttp2_option_set_no_auto_ping_ack() option * lib: Add nghttp2_http2_strerror() to return HTTP/2 error code string * build: Makefile.msvc enhancements (Patch from Jan-E) * build: Lower libev version requirement (Patch from Peter Wu) * build: cmake build support (Patch from Peter Wu) * asio: Fix bug that server event loop breaks with exception * integration: Disable tests that sometimes break randomly on travis * integration: do not use recursive target (Patch from Peter Wu) * h2load: Fix bug that it did not try to connect to server again * h2load: Fix bug that initial max concurrent streams was too large * nghttpx: Memcached connection encryption with tls keyword * nghttpx: Enable/disable TLS per frontend address * nghttpx: Configure TLS per backend routing pattern * nghttpx: Workaround for Ubuntu 15.04 which does not value-initialize on std::make_shared. * nghttpx: Add --error-page option to set custom error pages * nghttpx: Add wildcard host routing * nghttpx: Change read timeout reset timing * nghttpx: Don't push if Link header field includes nopush * nghttpx: Deprecate backend-http1-connections-per-host in favor of backend-connections-per-host * nghttpx: Restructure mode settings, removing --http2-bridge, - -client, and --client-proxy options * nghttpx: Deprecate backend-http1-connections-per-frontend in favor of backend-connections-per-frontend * nghttpx: Don't share session which is already in draining state * nghttpx: Effectively disable backend HTTP/2 connection flow control * nghttpx: Add --frontend-http2-max-concurrent-streams and - -backend-http2-max-concurrent-streams, and deprecate - -http2-max-concurrent-streams option * nghttpx: Deprecate --backend-http2-connections-per-worker option * nghttpx: Share TLS session cache between HTTP/2 and HTTP/1 backend * nghttpx: Rewrite backend HTTP/2 connection coalesce strategy- Update to 1.8.0 * Add Architecture documents (work in progress) * List all contributors in AUTHORS * doc: fix out-of-tree doc builds (Patch from Peter Wu) * Wrap AM_PATH_XML2 by m4_ifdef to handle the case when _PATH_XML2 is not found * Fix configure script for non-gcc, clang build * Document compiling apps and include h2load in configure (Patch from David Beitey) * Don't check for dlopen/libdl on *BSD (Patch from Bernard Spil) * Don't taint CXXFLAGS from AX_CXX_COMPILE_STDCXX_11 * Fixing Windows Makefile version detection (Patch from Reza Tavakoli) * lib: Tokenize extra HTTP header fields * lib: Fix typo in HAVE_CONFIG_H name (Patch from Peter Wu) * lib: Add HTTP/2 extension framework to send and receive non-critical frames * tests: remove unused macros (Patch from Peter Wu) * src: Update default cipher list * src: Fix compile error with gcc-6 which enables C++14 by default * asio: client: Fix connect timeout does not work, return from cb if session stopped, removing client::session::connect_timeout() functon * nghttpd: Start SETTINGS timer after it is written to output buffer * nghttpd: Add trailer header field to status responses * nghttpd: Add -w and -W options to change window size * nghttpx: Worker wide blocker which is used when socket(2) is failed * nghttpx: ConnectBlocker per backend address * nghttpx: Interleave text/html pushed resources with associated resource * nghttpx: Add headers given in add-response-headers for mruby response * nghttpx: Deprecate --backend-ipv4 and --backend-ipv6 in favor of --backend-address-family * nghttpx: Add options to specify address family of memcached connections * nghttpx: Add encryption support for TLS ticket key retrieval * nghttpx: Add TLS support for session cache memcached connection * nghttpx: Refactor blacklisted cipher suite check (Patch from Jay Satiro) * nghttpx: Add TLS support for HTTP/1 backend * nghttpx: Add request-header-field-buffer and max-request-header-fields options, deprecating header-field-buffer and max-header-fields options. * nghttpx: Add --no-http2-cipher-black-list to allow black listed cipher suite * nghttpx: Limit header fields from backend * nghttpx: Fix bug that IPv6 address in Forwarded "for" is not quoted-string * nghttpx: Support multiple frontend addresses * integration-tests: support out-of-tree tests (Patch from Peter Wu) * examples: fix compile warnings (Patch from Peter Wu) - Drop upstreamed nghttp2-c++14.patch- Update to 1.7.1 * Fix CVE-2016-1544 (boo#966514)- Add nghttp2-c++14.patch to properly guard make_unique templates. [bsc#964140]- Update to 1.7.0 * Reset (RST_STREAM) stream if flow control window gets overflow * Validate :authroity, host, and :scheme value more strictly * Check request/response submission error based side of session * Strict outgoing idle stream detection * Return error from nghttp2_submit_{headers,request} when self dependency is made * Add -ldl to APPLDFLAGS for static openssl linking * asio: Stop acceptor on server::http2::stop * asio: Rename http2::get_io_services() as http2::io_services() * h2load: Support UNIX domain socket * h2load: Improve readability of traffic numbers * h2load: Remove "auto" for -m option * h2load: Show progress in rate mode * h2load: Perform sampling for request and connection timings to reduce memory consumption * nghttpd: Add --no-content-length option to omit content-length in response * nghttpx: Interleave pushed streams with the associated stream if pushed streams are javascript and CSS resources * nghttpx: The initial value of request/response buffer is increased to 128K * nghttpx: Fix bug that --listener-disable-timeout option is not used * nghttpx: Don't emit :authority if request does not contain authority information * nghttpx: Add clarification of quotes in configuration file * nghttpx: Don't allow certain characters in host and :scheme header field * nghttpx: Add RFC 7239 Forwarded header field support * nghttpx: Fix crash when running on IPv6 only (Patch from Vernon Tang) * nghttpx: Take into account of trailers when applying max_header_fields * nghttpx: Don't apply max_header_fields and header_field_buffer limit to response * nghttpx: Strict validation for header fields given in configuration * nghttpx: header value should not be lower-cased (Patch from ayanamist)- fixed typo in libnghttp2_asio1 [bsc#962914]- Update to 1.6.0 * Fix heap-use-after-free bug when handling idle streams * Strict error handling for frames which are not allowed after closed (remote) * Set max number of outgoing concurrent streams to 100 by default * Keep incoming streams only at server side * Create stream object for pushed resource during nghttp2_submit_push_promise() * Add nghttp2_session_create_idle_stream() API * Handle response in nghttp2_on_begin_frame_callback * Add --lib-only configure option * Compile with OpenSSL 1.1.0-pre1 * Fix build when OpenSSL 1.0.2 is not available (patch from Sunpoet Po-Chuan Hsieh) * asio: Add connect and read timeout to client API * asio: Add TLS handshake and read timeout to server API * asio: Added access to a requests remote endpoint (patch from Andreas Pohl) * asio: libnghttp2_asio: Added io_service accessors (patch from Andreas Pohl) * h2load: Add req/s min, max, mean and sd for clients * h2load: Fix broken connection times- Update to 1.5.0 * Fix bug that nghttp2_session_find_stream(session, 0) returned NULL * Add nghttp2_session_change_stream_priority() to change stream priority without sending PRIORITY frame * Add nghttp2_session_check_server_session() API * Consider to use CANCEL error code when closing streams with GOAWAY * Don't send push response if GOAWAY has been received * Use error code CANCEL to reset pushed reserved stream from remote * Add nghttp2_session_upgrade2(), deprecate nghttp2_session_upgrade() * Workaround HTTP upgrade with HEAD request in nghttp2_session_upgrade() * Introduce NGHTTP2_NV_FLAG_NO_COPY_NAME and NGHTTP2_NV_FLAG_NO_COPY_VALUE * Add nghttp2_session_check_request_allowed() API function * Switch to clang-format-3.6 * Update mruby to 1.2.0 * tests: fix broken linkage with --disable-static (Patch from Kamil Dudka) * python: Send RST_STREAM if remote side is not closed and response finished * asio: client: call on_error when connection is dropped * asio: ALPN support * h2load: Add --h1 option to force http/1.1 for both http and https URI * h2load: Fix crash when dealing with "connection: close" form HTTP/1.1 server * h2load: h2load goes into infinite loop when timing script file starts with 0.0 in first line (Patch from Kit Chan) * h2load: Override user-agent with -H option * h2load: Print "space savings" to measure header compression efficiency * h2load: Stream error should be counted toward errored * h2load: Show application protocol with OpenSSL < 1.0.2 * nghttpx: Don't send RST_STREAM to h2 backend if backend is disconnected state * nghttpx: Support server push from HTTP/2 backend * nghttpx: Fix bug that causes connection failure with backend proxy URI * nghttpx: Use --backend-tls-sni-field to verify certificate hostname * nghttpx: Log :authority as $http_host if available * nghttpd: Fix crash with CONNECT request * nghttpd: Defered eviction of cached fd using timer * nghttpd: Read /etc/mime.types to set content-type header field * nghttp: Record request method to output it in har correctly * nghttp: Use method given in -H with ":method" in HTTP Upgrade - Drop nghttp2-1.4.0-fix-tests.patch (now in upstream)- Enable spdy and more example applications- Update to 1.4.0: * lib: Don't always expect dynamic table size update. * lib: Shrink to the minimum table size seen in local SETTINGS. * lib: Add new error code NGHTTP2_ERR_PAUSE to send_data_callback. * lib: Avoid excessive WINDOW_UPDATE queuing. * lib: Return fatal error if flooding is detected to close session immediately. * lib: Return type of nghttp2_submit_trailer is int. * lib: Don't send WINDOW_UPDATE with 0 increment. * lib: Fix bug that headers in CONTINUATION were ignored after HEADERS with padding. * package: Use -fvisibility=hidden for internal functions. * package: Show more information in configure summary. * package: Add PIDFile directive to systemd service. * package: Fix daemon upgrade when running under systemd. * app: Compile with BoringSSL. * nghttp: Allow multiple -c option occurrence, and take min and last value. * nghttpd: Fix leak when server failed to listen to given port. * nghttpx: Add TLS dynamic record size behaviour command line options. * nghttpx: Reduce default timeouts for read sockets to 1m. * nghttpx: Fix bug that PUT is replaced with POST. * nghttpx: Change mruby script handling. * nghttpx: Added support for RFC 7413 (TCP Fast Open) on nghttpx proxy listening connections. * nghttpx: Add neverbleed support. * h2load: Don't DOS our server! * h2load: Use duration syntax for timeouts. * h2load: Support subsecond rate period. * h2load: Simplify rate mode. * h2load: Add option for user-definable rate period. * h2load: Reuse SSL/TLS session. * h2load: Reconnect server on connection: close. * h2load: Don't exit in the case of no ALPN protocol overlap. * integration: Update go's http2 package URI. - Add missing baselibs.conf. - Add nghttp2-1.4.0-fix-tests.patch from commit 4825009. - Small spec cleanup.- Update to 1.3.4 * Make traditional init script fail if new config file is broken (Patch from Janusz Dziemidowicz) * nghttpx-logrotate: Don't use killall since we have multiple processes * nghttpx: Fix improper signal handling - Changes for 1.3.3 * Fix bug in padding handling of DATA frame * Use hash table for dynamic table lookup * More warning flags for --enable-werror * Update mruby * h2load: HTTP/1.1 support (Patch from Lucas Pardue) * nghttpx: Do not try to set TCP_NODELAY when frontend is an UNIX socket (Patch from Janusz Dziemidowicz) * nghttpx: Chown UNIX domain socket to user specified as --user * nghttpx: Split monolithic one process into control and worker processes * nghttpx: Handle SSL/TLS data following PROXY protocol line - Changes for 1.3.2 * Check header block limit after new stream is opened * nghttp: Show error if HEADERS frame cannot be sent for whatever reason * nghttpx: Fix assertion failure on TLS handshake * nghttpx: Add x-http2-push header field for pushed resource * nghttpx: Fix compile error with --disable-threads- Update to 1.3.1 * Avoid usage of typeof and replace __builtin_offsetof with offsetof * Honor stream->weight even if stream->last_writelen is 0 * Compile third-party libraries if hpack-tools is enabled * nghttpx-init: Start nghttpx with --daemon * Bundle sphinxcontrib.rubydomain https://bitbucket.org/birkenfeld/sphinx-contrib/src/default/rubydomain/ * Bundle mruby * h2load: Record TTFB on first byte of response body, rather than first socket read * h2load: Improve checking for timing script input, prevent false positive in certain situations * nghttpx: Implement PROXY protocol version 1 (--accept-proxy-protocol option) * nghttpx: Allow link header server push for HTTP/2 backend as well * nghttpx: Don't initiate push if client disabled push * nghttpx: Allow absolute URI in Link header field for push * nghttpx: Fix crash with multi workers and QUIT signal * nghttpx: Add mruby support which is disabled by default (use --with-mruby configure option to enable it) * nghttpx: Drop connection before TLS finish if h2 requirement is not fulfilled - Fix typo in previous changelog entry- Update to 1.3.1 * Limit the number of incoming reserved (remote) streams * Add stream public API * Rewrite priority tree handling * Fix parallel make distcheck * Define it and itprep recursive target if AM_EXTRA_RECURSIVE_TARGETS is defined * fetch-ocsp-response: Handle spurious openssl exist status 0 * nghttpx: Use nghttp2::ssl::DEFAULT_CIPHER_LIST for backend TLS connection * nghttpx: Don't allow blacked listed cipher suites for HTTP/2 connection * nghttpx: better handle /dev/stderr and /dev/stdout (Patch from Tomasz Buchert) * nghttpd: GOAWAY if SSL/TLS requirements for HTTP/2 are not met * nghttpd: Return date header field for 304 * nghttpd: Support HEAD request * h2load: Add Timing-script and base URI support (Patch from Lucas Pardue) * h2load: Add timeout options (Patch from Nora) - Fix typo in changelog- Update to 1.2.1 * doc: Reword the HPACK tutorial (Patch from Tom Harwood) * nghttpx: Fix stability issues * h2load: Fix crash if -r > -n- Update to 1.2.0 * Fix crash if response or data is submitted to closing stream * Header table size UINT32_MAX must be accepted * Use PROTOCOL_ERROR against DATA sent to idle stream * Allow multiple in-flight SETTINGS * Strictly check occurrence of dynamic table size update * Fix configure warning that 'missing' is missing or too old * Fix rm: cannot remove ‘*.rst’: No such file or directory when "make clean" (Patch from Alexis La Goutte) * doc: Reword some of the server and client tutorial (Patch from Tom Harwood) * src: Remove monotonic_clock replacement macro for gcc-4.6 * nghttpx: Add TLS ticket key sharing among nghttpx instances using memcached * nghttpx: Add shared session cache using memcached * nghttpx: Set SSL/TLS session timeout to 12 hours * nghttpx: Enable session resumption on HTTP/2 backend * nghttpx: Don't rewrite host header field by default * nghttpx: Generate new ticket key every 1hr and its life time is now 12hrs * nghttpx: Don't reuse backend connection if it is not clean * nghttpx: Add AES-256-CBC encryption for TLS session ticket * nghttpd: Fix the bug that 304 response has non-empty body * h2load: Add -r and -C options to h2load (Patch from Nora Shoemaker) - Changes for 1.1.2 * Fix linker error with libnghttp2_asio * Allow custom installation location for Python bindings - Drop no longer needed missing_nghttp2_timegm.patch- Update to 1.1.1 * nghttpx: Fix various stability issues and memory leak bug - Changes for 1.1.0 * Fix DATA is not consumed if nghttp2_http_on_data_chunk failed * nghttp2_submit_response and nghttp2_submit_headers may return * NGHTTP2_ERR_DATA_EXIST * msvc build fixes and enchantments (Patch from Gabi Davar) * Compile with IRIX gcc-4.7 (Patch from Klaus Ziegler) * nghttp: Add --max-concurrent-streams option * nghttp: Add comment on HAR on pushed objects (Patch from acesso) * nghttpx: Add --include option to read additional configuration from given file * nghttpx: Add backend routing based on request host and path by extending -b option * nghttpx: Allow log variable to be enclosed by curly braces for disambiguation * nghttpx: Add log variables related to SSL/TLS connection * h2load: Add --ciphers option - Add patches * missing_nghttp2_timegm.patch to fix building of asio library * nghttp2-remove-python-build.patch to fix python bindings installation when autotools are used- Update to 1.0.5 * Add STREAM_DEP_DEBUG macro switch to enable runtime validation of depedency tree * Fix another bug in priority handling; sibling's item is not queued when ancestor's item is detached * nghttpx: Fix crash with --http2-bridge and both frontend and backend TLS- Update to 1.0.4 * Fix assertion failure in stream_update_dep_on_detach_item (GH-264) - Changes for 1.0.3 * Fix bug that idle self-depending PRIORITY is not handled gracefully * Optimize dependency based priority code to Firefox style tree * enable third-party for asio_lib too (Patch from Mike Frysinger) * fetch-ocsp-response: Support LibreSSL, and include port in ocsp_host * src: Support compile with LibreSSL * nghttpx: Fix bug that x-forwarded-proto header field does not reflect frontend scheme on HTTP/2 backend * nghttpx: Validate :path on SPDY frontend- Update to 1.0.2 * Fix bug that data are not consumed for connection in race condition (GH-253) * Define NGHTTP2_EXTERN to __declspec(dllimport) when using nghttp2 for Windows build * Translate fetch-ocsp-response into Python * libevent-client: Fix bug that path is broken if URI does not contain path part * python: Call on_close callback when connection is lost for server session * python: Expose client certificate, if available (Patch from Fabian Wiesel) * python: Catch and log failure to set TCP_NODELAY (Patch from Fabian Wiesel) * nghttpx: Add --add-request-header option * nghttpx: Make WebSocket upgrade work * nghttpx: Fix bug that END_STREAM is not set in backend for POST with Upgrade * nghttpx: Don't send "Expect" header field twice- Update to 1.0.1 * Include stdint.h instead of inttypes.h when compiled with MSVC < 2013 * Fix invalid memory free on out-of-memory handling * integration: Use our own copy of golang spdy package * android: Don't link zlib bundled with android NDK * Dockerfile.android: Update NDK ver, and ubuntu; build and link zlib * src, examples: Fix up OpenSSL initialization * nghttpx: Allow HTTP Upgrade from POST request if response header has not been sent to the client * nghttpx: Fix bug that PUSH_PROMISE is sent after associated response HEADERS * nghttpd: Close connection after settings timeout and GOAWAY was sent * h2load: Fix bug that NPN fails if ALPN is enabled- Update to 1.0.0 * v1.0.0 introduced backward incompatible changes from 0.7 series. Read https://nghttp2.org/documentation/package_README.html#migration-from-v0-7-15-or-earlier to migrate from older version to this latest version. - Changes for 0.7.15 * Hopefully, this is the last release for 0.7.x series. Development continues in 1.x series. * Access violation in buffers (GH-232) (Patch from Etienne Cimon) * Retry finding jemalloc lib by je_malloc_stats_print (GH-233) * inflatehd: Fix crash if 'wire' value is not string (GH-235) * nghttpx: Revert 585af93 to fix crash with TLS (GH-234) * nghttpd: Add --echo-upload option to send back request body- Update to 0.7.14 * Fix global-buffer-overflow in HPACK code * Fix doc for nghttp2_select_next_protocol * Fix bug that promised stream was not reset on decompression error * Add systemd and upstart configuration file for nghttpx (Patch from Zhuoyun Wei) * Improve nghttpx logrotate configuration file (Patch from Zhuoyun Wei) * Update sphinx_rtd_theme * h2load: Update h2load to give connect time and ttfb stats (Patch from ericcarlschwartz) * nghttpd: Add -m, --max-concurrent-streams option * nghttpx: Log absolute URI for HTTP/2 or client proxy request * nghttpx: Add --header-field-buffer and --max-header-fields options * nghttp: Fix assertion error if very large value is given to -t- Update to 0.7.13 * Fix bug that promised stream was not reset by returning NGHTTP2_ERR_TEMPORAL_CALLBACK_FAILURE from nghttp2_on_header_callback. Instead, associated stream was reset. * Allow NGHTTP2_ERR_TEMPORAL_CALLBACK_FAILURE from nghttp2_on_begin_headers_callback * h2load: Effectively disable flow control by setting large window size * asio: Graceful shutdown and joinable server (Patch from Xiaoguang Sun)- Update to 0.7.12 * Fix bug that nghttp2_session_set_next_stream_id accepts invalid stream_id * HPACK: Rewrite static header table handling * HPACK: Never index authorization and small cookie header field * Don't install libnghttp2_asio headers if they are disabled * doc: Specify program directive so that hyperlink to option is correctly pointed to the intended location * asio: client: Call error_cb on error occurred in do_read and do_write (Fixes GH-207) * nghttp: Add --no-push option to disable server push * nghttp: Show stream ID in statistics output * nghttp: Remove --dep-idle option * nghttp: Use same priority anchor nodes as Firefox does * nghttpx: Don't push resource if link header has non empty loadpolicy * nghttpx: Add logging for somewhat important events (logs, tickets, and ocsp) * nghttpx: Set Downstream to stream user data on HTTP Upgrade to h2- Update to 0.7.11 * nghttpx: Fix waitpid race condition in ocsp response update * nghttp: Consider user-provided :authority header field for SNI as well as host header field - Changes for 0.7.10 * Make sure that nghttp2 license is MIT license * Add nghttp2_session_consume_{connection,stream} to consume bytes independent * Add nghttp2_send_data_callback to send DATA payload without copying "static inline" fix for build with VS2013 (Patch from Remo E) * Update lib/Makefile.msvc (Patch from Remo E) * Remove dependency on libws2_32 on Windows build * Define NGHTTP2_EXTERN macro to export function for Windows build * doc: Generate API doc per function * python: Add async body generation support * python: Fix pseudo-header field ordering bug * nghttpx: Redirect stderr to errorlog file * nghttpx: Fix bug that data buffered in SSL object are not read * nghttpx: Remove --tls-ctx-per-worker option * nghttpx: Add OCSP stapling feature- Enable python bindings - Update to 0.7.9 * Implements h2-14 protocol (http://tools.ietf.org/html/draft-ietf-httpbis-http2-14) * Implements HPACK 09 (http://tools.ietf.org/html/draft-ietf-httpbis-header-compression-09) * h2load: Fix crash if -t > -c * h2load: Add -d option to upload data to server * nghttpx: Forward only "trailers" keyword in te when forwarding HTTP/2 backend * nghttpx: Fix PUSH_PROMISE header field corruption [GH-194] * nghttpx: Fix te header field is duplicated when forwarding HTTP/2 backend * nghttp, nghttpd: Add --hexdump option to hexdump incoming traffic. * examples: Place AM_CPPFLAGS first to use in-package header files first [GH-192] - Changes for 0.7.8 * Implements h2-14 protocol (http://tools.ietf.org/html/draft-ietf-httpbis-http2-14) * Implements HPACK 09 (http://tools.ietf.org/html/draft-ietf-httpbis-header-compression-09) * Validate :path header field for http or https URI scheme * NULL-terminate header field name and value presented by callback * README.rst: Cleaned up the grammar a bit (Patch from Ross Smith II) * h2load: fix for segfault by reserving correct worker count (Patch from Stefan Eissing)- Avoid shipping documentation redundantly. Set RPM groups.- Fix rpm group- Update to 0.7.5 * Implements h2-14 protocol (http://tools.ietf.org/html/draft-ietf-httpbis-http2-14) * Implements HPACK 09 (http://tools.ietf.org/html/draft-ietf-httpbis-header-compression-09) * Validate HTTP semantics by default * Add nghttp2_option_set_no_http_messaging() API function * Update http-parser * nghttp, nghttpd, nghttpx: Use "sensitive" to indicate "never indexed" header field * nghttp, nghttpd, nghttpx, h2load: Select/announce h2 in ALPN/NPN * nghttp: Fix unaligned field output in --stat * nghttp: Fix -H does not work with -u upgrade request * nghttp: Update resource timing terminology according to Resource Timing TR * nghttpd: Add -a option which takes an address parameter that allows nghttpd to bind to a non-default address. Patch from Brian Card * nghttpx: Use omit minor version in case of HTTP/2 in via header and access log * nghttpx: Support UNIX domain socket on both frontend and backend * nghttpx: Fix crash in http/1 backend when backend returns more bytes than CL * nghttpx: Cast configuration value to rlim_t to avoid compile error on 32bit * nghttpx: Fix 1 second delay in HTTP/2 backend connection * nghttpx: Fix request re-submission bug in HTTP/2 backend * asio-sv2: Fix compile error with OS X- Initial packaging of 0.7.4/sbin/ldconfig/sbin/ldconfiglamb15 16139973591.40.0-lp152.2.3.11.40.0-lp152.2.3.1libnghttp2.so.14libnghttp2.so.14.19.0libnghttp2-14COPYING/usr/lib//usr/share/licenses//usr/share/licenses/libnghttp2-14/-fomit-frame-pointer -fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.opensuse.org/openSUSE:Maintenance:15832/openSUSE_Leap_15.2_Update/e80291741352a02169aa97c60d403456-nghttp2.openSUSE_Leap_15.2_Updatecpioxz5i586-suse-linuxELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=1c477e9d01d7f605f2ed0619590d913a541afae6, strippeddirectoryASCII textPRRRRRVh$$@.#n !utf-8ed8d45b5c0629483ab1d852cc40ef2edc5a7596e436bed9bf084518ae203df10?7zXZ !t//] cr$x#Dd;dZqA-qUBAs;pN˝UZv kTj1"\Ŵu9O)@߈5ؿ 3ۉ]$y| ^NJO'ac,fhtv-۶UV9A-_@Cι>c/6"ϑNMTUZz6W;]˸?&+4AsÃETEqiG)# /#ze-C2c̵db|g JlغUJjHݖj VXc G (=/R1atsTc)Ǖ1@hbCOI)U䵣.Q J?l Բ3;٦_<xD &>t]. GKқ璺$thΊi"09OO x؉ofג5hG)M^r&9\_B$Us@HSYܖP0꿆hsbZ)(&bIEC#o2MԀh8[촍mA}w^]_& ֎XV/tx:bf I̿F>X=d Rǫ xǁcɥa8gǟZPm8DX:gt.uW!qLmKᷓl͂n@5lJ Zn_ڬiMf6JrJ|6^_j_:UZ{%ܚ~: "`b LW)UGjȩ peec҃,sc6o^r&GlzT}b%C-K~zf7 us\"jޠ{P$4eDiv=V&ȭ9 LuJ6V]6Sܝa0]32 h%ѩuP}_^;T  >iP ܓ)*ϡH+P ’&zqH4nϾ^OY9yW: X'`1RX罚D[f|4+$B 0t}^JjM3u:^TƻUc0R{)3"B'p$#~* q 3Y)XiLQ n͝fEXBf@.I3'@zG~lgVG)۴ 3 ic]@b%!RFOZsqyVVhdǼڹ$hZ@gmξQ; yEڔ|`@ |T΅nlcՁm}!@` ^^aB7pfPˇAS,Ux-B"~h~-{[ZURNL:&K)}0gOns,S*222pJClU8P,lոџ%.wka g rm[jЉ$:xP ҭr*:ڸPБL|Sd;G6*$7ۜɆM%5}VU*R1rCt:/j?֯e ]Գ},Hif=φ|7N"L_ia:e;CH0tJ~4!aG|(q6|VHVg<</$ 8R f"m#Aa->P s d E\7`$'}ǀIO]X"5rn/UV"H `HǕ:> nyO(†x63%&16:K3)<$L%I|4r*UXd= n+-%mC: +EyTjqEDuWLj<7DNq0C]+;++)կx9i)C_p*q4 Q"ڳ'QD( S.] VӻgCMy!TUYتJ+ijǞK#,2 Jߒ* 8(h*6B8}2cxkֺ!/v\,[b-d=0CͣfM!w3k@)r?R>F7?#7S9hX) t5׏-@kag*A#DW>V3hNɍ}j9 >wn->dgNAU%yش@yR&M m8篱TA̅Kx`@nkpJz9cMN5F=tGC!E2'4MYB ϱVFʬaAGI+^ 2vrg+RǕh<gM`Gg#UXV\zh+095*KTj\%qve$GU,U߀'(-$ kDYa SYiF׫D"=Z!"?}f)~E lùiXtrkel_?#Sj*H!&^ք@z^ѻ4X:g*MS"(JEr1=)LuŠD!ST|^3.I 2ڡj3nE=eLvcS?|1N#w&'`:ZU$]H0^$7P&l)R(Ԑvd<{MJ'%eʚ!?S m1*$e8ɖe6%fuG1L3iiħZr%2ʏ.4Aq9'/tc9+$orҸeW >7]=Q!͹WvSlIR'MWo1 /M[>p/fBj wzYi*+ruDx6EUlrΩ;?|Hh^ et|9E6p9V(J'*{Mu h^Tv5O8 FB,|:K˛v MUJן&"{j DげEA mzV|ԉ ŧ>M˾16OUJ;2f|kAԇK r=?Np/%TV,Kb"MC8duo+N{^QE'4pàvvj /% 6 No5D\(.3[죭KnT[31Bp\7-2*O_KءDc#F@2=b Y&}V7=\6qCFr`Muq:_y,3~yz DbEDc^ 2 z`lbT,ֵQ^ x41GI|p9I8m{5ƉY(y$L [eX"ŽGӇp]^#7.X 8CLntۅ=gX&u"#Ԋ+8Д&gL^,3 w 4N86EPZQ[~=-Lt31ЯwK3ahl/J8J zFvꥺ^/i32.?Z>\X4v{4 xU p:*p8a7hZDn^_DxY8T8}9&4ވl7PJij1[j8<0犺2Co+Xr 97M%2ovI u.yaz*eqAis'Z_0Q3 ?i mݯ㓟YDUm¿j YU 6fȱ(A@;;l;8J$d}SBUGf#f^ #5av|N^dM#UNf\Yw^%~J(jԒeA& |2_Ԡ}xIgR2W^l"PcjFT%brn<(Lh*l8bđn6nXޒ!LSh` Y7'E(,5lyd,1lZ+G`# qHKT_B9V :J3T#*L%#G%lWhfKî}i}QCB|taHZcHH3~R)+^?eAbXV+brf(+XbѷdXsIːd T}ZyK٩ġ!A&9+2&mH֙h^wih%+ Τ]+rk t/ 7ǘ1 k*MKM3>LOf=ڼUPTPk}4 i9Lq-[73`{ۙ`5UYM3Uħk\78illϽQ(J U*Eu dv Q'4§6)a~Ũ1t1:(1ZfApQDV" 1 ցL˕q*ԛ(h 3̥1`ݔLQi\)ݠA{f,Ǘko"ۜbiN|+҃qSs &1VmV7\91 rZ +fmױ4Px=5uhړr A7I!W!hY̖ZͼX';p: Q4McM/)^L+ ~:8l 3w[cTð 9f5zNu#b^43V3 THXw(Zq)_*k\v ߏ9= Jr7 4@x8CӨWiSqA1|3?M%RU:['@N]cJ6BKP?d҇kvacQ{'E˝$XQ1/ .×&%V5 tbiHQ"Cv߸nY¦E@cD_p2QUșFnyKYmkM.j8a^H?{-:vv_4Gcc\bfݖLm>P_n4yx6H1 ?H*}0$SFAK[?Z#)Np%P/@b;2fGM ,A"|6do5e,A?w.ˑ]:nVi"m_Nq9ĸ}a-sʪXq7K^ X"2Ōi 3k90p)DDmIFm䡗O y.N<V8tv)MyoDOƛ&w0?3,m,JNS68wg:?g 8ce"2ؤ fBOYL;diTY\b/0ujKCv7$$ףUUT9{)L\\@ *k!1V>)z92jYM\$pTiAfmnwHYȈ+1 ȃ%euLUoyG^u"&͸\MyLǂj+ 1p4MgA@PV94D-!?%gZ4r$*gx2YyŤ ( a%DKGZ"_ 5hؕ6+/ {ڳ4&aHjx{(4pFZ8bټ'yqu`oEPYid$U~z~(-\|^ RG}PXfE:@2`0?ә] /[$j; %#=ш9$.L-IyQy|6P\BzCQ;:rN7 oQGS]WB /ͫ] */{},]yO/oye}/zM0Eͤ{i[21a36{M P|; {P8‡qDV(`J}J<;( /7ӏ&;Ɔ84܌X`.DJRȥ6 2#vھLB^luBu YQ˂귖c7Rz'UE1 A2^i 7!d<1A> 8#yEc D<`ko+AaݖBû3,0ZG5 y  ^^<#;Q0];~Wtv]я\ٱnEijz%LL'DB}嵔qnYULgR ܃qnW>r9OsKLRf?&K@ޤ f#"WeFlXW5r#nRR>xw= J(:AK1rħVKB!09+Wn#'<Fל>REIP'd.'*@;!F}nc޶Bp" b!*б4p Va?-[tro pN3OM,@]᫬b5GE+?(0|se-/|wp|Ӛx~UY9XmT5nۗ$m}&T@HY0;S@\1lr[L ࠘M}GA[S%9afFkVSGxDrNYa'u4Vٕ9Wz:g-na%awy)ȭ Z\e ! aS/ްV8f fŇ]2+]iB]oo4ug_`_Ω5teۚ.~ j"B~-Wݔ%5n#٬12yL oOЙQ:WbFNfzeoWKnF&Uu.o/g .z'&hg4(Y@m.߬I$P3%bk1P1q/J1m,y{ "A餩QgC:Of7CFx(͝Z!VՌ~HJyEA97}c:0[bTUp\5k(|kzߏW7{BMiKM^qKn? 7r#6lDEͫ72G+b2@;V3v U]F.l32dM$~xQP(6Q`R'kx1D;lqz~-e(IyzaWX ۢiwcoO_(}g/^TSq%ע\-G$1O8-̨fkrk>?i&m`r;kl_Y >;_өOިx)z qgGw~c>GTX̄Ӱܘ>cڬ ^o6B<3uMt;%Q%\&1&Ve]A˿s mEpQ履Pz<= frtjc' H.v$k6I_D2f300:3`mG5#µGOO<~Onoʟb^A<&h6Pv}&*o$R3$JB _ׁJ$ d XTUѵ)1s = 'HezU왲e+Wۼc iAr0zꡠT4tb{Oe9mkҝPEnbot9ƶ.sgNnө H]e&9M=.x={}Hb26e+UΠnՉY g Jh9H 3* 2%h24w a ?_MbKC{8p&7~׍v1rvj/.I:@ʩ#f[뾪,oj㑲6[.<H[3;/I9HZG 4$U3zpǸp`A~zШ7"ߌ?4⹪eϫ=9FZBк:GwP9 |Fd6A¸n1spwCF|usukT \bU@A aF a4~}S[BĮyzrFrHE? VYYMw)qÐ&LwbW56Vfˆ ]BjJ#O/vK9Miy  XKK8si;&U|bKjHH,`N %eu4kJ9J LD'`@%/ni6rXz®r\'ј;i}E}de ( 2+Qu7 -fry/c)10fg!?}T8nnC;b #łN}L]IbDY|ng`#B~~uɊ Z5ZX2?CDEDVX&13GD!45^9arjD/~Ku3)cWŭl.ݱB-QD(?y~?p"\-CcȊ(Q)D`y5`i&uOv)۩XqeyvJ^73l9}l\EC2" [HgYhT,#X)cV:U=M?X³[>7fz1GemdPr1f~N-&7I}$ncx KS:>u 1ͽ@_L&p [rABJK0 mR<h=wy>Hda&" ,K.i[91lZX59zL N>#[G.1%Ϳcl)^*^M74\bi.PqNC衫I'rԵ5evK=e-}$ "啽˿G$gy/u4FU_| *V>=AM:."g;riF21[qMq Cޯڠ~𻿸[4Ht'h6=ttJ9Dzk}jZ0J@yۓ&^zGivs]}|[FL!ٹbг 8al[W)NuU1b0~K>J/'c𬶵i`QMZ%08kǡyyÿ@[~<;Ѳǵ9|+w L0PGTF7#?T[ m(랄-> ?wŸT 4}%VH_"9Ԗ "ͯ }X;nZ!,IQ!l-\vk?ѵN]xd=c@Z[E8AΰG6~m6Áҽi0fuu @XKw^?& l!*m߮zl%cW4F Y_$ V)v],hE'y,cƟf#ӵ!ndkbPQvؗyvdf̹oCiyבx;m־s+o57c݂ b@͞ kCbz,FjdFVIu)(nul={hLHNcoLvX̄UMm:iF{rWpѮv^Oo6Ƙ] !!^b\%6ȊCM)4rbn˨6ru^.'ueؓ#7Ft7$"aӧ g_7M8!$:ٹGvYGkQ6﷟q&*ǒcy1vE ?klFAF[!K%mvq +ߓKs@fCh# (QM^7c9ĀKc#cZY+ =/"wg\2eKD^ B%}@Аs$ m^/e5ZZ]c_pkYBߔrAh< lKi7fDJ`u+ %HTP7+x]Qr?؂6z@fͨ@A=O^ɤN(q1, IaH"`F 獑nӚG 7$tDPG,9C6R̟rmqL tEl㊹,u@wL-)etH pu$\Yc^uFZ,^9T^Ͻ[@fSk 2#w|r_V=yp@7ۋy@G@!dWaq5A5Is0@A ( N/F/)E)8JMXqlA\=l-IV;.ÿZraZkx9&r쫟hjxohwm3(:d6DRdZ_8/c)%oF>%ro\F0*9xQG&[ϟEk{ 4yN4+-Hx+h3@VQ”sr.<n]%o9^J/ rJ`,~Hb,tOMJKGMO;kl3@6U4GUa]lt99,ūGew;%:D$L \ Zӷ!Út=-5Ժ:y&B gr~4C%eTeD cױVnֳgA_+=[5%t$V<|dyE^#3x %ax2e8h \P:E }?BC)%] ]S *22=3|  ҋW~;D]hgp*mtWM}վ@DpsLéa)YH|I*wIW'{91Σ zE נ8lk0TIOs^Pr ͝X"DfF3yW%˩#: ه_`2Pj'DVdqaW{ .v̮X@(E唃zhcf&B>Q/}w~ t: 5XL_A*Imrd &mcdO{kgKw<3wiuHRu*n>V:2Fs[R?u깝hP>qbEďƒ6R]sE!)x&Hr,>6LGSM Ġ/$ψGu-ܝ'c9!= m~e2Ҷ㶩@c܍v?@\~^&(tp@zm98| >XS`\dGqі7"0CL|9SI\tҸ#Sa(AۅM)>j`Msc4,܋zS;'_pded 7A϶n D] x g sL7=4Vw#´t 60@@)g᤭?Mv 9b{247d"ZN͏Lvƪ摁_꣌~"&9aj]tķ*F9Z,&ȟ&+ܡV X?qtZ;,>X:滛)K>%u+k}QJ Āg+, uBmN֤ <3sGmi8*ePϮⶫ2A-TUyl[T׏B58ˍBLOԶNv۝`RJɞ(  ${Wb(9K |v*}LbagWU,鯑Fd:}}:XynyM3\@ۏ-ԹI :l^>jOYUR>Gc}ͪ{Y]\-pVKgXxeq}ȉ &o 2iƳ#])k+Lq< O9Z&w|YAbAεtI-D aZL{G z){.NE?oT(Cj4Q&g1>_9i#(Z Io#pO5groO`:'~<d㳋Z$+C񼇔IWޯ[YmА GN܏WXtnt;_YNj{DDLbt[6R>j)1aGLfh)}ä w 2[00>ߒW8c+7 V-:U$Ǹm-JW.2̐n$:l-ol5Y̨5ql}]0z\S r\ ߟӮʃQI#PM$&KXSc 2R6FD¡EJy) 8I\iWm\h^-Ø<0XTxķ_\}3_,IRF+:ܕeqo0<"R'#O"B(LPv9R^\pbZ\T}Ԣvwϊc2LBȮ/tm(FԂsEBU_ps2y΁l`yH m5%sɟW5@-BK?odEV (g#@H52 0e?3g[qH*&1<; 29Xu/ V"`I}l~ H |c._=DA'!aJݵכPO3~vb?q=7>ŝC3Xt&_$D9XCj0gqq tː]R# R ] ʕX^yB+g_cIv} E1Thy0|KYi$ANн Em(ϷElLZԽ$f&nzfMxLG;v MLkyn ,4"-Xo}q'^#],:"M#T: y޼b,5щ9=+ͣʑܩ=5\a깕{wMuV# 2@L]x=3+Hr  XfsP\ %(㇖-gD6J'~8$UHn*q1ݶ]qnc=@Z, _Wr ڼh{}E-J5} Nd7 .7" /4fQ*=r.9hٛ4\]ojzj +G5nvQtsnBr;gEŭ8S0ou͘>O/7bFϼ%M3-Dh4v֏c)e޲n%0佥 ޽"CAWF|!4QaN&0gOkal*ŤRRm!hNpܘ|Er%k1~V(?Say(@pWgbӋt2Mdi"+-IyOkwL\ݟѲhj5 v"7E<vuL#͒u" \i9,Daq ّ^)) ik6e+PcIq%D 9^3DG *thbHn1O.> ԇߩ;z _.s《]o)]?ܢ@EI/=IkWqfݐ6c*Y;-*e^RZ:veoϩqhWmM<?A[Et$l41Qe%GE w4uK'ur-:RBPuVQk=M{v|#:p՜~}A\5W [2Twfvs%.<$$9嫸77~ZHpN85Ra$E^':SM\Le|O";.{CWkո(/2E 3oo<YX$S }1ܹ /I :xU4@7ޓMg`[y7#R䰘* 1 x[=*+#,VNd\5_*U@(ΉQA{UZ-MSD)tqqO7h1ؕS{o:WJO_jwŻ?kZVX`UדÒi"t=Ko|?, _sI{vIvÇ|cSqaҫ ‡;:>onQW6R]ӁsA \xME3̊*erJz s6ZɸްS:1EW$#*<e{%!=:COeOHST=bSofg39?t O=fDi MX}Qu3Ь QSP_AOf,Zbɿ^mo\AvsZ⭇zWX w˙咠?\3#W/x}96dgmdƴ+VY[_ܩ WWvF??I 渉ܹ WM9OmVA)bm6Zݱ~vh||_|OP ldZyg:& $4B(L:h:zsMH"2/9[ Xv4]AO' J=1kCS9Ch>>3s`5'KfSC9ԡO VQ@Kf5c(!:|8y%f++e<@#IYLb:! up٤s" XtGZ3viԎ Z{nO)/WG CsQF^TRk{2|%n0yb`MD=`kjA8N֋CV~\ ;0@ ." sЫ4\v/j3+cX[g1BDUnwkU/^q\E!~jcٚNblx!F#VMP=q<8G2;~-?q'$)IHeQbc"pI:nj[ U=|h EZVb~[Cyty`Sqg>6pV(i=Eni`DMik9II Ţd/l(l}LR ^9y(z/й; &A#9P|&|s]^8: ]Mnl ~qlϴKTMŅY/ߋZ%q^:wXVy|v q]( e$eRNgBb;# 42\Έ%-Gx2t!׿g֑m`{ 5QJysGst*U%^3\? y\!Z}QX0?ƒ@};"J4oX?|X&o$i+DhKKbA=-*ÈW30Rk/9#LX4ZXR ~6'-*4, e{z@o @J`":Mi{;΢A@a4F/ESFX9eI3ZE%>mGѯ}m\igWIY)DvׄwRtg9ڔlV^I2KoD|. 5i޼B#K_=N_@o=_"?kLCf67W*'zArΪ,_`ÈFն(N1y|&BQXDj`D #}#J9hޱ!#')3WgX…Hj\vE2!Gz4 JYPܔ!H!NXx;?`}i?k8eے!Ov*y'py͸Ujܫ")ܪay rY#xEoY!yi]~BU,"{XrNM-WSp ׀b_%2]3iW8'6QO<"wYG__r!)[\ܱ?BHpLW/w,X8{)Q_9De !!:%m`xɫz+i4) N=Id]ۛa߾YLCH=Eחed;ƪ\[łx{9Y'g[IEީC F%xy)ڦKr5d1*>R=LPiȔ3 C\*954AwZ( GF{.ۗeb$M9YZu!!gI{I_KpƄ&" pfXe[12 y-)lJyl7%X /VsQ!X,Yc(pԇwqB {qإ d^sg#§u%upr{.7;))j_l]VGݟQtI:m1XZ'݃aQ]ö:{j/sKϊS:1 V  mW7a|]1iXൿcHgvieVj/E O+S`U2\ΚtJfC"z!^O.8HgyaOH#b .ҥ"t~s;T^}ᐣW"YۈD˃E⦆Wtq+{O`,sz3LisPy9T!s7xZ/d3 a^᎖Gu;A6݂(<{%KYe D aߓR.*'eNkq!Ÿ>Q(̽ M+i n9S9>}7ѪsfHDXA^(EX,ncE0.h S4_NF@BB~k0(TenHǹ{=a/85<֓GCK SyL? v`;Q0ysBAH2Eey\pY\|ccϮp[eg4NZ5| L\ KA_Қv7mizB>)XΪm[_'HV߫jAS\a)\q9L05 Bh\/r Kx(Ld헥%!? T ʍ @yeZ{<(Z_*C9 TG]biH2EV)I{Գc z<4(=Aqj%Kr3~\^ t`@|Pà$+ yy^N-+PTUq3es d;ĕqSט+*D 3젡^c77toӸCf}ZhjԮ#u. X>u]ƌEJV .b\oVAh|P9" 2AWJzQ̙Nw`bE{^uAM'`{Ta[hlUߔv73j'#cjtC٣-p7# M1T@QzS|a;T G8C!516m[UPlu :wO@ q+^z’*u510mw @O[􎚓[QMܺO oGS(@xژvdu_/B M1"LO$>_"~+6•h-6tVD5zg2Sۨ#ې tt{;)I 3btdi0M}YmV9 B߽>-9Wܥơ9]]@{2 c{v[ jp<3lYlY"41?âH%-_rj@@4+"kE0K(칢oGwBZCMֵׁx.rƿԾ_6ȫUL{iQt+L̲8_X%:qY3e0o5*aEZuj >~D)婛4cw깥rF HSup=MG|cn0p ETBJڌ'XOG# +Dp^geui>7[>',s43 @lר+UΎCm۫rȲ\ O1w}= MDyV|ߚ DŽeoeڤ݂E(J=|4˛Yl`Y h\ RaD8(y :CK(+TFr?&4Q)e|nѹ%[9;,}v[DJvT)QA{Y@8@u XhCDo8q HUH*t {A|0cj u K [^І 绶V.$CͩnxOrAHvQ+^Pch9VúX4iJpmg<[Pb'I,>TGqsID=o"lv >G|NZe PRu5qg 04wKƙ$ϫj kU3HR{Fؼ+fඍ2D%îMXYCNS@P' ,;ɷgkޝҜ7v *y? K3N.~:Yܥe#}1=l]%3 bG} ;ZzRS/V_,0{uCʗW8[)n+f赖<IRiL5M*Bカ<6^`!){2Iwm>²ëFp%o e(ߨdr@l\4֟I#b鹰m0_AY]HGf X)yʱR$SU JF#=(gA{%G6{]ϙӔ4[Orɡd+W,$1m64"x̩SY#/E F5Z;m3i5II!YJl=pD1JZ2X{ +U4!H]^=Fh09 g`9n.f V`A͆F,SNGD>pB=ILKZOXG 5o~Zmʧ_=5~?p1625B" @+6 >*jq'yUUyN14\ G= QtSx$as9peCC)aI~2 tSFVY-#H<xYKʦN3w,îk,_po ΀W7ӗ?lXd[c;F5~i~jeV%uH ~#muL$%_:imA T?qS.mW!uC 8t6jsZsdi;w2RXoi4:Ӫv|榑S"t5v^7Ȓ^^k?3c#t|j)rE Z|)TNI%gKC.Heu}& V7J[!XS+0ƆL,xy>:!p cBL.yuNB!Uh'h|i1@*Od \Edy5oB.t%_K^6QW3So8BGAt7(1^FB):Vˡ /*@%\h]G>ԿN熣dO/I`(-0xo0l [1=yinK*n8 ̙']%9J؞ډZ5 ,7Z9HW7 l*"pXbvs zoḿW2{O^yX@3ձ15B'zLIЂ%^? HTA_tY[yycQ } *ưA? w;U&2|{[" ik,ԣv4VIfMG_~~>7VWF.WmG'R& P`:qOh Y fRZb?E6A]H.}!YPvHY S#+*3VS͚bKm uY:`uqTC]-0ׅun{x6V!(yeuE"E!GaNR/YETr ~H5f?:sU0+V6[Bbc±b7R֙GBZ%:13s9lGsԋ4/n<љJv]ƍ쬠ENߝu _h͐JvĬ(>5߶P`Cv#rЮQ֚ʚA6aHPzS 2rDu]j;|+k1.+;"r0j~]k|ГK$0Q5Soнp`Ǥd` -5,2€ᙌe aͼUL VWVY刺΃t/HQ쩧 (r(H(irSM$m,)}o;^jEkr:c.;zd:k.Y|~-MudmlHJCM*^e>PIj< b:o0!l3+oUg1 >vkŤ] Ͽ!5oxd<٘/|rs޻Ťnj@c<.INS[_07:"Fm^جBo6uGd!&3e.gG [gci!^8a_R+&SD!M1^KsQ],FDZS<ӧ$8cm;@bd ?w -Lͅ.G(LXkwXK?.0`&e/*?x~*yxRW|f޽s=&ww(AsXeT5DL#gYݢ"N$<6911." xY JWfꡪV ߵ:Q_so#7\QGO̲%*Y;HYmdfFBF(ɏ5B70+"ZmoC9+=ZEaPȼ8em%v%|61~`ׂ6_Ç`7~\UGҢ+nੰ2!R} m|¡~ Mf >;Bв6l?b%QO'!f}.pش&$$C㓫6!] 8'|W 诗.waW_FUWq9@!d\Yi΋RR.8[t~-uU](MZc?l{B{(^Eg/2g.8qѓZf=b; f;yOe4_@<iMds&Ʋ9 !:;_;g2A亍:4 >`IDx(Z/hQ}C]wX;\^n檐i(( 3NR߬W04sW$gm>t 0s9m'ir(?ֈmA2T--`^scչOޭ#-^dE߭ZkƕiOZP k&lprj\?-MYlGrhI&kz_~\ ZMEqoWHt !֡|nǵ/ثXuXNǟ3_ruRиkL Ua.t04;avA8XzgEdV9*6kr`^A> @KwaQ$ӳ(92UAZwdjc>5z +4hJ3Ԉ盻H/-vGD'y@'"p@w׷:2DI}Vqe#\W'$| {Fsr 8^ٺrLhhc!o`aIʈʼn_:ϛ|𓤫QN^o :ǞFϏ&.7{ z &"Jg9 [> Mꕑ8rޒXV\:>L{RmO-W~rvhAgj"{Jq KI3U֓ >Z|ͺr ;^c茦UuYgfd76_BOҩ?[)c ĩ:i0#I+ 0#sG7D1[7b2re?(1uOqĒ2\Gi;61{^óE\sQCۖX׍~-5fQ_fԈ@gz$C#dCeX?g!x}zX%@J0 kD;L'w]V\hx8rCΓW6Zt7M//PVGֱDgUx@(O[qފ`qT;E? (Pò[ K_$l#WOw*K:JE9_irU8u]cҮ6ԇt{\ K2ƜlS vL7rQ-p BfnE~[Ϩ69ČθRJ؜ CuTa{TB\Pmd-m"9ҷF"&XGkHx4a;L6Osj=_'/"LV^:`>7y 1|X,s[̹r3NJ H'z*<[@0͎ըc@Gp JK[Gc V֭8*)hZj{q`^yތ: b} [550lŶn)C&Ql]>*-U|,+A8!.zx,mrMb߲;13oS̘?} TCa!vAaw6BM\\OCQIOo) ap"%jxuj[šlx3_Ed8 mc-y'%7Dڅi^Kl4*%nS+|kD7*'UxԸ3bܝʧuo?z,󌿴J[A)0;Pìp"GrwWGsJzLc6Bt˕\n^S ẋ? HRo+?W!F4@EIM7R@㦔8(, 2<痩N;ECiԷ66'tx[r5AqA)$#rlj{t/b>iJ0lݕtjyy+Gt)h7 Eߍ3pIܝXe']wF#THN檓qGJ#ö\aɇ-(S _/V4*N9eգy&l_abr!A"Qߖy5=y.qF`^@Dӎ@z7DYBM5PZt glV3cD π kB(C7Ϭ}W޿Y àAΒITYnc.u׋Wgc9XiZLBqyhA'tSR8cI?vgb6sk*q3K;(: !c; fOC,R 4VL.TҊ*o~P W2yr$M _+C$[) Kᤤ3yf0HTꠠIPe/ } XW6=!o\5Qiȣ~;f^; &AfYX3ܪقST] Gklk^Otè- 6YSoL6fXKw'&qt`T&%O,ZQMCgϷݷ4g%/?VɄf-,ºAt 0Sتrj*(q$K6VHZ]SydB'$2l_~toPk/FPtriπ`d6g4`#[8?{v.B^WlLg[mu hid"vZa&氖d'aT{7F!xq"@9?eY/"u" ]Ʀ?a;bU=Ϻ@t|&(]!7FlڻC"b,NJi]u1JeDaHAH9MdKy "0tgu~h[~=[[ҠIFQBTGn_5q14P\ՑDP<ư[nyRÄrn M]<]4 @LDn֍8 C fn՞Jy Eۿbcw17g<Rj1l5TY# ;'7V0u٥[:麚guF@hSE5|Lf\QzQED/C"Qa)+t=ӈBkRλ3tPf)Y~fڳR7[E@O AOP&e(Sߣ>Ѱ16&D) ] m؀ * <p>:\bcp|SW5L2.YZkx0Kԭ[{. *E\1QD +Ips)ic/, boc]>N[BW^0> 1EvUt RıЋ $oK%Nun;Wᩂiꭒr`khIDt+7D)k[Zr7 qMx:Hr]R?8.B޻ޡ l]n6GG]W |Lm]`<K =H}HjʠN8ܐt*yix9jQqdXz8-ǕG3AtQ!(-P +(Gk&l!TW r 76CQsF:j3:GKs@6QYdrBj32]it}R.~(n4>C]ej! [;Ges %;T?ǧW [؈CDdN)YLb+^ԧ^~6}mڞ)$$l>Y}=N5W5xs8teWEa}uf/_*u~MBfDzEv5N,nr7NfLԌtv͌Y0ݣquO>Vײq!3c B9i h} 8/uzfUr fր.QsKR.'k7bi{5R9D ~cz}@=hg@ 7EM߬/mQ90Xgw;R#[ȐSW7ʹ;DlT~jI_t?Lp'K ~Ab@դ Zy2DU s"3B^L;]J0r;Co1UTcu# :茦[ĕ"O9jpb-c"J-Wc >-2FmbSyr~?-U07h0@| S πjĩ(;J)Qx*6C4H~E. œ]DS=˦F Td|WT+/!d7aO$Z^}܅֚cLQMkB^'/s[}r;uŸ?LYp}9#>9Pw7Kޝ$f@u OA@d,5`_0_IQ8h~k"?haЙV\SGLA\m!/M|F{8~m1Č19<UdˀSvP?uor+,+Ki0ZDS2>-0jUͯc5B/hӪ03:>?Hc= U f=䅹]%2?x b;e88;G%dOGǕFdjt lX銉,:;L!0(Y;Oݿɦ^ f}^8}!Qٺϔ΁ƫoAI] 1^-E00WK46RMi!ϗyk8m~8 |2Um.>f#L8ZKߥ9tUHwIrnW4ᅠCKg!PwDC3~9$Mq5h<!yaOjx/zPM6 Stum]Rg/ތXPs B{ JTY[d@¤YY_a,/&L }I^_{~EK3̲;0Z:%ӈCZQu bF_ۣl#bvmr/5nۭc|,he"WH홑{դMb8RN .2uJgKOK X'KrT @^܍^ ~֐;gg-U@Gr\˲#M@?!ԭO-!lxptNK˛Lhɓ(H4#Oy.6XAJ4#fXPk'b1. B0h";[{Agv;QWso jKl wj -T=rA.XowS!⨫ bXbbsQݝf1a*7{Þ cy!&@[HPuW* cHaUVf`|~Mݬ6is2&;jWLL|C V ҉8@b_i*ظOpD d@e?a22pz@z ^"QXW=]믄"]jؑzAߛ‰@|"gѼ z>)g9}wqtMb`~I9S&[[i29T~HVlڊԍkyRjc dUvl}EW.`?ޙ+X.VTaӢ@PA:ثZ.?&<1 גw+qĖ3o-̀b~#:gE[L+\J)eE-J uV(T1sLD?ݮzDnXre{R" ]V쥶oӍS9`0L1@o easܨ):K"k6 n*N -rm7d( 0ػ6_ޟB])@M5Jc7:~ L𣁷:dqVpP$Do2IRv s谴6ɱO01 YFJc\-&ڤ6]F35Um~dqQ>/8CNФv6_C4•\Ü.[ՇwUm_P]7X2*q$ V^?&7gF'3ɂ b؀;[#&6YIWiI%sz%.vɛR/'@zs~ʭ l~/V܀!$;È?`>u [ {ik"i?*)m^x&D]v5.̈6\Z\d s1ij2"h+b\_@K?si/$T a"iのѕv)g}|}WD~)9 }DZg# Ԋ/To2A%pl?p:k^R|ymY`IT@$~FWne/@;,zB{ujTb`Aƌy`ӅFGxFr WuWσ&~<ӵ<$VބF-?wd{|[B_"F d#i'aXGЈ6T@JDU^ͦ1i[ng},`o, s)o\80Qi90oR[՚19-zPK~$N m}{h>$Y8T-&$jn jBe.i `Ѷ{ͩv"0vL X@95ڽm\a+V_xB_39+ j,*,`MZMZ uc yԨ e0/LzVzЄ=D 2n$ myd%KU5\̟"Zә',]3xAK~`qUBR: *}?5[#Osq术X|O跭1k|VC45''j[ oQh$ dkfwiڟOzX`#6|/MS.*Vn HX~;K=sA`zgW|m/@p@KndG@οagz;NhphS]Y/0 חcd*½CD*G Lܔ@ytJ-{-okoUBOgMS_}~(Ax|BFcz:kmgb% ']?1NKV$׮ Aqdg[D(dʉ,OMDuIGXn7=)␴Rϳ)TIȯ貒# 7gK}6^ 4ƙQNS'!sV<[D'u ni>hjU" :pT6ufk'`f,# R. t[M|^_b!Caz[oYNEmH\WMW -2 |Iz l,c uV! _tQ͚i -"|E )@77D@jcp9UxeDVt2_1y o***4qf>KI@ꟁ̣TsΜQ w)y6lf@Aw;H cK!`ہ9[Y58z).*xhU.s6R7]Z?8ep9qEerGl.0.?D-J,9ܓj9.f0g[O{bgTy?yўLD.^ #Xj]]VM\,%c P7 \<''ꨁj6 A .O{7Ov/򘑏.;LŜ~BY=wC\J=4Q/IGx}'6 $|!%9g\6= +S=7!o+mۙv2 koU8Xb'ГG1lW}͎N%1* y[sR7 ;oUE|ߒze-w,zbBOf.:<@N_M>e$#Gs`Pt*` u'NaCgNd1s>XK~:܂&,oaGCWMDq\R5&ZLv~SY@}3"(## XO/Jy#oP8;&?2i?VvF \ \Zha$+P?6bL7q c_HQ4YW+5'u~X:KrW: (- x|ZOhl66 h.|EƨCٜ%GHn4I絹+B*Aͫ ]/Q;\|֮m_;,0IZ"oԛJA?ᛟTFD  cGI$@7$`Gx2I!cR?s}O,CT [xtXgX.|(ᥴ59$Վx"Ab|ep颶YjYZ*O1c]J'Ӏvo{~Hፍ_XdZ8q (\?-<"TW6ۡDƼk oiXV%g:[lROc8?3$ &?= &򥢨W+)P#[l"gP\MO/lak8ygA˼$d{!-}Y㸀Y L-=HT9x2\U>+z6inCea`y#Xh7傮ULB FNݶƕx^pY; yl 챾% ~NM _ʇ=E`ۏD@>׵չ)ד#i3BZβT:e dW=t>-g~= I8Hz@jco&bC>(C9y{pD |7G*g} 9WRgԳ7\)0c~ P5Pس|?b-!>=XꋌE&Hu! 6v _NW,eD*ŧQc9¼dG֩B}l=Uͫ4;pӦl I^:οgq9.|IFX8o@C\Y9_(3rb"7GwUӹ\h`8H NK6s Hò$(Ww )řS]N~f)FaGtYPgp;eătS6gy~kRtMV8[[ׯ+1WFָ< tRk<(qu"y8:cOI@7 yGSku2uJ"pζ('ک$hWC=OKrX SvQ(L%Ú !xM8o#ɧCv  E73vvk W%)<0J&f[[zUC6>Μa#-"jOF3k" ~_K^Q&7R/m`>LYbh!q̈́c~aԠ\|Yy}iFxdRy}Ov8vLPuL¿[U/y3׳RF9N~mźN!GX%G-5 @ iZѱӨ ,^HԸ uw}h繗K(U]āO[ؒbX-vymxzkQfR 0GOm,LmԶS`8mGxXe!r!(4WM RH]` KrtqWg^ӣy@_ % 3dEh]"D!c}$&v^UINz9Q^DcT9gfE7n^H3>@>hW1HmXB(Lxퟔue&~{LJѓ3'j)XҍX u81Y l9|Ԇؠv1dKk`Dylx :P q:u8{B6ŕ Q" hKj?wNr; ʬ6)7Tb ݯ%7v7!;>(lh77pn3N(]Q̅}-Ҷ+AXuNl+nԝTfc ~D]s: 5B֓4c"%_V'impl [I6u]C7>&=[\uBf =@šd3cARScs A,C!^ڛGXN{'jRp~Nk Da9ՙU|\Z$栖cGFGYV<=6+x~&c/JA.C?:'JѯH4!ԆuW7 a[sdtȄ է&oʶ^kc9\hxEr X| Srֈ)lTFwjn,.]uKL*,~ًuvnXHKFfЅJ7 rуҬ4Ul%°PcyZrcQc7JCɂ 0 ,n3 XVe & (tF}͝&B_Nܠ6_2%_' aS ?4i%mO),PA݊k"ԅ*<yG  8h HF\ߜ:'.'H`s-&;qz$>]q)(c^Æ,ުe!W:}qg`$-=Be6&z䞇̈́ϵ+DZ;AYy90; Ca#"98VLx^(znRO8C74GKFbhb[+Bq݉8+pu|<50I>-J+L٣؎оe,KS7xh^Yb@)w#!)B½FwnAu㰸hsIkvֈ!-+1@> 4Ͻ|L* PbD$ks eX;9Kp{ig"֢N-mA3lB} ,*yWcx[>PsZ뿡F"(ie%A#Xx{=ۍ[j8sJj?8f*oqWwtuԓÞ HZ08pC]4LrҢQ6c eJOTJڢ [E&=['=")bZl4WN/S(nn%z I؀HG@Iz2yz.y j??BЩc66zEE+r.=$ZcE .'[ox" X+%K}${㲿\n8?C 8q?ѩ^6#]iIP& :%0W@ 48f GӨE25zb!^4h~*`czho.s؍\3 QԱ@1%x_7͐6-*,8K!>[g98goʋ~f;#"\ܖtkM{esb@xUW±>T4v]i1T]Q[M1c9`>rbVo; I;5s^V,4>7`Z?pg jlN5epy[ m7=z|X|M3:7%ο(fTooG^n9H#=6EJsÌ}(0🌞G5MNK$ Jo' --\fW4q'le+gNjaiuqA"ל3 [s Zug(lgr!FDzbcs{w3?=n%|J MNQ<)-HN(b k/=&nK=orā!:Tzho#yVǶ_k-3I< эYM%3LF)w{]Z!ăs Q(JN.OYBVucRg0̯an;1O]wo( yitQcFlDĮ(u=9a&E.sci!o k݆+ŗڴOӎrj~RsdM >3,s?p# ["0cL44bRB@y祐qxRy(V !8ӗ'uihQΎ'aHh|+D!H!e=&dKtZkaS6~v8 [rmeR-nӆsL9#?|Um tD`,o -q|,Q7 4c>ȼyVᓚs4bTɰkݐzBnR5.'QH4ԁ] zL^ 7q#k0eq#t6X '[7'Y -=r> ʠAhs16Ȅݣ b; '֔߾(~^&-^ Obx2zC>%|E>s/!sΟtFQ]qaVe&o\㛸͍5:L5C nl]2ra3nW=fOݷQWoӴ+ZfH1M@"ȗzX~9=;eY q:v p=aι9K. M#' Q"*ѝdOˣ$W_sz"٬UПO^=xڼ4:Qa9CGn_#%hN})w閣09z!!FәB_f{Qz,K'LYSnNٝ_i1^>~zXcg.f[+h+9t#‘^Yk8Rf[88wNZj|FK>HJ #Dm[MiΕ#^E|4V8{ڧ Kyú5|{ J &ېADfsckPcg۳ +̺NH]C{OHPSIܙPoMp;4~1S-\V'.!e|rCo>)] iyUjg6NG `sAVsp\%z犻Ϡ!jJP֒M) A4#%?];?Gz<!$wIE hm%tE,iW˴?K)v6H&"6 z oc5:UD@)u3,,5$>6yB(Q&a"/ܥ`̜!~S1M>L_W״ggRH Z%<($|OGq uXȦsKȁwR`JRٮ33Y'e1,ɐ)Nvѹ<Vd^ECpX[<ϼ3v r\UzR xFG¦,txpN7PYheN]p邵Y|YѺt}QԸtP>L[pYڢ*rJ "K$oHv5+L?*S ̪ݺRJ-$'W]Gr->W؝?Ʈk~"wջΆ?*i:ɧK }}\p'!eڱ < x| BALM}Y45I뵃]b%SD[nUBo^i/ֲtGn8##[ݛxʆD}cnBK]O{aՄ2@15j7x#"iI#i l`m=sXyG% u<ןkf0)( Ve)U-69V^ /9TzB\G' n%̴c=k#T% lE}ko`Bu)z.M|kMb$uxYG ('M&䉣E,[c9? aࢦB"^-v^۝b#Ҫóӌ3$ <\}%$.S$(`b)۬+DV@L)ϘͅR7?Q2R p4%lKts1)QE5{Nh[Q#[/MsVE~-6&@tIojXNdnӻRzkѻ Ay9?Si'U%޻t#xڌMnT3Cфf$L֒Q %bK:tf:vPA-gjǮٕ5GƋN-`rh1Ct%p)le_i3rPOG7V%(bv^4qQiCt !&}nƇmX1,ޏh)LqՒyֲR]䮈3Xt# )ZzӓmA[[\QXuJ7,"㘑'/(5[ͦ^R 5[ ,"Qϵ|vx}NH,HݽO8If4ԡj\΃Z@\@S >Kux<ұ7 $H֗ۗ21RuVDLJS?xk@ l]C  sIA)xnzK)w- QPW5FNDĆQw6/r..nfo.| DmŷmxFGj"3h+̛~1$G+\fl._vߖ`@ )}}_H0V$s|aKj8͎mlv"Exin9X{M,mUKX|!Lށ\_lWc3 {OFz5zЉ}Q9J͎ fj<<xr=ɱ&yVgfYXIݍz1WSY4)͙ո'!X^x^K]\R4B z5۱\  5N 8ܘ_.XD¢BwؒdC8'oh!@[ :zmsm`LE<*GK xHZRUVM&så `J>ms;yh-rYEH5v~mwd6$@(OM=ViD1Fe #]ߌ.tf~hh*unR|^XG[dz#[? g'Ul:dVuuns Dlքf99fr0NȗP#t *tdT(GYC>T׌BΓe Oc\Fta_z:"?5xҴ}+lp>Va>]W|+W45 T˚[$_~~!EAtM!=~Y; Gs2)Z:t]]Yfy&MkHTof5h/^OGH6o/e?Z+oz v~j {4"59 x F7 /^bꯧ 'v~ a} B:Σ7{ 8`e *|I X Ra.5)*ckuA;)pخPK}3FsYgCR>׺=h4\߿CdUATD1E %pC3eb~?IcH13ú=G4ᏚC܎k6V0}a”>1ҖiEQ+@r2k?HVK_kcenP w9F4H/k=rΪC ̄)oKLԥcmۇN9(}g\a@΃9s|d)p O14JE5V*@tl^1s'TphW!*'WNWRXj<h-(i{ NGט%zB_fT^'{{-LP}x|BIOa eSʢa7'/+d$>~c io F.6ln#7cRa*aWH]vMM𑨈'LysUNu uHك fGZ'^mPσz]9LBPR@X5n.[9D?MH<qY|~rߋ,OZ 0, ?_K/@m2&YN{E4&21eGṕ{ʜ%[Î3')oٟڛvlNQj?b4 A5t%)ڪA!C KN23/ ߅Zri %G[tsmvnXfVwY ؈mpEn 81J4lM¹QӺ,V%{ZWe%4]o 4i0JY^ϝ]\L0^GUa+_-G3c*u?V4,4y1>xF%K{aNᔦ˽2s0Q]&؈myO "HR6,$WZ~'sG+6ا7$?qb[+jv'ė$me-±8kgI4IX%6}$5 WVNs_#zos]^nӌR\ - ;@0hI[^ϱ~v'V$ko-YOFA%%_I=*%Vd3A;- z1߹No,avz {S6&3N{=P^wO bh8-wUɱ.&4ނu؉> 5{W}$%6]3[ۯSyɹxx@I7K˛"eejhqZ4 e}H'0#@j#99Oj;݆;TdX ^nnYnny.lu)vzd#[!GӷO>3֮w<Ϛ45-D{c1! (~BXP=$렬(2St'xa͜Q 1'3DZH$ 55(_![>)b&:~88M}G_3Yѹʱ锯?*Ud.l땞`HW>w %aLی5qW7kY- jsskjO<H`!o1(pzG4߰6A|rw33kx4IMG!3k@$[hWߘav ;}՗tyiG!*SHԭo+OF _PϴUhM\[L%Kz1BW5򘩲Мvȡa=^׹~ f1oTNq.PCtЇ6MC*}1+0 r0= kfӡ|'k,K-h"[8${y֓Sʄy'`:j Ƅ!6FVpN@؜1֩(J?*l!W'u#7aV]p=>;zPfnշ(XAD<D(0x3uQÿp9Lo G7x!לv)%3EL%tu '1c bAL,GuqMՠ`/ bu9uk0wԠi%h}Os?Ġ>t{7t [ܚ܍:}ljfuEOpW0 jPp2] g顊"G?tV ~▥ي6 PFWׂmg($@FǙ1oj3+У]};)^MH,9;b.;O>mt/OhIJv Tt&3}л) Pwͺ˚2^Qȅ2P4EGu=>bv`\Hs]G69H2k u00@XQ"~gl iQ?.De'T٪DsЊ͎  RLeP+\_rczֿ-<#^yZM_m|6 ԑb-eI*yW]qwm),s1Ꟑ%On&+݋8}RLJ2+Pˈ77ڹYH#5ha`ip;px{uFCn\Fy.]7~IV\"U">Z:QޛoM86+ eK۳(BkKG6扯!$ ў0? yfA\^=/0S3cTW~ ;f-Hʇ,]UI` t Ҷ9cƦ6) Q'QK \O4Z }OWQJ\>~yjupC SSĚ! vPˣNᬡH^~v;[`c=0(4kNXM+4m+<{Vy#$0EP,㰈O ,tH[Ie=fQ/'2Gĵ1b~#[ԠӸidQ+؆odsx 3@Gu@KI(79bm/娌a1[p]T}쑲ףܱof~VYjo;l"R WwB<3nO"d=Ilv:!{v}|$ غ7\/UrÕhT;>K<9Yp w6x/ѫjƖ:̞[Z@pHVLS_d^8.O7:Lb kAg76\y?l5)S}WD?۵'-'WO-uc٢:>W"΀UT}f1? ’U 3v(4cj>ck:fqhae붦}ö18- lCR7V6Ï>xxr9Gx$caCqZE,OɃH#{pYhd[:]oc܁~0Wޒ&(%\W wP%u#e|?0&x/m3MRB<7W)Smeg}oL̷0H 74rl]-NrcÛc{3K Fe }x剩jm !S}: _Po5N191ݠlw֦*T=Kv݂6Y4a[%jS5_9li_A&o S 3sq^" N(ot+VPJ#2`U__T5i1eȚ0M1-9{DN-R:_F)<`qUZ9M.X'm'ƍ簶&ls#KI!N g󐩐'.=T S% ߬ɺ{y!WDchtWF1R v'!OI$#"'WEc^[%9qMgqex}(pc_1Z\J2X7ڪĜ9Ԙ!駹HȏhZlD'Cӻu^ؒ. wklGt Z;Q7fYbomqsX,5OGr?^ \=ޙkʦ c/g1r;;u^G9c2onҒo c_-1]~Vm;rF=/>No^k5d9tJTrM@WnٽZ X LER=?=lG gx5;UcҰV-ܿ3 Ǟe=`n ; :Lׁ5y|  6QC s7+'ߝ<_k-R*TlHTm$qvo;x%!?*'hXR,8|7M=tf%H* l5yr#sގV~8ZW8h2.t~-y WLB}^?VMMa0m |]"lsoH7zoIrS)T`pvVMdNRR BE~$mvǏO2$p=6)^ȌЊ[ %rN,A @mNܬSf9zNOL[P9q a7bR콟 $,뫴ZkGRJcʭoAƌD#I_9S9\?`^blztbOI7fRQ/W/rѴ*Mт|3턚KC"UfEnIn\+v~k&@ A*zQl kE"+Awɨαu\-ٔp ۰$;Q/baAjmNVF1=ȵ]V'm ZpChC~6揃loBd|$*Tξۿ:$)>~Do-(+U,>R=y@/G؀eg9]7qjGus!yDP+48( 7莮+A6yi?/pT^V}wxt"7pA nsu)Hq"[FY9jS`dr̽Rr(ƶg4+]N<^(O[^eWj苸$.%yxp$۝|Fۓj8BB^OiNd ٯOR t$J"[l}ILM*M+ӓ9Yp1ThC:씓Ɋ2b"oj ,Tۊ$bk|Eq ὘#nҜaz0P[*m; 2#:kO%YFĭWC[9y& 6mqmFi#rr/&'b|}{!Q>w͒`3{uvӵ!&e}7m_K?e74֬,wYϧ S8Fj}c᧻ uyr7>a]kW%M "nuHJ왺:IhTUB$k }$Ac"nbM7GugIςWLpCkSSc V tkj9PZFp %=E]^9xHs{]So7?h)U S݈nL^Kf:3O5*jF $o UsWG$%IZ|Yu19Gu{Z1pCJ>OjvA#x< U'euԆ{T7Z/T}PbriXkГ9 P [wx'/ Ka[A2+VxlfygT4V/2&먋?=G#œI!iջnx~pE)(64~U)VbpcK?c{>=F:x&WCPNk@"?hkl)GHD Q#UieQЫC(:M6FC1hՕOi'NO\Kh}4 } 37Nv#H,-VYeoc2~sHgSgjd T4ݺN̖&1EGh2yġ<{[4;K 7nL@[;,*߱͢l)z`9+ Y+rF({U ~ܭD_@tmi>v Ŏ]6&o-q9H#>Gbw8+\ pJd^9o0$)bS ۛD%躅\ap٭Lc ]NVAhy6f0:Q(K"+;]G%umn'Q`PW vsYK&&CFjCHBAlx~arRR0&=VN~J%<eCqbf]')q`x"L:Al*T"ß區)I|~\A%maY!Gmv;lir վJ0wF~]/Q6i+f(gk'Rx#5uN*ytW!6vf^@[/G-GIGNXqEX:^~gG"M*=WGaT ]b$z=AǕ smBCQ7yRxfWIq)psJu|l**z@ޡ1fP }O`wp<'fiMT{e\t5Մ.(=<< SDPt|.+@ItWO**w Qmo L,h0XX3)WjZ)FɻM8lߊ:e]'DuT@ .\x*Y6aSr vut? OHd02/䊐f9[ lxr,ȋ/]|q2K| bo6tl'O*HzسY3gN# Hs50> >=͚pHYw<&i8rEE҆}G PDlo*dC)p0c0)a:*/Hkw 9ap4J~a_3>"@l"\r[B nTV sK4->[p`AK?޳k4&@޽c$m5e\֔q2$[!dӳǽenc1(A@px& MɷP5䔇׈H>U CJgV !ٝ$_0wWJ,Rѐi iyN# Wt6A,P.b|yޙ8t,q u5=2k#ԈR6_>V;,8JhщD[i# , Sч6&n*#LF%ڞZt9_*9˺eW*CRKzE.tbEA& \y͚i~QqW`+tB̭U eҜJs11x/|8p`5tD 1<RkT3hQ, 0 L;\0Sh&alT7vqG?wNƮ 5?UG< Ģ)0<+ 6Xw,6.VX>aYUz ڧXFیoJ`-mKۜW dz5VIo_L8( <]u!@8DkNoFAx>āllw$DTP&8{Lóӏ#G ;j8͡f(RïekEA~jW:g7#6e{OƋʂ_eӖ8N c9( UlR^t*E h<"7!`rpXĈ:Uk^?F5(k{...Hbkޥ81]э -%Z1i2_[A}zѵx)6/xh#(+" =(25 b\20ౄ'V3HT؈?9L51=d_*MڝFWO Q.'J;`W&2{f[8dofvR?9 kZe+fh!^){b+5y RӉ+#><ǹN -D$N 2|i1[i#}CCkө-L]e,YXlN-GV ֍ M5틟'^cטhφ3gz #r)8}Zy9rNKybS'@ż/0r\Zn1 臀Xˎu=~ZJ]ñZ]^+UdRE?xjmt'_էK9a#BT_Jp lDTǜB-٥2R]Ne>3ލف@}[ uˇfMlyН|N6\(KcϵKNVt}0r˦Up\iw-8-!9IGؗǿbz Lq*(?Dm^@X9VI:Bd t>SR'4 Gtg_7!D_K Cv~46(W[