������xen-doc-html-4.13.1_10-lp152.2.12.1����������������������������������������������������������� ���4���>�������$�����������������������
�����������������������A�������������������������������������������������������������������������p�����_/=��}�q+ꯉ&C[6H�H"P�x(��
E'w�`)R7wℛOzȲ�
��?ɵ[g6<�Nz6t́R�P:K&��4s;p*�vL2 N!@�9�·
}o�q/}�;ںŹ��@3.T��Pj.n�$H�91{)]l�x�0]04{eC1$RE�tȋ[tN��Uq}i3d631382505b6f0189bcd8b057b5ccb6b9cc1e5e�749d05193490af680c572c0a67878e4a04bce73d1103d2ff29767a0f7a16f3f1������ �����_/=���#=%|襕'`_̐~#RpJgf5ܟ!Е�-MW8c+ћ�q�8-
�jNYob5��^}vXHw=���?{,@D7�]�0L�iRV}2"M&��y;^}T<�x*dryJ.�e}nOm_?b5]a@�:E`FkZP�#RsX]�G�HN?ɵܾ~�v�`mjU��XlPU_Aθ2����p����������������9�����?�������������d��������������������������������������������������������������� ���&���������� ���M������������������������������������������������������������������������������������������������������������ ��������������������������������A��������������G���������������P���M��������������M��� �����������M���
����������M��������������M��������������M���
�����������M�����������<���M��������������M�����������>���������������d���M��������������������������������������������������������O�������(�������s�������8�������|���a���9������#����a���:������;����a���G���������M���H���������M���I����������M���X������T�������Y������\�������\���������M���]���������M���^������N�������b������9�������c�������������d������o�������e������t�������f������w�������l������y�������u���������M���v��������������������������������������������������������������C�xen-doc-html�4.13.1_10�lp152.2.12.1�Xen Virtualization: HTML documentation�Xen is a virtual machine monitor for x86 that supports execution of
multiple guest operating systems with unprecedented levels of
performance and resource isolation.
xen-doc-html contains the online documentation in HTML format. Point
your browser at file:/usr/share/doc/packages/xen/html/
Authors:
--------
Ian Pratt �_lamb74��� openSUSE Leap 15.2�openSUSE�GPL-2.0-only�http://bugs.opensuse.org�Documentation/HTML�http://www.cl.cam.ac.uk/Research/SRG/netos/xen/�linux�x86_64�������������������������o������������������������t��������9��D��A'�������������&����������6�����@�� ��7��2/�����"����������B�������������������������������W���8�������`���W���e�����
���$��,��7�����6H��"y���j�������Q����� ��<��3�����
���"������z��7���68������
�����I�����\xAAAA큤A큤A큤A큤A큤A큤A큤A큤����������������������������������������������������������������������������������������������������������������������������������������������������������_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�_�����e171864f5cfbf7c7b3fecd9b9fbeb3da9e87f63a7284ee52eeed093f8ad303ec�f53beaf653f26eae12ff7ced3bf0735dbedad0d8baf45d31e32d33e0b868bfa9��54e980d65bcde307bad2efeab9640ef5c720b4ebc78ac8cc1eb48bd6134a5280��b3422df9c1ad850ce9b456e83713da51f123c2286cf1f9fd4eb97f57c3eca9ad�bd5267a76a14fe4153f4ca727fb99f1c0bec9e8ff77302865a83919fa74e2b8d��b80b94ff1a198b4d6e03dcc25f86a1b332a80cf36f7df4bba07c19d192059b2c�f62b4090098e5d648e9a3e615874b2e5957a93990f652eefc831d37779ba9106�9dbe69397d6c3d3c6d88c564032ba62cb41a6b8260a73fd9d6513c186d64199f�078f07651ae04fc86183bc953a94d4437042b3a3e5182bfd03e899ed64ce4bbd�f80257ef0688b6b53ccd52a4bbd9279568b22b31211e95cb4c6e86b81614a381�d344261e1861b09d9bb8bb11a3caa1fcf632c9edc2107b175ecd48555e9bc639�cedae3c3f2231b4340cf00a139bde6f3d5f0d9195d0906b227ca38a45038459a�577d188c5570ee8dbf5850e4fca7b4e224cdb2725ffa755194f366179c1fd1b4�d0d772f13207e89e3a519af0404d8ce75c584d7df7408643215c771621cb44b2�c226a811e7f3336b6b187387a4992afc47488312928731367189b2fa03d7adef�70d0a0d37169adb67569317d91415a0bcdeaf0c7870a806bb55b70092e120039�13a9c456e1d8e004ff68d58686ccc8dbb0ef298481c2dadcbf30c638c625218d�e466c9be077fa0ef0ced23a246e92d14cc0cc8fd757931079cf928689b544b32�6b03382516373fc9221dc98277ed58043f0d5b49a8cf0913e57e5e47220c2c96�bc7abdb1f733000c2cd91b519cbf7c55d096115abfef000da14ac794739fe8f0�fe7d4c19e4b15b9d82ce430eb0767c3242c24a77c9b8d8d050129e41b51eecb6�ded3add1a44dd1298e13dbe706f9a303f3b2169e18eb7d8afa43d0464f4ace15�f4ed1553120268d8adee7fe8bee780ff0f24d9870f3e5c1063306ee3cdee7800�a889ffd9cdd9058e5d6074d2b55f6e8c45e34e178cda364908c8cccbc08dc565�a1f487e81635586692892b1cac3f2b705eddb54a37582c7a0dd4a33fe1386a31�ed213cfd37be4282486d5610a30bb9c6c55ea3aa6bac8552669dbb46aee375a5��df5076c347e7cad2371f3dc0bc10c6877c8f5251a5a57ddc6c79e1f9b532f89f��9b3fc4dd2d139ace9382e594c2c73439a9d4f100fc61c4e4f9294d4239776620�fbf590c80aef40b7e6ab58cefe9e4351ef6afaa6bcaf4e55d7809df6392fdb96��aadfa0507b89d930b9500c7a95869685253e2082a4d704ad9ab9a720307e4e19�c225a529d78e1e1365a40264348cbbcd1ef716fa7d97d977cb93f42230a1825f�4faf9f22847781296550c42f0955595f5f23eff9cf7b00ca27ee70988aaee9f7�ec2154a382909b7652464c29ad603492e27c76bd7d0de3b5198d0867fe0a75eb�d93bafe2e73cf681a88dca3217d79376c353ff4e1e5ecee8c41c70e11b8c9e2d�188834c2a97f1edeb4cc8e0e61519c5f8559abb020373ab7886252b3809b0a1d�976728897864907825a5a2538c25cd0aa407ba15e58bed9f42232379103f1ee4�6160242648729b430f01c57403535a4cd52e480fa8aeba2b6662bf636d14522c�3e1b12a7de8ed88ffe79de11f77b2f77d6e814b4cd106cb06351b91959ea992e�91b95599c26b803f2c8bfb407d7ea7de55a783c40780dcb7f993af187e4d4200�a7cd1ffaf63b68eb2cc3c3d663847edfeeeed22d3b1039b423ec94b5198ad7da�ba0315ada992171ac097279a5924539c83bc431e243edc9efd772f673fd5301b�c159111fcd005b864ab1f4b803e059590043471e04d0ac7ec96fe74dbf857c00�3a9b4163966919de58c0d14d493b5d7c6826e43bd61f2eda3c2a4a33fd26f285�982fb97cc7b4730fc7c1c5289c87cc4d1dfe6184c7908079cfb34de8b6d4d200�fa7a5cd899e7aab4589a5d0193118825ac5072abd29bfa809c3b3aa704ec1d43�2c80a00b3c661489ab62333993243951154c8ffe56cf475ebcb8a54982ecbd14�5cbe19ee58416bcf16a88f474895a8626db19ae5f3654c894d7337bcf72c1fc5�9037f947f713649a84322888eb75d9dad867249c4c135787affea14ee1cf2c50�b4403362cc91e5249e9a32270b77e1d08f1217206215cbdcbd7b4f179b7787b0�56e065805b649e73f32af8d7b9fd0a5b317668d9ecd29a382e968e6466945103�b1f10e378ccf028b0040d857506d6a2f9f9f7202547fb83347ebc6cf52cf4d32�28d603a99a49af40bf7589771dd6810ba68ffd01c20c7d7743ec76891e07a485�1f086e043731368850e313269ca98ab91c156529ac3b961a67f54a522ef09396�5d6be4431b21e9ec2fc3e6c70050a26c3c78777e5200cad4282b96411eb4c871�e9845d2b4b1163c8f2f71b3f232161df132b103360ee3fb48495eabd71c2be87�437b2d33715486da3e3443c567a5b9cb6b8f54c07b3fac562cc7f7d20c570e6d�f66605f996aa6d38f8234276f2b8fa5c54a10903b7fa29d49d6dbdae30ef984b�372a6dbe9c2786b09c1d722ffa63f7cff6848a3b35a68d4fbd7770dfee8c9157�c4151eb9d4bb2e16e25f710099b13ab6c7b0dec076e76d504e091cf2642a805f�f778edfde8be1bff36fe3825f070a22662ca16c8b8dc1ee56c4c73c3e56dcee0�baa814fe39770cc81f77c8321ff63ef984c549fd5a0833e146c7bdc1c2097fa2��ba0315ada992171ac097279a5924539c83bc431e243edc9efd772f673fd5301b�e9845d2b4b1163c8f2f71b3f232161df132b103360ee3fb48495eabd71c2be87�0ac7f1c170045695514643860355d8026d550047e3a4853bcfab39d620542b66�372a6dbe9c2786b09c1d722ffa63f7cff6848a3b35a68d4fbd7770dfee8c9157�98394ef67fe837f917dc3f0101b89193414868cd6bd7c94ceb5ab3ccc7ed408f����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�xen-4.13.1_10-lp152.2.12.1.src.rpm����xen-doc-html�xen-doc-html(x86-64)������
���
���
���
���
rpmlib(CompressedFileNames)�rpmlib(FileDigests)�rpmlib(PartialHardlinkSets)�rpmlib(PayloadFilesHavePrefix)�rpmlib(PayloadIsXz)�3.0.4-1�4.6.0-1�4.0.4-1�4.0-1�5.2-1�4.14.1���__[f_X_Wr@_'@_�{_�^)@^^@^3^ϧ^x^@^@^^�^{G^r
@^j$@^g@^_@^Nt^K^=Q@^:@^0"@^�@^�@]�]�]N@]@]ʞ])]c@]�@]@]@]]fl]fl]M`@]B@]/
],j]��]�@]�@]�]�]
#]�]�@\\ޢ@\ڭ\\@\@\�@\,@\7\\N\�@\\+@\\M\M\�\�\@\}�@\k\X)@\J@\I\A\?�\=@\9\73\4\$\�l@[H[k@[@[^[^[ā@[@[@[9@[v[W�[CN@[<[6�@[0@[0@['[!�@[�5@Z@ZnZ�@ZZZ@ZmZԐ@ZZZ@ZZ}@Z}@Z}@Z}@Zz@Zz@Zo�Zk�@ZV�@ZS]@ZOhZ:PZ1�@Z.s@Z&@Z�OZ�OZ� Z� Z� Z�@Z�@Z
}Z�C@Z�Y�Y�Y�Y|Y@Y{Y*@Y5YA@Y4YY�YbY�Y@Y3Y@YJYJY@YYV@Y�@Ym@Yw2Yp@YlYh@Yh@YS@YJ_YI�@Y5GY0�Y-^Y(�Y"Y�Y�;@Y�Y��Y�@Y�tY�.X@XQ@X@XۡXg@X@X@X@X @X@X@X�@X�@XXX@XXXwoXs{@XlXWXRXQ4@XEVX43@X.@X*X lX�&X�@X�X�@W@W֘W֘W^@WiW:Wt@W.@W9WW@Wk@Wi,@WbWZWZWZWYZ@WV@WEWBW=W;�W3�W1@W1@W,@W(W(W(W(W(W#LW�VbV(@V3VJVxV'@VV2V͛@VŲ@V`VwVVV=@VV@VHV@VvV%@VV<@V@VS@V�V@V^VwVqR@Vn@VXEVUVTQ@VMVMVMVA@V;DV9@V7P@V0V*!@V V�@V�CV�V�V�f@V�qV�@UYU�@U�@UUݪ@U�@UnU4@UUK@U�U@UU>U@Ux&Un@U\w@U[%UUUPUKSU>$U6;U%�@U�U�@U�U�U�.@TgT-@TT@TZ@TZ@T@T�T@T5T@TLTLT~@Tl@Ti@Ta@THT?@T=�@carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�Callum Farmer �carnold@suse.com�carnold@suse.com�James Fehlig �carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�ohering@suse.de�ohering@suse.de�carnold@suse.com�Dominique Leuenberger �carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�Matej Cepl �carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�ohering@suse.de�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�ohering@suse.de�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�Jim Fehlig �ohering@suse.de�Martin Liška �ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�Jan Engelhardt �Guillaume GARDET �Guillaume GARDET �Bernhard Wiedemann �carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�Bernhard Wiedemann �ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�trenn@suse.de�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�ohering@suse.de�ohering@suse.de�jfehlig@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�ohering@suse.de�ohering@suse.de�ohering@suse.de�rbrown@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�jfehlig@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�jfehlig@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�jfehlig@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�jfehlig@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�jfehlig@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�ohering@suse.de�carnold@suse.com�ohering@suse.de�jfehlig@suse.com�carnold@suse.com�jfehlig@suse.com�jfehlig@suse.com�carnold@suse.com�carnold@suse.com�jfehlig@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�jfehlig@suse.com�carnold@suse.com�carnold@suse.com�mlatimer@suse.com�carnold@suse.com�cyliu@suse.com�jfehlig@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�ohering@suse.de�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�jfehlig@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�rguenther@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�rguenther@suse.com�carnold@suse.com�meissner@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�ohering@suse.de�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�ohering@suse.de�ohering@suse.de�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�- bsc#1177409 - VUL-0: xen: x86 PV guest INVLPG-like flushes may
leave stale TLB entries (XSA-286)
xsa286-1.patch
xsa286-2.patch
xsa286-3.patch
xsa286-4.patch
xsa286-5.patch
xsa286-6.patch
- bsc#1177412 - VUL-0: xen: Race condition in Xen mapping code
(XSA-345)
xsa345-1.patch
xsa345-2.patch
xsa345-3.patch
- bsc#1177413 - VUL-0: xen: undue deferral of IOMMU TLB flushes
(XSA-346)
xsa346-1.patch
xsa346-2.patch
- bsc#1177414 - VUL-0: xen: unsafe AMD IOMMU page table updates
(XSA-347)
xsa347-1.patch
xsa347-2.patch
xsa347-3.patch�- Escape some % chars in xen.spec, they have to appear verbatim�- Enhance libxc.migrate_tracking.patch
Print number of allocated pages on sending side, this is more
accurate than p2m_size.�- bsc#1176339 - VUL-0: CVE-2020-25602: xen: x86 pv: Crash when
handling guest access to MSR_MISC_ENABLE (XSA-333)
xsa333.patch
- bsc#1176341 - VUL-0: CVE-2020-25598: xen: Missing unlock in
XENMEM_acquire_resource error path (XSA-334)
xsa334.patch
- bsc#1176343 - VUL-0: CVE-2020-25604: xen: race when migrating
timers between x86 HVM vCPU-s (XSA-336)
xsa336.patch
- bsc#1176344 - VUL-0: CVE-2020-25595: xen: PCI passthrough code
reading back hardware registers (XSA-337)
xsa337-1.patch
xsa337-2.patch
- bsc#1176346 - VUL-0: CVE-2020-25597: xen: once valid event
channels may not turn invalid (XSA-338)
xsa338.patch
- bsc#1176345 - VUL-0: CVE-2020-25596: xen: x86 pv guest kernel
DoS via SYSENTER (XSA-339)
xsa339.patch
- bsc#1176347 - VUL-0: CVE-2020-25603: xen: Missing barrier
barriers when accessing/allocating an event channel (XSA-340)
xsa340.patch
- bsc#1176348 - VUL-0: CVE-2020-25600: xen: out of bounds event
channels available to 32-bit x86 domains (XSA-342)
xsa342.patch
- bsc#1176349 - VUL-0: CVE-2020-25599: xen: races with
evtchn_reset() (XSA-343)
xsa343-1.patch
xsa343-2.patch
xsa343-3.patch
- bsc#1176350 - VUL-0: CVE-2020-25601: xen: lack of preemption in
evtchn_reset() / evtchn_destroy() (XSA-344)
xsa344-1.patch
xsa344-2.patch
- Upstream bug fixes (bsc#1027519)
5f479d9e-x86-begin-to-support-MSR_ARCH_CAPS.patch
5f4cf06e-x86-Dom0-expose-MSR_ARCH_CAPS.patch
5f4cf96a-x86-PV-fix-SEGBASE_GS_USER_SEL.patch
5f560c42-x86-PV-64bit-segbase-consistency.patch�- Upstream bug fixes (bsc#1027519)
5ef44e0d-x86-PMTMR-use-FADT-flags.patch
5ef6156a-x86-disallow-access-to-PT-MSRs.patch
5efcb354-x86-protect-CALL-JMP-straight-line-speculation.patch
5f046c18-evtchn-dont-ignore-error-in-get_free_port.patch (Replaces xsa317.patch)
5f046c48-x86-shadow-dirty-VRAM-inverted-conditional.patch (Replaces xsa319.patch)
5f046c64-EPT-set_middle_entry-adjustments.patch (Replaces xsa328-1.patch)
5f046c78-EPT-atomically-modify-ents-in-ept_next_level.patch (Replaces xsa328-2.patch)
5f046c9a-VT-d-improve-IOMMU-TLB-flush.patch (Replaces xsa321-1.patch)
5f046cb5-VT-d-prune-rename-cache-flush-funcs.patch (Replaces xsa321-2.patch)
5f046cca-x86-IOMMU-introduce-cache-sync-hook.patch (Replaces xsa321-3.patch)
5f046ce9-VT-d-sync_cache-misaligned-addresses.patch (Replaces xsa32141.patch)
5f046cfd-x86-introduce-alternative_2.patch (Replaces xsa321-5.patch)
5f046d1a-VT-d-optimize-CPU-cache-sync.patch (Replaces xsa321-6.patch)
5f046d2b-EPT-flush-cache-when-modifying-PTEs.patch (Replaces xsa321-7.patch)
5f046d5c-check-VCPUOP_register_vcpu_info-alignment.patch (Replaces xsa327.patch)
5f1a9916-x86-S3-put-data-sregs-into-known-state.patch
5f21b9fd-x86-cpuid-APIC-bit-clearing.patch�- bsc#1172356 - Not able to hot-plug NIC via virt-manager, asks to
attach on next reboot while it should be live attached
ignore-ip-command-script-errors.patch�- Enhance libxc.migrate_tracking.patch
After transfer of domU memory, the target host has to assemble
the backend devices. Track the time prior xc_domain_unpause.�- Add libxc.migrate_tracking.patch to track live migrations
unconditionally in logfiles, especially in libvirt.
This will track how long a domU was suspended during transit.�- bsc#1173376 - VUL-0: CVE-2020-15566: xen: XSA-317 - Incorrect
error handling in event channel port allocation
xsa317.patch
- bsc#1173377 - VUL-0: CVE-2020-15563: xen: XSA-319 - inverted code
paths in x86 dirty VRAM tracking
xsa319.patch
- bsc#1173378 - VUL-0: CVE-2020-15565: xen: XSA-321 - insufficient
cache write- back under VT-d
xsa321-1.patch
xsa321-2.patch
xsa321-3.patch
xsa321-4.patch
xsa321-5.patch
xsa321-6.patch
xsa321-7.patch
- bsc#1173380 - VUL-0: CVE-2020-15567: xen: XSA-328 - non-atomic
modification of live EPT PTE
xsa328-1.patch
xsa328-2.patch�- bsc#1172205 - VUL-0: CVE-2020-0543: xen: Special Register Buffer
Data Sampling (SRBDS) aka "CrossTalk" (XSA-320)
5ee24d0e-x86-spec-ctrl-document-SRBDS-workaround.patch
5edfbbea-x86-spec-ctrl-CPUID-MSR-defs-for-SRBDS.patch (Replaces xsa320-1.patch)
5edfbbea-x86-spec-ctrl-mitigate-SRBDS.patch (Replaces xsa320-2.patch)
- Upstream bug fixes (bsc#1027519)
5ec50b05-x86-idle-rework-C6-EOI-workaround.patch
5ec7dcaa-x86-dont-enter-C6-with-in-service-intr.patch
5ec7dcf6-x86-dont-enter-C3-C6-with-errata.patch
5ec82237-x86-extend-ISR-C6-workaround-to-Haswell.patch
5ece1b91-x86-clear-RDRAND-CPUID-bit-on-AMD-fam-15-16.patch
5ece8ac4-x86-load_system_tables-NMI-MC-safe.patch
5ed69804-x86-ucode-fix-start-end-update.patch
5eda60cb-SVM-split-recalc-NPT-fault-handling.patch
5edf6ad8-ioreq-pending-emulation-server-destruction-race.patch�- Fixes for %_libexecdir changing to /usr/libexec�- bsc#1172205 - VUL-0: CVE-2020-0543: xen: Special Register Buffer
Data Sampling (SRBDS) aka "CrossTalk" (XSA-320)
xsa320-1.patch
xsa320-2.patch�- Update to Xen 4.13.1 bug fix release (bsc#1027519)
xen-4.13.1-testing-src.tar.bz2
5eb51be6-cpupool-fix-removing-cpu-from-pool.patch
5eb51caa-sched-vcpu-pause-flags-atomic.patch
5ec2a760-x86-determine-MXCSR-mask-always.patch
- Drop patches contained in new tarball
5de65f84-gnttab-map-always-do-IOMMU-part.patch
5de65fc4-x86-avoid-HPET-use-on-certain-Intel.patch
5e15e03d-sched-fix-S3-resume-with-smt=0.patch
5e16fb6a-x86-clear-per-cpu-stub-page-info.patch
5e1da013-IRQ-u16-is-too-narrow-for-evtchn.patch
5e1dcedd-Arm-place-speculation-barrier-after-ERET.patch
5e21ce98-x86-time-update-TSC-stamp-after-deep-C-state.patch
5e286cce-VT-d-dont-pass-bridges-to-domain_context_mapping_one.patch
5e318cd4-x86-apic-fix-disabling-LVT0.patch
5e344c11-x86-HVM-relinquish-resources-from-domain_destroy.patch
5e3bd385-EFI-recheck-variable-name-strings.patch
5e3bd3d1-EFI-dont-leak-heap-VIA-XEN_EFI_get_next_variable_name.patch
5e3bd3f8-xmalloc-guard-against-overflow.patch
5e46e090-x86-smp-reset-x2apic_enabled-in-smp_send_stop.patch
5e4c00ef-VT-d-check-full-RMRR-for-E820-reserved.patch
5e4d4f5b-sched-fix-get_cpu_idle_time-with-core-sched.patch
5e4e614d-x86-spec-ctrl-no-xen-also-disables-branch-hardening.patch
5e4ec20e-x86-virtualise-MSR_PLATFORM_ID-properly.patch
5e5e7188-fix-error-path-in-cpupool_unassign_cpu_start.patch
5e6f53dd-AMD-IOMMU-fix-off-by-one-get_paging_mode.patch
5e7a371c-sched-fix-cpu-onlining-with-core-sched.patch
5e7c90cf-sched-fix-cpu-offlining-with-core-sched.patch
5e7cfb29-x86-ucode-AMD-fix-assert-in-compare_patch.patch
5e7cfb29-x86-ucode-fix-error-paths-in-apply_microcode.patch
5e7dd83b-libx86-CPUID-fix-not-just-leaf-7.patch
5e7dfbf6-x86-ucode-AMD-potential-buffer-overrun-equiv-tab.patch
5e846cce-x86-HVM-fix-AMD-ECS-handling-for-Fam10.patch
5e84905c-x86-ucode-AMD-fix-more-potential-buffer-overruns.patch
5e86f7b7-credit2-avoid-vCPUs-with-lower-creds-than-idle.patch
5e86f7fd-credit2-fix-credit-too-few-resets.patch
5e876b0f-tools-xenstore-fix-use-after-free-in-xenstored.patch
5e95ad61-xenoprof-clear-buffer-intended-to-be-shared-with-guests.patch
5e95ad8f-xenoprof-limit-consumption-of-shared-buffer-data.patch
5e95ae77-Add-missing-memory-barrier-in-the-unlock-path-of-rwlock.patch
5e95af5e-xen-gnttab-Fix-error-path-in-map_grant_ref.patch
5e95afb8-gnttab-fix-GNTTABOP_copy-continuation-handling.patch�- spec: Remove invocation of autogen.sh
- spec: Recommend qemu-ovmf-x86_64 to provide UEFI firmwares�- bsc#1170968 - GCC 10: xen build fails on i586
gcc10-fixes.patch�- bsc#1169392 - VUL-0: CVE-2020-11742: xen: Bad continuation
handling in GNTTABOP_copy (XSA-318)
5e95afb8-gnttab-fix-GNTTABOP_copy-continuation-handling.patch�- bsc#1168140 - VUL-0: CVE-2020-11740, CVE-2020-11741: xen: XSA-313
multiple xenoprof issues
5e95ad61-xenoprof-clear-buffer-intended-to-be-shared-with-guests.patch
5e95ad8f-xenoprof-limit-consumption-of-shared-buffer-data.patch
- bsc#1168142 - VUL-0: CVE-2020-11739: xen: XSA-314 - Missing
memory barriers in read-write unlock paths
5e95ae77-Add-missing-memory-barrier-in-the-unlock-path-of-rwlock.patch
- bsc#1168143 - VUL-0: CVE-2020-11743: xen: XSA-316 - Bad error
path in GNTTABOP_map_grant
5e95af5e-xen-gnttab-Fix-error-path-in-map_grant_ref.patch
- bsc#1167152 - L3: Xenstored Crashed during VM install Need Core
analyzed
5e876b0f-tools-xenstore-fix-use-after-free-in-xenstored.patch
- bsc#1165206 - Xen 4.12 DomU hang / freeze / stall / NMI watchdog
bug soft lockup CPU #0 stuck under high load / upstream with
workaround. See also bsc#1134506
5e86f7b7-credit2-avoid-vCPUs-with-lower-creds-than-idle.patch
5e86f7fd-credit2-fix-credit-too-few-resets.patch
- Drop for upstream solution (bsc#1165206)
01-xen-credit2-avoid-vcpus-to.patch
default-to-credit1-scheduler.patch
- Upstream bug fixes (bsc#1027519)
5e4ec20e-x86-virtualise-MSR_PLATFORM_ID-properly.patch
5e5e7188-fix-error-path-in-cpupool_unassign_cpu_start.patch
5e6f53dd-AMD-IOMMU-fix-off-by-one-get_paging_mode.patch
5e7a371c-sched-fix-cpu-onlining-with-core-sched.patch
5e7c90cf-sched-fix-cpu-offlining-with-core-sched.patch
5e7cfb29-x86-ucode-AMD-fix-assert-in-compare_patch.patch
5e7cfb29-x86-ucode-fix-error-paths-in-apply_microcode.patch
5e7dd83b-libx86-CPUID-fix-not-just-leaf-7.patch
5e7dfbf6-x86-ucode-AMD-potential-buffer-overrun-equiv-tab.patch
5e846cce-x86-HVM-fix-AMD-ECS-handling-for-Fam10.patch
5e84905c-x86-ucode-AMD-fix-more-potential-buffer-overruns.patch�- bsc#1167608 - unbound limit for max_event_channels
domUs with many vcpus and/or resources fail to start
libxl.max_event_channels.patch�- bsc#1161480 - Fix xl shutdown for HVM without PV drivers
add libxl.libxl__domain_pvcontrol.patch�- bsc#1165206 - Xen 4.12 DomU hang / freeze / stall / NMI watchdog
bug soft lockup CPU #0 stuck under high load / upstream with
workaround. See also bsc#1134506
01-xen-credit2-avoid-vcpus-to.patch�- bsc#1158414 - GCC 10: xen build fails
gcc10-fixes.patch�- bsc#1165206 - Xen 4.12 DomU hang / freeze / stall / NMI watchdog
bug soft lockup CPU #0 stuck under high load / upstream with
workaround. See also bsc#1134506
default-to-credit1-scheduler.patch�- bsc#1160932 - VUL-0: xen: XSA-312 v1: arm: a CPU may speculate
past the ERET instruction
5e1dcedd-Arm-place-speculation-barrier-after-ERET.patch
- bsc#1164425 - x86: "spec-ctrl=no-xen" should also disable branch
hardening
5e4e614d-x86-spec-ctrl-no-xen-also-disables-branch-hardening.patch
- Upstream bug fixes (bsc#1027519)
5e21ce98-x86-time-update-TSC-stamp-after-deep-C-state.patch
5e286cce-VT-d-dont-pass-bridges-to-domain_context_mapping_one.patch
5e318cd4-x86-apic-fix-disabling-LVT0.patch
5e344c11-x86-HVM-relinquish-resources-from-domain_destroy.patch
5e3bd385-EFI-recheck-variable-name-strings.patch
5e3bd3d1-EFI-dont-leak-heap-VIA-XEN_EFI_get_next_variable_name.patch
5e3bd3f8-xmalloc-guard-against-overflow.patch
5e46e090-x86-smp-reset-x2apic_enabled-in-smp_send_stop.patch
5e4c00ef-VT-d-check-full-RMRR-for-E820-reserved.patch
5e4d4f5b-sched-fix-get_cpu_idle_time-with-core-sched.patch�- bsc#1159755 - use fixed qemu-3.1 machine type for HVM
This must be done in qemu to preserve PCI layout
remove libxl.lock-qemu-machine-for-hvm.patch�- jsc#SLE-10183 - script to calculate cpuid= mask
add helper script from https://github.com/twizted/xen_maskcalc
domUs may be migrated between different cpus from the same vendor
if their visible cpuid value has incompatible feature bits masked.�- jsc#SLE-10172, bsc#1055731 - handle degraded raid for xendomains
add helper script and systemd service from
https://github.com/luizluca/xen-tools-xendomains-wait-disk
in new sub package xen-tools-xendomains-wait-disk
See included README for usage instructions
xendomains-wait-disks.LICENSE
xendomains-wait-disks.README.md
xendomains-wait-disks.sh�- bsc#1159755 - use fixed qemu-3.1 machine type for HVM
qemu4 introduced incompatible changes in pc-i440fx, which revealed
a design bug in 'xenfv'. Live migration from domUs started with
qemu versions prior qemu4 can not be received with qemu4+.
libxl.lock-qemu-machine-for-hvm.patch�- Upstream bug fixes (bsc#1027519)
5de65f84-gnttab-map-always-do-IOMMU-part.patch
5de65fc4-x86-avoid-HPET-use-on-certain-Intel.patch
5e15e03d-sched-fix-S3-resume-with-smt=0.patch
5e16fb6a-x86-clear-per-cpu-stub-page-info.patch
5e1da013-IRQ-u16-is-too-narrow-for-evtchn.patch�- BuildRequire pkgconfig(libsystemd) instead of systemd-devel:
Allow OBS to shortcut through the -mini flavors.�- bsc#1159320 - Xen logrotate file needs updated
logrotate.conf�- Update to Xen 4.13.0 FCS release
xen-4.13.0-testing-src.tar.bz2
* Core Scheduling (contributed by SUSE)
* Branch hardening to mitigate against Spectre v1 (contributed by Citrix)
* Late uCode loading (contributed by Intel)
* Improved live-patching build tools (contributed by AWS)
* OP-TEE support (contributed by EPAM)
* Renesas R-CAR IPMMU-VMSA driver (contributed by EPAM)
* Dom0-less passthrough and ImageBuilder (contributed by XILINX)
* Support for new Hardware�- Update to Xen 4.13.0 RC4 release
xen-4.13.0-testing-src.tar.bz2
- Rebase libxl.pvscsi.patch�- Update to Xen 4.13.0 RC3 release
xen-4.13.0-testing-src.tar.bz2
- Drop python38-build.patch�- Update to Xen 4.13.0 RC2 release
xen-4.13.0-testing-src.tar.bz2�- Add python38-build.patch fixing build with Python 3.8 (add
- -embed to python-config call)�- Update to Xen 4.13.0 RC1 release
xen-4.13.0-testing-src.tar.bz2
- Drop patches contained in new tarball or invalid
5ca7660f-x86-entry-drop-unused-includes.patch
5cab2a6b-x86-ACPI-also-parse-AMD-tables-early.patch
5cab2ab7-x86-IOMMU-introduce-init-ops.patch
5cab2ae8-x86-IOMMU-abstract-iommu_supports_eim.patch
5cab2b4e-x86-IOMMU-abstract-iommu_enable_x2apic_IR.patch
5cab2b95-x86-IOMMU-initialize-iommu_ops-in.patch
5cac9a4b-x86-IOMMU-abstract-adjust_vtd_irq_affinities.patch
5cdeac7f-AMD-IOMMU-adjust-IOMMU-list-head-init.patch
5cf8da09-adjust-sysdom-creation-call-earlier-on-x86.patch
5d0cf4e4-AMD-IOMMU-initialize-IRQ-tasklet-once.patch
5d149bb0-AMD-IOMMU-dont-add-IOMMUs.patch
5d1b3fab-AMD-IOMMU-restrict-feature-logging.patch
5d358508-x86-IRQ-desc-affinity-represents-request.patch
5d358534-x86-IRQ-consolidate-arch-cpu_mask-use.patch
5d358a67-AMD-IOMMU-pass-IOMMU-to-iterate_ivrs_entries-cb.patch
5d358a92-AMD-IOMMU-pass-IOMMU-to-amd_iommu_alloc_intremap_table.patch
5d39811c-x86-IOMMU-dont-restrict-IRQ-affinities.patch
5d417813-AMD-IOMMU-bitfield-extended-features.patch
5d417838-AMD-IOMMU-bitfield-control-reg.patch
5d41785b-AMD-IOMMU-bitfield-IRTE.patch
5d41787e-AMD-IOMMU-pass-IOMMU-to-gfu-intremap-entry.patch
5d4178ad-AMD-IOMMU-128bit-non-guest-APIC-IRTE.patch
5d4178fc-AMD-IOMMU-split-amd_iommu_init_one.patch
5d41793f-AMD-IOMMU-allow-enabling-without-IRQ.patch
5d417a16-AMD-IOMMU-adjust-IRQ-setup-for-x2APIC.patch
5d417ab6-AMD-IOMMU-enable-x2APIC-mode.patch
5d417b38-AMD-IOMMU-correct-IRTE-updating.patch
5d417b6a-AMD-IOMMU-dont-needlessly-log-headers.patch
5d419d49-x86-spec-ctrl-report-proper-status.patch
5d43253c-x86-ucode-always-collect_cpu_info-at-boot.patch
5d4a9d25-AMD-IOMMU-drop-not-found-message.patch
5d4aa36f-x86-apic-enable-x2APIC-mode-earlier.patch
5d4afa7a-credit2-fix-memory-leak.patch
5d4d850a-introduce-bss-percpu-page-aligned.patch
5d516531-x86-xpti-dont-leak-TSS-adjacent-data.patch
5d5bf475-x86-PV-fix-handling-of-iommu-mappings.patch
5d6524ca-x86-mm-correctly-init-M2P-entries.patch
5d67ceaf-x86-properly-gate-PKU-clearing.patch
5d70bfba-x86-shadow-dont-enable-with-too-small-allocation.patch
5d779811-x86-fix-CPUID7-0-eax-levelling-MSR.patch
5d77b40f-fix-hvm_all_ioreq_servers_add_vcpu-cleanup.patch
5d80e7c0-AMD-IOMMU-free-shared-IRT-once.patch
5d80e80d-AMD-IOMMU-valid-flag-for-IVRS-mappings.patch
5d80e82e-AMD-IOMMU-alloc_intremap_table-callers-handle-errors.patch
5d80e857-x86-PCI-read-MSI-X-table-entry-count-early.patch
5d80ea13-vpci-honor-read-only-devices.patch
5d89d8d9-libxc-x86-avoid-overflow-in-CPUID-APIC-ID.patch
5d8b715f-ACPI-cpuidle-bump-max-num-of-states.patch
5d8b72e5-AMD-IOMMU-dont-blindly-alloc-intremap-tables.patch
5d8b730e-AMD-IOMMU-phantom-funcs-share-intremap-tables.patch
5d8b733b-x86-PCI-read-max-MSI-vector-count-early.patch
5d8b736d-AMD-IOMMU-replace-INTREMAP_ENTRIES.patch
5d8b7393-AMD-IOMMU-restrict-intremap-table-sizes.patch
5d9ee2a8-AMD-IOMMU-alloc-1-devtab-per-PCI-seg.patch
5d9ee2f0-AMD-IOMMU-allocate_buffer-avoid-memset.patch
5d9ee312-AMD-IOMMU-prefill-all-DTEs.patch
CVE-2014-0222-blktap-qcow1-validate-l2-table-size.patch
blktap2-no-uninit.patch
libxl.prepare-environment-for-domcreate_stream_done.patch
pygrub-python3-conversion.patch
fix-xenpvnetboot.patch�- bsc#1135799 - Partner-L3: Xen crashes on AMD ROME based machines
5d9ee2a8-AMD-IOMMU-alloc-1-devtab-per-PCI-seg.patch
5d9ee2f0-AMD-IOMMU-allocate_buffer-avoid-memset.patch
5d9ee312-AMD-IOMMU-prefill-all-DTEs.patch�- bsc#1120095 - add code to change LIBXL_HOTPLUG_TIMEOUT at runtime
The included README has details about the impact of this change
libxl.LIBXL_HOTPLUG_TIMEOUT.patch�- bsc#1135799 - Partner-L3: Xen crashes on AMD ROME based machines
5ca7660f-x86-entry-drop-unused-includes.patch
5cf8da09-adjust-sysdom-creation-call-earlier-on-x86.patch
5cab2a6b-x86-ACPI-also-parse-AMD-tables-early.patch
5cab2ab7-x86-IOMMU-introduce-init-ops.patch
5cab2ae8-x86-IOMMU-abstract-iommu_supports_eim.patch
5cab2b4e-x86-IOMMU-abstract-iommu_enable_x2apic_IR.patch
5cab2b95-x86-IOMMU-initialize-iommu_ops-in.patch
5cac9a4b-x86-IOMMU-abstract-adjust_vtd_irq_affinities.patch
5cdeac7f-AMD-IOMMU-adjust-IOMMU-list-head-init.patch
5d0cf4e4-AMD-IOMMU-initialize-IRQ-tasklet-once.patch
5d149bb0-AMD-IOMMU-dont-add-IOMMUs.patch
5d1b3fab-AMD-IOMMU-restrict-feature-logging.patch
5d358508-x86-IRQ-desc-affinity-represents-request.patch
5d358534-x86-IRQ-consolidate-arch-cpu_mask-use.patch
5d358a67-AMD-IOMMU-pass-IOMMU-to-iterate_ivrs_entries-cb.patch
5d358a92-AMD-IOMMU-pass-IOMMU-to-amd_iommu_alloc_intremap_table.patch
5d39811c-x86-IOMMU-dont-restrict-IRQ-affinities.patch
5d417813-AMD-IOMMU-bitfield-extended-features.patch
5d417838-AMD-IOMMU-bitfield-control-reg.patch
5d41785b-AMD-IOMMU-bitfield-IRTE.patch
5d41787e-AMD-IOMMU-pass-IOMMU-to-gfu-intremap-entry.patch
5d4178ad-AMD-IOMMU-128bit-non-guest-APIC-IRTE.patch
5d4178fc-AMD-IOMMU-split-amd_iommu_init_one.patch
5d41793f-AMD-IOMMU-allow-enabling-without-IRQ.patch
5d417a16-AMD-IOMMU-adjust-IRQ-setup-for-x2APIC.patch
5d417ab6-AMD-IOMMU-enable-x2APIC-mode.patch
5d417b38-AMD-IOMMU-correct-IRTE-updating.patch
5d417b6a-AMD-IOMMU-dont-needlessly-log-headers.patch
5d4a9d25-AMD-IOMMU-drop-not-found-message.patch
5d80e7c0-AMD-IOMMU-free-shared-IRT-once.patch
5d80e80d-AMD-IOMMU-valid-flag-for-IVRS-mappings.patch
5d80e82e-AMD-IOMMU-alloc_intremap_table-callers-handle-errors.patch
5d80e857-x86-PCI-read-MSI-X-table-entry-count-early.patch
5d8b72e5-AMD-IOMMU-dont-blindly-alloc-intremap-tables.patch
5d8b730e-AMD-IOMMU-phantom-funcs-share-intremap-tables.patch
5d8b733b-x86-PCI-read-max-MSI-vector-count-early.patch
5d8b736d-AMD-IOMMU-replace-INTREMAP_ENTRIES.patch
5d8b7393-AMD-IOMMU-restrict-intremap-table-sizes.patch
- bsc#1145240 - [Migration]Can't pre-allocate 1 shadow pages
5d70bfba-x86-shadow-dont-enable-with-too-small-allocation.patch
- bsc#1137717 - [HPS Bug] Unable to install Windows Server 2016
with 2 CPUs setting (or above) under SLES12 SP4 Xen Server on AMD
ROME platform
5d89d8d9-libxc-x86-avoid-overflow-in-CPUID-APIC-ID.patch
- Upstream bug fixes (bsc#1027519)
5d67ceaf-x86-properly-gate-PKU-clearing.patch
5d779811-x86-fix-CPUID7-0-eax-levelling-MSR.patch
5d77b40f-fix-hvm_all_ioreq_servers_add_vcpu-cleanup.patch
5d80ea13-vpci-honor-read-only-devices.patch
5d8b715f-ACPI-cpuidle-bump-max-num-of-states.patch�- bsc#1145774 - Libivrtd segfaults when trying to live migrate a VM
Fix crash in an error path of libxl_domain_suspend with
libxl.helper_done-crash.patch�- Upstream bug fixes (bsc#1027519)
5d419d49-x86-spec-ctrl-report-proper-status.patch
5d43253c-x86-ucode-always-collect_cpu_info-at-boot.patch
5d4aa36f-x86-apic-enable-x2APIC-mode-earlier.patch
5d4afa7a-credit2-fix-memory-leak.patch
5d4d850a-introduce-bss-percpu-page-aligned.patch
5d516531-x86-xpti-dont-leak-TSS-adjacent-data.patch
5d5bf475-x86-PV-fix-handling-of-iommu-mappings.patch
5d6524ca-x86-mm-correctly-init-M2P-entries.patch
- Drop 5d419d49-x86-spec-ctrl-facilities-report-wrong-status.patch�- Preserve modified files which used to be marked as %config,
rename file.rpmsave to file�- Update to Xen 4.12.1 bug fix release (bsc#1027519)
xen-4.12.1-testing-src.tar.bz2
- Drop patches contained in new tarball
5c87b644-IOMMU-leave-enabled-for-kexec-crash.patch
5c87b6a2-x86-HVM-dont-crash-guest-in-find_mmio_cache.patch
5c87b6c8-drop-arch_evtchn_inject.patch
5c87b6e8-avoid-atomic-rmw-accesses-in-map_vcpu_info.patch
5c87e6d1-x86-TSX-controls-for-RTM-force-abort-mode.patch
5c8f752c-x86-e820-build-with-gcc9.patch
5c8fb92d-x86-HVM-split-linear-reads-and-writes.patch
5c8fb951-x86-HVM-finish-IOREQs-correctly-on-completion.patch
5c8fc6c0-x86-MSR-shorten-ARCH_CAPABILITIES.patch
5c8fc6c0-x86-SC-retpoline-safety-calculations-for-eIBRS.patch
5c9e63c5-credit2-SMT-idle-handling.patch
5ca46b68-x86emul-no-GPR-update-upon-AVX-gather-failures.patch
5ca773d1-x86emul-dont-read-mask-reg-without-AVX512F.patch
5cab1f66-timers-fix-memory-leak-with-cpu-plug.patch
5cac6cba-vmx-Fixup-removals-of-MSR-load-save-list-entries.patch
5cd921fb-trace-fix-build-with-gcc9.patch
5cd9224b-AMD-IOMMU-disable-upon-init-fail.patch
5cd922c5-x86-MTRR-recalc-p2mt-when-iocaps.patch
5cd9230f-VMX-correctly-get-GS_SHADOW-for-current.patch
5cd926d0-bitmap_fill-zero-sized.patch
5cd92724-drivers-video-drop-constraints.patch
5cd93a69-x86-MSR_INTEL_CORE_THREAD_COUNT.patch
5cd93a69-x86-boot-detect-Intel-SMT-correctly.patch
5cd93a69-x86-spec-ctrl-reposition-XPTI-parsing.patch
5cd981ff-x86-IRQ-tracing-avoid-UB-or-worse.patch
5cdad090-x86-spec-ctrl-CPUID-MSR-definitions-for-MDS.patch
5cdad090-x86-spec-ctrl-infrastructure-for-VERW-flush.patch
5cdad090-x86-spec-ctrl-misc-non-functional-cleanup.patch
5cdad090-x86-spec-ctrl-opts-to-control-VERW-flush.patch
5cdeb9fd-sched-fix-csched2_deinit_pdata.patch
5ce7a92f-x86-IO-APIC-fix-build-with-gcc9.patch
5cf0f6a4-x86-vhpet-resume-avoid-small-diff.patch
5cf16e51-x86-spec-ctrl-Knights-retpoline-safe.patch
5d03a0c4-1-Arm-add-an-isb-before-reading-CNTPCT_EL0.patch
5d03a0c4-2-gnttab-rework-prototype-of-set_status.patch
5d03a0c4-3-Arm64-rewrite-bitops-in-C.patch
5d03a0c4-4-Arm32-rewrite-bitops-in-C.patch
5d03a0c4-5-Arm-bitops-consolidate-prototypes.patch
5d03a0c4-6-Arm64-cmpxchg-simplify.patch
5d03a0c4-7-Arm32-cmpxchg-simplify.patch
5d03a0c4-8-Arm-bitops-helpers-with-timeout.patch
5d03a0c4-9-Arm-cmpxchg-helper-with-timeout.patch
5d03a0c4-A-Arm-turn-on-SILO-mode-by-default.patch
5d03a0c4-B-bitops-guest-helpers.patch
5d03a0c4-C-cmpxchg-guest-helpers.patch
5d03a0c4-D-use-guest-atomics-helpers.patch
5d03a0c4-E-Arm-add-perf-counters-in-guest-atomic-helpers.patch
5d03a0c4-F-Arm-protect-gnttab_clear_flag.patch
- Refreshed patches
libxl.pvscsi.patch�- bsc#1143563 - Speculative mitigation facilities report wrong status
5d419d49-x86-spec-ctrl-facilities-report-wrong-status.patch�- Update xen-dom0-modules.service (bsc#1137251)
Map backend module names from pvops and xenlinux kernels to a
module alias. This avoids errors from modprobe about unknown
modules. Ignore a few xenlinux modules that lack aliases.�- Gcc9 warnings seem to be cleared up with upstream fixes.
Drop gcc9-ignore-warnings.patch�- bsc#1138563 - L3: xenpvnetboot improperly ported to Python 3
fix-xenpvnetboot.patch�- Move /etc/modprobe.d/xen_loop.conf to /lib/modprobe.d/xen_loop.conf�- Remove /etc/xen/xenapiusers and /etc/pam.d/xen-api�- Remove all upstream provided files in /etc/xen
They are not required at runtime. The host admin is now
responsible if he really needs anything in this subdirectory.�- In our effort to make /etc fully admin controlled, move /etc/xen/scripts
to libexec/xen/scripts with xen-tools.etc_pollution.patch�- Move /etc/bash_completion.d/xl.sh to %{_datadir}/bash-completion/completions�- bsc#1138294 - VUL-0: CVE-2019-17349: XSA-295: Unlimited Arm
Atomics Operations
5d03a0c4-1-Arm-add-an-isb-before-reading-CNTPCT_EL0.patch
5d03a0c4-2-gnttab-rework-prototype-of-set_status.patch
5d03a0c4-3-Arm64-rewrite-bitops-in-C.patch
5d03a0c4-4-Arm32-rewrite-bitops-in-C.patch
5d03a0c4-5-Arm-bitops-consolidate-prototypes.patch
5d03a0c4-6-Arm64-cmpxchg-simplify.patch
5d03a0c4-7-Arm32-cmpxchg-simplify.patch
5d03a0c4-8-Arm-bitops-helpers-with-timeout.patch
5d03a0c4-9-Arm-cmpxchg-helper-with-timeout.patch
5d03a0c4-A-Arm-turn-on-SILO-mode-by-default.patch
5d03a0c4-B-bitops-guest-helpers.patch
5d03a0c4-C-cmpxchg-guest-helpers.patch
5d03a0c4-D-use-guest-atomics-helpers.patch
5d03a0c4-E-Arm-add-perf-counters-in-guest-atomic-helpers.patch
5d03a0c4-F-Arm-protect-gnttab_clear_flag.patch
- Upstream bug fixes (bsc#1027519)
5c87b6c8-drop-arch_evtchn_inject.patch
5c87b6e8-avoid-atomic-rmw-accesses-in-map_vcpu_info.patch
5cd921fb-trace-fix-build-with-gcc9.patch
5cd9224b-AMD-IOMMU-disable-upon-init-fail.patch
5cd922c5-x86-MTRR-recalc-p2mt-when-iocaps.patch
5cd9230f-VMX-correctly-get-GS_SHADOW-for-current.patch
5cd926d0-bitmap_fill-zero-sized.patch
5cd92724-drivers-video-drop-constraints.patch
5cd93a69-x86-spec-ctrl-reposition-XPTI-parsing.patch (Replaces xsa297-0a.patch)
5cd93a69-x86-MSR_INTEL_CORE_THREAD_COUNT.patch (Replaces xsa297-0b.patch)
5cd93a69-x86-boot-detect-Intel-SMT-correctly.patch (Replaces xsa297-0c.patch)
5cdad090-x86-spec-ctrl-misc-non-functional-cleanup.patch (Replaces xsa297-0d.patch)
5cdad090-x86-spec-ctrl-CPUID-MSR-definitions-for-MDS.patch (Replaces xsa297-1.patch)
5cdad090-x86-spec-ctrl-infrastructure-for-VERW-flush.patch (Replaces xsa297-2.patch)
5cdad090-x86-spec-ctrl-opts-to-control-VERW-flush.patch (Replaces xsa297-3.patch)
5cd981ff-x86-IRQ-tracing-avoid-UB-or-worse.patch
5cdeb9fd-sched-fix-csched2_deinit_pdata.patch
5ce7a92f-x86-IO-APIC-fix-build-with-gcc9.patch
5cf0f6a4-x86-vhpet-resume-avoid-small-diff.patch
5cf16e51-x86-spec-ctrl-Knights-retpoline-safe.patch�- Fix some outdated information in the readme
README.SUSE�- spec: xen-tools: require matching version of xen package
bsc#1137471�- Remove two stale patches
xen.build-compare.man.patch
xenpaging.doc.patch�- Disable LTO (boo#1133296).�- Remove arm32 from ExclusiveArch to fix build�- bsc#1111331 - VUL-0: CPU issues Q2 2019 aka "Group 4".
CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091
xsa297-0a.patch
xsa297-0b.patch
xsa297-0c.patch
xsa297-0d.patch
xsa297-1.patch
xsa297-2.patch
xsa297-3.patch
- Update 5cab1f66-timers-fix-memory-leak-with-cpu-plug.patch and
drop 5cac6219-xen-cpu-Fix-ARM-build-following-cs-597fbb8.patch
Refresh 5cac6cba-vmx-Fixup-removals-of-MSR-load-save-list-entries.patch�- bsc#1131811 - [XEN] internal error: libxenlight failed to create
new domain. This patch is a workaround for a systemd issue. See
patch header for additional comments.
xenstore-launch.patch�- bsc#1125378 - [xen][pygrub] Can not restore sle11sp4 pv guest
after upgrading host from sle11sp4 to sle15sp1
pygrub-python3-conversion.patch
- Fix "TypeError: virDomainDefineXML() argument 2 must be str or
None, not bytes" when converting VMs from using the xm/xend
toolstack to the libxl/libvirt toolstack. (bsc#1123378)
xen2libvirt.py�- bsc#1124560 - Fully virtualized guests crash on boot
5cac6cba-vmx-Fixup-removals-of-MSR-load-save-list-entries.patch
- bsc#1121391 - GCC 9: xen build fails
5c8f752c-x86-e820-build-with-gcc9.patch
- Upstream bug fixes (bsc#1027519)
5c87b644-IOMMU-leave-enabled-for-kexec-crash.patch
5c87b6a2-x86-HVM-dont-crash-guest-in-find_mmio_cache.patch
5c87e6d1-x86-TSX-controls-for-RTM-force-abort-mode.patch
5c8fb92d-x86-HVM-split-linear-reads-and-writes.patch
5c8fb951-x86-HVM-finish-IOREQs-correctly-on-completion.patch
5c8fc6c0-x86-MSR-shorten-ARCH_CAPABILITIES.patch
5c8fc6c0-x86-SC-retpoline-safety-calculations-for-eIBRS.patch
5c9e63c5-credit2-SMT-idle-handling.patch
5ca46b68-x86emul-no-GPR-update-upon-AVX-gather-failures.patch
5ca773d1-x86emul-dont-read-mask-reg-without-AVX512F.patch
5cab1f66-timers-fix-memory-leak-with-cpu-plug.patch
5cac6219-xen-cpu-Fix-ARM-build-following-cs-597fbb8.patch�- Install pkgconfig files into libdir instead of datadir�- Update to Xen 4.12.0 FCS release (fate#325107, fate#323901)
xen-4.12.0-testing-src.tar.bz2
* HVM/PVH and PV only Hypervisor: The Xen 4.12 release separates
the HVM/PVH and PV code paths in Xen and provides KCONFIG
options to build a PV only or HVM/PVH only hypervisor.
* QEMU Deprivilege (DM_RESTRICT): In Xen 4.12, this feature has
been vastly improved.
* Argo - Hypervisor-Mediated data eXchange: Argo is a new inter-
domain communication mechanism.
* Improvements to Virtual Machine Introspection: The VMI subsystem
which allows detection of 0-day vulnerabilities has seen many
functional and performance improvements.
* Credit 2 Scheduler: The Credit2 scheduler is now the Xen Project
default scheduler.
* PVH Support: Grub2 boot support has been added to Xen and Grub2.
* PVH Dom0: PVH Dom0 support has now been upgraded from experimental
to tech preview.
* The Xen 4.12 upgrade also includes improved IOMMU mapping code,
which is designed to significantly improve the startup times of
AMD EPYC based systems.
* The upgrade also features Automatic Dom0 Sizing which allows the
setting of Dom0 memory size as a percentage of host memory (e.g.
10%) or with an offset (e.g. 1G+10%).�- bsc#1130485 - Please drop Requires on multipath-tools in
xen-tools. Now using Recommends multipath-tools.
xen.spec�- Update to Xen 4.12.0 RC7 release (fate#325107, fate#323901)
xen-4.12.0-testing-src.tar.bz2�- Update to Xen 4.12.0 RC6 release (fate#325107, fate#323901)
xen-4.12.0-testing-src.tar.bz2�- bsc#1026236 - add Xen cmdline option "suse_vtsc_tolerance" to
avoid TSC emulation for HVM domUs if their expected frequency
does not match exactly the frequency of the receiving host
xen.bug1026236.suse_vtsc_tolerance.patch�- Update to Xen 4.12.0 RC5 release (fate#325107, fate#323901)
xen-4.12.0-testing-src.tar.bz2�- jsc#SLE-3059 - Disable Xen auto-ballooning
- Add CONFIG_DOM0_MEM to the spec file for managing dom0 memory.
xen.spec
- Disable autoballooning in xl.con
xl-conf-disable-autoballoon.patch�- Update gcc9-ignore-warnings.patch to fix build in SLE12�- bsc#1126325 - fix crash in libxl in error path
Setup of grant_tables and other variables may fail
libxl.prepare-environment-for-domcreate_stream_done.patch�- bsc#1127620 - Documentation for the xl configuration file allows
for firmware=pvgrub64 but we don't ship pvgrub64.
Create a link from grub.xen to pvgrub64
xen.spec�- Update to Xen 4.12.0 RC4 release (fate#325107, fate#323901)
xen-4.12.0-testing-src.tar.bz2
- Tarball also contains additional post RC4 security fixes for
Xen Security Advisories 287, 288, and 290 through 294.�- Update to Xen 4.12.0 RC3 release (fate#325107, fate#323901)
xen-4.12.0-testing-src.tar.bz2�- Update to Xen 4.12.0 RC2 release (fate#325107, fate#323901)
xen-4.12.0-testing-src.tar.bz2�- bsc#1121391 - GCC 9: xen build fails
gcc9-ignore-warnings.patch�- bsc#1122563 - Virtualization/xen: Bug no Xen on boot, missing
/proc/xen, after 4.11 -> 4.12 upgrade on X86_64/efi.
Keep xen.efi in /usr/lib64/efi for booting older distros.
xen.spec�- fate#326960: Package grub2 as noarch.
As part of the effort to have a unified bootloader across
architectures, modify the xen.spec file to move the Xen efi files
to /usr/share/efi/$(uname -m) from /usr/lib64/efi.�- Update to Xen 4.12.0 RC1 release (fate#325107, fate#323901)
xen-4.12.0-testing-src.tar.bz2
- Drop
5b505d59-tools-xentop-replace-use-of-deprecated-vwprintw.patch
5b76ec82-libxl-arm-Fix-build-on-arm64-acpi-w-gcc-8.2.patch
5b8fae26-tools-libxl-correct-vcpu-affinity-output-with-sparse-physical-cpu-map.patch
5b8fae26-xen-fill-topology-info-for-all-present-cpus.patch
5b8fb5af-tools-xl-refuse-to-set-number-of-vcpus-to-0-via-xl-vcpu-set.patch
5b9784ad-x86-HVM-drop-hvm_fetch_from_guest_linear.patch
5b9784d2-x86-HVM-add-known_gla-helper.patch
5b9784f2-x86-HVM-split-page-straddling-accesses.patch
5bdc31d5-VMX-fix-vmx_handle_eoi.patch
gcc8-fix-array-warning-on-i586.patch
gcc8-fix-format-warning-on-i586.patch
gcc8-inlining-failed.patch
xen.bug1079730.patch�- bsc#1121960 - xen: sync with Factory
xen.spec
xen.changes�- Replace old $RPM_* shell vars.
- Run fdupes for all architectures, and not crossing
subvolume boundaries.�- Do not run %fdupes on aarch64 to avoid the hardlink-across-partition
rpmlint error�- Require qemu-seabios only on x86* as it is not available on non-x86
systems�- Avoid creating dangling symlinks (bsc#1116524)
This reverts the revert of tmp_build.patch�- Update to Xen 4.11.1 bug fix release (bsc#1027519)
xen-4.11.1-testing-src.tar.bz2
- 5b505d59-tools-xentop-replace-use-of-deprecated-vwprintw.patch
replaces xen.2b50cdbc444c637575580dcfa6c9525a84d5cc62.patch
- 5b76ec82-libxl-arm-Fix-build-on-arm64-acpi-w-gcc-8.2.patch
replaces xen.b8f33431f3dd23fb43a879f4bdb4283fdc9465ad.patch
- Drop the following patches contained in the new tarball
5b34b8fe-VMX-defer-vmx_vmcs_exit-as-long-as-possible.patch
5b3cab8e-1-VMX-MSR_DEBUGCTL-handling.patch
5b3cab8e-2-VMX-improve-MSR-load-save-API.patch
5b3cab8e-3-VMX-cleanup-MSR-load-save-infra.patch
5b3cab8f-1-VMX-factor-out-locate_msr_entry.patch
5b3cab8f-2-VMX-remote-access-to-MSR-lists.patch
5b3cab8f-3-VMX-improve-LBR-MSR-handling.patch
5b3cab8f-4-VMX-pass-MSR-value-into-vmx_msr_add.patch
5b3cab8f-5-VMX-load-only-guest-MSR-entries.patch
5b3f8fa5-port-array_index_nospec-from-Linux.patch
5b4321f6-x86-correctly-set-nonlazy_xstate_used-when-loading-full-state.patch
5b4488e7-x86-spec-ctrl-cmdline-handling.patch
5b471517-page_alloc-correct-first_dirty-calc-in-block-merging.patch
5b4c9a60-allow-cpu_down-to-be-called-earlier.patch
5b4db308-SVM-fix-cleanup-svm_inject_event.patch
5b5040c3-cpupools-fix-state-when-downing-a-CPU-failed.patch
5b5040f2-x86-AMD-distinguish-CU-from-HT.patch
5b505fe5-VMX-fix-find-msr-build.patch
5b508775-1-x86-distinguish-CPU-offlining-and-removal.patch
5b508775-2-x86-possibly-bring-up-all-CPUs.patch
5b508775-3-x86-cmdline-opt-to-avoid-use-of-secondary-HTs.patch
5b508ce8-VMX-dont-clobber-dr6-while-debug-state-is-lazy.patch
5b50df16-1-x86-xstate-use-guest-CPUID-policy.patch
5b50df16-2-x86-make-xstate-calculation-errors-more-obvious.patch
5b56feb1-hvm-Disallow-unknown-MSR_EFER-bits.patch
5b56feb2-spec-ctrl-Fix-the-parsing-of-xpti--on-fixed-Intel-hardware.patch
5b62ca93-VMX-avoid-hitting-BUG_ON.patch
5b6d84ac-x86-fix-improve-vlapic-read-write.patch
5b6d8ce2-x86-XPTI-parsing.patch
5b72fbbe-ARM-disable-grant-table-v2.patch
5b72fbbe-oxenstored-eval-order.patch
5b72fbbe-vtx-Fix-the-checking-for-unknown-invalid-MSR_DEBUGCTL-bits.patch
5b72fbbf-1-spec-ctrl-Calculate-safe-PTE-addresses-for-L1TF-mitigations.patch
5b72fbbf-2-spec-ctrl-Introduce-an-option-to-control-L1TF-mitigation-for-PV-guests.patch
5b72fbbf-3-shadow-Infrastructure-to-force-a-PV-guest-into-shadow-mode.patch
5b72fbbf-4-mm-Plumbing-to-allow-any-PTE-update-to-fail-with--ERESTART.patch
5b72fbbf-5-pv-Force-a-guest-into-shadow-mode-when-it-writes-an-L1TF-vulnerable-PTE.patch
5b72fbbf-6-spec-ctrl-CPUID-MSR-definitions-for-L1D_FLUSH.patch
5b72fbbf-7-msr-Virtualise-MSR_FLUSH_CMD-for-guests.patch
5b72fbbf-8-spec-ctrl-Introduce-an-option-to-control-L1D_FLUSH-for-HVM-HAP-guests.patch
5b72fbbf-x86-Make-spec-ctrl-no-a-global-disable-of-all-mitigations.patch
5b72fbbf-xl.conf-Add-global-affinity-masks.patch
5b74190e-x86-hvm-ioreq-MMIO-range-check-honor-DF.patch
5b752762-x86-hvm-emul-rep-IO-should-not-cross-GFN-boundaries.patch
5b75afef-x86-setup-avoid-OoB-E820-lookup.patch
5b76b780-rangeset-inquiry-functions-tolerate-NULL.patch
5b83c654-VT-d-dmar-iommu-mem-leak-fix.patch
5b8d5832-x86-assorted-array_index_nospec-insertions.patch
5ba11ed4-credit2-fix-moving-CPUs-between-cpupools.patch
5bacae4b-x86-boot-allocate-extra-module-slot.patch
5bae44ce-x86-silence-false-log-messages.patch
5bb60c12-x86-split-opt_xpti.patch
5bb60c4f-x86-split-opt_pv_l1tf.patch
5bb60c74-x86-fix-xpti-and-pv-l1tf.patch
5bcf0722-x86-boot-enable-NMIs.patch
5bd076e9-dombuilder-init-vcpu-debug-regs-correctly.patch
5bd076e9-x86-boot-init-debug-regs-correctly.patch
5bd076e9-x86-init-vcpu-debug-regs-correctly.patch
5bd0e0cf-vvmx-Disallow-the-use-of-VT-x-instructions-when-nested-virt-is-disabled.patch
5bd0e11b-x86-disallow-VT-x-insns-without-nested-virt.patch
5bd85bfd-x86-fix-crash-on-xl-set-parameter-pcid.patch
5be2a308-x86-extend-get_platform_badpages.patch
5be2a354-x86-work-around-HLE-host-lockup-erratum.patch
xsa275-1.patch
xsa275-2.patch
xsa276-1.patch
xsa276-2.patch
xsa277.patch
xsa279.patch
xsa280-1.patch
xsa280-2.patch�- bsc#1116524 - Package xen-tools-4.11.0_09-2.1.x86_64 broken:
Missing /bin/domu-xenstore. This was broken because "make
package build reproducible" change. (boo#1047218, boo#1062303)
This fix reverses the change to this patch.
tmp_build.patch�- bsc#1115040 - VUL-0: CVE-2018-19961 CVE-2018-19962: xen:
insufficient TLB flushing / improper large page mappings with AMD
IOMMUs (XSA-275)
xsa275-1.patch
xsa275-2.patch
- bsc#1115043 - VUL-0: CVE-2018-19963: xen: resource accounting
issues in x86 IOREQ server handling (XSA-276)
xsa276-1.patch
xsa276-2.patch
- bsc#1115044 - VUL-0: CVE-2018-19964: xen: x86: incorrect error
handling for guest p2m page removals (XSA-277)
xsa277.patch
- bsc#1114405 - VUL-0: CVE-2018-18883: xen: Nested VT-x usable even
when disabled (XSA-278)
5bd0e11b-x86-disallow-VT-x-insns-without-nested-virt.patch
- bsc#1115045 - VUL-0: xen: CVE-2018-19965: x86: DoS from attempting
to use INVPCID with a non-canonical addresses (XSA-279)
xsa279.patch
- bsc#1115047 - VUL-0: CVE-2018-19966: xen: Fix for XSA-240
conflicts with shadow paging (XSA-280)
xsa280-1.patch
xsa280-2.patch
- bsc#1114988 - VUL-0: CVE-2018-19967: xen: guest use of HLE
constructs may lock up host (XSA-282)
5be2a308-x86-extend-get_platform_badpages.patch
5be2a354-x86-work-around-HLE-host-lockup-erratum.patch
- bsc#1108940 - L3: XEN SLE12-SP1 domU hang on SLE12-SP3 HV
5bdc31d5-VMX-fix-vmx_handle_eoi.patch
- Upstream bug fixes (bsc#1027519)
5b752762-x86-hvm-emul-rep-IO-should-not-cross-GFN-boundaries.patch
5ba11ed4-credit2-fix-moving-CPUs-between-cpupools.patch
5bacae4b-x86-boot-allocate-extra-module-slot.patch
5bae44ce-x86-silence-false-log-messages.patch
5bb60c12-x86-split-opt_xpti.patch
5bb60c4f-x86-split-opt_pv_l1tf.patch
5bb60c74-x86-fix-xpti-and-pv-l1tf.patch
5bcf0722-x86-boot-enable-NMIs.patch
5bd076e9-dombuilder-init-vcpu-debug-regs-correctly.patch
5bd076e9-x86-boot-init-debug-regs-correctly.patch
5bd076e9-x86-init-vcpu-debug-regs-correctly.patch
5bd85bfd-x86-fix-crash-on-xl-set-parameter-pcid.patch�- bsc#1114405 - VUL-0: CVE-2018-18883: xen: Nested VT-x usable even
when disabled (XSA-278)
5bd0e0cf-vvmx-Disallow-the-use-of-VT-x-instructions-when-nested-virt-is-disabled.patch�- Use SMBIOS_REL_DATE instead of SMBIOS_DATE for reproducible binaries�- make package build reproducible (boo#1047218, boo#1062303)
* Set SMBIOS_REL_DATE
* Update tmp_build.patch to use SHA instead of random build-id
* Add reproducible.patch to use --no-insert-timestamp�- Building with ncurses 6.1 will fail without
xen.2b50cdbc444c637575580dcfa6c9525a84d5cc62.patch
- Building libxl acpi support on aarch64 with gcc 8.2 will fail without
xen.b8f33431f3dd23fb43a879f4bdb4283fdc9465ad.patch�- bsc#1106263 - L3: The affinity reporting via 'xl vcpu-list' is
apparently broken
5b8fae26-tools-libxl-correct-vcpu-affinity-output-with-sparse-physical-cpu-map.patch
5b8fae26-xen-fill-topology-info-for-all-present-cpus.patch
5b8fb5af-tools-xl-refuse-to-set-number-of-vcpus-to-0-via-xl-vcpu-set.patch�- bsc#1094508 - L3: Kernel oops in fs/dcache.c called by
d_materialise_unique()
5b9784ad-x86-HVM-drop-hvm_fetch_from_guest_linear.patch
5b9784d2-x86-HVM-add-known_gla-helper.patch
5b9784f2-x86-HVM-split-page-straddling-accesses.patch
- bsc#1103279 - (CVE-2018-15470) VUL-0: CVE-2018-15470: xen:
oxenstored does not apply quota-maxentity (XSA-272)
5b72fbbe-oxenstored-eval-order.patch
- bsc#1103275 - (CVE-2018-15469) VUL-0: CVE-2018-15469: xen: Use of
v2 grant tables may cause crash on ARM (XSA-268)
5b72fbbe-ARM-disable-grant-table-v2.patch
- Upstream patches from Jan (bsc#1027519)
5b6d84ac-x86-fix-improve-vlapic-read-write.patch
5b74190e-x86-hvm-ioreq-MMIO-range-check-honor-DF.patch
5b75afef-x86-setup-avoid-OoB-E820-lookup.patch
5b76b780-rangeset-inquiry-functions-tolerate-NULL.patch
5b83c654-VT-d-dmar-iommu-mem-leak-fix.patch
5b8d5832-x86-assorted-array_index_nospec-insertions.patch
- Drop 5b741962-x86-write-to-correct-variable-in-parse_pv_l1tf.patch�- bsc#1078292 - rpmbuild -ba SPECS/xen.spec with xen-4.9.1 failed
xen.spec�- bsc#1091107 - VUL-0: CVE-2018-3646: xen: L1 Terminal Fault -VMM
(XSA-273)
5b72fbbf-1-spec-ctrl-Calculate-safe-PTE-addresses-for-L1TF-mitigations.patch
5b72fbbf-2-spec-ctrl-Introduce-an-option-to-control-L1TF-mitigation-for-PV-guests.patch
5b72fbbf-3-shadow-Infrastructure-to-force-a-PV-guest-into-shadow-mode.patch
5b72fbbf-4-mm-Plumbing-to-allow-any-PTE-update-to-fail-with--ERESTART.patch
5b72fbbf-5-pv-Force-a-guest-into-shadow-mode-when-it-writes-an-L1TF-vulnerable-PTE.patch
5b72fbbf-6-spec-ctrl-CPUID-MSR-definitions-for-L1D_FLUSH.patch
5b72fbbf-7-msr-Virtualise-MSR_FLUSH_CMD-for-guests.patch
5b72fbbf-8-spec-ctrl-Introduce-an-option-to-control-L1D_FLUSH-for-HVM-HAP-guests.patch
- bsc#1103276 - VUL-0: CVE-2018-15468: xen: x86: Incorrect
MSR_DEBUGCTL handling lets guests enable BTS (XSA-269)
5b72fbbe-vtx-Fix-the-checking-for-unknown-invalid-MSR_DEBUGCTL-bits.patch
- Upstream prereq patches for XSA-273 and other upstream fixes
(bsc#1027519)
5b34b8fe-VMX-defer-vmx_vmcs_exit-as-long-as-possible.patch
5b3cab8e-1-VMX-MSR_DEBUGCTL-handling.patch
5b3cab8e-2-VMX-improve-MSR-load-save-API.patch
5b3cab8e-3-VMX-cleanup-MSR-load-save-infra.patch
5b3cab8f-1-VMX-factor-out-locate_msr_entry.patch
5b3cab8f-2-VMX-remote-access-to-MSR-lists.patch
5b3cab8f-3-VMX-improve-LBR-MSR-handling.patch
5b3cab8f-4-VMX-pass-MSR-value-into-vmx_msr_add.patch
5b3cab8f-5-VMX-load-only-guest-MSR-entries.patch
5b4321f6-x86-correctly-set-nonlazy_xstate_used-when-loading-full-state.patch
5b505fe5-VMX-fix-find-msr-build.patch
5b56feb1-hvm-Disallow-unknown-MSR_EFER-bits.patch
5b56feb2-spec-ctrl-Fix-the-parsing-of-xpti--on-fixed-Intel-hardware.patch
5b62ca93-VMX-avoid-hitting-BUG_ON.patch
5b6d8ce2-x86-XPTI-parsing.patch
5b72fbbf-x86-Make-spec-ctrl-no-a-global-disable-of-all-mitigations.patch
5b72fbbf-xl.conf-Add-global-affinity-masks.patch
5b741962-x86-write-to-correct-variable-in-parse_pv_l1tf.patch�- Upstream patches from Jan (bsc#1027519)
5b3f8fa5-port-array_index_nospec-from-Linux.patch
5b4488e7-x86-spec-ctrl-cmdline-handling.patch
5b471517-page_alloc-correct-first_dirty-calc-in-block-merging.patch
5b4c9a60-allow-cpu_down-to-be-called-earlier.patch
5b4db308-SVM-fix-cleanup-svm_inject_event.patch
5b5040c3-cpupools-fix-state-when-downing-a-CPU-failed.patch
5b5040f2-x86-AMD-distinguish-CU-from-HT.patch
5b508775-1-x86-distinguish-CPU-offlining-and-removal.patch
5b508775-2-x86-possibly-bring-up-all-CPUs.patch
5b508775-3-x86-cmdline-opt-to-avoid-use-of-secondary-HTs.patch
5b508ce8-VMX-dont-clobber-dr6-while-debug-state-is-lazy.patch
5b50df16-1-x86-xstate-use-guest-CPUID-policy.patch
5b50df16-2-x86-make-xstate-calculation-errors-more-obvious.patch
gcc8-fix-format-warning-on-i586.patch
gcc8-fix-array-warning-on-i586.patch
- Drop xen.fuzz-_FORTIFY_SOURCE.patch
gcc8-fix-warning-on-i586.patch�- Update to Xen 4.11.0 FCS (fate#325202, fate#325123)
xen-4.11.0-testing-src.tar.bz2
disable-building-pv-shim.patch
- Dropped patches
5a33a12f-domctl-improve-locking-during-domain-destruction.patch
5a6703cb-x86-move-invocations-of-hvm_flush_guest_tlbs.patch
5a79d7ed-libxc-packed-initrd-dont-fail-domain-creation.patch
5a9985bd-x86-invpcid-support.patch
5ac72a48-gcc8.patch
5ac72a5f-gcc8.patch
5ac72a64-gcc8.patch
5ac72a69-gcc8.patch
5ac72a6e-gcc8.patch
5ac72a74-gcc8.patch
5ac72a7b-gcc8.patch
5ad4923e-x86-correct-S3-resume-ordering.patch
5ad49293-x86-suppress-BTI-mitigations-around-S3.patch
5ad600d4-x86-pv-introduce-x86emul_read_dr.patch
5ad600d4-x86-pv-introduce-x86emul_write_dr.patch
5ad8c3a7-x86-spec_ctrl-update-retpoline-decision-making.patch
5adda097-x86-HPET-fix-race-triggering-ASSERT.patch
5adda0d5-x86-HVM-never-retain-emulated-insn-cache.patch
5adde9ed-xpti-fix-double-fault-handling.patch
5ae06fad-SVM-fix-intercepts-for-SYS-CALL-ENTER-MSRs.patch
5ae31917-x86-cpuidle-init-stats-lock-once.patch
5aeaeae4-introduce-vcpu_sleep_nosync_locked.patch
5aeaeaf0-sched-fix-races-in-vcpu-migration.patch
5aeb2c57-x86-retval-checks-of-set-guest-trapbounce.patch
5aec7393-1-x86-xpti-avoid-copy.patch
5aec7393-2-x86-xpti-write-cr3.patch
5aec744a-3-x86-xpti-per-domain-flag.patch
5aec744a-4-x86-xpti-use-invpcid.patch
5aec744a-5-x86-xpti-no-global-pages.patch
5aec744a-6-x86-xpti-cr3-valid-flag.patch
5aec744a-7-x86-xpti-pv_guest_cr4_to_real_cr4.patch
5aec744b-8-x86-xpti-cr3-helpers.patch
5aec74a8-9-x86-xpti-use-pcid.patch
5af1daa9-1-x86-traps-fix-dr6-handing-in-DB-handler.patch
5af1daa9-2-x86-pv-move-exception-injection-into-test_all_events.patch
5af1daa9-3-x86-traps-use-IST-for-DB.patch
5af1daa9-4-x86-traps-fix-handling-of-DB-in-hypervisor-context.patch
5af1daa9-x86-HVM-guard-against-bogus-emulator-ioreq-state.patch
5af1daa9-x86-vpt-support-IO-APIC-routed-intr.patch
5af97999-viridian-cpuid-leaf-40000003.patch
5afc13ae-1-x86-read-MSR_ARCH_CAPABILITIES-once.patch
5afc13ae-2-x86-express-Xen-SPEC_CTRL-choice-as-variable.patch
5afc13ae-3-x86-merge-bti_ist_info-use_shadow_spec_ctrl.patch
5afc13ae-4-x86-fold-XEN_IBRS-ALTERNATIVES.patch
5afc13ae-5-x86-rename-bits-of-spec_ctrl-infrastructure.patch
5afc13ae-6-x86-elide-MSR_SPEC_CTRL-handling-in-idle.patch
5afc13ae-7-x86-split-X86_FEATURE_SC_MSR.patch
5afc13ae-8-x86-explicitly-set-Xen-default-SPEC_CTRL.patch
5afc13ae-9-x86-cpuid-improve-guest-policies-for-speculative.patch
5afc13ae-A-x86-introduce-spec-ctrl-cmdline-opt.patch
5b02c786-x86-AMD-mitigations-for-GPZ-SP4.patch
5b02c786-x86-Intel-mitigations-for-GPZ-SP4.patch
5b02c786-x86-msr-virtualise-SPEC_CTRL-SSBD.patch
5b0bc9da-x86-XPTI-fix-S3-resume.patch
5b0d2286-libxc-x86-PV-dont-hand-through-CPUID-leaf-0x80000008.patch
5b0d2d91-x86-suppress-sync-when-XPTI-off.patch
5b0d2dbc-x86-correct-default_xen_spec_ctrl.patch
5b0d2ddc-x86-CPUID-dont-override-tool-stack-hidden-STIBP.patch
5b150ef9-x86-fix-error-handling-of-pv-dr7-shadow.patch
5b21825d-1-x86-support-fully-eager-FPU-context-switching.patch
5b21825d-2-x86-spec-ctrl-mitigations-for-LazyFPU.patch
5b238b92-x86-HVM-account-for-fully-eager-FPU.patch
5b2b7172-x86-EFI-fix-FPU-state-handling-around-runtime-calls.patch
5b31e004-x86-HVM-emul-attempts-FPU-set-fpu_initialised.patch
5b323e3c-x86-EFI-fix-FPU-state-handling-around-runtime-calls.patch
5b34882d-x86-mm-dont-bypass-preemption-checks.patch
5b348874-x86-refine-checks-in-DB-handler.patch
5b348897-libxl-qemu_disk_scsi_drive_string-break-out-common.patch
5b3488a2-libxl-restore-passing-ro-to-qemu-for-SCSI-disks.patch
5b34891a-x86-HVM-dont-cause-NM-to-be-raised.patch
5b348954-x86-guard-against-NM.patch
libxl.Add-a-version-check-of-QEMU-for-QMP-commands.patch
libxl.LIBXL_DESTROY_TIMEOUT.patch
libxl.qmp-Tell-QEMU-about-live-migration-or-snapshot.patch
xen_fix_build_with_acpica_20180427_and_new_packages.patch�- Submit upstream patch libacpi: fixes for iasl >= 20180427
git commit 858dbaaeda33b05c1ac80aea0ba9a03924e09005
xen_fix_build_with_acpica_20180427_and_new_packages.patch
This is needed for acpica package to get updated in our build service�- Upstream patches from Jan (bsc#1027519)
5b02c786-x86-AMD-mitigations-for-GPZ-SP4.patch (Replaces Spectre-v4-1.patch)
5b02c786-x86-Intel-mitigations-for-GPZ-SP4.patch (Replaces Spectre-v4-2.patch)
5b02c786-x86-msr-virtualise-SPEC_CTRL-SSBD.patch (Replaces Spectre-v4-3.patch)
5b0bc9da-x86-XPTI-fix-S3-resume.patch
5b0d2286-libxc-x86-PV-dont-hand-through-CPUID-leaf-0x80000008.patch
5b0d2d91-x86-suppress-sync-when-XPTI-off.patch
5b0d2dbc-x86-correct-default_xen_spec_ctrl.patch
5b0d2ddc-x86-CPUID-dont-override-tool-stack-hidden-STIBP.patch
5b150ef9-x86-fix-error-handling-of-pv-dr7-shadow.patch
5b21825d-1-x86-support-fully-eager-FPU-context-switching.patch (Replaces xsa267-1.patch)
5b21825d-2-x86-spec-ctrl-mitigations-for-LazyFPU.patch (Replaces xsa267-2.patch)
5b238b92-x86-HVM-account-for-fully-eager-FPU.patch
5b2b7172-x86-EFI-fix-FPU-state-handling-around-runtime-calls.patch
5b31e004-x86-HVM-emul-attempts-FPU-set-fpu_initialised.patch
5b323e3c-x86-EFI-fix-FPU-state-handling-around-runtime-calls.patch
5b34882d-x86-mm-dont-bypass-preemption-checks.patch (Replaces xsa264.patch)
5b348874-x86-refine-checks-in-DB-handler.patch (Replaces xsa265.patch)
5b348897-libxl-qemu_disk_scsi_drive_string-break-out-common.patch (Replaces xsa266-1-<>.patch)
5b3488a2-libxl-restore-passing-ro-to-qemu-for-SCSI-disks.patch (Replaces xsa266-2-<>.patch)
5b34891a-x86-HVM-dont-cause-NM-to-be-raised.patch
5b348954-x86-guard-against-NM.patch�- Fix more build gcc8 related failures with xen.fuzz-_FORTIFY_SOURCE.patch�- bsc#1098403 - fix regression introduced by changes for bsc#1079730
a PV domU without qcow2 and/or vfb has no qemu attached.
Ignore QMP errors for PV domUs to handle PV domUs with and without
an attached qemu-xen.
xen.bug1079730.patch�- bsc#1097521 - VUL-0: CVE-2018-12891: xen: preemption checks
bypassed in x86 PV MM handling (XSA-264)
xsa264.patch
- bsc#1097522 - VUL-0: CVE-2018-12893: xen: x86: #DB exception
safety check can be triggered by a guest (XSA-265)
xsa265.patch
- bsc#1097523 - VUL-0: CVE-2018-12892: xen: libxl fails to honour
readonly flag on HVM emulated SCSI disks (XSA-266)
xsa266-1-libxl-qemu_disk_scsi_drive_string-Break-out-common-p.patch
xsa266-2-libxl-restore-passing-readonly-to-qemu-for-SCSI-disk.patch�- bsc#1095242 - VUL-0: CVE-2018-3665: xen: Lazy FP Save/Restore
(XSA-267)
xsa267-1.patch
xsa267-2.patch�- bsc#1092543 - GCC 8: xen build fails
gcc8-fix-warning-on-i586.patch�- bsc#1092631 - VUL-0: CVE-2018-3639: xen: V4 – Speculative Store
Bypass aka "Memory Disambiguation" (XSA-263)
5ad4923e-x86-correct-S3-resume-ordering.patch
5ad49293-x86-suppress-BTI-mitigations-around-S3.patch
5afc13ae-1-x86-read-MSR_ARCH_CAPABILITIES-once.patch
5afc13ae-2-x86-express-Xen-SPEC_CTRL-choice-as-variable.patch
5afc13ae-3-x86-merge-bti_ist_info-use_shadow_spec_ctrl.patch
5afc13ae-4-x86-fold-XEN_IBRS-ALTERNATIVES.patch
5afc13ae-5-x86-rename-bits-of-spec_ctrl-infrastructure.patch
5afc13ae-6-x86-elide-MSR_SPEC_CTRL-handling-in-idle.patch
5afc13ae-7-x86-split-X86_FEATURE_SC_MSR.patch
5afc13ae-8-x86-explicitly-set-Xen-default-SPEC_CTRL.patch
5afc13ae-9-x86-cpuid-improve-guest-policies-for-speculative.patch
5afc13ae-A-x86-introduce-spec-ctrl-cmdline-opt.patch
Spectre-v4-1.patch
Spectre-v4-2.patch
Spectre-v4-3.patch�- Always call qemus xen-save-devices-state in suspend/resume to
fix migration with qcow2 images (bsc#1079730)
libxl.Add-a-version-check-of-QEMU-for-QMP-commands.patch
libxl.qmp-Tell-QEMU-about-live-migration-or-snapshot.patch
xen.bug1079730.patch�- bsc#1087289 - L3: Xen BUG at sched_credit.c:1663
5aeaeae4-introduce-vcpu_sleep_nosync_locked.patch
5aeaeaf0-sched-fix-races-in-vcpu-migration.patch
- Upstream patches from Jan (bsc#1027519)
5ad600d4-x86-pv-introduce-x86emul_read_dr.patch
5ad600d4-x86-pv-introduce-x86emul_write_dr.patch
5ad8c3a7-x86-spec_ctrl-update-retpoline-decision-making.patch
5adda097-x86-HPET-fix-race-triggering-ASSERT.patch
5adda0d5-x86-HVM-never-retain-emulated-insn-cache.patch
5ae06fad-SVM-fix-intercepts-for-SYS-CALL-ENTER-MSRs.patch
5ae31917-x86-cpuidle-init-stats-lock-once.patch
5aeb2c57-x86-retval-checks-of-set-guest-trapbounce.patch
5af1daa9-1-x86-traps-fix-dr6-handing-in-DB-handler.patch (Replaces xsa260-1.patch)
5af1daa9-2-x86-pv-move-exception-injection-into-test_all_events.patch (Replaces xsa260-2.patch)
5af1daa9-3-x86-traps-use-IST-for-DB.patch (Replaces xsa260-3.patch)
5af1daa9-4-x86-traps-fix-handling-of-DB-in-hypervisor-context.patch (Replaces xsa260-4.patch)
5af1daa9-x86-HVM-guard-against-bogus-emulator-ioreq-state.patch (Replaces xsa262.patch)
5af1daa9-x86-vpt-support-IO-APIC-routed-intr.patch (Replaces xsa261.patch)
5af97999-viridian-cpuid-leaf-40000003.patch�- Fixes related to Page Table Isolation (XPTI). bsc#1074562 XSA-254
5a6703cb-x86-move-invocations-of-hvm_flush_guest_tlbs.patch
5a9985bd-x86-invpcid-support.patch
5adde9ed-xpti-fix-double-fault-handling.patch
5aec7393-1-x86-xpti-avoid-copy.patch
5aec7393-2-x86-xpti-write-cr3.patch
5aec744a-3-x86-xpti-per-domain-flag.patch
5aec744a-4-x86-xpti-use-invpcid.patch
5aec744a-5-x86-xpti-no-global-pages.patch
5aec744a-6-x86-xpti-cr3-valid-flag.patch
5aec744a-7-x86-xpti-pv_guest_cr4_to_real_cr4.patch
5aec744b-8-x86-xpti-cr3-helpers.patch
5aec74a8-9-x86-xpti-use-pcid.patch�- bsc#1092543 - GCC 8: xen build fails
5ac72a48-gcc8.patch
5ac72a5f-gcc8.patch
5ac72a64-gcc8.patch
5ac72a69-gcc8.patch
5ac72a6e-gcc8.patch
5ac72a74-gcc8.patch
5ac72a7b-gcc8.patch
gcc8-inlining-failed.patch�- Update to Xen 4.10.1 bug fix release (bsc#1027519)
xen-4.10.1-testing-src.tar.bz2
disable-building-pv-shim.patch
- Drop the following patches contained in the new tarball
5a21a77e-x86-pv-construct-d0v0s-GDT-properly.patch
5a2fda0d-x86-mb2-avoid-Xen-when-looking-for-module-crashkernel-pos.patch
5a2ffc1f-x86-mm-drop-bogus-paging-mode-assertion.patch
5a313972-x86-microcode-add-support-for-AMD-Fam17.patch
5a32bd79-x86-vmx-dont-use-hvm_inject_hw_exception-in-.patch
5a4caa5e-x86-IRQ-conditionally-preserve-access-perm.patch
5a4caa8c-x86-E820-don-t-overrun-array.patch
5a4e2bca-x86-free-msr_vcpu_policy-during-destruction.patch
5a4e2c2c-x86-upcall-inject-spurious-event-after-setting-vector.patch
5a4fd893-1-x86-break-out-alternative-asm-into-separate-header.patch
5a4fd893-2-x86-introduce-ALTERNATIVE_2-macros.patch
5a4fd893-3-x86-hvm-rename-update_guest_vendor-to-cpuid_policy_changed.patch
5a4fd893-4-x86-introduce-cpuid_policy_updated.patch
5a4fd893-5-x86-entry-remove-partial-cpu_user_regs.patch
5a4fd894-1-x86-rearrange-RESTORE_ALL-to-restore-in-stack-order.patch
5a4fd894-2-x86-hvm-use-SAVE_ALL-after-VMExit.patch
5a4fd894-3-x86-erase-guest-GPRs-on-entry-to-Xen.patch
5a4fd894-4-clarifications-to-wait-infrastructure.patch
5a534c78-x86-dont-use-incorrect-CPUID-values-for-topology.patch
5a5cb24c-x86-mm-always-set-_PAGE_ACCESSED-on-L4-updates.patch
5a5e2cff-x86-Meltdown-band-aid.patch
5a5e2d73-x86-Meltdown-band-aid-conditional.patch
5a5e3a4e-1-x86-support-compiling-with-indirect-branch-thunks.patch
5a5e3a4e-2-x86-support-indirect-thunks-from-asm.patch
5a5e3a4e-3-x86-report-speculative-mitigation-details.patch
5a5e3a4e-4-x86-AMD-set-lfence-as-Dispatch-Serialising.patch
5a5e3a4e-5-x86-introduce-alternative-indirect-thunks.patch
5a5e3a4e-6-x86-definitions-for-Indirect-Branch-Controls.patch
5a5e3a4e-7-x86-cmdline-opt-to-disable-IBRS-IBPB-STIBP.patch
5a5e459c-1-x86-SVM-offer-CPUID-faulting-to-AMD-HVM-guests.patch
5a5e459c-2-x86-report-domain-id-on-CPUID.patch
5a68bc16-x86-acpi-process-softirqs-logging-Cx.patch
5a69c0b9-x86-fix-GET_STACK_END.patch
5a6b36cd-1-x86-cpuid-handling-of-IBRS-IBPB-STIBP-and-IBRS-for-guests.patch
5a6b36cd-2-x86-msr-emulation-of-SPEC_CTRL-PRED_CMD.patch
5a6b36cd-3-x86-migrate-MSR_SPEC_CTRL.patch
5a6b36cd-4-x86-hvm-permit-direct-access-to-SPEC_CTRL-PRED_CMD.patch
5a6b36cd-5-x86-use-SPEC_CTRL-on-entry.patch
5a6b36cd-6-x86-clobber-RSB-RAS-on-entry.patch
5a6b36cd-7-x86-no-alternatives-in-NMI-MC-paths.patch
5a6b36cd-8-x86-boot-calculate-best-BTI-mitigation.patch
5a6b36cd-9-x86-issue-speculation-barrier.patch
5a6b36cd-A-x86-offer-Indirect-Branch-Controls-to-guests.patch
5a6b36cd-B-x86-clear-SPEC_CTRL-while-idle.patch
5a7b1bdd-x86-reduce-Meltdown-band-aid-IPI-overhead.patch
5a843807-x86-spec_ctrl-fix-bugs-in-SPEC_CTRL_ENTRY_FROM_INTR_IST.patch
5a856a2b-x86-emul-fix-64bit-decoding-of-segment-overrides.patch
5a856a2b-x86-use-32bit-xors-for-clearing-GPRs.patch
5a856a2b-x86-xpti-hide-almost-all-of-Xen-image-mappings.patch
5a8be788-x86-nmi-start-NMI-watchdog-on-CPU0-after-SMP.patch
5a95373b-x86-PV-avoid-leaking-other-guests-MSR_TSC_AUX.patch
5a95571f-memory-dont-implicitly-unpin-in-decrease-res.patch
5a95576c-gnttab-ARM-dont-corrupt-shared-GFN-array.patch
5a955800-gnttab-dont-free-status-pages-on-ver-change.patch
5a955854-x86-disallow-HVM-creation-without-LAPIC-emul.patch
5a956747-x86-HVM-dont-give-wrong-impression-of-WRMSR-success.patch
5a9eb7f1-x86-xpti-dont-map-stack-guard-pages.patch
5a9eb85c-x86-slightly-reduce-XPTI-overhead.patch
5a9eb890-x86-remove-CR-reads-from-exit-to-guest-path.patch
5aa2b6b9-cpufreq-ondemand-CPU-offlining-race.patch
5aaa9878-x86-vlapic-clear-TMR-bit-for-edge-triggered-intr.patch
xsa258.patch
xsa259.patch�- bsc#1090820 - VUL-0: CVE-2018-8897: xen: x86: mishandling of
debug exceptions (XSA-260)
xsa260-1.patch
xsa260-2.patch
xsa260-3.patch
xsa260-4.patch
- bsc#1090822 - VUL-0: CVE-2018-10982: xen: x86 vHPET interrupt
injection errors (XSA-261)
xsa261.patch
- bsc#1090823 - VUL-0: CVE-2018-10981: xen: qemu may drive Xen into
unbounded loop (XSA-262)
xsa262.patch�- bsc#1089152 - VUL-0: CVE-2018-10472: xen: Information leak via
crafted user-supplied CDROM (XSA-258)
xsa258.patch
- bsc#1089635 - VUL-0: CVE-2018-10471: xen: x86: PV guest may crash
Xen with XPTI (XSA-259)
xsa259.patch�- Preserve xen-syms from xen-dbg.gz to allow processing vmcores
with crash(1) (bsc#1087251)�- Upstream patches from Jan (bsc#1027519) and fixes related to
Page Table Isolation (XPTI). See also bsc#1074562 XSA-254
5a856a2b-x86-xpti-hide-almost-all-of-Xen-image-mappings.patch
5a9eb7f1-x86-xpti-dont-map-stack-guard-pages.patch
5a9eb85c-x86-slightly-reduce-XPTI-overhead.patch
5a9eb890-x86-remove-CR-reads-from-exit-to-guest-path.patch
5aa2b6b9-cpufreq-ondemand-CPU-offlining-race.patch
5aaa9878-x86-vlapic-clear-TMR-bit-for-edge-triggered-intr.patch�- bsc#1072834 - Xen HVM: unchecked MSR access error: RDMSR from
0xc90 at rIP: 0xffffffff93061456 (native_read_msr+0x6/0x30)
5a956747-x86-HVM-dont-give-wrong-impression-of-WRMSR-success.patch
- Upstream patches from Jan (bsc#1027519)
5a79d7ed-libxc-packed-initrd-dont-fail-domain-creation.patch
5a7b1bdd-x86-reduce-Meltdown-band-aid-IPI-overhead.patch
5a843807-x86-spec_ctrl-fix-bugs-in-SPEC_CTRL_ENTRY_FROM_INTR_IST.patch
5a856a2b-x86-emul-fix-64bit-decoding-of-segment-overrides.patch
5a856a2b-x86-use-32bit-xors-for-clearing-GPRs.patch
5a8be788-x86-nmi-start-NMI-watchdog-on-CPU0-after-SMP.patch
5a95373b-x86-PV-avoid-leaking-other-guests-MSR_TSC_AUX.patch
5a95571f-memory-dont-implicitly-unpin-in-decrease-res.patch (Replaces xsa252.patch)
5a95576c-gnttab-ARM-dont-corrupt-shared-GFN-array.patch (Replaces xsa255-1.patch)
5a955800-gnttab-dont-free-status-pages-on-ver-change.patch (Replaces xsa255-2.patch)
5a955854-x86-disallow-HVM-creation-without-LAPIC-emul.patch (Replaces xsa256.patch)
- Drop
xsa252.patch
xsa255-1.patch
xsa255-2.patch
xsa256.patch�- bsc#1080635 - VUL-0: CVE-2018-7540: xen: DoS via non-preemptable
L3/L4 pagetable freeing (XSA-252)
xsa252.patch
- bsc#1080662 - VUL-0: CVE-2018-7541: xen: grant table v2 -> v1
transition may crash Xen (XSA-255)
xsa255-1.patch
xsa255-2.patch
- bsc#1080634 - VUL-0: CVE-2018-7542: xen: x86 PVH guest without
LAPIC may DoS the host (XSA-256)
xsa256.patch�- Remove stale systemd presets code for 13.2 and older�- fate#324965 - add script, udev rule and systemd service to watch
for vcpu online/offline events in a HVM domU
They are triggered via xl vcpu-set domU N�- Replace hardcoded xen with Name tag when refering to subpkgs�- Make sure tools and tools-domU require libs from the very same build�- tools-domU: Add support for qemu guest agent. New files
80-xen-channel-setup.rules and xen-channel-setup.sh configure a
xen-pv-channel for use by the guest agent
FATE#324963�- Remove outdated /etc/xen/README*�- bsc#1073961 - VUL-0: CVE-2018-5244: xen: x86: memory leak with
MSR emulation (XSA-253)
5a4e2bca-x86-free-msr_vcpu_policy-during-destruction.patch
- bsc#1074562 - VUL-0: CVE-2017-5753,CVE-2017-5715,CVE-2017-5754
xen: Information leak via side effects of speculative execution
(XSA-254). Includes Spectre v2 mitigation.
5a4caa5e-x86-IRQ-conditionally-preserve-access-perm.patch
5a4caa8c-x86-E820-don-t-overrun-array.patch
5a4e2c2c-x86-upcall-inject-spurious-event-after-setting-vector.patch
5a4fd893-1-x86-break-out-alternative-asm-into-separate-header.patch
5a4fd893-2-x86-introduce-ALTERNATIVE_2-macros.patch
5a4fd893-3-x86-hvm-rename-update_guest_vendor-to-cpuid_policy_changed.patch
5a4fd893-4-x86-introduce-cpuid_policy_updated.patch
5a4fd893-5-x86-entry-remove-partial-cpu_user_regs.patch
5a4fd894-1-x86-rearrange-RESTORE_ALL-to-restore-in-stack-order.patch
5a4fd894-2-x86-hvm-use-SAVE_ALL-after-VMExit.patch
5a4fd894-3-x86-erase-guest-GPRs-on-entry-to-Xen.patch
5a4fd894-4-clarifications-to-wait-infrastructure.patch
5a534c78-x86-dont-use-incorrect-CPUID-values-for-topology.patch
5a5cb24c-x86-mm-always-set-_PAGE_ACCESSED-on-L4-updates.patch
5a5e2cff-x86-Meltdown-band-aid.patch
5a5e2d73-x86-Meltdown-band-aid-conditional.patch
5a5e3a4e-1-x86-support-compiling-with-indirect-branch-thunks.patch
5a5e3a4e-2-x86-support-indirect-thunks-from-asm.patch
5a5e3a4e-3-x86-report-speculative-mitigation-details.patch
5a5e3a4e-4-x86-AMD-set-lfence-as-Dispatch-Serialising.patch
5a5e3a4e-5-x86-introduce-alternative-indirect-thunks.patch
5a5e3a4e-6-x86-definitions-for-Indirect-Branch-Controls.patch
5a5e3a4e-7-x86-cmdline-opt-to-disable-IBRS-IBPB-STIBP.patch
5a5e459c-1-x86-SVM-offer-CPUID-faulting-to-AMD-HVM-guests.patch
5a5e459c-2-x86-report-domain-id-on-CPUID.patch
5a68bc16-x86-acpi-process-softirqs-logging-Cx.patch
5a69c0b9-x86-fix-GET_STACK_END.patch
5a6b36cd-1-x86-cpuid-handling-of-IBRS-IBPB-STIBP-and-IBRS-for-guests.patch
5a6b36cd-2-x86-msr-emulation-of-SPEC_CTRL-PRED_CMD.patch
5a6b36cd-3-x86-migrate-MSR_SPEC_CTRL.patch
5a6b36cd-4-x86-hvm-permit-direct-access-to-SPEC_CTRL-PRED_CMD.patch
5a6b36cd-5-x86-use-SPEC_CTRL-on-entry.patch
5a6b36cd-6-x86-clobber-RSB-RAS-on-entry.patch
5a6b36cd-7-x86-no-alternatives-in-NMI-MC-paths.patch
5a6b36cd-8-x86-boot-calculate-best-BTI-mitigation.patch
5a6b36cd-9-x86-issue-speculation-barrier.patch
5a6b36cd-A-x86-offer-Indirect-Branch-Controls-to-guests.patch
5a6b36cd-B-x86-clear-SPEC_CTRL-while-idle.patch�- Fix python3 deprecated atoi call (bsc#1067224)
pygrub-python3-conversion.patch
- Drop xenmon-python3-conversion.patch�- bsc#1067317 - pass cache=writeback|unsafe|directsync to qemu,
depending on the libxl disk settings
libxl.add-option-to-disable-disk-cache-flushes-in-qdisk.patch�- Remove libxl.LIBXL_DESTROY_TIMEOUT.debug.patch�- bsc#1067224 - xen-tools have hard dependency on Python 2
build-python3-conversion.patch
bin-python3-conversion.patch�- bsc#1070165 - xen crashes after aborted localhost migration
5a2ffc1f-x86-mm-drop-bogus-paging-mode-assertion.patch
- bsc#1035442 - L3: libxl: error: libxl.c:1676:devices_destroy_cb:
libxl__devices_destroy failed
5a33a12f-domctl-improve-locking-during-domain-destruction.patch
- Upstream patches from Jan (bsc#1027519)
5a21a77e-x86-pv-construct-d0v0s-GDT-properly.patch
5a2fda0d-x86-mb2-avoid-Xen-when-looking-for-module-crashkernel-pos.patch
5a313972-x86-microcode-add-support-for-AMD-Fam17.patch
5a32bd79-x86-vmx-dont-use-hvm_inject_hw_exception-in-.patch�- Update to Xen 4.10.0 FCS (fate#321394, fate#322686)
xen-4.10.0-testing-src.tar.bz2�- Rebuild initrd if xen-tools-domU is updated�- Update to Xen 4.10.0-rc8 (fate#321394, fate#322686)
xen-4.10.0-testing-src.tar.bz2�- Increase the value of LIBXL_DESTROY_TIMEOUT from 10 to 100 seconds
If many domUs shutdown in parallel the backends can not keep up
Add some debug output to track how long backend shutdown takes (bsc#1035442)
libxl.LIBXL_DESTROY_TIMEOUT.patch
libxl.LIBXL_DESTROY_TIMEOUT.debug.patch�- Adjust xenstore-run-in-studomain.patch to change the defaults
in the code instead of changing the sysconfig template, to also
cover the upgrade case�- Update to Xen 4.10.0-rc6 (fate#321394, fate#322686)
xen-4.10.0-testing-src.tar.bz2�- Since xen switched to Kconfig, building a debug hypervisor
was done by default. Adjust make logic to build a non-debug
hypervisor by default, and continue to provide one as xen-dbg.gz�- fate#316614: set migration constraints from cmdline
fix libxl.set-migration-constraints-from-cmdline.patch for xen-4.10�- Document the suse-diskcache-disable-flush option in
xl-disk-configuration(5) (bsc#879425,bsc#1067317)�- Replace references to /var/adm/fillup-templates with new
%_fillupdir macro (boo#1069468)�- Update to Xen 4.10.0-rc5 (fate#321394, fate#322686)
xen-4.10.0-testing-src.tar.bz2
- fate#323663 - Run Xenstore in stubdomain
xenstore-run-in-studomain.patch�- bsc#1067224 - xen-tools have hard dependency on Python 2
pygrub-python3-conversion.patch
xenmon-python3-conversion.patch
migration-python3-conversion.patch
xnloader.py
xen2libvirt.py�- Remove xendriverdomain.service (bsc#1065185)
Driver domains must be configured manually with custom .service file�- Update to Xen 4.10.0-rc3 (fate#321394, fate#322686)
xen-4.10.0-testing-src.tar.bz2
- Drop 59f31268-libxc-remove-stale-error-check-for-domain-size.patch�- Adjust xen-dom0-modules.service to ignore errors (bsc#1065187)�- fate#324052 Support migration of Xen HVM domains larger than 1TB
59f31268-libxc-remove-stale-error-check-for-domain-size.patch�- Update to Xen 4.10.0-rc2 (fate#321394, fate#322686)
xen-4.10.0-testing-src.tar.bz2�- Update to Xen 4.10.0-rc1 (fate#321394, fate#322686)
xen-4.10.0-testing-src.tar.bz2
- Drop patches included in new tarball
592fd5f0-stop_machine-fill-result-only-in-case-of-error.patch
596f257e-x86-fix-hvmemul_insn_fetch.patch
5982fd99-VT-d-don-t-panic-warn-on-iommu-no-igfx.patch
598c3630-VT-d-PI-disable-when-CPU-side-PI-is-off.patch
598c3706-cpufreq-only-stop-ondemand-governor-if-started.patch
5992f1e5-x86-grant-disallow-misaligned-PTEs.patch
5992f20d-gnttab-split-maptrack-lock-to-make-it-useful-again.patch
5992f233-gnttab-correct-pin-status-fixup-for-copy.patch
59958e76-gnttab-dont-use-possibly-unbounded-tail-calls.patch
59958ebf-gnttab-fix-transitive-grant-handling.patch
59958edd-gnttab-avoid-spurious-maptrack-handle-alloc-failures.patch
599da329-arm-mm-release-grant-lock-on-xatp1-error-paths.patch
59a01223-x86-check-for-alloc-errors-in-modify_xen_mappings.patch
59a0130c-x86-efi-dont-write-relocs-in-efi_arch_relocate_image-1st-pass.patch
59a9221f-VT-d-use-correct-BDF-for-VF-to-search-VT-d-unit.patch
59ae9177-x86-emul-fix-handling-of-unimplemented-Grp7-insns.patch
59aec335-x86emul-correct-VEX-W-handling-for-VPINSRD.patch
59aec375-x86emul-correct-VEX-L-handling-for-VCVTx2SI.patch
59afcea0-x86-introduce-and-use-setup_force_cpu_cap.patch
59b2a7f2-x86-HVM-correct-repeat-count-update-linear-phys.patch
59b7d664-mm-make-sure-node-is-less-than-MAX_NUMNODES.patch
59b7d69b-grant_table-fix-GNTTABOP_cache_flush-handling.patch
59b7d6c8-xenstore-dont-unlink-connection-object-twice.patch
59b7d6d9-gnttab-also-validate-PTE-perms-upon-destroy-replace.patch
gcc7-arm.patch
gcc7-mini-os.patch�- bsc#1061084 - VUL-0: xen: page type reference leak on x86
(XSA-242)
xsa242.patch
- bsc#1061086 - VUL-0: xen: x86: Incorrect handling of self-linear
shadow mappings with translated guests (XSA-243)
xsa243.patch
- bsc#1061087 - VUL-0: xen: x86: Incorrect handling of IST settings
during CPU hotplug (XSA-244)
xsa244.patch�- bsc#1061077 - VUL-0: xen: DMOP map/unmap missing argument checks
(XSA-238)
xsa238.patch
- bsc#1061080 - VUL-0: xen: hypervisor stack leak in x86 I/O
intercept code (XSA-239)
xsa239.patch
- bsc#1061081 - VUL-0: xen: Unlimited recursion in linear pagetable
de-typing (XSA-240)
xsa240-1.patch
xsa240-2.patch
- bsc#1061082 - VUL-0: xen: Stale TLB entry due to page type
release race (XSA-241)
xsa241.patch�- bsc#1061075 - VUL-0: xen: pin count / page reference race in
grant table code (XSA-236)
xsa236.patch
- bsc#1061076 - VUL-0: xen: multiple MSI mapping issues on x86
(XSA-237)
xsa237-1.patch
xsa237-2.patch
xsa237-3.patch
xsa237-4.patch
xsa237-5.patch�- bsc#1056278 - VUL-0: xen: Missing NUMA node parameter
verification (XSA-231)
59b7d664-mm-make-sure-node-is-less-than-MAX_NUMNODES.patch
- bsc#1056280 - VUL-0: xen: Missing check for grant table (XSA-232)
59b7d69b-grant_table-fix-GNTTABOP_cache_flush-handling.patch
- bsc#1056281 - VUL-0: xen: cxenstored: Race in domain cleanup
(XSA-233)
59b7d6c8-xenstore-dont-unlink-connection-object-twice.patch
- bsc#1056282 - VUL-0: xen: insufficient grant unmapping checks for
x86 PV guests (XSA-234)
59b7d6d9-gnttab-also-validate-PTE-perms-upon-destroy-replace.patch
- bsc#1055321 - VUL-0: xen: add-to-physmap error paths fail to
release lock on ARM (XSA-235)
599da329-arm-mm-release-grant-lock-on-xatp1-error-paths.patch
- Upstream patches from Jan (bsc#1027519)
59a01223-x86-check-for-alloc-errors-in-modify_xen_mappings.patch
59a0130c-x86-efi-dont-write-relocs-in-efi_arch_relocate_image-1st-pass.patch
59a9221f-VT-d-use-correct-BDF-for-VF-to-search-VT-d-unit.patch
59ae9177-x86-emul-fix-handling-of-unimplemented-Grp7-insns.patch
59aec335-x86emul-correct-VEX-W-handling-for-VPINSRD.patch
59aec375-x86emul-correct-VEX-L-handling-for-VCVTx2SI.patch
59afcea0-x86-introduce-and-use-setup_force_cpu_cap.patch
59b2a7f2-x86-HVM-correct-repeat-count-update-linear-phys.patch
- Dropped gcc7-xen.patch�- bsc#1057358 - Cannot Boot into SLES12.3 with Xen hypervisor when
Secure Boot is Enabled
xen.spec�- bsc#1055695 - XEN: 11SP4 and 12SP3 HVM guests can not be restored
update from v6 to v9 to cover more cases for ballooned domUs
libxc.sr.superpage.patch�- bsc#1026236 - remove suse_vtsc_tolerance= cmdline option for Xen
drop the patch because it is not upstream acceptable
remove xen.suse_vtsc_tolerance.patch�- bsc#1055695 - XEN: 11SP4 and 12SP3 HVM guests can not be restored
after the save using xl stack
libxc.sr.superpage.patch�- Unignore gcc-PIE
the toolstack disables PIE for firmware builds as needed�- Upstream patches from Jan (bsc#1027519)
592fd5f0-stop_machine-fill-result-only-in-case-of-error.patch
596f257e-x86-fix-hvmemul_insn_fetch.patch
5982fd99-VT-d-don-t-panic-warn-on-iommu-no-igfx.patch
598c3630-VT-d-PI-disable-when-CPU-side-PI-is-off.patch
598c3706-cpufreq-only-stop-ondemand-governor-if-started.patch
5992f1e5-x86-grant-disallow-misaligned-PTEs.patch (Replaces xsa227.patch)
5992f20d-gnttab-split-maptrack-lock-to-make-it-useful-again.patch (Replaces xsa228.patch)
5992f233-gnttab-correct-pin-status-fixup-for-copy.patch (Replaces xsa230.patch)
59958e76-gnttab-dont-use-possibly-unbounded-tail-calls.patch (Replaces xsa226-1.patch)
59958ebf-gnttab-fix-transitive-grant-handling.patch (Replaces xsa226-2.patch)
59958edd-gnttab-avoid-spurious-maptrack-handle-alloc-failures.patch�- bsc#1044974 - xen-tools require python-pam
xen.spec�- Clean up spec file errors and a few warnings. (bsc#1027519)
- Removed conditional 'with_systemd' and some old deprecated
'sles_version' checks.
xen.spec�- Remove use of brctl utiltiy from supportconfig plugin
FATE#323639�- Use upstream variant of mini-os __udivmoddi4 change
gcc7-mini-os.patch�- fate#323639 Move bridge-utils to legacy
replace-obsolete-network-configuration-commands-in-s.patch�- bsc#1052686 - VUL-0: xen: grant_table: possibly premature
clearing of GTF_writing / GTF_reading (XSA-230)
xsa230.patch�- bsc#1035231 - migration of HVM domU does not use superpages
on destination dom0
libxc.sr.superpage.patch�- bsc#1051787 - VUL-0: CVE-2017-12135: xen: possibly unbounded
recursion in grant table code (XSA-226)
xsa226-1.patch
xsa226-2.patch
- bsc#1051788 - VUL-0: CVE-2017-12137: xen: x86: PV privilege
escalation via map_grant_ref (XSA-227)
xsa227.patch
- bsc#1051789 - VUL-0: CVE-2017-12136: xen: grant_table: Race
conditions with maptrack free list handling (XSA-228)
xsa228.patch�- Add a supportconfig plugin
xen-supportconfig
FATE#323661�- bsc#1026236 - add suse_vtsc_tolerance= cmdline option for Xen
To avoid emulation of TSC access from a domU after live migration
add a global tolerance for the measured host kHz
xen.suse_vtsc_tolerance.patch�- fate#323662 Drop qemu-dm from xen-tools package
The following tarball and patches have been removed
qemu-xen-traditional-dir-remote.tar.bz2
VNC-Support-for-ExtendedKeyEvent-client-message.patch
0001-net-move-the-tap-buffer-into-TAPState.patch
0002-net-increase-tap-buffer-size.patch
0003-e1000-fix-access-4-bytes-beyond-buffer-end.patch
0004-e1000-secrc-support.patch
0005-e1000-multi-buffer-packet-support.patch
0006-e1000-clear-EOP-for-multi-buffer-descriptors.patch
0007-e1000-verify-we-have-buffers-upfront.patch
0008-e1000-check-buffer-availability.patch
CVE-2013-4533-qemut-pxa2xx-buffer-overrun-on-incoming-migration.patch
CVE-2013-4534-qemut-openpic-buffer-overrun-on-incoming-migration.patch
CVE-2013-4537-qemut-ssi-sd-fix-buffer-overrun-on-invalid-state-load.patch
CVE-2013-4538-qemut-ssd0323-fix-buffer-overun-on-invalid-state.patch
CVE-2013-4539-qemut-tsc210x-fix-buffer-overrun-on-invalid-state-load.patch
CVE-2014-0222-qemut-qcow1-validate-l2-table-size.patch
CVE-2014-3640-qemut-slirp-NULL-pointer-deref-in-sosendto.patch
CVE-2015-4037-qemut-smb-config-dir-name.patch
CVE-2015-5154-qemut-fix-START-STOP-UNIT-command-completion.patch
CVE-2015-5278-qemut-Infinite-loop-in-ne2000_receive-function.patch
CVE-2015-6815-qemut-e1000-fix-infinite-loop.patch
CVE-2015-7512-qemut-net-pcnet-buffer-overflow-in-non-loopback-mode.patch
CVE-2015-8345-qemut-eepro100-infinite-loop-fix.patch
CVE-2015-8504-qemut-vnc-avoid-floating-point-exception.patch
CVE-2016-1714-qemut-fw_cfg-add-check-to-validate-current-entry-value.patch
CVE-2016-1981-qemut-e1000-eliminate-infinite-loops-on-out-of-bounds-transfer.patch
CVE-2016-2391-qemut-usb-null-pointer-dereference-in-ohci-module.patch
CVE-2016-2841-qemut-ne2000-infinite-loop-in-ne2000_receive.patch
CVE-2016-4439-qemut-scsi-esp-OOB-write-while-writing-to-cmdbuf-in-esp_reg_write.patch
CVE-2016-4441-qemut-scsi-esp-OOB-write-while-writing-to-cmdbuf-in-get_cmd.patch
CVE-2016-5238-qemut-scsi-esp-OOB-write-when-using-non-DMA-mode-in-get_cmd.patch
CVE-2016-5338-qemut-scsi-esp-OOB-rw-access-while-processing-ESP_FIFO.patch
CVE-2016-6351-qemut-scsi-esp-make-cmdbuf-big-enough-for-maximum-CDB-size.patch
CVE-2016-7908-qemut-net-Infinite-loop-in-mcf_fec_do_tx.patch
CVE-2016-7909-qemut-net-pcnet-infinite-loop-in-pcnet_rdra_addr.patch
CVE-2016-8667-qemut-dma-rc4030-divide-by-zero-error-in-set_next_tick.patch
CVE-2016-8669-qemut-char-divide-by-zero-error-in-serial_update_parameters.patch
CVE-2016-8910-qemut-net-rtl8139-infinite-loop-while-transmit-in-Cplus-mode.patch
CVE-2016-9921-qemut-display-cirrus_vga-divide-by-zero-in-cirrus_do_copy.patch
CVE-2017-6505-qemut-usb-an-infinite-loop-issue-in-ohci_service_ed_list.patch
CVE-2017-8309-qemut-audio-host-memory-leakage-via-capture-buffer.patch
CVE-2017-9330-qemut-usb-ohci-infinite-loop-due-to-incorrect-return-value.patch
blktap.patch
cdrom-removable.patch
xen-qemu-iscsi-fix.patch
qemu-security-etch1.patch
xen-disable-qemu-monitor.patch
xen-hvm-default-bridge.patch
qemu-ifup-set-mtu.patch
ioemu-vnc-resize.patch
capslock_enable.patch
altgr_2.patch
log-guest-console.patch
bdrv_open2_fix_flags.patch
bdrv_open2_flags_2.patch
ioemu-7615-qcow2-fix-alloc_cluster_link_l2.patch
qemu-dm-segfault.patch
bdrv_default_rwflag.patch
kernel-boot-hvm.patch
ioemu-watchdog-support.patch
ioemu-watchdog-linkage.patch
ioemu-watchdog-ib700-timer.patch
ioemu-hvm-pv-support.patch
pvdrv_emulation_control.patch
ioemu-disable-scsi.patch
ioemu-disable-emulated-ide-if-pv.patch
xenpaging.qemu.flush-cache.patch
ioemu-devicemodel-include.patch
- Cleanup spec file and remove unused KMP patches
kmp_filelist
supported_module.patch
xen_pvonhvm.xen_emul_unplug.patch�- bsc#1002573 - Optimize LVM functions in block-dmmd
block-dmmd�- Record initial Xen dmesg in /var/log/xen/xen-boot.log for
supportconfig. Keep previous log in /var/log/xen/xen-boot.prev.log�- Remove storytelling from description in xen.rpm�- Update to Xen 4.9.0 FCS (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2�- Update block-dmmd script (bsc#1002573)
block-dmmd�- Update to Xen 4.9.0-rc8+ (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2
gcc7-arm.patch
- Drop gcc7-error-xenpmd.patch�- Update to Xen 4.9.0-rc8 (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2�- bsc#1042160 - VUL-1: CVE-2017-9330: xen: usb: ohci: infinite loop
due to incorrect return value
CVE-2017-9330-qemut-usb-ohci-infinite-loop-due-to-incorrect-return-value.patch�- bsc#1037243 - VUL-1: CVE-2017-8309: xen: audio: host memory
leakage via capture buffer
CVE-2017-8309-qemut-audio-host-memory-leakage-via-capture-buffer.patch�- Update to Xen 4.9.0-rc7 (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2�- Update to Xen 4.9.0-rc6 (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2�- bsc#1031343 - xen fails to build with GCC 7
gcc7-mini-os.patch
gcc7-xen.patch�- bsc#1031343 - xen fails to build with GCC 7
gcc7-error-xenpmd.patch�- Update to Xen 4.9.0-rc5 (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2
- Drop xen-tools-pkgconfig-xenlight.patch�- bsc#1037779 - xen breaks kexec-tools build
xen-tools-pkgconfig-xenlight.patch�- Update to Xen 4.9.0-rc4 (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2�- bsc#1036146 - sles12sp2 xen VM dumps core to wrong path
xen.spec�- Update to Xen 4.9.0-rc3 (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2
aarch64-maybe-uninitialized.patch�- Update to Xen 4.9.0-rc2 (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2�- Update to Xen 4.9.0-rc1 (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2
ioemu-devicemodel-include.patch
- Dropped patches contained in new tarball
xen-4.8.0-testing-src.tar.bz2
0001-xenstore-let-write_node-and-some-callers-return-errn.patch
0002-xenstore-undo-function-rename.patch
0003-xenstore-rework-of-transaction-handling.patch
584806ce-x86emul-correct-PUSHF-POPF.patch
584fc649-fix-determining-when-domain-creation-is-complete.patch
58510c06-x86emul-CMPXCHGnB-ignore-prefixes.patch
58510cac-x86emul-MOVNTI-no-REP-prefixes.patch
58526ccc-x86emul-64bit-ignore-most-segment-bases-in-align-check.patch
5853ed37-VT-d-correct-dma_msi_set_affinity.patch
5853ee07-x86emul-CMPXCHG16B-aligned-operand.patch
58580060-x86-emul-correct-SYSCALL-eflags-handling.patch
585aa3c5-x86-force-EFLAGS-IF-on-upon-exit-to-PV.patch
585aa407-x86-HVM-NULL-check-before-using-VMFUNC-hook.patch
585bd5fe-x86-emul-correct-VMFUNC-return-value-handling.patch
586ba81c-x86-cpu-dont-update-this_cpu-for-guest-get_cpu_vendor.patch
587d04d6-x86-xstate-fix-array-overrun-with-LWP.patch
587de4a9-x86emul-VEX-B-ignored-in-compat-mode.patch
5882129d-x86emul-LOCK-check-adjustments.patch
58821300-x86-segment-attribute-handling.patch
58873c1f-x86emul-correct-FPU-stub-asm-constraints.patch
58873c80-x86-hvm-do-not-set-msr_tsc_adjust-on-.patch
5887888f-credit2-fix-shutdown-suspend-with-cpupools.patch
5887888f-credit2-never-consider-CPUs-outside-of-pool.patch
5887888f-credit2-use-the-correct-scratch-cpumask.patch
5888b1b3-x86-emulate-dont-assume-addr_size-32-implies-protmode.patch
5899cbd9-EPT-allow-wrcomb-MMIO-mappings-again.patch
589b3272-libxl-dont-segfault-when-creating-domain-with-invalid-pvusb-device.patch
58a44771-IOMMU-always-call-teardown-callback.patch
58a48ccc-x86-fix-p2m_flush_table-for-non-nested.patch
58a59f4b-libxl-correct-xenstore-entry-for-empty-cdrom.patch
58a70d94-VMX-fix-VMCS-race-on-cswitch-paths.patch
58ac1f3f-VMX-dont-leak-host-syscall-MSRs.patch
58b5a2de-x86-correct-Xens-idea-of-its-memory-layout.patch
58b6fd42-credit2-always-mark-a-tickled-pCPU-as-tickled.patch
58b6fd42-credit2-dont-miss-accounting-during-credit-reset.patch
58cbf682-x86-EFI-avoid-overrunning-mb_modules.patch
58cf9200-x86-EFI-avoid-IOMMU-faults-on-tail-gap.patch
58cf9260-x86-EFI-avoid-Xen-when-looking-for-mod-kexec-pos.patch
58cf9277-x86-time-dont-use-vTSC-if-host-guest-freqs-match.patch
58d25ea2-xenstore-add-missing-checks-for-allocation-failure.patch
58d91365-sched-dont-call-wrong-hook-via-VCPU2OP.patch
CVE-2017-2615-qemut-display-cirrus-oob-access-while-doing-bitblt-copy-backward-mode.patch
CVE-2017-2620-xsa209-qemut-cirrus_bitblt_cputovideo-does-not-check-if-memory-region-safe.patch
glibc-2.25-compatibility-fix.patch
xs-09-add_change_node-params.patch
xs-10-call-add_change_node.patch
xs-11-tdb-record-header.patch
xs-12-node-gen-count.patch
xs-13-read-directory-part-support.patch
xs-14-command-array.patch
xs-15-command-return-val.patch
xs-16-function-static.patch
xs-17-arg-parsing.patch
xs-18-default-buffer.patch
xs-19-handle-alloc-failures.patch
xs-20-tdb-version.patch
xs-21-empty-tdb-database.patch
xs-22-reopen_log-fix.patch
xs-23-XS_DEBUG-rename.patch
xs-24-xenstored_control.patch
xs-25-control-enhance.patch
xs-26-log-control.patch
xs-27-memory-report.patch
xs-28-remove-talloc-report.patch
xs-29-define-off_t.patch
xsa206-0001-xenstored-apply-a-write-transaction-rate-limit.patch
xsa206-0002-xenstored-Log-when-the-write-transaction-rate-limit.patch�- bsc#1022703 - Xen HVM guest with OVMF hangs with unattached CDRom
58a59f4b-libxl-correct-xenstore-entry-for-empty-cdrom.patch�- bsc#1015348 - L3: libvirtd does not start during boot
suse-xendomains-service.patch�- bsc#1014136 - Partner-L3: kdump can't dump a kernel on SLES12-SP2
with Xen hypervisor.
58cf9260-x86-EFI-avoid-Xen-when-looking-for-mod-kexec-pos.patch
- bsc#1026236 - L3: Paravirtualized vs. fully virtualized migration
- latter one much faster
58cf9277-x86-time-dont-use-vTSC-if-host-guest-freqs-match.patch
- Upstream patch from Jan
58cbf682-x86-EFI-avoid-overrunning-mb_modules.patch
58cf9200-x86-EFI-avoid-IOMMU-faults-on-tail-gap.patch
58d91365-sched-dont-call-wrong-hook-via-VCPU2OP.patch�- bsc#1022555 - L3: Timeout in "execution of /etc/xen/scripts/block
add"
58d25ea2-xenstore-add-missing-checks-for-allocation-failure.patch
0001-xenstore-let-write_node-and-some-callers-return-errn.patch
0002-xenstore-undo-function-rename.patch
0003-xenstore-rework-of-transaction-handling.patch
- bsc#1030144 - VUL-0: xen: xenstore denial of service via repeated
update (XSA-206)
xsa206-0001-xenstored-apply-a-write-transaction-rate-limit.patch
xsa206-0002-xenstored-Log-when-the-write-transaction-rate-limit.patch
- bsc#1029827 - Forward port xenstored
xs-09-add_change_node-params.patch
xs-10-call-add_change_node.patch
xs-11-tdb-record-header.patch
xs-12-node-gen-count.patch
xs-13-read-directory-part-support.patch
xs-14-command-array.patch
xs-15-command-return-val.patch
xs-16-function-static.patch
xs-17-arg-parsing.patch
xs-18-default-buffer.patch
xs-19-handle-alloc-failures.patch
xs-20-tdb-version.patch
xs-21-empty-tdb-database.patch
xs-22-reopen_log-fix.patch
xs-23-XS_DEBUG-rename.patch
xs-24-xenstored_control.patch
xs-25-control-enhance.patch
xs-26-log-control.patch
xs-27-memory-report.patch
xs-28-remove-talloc-report.patch
xs-29-define-off_t.patch�- bsc#1029128 - fix make xen to really produce xen.efi with gcc48�- bsc#1028235 - VUL-0: CVE-2017-6505: xen: qemu: usb: an infinite
loop issue in ohci_service_ed_list
CVE-2017-6505-qemut-usb-an-infinite-loop-issue-in-ohci_service_ed_list.patch
- Upstream patches from Jan (bsc#1027519)
5887888f-credit2-fix-shutdown-suspend-with-cpupools.patch
5887888f-credit2-use-the-correct-scratch-cpumask.patch
5899cbd9-EPT-allow-wrcomb-MMIO-mappings-again.patch
589b3272-libxl-dont-segfault-when-creating-domain-with-invalid-pvusb-device.patch
58a44771-IOMMU-always-call-teardown-callback.patch
58a48ccc-x86-fix-p2m_flush_table-for-non-nested.patch
58a70d94-VMX-fix-VMCS-race-on-cswitch-paths.patch
58ac1f3f-VMX-dont-leak-host-syscall-MSRs.patch
58b5a2de-x86-correct-Xens-idea-of-its-memory-layout.patch
58b6fd42-credit2-always-mark-a-tickled-pCPU-as-tickled.patch
58b6fd42-credit2-dont-miss-accounting-during-credit-reset.patch�- bsc#1027654 - XEN fails to build against glibc 2.25
glibc-2.25-compatibility-fix.patch
libxl.pvscsi.patch�- fate#316613: Refresh and enable libxl.pvscsi.patch�- bsc#1024834 - VUL-0: CVE-2017-2620: xen: cirrus_bitblt_cputovideo
does not check if memory region is safe (XSA-209)
CVE-2017-2620-xsa209-qemut-cirrus_bitblt_cputovideo-does-not-check-if-memory-region-safe.patch�- bsc#1023948 - [pvusb][sles12sp3][openqa] Segmentation fault
happened when adding usbctrl devices via xl
589b3272-libxl-dont-segfault-when-creating-domain-with-invalid-pvusb-device.patch�- Upstream patches from Jan (bsc#1027519)
587d04d6-x86-xstate-fix-array-overrun-with-LWP.patch
587de4a9-x86emul-VEX-B-ignored-in-compat-mode.patch
5882129d-x86emul-LOCK-check-adjustments.patch
58821300-x86-segment-attribute-handling.patch
58873c1f-x86emul-correct-FPU-stub-asm-constraints.patch
58873c80-x86-hvm-do-not-set-msr_tsc_adjust-on-.patch
5887888f-credit2-use-the-correct-scratch-cpumask.patch
5887888f-credit2-never-consider-CPUs-outside-of-pool.patch
5887888f-credit2-fix-shutdown-suspend-with-cpupools.patch
5888b1b3-x86-emulate-dont-assume-addr_size-32-implies-protmode.patch�- bsc#1023004 - VUL-0: CVE-2017-2615: qemu: display: cirrus: oob
access while doing bitblt copy backward mode
CVE-2017-2615-qemut-display-cirrus-oob-access-while-doing-bitblt-copy-backward-mode.patch�- fate#322313 and fate#322150 require the acpica package ported to
aarch64 which Xen 4.8 needs to build. Temporarily disable aarch64
until these fates are complete.
xen.spec�- bsc#1021952 - Virutalization/xen: Bug xen-tools missing
/usr/bin/domu-xenstore; guests fail to launch
tmp_build.patch
xen.spec�- No systemd presets for 42.3+ and SLE12SP3+ (bsc#1012842)�- bsc#1007224 - broken symlinks in /usr/share/doc/packages/xen/misc/
xen.spec�- 585aa3c5-x86-force-EFLAGS-IF-on-upon-exit-to-PV.patch
Replaces xsa202.patch (bsc#1014298)
- 585aa407-x86-HVM-NULL-check-before-using-VMFUNC-hook.patch
Replaces xsa203.patch (bsc#1014300)
- 58580060-x86-emul-correct-SYSCALL-eflags-handling.patch
Replaces xsa204.patch (bsc#1016340)
- Upstream patches from Jan
58526ccc-x86emul-64bit-ignore-most-segment-bases-in-align-check.patch
5853ed37-VT-d-correct-dma_msi_set_affinity.patch
5853ee07-x86emul-CMPXCHG16B-aligned-operand.patch
585bd5fe-x86-emul-correct-VMFUNC-return-value-handling.patch
586ba81c-x86-cpu-dont-update-this_cpu-for-guest-get_cpu_vendor.patch�- bsc#1015169 - VUL-0: CVE-2016-9921, CVE-2016-9922: xen: qemu:
display: cirrus_vga: a divide by zero in cirrus_do_copy
CVE-2016-9921-qemut-display-cirrus_vga-divide-by-zero-in-cirrus_do_copy.patch�- bsc#1016340 - VUL-0: CVE-2016-10013: xen: x86: Mishandling of
SYSCALL singlestep during emulation (XSA-204)
xsa204.patch�- bsc#1012651 - VUL-0: CVE-2016-9932: xen: x86 CMPXCHG8B emulation
fails to ignore operand size override (XSA-200)
58510c06-x86emul-CMPXCHGnB-ignore-prefixes.patch�- bsc#1014298 - VUL-0: CVE-2016-10024: xen: x86 PV guests may be
able to mask interrupts (XSA-202)
xsa202.patch
- bsc#1014300 - VUL-0: CVE-2016-10025: xen: x86: missing NULL
pointer check in VMFUNC emulation (XSA-203)
xsa203.patch
- Upstream patches from Jan
584806ce-x86emul-correct-PUSHF-POPF.patch
584fc649-fix-determining-when-domain-creation-is-complete.patch
58510c06-x86emul-CMPXCHGnB-ignore-prefixes.patch
58510cac-x86emul-MOVNTI-no-REP-prefixes.patch�- Update to Xen 4.8 FCS
xen-4.8.0-testing-src.tar.bz2
- Dropped
xen-4.7.1-testing-src.tar.bz2
0001-libxc-Rework-extra-module-initialisation.patch
0002-libxc-Prepare-a-start-info-structure-for-hvmloader.patch
0003-configure-define-SEABIOS_PATH-and-OVMF_PATH.patch
0004-firmware-makefile-install-BIOS-blob.patch
0005-libxl-Load-guest-BIOS-from-file.patch
0006-xen-Move-the-hvm_start_info-C-representation-from-li.patch
0007-hvmloader-Grab-the-hvm_start_info-pointer.patch
0008-hvmloader-Locate-the-BIOS-blob.patch
0009-hvmloader-Check-modules-whereabouts-in-perform_tests.patch
0010-hvmloader-Load-SeaBIOS-from-hvm_start_info-modules.patch
0011-hvmloader-Load-OVMF-from-modules.patch
0012-hvmloader-Specific-bios_load-function-required.patch
0013-hvmloader-Always-build-in-SeaBIOS-and-OVMF-loader.patch
0014-configure-do-not-depend-on-SEABIOS_PATH-or-OVMF_PATH.patch
57580bbd-kexec-allow-relaxed-placement-via-cmdline.patch
576001df-x86-time-use-local-stamp-in-TSC-calibration-fast-path.patch
5769106e-x86-generate-assembler-equates-for-synthesized.patch
57a1e603-x86-time-adjust-local-system-time-initialization.patch
57a1e64c-x86-time-introduce-and-use-rdtsc_ordered.patch
57a2f6ac-x86-time-calibrate-TSC-against-platform-timer.patch
57a30261-x86-support-newer-Intel-CPU-models.patch
5810a9cc-x86-emul-Correct-decoding-of-SReg3-operands.patch
581b2c3b-x86-emul-reject-LGDT-LIDT-with-non-canonical-addresses.patch
581b647a-x86emul-L-S-G-I-DT-ignore-opsz-overrides-in-64-bit-mode.patch
58249392-x86-svm-dont-clobber-eax-edx-if-RDMSR-intercept-fails.patch
582c35d6-x86-vmx-correct-long-mode-check-in-vmx_cpuid_intercept.patch
582c35ee-x86-traps-dont-call-hvm_hypervisor_cpuid_leaf-for-PV.patch
58343dc2-x86-hvm-Fix-the-handling-of-non-present-segments.patch
58343df8-x86-HVM-dont-load-LDTR-with-VM86-mode-attrs-during-task-switch.patch
58343e24-x86-PV-writes-of-fs-and-gs-base-MSRs-require-canonical-addresses.patch
58343e9e-libelf-fix-stack-memory-leak-when-loading-32-bit-symbol-tables.patch
58343ec2-x86emul-fix-huge-bit-offset-handling.patch
58343f29-x86-emul-correct-the-IDT-entry-calculation-in-inject_swint.patch
58343f44-x86-svm-fix-injection-of-software-interrupts.patch
58343f79-pygrub-Properly-quote-results-when-returning-them-to-the-caller.patch
CVE-2016-9381-xsa197-qemut.patch
CVE-2016-9637-xsa199-qemut.patch�- bsc#1011652 - VUL-0: xen: qemu ioport array overflow
CVE-2016-9637-xsa199-qemut.patch�- bsc#1009100 - VUL-0: CVE-2016-9386: XSA-191: xen: x86 null
segments not always treated as unusable
58343dc2-x86-hvm-Fix-the-handling-of-non-present-segments.patch
- bsc#1009103 - VUL-0: CVE-2016-9382: XSA-192: xen: x86 task switch
to VM86 mode mis-handled
58343df8-x86-HVM-dont-load-LDTR-with-VM86-mode-attrs-during-task-switch.patch
- bsc#1009104 - VUL-0: CVE-2016-9385: XSA-193: xen: x86 segment base
write emulation lacking canonical address checks
58343e24-x86-PV-writes-of-fs-and-gs-base-MSRs-require-canonical-addresses.patch
- bsc#1009105 - VUL-0: CVE-2016-9384: XSA-194: xen: guest 32-bit
ELF symbol table load leaking host data
58343e9e-libelf-fix-stack-memory-leak-when-loading-32-bit-symbol-tables.patch
- bsc#1009107 - VUL-0: CVE-2016-9383: XSA-195: xen: x86 64-bit bit
test instruction emulation broken
58343ec2-x86emul-fix-huge-bit-offset-handling.patch
- bsc#1009108 - VUL-0: CVE-2016-9377,CVE-2016-9378: XSA-196: xen:
x86 software interrupt injection mis-handled
58343f29-x86-emul-correct-the-IDT-entry-calculation-in-inject_swint.patch
58343f44-x86-svm-fix-injection-of-software-interrupts.patch
- bsc#1009109 - VUL-0: CVE-2016-9381: XSA-197: xen: qemu incautious
about shared ring processing
CVE-2016-9381-xsa197-qemut.patch
- bsc#1009111 - VUL-0: CVE-2016-9379,CVE-2016-9380: XSA-198: xen:
delimiter injection vulnerabilities in pygrub
58343f79-pygrub-Properly-quote-results-when-returning-them-to-the-caller.patch
- Upstream patches from Jan
581b2c3b-x86-emul-reject-LGDT-LIDT-with-non-canonical-addresses.patch
581b647a-x86emul-L-S-G-I-DT-ignore-opsz-overrides-in-64-bit-mode.patch
58249392-x86-svm-dont-clobber-eax-edx-if-RDMSR-intercept-fails.patch
582c35d6-x86-vmx-correct-long-mode-check-in-vmx_cpuid_intercept.patch
582c35ee-x86-traps-dont-call-hvm_hypervisor_cpuid_leaf-for-PV.patch�- Update to Xen Version 4.7.1
xen-4.7.1-testing-src.tar.bz2
- Dropped patches contained in new tarball
xen-4.7.0-testing-src.tar.bz2
575e9ca0-nested-vmx-Validate-host-VMX-MSRs-before-accessing-them.patch
57640448-xen-sched-use-default-scheduler-upon-an-invalid-sched.patch
57973099-have-schedulers-revise-initial-placement.patch
579730e6-remove-buggy-initial-placement-algorithm.patch
57976073-x86-remove-unsafe-bits-from-mod_lN_entry-fastpath.patch
57976078-x86-avoid-SMAP-violation-in-compat_create_bounce_frame.patch
57ac6316-don-t-restrict-DMA-heap-to-node-0.patch
57b71fc5-x86-EFI-don-t-apply-relocations-to-l-2-3-_bootmap.patch
57b7447b-dont-permit-guest-to-populate-PoD-pages-for-itself.patch
57c4412b-x86-HVM-add-guarding-logic-for-VMX-specific-code.patch
57c57f73-libxc-correct-max_pfn-calculation-for-saving-domain.patch
57c805bf-x86-levelling-restrict-non-architectural-OSXSAVE-handling.patch
57c805c1-x86-levelling-pass-vcpu-to-ctxt_switch_levelling.patch
57c805c3-x86-levelling-provide-architectural-OSXSAVE-handling.patch
57c82be2-x86-32on64-adjust-call-gate-emulation.patch
57c93e52-fix-error-in-libxl_device_usbdev_list.patch
57c96df3-credit1-fix-a-race-when-picking-initial-pCPU.patch
57c96e2c-x86-correct-PT_NOTE-file-position.patch
57cfed43-VMX-correct-feature-checks-for-MPX-and-XSAVES.patch
57d1563d-x86-32on64-don-t-allow-recursive-page-tables-from-L3.patch
57d15679-x86-emulate-Correct-boundary-interactions-of-emulated-insns.patch
57d1569a-x86-shadow-Avoid-overflowing-sh_ctxt-seg_reg.patch
57d18642-hvm-fep-Allow-test-insns-crossing-1-0-boundary.patch
57d18642-x86-segment-Bounds-check-accesses-to-emulation-ctxt-seg_reg.patch
57d7ca5f-x86-domctl-fix-TOCTOU-race-in-XEN_DOMCTL_getvcpuextstate.patch
57d7ca64-x86-domctl-fix-migration-of-guests-not-using-xsave.patch
57da8883-credit1-fix-mask-to-be-used-for-tickling.patch
57da8883-credit2-properly-schedule-migration-of-running-vcpu.patch
57dfb1c5-x86-Intel-hide-CPUID-faulting-capability-from-guests.patch
57e93e1d-x86emul-correct-loading-of-ss.patch
57e93e4a-x86emul-don-t-allow-null-selector-for-LTR.patch
57e93e89-x86-AMD-apply-erratum-665-workaround.patch
57ee6cbc-credit1-return-time-remaining-to-limit-as-next-timeslice.patch
57f3a8ee-x86emul-honor-guest-CR0-TS-and-CR0-EM.patch
57fb6a91-x86-defer-not-present-segment-checks.patch
5800c51d-x86-hvm-Clobber-cs-L-when-LME-becomes-set.patch
5800caec-x86emul-fix-pushing-of-selector-registers.patch
5800cb06-x86-Viridian-don-t-depend-on-undefined-register-state.patch
580e29f9-x86-MISALIGNSSE-feature-depends-on-SSE.patch
57dfb2ff-x86-Intel-Broadwell-no-PKG_C8-10_RESIDENCY-MSRs.patch�- bsc#1004981 - Xen RPM doesn't contain debug hypervisor for EFI
systems
xen.spec�- bsc#1000106 - VUL-0: CVE-2016-7777: xen: CR0.TS and CR0.EM not
always honored for x86 HVM guests (XSA-190)
57f3a8ee-x86emul-honor-guest-CR0-TS-and-CR0-EM.patch
- bsc#996191 - [XEN][acpi]residency -n 88 -c will cause xen panic
on broadwell-ep
57dfb2ff-x86-Intel-Broadwell-no-PKG_C8-10_RESIDENCY-MSRs.patch
- Upstream patches from Jan
57d7ca5f-x86-domctl-fix-TOCTOU-race-in-XEN_DOMCTL_getvcpuextstate.patch
57d7ca64-x86-domctl-fix-migration-of-guests-not-using-xsave.patch
57da8883-credit1-fix-mask-to-be-used-for-tickling.patch
57da8883-credit2-properly-schedule-migration-of-running-vcpu.patch
57dfb1c5-x86-Intel-hide-CPUID-faulting-capability-from-guests.patch
57e93e1d-x86emul-correct-loading-of-ss.patch
57e93e4a-x86emul-don-t-allow-null-selector-for-LTR.patch
57e93e89-x86-AMD-apply-erratum-665-workaround.patch
57ee6cbc-credit1-return-time-remaining-to-limit-as-next-timeslice.patch
57fb6a91-x86-defer-not-present-segment-checks.patch
5800c51d-x86-hvm-Clobber-cs-L-when-LME-becomes-set.patch
5800caec-x86emul-fix-pushing-of-selector-registers.patch
5800cb06-x86-Viridian-don-t-depend-on-undefined-register-state.patch
580e29f9-x86-MISALIGNSSE-feature-depends-on-SSE.patch
5810a9cc-x86-emul-Correct-decoding-of-SReg3-operands.patch�- bsc#1007941 - Xen tools limit the number of vcpus to 256 when the
system has 384
xen-arch-kconfig-nr_cpus.patch�- bsc#1007157 - VUL-0: CVE-2016-8910: xen: net: rtl8139: infinite
loop while transmit in C+ mode
CVE-2016-8910-qemut-net-rtl8139-infinite-loop-while-transmit-in-Cplus-mode.patch�- bsc#1005004 - CVE-2016-8667: xen: dma: rc4030 divide by zero
error in set_next_tick
CVE-2016-8667-qemut-dma-rc4030-divide-by-zero-error-in-set_next_tick.patch
- bsc#1005005 - VUL-0: CVE-2016-8669: xen: char: divide by zero
error in serial_update_parameters
CVE-2016-8669-qemut-char-divide-by-zero-error-in-serial_update_parameters.patch�- bsc#1003030 - VUL-0: CVE-2016-7908: xen: net: Infinite loop in
mcf_fec_do_tx
CVE-2016-7908-qemut-net-Infinite-loop-in-mcf_fec_do_tx.patch
- bsc#1003032 - VUL-0: CVE-2016-7909: xen: net: pcnet: infinite
loop in pcnet_rdra_addr
CVE-2016-7909-qemut-net-pcnet-infinite-loop-in-pcnet_rdra_addr.patch�- bsc#995785 - VUL-0: CVE-2016-7092: xen: x86: Disallow L3
recursive pagetable for 32-bit PV guests (XSA-185)
57d1563d-x86-32on64-don-t-allow-recursive-page-tables-from-L3.patch
- bsc#995789 - VUL-0: CVE-2016-7093: xen: x86: Mishandling of
instruction pointer truncation during emulation (XSA-186)
57d15679-x86-emulate-Correct-boundary-interactions-of-emulated-insns.patch
57d18642-hvm-fep-Allow-test-insns-crossing-1-0-boundary.patch
- bsc#995792 - VUL-0: CVE-2016-7094: xen: x86 HVM: Overflow of
sh_ctxt->seg_reg[] (XSA-187)
57d1569a-x86-shadow-Avoid-overflowing-sh_ctxt-seg_reg.patch
57d18642-x86-segment-Bounds-check-accesses-to-emulation-ctxt-seg_reg.patch
- bsc#991934 - xen hypervisor crash in csched_acct
57c96df3-credit1-fix-a-race-when-picking-initial-pCPU.patch
- Upstream patches from Jan
57c4412b-x86-HVM-add-guarding-logic-for-VMX-specific-code.patch
57c57f73-libxc-correct-max_pfn-calculation-for-saving-domain.patch
57c805bf-x86-levelling-restrict-non-architectural-OSXSAVE-handling.patch
57c805c1-x86-levelling-pass-vcpu-to-ctxt_switch_levelling.patch
57c805c3-x86-levelling-provide-architectural-OSXSAVE-handling.patch
57c82be2-x86-32on64-adjust-call-gate-emulation.patch
57c96e2c-x86-correct-PT_NOTE-file-position.patch
57cfed43-VMX-correct-feature-checks-for-MPX-and-XSAVES.patch�- bsc#979002 - add 60-persistent-xvd.rules and helper script
also to initrd, add the relevant dracut helper�- bnc#953518 - unplug also SCSI disks in qemu-xen-traditional for
upstream unplug protocol�- bsc#989679 - [pvusb feature] USB device not found when
'virsh detach-device guest usb.xml'
57c93e52-fix-error-in-libxl_device_usbdev_list.patch�- bsc#992224 - [HPS Bug] During boot of Xen Hypervisor, Failed to
get contiguous memory for DMA from Xen
57ac6316-don-t-restrict-DMA-heap-to-node-0.patch
- bsc#978755 - xen uefi systems fail to boot
- bsc#983697 - SLES12 SP2 Xen UEFI mode cannot boot
57b71fc5-x86-EFI-don-t-apply-relocations-to-l-2-3-_bootmap.patch
- Upstream patch from Jan
57b7447b-dont-permit-guest-to-populate-PoD-pages-for-itself.patch�- spec: to stay compatible with the in-tree qemu-xen binary, use
/usr/bin/qemu-system-i386 instead of /usr/bin/qemu-system-x86_64
bsc#986164�- bsc#970135 - new virtualization project clock test randomly fails
on Xen
576001df-x86-time-use-local-stamp-in-TSC-calibration-fast-path.patch
5769106e-x86-generate-assembler-equates-for-synthesized.patch
57a1e603-x86-time-adjust-local-system-time-initialization.patch
57a1e64c-x86-time-introduce-and-use-rdtsc_ordered.patch
57a2f6ac-x86-time-calibrate-TSC-against-platform-timer.patch
- bsc#991934 - xen hypervisor crash in csched_acct
57973099-have-schedulers-revise-initial-placement.patch
579730e6-remove-buggy-initial-placement-algorithm.patch
- bsc#988675 - VUL-0: CVE-2016-6258: xen: x86: Privilege escalation
in PV guests (XSA-182)
57976073-x86-remove-unsafe-bits-from-mod_lN_entry-fastpath.patch
- bsc#988676 - VUL-0: CVE-2016-6259: xen: x86: Missing SMAP
whitelisting in 32-bit exception / event delivery (XSA-183)
57976078-x86-avoid-SMAP-violation-in-compat_create_bounce_frame.patch
- Upstream patches from Jan
57a30261-x86-support-newer-Intel-CPU-models.patch�- bsc#985503 - vif-route broken
vif-route.patch�- bsc#978413 - PV guest upgrade from sles11sp4 to sles12sp2 alpha3
failed on sles11sp4 xen host.
pygrub-handle-one-line-menu-entries.patch�- bsc#990843 - VUL-1: CVE-2016-6351: xen: qemu: scsi: esp: OOB
write access in esp_do_dma
CVE-2016-6351-qemut-scsi-esp-make-cmdbuf-big-enough-for-maximum-CDB-size.patch�- bsc#900418 - Dump cannot be performed on SLES12 XEN
57580bbd-kexec-allow-relaxed-placement-via-cmdline.patch
- Upstream patches from Jan
575e9ca0-nested-vmx-Validate-host-VMX-MSRs-before-accessing-them.patch
57640448-xen-sched-use-default-scheduler-upon-an-invalid-sched.patch�- fate#319989 - Update to Xen 4.7 FCS
xen-4.7.0-testing-src.tar.bz2
- Drop CVE-2014-3672-qemut-xsa180.patch�- bsc#954872 - script block-dmmd not working as expected - libxl:
error: libxl_dm.c (Additional fixes)
block-dmmd�- Convert with_stubdom into build_conditional to allow adjusting
via prjconf
- Convert with_debug into build_conditional to allow adjusting
via prjconf�- bsc#979002 - add 60-persistent-xvd.rules and helper script to
xen-tools-domU to simplify transition to pvops based kernels�- Convert with_oxenstored into build_conditional to allow
adjusting via prjconf (fate#320836)�- bsc#983984 - VUL-0: CVE-2016-5338: xen: qemu: scsi: esp: OOB r/w
access while processing ESP_FIFO
CVE-2016-5338-qemut-scsi-esp-OOB-rw-access-while-processing-ESP_FIFO.patch
- bsc#982960 - VUL-0: CVE-2016-5238: xen: qemu: scsi: esp: OOB
write when using non-DMA mode in get_cmd
CVE-2016-5238-qemut-scsi-esp-OOB-write-when-using-non-DMA-mode-in-get_cmd.patch�- fate#319989 - Update to Xen 4.7 RC5
xen-4.7.0-testing-src.tar.bz2�- fate#319989 - Update to Xen 4.7 RC4
xen-4.7.0-testing-src.tar.bz2
- Dropped
xen.pkgconfig-4.7.patch
xsa164.patch�- bsc#981264 - VUL-0: CVE-2014-3672: xen: Unrestricted qemu logging
(XSA-180)
CVE-2014-3672-qemut-xsa180.patch�- bsc#980724 - VUL-0: CVE-2016-4441: Qemu: scsi: esp: OOB write
while writing to 's->cmdbuf' in get_cmd
CVE-2016-4441-qemut-scsi-esp-OOB-write-while-writing-to-cmdbuf-in-get_cmd.patch
- bsc#980716 - VUL-0: CVE-2016-4439: xen: scsi: esp: OOB write
while writing to 's->cmdbuf' in esp_reg_write
CVE-2016-4439-qemut-scsi-esp-OOB-write-while-writing-to-cmdbuf-in-esp_reg_write.patch�- fate#319989 - Update to Xen 4.7 RC3
xen-4.7.0-testing-src.tar.bz2
- Dropped
libxl-remove-cdrom-cachemode.patch
x86-PoD-only-reclaim-if-needed.patch
gcc6-warnings-as-errors.patch�- bsc#954872 - script block-dmmd not working as expected - libxl:
error: libxl_dm.c (another modification)
block-dmmd�- fate#319989 - Update to Xen 4.7 RC2
xen-4.7.0-testing-src.tar.bz2�- bsc#961600 - L3: poor performance when Xen HVM domU configured
with max memory > current memory
x86-PoD-only-reclaim-if-needed.patch�- Mark SONAMEs and pkgconfig as xen 4.7
xen.pkgconfig-4.7.patch�- bsc#977329 - Xen: Cannot boot HVM guests with empty cdrom
libxl-remove-cdrom-cachemode.patch�- fate#319989 - Update to Xen 4.7 RC1
xen-4.7.0-testing-src.tar.bz2�- fate#316614: set migration constraints from cmdline
restore libxl.set-migration-constraints-from-cmdline.patch�- Remove obsolete patch for xen-kmp
magic_ioport_compat.patch�- fate#316613: update to v12
libxl.pvscsi.patch�- Update to the latest Xen 4.7 pre-release c2994f86
Drop libxl.migrate-legacy-stream-read.patch�- bnc#972756 - Can't migrate HVM guest from SLES12SP1 Xen host
to SLES12SP2 Alpha 1 host using xl migrate
libxl.migrate-legacy-stream-read.patch�- Add patches from proposed upstream series to load BIOS's from
the toolstack instead of embedding in hvmloader
http://lists.xenproject.org/archives/html/xen-devel/2016-03/msg01626.html
0001-libxc-Rework-extra-module-initialisation.patch,
0002-libxc-Prepare-a-start-info-structure-for-hvmloader.patch,
0003-configure-define-SEABIOS_PATH-and-OVMF_PATH.patch,
0004-firmware-makefile-install-BIOS-blob.patch,
0005-libxl-Load-guest-BIOS-from-file.patch,
0006-xen-Move-the-hvm_start_info-C-representation-from-li.patch,
0007-hvmloader-Grab-the-hvm_start_info-pointer.patch,
0008-hvmloader-Locate-the-BIOS-blob.patch,
0009-hvmloader-Check-modules-whereabouts-in-perform_tests.patch,
0010-hvmloader-Load-SeaBIOS-from-hvm_start_info-modules.patch,
0011-hvmloader-Load-OVMF-from-modules.patch,
0012-hvmloader-Specific-bios_load-function-required.patch,
0013-hvmloader-Always-build-in-SeaBIOS-and-OVMF-loader.patch,
0014-configure-do-not-depend-on-SEABIOS_PATH-or-OVMF_PATH.patch
- Enable support for UEFI on x86_64 using the ovmf-x86_64-ms.bin
firmware from qemu-ovmf-x86_64. The firmware is preloaded with
Microsoft keys to more closely resemble firmware on real hardware
FATE#320490�- fate#319989: Update to Xen 4.7 (pre-release)
xen-4.7.0-testing-src.tar.bz2
- Dropped:
xen-4.6.1-testing-src.tar.bz2
55f7f9d2-libxl-slightly-refine-pci-assignable-add-remove-handling.patch
5628fc67-libxl-No-emulated-disk-driver-for-xvdX-disk.patch
5644b756-x86-HVM-don-t-inject-DB-with-error-code.patch
5649bcbe-libxl-relax-readonly-check-introduced-by-XSA-142-fix.patch
hotplug-Linux-block-performance-fix.patch
set-mtu-from-bridge-for-tap-interface.patch
xendomains-libvirtd-conflict.patch
xsa154.patch
xsa155-xen-0001-xen-Add-RING_COPY_REQUEST.patch
xsa155-xen-0002-blktap2-Use-RING_COPY_REQUEST.patch
xsa155-xen-0003-libvchan-Read-prod-cons-only-once.patch
xsa170.patch�- Use system SeaBIOS instead of building/installing another one
FATE#320638
Dropped files:
seabios-dir-remote.tar.bz2
xen-c99-fix.patch
xen.build-compare.seabios.patch�- spec: drop BuildRequires that were only needed for qemu-xen�- bsc#969377 - xen does not build with GCC 6
ipxe-use-rpm-opt-flags.patch
gcc6-warnings-as-errors.patch�- bsc#969351 - VUL-0: CVE-2016-2841: xen: net: ne2000: infinite
loop in ne2000_receive
CVE-2016-2841-qemut-ne2000-infinite-loop-in-ne2000_receive.patch
- Drop xsa154-fix.patch�- Use system qemu instead of building/installing yet another qemu
FATE#320638
- Dropped files
qemu-xen-dir-remote.tar.bz2
CVE-2014-0222-qemuu-qcow1-validate-l2-table-size.patch
CVE-2015-1779-qemuu-incrementally-decode-websocket-frames.patch
CVE-2015-1779-qemuu-limit-size-of-HTTP-headers-from-websockets-clients.patch
CVE-2015-4037-qemuu-smb-config-dir-name.patch
CVE-2015-7512-qemuu-net-pcnet-buffer-overflow-in-non-loopback-mode.patch
CVE-2015-7549-qemuu-pci-null-pointer-dereference-issue.patch
CVE-2015-8345-qemuu-eepro100-infinite-loop-fix.patch
CVE-2015-8504-qemuu-vnc-avoid-floating-point-exception.patch
CVE-2015-8558-qemuu-usb-infinite-loop-in-ehci_advance_state-results-in-DoS.patch
CVE-2015-8568-qemuu-net-vmxnet3-avoid-memory-leakage-in-activate_device.patch
CVE-2015-8613-qemuu-scsi-initialise-info-object-with-appropriate-size.patch
CVE-2015-8743-qemuu-ne2000-OOB-memory-access-in-ioport-rw-functions.patch
CVE-2015-8744-qemuu-net-vmxnet3-incorrect-l2-header-validation-leads-to-crash.patch
CVE-2015-8745-qemuu-net-vmxnet3-read-IMR-registers-instead-of-assert.patch
CVE-2016-1568-qemuu-ide-ahci-reset-ncq-object-to-unused-on-error.patch
CVE-2016-1714-qemuu-fw_cfg-add-check-to-validate-current-entry-value.patch
CVE-2014-7815-qemut-vnc-sanitize-bits_per_pixel-from-the-client.patch
CVE-2016-1981-qemuu-e1000-eliminate-infinite-loops-on-out-of-bounds-transfer.patch
CVE-2016-2538-qemuu-usb-integer-overflow-in-remote-NDIS-message-handling.patch
CVE-2015-8619-qemuu-stack-based-OOB-write-in-hmp_sendkey-routine.patch
qemu-xen-enable-spice-support.patch
qemu-xen-upstream-qdisk-cache-unsafe.patch
tigervnc-long-press.patch
xsa162-qemuu.patch�- bsc#962321 - VUL-0: CVE-2016-1922: xen: i386: null pointer
dereference in vapic_write()
CVE-2016-1922-qemuu-i386-null-pointer-dereference-in-vapic_write.patch�- bsc#968004 - VUL-0: CVE-2016-2538: xen: usb: integer overflow in
remote NDIS control message handling
CVE-2016-2538-qemuu-usb-integer-overflow-in-remote-NDIS-message-handling.patch�- bsc#954872 - L3: script block-dmmd not working as expected -
libxl: error: libxl_dm.c
block-dmmd
- Update libxl to recognize dmmd and npiv prefix in disk spec
xen.libxl.dmmd.patch�- bsc#967101 - VUL-0: CVE-2016-2391: xen: usb: multiple eof_timers
in ohci module leads to null pointer dereference
CVE-2016-2391-qemuu-usb-null-pointer-dereference-in-ohci-module.patch
CVE-2016-2391-qemut-usb-null-pointer-dereference-in-ohci-module.patch
- bsc#967090 - VUL-0: CVE-2016-2392: xen: usb: null pointer
dereference in remote NDIS control message handling
CVE-2016-2392-qemuu-usb-null-pointer-dereference-in-NDIS-message-handling.patch�- Update to Xen Version 4.6.1
xen-4.6.1-testing-src.tar.bz2
- Dropped patches now contained in tarball or unnecessary
xen-4.6.0-testing-src.tar.bz2
5604f239-x86-PV-properly-populate-descriptor-tables.patch
561bbc8b-VT-d-don-t-suppress-invalidation-address-write-when-it-is-zero.patch
561d2046-VT-d-use-proper-error-codes-in-iommu_enable_x2apic_IR.patch
561d20a0-x86-hide-MWAITX-from-PV-domains.patch
561e3283-x86-NUMA-fix-SRAT-table-processor-entry-parsing-and-consumption.patch
5632118e-arm-Support-hypercall_create_continuation-for-multicall.patch
56321222-arm-rate-limit-logging-from-unimplemented-PHYSDEVOP-and-HVMOP.patch
56321249-arm-handle-races-between-relinquish_memory-and-free_domheap_pages.patch
5632127b-x86-guard-against-undue-super-page-PTE-creation.patch
5632129c-free-domain-s-vcpu-array.patch
563212c9-x86-PoD-Eager-sweep-for-zeroed-pages.patch
563212e4-xenoprof-free-domain-s-vcpu-array.patch
563212ff-x86-rate-limit-logging-in-do_xen-oprof-pmu-_op.patch
56323737-libxl-adjust-PoD-target-by-memory-fudge-too.patch
56377442-x86-PoD-Make-p2m_pod_empty_cache-restartable.patch
5641ceec-x86-HVM-always-intercept-AC-and-DB.patch
56549f24-x86-vPMU-document-as-unsupported.patch
5677f350-x86-make-debug-output-consistent-in-hvm_set_callback_via.patch
xsa155-qemut-qdisk-double-access.patch
xsa155-qemut-xenfb.patch
xsa155-qemuu-qdisk-double-access.patch
xsa155-qemuu-xenfb.patch
xsa159.patch
xsa160.patch
xsa162-qemut.patch
xsa165.patch
xsa166.patch
xsa167.patch
xsa168.patch�- bsc#965315 - VUL-0: CVE-2016-2270: xen: x86: inconsistent
cachability flags on guest mappings (XSA-154)
xsa154.patch
- bsc#965317 - VUL-0: CVE-2016-2271: xen: VMX: guest user mode may
crash guest with non-canonical RIP (XSA-170)
xsa170.patch�- bsc#965269 - VUL-1: CVE-2015-8619: xen: stack based OOB write in
hmp_sendkey routine
CVE-2015-8619-qemuu-stack-based-OOB-write-in-hmp_sendkey-routine.patch�- bsc#965156 - VUL-0: CVE-2015-6855: xen: ide: divide by zero issue
CVE-2015-6855-qemuu-ide-divide-by-zero-issue.patch
- bsc#965112 - VUL-0: CVE-2014-3640: xen: slirp: NULL pointer deref
in sosendto()
CVE-2014-3640-qemut-slirp-NULL-pointer-deref-in-sosendto.patch�- bsc#964947 - VUL-0: CVE-2015-5278: xen: Infinite loop in
ne2000_receive() function
CVE-2015-5278-qemut-Infinite-loop-in-ne2000_receive-function.patch
- bsc#956832 - VUL-0: CVE-2015-8345: xen: qemu: net: eepro100:
infinite loop in processing command block list
CVE-2015-8345-qemuu-eepro100-infinite-loop-fix.patch
CVE-2015-8345-qemut-eepro100-infinite-loop-fix.patch�- bsc#964644 - VUL-0: CVE-2013-4533: xen pxa2xx: buffer overrun on
incoming migration
CVE-2013-4533-qemut-pxa2xx-buffer-overrun-on-incoming-migration.patch
- bsc#964925 - VUL-0: CVE-2014-0222: xen: qcow1: validate L2 table
size to avoid integer overflows
CVE-2014-0222-blktap-qcow1-validate-l2-table-size.patch
- Dropped CVE-2014-0222-qemuu-qcow1-validate-l2-table-size.patch�- bsc#964415 - VUL-1: CVE-2016-2198: xen: usb: ehci null pointer
dereference in ehci_caps_write
CVE-2016-2198-qemuu-usb-ehci-null-pointer-dereference-in-ehci_caps_write.patch
- bsc#964452 - VUL-0: CVE-2013-4534: xen: openpic: buffer overrun
on incoming migration
CVE-2013-4534-qemut-openpic-buffer-overrun-on-incoming-migration.patch�- bsc#963783 - VUL-1: CVE-2016-1981: xen: net: e1000 infinite loop
in start_xmit and e1000_receive_iov routines
CVE-2016-1981-qemuu-e1000-eliminate-infinite-loops-on-out-of-bounds-transfer.patch
CVE-2016-1981-qemut-e1000-eliminate-infinite-loops-on-out-of-bounds-transfer.patch�- bsc#962758 - VUL-0: CVE-2013-4539: xen: tsc210x: buffer overrun
on invalid state load
CVE-2013-4539-qemut-tsc210x-fix-buffer-overrun-on-invalid-state-load.patch�- bsc#962632 - VUL-0: CVE-2015-1779: xen: vnc: insufficient
resource limiting in VNC websockets decoder
CVE-2015-1779-qemuu-limit-size-of-HTTP-headers-from-websockets-clients.patch
CVE-2015-1779-qemuu-incrementally-decode-websocket-frames.patch
- bsc#962642 - VUL-0: CVE-2013-4537: xen: ssi-sd: buffer overrun on
invalid state load
CVE-2013-4537-qemut-ssi-sd-fix-buffer-overrun-on-invalid-state-load.patch
- bsc#962627 - VUL-0: CVE-2014-7815: xen: vnc: insufficient
bits_per_pixel from the client sanitization
CVE-2014-7815-qemut-vnc-sanitize-bits_per_pixel-from-the-client.patch�- bsc#962335 - VUL-0: CVE-2013-4538: xen: ssd0323: fix buffer
overun on invalid state
CVE-2013-4538-qemut-ssd0323-fix-buffer-overun-on-invalid-state.patch
- bsc#962360 - VUL-0: CVE-2015-7512: xen: net: pcnet: buffer
overflow in non-loopback mode
CVE-2015-7512-qemuu-net-pcnet-buffer-overflow-in-non-loopback-mode.patch
CVE-2015-7512-qemut-net-pcnet-buffer-overflow-in-non-loopback-mode.patch�- bsc#961692 - VUL-0: CVE-2016-1714: xen: nvram: OOB r/w access in
processing firmware configurations
CVE-2016-1714-qemuu-fw_cfg-add-check-to-validate-current-entry-value.patch
CVE-2016-1714-qemut-fw_cfg-add-check-to-validate-current-entry-value.patch�- bsc#961358 - VUL-0: CVE-2015-8613: xen: qemu: scsi: stack based
buffer overflow in megasas_ctrl_get_info
CVE-2015-8613-qemuu-scsi-initialise-info-object-with-appropriate-size.patch
- bsc#961332 - VUL-0: CVE-2016-1568: xen: Qemu: ide: ahci
use-after-free vulnerability in aio port commands
CVE-2016-1568-qemuu-ide-ahci-reset-ncq-object-to-unused-on-error.patch�- bsc#959695 - missing docs for xen
xen.spec�- bsc#960862 - VUL-0: CVE-2016-1571: xen: VMX: intercept issue with
INVLPG on non-canonical address (XSA-168)
xsa168.patch
- bsc#960861 - VUL-0: CVE-2016-1570: xen: PV superpage
functionality missing sanity checks (XSA-167)
xsa167.patch
- bsc#960836 - VUL-0: CVE-2015-8744: xen: net: vmxnet3: incorrect
l2 header validation leads to a crash via assert(2) call
CVE-2015-8744-qemuu-net-vmxnet3-incorrect-l2-header-validation-leads-to-crash.patch�- bsc#960707 - VUL-0: CVE-2015-8745: xen: reading IMR registers
leads to a crash via assert(2) call
CVE-2015-8745-qemuu-net-vmxnet3-read-IMR-registers-instead-of-assert.patch
- bsc#960726 - VUL-0: CVE-2015-8743: xen: ne2000: OOB memory access
in ioport r/w functions
CVE-2015-8743-qemuu-ne2000-OOB-memory-access-in-ioport-rw-functions.patch�- bsc#960093 - VUL-0: CVE-2015-8615: xen: x86: unintentional
logging upon guest changing callback method (XSA-169)
5677f350-x86-make-debug-output-consistent-in-hvm_set_callback_via.patch�- Adjust xen-dom0-modules.service to run Before xenstored.service
instead of proc-xen.mount to workaround a bug in systemd "design"
(bnc#959845)�- bsc#959387 - VUL-0: CVE-2015-8568 CVE-2015-8567: xen: qemu: net:
vmxnet3: host memory leakage
CVE-2015-8568-qemuu-net-vmxnet3-avoid-memory-leakage-in-activate_device.patch�- bsc#957988 - VUL-0: CVE-2015-8550: xen: paravirtualized drivers
incautious about shared memory contents (XSA-155)
xsa155-xen-0001-xen-Add-RING_COPY_REQUEST.patch
xsa155-xen-0002-blktap2-Use-RING_COPY_REQUEST.patch
xsa155-xen-0003-libvchan-Read-prod-cons-only-once.patch
xsa155-qemuu-qdisk-double-access.patch
xsa155-qemut-qdisk-double-access.patch
xsa155-qemuu-xenfb.patch
xsa155-qemut-xenfb.patch
- bsc#959006 - VUL-0: CVE-2015-8558: xen: qemu: usb: infinite loop
in ehci_advance_state results in DoS
CVE-2015-8558-qemuu-usb-infinite-loop-in-ehci_advance_state-results-in-DoS.patch
- bsc#958918 - VUL-0: CVE-2015-7549: xen: qemu pci: null pointer
dereference issue
CVE-2015-7549-qemuu-pci-null-pointer-dereference-issue.patch
- bsc#958493 - VUL-0: CVE-2015-8504: xen: qemu: ui: vnc: avoid
floating point exception
CVE-2015-8504-qemuu-vnc-avoid-floating-point-exception.patch
CVE-2015-8504-qemut-vnc-avoid-floating-point-exception.patch
- bsc#958007 - VUL-0: CVE-2015-8554: xen: qemu-dm buffer overrun in
MSI-X handling (XSA-164)
xsa164.patch
- bsc#958009 - VUL-0: CVE-2015-8555: xen: information leak in
legacy x86 FPU/XMM initialization (XSA-165)
xsa165.patch
- bsc#958523 - VUL-0: xen: ioreq handling possibly susceptible to
multiple read issue (XSA-166)
xsa166.patch�- bsc#956832 - VUL-0: CVE-2015-8345: xen: qemu: net: eepro100:
infinite loop in processing command block list
CVE-2015-8345-qemuu-eepro100-infinite-loop-fix.patch
CVE-2015-8345-qemut-eepro100-infinite-loop-fix.patch
- Upstream patches from Jan
56377442-x86-PoD-Make-p2m_pod_empty_cache-restartable.patch
5641ceec-x86-HVM-always-intercept-AC-and-DB.patch (Replaces CVE-2015-5307-xsa156.patch)
5644b756-x86-HVM-don-t-inject-DB-with-error-code.patch
56544a57-VMX-fix-adjust-trap-injection.patch
56546ab2-sched-fix-insert_vcpu-locking.patch�- bsc#956592 - VUL-0: xen: virtual PMU is unsupported (XSA-163)
56549f24-x86-vPMU-document-as-unsupported.patch
- bsc#956408 - VUL-0: CVE-2015-8339, CVE-2015-8340: xen:
XENMEM_exchange error handling issues (XSA-159)
xsa159.patch
- bsc#956409 - VUL-0: CVE-2015-8341: xen: libxl leak of pv kernel
and initrd on error (XSA-160)
xsa160.patch
- bsc#956411 - VUL-0: CVE-2015-7504: xen: heap buffer overflow
vulnerability in pcnet emulator (XSA-162)
xsa162-qemuu.patch
xsa162-qemut.patch
- bsc#947165 - VUL-0: CVE-2015-7311: xen: libxl fails to honour
readonly flag on disks with qemu-xen (xsa-142)
5628fc67-libxl-No-emulated-disk-driver-for-xvdX-disk.patch
5649bcbe-libxl-relax-readonly-check-introduced-by-XSA-142-fix.patch�- fate#315712: XEN: Use the PVOPS kernel
Turn off building the KMPs now that we are using the pvops kernel
xen.spec�- Upstream patches from Jan
561bbc8b-VT-d-don-t-suppress-invalidation-address-write-when-it-is-zero.patch
561d20a0-x86-hide-MWAITX-from-PV-domains.patch
561e3283-x86-NUMA-fix-SRAT-table-processor-entry-parsing-and-consumption.patch
5632118e-arm-Support-hypercall_create_continuation-for-multicall.patch
56321222-arm-rate-limit-logging-from-unimplemented-PHYSDEVOP-and-HVMOP.patch
56321249-arm-handle-races-between-relinquish_memory-and-free_domheap_pages.patch
5632127b-x86-guard-against-undue-super-page-PTE-creation.patch
5632129c-free-domain-s-vcpu-array.patch (Replaces CVE-2015-7969-xsa149.patch)
563212c9-x86-PoD-Eager-sweep-for-zeroed-pages.patch
563212e4-xenoprof-free-domain-s-vcpu-array.patch
563212ff-x86-rate-limit-logging-in-do_xen-oprof-pmu-_op.patch
56323737-libxl-adjust-PoD-target-by-memory-fudge-too.patch
56377442-x86-PoD-Make-p2m_pod_empty_cache-restartable.patch
5641ceec-x86-HVM-always-intercept-AC-and-DB.patch (Replaces CVE-2015-5307-xsa156.patch)
5644b756-x86-HVM-don-t-inject-DB-with-error-code.patch
- Dropped 55b0a2db-x86-MSI-track-guest-masking.patch�- Use upstream variants of block-iscsi and block-nbd�- Remove xenalyze.hg, its part of xen-4.6�- Update to Xen Version 4.6.0
xen-4.6.0-testing-src.tar.bz2
mini-os.tar.bz2
blktap2-no-uninit.patch
stubdom-have-iovec.patch
- Renamed
xsa149.patch to CVE-2015-7969-xsa149.patch
- Dropped patches now contained in tarball or unnecessary
xen-4.5.2-testing-src.tar.bz2
54c2553c-grant-table-use-uint16_t-consistently-for-offset-and-length.patch
54ca33bc-grant-table-refactor-grant-copy-to-reduce-duplicate-code.patch
54ca340e-grant-table-defer-releasing-pages-acquired-in-a-grant-copy.patch
54f4985f-libxl-fix-libvirtd-double-free.patch
55103616-vm-assist-prepare-for-discontiguous-used-bit-numbers.patch
551ac326-xentop-add-support-for-qdisk.patch
552d0fd2-x86-hvm-don-t-include-asm-spinlock-h.patch
552d0fe8-x86-mtrr-include-asm-atomic.h.patch
552d293b-x86-vMSI-X-honor-all-mask-requests.patch
552d2966-x86-vMSI-X-add-valid-bits-for-read-acceleration.patch
5537a4d8-libxl-use-DEBUG-log-level-instead-of-INFO.patch
5548e903-domctl-don-t-truncate-XEN_DOMCTL_max_mem-requests.patch
5548e95d-x86-allow-to-suppress-M2P-user-mode-exposure.patch
554c7aee-x86-provide-arch_fetch_and_add.patch
554c7b00-arm-provide-arch_fetch_and_add.patch
554cc211-libxl-add-qxl.patch 55534b0a-x86-provide-add_sized.patch
55534b25-arm-provide-add_sized.patch
5555a4f8-use-ticket-locks-for-spin-locks.patch
5555a5b9-x86-arm-remove-asm-spinlock-h.patch
5555a8ec-introduce-non-contiguous-allocation.patch
556d973f-unmodified-drivers-tolerate-IRQF_DISABLED-being-undefined.patch
5576f143-x86-adjust-PV-I-O-emulation-functions-types.patch
55795a52-x86-vMSI-X-support-qword-MMIO-access.patch
557eb55f-gnttab-per-active-entry-locking.patch
557eb5b6-gnttab-introduce-maptrack-lock.patch
557eb620-gnttab-make-the-grant-table-lock-a-read-write-lock.patch
557ffab8-evtchn-factor-out-freeing-an-event-channel.patch
5582bf43-evtchn-simplify-port_is_valid.patch
5582bf81-evtchn-remove-the-locking-when-unmasking-an-event-channel.patch
5583d9c5-x86-MSI-X-cleanup.patch
5583da09-x86-MSI-track-host-and-guest-masking-separately.patch
5583da64-gnttab-use-per-VCPU-maptrack-free-lists.patch
5583da8c-gnttab-steal-maptrack-entries-from-other-VCPUs.patch
5587d711-evtchn-clear-xen_consumer-when-clearing-state.patch
5587d779-evtchn-defer-freeing-struct-evtchn-s-until-evtchn_destroy_final.patch
5587d7b7-evtchn-use-a-per-event-channel-lock-for-sending-events.patch
5587d7e2-evtchn-pad-struct-evtchn-to-64-bytes.patch
55b0a218-x86-PCI-CFG-write-intercept.patch
55b0a255-x86-MSI-X-maskall.patch 55b0a283-x86-MSI-X-teardown.patch
55b0a2ab-x86-MSI-X-enable.patch blktapctrl-close-fifos.patch
blktapctrl-default-to-ioemu.patch blktapctrl-disable-debug-printf.patch
blktap-no-uninit.patch blktap-pv-cdrom.patch build-tapdisk-ioemu.patch
ioemu-bdrv-open-CACHE_WB.patch ioemu-blktap-barriers.patch
ioemu-blktap-fv-init.patch ioemu-blktap-image-format.patch
ioemu-blktap-zero-size.patch libxl.set-migration-constraints-from-cmdline.patch
local_attach_support_for_phy.patch pci-attach-fix.patch
qemu-xen-upstream-megasas-buildtime.patch tapdisk-ioemu-logfile.patch
tapdisk-ioemu-shutdown-fix.patch udev-rules.patch xen.build-compare.ipxe.patch
xen.build-compare.mini-os.patch xen.build-compare.smbiosdate.patch
xen.build-compare.vgabios.patch xen.build-compare.xen_compile_h.patch
xl-coredump-file-location.patch�- bsc#954405 - VUL-0: CVE-2015-8104: Xen: guest to host DoS by
triggering an infinite loop in microcode via #DB exception
- bsc#954018 - VUL-0: CVE-2015-5307: xen: x86: CPU lockup during
fault delivery (XSA-156)
CVE-2015-5307-xsa156.patch�- Update to Xen 4.5.2
xen-4.5.2-testing-src.tar.bz2
- Drop the following
xen-4.5.1-testing-src.tar.bz2
552d0f49-x86-traps-identify-the-vcpu-in-context-when-dumping-regs.patch
5576f178-kexec-add-more-pages-to-v1-environment.patch
55780be1-x86-EFI-adjust-EFI_MEMORY_WP-handling-for-spec-version-2.5.patch
558bfaa0-x86-traps-avoid-using-current-too-early.patch
5592a116-nested-EPT-fix-the-handling-of-nested-EPT.patch
559b9dd6-x86-p2m-ept-don-t-unmap-in-use-EPT-pagetable.patch
559bc633-x86-cpupool-clear-proper-cpu_valid-bit-on-CPU-teardown.patch
559bc64e-credit1-properly-deal-with-CPUs-not-in-any-pool.patch
559bc87f-x86-hvmloader-avoid-data-corruption-with-xenstore-rw.patch
559bdde5-pull-in-latest-linux-earlycpio.patch
55a62eb0-xl-correct-handling-of-extra_config-in-main_cpupoolcreate.patch
55a66a1e-make-rangeset_report_ranges-report-all-ranges.patch
55a77e4f-dmar-device-scope-mem-leak-fix.patch
55c1d83d-x86-gdt-Drop-write-only-xalloc-d-array.patch
55c3232b-x86-mm-Make-hap-shadow-teardown-preemptible.patch
55dc78e9-x86-amd_ucode-skip-updates-for-final-levels.patch
55df2f76-IOMMU-skip-domains-without-page-tables-when-dumping.patch
55e43fd8-x86-NUMA-fix-setup_node.patch
55e43ff8-x86-NUMA-don-t-account-hotplug-regions.patch
55e593f1-x86-NUMA-make-init_node_heap-respect-Xen-heap-limit.patch
55f2e438-x86-hvm-fix-saved-pmtimer-and-hpet-values.patch
55f9345b-x86-MSI-fail-if-no-hardware-support.patch
5604f2e6-vt-d-fix-IM-bit-mask-and-unmask-of-FECTL_REG.patch
560a4af9-x86-EPT-tighten-conditions-of-IOMMU-mapping-updates.patch
560a7c36-x86-p2m-pt-delay-freeing-of-intermediate-page-tables.patch
560a7c53-x86-p2m-pt-ignore-pt-share-flag-for-shadow-mode-guests.patch
560bd926-credit1-fix-tickling-when-it-happens-from-a-remote-pCPU.patch
560e6d34-x86-p2m-pt-tighten-conditions-of-IOMMU-mapping-updates.patch
561bbc8b-VT-d-don-t-suppress-invalidation-address-write-when-0.patch
561d20a0-x86-hide-MWAITX-from-PV-domains.patch
561e3283-x86-NUMA-fix-SRAT-table-processor-entry-handling.patch
563212c9-x86-PoD-Eager-sweep-for-zeroed-pages.patch
CVE-2015-4106-xsa131-9.patch CVE-2015-3259-xsa137.patch
CVE-2015-7311-xsa142.patch CVE-2015-7835-xsa148.patch
xsa139-qemuu.patch xsa140-qemuu-1.patch xsa140-qemuu-2.patch
xsa140-qemuu-3.patch xsa140-qemuu-4.patch xsa140-qemuu-5.patch
xsa140-qemuu-6.patch xsa140-qemuu-7.patch xsa140-qemut-1.patch
xsa140-qemut-2.patch xsa140-qemut-3.patch xsa140-qemut-4.patch
xsa140-qemut-5.patch xsa140-qemut-6.patch xsa140-qemut-7.patch
xsa151.patch xsa152.patch xsa153-libxl.patch
CVE-2015-5154-qemuu-check-array-bounds-before-writing-to-io_buffer.patch
CVE-2015-5154-qemuu-fix-START-STOP-UNIT-command-completion.patch
CVE-2015-5154-qemuu-clear-DRQ-after-handling-all-expected-accesses.patch
CVE-2015-5154-qemut-check-array-bounds-before-writing-to-io_buffer.patch
CVE-2015-5154-qemut-clear-DRQ-after-handling-all-expected-accesses.patch
CVE-2015-6815-qemuu-e1000-fix-infinite-loop.patch
CVE-2015-5239-qemuu-limit-client_cut_text-msg-payload-size.patch
CVE-2015-5239-qemut-limit-client_cut_text-msg-payload-size.patch"�- bsc#950704 - CVE-2015-7970 VUL-1: xen: x86: Long latency
populate-on-demand operation is not preemptible (XSA-150)
563212c9-x86-PoD-Eager-sweep-for-zeroed-pages.patch�- Upstream patches from Jan
5604f239-x86-PV-properly-populate-descriptor-tables.patch
561bbc8b-VT-d-don-t-suppress-invalidation-address-write-when-0.patch
561d2046-VT-d-use-proper-error-codes-in-iommu_enable_x2apic_IR.patch
561d20a0-x86-hide-MWAITX-from-PV-domains.patch
561e3283-x86-NUMA-fix-SRAT-table-processor-entry-handling.patch�- bsc#951845 - VUL-0: CVE-2015-7972: xen: x86: populate-on-demand
balloon size inaccuracy can crash guests (XSA-153)
xsa153-libxl.patch�- bsc#950703 - VUL-1: CVE-2015-7969: xen: leak of main per-domain
vcpu pointer array (DoS) (XSA-149)
xsa149.patch
- bsc#950705 - VUL-1: CVE-2015-7969: xen: x86: leak of per-domain
profiling-related vcpu pointer array (DoS) (XSA-151)
xsa151.patch
- bsc#950706 - VUL-0: CVE-2015-7971: xen: x86: some pmu and
profiling hypercalls log without rate limiting (XSA-152)
xsa152.patch
- Dropped
55dc7937-x86-IO-APIC-don-t-create-pIRQ-mapping-from-masked-RTE.patch
5604f239-x86-PV-properly-populate-descriptor-tables.patch�- bsc#932267 - VUL-1: CVE-2015-4037: qemu,kvm,xen: insecure
temporary file use in /net/slirp.c
CVE-2015-4037-qemuu-smb-config-dir-name.patch
CVE-2015-4037-qemut-smb-config-dir-name.patch
- bsc#877642 - VUL-0: CVE-2014-0222: qemu: qcow1: validate L2 table
size to avoid integer overflows
CVE-2014-0222-qemuu-qcow1-validate-l2-table-size.patch
CVE-2014-0222-qemut-qcow1-validate-l2-table-size.patch�- bsc#950367 - VUL-0: CVE-2015-7835: xen: x86: Uncontrolled
creation of large page mappings by PV guests (XSA-148)
CVE-2015-7835-xsa148.patch�- bsc#949138 - Setting vcpu affinity under Xen causes libvirtd
abort
54f4985f-libxl-fix-libvirtd-double-free.patch�- bsc#949046 - Increase %suse_version in SP1 to 1316
xen.spec
- Update README.SUSE detailing dom0 ballooning recommendations�- bsc#945167 - Running command ’ xl pci-assignable-add 03:10.1’
secondly show errors
55f7f9d2-libxl-slightly-refine-pci-assignable-add-remove-handling.patch
- Upstream patches from Jan
55f2e438-x86-hvm-fix-saved-pmtimer-and-hpet-values.patch
55f9345b-x86-MSI-fail-if-no-hardware-support.patch
5604f239-x86-PV-properly-populate-descriptor-tables.patch
5604f2e6-vt-d-fix-IM-bit-mask-and-unmask-of-FECTL_REG.patch
560a4af9-x86-EPT-tighten-conditions-of-IOMMU-mapping-updates.patch
560a7c36-x86-p2m-pt-delay-freeing-of-intermediate-page-tables.patch
560a7c53-x86-p2m-pt-ignore-pt-share-flag-for-shadow-mode-guests.patch
560bd926-credit1-fix-tickling-when-it-happens-from-a-remote-pCPU.patch
560e6d34-x86-p2m-pt-tighten-conditions-of-IOMMU-mapping-updates.patch�- bsc#941074 - VmError: Device 51728 (vbd) could not be connected.
Hotplug scripts not working.
hotplug-Linux-block-performance-fix.patch�- bsc#947165 - VUL-0: CVE-2015-7311: xen: libxl fails to honour
readonly flag on disks with qemu-xen (xsa-142)
CVE-2015-7311-xsa142.patch�- bsc#945165 - Xl pci-attach show error with kernel of SLES 12 sp1
pci-attach-fix.patch�- bsc#945164 - Xl destroy show error with kernel of SLES 12 sp1
5537a4d8-libxl-use-DEBUG-log-level-instead-of-INFO.patch�- Upstream patches from Jan
55dc78e9-x86-amd_ucode-skip-updates-for-final-levels.patch
55dc7937-x86-IO-APIC-don-t-create-pIRQ-mapping-from-masked-RTE.patch
55df2f76-IOMMU-skip-domains-without-page-tables-when-dumping.patch
55e43fd8-x86-NUMA-fix-setup_node.patch
55e43ff8-x86-NUMA-don-t-account-hotplug-regions.patch
55e593f1-x86-NUMA-make-init_node_heap-respect-Xen-heap-limit.patch
54c2553c-grant-table-use-uint16_t-consistently-for-offset-and-length.patch
54ca33bc-grant-table-refactor-grant-copy-to-reduce-duplicate-code.patch
54ca340e-grant-table-defer-releasing-pages-acquired-in-a-grant-copy.patch�- bsc#944463 - VUL-0: CVE-2015-5239: qemu-kvm: Integer overflow in
vnc_client_read() and protocol_client_msg()
CVE-2015-5239-qemuu-limit-client_cut_text-msg-payload-size.patch
CVE-2015-5239-qemut-limit-client_cut_text-msg-payload-size.patch
- bsc#944697 - VUL-1: CVE-2015-6815: qemu: net: e1000: infinite
loop issue
CVE-2015-6815-qemuu-e1000-fix-infinite-loop.patch
CVE-2015-6815-qemut-e1000-fix-infinite-loop.patch�- bnc#935634 - VUL-0: CVE-2015-3259: xen: XSA-137: xl command line
config handling stack overflow
55a62eb0-xl-correct-handling-of-extra_config-in-main_cpupoolcreate.patch�- bsc#907514 - Bus fatal error & sles12 sudden reboot has been
observed
- bsc#910258 - SLES12 Xen host crashes with FATAL NMI after
shutdown of guest with VT-d NIC
- bsc#918984 - Bus fatal error & sles11-SP4 sudden reboot has been
observed
- bsc#923967 - Partner-L3: Bus fatal error & sles11-SP3 sudden
reboot has been observed
552d293b-x86-vMSI-X-honor-all-mask-requests.patch
552d2966-x86-vMSI-X-add-valid-bits-for-read-acceleration.patch
5576f143-x86-adjust-PV-I-O-emulation-functions-types.patch
55795a52-x86-vMSI-X-support-qword-MMIO-access.patch
5583d9c5-x86-MSI-X-cleanup.patch
5583da09-x86-MSI-track-host-and-guest-masking-separately.patch
55b0a218-x86-PCI-CFG-write-intercept.patch
55b0a255-x86-MSI-X-maskall.patch
55b0a283-x86-MSI-X-teardown.patch
55b0a2ab-x86-MSI-X-enable.patch
55b0a2db-x86-MSI-track-guest-masking.patch
- Upstream patches from Jan
552d0f49-x86-traps-identify-the-vcpu-in-context-when-dumping-regs.patch
559bc633-x86-cpupool-clear-proper-cpu_valid-bit-on-CPU-teardown.patch
559bc64e-credit1-properly-deal-with-CPUs-not-in-any-pool.patch
559bc87f-x86-hvmloader-avoid-data-corruption-with-xenstore-rw.patch
55a66a1e-make-rangeset_report_ranges-report-all-ranges.patch
55a77e4f-dmar-device-scope-mem-leak-fix.patch
55c1d83d-x86-gdt-Drop-write-only-xalloc-d-array.patch
55c3232b-x86-mm-Make-hap-shadow-teardown-preemptible.patch
- Dropped for upstream version
x86-MSI-mask.patch
x86-MSI-pv-unmask.patch
x86-MSI-X-enable.patch
x86-MSI-X-maskall.patch
x86-MSI-X-teardown.patch
x86-pci_cfg_okay.patch
x86-PCI-CFG-write-intercept.patch�- bsc#939712 - VUL-0: XSA-140: QEMU leak of uninitialized heap
memory in rtl8139 device model
xsa140-qemuu-1.patch
xsa140-qemuu-2.patch
xsa140-qemuu-3.patch
xsa140-qemuu-4.patch
xsa140-qemuu-5.patch
xsa140-qemuu-6.patch
xsa140-qemuu-7.patch
xsa140-qemut-1.patch
xsa140-qemut-2.patch
xsa140-qemut-3.patch
xsa140-qemut-4.patch
xsa140-qemut-5.patch
xsa140-qemut-6.patch
xsa140-qemut-7.patch
- bsc#939709 - VUL-0: XSA-139: xen: Use after free in QEMU/Xen
block unplug protocol
xsa139-qemuu.patch�- bsc#937371 - xen vm's running after reboot
xendomains-libvirtd-conflict.patch�- bsc#938344 - VUL-0: CVE-2015-5154: qemu,kvm,xen: host code
execution via IDE subsystem CD-ROM
CVE-2015-5154-qemuu-check-array-bounds-before-writing-to-io_buffer.patch
CVE-2015-5154-qemut-check-array-bounds-before-writing-to-io_buffer.patch
CVE-2015-5154-qemuu-fix-START-STOP-UNIT-command-completion.patch
CVE-2015-5154-qemut-fix-START-STOP-UNIT-command-completion.patch
CVE-2015-5154-qemuu-clear-DRQ-after-handling-all-expected-accesses.patch
CVE-2015-5154-qemut-clear-DRQ-after-handling-all-expected-accesses.patch�- Remove xendomains.service from systemd preset file because it
conflicts with libvirt-guests.service (bnc#937371)
Its up to the admin to run systemctl enable xendomains.service�- bnc#935634 - VUL-0: CVE-2015-3259: xen: XSA-137: xl command line
config handling stack overflow
CVE-2015-3259-xsa137.patch
- Upstream patches from Jan
558bfaa0-x86-traps-avoid-using-current-too-early.patch
5592a116-nested-EPT-fix-the-handling-of-nested-EPT.patch
559b9dd6-x86-p2m-ept-don-t-unmap-in-use-EPT-pagetable.patch
559bdde5-pull-in-latest-linux-earlycpio.patch
- Upstream patches from Jan pending review
552d0fd2-x86-hvm-don-t-include-asm-spinlock-h.patch
552d0fe8-x86-mtrr-include-asm-atomic.h.patch
552d293b-x86-vMSI-X-honor-all-mask-requests.patch
552d2966-x86-vMSI-X-add-valid-bits-for-read-acceleration.patch
554c7aee-x86-provide-arch_fetch_and_add.patch
554c7b00-arm-provide-arch_fetch_and_add.patch
55534b0a-x86-provide-add_sized.patch
55534b25-arm-provide-add_sized.patch
5555a4f8-use-ticket-locks-for-spin-locks.patch
5555a5b9-x86-arm-remove-asm-spinlock-h.patch
5555a8ec-introduce-non-contiguous-allocation.patch
55795a52-x86-vMSI-X-support-qword-MMIO-access.patch
557eb55f-gnttab-per-active-entry-locking.patch
557eb5b6-gnttab-introduce-maptrack-lock.patch
557eb620-gnttab-make-the-grant-table-lock-a-read-write-lock.patch
557ffab8-evtchn-factor-out-freeing-an-event-channel.patch
5582bf43-evtchn-simplify-port_is_valid.patch
5582bf81-evtchn-remove-the-locking-when-unmasking-an-event-channel.patch
5583d9c5-x86-MSI-X-cleanup.patch
5583da09-x86-MSI-track-host-and-guest-masking-separately.patch
5583da64-gnttab-use-per-VCPU-maptrack-free-lists.patch
5583da8c-gnttab-steal-maptrack-entries-from-other-VCPUs.patch
5587d711-evtchn-clear-xen_consumer-when-clearing-state.patch
5587d779-evtchn-defer-freeing-struct-evtchn-s-until-evtchn_destroy_final.patch
5587d7b7-evtchn-use-a-per-event-channel-lock-for-sending-events.patch
5587d7e2-evtchn-pad-struct-evtchn-to-64-bytes.patch
x86-MSI-pv-unmask.patch
x86-pci_cfg_okay.patch
x86-PCI-CFG-write-intercept.patch
x86-MSI-X-maskall.patch
x86-MSI-X-teardown.patch
x86-MSI-X-enable.patch
x86-MSI-mask.patch�- Adjust more places to use br0 instead of xenbr0�- bnc#936516 - xen fails to build with kernel update(4.1.0 from
stable)
556d973f-unmodified-drivers-tolerate-IRQF_DISABLED-being-undefined.patch�- Update to Xen Version 4.5.1 FCS (fate#315675)
xen-4.5.1-testing-src.tar.bz2
- Dropped patches now contained in tarball
556c2cf2-x86-don-t-crash-mapping-a-page-using-EFI-rt-page-tables.patch
556d9718-efi-fix-allocation-problems-if-ExitBootServices-fails.patch
556eabf7-x86-apic-Disable-the-LAPIC-later-in-smp_send_stop.patch
556eac15-x86-crash-don-t-use-set_fixmap-in-the-crash-path.patch
55780aaa-efi-avoid-calling-boot-services-after-ExitBootServices.patch
55780aff-x86-EFI-fix-EFI_MEMORY_WP-handling.patch
55780b43-EFI-early-add-mapbs-to-map-EfiBootServices-Code-Data.patch
55780b97-EFI-support-default-attributes-to-map-Runtime-service-areas.patch
5513b458-allow-reboot-overrides-when-running-under-EFI.patch
5513b4d1-dont-apply-reboot-quirks-if-reboot-set-by-user.patch
5576f178-kexec-add-more-pages-to-v1-environment.patch
5535f633-dont-leak-hypervisor-stack-to-toolstacks.patch
CVE-2015-3456-xsa133-qemuu.patch
CVE-2015-3456-xsa133-qemut.patch
qemu-MSI-X-enable-maskall.patch
qemu-MSI-X-latch-writes.patch
x86-MSI-X-guest-mask.patch�- Replace 5124efbe-add-qxl-support.patch with the variant that
finally made it upstream, 554cc211-libxl-add-qxl.patch�- bsc#931627 - VUL-0: CVE-2015-4105: XSA-130: xen: Guest triggerable
qemu MSI-X pass-through error messages
qemu-MSI-X-latch-writes.patch
- bsc#907514 - Bus fatal error & sles12 sudden reboot has been observed
- bsc#910258 - SLES12 Xen host crashes with FATAL NMI after shutdown
of guest with VT-d NIC
- bsc#918984 - Bus fatal error & sles11-SP4 sudden reboot has been
observed
- bsc#923967 - Partner-L3: Bus fatal error & sles11-SP3 sudden reboot
has been observed
x86-MSI-X-teardown.patch
x86-MSI-X-enable.patch
x86-MSI-X-guest-mask.patch
x86-MSI-X-maskall.patch
qemu-MSI-X-enable-maskall.patch
- Upstream patches from Jan
55780aaa-efi-avoid-calling-boot-services-after-ExitBootServices.patch
55780aff-x86-EFI-fix-EFI_MEMORY_WP-handling.patch
55780b43-EFI-early-add-mapbs-to-map-EfiBootServices-Code-Data.patch
55780b97-EFI-support-default-attributes-to-map-Runtime-service-areas.patch
55780be1-x86-EFI-adjust-EFI_MEMORY_WP-handling-for-spec-version-2.5.patch
55103616-vm-assist-prepare-for-discontiguous-used-bit-numbers.patch
5548e95d-x86-allow-to-suppress-M2P-user-mode-exposure.patch
- Dropped the following patches now contained in the tarball
xen-no-array-bounds.patch CVE-2015-4103-xsa128.patch
CVE-2015-4104-xsa129.patch CVE-2015-4105-xsa130.patch
CVE-2015-4106-xsa131-1.patch CVE-2015-4106-xsa131-2.patch
CVE-2015-4106-xsa131-3.patch CVE-2015-4106-xsa131-4.patch
CVE-2015-4106-xsa131-5.patch CVE-2015-4106-xsa131-6.patch
CVE-2015-4106-xsa131-7.patch CVE-2015-4106-xsa131-8.patch�- Update to Xen 4.5.1 RC2
- bsc#931628 - VUL-0: CVE-2015-4106: XSA-131: xen: Unmediated PCI
register access in qemu
CVE-2015-4106-xsa131-1.patch
CVE-2015-4106-xsa131-2.patch
CVE-2015-4106-xsa131-3.patch
CVE-2015-4106-xsa131-4.patch
CVE-2015-4106-xsa131-5.patch
CVE-2015-4106-xsa131-6.patch
CVE-2015-4106-xsa131-7.patch
CVE-2015-4106-xsa131-8.patch
CVE-2015-4106-xsa131-9.patch
- bsc#931627 - VUL-0: CVE-2015-4105: XSA-130: xen: Guest triggerable
qemu MSI-X pass-through error messages
CVE-2015-4105-xsa130.patch
- bsc#931626 - VUL-0: CVE-2015-4104: XSA-129: xen: PCI MSI mask
bits inadvertently exposed to guests
CVE-2015-4104-xsa129.patch
- bsc#931625 - VUL-0: CVE-2015-4103: XSA-128: xen: Potential
unintended writes to host MSI message data field via qemu
CVE-2015-4103-xsa128.patch
- Upstream patches from Jan
5548e903-domctl-don-t-truncate-XEN_DOMCTL_max_mem-requests.patch
556c2cf2-x86-don-t-crash-mapping-a-page-using-EFI-rt-page-tables.patch
556d9718-efi-fix-allocation-problems-if-ExitBootServices-fails.patch
556d973f-unmodified-drivers-tolerate-IRQF_DISABLED-being-undefined.patch
556eabf7-x86-apic-Disable-the-LAPIC-later-in-smp_send_stop.patch
556eac15-x86-crash-don-t-use-set_fixmap-in-the-crash-path.patch�- Add DefaultDependencies=no to xen-dom0-modules.service because
it has to run before proc-xen.mount�- Update to Xen 4.5.1 RC1�- Update blktap-no-uninit.patch to work with gcc-4.5�- bsc#927967 - VUL-0: CVE-2015-3340: xen: Information leak through
XEN_DOMCTL_gettscinfo (XSA-132)
5535f633-dont-leak-hypervisor-stack-to-toolstacks.patch�- bnc#929339 - VUL-0: CVE-2015-3456: qemu kvm xen: VENOM qemu
floppy driver host code execution
CVE-2015-3456-xsa133-qemuu.patch
CVE-2015-3456-xsa133-qemut.patch�- bsc#928783 - Reboot failure; Request backport of upstream Xen
patch to 4.5.0, or update pkgs to 4.5.1
5513b458-allow-reboot-overrides-when-running-under-EFI.patch
5513b4d1-dont-apply-reboot-quirks-if-reboot-set-by-user.patch�- bnc#927750 - Avoid errors reported by system-modules-load.service�- Add xen-no-array-bounds.patch and blktap-no-uninit.patch to selectively
turn errors back to warnings to fix build with GCC 5.
- Amend xen.stubdom.newlib.patch to pull in declaration of strcmp to
avoid implicit-fortify-decl rpmlint error.
- Fix quoting of __SMBIOS_DATE__ in xen.build-compare.smbiosdate.patch.�- xentop: Fix memory leak on read failure
551ac326-xentop-add-support-for-qdisk.patch�- Dropped xentop-add-support-for-qdisk.patch in favor of upstream
version
551ac326-xentop-add-support-for-qdisk.patch�- Enable spice support in qemu for x86_64
5124efbe-add-qxl-support.patch
qemu-xen-enable-spice-support.patch�- Add xen-c99-fix.patch to remove pointless inline specifier on
function declarations which break build with a C99 compiler which
GCC 5 is by default. (bsc#921994)
- Add ipxe-no-error-logical-not-parentheses.patch to supply
- Wno-logical-not-parentheses to the ipxe build to fix
breakage with GCC 5. (bsc#921994)�- bnc#921842 - Xentop doesn't display disk statistics for VMs using
qdisks
xentop-add-support-for-qdisk.patch�- Disable the PIE enablement done for Factory, as the XEN code
is not buildable with PIE and it does not make much sense
to build the hypervisor code with it.�- bnc#918169 - XEN fixes required to work with Kernel 3.19.0
xen.spec�- Package xen.changes because its referenced in xen.spec�- Update seabios to rel-1.7.5 which is the correct version for
Xen 4.5�- Update to Xen 4.5.0 FCS�- Include systemd presets in 13.2 and older�- bnc#897352 - Enable xencommons/xendomains only during fresh install
- disable restart on upgrade because the toolstack is not restartable�- adjust seabios, vgabios, stubdom and hvmloader build to reduce
build-compare noise
xen.build-compare.mini-os.patch
xen.build-compare.smbiosdate.patch
xen.build-compare.ipxe.patch
xen.build-compare.vgabios.patch
xen.build-compare.seabios.patch
xen.build-compare.man.patch�- Update to Xen 4.5.0 RC4�- Remove xend specific if-up scripts
Recording bridge slaves is a generic task which should be handled
by generic network code�- Use systemd features from upstream
requires updated systemd-presets-branding package�- Update to Xen 4.5.0 RC3�- Set GIT, WGET and FTP to /bin/false�- Use new configure features instead of make variables
xen.stubdom.newlib.patch�- adjust docs and xen build to reduce build-compare noise
xen.build-compare.doc_html.patch
xen.build-compare.xen_compile_h.patch�- Drop trailing B_CNT from XEN_EXTRAVERSION to reduce build-compare noise�- Update to Xen 4.5.0 RC2�- Update to Xen 4.5.0 RC1
xen-4.5.0-testing-src.tar.bz2
- Remove all patches now contained in the new tarball
xen-4.4.1-testing-src.tar.bz2
5315a3bb-x86-don-t-propagate-acpi_skip_timer_override-do-Dom0.patch
5315a43a-x86-ACPI-also-print-address-space-for-PM1x-fields.patch
53299d8f-xenconsole-reset-tty-on-failure.patch
53299d8f-xenconsole-tolerate-tty-errors.patch
5346a7a0-x86-AMD-support-further-feature-masking-MSRs.patch
53563ea4-x86-MSI-drop-workaround-for-insecure-Dom0-kernels.patch
537c9c77-libxc-check-return-values-on-mmap-and-madvise.patch
537cd0b0-hvmloader-also-cover-PCI-MMIO-ranges-above-4G-with-UC-MTRR-ranges.patch
537cd0cc-hvmloader-PA-range-0xfc000000-0xffffffff-should-be-UC.patch
539ebe62-x86-EFI-improve-boot-time-diagnostics.patch
53aac342-x86-HVM-consolidate-and-sanitize-CR4-guest-reserved-bit-determination.patch
53c9151b-Fix-xl-vncviewer-accesses-port-0-by-any-invalid-domid.patch
53d124e7-fix-list_domain_details-check-config-data-length-0.patch
53dba447-x86-ACPI-allow-CMOS-RTC-use-even-when-ACPI-says-there-is-none.patch
53df727b-x86-HVM-extend-LAPIC-shortcuts-around-P2M-lookups.patch
53e8be5f-x86-vHPET-use-rwlock-instead-of-simple-one.patch
53f737b1-VMX-fix-DebugCtl-MSR-clearing.patch
53f7386d-x86-irq-process-softirqs-in-irq-keyhandlers.patch
53fcebab-xen-pass-kernel-initrd-to-qemu.patch
53ff3659-x86-consolidate-boolean-inputs-in-hvm-and-p2m.patch
53ff36ae-x86-hvm-treat-non-insn-fetch-NPF-also-as-read-violations.patch
53ff36d5-x86-mem_event-deliver-gla-fault-EPT-violation-information.patch
53ff3716-x86-ats-Disable-Address-Translation-Services-by-default.patch
53ff3899-x86-NMI-allow-processing-unknown-NMIs-with-watchdog.patch
54005472-EPT-utilize-GLA-GPA-translation-known-for-certain-faults.patch
540effe6-evtchn-check-control-block-exists-when-using-FIFO-based-events.patch
540f2624-x86-idle-add-barriers-to-CLFLUSH-workaround.patch
541825dc-VMX-don-t-leave-x2APIC-MSR-intercepts-disabled.patch
541ad385-x86-suppress-event-check-IPI-to-MWAITing-CPUs.patch
541ad3ca-x86-HVM-batch-vCPU-wakeups.patch
541ad81a-VT-d-suppress-UR-signaling-for-further-desktop-chipsets.patch
54216833-x86-shadow-fix-race-when-sampling-dirty-vram-state.patch
54216882-x86-emulate-check-cpl-for-all-privileged-instructions.patch
542168ae-x86emul-only-emulate-swint-injection-for-real-mode.patch
54228a37-x86-EFI-fix-freeing-of-uninitialized-pointer.patch
5423e61c-x86emul-fix-SYSCALL-SYSENTER-SYSEXIT-emulation.patch
5424057f-x86-HVM-fix-miscellaneous-aspects-of-x2APIC-emulation.patch
542405b4-x86-HVM-fix-ID-handling-of-x2APIC-emulation.patch
542bf997-x86-HVM-properly-bound-x2APIC-MSR-range.patch
54325cc0-x86-MSI-fix-MSI-X-case-of-freeing-IRQ.patch
54325d2f-x86-restore-reserving-of-IO-APIC-pages-in-XENMEM_machine_memory_map-output.patch
54325d95-don-t-allow-Dom0-access-to-IOMMUs-MMIO-pages.patch
54325ecc-AMD-guest_iommu-properly-disable-guest-iommu-support.patch
54325f3c-x86-paging-make-log-dirty-operations-preemptible.patch
54379e6d-x86-vlapic-don-t-silently-accept-bad-vectors.patch
CVE-2013-4540-qemu.patch qemu-support-xen-hvm-direct-kernel-boot.patch
qemu-xen-upstream-blkif-discard.patch change-vnc-passwd.patch
libxc-pass-errno-to-callers-of-xc_domain_save.patch
libxl.honor-more-top-level-vfb-options.patch
libxl.add-option-for-discard-support-to-xl-disk-conf.patch
libxl.introduce-an-option-to-disable-the-non-O_DIRECT-workaround.patch
x86-dom-print.patch x86-extra-trap-info.patch tmp_build.patch
xl-check-for-libvirt-managed-domain.patch disable-wget-check.patch
- Xend/xm is no longer supported and is not part of the upstream code. Remove
all xend/xm specific patches, configs, and scripts
xen-xmexample.patch bridge-opensuse.patch xmexample.disks xmclone.sh
init.xend xend-relocation.sh xend.service xend-relocation-server.fw
domUloader.py xmexample.domUloader xmexample.disks
bridge-vlan.patch bridge-bonding.patch bridge-record-creation.patch
network-nat-open-SuSEfirewall2-FORWARD.patch
xend-set-migration-constraints-from-cmdline.patch
xen.migrate.tools-xend_move_assert_to_exception_block.patch
xend-pvscsi-recognize-also-SCSI-CDROM-devices.patch
xend-config.patch xend-max-free-mem.patch xend-hvm-default-pae.patch
xend-vif-route-ifup.patch xend-xenapi-console-protocol.patch xend-core-dump-loc.patch
xend-xen-api-auth.patch xend-checkpoint-rename.patch xend-xm-save-check-file.patch
xend-xm-create-xflag.patch xend-domu-usb-controller.patch xend-devid-or-name.patch
xend-migration-domname-fix.patch xend-del_usb_xend_entry.patch xend-xen-domUloader.patch
xend-multi-xvdp.patch xend-check_device_status.patch xend-change_home_server.patch
xend-minimum-restart-time.patch xend-disable-internal-logrotate.patch xend-config-enable-dump-comment.patch
xend-tools-watchdog-support.patch xend-console-port-restore.patch xend-vcpu-affinity-fix.patch
xend-migration-bridge-check.patch xend-managed-pci-device.patch xend-hvm-firmware-passthrough.patch
xend-cpuinfo-model-name.patch xend-xm-reboot-fix.patch xend-domain-lock.patch
xend-domain-lock-sfex.patch xend-32on64-extra-mem.patch xend-hv_extid_compatibility.patch
xend-xenpaging.autostart.patch xend-remove-xm-deprecation-warning.patch libxen_permissive.patch
tmp-initscript-modprobe.patch init.xendomains xendomains.service
xen-watchdog.service xen-updown.sh�- bnc#901317 - L3: increase limit domUloader to 32MB
domUloader.py�- bnc#898772 - SLES 12 RC3 - XEN Host crashes when assigning non-VF
device (SR-IOV) to guest
54325cc0-x86-MSI-fix-MSI-X-case-of-freeing-IRQ.patch
- bnc#882089 - Windows 2012 R2 fails to boot up with greater than
60 vcpus
54325ecc-AMD-guest_iommu-properly-disable-guest-iommu-support.patch
- bnc#826717 - VUL-0: CVE-2013-3495: XSA-59: xen: Intel VT-d
Interrupt Remapping engines can be evaded by native NMI interrupts
541ad81a-VT-d-suppress-UR-signaling-for-further-desktop-chipsets.patch
- Upstream patches from Jan
540effe6-evtchn-check-control-block-exists-when-using-FIFO-based-events.patch (Replaces xsa107.patch)
54216833-x86-shadow-fix-race-when-sampling-dirty-vram-state.patch (Replaces xsa104.patch)
54216882-x86-emulate-check-cpl-for-all-privileged-instructions.patch (Replaces xsa105.patch)
542168ae-x86emul-only-emulate-swint-injection-for-real-mode.patch (Replaces xsa106.patch)
54228a37-x86-EFI-fix-freeing-of-uninitialized-pointer.patch
5423e61c-x86emul-fix-SYSCALL-SYSENTER-SYSEXIT-emulation.patch
5424057f-x86-HVM-fix-miscellaneous-aspects-of-x2APIC-emulation.patch
542405b4-x86-HVM-fix-ID-handling-of-x2APIC-emulation.patch
542bf997-x86-HVM-properly-bound-x2APIC-MSR-range.patch (Replaces xsa108.patch)
54325d2f-x86-restore-reserving-of-IO-APIC-pages-in-XENMEM_machine_memory_map-output.patch
54325d95-don-t-allow-Dom0-access-to-IOMMUs-MMIO-pages.patch
54325f3c-x86-paging-make-log-dirty-operations-preemptible.patch (Replaces xsa97.patch)
54379e6d-x86-vlapic-don-t-silently-accept-bad-vectors.patch���������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������� ���
�����������
��������������������������������������������������������������������������� ���!���"���#���$���%���&���'���(���)���*���+���,���-���.���/���0���1���2���3���4���5���6���7���8���9���:���;���<���=���>���?���@���A���B���C���D���E���F���G���H���3���A���K���D���M����������������������������������������������������������������������������������������4.13.1_10-lp152.2.12.1�4.13.1_10-lp152.2.12.1������������������������������������������������������������������������������������������������������������������������������������������������������ ��� ��� ���
���
���
���
���
��� ��� ��� ��� ��������������������������������������������������������������������������������������������������������������������xen�html�hypercall�arm�index.html�index.html�x86_32�index.html�x86_64�index.html�index.html�man�index.html�xen-pci-device-reservations.7.html�xen-pv-channel.7.html�xen-tscmode.7.html�xen-vtpm.7.html�xen-vtpmmgr.7.html�xenstore-chmod.1.html�xenstore-ls.1.html�xenstore-read.1.html�xenstore-write.1.html�xenstore.1.html�xentop.1.html�xentrace.8.html�xentrace_format.1.html�xl-disk-configuration.5.html�xl-network-configuration.5.html�xl-numa-placement.7.html�xl.1.html�xl.cfg.5.html�xl.conf.5.html�xlcpupool.cfg.5.html�misc�amd-ucode-container.txt�arm�big.LITTLE.txt�booting.txt�device-tree�acpi.txt�booting.txt�guest.txt�index.html�passthrough.txt�early-printk.txt�index.html�passthrough.txt�silicon-errata.txt�block-scripts.txt�console.txt�crashdb.txt�distro_mapping.txt�dump-core-format.txt�grant-tables.txt�index.html�kconfig-language.txt�kconfig.txt�kexec_and_kdump.txt�libxl_memory.txt�printk-formats.txt�qemu-backends.txt�stubdom.txt�vtd-pi.txt�vtd.txt�vtpm-platforms.txt�xen-error-handling.txt�xenmon.txt�xenpaging.txt�xenstore-ring.txt�xenstore.txt�xsm-flask.txt�misc�crashdb.txt�vtpm-platforms.txt�xen-command-line.pandoc�xenpaging.txt�xenstore-paths.pandoc�/usr/share/doc/packages/�/usr/share/doc/packages/xen/�/usr/share/doc/packages/xen/html/�/usr/share/doc/packages/xen/html/hypercall/�/usr/share/doc/packages/xen/html/hypercall/arm/�/usr/share/doc/packages/xen/html/hypercall/x86_32/�/usr/share/doc/packages/xen/html/hypercall/x86_64/�/usr/share/doc/packages/xen/html/man/�/usr/share/doc/packages/xen/html/misc/�/usr/share/doc/packages/xen/html/misc/arm/�/usr/share/doc/packages/xen/html/misc/arm/device-tree/�/usr/share/doc/packages/xen/misc/�-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -g�obs://build.opensuse.org/openSUSE:Maintenance:14764/openSUSE_Leap_15.2_Update/a1fd4ae4c4aa8c8024b3958b448572f8-xen.openSUSE_Leap_15.2_Update�cpio�xz�5�x86_64-suse-linux����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������directory�HTML document, ASCII text�XML 1.0 document, ASCII text, with very long lines�XML 1.0 document, ASCII text�C source, ASCII text�ASCII text�ASCII text, with very long lines�Algol 68 source, ASCII text��������utf-8�90bf2f7ad76f4f8d400a2fb1ea8d144266e3bfd7f0ec82bd3833714ebc325931���������?����p����7zXZ��
���!�����t/)]��
�cr�t:bLL��j���0�<@f!��i=Zi_�ni��O�a�R�3�T"1)BLK% �+t2 �6g�b�$D>ڤ�j�'?^� 7b�Zi|�c_0kLp�Y§gv>b�Kޯ"f^
ӷ�w5$�yBy#kt�Pq�DOc&�s�VX%a#LbC/Z�,htn�x
L"�j˗>Gz!�뀕,Wa]}�+@Y2�p��؞5
sL>=T�Y%qjQ�hVf:[�Ɇ#� Cw�l9sن�n�E�aN,섥!@u�O��cH�k�zu2~x�[��Q$�YDd�k7�理he}{F_z]Xa�n����\^48CL%T9*\.\nsR:A���&
Q͛[�XkS8f5y6�+.Gk���P5GL�~�(*N�-Q�
[t�)Mo�vm"��K&ӎ㲔R/v'۶�R�\9��n .�!T5Ĭfʑ!�"93b੪�fK(h�t�E,(�D[L
7���
Y&Vu�
ǽ3�
GXB�sj��Yȴ�5mqӟKi"l\)�QD!�i,eWJ]fi .%�[g}!ok(�_y"�+�G^K=6599Â^--o-J۸n�J-g]H�˥�CX_a�H7l”n��q:%rpWh|z*�"��"X�{X:�k̠��\@)xV|sQ��q'cr�6�;"Q�T}jD}yP+c6@� C��AY�-ul�XPs�yS(�,Fo��q<9A�ztöKox/>/56ᙯ.JEh/5PÝ�]x^dX)5sض��H�|Zz��:�,B�2[{xه�/5a��Rp\Y� gMB1J?ђEq�H�-�L��f�hBɲ'C;.9>{1�.'{}F;WS�Jޮ|H{�� ]
V�afsMMt]B2�NEE?8ixe�s ;ᚎo�|ei+dH���
NvĎ�`U'{�)ťDm��5H
Ҵ�u+�1Hd�{�8n%?`
$��[Nl�+-(JZ#�Z:8
H�Y�D>"�i<ٲ]1qN//J�>#J\_
0fOw�
L$=5����ҴԨX��VXge;)vu`oo!�
:Xi�9!�$ztٺϒ$6ˁg�[&�bD�Ւ_�[C�L\�%6�0$�J"~q~`��}
.}(. |uJ"9�7`uU$��|jFj?�Q]1ʂFB�;�|ʅ{蹌2���n?r]�J&w [�Skָ�$ӧ�"�%}#Xƪd`�~6.�tZfkp%@X5�jؚ#.L;FC�5|Z[~��h-�ڬԺ�7Ñ�IU7RCF
bU�QiO,
d�0YW���H]q3EG�`��e$(1�i8h5M�:�%5/�ڶ+*a`
u4/�3#-lz�x�9|yw'� �]
6�HlgmE�2*a����E�(b���A[;o=(|�)�L]ቼ?�p� GY�3�L@rkK�0�Ս/ATB@0cSy_^hF&fF�ד�y<9Q�%%Rt
>�&�
.Ŧ�Iu�/k�1`�*?p~,�K\I �Զh0r&)�cy$@ΝgLU*�.ڒ� #$R�qg��dHE ?v;d�0g�lP�%8MX9x|-B :ӣl-�}wg{�9j�SUc%h\��4z�r,صo'�/z]\�V3)���ޛCu|C��[橲F�'�)_i�z�E�xd5jlK1am�.c}g{]¡gyce,cV
͓\-B�v��u�5)ڮk�*�=6AQS<�Ws+s�:oKːG4ʲ� �/G%��Aȃ��<{p��Dܱ͛ņL��Pe�4S!a�xo�b)�E4\a'�b#L��m���jȅ4\�'ǵAhXhL �钢MixiН�vbOqn2u+�a3όad3hz�
\o)9dOc��Ԍw�LqmW3yĕD$'�@('�Xƞ��߰:3! p[�5lky@t�
�g�E�31~S�VO[f_OG%tg뗂H'żڎNR���4Bd�>�cy|)8sV?-ʫ�e+$tM$嶖0
M|�&�4k�0u~xcGn��Yo>*�S=1Wj2ގ�F:9�Ñ�]O�|=�UQ�|k20GxreK?6kɬ4v3�NrJꋞNfIb贑idP�:!01eϪ,j�,��;x�n(�}}�k�_G~1 7߄W[rw^H�܆Zvf%Yr�g0],c*}wxlBEt�hUA�b̻;`8�$Lnڱ]�̂h�|oB4nýchg3j֯SڵYne=0g\z�
�u4�G|P�$3>PYftVh�! p�yĨ��5"L,Du]G�9��#&�:V,r$�3z��X�u�>cYyl�Ř}���8Բt-�|�
�l&d^&.ܟ@V:0�:c
3 F1u`w' ��`R@#qJNPbJWPO���\X]��+�B�= �96U�Um d�����21sI͈'am�\?ikQ�{^6\͕fK�25jUں��8�Q�I�h~vCU51��R�ֆ,I qJ ��pJX�,ބy��N|(I,9RDm�oKD Ja8�7�jf�bA��ẃ i�B94+�\�vB�F?ʼnW +@`WmѹFk��=-4�
-ے�B��t�Y7Y;&�(@5ε=A;g A95(L�b~ȲT|/s7?vQDAx!�'WJ�Cr
�%�J��a:��*;my�5�0/jT}�2|ɫ"�XƉ,RD*V�xpWƥ`npx4>QTd\,E�vʙ�3CW�"=Ȟ�'� T���^hi~Lx�\^wI�X�7#0ܩj[s-k�שL1z'V�-@�尉9Q06@�۸�z~�=_��r>!u��Q��H>5�����\�w?&dLD{�_Â�xG�+�*Mu1)t]��O*Q."4�9[2y�TsKE
Ǧ҉�a�F{Qk@^^P'{nwځщv�X-�\��x~Lq����Э�UP*�yo`a\H@b\Nu"9Q2m1s�s��cO5-� ��
Y�EC"r�ƫ
&^{i�t
�̫h_n�'?j�仜
.�F!P
�d�>6f.�b/6$�X�_S3wG��p�Fe�~ح$Z�
u�;T���n7�eN@�8(oۗagp]a�S'#�-"7�6f"�pk�Vhf\zB5v�I�,opyKH'��T0h�K6ѡR BƂ
s�tF|yot䇃/Vo�S.!Xf�wv� K>6HDt^UAX�gT9"7�1' ?5M&|23
|zٗ�-%��BTZ98X?1�e�k����
Cv5l&��i ;x<{#��3TY��B*D�+SQU�fǔ}��{mx5ƙO|3c2�.GB;N�~�x_�ÿ,o�
9*݁G�djJ6:�uG3J�Q���}mjQI.u;lEC-q�2���{_1>w=ud)åCi:
Y1�
OjbiDUY�T��==.Uk+B� Г��lk0{�l}TM0:ܚv)�㙂/">= ew�jBu=�{� 8:v�+-HN#�
40s_�zBJ�l�?Tз��=ЫJQop>Tγ0JwT�Z�DN�=S�;5ëHpU�v*
{x~&07<���dbeDM3�g|$vʼDp`#�.�+M76:J�"�L|OCw~}ţ&הE߱е$G44��ߒ <ׁ]EB5NgÇy? h_ہ�@UIYUN~i.+.�\~8
nKcr3{lr]$~vD'ZxЊIE'usߊvDIM��,�� ĕ kƗg0?w4N5S& �Ή:<$�4SޞI���[61ECW$&�/ˈ�n��S[)dr
�r\`)�:�Do7U{[>�"�d�I�d((H~6�ʶ-1a�#B ewnoD�Q/)#h!5��#`�~?��>dv=N'`@un��ʹtSk{j�Z�p�<�Lb(ﱄ]'
�r=À�V��vcH*S�@Ɩ�q!^G
�.{%:�=
!_qgMz233=2KL8'[�&V��/l
%'Ϭ9r�:D=<�6G|���м�of�Zm
ȴ43]ow�a�nP�I���"�Y���S�#?d8�we(q'�@+Ay`BM=}+ۙ\w웋
U�bAZպ�SL3l��NOegUs"三S;D"���9K*_ҩFi|�q_ޓAaC-RΆG{8s#`^阐iO�
͗��}NH{S{jtQH
r=HE̒�8�p�B$� 8{2( Z2{L8�h8ϱ٥��ycgYԇ+�pY�G#,%F+�Tje�m�+7�:SDM['&��SiPz3vZ:\��~:Yl7Y&]@|�?!.�wx�^( �A�u��g�;R+d�6O��Z�^R�*��UC�Z_:PP($*vU�xRoB�ij, կ%
PE8 29�YZD=�³NQĦb9��Z+G=⟫�J#-2����2.>4�紟�pἲ{^Қ2mE{�6S;�l*M
Qkg)9x++h���
.p|es�?}�2iWy�(w
Y��pk�h0h"7n��8�ͷ
0KHZ�͌N�0>>{&��E$Oy���P#,=�6{�ê(��YA3o
l4.��uY4.�e�Hq5t�2GFQR>� @Tqm��հ_㱸K�q+GPDbVFda�aJC!t?'37|=A3N�Jt^MYvv�tdG
�o:[بr�W|K-n��$KwT_�Uy1]�r�Z:eݦOCA;Te�s�2>�"W[�7m:&O[�L~*=IgA0I^ԛm|N-�I!.��h\Yg'\饡3 -KE9{fF-8<�dI�D8Dт��p@Ҩ2�1�¶7�X+T�gk�|oC�zƭ\fjH(8ʨOF�u�QD� EIǒv"ìQ�Kv
w�Qɿ_23�uWǴ;
Q�O#>�Pl�6Y�\�elo`����6�p��_}l C4is5|3O
s�qȥ=|4ΚG�sBLO-�_vYU�`sIp�pY
�}�~B��֬{�"[\]�5SYl�'%tK_DX.7�_UbIv�ؽw�?x�}�z-
pq+GX@.fVTmF'i.k8'1f壥Ng$��
Fu�:D�{n�$�fL9�+Tv&|�ӢX {As~n GW�Y�NEN6I� r$5rWPp�6l^Дlq�:ҐUfVJqF�\�%q
�ucǙ@պۖ��CsO=�/�N}/O���]5zfVbɶLU�O?&<+&9+!�Ms
Pl�)�c$CDZApP�ioл�& �SXJ۔x�| n$G7m"Ҥ@BL6,W��lYe&"w7:XW�V0 �Q�Hb}P~
vO"-v'��L:@�H/Mi�9\�*�RH1T�xBV+L~7nX�tBP�!*pƹ+(i�4VU$ L[�ƺ}��"TFQ�t-�[}�^�9�DD0�hIYadE~
,g)�a6cnSCh�"�ǧ.-Z[ 倚�\6mK:%^y ()>Q�
�={5FNms&V)Dr rqS(�$ri&d|9*2<
||վp�p�tiz�#%�ak�D��2"?�u\odb� د�sE)^;&F)B.֪�_ĝ\#j�
R)%WvE2n䕎~3w�S,5�?o�
�)'+/��K7r9j�1�}d�=�% 5o�>7}ƄOht*�-ߨR`W�܅֏!�uj6A?�B�",-?Ҍ>=x;_6]Ց��rBɧ(ӷ1;]�$W~|aҘ۱b[���8#y,7b�#Άˈ�줴_4R�$_ۻ0s��&&s�k2ld,J�6�Jj=��[[ I?֮�QDz/7(�;u}t��5�Ƽo㢙Ԝ9��*
1)�3P�Wk?4�g�ê!�tꬬI{/g0 %i_ߒknWTM0I3D�eEDq(M+(Q.3Խ'� `W/�ѩIV?I,ys _% ��yfC/=�?~�")�+�ȾG)Fk�(�'�ܺ�6�
%˷ʫA>X*s4gO�~rE��D'Mĝ�v,Ŏ*1^u��r4/"Haxf��7V5UPmxNV[eVk}VsRQ'Wƍ�փ}&ޫJi ;`(5/|9H\L0Ÿ.��O`O��9E5T�R~UzJ�*�j.iR/r0.Hm4G�̉i|+r1*:�P�Oe�=x:ړ�ϒ`dƥ/muQ�baVg{#FͭƑ�K_w��T�Z7EiME /m�"7@]=�&>�)S!�±�}�t֦_֩2lj�/10G�[��bp�e�G~gc8r}� }Vb.zlp�&�0*p/�[0yP'�F\9�]n'u$|��nktU6Pza�u5zS�6�g]+1�I1Gl�AdG�Dyj�͗$Qy~�A|�!>�&҃/�g*ŷ/�Ř�J&9^�*�0:̣I�AOj]XǻJ�f�� ՂRj�IdmrHXxt6u-�xe/�}s{�^Y:M$B`Jm0{T�p19Pp3T1LO)+eA�ަr<����-�T$�y�Oy@�GϗaG2l-iaX]Ml�1��
OAҰ:Z9ǵ��NR=}�
8J"�,WM�fa�@w�&ٷeT4�zJ�
$+�~֧�N�bu}K
�_)Ih�k[_�ʀxFOl͈j:G7�y4^nSddYWOC#?mZGi:t�!#�:Ιm̏A4*K��C�!j�֏0L$>�Hw.euf�e2j+619v^U!D Yè(J8�o��j�dމ�g升1�Eun�N�n5sFz �5
CMT't�b-�1�O
ڴؓ\
s9܃.1I߫
|Ϙ23I@p6�Rj:J�>��.KnAvf'緸�%(�N�U�)]�8�g4�B*(�X�9�:?��&_Ls��0dR*��A0X S;r`�Kgq=.e�sd
�!t��JV�5i-H�c�i
J�I�x>�ޡ2%ՔV�`%K�I�(9t"VR+�[{h<!�w�2�y`tGV�Cs}�Mg$�jSbq�0�9�ouc�'�3V%19q/N<5e�6_}іt;0$OxR�aO`VjyQ����7ɨ8oy!@іvaf%>iA^q[
DcШ"f!~~�PT�V^��`ٶIܠ�M�ި+�5Dm=��;<�`�(d?=9LQߗ*}�;+�Ml��̂�F�
h6����ɇ%fep2¼nVBۦљj@D`&u4g��cUd-<[�l�ד�E~ϪW�E:Y?���*VE�f�IBV�%pd��0hWA: �~M��<�ޣn53B ;Hzi"-TZ|d�T/|=
u5I6m4HU��|x�Wm�7;3qbI:��f!rC)%DHʘe��PEs��El5�["2g"&Em\�bx�Cob]�4
�@=,=SzɠY˔(<*�+csːޖqѱ�?{*OYZqC緑�-%>$~Qn'(4\��cGL-%[]E9m|_���b(SOI2�-!NiA�&�pK
]mP�ea5m� sw:v\)c0v��zc��ĽD*? �M%8yZ;�wE\7�O*f[<�gR3�*Oc�n�
f���կDžF���G=_�C"�])�&Ñ�c>B.B*q܊U"_8�{Zm0wE4fH-J��S��2V��5 L/�q͈br!�_nO�]?�H{io�cl�tz�by�g`).TTK ,�][y=␇�������qPd�!I�)`J
�^pŜ@:
�*FXCڎp�VԃM|WN�\8R&�1!���8?L�}�V-Nş�56[mTkX�!Hj}ݥDCmAPH�-kyF50=p v}κ��m*Eʓ4+ Tҕ�Z\��S%{Z
&
[m~ѿ6�o Ga_SUߵ�Jۅ�:HO�8�Q :.`DZ!�WO1CFn3�
H�©|U�5�1j`
3��204E��t����-F�I�#� ��f�Zbg2�a�+V)F��'|���wP��':P욓)��RSmV`�-[H0x@�6h
pĉو6\m|�O
+�.1x9��g�>\Ϻ_br�f2}��6Y��PQl�1Z[&�]}wOeoBfR^:g�@�eY!vTI6;'��+gϵ1q�w�wd�t l#4�O�Þ_^��و�0�Il
"Ӊ4o1b�I�kO2O~-�9y]^h̅��$L
Bh���YzȂ4R�n�{P?O��a�L
sxz[2`X͇h@NJI�D2[�~Б�hi7��5~��Arn(/CE;W~3x̔wZ.�V~(z=�gX,�F7ukT`Wd3B@�f�#황p�q"SE�5ʬ.���ڙ4Z xߌ�U\k�kt�4�Q/#j@FA���)>;W}9CC5<���I�U��r<\\�A鰣�O Q[5Nm[0p! 4PXDo
ҳ�-91uL< '|+ŊT54gky�-�4h⻱*6��Q�P9& vaL~"-*(H)�#z��\~"�B8|RtR�$<�*�z9w'd)�ƨŷ`e3.�D��θ+sܲm@�ʩ _Be�y`d*�/(5�ITXN665ȋ�*uGq 9@WI :u$.dWp2O_{;�(�B�Xz�U\�0/c d蟪"Cz��ii5]n=Ċ�P`)�eGNX_�Bv IZV[WUkݼmPJ{O7�q}�uAT�GtO\�v`l{7��d>�7D˘bk$_xO�o^>C== ?fv.K~`ibWʆis�̈́]:b@7��h�a7<>bv?��cHfV>^fbM@7~pE%�bD�#�ө���˛Hx lr5i�
!E=2(GI-
F�W07 D�?(F)�vW�L0�Թ;��=/wN|�\�?i��m{�z78֫}��_SC�|%�~Uj�7r0!;> J_3�,|/P��
�>L(�Gr;?댮ߕ·�(ߘ!j�K^
4g����Db�ЉXU3:DO|ܭa`y:�cn&HiQ�֠#�6Ҳ2q_R)'bF�RѭijmPr2*�LJK,Wܘ$6��"R S�8�s5c�Dy$Bj1&R%�Ѽvwzu~eFUhn ]��v�|ꔍ�Y!!�ZPlr�Ї�l~&m�oO)}&vJ2A
�vg�o��wwN`5LDuӅC�(�kM�>{�/ b3u}6~�'4ء.އ&�[`?sC�;\ln
Ey�z�䓯Ji��
W|G�D. ƫ16W�6(�C��zU�A=:�4魢92U�zDd�vI�B6�rhsۖv2^�öUT�WχrW>�!�W
]�s�d-҃f@%UƢ|2�VX^s'.HA:qbC>'ΜNKd�l�̓k�i��
RϘٖo�e�
���%q?E��H�W/9Dž3h:X:3FȦ�Kڰz,�k�ں���Y�x)�q3rO�ݱ�r2+�fh�M���]Fl{϶+}�|�Byz_^/>Ƒ�GS#Xg��r/u�&G+(m.=ɰ��E8.R�^%�ID'A{��zz��]X!�$B�3Ձ�Xz�c�U��x/n�NsWE2���9� FmzV=�uia�,2�1�h�Z�DUxԉ9R?�9v�C?>R�bRT���B/Y=����$D��א�
�M=Y2tMd078@
xr@ѧǸ:,z=��`{SmbSD�[{�H t�x?�1${�
J;sVkdh'x���-5KHA-d�_VոT}i1=7?�ˮrG/�@MFa�/u��Y3�D4+�aA�w5]P �itO��&����]�nj�+x&<ˌ[f!1o$�=JrˊZ�/�}cW�Z�YZc%k%Z8[5`=�%JUP�{���KrɃ���\�rrz'6YY�+;j%+:��dvҩ[jn^8T�"x[s!�ΝvD&?,/�Yo+�"s�šq�RZq�,�`0QEջ�ZXbù!(�`�L[w'uEFQVgI3�{�nӆdL��+͋Y��\lRZw·Уt���L4�� 3깞~H?R[�7^�@]eİ[!mLDR|)F:����?Y�}pbKzY�ikkay'A��
�Mec
l#1 �|4�&�� �(P�~TɡW�aU�ȜbH~|�|DVZ~��UC*>@ڙfMs.��G�
�/l88戋JVI|�w����-I*;�wJ[8W/y-%q�&0QBk'IjXu9ةxƑLOڴrQ1j+#,
'Uś�SL[��w#Mt~,V�|]bVݎ���v4�F�D-�#n��;l�H/ac&OJ9D;��gd��3��Ĩm}-do·�. �
�s(llbǴ#�ZY{/kfZ`P� |O�{DJ:�}}��,Idq.݈vBqbw�|8��RGx
�EVjƗl��@�?_|t*�p!}5rx/��>ڐ^cO/�_�?n,?VĨ2�Cb�r�%�uJ?r͟8T.4_){eŻfaO � xcIDJ̞a �+.�pEjm%�p������ȠGl�t'u�!�?Ci(e9I<��.:3�b!a��S%PG؎μ#뜖#�U]_cƪ
$�0q+mЈ�\�*)d9=�k۩��Ï^#�M$ŦSj�:81_|9z��ei�>mvX%s>G�u�jN,~�M:<�ߝX-W�xr/8ĆR]`h{*M�y-ٙG~x
6ũ;�-3UڨK82<5yY>�Kph�jQ�fN*�9{EA\7ײַѷԣᇛt'R¾2+ e$'i=��d>
_tLc?�,}KE4[ 29��%g:!�NX[E�3Y�=X?�P{�IFeH�S?4:7�}�^+cƳߛ\U<\=ћ�wdlL
5Т1Ac��Mfy�pz[�n��Z�785~l9O9cLq2mb�e�N�R=[EPCop8�\SF-u��vkr)#i�)*A{;'~��l:�f|k1�܃iy!�,@XؾO
�4K
0��6,��a%V~OMIt�r�9+k
o<43�~��e$}3`d@=$L���ɲ(6x>ll00�P���ARmzmO)�H�H5Rdhc�Bi"Xn��!剕ӋC�2F#H;6^�e�/@w\.^�L G=�Δ�̍@VA�c_J�ߌS�e��#l=B�zJ4�4�ZD)"%p�R&�MDۚ{
Z6H6KI&p_�#`yN:McWeęm�LQ2��Xp=1
EӜ{Eb4���0
9�a[`4E�IXl}9;vX%�.H I��f��p[o&�Xp;}nHQ9����y�H? �C4œM�ҝ�p�Z{Tì�b|
1[��%���N9hR0}�Z�7m3k�b�R�$�)ųi#j���A#W�7IͰ}-;͌0x�]UH6al_q8~^e9P��#:Jѽ*d��>t=%0�^0/A��=Qm4f���~aO?qLJ꼫+�Gbk$�;�9�с Xr1B)eZYt�#{W5/xkA5���i��&0
L�g�ِO#m5�1SwҚ�5H|���ۆ0OMs@W�
'I:�280j�&G`Uc�}`' �:�垯I4W0fM6T�:=z+y�8
Srl{��`,|Ɉ�8yL@�:T@I�2 ��y]>y��C=�){�52�ߠj�ٞ84�(�,�?$0OM9VXA6]'JULRjs�Q4R{pB�-IrXvO�fkt%�s(t�`G*r>��;��@�.-�^х
U�$
61Ti
�x:�9Tr5�-��\n'��L&<;j1��^8auJj��ذ:\]ȓ0�eJ>�&JsS�lS�wwl:��7l�F�m\.߄;?�=
iף5'PGU8�zTO�\$iƹ402k�F8�GX�6��c7E|��&�OМ� :p�ѿ`Y}ĥT�!ŁՐ8`�CHb@$u8z1Sf#Nh
a�C�%M"D�n��9�uk#�*3j,C���7~5}[g���}d�oxd�`�3*\�[
Q(�WD%M�#`6Mdrmv"��]u��{�U_eqE
`n|s���d>r%�U'��PQ �qܺ3?��Ѫn�$Š39Ub
3S-��=//nYd
�$d�5οcʆ�]d�iԴSexE["�$t&�2'��VF»d7UU%�'+g�\JCcF�L7K*YDw0�ab{>�8�_v]F2=.pky�y$��7�1�Fɶ%曰w���;%jw`�#�,�a�>r$8iam1\ro��-/8y�$-�e~{>_' �FB5PNCL���Y,
�Ny�{yIH02Xw}d 00�\C17���
\��ŐTFp
�Th
fk�AB?�bCN�:@�-EC;y�W*5bj9P};˸ZDHc46!��͍~�tY�ɏQT��qh`I�#?JBS AdeͦA��0bf4�ɲ;�|(�];�:�>�j�ӟ
kϨfr�?ǧj�8e](�sKt�D�GբтA�ݧCԂlíE�:�
0�.i�G`�6N"Q�T�o
2;nu#L$��6^�jGcƏ�o��@=�ܝJTjΎ�.lgs�pD�S�r_�X%(*
�7r`�Fb෭]/·ŹC4f�Tf6>&�^@zpl X;*({y}B�DG"�ƙxk%+Of�֜!�ΐY<7LB�'e.ӌ9g]D}�Oi'>ߪ/_M�'*XIi�oK>n{�]PIN�рcX�8"�eqa.�bۖ�@y ߱�N��G[�@Ҥi& k1~J�r�e(!&Ouϙq=
>@E��^6=㿂 '%NVڟxZ�[|qD}-�8�_CGi� �ܸYy]�aFseQ5�9|=C�ǫiJ~B� 0�9�K?�'��(yC#
|I]����earCR\ln8y
r�cҫ9Ԟ}�pD[
�S�xlS�~qlJqNRrR S�˺
���h~
Iޖ�i1W�ӏ�A
7e=Nk*�W#y5ȑ��2O/�\[d@Pg�XG4Y�l��K//C���Â�@�c~B!�D7#Ϙ{c /�N}C*G�nî�ļ�2��^w[GX*r0gL��-u%�)Q�smNq�1�B!"m~{цb3)V*bʊ\&�L
#LRguG� /�/��i}�=B9�pbE6283BluL
Nq=a+"IiT7�_"#�5A
."]�w./
�D@m��>gX�f@�6"TF~Q��E9�il#�cI�A�%I ?$��mX%{~�U Tauw\Z.���'w\P�
w�&Ov7�P�Eīx[xh6hɻ�)w�+^+�~YqSO)8�UF�o�'岭ȉĤ(s0#$C58a(PY'�~��iƴ|AfQ�oNNws
�kw3q=4W�3]]
���MBM?�<ϩZ�z!ݫK�
����8*C?,?5vH⛈,D1# _}uZꑚoTf_櫙*�ÙǏX?l�
��2TA�@q_�\p[1vnL�rȡH)`SV
^c�"�'AKt��^C/#�o�i]Lj[ \ @4�ȥms�L�USϮOp�LLKآ` Vs^;�`y!�я� [w*W�nfUwH�Mcn)쟖�EZ�vP?X�p!M�Y�W𨘙Z`\h�\n⼬=��s�y{'k5R&�`da|Ec3^�g!D'!i*NOÌj0bހ1�h7*�}�!bPךsY��@VFJ"�|�Ā)Ol1Ve$fJh<�T2�9?`V!c�DI6Qc#Y~fS"@,�anJ5
B*p�S�Eݳ#> U Nb�}��KS)o5ו!σkfb]b�w�ԖBA=,u�hxnMU�]쬪H�ȇ)�5
S�-&W^k�W>s�):pOn�h|xs�6S
qE|/='S&�@%/ UEx�PK>5Dz�ÞU �D�3Nj�=eX�4"|܂=.y�]u�h�Mő&B`}66�3�F �q|eS�s�d-
�nـhd*q4A��wpA�n
Ί�n UƷR̓~uYQR1BԨ;y@恔"7Z+ݤ�:���+\�XIk�|�f�8�L_��Z�aXr�=9}A�g^a ->"ix�FXe�I],ْ><<�B_">q�\T��^WA<�L��|e.ҬcsBfl;;Yˍ�M�a�KjN(�sU8V�&ytDs5I& >�ӣE
դM9%a�gD�ӫCt5=�5�-���
d0�F'�57/��oX[afn7&f
l�<���%��,䅹tFM�FBk>Op�XrƜb)�zLҏ�b/OQ,')I튌!(xy?A_+X7�
�K|da+oT�?x/fr)�K
z$�ȱLs'ui�R�;IO�/Kn=b�'=>u �d\�X6�GD`"ss9jOO�e�.G2+2�"5�"*FL�{zyhb+9Y0�^ud.2�)?1�H��bZՒ='/L�q�ڷ/Japv\"�o!l/̘AyLmA�7QHRR�x^�� O@��m�\B(�t@;�Q�Æg�, bLP�,Tɉ>b��aEoGG_ U_SdmԤ���7t�R9!^7�eaR:R1v~�#!�[�Gj&0Lʨ^�iȁz5Y()\y`ZLE<�̾Xs�ifE�[��UwقDυNQw=Z��5�Up=b
+T6]"�4\G��bkRb~W<�]̌
ruD+F_e�(\kkp�gou_Z�7
py�IM�a�{R9pa&�>S^fv��T3 c&QR�\|�i>� 1W㹌ѾAXy=�-~_�tϚ7R:-@i+|q7k5!J1%�FD�ˈ�Ndb��N'�Z�Lև5+�M/x܉�o�a_F˱ӚI��Gݑ*rC�+Ш[22�K��MdTOU#+b/�𧊤G:T`^7�5G¾䏵zr҄q�SN B^C���aA�4vBK�!Y.cy 2)�^WY�4�$5?xyAh$]c��\bEp4[
A�.J�WwѦ�Tfܐy�S[">c�2lTwnO�P�`s�a]tE�t`z�"b0ٝ�MKJ4B&}b/�~$@gNƑLΰ\33�^F�fDGO �Z~k1�`O+0�)�L�d+.1+5^!-dʨ�..���eG᠆|wh'v�]'>��*w�#��ZU�v��˄1�aCܠ����^�nNiQES{�>_$
nX3ds\*"�VST`.#*v[ێ�%dHc2[5W�Λ-�}-`mMPk<ÖgEO%љxᥭkfcuG9z�_ˎXا�mC{~$V)�c|[4̃t��"1e|:t|.�dO"̿
UW�";ÀQ
&�η.:�ɰI�4>U�1�]'}ʣ�IP;&Dl$tύ3A�;�/f��W4lx6w�Cߐ�R�fZT hvO=�d�:Z�U�
?A\im@A~TIoVd+*�Y�
(7��!&y5�,%+C�ДTWJ&餲̏�<���7Ew΅\P��~$x$w�#�=E�8KBαz}k���Q�݆82\Ij�̀L?XuwJ1�mM�q�cu)Wp�?��Pu[<��)z��7-2#F�מHmtXwGfݵ�_^Qյ:�so��;��ΰF珞-Hm$iN'J?5`�rɝURٽ0 Ns!a k��y�g�Y:iDJ�[뱽s^̬{�ZCzՃy\r-�1kQ X�8GWeϠP�l#MA|�`�Hkcoګ
#zGC~Ƨŵb �f<ڪ3R@lH-��H�n�5^gE@(T�\*�aJiBn3u3욥�:��Z�W5>XsQ%TI
K*|Z}�U#&1f֑OadR��� ��7�W�b߁
:��G$6�Y^~K]U+ÚpI[5>Mz�3�q8D;4B�Zޓ.]=7 H+T8EEa�n?el�IUQR\Ң;,K6L����1m�D=̨�M\�31۩Z{/gl2gvBJ5�Zr�FlWI�-L-�
&�t`o j(A�5��\l0GP�5ccfWF{��m{`WkҀ⿱��$qqJ:O1@ 8ކ({".wL�?7CA��uĤ?EFH갥xj8w7��B�I4��l�]GڦP�RO�Q�rcP�$ajL!02��b�qOY2^*4 ߧ�C
^�^-(p0��2U"zg+$BK�&Lʼh�H#�Fvǜ�P�g0Q3B�_�#9kj̪�kaH,5yH��Tq~�\}Stg�(7f��,ҔM(7Q P�S�-a�Thg
�vx^`�ᶛ �҃yӛZR'�Ks
1'L0mGqdۧ�BZ�
@`q�tf!m285?g8�,{
BLڛ�cZ�|$Y>�Z7B{iQ,?��w^�y�g@ޢ�%�_Fu7"8MݭLM4�8zYu:2�unHj,Ѩ�{NxC�=б)gO�"OhjYȷ5�\�
Ƒk|~}7*M.Ǐ�t(�OkVC
� /[E�E)H=}Ծ:!-w_:H�7�_Al�`9=rCL$�m^x&S�`��ڠB@>`0?ٰN2nG��^HY%nh&(ۖ:1v'I�l
z/�z'�`�qTUH�:XmmS(:�MBc5�!?cZ!sc�<Ʉn<�neцN�sQfdA7��Vb�NO��G:wnp䖪R��GWi�>U=�d<=�` _MTku�*ܣ+`OlEW�LϮDT#�Y�˫uRPY�+5ޮE =��u`�c��˔V3<ݨ��*��bX�(o)XG.*ڡ�P�O>O�AӽBR}8MZ� ���
T�B�
=_AuWg�z�r�D0�֑ve�ݓΑ$KqV�v.ٷ;�ύ�77Hg5G�{C�,�iX)y
�/��_g�g�"J̈fuJ;W/b�hB'n[�dgf7�W%����Wmpcֻ�R>,غ�.,��(\>z`]/dHAݩrEmß;fzc2WڵwKLUsi�c�:x@.(n&W�]6B�7�xOm7lMBB?.D"4h9�O�8�,.� >�R�];|�ĉݪ~�W�@J7Gʨ0ZxL(P*:hSOm<
>lÞ.Riruv\�⊪'��^��)7I")0�^EnBN��.q4���hyे4R6=Yn۴� LZ�8L=_�DjGNVi�7h�\��F�<-!준)ʞ1 #k�n=�R&-r�ˠ!v,4�Pn[˃PsH�EVz��L]'"MY*7� �;Me!pM�trA䲼`�G<�ԃ^S*{��?
.1Ԕ4
�7ߊ#z![:��A��`��SzA-5Ƅ#ۛ_�Ǔ$U�>U#Se�
d4Yy}Ob5p�W9
~SdKJlOrm�I*C9-h�TB�^d �5[�^9>XG�uWB�7�0$(HVl+�'+1>cNel�߾Fg
<6v'L/m+�jlE��0O{Gz�wZj��⛋�J]5de�}IX㐹�|r�~`��rF7pSP <[(�9N��N0nEZy=+äjgF#a6�=��f�RArfV�k�WZvŃ�:3�*��i�.]_Fڟ]�d:k`)
�ڈαM/88�n�ToGb-#
@�AHձ�)G�L0
�z>Aӷ 50
�KԬ6�P{1 Nwn_H�/*Z]z
r`�T?�a�xu�@97N�o?�L�v�Yk
Д3���ۘwsC]�4
�5\Mb�y�ڃ;&,Cn�
/(�f&N0X/�J~��K�E"@��Qv�~h8�li;W�u{�vw\!n_Ҏ��h7t<$a?S,�g�ૂ�h{s~�h9>�,
*EBJko�[h!_3[*v'z�IW|
!�Z?hR cd ��2nSTDmO8��*?S$`�LOGvV£�� h>K�5iS��G`�P�$pGC3FܜF�.3;3'@$bz&*#)�.e�O|�0JػS#ql�d <)6:pn&��Ri��ߟ�C�'"x%d+'�e}s=qsdחyl�
6./)�%��X7[A;6aҦB�)8x;b��ZJz�� Pw�4�o,jU�+~9M�!^!�[Hd��`k20@b�䎸�A�<:)Rc4ByRK]Gni98`)vk�mNm^;菼}�у_6�`W{�\2^슍�"22ƪxowvloU)
/�g��3kE�LmV^tS�Wb.�MUe�ͧgs+�v�m& `vx3yA>50/�wFҧ.�1;M)`�[|�"�=T2WQ/+�'m/ XYH#�ޏ�kf�V2|PjC1��`�WIx!sI24t�~�G�aKf!e`{�Gi2,&WQ7(f9=Ġ��pg��^���ku$n;(�q� 6*_"H}-��93B�-£ȭ}�
DV G|GCc>�
4̎f|Rd si�l+"�~r�k}TD9H�i+v�٬cyC`(f$dz�Ml+�&�S}`sj*P���nT�v�@xir{Ӑ95�Zȡ�o1���&�Z^>'M#�9.Γ�
��#Z�ntjv�
p�؇S0�sq|ՅdVtd�*po�� w�b��Iuf1h�C4�{ vD8ox i� V�+��XV9as\W YlQѤ ?G��x=@lf�Ë=SF�Z�E�*l�DC08&��*�O��D`F�0Ӆxi�eFl�bc�V3T]ReτHRnȩ]�(�Y
�B-
e��?8V]HŻ:f`ZmI ykJj>}�^@G&
�W�h@�\�&1=2E輺[]Fi=�ݟ�
�Y>s��TV9O$X�L�mɘtn=�6eX�w~s[��[P:G�, 'ZxZ�䂉8��am�~JBWKkvǀ%E,�Hw3B`hXFp��T��%�P�E�a�wT��z�}zP|�o%O��e&G_ѧ�J�@TM.bAhKS ��� =()V�pLTwigkxm1YE#i�g��ᩂx3M̭?Pi�&+BE5Z̷�Vȧ�]+ȕT�|sdx p,ס5)E$�JFR�37,EhsS';䛢�_س�9߫u�OX_��dG$ΤDv ��0q&
�Gn;[f.�k﵋ˀ�eWhòa�D8UB.e㮺Z�I�SSAk
@I-,@GH
ay�� �
*~C'~�yJeV_+S
"06�
�-���q:'}�
��W5)%=�L*A�g�(A%2Fu�}b"͑ǢM2Aub�/vLG�CJ��[76M��ЌÁb�|�)M��8dnD';7*�
O�('hW&b#�z2��p�Y3uA=g`��6~n�nYn�iέne��r�ؗ0%�o(} Ʈ�ӐCN�@f|p7;:0J7$ЏZqcy밟w3ke��*"d+zF,8n1�HPMh��B*gQp߿�Rz/tӱj̉�?y~ZF �7Z!Mx��Հ�_"ש0ȟiY�F@@n\oF=ğ%�2H�nW�Ple�l_i�3dNW+tk�k��wW~��46M`>�bm"X*lQ�A゙Kƾb+2p�oʏμ`WfYt*x!�C�!�c�F9���VD�ǭjīʒr7CQx }
l"E^�;/C9ڈ@�bb>"�h$A�GK+d ��Μ6��ox3&iy-�xA/żh;kaޖ�e4mQґv�<2\.�x2Ԣ9,���ty�ih�u@��1YU /rsI�}�sJq-cl+�Z�!<��
בh`!r8M۷{hW�cU,Ś�"P@@o�*CQtpҘʃa//0"�Љ�%rr?&lysN{EoFK��!$ָ}���|efBL�9!c�`b�UQ^p{/ZB;p|`�"3u䛒E�n{>fP�ډ{F
c|m�7Oog@�AxH6: ۱5�k7)Fn
N#C�L�Bvwazt3oJngHl�mHji�ЈJ([�<;rH�PVp]�JxU;�aU@YTn0"J4aT/A}L��=~`f@M>k֥1�6�x&d��X�+j�Q�%P �J�?3ͺ}uX�
-]% [,O-mJʨO�LE hNW(xJͧ|�.%�= NPjz{H��sM24!1Аח 8�q#|"s�}Bt͋�[�MspP|I
di|ldYES')�16.�U|awu1 �m�v
t�4=fz�G7P)'2ƒW~mb>jLcɚB4f
*s��0&X�,�~F[Qɳ�7S��("˽l�0s�L6ǒGu6��~5t�VMn���=.�NY�^CN�1;0C5g&��FN1
-#o�{L2?h "L]�gI`LV�Zul$c{GP�p�TC�̳�(v7{ ~��B
�_�N�|κ�i{
MF͏}zt�)_W6"rY��恺1$la6KK�]\\�j~�]l��#8kBy䔾�ڕdB>{�P@�wh.aoCߌJP�% b5#Oܷ�apd/2�hs�F�&aK��gb�A��.P�e�4բ�;N%Q6;&?sEc��U"αYʥVj�IPeܰTuL�|:)M,�_]��zHiEkms>]&R~Վ9�z��K2)�^sЖ-ꦪ}vV<�_I�NlJ�0~5vb0�p`N1 a�[;2]W�e�4@f_lBz �"_(Z-�:LgԲb!�7s�%*+fWZ�p�Bp�fO�>X1�V5=�#I&C>cHX�gv G+�_RJP��DAqCB&s\ f9j&Im}�ίG:K�U��zOD�>>�ѴiAuE�7���ʝcO�_&B\heB'q�dm��̂K,_YZ+��7jzȷ'kptG�lÕ�8'�JXxZ-߸_/q{
b
OɀR�{�,qFj�?�lX�،�^`VFډEVdok1t% �"v:j�zt���B64R~�!{O!h7c?E�Ph$�{0Ⴝ�D�9\=П6d!opm6�%P_6"8���oI�̑PX[[4ˊAL�6;8tI(:VJ �Λ(|8\4θ��@,^F�
njl�oUT�`�n`%���q8G��q�۞yO�$�DO#v�ô= <
`P�� \
Q>{P3M�u̾c�bG"F}�ŴMDGH�r|~uᶬ^ORΊ1Q7/B�yFp"���Z�ptģH8J1�f�( 8HZ;�<�׃f�$*qZjc�l�d1څ.Fp]o0
$L(tjJ;74Z"%hQVelz=TR���;Ih%?�Ӓd��g^�G,.�*-nl�/.Z)q'�}Iv�n$4Q1L؈����
R�Oaˌ7 �k~�*l
$�ʒ#&c�r8 +o'+0Ina�G^�㎎j�ɎԜ^?�][BcFImYܭl�2S6I|LP�l~v��& *MX ���Swׄ��t<�^͓sʩXǀ�8LJ[to�-n`k�Nt?zs avxig�˖.�#t||I=8w� .#�WCW�b.G2��d�<>���69<7&(�+U!3��7��+Rm��H~\r>�&4 �=lwfmď'DE�h��(�H1ZR %�[�Ў_tr�~WA�T�?\�wR6/\w+MkapNywIt0t��$��;�>04]kTp2mL�]cJ>*�~U�@X�P�=T�̾UO�nW!^,䗪�'�O&
�d�4G\jF=��j&R��kʛÅƩV(>J CN�JGﱡ�*f�>EF�PD9�̄n�#=V7�tyuB{ !mP�$�}0VVp�}i4��=p�A�`x&(�v�_�2'qP&T<�ާكAEl��10?��#�fLCOP�n{ۣ]eY.p�]*fyH0_��}5 �O3�9s#�wԠnb��߽Y����8j2�`j;5C�L�\GH#3V\�IL*
-?P2˗943NW}w��Xn����݈;�ʥ&4 �tEn�pU�uCtȭ&�:�tU�G>fz6ZKYdu;b�zPB��ҨJ܇m�wS�`6`b�߇��Sn
yC�@Bhǒ9t3+mU=��NWD}ShEZį�r#ǾM��Ll����G{S(H_�gij�xa�f_�YO*�>k��n6Zy�l�OHjv�=o�}=�"M���~w�mWVۓ�0p*uo}��0bj-�C|;���N>%uSKſ$�N��37"�?>\/~g$R�
���Σ@0�az�wH&6?Ā.2�%�_doǂ6i?P�i�~\<�lpx�ی6=�%ȘGD�n2ny$�wj�Ѧ�w�sn*c�LP"*X$�Y7u4Ğoj� zL�g]Cu]�ɂi�-ܙĿ�8 �;c10N�[�.՚BLW46�TB:�y4?�d�c"Y>-kaXZʓw+0J//�J?�� r� -yR�>_y�yb��:\l"}Nw3��vj|S�Wr\�ڄ��@6�ue-
�%�$}o�V�p/ y��PkW�^I_h�KΈ*m',ww'�)%>��Cl �9pHA;ι5�?֕~���-�Le��P��n�T,�l,�92eH�kn5LC(Y,��=�:ܲR��5Ω��d7
\i[~�O�xLܠ��T*�v1tK&�
/^V��)x�NOk
UZ0QkU�_l�`�gV9�|A]vJ~i�6`�Nl[��ZmSz�u
��+�ur0�,c{�m{��d�|~c|#R ��H8>O%F/%ēpO���C6h��pOd^E�^m7�ǞR'#�ᦪ�Q��CtWsG�m�v6�0j�^?$�O N�fEZ˕+96;��w_)d&[��tu�GZk6I
#�H��4%/+*t_xfx Sg*_*�(�ӊ{?GK[.%)M[Љ,XHy�ߘԌ�ld��OIJL��Kk.�V,�f$�$ZnIU4H<χA6)���7{2n]rzBGVu�'h?C�0֏�rX#$ז�#<`��l
wiiIGA\A>��:I1<�娗DM�Emo7b�<=5\uR^!R�Z �9:�օ��d&'KNL�t�tX(Vr�:8 Ym`,���Bu[6xX|TkqYv_�9.�GA��A7
b?S+OsH�uw{e'`fvbR`��0Vz䜿�Vj|nK^[��Yw5��"�6��Mc�Q$8:n{
Xp2;���ޡBPH��}ГZ�Z�b�ƈm�fnW Y]NZ�ْ�ȦjBzQ0t�x'Ӈ�l2㧗I:Փ�8"ڱB*/,lI
ε6'_���8X=�"��d�
$Mr[M�%`�ʼn�m��T�&Ò9Y�MG<�`?�[ ��:XD'DdPea<�J
Q<^
jX+� e"2'Ӡ]s!DX=z=�,^f:3h(tEi
�)�X|B8/�E�1]^ѢKjj�E}ۺ+�a�k '>ڧx��O!,U�W� ��+5pu`�lKN8go�$$/�]ld.M�9;�خ�+Biaٱ"3q(�!�(-\�{cw�W� ٔWW�x����$j
h�M]w��(9<�s�LNmE��4G�K��˦CU%�'��ȕ`�~>4�%.�[T�:J`-MS�j�A];�лe,PPW4;=LZp�)~�fשx��e^Ơ"a}(�:aI�
C,B_1RωHx7v�5RT�!:31ogYH�=NjR�FuLii;~ak��-c"͂g-rtʮ�k[;g+b�#�w�HvLJdcs�pZ8Hq
oJfટ����q=f4�}HN�f+�7NK4?M��0B'�n��DK�l}ޒ7æ>~�k �m�#/PZM�{UB]PF�O⌷sFZCWd3h��Ȧw�C
ײw3dOv�@�فY>jIO`]
<��I��k=m\A2?eA)�qw%9( R*$n[
S)�8ﺟw˾
��-Rq�O� 5OaҶ��X�BPZ#��+;�X��v.=OK�Cl�j/ᄻD¸(\gZ]MzJ�����<�`sjmִB[³7�(f_/b ��[��6z�t 0|ek{w=pz5�/RK�v�PoeF�Ť%5I�tL+ɆpCv1YrK3���`�jE�z�e��PCwɏ�JB^0��!�Bp�O֤
Y�wj�.�c('1Ť(Vxf5�R?'u
%P>i�s�;;Xz+n�#!@#Q%t+c�S�5b\�= Wzfū:I
2R�%u9dA�Y~��-J)�G�up�k|\�Mb2F*bO>�!{BEs
xG�Jn`-KǴjv�,&�ht
�n��i7�V,=2�g%1M[trIàׁLQ����"�U,;t?)�}ÈeI;YRI+!�'���STTvijVZXF#rn�L�!n$`�QΑ0ЬzCÃ+BƁ>Ku쒼�Z}W��ĭsgb�^�"'Q-TqE,�Xa5[���0;W��Q{�3Zmq�"L.Gᴦd��m�ف`4�@���Ze9�C3)�O{ߪBb1C�!~b}I>�JJ�Z�ĶƬ&���*
i=5/T�;ܩ[���uŖuWP�FBqwi��,H;��z1p@X�T�3̏דs|O6>Z��B�t:��2ŗ@W)ǟ$5�@+7:��7~Z�w#�>0a�
6(k弋?d3,X!s^��9�epqP�'Ė���%_�EqK�Kz;$'}`�EX"_��?Zyg8�G�%S�h�ɖ7!�^=۹B�u;O]??�Rܜ]
]0�e&3�qH?_�o�di�Qt"m~2UXʏ_��,A��#rZ�
v�oEj�$U]oё8ݮ+(R7}zZd7jpMJ" ecxI�ݟ�gI�.�} �u/�u&4�1X��_�eP3ls�xԔt�C!ٳ0\KID�m��.;o*���[+�G`�jُ=Ie�94+6"�%��N�GҠ�~uuqor!@1*l�@66iG�_ķ< "grG,^8*,\1G��*p2lo?X;C�J�Ls�6"~vet&�Wݩ0_�[�jq�H�nNpbqE
rx&SaN,.g�h_1ze0�ZKq�gYjm~3Oln�Da!,�`C\gӱhXomW�9@D�ȫs�D5o5I}δ;31z2C�n`(S$2ڒǖ�߮!8��Ƀ47�g�Q]8DlJ�]`w�y^S�|EWaٽ(ma<^c�zln@�"m^{'�h>Q��xXqG�k�
]\�c'�X��U@�M�57�4�k:yt*Y:OFhϮ�8BHP ��@y�#v:H.�h)@pu�#KJ:#
#
mժ5�SOe¿�p��EP]ەKVNz@�4�\�7\�P{1��@Joc ?D�L9I{!9~#;�uT3�Ul���a`'�C(�;y`?xr�G?�!J
$&3I-c��NhV4Pi4>!�ek4$`��U8��Y:xuP~��Z%[.vRQСs@E-QT_56?_4g^s*2XK+8fQY<妘(�pɋFM�H�ף:iQ�diC�>^͛{eޣX�6"
9��G0`�n�4ym_:�vUj۶4q$�omobn" մT`@@qt`ϊRi櫗Ǽz䶇x(�_T�dDZ#.�بEڝK 6�UBM�4Vq�/\�r+w9�,�lK�]J�F5�TX-�* d?S�Ӗ{tZkHᵝ
1�&�xB>a-Y~قu*vz (\�h6goF[B;[N鄼�w(6���O0+T 8m%l�KQu.BJī�? �&i �{p�v<3��6�y�ǍE
��9�hkD
m/
G�n$y�-P�=@'`bF�9f/:�?Tb�eOZ#7B�sl�u�Du"2+>h`e��ZGGz��%=?�q�r_j d,I�^=F b�6mG1�C))(i&�Wg=m�cˢٖ{Y!e7ţRmPA�<6@~�#l8vo@"ލa/�ad�S_=nv�{h(0']T3<\fc6����d���q{�268k%R>D}gCӡjF`�sUX|�*H
Q*�SU�|�f/VG�
̐$��N(,�odRn x%8��7#s��ڲ!�&2�fL4gDW
;~&ɎX/!HYUX1q��)��]�qE�0ϭ`�1�!pʡKXgw�ڇE�MRj=U��xU<6��Q�qwR ?6���B}E �0`g
<,��@�"X{��;�ђz>Tlrz#!.4މ*}y"ܗRR�i�5ՙ�B('��r"�i����^r}�ю ���K.tm�\抴_]�6*%��`)Q;/a2
מ9*#�
�H�X0-�GjFᤙs�Nɽ~M6�v�d)��8=S�6S۬8
}��=Dl}:j6QFC�M-nM4+fH��Ac�QjC%[x%&2d4S*�c<�����uj=ps^~ ճ6�4JB|l"A�&TwDS�iAk-1;_��
�/p90n�(ǖ�Ai:��bi< 0c5!͐1.}_"2 9�n5[�Ov/�@�=e덨2dr��7-��H(UŎU+��kUG)DrV]�pO
�%Xɴ�}3�$;�$�� 6VǑ=T̿y--'Z"c˭B"o+;3�{�nv� gY\XKel�5�W�0eb"�
dᎲDO92
" sKf��3<�KaҊ�^cG��A�x�K=ȏ�K���ץ
��Ct:p�Q^|f+��`�K@ɛϠf9k����"[`L]\�{��R":h_H>�U4�Vo1م4`W6->e5�
S�>:�y*oէ,ؗnj>0�`ʇ�P0;Kx+ז|-vg�^�(���Gk5yߜ�R�A_�!dPMEX�#I��E�B$#RE]lT �_zR? �9\Ψ4l;mAVQi0Q O�8'zk3��l>9}�($�`䟢"m
BG�b�ZĜ&CK�
��viРȡigdA�z+ع�AK�bE&rU@�Yu0磅%�,�6it
ٰtU�3�� i1ﷲ�!sV_�=<0���d&X�0�`�Ur��P��9.sC\���MLL�!0�{�;yk۟Z(UXO59ݏOm�HM7nh̟ݖM2h2g'�-V -�"$R�hg}�F�`iQ�*w�{L? �4~1�l�ʚ9iaMqn�7S1fU=MSs�Գ�֔)3C^mq|c;�ݏqIGYs@,!2ݝ٭z�:&z9Ĉ�(|��
?��2<^A.؆/\}`��ѷF�X}�/(ߺ a�ɺ�`XZ�6V_xt�2X�7-kBעM!-Jhs+�59v4,0|)X `O�hE���Ϧ-d<Қh3*o��GoHb�ٵ̏6+��fzf�@=
�ӔS�Ȧo�;|,�Jd">8 I:ϢTbК�"'.-*E�Y��s#ҎjŅG8�F*n+�B
2[o5ZOuLc;��Aa&F�Mq1Qd'�:c�z�YB�.e;`2�c��w��eWv�YE��(b,Ļb+�D =qJ
[9sW(]+aƺ
+N�#U�2llܑ�%a(�1�Xj�ǯ\
L��Ϗ��ɡz̵b$z�aeRwTM_SNi!Ro�-
ݦxcR@E�?K9i7SO��
wS9S-=} @[#,Me#X=|4z_ƛo `
�\?-{2j&��g>�[ݛb~+c
��s�c]d2�ڗ�
R8�vY[
I�hD-��EF�l�D(k1�$ A~4�� PDf�\muҿC�O)�\�/[\F\aq�$S:'բ_1Լ#$x| +[2S�<2����pv^!"x�Pg�RizsN]�<[9�!�Fdx"hl(QT13˭q�H�oV�?߄HHgj+{:v�y?p02,M|x7�D7.�5Wk I2\� !>鲎��ρET:}lT&x!�pd.X'x�{W�fP��GBuݤ���9OYW}XV|:![
g�t(@b�N5݉.'�Ꭺ/0Q�G^g!Yf4*SC�\�gAӸ1�b�;O@0^a�L��jFW ΰ5�<`���$V}˚�[�w/I��vfdD�"~A=7�<��v����[T�a�V�$-}g�yÔ>R+>?�V\i!*n�y�?GmqW�c.Y%kVr[���g��Qa% \b�Bį$�ab],S��宎:pY��Y1P0E`��Gyn��|[s
Q{P#uL�1\S*-U۳�S]϶w0wI�Jlߔ|tf�BnUi)�f��&�)̿�S0 4�Ɋ
G�26nE0|��M'X
�EDY�k��vfoi�5�ңR
3?�9l:J0p#TeFT�i�l1$pEMnܑ��/5�7;$-[i@K�8fXy�?<��FKS!a�Z`Q�EQh&9g>VДXw6_D�a ݁cuaa�"Ux%]A�~k<��{}�Uu|Sʢo稦d�Q�BQ
C�-~=+7o)^43�ъzUj�}�ݞ_,��V9����5;�i�0ȥ@Z�S.?z�dj9U=�w�{6t}\ϋr}~):�_'vYr"�c@Â��-@��\,I
"�
?V%087wp�q{զ{c�-OHub]wHXr�XM}@ve;37_]F呌w#:"'I�y04^X掊�X>\,GnZz8z.`��jbQ#fb��i+�DlqG�Jd5S.+�fv|�+�C<Ȥ�ɀ:�Ǐ!�C2Lj?w@�OIv�Hu�&P�)$�>=!j=rq�Ӈ/C�Ծ�[��ը�ڳONeD"~*8I`gk*h~+s0�Kօ
{63V_��:Q�e�v@e�&���V>w&�yDKHN�Nɰ��Sb@NP�Ɗ$�h
�� �8/ �z�W�X[�iM4`Hx�RDEю�{to^�T'4:#��2V�XW*Lp���ׇi��a|�rdo ̢�:hT�Gi!U[Dn�eU#p�U)UDz��V]4�*RҀUȝX2*}D^�\�&\4W� ʇ�A7j z7ʤ-i�h~Ar@Κ]�K���Ǧ]M[�Fi�'8WAHgLqڋ0q9D�n�&ȗ|�ƙ�P]gNZM}y&w��ƅdyf�K
+l�^Ӡal1�p�H9l"�Z$L�Q�8c�[RńD�lCz6�KUbe�LYn��A�t�_��`�i� ,ߝ$Z��ZEnrE>)2l�ŎL;@�ATJ�V�K,��� ϢG@�OJ L{]�Dp�xLLgƭK5
18cAm7sd:��\�!�B}lؒ.fad��"���2TW�eXr�!=Ȇ#ѓt,kn<&F3c�.ccG*>]5R>?<[M
(JEaj䪦3nIN~4s5fJ�lDO�"q7ߏ}�*2�6�"K�\UBPz�:Ԅm24B8��8�%Q4��y<|� �KI!/m0FSRP�
-Әv*�N�F�s%q�JݕP;l��!˄o�|wo�Y^��@`V$!��3�r])_ Mx���x6vGd{�S6e>3Mj�/A'~j� SG�,Q09uj˗9s�$Z9
Z�~kU �5doy/tBަW�"�xQT1V@]pZ`uT��RH=s�E,q��a^��Ok G�;ҬC vOX,| :j�HmVe0^H2�`6o_UH5�3[E"|�1X�/]Cބ"2
bϊHH��ODEȸ4������ܢN�۸.-.�v#�:w7KP}iLU��a�:1V^adujXu-s�!|G�Qm
��v0�f2l���]g>{CD(�j~
��Kj5�hҸ+4'hm@�K'rx
r.g8b(nT�H}5*���d]^V��Zl?H2�9�_~m$su�Uj_e}ll3[�;|���7�} %pϱ(Xy�Cqzet@(�+r2��G7 �$KI;i!Ef1h%4V啣t09�CrnW)M1XϷa0�,-.Ժ]2!�pm��9�nLVȊ0Y&%;'�"U�z�CYoS'ծ3R�Q�{ʉ/8Gl��fyA=�T&,ޜ3
M0�eb@fבhV{HK)�5�%���� 3qvA�G=np]��\F>[¸ga�㎎\�iKBF'M1?T��f 8�\vvTShpY�1)ɍ%ZI<>˧uxȼ�>�U�u*w�K;j,!a[\
Y4U�aJ�lpJ}�ka+�4{\v�WN�3�ʟӻmU�cԬ�Of
PR�� �斑zǘ{��ۑD��v�s!M=�g`A
'5O�3
Y�?,(U�Ϋ۔MlwPDlO{�/F-hE �V�VBgF7_{^L<�Z. PB7���%L6;ZlH:b$N@ޡ�l$[EVq8dc\�L�qbϠV0�:N`h�lw�Y21fˇRbN7˯jF4a^�ka+¥IR�M-1�]guz$ZZfĹ8�$p�<|l���TX': �: of�� !D���F1�S {���E̙x\D;Pp��(1" 4xx^]�?EŶY'%�x�Lb9s*'�xAe�O�3�~ ɍT�yфX/ ߠv$A2{I�ޘ|Nu̧E<�t 3�V�}ښ��:����-<�ߐ!�^HS0~Rk'V�9��ެTs(�*z˚'���hT�ԉ�[t*XQ^8�ک�o5[7quH%�Q[Dn֓�e4��xq���r�Qpc�h鄥;�A(Nx9cv'o�
R;uƷgvoR
X8�e�>�4ͬVA)<*�D'[K�kU_Ix�Gg@E?w���T&��Ź��a|jL
� #D
z=Pb
9��L��]5OQ;ʔn%0[�\�_b�@i��~gL`��U)lR(�2^=LJ��k�iJ4yh��.
ty*[c�Ս�o
!TeOܸ-;G(��I�$@jݟ,Ղ*襆{��^Ip�Z
ru̾|��5�S��c^+͗�LvF".GC�gk#-LGv�$�[L?��p]t9�$6-c"O�hJeg3�+�.h�Bd|܁L�|fK"�PK�`7m�=Qt��ԎhԒn"eki[�@�SapGQ�ؐ�6HuuM{E\@ΪXs2C>n T=x@D?���1mZ>[߱PRr,�v�`3�D/R�@
~�B�^:*#BZ�0T<#�@:�/�;I:6g�z(>`[BO�H�tK�;�^�OҾDz�]L
~Ԗ�tխ<9kJ+A
+�k�`i3?f;'�#s�e5Zq��8��1�5ۼ�/��YJ�}od#CD*12Ǽ!*0�TꅾL&�VA&(�,4^an/S!9�|
Л?0�40Mt[^d0�:_ύ2kSYF{�)��GS�\�88D�[C.o+_DD�#{<Ϯ|3uE!z�C�t
I�ϔ��4)�'fu2
9��wW7`�+n]H]Ȃ<Ժ9^^`TJcb4�
BB0A G�Rs0L,S;�ņ��_=y}u'i�,ȼ'sUQjDcVOѵ�(uCӇ�գ�DJx?ׄ�b7&�}:1�ݢ|z?�|}ܴ�9/\@��wd�Q�&y5��#+lUw�z�5�Yv#s�5L��|ӟޡ�7�RȲV�/ųCr�y˕fRݼeѸ@kzZu&��N%�MN(���Z'L}�N
�$
`�N}PKQnUزM�Bz#�EIP*��AddP�/\$�ƞ���OkJ�qJf(�9#9'ەo��#]��cEa!S�tUG/l$ݷfJ��Ȫ[9UM?]�+&;>BT]+
��q}m(>Ocf�:�6R8I͚|fT�siŒI.(ʘpǰ�=ҟ��CnOi͏+҃� sX|$1)f pp�?-?�R�W�w�ux"<��x@#շl�g-)eY't9�6&��\�A�V�lOI�}>��Oϵw
�`�հx�!9(�̲ƾ$��ی�3l��=ǁ5�x}cL'OCf>Q��≫!`�L8h�/_YB�(B&;, ��tߍ�[�#Jݲo
N}'K}k�O�r6P+^�ߍ)U&ZO�2
C[ֺ�dC��HxOJ;ӧ�w
wvM�˪/~h}9�{:+QV(i)TٽoT#�8nV�'9t:s2M+kFXrF7:3/|l�5?ϛ!n�^�J~/|PTk!Sy"��v(9ө \s[+(�"n��koN%���78ǂ_4w ~3MKg�,dLbn�!Q�_N+
qo?<��M>B�ؖE@;S4�Khת܌,�glt�( pOO�%s�q�iC�E4�h2`�K_ $qE'3E(I|zw���'@ KՌE!Tͫ{J$�[[CX(H+<;
6�~=FL[pq8J!a nm
%F̟�+]��Z�Z�gY�j"i1>\q/+LhQ9C=�v�3ygUDڠmB�l�}@g;`-t{k`ep���P Z�5@NeJC|
R^`S^ďPQ%�进v⫞QUt#��ɘ�j\u[Y�m~)2��2ej�骓U�1�J���;
ظb�ꨱR#8c5�le3:xRlcJ�d`�(RG�r,
1�hR�ȑ.� ��!!\QSg� 1�a�ތ;tH�f#��ە�'r|.%Ҿ7eYY?XQd[&z;�"�Zu4_HQ9[+(�;>LFS�s�S=$�E1З؆,ϿE>72�9fWoC�#$�"M��?#�&��e/$Ln��HDFɜc1
<ԉ&|c8�0
?]KdX,�?�DC�H��h,fQ�j�|À�'�x.z>�=�@b�;uL�EHBRghI1-=E>grwЋ7���ݒA�p-vMM�9z(#��BlP�3
,pv߲OUFv-�)K%gͽm��z!ҧ~hqC�T;��$l&�<'RTxEb�вc�K.-�mG�˲s)��Aw>Þ 5�}Gz]_�}�
2w6�s,�@o��\6jLTg]vvn��آ�N&yv`Y?fLZ3��Kл�4L
�;tDd,�ZZ��Wv1Bܥ@L
�HJU�N �cJM>IU[��Y�p�pܶ�Az��>4_W=7��'�uwDF7%S@~Z(�@~�vAS��xkUݣ.�#Rlx�}ңN��ǔuNfQ�!��Q�ט$��8АbRxq 6�x�iTʇhLܺOg|g`�o�u
�JK�\MC4#:-E�7�)!ɢ_�9g��n$9�~y*'�B=rIYCC5UsZ�.zk�-~X*&i7 s?GUPKrkc}2+ߑE�%||I(%8N0y
~v�TcJd�*t�o
s_j{�J8����=fp2<��>i,�h>[�\�uHa�q}(G+�w.[Ga��A60[{FV(j�ʸGWXom�xl[6��wܟ�"_{0 p��]w\+d'y=X:Ɍ)��FdG*X[-T4NU]G(��mF{g/�91����e �rw+glBd�8j.5'O)V~XS�qր\�®�E;(�M; ��^�Io$��U-tYP�9~T;#~�2�ˈtS�ʲh9ۛr{/z
�9cj���3�}�7�)8
At�p]p
!Il/a%G.y��B R�"(v�랚n�sEX�xA�U+~v7��
M�2>\E�2
�Uїee�y�Fs赋��d5&S�8j��:=�%˩*�Y\�n); Kw]Ӽ-rBq�l<2S���ENU�J$=҈BϘOƟ 9�-�hw>"ag!s:~�C�C,I:|q}%��eNܽ:s+
m]�O�XM1�rق� �q#�OR̦�$6>�5K�:K�+o#J͝ÕKv.Ѱcy,�BI�`:4~N�>1_e��j쬂b�6<
z��m�`7b��;}a ���j
SD%�,&
X�#GU9>D�d7LvH %Ƭ:']mT,:;n n&TYwZ Jy!/?�m�20*3I;5Iy�lтX�km6@ns譂B��C9�Yh8eT�jeS)ħ2�V�&(V]6 �t&Fik��/Sv��
�[�Jݺ=-s&��V��"Y{vO�D��_]�
���ZԚdG��)���M.Q_cd=0R:�3қQ���^1WM�Qܝ^qT�sVC�
Reۡ7�9Sv|O;jK~�%w�q0ǵ./� |dNQ;oj�.O4���1[��s1�X~ʝikCM%{)WU�-[���.Fswa4ݮ8;�ak�p�+y!'(s`;Ͷ`p䘖E1@E�=~��C.�F��Mځ��M�0,cUH0�b1O�
Ԝ�
y~�-
>H�G0j$@Y&aOR^�։1!V�~swUYU|!vՔ6n5O�G-`)|g��a_GZ�-vE+#,Ӧ�7X�G)fd2gN16í��P`pT�9x�d�k.YФ7s�fA/&9u�̈�`�twO0ZO/e�c e2j!:�:k3B��@^>L%^u'[y1FLu�3��s@�1:TLSzT6B�^ϚPdi!FU
ReC6�n}(F�F�_6߱[.BF�37К*4F�k#f�6iݬx̳U&+F�4*#� CF8O@��[qB�|�
@HlrڟU���t�gb l��2َ{V�u�AW(^c�-4czz2Vs
e@b�##ٹL
d8#�ە0n-ߣVz ֞S�+�`nYGsɢzJ*�z(m2#[��nm�՟poVT�tE/V�j9L4M,��xq?
.)LlEw�l^CzBWn�0eby��On�H���-0W�Rb�ӷƓ:>*ztIN,�.\k/-vz,XyY�HBgC�Gu@+劭ФK�Z}e�t/"_;%gxO4�s ~+ȅÐS�L���\�����Tn!j:��1Ǒ!/;Qu26 Qo
&𪅃�wd[0182^Φ8}�g&;T~%Q|eB_[23+#=.�0"��k|:U�]?GA_O"=4b��ٯU|r�`B�iu&ya�V˟
eD}.i-�p(�t~cXZ�eF]26Nf�>dd�K
鵟�k0%���PN歛5l�).!9�u��f;Y��;%K'A�yKӲ#Y�0q�BNh�diHƌ1#(}%T@O[�!v� 5qˊa⸡)'UQ=OؗJD,-of�f�Q*ai<=mdXF
>e:��ʀ�?,J^?T�S)�P,o!7eDzTAaѴFE=%vB$i=�!HY:ОZR;UP�34N{>sv�ZR����@�#zSR?�)�!l�WP%Qoi�]�CtV#Vu�
o~�ظ(I�Zz3��H�G$e[��2MX?>�㕦�E^Gb*�����-�lӨd�Q2�?ZFj+(SN]�:�&�b�82N
_W�#zEJ 3|5��n�q�;a���+TNCLt���`t�}8OG.�wl%ncZ�}�[�O�B2
C1`ys/@`ɵG�58d{�7C)~T�� ?r�[5B�Acquezdr1Q�"+�0#_GQ B["%J;�8L5Z*ʶ�.whW�ϐD3 DCe�{P~?�`�w:D|8}�1sk ��6&Ϲ�q�'h$^?Gb+w�SPd{QC,G)�
k�K�!n
wK�@��nz 0/�͙�Sg�&Rc:7�c�\͊�:i�qsꟕ6!+#3*n~��y=""��!�R-�g�gEUUۓkq�K�FѳV�[p�'i(�B@Dg=;cf�aؔ1�?w$]dje�1R�\ٴ��/
m~!ҡ�d$~n�YTK'[�}!B'��Vf,X)~XJxOZ�3%+q+n>!zz�僧Ҭw?�Q_;�-V�Ls
W��|(΅� ϔqGecٽuM
BraiSNx�ǘtr�5@
?ӟ5=aݐ�sW-y��VHlm�?4o"Q�Z������ 0B,^ :�ftl"k 7AYkIS�C��m^pg !�
R���Sؑd
�|.bєv
}e\M+C,�_~ݒ"s`JWU+dZTd�R '��H2GHma8^,2wy�*s s�dö
6=!wDGS�UhQz|0Sy
e\} �O*N 3v�z,pF@#L2+O�S�ƹN!'7 ���3t�FY ꘏O4eP�(с�o
ym�5MBD4fD�An�ԝE=Pc+_&T첡��1&cf�eC�Ud'ψ+M%M:cNB�%Ϋj�B��TӲ^v�*��&n�ۿ0iFͩO!sO/f�AuW}F)LB�r��̘?OW77nG�'U�|w�W~�%ɪoI6���rQ*^�;�Xː��&ޖΞ�de|�Nf];�(Y%cE����0*0[��Q<ݛfpЫ�i;�a7�@ʃYHI!v./C��(dVƖ��næYH/�&�Q4֟�˂�^bLmrWGd�cT�Y�y�e`X�o`�r/vC!ɺ �
+7Fϸ@Ա1Y,�āeb){Z�j"qb_зm26Ɉ,ZEک8_F]"K0H�σF�a}(�&r�v�jv�+`f�S3=Hӂ]�a+J5)j0*kR͛rՉ%�u�YXL�4� j!8E.;/%G�f��_2nQ_d435V2U9)�b0ӽGe-uq_�T����2��w!-��k H�qg�'�K�)({<�l�fv^��I�*�Sɳk^xYx [M'~�moc�%N��v|�}2_D�|B��isXt կI[:RL@9M�Nd'R=]pr5El�4�T �7Dͣ�4|�G=}%�rrkhT{�YK�}O][%-_4">�)eـ?��w9��c�jGJ-f�%zlpY]!(ɱľ .���7Aƹ⣵H�l ��x�TܣWRʼf S��>{�UD�؆%\>h{�BW��Z ,ZʯE�Ջ�MdJկu3�B#ҍ7p�B4OLK�o==��jl=�nhmD2P@?T�b�̖3Eӻ�`SU!�*m�HGRgi�~-�<#
|�-�S�D;{ �GWߵS:2�qTRbZejepXzcDIb9YFe#.i{,s-݅0[�ˀ�$�
;��L[$a\:ysV��Ҹbq(iͰGytqB-I^LV����c��KLHB:]Yrt.xn@;�oC'$:]S{Sfe^$:KW\�UC�h/2'hwR-��V�Xx�]6A^frA��&
i�//N.Y7o_�ֻ�ÚT=B�2qh"LP����g�:y�7kv�$܋l:��Dq�M-�|�(qFv�W�u�
Nl�Aڎ[{.WE<6Ab4K/oLt v��zP��W K1uzH"LQyVPki^#w
[xь]T�-v�˅MJG:j>!7H��){�D�d9{�
vw�aȉK7Qn9>z�@0Hv\/�0�¤urBE~H�R�g9ԟt[7A5 I<���6vjNK`
_VկSf b.(Ɩ>�xW�^uAW|M"6w ;Zu2�8~9̋�гN
U>�^ s�fמ�{t?,K���k�ӵCLEzmLEтO q=�Yׁ∼
Ze(�7~zNY�Pl��!ٝ*�D8�X_�H�!bW$Đ�p�c)MQݧ?>08C)�[ Q4 Dwtdt�/NhA�My�:(��(f.�1j�vHDLUF�h]�Zl�;�\y2s��[IW�/We�>&
�X`H��k|�0cH-�7F>M߽o��k i496)�d-o�\I�_[p(��ˮN9n��\
�ݦ[�i\iI,0,A)1X{�{P$ڨa�Q�ߦ�xu�vT=/-TJ�>�^/5hwRwJhB��u#V�N9=t���?�C�!Ne�iE#ͱn:γLE`Ԏ�Ϊ�܀g
3y!X}%�`�
�6yI-%z����.ȧ[(34�~ %+#}U-�3La
(~3p,���ޅug>D58Q;H&Lwټа.� �`u<1/;D�$$=
gV!¾�3���z����,>
e
hС�L�YAӅB��0��F
5�8~>7LLV;=IQU:~_d���7wQ�Ww>g�@�*�y�J{9dnK�9`�j`?[:&+Y �l'kvݹ�h]jdK�KCDw[)FZREܽ3{3�@N�
�VUcrނ89;t�:hxQ�6ŽU8=6<�ρp\�Ֆ4Ĝ.qOi%��@�m5`-ϵrx�T�}k-�l�ı?[��匕NP$7[ja:=ȩh+3ǭlud�t[]7o�\#~NI@#t�A_qq�.~wI{A�j6}�-dϴIъ��ֵ3<1}D�{^`h�G*#cW�A3:VyF�re�t#p�^�;��Or�*�j!.+�(w*~v=3�"zj/�nL >@'+�E�~'�n:qO 7{eB$b(+%
[Pd�Bץɵ>;NB�Z`6i�tD{h�_DVX`ˈ�?�ϮN߲"WnB2ؿ�<4!ZJ8ar$�6&��U�?47atc:}wS�v5jx`[_�-)Y�K�_�} Al�:gs~+�;�i}NkӼ"�
��r�D{r^AuJ\y��m]Ʊ6`�]�t"_O�!�xuޢ`Ql�j=xY>|i()�Xj#�g|�\1n~!`
|D}U�aV)_o
(�k�V��J'K�e�.vX;.gKƂ�,%,ȶ_ĨA1ܽ!+DR�@g �_n��XNn��2xz#Pho�T73WC�OBvB�#Uڏ� \˄�h��gLw�lwd�l�JT�z8Bа��5C�:\Y���G#\'}sV{eb)7)�ߖ�GЃp+E/K>
٫4�Z?&�/=:��ؿnf:y*aIBq��cO`暵� s�Zɾ3�#v�
oXtb~k0b#aO�6�6g�]YB�w
�۩P-B5x�T�fP=f ļ�Ez[c�_�6N/�ؐ(r5QXԌ>MǤ�#ݯ!:jBBKuV�d��5?�����Z#_�ZZQ8�$>n�'Z�Or@^3�A:5��ӜWGl�]/QkyOQI�>f
%p�`&Z��r��A�̤su�& -j�X?��RSni�/�?,2k|7U:�
(VPn�dG�5Ԡ�PC-D�YR8�n'7c c�8|oCkKz�&6zUX�H i80[:3��<9Qk�_]AuR:y\{oiY06IFfS�E?_LM?mIQz�Y=_W����7LY��;wJf�7leG�QT2�P�>;k;�1ҘѢ2�#|��dN;b?oh}�1yi6~fpv�V`zU]�g�Q䚉e\�Z_!�ϒ1gss�LbLv<ȼ�FFTR*_�Pɀ`�ִn Uc~8zW�&I=ʺ!�� e��Wp�vX/�^�1q ܕ7PV`�B19�:@8�d裣/�\��Hcʹ{�.7�(qD�7�rȈ9�^fbBw;
긺�%Sj��:Ii|��w6b�穕/L��'輘1�X�Qmz6P3UZ/P!3Ѩ�(EX:n�
�; �Ao^=�L+ϱ�:�`jQZ8wĒ?
|x89�BBR�vU/DzM˱z��3kqIM��odqoEz% TC1$�w--h5@<�dh(�}o��Buć;^Y^]Og_�\�Qô.ȥۣn-lx�z%MҠV9z�ͅң�.a�E7?@`��mM!Bc]c�OeՀǛGrǖt�zNѭ�}1:S�vFɞb�]֕�Sl3h�#8�ɝn�?/�TXC^�q|L�-�J4TTp��&0�Zq\�
�G215vދ*� \
�<#G�|�
e��!)S z
t� KD{*�ԉ!-7"4��σf�^a袋Eמi�G ENx)f�#E��6�CON$�h���JƄ)albDP��� �Pw߅��m$n`yC
1,h�CA,>�S/>�Ӑkr\@Aϖ>?wiR(��mw�ֆWV<1_�8t��fu:B}��|yϬ�^_[RArg Cuw�ze7��R?RbFOJzh�Tqw/?�E=o|kBou��OC[[$h�2b�^�,��4��mDVM~�2"Pj}\aOvAi3/e&}`ݰtVE�
��7.F�ԇ�i.4j&HFO�cbm�u�tsf\�|�?w& KF6Tn�\�xQ|"~
$�9ǘwLO1�.�U��&��)�lw��_���9e�ʠ��>k
AQ�m)0�ъ٫}\|�U�;s{ڀB~z�}ij�̾�>fW(C�/JfVTjxGTI�CtJJ�yXV$ {gXo!��qe#ϗ �����QP!m%ֱ�Zz��I~kou՛&[wFf-faYkh"3m[�_yױS?Wx�D�X�0�HO5-b(4%y#VYfľYF{�\O�(@�h�@
넵`܋K
g=h`"z�3\vo"E>�J,D\*%+*tWrމD]8�MB_۶#Pylx{쌶I<[ӗI�Ju�O�*%$�9��^{fǑ|
�郁1D,Lov\0Yhs�hó`u߾3��BմܹVgv9TiYp<:�C?7:�ش �*f`>�.:�(PkoBU�m9aI�R:{55�8@+8bس#*M�S~+)+\<�6ˏH��0$ʽ�qJ!b
�9���~ȹ麞yƐq͉_[?IGS�H�5D@�%*$�KB�0=|%:�/؇5I5n"o7�@U66b0ZQhjg0`A��27=}Q[=k8�:�^=
[3M�Q�o�\E?Ǯqn�L�*݆'6B
K}�YAY�_w>o(p�s��Eŵ�P�8an*wmT~%�`g
j�DT�bq
&T10TUQ7H˞B^vyG
���.?6X1Z-�}c�;O��M�Xb.[�Y>1�loAUqPcJaZb �D3 X�ډw�N �DF��*<�נc�&J"w&6=c)cy,,fD!j�Y�s/l�@IY�[^V
sq�;ޠI=Ku�S,;а�d=9�7�!{�:P%3[w MQ?)�14D.L%^K؛��$��xΓEuwAkuJ$嚿}!�>=5c�5H�e�ugT@� ٷ*3p�<�]�aD�h{9A��}>
L�*�=cc��ƺ>�>*Q07
6qW��(f7FrK*�tmĐqle+wȜzE�B�
�R&[f`v3��ݗt@6Ri8
^c0NE8aUb4]Pz�x)[8L�wјEA�0�p@Eo2L\@���s?�ǜo�WUaȥ�&�u[BxA�ae]0qxYLd�|���m3�8]�j9cmxa07.<8CV8xʞ�栛v��Qb�3
�+R$۶oE��rHRLR�0څ"4{B,>,MzwQKF|n�!V�Oy�_k�ÛSXn7ʫ9>Dwb����q�`7$?�<�� ?\� 9b0Ər�E`��8&��S�4U*T�/ /%Ӆ.r<�#S,ں}�Kw�mSp=9o�A-R
{g;Q�ț|RQGڸjN�5xj��W[�3wlG,@�~_O:q;�D[X�
a��¦廪VA�#e|C<�r(|)jYC[(�r94dOӌ>�WXӸ{Ab�Z'
#3T�'FU?AnV2X
�$dg�%X �PY EUQSJ�FI#Ā\K0
s�_YQ�/�7ח�}�yUHY
ɗQ'f�=�r8w�@i�N�N��^pSOWPhBrQh��SӜ
1_ߔf+9vG{pN-Ϊ ��uGAT'!x61���%* 9�
poY~�H@{p�q
�E|W �`jPLa�
0res?O{��Haߠ��8B+8t5
�뚞%5TNE]G!#O��s0🡴(O�8#(x
=| ?Xox@,.ԢE+ak~6�ZA`0%~^~8�x~L2S1F�wy3QoodH`%�z{vCkR$%�~*F5ԟL=�i�$�~P7^
Jc9%����cжG����:y� ]zXp^Wz;?8�%(ͨLVː݆eN��`|Ɛ�"�
�-�~8߉��J'(9T�I5�#��Ԡ�@I`�!V#4U4��}FqeCYg�m�54#k^T>`n8�H�;aP/"C\
GL�2*&�|[|3v�C[̷AQգy >�$䇱Ø1>�A�G\CmNY3"x-\w+Q#��nr|x��> rVt�k�RB-ߜg0bab�!ݻ�na$_�*ఘtyt&�[�;~cm'Y?)@�j�:"�z�ե
EEh]+g̻9+KVç4g-LS
$|,@�g��m��M0�:~;��qpRgfI:H̥�c^g�M�m`p�
ú팝$6���Ѭ��ݩ�d�|��,(�r f
x�ã,),�L$]pL8m?c=5��M~g�Bnd> �Z'�$F
A[t'�ə.@fX y) ѡٮ�O�xljU�2Ղ[-
u~y&xBM�DE9oԚ~~v�2Ž`e
$q�"'9p$-�@�:mK@��-\XW;�w�f��w?Brm6]�4BK̀�<)U�]:beSgSR&C^OZ�En�M�oݗ."y�a*\1FL�0�iUmWڢ���&Bŷ�ހ��Ԛ[,_ o2xvqǏQ� $7'qTV�f� g��̠"�aGh[�c@ޒ33?Vji{&;�57PB8m3X�?�]N ߰h�d�i7lETktZPuĽ��r�s姰UڴY��{3C�ъYQ�7~l@v1�E��V
�k1l$w�bחؾOH�]�4@�n?9`�34,{U!,��n*�
s_襥:�/r��U�|>MZU.}\C\4V��^-C"$!�vx��"̸xfa��A::�06+s�ae_ֳۘ�!.1MV�Ƞ7z`)v_KV�;&!��0+^L�R/S6yQ��5�}Z0}%ף�NW]߫L`l �ޕl�+�|�4`wJWxO�Nz!<*�h8m�37o@Djfo~_{�X�Q]&�+zcq
�,kXM}h
_vˡ,��)@b����_`���@FB�rؕm!�Zl��16$��bӒbrY1�qP:#
�b_}�|�;Nvg�Q-g9"�[��(t�OU3^�@1HmrZ�qʼn.aԖ�#+br�zCrs\X"Jҕ�0}6P��^ntD.4�X@Әi@K7Yj�0@u~')]v)C":���0�&sI�T^_ >2ތ��R+T]���-qB�>O9.H6ͱ=��A��D'�Ga/mǚv$!�2d K��Ao4|;1OU.QԣES�(Oc�hX�g�i`Q"pKV8Z)gC�;-2]PݬSkߓΚ"v�a@�Rb7
8`��h$ۥj^suH߀7�fB
d$�]>_�0UOb8^vW5ݞcD��#0My iɞ@z%=n+rBB!B!U�pMK��MtJ3y9cc^$�F&N�y9W�E�2*C�ʈp�TW�ry;'��k:(1�]�ԖMr\y^�ӫw�J*4Aw�>9Ҽp�d
9C�(;݈�%G휫D�bC�oiufp#(-�/�Γl1�u
yN(Kz/\z��Z1ͽklX�mR|hl18FyN�yW�4YO: X?ץ�ɦ��c��+)b�`j`ә'H4E-Nov
m
snOD�ȝ|QDZT�Y|5�ȇ�7!~/jJ2�Η�몮�"�6h]9vD! !]�rl��j5VL�{\ڷɏɀzV|0]s
;xO�_��(��ϤዦLCbvEvp7@�X[֖Č�1U߶S=BѐkKs*6[�Dp�Î%}!#H �tGI4_ɿm;�Ud��ʹL
;�+�Ƣ,/53[6�G5hKuYO.�MH�m�W*P2:W<�P5_�dNE`
%@̪pgl�wLqU^)U$G
T^QW�}0M;*V-Q֫IFdwU4ia{Oj�hU=o:5QB�Gmz�MWPV3چ�E6&�(n�?[C֬th̦.`��BDkb!5&Wk;
�d$4zf� ii�&T'k�Jn!>����
�Cp5�Cʅ)T+AP(8Z]v�Ddӊ���OiAS9R���?!H|$@��A�H/Ioc@�;Yu#�6S9$4`qZUf�:P{w+^xuE+WNJ BH`�7;mXBOγe&ܶjY��wGR@�5�7MV
$|Zq�+Ȣ�˳L�<92k#KBܓgydXAM.jaS+�UzX\\u�{�7��4�U;I�,P~d).Ƞ4l)� ?NVt{�T
R� 0�C9˹k{́_kHd8a'٥Yss棪Grd�p܂I�/r���ܲ�MdG t�����&65X7m�"t�O@G/�j2�#�Jk�o,�T%N�v�y���Dq8�e#kFFг!t,e���Q#=G�=7=?T�|7���,2Ҳ�(⃔��ՈLJ*{~*�d �d�47t6�y̅d�DRju�rNb��(�˭jCwgbٱRKz�Ի|
�-�Ki:^G,9�z_]+cL`N]St(B5{Q�sћDF>�7Z,s$Ψ����^ZF®6y}0?mmb`uh}UǠ[uj��(2b��dh&�Hw�j�0�~+�CȒZq΅>
^�:ڪI>hVsm9ѿ*Wp$țu�Z�
Ӂz{:o>�K�F3A�uK�'xʓ{А�h0f��jm,o�r8M=sbR !hFXwsF,t,渚o%i(f;i'"M�q4txrx*Lʶ42bDDf�o7@-KU?�(�N]��Z* L,m*G�U`gwr^"L
>;�� 9r��@�5~z<-#Y�jt7_R
i||�zG}�:b7Omc�x)Q�d�5�7!d�a2��/(L��8
k�))]p��<0�
Ag
'Hn5��-Rv,y��/t0�ǻ�`ap*0973u�k>wn2;)�V2!X8#1�ّǏoʻ`��غuZ0ȋy�a`KC iJ A�laUg#+
���l�[}XcUH"HAٿ��y�tH?➦ѹj*7~�w
R�8V +�QikhD [*s( ~rr���U�,O`"�B���vgl*yI-:e�/GQ&`g>����l�W�
�m�h&�N߹g�ລ�zU.��m\j�Pˈp*-�,m��5{TM79@qjpiN�[Y4I-�Q0�7}YDCts��Ff/�0!6d�{9�t{WO
@) ����,��k�Q��n�y�̃��C+,8(z62l+67ȽD��v.="\v6灃M��C�D�B��"X<�m掜MTt��:|;̟1�W�$�ל���%�Ƕ;=�_?&I�{uz[*��qmg6)l�CS�C|~"��)�uS�]8j:,o\w(d{\(da��Ω*31Q͆st.3]q��ֻ*�L�aBWKBe�0�>@�%h{=�zp���!��C$zC>;
�X�aor.k?(�,`\�|w�>���}9�"yG!y��oV4h�S%&� 5LU7
٫B^ܮOS����͕�zУF1םK~~$��{93>|> �Tj��AyN:�3O\^d{lg\ڸ��yԷ~�=_C�o_ �Xn��
��WO~5SLS+6VHwԗ+rA�ܤȷZs+O3Z
�d}G��`*y`H1m�:K�HzV��;uA|QZ f
�e��v!o=es5�$,�t]/!+�=hɋڂːiVTNI9�2�^]l'*p,e]E_:��s�ėޛMH�I�2HO-T�B$Y�!'�Gc5�L��.ڭ2miEcoC@�y/jSwg2V9د';+o,�V�\_|aJ)m��ИǼc$�q#㎐s<>�ԉ�7uD
u&`eAԢZ�vϮ%&";ȺE5nAj���R|wMGK2/'/A6t �9eǏ��V�{n?WC�Ŗ?X$5�a�}:$��eqSOuL/sI�a"2ݜ%(�'R� S�=[H!3oS��̶7n13%ЌF�~��9`0:�
#/��:&5�E)+Q&E}�{U ��8J8`6�b1�K+� T#'"�ʁޒ�U-9�"��$cq/�V: ��q�Y�L��btpTg�1~>���x$�kv.SPl����ZI3`,,Uy=N�0LSxc�v⚻-ڸ�N8=;�tc"w?irhG$�܉�z[w5y{ޔ/wg���ORǒQeB2�7�oC�PY|�+m/EÜKE�Cޯ�lr}gw�lL^_oEdخnd엋 62~*-||X*=kw{&,f~?>fbw9�6Ѻa_�_ue`~��/ف��uN�iV`43*��
�
~!m0�?�Uc_[{��;`G�͘!pX�ó#㷥ˊ:D�kTtѭ;^IĦ̨oM~
Xڃ0�p6T-Dy4s�RһS(.[>`d5Z2�3�\n}R02oS C
%
5
}i�rk�%�Ey
ǙkAG*eg�P���5v}Hg燴�.�'ǿ4u�2EͩkG��b�3+:e�]O��R?�oI'c/NkA�&I*Wq�7FXG=}fbQ�b����MdP�D>UZ~ȽQ�/ `x�/�XK0|\@MІ1F]Ǚz%z*ӉyFY 5)4S{bS�uY�.9P/}q�v2FM3)NTFS�Z=�4$J�~R5R,VM9KN%X�
nB
Z>]�%�@�O;E
B\,t.#�u�`1�o
%\$�ٛ(�ׯ���z>�lH00Xz%(eͳC��VPntެ+�Djı�WX�?E$-_,ю��Y<*C.9��3�GtW`e��YJW"8jJֵ[mTW��-`�t=!�@��j2�=hdҒ7D9O#}I@��~`�i?�N:��tOl�9r�
ϴ/w�=x?��&m7E>7Sp~Z݀m��5�>uH�+b {V$@("�x�!7ni�7۔j280>X�*�.~r@�-.a̜rn�>\�^x�a?&NPE4MF\�UcW�{{'�CzM9�p#tX�X E� T{�`W
>�o`Fzze=�"�#2zVY����JPT~Q(G.N{cs}s!՛Hv+9e�p�Wa���^Pʵ�?KW-�ߑ<�tc|e+P!�J�-�Unmu��cTx���r�fh��/n0#�PO;%�YJ�qtli�:
l|"V~�=`#[�[0;�F.[m�#�7�#2dAH[9kaIDtYs՝ǭ�*,N��h8pm�Y>8�gA�C1�"Ve=�1n����cEG$l�2ļ7Ro)J'� BgKn) =VCz>
��g%���)aCVk8dMמ
Qss{\�BG�c0�*0N(:-b>�Y6{+ϤFqC҂*�t��bj_tV,*IC�=w�0Q7#C`5p)}dkA�瘟h'D,n�vR?U��rod�YmNB嘑VЇ,>cVP(~SIo�B#oO_{h"{�%oA`e~❦%�`':*; MQ�s��&^��!?y.Ŋk(բ20O^w�'�Ǟ�ly1};u'�VGs2~hRJY�
�Of��57-�x-�_$~^z]{�egi��Ra�zljbG5��B1cS�6ۀ�J�ڂa8�Ҝ_"�fQ P Yv�9͐k�Q\˪
l甉M%P8k/[��+Ef\
jAA@e'`�i�ꡝ &K0 ~.G%P�*Ő`գH���9�"R3�NV�k-Ԉ*GG (1`vSUg�[�Nк*|f;SGY��^�ˑqv��r#٣ 62~�!�:�55��;HmS##�ZbN쨍�.65`9L�̟Y'S�Sh&P%9Gp6���
|O3waqyO)陬xl�u��so]�s-�&
@A=7Ɛڹ�ވts
�g�V7*d攟!*Ƹh$<3w~W\x8lhSE- 7g�4&CTt���K_�k�Ni.�4x lJҪq9I�$/LV}z3i
R
QcW��7:J~(I_Bx':`.�z$7�=ư�_U�;}6~@0q#�)�Y'"#WςYKBqK{lE bU
dNO�+Vϣ�z.7L���ò�JOc*Jwy
~��YtX^7h7"�]&̞"�QIy�?Sf#VjvnZfP�{[+<,鲰FL�V)geO=pik'���Y+��s>�yQ$RG<ٗ3#@Lۆd�J����9r ljDK&��Vw���Zkw~
CE*R$BYϣb! )M-38HӠy#5o<%ߴ�Ϳ˿N0}J
LN`.�D!fmZi�l�
eO+zK4"e�8�ɫ�/jP�5O
f0q;�h��J;ˀ&fuX�Y1I�W+?oX�%LL@K�r:b�k�oG t-6x']p��`Cqƙv�Q�J�FV(Iwh*O:@Qwm͍>qF�jJ�6J&'0tS;T�[k1���U��:$`%>�.
zk?rc5�,ˠ7J+ПKN\�K���OO
1I|as=+t@�L���1{r�DeD��'&}i|��sGT��8�#=*.e��Hظͤ)~!�e<�
;ctj�o�z���?�&��#J��e=vo��AL_ea{�F�Q:O.�
ہɳEzֹW�4��hgƺ id�~)]�BSMSȣר[�j�F�yZnǖ�!7Jq9x�Q7ӻ4��YƘ",s�E&_'�Ǹ��;cAԇ�x�.`ȵOw|`jӃ)c�R[Yw�+�
na5f�qZ+:<.y�FceeT�N�'GU.ɡg�[[�(5vF�q?$p5Y�f��芏e7*`�ڒ�W�φ][VE�Ve��
r�GТ��fI�oɌ;7܆<,{r
ݷhCgF�ë1$(dm��)Aw&2cY]�'�-3i/\be>.�Lј:<�1c)6Im?ts״�vaDQe4okco�?y+�m\IΘoZ��((�)6y�IjPP_JY��u7�eȹA�&�}~}PD�|OE>wo'_|׳V`3ɬ"G-DlvG�uT�y;9znMn\귻��av>Ȋﰴ
K�A �1(>�H6TpV
ymXs>Cg"%U]ȯ?r�H ��9D
{JWj,�u �3cl2Փ�WaOt&
�|_ht8:$ecS��c�ZpoݢN�/�
��"JqV^[�ubDwVG�
S03\(TL?��o�šY8��%��k䨧=GUO{~`|��
@�BJ1{�5PGÐ&dGά|�pi�5��� w᙭�O!^-�aoAf8"_C<6mP�]�U�k�b��eh �ӊ�yw�R�=O"%}=E{VKAX*G<��綨Y(I\.X�A*97�ɢP���UYXi}gP5*Ā/v애&30>`Tͮ�c\F=NmTwֹ֏SVd�Yd14ɤ��m_0n'}AF��u/Ō� P$^in�>J�
�P1%p[�M�97C=XIQ�\
2�n'L1N0d1#qt�
◐�yc�,8D;bp6�H#yaC� [ZB`mȾºI�O4Y>j[-Cj\%����H(�wK }($5��t�O�S
'SQ42Z4z��קm�)R!,`$'Ŝ0�Q˶A~�O̗Cn]�=#} {k~�!fee4�WЏ9�.;7�Vx:r]=l�ձdh�1,.%4:&R7%ꩳ0n/,�NmG~*]I.8�lz��loub^�DȢޘs1�g`Fc�Ƚ->�8-h �e�FpD3o;p"c>mV�[L_��kBc^�<�O#�咵��_&[�S>ۥf
�za<��&(PX>B#םl��<�CLA`WB�C:-/$I*^=�K�K"@\�7L�#쩴El�N,v�x}�#�&>9@kpٮ�l��e$g|�j"�e$@Bq'Y
�Z[\wO nVa�4YI+b[Ȕe
b��
]e4k+r�~vF@zd�1�렠h,FMt[
�AZ]��kAhO�k�nH$0z�de
TF9G,�Ţ".;}�i#S�JUn�<�u8U5xJ(�Ӈh.�ʟv6eG:^^N}eK�h�GlkWFv[�HLςg1 �XY��E8S}D�2�Cw�@��@b
)�v|K�G+�JAxYgՄmVC6ﶁ�q.�c=o�|z@[b%�( ۉ#ݷ gܶq^01w!wïFE}a9纲J4�CTP^L9~K�6R�>wFԘџS~�B�V4M۪K{*�ͦ)�I)bk�J_=A![H*h,jEϹ �Zi
vgȜUJ�uy�X7 h�SI��xNlbG�N�~ `L1le`)�gA#��$(B#,=�ɡ?,P�R�XrF8M�gb�Gmqz#:F5t4cˌkhpA,mc~fM3 �wJ��Qb�kzdBK��0��ky�<(�rn�bLfr��5�g@Cl1g�6a���F1p0ʠ2$�+�Qx)+oDV��i�2C"�u*\�8P�6=�]�!A�I{p!aOh��%qf%;m"LPe>'y�r|�V; \uK�`C1 ûk)�AQz�D_{^�����?'{(�k�fus�Ly۳�9{}Lkiܩ-�SuUgH�d��f��� "J]N5pG�)�O<�O-NvHzr]֫d7<4R�d:���_�L{Wxr{܋5&aW;B;1ţ!"<'J�{БBb�6k7�02�駏�{j%�[A5�q0ftP~u�ث �~|�nHNtZ9`K�;]nm{�+zY⥯^>px>ҡ:|9Vgyˤ1k�^��/�ijhBt0;]Ȉ� �r0�%9#F�}^�_{*l9ݵ�%+o:Mz�@#hsR�M
8�*D`>Ǵ5c=&�� �.IE�7[�+5R>ګ4 �pOPGQ�!^:Wmܴp���t�ЫF�C�m��Zi
܌�:f�9�\ó#$R×6�j@`@q�K)˛)�/�vp�Wp"�|&7�ha �c��F� M�F@/ קBTV_��D-IV�I1"Rdu~M+��]G@Aۼ?ּ%Z̏F~0qb�*q�c
j�
iJ|�-;/:3-sgiDhhAY�?.�ר��:ʾPF�r^��9:Hl�ZFҧ&s檾7�
rM8����sAզ��8�i6?�,/2ӞP,QopA�ʰ=LٗEZ檺l=��#�٨F� L@^̻�fnOGpxEw��M:�!O�[*Nڽ
t8}i
S$98r�A��� ��!"�lց�TvlD~N_f%�5xAl��S�&a'Mڳuk�?B ;(aX�uT�0\(
q��ND
hyx_!mg֥Ο1=5*�8E\�
X-|sֹoYoIb���� ��4z�ڶЯ4;]jf�T�l{�u1>L�Y�$UP�?�b��|jx7a*?qs\���W5�.֓I\��
L�$�*X�椅��d_;:mA@�YR{�YmӰO-@=\~k3�ъ({�Ż;I5 FI"j(fs=�r�#!P�`h»pL.�}�1�b`]x61��I2P�~y= �ڏ�ƾ&5�G7k,2�MsJÛWyIΨB�.7�(ЦŻa�n!o;Ix `k]ehfk}��C��6�z픘a^�;w1>|ܡB>KL���8x[v5*8�CK���<0�T%�Ny($,HfN�U4!ϭdyGw(8S��iȠMo8v��GelO0�> �:��B�PPcZIWb��}\(fWa%,-۠+�n
и͵ae1�i%D9V�!yuj�3o��/x�tbM(/
�:4?`B�I(Kd>凰oyM]3:M:,]�_���Nc�VŚg1i@IH�Mi�z]nYk(ɭw9�ʁ-~ns<�;v -]u<�~M[цz9� *:>(#ߩ1��K7*F;;Pg
A[
)��3,Xegg�T
�,3�'�\!h{P
V[ÿ7�AʏGJxcS4�t9g#g1?j{ḿB'E0�A��#*>[�Ls��I$F�[[*]��I D0�{@�
Ԉ�j�`^xX�RmI/ISoE��,~Ae*x_sw]��MEysĊ18p*"iaF5V3cMCq[שּׁ_eKC�~�fn
�n�?Wk[)\kN��oL�B�P˟]@eN�=�t7VԢ^ (H�1�l�~ktx�dr�Ł��d��sn�HG2pW~GA
v6Y9sF��bWDx�-���lYE�v,:-�h#�Vg-lvU6�M�nlf�e
�VI+b
1y�+�C`���,ʣ��2D �< ��sG:cn�c�EK��Ap�8R�3�DI��mm3jw6N Djۙr��No�K2�_F�Ë-�ZDmѷOOku�bYP�3ܺC}b�Se�JC�"�[*��@7F�:P�:z-ڞ��v&R!\]&C»љGбd&8kH6x̢6:`B6E 4
C�hPO��Z���E�s��uc>��)�gS
4�/uR0W�L;H
2t7!�M���V;o'"Qio%'J�RG]W ���)};}&T=Uxu}tjZdgR7���{�j�F+R�v;�L��`Jk�/ZxQF&L�B6-
=EEҀzzr[��
�]W�lۏ�?'sj�)�嗢�32Lȅ%N͎��29q�zeϰ
f��7^B6{GAQ
dzi��U���&�p�I+IV:빨tW�0v�a�灣�v � VXtI߃Ƞ�SB��'-%κ��圫a!A�8KX6V@?ƻ1Y5�Ӓ� m�>RU͌{
`i\"d�T8lx�<- �<|E�� P_6&j+*kPp{j֔YDs{x iv=FR'U]
�- /g�!`\.W!��tǕsc��y2
:{� 4'Y�7z�A�r{T躦�N`{Λ͠�ҕ^:ng&ϕ_°9��JV<(Z��;av��v�P��<9���Q.P��&*36HQW�A=v휤3O�h��6h!VAt��A. �:nѽ=Qh�7b3�^c:Wx�d#wn!w�g(�[%XS�Gh�+".K�kE�k#�>�tꁌu��-�<�Gը?p@+)'`sT�W�.
3�n#|0UV1�Du͇ҡF?R~ை�
B5��^Tr՝xQ:�>z`
bq/]aNVBa�*o6�a1/�ɇ��З;љ�suٙs'�\]&/8*_d^7�#òt6|�=�rVRo+͙1ԟx�)]/D%/� �7Y�3ΈH6ˆZ�lcơJ<�Pjzes*gO(sJ1
�S`|8.^FOkK;��&�[9_B*Ŧ�J�W�d1m�}}LYS |)��MF6͒KI,5i2�N"m6u:{k!o@�}]iicN�7�yX���Zϰ�mQ͟Q�{p�J9d��E3m@Oo(y"|S?0���V�Eތ01��|�_�ҳ�.\Z�.ګx>ruE^�c#p{(Fo�7�o�L ~!ƌ5ܛ��X.υs/-��C7fCC*7f[x�#˥�;m86vj*R�J'-�P+��uMSE�ƅhQhϯ=k+MY6Ciُ{iKM3�*c/�$VRȗ.fv��\�asU<�uF>[E�&Oyk#\"1 S!\!lnƟ'A�+Ef�!O
/bb?jYE
")Q�(/�T#�H5[���q�~וq��b=Z>'x1}بK$ R��|z�eY=xo_jh+JUUDضJMբ�ukEוsZ*��l1@À~`�1(mdZQ B_.f2->�~zo�%[�Jqp{��:�Q�awJ+�Ufw�!N?aC�X�(��ާB9t9HZWd,Tgz�x?m�pfu
�R,�Rz�U{<�l+Ty<
eo<%8:>[9tE�~/8YBs2�[�xI�W�hQֲv/a-#00�9s6T�Ѯ�XVMњ �mo
�98\)}6�jDf�%'�T8i@��4�kOAbt1Hx &�`lh
3�Lp@8@t
��uR�9�3}~,>pE"�A|��#��];B��]jk�#@@wRF8N>6�$U9�X8V�0 6�G^ukP&QDW$�,IOx9�M�$m?p�9بkp|�C=|Q���ֽvYHs��fo↼�Kg^~&%vqM�6YC7��ݙz3ղ��|>7B3�a��*��]~(>2�XR��aM]IIUԁ�2\ �UeTsCT�eގl*0+�=U8ҫK�}�Α�܇JiJa���qf?/"VDe?w$�(%*OZ5Tx7o�*>�bA��+H]g:wǼ�֡zF�D�2�[Ȟz��A�� +)�ڡȬg&=0�%�>܈S�'0^r(*k4�Z=Ü]�z���?Ѭ�g1l}L�Sf�q.T9Qyg͈U]j\�C0��ݕe�P\pҵh%Ѵ��>> �!n�&yFނXC�-�UY{9K�$Hh�?&D)J�y#7$eu.#ۦ!n1/r`sTz}}l�+�W��uh˔N(i��^?` l+h8ɿM47@�)�~�u5F-?�/�D��R�jiCZ֏�� aH;�ze`
rC�{p#�BgX0D%kE�D#>@o<Иw]֤J[�Ҝ>CLß8J�>� "�R:�kIyERNV@�=�DIeTR&l+^�Ɠp�BCg2Urq{%ӪCI���NdҋCD�c)�U��܋wg�aLLx?|0�n
t\(Ln&�*1��n2բ(^M #s �v"J!8e/F�f-Hc\/eV�b�L0ӟ[˝ �eLSvy��Pd{,�.ns_pK� �)�$M=TeJ8{/$�]Z�Z�%f$+��ifݺ{�p{�T�($[~:$� -͠�RkY�b9�>D!Ogd�ji�2�+ǘ]=>-ﺷ/6${QB$BimGX#)hAi�"+q�e!�|1qwƬAf:%aJ��\9u ��2�֣#�X�vQ+�*_nH�ǘUx�
d˙]��hѯa// A%��W��y0]T_Yyps���.XKA�a�s �?!�j�Hi��sZC�ꬌXt_@/ ���PYO5Y.Ζ4�g4۴IG�!OjC[?�/�s�4w�ޓmy*D�wVdUq2.5mlm^�NmcFT˘�`j9靏E(t_:�nwH��)t2'D.%A`�ݕR�E(�PʉIa\p_RCӄz:^1���zUV��s�WRm�6tjn�D_�%��Ǡ��W+wx ڏ%�)��O�ಿE�UB��>A
}q�ZMΔ/6w麕�]LقF(��@�a�2Kjb4�*?>nO(N9p$!>A�9@ʼn+8:�A~skN)rEt҆XF.2�]�=o"(�F�8.2\q4Xl�1^I�o>6��ܥ=^�q�јӤ|sS��lt��L}X'�ѓW4�u+I(�
rR?[�J/h��Y/wz_ 6&SES5�7&7&͌�0
;js8ggǁZ�5�l�͟�c῞�p,>`�mA@l1�> �?y߯ev8�0?�&�M B��X4+zP_a$c
L<�\`ˮ)V�ˉ�oToGȤlLl�0�H&9S}>bf�xTIx(X۱-ڹOb㦱&zxybfU�L:طJ�4C-~97n�Y�}�`@|Nz>G? ^D�#�~5 g̯r.3Fǵx3J\&7gFO. b>�4r5j�h'�Hb�\9
6�i-uF�Ǯ2tP>�0Y�Ȟ�a2r[�?~쾹��x�a]�ٵ㟼oI?euؤ;Hx�-�B$�LHT{��i:�;mY��케4/`,�}�d7�"�?�xF�o{?gЩ
���-u#srq2=�aga�ƴƹ�Ju1U8`T�@}0dqmC)hT'Gh<īR��|�q�O��Ø/f_�T&��ܦDQ D�qU6�C1堓;GX�9ɍʸ�`-T6��n bRGsB2PARF�ȩ(OI��!X`M'2�n_Y�)ݏMS�Wcԃ�qi"�V's?2o�\P�bBD��JhxsTU+�@ ,>w>Zdc]`�hv"oʊF�Hu�ۘ'|'$jJJo$`)<
6s�W,cS!7k]�@`КIpt
-% c�S9Mpt'dr@v
CkB'Y�ZkFiW�(
x ��Vǔ
~ń��E
s\7�7rVH*m}g�9jK/�K0>�$+FS'/i��a|K�Lsߗ��]�M(M:4�kv�8ӄ5(LϺTH`؏6D<#+-�ƞ�;|�!Uҏm֒q�y@'t�'c�Rڜg o��~-��́k�o�W2��r:1�K&+hH,�b�h�C`Y�(go^�7��O'f�3���n��;<�Ln(,�۹�țB�a^�̌:�PffZ
MNR�g�f�l+I�b}��t�:{' �}*�@�j?s`@ /$�*5�#
a�dCd�(�Y67r!6
YBo6�T]1A^
�WX�J�,.�$��unK];چ[Wr0B�j�Dk|,P[CHM���(RNEoD0kƟCѭ�6�aqJ2�N$�=�Չ?Uj͗v^6~}OzxV'[�smJX
�z9�a�QwbIH%厀rRmYM,()Z�>�`��2ƗB,u
\"n[sՠ�Ҧ̽|2W>e$?c2j�rX~
�L%Ap5gvD͢KMI{utk�GtE3&2a*
1^N�LGh�SV��$wp+�B�84Lc��@{�(܃,%*��Fzs!:�Y
QwaDL%�j�ފj�2�3R6�f"^Ls[1�mXa�a�a:t=[�.ɋ&qGQþɧЧµ�9Ŭۨʛc9��jD&Rg?�l/�avNs�_Q�]H@N�h�4��1m����Ԫ_w)n,surq�4eabFs扉�2Wz1ŝW25HL���o}ۡ�C|tpp�屇�I0wP")x滿!�L��Jl(P,6m|e�Պ��ßW�75+H^tx]�˷&wtWB�ٳZ8;�U$��[5 |�\9>TQ/�B�%�$v?ɪl-Û�W;ZC��WK.C��7C(D6paCyӗ}W#3x=vF/��fEXJĴy�)3K]Y!1M5�{om b
!'=
ew��~�Fh#E.Im^�M�()h5�hi�FvTw��I�rC[#8s\j*wO��ՍQGha��(i+&R۞y�^�d˩K_�_4P\�KNTq>_��1Aƥg.KF#e
�3Q%fJ<��h8��o`䡡�cMlt�%��=I,��G�YU^�ZEpri-ۋ�#H�ߝ
B_cYYy�=!Nq{jT^%`<�2F/�&`1z F�ssG0'ڋ:A4ik,�wE"�&*)?0ČHh}xۋ=-z\�&W��g[J
k!#S�S�J��_rH#RJr�aG�3G<�ꗄ(gTp#�͝?u�yO7� RԀ{%M�wW�S:�Tp�#A�i����@yK$էoLe>Leq7���AɋL-sV'\u?AϢq(jQ5Yuh;/p�ʤ�+C��^0>�Iǧ,ձĔįp�^X�5:2��SV��H
@m:(Xc洰Qı>|Tr
3�|�:,&5�
P"O~Nn�"ch ��K�HʀGV�>(�A&xc#<�s|t8Y�gI�̏��"`˹Tjd$&�}l8����שH/gq�gj/�pl���=5ϋ"с Iu�עK�9/SH!�Z�NP��<��Au%Yr�
L2"Nd�7yWP5t�M���n��|�3-bj�k"R�� �$D}tb-!
Nܻ̙ٕ��F½m>$,�)̬G._@k�t@d0ỳ=ت%аE/�O�
dƛ ���39⌉D&#m<&�Er
OUbWuPDm�Uۉ9�|o
N��h�a""NnY*=�Zc M`
uq~�tm�!T^�
0RfG2ڲ]@+V��a5Ucy@/�\�yAr!�RJ�g9c&��#���7�$XoΘf�z�j:�L��p0
dL*L�a!O9Se�"H?|#�g=!JH%�7N�j&�4cuj��`N_G��!*
�={
UM@n=�.ӊl38q:��FS2"⎿�~;k�@U��q-nPƷ?}H
�H�&G�29K
�㸈MIPt1Q)o4S���~yY=1r�ՃH
z@!$�Hȍ~o�W,Y��d �Vl=HM� >�bYjPNYh\~H�2+�MH�n=t�1`3R3~ٴcp�9�b[M
A��[�r)d�$-@WN3}!IWZN6e~̋'z۳cmҏ4x`�Ǝ^AL'ttf C�su,#긬VgI�sX+3)���6MQ�S;-�UT���KN5�^-/R6�L#�Pyֽ/IfJ�dKz�6'Y3Bo�T�*K
��e�JػIW۫D�L�`ez-U~�e^#!!�ʗdhRʴ/�7}8�`ն1ز�pjOg˺Qe$�k7N`LOjXL�Tz4+t?9qhi��vҿuluX̯dok�̊=Yg@nq�,�nh�7013�Nw.g�S0(J'
%2q�q�9-�іl/�٪a%}hئS�wנ#2��='(\ αsæ�`00��o=z/zXM�_4"\�|hI
l�
�bfp¨ƻ�;ADoKY)hG�!Cg�IS7��7|@�$.\Wl��%VoUҘһ1o֦�#m0C3�fj�7wi@.[ ]$tFLzG7=x;(�j(�F��`�YZ[*|'K3\26!z)5(O3-l��Tj;-�o
_4L;��'ap0Jr%�Ca_d{ʼnO}-h�C(ώd=j5;Dű�G�yit��Ԅb!W�6}O
'V�����u�Ό!��ǟ#�EfY�,;g7��I
�[��5�F�i/BG;�8Յ�̚L9^+ŪR
mz[tw(A$6�w�UP�^X��9^99
�t���vQݝF/��x#|!�~#8=If��Xm�N!�cw�yǰ3\�7Y�3>$�.!,�z|%dX87]�?(J@<
rDUj���ܩ�<=�?K� ,^�B�^O
M.ը7��7j���r2ey��RES�̵$xAB.C+v�H�E sw|b�41�X߸�3%3y5*06gi$%a<�|>�0VN0"͈=�eg4uz�ђi�6*5>�r9_6oe5��
9��u�9K��hdXߝcHkFѫNmz5wz'MO]�)$lN6K?b:s]��$*#!iK]k=&{'īñ�q_nr3u^"և8Ԋ$Oi��%٤bqVfPU�)íT!�l{h�S#E�&(i�_�v'
ԣ>IZ�rbQ�6-['��6&u0:5tC}�^�Śh�fs�R����߭<'F}ƹᙞ�JȚTlB��?g都<�$"5`|V26bx�#@a~N3�)O($}M.U�]I_�>?zw�nֻx!Fڣb?<`�5�c4?HI˶u��32�6Y?ݺtd=t<`?#a*wp"s�۰��m&�ʽ`�Peח7ÇR�T\ԟ�mĿr]e!ʿuH(yM
�9d.^V-^=W;
�o&} qO=��E#9�ߩNMՎǭ�R���9[�vq��{ɻa` Zب�H<;�3/C_Ye_ڻ&�X���Z�bx��ֽc`Wߴ#'&\zF�7�¥`�?zT��Ϛ)��0j)�g?M@̕�e�S͛�OZ%\m`'�7al#mNVku3@5՛nX}�I$�;{Ė
9�Ʌu,+bl��VeA6x�:@kR6 pr�'V5;�_юq� ґa۳��/F�42E:CPqD.�P/���GN
Fq[܀1
�k�ƷЯ4NY��8ZY
PbpQ"4Qw͍
b�Fu:Ke�XR&a%&&3�: �3̹W^&�<�#w�wS&2\{吃doLu"̚uyBJҋ;(/nՄ��Pi�tJ ."�coJ�qp�Y@Pah]V:D-ct���Pw (2��c�P3Av*FLQd]Κ׀A8<-�TB�f&�ԥخ9{�WI,֭?�s9
K%�r9�f�=טBx4>�1hZ�+�R���e}=C�baL,F9PS~i��t�ϼ�Q�6^b�t�'�%,�;p̅k(�f�8neS7Į'~�Bژt+=PdD��~j67:��%�̺|lЄ28qLP�:.vI�W(�c̻J�I
#m\�Oj_ҦBOv��l`/H
LDWu�e*�'T{VQ̣q�Ճk(�|[�IØ磃犚MT2bG�+^3I#^g7E�ʮ�LD�nR� �ITH:ёaW���/�i�UQca"
yO�V*C9,nXE2r�� o�[�!.H[��S`Cw>� ��&8:URMt|M%d�RA&��ac�Z-�corDҫR�T&��9�3
�Y1woO`7]
t0ljMD`N},`[�$x!�@�z Aː�%�//_|ij�;jMl^�ԃ&�eDPaє>qQBu?�+�]D؎T|<�(+S+�`+LV=Qy�5eX&�)GGލ=#||�6�b?]ġܩ�`Ö3\lܥ60,_t�k$t�NQ5(!F~�{G�[sI̠־Έbif�w_pQZ��&nm�lA>:I�~ nGYfSi0IaMZR�##!w�-6k>(d&2lR�zOa
R_-]w6vPmA`?݊
���'��`QH^/�ϲ̝UEOW>qMu32�x���@φ\)\#�-� P.1)�e@UX̐$3��ѱ{��9R� �< j?l8�^�>p`?ki.�[�Xf�I RqZd^L�&fx8`�qSO:rb^)=wHi:IH~@�n&DIeсSL�>~U1�ZZ0JV�ʞ~6^\j�rs��,}x},�Ґh2hL��*��;ꕖ�Y2n]cڕ5�%``lN�yYl��磫uW1|�9�.lM�"=?4�ϙΔkGA"y��5U*)�ڥyOY/�K
-r~%�542GUHY�Yg
_ϻ7[۾L|מ9*]-6e7 ��L4vp>�IL��ar�j�c7�]�wǻ/eNدmena&;��569jM@��B�
7g1kJ�!�̺�~vC8���`BDz�aGDbp�0!4:u�F.�gc'��'_ +pz"�OOR9 Xƀ77گTe6`Pg7�E;w�8*1u[㋮�%+�'δL��KKDC.eό=\ŧ0mDKѰx�^h7'��ln�Eۑ0~�� �pO`I},�D�*n ufǁ\�x�RYR�=�']k�8
gu'E
Ѽ�iA 洡!�4
���C"4im
�N7N9Z`,G�=̾W%qW�h���q�[�.3a(pnv/�2��4-b�}�h���"GDdu�әφ
u�8��q}T0Z"=���q�7NjV;�Уݗ$�G�h4W�o<�a�_Sn�-�_�Њؐ�}l�I04{Bb̰SӁE[7 _��#v�F�R8<+o-mJz>A1>I�DD�F0kA�e.p � �^e#_;A+�AjxW{ŝM�ozd;|L}duI&hJ�!O/a�t*P��#&ƻ;.�kʫT�+@wdA鈃ZӨ1h"xNZ+j/'aT�j<`A=��t*�P�sr$O{D�u~-Ŝ%"v$ȴ�
KXHUGca�)8�
l\N:2o*-F~5��JQ�JD�>,+4GĪQ^:@D;̸�Q�O[���Y���T�J�[js3*�@Y+Ŀ�}f '(@.HW9̂S;K>_�g�A:VWa7ARyfD2
]}wGTW§Rf.
¶i1�kYOBU=�`pmq��4E��a#��h%tY23�yRHu{8n �9ز)1kbk9-)�P��դV�hzT�ϭ#UwՅ튘gÇ� ThX)ϗh�N;�AXDb98j+�-8iAqcŋ,3X,D[g;;X?VXi=@c�4K0F_�Lmå�1?ۑ)�|�隱KLr#�z^(�xm~vnTf6��e86ht]aI')tz(�
0hWkp<^%9A -�ӴΩ�|xQ�V��x�H.r=ЁZ=���2@nݰH��z�Y�*�+BJK|:[k3�Rp"4EƢ�:OZ8t*~=&HXY�Hc��L*O�jr`y� -a�@�q�EoqW~F�2Hj
W�!�U�7[EvK]M=\��eKs�Y/�4��P) ?5X��~�s
sI�m�"e;4��j{N���)".�0d}ԭ-Б�wJ1)6&mg�no`AJ�z(�3w@t8h6pYwѧ�M9sӕ7;zd%*&8�VxtA�y㳫8}+q��q1E[>ُ�2ne@"!e:E0�]�Qyr6�OJޭ +$5{p�n͌_� ��h�B���_gU�5C�ڔi>8�#O.>`bf]D�W&��LHc�vëE`�"-�[�؆j�d|/8Цϡ�i*o=��JM{!
3w�@VQ-1"z{rfO�~9'M
d.#,�\]�&*E ����rYVIg-Jbo�eD�_;�LVfi' -7W-Zgi1lf{�d/LA *L`X59u N5|!8C�&؉lmLe��scӰbh2��~0��&Qmx��OdCä>.��E�ō#$�9e[Z��&u_'8k�FDs�2�1�8NꗋzٟDl2w$c�̱xt4@aX�Tr�J4xW��}�aWvDo�OӓŝkJ
͘|3yZjq�%/¤51��T1#_�dGD3O[i
P �D�y�6sn�'=^�4t\? ��gnN'�uDn,UF}惀\DL}2\:R�m��
��Pإ'l"ܧTO5QAf�
6i�wR��Eg.b �Fz~ܶ1%p�j[_Sluj5��+1�Gw2^\�7�8I__�'�ݘ6&�ó'h �3��F�a�hzq�ŋJ1�1&��I,���nhټWP
�v���~^G!ר�
�Z�f#��*9a=0Uܓ\dM�s�LS'eǎg7Cְ]ْDO3��z>h���i?9pobg��;4!�:own�&I4 $>ؠ#A"śhV3aUU荢W`�
J;��MIStv�1y+?!Q�Jmi�����=Ձ�ew��[4h�6kv�7zK�lb�Yۆ&ʾ4ǫ
rs��e\Ͽ|��
,�HOި�Ƽw]�X�0bu,chӈ?H �� f$~֓{/x�dwY6#uEQѭ�`7�UCjAU-"N|baF'Up'{l~�F�daQ��f�d�8Ku۬p!}
?ˬu�O/ @�Vr]+��G.jFH6
pjB0p
1:!P�Y'A�߃(�s͟I�Nf8�sZFv��U&l�y#P�9{
�vCKf_֕,LU~�P>@"d%I�To�9o�]+mQTm><ԋe�0ܓ�"�S�&��MR*(fW۞�ñ]5�%�ea&4� ڊ
<}13"ADwxA�ʝ�@�
%�4`a�EnjGʮr�.?5.%G7��@FH8ff��,��o�:"Vw���ʜ0�v_|d0b.\0eӹ�M�+3\,pDd8n[ЌO��;Y܅�&y�d"X�]S0۬ރٛ�d��*}ӂ]`L3_A$���%��.nM�^t �1sDL�ͮc�3g�EL6ZPI�δ�oӖ_i+xO?Y]Ȳ7Ҡ@G=po�l]*��R~eZO�B�$t0�_K/
cW}_@#Wd�0Vq5)�-|]З53eb�1@b@.�܃@؉t�%VR13yI{y�F+8UT�O��/Ak �T
!aSrS"x�+(� e}~uܱ"XH=$�1P���P(�H@bMF�f\���XcQa�r�&mB-FQ.��r�cPNo�$$9�-À16W!i^P4zZ2>�Q��Bntg�7x;>[`�4-VEl&�IzE!I�� �zEC쬛$4}jvdg�5x>C
�8��`2*|Je;Pة3> 2��)"V�"V�I"slHl�Y�'T.Wg=p?9'�;VLZ:��mupk�&z�{{DY{>�Q,^dӲ6�\
�6�J_aAPd0�Ja.�n�L,X>[!쑁gຈ&1;!!og�Ȃ4T5I sd^� eO(ʹ>�aERAw72O�7ѿoQbϢ6 �D��Q�3IfƁyV/DMp),F$0;6]vDĀ�j�!�LWh� B@ܤ1,����2b G1T/eE4U/��˲XRT
+^�K15mv/مe2-:
=Q��X�/|�[��jǏ�ovi8S��-�@OE�~#}Ѻ�f51@5ik���2R1Rqa, w[XN^G��x3^'T@Z[p�Zp�6t
68�cn/ 2 �G�����csH�MN{oT
�G�3;`/ a)�(6vr�@G_J3qíf�H*^��$Fw"�[%ZumQS&7�Rb;�ϳ�{�+P;�_\d�;\>{H�wx"~n\WԓJj�e:LLo'R9�P#d@[^�*�={ ��縴G"nYltڒx� ,(1}"�G�%c3\N�M�0
IE+<;�M.Fh&3{N�A:Iԡ:vT�iP*�?�:aʽ2zi姕)}ځڤ\ǨŒQB�Dej2��L1]T=fZ���"@tiihC�#٘6�N~BcH9y_V17o��N�fе
|˨\RQʓM&8D .A9`<~ߚx+?�jp5;bfsj�PTc(BS;ukR#MqmC8#�]+-UB/�3WYEפ�5wp:|Lu��.b�;�D /qaR g=^eR
.�@�0"�34q��ԥ{� ���l8Nbv��8X��0�ɠbN/u7(EquQ�h��jd[?&2̘!7j
�^
`Xv|K�|fG�CvP(Ho��yx�2�p�-SA�ҪE^��F8Տ�NӬԉ]=���[Uiڽ�sq@V�v4B"(âw�EtJ0wjn4ˏev(m;an����tۈ �9Y��M��R=�F��УnƠ�p:/�Ȅ�j�#X����&_Y9Ɇ�̪�q*)%⇏Zp:sNd| (aoF1�7j�̝
otz�}`G@��)��2�w[g>;�@t/� Jvl;Y�eh�ۮǘ]U(AM̑�6�P
6P5�(T_Z
��!+|_Ӧ|s&�!#`F@�V%�i{&QYXD�G1ރ='
2�@w߂g7&yJ�®`�'>�E���7Nj̜pG�,�;D@VΎQ:�[�|l.��HQ�}��Bk�9ei�b95gXgFD0�27OH7!��7bԕp.�h��=t꾖�w�ltǰnkw�[K
9_�@�e�?c�l�nT�*$A<��{j{_ޅviu}禙Ofjˀ�
�v��%+eF$&RƣcbZN"s=+godj
�0��)�ozHx\:1E㪇aS!gU`�CNZ`X�KX&
f*˗�X��/8fpf�HX0B|Ӭ:8�3y
F��{�[#>I���S�W!�nd>"/�X/ g1l�1,�g=ݱxqG܁([!@W36Pj)�G�eNP@_gKt�IБ_P݀Bz�7�Dbdw�J��}=�LreM�bTBi?
cVQ�B"TF�Bx��ݓA
��^l� O0͎x\Tf�$&J�B/�,p� GzZ1I)/AM^l]&�hE3Ui���sGc>攸r7(m�{ CGDM�g�
;34;SYd#`」�{,�@�E��]�w=Gϴ*?��nd;)Y�E�0D�$�X�'*� J�EKWxb
l1:ɞ���f'|2jƅHY/s��#.5,�CkykT> �� d>lP"AW4�D
z ċ^D��
B&�:+,E� $)�+IŤ0]YY%zչB};(E,1c��K8{z_/{,�U d�$�툂`4#ԽTw�&̏K�n�tf72 #um5U�ײ\u'aJed�p�=L
T@m�wIۥ>.'���И�P`=m[@%3]snC'لj�T�nbve)��[LH�3�aED1N�nbkL5;L+0"Aۆ{/�
${&s3(7�(�u"|�
tG��i}Ip< �-p,lx(D[%Ji| j/6"d_c|3qMrqe��^�{c^ l_DiςaGqmg�|�FhRӻ5y/b`�1^Kۊ7yb:+rÇ�<9W2.Zy QAuc�3F9rpGC�+hCӃdw(l�R|O6nsL�fTtxV^X(�*�1$*{g-m�M/l lc��Ӹ
�m8�k� �z~�ghm�0NuA�E
�]|(b��
\vn#`8
QRl�;�SE�}�OuD8�&%/pS>Bm Tz5B!#�jsm�p�?r$;1^Ǻ'1�>Ü:I��+9-%Ral�z�Myo�b![4Z=�0>e~gA�� /�z�h%Tvw?��x�?$�ihi�qI�hSJ�{agI(4A(M]
G�N�8f'�n�a��yl:$Xa=276̯C3�HJZ\2�9N�0Tmzw4cWV�_WWo�({3#��
[S&ף��DΫ�
!ik_QƜn@�V "R9�2�m)�_�#jJn�_Z
�$˼b~�c�D�E.?��Baww݆�eDS'�}�{8a`�OO�5OLޟ�Eubh5uftakX˘e1�Z_R>U9=+�I!;mcӅ,W.�ϦaiJ%7oۧ�x
q^
bE+�l ɫ��둴�g+M�X4ZG@>al D7x-B~VO6~qi.j�btF%�oR|�ꣵ�}|̍.� aZد�7u% �`i?V�#�^`6ſ�yH�x���ب>˛,';�4ФqSӈ�s�*6Ⱦ)>½Alk�\)+\2r%,t����!=
-sD�eb:5.w՟�y���qH��~!Dk �*�QklM=��( �`@u
$��!2
Emz�*oʹ�$|�Z]c�ǹ �T@�{�rRGN|�,Tįa9r�Q'HśbL�}d�ΰӄFXEۺށH7??�۳�nL4���IעP5�
?�qRW`]9��+55,}T=y7hh��dy[kLOl'Z�鏓A\>�5�EN
�>
`�VKE.^Eor%Ž?bn(["#]em[�If(�/5c `Fq0ٹ�s��҅x�;w<�qgH�_<�|/³fQ)$fdt`ˠ>k�i1o-�
B[H<�v+y�@L賚o
V���- ˃h(+Ŭ"0K*��@ͩœ%~�JV�fY�9\,J7v�xvj�aA
&�SGh�vV[[q2ǾtOU���3��Qzb~A{�2g�=YsUݰ�a.R\1Ӻ��}O$�ݼ^
2,ca)�gf�[GmG[;bl0pK�u!Yx�7GfHʍ�m{�W_�ÕE/W|V>QZ�%t7-usQZb"St]7�9X~$Ͻ@N��^�B�%Vbr�
lvyLm_1Dˋ�bgPr)D�k`CUSH�[c3]�Pi�!��ߥ\П19B�~
H�JYo.U6O1VO�����V^w@ă
�H]t^1$p݄�Y>s&��[QF> .yyh\϶{\:�n[��!:zi�g.lJefo�I8��!5���*of�&H_WF5S{�5i�Sy̨!%�=u@�K5����%�_9$�#LwKmTp�MՊ<}qh)�x_B��/#t(
oAyF�slK, >x{`]܁&s� W}?odZW)r8�do2K,"]p?!yk=;m1w�A�SYiyPUq\my�F6)d�8+'Y4qj?m�i3RF4kiɊnW
O<ϋ%|X)jw�~9�iT�1-֒*ׁ#XbR�l��Mo�-�BCYLŌya��$cNö0�mf�j㢳ި�ψ��pV5�E�č=n`̝a2KZC8So�ivgө�0=�5i0#cǛ6$)[f�e+ۼھ�k��A�n[p�?V뗮Ilk#ԩ�1J��;>a8~��ԟ��6�D']H_0pA7I��óC8�%~B�?�h}˨v*C9/+9jOMHl< � ѱL�fW�ЗeͲt5-!|x�Kh榏ϕ�*f/hPS䆥]"B@$
XVّ�dX�ތcT ;�y_�-�n@�eLPwxpgq?{��8D?MyGY|�F.�&5�]�I�f�کn֫�c�<+}5gVn:ze@�{4�қ�R��*l6#.�{�RR�ɚ MHzHC�"�2ekҗ_�76=1y0۠ic� 6sһ}J8}T��`�v^(QwLj2?i�(O�uh'|sb1�*ogǑ�<|bh�j�*RE5DX
rŲ ysݎN'[H�$,�:�O8�ӌl�Cx~穀/Q]Ot�n7ECw���PF(^mL�^:#jfq(1+y\Wg�](�4n¯`n-'xlD°YS^][Ei6G!��3Ys_Gmb0ς��\�Qw��D5>/k5ǯz,$B+h�n:ei7?
u533GJDAe
nYN/�x-7>�71Q�ppK"c;~P�:#oDvʿ�j�ZE6N�*�_HMq8EM<2:
-�z�Nb!Z#_B7%S�,��fu,]7v�/1�"fkP�LX;qp\SWyk?,��xկh }k�� v���_,H�M-M?�V!^�g�`SxmHt�S$5/
X�#�=#8�/�A��UgYVd i`Gj�V(^杛Xh�ͳ�}�8ڗ�_b O(2
4�E)N{�l�o�o+:4Fzd:'}VVwm$rVn�7
Θv9�?�h�lUXc&,��]�"ez~Viw�Lޣ"E N�1Kv�E6ornLօp\+pҰM/9ȴn�Ḽ́V�h_w\f\9$E 6uTӊU,�{Np(od!V�5mY=*B{k--/�Z%1�[g:ѬE�|G'�ºR7-TgTإ�
�FN;zGA9�wSʊǴ~N-u{�(y�>wF^HE5WD��$k�N5�aб¦7hS>LvM�HoIV�yF�ZC9봸�yo-�3!x״n9dsU��=Aj�Ԙl 㕘%Y)gh��*S�G5bj'BH.,{ՀnY1|P�!2�VXbaE=(Vӡ�cHY�Fzs4�m�G�ƹw5��b?�L$+p#F����3@a-)U0�@]6SX_J}
FU{�ݒ�Po�+K2eP`�~jdjfbDS|ws#:rz*��9�7=أz�LR�<ڭvD9� s,+�Ȝi,⦢-]~P�OcM��l�/|rM0:�=!ZX`L�esi�`6F��JL֏V0Q`{#>W'��rP�:8q3aE=�eŵ
��]V�hԳ�?�u~U!"61�L IPs(#^e.? v�l+�A-&ه\sѥ�fR�95]?~(G5Zrb ؗ�$/1>:ibhz<�j� v/�Y�L
�z{94ŨO�j�X]���*5��\E)ylL&_�a\Q~P8��Mr�8�QA+�6�*S܂N
�ݲu%tx "Z�{(d3�Jt;#�ws
��既�amc,S:xRy%-Iy�o�&�iLV�I
as�i�b<
�3�QdֻK|
�xI7dyu#�Z���� 3�L�P�a�Y%�^[&���R��ܖy_\8�)RNYXFGs�q�r�2�]Ll1:.�$�M[*[�>?�~n釴FS҈a�|*%~?�oȕ~�2|/Kդ!S{R�vOM�w�����E;:FD݊�A"KI=&C�t�X�쨖�%�8#0Bh4wS�b8d�+ZU^�XuQNgIzԈ�_�/w�X!�c[yq�48<��%i~Y[�Y~,+@05a�ϑ*J�
zƏ�l4�g;NF<#֝Š~`x>ƶ97!y��fxpI��tW(Za1qqN(y�|m>�e
��
��oA�d�z7�a_+v68|^4Ag(u5Jq=��
%&h]A�
])HFutBGQnn�8���*5�ܗzpK{���#n�O|I!,z~�>q*o�Onw}�gp�hQ�J´@S);k%'De:@ c IɞAB?|6P:1GP.�qaHL�ؕ&˽ر�5�7U?sT,KumfP�պ'V��X�|
0i"iǰ�Z?qkLjW+¼T^�ҫu�`njl�!��A�JpJ~ֻ~6J}LՇO߂��N(K�J�Q 먰nxd�'[L)>�nQq1t>tE��X�CJ�;��inIQ�mE$:[SƔ�" ~S�w�?S"m$Gvb�E{6ynZ��>]m�y+lC�[�NMD�{B25w�ɞ<&y q{�)ڣ�<%R.x_ w��j#Dñ_Y�W�Q3 ,QWȤl
�ϯ'z�϶6v_�R�YX|
�uD-lEWY*E3
�u}�IR�R"و7'/>G�G_�6UWHxG9m*Z�qO���1ȇ,JZy-%�&_�i�^d /�;JW4a]�[9^O�g�Kߦ�Sy;�l>h+D�؋=SeB|D)po[#sՕ4\ш|/��C�Zg�@Go|�D��:�I ֺ2ɩӏɢʝ(L$
5�,p�w!Z�ڒRw^�]<���;�\�=>.���_J%ޢޠ�vC��F~=w�u06�gu"Ky�;�8&�,"1FL�^<7ϯ]1s2
73&2;�,'3�Gu7�[ڭk���B�9UU�5�EIWjH�9T�%ӵڏ�`5|3%8��mc 5GUAΘN+^8zd��>t<ѯzkϰk�ǵ<ʙT&��S l<.�nPfݟ~SBO0����7*쌄4H�5S�O7�)X
zHɻZ�IGxL|c8@^Tl2?��\dm@2AFN\�s8:})
p}�O0'=ט"u��6ne:�pA�d 6]X+)���Lx�X��O:yN /7A�8(�r ɨ��9 j!*�C�k!8_F0.t�NbS�E"����AB!ŕtNJFK�`�i�*D�"dE�yuR��]EkPR1�zT�dη���4vэI!w~�]4�@�uM{v�RTKk6U^�/�(VvN�⎞:b<5�.x��"jh)��p!X�y$`�54�c@�oQ:]8ףbiǼK-K-@h*�C�|��llr|j�ߊ�Rb�W_�weHqşD;,v,d�=#;]uƤ-��B
0��Rx{T\R�g[."lr��d��C�el%j01XMJ*R%`J~�Ɔ 0ze�-s�/m�v1�W1YOBm��Hىc@RW
�;t8.+&>{N20i
*�h~:
'�Q�t:r�KL`i7[ Ev��J�q*aI��$ճ��-�R�?q�S!ʒ��AvCd綥4E��͓ƤH�3CkLn�kىITK�fl$%��\;ӻǟ]n k7��$B3q|6�3�VK�Sii�#&�Z#�/�QPcUCtRۣ9MT�-r�tē
nԽ�Ɲ>S.�H�/�.�I4cN!pF�%���V{5w�,RLrJ&U.P�xP:��'\wZM}cch� 1PTL�l~g�S�%IbK:B6]YQ��{�tz@%(��C&7ԭF�͟�_3%3�zѠeXx5U�|�EO�՞D
[ȴ*k��@0�7$K[s^0���aO�"1�&�u��aJ�5krjӵT
"?GER�?�5^0K=h.MnDW`,X�YlBa7k_~@�*7/d@�֫AIqK#c]FMY49�T+2Xr6J`(eT\'�h��xN"\�f[�Re lxw8#�%�jj!8I>ٕ�d(5Q�
N(�A%py�!�\U�V��=l`,v-�@aXryڠ_>�DR_ʂKNL3X2�,5\dNk+$ȭ�}�Tڼy6~ْ3�j3A�MOj[_AVI�ʂD"
#[�>�.{vb=Џ�hB�6p�*�Nf͆\��bﱰmg={S1'g$_5ø@�%n�k%@�[X�vٜ%H�z#z� �ҿOJw@iHFhYﷅmSd:.KRD.Jz�}اߊo�fR8ҹ'p}SDzͽ�� �Zڀ`�R��Ѷ��R`i3a:��zLju"iv7Ҭ>P%ԠtV(k�Zf�Ll�;+c�W�V�79�s7'�!,i��~翚9I(�L+N� X}�#7�+tA;r�Xq�! =&_ͻ;P�o*�'8t!�ִ1I�Vq-g��{W�
^�!�sq�&h�\y3�h�S{�N#XV�bk�1�xu{��x|Ŝ݄=`x="�wL0Dҵ:�j@V[՛L̈\uui_�T(z�(?q�-\L9�
�Ф ���:�Dӂ��>&K`R?�+ێu17OPYA�fRA-M�K�8�ע(Z1cyz�9I�bewxB6F-g
f�P5� LvC@�Bч!4V!{�hMQ\V.�EQ
UD
&X~ �ď7Ms])I.N�,�f�bYK�ܨk&Y�| d0H(|n,gN>ky}{_��N<��nmI]%!LOcBSzC茻�m�8'4ҧ$kC{ea
wX7ݽ0.
[S�t�m\o�}diB"���|oLZrn�/�Rʯ"�ǔ"#KX1.��yܢ>Dz4�Few�c
R!@n(:�KM|�@ @)o�5w�M��m!r&��yl5^<��Z2{=V14U�$:aP^�u'�蘥G�yˊG5 M*O}@n%m�|���^]TdCO�'
x On�Fb�#��&��ym2яT,o;M!��E%K(b�gR�Y�4Wti4ȣWF#�{
Fd�~ 8�\�#رLi
�$C٧w�FܽcH0k<2u=
G
=E!�$(W8cEPT飺_���vO<|�-W��C'Lp6�,T7]m�LSF8۽,C]v�E�q�j2þG1ri[�D(?~�Jm_D2n�N�t
(Dj�OmՍF JkPo"~R�?'sA+jd�i8BX&v�4lMt x4tUeVZxxҢl�et?ը2��-\Bc|ʼn_xN^�s�y�wT;OdBX#kAc�.5o^���J"�
x�˂$l4~Kxc,~#
/aRj�7��J�jZhǻ��_�GF2D+iQH[l�)`s#>:,8Ll3k?3
�E�XP/|�g5G[vQO�pʛ͟
vDsZoX�3W c�W\0��+�UK�ږ!6Q���yS
j-(jcz��GvW�j�W�DS�wt��79�ns5`bF:1�?��kA
!�*'9$=rq^lE' NRk�X3���ۇC~屹�HFJG]G�]ՍH ?_�Ep�fɪݕ���U?Y$Ib��<+0zZUf�L&˧�sj,gHR�1�S�ES@◶|�#��qNfe#W+@w�]�^�8t#t�?3ܥ�$
�hĦY4HGh��Aw)�tL]n%n7Ԃy'&S-0ti�*x�k�"UiwBKΉy��mJ#KY���T8�GhhSJ>F36mGJ��
' ~єoz
B:��Y|v!7P�3(TX(R�.d0we~4YQZײ:@�6Ό˾ѿe.h\jO�Aõt�<��P-��H9<5/A
=(A�I�
,i�bO��CmE�n=>N�疩Eb�����猭%c%9SvB9�`< ԏ�ʆ^5Gy��kHWQVf6sdYy_? ��B8j�ONb�$�"[f�/�dʼœ:AeagwB�5d#�?2Sll"%�tW F�x~�|+JhQ,|�_�C`з�7:r�F}�q7i&;h� �Nxqq�A ��3T(k
xy202+8,��_J#���!�AS y
(,JÌ��ؑ�˶�x=�O#�&�}b^z(t+ה�WQŔ�5lED�m�ayR[�"*Pfj�Wa$]bm�庿�17�ݓ�ڟ�f7ޟ<2w(j2
%�W�~#Ցq垥k
�$2Z�I$XlBUpd��3~"��BMř��(pz�'>�$:<�"�U~���2D�=:�ค+dz�8c/(V'��*.}aۉW5�@�S$WK:�`W4�R�.fC:2*gtHС-K`"Hr�Շ}*lcn�'6�~���,ȧ;c51�bu�?(_�1�Z�[ըڊH�A)1{5ol
�E80�Y4&PsO�.k~Z䟃WhQxK(Cʒ͛�6VhT�{^L~HX}UeD˅8lr��W!�� ��:bNa^��aRDaqaAő�.+�H�JG��;Z(]?e{M-�qbI�.�>nvh�w]?�
fj3z�C���'hAXf�,�${BlO�� w�0v���`� [�JI̅Dm6?;w$k)u
ab�9�+U]i� ~I4P8����2uZӡlN&�9p8qv����2}kho
/)aܚK*Ri+Jy;ip��^EAZ
\Jh]y�HWJtgE6�ᩔ�
yXb2(~Vɒ)�Tvb�f��
�<�cbVz)蟼 |<@~o!ng+&^ozn�*j?aѶ�zfTILxpӺy/uZ�&
.x*q`��7�1UңЊC1B5�Krl�ˢY��9"Y^ۊ>$"�r˨r,SH�'FIcr�FĬ/y([S:�AA%5mgX@,�bz�`�r
�&"�v$(�{"iYﻫ
/.
q�~|I
�DoFG@,-=�Il.4"V2U
cz<<(墣Tl�AC?�jb1>:f��nڤ?�Y]n$%S�VY֖ʄ[(Cfve�Su$96_X�y�n�=&3�40�e��
v}(GN�On>Zl�;c�g�(��mux�ƶ�4�uW"A
r��u(c�!x/lfVg@`1O+;�O4u:w�;{սr`iy���4_5K�^�1
�$J˧+�D$R]Y����#h+�,=n;wO7��� '������
YZ