freerdp-proxy-2.4.0-150400.3.23.1 >  A eWp9|uy;*>!gw&w`?+ؗ;Ʒ҇xVt* W< 2"N6@ǀ?x|͎WTeU/Y҄N0e;He_İYN%7_K~ǖO GذAay+:hsipH a͑HI=77[[ϕ>i\ tOP{w:AdG:?4:-QqߵWózN?DS5E=jVnA/"6ab489f569d78b46b86686182bdd2ba673cefbfc48cc8ff50a48fd5c7180a938ca20c0bcc09906762bddbb237b0302122bf2960528פeWp9|'ȧQEh`N]H;fVdA%w*3ʟ!pkR0Wys1VΖ,!UHv|^!锇tw30M#L6E8H_!"z,.vo0kL!J"nFgeP҇`zdѫ(]K87<6ڋ_$U@:ASasO85Ʃ'L'U*r]7ch}\`NYh yu96_SC#vSs(cXNqD =&JG_ Z>p>g?gd $ W 5Va w       @Dl   (8292:2FdGdHdIdXdYd\e ]e^ebe(cedfSefXff[lf]ufpvftwg8xg<yg@zg\glgpgvgCfreerdp-proxy2.4.0150400.3.23.1Remote Desktop Security and Monitorig Proxy ServerThis package contains a proxy that allows to select specific features and channels allowed for all connections passing through. It allows monitoring of the running sessions.eWs390zl37SUSE Linux Enterprise 15SUSE LLC Apache-2.0https://www.suse.com/Productivity/Networking/Otherhttps://www.freerdp.com/linuxs390xeWb03c1843081b1a48d6b4d26a2668daebe7f939eb3762a1d682e385022c33ef3arootrootfreerdp-2.4.0-150400.3.23.1.src.rpmfreerdp-proxyfreerdp-proxy(s390-64)@@@@@@@    libc.so.6()(64bit)libc.so.6(GLIBC_2.2)(64bit)libc.so.6(GLIBC_2.4)(64bit)libfreerdp-client2.so.2()(64bit)libfreerdp-server2.so.2()(64bit)libfreerdp2.so.2()(64bit)libwinpr2.so.2()(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)3.0.4-14.6.0-14.0-15.2-14.14.3eV@c=@cEc\cN@bL@b@a^@a]aEaD@aD@aA@a@a`OL@`<@`7@_@_^@^@^^^I^@^@^T@^^t@]@\@[@[j@Zz@Z@Z`@ZkZWQZY@@YKYKY=0Y;@X~@XW local * #gh:FreeRDP/FreeRDP#6985: Support newer FFMPEG builds * #gh:FreeRDP/FreeRDP#6989: Use OpenSSL default certificate store settings * #gh:FreeRDP/FreeRDP#7073: Planar alignment fixes- Updated to release 2.3.2 Noteworthy changes: * Fixed autoreconnect printer backend loading * Fixed compilation on older mac os versions < 10.14 * Fixed mouse pointer move with smart-sizing * Added command line option to disable websocket gateway support * Fixed drive hotplugging issues with windows * Fixed smartcard issues on mac Fixed issues: * #gh:FreeRDP/FreeRDP#6900: Transparency issues with aFreeRDP * #gh:FreeRDP/FreeRDP#6848: Invalid format string in smartcard trace * #gh:FreeRDP/FreeRDP#6846: Fixed static builds * #gh:FreeRDP/FreeRDP#6888: Crash due to missing bounds checks * #gh:FreeRDP/FreeRDP#6882: Use default sound device on mac- Updated to release 2.3.1 Noteworthy changes: * This is a compatibility bugfix release readding some (deprecated) symbols/defines * Also add some more EXPERIMENTAL warnings to CMake flags as some were not clear enough. * Fixed a memory leak in xfreerdp (mouse pointer updates) * No longer activating some compile time debug options with - DWITH_DEBUG_ALL=ON which might leak sensitive information. * Added -DDEFINE_NO_DEPRECATED for developers to detect use of deprecated symbols- Updated to release 2.3.0 Noteworthy changes: * Websocket support for proxy connections * Progressive codec improvements. Reduces graphical glitches against windows and ogon servers * Fixed +glyph-cache, now working properly without disconnects * Huge file support in clipboard * XWayland support for xfreerdp (keyboard grabbing) * Improved wlfreerdp (wayland client) * Option to allow keyboard scancodes to be remapped manually * Improved mouse wheel behaviour when scrolling * Improved dynamic channel behaviour, more stable event detection * New connection state PubSub notification: Clients can now monitor current connection state Fixes: * gh#FreeRDP/FreeRDP/6626: Fixed parsing of FastGlyph order. gh#FreeRDP/FreeRDP/6624: Added support for xwayland keyboard grab gh#FreeRDP/FreeRDP/6492: Added clipboard CB_HUGE_FILE_SUPPORT_ENABLED flag gh#FreeRDP/FreeRDP/6428: Improve NLA error code logging. gh#FreeRDP/FreeRDP/6416: Http gateway message support gh#FreeRDP/FreeRDP/6753: List of pull requests to backport for stable-next - Added freerdp-rpmlintrc to supress a false positive as gethostbyname() is a windows-function call not a unix one.- Updated to release 2.2.0 (boo#1174321, gh#FreeRDP/FreeRDP#6381) * SECURITY: CVE-2020-15103 - Integer overflow due to missing input sanitation in rdpegfx channel * Sound & mic - filter GSM codec for microphone redirection (gh#FreeRDP/FreeRDP#6263) * windows client title length (gh#FreeRDP/FreeRDP#6335) * "Alternate Secondary Drawing Order UNKNOWN" (gh#FreeRDP/FreeRDP#6370) * remoteapp with dialog is disconnecting when it loses focus (gh#FreeRDP/FreeRDP#6298) * v2.1.2: Can't connect to Windows7 (gh#FreeRDP/FreeRDP#6299) * fix: memory leak in nsc * urbdrc: some fixes and improvements * build: use cmake to detect getlogin_r, improve asan checks/detection * server/proxy: - new: support for heartbeats - new: support for rail handshake ex flags - fix: possible race condition with redirects * Drop upstream fixed patch: freerdp-CVE-2020-15103.patch - Removed freerdp_Mask_CACHED_BRUSH_when_checking_brush_style.patch- Drop BuildRequires of libavcodec for Leap/SLE (bsc#1174200)- Added freerdp_Mask_CACHED_BRUSH_when_checking_brush_style.patch which fixed frequent crashes described in boo#1173605 and gh#FreeRDP/FreeRDP#6298- Updated to release 2.1.2 (boo#1173247) * CVE-2020-4033 Out of bound read in RLEDECOMPRESS * CVE-2020-4031 Use-After-Free in gdi_SelectObject * CVE-2020-4032 Integer casting vulnerability in `update_recv_secondary_order` * CVE-2020-4030 OOB read in `TrioParse` * CVE-2020-11099 OOB Read in license_read_new_or_upgrade_license_packet * CVE-2020-11098 Out-of-bound read in glyph_cache_put * CVE-2020-11097 OOB read in ntlm_av_pair_get * CVE-2020-11095 Global OOB read in update_recv_primary_order * CVE-2020-11096 Global OOB read in update_read_cache_bitmap_v3_order * Gateway RPC fixes for windows * Fixed resource fee race resulting in double free in USB redirection * Fixed wayland client crashes * Fixed X11 client mouse mapping issues (X11 mapping on/off) * Some proxy related improvements (capture module) * Code cleanup (use getlogin_r, ...) - Removed obsolete upstream patch freerdp-bug-6205.patch- Updated to release 2.1.1 (boo#1171441) * CVE-2020-13396: GHSL-2020-100 OOB Read in ntlm_read_ChallengeMessage * CVE-2020-13397: GHSL-2020-101 OOB Read in security_fips_decrypt due to uninitialized value * CVE-2020-13398: GHSL-2020-102 OOB Write in crypto_rsa_common * Enforce synchronous legacy RDP encryption count (#6156) * Fixed some leaks and crashes missed in 2.1.0 * Removed dynamic channel listener limits * Lots of resource cleanup fixes (clang sanitizers) * A couple of performance improvements * Various small annoyances eliminated (typos, prefilled username for windows client, ...) - Removed freerdp-bug-6175.patch and freerdp-bug-6207.patch because included in upstream- Added freerdp-bug-6205.patch to fix reading newline on certificate accept gh#FreeRDP/FreeRDP#6205 - Added freerdp-bug-6175.patch to fix Certificate Checking Recently Broke gh#FreeRDP/FreeRDP#6148 - Added freerdp-bug-6207.patch to fix Abort on first possible certificate validation error gh#FreeRDP/FreeRDP#6207- Updated to release 2.1.0 (boo#1171441) * Fixed CVEs: - CVE-2020-11039 - CVE-2020-11038 - CVE-2020-11043 - CVE-2020-11040 - CVE-2020-11041 - CVE-2020-11019 - CVE-2020-11017 - CVE-2020-11018 * Fixed leak and crashing issues: - gh#FreeRDP/FreeRDP#6129 - gh#FreeRDP/FreeRDP#6128 - gh#FreeRDP/FreeRDP#6127 - gh#FreeRDP/FreeRDP#6110 - gh#FreeRDP/FreeRDP#6081 - gh#FreeRDP/FreeRDP#6077 * Noteworthy features and improvements: - Fixed sound issues (gh#FreeRDP/FreeRDP#6043) - New expert command line options /tune and /tune-list to modify all client settings in a generic way. - Fixes for smartcard cache, this improves compatibility of smartcard devices with newer smartcard channel. - Shadow server can now be instructed to listen to multiple interfaces. - Improved server certificate support (gh#FreeRDP/FreeRDP#6052) - Various fixes for wayland client (fullscreen, mouse wheel, ...) - Fixed large mouse pointer support, now mouse pointers > 96x96 pixel are visible. - USB redirection command line improvements (filter options) - Various translation improvements for android and ios clients - Removed upstream patches fix-freerdp-2.0.0-usbdk-build.patch and fix-URBDRC_DEVICE_ADD_FLAG-definitions.patch- Updated and reviewed make command and added fix-freerdp-2.0.0-usbdk-build.patch to fix boo#1169679 and make USB working again - Fixed build for SLE_12 - Cleaned up spec file- Add fix-URBDRC_DEVICE_ADD_FLAG-definitions.patch in order to fix boo#1169748.- Added cairo support for scaling - Cleaned up spec- Removed patch freerdp-Fix-realloc-return-handling.patch - Added pkgconfig(libusb-1.0) for building - Added new package for freerdp-proxy - Cleaned up spec file - Updated to release 2.0.0 * Fixed CVEs: - CVE-2020-11521 - CVE-2020-11522 - CVE-2020-11523 - CVE-2020-11524 - CVE-2020-11525 - CVE-2020-11526 * Fixed security related issues: - gh#FreeRDP/FreeRDP#6005 - gh#FreeRDP/FreeRDP#6006 - gh#FreeRDP/FreeRDP#6007 - gh#FreeRDP/FreeRDP#6008 - gh#FreeRDP/FreeRDP#6009 - gh#FreeRDP/FreeRDP#6010 - gh#FreeRDP/FreeRDP#6011 - gh#FreeRDP/FreeRDP#6012 - gh#FreeRDP/FreeRDP#6013 * sha256 is now used instead of sha1 to fingerprint certificates. This will invalidate all hosts in FreeRDP known_hosts2 file and causes a prompt if a new connection is established after the update * First version of the RDP proxy was added (gh#FreeRDP/FreeRDP#5372) thanks to @kubistika * Smartcard received some refactoring. Missing functions were added and input validation was improved (gh#FreeRDP/FreeRDP#5884) * A new option /cert that unifies all certificate related options (gh#FreeRDP/FreeRDP#5880) The old options (cert-ignore, cert-deny, cert-name, cert-tofu) are still available but marked as deprecated * Support for Remote Assistance Protocol Version 2 [MS-RA] * The DirectFB client was removed because it was unmaintained * Unified initialization of OrderSupport * Fix for licensing against Windows Server 2003 * Font smoothing is now enabled per default * Smart scaling for Wayland using libcairo was added (gh#FreeRDP/FreeRDP#5215) * Unified update->BeginPaint and update->EndPaint * An image scaling API for software drawing was added * Rail was updated to the latest spec version 28.0 * Support for H.264 in the shadow server is now detected at runtime * Add mask= option for /gfx and /gfx-h264 (gh#FreeRDP/FreeRDP#5771) * A new option /timeout was added to adjust the TCP ACK timeout (gh#FreeRDP/FreeRDP#5987)- Disable LTO on aarch64 and %arm to fix build- Add freerdp-Fix-realloc-return-handling.patch: Fix realloc return handling that results in memory leaks (boo#1153163, boo#1153164, gh#FreeRDP/FreeRDP#5645, CVE-2019-17177, CVE-2019-17178)- Add Requires: lib%{name}%{major_version} = %{version}-%{release}: freerdp should depend on the same release of libfreerdp2 (boo#1129193)- upgrade to version 2.0.0-rc4 (FATE#326739) * Fix the following issues: - CVE-2018-8784, boo#1116708 - CVE-2018-8785, boo#1117967 - CVE-2018-8786, boo#1117966 - CVE-2018-8787, boo#1117964 - CVE-2018-8788, boo#1117963 - CVE-2018-8789, boo#1117965 - CVE-2018-1000852, boo#1120507 * Security and stability improvements, including boo#1103557 and boo#1112028 * Refactored ntlm_av_pairs API * gateway: multiple fixes and improvements * client/X11: support for rail (remote app) icons was added * the licensing code was re-worked: Per-device licenses are now saved on the client and used on re-connect: WARNING: this is a change in FreeRDP behavior regarding licensing WARNING: this is a change in FreeRDP behavior regarding licensing. If the old behavior is required, or no licenses should be saved use the new command line option +old-license (gh#/FreeRDP/FreeRDP#4979) * improve order handling - only orders that were enabled during capability exchange are accepted. WARNING and NOTE: some servers do improperly send orders that weren't negotiated, for such cases the new command line option /relax-order-checks was added to disable the strict order checking. If connecting to xrdp the options /relax-order-checks *and* +glyph-cache are required. (gh#/FreeRDP/FreeRDP#4926) * /smartcard has now support for substring filters (gh#/FreeRDP/FreeRDP#4840) for details see https://github.com/FreeRDP/FreeRDP/wiki/smartcard-logon * add new command line option /smartcard-logon to allow smartcard login (currently only with RDP security) * add support to set tls security level (for openssl >= 1.1.0) - default level is set to 1 - the new command line option /tls-seclevel:[LEVEL] allows to set a different level if required * new command line option: /window-position to allow positioning the window on startup * client/X11: set window title before mapping * rdpsnd/audin (mostly server side) add support for audio re-sampling using soxr or ffmpeg- upgrade to version 2.0.0-rc3 See: https://github.com/FreeRDP/FreeRDP/milestone/9?closed=1 * Improved and cleaned up the command line interface * Fixed automount issues * Fixed several audio and microphone related issues * Implemented AAC and MP3 codecs * Added Wave2 support * Addedd dynamic resolution with full screen toggle support * Improved redirection handling and certificate issues * Improved automatic reconnects * Improced connection error handling * Fixed invalid pointer, double-free, integer underflow, buffer overflows issues as well as other memory leaks * fixed X11 Right-Ctrl ungrab feature * winpr: Updates time zone data to April 2018 * added libressl compatibility- removed SLE11 condition - removed no_connection_to_windows_10_17101.patch - removed -DBUILTIN_CHANNELS=OFF switch - explicitly set -DCHANNEL_GEOMETRY=ON - Disable the new X264 and OPENH264 codecs because openSUSE does not provide them - upgrade to version 2.0.0-rc2 See: https://github.com/FreeRDP/FreeRDP/milestone/8 Noteworthy features and improvements: * IMPORTANT: add support CredSSP v6 - this fixes KB4088776 see #4449, #4488 * basic support for the "Video Optimized Remoting Virtual Channel Extension" (MS-RDPEVOR) was added * many smart card related fixes and cleanups #4312 * fix ccache support * add support for memory and thread sanitizer * support for dynamic resloution changes was added in xfreerdp #4313 * support for gateway access token (command line option /gat) was added * initial support for travis-ci.org was added * SSE optimization version of RGB to AVC444 frame split was added * build: -msse2/-msse3 are not enabled globally anymore Fixed github issues (excerpt): * #4227 Convert settings->Password to binary blob * #4231 freerdp-2.0.0_rc0: 5 tests failed out of 184 on ppc * #4276 Big endian fixes * #4291 xfreerdp “Segmentation fault” when connecting to freerdp-shadow-cli * #4293 [X11] shadow server memory corruption with /monitors:2 #4293 * #4296 drive redirection - raise an error if the directory can't be found * #4306 Cannot connect to shadow server with NLA auth: SEC_E_OUT_OF_SEQUENCE (boo#1085416, boo#1087240, boo#1104918, CVE-2018-0886) * #4457 Fix /size: /w: /h: with /monitors: (Fix custom sizes) * #4527 pre-connection blob (pcb) support in .rdp files * #4552 Fix Windows 10 cursors drawing as black * smartcard related: #3521, #3431, #3474, #3488, #775, #1424- Fix boo#1090677 activate pulse optional component- Added no_connection_to_windows_10_17101.patch to fix Windows-connection-problem after Windows march 2018 updates. This fix is related to boo#1085416- Do not use xorg-x11-devel, instead buildrequire individual x components. - Only attempt to ge rid of __DATE__ and __TIME__ if SOURCE_DATE_EPOCH is not set.- Users can connect only once wo windows sessions due to [#]gh/FreeRDP/FreeRDP/4348 Therefore WITH_GSSAPI has been disabled until that issue has been solved- Updated to 2.0.0-rc1 Noteworthy features and improvements: * support for FIPS mode was added (option +fipsmode) * initial client side kerberos support (run cmake with WITH_GSSAPI) * support for ssh-agent redirection (as rdp channel) * the man page(s) and /help were updated an improved * add support for ICU for unicode conversion (-DWITH_ICU=ON) * client add option to force password prompt before connection (/from-stdin[:force]) * extend /size to allow width or height percentages (#gh/FreeRDP/FreeRDP/4146) * add support for "password is pin" * clipboard is now enabled per default (use -clipboard to disable) Fixed github issues (excerpt): * #gh/FreeRDP/FreeRDP/4281: Added option to prefer IPv6 over IPv4 * #gh/FreeRDP/FreeRDP/3890: Point to OpenSSL doc for private CA * #gh/FreeRDP/FreeRDP/3378: support 31 static channels as described in the spec * #gh/FreeRDP/FreeRDP/4253: Rfx decode tile width. * #gh/FreeRDP/FreeRDP/3267: fix parsing of drivestoredirect * #gh/FreeRDP/FreeRDP/4257: Proper error checks for /kbd argument * #gh/FreeRDP/FreeRDP/4249: Corruption due to recursive parser * #gh/FreeRDP/FreeRDP/4111: 15bpp color handling for brush. * #gh/FreeRDP/FreeRDP/3509: Added Ctrl+Alt+Enter description * #gh/FreeRDP/FreeRDP/3211: Return freerdp error from main. * #gh/FreeRDP/FreeRDP/3513: add better description for drive redirection * #gh/FreeRDP/FreeRDP/4199: ConvertFindDataAToW string length * #gh/FreeRDP/FreeRDP/4135: client/x11: fix colors on big endian * #gh/FreeRDP/FreeRDP/4089: fix h264 context leak when DeleteSurface * #gh/FreeRDP/FreeRDP/4117: possible segfault * #gh/FreeRDP/FreeRDP/4091: fix a regression with remote program- Remove extraneous Obsoletes for packages that never existed in openSUSE:Factory or X11:RemoteDesktop. - Rename libuwac0-devel to uwac0-devel and libwinpr-devel to winpr-devel, as that seems to be their upstream name which packages are encouraged to stick to. - Remove duplicated pkgconfig requires (these are autodetected).- Fixed download location- Switched to official RC0 - Create wayland client package and libuwac0 package - Create separate libwinpr2 to be used in other packages - enabled gstreamer (currently disabled for tumbleweed) - enabled kerberos authentication - Update to official RC0 Fix the following issues identified by the CISCO TALOS project: * TALOS-2017-0336 CVE-2017-2834 boo#1050714 * TALOS-2017-0337 CVE-2017-2835 boo#1050712 * TALOS-2017-0338 CVE-2017-2836 boo#1050699 * TALOS-2017-0339 CVE-2017-2837 boo#1050704 * TALOS-2017-0340 CVE-2017-2838 boo#1050708 * TALOS-2017-0341 CVE-2017-2839 boo#1050711- Redo history by using changelog url - Update to version 2.0.0~git.1497095982.1dbd2d28d: See https://github.com/freerdp/freeRDP/compare/043243f...1dbd2d28d for full details. - Packaging : + Move to xz tarball in _service + Remove 3472.patch merged upstream - Update to version 2.0.0~git.1496304402.c42ccb508: See https://github.com/freerdp/freeRDP/compare/043243f...c42ccb508 for changes.- Forcefully enable PIE in CFLAGS as the automatism did not work.- Add 3472.patch until upstream #3472 isssue is fixed and PR merged this fix boo#1004108- Update to version 2.0.0~git.1477034991.043243f: * fixed kerberos authentication * shadow/rdpsnd: Fix race condition in rdpsnd channel server. The output buffer and format parameters are not protected. * wfreerdp: fix invalid VerifyCertificate callback * rdpsnd/server: decrease audio latency and make it configurable. * Add an environment variables section to the man * protocol violation: rdp_read_extended_info_packet * Added support for OpenH264 1.6 * freerdp: fix sending of TLS alert on NLA failure, add better handling of server-side NLA in shadow server * freerdp: add configurable NTLM SAM file option for server-side NLA * freerdp: make modifications to NLA server-side fixes according to PR comments * Fixed a windows 8.1 issue.- Kill off __DATE__ from built sources.- Update to GNOME 3.20.2 FATE#318572 - Add obs git integration. - Update to version 2.0.0git.1463131968.4e66df7: + Fixed memory leaks. + wfreerdp: fix name build without client interface + libfreerdp-codec: fix xcrush decompression, revert remote control fix + KB3153731: May 2016 DST update for Azerbaijan, Chile, Haiti and Morocco + libfreerdp-codec: make proper xcrush context reset fix- Update to version 2.0.0, git master branch id a7ca42e (FATE#319661), no upstream changelog available. * Warning: This is a git snapshot regarded as technical preview by upstream. * Warning: For xfreerdp, new /long-option commandline interfaces have replaced the old --long-option interfaces. Existing user scripts need to migrate to the new interfaces to avoid breakages. For more details, see: https://github.com/FreeRDP/FreeRDP/wiki/CommandLineInterface * Add Network Level Ahthentication support. * Add Windows Portable Runtime. For more details, see: http://www.freerdp.com/2012/05/24/winpr-windows-portable-runtime * Obsolete libfreerdp-1_0-plugins. - Drop FindALSA.cmake: deprecated - Drop freerdp_branch-1.0.x_fix-kpdivide-issue831.patch: fixed upstream, implemention now in include/freerdp/scancode.h. - Drop freerdp-CVE-2014-0250.patch (bnc#880317): fixed upstream 532c420. - Drop freerdp-CVE-2014-0791.patch (bnc#857491): fixed upstream f1d6afc. - Drop freerdp-fix-FindPCSC-macro.patch: fixed upstream 9148af3. - Drop freerdp-handle-null-device-name.patch (bnc#785437): deprecated, related implementation dropped. was: freerdp-fix-pulse-no-device-name.patchs390zl37 17002077532.4.0-150400.3.23.12.4.0-150400.3.23.1freerdp-proxy/usr/bin/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:31491/SUSE_SLE-15-SP4_Update/82d127c445f1a5c775463c4f5fc02142-freerdp.SUSE_SLE-15-SP4_Updatecpioxz5s390x-suse-linuxELF 64-bit MSB shared object, IBM S/390, version 1 (SYSV), dynamically linked, interpreter /lib/ld64.so.1, BuildID[sha1]=99a822c870efc84e344fe5329454affa44f01c34, for GNU/Linux 3.2.0, strippedRRRRRRRRI+3w>$wutf-83df25076059ae745a42ff332796aae54e4419be2b034a40fc09993246b16bd9a? 7zXZ !t/ṋk] crv9wij0"RX9>-doJPKPk88X+2;se_c2W-e_W`&,Li?tO7"zJO愡qQ8X 8C5ɓB1<i,: 3g"DԐ9\T_L J җ]kZ R+ѣ2/N{){!hCFQ?&TTTg_:qO84퀻 ˽]('*G:sHO./J(2G[WP\*&pâ::dd=f-KEǧA=nYhE'5I}?z d:$X#X٣l).I9 hB%-ګ-OD =aHMOt:'MR19dsl̖A0ɂ:v+Iњ+ -G^Tf^6hZ$GRx5gHR,[-{`~Wl5B8{6Se`lIVm~enQ0U7A %óN:9y&d1 Y|N7rϗ2nfV&-m$yhJ*=彈N T QaGY!w F,tcoI>ЬtkheE-.iKHS#;D$BPS.8lTࣟe]l'{͑>"I +*ּsh0^uԃI^S1R^6@i6]^q7 ֌5X S~{ MO"r'")SZh|IA{RsM4Hw:hZ,=}9蒛iP^L&hIGiӕ}vL.P7o[L`c?݆(ebVBHD1eq'=7+M#bS2wڼJvشyQlo-#>OUaaH?_ap{~jH@qKJPn[j.CZ',#o$ r᱀WW[zkLdr- "%ubۈ[V_NV|SE Dbȏ.1@cJm^ MoM3p/uZ0s'7"Mq ? kS, cLN^z>SƦE?dp~v3drCSE;Dx5T[430h7l`£Ձu1Z/Gv_Z%ɎlN̿o5D`Lb_F㘯x'NYjfZ; `$g81%ð =;e 5*v\YtYLnT)Ov=ʲi [0F='^ZlG( ;m~r3d@,8{3ϐ$vC s[7Uy,Y%I=e-0aK n[~gTdl ±(-2FYTb,<+ 5iz3+^FU}:wa{< F 7=D9UFP@]!T,l7Ԇƿu6r2$׏]<5ؿ_Y )aiYUCb"B0nHMC?:]λVQ>v1%aVJ&9֒'[b i _+C]s.Kq؀eZn*u~ΒzܺT3U͆W.__UL]ErYL[^?U s*yfjyzynHܲa|pÛ_(|T{o&IpHj6hʵuNnJN{;^-i -0?ôY.+xAeRD~˷I L^vv24*4~'qs>4+8T$R֚$7(Ii|r12 ,, TGc'aK0H+ i#؝-'RAQx?ߑi6>ֿẚG&%ƷaȹۏRuV%mn~V[HƄ2ivО͝+KظqpKŅ@Wf7[tcͻnPMw82j7ʕTŵWD nVB( Qp}KQ5PuURߴ{Q\-EfNc2`J-4F ) fɢCT^Յftz{{w?L_)z\- izzJ!:d-sNf md~mKr-BPB:DzóRG-'Z1:_+"wyJ6%z">6e0ytϩڲsjKI ԗiiАLW t^5@62RE kiecDhny_󹙜>oO&n]V0fu8EvC>H u%|yAO(6&|\: R0*IJ_ [U4tM|0KoNKSFÛ]}Ĉ0;|Qޏ) ?<X&-`+ևLp֞ɿ i(VY4n: vqY<,j5Cyu?UxX*h8˶%7=83dV#sJ k'b L!4SoCa(=] kI0f O^3}?|'lk"gTwdeJ-qfVIZ48 P`55=jgII='FQ!eJ9b$:DqB0/F{k&* H v^C&xh#F&x,%rlb}]ac5?;eV)< TE Ƽ"sL{?cU`|?"Ɲ~afۑ<X~(J=὜ Vkuk#DFAg( u' s(.̳H)O4I(SE CMh>[q/7i\[j\4$Fw3v&U\'@tT.ǙҘd1rϡ(%K,'0j r\!L黳 ?}$6X<od+|-dsjp^L !\kpS06@K$5zӾ׾5U}~B'6,*EzKNIf}PX*dl[HZ<8֢3 ߄4;fD[:DǢ/p CACKӐaʷt.(ʦ~?*Tf['qAdA,]eֱs*IApzcHQ7 #`FɚUY,ĩ=eHkϖ hKJvS/5[[&㧓|b*wLWUx s_w! ׯ"Ro,.k22hp<N/i+Ju3c6^dvXVj_xR3Y/7/GV wXC=n£Rj 6|PWbPd)1Yҕ?QST*=. =vѾ:01?jLw|)gT캆9?ȿW.9.qE.=NR,trq}u| KTpr:;`3qrGΕɞ n]` ,hY|uOgQف ^Cm : r&j|_8v ᨁJ4ݲ_0 ne%j0/OcGguU C삪Vن|8Pϟf@0-|ݵl^R)o%y~ `gVvX9 1^>tbC[ xN'PG+O>]o4P!Zqƹ|+M>]>deJ70-`cY޲5NsĬqG.ٺA/ s@)}y_yc+jC E:ϓx}dJg?FUr[9s!nޥ+\E87łr9^WJ@iz\z罦N=sΦ\C! ^BEo}ēN/8JIaThj* `rf?K)>#eѭH_Q` -״aGw^pF2P&Rg$(3$j燑h?!j4)|#X]:BҡL3aFSLTV\_Q`5=y/Qt[q,[y+CA!OO|csoWhw񅼏H~bnf?(ھD<3Ԣ}ObnހG%o&>^c刕m;smW}>t5x#6D&򉷋"uxj+yWQ\rx y@j"AU1/S@ "T'3;a6>y]6(A?uxc{[FCJPg.Rp9PcBnuGh:΄ Ez`W$s;q<{oپsɸ!<" (a\ވumb~0f tJwa(ܭu5*~V<_pA콆v2[G̎z"C -ay7֬V(pY m݀Ť{J%qaD'jY#U ^'[B?h*915˹tuȴ<]JH<)<">҇rǵM.5#T%$r Ģo Hm&_šɽmE L +xn kî)'jo ;$EnpAr\s'OKB' "@nB DEmQ${Ⱖ{gh~ZfG,:I:^PÖPm03]eenx_"2(_RCh{b +I"CtX5G3`+aH , aއog+@IYE-ӬyT=fQ?)v(zt_e֭yv@e^"PGi'.2!>VfC~1O|@xu,I*>\qh{/ Pr}ѮU-hd1tI t3NF#v<2ܽXLb >05$#W@_eӻ5| %+V8FH#XeNGcqO:|&4ۑj9*ǧf?%5c.@pnI`] pvϛ`hY[֝'{Q)a?M "YrY.?۳W76flѮ*C7(H ʟLȆ>iqѳeR﬛hEjp>G3/z:_4r9JzQG}#Q\%sRݜmDbQ}q՗Y@h^7kak0gTSi1vU't|*.w2{k)lEu<6 V Lڄ,#Lhp@,- W5 h."ֲA<'u;P8f&Ah6br94݃{v$^,(]z44N ȉCn! S]FnH("Rb& !Ra+ML=G0tQCl,3/j#b¹>"? qzviHh=AJ{jmvj'fq 'P@A6 AጨAڇo/^> XI?\2aC>|i>p0<\ytalF 3PKUH109vAد,+3P3PIwdlܼESjuI(Z 4\cYňφB^ xl@g,G 2Vuy.=n(~wWGS2.Ņkq&iUOrC'p:+G) MhL- u5~wݱЭ?zAqŌٷi)R$jj@T֑ƖK -"¹p0L~W6[49-+gΰIThՕ%fejK]ZA1!:@:N=S $\ ymNx/5*sSkVOzkP wegZW1.- Ʈ 6P;fo6:1<""1ĪL@+lN>Z!ca'#w+Rr_lG&m]Ak 7 nÒmSFPٵ@i m<8CȒ3{`chpvO+c\ZG/%(WDqȘUGd/V!L֢ZI$-žƊ&OPeX QOE#5x`̐/>j Bh 4NqŷFHBSPE5 9^:%=f߲}br^QH>BtO~Q#WLk^t}' *Y~ӫ5͖$l9ΆC`$,;ceh~vt@{Ӳnޮ4Xo!ll$۬&c뱗;R@$NvMIIZܺݵf۪%f۞P9%+==|qN} 2Ai57#aC'@ָ]E Xcz v^pȕixH>:Q%%ގdZeJ=Rtj eiD=f\&rjs9{cOdn6H[{{zR]!Ż 4,S_CP|KKQg6>K:HM}Q1)O:YC`b\KH$M'RIx NQ `h-,s_ ⲟSvkU(H vbv 7/`V@դ pER/%jɠһIşQ!#ѕJ&h2G;_& #L8u*MGF^H#c <ޯJ9Ek{WF"WL_m>fU:g$fm6_Dhcd9iT^֒=wϡ p9^͘j6Ϗo\A~\T)?9P4/(Qk'K Gqh;MiltU7A-J/ =J<Gi 41_[DA0ѡ >&)GI2`z(x#LU"~sh]HRvz00`g粓0iz3Upy0 ' #43OU%w AL\nO{Ƽ%DFVr[HbDdz;w^a\Q|m>W_@I}Z{R#3yaPZƳI80\_=PF`^4ǩ- >9#{dPW\^,nZ|,h6#y2d h3ڈRnhnDL~gxc΢p!=Nvr*# GȘqFt:Xfhֳa:Տ.e2$c_HvtIrC8Orl-, P[TI髺\DYR58Xa8{$qf«fɇkl, "׿֔U0Bb2npʽt!%Qn/rR)N\$ráƵO7}oV Ro+$|p)N[)=-nY`QѢl.:\.<+lGbSo4n$uo<|W 39z|X6PtM1=_9HonLg`bd59lMDJ1} X\'^ڍ4 }f/)Ux LQO;6@REKg BkdG/ #Ʒkj;(sO(#8b"AU7M\w- T%U $-%L7oሪ7naWMi8WKgx7d =ksl!{u1(SevfEaYy: [8NV'JjPuez.x ,Ƞ?Y yl^^letES\rƌ)|{X4`#'SuCgss}o_}[SAq*/ h-USvBc]Mt^9$C;^h>|Ͳ%?\S&+>\|9kož|тBhÙ@nq;}uȟ"Oz4- H[ ^4L.X+9thI'M v6Xg<{Y+&FɣljfXQc%BR s̩r^@Un`DRMo`O*7+O!=;RPd:\ ?(~D|66m5oOrw2yzn"h_!^mM6]C">6u7 H+9xA*ѹ>P3ɭTtBE"?6fOӇݒY0QKSz&]jf]pڹ5F<ړ倭{v,brtP0~Bjtee6@p (6|K)"@6$?R) 䣪6 v;b2~}fo9ts heFam5ϛ=Lb16lgYLRnU~&qhVlX9C7Jf`"k;rʜL|[@ Cߥʚ`^os8^^MNIFoJ']<:NMoq;5Y9A2aOѤ[)A0' E[sٙטl Tb9{UbkBZY iu:ʚWa{Uf[tAӫO\(SZ=lnc֫^_R `aɊ[D(zkU-QpFYku97;z&yU^JV -ְah^I+/9Zr8 UZ BmУ$?̹UҝFj顱l1D1* أ;# ^sHTB%]Sba1wI *it:KFX/뇳;|5IfJy[F3lcL {R+{S:*gTu tU2TK*_c0 CVL&uP{#+݀lҵ^^mԸErq!o}f&h!1UE5sz32!(;(ܥ:zYڧ7<ԓ"[9b@3J$==1X|&zTְKig>ƖDxW1]CfNck#$\YR©x!ӥ?2 $XAS>ZA:7\WiFx¨Uxͱ^Jtqa_Bj6ʝD~v"SrR;Ÿt̖Ty)Vd%/H6H3*IDZ2gn֐ ]x[,r"BBwb*7:[HH?늯Oca"D?Ŝ+U@ jiYH#&溇Syᬈ ,8d-z#I ~hOK\ǶA.mla{>ܴWH;'IRrzvAZ3hM_4 ѲڭyEkmYUh 34]٠,´`->C/P \cQ8|S=aXJAD3%ppҧy4 UZFzzgƇm";f{;  }]6]5 5`&jV< lF QH{[Zk>{bۚJ@m1*}q AȘQnW]I -xL#¿r%‹-ꂅmwxkGGu Gq 4
$ޑ+M1b ~U[J .-/b=*&:ZԁZ# EM4SDߐ5U{Z8[K9]Ue Ax[ /#&&% p)!Ļ$ȼ pNcHQ<52 qp2d\V ]J߭zB_9O,}N3w 89kJ]~i\!;<LL,k#Vqfn:`"෇ j@-PjZx)F0[贊 k}///[{1:3o X(+G(QScwmZ&wS,{+ ;)0~Ү<%! p5";=vlϵcv?}T|‹U稡8e}3Lea|䤌?H >E1(=kc܃W!y*=9R}H* ) 2ꞓq `or"ԬdLY =v( _άd()| }qd{Lۇj/XqqgÞya*;n??'z`t_ASh[{w#L]).a481)z^bxh&?UOo)X8l19?Ff/'g ¿~F{t|rotEBzuMPt>n34V&@^h$7;37|hgJOd(A:Qm}f+6Gm@ g[BuHa zYxT(VlGH )5*4e懽zѸ-;זӼ1?pԻպ8I ';4eq=X:% .v&0&㿖jsWg5[lDn1!#0(hyg'sDocȂ Z*Jȅ3x;yqe|kdEq9! kJ&(UlBh F]T# ߕNr &ώx!~+*Fk-W."&ʻE'r"E3u; rnw߃c:ED`e T# mnzJX>2ϖ/ql؍lJO]b5)AaK)Hë'xMP;+QH#!֥uߨ?6cգ(2*3a@v}b2ȖOѹOi*eo"yjB 8;GMÏhvwXP&6̎{:E9[ˏ3?I{ lD DoE[qUIn<ܒshM,IQؒGYMUvR {Gu'4} )h[=: {~У4LfnyRg-3j>[aȓ`X8Jh-Ǩ`>{<0G5[0C  lNR qU~'^m' 㩵$ִ`1kqt$?lT&>o5,j^QWٳFAXHk}S+3W˹H{yAe<)vD=ON.UDkZju8q*y9Οňv]ڻUP3Mj/PJ Z4Q v7c8E?T8 n>(r_k7{%HATA6aN^ =CeEkˢ4Xp9%E:BVb&u{,=}p/T:ԛ18(`Uj@tn_}g=DJf֛5bxt|eQvfu%nFR+ΩV)GZg=?OQ mHWN]Qe_m,=?](k/qz,;#U_M;)?$X+dDlr9"ۓxC;2#7  =[:u#g>Sn ;n l Vb,H,fDN8m`[&&Ȫ}hֱ ܹ{gSpһ7_yWL[0+gh4-GA F>MYjwO~C!F/ؼϮ͆>Zi Ln >:c$؆\ *)ҹF ^;zrsva P BD7q8T^ڬ#]=" wLL Ǭ 1^TY*FBND)O|UaS/wL/>5gpg|Y]*WU("8}>7ARR<|[y(zbw"ˋvRCuJTň,>r蚔뻘|7ASoaF`@~Yx(܃l! Jr?RfR~tJZ!S s,/}`FwܛBNUZ.zzf^bCY;|?,( vkga9TÆgP>q)P-XCqԈfK[vW{[(Q07C[ '4}FOuAWRMHtx1RtVժ^b\UT~m uUK0N]dkR.u{'ˏ1\DlB{f=;rJaFe@%hbKo<C by'A? DWi3 d^/o]~Jy9eH&gd ,N;5jhqea?zQ1 Iӏ.U\x]~Eh+tIN,LY /2C'ϊTRJMrGlS3 AEkL?:&jS^$lL.Q py JP! JƱ2.Uߩ6 *ڦ&[JlH|B^+<#`p&gH'IN&ƨq'ɢr9kyASW[1 93w9p)]@c&!ћe')s %K Jnf-vpٓ1ixz͵D~;I(fZ:17E$Eި#-Y(~P.&}[!Kܜ W{c3;q#u[9p_#|X#pA٘4lQ]ŕ5X8|';%, 9&lm6~trlK\̣i>C ۨPg[_M iw1;ŖiX}m>6o;:R|u{*=TնU݁aWAhݕt&R<9^,xjޯ.Y V F!Eu hF1Z݋B`uFʹ+ϴOZ CpU>؝^q8p-7qa?+$F#eFәhIRQ hpI>) W3-Ƙsf />n`WHpPC2ӮuTKi:mEWM=;AğxG⇍i8$Stk9h-KdZY_ătcgL?Gk 7NV2gK.u?%WI"M)a9mtp@vToEmaa {f Rޥ[{ʩQEEI%7 [:6S?iyycyT{}`yh`3)+{یŏqbydjGnr3}Z } "^/'ϙR-k\@Dž %A{niR81[9A/]rN},EͲ't7We섫1&RD%g#RtSPS-ɈQ~5JĹ/!}& &?'g/Iv&0/ !OW0bt %eFe9|!_HxU 8"s$iU%f53^ _!"wVI;:\w`IaezψG =*fbޙx&1oX(4%x2be&c> >Au T8~_jf]u80Zd8^Io)sp+¾Uu( D^"  ~bCXBⱑ78 Fϋ2{8҈ 3, FP*EZx7]gn1`Jbaif濕IN6 dbz84f (?ڬ@s'g$穤ЙCGQl$R#}(2,jAQ壊;s򫂺o[ZSmCV/oƱf)E CZCRM&[)T2ynq"y n#{+{PL PwkA/)` [{Ճ !BzOnz#pjtv]<UgMHwsT+>31JayJGڿ ^>t x;3mEDCzx^We*ޮerY;.E\$B1uM@NV іlrMNkBݫycёa JX6Ѵgc pUXg~qT[I .~ͪD5{ۄՎHr5/ZW#$^Ƙ5ȂPscYbj!/06f{PO@oR-xC'%+ړP6ZXRB[OA4VM[=?~WsLUCUִLt?E9qʨ2V58hY thltoo#3bdR x̓HROv[9K 3cd8q0'<0pepb>.SQVW莚u6ܱ\mmZ40񙣢4 f\e(ĠC({̕TpD'a':/:Xk>JhEK0*\3Sh]Tv[KݷپZc\ ~1*@pt"ۢc߲E9};B9IlGE^Ԁ6%O>c!x\<6dn#Db{7?A{G yPp%>"4V2@=WuZdb''4hвv.#W x977N~PJG1J̻ ò$>]zn$Tn턉D&jgjјwe#uPNyռ}w(3Nr4\FZY}nZ*_8+8&OUJGb Ϯ/m/N6'PZIdG:EZ  IlV]a9zn_!)OW"U1j%SUTC<2o,/y64@ ؙ(6IF>׬j+ě]k_衏2I~ #dG&ʒ9po2^zqdQ\)E]cl>+qGڲ=kjoROi ȈkJN`)oZ4лGpP4,]tםbaHDO-K$%Rχ(!̢g~`h6ȿl1 oFg@&02Ro*tPD.>FsR=ךLPq$[2<@=<94Ay,99dd'C"n u6T-_!4YUjIѭڨ{XHGIJKxrR'{\,BX'< <9] @n"&̱o ]|nBeb.'d|A}~C);`lʚ[Iuo<od2vթs(n3tKçlG1.ֻTP3ʝB9(bi{v-.Oy~ T,]\l.(ya䏔2J./`xH կ {p_la*>ak @FԵ%ah7gn.MRDMg?NDn!)AҾSό$vY<~,cic(I <5{c m*24c,C{Ɔ?mKn_Y D c_\:F\үityH !b1Jce[wjOcWnfBsJ+;HC.`cհ œ>I,oFp m߰[TCucNpaQd7_V+>; . ̝KIpnyu{H'z[9M{6~USBx{ 70p=dU0me Kl5nnPgj -IJ*KUbhCQLcL~֣b&*M1|=f"HS$Hv| J@U࣋pɾkjF潶PK*b7< }rz4sBd@KDj}-e57.Y*yqߜi+ԭgjaһ ԊUM|vo6 V陃P5ő`IE`k)5D c1cm/]ΑBvv矲s dہ#[,I2a>ȪtG3C/Ev{|jldn)"+tT+N@` ;MGVgg.:l) #Iei~@_u}BGAa`H@iH"S ʟka?>JQb;;M^yh2 1)gҵw?{Ykʊ,#`ZYCR9tmFfDw&\pG5%':[!<2"̂btumfV;aj^.woA1 UL`#젇n&iH6ytֈ>ˬ<:ŕH)K@Y$1G?[ℽ"ްV|T6T$$ C5Vf SퟙtM sAJ#ɌI-Df7 ݪ蛸In 2@)ȫ0&ς猑&g .գvI29k_5Qlj\7ټB65ᡞ'% YZ