freerdp-proxy-2.4.0-150400.3.3.1 >  A bƔGp9|-(/8_r4xBSmZ0ӟGъ?0 I y5ۅWvJ>*8ek{ QPL{?h ќ^q/XҾ D5 ܑvevt,dľoQX-X]2:_x;ٔ|T/ \ٔ>$3-,LlR&:jpܹ.g~ AnI VnmHARlv~>] rF}.0afdcd56c8deb61f9175376ecfeaa8b7c5f5e0a62114ce5c0820a28d92d7831c5d83e08e66ac76d43c4d3ddb65285e9c427610b3eȉbƔGp9|&Š~_KO"@`F?]_9i]B0CbC;XcStzˑE|ٹ.8fTdJ(ɪ/]v~V<r֖mRu פYPu#*ɡ|n$$]!`|Q6|u%mg_ㅾ$տIH  :gXT?Hnd|B]lu-]zcPP믢A5>>p>_?_d # V1R] s      <@h   (8,9,:l,F\G\H]I]X]Y]\]8]]<^]Jb]Tc]d^e^f^l^u^v^w_dx_hy_lz_____Cfreerdp-proxy2.4.0150400.3.3.1Remote Desktop Security and Monitorig Proxy ServerThis package contains a proxy that allows to select specific features and channels allowed for all connections passing through. It allows monitoring of the running sessions.bƔs390zp31SUSE Linux Enterprise 15SUSE LLC Apache-2.0https://www.suse.com/Productivity/Networking/Otherhttps://www.freerdp.com/linuxs390xbƔabacd1cc0a683b5b9c4e3af77085ea2114666aa8dfa7b42f83ba5b67295518cdrootrootfreerdp-2.4.0-150400.3.3.1.src.rpmfreerdp-proxyfreerdp-proxy(s390-64)@@@@@@@@    libc.so.6()(64bit)libc.so.6(GLIBC_2.2)(64bit)libc.so.6(GLIBC_2.4)(64bit)libfreerdp-client2.so.2()(64bit)libfreerdp-server2.so.2()(64bit)libfreerdp2.so.2()(64bit)librdpgfx-client.so()(64bit)libwinpr2.so.2()(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)3.0.4-14.6.0-14.0-15.2-14.14.3b@a^@a]aEaD@aD@aA@a@a`OL@`<@`7@_@_^@^@^^^I^@^@^T@^^t@]@\@[@[j@Zz@Z@Z`@ZkZWQZY@@YKYKY=0Y;@X~@XW local * #gh:FreeRDP/FreeRDP#6985: Support newer FFMPEG builds * #gh:FreeRDP/FreeRDP#6989: Use OpenSSL default certificate store settings * #gh:FreeRDP/FreeRDP#7073: Planar alignment fixes- Updated to release 2.3.2 Noteworthy changes: * Fixed autoreconnect printer backend loading * Fixed compilation on older mac os versions < 10.14 * Fixed mouse pointer move with smart-sizing * Added command line option to disable websocket gateway support * Fixed drive hotplugging issues with windows * Fixed smartcard issues on mac Fixed issues: * #gh:FreeRDP/FreeRDP#6900: Transparency issues with aFreeRDP * #gh:FreeRDP/FreeRDP#6848: Invalid format string in smartcard trace * #gh:FreeRDP/FreeRDP#6846: Fixed static builds * #gh:FreeRDP/FreeRDP#6888: Crash due to missing bounds checks * #gh:FreeRDP/FreeRDP#6882: Use default sound device on mac- Updated to release 2.3.1 Noteworthy changes: * This is a compatibility bugfix release readding some (deprecated) symbols/defines * Also add some more EXPERIMENTAL warnings to CMake flags as some were not clear enough. * Fixed a memory leak in xfreerdp (mouse pointer updates) * No longer activating some compile time debug options with - DWITH_DEBUG_ALL=ON which might leak sensitive information. * Added -DDEFINE_NO_DEPRECATED for developers to detect use of deprecated symbols- Updated to release 2.3.0 Noteworthy changes: * Websocket support for proxy connections * Progressive codec improvements. Reduces graphical glitches against windows and ogon servers * Fixed +glyph-cache, now working properly without disconnects * Huge file support in clipboard * XWayland support for xfreerdp (keyboard grabbing) * Improved wlfreerdp (wayland client) * Option to allow keyboard scancodes to be remapped manually * Improved mouse wheel behaviour when scrolling * Improved dynamic channel behaviour, more stable event detection * New connection state PubSub notification: Clients can now monitor current connection state Fixes: * gh#FreeRDP/FreeRDP/6626: Fixed parsing of FastGlyph order. gh#FreeRDP/FreeRDP/6624: Added support for xwayland keyboard grab gh#FreeRDP/FreeRDP/6492: Added clipboard CB_HUGE_FILE_SUPPORT_ENABLED flag gh#FreeRDP/FreeRDP/6428: Improve NLA error code logging. gh#FreeRDP/FreeRDP/6416: Http gateway message support gh#FreeRDP/FreeRDP/6753: List of pull requests to backport for stable-next - Added freerdp-rpmlintrc to supress a false positive as gethostbyname() is a windows-function call not a unix one.- Updated to release 2.2.0 (boo#1174321, gh#FreeRDP/FreeRDP#6381) * SECURITY: CVE-2020-15103 - Integer overflow due to missing input sanitation in rdpegfx channel * Sound & mic - filter GSM codec for microphone redirection (gh#FreeRDP/FreeRDP#6263) * windows client title length (gh#FreeRDP/FreeRDP#6335) * "Alternate Secondary Drawing Order UNKNOWN" (gh#FreeRDP/FreeRDP#6370) * remoteapp with dialog is disconnecting when it loses focus (gh#FreeRDP/FreeRDP#6298) * v2.1.2: Can't connect to Windows7 (gh#FreeRDP/FreeRDP#6299) * fix: memory leak in nsc * urbdrc: some fixes and improvements * build: use cmake to detect getlogin_r, improve asan checks/detection * server/proxy: - new: support for heartbeats - new: support for rail handshake ex flags - fix: possible race condition with redirects * Drop upstream fixed patch: freerdp-CVE-2020-15103.patch - Removed freerdp_Mask_CACHED_BRUSH_when_checking_brush_style.patch- Drop BuildRequires of libavcodec for Leap/SLE (bsc#1174200)- Added freerdp_Mask_CACHED_BRUSH_when_checking_brush_style.patch which fixed frequent crashes described in boo#1173605 and gh#FreeRDP/FreeRDP#6298- Updated to release 2.1.2 (boo#1173247) * CVE-2020-4033 Out of bound read in RLEDECOMPRESS * CVE-2020-4031 Use-After-Free in gdi_SelectObject * CVE-2020-4032 Integer casting vulnerability in `update_recv_secondary_order` * CVE-2020-4030 OOB read in `TrioParse` * CVE-2020-11099 OOB Read in license_read_new_or_upgrade_license_packet * CVE-2020-11098 Out-of-bound read in glyph_cache_put * CVE-2020-11097 OOB read in ntlm_av_pair_get * CVE-2020-11095 Global OOB read in update_recv_primary_order * CVE-2020-11096 Global OOB read in update_read_cache_bitmap_v3_order * Gateway RPC fixes for windows * Fixed resource fee race resulting in double free in USB redirection * Fixed wayland client crashes * Fixed X11 client mouse mapping issues (X11 mapping on/off) * Some proxy related improvements (capture module) * Code cleanup (use getlogin_r, ...) - Removed obsolete upstream patch freerdp-bug-6205.patch- Updated to release 2.1.1 (boo#1171441) * CVE-2020-13396: GHSL-2020-100 OOB Read in ntlm_read_ChallengeMessage * CVE-2020-13397: GHSL-2020-101 OOB Read in security_fips_decrypt due to uninitialized value * CVE-2020-13398: GHSL-2020-102 OOB Write in crypto_rsa_common * Enforce synchronous legacy RDP encryption count (#6156) * Fixed some leaks and crashes missed in 2.1.0 * Removed dynamic channel listener limits * Lots of resource cleanup fixes (clang sanitizers) * A couple of performance improvements * Various small annoyances eliminated (typos, prefilled username for windows client, ...) - Removed freerdp-bug-6175.patch and freerdp-bug-6207.patch because included in upstream- Added freerdp-bug-6205.patch to fix reading newline on certificate accept gh#FreeRDP/FreeRDP#6205 - Added freerdp-bug-6175.patch to fix Certificate Checking Recently Broke gh#FreeRDP/FreeRDP#6148 - Added freerdp-bug-6207.patch to fix Abort on first possible certificate validation error gh#FreeRDP/FreeRDP#6207- Updated to release 2.1.0 (boo#1171441) * Fixed CVEs: - CVE-2020-11039 - CVE-2020-11038 - CVE-2020-11043 - CVE-2020-11040 - CVE-2020-11041 - CVE-2020-11019 - CVE-2020-11017 - CVE-2020-11018 * Fixed leak and crashing issues: - gh#FreeRDP/FreeRDP#6129 - gh#FreeRDP/FreeRDP#6128 - gh#FreeRDP/FreeRDP#6127 - gh#FreeRDP/FreeRDP#6110 - gh#FreeRDP/FreeRDP#6081 - gh#FreeRDP/FreeRDP#6077 * Noteworthy features and improvements: - Fixed sound issues (gh#FreeRDP/FreeRDP#6043) - New expert command line options /tune and /tune-list to modify all client settings in a generic way. - Fixes for smartcard cache, this improves compatibility of smartcard devices with newer smartcard channel. - Shadow server can now be instructed to listen to multiple interfaces. - Improved server certificate support (gh#FreeRDP/FreeRDP#6052) - Various fixes for wayland client (fullscreen, mouse wheel, ...) - Fixed large mouse pointer support, now mouse pointers > 96x96 pixel are visible. - USB redirection command line improvements (filter options) - Various translation improvements for android and ios clients - Removed upstream patches fix-freerdp-2.0.0-usbdk-build.patch and fix-URBDRC_DEVICE_ADD_FLAG-definitions.patch- Updated and reviewed make command and added fix-freerdp-2.0.0-usbdk-build.patch to fix boo#1169679 and make USB working again - Fixed build for SLE_12 - Cleaned up spec file- Add fix-URBDRC_DEVICE_ADD_FLAG-definitions.patch in order to fix boo#1169748.- Added cairo support for scaling - Cleaned up spec- Removed patch freerdp-Fix-realloc-return-handling.patch - Added pkgconfig(libusb-1.0) for building - Added new package for freerdp-proxy - Cleaned up spec file - Updated to release 2.0.0 * Fixed CVEs: - CVE-2020-11521 - CVE-2020-11522 - CVE-2020-11523 - CVE-2020-11524 - CVE-2020-11525 - CVE-2020-11526 * Fixed security related issues: - gh#FreeRDP/FreeRDP#6005 - gh#FreeRDP/FreeRDP#6006 - gh#FreeRDP/FreeRDP#6007 - gh#FreeRDP/FreeRDP#6008 - gh#FreeRDP/FreeRDP#6009 - gh#FreeRDP/FreeRDP#6010 - gh#FreeRDP/FreeRDP#6011 - gh#FreeRDP/FreeRDP#6012 - gh#FreeRDP/FreeRDP#6013 * sha256 is now used instead of sha1 to fingerprint certificates. This will invalidate all hosts in FreeRDP known_hosts2 file and causes a prompt if a new connection is established after the update * First version of the RDP proxy was added (gh#FreeRDP/FreeRDP#5372) thanks to @kubistika * Smartcard received some refactoring. Missing functions were added and input validation was improved (gh#FreeRDP/FreeRDP#5884) * A new option /cert that unifies all certificate related options (gh#FreeRDP/FreeRDP#5880) The old options (cert-ignore, cert-deny, cert-name, cert-tofu) are still available but marked as deprecated * Support for Remote Assistance Protocol Version 2 [MS-RA] * The DirectFB client was removed because it was unmaintained * Unified initialization of OrderSupport * Fix for licensing against Windows Server 2003 * Font smoothing is now enabled per default * Smart scaling for Wayland using libcairo was added (gh#FreeRDP/FreeRDP#5215) * Unified update->BeginPaint and update->EndPaint * An image scaling API for software drawing was added * Rail was updated to the latest spec version 28.0 * Support for H.264 in the shadow server is now detected at runtime * Add mask= option for /gfx and /gfx-h264 (gh#FreeRDP/FreeRDP#5771) * A new option /timeout was added to adjust the TCP ACK timeout (gh#FreeRDP/FreeRDP#5987)- Disable LTO on aarch64 and %arm to fix build- Add freerdp-Fix-realloc-return-handling.patch: Fix realloc return handling that results in memory leaks (boo#1153163, boo#1153164, gh#FreeRDP/FreeRDP#5645, CVE-2019-17177, CVE-2019-17178)- Add Requires: lib%{name}%{major_version} = %{version}-%{release}: freerdp should depend on the same release of libfreerdp2 (boo#1129193)- upgrade to version 2.0.0-rc4 (FATE#326739) * Fix the following issues: - CVE-2018-8784, boo#1116708 - CVE-2018-8785, boo#1117967 - CVE-2018-8786, boo#1117966 - CVE-2018-8787, boo#1117964 - CVE-2018-8788, boo#1117963 - CVE-2018-8789, boo#1117965 - CVE-2018-1000852, boo#1120507 * Security and stability improvements, including boo#1103557 and boo#1112028 * Refactored ntlm_av_pairs API * gateway: multiple fixes and improvements * client/X11: support for rail (remote app) icons was added * the licensing code was re-worked: Per-device licenses are now saved on the client and used on re-connect: WARNING: this is a change in FreeRDP behavior regarding licensing WARNING: this is a change in FreeRDP behavior regarding licensing. If the old behavior is required, or no licenses should be saved use the new command line option +old-license (gh#/FreeRDP/FreeRDP#4979) * improve order handling - only orders that were enabled during capability exchange are accepted. WARNING and NOTE: some servers do improperly send orders that weren't negotiated, for such cases the new command line option /relax-order-checks was added to disable the strict order checking. If connecting to xrdp the options /relax-order-checks *and* +glyph-cache are required. (gh#/FreeRDP/FreeRDP#4926) * /smartcard has now support for substring filters (gh#/FreeRDP/FreeRDP#4840) for details see https://github.com/FreeRDP/FreeRDP/wiki/smartcard-logon * add new command line option /smartcard-logon to allow smartcard login (currently only with RDP security) * add support to set tls security level (for openssl >= 1.1.0) - default level is set to 1 - the new command line option /tls-seclevel:[LEVEL] allows to set a different level if required * new command line option: /window-position to allow positioning the window on startup * client/X11: set window title before mapping * rdpsnd/audin (mostly server side) add support for audio re-sampling using soxr or ffmpeg- upgrade to version 2.0.0-rc3 See: https://github.com/FreeRDP/FreeRDP/milestone/9?closed=1 * Improved and cleaned up the command line interface * Fixed automount issues * Fixed several audio and microphone related issues * Implemented AAC and MP3 codecs * Added Wave2 support * Addedd dynamic resolution with full screen toggle support * Improved redirection handling and certificate issues * Improved automatic reconnects * Improced connection error handling * Fixed invalid pointer, double-free, integer underflow, buffer overflows issues as well as other memory leaks * fixed X11 Right-Ctrl ungrab feature * winpr: Updates time zone data to April 2018 * added libressl compatibility- removed SLE11 condition - removed no_connection_to_windows_10_17101.patch - removed -DBUILTIN_CHANNELS=OFF switch - explicitly set -DCHANNEL_GEOMETRY=ON - Disable the new X264 and OPENH264 codecs because openSUSE does not provide them - upgrade to version 2.0.0-rc2 See: https://github.com/FreeRDP/FreeRDP/milestone/8 Noteworthy features and improvements: * IMPORTANT: add support CredSSP v6 - this fixes KB4088776 see #4449, #4488 * basic support for the "Video Optimized Remoting Virtual Channel Extension" (MS-RDPEVOR) was added * many smart card related fixes and cleanups #4312 * fix ccache support * add support for memory and thread sanitizer * support for dynamic resloution changes was added in xfreerdp #4313 * support for gateway access token (command line option /gat) was added * initial support for travis-ci.org was added * SSE optimization version of RGB to AVC444 frame split was added * build: -msse2/-msse3 are not enabled globally anymore Fixed github issues (excerpt): * #4227 Convert settings->Password to binary blob * #4231 freerdp-2.0.0_rc0: 5 tests failed out of 184 on ppc * #4276 Big endian fixes * #4291 xfreerdp “Segmentation fault” when connecting to freerdp-shadow-cli * #4293 [X11] shadow server memory corruption with /monitors:2 #4293 * #4296 drive redirection - raise an error if the directory can't be found * #4306 Cannot connect to shadow server with NLA auth: SEC_E_OUT_OF_SEQUENCE (boo#1085416, boo#1087240, boo#1104918, CVE-2018-0886) * #4457 Fix /size: /w: /h: with /monitors: (Fix custom sizes) * #4527 pre-connection blob (pcb) support in .rdp files * #4552 Fix Windows 10 cursors drawing as black * smartcard related: #3521, #3431, #3474, #3488, #775, #1424- Fix boo#1090677 activate pulse optional component- Added no_connection_to_windows_10_17101.patch to fix Windows-connection-problem after Windows march 2018 updates. This fix is related to boo#1085416- Do not use xorg-x11-devel, instead buildrequire individual x components. - Only attempt to ge rid of __DATE__ and __TIME__ if SOURCE_DATE_EPOCH is not set.- Users can connect only once wo windows sessions due to [#]gh/FreeRDP/FreeRDP/4348 Therefore WITH_GSSAPI has been disabled until that issue has been solved- Updated to 2.0.0-rc1 Noteworthy features and improvements: * support for FIPS mode was added (option +fipsmode) * initial client side kerberos support (run cmake with WITH_GSSAPI) * support for ssh-agent redirection (as rdp channel) * the man page(s) and /help were updated an improved * add support for ICU for unicode conversion (-DWITH_ICU=ON) * client add option to force password prompt before connection (/from-stdin[:force]) * extend /size to allow width or height percentages (#gh/FreeRDP/FreeRDP/4146) * add support for "password is pin" * clipboard is now enabled per default (use -clipboard to disable) Fixed github issues (excerpt): * #gh/FreeRDP/FreeRDP/4281: Added option to prefer IPv6 over IPv4 * #gh/FreeRDP/FreeRDP/3890: Point to OpenSSL doc for private CA * #gh/FreeRDP/FreeRDP/3378: support 31 static channels as described in the spec * #gh/FreeRDP/FreeRDP/4253: Rfx decode tile width. * #gh/FreeRDP/FreeRDP/3267: fix parsing of drivestoredirect * #gh/FreeRDP/FreeRDP/4257: Proper error checks for /kbd argument * #gh/FreeRDP/FreeRDP/4249: Corruption due to recursive parser * #gh/FreeRDP/FreeRDP/4111: 15bpp color handling for brush. * #gh/FreeRDP/FreeRDP/3509: Added Ctrl+Alt+Enter description * #gh/FreeRDP/FreeRDP/3211: Return freerdp error from main. * #gh/FreeRDP/FreeRDP/3513: add better description for drive redirection * #gh/FreeRDP/FreeRDP/4199: ConvertFindDataAToW string length * #gh/FreeRDP/FreeRDP/4135: client/x11: fix colors on big endian * #gh/FreeRDP/FreeRDP/4089: fix h264 context leak when DeleteSurface * #gh/FreeRDP/FreeRDP/4117: possible segfault * #gh/FreeRDP/FreeRDP/4091: fix a regression with remote program- Remove extraneous Obsoletes for packages that never existed in openSUSE:Factory or X11:RemoteDesktop. - Rename libuwac0-devel to uwac0-devel and libwinpr-devel to winpr-devel, as that seems to be their upstream name which packages are encouraged to stick to. - Remove duplicated pkgconfig requires (these are autodetected).- Fixed download location- Switched to official RC0 - Create wayland client package and libuwac0 package - Create separate libwinpr2 to be used in other packages - enabled gstreamer (currently disabled for tumbleweed) - enabled kerberos authentication - Update to official RC0 Fix the following issues identified by the CISCO TALOS project: * TALOS-2017-0336 CVE-2017-2834 boo#1050714 * TALOS-2017-0337 CVE-2017-2835 boo#1050712 * TALOS-2017-0338 CVE-2017-2836 boo#1050699 * TALOS-2017-0339 CVE-2017-2837 boo#1050704 * TALOS-2017-0340 CVE-2017-2838 boo#1050708 * TALOS-2017-0341 CVE-2017-2839 boo#1050711- Redo history by using changelog url - Update to version 2.0.0~git.1497095982.1dbd2d28d: See https://github.com/freerdp/freeRDP/compare/043243f...1dbd2d28d for full details. - Packaging : + Move to xz tarball in _service + Remove 3472.patch merged upstream - Update to version 2.0.0~git.1496304402.c42ccb508: See https://github.com/freerdp/freeRDP/compare/043243f...c42ccb508 for changes.- Forcefully enable PIE in CFLAGS as the automatism did not work.- Add 3472.patch until upstream #3472 isssue is fixed and PR merged this fix boo#1004108- Update to version 2.0.0~git.1477034991.043243f: * fixed kerberos authentication * shadow/rdpsnd: Fix race condition in rdpsnd channel server. The output buffer and format parameters are not protected. * wfreerdp: fix invalid VerifyCertificate callback * rdpsnd/server: decrease audio latency and make it configurable. * Add an environment variables section to the man * protocol violation: rdp_read_extended_info_packet * Added support for OpenH264 1.6 * freerdp: fix sending of TLS alert on NLA failure, add better handling of server-side NLA in shadow server * freerdp: add configurable NTLM SAM file option for server-side NLA * freerdp: make modifications to NLA server-side fixes according to PR comments * Fixed a windows 8.1 issue.- Kill off __DATE__ from built sources.- Update to GNOME 3.20.2 FATE#318572 - Add obs git integration. - Update to version 2.0.0git.1463131968.4e66df7: + Fixed memory leaks. + wfreerdp: fix name build without client interface + libfreerdp-codec: fix xcrush decompression, revert remote control fix + KB3153731: May 2016 DST update for Azerbaijan, Chile, Haiti and Morocco + libfreerdp-codec: make proper xcrush context reset fix- Update to version 2.0.0, git master branch id a7ca42e (FATE#319661), no upstream changelog available. * Warning: This is a git snapshot regarded as technical preview by upstream. * Warning: For xfreerdp, new /long-option commandline interfaces have replaced the old --long-option interfaces. Existing user scripts need to migrate to the new interfaces to avoid breakages. For more details, see: https://github.com/FreeRDP/FreeRDP/wiki/CommandLineInterface * Add Network Level Ahthentication support. * Add Windows Portable Runtime. For more details, see: http://www.freerdp.com/2012/05/24/winpr-windows-portable-runtime * Obsolete libfreerdp-1_0-plugins. - Drop FindALSA.cmake: deprecated - Drop freerdp_branch-1.0.x_fix-kpdivide-issue831.patch: fixed upstream, implemention now in include/freerdp/scancode.h. - Drop freerdp-CVE-2014-0250.patch (bnc#880317): fixed upstream 532c420. - Drop freerdp-CVE-2014-0791.patch (bnc#857491): fixed upstream f1d6afc. - Drop freerdp-fix-FindPCSC-macro.patch: fixed upstream 9148af3. - Drop freerdp-handle-null-device-name.patch (bnc#785437): deprecated, related implementation dropped. was: freerdp-fix-pulse-no-device-name.patchs390zp31 16571814052.4.0-150400.3.3.12.4.0-150400.3.3.1freerdp-proxy/usr/bin/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:24946/SUSE_SLE-15-SP4_Update/71c519325454756ac258bebb6114a714-freerdp.SUSE_SLE-15-SP4_Updatecpioxz5s390x-suse-linuxELF 64-bit MSB shared object, IBM S/390, version 1 (SYSV), dynamically linked, interpreter /lib/ld64.so.1, BuildID[sha1]=ef7c6770391c95d1622afe4aae14715ffbe3fbcb, for GNU/Linux 3.2.0, strippedRRRRRRRR9 {W *ی)utf-88e96a389e2256d2eb3699c6e335d7f9323c5df761eeca5fb6be3a030e7cd9bba? 7zXZ !t/ṋj] crv9wM,A] F_4`_4Y nO  `[ȏ:+ ^e%|z{cDO|6_ߘTB/6iۆb I&ϋXCMB6EK%`$BC?!4T +=wr/M] ~ Ӡ1?-C`עqU 0_-{C2dlAXǤ z N}-yZaM5h R)-5^f#ä X[zvx]#Y!mm+n ]*D6z}̱(ۤ7cj~Q0ZGFPLKET< 瀢* Mu90\%{ X<?Q}W#i+` =V tEƚShP#++A^;<Dvr~#y?mvX7!)0l*o ńyݗfÀk]23-RC?-6b hW2tN1 ˈJ`B!%R$0%jL \i$߃ }T(`/&e"oJ9)Ecq&_Nb-Bki<`,Pu JGqDٶZhӘŝ95K{+H,%UU%5.1UrI^Y2~UK+4VZim%q߮r11=# [̽A".I =ʥxsLj> >DCl &^˅Sɥ9+COPK5KzzZ1rU ӕzj L0򌂅1w=`kV;ZH5udkѡ5 BzѾ{v$od ?C>!^ @hGkй9Jn5K6vee5}V$϶ĭ\-2omrN]e;UE4Q!ğkzL8P5Kݱ*@UxtHm"Jۍf:FZQ(?-޴toIbaNVhg5xη 9(Qe{aT]԰۝R6jȋǭ8Qjv. {eI;%u„#pÓKi+EȊHYZ[I+ AlSӯp#k=Gk݂Z(,5HS0!lH?|BH}:_?Bf]2RY9Q$sRUp5/p; <2*~**"1Rv2)[],NfNj TB?ddt[ 5bBh{%"NV4&Rׁ 3lCM9 v6i zg=6dU"gqa-?/\Xt 7\)ɜ8)F\u w4Q' +[q]N-~X6P3ݥb1ېqچ֫B{Ђ-TզTB[{e ޮY3ߚ0*oo2U39><~lv>m;gT%o(X3vdN 6](B/ Q 5 G0kuKF:@ڊWd~6` _9R^_zVC4(ۄkrJ1znǤ@xƕJ8ALϐ9ׯrǷ=7 ֪^lKZ1=d[XU Y"bR]&{^3d`UU?Shu !1 GUI'r(T@LgVѺ/_@EVCP t"6[kv>H5|{m`*bBr,"m(xzB`U%*[`2 fXR8~U}jUTܰQV8A:Wnkk\{I})S Ϧ|QYo-~^ό$ ̇6 ~{ H@I5@54q6~kBk)Kv4;Qd ԧ5\uH/} HBߍ8Dtj{SU8 EyPqᯐ-) )dC7c9ڊR|:֪ NL`>FQqkC߽bU Ub4{pD_}G ݴM*9 ¢Mڞ`d}٣'4NP8i"MUJ]uHn/errNj0fA2ZjPPM$JXT4K{3כoseU80^tf.%$ߖBa#JF0=\I(ߡQ-&PձB,ҵ>B( Q8&o;6\.uaJ Tb UMRxzvۤ/HX:޲(SA ni!k _Ȅ_nDۙ8x<zMϒ c)Nݨv4jLW Ѧޠ*O򏯉 $BQvXBjd@U]5tNd|CyfXA=H:RtԵ T0*(~78aiF֯ >h $'M )LF/^pB/ &-F~L5'],'߾?|t(WF_@`6kv&N a&z䒉~@C34„ƥqͤ1$n}[.S/r$!^CSXz0ZQSt~覰!|yDLk2rIY'vVP kW4fw1cÔ Ę ̥$}ʗ}3+B&I+򾒐@#8DkLЧ9yCF_\{E{֠σ̥!Ɩ bW:p%aiC.2XS ?z/&>E1vv#նvPjF1o3mLy7r OTW'el}v *ufzT58A3Ps̬m{藿tuQg p1zC4(7qv"ׁdh9 qhCfXƱ [#f [P5U# NbGh70_FFmȬ6-B2nj}AX9$n(*A`q4ފ pFxE :1ghQ{湱5L3[> H#^@"h{e+pC~ E[C\ {֪_q.+H3oOiTqqeӢ ¡=]_ `+'һtS"Aݭ*5G"iFvK^R~q&x0LrW}x օ*[?YZӄ3?dk0\8y %jM(yƦrcfsofLZiv]WXղk+ &ૢ4x6p;W wt ٪d#k?2;CR. t !*Esђ8%;@5n}GF%stJXTCme)vKV3\0WgzJ3!EkKa{]p(u0uun'"KW9Sk:gU ʭrޗy^jPWɹyBߡ{r gA~Ó;PR#~)?VXWVY0b!2\0'&=|Pr5#yugu, >ڑ0t8luOϕ'nMF0ug?ڋP3>HtTp˘+P'>w3<(KZ7B&~CCѣ'͈(K]98\7.[ rGр ~uhym>Cb*-g!{?Nz&K0k$C2Wu>W-`u%bh'?!mUCf_7*DdU7[Ui8[%'e=Ӏz=- $'/khFeOyaVXyڣĩG.j(*O!ݒz名j磕[jn<8x fellvE`?;7mHұ|'k0Iϔe-^Ŷ7'* }*ƁI:-`0Ь@ jP:1" VJ kGRPczMVٰ4Y d=U}hu]zB{SD~d*j| rR_=T[jAmu^1y"wEH6i_j:f$LezjGg%>hJC]d]|;̙;=݆H] q#*tGAm Ӆ&@Pxik住Gb1rb R.% ^}SŘbLa6d=[10QnN|6nW5ZeNLC 8IAB/;lDɲ_| ZauTL1޼mfXSPYTx\/ 7lŕe0ކlohd^RLeP]c,ozFJJC4cW2pӛ4p ڿ3HS >Iiļ;\H&œU? luc/1Y|%n Cux@Q?\ӭ:ץQ/=)g@hv1'MjpWMGm0X6K 0N;#ݚ@,[3{`ܬ' b%ϏR}DHR,zpI˜G~r\59v7 t$rEڨAUz֓S&spNpLG,%bQ}6(n)Z⡋<7UQT}tbssUYvL?͟ZKZÜ>TX6CE>)+ǭ\$1a()AaH $?iוX=Q1/D [@.Sbm>XI; a6tJoB9fvEpM ?ШOmcktGV,dX>CLntHsy Esћoq1CԫƵOW;m\架WE#BV3[{Đo\dfvX3['z KQSi"\^&oVt2jOb 䏈t= ih{qf'%/ؒm^ю>QdԇGíQkxyDn%cIVPEɊj3Ԓ{IzͅRpu#Pqrsh4kQum=XYhl4ܙ,'p+]cP3GȡOy^is:Wm(Pܡ6tht`Sguw#ΠX2DhWƿX-.9|}c #9z)J$kI1$Îd ؂raXGX]b'6i1}cn۸}x&MφW!沝@Rr>Ad lcga#Oָjb5|YN Ff=u ִO(&r ܼ\(?4JMauH!# %Vۮ*C xTxCx7p/M*.4flx[fElN]D<Bj~ "W5X-ݷXz6OPwEgtP1G(̾NRY.>|ItOr_}u)(JPSzY55⑶Zɠ WZZ=ǻCɣw&&/!>mnS!Rc>Pb¦S1 p\ʂ˔?LƱAn,Rr\L8MVu*x5S 1x( Z9@&܉VQ6+KB/0NH!(6F*/uژ 3PO Kͅ'ri#ݍuMb{fl 8paN D3{-#)W˥Vf@5|;7}|0å.+`^䂇PK(yX%/'[]{mmeeԉdkP/i ?8W azn{נ rƯZ7:\benV*b۵fʴ-%ݥgFϜ6G.}ҫ/?kgNLIh*SFl+OURHIɾG@ƹoMcTWL/e`Zs:[/IoRGޝ|O$4<t x#{ehx1uDy;a=azvm:^q)C~`NIh]e5=L0i]O?3_CWw ˖;h[G&V3W#G \*!+h䟍k:h/ة4OKC ή9I9SܝcnbI"XFt`ګL;>̪*ņIE[{LEQb&^E(uW]\PG4fE#bEZM|#>@}N:o Λ[Ԝ>s 1*{vln9ј쌨<3],|w +{A}r։nUVfU$h*a<Lnw]OL~֫.m0g\# WxH܃/ D荿b:\r812`Jmg fP|M^ֳTV(ꝗrHMS jӞ]N ;Wݻ!2,#ACQ7V) a[㎙ qwU*8]mlR!?#ڣ fSGaSkQ~ NGpҫ1NV ls=3}ZM+<[1VŚ%3mO4~K/Sl]䋗g:A 1O;,%p>ݷ*gg:`YiN!q1uo|q  }F+t;O sVnHɔۦ+DhnYaxI3H0yDDHR9O0%lb2%A! ׈MH{/ ԉR6Kz*(/ zP4!]7?؊,?}GG(XATNFAS]/7g+}}vOڱLHu/$'FpPB(UaU2a,K&KM+cBtk~JrA5T-PƼ's߈BVr(E7 lO3(.on*ZyõdY(%>HDz{9buۤyGM 8s:kkɤ#b_: ZU"9pl ?NܧS )[1;WO#|)agfi\eQ_+*L^ޅs&J{ n\[(^!JaHpVi#f[9CIwۙad;ᵊI x|X~Ciu 7O+\8sXGai><Ƣ+քf1PyH~s(˯> ֞(oFN6:CFd&i疊іnسQV}9ٽo,IٯV#ewOyZ,ިH=##c -EPxle*{zf2c=YβgڳP(eR/ߪ ZswMJLSZ.b?&pLO;cXRwEقs7u|;͡ 98C$$3p9ILNFq$Ãr*]UZa^ yrN[KuiIC.D 'p4שB%V+\޸&*5 qx56Q(v;fȰqSDnMәۦTOB -h4u6c%GY s ͭ$ I{qC z"˫p W99z,@QT\dF:*eNwWP"'-)=ҮJ8q'`zIzu90F`7Vg ޱQV.p{V1^E)S#ُ:M si--BJ飛i1M6y ?%3UU43Ԣ\R`KS-ZVrVѵ= =|ђqrHl7@ei)dԊߦZ bF^ykPN"mi9+?=n6Z>X}FyBG_X_J62hv fh$&W?:}Uv𻗣\۱[`B9y{c\fBզzI?;rlrhB ! sA`Y=\D%;\R*0䁂n(hw}pl3kj.a2fpZnZlJ}eX7F_ŘQhLA1{!v6LMzi3OC[n'nn.ad!gaw>O=+(w<8X}8!ejsP!y9jqdKN} Z3t9>.2|SXaVw 4 OZeQ|Aqf &Qȏg+ƽ{;Iik2I?@}ʝGjwSCGP+gFKkAҷkrDI^jҐ*[R 5~G{~^\4+v^HgwGk+IsZ}k%*61/W7ְSE[~N7q?" TMtQ"zĮDv]tmdC"o9 ʡ_LŨy5"Ġ{^]r{ǭV+sgĎ^"aTl|mNjd*Lm;W|< EX7F%7f F:N;vTl;wuv%53 % x6{׾ľιs :LO։W$M,x#+ < Ќ{LcY9܃{d!=uEB0ʈZiW jaB$2J_93bMK?QЅcBcRb'(&gYʕZJ0 >wW 3Ni0|{d}"pXWż4vJvn]7J 9UOƥj*/~j΅ ;=Oo^8fwb <G[~*+ߜY>*?^V FpIT m>T &tXO<\ й35z)o#u!RALJx)G%)6= CcoEpJ&=caFo1yR Z.i :0an>@C(xM_aFKn Be95 qؗ?`l:l4T4[mcq~!C^ҩNϓ ?ѧ.!w{~ԥu6 wNOr(7^Sȗ˜ԛs5'O;P;RbTM%^iOӬ;Ne3N󿂜[ͰqmW]\$$'U-uzoo`3bO$_So;L/R;"Z^(?sVp;yE5UυX Rfv"ǕoS}clnF0EhUm(K. NR17ktPwILQz?Ÿnv7I6V\S27=۪Cϰ˧327pԲl.HV9'qSwuM|od-x`Rr@abpI2A6Sma-i7章Mb3ev٣w^'~Xp+ Kc䌍ތn^)t몒7Ώ^K 5S\Xܸ(ro}\rtjy5ln ICD߽-8Gz5 ίml26XT;Ae_H2NiÒf]I.S!@WEYNU5]l BC 3 $V#/:,YN&-5u"R03{2ґg.QnW݇F&1KyoK-ư/:@<괋M9idȴj,BL4RNcZpm kr,w^_uTD%&YgGSeBzd_@ׅ ­ì@7]j^06[yFkW/IP/*]>Nhky(0@kzw =N1 A(AKSC5UnI+50Ft? {{aƒf{M!Ejg, dƫrYm̜Mۋr^tZ$H *Uh|hE79$vEi\R `ۏz5y$]Sx4ZbsIqZzX]LZeuXWW&]RR_>IZ (56Iٛ@ćaz! Z|Ϻ;! nxB(SGiF, [ho @rX̙+ac"rǐ֔|Q:?bHÆx23I^wo?gV0L#FL^';c-\FO?lz \xQHf/-yqץҘlʉR)3*?,k?6ۑZa#Q7"^7^L> y >[@խ=ԆtesPD䡉+ ֓r>0 g(掟KA5UfEx#Y̮͍yĮ̭´/ד&\WD@ Ϸ1J8B8-9; ~W+MȢEʋUG.Hbs|uS^;ԤM"V jO'cץrg7TF) S!8vr~HjQ*#.u8ke uNϊ\#i[(C$Ku.Nmܷ7V.U/[M GhZFfAS7*U]qPi\k[_V$I[S*ē'~!"V!x7@ Y7`3 R's} dwūJ#j ny[l4 z8+z-_`ptnGԛЊE*‚@*cʂ}4#Ff{7qg- 79c^h=P6d]gz¸̵uYb|cEzHƦT AxU_FQI@K/Q?-<}XDXr4f){jyġ0\AU:j߮Ǒ:QT6tAds<\%3anAG:WG+y켇Iclhi!-M*\VxBӯƀ!a GίvcO\ZQgܜC Yօ*3NyÒ`'{QypSC^l$+fkOĵ[С_ݏu #5[kA,ׁs~xƬAIO[H^W=^ Ppԣ?HWdg.@G,1؀dr_/ wȞEEO^tn/rgܨ PI)-9<6gd<&#ľͫO9p9]48㜲Ӱ@I:-@נ% Bvsၺ)dY-Yc/I3=>0ZZ>*1U98ʀva3hznI_& .ʮs/Bx;b ZE?z엸z%nY !aϫxP IyHݾrW2 .&ZR/Hu ~BӘhT`Iqczgk4ڂ|6)8igXñvDWCOSf;\<{$%z>/(MP0,L5j;^^_C+=ծAX}J"kH#%-qՉbS[hB!}@?xpM+e3u-Gυs-1Vt'CzExYAiTqUK*L~$';r<4[F7b"-,x'0gTbk͓>ZCNы,>kީ 5e5ukmPRp3lz/$_Rgy([$srY҃ʳ5|_o.S:Pc]У?qC zeyoM)FJ!.E +d+gK5eJIm ?6U{۠)F4=p.HKul"'Y*hndD](>ҘeQb5 ۝mn.G PYdFҟdV%= r@̓="gY:ul4ݶEmlt\~5d7BˑP=Ot6$#0\nv잛3N qR)rzU /qi:3:h?O\TWri.?Z=NOf895H ~/  Uv>}5жk2g#4MSîl3 4Ֆ̳t=Y6egNCӑ}:&kƹF} bEo,{&+BMZ?=‡iƕgQ9k 0D$6M2r1|tÄ67-,y o׳y̍ػ>]JGoYI^U|gOǢ[$=5CF.b d{Et ܌8-W\#`2=yIjY81kD~N5kR9'aUJe%D9[P  e]I$mP2 L1[BdS(05a~C@3̢p<Zfhr#p80"d(MZ8-?oz]BVqLALa~dwBC ?Զ?f7\޻#I%ݾix`p< f![w)JAz4B@)#2dh]-wM'?/0`VJb.'r‹qs\2ǧڱsP & 0`%bSl^4<>`J;wfwuumиM:EݧĞ Q7 w-)VÚl{ͽR+4桇0XXnvM1Oc]XNO|Iւ>:Fڜno"-Y M6<,sCfZz>U0`}Kp['Gjػ(} lۂ璎W6%ĦQTIƤ:7 eE/ZY-)Z|¾x8͜a7&%< Ge<®-޿;Ms7^ B>@p2ցVF2EG ]{"h:fN'@:R{aE#Muk\X2X PU4RFl:]*HIh6VR>J.skU~\@{?0+>FT"!×$6HﵖxPz =$cՕqoVy[h0dnqlQj#@46dĈ Xq^G&B9<\YUGsNEOͣz'ط?{0<)󏒤Ml^Vʽ鑥!ePF'/6o {<]@w얁/bdE "lBoٿ!൨%,}x<9eɗ6֜l\& ~\&ǵE6k @onQwaιb"?@_:+8VJ(VS+xnCmXiςiw2- 'A诉X>(UF8Xҳn& ~rpP,C*ˍvbVPp`줫?Lo0p.[aFɟ`8+{}ccfbXs3Xȷs<PR䣣-d%/FAs{4I a iM)~NZ(/(h:fI\HE~gP!uJSm\BnSyT?X3}R/Gf1aޠE&hx2Eٯ'Svֻ7$MJܖ$`=n׾4;;`rzCo/1;!R ͮj> mnOvqTÀ'5b/)E(n01*GCg U/*HG}2:=>o]4Gs'v3ә](\,uB=dG![DEr yIL%k]0]y^8Rie b=D{'H_wAL9pJzGoJ: X[mvILTK3)}D37Z@cu2#ML򲞯}Ǎq//a6˧݉lj S\_P>_1€he׏"P(aZ2p Q|nb֧X=*Z7?U.hy ֭UKcY^K\j9#7S:sҧ8"Ԫt #0?cQ}7hgCےM t3sVޯb0ʔ{vR&-o&10G!$M-q0 XaݵAkAcQ~ %LFn5 <䦦3\imkQzJtDаs&܋*߭AtF,,`u|^m":;,8h DPx™HF_DgT y` Zqv9I/[kpнG*ršnib{EcRs;GT<+P$d6rt36Dt? N&04%sU½L2JsUAJYdE > ,݋^Q8J |^f굌 &| /1ʿ0Hq2z6J:5GVd'mv@p\[gmО"6Z@c7h}5ІOWѭU.Jp}anvz :VmjFtWArŢ^{Ѕ yk+v!P3,u2a&|sP6?HsGHXܭ$%);J8ИC)Y)ը~cv?O5wq3*j$ܚ+,,yߍIJA|JoAW}Q%.?^]-#; ZTvxI&ngK݈[~ή69$_rW(jKE#%TJF !ˀY(IjrEX*biCA`#UQbjt-ZVe^/pu\#e+j-b䍎gEfE)V0io3>8]\O0;K_*Ih >~M~lw&!efFc=%bXi"HюC$9Jq¦kve'|`U}T|{˂pќ5B\&] }]>5@bw'_uIϓgNm9֯<`ɟ"I%'&~_KSm);:bpl *liHI ^ytn ׮zXeyoלru}Rç ؞*cڍ 1Ew8>sokBRZt2]@/Q*#ȎLwD$*'a>i{% {U`%`ż]ye,%!3WHv/OǴ1Lhb+[ 9J3>"$۵e,,l2rU*kI RvL+@8̀zWJ c#Ԕ՜|0NqM83Ƣ>_] rfˁt$mjEPF!tq` 1, [ oAw$U_MjTRf˜{&N>يi5Q؋ _&A%>j5b/+{b}$`w_"$Z7;+mMY5Ͱ{1**/ wے8Z!l`Q #2_I):ge¼Ðv[#*B-~GQ{ed Bfܾw]m P ŮLڎ]#p̧8FUzbL$so6ţ@J<}벐aq|f͞FD`PM¡ H4)<ɶN.h @a r[GO#jGf5Rov; KgDP|uLKUBVm.Wf:iU"$r5#gHnƢ^$OLJyK{'ܢ2JM>ՒTH=AϨ $^UAP*%-7x{Lw%bP#~8 lj+3M: r[6rX6K5ÅO)ߘ")`, qZx} X""D1”`r4XeDim`hVq1^U_Gm]OSk'vY~kT*hskoS"dQ--CYZPӜatQlOD;ŸhEl\(ۗ@Cʗ좧AUBDaͶR{](L`NS~NTrգcּ]7Ďi7;$JwMa)DKj AO n$o'5 CqVffH9 4Y sY?ɩ=H"Yv[ `^9xo42{Bʒ)[@*ǚl)g:]# fPO9mq/U鼰2ɔl+3'7X3!4FH.c)B{t޷V|ddk,GJlYidZdw8zWVȱEe)DJz&/RñZA\Jq gN G{;YR&BIEM2/;oM'0aybԙMb֖{Uy9aw#:eGY@! #"jNDW\