xorg-x11-server-Xvfb-21.1.11-150600.5.3.1<>,g p9|-RV ഛlJl X|_5g'Xյ"w5Mx CwR'u $OF|Myթl`6p*w}f]'FuG$߁ri;%GJnam%j2UR>־ʰXb(x-L^+8]bbp>D?d , Atx $( * , 0 q tx}(89:BFG(H,I0X4YDZp[t\x]|^bc4defluvwxyz$(<@DJCxorg-x11-server-Xvfb21.1.11150600.5.3.1Virtual Xserver XvfbThis package contains the virtual Xserver Xvfb.g h04-armsrv1 HSUSE Linux Enterprise 15SUSE LLC MIThttps://www.suse.com/System/X11/Servers/XF86_4http://xorg.freedesktop.org/linuxaarch64 Hg zd93ad790475d5dd40c08ab05e235e16a89b9ea8b04f39be0a1b54f767ebe2ef6rootrootxorg-x11-server-21.1.11-150600.5.3.1.src.rpmxorg-x11-Xvfbxorg-x11-server-Xvfbxorg-x11-server-Xvfb(aarch-64)xorg-x11-server:/usr/bin/Xvfb@@@@@@@@@@@@@@@@@@@@@@@    Mesald-linux-aarch64.so.1()(64bit)ld-linux-aarch64.so.1(GLIBC_2.17)(64bit)libGL.so.1()(64bit)libXau.so.6()(64bit)libXdmcp.so.6()(64bit)libXfont2.so.2()(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.17)(64bit)libc.so.6(GLIBC_2.26)(64bit)libc.so.6(GLIBC_2.27)(64bit)libc.so.6(GLIBC_2.32)(64bit)libc.so.6(GLIBC_2.33)(64bit)libc.so.6(GLIBC_2.34)(64bit)libc.so.6(GLIBC_2.38)(64bit)libcrypto.so.3()(64bit)libcrypto.so.3(OPENSSL_3.0.0)(64bit)libm.so.6()(64bit)libm.so.6(GLIBC_2.17)(64bit)libm.so.6(GLIBC_2.29)(64bit)libm.so.6(GLIBC_2.35)(64bit)libpixman-1.so.0()(64bit)libsystemd.so.0()(64bit)libsystemd.so.0(LIBSYSTEMD_209)(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)xkbcompxkeyboard-config3.0.4-14.6.0-14.0-15.2-14.14.3g@f@fe@eȶeȶee@eoe@e@em@e9@d(dc=@cT@cccR@c@c.cEch@ch@cb[cb[cObγbγbγby@bzSbDF@b-b@b@b@a@a@aa@a@a@aaaaay?@a`]`]`:@`9@``P@`}p`u`t6@`?z@_@_@_0@_ts@_s!_q@_l@_a@_X_G@_D@_$^)@^@^^@^W@^%@^@]@]@]@]@]]y@]i]@1@\\O\@\v{\I\A\,[@[@[@[ā@[t[i[\Z[Xf@[P}@[D[:[2*[*A[@Z@ZZԐ@ZJ@Z2@ZZ Z}@ZTZ?Z/Z@Z YY@YY@Yh@Yg`Y_wY[@Y;@Y:Y6@XX @X+X@XpXXwoXN@X,J@XW@W@W@WDB@W9@W/*@W'A@W#LW @W @W @WKWW@V@Vn@V3VVm@VxVVV&@VV@V@VV@VGVVVUVA@V0V0V7@UU@U@UUzUuUn@Ui@U0U:T!TTTԬT[@T[@Tk4T`TN3sndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.combjorn.lie@gmail.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.commgorse@suse.comdmueller@suse.comdmueller@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comtzimmermann@suse.desndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comdmueller@suse.commeissner@suse.comsndirsch@suse.combjorn.lie@gmail.comsndirsch@suse.comdmueller@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comtzimmermann@suse.detzimmermann@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comdmueller@suse.comsndirsch@suse.combjorn.lie@gmail.comismail@i10z.compatrik.jakobsson@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comtobias.klausmann@freenet.desndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.commgorse@suse.combjorn.lie@gmail.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comfcrozat@suse.combjorn.lie@gmail.combjorn.lie@gmail.combjorn.lie@gmail.comsndirsch@suse.combjorn.lie@gmail.comsndirsch@suse.comsndirsch@suse.comtobias.johannes.klausmann@mni.thm.demliska@suse.czjengelh@inai.desndirsch@suse.comsndirsch@suse.comsndirsch@suse.commsrb@suse.comsndirsch@suse.commsrb@suse.comsndirsch@suse.comtobias.johannes.klausmann@mni.thm.demsrb@suse.comtobias.johannes.klausmann@mni.thm.dejdelvare@suse.desndirsch@suse.comtiwai@suse.defcrozat@suse.comsndirsch@suse.commsrb@suse.comsndirsch@suse.commsrb@suse.comtobias.johannes.klausmann@mni.thm.demsrb@suse.commsrb@suse.commsrb@suse.commsrb@suse.comfcrozat@suse.combwiedemann@suse.comsndirsch@suse.commwilck@suse.comtobias.johannes.klausmann@mni.thm.demsrb@suse.comrbrown@suse.commsrb@suse.comtobias.johannes.klausmann@mni.thm.detobias.johannes.klausmann@mni.thm.deilya@ilya.pp.uasndirsch@suse.comsndirsch@suse.commsrb@suse.comsndirsch@suse.comsndirsch@suse.comopensuse@dstoecker.desndirsch@suse.comtobias.johannes.klausmann@mni.thm.detobias.johannes.klausmann@mni.thm.dedenis.kondratenko@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comtobias.johannes.klausmann@mni.thm.defbui@suse.comtobias.johannes.klausmann@mni.thm.dezaitor@opensuse.orgtobias.johannes.klausmann@mni.thm.detobias.johannes.klausmann@mni.thm.demstaudt@suse.comeich@suse.comeich@suse.comeich@suse.comsndirsch@suse.comsndirsch@suse.comeich@suse.comeich@suse.comeich@suse.comeich@suse.comtobias.johannes.klausmann@mni.thm.detobias.johannes.klausmann@mni.thm.deeich@suse.comeich@suse.comtobias.johannes.klausmann@mni.thm.delbsousajr@gmail.comeich@suse.comeich@suse.comeich@suse.comeich@suse.comtobias.johannes.klausmann@mni.thm.deeich@suse.comeich@suse.comfcrozat@suse.comeich@suse.comeich@suse.comeich@suse.comhrvoje.senjan@gmail.comeich@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comeich@suse.comtiwai@suse.deeich@suse.comtobias.johannes.klausmann@mni.thm.detobias.johannes.klausmann@mni.thm.demsrb@suse.comantoine.belvire@laposte.netmsrb@suse.comeich@suse.comnormand@linux.vnet.ibm.commsrb@suse.comdimstar@opensuse.orgsndirsch@suse.comtobias.johannes.klausmann@mni.thm.deeich@suse.comtobias.johannes.klausmann@mni.thm.demsrb@suse.comsndirsch@suse.comledest@gmail.comsndirsch@suse.com- U_xkb-Fix-buffer-overflow-in-_XkbSetCompatMap.patch * Heap-based buffer overflow privilege escalation in _XkbSetCompatMap (CVE-2024-9632, bsc#1231565)- U_render-Avoid-possible-double-free-in-ProcRenderAddGl.patch * fixes regression for security fix for CVE-2024-31083 (bsc#1222312, boo#1222442, gitlab xserver issue #1659)- U_CVE-2024-31080-Xi-ProcXIGetSelectedEvents-needs-to-use-unswapped-le.patch * Xi: ProcXIGetSelectedEvents needs to use unswapped length (CVE-2024-31080, bsc#1222309) - U_CVE-2024-31081-Xi-ProcXIPassiveGrabDevice-needs-to-use-unswapped-le.patch * Xi: ProcXIPassiveGrabDevice needs to use unswapped length to send reply (CVE-2024-31081, bsc#1222310) - U_CVE-2024-31082-Xquartz-ProcAppleDRICreatePixmap-needs-to-use-unswap.patch * Xquartz: ProcAppleDRICreatePixmap needs to use unswapped length to send reply (CVE-2024-31082, bsc#1222311) - U_CVE-2024-31083-render-fix-refcounting-of-glyphs-during-ProcRenderAd.patch * render: fix refcounting of glyphs during ProcRenderAddGlyphs (CVE-2024-31083, bsc#1222312)- Release 21.1.11 also covers fixes for security issue CVE-2022-46340 and bug numbers bsc#1205874, bsc#1217765- Release 21.1.11 covers fixes for the following bug numbers, which are not mentioned in this changelog before: bsc#1218845, bsc#1218846, bsc#1216261, bsc#1216133, bsc#1216135- Release 21.1.11 supersedes the following patches still used with xorg-x11-server 21.1.4 on sle15-sp5/Leap 15.5 and not mentioned in this changelog as superseded before: * U_Xext-fix-invalid-event-type-mask-in-XTestSwapFakeInp.patch * U_bsc1216133-mi-reset-the-PointerWindows-reference-on-screen-swit.patch * U_bsc1216135-Xi-randr-fix-handling-of-PropModeAppend-Prepend.patch * U_bsc1216261-0001-mi-fix-CloseScreen-initialization-order.patch * U_bsc1216261-0002-fb-properly-wrap-unwrap-CloseScreen.patch * U_bsc1216261-0003-dix-always-initialize-pScreen-CloseScreen.patch * bsc1218582-0001-dix-allocate-enough-space-for-logical-button-maps.patch * bsc1218583-0001-dix-Allocate-sufficient-xEvents-for-our-DeviceStateN.patch * bsc1218583-0002-dix-fix-DeviceStateNotify-event-calculation.patch * bsc1218583-0003-Xi-when-creating-a-new-ButtonClass-set-the-number-of.patch * bsc1218584-0001-Xi-flush-hierarchy-events-after-adding-removing-mast.patch * bsc1218585-0001-Xi-do-not-keep-linked-list-pointer-during-recursion.patch * bsc1218585-0002-dix-when-disabling-a-master-float-disabled-slaved-de.patch * U_bsc1218845-glx-Call-XACE-hooks-on-the-GLX-buffer.patch * U_bsc1218846-ephyr-xwayland-Use-the-proper-private-key-for-cursor.patch- xserver sources of this release fixes segfault in Xvnc (bsc#1219311)- no longer (build-)require obsolete Xprint/XprintUtil- Update to version 21.1.11 * This release contains fixes for the issues reported in today's security advisory: https://lists.x.org/archives/xorg/2024-January/061525.html * CVE-2023-6816 (bsc#1218582) * CVE-2024-0229 (bsc#1218583) * CVE-2024-21885 (bsc#1218584) * CVE-2024-21886 (bsc#1218585) * CVE-2024-0408 * CVE-2024-0409 - supersedes the following patches * U_xephyr-Don-t-check-for-SeatId-anymore.patch * U_bsc1217765-Xi-allocate-enough-XkbActions-for-our-buttons.patch * U_bsc1217766-randr-avoid-integer-truncation-in-length-check-of-Pr.patch- u_miCloseScreen_check_for_null_pScreen_dev_private.patch * miCloseScreen check for null pScreen dev private (bsc#1218176); another regression introduced by U_bsc1216261-0002-fb-properly-wrap-unwrap-CloseScreen.patch- n_xserver-optimus-autoconfig-hack.patch u_randr-Do-not-crash-if-slave-screen-does-not-have-pro.patch u_xfree86-activate-GPU-screens-on-autobind.patch * check dixPrivateKeyRegistered(rrPrivKey) before calling rrGetScrPriv() to avoid xserver crash when Xinerama is enabled (boo#1218240) - ------------------------------------------------------------------- U_bsc1217765-Xi-allocate-enough-XkbActions-for-our-buttons.patch * Out-of-bounds memory write in XKB button actions (CVE-2023-6377, ZDI-CAN-22412, ZDI-CAN-22413, bsc#1217765) - U_bsc1217766-randr-avoid-integer-truncation-in-length-check-of-Pr.patch * Out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty (CVE-2023-6478, ZDI-CAN-22561, bsc#1217766)- Update to version 21.1.9 * This release contains fixes for CVE-2023-5367, CVE-2023-5380 and CVE-2023-5574 as reported in today's security advisory: https://lists.x.org/archives/xorg-announce/2023-October/003430.html - adjusted u_Use-better-fallbacks-to-generate-cookies-if-arc4rand.patch- Update to version 21.1.8 (CVE-2023-1393): * This release contains the fix for CVE-2023-1393 * composite: Fix use-after-free of the COW * xkbUtils: use existing symbol names instead of deleted deprecated ones - Drop U_xserver-composite-Fix-use-after-free-of-the-COW.patch: Fixed upstream - Switch back to tarball release, drop source service, add keyring and sig files.- U_xserver-composite-Fix-use-after-free-of-the-COW.patch * overlay window use-after-free (CVE-2023-1393, ZDI-CAN-19866, bsc#1209543)- Update to version xorg-server-21.1.7: * This release contains the fix for CVE-2023-0494 in today's security advisory: https://lists.x.org/archives/xorg-announce/2023-February/003320.html It also fixes a second possible OOB access during EnqueueEvent and a crasher caused by ResourceClientBits not correctly honouring the MaxClients value in the configuration file. - supersedes U_Xi-fix-potential-use-after-free-in-DeepCopyPointerCl.patch, U_xorg-server-oob-read-enqueue-event.patch- U_Xi-fix-potential-use-after-free-in-DeepCopyPointerCl.patch * DeepCopyPointerClasses use-after-free (CVE-2023-0494, ZDI-CAN-19596, bsc#1207783)- rename u_xorg-server-oob-read-enqueue-event.patch to U_xorg-server-oob-read-enqueue-event.patch since it's already upstream- Add u_xorg-server-oob-read-enqueue-event.patch: fix an out-of-bounds read in EnqueueEvent.- Update to version xorg-server-21.1.6: * xserver 21.1.6 * Xext: fix invalid event type mask in XTestSwapFakeInput * xkb: fix some possible memleaks in XkbGetKbdByName * xkb: proof GetCountedString against request length attacks * xquartz: Fix some formatting * XQuartz: stub: Call LSOpenApplication instead of fork()/exec() - drop the following upstream patches: U_xkb-proof-GetCountedString-against-request-length-at.patch U_xkb-fix-some-possible-memleaks-in-XkbGetKbdByName.patch- Update to version xorg-server-21.1.5: * xkb: reset the radio_groups pointer to NULL after freeing it * Xi: avoid integer truncation in length check of ProcXIChangeProperty * Xi: return an error from XI property changes if verification failed * Xext: free the screen saver resource when replacing it * Xext: free the XvRTVideoNotify when turning off from the same client * Xi: disallow passive grabs with a detail > 255 * Xtest: disallow GenericEvents in XTestSwapFakeInput * meson: Don't build COMPOSITE for XQuartz * xquartz: Move default applications list outside of the main executable * xquartz: Remove unused macro (X11LIBDIR) - drop the following upstream patches: U_0007-xkb-reset-the-radio_groups-pointer-to-NULL-after-fre.patch U_0002-Xi-return-an-error-from-XI-property-changes-if-verif.patch U_0003-Xi-avoid-integer-truncation-in-length-check-of-ProcX.patch U_0004-Xi-disallow-passive-grabs-with-a-detail-255.patch U_0005-Xext-free-the-screen-saver-resource-when-replacing-i.patch U_0006-Xext-free-the-XvRTVideoNotify-when-turning-off-from-.patch U_0001-Xtest-disallow-GenericEvents-in-XTestSwapFakeInput.patch- U_0007-xkb-reset-the-radio_groups-pointer-to-NULL-after-fre.patch * XkbGetKbdByName use-after-free (ZDI-CAN-19530, CVE-2022-4283, bsc#1206017)- U_0001-Xtest-disallow-GenericEvents-in-XTestSwapFakeInput.patch * Server XTestSwapFakeInput stack overflow (ZDI-CAN 19265, CVE-2022-46340, bsc#1205874) - U_0002-Xi-return-an-error-from-XI-property-changes-if-verif.patch * Xi: return an error from XI property changes if verification failed (no ZDI-CAN id, no CVE id, bsc#1205875) - U_0003-Xi-avoid-integer-truncation-in-length-check-of-ProcX.patch * Server XIChangeProperty out-of-bounds access (ZDI-CAN 19405, CVE-2022-46344, bsc#1205876) - U_0004-Xi-disallow-passive-grabs-with-a-detail-255.patch * Server XIPassiveUngrabDevice out-of-bounds access (ZDI-CAN 19381, CVE-2022-46341, bsc#1205877) - U_0005-Xext-free-the-screen-saver-resource-when-replacing-i.patch * Server ScreenSaverSetAttributes use-after-free (ZDI-CAN 19404, CVE-2022-46343, bsc#1205878) - U_0006-Xext-free-the-XvRTVideoNotify-when-turning-off-from-.patch * Server XvdiSelectVideoNotify use-after-free (ZDI-CAN 19400, CVE-2022-46342, bsc#1205879)- Release 21.1 covers bugfixes and JIRA tickets for bsc#1176015,bsc#1182510,bsc#1182884,bsc#1184072,bsc#1184543,bsc#1184906,bsc#1186092,bsc#1188970,bsc#1194159,bsc#1196577,bsc#1197046,bsc#1197269,bsc#1200076,fdo#574,jsc#SLE-18653,jsc#SLE-8470- Release 21.1 supersedes the following patches still used with xorg-x11-server 1.20.3 on sle15-sp4/Leap 15.4: * U_0002-DRI2-Add-another-Coffeelake-PCI-ID.patch * U_0002-Fix-crash-on-XkbSetMap.patch * U_0003-Fix-crash-on-XkbSetMap.patch * U_0003-dri2-Sync-i965_pci_ids.h-from-mesa.patch * U_0004-dri2-Set-fallback-driver-names-for-Intel-and-AMD-chi.patch * U_0005-dri2-Sync-i965_pci_ids.h-from-mesa-iris_pci_ids.h.patch * U_build-glx-Lower-gl-version-to-work-with-libglvnd.patch * U_glamor-Make-pixmap-exportable-from-gbm_bo_from_pixma.patch * U_hw_do-not-include-sys-io-with-glibc.patch * U_meson-Fix-another-reference-to-gl-9.2.0.patch * U_modesetting-Fix-broken-manpage-in-autoconf-build.patch * U_present-wnmd-Fix-use-after-free-on-CRTC-removal.patch * U_present-wnmd-Relax-assertion-on-CRTC-on-abort_vblank.patch * U_xfree86-Change-displays-array-to-pointers-array-to-f.patch * U_xfree86-Fix-NULL-pointer-dereference-crash.patch * U_xkbsetdeviceinfo.patch * u_sync-pci-ids-with-Mesa-21.2.4.patch * u_xf86-Accept-devices-with-the-simpledrm-driver.patch * u_xichangehierarchy-CVE-2020-14346.patch * u_xkb-CVE-2020-14345.patch * u_xkb-CVE-2020-14360.patch- removed N_Disable-HW-Cursor-for-cirrus-and-mgag200-kernel-modules.patch * meanwhile cirrus and mgag200 Kernel drivers have been rewritten multiple times and no longer have (broken) hardware cursor- u_xf86-Accept-devices-with-the-kernels-ofdrm-driver.patch * Add workaround to support ofdrm- U_xkb-proof-GetCountedString-against-request-length-at.patch * security update for CVE-2022-3550 (bsc#1204412) - U_xkb-fix-some-possible-memleaks-in-XkbGetKbdByName.patch * security update for CVE-2022-3551 (bsc#1204416)- rename u_sync-pci-ids-with-Mesa-22.0.0.patch to u_sync-pci-ids-with-Mesa.patch (currently synced with Mesa 22.1.3)- u_sync-pci-ids-with-Mesa-22.0.0.patch * synced with Mesa 22.1.3; just adding a PCI ID for vmware was needed- Update to version 21.1 * This release fixes 2 recently reported security vulnerabilities in xkb, several regressions since 1.20.x and a number of miscellaneous bugs. - supersedes the following security patches * U_boo1194181-001-xkb-swap-XkbSetDeviceInfo-and-XkbSetDeviceInfoCheck.patch * U_boo1194179-001-xkb-rename-xkb_h-to-xkb-procs_h.patch * U_boo1194179-002-xkb-add-request-length-validation-for-XkbSetGeometry.patch - supersedes U_Fix-build-with-gcc-12.patch- U_boo1194181-001-xkb-swap-XkbSetDeviceInfo-and-XkbSetDeviceInfoCheck.patch * Out-Of-Bounds Access in CheckSetDeviceIndicators() (CVE-2022-2320, ZDI-CAN-16070, bsc#1194181) - U_boo1194179-001-xkb-rename-xkb_h-to-xkb-procs_h.patch, U_boo1194179-002-xkb-add-request-length-validation-for-XkbSetGeometry.patch * Out-Of-Bounds Access in _CheckSetSections() (CVE-2022-2319, ZDI-CAN-16062, bsc#1194179)- add n_raise_default_clients.patch- disable -z now linking for now, as there are some missing symbol issues. (boo#1197994)- u_sync-pci-ids-with-Mesa-22.0.0.patch * sync pci ids with Mesa 22.0.0- U_Fix-build-with-gcc-12.patch * render: Fix build with gcc 12 (glfdo#xorg/xserver!853).- U_xephyr-Don-t-check-for-SeatId-anymore.patch * fix mouse/keyboard focus in Xephyr (boo#1194658, github issue#1289)- fix bashisms in pre_checkins.sh (bsc#1195391)- u_xfree86-activate-GPU-screens-on-autobind.patch * Part of the original patch by Dave Airlie has landed 078277e4d92f05a90c4715d61b89b9d9d38d68ea, this contains the remainder of what was in SUSE before Xorg 21.1. (github issue#1254, boo#1192751)- Update to version 21.1.3 * This release fixes several regressions since 1.20.x and 21.1.1 + glx/dri: Filter out fbconfigs that don't have a supported pixmap format + xf86/logind: Fix compilation error when built without logind/platform bus + xf86/logind: fix missing call to vtenter if the platform device is not paused + Convert more funcs to use InternalEvent. + os: Try to discover the current seat with the XDG_SEAT var first- Update to version 21.1.2 * This release fixes 4 recently reported security vulnerabilities and several regressions. * In particular, the real physical dimensions are no longer reported by the X server anymore as it was deemed to be a too disruptive change. X server will continue to report DPI as 96. - supersedes U_hw-xfree86-Propagate-physical-dimensions-from-DRM-co.patch - supersedes U_rendercompositeglyphs.patch - supersedes U_xfixes-Fix-out-of-bounds-access-in-ProcXFixesCreateP.patch - supersedes U_Xext-Fix-out-of-bounds-access-in-SProcScreenSaverSus.patch - supersedes U_record-Fix-out-of-bounds-access-in-SwapCreateRegiste.patch- U_xfixes-Fix-out-of-bounds-access-in-ProcXFixesCreateP.patch * CVE-2021-4009/ZDI-CAN-14950 (bsc#1190487) The handler for the CreatePointerBarrier request of the XFixes extension does not properly validate the request length leading to out of bounds memory write. - U_Xext-Fix-out-of-bounds-access-in-SProcScreenSaverSus.patch * CVE-2021-4010/ZDI-CAN-14951 (bsc#1190488) The handler for the Suspend request of the Screen Saver extension does not properly validate the request length leading to out of bounds memory write. - U_record-Fix-out-of-bounds-access-in-SwapCreateRegiste.patch * CVE-2021-4011/ZDI-CAN-14952 (bsc#1190489) The handlers for the RecordCreateContext and RecordRegisterClients requests of the Record extension do not properly validate the request length leading to out of bounds memory write.- U_rendercompositeglyphs.patch * X.Org Server SProcRenderCompositeGlyphs Out-Of-Bounds Access Privilege Escalation Vulnerability [CVE-2021-4008, ZDI-CAN-14192] (boo#1193030)- u_Support-configuration-files-under-run-X11-xorg.conf..patch - u_Add-udev-scripts-for-configuration-of-platform-devic.patch - u_Add-udev-rule-for-HyperV-devices.patch * Remove udev-based configuration - u_Revert-xf86-Accept-devices-with-the-simpledrm-driver.patch * Restore simpledrm workaround - u_xf86-Accept-devices-with-the-hyperv_drm-driver.patch * Add workaround to support hyperv_drm- u_pci-primary-Fix-up-primary-PCI-device-detection-for-the-platfrom-bus.patch * Fix SEGFAULT when parsing bus IDs of NULL (boo#1193250) - u_Support-configuration-files-under-run-X11-xorg.conf..patch * Support configuration files under /run. Required for generating configuration files via udev. (boo#1193250) - u_Add-udev-scripts-for-configuration-of-platform-devic.patch * Generate configuration files for platform devices (boo#1193250) - u_Revert-xf86-Accept-devices-with-the-simpledrm-driver.patch * Code has been obsoleted by udev patchset (boo#1193250) - u_Add-udev-rule-for-HyperV-devices.patch * Same as for platform devices, but on HyperV (boo#1193250)- enable build of Xorg on s390x (jira#SLE-18632)- U_hw-xfree86-Propagate-physical-dimensions-from-DRM-co.patch * reverse apply this one to go back to fixed 96 dpi (gitlab fdo/xserver issue#1241) - N_fix-dpi-values.diff * back to version for xserver < 21.1.0- Update to version 21.1.1 * s/__/@/ in inputtestdrv manpage * Make xf86CompatOutput() return NULL when there are no privates * Makefile.am: Add missing meson build files to release tarball- Update to version 21.1.0 * The meson support is now fully mature. While autotools support will still be kept for this release series, it will be dropped afterwards. * Glamor support for Xvfb. * Variable refresh rate support in the modesetting driver. * XInput 2.4 support which adds touchpad gestures. * DMX DDX has been removed. * X server now correctly reports display DPI in more cases. This may affect rendering of client applications that have their own workarounds for hi-DPI screens. * A large number of small features and various bug fixes. - updated xorg-server-provides - supersedes patches * U_Fix-segfault-on-probing-a-non-PCI-platform-device-on.patch * U_dix-window-Use-ConfigureWindow-instead-of-MoveWindow.patch * U_glamor_egl-Reject-OpenGL-2.1-early-on.patch * u_render-Cast-color-masks-to-unsigned-long-before-shifting-them.patch - refreshed patches * N_fix-dpi-values.diff * N_zap_warning_xserver.diff * u_modesetting-Fix-dirty-updates-for-sw-rotation.patch * u_randr-Do-not-crash-if-slave-screen-does-not-have-pro.patch * u_vesa-Add-VBEDPMSGetCapabilities-VBEDPMSGet.patch - disabled n_xserver-optimus-autoconfig-hack.patch, which I believe is superseded by: commit 078277e4d92f05a90c4715d61b89b9d9d38d68ea Author: Dave Airlie Date: Fri Aug 17 09:49:24 2012 +1000 xf86: autobind GPUs to the screen - added pkgconfig(libxcvt) - cvt binary moved to libxcvt0 package- Update to version 1.20.13 * bugfix release - supersedes U_present-get_crtc-should-not-return-crtc-when-its-scr.patch, U_modesetting-unflip-not-possible-when-glamor-is-not-s.patch- U_modesetting-unflip-not-possible-when-glamor-is-not-s.patch * this should fixes crashes of xfce when running under qemu (boo#1188559)- add U_present-get_crtc-should-not-return-crtc-when-its-scr.patch (bsc#1188559) https://gitlab.freedesktop.org/xorg/xserver/-/issues/1195- Update to version 1.20.12 * bugfix release- Drop U_xwayland-Allow-passing-a-fd.patch: We build xwayland in a separate package now, so no need to keep this patch here.- Fix typo in %post: xbb.conf -> xkb.conf- u_modesetting-Fix-dirty-updates-for-sw-rotation.patch * Fixes broken rotation support for DRM drivers without hardware rotation support or direct vram access (bsc#1182955)- disable build of Xwayland, which is now being built in separate xwayland package with more recent sources (boo#1182677)- Update to version 1.20.11 * bugfix release - supersedes U_Fix-XChangeFeedbackControl-request-underflow.patch, U_xkb-Fix-heap-overflow-caused-by-optimized-away-min.patch- U_Fix-XChangeFeedbackControl-request-underflow.patch * Fix XChangeFeedbackControl() request underflow (CVE-2021-3472, ZDI-CAN-1259, bsc#1180128)- reenabled LTO (boo#1133294) * u_no-lto-for-tests.patch disables LTO in test/ subtree, since "-Wl,-wrap" is not supported by LTO * added "%global _lto_cflags %{?_lto_cflags} -ffat-lto-objects"- Update to version 1.20.10: * Check SetMap request length carefully. * Fix XkbSetDeviceInfo() and SetDeviceIndicators() heap overflows * present/wnmd: Translate update region to screen space * modesetting: keep going if a modeset fails on EnterVT * modesetting: check the kms state on EnterVT * configure: Build hashtable for Xres and glvnd * xwayland: Create an xwl_window for toplevel only * xwayland: non-rootless requires the wl_shell protocol * glamor: Update pixmap's devKind when making it exportable * os: Fix instruction pointer written in xorg_backtrace * present/wnmd: Execute copies at target_msc-1 already * present/wnmd: Move up present_wnmd_queue_vblank * present: Add present_vblank::exec_msc field * present: Move flip target_msc adjustment out of present_vblank_create * xwayland: Remove pending stream reference when freeing * xwayland: use drmGetNodeTypeFromFd for checking if a node is a render one * xwayland: Do not discard frame callbacks on allow commits * present/wnmd: Remove dead check from present_wnmd_check_flip * xwayland: Check window pixmap in xwl_present_check_flip2 * present/wnmd: Can't use page flipping for windows clipped by children * xfree86: Take second reference for SavedCursor in xf86CursorSetCursor * glamor: Fix glamor_poly_fill_rect_gl xRectangle::width/height handling * include: Increase the number of max. input devices to 256. * Revert "linux: Make platform device probe less fragile" * Revert "linux: Fix platform device PCI detection for complex bus topologies" * Revert "linux: Fix platform device probe for DT-based PCI" - Remove included pachtes * U_xfree86_take_second_ref_for_xcursor.patch * U_Revert-linux-Fix-platform-device-probe-for-DT-based-.patch * U_Revert-linux-Fix-platform-device-PCI-detection-for-c.patch * U_Revert-linux-Make-platform-device-probe-less-fragile.patch * U_Fix-XkbSetDeviceInfo-and-SetDeviceIndicators-heap-ov.patch * U_Check-SetMap-request-length-carefully.patch- remove unneeded python2 script 'fdi2iclass.py' from xorg-x11-server-sources subpackage (boo#1179591)- U_Check-SetMap-request-length-carefully.patch * XkbSetMap Out-Of-Bounds Access: Insufficient checks on the lengths of the XkbSetMap request can lead to out of bounds memory accesses in the X server. (ZDI-CAN 11572, CVE-2020-14360, bsc#1174908) - U_Fix-XkbSetDeviceInfo-and-SetDeviceIndicators-heap-ov.patch * XkbSetDeviceInfo Heap-based Buffer Overflow: Insufficient checks on input of the XkbSetDeviceInfo request can lead to a buffer overflow on the head in the X server. (ZDI-CAN 11389, CVE-2020-25712, bsc#1177596)- n_xorg-wrapper-anybody.patch * replace default config /etc/X11/Xwrapper, which allows anybody to use the wrapper, by a patch for the code, i.e. [#] rootonly, console, anybody allowed_users=anybody [#] yes, no, auto needs_root_rights=auto is now the default without any Xwrapper config (needs_root_rights=auto was already the default before)- u_xorg-wrapper-Xserver-Options-Whitelist-Filter.patch * replaced by improved version written by Matthias Gerstner of our security team + simplified the option parsing code a bit + changed the "ignore forbidden argument" logic into an "abort on forbidden argument" logic. This is safer and avoids surprises on the user's end that could occur if the desired command line arguments aren't effective but the Xorg server is still started. + tried to adjust to the coding style present in the file (mostly the function name) + added some logic to apply the option filtering only to non-root users when Xorg is actually started as root. This should allow for full flexibility if root calls the wrapper or if the Xorg server only runs with user privileges.- U_Fix-segfault-on-probing-a-non-PCI-platform-device-on.patch, U_Revert-linux-Fix-platform-device-PCI-detection-for-c.patch, U_Revert-linux-Fix-platform-device-probe-for-DT-based-.patch, U_Revert-linux-Make-platform-device-probe-less-fragile.patch * fix Xserver startup on Raspberry Pi 3 (boo#1176203)- n_xorg-wrapper-rename-Xorg.patch * moved Xorg to Xorg.bin and Xorg.sh to Xorg (boo#1175867) - change default for needs_root_rights to auto in Xwrapper.config (boo#1175867)- reenabled SUID wrapper for TW (boo#1175867) - u_xorg-wrapper-Xserver-Options-Whitelist-Filter.patch * Xserver option whitelist filter (boo#1175867)-Add U_xfree86_take_second_ref_for_xcursor.patch: fix use-after-free when switching VTs.- Update to version 1.20.9: * Fix XRecordRegisterClients() Integer underflow * Fix XkbSelectEvents() integer underflow * Fix XIChangeHierarchy() integer underflow * Correct bounds checking in XkbSetNames() * linux: Fix platform device probe for DT-based PCI * linux: Fix platform device PCI detection for complex bus topologies * linux: Make platform device probe less fragile * fix for ZDI-11426 * xfree86: add drm modes on non-GTF panels * present: Check valid region in window mode flips * xwayland: Handle NULL xwl_seat in xwl_seat_can_emulate_pointer_warp * xwayland: Propagate damage x1/y1 coordinates in xwl_present_flip * doc: Update URLs in Xserver-DTrace.xml * xwayland: Use a fixed DPI value for core protocol * xwayland: only use linux-dmabuf if format/modifier was advertised * hw/xfree86: Avoid cursor use after free * Update URL's in man pages * xwayland: Disable the MIT-SCREEN-SAVER extension when rootless * xwayland: Hold a pixmap reference in struct xwl_present_event * randr: Check rrPrivKey in RRHasScanoutPixmap() * modesetting: Fix front_bo leak at drmmode_xf86crtc_resize on XRandR rotation * xwayland: Store xwl_tablet_pad in its own private key * xwayland: Initialise values in xwlVidModeGetGamma() * xwayland: Fix crashes when there is no pointer * xwayland: Clear private on device removal * xwayland: Free all remaining events in xwl_present_cleanup * xwayland: Always use xwl_present_free_event for freeing Present events * present/wnmd: Free flip_queue entries in present_wnmd_clear_window_flip * present/wnmd: Keep pixmap pointer in present_wnmd_clear_window_flip * xwayland: import DMA-BUFs with GBM_BO_USE_RENDERING only * xwayland: Fix infinite loop at startup * modesetting: Disable pageflipping when using a swcursor * dix: do not send focus event when grab actually does not change - Drop patches fixed upstream: * U_0001-Correct-bounds-checking-in-XkbSetNames.patch * U_0002-Fix-XIChangeHierarchy-integer-underflow.patch * U_0003-Fix-XkbSelectEvents-integer-underflow.patch * U_0004-Fix-XRecordRegisterClients-Integer-underflow.patch * U_FixForZDI-11426.patch- U_0001-Correct-bounds-checking-in-XkbSetNames.patch * Correct bounds checking in XkbSetNames() [CVE-2020-14345 / ZDI 11428, boo#1174635] - U_0002-Fix-XIChangeHierarchy-integer-underflow.patch * Fix XIChangeHierarchy() integer underflow [CVE-2020-14346 / ZDI-CAN-11429, boo#1174638] - U_0003-Fix-XkbSelectEvents-integer-underflow.patch * Fix XkbSelectEvents() integer underflow [CVE-2020-14361 / ZDI-CAN 11573, boo#1174910] - U_0004-Fix-XRecordRegisterClients-Integer-underflow.patch * Fix XRecordRegisterClients() Integer underflow [CVE-2020-14362 / ZDI-CAN-11574, boo#1174913]- U_FixForZDI-11426.patch * Leak of uninitialized heap memory form the X server to clients on pixmap allocation (ZDI-CAN-11426, CVE-2020-14347, bsc#1174633)- move xorg_pci_ids dir from /etc/X11 to /usr/share/X11 and xorg-x11-server.macros from /etc/rpm to /usr/lib/rpm/macros.d; no longer package /etc/X11/xorg.conf.d (boo#1173056)- U_glamor_egl-Reject-OpenGL-2.1-early-on.patch * GLAMOR: no longer bail out for OpenGL drivers < 2.1 (boo#1172321)- provide/obsoletes cirrus and ast usermode driver also on openSUSE (jsc#SLE-12127)- Update to version 1.20.8+0: * Revert "dri2: Don't make reference to noClientException" * dix: Check for NULL spriteInfo in GetPairedDevice * os: Ignore dying client in ResetCurrentRequest * modesetting: remove unnecessary error message, fix zaphod leases * Fix building with `-fno-common` * xwayland: clear pixmaps after creation in rootless mode * glamor: Fix a compiler warning since the recent OOM fixes. * Restrict 1x1 pixmap filling optimization to GXcopy * Add xf86OSInputThreadInit to stub os-support as well * Fix old-style definition warning for xf86OSInputThreadInit() * xwayland/glamor-gbm: Handle DRM_FORMAT_MOD_INVALID gracefully * configure: Define GLAMOR_HAS_EGL_QUERY_DRIVER when available * modesetting: Disable atomic support by default * modesetting: Explicitly #include "mi.h" * xfree86/modes: Bail from xf86RotateRedisplay if pScreen->root is NULL * xwayland: Split up xwl_screen_post_damage into two phases * xwayland: Call glamor_block_handler from xwl_screen_post_damage * xwayland: Add xwl_window_create_frame_callback helper * xwayland: Use single frame callback for Present flips and normal updates * xwayland: Use frame callbacks for Present vblank events * xwayland: Delete all frame_callback_list nodes in xwl_unrealize_window * glamor: Propagate FBO allocation failure for picture to texture upload * glamor: Error out on out-of-memory when allocating PBO for FBO access * glamor: Propagate glamor_prepare_access failures in copy helpers * glamor: Fallback to system memory for RW PBO buffer allocation - supersedes u_fno-common.patch- specfile: reenabled XFree86-VidModeExtension (boo#1164020)- u_fno-common.patch * fix build with gcc's -fno-common option (boo#1160423)- Update to version 1.20.7+0: * xserver 1.20.7 * ospoll: Fix Solaris ports implementation to build on Solaris 11.4 * os-support/solaris: Set IOPL for input thread too * Add xf86OSInputThreadInit call from common layer into os-support layer * Add ddxInputThread call from os layer into ddx layer * os-support/solaris: Drop ExtendedEnabled global variable * glamor: Only use dual blending with GLSL >= 1.30 * modesetting: Check whether RandR was initialized before calling rrGetScrPriv * Xi: return AlreadyGrabbed for key grabs > 255 * xwayland: Do flush GPU work in xwl_present_flush * modesetting: Clear new screen pixmap storage on RandR resize * xfree86/modes: Call xf86RotateRedisplay from xf86CrtcRotate * modesetting: Call glamor_finish from drmmode_crtc_set_mode * modesetting: Use EGL_MESA_query_driver to select DRI driver if possible * glamor: Add a function to get the driver name via EGL_MESA_query_driver- Build XWayland also on s390.- Update to version 1.20.6+0: * xfree86: Test presence of isastream() * present/wnmd: Relax assertion on CRTC on abort_vblank() * os: Don't crash in AttendClient if the client is gone * dix: Call SourceValidate before GetImage * mi: Add a default no-op miSourceValidate * compiler.h: Do not include sys/io.h on ARM with glibc * xfree86: Call ScreenInit for protocol screens before GPU screens * modesetting: - Implement ms_covering_randr_crtc() for ms_present_get_crtc() - Fix ms_covering_crtc() segfault with non-xf86Crtc slave- Update to version 1.20.5+24: * Fix crash on XkbSetMap - Drop unneeded obsinfo file and tweak _service.- Update to version 1.20.5+22: * miext/sync: - Make struct _SyncObject::initialized fully ABI compatible - Fix needless ABI change * xf86: Disable unused crtc functions when a lease is revoked * xwayland: - Handle the case of windows being realized before redirection - Refactor surface creation into a separate function - Separate DamagePtr into separate window data - Do not free a NULL GBM bo - Expand the RANDR screen size limits - Update screen pixmap on output resize - Reset scheduled frames after hiding tablet cursor - Check status in GBM pixmap creation - Avoid a crash on pointer enter with a grab * GLX: - Fix previous context validation in xorgGlxMakeCurrent - Set GlxServerExports::{major,minor}Version - Add a function to change a clients vendor list - Use the sending client for looking up XID's - Add a per-client vendor mapping * xsync: Add resource inside of SyncCreate, export SyncCreate * dri2: Sync i965_pci_ids.h from mesa * Xi: Use current device active grab to deliver touch events if any * Revert "present/scmd: Check that the flip and screen pixmap pitches match" * glamor: Make pixmap exportable from `gbm_bo_from_pixmap()` - Drop patches fixed upstream: * U_xwayland-Separate-DamagePtr-into-separate-window-data.patch * 0001-xsync-Add-resource-inside-of-SyncCreate-export-SyncC.patch * 0002-GLX-Add-a-per-client-vendor-mapping.patch * 0003-GLX-Use-the-sending-client-for-looking-up-XID-s.patch * 0004-GLX-Add-a-function-to-change-a-clients-vendor-list.patch * 0005-GLX-Set-GlxServerExports-major-minor-Version.patch - Switch to gitcheckout via source service, use the stable released branch but set explicit commit used in _service.- reintroduce Xvfb subpackage (boo#1151457)- Add U_xwayland-Separate-DamagePtr-into-separate-window-data.patch and U_xwayland-Allow-passing-a-fd.patch: Needed for gnome 3.34 new and experimental xwayland on demand feature. - Rebase patches with quilt.- added patches required for NVIDIA's PRIME render offload support, which is available since release 435.xx: 0001-xsync-Add-resource-inside-of-SyncCreate-export-SyncC.patch, 0002-GLX-Add-a-per-client-vendor-mapping.patch, 0003-GLX-Use-the-sending-client-for-looking-up-XID-s.patch, 0004-GLX-Add-a-function-to-change-a-clients-vendor-list.patch, 0005-GLX-Set-GlxServerExports-major-minor-Version.patch- move xorg.conf.d snippets from /etc/X11/xorg.conf.d to /usr/share/X11/xorg.conf.d (boo#1139692)- Update to version 1.20.5: Minor bugfix release to fix some input, Xwayland, glamor, and Present issues. Thanks to all who contributed fixes and testing.- Disable LTO (boo#1133294).- Add systemd-rpm-macros BuildRequire for %tmpfiles_*.- xorg-server 1.20.4 * A variety of bugfixes across the board, but primarily in Xwayland. Thanks to all who contributed with testing and fixes!- get rid of meta packages still requiring/recommending obsolete drivers packages (boo#1121525)- provide/obsolete no longer existing xf86-video-ast, xf86-video-cirrus on sle15 (bsc#1120282)- u_xfree86-Do-not-claim-pci-slots-if-fb-slot-is-already.patch * X server does not support mixing fbdev with other drivers, so claiming pci slots when a fb slot is already claimed only leads to quiting with fatal error. (bsc#1119431)- xorg-server 1.20.3 (see changelog below) superseded the following patch we used in sle15 before (bsc#1112020, CVE-2018-14665): - U_Disable-logfile-and-modulepath-when-running-with-ele.patch- U_dix-window-Use-ConfigureWindow-instead-of-MoveWindow.patch * Fix abort triggered by some uses of screensaver. (bsc#1114822)- Update to version 1.20.3 * Disable -logfile and -modulepath when running with elevated privileges (bsc#1112020) * LogFilePrep: add a comment to the unsafe format string. * xfree86: fix readlink call- Update to version 1.20.2: Lots of bugfixes all over the map especially for modesetting, glamor and xwayland!- Update n_xserver-optimus-autoconfig-hack.patch to v5. * Fixes provider auto-configuration with nvidia proprietary driver. (bsc#1103816)- Update to version 1.20.1: This bugfix release fixes several issues in RANDR, Xwayland, glamor, the modesetting driver, and elsewhere. - Packaging changes: + Adapt patch N_Install-Avoid-failure-on-wrapper-installation.patch to work with the new version + Remove patch U_Xext-shm-Refuse-to-work-for-remote-clients.patch + Remove patch U_modesetting-use-drmmode_bo_import-for-rotate_fb.patch + Remove patch u_modesetting-Fix-cirrus-24bpp-breakage.patch + Remove patch U_exa-use-picturematchformat.patch- U_exa-use-picturematchformat.patch * Fix breakage of Xfce (bsc#1102979)- fixed build on s390(x)- u_modesetting-Fix-cirrus-24bpp-breakage.patch * Fix breakage of cirrus 24bpp support on modesetting driver (bsc#1101699)- Remove /var/lib/X11 and its symlink, it is no longer needed and doesn't work with transaction-updates (FATE#325524). - Move README.compiled to another location and use tmpfiles to copy it at runtime.- U_modesetting-use-drmmode_bo_import-for-rotate_fb.patch * fixes rotation in modesetting driver (regression with xorg-server 1.20.0, fdo#106715) * might also fix boo#1099812 ...- U_xkb-Fix-heap-overflow-caused-by-optimized-away-min.patch * Fix heap overflow caused by unexpected optimization, which was possible because of relying on undefined behavior. (boo#1099113)- U_Xext-shm-Refuse-to-work-for-remote-clients.patch * Avoid access to System V shared memory segment on the X server side for clients forwarded via SSH. Also prevent them from hanging while waiting for the reply from the ShmCreateSegment request. (boo#1097227)- Remove n_add-dummy-xf86DisableRandR.patch * After upgrade to 1.20.0 the API officially no longer includes xf86DisableRandR, so there is no need to add it back.- Update to version 1.20.0: New features: + RANDR 1.6, which enables leasing RANDR resources to a client for its exclusive use (e.g. head mounted displays) + Depth 30 support in glamor and the modesetting driver + A meson-based build system, parallel to autotools + Pageflipping support for PRIME output sinks + OutputClass device matching for xorg.conf + Input grab and tablet support in Xwayland - Remove upstream patches: + u_xorg-x11-server-reproducible.patch Solved slightly different + u_os-inputthread-Force-unlock-when-stopping-thread.patch + u_xfree86-add-default-modes-for-16-9-and-16-10.patch + U_xwayland-Don-t-process-cursor-warping-without-an-xwl.patch + U_xwayland-Give-up-cleanly-on-Wayland-socket-errors.patch + U_xwayland-avoid-race-condition-on-new-keymap.patch + U_xwayland-remove-dirty-window-unconditionally-on-unre.patch + U_0001-animcur-Use-fixed-size-screen-private.patch + U_0002-animcur-Return-the-next-interval-directly-from-the-t.patch + U_0003-animcur-Run-the-timer-from-the-device-not-the-screen.patch + U_0004-animcur-Fix-transitions-between-animated-cursors.patch + U_xfree86-Remove-broken-RANDR-disabling-logic-v4.patch + U_glx-Do-not-call-into-Composite-if-it-is-disabled.patch - Adapt patches to work with the new release: + N_zap_warning_xserver.diff + N_fix_fglrx_screendepth_issue.patch + n_xserver-optimus-autoconfig-hack.patch + u_Use-better-fallbacks-to-generate-cookies-if-arc4rand.patch + u_xorg-wrapper-build-Build-position-independent-code.patch- U_glx-Do-not-call-into-Composite-if-it-is-disabled.patch * Fixes crash when GLX is enabled and Composite disabled. (bnc#1079607)- n_add-dummy-xf86DisableRandR.patch * Add dummy xf86DisableRandR to fix linking with drivers that still call it. See explanation inside the patch. (bnc#1089601)- U_xfree86-Remove-broken-RANDR-disabling-logic-v4.patch * Fix crash on initialization when fbdev and modesetting are used together. (bnc#1068961) - u_randr-Do-not-crash-if-slave-screen-does-not-have-pro.patch * Fix crash when using randr when fbdev and modesetting are used together. (bnc#1068961)- Update and re-enable n_xserver-optimus-autoconfig-hack.patch. (bnc#1084411)- U_xwayland-Don-t-process-cursor-warping-without-an-xwl.patch, U_xwayland-Give-up-cleanly-on-Wayland-socket-errors.patch, U_xwayland-avoid-race-condition-on-new-keymap.patch, U_xwayland-remove-dirty-window-unconditionally-on-unre.patch: * Various crash and bug fixes in XWayland server (bgo#791383, bgo#790502).- Add u_xorg-x11-server-reproducible.patch to make build reproducible (boo#1047218)- U_0001-animcur-Use-fixed-size-screen-private.patch, U_0002-animcur-Return-the-next-interval-directly-from-the-t.patch, U_0003-animcur-Run-the-timer-from-the-device-not-the-screen.patch, U_0004-animcur-Fix-transitions-between-animated-cursors.patch * There is a bug in version 1.19 of the X.org X server that can cause an infinite recursion in the animated cursor code, which has been fixed by these patches (boo#1080312) - supersedes u_cursors-animation.patch (boo#1020061)- Added u_xfree86-add-default-modes-for-16-9-and-16-10.patch (boo#1075249) Improve user experience for users with 16:9 or 16:10 screens- Update to version 1.19.6: Another collection of fixes from master. There will likely be at east one more 1.19.x release in 2018.- Depend on pkgconfig's gl, egl and gbm instead of Mesa-devel. * Those dependencies are what xorg-x11-server really needs. Mesa-devel is too general and is a bottleneck in distribution build. (bnc#1071297)- Replace references to /var/adm/fillup-templates with new %_fillupdir macro (boo#1069468)- u_os-inputthread-Force-unlock-when-stopping-thread.patch * Prevent dead lock if terminating while on inactive VT. (bnc#1062977)- Update to version 1.19.5: One regression fix since 1.19.4, and fixes for CVE-2017-12176 through CVE-2017-12187.- Update to version 1.19.4: A collection of stability fixes from the development branch, including two minor CVEs (CVE-2017-13721, CVE-2017-13723). - Remove upstream patches: + U_Xi-Do-not-try-to-swap-GenericEvent.patch + U_Xi-Verify-all-events-in-ProcXSendExtensionEvent.patch + U_Xi-Zero-target-buffer-in-SProcXSendExtensionEvent.patch + U_dix-Disallow-GenericEvent-in-SendEvent-request.patch - Adapt patches to work with the new release: + u_Use-better-fallbacks-to-generate-cookies-if-arc4rand.patch- u_cursors-animation.patch fix cursors animation (boo#1020061)- disable Xwayland for s390x again; it was wrong to enable it; there is no Wayland on s390x and will most likely never exist, since there is no gfx card on such systems and no gfx emulation either (bsc#1047173)- u_Use-better-fallbacks-to-generate-cookies-if-arc4rand.patch If arc4random_buf() is not available for generating cookies: * use getentropy(), if available (which was only recently added to glibc) * use getrandom() via syscall(), if available (there was no glibc wrapper for this syscall for a long time) * if all else fails, directly read from /dev/urandom as before, but employ O_CLOEXEC, do an OsAbort() in case the random data couldn't be read to avoid unsecure situations. Don't know if that's too hard a measure but it shouldn't actually occur except on maximum number of FDs reached (bsc#1025084)- U_Xi-Do-not-try-to-swap-GenericEvent.patch, U_Xi-Verify-all-events-in-ProcXSendExtensionEvent.patch, U_Xi-Zero-target-buffer-in-SProcXSendExtensionEvent.patch, U_dix-Disallow-GenericEvent-in-SendEvent-request.patch * Fix security issues in event handling. (bnc#1035283, CVE-2017-10971, CVE-2017-10972)- enable Xwayland also for s390x (bsc#1047173)- includes everything needed for additional sle issue entries: CVE-2017-2624, bnc#1025029, bnc#1025084, bnc#1025035- update build requirements- modesetting.ids: no longer hardcode Intel's Skylake, Broxton, and Kabylake IDs to modesetting driver; xf86-video-intel is no longer installed by default on these, so it will fallback to modesetting driver anyway; still you now can easily switch back to intel driver by installing xf86-video-intel package (boo#1042873)- Update to version 1.19.3: A couple more minor fixes, most notably a revert of a page-flipping change that regressed some drivers. - Remove upstreamd patches: + u_busfault_sigaction-Only-initialize-pointer-when-matched.patch- Update to version 1.19.2: A collection of stability fixes here across glamor, Xwayland, input, and Prime support. Also a security fix for CVE-2017-2624, a timing attack which can brute-force MIT-MAGIC-COOKIE authentication. - Remove upstream patches: + U_xfree86-Take-the-input-lock-for-xf86RecolorCursor.patch + U_xfree86-Take-the-input-lock-for-xf86ScreenCheckHWCursor.patch + U_xfree86-Take-the-input-lock-for-xf86TransparentCursor.patch- U_xfree86-Take-the-input-lock-for-xf86ScreenCheckHWCursor.patch * Add the missing input_lock() around the call into the driver's UseHWCursor() callback (bnc #1023845). - U_xfree86-Take-the-input-lock-for-xf86TransparentCursor.patch * The new input lock is missing for the xf86TransparentCursor() entry point (bnc #1023845).- U_xfree86-Take-the-input-lock-for-xf86RecolorCursor.patch * fixes random crashes in X in multihead mode if one of the monitors is vertically oriented (bnc #1023845)- N_driver-autoconfig.diff: No longer try to load "amdgpu" DDX by default for all GPUs with ATI vendor ID; this is now handled instead by an "OutputClass" section via kernel driver match, which has been added as config file to xf86-video-amdgpu driver package (bnc#1023385)- N_driver-autoconfig.diff: FGLRX does not support new x-server. This change fixes bad behavior(with empty config) when radeon ddx loads with amdgpu kernel module on SI and CIK cards, and x-server cannot start. Radeon ddx with radeon kernel module loads without any problem.- Update to version 1.19.1: First stable 1.19 release, including a few regression fixes.- Replace pkgconfig(libsystemd-*) with pkgconfig(libsystemd) Nowadays pkgconfig(libsystemd) replaces all libsystemd-* libs, which are obsolete.- Update to final 1.19.0- Exchange xorg-x11-fonts-core Requires for Recommends. The corefonts and cursors are not strickly required as long as one have a substitute such as Adwaita installed.- Update to version 1.18.99.901: - Remove upstream pachtes: + U_glamor-Remove-the-FBO-cache.patch + U_kdrive-fix-up-NewInputDeviceRequest-implementation.patch + U_kdrive-set-evdev-driver-for-input-devices-automatica.patch + U_ephyr-don-t-load-ephyr-input-driver-if-seat-option-i.patch + U_kdrive-don-t-let-evdev-driver-overwrite-existing-dev.patch + U_ephyr-ignore-Xorg-multiseat-command-line-options.patch + U_ephyr-enable-option-sw-cursor-by-default-in-multi-se.patch + U_kdrive-introduce-input-hot-plugging-support-for-udev.patch + U_kdrive-add-options-to-set-default-XKB-properties.patch + U_config-udev-distinguish-between-real-keyboards-and-o.patch - Disable u_os-connections-Check-for-stale-FDs.patch (not applicable anymore) - Adapt patches to work with the new release: + n_xserver-optimus-autoconfig-hack.patch (disabled for now as it causes problems) - Remove X.org stack version prefix. We are already atleast at verion 7.7. Plus we are updating individual components anyway. So the stack version is misleading.- Update to version 1.18.4: Another pile of backports from the devel branch, primarily in glamor, xwayland, and the modesetting driver. - Remove included patches: + u_x86emu-include-order.patch + U_modesetting-set-driverPrivate-to-NULL-after-closing-fd.patch - Update patches to reflect upstream changes: + U_glamor-Remove-the-FBO-cache.patch- U_glamor-Remove-the-FBO-cache.patch Fixes (bsc#983743) by not keeping >1 GB of VRAM busy.- U_modesetting-set-driverPrivate-to-NULL-after-closing-fd.patch: modesetting: Avoid crash in FreeRec() by NULLing a pointer which may still be used (boo#981268).- Replace N_Force-swcursor-for-KMS-drivers-without-hw-cursor-sup.patch by N_Disable-HW-Cursor-for-cirrus-and-mgag200-kernel-modules.patch Only disable HW cursor for cirrus and mgag200. This should fix a regression introduced by using modesetting for Intel gen9+ (boo#980124).- modesetting.ids: Add file for PCI IDs of ASICs which the modesetting rather than the native driver should be used for. This includes all Intel Gen9+ hardware (boo#978954).- removed u_exa-only-draw-valid-trapezoids.patch; no longer needed since pixman 0.32.0- removed no longer needed patch u_ad-hoc-fix-for-mmap-s-truncated-offset-parameter-on-.patch, see https://lists.x.org/archives/xorg-devel/2016-April/049493.html for upstream discussion; obsoleted by upstream patch https://cgit.freedesktop.org/xorg/xserver/commit/?id=4962c8c08842d9d3ca66d254b1ce4cacc4fb3756, which is already in xorg-server 1.18.3- Add permission verification for SUID wrapper - Disable SUID wrapper per default until reviewed- n_Install-Avoid-failure-on-wrapper-installation.patch: rename to: N_Install-Avoid-failure-on-wrapper-installation.patch - u_xorg-wrapper-Drop-supplemental-group-IDs.patch: Drop supplementary group privileges. - u_xorg-wrapper-build-Build-position-independent-code.patch: Build position independent.- n_Install-Avoid-failure-on-wrapper-installation.patch: Fix up build for wrapper. - Place SUID wrapper into a separate package: xorg-x11-server-wrapper- Set configure option --enable-suid-wrapper for TW: This way, the SUID wrapper is built which allows to run the Xserver as root even though the the DM instance runs as user. This allows to support drivers which require direct HW access.- Update to version 1.18.3: A few fixes relative to 1.18.2, including one fairly important performance fix to the Present extension. - Remove U_present-Only-requeue-for-next-MSC-after-flip-failure.patch The patch is included in this release.- Add patch U_present-Only-requeue-for-next-MSC-after-flip-failure.patch Fix a hang while using the present extension Bugzilla: https://bugs.freedesktop.org/show_bug.cgi?id=94515 https://bugs.freedesktop.org/show_bug.cgi?id=94596- Add automake, autoconf, libtool, c_compiler, pkgconfig(xorg-macros), pkgconfig(libudev), pkgconfig(libevdev), pkgconfig(mtdev) to Requires: of the SDK. This simplifies the build of Xserver modules.- Add support for a driver specific PCI IDs files supplementing what's in xf86VideoPtrToDriverList(). PCI ID lists may be held in /etc/X11/xorg_pci_ids (boo#972126).- Update version to 1.18.2: A big pile of updates in this one. Highlights include: * glamor is updated to use OpenGL core profiles if available, which should improve memory usage and performance on modern hardware, and got some other performance improvements for rpi and other GLES platforms * DRI2, DRI3, and Present all received correctness fixes for hangs, crashes, and other weirdness * Xwayland server has been updated to support the Xv and the xf86vidmode extensions for better compatibility, and fixed some bugs with output hotplug and pointer updates * Xwin saw improvements to window and clipboard management, and a few new keyboard layouts - Remove upstreamed patches: + U_kdrive-evdev-update-keyboard-LEDs-22302.patch- Backport upstream patches for Xephyr input hot-plugging / single-GPU multi-seat support: * U_kdrive-fix-up-NewInputDeviceRequest-implementation.patch * U_kdrive-set-evdev-driver-for-input-devices-automatica.patch * U_ephyr-don-t-load-ephyr-input-driver-if-seat-option-i.patch * U_kdrive-don-t-let-evdev-driver-overwrite-existing-dev.patch * U_ephyr-ignore-Xorg-multiseat-command-line-options.patch * U_ephyr-enable-option-sw-cursor-by-default-in-multi-se.patch * U_kdrive-introduce-input-hot-plugging-support-for-udev.patch * U_kdrive-add-options-to-set-default-XKB-properties.patch * U_kdrive-evdev-update-keyboard-LEDs-22302.patch * U_config-udev-distinguish-between-real-keyboards-and-o.patch- u_os-connections-Check-for-stale-FDs.patch Ignore file descriptor if socket or devices dies. This prevents the Xserver to loop at 100% when dbus dies (boo#954433).- Add 50-extensions.conf Disable the DGA extension by default (boo#947695).- Replaced u_confine_to_shape.diff by u_01-Improved-ConfineToShape.patch and u_02-DIX-ConfineTo-Don-t-bother-about-the-bounding-box-when-grabbing-a-shaped-window.patch.- u_pci-primary-Fix-up-primary-PCI-device-detection-for-the-platfrom-bus.patch Fix up primary device detection for the platform bus to fix the Xserver on older iMacs (boo#835975).- Update to version 1.18.1: First release in the 1.18 stable branch. Major themes are bugfixes in glamor, the modesetting driver, and the Present extension. Xwayland users may want to apply the following pair of patches in addition to this release: https://patchwork.freedesktop.org/patch/72945/raw/ https://patchwork.freedesktop.org/patch/72951/raw/ which combined fix an input issue when hotplugging monitors. Both are likely to be included in a future release unless testing discovers further problems. - Remove upstreamed patches: + ux_xserver_xvfb-randr.patch + U_systemd-logind-do-not-rely-on-directed-signals.patch + U_kdrive-UnregisterFd-Fix-off-by-one.patch + U_modesetting-should-not-reference-gbm-when-it-s-not-d.patch- u_Panning-Set-panning-state-in-xf86RandR12ScreenSetSize.patch Fix panning when configured in xorg.conf* (boo#771521).- Handle source-file-list in build not prep - N_xorg-x11-server-rpmmacros.patch: Delete: Process xorg-x11-server.macros in install- U_modesetting-should-not-reference-gbm-when-it-s-not-d.patch: fix build when gbm is not defined.- u_busfault_sigaction-Only-initialize-pointer-when-matched.patch Only initialize pointer when matched (boo#961439). - u_kdrive-UnregisterFd-Fix-off-by-one.patch -> U_kdrive-UnregisterFd-Fix-off-by-one.patch- Add test for defined macro %build_xwayland This can be used to enable the build of Xwayland and the package xorg-x11-server-wayland using a macro in projconf (boo#960487).- Split out Xwayland: * Build a package xorg-x11-server-wayland * Limit build to Factory (boo#960487).- Enable XWayland on Leap also (boo#960487)- u_kdrive-UnregisterFd-Fix-off-by-one.patch * Copy open file table correctly by avoiding an off-by-one error (boo#867483).- Update to version 1.18.0 - refreshed N_zap_warning_xserver.diff, N_Force-swcursor-for-KMS-drivers-without-hw-cursor-sup.patch - supersedes u_fbdevhw.diff, U_linux-Add-linux_parse_vt_settings-and-linux_get_keep.patch, U_linux-Add-a-may_fail-paramter-to-linux_parse_vt_sett.patch, U_systemd-logind-Only-use-systemd-logind-integration-t.patch- Update to version 1.17.4: Minor brown-bag release. The important fix here is Martin's clientsWritable change which fixes a crash when built against xproto 7.0.28. - supersedes u_0001-os-make-sure-the-clientsWritable-fd_set-is-initializ.patch- Update to version 1.17.3: Various bugfixes across the board.  The most visible changes include fixing GLX extension setup under Xwayland and other non-Xorg servers (enabling core contexts in more scenarios), and various stability fixes to glamor and the Present extension. - supersededs the following patches: * u_randr_allow_rrselectinput_for_providerchange_and_resourcechange_events.patch * u_CloseConsole-Don-t-report-FatalError-when-shutting-down.patch - removed evdev xorg.conf.d snippet since it's meanwhile shipped with evdev driver itself (since version 2.10.0)- u_vesa-Add-VBEDPMSGetCapabilities-VBEDPMSGet.patch Add VBEDPMSGetCapabilities() and VBEDPMSGet() functions (bsc#947356, boo#947493).- Backport a few upstream fixes for systemd/VT handling (boo#939838): U_linux-Add-linux_parse_vt_settings-and-linux_get_keep.patch U_linux-Add-a-may_fail-paramter-to-linux_parse_vt_sett.patch U_systemd-logind-Only-use-systemd-logind-integration-t.patch U_systemd-logind-do-not-rely-on-directed-signals.patch- Improve conditional enablement of XWayland.- Add patch u_0001-os-make-sure-the-clientsWritable-fd_set-is-initializ.patch Prevent segmentation faults with more than 256 clients (introduced by xproto 7.0.28 increasing the max client count 256 -> 512) Fdo Bug: https://bugs.freedesktop.org/show_bug.cgi?id=91316- Update to version 1.17.2: Pick up a pile of fixes from master. Notable highlights: + Fix for CVE-2015-3164 in Xwayland + Fix int10 setup for vesa + Fix regression in server-interpreted auth + Fix fb setup on big-endian CPUs + Build fix for for gcc5 - Dropped patches: + Patch110: u_connection-avoid-crash-when-CloseWellKnownConnections-gets-called-twice.patch + Patch113: u_symbols-Fix-sdksyms.sh-to-cope-with-gcc5.patch + Patch116: U_os-XDMCP-options-like-query-etc-should-imply-listen.patch + Patch118: U_int10-Fix-error-check-for-pci_device_map_legacy.patch + Patch119: U_xwayland-enable-access-control-on-open-socket.patch + Patch120: U_os-support-new-implicit-local-user-access-mode.patch + Patch121: U_xwayland-default-to-local-user-if-no-xauth-file-given.patch + Patch2000: U_systemd-logind-filter-out-non-signal-messages-from.patch + Patch2001: U_systemd-logind-dont-second-guess-D-Bus-default-tim.patch - Changed patches to work with the new version: + Patch114: u_ad-hoc-fix-for-mmap-s-truncated-offset-parameter-on-.patch- U_os-support-new-implicit-local-user-access-mode.patch, U_xwayland-default-to-local-user-if-no-xauth-file-given.patch, U_xwayland-enable-access-control-on-open-socket.patch * Prevent unauthorized local access. (bnc#934102, CVE-2015-3164)- Fix GNOME X Session for some hybrid graphics (rh#1209347): + add U_systemd-logind-filter-out-non-signal-messages-from.patch + add U_systemd-logind-dont-second-guess-D-Bus-default-tim.patch- Fix build of s390/s390x (bnc#933503)- U_int10-Fix-error-check-for-pci_device_map_legacy.patch * int10: Fix error check for pci_device_map_legacy pci_device_map_legacy returns 0 on success (bsc#932319).- Add xorg-x11-server-byte-order.patch to correctly set X_BYTE_ORDER when compiling tigervnc on ppc64 architecture. Related to bnc#926201- U_os-XDMCP-options-like-query-etc-should-imply-listen.patch * Enable listening on tcp when using -query. (bnc#924914)- Enable systemd-logind integration support: + Add pkgconfig(libsystemd-logind) and pkgconfig(dbus-1) BuildRequires. + Pass --enable-systemd-logind to configure.- u_ad-hoc-fix-for-mmap-s-truncated-offset-parameter-on-.patch * ad hoc fix for mmap's truncated offset parameter on 32bit (bnc#917385) - N_Force-swcursor-for-KMS-drivers-without-hw-cursor-sup.patch * hwcursor still considered broken in cirrus KMS ((bnc#864141, bnc#866152)- Update to version 1.17.1: Fixes for CVE 2015-0255. + xkb: Don't swap XkbSetGeometry data in the input buffer + xkb: Check strings length against request size- u_symbols-Fix-sdksyms.sh-to-cope-with-gcc5.patch Fix sdksyms.sh to work with gcc5 (bnc#916580).- Update to version 1.17.0: + Continued work to strip out stale code and clean up the server. Thousands of lines of unnecessary code have disappeared yet again. + The modesetting driver has been merged into the server code base, simplifying ongoing maintenance by coupling it to the X server ABI/API release schedule. This now includes DRI2 support (so that GLX works correctly) along with Glamor support (which handles DRI3). + Lots of Glamor improvements, including a rewrite of the core protocol rendering functions. - Remove upstream patches: + Patch130: U_BellProc-Send-bell-event-on-core-protocol-bell-when-requested.patch + Patch131: U_fb-Fix-invalid-bpp-for-24bit-depth-window.patch + Patch200: U_kdrive_extend_screen_option_syntax.patch + Patch201: U_ephyr_enable_screen_window_placement.patch + Patch202: U_ephyr_add_output_option_support.patch- Add xorg-x11-server-source package that contains patched xserver sources used to build xorg-x11-Xvnc.- Update to version 1.16.2 - Fix present_pixmap when using present_notify_msc - Fix present_notify to return right away when querying current or past msc.Xext/shm: Detach SHM segment after Pixmap is released - xkb: ignore floating slave devices when updating from master (#81885) - fb: Fix invalid bpp for 24bit depth window - supersedes U_fb-Fix-invalid-bpp-for-24bit-depth-window.patch- fix bashism in post script- XServer looks for dri.pc during configure. dri.pc is currently provided by a Mesa devel package, which is pulled in by other requirements, but it might be better to explicitly require dri.pc.xorg-x11-Xvfbh04-armsrv1 172949747321.1.11-150600.5.3.121.1.11-150600.5.3.1Xvfb/usr/bin/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:36103/SUSE_SLE-15-SP6_Update/956149195c107d60d98804b3a2d233f8-xorg-x11-server.SUSE_SLE-15-SP6_Updatedrpmxz5aarch64-suse-linuxELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, interpreter /lib/ld-linux-aarch64.so.1, BuildID[sha1]=ced440b9e785727a01c1203b4758819d1d70b6bc, for GNU/Linux 3.7.0, strippedRRRRRRR R R RR R RRRRRRRRRRR\^UfQ @(xorg-x11-fonts-coreutf-8a66da0a17d260aef008b5da518263b0def96006d814fd57597ceb86337bf70ad?7zXZ !t/]"k%#4ղS@џ="9qN.긝ގiŊWiLo+_f.8/7[|m 21ݑ s~j*X ,&_$EO0i+TI6P:z?NHd3m2˂@'M_Ԩy3pH'5ԤcTtx p t FܹeSz^7opHuW_t"#h95 mK喎vroF~BVC? 4Hs`(hG}JG{u({tGOc.DŽ&ٶ=}R;" Eq\́ 8wuMY*`-= ?}xS|>o.w6'r C,b,[4#v]ӹ\7K9*8 O(D* ̟kp2~E7EdJPe)>oӑ 85"*u Dj3ǬM MgZUBqcgdMue5 8TiU"74(I I! m!aM50|HOf-1oKe2%<(IJI$@ J~ױ݀³YP$`Ք d2OX|9 Qzh |7  z6Sqˏ LFUI22lp c:>PNSRͻJ=3D axT>M뉵ªl?ہ/\tYd u''obJqM $CXrH^]rTbQp s2-BߎMMM: oT=}h;jkLQANQG31LcdI_Ikw?xr,w8Jl?M>p ԚyW!(e/1 &aʥHdFm=Zm/qH>A|č2Ub&vjuj?Bg8 (wr#Z [8blJk3'N;(ƈHmo`#d\rNP‰QP0 e>XP > Zq,5qabY #J;ED, kcbKMi;rZ'+QȵFoA9xBy˖E ˓QNd^+ vOYUoCR4:=A4%y9`NYN5C_jL^c#8 Z<0k[kzK L*u">7+:pw*;#>-BWOB杁ڊC]J,F-hW\F?Z'g;PO<լiNJ  :6 $`M)KΘhF!?s8 M0-~|w3ǫ{OYR#)1?dPt -Ow!nص^x8" 'etd+;61θT^bDB Bw+p%d(O̕3DG!G@cӛyI WVd󥭧<^xY`@mX&OaS VK߶D3y">^24O"?0FTxl\5U>9Hbͭn4Ekjk-‘|zl aԹ:YWګ{{tIjLX&L~kمIe)-{!_I-.U5{j<@fg]ʡ(QT1?yX˗XJC0 X6`zӭsn5k[IΉ)gI{LZ]G:>?"Wz7깱Y.5g…iZF("iV9Y*W{},Xv~pu[4&l4l>kCY0@6zx*>]\䓇@uX.220vi6; a"_g \>>,?vqI7B>([ӗq}9L]wqWЩqCl,R&87Czʥe z 쏿{PwGlLaj4dTʡ C0u/FY BlLɬ&AP?"w|XaݱHY%jYcͺ20qJX^SigۄrضD2} ]ڥ-JF+Y<=W >(iR#sؾ Cڼi԰wmcԁN9@ /l2}؟f\KHWVϱUUnE!ւU$̼SȚd>ZxHD vu^6p2 w'U)3Wϟڵ gw\UNxA\dڰs Hizqi6 1oW ݥ:.''J%rn8 xl\DݗyLދKQC9lSIQN丕䯺{7vیmm2Z>/)x>="u$\O2vF/G5ReQ};Y 4K]O|˓[IECg^H`šBC[J9WSV q=*Uޑ>- ̪n) }K aPP˴ u[ކjYjF~%z /TL:rB,<lv ᮗG%DAyph'˾zlѥnTz8O\5V ݆qOf4ԜT⒆o|[vWfT3l|:~vV [#6Źtgap`Ev=xaqQ`ݙi*j|Mp\H9Ðk{!0oRF؎)ks3 o_}OtrGNEwSeJT %jT8"tX6$ *vZ.)FWK0uR=IS̝M4u:{H46$آ_]!._{ \a5H8@1 wJŌԒ1ca) ز'{B[Q. \:F>@= tfρnhY#0>δ*K4su R\DS.n24}LEu0GlqXOE&7Ě9W:=(垹vrθ_0Ky8RhZ+恩tZ}˖.2N&a"0oqƸ6]ڥh)gi# G$fqvFXn [ׁHYvy"IRN=ꊫrqƀZ%2Y #Ӷ]5lpBkO~-%xzxְ֠!ɽ+Dڀ-P:qWsdA.P<_9nS%jIlwց9\| ~_G Ƣ +Ϣj9[[@I. +1Am/'Lbfdllpmܛ vU 5 քNAd{|yo/(UdBD[1-ZYDg𧅷oxxPV,raz{Zrt\e{{ JR{YxA׼4iIȿ#S_kHmuCI IJ5Dïtٰ*C;Kr:3̓J'ʳ0sFI']j7Йelq9m\, O=h*8v50ϰp<(lwIma|G\UNcBz'+?Y,cФ5w ְ?4n3<6:'L7+LϗA8+C`},mWN}oOd:)lNشJR*41Fî\z}`c>JEr #fuUwrrVaC]NfԶO9P\痭K0CH~2+p9E\Mbօ' ӞO{7A^qoS6}RM^Zµ!:(i-(3){?>ϺS#ûȻ .~qL:߯7s2H?y& !d#ev(dtk/ş[m2HGq+ UPM{Qݻ>lR|2eNe>j9GERB!YJ :{QT YuoA^H2TA $E2 C.[M2-X!voikBʋ'{ (6~5^\}(}V2WU@Q!-ko/!M*ZR/4>j>vK8<:?0*:as+aѴ)QwamM!dNp=lc:܌UP83KnQZ\0jtF |sUEha䞨Ɠ9Ztؽ.vUiNm0Wi %ʵ<jl0 x;ZFD9v0氱$` ?G}fkrK#VyNo.0\_BcpslqJL`~'.~qfnV>Iv>'mͽ0JUyP3PHX}}oF,頼ꀳ U'-bN%ߘiEmyv֒$GJm[? 3!c%AtY[9|EYOc;_$%~VBL )G۹J㛝-O;˳mmW:}7.xmBeT~XXoʥ? $6t}~bYnq(I|o8T7(Xִd6)n5Z̺!Icy{w`olMm%n+ehb>!{=U$$o RM8t5vg};6/-<\ۮDb䂯yZ1:J`l_8,I д@`Aó O# |k ~goM?kU5{b!}0jG;@?!T}JL tu6֟b,|ڌLD:BrPD+;HG: VC%z{6V8![8`(AuߌTlP $KZ3+ L$pԟ#s4^;*=x]-p춘8%/*HهǜMunt/B$_Mpqu˒r{24oO{?OԎh0,.cPlYI=;Don|/{= fNc}~HܫNWpZ4K 爷BQ3@o~\;D{y3<,Dro.œ2 EՁ7a8+4nz:t=FX$fn7ͧ.;BCPW*MQ1,emh;Ov!;e?SG!r9z^/vC;`8-_;۴-Q x)ux>b6$Ib)X@fXR?d68ka(>WS[1Al,tYeT+&ًÔRn=ctK>_=_'"?oi~Qۘԑ=IC&\h 5lT6) x#9 s젾*Y2 mrWeiEUs/]JYfrd`{_hL%G/k Sv;]sP0@N+4Nʗ#;$-(AAÚ*(o˾#i(q<ʎYfoSuű:sw&LJS/u#=H:%zoG%f`Ed(ҦyOCq_v!bP"7O?Ҕt679;{8LPTgB`4:h! $St=9 ^& % Q71͆E|*̳Y םA"r 7 fV9cO*=i39l{Wzۍf<_BfY|} Ԧ 9_9_+1[]F5:Lŏñr ],Q +S$3:qEnKê>X#1H.'li'خC=V\._˚8c8ZR?8kF9^fa%u?PuLv#$ 1h"!r՗%"dY8=D{r͛J|u\x**L Eԋ,pk"7֠cdmԟ!U!yXMK1 f9QMα:R]X7Vfٴ;Bbk# zˀȉV4o"TbzUAI:[.(I>Tq]- >P`⍲-;C=Zv<̚7:Yckm$p2d"YZQT|of2T&Mo L~1:1@Ύ GbcG̍w:5w_ٛh ,O+pw'wy G7'[iX`n#%bucvY؂$nYӒWy0]dʋ6_E,h7u-ײqꔢnI>=*|kuoNU.?Ѣj(qCO-RP-qpćȴT0قG$@3kaJ /Ls\ ?NB]dw[-MuiSx{;vFMZVyYAGkL5X8y_uϣϵj)yr0VLd8 dj7 %6>covaB蜻t '9u94o ͳ%i*O|ZW7)J W&k d毗^W> iZXan$F tTJ3ɯPOo^fW4 w _׿U pK;+{b`#$I6Nl`3_dD\]-m\(f%]TZgf )3~:{U•whn`tv~l|ˉ8C) &Έ>AM?gH%aao5^&A;e 2$?uj֟O.w1~]x˟Md֫fY}G@F_yigÏ:lVn_PhDC"e겷c' #=L(G~e NT!nSí=ZK#\}3jv 6_dׯE8# .D`Xӫgf!&6n9Mh8{al?&&u7(v+wHmo`:)7Ǣaa!W݋%jC5u}na\> xe+FS8*zwԒh&S4Kl$U뱟".&|,I,tPg_x!ms챰pCZmVlSyF[ǵL(eٗ  .kqŌB Ԇ6Ȁ Žf~{dknXɨiS;d, q7܉MYx:;uk>/k.kFDX8uRy^FiSXaJ /h;YĮB"Og6P }UN2M!*%OjeQVOa%Yfex5xN/n Uğ]UmC]"kP/xҲd\ݒ 4&@MrTfAkkpwTp:eնCQ޿Z $(Xesgg[/ "S )X㮵eF?aϽ _=0U6ڴn)+N )[P$X)y"OvtFԞ");MD3U"ꆕQDaK3Aa]~,(cl͎^+8(h8P|T8Pۓ쿑n(Z}r'"]}[z'rSorhZC|G#[E*|v.ѓs/a ڭB wP<9U1Z̚Zjb}AdFvb#q OYJ[+`q0 x:s0%f 8o*;* Cȼ(Ls4 xb=UDŀ^]zé/)]85М@RM! J,j1fSTHfI\tCƑ%WFK2^*uLʱCuM5܅ o ۱V~x:ÔhN3>[ސ@oR1ڬf?&q޹-ol((CA~'52:aj`5TgKʾRq~q&x>8ĖJ98toDEr[:9rT#:`]ZcYDzy\ 9u|tYHޣXKAx\t XQcFt`v|ä |@Hf[nm{7&"5VH %1PZ%p851X/l,}kM%pFı|PHyDáAMWDT|BcQC?#UI 9"E/He {zuw"J/WD 4}okN2Ұj .I>20ӰnlHf-,(k=ݛKf%FPQ~=µG{EgR]xОLqT4nf4qj2?orSuy^.m]I&j wy (>\cE 7<;Soԇsd tLǯNZ Y/9g*A?fXy;}?ܻclP-%f'ӇNyl`JQs(*%tr/ۊOGht4AO <`5AHL?nt@te7s`,$AѝYDٱbc; h#Gi\iy6f9Ր?[p0^dEEC;bD]@2t]W:)+E˨i#1f4r+CLHң7>'<=8d]ͮp7Pm #(P>:o?@a{[ ˛Jt0uPpTi¯[8_ *K,6xZߧDmDde6DS'$52jInARw_+JCBnP~8釂ڼ{#Ni$?l@ egȓ̡Ɖ C^qOT 좟P5(@xVv5Q72bJ5VBpc&$M4Ÿ!76b,H"7fZv$ UHgOIL]u9b}"\}aG]|Dl\&x*B+bPؼ,}(FgYL0DɎ ]51PV=)MG8XMU';?Fhc룡AJwʌzҔMҧ!89 \-&M_*rߕ/YDܢ8TuVB1y&Q 'jh-˔6E`I#f(&cƑw@I=fFilOK2p-O^OFySZ;u,qj %+>,?`^t+D7v6<$ߌ~DM)LXCNQ Ql^rSYlV$\pcJ&=|Nh 42oO$׎rjey*k_oHϞ52Fǧ'VA+y֫d@KU=(?-}1im|.4Ίdhlw(hK6 BBVx-&NNf\:,hZجٹwV(emUڌPD 2Ɔ$cb tn6??"Gv kejQ.ƳJs,(q|`|b++ܝyyEF5O lOK4b+rjB^%?PAґ'`䍵ush>(RCDNP)}.((hliܷ{;JS,>?-7Y TEu`6<E2e 0BJ(P~<6&(Gb,U< K?Pdw yTZq=/Wyu?Up\TEs(bZf5 Rd@tvAJ}A%uȨ&֯qߔ?,3neU]<7UQxgVJ.h-YIdGT?9u:o ^bTW?nko_c=2Df0C}#f|O)JK0f٧e+NR>)t[=LB~<'{#W!W;Iqi#HOnD1.)9*o#9`YP]}xzpCT1`6y Hu ߄3{bE7 Yѻ osP&w:;k[w?N7n.-/%nT$.OT(R]^뉚J(flQ/ß]z|!PΨ"Hnߎפ ?,NҧT 74 ZP޺7~qEpEUb*{4tJĮz"f -дnv QsxS(‚FtpߓC;Y[ \Bh|9:x>gɍWK~.°x2usK5>zڷ;gVKih<̧]oq6y'# +TC6-PV%\xR GB'?W2HHwdmN,Xm&佨H "B3Gu6 3p<jG0 11 [ܝYWؔ3\1W+Icez%_O[#91݀JũĠ䁂u{#f8pYu yi+fЛPH z2}̓%H滣%qBI_ .8RUr"qmu Pw5 5:TXVگ󰃊8 i췽!)ll]۶=2Djٳ?j7.syZ[UFA2s) 8'^ZbG,2LЌQYzR E #by߃gw#|D@ja=Qg|\%sO]`Bn-b&Xauwl_[¥ BSPUUߠ ٳ =JV?NXqB61=) o{YtxlKw k2"NjLtBb4TFwÙmsL AZN}K@vQ-Iu\3FFy^:Y􈐽: x\wXXVG(+d1 1PGlY<95V5Փ!0tOuTf뉚QY2q\L*=PW q23cٟ_Uw~gkP3$koEE?|`ekQ&{/-R$hP߸s.Ưt/Bת%)B cMC< lTIlVO `U=.Wq#:۵8U&Juh"ǀ/796&Jux([$1Erf6^hЕxU;V5,'X'`MI"dUfy Ec0{(h TqC->i:[*{q4ļ" bouA}9z 0d]Tk3P>9M - c\;,sԾ/]Eh>2|$qюy@JyӠ;˘oO!¥XAޣcϳ$^(ޮH5}`-1ȺgѣSZ>C\~д0t3`Mde21C}mkBp+r̐d =הߓC%d&7)Y~:( E$r4rOrՆ&Dɒ m9%_-f>X)AfIPA@J@jݪ矴V%_~ ƣTq. BrR8,{mǟ)jƎRX)<,y|xDB#pC)uɝi3 TS%Z.x+76n(ACYyΆDT.uqFw7V!,VU.]tY>rֺCz>Q5\byUaTܩA!UA30RhYݜ}k_Qvj] .j5h<өjnXo".p`X(ԚK"ݜ0uf7'35,ſtųܴ]ߖ LkNS9s[fS 1Ș?ymJ4``h>*kZ[]LZ]pBaz?&sY81 gk>|Rf*96&C96G;x#C?E +ajbm=z̫dx0WEzc\Iѭl -#,蝷DOKV#*э+)0rcEǫ Ցn.{vkDk䄄.q տN2PkYV5;g54i ;#fJEл̦hy7:nh͐>P ^!<"UZNJTQwTX(^z^p* fS}B6]Q~#5!U~5 8sт ZCxCޞD$*ժ,p9}Ci},xn4Ã%Y7|Y/ L>eI04шQ E!iY_un\.axJv2r[Dt~H> .Xk㯚aMq\rCfW̚bM)txGXdcy4c[n%|M= D 5A&3L%tw߿Rl{꧴ZKߖzjW<.P2l}Z>L|8,FR.cyJ{cqʺJ3`zd}z335d]W>9E}p&¹¡"r7wp9:^ KgZ5 X.F^ U8'D? Я_ga ]K72+V7/q~t(6\a#bȜ!L%Vcɕ'OXT[֍y\_{TT " /;#w I:Ҽdāa9FۡA2 osyWg50R+g5ނnMU_+0Ӧ.F_{;3 )ߌ1|#򖚄.`_?Tr>4";&r+R),Xg|dس_DŽy5IOj :~mpRb_]L=q |QAتc̽T'Sis/u ⵡL|瀬h̃v 363aȏ~Z:( *5_U!#Ǵ(Y$>f x1b}EA)C Ҝk2B% 7zrWrKC>aRz'Z V +bi/t`bz5IB/(oqjK%`32hirftإ9=ဴгmr ̡a_pd_ j}K>tn:K8zM)̜{IɝVjG` /Y dPZd2^&`Jκ!@V5Q٧( j>=tVM$O\ECD::x#WltgC̾zc^$W*v󏽹Ԑ0۪5Y r+%׆5:s_qXՆ49sQ-ƊE6nb0}!$GS?=WUP>UHRH9Y_,S=IeP,qF;bDG/av|`&DHH X,OGtA`LJ岤[sUqȰ_TGъ;bQ2( kWUUDZt\S_Si[JϑxQpbCK7#i}9ybדňgznrf$9F7 ]Co.WL^. ]ʭ!$Jnm&r67 FVosqg0k@.!d 6E^ R4\RR0z=|`f?jFb$! i]X?[tpfO}yTYgfꋤ[Jډѭ O^'tt fV^Sڕ66+C.lG^.^ǴNX v|Q 1GYeZ-*u{k97Fe{e+ @Vi AA4ۗ;tY~a0p ba[ M[Y+wvQ֧cyDؙ:Rm Tr̯pw5Ker% a,&ҽ\ME^ia*DFdkk|ը&h>c9T\@kRO0{F:h@r ރm^,3Z* ;L`،_ݛ<\ƚJ' 3yfduϱ}61T(JGjF> 6tE i2?pD 5>_RFg3㛔P3 #Tz*eT`>vQGlQI捖WϦVaD2(IbSa32^2@ʪZiNTEr f @T4I^ub*Q44R yr]+67n?fnd ڮtIRPe!0xfm굚 q`*Sy0bS~5\蟉IfY`<C]@l吀}Ƙa6ϙ{w!pj*zwY-)7S uQ]ظ=!d]>Gml;/NC\SE =iF ߎQ h[ gqdH95!c7coSJ8d[@1('RiT;cuR[(y2 @I2؍1[$}FNvdXH%=7;VP֌,pC+̂\,4S$]%vg":!ln:Nةz [b#֏; kt (mQxEkE&mG؅ZTU#+-6a_$XAte̾(\Ԡ)9E#TʼnjpބT”vէD~آdeE-lq]_n!%=su~Z& Ybg9119(^b ܧU\\^y}_ҁXqYOI>W3t5.J{C+]P/cO$ywcEX!Ysf.w޴=F nþ1Y'+B@1LN"Cwϊ'WdTVh/9Ҩٹ94w5!vo )vT@dr\OCs|d__Nyhӻn=}y_A,ye)sFnxt2׮ wQu7G穻EЭ} M, Bn TB+с1xG^$ާhai߆&G3%uO.VΠ/}އd y~1!lя(Md )Y!̍d%nN咛ch(Q`1JzG1__ܓA%mop7MD'}5 W׀L~&yBOW!mxr8{@SֻvHqԭЎz/Ʈ.cfDy$gӆtf xـbtsgi02P0W, $:8q+'xgY<HWg1) BoqquwOk3~ݧ Ru((d[ Np {r'ch:(ܾf[׻f9>c;EAEC7rE1.ox//&SB5JʕBjAKc>M9zY[p;{0y;o)`HNaʗxӠ ꆻ&%[ž+C{7S~m"0L]NՑ3#NT2w7_nRڠiYL*LkEl'75~5 #YbXl;=5Ń;o~ߊE-ߥBx-;WwfzOpV)aOX*Ս#<@Kg%-CV&mT &6ks->OKFUzlq i K uZ@ȷO^{s9y:PN$\(J ¼(6 j}qu~cJ1B m9~\0z7T/RcsrpYgizkP'6Ё"AS=PZWQdS4/Abf]_}R<(JόR wdRJ^ ԢaVFZ_n֞,XL $6_d4c8}Ҍڜ&ɷw-V˽^VWdm|r07f\6 AY3x!ˎX Uq(Qts}J|@r$;:\Zg| $ڪIZ9:*.ٴBi]kҖI}Rt]+ayTrni%CTD\h!'SɊ]wglouTp PԘ7r-b$3& @E!y|*~\Ix8mGooLÎ=^#\6~An(#BN{bs!MCF)AS<y_N7V C;AI`r1i :딿XG9kXdek]30K9{&JaK]Xc8͂p{0-.*6a&od߆D veB:vIcd}J/mWl.NiH]Q68oA Iy. !kp*•I7#-a}?SXŹ#BDZ%:K/&A$w[9Erxf.2 n~xH(6}$[d%YxITjgYddvbBT`$fE?=,cuY ŒtzJbG#S``>/i]# 2`PP^D¦0&]:% ʩ9!u`ṣaG8c9LdW50̏Q=U43鵻D#:9}V:Lxk,(u/;i79pSd"x;)<`[7l)H˘!!>WоMBqG>f1Lx/+"xuQ qKH/cDK-w{J|`]#Q`fҲ/m4W\S6@4ŸʾavS<*Fn#8m9rԼ5\3:u(=`+16ڮݶC=8.^Ws}dS5Tޛ9=1*{g A@& WR3:\L^YJYV&ܟ-i:J6T§?Auw9S$~K)7Yٸ532*"@0ԟ M!׍"8?WTI, n,FO>/m]j;q#q(P5F6_y$BG_ Aṻ^n}a"d1@MPEh- Q(y3g q*(*)n8E^D/d֡gP*b!3)׷AI¯P' md>4#Hy9MXxZ⬬OVMjԡ*:R"e,7߸]Qo#izqw+MTN&= G-eQ}g ;RjBk*]oJ+z7u^lԂʮ' ^a0; P4H[eaƐ ߅2E rlI p#UhVb_ղsZZzGn;7Aԫ}@?9s|2ee,eE-[Sx~_MDڽ`uy5{|DJO)BYdt&KiG7hx&t>JduJM7 6'B;$7 V?w<}|Vr$i2/Z@ӝ49e<|gn91Ѿ&>/ [-5p`L 5+1~%7qW۽[Pkfi;M-xX浺iگ$gm/5Xv7_/@Ȗlk3@{A-Mpen_d˭3:a2nA:sh}p4HS7b2lHD&6؁Xa!]P.և"3D&3F%v%[Dw˟v0Ȧuy:qtG72)8F]`eh}9%©_p!'tD}AǭyKZBCv*?`n~!|l3)1{:&*y/BwaiT |[ɡnCg@2_W ({_$7x-d9N1C-n,sSkGF q'v3dJKW2Zü(|1 {xqr[Cp+ypУ^]H(';Aҍf!E#|I8nf!p><(ä|\J|ηZ`f&,`(4 *Eao%.}.F&H/qqhT+Tt#,21Nlpە1UW`^TEy fǘFRGm/j3/\8-c * dssQ2`lYVlmWɼ鿹Y7+֕<`.!d`R ?;7 zȎh͸A7 ]̱h_/YlMm.ơtK=QڶҞEm(݇/R$)B(lϋ+NUICә}9ÜG1Kn[tHl;湞2ʽi/{%xkaE3?$qkɟGcU{m1o7kffyrSwl,@ZwE԰S{a:OEg}_VYs >rM/FHwKd]YdP5ss薵l#ԣG95,HD/=녷`m~3X 1֐rm86#ߪw^zOUX u&.J9t,%-J=jU~9AK ~_,k*rf=jhj"[ fȇT˒Y7ssUΆK@Ұ|{?t|⮒:}wouWjA7)L񍜧JKPy3OD-饤5d䤭;\vש\Ԏ }ɧe'RRɔƠWHhNڙK4< 4D}6(}hA r)m:Yr9p<@lvLgӤ^`ن2F+j7)zGܥ'^;t2 Z7Ĩ(rIOƸIB2|2oP#{CL1xS&Xs ~i]Cdrz ~㑖u`qƏMQ*s_ȼdCn'"[>l.wer iU.>PQ0E)^yT ],}iK.QEtXqUc-\wr֪*{ڱZw)2 ;ϋbN35俍`«g0)8 eQ'l0|! SH9*k|i=jj=1eyse=8yeY̐S[vA?вݦ€j_B4h%c@ 0 т BR_!vE1%]fџO}Zpl.(J/} )4KkkNOOd]kt]a,`]XY-@[K~TPC0U@ڛwW €}քٱ*}4&|UcmӇȏ1afiߗFɵڥP1P~ [z'@mnҍn6)=QU&%zJ`DN{M:L 8ـ w*ST{ LiIත~>Hz1\i }Ƕ]FחNK\`\%1*G&.mRmE1T],W:A? ' Q*d")jf{pD \#k'״F6Ool`\?fw%aJV:kw)P߆Pw}rpƑbKur IsVG(jn?RK,9'8zEob* 4;)4wψ%I#1匧8:c(:9 S:s-"Zِ=?F:c3V?/-rgb启nSz8ĶPab 9$\ďq;& N֍hp'QA.T̓ C +P~$ϺxmYmY{N%_Ol'Q2UndFN8я JmHO2huY[>f6w\k#Gz*/S9*gd145ㄋq=N篲# ot?pܕ\[_ \o?נeAnx1kQ6+L\a2 WH E`-rGC 1ћteْhCL԰ӨIҍ2SrH>^Uqkw:ݺ!/~hB%=eKo V3KIK3(1bX.,^EVXx#O0fKN3qİ: Q/d(ؾԘUq5gS{}4 r&4 Np8F}9n\[WNZ6ϳڪ;Lo':Ȋ([Oj[higdF4m@;!Q{Ltkvvm:bשxMg9sE؄M;*JWdÛ5lK4~;hmbp Go}}W'gpʉ[UQ%kC5epYo&um*n3q2BւB[~/*O]= IKd$Th[Dh7͏u_;-\|=_ڑciL`sH;DX֫:o] z &f`xOZ`w1f$D!.+[Z1*;P`".?uY{OԘ益5wP 0:^./;LL/WknԤG}яڢ8Zx.6B>DZ8QD|ha]-hΈpFS-*qu`~$gBbGxkKG^ͨEr׿۠N&q\z*lb7"/b,jI\ jn4 Z<5UpvryMfmcr -ŠKOP^Q&ns<{]7 )oz[`ض `KRAhAnW-3's6*̺_MkJ.ΆD"&^$mQwe[SziP:[o8@l5U > ߳%z9[W6מ8n ML ?٧nltPY0թ[*x3r6&'EVM9M?uwX5S*_4L]|ڃFPTfV,]R!N5=BYn} .N%[xg`-Py":殴$i +] ݢǑ6F0bvFq'1RƓVt(W&1#t}3ɓb -kTTNIbz8-WAe)N}Q -ss˴3?]?X"/o$ׅ1ZF94T1OMá>bQPռEChYsνWBR*Irx'&R.͞DE\ F[o`標mGM 9ygjg_ÃR6&dm;A+FbygV酳õͶeJy21JlZ`}c Nգi#c V2AfzmW HtB(fuM TIsJ|F>SF3v? AWVSS ]nizb]9Ӝ 芄ЏOmB!-*Sl7`[ lHf'Zro>)!MJB=:_8 Sak+mW1 D໚PS=@;[Q$`TZCD~w/Yd˫ޅňgog&E E3 _&EklBWiT)N@ 'oƼ$M;3C^W |IA"&Z]}S3ɭft10"a+ˮLR=b}5ishiщNP7Z`4crYI:ы%ezr aY=IƮmj/oPy*c@C^Yf(j]$CA2$v/,JDFxÍq2E=SQ:툲)d#w$T- aUnތY9DPxae~`r{Նj bˉM>s%65[*X &fNP3+'e=Z,zn:$BꠙJCZ͠N 3!F>۞̾Tk ?ń>ZZ%fPRkpZ",f3p;9$iQ->vA]/A&4 tf#ԙA{jf" EY#)E+?S%5B \epGA:>9kHHw(b%^ #[`H| "=:dz9Y?3^㨹p,tpOk %+`"Jݫ , ݂-ĩ^m`JNRV'(\1dvJ,"]U@^+BZ`B~ 3oK٥XSGkJBTAQu~E\39Į|~-nkh8mVTx[69Zm±<}varLF@l_g봖A @<,>h]KŬUBPw6)+,&0q.7 &LR7i=RTFr2P/Ğ؋|nC| AUv&neg/Kjn XU[1)Ӱ{$vP]\kGfD-sG1LGMVDYpož]x 9(ç"+WQgix ídhLo*& MVEwӟJ<3yZ"]=CKz_-b O҈TaS2z? W7~ nN^$%na Av`ـnf&O'AW\m:|3s IAdN3Cu}j a;O&R$BcKHW!T8Tn>[o]MG8.GL䜠g|gQ7A98{cڜ Ӣ`q{QK1uk 8P&갳[oHF3c_ ,_$ˍq{6|pZ?RLL3>AU}D^h(Ew91@vNǣ^.|B: 6@ckρ=9^͑hQPk]GYe3iGFKļϡX21p8GCE՞jU(}:EjaBZ"% QG!$uZ"?fr$ff>SdX4f[O<"1gNNi,bȋoe5NҺ۾@'u!|erhY}vpØFR>˛=2HjB瀇`U D2zs,Ai4k=Upp A;6XMK$2Ծz9S*GswHo~qA>ؼ o:H/0'mIao:7xM{=˕nSC?}9XL $$!tBg1>̧|6;I.gh殠$5BCX5B|j F.DQg4w4{~ZJ) 0Z~(\̚} nsَLmVZTh9Ϧh 4 qQtn'ʹ|aVծcF;&nTf!UJPT^th[yYk_92mEAg=Ѽ $ >LQ^z'-wGl;Jx?G&~cn#;9WHvh@( c YG(+yF )&KQ*hG[MoOF_|Bλ.q"faZ\#V ú PQ2mٿx_ü&] a;dbx=bCBkED LKԐhz㞜,A@) =AQ ;- ױI0U6V<+ILTtiH+2P IdZ,Qh9D𬤁IEf'4;"^ J戻"E4bJ yJR<ʶȏxȽ1'oD:}t94 w}킲doR'i?YOĆ嗹o+/YY\z9W 5[w)?8%&&"A";f=-e&4z}D/5{P8u޴!8[ ^\&lcul. )1kS@9 ̸_3U'Ziw~)?aڙ/xv«Iic7#$&w5˄^ gKNlϸM&fH:&m$uL)HNz`< h*~LY#Vኾy.+Ehw ؝ρ[v!+I?UZ_%k0d+ VA{}¡^;G;chtP/>'5zXwJYS0ï&&|*5;a^r+#b"0d7V` yH%m'Z`V [~gR\ L>h&⢉qFNl_<9e_U1$H9B7IZapZW٣o B6snPpo6]򿂠arNw 鬥,,^KnA- #r%7w!ki~84ܫ@ehm֊M8ʂN~y8j6^`Nm RKޗXV&B<@ wlS/ *kOE ϝWw[4[wP_[k^|c2eSj^C&V5/zcWt;B~KEJ~ NM1J MA[2eB[xRVdAhӠ=}^NJ(wdq T9bzF'=##3bj6!YxKhorйNZwܣdddD6Hh7h\.dsO(7Ӱ`rUѱo_@oWP"x\\^Zx:RCiS_չ2Kc%6A6 Pb(U':fuٙJ=zxDKy,18jYdќ=A0BYJ)^J#eo|){1ճRNLsmWtJYGtufĜfkXC- E)fɷF O!v˦+a62T#u Cb)_XS}/6n?]Ih (w*g[V}V""3Es;]J( Yۉvr#*4E=^[ m(/FykC<7|Iq"}M2PUԳKIJxz>BG tv-l1~Vtm ۵ !T2M JJ<<̩iʲ?@ŭɾ7iUsw18-7Zgn3U9}5G0I-OC90GxB{-t'|XbG({D ^{nI9r/P;P- !fad f9O0`C tfZ0>3p ̃RUEOO Ut|^yI)T`56VIL TIOSB(b&"gu!MXS {"."alM߽[#AWH.2Z1GH@,b9U'T͢* YFz #4OTwdMw 8~K$ܻXͽɅ)r /Ԛ 5yyLYtpvq jG[^)}V{h ]k\vS~IiC^˜AqRWQAGB(3JZ/!-Qb?wO(5蕣QfY:T0a7s~\DF5nVs#/ ť Mo'Rg*Q꫗41űFpm`yD:V dTMޟL˖՘]B,p?5H%=57&Y[}fF] Gt6}_k 8)39V { 9ymeRĈT]RvS]v_jȾY% u3iQ"ײo.&#O!( RW԰ EX: FlBS 7*2alNIb8 ȝ3ۙ\ΌGAQ0*^N]#A\? *z@ ( 2*y'KYLc7rnh= 50߅tSs;d6;nƨU >2a&5/&O۲t %nh_8VbK+fUG7e76wx?f2:X7\ܖTI1oMzZZDX: 8 RjXGoIq:ͭ ZI11.य़ P7/ꥂ߰x8BC)"/PW_K3}?v@oISaHuDC`l~|P5OT-C$N 9G]?4RsB#C3OȟS1*j{<@?mDqj$"~`2LV>qzM6`nA9$v6S-`#AY;`p17bo|~.f:Qg P>[MiK(!whTt\,iB])<%B;@<(G|АXT$S5({ ۤ(ҜsVh*nwSqÙ^Lf@N6t9/%DH NgSyRȉܞL6@*H\j6>i 6_,w3x=cTUZ%=t[,"˓@[4ɰHr`FsE1žWCqHJeyކqFʩTdLş{M>Kx>sے#hj AZ[(mcy}/IT)Oh173PTcE&j?i0@EQcFe`nNTuȬEeED3}-@N)3 DVeJ׆)M8C6|?L 'As{q~8بd] "㤖KWeSŴ5/ ]zX;}HFmgȑozeLJ҄/ b=e3fRk>,8TwVAR(Jҩ|r-^x?D!$\WqHo~ϳ#xE՞)?>9=?tij|\ " @!H\HH5 f=3ʹOm dW24!DZ׹ʕz2ۈ;~6.ѷlHst{>č2+ 4+ K|71po +W TBvqg4jC?+3,Ik`қEr}Βp܏ʃ )[8W=DÝCup'_ʮ d ۏPf~Q/0\"cbe\Βi1rfmaiNZ9t⶞x0Σ^>|NpFPk.p!y?_@N;JZRZv&h dZy>0J0B#3~j\=/f0GsaOV!>qʼ-ΤWXH6􌧅`/HD  UЯvPwWȋX[R-ex!Xty M 4Ra]>L/8|~_kE:f+pR1%OԺWkd0&ڋeOo˧?.3a28,ȂJ@ _+<*c AѠWd? @O@I 2C>y3J[a]Jy>3$,˦ ]jlF*_MĜn\'RS7V..,vsl5{![Q)4ˏ|' =عxOv-%K lTS;F~#1 [ <c6eugD]@,iA2KC цP븁2w X)~XԀőcs$XT7E^JO!w(xQJXs< #ӨǎgsH e~q-zo͍_QPHf+ZG1BJj€,A$&UEEſKw}q$' `{5v#[[yMr^v g0sCKgϸ@mYa F
W↔~O~cÏzE(&f .f4TuXC,O:dc:iT/!࣪7YHgJ`yU 㗽XX!dXyJGu(}u-K3CO`yiND}- HQK!jw0%? RIoql]E82s2g=wi:dTciU|N{=>Tw٘K;)"(R,\p@6|"A3^ʅc7.:hITt8ߏ*Ez! -AqGcCZ >8ae@ppxuqB/.xn#}v=W=D|ss(: RU7]|AJ>YOjÂDZoCԪ(c.LI?\#-e+rᠵ=9uӳҟaP"W4D żgT)0sG1ySN HPN)#U'Ohyݥ02/(Ow~47-F ǡlc+W/PV c5w+PJ{$EGEحZgtCF SF |L(YY`2`?KV<0Fv;ܸuzB{\vK N@vjA܏T4Cn]7}r?DS/zQcP蚳a䬙QVxcq_QobchFW<" _te֖(\6β&cy"30қU45 `MnE:գb l=K\`)0M *~ZyPvH;I.3 Qh[ni~ {SA3%q/(zNW7/ҨA9Eڳ+P?ߋ؜3Zovz0ƐJ6ѕb C?8 eeRZ4 Jd'.l7,I _.TFf* &_7ZQR>EO ֫A͞X 2C҄yb )^ GYi,topjE!|M1+ g$!E)v2rG\_0n"`GO6b"ٷhq;ub_ Gw8U4f^ 9Zƫgnyz2AF33*t`k-gVWq3=$EuX90?j5֦(Yaqga¦ ݵOb+K{YNY O1/ǎtR /ZEn$ӛ(b<*~&jLLVt 7אmj*ɝYíz]B.5+°mރj` F@{(n1濼9OjΆ?K*n y2 {`D2] o9RG6ytƸEdqIw\pnާL8"5ǟW>riT(cĭeʄh?ﰞU K|yZ,J`[!LB~8A 6`תrM<@01s"?Nj)%쨥XkGw\恝~ܑ ro(P3;ܺڟ=ѯ jwr e'1.s:M&Aң^fg#4Bnio$ҵDDh8֥R0"0C.hq`K/oIMv3"VΘ=ZϊB]yg k=l:')I|*un/ 㓹}D<0&/H0&M6*s=+k<_TW4EJb4j L=f3Y]\fW#;?A}C`^+FϞKAvvS2>ॽ'a"芬M%u8SFbZ{0`3Z!S?۟QTGr&W2nܮm(UCae[rBT >7_)L1E %bY`&"UeDe UKoپBU*8]M KGL5RѓIC&,p3XIb)B{?O,Tuݝ1v'io!>s+J IbR2=A7hn H4wj5̱JL ;(@„mss]tAq6mC6@3\Z**d{w?&bf"ʫ7;{yEC"૳ם^bCt) ڄ582<[靿r>o Gu5x&*=i'ESm{q*dzuU+v<5${Ԇ`?LQ G"fU?lsa_`*4$$r}4LkuxǪ * vً 'c*_DdТd]i}aR9հS.b#oAدiNSynggQ' c$?R nV<vtJK<u AZr,NnrE_ɽ.%J#7Ef,o~,7,yvk6bw&@OȯsAJcXH"$Xcj}{]l:A\^Q$q׌KB6C6I|1l*y@y[R݃7 Bxdc yÚo%<{ Rg@PX6]"skTOBm 5RwJX^c`oHp$X!kEjBR2 X ޟD0*W6<'_HF=ܡHKN*`KpMa趔{ϤhQdޘwyǛWIh焓f -Qi,0tt9vmKlK[g]m6ac#)֚l6. ״'a0kÎ:ƷHi+eWe|&@0hzn uJX-dj"FŪ ې[ n\v";$ $ T?6Pĝݥ!MgJ NG A@D%J~RKސhQ":*lxt~喌 tI>{;*euvyrC շ YEUy؆MfjE<ųCaF  ^(%HxKym[F֍+ב00$P.+SA9E(գϚ%,+5v1B` 䀽M 4]辍 6 Ye@HY!6`4VzFe|Uؠyh4qYfM#ZH.C/DPp؇P0E>5W4$aӱP53 6f x&H2P|dڏ:L+(+ː''`O13`m%ImNvL%^?o +ó0o1[{!F'gNo)m:}eɎPI̝,qeڣ8/ u@ OW >) @tƦڔq@/ _!!nΒkS+ͳVifm⫻iYr/p`[΋ Y?#㻳bw{ȼ_m ^t3^ J؁t4;O'SJ+j "zЏ:Z+.26xt+̰~N8vR |@9*M/Z9hnftpˬ3730}?^Xcq7 4+cJbOxbk:ydT)sq 0'cJ[mcmk+P QHHw-@q,B}0SAK=錄P$,qRXiܧ9~' inݛ\eO< @KDgom>\\OGi-X-~ 1Y2^c  fGq1'}\)qf} A7>߾, *:xJ<Ք s܌w*B+rPm_<"3T/,fj v[~` v<Cwcgez':j :  2%gB0\Lm>^QEꨙݚ5vomUJȄO{m-?e'&7sM[cD4jb|tؙhQ Hi펷D շS2@Z~w9Bxj/8Z!ZqwQW(hݻ5ܳNYϼs9޾q^[Uiy27m"i# dLtB l6sՀrq7"e !5n?B͚QnYHWܠH!KCANT OOS z[Ak`?y֨;%mwԮOП\ loTAka{QLGş_G] ˟欨 qd4& WLm; xl ieI;s4B&$%l-fRN)hT),ڸ=Yt2> HAuQq$ +yVY_ijfJn2^0C=xR8CE@X~e@JNѐD/sf𢮏.,Á .p'S1=,g5jզn 螓URT΀suҳ؝c0'^αoF! MlrPLqi` լ$W\ h;GH*rE(OP"``;|`H{oo,p1hLS},q&`0{շ$m`ԎPefl]ρ76]. ׌*Un N͙HǵDlqa>$UN.BAaS1S>hh "[#Q1<W/`'/wKP,>q21ygTt5@G SBt@p=V3&Bk|dUFseП\@ԃz< 2WSP%P5 Yˊk6=xБ^?QLwCg]D~Q:l5Z@=`RM70΋ʰm{4JvO;=:no#3 x#3GdsoP}m,@ZIUs¶!0+.d RkTXʖf6 ne6ZQ"{ ͹zu/( +53 w6ylxlss`".HdM8=-`~~)o ovv" m3,H@+.o}E8rX`Whehc[: $i%e$VV{A>2US?S1٨;f f+׷ :"(X7?w_c c7eP ceب|MG=n:]ts_FkeK|tYNl;&zpm+.ʥ>x rsIbcgWꂃ[%Џɶ$,wR}(SȚžl<}}HTRގU[| i SJO-䎧4p)1v0Bτ"kӶIM&#:?tLŪ` +]k/=b((nlO a r]IJ8eT5k1 c+m_ j>_?ljIYEVa AKqJ_G0mii4j"hdPֶSBsfID*B8}8mՂ[J3hQ*md?qKY`|\;컅a0amEcr35NHڀ{kG;ֹ` Fa: 9 |m k#a$ǵ^$~s! 찭}T$Keq6ljs03,|"ȵ `(v<_J%pU frR㐏Pq# 7vpy2Kۗ2 ZKe뛭UY|w{=tJ^ђlC<'o>7-wX_Rl8! 2[Ҭ^GF+m`N"1vf:T)kVC}^ X7aY}AڒBh%quIu熉,A8W)^ *7^YxW^T{V m-"B d|1p> B(}J.K3iO9KbaѿȻQGGU]kͼ%ѵ곍\enMH܁&2.Dks#?D'tfNm|K؂\ k1,xMd?i+3Up#,lx.o^ JQKg cYM 6$_%~U81鉺=,r?x4Ҏ1oa( VhIӷxPD}( ?I6Cf%@mȑ`3/ `3܂ E+c&yI>QN~lTb(ZH=nTQ{Dfh -RF$%tOhEOf7OttG&E`,I-1'2BY!3M>ӢN? >oGzP`B;n(-|#LYB/cd;a3)KIm1?0]p*h;IɈI~ Lq=UyIGF]^/$="vO eIrRGݿkg#&4G-ZOu}D{D8V1k*hD`$r\²T*jeTNv j 4YDVq=譐EQ M2067vn31֑1ٖ#ȬDT-"L ?g*~KFw0u.6?Gq@{3jV ׶XmX1I%~M/Zݵ(P'~+\© !KQ2]/$' 0{wf:?;6aU؍ww #(kHxb^:'v?(Ƹ>s-6wO2oA6JյLo U&Cc3*v$a4~9nPBp87ЧI]zXc&K#^w@j(ݿ+|U7)nB7 -;m[W E)|#`uZR7iŏ 'ˁ">@ujPvM$&&"y"'+$=w]2q`;԰Aa5Iup*zgbw n)v2  ÇCV`)eJ?=ѼM>oTd۞)N%Q%>U;T(R*[5Ńx3 7 gɲD)!UiCA 0auc< zV&n )s<g>M's)hbHYBAY\qCC*/؍'yf395?isX;0HhA3ϬuլHG)GSwg&@rj< N&Z~˩G1xq5X.~-nM_Uvɲ*sq5 ؝QbF>$G22_ i 2̅^ eI 2yKH#a؎nL5Jwj o9-*rm A,Lq[gd47 |5qDxz{Wfxb~;+H6jW4csT+m8%S`bͳuǔ3);Svov. -Z.-jfjH_'"e,dC#ȖAcJmeTe>mcxȭM$PlX"4LfhR/`X`cb(m2p.Y?GZ4O*MExmkd& 1zZQdbgL$9mGP3Ac|1 0tܧd#` !}&iKf{Ȃty\gX~%{C]  L@CLG uFF2; nJ|qa !ŌsF$d |/޹Tgp %cѼ=Dک=X3#%XD$5cOȣFm5ߡvh=qi@YDj@ZgpTZn|P3||qЗd=Nv¦ #*LgZYc3w)XT_L%޿#R%j) ɗLU_akSTX2.9tLAQ 1ec8 X}'fq}#K.ejEU'VGhu+uu*z".B4BrPV1aB$POW6uJi ͇{S]\%ҊMw<k5c !8L(ݾG6樀7$DZe|N=7m$'*\(r_N$G.~_佁y)qIx[5AZy%E_[l\3tÍcիsߖ@['mc%|23Tc1#i۾4_{O|MQu!{PŧnWKy+V|a׋6mA}_1Ea`qL8R us1m{LDbY+X[(ۈS 5UH兘E>9 j/R ,Զ+8'$Om#֓B8 !ۮ< ygBq#;Krٽa9`0BL1c4b9.msX6Pg#9h̲ʽ {x#"`_\tIF<ڱD!q,ܵ)/z]ȰmR fU  hIvA?!8mVcK8?;|JM;#naDfI<6|V95( ~ W\dHFe*fǤMMo[<Ʈ5,q8[%ef<'={XqT];෧:.]eNqT)T[X7ێ &3n AVdFZb|KY%;ke8l鑮S cj`!@IEpކ hø ᪅P5'RӰUQAh,#ߺl8w k$V?rߜA֫WxfhHLI437_5EXO9e;B_DoZ.tx%郞xG6<3zSjPޣE(#IFa/v{aǽΫM64(ڍ#XSIۛN>k ՝Pu7G8<ëJQ{( ȰFdrG>w݋qEF&i zu@y*ᱺoS^P{IydJY=y6I{Đ*Wl_p^mJv{E2 YCؔasƤAE2dNwl웍qD~EZK UH}C _?2<³q*+/jT]3v"O\TU _=Ƨ'4GE3s{Ymx v8B TS2fh K"6qRkEOݪdvv)]25ujTJПA H''jLc7|u5Yͣ0UrG^5YMYI&C` xOlFcx?#5h=N#5~~CL[GrJ%[% y?.|:)uрl!N~Lh(T H tO^,f[rwoIfv}g+ۏO@<ϗa%aS>|,#IlJ SGB[I5 t@q-! rr0y M;.qn3RWǼ/83-]Zޤf?<Ǘ񐋐!1SoƲ7bZM0e?U^h;S)Č^o11\,l"\ՠF^ UUvtu;V"+)=M\u^yw}C "_5wR}:϶y#U&?HMIK!N693C(eLjSBmƃCj[uႀ(Pv58 "9Y`*\\0{iU/ oDd;%Njӗc4 uZ$6Њ/s/>6 }6mR2VzhBRu鍸QAÆ\3£1A[ݝEjŚ2o!. 0^&3ajX"TJ׼\%F3 :&%xnQ`a#»|'C5 S9/"߁Ro3=Do(RvQb/*Gxϡ,X@N0ӌ6_ڇ/h*_1t r1W1s;>}2_zUT6<@l|h@8XЖWX  VDCp z jvfNr8 [>_DAQyxU~\tzL%LSPw V֠ _dief)bc.璷 ]gG!5l "H e˛ `=Z:^d-}Lkpk:?@'u;Vxѵslv{rX&psbjV\c՞Ӓ1c{53kYjr2GlVɠDDdz% ^l%Ӿ$~@իb~f9-WG'8;x fNBFta<o9)FKV@:7,LU3?D[94Iϣ Aݱ"dt{k4,1 :jC-H'լ)=Z&Tx xdzKa lzhB,Fo5bq_wiuĝpf#)6UҰbҪDQo%`ߴjtTҤxR E;a׀\s BJIGd'Q"aW9εd]a gR]d`~(3oH=i-tN1׌k|灚}hᄞC5 :إ օA"4떏/bO_͠7YQ_ 7Zޡ1zǠRIiLqEOָQ_A7J}er`AmRN7>,-2֭B^D>?"q+2@)#q+'0D7ڟB,m$lTF jc ʟdwjZU߆NjՔ Nуp>aus (?v.D29M<ۛ6? #dj ۓ0ãz'w&ps'9TC TBlN?h&#*#Ġ^6Jb fLxhl* }'oViyz&})YwL>9&]Tx<:h$[dF Bo(O6cշ/ 3u??_/=xܯNAegNfoDO.yİ%ڸXPe H|[0hK;0amG9-UԈ^j/}˹lGVcKT6IxCiq$k'. !(kӏ:처K<<T`Co\6N(:r D0S6K8Zl!D8x^'J(L'Y:t Mw $ $ǐIb"b)`"0mpR5WUbX `kp?3A<՜yaLy[ժO*%^q=65q@h4 |}(Wҹ+K;@DR/>-=쒩5t1i #b1]O9OY5G/}y1߷YbU 4,dZZM3Ĩ2Ouk5AlQ´Wv@HoN\q,T@tLXpo͝= t.9k ئڴQ^ޝT`f Bbj?Æ]B%"E }7$V~Y$-K=Ռ̰l?)xJa f;żq}/m^k90W[?iK'_ LޓefP\}0yYs*m%t; :a!aύOҡVd(*@9^|R*UQ2O>>aEƇ%r~v~*|UNV#kt?o\{)g4:ÿ\-X_u|+CX^.~[ aK;exLVߺвo.í$5p$"v0R0x{0qDZaoS4cm GNξ)Y4{Elr!>\ a ] !Q8:,Cj^BIX-)NQCH[s ɀc;g8_@t9UiWG6gpZ~":mhs6] V 'Q$ݩ"q\y)=`oa2cnAp(Jy40>ljL#1Ţi:ymoTǧgo!>'9Ť\耯?(E)NshoF&35k//p§b9iׇf &nK]EJ.]*ΡgMGE讲WB̦4o.>˒9 x"rC@7vo@?:FbȜvjqoΎ@宠(=Ԥt]'\ͳ ̀&XrE>A$,Vj8?d}U8Ҁ PC&Yҟr߃zBN0rF6+ Av"k_F҅[Wsm)L_+ֵL_EE[/;iπQɋ-%vo.Jz1p ,Wғ} JUцE>..=yxyD3AS8(L({Ȁ?1XF#:?260>%uLC&)9H`7: Y-Ov *p̓lCX{jS $,Jk@8 2&N~ pkDl6o3I}sqlAxObI|Y];, ?8c4x! !JVl)iQu2{˅A:)w~m _+~9:>!Oy <@ے*4#j^.H]yΓɸ<χO,V#C|Z0ZUK^oXKK&m~d{tvZDP>&k2- sJ=Nن)jb|D#xu<[ٜ IwƆ: bloohj޽ߣGa)$HA2Yhk+O׹Gm3]",K-op0K;qݪgY2z8j<)]y>SO|g$k^?V t;u*Ӿt@ܓl Bi0OX"KSSt~h\NY[8g1O:O_m#¬|<2eH^nH$kbh8Rʎ8?Ey?L5u+04!3ۤ/9C DDdH`?d&#F])yβi@|Ÿyj`fs."P6޸+$cQ'["rO x œ+DPLjl mv10"enrK{e;` ?Y'ws/\xm £"H/{$t0iOXx6z🭟?ñn{dάIUKQkG7$DPaV>3uVnN=}(:#J/?Ěa8Koj/n6q%UE4`l2rUw7hpϹ+2VO#3 9?!:A.Sn? N#`>k1 dAeEg륶U;qġLf6{1{z>to x@: )Ccͪ[cPyUr#{-Y/͒BKp:#gR={IYݨlj )!ai@%? n%?HPR˂d55i䚉)Vt5j3waG"bQ5b13QbYv \bkhnovPi/߯Y!\*RWUE=a? Y| -ǜu;B.w&tWvf^t7{TT% ]a e!Q>.,4l&{,vxt4O.>b+#P[zer9;E !bI  SJ&GqY:s(haphg!7,:j`hv 6TDhF6G@9DSK!HnVe)Q잠*^kU髊Og%Ojts67QJ"ЅK).k6ARS]lδ0ӟHN]>ʪfO9\E!oRt6|ij/%4–9"g{%S`nW `9- CQiZӷnxItߵlpʼnZAqAq Rv|Pmq 4A-%_l.Y "Ktcf3 yeE&ɔ$_aI ) ` \}1_ƎOVd3_=tڬvETw{ְzs\0 CQ$U K)8,=HgCNվG'RjB@r벹JwuG1Uw_Nps|A.c4עBHgySh]0F^W늗4lddn7.@_R5/!ugkeI͘e#$R3җ< l}JnX\aӠvȊ{2|ޅ7kCHVh`/<ԉ=ݎσka6{b'& ]h@ s:m7VE຾C%*]?vIE40ul;z Cd ~XS|,.?EoUW88Df}KLwƤw<%j(ԉe?0iϥɂ\^#ul.s߱ʰ~4`'Pgþ%6':uOIؾ_*kҵ5\'խA0wb w!é r@u gw!MF"}XE%'.5n,8&k Go)#c S7avHF?RF bpI,X>w0>`ORozR'UGpFlG|cA;40ub܊+ +̻T30ݽaQNFܼ6~cl;BA> ̸XϝhT57bӗXt a k´nmFF)=\?IV1Ѕ+3p]w 'IP.j_|O17Eޯ f y=R519[co fY@MZ\9THH+[&A'ҭR9{OO[ >ؘ0=ar?4e^QA="j?+(B۳鈹5@)_[pzm3W1ܱo ^Ў /PQUr NLoE8pI% +x2Va%b q"3G)g)e/tQL֗ QhztN,5m hn=7"ũvYkq6Z4,]}~M? B;ixKHM-vĔ?C(lȇ=,µ(N#3^/B;H̀X_;\<#ԸxIen\=C 9nk1R=||E-VI*B2Ǒ8?'atNb ϛ!bu9]>mo\_Zx&Q> pakp`٨lE}JsS'{h;Ѕ{q׶P`Q f]u4ēcƂD4}n큞Mi1ζsv[Ę!ԒU_ƚ5Bzj[hM;>:b󑵼}@sUĨ2uIgI۫[ZXTEt5BxmSt!9_ C@e~pTPͰRO-2o~W/Z"xZs^acn m@/@cEgMIwԋF (qȳ^VlCF"۵T v$ V8.Y~>SA^4Ҕs3̚Df?ezJ_fv4D<-KV08˃U\cS[']ҸMD;d9wϗLn e :glR^o$1.T 3[!'>H&`nx/gd"aK⬐(U5Zj//c=)rQ/BuDW6<)ըRoC%wYV\y4 {QYM3%8" [l=,j$^3~[H5 md(̆?ghe@vǩLL*b篐+eгR0"4 U uJ#Gwe f% T͛`3F "h3r+-P=i%=]%Tu_4w;Ĭ.>y2Hk<> 1bZ_:%J FMPwZZ?0/YS`a:;ep5l%tQ$ ZvLHXs8dJi9iPF'Lz \O*EO2m-'8Puίj v=(@ؠ 0ݦj ;oXJ~gQg`Yُ&DO_IL&I*dt+tPo/ے#ϵvLu՞wAH_!Y60DɅ}}9 gVrT t:nu~:ap)Óh-F@^F Xx5XfE< oWQ/VP] pw1W.c'7+c2z^;"x"'u J cIm6_X\sҙkt&ࡪk-2[>8qw\ċG_G#x Auc9 B RrrUj j}'d/D2`^,hr Dw-Vd#}ݎC RWc=5.)W M=\ev{[RL zo!I8XS.ʝ-M3]Z)SD;<#Gf [Y+vv W{t4 26Kb9*|[@+PH0z6S +e}2Unb,v0w$2EainrSByO2u?29l.(=QY0?Sr_X8@?<^|yX#W X`s :d\ps!,LZok==J>&>T86RTo[qrl-G ;F"e tN'0?Jjb6ߍFU}>T7>$HA!CtF=4&8-G~(?27:Z54m;rO3?G(I+*/3ogJYqOKtIԾ9z /Jױ+,PԂ`zB?*L+m嶂҄gf1tTj.WIr%Ӥ"B%* }eN52Ex#8*gRS.U\%l'iwsFjI, 2l~,p 9(C|H2E hÉZƒ y`!zn `veb"X'Ry%v\{Ş[gr:wkG<.H8 @c&²&dp0U't0pׇQatRO(IdkfUg)EW))mq*BC%,f0eEBnduMoD)A ]r ڵHfhr "H(uZZsRȊn #;PEDy8'ystP ݙ@\* SsY[2܋QXca$IVO /0a)&LkItO6K "D7Z9cj,AGר "H9?eve@jie̎jiGcV}UYdA`N| Vd2Q ˔S{\Avl를s#3zY΍z:VS…SıC1zP],&+㰺Fb_g9amP[ҰR\=+Q V5<==:&wyO@@Ǎі&g>#z7H4w:e"=I6;ZJl $IR=ejD$\`#AѫF`I}5cLL:H|opWQK$}xD&08ˠ!@"$ЩSMir#܁GƵoqy 5m5f浮w2tTm Ő ,f:3IjiA'p&$OMjEdցJ{UY6~xR;I9 l(s Oq Sy>"[ًKe %/ij^ڽ62ATsB9A\ʲnA վ',aTR']\&R6ό07pm%V1,(c#`b) Ru`UO \,:D R;zn81.nqtEt41jCxZb۔/\w~j%6}n~5CO qݠmb?v徉q1NU5C<6"w-!1?Mbw੕8tKm4gHKPD \[ѡQ փ.kξ]f:sU_Vtf/]Za'%~Q kQ1x!_{+er7Klʐ"wX%MEuNR G!wN渔s𣋆F.q ~,rO~;K4"*ɍmJ?;9hI6 `5hF# "U}sDQ^JjEal9uQLUSxs~J+},mPCX`ޱX)HwņVF:FE{2'+YK GftCQ}aFD0rЪ-=:b E9+}kGH#;y.?qӋkZj)Vpl89#cj$ŘLEEogs2$b=MQhN>@eo<*x;SJł~*Gc+Ȁ%q/gX.{Pky,lۂx9F_ʞ)6'XqU?aJZESK48k m%hYE Ƿ4"[:;gҴcfր5N"cmiKy- 9oy)]ݢ00FkBBkE<%H?'$<'VP,,e0ƣU@~tߗJi8TШ$1SS]e+8=Skn,3pRҭwn1 lhTI;XJ`G:֚m F~B/"u%DD砪)Mh ۦdK27ɨ=n+m-׭`gҺP4Vi+gRȓhV0q/]̔*OY^.Xy#qަ:H?}C,.,%C#*Z>`M u1@uy N ?Bx엧 9>Q@A< dmAGA !.I]_%ĆVwsշ,pK'v'^cvTlpLxUFݓ}?fU`* yk1/tpv ;ۢg^' !bH&Gd0_E~M$q^wQ:J @;űtҥ DYu M^ٝƻta+Ɣjfj}5_8IMz9ahڙn*~v:?")}"1%'1mK}К/@-Fpb!!$N7⧨pݲ}y%菶RYl:e-Kߥ!P]Gsf85bA4c&$Vؐ46ey`jJHHےrwl p>…1nPcM4( 7kC u}Pr`xi6Qw tEIlG}/`J-P#M': bzՇSkM7Q)i {w w*s졠}keiyh׷w<1;r0Y/G0q% lvH M·B99hR&{?U=Nh+VW7Z1*[2.4u5|. c6cs "dWtًNa9[M20ϣܸC2Y!ϾJg1T6]=:6 ţT@aU1pjW}}Q#MJоzkQڨKzw&4 ·g(:'Vŧơ3Z@YSZGs45z[H)`kgd=tRaωRv)lT }fdR6"V/0.+e s 8s} 2Qg@vmvR m|m\R3d>}<ҢX6ǵٍp „lKSA =f@K{X֣.X߁ O|P+e͋SxR='a+C"i2䟂kܲ%'N'nbu6Ac|UY"b\8Xҙ}2"}s匓b nWq 3o @UKp ~D]AƣHw%Q~7=Q?37r1d28lUZO!d';ٱߡ;$E ?%(W(8WҎijVMwu2hjUQT+ HEyޑ-׮|+J/)^D  Da_AFʟZ1%D4uѨ`6?4t[6X\2BњXPz:NT7<_eFi,HϊE&ٓP&CL)Ͷr\~mf$m=Ҭ/s'GK S t {D5 D%[Zѩjvcp&>!܆ZCFأ _#&y[+yj"BSH~3/75e#Iit!3s`1߂/Eh(P. <]Qp!lhZBvKo@r5tM ӿڂ*ɢƕx7vDZ("|g9a8V?` p !I-*YS^~; , qd.uRuS@1 ]2XnHPX1$hOwEu09u0v`~xdC"w,}G}c_0wԮgVۡ0`Y=_\fwl%N$K"c© V Uա:>#QS#e8GX:PknĄ8s*؃yn/ fk܎!ǹ)wR@ )M-Zz;o̡gA-:b\̱\D&!e8p*iܱw0qo_7zܧyb`/!}8Lr]63|".?PE& )9Rm(ynaؤgBtV o/GF% qӗ \`tMO>f~OtcyaL"1LWePjba" k;d2(=x.`Jւ eDs^ޞîw)#ii 4e Ǜ-L.SrA|I<LT@ "#SꭋV(' _6m'"43Ym/bGd1xW0eeDxW=S?Qz]EK$ϱCz2;a?"i8K:jR6"崸~g4 hŘq_Z>rWEYpē#헲v2K;٠?gHLny(fp{ E $&nrEHȑ2vB3U72i1!`2-.˃`/'! _, g ݝ}  iFe{\s1]ܬR^ٍ /j*(؊j QKM9Y'InN N< S(/P6dE,KCB܂%H7x,iE=AvgN43D 0 LČ[ŧ/cayxU:|{+NRGb^~-!A3oJ`Z і\>v'g }Bc%Stf4C~X*wL4/K4 S_At%<ȏb%N N* Ct ,sӓ߸/mCH/5ko=\D7B4=A{#~ТG߂,ww  a0.SN}z:ZVݤe 9><[۳χV$P=D @khoR?" {!5eK.:b `Fyn=ej  aAZ^5@M\rA~'™C37n) x o9GY{NLNpXwUlH}¸1\@pNCMrS7R w>t$rY7<1BmA Kd2%fqZ?ojH , ȭtHo$x#;Z#H:DJo4>_zRcbed\jX;j9蝮 {M2Vf^E+R$OzL(T/9+z yR^?*锢,ٹ!iI^wn͟lulCӺ?cR3SFًP4̞쓋^χ?v'j?đu,trJЮL2q_.Caz5Ye*>k+|>޶8X2:[ƝV 9 7Q^颞I bkIN 䤜]R၌-M0"Ņ[0Sg_Et0ìs0+HC'pgTDXfL . m%AU脏4(0LZUht`oUK>v.K@>askyfCA_TAQMq毗mS^: %{-.~N M;WQ)t' ~{M+qFܓ7d^U_,}4C̪yvU+ZaQ~?[ZZ9rfiNܫ#O(&@zr*b`SqGvK2 <*| ChxsZɯaPnֳ=-rث?*5&uz!fvRT=?Za 0hgzR!m #i/@ː DLFhnc`.xE(9st"}f{폇]Vp]LC_t*!GI$v#Ȧᖛan5<M˲ZUćwK%Њ( / ۖR[Yװ wr/Yz_5]4ajjx$^MfT]1&& ]S ~H=kr8'ޢTsӼ@P ?=:5MSNQF$ !ǚdB}(λj ݋a ?2npRb̉$y`y9x -$5T۞WK-Si.rZд{e#ݠ3k)o_Ct=} cCz'5GXXK2:S Zै82ί{:B[ |ͶKj3o8#(fyCddO'5ȆlOi<2u,0=<>҈j6R8׃Q0o Lk8//c\z<w(|$-xG?ڽpRO@G%X?Ѽ;]Fpzk2>hGm-*[6x3zOM$G0;އj=&5[䭸ᆒg)hbOd FsC}r8EјŅ 2/٤B(2"~xG!HF,T:>@׻}.^Dgf ʌ ҏwGjώٹ-J}+(^\G}z.ǜ9<4*"uxf6t B< \+Ze=é@U%Gl["ܽ)V>p$a)ʆ1P "+>:t b@  .NҝC2DVL yf,!.Du2T.f꣒iT/vjHM v!f =E3Wsvkv𿖬.ɩɕx򫨻I\f@RǏ^w 3bCee𫵬zkɩ$IW`мJF鷦xaJWv5i;"4BӜlgzIB3 lG5?_x5+ȶs AJU@@1:rf:0mlt'9)%M_>ӄ@741z^ڷ\t3%W0Mj`]!n!E}S2"M#[c 2 vu-6bHb64rs|ڂDY^}y?h} A)&(p}5くT+'q' Ol5B}^"L`Q91amHXR%ǖDU`Tr`U-;C;i:$:ʑ+ ]CnL2$hpSsZ@}?.$y=sd5@DN &<(N*gf8oH?ˀ:hodY97p'y= CC`Nn;3 ^.c+HЯ-{͂vGci\}C.cXhc|.4 KC@gW*q\o^>`#irN߻=iK [BQ*FQ!aۆw/ցsވ_}kcp܅tw2!4*C)}@*p:9qdMQl+Y1kÜ6!cJxDΩ`~_;NB6ǩWȚt4Nk0`hWk8z6Bi4/3%\5xF#/^o8$Ām1Zh c=kRemB>=C7ؖwhCKdC<L&A[ -) JdL 5JAFT>s[yo\°)`_!O, D+_ mZ$H*ѝs |^%X+UQj@0j DI *~?2D~!sN I|ޯ&t`:mQCE b+2pXwGdl{aMB.Z1DY;7!%ᔵ_3)(3 B*2emYԑ5Y56Q7}-q-w=L1aO?s6%Bl,1wc BH r-s*ή"U8Ҩ#O#*C\.S&Y@N]uQֳe]՘Cs!V^0/$3ä<U768EA$<ȔU{ 5kh u +#v:]mS;)lv| ŋ+f^4"*@U K}P[4VAJ[:l.s%c4 JghJh̍t`*Hza Qu鐣&_P3 ݜ'Yӵc P3".p0^HxU(k8قlB}DGٴrGs 8948Zj*ARJJ>Օ;UO|eGS-Y^&̹KiN0#R:@a'O zhs~36ׯ@w}T9[ }i >g!-vߏ뗄fs6bEK?p%W*!U[Bq*M?ߵ EG;G3pn Ո6wivm/@կbNkB9-\FF4mηp 4cx&֊(0} $L&R|D`4lSm|Ή@E#T/5skqa2 |2}~vf׸Zp1#ᮻh~^*ƚZYoGkD|7 #*38u^6{ (g;ml?q~BTv'mE9}ͨwE>[4/B.@>#R(rVll}*e LkUe;[%~k$g*htCb @(U1@<_o)~rMT{7X5FQVՐ>癝-}@Gߓ9^ߧ3| O>ݪg,ukppH\[´g\;O 3nU-@יpG{a@ug"~哿~<89a<>@q'/ :  ܘs[hnޑ\:5'!U~A/E\QIvi,GwNc{{R_vRm*Fu}FT=&+UH*ү`P vpMUwc2fk;9:W1xCf{`9! ϷJ8]]%Y3b=OiܭJIZiԠN4$W5%o[2fpX\e{j#^ O:09ݱ'*pX@eҌ[@֝ϟj @#GFʻ+C[([zK.L fXct /:QˢF(@5Ep3N,^J޺p5-0N|.[e lgj:)ثK?ʁvyfP]nZÉ6~ ev&Ó, 0t̍{uě}1) |of,>T0ƞ`2"sƷYL䴴?CyP`PC+л>'3rm,JGy _~E; q%e^2i km/o']**1$*tA\4 t#R;/{Q&f9r\ċ%`:Ft _/n;lA A}g *bx =8iVL"f{(])^n.!v{xߪ^xCƥqgk z Xt}4V܅O,4[{.DX.<|RܢULѥelhV4x=bfDOd 2]}s޷N. uf gPvxI"ۋڭEd~+u⠹WwC4i('y7(s&݀2jĿ\Uez6 eD1L|h& >}?xWI2k f>^TF iZ#RT2OX2FL h A0q֛[+2WfHNʻ};u:9n[Trn25f/k[#nH4H[DfˆnUb̂GԱIG?hl' $JgRyR14=lA{G%[{uoh3% !q}2;lЅ;Sծmc,V'x6/`HPK,?{iM'n^n`6c6 eNZ}7a✨T|(<̨N/6<24 Wr6@GR"s;R,3J}}NuGi(Z)xYnFz5GqqLߟ?p\.JO@Ļ%O/ϛ8YXx}}́N^E$qfKZtfX4> a .|?{J^յ^GL2[# b4I |/ќӋP&AevD;O 7*T~04gy3it3}16ry=崹S(|#_* 3T,ŪvjC$a$w_pY@Sw @ҪSQVXTRQ {g8r2ra3srjZNw(ZNrk,®[>G ڛMs^AZӒ;1&Ե9׌Lb:PA^ hi,m . " O$#cPJy$@OȦ0G(c̄ Q.QSt}"X%FFK}a2Z97!7a.mOad3?M+N ^9傧4‰@!DXL 6AL96)dMԖu"S9FjJr1}Y |Z9cZ4c *|6}5YK̕QV .d"&q;?NKxCLsb*Pw{nar1&iO-S8,FEgRq&OdYVVN17˱gLLM%%tk|>fraieH?߇fy+>.,ͩYNwѿDg‚ of-OQ==bğyM>%[=oͽ^} T{7agh{XG5˭e**(I䔺[s]:s߫+ _r& Q1(bٴBL& m96cŽXj \ w?\:&;C,4\.kBFbZ  %(=[Tp1n~zh{Fh^c` 0p}{S^m3A]QghT'hcV6@#.`ĶqY$ĝ .649;|URI+E ;g%dKb 1 ZC^E߭5@ ֐m[27H41a|1qw@yH GsX4;Ҩ;TusE'\=!&j4 6&(k_u zw|_.b~|\Y5|BDaq{.^Cdr#}TW$NLid;"m9"DM ^B%O ~r}݅؍RrG p0rbg! 4{%;›r%Mń{@ {}~)XIn/20ͦ}Z``sZ!êaGA ~!{xuu.Tv72W4ϓW"TxPШ4A\œUc} %,oFƂFÿNķNaKvw%Aڃ/4qs(*Jռ%⠀&0Ӊ&` T[nytKAM}r颉9 MI84\~(;7 9JZ>3Ʌ&"BXO`Z #9uFz&NE8Gf -7p]@j8#%qy|gOK Xlيl%v)]Y_*Au♛. '(`f'64y]IxJPc#{L^N1waoNb Ёa,| uHʲ@N(675|'j{Gtp,O",4LgX1ܾ}j 5Fyn0>h/ ƩbVaɭXr=h$6DN|'jٛsC$w |wNXf{})ſDCU: F\?m,H=:Kٿ]"r&Dpѫ(%|@P/GN]_@=Tn`eb ޞ4,&ߨRW5 KNk$6TepR?>Hk,/BBɿѧT}ld yFN $s|G˲<6e+ L0"[p&RvDooU;/:vr3SpNfΡn&OѮa qnnvi0k ڗ?{'۹_phADQ;j uc.I-@RciF6yi)$'r{nV=>s vNGgsr`rQaL'c9cf=Γē3pw-Z[#;e;'?F#u;W{:W50eQw*͈E>o$o _7}5ߑ&=b9SE[ċl zI&k:w)#wHd^O|r YuMtHJeKS!(w30(Le6q~4n{Ϯ1vFv &$Ratb81AHyYVr%-o9"N,46 $RYf q LrHweJOk#sakJхĄ3zU/h!QtG']|7S!;7Ъ٭q !֛S5/SSeuj8.g؛/3@VXgzFjj9ϯ3!)el=xRbCW y;-Țb#sRŅ߶29 j 0Rí?J~ f|n4P\ij4Ol"rt?0wcQ 4MYAtb%=%tql쳎bNքsW2| ˗m퉽} Z taR*O 5> zi'7]\*( r;Z eê )'ynHݮ79E0|2}A{N < 뚄Aޞ gb%z웦҃< su/mYC61Qf@lQMgyBiIpJaZ:uoC7xU<,V Q"3_Td x/q4E7Ź='?߼ӏ5k fBm(йJ+A],5[Mr$ȅSA1H?u^ KW-~C2b}i>l[L~Zrqkȝ%/_9mui4{Nk?y:1ZDYc,-j=k!YŠP:1 NS^'.mOL ^p!LdeGeZN %-1 1n5W'=Ïl+j+u V?7`Ԓ.ST -{XSkplq̵*ZKxe1tDL Uf|*⁡&\ b+=j-58 d{k 67VwU%xQI(IT)99gfi~a /(8hGeVRT?f:pKd/)u2BAZ7*q:@"=ujA-7D쏸DNpKQ=LH䤠Ounp*CEF^yOR o/t6Md'Mh}R#vlq&.[6E.'UU7_W2ȥ™Jii=?y4ޱ5=EbKLHvMv_';+?;FM.IS`()!"JZ;+--c}f֩Dqv]؊^{`CpL%xKBX#կdOE6 ^Z: r$li2Ru^?.Z̽IO 5P+,t|WsZ׀gCY3ֿ^FF4o1iFl.TW5NrW|@oxސG^@( ׻MK;F( c{BWu~1RHtOķճ-FEj'O5a7fO/6`M#S8l(4 /㐐U m#Z]E,7쯞V/&O\zF>AMXd2b waK^5sI_+f2"2x_踣m Wi3HXpff$/93u mbgxٟD'O= /X N0^P,)4Ho| w-JUqn7!jZ|LT[9Y$8__/b(<6ķjCKZ;Uu⵼JOiϬUwLKc w-GO:Lf 1ʥ@#oI^Yi t^eu<-ӇwcQƚ|D8m^~]+X`zYvyRKusr@|MXӋ,+YIDgzqӾ&Vv[}\ìM;7RH\"料[+SK1_S]OEܾս쾋Ps{(2-_)R];֠ SeqB-IM!ҡŭ.6D|*rMIfn/hMVtˡn|3X4|m~"Rc~ k䌶4mLi3DI=Cb++ A$5#[5wDp zZZH$bv+;/}fo1 <H"o*폧g{R6)R5`1yh޼ vj{ĜΨLHk +ȇ@Y8QeQɘpy@W\y\46BFY mSETOI|'ϊFd|v8geu?;ދK[n|iVₖxs՝-|(hqK uuoLuȷ.I<}3}%#adt0TԒ:C`y inT 1Ld r(KњbhE<N |l(Q (0Cp!s9Cۭ6 ϭZ¬ DӋL_ E5sϲS,X_zs(J6d z M(Y%A +yaH^=੐]ثH: 6 ߪ 8+\ZQNLGա2d3Dn c$Q.̭HOcnaw,.NEԟ62'ݴe^C}_}tXKD/?3 FkcG9'rx'z,/]J AW7,s`ys"]m^P ߃Ą\,/Z&JD;#hsq﯋aͱCroiuO>jA\4,2Y89PšR^tc݂>bO Yq3% WQ&ΡmJN-P^`4#%I/V嬴]( %}4UXiy @Ƿ^vͪfەG{HIY|]@ީm!xȘީ~]Z_ب鿩 =Kbi'=#Tr7"|,9 }=[Ю5ͨ|Jbw/R9UI mQ3ڎk,E1>#P/Nʎօ™겢B=>|IĀY^uqdw#;{r']X!7uY/"^?WGBOd4r/i Bb59v\F=j"+"o%PUd 0̈|7o[)2dž58?JrTYbP=X7ȿ*r<)4V,$j/e3A'kwcvkR;RVkUwq0cUAf5\?j.[8={Z5(F*ᎽMIq+qLstk}+dw# ċ R @U,qP4]Gl>PB؀`$)u_IB6.=# gahR+DV7}egr~;bTuc )0a~NIn4AZcq9S $ PMoڵfiU-R{wzC !鮽MkD쎤[Vj󚉵& u&iV4VXiCILJvߴ=j26:E"ZtCuWb'f8 P^nX0gS0nz ,Ե$͜! I@Q4 )4^N MkgJՄ&2R9 e#_l s@T ́-gbsg/t6rъ[2ouNFf^~cDtQ  (~HH@tIl,39܊,[R'ƒӠ H# wxsqOMgųq{08} [ 8ŧߦۗ> yb*y[EMupѓ.GِB@!_ij^.BhȔ?1jhB'IF{s{4K @(k|,`;}9D%{tBPg% %6e`.Yc9!~ NbZZ0Q;x1z&k 5rr 9=JyfDkQ5Y}O1"&LbSod~NЪ"՛qBH>j**qB0Ro]etօbv;a)M\bqu/7jݼb$yg| @p"Z~2_Ҏ{16ɄBxbU7ip.}-N^J65(-pK22P ~~Z[S5]qȇs`%%}tĮ֚ߴ;7DG)EyXV3,`G:T4w"I $_tN={ N]$En`Gv++`f8G0W3"|wv2NgcMcC,YQ~P8z3L(N첲YutkgV*65.)^Sn]Vnj~!hm4kl@nfd$1swa<bW~L,jMCiڼS:oT #*nhI9Z} zEvvn…H'cvP#6 8 [5&qP}XT<,7ޱMw‰* O"W>~ e14"bKxt\Hkp4R_DO__z}uDYT6j:KRׁTu5[^c bS ([DYx1+=Nfl"a1Xϻ vfeH~ԍr3¤SyP]u|H})>Qh*!Uw%C-gJf /G !DqݫяCxRJK"TFn+0P|{)쓼Q`4| *ZK˚jc$"^ {3IghnĜm{@"0JA:5Ta^sa}HZ" #N`aĖOceLQVrZ6;@QMT2:1byU6xœCH=0GnݕnۗDeR͒CyFPiz`>:|Dv轵M$ ͋GoRnwB} IKIz3W"_||e[_P442]r .8/:ٹT8q^dn|ܠL \!2Q_0eR25JiԶFt61mTGp.PWl #˞,Pc- QcWQMSDmxh(&jN2y5v\,t5n ܔ,RѝLMڍAOal ^BhCfoꕽ ȉj&T$3-^l=c*AdKs%1O`WQ˽AJVCW48goʽZ(pru.YeZ4"Vt*- HADv c;8-ick\(*:Gl{xZÚSOe ,v #R 9˛Uշw4p}'(YO$ %5q4+W֬r*)ؘEs-!P k~)y8l_Gՙaa͓\0/?Y/ʈAnw(\l2Y-&eVyB%hAzBۊ;)nTTm/rL1໿x/;T-ۈ I\yz[@GQ?{TDJU" A6!MÓɟ>"}@pK+|<~%.TcUL_sxKFz'p~#V\9!z/q8CV.Uh#3A_ ^h4qMR._osS)C.bl1!y?>8"W1DZ-œN{zE4gyψ˛&%6X6wN)1X@GgE}mBEF'5Z]`A$ oYxDA,:C$Ɓjۋ𣛐R!L(6mߊy4M iOgb1X^knn EWNx:i.X񌵜=wLaE mh VC%E:{Qw=\#ojm$(7;WUO*Jz~R@i8rnC#?#!Ǩ ,& 亭t)Z]~tJHJ^œ$Wg8zU&Y_βʧY5՗闚-PTmVLT!P9@ XB QG]sUwю:Q' 퇛u7C8C9sp:5h#;3ޜ [^ ,nVp tKN#EpD Aոɒ9w,J+urJf)Tj eͤسK׍ 5YCGʳH@{!@0Xץ>ab;2Kn,n\&!(WX u_@FWVʵ3 "ZN؁s/F4:{T#VC*&O'`v{iUnN Ne#ŏR> Ox\^EYelUί=fF9jV 8q ƙv}~ d1AKR)I+v8 k;2ҽJsze 7(|-qʉ"߄ln4ˌWh)hM҅^Hq9]m[黀[] r^ ˘nV/݉TTs!,գh1ko"4K!Sb6yng$h»!]ծY!{HFL.IW`Xw3z38;sWޝE7 Scvkd{Ϋ,VB m07RMN$0 7틽/݌$(]Q ]?x mIO p nQ|L1a@߯RYW*.%XoJ 0]l7z~Լ ȁƉ>+$?<ݘ*^xSb$>T.qh;G%NVr⁽s"0wsz3 *a=oRښy/{kFc+xzjz)A7 $ؖ~ 6|AMgպˬ.p'L\.+E|r6_V) V{NG҉DdYl%Ӆv_9.S_怠I:*uoD;JYI0Μ-$Bz pDFݞ܏8q q6hv=`ZGx=Z8QՂ|> ksJc7ɽ X [>O%޽8_>Z&]X%?ObX';wE^gĸpG*vԷ:"23,D )ިJFR>Tk*:5T'OAj7l4+B=];6[#3^I7^ f,fwR}gX!X3BRF7o";(3v48==Pw;t]MQ0]S{Q?~{{=ۉ ~V*3_ v )+TϚnc {5Чp<|[UgC[47zzlU?Iuަ ̘Ga^:\D('Rjd#Gz/T&UEQGRwxmLwHz}}ٗ괧IΞe!DVNRټi˘G&KiP wZ5>ZJ>%\deՇ=|:ZZBMEonjհc\?}|1[J[:M!ڏ099b$*~~3ug򪳘4 䯲fȰ顔^ vGC(*}cO=`r? U84^ӬyXئ@'TnJ Sz):{xPq*d=DL6h+vM!תH`LO]Ds @+'I2 " _7Ee7ϏUAQ&8;:CSKꚭpC 2ySW{XcnhP}DgyMjZ+{=-[wW6&1 5H4޿ $z䃀t|IRm'=:+iS SZU D\o}E0L&zn\tsq=rcô.X^5U<8+-$Ué&7R4Vf2Hpy0N}xA)?PlH YZ