������xen-4.14.2_06-3.12.1�������������������������������������������������������������������������� ������>������������������������������
�����������������������A������������������������������������������������������������������������� �����a?^p9|���(&`�z60xQ��c7uW�Dd��A�ػi=!X�� 6�zI��/�>ѯ�6Cb EN}6ު͍P�b�nS',P��{};�k-B
a5{�ޥV�ڸ=]=�f"Ɩ=�Âa�9/"�uΞ+rj�� g'mS�=����Y��n�
_:�VUTE/IEܴ��cd1b782b6e4f7d3b4b8e80433cf7c388ea1b44cb�bfb5e69cec669da2ae06e7ec65d986c9b6601b95bf1e29bdbe1cb81fd7112df4������h�����a?^p9|��3�@lP���%솫�Cw�+D��hB1PXDYA*��҆c6DpQ䲊~7DAaPh�ƛȨ�UF(��mS<
'�9��7.��ؗ6ڃ{`ֵ�CG+<�qӑrd#�:-�?yP;1~x�&Ul ~�M��,(H@'�m,Fy H �>tb�@ �ٮ;���_P���ұb
!%�/t(���������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������>����p����������������=�����?�������������d��������������������������������������������������������������� �������������� ���P��������������L��������������P��������������\��������������`��������������y�������������������������������������� ������������������������������������������������������������� ���������������d���������������������� ��������������
��������������������������������������g�������
�����������������������X�������������������������������������������������������������H���������������x���
��������������
�����������W���
���(�������|�������8�������������9������
������:������(������>��������������F��������������G������(�������H������d�������I������֠�������X������ְ�������Y������ּ�������\�������������]��������������^�������������b������5�������c�������������d������\�������e������a�������f������d�������l������f�������u������|�������v������ٸ�������z������`�������������p�������������t�������������z�������������ڼ����C�xen�4.14.2_06�3.12.1�Xen Virtualization: Hypervisor (aka VMM aka Microkernel)�Xen is a virtual machine monitor for x86 that supports execution of
multiple guest operating systems with unprecedented levels of
performance and resource isolation.
This package contains the Xen Hypervisor. (tm)
[Hypervisor is a trademark of IBM]���a?^4ibs-arm-4����/jSUSE Linux Enterprise 15�SUSE LLC �GPL-2.0-only�https://www.suse.com/�System/Kernel�http://www.cl.cam.ac.uk/Research/SRG/netos/xen/�linux�aarch64�if [ -x /sbin/update-bootloader ]; then
/sbin/update-bootloader --refresh; exit 0
fi�����������������p�����DH����������.����������p������������AAA큤������������������������������a?^�a?^�a?^�a?^�a?^�a?^�a?^�a?^#a?^#a?^�a?^�a?^�a?^�a?^�a?^����0467f78c272478992fe4c18207eeefbbbb2270ebc32816c76feeb49eb2df8205�017644c6f08b7b8841231df01acf883b894fa5fd0888c73d9e8a5087983eefce�f896a37d99612f7d63091c0ccd36a43ed3cdb2bf6c970cd2581de33fcdc762e2�a69a4e9cf96ed5dd7abb6cc60ecdedee0961deba8edf61b9a3ae48b2970051b4�����0467f78c272478992fe4c18207eeefbbbb2270ebc32816c76feeb49eb2df8205����xen-4.14.2_06-3.12�xen-4.14.2_06-3.12�xen-4.14.2_06-3.12������../../share/efi/aarch64/xen-4.14.2_06-3.12.efi����xen-4.14.2_06-3.12.efi�xen-4.14.2_06-3.12.efi�xen-4.14.2_06-3.12.efi�������������������������������������������������������������root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�xen-4.14.2_06-3.12.1.src.rpm��installhint(reboot-needed)�xen�xen(aarch-64)����������
���
���
���
����
���
���
���
����������������/bin/sh�coreutils�diffutils�fillup�grep�rpmlib(CompressedFileNames)�rpmlib(FileDigests)�rpmlib(PayloadFilesHavePrefix)�rpmlib(PayloadIsXz)�systemd�systemd�systemd�systemd������3.0.4-1�4.6.0-1�4.0-1�5.2-1�����4.14.3��a7T@a,@a�Ga
$@a
@`�@`@`E`�@``
@`!@`@``7@``}p`\{@`KW`F�`B�@`8`4@`.V`#`�>` l___�@_H@__إ@_إ@_S_$_______�@_"__E@_i@_h_d@_cO_[f_X_O@_N7_*@_'@_�@_�{_�^)@^^@^3^ϧ^x^@^@^^�^{G^r
@^j$@^g@^_@^Nt^K^=Q@^:@^0"@^�@^�@]�]�]N@]@]ʞ])]c@]�@]@]@]]fl]fl]M`@]B@]/
],j]��]�@]�@]�]�]
#]�]�@\\ޢ@\ڭ\\@\@\�@\,@\7\\N\�@\\+@\\M\M\�\�\@\}�@\k\X)@\J@\I\A\?�\=@\9\73\4\$\�l@[H[k@[@[^[^[ā@[@[@[9@[v[W�[CN@[<[6�@[0@[0@['[!�@[�5@Z@ZnZ�@ZZZ@ZmZԐ@ZZZ@ZZ}@Z}@Z}@Z}@Zz@Zz@Zo�Zk�@ZV�@ZS]@ZOhZ:PZ1�@Z.s@Z&@Z�OZ�OZ� Z� Z� Z�@Z�@Z
}Z�C@Z�Y�Y�Y�Y|Y@Y{Y*@Y5YA@Y4YY�YbY�Y@Y3Y@YJYJY@YYV@Y�@Ym@Yw2Yp@YlYh@Yh@YS@YJ_YI�@Y5GY0�Y-^Y(�Y"Y�Y�;@Y�Y��Y�@Y�tY�.X@XQ@X@XۡXg@X@X@X@X @X@X@X�@X�@XXX@XXXwoXs{@XlXWXRXQ4@XEVX43@X.@X*X lX�&X�@X�X�@W@W֘W֘W^@WiW:Wt@W.@W9WW@Wk@Wi,@WbWZWZWZWYZ@WV@WEWBW=W;�W3�W1@W1@W,@W(W(W(W(W(W#LW�VbV(@V3VJVxV'@VV2V͛@VŲ@V`VwVVV=@VV@VHV@VvV%@VV<@V@VS@V�V@V^VwVqR@Vn@VXEVUVTQ@VMVMVMVA@V;DV9@V7P@V0V*!@V V�@V�CV�V�V�f@V�qV�@UYU�@U�@UUݪ@U�@UnU4@UUK@U�U@UU>U@Ux&Un@U\w@U[%UUUPUKSU>$U6;U%�@U�U�@U�U�U�.@TgT-@TT@TZ@TZ@T@T�T@T5T@TLTLT~@Tl@Ti@Ta@THT?@T=�@carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�jbeulich@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�ohering@suse.de�jbeulich@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�ohering@suse.de�carnold@suse.com�jbeulich@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�ohering@suse.de�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�ohering@suse.de�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�ohering@suse.de�carnold@suse.com�guillaume.gardet@opensuse.org�callumjfarmer13@gmail.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�callumjfarmer13@gmail.com�carnold@suse.com�carnold@suse.com�jfehlig@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�ohering@suse.de�ohering@suse.de�carnold@suse.com�dimstar@opensuse.org�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�mcepl@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�ohering@suse.de�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�ohering@suse.de�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�jfehlig@suse.com�ohering@suse.de�mliska@suse.cz�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�jengelh@inai.de�guillaume.gardet@opensuse.org�guillaume.gardet@opensuse.org�bwiedemann@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�bwiedemann@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�trenn@suse.de�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�ohering@suse.de�ohering@suse.de�jfehlig@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�ohering@suse.de�ohering@suse.de�ohering@suse.de�rbrown@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�jfehlig@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�jfehlig@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�jfehlig@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�jfehlig@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�jfehlig@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�ohering@suse.de�carnold@suse.com�ohering@suse.de�jfehlig@suse.com�carnold@suse.com�jfehlig@suse.com�jfehlig@suse.com�carnold@suse.com�carnold@suse.com�jfehlig@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�jfehlig@suse.com�carnold@suse.com�carnold@suse.com�mlatimer@suse.com�carnold@suse.com�cyliu@suse.com�jfehlig@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�ohering@suse.de�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�jfehlig@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�ohering@suse.de�rguenther@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�rguenther@suse.com�carnold@suse.com�meissner@suse.com�carnold@suse.com�ohering@suse.de�carnold@suse.com�carnold@suse.com�ohering@suse.de�ohering@suse.de�ohering@suse.de�carnold@suse.com�ohering@suse.de�ohering@suse.de�carnold@suse.com�ohering@suse.de�ohering@suse.de�ohering@suse.de�ohering@suse.de�carnold@suse.com�carnold@suse.com�carnold@suse.com�carnold@suse.com�- bsc#1189632 - VUL-0: CVE-2021-28701: xen: Another race in
XENMAPSPACE_grant_table handling (XSA-384)
xsa384.patch
- Upstream bug fixes (bsc#1027519)
61001231-x86-work-around-GNU-ld-2-37-issue.patch
611a7e38-x86-CET-shstk-WARN-manipulation.patch
611cba4e-VT-d-Tylersburg-errata-more-steppings.patch
611f844b-AMD-IOMMU-dont-leave-pt-mapped.patch
6128a856-gnttab-radix-tree-node-init.patch
61122ac6-credit2-avoid-spuriously-picking-idle.patch (Replaces
credit2-avoid-picking-a-spurious-idle-unit-when-caps-are-used.patch)
6126339d-AMD-IOMMU-global-ER-extending.patch (Replaces xsa378-1.patch)
6126344f-AMD-IOMMU-unity-map-handling.patch (Replaces xsa378-2.patch)
61263464-IOMMU-pass-access-to-p2m_get_iommu_flags.patch (Replaces xsa378-3.patch)
6126347d-IOMMU-generalize-VT-d-mapped-RMRR-tracking.patch (Replaces xsa378-4.patch)
6126349a-AMD-IOMMU-rearrange-reassignment.patch (Replaces xsa378-5.patch)
612634ae-AMD-IOMMU-rearrange-ER-UM-recording.patch (Replaces xsa378-6.patch)
612634c3-x86-p2m-introduce-p2m_is_special.patch (Replaces xsa378-7.patch)
612634dc-x86-p2m-guard-identity-mappings.patch (Replaces xsa378-8.patch)
612634f4-x86-mm-widen-locked-region-in-xatp1.patch (Replaces xsa379.patch)
6126350a-gnttab-release-mappings-preemption.patch (Replaces xsa380-1.patch
6126351f-gnttab-replace-mapkind.patch (Replaces xsa380-2.patch)
6126353d-gnttab-get-status-frames-array-capacity.patch (Replaces xsa382.patch)
61263553-Arm-restrict-maxmem-for-dom0less.patch (Replaces xsa383.patch)�- bsc#1189882 - refresh libxc.sr.superpage.patch
prevent superpage allocation in the LAPIC and ACPI_INFO range�- bsc#1189373 - VUL-0: CVE-2021-28694,CVE-2021-28695,
CVE-2021-28696: xen: IOMMU page mapping issues on x86 (XSA-378)
xsa378-1.patch
xsa378-2.patch
xsa378-3.patch
xsa378-4.patch
xsa378-5.patch
xsa378-6.patch
xsa378-7.patch
xsa378-8.patch
- bsc#1189376 - VUL-0: CVE-2021-28697: xen: grant table v2 status
pages may remain accessible after de-allocation. (XSA-379)
xsa379.patch
- bsc#1189378 - VUL-0: CVE-2021-28698: xen: long running loops in
grant table handling. (XSA-380)
xsa380-1.patch
xsa380-2.patch
- bsc#1189380 - VUL-0: CVE-2021-28699: xen: inadequate grant-v2
status frames array bounds check. (XSA-382)
xsa382.patch
- bsc#1189381 - VUL-0: CVE-2021-28700: xen: xen/arm: No memory
limit for dom0less domUs. (XSA-383)
xsa383.patch�- bsc#1188050 - L3: Xen guest yval1a80 SLES11SP4 hangs on cluster
See also bsc#1179246.
credit2-avoid-picking-a-spurious-idle-unit-when-caps-are-used.patch�- Drop aarch64-maybe-uninitialized.patch as the fix is in tarball.�- bsc#1176189 - xl monitoring process exits during xl save -p|-c
keep the monitoring process running to cleanup the domU during shutdown
xl-save-pc.patch�- bsc#1179246 - Dom0 hangs when pinning CPUs for dom0 with HVM guest
60be0e24-credit2-pick-runnable-unit.patch
60be0e42-credit2-per-entity-load-tracking-when-continuing.patch
- Upstream bug fixes (bsc#1027519)
60bf9e19-Arm-create-dom0less-domUs-earlier.patch (Replaces xsa372-1.patch)
60bf9e1a-Arm-boot-modules-scrubbing.patch (Replaces xsa372-2.patch)
60bf9e1b-VT-d-size-qinval-queue-dynamically.patch (Replaces xsa373-1.patch)
60bf9e1c-AMD-IOMMU-size-command-buffer-dynamically.patch (Replaces xsa373-2.patch)
60bf9e1d-VT-d-eliminate-flush-related-timeouts.patch (Replaces xsa373-2.patch)
60bf9e1e-x86-spec-ctrl-protect-against-SCSB.patch (Replaces xsa375.patch)
60bf9e1f-x86-spec-ctrl-mitigate-TAA-after-S3.patch (Replaces xsa377.patch)
60bfa904-AMD-IOMMU-wait-for-command-slot.patch (Replaces xsa373-4.patch)
60bfa906-AMD-IOMMU-drop-command-completion-timeout.patch (Replaces xsa373-5.patch)
60afe617-x86-TSX-minor-cleanup-and-improvements.patch
60afe618-x86-TSX-deprecate-vpmu=rtm-abort.patch
60be3097-x86-CPUID-fix-HLE-and-RTM-handling-again.patch
60c0bf86-x86-TSX-cope-with-deprecation.patch
60c8a7ac-x86-vpt-fully-init-timers-before-enlisting.patch
60c8de6e-osdep_xenforeignmemory_map-prototype.patch
60d49689-VT-d-undo-device-mappings-upon-error.patch
60d496b9-VT-d-adjust-domid-map-updating-on-unmap.patch
60d496d6-VT-d-clear_fault_bits-should-clear-all.patch
60d496ee-VT-d-dont-lose-errors-on-multi-IOMMU-flush.patch
60d5c6df-IOMMU-PCI-dont-let-domain-cleanup-continue.patch
- Dropped gcc11-fixes.patch�- bsc#1183243 - L3: Core cannot be opened when using xl dump-core
of VM with PTF
60ba695e-tools-libs-ctrl-fix-xc_core_arch_map_p2m-to-support.patch�- bsc#1180350 - some long deprecated commands were finally removed
in qemu6. Adjust libxl to use supported commands.
libxl-d5f54009dba11d04bfe2a28eee47b994de66b84a.patch
libxl-f3f778c81769075ac0eb93b98d4b2803e7936453.patch
libxl-4e217db45e83fc3173382306c8b03da86099a25d.patch
libxl-85760c03d664400368a3f76ae0225307c25049a7.patch
libxl-0ff26a3225d69ffec76fe5aca8296852fa951204.patch
libxl-7c313e8365eb663311a0cf39f77b4f5880244765.patch
libxl-0c0b3a7e4a2d65fd252b89b46bdcdb048bb24b6c.patch
libxl-fe6630ddc4e8a8fbf8dd28a1bc58e3881393f9c1.patch
libxl-qemu6-vnc-password.patch
libxl-qemu6-scsi.patch�- Update logrotate.conf, move global options into per-file sections
to prevent globbering of global state (bsc#1187406)�- Fix shell macro expansion in xen.spec, so that ExecStart=
in xendomains-wait-disks.service is created correctly (bsc#1183877)�- bsc#1186428 - VUL-0: CVE-2021-28693: xen: xen/arm: Boot modules
are not scrubbed (XSA-372)
xsa372-1.patch
xsa372-2.patch
- bsc#1186429 - VUL-0: CVE-2021-28692: xen: inappropriate x86 IOMMU
timeout detection / handling (XSA-373)
xsa373-1.patch
xsa373-2.patch
xsa373-3.patch
xsa373-4.patch
xsa373-5.patch
- bsc#1186433 - VUL-0: CVE-2021-0089: xen: Speculative Code Store
Bypass (XSA-375)
xsa375.patch
- bsc#1186434 - VUL-0: CVE-2021-28690: xen: x86: TSX Async Abort
protections not restored after S3 (XSA-377)
xsa377.patch
- Upstream bug fixes (bsc#1027519)
60a27288-x86emul-gas-2-36-test-harness-build.patch
60af933d-x86-gcc11-hypervisor-build.patch
60afe616-x86-CPUID-rework-HLE-and-RTM-handling.patch�- Upstream bug fix (bsc#1027519)
608676f2-VT-d-register-based-invalidation-optional.patch�- Add xen.sysconfig-fillup.patch to make sure xencommons is in a
format as expected by fillup. (bsc#1185682)
Each comment needs to be followed by an enabled key. Otherwise
fillup will remove manually enabled key=value pairs, along with
everything that looks like a stale comment, during next pkg update�- Refresh xenstore-launch.patch to cover also daemon case�- Update to Xen 4.14.2 bug fix release (bsc#1027519)
xen-4.14.2-testing-src.tar.bz2
- Drop patches contained in new tarball
5fedf9f4-x86-hpet_setup-fix-retval.patch
5ff458f2-x86-vPCI-tolerate-disabled-MSI-X-entry.patch
5ff71655-x86-dpci-EOI-regardless-of-masking.patch
5ffc58e8-x86-ACPI-dont-overwrite-FADT.patch
600999ad-x86-dpci-do-not-remove-pirqs-from.patch
600ab341-x86-vioapic-EOI-check-IRR-before-inject.patch
6011bbc7-x86-timer-fix-boot-without-PIT.patch
6013e4bd-memory-bail-from-page-scrub-when-CPU-offline.patch
6013e546-x86-HVM-reorder-domain-init-error-path.patch
601d4396-x86-EFI-suppress-ld-2-36-debug-info.patch
602bd768-page_alloc-only-flush-after-scrubbing.patch
602cfe3d-IOMMU-check-if-initialized-before-teardown.patch
602e5a8c-gnttab-never-permit-mapping-transitive-grants.patch
602e5abb-gnttab-bypass-IOMMU-when-mapping-own-grant.patch
6037b02e-x86-EFI-suppress-ld-2-36-base-relocs.patch
60410127-gcc11-adjust-rijndaelEncrypt.patch
60422428-x86-shadow-avoid-fast-fault-path.patch
604b9070-VT-d-disable-QI-IR-before-init.patch
60535c11-libxl-domain-soft-reset.patch
60700077-x86-vpt-avoid-pt_migrate-rwlock.patch
60787714-x86-HPET-factor-legacy-replacement-mode-enabling.patch
60787714-x86-HPET-avoid-legacy-replacement-mode.patch�- bsc#1180491 - "Panic on CPU 0: IO-APIC + timer doesn't work!"
60787714-x86-HPET-avoid-legacy-replacement-mode.patch
60787714-x86-HPET-factor-legacy-replacement-mode-enabling.patch
- Upstream bug fixes (bsc#1027519)
60410127-gcc11-adjust-rijndaelEncrypt.patch
60422428-x86-shadow-avoid-fast-fault-path.patch
604b9070-VT-d-disable-QI-IR-before-init.patch
60535c11-libxl-domain-soft-reset.patch (Replaces xsa368.patch)
60700077-x86-vpt-avoid-pt_migrate-rwlock.patch�- bsc#1137251 - Restore changes for xen-dom0-modules.service which
were silently removed on 2019-10-17�- bsc#1177112 - Fix libxc.sr.superpage.patch
The receiving side did detect holes in a to-be-allocated superpage,
but allocated a superpage anyway. This resulted to over-allocation.�- bsc#1167608 - adjust limit for max_event_channels
A previous change allowed an unbound number of event channels
to make sure even large domUs can start of of the box.
This may have a bad side effect in the light of XSA-344.
Adjust the built-in limit based on the number of vcpus.
In case this is not enough, max_event_channels=/maxEventChannels=
has to be used to set the limit as needed for large domUs
adjust libxl.max_event_channels.patch�- bsc#1183072 - VUL-0: CVE-2021-28687: xen: HVM soft-reset crashes
toolstack (XSA-368). Also resolves,
bsc#1179148 - kdump of HVM fails, soft-reset not handled by libxl
bsc#1181989 - openQA job causes libvirtd to dump core when
running kdump inside domain
xsa368.patch�- bsc#1177204 - L3-Question: conring size for XEN HV's with huge
memory to small. Inital Xen logs cut
5ffc58c4-ACPI-reduce-verbosity-by-default.patch
- Upstream bug fixes (bsc#1027519)
601d4396-x86-EFI-suppress-ld-2-36-debug-info.patch
602bd768-page_alloc-only-flush-after-scrubbing.patch
602cfe3d-IOMMU-check-if-initialized-before-teardown.patch
602e5a8c-gnttab-never-permit-mapping-transitive-grants.patch
602e5abb-gnttab-bypass-IOMMU-when-mapping-own-grant.patch
6037b02e-x86-EFI-suppress-ld-2-36-base-relocs.patch
- bsc#1181921 - GCC 11: xen package fails
gcc11-fixes.patch�- bsc#1182576 - L3: XEN domU crashed on resume when using the xl
unpause command
602ffae9-tools-libs-light-fix-xl-save--c-handling.patch�- Start using the %autosetup macro to simplify patch management
xen.spec�- bsc#1181921 - GCC 11: xen package fails
gcc11-fixes.patch
- Drop gcc10-fixes.patch�- Upstream bug fixes (bsc#1027519)
5fedf9f4-x86-hpet_setup-fix-retval.patch
5ff458f2-x86-vPCI-tolerate-disabled-MSI-X-entry.patch
5ff71655-x86-dpci-EOI-regardless-of-masking.patch
5ffc58e8-x86-ACPI-dont-overwrite-FADT.patch
600999ad-x86-dpci-do-not-remove-pirqs-from.patch (Replaces xsa360.patch)
600ab341-x86-vioapic-EOI-check-IRR-before-inject.patch
6013e4bd-memory-bail-from-page-scrub-when-CPU-offline.patch
6013e546-x86-HVM-reorder-domain-init-error-path.patch
- bsc#1180491 - "Panic on CPU 0: IO-APIC + timer doesn't work!"
6011bbc7-x86-timer-fix-boot-without-PIT.patch�- bsc#1181254 - VUL-0: xen: IRQ vector leak on x86 (XSA-360)
xsa360.patch�- bsc#1180794 - bogus qemu binary path used when creating fv guest
under xen
xen.spec�- bsc#1180690 - L3-Question: xen: no needsreboot flag set
Add Provides: installhint(reboot-needed) in xen.spec for libzypp�- Update libxl.set-migration-constraints-from-cmdline.patch
Remove code which handled --max_factor. The total amount of
transferred data is no indicator to trigger the final stop+copy.
This should have been removed during upgrade to Xen 4.7.
Fix off-by-one in --max_iters, it caused one additional copy cycle.
Reduce default value of --max_iters from 5 to 2.
The workload within domU will continue to produce dirty pages.
It is unreasonable to expect any slowdown during migration.
Now there is one initial copy of all memory, one instead of four
iteration for dirty memory, and a final copy iteration prior move.�- Update to Xen 4.14.1 bug fix release (bsc#1027519)
xen-4.14.1-testing-src.tar.bz2
Contains the following recent security fixes
bsc#1179516 XSA-359 - CVE-2020-29571
bsc#1179514 XSA-358 - CVE-2020-29570
bsc#1179513 XSA-356 - CVE-2020-29567
bsc#1178963 XSA-355 - CVE-2020-29040
bsc#1178591 XSA-351 - CVE-2020-28368
bsc#1179506 XSA-348 - CVE-2020-29566
bsc#1179502 XSA-325 - CVE-2020-29483
bsc#1179501 XSA-324 - CVE-2020-29484
bsc#1179498 XSA-322 - CVE-2020-29481
bsc#1179496 XSA-115 - CVE-2020-29480
- Dropped patches contained in new tarball
5f1a9916-x86-S3-put-data-sregs-into-known-state.patch
5f21b9fd-x86-cpuid-APIC-bit-clearing.patch
5f479d9e-x86-begin-to-support-MSR_ARCH_CAPS.patch
5f4cf06e-x86-Dom0-expose-MSR_ARCH_CAPS.patch
5f4cf96a-x86-PV-fix-SEGBASE_GS_USER_SEL.patch
5f560c42-x86-PV-64bit-segbase-consistency.patch
5f560c42-x86-PV-rewrite-segment-ctxt-switch.patch
5f5b6b7a-hypfs-fix-custom-param-writes.patch
5f607915-x86-HVM-more-consistent-IO-completion.patch
5f6a002d-x86-PV-handle-MSR_MISC_ENABLE-correctly.patch
5f6a0049-memory-dont-skip-RCU-unlock-in-acquire_resource.patch
5f6a0067-x86-vPT-fix-race-when-migrating-timers.patch
5f6a008e-x86-MSI-drop-read_msi_msg.patch
5f6a00aa-x86-MSI-X-restrict-reading-of-PBA-bases.patch
5f6a00c4-evtchn-relax-port_is_valid.patch
5f6a00df-x86-PV-avoid-double-exception-injection.patch
5f6a00f4-evtchn-add-missing-barriers.patch
5f6a0111-evtchn-x86-enforce-correct-upper-limit.patch
5f6a013f-evtchn_reset-shouldnt-succeed-with.patch
5f6a0160-evtchn-IRQ-safe-per-channel-lock.patch
5f6a0178-evtchn-address-races-with-evtchn_reset.patch
5f6a01a4-evtchn-preempt-in-evtchn_destroy.patch
5f6a01c6-evtchn-preempt-in-evtchn_reset.patch
5f6cfb5b-x86-PV-dont-GP-for-SYSENTER-with-NT-set.patch
5f6cfb5b-x86-PV-dont-clobber-NT-on-return-to-guest.patch
5f71a21e-x86-S3-fix-shadow-stack-resume.patch
5f76ca65-evtchn-Flask-prealloc-for-send.patch
5f76caaf-evtchn-FIFO-use-stable-fields.patch
5f897c25-x86-traps-fix-read_registers-for-DF.patch
5f897c7b-x86-smpboot-restrict-memguard_guard_stack.patch
5f8ed5d3-x86-mm-map_pages_to_xen-single-exit-path.patch
5f8ed5eb-x86-mm-modify_xen_mappings-one-exit-path.patch
5f8ed603-x86-mm-prevent-races-in-mapping-updates.patch
5f8ed635-IOMMU-suppress-iommu_dont_flush_iotlb-when.patch
5f8ed64c-IOMMU-hold-page-ref-until-TLB-flush.patch
5f8ed682-AMD-IOMMU-convert-amd_iommu_pte.patch
5f8ed69c-AMD-IOMMU-update-live-PTEs-atomically.patch
5f8ed6b0-AMD-IOMMU-suitably-order-DTE-mods.patch
xsa286-1.patch
xsa286-2.patch
xsa286-3.patch
xsa286-4.patch
xsa286-5.patch
xsa286-6.patch
xsa351-1.patch
xsa351-2.patch
xsa351-3.patch
xsa355.patch�- Pass --with-rundir to configure to get rid of /var/run�- bsc#1178736 - allow restart of xenwatchdogd, enable tuning of
keep-alive interval and timeout options via XENWATCHDOGD_ARGS=
add xenwatchdogd-options.patch
add xenwatchdogd-restart.patch�- bsc#1177112 - Fix libxc.sr.superpage.patch
The receiving side may punch holes incorrectly into optimistically
allocated superpages. Also reduce overhead in bitmap handling.
add libxc-bitmap-50a5215f30e964a6f16165ab57925ca39f31a849.patch
add libxc-bitmap-long.patch
add libxc-bitmap-longs.patch�- boo#1029961 - Move files in xen-tools-domU to /usr/bin from /bin
xen-destdir.patch
Drop tmp_build.patch�- bsc#1176782 - L3: xl dump-core shows missing nr_pages during
core. If maxmem and current are the same the issue doesn't happen
5fca3b32-tools-libs-ctrl-fix-dumping-of-ballooned-guest.patch�- bsc#1178963 - VUL-0: xen: stack corruption from XSA-346 change
(XSA-355)
xsa355.patch�- Fix build error with libxl.fix-libacpi-dependency.patch�- Enhance libxc.migrate_tracking.patch
Hide SUSEINFO messages from pause/unpause/resume from xl command.
They are intended for libvirt logging, but lacked info about
execution context.
Remove extra logging about dirty pages in each iteration, the
number of transferred pages + protocol overhead is already
reported elsewhere.�- Remove libxl.libxl__domain_pvcontrol.patch
It is already part of 4.14.0-rc1�- bsc#1178591 - VUL-0: CVE-2020-28368: xen: Intel RAPL sidechannel
attack aka PLATYPUS attack aka XSA-351
xsa351-1.patch
xsa351-2.patch
xsa351-3.patch�- bsc#1177950 - adjust help for --max_iters, default is 5
libxl.set-migration-constraints-from-cmdline.patch�- jsc#SLE-16899 - improve performance of live migration
remove allocations and memcpy from hotpaths on sending and
receiving side to get more throughput on 10Gbs+ connections
libxc-sr-3cccdae45242dab27198b8e150be0c85acd5d3c9.patch
libxc-sr-add-xc_is_known_page_type.patch
libxc-sr-arrays.patch
libxc-sr-batch_pfns.patch
libxc-sr-page_type_has_stream_data.patch
libxc-sr-readv_exact.patch
libxc-sr-restore-handle_buffered_page_data.patch
libxc-sr-restore-handle_incoming_page_data.patch
libxc-sr-restore-map_errs.patch
libxc-sr-restore-mfns.patch
libxc-sr-restore-pfns.patch
libxc-sr-restore-populate_pfns-mfns.patch
libxc-sr-restore-populate_pfns-pfns.patch
libxc-sr-restore-read_record.patch
libxc-sr-restore-types.patch
libxc-sr-save-errors.patch
libxc-sr-save-guest_data.patch
libxc-sr-save-iov.patch
libxc-sr-save-local_pages.patch
libxc-sr-save-mfns.patch
libxc-sr-save-rec_pfns.patch
libxc-sr-save-show_transfer_rate.patch
libxc-sr-save-types.patch
libxc-sr-use-xc_is_known_page_type.patch
adjust libxc.sr.superpage.patch
adjust libxc.migrate_tracking.patch�- Upstream bug fixes (bsc#1027519)
5f479d9e-x86-begin-to-support-MSR_ARCH_CAPS.patch
5f4cf06e-x86-Dom0-expose-MSR_ARCH_CAPS.patch
5f4cf96a-x86-PV-fix-SEGBASE_GS_USER_SEL.patch
5f560c42-x86-PV-rewrite-segment-ctxt-switch.patch
5f5b6b7a-hypfs-fix-custom-param-writes.patch
5f607915-x86-HVM-more-consistent-IO-completion.patch
5f6cfb5b-x86-PV-dont-GP-for-SYSENTER-with-NT-set.patch
5f6cfb5b-x86-PV-dont-clobber-NT-on-return-to-guest.patch
5f71a21e-x86-S3-fix-shadow-stack-resume.patch
5f76ca65-evtchn-Flask-prealloc-for-send.patch
5f76caaf-evtchn-FIFO-use-stable-fields.patch
5f897c25-x86-traps-fix-read_registers-for-DF.patch
5f897c7b-x86-smpboot-restrict-memguard_guard_stack.patch
- Renamed patches
5f560c42-x86-PV-64bit-segbase-consistency.patch
Replaces 5f5b6951-x86-PV-64bit-segbase-consistency.patch
5f6a002d-x86-PV-handle-MSR_MISC_ENABLE-correctly.patch
Replaces 5f6a05a0-pv-Handle-the-Intel-specific-MSR_MISC_ENABLE-correctly.patch
5f6a0049-memory-dont-skip-RCU-unlock-in-acquire_resource.patch
Replaces 5f6a05b7-xen-memory-Dont-skip-the-RCU-unlock-path-in-acquire_resource.patch
5f6a0067-x86-vPT-fix-race-when-migrating-timers.patch
Replaces 5f6a05dd-vpt-fix-race-when-migrating-timers-between-vCPUs.patch
5f6a008e-x86-MSI-drop-read_msi_msg.patch
Replaces 5f6a05fa-msi-get-rid-of-read_msi_msg.patch
5f6a00aa-x86-MSI-X-restrict-reading-of-PBA-bases.patch
Replaces 5f6a061a-MSI-X-restrict-reading-of-table-PBA-bases-from-BARs.patch
5f6a00c4-evtchn-relax-port_is_valid.patch
Replaces 5f6a062c-evtchn-relax-port_is_valid.patch
5f6a00df-x86-PV-avoid-double-exception-injection.patch
Replaces 5f6a065c-pv-Avoid-double-exception-injection.patch
5f6a00f4-evtchn-add-missing-barriers.patch
Replaces 5f6a0674-xen-evtchn-Add-missing-barriers-when-accessing-allocating-an-event-channel.patch
5f6a0111-evtchn-x86-enforce-correct-upper-limit.patch
Replaces 5f6a068e-evtchn-x86-enforce-correct-upper-limit-for-32-bit-guests.patch
5f6a013f-evtchn_reset-shouldnt-succeed-with.patch
Replaces 5f6a06be-evtchn-evtchn_reset-shouldnt-succeed-with-still-open-ports.patch
5f6a0160-evtchn-IRQ-safe-per-channel-lock.patch
Replaces 5f6a06e0-evtchn-convert-per-channel-lock-to-be-IRQ-safe.patch
5f6a0178-evtchn-address-races-with-evtchn_reset.patch
Replaces 5f6a06f2-evtchn-address-races-with-evtchn_reset.patch
5f6a01a4-evtchn-preempt-in-evtchn_destroy.patch
Replaces 5f6a071f-evtchn-arrange-for-preemption-in-evtchn_destroy.patch
5f6a01c6-evtchn-preempt-in-evtchn_reset.patch
Replaces 5f6a0754-evtchn-arrange-for-preemption-in-evtchn_reset.patch�- bsc#1177409 - VUL-0: CVE-2020-27674: xen: x86 PV guest
INVLPG-like flushes may leave stale TLB entries (XSA-286)
xsa286-1.patch
xsa286-2.patch
xsa286-3.patch
xsa286-4.patch
xsa286-5.patch
xsa286-6.patch
- bsc#1177412 - VUL-0: CVE-2020-27672: xen: Race condition in Xen
mapping code (XSA-345)
5f8ed5d3-x86-mm-map_pages_to_xen-single-exit-path.patch
5f8ed5eb-x86-mm-modify_xen_mappings-one-exit-path.patch
5f8ed603-x86-mm-prevent-races-in-mapping-updates.patch
- bsc#1177413 - VUL-0: CVE-2020-27671: xen: undue deferral of IOMMU
TLB flushes (XSA-346)
5f8ed635-IOMMU-suppress-iommu_dont_flush_iotlb-when.patch
5f8ed64c-IOMMU-hold-page-ref-until-TLB-flush.patch
- bsc#1177414 - VUL-0: CVE-2020-27670: xen: unsafe AMD IOMMU page
table updates (XSA-347)
5f8ed682-AMD-IOMMU-convert-amd_iommu_pte.patch
5f8ed69c-AMD-IOMMU-update-live-PTEs-atomically.patch
5f8ed6b0-AMD-IOMMU-suitably-order-DTE-mods.patch�- Update libxc.sr.superpage.patch
set errno in x86_hvm_alloc_4k (bsc#1177112)�- bsc#1176339 - VUL-0: CVE-2020-25602: xen: x86 pv: Crash when
handling guest access to MSR_MISC_ENABLE (XSA-333)
5f6a05a0-pv-Handle-the-Intel-specific-MSR_MISC_ENABLE-correctly.patch
- bsc#1176341 - VUL-0: CVE-2020-25598: xen: Missing unlock in
XENMEM_acquire_resource error path (XSA-334)
5f6a05b7-xen-memory-Dont-skip-the-RCU-unlock-path-in-acquire_resource.patch
- bsc#1176343 - VUL-0: CVE-2020-25604: xen: race when migrating
timers between x86 HVM vCPU-s (XSA-336)
5f6a05dd-vpt-fix-race-when-migrating-timers-between-vCPUs.patch
- bsc#1176344 - VUL-0: CVE-2020-25595: xen: PCI passthrough code
reading back hardware registers (XSA-337)
5f6a05fa-msi-get-rid-of-read_msi_msg.patch
5f6a061a-MSI-X-restrict-reading-of-table-PBA-bases-from-BARs.patch
- bsc#1176346 - VUL-0: CVE-2020-25597: xen: once valid event
channels may not turn invalid (XSA-338)
5f6a062c-evtchn-relax-port_is_valid.patch
- bsc#1176345 - VUL-0: CVE-2020-25596: xen: x86 pv guest kernel
DoS via SYSENTER (XSA-339)
5f6a065c-pv-Avoid-double-exception-injection.patch
- bsc#1176347 - VUL-0: CVE-2020-25603: xen: Missing barrier
barriers when accessing/allocating an event channel (XSA-340)
5f6a0674-xen-evtchn-Add-missing-barriers-when-accessing-allocating-an-event-channel.patch
- bsc#1176348 - VUL-0: CVE-2020-25600: xen: out of bounds event
channels available to 32-bit x86 domains (XSA-342)
5f6a068e-evtchn-x86-enforce-correct-upper-limit-for-32-bit-guests.patch
- bsc#1176349 - VUL-0: CVE-2020-25599: xen: races with
evtchn_reset() (XSA-343)
5f6a06be-evtchn-evtchn_reset-shouldnt-succeed-with-still-open-ports.patch
5f6a06e0-evtchn-convert-per-channel-lock-to-be-IRQ-safe.patch
5f6a06f2-evtchn-address-races-with-evtchn_reset.patch
- bsc#1176350 - VUL-0: CVE-2020-25601: xen: lack of preemption in
evtchn_reset() / evtchn_destroy() (XSA-344)
5f6a071f-evtchn-arrange-for-preemption-in-evtchn_destroy.patch
5f6a0754-evtchn-arrange-for-preemption-in-evtchn_reset.patch
- Upstream bug fix (bsc#1027519)
5f5b6951-x86-PV-64bit-segbase-consistency.patch�- Fix problems in xen.spec with building on aarch64�- Make use of %service_del_postun_without_restart while preserving
the old behavior for older distros.
- In %post tools, remove unnecessary qemu symlinks.�- Fix error in xen-tools %post when linking pvgrub64.bin
- Make paths below libexec more explicit
- Create symlink also for pvgrub32.bin�- Revert previous libexec change for qemu compat wrapper
The path is used in existing domU.xml files in the emulator field
- Escape some % chars in xen.spec, they have to appear verbatim�- Enhance libxc.migrate_tracking.patch
Print number of allocated pages on sending side, this is more
accurate than p2m_size.�- jsc#SLE-15926 - Dev: XEN: drop netware support
Dropped the following patches
pygrub-netware-xnloader.patch
xnloader.py
Refreshed pygrub-boot-legacy-sles.patch�- Fix build on aarch64 with gcc10
- Package xenhypfs for aarch64�- Correct license name
* GPL-3.0+ is now GPL-3.0-or-later�- Upstream bug fixes (bsc#1027519)
5f1a9916-x86-S3-put-data-sregs-into-known-state.patch
5f21b9fd-x86-cpuid-APIC-bit-clearing.patch�- Update to Xen 4.14.0 FCS release
xen-4.14.0-testing-src.tar.bz2
* Linux stubdomains (contributed by QUBES OS)
* Control-flow Enforcement Technology (CET) Shadow Stack support (contributed by Citrix)
* Lightweight VM fork for fuzzing / introspection. (contributed by Intel)
* Livepatch: buildid and hotpatch stack requirements
* CONFIG_PV32
* Hypervisor FS support
* Running Xen as a Hyper-V Guest
* Domain ID randomization, persistence across save / restore
* Golang binding autogeneration
* KDD support for Windows 7, 8.x and 10
- Dropped patches contained in new tarball
5eb51be6-cpupool-fix-removing-cpu-from-pool.patch
5eb51caa-sched-vcpu-pause-flags-atomic.patch
5ec2a760-x86-determine-MXCSR-mask-always.patch
5ec50b05-x86-idle-rework-C6-EOI-workaround.patch
5ec7dcaa-x86-dont-enter-C6-with-in-service-intr.patch
5ec7dcf6-x86-dont-enter-C3-C6-with-errata.patch
5ec82237-x86-extend-ISR-C6-workaround-to-Haswell.patch
5ece1b91-x86-clear-RDRAND-CPUID-bit-on-AMD-fam-15-16.patch
5ece8ac4-x86-load_system_tables-NMI-MC-safe.patch
5ed69804-x86-ucode-fix-start-end-update.patch
5eda60cb-SVM-split-recalc-NPT-fault-handling.patch
5edf6ad8-ioreq-pending-emulation-server-destruction-race.patch
5edfbbea-x86-spec-ctrl-CPUID-MSR-defs-for-SRBDS.patch
5edfbbea-x86-spec-ctrl-mitigate-SRBDS.patch
5ee24d0e-x86-spec-ctrl-document-SRBDS-workaround.patch
xsa317.patch
xsa319.patch
xsa321-1.patch
xsa321-2.patch
xsa321-3.patch
xsa321-4.patch
xsa321-5.patch
xsa321-6.patch
xsa321-7.patch
xsa328-1.patch
xsa328-2.patch�- bsc#1172356 - Not able to hot-plug NIC via virt-manager, asks to
attach on next reboot while it should be live attached
ignore-ip-command-script-errors.patch�- Enhance libxc.migrate_tracking.patch
After transfer of domU memory, the target host has to assemble
the backend devices. Track the time prior xc_domain_unpause.�- Add libxc.migrate_tracking.patch to track live migrations
unconditionally in logfiles, especially in libvirt.
This will track how long a domU was suspended during transit.�- bsc#1173376 - VUL-0: CVE-2020-15566: xen: XSA-317 - Incorrect
error handling in event channel port allocation
xsa317.patch
- bsc#1173377 - VUL-0: CVE-2020-15563: xen: XSA-319 - inverted code
paths in x86 dirty VRAM tracking
xsa319.patch
- bsc#1173378 - VUL-0: CVE-2020-15565: xen: XSA-321 - insufficient
cache write- back under VT-d
xsa321-1.patch
xsa321-2.patch
xsa321-3.patch
xsa321-4.patch
xsa321-5.patch
xsa321-6.patch
xsa321-7.patch
- bsc#1173380 - VUL-0: CVE-2020-15567: xen: XSA-328 - non-atomic
modification of live EPT PTE
xsa328-1.patch
xsa328-2.patch�- bsc#1172205 - VUL-0: CVE-2020-0543: xen: Special Register Buffer
Data Sampling (SRBDS) aka "CrossTalk" (XSA-320)
5ee24d0e-x86-spec-ctrl-document-SRBDS-workaround.patch
5edfbbea-x86-spec-ctrl-CPUID-MSR-defs-for-SRBDS.patch (Replaces xsa320-1.patch)
5edfbbea-x86-spec-ctrl-mitigate-SRBDS.patch (Replaces xsa320-2.patch)
- Upstream bug fixes (bsc#1027519)
5ec50b05-x86-idle-rework-C6-EOI-workaround.patch
5ec7dcaa-x86-dont-enter-C6-with-in-service-intr.patch
5ec7dcf6-x86-dont-enter-C3-C6-with-errata.patch
5ec82237-x86-extend-ISR-C6-workaround-to-Haswell.patch
5ece1b91-x86-clear-RDRAND-CPUID-bit-on-AMD-fam-15-16.patch
5ece8ac4-x86-load_system_tables-NMI-MC-safe.patch
5ed69804-x86-ucode-fix-start-end-update.patch
5eda60cb-SVM-split-recalc-NPT-fault-handling.patch
5edf6ad8-ioreq-pending-emulation-server-destruction-race.patch�- Fixes for %_libexecdir changing to /usr/libexec�- bsc#1172205 - VUL-0: CVE-2020-0543: xen: Special Register Buffer
Data Sampling (SRBDS) aka "CrossTalk" (XSA-320)
xsa320-1.patch
xsa320-2.patch�- Update to Xen 4.13.1 bug fix release (bsc#1027519)
xen-4.13.1-testing-src.tar.bz2
5eb51be6-cpupool-fix-removing-cpu-from-pool.patch
5eb51caa-sched-vcpu-pause-flags-atomic.patch
5ec2a760-x86-determine-MXCSR-mask-always.patch
- Drop patches contained in new tarball
5de65f84-gnttab-map-always-do-IOMMU-part.patch
5de65fc4-x86-avoid-HPET-use-on-certain-Intel.patch
5e15e03d-sched-fix-S3-resume-with-smt=0.patch
5e16fb6a-x86-clear-per-cpu-stub-page-info.patch
5e1da013-IRQ-u16-is-too-narrow-for-evtchn.patch
5e1dcedd-Arm-place-speculation-barrier-after-ERET.patch
5e21ce98-x86-time-update-TSC-stamp-after-deep-C-state.patch
5e286cce-VT-d-dont-pass-bridges-to-domain_context_mapping_one.patch
5e318cd4-x86-apic-fix-disabling-LVT0.patch
5e344c11-x86-HVM-relinquish-resources-from-domain_destroy.patch
5e3bd385-EFI-recheck-variable-name-strings.patch
5e3bd3d1-EFI-dont-leak-heap-VIA-XEN_EFI_get_next_variable_name.patch
5e3bd3f8-xmalloc-guard-against-overflow.patch
5e46e090-x86-smp-reset-x2apic_enabled-in-smp_send_stop.patch
5e4c00ef-VT-d-check-full-RMRR-for-E820-reserved.patch
5e4d4f5b-sched-fix-get_cpu_idle_time-with-core-sched.patch
5e4e614d-x86-spec-ctrl-no-xen-also-disables-branch-hardening.patch
5e4ec20e-x86-virtualise-MSR_PLATFORM_ID-properly.patch
5e5e7188-fix-error-path-in-cpupool_unassign_cpu_start.patch
5e6f53dd-AMD-IOMMU-fix-off-by-one-get_paging_mode.patch
5e7a371c-sched-fix-cpu-onlining-with-core-sched.patch
5e7c90cf-sched-fix-cpu-offlining-with-core-sched.patch
5e7cfb29-x86-ucode-AMD-fix-assert-in-compare_patch.patch
5e7cfb29-x86-ucode-fix-error-paths-in-apply_microcode.patch
5e7dd83b-libx86-CPUID-fix-not-just-leaf-7.patch
5e7dfbf6-x86-ucode-AMD-potential-buffer-overrun-equiv-tab.patch
5e846cce-x86-HVM-fix-AMD-ECS-handling-for-Fam10.patch
5e84905c-x86-ucode-AMD-fix-more-potential-buffer-overruns.patch
5e86f7b7-credit2-avoid-vCPUs-with-lower-creds-than-idle.patch
5e86f7fd-credit2-fix-credit-too-few-resets.patch
5e876b0f-tools-xenstore-fix-use-after-free-in-xenstored.patch
5e95ad61-xenoprof-clear-buffer-intended-to-be-shared-with-guests.patch
5e95ad8f-xenoprof-limit-consumption-of-shared-buffer-data.patch
5e95ae77-Add-missing-memory-barrier-in-the-unlock-path-of-rwlock.patch
5e95af5e-xen-gnttab-Fix-error-path-in-map_grant_ref.patch
5e95afb8-gnttab-fix-GNTTABOP_copy-continuation-handling.patch�- spec: Remove invocation of autogen.sh
- spec: Recommend qemu-ovmf-x86_64 to provide UEFI firmwares�- bsc#1170968 - GCC 10: xen build fails on i586
gcc10-fixes.patch�- bsc#1169392 - VUL-0: CVE-2020-11742: xen: Bad continuation
handling in GNTTABOP_copy (XSA-318)
5e95afb8-gnttab-fix-GNTTABOP_copy-continuation-handling.patch�- bsc#1168140 - VUL-0: CVE-2020-11740, CVE-2020-11741: xen: XSA-313
multiple xenoprof issues
5e95ad61-xenoprof-clear-buffer-intended-to-be-shared-with-guests.patch
5e95ad8f-xenoprof-limit-consumption-of-shared-buffer-data.patch
- bsc#1168142 - VUL-0: CVE-2020-11739: xen: XSA-314 - Missing
memory barriers in read-write unlock paths
5e95ae77-Add-missing-memory-barrier-in-the-unlock-path-of-rwlock.patch
- bsc#1168143 - VUL-0: CVE-2020-11743: xen: XSA-316 - Bad error
path in GNTTABOP_map_grant
5e95af5e-xen-gnttab-Fix-error-path-in-map_grant_ref.patch
- bsc#1167152 - L3: Xenstored Crashed during VM install Need Core
analyzed
5e876b0f-tools-xenstore-fix-use-after-free-in-xenstored.patch
- bsc#1165206 - Xen 4.12 DomU hang / freeze / stall / NMI watchdog
bug soft lockup CPU #0 stuck under high load / upstream with
workaround. See also bsc#1134506
5e86f7b7-credit2-avoid-vCPUs-with-lower-creds-than-idle.patch
5e86f7fd-credit2-fix-credit-too-few-resets.patch
- Drop for upstream solution (bsc#1165206)
01-xen-credit2-avoid-vcpus-to.patch
default-to-credit1-scheduler.patch
- Upstream bug fixes (bsc#1027519)
5e4ec20e-x86-virtualise-MSR_PLATFORM_ID-properly.patch
5e5e7188-fix-error-path-in-cpupool_unassign_cpu_start.patch
5e6f53dd-AMD-IOMMU-fix-off-by-one-get_paging_mode.patch
5e7a371c-sched-fix-cpu-onlining-with-core-sched.patch
5e7c90cf-sched-fix-cpu-offlining-with-core-sched.patch
5e7cfb29-x86-ucode-AMD-fix-assert-in-compare_patch.patch
5e7cfb29-x86-ucode-fix-error-paths-in-apply_microcode.patch
5e7dd83b-libx86-CPUID-fix-not-just-leaf-7.patch
5e7dfbf6-x86-ucode-AMD-potential-buffer-overrun-equiv-tab.patch
5e846cce-x86-HVM-fix-AMD-ECS-handling-for-Fam10.patch
5e84905c-x86-ucode-AMD-fix-more-potential-buffer-overruns.patch�- bsc#1167608 - unbound limit for max_event_channels
domUs with many vcpus and/or resources fail to start
libxl.max_event_channels.patch�- bsc#1161480 - Fix xl shutdown for HVM without PV drivers
add libxl.libxl__domain_pvcontrol.patch�- bsc#1165206 - Xen 4.12 DomU hang / freeze / stall / NMI watchdog
bug soft lockup CPU #0 stuck under high load / upstream with
workaround. See also bsc#1134506
01-xen-credit2-avoid-vcpus-to.patch�- bsc#1158414 - GCC 10: xen build fails
gcc10-fixes.patch�- bsc#1165206 - Xen 4.12 DomU hang / freeze / stall / NMI watchdog
bug soft lockup CPU #0 stuck under high load / upstream with
workaround. See also bsc#1134506
default-to-credit1-scheduler.patch�- bsc#1160932 - VUL-0: xen: XSA-312 v1: arm: a CPU may speculate
past the ERET instruction
5e1dcedd-Arm-place-speculation-barrier-after-ERET.patch
- bsc#1164425 - x86: "spec-ctrl=no-xen" should also disable branch
hardening
5e4e614d-x86-spec-ctrl-no-xen-also-disables-branch-hardening.patch
- Upstream bug fixes (bsc#1027519)
5e21ce98-x86-time-update-TSC-stamp-after-deep-C-state.patch
5e286cce-VT-d-dont-pass-bridges-to-domain_context_mapping_one.patch
5e318cd4-x86-apic-fix-disabling-LVT0.patch
5e344c11-x86-HVM-relinquish-resources-from-domain_destroy.patch
5e3bd385-EFI-recheck-variable-name-strings.patch
5e3bd3d1-EFI-dont-leak-heap-VIA-XEN_EFI_get_next_variable_name.patch
5e3bd3f8-xmalloc-guard-against-overflow.patch
5e46e090-x86-smp-reset-x2apic_enabled-in-smp_send_stop.patch
5e4c00ef-VT-d-check-full-RMRR-for-E820-reserved.patch
5e4d4f5b-sched-fix-get_cpu_idle_time-with-core-sched.patch�- bsc#1159755 - use fixed qemu-3.1 machine type for HVM
This must be done in qemu to preserve PCI layout
remove libxl.lock-qemu-machine-for-hvm.patch�- jsc#SLE-10183 - script to calculate cpuid= mask
add helper script from https://github.com/twizted/xen_maskcalc
domUs may be migrated between different cpus from the same vendor
if their visible cpuid value has incompatible feature bits masked.�- jsc#SLE-10172, bsc#1055731 - handle degraded raid for xendomains
add helper script and systemd service from
https://github.com/luizluca/xen-tools-xendomains-wait-disk
in new sub package xen-tools-xendomains-wait-disk
See included README for usage instructions
xendomains-wait-disks.LICENSE
xendomains-wait-disks.README.md
xendomains-wait-disks.sh�- bsc#1159755 - use fixed qemu-3.1 machine type for HVM
qemu4 introduced incompatible changes in pc-i440fx, which revealed
a design bug in 'xenfv'. Live migration from domUs started with
qemu versions prior qemu4 can not be received with qemu4+.
libxl.lock-qemu-machine-for-hvm.patch�- Upstream bug fixes (bsc#1027519)
5de65f84-gnttab-map-always-do-IOMMU-part.patch
5de65fc4-x86-avoid-HPET-use-on-certain-Intel.patch
5e15e03d-sched-fix-S3-resume-with-smt=0.patch
5e16fb6a-x86-clear-per-cpu-stub-page-info.patch
5e1da013-IRQ-u16-is-too-narrow-for-evtchn.patch�- BuildRequire pkgconfig(libsystemd) instead of systemd-devel:
Allow OBS to shortcut through the -mini flavors.�- bsc#1159320 - Xen logrotate file needs updated
logrotate.conf�- Update to Xen 4.13.0 FCS release
xen-4.13.0-testing-src.tar.bz2
* Core Scheduling (contributed by SUSE)
* Branch hardening to mitigate against Spectre v1 (contributed by Citrix)
* Late uCode loading (contributed by Intel)
* Improved live-patching build tools (contributed by AWS)
* OP-TEE support (contributed by EPAM)
* Renesas R-CAR IPMMU-VMSA driver (contributed by EPAM)
* Dom0-less passthrough and ImageBuilder (contributed by XILINX)
* Support for new Hardware�- Update to Xen 4.13.0 RC4 release
xen-4.13.0-testing-src.tar.bz2
- Rebase libxl.pvscsi.patch�- Update to Xen 4.13.0 RC3 release
xen-4.13.0-testing-src.tar.bz2
- Drop python38-build.patch�- Update to Xen 4.13.0 RC2 release
xen-4.13.0-testing-src.tar.bz2�- Add python38-build.patch fixing build with Python 3.8 (add
- -embed to python-config call)�- Update to Xen 4.13.0 RC1 release
xen-4.13.0-testing-src.tar.bz2
- Drop patches contained in new tarball or invalid
5ca7660f-x86-entry-drop-unused-includes.patch
5cab2a6b-x86-ACPI-also-parse-AMD-tables-early.patch
5cab2ab7-x86-IOMMU-introduce-init-ops.patch
5cab2ae8-x86-IOMMU-abstract-iommu_supports_eim.patch
5cab2b4e-x86-IOMMU-abstract-iommu_enable_x2apic_IR.patch
5cab2b95-x86-IOMMU-initialize-iommu_ops-in.patch
5cac9a4b-x86-IOMMU-abstract-adjust_vtd_irq_affinities.patch
5cdeac7f-AMD-IOMMU-adjust-IOMMU-list-head-init.patch
5cf8da09-adjust-sysdom-creation-call-earlier-on-x86.patch
5d0cf4e4-AMD-IOMMU-initialize-IRQ-tasklet-once.patch
5d149bb0-AMD-IOMMU-dont-add-IOMMUs.patch
5d1b3fab-AMD-IOMMU-restrict-feature-logging.patch
5d358508-x86-IRQ-desc-affinity-represents-request.patch
5d358534-x86-IRQ-consolidate-arch-cpu_mask-use.patch
5d358a67-AMD-IOMMU-pass-IOMMU-to-iterate_ivrs_entries-cb.patch
5d358a92-AMD-IOMMU-pass-IOMMU-to-amd_iommu_alloc_intremap_table.patch
5d39811c-x86-IOMMU-dont-restrict-IRQ-affinities.patch
5d417813-AMD-IOMMU-bitfield-extended-features.patch
5d417838-AMD-IOMMU-bitfield-control-reg.patch
5d41785b-AMD-IOMMU-bitfield-IRTE.patch
5d41787e-AMD-IOMMU-pass-IOMMU-to-gfu-intremap-entry.patch
5d4178ad-AMD-IOMMU-128bit-non-guest-APIC-IRTE.patch
5d4178fc-AMD-IOMMU-split-amd_iommu_init_one.patch
5d41793f-AMD-IOMMU-allow-enabling-without-IRQ.patch
5d417a16-AMD-IOMMU-adjust-IRQ-setup-for-x2APIC.patch
5d417ab6-AMD-IOMMU-enable-x2APIC-mode.patch
5d417b38-AMD-IOMMU-correct-IRTE-updating.patch
5d417b6a-AMD-IOMMU-dont-needlessly-log-headers.patch
5d419d49-x86-spec-ctrl-report-proper-status.patch
5d43253c-x86-ucode-always-collect_cpu_info-at-boot.patch
5d4a9d25-AMD-IOMMU-drop-not-found-message.patch
5d4aa36f-x86-apic-enable-x2APIC-mode-earlier.patch
5d4afa7a-credit2-fix-memory-leak.patch
5d4d850a-introduce-bss-percpu-page-aligned.patch
5d516531-x86-xpti-dont-leak-TSS-adjacent-data.patch
5d5bf475-x86-PV-fix-handling-of-iommu-mappings.patch
5d6524ca-x86-mm-correctly-init-M2P-entries.patch
5d67ceaf-x86-properly-gate-PKU-clearing.patch
5d70bfba-x86-shadow-dont-enable-with-too-small-allocation.patch
5d779811-x86-fix-CPUID7-0-eax-levelling-MSR.patch
5d77b40f-fix-hvm_all_ioreq_servers_add_vcpu-cleanup.patch
5d80e7c0-AMD-IOMMU-free-shared-IRT-once.patch
5d80e80d-AMD-IOMMU-valid-flag-for-IVRS-mappings.patch
5d80e82e-AMD-IOMMU-alloc_intremap_table-callers-handle-errors.patch
5d80e857-x86-PCI-read-MSI-X-table-entry-count-early.patch
5d80ea13-vpci-honor-read-only-devices.patch
5d89d8d9-libxc-x86-avoid-overflow-in-CPUID-APIC-ID.patch
5d8b715f-ACPI-cpuidle-bump-max-num-of-states.patch
5d8b72e5-AMD-IOMMU-dont-blindly-alloc-intremap-tables.patch
5d8b730e-AMD-IOMMU-phantom-funcs-share-intremap-tables.patch
5d8b733b-x86-PCI-read-max-MSI-vector-count-early.patch
5d8b736d-AMD-IOMMU-replace-INTREMAP_ENTRIES.patch
5d8b7393-AMD-IOMMU-restrict-intremap-table-sizes.patch
5d9ee2a8-AMD-IOMMU-alloc-1-devtab-per-PCI-seg.patch
5d9ee2f0-AMD-IOMMU-allocate_buffer-avoid-memset.patch
5d9ee312-AMD-IOMMU-prefill-all-DTEs.patch
CVE-2014-0222-blktap-qcow1-validate-l2-table-size.patch
blktap2-no-uninit.patch
libxl.prepare-environment-for-domcreate_stream_done.patch
pygrub-python3-conversion.patch
fix-xenpvnetboot.patch�- bsc#1135799 - Partner-L3: Xen crashes on AMD ROME based machines
5d9ee2a8-AMD-IOMMU-alloc-1-devtab-per-PCI-seg.patch
5d9ee2f0-AMD-IOMMU-allocate_buffer-avoid-memset.patch
5d9ee312-AMD-IOMMU-prefill-all-DTEs.patch�- bsc#1120095 - add code to change LIBXL_HOTPLUG_TIMEOUT at runtime
The included README has details about the impact of this change
libxl.LIBXL_HOTPLUG_TIMEOUT.patch�- bsc#1135799 - Partner-L3: Xen crashes on AMD ROME based machines
5ca7660f-x86-entry-drop-unused-includes.patch
5cf8da09-adjust-sysdom-creation-call-earlier-on-x86.patch
5cab2a6b-x86-ACPI-also-parse-AMD-tables-early.patch
5cab2ab7-x86-IOMMU-introduce-init-ops.patch
5cab2ae8-x86-IOMMU-abstract-iommu_supports_eim.patch
5cab2b4e-x86-IOMMU-abstract-iommu_enable_x2apic_IR.patch
5cab2b95-x86-IOMMU-initialize-iommu_ops-in.patch
5cac9a4b-x86-IOMMU-abstract-adjust_vtd_irq_affinities.patch
5cdeac7f-AMD-IOMMU-adjust-IOMMU-list-head-init.patch
5d0cf4e4-AMD-IOMMU-initialize-IRQ-tasklet-once.patch
5d149bb0-AMD-IOMMU-dont-add-IOMMUs.patch
5d1b3fab-AMD-IOMMU-restrict-feature-logging.patch
5d358508-x86-IRQ-desc-affinity-represents-request.patch
5d358534-x86-IRQ-consolidate-arch-cpu_mask-use.patch
5d358a67-AMD-IOMMU-pass-IOMMU-to-iterate_ivrs_entries-cb.patch
5d358a92-AMD-IOMMU-pass-IOMMU-to-amd_iommu_alloc_intremap_table.patch
5d39811c-x86-IOMMU-dont-restrict-IRQ-affinities.patch
5d417813-AMD-IOMMU-bitfield-extended-features.patch
5d417838-AMD-IOMMU-bitfield-control-reg.patch
5d41785b-AMD-IOMMU-bitfield-IRTE.patch
5d41787e-AMD-IOMMU-pass-IOMMU-to-gfu-intremap-entry.patch
5d4178ad-AMD-IOMMU-128bit-non-guest-APIC-IRTE.patch
5d4178fc-AMD-IOMMU-split-amd_iommu_init_one.patch
5d41793f-AMD-IOMMU-allow-enabling-without-IRQ.patch
5d417a16-AMD-IOMMU-adjust-IRQ-setup-for-x2APIC.patch
5d417ab6-AMD-IOMMU-enable-x2APIC-mode.patch
5d417b38-AMD-IOMMU-correct-IRTE-updating.patch
5d417b6a-AMD-IOMMU-dont-needlessly-log-headers.patch
5d4a9d25-AMD-IOMMU-drop-not-found-message.patch
5d80e7c0-AMD-IOMMU-free-shared-IRT-once.patch
5d80e80d-AMD-IOMMU-valid-flag-for-IVRS-mappings.patch
5d80e82e-AMD-IOMMU-alloc_intremap_table-callers-handle-errors.patch
5d80e857-x86-PCI-read-MSI-X-table-entry-count-early.patch
5d8b72e5-AMD-IOMMU-dont-blindly-alloc-intremap-tables.patch
5d8b730e-AMD-IOMMU-phantom-funcs-share-intremap-tables.patch
5d8b733b-x86-PCI-read-max-MSI-vector-count-early.patch
5d8b736d-AMD-IOMMU-replace-INTREMAP_ENTRIES.patch
5d8b7393-AMD-IOMMU-restrict-intremap-table-sizes.patch
- bsc#1145240 - [Migration]Can't pre-allocate 1 shadow pages
5d70bfba-x86-shadow-dont-enable-with-too-small-allocation.patch
- bsc#1137717 - [HPS Bug] Unable to install Windows Server 2016
with 2 CPUs setting (or above) under SLES12 SP4 Xen Server on AMD
ROME platform
5d89d8d9-libxc-x86-avoid-overflow-in-CPUID-APIC-ID.patch
- Upstream bug fixes (bsc#1027519)
5d67ceaf-x86-properly-gate-PKU-clearing.patch
5d779811-x86-fix-CPUID7-0-eax-levelling-MSR.patch
5d77b40f-fix-hvm_all_ioreq_servers_add_vcpu-cleanup.patch
5d80ea13-vpci-honor-read-only-devices.patch
5d8b715f-ACPI-cpuidle-bump-max-num-of-states.patch�- bsc#1145774 - Libivrtd segfaults when trying to live migrate a VM
Fix crash in an error path of libxl_domain_suspend with
libxl.helper_done-crash.patch�- Upstream bug fixes (bsc#1027519)
5d419d49-x86-spec-ctrl-report-proper-status.patch
5d43253c-x86-ucode-always-collect_cpu_info-at-boot.patch
5d4aa36f-x86-apic-enable-x2APIC-mode-earlier.patch
5d4afa7a-credit2-fix-memory-leak.patch
5d4d850a-introduce-bss-percpu-page-aligned.patch
5d516531-x86-xpti-dont-leak-TSS-adjacent-data.patch
5d5bf475-x86-PV-fix-handling-of-iommu-mappings.patch
5d6524ca-x86-mm-correctly-init-M2P-entries.patch
- Drop 5d419d49-x86-spec-ctrl-facilities-report-wrong-status.patch�- Preserve modified files which used to be marked as %config,
rename file.rpmsave to file�- Update to Xen 4.12.1 bug fix release (bsc#1027519)
xen-4.12.1-testing-src.tar.bz2
- Drop patches contained in new tarball
5c87b644-IOMMU-leave-enabled-for-kexec-crash.patch
5c87b6a2-x86-HVM-dont-crash-guest-in-find_mmio_cache.patch
5c87b6c8-drop-arch_evtchn_inject.patch
5c87b6e8-avoid-atomic-rmw-accesses-in-map_vcpu_info.patch
5c87e6d1-x86-TSX-controls-for-RTM-force-abort-mode.patch
5c8f752c-x86-e820-build-with-gcc9.patch
5c8fb92d-x86-HVM-split-linear-reads-and-writes.patch
5c8fb951-x86-HVM-finish-IOREQs-correctly-on-completion.patch
5c8fc6c0-x86-MSR-shorten-ARCH_CAPABILITIES.patch
5c8fc6c0-x86-SC-retpoline-safety-calculations-for-eIBRS.patch
5c9e63c5-credit2-SMT-idle-handling.patch
5ca46b68-x86emul-no-GPR-update-upon-AVX-gather-failures.patch
5ca773d1-x86emul-dont-read-mask-reg-without-AVX512F.patch
5cab1f66-timers-fix-memory-leak-with-cpu-plug.patch
5cac6cba-vmx-Fixup-removals-of-MSR-load-save-list-entries.patch
5cd921fb-trace-fix-build-with-gcc9.patch
5cd9224b-AMD-IOMMU-disable-upon-init-fail.patch
5cd922c5-x86-MTRR-recalc-p2mt-when-iocaps.patch
5cd9230f-VMX-correctly-get-GS_SHADOW-for-current.patch
5cd926d0-bitmap_fill-zero-sized.patch
5cd92724-drivers-video-drop-constraints.patch
5cd93a69-x86-MSR_INTEL_CORE_THREAD_COUNT.patch
5cd93a69-x86-boot-detect-Intel-SMT-correctly.patch
5cd93a69-x86-spec-ctrl-reposition-XPTI-parsing.patch
5cd981ff-x86-IRQ-tracing-avoid-UB-or-worse.patch
5cdad090-x86-spec-ctrl-CPUID-MSR-definitions-for-MDS.patch
5cdad090-x86-spec-ctrl-infrastructure-for-VERW-flush.patch
5cdad090-x86-spec-ctrl-misc-non-functional-cleanup.patch
5cdad090-x86-spec-ctrl-opts-to-control-VERW-flush.patch
5cdeb9fd-sched-fix-csched2_deinit_pdata.patch
5ce7a92f-x86-IO-APIC-fix-build-with-gcc9.patch
5cf0f6a4-x86-vhpet-resume-avoid-small-diff.patch
5cf16e51-x86-spec-ctrl-Knights-retpoline-safe.patch
5d03a0c4-1-Arm-add-an-isb-before-reading-CNTPCT_EL0.patch
5d03a0c4-2-gnttab-rework-prototype-of-set_status.patch
5d03a0c4-3-Arm64-rewrite-bitops-in-C.patch
5d03a0c4-4-Arm32-rewrite-bitops-in-C.patch
5d03a0c4-5-Arm-bitops-consolidate-prototypes.patch
5d03a0c4-6-Arm64-cmpxchg-simplify.patch
5d03a0c4-7-Arm32-cmpxchg-simplify.patch
5d03a0c4-8-Arm-bitops-helpers-with-timeout.patch
5d03a0c4-9-Arm-cmpxchg-helper-with-timeout.patch
5d03a0c4-A-Arm-turn-on-SILO-mode-by-default.patch
5d03a0c4-B-bitops-guest-helpers.patch
5d03a0c4-C-cmpxchg-guest-helpers.patch
5d03a0c4-D-use-guest-atomics-helpers.patch
5d03a0c4-E-Arm-add-perf-counters-in-guest-atomic-helpers.patch
5d03a0c4-F-Arm-protect-gnttab_clear_flag.patch
- Refreshed patches
libxl.pvscsi.patch�- bsc#1143563 - Speculative mitigation facilities report wrong status
5d419d49-x86-spec-ctrl-facilities-report-wrong-status.patch�- Update xen-dom0-modules.service (bsc#1137251)
Map backend module names from pvops and xenlinux kernels to a
module alias. This avoids errors from modprobe about unknown
modules. Ignore a few xenlinux modules that lack aliases.�- Gcc9 warnings seem to be cleared up with upstream fixes.
Drop gcc9-ignore-warnings.patch�- bsc#1138563 - L3: xenpvnetboot improperly ported to Python 3
fix-xenpvnetboot.patch�- Move /etc/modprobe.d/xen_loop.conf to /lib/modprobe.d/xen_loop.conf�- Remove /etc/xen/xenapiusers and /etc/pam.d/xen-api�- Remove all upstream provided files in /etc/xen
They are not required at runtime. The host admin is now
responsible if he really needs anything in this subdirectory.�- In our effort to make /etc fully admin controlled, move /etc/xen/scripts
to libexec/xen/scripts with xen-tools.etc_pollution.patch�- Move /etc/bash_completion.d/xl.sh to %{_datadir}/bash-completion/completions�- bsc#1138294 - VUL-0: CVE-2019-17349: XSA-295: Unlimited Arm
Atomics Operations
5d03a0c4-1-Arm-add-an-isb-before-reading-CNTPCT_EL0.patch
5d03a0c4-2-gnttab-rework-prototype-of-set_status.patch
5d03a0c4-3-Arm64-rewrite-bitops-in-C.patch
5d03a0c4-4-Arm32-rewrite-bitops-in-C.patch
5d03a0c4-5-Arm-bitops-consolidate-prototypes.patch
5d03a0c4-6-Arm64-cmpxchg-simplify.patch
5d03a0c4-7-Arm32-cmpxchg-simplify.patch
5d03a0c4-8-Arm-bitops-helpers-with-timeout.patch
5d03a0c4-9-Arm-cmpxchg-helper-with-timeout.patch
5d03a0c4-A-Arm-turn-on-SILO-mode-by-default.patch
5d03a0c4-B-bitops-guest-helpers.patch
5d03a0c4-C-cmpxchg-guest-helpers.patch
5d03a0c4-D-use-guest-atomics-helpers.patch
5d03a0c4-E-Arm-add-perf-counters-in-guest-atomic-helpers.patch
5d03a0c4-F-Arm-protect-gnttab_clear_flag.patch
- Upstream bug fixes (bsc#1027519)
5c87b6c8-drop-arch_evtchn_inject.patch
5c87b6e8-avoid-atomic-rmw-accesses-in-map_vcpu_info.patch
5cd921fb-trace-fix-build-with-gcc9.patch
5cd9224b-AMD-IOMMU-disable-upon-init-fail.patch
5cd922c5-x86-MTRR-recalc-p2mt-when-iocaps.patch
5cd9230f-VMX-correctly-get-GS_SHADOW-for-current.patch
5cd926d0-bitmap_fill-zero-sized.patch
5cd92724-drivers-video-drop-constraints.patch
5cd93a69-x86-spec-ctrl-reposition-XPTI-parsing.patch (Replaces xsa297-0a.patch)
5cd93a69-x86-MSR_INTEL_CORE_THREAD_COUNT.patch (Replaces xsa297-0b.patch)
5cd93a69-x86-boot-detect-Intel-SMT-correctly.patch (Replaces xsa297-0c.patch)
5cdad090-x86-spec-ctrl-misc-non-functional-cleanup.patch (Replaces xsa297-0d.patch)
5cdad090-x86-spec-ctrl-CPUID-MSR-definitions-for-MDS.patch (Replaces xsa297-1.patch)
5cdad090-x86-spec-ctrl-infrastructure-for-VERW-flush.patch (Replaces xsa297-2.patch)
5cdad090-x86-spec-ctrl-opts-to-control-VERW-flush.patch (Replaces xsa297-3.patch)
5cd981ff-x86-IRQ-tracing-avoid-UB-or-worse.patch
5cdeb9fd-sched-fix-csched2_deinit_pdata.patch
5ce7a92f-x86-IO-APIC-fix-build-with-gcc9.patch
5cf0f6a4-x86-vhpet-resume-avoid-small-diff.patch
5cf16e51-x86-spec-ctrl-Knights-retpoline-safe.patch�- Fix some outdated information in the readme
README.SUSE�- spec: xen-tools: require matching version of xen package
bsc#1137471�- Remove two stale patches
xen.build-compare.man.patch
xenpaging.doc.patch�- Disable LTO (boo#1133296).�- Remove arm32 from ExclusiveArch to fix build�- bsc#1111331 - VUL-0: CPU issues Q2 2019 aka "Group 4".
CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091
xsa297-0a.patch
xsa297-0b.patch
xsa297-0c.patch
xsa297-0d.patch
xsa297-1.patch
xsa297-2.patch
xsa297-3.patch
- Update 5cab1f66-timers-fix-memory-leak-with-cpu-plug.patch and
drop 5cac6219-xen-cpu-Fix-ARM-build-following-cs-597fbb8.patch
Refresh 5cac6cba-vmx-Fixup-removals-of-MSR-load-save-list-entries.patch�- bsc#1131811 - [XEN] internal error: libxenlight failed to create
new domain. This patch is a workaround for a systemd issue. See
patch header for additional comments.
xenstore-launch.patch�- bsc#1125378 - [xen][pygrub] Can not restore sle11sp4 pv guest
after upgrading host from sle11sp4 to sle15sp1
pygrub-python3-conversion.patch
- Fix "TypeError: virDomainDefineXML() argument 2 must be str or
None, not bytes" when converting VMs from using the xm/xend
toolstack to the libxl/libvirt toolstack. (bsc#1123378)
xen2libvirt.py�- bsc#1124560 - Fully virtualized guests crash on boot
5cac6cba-vmx-Fixup-removals-of-MSR-load-save-list-entries.patch
- bsc#1121391 - GCC 9: xen build fails
5c8f752c-x86-e820-build-with-gcc9.patch
- Upstream bug fixes (bsc#1027519)
5c87b644-IOMMU-leave-enabled-for-kexec-crash.patch
5c87b6a2-x86-HVM-dont-crash-guest-in-find_mmio_cache.patch
5c87e6d1-x86-TSX-controls-for-RTM-force-abort-mode.patch
5c8fb92d-x86-HVM-split-linear-reads-and-writes.patch
5c8fb951-x86-HVM-finish-IOREQs-correctly-on-completion.patch
5c8fc6c0-x86-MSR-shorten-ARCH_CAPABILITIES.patch
5c8fc6c0-x86-SC-retpoline-safety-calculations-for-eIBRS.patch
5c9e63c5-credit2-SMT-idle-handling.patch
5ca46b68-x86emul-no-GPR-update-upon-AVX-gather-failures.patch
5ca773d1-x86emul-dont-read-mask-reg-without-AVX512F.patch
5cab1f66-timers-fix-memory-leak-with-cpu-plug.patch
5cac6219-xen-cpu-Fix-ARM-build-following-cs-597fbb8.patch�- Install pkgconfig files into libdir instead of datadir�- Update to Xen 4.12.0 FCS release (fate#325107, fate#323901)
xen-4.12.0-testing-src.tar.bz2
* HVM/PVH and PV only Hypervisor: The Xen 4.12 release separates
the HVM/PVH and PV code paths in Xen and provides KCONFIG
options to build a PV only or HVM/PVH only hypervisor.
* QEMU Deprivilege (DM_RESTRICT): In Xen 4.12, this feature has
been vastly improved.
* Argo - Hypervisor-Mediated data eXchange: Argo is a new inter-
domain communication mechanism.
* Improvements to Virtual Machine Introspection: The VMI subsystem
which allows detection of 0-day vulnerabilities has seen many
functional and performance improvements.
* Credit 2 Scheduler: The Credit2 scheduler is now the Xen Project
default scheduler.
* PVH Support: Grub2 boot support has been added to Xen and Grub2.
* PVH Dom0: PVH Dom0 support has now been upgraded from experimental
to tech preview.
* The Xen 4.12 upgrade also includes improved IOMMU mapping code,
which is designed to significantly improve the startup times of
AMD EPYC based systems.
* The upgrade also features Automatic Dom0 Sizing which allows the
setting of Dom0 memory size as a percentage of host memory (e.g.
10%) or with an offset (e.g. 1G+10%).�- bsc#1130485 - Please drop Requires on multipath-tools in
xen-tools. Now using Recommends multipath-tools.
xen.spec�- Update to Xen 4.12.0 RC7 release (fate#325107, fate#323901)
xen-4.12.0-testing-src.tar.bz2�- Update to Xen 4.12.0 RC6 release (fate#325107, fate#323901)
xen-4.12.0-testing-src.tar.bz2�- bsc#1026236 - add Xen cmdline option "suse_vtsc_tolerance" to
avoid TSC emulation for HVM domUs if their expected frequency
does not match exactly the frequency of the receiving host
xen.bug1026236.suse_vtsc_tolerance.patch�- Update to Xen 4.12.0 RC5 release (fate#325107, fate#323901)
xen-4.12.0-testing-src.tar.bz2�- jsc#SLE-3059 - Disable Xen auto-ballooning
- Add CONFIG_DOM0_MEM to the spec file for managing dom0 memory.
xen.spec
- Disable autoballooning in xl.con
xl-conf-disable-autoballoon.patch�- Update gcc9-ignore-warnings.patch to fix build in SLE12�- bsc#1126325 - fix crash in libxl in error path
Setup of grant_tables and other variables may fail
libxl.prepare-environment-for-domcreate_stream_done.patch�- bsc#1127620 - Documentation for the xl configuration file allows
for firmware=pvgrub64 but we don't ship pvgrub64.
Create a link from grub.xen to pvgrub64
xen.spec�- Update to Xen 4.12.0 RC4 release (fate#325107, fate#323901)
xen-4.12.0-testing-src.tar.bz2
- Tarball also contains additional post RC4 security fixes for
Xen Security Advisories 287, 288, and 290 through 294.�- Update to Xen 4.12.0 RC3 release (fate#325107, fate#323901)
xen-4.12.0-testing-src.tar.bz2�- Update to Xen 4.12.0 RC2 release (fate#325107, fate#323901)
xen-4.12.0-testing-src.tar.bz2�- bsc#1121391 - GCC 9: xen build fails
gcc9-ignore-warnings.patch�- bsc#1122563 - Virtualization/xen: Bug no Xen on boot, missing
/proc/xen, after 4.11 -> 4.12 upgrade on X86_64/efi.
Keep xen.efi in /usr/lib64/efi for booting older distros.
xen.spec�- fate#326960: Package grub2 as noarch.
As part of the effort to have a unified bootloader across
architectures, modify the xen.spec file to move the Xen efi files
to /usr/share/efi/$(uname -m) from /usr/lib64/efi.�- Update to Xen 4.12.0 RC1 release (fate#325107, fate#323901)
xen-4.12.0-testing-src.tar.bz2
- Drop
5b505d59-tools-xentop-replace-use-of-deprecated-vwprintw.patch
5b76ec82-libxl-arm-Fix-build-on-arm64-acpi-w-gcc-8.2.patch
5b8fae26-tools-libxl-correct-vcpu-affinity-output-with-sparse-physical-cpu-map.patch
5b8fae26-xen-fill-topology-info-for-all-present-cpus.patch
5b8fb5af-tools-xl-refuse-to-set-number-of-vcpus-to-0-via-xl-vcpu-set.patch
5b9784ad-x86-HVM-drop-hvm_fetch_from_guest_linear.patch
5b9784d2-x86-HVM-add-known_gla-helper.patch
5b9784f2-x86-HVM-split-page-straddling-accesses.patch
5bdc31d5-VMX-fix-vmx_handle_eoi.patch
gcc8-fix-array-warning-on-i586.patch
gcc8-fix-format-warning-on-i586.patch
gcc8-inlining-failed.patch
xen.bug1079730.patch�- bsc#1121960 - xen: sync with Factory
xen.spec
xen.changes�- Replace old $RPM_* shell vars.
- Run fdupes for all architectures, and not crossing
subvolume boundaries.�- Do not run %fdupes on aarch64 to avoid the hardlink-across-partition
rpmlint error�- Require qemu-seabios only on x86* as it is not available on non-x86
systems�- Avoid creating dangling symlinks (bsc#1116524)
This reverts the revert of tmp_build.patch�- Update to Xen 4.11.1 bug fix release (bsc#1027519)
xen-4.11.1-testing-src.tar.bz2
- 5b505d59-tools-xentop-replace-use-of-deprecated-vwprintw.patch
replaces xen.2b50cdbc444c637575580dcfa6c9525a84d5cc62.patch
- 5b76ec82-libxl-arm-Fix-build-on-arm64-acpi-w-gcc-8.2.patch
replaces xen.b8f33431f3dd23fb43a879f4bdb4283fdc9465ad.patch
- Drop the following patches contained in the new tarball
5b34b8fe-VMX-defer-vmx_vmcs_exit-as-long-as-possible.patch
5b3cab8e-1-VMX-MSR_DEBUGCTL-handling.patch
5b3cab8e-2-VMX-improve-MSR-load-save-API.patch
5b3cab8e-3-VMX-cleanup-MSR-load-save-infra.patch
5b3cab8f-1-VMX-factor-out-locate_msr_entry.patch
5b3cab8f-2-VMX-remote-access-to-MSR-lists.patch
5b3cab8f-3-VMX-improve-LBR-MSR-handling.patch
5b3cab8f-4-VMX-pass-MSR-value-into-vmx_msr_add.patch
5b3cab8f-5-VMX-load-only-guest-MSR-entries.patch
5b3f8fa5-port-array_index_nospec-from-Linux.patch
5b4321f6-x86-correctly-set-nonlazy_xstate_used-when-loading-full-state.patch
5b4488e7-x86-spec-ctrl-cmdline-handling.patch
5b471517-page_alloc-correct-first_dirty-calc-in-block-merging.patch
5b4c9a60-allow-cpu_down-to-be-called-earlier.patch
5b4db308-SVM-fix-cleanup-svm_inject_event.patch
5b5040c3-cpupools-fix-state-when-downing-a-CPU-failed.patch
5b5040f2-x86-AMD-distinguish-CU-from-HT.patch
5b505fe5-VMX-fix-find-msr-build.patch
5b508775-1-x86-distinguish-CPU-offlining-and-removal.patch
5b508775-2-x86-possibly-bring-up-all-CPUs.patch
5b508775-3-x86-cmdline-opt-to-avoid-use-of-secondary-HTs.patch
5b508ce8-VMX-dont-clobber-dr6-while-debug-state-is-lazy.patch
5b50df16-1-x86-xstate-use-guest-CPUID-policy.patch
5b50df16-2-x86-make-xstate-calculation-errors-more-obvious.patch
5b56feb1-hvm-Disallow-unknown-MSR_EFER-bits.patch
5b56feb2-spec-ctrl-Fix-the-parsing-of-xpti--on-fixed-Intel-hardware.patch
5b62ca93-VMX-avoid-hitting-BUG_ON.patch
5b6d84ac-x86-fix-improve-vlapic-read-write.patch
5b6d8ce2-x86-XPTI-parsing.patch
5b72fbbe-ARM-disable-grant-table-v2.patch
5b72fbbe-oxenstored-eval-order.patch
5b72fbbe-vtx-Fix-the-checking-for-unknown-invalid-MSR_DEBUGCTL-bits.patch
5b72fbbf-1-spec-ctrl-Calculate-safe-PTE-addresses-for-L1TF-mitigations.patch
5b72fbbf-2-spec-ctrl-Introduce-an-option-to-control-L1TF-mitigation-for-PV-guests.patch
5b72fbbf-3-shadow-Infrastructure-to-force-a-PV-guest-into-shadow-mode.patch
5b72fbbf-4-mm-Plumbing-to-allow-any-PTE-update-to-fail-with--ERESTART.patch
5b72fbbf-5-pv-Force-a-guest-into-shadow-mode-when-it-writes-an-L1TF-vulnerable-PTE.patch
5b72fbbf-6-spec-ctrl-CPUID-MSR-definitions-for-L1D_FLUSH.patch
5b72fbbf-7-msr-Virtualise-MSR_FLUSH_CMD-for-guests.patch
5b72fbbf-8-spec-ctrl-Introduce-an-option-to-control-L1D_FLUSH-for-HVM-HAP-guests.patch
5b72fbbf-x86-Make-spec-ctrl-no-a-global-disable-of-all-mitigations.patch
5b72fbbf-xl.conf-Add-global-affinity-masks.patch
5b74190e-x86-hvm-ioreq-MMIO-range-check-honor-DF.patch
5b752762-x86-hvm-emul-rep-IO-should-not-cross-GFN-boundaries.patch
5b75afef-x86-setup-avoid-OoB-E820-lookup.patch
5b76b780-rangeset-inquiry-functions-tolerate-NULL.patch
5b83c654-VT-d-dmar-iommu-mem-leak-fix.patch
5b8d5832-x86-assorted-array_index_nospec-insertions.patch
5ba11ed4-credit2-fix-moving-CPUs-between-cpupools.patch
5bacae4b-x86-boot-allocate-extra-module-slot.patch
5bae44ce-x86-silence-false-log-messages.patch
5bb60c12-x86-split-opt_xpti.patch
5bb60c4f-x86-split-opt_pv_l1tf.patch
5bb60c74-x86-fix-xpti-and-pv-l1tf.patch
5bcf0722-x86-boot-enable-NMIs.patch
5bd076e9-dombuilder-init-vcpu-debug-regs-correctly.patch
5bd076e9-x86-boot-init-debug-regs-correctly.patch
5bd076e9-x86-init-vcpu-debug-regs-correctly.patch
5bd0e0cf-vvmx-Disallow-the-use-of-VT-x-instructions-when-nested-virt-is-disabled.patch
5bd0e11b-x86-disallow-VT-x-insns-without-nested-virt.patch
5bd85bfd-x86-fix-crash-on-xl-set-parameter-pcid.patch
5be2a308-x86-extend-get_platform_badpages.patch
5be2a354-x86-work-around-HLE-host-lockup-erratum.patch
xsa275-1.patch
xsa275-2.patch
xsa276-1.patch
xsa276-2.patch
xsa277.patch
xsa279.patch
xsa280-1.patch
xsa280-2.patch�- bsc#1116524 - Package xen-tools-4.11.0_09-2.1.x86_64 broken:
Missing /bin/domu-xenstore. This was broken because "make
package build reproducible" change. (boo#1047218, boo#1062303)
This fix reverses the change to this patch.
tmp_build.patch�- bsc#1115040 - VUL-0: CVE-2018-19961 CVE-2018-19962: xen:
insufficient TLB flushing / improper large page mappings with AMD
IOMMUs (XSA-275)
xsa275-1.patch
xsa275-2.patch
- bsc#1115043 - VUL-0: CVE-2018-19963: xen: resource accounting
issues in x86 IOREQ server handling (XSA-276)
xsa276-1.patch
xsa276-2.patch
- bsc#1115044 - VUL-0: CVE-2018-19964: xen: x86: incorrect error
handling for guest p2m page removals (XSA-277)
xsa277.patch
- bsc#1114405 - VUL-0: CVE-2018-18883: xen: Nested VT-x usable even
when disabled (XSA-278)
5bd0e11b-x86-disallow-VT-x-insns-without-nested-virt.patch
- bsc#1115045 - VUL-0: xen: CVE-2018-19965: x86: DoS from attempting
to use INVPCID with a non-canonical addresses (XSA-279)
xsa279.patch
- bsc#1115047 - VUL-0: CVE-2018-19966: xen: Fix for XSA-240
conflicts with shadow paging (XSA-280)
xsa280-1.patch
xsa280-2.patch
- bsc#1114988 - VUL-0: CVE-2018-19967: xen: guest use of HLE
constructs may lock up host (XSA-282)
5be2a308-x86-extend-get_platform_badpages.patch
5be2a354-x86-work-around-HLE-host-lockup-erratum.patch
- bsc#1108940 - L3: XEN SLE12-SP1 domU hang on SLE12-SP3 HV
5bdc31d5-VMX-fix-vmx_handle_eoi.patch
- Upstream bug fixes (bsc#1027519)
5b752762-x86-hvm-emul-rep-IO-should-not-cross-GFN-boundaries.patch
5ba11ed4-credit2-fix-moving-CPUs-between-cpupools.patch
5bacae4b-x86-boot-allocate-extra-module-slot.patch
5bae44ce-x86-silence-false-log-messages.patch
5bb60c12-x86-split-opt_xpti.patch
5bb60c4f-x86-split-opt_pv_l1tf.patch
5bb60c74-x86-fix-xpti-and-pv-l1tf.patch
5bcf0722-x86-boot-enable-NMIs.patch
5bd076e9-dombuilder-init-vcpu-debug-regs-correctly.patch
5bd076e9-x86-boot-init-debug-regs-correctly.patch
5bd076e9-x86-init-vcpu-debug-regs-correctly.patch
5bd85bfd-x86-fix-crash-on-xl-set-parameter-pcid.patch�- bsc#1114405 - VUL-0: CVE-2018-18883: xen: Nested VT-x usable even
when disabled (XSA-278)
5bd0e0cf-vvmx-Disallow-the-use-of-VT-x-instructions-when-nested-virt-is-disabled.patch�- Use SMBIOS_REL_DATE instead of SMBIOS_DATE for reproducible binaries�- make package build reproducible (boo#1047218, boo#1062303)
* Set SMBIOS_REL_DATE
* Update tmp_build.patch to use SHA instead of random build-id
* Add reproducible.patch to use --no-insert-timestamp�- Building with ncurses 6.1 will fail without
xen.2b50cdbc444c637575580dcfa6c9525a84d5cc62.patch
- Building libxl acpi support on aarch64 with gcc 8.2 will fail without
xen.b8f33431f3dd23fb43a879f4bdb4283fdc9465ad.patch�- bsc#1106263 - L3: The affinity reporting via 'xl vcpu-list' is
apparently broken
5b8fae26-tools-libxl-correct-vcpu-affinity-output-with-sparse-physical-cpu-map.patch
5b8fae26-xen-fill-topology-info-for-all-present-cpus.patch
5b8fb5af-tools-xl-refuse-to-set-number-of-vcpus-to-0-via-xl-vcpu-set.patch�- bsc#1094508 - L3: Kernel oops in fs/dcache.c called by
d_materialise_unique()
5b9784ad-x86-HVM-drop-hvm_fetch_from_guest_linear.patch
5b9784d2-x86-HVM-add-known_gla-helper.patch
5b9784f2-x86-HVM-split-page-straddling-accesses.patch
- bsc#1103279 - (CVE-2018-15470) VUL-0: CVE-2018-15470: xen:
oxenstored does not apply quota-maxentity (XSA-272)
5b72fbbe-oxenstored-eval-order.patch
- bsc#1103275 - (CVE-2018-15469) VUL-0: CVE-2018-15469: xen: Use of
v2 grant tables may cause crash on ARM (XSA-268)
5b72fbbe-ARM-disable-grant-table-v2.patch
- Upstream patches from Jan (bsc#1027519)
5b6d84ac-x86-fix-improve-vlapic-read-write.patch
5b74190e-x86-hvm-ioreq-MMIO-range-check-honor-DF.patch
5b75afef-x86-setup-avoid-OoB-E820-lookup.patch
5b76b780-rangeset-inquiry-functions-tolerate-NULL.patch
5b83c654-VT-d-dmar-iommu-mem-leak-fix.patch
5b8d5832-x86-assorted-array_index_nospec-insertions.patch
- Drop 5b741962-x86-write-to-correct-variable-in-parse_pv_l1tf.patch�- bsc#1078292 - rpmbuild -ba SPECS/xen.spec with xen-4.9.1 failed
xen.spec�- bsc#1091107 - VUL-0: CVE-2018-3646: xen: L1 Terminal Fault -VMM
(XSA-273)
5b72fbbf-1-spec-ctrl-Calculate-safe-PTE-addresses-for-L1TF-mitigations.patch
5b72fbbf-2-spec-ctrl-Introduce-an-option-to-control-L1TF-mitigation-for-PV-guests.patch
5b72fbbf-3-shadow-Infrastructure-to-force-a-PV-guest-into-shadow-mode.patch
5b72fbbf-4-mm-Plumbing-to-allow-any-PTE-update-to-fail-with--ERESTART.patch
5b72fbbf-5-pv-Force-a-guest-into-shadow-mode-when-it-writes-an-L1TF-vulnerable-PTE.patch
5b72fbbf-6-spec-ctrl-CPUID-MSR-definitions-for-L1D_FLUSH.patch
5b72fbbf-7-msr-Virtualise-MSR_FLUSH_CMD-for-guests.patch
5b72fbbf-8-spec-ctrl-Introduce-an-option-to-control-L1D_FLUSH-for-HVM-HAP-guests.patch
- bsc#1103276 - VUL-0: CVE-2018-15468: xen: x86: Incorrect
MSR_DEBUGCTL handling lets guests enable BTS (XSA-269)
5b72fbbe-vtx-Fix-the-checking-for-unknown-invalid-MSR_DEBUGCTL-bits.patch
- Upstream prereq patches for XSA-273 and other upstream fixes
(bsc#1027519)
5b34b8fe-VMX-defer-vmx_vmcs_exit-as-long-as-possible.patch
5b3cab8e-1-VMX-MSR_DEBUGCTL-handling.patch
5b3cab8e-2-VMX-improve-MSR-load-save-API.patch
5b3cab8e-3-VMX-cleanup-MSR-load-save-infra.patch
5b3cab8f-1-VMX-factor-out-locate_msr_entry.patch
5b3cab8f-2-VMX-remote-access-to-MSR-lists.patch
5b3cab8f-3-VMX-improve-LBR-MSR-handling.patch
5b3cab8f-4-VMX-pass-MSR-value-into-vmx_msr_add.patch
5b3cab8f-5-VMX-load-only-guest-MSR-entries.patch
5b4321f6-x86-correctly-set-nonlazy_xstate_used-when-loading-full-state.patch
5b505fe5-VMX-fix-find-msr-build.patch
5b56feb1-hvm-Disallow-unknown-MSR_EFER-bits.patch
5b56feb2-spec-ctrl-Fix-the-parsing-of-xpti--on-fixed-Intel-hardware.patch
5b62ca93-VMX-avoid-hitting-BUG_ON.patch
5b6d8ce2-x86-XPTI-parsing.patch
5b72fbbf-x86-Make-spec-ctrl-no-a-global-disable-of-all-mitigations.patch
5b72fbbf-xl.conf-Add-global-affinity-masks.patch
5b741962-x86-write-to-correct-variable-in-parse_pv_l1tf.patch�- Upstream patches from Jan (bsc#1027519)
5b3f8fa5-port-array_index_nospec-from-Linux.patch
5b4488e7-x86-spec-ctrl-cmdline-handling.patch
5b471517-page_alloc-correct-first_dirty-calc-in-block-merging.patch
5b4c9a60-allow-cpu_down-to-be-called-earlier.patch
5b4db308-SVM-fix-cleanup-svm_inject_event.patch
5b5040c3-cpupools-fix-state-when-downing-a-CPU-failed.patch
5b5040f2-x86-AMD-distinguish-CU-from-HT.patch
5b508775-1-x86-distinguish-CPU-offlining-and-removal.patch
5b508775-2-x86-possibly-bring-up-all-CPUs.patch
5b508775-3-x86-cmdline-opt-to-avoid-use-of-secondary-HTs.patch
5b508ce8-VMX-dont-clobber-dr6-while-debug-state-is-lazy.patch
5b50df16-1-x86-xstate-use-guest-CPUID-policy.patch
5b50df16-2-x86-make-xstate-calculation-errors-more-obvious.patch
gcc8-fix-format-warning-on-i586.patch
gcc8-fix-array-warning-on-i586.patch
- Drop xen.fuzz-_FORTIFY_SOURCE.patch
gcc8-fix-warning-on-i586.patch�- Update to Xen 4.11.0 FCS (fate#325202, fate#325123)
xen-4.11.0-testing-src.tar.bz2
disable-building-pv-shim.patch
- Dropped patches
5a33a12f-domctl-improve-locking-during-domain-destruction.patch
5a6703cb-x86-move-invocations-of-hvm_flush_guest_tlbs.patch
5a79d7ed-libxc-packed-initrd-dont-fail-domain-creation.patch
5a9985bd-x86-invpcid-support.patch
5ac72a48-gcc8.patch
5ac72a5f-gcc8.patch
5ac72a64-gcc8.patch
5ac72a69-gcc8.patch
5ac72a6e-gcc8.patch
5ac72a74-gcc8.patch
5ac72a7b-gcc8.patch
5ad4923e-x86-correct-S3-resume-ordering.patch
5ad49293-x86-suppress-BTI-mitigations-around-S3.patch
5ad600d4-x86-pv-introduce-x86emul_read_dr.patch
5ad600d4-x86-pv-introduce-x86emul_write_dr.patch
5ad8c3a7-x86-spec_ctrl-update-retpoline-decision-making.patch
5adda097-x86-HPET-fix-race-triggering-ASSERT.patch
5adda0d5-x86-HVM-never-retain-emulated-insn-cache.patch
5adde9ed-xpti-fix-double-fault-handling.patch
5ae06fad-SVM-fix-intercepts-for-SYS-CALL-ENTER-MSRs.patch
5ae31917-x86-cpuidle-init-stats-lock-once.patch
5aeaeae4-introduce-vcpu_sleep_nosync_locked.patch
5aeaeaf0-sched-fix-races-in-vcpu-migration.patch
5aeb2c57-x86-retval-checks-of-set-guest-trapbounce.patch
5aec7393-1-x86-xpti-avoid-copy.patch
5aec7393-2-x86-xpti-write-cr3.patch
5aec744a-3-x86-xpti-per-domain-flag.patch
5aec744a-4-x86-xpti-use-invpcid.patch
5aec744a-5-x86-xpti-no-global-pages.patch
5aec744a-6-x86-xpti-cr3-valid-flag.patch
5aec744a-7-x86-xpti-pv_guest_cr4_to_real_cr4.patch
5aec744b-8-x86-xpti-cr3-helpers.patch
5aec74a8-9-x86-xpti-use-pcid.patch
5af1daa9-1-x86-traps-fix-dr6-handing-in-DB-handler.patch
5af1daa9-2-x86-pv-move-exception-injection-into-test_all_events.patch
5af1daa9-3-x86-traps-use-IST-for-DB.patch
5af1daa9-4-x86-traps-fix-handling-of-DB-in-hypervisor-context.patch
5af1daa9-x86-HVM-guard-against-bogus-emulator-ioreq-state.patch
5af1daa9-x86-vpt-support-IO-APIC-routed-intr.patch
5af97999-viridian-cpuid-leaf-40000003.patch
5afc13ae-1-x86-read-MSR_ARCH_CAPABILITIES-once.patch
5afc13ae-2-x86-express-Xen-SPEC_CTRL-choice-as-variable.patch
5afc13ae-3-x86-merge-bti_ist_info-use_shadow_spec_ctrl.patch
5afc13ae-4-x86-fold-XEN_IBRS-ALTERNATIVES.patch
5afc13ae-5-x86-rename-bits-of-spec_ctrl-infrastructure.patch
5afc13ae-6-x86-elide-MSR_SPEC_CTRL-handling-in-idle.patch
5afc13ae-7-x86-split-X86_FEATURE_SC_MSR.patch
5afc13ae-8-x86-explicitly-set-Xen-default-SPEC_CTRL.patch
5afc13ae-9-x86-cpuid-improve-guest-policies-for-speculative.patch
5afc13ae-A-x86-introduce-spec-ctrl-cmdline-opt.patch
5b02c786-x86-AMD-mitigations-for-GPZ-SP4.patch
5b02c786-x86-Intel-mitigations-for-GPZ-SP4.patch
5b02c786-x86-msr-virtualise-SPEC_CTRL-SSBD.patch
5b0bc9da-x86-XPTI-fix-S3-resume.patch
5b0d2286-libxc-x86-PV-dont-hand-through-CPUID-leaf-0x80000008.patch
5b0d2d91-x86-suppress-sync-when-XPTI-off.patch
5b0d2dbc-x86-correct-default_xen_spec_ctrl.patch
5b0d2ddc-x86-CPUID-dont-override-tool-stack-hidden-STIBP.patch
5b150ef9-x86-fix-error-handling-of-pv-dr7-shadow.patch
5b21825d-1-x86-support-fully-eager-FPU-context-switching.patch
5b21825d-2-x86-spec-ctrl-mitigations-for-LazyFPU.patch
5b238b92-x86-HVM-account-for-fully-eager-FPU.patch
5b2b7172-x86-EFI-fix-FPU-state-handling-around-runtime-calls.patch
5b31e004-x86-HVM-emul-attempts-FPU-set-fpu_initialised.patch
5b323e3c-x86-EFI-fix-FPU-state-handling-around-runtime-calls.patch
5b34882d-x86-mm-dont-bypass-preemption-checks.patch
5b348874-x86-refine-checks-in-DB-handler.patch
5b348897-libxl-qemu_disk_scsi_drive_string-break-out-common.patch
5b3488a2-libxl-restore-passing-ro-to-qemu-for-SCSI-disks.patch
5b34891a-x86-HVM-dont-cause-NM-to-be-raised.patch
5b348954-x86-guard-against-NM.patch
libxl.Add-a-version-check-of-QEMU-for-QMP-commands.patch
libxl.LIBXL_DESTROY_TIMEOUT.patch
libxl.qmp-Tell-QEMU-about-live-migration-or-snapshot.patch
xen_fix_build_with_acpica_20180427_and_new_packages.patch�- Submit upstream patch libacpi: fixes for iasl >= 20180427
git commit 858dbaaeda33b05c1ac80aea0ba9a03924e09005
xen_fix_build_with_acpica_20180427_and_new_packages.patch
This is needed for acpica package to get updated in our build service�- Upstream patches from Jan (bsc#1027519)
5b02c786-x86-AMD-mitigations-for-GPZ-SP4.patch (Replaces Spectre-v4-1.patch)
5b02c786-x86-Intel-mitigations-for-GPZ-SP4.patch (Replaces Spectre-v4-2.patch)
5b02c786-x86-msr-virtualise-SPEC_CTRL-SSBD.patch (Replaces Spectre-v4-3.patch)
5b0bc9da-x86-XPTI-fix-S3-resume.patch
5b0d2286-libxc-x86-PV-dont-hand-through-CPUID-leaf-0x80000008.patch
5b0d2d91-x86-suppress-sync-when-XPTI-off.patch
5b0d2dbc-x86-correct-default_xen_spec_ctrl.patch
5b0d2ddc-x86-CPUID-dont-override-tool-stack-hidden-STIBP.patch
5b150ef9-x86-fix-error-handling-of-pv-dr7-shadow.patch
5b21825d-1-x86-support-fully-eager-FPU-context-switching.patch (Replaces xsa267-1.patch)
5b21825d-2-x86-spec-ctrl-mitigations-for-LazyFPU.patch (Replaces xsa267-2.patch)
5b238b92-x86-HVM-account-for-fully-eager-FPU.patch
5b2b7172-x86-EFI-fix-FPU-state-handling-around-runtime-calls.patch
5b31e004-x86-HVM-emul-attempts-FPU-set-fpu_initialised.patch
5b323e3c-x86-EFI-fix-FPU-state-handling-around-runtime-calls.patch
5b34882d-x86-mm-dont-bypass-preemption-checks.patch (Replaces xsa264.patch)
5b348874-x86-refine-checks-in-DB-handler.patch (Replaces xsa265.patch)
5b348897-libxl-qemu_disk_scsi_drive_string-break-out-common.patch (Replaces xsa266-1-<>.patch)
5b3488a2-libxl-restore-passing-ro-to-qemu-for-SCSI-disks.patch (Replaces xsa266-2-<>.patch)
5b34891a-x86-HVM-dont-cause-NM-to-be-raised.patch
5b348954-x86-guard-against-NM.patch�- Fix more build gcc8 related failures with xen.fuzz-_FORTIFY_SOURCE.patch�- bsc#1098403 - fix regression introduced by changes for bsc#1079730
a PV domU without qcow2 and/or vfb has no qemu attached.
Ignore QMP errors for PV domUs to handle PV domUs with and without
an attached qemu-xen.
xen.bug1079730.patch�- bsc#1097521 - VUL-0: CVE-2018-12891: xen: preemption checks
bypassed in x86 PV MM handling (XSA-264)
xsa264.patch
- bsc#1097522 - VUL-0: CVE-2018-12893: xen: x86: #DB exception
safety check can be triggered by a guest (XSA-265)
xsa265.patch
- bsc#1097523 - VUL-0: CVE-2018-12892: xen: libxl fails to honour
readonly flag on HVM emulated SCSI disks (XSA-266)
xsa266-1-libxl-qemu_disk_scsi_drive_string-Break-out-common-p.patch
xsa266-2-libxl-restore-passing-readonly-to-qemu-for-SCSI-disk.patch�- bsc#1095242 - VUL-0: CVE-2018-3665: xen: Lazy FP Save/Restore
(XSA-267)
xsa267-1.patch
xsa267-2.patch�- bsc#1092543 - GCC 8: xen build fails
gcc8-fix-warning-on-i586.patch�- bsc#1092631 - VUL-0: CVE-2018-3639: xen: V4 – Speculative Store
Bypass aka "Memory Disambiguation" (XSA-263)
5ad4923e-x86-correct-S3-resume-ordering.patch
5ad49293-x86-suppress-BTI-mitigations-around-S3.patch
5afc13ae-1-x86-read-MSR_ARCH_CAPABILITIES-once.patch
5afc13ae-2-x86-express-Xen-SPEC_CTRL-choice-as-variable.patch
5afc13ae-3-x86-merge-bti_ist_info-use_shadow_spec_ctrl.patch
5afc13ae-4-x86-fold-XEN_IBRS-ALTERNATIVES.patch
5afc13ae-5-x86-rename-bits-of-spec_ctrl-infrastructure.patch
5afc13ae-6-x86-elide-MSR_SPEC_CTRL-handling-in-idle.patch
5afc13ae-7-x86-split-X86_FEATURE_SC_MSR.patch
5afc13ae-8-x86-explicitly-set-Xen-default-SPEC_CTRL.patch
5afc13ae-9-x86-cpuid-improve-guest-policies-for-speculative.patch
5afc13ae-A-x86-introduce-spec-ctrl-cmdline-opt.patch
Spectre-v4-1.patch
Spectre-v4-2.patch
Spectre-v4-3.patch�- Always call qemus xen-save-devices-state in suspend/resume to
fix migration with qcow2 images (bsc#1079730)
libxl.Add-a-version-check-of-QEMU-for-QMP-commands.patch
libxl.qmp-Tell-QEMU-about-live-migration-or-snapshot.patch
xen.bug1079730.patch�- bsc#1087289 - L3: Xen BUG at sched_credit.c:1663
5aeaeae4-introduce-vcpu_sleep_nosync_locked.patch
5aeaeaf0-sched-fix-races-in-vcpu-migration.patch
- Upstream patches from Jan (bsc#1027519)
5ad600d4-x86-pv-introduce-x86emul_read_dr.patch
5ad600d4-x86-pv-introduce-x86emul_write_dr.patch
5ad8c3a7-x86-spec_ctrl-update-retpoline-decision-making.patch
5adda097-x86-HPET-fix-race-triggering-ASSERT.patch
5adda0d5-x86-HVM-never-retain-emulated-insn-cache.patch
5ae06fad-SVM-fix-intercepts-for-SYS-CALL-ENTER-MSRs.patch
5ae31917-x86-cpuidle-init-stats-lock-once.patch
5aeb2c57-x86-retval-checks-of-set-guest-trapbounce.patch
5af1daa9-1-x86-traps-fix-dr6-handing-in-DB-handler.patch (Replaces xsa260-1.patch)
5af1daa9-2-x86-pv-move-exception-injection-into-test_all_events.patch (Replaces xsa260-2.patch)
5af1daa9-3-x86-traps-use-IST-for-DB.patch (Replaces xsa260-3.patch)
5af1daa9-4-x86-traps-fix-handling-of-DB-in-hypervisor-context.patch (Replaces xsa260-4.patch)
5af1daa9-x86-HVM-guard-against-bogus-emulator-ioreq-state.patch (Replaces xsa262.patch)
5af1daa9-x86-vpt-support-IO-APIC-routed-intr.patch (Replaces xsa261.patch)
5af97999-viridian-cpuid-leaf-40000003.patch�- Fixes related to Page Table Isolation (XPTI). bsc#1074562 XSA-254
5a6703cb-x86-move-invocations-of-hvm_flush_guest_tlbs.patch
5a9985bd-x86-invpcid-support.patch
5adde9ed-xpti-fix-double-fault-handling.patch
5aec7393-1-x86-xpti-avoid-copy.patch
5aec7393-2-x86-xpti-write-cr3.patch
5aec744a-3-x86-xpti-per-domain-flag.patch
5aec744a-4-x86-xpti-use-invpcid.patch
5aec744a-5-x86-xpti-no-global-pages.patch
5aec744a-6-x86-xpti-cr3-valid-flag.patch
5aec744a-7-x86-xpti-pv_guest_cr4_to_real_cr4.patch
5aec744b-8-x86-xpti-cr3-helpers.patch
5aec74a8-9-x86-xpti-use-pcid.patch�- bsc#1092543 - GCC 8: xen build fails
5ac72a48-gcc8.patch
5ac72a5f-gcc8.patch
5ac72a64-gcc8.patch
5ac72a69-gcc8.patch
5ac72a6e-gcc8.patch
5ac72a74-gcc8.patch
5ac72a7b-gcc8.patch
gcc8-inlining-failed.patch�- Update to Xen 4.10.1 bug fix release (bsc#1027519)
xen-4.10.1-testing-src.tar.bz2
disable-building-pv-shim.patch
- Drop the following patches contained in the new tarball
5a21a77e-x86-pv-construct-d0v0s-GDT-properly.patch
5a2fda0d-x86-mb2-avoid-Xen-when-looking-for-module-crashkernel-pos.patch
5a2ffc1f-x86-mm-drop-bogus-paging-mode-assertion.patch
5a313972-x86-microcode-add-support-for-AMD-Fam17.patch
5a32bd79-x86-vmx-dont-use-hvm_inject_hw_exception-in-.patch
5a4caa5e-x86-IRQ-conditionally-preserve-access-perm.patch
5a4caa8c-x86-E820-don-t-overrun-array.patch
5a4e2bca-x86-free-msr_vcpu_policy-during-destruction.patch
5a4e2c2c-x86-upcall-inject-spurious-event-after-setting-vector.patch
5a4fd893-1-x86-break-out-alternative-asm-into-separate-header.patch
5a4fd893-2-x86-introduce-ALTERNATIVE_2-macros.patch
5a4fd893-3-x86-hvm-rename-update_guest_vendor-to-cpuid_policy_changed.patch
5a4fd893-4-x86-introduce-cpuid_policy_updated.patch
5a4fd893-5-x86-entry-remove-partial-cpu_user_regs.patch
5a4fd894-1-x86-rearrange-RESTORE_ALL-to-restore-in-stack-order.patch
5a4fd894-2-x86-hvm-use-SAVE_ALL-after-VMExit.patch
5a4fd894-3-x86-erase-guest-GPRs-on-entry-to-Xen.patch
5a4fd894-4-clarifications-to-wait-infrastructure.patch
5a534c78-x86-dont-use-incorrect-CPUID-values-for-topology.patch
5a5cb24c-x86-mm-always-set-_PAGE_ACCESSED-on-L4-updates.patch
5a5e2cff-x86-Meltdown-band-aid.patch
5a5e2d73-x86-Meltdown-band-aid-conditional.patch
5a5e3a4e-1-x86-support-compiling-with-indirect-branch-thunks.patch
5a5e3a4e-2-x86-support-indirect-thunks-from-asm.patch
5a5e3a4e-3-x86-report-speculative-mitigation-details.patch
5a5e3a4e-4-x86-AMD-set-lfence-as-Dispatch-Serialising.patch
5a5e3a4e-5-x86-introduce-alternative-indirect-thunks.patch
5a5e3a4e-6-x86-definitions-for-Indirect-Branch-Controls.patch
5a5e3a4e-7-x86-cmdline-opt-to-disable-IBRS-IBPB-STIBP.patch
5a5e459c-1-x86-SVM-offer-CPUID-faulting-to-AMD-HVM-guests.patch
5a5e459c-2-x86-report-domain-id-on-CPUID.patch
5a68bc16-x86-acpi-process-softirqs-logging-Cx.patch
5a69c0b9-x86-fix-GET_STACK_END.patch
5a6b36cd-1-x86-cpuid-handling-of-IBRS-IBPB-STIBP-and-IBRS-for-guests.patch
5a6b36cd-2-x86-msr-emulation-of-SPEC_CTRL-PRED_CMD.patch
5a6b36cd-3-x86-migrate-MSR_SPEC_CTRL.patch
5a6b36cd-4-x86-hvm-permit-direct-access-to-SPEC_CTRL-PRED_CMD.patch
5a6b36cd-5-x86-use-SPEC_CTRL-on-entry.patch
5a6b36cd-6-x86-clobber-RSB-RAS-on-entry.patch
5a6b36cd-7-x86-no-alternatives-in-NMI-MC-paths.patch
5a6b36cd-8-x86-boot-calculate-best-BTI-mitigation.patch
5a6b36cd-9-x86-issue-speculation-barrier.patch
5a6b36cd-A-x86-offer-Indirect-Branch-Controls-to-guests.patch
5a6b36cd-B-x86-clear-SPEC_CTRL-while-idle.patch
5a7b1bdd-x86-reduce-Meltdown-band-aid-IPI-overhead.patch
5a843807-x86-spec_ctrl-fix-bugs-in-SPEC_CTRL_ENTRY_FROM_INTR_IST.patch
5a856a2b-x86-emul-fix-64bit-decoding-of-segment-overrides.patch
5a856a2b-x86-use-32bit-xors-for-clearing-GPRs.patch
5a856a2b-x86-xpti-hide-almost-all-of-Xen-image-mappings.patch
5a8be788-x86-nmi-start-NMI-watchdog-on-CPU0-after-SMP.patch
5a95373b-x86-PV-avoid-leaking-other-guests-MSR_TSC_AUX.patch
5a95571f-memory-dont-implicitly-unpin-in-decrease-res.patch
5a95576c-gnttab-ARM-dont-corrupt-shared-GFN-array.patch
5a955800-gnttab-dont-free-status-pages-on-ver-change.patch
5a955854-x86-disallow-HVM-creation-without-LAPIC-emul.patch
5a956747-x86-HVM-dont-give-wrong-impression-of-WRMSR-success.patch
5a9eb7f1-x86-xpti-dont-map-stack-guard-pages.patch
5a9eb85c-x86-slightly-reduce-XPTI-overhead.patch
5a9eb890-x86-remove-CR-reads-from-exit-to-guest-path.patch
5aa2b6b9-cpufreq-ondemand-CPU-offlining-race.patch
5aaa9878-x86-vlapic-clear-TMR-bit-for-edge-triggered-intr.patch
xsa258.patch
xsa259.patch�- bsc#1090820 - VUL-0: CVE-2018-8897: xen: x86: mishandling of
debug exceptions (XSA-260)
xsa260-1.patch
xsa260-2.patch
xsa260-3.patch
xsa260-4.patch
- bsc#1090822 - VUL-0: CVE-2018-10982: xen: x86 vHPET interrupt
injection errors (XSA-261)
xsa261.patch
- bsc#1090823 - VUL-0: CVE-2018-10981: xen: qemu may drive Xen into
unbounded loop (XSA-262)
xsa262.patch�- bsc#1089152 - VUL-0: CVE-2018-10472: xen: Information leak via
crafted user-supplied CDROM (XSA-258)
xsa258.patch
- bsc#1089635 - VUL-0: CVE-2018-10471: xen: x86: PV guest may crash
Xen with XPTI (XSA-259)
xsa259.patch�- Preserve xen-syms from xen-dbg.gz to allow processing vmcores
with crash(1) (bsc#1087251)�- Upstream patches from Jan (bsc#1027519) and fixes related to
Page Table Isolation (XPTI). See also bsc#1074562 XSA-254
5a856a2b-x86-xpti-hide-almost-all-of-Xen-image-mappings.patch
5a9eb7f1-x86-xpti-dont-map-stack-guard-pages.patch
5a9eb85c-x86-slightly-reduce-XPTI-overhead.patch
5a9eb890-x86-remove-CR-reads-from-exit-to-guest-path.patch
5aa2b6b9-cpufreq-ondemand-CPU-offlining-race.patch
5aaa9878-x86-vlapic-clear-TMR-bit-for-edge-triggered-intr.patch�- bsc#1072834 - Xen HVM: unchecked MSR access error: RDMSR from
0xc90 at rIP: 0xffffffff93061456 (native_read_msr+0x6/0x30)
5a956747-x86-HVM-dont-give-wrong-impression-of-WRMSR-success.patch
- Upstream patches from Jan (bsc#1027519)
5a79d7ed-libxc-packed-initrd-dont-fail-domain-creation.patch
5a7b1bdd-x86-reduce-Meltdown-band-aid-IPI-overhead.patch
5a843807-x86-spec_ctrl-fix-bugs-in-SPEC_CTRL_ENTRY_FROM_INTR_IST.patch
5a856a2b-x86-emul-fix-64bit-decoding-of-segment-overrides.patch
5a856a2b-x86-use-32bit-xors-for-clearing-GPRs.patch
5a8be788-x86-nmi-start-NMI-watchdog-on-CPU0-after-SMP.patch
5a95373b-x86-PV-avoid-leaking-other-guests-MSR_TSC_AUX.patch
5a95571f-memory-dont-implicitly-unpin-in-decrease-res.patch (Replaces xsa252.patch)
5a95576c-gnttab-ARM-dont-corrupt-shared-GFN-array.patch (Replaces xsa255-1.patch)
5a955800-gnttab-dont-free-status-pages-on-ver-change.patch (Replaces xsa255-2.patch)
5a955854-x86-disallow-HVM-creation-without-LAPIC-emul.patch (Replaces xsa256.patch)
- Drop
xsa252.patch
xsa255-1.patch
xsa255-2.patch
xsa256.patch�- bsc#1080635 - VUL-0: CVE-2018-7540: xen: DoS via non-preemptable
L3/L4 pagetable freeing (XSA-252)
xsa252.patch
- bsc#1080662 - VUL-0: CVE-2018-7541: xen: grant table v2 -> v1
transition may crash Xen (XSA-255)
xsa255-1.patch
xsa255-2.patch
- bsc#1080634 - VUL-0: CVE-2018-7542: xen: x86 PVH guest without
LAPIC may DoS the host (XSA-256)
xsa256.patch�- Remove stale systemd presets code for 13.2 and older�- fate#324965 - add script, udev rule and systemd service to watch
for vcpu online/offline events in a HVM domU
They are triggered via xl vcpu-set domU N�- Replace hardcoded xen with Name tag when refering to subpkgs�- Make sure tools and tools-domU require libs from the very same build�- tools-domU: Add support for qemu guest agent. New files
80-xen-channel-setup.rules and xen-channel-setup.sh configure a
xen-pv-channel for use by the guest agent
FATE#324963�- Remove outdated /etc/xen/README*�- bsc#1073961 - VUL-0: CVE-2018-5244: xen: x86: memory leak with
MSR emulation (XSA-253)
5a4e2bca-x86-free-msr_vcpu_policy-during-destruction.patch
- bsc#1074562 - VUL-0: CVE-2017-5753,CVE-2017-5715,CVE-2017-5754
xen: Information leak via side effects of speculative execution
(XSA-254). Includes Spectre v2 mitigation.
5a4caa5e-x86-IRQ-conditionally-preserve-access-perm.patch
5a4caa8c-x86-E820-don-t-overrun-array.patch
5a4e2c2c-x86-upcall-inject-spurious-event-after-setting-vector.patch
5a4fd893-1-x86-break-out-alternative-asm-into-separate-header.patch
5a4fd893-2-x86-introduce-ALTERNATIVE_2-macros.patch
5a4fd893-3-x86-hvm-rename-update_guest_vendor-to-cpuid_policy_changed.patch
5a4fd893-4-x86-introduce-cpuid_policy_updated.patch
5a4fd893-5-x86-entry-remove-partial-cpu_user_regs.patch
5a4fd894-1-x86-rearrange-RESTORE_ALL-to-restore-in-stack-order.patch
5a4fd894-2-x86-hvm-use-SAVE_ALL-after-VMExit.patch
5a4fd894-3-x86-erase-guest-GPRs-on-entry-to-Xen.patch
5a4fd894-4-clarifications-to-wait-infrastructure.patch
5a534c78-x86-dont-use-incorrect-CPUID-values-for-topology.patch
5a5cb24c-x86-mm-always-set-_PAGE_ACCESSED-on-L4-updates.patch
5a5e2cff-x86-Meltdown-band-aid.patch
5a5e2d73-x86-Meltdown-band-aid-conditional.patch
5a5e3a4e-1-x86-support-compiling-with-indirect-branch-thunks.patch
5a5e3a4e-2-x86-support-indirect-thunks-from-asm.patch
5a5e3a4e-3-x86-report-speculative-mitigation-details.patch
5a5e3a4e-4-x86-AMD-set-lfence-as-Dispatch-Serialising.patch
5a5e3a4e-5-x86-introduce-alternative-indirect-thunks.patch
5a5e3a4e-6-x86-definitions-for-Indirect-Branch-Controls.patch
5a5e3a4e-7-x86-cmdline-opt-to-disable-IBRS-IBPB-STIBP.patch
5a5e459c-1-x86-SVM-offer-CPUID-faulting-to-AMD-HVM-guests.patch
5a5e459c-2-x86-report-domain-id-on-CPUID.patch
5a68bc16-x86-acpi-process-softirqs-logging-Cx.patch
5a69c0b9-x86-fix-GET_STACK_END.patch
5a6b36cd-1-x86-cpuid-handling-of-IBRS-IBPB-STIBP-and-IBRS-for-guests.patch
5a6b36cd-2-x86-msr-emulation-of-SPEC_CTRL-PRED_CMD.patch
5a6b36cd-3-x86-migrate-MSR_SPEC_CTRL.patch
5a6b36cd-4-x86-hvm-permit-direct-access-to-SPEC_CTRL-PRED_CMD.patch
5a6b36cd-5-x86-use-SPEC_CTRL-on-entry.patch
5a6b36cd-6-x86-clobber-RSB-RAS-on-entry.patch
5a6b36cd-7-x86-no-alternatives-in-NMI-MC-paths.patch
5a6b36cd-8-x86-boot-calculate-best-BTI-mitigation.patch
5a6b36cd-9-x86-issue-speculation-barrier.patch
5a6b36cd-A-x86-offer-Indirect-Branch-Controls-to-guests.patch
5a6b36cd-B-x86-clear-SPEC_CTRL-while-idle.patch�- Fix python3 deprecated atoi call (bsc#1067224)
pygrub-python3-conversion.patch
- Drop xenmon-python3-conversion.patch�- bsc#1067317 - pass cache=writeback|unsafe|directsync to qemu,
depending on the libxl disk settings
libxl.add-option-to-disable-disk-cache-flushes-in-qdisk.patch�- Remove libxl.LIBXL_DESTROY_TIMEOUT.debug.patch�- bsc#1067224 - xen-tools have hard dependency on Python 2
build-python3-conversion.patch
bin-python3-conversion.patch�- bsc#1070165 - xen crashes after aborted localhost migration
5a2ffc1f-x86-mm-drop-bogus-paging-mode-assertion.patch
- bsc#1035442 - L3: libxl: error: libxl.c:1676:devices_destroy_cb:
libxl__devices_destroy failed
5a33a12f-domctl-improve-locking-during-domain-destruction.patch
- Upstream patches from Jan (bsc#1027519)
5a21a77e-x86-pv-construct-d0v0s-GDT-properly.patch
5a2fda0d-x86-mb2-avoid-Xen-when-looking-for-module-crashkernel-pos.patch
5a313972-x86-microcode-add-support-for-AMD-Fam17.patch
5a32bd79-x86-vmx-dont-use-hvm_inject_hw_exception-in-.patch�- Update to Xen 4.10.0 FCS (fate#321394, fate#322686)
xen-4.10.0-testing-src.tar.bz2�- Rebuild initrd if xen-tools-domU is updated�- Update to Xen 4.10.0-rc8 (fate#321394, fate#322686)
xen-4.10.0-testing-src.tar.bz2�- Increase the value of LIBXL_DESTROY_TIMEOUT from 10 to 100 seconds
If many domUs shutdown in parallel the backends can not keep up
Add some debug output to track how long backend shutdown takes (bsc#1035442)
libxl.LIBXL_DESTROY_TIMEOUT.patch
libxl.LIBXL_DESTROY_TIMEOUT.debug.patch�- Adjust xenstore-run-in-studomain.patch to change the defaults
in the code instead of changing the sysconfig template, to also
cover the upgrade case�- Update to Xen 4.10.0-rc6 (fate#321394, fate#322686)
xen-4.10.0-testing-src.tar.bz2�- Since xen switched to Kconfig, building a debug hypervisor
was done by default. Adjust make logic to build a non-debug
hypervisor by default, and continue to provide one as xen-dbg.gz�- fate#316614: set migration constraints from cmdline
fix libxl.set-migration-constraints-from-cmdline.patch for xen-4.10�- Document the suse-diskcache-disable-flush option in
xl-disk-configuration(5) (bsc#879425,bsc#1067317)�- Replace references to /var/adm/fillup-templates with new
%_fillupdir macro (boo#1069468)�- Update to Xen 4.10.0-rc5 (fate#321394, fate#322686)
xen-4.10.0-testing-src.tar.bz2
- fate#323663 - Run Xenstore in stubdomain
xenstore-run-in-studomain.patch�- bsc#1067224 - xen-tools have hard dependency on Python 2
pygrub-python3-conversion.patch
xenmon-python3-conversion.patch
migration-python3-conversion.patch
xnloader.py
xen2libvirt.py�- Remove xendriverdomain.service (bsc#1065185)
Driver domains must be configured manually with custom .service file�- Update to Xen 4.10.0-rc3 (fate#321394, fate#322686)
xen-4.10.0-testing-src.tar.bz2
- Drop 59f31268-libxc-remove-stale-error-check-for-domain-size.patch�- Adjust xen-dom0-modules.service to ignore errors (bsc#1065187)�- fate#324052 Support migration of Xen HVM domains larger than 1TB
59f31268-libxc-remove-stale-error-check-for-domain-size.patch�- Update to Xen 4.10.0-rc2 (fate#321394, fate#322686)
xen-4.10.0-testing-src.tar.bz2�- Update to Xen 4.10.0-rc1 (fate#321394, fate#322686)
xen-4.10.0-testing-src.tar.bz2
- Drop patches included in new tarball
592fd5f0-stop_machine-fill-result-only-in-case-of-error.patch
596f257e-x86-fix-hvmemul_insn_fetch.patch
5982fd99-VT-d-don-t-panic-warn-on-iommu-no-igfx.patch
598c3630-VT-d-PI-disable-when-CPU-side-PI-is-off.patch
598c3706-cpufreq-only-stop-ondemand-governor-if-started.patch
5992f1e5-x86-grant-disallow-misaligned-PTEs.patch
5992f20d-gnttab-split-maptrack-lock-to-make-it-useful-again.patch
5992f233-gnttab-correct-pin-status-fixup-for-copy.patch
59958e76-gnttab-dont-use-possibly-unbounded-tail-calls.patch
59958ebf-gnttab-fix-transitive-grant-handling.patch
59958edd-gnttab-avoid-spurious-maptrack-handle-alloc-failures.patch
599da329-arm-mm-release-grant-lock-on-xatp1-error-paths.patch
59a01223-x86-check-for-alloc-errors-in-modify_xen_mappings.patch
59a0130c-x86-efi-dont-write-relocs-in-efi_arch_relocate_image-1st-pass.patch
59a9221f-VT-d-use-correct-BDF-for-VF-to-search-VT-d-unit.patch
59ae9177-x86-emul-fix-handling-of-unimplemented-Grp7-insns.patch
59aec335-x86emul-correct-VEX-W-handling-for-VPINSRD.patch
59aec375-x86emul-correct-VEX-L-handling-for-VCVTx2SI.patch
59afcea0-x86-introduce-and-use-setup_force_cpu_cap.patch
59b2a7f2-x86-HVM-correct-repeat-count-update-linear-phys.patch
59b7d664-mm-make-sure-node-is-less-than-MAX_NUMNODES.patch
59b7d69b-grant_table-fix-GNTTABOP_cache_flush-handling.patch
59b7d6c8-xenstore-dont-unlink-connection-object-twice.patch
59b7d6d9-gnttab-also-validate-PTE-perms-upon-destroy-replace.patch
gcc7-arm.patch
gcc7-mini-os.patch�- bsc#1061084 - VUL-0: xen: page type reference leak on x86
(XSA-242)
xsa242.patch
- bsc#1061086 - VUL-0: xen: x86: Incorrect handling of self-linear
shadow mappings with translated guests (XSA-243)
xsa243.patch
- bsc#1061087 - VUL-0: xen: x86: Incorrect handling of IST settings
during CPU hotplug (XSA-244)
xsa244.patch�- bsc#1061077 - VUL-0: xen: DMOP map/unmap missing argument checks
(XSA-238)
xsa238.patch
- bsc#1061080 - VUL-0: xen: hypervisor stack leak in x86 I/O
intercept code (XSA-239)
xsa239.patch
- bsc#1061081 - VUL-0: xen: Unlimited recursion in linear pagetable
de-typing (XSA-240)
xsa240-1.patch
xsa240-2.patch
- bsc#1061082 - VUL-0: xen: Stale TLB entry due to page type
release race (XSA-241)
xsa241.patch�- bsc#1061075 - VUL-0: xen: pin count / page reference race in
grant table code (XSA-236)
xsa236.patch
- bsc#1061076 - VUL-0: xen: multiple MSI mapping issues on x86
(XSA-237)
xsa237-1.patch
xsa237-2.patch
xsa237-3.patch
xsa237-4.patch
xsa237-5.patch�- bsc#1056278 - VUL-0: xen: Missing NUMA node parameter
verification (XSA-231)
59b7d664-mm-make-sure-node-is-less-than-MAX_NUMNODES.patch
- bsc#1056280 - VUL-0: xen: Missing check for grant table (XSA-232)
59b7d69b-grant_table-fix-GNTTABOP_cache_flush-handling.patch
- bsc#1056281 - VUL-0: xen: cxenstored: Race in domain cleanup
(XSA-233)
59b7d6c8-xenstore-dont-unlink-connection-object-twice.patch
- bsc#1056282 - VUL-0: xen: insufficient grant unmapping checks for
x86 PV guests (XSA-234)
59b7d6d9-gnttab-also-validate-PTE-perms-upon-destroy-replace.patch
- bsc#1055321 - VUL-0: xen: add-to-physmap error paths fail to
release lock on ARM (XSA-235)
599da329-arm-mm-release-grant-lock-on-xatp1-error-paths.patch
- Upstream patches from Jan (bsc#1027519)
59a01223-x86-check-for-alloc-errors-in-modify_xen_mappings.patch
59a0130c-x86-efi-dont-write-relocs-in-efi_arch_relocate_image-1st-pass.patch
59a9221f-VT-d-use-correct-BDF-for-VF-to-search-VT-d-unit.patch
59ae9177-x86-emul-fix-handling-of-unimplemented-Grp7-insns.patch
59aec335-x86emul-correct-VEX-W-handling-for-VPINSRD.patch
59aec375-x86emul-correct-VEX-L-handling-for-VCVTx2SI.patch
59afcea0-x86-introduce-and-use-setup_force_cpu_cap.patch
59b2a7f2-x86-HVM-correct-repeat-count-update-linear-phys.patch
- Dropped gcc7-xen.patch�- bsc#1057358 - Cannot Boot into SLES12.3 with Xen hypervisor when
Secure Boot is Enabled
xen.spec�- bsc#1055695 - XEN: 11SP4 and 12SP3 HVM guests can not be restored
update from v6 to v9 to cover more cases for ballooned domUs
libxc.sr.superpage.patch�- bsc#1026236 - remove suse_vtsc_tolerance= cmdline option for Xen
drop the patch because it is not upstream acceptable
remove xen.suse_vtsc_tolerance.patch�- bsc#1055695 - XEN: 11SP4 and 12SP3 HVM guests can not be restored
after the save using xl stack
libxc.sr.superpage.patch�- Unignore gcc-PIE
the toolstack disables PIE for firmware builds as needed�- Upstream patches from Jan (bsc#1027519)
592fd5f0-stop_machine-fill-result-only-in-case-of-error.patch
596f257e-x86-fix-hvmemul_insn_fetch.patch
5982fd99-VT-d-don-t-panic-warn-on-iommu-no-igfx.patch
598c3630-VT-d-PI-disable-when-CPU-side-PI-is-off.patch
598c3706-cpufreq-only-stop-ondemand-governor-if-started.patch
5992f1e5-x86-grant-disallow-misaligned-PTEs.patch (Replaces xsa227.patch)
5992f20d-gnttab-split-maptrack-lock-to-make-it-useful-again.patch (Replaces xsa228.patch)
5992f233-gnttab-correct-pin-status-fixup-for-copy.patch (Replaces xsa230.patch)
59958e76-gnttab-dont-use-possibly-unbounded-tail-calls.patch (Replaces xsa226-1.patch)
59958ebf-gnttab-fix-transitive-grant-handling.patch (Replaces xsa226-2.patch)
59958edd-gnttab-avoid-spurious-maptrack-handle-alloc-failures.patch�- bsc#1044974 - xen-tools require python-pam
xen.spec�- Clean up spec file errors and a few warnings. (bsc#1027519)
- Removed conditional 'with_systemd' and some old deprecated
'sles_version' checks.
xen.spec�- Remove use of brctl utiltiy from supportconfig plugin
FATE#323639�- Use upstream variant of mini-os __udivmoddi4 change
gcc7-mini-os.patch�- fate#323639 Move bridge-utils to legacy
replace-obsolete-network-configuration-commands-in-s.patch�- bsc#1052686 - VUL-0: xen: grant_table: possibly premature
clearing of GTF_writing / GTF_reading (XSA-230)
xsa230.patch�- bsc#1035231 - migration of HVM domU does not use superpages
on destination dom0
libxc.sr.superpage.patch�- bsc#1051787 - VUL-0: CVE-2017-12135: xen: possibly unbounded
recursion in grant table code (XSA-226)
xsa226-1.patch
xsa226-2.patch
- bsc#1051788 - VUL-0: CVE-2017-12137: xen: x86: PV privilege
escalation via map_grant_ref (XSA-227)
xsa227.patch
- bsc#1051789 - VUL-0: CVE-2017-12136: xen: grant_table: Race
conditions with maptrack free list handling (XSA-228)
xsa228.patch�- Add a supportconfig plugin
xen-supportconfig
FATE#323661�- bsc#1026236 - add suse_vtsc_tolerance= cmdline option for Xen
To avoid emulation of TSC access from a domU after live migration
add a global tolerance for the measured host kHz
xen.suse_vtsc_tolerance.patch�- fate#323662 Drop qemu-dm from xen-tools package
The following tarball and patches have been removed
qemu-xen-traditional-dir-remote.tar.bz2
VNC-Support-for-ExtendedKeyEvent-client-message.patch
0001-net-move-the-tap-buffer-into-TAPState.patch
0002-net-increase-tap-buffer-size.patch
0003-e1000-fix-access-4-bytes-beyond-buffer-end.patch
0004-e1000-secrc-support.patch
0005-e1000-multi-buffer-packet-support.patch
0006-e1000-clear-EOP-for-multi-buffer-descriptors.patch
0007-e1000-verify-we-have-buffers-upfront.patch
0008-e1000-check-buffer-availability.patch
CVE-2013-4533-qemut-pxa2xx-buffer-overrun-on-incoming-migration.patch
CVE-2013-4534-qemut-openpic-buffer-overrun-on-incoming-migration.patch
CVE-2013-4537-qemut-ssi-sd-fix-buffer-overrun-on-invalid-state-load.patch
CVE-2013-4538-qemut-ssd0323-fix-buffer-overun-on-invalid-state.patch
CVE-2013-4539-qemut-tsc210x-fix-buffer-overrun-on-invalid-state-load.patch
CVE-2014-0222-qemut-qcow1-validate-l2-table-size.patch
CVE-2014-3640-qemut-slirp-NULL-pointer-deref-in-sosendto.patch
CVE-2015-4037-qemut-smb-config-dir-name.patch
CVE-2015-5154-qemut-fix-START-STOP-UNIT-command-completion.patch
CVE-2015-5278-qemut-Infinite-loop-in-ne2000_receive-function.patch
CVE-2015-6815-qemut-e1000-fix-infinite-loop.patch
CVE-2015-7512-qemut-net-pcnet-buffer-overflow-in-non-loopback-mode.patch
CVE-2015-8345-qemut-eepro100-infinite-loop-fix.patch
CVE-2015-8504-qemut-vnc-avoid-floating-point-exception.patch
CVE-2016-1714-qemut-fw_cfg-add-check-to-validate-current-entry-value.patch
CVE-2016-1981-qemut-e1000-eliminate-infinite-loops-on-out-of-bounds-transfer.patch
CVE-2016-2391-qemut-usb-null-pointer-dereference-in-ohci-module.patch
CVE-2016-2841-qemut-ne2000-infinite-loop-in-ne2000_receive.patch
CVE-2016-4439-qemut-scsi-esp-OOB-write-while-writing-to-cmdbuf-in-esp_reg_write.patch
CVE-2016-4441-qemut-scsi-esp-OOB-write-while-writing-to-cmdbuf-in-get_cmd.patch
CVE-2016-5238-qemut-scsi-esp-OOB-write-when-using-non-DMA-mode-in-get_cmd.patch
CVE-2016-5338-qemut-scsi-esp-OOB-rw-access-while-processing-ESP_FIFO.patch
CVE-2016-6351-qemut-scsi-esp-make-cmdbuf-big-enough-for-maximum-CDB-size.patch
CVE-2016-7908-qemut-net-Infinite-loop-in-mcf_fec_do_tx.patch
CVE-2016-7909-qemut-net-pcnet-infinite-loop-in-pcnet_rdra_addr.patch
CVE-2016-8667-qemut-dma-rc4030-divide-by-zero-error-in-set_next_tick.patch
CVE-2016-8669-qemut-char-divide-by-zero-error-in-serial_update_parameters.patch
CVE-2016-8910-qemut-net-rtl8139-infinite-loop-while-transmit-in-Cplus-mode.patch
CVE-2016-9921-qemut-display-cirrus_vga-divide-by-zero-in-cirrus_do_copy.patch
CVE-2017-6505-qemut-usb-an-infinite-loop-issue-in-ohci_service_ed_list.patch
CVE-2017-8309-qemut-audio-host-memory-leakage-via-capture-buffer.patch
CVE-2017-9330-qemut-usb-ohci-infinite-loop-due-to-incorrect-return-value.patch
blktap.patch
cdrom-removable.patch
xen-qemu-iscsi-fix.patch
qemu-security-etch1.patch
xen-disable-qemu-monitor.patch
xen-hvm-default-bridge.patch
qemu-ifup-set-mtu.patch
ioemu-vnc-resize.patch
capslock_enable.patch
altgr_2.patch
log-guest-console.patch
bdrv_open2_fix_flags.patch
bdrv_open2_flags_2.patch
ioemu-7615-qcow2-fix-alloc_cluster_link_l2.patch
qemu-dm-segfault.patch
bdrv_default_rwflag.patch
kernel-boot-hvm.patch
ioemu-watchdog-support.patch
ioemu-watchdog-linkage.patch
ioemu-watchdog-ib700-timer.patch
ioemu-hvm-pv-support.patch
pvdrv_emulation_control.patch
ioemu-disable-scsi.patch
ioemu-disable-emulated-ide-if-pv.patch
xenpaging.qemu.flush-cache.patch
ioemu-devicemodel-include.patch
- Cleanup spec file and remove unused KMP patches
kmp_filelist
supported_module.patch
xen_pvonhvm.xen_emul_unplug.patch�- bsc#1002573 - Optimize LVM functions in block-dmmd
block-dmmd�- Record initial Xen dmesg in /var/log/xen/xen-boot.log for
supportconfig. Keep previous log in /var/log/xen/xen-boot.prev.log�- Remove storytelling from description in xen.rpm�- Update to Xen 4.9.0 FCS (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2�- Update block-dmmd script (bsc#1002573)
block-dmmd�- Update to Xen 4.9.0-rc8+ (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2
gcc7-arm.patch
- Drop gcc7-error-xenpmd.patch�- Update to Xen 4.9.0-rc8 (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2�- bsc#1042160 - VUL-1: CVE-2017-9330: xen: usb: ohci: infinite loop
due to incorrect return value
CVE-2017-9330-qemut-usb-ohci-infinite-loop-due-to-incorrect-return-value.patch�- bsc#1037243 - VUL-1: CVE-2017-8309: xen: audio: host memory
leakage via capture buffer
CVE-2017-8309-qemut-audio-host-memory-leakage-via-capture-buffer.patch�- Update to Xen 4.9.0-rc7 (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2�- Update to Xen 4.9.0-rc6 (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2�- bsc#1031343 - xen fails to build with GCC 7
gcc7-mini-os.patch
gcc7-xen.patch�- bsc#1031343 - xen fails to build with GCC 7
gcc7-error-xenpmd.patch�- Update to Xen 4.9.0-rc5 (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2
- Drop xen-tools-pkgconfig-xenlight.patch�- bsc#1037779 - xen breaks kexec-tools build
xen-tools-pkgconfig-xenlight.patch�- Update to Xen 4.9.0-rc4 (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2�- bsc#1036146 - sles12sp2 xen VM dumps core to wrong path
xen.spec�- Update to Xen 4.9.0-rc3 (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2
aarch64-maybe-uninitialized.patch�- Update to Xen 4.9.0-rc2 (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2�- Update to Xen 4.9.0-rc1 (fate#321394, fate#323108)
xen-4.9.0-testing-src.tar.bz2
ioemu-devicemodel-include.patch
- Dropped patches contained in new tarball
xen-4.8.0-testing-src.tar.bz2
0001-xenstore-let-write_node-and-some-callers-return-errn.patch
0002-xenstore-undo-function-rename.patch
0003-xenstore-rework-of-transaction-handling.patch
584806ce-x86emul-correct-PUSHF-POPF.patch
584fc649-fix-determining-when-domain-creation-is-complete.patch
58510c06-x86emul-CMPXCHGnB-ignore-prefixes.patch
58510cac-x86emul-MOVNTI-no-REP-prefixes.patch
58526ccc-x86emul-64bit-ignore-most-segment-bases-in-align-check.patch
5853ed37-VT-d-correct-dma_msi_set_affinity.patch
5853ee07-x86emul-CMPXCHG16B-aligned-operand.patch
58580060-x86-emul-correct-SYSCALL-eflags-handling.patch
585aa3c5-x86-force-EFLAGS-IF-on-upon-exit-to-PV.patch
585aa407-x86-HVM-NULL-check-before-using-VMFUNC-hook.patch
585bd5fe-x86-emul-correct-VMFUNC-return-value-handling.patch
586ba81c-x86-cpu-dont-update-this_cpu-for-guest-get_cpu_vendor.patch
587d04d6-x86-xstate-fix-array-overrun-with-LWP.patch
587de4a9-x86emul-VEX-B-ignored-in-compat-mode.patch
5882129d-x86emul-LOCK-check-adjustments.patch
58821300-x86-segment-attribute-handling.patch
58873c1f-x86emul-correct-FPU-stub-asm-constraints.patch
58873c80-x86-hvm-do-not-set-msr_tsc_adjust-on-.patch
5887888f-credit2-fix-shutdown-suspend-with-cpupools.patch
5887888f-credit2-never-consider-CPUs-outside-of-pool.patch
5887888f-credit2-use-the-correct-scratch-cpumask.patch
5888b1b3-x86-emulate-dont-assume-addr_size-32-implies-protmode.patch
5899cbd9-EPT-allow-wrcomb-MMIO-mappings-again.patch
589b3272-libxl-dont-segfault-when-creating-domain-with-invalid-pvusb-device.patch
58a44771-IOMMU-always-call-teardown-callback.patch
58a48ccc-x86-fix-p2m_flush_table-for-non-nested.patch
58a59f4b-libxl-correct-xenstore-entry-for-empty-cdrom.patch
58a70d94-VMX-fix-VMCS-race-on-cswitch-paths.patch
58ac1f3f-VMX-dont-leak-host-syscall-MSRs.patch
58b5a2de-x86-correct-Xens-idea-of-its-memory-layout.patch
58b6fd42-credit2-always-mark-a-tickled-pCPU-as-tickled.patch
58b6fd42-credit2-dont-miss-accounting-during-credit-reset.patch
58cbf682-x86-EFI-avoid-overrunning-mb_modules.patch
58cf9200-x86-EFI-avoid-IOMMU-faults-on-tail-gap.patch
58cf9260-x86-EFI-avoid-Xen-when-looking-for-mod-kexec-pos.patch
58cf9277-x86-time-dont-use-vTSC-if-host-guest-freqs-match.patch
58d25ea2-xenstore-add-missing-checks-for-allocation-failure.patch
58d91365-sched-dont-call-wrong-hook-via-VCPU2OP.patch
CVE-2017-2615-qemut-display-cirrus-oob-access-while-doing-bitblt-copy-backward-mode.patch
CVE-2017-2620-xsa209-qemut-cirrus_bitblt_cputovideo-does-not-check-if-memory-region-safe.patch
glibc-2.25-compatibility-fix.patch
xs-09-add_change_node-params.patch
xs-10-call-add_change_node.patch
xs-11-tdb-record-header.patch
xs-12-node-gen-count.patch
xs-13-read-directory-part-support.patch
xs-14-command-array.patch
xs-15-command-return-val.patch
xs-16-function-static.patch
xs-17-arg-parsing.patch
xs-18-default-buffer.patch
xs-19-handle-alloc-failures.patch
xs-20-tdb-version.patch
xs-21-empty-tdb-database.patch
xs-22-reopen_log-fix.patch
xs-23-XS_DEBUG-rename.patch
xs-24-xenstored_control.patch
xs-25-control-enhance.patch
xs-26-log-control.patch
xs-27-memory-report.patch
xs-28-remove-talloc-report.patch
xs-29-define-off_t.patch
xsa206-0001-xenstored-apply-a-write-transaction-rate-limit.patch
xsa206-0002-xenstored-Log-when-the-write-transaction-rate-limit.patch�- bsc#1022703 - Xen HVM guest with OVMF hangs with unattached CDRom
58a59f4b-libxl-correct-xenstore-entry-for-empty-cdrom.patch�- bsc#1015348 - L3: libvirtd does not start during boot
suse-xendomains-service.patch�- bsc#1014136 - Partner-L3: kdump can't dump a kernel on SLES12-SP2
with Xen hypervisor.
58cf9260-x86-EFI-avoid-Xen-when-looking-for-mod-kexec-pos.patch
- bsc#1026236 - L3: Paravirtualized vs. fully virtualized migration
- latter one much faster
58cf9277-x86-time-dont-use-vTSC-if-host-guest-freqs-match.patch
- Upstream patch from Jan
58cbf682-x86-EFI-avoid-overrunning-mb_modules.patch
58cf9200-x86-EFI-avoid-IOMMU-faults-on-tail-gap.patch
58d91365-sched-dont-call-wrong-hook-via-VCPU2OP.patch�- bsc#1022555 - L3: Timeout in "execution of /etc/xen/scripts/block
add"
58d25ea2-xenstore-add-missing-checks-for-allocation-failure.patch
0001-xenstore-let-write_node-and-some-callers-return-errn.patch
0002-xenstore-undo-function-rename.patch
0003-xenstore-rework-of-transaction-handling.patch
- bsc#1030144 - VUL-0: xen: xenstore denial of service via repeated
update (XSA-206)
xsa206-0001-xenstored-apply-a-write-transaction-rate-limit.patch
xsa206-0002-xenstored-Log-when-the-write-transaction-rate-limit.patch
- bsc#1029827 - Forward port xenstored
xs-09-add_change_node-params.patch
xs-10-call-add_change_node.patch
xs-11-tdb-record-header.patch
xs-12-node-gen-count.patch
xs-13-read-directory-part-support.patch
xs-14-command-array.patch
xs-15-command-return-val.patch
xs-16-function-static.patch
xs-17-arg-parsing.patch
xs-18-default-buffer.patch
xs-19-handle-alloc-failures.patch
xs-20-tdb-version.patch
xs-21-empty-tdb-database.patch
xs-22-reopen_log-fix.patch
xs-23-XS_DEBUG-rename.patch
xs-24-xenstored_control.patch
xs-25-control-enhance.patch
xs-26-log-control.patch
xs-27-memory-report.patch
xs-28-remove-talloc-report.patch
xs-29-define-off_t.patch�- bsc#1029128 - fix make xen to really produce xen.efi with gcc48�- bsc#1028235 - VUL-0: CVE-2017-6505: xen: qemu: usb: an infinite
loop issue in ohci_service_ed_list
CVE-2017-6505-qemut-usb-an-infinite-loop-issue-in-ohci_service_ed_list.patch
- Upstream patches from Jan (bsc#1027519)
5887888f-credit2-fix-shutdown-suspend-with-cpupools.patch
5887888f-credit2-use-the-correct-scratch-cpumask.patch
5899cbd9-EPT-allow-wrcomb-MMIO-mappings-again.patch
589b3272-libxl-dont-segfault-when-creating-domain-with-invalid-pvusb-device.patch
58a44771-IOMMU-always-call-teardown-callback.patch
58a48ccc-x86-fix-p2m_flush_table-for-non-nested.patch
58a70d94-VMX-fix-VMCS-race-on-cswitch-paths.patch
58ac1f3f-VMX-dont-leak-host-syscall-MSRs.patch
58b5a2de-x86-correct-Xens-idea-of-its-memory-layout.patch
58b6fd42-credit2-always-mark-a-tickled-pCPU-as-tickled.patch
58b6fd42-credit2-dont-miss-accounting-during-credit-reset.patch�- bsc#1027654 - XEN fails to build against glibc 2.25
glibc-2.25-compatibility-fix.patch
libxl.pvscsi.patch�- fate#316613: Refresh and enable libxl.pvscsi.patch�- bsc#1024834 - VUL-0: CVE-2017-2620: xen: cirrus_bitblt_cputovideo
does not check if memory region is safe (XSA-209)
CVE-2017-2620-xsa209-qemut-cirrus_bitblt_cputovideo-does-not-check-if-memory-region-safe.patch�- bsc#1023948 - [pvusb][sles12sp3][openqa] Segmentation fault
happened when adding usbctrl devices via xl
589b3272-libxl-dont-segfault-when-creating-domain-with-invalid-pvusb-device.patch�- Upstream patches from Jan (bsc#1027519)
587d04d6-x86-xstate-fix-array-overrun-with-LWP.patch
587de4a9-x86emul-VEX-B-ignored-in-compat-mode.patch
5882129d-x86emul-LOCK-check-adjustments.patch
58821300-x86-segment-attribute-handling.patch
58873c1f-x86emul-correct-FPU-stub-asm-constraints.patch
58873c80-x86-hvm-do-not-set-msr_tsc_adjust-on-.patch
5887888f-credit2-use-the-correct-scratch-cpumask.patch
5887888f-credit2-never-consider-CPUs-outside-of-pool.patch
5887888f-credit2-fix-shutdown-suspend-with-cpupools.patch
5888b1b3-x86-emulate-dont-assume-addr_size-32-implies-protmode.patch�- bsc#1023004 - VUL-0: CVE-2017-2615: qemu: display: cirrus: oob
access while doing bitblt copy backward mode
CVE-2017-2615-qemut-display-cirrus-oob-access-while-doing-bitblt-copy-backward-mode.patch�- fate#322313 and fate#322150 require the acpica package ported to
aarch64 which Xen 4.8 needs to build. Temporarily disable aarch64
until these fates are complete.
xen.spec�- bsc#1021952 - Virutalization/xen: Bug xen-tools missing
/usr/bin/domu-xenstore; guests fail to launch
tmp_build.patch
xen.spec�- No systemd presets for 42.3+ and SLE12SP3+ (bsc#1012842)�- bsc#1007224 - broken symlinks in /usr/share/doc/packages/xen/misc/
xen.spec�- 585aa3c5-x86-force-EFLAGS-IF-on-upon-exit-to-PV.patch
Replaces xsa202.patch (bsc#1014298)
- 585aa407-x86-HVM-NULL-check-before-using-VMFUNC-hook.patch
Replaces xsa203.patch (bsc#1014300)
- 58580060-x86-emul-correct-SYSCALL-eflags-handling.patch
Replaces xsa204.patch (bsc#1016340)
- Upstream patches from Jan
58526ccc-x86emul-64bit-ignore-most-segment-bases-in-align-check.patch
5853ed37-VT-d-correct-dma_msi_set_affinity.patch
5853ee07-x86emul-CMPXCHG16B-aligned-operand.patch
585bd5fe-x86-emul-correct-VMFUNC-return-value-handling.patch
586ba81c-x86-cpu-dont-update-this_cpu-for-guest-get_cpu_vendor.patch�- bsc#1015169 - VUL-0: CVE-2016-9921, CVE-2016-9922: xen: qemu:
display: cirrus_vga: a divide by zero in cirrus_do_copy
CVE-2016-9921-qemut-display-cirrus_vga-divide-by-zero-in-cirrus_do_copy.patch�- bsc#1016340 - VUL-0: CVE-2016-10013: xen: x86: Mishandling of
SYSCALL singlestep during emulation (XSA-204)
xsa204.patch�- bsc#1012651 - VUL-0: CVE-2016-9932: xen: x86 CMPXCHG8B emulation
fails to ignore operand size override (XSA-200)
58510c06-x86emul-CMPXCHGnB-ignore-prefixes.patch�- bsc#1014298 - VUL-0: CVE-2016-10024: xen: x86 PV guests may be
able to mask interrupts (XSA-202)
xsa202.patch
- bsc#1014300 - VUL-0: CVE-2016-10025: xen: x86: missing NULL
pointer check in VMFUNC emulation (XSA-203)
xsa203.patch
- Upstream patches from Jan
584806ce-x86emul-correct-PUSHF-POPF.patch
584fc649-fix-determining-when-domain-creation-is-complete.patch
58510c06-x86emul-CMPXCHGnB-ignore-prefixes.patch
58510cac-x86emul-MOVNTI-no-REP-prefixes.patch�- Update to Xen 4.8 FCS
xen-4.8.0-testing-src.tar.bz2
- Dropped
xen-4.7.1-testing-src.tar.bz2
0001-libxc-Rework-extra-module-initialisation.patch
0002-libxc-Prepare-a-start-info-structure-for-hvmloader.patch
0003-configure-define-SEABIOS_PATH-and-OVMF_PATH.patch
0004-firmware-makefile-install-BIOS-blob.patch
0005-libxl-Load-guest-BIOS-from-file.patch
0006-xen-Move-the-hvm_start_info-C-representation-from-li.patch
0007-hvmloader-Grab-the-hvm_start_info-pointer.patch
0008-hvmloader-Locate-the-BIOS-blob.patch
0009-hvmloader-Check-modules-whereabouts-in-perform_tests.patch
0010-hvmloader-Load-SeaBIOS-from-hvm_start_info-modules.patch
0011-hvmloader-Load-OVMF-from-modules.patch
0012-hvmloader-Specific-bios_load-function-required.patch
0013-hvmloader-Always-build-in-SeaBIOS-and-OVMF-loader.patch
0014-configure-do-not-depend-on-SEABIOS_PATH-or-OVMF_PATH.patch
57580bbd-kexec-allow-relaxed-placement-via-cmdline.patch
576001df-x86-time-use-local-stamp-in-TSC-calibration-fast-path.patch
5769106e-x86-generate-assembler-equates-for-synthesized.patch
57a1e603-x86-time-adjust-local-system-time-initialization.patch
57a1e64c-x86-time-introduce-and-use-rdtsc_ordered.patch
57a2f6ac-x86-time-calibrate-TSC-against-platform-timer.patch
57a30261-x86-support-newer-Intel-CPU-models.patch
5810a9cc-x86-emul-Correct-decoding-of-SReg3-operands.patch
581b2c3b-x86-emul-reject-LGDT-LIDT-with-non-canonical-addresses.patch
581b647a-x86emul-L-S-G-I-DT-ignore-opsz-overrides-in-64-bit-mode.patch
58249392-x86-svm-dont-clobber-eax-edx-if-RDMSR-intercept-fails.patch
582c35d6-x86-vmx-correct-long-mode-check-in-vmx_cpuid_intercept.patch
582c35ee-x86-traps-dont-call-hvm_hypervisor_cpuid_leaf-for-PV.patch
58343dc2-x86-hvm-Fix-the-handling-of-non-present-segments.patch
58343df8-x86-HVM-dont-load-LDTR-with-VM86-mode-attrs-during-task-switch.patch
58343e24-x86-PV-writes-of-fs-and-gs-base-MSRs-require-canonical-addresses.patch
58343e9e-libelf-fix-stack-memory-leak-when-loading-32-bit-symbol-tables.patch
58343ec2-x86emul-fix-huge-bit-offset-handling.patch
58343f29-x86-emul-correct-the-IDT-entry-calculation-in-inject_swint.patch
58343f44-x86-svm-fix-injection-of-software-interrupts.patch
58343f79-pygrub-Properly-quote-results-when-returning-them-to-the-caller.patch
CVE-2016-9381-xsa197-qemut.patch
CVE-2016-9637-xsa199-qemut.patch�- bsc#1011652 - VUL-0: xen: qemu ioport array overflow
CVE-2016-9637-xsa199-qemut.patch�- bsc#1009100 - VUL-0: CVE-2016-9386: XSA-191: xen: x86 null
segments not always treated as unusable
58343dc2-x86-hvm-Fix-the-handling-of-non-present-segments.patch
- bsc#1009103 - VUL-0: CVE-2016-9382: XSA-192: xen: x86 task switch
to VM86 mode mis-handled
58343df8-x86-HVM-dont-load-LDTR-with-VM86-mode-attrs-during-task-switch.patch
- bsc#1009104 - VUL-0: CVE-2016-9385: XSA-193: xen: x86 segment base
write emulation lacking canonical address checks
58343e24-x86-PV-writes-of-fs-and-gs-base-MSRs-require-canonical-addresses.patch
- bsc#1009105 - VUL-0: CVE-2016-9384: XSA-194: xen: guest 32-bit
ELF symbol table load leaking host data
58343e9e-libelf-fix-stack-memory-leak-when-loading-32-bit-symbol-tables.patch
- bsc#1009107 - VUL-0: CVE-2016-9383: XSA-195: xen: x86 64-bit bit
test instruction emulation broken
58343ec2-x86emul-fix-huge-bit-offset-handling.patch
- bsc#1009108 - VUL-0: CVE-2016-9377,CVE-2016-9378: XSA-196: xen:
x86 software interrupt injection mis-handled
58343f29-x86-emul-correct-the-IDT-entry-calculation-in-inject_swint.patch
58343f44-x86-svm-fix-injection-of-software-interrupts.patch
- bsc#1009109 - VUL-0: CVE-2016-9381: XSA-197: xen: qemu incautious
about shared ring processing
CVE-2016-9381-xsa197-qemut.patch
- bsc#1009111 - VUL-0: CVE-2016-9379,CVE-2016-9380: XSA-198: xen:
delimiter injection vulnerabilities in pygrub
58343f79-pygrub-Properly-quote-results-when-returning-them-to-the-caller.patch
- Upstream patches from Jan
581b2c3b-x86-emul-reject-LGDT-LIDT-with-non-canonical-addresses.patch
581b647a-x86emul-L-S-G-I-DT-ignore-opsz-overrides-in-64-bit-mode.patch
58249392-x86-svm-dont-clobber-eax-edx-if-RDMSR-intercept-fails.patch
582c35d6-x86-vmx-correct-long-mode-check-in-vmx_cpuid_intercept.patch
582c35ee-x86-traps-dont-call-hvm_hypervisor_cpuid_leaf-for-PV.patch�- Update to Xen Version 4.7.1
xen-4.7.1-testing-src.tar.bz2
- Dropped patches contained in new tarball
xen-4.7.0-testing-src.tar.bz2
575e9ca0-nested-vmx-Validate-host-VMX-MSRs-before-accessing-them.patch
57640448-xen-sched-use-default-scheduler-upon-an-invalid-sched.patch
57973099-have-schedulers-revise-initial-placement.patch
579730e6-remove-buggy-initial-placement-algorithm.patch
57976073-x86-remove-unsafe-bits-from-mod_lN_entry-fastpath.patch
57976078-x86-avoid-SMAP-violation-in-compat_create_bounce_frame.patch
57ac6316-don-t-restrict-DMA-heap-to-node-0.patch
57b71fc5-x86-EFI-don-t-apply-relocations-to-l-2-3-_bootmap.patch
57b7447b-dont-permit-guest-to-populate-PoD-pages-for-itself.patch
57c4412b-x86-HVM-add-guarding-logic-for-VMX-specific-code.patch
57c57f73-libxc-correct-max_pfn-calculation-for-saving-domain.patch
57c805bf-x86-levelling-restrict-non-architectural-OSXSAVE-handling.patch
57c805c1-x86-levelling-pass-vcpu-to-ctxt_switch_levelling.patch
57c805c3-x86-levelling-provide-architectural-OSXSAVE-handling.patch
57c82be2-x86-32on64-adjust-call-gate-emulation.patch
57c93e52-fix-error-in-libxl_device_usbdev_list.patch
57c96df3-credit1-fix-a-race-when-picking-initial-pCPU.patch
57c96e2c-x86-correct-PT_NOTE-file-position.patch
57cfed43-VMX-correct-feature-checks-for-MPX-and-XSAVES.patch
57d1563d-x86-32on64-don-t-allow-recursive-page-tables-from-L3.patch
57d15679-x86-emulate-Correct-boundary-interactions-of-emulated-insns.patch
57d1569a-x86-shadow-Avoid-overflowing-sh_ctxt-seg_reg.patch
57d18642-hvm-fep-Allow-test-insns-crossing-1-0-boundary.patch
57d18642-x86-segment-Bounds-check-accesses-to-emulation-ctxt-seg_reg.patch
57d7ca5f-x86-domctl-fix-TOCTOU-race-in-XEN_DOMCTL_getvcpuextstate.patch
57d7ca64-x86-domctl-fix-migration-of-guests-not-using-xsave.patch
57da8883-credit1-fix-mask-to-be-used-for-tickling.patch
57da8883-credit2-properly-schedule-migration-of-running-vcpu.patch
57dfb1c5-x86-Intel-hide-CPUID-faulting-capability-from-guests.patch
57e93e1d-x86emul-correct-loading-of-ss.patch
57e93e4a-x86emul-don-t-allow-null-selector-for-LTR.patch
57e93e89-x86-AMD-apply-erratum-665-workaround.patch
57ee6cbc-credit1-return-time-remaining-to-limit-as-next-timeslice.patch
57f3a8ee-x86emul-honor-guest-CR0-TS-and-CR0-EM.patch
57fb6a91-x86-defer-not-present-segment-checks.patch
5800c51d-x86-hvm-Clobber-cs-L-when-LME-becomes-set.patch
5800caec-x86emul-fix-pushing-of-selector-registers.patch
5800cb06-x86-Viridian-don-t-depend-on-undefined-register-state.patch
580e29f9-x86-MISALIGNSSE-feature-depends-on-SSE.patch
57dfb2ff-x86-Intel-Broadwell-no-PKG_C8-10_RESIDENCY-MSRs.patch�- bsc#1004981 - Xen RPM doesn't contain debug hypervisor for EFI
systems
xen.spec�- bsc#1000106 - VUL-0: CVE-2016-7777: xen: CR0.TS and CR0.EM not
always honored for x86 HVM guests (XSA-190)
57f3a8ee-x86emul-honor-guest-CR0-TS-and-CR0-EM.patch
- bsc#996191 - [XEN][acpi]residency -n 88 -c will cause xen panic
on broadwell-ep
57dfb2ff-x86-Intel-Broadwell-no-PKG_C8-10_RESIDENCY-MSRs.patch
- Upstream patches from Jan
57d7ca5f-x86-domctl-fix-TOCTOU-race-in-XEN_DOMCTL_getvcpuextstate.patch
57d7ca64-x86-domctl-fix-migration-of-guests-not-using-xsave.patch
57da8883-credit1-fix-mask-to-be-used-for-tickling.patch
57da8883-credit2-properly-schedule-migration-of-running-vcpu.patch
57dfb1c5-x86-Intel-hide-CPUID-faulting-capability-from-guests.patch
57e93e1d-x86emul-correct-loading-of-ss.patch
57e93e4a-x86emul-don-t-allow-null-selector-for-LTR.patch
57e93e89-x86-AMD-apply-erratum-665-workaround.patch
57ee6cbc-credit1-return-time-remaining-to-limit-as-next-timeslice.patch
57fb6a91-x86-defer-not-present-segment-checks.patch
5800c51d-x86-hvm-Clobber-cs-L-when-LME-becomes-set.patch
5800caec-x86emul-fix-pushing-of-selector-registers.patch
5800cb06-x86-Viridian-don-t-depend-on-undefined-register-state.patch
580e29f9-x86-MISALIGNSSE-feature-depends-on-SSE.patch
5810a9cc-x86-emul-Correct-decoding-of-SReg3-operands.patch�- bsc#1007941 - Xen tools limit the number of vcpus to 256 when the
system has 384
xen-arch-kconfig-nr_cpus.patch�- bsc#1007157 - VUL-0: CVE-2016-8910: xen: net: rtl8139: infinite
loop while transmit in C+ mode
CVE-2016-8910-qemut-net-rtl8139-infinite-loop-while-transmit-in-Cplus-mode.patch�- bsc#1005004 - CVE-2016-8667: xen: dma: rc4030 divide by zero
error in set_next_tick
CVE-2016-8667-qemut-dma-rc4030-divide-by-zero-error-in-set_next_tick.patch
- bsc#1005005 - VUL-0: CVE-2016-8669: xen: char: divide by zero
error in serial_update_parameters
CVE-2016-8669-qemut-char-divide-by-zero-error-in-serial_update_parameters.patch�- bsc#1003030 - VUL-0: CVE-2016-7908: xen: net: Infinite loop in
mcf_fec_do_tx
CVE-2016-7908-qemut-net-Infinite-loop-in-mcf_fec_do_tx.patch
- bsc#1003032 - VUL-0: CVE-2016-7909: xen: net: pcnet: infinite
loop in pcnet_rdra_addr
CVE-2016-7909-qemut-net-pcnet-infinite-loop-in-pcnet_rdra_addr.patch�- bsc#995785 - VUL-0: CVE-2016-7092: xen: x86: Disallow L3
recursive pagetable for 32-bit PV guests (XSA-185)
57d1563d-x86-32on64-don-t-allow-recursive-page-tables-from-L3.patch
- bsc#995789 - VUL-0: CVE-2016-7093: xen: x86: Mishandling of
instruction pointer truncation during emulation (XSA-186)
57d15679-x86-emulate-Correct-boundary-interactions-of-emulated-insns.patch
57d18642-hvm-fep-Allow-test-insns-crossing-1-0-boundary.patch
- bsc#995792 - VUL-0: CVE-2016-7094: xen: x86 HVM: Overflow of
sh_ctxt->seg_reg[] (XSA-187)
57d1569a-x86-shadow-Avoid-overflowing-sh_ctxt-seg_reg.patch
57d18642-x86-segment-Bounds-check-accesses-to-emulation-ctxt-seg_reg.patch
- bsc#991934 - xen hypervisor crash in csched_acct
57c96df3-credit1-fix-a-race-when-picking-initial-pCPU.patch
- Upstream patches from Jan
57c4412b-x86-HVM-add-guarding-logic-for-VMX-specific-code.patch
57c57f73-libxc-correct-max_pfn-calculation-for-saving-domain.patch
57c805bf-x86-levelling-restrict-non-architectural-OSXSAVE-handling.patch
57c805c1-x86-levelling-pass-vcpu-to-ctxt_switch_levelling.patch
57c805c3-x86-levelling-provide-architectural-OSXSAVE-handling.patch
57c82be2-x86-32on64-adjust-call-gate-emulation.patch
57c96e2c-x86-correct-PT_NOTE-file-position.patch
57cfed43-VMX-correct-feature-checks-for-MPX-and-XSAVES.patch�- bsc#979002 - add 60-persistent-xvd.rules and helper script
also to initrd, add the relevant dracut helper�- bnc#953518 - unplug also SCSI disks in qemu-xen-traditional for
upstream unplug protocol�- bsc#989679 - [pvusb feature] USB device not found when
'virsh detach-device guest usb.xml'
57c93e52-fix-error-in-libxl_device_usbdev_list.patch�- bsc#992224 - [HPS Bug] During boot of Xen Hypervisor, Failed to
get contiguous memory for DMA from Xen
57ac6316-don-t-restrict-DMA-heap-to-node-0.patch
- bsc#978755 - xen uefi systems fail to boot
- bsc#983697 - SLES12 SP2 Xen UEFI mode cannot boot
57b71fc5-x86-EFI-don-t-apply-relocations-to-l-2-3-_bootmap.patch
- Upstream patch from Jan
57b7447b-dont-permit-guest-to-populate-PoD-pages-for-itself.patch�- spec: to stay compatible with the in-tree qemu-xen binary, use
/usr/bin/qemu-system-i386 instead of /usr/bin/qemu-system-x86_64
bsc#986164�- bsc#970135 - new virtualization project clock test randomly fails
on Xen
576001df-x86-time-use-local-stamp-in-TSC-calibration-fast-path.patch
5769106e-x86-generate-assembler-equates-for-synthesized.patch
57a1e603-x86-time-adjust-local-system-time-initialization.patch
57a1e64c-x86-time-introduce-and-use-rdtsc_ordered.patch
57a2f6ac-x86-time-calibrate-TSC-against-platform-timer.patch
- bsc#991934 - xen hypervisor crash in csched_acct
57973099-have-schedulers-revise-initial-placement.patch
579730e6-remove-buggy-initial-placement-algorithm.patch
- bsc#988675 - VUL-0: CVE-2016-6258: xen: x86: Privilege escalation
in PV guests (XSA-182)
57976073-x86-remove-unsafe-bits-from-mod_lN_entry-fastpath.patch
- bsc#988676 - VUL-0: CVE-2016-6259: xen: x86: Missing SMAP
whitelisting in 32-bit exception / event delivery (XSA-183)
57976078-x86-avoid-SMAP-violation-in-compat_create_bounce_frame.patch
- Upstream patches from Jan
57a30261-x86-support-newer-Intel-CPU-models.patch�- bsc#985503 - vif-route broken
vif-route.patch�- bsc#978413 - PV guest upgrade from sles11sp4 to sles12sp2 alpha3
failed on sles11sp4 xen host.
pygrub-handle-one-line-menu-entries.patch�- bsc#990843 - VUL-1: CVE-2016-6351: xen: qemu: scsi: esp: OOB
write access in esp_do_dma
CVE-2016-6351-qemut-scsi-esp-make-cmdbuf-big-enough-for-maximum-CDB-size.patch�- bsc#900418 - Dump cannot be performed on SLES12 XEN
57580bbd-kexec-allow-relaxed-placement-via-cmdline.patch
- Upstream patches from Jan
575e9ca0-nested-vmx-Validate-host-VMX-MSRs-before-accessing-them.patch
57640448-xen-sched-use-default-scheduler-upon-an-invalid-sched.patch�- fate#319989 - Update to Xen 4.7 FCS
xen-4.7.0-testing-src.tar.bz2
- Drop CVE-2014-3672-qemut-xsa180.patch�- bsc#954872 - script block-dmmd not working as expected - libxl:
error: libxl_dm.c (Additional fixes)
block-dmmd�- Convert with_stubdom into build_conditional to allow adjusting
via prjconf
- Convert with_debug into build_conditional to allow adjusting
via prjconf�- bsc#979002 - add 60-persistent-xvd.rules and helper script to
xen-tools-domU to simplify transition to pvops based kernels�- Convert with_oxenstored into build_conditional to allow
adjusting via prjconf (fate#320836)�- bsc#983984 - VUL-0: CVE-2016-5338: xen: qemu: scsi: esp: OOB r/w
access while processing ESP_FIFO
CVE-2016-5338-qemut-scsi-esp-OOB-rw-access-while-processing-ESP_FIFO.patch
- bsc#982960 - VUL-0: CVE-2016-5238: xen: qemu: scsi: esp: OOB
write when using non-DMA mode in get_cmd
CVE-2016-5238-qemut-scsi-esp-OOB-write-when-using-non-DMA-mode-in-get_cmd.patch�- fate#319989 - Update to Xen 4.7 RC5
xen-4.7.0-testing-src.tar.bz2�- fate#319989 - Update to Xen 4.7 RC4
xen-4.7.0-testing-src.tar.bz2
- Dropped
xen.pkgconfig-4.7.patch
xsa164.patch�- bsc#981264 - VUL-0: CVE-2014-3672: xen: Unrestricted qemu logging
(XSA-180)
CVE-2014-3672-qemut-xsa180.patch�- bsc#980724 - VUL-0: CVE-2016-4441: Qemu: scsi: esp: OOB write
while writing to 's->cmdbuf' in get_cmd
CVE-2016-4441-qemut-scsi-esp-OOB-write-while-writing-to-cmdbuf-in-get_cmd.patch
- bsc#980716 - VUL-0: CVE-2016-4439: xen: scsi: esp: OOB write
while writing to 's->cmdbuf' in esp_reg_write
CVE-2016-4439-qemut-scsi-esp-OOB-write-while-writing-to-cmdbuf-in-esp_reg_write.patch�- fate#319989 - Update to Xen 4.7 RC3
xen-4.7.0-testing-src.tar.bz2
- Dropped
libxl-remove-cdrom-cachemode.patch
x86-PoD-only-reclaim-if-needed.patch
gcc6-warnings-as-errors.patch�- bsc#954872 - script block-dmmd not working as expected - libxl:
error: libxl_dm.c (another modification)
block-dmmd�- fate#319989 - Update to Xen 4.7 RC2
xen-4.7.0-testing-src.tar.bz2�- bsc#961600 - L3: poor performance when Xen HVM domU configured
with max memory > current memory
x86-PoD-only-reclaim-if-needed.patch�- Mark SONAMEs and pkgconfig as xen 4.7
xen.pkgconfig-4.7.patch�- bsc#977329 - Xen: Cannot boot HVM guests with empty cdrom
libxl-remove-cdrom-cachemode.patch�- fate#319989 - Update to Xen 4.7 RC1
xen-4.7.0-testing-src.tar.bz2�- fate#316614: set migration constraints from cmdline
restore libxl.set-migration-constraints-from-cmdline.patch�- Remove obsolete patch for xen-kmp
magic_ioport_compat.patch�- fate#316613: update to v12
libxl.pvscsi.patch�- Update to the latest Xen 4.7 pre-release c2994f86
Drop libxl.migrate-legacy-stream-read.patch�- bnc#972756 - Can't migrate HVM guest from SLES12SP1 Xen host
to SLES12SP2 Alpha 1 host using xl migrate
libxl.migrate-legacy-stream-read.patch�- Add patches from proposed upstream series to load BIOS's from
the toolstack instead of embedding in hvmloader
http://lists.xenproject.org/archives/html/xen-devel/2016-03/msg01626.html
0001-libxc-Rework-extra-module-initialisation.patch,
0002-libxc-Prepare-a-start-info-structure-for-hvmloader.patch,
0003-configure-define-SEABIOS_PATH-and-OVMF_PATH.patch,
0004-firmware-makefile-install-BIOS-blob.patch,
0005-libxl-Load-guest-BIOS-from-file.patch,
0006-xen-Move-the-hvm_start_info-C-representation-from-li.patch,
0007-hvmloader-Grab-the-hvm_start_info-pointer.patch,
0008-hvmloader-Locate-the-BIOS-blob.patch,
0009-hvmloader-Check-modules-whereabouts-in-perform_tests.patch,
0010-hvmloader-Load-SeaBIOS-from-hvm_start_info-modules.patch,
0011-hvmloader-Load-OVMF-from-modules.patch,
0012-hvmloader-Specific-bios_load-function-required.patch,
0013-hvmloader-Always-build-in-SeaBIOS-and-OVMF-loader.patch,
0014-configure-do-not-depend-on-SEABIOS_PATH-or-OVMF_PATH.patch
- Enable support for UEFI on x86_64 using the ovmf-x86_64-ms.bin
firmware from qemu-ovmf-x86_64. The firmware is preloaded with
Microsoft keys to more closely resemble firmware on real hardware
FATE#320490�- fate#319989: Update to Xen 4.7 (pre-release)
xen-4.7.0-testing-src.tar.bz2
- Dropped:
xen-4.6.1-testing-src.tar.bz2
55f7f9d2-libxl-slightly-refine-pci-assignable-add-remove-handling.patch
5628fc67-libxl-No-emulated-disk-driver-for-xvdX-disk.patch
5644b756-x86-HVM-don-t-inject-DB-with-error-code.patch
5649bcbe-libxl-relax-readonly-check-introduced-by-XSA-142-fix.patch
hotplug-Linux-block-performance-fix.patch
set-mtu-from-bridge-for-tap-interface.patch
xendomains-libvirtd-conflict.patch
xsa154.patch
xsa155-xen-0001-xen-Add-RING_COPY_REQUEST.patch
xsa155-xen-0002-blktap2-Use-RING_COPY_REQUEST.patch
xsa155-xen-0003-libvchan-Read-prod-cons-only-once.patch
xsa170.patch�- Use system SeaBIOS instead of building/installing another one
FATE#320638
Dropped files:
seabios-dir-remote.tar.bz2
xen-c99-fix.patch
xen.build-compare.seabios.patch�- spec: drop BuildRequires that were only needed for qemu-xen�- bsc#969377 - xen does not build with GCC 6
ipxe-use-rpm-opt-flags.patch
gcc6-warnings-as-errors.patch�- bsc#969351 - VUL-0: CVE-2016-2841: xen: net: ne2000: infinite
loop in ne2000_receive
CVE-2016-2841-qemut-ne2000-infinite-loop-in-ne2000_receive.patch
- Drop xsa154-fix.patch�- Use system qemu instead of building/installing yet another qemu
FATE#320638
- Dropped files
qemu-xen-dir-remote.tar.bz2
CVE-2014-0222-qemuu-qcow1-validate-l2-table-size.patch
CVE-2015-1779-qemuu-incrementally-decode-websocket-frames.patch
CVE-2015-1779-qemuu-limit-size-of-HTTP-headers-from-websockets-clients.patch
CVE-2015-4037-qemuu-smb-config-dir-name.patch
CVE-2015-7512-qemuu-net-pcnet-buffer-overflow-in-non-loopback-mode.patch
CVE-2015-7549-qemuu-pci-null-pointer-dereference-issue.patch
CVE-2015-8345-qemuu-eepro100-infinite-loop-fix.patch
CVE-2015-8504-qemuu-vnc-avoid-floating-point-exception.patch
CVE-2015-8558-qemuu-usb-infinite-loop-in-ehci_advance_state-results-in-DoS.patch
CVE-2015-8568-qemuu-net-vmxnet3-avoid-memory-leakage-in-activate_device.patch
CVE-2015-8613-qemuu-scsi-initialise-info-object-with-appropriate-size.patch
CVE-2015-8743-qemuu-ne2000-OOB-memory-access-in-ioport-rw-functions.patch
CVE-2015-8744-qemuu-net-vmxnet3-incorrect-l2-header-validation-leads-to-crash.patch
CVE-2015-8745-qemuu-net-vmxnet3-read-IMR-registers-instead-of-assert.patch
CVE-2016-1568-qemuu-ide-ahci-reset-ncq-object-to-unused-on-error.patch
CVE-2016-1714-qemuu-fw_cfg-add-check-to-validate-current-entry-value.patch
CVE-2014-7815-qemut-vnc-sanitize-bits_per_pixel-from-the-client.patch
CVE-2016-1981-qemuu-e1000-eliminate-infinite-loops-on-out-of-bounds-transfer.patch
CVE-2016-2538-qemuu-usb-integer-overflow-in-remote-NDIS-message-handling.patch
CVE-2015-8619-qemuu-stack-based-OOB-write-in-hmp_sendkey-routine.patch
qemu-xen-enable-spice-support.patch
qemu-xen-upstream-qdisk-cache-unsafe.patch
tigervnc-long-press.patch
xsa162-qemuu.patch�- bsc#962321 - VUL-0: CVE-2016-1922: xen: i386: null pointer
dereference in vapic_write()
CVE-2016-1922-qemuu-i386-null-pointer-dereference-in-vapic_write.patch�- bsc#968004 - VUL-0: CVE-2016-2538: xen: usb: integer overflow in
remote NDIS control message handling
CVE-2016-2538-qemuu-usb-integer-overflow-in-remote-NDIS-message-handling.patch�- bsc#954872 - L3: script block-dmmd not working as expected -
libxl: error: libxl_dm.c
block-dmmd
- Update libxl to recognize dmmd and npiv prefix in disk spec
xen.libxl.dmmd.patch�- bsc#967101 - VUL-0: CVE-2016-2391: xen: usb: multiple eof_timers
in ohci module leads to null pointer dereference
CVE-2016-2391-qemuu-usb-null-pointer-dereference-in-ohci-module.patch
CVE-2016-2391-qemut-usb-null-pointer-dereference-in-ohci-module.patch
- bsc#967090 - VUL-0: CVE-2016-2392: xen: usb: null pointer
dereference in remote NDIS control message handling
CVE-2016-2392-qemuu-usb-null-pointer-dereference-in-NDIS-message-handling.patch�- Update to Xen Version 4.6.1
xen-4.6.1-testing-src.tar.bz2
- Dropped patches now contained in tarball or unnecessary
xen-4.6.0-testing-src.tar.bz2
5604f239-x86-PV-properly-populate-descriptor-tables.patch
561bbc8b-VT-d-don-t-suppress-invalidation-address-write-when-it-is-zero.patch
561d2046-VT-d-use-proper-error-codes-in-iommu_enable_x2apic_IR.patch
561d20a0-x86-hide-MWAITX-from-PV-domains.patch
561e3283-x86-NUMA-fix-SRAT-table-processor-entry-parsing-and-consumption.patch
5632118e-arm-Support-hypercall_create_continuation-for-multicall.patch
56321222-arm-rate-limit-logging-from-unimplemented-PHYSDEVOP-and-HVMOP.patch
56321249-arm-handle-races-between-relinquish_memory-and-free_domheap_pages.patch
5632127b-x86-guard-against-undue-super-page-PTE-creation.patch
5632129c-free-domain-s-vcpu-array.patch
563212c9-x86-PoD-Eager-sweep-for-zeroed-pages.patch
563212e4-xenoprof-free-domain-s-vcpu-array.patch
563212ff-x86-rate-limit-logging-in-do_xen-oprof-pmu-_op.patch
56323737-libxl-adjust-PoD-target-by-memory-fudge-too.patch
56377442-x86-PoD-Make-p2m_pod_empty_cache-restartable.patch
5641ceec-x86-HVM-always-intercept-AC-and-DB.patch
56549f24-x86-vPMU-document-as-unsupported.patch
5677f350-x86-make-debug-output-consistent-in-hvm_set_callback_via.patch
xsa155-qemut-qdisk-double-access.patch
xsa155-qemut-xenfb.patch
xsa155-qemuu-qdisk-double-access.patch
xsa155-qemuu-xenfb.patch
xsa159.patch
xsa160.patch
xsa162-qemut.patch
xsa165.patch
xsa166.patch
xsa167.patch
xsa168.patch�- bsc#965315 - VUL-0: CVE-2016-2270: xen: x86: inconsistent
cachability flags on guest mappings (XSA-154)
xsa154.patch
- bsc#965317 - VUL-0: CVE-2016-2271: xen: VMX: guest user mode may
crash guest with non-canonical RIP (XSA-170)
xsa170.patch�- bsc#965269 - VUL-1: CVE-2015-8619: xen: stack based OOB write in
hmp_sendkey routine
CVE-2015-8619-qemuu-stack-based-OOB-write-in-hmp_sendkey-routine.patch�- bsc#965156 - VUL-0: CVE-2015-6855: xen: ide: divide by zero issue
CVE-2015-6855-qemuu-ide-divide-by-zero-issue.patch
- bsc#965112 - VUL-0: CVE-2014-3640: xen: slirp: NULL pointer deref
in sosendto()
CVE-2014-3640-qemut-slirp-NULL-pointer-deref-in-sosendto.patch�- bsc#964947 - VUL-0: CVE-2015-5278: xen: Infinite loop in
ne2000_receive() function
CVE-2015-5278-qemut-Infinite-loop-in-ne2000_receive-function.patch
- bsc#956832 - VUL-0: CVE-2015-8345: xen: qemu: net: eepro100:
infinite loop in processing command block list
CVE-2015-8345-qemuu-eepro100-infinite-loop-fix.patch
CVE-2015-8345-qemut-eepro100-infinite-loop-fix.patch�- bsc#964644 - VUL-0: CVE-2013-4533: xen pxa2xx: buffer overrun on
incoming migration
CVE-2013-4533-qemut-pxa2xx-buffer-overrun-on-incoming-migration.patch
- bsc#964925 - VUL-0: CVE-2014-0222: xen: qcow1: validate L2 table
size to avoid integer overflows
CVE-2014-0222-blktap-qcow1-validate-l2-table-size.patch
- Dropped CVE-2014-0222-qemuu-qcow1-validate-l2-table-size.patch�- bsc#964415 - VUL-1: CVE-2016-2198: xen: usb: ehci null pointer
dereference in ehci_caps_write
CVE-2016-2198-qemuu-usb-ehci-null-pointer-dereference-in-ehci_caps_write.patch
- bsc#964452 - VUL-0: CVE-2013-4534: xen: openpic: buffer overrun
on incoming migration
CVE-2013-4534-qemut-openpic-buffer-overrun-on-incoming-migration.patch�- bsc#963783 - VUL-1: CVE-2016-1981: xen: net: e1000 infinite loop
in start_xmit and e1000_receive_iov routines
CVE-2016-1981-qemuu-e1000-eliminate-infinite-loops-on-out-of-bounds-transfer.patch
CVE-2016-1981-qemut-e1000-eliminate-infinite-loops-on-out-of-bounds-transfer.patch�- bsc#962758 - VUL-0: CVE-2013-4539: xen: tsc210x: buffer overrun
on invalid state load
CVE-2013-4539-qemut-tsc210x-fix-buffer-overrun-on-invalid-state-load.patch�- bsc#962632 - VUL-0: CVE-2015-1779: xen: vnc: insufficient
resource limiting in VNC websockets decoder
CVE-2015-1779-qemuu-limit-size-of-HTTP-headers-from-websockets-clients.patch
CVE-2015-1779-qemuu-incrementally-decode-websocket-frames.patch
- bsc#962642 - VUL-0: CVE-2013-4537: xen: ssi-sd: buffer overrun on
invalid state load
CVE-2013-4537-qemut-ssi-sd-fix-buffer-overrun-on-invalid-state-load.patch
- bsc#962627 - VUL-0: CVE-2014-7815: xen: vnc: insufficient
bits_per_pixel from the client sanitization
CVE-2014-7815-qemut-vnc-sanitize-bits_per_pixel-from-the-client.patch�- bsc#962335 - VUL-0: CVE-2013-4538: xen: ssd0323: fix buffer
overun on invalid state
CVE-2013-4538-qemut-ssd0323-fix-buffer-overun-on-invalid-state.patch
- bsc#962360 - VUL-0: CVE-2015-7512: xen: net: pcnet: buffer
overflow in non-loopback mode
CVE-2015-7512-qemuu-net-pcnet-buffer-overflow-in-non-loopback-mode.patch
CVE-2015-7512-qemut-net-pcnet-buffer-overflow-in-non-loopback-mode.patch�- bsc#961692 - VUL-0: CVE-2016-1714: xen: nvram: OOB r/w access in
processing firmware configurations
CVE-2016-1714-qemuu-fw_cfg-add-check-to-validate-current-entry-value.patch
CVE-2016-1714-qemut-fw_cfg-add-check-to-validate-current-entry-value.patch�- bsc#961358 - VUL-0: CVE-2015-8613: xen: qemu: scsi: stack based
buffer overflow in megasas_ctrl_get_info
CVE-2015-8613-qemuu-scsi-initialise-info-object-with-appropriate-size.patch
- bsc#961332 - VUL-0: CVE-2016-1568: xen: Qemu: ide: ahci
use-after-free vulnerability in aio port commands
CVE-2016-1568-qemuu-ide-ahci-reset-ncq-object-to-unused-on-error.patch�- bsc#959695 - missing docs for xen
xen.spec�- bsc#960862 - VUL-0: CVE-2016-1571: xen: VMX: intercept issue with
INVLPG on non-canonical address (XSA-168)
xsa168.patch
- bsc#960861 - VUL-0: CVE-2016-1570: xen: PV superpage
functionality missing sanity checks (XSA-167)
xsa167.patch
- bsc#960836 - VUL-0: CVE-2015-8744: xen: net: vmxnet3: incorrect
l2 header validation leads to a crash via assert(2) call
CVE-2015-8744-qemuu-net-vmxnet3-incorrect-l2-header-validation-leads-to-crash.patch�- bsc#960707 - VUL-0: CVE-2015-8745: xen: reading IMR registers
leads to a crash via assert(2) call
CVE-2015-8745-qemuu-net-vmxnet3-read-IMR-registers-instead-of-assert.patch
- bsc#960726 - VUL-0: CVE-2015-8743: xen: ne2000: OOB memory access
in ioport r/w functions
CVE-2015-8743-qemuu-ne2000-OOB-memory-access-in-ioport-rw-functions.patch�- bsc#960093 - VUL-0: CVE-2015-8615: xen: x86: unintentional
logging upon guest changing callback method (XSA-169)
5677f350-x86-make-debug-output-consistent-in-hvm_set_callback_via.patch�- Adjust xen-dom0-modules.service to run Before xenstored.service
instead of proc-xen.mount to workaround a bug in systemd "design"
(bnc#959845)�- bsc#959387 - VUL-0: CVE-2015-8568 CVE-2015-8567: xen: qemu: net:
vmxnet3: host memory leakage
CVE-2015-8568-qemuu-net-vmxnet3-avoid-memory-leakage-in-activate_device.patch�- bsc#957988 - VUL-0: CVE-2015-8550: xen: paravirtualized drivers
incautious about shared memory contents (XSA-155)
xsa155-xen-0001-xen-Add-RING_COPY_REQUEST.patch
xsa155-xen-0002-blktap2-Use-RING_COPY_REQUEST.patch
xsa155-xen-0003-libvchan-Read-prod-cons-only-once.patch
xsa155-qemuu-qdisk-double-access.patch
xsa155-qemut-qdisk-double-access.patch
xsa155-qemuu-xenfb.patch
xsa155-qemut-xenfb.patch
- bsc#959006 - VUL-0: CVE-2015-8558: xen: qemu: usb: infinite loop
in ehci_advance_state results in DoS
CVE-2015-8558-qemuu-usb-infinite-loop-in-ehci_advance_state-results-in-DoS.patch
- bsc#958918 - VUL-0: CVE-2015-7549: xen: qemu pci: null pointer
dereference issue
CVE-2015-7549-qemuu-pci-null-pointer-dereference-issue.patch
- bsc#958493 - VUL-0: CVE-2015-8504: xen: qemu: ui: vnc: avoid
floating point exception
CVE-2015-8504-qemuu-vnc-avoid-floating-point-exception.patch
CVE-2015-8504-qemut-vnc-avoid-floating-point-exception.patch
- bsc#958007 - VUL-0: CVE-2015-8554: xen: qemu-dm buffer overrun in
MSI-X handling (XSA-164)
xsa164.patch
- bsc#958009 - VUL-0: CVE-2015-8555: xen: information leak in
legacy x86 FPU/XMM initialization (XSA-165)
xsa165.patch
- bsc#958523 - VUL-0: xen: ioreq handling possibly susceptible to
multiple read issue (XSA-166)
xsa166.patch�- bsc#956832 - VUL-0: CVE-2015-8345: xen: qemu: net: eepro100:
infinite loop in processing command block list
CVE-2015-8345-qemuu-eepro100-infinite-loop-fix.patch
CVE-2015-8345-qemut-eepro100-infinite-loop-fix.patch
- Upstream patches from Jan
56377442-x86-PoD-Make-p2m_pod_empty_cache-restartable.patch
5641ceec-x86-HVM-always-intercept-AC-and-DB.patch (Replaces CVE-2015-5307-xsa156.patch)
5644b756-x86-HVM-don-t-inject-DB-with-error-code.patch
56544a57-VMX-fix-adjust-trap-injection.patch
56546ab2-sched-fix-insert_vcpu-locking.patch�- bsc#956592 - VUL-0: xen: virtual PMU is unsupported (XSA-163)
56549f24-x86-vPMU-document-as-unsupported.patch
- bsc#956408 - VUL-0: CVE-2015-8339, CVE-2015-8340: xen:
XENMEM_exchange error handling issues (XSA-159)
xsa159.patch
- bsc#956409 - VUL-0: CVE-2015-8341: xen: libxl leak of pv kernel
and initrd on error (XSA-160)
xsa160.patch
- bsc#956411 - VUL-0: CVE-2015-7504: xen: heap buffer overflow
vulnerability in pcnet emulator (XSA-162)
xsa162-qemuu.patch
xsa162-qemut.patch
- bsc#947165 - VUL-0: CVE-2015-7311: xen: libxl fails to honour
readonly flag on disks with qemu-xen (xsa-142)
5628fc67-libxl-No-emulated-disk-driver-for-xvdX-disk.patch
5649bcbe-libxl-relax-readonly-check-introduced-by-XSA-142-fix.patch�- fate#315712: XEN: Use the PVOPS kernel
Turn off building the KMPs now that we are using the pvops kernel
xen.spec�- Upstream patches from Jan
561bbc8b-VT-d-don-t-suppress-invalidation-address-write-when-it-is-zero.patch
561d20a0-x86-hide-MWAITX-from-PV-domains.patch
561e3283-x86-NUMA-fix-SRAT-table-processor-entry-parsing-and-consumption.patch
5632118e-arm-Support-hypercall_create_continuation-for-multicall.patch
56321222-arm-rate-limit-logging-from-unimplemented-PHYSDEVOP-and-HVMOP.patch
56321249-arm-handle-races-between-relinquish_memory-and-free_domheap_pages.patch
5632127b-x86-guard-against-undue-super-page-PTE-creation.patch
5632129c-free-domain-s-vcpu-array.patch (Replaces CVE-2015-7969-xsa149.patch)
563212c9-x86-PoD-Eager-sweep-for-zeroed-pages.patch
563212e4-xenoprof-free-domain-s-vcpu-array.patch
563212ff-x86-rate-limit-logging-in-do_xen-oprof-pmu-_op.patch
56323737-libxl-adjust-PoD-target-by-memory-fudge-too.patch
56377442-x86-PoD-Make-p2m_pod_empty_cache-restartable.patch
5641ceec-x86-HVM-always-intercept-AC-and-DB.patch (Replaces CVE-2015-5307-xsa156.patch)
5644b756-x86-HVM-don-t-inject-DB-with-error-code.patch
- Dropped 55b0a2db-x86-MSI-track-guest-masking.patch�- Use upstream variants of block-iscsi and block-nbd�- Remove xenalyze.hg, its part of xen-4.6�- Update to Xen Version 4.6.0
xen-4.6.0-testing-src.tar.bz2
mini-os.tar.bz2
blktap2-no-uninit.patch
stubdom-have-iovec.patch
- Renamed
xsa149.patch to CVE-2015-7969-xsa149.patch
- Dropped patches now contained in tarball or unnecessary
xen-4.5.2-testing-src.tar.bz2
54c2553c-grant-table-use-uint16_t-consistently-for-offset-and-length.patch
54ca33bc-grant-table-refactor-grant-copy-to-reduce-duplicate-code.patch
54ca340e-grant-table-defer-releasing-pages-acquired-in-a-grant-copy.patch
54f4985f-libxl-fix-libvirtd-double-free.patch
55103616-vm-assist-prepare-for-discontiguous-used-bit-numbers.patch
551ac326-xentop-add-support-for-qdisk.patch
552d0fd2-x86-hvm-don-t-include-asm-spinlock-h.patch
552d0fe8-x86-mtrr-include-asm-atomic.h.patch
552d293b-x86-vMSI-X-honor-all-mask-requests.patch
552d2966-x86-vMSI-X-add-valid-bits-for-read-acceleration.patch
5537a4d8-libxl-use-DEBUG-log-level-instead-of-INFO.patch
5548e903-domctl-don-t-truncate-XEN_DOMCTL_max_mem-requests.patch
5548e95d-x86-allow-to-suppress-M2P-user-mode-exposure.patch
554c7aee-x86-provide-arch_fetch_and_add.patch
554c7b00-arm-provide-arch_fetch_and_add.patch
554cc211-libxl-add-qxl.patch 55534b0a-x86-provide-add_sized.patch
55534b25-arm-provide-add_sized.patch
5555a4f8-use-ticket-locks-for-spin-locks.patch
5555a5b9-x86-arm-remove-asm-spinlock-h.patch
5555a8ec-introduce-non-contiguous-allocation.patch
556d973f-unmodified-drivers-tolerate-IRQF_DISABLED-being-undefined.patch
5576f143-x86-adjust-PV-I-O-emulation-functions-types.patch
55795a52-x86-vMSI-X-support-qword-MMIO-access.patch
557eb55f-gnttab-per-active-entry-locking.patch
557eb5b6-gnttab-introduce-maptrack-lock.patch
557eb620-gnttab-make-the-grant-table-lock-a-read-write-lock.patch
557ffab8-evtchn-factor-out-freeing-an-event-channel.patch
5582bf43-evtchn-simplify-port_is_valid.patch
5582bf81-evtchn-remove-the-locking-when-unmasking-an-event-channel.patch
5583d9c5-x86-MSI-X-cleanup.patch
5583da09-x86-MSI-track-host-and-guest-masking-separately.patch
5583da64-gnttab-use-per-VCPU-maptrack-free-lists.patch
5583da8c-gnttab-steal-maptrack-entries-from-other-VCPUs.patch
5587d711-evtchn-clear-xen_consumer-when-clearing-state.patch
5587d779-evtchn-defer-freeing-struct-evtchn-s-until-evtchn_destroy_final.patch
5587d7b7-evtchn-use-a-per-event-channel-lock-for-sending-events.patch
5587d7e2-evtchn-pad-struct-evtchn-to-64-bytes.patch
55b0a218-x86-PCI-CFG-write-intercept.patch
55b0a255-x86-MSI-X-maskall.patch 55b0a283-x86-MSI-X-teardown.patch
55b0a2ab-x86-MSI-X-enable.patch blktapctrl-close-fifos.patch
blktapctrl-default-to-ioemu.patch blktapctrl-disable-debug-printf.patch
blktap-no-uninit.patch blktap-pv-cdrom.patch build-tapdisk-ioemu.patch
ioemu-bdrv-open-CACHE_WB.patch ioemu-blktap-barriers.patch
ioemu-blktap-fv-init.patch ioemu-blktap-image-format.patch
ioemu-blktap-zero-size.patch libxl.set-migration-constraints-from-cmdline.patch
local_attach_support_for_phy.patch pci-attach-fix.patch
qemu-xen-upstream-megasas-buildtime.patch tapdisk-ioemu-logfile.patch
tapdisk-ioemu-shutdown-fix.patch udev-rules.patch xen.build-compare.ipxe.patch
xen.build-compare.mini-os.patch xen.build-compare.smbiosdate.patch
xen.build-compare.vgabios.patch xen.build-compare.xen_compile_h.patch
xl-coredump-file-location.patch�- bsc#954405 - VUL-0: CVE-2015-8104: Xen: guest to host DoS by
triggering an infinite loop in microcode via #DB exception
- bsc#954018 - VUL-0: CVE-2015-5307: xen: x86: CPU lockup during
fault delivery (XSA-156)
CVE-2015-5307-xsa156.patch�- Update to Xen 4.5.2
xen-4.5.2-testing-src.tar.bz2
- Drop the following
xen-4.5.1-testing-src.tar.bz2
552d0f49-x86-traps-identify-the-vcpu-in-context-when-dumping-regs.patch
5576f178-kexec-add-more-pages-to-v1-environment.patch
55780be1-x86-EFI-adjust-EFI_MEMORY_WP-handling-for-spec-version-2.5.patch
558bfaa0-x86-traps-avoid-using-current-too-early.patch
5592a116-nested-EPT-fix-the-handling-of-nested-EPT.patch
559b9dd6-x86-p2m-ept-don-t-unmap-in-use-EPT-pagetable.patch
559bc633-x86-cpupool-clear-proper-cpu_valid-bit-on-CPU-teardown.patch
559bc64e-credit1-properly-deal-with-CPUs-not-in-any-pool.patch
559bc87f-x86-hvmloader-avoid-data-corruption-with-xenstore-rw.patch
559bdde5-pull-in-latest-linux-earlycpio.patch
55a62eb0-xl-correct-handling-of-extra_config-in-main_cpupoolcreate.patch
55a66a1e-make-rangeset_report_ranges-report-all-ranges.patch
55a77e4f-dmar-device-scope-mem-leak-fix.patch
55c1d83d-x86-gdt-Drop-write-only-xalloc-d-array.patch
55c3232b-x86-mm-Make-hap-shadow-teardown-preemptible.patch
55dc78e9-x86-amd_ucode-skip-updates-for-final-levels.patch
55df2f76-IOMMU-skip-domains-without-page-tables-when-dumping.patch
55e43fd8-x86-NUMA-fix-setup_node.patch
55e43ff8-x86-NUMA-don-t-account-hotplug-regions.patch
55e593f1-x86-NUMA-make-init_node_heap-respect-Xen-heap-limit.patch
55f2e438-x86-hvm-fix-saved-pmtimer-and-hpet-values.patch
55f9345b-x86-MSI-fail-if-no-hardware-support.patch
5604f2e6-vt-d-fix-IM-bit-mask-and-unmask-of-FECTL_REG.patch
560a4af9-x86-EPT-tighten-conditions-of-IOMMU-mapping-updates.patch
560a7c36-x86-p2m-pt-delay-freeing-of-intermediate-page-tables.patch
560a7c53-x86-p2m-pt-ignore-pt-share-flag-for-shadow-mode-guests.patch
560bd926-credit1-fix-tickling-when-it-happens-from-a-remote-pCPU.patch
560e6d34-x86-p2m-pt-tighten-conditions-of-IOMMU-mapping-updates.patch
561bbc8b-VT-d-don-t-suppress-invalidation-address-write-when-0.patch
561d20a0-x86-hide-MWAITX-from-PV-domains.patch
561e3283-x86-NUMA-fix-SRAT-table-processor-entry-handling.patch
563212c9-x86-PoD-Eager-sweep-for-zeroed-pages.patch
CVE-2015-4106-xsa131-9.patch CVE-2015-3259-xsa137.patch
CVE-2015-7311-xsa142.patch CVE-2015-7835-xsa148.patch
xsa139-qemuu.patch xsa140-qemuu-1.patch xsa140-qemuu-2.patch
xsa140-qemuu-3.patch xsa140-qemuu-4.patch xsa140-qemuu-5.patch
xsa140-qemuu-6.patch xsa140-qemuu-7.patch xsa140-qemut-1.patch
xsa140-qemut-2.patch xsa140-qemut-3.patch xsa140-qemut-4.patch
xsa140-qemut-5.patch xsa140-qemut-6.patch xsa140-qemut-7.patch
xsa151.patch xsa152.patch xsa153-libxl.patch
CVE-2015-5154-qemuu-check-array-bounds-before-writing-to-io_buffer.patch
CVE-2015-5154-qemuu-fix-START-STOP-UNIT-command-completion.patch
CVE-2015-5154-qemuu-clear-DRQ-after-handling-all-expected-accesses.patch
CVE-2015-5154-qemut-check-array-bounds-before-writing-to-io_buffer.patch
CVE-2015-5154-qemut-clear-DRQ-after-handling-all-expected-accesses.patch
CVE-2015-6815-qemuu-e1000-fix-infinite-loop.patch
CVE-2015-5239-qemuu-limit-client_cut_text-msg-payload-size.patch
CVE-2015-5239-qemut-limit-client_cut_text-msg-payload-size.patch"�- bsc#950704 - CVE-2015-7970 VUL-1: xen: x86: Long latency
populate-on-demand operation is not preemptible (XSA-150)
563212c9-x86-PoD-Eager-sweep-for-zeroed-pages.patch�- Upstream patches from Jan
5604f239-x86-PV-properly-populate-descriptor-tables.patch
561bbc8b-VT-d-don-t-suppress-invalidation-address-write-when-0.patch
561d2046-VT-d-use-proper-error-codes-in-iommu_enable_x2apic_IR.patch
561d20a0-x86-hide-MWAITX-from-PV-domains.patch
561e3283-x86-NUMA-fix-SRAT-table-processor-entry-handling.patch�- bsc#951845 - VUL-0: CVE-2015-7972: xen: x86: populate-on-demand
balloon size inaccuracy can crash guests (XSA-153)
xsa153-libxl.patch�- bsc#950703 - VUL-1: CVE-2015-7969: xen: leak of main per-domain
vcpu pointer array (DoS) (XSA-149)
xsa149.patch
- bsc#950705 - VUL-1: CVE-2015-7969: xen: x86: leak of per-domain
profiling-related vcpu pointer array (DoS) (XSA-151)
xsa151.patch
- bsc#950706 - VUL-0: CVE-2015-7971: xen: x86: some pmu and
profiling hypercalls log without rate limiting (XSA-152)
xsa152.patch
- Dropped
55dc7937-x86-IO-APIC-don-t-create-pIRQ-mapping-from-masked-RTE.patch
5604f239-x86-PV-properly-populate-descriptor-tables.patch�- bsc#932267 - VUL-1: CVE-2015-4037: qemu,kvm,xen: insecure
temporary file use in /net/slirp.c
CVE-2015-4037-qemuu-smb-config-dir-name.patch
CVE-2015-4037-qemut-smb-config-dir-name.patch
- bsc#877642 - VUL-0: CVE-2014-0222: qemu: qcow1: validate L2 table
size to avoid integer overflows
CVE-2014-0222-qemuu-qcow1-validate-l2-table-size.patch
CVE-2014-0222-qemut-qcow1-validate-l2-table-size.patch�- bsc#950367 - VUL-0: CVE-2015-7835: xen: x86: Uncontrolled
creation of large page mappings by PV guests (XSA-148)
CVE-2015-7835-xsa148.patch�- bsc#949138 - Setting vcpu affinity under Xen causes libvirtd
abort
54f4985f-libxl-fix-libvirtd-double-free.patch�- bsc#949046 - Increase %suse_version in SP1 to 1316
xen.spec
- Update README.SUSE detailing dom0 ballooning recommendations�- bsc#945167 - Running command ’ xl pci-assignable-add 03:10.1’
secondly show errors
55f7f9d2-libxl-slightly-refine-pci-assignable-add-remove-handling.patch
- Upstream patches from Jan
55f2e438-x86-hvm-fix-saved-pmtimer-and-hpet-values.patch
55f9345b-x86-MSI-fail-if-no-hardware-support.patch
5604f239-x86-PV-properly-populate-descriptor-tables.patch
5604f2e6-vt-d-fix-IM-bit-mask-and-unmask-of-FECTL_REG.patch
560a4af9-x86-EPT-tighten-conditions-of-IOMMU-mapping-updates.patch
560a7c36-x86-p2m-pt-delay-freeing-of-intermediate-page-tables.patch
560a7c53-x86-p2m-pt-ignore-pt-share-flag-for-shadow-mode-guests.patch
560bd926-credit1-fix-tickling-when-it-happens-from-a-remote-pCPU.patch
560e6d34-x86-p2m-pt-tighten-conditions-of-IOMMU-mapping-updates.patch�- bsc#941074 - VmError: Device 51728 (vbd) could not be connected.
Hotplug scripts not working.
hotplug-Linux-block-performance-fix.patch�- bsc#947165 - VUL-0: CVE-2015-7311: xen: libxl fails to honour
readonly flag on disks with qemu-xen (xsa-142)
CVE-2015-7311-xsa142.patch�- bsc#945165 - Xl pci-attach show error with kernel of SLES 12 sp1
pci-attach-fix.patch�- bsc#945164 - Xl destroy show error with kernel of SLES 12 sp1
5537a4d8-libxl-use-DEBUG-log-level-instead-of-INFO.patch�- Upstream patches from Jan
55dc78e9-x86-amd_ucode-skip-updates-for-final-levels.patch
55dc7937-x86-IO-APIC-don-t-create-pIRQ-mapping-from-masked-RTE.patch
55df2f76-IOMMU-skip-domains-without-page-tables-when-dumping.patch
55e43fd8-x86-NUMA-fix-setup_node.patch
55e43ff8-x86-NUMA-don-t-account-hotplug-regions.patch
55e593f1-x86-NUMA-make-init_node_heap-respect-Xen-heap-limit.patch
54c2553c-grant-table-use-uint16_t-consistently-for-offset-and-length.patch
54ca33bc-grant-table-refactor-grant-copy-to-reduce-duplicate-code.patch
54ca340e-grant-table-defer-releasing-pages-acquired-in-a-grant-copy.patch�- bsc#944463 - VUL-0: CVE-2015-5239: qemu-kvm: Integer overflow in
vnc_client_read() and protocol_client_msg()
CVE-2015-5239-qemuu-limit-client_cut_text-msg-payload-size.patch
CVE-2015-5239-qemut-limit-client_cut_text-msg-payload-size.patch
- bsc#944697 - VUL-1: CVE-2015-6815: qemu: net: e1000: infinite
loop issue
CVE-2015-6815-qemuu-e1000-fix-infinite-loop.patch
CVE-2015-6815-qemut-e1000-fix-infinite-loop.patch�- bnc#935634 - VUL-0: CVE-2015-3259: xen: XSA-137: xl command line
config handling stack overflow
55a62eb0-xl-correct-handling-of-extra_config-in-main_cpupoolcreate.patch�- bsc#907514 - Bus fatal error & sles12 sudden reboot has been
observed
- bsc#910258 - SLES12 Xen host crashes with FATAL NMI after
shutdown of guest with VT-d NIC
- bsc#918984 - Bus fatal error & sles11-SP4 sudden reboot has been
observed
- bsc#923967 - Partner-L3: Bus fatal error & sles11-SP3 sudden
reboot has been observed
552d293b-x86-vMSI-X-honor-all-mask-requests.patch
552d2966-x86-vMSI-X-add-valid-bits-for-read-acceleration.patch
5576f143-x86-adjust-PV-I-O-emulation-functions-types.patch
55795a52-x86-vMSI-X-support-qword-MMIO-access.patch
5583d9c5-x86-MSI-X-cleanup.patch
5583da09-x86-MSI-track-host-and-guest-masking-separately.patch
55b0a218-x86-PCI-CFG-write-intercept.patch
55b0a255-x86-MSI-X-maskall.patch
55b0a283-x86-MSI-X-teardown.patch
55b0a2ab-x86-MSI-X-enable.patch
55b0a2db-x86-MSI-track-guest-masking.patch
- Upstream patches from Jan
552d0f49-x86-traps-identify-the-vcpu-in-context-when-dumping-regs.patch
559bc633-x86-cpupool-clear-proper-cpu_valid-bit-on-CPU-teardown.patch
559bc64e-credit1-properly-deal-with-CPUs-not-in-any-pool.patch
559bc87f-x86-hvmloader-avoid-data-corruption-with-xenstore-rw.patch
55a66a1e-make-rangeset_report_ranges-report-all-ranges.patch
55a77e4f-dmar-device-scope-mem-leak-fix.patch
55c1d83d-x86-gdt-Drop-write-only-xalloc-d-array.patch
55c3232b-x86-mm-Make-hap-shadow-teardown-preemptible.patch
- Dropped for upstream version
x86-MSI-mask.patch
x86-MSI-pv-unmask.patch
x86-MSI-X-enable.patch
x86-MSI-X-maskall.patch
x86-MSI-X-teardown.patch
x86-pci_cfg_okay.patch
x86-PCI-CFG-write-intercept.patch�- bsc#939712 - VUL-0: XSA-140: QEMU leak of uninitialized heap
memory in rtl8139 device model
xsa140-qemuu-1.patch
xsa140-qemuu-2.patch
xsa140-qemuu-3.patch
xsa140-qemuu-4.patch
xsa140-qemuu-5.patch
xsa140-qemuu-6.patch
xsa140-qemuu-7.patch
xsa140-qemut-1.patch
xsa140-qemut-2.patch
xsa140-qemut-3.patch
xsa140-qemut-4.patch
xsa140-qemut-5.patch
xsa140-qemut-6.patch
xsa140-qemut-7.patch
- bsc#939709 - VUL-0: XSA-139: xen: Use after free in QEMU/Xen
block unplug protocol
xsa139-qemuu.patch�- bsc#937371 - xen vm's running after reboot
xendomains-libvirtd-conflict.patch�- bsc#938344 - VUL-0: CVE-2015-5154: qemu,kvm,xen: host code
execution via IDE subsystem CD-ROM
CVE-2015-5154-qemuu-check-array-bounds-before-writing-to-io_buffer.patch
CVE-2015-5154-qemut-check-array-bounds-before-writing-to-io_buffer.patch
CVE-2015-5154-qemuu-fix-START-STOP-UNIT-command-completion.patch
CVE-2015-5154-qemut-fix-START-STOP-UNIT-command-completion.patch
CVE-2015-5154-qemuu-clear-DRQ-after-handling-all-expected-accesses.patch
CVE-2015-5154-qemut-clear-DRQ-after-handling-all-expected-accesses.patch�- Remove xendomains.service from systemd preset file because it
conflicts with libvirt-guests.service (bnc#937371)
Its up to the admin to run systemctl enable xendomains.service�- bnc#935634 - VUL-0: CVE-2015-3259: xen: XSA-137: xl command line
config handling stack overflow
CVE-2015-3259-xsa137.patch
- Upstream patches from Jan
558bfaa0-x86-traps-avoid-using-current-too-early.patch
5592a116-nested-EPT-fix-the-handling-of-nested-EPT.patch
559b9dd6-x86-p2m-ept-don-t-unmap-in-use-EPT-pagetable.patch
559bdde5-pull-in-latest-linux-earlycpio.patch
- Upstream patches from Jan pending review
552d0fd2-x86-hvm-don-t-include-asm-spinlock-h.patch
552d0fe8-x86-mtrr-include-asm-atomic.h.patch
552d293b-x86-vMSI-X-honor-all-mask-requests.patch
552d2966-x86-vMSI-X-add-valid-bits-for-read-acceleration.patch
554c7aee-x86-provide-arch_fetch_and_add.patch
554c7b00-arm-provide-arch_fetch_and_add.patch
55534b0a-x86-provide-add_sized.patch
55534b25-arm-provide-add_sized.patch
5555a4f8-use-ticket-locks-for-spin-locks.patch
5555a5b9-x86-arm-remove-asm-spinlock-h.patch
5555a8ec-introduce-non-contiguous-allocation.patch
55795a52-x86-vMSI-X-support-qword-MMIO-access.patch
557eb55f-gnttab-per-active-entry-locking.patch
557eb5b6-gnttab-introduce-maptrack-lock.patch
557eb620-gnttab-make-the-grant-table-lock-a-read-write-lock.patch
557ffab8-evtchn-factor-out-freeing-an-event-channel.patch
5582bf43-evtchn-simplify-port_is_valid.patch
5582bf81-evtchn-remove-the-locking-when-unmasking-an-event-channel.patch
5583d9c5-x86-MSI-X-cleanup.patch
5583da09-x86-MSI-track-host-and-guest-masking-separately.patch
5583da64-gnttab-use-per-VCPU-maptrack-free-lists.patch
5583da8c-gnttab-steal-maptrack-entries-from-other-VCPUs.patch
5587d711-evtchn-clear-xen_consumer-when-clearing-state.patch
5587d779-evtchn-defer-freeing-struct-evtchn-s-until-evtchn_destroy_final.patch
5587d7b7-evtchn-use-a-per-event-channel-lock-for-sending-events.patch
5587d7e2-evtchn-pad-struct-evtchn-to-64-bytes.patch
x86-MSI-pv-unmask.patch
x86-pci_cfg_okay.patch
x86-PCI-CFG-write-intercept.patch
x86-MSI-X-maskall.patch
x86-MSI-X-teardown.patch
x86-MSI-X-enable.patch
x86-MSI-mask.patch�- Adjust more places to use br0 instead of xenbr0�- bnc#936516 - xen fails to build with kernel update(4.1.0 from
stable)
556d973f-unmodified-drivers-tolerate-IRQF_DISABLED-being-undefined.patch�- Update to Xen Version 4.5.1 FCS (fate#315675)
xen-4.5.1-testing-src.tar.bz2
- Dropped patches now contained in tarball
556c2cf2-x86-don-t-crash-mapping-a-page-using-EFI-rt-page-tables.patch
556d9718-efi-fix-allocation-problems-if-ExitBootServices-fails.patch
556eabf7-x86-apic-Disable-the-LAPIC-later-in-smp_send_stop.patch
556eac15-x86-crash-don-t-use-set_fixmap-in-the-crash-path.patch
55780aaa-efi-avoid-calling-boot-services-after-ExitBootServices.patch
55780aff-x86-EFI-fix-EFI_MEMORY_WP-handling.patch
55780b43-EFI-early-add-mapbs-to-map-EfiBootServices-Code-Data.patch
55780b97-EFI-support-default-attributes-to-map-Runtime-service-areas.patch
5513b458-allow-reboot-overrides-when-running-under-EFI.patch
5513b4d1-dont-apply-reboot-quirks-if-reboot-set-by-user.patch
5576f178-kexec-add-more-pages-to-v1-environment.patch
5535f633-dont-leak-hypervisor-stack-to-toolstacks.patch
CVE-2015-3456-xsa133-qemuu.patch
CVE-2015-3456-xsa133-qemut.patch
qemu-MSI-X-enable-maskall.patch
qemu-MSI-X-latch-writes.patch
x86-MSI-X-guest-mask.patch�- Replace 5124efbe-add-qxl-support.patch with the variant that
finally made it upstream, 554cc211-libxl-add-qxl.patch�- bsc#931627 - VUL-0: CVE-2015-4105: XSA-130: xen: Guest triggerable
qemu MSI-X pass-through error messages
qemu-MSI-X-latch-writes.patch
- bsc#907514 - Bus fatal error & sles12 sudden reboot has been observed
- bsc#910258 - SLES12 Xen host crashes with FATAL NMI after shutdown
of guest with VT-d NIC
- bsc#918984 - Bus fatal error & sles11-SP4 sudden reboot has been
observed
- bsc#923967 - Partner-L3: Bus fatal error & sles11-SP3 sudden reboot
has been observed
x86-MSI-X-teardown.patch
x86-MSI-X-enable.patch
x86-MSI-X-guest-mask.patch
x86-MSI-X-maskall.patch
qemu-MSI-X-enable-maskall.patch
- Upstream patches from Jan
55780aaa-efi-avoid-calling-boot-services-after-ExitBootServices.patch
55780aff-x86-EFI-fix-EFI_MEMORY_WP-handling.patch
55780b43-EFI-early-add-mapbs-to-map-EfiBootServices-Code-Data.patch
55780b97-EFI-support-default-attributes-to-map-Runtime-service-areas.patch
55780be1-x86-EFI-adjust-EFI_MEMORY_WP-handling-for-spec-version-2.5.patch
55103616-vm-assist-prepare-for-discontiguous-used-bit-numbers.patch
5548e95d-x86-allow-to-suppress-M2P-user-mode-exposure.patch
- Dropped the following patches now contained in the tarball
xen-no-array-bounds.patch CVE-2015-4103-xsa128.patch
CVE-2015-4104-xsa129.patch CVE-2015-4105-xsa130.patch
CVE-2015-4106-xsa131-1.patch CVE-2015-4106-xsa131-2.patch
CVE-2015-4106-xsa131-3.patch CVE-2015-4106-xsa131-4.patch
CVE-2015-4106-xsa131-5.patch CVE-2015-4106-xsa131-6.patch
CVE-2015-4106-xsa131-7.patch CVE-2015-4106-xsa131-8.patch�- Update to Xen 4.5.1 RC2
- bsc#931628 - VUL-0: CVE-2015-4106: XSA-131: xen: Unmediated PCI
register access in qemu
CVE-2015-4106-xsa131-1.patch
CVE-2015-4106-xsa131-2.patch
CVE-2015-4106-xsa131-3.patch
CVE-2015-4106-xsa131-4.patch
CVE-2015-4106-xsa131-5.patch
CVE-2015-4106-xsa131-6.patch
CVE-2015-4106-xsa131-7.patch
CVE-2015-4106-xsa131-8.patch
CVE-2015-4106-xsa131-9.patch
- bsc#931627 - VUL-0: CVE-2015-4105: XSA-130: xen: Guest triggerable
qemu MSI-X pass-through error messages
CVE-2015-4105-xsa130.patch
- bsc#931626 - VUL-0: CVE-2015-4104: XSA-129: xen: PCI MSI mask
bits inadvertently exposed to guests
CVE-2015-4104-xsa129.patch
- bsc#931625 - VUL-0: CVE-2015-4103: XSA-128: xen: Potential
unintended writes to host MSI message data field via qemu
CVE-2015-4103-xsa128.patch
- Upstream patches from Jan
5548e903-domctl-don-t-truncate-XEN_DOMCTL_max_mem-requests.patch
556c2cf2-x86-don-t-crash-mapping-a-page-using-EFI-rt-page-tables.patch
556d9718-efi-fix-allocation-problems-if-ExitBootServices-fails.patch
556d973f-unmodified-drivers-tolerate-IRQF_DISABLED-being-undefined.patch
556eabf7-x86-apic-Disable-the-LAPIC-later-in-smp_send_stop.patch
556eac15-x86-crash-don-t-use-set_fixmap-in-the-crash-path.patch�- Add DefaultDependencies=no to xen-dom0-modules.service because
it has to run before proc-xen.mount�- Update to Xen 4.5.1 RC1�- Update blktap-no-uninit.patch to work with gcc-4.5�- bsc#927967 - VUL-0: CVE-2015-3340: xen: Information leak through
XEN_DOMCTL_gettscinfo (XSA-132)
5535f633-dont-leak-hypervisor-stack-to-toolstacks.patch�- bnc#929339 - VUL-0: CVE-2015-3456: qemu kvm xen: VENOM qemu
floppy driver host code execution
CVE-2015-3456-xsa133-qemuu.patch
CVE-2015-3456-xsa133-qemut.patch�- bsc#928783 - Reboot failure; Request backport of upstream Xen
patch to 4.5.0, or update pkgs to 4.5.1
5513b458-allow-reboot-overrides-when-running-under-EFI.patch
5513b4d1-dont-apply-reboot-quirks-if-reboot-set-by-user.patch�- bnc#927750 - Avoid errors reported by system-modules-load.service�- Add xen-no-array-bounds.patch and blktap-no-uninit.patch to selectively
turn errors back to warnings to fix build with GCC 5.
- Amend xen.stubdom.newlib.patch to pull in declaration of strcmp to
avoid implicit-fortify-decl rpmlint error.
- Fix quoting of __SMBIOS_DATE__ in xen.build-compare.smbiosdate.patch.�- xentop: Fix memory leak on read failure
551ac326-xentop-add-support-for-qdisk.patch�- Dropped xentop-add-support-for-qdisk.patch in favor of upstream
version
551ac326-xentop-add-support-for-qdisk.patch�- Enable spice support in qemu for x86_64
5124efbe-add-qxl-support.patch
qemu-xen-enable-spice-support.patch�- Add xen-c99-fix.patch to remove pointless inline specifier on
function declarations which break build with a C99 compiler which
GCC 5 is by default. (bsc#921994)
- Add ipxe-no-error-logical-not-parentheses.patch to supply
- Wno-logical-not-parentheses to the ipxe build to fix
breakage with GCC 5. (bsc#921994)�- bnc#921842 - Xentop doesn't display disk statistics for VMs using
qdisks
xentop-add-support-for-qdisk.patch�- Disable the PIE enablement done for Factory, as the XEN code
is not buildable with PIE and it does not make much sense
to build the hypervisor code with it.�- bnc#918169 - XEN fixes required to work with Kernel 3.19.0
xen.spec�- Package xen.changes because its referenced in xen.spec�- Update seabios to rel-1.7.5 which is the correct version for
Xen 4.5�- Update to Xen 4.5.0 FCS�- Include systemd presets in 13.2 and older�- bnc#897352 - Enable xencommons/xendomains only during fresh install
- disable restart on upgrade because the toolstack is not restartable�- adjust seabios, vgabios, stubdom and hvmloader build to reduce
build-compare noise
xen.build-compare.mini-os.patch
xen.build-compare.smbiosdate.patch
xen.build-compare.ipxe.patch
xen.build-compare.vgabios.patch
xen.build-compare.seabios.patch
xen.build-compare.man.patch�- Update to Xen 4.5.0 RC4�- Remove xend specific if-up scripts
Recording bridge slaves is a generic task which should be handled
by generic network code�- Use systemd features from upstream
requires updated systemd-presets-branding package�- Update to Xen 4.5.0 RC3�- Set GIT, WGET and FTP to /bin/false�- Use new configure features instead of make variables
xen.stubdom.newlib.patch�- adjust docs and xen build to reduce build-compare noise
xen.build-compare.doc_html.patch
xen.build-compare.xen_compile_h.patch�- Drop trailing B_CNT from XEN_EXTRAVERSION to reduce build-compare noise�- Update to Xen 4.5.0 RC2�- Update to Xen 4.5.0 RC1
xen-4.5.0-testing-src.tar.bz2
- Remove all patches now contained in the new tarball
xen-4.4.1-testing-src.tar.bz2
5315a3bb-x86-don-t-propagate-acpi_skip_timer_override-do-Dom0.patch
5315a43a-x86-ACPI-also-print-address-space-for-PM1x-fields.patch
53299d8f-xenconsole-reset-tty-on-failure.patch
53299d8f-xenconsole-tolerate-tty-errors.patch
5346a7a0-x86-AMD-support-further-feature-masking-MSRs.patch
53563ea4-x86-MSI-drop-workaround-for-insecure-Dom0-kernels.patch
537c9c77-libxc-check-return-values-on-mmap-and-madvise.patch
537cd0b0-hvmloader-also-cover-PCI-MMIO-ranges-above-4G-with-UC-MTRR-ranges.patch
537cd0cc-hvmloader-PA-range-0xfc000000-0xffffffff-should-be-UC.patch
539ebe62-x86-EFI-improve-boot-time-diagnostics.patch
53aac342-x86-HVM-consolidate-and-sanitize-CR4-guest-reserved-bit-determination.patch
53c9151b-Fix-xl-vncviewer-accesses-port-0-by-any-invalid-domid.patch
53d124e7-fix-list_domain_details-check-config-data-length-0.patch
53dba447-x86-ACPI-allow-CMOS-RTC-use-even-when-ACPI-says-there-is-none.patch
53df727b-x86-HVM-extend-LAPIC-shortcuts-around-P2M-lookups.patch
53e8be5f-x86-vHPET-use-rwlock-instead-of-simple-one.patch
53f737b1-VMX-fix-DebugCtl-MSR-clearing.patch
53f7386d-x86-irq-process-softirqs-in-irq-keyhandlers.patch
53fcebab-xen-pass-kernel-initrd-to-qemu.patch
53ff3659-x86-consolidate-boolean-inputs-in-hvm-and-p2m.patch
53ff36ae-x86-hvm-treat-non-insn-fetch-NPF-also-as-read-violations.patch
53ff36d5-x86-mem_event-deliver-gla-fault-EPT-violation-information.patch
53ff3716-x86-ats-Disable-Address-Translation-Services-by-default.patch
53ff3899-x86-NMI-allow-processing-unknown-NMIs-with-watchdog.patch
54005472-EPT-utilize-GLA-GPA-translation-known-for-certain-faults.patch
540effe6-evtchn-check-control-block-exists-when-using-FIFO-based-events.patch
540f2624-x86-idle-add-barriers-to-CLFLUSH-workaround.patch
541825dc-VMX-don-t-leave-x2APIC-MSR-intercepts-disabled.patch
541ad385-x86-suppress-event-check-IPI-to-MWAITing-CPUs.patch
541ad3ca-x86-HVM-batch-vCPU-wakeups.patch
541ad81a-VT-d-suppress-UR-signaling-for-further-desktop-chipsets.patch
54216833-x86-shadow-fix-race-when-sampling-dirty-vram-state.patch
54216882-x86-emulate-check-cpl-for-all-privileged-instructions.patch
542168ae-x86emul-only-emulate-swint-injection-for-real-mode.patch
54228a37-x86-EFI-fix-freeing-of-uninitialized-pointer.patch
5423e61c-x86emul-fix-SYSCALL-SYSENTER-SYSEXIT-emulation.patch
5424057f-x86-HVM-fix-miscellaneous-aspects-of-x2APIC-emulation.patch
542405b4-x86-HVM-fix-ID-handling-of-x2APIC-emulation.patch
542bf997-x86-HVM-properly-bound-x2APIC-MSR-range.patch
54325cc0-x86-MSI-fix-MSI-X-case-of-freeing-IRQ.patch
54325d2f-x86-restore-reserving-of-IO-APIC-pages-in-XENMEM_machine_memory_map-output.patch
54325d95-don-t-allow-Dom0-access-to-IOMMUs-MMIO-pages.patch
54325ecc-AMD-guest_iommu-properly-disable-guest-iommu-support.patch
54325f3c-x86-paging-make-log-dirty-operations-preemptible.patch
54379e6d-x86-vlapic-don-t-silently-accept-bad-vectors.patch
CVE-2013-4540-qemu.patch qemu-support-xen-hvm-direct-kernel-boot.patch
qemu-xen-upstream-blkif-discard.patch change-vnc-passwd.patch
libxc-pass-errno-to-callers-of-xc_domain_save.patch
libxl.honor-more-top-level-vfb-options.patch
libxl.add-option-for-discard-support-to-xl-disk-conf.patch
libxl.introduce-an-option-to-disable-the-non-O_DIRECT-workaround.patch
x86-dom-print.patch x86-extra-trap-info.patch tmp_build.patch
xl-check-for-libvirt-managed-domain.patch disable-wget-check.patch
- Xend/xm is no longer supported and is not part of the upstream code. Remove
all xend/xm specific patches, configs, and scripts
xen-xmexample.patch bridge-opensuse.patch xmexample.disks xmclone.sh
init.xend xend-relocation.sh xend.service xend-relocation-server.fw
domUloader.py xmexample.domUloader xmexample.disks
bridge-vlan.patch bridge-bonding.patch bridge-record-creation.patch
network-nat-open-SuSEfirewall2-FORWARD.patch
xend-set-migration-constraints-from-cmdline.patch
xen.migrate.tools-xend_move_assert_to_exception_block.patch
xend-pvscsi-recognize-also-SCSI-CDROM-devices.patch
xend-config.patch xend-max-free-mem.patch xend-hvm-default-pae.patch
xend-vif-route-ifup.patch xend-xenapi-console-protocol.patch xend-core-dump-loc.patch
xend-xen-api-auth.patch xend-checkpoint-rename.patch xend-xm-save-check-file.patch
xend-xm-create-xflag.patch xend-domu-usb-controller.patch xend-devid-or-name.patch
xend-migration-domname-fix.patch xend-del_usb_xend_entry.patch xend-xen-domUloader.patch
xend-multi-xvdp.patch xend-check_device_status.patch xend-change_home_server.patch
xend-minimum-restart-time.patch xend-disable-internal-logrotate.patch xend-config-enable-dump-comment.patch
xend-tools-watchdog-support.patch xend-console-port-restore.patch xend-vcpu-affinity-fix.patch
xend-migration-bridge-check.patch xend-managed-pci-device.patch xend-hvm-firmware-passthrough.patch
xend-cpuinfo-model-name.patch xend-xm-reboot-fix.patch xend-domain-lock.patch
xend-domain-lock-sfex.patch xend-32on64-extra-mem.patch xend-hv_extid_compatibility.patch
xend-xenpaging.autostart.patch xend-remove-xm-deprecation-warning.patch libxen_permissive.patch
tmp-initscript-modprobe.patch init.xendomains xendomains.service
xen-watchdog.service xen-updown.sh�- bnc#901317 - L3: increase limit domUloader to 32MB
domUloader.py�- bnc#898772 - SLES 12 RC3 - XEN Host crashes when assigning non-VF
device (SR-IOV) to guest
54325cc0-x86-MSI-fix-MSI-X-case-of-freeing-IRQ.patch
- bnc#882089 - Windows 2012 R2 fails to boot up with greater than
60 vcpus
54325ecc-AMD-guest_iommu-properly-disable-guest-iommu-support.patch
- bnc#826717 - VUL-0: CVE-2013-3495: XSA-59: xen: Intel VT-d
Interrupt Remapping engines can be evaded by native NMI interrupts
541ad81a-VT-d-suppress-UR-signaling-for-further-desktop-chipsets.patch
- Upstream patches from Jan
540effe6-evtchn-check-control-block-exists-when-using-FIFO-based-events.patch (Replaces xsa107.patch)
54216833-x86-shadow-fix-race-when-sampling-dirty-vram-state.patch (Replaces xsa104.patch)
54216882-x86-emulate-check-cpl-for-all-privileged-instructions.patch (Replaces xsa105.patch)
542168ae-x86emul-only-emulate-swint-injection-for-real-mode.patch (Replaces xsa106.patch)
54228a37-x86-EFI-fix-freeing-of-uninitialized-pointer.patch
5423e61c-x86emul-fix-SYSCALL-SYSENTER-SYSEXIT-emulation.patch
5424057f-x86-HVM-fix-miscellaneous-aspects-of-x2APIC-emulation.patch
542405b4-x86-HVM-fix-ID-handling-of-x2APIC-emulation.patch
542bf997-x86-HVM-properly-bound-x2APIC-MSR-range.patch (Replaces xsa108.patch)
54325d2f-x86-restore-reserving-of-IO-APIC-pages-in-XENMEM_machine_memory_map-output.patch
54325d95-don-t-allow-Dom0-access-to-IOMMUs-MMIO-pages.patch
54325f3c-x86-paging-make-log-dirty-operations-preemptible.patch (Replaces xsa97.patch)
54379e6d-x86-vlapic-don-t-silently-accept-bad-vectors.patch�/bin/sh�ibs-arm-4 1631542836��������������������������������������������������������������������������������������������������� ���
�����������
�������������������������������������4.14.2_06-3.12.1�4.14.2_06-3.12.1��������������������������������������������������������������xen�xen-4�xen-4.14�xen-4.14.2_06-3.12�xen-4.14.2_06-3.12.config�xen-syms-4.14.2_06-3.12�xen-syms-4.14.2_06-3.12.map�efi�xen.efi�efi�aarch64�xen-4.14.2_06-3.12.efi�xen-4.14.efi�xen-4.efi�xen.efi�/boot/�/usr/lib64/�/usr/lib64/efi/�/usr/share/�/usr/share/efi/�/usr/share/efi/aarch64/�-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -g�obs://build.suse.de/SUSE:Maintenance:21116/SUSE_SLE-15-SP3_Update/26eba3c7069cb6d77887531acb1f9c62-xen.SUSE_SLE-15-SP3_Update�cpio�xz�5�aarch64-suse-linux�����������������������������������������������������������������ASCII text�ELF 64-bit LSB executable, ARM aarch64, version 1 (SYSV), statically linked, BuildID[sha1]=56b6a945f3bae428d447c119af79065b20ae9311, not stripped�directory�8
±Dv=2٬ZW����utf-8�16ddc5ab784d4378141a4017829fedd693de5744c6cf8f6bb42de8cf195db9b9���������?����0����7zXZ��
���!�����t/��]��
�cr�$x�#�E{l]vȅhJC�,�F\��w__0.!#;ߗ=w��߁E�9ؕv�儕�Z(1ua>Nl2 [�u֓ݩc*�{9_>�Ts��@$
6�$ףsI`5-Q81s�gCOFs�,Xc0
V�3
y=$7RY A+uS]�W�l�R9HHS�~\�0i n�n�,.Xl19{W
aP��w'��ǼJ+~\�[+RA{T4_B-ZMsx��=Gyl#ս_2�gA�Lp/xrY`H!`O�*���}<�ɖuZS|GII9I�܅aB%#r�f�ҝMˁ>'N+~'"���w`��' ]`Z�g(`m*s`8}F�զq�koj&CtS̪U$*��1RsB)]6Qp>n|KA�d��l (u+㸻c8߯Nf� K�VL_ЪO���ڑz�B�Q1ˣn\�%�抇2���U/ddS���CC5\�ۦeu$`=hh22�cbj�7c�_JX�Fۊ�z`eEZ &3}}2j�Qiy<-K?.Lmr%�E$DR4W+
HU衣G�3Rg��{Fpu2MOC� *c9 %wcc!J8"`,�q.8�fKQd�e� r5o�&˲R-9Fke@1Y{.p}�g?�?Ψ7�q9��|7�$&@���MءW@sq rznЀ[Q2L�,H`\2Ei]� �U�R],�x='8 ϿּAuV�~H\�x\A���O-jv@_(�Esw|ETm�n��Rv��x۴.���啰Ɛ[y=B~#��8=zHyw��sĂ=�Ӏ.�n3 c,@,zjm9Pޗ\s�/w17O�� 1!ނM
R�,z
Vn \yt�h�;UM@gMH(�$^�w.�EG:�_���2�^2b C�E��� jڴԣuKa�Zaن�a�ڮq
&�l¾�Y!XuЀ걃iȃDŽs??UwU,+�j)+oʦ��U#Hܴ\$>�N:Ng�k�Vj�.0έ���\^OUڕ܀�g��g$&i,]r^�F*Ȍ "=B1�g@�'EP�ҸM@n�_ɉk_K/�1oMP�cr4�`S�`�w2_T�̿cv
I�dR�/+{�
jZ}0t9RCMhe癬nQ;]ҝTam'4QzC85O+Ͷ�[z�-)�g6l����j۷E�OAl*�yLF](aB'}P�ho#⨨,��МH�yر`�J;ްYMG{�{H!M$G(/f�{5,-t��L8�6��~E�t
Oeǹzj,VBm�rJ ,�;/UZ�ϕ5NS)�Y�:5�
��V[LXqRr6JmuA�yI7?~utYê0iK$uI X�D}@u,��H0679Nl%z�ZT(2WW+Ew��}���ohBy4U#t�7Ȼ9Z ��b␚n,]Rwqu#�g[�h�&zi�l^IR�b�Ā}(a�5PcL�`�讹'Q$(΄7g�ְmT8{iD�.~iJ,`Sd,�ғ-q}*VEL'f!cfFː
/�AJ'l]ǰ.��a�0Lбn}MwEkgTXǷI}=pf�"(b"osRW0]a�P@^@hX+ÏPGrʢ
yr3mWY":i
:�.�BAC1 L*!&*{гK;QiZv����y@kg�!��DYQ�"U')۶�q-!!�?h,Bھ�C.�w+骭H2��rǘ::L5V@[E
0N�»U�Nv�R� �{d&@r�쿉���q��.��{R.+L̗|�mNM?/�:r3F1i�.� +q�>ЯR
(Z�S�]E:=89R<|oC @(7�@kxHAq9t| 긎oWm+�T�qWɧ&�vZn�~�9PҺlXAƴW;R{c5Ev= =B�`�礗�J�a��cF)��1ƈx{{UZgd*}VE>&[G�
UV7��Ts��]_,�}UN.`lD���RZӺ931k�F����0x_.2�~��P/V�
P{čR꯷%s.j휓c{+|P8=�6u�wXrI.d:(~GF#�q<]�n'+�y�O)��ٍ҃9�ۘy�ys/0tveN��T�R�hn[d��h�vp!�{�I@#|1>�ϲT(�ɣq@�)Uh�ö�cQ vw₲�
ʈM�pm_;3&U��m'Fy@�b�*co�;6�9�֧hj�4MVn�5�埄[��EQxN,&~#a\NM(w3�:S5U駎o-Ka�ΤdpՔ
&<]�s�D:qg�n/."&>9y�_저�K@D@:\E˺x3ELG⺎J��M Z�ԙ,8}1L5&:`6��=ESUB+<�vĥ'(UYR�,/f@,�xK%�*
;U_��hzjxU뼝|���{u~#ttQyXov)��r&u�Q���!&Hk7"`U^�yo\@$@̭���4ik<���xL;o =�G;��''!iU/'r~'(,]��{�a`p[a$ۗe1�D=m2�KY�|Uz;b�ƹӣ�)�J�b��cN'?|&�})PziGغBzLM̊�vyXZW��N3qCC0�4<�2;ѐ7me̺E�zغ66g��&�eʕ �~US;}E}_1teMڔ�+�~���:�fqL�m̊-dn/Oz�X:AzSt5Zp^pGA{os텰6 Hy�}ER5��k(]]q�g�Yyc_f|SpØ�|vYeגB)��?�
{�s�b�s/�R#ǠA�]k],��-�PjqPTcZM
5��P�ε�'P�J��TdG�-�cJd#�nR\EϽ�!
e,}\9i
a��6u ,Z7��A�� ��Z*qkyt$$bBYW~$Vֹ
'gu0FiyR4øA?�YMэ,Ly{k+gL�_PP9� S:1!}<7@\?T�,�jƷq:�㘛!RS�Ź̤4s\�-x*%&4
� @d��D�-�#v@u�pҔZB6xWK3_A@#ldq[$&{|K@x>&W�.a���h�%�N�^D#Ad��<�zq:�':�撴H�p5_ 4L0�x3a:�_@�Nqp}1ߟyi+�̅#$�c6�$/L�r;�pv�$%jJ/r"!]�+$K'=#��NoeyL
�0��I d/|w��3Qq_�t$<7՞mvddW�
�:?!qEmoNG�c�A��OΤe^ט:/�M9H8�J�S%|h}wh6E݂8 FrpL~C�xyA*43"nz=�#^�0HS�H]?%�ӦS+:b=�?X�e|۶"! ������A: �)~�(��hU]Ф�Naiޞ�Wz^x[6sdt� �*#24"m�W0}LQe�1�~�VZ���AL9Z@5mgK�h7"?6kn0&J
w�qL�m1.=
*�l�j;eo�Ty�I=ʃ�O|
/dؓ�e�7'~آC[nJ
�|N�Bg!]��JJG@S*>V
�~HƉ&O�ro�l)M���:Ԥ*a2#QuFm۲��ذ�s�5�G9:K_tCq�^*�v5՚&5�G|.T�r7
�R/w"hߩDƦxV8>\m2��Cq�ӧti(kƊǍ[֣�lښh)` p~�BX#Y�ƀ�\`ww�Rxvٕ�X4نG}鏛Zcݚ�}v�Iu53Zjp]BF�lO�,�:4l_+'�Ͼ}ɪE I�xKӦ_l�[x�g�v"�8�M{BQT�pn,n�j ]tUohц0ѥJ(��r�Tn��4�a�SP�I�˓�#YL�~#*{tP~LG�'@�Ca}Z'!9�Ș@pq5�Hzf�mRo "P[�" []�;v'uYoM@8g6�}5w\V:,�Mۓ�T,&
H�,=};J�oD
�0O`ޤh�/�a�mwh|V98h-CRq9�j� �kHƒCˠ1��Oo;rUl%#-�ڰn��Dr�QN;k?<5'+PV1���)^b)ex�Ej&(�;(N��Hm+21�
eB�_.@$u�JGK,m�
.e�?[C12~#�q��f|aڬ&H��wlXo�uȠ25�#і(2鈺㯔B ٨Ўz+g
3Zmwןm���,.�N��Զ07N1ul��(�^o
vGA9b��+4�Mkɲ�
�Mhw:H660t^D�6!�I7�G��Q`ů¯��/DG$j&s Ye
o/@/y�Љ3Ԃ@"oo3 !>ʁ���&:>א>SFPg�mDΊv:0k�>Bar�uܽG�-�|��C*Rn���?�D`DD5J^>��1
i�L4r$nYآ7�1� -_9{IIKiʮ�&ʴ<1<29�Xݡ}&/i�g
zo,a4G?bb|W8��Cn8BwYTi+��E4ާ�)EE#XB�K����F3J�4<-ЌjY�'6O�\%R
u�?T?b��b��Q`!_$;URy3vX@'<;@"Ae&ZN�o7ܨ呜GcIWg
E~gTY�)2ώR[0@pp^@5JEB�m.v>��l\w|떑:P�gޭ%�càm8�-R`AC�9)�W�(G�p$�XY�kp4t@m�UD2^R�bH"�TQ�h>(Rwzrm>"͔mxLg3{2#(� 71 E*��>$<\SA���o�Ԗ�卻���vTOI{E=w��<_F-L,t"�=ȴTV�9�A ɸ+/MZ�:z)EX�)�xi��[v��3o]k+>�
DFP�ЮM5x{ p\|STEn�$� @Q�:D/v?`�{34��}>ʺhFiߎQ]Bߢ (R�g,?v DYz_WP��Լ�2�'F�Ȧ4($G'9ODx�9qX]�"c<��sZ'Ma~|.r35c:uP]tcX�~D�xN�i脞E=D}v$x+O ��2�&ir�&j,OR�0o:�V�n�I��n`4I7:3O_ v�hJ�\i]&hXQj]�Yl_^ety8�mkq;[߷��Gj[�.o�iF��1#�S��f�ok8VZ.7I�ߊ0�48.�Jé�Ǹ1m�a ��=�O1�+B4T0�7x�lO6��
L QI�MG�$�c�>\�@�*�3l�_`�V&g<
rw~36�.U &�_ ST�Q�mV{8/r)Vb
N�֖P-�($��A*C98�4||uُY+��o�:~єb��
q��jxM0T,�sŃqRnJyB
%���̜�OAMo6�ߙ�C1I���xq��q7hLJ�`�@L{$aC H�~t��+�%Zh"c"�!b9�W(-Bor��mbQ<6ޥ*��>�o\m%`ڽ�-�dR+dX?: B}f�*벥.-`�m|М�W9byn(~����Bkvg��;XJfA�J_|[�@�h[�ŷi(,Ap�a6oc_�}2$1DMo]�T-[1%Р ȕ]��?vCd
5'�N7gK�i|G2ç#u9!��o��
l4�W�&!GfݫW8P�jrLk=+X~s[Un y�WquO1k;�6�7�֢�W3)moI``m�ׁ�!W4A^"��2\3
J"zW�xX}>1jix+52�Dʲ
�5|�z^Rٷ��2bQfv=E'svg&��Fy�ۇg
7 ^ۭ6E@/}QG�iԯ�`bq}�s!�*Zz"b�m1Cyo!��(�̪pu�Kdˢf7v>j��`n^$qu~o=a�M+Vx$�W�2�L�;�q_yI#lX�#~�ErERy�3k-�+),8g��"); U�GS�?1Bcxs1KϦT.}Y)t+PE tk^Xk|!v�c�۟"NL�G\<�_7�mB}о%;�;;b�8N�OX
&^(.<[Qf��9K'{ݘk�BԌ��9�_p'~�glJ#ؕ\��$*pTJx_=�e$Y�/-P'g(g
F.�{nk�#TG�d�RZC\�/sy]+A=���t ��
Df9 �?'^.tTӳ�
�z�g��1w�1N�:�']
9QLٿV��-Z8->ؕ(D�9ۺ��:,X��n., ʓƹ�͉"z
vi%_ �_')з�y�tµcϙlj=8R%Bˮ� K�,�N[~#9 (7BaK[i3/-}r9xs~9}��mVVbEσ2�u��S�
_Pغ8|�Z�/Q
#f4уyum2x�5��0ht�uCE@iD,�8�_\fD5f�`�[{�z@#tO �=AV�#��k=K�>Ź%P&V>jƚuuЂ0]�%/+WE%�:�8Cs��q&`}w��1m�VKkh-�T�d躎n�'?P@y8V_�%+*���Vaa^#Aʙ�d3ZwzwѮ$Fxm۰t%~
7���~LH��Obr�@lTYq�{BD$?jtǝY;WDuͼ/4Zj&oJ�kROD�xz)Ϡ 9%-�$a#)r�&M~�7y�+cs@�g}�RgY
W_E ��5<,/C-'6HeOTĥQ(E��,�91(92gX³>&�69�b��/63�qd{)H(FK_4�(;�
L6�d%NJq�oN9`�j>za&��o�e
]])넋�X4g[��[4}�jƿ{�QDX��jyp�~*�*ED~l�/W[�qg'&3�XlF*�Ya,4V�RLJߵLCRw ��ZFO0�0+>!>T�] 3N�,+f �̠ۼ�cF}&��}c}�[hQ QܣNhbgdy{
Qt蜛9�ؙaxABj0ymIf�0.!%�(�)-'l�,�hpCQ$� Tk2X.bitiz,�*[b �R S�焗!)o!�CnG=ôul.��?
gS?"��OKN��H?SE(�TF_,n7f:v~Z>�mȋ{y�S^W q\nyo�j,lk1�]Cml
G�QpjC6C7:!`72>Џ�%#돇�fx`�e뵩�hh�tYK�yuZ#.bXZ
�ŧ�7}0?j͓G~�sL��G0q&Q*.L z&56�/VV( +X�4bU3� ^IX�Y^g"ީ�gpD
��ItEaRvR��Jd�
�zhZ�3�65Ih�#mQAvu%snCmeHܸ*e��nV'âd{͝ȑ?d�P5KSR+s7�k�^��(jd#?6N
k:`&�Ӱ͢EN7J /����hNvמF[Az�ipg#��qa-Uz�W�*9�οA�ܾ+4�Ctgs/s81�1^��y'�SXOh�gR|/)�n�y1ɞmj�9ݼ `}�U�
Ӂ}@9�qkqb�hq#ҹ;b�[ں*��
xg'<ϘΑm8I3Q#-w�織
T�_>(
�Ƕ+��v���,COw~?b�h�ԎH%�먕ܜ�w��r�-\̋s`GS�M@�Q�lڨ�N"!.n?�(�*�ꢴe>z+W`*-4M�>F[[[����߹�cJʉQ�O2h�"D{��
�
\qi�le2Pk�
3%T8qK1S
2j,G��ZZEN{kx�Ŋ}B+g�ʚK#�5�4b9튇4�re1GQ_PԞ{3L(#{�F�=Uuۖ^k�
��^S��aZZr!�קGy93M�'ZfZ. DD�BƧ:{�um�?w>Cj��_!Ǹ6L�,\q��w�` !A�Q�%b4Ď���ξ�8{V7�n`�H$�?eUTh_b5Klbh�,ȧP9��j2]#a"Lsg^FrӞE��b~ֺjIw|ۗa~[=AoXĔtP�h]%<4|�{, בMM
N�/0�R S:�AD�zV
�Ѩ�g=am:�ymp�".,znWC: 8O5XJ�@�?&:�"4sSW{�D�'��d 0PngEتNyFbf��}�Aunݺ|X'k�Ĺ*%)|'���q�ysн@2Kp�61F�8et_S5 /y��A[(4ސ�P{�G
qf�$�npD.Bܯ�0o8o�=&T! �hۂ=�d~ZZ�~OL@Fm@;Z�x7�pM�[b<(/-+̲�}iq j2J8ՙH��->'z װ�S!4Z|�%0HeP+U�J8R��
�(��
�`�qV!tΎv~R�>㴌?
-68z+Q`��P8|Z�Z ��6����$�B1Z1Td�ـ�
�c`�#C|6~`/��?ܝ9hG]qM �!5UxDRMKռ*#!c\K�~k�(�GUG��>?Ͼ52 ,=/*�D6d �I�qPVyv��؈9T/26��X#R\$쁜4[$tVps�uqj�|uو8S?X�pR�QB�qP�&�?jЊ[8TZ=݂}��u)$���$/lJ�e_5eyG\�=-in,��gIL&��8$[Y�ڌ�Q�rWZ[�N�Fd%)�kc'%�*ΕL�u��;L%k�}6cz�x�@�,�{E1V"Vpk͐:rW)&Սr/qh�,�\kU�+�!�kgHˣXǽ!�<{,Cףx'?�c^'^Gfd:z@!H蹸Bk�z+G�ܡg���/�+#�(XwɌ_X�a5ֳ��A2k|b_�-%.A& wD�yU<�8*y�}BTzdU�Q�A_z�W~oɳޛ _dV��f=#
ЪxL:��9�;,Y�✓P[ {`3]�O�s�B\�!u� Zn�}"��11;�B=۸fj}Hϯ�|僣8Au��PTIp>2�2b]��Y!A#T0P;NJ�eC=|ʀt{�쫏��H�Ǭ�m��2�`@Թ*P�HQyd%�Z&<�va��~FKI\By*� |�i�ڿn/:]iR,αI�CU
N%ƬaQ^�Wkb
2z_w[/�X
s�
+Ϩ��r�fͻD`
98d u]@͢��
sن|!ӯdADxpV�S.
Ɏ�҇t*ϧeqE`�cd}��HEwQUi+G<,o
�W��RGLBӡTF+E�!VK�6ֲ rwZ,Rn&Ow �p(�X�u`�Ѻo=%4AL?��b�. �g�]s^gSƫEU/��Ed u-7Q:iЊLX/���i˚���I�+�`i1&=VM6���DH#o��)Z��b
ׇl9-� ;7ʹ"qY8ĢTw\�M'&�K7D[�,�4h *YnMq]pS���;1N/ANko�TkBF1R@g��P/IF`tH�R.0"T:hkzP8s!Q�.�N:[qOwL�*7�f!IV,H!?�;�G*t:�b��h`{��jb;dK�-ݯHBM�vm�%��PD2_%|�ʱ
�7ih&+Ӧ�:u��R��z.w�ĽZ�d�ʌ"S�SQޱ;7��ݪG�5Npxcp8S®{wF!�y��I77W+dr�1��f�M1_�c;.�AnJk�=,Л�LF1sMBSU"u]Th3hp͏e�ģx'��W65N`�)@|Q|I##;TpQ�{!22͎�!Ү��(q�q˗^�-��-�,dgv�ld;$sfqtL>?Y����>:�wVw{�>�!�,�C�m飏���Prx+
U{&�Y��貺�chόfJ
Ԁ0xԃl�F/�+{<ˊʨG� Ǥ3.2��*ⰶpwJv�<�+ ��ƽ�$'ϗ�,m�h%gk�Q~4pP�el_#ym�yEV�c;�$)ĿbOi��ɦjNV�9I7_z�yG�kye˅�uy�D�H==̐;\3>˃�!Qkb�mlT`P(.|C��GV4�XH"�y\iO]��#�PN�zo{d}ZxyJ��RS��ٚI?,0`uFXأ5�B�X�«$GS^[е)�ú8&sYHo�/&'Eb,#Բ=ژҮ�23ښiV<7+(7af7)Jz2;KA6Q|a
4�\��IN:`Y^]VQDYD���0�p�zsv/�2ܨ{nz=ԮBC,-^
{㯤/.M�oFj
gEKb�ꋙK �TBB �`ֿ5xnO`d/��*2�J> _SWc%:JIAR�b=#`o +J',B�y;'rs�u���e69,
inI���i&z^S
gu�? ��FR�oY0l7sx[�̙Rw/ z
�ƤL
>y
��
�3�CZA,�>Nn{-G�HIowo�6vꁪ%�)6$Rј�=�v
Fvs>l�a^co_BD+@y?ݧ9~NAkdΑ:·7X�S[}֪�:5^^=B)S
/}�w\{�'�P@�ELr:|�VYpШ�9II|J�'|DdRٖ�C
�&E^a Y2½�-<ݴ1�rO!^im!;b1=���)��px>2yO=5~�dr_l0Qb�~M�ymG7���FѶ�qC�,Z,'{�_
E<%*7�_O��1�f�zg�c�ľ$hw}A(�~)~�&S��"Gh#]XoRNK4׳ }XF�IPᰝ{=[��t�j�<.tжLO:c�Rj�ݒ@cJrP�Eue�/'X�yCs��aA�7�a�
)�)U7���9�灡0xX1()os"@=H@Q,�C�?4��Fr�U(&a¤cƅ{JM}¨ڷ1�"CBY;eMv�LިVA�5$I�8J~w${2Jsi�KR+1cCq=����+��eCY)�FYgdb#T�:X9�VsW@�!����%kQn7�;vAW-0=c��k%#o�=�([
p(z,n#T�(
R2jm!}k�sn��e kN#W,=.@ \4hi()0I5�g�w��aw,A�`}�cp|�k{}ܰ�
Xq8ZS�:��ɋ~M�@�TaQ�UJGOC!&4xS9/{I`a$aa
4I�:DNiF���ݮ9֜�N`S*Sr7D�[b|z"c08f2!zހ䏄�V�F�}=^;7[�!&]qgܞ�x'/2sT|h#2y,O4�T="48�t8�ܻ?1Ze��XE��zDR�"z�CXnG�Zpn"ӥ 8iu|oG�jY!P#�B�S`M$Y_9���&rU1֦K�y*�htGD^^I$nGtѵѶ�'SY'QbX\AWs3w�R@\HwU �5T!�UM�~MgA,Kӵ�E<ڝ�i
f&JF{e�"dϫ�<�� �;�惵<�Eu+[Ŀ,7��)��.='ɳ8;.<�-n�䈸?�
?D-UǯFWcR>h�z`�Һ�B���Q'tb/.�VU ܐ��bdF|�4u\VW%̀i��hw�47�\m�SA@J�Sq�Z�ʰm,&Q�8�1��Y���l�\�UA�E(7Y9%Ku~/7%^T21�y
�M&wa@��2>S�j#J���pf��a�\:P':S�o��ʲMf;';6+�5{p=%R-^�FD~J��Ffa?d+˪QH�Fk)U�M�?�-%i)HV�.�b.�
BT��?BfnCώĠ2�ȶ&,�>Dp!'U*�T��{&^'�"�wBް{sfQث�=c1{yܾy7G
$&:-D2MVT�bw �rdIt�\cDIH=^7'۞J�O��.Z�\��Z�D.l>[,nՕp!�.W
ࢉyVS�$Z>}9+�;�3&퍴BFcP�-&u�>O�e��ljgV���7\9�ySHB�`5�P]nA�/eZ1ry.'6t2�0(
Qreu;;w�1=� �ZO�{��9(XP%Q�6U@zK^LZ
]m
�Mliat'p]f�܄t\KeL*_1eMW
Zŭ"W(�"87�4? :�_r[ i
<�#c!Cm��WP�&,kh͢�m�nԩiLce5��x�>l\Q�{75>^+}''�2�y0UJ�JxqIVlD�z8!m[=�u�N00I/IDOnR71,�qP*?z<)B� YX�wJK6c���vA�V�pY|��*Ȑ�2IW'N+�RWd|��&�*]x:n�f\��oN'^]�Ցzeɷ%Y�[+Tr�I,Pb�Y@8>8vhqo�zD]�A}^n8&
�x3B^*i�;{m�U@./9U2~�͂#A=c�7ႀ�>6#O�i ݟ<�aDSYo1Gy-9�{�[`U�MԾե~ʲڇ�1{t}%�TE��6�)6�a]N)tG6|�8
��)u|e�@e[eEx-6�l�lh�n~͞Iɥ�&5ub{-L�6�)91AF�O+U�EJ�pG�gA6|A9MYl��cC}a,_xF��c� �ֳ�L@X�}0�T-߆[�H0TC>Բ�Zȉ@��kY`{&�^YyJ3ծGń�LJ�9M�Z�2ȁε�
fC}f�"��t 4���7Fdx�1_�{}gZk!ic�ŃCBJ0½x0K��EҖ*zH=ĸgΧfpRq�#L9�`h,���'VhGIO�@Tllwrz�W\9�iW�g8we8s�d`0��KY�oU
FVn>�Is=UQT��J�a��|\Q[c2Ѩ0�ʿ{=�O/@&�IߧlI�>qY�r=G�/�QyU�]'=X�%
$�ՈS9�eʃ_�&�1'Px�.
:ER3z�+ܚ5J.z1//{F:5��'pzdq�o�G�s�`5C#Y.Ae�ƂWB))���8f&bh�`;��s#�}R"\vU�Qh<���u!]Np)y2?Cl;�}_�6?���J( ӳCMw)]au)=�1�]Cמm$aPl3m!(7�G;2�2_f�9oT��>d��w0De�:&�LgKmeGn6���s�tߛMj�ſ#.ާU��5tr2t-)Cņnb8ͦc^-\�#.�BD^VB-�2���'_��
uI^�s(7r�u/o/��oC
�`�T3?�s7�n�đ9�v.��{��qZ
��GB{C�sdz h"~ILT_fݑE8sQ�T
�][$.W�*u!%�2ljQ@+v@^y0&P�4±�A�Y1Pb�/fCжr�xZ�y:�;!F}����bBbCPGrF=#N�,1�mC�p%cε�ov28D'г#�7�&;R�Xǁ�Ԑ��_�AGr욲-1M��~k+̿� Fe@};��4{lz��MvZJ5.Ԇӿl$㸣-l4F:w:]�F�JƋxz�n`b{���3HtKĂtŞ��FN ��;S8Nu/q;?|�،2x���I-[�O-ۨ/B;H&R,F�`z�-J��~GB'��c�n\�0!�2zl.]/vɸ4wEuX57�{(!�M�%��4-�o^lT1"�j]~sRo[�l>E.rdK Ų,<�t*bFMg�Dg-� ,B.˟|)�+b@2f�lnCl�M,Flw�UƲdC 72/PK=6mX��W1�(NÍ({Y%_�,.߁#7>Wa{ʟ[ �CdK�3�÷{�u]a�~~D5g�X�3\ͳ2�]��@*
z�MKtIkKO|3�:HcV(�LRHYIz["k�.x$˓JY}��ⷄd80֕�WCbԑ�
-|Cߢ(|T;duinqڴt~NMMW(4��
wΌ�ZspdE%?7�L�ϳۖo���jJ$+U�C\�@G-#WĪ�zk�Xʏnb`E,wUSn�۬v6d<9�ME�Tzq6x4�`VgUl��lfF| qwM[�nN�}N
<�8i>�+HR�x䋛;C�^yR!��b��@z�~�/#xxA�Z�b����H\��:�2ePr4�l̲OX.ޢ�\:C�&*n�Q*Ǹoqӡ|��n�˷8T�ϧdw���-AJ`б�
삺�>"�^T�hՠ(2c�=D��'��?SH�QF1Л9r��-9Sf�"4�B�Q��n�\�Kq-jd1^{~H3s�8ׁ�sAN$
-S}M~ɫơ[>Qz?xL/�|@;
8�/F'=+AȀh=#P3n4�+�3�T�XgIy~[0�mJ�˭("o7ΣJ��K�'xU�Cc t�P9VtPk���A��G6w7m��N;u$�ӥ&肮M>QM��&dg4Y�?i
+#8ݪ琌|�=;g�TUNSUI:�iЃq;!5W bZ/3[#]6lɟ?�L/}m&h7Jƈ�ib�kx��ౡX1*/?R��&&8P�A9u/뇉wOZ1FlL(�Z�$�u�TH3f >
�J'�m�Nhky�ެ<��ۿ,(/Q֠ĥ@�yq-ۛ�ҹ=;ІH�a;?$�0-��oa
%�YC��x27�ӪBbwRy^�jV>J
|�
�aJz�"^6ԆE�L`rs=9$D'Y%_�iED 9 @jD�%�7NVX�LSE_s ��g^)$h2�)o'�!rC��6�վ[[�,Ă=^!b>ˡX[7Ƭ�>\�*-ZB
o9u���/+VX9hH�k�`ܒ"y#lq�L�A�d퇩���JMB+)u@io�Y�F�.OJ:Ģ�Yt��WR�
!=?R4S/.+B�kZs��I;&�P39}5mZ$lFo8(1o|�Xu�چ2�ɰ\x�6˸!�a4�c���4J+K�>е�>샗iD1$xH}I(�όuIC�+si;ce�XA�?�!R?�%n%6xV!6eH��
>{VSUxu@q�1R�, :-c J"�,^q{&Xy��~#{��a�� Fh�wV�OC܋l� +R�#4|5j hK�� Z*]�wl(f�~9 vI7�2ycoK�Tz-S�qFX^bB_]Qa31wr'�u�&�q��ÏH@��UӅ[�u�+Fb�:5vah�!|)5duHq�~�^E�F§B:����:7j�ݮJ%2%hT>o
`=�M^v�G�Xf%u؉t\drma�ba^�w6XxC�^H!���/Nu�~�PU�>x\Ȱm{e,s6ဴc;aVklJ�:P��ߕox3'�ejݽ]EF�hPݙG3�|�;��3��A\B(7}�H6�xw=>�j�H?r4�83'KMDqIE}�y%NlBÐFoB,A_oY(
�f�>a�)�i|��T�t[�Ձu v~\k�F,l�p��@d�7j-�JbO)b�`y.��1,뿦OGԎfΜ酔2��-К8���6e\m:��@B>^?]l&pk/qԾ2�#;$xKH�4g-2�ETҙ$H%(6wˉBiʻh(NiR254ZҺ3AR/z&9
8`�-n~?]ɢ�0�P`_���
e!o>ld|X@U+ݚɭ02�q>�ehNkx��~��8(�ҺgvK8r��߃חqnDYx���غn~U_�[�'Sg Z�_XTQX\GH���aK�wb,�HVP>�rzm3iW�g�L�\}еL��B�p2Eς>Ж&�*B�MKp-1�yС:hN�y4�nl\sUX�n4x�$b~F�\|[O-��2�.B�^�nU�>�
�{X,.mL�Y=D� �OLvn�V�0Ŋp堞`FG�pX��U(I}
tj�'|�&�F�e�Ӗ);Qq��t|Kr&&Ҙ�y/��q&eT�4a"2.H=;s�NP&#cALS(. ]:5�:G�Cջ@ڬ�5y�40/6(>/*g�ufJ@�F&r!{�L8N^��EoeT�m�n2~̠[W`Ǖnna�_{Id:ȇZ�(.IȤ� YzKLqi9zN܌Ó�*T+u�sL�t/B�c)QR
C�c�1֦=��-jl�ug�+ߝ5ʆsn�IĚ 7Wv�ޢƁl����a!iUkZJ9C��%ro.wz*��#z%C��#\պ0?A[ 2����OLF}�BLU5m(]�O�FrW�29$sU�EczF]��LV�O$�Sk��l^�-~L�[4q1L@Xw�6�]��9awqA�hy@�
ۤDu:C�][կ�'���\u%&GAvrl;afE$z"~�Rg"no[� #^�'�pLےʄ�@��k��I~�Z�e qR&Դ��3kT�W�[#69'y꣤�iSc�z-Z�^�iX6hv��ʐ�gbVR�*T /J[i�LvB9cjX�O/F�WЬ�ηnKmsNn�,H�ҿyW�Ft~^⨑c䕼$)]×2J|C:����gƢ㠊g@�G]~ r?�YV݅�o>*}�KQ٣p�?y0e$��R�L�ߺC!@�P� �tR< u][ߩ>8��"0-x4�i<��J�Ӽ'R��l�qnXJyCؐ3��Y36d�-oFr�4vQ
��Zd�ST 9�ӷ�O�>d +��8�קdn ��OZ�G/Aq
E°T�R��lɯ/\eAhtP�H��S>7~~i.�KT:J${X2B4y;E~R4j:;8'-!v�%�yۑ\p-}=O
F+�Ap!�3�ێ�8�}aCt�V?P�
v_�;�gA5v1;CE 3K0��J��`-2"��p\\�2?@4m>!; �q�c;�.gM^z@R�5oM>B-p
.��܆�F�M �ΡennjBB��
�S���s
�Q IK4ZJ/o�:�Ro�˻«/Q%�8"pF|.$ad�|H"vBf5k,ýM3�v �5��3@8�r�Ȥ?�B�=�XX#{p$�Ƭ}�â���3",j[r\d�r/ynz�
ż��~]j0t.3^.Ŝ�3jG�;jz[9�7���0�'�hY�]k/`�I����Zxº 7a�Yʐbe1YG��ZM
<�[΅0��(Xp�bAm�Wb{�z:Z���~ne�{H#"����y+n�3fL+W���.mN^.r8IOB-�d0�|`wfJJ)R���s50c"�*`8I]C!v��'@4q��%1+P�}r-�=Mqȥ̢�
ZsAs5?Pxbfl0ِ�4fi"EJ#� }F-KuE) r�`9%G.v]2t�CbUGJ
$w�%^w-Iˮ�>)ظ��촐)Ȓ�mDE�gU@�jBfZet8}ox3�s|='�~����3jB1�Jx�X|�ʕO;i�q���]�Eո[0ʔ�t~F>~�t�&Ӕ�4ɢ4�><]w2�Jl^pN{��[�'c. ;BQTLJ*&?�.�3u�ٻɡE�G�Se0 q�ⶪ�+%vCH\pD�*�k$&U
�B�0RŃuŊ¨IY^?w@Z,V��|��|
%=YVC��ϔGS��)mqLxNny�7$�0.�hɓ�vK~գ؊T�Ȍ F��[z]#jp�~.~�
4}N*E�Q]G��M�{a~d(/ �(K'E�K�l;q6lڮPCis�?�'�N�DD�n_%|=?Ve+hxfp�4
�ooƇ*{�6%2s(mǶ olҟ矯v
Afkм\G�ϔօdoY;-����S�zIQxft5t���ϧ�] V{#dJ�NYslS�#{k�Y_꾳rU� {�}�z20__&]�C�33[�|�ds-�X`J{"�ו7�FZm�f
o�&n3�\{L[hG�ӏc=7G�z;)��&}�v`YmƟ-j��k@4C�?}�kiݡaL�s�.�[�.�ׇ!��fgy7CKo!G�`�.d!MI4o��Ux$"WqK� Oyr'5�O(G|oЃ4Dpq|69D��A^�CTbԸ:8I�JDywgG=����hs&vi�"�b{z��X�
j�e�Oڐ;LW�yx[�Kpk^u!��h�>lʋ~! C�NK`3͂e�s/r�}!G
��~|8f�ڐ;5 b�p
;H/Q Є/y֢4ͩ"Ѕ�M��&qh~HjBR3j�/́"(V8�Ԛbn-b��R��
�]��7d�f阉Z$uXz}�zd�%�6@Ga1z�ե.q78~<�*�hբ)�-�{�8��
h6`d7'k,i�'��w)?�8)ϓLXD{@�,Bt�y&f=@nei/�[u�PH
䎐x�eeQ3'wވ�mb|2QU{1ʈT�+W�uŗF#" $�WI�)yZn{df�ujTĢv"%ҳh����о@du@fT D-a�f�
Ndq
>pNA��\�q��VI*l�G]Iq?�-7k)M6&ǻ!Y�'e(D8QL�V�xM�=HjN;=T7�bP \;WM�hNfXɭS�E��a�_�d -aux."�``a_+�G�}>_�f7%�aB=UF�ɕ͟Q�!-b�R^Wܿҽ�-@��Ac*#K�Ǣ8֊36WֱBUm0�{58>�K��Nk$
\"%Y&�8k�\]֏~ߴY��Ƚgd/|-;�#P;\�:A4�g}� 5�?{�;�v�^�Y�﹟O$tC NvXj6�>{ը"uyֈhx�j`?�=9:Y+mQk]`�JJ��JPC#]bp��'Ǐfo-�g/%�mc
8Vȟ�B�%t4,&Sv|P\&lsvA S�"e[�|T8{rТjKn7ݜ�ND�z.J+y}pN5vEi-PJ^�v(ME -�p�2
xς|Z+Ã��Y$v�ΙX\$\q�X�_%<]!j�Àzaf_S#ӴQZ>>p#~)1p/`/O
5C@{#]2�v#~�">+�gX|�'Yx*ڸgFUHJBov`]o؋�Ek[:v%�#PCond"`�p]}װOkҿx9!8
R�`vRODL~0I~6�qB0��Wey�g�myS=�-Mn=rؕI�QhꊡG�/f�Q�s�-P2Q
n�]C6x��ùY�vsH�ܸ=z7̱�ѡ~!�蘵JM?%�*�tCťfZI/;[ߌ>PB��1:SewjQ<�ĸ<�W����y6�>mJYB����pn3�4@!{��9C4Ɨ˱ ek`m_mu),w2,B�!bV�YwLU�è��p
uϽa��9I;wb5Ȕ���k�! X�N��%Kk&6y,�r-]C}e��w��ݞ5�Vs2=wO\)>.O+|_.8��F�XGg��L8+���JabG⯵W5'ist\0H�-g�:2&pqL̜@�[N�g�P_�hzh4�s�QWk|AUJ����^'fs"-T氽j4u3f��#<ȖOG#m/�yîdK5ߪnwӯ@"��q�E+(��g*u�q2ͶaK�[�tW+Ig&}m1Lc��,��!mVgDg�wX-�k5ĒǓ6r4@tk>?�ڜh���0�Åct]=s�e�HgW^2�}
��(?^�4K_{"zK{��y6DA�9yyQp*UUW`l� Yԍ�`!�8Vũ�́b/0-D�Q̥(|,
ɽ�!�uݍm,�2��r/2RwM�C_[=Hײ1}+6NZ\`=ts[�=�~K`Q֨Z%/��Vċ<�O%K0,�D��u�/0l>ڂ�YZX�ڟ�rG/5ֻ bW�+ʴ��,L6 M7D[5ICs:J�Z�RוJ2�і�H�)k/��C6]h*R_)iP�i'UůoH{�2�&RrC](P�CP1!0qpl�n���Cp�ׯB88�]÷Džd*IJo�N/�Up�iK�иHcr9Ƒ�OgA�{[52@ L
��bڵ���:Rx%oj^�W�|2J�B>4P}.uT��ӶZ�J_�T&��Y5]F
�D^4
eɫ5w^n,$�Kh�k$]N��Sa�:7{wl?TAI/jYD,�ϘM/K8
9aS(aa^5c|f�gEz�.nG5�?{g
G0�5��F@<ʼ��${��!&zII�:]f� ��Ǐ!i}"�p�C/O�bZ��^\3$k ␄--{S3� 8-P1u
� �Oh,ŌD�{&h@Ay
��:jśC@/j/9pP$�rR1�
̊#|YJ*�'�"B#��a r5-Z=T%Q �Y�B� \ӣ}�k͗��;Xc�̦5b�c}sxČ\k0c�]QdV�`�-zgw8�ECDF`��7`
S�edN̘}Y:��KsL� DF-o?>X8tSv�N*$MPċr)v$�V>�Q J2c+�3-{Ir�m�i6Qb8as*d�aA�1[�I4С�(�Aقy~�Lq��Te+6W���(o�B}E8d&�r2M
K�``Y(~gV�I0:�eQf/�cw�4nړ�xˈ8S<.6֨bޕ>$Yi-jH�PK|�)V�%���]i�hX1Sw#
ַ]WE�
�oMB2-��!�ydy .zMq)
w�!u�B?8:R^2Rk!# �s�`I3l^Zm7adV{^�>
�ߚ�zd3�$Ԯ:��]_)X�T�6���^�>*O/�܂u>>QPo�Nq+hJS`L ʚTN~;şxB+�sD�gX0~,𪒍�Mnv46J *tx`�EiNO6Q�vY{&��?P�dGf�p�|Ny/A�-{FO�m~q��tla+;WrǵKǘ�vm�⿋V0�R4�m�p?η4���T�t^-?|*&i_-5_tJ(�haE#'GB�J�B(�چx!3�̟
B$ykY�L�q醠`x(mUP�8&tX^��n[�A֪+EX⇪n'088A("�P�or��^qҶdlk�\�Л)ő'Z���`�XԊ���4;+gr猃CYIm�_u�5��uGʃ܉h�>+tƈ)�qDI5OJ ��1tW�D�hy +�_B}b��;�^�`q�4"�ߙȱ36H0�|`=pg�@h��[+�ٴ�w*�-\Wt �>�8;}fH�3aGF8t�}*pNy믡4Y%Yu|J5AThW<�%C�"'�v��b�Nˣ?R�:`)wQb짓�Y% |� >��;���\y��z�
��Q0OLd3B5߱�2<5�n TAK~xa�Bi�L�[�.� ��]zb^�aa�%q^)ۏrӓ@.M?;,{�h$-[�A=;J\qIJv["8LZ=[n�kigig]ƀFt�O�. (N^%:�Zv:)Bބh:�/D�fkv�x�꾰�-��U+`:���k\2sSX@*luWHivكZ\��tSC͝L3n
0Owb�)M3S>]� Od(�yB_QX��wȞ>%L=�{qc�c�F
"m[Qܰ9�Vav'T�%4�Du0�x0B3.鶵3U�35�P� *-�gj@,[t{|Qfȡ�<���bC��V3Gz/?*kNڋJ:zݹ��ď#.wjUi�
B�$�,>HE>;���m`�3H�%j¾z~MTQa,n$ )n]~*nuI�5��Ui327`nLӦ�b��0ELD���鷠?k֠Yt"ߙe]zt9GK͘O3OIjmr�K�ql^�3pN=Dg�rR�PjXg��ܦh[LyїЄv^.�Eڴ�֏ݿܼ=D���7�[=�@Ŀ$�+Yl>&h�Җ{�qqUz(�D�5�y�UA+�q��bړlTp�lnhiUOjZѠ�]�&4b*Ò�W{2�r!d��ulV\optO"Ж!Ou�xEԊݽq�}��R�EQ��=;D%ܱ(�d]�j()��i^g�ɦ�-@m��PRJ!6oxK\6eu`ʮr:�/)�os���2�Z�&�cbfVU~@�}�ksQ6bzy5X��edSսqe_¾�UY5^�K2T`ZiyK|9H
M�ݼ!�r�pA-?�1n
,y�Żww&+C[�ߚݟ�HL9
f�A]tܑTVyu �Q�C�ֆ��)�&gpf٠��<145-7:yI�%:���rau)�L0+|?��bA6y0LeĿڥ]
�5Bǟ#j{�}�W!��A�ڞZR59};�C>rh�qg?&�\! x%�²>oUlro$*ħ?ZUM.Q����fU}�.&,ܮ6vۂwg~J��H�z/71ʒMv}�MuHT�Z=�d'1d-l`n��mxO�S��)�,8٪ӆ3o;?gX%�5�1�iFFn��;��ib[N�4cs�S=VҼFGūU�}3wh]�,m6s ���Q�_t�~e�'��;��] 1�\��,y�N0h�|sD*�� T*�×Q��k>,-a;ى%Q4�ꭣngP{�jѮZwo'�Fү���>S@CSҪl���0�Nӵ?Fo�ἨX�wDW�x�f�dr=\H]ZsP�w�`wԯ^4?Y�ԿM6VlmLIW3( mih�� 9$�{���*��4\16h�%7A'נHue]
B2kF30wyGLn�?I.蒜��ʵU;��(^:I4DQD@A���l�Y�DsAl_sCaD�)h/#c"<\ҽ4�
:;YfWޛPJ�ʷeVq0�G@|_y'�#>3*2�1m"Gr�ϱƔ�=�c�zyEq:D��{)
ciF�`CH
��ד(ڥ0>|+ؠQS�1�4!���%)�Ac�n�|vX���#H$�|39�
>H�Ǵ%ܤ��јju)ilM�El�.E(hy?ֲ�5cY9H^F{��GGIIت[nOQ䚀Jxs%| n23f%?`4B� 8Έ̀܄k5 M/9oz"Sʄ=cHzwPpYq1Ow7p�@},�/f?�6�($j�qDd��1ۅT&[9�j�f1^
>\�hY�.Ai0s"X{k)*Kl+ng@-akK3PhK;cP�֕(r�܉PE9�X�7#�|ӎ
J��M��r�UqCWc7��=RdLK_q!9οE�ұPƋH`NPK�AZ3�m/JS�'07):4Z+hE)1�t}/=�7R�f�G�г��D#mQ�lE@P�#*PվI|^*��waxhe�4Áo=9Gȩ3bY\"�}�r�Y_,ϖz/2U"�5&�&vS�{0vd_
ǫRj4�T4֍M��ڎf
�kd8:r�;je
Clc˓�D,#��;7,y8i,��ȟۤ�f���-G�(굾D͍Y=OG�O�r/X� bʫ61yl5s=XNj�f#�}_hJ[
�X}As0ty,Լ��B?e+B/fz�|
✑}
X*qfwW靯�p�Oj\RnOSꒃ淧x|Eo?�%fw �%�>Ś�j2�Y�Dp4d��&ĞβSe*,�A*Ҫ�T�^FP7.W=ɂz�`�9�V+|(8�'\|UU "УݰY����o+Z2q>5⳾&ɣX��D�q�3�θsDhJX
h�{[BK\ �f�O5/I�'O0S'N'4J�ѯr�EG\6y,HPy%Xc5�^m3'T6�*Z52Q&
ڠ_IEEn/�D$�_q�ql�/FSQ'�+zgJt��z`�ܔI��1CWTX�veܾ%hCu_ѓpS��ן�?�t��bo
rS�k��OXp?ؚxŶP( `u�4x|F?KIMF�AD �8�^��h�W0*��L �4˲ˈ\
T]2{u&B,/{�[xnuFV*-�(�6gɬ_a� �}yH�ga�EV� $i.~zuY�`cCѸX�J2=z[Ή`#بB��oNv�fR|4-�Sx @�}J�\)�>vK6(5k렽(D
i�3z�g◰/�06��NBm�+@?K(�� �TzT7O�>�ܘ5
iOQ�7sjq}o�U#A",�]M垍Q� �&9wG|UB}!<-�70͵)&�Wpl`�Yƶ]�"2�CrL,:�cH=tx}x3|{Mm7t�
\lHm$,mL�3x|uFlq^?
Zχ�&y�㰒�]̅:)>�5ջTI�>ȷآXI'HdFy~|2
x]|n+"?[v0z+k��Z![pF>[ѱ��EC �[~)4I�ؖȮ6M|%;brZC�{Um7 HX�I)fJ�ԥ+Apc#`��E�U��(fJ] ,*
8}Kܮ)d-*^S_<�|\8�R֔�}�:Q"6s[<#���SRV@v
tG�T��蟚�"Q8<#�5�gY�^�B.�Z��k[tH\��0fp�Cݑ;hB�!��}\N*Axt�~DE�mGX|ׯzf{�xឬ�h3Ơ\1q%'�X2�Aߝ،WNSkO!k.���Vӳk{��5�9L`^6�X��ݫ·vwd.g��Ţ��w��|vb5}qep9ݤ�O�:)�Cl5�Cɽ݃Q���R�fV�~"3I�in
ա@
�No,�N�J4L=r0QEEK kGP�|�D�n+FzV�?�:L#�4[iԎ��:gB("1S
>iLz%M50�.]=hB�!�Yѕh뼄:.��|ה�.�QD�0@�7($�'_Q(4B:6=
#/za�k~�PNO+�C6
pG_�L=m\S雀X�NOa7řt$Kmzkblyw"�~Mb"MS5�Q\%I9t1h�ĚY,(C|64lcXϯ�;C�{Ao�af��w�pf8Z½/EȗȠ �"0kI��ڲg6G\a�]zQ펿Nd�PoM��D-LO?��wR�m�=B+,�@XV2g;겺�*O_5�0���2�
Ww�gIZYZy͓b�1 O>:߸W%S8x>�=qr&�J>&�#r$])
IRuN6%�/Op1{REkLTCTh~�
T�} ?-�J7
����ֻ��`o�!�Ķh|d�3>�()�1]uދ3>znYΦo�l�Rֹ0V8Sŀ_Fxpp#`�qwb�外{@\z\.(��Xe \!ێ71i-eFwM1IJ,/5[у�@vi.�lHhށy'�M@p(ƄY,Xrxwz'�M&�]yw�d��\L*)Kr}�SS尜��ol+f?��gIg@E]5^&R>�Y:[�u2�Q(6rKQ2ߧ`9ˡf~@JŹ%e��d��tn`;##zK��RC*vYXAR"@[sW5.��TRR$p�C["L�B:DZ*.�&Z)!BU��>�$�镔*b�Fx\�gN
pw�<[w�U/ g/�G�<[>]'v/Y{f,NKz3i�0�_y^�G�00ʝ/OO��OZN�B}]۾K�;?hlZ++L+vR
VQᥘՂ.,栫,�R5�w�"8�qtbEKԴ!`F��[iCAm~'Ӎ,tCͷt�
K] N�
iO%�K�<�h=Sfc~�W�W,@ܽH`�Z�#N>Q)Y(6�NS&'�dy>߇wH�:M�Z>b�(2)Q8h]��3srX�T?uS7*?k�34
5v \�["Jwܐ����B;9���
rePï`l!��i?�Dȟ{�o"s=E-��N[#jW9k
~ �y�y�8P'�j@nSF�601f_60����ϡ�g-1Cz<lGj؏��:WdڐI�iƢS a@V-f7E��!�C{�K}@Ph�pQ/0W
�`#CF�o&@w(wN�U[Lb�ɧě9�8z\6c�L}�0a%`d�$ͽ9��Q�8WԆ:� Xr;9dt0$k1m(CG�gS;i.Dúp0cf~��Ґ~\�["E����u�F~w;̔�It6~�05@�VABDi��S;
cLܫ�G
H��qHSV?� RX|�F�L 2M�>3 �~o,~"v~�1xG̮U�qNZvJlP9"�p\c+ՙ�d,bgn(mNhbx,�y�[@pukch��l
��V5�X�ij#XJ �?wx{XB}(���8"�Ƅp�7U)�Мj�|~3S"On5�^|/u�]ɨm5�ZC[&ޣ_0�*�s�cc�7ګTuUtL��B�+Iсw~!/8p�}��k�980�A&Wpޜh�~~>;f�{TsC�Si+�<� Y,�0��GASX5i�O�0
Ό�6�$](&lZT! cגqL��>wXy�t�Qo>�e�i8Bq��Bj�/)STZ+Ԁ�Ԧv~_j+�ǡGrWĿjО��ej�9"�QTdѵYׁSȟK\9\��a���C=*i4цUm�q`@2^ }s'#x?w�儝oq*��ln�_ѕ,u ,�O]QH'=��M< hu4~`7�zt\�9RQXiݱƌy�$,-e:T&:V�MOϕH8f�]A��1��#��HL�bT���{:ev|�-ݕrȇ)v;71Զ�P��B�Ёg=>4_p/6儫Nj&OۭcO�pj�_R{EZ�)k]WD,ɂ��V�[��f
�_5P--eg\pX>��.B8ebzE-=(לn;=| �̢j�x"=�CƬ0!@k%
S�*7BJzR.�8uȎJy^LmZ�
Ͳw#<{sX+MmKS=3NF;q?(n����
]7�iB�Zd,63-o^aH�drU�wf)I!{0};kFf�Ԩ+f+!#o@n劗oP�A�v a+&�_dYtCH��m��0��Ey^,H#:�. M�ZI&hoR@}�4y6;Z˸IGs.�I@J���m`A4ȃߵIφزWɢ9z+�<-g�dH�cn9m�*ð�FK�$�[fdu~�Srl:�T��Jh�_3"n&IȂUV{N$�wv0T໗
~O;�sx-JK�;̃~T��7���f\YP+c|� dE<��14{cۣ;X),&h94�ŐǞ�A7`x*�|i5A~�w,`~"q�PR�g��\�V&�wlQ>h�1Tm&X/P\�ܟ��e�#'}IN �d(�T`čp4W,�4\S�4RbzGn�iE�A" b]WOjX;�%R�Щ<\%�*.Z1�F���kѿ�뭞O~�r� H bi)@ȵdt+b���i:
Rk>��UyEG�Mga{��TȮs�H$Tnn]MMujy;9�1v6_Stl[YڅEK�}ԩi�6p,LM1݆_xv[�1H�D*@ə�/Ve%M:1I7i;Y/VhvHD*d�@3B/S�Ɖ~�YlSg�溽B��û=҆ݵLO�`C6+AEqjCA}LNIs�Ek/%`k�;İ聲GH5bwb�h䲯RZA0O�_�Q/�Q�&F,S}fm�&~
�,:�;�;R5&��0Sr(R�a+׆ٚ�Vk'J�)b>�?X7CM�YF^ZwIa>�OzCD}S�-F�]-dYXHn�.��]|�Aw/Ed�c~$��%GhuG%Br�/u/p0Эк\1r{vdԌ��Xd~~륖�;Wpr[P�+җ��m;|Q~g*v_�WȤ\�SU 6�'E�i`.+(�QNX<ۗ<37F�&ܷ�E<�kt&IH2."!t�9@��L*��pV[Muû��� )?�IB
a�Ab^̛cU9l嗥9��q$y�?�)=sp�{QkRq2ny��|_lVm�avB(�"5pB~v�Ѝi��Z]N�VAΘp*=4oZR��C$GrԂuh1) �F���Y�hL_
K#t`o�7�0H+�2�DMmʹhPB.z�.�C��nݸԀD!zqU�l}\��$fu�!4UʗO;
~QsQkαv&\�z
",Zv`
EQ^0w.��s73(ɖ%}"3_x
f.�}8�K
V�F�W}հ�j
|.<]�գb%ilnIV0h;ӟ�70bz|VINa.gyIDi.
�K�2!{8�TB";B�]mH ���m2_�
��%Ro~L���oۀJ7�����jIk�6�':�yD$3oGNY��-pW@̨~T/wF?2צ؈ ύ_}J
o�!'N},%sHx쓣>#d��k�RGuT`{Sc6`wMӬ�1!ZZ^(0:O��U3�4u'<9/ȗsGmVq?x\��gX/�x#�i�T=f�˷|~*5!2~�ۀ+!h�]XFu`H~/bvv�X� W#�ʇG���:8]-%{c0|?}f��"�}y;tY(s>Yf!ɷL�{�9F�S�]]lyz|2Gʻ`.uP$~��ӱrJC�c��pj4G�d�^&aj*�h�ujOh��E0DΛP
o�7AdSq?�CZpL��f=}خ�KO�DK?�+4�>W6��XAc���""[|K�2B4C`Y/,JD*�.*ʣ}}2og'{%_c�h�ř,�nZk%�~5酜XN/E=J��.s���pO�^�oy=a�EK:bK@tri�{�t,V �q�a�B}e�K&:Md{�@�q�we_W=iv7tv7"E)QB�h7� :�UO:_Z�
(Pu+gc�O�uT�Qah�h�>):VϿtV=V+1Bi:�|��ݭy�RTZO9ИjV=��Csm1F�3H�;�G� V�X �P�#�1V�80\O33:WLX'gLF#�W(P�)lTH=;�ML|~ �X7_�9�`xטU64�QPب�.�¥as?eYSwm4BG_�7.�:KIY�e�.y%āҶT�'W Uk_vr�֪�w~WJ��L1 KOe�n!�k?ƩD9�^}(M3^\LEB�$�fu�PJP0�c'pR*~od�� ok.
�'V$uH�D)S"< @�vI�J`ى>Ŀ��Ork��u܉>vRPK^�&+RCG��`呸?xc7�j�{_wg_�K��')TH@6[j]KI�nX�7�;��ŀ|�JqRW#c��nnm�tM,r(:V$ST�g~�K�@��օ��99e*n5¼tyo�ٸ��\j�?{&�_�dBݣ�$1@9[:b2{3F2Iv-.LЪ��':$8c�A1Zl�j��'b��x3����\l�%�D
4Ѐޑ238\���+FJl긹 >9�}p�� �+\UWJҀ9HWi�mIt;w-Ȏ�)]/ވN�xJm�s��`.|2
Q+;$**v`3�UaG8o.N5wY+lxIWwW-�I+% 5nX��.6w�S�Zx��$��O���o|%7!LU{Ÿ�g9;9k֟lv�z�Nv�o=�8N�_�J�ō.�~��-DEqt+&"Q,6Ъ�GtD~�n��3s4tNw
YJeOv)-q+�i&\J{}i�$v�.ALϬϓ#R�{Q�a>c{k�ٮiM-��[�J�~?Rk!Q]fn>"�E�'mtNK_ȥ��g�(�kxZ{7ܞܿýuيտNg�:�شe>�ܽp^�TX6SB�Жr$mÑ0�c%sR
!W�ߣ�a[=6ʌy4P��t5.z&jl:5˺oz_KPcb�Wo䙫[�+^�mZGL@�YK
��ӂ?��
��}�"^cm)�*s='Yi(Qj~i�=Qxl'J�^;ʼ\�ToQ�6�g�}?AQvII[�537kwї�S(Uf>E��,x�W UIG䅅w&x
Km=�'Ɉ�+}qKVf1
8O;{/~
D�_@&pl�3K;, E7Cʿ0LRt/?ݟ/:��>1�67z2?Ԭ젵ط
h�T�dW�\�
8�s=1%Y$9'f��n8\xsߚ*�pD^�J;蜇'·�Ͳ)>y�J!{ �u)j9�,K7��p<9QGqRjj^c%sQ
pvc͋#ό)gm{=be6LOކ$�Z^(D�mc-3KFk��cOy[=�6��D(^$"g]Q?|j☘#7v"�cl[d0P
0*~cv&�XFlp8i0�^�Gn�j�Ψ
�g�hm�:\�Q)8�&���w�O lʶ�"m1ނ0;R;�0lj�@K�0�bIzUTS�W�Qu�܄J�ӴPxH~�SoM��i ֠. )#�Gu��Tݚ�"�*JFƓ]��2ci�eH��e*36�$\�/L�A�1�,AHk�:zWf�(c�/[���9+d�-Oʏ=f]vǖx[J�$�LT#$G�s';ڤ45�Q�1f�}s'k�ͅ7`B��9&-�^I<)=�sg:wk lY/~�P=��(<��h_tږ��dٱ AZ
mzf�%cZϚ60�"]w왬$N�Jfخ�II?;K˃Z_r�j@E7EJ�V`/r#Zz�g ?s0�[ο�PF�gY���V)���q!�`e715L��(N�:r:b&�q|&Z��+j��3-�cl9{o sȨSC�5N!k�V�̙f%J�?!(?~WmsnQ�qD+)G%�zS�'4H�:n=�e��05u&xkq�#l
��~n9WL%���
�,6T:x��gIO�eQD/io��U�Q�=\F�|�#K�2 J{7\a��_C>UWBqr9h�Qᔡڪ5pT4$[�#{֓�F5u^P9E��jju)D�Ր�xd1w~Ll4Zlϴ�ō�$'"%4�5|Jҧty1U2�`9D*f
JiyW�Q�s2煱mU厰l�hmH}9eAw� ⤷%�^#��}=L~��kʆ4#K�D�n'*`��ҮI"5zVnjr�iYr❬�%R
�,V�&QБoExRGʞ6-Fk�?53����#7BO
��nS�
a�TCz%C�ٮC TStf��q{l+{f�S私R��HG�|VnS���Nv�OZ?u(� ڢ�ghc4.xl6�QSw�m1K�� 'Fٙ,�oYAufE|X$D}-X��YK �a
AI�*�ÊHWŇF��Gy�؇<^d'>l#�M%U9ƃa�o{*PE+jxRY`|R�ճ'L�K���Z�*S�x��
$ndW�Y3J[�jbC�a53`C1_z��6V8$h
0?�PEL�D�?�?0ل.6(ⓙ"mDP;Q1�zYo־����Zd/hiwWH7��VzF`
b9A[r�u10��f/�f'kM/[�*ya��FmYu{�G�jV�YD2`��6Iw;lgzRWмNvS�ԺE'O�ɫe.8]S9\�u�~!~y� �(s$�n1z�Vvs���H<�>�n%kk�_?P*=QM&O��
ib��Q?.xB9N@9˦GQ�-ۚs)�k "
UݓIz~fUØG0%Β�cfH�?�LW;B\ŤCq��.E�"{+Y2z��β�]pB失�,p龡hU%�SH�i[p�?ꊱ��
bZ ,I�9��7z
��XPN{)̓0z+-4�90!?+rgFx�iݽ@;&�AU_�cw��Ƨ?ZJ8.<�\T1�h��XYJfL���F I{3+RQ]c"Mm,hә�\v>�ro����@n#L�$Oe��|[>MۺLnan�R3��f&�.�9fYq�g�Ó#��xꨉ(��lV4n�(
<��W"�GN{\t���U4��e�"G_�_rHfo�y!Z7BP_���CsM1Ņ@|t*�#h8tɼJNG�=l[�xd��F�Ebscer%Dݢ �l!eԫ
~y-ȴZb ic&�x%!��`�'l'Z?,e~oǓ�ch|T/9^G}"G�%'qw3�}�
Q�/�n�kw�g$h\3X2�^G*_�Fi�F�crSNg*54mP_m��b?"RC f",-�{�1�h:dG�<>��}l.��} ,��+ىn'`$G0XD
p(al2`\*8Ct)>�^7
Hڟ���h�'�}�T@�n]5w�Y[��.^կW��.j�����_�\i��/Bk��,z秊
@Q[BH.3*/Oy�Y2V�.�c&h���lkki�Am;x��"�A([G�"*/S>ß_A�So)Yo�&�nҗ%DhBx
)-b0e)*
&fn��v$ �cķ4Gh+J�͚v�(�O�l&L;ן��g0u¼\ s$qKrz[Y)�2��S"5p����!:3 �l��Q�4Scb�d1BrT�^O+`8xw�&�Sg5�qUiFfR(�ٜ*C :6o;ҒfGRf4(R[�9j$�c�Kfo�T$d2{$0٭+g�`ŌDgA#A4\j!kir9x'�K?�=I
CN<}Ї/OT�Rxn6rh�G�ė��Dِ��( sBɗ!~�UN�;�yg!־�р$;�
4Q�>�$#�mc�I??WV���aq*�U�/ϓ*~½=ڗ
})�~ŨNLV\*&VʮkNv�
'33]�̤ZW/ҟ]R#6y߳a G-#x~&^[�F �3sz륊�N��RtqLSFbm5~ZZ:rmv5\�[k�(eF,Ow�/`хo�-)dx3ЉOgO,R�P;vw9xWU[z Z7� y߳v~Fݚ�>Օ�< #�-&L��RV[�S͕�:�*077["�7nIt;^^-حiT0�H 離���:1A
FR/+�r`ʝ{5a�)��J>�g�xe�ěD�c�;iXkfΎ�Z3?r6��uA)5��Bj�p�`A܁�R�.CN9tDp9e�?D緙d,n5Z�ώ/OQN9=hKh"�O)S�َCpzwAY/�l3㧉ewn#SeNAXE:2̡ǬUQo}�~�M'tI�ԀB
=v"gN4**~%'
�97�~;qՈچwk�
t3$ꇇ�.8�N+O��_� ��l�y-m~9ciN��R)t6Ai^xִyfYIJE)��Wd\pY��هXM"?1�*ѡ���ksܬ+͋W>Ɂ �v̱gjЍ3�&88Q,"mUk�/�Nߡ^g�)�HMU1�X=u2�RE}�
\O��oB=SaW-4XWd*Nʿ�Si 59� <ߘ
l6v�|�%Nq~CGúFh0{�@?hOgiq?n]X�YD�\6ʘ�b^@n4D\GDn끌!50Ud vEꁌ�HCN�1&=A�]F@O���Y`i�@f�oBQ/j\[(�ƍja[�+�ku��h5L�vu��_Xmo�*w�Ħ�N_
�8o!�ȃ$�,UjBAS_J(00?2#e݃Ϊ�};J�T�cH<���UIid�qL��c8/c
\/�P\Lx�}mz�5OS㞪K1-�!��.wWVB�> (Jn,�/LbCL"Yє�2-m�ʶ1M�$q!V�&-spKM=ݙ�8vT�3_V+p&A ǞM�g!b!IK�5t|h"EO�>P,E{,����_�|T�S]E�`�GK<1�2��bߏ�e���Gl۔�,�^>wq*��/2,J
ΑZxwԳy5���o JkLj��
i��x�m@9��ƈ��GF#�h�0!�vQ��W~�Ղ�;.�ʞ0�&%3puU4x0(B�UE`&{�d\$�Agߠc��FӦBD�LE�l�O$
�+\CgK�9O�Ł�lW X<]4�">@c�Z�J)#u�V��ؑe+i W�ث@.kg6�(Q},�~B�͝��ym��qy�ۙ}J硵�b�CfEU"p%ueƄ�据)Е�*��&7s2Y���hWcz;'��
�e!_ګZc6J˔u�{��|suj�
o<�UTH�|�?���HNMWչ'7ԎO㱼�z�>5$�,75��iE!CXkd6?=5Yx�6c&Nl�2%70n<:��L�!P
�K/@%O@O�ʺ�3@�ryk=^HF2��F%��_9� SU�#}�7铨е�P.���mNGX�tҼr
mHA|�Ηd�5f�|e�.>�?W{?wk1c^=[F4Ǽ,FC2A[��Z�1C�o�E�CK)��=q5jU�Ak"��2h!~�*+�#B9�(`ú](IT{v�JIq�@VDex�G�H.�"_$�_�o�7=#HBQc55 _dߕPο� 2Yd~9TWdsz�R9Ři?w7
opȮÿ|�>H.$�kVR�q;�=V?b7 +u~[px_7q|�%n\e�51?bc�Hēس^,wC#/˂Cu��3QQQP����&nOH-�v_�r#p`V1T{-y~�RMqOKF*8W�t�Mn38B�&=}�żB�>@D[6n
~)kB!JPrW?�C`O�ת2�2v^Ojly/9�tđI%.|(W�7Nxm]D`#櫶43]V:/U#O4
k"N�.�YT`$Ĝ
RjkЪiI$Nr^4m9p}>c�]k��Ggp?ʁ�jÜ* �>��j.��!4w-ݨ��,~dh4͘c.+_ Lݬ*C:�Kwm}u\V|�9�D�f
C�M�<�D�M�멅�.�4k
.`OLj�/U�]T3!Y�D�`&ű8U,u�V��}f{ʺꃀQj�ECkӈ^�-��,~_-{GUF[�gKsfw$��zKSbtJR�]*�S�],SGAN-F���rDx3X5P�!I�`yp�_8Y=7iʑ�b녃B��a&T@5-X {9��b"q ]g֙�%W)0~|��ٙ���J`�8dՋe|PrW&og\��ɔ6A)eL.A"�H�R��-}U�JMx;p-$yqNH+x�\#'Z])�]+j��He~|gK�ц-�
{m Kx),@ײ}@9�L.XGe�V�|Hp\!&@U�#K_`b5*1r/�v뚤?Ҹ?�q4��Y:py.#W
B-%�=���6ϵxURfCAe�-d2Q.V�7mu9�>N6�MX 8#q xIV&
bzˀ*_^�?V*$s�t62�sP[sf~��AA��}p�e �69"T�E6N>�38sHYEP/�4*g5(V�Z�ՅYH߇>)�s] O,u
\mbVQ^]-YV̷2m���=� �L����o�?�17.�i23ڙb�w �;a�p(=n�Ƙc�
/�"VO/:߁
e;54.7ۭ$1v$ ^��P��;՟(��Y�1��۱Fy+i,pG?P�$$ѩ�CEp�A�ɞ
-�W�d>IJI0��6� �bQ5i)�`b7]R^DD�_}Ih��Q��Ga$Z[?Lk5sZS09
�Pbݩܠ:lVGZ�ms|�QaO�yq,㈔Ion
�&kɸ��F Х͍[hDj_$��
��
!�sE\�-g*07rN�6&.�ƃeXe�Z^@?�^
zB+G�~��[瘶z^`4#¸C^7��^��U/_@FȽ
3%deXj(�ϐ�"qh()F�P���D;KBm�j��P>A
uC`蓢/8l�ARXHG#ʺAW�a�S��x�3;4Hd8Bx[Y3/rC�3�sZ��S$�N=H[��H]�vqG_Nf8��A7(
qO��~�ѓ].{$hq%"raR)QG^0ڱz�NtIdW.NEѸ@�6s�w8wS$"Fla`,CR'�/O�3H@(t�ǐD;»M[I�Rog�|��7dhOHs��>�n)�~6�='O
m(]lP�χslU>pa�!w�eP(zG2��w̞YͲ(]OGT;b-ֶ��-X·�f�Mf>D?j�!f�=L#^l+7\1յ(�{�k=~%=��*|��r�QVq �IJ`7�WVloi!Iumu=ZW|0/�QSs\U6��9�лΓ��VT+;,/Xiؒ"�=�骱a"$뫽Ne�9au;��\L̄0Ȫ�Y:.m2T���+h�o)�Zu({,?Kx>60%��K�}�KY�'(�mQ
!ciӘV9���ʓk�)'N
w�lk��Aiӷ#NHaR\�$CoI-:`�/,�1�PK،zO]X"�aO�@~@��QY9w2W�c{.��y^|6i1*jԥCSFV5&P�w#�P?Λ=�bح�.dqU�Ev�F| M1 �7M~4+l�9I~ie?3e+ީ]�V��l�[`]ս�dXѨ5�ns �&q;i�~g
&5$Rb�Fntqb>v}�_D�⻆:+\'uҎ\dM TY��]
C�imX�ȝ(E=�I'&@Zse+NN伿%o�I��J~E�JT͡@ �8I}ĚoY�"PQ�D ؍O_P�a�wYŏ��:b�zA�Z�y]1��vȺgH�6�M�ޗ�+�%&?�31Vdy+[!IR2CuK��^UsY�|?q�*�HE��f)
8k:-\E0�=Mþ6A>�$9?���3�%3,u��9«�xVH�ӷ,~B6� 6�G+>L6p�Zt,t`1}MDr:.�s!ָ�f=ϰ+�u �4 G{Unk�9qxJ|�JcjJƮuuHZ$v�Ӛ>фgMUj�8t>�8@2/./埗� ڴTu�_-Sjډ
}{�vGkt
�@FQ
u+��^N���4(|�g�J^ȼt[
x3�L>x,��F>E���?txo�{V8)X&^YF$cOmgFj�&PۃC�XkAkw
`YF<�L��2��&�vI hk�
rp��A�o>*ݾ
PHJ./l�O�y�al1�1X6q�f�eB[Bx՟=u@dp] Pc~*���6��HjM�
GMru�1�oj>O�%�L��C^EL) ��@
P�*="Lw��_uDnqf��?Ke� KH�|a#
DGYuRe�p��G0M}nJU]T?c1z6�8cA.�A�]|,o[͉#?7�xkZd8oI8"L]k�:-˛ٱ1�v']J�J]@\@�M;_z0̎�v�N�Fj��Xܸ[JD"SqeH�-
+h:K~�i*C�HCn-Qt�_չN�'j}�MJs�34(�o.ۣs U&Y=�75
h|�K�aG��*�e?E]9T<Ȉ/A�#n,��^eM�
WX8$D] 8�xFKo"v�r��0H-`Sو_6/m!�Ť�ŏۙ4(;RTH#ۺT?����ot,afIR,�sr�;ФEb�OØ���G��xŲA7��z:�X|�с?i�pM
Ă�!J�B(HQi$ޤ~ZX&��r3z�__a^灕GSLz
�~OcZRckWS=Ð�Z4�b z�An_�:OPPw{)� Jd&ֆuŞ�[ͬ"+�A�L$h�^�/j�IxJ- չ�|p�
Jg@<��A4b
$b:A@0ժ[8|/ziI#5�{��~�?Ǩ"BǺc2�P]ۃKqL�Qs,b Z
gKj�6fvc�B�:7(3wႷ&aBK��
4.gL0s\2CFFE։2S1p8!jF:K�2��ڨARW&��K�m4z
5 2Fk @n/l�Տ^9rs:m�lc~-3'<�LiMK�xI+3k<
Em1�yڝ A�^��<��B8iAד�W(t wƩeVߜ�S3)ȋcsU+k�\��WI&
^&�M_Q3, "LO���<+I*mÄC�7Eݜ`kd�ՖD��}9(-*aS묞4�8dT�5^͝+�d-Sh쟲L%$y�]�z0XMQib/Trk)?-ZƄ�]km4%<9tDϏI�bA#�=N�x}bhR�F�zQu>cPEƫ���qsܮ��1 1 }T3DNGLN4K+uvɠ`Ѩ)+�w�$�,`�|\Q�g1r
6k��
hdm*~i;rHV%�FQ/b�m��;P�"v67}1T
�tn%IzsXƶ�Dl�.ܓ�7�41��`tL%ʆ�MŇWv�)',A8f9{89�H7}�u/�N)YB�<~Ӓq�M�i.
7NY�.�mwb4Nk:YVC<4�ॸOv� tP�mH*)Z¿7Fau-6`Ǟ
�B9;�gҘ.�nD?)Z�F=/В�d�m���b>��r�L4�dۛ}0 Jd8^�t�
Y|_c؏�wʻaYqv�tsӌ Ɏ=fD͙@gSVڹAr2覌S��^>Ca�X�ZO"�8n.A
l��qw�3�_'|'2+:=TH`l��PN8]Do3؋�no�`1]��-_xe-���#�.X�\r�oShzDXRV�ulF�\q97tI"5::#r$���>d�f(��ݕ'B%�;nݝT�(qȴx>avUؗO4b(���E�!yQ
Ϧ�)�1�~@1��J�qh
Mb��Um�k�RBw7d[,��[kґ
+*/ƈ)ծҪgw'G<�^F�I0/R m2+c:uϽ�:d~6iNT��ˮRlvEX6w�GsSH쩡 B4-x0ʂ�}c+�(CZ@;|��@k3�b.bkɐctY��!,F|7��&x%^w9��$'9H�hA`� 'd>͠Tfd��V\{LO
�soԧ
ܺ��}w.QUd?w�#Iڣ2Vډ֣�C%T*W&Whjct�ZnkR"U�vPny�o�$�$~v��n�e�\6L9�
-,җb'�Nږ?�/Z5��D.�ETQ4mAFB~R%20k+j�#'��eZӧ́2AKKd�-D�v7e^n�a]ӭB.*xw�&Nx�P)�4U�tiqD\Iy3ro8
F�Z<0ͣ։E/��|�U(-
JL+�kL��)�D�lv'F_�a
�1SRR)Mi@q ��h��0g9aÌ�XAOs[f�h+DLbݵv�nW$|{�XfS:Sl�^$E'\~��",UmM{�yt�X�.�C4(�┉F�&
[�58n:k[Ts�9j4[h�*�uF�*Q9X8�YWjPB@t�:W̐��b�����%�.S߾&)�]�g3�?)�iKj�P�|r�ƤkB=qm�s�$'2X_�#�u6�MP��Y�ãT#di<%RT�bM2G�-QDuh2lj�Ҍx++zitH�Y.ĩ»@]Lu%Qx2l`ꆜ!.0[ei;FNй5Ď�(սe1%�̖��n�ܼ͌9MW�P�ׅ9JVY�7&-h!:3�҂Hrdy��)p]}sŊ}NdcF;}H]1=gt82ʜ@�oš/p`% {wo�&x�'�`t�ܻ$[�rP���WsY���fdL2΄q)!�V�H��|kAQBGJ2
2��<]h�wvc�?�' -�Wxvqm+�nuJ^HuK`!"�3R^��HQ$b�L*Ę2%]�anք{k$]5#oo"epLAR�SU�7ܯKtUשZ}vk||Yz�7Q���vr�"HDw|b??NSg=W�my^aK|=b$�q6!qї�'Oi��ee��w3d(
P&9_q� Pi7`,8W��
Vx4�6XӍLL�`قב�3}2�tb?'ʮw�`�zjx<*�=&�
>*0?,
�_�eÇAo�t"dv+X�BYKNwr�!IO���Lpt_.wX�
ܕ#uTި-�xg�m1(3+*DY1���%2[)�7}I[ެ79�^�@i��7:lV�ۣ�f2� M4/�(Qz[U?Nh9_��<�LnN :Ww`罧vAȷ(!hM
4n:]!�:�Ν^�6�{e�^9*9���ok|V�$K09iLmQm8{�c�)�(4u
~��3lj�_�ZzS.��f�6=5�˚֥O�磚�mGc��0A0thy�,ʷGwANؽ:׀%�#��S�ʐaj$)&.Mw�/5�vx@^ԔH�g��fyeB�+eUx�ygGG$H6J{EPE^��� ^z�*N�.Oغ*
f0v:jQU�af��ulT$9�T݂ʙ�Ya�|P/�i
Qt)JB�#GT�8th���0YaF��BhR�Wkk卧XMw¥q:�u;�ɺǖbN[��=[w'ύ퀳#^#wK7m�ۅf�T5Xt��8\8U
lp3/NK-]-Rz~���#]Eppha�2�'.~K~2%<57/ۛ0dd o?v'
n+rrtGZAqTݽ8[B=,Y)@Le�C�.Wׂ=mR���Nj�`fk18,i:C]Mki n\Lܟ[WL�%6�x5⧊d%LAlvb=Bvw -�R�>N]t| 2(%l
�!߃?Sy12B)�DEdA
�ؿ
�L.)J
�v�M�iBX�𞡞 T>�9�F0y5G�K�ٳ}!���l`cu��smEN4��cNL8m$&�ϦK�x? *_PЙ^=�+3,��:Դ܈1洬�
F$}Y3��i;ɝ�jN-L�-xڴV�1!/zmڪ��6 -�Q4h3�
Ąu�[1CVl*bMu�0- %Citȃc�?�'5ӄrNqDai�%-0;op=6C5�OH)`qeC*t DWD`N��
hiʬSIә#ĸ�|z@Ϋ8\c\�|�
�5]�Y2d�3>`r�;�,jeaKbW68MTUsFd^�P��ł� )Lj��J�R44^�#`ݺ�#s^Ͷi3�bf�O/G2?y0�V��Â&bxx@1v8ribm b5+�Z�qoT$�~7ǴVGfŠo��zg\8å��6;IV~c|�{2�o
Cͺ2B| 0G/�áD9-/�@�>.�ҹΚgnȧ,>vX�I�$u�(��b>�[|[;��THðT��2]6�=)̴K6>%�)P"x
�� szZĢg�e&{��/�-
�٬!7`m�{ً~
\�@8�5�:<%�P4&.Z$&|ry+, B5ֈ'kړ(mږoDil=)[ͯihޖ]&�q8C5a�lyЇU �/6ޛ>&anTNZjx?92�0DWEX땊O2I786vY5zDjԫ_:5ZE\En=��64G)6f`khb�D�@U;n ~0mݙ��Ge5l\)�m|�̦;%LЅ4Њ�];�Ao�`�;�ͅd0Uѡ?H�+k�=GV�Ŏ��s^@֡(YS8��MYJ �(�X@0G!*Ts:�ᱼy�
��=U�h_i�:h*G5x��&s+4`S� ��I͍x#�}Cx\��87-I�Y'({
CG&#
Oen.�f�eInnhUKzف�leb�2BѾDHpc0ly*`{�q�?>]�u%3Zșp<�]KI�� ȼŸ�L�od$D< �,
`B2�L D "n�ޫ{
6�0�nUӑj:MߐYA4;8Ptٓ=c9kA,[lJ"w}$�nGRRHӰ�H댙�٧�R TyĄ�Kp(0YEx0Tnc
(8fJaPdX0;�B�
.փ!BΏ dMi�(;��F(ͪ� Q�եd�,�)x��Ғ�&[:e7�hůK�ȗ��xF��RZ%_p)xo&�d\|ȝz!B)hY(3~!��ab>S�tCt~�?�":l)��∧jB~�!L�Ve̋?z��t�iZ�u�t@.v���~+]+�d�`=\x`�q넏pcD$�R^7㻁�#�*"=$I$�{�T7B�N5$�4U笗ދ��|r a5PhL`RDA~2Yk&Yf�BX�՛D��qxC:)KԺh`�p&�Dv�
M~�V�T=��iFak�F֮}䭄�Z'2+mB)�e"GL؍œ�3K�[_t�`u6ׅ�#7G�|j!h�p�{h~2I�@�섺3GE
�-Ł>\):YA-76ݳ%�%[f3kjm0z}!p*��0B^W_9�
昋5,�P�&g<2TU
넩(p�s"�AFA |Ûմ?*A|Rg7��Q�R�}pj�+Ձ%Az~�Tz_㖐E��Xk
L{@u8vMSj Y�ݯN*sHsp���.\eAS�?eh�M/`7q3b�|Sg�VLJ?lMkL�!5{9�.�1'dRxp\ EX�o�-xAr>�Sr@9$ �_pS9e36���ۃ_/G�=�#NѳM)P(7%>ӕ��g)+(Z�}`ڙ{�11$|�{�ܮJ{NO(C@�kIws�o ᆌ;H 1'Z��a8oɮc8i&쾴y�:�C8$"<�{Q~iO�$8#B-#�R[*$3̔#tc�J�oi��ArWT1sͯ:-J!f۠ظ>N_֧
l~��ؑ's�Uz��\g{<\7g��0�1G\�b�)D#6�r'SE�U�=ш|��sb)�w!H8]N��B2^ϝw=^՝PlwAVN��SV"�^�t!5#
rs7f\;G�Y>2�e,>J=2kN#wŎ-!8{P2M�Z\ݩ
�.=.!hP�.KJpyP�0�}a �y�=YЄbvy�I7XNv&2ӓ̊�v|�cO�7>ZJ�Ű�2|kC7HMVX)LvJLq�rYL^QyPj�jb
ȥȫ9/=�'�(;[���wq���M��b1h��9gbߝA/ӿuTqtY|{^ט�uJȄo2&RR\�6>v6�?g[ڱ�^�z�^#zV8=ۘ4�%
%�>ee5htҥ dE�&�Næ1.EQx6��øͮ�!4dejm�/mz�5Wi�j�-5�)XˡagNu�}r
ty�dɨ�3+x-4�Bh�Ug�q"�k�<==N�x�On+U,7��ӴkE�2pf
*���/�ov-n�;0�-қd#1bd�F�H�-\O53v'k$^�F.
*8�m@� U6LY״��4^:bY���5�Anq5o&Gɱ �
�{T61Ԃ��T
�3c|1,|�%eVjZUHަW$@F\o|��,Y#hH
o�40K?�9�@{LZ�KpʈDy2Ur~C]freIry'��| b%s`k�Cǎ/Eٟ�}`v��Cd]rcŀˣ�UhK��<7�E%"ɐ�{���/�ߣ3)im>lk�b�:`02Cc}[ai�
WW;��[ƥ3wd�ãO\FE�I�ƒ*�T�Z�&���܇pq\_�G�ZX�{gy[y 1a-}4A^9eb�"}�
��m]Kz�֢~
EɤXIa!T�P]fh&.k&z|ĦӨR�zLX�J=9]a34� <8{
05I7=vn_[z�о-�|4`I�d=i'�
!Đd�5yƨ9Iͥ�O;�ZI?y��-E�H�W@ë�+ k�v`&x}%GXVGB/L8~�|`�Gnճښ$۹' �4%;�,L�^Is�=:%8*�(i�1x?F
I-C�2ɽ8��UhzNܑ' uqHԧHK6=FB �JoݩXC�vkX?#ݎ`4�LYhm&`$lӚK\̈� pl
=WKr,�)tehxm I,KA�WW/'F�9tIʡ1{ZR\h�
g/�9'�!H
_���lkh!߂ʫ�ܿ~Ö[�riu\�?MXXto[��ĎOIhDC�V�m"Wp~ѩx]Ŀ��e{~J�ȑ#\Дt~��jU3�x�;P]1�4HN}y;Y_pk$e?|zS�Zvx�A6E�u�`>¹+(w{S$
�b[8L8foLɓ"
>0l,Ml`W+F�*T$c�j40/�Ni� D]o]CXӅ�0EDc�THP��~^Y2/�?]#n�op�˟+'I)T���z�Wb:g_�V��1^K�,hCG_
H|3|KgζWo2(�aw`>g�]�(J"UJ#�#�?ܘ*q�&nԗf,n>�p9�77\ ^��=ND�aZf}^\ws*!M~1��VLWwxxa$zm�HJo4�qtP;y������ HYR3�!%��l'�O�=�bԇ|unh�� �[^rgZ�V=}}g�*
'h�x1?(�3�u�j
J_��# 4�$Um5fCb橛-\Dy,8kK�\d&�W'�^�p9Cm!C%W�As�ay �1{s7LYy?ނy5\VF�U}S&fm�QvNO4f8�ٴó;֒�7IԘq�ZJQC6�-2%(Y3c7��no,ر�LuWE/FtPTBD�Ǿ
�f+#`st�c;� ȝgO:p@FO/p&j!�O�wj<�0~wi�Jp#Nbd�b�KJeb�'4�3��6)7U�W8vk^g�lnkZ>v,p�e ?�bgjP7��A�zJ<�RYm�E-�DW
6wV�P:��.�T*?g�lGք�})G^1�
1�l!ˑ FB@lB04d�mdۢ+I�>s�;A(x^l��vT MZhE+|&s
m"n8=q6��.���cGb87�<953|�&36x(HU�Jm*H&݈@�3D=x-%":n4
1O�i>)Omw�%�SE��IiQ��?�����Df=
�|A(`cجC�*DŪmM%�_&@C�r;I<ݶ#�uן_�|ڦv]��IG,%n;`yⲕLg fi��s2DZ'e[�AU0ޤ],XFU�)iRӘP� �hܷѦE%e^8klmx�81ʝ�8O(F@�@;n4�Aky�8klBWc��IY`T,9l|̓<0�$n2;Gn em
D94 "�y��):EkRۆC$n��Md/0C~@no)tG���,(%tW8�~���kS<�/#}h<��Ej^�N͐H ҂+��cz(:Q�@8L�|¸um/ӁzYb+�bN3\䲪Jt%q�-MsZ,8h�˯T>]g`ـ���/?Gq��/?K�a'�Ek�1�f@�z:d�3'��A,@ǘ!�ť4|Jp�ʏ8b�"q9H_!^Se,�DX�Vp9v }�rtJkME`ę ���6��"��p�6װ]td05/��V.%s�߯4�h*l"�5W&�[MeC:1�j#"z�~\ ;�ZWe1b`�UHZ��x|8p7\ǾH5�-ݫ\�l6.\5n#R�K�0[䂴>��4v
=%f7YUbݑx(DϮ $p Fv(⪵�^M�q�Bg9�x#Q��jUw��ϥ�e[zI32��,��"T8�w)k=i&Aj_S�d�m@ܗ=0��o0sΚ,g�kF�É9&79>:Bes{8I:&ˆ dXp�~�t"�O+l.1<ߋ_tP"�U�v_ƶ!l�oZ\U�}�ԐR
j:�HN`��,1|G��2�H��/
p�:�3I�l_i��Y~H犄5"KڙWH�!@ޯM�јu�^#QfU51��גf9Y��uǢ@f^�0L�_qj͈�suqϷ�E�m�q,Yc[p*/P EIps3o6�9Rt#h
!<0>x0Iϊ�y_/}�/|�%WnV5� �NbU/OD\�Q.p2JL�4{cEvC/9u&�ti���2[3�}[�<"#LNE�J
$GrD�Ofp+
5�Q=xm{xX"F�)wN`J8V<�h$'��+��⡵-2�y%�0ɺH.R1 �N0E� lƖ/}�5�7 nC�g!41h+�=�R3X;p[�ή�{<#d_E����Á?'�*Me� ;B�s#;Ӈ|�M=x�Lc잡o�v�^>v�c1�,,Ä�s|�b�eqũ:�75l{a37J�Fk�2Ĭ�A~I^l!`0{G
KKCs��B_�x��q'>�k[�$�ھOw"͠t,&OT�]O+7ڎÍu>Hd^ոLJɗ��ق�$|wR6y.}���d)�dO%"?I4�TNgdʾj*
^Q��s�.ސ4#Xw�;@5�[��tbߥV��q�lsrT/�Ԧ&ߗ#.)
%-`N9`1٠ѽ�#n7AǶR]XH`
uʜn?ޗi�4y,w9K@��9c{�(n�i�uV���SCo{͞E��[W%
( yeN�Fw�
M}Y,KgvCܯ7BQ6yt>�(X�(P|;;fq�M^kl�KRz"7��5,j!{*�X>��FKGcr�RdЭ�"䐵Y�>^G�7@ic�Sn�lUTo�=9��cf3��s�d(I-�EF\ЙR]sG�;lީ1^:k
b
�"v����K �����Lx5hykRSٜKj�e�4𒃪mEW �܆'G�A�hS�!�rMjg fabbb�0E�8z�hT��1T1U�qi�*�-�uҖ/���KMyŹa#8�64+ӫګ/Lv8m.s&Os�=i�(���R�543 LXd�0p*è"ZӍ�{bh�D##χ�XT)��fH�pĎ�غ�n:�]H0�x"tfph�{�����Ɔ26Dk�:ft�/�g=;��)�Ý� �(�;F峥�U��U�`�up�7�xR�uj_`9ɟTA�@$xh#k_�jD#xK}Xe)[*8�F��$�y>~뮈f3T�b�*�6F&�ċf�]4C}PP#(gYg��&-omM_:Į9��2 �z� ĘTN�9aN)Y`R%�y�!*`ڊ
C4��IpGHbjN�L;utnj:s7[GK�j�"\Q,|`(8撲ADw�͍]]�1j
S@%hYwX}�#h��{�)~G�c-^S~��ZDе��Ɔ�#>>ҙdݢZ\ƪ���ɧ(�>*l?Ƞ|�9't\A�8@�Շ��io&�K�xmM}Rnf.^��03Hl(�.*9~l#|1-OFa/ּh�JAqpnu m;:bj-�n_ �YO,B��NM+&�"D7ӦwV�wiI VHԽ[�N��k:rYeڗʕ�Һ&Y_L�5�o�JF�aw4
_f�D%��=qɐ`e?r $7Lj
ŀk�*ƾј"k��a?�y #m�r�@4zm�ŪsHV�QJ\_w0˯X`�>ӡt,*bl�ٓv+�xu;�C ;~ H~7��LP[`1&5"%8ӽ$~��w*8Y@wvalc;�~'R$$��e�&�J�F'�,X{ZR�*]_�{S 5�&/^�'��բ~]]u�B�Kid ��1M*�Bzr\�ƣ6��?W!��29�nD7υ3�gkg�hlSsng5��J8@\Qdi�7Xsy�PBs.d��,骨D�Gw=]�U�r�<3Kh�w}"��i�QN Vle4t�̯߱.ZyMdcB��y\1�t>\<9~�>�RCrbw t%蠈l^@"3��S&i�T~��씝FQ(owTOE,�w盳'&�0���ф�7�Bt1,s6P~6+2#H$0X'�8�0�
zo�4K�kcwCB0=AN��'oeX?m+z.ۭ#�?%*Hjqg�E�X/P�Bl+&W��gD+Yl!TDs�Z+Q+�u�7 _C�aUKu�7͘lk�Xs�|ӓ5jw9/�Śe��K-̚6sATń:ֲm%��wF(mn{*�Vv'�� OqzV.k�띋=G뛏43Gb�nk��*�>��A�f(婭Ƨv#�lg0*J��U�hfS毯(<(KR-7#>ˍWz�J�!5��hҭMcw��!�x*q(n|�u(c�24tV]�Rs�Qߴ��B̩l!GDXN?�,1a�}�LΥӵK1;փ6۩\|.H3ګZS88dI9�C.xAiCk&�#n"Q�e/RO.GPe�V~U`2r4xd?>n0gL!&:��}ʁzyDaY+W̒\6Z|�&zZ�a�Sܔ2>4�� 뭠����
y~�y�w��\)r~6\ȉ(2
jon0uteAFy.a
h6dq�9"A�:
�>wt=7/xVi''�.]s]�{ T$$�MT�@#+wB�)hϿoԬiўW&nI�RT�&M5�VhJ%}Nu.5�3YF�c�� �sCZ~%^ViK�2]~���SR@'/-SWh!��L=
ÝTJwෙ6.H�������$m@J}O'4ud卻:ahZPdڈ�}pMlq+|V�H~_{�3kxt߬�Y�;�[�j�Rc.t�s�e���Pq��St^n��]'RJ{ {T)ٗEG/�
Lϵ8c\1h�t·)d;a*~k�Ѹ�.!@��g963RJ𞄐�uU8�Gcx8�7_tMeU�@F:qp�e�"U���BA3hO\kg�d+;L:AMB�b��''�T=gsiϔpO�20�s!qDǰ�z!b$2sS�P�im�5ceۥ=w7(�xp$2ړ�Ypn[u_3�'3X>:CoBۏZvKTkӃn>P0xs:qKLۻ-�v֊ ́-�nC
LӄM[~�&MRR>F��NCX�v�;6��?xX%~��f5Pa}L�W!�Oʹ@rn<(l�j2i;o� wB�!iI�oϘ=,�*�zChNv�K3m�NV`B&P�7_
;�DQ8FL�cnK@,@�^vZѮ�Ee)_hYu̫hyʿ(�`l߱y]y�旙b�s!vJ
?p؛qBa.!�ZV�!�1h)MX_Z�\Jk�i��gC�h�Q)Q�~52ȝU<:te|NDRZ���)`%R+x+DBɼ�^Cy?�å$ӽ���(4}tmr�?x>d�ߧ%Y\D]�T�sʕט
^Ԫ�3c��K$ �1o}3�a�0X�ɕSS|�jc(�Mn+9�ՑOhaܟn�+�3w%m3
�g1iP�I~���O�UW
L�vQ/�N�ã7h5�uXy)OOÍ
q
K5,%IK�u 1nhlß$lp2�dIRSMrH
JtBot�I]]M�ӬÿsIB9�ۦ|PIjj*tz_$O@R�Y:h@F �|89�O#��1��S*�
s�jIg'�}}tnO5`W�
͙�I#2�X�ns+.,>&�L zq��7|2."
0�ɖ�Q�D3y�q읞T�S�g0`a@
ퟃ@LT�^
�_�סlK>V!m닂e
$"ݕv-Y2&l㥊[;½��~FS]q�w{�tOʺ͕λd(lI�ve'yъ�*oI>JPj�LlPiGJi,J�w,WY�>ɲ8G�OW}a!�!&+,BB�z(:kSA�b�&��J�Wb�*�4έ�p%XO�#V��{R,�T��_cշWgB��qHTe�rʘU�~�o�zBnXY�P)a�jCJ-�]��ڪ�\d���Lsk�N)��7=r|s�rsmR$)`Һ}kpB߲^
p6�l[6"��9��/ڥC #�,ay釨GCb�sf�þz`"_dإx�,P&8�1EfΒ&9B֚W=Jyl�e{}z#b)�ɥ/(w(66�BīVVb*S]
rg)X�\�)4m& p�"�Iٵb,Q
>W&O[Iv��QCܷD9KpOzm�cV��p|�U*$kuX:XNJ
I;co'SU9+�B�Tؔv1����[�s'$���+4 �5��#)oM�o֜
b}��:�m
oȠ�SI�C=�P#̕+��)J"�J�Rnt�&��v.:I=קKv8^ZqZ}�L=ӹihݰf@O���
�;XN4JY4FRBt�imPx�5^z�]$t�n٦ށf|u%��G
74ޅ�}] :�xo�W{y��� 7CoU#<�S1N�ms ,߶�p9
��$2G�-s�m~qh�8�r*XQ֮(H�söV?�O?b.^7h1 /�Rxo#�<ū'͓�7�EeGg,c�}8crRdn�o�-&�ɟפWtKf|�mf@�y=<`��YDF�hLU+rR5V.2Ś'R�V08RC~iu^Za�Y`�q~ly��dUPh=Zto]�紞_����
wIQKۻ ڶR0!A)!��/n5d�'L��*sMQ�LEN�6j9^M��(ْdb)��O�\tW2`xm_�⒐BDH�%>�)�|^a�hl"o_z�K1e^�y(��#ҧ�UԐ�S^^�+`y+;]]|���'$M�ɮ�^%�@�/�`Ȓ( NuzC]�j2,�3/֯0�F�ލ�v]i�b"�Mʎ�X�H|:�~Il`FI*v�[D�'3W�o4S`6|���LJ@
S{6�.��Ts|�`4f���չjQ]$,�r��5\|
2z�du*@e,`#�#�4���`X�{u�L�ƾ҈1�diڶK{�q�Ze ���Z(�1�(7�f�i�|4�~ĩ��Sh z�DҗUfý4q�,%Ձ&|�KL�\U-�@v!\Vx
|Y(337
4(xg"6ga�ƖC8&۽�ă�i.�#ҲNTg�q�8(U��)uآu�8+HѿBC�WJ`ʚjX�8�9e�'#�a
^�1<
E,S4Ŗ�4DÞv�-3g�_T�0�g��WZ�'�kBՂ�=0�x�-ʖ29J�$P۷'CH�\M�GGT41Ype�uw�L>Ѧ=� +�?- &8x��GT*L��ΩNd�P(`��?İ�sQ�SvQ|6877gt'5M6��H7(�d�H;Aq4$dl{>Ԉ�u��RJ0lLW
Z1�鐛 �-0Pw^�sI�4
@ХpL0
\\[T�v~�*d�-8^�h U՞V)N(f`g;Jg
&�Lg�}Ò�Uk�7,@�T�P�28y�[yn#o13Y�
W}'$I??mbٙ�#rnhf�M QD��>�O��H�
z�J:x�tKy�yC>6rg/iX4�'8+cIGm1E/�ıGl/TH�ۿƝ�Y~/D@F9.Ɔ0�5,�`+@h�6 :@b&x9�/&�SI-�2�Fc�i��[2Ȏ;Bu�dO�`�cT�FkO
y9{W�\a)/(7���^NR:y9Q͑Q,)Fޞ=�t�ݳĥKm,^�43�n9}5 �M|!40�0v)9
8!PV �^_KBEVZ��iPXw
*��w:{&�u*IwQ��:�=h(`7/.ߎE�fB�F�_./XF� `!٨�
Dz_5r1�n~��aw42n��#MKT.hG�T3?5dj/���-�?zFH9o-Fl
{B:� G�d=0$bI�i&�SQu_q*"ս8_o�vsV�gO`=;D?9|og:N~þw�jx#G;�F6�@y7\n*ͬ4��$eYnox�!ᒣgb�Ӹ��kV�q's�L�"WOk�SCDv�8�C커�[P���4$0�Sj]Ԗ�m3@>�|8RӴc�f�e�TID6�w� aW8U zaE4kл)gc8
�JE/-Z8:g=HB ��=#/nX̊�''/Q>E��_^q#|ے9�3r��ɵ6�<�k�`V*,.U\�@PY�G)PEH} �}͘m]!v-%'Ճp<>^Mm�(:qG�+�L�^[8�[����b6b=�g2H�%}ϩsټ}9cwf}\�7p$
�
k3GCDJ�r@ÄhC-C�tk;w鍷/ GMHP<;z-u0B
�MsGU�3iW��;KO*S�&1TKmS_=bTL%2ou7G4%z�d6C^� xlI�p�A�w# x��F@�݊R#pgk_�
*�KksKf誮| _sZ�V�=z�}�_>H:ZE�[ؠ��b�fe
C�'�uFK2�#硦㝽-&�g^"狦휆l�Iސr�I�,�u҅1xnH%�
S��X"(dZ05@h�$�=E�ips'3�MK)H sr8S�_
XeR+شb[ŧF]{MQy�4NZ'+~�aXs:��a{_u1[<{JMƲg0~iV��?TmEN2ED`N.�[l��\_*�̢Ww��!kj3�x�"zuGz �FCi!�Mf%EYv%�oP�I~,A�? �čf!A
!Q۫,$BL?���"][T7]�MuLI�g>-�/94�ղRcٮsL,=@*Bw{DXyMMHtO֒
ai�Y͟�խ
{lKH�|=O27~y-�!OF�p,3=#w'V~g�]@+ "�Ntrz*�x,tr>لx��|;d8Nݥt(zȔ2.k�vVLUײɅ07��圸�>ZxcK>p
2$_�?.c����$]-�/Ţ%Ԡ�>�I;j�Z33K�;a�㬟}ms'�:�#s.���Eu_
�'g19rGO']�KR#!RLÏ4;R�jó��罧e%e"�_��G>j-_��.ݨ
Xt8Uݫ
}�GIC6^N sTh�2�6\�>��#_�2S,XH<>�Pj_d+
L/E�u&�]kK�z(�sբ0*h~*��tINS�p�.ؖ��2sՏeF�4Ǒ{+ pIL"#|媆>u Gc]^<)V|(�L&H��-Zf���dx�}ߩ%wW-J[)j��|g8-.K~zɘݏ]d Eg�\CVs]}ziG6rݎ7S�f)?arji+H��?=
ݬ�{Q^o/ʒm+Α�&�?BE�>=c+Mk^55�B��r"�A4tH��zYK}ܝNQ�ܔ� �a>AD`؞\Z=��"}0!6�|���ɭ~8��|GFx
U*�*Fۈ�&ᦼ �s�gLt\)K��2cVw({7��M8qǤ~�
�yw"H?AFB'6�̊³z�W
#�tN��;�<�ӁEid�b#nk��� �7@-=�2ʹ0~�2�g�O���w9[b+41JU1��ON���A�J"?~YXuHM=|62(r�_aɩQ{�?ej|RI@2A6x��~'6KT,($Tx)0m}]��MydN:1P�v'�F�CRqrw;;ɋttM�NP�T�TY}PN(P�/FE2ŽA�K�x
R 6j�Ile+>�'�)X�|� 桏wZ�AZ["E�$��&�A<�|_N���¹b�ׁf[�X�? KC 2ĘpFc1ǻ::ApϢ+t��j.,!Еc\R=�ꋸ`5Sh�KAMat
0S�O�{8{^Q�۫Px�|^8 h[J�8���
Q0K
Y���57QdcI-"M]�3d;gk�B ŀ?��x;﹔?F�:��I�ùɒ<ơR�{Yv�+�l֠}ɘ
i,3*)1b/��ŁQ�O9dѷ�[�5d�eV8){w oølC��nd�.9%yNe7;P`wy�HI�=A/&N�Eho�HsaIZ,Ddள�ۃjQzx/K6�!>�
;DӅinY�l�ӧ�=(@
1l�ͱl{84:��1uX�'K�8tJn��dBDi��U^~rPas:4@[I?�^��@}5P�tT�FÃG@|]/C}?4Ҝ��x�(wviu�LD�ͪFA� Z}"q8��u�ۣ�#?Y\;q_Z�3v&]-ƈRu%'�/dJBJuuD�Q �HaI?Dސ9|6D5�jf�BP�=p��
;&L>|݆^
Fm]�|nL�"IIE�P|;a�P։G��^#7\`&>OEX}GlG7C�Djcxi=
Ħ!c�XvG#�9x;NW^W�r$Y8Q$^gȯḭƗ"g��{ǘ~v彑i
�QRVd�[n[MŽ'ono{ʴWcԵ0��^�}^_W,μ-%|��xh|6�D�h�ä́��aj�|W[��+h�X�Y,y�.-[�H*nT�ޥ�s2oqEm^@ "q+1�?%7ri'`_Gjx@Z\�cQ�pq�£�,g
2]C�&v^e,��+c�
{|�W�
bY!.;�WCA�A?oސ-a8q�aB3�#ׯ�ۙ�6cto�*Ș?1{ҷ/����6u6C,ou,6&ōA@XH~fN�K�f�HoV$\}c^~]uˆ�3œ �@b3#l�Ki=�_^ټN.R⌝J'7��;R:���)L��Ʃ[va�B_�!>{_ΈP�L!�CL!f3��.rz96�:և{r∳jl
R�� QOO(c_(l�[b2]vۥf�Ʌ�N떲T2�?LPpJ]Vaw¤B_5�=q/lPDN(M�نY05&ד��ioup0r�~AI�%�}7aP�zXFJ_Z5CeB&Z,[fl\gBL/2܍+Y
5�td
'ԏ�D�*.WBHI_F"�wOv;G�ۈ�fV��0y1�FP���p�y&;@mˢ?TqLO'@�^9�iҰ"|MAvysYc�Gc�d`FPM��-�0�Yvp\w�h�ꈊ̲'mgbkEsX<�||B�.qY�.��W_���.zR5@5tHbE�d uCw逛koBG�Hq�,�o-��i-}N��d:>pbJ�3¼AQtc"E��#ng:�qYJY�Aʕvw;JnPs!)L�3�(ƕt×͑trQ˺>�vxM�)X|(n
�s�e
_[4ťp)sC1gEl9?XO��u�\喸Qфa�xr�7I|�{ûji^�;`�ƚ6��r���5�
W.kzBԐ�I%#)�iӾu��8m;�{8P'TS�xȌ©v�}N|ΔQJ6n�ыgf���!$jm9�l];C-R9�V�mHH9ҷzI1(T1@!t!Au-�YI4[K���#z�n�s�*6^-3�-!B��>LDͻ��nƎ)R�WP�&�ow�$[�/yN<�Zmv5�XA��{xű];g7l)�Ԍ]�(9Rf�-X%J*ѳ7�tٻuс!z��i,%ar
&K6bBz5R%0�Z~�i/YY���GVk��B_@g&�0m~��NOy~=AOþ%7v-s5O��# ^q`0 >h�;���]8
Um�$T`y^c�9�:Z�?p-Y+nօ@�L~�Ԩ�ڇ��'�Z�(�U�[z,01YY�2"_|("M֎0Py2&�}�-Yu�j�Rbʁ�R᯿�"ڙ}:M�jY1�/⩢IJ)~t;|!��zN껲�ڲx�i]>�
�UKO�
۳^EF�0n^��jo.�>eb�D�u{RΔ� T�jW-Q|\E2�MSD?��&ʗ][Cx`�џh9EXOK'Qfk��E�L�$�5HH�#�%[ҩ��"?~,}C@g�y�P!ԛ#zc(2N��UZ)��dڨTA҈p?�pvF�Ba7�{;!8!2vA^ ig%��яY:d>oHP�=)0u�b�4.��%�ohr#\ =-?�OoDXT�e m 2kF}^�\R�̥{5ZNx2�pOѴ�VY6EFQ�;!
?�(&f
$V^=yJ/��rDdqC�5vH4~_L�6{ǥխ.m&K��!
n�%,Qxu[�cd�RnZ祏�1y r �<~DP Lss�����dk�lIH�f�^A��,8keH�0~��AXmq�=Y���\]۲=�ә�v8�"�xn?͡?O�ږtKΠ.c�S[A3ߣyLJkyu�d1 B7DW{*cy��9�J�VVOUx
+T369h��oq�B�m���V�ߙ]s�Dt�= ?u�2P&@r9+d!h@Kr�H[״/mZ>Mm,.^3
�1<��ggw*��h�Rces�֘3H}l`_q�bvȌ2ac�1Y:V,q]?*�JqШG%u9w�3
"g*I^��ʴ?�UdڢuhA`msd�`�g�9J*HM{�F,Ra�>AZh~´K"9
u`�C!HF�r�&ƹlz" �EťJ�W.�Om�u�:�lͺo�{ҦQ,�?�`'~Ef%'NߠRK?`q�9|Yp+(zKoE凴��W-w
Zq
e�2m�j�58o+�
oOϻeyIkE�
NX&\G70C"��;v##:d��*��L\e@��*@�OMmճ'7$eqW˰tRZfQQDBR%�+@T'4=�0ְ�KV�6(Y�َyS�@/R7!2�Ng+S9t{+�rC�cN^XZ���}eՕ�Ux?r��R^C+×��.F �X�J�c�-Ea�r�/G[!9COVwe&GX�_c霨[
ԍ��UTm�,^#EV�w;LT�!m}
0)���dS�iqӥK.|p��Q����}�~Z^$P;ed`+[X��8�O'sM{+��UUdq�l2H�O7Rˉ�e��
r/`z6_*��Ы[��^�}c�X^ڴ�6[[KLD]x�?�x�>�'G>ygAj[�8ױn^C|H�qls�{/�f{dۚy�yT~EFmvii
T��99(���r����i�Ϛ35od�܋l�uK���I�\�
d$@)�2$!�pL�戅"u|N�7�S> OG7�E 9�.Di\ş]�G.'5⸛8,�WP7A�ȯ�]A.^-�p*f/��`�
: �g$2js�\�)w`E @s8w| �a-|2J�+�Y<.#6GC}gi�k�ٲ@UJ�04楐{;����$1
d�J/NK�|[�OpF`_#պ5�Y�
t41 n�|_K!=5B��Kw37:ζ ̭Ȗ7�J�SjL�|"s��)�S"6(�,�|C�R�$ 5,�%�$f1Q#=":-fda'/@D-j4lB/2);#gX?fە�R�:_�-
�-DF~�XsĄ�v1"aqj%Ygt0{�A6!S꧶'Ѻ�5w6-(pﬧ[.�qTX)�~�wwL`7i=yr��vs�DZ0��Cb/WW�=7t�ٕbl���J�9�@NYAhy�~v��@U% 鈓~Π{l�tǤ�=��YY~k9N'{p$r2`�m�I�/L~J{n88^���1F�j>n�\XoB8aﳧз>o�"DHUb#��]s
;+Jyx�VRysPĖck�U:癒!�;ܟ4m2zW[ġ<^�lj�U�Fd#9��E~+PB�I;�*m�TYO�lѼ
,6(9iaJɮÉ�3�ςĜ�y]'F�%:TPQ&�C�MV�%Ne[}�=�8jo�TM"W~գQu�kd
PhݟAqN�wd?y[.�g]�WzJ�+�a�_<���~R1rd�
�s
$f.L$]$((JKFOW�zY�^96�G/tft\�P-���W�؇%���A�5i�7
=�1�� SOy)DӏSh��*hp�a
ZS
!!\g =!�^s�ukq ?v�n��`ct1
�Q�C0_~u�`fK���u"6��텲
&��jzf̋ʄ'AnS������CQK?�{� hإT-4P}m֒ۜ�8Wc��!*�n�<���JQo�^9{Rf=%���g=v�8o5ʏG�/-�R�oy�_z��;JX�ʬ|$�ljI(F1iRF$$�N�y잶�[*;�yk�}tg$���p��GClwa�^S8ىv҂=k0m/ o=̌e�E��R4��JB"0Nח.� =Y?BQn_\`4B#5Ii
bl4;�OНya�e
AG[X�iX_q/)!; 65YVe�9$}+�$�!O?;`�O*vmb?ƞ9jf8(}/PIJDX&�oO4}��(P=32A7q>Aq&Bܭ&1:�4(ǽxeP�tk*�$�|+��hi ��7
Q��:9j [*=4p�>Vj(VWM"C���DGʼng�L}�jnFw�A��ν֫T.iԭ]ק"+�6�YS-b $-�`q
8|���:#(<+�0Oyº�v�|[P�O�%`y"B� t c%b�|&���o�b7
s* ˰�Ԥ�Vѯ`g�"k�t�j9�<8wa",K$yA��dz!w�,��@7��݄#H�=�4�Y_N1�9Y�N�U.^-&Z�'8"-,3��ƻ"wrqrW
ũ66-&z鞯�Zf�+�̆Z��pM"+sU)9ضp
�̫;oو(D�'e7@�KwH,;�z~+?
�s22�Edl;� X?A��ZOi'�1���-o/ڀp*M�|n�w�-�q!��]hNl
%�HE*]x
y-{>_7�$؎M@�,EF.I0�#B&մj��Na{%<�VW�z �n~��!c:j\�Y
6�~|�Y�v#y���әTa�A:~�)E� -_FJC�� 柲TuHX9=pٯb:E!�Y�(ՖGx;#4]+nJC(oIe�X! *YZ��%r�>�x\=;�\w��"IGK�1vsW'C�r�HNizj�Nk#��Umi�.Y�{㍣����\�%ط�?S35:XY�Fs,)J�HK�/ˣ�{jsHHi�+�>P5H�eb<"Tڕ�lZo6
TDrɭ�~!�?m�q`>vEjVnn�e�=jcEv.r�bM2�ЛyB�5_��\�^h#JB.b�]~0$X�\q}R0oM9_�r�h�X=wTTScZ��Oƣ1_WNH>fzVׂ(JAO&9 eȈGk���#,_Q!\M˺�9L��&$I1�QFN)7Ua�Y%�hq5V,B�Z$JYwևM`7x�Q�pD�w[{
1o26A6('5\ǧ(U$ÍH�X�MDy�}�LHr�6n N
i��>z�����\��Ty��758S#^b]ciw²N^w&>Y@�gjy�l�=#'c�a
{8,PI#AO"Bj+��Pb;ʬr
k�ka/
@?3}U� <|�xYO�>�[?�[@X)Y�tDux�^c^N5L[�xO�X���M:0s? ��"R
LŅ{
F){h] �p&z8KE���6h.,HXӑn�wZ���A,GU,CSYshu"��;|HAW3��z�6���4ݼ9kգ�[k`GV&<<\"ljPJ�
cE/��3(�eIHTGE�Hfp摜!j3zmϜ@cw"=�/�V�-s(;(�UH�E>�,ˉ:2
�N>b�@H ~?t17kyȶ1g)P#V*�J.�ݗ6��)E#vN�F�fhiCN"Nɩ]�sR(v)Ȣ��WuCbEkSp75o�Y�fz")Fzm=eHMd.!�xn$!1k}!�`CO[�/j0_�E)�$�d�ѻiV.@%:\Ta:fZ.wXLT<-co^Kk)o�4v�ioGHIZ�ڛU�jAͦщ�iI
��W�N(�a]X Ӛ��w}f0[p$�W�tStt#Fs4�BC�!P�6 2UDJzJ[�ߚ
S۴�f=W`sD?*��Pp .'�5=hj�|#2��rܘ�4EL-�yWjEY1�nH�ۛK`�'c/�r陌�:�D�=ܘ�E>0�Q� ~咒r L\|� "��ˢN&Ai$*Ճ �i!a�`ѵ9�u'f�᳖&�F`?e�Ten�ϬCɪ%j�-|J�-�p&
\y
e�ďup|_xs[wGBM�
Ȃ7'>yPF&7�[��2wh k%�3�w!T9��I�}-fl/]]4KǸ
#����DM+JtSfo�
QM?s'EOWW�7�S`Mr�Qe�D)s[�d`}CB�$A?eԷ|s
�Da:?�Z2p�|S`�(4aO.��?�H>Hf!~Q|ZRl>��?� wWc�%s8Zʋ1AhJThy)]~%o�PhVb
hr�!H;�u-t
j�*Y^�\�CnǙ+�Y d��$1X=m^u&U&W�<ԺΠ�7'68r$�jl�\;��3 �= /0pvl2I'�m���$r��p Ns[��uZ1qb7Z7%Ą;!vvNmy�rդ<:36�P9:ƿD|*OvE\CQSx(]{��9�th J1,��@,f%_��10!#��� ]9�,� ŀ�CdQ�!O*a�vz&=��^6;Xk)c$b=19��ȥ�j=dJ"7�ꮏ�Wc�3-)OAB8Ν%"i)�*�'�0Iɿg^�Vd%�[�З<@&&�,x((E��G^691#'�1y(R,@0.d*T�=Gx㒇K61wZ�:a+x��]`6�s55X� v÷`�I8�#6*5����2�M/�9ИoiOG�p&�[<�)F�[p�»k�I4�>��wM{�-�d+H];�fqׄb�+�y\)?!�rq!?1Jc�ջu#R0S��9� �Q:�˃Y��˅=w�(����+otQ�e|PƚG�1�7h>�nF�?X�g�Xo|#����*b � F;q�r�+C�nO_x"()�-}�:Gn<�<�~.�KN�̢ 6&}����{���Yn�(f�~R�뮕��G^c�XZP�hQd:0
�j�]Y�\`;�8(�sY�ͺ9{?@g)�ƈF� �^hH&T;0]{cQXR".QD�@�9!2=:&StG��5``�p�|Z+q3\0��fmjÔv�̀�4`�E��**#�UMbn�aix26cL3u~tvyY;z(�4R^z9u�C[L�G$C�,N,L�DgrF4{'H,;A{��^�r*]�{ Y?��1h>.`(�q у1Ϗ|�kܒKVۆ<[hR*>G5lG*2 z{� �[F�\`V�EiN>�/�KM(YJ�mq�*_4gd�>c�pK*�1?��5V�zix柺�yӒltؒ.�o�`XH7dv-a&�"|ƿ
K|cicbsY@Lovӌ��,HdN5(wE
z�
�{L[g"���S|$֏\j qڸc�q$l+^�RpȘ
,2X0K��;��9C�-44"pw;bZy�J�:S{;T$
IX?�J
9ө_}X+P;}|;'3
�oM3�dmȮ
�}K#k�
ǻ(R�'lҒPbQ2R��AF+rZ+rSϋ0)e?Bg7(OT�GYK����湢C�K��'�~�]p�R(�'�$is�ʐ69:u�\(GS
gJr�U%D¢z$%JGH�[ю슽=O6�wz9[6LwQPCbtҌB�ݞ�uJ̚FA�3�/}�,\q<&_vx35�.�இDQF!v<�xN欬\�cf@Fz 8N3_\�Y;�1�b�"��/n�5�1@�4hӨy,!s/ŧ3�Jmr19p�J|��'�B'=6R N:Su'EDjI�m�B%:sx�Q̨מER#
e
�rnf�ת�d�� =+�`1>(̚9594Ѥ�S@+�Q^Zf훦7K7|'ܶY
�s��$%!+4��Z}��1"�aw��6vs�f@)@���TV"n*p'=S`t�((�0˲&��D.kg!N��v/GR1C{rsi��)�K ?Np�)a?�0A�0PFկ`yJpa(i&~U͍���sя(���J'$"T:)�
|Џ�:.a�x�mZ
9S)JԕĮ!oV�[^$�I%EP�y�;V|;SnHս=ޘʢ鮃*]6wz�̣�54V9R�y��S�Ec-
�ek!S[�P��BK:^`b3fV]CZL!pbXR�멄���r+K?K�B�!Q�J"K�5+PVҷ��6D�w0Bv�RǼ�E1�<3viBD*�.xTƓism^��P(P�d���KnȫH؉
AkC�=HGGd�b� K��JeY��U {�ؑ�pc4QZdh�`ruRnȒ�q�q�Vƚ~&kq#'+�
ȴ[��WBf p{�}6^_\XiNRd6,��8yj&͎�/s�F���HQ6sc/L
"ħ`@%]9�73?ww*j��^PEBKvej_㬅HHk"|^(%;YmN�!r/lJydT�b�\-���CwzsEbp&2T�Z9gYPKrsL�ɴu��+,nzZ|:hxPwzHmRn�H8Ej����quZj.e%"1HZu}w
$هoEF��qFo_7�el@Hi�إbH�d�W֖�LHSB�?U{�-i%x$պ�I*|q|1eI#^/bO,�+�
?�7�xK ~U1.g,
ȠV@h�sg#`�g$p�1b�+λwxD=wG`|WG5D�NHq.��(�7EE+3�L�Q�%XL
�dϊ?�T�;TJ2hvVA�mVGyKk�1�ӫ]
Scxi:ڠAq�)`"-{*�iŅ�{$z%7Q'H]e%MT^&g��RD+F;4_Y;U71PZ�h*7���ǿT8W=a1K�[XU�FٍW~4B19PG�?N �µsln��z>PZ|N$ϟh,XȻ�oji��+MXr䉏mt�Y�
٨cfͰ6���E�0HDH�uKY\�GVѽ0q ׀3�$0/XJ�z�n˞�nOVЄ.Ci�d���OC�h�zW��¾2rHL7k�{�(�'�Tu#�l�tm ɟ�K�4{:mN8p�y�\�pN��d�#XQ�)d#�<�Ƽ��y8G1hm5`v`}NFJ[J)�Y�fJ+t�kBd!�[{S+Λل�]�LIvj>>#�k�:�D�53�2gJ�/gз&T)*$.}�bk|#�)1�E#�{�~-w' +ȋ�S�/�ؿRW~eqE6|F$O]GrvoEjq"H��9E;'AWH�� ,lkaJCM�5�
77X"��]R�?n͌:�}?н5���~?P_ZQSYMS�"[T�p1a4+
�//Ym;�fŎ":��_b*6M['m
=E߹�|�#-&2�A#�A%� }�I"*x2w
�.I�椦}a
K�l0�qJ2yXHrMC��� q|�}t�?=��πݐ�37UH/rݶxλ�Я�0o-w�&�]GS+�[��?-�/wEԈK�bfمH5iJ)5OgexGF6�v=6: ^J&uh
:�]G*z�O^2u��Rn|IQ#�W/.V�>��\�{q�ݼ�9�=מׅ�:��ɊR&H74[�y�C<
(�Gq
@Z|���ZyK|Nh> I�pn�O�d2�\F/Js�mxFd�!)x#�KO�����/"_MJB:t3}3Ɖ�C>3�
@�]�^HglhH�h\?meik²}'3�Ő�VZ^1�(��N6AS_Y^Jx_e�z>�2O{�1�_�ZV�B]>|L�=T"dL;W�?�yu*[ha3Q1@an"n2�G�'0vVum�E.�`:kR�2k/n` t�'d{j�h±�u�䴿);h*ܷXzs`!�]�ibxA4�\��g%/0uCA1��QB?VCx�>dY��?vd=5g�:
� T�ي�liuXmEq:[*ٚ0�a{t͎ ��o��ƴ���8yR7Hsڂ <"0_Aݺw1ɠ9]Y4z!E,N_,[D8Zbo3SӍyS�}W��"4���w}vi�QȗXK?~B2�>��O&%
M�dԸ�ie0y?TØ�d�'�F�a�D5���OJzxxZTml�-SJx�5'0a6
{'P=V�-Ys+`�@woRNa=I^JwUuX�F��)? He�!h�A"<.J6�T+%[cWWb,'�_ҷQQd[ [ /�?z?{�bBPic߂1ho�"<�Z)hQ�EE^R�aDɡ�
ϜhRIƤz��Jf>�cT�8�YëZݻҰ�ǐm�@DUa'U�I�;;��c[��%V�X1h�D.�ܙB^3Ӂ '�v.?sFp��"-QޘK�gw$ߎc��mH>0Lx�^K�w7�^cـU-.1th=8ts�xZI-M�Xb3+2j�}]�sUޮm&'U�-j 3[uN�q��5"n1|&EYyMwuPj'tv|ű�x!C���G1rk;g=~8ow�f�I!dT<ю.o"tܓ>vd7M�\����x'QV$��[!pǢ���6bx%ֶ۪]1�%�B2ߌ��Sb1h$X\m\>�{ßD?'j4j̋6mqzn�i"Fg]AP$/gy- 5&䤎F�2�0|Ke�6]@_uc!2k0���r*�s�.c�V`Y�gîwgi�0L@ηII=dR0xDh3o*�/;8M* "#F]
�Nw :^ 7HEoG]Vw(�#o�L>�J�%Jk�H7j`bPn&�xZR�Fsy! h R=
6�w`x(M}(7FD�ã_XI�$iI)
Ra;{H�u֕9i�EN6l+"A=�b�h�t�Q W>�ӭH{aP"U�2T
N>]4�\
�ŮJ�+6Uc9UŔ)
QAq+ހ�Ӏa5IdM
�B0p#�GĒ:>
Kk��*?�!�Tyq'Y�HJe{���jM%��
0�MjS#o-j]�ss68sX�#�2�Eu�om.L+7Esx ߤPnhohiocop�mF6��s˖fi�$9Z`4�ŝ��@V4a�>>%maf崄#�o
�]ogzUpif,���\;h�LZ)~���|�zS�1�f*n�u�KZ%sĆ�!}>B�3,�n�hm<� �aZ/5+IxxO7ߟ^N.[x&Q� yd-��&lZCYIm\/�lj�3��bƆ!0@.� �Xh�ĉҍyr'jܫ?�P�2EL�OH2�ToA�X��xY0�
�p>M����2",7[0�4nZ{c�M8l9c|��ZY\cu'lpneƲ\(lc�2ob�`{~YӖ7)+�QVe�L*Wb(iJ�bU'$G�e}oM}%U~)
RFcC5�LI˸zi
ͦ�~�]v`hjYD�i ��tz�OCa�5e#�]~cSV�d�t̒=�T�Ju�01[0Bg�{�tP1�
tHh�Yf�6,�Sj,�AbLw��� �^$u�u�ꁲ[-Wtfzۚ^E"�HE}_KruR��5S�E�D/��,F�[~�v~3�$�+0H0)YG=�PX/LZrpC�LgEXܳ)��
���+�* ֯T�Q筒Hf#:%`OJ�NY*/ڄ�iv RKKhy�YD#6C�Bӑg%)�<}M&4��7b�aF5jv;͝,e�\{A5v��ˍ$Sn*+ЄU�MvrUnl;"]zDˍY\��Qܺ~dS�-B8X���| IRqxξL�N1G1A
HQ�?Nj�&^e!|�`d'g�%�}6r=�CWHxY#KYsnZv��͔N[(�kdר)n"��#��&T
�S$�ð�S?q篻ᡯI69p"�L�M`iU(7r]ԭ$zM^4^@L
8ц�HI���ꠠiR@o7ͻ� �:+쇿3
q-/썛=H(Vvh=R@A?gp`,�d��cNU/d#=uځ#s��7kۇgA
S|c��p>0
ŽyuI@jc�����KE\�O: OB1tLM(I_KW��J
�+ܟqD�9螞jD̶NNW��A\4.O��F~y9\$��z�A ߍ�°2< �_r5}ǖ�_ۗ�.¨UW
�)Pi�y�&/"K\6D7qЊUG�.m>.u�A2Q*@I[rUڶʼn⏒3*tG�\�V&pzy��2Sf/#dߖveDp �\�peCiy�dqrECw$)iq;]b�,GKIKL}h[/@F|*�AN:pж7q"i51$u=d�l
P;@GW@
(:�& �_�;gm1U6kjз][D^QE,�}IMX\t�� .Ø5k�>vȆH5��мLM.�JD}[2{lh��^d㌗EUN�%��q�:n&т2�ІeJ㨐Aeu�k[4��F܂A/��٪6pԊ\�?,�ydZ�%\`�VOg"�.�:�"L^�^�bl칊}�Uso�X�7>v�{K9�ƛwPx���?]�aF-F��e<�6Iw4*rP2#ĸ��a)�@[rLx�2a*;2-Gt`uYH3~��X�<-doJz|QnyT#u��ԍ<�kR��0�rmfjUt���9$lX(>�@_4c���Bk�W�^ $nG!�\p7
��/ꏥ&�*
!X{7�l��rm>E�9/�sO֥-�>H�+��y�,Qrko I�+sIcM��0��r9jg�Pm[3#�D�w��^�#K�M#\�q���[y1ɼD�+&�NE�;װ�WC3Sgr��R+��|k!�aWKaNi֯^�V�dGhG;�
ֱ�OU�!"33cC@(+𭙉qK1 7�D447'悻��8[�:~VSY҃�CCh-yht�z2錔%;-2��"ԡ8<+}�mK�5J
�2|z�Y�e)0kD@K�ծz�XSF�`��q~TSEI�\Z�Ec8ӛvtژSx,-'¨P{j#+òqy�WG�,5D�C}5?q+�LҰ4f3�ҁ5���Z�)u{Nj1�4�G:�=4)u]7��3([I*Xh8�hb(F;ùwr
v�M�{y�UܽKz�WIV˪nDsQ�9w>�Y�\haBfRV^4T!�GM*t՝K(2_dy.q�d�sM�y&ppf5� �%zV0� 6Zg�+�^f@4X��rYo#\9rQU�ֶe2tb
R??ZgEkf8ff42p*%��첌Fdx�{n�W;=paHx%,*мw"{ĸ�Mʧ&2,K�b78�3�3��VF{Wb9{kl.1j
\1$�<"ҍ�UtSܰaZ={NWol�!� lkG0�-dq�K��UeQ4X(A-�#�AFJ4K$�]{{�(�Dch�c6AZ*=�YyH�#;|Y����SJoc�Ct��)w�9n�8d-_rY3��!u$�>0�$|���*pz_#{aSڵM�P��d�1eY�YJDAeaǣZXS`9-�@tuȋ��GK�Z�p9f�!�Wj �i|i�,�u&kILU͘Dg`�ح/gp)C
C5Ì�74fH1&5M%f�$bv79/�zK"֊w�?s'jOIq�?H��V6GP�JKM}t�EzH
aZ{և�'�EyNnC`G:C�cuz8YR2 "p+r�xp��C3�("AH6CG�hlef�֚I0xuy;s�"�,��$�eЬX�,�V�74?RnNHnڭҜ[�M�U{2mϘUZR�aldΪ�/(>
=�V%XCp�C٩w|m8h&�TD?��NB-uj� ^}j A�k�Ҡ,-ǓP��W9}�f��o
d!s~|7g�qq��8_�涍Y"��&
�4��""}�GqM�3]0�E C.Пl=6xf!�Ȭ[
6;$8AN"欧3N-0{ٽF\ogG-(S�~cdц�
∧q8Us77XWEjFKd`��� R@Ј_S;A�bb=(]C!*c݃6���AWb~�0�{7v2�VSdF'Q\=lV{?�+Gnj;$�!�@�5~^Mձ�y�1�uz��X�{"ʉ!3 N�0�se#bد�hd�>ҭD\U|ʗ��L�AgVu]eX?�SX�%L9ƇG�9'%W�jV`r/W�:y�7Jc��$%uP9�/`,+�ķo�FJ�
�ǟ�`e�Y�r'�O�g�-%D��3N\VMK�B�|9&(�R[`��ͤrfH�L@;F�@��jn>PT*1 J�۷�KX��BD���b�dJ=h0 N�P�5�oW"эɀ]�2D(�ļ�Y-d#�|��sf̚R�
$r�AS-�)O4t$;m+e*oTE2oz}�Po1ILTi_Sڶw<�~@I�@B^Ӛ�-8!4(N2Qp b_�ҧ�@ѷVNS]�V��HD7N%NݬӝM�dDA^OZ?,3�tk��I�uFQl�zDit�{�cωy
RZ3 fiq�>_GD5D-&�Mt]~�/
}U)/jl.dghg�H]
A-<
y变W�o�PN7lJ R�`-�V֚[p���O0:aJ#Wf|Ǡ����LC>ޖҪ~�� ��/_0 Bf?�j,ŞF#�ǵ%�qqW�$"yW":Ӿ�H�Bޤ5�@>c|(]^bVZ�"BNVN�a:631 c>�g�cV7ft�zΰTpu'y�buD�^�a߄JBO2:`?6����BWI{ƫ�Y)�Msf"�5I9/̈l[�,8jUFK^7'A�>
�,}.ft2^c%��]eq�[�WiO~7�JC?�Seh�XE8��3I�7c�+˨�_^3oT>(T,p�Gv���?|K2��ѓ-M�q��Cڈ]�E,ʳ' c{6�Ğ"H��MP�oL,j�4)b�@E"1g]߇�-=sbvk6�
*NY
fY'8�`�X=G��0mc�;�b3�K!m6�"o|,�?+�o08�& �N&G��*ưW�7^�m�\D�F)�'�ɠ[ֻ0C$،ZɎN�fF6\/�Zs�.pi�xGl%�^m[J31��Bu33� }�jQ
PH�.T_�]�/bR�Z�,~���}� ~dDKQ�[�tb
rw*P�k�.�ގwedZ-C#GvU�-ܓ�;ƏimnK�]u��Kj�Ҝ.D<ߋRτ/ :+<*�t[�P3[`6�(�XTJ��6/v_ZsZ.T�}� xsJ�9ߔp"`ZrtK�%rYin.B Y9�S�nZATh)<1"KX_�ʤqP��\VW�%z0��;ZqEI�~Ei�G���86�$x06k���'ĔXEhjI�'^>|G$-<^�X 7�vtWѣ!�oR�:4�8�})�`n TU�>�:PoUf�P1�8F
gFV�!G�U�d0J�i6|He
�N$gg!Bs("�h)}�\@�32l\!�r�+wb Bl�[k14�s,;�d�.�
H�18�1ԋ�f*�bW%yx/P��W./�*�-���0��dRT$\W��;�b#F�L6)WԎ˰fCN����=N$�?T(�[�Y�ɝ��.O۹D{kF w鮼yo� ٬dVTe%� #DY"�Z̫3��Ip.SV���`x;D��<�%�]�0PZ�\%��&��T8D
<'qv�8Ǽ+R�ī<�Ph6'J��j)ڍ+̱JѻMDž�.�\c�vl;?7�]E
8 ��z?�$�|HЉ]8wUܣ+`7К6�RhZ ~nާO]d@~O:���v~1PYȝr7g�is$�=&ćA\9X`
@^!� {ݔ)��Y@�#��xt=|�&h�{��"Iб"�D6J!-Jai��fx�㼠;�vy�7bNpSJ]֔o|c��@3ؖNS;b�
g[Ow,R' f)cm,
\p>ÛK�۱sy
FCs�#6iJtЫBW̲Y_0db(!*�Ƨ��?�6iPWHY|+'9u�~P�P"�c.hrh&.�'C&1ݵ��4��\wh�y0/(0F�G�cLV�0ڃSu9X蝒3"tV_GG@l�Y,.�^6Z_�"
ERTVt8yF�,y�a�hX̏燁�<ۭ,]
� ,nnc0GGX�O$3|.ī� �4ZX٘UQ�sMwcGh+*F�K$f�bxRv|T;?dhjԅP�쯃W]�
ıPe�)�ѥ�X1
KL�ca
�İ'L4@"}v.+("'$sȲد�s:ȅ�EP&@%9�1�%}~Tg�B�M�p.3�>��#RQurՙy�`e~Շy|�)�+4ϑ4ƙJKo[�PI B9��^{ollt!+o-�h|>,bR~'n4��)?s-pUm ~٬=/9 �� OY�E7Iw}s 1�='� -_cI��Ч:V3i,;o1aA8�B�S{e\g_"6K>=^B$�f1.�j�jDN~Ik �yq�m�7+l��x]�;xJ_��C�kJ R�qx)GNP�1Br�j[�!Q7���{�,�2ޢ��e�Y =��XY�N�`�#�!z�oOku�ZԕTRf���#l�W,�5;H7VJ1٪h1xK�a�xAK�e\"d
N-u\]v!�uFDZL77q�+k��K2��?�~6B�r3Jp!�N1 ɑT|^Ԗ��d -ti":'s9�A q2$r7n5ogZ$廘N *g5͂ƹn/X�]�2Ħ�&G6-Q@T?3O�n!7EМڝ,�$>E��-IkЅv^�
(MHd~>-1?6���`0��oٗ���$ǣ�GA��ȱI˵a|�Z>+)\�=N:'�~�2U�h�X�/S2蕧dq S{�=;d7gƇ6qF�u֎G5�'�9-c�Ly7Љ��z>y���ѭk�"�$>:�ܠg�D,V=[/�[U1ikAW]Dtw`8.F6�ε�6:
"┐k|M��zHv$�Tz�`u�+<�)lO"2g9$m.ͥ�CR'̯g�[ZնJ���d]/�Ĭ1���jj\W:vz
ґ%i4S#gF~nvރxBAMYOMBh_zdhZ�ܶ���%204��r]A�bm�:BAe�zʳv~�Z��WW];I(!8ev�V��GuJbKcYP6tn"h���brY�[14�Cl�ǥ�fn*��k'$Rv��͓6
�}q
gE�/�}"V[��2>PRmDaI.MU��;>uC�#7yR�^TV�g�D��B�Mn�O!9kqgK�%Eς;tI��,�X/fSs�x��v���0e'QX�q�$̋�:�$�Z[�^ZX#����c"o
A*jt_nI�%7gW/)8@� 3�17aR�ֿwq]^[oY�E)FVo�
Iv�g6)3�u.VD">cRT8Li�=�!)|��Pd�,o~~[5�7{~7əCA0��#n`$��T)b�37]X} ��Gm�=.�gpП�8nQ/{[quQn�}m�LZ
/JJZ��De[gI�N�G4m$̋懻A�r?2DS)�p۽ШI��ih+'�͎
qaU#�^|���$C.",�!hw�=��mύxG=1_g;2ːS?d�2ѯh[�e^[4M`i3Sk&n�m(+jaɥߑv�@Blh �CZ50�zCO-";��#=�t!}ac_?>Py�v͇N\(O[�����FE$�kk�bMߔM!��%e�ɘI�~k�uT+13-9L* z,.I˜}/�9yH�q$.6Z~g1 �*-�"e+3.E>Jz8~u`|)؞�i>!�~��m2�.
�-9r%H _�
*~#�r�".* ɿ�{�p�#=�h2�~4�y<�B�1dD|0�_xˣd��shUjuxiT;C]0��TX�qDBZ+4JOگm"H=bJ&w^5Rp1NL?�9ZC�UAf-� �Y�Eµ?yH�gIUew\���MaY3A�TO�Fg�9IHPP�3J1
l�&MH
sa�63$Ai>D�@�W�J6�A�zB˪�&'��vHܬP�oaX)�Hox(; k [$Ϩ]�oÑ�XWh�R@#6h
_E�Sؔwt?ˆuV��k��(i+���0pJ(ZjjɮB�ʯ�x31?/o@r!B�bd$Y0
̯"��rLy
aq�Oq�X7�⤓rT@�68ߧsw~�@,�%-/J1ݥN�T'Wj�馉bQj"�)l+��%�}�+�$6cI|o��Wz$(��k6_ƛ:�`�yk!K���2nj��ݠ� $E�?.z-�`Ւx6^_ݡ#5��!� �D&��;xK�y"NKK�
ʩg��:3,o�x'Aթ�p�씧2�-��FN��Q��w�cHL��8ל'U Eh66OlQΊ��!i� ğ���-�����Q~$��)`A4aT+t�1Wu
�dJ
w�re\R~u>y�u�c�)�Ɍ/Ehwd�aS^i4c�}}qv�
"l@AȰ:J2��܉v �Ua.GKu3 GBXq;^��Gh��SɌAʟM3r@�hmn/�@IQK�_>7Gx�2�?C-m�� i�HԺ
2��4ZH$Zcƺ�\ȿؤ5C[R0�<"שIc:4KJ�
@ÓX8fdA�&�\$�BB"b�^gٽk4b8[I(~��f�9a�[,=H�5Ϊ�) ���nl/t�2ο^b�qNwV.�hr��7M& Z7+�Q�vAIܨ@F� $_��~Jqld᭘qI,f.et�&W%ڗHH,D2�N@&Ì�3͑z1riv3�ZWYiZ&?<ʜa
yx-fUˊl"|)C0ixbB
�銔ktLso�~-J�gR3u�g�/q+aBa&�$t��:A}
�7��huI/m��c�oHhÒ^�.>.��"0$�̚1kjI�Q(}R�C�hDP%ň�sT
PP.�]3dm>\5)uט�*Z�N��.ƫ{gr*:Xz2T'(�ܗ쾅toBKi�/�Lh@>���t�H
ળ$"[3dňqM�iRx϶Bh��RsW6NJr�g�?�U�X�A�NG#�Bwp���Bݐ�<}D1$L�c\�o89qm>æ<}oWϣX���*EV�dA=Sv }�Jnk�)QY=P!j&X젥�F�(w溕b.kYg!�;s�c�� 2TK��TR/� YhW'
H{��7rԉbF`��]j��z�%�bOY�%fjU�9�Tiac}
$:;x�?8P3pG)f~ڤt&}�>MپpTLBrxB5B'�iuV�I�v2Cuܥ��3y!K�7w��[Jt{
0o* >G���֬MO�V�b;�͕ٶ'P'TtWVKZ�T|f-3x��`'ǟs9]塙�{R�
n/KOTj�N̎[�%�*F�m2OE>;��ҁ}�n孎$$2!���7"ۤ2u�eјPh3e4Pf��jYkM{H�Z0�+H}�:�� ,n3I݊�Toi�2�"
��q7Ɛ҇�iqڟmh
��y7�JBm%qmx<]XW|'ex�7�JOZ�b��#�h_�ӫff�lG��_2ϺIX/H̅]p]�zuta����xYgML�p*2%�XhE�>�Ix_�8W8�~Q脒5�*qƺ��'�YWB�-+XNL(�k"8�6ن�BYG$���ۼ{s+&�*a�ж�ſPj Z|YSGk*]YGP�Ԯ@(}��7�*g,�
nsI �q
D~hc̥|j�+Θ�nb�ւyg!]�DLE[
G�p��#&!��Ղe%58�S٨��)(dǺ˝+bn�Tߝd�I:Pie4��=�!
jp:G=iuYC"�0xQgVvqv;qr�yJ��:r᯿0x=��:o�?>\מo2߬�3�`T�[q(igYAGs�/36V$e=褙�LѽgXzZ�J+FR""^YГ
�+Dq06] b�H#��9�RXc>L�}��^
Gl"w3*Ƒ=��R(q`�K/[vg��iIiqdoOCE
e=g3�*{>�%[g�M�R%BB@� }U�OH8EC흁Lq�N�LͰ0�B41�D�3:Q$qW[��f���}|�t&N3!$"7i(�O;ѐvYrX�0E0����;z�}:FU!lZ�V�0�el 9oS�3D[ⷶCA�wW4(
|E
}"�!bg{#qo
c_!
ny�'b��9q72F23��@R8Kˏ��&4�aUr�NbCO���Aߺ�R�[W�Q�_V||��nV6wa�f:-ڎ�iT,:qr'�bC˿k*~�g潚�zA#
ςWgnJPm"7u!i��"VÕ��Udu@#y`䐮Q}DHIr;�xpjne@�>Rú�?/cQ�xG7l=�z��
)$
B;���H��=A4C=��R5ubW3@}e�2ZsՏ��&�.'Ado� ?l����fqǐ>:&J`I�VɢK/!�ݓaFZ`�M.QL�^eprg8�&پk�U5 ��A|�Aj��r��I2>A�i:!)� F;?�"Z|:DlWaڢ�w#o�j|#�WHځ�I���bz/�]�8PA�2.BwI�;a4͓�A[Yͫc1�塌#k2!ʈ�ٙ}Г]_�3e;PU�"��ۣͪ AV�ԣG 8��yHM]$ֹwd!�`qpFaF}%KĮ{货WlE[�fIQ:Okc�(!s)hNh̓u Hf�
Gi.iy"le5�֮Ae�sD�k3!���<��V����OAT�8?�dלxt;JDZSՂG���O"]�i�N� E}wTC&ΖMmR>ҩ%� �5�36#�sw
?<`Ωn?�t�,cPl+ut3ݍ3ۅSdR��Vr9Q{,FԠF�]�&8.ꓢ,
:k}
=G:O-jDoƳȒlj��l|?*fn3�%YͫUDSe2f7F֚wt`�CE�5-!e""G1²��K}$o]#[7>b��K@>d1�HFAFބ*Y���A:vp"���z"PҁN"`RN@}7��|1OԷSKT[I.�ϲ�z0i E;��i;
q:X+�^HSz��k�JЌ��ĺm*�Q�wv[a;e[Jn�X8Y}ou�D&
Rm�`v�U�|Qӆ�5;@8`Oi��=`ƸZ��n�cE��9d;�,H&B_Wݱ Rl hvǑ4V�'�,Ӟp#R+ү>VlWs_]?(�7'G��8πlBD)7׆_ c:`~�,J���$24�S^s=�R�)�mV�RUcߊ�k7=�.?(�q�@Z�7[mb21_�Gwp/
k;o:Bٸ
c�'�,z>!�K<=7T�\�WY Vь�.c�iV�j6un!'$u-5"k@Ir&!mO
po��#O'sA��xY:Z�|V�O�F�?�;zQ�]ϒu:;T6o9�~Y}KwH%|�;}�1�8YqL0�a%��;9a2 z�٤&fH�I��)J�h�l\DԋC��8�5�2YIp.9/�ymR*�|xIr��oثb�5s�j�gw9k�x"P4]X*1t="f菆e7/?}�=)��ylsNj_f�OVte1?Ǥ3J�>�lXX�0�>lv�Bi$,oL:QaO�4㟆�8�R8m�}U$���o h#3�'�*iRA��x�Ý]8F{5ٜ��`[\*,5T�$/kRqW9muצy�\�(᳸2�cqyC@�,$]F q~~w1k�SB֢1�3
\M\vwXCSY�2�MSJhK
ֽ�J^�\�R[w =ݱ,6.-
*5f?4NiK7K�zmÕ�dYQOd�*�p_�&J�9VAՃܜ=qP9M�I_�L_9ڣ Ō�cT�c�3E9&��8��7jCXGEIws?)c%#x�=,{xk-zo!|ڶ2ș�^x1c-�A: [MKUƺ�_9T"�xm��V)h/�./a7�p=ě떁�g^4@�ۥ�oY^j{���@>ym�V_b 3�49!�t*��U)7iy$rf#�
d;M�JM3yRF I�z��6T)>@\G�ۤ��
fMOJ�RD��Gd��`f5�{eE"8Vyn.8GMG�$ޙȣ{+k_s� �LQHN�68\<�RÝË#�dxxYdo`+�� 7�iPO��08;˻^]4:Bگb>.�u%�䭽-9/NͥBDn�ħ#F`ˆQ�X�x*�ī)Hdͫt�Eu)�,}a�7`Lt|��l;3C;��Aq;Y�yHY&V�)c5`�!M[z;��HQzﮔJ&*ą(Fef5�?̈́)Ϊe'���gڠL̾�g#n'Zo8w#e(%(lHcE�6�t`^�J㉶�E@sAU1P4TQ�~Eŀ�qՕl"T݊,6:-��!:m��4|rN>~v)_(|8Z(
2�.~Kz� mJ㰞,b�m8U�"P,�,
J[z~Ut����.S\2U�#dJ��/0w=Kn4m|hvv"\\+.�EE�#�>F-kꊁ�{;lK*-NvKb2��n�`Ԡȥ!s`}UwCY�-P-�';ka�|dz�]y�Mu\O��~�y4W#ߺ
l�v"{Gk/`iI� PG�e�a>F�C)i�
-Q#*@�h�,2kA�5�IIlt\C7T$p�Pp˥�w�f���
q/�
WQ�><)U?GU�/A��"?g?v:ȣij+�Y,viXx@?
qYH>E��N9؞.C\:JkK1�$/c@g>5�J(CØFd*�/Bt1mb6dJ#'R%"'�
?V$C`,�ql�sE�SG �]l>ݪ*
�D+�CY�e>Yg;k�G9I���1
/�-7�T8S68wd?)*��}
�Y/0@~sFY��f%Ks@���{L0Y)--g4m&NSz (hzQ֗����s�)@6zH�,J���.(A�3Y� lUX(j��-F�R�FwN1$�$'0�qM�8ͽ",$in�0r �w&z5GsFNPkqUڦ`v q[p@8i;q|OG
JlS��Oy&rkq��59t{,2�
)r���
]\��Ck߳o'�_�I9BJܦ=1�,
Ve�)N�*O.Xt1'WYNpDC@-[�̘��)[�h��Hnv�E�S8p�^���$\`iaR2GW[0�C:�LW1:wdO(lr�Ls*Gz�AZ
"��ԤHXt�Ԯ�J :iD!��X9�F2�HH("y&Q+�{cs&KH�#�_q�3z+��|9mN�d[�%r*ggǽ4ӌ�m$h<9Pl=~l|(cC^s�c6B͝>v�� )TS�lNa]�oe�)*P��S2�滬TCKM,U?z+�^%O�Ӈ#�F.wdG�l�¦b,hR!ff�7`qφ! oT�x_&�|,&@̟:3L����tAׂ���B��9lT{�;%DR�v�ZaFc|TK5�JRI2�H|m:Rߺ2٦zGQ:m
oB0axJ�tDeprԼ�dQY}Vel�Y�!ix8Bϐ1C�0Yd�/
Q�g c`H�2��{P"1s�s2T7)d�E�M-LJ/0��
�CeqdA��1�
�'5fǢnh\~�|@\0�5ϼyYe����ó֤ٗ�#MC�?�"!u��el�x���B�V]J�"��6 o:Oˤ=�u\)Y�k~BYC��eT���j`:$�OqŞsR ߈���,/l*i�M�c�X'_Q2�x4yp9B﹨���WL�KIx�UvW}^�4}R<
Fx�*q*(7A�Y��HD͐\n��bi=~T��d/,mH�۳s�pҀ]Ց̧ąrg^U=-OѿZ���6�2�?USP�ψxB�R/C9�̓DS%||W��^ 8MZ�UH˗_+/#.
֥��0*n.dMa�_Sa�Vs̿
QKf
+}-�`�o vVny{��Qm7�%:
�j�s�ot(8\QJQ�q�57O�1D]"&mZ�s}v$cʓp0���C�џ��ZUZAt�Tfn MO�&�s7u�Q�_�ɮKтr&3
�
hn܈HৌC
v+%E8ze`��-C�}S��g9_��ޤtPf�K!~Uxֈ
�b-N>ɾx�7Ͳ��ujG4:�Y8J�B0\Me3)$<��bC͡i4��rHΜ]��j1W<�bhNmoI��`bo� Nr/a^&_��;��:KM4���ιt�En>�0�1xpA�1^
>!c���gp�r.p��,a�gMƞ�^L�WM�h�AG�r�4~~��7�ڢGҀWjN�Igy�=_�+[Z܃iFI!�~8�'zH>$EV��-�3�-=Ia-g2� nH^}_AŪq̴)> g�wMo)�{Xv�+
�mUD'0LC7I]'6�ftnD/e6l6��d�^oPKtf*~�mBϝi�4#_ޯD3yQh@"z�Po:�D&3�Q{,{�^m�s��CD�
�e�G�f1m06Phh<�h0�A�[�o/1�~H,fz�glOZq^XJ�"!{��v9ϲH��bCf0̌�e{aӔsZ椳�f("+.0U�)Mu3�O�vw�z}T
>KZ`j%Lt�]��L�;O
Qܫb�O6Z�v2
ǝSpPF**5`�UZ�ޝc�zkEi��F-]
H�ーso��;{סkT/�f}>�;]�W)-��lGIe�n,�'?7
�.�Y3��i.O��}fo|T_!t�z�^l_l�8\�����5CjA|� <9.s1#
uTS�-�۰~�p?/�7NQ)Fs��+\ua
MZoП
V|F�7J!qp]@5 ��篺"�㨀71}�y+g&1ԁ�7��::nb0�%ƄTlP\H^�ߴ^}"t4�8)�F���34#DX�r$;[�},ĕ 1�M^<ؕG鿙�)l�3M�Ұq8�R]x�ĕ��k��`��O�nёD%�6�"iw5Gk{%j`U$R(Cye2�~EY|�ۣi
r"�p�2hT@ͬ�ʗ8HUbb{NdF6"Nj�~AN(hX% :�涮�Ŵzj���%j�ZPA(Łr*tG�a�A&�|렏jm̴}*o!4>m[O0H{<{~S�g�@,Ůx2xCE=k�[ʧUB?T2A�}CwO[k�m�TW320�U.:
ao㑔;0 �5��l>�SVm@�]KZSd��ӳ&,gXn:L,<}�ش�'�>���&s�3� 1�{$0Էss�1�{yHf�I.vW�s�m]؟q|�0d%Qy�qL#w�FE˲g!f�UED��Uby�<2(Xi3�@i�j7�Q�kDs~ǣGLuU�2�E4m>Oʭ8�!��q8�AUJ<۵2:>7J,ԅȫ\>�U0~I��q
E�`�O>Cn۽�N��N˂L�6�p�|�\.O�NFup� �I8mD��GR8��ikDN/О�Y=5��Ii�I_9nOCDG:>ĸh]Ѷ:~&{�J@�fd�w�Q=�sUb`wq-^tht��3c��BJi\�ǂ�l%;Z#��nxrSA.Mٕ)i~�b�T}uʧTw! ��:"�; GQZo)9��T*qu���.M3JQ9AK{;*u]�a
�ΐ7B�|Ή�MIFGiB2`zDh�I�zZZ5z�z%L]�KOhwZi
cÌ=���t_\{%��aȌU`IxGC)#V��.fVǀI�-Tf�E���N4N@-.[]f�ܛRLlw�\ 5j75 QQ>Yy
K ^t'�!9o�G�|&rHX@"�ĥ\S+iib�_�c��D7'Y�ea䧀o@+�DWyD�:>*,�Xc\$LC[�@%V�B�+v�ܯ�]�6hAƦDS&BxH#ӹ9=�#^&�Te�BESz�
|ہgEx06'L50>�^Xx�r�
"nȷ='V3Av*n<ⱖɞ$��Y�kq%+k��阗w&ـ
ʈ0%�%@��i':D#ReM:fIGٸ�5v1(�}
Ώw3h��y;?#7!saz��VD9(k
K�'6���"�˸A
R/Ҽ��wB-�ΔB?`Cg�Ă(U~�9GN�S*�)4K{'%5�Ue�r5v�C4GJ�X��{$1ص@{Y}Y�ա+�i>�8|Í:ڗuXЏx"�rZԖm鲊`R�oK��Q�Ղ�8^vxo�0}tL�>y]t;̳6�K�ݤ@�\��'Ϭ�5
{hjkV}m��w�I<�6jZC-\eY�H�t0�_�:je�q�mL=oCŎ=ws�< x_��s%i�2h\t�oTm0�ޥJ�WU��G�bK$7Eb�Lt٥W~G}ӺK6Qp8}��կ�Ĉ:�qR& I��hi)ddy��K?�b6
zVfɥ;Na[W��`�2�߹;�(�iUF&�ȏd�qDtv+Q�b�u&-��&!dG.{wDMV<&E�. LJ�>1N/YYSl�f�_8k]�uN/�qr�Kk�$tw\ҋU}]c�i��H
7my9tC_xT*�ڌhzuջ2�x9��RKf,V4e9z�3,pwhke\Ҏ�E��{ߏ�2`:Ƙ.x�p̳͆#?#l ��'P|X/<1���|ԫ(LD�fn�mreXqӱ�O��˯R+�Էw�'aήz
��uU#(o?�'S~�D
2{Q�2b;�w�#n,=rqO{Rj�aN#Y(E>P/C<<[�VrXxܓ i�N�}@ĔZY[z}A>9M2�h5CKiAY�N�ԈQ�7ڔI♐^?ڎ쩛t/?��E���(�ʘe�jC��ӻENt$��g��Ob
Нp@nǰ�[@j���N't�E>�X"0{��>T,
�tN[܆Tl\�tCh[�{2�G~�n�|5Lqߞn��wsl�[K9�QđAd'{�(wx�D�!/ őKrZl�P�ōԜt�# ĕ VnW�OY�lZU`&�n���82=t��:Qѯ?9j-rZ䂗fWO�n[L��$6e� A_q%�&x{3�~ߖ`k=eV/L[��PX IU{{i$�Vm..�]V:��{��ZL�dq퇌TAW�P#L�a�+2y(Զq$r[P>;JeyZ y)M�0U��i�$$&k�(�B�vh
�I�I�]v`r?�ΘOxvQUbO�x+Ov":�8l<◄^�qgft�{Y
V`S͂oLti�V^8�=�֩a'÷e%,�2Vfo�HlPW鍮:JF`ph}t_��H�i�ҡ�_.?8�K{R\��i}�ˍXI�I]Ce?+�d�B/�;e'n�x1y��96�r6Ѵ(m~M}��e8gfzW]?oا46w?O"휷Ej�|![DeӇdAy
�|زhuDwZ��\�R�^ڏ0{��ù,eR�o�+�V�:vQ�ֿL!X��vGePN�^EVm����c裠^{���~#F�ҕGT�sV�m#��JRVR*?>�q��qe�P��f~a/�@~z�h+&$�l*�&ΜÌ]H�rqj\, @}a�4�f" �Tܛ`t1�@ذ�AkCS|8)JeTZ�$"Z+� r48��@Gy nc
a�a2#=7:3��,gt'IBxA3r"�H5 8M�hAy>C�]_gbyf(4�o-��*��қ�wuG�xvz�]FR8
Es��iˁG>ӺEgc�CG�Hg͂*
p0�&`�\ O'�vZZnIWm?
� �@j5K�e�[jWX�SvW��$�6S 27Hv�=h�ߥJ@��{�v"�g�]��5)�!�ʐjz� ;$h�O2׀]!F%Ө�.ߋ%k�IFڼÄb#Q�Oz\K)!�Cھ#�o�.��, J/�rjү'00OO�Z�uE@q^�6M$-+9vp+;._�V�ڟ{ڶ,�ۮh:E�'\BRt;,d
aT�i5.łO2_�<�sdz���֎\_}tmA=�iS0o]bgd9Z0��ED8z;>�[K9
z\��=fZ� j�dzbf8`:*6VW�jSQK�yKzr;DgBf"C贽�b9䈳z?�B23S*+M{1bI�829Pʰn��>j_+k^8�|D^&"w8JG���Qdj^XZtv߿*�:lHW)�mOs^7W }1�o;E�"b`*J��A�`0�ܚd(cI^io@tav7�$C
MXEvJ
eX@B[Bj\Îss�pPћ,.�:!(,t0KJc% z�
�dܻEu_fyXjO{TgSԏ1m2gm.)+>`Uprq{({o��ǂ!K0M1Wŀ`+VuakKυ)j?L
� T5sϻ���(jJIH7�$G�A�JM�) �~u¨c�-,`��-(?�ňD�7V�͔UE#Flct`֠̏��ɡkv��ߐ<@磓d��I�|Z$f!���jk�^&�:��UǑXZo+[�v
�>fƝ[?oK{Pz.ߙP�M.Kv6Yt:`US�ٗny�2J��bZ'vkaNGJñF*�n�۟m�fzIC x82vh�:�N�^2* �= /�2v�h�$G9bH�6ZDi�,V}R+q8%m�+9,8�M���C]|qO /6`c>[5:+�6oյ51�hOpmoUp�{i5jyyp�
h]-':Jprr�^��.!gO7'PH5uWm]�Z0>$;zPq�ay�5˻;��U
(H`oK譬*"t?{p10m�?p�7{pa
vUmjEpUBߩlڛ�i�sמ'G-�\|r-T�
V�nV[1А2˳g$02h*'Ϩj%`
[}8�mɰT|lC8(_4[ Z3 إd`�%yA
2_K~6C��B3:�;�ތ}k��g#inb�(ڗ�vQL�
*-F�B(o2y2�$~�$AdC�ɯYd��@=�ն�Ëf46d{dY'�4!Ff�:x�W4Ϥ^xx�Fu>�9S99s6Ԫ4!6Nt��i�(t$= f,%8)\kzf0 P.iICMeB���}�_j�&\L�9�;$ w�l-~D##k,�4 ��C/ErT�%R��囆&70mAi1~B0
�0slw�&çÍ��u��ގ`rWw0NgNrD%>]~>%N^/v.�9IZ&=&w��R&�g��s`HhW4CmmyzU95$]^>e'iX��sg.P2�"�'��=4Kgt�<銮]���Q�x;3!2x1YdJ>Gď0�9/�؞}z�Ƞ}-+
ߥ=E��N8T,�3]/5�8�H#�Ŵ2II�Ϸn'G��=E7K�}=eBsQ�xi,�+`*~�Mc��;-<�p{No`YR*Qh�,I4��ꗾ1�,\WFS't�2|S�'``m+XFᖑ�NRꋍ9T�牤3VᲡ�YXVl@E�zE�\�=#S>9k;�`IA�ъ=D�i�#![oP\\�?
,ƣ*y$DBv2p�^�?G+OH�^���ꢫfҸm��A8p�!W;SQkA(Qݰ��8UH ZII�A@/KI>CsHd8!,Jg$Rڽ��k�q{�OXG�~>G~�goÖ! �W֑��,`�df=!Rrˍ0 x'4PHէ
P�X.3v 7P�s%���(�H�Ͷm�q"�O*��OqY(
Yd5B<̬>f_�N�/�GxAC*@?�U�L�U۬
�Kj�G
�I?�\�J*oW^�B(�6�Tρj;ߛ9>�m6yh�9C�z1=לԅa Tqp��pn
=`Fy!k�LQw f���י,W}M1bq��B1l֙*T-I#�h/V
-�s#bo�rIkQ.D~kwz�ux�>O���2ؘ-fA�]��$S ?
5\��-�5�0!�n(a�6{|vt~�B,=r76_�a_@4
GVL�ȌZԋ"�sJWT~[2kIZ:u�j�&!ELQ5�aUzwe|tA vjDޤ��*iȼS�6�ʜY�g8v&�8#(��?sr�@NIMRfbZ�����" n&FYV\f|#Yɺip��@{͗�S7WvH��Ͷ(~:^*�e$T'Jp�?f"`I���>>
F]�F+d� 5noZ1ʏLij,K�çy+U\�K냥,_ךFkvC�A`%
Ct^�����DQ.^lkk�HD�6�3`2'xُu��ϵ8�m9�eoIk�<
[
1�#5��z\RާHϷ�X%(=��!m g-�6�)jS*%TCoTâBc=%4(J�15P0�Fqs�լ1H]�,l>7{
7\3%D?%U:IdC4@mS�:Zua�ֵd+٧�5Ɉ]OՐ)'4(,78,2G<�#=g;0�Yq�ؕтlVcE��S!vS=εHi
TJ�S*�1?dBr/5k]�re"(=kY69ͅ#{?[U�@rX7[O'f%�-6s�{��"*p�\ַã5�+1XK,��M�z<.h-~=4&ţ=6 �Q{Q4ޘ;�gV`#�K��FֱUO���K�_ؚ���NHW~R�d�|hG$�m7>�H'Q�w�`�u��l�!r���35# {�-�/u-
�lU
. V(��4Hg��mʹ%<�z��3��3ON`S]\�c)de7gըѾ#ۏ;fQ xKQa SB f4��.;��~*[M�Ⱦ.@|�#SE�D&O;TAiQ�^/˅t{6Nihb:ыഇ"D\Bk9�zۘ��a%Qد뚦8H[>v/OtƆ|O%C3wO�%3clc|xS�
EZ�?�t�jkX9튨
ɄSeuf�xh�
ذz_]ssO�gYB[ԣ� t&�hp dd�|�!��Ή�2�MZ3+PK90J"�&S4:IH�]g�5ק����"0VZpw\@XG죞�g�aRe�;,Sw0qG�PfjQ+�fuŘ�!�Gb�]$[�e��^�cb�MP,#��B3la$)`ͅ�q]ݙ#n-a08dJ
�qN�4gBzAe�
3�:
!>ݛ�(1wWVJ_5]��n���Hmk8³3�T)ߟX��V[)m1Zg�̀0Gt@?��vQ�/�ot�BٲF , ͔pA�d�a*nrXǠ�_vq1i{#!`j1ͩ%)z'=܄s+a3c"['PڴiqJ�uZ�~DfVeR6eրko'�_Oߚwǘ+�?��gGP-tHVcʈՂlfT�&;$B�9�p��˒d���$>A+�Hz0�|",4P6a 6�+oLe
D�X
v�W0穢FeV��o)�mT
+Ve��;{�H,�f;I�&\=k*L��8֙:>�EAYjnUWsH1$�=2ƒ%հhGjnJ$V�,G>A|�N|pֻAb؆<��&ok�=bB
a�YPbn7NViFsXt�PDtVٕ_�-bAUl(l�T
O)e¿*Z}kjlD�m=iW ︺N n���SkJ�`A�wV#L�Xo-!]W�]ԉn=mQ)"Y5�z4�_<%=�D 𰈥7�� ;�%^AR`J[\]h�\^8^W�Ge}Gmr��;�(&
HsV{�O)v' Rm�;;�B�8Lߠyg}%�P��lyi�;aاԔmo`gO7?�4NpW��U�U�?i4mx��Z9�)C9�KO�B�+ЊD���Mf8R9��1�n;F÷lI+ M~��[2q7UDP3z�'s*|ܗ6�
c\t8�#�s��LlU;�L]O=��v!VPT.Vɘ`�J0�<[}f:�
�-AF�}WDoc�]f)�6)|�Q�.+{ S$5;lS�\��{�i:BD >t(ݻᘤA%l2^uS�YrB|s_!�&�kgGSD?�&I?�7,헝ct��&Ə�5T�L5Ynf��mCCfuŐ_}�&<��1�qC\R06CO�X��¨@`jEo�#fϵoE*M�9P
�7gynQmF墳/&pk[�|�9Ω���z[o�,�N
Md-K? *�~VR�$̟^@.J�6wkArPҘ3A�Zނp+ĻGq{I�
Jj'I^�>H幋-�̕U�A�F�G�Rx��B{�̍q�}ro�q9�M`;�]РE�i,~E�p]��Rž~j�|]I^��'�yOdf"
㒄"\\�pm[?+*'�L��Pz�vk�9=UEW+?5Nyq>b|��]��gH=�i"wz�LJ/�&��yvT@T楹RFyӏ�&sm&!ܡU}4�5
K=�ЀK
2uz�|Ek�].d.�y=Q�5]�`�.(t@l"�;��yG�eQ
<<`N]y�f5eGiL"oO̭A�7:=dpPm�
�cީPY�a"b{�?��8O�7�2��խn�yR\�I$"ނ;5KT`%�C8�C[k��Xr�_�
i�N96z+fV�V��; L�!kEXcbL3-rs-?StJpkz
YoI5/�E�ꦹ58Rέ.ŕ<05ӉYt�w�9zI�y1m.>DsPS��v;d�{lڅC'ut6\V���ޠ<㜂�*�C������oPHD[KXV5V@[��#KL.�*+cjEҲj�՟٤-��K�B,a1]\D%�-�9m9L%Z,&2b^�:5�%�4 qꃶS�̝8[:(2
?VF�*wY
,Oss�r��g%ZҨU�H*,YA4
A :q>Q9^P�xF\
]H|]+�]<�7RUck
0~%M`ezq�_5`u~�dP_}r(Z� e`@�kmh#z+��5uc�dB0J1+�LIc*(:0G%�tC17�OB� Y�t����yƽ1o9���cQ#�BFmiT�&,>n �ǖ0$`ؤ2WA?[lBπ4i|F�
bJ��{gDGOI@�I���=N~֎�!�Pops%;�(HU4D��2FDԞBQ<�^�ʻU_&�s|@h&D?{�UVE'ꕧP�B�7�e��g?�`vO�/q��mS7FizDep�|<\��j2G|Ufky4 �Y f"��:�2Kv' �Aa_&�eh5M<��MlczXD2Y�G),ΰi^ �c+�b^w,�7Us�(D3Ũ,-f K�,�/s �.:mU!fE\���=��tR�ojp|e6((ؖw2�/a*�*^BER�����
3sg
�AW��@�Z}E}5eNYb�6ޮyXv?N�z˕X29h3gwӹE�]I{a{�v�
�m�~ЁU��D��?�o
5ټO��d1M4L%ϥ2�+V�ax�Y� 2:|~�L�Yqp�N2]1ZY{uن?G�[7���)�G���dw>�je8uo�2%I ?!O�6H)E�TP �:@O f�wr�N=bn�pڍGq>6KU��.^M.r::
gj=N 7�%Η`!\'ͬȟ�nMcR,?P>:v�@A憷%+�KysAK4gƁ��2'�mBIzS�c�+�!6'�9�wܽA8}�%
/'�Q
_��gh2e$�1g�xo#���]3xe0t2l`uﴨu
NwUrI�X2*C�jݕ+_Op%37�&`24�V�5�P1Zi�&�i]�:o!އ$�X�pX=y��
'(hJ�lY귭/"[1�g�7
MrJ̘϶�C)Wa�D\UW[�#�ůRR9'��F{E3K%èx?v3;
J�}�45x^tRo�l�m }2v6GތAEU�S���
}���2P��͕tc��tЄq]O$~fjyJv�pVR%mwQZcH;y-~�4ɯF}�
Y\0",SI"&fnZ��w()-�?ؕ-nF�óD�N@ggb�._3�P@Ն��M�뒷eJ��Ɩ�2_BSu�G뀵9f`>7OP�*̅�U}�'jM}NQ9z~^sgM�f?npKmDC�c�H2�[D�@Ƈ
�f��j
p⊨Z[ю|����'�tmq|u�TM!i�rQƔP'7Ո��+9rco�b6B�j.͇EOrO�RMToy{L~;ȈgV�W"US<�#F;GՇ栒ZwEt�GnDf��!CCL�ʖf0ۧ7�}?mT7��#)Gj]wAANii?~��خ|�R|HaVmPA{6P#�5(;p5%j�-Ȅ'�w
.>9yS\L.�1jFG=:1�1WE�?oUf��Tn握��\l�!O��g�?<-TPnE
zGg!b@5�E4j
*)-�~b5yG�h�b�q�J�k\>̧|��rK]2�j@᰷�F�G_`!凩y#u߮n�*QIuf�¨4`.A"J]h:j ]�~(9&)ްJ���H$0|�'UϾIɩn�"_Șz#Α܋x@e$OƆ\xɭ��~ZqqWr�qټGS�@P0�4қ�T<%!×�0VpΙ47�WRtIpԙ��퍑e<�X!I�:R�U�p+JqMd]io(JN0]?"#�b :ˈy'V>8u�9�ĕIl,o"j&r^>E��.�ά�0#r1��ʓhƟy^ʵ�Ɂ���2v�.� �A�˂� ���lyJ�=�'6c-y��_G+�NlwH՝VylR�yIZB�xkZ0v�Ӧ��q�\�kΩ�6_r3݆cQ'jaW*2vM°1#�Q�9Wһ*��0cpP�I%JJ��|ƬC�S#,>lXb|N,v�"�j�ۘ:G0=���pkO[59E\BW��'ZU�e��S�#�
ʶy &{��@жaն��M;}f;�;@Ԙ//�1�y�I٘.Yk�en\ ��\U��Vˡ|�"(!&�DM�Mɘ?�2 �Wu%sXtnkXQȍg1m�FhxBnWE�Oe!4lUK1W_�.' �@{p[}vǁGm^�?^Y�bcPsskA�2:|
w$3�D^HZY1<]Q4i�3;�c.�#z?Ov�u2iM0�
HēwUT�k�4S!]��W\�,�Qg
t:s�,7���7XC!R(�2W2bE�d~�$У{ ��(ߎ�gk2HmA�'�\'�����gYL�TUlԓTӱX�H��uaoȂfǸ�fPJ("sp�(d=Ψpe�U*]F-!�D7s�f("*C��Y4gb%:��S�&�dS Vf(]��.P�tђtMG9�&]j=_�J4���.#9�I^+s[ߐ_��)j]�0%.xi�bOlR�.!2{��S۪u_eET`쩲+���ގh�#15i
Q�O�~e[k��Zyg��-3I(|}.���j�%�U�j`#(>P}F�=�{Y��\yFz�/��s!�wI]j�0KxN,��S2��EG}�1*FQ&�"ϥdS}�dC�~� <���bt*�2owL)7�T G?Z�wk\5DͤFƜ�,J��'^AYU,VN��C8AoTx$xK1WΫuߞ�(TQ;:,]S8e�VgĀ@�ev(�ڽ
Oݢq�wٸI��&; .'\8Tp°{�̽Zs_ �aχ+{�J�29��(Xz�XcW15*�p�;��>�{�0",S�-˜ N4�Wk�*G&a#H�=Hl�-�N�֦|8\
--Ct/x(9|Ty��(䫘Eŷ66i(b.P{ʩu`�X,>-%!B��BLVwޗ:_�kH3
D|�'-UzI0LZ*rsK%oa|BHaވ|�u�y�z0y�v>�/*g�%Ck:�ɷjh�df!bLBcT��3)i�Oh~ӾWgSg.p"8@X'W{V��J�E�_�`:gTN�k��{VD*9(���`nsS`9_s:�oJ�%
�gg$_�948ql�)_��!$�w J�K�j[|UF�+M"__}==��Ac 0TuA1+���A(�6Va�,5^?�(q-h�J]x��=�k"�e�6EYtXD�*�_߶I�nRt@?)F:;^%k[juVبj�`�V4xS��X鶒%U/�Ͻ(禅FԔ�:���gѨdfX"|wт,o6yWhXzsӸcd��6�0:���Krؠ`7
*(+Y�h�?[9�S�~0u8)/z�`XI�$ho��w4450b{>x#�+?|Fl8?�EqT��u�lwcWd|;~,D�Æ'Dg�Min0��t�Hv�2�UU0uS�
4��%�=VO^�t3ɾBڂ�C2(+a�ڠ)i�|, 3N5ƥI�����&m4F
7�;g;3
��p(/L�2_�65
ѣ2:$)h�֭~9I>p_L'�- ���
!�%p)h4X'Rֆmw"4rKy�C}G-
���|m*1�J]%Ӡ%�ho�lV0żM�Pi*{�G?
iv\f2
:5Xlixe3Nt)�FU�wa1ٞd;昋"�$Ի>;�G�ykm�& Ήw�AoJ%$Pt"/t�M(�@z(dpZ_!=`)OS
>>�
�$�Ͽw}`GJ16;.BR4�6eެyo9�+I�9wcJI:�JUBtQ )�WsU�RVdc+9.)v�U7�??AO֙�5
S��M��°;�on�A�f>v$p׳$�7
�Q")cLk,3Ua�釻`+�DBO�:G;�V�
5T_v!�3Ozt�t�Y&/i ?1�B�_щ�Myq�U.|G� Hά~�O[if\\�mK��p#K0[)|>с��5y=CEMb~K�kMj�k~ն(�83徦l/ٷ/�{j7Yb�͵r*�j,wòi�%Nnxߒ)c�C+3e�xr�#چg�ۗe �
}-M#�;˅�Q}iU �7�#&-V�tqm�YMv��rSe�cB�J�� F]6;O�8CTisr`j71������_�l��_N棭v�f�*�0S[j+uG Z;�"�O<&2˲yBBuܳf�OMX�$EP�rV*Zt@۳�Z?HLd)��F(�z�`�� 6
J,@OƛsׁS�1-oɡyF�ܥ괷BJSx`>Ј'�^F3$�FwY|㠕jXG|�e�f�dZt*Vฆl0�Ygx4g0Irh>VK7t�$7RC�-�[D�Zq^'ZRZ�B/Jo!Nݠu�OX@RGI�y;Ӯ5W+u鬒qg,KŌZlݒ
6�ǂ|K#d$&wٸ!���ה�j(q�$Ơ0�Y{�Ϣ2æWu�,P>Ks{(vS)�� .d\dc=2��*�)8:gy�#�m# ފм�рѳB�glI/KiB~�Fp8v�B!�&.ZG{YҘIofej@{ݹۏ�#b;Z0Xhh E~�VZv~0�=FKƱzhR�ZRpv�Il�1v��7f�0 kaX��4wk|4�xɺ2[xU��צfg\d�DY�`5�ރ�əb>n��5�̛�E�Tr$�Bk2bkl�@$4|ҫD4L?Q%x4);A���,~&tӮ0�_�l8�ᅉG�T�,4w͆1�s{+�`j *iٌ3�`%36&[+S�۠Y$b|uq�2;^��9xrpgRqB6F�~$(i�xqB,u,~�i��u_;W*^�%y=Oed]�Y=�I
®�9U#+Z��L��$j4O;FE\Iۉ�BJNNw�j_�vͅ23!M�9܅�#�X/5g+.]s��3m
)���,4d�c\6j\B40L�y%N��!~SG@=�|��Ԡa�O�u`sW$c;lnCsVv�%zR/ڀDx�oL ,�f-&�j�0[!K�#+�3@o*Wݠ�a�n̨K-)�傔''v#ыsp˩-TirbP�P=!��_ĽR�TVLe2G��#Z%i%�'#:��h=�^z=��R&X�Ny����/��f��xࢸk$�_�;h�+2ʾ6}tL�5�6�Q;t[�?��h�WNJys�SF9(�ߚݪ7p#.m-Ƣ%2�&U2v�T��xE�:53IX=�|�.R]_H*�Ӎ<{a>w�*F�7Y|ҌB=]%�mfWH�Er">`�p�&�ud𬩱�B?+ tV��ڐoJtLlDP㐅�'tJ2M�c52ptξ�t����@��Na1"<8g$ޙjhӡV�mY"��[ߖ��{8%�s@7�PV�ܠ4��D;)Udj^�b�msf�h�oȢi"ЕԡQì%BCxEڮ^�{꒫$Qfk?(n�3�M| +K&So7�uI�$~"K_��&�Ha�RQ_�[~btQ��/�hGq�uoO�巸xX�G)zn�M9$�L �0d�v\F,�$�jǃ4�,F
*��44��ۚiNg��t{5<:*
]}8�bL;)=ף<�g
�0o>���q��wz`R"&
H`c
Ά1q#9�>w�gj~vguab�o<{��ORo3� ���`G[lEd�0Zb6oJJ)+D^M&ę�8yjYedп/�KM�Ckg�_�iW��1<%䲰?�& K;�=:w-T.^5 ;�<-\� vt3�Jm
WGu�/:�G�'2Vi�;�v�?�HLk�O.ZC�aj�yB��ŶΜj9�Ζ%�z�Aa8qʝ7�K*IF0Ӿ{9lc
{$J~
%�K@�%̖z�@8�Q`&l<�W!
�2]J�Q�`MG`uOV
c� M
��}]=!0qʒ~k
�Ps�3Su7XZf}�M5o�kW�G�?_eHMc5)5ǪD{["ӷ@qBBh;�I�y@Qng#P�nW9i�E<<-]btS��UPl2�Ufâ�ґ'\=j%n�4���K !Ku�b^ $"�A���@f�No Ms�j0�;qL*7c�8�f= a߾�ǥG}i�[z*���݀7
�[�7(w78���WD�GОG�@;�7LD%'�1lYo+})z̰r�ɓ��U
LXI�[0Hx3�Kkʞ>Rɑ3w�!w3ANپ�@̋�Z�w�_w>�-鬈`.a:xe�QxS^C��"yDZ��|*B\3kK��͟ĭ�/9^~1OzX�27�T� r�Ob8|Q��.�ʉ$'>8,:}F=TkR
Of���n7Wq�1�ٳ_�k6 (��.=�}k'Eg�~Lܦ^7��F�=�=�z[uk�&%�"�<�,��}6rݭ�O;]aDz�:AJаu}�Y�
��
iV1�dsh
q �<���G;rGvn3e%v}eљ�Fˁ׃Gҷs#R�59)̞�k 8a:3YVIm��@xwlu��Y+J��Ĝ.�<폔�˃�ȶe}nRqc�F*(8=\r���H�3�Gm�i+1\O��Ȁh�1�`c�Mffǡ7q^�IG濶 s�K-E׳9F
%Wr8U{��"��i?T�@zY٫SԷ�0c㝓u'Y(^f�!)oV<9ޖ/�"�vYy�.,o�T:^�_(��7i
iU"I�>�ӟ|rߨލ@75�� &ՒkXB'sBV"I��e#�[EB;o��&~��~SLh)y)�8#~ȹN#l%Uq�)f�@='Tn�ُ�39LImqZ̓ϗѼJ5
zN�R}<}D�!G��f,̃
U[�FB7)=U(i�vALؖm/'I�_ӊg�$m��uZҶ%�e�3f Ѩ%�Z{2Dr�/ԍ�1UB|Tl5YLVY]Rͮ7��:Fq��/nu[0N
Ȉ`+ ;<��%�*A-치jZ�?3cJ$-Ыx�\է�:
T?��BO\�Y�=d]�륈WS��jjnU"A2]�]�qtt$0���ls9.htPuSԙ�e㇁nj?��d@8Z3ww��ZP(u`䱑-I��/L\eV�K/O�*<'ěU]�>�j(��(ªZ¨ke'k/r
$32ܘEO):E��g!%7e+U9Ƶ�j*}C�YMn 19..s,Q�*�_44��|edxD�+#IQ_)�
iOݩ:?)i���
ֵ�K"�6$��I �(�9$R(<�:at
DP�%N ���>�AJl�,L�غii蜨^
!�'yHT�o`dzNqáB�~X]~?jFĤ�Ǭ0*⿎vtzZn��,=�rw
ٓf=Wg!�!us�#n�5]KO)s~aFGb�
uW/}�QOd�
EK���Pi_�drո3R064*�z���@��[�u}t�ZKc^Po'>It�^��UwS�9�v\"8-V֔��NMש}thPJ%diYcDJ�0t؟@vrs�=b�t��bq)�˷�p
/2uz_C!73q#~Qf|w8Hi�Y u�/=C6H>Đc}>U=xv.��B8#ve:udLӪqfB$ 4��gz����0Qm�;r9$I{�S(��{BT1m8x]cleC1U9?ZX�ͅˏvp¤%�~Ud)8;�crX}T4$Ͻ'�
�s.{�2W?{+i"ajs��+W�Z�y�CRkymNà70Iy
qH��&x�4,o(2RVMe�1�sf��/-]/CX^w0$9;ԵT?0#j��b.b$B
I_�^mƭv�yơ/p�gw�нo+go��e3n�\YVmo\>WG
T�^�Eٚ�V#c��GX~�_Kˑ��"{�Qƹ6��;V
�( Ѓnۺ%Gi6nL~4�~¥)4�v�{�ǺK2ݰM�]g{SM� UڀW?^~7ͤ;nH�l-9�-FI睕ȋL.�/i77iQ%x]d�ѻVwu_mi�i"+}N>ηyGiw�D?.nLI7(ǰAc�\}{恿�?j�D�
:SV-*Fcc�V�D3g!wF)ZH7 �9�Y@.ϖ֞45;G7hBS9_F�|czFdl��8vF�
�=߷b\��:ZC .FHl5%D{i./[�e=B$�lVQ�/2'.L�:_a֝X��TgRTeM�rߞP762E(lH,X>X!�':Hӽ�[w���zU�%VmuM��}17��|F�`Պ�@ַSA�DߝR#W#)E_�N,8K�4f��e}�K�gͅ6�qnP��Qk@k{�uܐX}K6^.6i�;w�vLdH[Y���P�x2E׀S<(!L4yR&�'e{Tb !رV�_
Tj��&;+e��[��}�^<��C RJ�r�S.u�ҭazd�%�Pc�r�q:!ϬЪ�W>]FѽBQp:�3ĶC�?@+(Bae��܇wĨ1�.͂�Y��f25-5k'lC(q((ti]5L�_³F�U��9�lVWv(�nQ��*5a�p7)q#'x%φݾq�R;w!7�>ץR|E݉)��Tm�e-)PdLܪ?�r]l@m3$lB1��咛jxc0�q6dXOɝͬma^+kݨ23q��^��O1���X���Egvg,F
(+A�FU4>%,mR��>?Vez�W@qOpZNK� 69�[~�=,�5FL>$CVnʃ)6@5H�vL�/+5�-څ�?j_J4P��XM�*5�-{[XqlMorް_ j
CY�iYܮ��oM}��5���`�BZQ[�:p�7�
K�X��inCͫ�B�>UQ�EXp}2ڛ? �,�G8m-`�WNQr,�SJ(}
LNz6��*ss�n0[}OX���
6���ze���b*$>�VE"�z����S��Pq&Ia®6�X$|݊��`^˼@Uôv5fq5s>*wZ�B�ܢ~N}ri�\*{N?Nݚ�'u_jN ݺ
�AN�x
S82���n8�v�B
��"HS6+a|Ak�~c!�n_PcnÁ)4AWdfJ,bgù%=)TkAid/"Upe�
ْ^6f>#t�}4t��4%t95[p~,�\z"y�ɺ�ٱLo��ҭ]"$gAZ FU1$Ʒ��|G
>5�.�X�:t?};ܺ`j�8bv����8Iߓ�LeM��HqfQ]���~>u(E
*�&N{(yPg m=���il}G%r�rQ�_a�5bJ?@瀋�Q?U~'s58MbSad83�{O@?�qf�GPRK�t� �b&iĝ(h�H�u5��F.��uƙ,�:ɫ:.��Q=tXׇVWb�[*K]9摲�˸�r:-�:v8qV0}-"_�@}Ud�V�JdRV#ۆ=o�$�62N�`S #�dm^Tj�ݾ�m)�vaTSv�O`��� y7m��v�`10�kP�ܟ¡Os{zTHɥyCh�FPf۬`Y&Z�/b>OI�BZ_h\�\b�Zv�LwPy1)�
�/��d1}�\M�sH#���2a
Opl$��]q2xDM6� *kN�Cw�tmYvۦk_�4@�"!WyT�W}7w.�ҡ�B�R9g8|AL�ȅ�Ŕ��.i=X+R79A pЋ�\|q�M�ۥzFԴI53`[JdZw]d�C,�7�Aŧ֣�6=)��6����9P�˔dGLG=+1A�)8�.tC+~8�70�ːR|�E+Q�ؔ�%-ޝTrM﹛8i\�q6|sa�/gdbI[�mw:�u�fyga>C$�z�/\�y�φPP��bC-[�\0뿨Yc煩h>��L�x:]�f!��Z(zu�B m��oHq t �ḤуS,PT+S}wEUH�z]P;URgmk�RV�Ɂ}NViAbB?Q �vß��;%��h��N�%�.
s�_UۋP^T���y'D�A(Vy�tD~O+C- Ak*�赞~SF@5&�T;%%}Hs�@]k/;tˢ�5xB!F5&�#IQg�Ȃ8+]I8(�1H+'6�.w�p\# e�PzA̙�Tw
|G3j`@Ӵл{2�fvb(�.1xKBg1�07͓&VSy*�� �ڷ@(�ؙ�$�#�x}!
#2B�~JSf��n˨=Z̞� +^c�ԛps)b`�%+)~~k�ϳh!XWc�y�=O� Z҆k�P�ʤ� !BG%BXnڬ�D.I~:8zI�$�P^B^�]
p.$!p��"�q>EѵVw%Dw�ޅ�>][�}7ÈAGϡ)PC5&Ѭd/C$oH�9bc-̗LcU
ޟ+�*ѥ�镖X/5zy)&�/n}um&����3+JqK�`�k�}�Re6%;�=կ�&K~*#��.m�Z_ux+HD�$鉺k5i�fB|Y�$~��<.'WD5O\!X@^0a}_ET�۳|à�`El\9L�D[lf`��mhNnD;,PG�{
Z T>
v�jWP��J�-�I
bhqI=\�xd�
T;.jENC"Fuil|>{2��D�66((8\%2Qr^�?�`EpQ}0�Dm$'.ܜ0h�vc\ʉyzNp߶voA�f�\A]!>��C{>)Fs�.R� y�=%}�ёYL~ՆKY��U��@�O!".�jÂW�Dk�vX3o$9<$QWk�9�4*{ⶸ&Y��$byB%C&dYXQ �*ޟ0akLQ�N�YJnm�Ï_Ԣg�L�V̗x&sQeH�%�d^y]ް�X;̖qrtaU3%@Uj�Gw1��Ǘ%��`H�≠Ռ�˹�^_^S`剜�leGb
dgjdPXqA�{GiR@-oL��4�4!K�+}>�Rd+�v =ߊ�6��X曎|I:W}1/.rA'bSPEsH�ks�aSGKEݓ+a"zj�w�L�`se��3R�D�Xk�`�hi�Pl\EJj�:q���R�ʕ�aGC2Dja)}��b3>�>(d1R��#Q.�N�,��q~�@9PL#:ad{Cұ��јo�䁒:nJ�
md�VMW7R{X.
]eS�ٲ"9�w�/�p�Ɉuo0aɥD��T_=�13;[8�'_�lABMrd*5�/K�5�ڧ_REy
��9PVg��5�s]$HV<�ɕj=K�=�UI�rbJ2#3�4=3D˙~gB{g�C�ם&R8QkalJ/>�LOTc5�<@O�r
2#5ה2>PJ`!Q{`>֨8#|��$´�Jpw'./B8Mkx 55IJe�Ro�'(e�ed;qN�i.F%pGvmxSXC
�`�7b�n!^ɷ��5�8x�Z��X@D&�7kXdtz�o|1ܹU�sySA�*���@QU`)Z?Y���i�
3;ޫ#15pR�q8zz~4h�L6�t٩�_�^ q~սBi�Og肟f@V,{# ҕ�#�q�ga��k@)
r0# 5yM�+h$6KH4J*N%�r�3NRЎ-]|,E�%^`x
t�|�}8rciKo/
%�j6
J}�Spra~ �"FF���y *]���BuXpI��p��0�_z4m�NvtKJZC@�\0,>l� %?`vG}aR"�ފ0��LJZZ-�\ )ڦn���~ayГ\~TV�Ng!$-|=t�/F��wfW[Y�FX��j,\,D+i#g|�HJsoD�ADz�OVjG�Ƈ��IXM[n�COٷ+c��~
Y8N�^K$w+�E�:C (]NMk��h6㖛-?2?!tGU|$�jK4ԉw0vUrHX!X�FZ@1?{31?�e2�5T[eĽ�s5BM1 >�&=�.C>芪jb~KPޚ�]7$5˓�T6濵k�% a/
ҷb
]fV�@4�Y��8XD3,<ɚ<'/Ŭ���_F:H1_��ko*V{sǺM7A[6�pm|�۸Ӭ~oT`rZ.�8�G��VHjy�6�L��߃{Y`ꥐOS���%%�ٕ{Up!DV1[#ŞoZXr<���|�ZZnܛr-aTc�_u)�?_%AjhdD�OLj`ɣh�RWk�L2��<�)�:F�x+Et@\�c�^.T!^sU�ݫsX�FEps�YhօWcbx=k"GO�闉\L6�55K#^g\Y��C��"��Q1T.��-_D1��z�4�T�LK&-*$� 1!�xԔA5ŢVӀ9Ȍ�3 �q|!Y�l)E��/�,J6/��vhaqwJTss|bq1DzV���Җ)!8Z+%?f(d�߽vz�J�@� 01�x8�<�LJk�{�k��q3>iJR|�,�zj�4_[��tق=" -:,
՚ڃW[�SHR=��r%9�P{.��F؛?q
;VJr}�,H+drh$�F17u3�ɹ-pҊ&�*Pvwȍtss=К��[W/-O{¢Ko-1�I: F��>3el啅@��� �jچ�
G�x'}�v
�DM
I�_gD�/
ޕSclj3�hS, l B"l��*xF y�Gm
j-bߥ*J@�[o���A� Vk@k7">,�� ƙJF^е4o|5Q2~s8&�kDMlE��Q|iz+fVr�@=%�7t��1E~ٕO4dqE`Wx�[P�Wj9}�JЦe[BUg�
n�C�+��;ߣ�E7y�Vw�)b┤ؠ5d�i9Z*?U΄#O�cM�uyn�(���zpGIag);vM"9nDž� �V}XrV-Szp2DO; h;F�,�O>ӻo t�O�axv�֣�͏,UM� �Qi�4, &z��>Yk&�/'M\S@�ܶ�T?�ێa�<�E|DNRsiH⋈M@^�=mNN�a{/^zVy&H�8/�2D�_�C�sY.�*(rx�2v!IG9j`!El|n~Æ�(ڴۨZgsd
Fy)6ա�VIYdC> 4i|qôktg(l2���Ƈ-U$�:Zbl�7L`;]躐'6G$_�>���- �NGpM<*\T
�B?��OJ]TQVh͎�δJ>ƙ�ڠ�ᥱlI�B�'�wxS/'ȋMU�ß^�N`d?:O:4U^eK�\B:8(GgJ*z��76u�o\7@oY�H�wSIJ GNP�vX�#
n��9}��!ƥg\e\*lu�qRupE70 �P�!PzC!YߍN83��^4uZ�V�ZeLpeDfW�6GM�Bb��ܕiDF0[��#yc˛dVWK1q�(@9&�P sT�W`;�5�[v8S%2R`� K60�kOW F�\9pݹY�]Y�,/a9 'W�Ǝ+]�}D6qGB=: z�� �e+zx��1d
�%@i�7E5^̳A̧3ꃌ�
_4B�6Ũ&AA�ܰ> G9U�e:B`ͳ��#)�Q�FY�Pu"w��>�@5}x"w�ȗ0|5'.
HE�Ů�ȉ�cؒ,�}��'I-�b?^k^-�HJF3"}fEЈjRF氽�lBudzh~
*ݐ��Ϩ2V}"#�PKηh{{.pd@N��%$E��=��>ҕ[�j��I2ve(�o֫?ĢD�-<��拕�g`Hɓ2J' xul*,Cz,���nQ.
Ya�p�U"�N^�<ЯtCL|8'h@�₣,.�hH
z5K(��S�����<=Rw7(0h�=��y�;+�z�8K6p9]�E�]
x7x0
eXOyaI�rԑxDz#P^�{
ڄԑm��(.٩.{c]6N�o,|3͙֜AW�1mH$?�"\�3r6Y��P )'0F.͙ͤA)nh,apOXS|y����?
2_jN8W�n�{v]a6P�1&u|fwٟŃ$rT>@�g~LW��dV�~W}2�&U�D߹.*�ه=#-�Z +2"Ou$2ncɠ.UcOѽ:9t�$@n�l��^Y�b�xg=a@{xms@�O@R5?|[ #�p���(�(��Yj�b�βr_9A
C=Ɓ���MP.�G$?Up
w^Q_@xK`f@T ,�$R%1�ȧ8�Q[GN�kLU�B�M 6�|Dah��uf=xi�n
t
�O?�d��=B~Z�q-'�aTOΓ]_,%�ɀWk0ԒHd)�f! f��^b"َ"#�%*XK9S1�H�jbV��lXf�ulMu��1au�h�0d�
9"gHE3䖑7Pi;d�"*�W89s)�53[~،�E1r<�?Mi�x,1.�,Fi�cpT$\
�|�q˷�\6>B�1:��`p�u�_&
GsJ"+Tl$C�u]�+P�p&m٢(�nߺ}2ҖVCWp`9�2E�|
W�ZYy~'�4bަN.VD��HJM11g�>}>J-%x<
,k|Sppurs�9F�hi��KIF}U��P��2VP%SN w(� ��5Nr@˻ѺkH=!(�V� g<�~.�j�:`ygS�<�Ze%ed.5'~�h�K��2cE<
OƱ@%ph"فd� :�W
hx���e#I6>QKT3^���9� s0v{\�?l%7bjf�:fزnc{fWy*p|>r�jZKoLmoX�ZDX��9ZRs%&�p���8�|-.Oj�)B`g�uw3�ͥu�MT&])0aLO~��d�|�1�o� :lz4�ʓKkIA!}<�$
mAt�%4a�EM)9+�&��l�0xс 9A.tٜW2!m�Jmž�9cd�$,}Jei��MoF*^`rxS?FN=xj�3ew�"qAY)Z�# �5v]H ^Z�#i�a
y@�/,L/!?>��y4]ј�}T#MҘF�@y�Ӯf(Ccu:&1؍mF-""�?�)m*;l�_tZ<6v$\X4!rP]�jA}���&c�36+=�TNWϚ4Ѻ_�c�u._���ǵ*}ј�c�/CCN^@nkPYôjlMv=h��=o͏�f����[����c.κxk� �EJ|N�VU&k)3=
ZxTјܫ�"RRe9i�=V�r^ۣ!dg~E��H^u`\j�чJ`˪cM;2% w4=zbuV��8
.V�d'(�tTp�F�!m.�VOG>Cd$�� c*y1�(UwQ]��i���FwC� �'
Ϡۣ(=�.>w���"؊q�r;wKf`�@TSC2S'.O^zCaZj>,�DMD!!}爐�w��7ZqBEy�Ւ!}Lp"|t'��I[V�.g_�6�e&Ysfx%qD+
deU��NZq�xfXODNs< {OKiSG�}x�BM.#6^2�0=G�0��MmO�],:�㉬��2q6>@F*ЇF;`aQL3r'�{WW,wm��jFCMBd�t5$��kI}M�iU�NoGe4*=ߜu(hGV;�ګ�5_B(烦TAe�l%�'TeRjth=l@`*l>C� =molX5H�
��
*�s*N`�Jk�6ыvc/_�x"�l�-{^T)1��iI[5�\
�LkMHf?��-wx^��V=AZvZs0��
U헱{ƍ<7WG��LH�zK3eo
0ᐱ-N>q~�H�2/��+өsICz�V.{|�~pհ'a^)��f��D�4!HB©1�ϬAֱzeԎe/ą�_w�_ls+5��;۲�G3��#G7H�O;�r�7{�P9�
tavW֥ie�f32ge$Y�@�6I�h�+,z��A��¤��p�%Z5_�߳c
_I�(=B)c5莺j1pK7Y=y�3y�6aY]]��>3l��L6h7Ď,zlt��2al_��^ j[|�ԖjBߑ,1;+H�Pwͪ�l.?�qRvD��[w͔��Ț÷[tZ&(�)�Z^,#>+�5*͕7O{S�$c\AQ��1�t��Wm]�Bq*Snk8d��*2|�qGOFY:*sYB~-*�p7Eb4�̐P&'Lη?HC!,�i����:�n2X@Yk3d`39.i�7E^&~jsSB+N��<��zA3:��Z��e&t: jÛţ�=Z2�l<� �ChB+�)+�y-> [�I6cJ~(q$�1��'�B8�b7a_sXq0LPy��rS�8
\!�ˢQgs��(�N0|. ��"na{�NlZN <� VCchho&�Y�zf
tWCs�Q%R��n.\;�Sb��('P}I�1ڪ)-5%@gJmy|kQ�:�;�e�Gp2�Jc�I��vS!p�U|�wV ��"j}2t;Y!�'V[`�؞r7E91["4�fyMCօ�k�*��mz�T
�N|)&0`ਾ<8ŃxZ�D Dy/1НqkUVւ�N �
?_o,EN�U=�h{|=�Ge)%">�hn@O9qv�+j7#gVY��_ϻܝx�+,�9,�g"F|���JLYʴ�:$Rz鈂+oTG�D@ݯ�h�7Lnnks�rOa2VU��@!�_~xa�[Q@ځ@eWZ���0J1F� [Ga/Tta�ټ|g�j�gP߂A�[Q2��q3vT'dea�`> �\DJ{ȕ)�b�XQ:D�2oBm5IuK;{pS�dM�Qдv�\9[ ttWGۜu�nٹ/C� 8
�zh�̘ѝHNĵ��8#��R�3P�dK7 *o��-qc�֛�\�"%
�dhm�sT�( ��CH�,hu4j|�'�ۿ#Kd`ś�j?��Z_��Wǔ�L�sG>/�`+s|@zq�9%_�/0�@9O8R5 ǔe�
DEM3:;FɯaA��c^w[0eE@{2m5 _Bb-[by=�U}3�{+]Lm��C1#룾~i�m�ha�4�y:
3.DԪj ����ITAk�Tmg
g*a
�KntằzϜ@�Ep%�\+eé@;��SkL9{@^\DW@�,uB"\Tva[t⏹�6QG��N'ܺx!'ۇl~lk�#�NQw}1}T80X6�)Ճ�vtp:Z$�>| oH��lʱ��})V��蠌�tgCC..X!c%T܉FЦlNxHdW=SO_���]�7i�VVҤ�TRb4$uvڠ�(W�V��`~"�8:q�٦-Z3s��j�na��*��3B�}��_Y��PQ)+w$U�K&['՚
4K�ór�5r���U7jˉ]5ʚ=60C9k(7CJjf!Gy)ߓ�~|%p7+��cͱ/'आq,�$)�wwd6[:R�PN�55\`DA$XN:�?uޖBH��/�/@?�a�3͌ YϻLy+3�FT ^ri�P;`n�@Ոy��cUB�PC�>;
QRv
$����e&m�§eZ�metƭ2�J{hP�͟F�P�0{N˖zjeIK=Gj��RS=Y:_\1oXA{`1/.ǂZ����˽(hҪnh�G`u�g�(T�<kh�u�N';�8zTłّhi=m4Rm�H#`ƪ�
:
^�B���e�[ߩG*�29bN ynfQ�uP�|r�#�4�D�َ\�qYs&I~@3�q�(JΉO5�Jڼo�WF&H��L"�<$CNid+W�^�4drC��*K�*ñ]Yz
̨g
V)���j'��E!}�Xrkе{�+2�'eQ4tҠh'�Ͼm�(Z:^v$9`k.M y]i8-T_)FmK둧]83*!M%7V:02O=r�\\�J��``m7Q0Ѩ ��^_�أ='r*F.EiSLmd@�]-|5Dv]�K�Bzy ?�O3s�G�ku�K�_C�j�S)_/@=o�[�yV�opach��w\�1W@e1\`Β>�M.�A�IqJLO�d("t�M<��;�d|AU�%=+WΨ�=�2*cUdH=f@�ꄶd�oDv뱌@�
Yqx"M~
>j{ rlui[�չYac�qN�d ]�ԡ_+l;�
�j⅗Z-a>A+L61(`�Ѻ`�ͬfC0��1D���#S@V vm�7ۄ�t��,vQ�P>[J!
>�*y쮎�o!�cc)<�
x�xfC6,yF�b��압\�D�7F��*gN��'naƴB32�,��
=��^y�ʟsOᖝg�vGe5АH ��P}U*okz�v]]TS6H_J�M/Ͼb�}=�
�S]n�@Ŋ�QS1
L!�i+�]RŸ��>|숤|02a)ᕴ@�R@j'ŪNK�5*�Np *>�TK�c2Μ�T�"X!'BX-ғ:N-\�^ȨtEciޠ/N�2��09IaXt��'Qe!^&,ˑAXNp��Kׂ�m"�,�(@Z�R$d[U]DI5;0 咗��7e�u*`!Jr�hw@Ҽψtտ[XBH^"u*'՜O�6A����681��xy�X͏B�W6.#E!S��.Ҿ�4&e�uL=4QW�X,֝ =|bFt_LsC���RTpV+#C;�L#K �mh>#V/]c26=
�t��LhQ'eum9@07S'�-
�lزԞ}nO=Rj3jU*�D)άe&woxגAtCQ$2ATJl(n��n����wW!(&ւ�d%�2|Jp!2Lт[L
^
<8B'PC2��/U2�y�^�>D�G0Ŵ)Uj71
l�ʟH\�7�%:ށ��Gdr4Ȩ�|�ӫ�8u8٬����iJ��`h@��wU�p�#+ǭ"A�*+ֵe|_&n#{�6(�c ddՂ!�h
S)��""y�ܨ)(�mգ�E8GsjԸ侚{Γ=uf3E�c,*՝PpW�a�1s�Fߙr1],D2
FO�o1Zo�v/Se02�w�כSQ,;�3IAO
̟>>p�c/"EG`Y6㎀�㉺��.�M�z�%d=xg�M��YJkV>JK���ϲ3�
'Dl`m�ݠ<L�Cgn a^�WƳ��{>45�
Ot^�X-@_C�:MjrNj^vъb Q,`J�*�y�e(J(ӰYJK~yK�ޫ2�$-��CF49�#$VY H9;��5~�0y`谼RxGT}>٩=�Q/~-Һ �˳!��sOX%��$s$�sȺ[H\
̠n�;pb�α^G��>/%œ\`��|$~[�`g&`D&埚uZCAk�Ҿ:�����?���$�@ 6f<]��Tx��aTN�Ͼ
ـ$q�J�aX^X�SseA�*qQ#G68dcuOqpxNz�}�3��R�ڒ~b$ �DOno#g�90K\*{ސn?DР+!mV�a�1<�B#Wzb64)Lyzl'h(*襤w[U� ��"�i�f��4��.K9nbbyCw|סD�=�rwwu_�
Y7/tФ�x*Q&�H0uyfbت��=rϫg�V,�[{FU+ ~K���RSݲ dtAݕ� I
vA_Yu�z+a��`�RQ(@BBm(Q>k*kۅ�icqwHA6�{Mު?L N�0rQX[2߀��gcnԻP~h`�ː,=uY��I�@L\]NMm<'kV�cʼ�Iz4^J2>�$:)Z
X��,�㯪UlUiQY�9iEt�ƥ.Dȇ>�[C�V7\iʨjU�kaN]_N�ʟg/lj�u X,�/y�Bo53#t^W`ƚ%x=;;�grf<�\�R.ɘ'r<*xFұxa*'˧�i�xb zpR_"�xK�2�{�AxћY
C�*u?��6@U����J
kms,��M�4�v��ŭ83Hq^>mcHS)%@IF/X�wH%,_륍��Lz7�;*y@ލ�kWX[ۦ;�ʝ���V'lw��pY�IVaoE�s+u�FP3aá�&~Iф�
lF8r�e/�:w_'q�I
V̘!Y�-b#Qȭ�*WG :Ƒ�sR~~�Yu�p/;D#Dz�%`}aBAߍYjVϞS;y&�لxY�X5&UO���Y)�-b/p�vƅfҢӤL8`,��� (%O�yń fh\$VaeKe�]!VU�+�&5g��ЉQ�;bx^�VR7"(z@�z��_wFH|bI�(},^7CT�kx(Ipg!�})v�^:MHY�-{`Z]f)m�Ր#KfPYI�Uzϙu��&d1�&O�
C* lW��"+FՔE�-�yf1X�cO��NoVl%Z�aohQ��+]m�!v`C�v}�o��R,~!H^�y@L=o$�`N;�_�A5&@3t3g�]��:H]fj�����0I��@UkNmCAE freЀD�[n{e��ͅ"^R,�r
l�xf6��!I%m'�~uc~n�-^�
Nc����>*mT�BX1I(L���,.o��*�J�M\|į��678�M�>VDצk)0��Kn=.ڤiA:gx�8hvd!�!�&1\�Q�Y=�wp�mNu�ۅ0o
I84{a�Q�e�S:r�aP�Q:,4WoA�"r)Ct_X-'´���\(3V��V�v�f�//�ğW)&�&
a'S�#�SO M�n+�e
l��G\>��#pk?fyMc+f\#鱤F�"br"NJDRF��:?�ݫ�M#��h�w�lV�͔�[DpU2ƨ�R?L!c�`�p��E)N�K�D^Rq�P=�wEn/MU
SG}&Vubngxq��Cd�Oܘ"��S��+:p��Z_���h/RA>.k'��zP3~�sJ%��YCFʪ`IMwVNl]HЍtmZmTL�ix^zYCh{1�(iZ�Ć6"Ѝ�8La:䁊��ޚxc��i!a c�Rno�GO/�@G;Զg&��_ G*!W�E$ځv^�W%+ʆŴ ~̹뚕ѩD�w
�H3ܜj/,j M)N�1]!}E��'&ޱ@6^H�
K^T
M_[ࠤiī�Gϻyo䱮#=>(z�ZSq
lf�5J[b⇁`LɝˤK(TL`�`h3#�͘2F?.@W�E1OvF>έPH$��oT0\=\K;a`s��^�X2�X�Ռ�B2�ziOiVu�N=�m@&@sbAۮ}2:�˽e�챊K�~]s�b�i:Z�527z�@"��ze�EAzC 8f9G�m��3>�D�_L`֏<`�]jJ�r�N�'�v;EMt�>
B!Lx84[�y!܍
T|u�L:l��t11�
[)}^18h
EK9�
�z�#�GF�DT�-e�Q�VX[Z���Fe�+]�9��D JȭODWF��aδ�fУaZOT�4AlWx@f|߅�5�h�<-ts73
63�NR$צn�RB�WH�["�C͉Sl�~L!b{ =�,-吊DZPl&�F+w:`k}$0�U]��[Ǣ}M-5=2v8Z���#|+%>UP�yN8@B7+�xX�oMf�Mƺ6fMdDY�FO<
�f`Z =X�w4nv=>A�n\Y
�֕�2{!e�/R'a=RhB*9*[y�o�XS8�u
6��
��{"�ֱY�5nǿ=G�h�|E:�3ovfq�[(�N�]\R;WpZ�>PDSH�(.,5���f6hĺ*^x��F7�A�� :_PɛU�FKT }��_FS@v?7�
�Na�r`JChܷ�<$t{B�\i̊huA|!�=j�ҏF*k� ��-x�C�sN~*[d�=i{d}�
΅�Tu;�SNF3[.馒�\�R'��cxmr�WRz,}��k(V8?0R"W�� y\�*Om5*,mPPq1HQJ,T�ͯ~Yąl2Ia�hk�/[G�;Pw�Leu}T�ZD
�wU61cmsJ�6]��#1U �N]XjVqa+Y�q�
SZ{`~y�g�ME
(m{*@�zFnܝ.tf�(zq����k1FN?�I�ȉы069_MS3
��|ݰE!Ðd�7HQyi�~d�)0U@nl�5ܐ~1^��=O߽X3K�#Ag�:}#,
Vӹ�F� Db2*H2{�7+v{k�;
F�N{Qee{:J��o�MK2q͡)NNS�;�בb�;�?�pP/VEl*�?`.K�I9�~�n aUVggA*ļ!�$��Iu1o/b��4$z'��Zl�t{Dߴa[�W�1&�eM�z66VT�
�?*a) 6�,"�dԞ
<*)_FIx�r(ח\#�&�d�U]ٍ+;7�4R.s�O;�ML6�2 ƾ+�� �(a8|:V`r�f<�gELc/ejͥ0|oue�h�QHa_��
iASR�+H-UŃ"1u5Z˂�iz7E�).C�(e.�o��{%LQG!�ǘ"갲��ja�n�v\FS�uP=k��M.vE�{X[9i���Q#�ۑ�l� j'jsLJ|�0i\H\@b#�~�bXۏXWRT3pU�kBI�7�{hs&�hXė9泃jI�quX%G#T"f�&�%�KP�uO�/M�9
|=B�Yd,gЅ\t\M^se�W�KP,4^�N>;3
��ux.�>m�;9%QڛN##ܬ�})�} 3}0=j4N5qb�!9R.hpf[EOb�Y A�nҿ
�("yDN�JZ:.Sg>�}=epDq39b����"m \E/�9MVMF<�?8fIIF+iSsu�%+%va�͏k(K�.|\1_�ck�$"�_
[�l�CL�W~Q5y*U�?e(HAW�y24�Ngd:M|�,���ƈZ�;��;7.s\.ګF�F"8ŢbNw8g~sKV&�=ڥ2r];-�(`�ӒsYd��6� 2J�Y*S{aac!>�Z϶�*�+R�,)^+c�
Z*�Ȑ��(]
t�`;'�Cm?ZPEP2բy/K�[Z�
2N���� Xn+4=qn�Y+Jr3@쥜��)��@#�h?62�&�{O
#T}�\��0(Vs
/�ZW�`GZh0ϋ�X�͉@mB@4nb�|@4[
{aĎ3E5�3.M=Eq`bgvE�C?X�6'(Wc~\AQq
S,J]u��[�C#;{1C$�KOt1I.k^�L%:PF2Y�҉F,g/ >�;Cj�1Ĉ%F�SI}B��Q_,�Ķt@v�Q
Wm@G)ge*�njT,LHLڌ6}/ wpp($�ς]Շæ�+@+�
�m�uߧr+R��酩t�
:9&:�D:ci]�K��jP=<�?}h8��^l�≌ɶ"8R��ƙ2:-̊Oal~�h+yo]�S|xPj'c^1
ELVK�d߮-y�H5տ/r�!�8��(��Q 52 �m-/�e/L5"8p<�麃@}�o�iOųS�3(���T��3v�XPc?
ė
�.�I�t̙RԒؼ$��, [�P��#J?}Ȣ`$L<�5?NV~�#��~rLض'm4V�H{�DU{By+*�y�;XTģ__�3/�N�˯�+y�F綆�lކ ,0ljЮU -9a�(�p$hL>� �uMLO1aZ
aWK5p1�U�,&.]j pP��|�9HVŧA:P=��|Ƭ�=]gQXwiU]G��w <��TG!�??;t$KΊ'�kpN-w+l�8WK�!2�!Y+)J��Pԧ�+Mi�:ռ�4�`
P�9׳3"$D�bp"�lҶ7
���M
)I�<\`P�٣,�PlQ-.N=�X�,n�^�*�"Vs5�3.X\f4q<اu���8gòlX.mq(6J"�m��_J
P4rJU?R�J��k _]�K:��Y橞c`;8Nmy״-[��~Z�q#׃���K3.�[)?W�>AAff!t�apDf���h)8jq�gV�"�a{|D)r��K�h#لp8Lb ;�!jzj�f�@}?uR6�n���"c�ʹ�)�j=r�*�&DE 6&|,�?=v�wK{~.;�x��NpZ|J��cly:L>M�=ke�P;q/m�tDJЉoɎ^�I,:|E-n��`F)) B��];e�EjԨ@^ ,��dl�GâYןA
.(13Pw3<]"8<~OׇR�dR�O$Cm"1V|)�|Cyrtf4ɓ#��1 8!�B&qz3E�ÅQ҄�I@؉^8F o�9�@�yE@__;jvnsRdE�D�h
=�=EiBA7y�8>Qfv&xRWyD��2�p7j o����h/d�@7UO�>6E�Q�dK�5ٚᅟp/Wf�~~��m1�t)�CkNʼ:�9}@ԑz^{t�=M�:� ��=�4J8���Ab^LJ�S�b+"tuT1�뽢ÌҌ�5a&l`�Y�*��i1;X֡b>~�!�CtYo\�A|�`FY��1
�b��;�ݜ~
Pr_Z%7&=[}Bq~.1v��wDŽ��deΌle;#e/^}��lG2�aɹ]�9cv�#~X~AI$DAὫCl3'
KZ��j_c=*D�m\*t|ަ)l�i//��1f|t?�x8�OYE9n%Q��wB.�S�ueaB�~J�,gtYo{@PD]�X!瀰UŨݺDM14n쉄(16u�T5B!H�o�A�
mB�ȭ2Sjg:87YZNҗɍ')
qZ/GܵYE0�b㍸��y�^mPx�??ee"m~ҶR#
\;kTw`i;�d Y'?1A-`�YM6_q@RHo��BQRE2��2.
�Lu߳�G�-HoU�#�1K
qNFJ\6#:�rN\Bs�`�ؕ/x`�"|�z8ui-o �!�0�H�JۏH�rP���vߛۧo2A9�,xٺZ֚zP�U?R�'ה+cLD@Lp9$�R��#D�0j��$eW��l�x���
J0[+#/�*>R�:Qlv:�%�?�XpYbx|Tw��y�-C1L�4gy�*>l�C�QOx�K3�]F�A��[�<>=�=KY;rm�T$)L=��r^cc8xpfbiҴs�ƊYs9M1�~t� bk"r�Rs2:; nS|�_}ٕ�E�G?��E,2�ȳѭ�R)3#$5"�
0:N����lcR,&L8Ԟ��v�Jˆ�_ȞzQ3B~_JDZ
�Q͂Hb ZE3�N�s)�haAzh*?kX�C�SR>I4@0i�\7܆`��W�eP6�9��K%��=e«jv�8wDR�ϳv^,u�aۈu,;и��~02�Iz��Sxw|�Vf�1;qG�;nA~Mԕ#3f_y�ĕSm[|�ip� ܲ�
puʕuϫ�?kdH9��2bUZ�[�y��"J� YHM?={�.�w�s�ǜ�C,rq� F D2^b �]�
좰o_J\1�.k[.^6�ڬwGA0dj�o!W
���Tv;�5I@7&+��Z@B�eBSEUʹ�63:q|L�!14җD.xNVs��I)�@�E��=�V��).] q'70?�o
_�+d/ɯU�U96�ǵ��GPQ|_�q�3�0��2�}T)Z%dU"�PZR�9=� &
=[8N>�S�ZA�Ь yvHS�3ay`K\Syϸbys1ҏ�8_c@�g���O&p3l�P�t8�jpItM/a(3��^�k�0�05=�=rߌd=PFse�s!LW+w4[J_e� M8$M.�N=�IU_Kevx+:Ҩ5��F�vp�o�Vlt��'θ7Tjnd����?���HI��L0QZ�8|wRvehny��4����;4L���.�;rlxBMOs45F~}3�e�sF1pV8~ �mp�6gW+$9�{]�,<�Lt�b�ٺKH[�?lG4� xPVC鐼��J�ˁWz�;"Li�Sy�L�k =o)h�K��jYS���Xh�[ć��(C�F=>J=qv7�vM��'B.a}G!=�|ta5�FC[ANF8كމ{$iB!d.El�F�'Ir<�ERGmO6ru̵k�ƸY�d�m1z������et=dm1��z�B,���)�h�nWM|DE64/
a$N�-#nRh�{\$2��5\"C%B-XO_>�"�.��3Y�圖�w3�~ 7Ljtݿ%v5m|",c+��J>�?�0l0L�el(X��&~L)%��pIka{�X�Qz�HJB=
e��I1�SRF�N4�SB2_�v-=jp+=6ZLf%yh6\5^agH˝�:h}İ�
TM}A� _�[tX7T�rt-8r�Db�nt8�o�;6"�ލr�"�>��Ah�0JZ�C,|MF>Tg+N�gf{Y�.'#V7u;�4q VT7,]C5�S�MG�eZLB-jgPY�N;�lQ+SH:ln4`AqCRT݃�V�\a~vHK�`��'|y�N{xt/(�Hh3hqͤx*1:m�S|zꧯ�% @拙��*DpD۳MTLkVR=,^O�-ǯ_��gܧԙ��|;�I+��~���c{vs
j��Cq�P�*}y^�S~2-DFQv2ڊD�n�Sp6"�Q(E$e!�ʂZoHN�U_�ڸ�W#(�pD�Zݵ;Ps�8�6�JO�1o�$lewT 7mg(N�+,l�xi^nr\w`�_ԓZ�Nh�<�8Ж�5b6mR7;x�h
�5NoUBf[M(mf��DqvQivc|FzDDr[G;eyרwv�����+)b
秶[��&`(��skjP!m@KGH}�ĹY&ЅE�(�=q�-Z%�H]1"+|P_�O,�kԠPk
�CX!�ܱ?{4Dg`�__9M�#�s.��F`N�L��<{Ի,wY0;2i۹6�Ok�2%Psax<}[�NkI��=f78)<���H��B�R%�ۄvm��1E�J|3��*Z�'3o72Y �
�JzRWBl蔇��e�/!L, �397@醹Ʊ����j�Nt{Y�/aueA/h�T&�Bƀ�f�yUν�z[~Or܄r߅mC Ʒ#cC�dE-/�
L2�z�6O%8�(_�ݳy����
"�IІ�{K+� �
�F[~ �gZė�E�k�bbznS#�x_]�j�e'ټQ�`P4+{XXLj'fMTR]�+[~Y]TDE,ѻe�Q][ Fْ|Y�_�Xb�W{"Ӣ\ZT�/�zz'a)�} ;1�>f&sCmY{I:Y*3�@4:ϝ�9JI$>~lP~��L"�ؤE�_-_�DY/̄Z^9o]kߥ^1;�gj%ثٛ&��=R?��*rt,3u:
*FyVNZD4j�_G�odg9�
3�1�I\�&)tK9}HQ8�^3+w՟7z�%~+�30(涊��:-�
mg�x\%�>�o枇A=7c1z{n=CXsVd7�y,>M}$2��zOJ4&hR�$co
[FzkG;韨k2Z��K%4�$LbwhԄy,&{=B"$q5i�%~��
0fAi
Odu��Bfr* %�k�iG:FLfʥ�>Cdc'+�f�:Ǭ@RCC*�MyC`�ݒ7ǔ'=<<,i
�7��u93isQ42U�Pa$�87#*ʀa/?s�_/ũ/�<7@D*ix_|Qh!1|=.}K�Ǚ�E*VEB7<-�Md��ʑb�&߆^�"pz*Y!-;�Ƃ�ѕ�%A�;66RJ��&\W{Gc1L(�\��lL";d�2 M�u%�
Uh-қ#h�C�ҞR<[=$��p%�qG'XvA)~4f�2f�x�T,/f�)�M6�J��k��Q\E�;�7)�;-bl�Ft7 UQ>Ჺ!aS�λ�A-n9cMH�&sr�y�UŶ$]ãY[��tA/@9ߥ:Bi�₎�
�M
T�z
�):~d:-�a?%���k�G�+U!Zn!q,!�J\ԸK��_dzlJu0�;d�}�}&bQvG�1$:v4��
pU��׀�ϲϧ!��{S� ٍm,z&j�,7NtRZ\x&ɷ_P(AҔ)&C��=H�%��|}{NsF�
,J.͂\|��� ƨx[^K����Ϡ{�Wo��['{*ϛr�>P\&;����݀�eU�Jcfa,XR\�aۻ�Ȍ%@N
hQN�6%�� o4Z
ͬ)u�r3QQl�l0K�9?P)�+6ճ��d�?�R{�I B&Z�a���;d\AnwAg1#
�+L�ѓ5^�r��us���)kX쳧"�x�zFZt�ܮv)D1i[Ȫ&�ww�S�P��i�P⑇Կ?ע|�/�HH%jtكH�vἥJ?x
^�K=�?fhXqF;�~?�O~�*oBܔ*E_X$J~n@rװ�809�F[P7�W9�&)L{ ^7ϰh
2qgzD= GTdLh�tɫ=9}Xd �*p$��D�y104�al! ĺb+�2lM$,lҟTw��MCRE. 7�k'@JM;�"�e`;k�;��F&�T�CVg1p��cU~�:�3����F��RR�Z$k=imt63�_Q��U5elr�m�cl�ۇ/̓K{�/ݱS�d�BŐhh����r'�{t5kͲI{E�wz)9Fĕ=O?`˽]J�b+.7aX�e�MA[E|Ey2?<���7I]Jx`qNi.�Fcn��s�ܽҮ�dU��5y AHϰ;|ϔ�v�6op�{cZF�AR$~kJ\�eD&\��C�~R=*
C}e�=sE!�RW|Rg�vSc+�V����je?M��PȆ\㢣0T84V�YaR*�M'9!czDR8R�1z$C2F\ǩ$lNf?E�]X�fg^�U(#I=!�W\d_�0�
6kϩՆg#
��V��ʭ|�D|s'3*Aw�ф,6U"��8*ܜ�w�"
H}N�V�$�K/IX=g��jUp8P�4,�n\?y^3g7HͶ$XKEb0Xdˑ Y(��7?YR,>R2(�uߩ��*�R�vW۵ij)k�GLޚ�Yy3HP��ClY
h4p}TG}`)Y�sBW^ı� Q֪ӁM7c�9(�ao41O'y�mi�$�`u�6��+^(.��NM1�EQX!sf_9�<ȿ��mѺ
�ݠXQJ֩7I�O�9�c�^ƃr$��@H1�3f.I7N)c
@b*a��־�Ĭ(F/v�g s_nf:։$C0D�m,@=jr^{+��K.~a
1qo՝3�_Qs2�6ܼ0@$Dd�?`ܡ2XTtX֧%U9S�K�L66ͩ[�Ũf<מC=Rŧ#Us�;JhZq5x�ql�Ԗ@rȑ=qẔ|�54T
g&v�gY�^5q,ȵ�:��+�b�ռ��^Jv=>�[1�xE*nQI$p2r7�GLNl�# I_�H�'��uV.!G�)#*�a!eI\v sX�,Z�rP_�8@tȯ+x_��h-2�=rIJUl=pּ̬*fʦԑD�_Ź3o�
�[�Sy`ꓫ�v]i�!/% 7O�K��3�ӥ"wH�¾�/ϋ2{pE8ŧ"�CN�X�!�^?VW�h�
%g76BH�A�ا]x�er���
[֏FLJ*Ѩlw"?��N�'Q�3~�#yi24N'�� %7陷�s�W��H^+�/$Ff�$~.z*�$!?� �0�@
F>y
{͔@ҍx�ѥ2��N[zY{ny��*#.m*�,L4�?"v�;7:T�{؟j�W�9�ycvOP�M��R�W+dv<�05�� S@b0�p�nxUM �Ei"0�
/|�U#��Ɨh��
S2_�#c[L�Ლ
c`K~"Aq5[ﭟDxN!bt˺�ŔܛQ~�3��hWmRmׂ]C0�OᶺW��]\
�k y+)K:K$u{g{E8.!�^'3f5e�.k��I?]7sb;!nf
v^�%,�S�x$|lZ�E�dھ&�0 �-2��$�`*)�o�'?-'J<7
A�&<�^kE3�/izI$o[sn6� }n�T-k=ڇK�šg5~f�G>�)Tǭ�� 'yI{#�,:gA2
U53r<~�>qEc)>@ycl�҆ic� �!8��%*JDߛ<�J @1:
)1��NX��/}=*d).%?;�
�?=d56_4:X]2v(n�W5�t�&u�|Z@�2@([�G{h
ŏ9��+f�>-{�,6�;s pFޏ�~".F3B=�A/94�S{kҳW(��5/#pSE�@w�VӛrE
WX+s&@%�lIZ;Et�/HQf'`I
ĜNM,�.).{DΩXI�]��RXMiE&��[J
Sc�D�qb��_Tx�jD!`��3�&!(w���+>&�x5�/��CJ//NVSfGvrm���+e#>,{td�*W�](%�\'.n,a�'!q+�E"�E�N+-o/�j*y`��(ھ�!CwDW I�o�"\'L�|�UOK4���$��UmV^dBdA�Ã�Bpi¸*ng:/M1��!�W*��KOQ��u>�Q)��A�X.V<��?���eN#,a��,H�nR0B�o&_ �b&\߸qm7F�\6lBj�g5]�
n�:Y�N#4&��}<$.w�ʼnL�NC6t@:7tw9�_(Z_?mY㜤�� *�/_(Їy$Ι�>'mwʚlȋLyO�:)$WF⫰JdetI`�qo
|SS$�_j\V;,�ck �B9l{Z�{cd[�P�\L<�?kb9D��j8`I�o`!x2^!�5 j[Y
/Wp�� wdȅ}|2W���~�
#24B*p/�X 6V dZwΚ��D��WIW^RX�NX R'd8�xB*p\&�r0&d� ve�3ɘ=2�.X-é.KL~Qh )1~UC}xQt[6"Z3Ӎ) )�b�h4.ՌD�� ڥ)�4nRN
X��c˝Jw�=ZUF*3��pJP�M�*-硠iCa5�ס�v�˼��>�:P
�Td!(eٌCޛP�6DJ?]*�J%;�}Bh��Sc1�oǏ.�Ə8+�>ϩXM��/i/n\�`��F}�q(=o=@7a�I�[$*�qwGR�{0j0�@��H`H�lD��-{� .X&b~ey8^>�4#O4�0:mR4 f""�@Yk=W�u#|>l^ôr�X�T�U6
7_�9Ԗ$l8IX��B:z*T�Y10H`ƫS{ŕ$SaŘ�_FrD�cE�d'3N�va"$ϠlS*?�n\#<˂b])@;�A2n=f'=�v.켌;>R6 hM�[BNz�ּ�S1\@*%$ښKru,s�@C�ȆG�C��#9,A���4[���r �U>c1'a7~�VՓ*LjsU>4!�X_�Cs3��`t%កy4,*� B�դ8M6I4Jg#�`Y#?�:XE珥+>vف<�ťv�i&i1���CЇZ
*�٪J�[?a85�Y+\E�e&Uoo>�UX\Ih;�J�Qei�Ĥ�}�k�ohtŃzv�Ʒ|^g�2�0&u�/:k�9߶J\@rOk,͊�YmS�拙Ж"DXSu)_U %�bKmhX��
QZ4&LM7j���W릅+�yNZܚ3�
LF�eY>C�|!M:�e82��FMM���Ҿ��=nܩzF�yBԇ��J;�B Z)8rih#]�S`�_8H6G4��" z/;-M#8YF�.mP��Qv���,�+W#TS9JA�={#�L?!P|^Vu�T�q!
c�$?#:j�\�l��30`]�դ#hu
*�E�
3�wnA/[pBp�sFrlU�|��®5��Y�Fd�V�2+v22#:�l>
XPHB5�&?G�s�Izť5(%t(2YAA3+G|v�B�]\w��CC &{ �<��(}vJj6�#���}eqFպV��c�١sx
\axר=#x���asIik��2~�Hy�=VO3
K�yR�D'm�ːR㴞e�+r>~x�?�%�y�&�jLV9
MzЗZ��wF/M#�MwJ҆�m<�q̼tnf>6ェSA4͓!,8J4*hP�=�<�p
v�
�,1\뫷j:';]&�����[% cG�))�9m`�{�^l�ru�w�iđ9.n嵹��"�4�h4�""t�XKRt�a�t[�Ջ�)�t�ca}��դ^n�اYϥqkcj2�_Wm���ζ=CI|�K]��K~b"HvUDV��vDw<3�QDQ}�L�qLhFmiZFe:J��_CLG\(�N�iC���ݐ ㄥ#ga�np$t�+ d�n��{��x-�#mEFX 1+HJ83�%�8իtqY�3�D.�56R� �i2s٭�;;'Ϩ�vGmE*DY>�^W|rcr:myұh� U�[-Z߅�p�LChak�ɃM`~�
3s'v���}E@WݰnY�+�KG���Y=�;�.gK�>t%[�qV�۳ ++� rS_Aɑi�^!0 Ky�4L"��2ynGuw ^q�j��Æ �JI�2/u>EPX[۷ͨP>4!S�3ɅB
J�R��0�R9pm�%3�n�̜+� ?�ev�%B�vȶPM/Q实UNl*'7�g�4wrhe�iO!�!^a;�=<�ЄzAĬpzaK�s�C11ͳ
�[LD#D�m�wbdp�H�,U.<>J�L5�xjqդǓo$w,�?<(�.EնILU\�b$$Q�Z�Qg
>)Ӧ$y:� FC�!&yoaۈW�ʨt9pڝEgks_}Y�*J�r��u"G'#5Rc��O�0'@�.s=s�c
�h"dN6fEkr_CB,"oqv�ʋR���$��qhg�Z7`�j.|8�ǬV"=n�f}%8OoآY�ub4If>/a=)X
;yYu�.23$*h�V�~5}wdݤ�Y�Vp'��(m8N�&IU1
ug�ԠW��SU؞-��fBV6H)��}W2,ccMaa)*Ϸ4�n=L,Ѵx(iC"�#fZR:-:Iz�2r>D~WP)Ҩ%0e9�k�bX9�ΐ
*8B�"�;1IRbmw~Ȼ!&�i�-�8 )@ g�|hMd8|u�KdH@��Trp5\t֬pe�$tm2w\[�4̹�̘dp]��Q1��q�ŕb!Lz�ĮC%QH��.Z p�D0ũ��T��£c�*Yf�E}1I"��SẤ@g�9�_�x�)��zh�S4X�^��^�:m\Ȯ*9IP3&#,Y>(UBc0' �GG#MXz43�
>A~ub{.I.y�<>C
Xcff){9a@�Mr8P; �aȎl�C�$_\%>:))-tr*kH˻��@�Jŝf>5=푴JR^�2�t�
=QR+pwU�̀��n
C5
ґ�poR�mM\Y-�I��V0OlX�!Y3$+&Brf�bP!{9�\Zd�yaTX��h�473'O�ũ\Dzq�KT8TkX�
O��ߐ�GVN/e'Y7iiP1t_jDAx6a'b4]H��*o
صSR>n1�ϳ\\}H�pq�M`a�
��gcB�~9I44⛭0>v�Yy_nOJ�+��yeV��ԯK!
iz�dzV;i{סOV)�~KMܯ%��
ݧXm�m�t{ ,w�;Xc�M0�Pb�D1{Ay^y?�1E%-F�y'Eh%t�
NgOSc�2!�ː/�+~� B3gC[z'ܴ������Fn{(&�=�T2�xv�TcH�2Q�̴ehU;m&飒��yp�K�%E�@P:nS$
q�ʲC-J:h@ze(�5Fj_4�v/~\~d
�L�[ˆ
WxNiH4ye���ѱvx;ɱ�Jb�P��`2P�i�Uv$vgt-v�B��&?)��"{_h�*o���/T\3
", �Al>uM~:�e���E�AJܔ,L6'i(i�QO1U� �ho_|S:l⅟,Y?3e=Ir2ћ\lD�pau�lF
�t0b[\ ܐ@ �nG_h+�^� � /!`��O`CļFV��{^Wx5i?�kjU��LPm�{銷~є@�WDm�_%@q^ '��=�ioO3LEԨ6k� ��Z>�ө9c�c-P;�mZrO�7�a�BF�ɍ���O:���UQ8�預a34(`���p6�=&BODP\@�*�:!�
��gJy�,UkH̄Κ$VKnټ@C�A1ي1GNGҥz7%ZwT^�۫VC�J!Ό쌟[rx"�`�߷\ntD����[��x;p;*TW9Ɖ6CRʡ*pIVy~W[]�@5%U[yU�Cb���|��~,aV)<��]g#! Z,O�sl"БE�pIBV�^܂&'j:ĘsiT2�l;_]�C{4UY=:L+i|�(�sO`!�+Sa1>`P�PO+wߺ
549h>S�v/z(G1�RV@Z�!X5)=i02b4>M~<$F©m��X8|�p
7WP#Ud4cB(xq3wxp/)p+UtJV7]�FP}˰A�+IwLIal֙ϸ?y`!,�-r,e5>#MHEhH��㉱�,s@$W-$�rD-_�2u2%2l�dO��
Rv=0Őq7r2�RE. �~�
�ٹrԻI>n���Pmկ.(:�؞ʽ�V
iew@t?]-+A5~RA~'
Qá7B�J<&8�acWD,>[Lbx"8�ݶy�4kF��S8lW�u�yi4RmH"V#2jlv�vHAddS��90My`NvIVAyV0Z^˫�.
�{[%09h0gpsVJ�`Α�,2hBXow&�wQ�96���SYqO=,2�|w�|C�j�aμ�{9QU&12b�F"X^q,[u�[__- pA!^8�1�~[�DHA61'[V`3�%q��Ŋ��C�3d2}ˀ2W\��֥ZЇf���P6c0z���C,
WaiDbB`^���t� 5�BR.BO�2I�<�q�ELyQ:[MnL�lR�?֙HdWD7�BM�w�n
4(@
5(?A[
�<��d`c��v�Hv��3&8kG^#_|r#^�3c4C3stmlwK�?�HpMZ�PXE�RYhg�D�Y4GD
X�քa]8O9ĢXh4{$�ڬ�?� `e-z�q-5jRꜶپl<э��a�Ի'PjE�~Hƅ�QHZ���*^A?c!|Ƽrƙ��/��bu;���]RT�8��c7w@fxj&�!�kz+qFi(�EqRrlMWi&s 7Y>�.O֭Pddo'k#L\"GZƯ�,�2ق_{f1�pgd)ϵp62|�0l�0�[h0ՏʼnǑLL�T9�z�p�}�Xx�\@B�29�Y&^Cr^jh�~/֙7*_]RlPgo
kW��C5.5ҭ:t�7
Z*psYҁ.<-��iIRV�c:�V%A1!퓼#zܲ/!k/�b#�c~�fad�ou�
39
c9ˈ;M!�R�@>XTn~�wb�ª�l_��6c6��m1#f[�Y^.�e_$!�m6�\9�u1zw,�
L�OF,r]�^a�-t14b+#S��Б١[+J;�!�T;�9GJ%@
�:r �t:|:���iWn�gZ}�TVx.` ӄ.]�o�>6h���A;h J��ETeױPlaš>`,֦�9|�`}qk&
~ĔI&Ed1I0)YT�Ƕ�`ko�=o/h\ej+/�ڍvd4 &D(*x2[�*Q$n|�+*�')Y�K~_Ȧ<7[�p#Y��gSCC̽tSnl��A,_Nk�'!(F�F��~�s�jSezlIZ/�5LV
�0C]B��M�>)�F�y~UUv��m^b��!�*#�fy>U)xoL뫣/�vAȣ&}fQcK:C=I�=�@뼜�{,��g~�{�ONܳ/+~�ӞE-a�eYd.PkMldˏ�D#_L@g=�qNF|R7��UrOQ/%-SHNQKKףr�__0G�L�9�Q{Ӟ1wqO+̾9�oA��,Y�o�xN ��@iHmHUTccf�;[�!b].b��Ñ<1h۴� /��pr�\W}nP�W@i��%`c)l/�ZfE�D{_��v�
`α!
Ĭ?�3@j@i�`fwm2
F}9$F�Ow>����-N�[x8�Y�57�ͦڻ2(0