freerdp-proxy-2.4.0-150400.3.12.1 >  A c0Kp9|ɮďO?090<۫9]SQ,]N|I ^]Ŀ85]/Fۣ{BR)~ΖnL"+WC>l[x}`7)$/JSxSy=Vz@pQ3c}7x4 {7i)FX٪amw5QF@OSp>cH?c8d $ W 5Va w       @Dl   (188/9/:/F`"G`8H`<I`@X`DY`L\`t]`x^`b`ca9daeafalauavawbxbyb zbbbbc4Cfreerdp-proxy2.4.0150400.3.12.1Remote Desktop Security and Monitorig Proxy ServerThis package contains a proxy that allows to select specific features and channels allowed for all connections passing through. It allows monitoring of the running sessions.c/ibs-arm-5SUSE Linux Enterprise 15SUSE LLC Apache-2.0https://www.suse.com/Productivity/Networking/Otherhttps://www.freerdp.com/linuxaarch64c/ce4c7e6804f64ce2aee536ae84e159447e6632ba3e27f18017fea0989f382033rootrootfreerdp-2.4.0-150400.3.12.1.src.rpmfreerdp-proxyfreerdp-proxy(aarch-64)@@@@@@@@@    ld-linux-aarch64.so.1()(64bit)ld-linux-aarch64.so.1(GLIBC_2.17)(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.17)(64bit)libfreerdp-client2.so.2()(64bit)libfreerdp-server2.so.2()(64bit)libfreerdp2.so.2()(64bit)librdpgfx-client.so()(64bit)libwinpr2.so.2()(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)3.0.4-14.6.0-14.0-15.2-14.14.3c\cN@bL@b@a^@a]aEaD@aD@aA@a@a`OL@`<@`7@_@_^@^@^^^I^@^@^T@^^t@]@\@[@[j@Zz@Z@Z`@ZkZWQZY@@YKYKY=0Y;@X~@XW local * #gh:FreeRDP/FreeRDP#6985: Support newer FFMPEG builds * #gh:FreeRDP/FreeRDP#6989: Use OpenSSL default certificate store settings * #gh:FreeRDP/FreeRDP#7073: Planar alignment fixes- Updated to release 2.3.2 Noteworthy changes: * Fixed autoreconnect printer backend loading * Fixed compilation on older mac os versions < 10.14 * Fixed mouse pointer move with smart-sizing * Added command line option to disable websocket gateway support * Fixed drive hotplugging issues with windows * Fixed smartcard issues on mac Fixed issues: * #gh:FreeRDP/FreeRDP#6900: Transparency issues with aFreeRDP * #gh:FreeRDP/FreeRDP#6848: Invalid format string in smartcard trace * #gh:FreeRDP/FreeRDP#6846: Fixed static builds * #gh:FreeRDP/FreeRDP#6888: Crash due to missing bounds checks * #gh:FreeRDP/FreeRDP#6882: Use default sound device on mac- Updated to release 2.3.1 Noteworthy changes: * This is a compatibility bugfix release readding some (deprecated) symbols/defines * Also add some more EXPERIMENTAL warnings to CMake flags as some were not clear enough. * Fixed a memory leak in xfreerdp (mouse pointer updates) * No longer activating some compile time debug options with - DWITH_DEBUG_ALL=ON which might leak sensitive information. * Added -DDEFINE_NO_DEPRECATED for developers to detect use of deprecated symbols- Updated to release 2.3.0 Noteworthy changes: * Websocket support for proxy connections * Progressive codec improvements. Reduces graphical glitches against windows and ogon servers * Fixed +glyph-cache, now working properly without disconnects * Huge file support in clipboard * XWayland support for xfreerdp (keyboard grabbing) * Improved wlfreerdp (wayland client) * Option to allow keyboard scancodes to be remapped manually * Improved mouse wheel behaviour when scrolling * Improved dynamic channel behaviour, more stable event detection * New connection state PubSub notification: Clients can now monitor current connection state Fixes: * gh#FreeRDP/FreeRDP/6626: Fixed parsing of FastGlyph order. gh#FreeRDP/FreeRDP/6624: Added support for xwayland keyboard grab gh#FreeRDP/FreeRDP/6492: Added clipboard CB_HUGE_FILE_SUPPORT_ENABLED flag gh#FreeRDP/FreeRDP/6428: Improve NLA error code logging. gh#FreeRDP/FreeRDP/6416: Http gateway message support gh#FreeRDP/FreeRDP/6753: List of pull requests to backport for stable-next - Added freerdp-rpmlintrc to supress a false positive as gethostbyname() is a windows-function call not a unix one.- Updated to release 2.2.0 (boo#1174321, gh#FreeRDP/FreeRDP#6381) * SECURITY: CVE-2020-15103 - Integer overflow due to missing input sanitation in rdpegfx channel * Sound & mic - filter GSM codec for microphone redirection (gh#FreeRDP/FreeRDP#6263) * windows client title length (gh#FreeRDP/FreeRDP#6335) * "Alternate Secondary Drawing Order UNKNOWN" (gh#FreeRDP/FreeRDP#6370) * remoteapp with dialog is disconnecting when it loses focus (gh#FreeRDP/FreeRDP#6298) * v2.1.2: Can't connect to Windows7 (gh#FreeRDP/FreeRDP#6299) * fix: memory leak in nsc * urbdrc: some fixes and improvements * build: use cmake to detect getlogin_r, improve asan checks/detection * server/proxy: - new: support for heartbeats - new: support for rail handshake ex flags - fix: possible race condition with redirects * Drop upstream fixed patch: freerdp-CVE-2020-15103.patch - Removed freerdp_Mask_CACHED_BRUSH_when_checking_brush_style.patch- Drop BuildRequires of libavcodec for Leap/SLE (bsc#1174200)- Added freerdp_Mask_CACHED_BRUSH_when_checking_brush_style.patch which fixed frequent crashes described in boo#1173605 and gh#FreeRDP/FreeRDP#6298- Updated to release 2.1.2 (boo#1173247) * CVE-2020-4033 Out of bound read in RLEDECOMPRESS * CVE-2020-4031 Use-After-Free in gdi_SelectObject * CVE-2020-4032 Integer casting vulnerability in `update_recv_secondary_order` * CVE-2020-4030 OOB read in `TrioParse` * CVE-2020-11099 OOB Read in license_read_new_or_upgrade_license_packet * CVE-2020-11098 Out-of-bound read in glyph_cache_put * CVE-2020-11097 OOB read in ntlm_av_pair_get * CVE-2020-11095 Global OOB read in update_recv_primary_order * CVE-2020-11096 Global OOB read in update_read_cache_bitmap_v3_order * Gateway RPC fixes for windows * Fixed resource fee race resulting in double free in USB redirection * Fixed wayland client crashes * Fixed X11 client mouse mapping issues (X11 mapping on/off) * Some proxy related improvements (capture module) * Code cleanup (use getlogin_r, ...) - Removed obsolete upstream patch freerdp-bug-6205.patch- Updated to release 2.1.1 (boo#1171441) * CVE-2020-13396: GHSL-2020-100 OOB Read in ntlm_read_ChallengeMessage * CVE-2020-13397: GHSL-2020-101 OOB Read in security_fips_decrypt due to uninitialized value * CVE-2020-13398: GHSL-2020-102 OOB Write in crypto_rsa_common * Enforce synchronous legacy RDP encryption count (#6156) * Fixed some leaks and crashes missed in 2.1.0 * Removed dynamic channel listener limits * Lots of resource cleanup fixes (clang sanitizers) * A couple of performance improvements * Various small annoyances eliminated (typos, prefilled username for windows client, ...) - Removed freerdp-bug-6175.patch and freerdp-bug-6207.patch because included in upstream- Added freerdp-bug-6205.patch to fix reading newline on certificate accept gh#FreeRDP/FreeRDP#6205 - Added freerdp-bug-6175.patch to fix Certificate Checking Recently Broke gh#FreeRDP/FreeRDP#6148 - Added freerdp-bug-6207.patch to fix Abort on first possible certificate validation error gh#FreeRDP/FreeRDP#6207- Updated to release 2.1.0 (boo#1171441) * Fixed CVEs: - CVE-2020-11039 - CVE-2020-11038 - CVE-2020-11043 - CVE-2020-11040 - CVE-2020-11041 - CVE-2020-11019 - CVE-2020-11017 - CVE-2020-11018 * Fixed leak and crashing issues: - gh#FreeRDP/FreeRDP#6129 - gh#FreeRDP/FreeRDP#6128 - gh#FreeRDP/FreeRDP#6127 - gh#FreeRDP/FreeRDP#6110 - gh#FreeRDP/FreeRDP#6081 - gh#FreeRDP/FreeRDP#6077 * Noteworthy features and improvements: - Fixed sound issues (gh#FreeRDP/FreeRDP#6043) - New expert command line options /tune and /tune-list to modify all client settings in a generic way. - Fixes for smartcard cache, this improves compatibility of smartcard devices with newer smartcard channel. - Shadow server can now be instructed to listen to multiple interfaces. - Improved server certificate support (gh#FreeRDP/FreeRDP#6052) - Various fixes for wayland client (fullscreen, mouse wheel, ...) - Fixed large mouse pointer support, now mouse pointers > 96x96 pixel are visible. - USB redirection command line improvements (filter options) - Various translation improvements for android and ios clients - Removed upstream patches fix-freerdp-2.0.0-usbdk-build.patch and fix-URBDRC_DEVICE_ADD_FLAG-definitions.patch- Updated and reviewed make command and added fix-freerdp-2.0.0-usbdk-build.patch to fix boo#1169679 and make USB working again - Fixed build for SLE_12 - Cleaned up spec file- Add fix-URBDRC_DEVICE_ADD_FLAG-definitions.patch in order to fix boo#1169748.- Added cairo support for scaling - Cleaned up spec- Removed patch freerdp-Fix-realloc-return-handling.patch - Added pkgconfig(libusb-1.0) for building - Added new package for freerdp-proxy - Cleaned up spec file - Updated to release 2.0.0 * Fixed CVEs: - CVE-2020-11521 - CVE-2020-11522 - CVE-2020-11523 - CVE-2020-11524 - CVE-2020-11525 - CVE-2020-11526 * Fixed security related issues: - gh#FreeRDP/FreeRDP#6005 - gh#FreeRDP/FreeRDP#6006 - gh#FreeRDP/FreeRDP#6007 - gh#FreeRDP/FreeRDP#6008 - gh#FreeRDP/FreeRDP#6009 - gh#FreeRDP/FreeRDP#6010 - gh#FreeRDP/FreeRDP#6011 - gh#FreeRDP/FreeRDP#6012 - gh#FreeRDP/FreeRDP#6013 * sha256 is now used instead of sha1 to fingerprint certificates. This will invalidate all hosts in FreeRDP known_hosts2 file and causes a prompt if a new connection is established after the update * First version of the RDP proxy was added (gh#FreeRDP/FreeRDP#5372) thanks to @kubistika * Smartcard received some refactoring. Missing functions were added and input validation was improved (gh#FreeRDP/FreeRDP#5884) * A new option /cert that unifies all certificate related options (gh#FreeRDP/FreeRDP#5880) The old options (cert-ignore, cert-deny, cert-name, cert-tofu) are still available but marked as deprecated * Support for Remote Assistance Protocol Version 2 [MS-RA] * The DirectFB client was removed because it was unmaintained * Unified initialization of OrderSupport * Fix for licensing against Windows Server 2003 * Font smoothing is now enabled per default * Smart scaling for Wayland using libcairo was added (gh#FreeRDP/FreeRDP#5215) * Unified update->BeginPaint and update->EndPaint * An image scaling API for software drawing was added * Rail was updated to the latest spec version 28.0 * Support for H.264 in the shadow server is now detected at runtime * Add mask= option for /gfx and /gfx-h264 (gh#FreeRDP/FreeRDP#5771) * A new option /timeout was added to adjust the TCP ACK timeout (gh#FreeRDP/FreeRDP#5987)- Disable LTO on aarch64 and %arm to fix build- Add freerdp-Fix-realloc-return-handling.patch: Fix realloc return handling that results in memory leaks (boo#1153163, boo#1153164, gh#FreeRDP/FreeRDP#5645, CVE-2019-17177, CVE-2019-17178)- Add Requires: lib%{name}%{major_version} = %{version}-%{release}: freerdp should depend on the same release of libfreerdp2 (boo#1129193)- upgrade to version 2.0.0-rc4 (FATE#326739) * Fix the following issues: - CVE-2018-8784, boo#1116708 - CVE-2018-8785, boo#1117967 - CVE-2018-8786, boo#1117966 - CVE-2018-8787, boo#1117964 - CVE-2018-8788, boo#1117963 - CVE-2018-8789, boo#1117965 - CVE-2018-1000852, boo#1120507 * Security and stability improvements, including boo#1103557 and boo#1112028 * Refactored ntlm_av_pairs API * gateway: multiple fixes and improvements * client/X11: support for rail (remote app) icons was added * the licensing code was re-worked: Per-device licenses are now saved on the client and used on re-connect: WARNING: this is a change in FreeRDP behavior regarding licensing WARNING: this is a change in FreeRDP behavior regarding licensing. If the old behavior is required, or no licenses should be saved use the new command line option +old-license (gh#/FreeRDP/FreeRDP#4979) * improve order handling - only orders that were enabled during capability exchange are accepted. WARNING and NOTE: some servers do improperly send orders that weren't negotiated, for such cases the new command line option /relax-order-checks was added to disable the strict order checking. If connecting to xrdp the options /relax-order-checks *and* +glyph-cache are required. (gh#/FreeRDP/FreeRDP#4926) * /smartcard has now support for substring filters (gh#/FreeRDP/FreeRDP#4840) for details see https://github.com/FreeRDP/FreeRDP/wiki/smartcard-logon * add new command line option /smartcard-logon to allow smartcard login (currently only with RDP security) * add support to set tls security level (for openssl >= 1.1.0) - default level is set to 1 - the new command line option /tls-seclevel:[LEVEL] allows to set a different level if required * new command line option: /window-position to allow positioning the window on startup * client/X11: set window title before mapping * rdpsnd/audin (mostly server side) add support for audio re-sampling using soxr or ffmpeg- upgrade to version 2.0.0-rc3 See: https://github.com/FreeRDP/FreeRDP/milestone/9?closed=1 * Improved and cleaned up the command line interface * Fixed automount issues * Fixed several audio and microphone related issues * Implemented AAC and MP3 codecs * Added Wave2 support * Addedd dynamic resolution with full screen toggle support * Improved redirection handling and certificate issues * Improved automatic reconnects * Improced connection error handling * Fixed invalid pointer, double-free, integer underflow, buffer overflows issues as well as other memory leaks * fixed X11 Right-Ctrl ungrab feature * winpr: Updates time zone data to April 2018 * added libressl compatibility- removed SLE11 condition - removed no_connection_to_windows_10_17101.patch - removed -DBUILTIN_CHANNELS=OFF switch - explicitly set -DCHANNEL_GEOMETRY=ON - Disable the new X264 and OPENH264 codecs because openSUSE does not provide them - upgrade to version 2.0.0-rc2 See: https://github.com/FreeRDP/FreeRDP/milestone/8 Noteworthy features and improvements: * IMPORTANT: add support CredSSP v6 - this fixes KB4088776 see #4449, #4488 * basic support for the "Video Optimized Remoting Virtual Channel Extension" (MS-RDPEVOR) was added * many smart card related fixes and cleanups #4312 * fix ccache support * add support for memory and thread sanitizer * support for dynamic resloution changes was added in xfreerdp #4313 * support for gateway access token (command line option /gat) was added * initial support for travis-ci.org was added * SSE optimization version of RGB to AVC444 frame split was added * build: -msse2/-msse3 are not enabled globally anymore Fixed github issues (excerpt): * #4227 Convert settings->Password to binary blob * #4231 freerdp-2.0.0_rc0: 5 tests failed out of 184 on ppc * #4276 Big endian fixes * #4291 xfreerdp “Segmentation fault” when connecting to freerdp-shadow-cli * #4293 [X11] shadow server memory corruption with /monitors:2 #4293 * #4296 drive redirection - raise an error if the directory can't be found * #4306 Cannot connect to shadow server with NLA auth: SEC_E_OUT_OF_SEQUENCE (boo#1085416, boo#1087240, boo#1104918, CVE-2018-0886) * #4457 Fix /size: /w: /h: with /monitors: (Fix custom sizes) * #4527 pre-connection blob (pcb) support in .rdp files * #4552 Fix Windows 10 cursors drawing as black * smartcard related: #3521, #3431, #3474, #3488, #775, #1424- Fix boo#1090677 activate pulse optional component- Added no_connection_to_windows_10_17101.patch to fix Windows-connection-problem after Windows march 2018 updates. This fix is related to boo#1085416- Do not use xorg-x11-devel, instead buildrequire individual x components. - Only attempt to ge rid of __DATE__ and __TIME__ if SOURCE_DATE_EPOCH is not set.- Users can connect only once wo windows sessions due to [#]gh/FreeRDP/FreeRDP/4348 Therefore WITH_GSSAPI has been disabled until that issue has been solved- Updated to 2.0.0-rc1 Noteworthy features and improvements: * support for FIPS mode was added (option +fipsmode) * initial client side kerberos support (run cmake with WITH_GSSAPI) * support for ssh-agent redirection (as rdp channel) * the man page(s) and /help were updated an improved * add support for ICU for unicode conversion (-DWITH_ICU=ON) * client add option to force password prompt before connection (/from-stdin[:force]) * extend /size to allow width or height percentages (#gh/FreeRDP/FreeRDP/4146) * add support for "password is pin" * clipboard is now enabled per default (use -clipboard to disable) Fixed github issues (excerpt): * #gh/FreeRDP/FreeRDP/4281: Added option to prefer IPv6 over IPv4 * #gh/FreeRDP/FreeRDP/3890: Point to OpenSSL doc for private CA * #gh/FreeRDP/FreeRDP/3378: support 31 static channels as described in the spec * #gh/FreeRDP/FreeRDP/4253: Rfx decode tile width. * #gh/FreeRDP/FreeRDP/3267: fix parsing of drivestoredirect * #gh/FreeRDP/FreeRDP/4257: Proper error checks for /kbd argument * #gh/FreeRDP/FreeRDP/4249: Corruption due to recursive parser * #gh/FreeRDP/FreeRDP/4111: 15bpp color handling for brush. * #gh/FreeRDP/FreeRDP/3509: Added Ctrl+Alt+Enter description * #gh/FreeRDP/FreeRDP/3211: Return freerdp error from main. * #gh/FreeRDP/FreeRDP/3513: add better description for drive redirection * #gh/FreeRDP/FreeRDP/4199: ConvertFindDataAToW string length * #gh/FreeRDP/FreeRDP/4135: client/x11: fix colors on big endian * #gh/FreeRDP/FreeRDP/4089: fix h264 context leak when DeleteSurface * #gh/FreeRDP/FreeRDP/4117: possible segfault * #gh/FreeRDP/FreeRDP/4091: fix a regression with remote program- Remove extraneous Obsoletes for packages that never existed in openSUSE:Factory or X11:RemoteDesktop. - Rename libuwac0-devel to uwac0-devel and libwinpr-devel to winpr-devel, as that seems to be their upstream name which packages are encouraged to stick to. - Remove duplicated pkgconfig requires (these are autodetected).- Fixed download location- Switched to official RC0 - Create wayland client package and libuwac0 package - Create separate libwinpr2 to be used in other packages - enabled gstreamer (currently disabled for tumbleweed) - enabled kerberos authentication - Update to official RC0 Fix the following issues identified by the CISCO TALOS project: * TALOS-2017-0336 CVE-2017-2834 boo#1050714 * TALOS-2017-0337 CVE-2017-2835 boo#1050712 * TALOS-2017-0338 CVE-2017-2836 boo#1050699 * TALOS-2017-0339 CVE-2017-2837 boo#1050704 * TALOS-2017-0340 CVE-2017-2838 boo#1050708 * TALOS-2017-0341 CVE-2017-2839 boo#1050711- Redo history by using changelog url - Update to version 2.0.0~git.1497095982.1dbd2d28d: See https://github.com/freerdp/freeRDP/compare/043243f...1dbd2d28d for full details. - Packaging : + Move to xz tarball in _service + Remove 3472.patch merged upstream - Update to version 2.0.0~git.1496304402.c42ccb508: See https://github.com/freerdp/freeRDP/compare/043243f...c42ccb508 for changes.- Forcefully enable PIE in CFLAGS as the automatism did not work.- Add 3472.patch until upstream #3472 isssue is fixed and PR merged this fix boo#1004108- Update to version 2.0.0~git.1477034991.043243f: * fixed kerberos authentication * shadow/rdpsnd: Fix race condition in rdpsnd channel server. The output buffer and format parameters are not protected. * wfreerdp: fix invalid VerifyCertificate callback * rdpsnd/server: decrease audio latency and make it configurable. * Add an environment variables section to the man * protocol violation: rdp_read_extended_info_packet * Added support for OpenH264 1.6 * freerdp: fix sending of TLS alert on NLA failure, add better handling of server-side NLA in shadow server * freerdp: add configurable NTLM SAM file option for server-side NLA * freerdp: make modifications to NLA server-side fixes according to PR comments * Fixed a windows 8.1 issue.- Kill off __DATE__ from built sources.- Update to GNOME 3.20.2 FATE#318572 - Add obs git integration. - Update to version 2.0.0git.1463131968.4e66df7: + Fixed memory leaks. + wfreerdp: fix name build without client interface + libfreerdp-codec: fix xcrush decompression, revert remote control fix + KB3153731: May 2016 DST update for Azerbaijan, Chile, Haiti and Morocco + libfreerdp-codec: make proper xcrush context reset fix- Update to version 2.0.0, git master branch id a7ca42e (FATE#319661), no upstream changelog available. * Warning: This is a git snapshot regarded as technical preview by upstream. * Warning: For xfreerdp, new /long-option commandline interfaces have replaced the old --long-option interfaces. Existing user scripts need to migrate to the new interfaces to avoid breakages. For more details, see: https://github.com/FreeRDP/FreeRDP/wiki/CommandLineInterface * Add Network Level Ahthentication support. * Add Windows Portable Runtime. For more details, see: http://www.freerdp.com/2012/05/24/winpr-windows-portable-runtime * Obsolete libfreerdp-1_0-plugins. - Drop FindALSA.cmake: deprecated - Drop freerdp_branch-1.0.x_fix-kpdivide-issue831.patch: fixed upstream, implemention now in include/freerdp/scancode.h. - Drop freerdp-CVE-2014-0250.patch (bnc#880317): fixed upstream 532c420. - Drop freerdp-CVE-2014-0791.patch (bnc#857491): fixed upstream f1d6afc. - Drop freerdp-fix-FindPCSC-macro.patch: fixed upstream 9148af3. - Drop freerdp-handle-null-device-name.patch (bnc#785437): deprecated, related implementation dropped. was: freerdp-fix-pulse-no-device-name.patchibs-arm-5 16692797232.4.0-150400.3.12.12.4.0-150400.3.12.1freerdp-proxy/usr/bin/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:26971/SUSE_SLE-15-SP4_Update/6a99ffbbbc942fe77610ac6af633f230-freerdp.SUSE_SLE-15-SP4_Updatecpioxz5aarch64-suse-linuxELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, interpreter /lib/ld-linux-aarch64.so.1, BuildID[sha1]=997f0ed1551c20c306e4a1160882e11bb06f4c3e, for GNU/Linux 3.7.0, stripped RRRRRRRRRS<> utf-85cffffd5358063127e7b00e1fbb7e2a53f9f121e0e018fb40654392fce8a535a? 7zXZ !t/ o] crv9w#@JtÁp֍rs"iZ՘#Gj\Ĩw064,b@=_CZe. H@kUJЂxQG&$>6!H 1EUF!R[wyPVN q=3I)zZEur3MtPUH; r¬v"S5AzESqp%=˂}T&Y7(؆mDYPb?] xw@43T~9#Kq"\& ?μ3[""V1n"k`t_ɵ_wtz>Of€0l-؏VaK㎊p+z&ObD*L6(DM~dXjxhYem<{I7lعkmUc9U5^6/r}]c7 gJOZ NYi"]MN(rҩ0&f3 D`Q{P4nX,[dk&CHɱ&5Z2FYxt ~;Q_Lcт'I%$*,TS6yͨm;`?gZ)Zn40a\:y$bdY>#i8F7q};no&A<آsU&SY^YF=qfeK?"8f0[=yQ,?rd*ә-,ےhf,L gS)~j8]q?STfe# \Ϟf$%b?-O;TfD qOZD0s`^H7iwM_OHz ؇& 6:)^ʨri"4_ΑoF͐㍂R}W^wXE|׳d0lϚn~xy ZBX.Y/p~@7jC:;Fׅ w||[z\aG_@f^f' Y9XMC'&\ݥ Њ8Zwt w{gQE}Tiq Bljo:b+2g $(=D;q!݌-e}kHZnfhYqi%P@TM=.acTJ!;);"\_ i=W[~dEse{eݝgTnTП?` l{Y] c, 8M PᬃPb!!nL l c1(Q[C :jϮ#[#tsuwQrfFu"i+15`{b(#~?Δb?Wv`aR.gkŇ%/;7Ins'z.B. (qҖsP^-i֋cIR +*L{vhAA-[ CCygw`5BZ:Ra~!kF=jyZ'E ?% dT 83~ϓjg6(YkQ.RIS =UrM9|ˢgr~`6>ZOeM&L0P3Ehq7/Z{Lk8Sq]aGB4y-W&T%^!!dd|N>`D?Ôz <2S,޾&}>QeM}ZW,]dv&ɧAmdaj?gR;4.Bm޷~EGxVGk3s*W)e/VX=#N縏)!U-qcl])M h(jbT`?/=Pj=k϶s#Nh}B`gA$ **2z2)*CUv܋ 2O`( ]\a)^Jul2v,j'癎 G^YBdKz'b2fԋWogָ~F@L>7]ud?R9\HRU_Ѹ:>WFcqʏQ6贖b<=E5 _160IC1Fgq RFNye9=rHo4 \<8/7@u^l)\Kw) c= ڪ"@!Zvҥ(RtQ$v}\t*;̉ R[= GD-)VL.gK//?{*X) e^Х|-vظEЧjNwҼ)e~\V̕vCk/P105X@Q J$ i"'Ӡ(4hVMɄlQ k8qad?i"6-SSmr]|har9_0;@¯ۥ"[[t]IJR(+&XM ΃wY&ri0>0["U_o+!WݮABdRl{D _ 0fY ZU+`UC:Qj9#H~L0_4UlTPdphց/pjܩ,XiCC]y*F7812\J7vNnhBbԶħ˼91ىkN U)qF)|񼚧xT<'2ӵ-3#k`1bv2\7 fD+Su1`cdyôO fkբ,!7ZYUBo ibX@CXpG6 W.w n/[->cF$шԸ&<*$nYdXP/?#f 1Co;K(w&j,+t,qaR$ݍA,?WƐc 8m..Ds31'13jD[pfD"@=I|>!W74ҽ`sTBCEzʃ۩5\0ڎ!m̸@MA?g[)5Iٿ+& |n븃F_|Vf>pXb:1"i"Hzͷ9KRJ]Њg-|v&Mv"r U6BCAƉU h盿i5R2j~ss]?k /&m8(c5/-X681ڣ 3v@04`ΐڰsC1Ɋm=Sļ6o5V$RXZvqasIJOJ;DC%fψƙ'UjKWfjbV^JV衟osRTD'^SQRw^XscC 9 N6o׭޹rb;=n;7z/4=>Mab_{~jJ͟dɣQ]يeFG񊸖Í{Yũq؝SP<*"]|]: L\b4_#W<{tꡑ;^sNs9:O:k=2۫:UjY`*9ȳZOB(&Eъ_b1W9MZ-IK%jxws'&TK% a{彐PܐMIɄ46FD-.??9Rzس2I%::}+SV°/f0_NxQ_P농-L^ 'M!7ܖŷ~43]XfXvl#DuGpJ@1~Ǣigsb ipy~:2?Ϧ͏&(t0ML -) ɳtM 9ZXv̫KH~h788F3zbf9T%:WĐSwoݷVDωt^ R} wMI@ؗF7Doֶ grz5%aIx+/[jEBEDŽm5s0":w,l^.Pnr)VqignBn ? 7 R.KVxߘ 7|Mnuq+TR( 1U\ :Z^`b-ǒ]%?c󠪵vz  {ET7U-ACϷ+f'ϔd}'+F@^WƢ0q$Z[\zh%զ?h(~[}WetըwT.Hik2YA~(WT2zV$nr1]/g{k"Ōuf i 4 Px6s'!}`KŞ8%B Q>qLw?[<(8w/ _{ǹVlc+̻.}gWUs\DI"nVC)_1b*0ָbuu2nRsbL[&f*4ЄǪF)t<K#$7y£M!|YGx5 5\ji7 iW{uyWdeĜ]NTV~i릠G)Ru4ߙӢF=&[Y3^y s j,l9㍭Ï d!-yȂRxJV6B>\ acc-AaT>XJH!3&gq#(eQKT<;@btf3z ,Kj 1$lm[F= ]UY*b4f'a?H#:? 34&>1RyW}S_t!>Nj~F7jcn6fZPʦ/l%Bv$ⱟ6&thj}5V=V IwYnߧuLK 7aN3B\]&] kmctNӖcCg}惃ܶ81vh2>3$o?Ы2ٵZvlo ȏ4p|܋jpo ]zi 쓟/ml}/qAgJII9s^S/{XeiY,™FE3oIBU X 48Kli{vG 8;x^:$uǶ­W6kȢ/+$v>MXҐ[0o35p"O@PbIhf ˱zt|i 8̠m3I}"/om4u$7,;TԱxEuWD:phd# ep>NmGzP&] f5r@MMsivQG;od(6HI.YX^ cY+Bn`kkfAZnNc *TaS!3Ny:y?6JW?NmSnԗ 8I=+}RVHDm @RVüKKq)!:@HY*J"8r  FH(әBNeUg ^M:qi"t>ݭ8]V,[NmUx;80g=:_lfz SBHjr {O\EƮC|oF >Oõ S|ֽ0c;f9u*oPiWk] xV9zƌrd\ু~1;h`9#Fl"60SP!-{E~keU7YH-|02u&e*9y<1"K*#d̤!shA#e?*+[2B:3ivoaPo%gJ-c2`L|/M=ܦ:m<G{*u`HL횑aܲ`<`7^]1#Vm||٣teb/h];^O!VqKGλ 78p>CyXO(=3~.d3PZxJ"2qgl7ZO1-a?;n$f+57%brJDii5ԑyYݮMnlF&@ R_B7jr2n.̰q |X}W0YZPhfǢ]Ӓt1>}V{[jЩ43 !zs[". Lvag"LMX}ڕPR6:^^rnX8LkЀf^|)2IdxzZf{_7 TE<N&RaBX#^ujQRgR+]z()':F!]*{U # 1`&M3+uP éLH@]̡zy_)rBe$~5P6ܳF߻1Hpp7\lLW)n4|N6!]bv:t{V<]Z\n)G##1沍Sm2 60gc]`)7"sNHsJ aeCɏa믐}8 Ok-3kk!DnFq-Q*_ 6#D: (cFTZ<> C C  x~ZsB@]?9`6oe!(Bjh=C@L8H1Hk L|lIKR VRfwqPG.]cDvYxL )jŔXɾ3jzg#Ko,}c@\LB J l[D(rD_VSb2]f0_ONd37[p[}A V\Hx~: |Mݼ WHn7Ĉe}K=ylx&<tԝ5nKBw*s1tĽQx, |°L?/DIN;´q.lY)'/8ڮO*ÛpK״i'BtkmȂ &qk:WǵxvD3Gjv#'2x*o' 8e"S7gR H5/L<#J! _Y(e\r*h9;j8߻Gƣ_ia'm^q8bk3gDWu8\UA|lpvG ^aMzav@-/q@Ңʒ/})xF[ ML1ruްGsM!xLb |^ãi_9)C@o܎DMf#@`T[ &a)/F5+ !~2xIm8~v]qw0mY[9"aJx/q2I8,V n"ZZ&kI: .K1&Ž^&~5pCлþ!*4'\<ԛ!9S{-:o7(@ To gxU&%-ָO'a6$5$; .Zw/m۰C}]+eǻ?'v׍_(e3+W>',S7:I)8+omur(1hʮ?an~} WgLehEZ+ g!ud4pxLڪt}02PNO>͉^BDgnDkkP.l&FGXJk%vWER͘u~&e,00sU'J9116&hDj1E=R@,C<#ܢ.[ 5FP)qh"F0AIRS_Z :Aߊ`&dmCxb(YrB}7ۼm$<,(p8\0WHξ8BK~iul!xBOSrE#q0> GIC*{f>601).5`T &; qk"jb'G…ZiIȤu5FIEN"N4;%R4{G%)*]WJ"ezոR̃1'dLJQ|9qq(cdݟv J҄O/Vf2wPydpn,kNI2C$|Xoމp'Wa*UA˓ph'20J> ^; O#c/1˼˶tRC>3nͫ([)wayn}o>3F{0glc3#~$ ?ΘaGmetguCAQx!Ň8UV]%WhIU&QSrbu y 8p[GTKC4FDcB7n+ kG2&Zp|MVK_.TW<9 d}ٍ7]ryڹa}2/JZd~ R]; qԵo{ ~1Ĥނ2|#rm[C螨EEF+Ϊg'N^K3WzHCIR,De"r(LU9vn7~E;Rb&K{)D#yl4E!l:L}kO tH>ح2 5?UV/lL?j;t|PLkeUk162'9?q?cBóL 9&z{TUc,j͂ Lh2lv(31 W$+l珢Ҧ{Xt|—ϥ| {'(yu$@M(B⟌ XҴto]/q0day ![(8{6XZgY+96#' xjݷ3)ЖX%^Ati'^cy5O5RԍԊw (4\J{~MB(x;ޭ!>y0*ٟ+^̙ y_n>Q(XHFH8:&~Cc& HdrY &!\B.Ͻ Ǡnv{ݑ$[> 㭐fC¦]ӃV8d-sUo1llH/ O4ۭ!WZp uj/`J me=OkN3M0֏0mq؄3( qͧG`S)a=̘mƙ'Xk/rrg.9%;Q3pێ&|Cdo:S `1d>5WoȖuvtО*|afi$\&;IO6Pdr&]>tX 5)N^zK< 1x2ʫVW+"DQ@A\x.yv&ޮ<]{7d?vM-5} b)^H\9୻ĤrX!zŮIqb>rI1AQ؆^fAQ=C *BS֖p0ҿ+㍤IxDھFs'+~uTus o::L9ٛY_LTl]`~blÈ;)nS\_A)a\QUWOk_A}pwn>o?4Dӳ-OEVK>dֻj]ٰkO;GXq, _  {K;>G,7w;ƷE`ܝaE3|_N=6K]e'sdDձnmۀv>JL!˱/R;kхQ? "ֱD;@).T0H"&C&wJn`{6řEjʭr`zݪYƦ{7DyAT+,OW zY@V-3mySO.TR09Oc{157N2k"pۀSN(k$ʯ>2"r9VApt"J LC)X1i$%yƏY{ބշ0uj^: =) 5T"e?f~6)*UØ |Rܶ~K9Oқ9)HL9e(W&tm~3+([usAw/WT>` Dӑ7(OrL%bH9oOQM /ݭhO%kR^bW^!;"BL1Q#.wEZ:Í,m4aS?C-],+˭T:?gI}ƚHh`I^>Ċ.R08p^W@>(/)!}tOD2羡֜Ŋ6{9F}WəWAmgۃ1^ths5x%9}8{Z*_t4ρrjr^tvM(.K-τi\涜N u4 q_ONXm-@}(jjuuA\DK0}/z1ռ5ɔ401a .X[k4EZ 8]k 41.OE?8=~Q"Gc_ƹmb+cYspM&#SD.`p"7uO7ڙi*XެPQ$4\Qśb@Y?\x? 咁* CEUc>ZL%ҁ(ޫ()8@sZ0̻pswo%3%b Rl/ܸRR]@Կ&xV* IWI#K@Sj>`f@&$gԡtL;ñ;t7dLWfUbmʉw_W/Ym}:0б|[E= x?RY?~Ry9߮aTHJjKkrج^ +}?Xz_32rJL/c\ RHyDhlDm$s8Ә`Zc̨.~] Cu*>;v^eju;0n )di 7j}˔XC6@ .0W:fKv]7^EѢሓ([4BP#gN)a8H( va̕_+iWXvuwXr .l iN{oTD~m|mSJ_1a|)hm3@]u]>ԅVZLPqõJ.&GR=ՃmiQ?t$M]oG[W]Cz f-˷3 |K#Ȯ mÞ^,A<|'3fgة-<Ӑ&3JOg%~XCIʢ@T:H)0b,f"eܮnj7wTc4w&(X lj;'˽XĀd} m[\3tblA{NJx$ !7@6E\1A L~UIrE i;82B3>&Nx~sN#ް䗻eR4,O[Czx ~z&0rUO:'CpVnV@]Vтeex d}:ޏRt;{F漲g^E~ez H)78,`C8vҹ\e=g%-T.LME40е鰟Sn& r߿;Rf) F*3y,m%I9TTċ~Vu)=.MNaW 6϶Q?&)ZH.nn詤٪L٩|JTwF RdWG=>*'b4/ߕ hIQSk}PzV_I0&CgS^'RZku.BDi|O8y,Jʣ\G3`"Ԋ"xF A4[J>$#0BReEY%iA\A.:.6%@ S80,Mjd&nl׫n`p pϯhjhzu׸ |լ0 NE~u(|?ORZ=nת³Iө%W|f_ Ưy'FZ= p{\'wp—Ѵ% &m"r[O&5wF'  첿샆,M|[FvӒ9mJǷiV`,26 뺠 j?;Uշ>׶*١SZ2KA}=ͤ0!&=S/^#LMP~OxDs5Buǝ27:RrVU/xzϿV=M{;xg֦z?NQY݋A1RH YvOTP%f=#[Ɩ,Xj =Dsk c뫺3FAr1Ǵ, UG8K^y:eSn [$Ԃ(deA" 33ƍ8cᡡ0p TjfU^/38͉*I# -,"6Qrbj?xtaZ:eEܰ-b H \߾ fAcY(#`KVcx"ɢOi2PsǗ h ^)15AV@a|4-MH*GbP1w!/N݅,p'?' DΤslQbh⏪n >C8ưJLU3lm0V3NAsP|j/d&as>ҲSi6\{f$ ٢%*"@~%q /6o%/Y/]tAcw^kк0a |V\\fM5T5Äk`w*F-5IT$yL5M\!ɽA2WU ȃ #6ގ!a¯>(ƹI"j{~@/*rd o6cr., ʃ# >mlƫiVo_u aTle7tC 5#J ye ըxcV\xޥ!!4YP#D xXR4J>NpfE ,ؘ,`DjH%$RN9+2k)L(Lo Sw!cYtѶahべdljT/HFhD1l؅ZmSsTN.]$Z].r)h@~{+c&}[Pn:}AoD`8_G\0H]X]6> JRtuPpipgn5>\~RBTֽ #/НADCol" r*:;~.\>QӔPF sV7,og7!Ei1beز_VMz}Fs t vG;V .Ӝ1ʛMzLuw uFx*v0v>-'eJ0)Ҍ}X\.kckMpPm_ٻ$ԣj[$#x[nTRZo2Pכ/r^QJOp 咍cѹߪ䤐ZDApxYx_yh(0n4G%a7r}M:MwA/)%~ɳ%UQqV,Y< TH .OT:'ŀRǶ5kT=Q(*e\$";Gb]VGv!E (>>ӵ<פwRF$6D\7i9W?PI,'J5 Wo"Z0,ܙ{dDG%>QƜ,%l}ʋnq=W4+&/ھE͊O#Q纭xBvY]dEsY6Ɛc{Jxo+i-$p)ǖo҃G7B߭F'aj7LJs%.02x"ް>IX4g_!-z"gp+}[Rr 4U Rj2Z}PCqd_r>W ܎ҴV{Gp,Rp^0e QӼJj^/d3f?w[/-`z iX*;u%X#jz 퉕r})0WzJnpw[4@6ܩK02EK,(A@e.9~doq&O`fanR_{@JF.sy~]\E4 E`PB1:YcK+0T[>+Ăo%q?q 4SHK"qG[Mǫ E98 ^Ԁ# E4te[%Z9Nmf#̛bxF'՚ N: ɽ-^Q7̩%H\SA AE45꘻.JuV3k(AnDrcdq́%GqO=0?\*\&I =ט! 7$g6ʴmB8`{}Ǜc(qp{ DWNpl)Xgؾ^<"YxbuDga/BC卢{ҮQl6!O#X'@_ `̯FXVpfBHa'I#왥 <~-e'/n!42[ o8i JL T`h4@]쟁^ Hd-,_ VY{O F:=+Kr`NMth__nhO O̡ݡK]?!B+za|}y 0y2$HeI=٫G6Ѵo(D 9KA4>d^?]:U&xWюIY̅?h'ڐB{:ƭ>xKsB|$KL҂* \;lϯz(&Z.g6y+.9\Um!&U/=b2]8*wRWzD}描څ{b}c\Y9L:NUXi$]Ϟ*=*j5h]lV:JVyt RQ~E-7{N^VuqP\YB*oҊoFچZSK0/}d+bau-U 3 S%2%;W'XaM'&P8-?=Lg]T}:r.cs9-]߽/\e8|==T^rRՎXhwYľo*/\O}1o\8㿇W(8ɦ dw#Z)+5RD;SrU7g WOh5M_*_[,28]iAJ:A?|EY=\,o4!5x" œlGn}MKOH5xa?}H=lL9% bh :}:O6^[[(-a~2[\RzTGlc*G8Q7yzp ?`ڶ/vQc}.6#78MLl6!d[߃|d$sR 𛞘hP=_HK*!JP8{CjPH .µr,tE:>FPrMKVAȴ"P +Q:YLeɟ4,;!=,s^e^kz&0JaH2 ^q9蹐ྦྷ,USS&ۂZ"A&dC$B`d#$nu>Gaр$t4KGq(.M \ M'nAVQ.Hhˎ|n1K9vp^!HGD b}"L<^M5&r0l㼂]XueJ`&'$Ox",08wm3ԁs#;T7TG[lLrۮ$|>8y6F'Lm6>60JS;'3W5c &v] ]K j`@6J$V=u6Ol0p(م &"[̿oY1ED-Ee-3 5ďH (}E1S$ٷ= ε*`{By|74n 8:^`fc:\@ q̑pB9&6gnhKDj[G(p @}Y=?)c1DkFI𢀑tFwbXԣ9fBC(9w])C,I6/yKnrs{UDh$T; (OCa~--3bF)𼛶ӽB}yj> j]u$qwT ݅SƢ(M}]J(SJXPaFDV[|ݚjLB8$:87#UJV 6Ҍ".I4!!WE h1e/˚P"sgpzXC#YkJK] S%lnf@saBY;`ov5^̇ye+B&vI1MsCjruֵh-cTi{LHysт"5#t|k.zVu?*.SdL\T4lG0:'..%$(S/Ш6X.L1?Wzv0S]V)waleZDMۜU'%dKM\4W%|Ȋ 2kR.QT n |M:pqð#&U| 3|nuKlڒxۢ'-属_BeC5!¶t[wΤ:E,3zqʧUSCLVqu]N/ U֑g?TԅC.H.Do#6 ܓ~gUHt^ 2 / §}=n5K%Gԍ;bqeF1UWV/FYǎic9VJX|q|?F|A3\M,}BgN1PjY Ch|}zgXt8fxɁ":id'Y;&2Mh6 c&Mů=|o",B1zh+ߛo|;}E|^1 <48mYs`ݾ !#doS!zy]7/ȗSYZ_ٕ,Z/T#lÅJ$س>k̛wƩ<O"*='LsV{ݵS2(B2`MZRvw!ȹ,XNzJSN<ۓSVq" 9bgmWUu`&x V\ײ\ '(+`;W@Oɒl~kG_KT@LDwXUj/#؉ӘJ3ȡR6O= -%A9F[4\ѭB3eP cUz߫m|Pkܟ.ö)q'9KKž?*$)35Ys;%ֆ]'6"ҹ8n!x\@$mjDa|JqPWĪNi-'.zKJw1 {ϟ|}VrT}|RH)PG摂ϯ1z%qNԧ^S/Wv43U]4бy8`](a˺$&MIO#8)T"d7[ `yd!fj lyJtgVxX~ΖΰYZњs,%7Y׉ 9ex0㩮0IY]5p#aOL#(2oۍUerwdlg7=iwamy2r^ƂI{@zQ~=1Gv3tp6vp vr&UPf]'Ud3Bk8|3RD3_peq{*߅ +En29+&{*cݔ@ &x"mL:3Esn($% pK LdxnՇٿTk-/(%O˽0@xI$֊ٹހV# $ X1)8`Y"1MuX{Od{X9O׼ ]~YS֘*xőLFy6Ds,wb6%8I,3Xs u^$"%5/NAؼ_x003 ~+y 9DP?tt%5 mȧo j'E$yT[nC/NiEm3P(f{?^"> ar?Qணr/2RY`3Fy#N;MԎcq#t#T1Z%!gȓy"Rs`Mx^6;XYc>ף* f\D{nP3 Zm?qB ?TGAda]/ڲȸ>U‘vqFi,4TG E8ç=T436 t!bz*+ju$j5vtւ0ql]f"s)vd*#'yR`=JEq!=N. Xx:EPG%[!?vy1n0}Alrn7TL* y,&$yRT _ #;fYGJ8YxV..i`hAjB Z/HcO&7,rqvǀ,՟0NaM+?rࡗ@:0K~u4C3k$d>rǐLA'A/8} |<}ie.܅Gx\egjbp)b~ NH%``u!vf|$=srPsIm0=+I2Ѳ7#(هm3ÞZAϱ:p*,L`@]<5Rٝ"IYݽ>mPG߰"hWm bc\̃y vqduw s:% N?,f"gYrё,b *6;ء"7ngu٥utooC,(3n1ޫNu$YKVfUʜ~Pʘ`]bDh"\&fn2) OYg$EsSGA4gzT)[*X?jƂ-`zeb|18nRJ]X2<H;9k<r7BcӮ+-9D =wC,*5~c]XAd'+ )F6E9ҌZe R&yUyr vH@hFwx4!ʳo=kun4`hdB-Q&6?lHcLI;afS A1YևIAn!i<26M?-4sB R4$ LKˮʎty(fGF 3]d(/.`; 0 %|P{xhw=J~ =wQ<`TZiV_;2?927|tɔVg8ssMQ]L}} m JnWHbw+MBI:&j!t C31g<^^saŁ퉜 5C:CDCLXDų[ʴSA^W@@cǗZ 7Ohe#odE8o %Iq[⺯%4%8O-;1Δ9Ͷd*&@ۚ76)%ղ n!31R_aTo%9IF)s&qc11!Y؞k Ϭ멊$dKV?mF޹U2fH]*),3vO^KEfGU ǃ>`r$?\jM:r<呎@;Z3P`8,/zFV%J}n^V$Jm'w{v:L\Wi}VrUQ\|WC jۋ$H|-d5Gt YZ