������xen-doc-html-4.13.2_02-lp152.2.15.1����������������������������������������������������������� ���4���>�������$�����������������������
�����������������������A�������������������������������������������������������������������������p�����_AC/=������ k@~O�q���3
[��b�owt��^125/wM)�^�NGǍcwZVi�,��ۓ�*"a|8_i˭Da^S(c�կ$'d�_bQg}�el%a[`0h%1Yƕ0@RZMJZЕ-e�_IIcg%F@&@}#/��7 J"��dU�kbw!J&P_R%Wɕ5bbf98daab8412c9f0b92e2267164ea450a15dfb�c1e58d6e71ed724a4a6bad61db5ec5f259ec7ed148ad9a21e23a5a5ed5bd8c3a������|�����_AC/=��c)���~�"z�(qTc##�ʌ+ט=aP.%+ۨUɭ�Îw\��k��^y& ,p�.�rt��CК^`�_����p����������������9��P���?������@�������d��������������������������������������������������������������� ���&���������� ���M������������������������������������������������������������������������������������������������������������ ���������������������������������E��������������K���������������T���M��������������M��� �������"���M���
����������M��������������M��������������M���
�����������M�����������@���M��������������M�����������B���������������h���M��������������������������������������������������������S�������(�������w�������8����������e���9������#����e���:������;[���e���G���������M���H������,���M���I������`���M���X�������������Y�������������\���������M���]����������M���^�������������b�������������c������>�������d�������������e�������������f�������������l�������������u���������M���v�����������������������������������������������������������<����C�xen-doc-html�4.13.2_02�lp152.2.15.1�Xen Virtualization: HTML documentation�Xen is a virtual machine monitor for x86 that supports execution of
multiple guest operating systems with unprecedented levels of
performance and resource isolation.
xen-doc-html contains the online documentation in HTML format. Point
your browser at file:/usr/share/doc/packages/xen/html/
Authors:
--------
Ian Pratt �_@cloud106����� �openSUSE Leap 15.2�openSUSE�GPL-2.0-only�http://bugs.opensuse.org�Documentation/HTML�http://www.cl.cam.ac.uk/Research/SRG/netos/xen/�linux�x86_64�������������������������o������������������������t��������9��D��A'�������������&����������6�����@�� ��7��2.�����"����������B�������������������������������W���8�������`������e�����
���$��,��7�����6H��"y���j�������Q����� ��<��3�����
���"������z��7���68������
�����I�����\xAAAA큤A큤A큤A큤A큤A큤A큤A큤����������������������������������������������������������������������������������������������������������������������������������������������������������_?_>_>_?_>_>_?_>_?_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_>_?_>_>_?_>_?����e171864f5cfbf7c7b3fecd9b9fbeb3da9e87f63a7284ee52eeed093f8ad303ec�f53beaf653f26eae12ff7ced3bf0735dbedad0d8baf45d31e32d33e0b868bfa9��54e980d65bcde307bad2efeab9640ef5c720b4ebc78ac8cc1eb48bd6134a5280��b3422df9c1ad850ce9b456e83713da51f123c2286cf1f9fd4eb97f57c3eca9ad�bd5267a76a14fe4153f4ca727fb99f1c0bec9e8ff77302865a83919fa74e2b8d��b80b94ff1a198b4d6e03dcc25f86a1b332a80cf36f7df4bba07c19d192059b2c�f62b4090098e5d648e9a3e615874b2e5957a93990f652eefc831d37779ba9106�9dbe69397d6c3d3c6d88c564032ba62cb41a6b8260a73fd9d6513c186d64199f�078f07651ae04fc86183bc953a94d4437042b3a3e5182bfd03e899ed64ce4bbd�f80257ef0688b6b53ccd52a4bbd9279568b22b31211e95cb4c6e86b81614a381�d344261e1861b09d9bb8bb11a3caa1fcf632c9edc2107b175ecd48555e9bc639�cedae3c3f2231b4340cf00a139bde6f3d5f0d9195d0906b227ca38a45038459a�577d188c5570ee8dbf5850e4fca7b4e224cdb2725ffa755194f366179c1fd1b4�d0d772f13207e89e3a519af0404d8ce75c584d7df7408643215c771621cb44b2�c226a811e7f3336b6b187387a4992afc47488312928731367189b2fa03d7adef�70d0a0d37169adb67569317d91415a0bcdeaf0c7870a806bb55b70092e120039�13a9c456e1d8e004ff68d58686ccc8dbb0ef298481c2dadcbf30c638c625218d�e466c9be077fa0ef0ced23a246e92d14cc0cc8fd757931079cf928689b544b32�6b03382516373fc9221dc98277ed58043f0d5b49a8cf0913e57e5e47220c2c96�bc7abdb1f733000c2cd91b519cbf7c55d096115abfef000da14ac794739fe8f0�fe7d4c19e4b15b9d82ce430eb0767c3242c24a77c9b8d8d050129e41b51eecb6�ded3add1a44dd1298e13dbe706f9a303f3b2169e18eb7d8afa43d0464f4ace15�dc229890cdab48dfcc21f364fbc04c2bbc7f3b25c04e2a8c84148685fc9d08db�a889ffd9cdd9058e5d6074d2b55f6e8c45e34e178cda364908c8cccbc08dc565�a1f487e81635586692892b1cac3f2b705eddb54a37582c7a0dd4a33fe1386a31�ed213cfd37be4282486d5610a30bb9c6c55ea3aa6bac8552669dbb46aee375a5��df5076c347e7cad2371f3dc0bc10c6877c8f5251a5a57ddc6c79e1f9b532f89f��9b3fc4dd2d139ace9382e594c2c73439a9d4f100fc61c4e4f9294d4239776620�fbf590c80aef40b7e6ab58cefe9e4351ef6afaa6bcaf4e55d7809df6392fdb96��aadfa0507b89d930b9500c7a95869685253e2082a4d704ad9ab9a720307e4e19�c225a529d78e1e1365a40264348cbbcd1ef716fa7d97d977cb93f42230a1825f�4faf9f22847781296550c42f0955595f5f23eff9cf7b00ca27ee70988aaee9f7�ec2154a382909b7652464c29ad603492e27c76bd7d0de3b5198d0867fe0a75eb�d93bafe2e73cf681a88dca3217d79376c353ff4e1e5ecee8c41c70e11b8c9e2d�188834c2a97f1edeb4cc8e0e61519c5f8559abb020373ab7886252b3809b0a1d�976728897864907825a5a2538c25cd0aa407ba15e58bed9f42232379103f1ee4�6160242648729b430f01c57403535a4cd52e480fa8aeba2b6662bf636d14522c�2871a17c16c95ab0ee99f64d6dc5c3a303ee5d0ea203246d629ec9a01164f799�91b95599c26b803f2c8bfb407d7ea7de55a783c40780dcb7f993af187e4d4200�a7cd1ffaf63b68eb2cc3c3d663847edfeeeed22d3b1039b423ec94b5198ad7da�ba0315ada992171ac097279a5924539c83bc431e243edc9efd772f673fd5301b�c159111fcd005b864ab1f4b803e059590043471e04d0ac7ec96fe74dbf857c00�3a9b4163966919de58c0d14d493b5d7c6826e43bd61f2eda3c2a4a33fd26f285�982fb97cc7b4730fc7c1c5289c87cc4d1dfe6184c7908079cfb34de8b6d4d200�fa7a5cd899e7aab4589a5d0193118825ac5072abd29bfa809c3b3aa704ec1d43�2c80a00b3c661489ab62333993243951154c8ffe56cf475ebcb8a54982ecbd14�5cbe19ee58416bcf16a88f474895a8626db19ae5f3654c894d7337bcf72c1fc5�9037f947f713649a84322888eb75d9dad867249c4c135787affea14ee1cf2c50�b4403362cc91e5249e9a32270b77e1d08f1217206215cbdcbd7b4f179b7787b0�56e065805b649e73f32af8d7b9fd0a5b317668d9ecd29a382e968e6466945103�b1f10e378ccf028b0040d857506d6a2f9f9f7202547fb83347ebc6cf52cf4d32�28d603a99a49af40bf7589771dd6810ba68ffd01c20c7d7743ec76891e07a485�1f086e043731368850e313269ca98ab91c156529ac3b961a67f54a522ef09396�5d6be4431b21e9ec2fc3e6c70050a26c3c78777e5200cad4282b96411eb4c871�e9845d2b4b1163c8f2f71b3f232161df132b103360ee3fb48495eabd71c2be87�437b2d33715486da3e3443c567a5b9cb6b8f54c07b3fac562cc7f7d20c570e6d�f66605f996aa6d38f8234276f2b8fa5c54a10903b7fa29d49d6dbdae30ef984b�372a6dbe9c2786b09c1d722ffa63f7cff6848a3b35a68d4fbd7770dfee8c9157�c4151eb9d4bb2e16e25f710099b13ab6c7b0dec076e76d504e091cf2642a805f�f778edfde8be1bff36fe3825f070a22662ca16c8b8dc1ee56c4c73c3e56dcee0�baa814fe39770cc81f77c8321ff63ef984c549fd5a0833e146c7bdc1c2097fa2��ba0315ada992171ac097279a5924539c83bc431e243edc9efd772f673fd5301b�e9845d2b4b1163c8f2f71b3f232161df132b103360ee3fb48495eabd71c2be87�0ac7f1c170045695514643860355d8026d550047e3a4853bcfab39d620542b66�372a6dbe9c2786b09c1d722ffa63f7cff6848a3b35a68d4fbd7770dfee8c9157�98394ef67fe837f917dc3f0101b89193414868cd6bd7c94ceb5ab3ccc7ed408f����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�xen-4.13.2_02-lp152.2.15.1.src.rpm����xen-doc-html�xen-doc-html(x86-64)������
���
���
���
���
rpmlib(CompressedFileNames)�rpmlib(FileDigests)�rpmlib(PartialHardlinkSets)�rpmlib(PayloadFilesHavePrefix)�rpmlib(PayloadIsXz)�3.0.4-1�4.6.0-1�4.0.4-1�4.0-1�5.2-1�4.14.1���____�@__[f_X_Wr@_'@_�{_�^)@^^@^3^ϧ^x^@^@^^�^{G^r
@^j$@^g@^_@^Nt^K^=Q@^:@^0"@^�@^�@]�]�]N@]@]ʞ])]c@]�@]@]@]]fl]fl]M`@]B@]/
],j]��]�@]�@]�]�]
#]�]�@\\ޢ@\ڭ\\@\@\�@\,@\7\\N\�@\\+@\\M\M\�\�\@\}�@\k\X)@\J@\I\A\?�\=@\9\73\4\$\�l@[H[k@[@[^[^[/[@[@[9@[v[W�[CN@[<[6�@[0@[0@['[!�@[�5@Z@ZnZ�@ZZZ@ZmZԐ@ZZZ@ZZ}@Z}@Z}@Z}@Zz@Zz@Zo�Zk�@ZV�@ZS]@ZOhZ:PZ1�@Z.s@Z&@Z�OZ�OZ� Z� Z� Z�@Z�@Z
}Z�C@Z�Y�Y�Y�Y|Y@Y{Y*@Y5YA@Y4YY�YbY�Y@Y3Y@YJYJY@YYV@Y�@Ym@Yw2Yp@YlYh@Yh@YS@YJ_YI�@Y5GY0�Y-^Y(�Y"Y�Y�;@Y�Y��Y�@Y�tY�.X@XQ@X@XۡXg@X@XƉX@X @X@X@X�@X�@XXX@XXXwoXs{@XlXWXRXQ4@XEVX43@X.@X*X lX�&X�@X�X�@W@W֘W֘W^@WiW:Wt@W.@W9WW@Wk@Wi,@WbWZWZWZWYZ@WV@WEWBW=W;�W3�W1@W1@W,@W(W(W(W(W(W#LW�VbV(@V3VJVxV'@VV2V͛@VŲ@V`VwVVV=@VV@VHV@VvV%@VV<@V@VS@V�V@V^VwVqR@Vn@VXEVUVTQ@VMVMVMVA@V;DV9@V7P@V0V*!@V V�@V�CV�V�V�f@V�qV�@UYU�@U�@UUݪ@U�@UnU4@UUK@U�U@UU>U@Ux&Un@U\w@U[%UUUPUKSU>$U6;U%�@U�U�@U�U�U�.@TgT-@TT@TZ@TZ@T@T�T@T5T@TLTLT~@Tl@Ti@Ta@THT?@T=�@carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�Callum Farmer �carnold@suse.com�carnold@suse.com�James Fehlig �carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�ohering@suse.de�ohering@suse.de�carnold@suse.com�Dominique Leuenberger �carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�Matej Cepl �carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�ohering@suse.de�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�ohering@suse.de�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�Jim Fehlig �ohering@suse.de�Martin Liška �ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�Jan Engelhardt �Guillaume GARDET �Guillaume GARDET �Bernhard Wiedemann �carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�Bernhard Wiedemann �ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�trenn@suse.de�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�ohering@suse.de�ohering@suse.de�jfehlig@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�ohering@suse.de�ohering@suse.de�ohering@suse.de�rbrown@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�jfehlig@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�jfehlig@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�jfehlig@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�jfehlig@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�jfehlig@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�ohering@suse.de�carnold@suse.com�ohering@suse.de�jfehlig@suse.com�carnold@suse.com�jfehlig@suse.com�jfehlig@suse.com�carnold@suse.com�carnold@suse.com�jfehlig@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�jfehlig@suse.com�carnold@suse.com�carnold@suse.com�mlatimer@suse.com�carnold@suse.com�cyliu@suse.com�jfehlig@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�ohering@suse.de�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�jfehlig@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�rguenther@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�rguenther@suse.com�carnold@suse.com�meissner@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�ohering@suse.de�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�ohering@suse.de�ohering@suse.de�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�- bsc#1178591 - VUL-0: xen: Intel RAPL sidechannel attack aka
PLATYPUS attack aka XSA-351
xsa351-1.patch
xsa351-2.patch
xsa351-3.patch�- Upstream bug fix (bsc#1027519)
5f92909a-PCI-cleanup-MSI-before-removing-device.patch�- bsc#1177950 - adjust help for --max_iters, default is 5
libxl.set-migration-constraints-from-cmdline.patch�- Update to Xen 4.13.2 bug fix release (bsc#1027519)
xen-4.13.2-testing-src.tar.bz2
- Drop patches contained in new tarball
5eb51be6-cpupool-fix-removing-cpu-from-pool.patch
5eb51caa-sched-vcpu-pause-flags-atomic.patch
5ec2a760-x86-determine-MXCSR-mask-always.patch
5ec50b05-x86-idle-rework-C6-EOI-workaround.patch
5ec7dcaa-x86-dont-enter-C6-with-in-service-intr.patch
5ec7dcf6-x86-dont-enter-C3-C6-with-errata.patch
5ec82237-x86-extend-ISR-C6-workaround-to-Haswell.patch
5ece1b91-x86-clear-RDRAND-CPUID-bit-on-AMD-fam-15-16.patch
5ece8ac4-x86-load_system_tables-NMI-MC-safe.patch
5ed69804-x86-ucode-fix-start-end-update.patch
5eda60cb-SVM-split-recalc-NPT-fault-handling.patch
5edf6ad8-ioreq-pending-emulation-server-destruction-race.patch
5edfbbea-x86-spec-ctrl-CPUID-MSR-defs-for-SRBDS.patch
5edfbbea-x86-spec-ctrl-mitigate-SRBDS.patch
5ee24d0e-x86-spec-ctrl-document-SRBDS-workaround.patch
5ef44e0d-x86-PMTMR-use-FADT-flags.patch
5ef6156a-x86-disallow-access-to-PT-MSRs.patch
5efcb354-x86-protect-CALL-JMP-straight-line-speculation.patch
5f046c18-evtchn-dont-ignore-error-in-get_free_port.patch
5f046c48-x86-shadow-dirty-VRAM-inverted-conditional.patch
5f046c64-EPT-set_middle_entry-adjustments.patch
5f046c78-EPT-atomically-modify-ents-in-ept_next_level.patch
5f046c9a-VT-d-improve-IOMMU-TLB-flush.patch
5f046cb5-VT-d-prune-rename-cache-flush-funcs.patch
5f046cca-x86-IOMMU-introduce-cache-sync-hook.patch
5f046ce9-VT-d-sync_cache-misaligned-addresses.patch
5f046cfd-x86-introduce-alternative_2.patch
5f046d1a-VT-d-optimize-CPU-cache-sync.patch
5f046d2b-EPT-flush-cache-when-modifying-PTEs.patch
5f046d5c-check-VCPUOP_register_vcpu_info-alignment.patch
5f1a9916-x86-S3-put-data-sregs-into-known-state.patch
5f21b9fd-x86-cpuid-APIC-bit-clearing.patch
5f479d9e-x86-begin-to-support-MSR_ARCH_CAPS.patch
5f4cf06e-x86-Dom0-expose-MSR_ARCH_CAPS.patch
5f4cf96a-x86-PV-fix-SEGBASE_GS_USER_SEL.patch
5f560c42-x86-PV-64bit-segbase-consistency.patch
xsa286-1.patch
xsa286-2.patch
xsa286-3.patch
xsa286-4.patch
xsa286-5.patch
xsa286-6.patch
xsa333.patch
xsa334.patch
xsa336.patch
xsa337-1.patch
xsa337-2.patch
xsa338.patch
xsa339.patch
xsa340.patch
xsa342.patch
xsa343-1.patch
xsa343-2.patch
xsa343-3.patch
xsa344-1.patch
xsa344-2.patch
xsa345-1.patch
xsa345-2.patch
xsa345-3.patch
xsa346-1.patch
xsa346-2.patch
xsa347-1.patch
xsa347-2.patch
xsa347-3.patch�- bsc#1177409 - VUL-0: xen: x86 PV guest INVLPG-like flushes may
leave stale TLB entries (XSA-286)
xsa286-1.patch
xsa286-2.patch
xsa286-3.patch
xsa286-4.patch
xsa286-5.patch
xsa286-6.patch
- bsc#1177412 - VUL-0: xen: Race condition in Xen mapping code
(XSA-345)
xsa345-1.patch
xsa345-2.patch
xsa345-3.patch
- bsc#1177413 - VUL-0: xen: undue deferral of IOMMU TLB flushes
(XSA-346)
xsa346-1.patch
xsa346-2.patch
- bsc#1177414 - VUL-0: xen: unsafe AMD IOMMU page table updates
(XSA-347)
xsa347-1.patch
xsa347-2.patch
xsa347-3.patch�- Escape some % chars in xen.spec, they have to appear verbatim�- Enhance libxc.migrate_tracking.patch
Print number of allocated pages on sending side, this is more
accurate than p2m_size.�- bsc#1176339 - VUL-0: CVE-2020-25602: xen: x86 pv: Crash when
handling guest access to MSR_MISC_ENABLE (XSA-333)
xsa333.patch
- bsc#1176341 - VUL-0: CVE-2020-25598: xen: Missing unlock in
XENMEM_acquire_resource error path (XSA-334)
xsa334.patch
- bsc#1176343 - VUL-0: CVE-2020-25604: xen: race when migrating
timers between x86 HVM vCPU-s (XSA-336)
xsa336.patch
- bsc#1176344 - VUL-0: CVE-2020-25595: xen: PCI passthrough code
reading back hardware registers (XSA-337)
xsa337-1.patch
xsa337-2.patch
- bsc#1176346 - VUL-0: CVE-2020-25597: xen: once valid event
channels may not turn invalid (XSA-338)
xsa338.patch
- bsc#1176345 - VUL-0: CVE-2020-25596: xen: x86 pv guest kernel
DoS via SYSENTER (XSA-339)
xsa339.patch
- bsc#1176347 - VUL-0: CVE-2020-25603: xen: Missing barrier
barriers when accessing/allocating an event channel (XSA-340)
xsa340.patch
- bsc#1176348 - VUL-0: CVE-2020-25600: xen: out of bounds event
channels available to 32-bit x86 domains (XSA-342)
xsa342.patch
- bsc#1176349 - VUL-0: CVE-2020-25599: xen: races with
evtchn_reset() (XSA-343)
xsa343-1.patch
xsa343-2.patch
xsa343-3.patch
- bsc#1176350 - VUL-0: CVE-2020-25601: xen: lack of preemption in
evtchn_reset() / evtchn_destroy() (XSA-344)
xsa344-1.patch
xsa344-2.patch
- Upstream bug fixes (bsc#1027519)
5f479d9e-x86-begin-to-support-MSR_ARCH_CAPS.patch
5f4cf06e-x86-Dom0-expose-MSR_ARCH_CAPS.patch
5f4cf96a-x86-PV-fix-SEGBASE_GS_USER_SEL.patch
5f560c42-x86-PV-64bit-segbase-consistency.patch�- Upstream bug fixes (bsc#1027519)
5ef44e0d-x86-PMTMR-use-FADT-flags.patch
5ef6156a-x86-disallow-access-to-PT-MSRs.patch
5efcb354-x86-protect-CALL-JMP-straight-line-speculation.patch
5f046c18-evtchn-dont-ignore-error-in-get_free_port.patch (Replaces xsa317.patch)
5f046c48-x86-shadow-dirty-VRAM-inverted-conditional.patch (Replaces xsa319.patch)
5f046c64-EPT-set_middle_entry-adjustments.patch (Replaces xsa328-1.patch)
5f046c78-EPT-atomically-modify-ents-in-ept_next_level.patch (Replaces xsa328-2.patch)
5f046c9a-VT-d-improve-IOMMU-TLB-flush.patch (Replaces xsa321-1.patch)
5f046cb5-VT-d-prune-rename-cache-flush-funcs.patch (Replaces xsa321-2.patch)
5f046cca-x86-IOMMU-introduce-cache-sync-hook.patch (Replaces xsa321-3.patch)
5f046ce9-VT-d-sync_cache-misaligned-addresses.patch (Replaces xsa32141.patch)
5f046cfd-x86-introduce-alternative_2.patch (Replaces xsa321-5.patch)
5f046d1a-VT-d-optimize-CPU-cache-sync.patch (Replaces xsa321-6.patch)
5f046d2b-EPT-flush-cache-when-modifying-PTEs.patch (Replaces xsa321-7.patch)
5f046d5c-check-VCPUOP_register_vcpu_info-alignment.patch (Replaces xsa327.patch)
5f1a9916-x86-S3-put-data-sregs-into-known-state.patch
5f21b9fd-x86-cpuid-APIC-bit-clearing.patch�- bsc#1172356 - Not able to hot-plug NIC via virt-manager, asks to
attach on next reboot while it should be live attached
ignore-ip-command-script-errors.patch�- Enhance libxc.migrate_tracking.patch
After transfer of domU memory, the target host has to assemble
the backend devices. Track the time prior xc_domain_unpause.�- Add libxc.migrate_tracking.patch to track live migrations
unconditionally in logfiles, especially in libvirt.
This will track how long a domU was suspended during transit.�- bsc#1173376 - VUL-0: CVE-2020-15566: xen: XSA-317 - Incorrect
error handling in event channel port allocation
xsa317.patch
- bsc#1173377 - VUL-0: CVE-2020-15563: xen: XSA-319 - inverted code
paths in x86 dirty VRAM tracking
xsa319.patch
- bsc#1173378 - VUL-0: CVE-2020-15565: xen: XSA-321 - insufficient
cache write- back under VT-d
xsa321-1.patch
xsa321-2.patch
xsa321-3.patch
xsa321-4.patch
xsa321-5.patch
xsa321-6.patch
xsa321-7.patch
- bsc#1173380 - VUL-0: CVE-2020-15567: xen: XSA-328 - non-atomic
modification of live EPT PTE
xsa328-1.patch
xsa328-2.patch�- bsc#1172205 - VUL-0: CVE-2020-0543: xen: Special Register Buffer
Data Sampling (SRBDS) aka "CrossTalk" (XSA-320)
5ee24d0e-x86-spec-ctrl-document-SRBDS-workaround.patch
5edfbbea-x86-spec-ctrl-CPUID-MSR-defs-for-SRBDS.patch (Replaces xsa320-1.patch)
5edfbbea-x86-spec-ctrl-mitigate-SRBDS.patch (Replaces xsa320-2.patch)
- Upstream bug fixes (bsc#1027519)
5ec50b05-x86-idle-rework-C6-EOI-workaround.patch
5ec7dcaa-x86-dont-enter-C6-with-in-service-intr.patch
5ec7dcf6-x86-dont-enter-C3-C6-with-errata.patch
5ec82237-x86-extend-ISR-C6-workaround-to-Haswell.patch
5ece1b91-x86-clear-RDRAND-CPUID-bit-on-AMD-fam-15-16.patch
5ece8ac4-x86-load_system_tables-NMI-MC-safe.patch
5ed69804-x86-ucode-fix-start-end-update.patch
5eda60cb-SVM-split-recalc-NPT-fault-handling.patch
5edf6ad8-ioreq-pending-emulation-server-destruction-race.patch�- Fixes for %_libexecdir changing to /usr/libexec�- bsc#1172205 - VUL-0: CVE-2020-0543: xen: Special Register Buffer
Data Sampling (SRBDS) aka "CrossTalk" (XSA-320)
xsa320-1.patch
xsa320-2.patch�- Update to Xen 4.13.1 bug fix release (bsc#1027519)
xen-4.13.1-testing-src.tar.bz2
5eb51be6-cpupool-fix-removing-cpu-from-pool.patch
5eb51caa-sched-vcpu-pause-flags-atomic.patch
5ec2a760-x86-determine-MXCSR-mask-always.patch
- Drop patches contained in new tarball
5de65f84-gnttab-map-always-do-IOMMU-part.patch
5de65fc4-x86-avoid-HPET-use-on-certain-Intel.patch
5e15e03d-sched-fix-S3-resume-with-smt=0.patch
5e16fb6a-x86-clear-per-cpu-stub-page-info.patch
5e1da013-IRQ-u16-is-too-narrow-for-evtchn.patch
5e1dcedd-Arm-place-speculation-barrier-after-ERET.patch
5e21ce98-x86-time-update-TSC-stamp-after-deep-C-state.patch
5e286cce-VT-d-dont-pass-bridges-to-domain_context_mapping_one.patch
5e318cd4-x86-apic-fix-disabling-LVT0.patch
5e344c11-x86-HVM-relinquish-resources-from-domain_destroy.patch
5e3bd385-EFI-recheck-variable-name-strings.patch
5e3bd3d1-EFI-dont-leak-heap-VIA-XEN_EFI_get_next_variable_name.patch
5e3bd3f8-xmalloc-guard-against-overflow.patch
5e46e090-x86-smp-reset-x2apic_enabled-in-smp_send_stop.patch
5e4c00ef-VT-d-check-full-RMRR-for-E820-reserved.patch
5e4d4f5b-sched-fix-get_cpu_idle_time-with-core-sched.patch
5e4e614d-x86-spec-ctrl-no-xen-also-disables-branch-hardening.patch
5e4ec20e-x86-virtualise-MSR_PLATFORM_ID-properly.patch
5e5e7188-fix-error-path-in-cpupool_unassign_cpu_start.patch
5e6f53dd-AMD-IOMMU-fix-off-by-one-get_paging_mode.patch
5e7a371c-sched-fix-cpu-onlining-with-core-sched.patch
5e7c90cf-sched-fix-cpu-offlining-with-core-sched.patch
5e7cfb29-x86-ucode-AMD-fix-assert-in-compare_patch.patch
5e7cfb29-x86-ucode-fix-error-paths-in-apply_microcode.patch
5e7dd83b-libx86-CPUID-fix-not-just-leaf-7.patch
5e7dfbf6-x86-ucode-AMD-potential-buffer-overrun-equiv-tab.patch
5e846cce-x86-HVM-fix-AMD-ECS-handling-for-Fam10.patch
5e84905c-x86-ucode-AMD-fix-more-potential-buffer-overruns.patch
5e86f7b7-credit2-avoid-vCPUs-with-lower-creds-than-idle.patch
5e86f7fd-credit2-fix-credit-too-few-resets.patch
5e876b0f-tools-xenstore-fix-use-after-free-in-xenstored.patch
5e95ad61-xenoprof-clear-buffer-intended-to-be-shared-with-guests.patch
5e95ad8f-xenoprof-limit-consumption-of-shared-buffer-data.patch
5e95ae77-Add-missing-memory-barrier-in-the-unlock-path-of-rwlock.patch
5e95af5e-xen-gnttab-Fix-error-path-in-map_grant_ref.patch
5e95afb8-gnttab-fix-GNTTABOP_copy-continuation-handling.patch�- spec: Remove invocation of autogen.sh
- spec: Recommend qemu-ovmf-x86_64 to provide UEFI firmwares�- bsc#1170968 - GCC 10: xen build fails on i586
gcc10-fixes.patch�- bsc#1169392 - VUL-0: CVE-2020-11742: xen: Bad continuation
handling in GNTTABOP_copy (XSA-318)
5e95afb8-gnttab-fix-GNTTABOP_copy-continuation-handling.patch�- bsc#1168140 - VUL-0: CVE-2020-11740, CVE-2020-11741: xen: XSA-313
multiple xenoprof issues
5e95ad61-xenoprof-clear-buffer-intended-to-be-shared-with-guests.patch
5e95ad8f-xenoprof-limit-consumption-of-shared-buffer-data.patch
- bsc#1168142 - VUL-0: CVE-2020-11739: xen: XSA-314 - Missing
memory barriers in read-write unlock paths
5e95ae77-Add-missing-memory-barrier-in-the-unlock-path-of-rwlock.patch
- bsc#1168143 - VUL-0: CVE-2020-11743: xen: XSA-316 - Bad error
path in GNTTABOP_map_grant
5e95af5e-xen-gnttab-Fix-error-path-in-map_grant_ref.patch
- bsc#1167152 - L3: Xenstored Crashed during VM install Need Core
analyzed
5e876b0f-tools-xenstore-fix-use-after-free-in-xenstored.patch
- bsc#1165206 - Xen 4.12 DomU hang / freeze / stall / NMI watchdog
bug soft lockup CPU #0 stuck under high load / upstream with
workaround. See also bsc#1134506
5e86f7b7-credit2-avoid-vCPUs-with-lower-creds-than-idle.patch
5e86f7fd-credit2-fix-credit-too-few-resets.patch
- Drop for upstream solution (bsc#1165206)
01-xen-credit2-avoid-vcpus-to.patch
default-to-credit1-scheduler.patch
- Upstream bug fixes (bsc#1027519)
5e4ec20e-x86-virtualise-MSR_PLATFORM_ID-properly.patch
5e5e7188-fix-error-path-in-cpupool_unassign_cpu_start.patch
5e6f53dd-AMD-IOMMU-fix-off-by-one-get_paging_mode.patch
5e7a371c-sched-fix-cpu-onlining-with-core-sched.patch
5e7c90cf-sched-fix-cpu-offlining-with-core-sched.patch
5e7cfb29-x86-ucode-AMD-fix-assert-in-compare_patch.patch
5e7cfb29-x86-ucode-fix-error-paths-in-apply_microcode.patch
5e7dd83b-libx86-CPUID-fix-not-just-leaf-7.patch
5e7dfbf6-x86-ucode-AMD-potential-buffer-overrun-equiv-tab.patch
5e846cce-x86-HVM-fix-AMD-ECS-handling-for-Fam10.patch
5e84905c-x86-ucode-AMD-fix-more-potential-buffer-overruns.patch�- bsc#1167608 - unbound limit for max_event_channels
domUs with many vcpus and/or resources fail to start
libxl.max_event_channels.patch�- bsc#1161480 - Fix xl shutdown for HVM without PV drivers
add libxl.libxl__domain_pvcontrol.patch�- bsc#1165206 - Xen 4.12 DomU hang / freeze / stall / NMI watchdog
bug soft lockup CPU #0 stuck under high load / upstream with
workaround. See also bsc#1134506
01-xen-credit2-avoid-vcpus-to.patch�- bsc#1158414 - GCC 10: xen build fails
gcc10-fixes.patch�- bsc#1165206 - Xen 4.12 DomU hang / freeze / stall / NMI watchdog
bug soft lockup CPU #0 stuck under high load / upstream with
workaround. See also bsc#1134506
default-to-credit1-scheduler.patch�- bsc#1160932 - VUL-0: xen: XSA-312 v1: arm: a CPU may speculate
past the ERET instruction
5e1dcedd-Arm-place-speculation-barrier-after-ERET.patch
- bsc#1164425 - x86: "spec-ctrl=no-xen" should also disable branch
hardening
5e4e614d-x86-spec-ctrl-no-xen-also-disables-branch-hardening.patch
- Upstream bug fixes (bsc#1027519)
5e21ce98-x86-time-update-TSC-stamp-after-deep-C-state.patch
5e286cce-VT-d-dont-pass-bridges-to-domain_context_mapping_one.patch
5e318cd4-x86-apic-fix-disabling-LVT0.patch
5e344c11-x86-HVM-relinquish-resources-from-domain_destroy.patch
5e3bd385-EFI-recheck-variable-name-strings.patch
5e3bd3d1-EFI-dont-leak-heap-VIA-XEN_EFI_get_next_variable_name.patch
5e3bd3f8-xmalloc-guard-against-overflow.patch
5e46e090-x86-smp-reset-x2apic_enabled-in-smp_send_stop.patch
5e4c00ef-VT-d-check-full-RMRR-for-E820-reserved.patch
5e4d4f5b-sched-fix-get_cpu_idle_time-with-core-sched.patch�- bsc#1159755 - use fixed qemu-3.1 machine type for HVM
This must be done in qemu to preserve PCI layout
remove libxl.lock-qemu-machine-for-hvm.patch�- jsc#SLE-10183 - script to calculate cpuid= mask
add helper script from https://github.com/twizted/xen_maskcalc
domUs may be migrated between different cpus from the same vendor
if their visible cpuid value has incompatible feature bits masked.�- jsc#SLE-10172, bsc#1055731 - handle degraded raid for xendomains
add helper script and systemd service from
https://github.com/luizluca/xen-tools-xendomains-wait-disk
in new sub package xen-tools-xendomains-wait-disk
See included README for usage instructions
xendomains-wait-disks.LICENSE
xendomains-wait-disks.README.md
xendomains-wait-disks.sh�- bsc#1159755 - use fixed qemu-3.1 machine type for HVM
qemu4 introduced incompatible changes in pc-i440fx, which revealed
a design bug in 'xenfv'. Live migration from domUs started with
qemu versions prior qemu4 can not be received with qemu4+.
libxl.lock-qemu-machine-for-hvm.patch�- Upstream bug fixes (bsc#1027519)
5de65f84-gnttab-map-always-do-IOMMU-part.patch
5de65fc4-x86-avoid-HPET-use-on-certain-Intel.patch
5e15e03d-sched-fix-S3-resume-with-smt=0.patch
5e16fb6a-x86-clear-per-cpu-stub-page-info.patch
5e1da013-IRQ-u16-is-too-narrow-for-evtchn.patch�- BuildRequire pkgconfig(libsystemd) instead of systemd-devel:
Allow OBS to shortcut through the -mini flavors.�- bsc#1159320 - Xen logrotate file needs updated
logrotate.conf�- Update to Xen 4.13.0 FCS release
xen-4.13.0-testing-src.tar.bz2
* Core Scheduling (contributed by SUSE)
* Branch hardening to mitigate against Spectre v1 (contributed by Citrix)
* Late uCode loading (contributed by Intel)
* Improved live-patching build tools (contributed by AWS)
* OP-TEE support (contributed by EPAM)
* Renesas R-CAR IPMMU-VMSA driver (contributed by EPAM)
* Dom0-less passthrough and ImageBuilder (contributed by XILINX)
* Support for new Hardware�- Update to Xen 4.13.0 RC4 release
xen-4.13.0-testing-src.tar.bz2
- Rebase libxl.pvscsi.patch�- Update to Xen 4.13.0 RC3 release
xen-4.13.0-testing-src.tar.bz2
- Drop python38-build.patch�- Update to Xen 4.13.0 RC2 release
xen-4.13.0-testing-src.tar.bz2�- Add python38-build.patch fixing build with Python 3.8 (add
- -embed to python-config call)�- Update to Xen 4.13.0 RC1 release
xen-4.13.0-testing-src.tar.bz2
- Drop patches contained in new tarball or invalid
5ca7660f-x86-entry-drop-unused-includes.patch
5cab2a6b-x86-ACPI-also-parse-AMD-tables-early.patch
5cab2ab7-x86-IOMMU-introduce-init-ops.patch
5cab2ae8-x86-IOMMU-abstract-iommu_supports_eim.patch
5cab2b4e-x86-IOMMU-abstract-iommu_enable_x2apic_IR.patch
5cab2b95-x86-IOMMU-initialize-iommu_ops-in.patch
5cac9a4b-x86-IOMMU-abstract-adjust_vtd_irq_affinities.patch
5cdeac7f-AMD-IOMMU-adjust-IOMMU-list-head-init.patch
5cf8da09-adjust-sysdom-creation-call-earlier-on-x86.patch
5d0cf4e4-AMD-IOMMU-initialize-IRQ-tasklet-once.patch
5d149bb0-AMD-IOMMU-dont-add-IOMMUs.patch
5d1b3fab-AMD-IOMMU-restrict-feature-logging.patch
5d358508-x86-IRQ-desc-affinity-represents-request.patch
5d358534-x86-IRQ-consolidate-arch-cpu_mask-use.patch
5d358a67-AMD-IOMMU-pass-IOMMU-to-iterate_ivrs_entries-cb.patch
5d358a92-AMD-IOMMU-pass-IOMMU-to-amd_iommu_alloc_intremap_table.patch
5d39811c-x86-IOMMU-dont-restrict-IRQ-affinities.patch
5d417813-AMD-IOMMU-bitfield-extended-features.patch
5d417838-AMD-IOMMU-bitfield-control-reg.patch
5d41785b-AMD-IOMMU-bitfield-IRTE.patch
5d41787e-AMD-IOMMU-pass-IOMMU-to-gfu-intremap-entry.patch
5d4178ad-AMD-IOMMU-128bit-non-guest-APIC-IRTE.patch
5d4178fc-AMD-IOMMU-split-amd_iommu_init_one.patch
5d41793f-AMD-IOMMU-allow-enabling-without-IRQ.patch
5d417a16-AMD-IOMMU-adjust-IRQ-setup-for-x2APIC.patch
5d417ab6-AMD-IOMMU-enable-x2APIC-mode.patch
5d417b38-AMD-IOMMU-correct-IRTE-updating.patch
5d417b6a-AMD-IOMMU-dont-needlessly-log-headers.patch
5d419d49-x86-spec-ctrl-report-proper-status.patch
5d43253c-x86-ucode-always-collect_cpu_info-at-boot.patch
5d4a9d25-AMD-IOMMU-drop-not-found-message.patch
5d4aa36f-x86-apic-enable-x2APIC-mode-earlier.patch
5d4afa7a-credit2-fix-memory-leak.patch
5d4d850a-introduce-bss-percpu-page-aligned.patch
5d516531-x86-xpti-dont-leak-TSS-adjacent-data.patch
5d5bf475-x86-PV-fix-handling-of-iommu-mappings.patch
5d6524ca-x86-mm-correctly-init-M2P-entries.patch
5d67ceaf-x86-properly-gate-PKU-clearing.patch
5d70bfba-x86-shadow-dont-enable-with-too-small-allocation.patch
5d779811-x86-fix-CPUID7-0-eax-levelling-MSR.patch
5d77b40f-fix-hvm_all_ioreq_servers_add_vcpu-cleanup.patch
5d80e7c0-AMD-IOMMU-free-shared-IRT-once.patch
5d80e80d-AMD-IOMMU-valid-flag-for-IVRS-mappings.patch
5d80e82e-AMD-IOMMU-alloc_intremap_table-callers-handle-errors.patch
5d80e857-x86-PCI-read-MSI-X-table-entry-count-early.patch
5d80ea13-vpci-honor-read-only-devices.patch
5d89d8d9-libxc-x86-avoid-overflow-in-CPUID-APIC-ID.patch
5d8b715f-ACPI-cpuidle-bump-max-num-of-states.patch
5d8b72e5-AMD-IOMMU-dont-blindly-alloc-intremap-tables.patch
5d8b730e-AMD-IOMMU-phantom-funcs-share-intremap-tables.patch
5d8b733b-x86-PCI-read-max-MSI-vector-count-early.patch
5d8b736d-AMD-IOMMU-replace-INTREMAP_ENTRIES.patch
5d8b7393-AMD-IOMMU-restrict-intremap-table-sizes.patch
5d9ee2a8-AMD-IOMMU-alloc-1-devtab-per-PCI-seg.patch
5d9ee2f0-AMD-IOMMU-allocate_buffer-avoid-memset.patch
5d9ee312-AMD-IOMMU-prefill-all-DTEs.patch
CVE-2014-0222-blktap-qcow1-validate-l2-table-size.patch
blktap2-no-uninit.patch
libxl.prepare-environment-for-domcreate_stream_done.patch
pygrub-python3-conversion.patch
fix-xenpvnetboot.patch�- bsc#1135799 - Partner-L3: Xen crashes on AMD ROME based machines
5d9ee2a8-AMD-IOMMU-alloc-1-devtab-per-PCI-seg.patch
5d9ee2f0-AMD-IOMMU-allocate_buffer-avoid-memset.patch
5d9ee312-AMD-IOMMU-prefill-all-DTEs.patch�- bsc#1120095 - add code to change LIBXL_HOTPLUG_TIMEOUT at runtime
The included README has details about the impact of this change
libxl.LIBXL_HOTPLUG_TIMEOUT.patch�- bsc#1135799 - Partner-L3: Xen crashes on AMD ROME based machines
5ca7660f-x86-entry-drop-unused-includes.patch
5cf8da09-adjust-sysdom-creation-call-earlier-on-x86.patch
5cab2a6b-x86-ACPI-also-parse-AMD-tables-early.patch
5cab2ab7-x86-IOMMU-introduce-init-ops.patch
5cab2ae8-x86-IOMMU-abstract-iommu_supports_eim.patch
5cab2b4e-x86-IOMMU-abstract-iommu_enable_x2apic_IR.patch
5cab2b95-x86-IOMMU-initialize-iommu_ops-in.patch
5cac9a4b-x86-IOMMU-abstract-adjust_vtd_irq_affinities.patch
5cdeac7f-AMD-IOMMU-adjust-IOMMU-list-head-init.patch
5d0cf4e4-AMD-IOMMU-initialize-IRQ-tasklet-once.patch
5d149bb0-AMD-IOMMU-dont-add-IOMMUs.patch
5d1b3fab-AMD-IOMMU-restrict-feature-logging.patch
5d358508-x86-IRQ-desc-affinity-represents-request.patch
5d358534-x86-IRQ-consolidate-arch-cpu_mask-use.patch
5d358a67-AMD-IOMMU-pass-IOMMU-to-iterate_ivrs_entries-cb.patch
5d358a92-AMD-IOMMU-pass-IOMMU-to-amd_iommu_alloc_intremap_table.patch
5d39811c-x86-IOMMU-dont-restrict-IRQ-affinities.patch
5d417813-AMD-IOMMU-bitfield-extended-features.patch
5d417838-AMD-IOMMU-bitfield-control-reg.patch
5d41785b-AMD-IOMMU-bitfield-IRTE.patch
5d41787e-AMD-IOMMU-pass-IOMMU-to-gfu-intremap-entry.patch
5d4178ad-AMD-IOMMU-128bit-non-guest-APIC-IRTE.patch
5d4178fc-AMD-IOMMU-split-amd_iommu_init_one.patch
5d41793f-AMD-IOMMU-allow-enabling-without-IRQ.patch
5d417a16-AMD-IOMMU-adjust-IRQ-setup-for-x2APIC.patch
5d417ab6-AMD-IOMMU-enable-x2APIC-mode.patch
5d417b38-AMD-IOMMU-correct-IRTE-updating.patch
5d417b6a-AMD-IOMMU-dont-needlessly-log-headers.patch
5d4a9d25-AMD-IOMMU-drop-not-found-message.patch
5d80e7c0-AMD-IOMMU-free-shared-IRT-once.patch
5d80e80d-AMD-IOMMU-valid-flag-for-IVRS-mappings.patch
5d80e82e-AMD-IOMMU-alloc_intremap_table-callers-handle-errors.patch
5d80e857-x86-PCI-read-MSI-X-table-entry-count-early.patch
5d8b72e5-AMD-IOMMU-dont-blindly-alloc-intremap-tables.patch
5d8b730e-AMD-IOMMU-phantom-funcs-share-intremap-tables.patch
5d8b733b-x86-PCI-read-max-MSI-vector-count-early.patch
5d8b736d-AMD-IOMMU-replace-INTREMAP_ENTRIES.patch
5d8b7393-AMD-IOMMU-restrict-intremap-table-sizes.patch
- bsc#1145240 - [Migration]Can't pre-allocate 1 shadow pages
5d70bfba-x86-shadow-dont-enable-with-too-small-allocation.patch
- bsc#1137717 - [HPS Bug] Unable to install Windows Server 2016
with 2 CPUs setting (or above) under SLES12 SP4 Xen Server on AMD
ROME platform
5d89d8d9-libxc-x86-avoid-overflow-in-CPUID-APIC-ID.patch
- Upstream bug fixes (bsc#1027519)
5d67ceaf-x86-properly-gate-PKU-clearing.patch
5d779811-x86-fix-CPUID7-0-eax-levelling-MSR.patch
5d77b40f-fix-hvm_all_ioreq_servers_add_vcpu-cleanup.patch
5d80ea13-vpci-honor-read-only-devices.patch
5d8b715f-ACPI-cpuidle-bump-max-num-of-states.patch�- bsc#1145774 - Libivrtd segfaults when trying to live migrate a VM
Fix crash in an error path of libxl_domain_suspend with
libxl.helper_done-crash.patch�- Upstream bug fixes (bsc#1027519)
5d419d49-x86-spec-ctrl-report-proper-status.patch
5d43253c-x86-ucode-always-collect_cpu_info-at-boot.patch
5d4aa36f-x86-apic-enable-x2APIC-mode-earlier.patch
5d4afa7a-credit2-fix-memory-leak.patch
5d4d850a-introduce-bss-percpu-page-aligned.patch
5d516531-x86-xpti-dont-leak-TSS-adjacent-data.patch
5d5bf475-x86-PV-fix-handling-of-iommu-mappings.patch
5d6524ca-x86-mm-correctly-init-M2P-entries.patch
- Drop 5d419d49-x86-spec-ctrl-facilities-report-wrong-status.patch�- Preserve modified files which used to be marked as %config,
rename file.rpmsave to file�- Update to Xen 4.12.1 bug fix release (bsc#1027519)
xen-4.12.1-testing-src.tar.bz2
- Drop patches contained in new tarball
5c87b644-IOMMU-leave-enabled-for-kexec-crash.patch
5c87b6a2-x86-HVM-dont-crash-guest-in-find_mmio_cache.patch
5c87b6c8-drop-arch_evtchn_inject.patch
5c87b6e8-avoid-atomic-rmw-accesses-in-map_vcpu_info.patch
5c87e6d1-x86-TSX-controls-for-RTM-force-abort-mode.patch
5c8f752c-x86-e820-build-with-gcc9.patch
5c8fb92d-x86-HVM-split-linear-reads-and-writes.patch
5c8fb951-x86-HVM-finish-IOREQs-correctly-on-completion.patch
5c8fc6c0-x86-MSR-shorten-ARCH_CAPABILITIES.patch
5c8fc6c0-x86-SC-retpoline-safety-calculations-for-eIBRS.patch
5c9e63c5-credit2-SMT-idle-handling.patch
5ca46b68-x86emul-no-GPR-update-upon-AVX-gather-failures.patch
5ca773d1-x86emul-dont-read-mask-reg-without-AVX512F.patch
5cab1f66-timers-fix-memory-leak-with-cpu-plug.patch
5cac6cba-vmx-Fixup-removals-of-MSR-load-save-list-entries.patch
5cd921fb-trace-fix-build-with-gcc9.patch
5cd9224b-AMD-IOMMU-disable-upon-init-fail.patch
5cd922c5-x86-MTRR-recalc-p2mt-when-iocaps.patch
5cd9230f-VMX-correctly-get-GS_SHADOW-for-current.patch
5cd926d0-bitmap_fill-zero-sized.patch
5cd92724-drivers-video-drop-constraints.patch
5cd93a69-x86-MSR_INTEL_CORE_THREAD_COUNT.patch
5cd93a69-x86-boot-detect-Intel-SMT-correctly.patch
5cd93a69-x86-spec-ctrl-reposition-XPTI-parsing.patch
5cd981ff-x86-IRQ-tracing-avoid-UB-or-worse.patch
5cdad090-x86-spec-ctrl-CPUID-MSR-definitions-for-MDS.patch
5cdad090-x86-spec-ctrl-infrastructure-for-VERW-flush.patch
5cdad090-x86-spec-ctrl-misc-non-functional-cleanup.patch
5cdad090-x86-spec-ctrl-opts-to-control-VERW-flush.patch
5cdeb9fd-sched-fix-csched2_deinit_pdata.patch
5ce7a92f-x86-IO-APIC-fix-build-with-gcc9.patch
5cf0f6a4-x86-vhpet-resume-avoid-small-diff.patch
5cf16e51-x86-spec-ctrl-Knights-retpoline-safe.patch
5d03a0c4-1-Arm-add-an-isb-before-reading-CNTPCT_EL0.patch
5d03a0c4-2-gnttab-rework-prototype-of-set_status.patch
5d03a0c4-3-Arm64-rewrite-bitops-in-C.patch
5d03a0c4-4-Arm32-rewrite-bitops-in-C.patch
5d03a0c4-5-Arm-bitops-consolidate-prototypes.patch
5d03a0c4-6-Arm64-cmpxchg-simplify.patch
5d03a0c4-7-Arm32-cmpxchg-simplify.patch
5d03a0c4-8-Arm-bitops-helpers-with-timeout.patch
5d03a0c4-9-Arm-cmpxchg-helper-with-timeout.patch
5d03a0c4-A-Arm-turn-on-SILO-mode-by-default.patch
5d03a0c4-B-bitops-guest-helpers.patch
5d03a0c4-C-cmpxchg-guest-helpers.patch
5d03a0c4-D-use-guest-atomics-helpers.patch
5d03a0c4-E-Arm-add-perf-counters-in-guest-atomic-helpers.patch
5d03a0c4-F-Arm-protect-gnttab_clear_flag.patch
- Refreshed patches
libxl.pvscsi.patch�- bsc#1143563 - Speculative mitigation facilities report wrong status
5d419d49-x86-spec-ctrl-facilities-report-wrong-status.patch�- Update xen-dom0-modules.service (bsc#1137251)
Map backend module names from pvops and xenlinux kernels to a
module alias. This avoids errors from modprobe about unknown
modules. Ignore a few xenlinux modules that lack aliases.�- Gcc9 warnings seem to be cleared up with upstream fixes.
Drop gcc9-ignore-warnings.patch�- bsc#1138563 - L3: xenpvnetboot improperly ported to Python 3
fix-xenpvnetboot.patch�- Move /etc/modprobe.d/xen_loop.conf to /lib/modprobe.d/xen_loop.conf�- Remove /etc/xen/xenapiusers and /etc/pam.d/xen-api�- Remove all upstream provided files in /etc/xen
They are not required at runtime. The host admin is now
responsible if he really needs anything in this subdirectory.�- In our effort to make /etc fully admin controlled, move /etc/xen/scripts
to libexec/xen/scripts with xen-tools.etc_pollution.patch�- Move /etc/bash_completion.d/xl.sh to %{_datadir}/bash-completion/completions�- bsc#1138294 - VUL-0: CVE-2019-17349: XSA-295: Unlimited Arm
Atomics Operations
5d03a0c4-1-Arm-add-an-isb-before-reading-CNTPCT_EL0.patch
5d03a0c4-2-gnttab-rework-prototype-of-set_status.patch
5d03a0c4-3-Arm64-rewrite-bitops-in-C.patch
5d03a0c4-4-Arm32-rewrite-bitops-in-C.patch
5d03a0c4-5-Arm-bitops-consolidate-prototypes.patch
5d03a0c4-6-Arm64-cmpxchg-simplify.patch
5d03a0c4-7-Arm32-cmpxchg-simplify.patch
5d03a0c4-8-Arm-bitops-helpers-with-timeout.patch
5d03a0c4-9-Arm-cmpxchg-helper-with-timeout.patch
5d03a0c4-A-Arm-turn-on-SILO-mode-by-default.patch
5d03a0c4-B-bitops-guest-helpers.patch
5d03a0c4-C-cmpxchg-guest-helpers.patch
5d03a0c4-D-use-guest-atomics-helpers.patch
5d03a0c4-E-Arm-add-perf-counters-in-guest-atomic-helpers.patch
5d03a0c4-F-Arm-protect-gnttab_clear_flag.patch
- Upstream bug fixes (bsc#1027519)
5c87b6c8-drop-arch_evtchn_inject.patch
5c87b6e8-avoid-atomic-rmw-accesses-in-map_vcpu_info.patch
5cd921fb-trace-fix-build-with-gcc9.patch
5cd9224b-AMD-IOMMU-disable-upon-init-fail.patch
5cd922c5-x86-MTRR-recalc-p2mt-when-iocaps.patch
5cd9230f-VMX-correctly-get-GS_SHADOW-for-current.patch
5cd926d0-bitmap_fill-zero-sized.patch
5cd92724-drivers-video-drop-constraints.patch
5cd93a69-x86-spec-ctrl-reposition-XPTI-parsing.patch (Replaces xsa297-0a.patch)
5cd93a69-x86-MSR_INTEL_CORE_THREAD_COUNT.patch (Replaces xsa297-0b.patch)
5cd93a69-x86-boot-detect-Intel-SMT-correctly.patch (Replaces xsa297-0c.patch)
5cdad090-x86-spec-ctrl-misc-non-functional-cleanup.patch (Replaces xsa297-0d.patch)
5cdad090-x86-spec-ctrl-CPUID-MSR-definitions-for-MDS.patch (Replaces xsa297-1.patch)
5cdad090-x86-spec-ctrl-infrastructure-for-VERW-flush.patch (Replaces xsa297-2.patch)
5cdad090-x86-spec-ctrl-opts-to-control-VERW-flush.patch (Replaces xsa297-3.patch)
5cd981ff-x86-IRQ-tracing-avoid-UB-or-worse.patch
5cdeb9fd-sched-fix-csched2_deinit_pdata.patch
5ce7a92f-x86-IO-APIC-fix-build-with-gcc9.patch
5cf0f6a4-x86-vhpet-resume-avoid-small-diff.patch
5cf16e51-x86-spec-ctrl-Knights-retpoline-safe.patch�- Fix some outdated information in the readme
README.SUSE�- spec: xen-tools: require matching version of xen package
bsc#1137471�- Remove two stale patches
xen.build-compare.man.patch
xenpaging.doc.patch�- Disable LTO (boo#1133296).�- Remove arm32 from ExclusiveArch to fix build�- bsc#1111331 - VUL-0: CPU issues Q2 2019 aka "Group 4".
CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091
xsa297-0a.patch
xsa297-0b.patch
xsa297-0c.patch
xsa297-0d.patch
xsa297-1.patch
xsa297-2.patch
xsa297-3.patch
- Update 5cab1f66-timers-fix-memory-leak-with-cpu-plug.patch and
drop 5cac6219-xen-cpu-Fix-ARM-build-following-cs-597fbb8.patch
Refresh 5cac6cba-vmx-Fixup-removals-of-MSR-load-save-list-entries.patch�- bsc#1131811 - [XEN] internal error: libxenlight failed to create
new domain. This patch is a workaround for a systemd issue. See
patch header for additional comments.
xenstore-launch.patch�- bsc#1125378 - [xen][pygrub] Can not restore sle11sp4 pv guest
after upgrading host from sle11sp4 to sle15sp1
pygrub-python3-conversion.patch
- Fix "TypeError: virDomainDefineXML() argument 2 must be str or
None, not bytes" when converting VMs from using the xm/xend
toolstack to the libxl/libvirt toolstack. (bsc#1123378)
xen2libvirt.py�- bsc#1124560 - Fully virtualized guests crash on boot
5cac6cba-vmx-Fixup-removals-of-MSR-load-save-list-entries.patch
- bsc#1121391 - GCC 9: xen build fails
5c8f752c-x86-e820-build-with-gcc9.patch
- Upstream bug fixes (bsc#1027519)
5c87b644-IOMMU-leave-enabled-for-kexec-crash.patch
5c87b6a2-x86-HVM-dont-crash-guest-in-find_mmio_cache.patch
5c87e6d1-x86-TSX-controls-for-RTM-force-abort-mode.patch
5c8fb92d-x86-HVM-split-linear-reads-and-writes.patch
5c8fb951-x86-HVM-finish-IOREQs-correctly-on-completion.patch
5c8fc6c0-x86-MSR-shorten-ARCH_CAPABILITIES.patch
5c8fc6c0-x86-SC-retpoline-safety-calculations-for-eIBRS.patch
5c9e63c5-credit2-SMT-idle-handling.patch
5ca46b68-x86emul-no-GPR-update-upon-AVX-gather-failures.patch
5ca773d1-x86emul-dont-read-mask-reg-without-AVX512F.patch
5cab1f66-timers-fix-memory-leak-with-cpu-plug.patch
5cac6219-xen-cpu-Fix-ARM-build-following-cs-597fbb8.patch�- Install pkgconfig files into libdir instead of datadir�- Update to Xen 4.12.0 FCS release (fate#325107, fate#323901)
xen-4.12.0-testing-src.tar.bz2
* HVM/PVH and PV only Hypervisor: The Xen 4.12 release separates
the HVM/PVH and PV code paths in Xen and provides KCONFIG
options to build a PV only or HVM/PVH only hypervisor.
* QEMU Deprivilege (DM_RESTRICT): In Xen 4.12, this feature has
been vastly improved.
* Argo - Hypervisor-Mediated data eXchange: Argo is a new inter-
domain communication mechanism.
* Improvements to Virtual Machine Introspection: The VMI subsystem
which allows detection of 0-day vulnerabilities has seen many
functional and performance improvements.
* Credit 2 Scheduler: The Credit2 scheduler is now the Xen Project
default scheduler.
* PVH Support: Grub2 boot support has been added to Xen and Grub2.
* PVH Dom0: PVH Dom0 support has now been upgraded from experimental
to tech preview.
* The Xen 4.12 upgrade also includes improved IOMMU mapping code,
which is designed to significantly improve the startup times of
AMD EPYC based systems.
* The upgrade also features Automatic Dom0 Sizing which allows the
setting of Dom0 memory size as a percentage of host memory (e.g.
10%) or with an offset (e.g. 1G+10%).�- bsc#1130485 - Please drop Requires on multipath-tools in
xen-tools. Now using Recommends multipath-tools.
xen.spec�- Update to Xen 4.12.0 RC7 release (fate#325107, fate#323901)
xen-4.12.0-testing-src.tar.bz2�- Update to Xen 4.12.0 RC6 release (fate#325107, fate#323901)
xen-4.12.0-testing-src.tar.bz2�- bsc#1026236 - add Xen cmdline option "suse_vtsc_tolerance" to
avoid TSC emulation for HVM domUs if their expected frequency
does not match exactly the frequency of the receiving host
xen.bug1026236.suse_vtsc_tolerance.patch�- Update to Xen 4.12.0 RC5 release (fate#325107, fate#323901)
xen-4.12.0-testing-src.tar.bz2�- jsc#SLE-3059 - Disable Xen auto-ballooning
- Add CONFIG_DOM0_MEM to the spec file for managing dom0 memory.
xen.spec
- Disable autoballooning in xl.con
xl-conf-disable-autoballoon.patch�- Update gcc9-ignore-warnings.patch to fix build in SLE12�- bsc#1126325 - fix crash in libxl in error path
Setup of grant_tables and other variables may fail
libxl.prepare-environment-for-domcreate_stream_done.patch�- bsc#1127620 - Documentation for the xl configuration file allows
for firmware=pvgrub64 but we don't ship pvgrub64.
Create a link from grub.xen to pvgrub64
xen.spec�- Update to Xen 4.12.0 RC4 release (fate#325107, fate#323901)
xen-4.12.0-testing-src.tar.bz2
- Tarball also contains additional post RC4 security fixes for
Xen Security Advisories 287, 288, and 290 through 294.�- Update to Xen 4.12.0 RC3 release (fate#325107, fate#323901)
xen-4.12.0-testing-src.tar.bz2�- Update to Xen 4.12.0 RC2 release (fate#325107, fate#323901)
xen-4.12.0-testing-src.tar.bz2�- bsc#1121391 - GCC 9: xen build fails
gcc9-ignore-warnings.patch�- bsc#1122563 - Virtualization/xen: Bug no Xen on boot, missing
/proc/xen, after 4.11 -> 4.12 upgrade on X86_64/efi.
Keep xen.efi in /usr/lib64/efi for booting older distros.
xen.spec�- fate#326960: Package grub2 as noarch.
As part of the effort to have a unified bootloader across
architectures, modify the xen.spec file to move the Xen efi files
to /usr/share/efi/$(uname -m) from /usr/lib64/efi.�- Update to Xen 4.12.0 RC1 release (fate#325107, fate#323901)
xen-4.12.0-testing-src.tar.bz2
- Drop
5b505d59-tools-xentop-replace-use-of-deprecated-vwprintw.patch
5b76ec82-libxl-arm-Fix-build-on-arm64-acpi-w-gcc-8.2.patch
5b8fae26-tools-libxl-correct-vcpu-affinity-output-with-sparse-physical-cpu-map.patch
5b8fae26-xen-fill-topology-info-for-all-present-cpus.patch
5b8fb5af-tools-xl-refuse-to-set-number-of-vcpus-to-0-via-xl-vcpu-set.patch
5b9784ad-x86-HVM-drop-hvm_fetch_from_guest_linear.patch
5b9784d2-x86-HVM-add-known_gla-helper.patch
5b9784f2-x86-HVM-split-page-straddling-accesses.patch
5bdc31d5-VMX-fix-vmx_handle_eoi.patch
gcc8-fix-array-warning-on-i586.patch
gcc8-fix-format-warning-on-i586.patch
gcc8-inlining-failed.patch
xen.bug1079730.patch�- bsc#1121960 - xen: sync with Factory
xen.spec
xen.changes�- Replace old $RPM_* shell vars.
- Run fdupes for all architectures, and not crossing
subvolume boundaries.�- Do not run %fdupes on aarch64 to avoid the hardlink-across-partition
rpmlint error�- Require qemu-seabios only on x86* as it is not available on non-x86
systems�- Avoid creating dangling symlinks (bsc#1116524)
This reverts the revert of tmp_build.patch�- Update to Xen 4.11.1 bug fix release (bsc#1027519)
xen-4.11.1-testing-src.tar.bz2
- 5b505d59-tools-xentop-replace-use-of-deprecated-vwprintw.patch
replaces xen.2b50cdbc444c637575580dcfa6c9525a84d5cc62.patch
- 5b76ec82-libxl-arm-Fix-build-on-arm64-acpi-w-gcc-8.2.patch
replaces xen.b8f33431f3dd23fb43a879f4bdb4283fdc9465ad.patch
- Drop the following patches contained in the new tarball
5b34b8fe-VMX-defer-vmx_vmcs_exit-as-long-as-possible.patch
5b3cab8e-1-VMX-MSR_DEBUGCTL-handling.patch
5b3cab8e-2-VMX-improve-MSR-load-save-API.patch
5b3cab8e-3-VMX-cleanup-MSR-load-save-infra.patch
5b3cab8f-1-VMX-factor-out-locate_msr_entry.patch
5b3cab8f-2-VMX-remote-access-to-MSR-lists.patch
5b3cab8f-3-VMX-improve-LBR-MSR-handling.patch
5b3cab8f-4-VMX-pass-MSR-value-into-vmx_msr_add.patch
5b3cab8f-5-VMX-load-only-guest-MSR-entries.patch
5b3f8fa5-port-array_index_nospec-from-Linux.patch
5b4321f6-x86-correctly-set-nonlazy_xstate_used-when-loading-full-state.patch
5b4488e7-x86-spec-ctrl-cmdline-handling.patch
5b471517-page_alloc-correct-first_dirty-calc-in-block-merging.patch
5b4c9a60-allow-cpu_down-to-be-called-earlier.patch
5b4db308-SVM-fix-cleanup-svm_inject_event.patch
5b5040c3-cpupools-fix-state-when-downing-a-CPU-failed.patch
5b5040f2-x86-AMD-distinguish-CU-from-HT.patch
5b505fe5-VMX-fix-find-msr-build.patch
5b508775-1-x86-distinguish-CPU-offlining-and-removal.patch
5b508775-2-x86-possibly-bring-up-all-CPUs.patch
5b508775-3-x86-cmdline-opt-to-avoid-use-of-secondary-HTs.patch
5b508ce8-VMX-dont-clobber-dr6-while-debug-state-is-lazy.patch
5b50df16-1-x86-xstate-use-guest-CPUID-policy.patch
5b50df16-2-x86-make-xstate-calculation-errors-more-obvious.patch
5b56feb1-hvm-Disallow-unknown-MSR_EFER-bits.patch
5b56feb2-spec-ctrl-Fix-the-parsing-of-xpti--on-fixed-Intel-hardware.patch
5b62ca93-VMX-avoid-hitting-BUG_ON.patch
5b6d84ac-x86-fix-improve-vlapic-read-write.patch
5b6d8ce2-x86-XPTI-parsing.patch
5b72fbbe-ARM-disable-grant-table-v2.patch
5b72fbbe-oxenstored-eval-order.patch
5b72fbbe-vtx-Fix-the-checking-for-unknown-invalid-MSR_DEBUGCTL-bits.patch
5b72fbbf-1-spec-ctrl-Calculate-safe-PTE-addresses-for-L1TF-mitigations.patch
5b72fbbf-2-spec-ctrl-Introduce-an-option-to-control-L1TF-mitigation-for-PV-guests.patch
5b72fbbf-3-shadow-Infrastructure-to-force-a-PV-guest-into-shadow-mode.patch
5b72fbbf-4-mm-Plumbing-to-allow-any-PTE-update-to-fail-with--ERESTART.patch
5b72fbbf-5-pv-Force-a-guest-into-shadow-mode-when-it-writes-an-L1TF-vulnerable-PTE.patch
5b72fbbf-6-spec-ctrl-CPUID-MSR-definitions-for-L1D_FLUSH.patch
5b72fbbf-7-msr-Virtualise-MSR_FLUSH_CMD-for-guests.patch
5b72fbbf-8-spec-ctrl-Introduce-an-option-to-control-L1D_FLUSH-for-HVM-HAP-guests.patch
5b72fbbf-x86-Make-spec-ctrl-no-a-global-disable-of-all-mitigations.patch
5b72fbbf-xl.conf-Add-global-affinity-masks.patch
5b74190e-x86-hvm-ioreq-MMIO-range-check-honor-DF.patch
5b752762-x86-hvm-emul-rep-IO-should-not-cross-GFN-boundaries.patch
5b75afef-x86-setup-avoid-OoB-E820-lookup.patch
5b76b780-rangeset-inquiry-functions-tolerate-NULL.patch
5b83c654-VT-d-dmar-iommu-mem-leak-fix.patch
5b8d5832-x86-assorted-array_index_nospec-insertions.patch
5ba11ed4-credit2-fix-moving-CPUs-between-cpupools.patch
5bacae4b-x86-boot-allocate-extra-module-slot.patch
5bae44ce-x86-silence-false-log-messages.patch
5bb60c12-x86-split-opt_xpti.patch
5bb60c4f-x86-split-opt_pv_l1tf.patch
5bb60c74-x86-fix-xpti-and-pv-l1tf.patch
5bcf0722-x86-boot-enable-NMIs.patch
5bd076e9-dombuilder-init-vcpu-debug-regs-correctly.patch
5bd076e9-x86-boot-init-debug-regs-correctly.patch
5bd076e9-x86-init-vcpu-debug-regs-correctly.patch
5bd0e0cf-vvmx-Disallow-the-use-of-VT-x-instructions-when-nested-virt-is-disabled.patch
5bd0e11b-x86-disallow-VT-x-insns-without-nested-virt.patch
5bd85bfd-x86-fix-crash-on-xl-set-parameter-pcid.patch
5be2a308-x86-extend-get_platform_badpages.patch
5be2a354-x86-work-around-HLE-host-lockup-erratum.patch
xsa275-1.patch
xsa275-2.patch
xsa276-1.patch
xsa276-2.patch
xsa277.patch
xsa279.patch
xsa280-1.patch
xsa280-2.patch�- bsc#1116524 - Package xen-tools-4.11.0_09-2.1.x86_64 broken:
Missing /bin/domu-xenstore. This was broken because "make
package build reproducible" change. (boo#1047218, boo#1062303)
This fix reverses the change to this patch.
tmp_build.patch�- bsc#1115040 - VUL-0: CVE-2018-19961 CVE-2018-19962: xen:
insufficient TLB flushing / improper large page mappings with AMD
IOMMUs (XSA-275)
xsa275-1.patch
xsa275-2.patch
- bsc#1115043 - VUL-0: CVE-2018-19963: xen: resource accounting
issues in x86 IOREQ server handling (XSA-276)
xsa276-1.patch
xsa276-2.patch
- bsc#1115044 - VUL-0: CVE-2018-19964: xen: x86: incorrect error
handling for guest p2m page removals (XSA-277)
xsa277.patch
- bsc#1114405 - VUL-0: CVE-2018-18883: xen: Nested VT-x usable even
when disabled (XSA-278)
5bd0e11b-x86-disallow-VT-x-insns-without-nested-virt.patch
- bsc#1115045 - VUL-0: xen: CVE-2018-19965: x86: DoS from attempting
to use INVPCID with a non-canonical addresses (XSA-279)
xsa279.patch
- bsc#1115047 - VUL-0: CVE-2018-19966: xen: Fix for XSA-240
conflicts with shadow paging (XSA-280)
xsa280-1.patch
xsa280-2.patch
- bsc#1114988 - VUL-0: CVE-2018-19967: xen: guest use of HLE
constructs may lock up host (XSA-282)
5be2a308-x86-extend-get_platform_badpages.patch
5be2a354-x86-work-around-HLE-host-lockup-erratum.patch
- bsc#1108940 - L3: XEN SLE12-SP1 domU hang on SLE12-SP3 HV
5bdc31d5-VMX-fix-vmx_handle_eoi.patch
- Upstream bug fixes (bsc#1027519)
5b752762-x86-hvm-emul-rep-IO-should-not-cross-GFN-boundaries.patch
5ba11ed4-credit2-fix-moving-CPUs-between-cpupools.patch
5bacae4b-x86-boot-allocate-extra-module-slot.patch
5bae44ce-x86-silence-false-log-messages.patch
5bb60c12-x86-split-opt_xpti.patch
5bb60c4f-x86-split-opt_pv_l1tf.patch
5bb60c74-x86-fix-xpti-and-pv-l1tf.patch
5bcf0722-x86-boot-enable-NMIs.patch
5bd076e9-dombuilder-init-vcpu-debug-regs-correctly.patch
5bd076e9-x86-boot-init-debug-regs-correctly.patch
5bd076e9-x86-init-vcpu-debug-regs-correctly.patch
5bd85bfd-x86-fix-crash-on-xl-set-parameter-pcid.patch�- bsc#1114405 - VUL-0: CVE-2018-18883: xen: Nested VT-x usable even
when disabled (XSA-278)
5bd0e0cf-vvmx-Disallow-the-use-of-VT-x-instructions-when-nested-virt-is-disabled.patch�- Use SMBIOS_REL_DATE instead of SMBIOS_DATE for reproducible binaries�- make package build reproducible (boo#1047218, boo#1062303)
* Set SMBIOS_REL_DATE
* Update tmp_build.patch to use SHA instead of random build-id
* Add reproducible.patch to use --no-insert-timestamp�- Building with ncurses 6.1 will fail without
xen.2b50cdbc444c637575580dcfa6c9525a84d5cc62.patch
- Building libxl acpi support on aarch64 with gcc 8.2 will fail without
xen.b8f33431f3dd23fb43a879f4bdb4283fdc9465ad.patch�- bsc#1106263 - L3: The affinity reporting via 'xl vcpu-list' is
apparently broken
5b8fae26-tools-libxl-correct-vcpu-affinity-output-with-sparse-physical-cpu-map.patch
5b8fae26-xen-fill-topology-info-for-all-present-cpus.patch
5b8fb5af-tools-xl-refuse-to-set-number-of-vcpus-to-0-via-xl-vcpu-set.patch�- bsc#1094508 - L3: Kernel oops in fs/dcache.c called by
d_materialise_unique()
5b9784ad-x86-HVM-drop-hvm_fetch_from_guest_linear.patch
5b9784d2-x86-HVM-add-known_gla-helper.patch
5b9784f2-x86-HVM-split-page-straddling-accesses.patch
- bsc#1103279 - (CVE-2018-15470) VUL-0: CVE-2018-15470: xen:
oxenstored does not apply quota-maxentity (XSA-272)
5b72fbbe-oxenstored-eval-order.patch
- bsc#1103275 - (CVE-2018-15469) VUL-0: CVE-2018-15469: xen: Use of
v2 grant tables may cause crash on ARM (XSA-268)
5b72fbbe-ARM-disable-grant-table-v2.patch
- Upstream patches from Jan (bsc#1027519)
5b6d84ac-x86-fix-improve-vlapic-read-write.patch
5b74190e-x86-hvm-ioreq-MMIO-range-check-honor-DF.patch
5b75afef-x86-setup-avoid-OoB-E820-lookup.patch
5b76b780-rangeset-inquiry-functions-tolerate-NULL.patch
5b83c654-VT-d-dmar-iommu-mem-leak-fix.patch
5b8d5832-x86-assorted-array_index_nospec-insertions.patch
- Drop 5b741962-x86-write-to-correct-variable-in-parse_pv_l1tf.patch�- bsc#1078292 - rpmbuild -ba SPECS/xen.spec with xen-4.9.1 failed
xen.spec�- bsc#1091107 - VUL-0: CVE-2018-3646: xen: L1 Terminal Fault -VMM
(XSA-273)
5b72fbbf-1-spec-ctrl-Calculate-safe-PTE-addresses-for-L1TF-mitigations.patch
5b72fbbf-2-spec-ctrl-Introduce-an-option-to-control-L1TF-mitigation-for-PV-guests.patch
5b72fbbf-3-shadow-Infrastructure-to-force-a-PV-guest-into-shadow-mode.patch
5b72fbbf-4-mm-Plumbing-to-allow-any-PTE-update-to-fail-with--ERESTART.patch
5b72fbbf-5-pv-Force-a-guest-into-shadow-mode-when-it-writes-an-L1TF-vulnerable-PTE.patch
5b72fbbf-6-spec-ctrl-CPUID-MSR-definitions-for-L1D_FLUSH.patch
5b72fbbf-7-msr-Virtualise-MSR_FLUSH_CMD-for-guests.patch
5b72fbbf-8-spec-ctrl-Introduce-an-option-to-control-L1D_FLUSH-for-HVM-HAP-guests.patch
- bsc#1103276 - VUL-0: CVE-2018-15468: xen: x86: Incorrect
MSR_DEBUGCTL handling lets guests enable BTS (XSA-269)
5b72fbbe-vtx-Fix-the-checking-for-unknown-invalid-MSR_DEBUGCTL-bits.patch
- Upstream prereq patches for XSA-273 and other upstream fixes
(bsc#1027519)
5b34b8fe-VMX-defer-vmx_vmcs_exit-as-long-as-possible.patch
5b3cab8e-1-VMX-MSR_DEBUGCTL-handling.patch
5b3cab8e-2-VMX-improve-MSR-load-save-API.patch
5b3cab8e-3-VMX-cleanup-MSR-load-save-infra.patch
5b3cab8f-1-VMX-factor-out-locate_msr_entry.patch
5b3cab8f-2-VMX-remote-access-to-MSR-lists.patch
5b3cab8f-3-VMX-improve-LBR-MSR-handling.patch
5b3cab8f-4-VMX-pass-MSR-value-into-vmx_msr_add.patch
5b3cab8f-5-VMX-load-only-guest-MSR-entries.patch
5b4321f6-x86-correctly-set-nonlazy_xstate_used-when-loading-full-state.patch
5b505fe5-VMX-fix-find-msr-build.patch
5b56feb1-hvm-Disallow-unknown-MSR_EFER-bits.patch
5b56feb2-spec-ctrl-Fix-the-parsing-of-xpti--on-fixed-Intel-hardware.patch
5b62ca93-VMX-avoid-hitting-BUG_ON.patch
5b6d8ce2-x86-XPTI-parsing.patch
5b72fbbf-x86-Make-spec-ctrl-no-a-global-disable-of-all-mitigations.patch
5b72fbbf-xl.conf-Add-global-affinity-masks.patch
5b741962-x86-write-to-correct-variable-in-parse_pv_l1tf.patch�- Upstream patches from Jan (bsc#1027519)
5b3f8fa5-port-array_index_nospec-from-Linux.patch
5b4488e7-x86-spec-ctrl-cmdline-handling.patch
5b471517-page_alloc-correct-first_dirty-calc-in-block-merging.patch
5b4c9a60-allow-cpu_down-to-be-called-earlier.patch
5b4db308-SVM-fix-cleanup-svm_inject_event.patch
5b5040c3-cpupools-fix-state-when-downing-a-CPU-failed.patch
5b5040f2-x86-AMD-distinguish-CU-from-HT.patch
5b508775-1-x86-distinguish-CPU-offlining-and-removal.patch
5b508775-2-x86-possibly-bring-up-all-CPUs.patch
5b508775-3-x86-cmdline-opt-to-avoid-use-of-secondary-HTs.patch
5b508ce8-VMX-dont-clobber-dr6-while-debug-state-is-lazy.patch
5b50df16-1-x86-xstate-use-guest-CPUID-policy.patch
5b50df16-2-x86-make-xstate-calculation-errors-more-obvious.patch
gcc8-fix-format-warning-on-i586.patch
gcc8-fix-array-warning-on-i586.patch
- Drop xen.fuzz-_FORTIFY_SOURCE.patch
gcc8-fix-warning-on-i586.patch�- Update to Xen 4.11.0 FCS (fate#325202, fate#325123)
xen-4.11.0-testing-src.tar.bz2
disable-building-pv-shim.patch
- Dropped patches
5a33a12f-domctl-improve-locking-during-domain-destruction.patch
5a6703cb-x86-move-invocations-of-hvm_flush_guest_tlbs.patch
5a79d7ed-libxc-packed-initrd-dont-fail-domain-creation.patch
5a9985bd-x86-invpcid-support.patch
5ac72a48-gcc8.patch
5ac72a5f-gcc8.patch
5ac72a64-gcc8.patch
5ac72a69-gcc8.patch
5ac72a6e-gcc8.patch
5ac72a74-gcc8.patch
5ac72a7b-gcc8.patch
5ad4923e-x86-correct-S3-resume-ordering.patch
5ad49293-x86-suppress-BTI-mitigations-around-S3.patch
5ad600d4-x86-pv-introduce-x86emul_read_dr.patch
5ad600d4-x86-pv-introduce-x86emul_write_dr.patch
5ad8c3a7-x86-spec_ctrl-update-retpoline-decision-making.patch
5adda097-x86-HPET-fix-race-triggering-ASSERT.patch
5adda0d5-x86-HVM-never-retain-emulated-insn-cache.patch
5adde9ed-xpti-fix-double-fault-handling.patch
5ae06fad-SVM-fix-intercepts-for-SYS-CALL-ENTER-MSRs.patch
5ae31917-x86-cpuidle-init-stats-lock-once.patch
5aeaeae4-introduce-vcpu_sleep_nosync_locked.patch
5aeaeaf0-sched-fix-races-in-vcpu-migration.patch
5aeb2c57-x86-retval-checks-of-set-guest-trapbounce.patch
5aec7393-1-x86-xpti-avoid-copy.patch
5aec7393-2-x86-xpti-write-cr3.patch
5aec744a-3-x86-xpti-per-domain-flag.patch
5aec744a-4-x86-xpti-use-invpcid.patch
5aec744a-5-x86-xpti-no-global-pages.patch
5aec744a-6-x86-xpti-cr3-valid-flag.patch
5aec744a-7-x86-xpti-pv_guest_cr4_to_real_cr4.patch
5aec744b-8-x86-xpti-cr3-helpers.patch
5aec74a8-9-x86-xpti-use-pcid.patch
5af1daa9-1-x86-traps-fix-dr6-handing-in-DB-handler.patch
5af1daa9-2-x86-pv-move-exception-injection-into-test_all_events.patch
5af1daa9-3-x86-traps-use-IST-for-DB.patch
5af1daa9-4-x86-traps-fix-handling-of-DB-in-hypervisor-context.patch
5af1daa9-x86-HVM-guard-against-bogus-emulator-ioreq-state.patch
5af1daa9-x86-vpt-support-IO-APIC-routed-intr.patch
5af97999-viridian-cpuid-leaf-40000003.patch
5afc13ae-1-x86-read-MSR_ARCH_CAPABILITIES-once.patch
5afc13ae-2-x86-express-Xen-SPEC_CTRL-choice-as-variable.patch
5afc13ae-3-x86-merge-bti_ist_info-use_shadow_spec_ctrl.patch
5afc13ae-4-x86-fold-XEN_IBRS-ALTERNATIVES.patch
5afc13ae-5-x86-rename-bits-of-spec_ctrl-infrastructure.patch
5afc13ae-6-x86-elide-MSR_SPEC_CTRL-handling-in-idle.patch
5afc13ae-7-x86-split-X86_FEATURE_SC_MSR.patch
5afc13ae-8-x86-explicitly-set-Xen-default-SPEC_CTRL.patch
5afc13ae-9-x86-cpuid-improve-guest-policies-for-speculative.patch
5afc13ae-A-x86-introduce-spec-ctrl-cmdline-opt.patch
5b02c786-x86-AMD-mitigations-for-GPZ-SP4.patch
5b02c786-x86-Intel-mitigations-for-GPZ-SP4.patch
5b02c786-x86-msr-virtualise-SPEC_CTRL-SSBD.patch
5b0bc9da-x86-XPTI-fix-S3-resume.patch
5b0d2286-libxc-x86-PV-dont-hand-through-CPUID-leaf-0x80000008.patch
5b0d2d91-x86-suppress-sync-when-XPTI-off.patch
5b0d2dbc-x86-correct-default_xen_spec_ctrl.patch
5b0d2ddc-x86-CPUID-dont-override-tool-stack-hidden-STIBP.patch
5b150ef9-x86-fix-error-handling-of-pv-dr7-shadow.patch
5b21825d-1-x86-support-fully-eager-FPU-context-switching.patch
5b21825d-2-x86-spec-ctrl-mitigations-for-LazyFPU.patch
5b238b92-x86-HVM-account-for-fully-eager-FPU.patch
5b2b7172-x86-EFI-fix-FPU-state-handling-around-runtime-calls.patch
5b31e004-x86-HVM-emul-attempts-FPU-set-fpu_initialised.patch
5b323e3c-x86-EFI-fix-FPU-state-handling-around-runtime-calls.patch
5b34882d-x86-mm-dont-bypass-preemption-checks.patch
5b348874-x86-refine-checks-in-DB-handler.patch
5b348897-libxl-qemu_disk_scsi_drive_string-break-out-common.patch
5b3488a2-libxl-restore-passing-ro-to-qemu-for-SCSI-disks.patch
5b34891a-x86-HVM-dont-cause-NM-to-be-raised.patch
5b348954-x86-guard-against-NM.patch
libxl.Add-a-version-check-of-QEMU-for-QMP-commands.patch
libxl.LIBXL_DESTROY_TIMEOUT.patch
libxl.qmp-Tell-QEMU-about-live-migration-or-snapshot.patch
xen_fix_build_with_acpica_20180427_and_new_packages.patch�- Submit upstream patch libacpi: fixes for iasl >= 20180427
git commit 858dbaaeda33b05c1ac80aea0ba9a03924e09005
xen_fix_build_with_acpica_20180427_and_new_packages.patch
This is needed for acpica package to get updated in our build service�- Upstream patches from Jan (bsc#1027519)
5b02c786-x86-AMD-mitigations-for-GPZ-SP4.patch (Replaces Spectre-v4-1.patch)
5b02c786-x86-Intel-mitigations-for-GPZ-SP4.patch (Replaces Spectre-v4-2.patch)
5b02c786-x86-msr-virtualise-SPEC_CTRL-SSBD.patch (Replaces Spectre-v4-3.patch)
5b0bc9da-x86-XPTI-fix-S3-resume.patch
5b0d2286-libxc-x86-PV-dont-hand-through-CPUID-leaf-0x80000008.patch
5b0d2d91-x86-suppress-sync-when-XPTI-off.patch
5b0d2dbc-x86-correct-default_xen_spec_ctrl.patch
5b0d2ddc-x86-CPUID-dont-override-tool-stack-hidden-STIBP.patch
5b150ef9-x86-fix-error-handling-of-pv-dr7-shadow.patch
5b21825d-1-x86-support-fully-eager-FPU-context-switching.patch (Replaces xsa267-1.patch)
5b21825d-2-x86-spec-ctrl-mitigations-for-LazyFPU.patch (Replaces xsa267-2.patch)
5b238b92-x86-HVM-account-for-fully-eager-FPU.patch
5b2b7172-x86-EFI-fix-FPU-state-handling-around-runtime-calls.patch
5b31e004-x86-HVM-emul-attempts-FPU-set-fpu_initialised.patch
5b323e3c-x86-EFI-fix-FPU-state-handling-around-runtime-calls.patch
5b34882d-x86-mm-dont-bypass-preemption-checks.patch (Replaces xsa264.patch)
5b348874-x86-refine-checks-in-DB-handler.patch (Replaces xsa265.patch)
5b348897-libxl-qemu_disk_scsi_drive_string-break-out-common.patch (Replaces xsa266-1-<>.patch)
5b3488a2-libxl-restore-passing-ro-to-qemu-for-SCSI-disks.patch (Replaces xsa266-2-<>.patch)
5b34891a-x86-HVM-dont-cause-NM-to-be-raised.patch
5b348954-x86-guard-against-NM.patch�- Fix more build gcc8 related failures with xen.fuzz-_FORTIFY_SOURCE.patch�- bsc#1098403 - fix regression introduced by changes for bsc#1079730
a PV domU without qcow2 and/or vfb has no qemu attached.
Ignore QMP errors for PV domUs to handle PV domUs with and without
an attached qemu-xen.
xen.bug1079730.patch�- bsc#1097521 - VUL-0: CVE-2018-12891: xen: preemption checks
bypassed in x86 PV MM handling (XSA-264)
xsa264.patch
- bsc#1097522 - VUL-0: CVE-2018-12893: xen: x86: #DB exception
safety check can be triggered by a guest (XSA-265)
xsa265.patch
- bsc#1097523 - VUL-0: CVE-2018-12892: xen: libxl fails to honour
readonly flag on HVM emulated SCSI disks (XSA-266)
xsa266-1-libxl-qemu_disk_scsi_drive_string-Break-out-common-p.patch
xsa266-2-libxl-restore-passing-readonly-to-qemu-for-SCSI-disk.patch�- bsc#1095242 - VUL-0: CVE-2018-3665: xen: Lazy FP Save/Restore
(XSA-267)
xsa267-1.patch
xsa267-2.patch�- bsc#1092543 - GCC 8: xen build fails
gcc8-fix-warning-on-i586.patch�- bsc#1092631 - VUL-0: CVE-2018-3639: xen: V4 – Speculative Store
Bypass aka "Memory Disambiguation" (XSA-263)
5ad4923e-x86-correct-S3-resume-ordering.patch
5ad49293-x86-suppress-BTI-mitigations-around-S3.patch
5afc13ae-1-x86-read-MSR_ARCH_CAPABILITIES-once.patch
5afc13ae-2-x86-express-Xen-SPEC_CTRL-choice-as-variable.patch
5afc13ae-3-x86-merge-bti_ist_info-use_shadow_spec_ctrl.patch
5afc13ae-4-x86-fold-XEN_IBRS-ALTERNATIVES.patch
5afc13ae-5-x86-rename-bits-of-spec_ctrl-infrastructure.patch
5afc13ae-6-x86-elide-MSR_SPEC_CTRL-handling-in-idle.patch
5afc13ae-7-x86-split-X86_FEATURE_SC_MSR.patch
5afc13ae-8-x86-explicitly-set-Xen-default-SPEC_CTRL.patch
5afc13ae-9-x86-cpuid-improve-guest-policies-for-speculative.patch
5afc13ae-A-x86-introduce-spec-ctrl-cmdline-opt.patch
Spectre-v4-1.patch
Spectre-v4-2.patch
Spectre-v4-3.patch�- Always call qemus xen-save-devices-state in suspend/resume to
fix migration with qcow2 images (bsc#1079730)
libxl.Add-a-version-check-of-QEMU-for-QMP-commands.patch
libxl.qmp-Tell-QEMU-about-live-migration-or-snapshot.patch
xen.bug1079730.patch�- bsc#1087289 - L3: Xen BUG at sched_credit.c:1663
5aeaeae4-introduce-vcpu_sleep_nosync_locked.patch
5aeaeaf0-sched-fix-races-in-vcpu-migration.patch
- Upstream patches from Jan (bsc#1027519)
5ad600d4-x86-pv-introduce-x86emul_read_dr.patch
5ad600d4-x86-pv-introduce-x86emul_write_dr.patch
5ad8c3a7-x86-spec_ctrl-update-retpoline-decision-making.patch
5adda097-x86-HPET-fix-race-triggering-ASSERT.patch
5adda0d5-x86-HVM-never-retain-emulated-insn-cache.patch
5ae06fad-SVM-fix-intercepts-for-SYS-CALL-ENTER-MSRs.patch
5ae31917-x86-cpuidle-init-stats-lock-once.patch
5aeb2c57-x86-retval-checks-of-set-guest-trapbounce.patch
5af1daa9-1-x86-traps-fix-dr6-handing-in-DB-handler.patch (Replaces xsa260-1.patch)
5af1daa9-2-x86-pv-move-exception-injection-into-test_all_events.patch (Replaces xsa260-2.patch)
5af1daa9-3-x86-traps-use-IST-for-DB.patch (Replaces xsa260-3.patch)
5af1daa9-4-x86-traps-fix-handling-of-DB-in-hypervisor-context.patch (Replaces xsa260-4.patch)
5af1daa9-x86-HVM-guard-against-bogus-emulator-ioreq-state.patch (Replaces xsa262.patch)
5af1daa9-x86-vpt-support-IO-APIC-routed-intr.patch (Replaces xsa261.patch)
5af97999-viridian-cpuid-leaf-40000003.patch�- Fixes related to Page Table Isolation (XPTI). bsc#1074562 XSA-254
5a6703cb-x86-move-invocations-of-hvm_flush_guest_tlbs.patch
5a9985bd-x86-invpcid-support.patch
5adde9ed-xpti-fix-double-fault-handling.patch
5aec7393-1-x86-xpti-avoid-copy.patch
5aec7393-2-x86-xpti-write-cr3.patch
5aec744a-3-x86-xpti-per-domain-flag.patch
5aec744a-4-x86-xpti-use-invpcid.patch
5aec744a-5-x86-xpti-no-global-pages.patch
5aec744a-6-x86-xpti-cr3-valid-flag.patch
5aec744a-7-x86-xpti-pv_guest_cr4_to_real_cr4.patch
5aec744b-8-x86-xpti-cr3-helpers.patch
5aec74a8-9-x86-xpti-use-pcid.patch�- bsc#1092543 - GCC 8: xen build fails
5ac72a48-gcc8.patch
5ac72a5f-gcc8.patch
5ac72a64-gcc8.patch
5ac72a69-gcc8.patch
5ac72a6e-gcc8.patch
5ac72a74-gcc8.patch
5ac72a7b-gcc8.patch
gcc8-inlining-failed.patch�- Update to Xen 4.10.1 bug fix release (bsc#1027519)
xen-4.10.1-testing-src.tar.bz2
disable-building-pv-shim.patch
- Drop the following patches contained in the new tarball
5a21a77e-x86-pv-construct-d0v0s-GDT-properly.patch
5a2fda0d-x86-mb2-avoid-Xen-when-looking-for-module-crashkernel-pos.patch
5a2ffc1f-x86-mm-drop-bogus-paging-mode-assertion.patch
5a313972-x86-microcode-add-support-for-AMD-Fam17.patch
5a32bd79-x86-vmx-dont-use-hvm_inject_hw_exception-in-.patch
5a4caa5e-x86-IRQ-conditionally-preserve-access-perm.patch
5a4caa8c-x86-E820-don-t-overrun-array.patch
5a4e2bca-x86-free-msr_vcpu_policy-during-destruction.patch
5a4e2c2c-x86-upcall-inject-spurious-event-after-setting-vector.patch
5a4fd893-1-x86-break-out-alternative-asm-into-separate-header.patch
5a4fd893-2-x86-introduce-ALTERNATIVE_2-macros.patch
5a4fd893-3-x86-hvm-rename-update_guest_vendor-to-cpuid_policy_changed.patch
5a4fd893-4-x86-introduce-cpuid_policy_updated.patch
5a4fd893-5-x86-entry-remove-partial-cpu_user_regs.patch
5a4fd894-1-x86-rearrange-RESTORE_ALL-to-restore-in-stack-order.patch
5a4fd894-2-x86-hvm-use-SAVE_ALL-after-VMExit.patch
5a4fd894-3-x86-erase-guest-GPRs-on-entry-to-Xen.patch
5a4fd894-4-clarifications-to-wait-infrastructure.patch
5a534c78-x86-dont-use-incorrect-CPUID-values-for-topology.patch
5a5cb24c-x86-mm-always-set-_PAGE_ACCESSED-on-L4-updates.patch
5a5e2cff-x86-Meltdown-band-aid.patch
5a5e2d73-x86-Meltdown-band-aid-conditional.patch
5a5e3a4e-1-x86-support-compiling-with-indirect-branch-thunks.patch
5a5e3a4e-2-x86-support-indirect-thunks-from-asm.patch
5a5e3a4e-3-x86-report-speculative-mitigation-details.patch
5a5e3a4e-4-x86-AMD-set-lfence-as-Dispatch-Serialising.patch
5a5e3a4e-5-x86-introduce-alternative-indirect-thunks.patch
5a5e3a4e-6-x86-definitions-for-Indirect-Branch-Controls.patch
5a5e3a4e-7-x86-cmdline-opt-to-disable-IBRS-IBPB-STIBP.patch
5a5e459c-1-x86-SVM-offer-CPUID-faulting-to-AMD-HVM-guests.patch
5a5e459c-2-x86-report-domain-id-on-CPUID.patch
5a68bc16-x86-acpi-process-softirqs-logging-Cx.patch
5a69c0b9-x86-fix-GET_STACK_END.patch
5a6b36cd-1-x86-cpuid-handling-of-IBRS-IBPB-STIBP-and-IBRS-for-guests.patch
5a6b36cd-2-x86-msr-emulation-of-SPEC_CTRL-PRED_CMD.patch
5a6b36cd-3-x86-migrate-MSR_SPEC_CTRL.patch
5a6b36cd-4-x86-hvm-permit-direct-access-to-SPEC_CTRL-PRED_CMD.patch
5a6b36cd-5-x86-use-SPEC_CTRL-on-entry.patch
5a6b36cd-6-x86-clobber-RSB-RAS-on-entry.patch
5a6b36cd-7-x86-no-alternatives-in-NMI-MC-paths.patch
5a6b36cd-8-x86-boot-calculate-best-BTI-mitigation.patch
5a6b36cd-9-x86-issue-speculation-barrier.patch
5a6b36cd-A-x86-offer-Indirect-Branch-Controls-to-guests.patch
5a6b36cd-B-x86-clear-SPEC_CTRL-while-idle.patch
5a7b1bdd-x86-reduce-Meltdown-band-aid-IPI-overhead.patch
5a843807-x86-spec_ctrl-fix-bugs-in-SPEC_CTRL_ENTRY_FROM_INTR_IST.patch
5a856a2b-x86-emul-fix-64bit-decoding-of-segment-overrides.patch
5a856a2b-x86-use-32bit-xors-for-clearing-GPRs.patch
5a856a2b-x86-xpti-hide-almost-all-of-Xen-image-mappings.patch
5a8be788-x86-nmi-start-NMI-watchdog-on-CPU0-after-SMP.patch
5a95373b-x86-PV-avoid-leaking-other-guests-MSR_TSC_AUX.patch
5a95571f-memory-dont-implicitly-unpin-in-decrease-res.patch
5a95576c-gnttab-ARM-dont-corrupt-shared-GFN-array.patch
5a955800-gnttab-dont-free-status-pages-on-ver-change.patch
5a955854-x86-disallow-HVM-creation-without-LAPIC-emul.patch
5a956747-x86-HVM-dont-give-wrong-impression-of-WRMSR-success.patch
5a9eb7f1-x86-xpti-dont-map-stack-guard-pages.patch
5a9eb85c-x86-slightly-reduce-XPTI-overhead.patch
5a9eb890-x86-remove-CR-reads-from-exit-to-guest-path.patch
5aa2b6b9-cpufreq-ondemand-CPU-offlining-race.patch
5aaa9878-x86-vlapic-clear-TMR-bit-for-edge-triggered-intr.patch
xsa258.patch
xsa259.patch�- bsc#1090820 - VUL-0: CVE-2018-8897: xen: x86: mishandling of
debug exceptions (XSA-260)
xsa260-1.patch
xsa260-2.patch
xsa260-3.patch
xsa260-4.patch
- bsc#1090822 - VUL-0: CVE-2018-10982: xen: x86 vHPET interrupt
injection errors (XSA-261)
xsa261.patch
- bsc#1090823 - VUL-0: CVE-2018-10981: xen: qemu may drive Xen into
unbounded loop (XSA-262)
xsa262.patch�- bsc#1089152 - VUL-0: CVE-2018-10472: xen: Information leak via
crafted user-supplied CDROM (XSA-258)
xsa258.patch
- bsc#1089635 - VUL-0: CVE-2018-10471: xen: x86: PV guest may crash
Xen with XPTI (XSA-259)
xsa259.patch�- Preserve xen-syms from xen-dbg.gz to allow processing vmcores
with crash(1) (bsc#1087251)�- Upstream patches from Jan (bsc#1027519) and fixes related to
Page Table Isolation (XPTI). See also bsc#1074562 XSA-254
5a856a2b-x86-xpti-hide-almost-all-of-Xen-image-mappings.patch
5a9eb7f1-x86-xpti-dont-map-stack-guard-pages.patch
5a9eb85c-x86-slightly-reduce-XPTI-overhead.patch
5a9eb890-x86-remove-CR-reads-from-exit-to-guest-path.patch
5aa2b6b9-cpufreq-ondemand-CPU-offlining-race.patch
5aaa9878-x86-vlapic-clear-TMR-bit-for-edge-triggered-intr.patch�- bsc#1072834 - Xen HVM: unchecked MSR access error: RDMSR from
0xc90 at rIP: 0xffffffff93061456 (native_read_msr+0x6/0x30)
5a956747-x86-HVM-dont-give-wrong-impression-of-WRMSR-success.patch
- Upstream patches from Jan (bsc#1027519)
5a79d7ed-libxc-packed-initrd-dont-fail-domain-creation.patch
5a7b1bdd-x86-reduce-Meltdown-band-aid-IPI-overhead.patch
5a843807-x86-spec_ctrl-fix-bugs-in-SPEC_CTRL_ENTRY_FROM_INTR_IST.patch
5a856a2b-x86-emul-fix-64bit-decoding-of-segment-overrides.patch
5a856a2b-x86-use-32bit-xors-for-clearing-GPRs.patch
5a8be788-x86-nmi-start-NMI-watchdog-on-CPU0-after-SMP.patch
5a95373b-x86-PV-avoid-leaking-other-guests-MSR_TSC_AUX.patch
5a95571f-memory-dont-implicitly-unpin-in-decrease-res.patch (Replaces xsa252.patch)
5a95576c-gnttab-ARM-dont-corrupt-shared-GFN-array.patch (Replaces xsa255-1.patch)
5a955800-gnttab-dont-free-status-pages-on-ver-change.patch (Replaces xsa255-2.patch)
5a955854-x86-disallow-HVM-creation-without-LAPIC-emul.patch (Replaces xsa256.patch)
- Drop
xsa252.patch
xsa255-1.patch
xsa255-2.patch
xsa256.patch�- bsc#1080635 - VUL-0: CVE-2018-7540: xen: DoS via non-preemptable
L3/L4 pagetable freeing (XSA-252)
xsa252.patch
- bsc#1080662 - VUL-0: CVE-2018-7541: xen: grant table v2 -> v1
transition may crash Xen (XSA-255)
xsa255-1.patch
xsa255-2.patch
- bsc#1080634 - VUL-0: CVE-2018-7542: xen: x86 PVH guest without
LAPIC may DoS the host (XSA-256)
xsa256.patch�- Remove stale systemd presets code for 13.2 and older�- fate#324965 - add script, udev rule and systemd service to watch
for vcpu online/offline events in a HVM domU
They are triggered via xl vcpu-set domU N�- Replace hardcoded xen with Name tag when refering to subpkgs�- Make sure tools and tools-domU require libs from the very same build�- tools-domU: Add support for qemu guest agent. New files
80-xen-channel-setup.rules and xen-channel-setup.sh configure a
xen-pv-channel for use by the guest agent
FATE#324963�- Remove outdated /etc/xen/README*�- bsc#1073961 - VUL-0: CVE-2018-5244: xen: x86: memory leak with
MSR emulation (XSA-253)
5a4e2bca-x86-free-msr_vcpu_policy-during-destruction.patch
- bsc#1074562 - VUL-0: CVE-2017-5753,CVE-2017-5715,CVE-2017-5754
xen: Information leak via side effects of speculative execution
(XSA-254). Includes Spectre v2 mitigation.
5a4caa5e-x86-IRQ-conditionally-preserve-access-perm.patch
5a4caa8c-x86-E820-don-t-overrun-array.patch
5a4e2c2c-x86-upcall-inject-spurious-event-after-setting-vector.patch
5a4fd893-1-x86-break-out-alternative-asm-into-separate-header.patch
5a4fd893-2-x86-introduce-ALTERNATIVE_2-macros.patch
5a4fd893-3-x86-hvm-rename-update_guest_vendor-to-cpuid_policy_changed.patch
5a4fd893-4-x86-introduce-cpuid_policy_updated.patch
5a4fd893-5-x86-entry-remove-partial-cpu_user_regs.patch
5a4fd894-1-x86-rearrange-RESTORE_ALL-to-restore-in-stack-order.patch
5a4fd894-2-x86-hvm-use-SAVE_ALL-after-VMExit.patch
5a4fd894-3-x86-erase-guest-GPRs-on-entry-to-Xen.patch
5a4fd894-4-clarifications-to-wait-infrastructure.patch
5a534c78-x86-dont-use-incorrect-CPUID-values-for-topology.patch
5a5cb24c-x86-mm-always-set-_PAGE_ACCESSED-on-L4-updates.patch
5a5e2cff-x86-Meltdown-band-aid.patch
5a5e2d73-x86-Meltdown-band-aid-conditional.patch
5a5e3a4e-1-x86-support-compiling-with-indirect-branch-thunks.patch
5a5e3a4e-2-x86-support-indirect-thunks-from-asm.patch
5a5e3a4e-3-x86-report-speculative-mitigation-details.patch
5a5e3a4e-4-x86-AMD-set-lfence-as-Dispatch-Serialising.patch
5a5e3a4e-5-x86-introduce-alternative-indirect-thunks.patch
5a5e3a4e-6-x86-definitions-for-Indirect-Branch-Controls.patch
5a5e3a4e-7-x86-cmdline-opt-to-disable-IBRS-IBPB-STIBP.patch
5a5e459c-1-x86-SVM-offer-CPUID-faulting-to-AMD-HVM-guests.patch
5a5e459c-2-x86-report-domain-id-on-CPUID.patch
5a68bc16-x86-acpi-process-softirqs-logging-Cx.patch
5a69c0b9-x86-fix-GET_STACK_END.patch
5a6b36cd-1-x86-cpuid-handling-of-IBRS-IBPB-STIBP-and-IBRS-for-guests.patch
5a6b36cd-2-x86-msr-emulation-of-SPEC_CTRL-PRED_CMD.patch
5a6b36cd-3-x86-migrate-MSR_SPEC_CTRL.patch
5a6b36cd-4-x86-hvm-permit-direct-access-to-SPEC_CTRL-PRED_CMD.patch
5a6b36cd-5-x86-use-SPEC_CTRL-on-entry.patch
5a6b36cd-6-x86-clobber-RSB-RAS-on-entry.patch
5a6b36cd-7-x86-no-alternatives-in-NMI-MC-paths.patch
5a6b36cd-8-x86-boot-calculate-best-BTI-mitigation.patch
5a6b36cd-9-x86-issue-speculation-barrier.patch
5a6b36cd-A-x86-offer-Indirect-Branch-Controls-to-guests.patch
5a6b36cd-B-x86-clear-SPEC_CTRL-while-idle.patch�- Fix python3 deprecated atoi call (bsc#1067224)
pygrub-python3-conversion.patch
- Drop xenmon-python3-conversion.patch�- bsc#1067317 - pass cache=writeback|unsafe|directsync to qemu,
depending on the libxl disk settings
libxl.add-option-to-disable-disk-cache-flushes-in-qdisk.patch�- Remove libxl.LIBXL_DESTROY_TIMEOUT.debug.patch�- bsc#1067224 - xen-tools have hard dependency on Python 2
build-python3-conversion.patch
bin-python3-conversion.patch�- bsc#1070165 - xen crashes after aborted localhost migration
5a2ffc1f-x86-mm-drop-bogus-paging-mode-assertion.patch
- bsc#1035442 - L3: libxl: error: libxl.c:1676:devices_destroy_cb:
libxl__devices_destroy failed
5a33a12f-domctl-improve-locking-during-domain-destruction.patch
- Upstream patches from Jan (bsc#1027519)
5a21a77e-x86-pv-construct-d0v0s-GDT-properly.patch
5a2fda0d-x86-mb2-avoid-Xen-when-looking-for-module-crashkernel-pos.patch
5a313972-x86-microcode-add-support-for-AMD-Fam17.patch
5a32bd79-x86-vmx-dont-use-hvm_inject_hw_exception-in-.patch�- Update to Xen 4.10.0 FCS (fate#321394, fate#322686)
xen-4.10.0-testing-src.tar.bz2�- Rebuild initrd if xen-tools-domU is updated�- Update to Xen 4.10.0-rc8 (fate#321394, fate#322686)
xen-4.10.0-testing-src.tar.bz2�- Increase the value of LIBXL_DESTROY_TIMEOUT from 10 to 100 seconds
If many domUs shutdown in parallel the backends can not keep up
Add some debug output to track how long backend shutdown takes (bsc#1035442)
libxl.LIBXL_DESTROY_TIMEOUT.patch
libxl.LIBXL_DESTROY_TIMEOUT.debug.patch�- Adjust xenstore-run-in-studomain.patch to change the defaults
in the code instead of changing the sysconfig template, to also
cover the upgrade case�- Update to Xen 4.10.0-rc6 (fate#321394, fate#322686)
xen-4.10.0-testing-src.tar.bz2�- Since xen switched to Kconfig, building a debug hypervisor
was done by default. Adjust make logic to build a non-debug
hypervisor by default, and continue to provide one as xen-dbg.gz�- fate#316614: set migration constraints from cmdline
fix libxl.set-migration-constraints-from-cmdline.patch for xen-4.10�- Document the suse-diskcache-disable-flush option in
xl-disk-configuration(5) (bsc#879425,bsc#1067317)�- Replace references to /var/adm/fillup-templates with new
%_fillupdir macro (boo#1069468)�- Update to Xen 4.10.0-rc5 (fate#321394, fate#322686)
xen-4.10.0-testing-src.tar.bz2
- fate#323663 - Run Xenstore in stubdomain
xenstore-run-in-studomain.patch�- bsc#1067224 - xen-tools have hard dependency on Python 2
pygrub-python3-conversion.patch
xenmon-python3-conversion.patch
migration-python3-conversion.patch
xnloader.py
xen2libvirt.py�- Remove xendriverdomain.service (bsc#1065185)
Driver domains must be configured manually with custom .service file�- Update to Xen 4.10.0-rc3 (fate#321394, fate#322686)
xen-4.10.0-testing-src.tar.bz2
- Drop 59f31268-libxc-remove-stale-error-check-for-domain-size.patch�- Adjust xen-dom0-modules.service to ignore errors (bsc#1065187)�- fate#324052 Support migration of Xen HVM domains larger than 1TB
59f31268-libxc-remove-stale-error-check-for-domain-size.patch�- Update to Xen 4.10.0-rc2 (fate#321394, fate#322686)
xen-4.10.0-testing-src.tar.bz2�- Update to Xen 4.10.0-rc1 (fate#321394, fate#322686)
xen-4.10.0-testing-src.tar.bz2
- Drop patches included in new tarball
592fd5f0-stop_machine-fill-result-only-in-case-of-error.patch
596f257e-x86-fix-hvmemul_insn_fetch.patch
5982fd99-VT-d-don-t-panic-warn-on-iommu-no-igfx.patch
598c3630-VT-d-PI-disable-when-CPU-side-PI-is-off.patch
598c3706-cpufreq-only-stop-ondemand-governor-if-started.patch
5992f1e5-x86-grant-disallow-misaligned-PTEs.patch
5992f20d-gnttab-split-maptrack-lock-to-make-it-useful-again.patch
5992f233-gnttab-correct-pin-status-fixup-for-copy.patch
59958e76-gnttab-dont-use-possibly-unbounded-tail-calls.patch
59958ebf-gnttab-fix-transitive-grant-handling.patch
59958edd-gnttab-avoid-spurious-maptrack-handle-alloc-failures.patch
599da329-arm-mm-release-grant-lock-on-xatp1-error-paths.patch
59a01223-x86-check-for-alloc-errors-in-modify_xen_mappings.patch
59a0130c-x86-efi-dont-write-relocs-in-efi_arch_relocate_image-1st-pass.patch
59a9221f-VT-d-use-correct-BDF-for-VF-to-search-VT-d-unit.patch
59ae9177-x86-emul-fix-handling-of-unimplemented-Grp7-insns.patch
59aec335-x86emul-correct-VEX-W-handling-for-VPINSRD.patch
59aec375-x86emul-correct-VEX-L-handling-for-VCVTx2SI.patch
59afcea0-x86-introduce-and-use-setup_force_cpu_cap.patch
59b2a7f2-x86-HVM-correct-repeat-count-update-linear-phys.patch
59b7d664-mm-make-sure-node-is-less-than-MAX_NUMNODES.patch
59b7d69b-grant_table-fix-GNTTABOP_cache_flush-handling.patch
59b7d6c8-xenstore-dont-unlink-connection-object-twice.patch
59b7d6d9-gnttab-also-validate-PTE-perms-upon-destroy-replace.patch
gcc7-arm.patch
gcc7-mini-os.patch�- bsc#1061084 - VUL-0: xen: page type reference leak on x86
(XSA-242)
xsa242.patch
- bsc#1061086 - VUL-0: xen: x86: Incorrect handling of self-linear
shadow mappings with translated guests (XSA-243)
xsa243.patch
- bsc#1061087 - VUL-0: xen: x86: Incorrect handling of IST settings
during CPU hotplug (XSA-244)
xsa244.patch�- bsc#1061077 - VUL-0: xen: DMOP map/unmap missing argument checks
(XSA-238)
xsa238.patch
- bsc#1061080 - VUL-0: xen: hypervisor stack leak in x86 I/O
intercept code (XSA-239)
xsa239.patch
- bsc#1061081 - VUL-0: xen: Unlimited recursion in linear pagetable
de-typing (XSA-240)
xsa240-1.patch
xsa240-2.patch
- bsc#1061082 - VUL-0: xen: Stale TLB entry due to page type
release race (XSA-241)
xsa241.patch�- bsc#1061075 - VUL-0: xen: pin count / page reference race in
grant table code (XSA-236)
xsa236.patch
- bsc#1061076 - VUL-0: xen: multiple MSI mapping issues on x86
(XSA-237)
xsa237-1.patch
xsa237-2.patch
xsa237-3.patch
xsa237-4.patch
xsa237-5.patch�- bsc#1056278 - VUL-0: xen: Missing NUMA node parameter
verification (XSA-231)
59b7d664-mm-make-sure-node-is-less-than-MAX_NUMNODES.patch
- bsc#1056280 - VUL-0: xen: Missing check for grant table (XSA-232)
59b7d69b-grant_table-fix-GNTTABOP_cache_flush-handling.patch
- bsc#1056281 - VUL-0: xen: cxenstored: Race in domain cleanup
(XSA-233)
59b7d6c8-xenstore-dont-unlink-connection-object-twice.patch
- bsc#1056282 - VUL-0: xen: insufficient grant unmapping checks for
x86 PV guests (XSA-234)
59b7d6d9-gnttab-also-validate-PTE-perms-upon-destroy-replace.patch
- bsc#1055321 - VUL-0: xen: add-to-physmap error paths fail to
release lock on ARM (XSA-235)
599da329-arm-mm-release-grant-lock-on-xatp1-error-paths.patch
- Upstream patches from Jan (bsc#1027519)
59a01223-x86-check-for-alloc-errors-in-modify_xen_mappings.patch
59a0130c-x86-efi-dont-write-relocs-in-efi_arch_relocate_image-1st-pass.patch
59a9221f-VT-d-use-correct-BDF-for-VF-to-search-VT-d-unit.patch
59ae9177-x86-emul-fix-handling-of-unimplemented-Grp7-insns.patch
59aec335-x86emul-correct-VEX-W-handling-for-VPINSRD.patch
59aec375-x86emul-correct-VEX-L-handling-for-VCVTx2SI.patch
59afcea0-x86-introduce-and-use-setup_force_cpu_cap.patch
59b2a7f2-x86-HVM-correct-repeat-count-update-linear-phys.patch
- Dropped gcc7-xen.patch�- bsc#1057358 - Cannot Boot into SLES12.3 with Xen hypervisor when
Secure Boot is Enabled
xen.spec�- bsc#1055695 - XEN: 11SP4 and 12SP3 HVM guests can not be restored
update from v6 to v9 to cover more cases for ballooned domUs
libxc.sr.superpage.patch�- bsc#1026236 - remove suse_vtsc_tolerance= cmdline option for Xen
drop the patch because it is not upstream acceptable
remove xen.suse_vtsc_tolerance.patch�- bsc#1055695 - XEN: 11SP4 and 12SP3 HVM guests can not be restored
after the save using xl stack
libxc.sr.superpage.patch�- Unignore gcc-PIE
the toolstack disables PIE for firmware builds as needed�- Upstream patches from Jan (bsc#1027519)
592fd5f0-stop_machine-fill-result-only-in-case-of-error.patch
596f257e-x86-fix-hvmemul_insn_fetch.patch
5982fd99-VT-d-don-t-panic-warn-on-iommu-no-igfx.patch
598c3630-VT-d-PI-disable-when-CPU-side-PI-is-off.patch
598c3706-cpufreq-only-stop-ondemand-governor-if-started.patch
5992f1e5-x86-grant-disallow-misaligned-PTEs.patch (Replaces xsa227.patch)
5992f20d-gnttab-split-maptrack-lock-to-make-it-useful-again.patch (Replaces xsa228.patch)
5992f233-gnttab-correct-pin-status-fixup-for-copy.patch (Replaces xsa230.patch)
59958e76-gnttab-dont-use-possibly-unbounded-tail-calls.patch (Replaces xsa226-1.patch)
59958ebf-gnttab-fix-transitive-grant-handling.patch (Replaces xsa226-2.patch)
59958edd-gnttab-avoid-spurious-maptrack-handle-alloc-failures.patch�- bsc#1044974 - xen-tools require python-pam
xen.spec�- Clean up spec file errors and a few warnings. (bsc#1027519)
- Removed conditional 'with_systemd' and some old deprecated
'sles_version' checks.
xen.spec�- Remove use of brctl utiltiy from supportconfig plugin
FATE#323639�- Use upstream variant of mini-os __udivmoddi4 change
gcc7-mini-os.patch�- fate#323639 Move bridge-utils to legacy
replace-obsolete-network-configuration-commands-in-s.patch�- bsc#1052686 - VUL-0: xen: grant_table: possibly premature
clearing of GTF_writing / GTF_reading (XSA-230)
xsa230.patch�- bsc#1035231 - migration of HVM domU does not use superpages
on destination dom0
libxc.sr.superpage.patch�- bsc#1051787 - VUL-0: CVE-2017-12135: xen: possibly unbounded
recursion in grant table code (XSA-226)
xsa226-1.patch
xsa226-2.patch
- bsc#1051788 - VUL-0: CVE-2017-12137: xen: x86: PV privilege
escalation via map_grant_ref (XSA-227)
xsa227.patch
- bsc#1051789 - VUL-0: CVE-2017-12136: xen: grant_table: Race
conditions with maptrack free list handling (XSA-228)
xsa228.patch�- Add a supportconfig plugin
xen-supportconfig
FATE#323661�- bsc#1026236 - add suse_vtsc_tolerance= cmdline option for Xen
To avoid emulation of TSC access from a domU after live migration
add a global tolerance for the measured host kHz
xen.suse_vtsc_tolerance.patch�- fate#323662 Drop qemu-dm from xen-tools package
The following tarball and patches have been removed
qemu-xen-traditional-dir-remote.tar.bz2
VNC-Support-for-ExtendedKeyEvent-client-message.patch
0001-net-move-the-tap-buffer-into-TAPState.patch
0002-net-increase-tap-buffer-size.patch
0003-e1000-fix-access-4-bytes-beyond-buffer-end.patch
0004-e1000-secrc-support.patch
0005-e1000-multi-buffer-packet-support.patch
0006-e1000-clear-EOP-for-multi-buffer-descriptors.patch
0007-e1000-verify-we-have-buffers-upfront.patch
0008-e1000-check-buffer-availability.patch
CVE-2013-4533-qemut-pxa2xx-buffer-overrun-on-incoming-migration.patch
CVE-2013-4534-qemut-openpic-buffer-overrun-on-incoming-migration.patch
CVE-2013-4537-qemut-ssi-sd-fix-buffer-overrun-on-invalid-state-load.patch
CVE-2013-4538-qemut-ssd0323-fix-buffer-overun-on-invalid-state.patch
CVE-2013-4539-qemut-tsc210x-fix-buffer-overrun-on-invalid-state-load.patch
CVE-2014-0222-qemut-qcow1-validate-l2-table-size.patch
CVE-2014-3640-qemut-slirp-NULL-pointer-deref-in-sosendto.patch
CVE-2015-4037-qemut-smb-config-dir-name.patch
CVE-2015-5154-qemut-fix-START-STOP-UNIT-command-completion.patch
CVE-2015-5278-qemut-Infinite-loop-in-ne2000_receive-function.patch
CVE-2015-6815-qemut-e1000-fix-infinite-loop.patch
CVE-2015-7512-qemut-net-pcnet-buffer-overflow-in-non-loopback-mode.patch
CVE-2015-8345-qemut-eepro100-infinite-loop-fix.patch
CVE-2015-8504-qemut-vnc-avoid-floating-point-exception.patch
CVE-2016-1714-qemut-fw_cfg-add-check-to-validate-current-entry-value.patch
CVE-2016-1981-qemut-e1000-eliminate-infinite-loops-on-out-of-bounds-transfer.patch
CVE-2016-2391-qemut-usb-null-pointer-dereference-in-ohci-module.patch
CVE-2016-2841-qemut-ne2000-infinite-loop-in-ne2000_receive.patch
CVE-2016-4439-qemut-scsi-esp-OOB-write-while-writing-to-cmdbuf-in-esp_reg_write.patch
CVE-2016-4441-qemut-scsi-esp-OOB-write-while-writing-to-cmdbuf-in-get_cmd.patch
CVE-2016-5238-qemut-scsi-esp-OOB-write-when-using-non-DMA-mode-in-get_cmd.patch
CVE-2016-5338-qemut-scsi-esp-OOB-rw-access-while-processing-ESP_FIFO.patch
CVE-2016-6351-qemut-scsi-esp-make-cmdbuf-big-enough-for-maximum-CDB-size.patch
CVE-2016-7908-qemut-net-Infinite-loop-in-mcf_fec_do_tx.patch
CVE-2016-7909-qemut-net-pcnet-infinite-loop-in-pcnet_rdra_addr.patch
CVE-2016-8667-qemut-dma-rc4030-divide-by-zero-error-in-set_next_tick.patch
CVE-2016-8669-qemut-char-divide-by-zero-error-in-serial_update_parameters.patch
CVE-2016-8910-qemut-net-rtl8139-infinite-loop-while-transmit-in-Cplus-mode.patch
CVE-2016-9921-qemut-display-cirrus_vga-divide-by-zero-in-cirrus_do_copy.patch
CVE-2017-6505-qemut-usb-an-infinite-loop-issue-in-ohci_service_ed_list.patch
CVE-2017-8309-qemut-audio-host-memory-leakage-via-capture-buffer.patch
CVE-2017-9330-qemut-usb-ohci-infinite-loop-due-to-incorrect-return-value.patch
blktap.patch
cdrom-removable.patch
xen-qemu-iscsi-fix.patch
qemu-security-etch1.patch
xen-disable-qemu-monitor.patch
xen-hvm-default-bridge.patch
qemu-ifup-set-mtu.patch
ioemu-vnc-resize.patch
capslock_enable.patch
altgr_2.patch
log-guest-console.patch
bdrv_open2_fix_flags.patch
bdrv_open2_flags_2.patch
ioemu-7615-qcow2-fix-alloc_cluster_link_l2.patch
qemu-dm-segfault.patch
bdrv_default_rwflag.patch
kernel-boot-hvm.patch
ioemu-watchdog-support.patch
ioemu-watchdog-linkage.patch
ioemu-watchdog-ib700-timer.patch
ioemu-hvm-pv-support.patch
pvdrv_emulation_control.patch
ioemu-disable-scsi.patch
ioemu-disable-emulated-ide-if-pv.patch
xenpaging.qemu.flush-cache.patch
ioemu-devicemodel-include.patch
- Cleanup spec file and remove unused KMP patches
kmp_filelist
supported_module.patch
xen_pvonhvm.xen_emul_unplug.patch�- bsc#1002573 - Optimize LVM functions in block-dmmd
block-dmmd�- Record initial Xen dmesg in /var/log/xen/xen-boot.log for
supportconfig. Keep previous log in /var/log/xen/xen-boot.prev.log�- Remove storytelling from description in xen.rpm�- Update to Xen 4.9.0 FCS (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2�- Update block-dmmd script (bsc#1002573)
block-dmmd�- Update to Xen 4.9.0-rc8+ (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2
gcc7-arm.patch
- Drop gcc7-error-xenpmd.patch�- Update to Xen 4.9.0-rc8 (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2�- bsc#1042160 - VUL-1: CVE-2017-9330: xen: usb: ohci: infinite loop
due to incorrect return value
CVE-2017-9330-qemut-usb-ohci-infinite-loop-due-to-incorrect-return-value.patch�- bsc#1037243 - VUL-1: CVE-2017-8309: xen: audio: host memory
leakage via capture buffer
CVE-2017-8309-qemut-audio-host-memory-leakage-via-capture-buffer.patch�- Update to Xen 4.9.0-rc7 (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2�- Update to Xen 4.9.0-rc6 (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2�- bsc#1031343 - xen fails to build with GCC 7
gcc7-mini-os.patch
gcc7-xen.patch�- bsc#1031343 - xen fails to build with GCC 7
gcc7-error-xenpmd.patch�- Update to Xen 4.9.0-rc5 (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2
- Drop xen-tools-pkgconfig-xenlight.patch�- bsc#1037779 - xen breaks kexec-tools build
xen-tools-pkgconfig-xenlight.patch�- Update to Xen 4.9.0-rc4 (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2�- bsc#1036146 - sles12sp2 xen VM dumps core to wrong path
xen.spec�- Update to Xen 4.9.0-rc3 (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2
aarch64-maybe-uninitialized.patch�- Update to Xen 4.9.0-rc2 (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2�- Update to Xen 4.9.0-rc1 (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2
ioemu-devicemodel-include.patch
- Dropped patches contained in new tarball
xen-4.8.0-testing-src.tar.bz2
0001-xenstore-let-write_node-and-some-callers-return-errn.patch
0002-xenstore-undo-function-rename.patch
0003-xenstore-rework-of-transaction-handling.patch
584806ce-x86emul-correct-PUSHF-POPF.patch
584fc649-fix-determining-when-domain-creation-is-complete.patch
58510c06-x86emul-CMPXCHGnB-ignore-prefixes.patch
58510cac-x86emul-MOVNTI-no-REP-prefixes.patch
58526ccc-x86emul-64bit-ignore-most-segment-bases-in-align-check.patch
5853ed37-VT-d-correct-dma_msi_set_affinity.patch
5853ee07-x86emul-CMPXCHG16B-aligned-operand.patch
58580060-x86-emul-correct-SYSCALL-eflags-handling.patch
585aa3c5-x86-force-EFLAGS-IF-on-upon-exit-to-PV.patch
585aa407-x86-HVM-NULL-check-before-using-VMFUNC-hook.patch
585bd5fe-x86-emul-correct-VMFUNC-return-value-handling.patch
586ba81c-x86-cpu-dont-update-this_cpu-for-guest-get_cpu_vendor.patch
587d04d6-x86-xstate-fix-array-overrun-with-LWP.patch
587de4a9-x86emul-VEX-B-ignored-in-compat-mode.patch
5882129d-x86emul-LOCK-check-adjustments.patch
58821300-x86-segment-attribute-handling.patch
58873c1f-x86emul-correct-FPU-stub-asm-constraints.patch
58873c80-x86-hvm-do-not-set-msr_tsc_adjust-on-.patch
5887888f-credit2-fix-shutdown-suspend-with-cpupools.patch
5887888f-credit2-never-consider-CPUs-outside-of-pool.patch
5887888f-credit2-use-the-correct-scratch-cpumask.patch
5888b1b3-x86-emulate-dont-assume-addr_size-32-implies-protmode.patch
5899cbd9-EPT-allow-wrcomb-MMIO-mappings-again.patch
589b3272-libxl-dont-segfault-when-creating-domain-with-invalid-pvusb-device.patch
58a44771-IOMMU-always-call-teardown-callback.patch
58a48ccc-x86-fix-p2m_flush_table-for-non-nested.patch
58a59f4b-libxl-correct-xenstore-entry-for-empty-cdrom.patch
58a70d94-VMX-fix-VMCS-race-on-cswitch-paths.patch
58ac1f3f-VMX-dont-leak-host-syscall-MSRs.patch
58b5a2de-x86-correct-Xens-idea-of-its-memory-layout.patch
58b6fd42-credit2-always-mark-a-tickled-pCPU-as-tickled.patch
58b6fd42-credit2-dont-miss-accounting-during-credit-reset.patch
58cbf682-x86-EFI-avoid-overrunning-mb_modules.patch
58cf9200-x86-EFI-avoid-IOMMU-faults-on-tail-gap.patch
58cf9260-x86-EFI-avoid-Xen-when-looking-for-mod-kexec-pos.patch
58cf9277-x86-time-dont-use-vTSC-if-host-guest-freqs-match.patch
58d25ea2-xenstore-add-missing-checks-for-allocation-failure.patch
58d91365-sched-dont-call-wrong-hook-via-VCPU2OP.patch
CVE-2017-2615-qemut-display-cirrus-oob-access-while-doing-bitblt-copy-backward-mode.patch
CVE-2017-2620-xsa209-qemut-cirrus_bitblt_cputovideo-does-not-check-if-memory-region-safe.patch
glibc-2.25-compatibility-fix.patch
xs-09-add_change_node-params.patch
xs-10-call-add_change_node.patch
xs-11-tdb-record-header.patch
xs-12-node-gen-count.patch
xs-13-read-directory-part-support.patch
xs-14-command-array.patch
xs-15-command-return-val.patch
xs-16-function-static.patch
xs-17-arg-parsing.patch
xs-18-default-buffer.patch
xs-19-handle-alloc-failures.patch
xs-20-tdb-version.patch
xs-21-empty-tdb-database.patch
xs-22-reopen_log-fix.patch
xs-23-XS_DEBUG-rename.patch
xs-24-xenstored_control.patch
xs-25-control-enhance.patch
xs-26-log-control.patch
xs-27-memory-report.patch
xs-28-remove-talloc-report.patch
xs-29-define-off_t.patch
xsa206-0001-xenstored-apply-a-write-transaction-rate-limit.patch
xsa206-0002-xenstored-Log-when-the-write-transaction-rate-limit.patch�- bsc#1022703 - Xen HVM guest with OVMF hangs with unattached CDRom
58a59f4b-libxl-correct-xenstore-entry-for-empty-cdrom.patch�- bsc#1015348 - L3: libvirtd does not start during boot
suse-xendomains-service.patch�- bsc#1014136 - Partner-L3: kdump can't dump a kernel on SLES12-SP2
with Xen hypervisor.
58cf9260-x86-EFI-avoid-Xen-when-looking-for-mod-kexec-pos.patch
- bsc#1026236 - L3: Paravirtualized vs. fully virtualized migration
- latter one much faster
58cf9277-x86-time-dont-use-vTSC-if-host-guest-freqs-match.patch
- Upstream patch from Jan
58cbf682-x86-EFI-avoid-overrunning-mb_modules.patch
58cf9200-x86-EFI-avoid-IOMMU-faults-on-tail-gap.patch
58d91365-sched-dont-call-wrong-hook-via-VCPU2OP.patch�- bsc#1022555 - L3: Timeout in "execution of /etc/xen/scripts/block
add"
58d25ea2-xenstore-add-missing-checks-for-allocation-failure.patch
0001-xenstore-let-write_node-and-some-callers-return-errn.patch
0002-xenstore-undo-function-rename.patch
0003-xenstore-rework-of-transaction-handling.patch
- bsc#1030144 - VUL-0: xen: xenstore denial of service via repeated
update (XSA-206)
xsa206-0001-xenstored-apply-a-write-transaction-rate-limit.patch
xsa206-0002-xenstored-Log-when-the-write-transaction-rate-limit.patch
- bsc#1029827 - Forward port xenstored
xs-09-add_change_node-params.patch
xs-10-call-add_change_node.patch
xs-11-tdb-record-header.patch
xs-12-node-gen-count.patch
xs-13-read-directory-part-support.patch
xs-14-command-array.patch
xs-15-command-return-val.patch
xs-16-function-static.patch
xs-17-arg-parsing.patch
xs-18-default-buffer.patch
xs-19-handle-alloc-failures.patch
xs-20-tdb-version.patch
xs-21-empty-tdb-database.patch
xs-22-reopen_log-fix.patch
xs-23-XS_DEBUG-rename.patch
xs-24-xenstored_control.patch
xs-25-control-enhance.patch
xs-26-log-control.patch
xs-27-memory-report.patch
xs-28-remove-talloc-report.patch
xs-29-define-off_t.patch�- bsc#1029128 - fix make xen to really produce xen.efi with gcc48�- bsc#1028235 - VUL-0: CVE-2017-6505: xen: qemu: usb: an infinite
loop issue in ohci_service_ed_list
CVE-2017-6505-qemut-usb-an-infinite-loop-issue-in-ohci_service_ed_list.patch
- Upstream patches from Jan (bsc#1027519)
5887888f-credit2-fix-shutdown-suspend-with-cpupools.patch
5887888f-credit2-use-the-correct-scratch-cpumask.patch
5899cbd9-EPT-allow-wrcomb-MMIO-mappings-again.patch
589b3272-libxl-dont-segfault-when-creating-domain-with-invalid-pvusb-device.patch
58a44771-IOMMU-always-call-teardown-callback.patch
58a48ccc-x86-fix-p2m_flush_table-for-non-nested.patch
58a70d94-VMX-fix-VMCS-race-on-cswitch-paths.patch
58ac1f3f-VMX-dont-leak-host-syscall-MSRs.patch
58b5a2de-x86-correct-Xens-idea-of-its-memory-layout.patch
58b6fd42-credit2-always-mark-a-tickled-pCPU-as-tickled.patch
58b6fd42-credit2-dont-miss-accounting-during-credit-reset.patch�- bsc#1027654 - XEN fails to build against glibc 2.25
glibc-2.25-compatibility-fix.patch
libxl.pvscsi.patch�- fate#316613: Refresh and enable libxl.pvscsi.patch�- bsc#1024834 - VUL-0: CVE-2017-2620: xen: cirrus_bitblt_cputovideo
does not check if memory region is safe (XSA-209)
CVE-2017-2620-xsa209-qemut-cirrus_bitblt_cputovideo-does-not-check-if-memory-region-safe.patch�- bsc#1023948 - [pvusb][sles12sp3][openqa] Segmentation fault
happened when adding usbctrl devices via xl
589b3272-libxl-dont-segfault-when-creating-domain-with-invalid-pvusb-device.patch�- Upstream patches from Jan (bsc#1027519)
587d04d6-x86-xstate-fix-array-overrun-with-LWP.patch
587de4a9-x86emul-VEX-B-ignored-in-compat-mode.patch
5882129d-x86emul-LOCK-check-adjustments.patch
58821300-x86-segment-attribute-handling.patch
58873c1f-x86emul-correct-FPU-stub-asm-constraints.patch
58873c80-x86-hvm-do-not-set-msr_tsc_adjust-on-.patch
5887888f-credit2-use-the-correct-scratch-cpumask.patch
5887888f-credit2-never-consider-CPUs-outside-of-pool.patch
5887888f-credit2-fix-shutdown-suspend-with-cpupools.patch
5888b1b3-x86-emulate-dont-assume-addr_size-32-implies-protmode.patch�- bsc#1023004 - VUL-0: CVE-2017-2615: qemu: display: cirrus: oob
access while doing bitblt copy backward mode
CVE-2017-2615-qemut-display-cirrus-oob-access-while-doing-bitblt-copy-backward-mode.patch�- fate#322313 and fate#322150 require the acpica package ported to
aarch64 which Xen 4.8 needs to build. Temporarily disable aarch64
until these fates are complete.
xen.spec�- bsc#1021952 - Virutalization/xen: Bug xen-tools missing
/usr/bin/domu-xenstore; guests fail to launch
tmp_build.patch
xen.spec�- No systemd presets for 42.3+ and SLE12SP3+ (bsc#1012842)�- bsc#1007224 - broken symlinks in /usr/share/doc/packages/xen/misc/
xen.spec�- 585aa3c5-x86-force-EFLAGS-IF-on-upon-exit-to-PV.patch
Replaces xsa202.patch (bsc#1014298)
- 585aa407-x86-HVM-NULL-check-before-using-VMFUNC-hook.patch
Replaces xsa203.patch (bsc#1014300)
- 58580060-x86-emul-correct-SYSCALL-eflags-handling.patch
Replaces xsa204.patch (bsc#1016340)
- Upstream patches from Jan
58526ccc-x86emul-64bit-ignore-most-segment-bases-in-align-check.patch
5853ed37-VT-d-correct-dma_msi_set_affinity.patch
5853ee07-x86emul-CMPXCHG16B-aligned-operand.patch
585bd5fe-x86-emul-correct-VMFUNC-return-value-handling.patch
586ba81c-x86-cpu-dont-update-this_cpu-for-guest-get_cpu_vendor.patch�- bsc#1015169 - VUL-0: CVE-2016-9921, CVE-2016-9922: xen: qemu:
display: cirrus_vga: a divide by zero in cirrus_do_copy
CVE-2016-9921-qemut-display-cirrus_vga-divide-by-zero-in-cirrus_do_copy.patch�- bsc#1016340 - VUL-0: CVE-2016-10013: xen: x86: Mishandling of
SYSCALL singlestep during emulation (XSA-204)
xsa204.patch�- bsc#1012651 - VUL-0: CVE-2016-9932: xen: x86 CMPXCHG8B emulation
fails to ignore operand size override (XSA-200)
58510c06-x86emul-CMPXCHGnB-ignore-prefixes.patch�- bsc#1014298 - VUL-0: CVE-2016-10024: xen: x86 PV guests may be
able to mask interrupts (XSA-202)
xsa202.patch
- bsc#1014300 - VUL-0: CVE-2016-10025: xen: x86: missing NULL
pointer check in VMFUNC emulation (XSA-203)
xsa203.patch
- Upstream patches from Jan
584806ce-x86emul-correct-PUSHF-POPF.patch
584fc649-fix-determining-when-domain-creation-is-complete.patch
58510c06-x86emul-CMPXCHGnB-ignore-prefixes.patch
58510cac-x86emul-MOVNTI-no-REP-prefixes.patch�- Update to Xen 4.8 FCS
xen-4.8.0-testing-src.tar.bz2
- Dropped
xen-4.7.1-testing-src.tar.bz2
0001-libxc-Rework-extra-module-initialisation.patch
0002-libxc-Prepare-a-start-info-structure-for-hvmloader.patch
0003-configure-define-SEABIOS_PATH-and-OVMF_PATH.patch
0004-firmware-makefile-install-BIOS-blob.patch
0005-libxl-Load-guest-BIOS-from-file.patch
0006-xen-Move-the-hvm_start_info-C-representation-from-li.patch
0007-hvmloader-Grab-the-hvm_start_info-pointer.patch
0008-hvmloader-Locate-the-BIOS-blob.patch
0009-hvmloader-Check-modules-whereabouts-in-perform_tests.patch
0010-hvmloader-Load-SeaBIOS-from-hvm_start_info-modules.patch
0011-hvmloader-Load-OVMF-from-modules.patch
0012-hvmloader-Specific-bios_load-function-required.patch
0013-hvmloader-Always-build-in-SeaBIOS-and-OVMF-loader.patch
0014-configure-do-not-depend-on-SEABIOS_PATH-or-OVMF_PATH.patch
57580bbd-kexec-allow-relaxed-placement-via-cmdline.patch
576001df-x86-time-use-local-stamp-in-TSC-calibration-fast-path.patch
5769106e-x86-generate-assembler-equates-for-synthesized.patch
57a1e603-x86-time-adjust-local-system-time-initialization.patch
57a1e64c-x86-time-introduce-and-use-rdtsc_ordered.patch
57a2f6ac-x86-time-calibrate-TSC-against-platform-timer.patch
57a30261-x86-support-newer-Intel-CPU-models.patch
5810a9cc-x86-emul-Correct-decoding-of-SReg3-operands.patch
581b2c3b-x86-emul-reject-LGDT-LIDT-with-non-canonical-addresses.patch
581b647a-x86emul-L-S-G-I-DT-ignore-opsz-overrides-in-64-bit-mode.patch
58249392-x86-svm-dont-clobber-eax-edx-if-RDMSR-intercept-fails.patch
582c35d6-x86-vmx-correct-long-mode-check-in-vmx_cpuid_intercept.patch
582c35ee-x86-traps-dont-call-hvm_hypervisor_cpuid_leaf-for-PV.patch
58343dc2-x86-hvm-Fix-the-handling-of-non-present-segments.patch
58343df8-x86-HVM-dont-load-LDTR-with-VM86-mode-attrs-during-task-switch.patch
58343e24-x86-PV-writes-of-fs-and-gs-base-MSRs-require-canonical-addresses.patch
58343e9e-libelf-fix-stack-memory-leak-when-loading-32-bit-symbol-tables.patch
58343ec2-x86emul-fix-huge-bit-offset-handling.patch
58343f29-x86-emul-correct-the-IDT-entry-calculation-in-inject_swint.patch
58343f44-x86-svm-fix-injection-of-software-interrupts.patch
58343f79-pygrub-Properly-quote-results-when-returning-them-to-the-caller.patch
CVE-2016-9381-xsa197-qemut.patch
CVE-2016-9637-xsa199-qemut.patch�- bsc#1011652 - VUL-0: xen: qemu ioport array overflow
CVE-2016-9637-xsa199-qemut.patch�- bsc#1009100 - VUL-0: CVE-2016-9386: XSA-191: xen: x86 null
segments not always treated as unusable
58343dc2-x86-hvm-Fix-the-handling-of-non-present-segments.patch
- bsc#1009103 - VUL-0: CVE-2016-9382: XSA-192: xen: x86 task switch
to VM86 mode mis-handled
58343df8-x86-HVM-dont-load-LDTR-with-VM86-mode-attrs-during-task-switch.patch
- bsc#1009104 - VUL-0: CVE-2016-9385: XSA-193: xen: x86 segment base
write emulation lacking canonical address checks
58343e24-x86-PV-writes-of-fs-and-gs-base-MSRs-require-canonical-addresses.patch
- bsc#1009105 - VUL-0: CVE-2016-9384: XSA-194: xen: guest 32-bit
ELF symbol table load leaking host data
58343e9e-libelf-fix-stack-memory-leak-when-loading-32-bit-symbol-tables.patch
- bsc#1009107 - VUL-0: CVE-2016-9383: XSA-195: xen: x86 64-bit bit
test instruction emulation broken
58343ec2-x86emul-fix-huge-bit-offset-handling.patch
- bsc#1009108 - VUL-0: CVE-2016-9377,CVE-2016-9378: XSA-196: xen:
x86 software interrupt injection mis-handled
58343f29-x86-emul-correct-the-IDT-entry-calculation-in-inject_swint.patch
58343f44-x86-svm-fix-injection-of-software-interrupts.patch
- bsc#1009109 - VUL-0: CVE-2016-9381: XSA-197: xen: qemu incautious
about shared ring processing
CVE-2016-9381-xsa197-qemut.patch
- bsc#1009111 - VUL-0: CVE-2016-9379,CVE-2016-9380: XSA-198: xen:
delimiter injection vulnerabilities in pygrub
58343f79-pygrub-Properly-quote-results-when-returning-them-to-the-caller.patch
- Upstream patches from Jan
581b2c3b-x86-emul-reject-LGDT-LIDT-with-non-canonical-addresses.patch
581b647a-x86emul-L-S-G-I-DT-ignore-opsz-overrides-in-64-bit-mode.patch
58249392-x86-svm-dont-clobber-eax-edx-if-RDMSR-intercept-fails.patch
582c35d6-x86-vmx-correct-long-mode-check-in-vmx_cpuid_intercept.patch
582c35ee-x86-traps-dont-call-hvm_hypervisor_cpuid_leaf-for-PV.patch�- Update to Xen Version 4.7.1
xen-4.7.1-testing-src.tar.bz2
- Dropped patches contained in new tarball
xen-4.7.0-testing-src.tar.bz2
575e9ca0-nested-vmx-Validate-host-VMX-MSRs-before-accessing-them.patch
57640448-xen-sched-use-default-scheduler-upon-an-invalid-sched.patch
57973099-have-schedulers-revise-initial-placement.patch
579730e6-remove-buggy-initial-placement-algorithm.patch
57976073-x86-remove-unsafe-bits-from-mod_lN_entry-fastpath.patch
57976078-x86-avoid-SMAP-violation-in-compat_create_bounce_frame.patch
57ac6316-don-t-restrict-DMA-heap-to-node-0.patch
57b71fc5-x86-EFI-don-t-apply-relocations-to-l-2-3-_bootmap.patch
57b7447b-dont-permit-guest-to-populate-PoD-pages-for-itself.patch
57c4412b-x86-HVM-add-guarding-logic-for-VMX-specific-code.patch
57c57f73-libxc-correct-max_pfn-calculation-for-saving-domain.patch
57c805bf-x86-levelling-restrict-non-architectural-OSXSAVE-handling.patch
57c805c1-x86-levelling-pass-vcpu-to-ctxt_switch_levelling.patch
57c805c3-x86-levelling-provide-architectural-OSXSAVE-handling.patch
57c82be2-x86-32on64-adjust-call-gate-emulation.patch
57c93e52-fix-error-in-libxl_device_usbdev_list.patch
57c96df3-credit1-fix-a-race-when-picking-initial-pCPU.patch
57c96e2c-x86-correct-PT_NOTE-file-position.patch
57cfed43-VMX-correct-feature-checks-for-MPX-and-XSAVES.patch
57d1563d-x86-32on64-don-t-allow-recursive-page-tables-from-L3.patch
57d15679-x86-emulate-Correct-boundary-interactions-of-emulated-insns.patch
57d1569a-x86-shadow-Avoid-overflowing-sh_ctxt-seg_reg.patch
57d18642-hvm-fep-Allow-test-insns-crossing-1-0-boundary.patch
57d18642-x86-segment-Bounds-check-accesses-to-emulation-ctxt-seg_reg.patch
57d7ca5f-x86-domctl-fix-TOCTOU-race-in-XEN_DOMCTL_getvcpuextstate.patch
57d7ca64-x86-domctl-fix-migration-of-guests-not-using-xsave.patch
57da8883-credit1-fix-mask-to-be-used-for-tickling.patch
57da8883-credit2-properly-schedule-migration-of-running-vcpu.patch
57dfb1c5-x86-Intel-hide-CPUID-faulting-capability-from-guests.patch
57e93e1d-x86emul-correct-loading-of-ss.patch
57e93e4a-x86emul-don-t-allow-null-selector-for-LTR.patch
57e93e89-x86-AMD-apply-erratum-665-workaround.patch
57ee6cbc-credit1-return-time-remaining-to-limit-as-next-timeslice.patch
57f3a8ee-x86emul-honor-guest-CR0-TS-and-CR0-EM.patch
57fb6a91-x86-defer-not-present-segment-checks.patch
5800c51d-x86-hvm-Clobber-cs-L-when-LME-becomes-set.patch
5800caec-x86emul-fix-pushing-of-selector-registers.patch
5800cb06-x86-Viridian-don-t-depend-on-undefined-register-state.patch
580e29f9-x86-MISALIGNSSE-feature-depends-on-SSE.patch
57dfb2ff-x86-Intel-Broadwell-no-PKG_C8-10_RESIDENCY-MSRs.patch�- bsc#1004981 - Xen RPM doesn't contain debug hypervisor for EFI
systems
xen.spec�- bsc#1000106 - VUL-0: CVE-2016-7777: xen: CR0.TS and CR0.EM not
always honored for x86 HVM guests (XSA-190)
57f3a8ee-x86emul-honor-guest-CR0-TS-and-CR0-EM.patch
- bsc#996191 - [XEN][acpi]residency -n 88 -c will cause xen panic
on broadwell-ep
57dfb2ff-x86-Intel-Broadwell-no-PKG_C8-10_RESIDENCY-MSRs.patch
- Upstream patches from Jan
57d7ca5f-x86-domctl-fix-TOCTOU-race-in-XEN_DOMCTL_getvcpuextstate.patch
57d7ca64-x86-domctl-fix-migration-of-guests-not-using-xsave.patch
57da8883-credit1-fix-mask-to-be-used-for-tickling.patch
57da8883-credit2-properly-schedule-migration-of-running-vcpu.patch
57dfb1c5-x86-Intel-hide-CPUID-faulting-capability-from-guests.patch
57e93e1d-x86emul-correct-loading-of-ss.patch
57e93e4a-x86emul-don-t-allow-null-selector-for-LTR.patch
57e93e89-x86-AMD-apply-erratum-665-workaround.patch
57ee6cbc-credit1-return-time-remaining-to-limit-as-next-timeslice.patch
57fb6a91-x86-defer-not-present-segment-checks.patch
5800c51d-x86-hvm-Clobber-cs-L-when-LME-becomes-set.patch
5800caec-x86emul-fix-pushing-of-selector-registers.patch
5800cb06-x86-Viridian-don-t-depend-on-undefined-register-state.patch
580e29f9-x86-MISALIGNSSE-feature-depends-on-SSE.patch
5810a9cc-x86-emul-Correct-decoding-of-SReg3-operands.patch�- bsc#1007941 - Xen tools limit the number of vcpus to 256 when the
system has 384
xen-arch-kconfig-nr_cpus.patch�- bsc#1007157 - VUL-0: CVE-2016-8910: xen: net: rtl8139: infinite
loop while transmit in C+ mode
CVE-2016-8910-qemut-net-rtl8139-infinite-loop-while-transmit-in-Cplus-mode.patch�- bsc#1005004 - CVE-2016-8667: xen: dma: rc4030 divide by zero
error in set_next_tick
CVE-2016-8667-qemut-dma-rc4030-divide-by-zero-error-in-set_next_tick.patch
- bsc#1005005 - VUL-0: CVE-2016-8669: xen: char: divide by zero
error in serial_update_parameters
CVE-2016-8669-qemut-char-divide-by-zero-error-in-serial_update_parameters.patch�- bsc#1003030 - VUL-0: CVE-2016-7908: xen: net: Infinite loop in
mcf_fec_do_tx
CVE-2016-7908-qemut-net-Infinite-loop-in-mcf_fec_do_tx.patch
- bsc#1003032 - VUL-0: CVE-2016-7909: xen: net: pcnet: infinite
loop in pcnet_rdra_addr
CVE-2016-7909-qemut-net-pcnet-infinite-loop-in-pcnet_rdra_addr.patch�- bsc#995785 - VUL-0: CVE-2016-7092: xen: x86: Disallow L3
recursive pagetable for 32-bit PV guests (XSA-185)
57d1563d-x86-32on64-don-t-allow-recursive-page-tables-from-L3.patch
- bsc#995789 - VUL-0: CVE-2016-7093: xen: x86: Mishandling of
instruction pointer truncation during emulation (XSA-186)
57d15679-x86-emulate-Correct-boundary-interactions-of-emulated-insns.patch
57d18642-hvm-fep-Allow-test-insns-crossing-1-0-boundary.patch
- bsc#995792 - VUL-0: CVE-2016-7094: xen: x86 HVM: Overflow of
sh_ctxt->seg_reg[] (XSA-187)
57d1569a-x86-shadow-Avoid-overflowing-sh_ctxt-seg_reg.patch
57d18642-x86-segment-Bounds-check-accesses-to-emulation-ctxt-seg_reg.patch
- bsc#991934 - xen hypervisor crash in csched_acct
57c96df3-credit1-fix-a-race-when-picking-initial-pCPU.patch
- Upstream patches from Jan
57c4412b-x86-HVM-add-guarding-logic-for-VMX-specific-code.patch
57c57f73-libxc-correct-max_pfn-calculation-for-saving-domain.patch
57c805bf-x86-levelling-restrict-non-architectural-OSXSAVE-handling.patch
57c805c1-x86-levelling-pass-vcpu-to-ctxt_switch_levelling.patch
57c805c3-x86-levelling-provide-architectural-OSXSAVE-handling.patch
57c82be2-x86-32on64-adjust-call-gate-emulation.patch
57c96e2c-x86-correct-PT_NOTE-file-position.patch
57cfed43-VMX-correct-feature-checks-for-MPX-and-XSAVES.patch�- bsc#979002 - add 60-persistent-xvd.rules and helper script
also to initrd, add the relevant dracut helper�- bnc#953518 - unplug also SCSI disks in qemu-xen-traditional for
upstream unplug protocol�- bsc#989679 - [pvusb feature] USB device not found when
'virsh detach-device guest usb.xml'
57c93e52-fix-error-in-libxl_device_usbdev_list.patch�- bsc#992224 - [HPS Bug] During boot of Xen Hypervisor, Failed to
get contiguous memory for DMA from Xen
57ac6316-don-t-restrict-DMA-heap-to-node-0.patch
- bsc#978755 - xen uefi systems fail to boot
- bsc#983697 - SLES12 SP2 Xen UEFI mode cannot boot
57b71fc5-x86-EFI-don-t-apply-relocations-to-l-2-3-_bootmap.patch
- Upstream patch from Jan
57b7447b-dont-permit-guest-to-populate-PoD-pages-for-itself.patch�- spec: to stay compatible with the in-tree qemu-xen binary, use
/usr/bin/qemu-system-i386 instead of /usr/bin/qemu-system-x86_64
bsc#986164�- bsc#970135 - new virtualization project clock test randomly fails
on Xen
576001df-x86-time-use-local-stamp-in-TSC-calibration-fast-path.patch
5769106e-x86-generate-assembler-equates-for-synthesized.patch
57a1e603-x86-time-adjust-local-system-time-initialization.patch
57a1e64c-x86-time-introduce-and-use-rdtsc_ordered.patch
57a2f6ac-x86-time-calibrate-TSC-against-platform-timer.patch
- bsc#991934 - xen hypervisor crash in csched_acct
57973099-have-schedulers-revise-initial-placement.patch
579730e6-remove-buggy-initial-placement-algorithm.patch
- bsc#988675 - VUL-0: CVE-2016-6258: xen: x86: Privilege escalation
in PV guests (XSA-182)
57976073-x86-remove-unsafe-bits-from-mod_lN_entry-fastpath.patch
- bsc#988676 - VUL-0: CVE-2016-6259: xen: x86: Missing SMAP
whitelisting in 32-bit exception / event delivery (XSA-183)
57976078-x86-avoid-SMAP-violation-in-compat_create_bounce_frame.patch
- Upstream patches from Jan
57a30261-x86-support-newer-Intel-CPU-models.patch�- bsc#985503 - vif-route broken
vif-route.patch�- bsc#978413 - PV guest upgrade from sles11sp4 to sles12sp2 alpha3
failed on sles11sp4 xen host.
pygrub-handle-one-line-menu-entries.patch�- bsc#990843 - VUL-1: CVE-2016-6351: xen: qemu: scsi: esp: OOB
write access in esp_do_dma
CVE-2016-6351-qemut-scsi-esp-make-cmdbuf-big-enough-for-maximum-CDB-size.patch�- bsc#900418 - Dump cannot be performed on SLES12 XEN
57580bbd-kexec-allow-relaxed-placement-via-cmdline.patch
- Upstream patches from Jan
575e9ca0-nested-vmx-Validate-host-VMX-MSRs-before-accessing-them.patch
57640448-xen-sched-use-default-scheduler-upon-an-invalid-sched.patch�- fate#319989 - Update to Xen 4.7 FCS
xen-4.7.0-testing-src.tar.bz2
- Drop CVE-2014-3672-qemut-xsa180.patch�- bsc#954872 - script block-dmmd not working as expected - libxl:
error: libxl_dm.c (Additional fixes)
block-dmmd�- Convert with_stubdom into build_conditional to allow adjusting
via prjconf
- Convert with_debug into build_conditional to allow adjusting
via prjconf�- bsc#979002 - add 60-persistent-xvd.rules and helper script to
xen-tools-domU to simplify transition to pvops based kernels�- Convert with_oxenstored into build_conditional to allow
adjusting via prjconf (fate#320836)�- bsc#983984 - VUL-0: CVE-2016-5338: xen: qemu: scsi: esp: OOB r/w
access while processing ESP_FIFO
CVE-2016-5338-qemut-scsi-esp-OOB-rw-access-while-processing-ESP_FIFO.patch
- bsc#982960 - VUL-0: CVE-2016-5238: xen: qemu: scsi: esp: OOB
write when using non-DMA mode in get_cmd
CVE-2016-5238-qemut-scsi-esp-OOB-write-when-using-non-DMA-mode-in-get_cmd.patch�- fate#319989 - Update to Xen 4.7 RC5
xen-4.7.0-testing-src.tar.bz2�- fate#319989 - Update to Xen 4.7 RC4
xen-4.7.0-testing-src.tar.bz2
- Dropped
xen.pkgconfig-4.7.patch
xsa164.patch�- bsc#981264 - VUL-0: CVE-2014-3672: xen: Unrestricted qemu logging
(XSA-180)
CVE-2014-3672-qemut-xsa180.patch�- bsc#980724 - VUL-0: CVE-2016-4441: Qemu: scsi: esp: OOB write
while writing to 's->cmdbuf' in get_cmd
CVE-2016-4441-qemut-scsi-esp-OOB-write-while-writing-to-cmdbuf-in-get_cmd.patch
- bsc#980716 - VUL-0: CVE-2016-4439: xen: scsi: esp: OOB write
while writing to 's->cmdbuf' in esp_reg_write
CVE-2016-4439-qemut-scsi-esp-OOB-write-while-writing-to-cmdbuf-in-esp_reg_write.patch�- fate#319989 - Update to Xen 4.7 RC3
xen-4.7.0-testing-src.tar.bz2
- Dropped
libxl-remove-cdrom-cachemode.patch
x86-PoD-only-reclaim-if-needed.patch
gcc6-warnings-as-errors.patch�- bsc#954872 - script block-dmmd not working as expected - libxl:
error: libxl_dm.c (another modification)
block-dmmd�- fate#319989 - Update to Xen 4.7 RC2
xen-4.7.0-testing-src.tar.bz2�- bsc#961600 - L3: poor performance when Xen HVM domU configured
with max memory > current memory
x86-PoD-only-reclaim-if-needed.patch�- Mark SONAMEs and pkgconfig as xen 4.7
xen.pkgconfig-4.7.patch�- bsc#977329 - Xen: Cannot boot HVM guests with empty cdrom
libxl-remove-cdrom-cachemode.patch�- fate#319989 - Update to Xen 4.7 RC1
xen-4.7.0-testing-src.tar.bz2�- fate#316614: set migration constraints from cmdline
restore libxl.set-migration-constraints-from-cmdline.patch�- Remove obsolete patch for xen-kmp
magic_ioport_compat.patch�- fate#316613: update to v12
libxl.pvscsi.patch�- Update to the latest Xen 4.7 pre-release c2994f86
Drop libxl.migrate-legacy-stream-read.patch�- bnc#972756 - Can't migrate HVM guest from SLES12SP1 Xen host
to SLES12SP2 Alpha 1 host using xl migrate
libxl.migrate-legacy-stream-read.patch�- Add patches from proposed upstream series to load BIOS's from
the toolstack instead of embedding in hvmloader
http://lists.xenproject.org/archives/html/xen-devel/2016-03/msg01626.html
0001-libxc-Rework-extra-module-initialisation.patch,
0002-libxc-Prepare-a-start-info-structure-for-hvmloader.patch,
0003-configure-define-SEABIOS_PATH-and-OVMF_PATH.patch,
0004-firmware-makefile-install-BIOS-blob.patch,
0005-libxl-Load-guest-BIOS-from-file.patch,
0006-xen-Move-the-hvm_start_info-C-representation-from-li.patch,
0007-hvmloader-Grab-the-hvm_start_info-pointer.patch,
0008-hvmloader-Locate-the-BIOS-blob.patch,
0009-hvmloader-Check-modules-whereabouts-in-perform_tests.patch,
0010-hvmloader-Load-SeaBIOS-from-hvm_start_info-modules.patch,
0011-hvmloader-Load-OVMF-from-modules.patch,
0012-hvmloader-Specific-bios_load-function-required.patch,
0013-hvmloader-Always-build-in-SeaBIOS-and-OVMF-loader.patch,
0014-configure-do-not-depend-on-SEABIOS_PATH-or-OVMF_PATH.patch
- Enable support for UEFI on x86_64 using the ovmf-x86_64-ms.bin
firmware from qemu-ovmf-x86_64. The firmware is preloaded with
Microsoft keys to more closely resemble firmware on real hardware
FATE#320490�- fate#319989: Update to Xen 4.7 (pre-release)
xen-4.7.0-testing-src.tar.bz2
- Dropped:
xen-4.6.1-testing-src.tar.bz2
55f7f9d2-libxl-slightly-refine-pci-assignable-add-remove-handling.patch
5628fc67-libxl-No-emulated-disk-driver-for-xvdX-disk.patch
5644b756-x86-HVM-don-t-inject-DB-with-error-code.patch
5649bcbe-libxl-relax-readonly-check-introduced-by-XSA-142-fix.patch
hotplug-Linux-block-performance-fix.patch
set-mtu-from-bridge-for-tap-interface.patch
xendomains-libvirtd-conflict.patch
xsa154.patch
xsa155-xen-0001-xen-Add-RING_COPY_REQUEST.patch
xsa155-xen-0002-blktap2-Use-RING_COPY_REQUEST.patch
xsa155-xen-0003-libvchan-Read-prod-cons-only-once.patch
xsa170.patch�- Use system SeaBIOS instead of building/installing another one
FATE#320638
Dropped files:
seabios-dir-remote.tar.bz2
xen-c99-fix.patch
xen.build-compare.seabios.patch�- spec: drop BuildRequires that were only needed for qemu-xen�- bsc#969377 - xen does not build with GCC 6
ipxe-use-rpm-opt-flags.patch
gcc6-warnings-as-errors.patch�- bsc#969351 - VUL-0: CVE-2016-2841: xen: net: ne2000: infinite
loop in ne2000_receive
CVE-2016-2841-qemut-ne2000-infinite-loop-in-ne2000_receive.patch
- Drop xsa154-fix.patch�- Use system qemu instead of building/installing yet another qemu
FATE#320638
- Dropped files
qemu-xen-dir-remote.tar.bz2
CVE-2014-0222-qemuu-qcow1-validate-l2-table-size.patch
CVE-2015-1779-qemuu-incrementally-decode-websocket-frames.patch
CVE-2015-1779-qemuu-limit-size-of-HTTP-headers-from-websockets-clients.patch
CVE-2015-4037-qemuu-smb-config-dir-name.patch
CVE-2015-7512-qemuu-net-pcnet-buffer-overflow-in-non-loopback-mode.patch
CVE-2015-7549-qemuu-pci-null-pointer-dereference-issue.patch
CVE-2015-8345-qemuu-eepro100-infinite-loop-fix.patch
CVE-2015-8504-qemuu-vnc-avoid-floating-point-exception.patch
CVE-2015-8558-qemuu-usb-infinite-loop-in-ehci_advance_state-results-in-DoS.patch
CVE-2015-8568-qemuu-net-vmxnet3-avoid-memory-leakage-in-activate_device.patch
CVE-2015-8613-qemuu-scsi-initialise-info-object-with-appropriate-size.patch
CVE-2015-8743-qemuu-ne2000-OOB-memory-access-in-ioport-rw-functions.patch
CVE-2015-8744-qemuu-net-vmxnet3-incorrect-l2-header-validation-leads-to-crash.patch
CVE-2015-8745-qemuu-net-vmxnet3-read-IMR-registers-instead-of-assert.patch
CVE-2016-1568-qemuu-ide-ahci-reset-ncq-object-to-unused-on-error.patch
CVE-2016-1714-qemuu-fw_cfg-add-check-to-validate-current-entry-value.patch
CVE-2014-7815-qemut-vnc-sanitize-bits_per_pixel-from-the-client.patch
CVE-2016-1981-qemuu-e1000-eliminate-infinite-loops-on-out-of-bounds-transfer.patch
CVE-2016-2538-qemuu-usb-integer-overflow-in-remote-NDIS-message-handling.patch
CVE-2015-8619-qemuu-stack-based-OOB-write-in-hmp_sendkey-routine.patch
qemu-xen-enable-spice-support.patch
qemu-xen-upstream-qdisk-cache-unsafe.patch
tigervnc-long-press.patch
xsa162-qemuu.patch�- bsc#962321 - VUL-0: CVE-2016-1922: xen: i386: null pointer
dereference in vapic_write()
CVE-2016-1922-qemuu-i386-null-pointer-dereference-in-vapic_write.patch�- bsc#968004 - VUL-0: CVE-2016-2538: xen: usb: integer overflow in
remote NDIS control message handling
CVE-2016-2538-qemuu-usb-integer-overflow-in-remote-NDIS-message-handling.patch�- bsc#954872 - L3: script block-dmmd not working as expected -
libxl: error: libxl_dm.c
block-dmmd
- Update libxl to recognize dmmd and npiv prefix in disk spec
xen.libxl.dmmd.patch�- bsc#967101 - VUL-0: CVE-2016-2391: xen: usb: multiple eof_timers
in ohci module leads to null pointer dereference
CVE-2016-2391-qemuu-usb-null-pointer-dereference-in-ohci-module.patch
CVE-2016-2391-qemut-usb-null-pointer-dereference-in-ohci-module.patch
- bsc#967090 - VUL-0: CVE-2016-2392: xen: usb: null pointer
dereference in remote NDIS control message handling
CVE-2016-2392-qemuu-usb-null-pointer-dereference-in-NDIS-message-handling.patch�- Update to Xen Version 4.6.1
xen-4.6.1-testing-src.tar.bz2
- Dropped patches now contained in tarball or unnecessary
xen-4.6.0-testing-src.tar.bz2
5604f239-x86-PV-properly-populate-descriptor-tables.patch
561bbc8b-VT-d-don-t-suppress-invalidation-address-write-when-it-is-zero.patch
561d2046-VT-d-use-proper-error-codes-in-iommu_enable_x2apic_IR.patch
561d20a0-x86-hide-MWAITX-from-PV-domains.patch
561e3283-x86-NUMA-fix-SRAT-table-processor-entry-parsing-and-consumption.patch
5632118e-arm-Support-hypercall_create_continuation-for-multicall.patch
56321222-arm-rate-limit-logging-from-unimplemented-PHYSDEVOP-and-HVMOP.patch
56321249-arm-handle-races-between-relinquish_memory-and-free_domheap_pages.patch
5632127b-x86-guard-against-undue-super-page-PTE-creation.patch
5632129c-free-domain-s-vcpu-array.patch
563212c9-x86-PoD-Eager-sweep-for-zeroed-pages.patch
563212e4-xenoprof-free-domain-s-vcpu-array.patch
563212ff-x86-rate-limit-logging-in-do_xen-oprof-pmu-_op.patch
56323737-libxl-adjust-PoD-target-by-memory-fudge-too.patch
56377442-x86-PoD-Make-p2m_pod_empty_cache-restartable.patch
5641ceec-x86-HVM-always-intercept-AC-and-DB.patch
56549f24-x86-vPMU-document-as-unsupported.patch
5677f350-x86-make-debug-output-consistent-in-hvm_set_callback_via.patch
xsa155-qemut-qdisk-double-access.patch
xsa155-qemut-xenfb.patch
xsa155-qemuu-qdisk-double-access.patch
xsa155-qemuu-xenfb.patch
xsa159.patch
xsa160.patch
xsa162-qemut.patch
xsa165.patch
xsa166.patch
xsa167.patch
xsa168.patch�- bsc#965315 - VUL-0: CVE-2016-2270: xen: x86: inconsistent
cachability flags on guest mappings (XSA-154)
xsa154.patch
- bsc#965317 - VUL-0: CVE-2016-2271: xen: VMX: guest user mode may
crash guest with non-canonical RIP (XSA-170)
xsa170.patch�- bsc#965269 - VUL-1: CVE-2015-8619: xen: stack based OOB write in
hmp_sendkey routine
CVE-2015-8619-qemuu-stack-based-OOB-write-in-hmp_sendkey-routine.patch�- bsc#965156 - VUL-0: CVE-2015-6855: xen: ide: divide by zero issue
CVE-2015-6855-qemuu-ide-divide-by-zero-issue.patch
- bsc#965112 - VUL-0: CVE-2014-3640: xen: slirp: NULL pointer deref
in sosendto()
CVE-2014-3640-qemut-slirp-NULL-pointer-deref-in-sosendto.patch�- bsc#964947 - VUL-0: CVE-2015-5278: xen: Infinite loop in
ne2000_receive() function
CVE-2015-5278-qemut-Infinite-loop-in-ne2000_receive-function.patch
- bsc#956832 - VUL-0: CVE-2015-8345: xen: qemu: net: eepro100:
infinite loop in processing command block list
CVE-2015-8345-qemuu-eepro100-infinite-loop-fix.patch
CVE-2015-8345-qemut-eepro100-infinite-loop-fix.patch�- bsc#964644 - VUL-0: CVE-2013-4533: xen pxa2xx: buffer overrun on
incoming migration
CVE-2013-4533-qemut-pxa2xx-buffer-overrun-on-incoming-migration.patch
- bsc#964925 - VUL-0: CVE-2014-0222: xen: qcow1: validate L2 table
size to avoid integer overflows
CVE-2014-0222-blktap-qcow1-validate-l2-table-size.patch
- Dropped CVE-2014-0222-qemuu-qcow1-validate-l2-table-size.patch�- bsc#964415 - VUL-1: CVE-2016-2198: xen: usb: ehci null pointer
dereference in ehci_caps_write
CVE-2016-2198-qemuu-usb-ehci-null-pointer-dereference-in-ehci_caps_write.patch
- bsc#964452 - VUL-0: CVE-2013-4534: xen: openpic: buffer overrun
on incoming migration
CVE-2013-4534-qemut-openpic-buffer-overrun-on-incoming-migration.patch�- bsc#963783 - VUL-1: CVE-2016-1981: xen: net: e1000 infinite loop
in start_xmit and e1000_receive_iov routines
CVE-2016-1981-qemuu-e1000-eliminate-infinite-loops-on-out-of-bounds-transfer.patch
CVE-2016-1981-qemut-e1000-eliminate-infinite-loops-on-out-of-bounds-transfer.patch�- bsc#962758 - VUL-0: CVE-2013-4539: xen: tsc210x: buffer overrun
on invalid state load
CVE-2013-4539-qemut-tsc210x-fix-buffer-overrun-on-invalid-state-load.patch�- bsc#962632 - VUL-0: CVE-2015-1779: xen: vnc: insufficient
resource limiting in VNC websockets decoder
CVE-2015-1779-qemuu-limit-size-of-HTTP-headers-from-websockets-clients.patch
CVE-2015-1779-qemuu-incrementally-decode-websocket-frames.patch
- bsc#962642 - VUL-0: CVE-2013-4537: xen: ssi-sd: buffer overrun on
invalid state load
CVE-2013-4537-qemut-ssi-sd-fix-buffer-overrun-on-invalid-state-load.patch
- bsc#962627 - VUL-0: CVE-2014-7815: xen: vnc: insufficient
bits_per_pixel from the client sanitization
CVE-2014-7815-qemut-vnc-sanitize-bits_per_pixel-from-the-client.patch�- bsc#962335 - VUL-0: CVE-2013-4538: xen: ssd0323: fix buffer
overun on invalid state
CVE-2013-4538-qemut-ssd0323-fix-buffer-overun-on-invalid-state.patch
- bsc#962360 - VUL-0: CVE-2015-7512: xen: net: pcnet: buffer
overflow in non-loopback mode
CVE-2015-7512-qemuu-net-pcnet-buffer-overflow-in-non-loopback-mode.patch
CVE-2015-7512-qemut-net-pcnet-buffer-overflow-in-non-loopback-mode.patch�- bsc#961692 - VUL-0: CVE-2016-1714: xen: nvram: OOB r/w access in
processing firmware configurations
CVE-2016-1714-qemuu-fw_cfg-add-check-to-validate-current-entry-value.patch
CVE-2016-1714-qemut-fw_cfg-add-check-to-validate-current-entry-value.patch�- bsc#961358 - VUL-0: CVE-2015-8613: xen: qemu: scsi: stack based
buffer overflow in megasas_ctrl_get_info
CVE-2015-8613-qemuu-scsi-initialise-info-object-with-appropriate-size.patch
- bsc#961332 - VUL-0: CVE-2016-1568: xen: Qemu: ide: ahci
use-after-free vulnerability in aio port commands
CVE-2016-1568-qemuu-ide-ahci-reset-ncq-object-to-unused-on-error.patch�- bsc#959695 - missing docs for xen
xen.spec�- bsc#960862 - VUL-0: CVE-2016-1571: xen: VMX: intercept issue with
INVLPG on non-canonical address (XSA-168)
xsa168.patch
- bsc#960861 - VUL-0: CVE-2016-1570: xen: PV superpage
functionality missing sanity checks (XSA-167)
xsa167.patch
- bsc#960836 - VUL-0: CVE-2015-8744: xen: net: vmxnet3: incorrect
l2 header validation leads to a crash via assert(2) call
CVE-2015-8744-qemuu-net-vmxnet3-incorrect-l2-header-validation-leads-to-crash.patch�- bsc#960707 - VUL-0: CVE-2015-8745: xen: reading IMR registers
leads to a crash via assert(2) call
CVE-2015-8745-qemuu-net-vmxnet3-read-IMR-registers-instead-of-assert.patch
- bsc#960726 - VUL-0: CVE-2015-8743: xen: ne2000: OOB memory access
in ioport r/w functions
CVE-2015-8743-qemuu-ne2000-OOB-memory-access-in-ioport-rw-functions.patch�- bsc#960093 - VUL-0: CVE-2015-8615: xen: x86: unintentional
logging upon guest changing callback method (XSA-169)
5677f350-x86-make-debug-output-consistent-in-hvm_set_callback_via.patch�- Adjust xen-dom0-modules.service to run Before xenstored.service
instead of proc-xen.mount to workaround a bug in systemd "design"
(bnc#959845)�- bsc#959387 - VUL-0: CVE-2015-8568 CVE-2015-8567: xen: qemu: net:
vmxnet3: host memory leakage
CVE-2015-8568-qemuu-net-vmxnet3-avoid-memory-leakage-in-activate_device.patch�- bsc#957988 - VUL-0: CVE-2015-8550: xen: paravirtualized drivers
incautious about shared memory contents (XSA-155)
xsa155-xen-0001-xen-Add-RING_COPY_REQUEST.patch
xsa155-xen-0002-blktap2-Use-RING_COPY_REQUEST.patch
xsa155-xen-0003-libvchan-Read-prod-cons-only-once.patch
xsa155-qemuu-qdisk-double-access.patch
xsa155-qemut-qdisk-double-access.patch
xsa155-qemuu-xenfb.patch
xsa155-qemut-xenfb.patch
- bsc#959006 - VUL-0: CVE-2015-8558: xen: qemu: usb: infinite loop
in ehci_advance_state results in DoS
CVE-2015-8558-qemuu-usb-infinite-loop-in-ehci_advance_state-results-in-DoS.patch
- bsc#958918 - VUL-0: CVE-2015-7549: xen: qemu pci: null pointer
dereference issue
CVE-2015-7549-qemuu-pci-null-pointer-dereference-issue.patch
- bsc#958493 - VUL-0: CVE-2015-8504: xen: qemu: ui: vnc: avoid
floating point exception
CVE-2015-8504-qemuu-vnc-avoid-floating-point-exception.patch
CVE-2015-8504-qemut-vnc-avoid-floating-point-exception.patch
- bsc#958007 - VUL-0: CVE-2015-8554: xen: qemu-dm buffer overrun in
MSI-X handling (XSA-164)
xsa164.patch
- bsc#958009 - VUL-0: CVE-2015-8555: xen: information leak in
legacy x86 FPU/XMM initialization (XSA-165)
xsa165.patch
- bsc#958523 - VUL-0: xen: ioreq handling possibly susceptible to
multiple read issue (XSA-166)
xsa166.patch�- bsc#956832 - VUL-0: CVE-2015-8345: xen: qemu: net: eepro100:
infinite loop in processing command block list
CVE-2015-8345-qemuu-eepro100-infinite-loop-fix.patch
CVE-2015-8345-qemut-eepro100-infinite-loop-fix.patch
- Upstream patches from Jan
56377442-x86-PoD-Make-p2m_pod_empty_cache-restartable.patch
5641ceec-x86-HVM-always-intercept-AC-and-DB.patch (Replaces CVE-2015-5307-xsa156.patch)
5644b756-x86-HVM-don-t-inject-DB-with-error-code.patch
56544a57-VMX-fix-adjust-trap-injection.patch
56546ab2-sched-fix-insert_vcpu-locking.patch�- bsc#956592 - VUL-0: xen: virtual PMU is unsupported (XSA-163)
56549f24-x86-vPMU-document-as-unsupported.patch
- bsc#956408 - VUL-0: CVE-2015-8339, CVE-2015-8340: xen:
XENMEM_exchange error handling issues (XSA-159)
xsa159.patch
- bsc#956409 - VUL-0: CVE-2015-8341: xen: libxl leak of pv kernel
and initrd on error (XSA-160)
xsa160.patch
- bsc#956411 - VUL-0: CVE-2015-7504: xen: heap buffer overflow
vulnerability in pcnet emulator (XSA-162)
xsa162-qemuu.patch
xsa162-qemut.patch
- bsc#947165 - VUL-0: CVE-2015-7311: xen: libxl fails to honour
readonly flag on disks with qemu-xen (xsa-142)
5628fc67-libxl-No-emulated-disk-driver-for-xvdX-disk.patch
5649bcbe-libxl-relax-readonly-check-introduced-by-XSA-142-fix.patch�- fate#315712: XEN: Use the PVOPS kernel
Turn off building the KMPs now that we are using the pvops kernel
xen.spec�- Upstream patches from Jan
561bbc8b-VT-d-don-t-suppress-invalidation-address-write-when-it-is-zero.patch
561d20a0-x86-hide-MWAITX-from-PV-domains.patch
561e3283-x86-NUMA-fix-SRAT-table-processor-entry-parsing-and-consumption.patch
5632118e-arm-Support-hypercall_create_continuation-for-multicall.patch
56321222-arm-rate-limit-logging-from-unimplemented-PHYSDEVOP-and-HVMOP.patch
56321249-arm-handle-races-between-relinquish_memory-and-free_domheap_pages.patch
5632127b-x86-guard-against-undue-super-page-PTE-creation.patch
5632129c-free-domain-s-vcpu-array.patch (Replaces CVE-2015-7969-xsa149.patch)
563212c9-x86-PoD-Eager-sweep-for-zeroed-pages.patch
563212e4-xenoprof-free-domain-s-vcpu-array.patch
563212ff-x86-rate-limit-logging-in-do_xen-oprof-pmu-_op.patch
56323737-libxl-adjust-PoD-target-by-memory-fudge-too.patch
56377442-x86-PoD-Make-p2m_pod_empty_cache-restartable.patch
5641ceec-x86-HVM-always-intercept-AC-and-DB.patch (Replaces CVE-2015-5307-xsa156.patch)
5644b756-x86-HVM-don-t-inject-DB-with-error-code.patch
- Dropped 55b0a2db-x86-MSI-track-guest-masking.patch�- Use upstream variants of block-iscsi and block-nbd�- Remove xenalyze.hg, its part of xen-4.6�- Update to Xen Version 4.6.0
xen-4.6.0-testing-src.tar.bz2
mini-os.tar.bz2
blktap2-no-uninit.patch
stubdom-have-iovec.patch
- Renamed
xsa149.patch to CVE-2015-7969-xsa149.patch
- Dropped patches now contained in tarball or unnecessary
xen-4.5.2-testing-src.tar.bz2
54c2553c-grant-table-use-uint16_t-consistently-for-offset-and-length.patch
54ca33bc-grant-table-refactor-grant-copy-to-reduce-duplicate-code.patch
54ca340e-grant-table-defer-releasing-pages-acquired-in-a-grant-copy.patch
54f4985f-libxl-fix-libvirtd-double-free.patch
55103616-vm-assist-prepare-for-discontiguous-used-bit-numbers.patch
551ac326-xentop-add-support-for-qdisk.patch
552d0fd2-x86-hvm-don-t-include-asm-spinlock-h.patch
552d0fe8-x86-mtrr-include-asm-atomic.h.patch
552d293b-x86-vMSI-X-honor-all-mask-requests.patch
552d2966-x86-vMSI-X-add-valid-bits-for-read-acceleration.patch
5537a4d8-libxl-use-DEBUG-log-level-instead-of-INFO.patch
5548e903-domctl-don-t-truncate-XEN_DOMCTL_max_mem-requests.patch
5548e95d-x86-allow-to-suppress-M2P-user-mode-exposure.patch
554c7aee-x86-provide-arch_fetch_and_add.patch
554c7b00-arm-provide-arch_fetch_and_add.patch
554cc211-libxl-add-qxl.patch 55534b0a-x86-provide-add_sized.patch
55534b25-arm-provide-add_sized.patch
5555a4f8-use-ticket-locks-for-spin-locks.patch
5555a5b9-x86-arm-remove-asm-spinlock-h.patch
5555a8ec-introduce-non-contiguous-allocation.patch
556d973f-unmodified-drivers-tolerate-IRQF_DISABLED-being-undefined.patch
5576f143-x86-adjust-PV-I-O-emulation-functions-types.patch
55795a52-x86-vMSI-X-support-qword-MMIO-access.patch
557eb55f-gnttab-per-active-entry-locking.patch
557eb5b6-gnttab-introduce-maptrack-lock.patch
557eb620-gnttab-make-the-grant-table-lock-a-read-write-lock.patch
557ffab8-evtchn-factor-out-freeing-an-event-channel.patch
5582bf43-evtchn-simplify-port_is_valid.patch
5582bf81-evtchn-remove-the-locking-when-unmasking-an-event-channel.patch
5583d9c5-x86-MSI-X-cleanup.patch
5583da09-x86-MSI-track-host-and-guest-masking-separately.patch
5583da64-gnttab-use-per-VCPU-maptrack-free-lists.patch
5583da8c-gnttab-steal-maptrack-entries-from-other-VCPUs.patch
5587d711-evtchn-clear-xen_consumer-when-clearing-state.patch
5587d779-evtchn-defer-freeing-struct-evtchn-s-until-evtchn_destroy_final.patch
5587d7b7-evtchn-use-a-per-event-channel-lock-for-sending-events.patch
5587d7e2-evtchn-pad-struct-evtchn-to-64-bytes.patch
55b0a218-x86-PCI-CFG-write-intercept.patch
55b0a255-x86-MSI-X-maskall.patch 55b0a283-x86-MSI-X-teardown.patch
55b0a2ab-x86-MSI-X-enable.patch blktapctrl-close-fifos.patch
blktapctrl-default-to-ioemu.patch blktapctrl-disable-debug-printf.patch
blktap-no-uninit.patch blktap-pv-cdrom.patch build-tapdisk-ioemu.patch
ioemu-bdrv-open-CACHE_WB.patch ioemu-blktap-barriers.patch
ioemu-blktap-fv-init.patch ioemu-blktap-image-format.patch
ioemu-blktap-zero-size.patch libxl.set-migration-constraints-from-cmdline.patch
local_attach_support_for_phy.patch pci-attach-fix.patch
qemu-xen-upstream-megasas-buildtime.patch tapdisk-ioemu-logfile.patch
tapdisk-ioemu-shutdown-fix.patch udev-rules.patch xen.build-compare.ipxe.patch
xen.build-compare.mini-os.patch xen.build-compare.smbiosdate.patch
xen.build-compare.vgabios.patch xen.build-compare.xen_compile_h.patch
xl-coredump-file-location.patch�- bsc#954405 - VUL-0: CVE-2015-8104: Xen: guest to host DoS by
triggering an infinite loop in microcode via #DB exception
- bsc#954018 - VUL-0: CVE-2015-5307: xen: x86: CPU lockup during
fault delivery (XSA-156)
CVE-2015-5307-xsa156.patch�- Update to Xen 4.5.2
xen-4.5.2-testing-src.tar.bz2
- Drop the following
xen-4.5.1-testing-src.tar.bz2
552d0f49-x86-traps-identify-the-vcpu-in-context-when-dumping-regs.patch
5576f178-kexec-add-more-pages-to-v1-environment.patch
55780be1-x86-EFI-adjust-EFI_MEMORY_WP-handling-for-spec-version-2.5.patch
558bfaa0-x86-traps-avoid-using-current-too-early.patch
5592a116-nested-EPT-fix-the-handling-of-nested-EPT.patch
559b9dd6-x86-p2m-ept-don-t-unmap-in-use-EPT-pagetable.patch
559bc633-x86-cpupool-clear-proper-cpu_valid-bit-on-CPU-teardown.patch
559bc64e-credit1-properly-deal-with-CPUs-not-in-any-pool.patch
559bc87f-x86-hvmloader-avoid-data-corruption-with-xenstore-rw.patch
559bdde5-pull-in-latest-linux-earlycpio.patch
55a62eb0-xl-correct-handling-of-extra_config-in-main_cpupoolcreate.patch
55a66a1e-make-rangeset_report_ranges-report-all-ranges.patch
55a77e4f-dmar-device-scope-mem-leak-fix.patch
55c1d83d-x86-gdt-Drop-write-only-xalloc-d-array.patch
55c3232b-x86-mm-Make-hap-shadow-teardown-preemptible.patch
55dc78e9-x86-amd_ucode-skip-updates-for-final-levels.patch
55df2f76-IOMMU-skip-domains-without-page-tables-when-dumping.patch
55e43fd8-x86-NUMA-fix-setup_node.patch
55e43ff8-x86-NUMA-don-t-account-hotplug-regions.patch
55e593f1-x86-NUMA-make-init_node_heap-respect-Xen-heap-limit.patch
55f2e438-x86-hvm-fix-saved-pmtimer-and-hpet-values.patch
55f9345b-x86-MSI-fail-if-no-hardware-support.patch
5604f2e6-vt-d-fix-IM-bit-mask-and-unmask-of-FECTL_REG.patch
560a4af9-x86-EPT-tighten-conditions-of-IOMMU-mapping-updates.patch
560a7c36-x86-p2m-pt-delay-freeing-of-intermediate-page-tables.patch
560a7c53-x86-p2m-pt-ignore-pt-share-flag-for-shadow-mode-guests.patch
560bd926-credit1-fix-tickling-when-it-happens-from-a-remote-pCPU.patch
560e6d34-x86-p2m-pt-tighten-conditions-of-IOMMU-mapping-updates.patch
561bbc8b-VT-d-don-t-suppress-invalidation-address-write-when-0.patch
561d20a0-x86-hide-MWAITX-from-PV-domains.patch
561e3283-x86-NUMA-fix-SRAT-table-processor-entry-handling.patch
563212c9-x86-PoD-Eager-sweep-for-zeroed-pages.patch
CVE-2015-4106-xsa131-9.patch CVE-2015-3259-xsa137.patch
CVE-2015-7311-xsa142.patch CVE-2015-7835-xsa148.patch
xsa139-qemuu.patch xsa140-qemuu-1.patch xsa140-qemuu-2.patch
xsa140-qemuu-3.patch xsa140-qemuu-4.patch xsa140-qemuu-5.patch
xsa140-qemuu-6.patch xsa140-qemuu-7.patch xsa140-qemut-1.patch
xsa140-qemut-2.patch xsa140-qemut-3.patch xsa140-qemut-4.patch
xsa140-qemut-5.patch xsa140-qemut-6.patch xsa140-qemut-7.patch
xsa151.patch xsa152.patch xsa153-libxl.patch
CVE-2015-5154-qemuu-check-array-bounds-before-writing-to-io_buffer.patch
CVE-2015-5154-qemuu-fix-START-STOP-UNIT-command-completion.patch
CVE-2015-5154-qemuu-clear-DRQ-after-handling-all-expected-accesses.patch
CVE-2015-5154-qemut-check-array-bounds-before-writing-to-io_buffer.patch
CVE-2015-5154-qemut-clear-DRQ-after-handling-all-expected-accesses.patch
CVE-2015-6815-qemuu-e1000-fix-infinite-loop.patch
CVE-2015-5239-qemuu-limit-client_cut_text-msg-payload-size.patch
CVE-2015-5239-qemut-limit-client_cut_text-msg-payload-size.patch"�- bsc#950704 - CVE-2015-7970 VUL-1: xen: x86: Long latency
populate-on-demand operation is not preemptible (XSA-150)
563212c9-x86-PoD-Eager-sweep-for-zeroed-pages.patch�- Upstream patches from Jan
5604f239-x86-PV-properly-populate-descriptor-tables.patch
561bbc8b-VT-d-don-t-suppress-invalidation-address-write-when-0.patch
561d2046-VT-d-use-proper-error-codes-in-iommu_enable_x2apic_IR.patch
561d20a0-x86-hide-MWAITX-from-PV-domains.patch
561e3283-x86-NUMA-fix-SRAT-table-processor-entry-handling.patch�- bsc#951845 - VUL-0: CVE-2015-7972: xen: x86: populate-on-demand
balloon size inaccuracy can crash guests (XSA-153)
xsa153-libxl.patch�- bsc#950703 - VUL-1: CVE-2015-7969: xen: leak of main per-domain
vcpu pointer array (DoS) (XSA-149)
xsa149.patch
- bsc#950705 - VUL-1: CVE-2015-7969: xen: x86: leak of per-domain
profiling-related vcpu pointer array (DoS) (XSA-151)
xsa151.patch
- bsc#950706 - VUL-0: CVE-2015-7971: xen: x86: some pmu and
profiling hypercalls log without rate limiting (XSA-152)
xsa152.patch
- Dropped
55dc7937-x86-IO-APIC-don-t-create-pIRQ-mapping-from-masked-RTE.patch
5604f239-x86-PV-properly-populate-descriptor-tables.patch�- bsc#932267 - VUL-1: CVE-2015-4037: qemu,kvm,xen: insecure
temporary file use in /net/slirp.c
CVE-2015-4037-qemuu-smb-config-dir-name.patch
CVE-2015-4037-qemut-smb-config-dir-name.patch
- bsc#877642 - VUL-0: CVE-2014-0222: qemu: qcow1: validate L2 table
size to avoid integer overflows
CVE-2014-0222-qemuu-qcow1-validate-l2-table-size.patch
CVE-2014-0222-qemut-qcow1-validate-l2-table-size.patch�- bsc#950367 - VUL-0: CVE-2015-7835: xen: x86: Uncontrolled
creation of large page mappings by PV guests (XSA-148)
CVE-2015-7835-xsa148.patch�- bsc#949138 - Setting vcpu affinity under Xen causes libvirtd
abort
54f4985f-libxl-fix-libvirtd-double-free.patch�- bsc#949046 - Increase %suse_version in SP1 to 1316
xen.spec
- Update README.SUSE detailing dom0 ballooning recommendations�- bsc#945167 - Running command ’ xl pci-assignable-add 03:10.1’
secondly show errors
55f7f9d2-libxl-slightly-refine-pci-assignable-add-remove-handling.patch
- Upstream patches from Jan
55f2e438-x86-hvm-fix-saved-pmtimer-and-hpet-values.patch
55f9345b-x86-MSI-fail-if-no-hardware-support.patch
5604f239-x86-PV-properly-populate-descriptor-tables.patch
5604f2e6-vt-d-fix-IM-bit-mask-and-unmask-of-FECTL_REG.patch
560a4af9-x86-EPT-tighten-conditions-of-IOMMU-mapping-updates.patch
560a7c36-x86-p2m-pt-delay-freeing-of-intermediate-page-tables.patch
560a7c53-x86-p2m-pt-ignore-pt-share-flag-for-shadow-mode-guests.patch
560bd926-credit1-fix-tickling-when-it-happens-from-a-remote-pCPU.patch
560e6d34-x86-p2m-pt-tighten-conditions-of-IOMMU-mapping-updates.patch�- bsc#941074 - VmError: Device 51728 (vbd) could not be connected.
Hotplug scripts not working.
hotplug-Linux-block-performance-fix.patch�- bsc#947165 - VUL-0: CVE-2015-7311: xen: libxl fails to honour
readonly flag on disks with qemu-xen (xsa-142)
CVE-2015-7311-xsa142.patch�- bsc#945165 - Xl pci-attach show error with kernel of SLES 12 sp1
pci-attach-fix.patch�- bsc#945164 - Xl destroy show error with kernel of SLES 12 sp1
5537a4d8-libxl-use-DEBUG-log-level-instead-of-INFO.patch�- Upstream patches from Jan
55dc78e9-x86-amd_ucode-skip-updates-for-final-levels.patch
55dc7937-x86-IO-APIC-don-t-create-pIRQ-mapping-from-masked-RTE.patch
55df2f76-IOMMU-skip-domains-without-page-tables-when-dumping.patch
55e43fd8-x86-NUMA-fix-setup_node.patch
55e43ff8-x86-NUMA-don-t-account-hotplug-regions.patch
55e593f1-x86-NUMA-make-init_node_heap-respect-Xen-heap-limit.patch
54c2553c-grant-table-use-uint16_t-consistently-for-offset-and-length.patch
54ca33bc-grant-table-refactor-grant-copy-to-reduce-duplicate-code.patch
54ca340e-grant-table-defer-releasing-pages-acquired-in-a-grant-copy.patch�- bsc#944463 - VUL-0: CVE-2015-5239: qemu-kvm: Integer overflow in
vnc_client_read() and protocol_client_msg()
CVE-2015-5239-qemuu-limit-client_cut_text-msg-payload-size.patch
CVE-2015-5239-qemut-limit-client_cut_text-msg-payload-size.patch
- bsc#944697 - VUL-1: CVE-2015-6815: qemu: net: e1000: infinite
loop issue
CVE-2015-6815-qemuu-e1000-fix-infinite-loop.patch
CVE-2015-6815-qemut-e1000-fix-infinite-loop.patch�- bnc#935634 - VUL-0: CVE-2015-3259: xen: XSA-137: xl command line
config handling stack overflow
55a62eb0-xl-correct-handling-of-extra_config-in-main_cpupoolcreate.patch�- bsc#907514 - Bus fatal error & sles12 sudden reboot has been
observed
- bsc#910258 - SLES12 Xen host crashes with FATAL NMI after
shutdown of guest with VT-d NIC
- bsc#918984 - Bus fatal error & sles11-SP4 sudden reboot has been
observed
- bsc#923967 - Partner-L3: Bus fatal error & sles11-SP3 sudden
reboot has been observed
552d293b-x86-vMSI-X-honor-all-mask-requests.patch
552d2966-x86-vMSI-X-add-valid-bits-for-read-acceleration.patch
5576f143-x86-adjust-PV-I-O-emulation-functions-types.patch
55795a52-x86-vMSI-X-support-qword-MMIO-access.patch
5583d9c5-x86-MSI-X-cleanup.patch
5583da09-x86-MSI-track-host-and-guest-masking-separately.patch
55b0a218-x86-PCI-CFG-write-intercept.patch
55b0a255-x86-MSI-X-maskall.patch
55b0a283-x86-MSI-X-teardown.patch
55b0a2ab-x86-MSI-X-enable.patch
55b0a2db-x86-MSI-track-guest-masking.patch
- Upstream patches from Jan
552d0f49-x86-traps-identify-the-vcpu-in-context-when-dumping-regs.patch
559bc633-x86-cpupool-clear-proper-cpu_valid-bit-on-CPU-teardown.patch
559bc64e-credit1-properly-deal-with-CPUs-not-in-any-pool.patch
559bc87f-x86-hvmloader-avoid-data-corruption-with-xenstore-rw.patch
55a66a1e-make-rangeset_report_ranges-report-all-ranges.patch
55a77e4f-dmar-device-scope-mem-leak-fix.patch
55c1d83d-x86-gdt-Drop-write-only-xalloc-d-array.patch
55c3232b-x86-mm-Make-hap-shadow-teardown-preemptible.patch
- Dropped for upstream version
x86-MSI-mask.patch
x86-MSI-pv-unmask.patch
x86-MSI-X-enable.patch
x86-MSI-X-maskall.patch
x86-MSI-X-teardown.patch
x86-pci_cfg_okay.patch
x86-PCI-CFG-write-intercept.patch�- bsc#939712 - VUL-0: XSA-140: QEMU leak of uninitialized heap
memory in rtl8139 device model
xsa140-qemuu-1.patch
xsa140-qemuu-2.patch
xsa140-qemuu-3.patch
xsa140-qemuu-4.patch
xsa140-qemuu-5.patch
xsa140-qemuu-6.patch
xsa140-qemuu-7.patch
xsa140-qemut-1.patch
xsa140-qemut-2.patch
xsa140-qemut-3.patch
xsa140-qemut-4.patch
xsa140-qemut-5.patch
xsa140-qemut-6.patch
xsa140-qemut-7.patch
- bsc#939709 - VUL-0: XSA-139: xen: Use after free in QEMU/Xen
block unplug protocol
xsa139-qemuu.patch�- bsc#937371 - xen vm's running after reboot
xendomains-libvirtd-conflict.patch�- bsc#938344 - VUL-0: CVE-2015-5154: qemu,kvm,xen: host code
execution via IDE subsystem CD-ROM
CVE-2015-5154-qemuu-check-array-bounds-before-writing-to-io_buffer.patch
CVE-2015-5154-qemut-check-array-bounds-before-writing-to-io_buffer.patch
CVE-2015-5154-qemuu-fix-START-STOP-UNIT-command-completion.patch
CVE-2015-5154-qemut-fix-START-STOP-UNIT-command-completion.patch
CVE-2015-5154-qemuu-clear-DRQ-after-handling-all-expected-accesses.patch
CVE-2015-5154-qemut-clear-DRQ-after-handling-all-expected-accesses.patch�- Remove xendomains.service from systemd preset file because it
conflicts with libvirt-guests.service (bnc#937371)
Its up to the admin to run systemctl enable xendomains.service�- bnc#935634 - VUL-0: CVE-2015-3259: xen: XSA-137: xl command line
config handling stack overflow
CVE-2015-3259-xsa137.patch
- Upstream patches from Jan
558bfaa0-x86-traps-avoid-using-current-too-early.patch
5592a116-nested-EPT-fix-the-handling-of-nested-EPT.patch
559b9dd6-x86-p2m-ept-don-t-unmap-in-use-EPT-pagetable.patch
559bdde5-pull-in-latest-linux-earlycpio.patch
- Upstream patches from Jan pending review
552d0fd2-x86-hvm-don-t-include-asm-spinlock-h.patch
552d0fe8-x86-mtrr-include-asm-atomic.h.patch
552d293b-x86-vMSI-X-honor-all-mask-requests.patch
552d2966-x86-vMSI-X-add-valid-bits-for-read-acceleration.patch
554c7aee-x86-provide-arch_fetch_and_add.patch
554c7b00-arm-provide-arch_fetch_and_add.patch
55534b0a-x86-provide-add_sized.patch
55534b25-arm-provide-add_sized.patch
5555a4f8-use-ticket-locks-for-spin-locks.patch
5555a5b9-x86-arm-remove-asm-spinlock-h.patch
5555a8ec-introduce-non-contiguous-allocation.patch
55795a52-x86-vMSI-X-support-qword-MMIO-access.patch
557eb55f-gnttab-per-active-entry-locking.patch
557eb5b6-gnttab-introduce-maptrack-lock.patch
557eb620-gnttab-make-the-grant-table-lock-a-read-write-lock.patch
557ffab8-evtchn-factor-out-freeing-an-event-channel.patch
5582bf43-evtchn-simplify-port_is_valid.patch
5582bf81-evtchn-remove-the-locking-when-unmasking-an-event-channel.patch
5583d9c5-x86-MSI-X-cleanup.patch
5583da09-x86-MSI-track-host-and-guest-masking-separately.patch
5583da64-gnttab-use-per-VCPU-maptrack-free-lists.patch
5583da8c-gnttab-steal-maptrack-entries-from-other-VCPUs.patch
5587d711-evtchn-clear-xen_consumer-when-clearing-state.patch
5587d779-evtchn-defer-freeing-struct-evtchn-s-until-evtchn_destroy_final.patch
5587d7b7-evtchn-use-a-per-event-channel-lock-for-sending-events.patch
5587d7e2-evtchn-pad-struct-evtchn-to-64-bytes.patch
x86-MSI-pv-unmask.patch
x86-pci_cfg_okay.patch
x86-PCI-CFG-write-intercept.patch
x86-MSI-X-maskall.patch
x86-MSI-X-teardown.patch
x86-MSI-X-enable.patch
x86-MSI-mask.patch�- Adjust more places to use br0 instead of xenbr0�- bnc#936516 - xen fails to build with kernel update(4.1.0 from
stable)
556d973f-unmodified-drivers-tolerate-IRQF_DISABLED-being-undefined.patch�- Update to Xen Version 4.5.1 FCS (fate#315675)
xen-4.5.1-testing-src.tar.bz2
- Dropped patches now contained in tarball
556c2cf2-x86-don-t-crash-mapping-a-page-using-EFI-rt-page-tables.patch
556d9718-efi-fix-allocation-problems-if-ExitBootServices-fails.patch
556eabf7-x86-apic-Disable-the-LAPIC-later-in-smp_send_stop.patch
556eac15-x86-crash-don-t-use-set_fixmap-in-the-crash-path.patch
55780aaa-efi-avoid-calling-boot-services-after-ExitBootServices.patch
55780aff-x86-EFI-fix-EFI_MEMORY_WP-handling.patch
55780b43-EFI-early-add-mapbs-to-map-EfiBootServices-Code-Data.patch
55780b97-EFI-support-default-attributes-to-map-Runtime-service-areas.patch
5513b458-allow-reboot-overrides-when-running-under-EFI.patch
5513b4d1-dont-apply-reboot-quirks-if-reboot-set-by-user.patch
5576f178-kexec-add-more-pages-to-v1-environment.patch
5535f633-dont-leak-hypervisor-stack-to-toolstacks.patch
CVE-2015-3456-xsa133-qemuu.patch
CVE-2015-3456-xsa133-qemut.patch
qemu-MSI-X-enable-maskall.patch
qemu-MSI-X-latch-writes.patch
x86-MSI-X-guest-mask.patch�- Replace 5124efbe-add-qxl-support.patch with the variant that
finally made it upstream, 554cc211-libxl-add-qxl.patch�- bsc#931627 - VUL-0: CVE-2015-4105: XSA-130: xen: Guest triggerable
qemu MSI-X pass-through error messages
qemu-MSI-X-latch-writes.patch
- bsc#907514 - Bus fatal error & sles12 sudden reboot has been observed
- bsc#910258 - SLES12 Xen host crashes with FATAL NMI after shutdown
of guest with VT-d NIC
- bsc#918984 - Bus fatal error & sles11-SP4 sudden reboot has been
observed
- bsc#923967 - Partner-L3: Bus fatal error & sles11-SP3 sudden reboot
has been observed
x86-MSI-X-teardown.patch
x86-MSI-X-enable.patch
x86-MSI-X-guest-mask.patch
x86-MSI-X-maskall.patch
qemu-MSI-X-enable-maskall.patch
- Upstream patches from Jan
55780aaa-efi-avoid-calling-boot-services-after-ExitBootServices.patch
55780aff-x86-EFI-fix-EFI_MEMORY_WP-handling.patch
55780b43-EFI-early-add-mapbs-to-map-EfiBootServices-Code-Data.patch
55780b97-EFI-support-default-attributes-to-map-Runtime-service-areas.patch
55780be1-x86-EFI-adjust-EFI_MEMORY_WP-handling-for-spec-version-2.5.patch
55103616-vm-assist-prepare-for-discontiguous-used-bit-numbers.patch
5548e95d-x86-allow-to-suppress-M2P-user-mode-exposure.patch
- Dropped the following patches now contained in the tarball
xen-no-array-bounds.patch CVE-2015-4103-xsa128.patch
CVE-2015-4104-xsa129.patch CVE-2015-4105-xsa130.patch
CVE-2015-4106-xsa131-1.patch CVE-2015-4106-xsa131-2.patch
CVE-2015-4106-xsa131-3.patch CVE-2015-4106-xsa131-4.patch
CVE-2015-4106-xsa131-5.patch CVE-2015-4106-xsa131-6.patch
CVE-2015-4106-xsa131-7.patch CVE-2015-4106-xsa131-8.patch�- Update to Xen 4.5.1 RC2
- bsc#931628 - VUL-0: CVE-2015-4106: XSA-131: xen: Unmediated PCI
register access in qemu
CVE-2015-4106-xsa131-1.patch
CVE-2015-4106-xsa131-2.patch
CVE-2015-4106-xsa131-3.patch
CVE-2015-4106-xsa131-4.patch
CVE-2015-4106-xsa131-5.patch
CVE-2015-4106-xsa131-6.patch
CVE-2015-4106-xsa131-7.patch
CVE-2015-4106-xsa131-8.patch
CVE-2015-4106-xsa131-9.patch
- bsc#931627 - VUL-0: CVE-2015-4105: XSA-130: xen: Guest triggerable
qemu MSI-X pass-through error messages
CVE-2015-4105-xsa130.patch
- bsc#931626 - VUL-0: CVE-2015-4104: XSA-129: xen: PCI MSI mask
bits inadvertently exposed to guests
CVE-2015-4104-xsa129.patch
- bsc#931625 - VUL-0: CVE-2015-4103: XSA-128: xen: Potential
unintended writes to host MSI message data field via qemu
CVE-2015-4103-xsa128.patch
- Upstream patches from Jan
5548e903-domctl-don-t-truncate-XEN_DOMCTL_max_mem-requests.patch
556c2cf2-x86-don-t-crash-mapping-a-page-using-EFI-rt-page-tables.patch
556d9718-efi-fix-allocation-problems-if-ExitBootServices-fails.patch
556d973f-unmodified-drivers-tolerate-IRQF_DISABLED-being-undefined.patch
556eabf7-x86-apic-Disable-the-LAPIC-later-in-smp_send_stop.patch
556eac15-x86-crash-don-t-use-set_fixmap-in-the-crash-path.patch�- Add DefaultDependencies=no to xen-dom0-modules.service because
it has to run before proc-xen.mount�- Update to Xen 4.5.1 RC1�- Update blktap-no-uninit.patch to work with gcc-4.5�- bsc#927967 - VUL-0: CVE-2015-3340: xen: Information leak through
XEN_DOMCTL_gettscinfo (XSA-132)
5535f633-dont-leak-hypervisor-stack-to-toolstacks.patch�- bnc#929339 - VUL-0: CVE-2015-3456: qemu kvm xen: VENOM qemu
floppy driver host code execution
CVE-2015-3456-xsa133-qemuu.patch
CVE-2015-3456-xsa133-qemut.patch�- bsc#928783 - Reboot failure; Request backport of upstream Xen
patch to 4.5.0, or update pkgs to 4.5.1
5513b458-allow-reboot-overrides-when-running-under-EFI.patch
5513b4d1-dont-apply-reboot-quirks-if-reboot-set-by-user.patch�- bnc#927750 - Avoid errors reported by system-modules-load.service�- Add xen-no-array-bounds.patch and blktap-no-uninit.patch to selectively
turn errors back to warnings to fix build with GCC 5.
- Amend xen.stubdom.newlib.patch to pull in declaration of strcmp to
avoid implicit-fortify-decl rpmlint error.
- Fix quoting of __SMBIOS_DATE__ in xen.build-compare.smbiosdate.patch.�- xentop: Fix memory leak on read failure
551ac326-xentop-add-support-for-qdisk.patch�- Dropped xentop-add-support-for-qdisk.patch in favor of upstream
version
551ac326-xentop-add-support-for-qdisk.patch�- Enable spice support in qemu for x86_64
5124efbe-add-qxl-support.patch
qemu-xen-enable-spice-support.patch�- Add xen-c99-fix.patch to remove pointless inline specifier on
function declarations which break build with a C99 compiler which
GCC 5 is by default. (bsc#921994)
- Add ipxe-no-error-logical-not-parentheses.patch to supply
- Wno-logical-not-parentheses to the ipxe build to fix
breakage with GCC 5. (bsc#921994)�- bnc#921842 - Xentop doesn't display disk statistics for VMs using
qdisks
xentop-add-support-for-qdisk.patch�- Disable the PIE enablement done for Factory, as the XEN code
is not buildable with PIE and it does not make much sense
to build the hypervisor code with it.�- bnc#918169 - XEN fixes required to work with Kernel 3.19.0
xen.spec�- Package xen.changes because its referenced in xen.spec�- Update seabios to rel-1.7.5 which is the correct version for
Xen 4.5�- Update to Xen 4.5.0 FCS�- Include systemd presets in 13.2 and older�- bnc#897352 - Enable xencommons/xendomains only during fresh install
- disable restart on upgrade because the toolstack is not restartable�- adjust seabios, vgabios, stubdom and hvmloader build to reduce
build-compare noise
xen.build-compare.mini-os.patch
xen.build-compare.smbiosdate.patch
xen.build-compare.ipxe.patch
xen.build-compare.vgabios.patch
xen.build-compare.seabios.patch
xen.build-compare.man.patch�- Update to Xen 4.5.0 RC4�- Remove xend specific if-up scripts
Recording bridge slaves is a generic task which should be handled
by generic network code�- Use systemd features from upstream
requires updated systemd-presets-branding package�- Update to Xen 4.5.0 RC3�- Set GIT, WGET and FTP to /bin/false�- Use new configure features instead of make variables
xen.stubdom.newlib.patch�- adjust docs and xen build to reduce build-compare noise
xen.build-compare.doc_html.patch
xen.build-compare.xen_compile_h.patch�- Drop trailing B_CNT from XEN_EXTRAVERSION to reduce build-compare noise�- Update to Xen 4.5.0 RC2�- Update to Xen 4.5.0 RC1
xen-4.5.0-testing-src.tar.bz2
- Remove all patches now contained in the new tarball
xen-4.4.1-testing-src.tar.bz2
5315a3bb-x86-don-t-propagate-acpi_skip_timer_override-do-Dom0.patch
5315a43a-x86-ACPI-also-print-address-space-for-PM1x-fields.patch
53299d8f-xenconsole-reset-tty-on-failure.patch
53299d8f-xenconsole-tolerate-tty-errors.patch
5346a7a0-x86-AMD-support-further-feature-masking-MSRs.patch
53563ea4-x86-MSI-drop-workaround-for-insecure-Dom0-kernels.patch
537c9c77-libxc-check-return-values-on-mmap-and-madvise.patch
537cd0b0-hvmloader-also-cover-PCI-MMIO-ranges-above-4G-with-UC-MTRR-ranges.patch
537cd0cc-hvmloader-PA-range-0xfc000000-0xffffffff-should-be-UC.patch
539ebe62-x86-EFI-improve-boot-time-diagnostics.patch
53aac342-x86-HVM-consolidate-and-sanitize-CR4-guest-reserved-bit-determination.patch
53c9151b-Fix-xl-vncviewer-accesses-port-0-by-any-invalid-domid.patch
53d124e7-fix-list_domain_details-check-config-data-length-0.patch
53dba447-x86-ACPI-allow-CMOS-RTC-use-even-when-ACPI-says-there-is-none.patch
53df727b-x86-HVM-extend-LAPIC-shortcuts-around-P2M-lookups.patch
53e8be5f-x86-vHPET-use-rwlock-instead-of-simple-one.patch
53f737b1-VMX-fix-DebugCtl-MSR-clearing.patch
53f7386d-x86-irq-process-softirqs-in-irq-keyhandlers.patch
53fcebab-xen-pass-kernel-initrd-to-qemu.patch
53ff3659-x86-consolidate-boolean-inputs-in-hvm-and-p2m.patch
53ff36ae-x86-hvm-treat-non-insn-fetch-NPF-also-as-read-violations.patch
53ff36d5-x86-mem_event-deliver-gla-fault-EPT-violation-information.patch
53ff3716-x86-ats-Disable-Address-Translation-Services-by-default.patch
53ff3899-x86-NMI-allow-processing-unknown-NMIs-with-watchdog.patch
54005472-EPT-utilize-GLA-GPA-translation-known-for-certain-faults.patch
540effe6-evtchn-check-control-block-exists-when-using-FIFO-based-events.patch
540f2624-x86-idle-add-barriers-to-CLFLUSH-workaround.patch
541825dc-VMX-don-t-leave-x2APIC-MSR-intercepts-disabled.patch
541ad385-x86-suppress-event-check-IPI-to-MWAITing-CPUs.patch
541ad3ca-x86-HVM-batch-vCPU-wakeups.patch
541ad81a-VT-d-suppress-UR-signaling-for-further-desktop-chipsets.patch
54216833-x86-shadow-fix-race-when-sampling-dirty-vram-state.patch
54216882-x86-emulate-check-cpl-for-all-privileged-instructions.patch
542168ae-x86emul-only-emulate-swint-injection-for-real-mode.patch
54228a37-x86-EFI-fix-freeing-of-uninitialized-pointer.patch
5423e61c-x86emul-fix-SYSCALL-SYSENTER-SYSEXIT-emulation.patch
5424057f-x86-HVM-fix-miscellaneous-aspects-of-x2APIC-emulation.patch
542405b4-x86-HVM-fix-ID-handling-of-x2APIC-emulation.patch
542bf997-x86-HVM-properly-bound-x2APIC-MSR-range.patch
54325cc0-x86-MSI-fix-MSI-X-case-of-freeing-IRQ.patch
54325d2f-x86-restore-reserving-of-IO-APIC-pages-in-XENMEM_machine_memory_map-output.patch
54325d95-don-t-allow-Dom0-access-to-IOMMUs-MMIO-pages.patch
54325ecc-AMD-guest_iommu-properly-disable-guest-iommu-support.patch
54325f3c-x86-paging-make-log-dirty-operations-preemptible.patch
54379e6d-x86-vlapic-don-t-silently-accept-bad-vectors.patch
CVE-2013-4540-qemu.patch qemu-support-xen-hvm-direct-kernel-boot.patch
qemu-xen-upstream-blkif-discard.patch change-vnc-passwd.patch
libxc-pass-errno-to-callers-of-xc_domain_save.patch
libxl.honor-more-top-level-vfb-options.patch
libxl.add-option-for-discard-support-to-xl-disk-conf.patch
libxl.introduce-an-option-to-disable-the-non-O_DIRECT-workaround.patch
x86-dom-print.patch x86-extra-trap-info.patch tmp_build.patch
xl-check-for-libvirt-managed-domain.patch disable-wget-check.patch
- Xend/xm is no longer supported and is not part of the upstream code. Remove
all xend/xm specific patches, configs, and scripts
xen-xmexample.patch bridge-opensuse.patch xmexample.disks xmclone.sh
init.xend xend-relocation.sh xend.service xend-relocation-server.fw
domUloader.py xmexample.domUloader xmexample.disks
bridge-vlan.patch bridge-bonding.patch bridge-record-creation.patch
network-nat-open-SuSEfirewall2-FORWARD.patch
xend-set-migration-constraints-from-cmdline.patch
xen.migrate.tools-xend_move_assert_to_exception_block.patch
xend-pvscsi-recognize-also-SCSI-CDROM-devices.patch
xend-config.patch xend-max-free-mem.patch xend-hvm-default-pae.patch
xend-vif-route-ifup.patch xend-xenapi-console-protocol.patch xend-core-dump-loc.patch
xend-xen-api-auth.patch xend-checkpoint-rename.patch xend-xm-save-check-file.patch
xend-xm-create-xflag.patch xend-domu-usb-controller.patch xend-devid-or-name.patch
xend-migration-domname-fix.patch xend-del_usb_xend_entry.patch xend-xen-domUloader.patch
xend-multi-xvdp.patch xend-check_device_status.patch xend-change_home_server.patch
xend-minimum-restart-time.patch xend-disable-internal-logrotate.patch xend-config-enable-dump-comment.patch
xend-tools-watchdog-support.patch xend-console-port-restore.patch xend-vcpu-affinity-fix.patch
xend-migration-bridge-check.patch xend-managed-pci-device.patch xend-hvm-firmware-passthrough.patch
xend-cpuinfo-model-name.patch xend-xm-reboot-fix.patch xend-domain-lock.patch
xend-domain-lock-sfex.patch xend-32on64-extra-mem.patch xend-hv_extid_compatibility.patch
xend-xenpaging.autostart.patch xend-remove-xm-deprecation-warning.patch libxen_permissive.patch
tmp-initscript-modprobe.patch init.xendomains xendomains.service
xen-watchdog.service xen-updown.sh�- bnc#901317 - L3: increase limit domUloader to 32MB
domUloader.py�- bnc#898772 - SLES 12 RC3 - XEN Host crashes when assigning non-VF
device (SR-IOV) to guest
54325cc0-x86-MSI-fix-MSI-X-case-of-freeing-IRQ.patch
- bnc#882089 - Windows 2012 R2 fails to boot up with greater than
60 vcpus
54325ecc-AMD-guest_iommu-properly-disable-guest-iommu-support.patch
- bnc#826717 - VUL-0: CVE-2013-3495: XSA-59: xen: Intel VT-d
Interrupt Remapping engines can be evaded by native NMI interrupts
541ad81a-VT-d-suppress-UR-signaling-for-further-desktop-chipsets.patch
- Upstream patches from Jan
540effe6-evtchn-check-control-block-exists-when-using-FIFO-based-events.patch (Replaces xsa107.patch)
54216833-x86-shadow-fix-race-when-sampling-dirty-vram-state.patch (Replaces xsa104.patch)
54216882-x86-emulate-check-cpl-for-all-privileged-instructions.patch (Replaces xsa105.patch)
542168ae-x86emul-only-emulate-swint-injection-for-real-mode.patch (Replaces xsa106.patch)
54228a37-x86-EFI-fix-freeing-of-uninitialized-pointer.patch
5423e61c-x86emul-fix-SYSCALL-SYSENTER-SYSEXIT-emulation.patch
5424057f-x86-HVM-fix-miscellaneous-aspects-of-x2APIC-emulation.patch
542405b4-x86-HVM-fix-ID-handling-of-x2APIC-emulation.patch
542bf997-x86-HVM-properly-bound-x2APIC-MSR-range.patch (Replaces xsa108.patch)
54325d2f-x86-restore-reserving-of-IO-APIC-pages-in-XENMEM_machine_memory_map-output.patch
54325d95-don-t-allow-Dom0-access-to-IOMMUs-MMIO-pages.patch
54325f3c-x86-paging-make-log-dirty-operations-preemptible.patch (Replaces xsa97.patch)
54379e6d-x86-vlapic-don-t-silently-accept-bad-vectors.patch�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������� ���
�����������
��������������������������������������������������������������������������� ���!���"���#���$���%���&���'���(���)���*���+���,���-���.���/���0���1���2���3���4���5���6���7���8���9���:���;���<���=���>���?���@���A���B���C���D���E���F���G���H���3���A���K���D���M����������������������������������������������������������������������������������������4.13.2_02-lp152.2.15.1�4.13.2_02-lp152.2.15.1������������������������������������������������������������������������������������������������������������������������������������������������������ ��� ��� ���
���
���
���
���
��� ��� ��� ��� ��������������������������������������������������������������������������������������������������������������������xen�html�hypercall�arm�index.html�index.html�x86_32�index.html�x86_64�index.html�index.html�man�index.html�xen-pci-device-reservations.7.html�xen-pv-channel.7.html�xen-tscmode.7.html�xen-vtpm.7.html�xen-vtpmmgr.7.html�xenstore-chmod.1.html�xenstore-ls.1.html�xenstore-read.1.html�xenstore-write.1.html�xenstore.1.html�xentop.1.html�xentrace.8.html�xentrace_format.1.html�xl-disk-configuration.5.html�xl-network-configuration.5.html�xl-numa-placement.7.html�xl.1.html�xl.cfg.5.html�xl.conf.5.html�xlcpupool.cfg.5.html�misc�amd-ucode-container.txt�arm�big.LITTLE.txt�booting.txt�device-tree�acpi.txt�booting.txt�guest.txt�index.html�passthrough.txt�early-printk.txt�index.html�passthrough.txt�silicon-errata.txt�block-scripts.txt�console.txt�crashdb.txt�distro_mapping.txt�dump-core-format.txt�grant-tables.txt�index.html�kconfig-language.txt�kconfig.txt�kexec_and_kdump.txt�libxl_memory.txt�printk-formats.txt�qemu-backends.txt�stubdom.txt�vtd-pi.txt�vtd.txt�vtpm-platforms.txt�xen-error-handling.txt�xenmon.txt�xenpaging.txt�xenstore-ring.txt�xenstore.txt�xsm-flask.txt�misc�crashdb.txt�vtpm-platforms.txt�xen-command-line.pandoc�xenpaging.txt�xenstore-paths.pandoc�/usr/share/doc/packages/�/usr/share/doc/packages/xen/�/usr/share/doc/packages/xen/html/�/usr/share/doc/packages/xen/html/hypercall/�/usr/share/doc/packages/xen/html/hypercall/arm/�/usr/share/doc/packages/xen/html/hypercall/x86_32/�/usr/share/doc/packages/xen/html/hypercall/x86_64/�/usr/share/doc/packages/xen/html/man/�/usr/share/doc/packages/xen/html/misc/�/usr/share/doc/packages/xen/html/misc/arm/�/usr/share/doc/packages/xen/html/misc/arm/device-tree/�/usr/share/doc/packages/xen/misc/�-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -g�obs://build.opensuse.org/openSUSE:Maintenance:15094/openSUSE_Leap_15.2_Update/b2799d0eb93862ce580f266476b2cc3f-xen.openSUSE_Leap_15.2_Update�cpio�xz�5�x86_64-suse-linux����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������directory�HTML document, ASCII text�XML 1.0 document, ASCII text, with very long lines�XML 1.0 document, ASCII text�C source, ASCII text�ASCII text�ASCII text, with very long lines�Algol 68 source, ASCII text��������utf-8�4c1ba586f07de033f7d67693a67214b8be8bee4ad3f332c6d7d983e8679270d8���������?����p����7zXZ��
���!�����t/)]��
�cr�t:bLL���U�
3犓dT+�EȌD�x55s"T�~T8�?F�:-?嬇7hI��(�&~}-�Y-&Y=$'�cxAAU��Ln�]Eݻ㥛�kC�#�+�>.5�i�6|�R�}h�o��啮�E�i,퐋n{mq.if'��s`�_KA'v�V} G7�I9PL
L6?8j[Y\:�ZA~i��!�Q3�fsҢ~,m�[)�u�bHF=KcW�A:5r0sZpJqoHԇOS�c}6dSs!6>�퓟`^h[XE&��YKQ��а2T+�6^�`](�B�kH�dqJ"S|�б鲨��5R�t�f%�w-���|c�@DDRQZ#U^
|;I}w�V38�V�uw�<�w�0��f�Ѫ�Z�cOt0HLy#F`nJ 1{�>u~g\^t)�E&K�-TZ*�wR7>�A��hr9�ȲO*=Ljfmrttb4L�b��
�VGÏ[7o\�e$ZŲ,��4|yp��hOQ`o�"F~.U���[%0V��Y,=a�,t*�kNEU#hǜk[k^3SU$D:�.�P(̟sUrH
gO`
⃢Ӥ= Յ�w*op�9]��'`.a]L�:�?oӝ���'
q�]��/O�w R��m 9Nq(��i!;�O`l6S�es�-��Tfb�)v�o
,t�ޜ��ٔ<{O,sU:�>}/ºt(�
ݼȾր{zŖ]-Cdv}i?yC_@agIꃵ�<�-IL}�I6⨀ϰcj~kUlT? j1�ퟋd20&29d,ZSX�==[�ȣ�r�PF��e�[�Ă��0"�+[xy2ݫ7��6�1H8 �
,7w��HWStU��Pa|��vqmC+G(F3'=\'N>?4xYVxmĬ�XN.PS'm$��R{sBՃ�ϼܓv��Oc0P?aNFM'?cM`�l
�!m�]�EGoS$ ?/0'9w�+8�iy
p|�L8*
@xF�~�4E%>QSloI,�
Lg&�=`*�r);cv����<~h`m�����jEҷ+HGp8I˝�x(Sw6�p@?f3yN9gH �jO 'Je�*TU}�rԥ]^�}2�Ӆ�Рs�ZJ]-N�Af8Bhw545?I8Rmi}%-+
h9tc_ �56i.Xp|
OTS.V.PW�lmb ʹ$(�^�'`0Bm�ubM\'G.2��ݗs�T/I> V<{41.}�z"O{uâ>�kE l�Iɥ�|"1T,LS,_?.
oȼ@K�3�BCun;ZU�X3�lӭLZʿGY�+�{�
I�8cB�uz.��0j9꩖_�ﶿ|G{
Y��z�"���=��5ʶ)��UPt��5���۹M6=j嘁p(ƇGbM
�3֠~0�ڠ6,,��kK7<�`|��"ǣsvzLj5u�jvbVKᶏo#{dHm3pxa�9�D�ŃV�����lA7�,K �_ӟ^td;��4�/>��/A�tT�T�8It¤+0CՎdV�vPM9a.m]�\I{_�HAj�߬<_59kmxy�-Ύ�"<�î]Fgi$*$\'�+H*4�o��d=1gIԹG$�E�ci1)>�b�v��W{%"�P��ed*6?_�H�E��UO!��K1feh�ٝ�i4�`�fRd�x�|7H
�M�Rn=W@�Y�%�=�@�IN~�j&t�)�mޛ[R-�1*_%o_.�0�9mf;kEBk
u�D;[�
�L끊�[N(19IzӷSi4:#Qyͬ<�*C~�V�K;�-1s}ޯD�v8��a>N'K{>���WpSمs
P0J�Wܕ]S7q�¬�#&1ꨀ �ň
LAnp
s$9�Zå6z��
34�ZbJ6m"��4Lbk;,a��6�r6Kq�`3MB�-pK�"X0H$���>�M!�#�KžȫsZ
�%VZ\Vymw~ӂ`;02cVS7
Ӭ5!p]��[�+ԓ{
5{��u!ˑŜg
y��x3�b@�\�h1g?��g��abQX�s{I"�ޤ!Ü�Er8 G5n'�QB sz�;"iLI\Kه3ʵBf
w�9]ho+UTC���- �H�$8L�Q* g�f[b�$o0'W�y�T'-n� w�L!!�J%.^�L@Hyg#h�,#Yfp�H0��kQRݩ*�TK^U�eP�?W�B�z,i��5j\���AE9A$"�cL���o1�$�kld�kΉ_ wJz[Jx(E�e,p�LSF�00}9O�H�Ea=�ةooS
Dο�
�)��jC�Nʀ52aTEG+��}>fֳb�wMXt;�OʥPgZSl:w��t6/�@;��g1�U0V�X^q�~�ޒ|�]32%?ʊs�{OlC�!97t�iQ�� �3]|Bcz} �a
vI�Dͫ��f䂙U5���h8i1>(o��=�ߖ|@w?ۏVV"n:�Vs���e܂ИE1
+�vd�흭97�+}HuRDHp6�Xr#F�-�m+4hd�+&K{�..ZՇ�m�G(2(!j(Rt�9Y盔h=D!@pYd��Ʉzfy�2WDy2�(�1ZF�O��Bm0m|C뛮]psq�(T/� �-ΡuȪہ�
>��o{Ic{_X{tr3E&ټ�jH=)��ykw?x�B4a
$4+mv&Vd=as7ʛ4V-xݐ�TF�UD`\��(J�r>NQU?ο�!B5%fylf^pTY�P%G4*
ޖ+'i\Jt*C�r� ]&t�Tr�2Em�lz9W�QS�+IO�P@<.q~m.�O\�(�=#O\.�=zzQy�0oQ�@3#6�9�R~9~iPH>�qQ�2T�2֓=SV z/fW$�3;U/2Xyro@��Mk!D��CglB�dyi�F;Оӧ�
�[�v��;�m\>�fAAb|O�uJdb��iS)Bԝ�8r׃4WGY7,�zj]w�%\Qb\�HjiZEQR[Ʃ^ߖO�
@�Ԃfϟ�k{0l-$S�o`�I�>W�y
�0ʓa'wFPnH $
�u�i-!&�x[Q}�]b1h?��A�^�4[~XN�KDNKO~vJiWK&H66-I"fOЧ�?lp'1n^ޤ�{'۫g4лB=oظ�\e�kG\t
țL<(``mb,l2k-l>.w\ځCѿЍ�G{��ouJJ|lҔe.d/:�g�xֻ�v/Iyrܺh�_MIn,bSz&S蝂p}Ti
S<@3U/V
s[%��L�cY%|����27EbO eg"�jJ!C'�t`:�l}K8")6d^-k2K|C](�5m?v gѪ_T20ujRK|6�-$
&"TU�chp�eБW�P_[Hӻ�'1Q�2䰧In_ +*�N)�9J[�N2M�qZ�;e+Ws<Ę?��3,iH�#7�uHi*!k(Fp�zTq|�SKWs�ت�ڭwc.8n0xuU�� *t�~4Qi'�X� V
Vč���2MϲvÑhPk�*|9SO=ؒCse�I�d�s1gSK�{k'|B!3/q|Zߧ+(0`�m�QPAfᙑJ���= f6TW0QjG�Y�mPݚ;(��P��ӣ҂y3nN:�*�(5�$FpNZh/nD]p�>vqR�\l~v~5hhl�&G��Tm/�FؓbqܭǛ+5�Þ(.9fŘ~ĝ�;tĆ�:2U�{Zs#d�2h%�?ϡ_�u�(� BhG[&&1E5SbvW@S5e!�W)Af��ѮgXNRhR V~�x͜i5M�[w@?�\G�fD�d�3~�7�
cNODXJt�&r�s5�&dB䖃ֹ^O[k](2���%�NfûW�ՓYO'*3m,{Ahń{MjyN*zAНyMVQ&R}EkF㍡>N�]-R��Խ~"}:sT,+f�EiͯN�}ܘ�:,�PL�Ld}�q)�ӑx@?7۵f�oj'�B&48\WQy a06wqjȽc2�+'
�ԘJqZô)7S�Y5b4ba�eFY�
VHMN^\p;�#-)��D�U�=)DrB�2ZHm�Į-�cB�n�Y�`$w�w�8�c\��X#B_2bu4:UiE,�I%FZI'��xfO�2L%u%F�SGu�.tf�<]b'^@o�v3`0�R��=�dz1(�� e��C ��/RkF-22!g\MbhN0��%y ?x�x=~[y��)
��\$/D&czϼߓq=J�&de[���ho;792}l�hR<*�o���Ju|bBխdm1Fʢ>f�EJH}X5Yt!m9Q]Va(��_t{4 �9�jLĢ:kT
G>835R'�rH̢Tzwkxp{IۿFS�֎�l,ˑ6�6`5Y$BxxN-A?eGӃPA��7FÃF�d�|F^�Q.:\m-W-ȅ�Dӱ^8{+9yXZ�]�u�3C �K8#2�o�`FǨw�4V�U�)8a4*O�|�:�,�(c}yͮ���ճ%�ь ""E:�oM8�w�v#4LSǰ`Ux^�xxWC3}>�
�D4�صRZc�1�F�rs?Vg�qVAۭ`?Y�vW̛~OHd'
>��=.�;�.~ |D3/7eg?嘏rq]XҒswN뵀:�g�a�-#�1UIZ&}XfL!W"�i6DF,bϛŭ;�2N��oVu��7S9�ݮ�6ULۥ�Td2�&&*b�)���?2�Qrb8@ؗ>�Xo^w�_qoW����H�&(lJ�K~BK@e�\)q˥� *;f��2NN�L흕>|gߤUóJ&ߨ��
�0xт]�F��lFvs4IDZ�~~.?�'̣7Gb�4]K�عQ<>�#xMkpX~'^ݥ��Q}81{{}Áci�EӀx�{y�Բ���TV>ŌEy,��A傂#
��h$Cv$@~{,߸խ/fw`Ly'6��$b
1S!m�9�UՕ�%%P:�.�7Ӕp@_ZM;h[h>ptN{a�%/:�rB8tMlo0.qE2t.�kZau+
40��RtpE6}.�Q�-�U��y]XJ�.�/�)*8%�5��ډ� ,fJ4Ѳ�jo(�E8DL
�bD.<&d-ŔվNI�sޒxv��&Wg�-Z�!E@�~+2&أƆ�
��I��lcMuAc(*]j>��[zXZ��*C}bAKo��C�pK}N�����T
v��BޔQfco�zk�^8fQj����=>ng�g;H%f[fjmY�F�Pa3�gHŻ+97�_�Lf0X�F\L"+g.r�P�R)b�r -�p\Z K<�"*V2�E'B(7`��ߊ!F#�:]К>ͻp�"ł��Qn��6 uݡ�+_.vn�>(V|p�nɿ#oá�]z3�^"et|"�
˶(7u��f� e,WD~R�{�+Sc=zymٿ8ù<;b�ڴb
L*d���O�Wg�ZzZh[+Mc��m\KHrǺ�+լZ; y8F!Bl!ai
a*���%l KK؊Ü��Z%T -IxS��iBM''1��sħ_iml[�\
B5XWj��4l{~ EKPUdjdõ{VY><8lIX'6=,� }2Opif۩ �.@CFl˒"㤈f?0�:Q�}ٲ�yt[�k�S9�9 E VK{{���?t|'fs.�A$rKj�e
�i)lueԔ��W�q>~�7p
i�FF2� �ݾG��]y֏Y'60h$o?t�XsG>�徐��u��<��
�2[�{�,Ko�x��1Q1aT
�G�P[x(vcAgB~W"2\汵�Ol/\�Ǯt#ɱ%n�}
ËXK�jMUk۫&mnNga;n,%f�#�u%oKwł�iՌ tb]-lƒc;�
d,�3|�H}d� ^sdre;s B
B~Eؾ^^Y�֗-
�+"Ck o�U�AM��.(Pz��H4`苊�.ؾM�8t$�T�2;�9lIG_f'����~w*��]
K���XS0,df6LJWI_�
KV>�ڛJSӡ�$vgza[KWMN-҉��U�)Z<($V`4��mv3TœnWŦ�p��DsVheл}˟8R~}@ð`�aF��y���ӹn�rT)!�,kuQ'Bdi�
ɖjyU�:ՙ��]k@�ti�O<
_逷Ӳ�B^F8]*�fB.G�Vٶk}4"A$���m>n}�(}Q�N. EdJ�NF#T]_(r2aIUzX���0-gW�ew>P�1C�L�A>a7 #�E%'�2*TfJ`,7Az�i1N*m�u[�߭�q�5&iQoUZWH\oOLC) ^|�e�x�CK<^9�U.WM��YʥC��[ډsaRЛzl+]½I?
GV?8�J�glz�ϗş�R\qb�ӑ�)q-�kd'^<=('�\lƙT^YQ��թ�A<�{Eຣ�ƿaB�LkϢ� lrndCtI'�:�־F!L�&�co�2Hf�l
H�:y�EQʶW ~�xI�y
RQoϡ�-]d�@ʗn�EATB�#nlRe}'� 抴|(V��L4xaK=DAx�~TX�X^1<#~�.n�u*+�-$"9(CC�B�e�ӭ�@�A�E �PH1hw'1병v8�Aq=LҘ'nU:�u�~hh�0V\ W�-!�V�t�"DK/46z@ d�~(�{i5'���|W�s�"aV�)TmI�ȼ��Vu)�@[�^�r�_�0f!i
9ArՉiwdx��7�2Zp\+���;ce+6˓@�ڦH8PWAB)7,(џW.c%(U*
ng"{�E��W<[s�c\.Xjɝ�Y�a�c>#�Es�r)-�K�J4 }K�KQJ�5s&�4W�2\7!sz3o8'i_�V �IjN̓�ڞTD
�ãOҪ:5{wXv�VeD�u}B(8X��D{f]�?LKXo2{�T1��F��?݂����0/ekC�5E+vMSÍHkLsN?ъ&yUݩa DQVzѣ�uR>�#�7FCSL7��5EIad-_LWk0��^!Ł�5rq��cYr,k3��}]s �1�^5ۼ�skznɏ�Q!hD�ᶟA39�9By|:ZP#AwM1(�7F2$�MH䈹'85�:i.wT'?9�7JHR|�s2u{^u+K3p�6̥l{L�.@�_6�ܞ;Wm4}!Ie~�B�m)n�QYg7`"��11o3i/Bq-H�MƃOV{n�GSS��~$f Q�-l�HpN}<ҏ�G�sR3ݼu�
C�~`M�P־^.1+1�*x=[�aiRL�N7 y&İ,�LZF�.oЗj?ލG瓪J��I[}�\e�Rȑa�:|�=R��:;0Ro�⨻vN}�sA-cv 57&O)۳e�h[�z.Z.[[u%K}q;Lb�d++Ф#�Z�b~swH�~6�DnT3_O(�f��8ٍXIP�$OX5ۊ&�z�R�'[b0]d&VΡ�?(gu쿎�ƧSH��!b�Ɩb|8Z�cK>-"[��0E$䖭
S�\�KpY{ג�Q 7��e9�ŌNz[wQì*�K6KY]8���u1R՟� Fv%գ�K߷g(ѐ>�.nח{�DĹs&5�Ļ;4Y&�����R�.&ܓ+7�e->t�|"W�)29��F �~�
X1zE^́|r ��B�
$j�X�?ͼ�Obhϥ۱�՜�g��NT96R�
&w90?�|��'�tK[!r}�_1���&�łj+�&>
/-8V=CUR���%8"��*y�p2g�ɘςs
b�h
c�eۆ?a:9@LG,�Z�-1�[!��|>?Ι-0AX
0a8'@pEW Sj^W"/zb
khhA�Fi�]��,ڃ[Q�O�_ȃ�nxf68�/A��YS)�ԍb%qY.�AU�Z*VWy�Lu aBtc�7?NW|U!��d�&'0�n 6
|u�BȢ5IYZw!tk!p�F��B)7F#4
s�\$Y<|XO|EUх�P|i'غo&R+l�pvdsR�ly� ÎZ�����dF?˛ �|9�w?.>��}�h?|S4(Tf��2�['��9DYg%}[{1Oܹ�M(u1
a��$du�ͳ�ݿ�`u7ǭ(
p�u {\DE,z
��}x�sy;|*i�a��>q�¶��Tw
!_n��ܣ+RRuk'ە�|U`3$d#1�Ц<�R�4Q7̬qZl^S-�7�kU�A7'�6�p= ⠣Q4,Yh`@>b�d��f=��}Ucԏf#�/<�#Bwv. �kg炄t��Mz�p�[ Nҝ
="\{T/��5y);,ɬ�_F�LƁUGuN�Tzn!!;�_S2E�5JZP>�h�aE�83b4�%�͂\5�UhJr�;L$
M4+#�9Akk,,r˜[\�
C\{9eE�l~�lui�}#UI�la�쓝g>P=P%ҝ!C�1 .%xUCM�2=]|&��h�*+Hv�1����P[O�-ױ�:ӊ$Y]�#�٘ X:t�!�%
_�m9θ)�8J̈eQ�I�CZN�$8t�Wq%Tt8IaׅQdK(�t
̸�qrMFS˗Z:Dʨŏ�AWN�[fU3ոf9�mmܔ>_ �~^!t`G0r$Y�-WgV\Wh`T��_W'1�)CE+֕Q[Zڶ�puC/Mau�pdc-p[>q�;a�qݩ�f.)kmZ��51qnJ�IwB
�f�Ԙ+`O��1ظs�
WE���Κ~p���˒C�,ǵ d%8%dT��c[+����ڥ0x}��[���/T��G�iU� &-XHtr�k,�Gv
ӡ�LqC��v^`2�{)S)R̓V/~���/C°9ֺm"/V]�}M5O<:Lh�5ĤU�W$�r>�HBRi@?.�Of+$@jG!cw]f|�q j<2[�,//+2�2��e6ed*9/4NHK9*R7E/W%�S_>U+yT�-�J�_POh�jG��|̫r:BM2R��wb!mQ~k}P�% Cܧ¦�5Ԍq�gR�emc�ANΠ�C��b♴,tU�& �jO,*��q)*y���� S-Eu��A|�:*�ꢥ9M5d��(Tm[J(o�+8iP X3m2o��xz[g6ySL�+�>~Z\�:z/; 8
i'tZ�}FP ԟ_6W}~5j-Mꠜ/JKD��xOHL'2W=MvC�Ry iNsnnC<(�X�=�seg8m5HBff$5$T�
F/�$ �t���^::]KP�Q]f�©BPe, �<�@?5ɴSG�*1�5�,Җˉ�ϾI.ʐ�;![�/ ޚ=?|#}F,Ku9\6�
rg4?�R03lCv�?��e�t�ʽ9�ۢ}R�U��w[\Rc<}�)�)��ek3��d8-ɲ��+���[mъTe"TN��{�XS-�^�żgO1n'Hzo�W�ycwhWRx[ �E$�?�'dvȦV^~K&/#댃Z`r�a:"ַ%.�[mX�@ "c-He;@'ڟ
Xn= M>s�=d)}�́D�s}cy�J
DT~\3I&NoB\}�5/7D�VAw?�D�և�{rqA�u}-Rs4q$G*(�Ks�iux�V~+Ƈx5!��1>.S],J&Yk.n#ѣ5G axY�1yKN}E'/ߓ�ވľG�#�+
h�:HFfO'~k#�ˌ^UL=9�a-Sͩa�nl9(N1>6@t2{8��)k(b�G_pbbTlr
rd^`9^5Yȟ:�RPI2��`3+E<&!7(돿<)]�mnp
9#�oŽ|KN\f�8�s$4SYi�0j\6쟸���z K\o�t:
-8"�D$��0A v�iứ|l
>DzR"R4HnǑMm0DQ
m&D�XV#�ܨ�p@��%4�k�k#j�bD�bHFs��ٔB2[AQ>αc@(�E4aK[8sH��\;(h㮛[Wn-k|�V7]��˕6��uKß��|NtT�>Y qo�Ψ'2cy
W1`b�KV{~��q�o.-_6�(s!Aþdkg=q>s
mDGSz=<���Î𫅼9q~��]�Ln Y3P|�{.뇑|'+�feh�k_n�c^��+���BXfDzgg&[nbgX�N,�ރ
P\�# QVZ)(�N"i m�0C�NBZ�c:߳*Y��)�� q
H()�q�X3�y-)�
�n7żDE|7�s�[ڸyOaR4`~5�p�dg*cA����3z��YKxc��H� :Z�l?ФhV��_�q���.k�֎e*�ߏ>ۍ*�絭
0d�/.�y+OA�KwRL/�c;n�#P_,:�y5#EMZ\;�+
*�mIn��[uƲ*0h8��abW�qg>H[3˙Y@E|8rgTmȂ+O|�bp�ZDž�~.Mr
fv��K>jH֧�Ӆ\�E(,;f�iA^֫��W�Lh#猄e荃
ڸ�
sE
u�g�l3�j�Hܾ�,hYhVfQ%8!�o#}X�IuO#�[�O�Y3N�lTh=IyØ�.͢�NYԏ;�l?!Rs2X
x�y] ���jx۷Tl��y^q$Ц;u]o̗i"z~�(ThAtT�̼>S8�H2��4�1stk�Q,?s)l.5h]\ E1[5O�~-Qv}z*�cZA�淬1c5�g�䗦#<�|qp�Fo\F�#/�5yK!��@gZȤiEs����HG綑3`l(q/ƶSQH:�5Ԇ9P;$i)&�mM�̺O�.+^hdM�=u�nt^Bkÿz�ǠS՟TZ]�fWw�#}H�+N Z8+�U�V_#&f ZhL�S})�jErx^�3Wf�˵p�~]H93L,0O6�6i5MHFon�"=���p~�8\�z[kDH�J>|m�Rg3�_�y�\gv�@z9u�oX%fgs!8[�a! ��)�H� A$bNQ%O<
|��0ԏO�LV�(&�OrM9&3�Mn�$�^.;P_�I(VR~հ{�u� f�f:��u#h,`p�˹)5,$hu9e%Z[s�yNBZG;Z*kS5�,90{ZV7U�r�SWtRQqޣK*L8"OT�#ugY�#-%|z�Dפ��!6DNE˓_fޓ�m4lT-1y�.�F`n�ɟg�sd�,�S/�g0
�/#�Ca
3f'�"6#|Yw�#ɷ�P\K.p)
+;^%贚έ�!�Ȉ;8S�>x�yŽ'q)o�;CP\k� 5dl;(i�deE|�^3š]ga�`MD�tk
HCdFǟC믜>>τ�#4X�j�1VhanY�Fr.�VziW H��:F��e2iW��t7F7ÈQ#/D7EG%�Ϸg.q�T� 5\Y"ڈ���-5F{JY
2�D2=*,{�ׂ�41{
/\F
�}�D.pQQ[i=�sItObtNc�чl+Y{��Y�!1y&&f]��UW
-�\Vvo(�~��7ﭴ7��tU
j��6
Fto Az�'ʿX4�(Wح��r)l-�wy��T=\4@:O#/0hKUd�*��M\PI(Wf<0de���4F�Fg"~>�Ox'3D^QJë*g4zF.��n�5vJ)yJ��G���T2y8<�噞$"�>q�\N�6s)0�ڨj�W&2o[~mN A"
M`pO,"uڴ~�;��^�JX�%=�i�0V%wG�#ZhM�NI�x�A��:c0߂W�h.�,WS�Vy�Кeb}�*�@kְR4��ǮW-�b�
uU!DE�C^A{Sۆ)d����T>7"6m��Ү�IWX^TV9��C Pdm8`�_з^�`�G�raO�6:k%[pX��}�n��=)T;r흘�jUn�D/Ђe_]M1'z�s-4B�P�:�J%c7�Bo�G�'+
yT}YjJ)*�K
V`#��:�{ҹ&ȷ
�e#sɲj/J�Ǒ�U����3j~2M�;B.
�$k
ݥo̚.@`o�`6��)6I0S=4g1Aѓ-�m�t
T��qM:ӶY�FAVr]&}�
PG�`]ID&X!"�
oC\4�@��]K�ը\���im&XQ�l`�^NUG9;�*} gdJ��^�+i�%�漏c�,i_1�w}`jĄn�c�fY|QwW��H �m\~ϕQq-8��SA7҂y`���_�w�%Q�48 T?n-I6�8�4D1A.�BX~CkA>.sLW�yW:�_g�/��2�䔝 l1IzMl}X�Ex�\.ˍa� nDb��T�j��9�7u\[q�5d=?;h�YK3*2G],� 䪑x�:x�$oRT��[baGͰ;({��$P.lP};^�Bpb�~�[(^
�-}p�tQQp^PW6-/�!np�s哢. oСBO�N��(A:r}�mX��٨ޱRx�� r,J7x)yF
#M[�6u*7>6$,F'gx�^�8�`1��X1"�<��~8��$90^�3,�sK(M*És�iN�g�
S;n_q�Z�t!`'8M�_>~�~LIQM�Ռ{��QǏV"B�WU%%9K�q
�u覴a��D�)jF-@K%�y?3aq!ϔn[wu�X�4#[1-S�ecZs}X]�/�kV��pH}Pl��`�R�9>�)o/G%fhҖɃP6X<%�8��P �],/5Aj�5��ʎ$3kh[s�� 2(f�T`ED�T� V3dJ�=~~y�PH�JZG:?�)-��Ta��ar/q˞:TIU=re⿋�X|{,`��qf�!>/?�;#�NQ%E{9�96x��e@)�t�82qHL�!l� �1`rTj3!n1l5�Q�?V���QNtSEFR. P1��[�j["kt^^
F�80�E4�+�k�A]z!5/~a�R:�Lޞ+k�=+@_F.z*
x+�L|gst�kyߏO.V)cj��k˿%ĩ5"HT_RjknAVjQO�֣D%$>D$ћ�UBI'Ĉ`d�RN1J�hF�W"��aH2b_4xQ<+�!�Xl�KM�jGK�@
�OOSQ0.9bPEg791x[l�ݚE�zWE͑n#�;�j:NEmߣql:no~7^Uj�tLjήtii�;a|q�%��CZ"犮A9_K_#!{7��HAϚsOf/���3{���e�P-S]��|[4hLi�OY�)09誉�^�Prw藁!!U7φ*�3[>�Nn�(%�_|B-$�+�nϠrHL-h}g�8�w�m
/.^A%rd;2�>q .w�)^]-�~�bj+{LDکV�W�;ٛc- ��\Ut�DSLwH-}Ov
�a
�!F�Q�7CzH#Je>�r6D�_vO(ؿ?
6; _*?>x��.Ǖ5x��sxTm�02PE;s݇gT^b㣞3��HZ�t/oveJ�$3QQ*�]s(�/ķY%>��=/�gJN�z>uu Ld.aYiK2u}y�-]�i珲 �Ko4��[�@L�V��fP��e(j�j 81��uW(/e_2(UE�br,�3J�el6�͎3/a9�q�h>�
o�᧲�hgL�T[�&C7S
Mo�G&겉L@�?�)+>7�*\zOTDx䭡:
��azff,$�/K:�X([�rN6G�kϯeq'�~WO�yDsIӅm�/8c
�VE1�l�U͏Huh䋆��S�1��O�'$)}�4�qO��x M
1mı�Q�;nSw¡o|�2q%�K�5+U߉m�!@�uv$&S$IV:x"VjEA���dT�x�Ӟ�*\ f�R>&|1o�Ze%:�r�~oc\;W�G!{l�a���h5
cqW7j�r�����}�:
�yNBW7���:Gq$^zŴl9S���oJfv�7zw�51n�>H�Fei�FI$�Jjk_-�t%�xz濏QǼ:xp9p}T=�v�5=>Ϲb8�&P=�s{�qs;5eiw7ܭH!q�=zPM1s#��G$2}��U�Qa&iYP!Ox''q�V.��F!�i�Z5W��g+T$K�rN[N>@8 /�s)iC~�}xKc@w6
@�3*2@<*eS5>gsM��47ΐYĖ,��*q:5�pFܺ<%�Ͱ-K�,-_N^8^.lUJ7�U�Nw#Cw4Fx}Ft61ZkGu`Kࣣ�1�(-쭚�A8{
�^I}"t0=� ۫�0�:URZRt5�>Y+bL:�j5+VXua|ӵ瓩j!dQ�
]�2w�f��sqÈ�җ�ܫ�P}fx0+QƲ[Pz.Ds��� l9μ6̉YDtNDz�]`_L*
E5�rQc�\@@_la72D41t|%4fAzf|3~'4hly�4��9,7ZK�\�ܞQ1nh|Xdrw!վy�$PXw -E:���n=k+�L�,5)pKi%
.��yf䛬M>
�t�Y?L�"NZԕ�ӺKTG� w�eF��jȓѧr�ͪ䧊:z�ð.Η_@ xI�_�觧֡�ʤ�vsXH"RҨ̄��%kbX�*
_0FJV�刁b -a%kL�악�:
|!np�au)8[h>0D)$mM8r}�V-��R]�W^'!NXÂE6?-V
DU3C/oC m
�gN6+B�H>}5(�ٰgN2ӯ�Uei{^�B0�U֫nD>)Z�bֵ�O�sGO��:�Gf5B�@yTR9D��PZ��cvN#:�J]ʟ�ެ14/}|UN�u[ +�)p9=k�f4k;�/ȣřk/{4yY%��~5��&�e���CAnLkLgA%
:L,BIV�s+��3d�\�:}s0���9��!A��ϟD˞%>PTO+4�SOF۽xL�ligp��ip�U1K@
*�C}[jCn�Y��
`9��&YY�h'v�2�L>0h
t۴,Y�هy@;n!T"�#gy~�9az߸x�~��La'r+<� �U�Y�;oaՐ!}$3Hʲ{bTB�~z!XW:?g@(�R�'hp:�U�.)z=H!jŭ+-BK�֓::T[~vC;rh$bm]'i[
+[nQO��HY�9C-C�m=`|ca.塖w|{*&ކrra�[ڞ�G9���MTFgԷ!UPۛ)�A`1��p.PF!OS6F�]�|:L�ƭA.B"U#=\�"jJY���b}]3N��{�kg^}x[\━�DsB@Ь��[.D8ŭ�.��9{�W�df�T�l~p0}50hHqJѵ�6n3ax�|Zl��67ډv|!�㛗'����u�9�ڦ�ȫu�<
{)+*8��.o�abvڹ�y�gL@���0HԐ�oNzK#R6S�υ*Ա7|Ghp9+��=l_m^VYoq�N���1
*)�T ~d,A�jr
N�}\y�@8~s
DR)R$a=R?/x
o|+o2}+,A�#�@���Ӄ"dFnx�.ie6-dw�_�fg[2j,c(ohf30�uiJ�Ӭ:f�k7n�(,n
��[>��#ƕN%G-v<̫x-jT�sҒ39�1gOv5h7�5I�$lOtx|3�]�UB��R7[��qW��;��2ֲ[�H ��)n�I.Q`?u/mN"PfX4q�'V|�o!+<=���&aO30W#_m�FȒ�Ĵ���=lp "�B8D� oK
hf�q�Zz3O7q�Dnai�
cT<֩v wwZcXȡ�l�C4+r��C�B۶p�JD<�"{�f)>� b3&G�R�~�AE&d���eڬr�%>�l1^dPN�ZV�uT
.Mәe3u�Mq~�D�(Y�/qWq��"tb�)qq b
0�&�$_9XU�9w<~(Vc�B
��^iC�}&E*霿,!s�v{Sq�u DoHX^uc)�^Q��8h�"hNS��TK>Z�EXi kPg��)��քRS|�ڙ.�q
?-�6mؕh
~7Z5)BMA�ON1ޗS#͓Ұ�����c(qw;-nUΟn��a"]B=2,8�<���ˆ�iP5jh�(2G{���e6߫i�~�ƨa��l�(>d�ܩ'�#x}dNmXD rWOg/H0)(E�
�n-(K7BKYP^~W�lұJz�Y{F#+�)j�@ͫ?GJ�3�Y9j#�zy{uqϳ ]]JE!^قݜZ�[EI`5b�+�V�WeBs
Ǘh\xD�p)-�Ս�-Mu�g�gAWrC,�i� b�M|h_Ztmt9M�[FȜ%�Km辍|�^�_
pK?��$h[A+~m�qXk
;w�A �H'uv��ME[Ͱ|a��n�7w7�mfu:N@�Pt�ݞ��:f�DN?.rM�/SK&�
"b%�/BwTjWwUoޗ�R5FAYt�LiK�ՔTyp9�7ac!��mgwLf}�Ơ2�I֑�Fl6�.1{!mYz,Db.Ӝ�Ԭ��T+E�M^AIw,36. R+P#iچO-|�L��ZJ�$�APx^,EJ:яYz V9J�./�Q:\�NWX/�ʘ
*ݝ�^:(&ܖ )ѓy�(gT'B ��l�R�;q��/�8���IC�GVAƝwhZ"�L4R}�~8�IwL֭�HH/"�na61A"VEh�5�I.� ;2!�9(��
��GeOco X!l�BM=XE����;�O5�Y:D�6"}��e@G=\
�SeEadȨҾd
j�q=n?`}Тt B�K^(Đ��םh)1Tr��G�6~C[LeɭG�5
�UNP�/4g]�T}s*&Z�讏a4_KclZ��+6ڑzHxC�)P�0quׂm�(��0}�cðq@d8tR"=4|,װkwp]�Zѭ�~D�=/¤vT˓#x�-\Ĩ.<�1H�Ђz�g6KGh8I7|dFQUũ�qNC,�}b�D�DY~td:�^iWbU�~ۂ<|yJ�؉�I𗎘JPx�\��6*ӑ4_vu3BɟVd%!Ӧ PLo
K~�5)U~h+�ݩ&gyry,Zf-v�
�+
r�q]r�*� #L3M�cnozC6I���y�{�E�UPX4-� Zٟ�Il:xt{0}�1r$�=ͩ@1}-3cn�Lv*R8
2��Vu[ĔvAl?�.pC
S�7Cc�ƿֈ!�ӰI~qޅUF۾ٸ7&Ъh
gQoO94"���w2AA�\�2��/pl�P�/��O9/x)s[ׂ)T뀑^ZNdiHb6Z�0N֍S%��)Nߏ_yi!r>}�sa +_`��SSا�$զC{Z�Qrp ��荞��)�Q ��$4E�4oxd4�3Mא
�;О&���A�1���=�*z5s�=z�]
|i�qooK\IfQ=1)~�
>`{g;�NˀCW�ۼzZݝi�&hצW�� �>��*RĤV}79Y�N�X+[E2vf1�`_�K��3|#ywn�u��|��C[տajJ-ނ%'~-f-/+,KP���c1@+�
Eq��4�y|�KzV?s3T=�Hg4�G@ىݜs^gDb;SL
,��z^{�Gp{�h![x3R&B�r']�|0'@V[!
Ц�ozrU�zǨ\x�bS*�T�+26}=X-X�Y�3N�ޙ{_�d".k�YRp�G�pK Z;�n�b�faS�B}=$�nЦU7{Qæ�Aܮ=cO�|DFު(9�:G8�\0�kR"m�}D01T�Ռ���� X�&h�Q}1d�~HX|$ֈ@Mcc:(ԎK*�O<7&�����6&<�DY/Xgj;�*^6O�*{��sF)(�AJ'G/Ι,�7M[`hvɞiTH")١�5<16r7�i10��Uճ;lN: 6m.� t=-G8>6ЄYC(v
~ ل) F�S�ᅘn[=�dL#�&anv!�Jn�wӜljDqBB$��-_��>!$vz&EU��eᨥZ�/p#�D�<|J+}q����Tn�.dx_rL,��VN#שJ7 +Q�dI�7-@]ھgN�w4vÂDyLx� Iþ/AEr^rD%\�Te�=0�Q*}S?Ia/j@k�!�SWwϹ�C=�
�X=H��廗�;A2;
>O�U]�vɥ]V8;� y9еE`vb�"4�.:��=mr,I@/Bj�J�HxA�bJXXolُ�b>22�L�Hj�wTa��*㈈�:�_Sc4ǎP�7z'/�n�O�p�U(s PB�3JF|IxQ9oa�h*�: ,ʪ �2괠2+E
+E@^2aQ\^�pl}|mr8ênԵx�g�]jKXe�No�rVI.2;M D�!a9�+G%)fU�H57tJ�I$N|'�.�^vS�
LP�*6T�=�fT^È&Q3bŹx40ׯ�~r*۴[�R�
�1N3.NSL��r�=�c^3�*P
>g""S@wz^x�D�jw%
��'�4�D�pg`�<>k=�"�_]fی�c�$k%ؠV8RT�2kJ4ULz@|魾ݷf[><��HAZ�%.�GZf56dp�l�{-�
#JW -G�hVК4�gx�f:BW1gJ_hϒԞ|xP/T4+o`�:Q>�1imph9o�e�3?
.K0��~Z ���ג-W��{��1 XqR��ڿ�iR��쁃E;�yF"L�#��De/�T@cRn5zv-!8L$�cP�fo~P3\��և-̚sQBT@r[J~
Iu#̫ٔ_�oѠ)�p�04/Hɥg5*�/ReYeZ$~03R@�]K2`u� *ZgUs(1bQIw$N>�Qg�]=ҚX7+�B2�d>Q�wd��yΫ��i^�/Ө�2r7��<�"�g.#dӞ6B0)G
N][V;�j3)�}dKwS
=T/43ss+8D=��L�hE�D
8PLriJU�U?;jQڳ]0Ja�
¾mxx��I4�i|v�f8�/�ӌ2J�+֚4�q�dS_/ۖ�E�C7!;��>�v3N��s~4�3"%`mŹݑϑc�t䕹/SS��Gظm@Uz�pK}/!Ȃ>FH q4�Ϣ�0*icլ|Ō*gK~Y
>"x0�UQZ.TBlW�
`}yĻqDI41+Βo�>
ZTQ}'PMa.Reg܈j(�zk={*6b
�Q�e>W7�5���rC�ҭ ?v4G""�ݪJ�* Xi�D�Ey#�=KIn0`�ɠHR�yRr٣D�*�Ur�8�Nrc'-?8ݕȔLLP�G\$�B!���U4A>����U�vH�+BjZI/~��;.x�;bg�w
�0Gmarީ϶'6eΨ $.�>vϥDzD!`x�omc��xm�_&u\, *Dah�{�9��.�;h
u=ğ
��zbShT�4�aaYMŁ�Au�*��ՠ;aPԌNw!G.:AGo�W�v']>e�g,oRp�&�WRi>Q��.k\BC�,d d�ݿ~�)rƙ��Ӧ,ƴ*[��*$;�J-G-eIvp*�=}|.�s.#bRh>��bP>ŘFMx!]$��q5ĩ�)S$pcr�Bb�c{�_Lu�;%�Nco'2�o
*
�(A�yp�L�oA,,�il[3�Fl"@@xwJ����4B\�b�8>i�+H`1H3h.7|��=�s6`CGQޝ�c'AXU�T�$|;Q�p?.�p��O��'N\Y�^W]+bY_`G9Ktפ5ؤ?���}F(���]�k'9�}N!M,K7�v�m.қ6a\�X�O�*G�Q
�J�Z.!�0 mP�qd���x�`g�=(aC o
�I�~�jR`V�D��= |^SfO^�w爒<"H�Fe&aB��=�/�r.�Wh(Y,VIS3[�4Y�
KPs�Ra�1wKm[����/tt2۰Ʋa�a:ugA(�MJ{���@�sQ�mm)�m>ጀfQs�4�RҠ%&gi*r˱]&z_7iہ�D
ߗ�$�ja�qlq��"l&0K� Rd)\W�PЪƜٛFe9=>K�R�X5�xC#=�D�3R�`kJ��-
�CeRbPBGksϻnO���=߃>,�ОF`ڠu+빲�ՊqnrXCӬ1~b�Cpg8s�Ч&��r?��p9�i �
QuM�(I&))^Sj���3Și���\�O4q:z��|~\��'=�H8���_,ߧ�("��}r%
u)BLx2\ee(��zW{�EqL)#?3.ۺ�'j\nif�[M�TM��/��!:"i��8YQ2Yp'H
�@Ihhj~H�=ە:�NL�$�yG %_b�)EhK1O�1ns�I4͌ǐKT�kW*S�"(8yʽO
|2?OH6`��
{O43(=ZY�Bzpn/33�VE߰x�;��oX7i8 Ai 'U{Fm^�H�YOn'��'-�Ke�ŸѨ ���l�A8+G p$�T#�~5".3Jw\Jw�z�iT[|'8mqoAmy�jbW!h7[4;{ىR�wbKe�z�T;k�o�VuL����R/�oz'�:E6&S�F@J{�P�{T45֘ՠ�k�2M12Y��&�?3Ƈr7-l�/+u�Cc/S�.M�=
�&*9WjI8;/HLOK�1s_E�R�psU寞_��F5yR
��Gzq~��b^1~c=9CTkN/� Nof}��aª�s{N�8)0Fk�~+.Z\�K1����ƣ��%@0?]b��¡_wxJ+eX~Le^�і|Q<]�'WƢUw'l
aʃ{�{1'o�F�(K4Gk�Vઢ��;�8jr9[93C'%fr}C ,st=b>�겱
�z'6~�Va�>:R۩DŽP>Υq
ۓs�b0D"�c�sFtGCZSW��.YNӼ(Xf��צ#:n��Ae2P��\�զq$�q�yft#�[$�H�X-ocǕb�u9Sϵ�P�ON,9JJƌ4n>>�>0vU�̡-gAAђ�/ˤ�Ky4~b�a4M�`3Hu!^iړˣ�.Ĵ i7�Ub @=^�Jbp��]@E~\�5Ry�cN;ݻ-z5Sngh�?� [Qȟ6�4C;FK/iiO+&WJ;$u#v}Ϋ/0oqyvڋKk�haL� �!W9}E<
�X�L�5��*�z%��mdF�O,(
,{0Ǜ۟k�u-D4=�/w�8u|2�M�mJh+��,�M{�.� yApx҈f�(.��\f~+#�(HUR/�Wt�xAA�${)Ef3.j�WG=1�Yυ]V�o�]S?F�>�XsL
ܖCe0{Fv~aUJˮ |�h},�GmD��WrL1gv.ؗ풕)�{錒X�̘r+BBٗwj�˳O �hS�g`�E�]Ɓ�z�7*N>�ZQ�H�ahC�X`,¯�xw5Q��.A~s{;I��hm�OI��o� �{8I5:�EoUv���r�"�mK�PNwH�h�3,ItbCKݖ]y9�
ky鯤VQ(�PK�Qő��
�W��tc�#l�(��.7��+0�8Ӄ�·zb"W6YH Fs6u}kٯF�3��&
AtwҩU.*�vId@Uڇg�;.�fSi4;hO�۹@�
NcZ��ΔR&q$�Pb\6��Htm0`|��2`ƾ*=�O@
�J 74���.f5e$�%%�?);6TɢEѠ^�S�oT7�(,@7
8}`qk7|�X"ϋ�Q<Ԁ2V)n!D;58X:k$��K^HER+�T�r�Hcz
fb0���z?I2�DLޤgyjF⏹IYi@h��#�i+�m6�NY�}g^03丯�[�Ϡ^I�n/�~3?{�)HH9/�nult֠1 1d$i끅ZԗLJ0[ax=���@|5mP:^tr�B[5}�N&BߛkA�MQyq�]�6@KaL>g;T�S�IN\$.��#Q�]yL`�]�C1ҰlҸ�tmٕ)X���
��h-ks���_�G�Vr.�rx�^2J~hbOdty"᳣'?�:j�^Mz�z`t��� Χ$�[d6B+$� �ۮv�g�iUA0�sB
և�%�TV��ةhog#d\Cۥ&*#6cC�4"=|@۷�8~bMmqsCD�~+]��.J�b4I$ @�5U0ؙ;iT�%<�K��0=,
F,�X�79 oAfyIв�V/c۫o8팹@C[�4'y��o�Bh(pһN"ݣ�ȶK@*ϧa~j��EQe�%�:/{�j]g�9I=�� ͚vi(}d.ڲG[dL�1S�QbBK�TcHӭʼnD%a6�<"ݰ>fl��n�]%GV�
�~)>�DI�
A+c(5<ح1@|!"T�aZl]?���<�;,i*߿IT�b&_�p��vZΠ&�c#�I쏤kK�aq����QWCN
U��MO�*4('Pb�|F�IG5\@cnܾ~hßpL8آ��D`I7ZޠI78�#?�;˟jǗ;GZp\�%C�<{wjԟf,U?��$A5�r�[Үu]z;û3"~�����fE1u*MbSA�F>NR�z��F&�So�. 2~SuR{�g0��"|�(-B&~P&�uP(OVOfU�IfjBy{N
Tks�r)�_ɉìzi֝.݅_Fė<|z&�"�ݍƮ4]��'3/E4l��qk��}X�C7��;�7
�<.V�|yQ��jB6E1�qaor�fQ+�p�yJe��O����jr��`'{S$�L�+S�`h܇;Y~-=+i^өF.#hg�ũ�\�Z\ZsA�BgD��H�a{v�
�UH�1�qkEq/G=�CJqO܉1>*ꊠʢOW�δb3bL%�O#G�o�7?ԉ${M Ay��?9X+VU7�����?}<4)D�� W֩R/UMUa�JsfLH,řM�@?nH�ФdVK<-_74'Zt:>LeJB
_5=eVۢ~|Y~j^4U�� -�/BxvTd62&Zy^I#9|�B�D^6"ҔEl5Ҧ�Nw〉P;\ӯ�iDg41NQc�
~ʴLP
��M"XBY&�G\�,R(�0�d8|+%�2�\{1:dC/t2�Y�m)u] 5x/�T
�2H]6�ًZG[\q��g"ܒ,/�&>&=#C��kC#��-.^\9p�rm[�JNL+<,SC�4e:�'3�EfX+[�&܃U�օM�Cג.m ��}Sn+ߡ���^[�[)Y
@��j'#y!4漆8AjS�1+s�O�*�qVNY�ASB3p=�aW�VAXpwCn�#4�-M6_�ю*KP�U�*Ots��[M)�l�V/Tk� gU1
8;��:@n)�ʿZ�[
VNཌྷqj�e;EC/H]}3
0�{!lā-���"��{9�ηru^Y'.Dq�&yKy�FFd9�mHIf�d㷯��۱?9w�^�dK~�ncx� _HCX\��b��-ݻR�31 沏ē3W��EӀ�L�
ic%�m�8\�4(S29/5X�XhA˴{w\K@t��!y��.w\ڊ ,uc5�A��>M(L�Mles#$T4.ٷ.
D]~FSjn.];Wg�Cn((~i`;^J�c�AU/g'�HAC�Y2ٯD�?�돼0�j�n�C,dR��]<�?IF!(]�&B
��h˽$M�G85C]Ȩtc�=Пcc0r4EbSʙnI\; 5 4ې��t���7dH Ɩ5}m~Őߗ5h2)E�J[U獯P,t$8p%$ClQ�JG$JIl)P�㡃(�ghVwWq�-��#rjbm|�uod�y�wFzV�B�c��M]>4]�ƥAlg�af�o���GJ"nU^!�Ά�PmU|�J���*��,ߕVp[:JXdwM@ݻ++#�J4$[:�G���|�vq�_�j/gEc]du�lQ\L)�Y^R9(lA~�}m2vBhpv�7S�s[c E�}��]1s�LQD{Y&~���g���!E_<��EfW$bsgfN�89넛Ki*Ӕ�?rhr23q08Z[�\ȰǑ0\��F)qp5h2�zVxkjmh~.Q]hFj�u5Q.<#'Fbs{,�t-�] iН��QycJ!��f�OWHM�T%�#,W8�K-�&��oRW�MhZq�dfCnƝrB+'b\�R}Zz뢯t�藂��[)@\ʷlT�`�uA�u5B��ULj,;"x0t}adj��~N|���,W#0]GܻMi�Ϥмb�I[�Fa�Ih@MQp��,UeCA@>Tͼ0� h�&<7����2軡#l�j�Ќzb�E++c�W`ue;$f|5n2r`|Cn��r/#8;$2��Mm&�qCJ��pFQQv"��~WKn�x�"L�Ea�Z��.��fEG)Jav�=�cmr�����0O��vP4�<"5⨷-1�b4dy�Xl�Oh�GjFEOvԆ}�^��"�IGڡ�RA�.:0_b�
?L5|vWHAY�-[ǂ2_>�_+@�v�Ldt:�3#�YbZnޅ��g�jN���ͬEf4#Jϴ�@G"`Q>g`R\@Rnq=�&ƨ+ϟ䴵-�{!3>d;(z.窤Γ5a-fv�W0y36U1c�� <>�Gx#:c\�>(1xg�1D�}l57� 5!��xDZװef>�⟜i�՜π��WrvH4J��g��(�C])v&y>�FLJ?�=4ų#Zr2ˤX5Sn_E[4rzCo�s����i��3»'�
VTl�s^@yƽПSp}(ލ-v%%g�SmLO���l�U̕ v.��L+W
r�S�8Jn )�H[VZ6Ϋӧn^uҶ��Ha&ǎIi+c �>%aVx^��z.K�}Q�B>ϛ\ �a��
~@&�0*f�=Cav@G���˧`s/�/bQtjS��e?J��L'�j�.|+�]ȨԹV�qN��VPh0"�b8�i�υe+"ewJ
k<}GoB?XH#�]/700�,J�&7�,�=�#�g
�͏.v|Iҏk���|�Wp�F5fLe`)�wzcۤ(Q+#kNTtxS��jSQ�{8�*0�<#�20ܟgܟ2���m9M?&:�~R04zjs3}�lvV�Ƒ!4y�"a9�6v1�j}�晷׳YJ`v�L5(纽��kqa`x�!
ʇQDMKv�I)Z�Z}p\UfłnS]V�B3_\��Riff_�--]LW&Q3X�#H_w�'�OM�͡Ջ�!&P�[z@Ys�`;1
Er}Hmh=NUdqB��G;vwmQu3wNrm.8w ��2ILr1\+5M"�(��hk�2
`!���%�&9ҐC�,r\4��]Dn_BpӨ�0}]plP.E8[�.!�ъ�?5^�V�%]||"�%ӟ*�*�re�ڙ{s7d6�x1F�lf��6Y'-K84AG:Ğ
h9MY�;bs�B=};F2UT&XID�|Vw_v8?|m�kwM{�:4l
${k$�N24�<;ӈk-Y� ��U�o%ߎ~NyX=Ud��)�)t;a~L�$P��dKJ�'qB.@O5+�Ud[C52V։+tJ*-Ǎay+$'wT{5!'6��Ef"==$5VOl /T@'i;W�' ���h+�9}7WQ�;B9�|/1N,
#%��%f�T L8%�gF>{i%_2A�/y#�@:6��djɱM �%w̸�;3`O(De4MK#�GCz
ꅡA{!�
r:`܋Y�WbmHG-IC�x��N 9U)�� f�Í�Z�BGf��ߑ�v��t;3`z�8�$;�Fኖo@VJ?ϕf
{n)4K
KЫX.�#T�$�K:+o�[�S0IBoAG
W�kַƇ:�Wq�ƅcOA&,
щ+@طN4�Mk�(M.�V9&t4�Hɹu°E!���"LdbqG8RCW�j`^��"�n1�͖ lɋ-|w)-�4
x�
n�T\��7e�Nx9�}��Q�*Ky`��H� ���n���eS|���<
>jt4R�Œ�(ΊtQϏ,ٙ#�{@QE!�J�Wa��T�N�ą�q|y�"綺L��j@��WyH?(d�yiD'�}3ېu
%�هI{ڎszYf5go )
8F�u
�vjA�ӣQrZ�Ґm
�ƍkBwdHvF&V'RWuW�z<&0��TjM�aq�
Na4U֘mb�I2�_�,�J�s�M�3*P d�lk��ڊn}�s�
<�h(&O"7~(;mJgVAzWMBOV0BT�W6B~��!2�]BRZRls6�j~ ���O�.f3@-K�X�@4Lst�xM{H
i!5Bˬ�C?qWlp`o�%�Au�(`x|ucZ;zUW�Ri_O.KP �+3wT�{<�fgT�!0?d�Bd9�/C�YH*C^P}�1d�Vu3gHy��hrYE5b�%ˈ;Ȅ&{�!H 0ٿws0�FNNa!9�,desA�r]�$0��,]Vj�8�Yhs|�cߛ~\<�",�NM5WbCq�8��a%.c��(�r] �N!�R#*0=QlB �%=b�!_kb�r4!bvM0MK횰$T,�œ ���rpro1ְ.V6M\�K[4%�AĦ#8c.`7&<��V4C�܃b"�/lB\
e��R�b_,~xr�>us��19fyeR`S@ܕXn�P�8)k�J
5]riS�_7~�u=JA4#E��/#+ړ~"�m8p5[�r�í+I=���lPDjY?�p���bV]��ƚzAEn��g,lU=պ1A�vYj�`,!ӶK5|ed]`(b O�ʹ$46xmN3��hXh0#xG6,�5P].��SϘ;O/R,r�iMmi�GQ9P6/vmTf0oKD>c)uz?�$)oHՍz{2O^�m ^t��]zkk^⟍E&dcE}M9@$Kt\Fc;0Վ�ԔMRqE]?��*�y^+�eÊ���o$3BU�֦%˷ZD2�6;�6N}kxW]�{�=,YBop�2�[N!x��3wiaYeIǎݾ5%Yɿ�|jC2�̒ez{U'KYDm�Q�3~X�?
���
�bFN�vN��]�ѽaeK�,GiV�Ϙ�|u0�д[Ԓ'i^l^9?=jz7ei�L�~ lOb)ط@`1R��Fo!#t]";G?E"j�K��b�!�u4Cb0̧=xIN8?P��b'Jh8uc6�a�-�
y_s�B��F 5b>��(YƜkq�̒dIW�8s5Jb=ًh�s�C �ă:�x�_>�1eO!=<@H3Ղ47%$I�Eij�1�=\?A�q�@cvw]�p鄺�qG��S�@Cq+�JL�](���;�Jy&�&�q�謘�Aw\,QqHp �?ZPDp4Vz�l�
x�DZu�l�ʵ.E-4�̟�Lo3ǭ�
=~z
l�^;�2v�g�,�w"�is�E>s)N�V�F}3=V@�+),[({@�)[vj\ip֭�O&_y|[3<�f)dN~+4Kl_v[�Jc
$N8X�)Ǖg�iְɷv3q&
~"6�,Vhw�wEPlqI
E�^�pL$6GqO�[�F@O0f'`U340RXg7.�:�Ť�s=~y�$�/
S�'GȮY`8)�1"Ks:p�#�3{zPY'(gx��k4i0T�f1z�N$�L�zdUd-ׯ2��Q|wԽit0�R'{![͋ Q�&?e���C/b_ݍ�lp7_H@�>8I京x�" ruN|]U*lZ�j\|��4i;h95%
>NW��Wf'J
$F=iGrvB0�-7��A
fJF�oRם_�{L͎Z/z==r}�r
X)נ��cs"l�c�u)U�q\�k�
�W5rf�E"d�=�c!Ox6�胩bdBB(>أπwz�PNWug|�_I*)�(8:kPiQG$t5Vs�e,�Z;_Emw˙=?Kг1�0|21��m9��9T��)ѫ�;ӭfk5,e\
=rpRnȴ͉)7\��%u
�HRL)�eM;�`ܺS`V�^/9i=mːևk�Ҙe(��\zQkG�7O�8���[#�ѐ3HĦw,
92_/؉��zūˁ!VU D�%Z��!�0v�Ј,i1)j}J��emdOsYόAKϰ"Pe[W,fdb%M3k_p�ty&b�,sx�tXkUK&>VOOXU?vdܳ{+Q%.~��C?H8k[aP侮椵/��`~-l�D�=Nlg#Fgb�B�I�"sUIz��z�9u{tLKq2�WH'{զ7�>P\�\ޜn�,p�%�]&r!�$o5! l&
p�8V+V6stG
A4_*[v}�W@O "VXkQņW�0j6.;|iU6�Cr�Y�7HE@kF.� ]Cq�G~_'l7cU:Ҝj5PE�&�ߌ��&nT�mnGЗyڗLZ�:ZX�^D�u} 1MQ�
'm'%�V繸g8Լ7,c*=/W�CƔtB02�КY^׳�#`}�;MLGb6�ݲ ){9B�L9�{f?fX!�K̉ [ c]ܚ{~H_r} x&*�D���䔄"�))lp18i��D<]&Z}t%>�>WѱS!FޛYTtIest�:X&��t�Ee>i�-�;>nMsC ;��v�jH8ϧ`N�E�Y;p)(Zn7+e
<,>~(K�eV
j8.l Ew�bP��be21 *s#�FOV% |[?{B7YI{Л5Ef>B�<=9ŹiuZBL{�e�2-SYh�"
�ʭpa�xp )Jo�R��pԷCk�)2Qym_��X6|Gx$S61�iNח؍:@?Jw���~�|Ufr39�%7�\~!0f�iT�!``{'2�c9"{P�PF
[0J5'�BEn@(E@1��0_J�$`'K��+i5a\+�;nCkyIgپ�iu{́2ȋe�Vj`=��ͮz̎}BO@Ԫ�0�a�E�zNp�d!*%c뇿Ѩ�EimK���!
0"Ӫ#f�EKWor���Pa5)@)MZ&.^[To�l\g's���b�l4N�ݣ~i�kÒuk��ۦ\Ccx@lY�(nJ�~]A
}nK:DXBr'=�5}8xOʢ.c�L`d3q���Ƴo:���Ğj q!͟vK]u/�
��8��7">2x<��پao&9u�/>!!A|Coy{_\��6
Xwu�,�, 0HJ#P5[NicfcpmG�vR+T�6
F_��3k�KTl�Jr�F*C
b��]Uc{O6T�)q{+%'jwk����1z\P_{F-
PWb!x>ibT�0mLc6DZ߆=-{��M'\,��o{.���#֑P2dL@ �{�`"c �`?0���b
rQ,b�
)A=ou?$A9�Y8+)J!��5q0
�r6/geާ[+�,K2I;qdi:vY^6.&^ev�znF#[/��=�
ڴ@c v�`Y&EQ.]#WA*�ȝ�-Bx�7:�~��ßi�"��ġ# �~/ln`X���tۉ[�{T�
ӻ4nqb:ʀj�QL�m逯�Y1R¢3j�LL^(�5,��P)W�)U,�a-�.Pnܷ6V�N�uˮZM�Lؼ,P!ɜQ��O�L
Iv]SkҍI_ce oC3:xkZz�Jզ)�>�HZ⺣RB��Q�$HpX�0Sm��:^�&*y!Т<괍�n$Sg;Ѱ,G
�ʴ ,h5Z%�By-b`�7X��d�*h\cڬ��(˛��wBmԒ]�i>�7~c(n
,��t2V��^%auYEeH,E�Z�j~=R֬ߺ'2�dmo�L}S,FvV*JsI''&͔#!ȝ5��"�[1x5lY0��]2����A
�`@v��gB�ڒ"c(kp�j�D�E+!ސ�xOw{�i_;s�Om|Y7t!�̘O4�n�8menwl6V����a)EGWR6�ݸ{�4Sll��_h v8Wt[TN�5׳ ?m|$'@�V�m��us42np�Z
G2d!o_�BKjS9Y=-gYJλj-k#nz|
8�3b]q&���X{No 7�hR֨%+e�yFR9�'ŷ�;D��&�8Md��Hԓ9W�`T7+�z�
7CZ�78FS,C=�p9bѼq kX'X`Lgv���a�%0��+p�A�: T:3�Z�"(9P?o?�?,-FJ22"hB�"I>Y?�>�'�o!�%Ҽ�PS�zffzò��=9|QI2�źͼq&CN�~6M")t-<� vYh�Stbt$)~!(�~J��zQ��'N�,*0w�qrC��X}<�E'2T=^X�giȎNȨ�E!�&�Zpﰺk|>�:E�j��>._?/m�6S:Yѿ=2�#6$j��+~" -`9MOʁo�4�F=K�ŕCnLbC$(71[xёr�3iHA%}d`%y��c8%w� dM8�u'��zS�p꾠%6SC-:!#]K�ձ]n>=
&j;&["�ģw�hݨ+2�_.eB�)e0-J̽w^]�$zq��='��}��p��Q�_մ^"],S�4'ߪO�I.KkFծۡ-mqD8S_�+;-�v(-cSls3(K0sO䴮+�8�/noP4;L
�
b_BlW�*xwXTy�C1NO�͊V%�F[?9!&=[DTMzYSm#Nl�>HZklRx8��Y)l�p'E4��96
w��-�_M|�2w'^}yٶG߄� �9a~ܢ+&TO&W��v1�`�?2p�V�drX*c;Y� Y���ʎ/b�T{jꛭ=uh}'L^��N;XH&SSyb}#Ε蓼y8-�Pw�:b(rb$jt|!Lj:3֯�mJF�8Or{�Ǐشe�>MJU(�L"* *%D6'WƎ|�qy8¯
<'ާ̈́�x�eH<+'�ⶸ�h24j.�:ݑm2;�d�87;ʨˡD��
mKf/Iq:�DRx<`*?UV&I�3*"r>pQ��Wՙ�];e"R2;~Cї8P˰)Wj�F쬵��=8*56#(҆@ +ge8TsA7�I:yJScfe
}�qUUV#n]ze=MCpٷ
j2v2x1TFOQBP�r[dB 2+ģ��x-$е�v%�
Ͳ{s���ڪci�Ƅ?EꚌ)nHӻAh-�{ߍ0,Otns��8)��- Q0sB8B�~�(f�G
�2Vd�O��C[w⓪�UoY"[co�a�0L�\��I�b3S�
{/i2.p�T~�4�pϧ48z+VsC{O;c��biz�ůy5%WapP5!1kP]]-ռ��̈́�!�0J}3_S�̔v=*,+QJ�k4A�P�kO3Gn+�ny_�4o� E?e��wGm�Z|x,;������1|Uƥk�&_UvKhl�J$�;p\O B^dog{Z߸F&Z^
o���tK��|�F[ =0�(�J}�GY�̓�39FpX�酶v�*V?@�)g���,.2�?��4#�h(&wV:�?9{�HR�R��2�6s��qÊPQJ3��OcRMP�iQ͜VX!m|Բ�夗�h!u_ك���bz��yɢM1Y��\M �b҃-E�>0U#{ �^;N`#��tVv(.-s灑me J3a�r9[`w5 �L_�6�5e>@8#ɒBN�K��
RN�"[o�=zħc�T�6D�f#T�N�N٪tkXk�:Us<�q\n��T�V$d�XC5�i}$C3qw,[&��Mi.Jϟ1xx1E%�oD09��]{W/��F$4U3���~�x�71O]KmEZ �Yj=�3���،&4�Q;m�A0w+�U7�>�U-�<9_X�q*�/~k�+�;P-.{ �͌;�gE.��v]=�[�@��R͟H�a7F�Q!&�0yB #+.��tNqMG9Zzt,vhL��v^6)\xO�0j�G@���zorGt 7��5T!�N@ Lfb79oT� �}�YoflLǝK�MEa�JF�Rj�L�r6�
��dǟJC!fJѮ&��%��Q6�p�]�ۼ*EGf6b*cF+uD��C4i|6j�T�2eLzDrXy\�(7WW)�%"|
ͫ뇙�prxK7]C[ �kbsgmoF�wrL�Kt�fKx@z+�۠vM)dmXmy_�ƉaXq]VrF��%&p� \�% ?iƒˈ����I��4x,))ׄ`�G\'�/'�]s.�I��Hm-�~F\:V�[ZJ��nl�Qɋj&O0r�g3�]�
@�Я~j�h�wu9f�$Æ�`a+
9HZ,ycmzت&&غ]���_\*D`4[n�HG��ѐj[w]f?.[FdQ�M.-Qܭ�~(k*V0O�/P���5o#B>�V6�*��3�/�ذ٧dv&|y\ P;�UI!"=��WV�b櫁ߍ,S!/TŻ/X0<0 #qӻ`�]F-�69p�&q]E-}�|$T�ob�^����J�mRRq&*$dI!�)CK!o<
-��|e:���ל��~�_"𦜼i)PO>4{�+D`8/+�#!BܢT0ɽ�Be8FoJi�U:Β&m�g�3F��;,{9;e�z(<7{0N�a|x]�!r��^I~�^�Xߤk8��7��n8�yIP�4SO.&�6Ă*HҰ"Ľn�6JNI��Rv�1"[fP_#ݏJes �=rm�4�Z*K$h�3#^�6`v&$_�UXQ�K֢�g�a?�hĐe)ї/5ռI�x)��фg8U!r܈lAWjkiݒ!2GI3'(ėDH � ٌ=q>�_b�gzX\�Z`�Rw~6n{1N[0f^qяw�y���{J�?Jϴ9՛�l�⬪n
6z'�;r\}Ǵ�^_(!vW"bwgUו6Q))"`q9^\c ȅ3�6�{9>d&2a9d%Z&�ʱBC>V���>3
G�m�([��?4�K�m(ӕB��6G2�HEt��1¶t8bVhq�c��Lt�n앻>^ BcV.aiWn꾑芏+oɹ̹}n4b@�8{6蓮��25R;x<QwfJO9 ���CM�%tKR��^r﵍�E!%v9o"k{|tHQ~��,ǣݜ9(3̉/Nz
_fʚA� �{)q�r:%M
0X?-�MJ>R
zld�i�Ų�aB{m˭�}>b&Es,釆ba5'��~5xYhW:{9618i٘clha- {DVfh�Y�5j̽�b*+7|�h8=�n�X,wݿ���\Dp֟�`
�QxMg�|w7լs�A�"�
"�;(L=MH2�A\E7��>8
��5DlO
[dq EK;M�'~��)첷��Y�R+ީ(�KZǼ]TrZ�][�qZ~`E�!TFk!RǍzWi�9 =!W�/KIO}`ZA�?Hׅ�Ćo���T�օY0U{$&Z˱3��둞I/o$��8u�*o7c)�0E|lR�7AʓK&*2o1yE3�FvT*Fk
��anIuE�[+5*<�3W!�렟=';4�L2#=ȭfŰ2>�3Əj&+�}+ҍl
(>"�F*eP�4�Sըl���A�PW@:Ô$M/1�ce,ʶ�3m�KB�d�N�&K!
{&9�:Nl6�%^�O�p�aF"�p%땶�C0�T.^`�[@IN�,]nY>�w%4Vrv|[H&FU�Z:?�Jd�5!8澖Sy�q.^s9Ld
+G{ԃ.�ցd�o�B�Q'X[o�"��@�#�e%�U�L
TDA:�bagPJ\vy6gyA�cQ/I�7
]'h?�+�O��N f+c�"'ݕ�n�M 8̗�pdg'�Mz)ZL���<�Zky��`ujg��PzȘ_ɳ{T�.|Y>BS(�' Nj{�Q�jL�^p)dT��im-�[2ײ:<7]j
�_/j�1�N0��gF
g
T:l_>O�M:p$<����۷��CQT>
υBu'��!PY:vXaCů@ju'rO5Ҁ���gP|k]�dzhC)�6+~7_Sh]ZKpcmloҶb�o�IEW!1*iD�.���o�t�kFA%tFhQqv9L`rf2qh%ceJzC��*�G16F# qڒ|x"8krkέm&3K46�{ I�D�-v�ϲ%�u�uOA��G𰳺C3\M,_!_.1Räk���!Oa�N`qOU)r��{1П"+]z(S~:r2�TH��ЙOAŅ"v!UyD8MTU^i8-i>eggz&i�Yܺ�A4� h:e0A�
,&��;v]b!Kj�T0|QXB^�l@^A�j�rw:D�۩6.߸u�P��#���v*}O�90`Q,lHN㇜�Pd�$tQ��:y�α&/`݆#/j�@GYU/�
�MD^�ͪ}�I�d(����xef|$4�o;ӤTy�x#�)�׳�xNN9Λ9W�]gK9s��a`nv0`�w�lG�MJ��q &ܭ#Tކ�
_Z{�z{/S ݞ�cҿ,7N�on/t�e^Ԃ۠ϨԻ099K$IP�9o�{yW�d�E�vWrg/*m{���c#:R`�y�Q+�;T}"�&�ap߈>#+!v�[5FcO� V75�@�d(�XG/�#!=�Hvp�ˤzNG�z�1 zܛL>'�YB�#Wd$(wd.�Ii�QQt1dW)L0+L J�mRؓ~d,�P8� }pJ<�;jmpWHQ>V��Zt8l���״�E08e�kAni`�Iͣ2�*W'jAAL�e½�4t�/7_g�b (A�O1q:�Pox�x;H|ֽB�xp!�R��K�箂H1\G-4�Knٶ#XV�U7&jj�i&0�;zTK7��6%M I|HZ�|�
nΎٺzh
\
?�wj\B3
}.�jI$NA'Py�vD_>#;$:O!{">,��,M^y��p$mkHꃫ?r鲓7JH�t*Q�o3�`UI9^c8
U,wfn@!�.��}7+&xqf��XG9f1?LE7Q�96Ĕl?�D�֮�.�]SIouſ;J?+yiOBnj~?/uYw]i[f�1)Ы#�o��Qu?ME�7��VF�UfQ1�tari!�3wւ]}wa=#9��"
�ި`�F�ïQ �RI�wl8�G>-��ǣ�Y'6DJ/O�)Qwy/ "mR�8+*{ԩQ4,�YPI��s#���wD��:�,$Us_qeRB_�0U[ͼ#K�..V#G9l3�DNiŇ{kwq�k7fEl}1*ȁߞ3%�L>hS#��w㳦�1Deh�si#m�掲a�p^2uc
ϰ9QR[u�JBoVHܙY,��CJ)Yls�gt
!!L*3"ͱ6'ey*rD=�D!cz5ũ�-? s��',Id[a
EұrR,4oe�蝬mӕ{Ŋ�Q(q4Kl�q$UX�"��;!�
0�@N�lӻSQrrYԘ$Q�~zܶ�U�=ccsOؑ�PFcXzT[K
Pp��t6A��o{W#0*nHZt{�$3U9��٤|袅
yL$q1$P`Q�r�(*-̡W\�m]!tW�Dnjѯr�9`慞(�.M:U
bƘg%�pI<ŻjI2�dv�J/�
$�vˍ}Аz-eʇ|C ^iQ0^�Oȁ.��K3X)Fw)m�ߘ�QK �$dfN[O[9�L]�vŃ>ClJ⒘bVg*ag¶8�)�12m�G�E��sIW�NԑTr�W0�%�Ruq layBd~BY)��S�ue]�^'�
{R��/�2f�o{}泻��{�X cG�Fgެ�6ޱQ���:٥Djq�ݱ��T� RO{NW.(lFS�Gd!d�^fN E�n��1^��+$�r%ɷ|�G�usnh*`Þ,�{<�,yh�]BNcm"ykȂ�ak':q�KT[l3�a$: nUA{*%+�:F�7
Dl��싟Y�%Fç�42 ms�lV뱦<]ڒ73�S\f�~Rp.���JؒJ7c5i'99qe�1pݰr1aΆv1W/%OV1��@QAYys7$QbS-�8F<"L55|�D% *D&oH`k?�JJ�sa001_be�Fɳ,췻0�c
2�b?53|D7snlLv;�A'|L���ct9)��/q2v4\ᅽLWmr5k:E�tMO1o\
aP�)o=9^�iq�$+tS��z�J/'�K
�e��{Ы}
BkO��Ө{�j=慶7,1.96o�6f��?z�L@3C-Az��ߛ�d8���y��X���qEr�h''��5&+83&�z�}r�qB�
7{Oʾpȷ(&iMTR8:� �O�A1h�O#y�!}5ݬ鷚Y�ĥlZN=0<=#�
ƪ��E-Jh`taS|iu@E�{X}'H$ᮥnm�FP"~�E��Xd�$>d9VſtVQ4_�?;H|>��l�7є0ԗ�K�~|�x���mz0�<��� E�v�L�9�%F&^%|��̬a�'{GB>b\#1�6`-�_̖h\ |�-9hD�
!�2ߊ�:��)4�t��Ò�ˡD#�d�q�@!sA�;W*h\z/��5wgf<�+S�Q%(gFvW/i`�4D*NC"b:?gz y�e
"c|o�Qg6$�Ͽ�{ǵ��XzMSjT�V'iiV�HDpژe�@=�@G}(ݢ9��q?
,OnٯS�iP20K�CP�h�Y'=�8HwUlJ̉�>G��|5:,'Vü�©=�]
?z`Y;DCa�ad&��l̝�Ť
�~͗\O:w4_�[�zwyJ�@\3nƮZKD2"�ʳוnb]nq���^o�d8J�
ZDI�z6��5jȻ��)�oi䦳4t7Q1N^DZ��>�ʛ\�t &m~i.t]Z�[jt�o� +냹 S�tbA퐦8ؘ�~6�t]mp�Ku$4[b5<�Q1-qϹ7ך4t8zXS_n9$ڏ|Zn��Q:K9!Y?A_>=g`
cf,�Q�>��:m+d�ԙ4F*9l(EWᑪ�ji([\d+ݬUHg�8q(gf�͵b�}"�<;h�� {{:>�P^-/Q��P*�=
K}Gdd;?gc/?\ux�eVQ|J��ED#TBB'a5��n1S��7 �}s
䝾,z�M/9aNM3�h��t�*'N=V0x5 _2@Sc��G�5�9Py�صʕ7
\B}bf꾹%X>ta/�+Mo)!٣i�{��q槍"�_NrZԯUn�^�(^T*�<�#)|&��U)%Xd�g3X�C�萙�a�#_C)��}����TT+�8�TÅҬ�
�+]UG!ԏ}M]q
rPƠe0�!GU'`�OyOv�>)(BaB(..>:oj}Kow]$RҦl2hTHeK[Z},XE轢�os]p'ijdt�ݧJIl�,�ko.�aAʥsgkpT!2t���kW:{;�tsG z�*ib6nje�1�t7n|��ͥHhp#94H/CZq.<��>$�EY˩�6�Þceo\ͯ8l٤
sO@�]U`M˼�;75�?+��+k1'0�P:ߤm��˜0�cV�S�HRqB &2J3Sf*d�y�x|4�l
�Y?7�-V'=:=�x�Xwgx�g��JIa s�$cdYI�\E�s��@L#<�iӢ?X!�ꪶ�(���7̑ٵ�Wo�f4�C�7.�D'y"IU#LP/JuƤ��˼XHWz<�>�;WfAJi�I2pF�sX\xG`�3({�63�����KP& �D3-[��uX�D>c0�~A>�/�:u.V]Jވ�kO�@LKިe/�ZqsW��"V��sHZ�NjHgeUxCdz�}|Ht~M�f7ȫ�e}��*BlV�A5yD� K<�#/wu3`$7I^]���~[�5�4�@��,"�
WՆ�iz�J^�ÔuZg�ƹc-��M2Ƶ�S([TĠ*:)E'+'��/P�n�m�F:L;egzqВ�4n7&a���ʁ�&%�WFJ)J]" AW{dK�xX ŦÈf�vd�hoΦ.45@˃�4�.t�>zCҒIm����Qt[Np8Z)OГQhЎ+Gg]c �a܌QNv�V�ҡW؏7:�3 !<�k�U/&wblG*-#gB>U�;ki��m�)Yո�Ì*n y�]�uR�E$
T6KR>|-��y3��P�aWD�;Cm4x��ѻh쒲y|�v�j^:PTA:@�A!!]�t�Osm�|�M�ZlWQ{'Ļ�vm.ڈL��=phQ�G�WA^0U�
���_Ӆ-�`>�7}�<\ͤ)�Bm17�V�F�9+~7T��I^aEJY�-h^"@(Z�,Z
|b��!$<[�Sjڔ0r])ҿ5�OH�'V*L�4�e^5H�d��jqeJ?�F���^Av�g
J�k�%;&,Gp(?�c{@N�^
˜FI#�F̍+(0
'/YL�?;G�B6渙B@-���.�C|V�
�0F@6Bw�M
=;�`�$~0bب,y9&@{y�v;s�0g))��\2xcV�h0KpNgMNٹk&ԵdZ��\�J�ӶN0nnN^B#P�p5UJa,WzʓD>T+bM5qՐk�:XZ0!Rz*$%qow"WbZ�53(AV�Ⱥ�HOͤomA�,1Uey,�sf�!ka/>/]8m`)�0pa=�kIL*��x$w$Gk�7}9iT}���oO4�e2&�w��FSnB�X�pS3s0p��?.@C�K&]>q��h>�Nwiba"5:sٌ\&
B<@�M�-�A7KF,~���)gH�evC�'�t�j@Rn(TY� f/�ׂǜ�_gEc9|(z|t.pzhw%�_Ym*ƪݞ6�� :u5|'�*6E�E iNОQB�=[ 9ѩe@o
mbC'Ev1I48z4(G`D4�wd'S426ԛ53X��2K�+O1���zs!|Xq� mi-Sx�lkl>^URyq!k@�9�ep-%Թ�k�bC}�M;���jz)�S���h��
NWwN0he/vb>�叅|�G�d
X咿>��~(�-*fΖ�H�q8b9�q`G�:?R
Y5p~]�b3ʴ
�Q_!�!j�&I�c-LBm]`�>Ra>:A�
�@y%)f�̋+f?Vn_&w:ק!֨Y��BͰHu�d�6Ӝ�bM�V2$��Hx�y@"JJ$!�7�'�F{t�%�Jf<۩nBC苜#O-61�U
ůYK#6
V�ݖ�sDfAcgAik4x�E�c8p�q:-Ϩ��v�tPD�ܓy��(;M�Jv,Η�Ec�
�7�B�EB�F
�(�//Fmoyqf
:��vnt
0lBY��O&7al?KTLC-ͳ�{#ء}�ZV@JQeuJCh>#6�3=��BV?Ao|%Un=cުGLo H�2�}�DPCj}��߅N-B�\�w+�$I�K�^R3猴kgA(�$�X`Fh��lN���}Z@N"5\�Ѿ=b�|1q�3�P۽�&����D.Іph ˭/�,rC"Ϭz?LÎ)RƼ2(`}]28��(0o5F4D �o����sGv�0[��p�#fɪ7_�~�V#%�}*��ǵNg�.*�h+R�A�`QIj1�ǰc��f3xL�o͛p#ւyb;#bk$~E�0Pr*!%Π�w?%LAzvW5�ʥиc#�yx,�,߅C�l�(,,ig`�p"�Uj2�ή�Q.�)HC"j5C4/8
!� \�zf�2Uh86
�H%�\�gR[l�k]\Y[I//@�\V��^�k�o���~Xuc>_mDW�USY6YI
[b;��B<}ThU,a}%Ԛ��6˜?X�FUG`ٯ6�զ� c=5�N�tao�l2X[s`ls85L�W}6G o���zhB3WuC�L�a@7:(VYiSmnlBLBM/XZ�h� mh���h?xXޔL-!="MP0Dg}>ZyY A@}rcU?N Ã�Fnk}j;2DKO�+f�'xOZ 3i'�ػ�M�83
/Ԙ/j*x�'�9&�\X0J&�>jۋ&�d`�eOH)0]�L5R�Gt x
b$,F&-�?�b* �΄�߀\`PSI�A2oQ�6��x�qB�{��C:uZGDЦkIyD�l _5L7ᚠ-�^�O62F@*B�f㕔�-N\tm�GM `5X�Zo}۱c��{}��Fv!pMǜj (�Jd{!�Ľ#`�6A8)ujY �xZ.WiHG}VGĴ�]ƍ[7kZ�0y( \A�&Mg�c�a���pj)Gc̗sgfh/9�U%>p�'$�aj%�iaO�FE�7��o z��/.�r
?n#Cs
],?U#n�y�de�Rp�h��δL%�V*�4]�svq�+'++�P̔Hҫc�FӊL0
y 0eI�2�1;�غw$�eE?�+A`6�}
PXӪr沧�l'�VN�8Vրw۵Փ|�P(GXX[�Sj
st|:|�1ɠ;o���Lc`|3�!cJ�b\cAi�.r
_�г?okDR�HmA�*Oɞ Qt-7Mf�9Y��D��Y`e��b}�hB":�ݘB h%��;{@LP?�E q�7Rk.�"bz8
2mA.�bE_.V�Z\J�_!Wx^�3?jsD�j9٩3cL��p. 6-�l�.<4��Ώ5峂P�Ѹ�I�6KO־P_%�=/��zQO
d�Pվ[bQ
®(�3����!Ι1R�6�n{d-됢K(]l�t�IF�&�3_;|K �TB/\86jjI�X�<"�=w�Cѻ]�ĶT�ݶ3�b�ɋ-i�8.=1RŔ#I{�E+^}8"xBb=>VmSMu7qBDy�t8ce�63�-p9S%8Bސ'z5Wf>BO_+o�
|!&v4e[̏KӒk-Vl�~rTmBZ-rؾꚚ�v qxvN#��ӕ���.��sʒ=�ǿ}9+v� >I�cbYJ+�p;>x2�VeHl��Cjs�2�J_#O�:d!�ZSB8����L&(ŬC;T���@�yeNGS)cKTCx�
*�8O��k|���!-�&�b]S{@ń�˰~�_�D;ͅ���vL���Z;wμ2A[K0:Lӆ^XjB*g�jhC�tT�В>s���>� á�_}R�`ӫK ɰ[Ҋ.wY4mJ u(m i�`�_�?�Ӯ)\rрRKkp�U�%�{$i�o٣8.*UX!a@XX8UkZ[�9mu7ܠ#[0y|��wmaM�`HkT�4�>0�+>�
Oz�o@_3( n�)��]$3S��|���9���73__[)oNE�EN�jvIĒx.6o�FLR�z !{*ٹEaSwE5i�(qU8O4Bd4�D6�Ƃ4nqeP
}W%ֆE�*^n*^S=�GMN";!QQ�x�^
=SJȡ�Z+�3K "Y0toe�]<䙆�+��y .�49zPI���&3,\&^ rq8�uZN?[bb/���JE0{*ert[ú���I�"5�p�����qx�|�yҪy���Ua �C3TUBF�f�S(�9PL�P�N����i�D;ەZ1�~G�<8WdE�[*L�O#�4u
+�X^ݭt=:nTxќ]nL?Ov0 �oN53nu5%]
�_a�F:Կ�潕�u
@tM�ДeX��(�lA1� pJb¿y��Q\>��hbW�+�gu`��vwh��`ܑ�_X��U�-��j^�"k_D(iaz���J'gx�ǜ=&-V5̛OpQH=k1�b֎��MKLpXXYTq ���7Vl�Y�06֘l3Q��I/*,IzQ?=jsd��ūI'6d+1Ŗx⋊k�Nk&��]
E�"N^?K6'y"�i}v�x% ;WRh�ӆk�_K8*o撩3B=�pfœ뎗j�+Qb0 l sVӧ�&v�9qD6[/ aAuw�Z>I*"NUU^_
X�C:?L=נO�$KZu%�}o
"~�N5� ޗ)?�Y&i$|(G� ޑ|r@�L�Β�#e
g"챌S�G(�Z;3u^�9y��e$G�xAt) B⊟cK>_s,>ŧ?eԨ_n�ʔ7 Ns46סQ�
gp2ѿ|f|>ߤ���%;LU�,�iw dxlT66��Tx-1А8z
]2`dUFob>�&� \nYm���c{\Dke}&s�o$8K)�f`\caӒ붧⢚��xh�M,{Ԧê7>:M�s2zv@IOi^d�r
j�1eK!;i�y*Xw��`G✨�~k���
G]=[TS1q|VT�(�,r�?.{CQQ~V0Yox
C@C�$~e{n8~ut(�fҺ�Qr)~\\rg�-��~p�b�i~lK�yh�jD�w(_W;GY��1`I"�` '/�}��)=
c>V ��W�G|�R�z<ͽ/R� ��Y�K7J`>8*rVî�sa�}�sgx�9Z�p�chL:f�
tD+�hQ=8�?B{�'�JHnO#�͜eC��Pq�E]{{)!ˉk(Q"Ѯjxo�8p���Vj.ʟfgoA>O0ZV�Na"|>v�_p[(ok7ԭ<.>ɹzyjK�^1?�BFE�Qؒ�R&�?44y�CK6XnZB8э*;`?_8h5��ahʵl1J�\=ռ����4,ACBKz6�ϡUh�rV)zcAZx̮3G���6_N�̇ߠޅ9'cbO
�"6�e��],״!�g]9|;2$7��h��Y[5IO>wєA/NEg3,�GC�T��|R*%lí
~�ÿl6��5GX�vE
+|gs0IU2G��7]n!~+�fI$i�4wUķTҹ�-]I!�ې+;':01@E�Y�hp�1w5�Լ^H=CE ̴�n(^n�3W�M�D��5U}i\GU9zT4Ĺed�d�)j�
�5&UV4Zn~po)�~���&�)
<̧f�VlL�i+�b;
����-o�H!
�30�,ODMo.ioi,\j
m,ˉFW5Ҋ̦ct|A>-߭]�w:ve-
?%�,YгEQ,'Nw[Tw߮Ygs�m�Y*O%X-kH~6$'ky�A"O��qc(ͅ;1B���ӻK��l��9D!wڭȚl̳iU,=E�/yj�,.),lĐ��}e[h~ITaGI�V���F v�fi�ZB:�Ǣעy${��**?C4��풦~ߨdAo��Б�Gs4b ؝@c59NwT�QdOV�s�?:Ч
!��)@��a$b[ߝ%g���[`���"�pŠ�Q]u1��v^/Լveg
z0%F[HV�mG|�����l �dLY9Ok&�B�A �5>Ț4 >�֧4_QA`YKrL�I
R
G3RA~īC�l�Km�JK��3A�@m̊Cd�:��sE><�=�/!!�)8˔Ec�4M|B�F��g��{�(\3��-�|.`5 �8-�LyL!d>F?y0u&ާ zk|�D�)hyt�ZR�$j& Af��Wz"eb���-
0b3O�b�}͌tY�;#×;)�Q�|)l�!�:x�<._'� $0H�7kWo
^��n6 ��癗wAX!V;G�Z(�"��OK�X2B?@TSJ䉰PDxbK7ƀM}ToI�7Q6�z$IW,D~0�ǿ<�;"��5ċaP|{y�+�n?G
B�F���]�ʴn-�}^ڛn,%d�;ϔOFsv&>H�:����KK+rL8�.W�
3��qfm�Ml�+ !u28$K[SV~iY&S���{x)(���VO?4�bkvۿk�;=Kb!pyuJ F9Z�R�Ʈ[M�oRAG7�[$��,-\�W#\|xU3}>tn1]/�Lٹg
d�s�э%-�1�"}Aq8y�Ƕ})
O 4aڢ]ŧZ7
Zx~h>��P/Y)��VzC
/3�J�IzGu�/��ѕW\b/�WB>g�\5$:}j|64�sͭi�b��_a�CFηM��!���3`��J~u2ӗ-iku-Y+�v,{-N5�30.Z��1TiU9JPyeNA�<:;x'v
_ ǠqFeŶ۲�y8�ɗ?W�>VY_m�QiH��v0J�G4y4n%=���>�n_ �
�$�H^�ŭlW
�o2;=\X�+J;)��O(n;hsĽ9�Ӄ]|li\|۟Ъ#6#C����8�
lzGw4,I]ܰ���GKύ�[xt=W�� I
�Ƅ@Lo�ڣXOuɞ��O/1�ؽ/=jhM'�s%%�@��k9f0,皁I]Y+HQgL< h!Aᯭ�x��f[p=7,�ېZ���GO1 O"%�xWު8|����ʀx�r*v#�*mo6_#\G���9Or�))k�s� .~[Sר�l=F�35K6M8 )�
ʊ%#^�C^]���/.�`ki_w��r+[ԘŊNv#l��I��iT
e#["4M �WifX&[!���w̓ƨx�mK�]w�Y_v�`8B� Bl��G�u4�]�n���p}�םכ6ơX䖕>|�1�+�D&-�C��)^fE
Pׇީ)TÀyM7>FH�Bvb�`Eˊ8��AIIXh8a�V=
u^sp��h$�=۽�7p
u�NǧQou�g0�E/Q.(�w%71�osZ�FTh�+�"!�#p�dD��� mW/Ƃ��`��oF��tYq]NR6
z�?��]xY�Mm]A�ʁ
6sڲȀܙ彩SJh!^��nj�O^}Af�.���db|t8Ťl�iO�.���< (bdY)}TS�-t(��5^r}��v�U�q/HM+l[�� }:ab.(�5Pӓѷc��i,~IrK244˪Lw�J:uئ.guڂ/gЕrBp�a@Lg>�٠t"l�,Ppz��Vd
�lJ'p
.v# 8٫ind�ʂ#�(Drʐ=U<+S%qR�9Kޯ�ryS�8u͟wi^��n3uݑT;qR]�͆|eY~9�$5x�<}�=f��\;%S��5LL'�;_dPfg|1&��^,��ƨYѣq�݃跥-_�D5NSλ�ʬwzqRط1qņ�CBy�*h`<5ٲh$:+ (ms�hX�cOet>.m$Q}Jٰҵ���3vSnPC�u⭲? 7���S4�5a^RJ\�,A˿rS{,X痵�RzWw �
8]f6Z[z�=3�ǖJ�ҋKȺ�׆Mr�f�ca�~]� 2(��%�`NӍ�G6Ef�f�8 �lƵ�AJt'C�j1"�].5&\B[BD|�
Aq7�ӌ1H�@W kJW ��W%G*upy3��;́q@Ɵz�����!wH�o@R�Z�A?��֟h"
KJ6tT"��}U>#�.¯�v6�`g �EړS�dO�CO
j[
0�7Rz��S�6�\ps4lt5CtzWV�Kz`�X=6/Xe𤽍)$�_J5[�����*52ݳCd汯4"]=�l
R44�vY p~��2(�9h3��s�ӳ(@Ab]^�Mk
m��\v1"_�c��{|��|�mȐ��ʂ!)�K�WD�̑T2N6D�Z�_ޱ/LIH{�a7��E�u90 �KEOLF��.<�>:�+b\V��m{\�ĕ?z#��lư䩗
A6�G-J >Lt�Fb\3��&ϲ<�� �@pywچYTw'RzcM�J ॉܟEr+5BHFv�;�03� FXRih?�\m:I].g�$D
5J{�
�CJi�%
-=IR-t�4S)����v{B�]~|�O0�G :
H��n�Q+�V�7(ڑS}�~1 ݯ!_D2
\�9G(?IMb aK�~m䉇=`o�A1_BL4F攍&bHA b-Iqkl8ODY|u'_+.8}Gg��&o[)Y�5p�p��hm/7C'�
txC�Zn\o(Z�4~�9��a_�P=� /��o5±:��q�@}`�@Kt�w`)��+'(�c13IXj8M1Y@pW`oP-�vq
U���+�&y l�@㣠�g�zejYEr���#hȧ!=(j �2S.�Hh`u�f6ܖ�d�E
\SXh?}Υ탨6ˊNe
^qP:;E�FX>wkI�B��3
b;�iE\:96q;j-=�z�7L�|�a-KA�CU`rlUW�|��4vZm�¨5G��'w^�:1mJB7@QaFJ�a��Z�q&X.�ȉ
cؔ�p#P!zQ�k*І�Q/�3�5+g�17uH~\t�E-Q_^,YbGJ@$C۵c]"6Xb߽9o/}.
��g�J~2J>Ln�a@�!��K�U�q"ʸy��ү���zқ�r~��Zl��3�!ţ�7![Mrzv&&[OA0`24�Lɗ#tR�N ���I!=hbh5k�� ɦp
x�۟�`��{,�M%%�1����L3Z2bЍnjE��3ؠư,v
µل*96袔p9
PHȕ_[��*x�(s��.["M2BHYOyŋ4vJ8Q`%]lܜ6>\`�(TǷ� Z0��aq&z
-2 �B�T�
Sa
tXCl�G��R@Q
r��8<�f.0
�QQCawp����ϝED�;8�zm` |��e)5yv`SW%Wш~l�ϬBjҦ'ׄ"e��UYX1ύx�*5V�p�\=fםFT-r��z/��6eҤ�hC�!N{ykƶM�>q H06zTbEs*f-҉27��7n�`w:a(Ԃ�b||B�9ysԪd"�2W?F3�:sXuvņ_�.|E�A��v7>W�D\6:�J)0��;3x�X&�1ӠNXtesI#T�=נnw˓�q$
dQ~�N)�3`V_(
LS�e��Zi͓2-FZ8эr0`P+u�`_RE
�ڵ{2D8V(
n�z:YvM5�ʾ�PoS!#EhoD���[# E�!ڮ>�bsԊ]�[b&�R;[��N�J ɄzhRZIZ�BCS3g�'ӱSG6,w�b�ߊ/�{�m�nu�5gVH��K)-SQ��WO[ %B@}d0n[N&�}T#��j`_9
F�w�lG#w�! �d/r3t_H2Y
UL[��K��kO]�M#RT;`2խ[
$N�LHJ]^�U4ʿR
*�)W��w69�G\�9�n]
vX0v'�DArӇ}O`&��XG8'9.Y;��z�Yd̂H�;dy��)5sʌX�S
?s[<�|�Ś�_�]xV423؛�i�.�Ve[)5v9U⪕"%>gf�-k|H��Ar�L][rsL�.т�QN�3�0Zν�m|?(v}cgزԀqK�x#}�1�OEo?�!QIKւ+yC�}+=G
L��dzX.
o$f-R:�ۣ<�n�<9af �ו~b��y���¨]�l_�-*Wf"11�
rV"AR݃(�є_U#g+QL6:4�j�u
vJ7-�^��m~E}��=;�{])v3n
7��$q�z��8^6G- �+tI+y8/��u@WrH[z!F��>O �ݼvK�n>fSP
u
d�O�3%�AYVAb�vff%D�4,�$�Oe;q�]"żϞ�k.[ʤ_|�h@V�xaٸ
B._�d߄ȯ7�w>�oO'sD
�$F% ��zp!c��u�p�O��qŦho�owK.
�"T R��%����߳�VZ��ŠaaC(,�gـ��R�)�=)V�v]&���b8�7[/0@c�k~ ,
��ОU-uZ6VjV<83K���EQ3�Ġ�J9B/`[),;NxHo.UU#2@}eC-�ʾR�(n\Ёvo_XVaKѹ�]2`ۧ�kL�e%z`%NdzH�yP�WfHE5"LȄXԕx��1n�zd$�K<.SAh�r&�qɆ�B+}0�h�#lICꍷѰ}ciꮍ`3�_�gL4�Q�47-jo}�Nu�:;d)�3cL(�dEc*'��#�~!m/�q!_�G6rv4�"�!`�c 1)�u��`�kV�B�#?r\Cp
�f
��pLijJ;ܹ{yP0�+}(b{JAՓK��"yW�qE�9e_�Q7lfc}Rz<ש~3ߌ}t��0�tV_��dvx��
cn*8G)wБuV�qQr�o�.7Eo#F0ﮬw��
.ơٸ:�:0./&9
8v�ߜ6iLGϺo_�QjIF5Pe�|-K'Jze��u$�ajh=}�#�-�FO �8l�%T'p(y;�3̏^BY�!�X"F�Gxq(~!
4�6s ^Pپ,�U0VbN�4
CB~�v�(:-���u�[\9ݝVº5yN0n�P͚VX`)ì +�+ix!8�lܖJGؘ��aGH`�cZ�G$qfХ�I>mb�E�k=�hz��r�O[ġCh7ԤFv;T7藪�V(�1}5|�Ģ�p
眶84ݺ\w�#ӏ�)oaM�U�(7�Q 1X?>AH^!kٺ�-)�"^e{�Gϣ�l}�8)*ƥ#��u_�!OmG��_Pńwmv<��h�@èYR=o;Bg�
�/���~�$�ah�^�щ�G:e8ܸ'Z�(J�s5�-8#�G�6,ٺ �[65y]n[&
܉�>ޣsC_
E9U���9%;Z3|лL=�2��m!��NYe֫,�K&];WWjYo ��)]]w
}�ax�`e�UA�
#ғ5/�RJoNN�N�Qsx�fg>vv:z! FSL3>�J�&j��qYYR<�q��ѬL)[ng85,tR==:z�0~�zj:TՠON,U&�9V�i�����8ĽlT��G;4Ͽl2ЕzѪ/7Ո#O-&\!�K#l7�*+7w�
ϵ.�8l
Ӛ&���%\�Wuo5\{\Wn@z�i��C�L�ܕ } _�6�jw2�Lψ1�A��)ȕf�ij 5ʳ)D�G>rL$o؏ơȂ1qƊ�wk40a3xRG?Ϟ=9l�^8�r;��P!ƵjJ
UvY��5Ip=B�=�z�)��|RD% 7y�u�J�.Y͏@jx\3z��iY�tR�ź(R��ŮR�w�ٯЀjHTxC��HS�TR|V?�(e=�9C��ɪC*w˃QN
y�B��9s�HDgq�$afq|Kx"�*�ĺAb8.����|:Vs~~�OI_*@�ܣ29hyZвY LFF �f6�u��w(2=Ϥ�K����8vg>ҙcb*s%LP��bTlgA?WW[$~Kru� >״~���4(p��D�?팩(5uI˜'nз'yOӻ,/,�py2
m jO_E���#rXM
i|*|�Le�GG�7;X�_�"�s?*VPMvuf�JO |2�a:Z_k.��$sTtAa#X`yq�1^V@g�ſkΔ� OY@Ayd�>g׀�l%'{tDe�*/N��X3�]f6���͘ie�.67���~8�ӱo�ߘ_y��9%@^�fa��iDps��5!J'�
vD��y*l9��ttCf�j�Ķ:}�RP�lY"l.|
I��,9�qUtg�eEm4;�>V"eW0[|GJr�VozSS\cMo�S$2=~P^
Ykn�qvb=Kz��0�y�Z2B��XۑJ
47ܙ[�-�؋�TD}�3@�It��(oƂ+\o1�)&�ڡܺYP9�p'�K'$8�@�5NBC)s'�ׯqDC!(Ŝ�X.tZKQQߘɡjѫk;��&F�DHڣǿű+A<[wWhah#u�,TWX�u0&��1���cqԒ9'T�"QGtqLn%U`{.*�k:�ԣ*�x<̃�2f;Ʋ $X<��? 8)Hŏ؉)}�6ť��Jy�7oAxc�m66v�w_mS5L��tಢ%MHEJ4[ԿBʝMYm�fju�@?.KZV%{c!,�n�a]A%X�4-,�?M�~Yo4W�>�#K
'LX#v_ihL-�p�6|'6"x�|錹r�ŲE�[YenB &��4O�AVTc;�Ҧt#ح�
֕Ǻ't96�D����7Ĺ &A�pć�ռD7a9^TiʹŶZĽGW�nLU%�%�zz����57#k;Tu�P��W���H ;JԞ�6nI2\*ȶ�.Y W6.�*�f' ]12W;�NH�S!ZfA��ARk8?s͕��ˤP帷ɀ j��Ot-$jenI�@�|W1X�xo4Fs�m�GsBC<6M�4`0cMn�%#[!3%
'(�/}�^Ϙ`�o h1U|9~[Rp ,w!Gh�44Jqfχ*
DO9F
"V�ޯmo]lH�� y{~~+�p�f67ccүa���
-=~*~gNn5_�
#9}#�8! x`| 31-3i��!���'
]X;��BMg jʮ9
{J}wJ�DW)�6�oZM�>`:c\5vP2�8ktg�ox-q�߅5
ܪ�hJ�O�c�K:hde[ EL뎍jf!��TgD6"7~Xi}A�%xa{N�5R˪�xhTܸ_59kZ
!�K���`7p
bC*@Mi˹tS@
U=�逍+<� .y�0�jwiUyEdzʟ�..ƶ�E�_1p'{�
iDhm8۱V�+%dv<,]�$Ib`G��S8/�ʚ'`Uo2||�FI>-l�X3״Z<��?3I�jߌ;@
�='@�2i"1s�@9|A!d<"E'.+0^�6RשQ�miP5RL:Z�7 olS�E:T"O#[_4�
��͘ HY<{>5�ɈA*FP3MhWeoRd�TdB�ב_>dVw��*�)]RL�<քuzV�Y�ZSR6Ut$]Kꉦs�YLeYEh��8 6R�h2)�[Aֲ)�M0�m�g�HȤ@��qJ�@6IY*.53�%U� Uv+d$�E)D/V@'� ME.�-$m�R4qDL&uJS@ .mrI�
2|�d�C"���W<(O��Wg$y}ډ:�>�.�>]L~��K$_�A}{Q&H�q?;��0�M����ek*"�2Ctu�A{�kULj@\t��NH�ꆥI
ղz���ϞW"�r?�{8A0y<:�F@z;%bMUv��:B o�2�iǒ�O1,9D��c�}_��iI$kD�l8l�/jVjG7kVZv̇8�Ѕ^C;E暂aїat"?41�.b�9@7&]_pWTu:��ۊ�%\�YW|u%0A)�>my?Zg�"2Rggg))ַ�*�Uif֑/`
1s��3Rv {,qJWX7mV9�^Q;'X]h�wL�B+�mPeRb$ۨ1�/9*lA9a� WQT�$4_Om�g=y/�90hOBz�Z8DΫZ* K=7YBEݨZ�m^*�>�W�ە�9[
K(E��d( pKӃjx";L��D�:/Cehx�L�^ر@nO:BCS�n;h*kYe#�/�$f=lE�B> g<�dbJ_�?
�2Q�dP�oTf_ܹr�-;j (�e4ZP�'�? ̀�nyv[_�qWW�YP@�CP�Z] j+'wF��z�%G;�%_�by�p 9��>ĀJ߾�i�Cռ4�hY7chI�K,9���Uy�`;ս?al���8��S�;a8�heF�
~ Ł�X}� �r4�
�#}fM�йΛ�d{�}�kx��vX*R[vxqE
.&Kq
{{O�nڣ:�C�b�t6gEde;+N�!zռ|y %�$Bӣz3+W:qݥlUain4 ~Ƙ<ʼn!x�?}V�v(N?��6Mm(��ih}~K!)/<`}C%dNx�Z�a'5B95k]?T?uu:i o-�`_>hXOj
9&pynAK�V��?5݅�XV��w~ݤ[7֍r��:g�h'�S>сh��/�4%[�ѥX.]zvK/
+�Z=)��DRiSZp�a+41E�Y���}Jzsg�� ;GNJ��1ب���P*2y�+�.�@�y��h6vAh!lĈ��h�އаQ1l(Rt\HJ#u�R��/�鈅S*3�i?�Kt]��gF�͎��\ҟ-V-Yn!x�0�q h�lt>�GRKKؠs(
A*}�lvBq$,z�w�&
rb��3~?$98kDgQU0Þ�lF\%Ui*+ZodTI9ГbeV>C!{'n�/6/h5-KX��[B95�q�4x�d_-Ul�� �>�2��X�8�U�U^L��ilZW}�_9OgQ�}H�]<���?:AŕMu�#�ǜ%$bH����"'!6�N����<دTu�m2O&D<(Z/ [_�Xԧ"ǒ-+15.W6Wvv,�N5Ǒ�G=,b]8d\F:,m\YԷi%&p)`6n#qۍi�q��w/~�DlvGx
z|Z>�"#�`:
KkqSjœ8B[Bd�tO:x�Z$jv6�wU!4("�6c&MS���/'}K[[tfIGݡX����նH�}T^dә( �|9whV-r 2~zA3dwafV5S_&zyI.!,b^cg�)9ջA��%)-�ds�5 p(Bc�.WKɛa
\-�!S<�b�L=JR=x�$D@�z3�ߧ/i[r歰n�vUBnD-3E6� sB�<�«F�qwõ�D~n ��25|u�]P"2EGC��S�}_�7o,h�gm.��O4�i:ɽU;1hZ&� �Tq/�2�_Zd7ǰf!�)8K2��+O>�9 �5i'v9�._�I��^M.mu,���K[3}$aF& !�sc�k�4լ�4GûQ>Ưd�us^��N�Rb�dZ�3vB}|jvGdX�Ry�5d3�tfq{Iu�4O��A]�$_Hv�2#/��{UM.} N6]G{tm}+?�Ư�M�An�H�*Kϱc�e?]떭!~U�@T�.Z���%��\��|t�j7 0i�
%s)XDw�P��p�}�!�|�'- _Dᨊ�~{�mX@|��o��/��(�UX��?2ȷ
kĦv-��Eo-F�GΕ
Bul�Ni&|--36o�t�3uFV,/8P�{(�rJ[�xL(D[V�1I0�nqgp�&�e9ߣ6-V���ԮHFz�]N�t0��*"`+In
_y�#}3Ǭ51H�Iz:N��BJ�JW+`r|�H*h��P8.�6�
DC�Z+ng_f2Ţ� ,��7t�Od�ZO_0(l0 3Ljl-�TG�ؗT(\ȩ4\'�S||8��4.fV!U䰶x0G��ek=Ey�b5}3���.O:4�1\R�u)t7OGQj*'|;?
HC\zӑ�s�F͝"a��5K�W�~Ɲ�bn`⡵5oX�EH�g?Ns�5;˳�aC-�&|Z]jA(l5W̮d��F����ζ&,�0$ԑ*L��s�Ye%}1#m���,FZ+VqC>
tя^�y"�+S���lsY~ۍ� r�cqx��A{L��^lGb�U��>y���=9�WnLfywÕH(߷d"��G;[%#�x墊�\�4wI49X[��@'ۻ��"n$bn�H&S^x7FEϕn}�1lt��J�a%p^�R\� @&���xZ�<9��]R�sա~Zx>x �tRaϩo�ɥ�K~[a{�}gQUE�rcoTLT��Żg�k'N�T��W��0Z�fiW�hoӮ$hwΔ��-,&�u1�'Qݍ)VR,\%țL[_Ax4kYV{OL�DTl`L ��9�"�t�%�Gn;72t9Q�G��\}�o�cSe���@NXC�F>��p"K!MZA�:�?l�_wh�"r ���n B`ľ�=lq/l0Q'�Bbl=72z*=�\,A��D;��SG)���OHp^}^�_
�EZaY{X.ZعF)��iEMV���;4/>q��bռ�!g
�=#\�xK}QU7bvX6B�NE�Se�\�<>jQ4#e^-ĿJͳ[$Dc
ڟ+̤̙qDۮ\Es�!RQM�ast¤P�!`#�E]:dɴ;��9ĖUԠ����?K#e%J7hJT}�>s9^5|yaA�%r3 UT�D|�� Zy��_E�CbrH��%�l��,�YZ0R$�(K<\-sg͟=Vn|~3<ɝ^lgخCu���e�)�{<�3:\cOp--�SRth\:�JfkÇIb>ZռT6OF'8t@.�F��*
�d)�,�~+t
g�1�貫>��8R��pW-�,oکމ��D1W|�!ӵ/�ag9
usS�][\s��}F5{S�p/!,,"U4j7QYM`E[;NxfmL�8
`F�'�(*G.�xQn.S|#! nU{x0�rCs�EcQB�/3ox/.��^iF˕KH%25�b555���7.34L�i�ӺxB�dBL|1MJO��0V;�P+D
Y��C5鳓rӴ*e͞��WqW1m'�^�
>x<�dw
m?��D:ǻK٬՝z���+�MXSF %����^�եiʳ|�w�o�Ҁ*)nyӞ-)�4 _&$!ȔҞb!\ȣdFS
ْ-Rz��#}eG(��i{!�8t3ƴ�|ar;J?Q`Lz,q�Y�Z�
tq܋+T'o��/(і4�Ti4ѭҝ CEklP,Uѥ�W�XeN! K]Ϩ"9r_*w #|9bDF/'$ܞYU�xv��fׄ]^kϖ�{)�J��(}�U�k��Bp$gNJ엞ִ7�-{eO'BVo���eτ)
[X%�Τ�/}�b-%puiދ�(Uh*5.k`�囩T�CAZ�7$`<�؈S|b|�{L�>
1s&߁^�N&s>�`a�jA|,�M�}�ޠqJ�p(�Z@L^ZU�oģEհA�Xe|tV0Ͱ鐙/P�&g`�7ZP\]p*6
_-R,��mIkWZ/(xcB_����[3�5Vdv
*s�D"�Dof�=�;Vuim:Ogdw�qnY5h�us!B���'R#+н=ܨ�|zg&֍�Mi5r�,�Hpִ�!pLK��tV�G[˔P,^Oғ,X#I�IQ�a4V0dN�d3*"ӛ |!Яg^PU+E>y���t%ɋww,8@
>)�Qx6$xG/zf�DQ=iIԯ-.�I-I-A?�H#-}Cz�_w�}@`y�ü�KS�>
#�l1x�y�N�2�.�ʄ"�ҏ�'z�je.d�g̪̕�!��E xd֟e.'Er��s�2F`ޠ"l(Ps@`[88�pˑ֚P^ewV�5�8>%5.-�?p懶i&[mIO� ʝd�o$�-n>[Hw7~38�oU1)>6FGO`
� :5a7�*1f��&{Aas�]`L7&d#*�Uy9ػ1
,Yu.p;oCnaOjQh&1;�dsu��Ήi='٦�mo�ʭ�!��͙gBZHg_�� C�é;23�|vLqF�` ɺD!W�ldKN����
�Q֧,)xD8�d:圲�9ׄw�4ߘTݬ�+��&=Ghy^���0jm{Xcϟ�ҳ@V?h�\g��ʽٔ]_ v/lA!B�2⾌~V�a1z��U�]pF�F�|i^?��j+��n"QL���
)ٸQT�c?Y]v�3S{Z`zppYrT��bK��:|bPwr��j6J`��Uͦ*e+>3� 2S/z|h\饜S�t?S7"}�WkyhWr#vPprWh+J�}?s�]CǙ�F�E+z�9^ #TW,��#�F%BdzɈ�ҊW/D�b,pm-ّwȐ6tι~"�+�9W�);x:{\b?t� �5Kuw(�\;N39XM�;oi!a͔S͚}`#�"8ψT
�G+�CI/*⭹VG�o�f;7 @lo%�?BkxTXMr�q##
"pru6S��F�>E7u� Lò��fN~3����''�)BxՖ,ܻa�Y2Ynm<ђWKe�4y"N]���!w�z`k>:;CwpD?/�:j�}��&1*lo.�.o?FfVˁw�{Bz;_�'ץ~ua0�F36Ȓmye�3Wh_yD$N�8Pz7SSAv5/`�;g�NU<[3xĝ7�5O��?� ԆѝmeQZ u؊�qOpv �<3Pܓ0 #/s\);�S_n8%`7l6��_982U|{�sR�gѵW:~߹r;��#~�ǻw7$r�<+ߔ�s�gY,^m���v[�oȡ6Wٰ;Z�)[(�F~2��h@K�'�u)'$�bIA5i7? )�;IF w�dq�
LSAϒ\s0O%Rz@ ���#�.#xo:/2
�J�Ek<1( IAH5|DǨ#�#O�LW?y�p{<�Y�gI�ѯ>f4�#oIHj%V�ԀiV �xAޥ�m
{u)a?]f>+p�ù4t]��f9Axl>�bysȘQP@*|��(Y��톦
�6~CQ�E*Z0IE+xv�bi@�B]Y3somb}&!#�<�k7v
E:7MaZɖ��J^Nb.z��Wį�Q��eSʉZ>H{ypq��iir!-,5`�TeR�-[�&xVu&}��Ia��ndZ}J^1Pd6c�]!r5�)cқ� �E�;$+ԝ >9O$��)Oּ��A/Kɢs?:"8.[-�
|�ݨ(N'�M-:R�㲙88jXШ~E�%}0BO �'?Ƨ`lŭ4J%Ԟ-�I+霈Lm*0` )�z. $0\(��|_
��Э]tXQ�ؠ�}$bi �oue+RntÏ}bf-��WxNkoJg�Zlf�PJ%
*$cO-DaL�n{\7%T&�C
�w�p�D*RE)Z&-��H&O�7+"y�-D�x|�;.ߛ�C}I_ݫ�F�VnJ�)%7=;Y$T27^vs�#9X�I�|]̅N4�إ:͎WFU
2[Gk~۠�TʈXڿd!4O�GxŘ00"i� ���@��A'�AX5=��p1�{�ZU9�rbvip/g#v+=}�!� J\&;�2#+^�ȭq�q24r f�imRO�`I�YW3,0�]M��,ř���ѝ�xF?Z�d$^τR^j"ւ�&5*}q;��֮�UV�4p�r�r}��m3l,zp�mk
Ha u�٦K
ES珶n��6�̵m$S)+ �#3-F4涆
�K";#,UpdDE�/o\��Y
��Q� @~.r4W*7*n|ڐn�᪗/�rH#f�Nbrt_zu�l-fyh�6q�k+ͫ(w0/I��cVDg(/V�"_[im�=ĭ8ɐ7[eJo9D 7y?+�loy0^U�W"f�wա/L
>Սc2&M�§S:55xT@'bC�mԩp�]� �8_�.�58Ւ5
�;�sYrYk��pdADP֦;K�$Ӓ
$�Q'fP'\�¾UQ�s�ȵܛ?J�|��y*E)p����cBj/b)oM]A�8@5V -bOwD�hg`z~z9F�K�~ty�6&@��=$Cܙob҈z�W�"1˞!{6�c뛬GG�NzplV���<�Oz߮U�?�t%^sooa��\!?�*fOu$x⡗T[�WxI
ΛxI[F
>"2�
B@Wwej�/�A+9)�|$ňPJӷ7�E�<־Ap}ţwuF+ҏ)�ԥsD*:� �ic}�->�պ x
��)OP�S�(�>��`�FDg#)]y�bb~j��Ta
&|ӂ�T�y:x2nYHd�;�*AfJ{61pN-(4K3�7}Xy+>P hGR�U23$s4�P5!s.60aʹ6)tPZs=V|�-{�tO �wZ>�qrvY^sJPn�E;�ƼG�CD0RAY�&;OS-�s1)߬%�ҋLx<��S�[�0&v�uUm>T�|�&HX��iH��&{RUrN��=tha؛ؐ}q_ʇdmL2@� #v0ǩ��!㒧
w �M�q*e ՠ;/�|b-�r340�Yz4oh�卡
�� �v=z!�s�I?8� 1VajtV=�I88!*�=��9w�-ʴ�:�i dQdZ�Cq쮒�R�'�29ɥH;�P$ͤ�}g�>of(�~)��I;��m|,s`1ԉ�<8M�"zq"���Nw�Ǜ#2㰘
5 [9�Ox)�%+��*�O^Plj�S:+kl�l溫���W
/|c�;�Ë)3S>`��GԢo4�t8�B/�W<�Pg�5�l��a!09�"5S(MO�me%g)�pbk6�^��4�T[u�oUH촤W�ki��uQ@'pP(B�,l�d]]h�RO4rH�C^jBUn,/QNg>$Fe��!N�wnal�kyQ�=wU�LX�b3G-f��#VCqLK� �3Č�Kz�\��Ͷc&�sVwk7JxX/xoV%x݄�XP�P/)=_QM�;=M?ؑv,Y!lZ,(ӓ$l�yߊ0(a� 洐1R�Ɯ�[WR׃���-K�۶4{w�
t�1�U)Qڢ�^\Z/[y# �9L�1FhMYj�}\)j9_&�u=��)|SO;�QY�{K��� [4�wb>�lUR`��Ih�7BS�i=H�w��R4�?*�I\hApՆTi��9_å�*Mu5�wTU�!D*C`�Ԅᑸ�(SY=(yL�yͨգo៥@Gmc
�u@%����o�5vN/ \P,@yã(����ڭSu06hkYҹUx~tܖq@�yH_.
˦\�>)H�Ėm�.|`
qMv��Qi5={2�.z]vi*u̞N�l�aDmi�"SȳYw{?Ok�~E�w!y"q�R4*dsgFҤq�?K6g��c]�"xp>P]��Ɵd���V`oǀE}s s�afILl.HM�Enl]iD�p��72eu���ᘚߕ'{YAc �W`Ͻ.9BJ��썻H'C Ӏ~xd�?q(yl�6*l>�}�}v3N�NUڅ87T<)ʯʐPLj�jWQv"Q0-R˚)�[*]�
}�k*̓p
[f+S}�Z)�&&L]Tb6:t<�C!Ġ}Z'��v#6�?xKផaԉ0O�f*/ncUzBN�a��Tc�"{oP+DA}1M\^aqԒyx
0ƃD�{�
Ir[�峥8\ۗg&!G3r8
�
$LkߗMۙd]Y�@>bߴ܅f��"^ߠY\ayp>��Hׂ)��]sތ�8�Ɨ`@{�htQ��k_�yuM�Rl@E~W
ͅ`B` �Y�8'vkvgx�~ y gT�w\]=}{TZG!û 2+g� qΔC�Սrhr*� �ӣ�t)Q#ɮajJmL6R.il#pz1��8j�u!�/c;nF)AY_=@B>s-�~>aL�co`K�r|+n0HR��"1$k4H�S��D�Hx��VD~m�v@bEAһᆡRmA?e@�L+Ys&v���=W_3�e9m0\8\;Gu\jA٧�&Z�yY6i=;l�W"Ie�һ+XVft#k��!mRǯ#P)yR,Y�fe찅n",Fx55NfB`ޫ�\ҟDO�0KO�*ߌQx1��[�MI&\ �!\�x��öY�{=v\z8ļQ%:ynaxN�l*&&lԋ.hE$?S�iR%&φp�Tt7f��դb`B)�e�vC�(#0�:D��k9",]*>��`d*%�uTD:�c]�Ks+_hL{�=�b]AzO1�/p m�*uE:ߏJ6�gCk>��y49O�½��9�
't�w*yiQ�v] ǂ5Wun)�F]NkD�e�e��
H<Ó��)�٣bpS�dD�~FL2h+ʳ�Őn`){֧&,`$��k"`-�F�e?��\��}J�'vB=0�'���ɷ6#��fOrKKS˘e�aΊF��H7j��0��6qZX��#\^<8q�h?D3�Sw�qأ&}\I�`�Z�nSOθ{joM�Մ)�W�R_!W��g�
��re�J,@rf"gjXkkɒ:B1m`WX�?�1�٠.~�ciߨ'e$T|uZV&=
Mq-CB�7*Ha8\}DǺj�ըS(�CsZ�ppN'IЏ@Iz�m���n^LٙU0{~�B9ap+ӂ1`z+�w4
@m!K ��v{wfE�K�e!��G�ر^p%{k��0`fh�8ABԴMknU!Z(JAY�P«mx%��T�1�ID�yBPc
�c~G;tC�yvOf"g�SjȻQW0��ۡ16>A�ï+ݒrU�Po�[ǾZ*0-�B�Ws'Ta=R=�j��85j�Wb��h']c~pOd~R��T�P`Q���|OR]-X7惮-6� �Oܓꐀ?ZV4Jv'kJ�y�U0�+r.MaQ^��
jEߪ7xmUf�8jԟJ�L�pDckJ$m&uۦ!˛[ٟ\[~xQ3j|Z&%�vLq/�p��Ĵo
Q�*�0!��
$)�S�"�Çp?ͮkk>z��B�tw(G��a-8+N�, �Ys'}w?M}e��4|SG`l-R�%L��V&<�m/|�,e7K4Aazʇ��*�`��_�h�sR3eqkԽ/MY,y
Z�#6U(�s\/&`ƫCWȷ�InQ�Պw۴O�J9k9&R2u�ZH:ϴMdZ$%1Q14q&�怡)l`: �;`2;PZ=$K➴2Z�9}�07_-��Ǯe*'JӜ8B̃�7�}VVAXTSd
|Jե�JAY�rV{Zٚ;vY|Y��k
ϼnKC\zl
�@[�{;��z]
Al�n/N@0Ur�@mW<ϡ}Q}4�K:%L�/|4E&Bi⤰��a4';1eXb쉒�lJ��2ؔxy�U`@J̪$�vg�Jqa�,�Jް�GL�DN
>#� E'dCr�uS+'"E����KNĐ�O4Zfr�6JzӋr(8XA]BpN[Adޚd
s?�`�]�(wa)ijI�;-K�_N}m5ڑ5$p`h%� ~�w�Pљ�q�:�*'2O(,4�X$�%lD`'o9.5[}�3o
�L@ͯ(jmUdQ�L�LK67�8�utZ^[��G��nGB#.9Ѱ\#% +%+
\j�?u\vJߊ�Oca� SGuܑJ#�IK N�-�?�aL?�^3ٶ˻L-
`q�BQŅ8�Ɔ\p��1"�EgC<��1�ꩣv�m|[C�5ݾ'&�~
)-��V�w9vcqL_i�T�%{c\^Y�k'{:�.y;?ϷQ0��:t�C�4`'nE8bP1ǃn=p/:���4&Q/��fb
�0w#Ew�aTq�/��^ k&~Q74�Y����ץx*.hq6]\��V�)C*\ΐp2Ytb�eG'MP>
Y�ii��15YAŀ%
�{.Շ3-�r��#G-$@6o�k+�[I8�䧿b���b���L*"ư1ݯ"Գ~='
7I�'U7}rx̉4�<+Rp\CXV8oW9 m:qq5T��X��(�tjPE�bemY�ZuJqgO�9>"xt�xD(W�}
�&%[�CK�NYs{�99
1N-,)�ӡ�;I�ޜphR'�Na���t�e�z�%:|�^�;Maq�i~$@Mb�9Z�&�TVbnBVcE"J+$�YDzhH9\-y�'Q<��f_�*�sXW:X�R�\z�D%%/?vͺ*T�#-/0#U�gWv2Z{_Ǡu�lϗ(f�|~У} cqC|-^�*',p�Wec͊e�y�t5'?ZoE�lq<�+/M��98kMJ҄ECm0{u1rOX��qL{GS�&��ӽLz Fj�J):
DBw͌�q!l�#-^XKTď읩Qy(�AϾ�me�\V��]2oZC7s#hH+
2R���p�
i*4�ͤlb?9 qS\j2w
d�g�
�M-��=q�P+V��U+_h|�@`O\�
ۻ��rۓDž��yS 7]՛�;2d%>`^1ETƸaF�#��IsZ
p=j՟\"��̐%*/$L>9 �-"��忰}dcR�p3ʒāP]bU{[I�]g[j~QVhcEܨ��a,-�)SXr?ӓX`9LY"+:ah-9}sg)$?1dy�N!6�2.��۶�ч)g5�dwf7LK2�M�bbQ�[�iGW�JGGĖ*jN[����D(TM�B4:RFsJ>�-Ic�h�J�:dhy?$,'c=�;VTc�Cy,qs�bN9B��W���µS@/X'/bWS](_�I-V�רf'�~#h�H8P��7o
4G�۱�)7I~�d*8dd�J�B>ybZbB�M�=�Њ�1|ϫNY
(�ꇈ�ڲxK�
Z�x Հy;U{�B�2B*v bDw�r!WQF7=AtKtvl$$^���
y
p���>
%;`�1`8?�ٶ�?{ZÅ �Q+[�/1��Ò8o�"@b]�.�@5{2Lm}`�}�s^_�Go�Pl6+{i��{c�R���V�SNяx]Z1@Pr�=+\�a;0jV�nߏK�01Y ��X
'fv7b
]Gz}h�&hOGj<4I3F�FV(�P*�ķ�?x?mw�5~e��;n[|%^q럵bo�۰EA5]lșuD�l�5�I���uSjU+�&��e#5Fjhq�"{Ӻm�ƴ!ΪnK拚!zK[eP�A+g5;Ԗ��s+�EԽ"��M�*-gƅ�|1ej5C'�qJߍoG:ύ��3&> cQ�U�2NT@w�fs�6̊&%�X�ڼ�nS_Vv 6^ٜ>�?1^ޒ?�wbwz'[��10<[ھO�
ո&Ǿk�~:I�+S'#��뽏�@�?)���a(N8KzP�n erAz9z�h�
fͥ"Q-PB�!ʇ=_o)�&��Ű1݊�ʠr>tG�K�MO�zωl}l_F�Z�BwhOxxPJѽŪ�
wO�$-B>ƒqVJu��yo96�&*�9e(�eifmDu%#ZAr�FDH�'�(h?VYJ2X�L7�c�Qc(V���Zo,ݝ�q8^�L��u)Wl!6�*�xBߟ<ѹ(�'�ˡIE�����qH�y3�؋�Yns֙,:�w1Is7�p:yj0Vl7ePڜ_r�V:*S�@�>�1_Q�YP�\l
%��ZT,H�s{qIo)�Cx@��ż<|?XxF8d8zK
ߘN9 E !I9$IN� Ke\%[FL��t��=|%.��bgIŕR��cfH�nF�:7:=��*KP[Oy=a)r(5hQ�J5Vo!f$n3.�F�Ɓ_m]Л)�!ܴ#Ƴ�pNp^/'a0��xD�эz^8utvj
Y]] !i�pj8L�^3h>fK6veXށ�tkGH�iA�jn63̾rZPC/O9�l�O`6o�EHa#v�dmv����Ƕ&EKoØBDy�5EC(3FC�fQ!Z�V L�D3YZ!RV!�|x˰l�%0q�� �ឝRr;^zN�ϿIkW>ohPe]1;(VFd"�---]
?7p\QoV9�
�DW%I K�7ȑO5B'�oV_Z�hK"v4��"]�|, .߬�
3�2\F5M=Ɩ�P�9x0C�~�LJp=�S�>:@�cw�gnoKسk^?$dHĉRjE /JZ:o��=]5��p&g~8Fj�ENXԟ#\7VG
4Ͳ�Iۊa.�y�}Մ 'n�_#|OY]6?���m&RL^~US?c놟B{U{%Wqg씑U�B:�c.x˅a8�h�zə�c�6YQ�pMe�-c+8&M�i/�cF|1�}g�RоQx�,r�ÀEP.s[�B�#Ei6철z�\BlkjoۗC��+�v>��SKQ1ϓq*cװW蓥F]S]?���]V�}$a�Ъ�k7�B��xc'[I�AH�I�
^RFf_;'T6}>'�߿I�W�Pf%�1�;� �Aw>?�٧CU�\z>*�*7� bP���~ 6%�eꆊf"y1@+�Q|ё/�]6Vkn jߞ��O ��߱��v�jh�^K;㑲g���j4���Kg��9<�P�#�pM��&ZGw/i�G7�$
B�Sd�fr'2Ԧyl�S�Fj4�`S;=�pZ /*}Ċ$\��&Ι5�ѽJ�I�583RQT"�iTO+I-n?Wn"7}`�-e{;3��Q}7Z�Lf�k}s"��KX]T
t6'Ly)�bWI�kr���.
uL`bZ@�ɘ��wRا6�\2cQ{tI:�iT_={N"7�~���|TĿfo�I26�Js�6%3^�[&ăZHze3;�ѴOa6�3Xg _h|àh~�4*1QQ 70hE-vqhm~̏;�=+BC4�YR9�&Q,\>��?xE�Yi�v/'�U^_uc_^;&UpX�j|�\�M�O(uܸud<"{c%g|4i ~MZZuM�W�?';ϻ
v��эy%%VC��=1'WŻ.)tZjUr�iO(�_&�MNƨy�!p
x+o�@kJ6=P{-td-5p'�n7ϧv�w}ZyA��_g>�xqpAgl�]6h_,w��RSߣׇg9�k��J=^
r]7XH\_�t; R(d"�|- �ftǒU8'b���rcA�}O/�@9T°�
Վnt�M0�OFB߸{���¹͒�#�U<�32i-�\u�_O]90�f05G+�e 煔Lz�v�;���!<,�꛲O-Z7$ ��,�� up�w�)�k$/"FZ
3�;���=BQBpE,fh�Oި[X�2U�CG1�H:٨/ҧ!a>x
e+sPOތ�c$0ُ�O:1ǐ��
��,{J$�l��. 3��W/6`�t@�e\: '~= /�CNl�n^W$g�~�g_�Ul}�Ozէ5¡nyv��?�d=r̄l*ڑ&ͶQA��o�zZO2h
MTR�h34|s|��<���z�E<�\RX�C.N�%-L� e�jdְ�Kl/�P{{|~{���M�v%&G}
`쩷WT�^�wWl+K_u�{d@�bU7�=
�H6�Y,)G��MG�e;�S5lYo,�
;Q@i�x$y��0�^�xQ!h�
M
����G_/w~s��=�8f|S"nN�v�1sG�xA�{hyQ -3]c)Q�б�TZad{9r nFd �~VP@+ޱ%�랐(h��
x�6c��@d˿v߿wjE���"/.Z� XϚB#ۍLגT嵶+2p__byֱ-py+7t*eRT+ �_sԭaK4)_3ҊǼ�tE(K��.m]}Vj�wa
�`Q*3e
HB�&_ܴڈy,[v3G�q-}7=7�YB�Q�h�5i&u]�]PKݦdV�7f�e@^L|)^|m�U 8�wZQ.�1y�}hc��XCIK��Ldm ,,BѩL}+殥}ʕ5�h̠c_so�"�d3+w2Lq��Gņ]�f�BQ>.Mj�,�.dC} ZBW[�z IoF[%b�L'��jP�'Z`P�бI)�G�d�X1�\�_G�ܺ:�:OY8wW\T j=].�5{�4.�
��>^T0�$��^�M {$KT�,�ZP�grð%/qcN߮wSg=F�LOA�vubh�-44@IT>W��
�u#Z!�~įj:]�ǾgT��t/ZE=IdwsR��]FZMZ��,!*{#�NG'�+��+qk�|�m{�P[K5�ii)�
@��U69ìF0.f5�r 2�M/&|!B:2_O:1Ksq"�aMh�ܩɣc'�Y�ee$'a6�i5~~��1NPjug2YA0;5{��!N"BZd�]3UbSRl~�|\n#�DA٧{k[P�w�:��Zi?p4\r�Ţ��r&z>�h ;_x�b��O&`�ҧ0s�m7{K8!X={�4Ze��q};���O�0�1�@ +u+�B/"�}`�w/�t|i�}�hF4�{$zߗ���sDNG.&ll``3�ڋ<1'vr
#xz{h?�Xѯq�j"䜛6gйe��}Ǡ%DDO3»+R6�y+ITI<@:�].
U!73�acϬJ�r�BC.ܢ�<.Lb�¡�u՜ʦߦ".|x"v8c)1cб0<�
(�]�̵]xu3EƦ$�Ap%�^p"A ����g)f¨�Ԣ9�u��:�Ë�}4�Y |�yf$[ wJ�wv;E�>?.y֗C)4Yr
%8ؕٙބB�/`7E+d�4��Wpdŝ$ivw3 pd�-H��.�_T9�\5Dz�Htٝ\
o_7j[(1p`��j�ci��g>>B�y,i�dEl�@�z �,b{�B��=�±�X!�`${2 e�Spgk�?@"-�>��^o-�3+�S$DM�m��|?)|^�I|��SA7EG�{��z,s#5�.{ݖ}Y�rߚ*V`-6T\߇��$##Z,;ɷqqO:q#[�d�xt�0s�>k�)ַ>H7+6��=v<`�9�P6~�C�{HH��� �J!}.&WǛ�8ο
ٱ._�IA�]�n
*_�f_btT7Ġ�<,�t]�Kw:PJ=X+�ĉt⬜�S��,�ڷ�O���~Që
W`]7H��'(�+)=X��̓�S,n%Q-�!CזoF�I���#�L4�Ɗ�R9A:�]{(7hYtĬ�BL"XE�b8V8GoKI?R?g9K]FIL� ܩpxNΫu�&E�Bd6[u�sUc�c3�AR�W�2=�ͣ::ʤ2� j;R&!,t@�K^E�o��] ނ�@=�q `
OQ�֖(�+=GVEܒQ��W�mD�!ҡh�y�r*��uz+,iۛʖ�|I1T<莰!i�*rZ�*}h�yY��Q-WUx][<��Uj�<,VmYD_`�̈́-!I*�dtsz�y3F]�.hb��np㍎<���$�g�Iz/��S'>_3
��WN"?^�DY�Z
HT#;�bµӮ*'wOߠW]e�4Y���R%cwz2%d6d`*�"X�⪸�A�Np��b|�64DY�@H�W_ u�sPc��&J>T|)H��1z O�z��jq7��Eoc#ml?*,3`B|\��A8)4��Xp{G3WOyX Fh\pT/9��[hڈ�s
�綪6[Wŏ7Qq]"�=
�:i馂`X�={/dJ�4�s=�pSVh�&q9Vb˕}�KY]�3�+MiD
�pMQ6_r�{Pfߪuې:c7 ���XEPr�# ,dH5�ĺg�Gbo�,szD%i.��1>G3�u�rր���3𣏕k�Vn%TԢ "}��f':߫h�2�.[(hA'fb�j0aɑKnEY�b(tD
n)~D�3C�N�!N?S�Ď`�rm'��8'o�A�}c�1w�8O�Z\2o��0TP�2uBn%kV`���yúyǙnRЮFe��
+(�#�~$MT.x"?:]cip5�\dE�b˖�ଔ#K�$Ꭵ!o�UXv�u�=օu�HvǬiqFj(?0| �2��S˺go}Jge6^T7K�ib8HҬ�
��KKh�Mq#t*W#;DUmQ�>e-C{?�mY;��W(WG`Hz�~�%,cTPsn7r�ۊ2zɝ��G�2�/e^"kE�KN~;R;v\�k,=׆5q4 {Q92�Zx
啴�u"NL_iXa~/�
�|?ot<�! T�-�T.r�Sڸjy|[ڪgH6+5D{k1;Dt>�cJw��S$�eL�1oL���~j^ѓ�@'"T챑�3��Zr*L6Q�r�"�!�?"͢-dې")��+v�S;l.�P���(�l��~qlj�d��HGA��KˁL0)�g)3tDRĠwK�lu@Mb/B�7"7sx�'y@_Iپm�Y�k5PH^=$<8x/琀uF2ۆq4�gaQDz8E�? AX;
kpIjc&�"2$�>XWR�l7]MY�W�?u!ߞ�X^/(l܍�p1l�Ov^���~כ!֝<�C.XAT�\p� &\�f�Mv(�Ϸ=ghgpފ�l,�])
K=R��\14K�wR]PO':~�\[k�mel6RszpKkl �pdf$�k%)�b!h�&,WH�.wZy�NԍUY�>d{З�pYRn#ŷI_�ӣ�L&" t2巉�"fU*5T|fg`k�Pt9K�ˁE0_n@oZgr(S>ߔ�$B99jl@l6�F�cK%{)YťThr=s�l)�7Xio< (�[
3w5WC�}lJ�Z�CnI#a�\(1n%�\6�Y�N's>g?ᑨ4�ZC>�WkߜB�9mLAe_; 1 )ek&"'Q`�+A
�ǺX0�2p;A˿�˶ 8;fV^�%WQS>�iEF�PHsx�`�2QJ�M*ܼ]1i.}Ϝ⊟�ßNS�fUe~7ޕ5M%5(f;zȄG"&eܪ�uzѮ�s/WO15ń�'Bmzx:A,Wac]jC鬒^�MG=��ִ?tߤk:cVB �}@ޯ[�a��YGbf�T|
#T+' Q'
}닆�b,�p��d�,ۭg�X�8ݕ�XPR,!D�`R7m�XSǢ=�;/q/#zi5weFR�5�aܱJ^���5B�܉K�b��;0�'ڐ �3.=���EO�VABOAܽ=O:�9z-O��[އ?r3yK4~
�Z
h�J�rp@2]��F5lƀCL6\5b:b��y[Q%ay[�ޚQƎR*⤛WS!�/0d9qƀ!���ǝ\�=/zf@M JJ5%:m}iPo)U;wz`+WCac�@sL
Jɉ2vMt NQs}; �iI�Z�\RW*�-EdȰ�))Av m�0Pƨ�}yD]穴ʣS�jV5�($+��ٍ}K0�OFHGv�l0]e#ʄ(gvH<\�ZM�{`Mh�zqOhL�4gJ�0�����O;7 .;J���c8�;ğ97µx�1�
GuLɐnëfޮwC̭F����%
GȮH7O!z즎�
v&}3qg.YpmD-WB|
-�m�VX�*S1�Pض�=K�{wL`AxZ�;xeDNZȴs�쒩{�
t
Z)@+j06���t,N1�O�[J�i)J5*1+N<�5�͕M��2@*/�;/(�q4ШFַ楍@9f~_[;���Da#fmS+v�%YYri״��|��9��DZ�]%mR>C�(~�FgAvM_3.7�?w
R8-2�R͞�2W�Kζ%-"�.[ĪC�yvB<�V���_�v$:"w&�hTy��X>F�ϐG�d�⏘s^Z�9&1�Fe|�zZH?�W,��Ci&j�znbfɤB�rAxL
�jpd71NY�ڛ{p%lpk;E^ġ�`�Jl��U�4')|[�tx@nɠ�5.�/A�];`��yN~eL�I� )�&'���N*�� @+��QVovF_ˊC�g^Xn_"�1�Z�Zaa)�I7 4-ŌtWmQqIR܅S� k֟3=:۾LM/Z�f)ՍO/W�j+�3l�R̥����-`�.fYiD&/�F-f�m"�E6(4/lk6Q
nM!':�?Gi�G?/@œ�z{wD�(W*=o(�j*1ԩ6�
eL�ӉVI(iMQf713[G$eGqPܼ:�"�:+~+خ�S�N,ݖJ A�*/R'0}jFh"n.6NMʠ#%ɜˑ�i�
� �)�QVDxߊd3YX�n*�ODYW
�Iv@܆EZm)q"en-I4:�ĀKiL
�_k�p�J�)�7m�t"H�lyvR q�ZJ"�`y=��p��xm�q�^�d;
�K|3lEvUcP"�H.�@=I-"F:2pXoJUFi4KދưqQ.J�~[uΞv[��<�c
�'J��洠.lXc773K˜^m�>Ž���zL�W=h_a�GL��m{p�;9�lO%#�IȌ@�D8';�����O4ܶ_ @ۋFCQT`EO[k((��oPX[yg8?�
j
�#Q츳0@*dc�c�E�*�:?\]u&:�r!-z�:W�F�6m]$*
1sƝvwƬЄg7�c#CqO7#PC$'$U�S ޡ˦�w�X[̖��ǣCF��!0B҄!w%0997H
�1
W;�ɹn|"eHaa�7$Kc5nK
KuzyP'`
�R
:]i:pM�3)}b�b6Պި#�UZR/_MYAp\Q$թ��l;,"L�/G{gqQ��Xrk�Wm)s�Ք �j[�$P2UMb,mhM?s H�κP�`}C@9ρ�Y$KL'Q|AKRId$RI+;c=�V�@��7�]�Q~�\^}�''&XJ,P�jX�yNQɽ�/K�)`NY85߃H��J�ƣam:aΓ=
f@xs�
X⡎;K\]��|ǃ�ag1�B@|�@pj��1X+K�I1�w!6�-w<&ض0Ӟ�5A�YgɹY/��u߀�n�Mrc9�ΨiχAՑ�d�R�[=(Qm(NL0Ԇn�N�ct��Pי~yd
zw�CbJ��c(��NĐ]�t�/*u2r�
ԯAH�6F\dMӛ����qilp���0�wX
�fF� /
+�W#S�X!{�85"p�m#0_HrzT;w0hSV\~ @XB0g~W5KDq{��,�ɹq'�w�#Bv7iGUu���c��Mٴh~^cR~MKu(|!�=QrW���V[KsĕT'�k)"1$n+Wjw/3}�#wvY*0X.~��BXg�4Mxki&6-鴀3��BO�Zl;�gh��<�hW\8�#ئf�IQcp?��f�CR)2�*\Pn��Z�`�ٞ{K@*�w+`iH0�q�a.,0XA*uO�'(l*D
Gfy&�K^CѢ=j�\�PR�f-RMum_�ˏO��pd,>l&��T\V
fz�ImZyʟtl|3rXO!BW$"'��<7` AeI���EKbƉ�L8lW�z�@
(�q
o�ECۺC�o6\1�R-316>L wW<[QdEqIK��&Mvd�Ч�(�j�r�;�2$=0a"m�%(s2vRkB[ia� uD`�W�ӃfȻޖTN��vt��Q6ϧ
&�to%�=�bEƟ�x5+Z-Kw0hF1/(_�q:]cE)�3�xU"J;@^=|[2VDB�H&J�YSnQ
ڭG+�?s;�։*�xG[c{AeCcJJ�8N?:i@K
�g5#�>'RV/�c!e{sPE��DťRFT-sh<9Jβ/e�N7upg�88+-��D?X$=i#�ƅ��Mg
�S(A�"�o$�ԡ�~iCQ?�;L�!J�p�6I �ZD]F�+k+E�`#qF`rE3QG�bJj'yl:�%l`X��vk&xQDT/�rz:xw|!f3�X?�oGq�h"QA~_��QDP�de�%k�WY`.}�iPKɫ�!{��Ja;u !5yistK!hs\;G�{Uf]̺%�Kߪ�[� j1�1GR4c]&崼LYu�LT
+��nV�#v?|�hwa%!MsU�;/
qX
Ri!��<'BRmχ�U �u]7;te/le-�rci ?jWX{f4'Q>�?u\�aOJ�FYa=dH�Crn|eo_<Ә}���\$J#x�
�VņPe�ް֑:lEMT�UcN�CQ6>C�N $8NUAd4�+g.�4.؋ WƷqWS>/�"{SmFRQ?��aXS��)�+u��h��UR`#0?Zu0yAZ�!S%n�5giW��H��Fi,uYkzHu7h؉ց�-`G
ENKRdi�?˅73}r!?�c��H'
8RH'ܟ
Aܚ+�Z�}L���WAXb
�m'rլ� 8*��$P7%�(N54C��1
=Ő#W$jd?ފ��۫QJOE�%�Yo��"8s?/^9�O��
��3=@�
L� 8�vw3iEY1�#b�Xy�=oV"
Vc��h^@bZuKX=q�T�Ug9Jzt]^.So8dg6;nyml<&]�,��#Y}�}��^h'g\{H�߰dt~ٜ��=wev�M3I<;rtEkRjG'W�+.?֖\Yl7)PZ�}(pk%ʋP\vJ'Ѫ�B| ��P�SjCH2R(�jt[J
ྉ�+Y�PJm;k``G�I",3\ڹE�@
jDE�szCW7�OqSqLyf*>ו7x��5�^߬@[2%9J�"HW[�F)gۨ30PA�I�k�Ԏ dw�P���CvD*,/*T�[�չPjtG5�GRG<3Ob���AE1%�Ef>sf�.ԡg�2/IZ߳F1?����4$�9Bmp˷[u愾ۣh&�1Vc�"�a@,p��{O�y�/Z̀&un-p4cS:�8Ru�U�$.ͅ>z%�ޣ^s��X^,9^!&
KXuͿGZ ٖi�{=D4�BkfYy
fRSy�'W^r�-j(5&&5m�QڃwϔUԖ�e�E�B䶡a[/=jb� R�c�RBA��/~,Eb�j, �Gd*dD*aȽ(ړasB�4�2K(kejH]#N��e# n�,�"�3 �AIjbޔ�a��'
�(PƮf[z|"��U1
n � d� *"�e�[`;�D�Tl�G�e
�CvѺEK�"R d9�NBa+Fn0�e4ʇGUr*:{.�wy?�\eӍVD
\.aYMz���hgfyszg�,<6j�UV4B8~cřϔ��zpO�0\ܖXorK�1*/q hņGXkDyfi4�Wˏz��d���X��[�O=�ge\o��puŠ.%nlH�@!9)\v!!PO�yrN�D[٨0E�=ì��E�[G\K/#$�8p=cy4��*k{ej"YNWsV'Ncew[W[7Xku@��i
F~�_D��jb[Ώ�!a�w��AVk_As2e$�6ERLY�6�[MsGݿ�őd"ޢZ]cɠ:"Q9D�T)�e(=xza7X�jd|�Xt5���GT:�EKgnTK"mPlX!y^�mb+eV:�o<6�L�'{hC�XOC�K*���vtl)5ulgK�rsv\�,�3/la12'�u�:>:l�&n�eܽ6Vz�q!3IV8{�N]エXڹҟKdc
Mnbd:&$-%3|ݦ���2`s)8쪞Tp> dpwrOG/:?�D�RI8y$ݥEꍩF)R��xL���,�*@�._‣SD:'.ڪ�!�D+HK :PNɴR]�5|^s&(oM�s���7$:+윎Jw&}��_)l\�kH��Ӣ=/��T .|X�lmZ;�ܸ�%,#fcmiϣḋ�w�8%3%߉OtːX�2�x[7^�a:r�}b�%eR�� W3�U䍗r2BZT|.F9�T9�?N=uVmU8ҧ`t!y[؇aKcAg*X�3qR�ׁΐt#vjtl?G:�:b$�Z&~yKV��$�QFOIJ|/���ԅR1B,hF1�&j6:}s2�7^-e;`�$�,K;_ &wQQ���(ظSTm�ժ�H$lk!𨻥N�:Qs%]Ԓ(Kdǔ
2Rؽ*d~�O\Y��G� u#?i%7&lwʃ-J9 C{ZN<�$N�*;`j
-(RZ띄3V�}d
ߢ[*NtRmS�MU2G�.;
gѰ)Q��w�h�0Tԇq�YO9$&u 642 �UCo ~�t+pK/lO!h*��?QX[Rjmxr$ٟf,">RMV�?1Eż��\��! ݁r�+Z� .vwe˼ak�>��n0�=[5̨�A�I7۴�P1D67iݰ1цH�ݑ�v�Ѥ-�x��I/HU`�Qnh��Xzg딍^>�;
a`_t1(�Xrs�i�Ї0eUX@y�T=U/eXu��붆KX�BJUOn` }7�3l�@jrin�\�)jJ�nkn��=5s�k}"�&зLX�k:8khwf>VW])Wm-ehn0E/�����ؤ��
ki";o�r >
>�zc�/Rze�� '7y������
YZ