freerdp-proxy-2.4.0-150400.3.12.1 >  A c1up9|m"t[U4(4ns ^z>HטpQ5$`s@܈5z*+Qj_33$As,gw7/#\硶%.JA!]p8Y|6#FzzSE5}j94n%Y^Q LV D9QNs+}Un`Y$n0>̕BU. PǣRY]Ip9?opN.K۵*Pwwm xjŭ49752be246f2e5c699648d109f7fbbae5f777f157f91132aee7f33d55be9db490e5c27ccfc59f5703f98e7e56bd85bdda4fe2dfd0c1up9|:K+V{seرmdj? *o6uOk?  `rM]qu4Y"COd9j B~v 84* z M]<1]?/ZDn Y0v~$J !IH}ltN*S۾[~(9&T<1}Jg꘴ V߯I&G{?OOX!圑p>c?bd $ W 5Va w       @Dl   (8/9/:/F_G`H` I`X`Y`\`D]`H^`Vb``ca daeafalauavawbpxbtybxzbbbbbCfreerdp-proxy2.4.0150400.3.12.1Remote Desktop Security and Monitorig Proxy ServerThis package contains a proxy that allows to select specific features and channels allowed for all connections passing through. It allows monitoring of the running sessions.c1qs390zp31SUSE Linux Enterprise 15SUSE LLC Apache-2.0https://www.suse.com/Productivity/Networking/Otherhttps://www.freerdp.com/linuxs390xc1Z480233f84fe7b8066df39613377d597c8b01882238de2a8bcea89dc198878646rootrootfreerdp-2.4.0-150400.3.12.1.src.rpmfreerdp-proxyfreerdp-proxy(s390-64)@@@@@@@@    libc.so.6()(64bit)libc.so.6(GLIBC_2.2)(64bit)libc.so.6(GLIBC_2.4)(64bit)libfreerdp-client2.so.2()(64bit)libfreerdp-server2.so.2()(64bit)libfreerdp2.so.2()(64bit)librdpgfx-client.so()(64bit)libwinpr2.so.2()(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)3.0.4-14.6.0-14.0-15.2-14.14.3c\cN@bL@b@a^@a]aEaD@aD@aA@a@a`OL@`<@`7@_@_^@^@^^^I^@^@^T@^^t@]@\@[@[j@Zz@Z@Z`@ZkZWQZY@@YKYKY=0Y;@X~@XW local * #gh:FreeRDP/FreeRDP#6985: Support newer FFMPEG builds * #gh:FreeRDP/FreeRDP#6989: Use OpenSSL default certificate store settings * #gh:FreeRDP/FreeRDP#7073: Planar alignment fixes- Updated to release 2.3.2 Noteworthy changes: * Fixed autoreconnect printer backend loading * Fixed compilation on older mac os versions < 10.14 * Fixed mouse pointer move with smart-sizing * Added command line option to disable websocket gateway support * Fixed drive hotplugging issues with windows * Fixed smartcard issues on mac Fixed issues: * #gh:FreeRDP/FreeRDP#6900: Transparency issues with aFreeRDP * #gh:FreeRDP/FreeRDP#6848: Invalid format string in smartcard trace * #gh:FreeRDP/FreeRDP#6846: Fixed static builds * #gh:FreeRDP/FreeRDP#6888: Crash due to missing bounds checks * #gh:FreeRDP/FreeRDP#6882: Use default sound device on mac- Updated to release 2.3.1 Noteworthy changes: * This is a compatibility bugfix release readding some (deprecated) symbols/defines * Also add some more EXPERIMENTAL warnings to CMake flags as some were not clear enough. * Fixed a memory leak in xfreerdp (mouse pointer updates) * No longer activating some compile time debug options with - DWITH_DEBUG_ALL=ON which might leak sensitive information. * Added -DDEFINE_NO_DEPRECATED for developers to detect use of deprecated symbols- Updated to release 2.3.0 Noteworthy changes: * Websocket support for proxy connections * Progressive codec improvements. Reduces graphical glitches against windows and ogon servers * Fixed +glyph-cache, now working properly without disconnects * Huge file support in clipboard * XWayland support for xfreerdp (keyboard grabbing) * Improved wlfreerdp (wayland client) * Option to allow keyboard scancodes to be remapped manually * Improved mouse wheel behaviour when scrolling * Improved dynamic channel behaviour, more stable event detection * New connection state PubSub notification: Clients can now monitor current connection state Fixes: * gh#FreeRDP/FreeRDP/6626: Fixed parsing of FastGlyph order. gh#FreeRDP/FreeRDP/6624: Added support for xwayland keyboard grab gh#FreeRDP/FreeRDP/6492: Added clipboard CB_HUGE_FILE_SUPPORT_ENABLED flag gh#FreeRDP/FreeRDP/6428: Improve NLA error code logging. gh#FreeRDP/FreeRDP/6416: Http gateway message support gh#FreeRDP/FreeRDP/6753: List of pull requests to backport for stable-next - Added freerdp-rpmlintrc to supress a false positive as gethostbyname() is a windows-function call not a unix one.- Updated to release 2.2.0 (boo#1174321, gh#FreeRDP/FreeRDP#6381) * SECURITY: CVE-2020-15103 - Integer overflow due to missing input sanitation in rdpegfx channel * Sound & mic - filter GSM codec for microphone redirection (gh#FreeRDP/FreeRDP#6263) * windows client title length (gh#FreeRDP/FreeRDP#6335) * "Alternate Secondary Drawing Order UNKNOWN" (gh#FreeRDP/FreeRDP#6370) * remoteapp with dialog is disconnecting when it loses focus (gh#FreeRDP/FreeRDP#6298) * v2.1.2: Can't connect to Windows7 (gh#FreeRDP/FreeRDP#6299) * fix: memory leak in nsc * urbdrc: some fixes and improvements * build: use cmake to detect getlogin_r, improve asan checks/detection * server/proxy: - new: support for heartbeats - new: support for rail handshake ex flags - fix: possible race condition with redirects * Drop upstream fixed patch: freerdp-CVE-2020-15103.patch - Removed freerdp_Mask_CACHED_BRUSH_when_checking_brush_style.patch- Drop BuildRequires of libavcodec for Leap/SLE (bsc#1174200)- Added freerdp_Mask_CACHED_BRUSH_when_checking_brush_style.patch which fixed frequent crashes described in boo#1173605 and gh#FreeRDP/FreeRDP#6298- Updated to release 2.1.2 (boo#1173247) * CVE-2020-4033 Out of bound read in RLEDECOMPRESS * CVE-2020-4031 Use-After-Free in gdi_SelectObject * CVE-2020-4032 Integer casting vulnerability in `update_recv_secondary_order` * CVE-2020-4030 OOB read in `TrioParse` * CVE-2020-11099 OOB Read in license_read_new_or_upgrade_license_packet * CVE-2020-11098 Out-of-bound read in glyph_cache_put * CVE-2020-11097 OOB read in ntlm_av_pair_get * CVE-2020-11095 Global OOB read in update_recv_primary_order * CVE-2020-11096 Global OOB read in update_read_cache_bitmap_v3_order * Gateway RPC fixes for windows * Fixed resource fee race resulting in double free in USB redirection * Fixed wayland client crashes * Fixed X11 client mouse mapping issues (X11 mapping on/off) * Some proxy related improvements (capture module) * Code cleanup (use getlogin_r, ...) - Removed obsolete upstream patch freerdp-bug-6205.patch- Updated to release 2.1.1 (boo#1171441) * CVE-2020-13396: GHSL-2020-100 OOB Read in ntlm_read_ChallengeMessage * CVE-2020-13397: GHSL-2020-101 OOB Read in security_fips_decrypt due to uninitialized value * CVE-2020-13398: GHSL-2020-102 OOB Write in crypto_rsa_common * Enforce synchronous legacy RDP encryption count (#6156) * Fixed some leaks and crashes missed in 2.1.0 * Removed dynamic channel listener limits * Lots of resource cleanup fixes (clang sanitizers) * A couple of performance improvements * Various small annoyances eliminated (typos, prefilled username for windows client, ...) - Removed freerdp-bug-6175.patch and freerdp-bug-6207.patch because included in upstream- Added freerdp-bug-6205.patch to fix reading newline on certificate accept gh#FreeRDP/FreeRDP#6205 - Added freerdp-bug-6175.patch to fix Certificate Checking Recently Broke gh#FreeRDP/FreeRDP#6148 - Added freerdp-bug-6207.patch to fix Abort on first possible certificate validation error gh#FreeRDP/FreeRDP#6207- Updated to release 2.1.0 (boo#1171441) * Fixed CVEs: - CVE-2020-11039 - CVE-2020-11038 - CVE-2020-11043 - CVE-2020-11040 - CVE-2020-11041 - CVE-2020-11019 - CVE-2020-11017 - CVE-2020-11018 * Fixed leak and crashing issues: - gh#FreeRDP/FreeRDP#6129 - gh#FreeRDP/FreeRDP#6128 - gh#FreeRDP/FreeRDP#6127 - gh#FreeRDP/FreeRDP#6110 - gh#FreeRDP/FreeRDP#6081 - gh#FreeRDP/FreeRDP#6077 * Noteworthy features and improvements: - Fixed sound issues (gh#FreeRDP/FreeRDP#6043) - New expert command line options /tune and /tune-list to modify all client settings in a generic way. - Fixes for smartcard cache, this improves compatibility of smartcard devices with newer smartcard channel. - Shadow server can now be instructed to listen to multiple interfaces. - Improved server certificate support (gh#FreeRDP/FreeRDP#6052) - Various fixes for wayland client (fullscreen, mouse wheel, ...) - Fixed large mouse pointer support, now mouse pointers > 96x96 pixel are visible. - USB redirection command line improvements (filter options) - Various translation improvements for android and ios clients - Removed upstream patches fix-freerdp-2.0.0-usbdk-build.patch and fix-URBDRC_DEVICE_ADD_FLAG-definitions.patch- Updated and reviewed make command and added fix-freerdp-2.0.0-usbdk-build.patch to fix boo#1169679 and make USB working again - Fixed build for SLE_12 - Cleaned up spec file- Add fix-URBDRC_DEVICE_ADD_FLAG-definitions.patch in order to fix boo#1169748.- Added cairo support for scaling - Cleaned up spec- Removed patch freerdp-Fix-realloc-return-handling.patch - Added pkgconfig(libusb-1.0) for building - Added new package for freerdp-proxy - Cleaned up spec file - Updated to release 2.0.0 * Fixed CVEs: - CVE-2020-11521 - CVE-2020-11522 - CVE-2020-11523 - CVE-2020-11524 - CVE-2020-11525 - CVE-2020-11526 * Fixed security related issues: - gh#FreeRDP/FreeRDP#6005 - gh#FreeRDP/FreeRDP#6006 - gh#FreeRDP/FreeRDP#6007 - gh#FreeRDP/FreeRDP#6008 - gh#FreeRDP/FreeRDP#6009 - gh#FreeRDP/FreeRDP#6010 - gh#FreeRDP/FreeRDP#6011 - gh#FreeRDP/FreeRDP#6012 - gh#FreeRDP/FreeRDP#6013 * sha256 is now used instead of sha1 to fingerprint certificates. This will invalidate all hosts in FreeRDP known_hosts2 file and causes a prompt if a new connection is established after the update * First version of the RDP proxy was added (gh#FreeRDP/FreeRDP#5372) thanks to @kubistika * Smartcard received some refactoring. Missing functions were added and input validation was improved (gh#FreeRDP/FreeRDP#5884) * A new option /cert that unifies all certificate related options (gh#FreeRDP/FreeRDP#5880) The old options (cert-ignore, cert-deny, cert-name, cert-tofu) are still available but marked as deprecated * Support for Remote Assistance Protocol Version 2 [MS-RA] * The DirectFB client was removed because it was unmaintained * Unified initialization of OrderSupport * Fix for licensing against Windows Server 2003 * Font smoothing is now enabled per default * Smart scaling for Wayland using libcairo was added (gh#FreeRDP/FreeRDP#5215) * Unified update->BeginPaint and update->EndPaint * An image scaling API for software drawing was added * Rail was updated to the latest spec version 28.0 * Support for H.264 in the shadow server is now detected at runtime * Add mask= option for /gfx and /gfx-h264 (gh#FreeRDP/FreeRDP#5771) * A new option /timeout was added to adjust the TCP ACK timeout (gh#FreeRDP/FreeRDP#5987)- Disable LTO on aarch64 and %arm to fix build- Add freerdp-Fix-realloc-return-handling.patch: Fix realloc return handling that results in memory leaks (boo#1153163, boo#1153164, gh#FreeRDP/FreeRDP#5645, CVE-2019-17177, CVE-2019-17178)- Add Requires: lib%{name}%{major_version} = %{version}-%{release}: freerdp should depend on the same release of libfreerdp2 (boo#1129193)- upgrade to version 2.0.0-rc4 (FATE#326739) * Fix the following issues: - CVE-2018-8784, boo#1116708 - CVE-2018-8785, boo#1117967 - CVE-2018-8786, boo#1117966 - CVE-2018-8787, boo#1117964 - CVE-2018-8788, boo#1117963 - CVE-2018-8789, boo#1117965 - CVE-2018-1000852, boo#1120507 * Security and stability improvements, including boo#1103557 and boo#1112028 * Refactored ntlm_av_pairs API * gateway: multiple fixes and improvements * client/X11: support for rail (remote app) icons was added * the licensing code was re-worked: Per-device licenses are now saved on the client and used on re-connect: WARNING: this is a change in FreeRDP behavior regarding licensing WARNING: this is a change in FreeRDP behavior regarding licensing. If the old behavior is required, or no licenses should be saved use the new command line option +old-license (gh#/FreeRDP/FreeRDP#4979) * improve order handling - only orders that were enabled during capability exchange are accepted. WARNING and NOTE: some servers do improperly send orders that weren't negotiated, for such cases the new command line option /relax-order-checks was added to disable the strict order checking. If connecting to xrdp the options /relax-order-checks *and* +glyph-cache are required. (gh#/FreeRDP/FreeRDP#4926) * /smartcard has now support for substring filters (gh#/FreeRDP/FreeRDP#4840) for details see https://github.com/FreeRDP/FreeRDP/wiki/smartcard-logon * add new command line option /smartcard-logon to allow smartcard login (currently only with RDP security) * add support to set tls security level (for openssl >= 1.1.0) - default level is set to 1 - the new command line option /tls-seclevel:[LEVEL] allows to set a different level if required * new command line option: /window-position to allow positioning the window on startup * client/X11: set window title before mapping * rdpsnd/audin (mostly server side) add support for audio re-sampling using soxr or ffmpeg- upgrade to version 2.0.0-rc3 See: https://github.com/FreeRDP/FreeRDP/milestone/9?closed=1 * Improved and cleaned up the command line interface * Fixed automount issues * Fixed several audio and microphone related issues * Implemented AAC and MP3 codecs * Added Wave2 support * Addedd dynamic resolution with full screen toggle support * Improved redirection handling and certificate issues * Improved automatic reconnects * Improced connection error handling * Fixed invalid pointer, double-free, integer underflow, buffer overflows issues as well as other memory leaks * fixed X11 Right-Ctrl ungrab feature * winpr: Updates time zone data to April 2018 * added libressl compatibility- removed SLE11 condition - removed no_connection_to_windows_10_17101.patch - removed -DBUILTIN_CHANNELS=OFF switch - explicitly set -DCHANNEL_GEOMETRY=ON - Disable the new X264 and OPENH264 codecs because openSUSE does not provide them - upgrade to version 2.0.0-rc2 See: https://github.com/FreeRDP/FreeRDP/milestone/8 Noteworthy features and improvements: * IMPORTANT: add support CredSSP v6 - this fixes KB4088776 see #4449, #4488 * basic support for the "Video Optimized Remoting Virtual Channel Extension" (MS-RDPEVOR) was added * many smart card related fixes and cleanups #4312 * fix ccache support * add support for memory and thread sanitizer * support for dynamic resloution changes was added in xfreerdp #4313 * support for gateway access token (command line option /gat) was added * initial support for travis-ci.org was added * SSE optimization version of RGB to AVC444 frame split was added * build: -msse2/-msse3 are not enabled globally anymore Fixed github issues (excerpt): * #4227 Convert settings->Password to binary blob * #4231 freerdp-2.0.0_rc0: 5 tests failed out of 184 on ppc * #4276 Big endian fixes * #4291 xfreerdp “Segmentation fault” when connecting to freerdp-shadow-cli * #4293 [X11] shadow server memory corruption with /monitors:2 #4293 * #4296 drive redirection - raise an error if the directory can't be found * #4306 Cannot connect to shadow server with NLA auth: SEC_E_OUT_OF_SEQUENCE (boo#1085416, boo#1087240, boo#1104918, CVE-2018-0886) * #4457 Fix /size: /w: /h: with /monitors: (Fix custom sizes) * #4527 pre-connection blob (pcb) support in .rdp files * #4552 Fix Windows 10 cursors drawing as black * smartcard related: #3521, #3431, #3474, #3488, #775, #1424- Fix boo#1090677 activate pulse optional component- Added no_connection_to_windows_10_17101.patch to fix Windows-connection-problem after Windows march 2018 updates. This fix is related to boo#1085416- Do not use xorg-x11-devel, instead buildrequire individual x components. - Only attempt to ge rid of __DATE__ and __TIME__ if SOURCE_DATE_EPOCH is not set.- Users can connect only once wo windows sessions due to [#]gh/FreeRDP/FreeRDP/4348 Therefore WITH_GSSAPI has been disabled until that issue has been solved- Updated to 2.0.0-rc1 Noteworthy features and improvements: * support for FIPS mode was added (option +fipsmode) * initial client side kerberos support (run cmake with WITH_GSSAPI) * support for ssh-agent redirection (as rdp channel) * the man page(s) and /help were updated an improved * add support for ICU for unicode conversion (-DWITH_ICU=ON) * client add option to force password prompt before connection (/from-stdin[:force]) * extend /size to allow width or height percentages (#gh/FreeRDP/FreeRDP/4146) * add support for "password is pin" * clipboard is now enabled per default (use -clipboard to disable) Fixed github issues (excerpt): * #gh/FreeRDP/FreeRDP/4281: Added option to prefer IPv6 over IPv4 * #gh/FreeRDP/FreeRDP/3890: Point to OpenSSL doc for private CA * #gh/FreeRDP/FreeRDP/3378: support 31 static channels as described in the spec * #gh/FreeRDP/FreeRDP/4253: Rfx decode tile width. * #gh/FreeRDP/FreeRDP/3267: fix parsing of drivestoredirect * #gh/FreeRDP/FreeRDP/4257: Proper error checks for /kbd argument * #gh/FreeRDP/FreeRDP/4249: Corruption due to recursive parser * #gh/FreeRDP/FreeRDP/4111: 15bpp color handling for brush. * #gh/FreeRDP/FreeRDP/3509: Added Ctrl+Alt+Enter description * #gh/FreeRDP/FreeRDP/3211: Return freerdp error from main. * #gh/FreeRDP/FreeRDP/3513: add better description for drive redirection * #gh/FreeRDP/FreeRDP/4199: ConvertFindDataAToW string length * #gh/FreeRDP/FreeRDP/4135: client/x11: fix colors on big endian * #gh/FreeRDP/FreeRDP/4089: fix h264 context leak when DeleteSurface * #gh/FreeRDP/FreeRDP/4117: possible segfault * #gh/FreeRDP/FreeRDP/4091: fix a regression with remote program- Remove extraneous Obsoletes for packages that never existed in openSUSE:Factory or X11:RemoteDesktop. - Rename libuwac0-devel to uwac0-devel and libwinpr-devel to winpr-devel, as that seems to be their upstream name which packages are encouraged to stick to. - Remove duplicated pkgconfig requires (these are autodetected).- Fixed download location- Switched to official RC0 - Create wayland client package and libuwac0 package - Create separate libwinpr2 to be used in other packages - enabled gstreamer (currently disabled for tumbleweed) - enabled kerberos authentication - Update to official RC0 Fix the following issues identified by the CISCO TALOS project: * TALOS-2017-0336 CVE-2017-2834 boo#1050714 * TALOS-2017-0337 CVE-2017-2835 boo#1050712 * TALOS-2017-0338 CVE-2017-2836 boo#1050699 * TALOS-2017-0339 CVE-2017-2837 boo#1050704 * TALOS-2017-0340 CVE-2017-2838 boo#1050708 * TALOS-2017-0341 CVE-2017-2839 boo#1050711- Redo history by using changelog url - Update to version 2.0.0~git.1497095982.1dbd2d28d: See https://github.com/freerdp/freeRDP/compare/043243f...1dbd2d28d for full details. - Packaging : + Move to xz tarball in _service + Remove 3472.patch merged upstream - Update to version 2.0.0~git.1496304402.c42ccb508: See https://github.com/freerdp/freeRDP/compare/043243f...c42ccb508 for changes.- Forcefully enable PIE in CFLAGS as the automatism did not work.- Add 3472.patch until upstream #3472 isssue is fixed and PR merged this fix boo#1004108- Update to version 2.0.0~git.1477034991.043243f: * fixed kerberos authentication * shadow/rdpsnd: Fix race condition in rdpsnd channel server. The output buffer and format parameters are not protected. * wfreerdp: fix invalid VerifyCertificate callback * rdpsnd/server: decrease audio latency and make it configurable. * Add an environment variables section to the man * protocol violation: rdp_read_extended_info_packet * Added support for OpenH264 1.6 * freerdp: fix sending of TLS alert on NLA failure, add better handling of server-side NLA in shadow server * freerdp: add configurable NTLM SAM file option for server-side NLA * freerdp: make modifications to NLA server-side fixes according to PR comments * Fixed a windows 8.1 issue.- Kill off __DATE__ from built sources.- Update to GNOME 3.20.2 FATE#318572 - Add obs git integration. - Update to version 2.0.0git.1463131968.4e66df7: + Fixed memory leaks. + wfreerdp: fix name build without client interface + libfreerdp-codec: fix xcrush decompression, revert remote control fix + KB3153731: May 2016 DST update for Azerbaijan, Chile, Haiti and Morocco + libfreerdp-codec: make proper xcrush context reset fix- Update to version 2.0.0, git master branch id a7ca42e (FATE#319661), no upstream changelog available. * Warning: This is a git snapshot regarded as technical preview by upstream. * Warning: For xfreerdp, new /long-option commandline interfaces have replaced the old --long-option interfaces. Existing user scripts need to migrate to the new interfaces to avoid breakages. For more details, see: https://github.com/FreeRDP/FreeRDP/wiki/CommandLineInterface * Add Network Level Ahthentication support. * Add Windows Portable Runtime. For more details, see: http://www.freerdp.com/2012/05/24/winpr-windows-portable-runtime * Obsolete libfreerdp-1_0-plugins. - Drop FindALSA.cmake: deprecated - Drop freerdp_branch-1.0.x_fix-kpdivide-issue831.patch: fixed upstream, implemention now in include/freerdp/scancode.h. - Drop freerdp-CVE-2014-0250.patch (bnc#880317): fixed upstream 532c420. - Drop freerdp-CVE-2014-0791.patch (bnc#857491): fixed upstream f1d6afc. - Drop freerdp-fix-FindPCSC-macro.patch: fixed upstream 9148af3. - Drop freerdp-handle-null-device-name.patch (bnc#785437): deprecated, related implementation dropped. was: freerdp-fix-pulse-no-device-name.patchs390zp31 16692801132.4.0-150400.3.12.12.4.0-150400.3.12.1freerdp-proxy/usr/bin/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:26971/SUSE_SLE-15-SP4_Update/6a99ffbbbc942fe77610ac6af633f230-freerdp.SUSE_SLE-15-SP4_Updatecpioxz5s390x-suse-linuxELF 64-bit MSB shared object, IBM S/390, version 1 (SYSV), dynamically linked, interpreter /lib/ld64.so.1, BuildID[sha1]=f1fa09643c5ab0a889eb9cafc28ae6d4f12aeee6, for GNU/Linux 3.2.0, strippedRRRRRRRRү@(utf-84535b01817a66335ae74cfcd4a1455db4a85dac0e0b9998a5fabe2e506e541cd? 7zXZ !t/ṋj] crv9wHx"spw6[ 0% 8|,`|U#y[d3xzʭ$ecP㙶/.!1'[8q؅wN؊+ ]\qnyIe .ےC#].-#O1Ř|+Ubn5hzP\h~[SD$ڑ%[b课;~MGlbnpԺ@[LP.b\B"ᄘ/1_Y<.W]Q6r&NORؤ_SM-#e|=UN ]PG"!gW;909tD-оOq i²e$l ڟpezGܤdK'S`["wogJ;d)AEzCU8Rf%ʒjl^ ٯy\[?=7c[wq >gy2ZSVjF)H, FOM[F X>G n*2eA}C 3S}?Ғ%oS2%}>Ԗ$&Va G$脞!Z[%y- u崠ѝhwy˭>,.Sif)' !1m/$']ot(WҼg̅C{PJ!&!z-%OUgǰVƞX%n*mQO?F0)|fH,-W8MS,|X;=kK|RA65%_kt!?ٿ}-"hl&3OTݹ.~+{+5tIgOۙXom@| 7X:u4YRiEDqm}r?u9F8.x'.?8DicwIFҼDۭ5[QGq9gä//fjMfpseq96 D?bLM¥F(ܕ OP:_1!%sȤ)R9>%VD+lBmZaiIʣ5٩Q9'XO=P+3:ߝ_GE+?V eP4EFm.[Oԍss.ӳ`:.{qsj0H#@ӽ=Tp nt4]dbhF`V-"QV+A.FLw? ĕCP qnd(.epo!^G>ǧ\u@}Vq2i,,O|s%.#&S% hTŴ/ܯQ~iЮ *=xx~p +*,XTנTE\;pCTSꭘ sHQ;Y FBϋ0SXHY&ޫdZ02 wRM\}^1CwQ 8 LR"|7_$Myf6)o&@(|>d-i?!CųA2`TJ3l4Emrޚ6 *M51P1np->Q+6ulAnC#IfפA J:a×aˁI8bo+ZTvkTyK ՝̱|}fb?^8- N9y˗I6N}4g]r2Y6 s0/ahnBtU<@'s'b }H?42%.0mdh9C 37sB}Ui@hNɨ'(W`|z1⭜'jRWVoJGN_wyp)4(^'U C_ ّa52oy˔h6<Ǫp!sy͓=oϭe@NzC xeebxk*͒3cW 5gqNTtP4=j)V.m t$YB $ >$g֊ +0BưP2˗8yeC5o<}X] ?*S]w:!jL%Z4xE-bkD c63R[ mz~f+];2|QH ԝ&Hցv/$˨N%C.s&U۽A:"}M6V!y)=çP{\HSѯZ}*N%7$D=ե}!O##+ۃuNE؃+%ߒju>Oۛ>1$hY-Mԁtw?dv9ytu 95r#) ys`t4*fh.|/As r0VbFKf "z]lj.,wRɶ~vbzz~LXYQc}߃4[)sB&68`j1\eAhr iM}=MsmGnٸ(;1߾uvZĮ׮#h# t/_j:H<莰0B? mə[3C3 {H;m6{-u 3E5 ȫM*;^9w;8Z":6`  68 r7b=|T+wCTm5k᩺_'wx-ؚTn#5A<H4wcF$oq;BS';&|7Y1&aw%8CU6cOvޘ5 fg@~#yVs-0.겏qˢ&֧:Mx2bBZ,Ѿ>TsFsK2ll-p@db(fg1GP|tݟnx"sٚ'WoR-KcO+\]6m/ݜzSCJ z¸Q8U(gk.ktAX- %[`[F> Z+>'(Q jO35ų;I^ak<[%vN_zapiHP,fN_'KGPaа? B sI侨H-s$b_>W(u [QoB|R7O=~X9_f13LdB{OU2R~/P?:wpjˮ}6?hfvqs@n9&[Gc]y,̘q~'QϠ &5mZxtQ#7\3R0 ^bp̌P +i3:p$+o8`4,_TQ>ni;7 lb/+|yx&|aRA9P~jhz-mH_QF,+ Qk&%M3y]8A>hq KhPKhM.W<2G݆&[@.eR]zj8bA0t"d t-fٸWTg *t73@HSŘ<␗iTT$@3;gq:%>3&_e*7kAg |,F9dzKȆ} ఑H@hٕ镎NN(uWFR!\&v#C(/AbO8 q=uz[)76#G'-uA(l*'n=1K87ӳ eú@,؊cK]svC Jv~baXfÎ}Vct&Ob0gσLRV(0RM ތ}zl_d$ Vwm 踐3lvd"TNc/=;m45CDrˎ}TS^8\DQ W"Ո=+^[UзF5Ϭư7#p됙Z(Lᠴɸ['jmy(Ӽ͠h*KDtcg ͩZ71eiˊ 1q*8M&bTlvd\.KɲI9ڭs'VpoWQvVr֢6&2IRA~O>ևzDdcE~c^@:`V|I~@P'}D>)_[tfJV2,W&v!%%+ q b K#{`s i IlE!%Nn wgX־ 4]nݷ5;컿oA#`>۩Z[ztTrunkn9Hщ\={(P zQWlaNa䘜ptҋBlqxv$/i{]FRꌱWwӫe|l@ { Xpnctx!e`fpeiê݅ ۳M)lkx`CT.B"U3/03!> 1BD2eۮKhTrfH% QblN ar!p,TLHVWTFKO;a+uIFUVorRbjg.)z{-M x5M[KBZgl۔`(Wx3leXEb0+D( d&!Z+忕-laà7~yӔ>)0@}$q,8^IF{8*-]Cg8aE*FtpH$$gh4 ʈ(+&f}|Y,J ꘞnfed "0 ,ZJ ؂u,o /p7h 2.ㄪg̓Eg 1vx".'j`f2 /̫T5r0TE y=K>ْ{t5ӖPpeYs7 2pL<1uےM?TV$ibԔdWQsC㨦N<\I Qh:knۘ$A?<08GsY{{\ElHo߄] k !HMq.QT>BNu*Jҳؙ EQBfW iTÅ߇\es"!,~:l/ʔ>cA{:*7vj z>F"e^SMfN.APB@PQ}2d/5'|?TԎlS,9̃n|GO%'IJK3V\mDll(Jt*2;Ieϊ̙֦pu7-!=K.N!m:jy%^xE:_%ai*݃v$\Il9fZa}\!<{w+JioΨSsμx-[coe?iT@¨5D/g.Bv64 \!sh'0X$⠮(L P!O0MPؽqoX57O+;gRk1K>P0ur%M!ӳie &#|ZCЩF3h? 0Թ!⒃<;d3/A(r FCvL6QSuHf6~@,(Q" ^?@Ym h\7X:(g}:(*@mȁAnַ}:7d'L:(HSm5ZId% [p Byvpe#ܟ=09ij\`|-/c=o,_QkDKԆBfc2yǝOխd;Chxwm2Hɱ`T%l A+C(@B@+TdþUNNc 6KV-dׇS?:lt?_ip:f@uBG7Y Wnz.ރjZ~sfJs,uzL$aO5$FH;(bF? ǰV?r5;& ϱ%XITh KZIwm9/Qr{1sYV62ϕb&o.g=uFcXu╀kJJp{Ps(D^e`8xR(]e?%h^S&8N?ѼTRs @ )DY#]]k77Fۥ:CMCRo{ MGa8X673]\/IzdX|P1o'H~%th_&JI e MZ':Yr`Tf PE0l!byeӞ|Ff}d[d4XwLr՛Q(vS ߜLMGI=Ռ?`찤/X7%тo\1B_Sy͋x4NˆT|!"` O7VXb\̫2v;婒"̷@ ,.P[rPo7 , 0`!Fb:נ;CR.2ڳofmq#&?L/L@;oR0b />G ed:\g"&I15vbq"=+}WA>Ok\#>·G}eMgiȽd?S"zfARf0{t!|U$38iF&\u2\$i=)-Gήq1&->0Mm=@"Yћ~sƼ% p-o(Nx#hmV46K]7gН4 ƻx_Iy޹P5>ð }WOm4_@?meFE~ݬr]JH#5z$]頻~E!u%*2$`4>6glOh~?\?O9ߵşRK -\$}Y;D/VI23P`Mq&`~ZF"I9ݸL}yDőE妷+%۩ JLD93g(5g_»Q->X!+{G $h+xLu4ͥݑ*1ǓF sbӋ(Q0+=BP,:NQ61f쉸(.7S{fJkKX>J{$?Wr0(LSW? }OY既3=pmXiֽ|lml{H='w>LŖEA$>J<;lr0F,POB8Jâ(0}C,"? hF\( $w3^@k[F>4[X.8[2h>J\h_7J5E+wk,8aPO|6\}똘6)?UGJw(iNh@_"!@nX9gw@]OpÐbXacTCNWψvdnr n%)[$ƛ?D֛Ngij@`lo$x+F$#WjO2VN (tEzau5+EKDTdžC>hSroi ѴPX6}xӳƑDpI*l: j5f/䫾 2^-h6 5Y[47}2Ljf*7SǐX'[?Y?pA" /=v-.~0b`?^x7W޴OԚǸW8~S}E}n mH"f0- qwj?c:Y-w=)3_\ivRh[:/XbQ|"-$Yu8S$"Gnm,px⇒*hMߓy$ҫKp3#s"؞<0uA9%cAX*)Og[dP6}K 䇞FN5oHFx}[SCSmL :+Bה.Dfo s6~U5Z^OqF LTInZAy /W[)Ϩg).,%4`l KEG#G f J*-?oteLI%Cؙ'?@p.8Q2yuܛ=ۂ8"h{q45[lKɗv*(Fݿsf/hMjDGZS<470_No M9yߧ]ǪWz؇Z9QsW͘4|yF 0NmJoae$3W qV^% V΀N.WO˃!ڟhn"'wnՆ1'Ĥ?16 wT)+(:o"#+:O۞lCmε  d2ޚ/WmvSg̖$h{Rvcpʷ$Y=COi-ƅx.xF*Itg x RyJ-l)Yb(iHn_O]>%{3 4uajgGg&y}+಼T})qJm.^ǻΤ 8Fuxv/ls%GAR{0bNWu#Iny8٠?Rңгg3Ib ó ^w)ymE-5i ;p*__Y+:^|`y7| Ɖfmdc0k`XB1KFXRNY`AW&ĜM>:ڤ,-5]7P/R3igeНGLŶ_R6(k3\5ũL |ɫqe',O/~:?k&xم;nm#^9n:hVe q~ro#=~qS,+"KA!A"],B]wfHL OQz<c[|5hB-4tnsU"['Ad*UMz p  QKzttIi25 !mWDEQw0ɋyOC !u,%|Сu"iA# \gnZI'$'P< z(vqdM݇ MENĶh7&90y6jKoIf0G'a>Ș3y84`7`^#(N$.Dy^V+ǽJX@3 e(>gB8xtؒ9ѬuzфsO}r/PzvA-R `|Zl+\Uo2Bɻtz;vOO&T݈W"F4z?|&G(;j?y}q㸆΢[g_a7,:9E<8;{Ue!mr&SzT1 Mv(s0[P7NaU+f?\9%SyL,"V2u), [Ma= ߖ5Cf#lT"&'5 ~~<iNJ*M>5p{G SѓjL$Ābmk%v'cZ1%YYNA2ԣWl3dRjo™|G_uFV~)>wtIz^^|&ӧfݡ @k}b3&:{p48i!NUZ,J7I̢[M@d3kVKM+vA`ؓoZ9 r.~)bnFOGamd"ZLjB ةFzEA$ot"[ tƌD@{AFu=s4VR^𰳭ˆM!,*Op.mlq@XU./0j]Qݬl+;9dW׫m k6[(@ 1 C-i ˻%_8H'-k)k e韻Ĥ9?3B Tq-<0k-2([:p+5\\˵||$]'8{ pģ'?i =e0Kq,?/ ̚Q`F:{aHY,I7uh?@ձ`_ dI6,Z||ڵ@}ѱmP> /\߷=!!c$~zoAAu NrK83{m;.֍,VGdO:[Z@+>dᄘ˝<;QKL;N'4/EG'M0LV|lWBq`~G)Y jtw^=X ؝jFu+G|qή6w_k^?lg;M:!C sѲBwm'yT2yɂ݇o֒fFQ3;my{4ZLr>s|?MzgDAu7zaC(y~$}. 7Mpv*ŏ ){f"5>u6'[٨SԓT%2bZG+2^p^R 20^ǻASeU$rS:q _pa}ZT8rp2 tZƨ X\Tɸ/c|y_<&-#4@(ņ.jXf <DLP|Pw<ȇ(õ[1TS0E"f)Qͦځf@y ' < PU44f(2RhOE:g>?+dTdyxLAV%#ҿM{/?gyYڕbԝRpp=]2mΕN!zKz9Eb&!>9[`WgknLŒag6xB͡ ۑ**jT]B o5>koɜC#]X2 `Z }-L6yu-_ y jcXo [1,XOAOr!suGG4`X2|b:)Ý ϺX=hߠܒB$e=wT&ގY,z5ePm+hyRx9 Qy?Nڳ7.Z`oq]q0G"pZwqL^gfX$:p/F2IAk_7Z:a%D\1>qD C &{ }5U ;b 'S6~Ú.d~hFN2*y);M7a"+c P;2 4, *Qi&I,كR;Z!w7ԍm$~N\+=փ%EeD!X#N d%RlFv8y<K$̋n!?W=F]ozA^/~n<^ BO:W3t+PV5ݑ[zH#Wӂ9 U<dQr_(mOf|cG7sp(="E ՉCr¤zҸ<6 0q M_njcoO.*&{%u Q (Gq ɫRyt8K\bG>g@Ds7VNj#zOxs40ǺxV2 ]|瀊ʂׇ(ʏhcI3]o}J"o6X_/[e D {xQcUWX[o3 [*))^24V+Z>5Kij:99\8F#9vMW~֖c^.bWкj57- ;:+םvBj9/QY/y{M3?yCIA,to%y &^Ќ6gHM#Lxzb40ֽw ^vYZv. n+W}GD1q4҇H6/B c5̌8\!)r*`F+E\mUajl22gphN`9lM0~맵3ET%0B G-ݳ O>e0M:q_0WХXdLک1RX c,`T mZBЫB ~-`ہ}$䌽@Z< yl/=⶷6K喞7$WLLuR=81^ɋ1v.6+}0}ו.9i!g'm湨LS3Ax97tHq(Y@Qݔ,R'>ѫm7XؠT/N=[jsvH |ŴojE}I)";uRB b=]`FoHZ%o6Tبd?5Kr${%&EU!pgb;f,$ {Fohf yF0b^:7mGĆ @χz7TATUHǝ>@oq{qh[$l2dj?(Ό,j[?Ptqi੦h0#֨X-3czgN0,= LuF2t` Y-8yi oὤEL@lVʮAbs Sm櫊dg6-'k> 3:1xXŝHmq?E/ޏPQ~=hcW ^=׾z=[#71JZxR+nEVр7)5,L3|Td:/iy?&#>N.#ee̛c* Ƭ!s+ XNj*cdA}.q|_`')>b~8O,jrb"[}箍\c|oò_ PI 媚.Byof$.csqq&/zسF/R ohao}> #vuKJݯL ESL SU&WʗE샐5t':3cfL< !k`н"?PwrZmdCZHcw"P@3a2܁pl"&05ݰ0#NGi w%cBΊYjj`$eGWRwtꇣd1eS\{t\aVC?\XOS@hƶ,kyz J^`75eGUAZ5̓3o ]xy{/T.^#zӿ iŠPat߀b> A*IHH%Rr[~m ~$(rcuUa>@*:C0,"Elc%׆(lՐs>`k(˗_T ίV۟xׂfc Ʋ>~/Kz]|@ 5\d *xh"`*3nZW#}"O؛9a.rj=h9F4_h ,E2 #jJqӫR``pR޴{}|*NQ a".`˃֌oa|h9r2} "]o@Ѹ.4°hOБ6~YL)$_2B7&˩I?ōHT~C7p8Du&96ϒ?y+1%5] /]e7JJp^Z3o &ZR J[ɽpѷGxɇ͍>|l>ÿf&3uI "@"WoVFxaʺ}%b, 6x3GApے5emmy@T> ߆8ڰaxZN3+,gn=a>hD@bu7w(^P b\A}%q nP jr,6c:{4(@e]^(Jā?ޣIiht2XlNsfS@NaQk?hĒLl䣍 .8?)Bcm)|BfVi:BU $e'E,Mྑb%)sjUEJQ%թsg:fN˅#(,i:P{0 =ȉ*M p/o>9*l/!&pd!k!jؒFh:|'=a`wS7D$j|TEǣ=W]ΛAZGK^2֡(%4HR4c 0G`y)w|`BtU^z: ,?Tk#{vQN&4<-aiG@UU1gwebGae" d%mp`gmϸ CSQ*uKK&gǧɶB{!mٔԮdb]O^ϲ0W:iå⬁- "6ػ؃nhFaW8iL KX#nRRІhzSmU}K L9FڏQ2GPW_37Xt=7ggTfG%mԁ(ED; s(JRA$.e3ҀQg %woj0cѱwϏgX6h;J%!ާ&%?J/n "kg#Ԙfɘg?^XBxx ksҢZ˒7Ys 6c8a̹g? U)#BG(8M!xjp0ht>sW9C337& je+hβ3-'SO0U>=/=enX[5јX+,ͳ7p'çu^Q ܴFafEŒ_RυsVs'Ώ0)õ\x1DKpƦԁõfdzĩK}P;w=@dCĶX":e~p1];|$CT$d[{) jow_ O@Fz8An$_"KSZnZ u" frPK-GBC.m7YNjhqxܧO亨3擬,I[C࿮@^ֳn}5:qeY/PFj^!!x8QazmX[ny#Sj>zdHyrm|-A=$S@23Wh_axoy+T=\>#^i|̴~ݶt.N}|i))Fʄɕ#z?|Ԅ$/R˻WԪ4+x2cg(z., R: A "yÛ̲ۖx1! RūLqX*< $PiO,kf31?fUF?i;Y aip@T%[|L(q&Ӣw ] }7yDbu0j->Fj]f x"as`>ɮoZIAYlGmT6KA,ށ/T2'Ed/~M֕,ˑ%kRajqhB3KFn`udyq[AD}ccn=ly:?w!7gU T>d3B8c)1RO/pf2_~صe_3XG;9`:ĬB4,njǭYmJҴSXY]2RW Z(þ' lʆzuQGLcר:qI ByyPѰy%I@0V:E]d;ɠeay ucf^H]g>R;0o?oc+`,l'deI,5BU+YS: ]us !c3s[iôB\96kJYC"!1А~Y"|𛔒46'e;OfnsthHAݜF$;Z1~F)T?fہǢ'AT&=g t.lfBkL6}>kJN8t.!O؈RHůŰ֤: :V]U@ZF`1kil̡t#\Ko=Y.ymO;980E`;ChpԼmRḛUYt yHn 3ɆJO*h(XMBA&=SBL~7<=Ԩ+c.>3 *\fݫz?77a Re$sVIƴE{.ƵَI[3#m+S#Seܠ̶NuE4ce3!/Y!$BaSOg!͍0|85>@~-ahW kP0z=uKSWi{茚E΀Uj!]=l}e1.k6א,,ݛgůhb+c}\ApOÕps(j])6Pm$&A~.ǥq!- x0{90F nJI;O-RJ˛~T˟70n25DL!9TV(W^X ͱ^{>ف=zP4k1+wO'й[GʝH;<(3QsM"=+ȜKYj QAq:vc^ۜQ˳w 9ekL76FQ'B`%VގTaԳifĴ'{*b9K9al+HӴixcxʙLP#vy7e~IL]znvρ9/KjRP[lo^0PIcj@I 4S%*(3P[U H`$5tͿY\ی0{}+W~6tV/339O#'<^!Fc g5NFo|XF\qPMYTĒiZ-jg"WvA$6 i$S#vbt'D2efq[1F/3z3@,|7ȉ"e-OVA2ͨr/h̸{jǬN6D/ _Vr9P2; n'^/WL))=\8?B ?1Hg&-0]񷄇2ETXLO_4u]{3NgyyjqٙW $ig | \y١Z5x}Bu9͍z(: 4?l@%=TaR7x.otvɄ1 WTaZ2$/IcqƼ}Lq 9I|,؍gon uojⵌ,j`ۭ;b1n%4]ͳߘv*Ns(2FDVPѶQ\#LD^.s];ǸHbVr+ 3\ۓK r$%vŶ YZ