í«îÛ    xen-libs-4.10.4_06-lp150.2.25.1                                                     Ž­è         <   >     ,     è            ê          ì         ¢(‰ ]Ë4¸‹/Ô=½Â„o8þ4¡šŒ«\ƒ+YägleØ…ùÈ\Åú…mÁøÝß]-Û ý…NÝÛqEH4P. ¹ÙbknÆÌ¼{mÓí=£¸ÚÁ YÜàØTÎŒô@i›æ ôuF‰ÚÑnN{ùUjb«R!-`ÙšßË3äË!’wØ›½z¡?ÁâØd3#èuk²µÍ·LQ°{f5û4îHGrfäáÝÍGpN7!åø€Só£þËt²ÌLSL\üq²ì33¹ô˜NxÜ“´µ¾÷À?ä'‚ó§œlbððÃã$£x$§p6®r@–WÊjÇB(Û¶[öFé(¼'úþU’ßïlàf¦èléœS7íS…ºù´   >   ÿÿÿÀ       Ž­è       ; HÐ   ?    HÀ      d            è           é           ê           ì   	   "     í   	   @     î     Ø     ï     Ü     ñ     ä     ò     è     ó     û     ö          ÷          ø   	  %     ü     3     ý     c     þ     i          p   -       $   -  	     ~   -  
     Ø   -       Œ   -       
9   -       ˜   -       L   -       -   -                 4   -       è          œ   6       t   6       ˆ   6  (     Ö     8     à  !  9     d  !  :     1T  !  >    3ˆ     @    3—     G    3¨   -  H    4\   -  I    5   -  X    5@     Y    5¸     \    6   -  ]    6¸   -  ^    9   	  b    :<     c    :å     d    ;r     e    ;w     f    ;z     l    ;|     u    ;   -  v    <D     “    Hp     Æ    Ht     ä    Hz     å    H¼   C xen-libs 4.10.4_06 lp150.2.25.1 Xen Virtualization: Libraries Xen is a virtual machine monitor for x86 that supports execution of
multiple guest operating systems with unprecedented levels of
performance and resource isolation.

This package contains the libraries used to interact with the Xen
virtual machine monitor.

In addition to this package you need to install kernel-xen, xen and
xen-tools to use Xen.


Authors:
--------
    Ian Pratt <ian.pratt@cl.cam.ac.uk> ]Ë4lamb21   ‡openSUSE Leap 15.0 openSUSE GPL-2.0 http://bugs.opensuse.org System/Kernel http://www.cl.cam.ac.uk/Research/SRG/netos/xen/ linux x86_64           8À      (       (       8       (       8       j     9Ð     9     í¸     8ø     (À     (ð     8à    ó°    58     zˆ     zx     ˆ     )@     9     ;ÀAíAííAííAííAííAííAííAíí¡ÿí¡ÿí¡ÿí¡ÿí¡ÿí¡ÿí¡ÿí¡ÿí¡ÿí¡ÿí¡ÿí¡ÿí¡ÿí¡ÿí¡ÿí                                                                                          ]Ë€]ËM]ËM]ËM]ËM]ËM]ËM]ËM]ËM]ËM]ËM]ËM]ËM]ËM]ËM]Ë}]ËM]Ëq]ËM]Ër]ËM]Ëq]ËM]Ëp]ËM]Ëq]ËM]Ëp]ËM]Ër]ËM]Ë‚]ËN]Ë{]ËM]Ëu]ËM]Ëo]ËM]Ëo]ËM]Ë]ËM]Ë‚]ËM  bcbe6656d1fe040a1f33a49996607a9c4edc7a29435ceaf733cfd2b016a42131  dacde974608223881efac9e2db755b473b6b320b804edfa5a8a947d0d8168167  b2fabb9d552e669ea6b2202f001235b3b8c0740d97e0c0f66c8689d04aaae0f9  63d98eb09e5252f17c9aa189a41eef494c34fb93885049b0c38d32468069fad2  f8e4379d5ba682a2dd670e414d0171efd289c3f6307d153625ad49318b2ce1b7  4f7f61cff5ee5bdd86f18161c864931f2f495906b17580cefcc3106f0260c9a5  07697237b5d9f71c22c078bd41182f8bbc6451266c29fa950cc38ef0c58390d1  400a96cb4bb6b96ff46e1bd329cc11064ea0735838ab54b414b2d88bbcf2645d  9c8567acb19da1ced37e2e838d3688189283f648c511f9a28e386c49a36b23c1  b2fb4fc61d97e74193a3ec73826ac2dbbc9785a466a851a58513a4415f621b5e  08098ed72e30b2d0a87cd3b039bbf9927b295e1a5377d6e8a88025220f93ccb2  4082a47c6057b7f7872f4e4d6d0d257246ab08bfb9f9ee3a434c7a65f3bf817d  bfbfff11e3fd6f8ff11a947baba62bacdb4509683ec69730b946844d5c2c500a  c93163b79de76c29fb3fedfd893e05f7c0a57b9285ec32a63db3a455dc8991e4  694ad8332f9054582192edd45888fc96685624d462bdbccfc632459b7ba9084a  690727c880d2d5c457d6b14655dda6a3ac08736d1f560993688d59efef118846  0d89564efab3150a61d1d76070e1d0510c9a4a1a15a606a776f7ca5dca3af2e8  f1aad5d2b6148e866c20dc34b0bfaf89cc81210c13c1b3a19f336356ff6e3361  bbd563c937cd8fc40e0c97c221c6dd008d3e579e8ff1e5d57ef1153495252f27  d40106c8a8d6564fc90285de51b1659708317d62dd58dd0f37d03177671ed46d  24cdc923a3de18d15e5d62827490c881f4dea81cc4c3d90ca342f269019b4b4b  3a1046ebd67b0eb9009b6a31e72f223cc216e23f0d277050ba1c01b3003f35bb                libfsimage.so.1.0.0  libxencall.so.1.0  libxenctrl.so.4.10.0  libxendevicemodel.so.1.1  libxenevtchn.so.1.1  libxenforeignmemory.so.1.2  libxengnttab.so.1.1  libxenguest.so.4.10.0  libxenlight.so.4.10.0  libxenstat.so.0.0  libxenstore.so.3.0.3  libxentoolcore.so.1.0  libxentoollog.so.1.0  libxenvchan.so.4.10.0  libxlutil.so.4.10.0                                                                                                                                                                                        root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root xen-4.10.4_06-lp150.2.25.1.src.rpm    ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿlibfsimage.so.1.0()(64bit) libfsimage.so.1.0(libfsimage.so.1.0)(64bit) libxencall.so.1()(64bit) libxencall.so.1(VERS_1.0)(64bit) libxenctrl.so.4.10()(64bit) libxendevicemodel.so.1()(64bit) libxendevicemodel.so.1(VERS_1.0)(64bit) libxendevicemodel.so.1(VERS_1.1)(64bit) libxenevtchn.so.1()(64bit) libxenevtchn.so.1(VERS_1.0)(64bit) libxenevtchn.so.1(VERS_1.1)(64bit) libxenforeignmemory.so.1()(64bit) libxenforeignmemory.so.1(VERS_1.0)(64bit) libxenforeignmemory.so.1(VERS_1.1)(64bit) libxenforeignmemory.so.1(VERS_1.2)(64bit) libxengnttab.so.1()(64bit) libxengnttab.so.1(VERS_1.0)(64bit) libxengnttab.so.1(VERS_1.1)(64bit) libxenguest.so.4.10()(64bit) libxenlight.so.4.10()(64bit) libxenstat.so.0()(64bit) libxenstore.so.3.0()(64bit) libxentoolcore.so.1()(64bit) libxentoolcore.so.1(VERS_1.0)(64bit) libxentoollog.so.1()(64bit) libxentoollog.so.1(VERS_1.0)(64bit) libxenvchan.so.4.10()(64bit) libxlutil.so.4.10()(64bit) xen-libs xen-libs(x86-64)                                                                                                                                                                                                           
  
  
  
/sbin/ldconfig /sbin/ldconfig libbz2.so.1()(64bit) libc.so.6()(64bit) libc.so.6(GLIBC_2.14)(64bit) libc.so.6(GLIBC_2.15)(64bit) libc.so.6(GLIBC_2.17)(64bit) libc.so.6(GLIBC_2.2.5)(64bit) libc.so.6(GLIBC_2.3)(64bit) libc.so.6(GLIBC_2.3.2)(64bit) libc.so.6(GLIBC_2.3.4)(64bit) libc.so.6(GLIBC_2.4)(64bit) libc.so.6(GLIBC_2.7)(64bit) libc.so.6(GLIBC_2.8)(64bit) libfsimage.so.1.0()(64bit) libfsimage.so.1.0(libfsimage.so.1.0)(64bit) liblzma.so.5()(64bit) liblzma.so.5(XZ_5.0)(64bit) libnl-3.so.200()(64bit) libnl-3.so.200(libnl_3)(64bit) libnl-route-3.so.200()(64bit) libnl-route-3.so.200(libnl_3)(64bit) libpthread.so.0()(64bit) libpthread.so.0(GLIBC_2.2.5)(64bit) libpthread.so.0(GLIBC_2.3.2)(64bit) libpthread.so.0(GLIBC_2.3.3)(64bit) libutil.so.1()(64bit) libutil.so.1(GLIBC_2.2.5)(64bit) libuuid.so.1()(64bit) libuuid.so.1(UUID_1.0)(64bit) libxencall.so.1()(64bit) libxencall.so.1(VERS_1.0)(64bit) libxenctrl.so.4.10()(64bit) libxendevicemodel.so.1()(64bit) libxendevicemodel.so.1(VERS_1.0)(64bit) libxenevtchn.so.1()(64bit) libxenevtchn.so.1(VERS_1.0)(64bit) libxenforeignmemory.so.1()(64bit) libxenforeignmemory.so.1(VERS_1.0)(64bit) libxengnttab.so.1()(64bit) libxengnttab.so.1(VERS_1.0)(64bit) libxenguest.so.4.10()(64bit) libxenlight.so.4.10()(64bit) libxenstore.so.3.0()(64bit) libxentoolcore.so.1()(64bit) libxentoolcore.so.1(VERS_1.0)(64bit) libxentoollog.so.1()(64bit) libxentoollog.so.1(VERS_1.0)(64bit) libyajl.so.2()(64bit) libz.so.1()(64bit) rpmlib(CompressedFileNames) rpmlib(FileDigests) rpmlib(PayloadFilesHavePrefix) rpmlib(PayloadIsXz)                                                   3.0.4-1 4.6.0-1 4.0-1 5.2-1 4.14.1    ]Ád@]°@À]®ï@]­À]©©@]”‘@]ùÀ]#0@];À]»@]»@]:À\æ‹@\Þ¢@\Ô@\ÊÛÀ\ÊÛÀ\È8À\‹“À\À\¶@\~dÀ\wÍ@\n’À\mA@\f©À\NîÀ\¦À[ék@[á‚@[³]À[«tÀ[˜ÿÀ[…9@[qrÀ[i‰À[Y·À[6@[0Ù@[0Ù@['žÀ[!@ZþÀ@ZýnÀZü@Zõ…ÀZñ‘@ZàmÀZÔ@Z»ƒÀZ¸àÀZ—ë@ZÀZ}@Z}@Z}@Z}@Zzê@Zzê@ZoÀZk@ZV @ZS]@ZOhÀZ:PÀZ1@Z.s@Z&Š@ZOÀZOÀZ	ÀZ	ÀZ	ÀZ¸@Z¸@Z}ÀZC@ZñÀYûÀYûÀYóÀYð|ÀYäŸ@YÓ{ÀYÒ*@YÎ5ÀYÊA@Y±4ÀY®‘ÀY¤ÀY¡bÀYœÀYšË@Y”3ÀYœ@YŒJÀYŒJÀYŠù@Y‰§ÀYˆV@Yƒ@Y€m@Yw2ÀYp›@Yl¦ÀYh²@Yh²@YSš@YJ_ÀYI@Y5GÀY0ÀY-^ÀY(ÀY"ÒÀYŒÀY;@YéÀY ÀY¯@YtÀY.ÀXùô@X÷Q@XäÜ@XÛ¡ÀXÒg@XÏÄ@XÆ‰ÀX¿ò@X¸	@X¥”@X«@X›@X“@X‘ÍÀX‰äÀXˆ“@XXÀXwoÀXs{@XlãÀXWËÀXR…ÀXQ4@XEVÀX43@X.í@X*øÀX lÀX&ÀXÕ@XƒÀX½@Wôë@WÖ˜ÀWÖ˜ÀWÍ^@WÉiÀW¼:ÀW¨t@W£.@WŸ9ÀW™óÀW˜¢@WkÏ@Wi,@Wb”ÀWZ«ÀWZ«ÀWZ«ÀWYZ@WV·@WE“ÀWBðÀW=ªÀW;ÀW3ÀW1Í@W1Í@W,‡@W(’ÀW(’ÀW(’ÀW(’ÀW(’ÀW#LÀW×ÀVþbÀVõ(@Vñ3ÀVéJÀVÙxÀVØ'@VÖÕÀVÔ2ÀVÍ›@VÅ²@VÄ`ÀV¼wÀV´ŽÀV´ŽÀV³=@V±ëÀV°š@V¯HÀV¨±@VŸvÀVž%@VœÓÀV–<@V“™@VŽS@VÀV‹°@VŠ^ÀVwéÀVqR@Vn¯@VXEÀVU¢ÀVTQ@VM¹ÀVM¹ÀVM¹ÀVAÜ@V;DÀV9ó@V7P@V0¸ÀV*!@V æÀV•@VCÀV·ÀV·ÀVf@VqÀV”@UùYÀUø@Uð@UîÍÀUÝª@UÓ@U·nÀU®4@U§œÀU¦K@UÀU›¿@U’„ÀU>ÀU‹í@Ux&ÀUnì@U\w@U[%ÀUUßÀUP™ÀUKSÀU>$ÀU6;ÀU%@U€ÀUŒ@UÅÀUÀU .@TìgÀTã-@TÙòÀTÈÏ@T¶Z@T¶Z@T³·@TÀTŽÍ@Tˆ5ÀT†ä@T€LÀT€LÀT~û@Tl†@Tiã@Taú@THíÀT?³@T=@carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com ohering@suse.de carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com ohering@suse.de ohering@suse.de ohering@suse.de ohering@suse.de carnold@suse.com ohering@suse.de ohering@suse.de ohering@suse.de carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com ohering@suse.de ohering@suse.de carnold@suse.com carnold@suse.com carnold@suse.com ohering@suse.de carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com ohering@suse.de carnold@suse.com carnold@suse.com carnold@suse.com ohering@suse.de ohering@suse.de ohering@suse.de ohering@suse.de jfehlig@suse.com ohering@suse.de carnold@suse.com carnold@suse.com ohering@suse.de ohering@suse.de carnold@suse.com carnold@suse.com carnold@suse.com ohering@suse.de carnold@suse.com ohering@suse.de ohering@suse.de carnold@suse.com ohering@suse.de ohering@suse.de ohering@suse.de rbrown@suse.com carnold@suse.com carnold@suse.com ohering@suse.de carnold@suse.com ohering@suse.de carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com ohering@suse.de ohering@suse.de ohering@suse.de ohering@suse.de carnold@suse.com carnold@suse.com carnold@suse.com jfehlig@suse.com ohering@suse.de carnold@suse.com carnold@suse.com ohering@suse.de carnold@suse.com jfehlig@suse.com ohering@suse.de carnold@suse.com carnold@suse.com ohering@suse.de ohering@suse.de carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com jfehlig@suse.com carnold@suse.com carnold@suse.com ohering@suse.de carnold@suse.com carnold@suse.com ohering@suse.de carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com ohering@suse.de carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com ohering@suse.de ohering@suse.de carnold@suse.com carnold@suse.com jfehlig@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com ohering@suse.de ohering@suse.de ohering@suse.de carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com ohering@suse.de jfehlig@suse.com carnold@suse.com ohering@suse.de ohering@suse.de ohering@suse.de carnold@suse.com ohering@suse.de jfehlig@suse.com carnold@suse.com jfehlig@suse.com jfehlig@suse.com carnold@suse.com carnold@suse.com jfehlig@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com ohering@suse.de carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com ohering@suse.de ohering@suse.de carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com jfehlig@suse.com carnold@suse.com carnold@suse.com mlatimer@suse.com carnold@suse.com cyliu@suse.com jfehlig@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com ohering@suse.de carnold@suse.com ohering@suse.de carnold@suse.com ohering@suse.de carnold@suse.com carnold@suse.com jfehlig@suse.com carnold@suse.com carnold@suse.com ohering@suse.de carnold@suse.com ohering@suse.de carnold@suse.com carnold@suse.com carnold@suse.com ohering@suse.de rguenther@suse.com carnold@suse.com carnold@suse.com carnold@suse.com rguenther@suse.com carnold@suse.com meissner@suse.com carnold@suse.com ohering@suse.de carnold@suse.com carnold@suse.com ohering@suse.de ohering@suse.de ohering@suse.de carnold@suse.com ohering@suse.de ohering@suse.de carnold@suse.com ohering@suse.de ohering@suse.de ohering@suse.de ohering@suse.de carnold@suse.com carnold@suse.com carnold@suse.com carnold@suse.com - bsc#1155945 - VUL-0: CVE-2018-12207: xen: Machine Check Error
  Avoidance on Page Size Change (aka IFU issue)
  xsa304-1.patch
  xsa304-2.patch
- bsc#1152497 - VUL-0: CVE-2019-11135: xen: XSA-305: TSX
  Asynchronous Abort (TAA) issue
  xsa305-1.patch
  xsa305-2.patch - bsc#1154461 - VUL-0: CVE-2019-18424: xen: XSA-302: passed through
  PCI devices may corrupt host memory after deassignment
  xsa302-0001-IOMMU-add-missing-HVM-check.patch
  xsa302-0002-passthrough-quarantine-PCI-devices.patch - bsc#1154458 - VUL-0: CVE-2019-18421: xen: XSA-299: Issues with
  restartable PV type change operations
  xsa299-0001-x86-mm-L1TF-checks-don-t-leave-a-partial-entry.patch
  xsa299-0002-x86-mm-Don-t-re-set-PGT_pinned-on-a-partially-de-val.patch
  xsa299-0003-x86-mm-Separate-out-partial_pte-tristate-into-indivi.patch
  xsa299-0004-x86-mm-Use-flags-for-_put_page_type-rather-than-a-bo.patch
  xsa299-0005-x86-mm-Rework-get_page_and_type_from_mfn-conditional.patch
  xsa299-0006-x86-mm-Have-alloc_l-23-_table-clear-partial_flags-wh.patch
  xsa299-0007-x86-mm-Always-retain-a-general-ref-on-partial.patch
  xsa299-0008-x86-mm-Collapse-PTF_partial_set-and-PTF_partial_gene.patch
  xsa299-0009-x86-mm-Properly-handle-linear-pagetable-promotion-fa.patch
  xsa299-0010-x86-mm-Fix-nested-de-validation-on-error.patch
  xsa299-0011-x86-mm-Don-t-drop-a-type-ref-unless-you-held-a-ref-t.patch - bsc#1154456 - VUL-0: CVE-2019-18425: xen: XSA-298: missing
  descriptor table limit checking in x86 PV emulation
  xsa298.patch - bsc#1154448 - VUL-0: CVE-2019-18420: xen: XSA-296:
  VCPUOP_initialise DoS
  xsa296.patch - bsc#1145240 - [Migration]Can't pre-allocate 1 shadow pages
  5d70bfba-x86-shadow-dont-enable-with-too-small-allocation.patch
- bsc#1137717 - [HPS Bug] Unable to install Windows Server 2016
  with 2 CPUs setting (or above) under SLES12 SP4 Xen Server on AMD
  ROME platform
  5d89d8d9-libxc-x86-avoid-overflow-in-CPUID-APIC-ID.patch
- Upstream bug fixes (bsc#1027519)
  5d419d49-x86-spec-ctrl-report-proper-status.patch
  5d43253c-x86-ucode-always-collect_cpu_info-at-boot.patch
  5d4aa36f-x86-apic-enable-x2APIC-mode-earlier.patch
  5d4d850a-introduce-bss-percpu-page-aligned.patch
  5d516531-x86-xpti-dont-leak-TSS-adjacent-data.patch
  5d6524ca-x86-mm-correctly-init-M2P-entries.patch
  5d67ceaf-x86-properly-gate-PKU-clearing.patch
  5d779811-x86-fix-CPUID7-0-eax-levelling-MSR.patch
  5d8b715f-ACPI-cpuidle-bump-max-num-of-states.patch
  5d8ce179-sched-dont-leak-XEN_RUNSTATE_UPDATE.patch - bsc#1145774 - Libivrtd segfaults when trying to live migrate a VM
  Fix crash in an error path of libxl_domain_suspend with
  libxl.helper_done-crash.patch - Upstream bug fixes (bsc#1027519)
  5d08f651-x86-AMD-correct-Fam17-checks.patch
  5d08f68b-x86-AMD-limit-C1E-disable.patch
  5d160571-x86-cpuid-restrict-OSXSAVE-leak.patch
  5d1b395a-x86-MSI-fix-loop-termination.patch - Update to Xen 4.10.4 bug fix release (bsc#1027519)
  xen-4.10.4-testing-src.tar.bz2
- Drop the following patches contained in the new tarball
  5bc4977d-1-XSM-remove-unnecessary-define.patch
  5bc4977d-2-XSM-introduce-boot-param.patch
  5bc4977d-3-XSM-SILO-mode.patch
  5c7e6f86-gnttab-set-refcount-for-transfer-copy.patch
  5c7e6fe8-IOMMU-x86-fix-type-ref-counting-race.patch
  5c7e7008-x86-get-rid-of-bogus-page-states.patch
  5c7e7020-x86-make-coherent-PV-IOMMU-discipline.patch
  5c7e70c6-x86-mm-L2-unvalidation-preemptible.patch
  5c7e70e2-x86-mm-L3-unvalidation-preemptible.patch
  5c7e70ff-x86-mm-dont-retain-page-typeref-on-IOMMU-fail.patch
  5c7e711c-x86-mm-properly-flush-TLB-in-switch_cr3_cr4.patch
  5c7e714c-x86-pv-rewrite-guest-cr4-handling.patch
  5c7e716d-x86-pv-restrict-cr4-fsgsbase.patch
  5c7e7192-x86-pv-toggle_guest_pt-TLB-flush-for-shadow.patch
  5c7e9d9c-x86-mm-fix-GP-0-in-switch_cr3_cr4.patch
  5c87b644-IOMMU-leave-enabled-for-kexec-crash.patch
  5c87b6a2-x86-HVM-dont-crash-guest-in-find_mmio_cache.patch
  5c87b6c8-drop-arch_evtchn_inject.patch
  5c87b6e8-avoid-atomic-rmw-accesses-in-map_vcpu_info.patch
  5c87e6d1-x86-TSX-controls-for-RTM-force-abort-mode.patch
  x86-cmdline-parse-fix.patch
  5c8f752c-x86-e820-build-with-gcc9.patch
  5c8fc6c0-x86-MSR-shorten-ARCH_CAPABILITIES.patch
  5c8fc6c0-x86-SC-retpoline-safety-calculations-for-eIBRS.patch
  5c9e63c5-credit2-SMT-idle-handling.patch
  5cab1f66-timers-fix-memory-leak-with-cpu-plug.patch
  5cd921fb-trace-fix-build-with-gcc9.patch
  5cd9224b-AMD-IOMMU-disable-upon-init-fail.patch
  5cd922c5-x86-MTRR-recalc-p2mt-when-iocaps.patch
  5cd9230f-VMX-correctly-get-GS_SHADOW-for-current.patch
  5cd926d0-bitmap_fill-zero-sized.patch
  5cd92724-drivers-video-drop-constraints.patch
  5cd93a69-x86-spec-ctrl-reposition-XPTI-parsing.patch
  5cd93a69-x86-MSR_INTEL_CORE_THREAD_COUNT.patch
  5cd93a69-x86-boot-detect-Intel-SMT-correctly.patch
  5cd981ff-x86-IRQ-tracing-avoid-UB-or-worse.patch
  5cdad090-x86-spec-ctrl-misc-non-functional-cleanup.patch
  5cdad090-x86-spec-ctrl-CPUID-MSR-definitions-for-MDS.patch
  5cdad090-x86-spec-ctrl-infrastructure-for-VERW-flush.patch
  5cdad090-x86-spec-ctrl-opts-to-control-VERW-flush.patch
  5cdeb9fd-sched-fix-csched2_deinit_pdata.patch
  5ce7a92f-x86-IO-APIC-fix-build-with-gcc9.patch
  5d03a0c4-1-Arm-add-an-isb-before-reading-CNTPCT_EL0.patch
  5d03a0c4-2-gnttab-rework-prototype-of-set_status.patch
  5d03a0c4-3-Arm64-rewrite-bitops-in-C.patch
  5d03a0c4-4-Arm32-rewrite-bitops-in-C.patch
  5d03a0c4-5-Arm-bitops-consolidate-prototypes.patch
  5d03a0c4-6-Arm64-cmpxchg-simplify.patch
  5d03a0c4-7-Arm32-cmpxchg-simplify.patch
  5d03a0c4-8-Arm-bitops-helpers-with-timeout.patch
  5d03a0c4-9-Arm-cmpxchg-helper-with-timeout.patch
  5d03a0c4-A-Arm-turn-on-SILO-mode-by-default.patch
  5d03a0c4-B-bitops-guest-helpers.patch
  5d03a0c4-C-cmpxchg-guest-helper.patch
  5d03a0c4-D-use-guest-atomics-helpers.patch
  5d03a0c4-E-Arm-add-perf-counters-in-guest-atomic-helpers.patch
  5d03a0c4-F-Arm-protect-gnttab_clear_flag.patch
  XSM-fix-Kconfig-names.patch - bsc#1138294 - VUL-0: CVE-2019-17349: XSA-295: Unlimited Arm
  Atomics Operations
  5d03a0c4-1-Arm-add-an-isb-before-reading-CNTPCT_EL0.patch
  5d03a0c4-2-gnttab-rework-prototype-of-set_status.patch
  5d03a0c4-3-Arm64-rewrite-bitops-in-C.patch
  5d03a0c4-4-Arm32-rewrite-bitops-in-C.patch
  5d03a0c4-5-Arm-bitops-consolidate-prototypes.patch
  5d03a0c4-6-Arm64-cmpxchg-simplify.patch
  5d03a0c4-7-Arm32-cmpxchg-simplify.patch
  5d03a0c4-8-Arm-bitops-helpers-with-timeout.patch
  5d03a0c4-9-Arm-cmpxchg-helper-with-timeout.patch
  5d03a0c4-A-Arm-turn-on-SILO-mode-by-default.patch
  5d03a0c4-B-bitops-guest-helpers.patch
  5d03a0c4-C-cmpxchg-guest-helper.patch
  5d03a0c4-D-use-guest-atomics-helpers.patch
  5d03a0c4-E-Arm-add-perf-counters-in-guest-atomic-helpers.patch
  5d03a0c4-F-Arm-protect-gnttab_clear_flag.patch
- Upstream bug fixes (bsc#1027519)
  5bc4977d-1-XSM-remove-unnecessary-define.patch
  5bc4977d-2-XSM-introduce-boot-param.patch
  5bc4977d-3-XSM-SILO-mode.patch
  5c87b6c8-drop-arch_evtchn_inject.patch
  5c87b6e8-avoid-atomic-rmw-accesses-in-map_vcpu_info.patch
  5cd921fb-trace-fix-build-with-gcc9.patch
  5cd9224b-AMD-IOMMU-disable-upon-init-fail.patch
  5cd922c5-x86-MTRR-recalc-p2mt-when-iocaps.patch
  5cd9230f-VMX-correctly-get-GS_SHADOW-for-current.patch
  5cd926d0-bitmap_fill-zero-sized.patch
  5cd92724-drivers-video-drop-constraints.patch
  5cd93a69-x86-spec-ctrl-reposition-XPTI-parsing.patch (Replaces xsa297-0a.patch)
  5cd93a69-x86-MSR_INTEL_CORE_THREAD_COUNT.patch (Replaces xsa297-0b.patch)
  5cd93a69-x86-boot-detect-Intel-SMT-correctly.patch (Replaces xsa297-0c.patch)
  5cdad090-x86-spec-ctrl-misc-non-functional-cleanup.patch (Replaces xsa297-0d.patch)
  5cdad090-x86-spec-ctrl-CPUID-MSR-definitions-for-MDS.patch (Replaces xsa297-1.patch)
  5cdad090-x86-spec-ctrl-infrastructure-for-VERW-flush.patch (Replaces xsa297-2.patch)
  5cdad090-x86-spec-ctrl-opts-to-control-VERW-flush.patch (Replaces xsa297-3.patch)
  5cd981ff-x86-IRQ-tracing-avoid-UB-or-worse.patch
  5cdeb9fd-sched-fix-csched2_deinit_pdata.patch
  5ce7a92f-x86-IO-APIC-fix-build-with-gcc9.patch
  5cf0f6a4-x86-vhpet-resume-avoid-small-diff.patch
  5cf16e51-x86-spec-ctrl-Knights-retpoline-safe.patch
  XSM-fix-Kconfig-names.patch - bsc#1138563 - L3: xenpvnetboot improperly ported to Python 3
  fix-xenpvnetboot.patch - bsc#1129642 - L3: xen domU loses attached pci device after reboot
  (since dom0 upgrade to sle12sp4)
  5ba5188c-libxl-keep-assigned-pci-devices-across-domain-reboots.patch - bsc#1133818 - retry XEN_DOMCTL_getpageframeinfo3
  accessing the list of pages may lead to a temporary EFAULT
  backport a mainline patch to retry the domctl, which may fix
  live migration on the sending side
  libxc.do_domctl.EFAULT-retry.patch - bsc#1131811 - [XEN] internal error: libxenlight failed to create
  new domain. This patch is a workaround for a systemd issue. See
  patch header for additional comments.
  xenstore-launch.patch - bsc#1079730, bsc#1098403, bsc#1111025 - live migrating PV domUs
  simplify and fix the required change. The previous variant broke
  PV with device-model
  libxl.pv-qemu-migration.patch - bsc#1120095 - add code to change LIBXL_HOTPLUG_TIMEOUT at runtime
  The included README has details about the impact of this change
  libxl.LIBXL_HOTPLUG_TIMEOUT.patch - bsc#1111331 - VUL-0: CPU issues Q2 2019 aka "Group 4"
  CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091
  xsa297-0a.patch
  xsa297-0b.patch
  xsa297-0c.patch
  xsa297-0d.patch
  xsa297-1.patch
  xsa297-2.patch
  xsa297-3.patch
- Upstream bug fixes (bsc#1027519)
  5c7e6f86-gnttab-set-refcount-for-transfer-copy.patch
    Replaces xsa284.patch
  5c7e6fe8-IOMMU-x86-fix-type-ref-counting-race.patch
    Replaces xsa285.patch
  5c7e7008-x86-get-rid-of-bogus-page-states.patch
    Replaces xsa287.patch
  5c7e7020-x86-make-coherent-PV-IOMMU-discipline.patch
    Replaces xsa288.patch
  5c7e70c6-x86-mm-L2-unvalidation-preemptible.patch
    Replaces xsa290-1.patch
  5c7e70e2-x86-mm-L3-unvalidation-preemptible.patch
    Replaces xsa290-2.patch
  5c7e70ff-x86-mm-dont-retain-page-typeref-on-IOMMU-fail.patch
    Replaces xsa291.patch
  5c7e711c-x86-mm-properly-flush-TLB-in-switch_cr3_cr4.patch
    Replaces xsa292.patch
  5c7e714c-x86-pv-rewrite-guest-cr4-handling.patch
    Replaces xsa293-1.patch
  5c7e716d-x86-pv-restrict-cr4-fsgsbase.patch
    Replaces xsa293-2.patch
  5c7e7192-x86-pv-toggle_guest_pt-TLB-flush-for-shadow.patch
    Replaces xsa294.patch
  5c7e9d9c-x86-mm-fix-GP-0-in-switch_cr3_cr4.patch
  5c87b644-IOMMU-leave-enabled-for-kexec-crash.patch
  5c87b6a2-x86-HVM-dont-crash-guest-in-find_mmio_cache.patch
  5c87e6d1-x86-TSX-controls-for-RTM-force-abort-mode.patch
  x86-cmdline-parse-fix.patch
  5c8f752c-x86-e820-build-with-gcc9.patch
  5c8fb92d-x86-HVM-split-linear-reads-and-writes.patch
  5c8fb951-x86-HVM-finish-IOREQs-correctly-on-completion.patch
  5c8fc6c0-x86-MSR-shorten-ARCH_CAPABILITIES.patch
  5c8fc6c0-x86-SC-retpoline-safety-calculations-for-eIBRS.patch
  5c9e63c5-credit2-SMT-idle-handling.patch
  5cab1f66-timers-fix-memory-leak-with-cpu-plug.patch - bsc#1079730, bsc#1098403, bsc#1111025 - live migrating PV domUs
  An earlier change broke live migration of PV domUs without a
  device model. The migration would stall for 10 seconds while the
  domU was paused, which caused network connections to drop.
  Fix this by tracking the need for a device model within libxl.
  add libxl.pv-qemu-migration.patch
  remove xen.bug1079730.patch - bsc#1026236 - add Xen cmdline option "suse_vtsc_tolerance" to
  avoid TSC emulation for HVM domUs if their expected frequency
  does not match exactly the frequency of the receiving host
  xen.bug1026236.suse_vtsc_tolerance.patch - bsc#1126325 - fix crash in libxl in error path
  Setup of grant_tables and other variables may fail
  libxl.prepare-environment-for-domcreate_stream_done.patch - bsc#1127620 - Documentation for the xl configuration file allows
  for firmware=pvgrub64 but we don't ship pvgrub64.
  Create a link from grub.xen to pvgrub64
  xen.spec - Upstream bug fixes (bsc#1027519)
  5c6d7b01-x86-pmtimer-fix-hvm_acpi_sleep_button.patch
  5c6d7b35-x86-shadow-dont-pass-wrong-L4-MFN.patch
  5c75615a-viridian-fix-HvFlushVirtualAddress.patch
  5c7561aa-x86-shadow-dont-use-map_domain_page_global.patch
  5c77c30b-x86-hvm-increase-triple-fault-log-level.patch
  5c77e5c8-x86-nmi-correctly-check-MSB-of-P6-perf-counter.patch - bsc#1127400 - VUL-0: CVE-2019-17348: xen: XSA-294: x86 shadow:
  Insufficient TLB flushing when using PCID
  xsa294.patch - bsc#1126192 - VUL-0: CVE-2019-17342: xen: XSA-287: x86:
  steal_page violates page_struct access discipline
  xsa287.patch
- bsc#1126195 - VUL-0: CVE-2019-17343: xen: XSA-288: x86:
  Inconsistent PV IOMMU discipline
  xsa288.patch
- bsc#1126196 - VUL-0: CVE-2019-17344: xen: XSA-290: missing
  preemption in x86 PV page table unvalidation
  xsa290-1.patch
  xsa290-2.patch
- bsc#1126197 - VUL-0: CVE-2019-17345: xen: XSA-291: x86/PV: page
  type reference counting issue with failed IOMMU update
  xsa291.patch
- bsc#1126198 - VUL-0: CVE-2019-17346: xen: XSA-292: x86:
  insufficient TLB flushing when using PCID
  xsa292.patch
- bsc#1126201 - VUL-0: CVE-2019-17347: xen: XSA-293: x86: PV kernel
  context switch corruption
  xsa293-1.patch
  xsa293-2.patch - bsc#1126140 - VUL-0: CVE-2019-17340: xen: XSA-284: grant table
  transfer issues on large hosts
  xsa284.patch
- bsc#1126141 - VUL-0: CVE-2019-17341: xen: XSA-285: race with
  pass-through device hotplug
  xsa285.patch - Update to Xen 4.10.3 bug fix release (bsc#1027519)
  xen-4.10.3-testing-src.tar.bz2
- bsc#1114988 - VUL-0: CVE-2018-19967: xen: guest use of HLE
  constructs may lock up host (XSA-282)
  Fix included in tarball
- bsc#1120067 - Libvirt segfault when crash triggered on top of HVM
  guest
  Fix included in tarball
- Drop the following patches contained in the new tarball
  5ae31917-x86-cpuidle-init-stats-lock-once.patch
  5b752762-x86-hvm-emul-rep-IO-should-not-cross-GFN-boundaries.patch
  5ba11ed4-credit2-fix-moving-CPUs-between-cpupools.patch
  5bacae4b-x86-boot-allocate-extra-module-slot.patch
  5bae44ce-x86-silence-false-log-messages.patch
  5bb60c12-x86-split-opt_xpti.patch
  5bb60c4f-x86-split-opt_pv_l1tf.patch
  5bb60c74-x86-fix-xpti-and-pv-l1tf.patch
  5bcf0722-x86-boot-enable-NMIs.patch
  5bd076e9-dombuilder-init-vcpu-debug-regs-correctly.patch
  5bd076e9-x86-boot-init-debug-regs-correctly.patch
  5bd076e9-x86-init-vcpu-debug-regs-correctly.patch
  5bd0e11b-x86-disallow-VT-x-insns-without-nested-virt.patch
  5bd85bfd-x86-fix-crash-on-xl-set-parameter-pcid.patch
  5bdc31d5-VMX-fix-vmx_handle_eoi.patch
  5be2a308-x86-extend-get_platform_badpages.patch
  5be2a354-x86-work-around-HLE-host-lockup-erratum.patch
  5be9634c-x86-dom0-avoid-using-1G-superpages.patch
  5bed93e1-x86-hvm_copy-no-write-to-p2m_ioreq_server.patch
  5bf4118c-amd-iommu-fix-flush-checks.patch
  5bf41242-AMD-IOMMU-suppress-late-PTE-merging.patch
  5bf41311-x86-dont-flush-after-L1e-update-failure.patch
  5bf41331-x86-shadow-move-OOS-flag-bits.patch
  5bf4135a-x86-shrink-page_info-shadow_flags.patch
  5c011aaf-x86-dont-enable-shadow-with-too-small-allocation.patch
  5c17ce93-x86-hvm-correct-RDTSCP-intercept-handling.patch
  5c18f5ad-x86emul-fix-3-operand-IMUL.patch
  5c190203-x86emul-work-around-SandyBridge-errata.patch
  5c3608fa-fix-MEMF_no_dma-allocations-for-single-NUMA.patch
  5c3dd8fa-cmdline-fix-strncmp-LITERAL-construct.patch - Upstream bug fixes (bsc#1027519)
  5c17ce93-x86-hvm-correct-RDTSCP-intercept-handling.patch
  5c18f5ad-x86emul-fix-3-operand-IMUL.patch
  5c190203-x86emul-work-around-SandyBridge-errata.patch
  5c3608fa-fix-MEMF_no_dma-allocations-for-single-NUMA.patch
  5c3dd8fa-cmdline-fix-strncmp-LITERAL-construct.patch - Upstream bug fixes (bsc#1027519)
  5be9634c-x86-dom0-avoid-using-1G-superpages.patch
  5bed93e1-x86-hvm_copy-no-write-to-p2m_ioreq_server.patch
  5bf4118c-amd-iommu-fix-flush-checks.patch replaces xsa275-1.patch
  5bf41242-AMD-IOMMU-suppress-late-PTE-merging.patch replaces xsa275-2.patch
  5bf41311-x86-dont-flush-after-L1e-update-failure.patch replaces xsa279.patch
  5bf41331-x86-shadow-move-OOS-flag-bits.patch replaces xsa280-1.patch
  5bf4135a-x86-shrink-page_info-shadow_flags.patch replaces xsa280-2.patch
  5c011aaf-x86-dont-enable-shadow-with-too-small-allocation.patch
  5c0f786c-parse_size_and_unit-percent.patch
  5c0f7894-x86-dom0_mem-variants.patch - bsc#1115040 - VUL-0: xen: insufficient TLB flushing / improper
  large page mappings with AMD IOMMUs (XSA-275)
  xsa275-1.patch
  xsa275-2.patch
- bsc#1115045 - VUL-0: xen: x86: DoS from attempting to use INVPCID
  with a non-canonical addresses (XSA-279)
  xsa279.patch
- bsc#1115047 - VUL-0: xen: Fix for XSA-240 conflicts with shadow
  paging (XSA-280)
  xsa280-1.patch
  xsa280-2.patch
- bsc#1108940 - L3: XEN SLE12-SP1 domU hang on SLE12-SP3 HV
  5bdc31d5-VMX-fix-vmx_handle_eoi.patch
- bsc#1105528 - L3: xpti=no-dom0 not working as expected
  5bb60c12-x86-split-opt_xpti.patch
  5bb60c4f-x86-split-opt_pv_l1tf.patch
  5bb60c74-x86-fix-xpti-and-pv-l1tf.patch
- Upstream bug fixes (bsc#1027519)
  5bae44ce-x86-silence-false-log-messages.patch
  5bcf0722-x86-boot-enable-NMIs.patch
  5bd076e9-x86-boot-init-debug-regs-correctly.patch
  5bd076e9-x86-init-vcpu-debug-regs-correctly.patch
  5bd076e9-dombuilder-init-vcpu-debug-regs-correctly.patch
  5bd0e11b-x86-disallow-VT-x-insns-without-nested-virt.patch
  5bd85bfd-x86-fix-crash-on-xl-set-parameter-pcid.patch
  5be2a308-x86-extend-get_platform_badpages.patch
  5be2a354-x86-work-around-HLE-host-lockup-erratum.patch - bsc#1114405 - VUL-0: CVE-2018-18883: xen: Nested VT-x usable even
  when disabled (XSA-278)
  5bd0e11b-x86-disallow-VT-x-insns-without-nested-virt.patch - Upstream bug fixes (bsc#1027519)
  5b752762-x86-hvm-emul-rep-IO-should-not-cross-GFN-boundaries.patch
  5ba11ed4-credit2-fix-moving-CPUs-between-cpupools.patch
  5bacae4b-x86-boot-allocate-extra-module-slot.patch - Update to Xen 4.10.2 bug fix release (bsc#1027519)
  xen-4.10.2-testing-src.tar.bz2
- Drop the following patches contained in the new tarball
  5a6703cb-x86-move-invocations-of-hvm_flush_guest_tlbs.patch
  5a957d0e-gnttab-introduce-cmdline-feature-controls.patch
  5a9985bd-x86-invpcid-support.patch
  5ad4923e-x86-correct-S3-resume-ordering.patch
  5ad49293-x86-suppress-BTI-mitigations-around-S3.patch
  5ad600d4-x86-pv-introduce-x86emul_read_dr.patch
  5ad600d4-x86-pv-introduce-x86emul_write_dr.patch
  5ad8c3a7-x86-spec_ctrl-update-retpoline-decision-making.patch
  5adda097-x86-HPET-fix-race-triggering-ASSERT.patch
  5adda0d5-x86-HVM-never-retain-emulated-insn-cache.patch
  5adde9ed-xpti-fix-double-fault-handling.patch
  5ae06fad-SVM-fix-intercepts-for-SYS-CALL-ENTER-MSRs.patch
  5aeaeae4-introduce-vcpu_sleep_nosync_locked.patch
  5aeaeaf0-sched-fix-races-in-vcpu-migration.patch
  5aeb2c57-x86-retval-checks-of-set-guest-trapbounce.patch
  5af03009-x86-pv-hide-more-EFER-bits-from-PV.patch
  5af1daa9-1-x86-traps-fix-dr6-handing-in-DB-handler.patch
  5af1daa9-2-x86-pv-move-exception-injection-into-test_all_events.patch
  5af1daa9-3-x86-traps-use-IST-for-DB.patch
  5af1daa9-4-x86-traps-fix-handling-of-DB-in-hypervisor-context.patch
  5af1daa9-x86-vpt-support-IO-APIC-routed-intr.patch
  5af1daa9-x86-HVM-guard-against-bogus-emulator-ioreq-state.patch
  5af97999-viridian-cpuid-leaf-40000003.patch
  5afc13ae-1-x86-read-MSR_ARCH_CAPABILITIES-once.patch
  5afc13ae-2-x86-express-Xen-SPEC_CTRL-choice-as-variable.patch
  5afc13ae-3-x86-merge-bti_ist_info-use_shadow_spec_ctrl.patch
  5afc13ae-4-x86-fold-XEN_IBRS-ALTERNATIVES.patch
  5afc13ae-5-x86-rename-bits-of-spec_ctrl-infrastructure.patch
  5afc13ae-6-x86-elide-MSR_SPEC_CTRL-handling-in-idle.patch
  5afc13ae-7-x86-split-X86_FEATURE_SC_MSR.patch
  5afc13ae-8-x86-explicitly-set-Xen-default-SPEC_CTRL.patch
  5afc13ae-9-x86-cpuid-improve-guest-policies-for-speculative.patch
  5afc13ae-A-x86-introduce-spec-ctrl-cmdline-opt.patch
  5aec7393-1-x86-xpti-avoid-copy.patch
  5aec7393-2-x86-xpti-write-cr3.patch
  5aec744a-3-x86-xpti-per-domain-flag.patch
  5aec744a-4-x86-xpti-use-invpcid.patch
  5aec744a-5-x86-xpti-no-global-pages.patch
  5aec744a-6-x86-xpti-cr3-valid-flag.patch
  5aec744a-7-x86-xpti-pv_guest_cr4_to_real_cr4.patch
  5aec744b-8-x86-xpti-cr3-helpers.patch
  5aec74a8-9-x86-xpti-use-pcid.patch
  5b02c786-x86-AMD-mitigations-for-GPZ-SP4.patch
  5b02c786-x86-Intel-mitigations-for-GPZ-SP4.patch
  5b02c786-x86-msr-virtualise-SPEC_CTRL-SSBD.patch
  5b0bc9da-x86-XPTI-fix-S3-resume.patch
  5b0d2286-libxc-x86-PV-dont-hand-through-CPUID-leaf-0x80000008.patch
  5b0d2dbc-x86-correct-default_xen_spec_ctrl.patch
  5b0d2ddc-x86-CPUID-dont-override-tool-stack-hidden-STIBP.patch
  5b150ef9-x86-fix-error-handling-of-pv-dr7-shadow.patch
  5b21825d-1-x86-support-fully-eager-FPU-context-switching.patch
  5b21825d-2-x86-spec-ctrl-mitigations-for-LazyFPU.patch
  5b238b92-x86-HVM-account-for-fully-eager-FPU.patch
  5b2b7172-x86-EFI-fix-FPU-state-handling-around-runtime-calls.patch
  5b31e004-x86-HVM-emul-attempts-FPU-set-fpu_initialised.patch
  5b323e3c-x86-EFI-fix-FPU-state-handling-around-runtime-calls.patch
  5b34882d-x86-mm-dont-bypass-preemption-checks.patch
  5b348874-x86-refine-checks-in-DB-handler.patch
  5b348897-libxl-qemu_disk_scsi_drive_string-break-out-common.patch
  5b3488a2-libxl-restore-passing-ro-to-qemu-for-SCSI-disks.patch
  5b34891a-x86-HVM-dont-cause-NM-to-be-raised.patch
  5b348954-x86-guard-against-NM.patch
  5b3f8fa5-port-array_index_nospec-from-Linux.patch
  5b4488e7-x86-spec-ctrl-cmdline-handling.patch
  5b471517-page_alloc-correct-first_dirty-calc-in-block-merging.patch
  5b4c9a60-allow-cpu_down-to-be-called-earlier.patch
  5b4db308-SVM-fix-cleanup-svm_inject_event.patch
  5b5040c3-cpupools-fix-state-when-downing-a-CPU-failed.patch
  5b5040f2-x86-AMD-distinguish-CU-from-HT.patch
  5b508775-1-x86-distinguish-CPU-offlining-and-removal.patch
  5b508775-2-x86-possibly-bring-up-all-CPUs.patch
  5b508775-3-x86-cmdline-opt-to-avoid-use-of-secondary-HTs.patch
  5b508ce8-VMX-dont-clobber-dr6-while-debug-state-is-lazy.patch
  5b50df16-1-x86-xstate-use-guest-CPUID-policy.patch
  5b50df16-2-x86-make-xstate-calculation-errors-more-obvious.patch
  5b56feb1-x86-hvm-disallow-unknown-EFER-bits.patch
  5b56feb2-x86-XPTI-parsing-on-fixed-Intel-HW.patch
  5b62ca93-VMX-avoid-hitting-BUG_ON.patch
  5b6d84ac-x86-fix-improve-vlapic-read-write.patch
  5b6d8ce2-x86-XPTI-parsing.patch
  5b34b8fe-VMX-defer-vmx_vmcs_exit-as-long-as-possible.patch
  5b3cab8e-1-VMX-MSR_DEBUGCTL-handling.patch
  5b3cab8e-2-VMX-improve-MSR-load-save-API.patch
  5b3cab8e-3-VMX-cleanup-MSR-load-save-infra.patch
  5b3cab8f-1-VMX-factor-out-locate_msr_entry.patch
  5b3cab8f-2-VMX-remote-access-to-MSR-lists.patch
  5b3cab8f-3-VMX-improve-LBR-MSR-handling.patch
  5b3cab8f-4-VMX-pass-MSR-value-into-vmx_msr_add.patch
  5b3cab8f-5-VMX-load-only-guest-MSR-entries.patch
  5b505fe5-VMX-fix-find-msr-build.patch
  5b72fbbe-ARM-disable-grant-table-v2.patch
  5b72fbbe-oxenstored-eval-order.patch
  5b72fbbe-vtx-Fix-the-checking-for-unknown-invalid-MSR_DEBUGCTL-bits.patch
  5b72fbbf-1-spec-ctrl-Calculate-safe-PTE-addresses-for-L1TF-mitigations.patch
  5b72fbbf-2-spec-ctrl-Introduce-an-option-to-control-L1TF-mitigation-for-PV-guests.patch
  5b72fbbf-3-shadow-Infrastructure-to-force-a-PV-guest-into-shadow-mode.patch
  5b72fbbf-4-mm-Plumbing-to-allow-any-PTE-update-to-fail-with--ERESTART.patch
  5b72fbbf-5-pv-Force-a-guest-into-shadow-mode-when-it-writes-an-L1TF-vulnerable-PTE.patch
  5b72fbbf-6-spec-ctrl-CPUID-MSR-definitions-for-L1D_FLUSH.patch
  5b72fbbf-7-msr-Virtualise-MSR_FLUSH_CMD-for-guests.patch
  5b72fbbf-8-spec-ctrl-Introduce-an-option-to-control-L1D_FLUSH-for-HVM-HAP-guests.patch
  5b72fbbf-9-spec-ctrl=no-global-disable.patch
  5b72fbbf-A-xl-conf-add-global-affinity-masks.patch
  5b74190e-x86-hvm-ioreq-MMIO-range-check-honor-DF.patch
  5b75afef-x86-setup-avoid-OoB-E820-lookup.patch
  5b76b780-rangeset-inquiry-functions-tolerate-NULL.patch
  5b83c654-VT-d-dmar-iommu-mem-leak-fix.patch
  5b8d5832-x86-assorted-array_index_nospec-insertions.patch - bsc#1094508 - L3: Kernel oops in fs/dcache.c called by
  d_materialise_unique()
  5b9784ad-x86-HVM-drop-hvm_fetch_from_guest_linear.patch
  5b9784d2-x86-HVM-add-known_gla-helper.patch
  5b9784f2-x86-HVM-split-page-straddling-accesses.patch
- bsc#1103279 - (CVE-2018-15470) VUL-0: CVE-2018-15470: xen:
  oxenstored does not apply quota-maxentity (XSA-272)
  5b72fbbe-oxenstored-eval-order.patch
- bsc#1103275 - (CVE-2018-15469) VUL-0: CVE-2018-15469: xen: Use of
  v2 grant tables may cause crash on ARM (XSA-268)
  5b72fbbe-ARM-disable-grant-table-v2.patch
- bsc#1103276 - VUL-0: CVE-2018-15468: xen: x86: Incorrect
  MSR_DEBUGCTL handling lets guests enable BTS (XSA-269)
  5b72fbbe-vtx-Fix-the-checking-for-unknown-invalid-MSR_DEBUGCTL-bits.patch (Replaces xsa269.patch)
- bsc#1091107 - VUL-0: CVE-2018-3646: xen: L1 Terminal Fault -VMM
  (XSA-273)
  5b72fbbf-1-spec-ctrl-Calculate-safe-PTE-addresses-for-L1TF-mitigations.patch (Replaces xsa273-1.patch)
  5b72fbbf-2-spec-ctrl-Introduce-an-option-to-control-L1TF-mitigation-for-PV-guests.patch (Replaces xsa273-2.patch)
  5b72fbbf-3-shadow-Infrastructure-to-force-a-PV-guest-into-shadow-mode.patch (Replaces xsa273-3.patch)
  5b72fbbf-4-mm-Plumbing-to-allow-any-PTE-update-to-fail-with--ERESTART.patch (Replaces xsa273-4.patch)
  5b72fbbf-5-pv-Force-a-guest-into-shadow-mode-when-it-writes-an-L1TF-vulnerable-PTE.patch (Replaces xsa273-5.patch)
  5b72fbbf-6-spec-ctrl-CPUID-MSR-definitions-for-L1D_FLUSH.patch (Replaces xsa273-6.patch)
  5b72fbbf-7-msr-Virtualise-MSR_FLUSH_CMD-for-guests.patch (Replaces xsa273-7.patch)
  5b72fbbf-8-spec-ctrl-Introduce-an-option-to-control-L1D_FLUSH-for-HVM-HAP-guests.patch (Replaces xsa273-8.patch)
  5b72fbbf-9-spec-ctrl=no-global-disable.patch
  5b72fbbf-A-xl-conf-add-global-affinity-masks.patch
- Upstream patches from Jan (bsc#1027519)
  5a957d0e-gnttab-introduce-cmdline-feature-controls.patch
  5b6d84ac-x86-fix-improve-vlapic-read-write.patch
  5b74190e-x86-hvm-ioreq-MMIO-range-check-honor-DF.patch
  5b75afef-x86-setup-avoid-OoB-E820-lookup.patch
  5b76b780-rangeset-inquiry-functions-tolerate-NULL.patch
  5b83c654-VT-d-dmar-iommu-mem-leak-fix.patch
  5b8d5832-x86-assorted-array_index_nospec-insertions.patch - bsc#1078292 - rpmbuild -ba SPECS/xen.spec with xen-4.9.1 failed
  xen.spec - bsc#1091107 - VUL-0: CVE-2018-3646: xen: L1 Terminal Fault -VMM
  (XSA-273)
  xsa273-1.patch
  xsa273-2.patch
  xsa273-3.patch
  xsa273-4.patch
  xsa273-5.patch
  xsa273-6.patch
  xsa273-7.patch
  xsa273-8.patch
- Upstream prereq patches for XSA-273 (bsc#1027519)
  5b34b8fe-VMX-defer-vmx_vmcs_exit-as-long-as-possible.patch
  5b3cab8e-1-VMX-MSR_DEBUGCTL-handling.patch
  5b3cab8e-2-VMX-improve-MSR-load-save-API.patch
  5b3cab8e-3-VMX-cleanup-MSR-load-save-infra.patch
  5b3cab8f-1-VMX-factor-out-locate_msr_entry.patch
  5b3cab8f-2-VMX-remote-access-to-MSR-lists.patch
  5b3cab8f-3-VMX-improve-LBR-MSR-handling.patch
  5b3cab8f-4-VMX-pass-MSR-value-into-vmx_msr_add.patch
  5b3cab8f-5-VMX-load-only-guest-MSR-entries.patch
  5b505fe5-VMX-fix-find-msr-build.patch
  5b62ca93-VMX-avoid-hitting-BUG_ON.patch
  5b6d8ce2-x86-XPTI-parsing.patch - bsc#1103276 - VUL-0: CVE-2018-15468: xen: x86: Incorrect
  MSR_DEBUGCTL handling lets guests enable BTS (XSA-269)
  xsa269.patch - Upstream patches from Jan (bsc#1027519)
  5af03009-x86-pv-hide-more-EFER-bits-from-PV.patch
  5b3f8fa5-port-array_index_nospec-from-Linux.patch
  5b4488e7-x86-spec-ctrl-cmdline-handling.patch
  5b471517-page_alloc-correct-first_dirty-calc-in-block-merging.patch
  5b4c9a60-allow-cpu_down-to-be-called-earlier.patch
  5b4db308-SVM-fix-cleanup-svm_inject_event.patch
  5b5040c3-cpupools-fix-state-when-downing-a-CPU-failed.patch
  5b5040f2-x86-AMD-distinguish-CU-from-HT.patch
  5b508775-1-x86-distinguish-CPU-offlining-and-removal.patch
  5b508775-2-x86-possibly-bring-up-all-CPUs.patch
  5b508775-3-x86-cmdline-opt-to-avoid-use-of-secondary-HTs.patch
  5b508ce8-VMX-dont-clobber-dr6-while-debug-state-is-lazy.patch
  5b50df16-1-x86-xstate-use-guest-CPUID-policy.patch
  5b50df16-2-x86-make-xstate-calculation-errors-more-obvious.patch
  5b56feb1-x86-hvm-disallow-unknown-EFER-bits.patch
  5b56feb2-x86-XPTI-parsing-on-fixed-Intel-HW.patch - Upstream patches from Jan (bsc#1027519)
  5b02c786-x86-AMD-mitigations-for-GPZ-SP4.patch (Replaces Spectre-v4-1.patch)
  5b02c786-x86-Intel-mitigations-for-GPZ-SP4.patch (Replaces Spectre-v4-2.patch)
  5b02c786-x86-msr-virtualise-SPEC_CTRL-SSBD.patch (Replaces Spectre-v4-3.patch)
  5b0bc9da-x86-XPTI-fix-S3-resume.patch
  5b0d2286-libxc-x86-PV-dont-hand-through-CPUID-leaf-0x80000008.patch
  5b0d2d91-x86-suppress-sync-when-XPTI-off.patch
  5b0d2dbc-x86-correct-default_xen_spec_ctrl.patch
  5b0d2ddc-x86-CPUID-dont-override-tool-stack-hidden-STIBP.patch
  5b150ef9-x86-fix-error-handling-of-pv-dr7-shadow.patch
  5b21825d-1-x86-support-fully-eager-FPU-context-switching.patch (Replaces xsa267-1.patch)
  5b21825d-2-x86-spec-ctrl-mitigations-for-LazyFPU.patch (Replaces xsa267-2.patch)
  5b238b92-x86-HVM-account-for-fully-eager-FPU.patch
  5b2b7172-x86-EFI-fix-FPU-state-handling-around-runtime-calls.patch
  5b31e004-x86-HVM-emul-attempts-FPU-set-fpu_initialised.patch
  5b323e3c-x86-EFI-fix-FPU-state-handling-around-runtime-calls.patch
  5b34882d-x86-mm-dont-bypass-preemption-checks.patch (Replaces xsa264.patch)
  5b348874-x86-refine-checks-in-DB-handler.patch (Replaces xsa265.patch)
  5b348897-libxl-qemu_disk_scsi_drive_string-break-out-common.patch (Replaces xsa266-1-<>.patch)
  5b3488a2-libxl-restore-passing-ro-to-qemu-for-SCSI-disks.patch (Replaces xsa266-2-<>.patch)
  5b34891a-x86-HVM-dont-cause-NM-to-be-raised.patch
  5b348954-x86-guard-against-NM.patch - Fix more build gcc8 related failures with xen.fuzz-_FORTIFY_SOURCE.patch - bsc#1098403 - fix regression introduced by changes for bsc#1079730
  a PV domU without qcow2 and/or vfb has no qemu attached.
  Ignore QMP errors for PV domUs to handle PV domUs with and without
  an attached qemu-xen.
  xen.bug1079730.patch - bsc#1097521 - VUL-0: CVE-2018-12891: xen: preemption checks
  bypassed in x86 PV MM handling (XSA-264)
  xsa264.patch
- bsc#1097522 - VUL-0: CVE-2018-12893: xen: x86: #DB exception
  safety check can be triggered by a guest (XSA-265)
  xsa265.patch
- bsc#1097523 - VUL-0: CVE-2018-12892: xen: libxl fails to honour
  readonly flag on HVM emulated SCSI disks (XSA-266)
  xsa266-1-libxl-qemu_disk_scsi_drive_string-Break-out-common-p.patch
  xsa266-2-libxl-restore-passing-readonly-to-qemu-for-SCSI-disk.patch - bsc#1095242 - VUL-0: CVE-2018-3665: xen: Lazy FP Save/Restore
  (XSA-267)
  xsa267-1.patch
  xsa267-2.patch - bsc#1092631 - VUL-0: CVE-2018-3639: xen: V4 â€“ Speculative Store
  Bypass aka "Memory Disambiguation" (XSA-263)
  5ad4923e-x86-correct-S3-resume-ordering.patch
  5ad49293-x86-suppress-BTI-mitigations-around-S3.patch
  5afc13ae-1-x86-read-MSR_ARCH_CAPABILITIES-once.patch
  5afc13ae-2-x86-express-Xen-SPEC_CTRL-choice-as-variable.patch
  5afc13ae-3-x86-merge-bti_ist_info-use_shadow_spec_ctrl.patch
  5afc13ae-4-x86-fold-XEN_IBRS-ALTERNATIVES.patch
  5afc13ae-5-x86-rename-bits-of-spec_ctrl-infrastructure.patch
  5afc13ae-6-x86-elide-MSR_SPEC_CTRL-handling-in-idle.patch
  5afc13ae-7-x86-split-X86_FEATURE_SC_MSR.patch
  5afc13ae-8-x86-explicitly-set-Xen-default-SPEC_CTRL.patch
  5afc13ae-9-x86-cpuid-improve-guest-policies-for-speculative.patch
  5afc13ae-A-x86-introduce-spec-ctrl-cmdline-opt.patch
  Spectre-v4-1.patch
  Spectre-v4-2.patch
  Spectre-v4-3.patch - Always call qemus xen-save-devices-state in suspend/resume to
  fix migration with qcow2 images (bsc#1079730)
  libxl.Add-a-version-check-of-QEMU-for-QMP-commands.patch
  libxl.qmp-Tell-QEMU-about-live-migration-or-snapshot.patch
  xen.bug1079730.patch - bsc#1087289 - L3: Xen BUG at sched_credit.c:1663
  5aeaeae4-introduce-vcpu_sleep_nosync_locked.patch
  5aeaeaf0-sched-fix-races-in-vcpu-migration.patch
- Upstream patches from Jan (bsc#1027519)
  5ad600d4-x86-pv-introduce-x86emul_read_dr.patch
  5ad600d4-x86-pv-introduce-x86emul_write_dr.patch
  5ad8c3a7-x86-spec_ctrl-update-retpoline-decision-making.patch
  5adda097-x86-HPET-fix-race-triggering-ASSERT.patch
  5adda0d5-x86-HVM-never-retain-emulated-insn-cache.patch
  5ae06fad-SVM-fix-intercepts-for-SYS-CALL-ENTER-MSRs.patch
  5ae31917-x86-cpuidle-init-stats-lock-once.patch
  5aeb2c57-x86-retval-checks-of-set-guest-trapbounce.patch
  5af1daa9-1-x86-traps-fix-dr6-handing-in-DB-handler.patch (Replaces xsa260-1.patch)
  5af1daa9-2-x86-pv-move-exception-injection-into-test_all_events.patch (Replaces xsa260-2.patch)
  5af1daa9-3-x86-traps-use-IST-for-DB.patch (Replaces xsa260-3.patch)
  5af1daa9-4-x86-traps-fix-handling-of-DB-in-hypervisor-context.patch (Replaces xsa260-4.patch)
  5af1daa9-x86-HVM-guard-against-bogus-emulator-ioreq-state.patch (Replaces xsa262.patch)
  5af1daa9-x86-vpt-support-IO-APIC-routed-intr.patch (Replaces xsa261.patch)
  5af97999-viridian-cpuid-leaf-40000003.patch - Fixes related to Page Table Isolation (XPTI). bsc#1074562 XSA-254
  5a6703cb-x86-move-invocations-of-hvm_flush_guest_tlbs.patch
  5a9985bd-x86-invpcid-support.patch
  5adde9ed-xpti-fix-double-fault-handling.patch
  5aec7393-1-x86-xpti-avoid-copy.patch
  5aec7393-2-x86-xpti-write-cr3.patch
  5aec744a-3-x86-xpti-per-domain-flag.patch
  5aec744a-4-x86-xpti-use-invpcid.patch
  5aec744a-5-x86-xpti-no-global-pages.patch
  5aec744a-6-x86-xpti-cr3-valid-flag.patch
  5aec744a-7-x86-xpti-pv_guest_cr4_to_real_cr4.patch
  5aec744b-8-x86-xpti-cr3-helpers.patch
  5aec74a8-9-x86-xpti-use-pcid.patch - Update to Xen 4.10.1 bug fix release (bsc#1027519)
  xen-4.10.1-testing-src.tar.bz2
  disable-building-pv-shim.patch
- Drop the following patches contained in the new tarball
  5a21a77e-x86-pv-construct-d0v0s-GDT-properly.patch
  5a2fda0d-x86-mb2-avoid-Xen-when-looking-for-module-crashkernel-pos.patch
  5a2ffc1f-x86-mm-drop-bogus-paging-mode-assertion.patch
  5a313972-x86-microcode-add-support-for-AMD-Fam17.patch
  5a32bd79-x86-vmx-dont-use-hvm_inject_hw_exception-in-.patch
  5a4caa5e-x86-IRQ-conditionally-preserve-access-perm.patch
  5a4caa8c-x86-E820-don-t-overrun-array.patch
  5a4e2bca-x86-free-msr_vcpu_policy-during-destruction.patch
  5a4e2c2c-x86-upcall-inject-spurious-event-after-setting-vector.patch
  5a4fd893-1-x86-break-out-alternative-asm-into-separate-header.patch
  5a4fd893-2-x86-introduce-ALTERNATIVE_2-macros.patch
  5a4fd893-3-x86-hvm-rename-update_guest_vendor-to-cpuid_policy_changed.patch
  5a4fd893-4-x86-introduce-cpuid_policy_updated.patch
  5a4fd893-5-x86-entry-remove-partial-cpu_user_regs.patch
  5a4fd894-1-x86-rearrange-RESTORE_ALL-to-restore-in-stack-order.patch
  5a4fd894-2-x86-hvm-use-SAVE_ALL-after-VMExit.patch
  5a4fd894-3-x86-erase-guest-GPRs-on-entry-to-Xen.patch
  5a4fd894-4-clarifications-to-wait-infrastructure.patch
  5a534c78-x86-dont-use-incorrect-CPUID-values-for-topology.patch
  5a5cb24c-x86-mm-always-set-_PAGE_ACCESSED-on-L4-updates.patch
  5a5e2cff-x86-Meltdown-band-aid.patch
  5a5e2d73-x86-Meltdown-band-aid-conditional.patch
  5a5e3a4e-1-x86-support-compiling-with-indirect-branch-thunks.patch
  5a5e3a4e-2-x86-support-indirect-thunks-from-asm.patch
  5a5e3a4e-3-x86-report-speculative-mitigation-details.patch
  5a5e3a4e-4-x86-AMD-set-lfence-as-Dispatch-Serialising.patch
  5a5e3a4e-5-x86-introduce-alternative-indirect-thunks.patch
  5a5e3a4e-6-x86-definitions-for-Indirect-Branch-Controls.patch
  5a5e3a4e-7-x86-cmdline-opt-to-disable-IBRS-IBPB-STIBP.patch
  5a5e459c-1-x86-SVM-offer-CPUID-faulting-to-AMD-HVM-guests.patch
  5a5e459c-2-x86-report-domain-id-on-CPUID.patch
  5a68bc16-x86-acpi-process-softirqs-logging-Cx.patch
  5a69c0b9-x86-fix-GET_STACK_END.patch
  5a6b36cd-1-x86-cpuid-handling-of-IBRS-IBPB-STIBP-and-IBRS-for-guests.patch
  5a6b36cd-2-x86-msr-emulation-of-SPEC_CTRL-PRED_CMD.patch
  5a6b36cd-3-x86-migrate-MSR_SPEC_CTRL.patch
  5a6b36cd-4-x86-hvm-permit-direct-access-to-SPEC_CTRL-PRED_CMD.patch
  5a6b36cd-5-x86-use-SPEC_CTRL-on-entry.patch
  5a6b36cd-6-x86-clobber-RSB-RAS-on-entry.patch
  5a6b36cd-7-x86-no-alternatives-in-NMI-MC-paths.patch
  5a6b36cd-8-x86-boot-calculate-best-BTI-mitigation.patch
  5a6b36cd-9-x86-issue-speculation-barrier.patch
  5a6b36cd-A-x86-offer-Indirect-Branch-Controls-to-guests.patch
  5a6b36cd-B-x86-clear-SPEC_CTRL-while-idle.patch
  5a7b1bdd-x86-reduce-Meltdown-band-aid-IPI-overhead.patch
  5a843807-x86-spec_ctrl-fix-bugs-in-SPEC_CTRL_ENTRY_FROM_INTR_IST.patch
  5a856a2b-x86-emul-fix-64bit-decoding-of-segment-overrides.patch
  5a856a2b-x86-use-32bit-xors-for-clearing-GPRs.patch
  5a856a2b-x86-xpti-hide-almost-all-of-Xen-image-mappings.patch
  5a8be788-x86-nmi-start-NMI-watchdog-on-CPU0-after-SMP.patch
  5a95373b-x86-PV-avoid-leaking-other-guests-MSR_TSC_AUX.patch
  5a95571f-memory-dont-implicitly-unpin-in-decrease-res.patch
  5a95576c-gnttab-ARM-dont-corrupt-shared-GFN-array.patch
  5a955800-gnttab-dont-free-status-pages-on-ver-change.patch
  5a955854-x86-disallow-HVM-creation-without-LAPIC-emul.patch
  5a956747-x86-HVM-dont-give-wrong-impression-of-WRMSR-success.patch
  5a9eb7f1-x86-xpti-dont-map-stack-guard-pages.patch
  5a9eb85c-x86-slightly-reduce-XPTI-overhead.patch
  5a9eb890-x86-remove-CR-reads-from-exit-to-guest-path.patch
  5aa2b6b9-cpufreq-ondemand-CPU-offlining-race.patch
  5aaa9878-x86-vlapic-clear-TMR-bit-for-edge-triggered-intr.patch
  xsa258.patch
  xsa259.patch - bsc#1090820 - VUL-0: CVE-2018-8897: xen: x86: mishandling of
  debug exceptions (XSA-260)
  xsa260-1.patch
  xsa260-2.patch
  xsa260-3.patch
  xsa260-4.patch
- bsc#1090822 - VUL-0: CVE-2018-10982: xen: x86 vHPET interrupt
  injection errors (XSA-261)
  xsa261.patch
- bsc#1090823 - VUL-0: CVE-2018-10981: xen: qemu may drive Xen into
  unbounded loop (XSA-262)
  xsa262.patch - bsc#1089152 - VUL-0: CVE-2018-10472: xen: Information leak via
  crafted user-supplied CDROM (XSA-258)
  xsa258.patch
- bsc#1089635 - VUL-0: CVE-2018-10471: xen: x86: PV guest may crash
  Xen with XPTI (XSA-259)
  xsa259.patch - Preserve xen-syms from xen-dbg.gz to allow processing vmcores
  with crash(1) (bsc#1087251) - Upstream patches from Jan (bsc#1027519) and fixes related to
  Page Table Isolation (XPTI). See also bsc#1074562 XSA-254
  5a856a2b-x86-xpti-hide-almost-all-of-Xen-image-mappings.patch
  5a9eb7f1-x86-xpti-dont-map-stack-guard-pages.patch
  5a9eb85c-x86-slightly-reduce-XPTI-overhead.patch
  5a9eb890-x86-remove-CR-reads-from-exit-to-guest-path.patch
  5aa2b6b9-cpufreq-ondemand-CPU-offlining-race.patch
  5aaa9878-x86-vlapic-clear-TMR-bit-for-edge-triggered-intr.patch - bsc#1072834 - Xen HVM: unchecked MSR access error: RDMSR from
  0xc90 at rIP: 0xffffffff93061456 (native_read_msr+0x6/0x30)
  5a956747-x86-HVM-dont-give-wrong-impression-of-WRMSR-success.patch
- Upstream patches from Jan (bsc#1027519)
  5a79d7ed-libxc-packed-initrd-dont-fail-domain-creation.patch
  5a7b1bdd-x86-reduce-Meltdown-band-aid-IPI-overhead.patch
  5a843807-x86-spec_ctrl-fix-bugs-in-SPEC_CTRL_ENTRY_FROM_INTR_IST.patch
  5a856a2b-x86-emul-fix-64bit-decoding-of-segment-overrides.patch
  5a856a2b-x86-use-32bit-xors-for-clearing-GPRs.patch
  5a8be788-x86-nmi-start-NMI-watchdog-on-CPU0-after-SMP.patch
  5a95373b-x86-PV-avoid-leaking-other-guests-MSR_TSC_AUX.patch
  5a95571f-memory-dont-implicitly-unpin-in-decrease-res.patch (Replaces xsa252.patch)
  5a95576c-gnttab-ARM-dont-corrupt-shared-GFN-array.patch (Replaces xsa255-1.patch)
  5a955800-gnttab-dont-free-status-pages-on-ver-change.patch (Replaces xsa255-2.patch)
  5a955854-x86-disallow-HVM-creation-without-LAPIC-emul.patch (Replaces xsa256.patch)
- Drop
  xsa252.patch
  xsa255-1.patch
  xsa255-2.patch
  xsa256.patch - bsc#1080635 - VUL-0: CVE-2018-7540: xen: DoS via non-preemptable
  L3/L4 pagetable freeing (XSA-252)
  xsa252.patch
- bsc#1080662 - VUL-0: CVE-2018-7541: xen: grant table v2 -> v1
  transition may crash Xen (XSA-255)
  xsa255-1.patch
  xsa255-2.patch
- bsc#1080634 - VUL-0: CVE-2018-7542: xen: x86 PVH guest without
  LAPIC may DoS the host (XSA-256)
  xsa256.patch - Remove stale systemd presets code for 13.2 and older - fate#324965 - add script, udev rule and systemd service to watch
  for vcpu online/offline events in a HVM domU
  They are triggered via xl vcpu-set domU N - Replace hardcoded xen with Name tag when refering to subpkgs - Make sure tools and tools-domU require libs from the very same build - tools-domU: Add support for qemu guest agent. New files
  80-xen-channel-setup.rules and xen-channel-setup.sh configure a
  xen-pv-channel for use by the guest agent
  FATE#324963 - Remove outdated /etc/xen/README* - bsc#1073961 - VUL-0: CVE-2018-5244: xen: x86: memory leak with
  MSR emulation (XSA-253)
  5a4e2bca-x86-free-msr_vcpu_policy-during-destruction.patch
- bsc#1074562 - VUL-0: CVE-2017-5753,CVE-2017-5715,CVE-2017-5754
  xen: Information leak via side effects of speculative execution
  (XSA-254). Includes Spectre v2 mitigation.
  5a4caa5e-x86-IRQ-conditionally-preserve-access-perm.patch
  5a4caa8c-x86-E820-don-t-overrun-array.patch
  5a4e2c2c-x86-upcall-inject-spurious-event-after-setting-vector.patch
  5a4fd893-1-x86-break-out-alternative-asm-into-separate-header.patch
  5a4fd893-2-x86-introduce-ALTERNATIVE_2-macros.patch
  5a4fd893-3-x86-hvm-rename-update_guest_vendor-to-cpuid_policy_changed.patch
  5a4fd893-4-x86-introduce-cpuid_policy_updated.patch
  5a4fd893-5-x86-entry-remove-partial-cpu_user_regs.patch
  5a4fd894-1-x86-rearrange-RESTORE_ALL-to-restore-in-stack-order.patch
  5a4fd894-2-x86-hvm-use-SAVE_ALL-after-VMExit.patch
  5a4fd894-3-x86-erase-guest-GPRs-on-entry-to-Xen.patch
  5a4fd894-4-clarifications-to-wait-infrastructure.patch
  5a534c78-x86-dont-use-incorrect-CPUID-values-for-topology.patch
  5a5cb24c-x86-mm-always-set-_PAGE_ACCESSED-on-L4-updates.patch
  5a5e2cff-x86-Meltdown-band-aid.patch
  5a5e2d73-x86-Meltdown-band-aid-conditional.patch
  5a5e3a4e-1-x86-support-compiling-with-indirect-branch-thunks.patch
  5a5e3a4e-2-x86-support-indirect-thunks-from-asm.patch
  5a5e3a4e-3-x86-report-speculative-mitigation-details.patch
  5a5e3a4e-4-x86-AMD-set-lfence-as-Dispatch-Serialising.patch
  5a5e3a4e-5-x86-introduce-alternative-indirect-thunks.patch
  5a5e3a4e-6-x86-definitions-for-Indirect-Branch-Controls.patch
  5a5e3a4e-7-x86-cmdline-opt-to-disable-IBRS-IBPB-STIBP.patch
  5a5e459c-1-x86-SVM-offer-CPUID-faulting-to-AMD-HVM-guests.patch
  5a5e459c-2-x86-report-domain-id-on-CPUID.patch
  5a68bc16-x86-acpi-process-softirqs-logging-Cx.patch
  5a69c0b9-x86-fix-GET_STACK_END.patch
  5a6b36cd-1-x86-cpuid-handling-of-IBRS-IBPB-STIBP-and-IBRS-for-guests.patch
  5a6b36cd-2-x86-msr-emulation-of-SPEC_CTRL-PRED_CMD.patch
  5a6b36cd-3-x86-migrate-MSR_SPEC_CTRL.patch
  5a6b36cd-4-x86-hvm-permit-direct-access-to-SPEC_CTRL-PRED_CMD.patch
  5a6b36cd-5-x86-use-SPEC_CTRL-on-entry.patch
  5a6b36cd-6-x86-clobber-RSB-RAS-on-entry.patch
  5a6b36cd-7-x86-no-alternatives-in-NMI-MC-paths.patch
  5a6b36cd-8-x86-boot-calculate-best-BTI-mitigation.patch
  5a6b36cd-9-x86-issue-speculation-barrier.patch
  5a6b36cd-A-x86-offer-Indirect-Branch-Controls-to-guests.patch
  5a6b36cd-B-x86-clear-SPEC_CTRL-while-idle.patch - Fix python3 deprecated atoi call (bsc#1067224)
  pygrub-python3-conversion.patch
- Drop xenmon-python3-conversion.patch - bsc#1067317 - pass cache=writeback|unsafe|directsync to qemu,
  depending on the libxl disk settings
  libxl.add-option-to-disable-disk-cache-flushes-in-qdisk.patch - Remove libxl.LIBXL_DESTROY_TIMEOUT.debug.patch - bsc#1067224 - xen-tools have hard dependency on Python 2
  build-python3-conversion.patch
  bin-python3-conversion.patch - bsc#1070165 - xen crashes after aborted localhost migration
  5a2ffc1f-x86-mm-drop-bogus-paging-mode-assertion.patch
- bsc#1035442 - L3: libxl: error: libxl.c:1676:devices_destroy_cb:
  libxl__devices_destroy failed
  5a33a12f-domctl-improve-locking-during-domain-destruction.patch
- Upstream patches from Jan (bsc#1027519)
  5a21a77e-x86-pv-construct-d0v0s-GDT-properly.patch
  5a2fda0d-x86-mb2-avoid-Xen-when-looking-for-module-crashkernel-pos.patch
  5a313972-x86-microcode-add-support-for-AMD-Fam17.patch
  5a32bd79-x86-vmx-dont-use-hvm_inject_hw_exception-in-.patch - Update to Xen 4.10.0 FCS (fate#321394, fate#322686)
  xen-4.10.0-testing-src.tar.bz2 - Rebuild initrd if xen-tools-domU is updated - Update to Xen 4.10.0-rc8 (fate#321394, fate#322686)
  xen-4.10.0-testing-src.tar.bz2 - Increase the value of LIBXL_DESTROY_TIMEOUT from 10 to 100 seconds
  If many domUs shutdown in parallel the backends can not keep up
  Add some debug output to track how long backend shutdown takes (bsc#1035442)
  libxl.LIBXL_DESTROY_TIMEOUT.patch
  libxl.LIBXL_DESTROY_TIMEOUT.debug.patch - Adjust xenstore-run-in-studomain.patch to change the defaults
  in the code instead of changing the sysconfig template, to also
  cover the upgrade case - Update to Xen 4.10.0-rc6 (fate#321394, fate#322686)
  xen-4.10.0-testing-src.tar.bz2 - Since xen switched to Kconfig, building a debug hypervisor
  was done by default. Adjust make logic to build a non-debug
  hypervisor by default, and continue to provide one as xen-dbg.gz - fate#316614: set migration constraints from cmdline
  fix libxl.set-migration-constraints-from-cmdline.patch for xen-4.10 - Document the suse-diskcache-disable-flush option in
  xl-disk-configuration(5) (bsc#879425,bsc#1067317) - Replace references to /var/adm/fillup-templates with new
  %_fillupdir macro (boo#1069468) - Update to Xen 4.10.0-rc5 (fate#321394, fate#322686)
  xen-4.10.0-testing-src.tar.bz2
- fate#323663 - Run Xenstore in stubdomain
  xenstore-run-in-studomain.patch - bsc#1067224 - xen-tools have hard dependency on Python 2
  pygrub-python3-conversion.patch
  xenmon-python3-conversion.patch
  migration-python3-conversion.patch
  xnloader.py
  xen2libvirt.py - Remove xendriverdomain.service (bsc#1065185)
  Driver domains must be configured manually with custom .service file - Update to Xen 4.10.0-rc3 (fate#321394, fate#322686)
  xen-4.10.0-testing-src.tar.bz2
- Drop 59f31268-libxc-remove-stale-error-check-for-domain-size.patch - Adjust xen-dom0-modules.service to ignore errors (bsc#1065187) - fate#324052 Support migration of Xen HVM domains larger than 1TB
  59f31268-libxc-remove-stale-error-check-for-domain-size.patch - Update to Xen 4.10.0-rc2 (fate#321394, fate#322686)
  xen-4.10.0-testing-src.tar.bz2 - Update to Xen 4.10.0-rc1 (fate#321394, fate#322686)
  xen-4.10.0-testing-src.tar.bz2
- Drop patches included in new tarball
  592fd5f0-stop_machine-fill-result-only-in-case-of-error.patch
  596f257e-x86-fix-hvmemul_insn_fetch.patch
  5982fd99-VT-d-don-t-panic-warn-on-iommu-no-igfx.patch
  598c3630-VT-d-PI-disable-when-CPU-side-PI-is-off.patch
  598c3706-cpufreq-only-stop-ondemand-governor-if-started.patch
  5992f1e5-x86-grant-disallow-misaligned-PTEs.patch
  5992f20d-gnttab-split-maptrack-lock-to-make-it-useful-again.patch
  5992f233-gnttab-correct-pin-status-fixup-for-copy.patch
  59958e76-gnttab-dont-use-possibly-unbounded-tail-calls.patch
  59958ebf-gnttab-fix-transitive-grant-handling.patch
  59958edd-gnttab-avoid-spurious-maptrack-handle-alloc-failures.patch
  599da329-arm-mm-release-grant-lock-on-xatp1-error-paths.patch
  59a01223-x86-check-for-alloc-errors-in-modify_xen_mappings.patch
  59a0130c-x86-efi-dont-write-relocs-in-efi_arch_relocate_image-1st-pass.patch
  59a9221f-VT-d-use-correct-BDF-for-VF-to-search-VT-d-unit.patch
  59ae9177-x86-emul-fix-handling-of-unimplemented-Grp7-insns.patch
  59aec335-x86emul-correct-VEX-W-handling-for-VPINSRD.patch
  59aec375-x86emul-correct-VEX-L-handling-for-VCVTx2SI.patch
  59afcea0-x86-introduce-and-use-setup_force_cpu_cap.patch
  59b2a7f2-x86-HVM-correct-repeat-count-update-linear-phys.patch
  59b7d664-mm-make-sure-node-is-less-than-MAX_NUMNODES.patch
  59b7d69b-grant_table-fix-GNTTABOP_cache_flush-handling.patch
  59b7d6c8-xenstore-dont-unlink-connection-object-twice.patch
  59b7d6d9-gnttab-also-validate-PTE-perms-upon-destroy-replace.patch
  gcc7-arm.patch
  gcc7-mini-os.patch - bsc#1061084 - VUL-0: xen: page type reference leak on x86
  (XSA-242)
  xsa242.patch
- bsc#1061086 - VUL-0: xen: x86: Incorrect handling of self-linear
  shadow mappings with translated guests (XSA-243)
  xsa243.patch
- bsc#1061087 - VUL-0: xen: x86: Incorrect handling of IST settings
  during CPU hotplug (XSA-244)
  xsa244.patch - bsc#1061077 - VUL-0: xen: DMOP map/unmap missing argument checks
  (XSA-238)
  xsa238.patch
- bsc#1061080 - VUL-0: xen: hypervisor stack leak in x86 I/O
  intercept code (XSA-239)
  xsa239.patch
- bsc#1061081 - VUL-0: xen: Unlimited recursion in linear pagetable
  de-typing (XSA-240)
  xsa240-1.patch
  xsa240-2.patch
- bsc#1061082 - VUL-0: xen: Stale TLB entry due to page type
  release race (XSA-241)
  xsa241.patch - bsc#1061075 - VUL-0: xen: pin count / page reference race in
  grant table code (XSA-236)
  xsa236.patch
- bsc#1061076 - VUL-0: xen: multiple MSI mapping issues on x86
  (XSA-237)
  xsa237-1.patch
  xsa237-2.patch
  xsa237-3.patch
  xsa237-4.patch
  xsa237-5.patch - bsc#1056278 - VUL-0: xen: Missing NUMA node parameter
  verification (XSA-231)
  59b7d664-mm-make-sure-node-is-less-than-MAX_NUMNODES.patch
- bsc#1056280 - VUL-0: xen: Missing check for grant table (XSA-232)
  59b7d69b-grant_table-fix-GNTTABOP_cache_flush-handling.patch
- bsc#1056281 - VUL-0: xen: cxenstored: Race in domain cleanup
  (XSA-233)
  59b7d6c8-xenstore-dont-unlink-connection-object-twice.patch
- bsc#1056282 - VUL-0: xen: insufficient grant unmapping checks for
  x86 PV guests (XSA-234)
  59b7d6d9-gnttab-also-validate-PTE-perms-upon-destroy-replace.patch
- bsc#1055321 - VUL-0: xen: add-to-physmap error paths fail to
  release lock on ARM (XSA-235)
  599da329-arm-mm-release-grant-lock-on-xatp1-error-paths.patch
- Upstream patches from Jan (bsc#1027519)
  59a01223-x86-check-for-alloc-errors-in-modify_xen_mappings.patch
  59a0130c-x86-efi-dont-write-relocs-in-efi_arch_relocate_image-1st-pass.patch
  59a9221f-VT-d-use-correct-BDF-for-VF-to-search-VT-d-unit.patch
  59ae9177-x86-emul-fix-handling-of-unimplemented-Grp7-insns.patch
  59aec335-x86emul-correct-VEX-W-handling-for-VPINSRD.patch
  59aec375-x86emul-correct-VEX-L-handling-for-VCVTx2SI.patch
  59afcea0-x86-introduce-and-use-setup_force_cpu_cap.patch
  59b2a7f2-x86-HVM-correct-repeat-count-update-linear-phys.patch
- Dropped gcc7-xen.patch - bsc#1057358 - Cannot Boot into SLES12.3 with Xen hypervisor when
  Secure Boot is Enabled
  xen.spec - bsc#1055695 - XEN: 11SP4 and 12SP3 HVM guests can not be restored
  update from v6 to v9 to cover more cases for ballooned domUs
  libxc.sr.superpage.patch - bsc#1026236 - remove suse_vtsc_tolerance= cmdline option for Xen
  drop the patch because it is not upstream acceptable
  remove xen.suse_vtsc_tolerance.patch - bsc#1055695 - XEN: 11SP4 and 12SP3 HVM guests can not be restored
  after the save using xl stack
  libxc.sr.superpage.patch - Unignore gcc-PIE
  the toolstack disables PIE for firmware builds as needed - Upstream patches from Jan (bsc#1027519)
  592fd5f0-stop_machine-fill-result-only-in-case-of-error.patch
  596f257e-x86-fix-hvmemul_insn_fetch.patch
  5982fd99-VT-d-don-t-panic-warn-on-iommu-no-igfx.patch
  598c3630-VT-d-PI-disable-when-CPU-side-PI-is-off.patch
  598c3706-cpufreq-only-stop-ondemand-governor-if-started.patch
  5992f1e5-x86-grant-disallow-misaligned-PTEs.patch (Replaces xsa227.patch)
  5992f20d-gnttab-split-maptrack-lock-to-make-it-useful-again.patch (Replaces xsa228.patch)
  5992f233-gnttab-correct-pin-status-fixup-for-copy.patch (Replaces xsa230.patch)
  59958e76-gnttab-dont-use-possibly-unbounded-tail-calls.patch (Replaces xsa226-1.patch)
  59958ebf-gnttab-fix-transitive-grant-handling.patch (Replaces xsa226-2.patch)
  59958edd-gnttab-avoid-spurious-maptrack-handle-alloc-failures.patch - bsc#1044974 - xen-tools require python-pam
  xen.spec - Clean up spec file errors and a few warnings. (bsc#1027519)
- Removed conditional 'with_systemd' and some old deprecated
  'sles_version' checks.
  xen.spec - Remove use of brctl utiltiy from supportconfig plugin
  FATE#323639 - Use upstream variant of mini-os __udivmoddi4 change
  gcc7-mini-os.patch - fate#323639 Move bridge-utils to legacy
  replace-obsolete-network-configuration-commands-in-s.patch - bsc#1052686 - VUL-0: xen: grant_table: possibly premature
  clearing of GTF_writing / GTF_reading (XSA-230)
  xsa230.patch - bsc#1035231 - migration of HVM domU does not use superpages
  on destination dom0
  libxc.sr.superpage.patch - bsc#1051787 - VUL-0: CVE-2017-12135: xen: possibly unbounded
  recursion in grant table code (XSA-226)
  xsa226-1.patch
  xsa226-2.patch
- bsc#1051788 - VUL-0: CVE-2017-12137: xen: x86: PV privilege
  escalation via map_grant_ref (XSA-227)
  xsa227.patch
- bsc#1051789 - VUL-0: CVE-2017-12136: xen: grant_table: Race
  conditions with maptrack free list handling (XSA-228)
  xsa228.patch - Add a supportconfig plugin
  xen-supportconfig
  FATE#323661 - bsc#1026236 - add suse_vtsc_tolerance= cmdline option for Xen
  To avoid emulation of TSC access from a domU after live migration
  add a global tolerance for the measured host kHz
  xen.suse_vtsc_tolerance.patch - fate#323662 Drop qemu-dm from xen-tools package
  The following tarball and patches have been removed
  qemu-xen-traditional-dir-remote.tar.bz2
  VNC-Support-for-ExtendedKeyEvent-client-message.patch
  0001-net-move-the-tap-buffer-into-TAPState.patch
  0002-net-increase-tap-buffer-size.patch
  0003-e1000-fix-access-4-bytes-beyond-buffer-end.patch
  0004-e1000-secrc-support.patch
  0005-e1000-multi-buffer-packet-support.patch
  0006-e1000-clear-EOP-for-multi-buffer-descriptors.patch
  0007-e1000-verify-we-have-buffers-upfront.patch
  0008-e1000-check-buffer-availability.patch
  CVE-2013-4533-qemut-pxa2xx-buffer-overrun-on-incoming-migration.patch
  CVE-2013-4534-qemut-openpic-buffer-overrun-on-incoming-migration.patch
  CVE-2013-4537-qemut-ssi-sd-fix-buffer-overrun-on-invalid-state-load.patch
  CVE-2013-4538-qemut-ssd0323-fix-buffer-overun-on-invalid-state.patch
  CVE-2013-4539-qemut-tsc210x-fix-buffer-overrun-on-invalid-state-load.patch
  CVE-2014-0222-qemut-qcow1-validate-l2-table-size.patch
  CVE-2014-3640-qemut-slirp-NULL-pointer-deref-in-sosendto.patch
  CVE-2015-4037-qemut-smb-config-dir-name.patch
  CVE-2015-5154-qemut-fix-START-STOP-UNIT-command-completion.patch
  CVE-2015-5278-qemut-Infinite-loop-in-ne2000_receive-function.patch
  CVE-2015-6815-qemut-e1000-fix-infinite-loop.patch
  CVE-2015-7512-qemut-net-pcnet-buffer-overflow-in-non-loopback-mode.patch
  CVE-2015-8345-qemut-eepro100-infinite-loop-fix.patch
  CVE-2015-8504-qemut-vnc-avoid-floating-point-exception.patch
  CVE-2016-1714-qemut-fw_cfg-add-check-to-validate-current-entry-value.patch
  CVE-2016-1981-qemut-e1000-eliminate-infinite-loops-on-out-of-bounds-transfer.patch
  CVE-2016-2391-qemut-usb-null-pointer-dereference-in-ohci-module.patch
  CVE-2016-2841-qemut-ne2000-infinite-loop-in-ne2000_receive.patch
  CVE-2016-4439-qemut-scsi-esp-OOB-write-while-writing-to-cmdbuf-in-esp_reg_write.patch
  CVE-2016-4441-qemut-scsi-esp-OOB-write-while-writing-to-cmdbuf-in-get_cmd.patch
  CVE-2016-5238-qemut-scsi-esp-OOB-write-when-using-non-DMA-mode-in-get_cmd.patch
  CVE-2016-5338-qemut-scsi-esp-OOB-rw-access-while-processing-ESP_FIFO.patch
  CVE-2016-6351-qemut-scsi-esp-make-cmdbuf-big-enough-for-maximum-CDB-size.patch
  CVE-2016-7908-qemut-net-Infinite-loop-in-mcf_fec_do_tx.patch
  CVE-2016-7909-qemut-net-pcnet-infinite-loop-in-pcnet_rdra_addr.patch
  CVE-2016-8667-qemut-dma-rc4030-divide-by-zero-error-in-set_next_tick.patch
  CVE-2016-8669-qemut-char-divide-by-zero-error-in-serial_update_parameters.patch
  CVE-2016-8910-qemut-net-rtl8139-infinite-loop-while-transmit-in-Cplus-mode.patch
  CVE-2016-9921-qemut-display-cirrus_vga-divide-by-zero-in-cirrus_do_copy.patch
  CVE-2017-6505-qemut-usb-an-infinite-loop-issue-in-ohci_service_ed_list.patch
  CVE-2017-8309-qemut-audio-host-memory-leakage-via-capture-buffer.patch
  CVE-2017-9330-qemut-usb-ohci-infinite-loop-due-to-incorrect-return-value.patch
  blktap.patch
  cdrom-removable.patch
  xen-qemu-iscsi-fix.patch
  qemu-security-etch1.patch
  xen-disable-qemu-monitor.patch
  xen-hvm-default-bridge.patch
  qemu-ifup-set-mtu.patch
  ioemu-vnc-resize.patch
  capslock_enable.patch
  altgr_2.patch
  log-guest-console.patch
  bdrv_open2_fix_flags.patch
  bdrv_open2_flags_2.patch
  ioemu-7615-qcow2-fix-alloc_cluster_link_l2.patch
  qemu-dm-segfault.patch
  bdrv_default_rwflag.patch
  kernel-boot-hvm.patch
  ioemu-watchdog-support.patch
  ioemu-watchdog-linkage.patch
  ioemu-watchdog-ib700-timer.patch
  ioemu-hvm-pv-support.patch
  pvdrv_emulation_control.patch
  ioemu-disable-scsi.patch
  ioemu-disable-emulated-ide-if-pv.patch
  xenpaging.qemu.flush-cache.patch
  ioemu-devicemodel-include.patch
- Cleanup spec file and remove unused KMP patches
  kmp_filelist
  supported_module.patch
  xen_pvonhvm.xen_emul_unplug.patch - bsc#1002573 - Optimize LVM functions in block-dmmd
  block-dmmd - Record initial Xen dmesg in /var/log/xen/xen-boot.log for
  supportconfig. Keep previous log in /var/log/xen/xen-boot.prev.log - Remove storytelling from description in xen.rpm - Update to Xen 4.9.0 FCS (fate#321394, fate#323108)
  xen-4.9.0-testing-src.tar.bz2 - Update block-dmmd script (bsc#1002573)
  block-dmmd - Update to Xen 4.9.0-rc8+ (fate#321394, fate#323108)
  xen-4.9.0-testing-src.tar.bz2
  gcc7-arm.patch
- Drop gcc7-error-xenpmd.patch - Update to Xen 4.9.0-rc8 (fate#321394, fate#323108)
  xen-4.9.0-testing-src.tar.bz2 - bsc#1042160 - VUL-1: CVE-2017-9330: xen: usb: ohci: infinite loop
  due to incorrect return value
  CVE-2017-9330-qemut-usb-ohci-infinite-loop-due-to-incorrect-return-value.patch - bsc#1037243 - VUL-1: CVE-2017-8309: xen: audio: host memory
  leakage via capture buffer
  CVE-2017-8309-qemut-audio-host-memory-leakage-via-capture-buffer.patch - Update to Xen 4.9.0-rc7 (fate#321394, fate#323108)
  xen-4.9.0-testing-src.tar.bz2 - Update to Xen 4.9.0-rc6 (fate#321394, fate#323108)
  xen-4.9.0-testing-src.tar.bz2 - bsc#1031343 - xen fails to build with GCC 7
  gcc7-mini-os.patch
  gcc7-xen.patch - bsc#1031343 - xen fails to build with GCC 7
  gcc7-error-xenpmd.patch - Update to Xen 4.9.0-rc5 (fate#321394, fate#323108)
  xen-4.9.0-testing-src.tar.bz2
- Drop xen-tools-pkgconfig-xenlight.patch - bsc#1037779 - xen breaks kexec-tools build
  xen-tools-pkgconfig-xenlight.patch - Update to Xen 4.9.0-rc4 (fate#321394, fate#323108)
  xen-4.9.0-testing-src.tar.bz2 - bsc#1036146 - sles12sp2 xen VM dumps core to wrong path
  xen.spec - Update to Xen 4.9.0-rc3 (fate#321394, fate#323108)
  xen-4.9.0-testing-src.tar.bz2
  aarch64-maybe-uninitialized.patch - Update to Xen 4.9.0-rc2 (fate#321394, fate#323108)
  xen-4.9.0-testing-src.tar.bz2 - Update to Xen 4.9.0-rc1 (fate#321394, fate#323108)
  xen-4.9.0-testing-src.tar.bz2
  ioemu-devicemodel-include.patch
- Dropped patches contained in new tarball
  xen-4.8.0-testing-src.tar.bz2
  0001-xenstore-let-write_node-and-some-callers-return-errn.patch
  0002-xenstore-undo-function-rename.patch
  0003-xenstore-rework-of-transaction-handling.patch
  584806ce-x86emul-correct-PUSHF-POPF.patch
  584fc649-fix-determining-when-domain-creation-is-complete.patch
  58510c06-x86emul-CMPXCHGnB-ignore-prefixes.patch
  58510cac-x86emul-MOVNTI-no-REP-prefixes.patch
  58526ccc-x86emul-64bit-ignore-most-segment-bases-in-align-check.patch
  5853ed37-VT-d-correct-dma_msi_set_affinity.patch
  5853ee07-x86emul-CMPXCHG16B-aligned-operand.patch
  58580060-x86-emul-correct-SYSCALL-eflags-handling.patch
  585aa3c5-x86-force-EFLAGS-IF-on-upon-exit-to-PV.patch
  585aa407-x86-HVM-NULL-check-before-using-VMFUNC-hook.patch
  585bd5fe-x86-emul-correct-VMFUNC-return-value-handling.patch
  586ba81c-x86-cpu-dont-update-this_cpu-for-guest-get_cpu_vendor.patch
  587d04d6-x86-xstate-fix-array-overrun-with-LWP.patch
  587de4a9-x86emul-VEX-B-ignored-in-compat-mode.patch
  5882129d-x86emul-LOCK-check-adjustments.patch
  58821300-x86-segment-attribute-handling.patch
  58873c1f-x86emul-correct-FPU-stub-asm-constraints.patch
  58873c80-x86-hvm-do-not-set-msr_tsc_adjust-on-.patch
  5887888f-credit2-fix-shutdown-suspend-with-cpupools.patch
  5887888f-credit2-never-consider-CPUs-outside-of-pool.patch
  5887888f-credit2-use-the-correct-scratch-cpumask.patch
  5888b1b3-x86-emulate-dont-assume-addr_size-32-implies-protmode.patch
  5899cbd9-EPT-allow-wrcomb-MMIO-mappings-again.patch
  589b3272-libxl-dont-segfault-when-creating-domain-with-invalid-pvusb-device.patch
  58a44771-IOMMU-always-call-teardown-callback.patch
  58a48ccc-x86-fix-p2m_flush_table-for-non-nested.patch
  58a59f4b-libxl-correct-xenstore-entry-for-empty-cdrom.patch
  58a70d94-VMX-fix-VMCS-race-on-cswitch-paths.patch
  58ac1f3f-VMX-dont-leak-host-syscall-MSRs.patch
  58b5a2de-x86-correct-Xens-idea-of-its-memory-layout.patch
  58b6fd42-credit2-always-mark-a-tickled-pCPU-as-tickled.patch
  58b6fd42-credit2-dont-miss-accounting-during-credit-reset.patch
  58cbf682-x86-EFI-avoid-overrunning-mb_modules.patch
  58cf9200-x86-EFI-avoid-IOMMU-faults-on-tail-gap.patch
  58cf9260-x86-EFI-avoid-Xen-when-looking-for-mod-kexec-pos.patch
  58cf9277-x86-time-dont-use-vTSC-if-host-guest-freqs-match.patch
  58d25ea2-xenstore-add-missing-checks-for-allocation-failure.patch
  58d91365-sched-dont-call-wrong-hook-via-VCPU2OP.patch
  CVE-2017-2615-qemut-display-cirrus-oob-access-while-doing-bitblt-copy-backward-mode.patch
  CVE-2017-2620-xsa209-qemut-cirrus_bitblt_cputovideo-does-not-check-if-memory-region-safe.patch
  glibc-2.25-compatibility-fix.patch
  xs-09-add_change_node-params.patch
  xs-10-call-add_change_node.patch
  xs-11-tdb-record-header.patch
  xs-12-node-gen-count.patch
  xs-13-read-directory-part-support.patch
  xs-14-command-array.patch
  xs-15-command-return-val.patch
  xs-16-function-static.patch
  xs-17-arg-parsing.patch
  xs-18-default-buffer.patch
  xs-19-handle-alloc-failures.patch
  xs-20-tdb-version.patch
  xs-21-empty-tdb-database.patch
  xs-22-reopen_log-fix.patch
  xs-23-XS_DEBUG-rename.patch
  xs-24-xenstored_control.patch
  xs-25-control-enhance.patch
  xs-26-log-control.patch
  xs-27-memory-report.patch
  xs-28-remove-talloc-report.patch
  xs-29-define-off_t.patch
  xsa206-0001-xenstored-apply-a-write-transaction-rate-limit.patch
  xsa206-0002-xenstored-Log-when-the-write-transaction-rate-limit.patch - bsc#1022703 - Xen HVM guest with OVMF hangs with unattached CDRom
  58a59f4b-libxl-correct-xenstore-entry-for-empty-cdrom.patch - bsc#1015348 - L3: libvirtd does not start during boot
  suse-xendomains-service.patch - bsc#1014136 - Partner-L3: kdump can't dump a kernel on SLES12-SP2
  with Xen hypervisor.
  58cf9260-x86-EFI-avoid-Xen-when-looking-for-mod-kexec-pos.patch
- bsc#1026236 - L3: Paravirtualized vs. fully virtualized migration
  - latter one much faster
  58cf9277-x86-time-dont-use-vTSC-if-host-guest-freqs-match.patch
- Upstream patch from Jan
  58cbf682-x86-EFI-avoid-overrunning-mb_modules.patch
  58cf9200-x86-EFI-avoid-IOMMU-faults-on-tail-gap.patch
  58d91365-sched-dont-call-wrong-hook-via-VCPU2OP.patch - bsc#1022555 - L3: Timeout in "execution of /etc/xen/scripts/block
  add"
  58d25ea2-xenstore-add-missing-checks-for-allocation-failure.patch
  0001-xenstore-let-write_node-and-some-callers-return-errn.patch
  0002-xenstore-undo-function-rename.patch
  0003-xenstore-rework-of-transaction-handling.patch
- bsc#1030144 - VUL-0: xen: xenstore denial of service via repeated
  update (XSA-206)
  xsa206-0001-xenstored-apply-a-write-transaction-rate-limit.patch
  xsa206-0002-xenstored-Log-when-the-write-transaction-rate-limit.patch
- bsc#1029827 - Forward port xenstored
  xs-09-add_change_node-params.patch
  xs-10-call-add_change_node.patch
  xs-11-tdb-record-header.patch
  xs-12-node-gen-count.patch
  xs-13-read-directory-part-support.patch
  xs-14-command-array.patch
  xs-15-command-return-val.patch
  xs-16-function-static.patch
  xs-17-arg-parsing.patch
  xs-18-default-buffer.patch
  xs-19-handle-alloc-failures.patch
  xs-20-tdb-version.patch
  xs-21-empty-tdb-database.patch
  xs-22-reopen_log-fix.patch
  xs-23-XS_DEBUG-rename.patch
  xs-24-xenstored_control.patch
  xs-25-control-enhance.patch
  xs-26-log-control.patch
  xs-27-memory-report.patch
  xs-28-remove-talloc-report.patch
  xs-29-define-off_t.patch - bsc#1029128 - fix make xen to really produce xen.efi with gcc48 - bsc#1028235 - VUL-0: CVE-2017-6505: xen: qemu: usb: an infinite
  loop issue in ohci_service_ed_list
  CVE-2017-6505-qemut-usb-an-infinite-loop-issue-in-ohci_service_ed_list.patch
- Upstream patches from Jan (bsc#1027519)
  5887888f-credit2-fix-shutdown-suspend-with-cpupools.patch
  5887888f-credit2-use-the-correct-scratch-cpumask.patch
  5899cbd9-EPT-allow-wrcomb-MMIO-mappings-again.patch
  589b3272-libxl-dont-segfault-when-creating-domain-with-invalid-pvusb-device.patch
  58a44771-IOMMU-always-call-teardown-callback.patch
  58a48ccc-x86-fix-p2m_flush_table-for-non-nested.patch
  58a70d94-VMX-fix-VMCS-race-on-cswitch-paths.patch
  58ac1f3f-VMX-dont-leak-host-syscall-MSRs.patch
  58b5a2de-x86-correct-Xens-idea-of-its-memory-layout.patch
  58b6fd42-credit2-always-mark-a-tickled-pCPU-as-tickled.patch
  58b6fd42-credit2-dont-miss-accounting-during-credit-reset.patch - bsc#1027654 - XEN fails to build against glibc 2.25
  glibc-2.25-compatibility-fix.patch
  libxl.pvscsi.patch - fate#316613: Refresh and enable libxl.pvscsi.patch - bsc#1024834 - VUL-0: CVE-2017-2620: xen: cirrus_bitblt_cputovideo
  does not check if memory region is safe (XSA-209)
  CVE-2017-2620-xsa209-qemut-cirrus_bitblt_cputovideo-does-not-check-if-memory-region-safe.patch - bsc#1023948 - [pvusb][sles12sp3][openqa] Segmentation fault
  happened when adding usbctrl devices via xl
  589b3272-libxl-dont-segfault-when-creating-domain-with-invalid-pvusb-device.patch - Upstream patches from Jan (bsc#1027519)
  587d04d6-x86-xstate-fix-array-overrun-with-LWP.patch
  587de4a9-x86emul-VEX-B-ignored-in-compat-mode.patch
  5882129d-x86emul-LOCK-check-adjustments.patch
  58821300-x86-segment-attribute-handling.patch
  58873c1f-x86emul-correct-FPU-stub-asm-constraints.patch
  58873c80-x86-hvm-do-not-set-msr_tsc_adjust-on-.patch
  5887888f-credit2-use-the-correct-scratch-cpumask.patch
  5887888f-credit2-never-consider-CPUs-outside-of-pool.patch
  5887888f-credit2-fix-shutdown-suspend-with-cpupools.patch
  5888b1b3-x86-emulate-dont-assume-addr_size-32-implies-protmode.patch - bsc#1023004 - VUL-0: CVE-2017-2615: qemu: display: cirrus: oob
  access while doing bitblt copy backward mode
  CVE-2017-2615-qemut-display-cirrus-oob-access-while-doing-bitblt-copy-backward-mode.patch - fate#322313 and fate#322150 require the acpica package ported to
  aarch64 which Xen 4.8 needs to build. Temporarily disable aarch64
  until these fates are complete.
  xen.spec - bsc#1021952 - Virutalization/xen: Bug xen-tools missing
  /usr/bin/domu-xenstore; guests fail to launch
  tmp_build.patch
  xen.spec - No systemd presets for 42.3+ and SLE12SP3+ (bsc#1012842) - bsc#1007224 - broken symlinks in /usr/share/doc/packages/xen/misc/
  xen.spec - 585aa3c5-x86-force-EFLAGS-IF-on-upon-exit-to-PV.patch
  Replaces xsa202.patch (bsc#1014298)
- 585aa407-x86-HVM-NULL-check-before-using-VMFUNC-hook.patch
  Replaces xsa203.patch (bsc#1014300)
- 58580060-x86-emul-correct-SYSCALL-eflags-handling.patch
  Replaces xsa204.patch (bsc#1016340)
- Upstream patches from Jan
  58526ccc-x86emul-64bit-ignore-most-segment-bases-in-align-check.patch
  5853ed37-VT-d-correct-dma_msi_set_affinity.patch
  5853ee07-x86emul-CMPXCHG16B-aligned-operand.patch
  585bd5fe-x86-emul-correct-VMFUNC-return-value-handling.patch
  586ba81c-x86-cpu-dont-update-this_cpu-for-guest-get_cpu_vendor.patch - bsc#1015169 - VUL-0: CVE-2016-9921, CVE-2016-9922: xen: qemu:
  display: cirrus_vga: a divide by zero in cirrus_do_copy
  CVE-2016-9921-qemut-display-cirrus_vga-divide-by-zero-in-cirrus_do_copy.patch - bsc#1016340 - VUL-0: CVE-2016-10013: xen: x86: Mishandling of
  SYSCALL singlestep during emulation (XSA-204)
  xsa204.patch - bsc#1012651 - VUL-0: CVE-2016-9932: xen: x86 CMPXCHG8B emulation
  fails to ignore operand size override (XSA-200)
  58510c06-x86emul-CMPXCHGnB-ignore-prefixes.patch - bsc#1014298 - VUL-0: CVE-2016-10024: xen: x86 PV guests may be
  able to mask interrupts (XSA-202)
  xsa202.patch
- bsc#1014300 - VUL-0: CVE-2016-10025: xen: x86: missing NULL
  pointer check in VMFUNC emulation (XSA-203)
  xsa203.patch
- Upstream patches from Jan
  584806ce-x86emul-correct-PUSHF-POPF.patch
  584fc649-fix-determining-when-domain-creation-is-complete.patch
  58510c06-x86emul-CMPXCHGnB-ignore-prefixes.patch
  58510cac-x86emul-MOVNTI-no-REP-prefixes.patch - Update to Xen 4.8 FCS
  xen-4.8.0-testing-src.tar.bz2
- Dropped
  xen-4.7.1-testing-src.tar.bz2
  0001-libxc-Rework-extra-module-initialisation.patch
  0002-libxc-Prepare-a-start-info-structure-for-hvmloader.patch
  0003-configure-define-SEABIOS_PATH-and-OVMF_PATH.patch
  0004-firmware-makefile-install-BIOS-blob.patch
  0005-libxl-Load-guest-BIOS-from-file.patch
  0006-xen-Move-the-hvm_start_info-C-representation-from-li.patch
  0007-hvmloader-Grab-the-hvm_start_info-pointer.patch
  0008-hvmloader-Locate-the-BIOS-blob.patch
  0009-hvmloader-Check-modules-whereabouts-in-perform_tests.patch
  0010-hvmloader-Load-SeaBIOS-from-hvm_start_info-modules.patch
  0011-hvmloader-Load-OVMF-from-modules.patch
  0012-hvmloader-Specific-bios_load-function-required.patch
  0013-hvmloader-Always-build-in-SeaBIOS-and-OVMF-loader.patch
  0014-configure-do-not-depend-on-SEABIOS_PATH-or-OVMF_PATH.patch
  57580bbd-kexec-allow-relaxed-placement-via-cmdline.patch
  576001df-x86-time-use-local-stamp-in-TSC-calibration-fast-path.patch
  5769106e-x86-generate-assembler-equates-for-synthesized.patch
  57a1e603-x86-time-adjust-local-system-time-initialization.patch
  57a1e64c-x86-time-introduce-and-use-rdtsc_ordered.patch
  57a2f6ac-x86-time-calibrate-TSC-against-platform-timer.patch
  57a30261-x86-support-newer-Intel-CPU-models.patch
  5810a9cc-x86-emul-Correct-decoding-of-SReg3-operands.patch
  581b2c3b-x86-emul-reject-LGDT-LIDT-with-non-canonical-addresses.patch
  581b647a-x86emul-L-S-G-I-DT-ignore-opsz-overrides-in-64-bit-mode.patch
  58249392-x86-svm-dont-clobber-eax-edx-if-RDMSR-intercept-fails.patch
  582c35d6-x86-vmx-correct-long-mode-check-in-vmx_cpuid_intercept.patch
  582c35ee-x86-traps-dont-call-hvm_hypervisor_cpuid_leaf-for-PV.patch
  58343dc2-x86-hvm-Fix-the-handling-of-non-present-segments.patch
  58343df8-x86-HVM-dont-load-LDTR-with-VM86-mode-attrs-during-task-switch.patch
  58343e24-x86-PV-writes-of-fs-and-gs-base-MSRs-require-canonical-addresses.patch
  58343e9e-libelf-fix-stack-memory-leak-when-loading-32-bit-symbol-tables.patch
  58343ec2-x86emul-fix-huge-bit-offset-handling.patch
  58343f29-x86-emul-correct-the-IDT-entry-calculation-in-inject_swint.patch
  58343f44-x86-svm-fix-injection-of-software-interrupts.patch
  58343f79-pygrub-Properly-quote-results-when-returning-them-to-the-caller.patch
  CVE-2016-9381-xsa197-qemut.patch
  CVE-2016-9637-xsa199-qemut.patch - bsc#1011652 - VUL-0: xen: qemu ioport array overflow
  CVE-2016-9637-xsa199-qemut.patch - bsc#1009100 - VUL-0: CVE-2016-9386: XSA-191: xen: x86 null
  segments not always treated as unusable
  58343dc2-x86-hvm-Fix-the-handling-of-non-present-segments.patch
- bsc#1009103 - VUL-0: CVE-2016-9382: XSA-192: xen: x86 task switch
  to VM86 mode mis-handled
  58343df8-x86-HVM-dont-load-LDTR-with-VM86-mode-attrs-during-task-switch.patch
- bsc#1009104 - VUL-0: CVE-2016-9385: XSA-193: xen: x86 segment base
  write emulation lacking canonical address checks
  58343e24-x86-PV-writes-of-fs-and-gs-base-MSRs-require-canonical-addresses.patch
- bsc#1009105 - VUL-0: CVE-2016-9384: XSA-194: xen: guest 32-bit
  ELF symbol table load leaking host data
  58343e9e-libelf-fix-stack-memory-leak-when-loading-32-bit-symbol-tables.patch
- bsc#1009107 - VUL-0: CVE-2016-9383: XSA-195: xen: x86 64-bit bit
  test instruction emulation broken
  58343ec2-x86emul-fix-huge-bit-offset-handling.patch
- bsc#1009108 - VUL-0: CVE-2016-9377,CVE-2016-9378: XSA-196: xen:
  x86 software interrupt injection mis-handled
  58343f29-x86-emul-correct-the-IDT-entry-calculation-in-inject_swint.patch
  58343f44-x86-svm-fix-injection-of-software-interrupts.patch
- bsc#1009109 - VUL-0: CVE-2016-9381: XSA-197: xen: qemu incautious
  about shared ring processing
  CVE-2016-9381-xsa197-qemut.patch
- bsc#1009111 - VUL-0: CVE-2016-9379,CVE-2016-9380: XSA-198: xen:
  delimiter injection vulnerabilities in pygrub
  58343f79-pygrub-Properly-quote-results-when-returning-them-to-the-caller.patch
- Upstream patches from Jan
  581b2c3b-x86-emul-reject-LGDT-LIDT-with-non-canonical-addresses.patch
  581b647a-x86emul-L-S-G-I-DT-ignore-opsz-overrides-in-64-bit-mode.patch
  58249392-x86-svm-dont-clobber-eax-edx-if-RDMSR-intercept-fails.patch
  582c35d6-x86-vmx-correct-long-mode-check-in-vmx_cpuid_intercept.patch
  582c35ee-x86-traps-dont-call-hvm_hypervisor_cpuid_leaf-for-PV.patch - Update to Xen Version 4.7.1
  xen-4.7.1-testing-src.tar.bz2
- Dropped patches contained in new tarball
  xen-4.7.0-testing-src.tar.bz2
  575e9ca0-nested-vmx-Validate-host-VMX-MSRs-before-accessing-them.patch
  57640448-xen-sched-use-default-scheduler-upon-an-invalid-sched.patch
  57973099-have-schedulers-revise-initial-placement.patch
  579730e6-remove-buggy-initial-placement-algorithm.patch
  57976073-x86-remove-unsafe-bits-from-mod_lN_entry-fastpath.patch
  57976078-x86-avoid-SMAP-violation-in-compat_create_bounce_frame.patch
  57ac6316-don-t-restrict-DMA-heap-to-node-0.patch
  57b71fc5-x86-EFI-don-t-apply-relocations-to-l-2-3-_bootmap.patch
  57b7447b-dont-permit-guest-to-populate-PoD-pages-for-itself.patch
  57c4412b-x86-HVM-add-guarding-logic-for-VMX-specific-code.patch
  57c57f73-libxc-correct-max_pfn-calculation-for-saving-domain.patch
  57c805bf-x86-levelling-restrict-non-architectural-OSXSAVE-handling.patch
  57c805c1-x86-levelling-pass-vcpu-to-ctxt_switch_levelling.patch
  57c805c3-x86-levelling-provide-architectural-OSXSAVE-handling.patch
  57c82be2-x86-32on64-adjust-call-gate-emulation.patch
  57c93e52-fix-error-in-libxl_device_usbdev_list.patch
  57c96df3-credit1-fix-a-race-when-picking-initial-pCPU.patch
  57c96e2c-x86-correct-PT_NOTE-file-position.patch
  57cfed43-VMX-correct-feature-checks-for-MPX-and-XSAVES.patch
  57d1563d-x86-32on64-don-t-allow-recursive-page-tables-from-L3.patch
  57d15679-x86-emulate-Correct-boundary-interactions-of-emulated-insns.patch
  57d1569a-x86-shadow-Avoid-overflowing-sh_ctxt-seg_reg.patch
  57d18642-hvm-fep-Allow-test-insns-crossing-1-0-boundary.patch
  57d18642-x86-segment-Bounds-check-accesses-to-emulation-ctxt-seg_reg.patch
  57d7ca5f-x86-domctl-fix-TOCTOU-race-in-XEN_DOMCTL_getvcpuextstate.patch
  57d7ca64-x86-domctl-fix-migration-of-guests-not-using-xsave.patch
  57da8883-credit1-fix-mask-to-be-used-for-tickling.patch
  57da8883-credit2-properly-schedule-migration-of-running-vcpu.patch
  57dfb1c5-x86-Intel-hide-CPUID-faulting-capability-from-guests.patch
  57e93e1d-x86emul-correct-loading-of-ss.patch
  57e93e4a-x86emul-don-t-allow-null-selector-for-LTR.patch
  57e93e89-x86-AMD-apply-erratum-665-workaround.patch
  57ee6cbc-credit1-return-time-remaining-to-limit-as-next-timeslice.patch
  57f3a8ee-x86emul-honor-guest-CR0-TS-and-CR0-EM.patch
  57fb6a91-x86-defer-not-present-segment-checks.patch
  5800c51d-x86-hvm-Clobber-cs-L-when-LME-becomes-set.patch
  5800caec-x86emul-fix-pushing-of-selector-registers.patch
  5800cb06-x86-Viridian-don-t-depend-on-undefined-register-state.patch
  580e29f9-x86-MISALIGNSSE-feature-depends-on-SSE.patch
  57dfb2ff-x86-Intel-Broadwell-no-PKG_C8-10_RESIDENCY-MSRs.patch - bsc#1004981 - Xen RPM doesn't contain debug hypervisor for EFI
  systems
  xen.spec - bsc#1000106 - VUL-0: CVE-2016-7777: xen: CR0.TS and CR0.EM not
  always honored for x86 HVM guests (XSA-190)
  57f3a8ee-x86emul-honor-guest-CR0-TS-and-CR0-EM.patch
- bsc#996191 - [XEN][acpi]residency -n 88 -c will cause xen panic
  on broadwell-ep
  57dfb2ff-x86-Intel-Broadwell-no-PKG_C8-10_RESIDENCY-MSRs.patch
- Upstream patches from Jan
  57d7ca5f-x86-domctl-fix-TOCTOU-race-in-XEN_DOMCTL_getvcpuextstate.patch
  57d7ca64-x86-domctl-fix-migration-of-guests-not-using-xsave.patch
  57da8883-credit1-fix-mask-to-be-used-for-tickling.patch
  57da8883-credit2-properly-schedule-migration-of-running-vcpu.patch
  57dfb1c5-x86-Intel-hide-CPUID-faulting-capability-from-guests.patch
  57e93e1d-x86emul-correct-loading-of-ss.patch
  57e93e4a-x86emul-don-t-allow-null-selector-for-LTR.patch
  57e93e89-x86-AMD-apply-erratum-665-workaround.patch
  57ee6cbc-credit1-return-time-remaining-to-limit-as-next-timeslice.patch
  57fb6a91-x86-defer-not-present-segment-checks.patch
  5800c51d-x86-hvm-Clobber-cs-L-when-LME-becomes-set.patch
  5800caec-x86emul-fix-pushing-of-selector-registers.patch
  5800cb06-x86-Viridian-don-t-depend-on-undefined-register-state.patch
  580e29f9-x86-MISALIGNSSE-feature-depends-on-SSE.patch
  5810a9cc-x86-emul-Correct-decoding-of-SReg3-operands.patch - bsc#1007941 - Xen tools limit the number of vcpus to 256 when the
  system has 384
  xen-arch-kconfig-nr_cpus.patch - bsc#1007157 - VUL-0: CVE-2016-8910: xen: net: rtl8139: infinite
  loop while transmit in C+ mode
  CVE-2016-8910-qemut-net-rtl8139-infinite-loop-while-transmit-in-Cplus-mode.patch - bsc#1005004 - CVE-2016-8667: xen: dma: rc4030 divide by zero
  error in set_next_tick
  CVE-2016-8667-qemut-dma-rc4030-divide-by-zero-error-in-set_next_tick.patch
- bsc#1005005 - VUL-0: CVE-2016-8669: xen: char: divide by zero
  error in serial_update_parameters
  CVE-2016-8669-qemut-char-divide-by-zero-error-in-serial_update_parameters.patch - bsc#1003030 - VUL-0: CVE-2016-7908: xen: net: Infinite loop in
  mcf_fec_do_tx
  CVE-2016-7908-qemut-net-Infinite-loop-in-mcf_fec_do_tx.patch
- bsc#1003032 - VUL-0: CVE-2016-7909: xen: net: pcnet: infinite
  loop in pcnet_rdra_addr
  CVE-2016-7909-qemut-net-pcnet-infinite-loop-in-pcnet_rdra_addr.patch - bsc#995785 - VUL-0: CVE-2016-7092: xen: x86: Disallow L3
  recursive pagetable for 32-bit PV guests (XSA-185)
  57d1563d-x86-32on64-don-t-allow-recursive-page-tables-from-L3.patch
- bsc#995789 - VUL-0: CVE-2016-7093: xen: x86: Mishandling of
  instruction pointer truncation during emulation (XSA-186)
  57d15679-x86-emulate-Correct-boundary-interactions-of-emulated-insns.patch
  57d18642-hvm-fep-Allow-test-insns-crossing-1-0-boundary.patch
- bsc#995792 - VUL-0: CVE-2016-7094: xen: x86 HVM: Overflow of
  sh_ctxt->seg_reg[] (XSA-187)
  57d1569a-x86-shadow-Avoid-overflowing-sh_ctxt-seg_reg.patch
  57d18642-x86-segment-Bounds-check-accesses-to-emulation-ctxt-seg_reg.patch
- bsc#991934 - xen hypervisor crash in csched_acct
  57c96df3-credit1-fix-a-race-when-picking-initial-pCPU.patch
- Upstream patches from Jan
  57c4412b-x86-HVM-add-guarding-logic-for-VMX-specific-code.patch
  57c57f73-libxc-correct-max_pfn-calculation-for-saving-domain.patch
  57c805bf-x86-levelling-restrict-non-architectural-OSXSAVE-handling.patch
  57c805c1-x86-levelling-pass-vcpu-to-ctxt_switch_levelling.patch
  57c805c3-x86-levelling-provide-architectural-OSXSAVE-handling.patch
  57c82be2-x86-32on64-adjust-call-gate-emulation.patch
  57c96e2c-x86-correct-PT_NOTE-file-position.patch
  57cfed43-VMX-correct-feature-checks-for-MPX-and-XSAVES.patch - bsc#979002 - add 60-persistent-xvd.rules and helper script
  also to initrd, add the relevant dracut helper - bnc#953518 - unplug also SCSI disks in qemu-xen-traditional for
  upstream unplug protocol - bsc#989679 - [pvusb feature] USB device not found when
  'virsh detach-device guest usb.xml'
  57c93e52-fix-error-in-libxl_device_usbdev_list.patch - bsc#992224 - [HPS Bug] During boot of Xen Hypervisor, Failed to
  get contiguous memory for DMA from Xen
  57ac6316-don-t-restrict-DMA-heap-to-node-0.patch
- bsc#978755 - xen uefi systems fail to boot
- bsc#983697 - SLES12 SP2 Xen UEFI mode cannot boot
  57b71fc5-x86-EFI-don-t-apply-relocations-to-l-2-3-_bootmap.patch
- Upstream patch from Jan
  57b7447b-dont-permit-guest-to-populate-PoD-pages-for-itself.patch - spec: to stay compatible with the in-tree qemu-xen binary, use
  /usr/bin/qemu-system-i386 instead of /usr/bin/qemu-system-x86_64
  bsc#986164 - bsc#970135 - new virtualization project clock test randomly fails
  on Xen
  576001df-x86-time-use-local-stamp-in-TSC-calibration-fast-path.patch
  5769106e-x86-generate-assembler-equates-for-synthesized.patch
  57a1e603-x86-time-adjust-local-system-time-initialization.patch
  57a1e64c-x86-time-introduce-and-use-rdtsc_ordered.patch
  57a2f6ac-x86-time-calibrate-TSC-against-platform-timer.patch
- bsc#991934 - xen hypervisor crash in csched_acct
  57973099-have-schedulers-revise-initial-placement.patch
  579730e6-remove-buggy-initial-placement-algorithm.patch
- bsc#988675 - VUL-0: CVE-2016-6258: xen: x86: Privilege escalation
  in PV guests (XSA-182)
  57976073-x86-remove-unsafe-bits-from-mod_lN_entry-fastpath.patch
- bsc#988676 - VUL-0: CVE-2016-6259: xen: x86: Missing SMAP
  whitelisting in 32-bit exception / event delivery (XSA-183)
  57976078-x86-avoid-SMAP-violation-in-compat_create_bounce_frame.patch
- Upstream patches from Jan
  57a30261-x86-support-newer-Intel-CPU-models.patch - bsc#985503 - vif-route broken
  vif-route.patch - bsc#978413 - PV guest upgrade from sles11sp4 to sles12sp2 alpha3
  failed on sles11sp4 xen host.
  pygrub-handle-one-line-menu-entries.patch - bsc#990843 - VUL-1: CVE-2016-6351: xen: qemu: scsi: esp: OOB
  write access in esp_do_dma
  CVE-2016-6351-qemut-scsi-esp-make-cmdbuf-big-enough-for-maximum-CDB-size.patch - bsc#900418 - Dump cannot be performed on SLES12 XEN
  57580bbd-kexec-allow-relaxed-placement-via-cmdline.patch
- Upstream patches from Jan
  575e9ca0-nested-vmx-Validate-host-VMX-MSRs-before-accessing-them.patch
  57640448-xen-sched-use-default-scheduler-upon-an-invalid-sched.patch - fate#319989 - Update to Xen 4.7 FCS
  xen-4.7.0-testing-src.tar.bz2
- Drop CVE-2014-3672-qemut-xsa180.patch - bsc#954872 - script block-dmmd not working as expected - libxl:
  error: libxl_dm.c (Additional fixes)
  block-dmmd - Convert with_stubdom into build_conditional to allow adjusting
  via prjconf
- Convert with_debug into build_conditional to allow adjusting
  via prjconf - bsc#979002 - add 60-persistent-xvd.rules and helper script to
  xen-tools-domU to simplify transition to pvops based kernels - Convert with_oxenstored into build_conditional to allow
  adjusting via prjconf (fate#320836) - bsc#983984 - VUL-0: CVE-2016-5338: xen: qemu: scsi: esp: OOB r/w
  access while processing ESP_FIFO
  CVE-2016-5338-qemut-scsi-esp-OOB-rw-access-while-processing-ESP_FIFO.patch
- bsc#982960 - VUL-0: CVE-2016-5238: xen: qemu: scsi: esp: OOB
  write when using non-DMA mode in get_cmd
  CVE-2016-5238-qemut-scsi-esp-OOB-write-when-using-non-DMA-mode-in-get_cmd.patch - fate#319989 - Update to Xen 4.7 RC5
  xen-4.7.0-testing-src.tar.bz2 - fate#319989 - Update to Xen 4.7 RC4
  xen-4.7.0-testing-src.tar.bz2
- Dropped
  xen.pkgconfig-4.7.patch
  xsa164.patch - bsc#981264 - VUL-0: CVE-2014-3672: xen: Unrestricted qemu logging
  (XSA-180)
  CVE-2014-3672-qemut-xsa180.patch - bsc#980724 - VUL-0: CVE-2016-4441: Qemu: scsi: esp: OOB write
  while writing to 's->cmdbuf' in get_cmd
  CVE-2016-4441-qemut-scsi-esp-OOB-write-while-writing-to-cmdbuf-in-get_cmd.patch
- bsc#980716 - VUL-0: CVE-2016-4439: xen: scsi: esp: OOB write
  while writing to 's->cmdbuf' in esp_reg_write
  CVE-2016-4439-qemut-scsi-esp-OOB-write-while-writing-to-cmdbuf-in-esp_reg_write.patch - fate#319989 - Update to Xen 4.7 RC3
  xen-4.7.0-testing-src.tar.bz2
- Dropped
  libxl-remove-cdrom-cachemode.patch
  x86-PoD-only-reclaim-if-needed.patch
  gcc6-warnings-as-errors.patch - bsc#954872 - script block-dmmd not working as expected - libxl:
  error: libxl_dm.c (another modification)
  block-dmmd - fate#319989 - Update to Xen 4.7 RC2
  xen-4.7.0-testing-src.tar.bz2 - bsc#961600 - L3: poor performance when Xen HVM domU configured
  with max memory > current memory
  x86-PoD-only-reclaim-if-needed.patch - Mark SONAMEs and pkgconfig as xen 4.7
  xen.pkgconfig-4.7.patch - bsc#977329 - Xen: Cannot boot HVM guests with empty cdrom
  libxl-remove-cdrom-cachemode.patch - fate#319989 - Update to Xen 4.7 RC1
  xen-4.7.0-testing-src.tar.bz2 - fate#316614: set migration constraints from cmdline
  restore libxl.set-migration-constraints-from-cmdline.patch - Remove obsolete patch for xen-kmp
  magic_ioport_compat.patch - fate#316613: update to v12
  libxl.pvscsi.patch - Update to the latest Xen 4.7 pre-release c2994f86
  Drop libxl.migrate-legacy-stream-read.patch - bnc#972756 - Can't migrate HVM guest from SLES12SP1 Xen host
  to SLES12SP2 Alpha 1 host using xl migrate
  libxl.migrate-legacy-stream-read.patch - Add patches from proposed upstream series to load BIOS's from
  the toolstack instead of embedding in hvmloader
  http://lists.xenproject.org/archives/html/xen-devel/2016-03/msg01626.html
  0001-libxc-Rework-extra-module-initialisation.patch,
  0002-libxc-Prepare-a-start-info-structure-for-hvmloader.patch,
  0003-configure-define-SEABIOS_PATH-and-OVMF_PATH.patch,
  0004-firmware-makefile-install-BIOS-blob.patch,
  0005-libxl-Load-guest-BIOS-from-file.patch,
  0006-xen-Move-the-hvm_start_info-C-representation-from-li.patch,
  0007-hvmloader-Grab-the-hvm_start_info-pointer.patch,
  0008-hvmloader-Locate-the-BIOS-blob.patch,
  0009-hvmloader-Check-modules-whereabouts-in-perform_tests.patch,
  0010-hvmloader-Load-SeaBIOS-from-hvm_start_info-modules.patch,
  0011-hvmloader-Load-OVMF-from-modules.patch,
  0012-hvmloader-Specific-bios_load-function-required.patch,
  0013-hvmloader-Always-build-in-SeaBIOS-and-OVMF-loader.patch,
  0014-configure-do-not-depend-on-SEABIOS_PATH-or-OVMF_PATH.patch
- Enable support for UEFI on x86_64 using the ovmf-x86_64-ms.bin
  firmware from qemu-ovmf-x86_64. The firmware is preloaded with
  Microsoft keys to more closely resemble firmware on real hardware
  FATE#320490 - fate#319989: Update to Xen 4.7 (pre-release)
  xen-4.7.0-testing-src.tar.bz2
- Dropped:
  xen-4.6.1-testing-src.tar.bz2
  55f7f9d2-libxl-slightly-refine-pci-assignable-add-remove-handling.patch
  5628fc67-libxl-No-emulated-disk-driver-for-xvdX-disk.patch
  5644b756-x86-HVM-don-t-inject-DB-with-error-code.patch
  5649bcbe-libxl-relax-readonly-check-introduced-by-XSA-142-fix.patch
  hotplug-Linux-block-performance-fix.patch
  set-mtu-from-bridge-for-tap-interface.patch
  xendomains-libvirtd-conflict.patch
  xsa154.patch
  xsa155-xen-0001-xen-Add-RING_COPY_REQUEST.patch
  xsa155-xen-0002-blktap2-Use-RING_COPY_REQUEST.patch
  xsa155-xen-0003-libvchan-Read-prod-cons-only-once.patch
  xsa170.patch - Use system SeaBIOS instead of building/installing another one
  FATE#320638
  Dropped files:
  seabios-dir-remote.tar.bz2
  xen-c99-fix.patch
  xen.build-compare.seabios.patch - spec: drop BuildRequires that were only needed for qemu-xen - bsc#969377 - xen does not build with GCC 6
  ipxe-use-rpm-opt-flags.patch
  gcc6-warnings-as-errors.patch - bsc#969351 - VUL-0: CVE-2016-2841: xen: net: ne2000: infinite
  loop in ne2000_receive
  CVE-2016-2841-qemut-ne2000-infinite-loop-in-ne2000_receive.patch
- Drop xsa154-fix.patch - Use system qemu instead of building/installing yet another qemu
  FATE#320638
- Dropped files
  qemu-xen-dir-remote.tar.bz2
  CVE-2014-0222-qemuu-qcow1-validate-l2-table-size.patch
  CVE-2015-1779-qemuu-incrementally-decode-websocket-frames.patch
  CVE-2015-1779-qemuu-limit-size-of-HTTP-headers-from-websockets-clients.patch
  CVE-2015-4037-qemuu-smb-config-dir-name.patch
  CVE-2015-7512-qemuu-net-pcnet-buffer-overflow-in-non-loopback-mode.patch
  CVE-2015-7549-qemuu-pci-null-pointer-dereference-issue.patch
  CVE-2015-8345-qemuu-eepro100-infinite-loop-fix.patch
  CVE-2015-8504-qemuu-vnc-avoid-floating-point-exception.patch
  CVE-2015-8558-qemuu-usb-infinite-loop-in-ehci_advance_state-results-in-DoS.patch
  CVE-2015-8568-qemuu-net-vmxnet3-avoid-memory-leakage-in-activate_device.patch
  CVE-2015-8613-qemuu-scsi-initialise-info-object-with-appropriate-size.patch
  CVE-2015-8743-qemuu-ne2000-OOB-memory-access-in-ioport-rw-functions.patch
  CVE-2015-8744-qemuu-net-vmxnet3-incorrect-l2-header-validation-leads-to-crash.patch
  CVE-2015-8745-qemuu-net-vmxnet3-read-IMR-registers-instead-of-assert.patch
  CVE-2016-1568-qemuu-ide-ahci-reset-ncq-object-to-unused-on-error.patch
  CVE-2016-1714-qemuu-fw_cfg-add-check-to-validate-current-entry-value.patch
  CVE-2014-7815-qemut-vnc-sanitize-bits_per_pixel-from-the-client.patch
  CVE-2016-1981-qemuu-e1000-eliminate-infinite-loops-on-out-of-bounds-transfer.patch
  CVE-2016-2538-qemuu-usb-integer-overflow-in-remote-NDIS-message-handling.patch
  CVE-2015-8619-qemuu-stack-based-OOB-write-in-hmp_sendkey-routine.patch
  qemu-xen-enable-spice-support.patch
  qemu-xen-upstream-qdisk-cache-unsafe.patch
  tigervnc-long-press.patch
  xsa162-qemuu.patch - bsc#962321 - VUL-0: CVE-2016-1922: xen: i386: null pointer
  dereference in vapic_write()
  CVE-2016-1922-qemuu-i386-null-pointer-dereference-in-vapic_write.patch - bsc#968004 - VUL-0: CVE-2016-2538: xen: usb: integer overflow in
  remote NDIS control message handling
  CVE-2016-2538-qemuu-usb-integer-overflow-in-remote-NDIS-message-handling.patch - bsc#954872 - L3: script block-dmmd not working as expected -
  libxl: error: libxl_dm.c
  block-dmmd
- Update libxl to recognize dmmd and npiv prefix in disk spec
  xen.libxl.dmmd.patch - bsc#967101 - VUL-0: CVE-2016-2391: xen: usb: multiple eof_timers
  in ohci module leads to null pointer dereference
  CVE-2016-2391-qemuu-usb-null-pointer-dereference-in-ohci-module.patch
  CVE-2016-2391-qemut-usb-null-pointer-dereference-in-ohci-module.patch
- bsc#967090 - VUL-0: CVE-2016-2392: xen: usb: null pointer
  dereference in remote NDIS control message handling
  CVE-2016-2392-qemuu-usb-null-pointer-dereference-in-NDIS-message-handling.patch - Update to Xen Version 4.6.1
  xen-4.6.1-testing-src.tar.bz2
- Dropped patches now contained in tarball or unnecessary
  xen-4.6.0-testing-src.tar.bz2
  5604f239-x86-PV-properly-populate-descriptor-tables.patch
  561bbc8b-VT-d-don-t-suppress-invalidation-address-write-when-it-is-zero.patch
  561d2046-VT-d-use-proper-error-codes-in-iommu_enable_x2apic_IR.patch
  561d20a0-x86-hide-MWAITX-from-PV-domains.patch
  561e3283-x86-NUMA-fix-SRAT-table-processor-entry-parsing-and-consumption.patch
  5632118e-arm-Support-hypercall_create_continuation-for-multicall.patch
  56321222-arm-rate-limit-logging-from-unimplemented-PHYSDEVOP-and-HVMOP.patch
  56321249-arm-handle-races-between-relinquish_memory-and-free_domheap_pages.patch
  5632127b-x86-guard-against-undue-super-page-PTE-creation.patch
  5632129c-free-domain-s-vcpu-array.patch
  563212c9-x86-PoD-Eager-sweep-for-zeroed-pages.patch
  563212e4-xenoprof-free-domain-s-vcpu-array.patch
  563212ff-x86-rate-limit-logging-in-do_xen-oprof-pmu-_op.patch
  56323737-libxl-adjust-PoD-target-by-memory-fudge-too.patch
  56377442-x86-PoD-Make-p2m_pod_empty_cache-restartable.patch
  5641ceec-x86-HVM-always-intercept-AC-and-DB.patch
  56549f24-x86-vPMU-document-as-unsupported.patch
  5677f350-x86-make-debug-output-consistent-in-hvm_set_callback_via.patch
  xsa155-qemut-qdisk-double-access.patch
  xsa155-qemut-xenfb.patch
  xsa155-qemuu-qdisk-double-access.patch
  xsa155-qemuu-xenfb.patch
  xsa159.patch
  xsa160.patch
  xsa162-qemut.patch
  xsa165.patch
  xsa166.patch
  xsa167.patch
  xsa168.patch - bsc#965315 - VUL-0: CVE-2016-2270: xen: x86: inconsistent
  cachability flags on guest mappings (XSA-154)
  xsa154.patch
- bsc#965317 - VUL-0: CVE-2016-2271: xen: VMX: guest user mode may
  crash guest with non-canonical RIP (XSA-170)
  xsa170.patch - bsc#965269 - VUL-1: CVE-2015-8619: xen: stack based OOB write in
  hmp_sendkey routine
  CVE-2015-8619-qemuu-stack-based-OOB-write-in-hmp_sendkey-routine.patch - bsc#965156 - VUL-0: CVE-2015-6855: xen: ide: divide by zero issue
  CVE-2015-6855-qemuu-ide-divide-by-zero-issue.patch
- bsc#965112 - VUL-0: CVE-2014-3640: xen: slirp: NULL pointer deref
  in sosendto()
  CVE-2014-3640-qemut-slirp-NULL-pointer-deref-in-sosendto.patch - bsc#964947 - VUL-0: CVE-2015-5278: xen: Infinite loop in
  ne2000_receive() function
  CVE-2015-5278-qemut-Infinite-loop-in-ne2000_receive-function.patch
- bsc#956832 - VUL-0: CVE-2015-8345: xen: qemu: net: eepro100:
  infinite loop in processing command block list
  CVE-2015-8345-qemuu-eepro100-infinite-loop-fix.patch
  CVE-2015-8345-qemut-eepro100-infinite-loop-fix.patch - bsc#964644 - VUL-0: CVE-2013-4533: xen pxa2xx: buffer overrun on
  incoming migration
  CVE-2013-4533-qemut-pxa2xx-buffer-overrun-on-incoming-migration.patch
- bsc#964925 - VUL-0: CVE-2014-0222: xen: qcow1: validate L2 table
  size to avoid integer overflows
  CVE-2014-0222-blktap-qcow1-validate-l2-table-size.patch
- Dropped CVE-2014-0222-qemuu-qcow1-validate-l2-table-size.patch - bsc#964415 - VUL-1: CVE-2016-2198: xen: usb: ehci null pointer
  dereference in ehci_caps_write
  CVE-2016-2198-qemuu-usb-ehci-null-pointer-dereference-in-ehci_caps_write.patch
- bsc#964452 - VUL-0: CVE-2013-4534: xen: openpic: buffer overrun
  on incoming migration
  CVE-2013-4534-qemut-openpic-buffer-overrun-on-incoming-migration.patch - bsc#963783 - VUL-1: CVE-2016-1981: xen: net: e1000 infinite loop
  in start_xmit and e1000_receive_iov routines
  CVE-2016-1981-qemuu-e1000-eliminate-infinite-loops-on-out-of-bounds-transfer.patch
  CVE-2016-1981-qemut-e1000-eliminate-infinite-loops-on-out-of-bounds-transfer.patch - bsc#962758 - VUL-0: CVE-2013-4539: xen: tsc210x: buffer overrun
  on invalid state load
  CVE-2013-4539-qemut-tsc210x-fix-buffer-overrun-on-invalid-state-load.patch - bsc#962632 - VUL-0: CVE-2015-1779: xen: vnc: insufficient
  resource limiting in VNC websockets decoder
  CVE-2015-1779-qemuu-limit-size-of-HTTP-headers-from-websockets-clients.patch
  CVE-2015-1779-qemuu-incrementally-decode-websocket-frames.patch
- bsc#962642 - VUL-0: CVE-2013-4537: xen: ssi-sd: buffer overrun on
  invalid state load
  CVE-2013-4537-qemut-ssi-sd-fix-buffer-overrun-on-invalid-state-load.patch
- bsc#962627 - VUL-0: CVE-2014-7815: xen: vnc: insufficient
  bits_per_pixel from the client sanitization
  CVE-2014-7815-qemut-vnc-sanitize-bits_per_pixel-from-the-client.patch - bsc#962335 - VUL-0: CVE-2013-4538: xen: ssd0323: fix buffer
  overun on invalid state
  CVE-2013-4538-qemut-ssd0323-fix-buffer-overun-on-invalid-state.patch
- bsc#962360 - VUL-0: CVE-2015-7512: xen: net: pcnet: buffer
  overflow in non-loopback mode
  CVE-2015-7512-qemuu-net-pcnet-buffer-overflow-in-non-loopback-mode.patch
  CVE-2015-7512-qemut-net-pcnet-buffer-overflow-in-non-loopback-mode.patch - bsc#961692 - VUL-0: CVE-2016-1714: xen: nvram: OOB r/w access in
  processing firmware configurations
  CVE-2016-1714-qemuu-fw_cfg-add-check-to-validate-current-entry-value.patch
  CVE-2016-1714-qemut-fw_cfg-add-check-to-validate-current-entry-value.patch - bsc#961358 - VUL-0: CVE-2015-8613: xen: qemu: scsi: stack based
  buffer overflow in megasas_ctrl_get_info
  CVE-2015-8613-qemuu-scsi-initialise-info-object-with-appropriate-size.patch
- bsc#961332 - VUL-0: CVE-2016-1568: xen: Qemu: ide: ahci
  use-after-free vulnerability in aio port commands
  CVE-2016-1568-qemuu-ide-ahci-reset-ncq-object-to-unused-on-error.patch - bsc#959695 - missing docs for xen
  xen.spec - bsc#960862 - VUL-0: CVE-2016-1571: xen: VMX: intercept issue with
  INVLPG on non-canonical address (XSA-168)
  xsa168.patch
- bsc#960861 - VUL-0: CVE-2016-1570: xen: PV superpage
  functionality missing sanity checks (XSA-167)
  xsa167.patch
- bsc#960836 - VUL-0: CVE-2015-8744: xen: net: vmxnet3: incorrect
  l2 header validation leads to a crash via assert(2) call
  CVE-2015-8744-qemuu-net-vmxnet3-incorrect-l2-header-validation-leads-to-crash.patch - bsc#960707 - VUL-0: CVE-2015-8745: xen: reading IMR registers
  leads to a crash via assert(2) call
  CVE-2015-8745-qemuu-net-vmxnet3-read-IMR-registers-instead-of-assert.patch
- bsc#960726 - VUL-0: CVE-2015-8743: xen: ne2000: OOB memory access
  in ioport r/w functions
  CVE-2015-8743-qemuu-ne2000-OOB-memory-access-in-ioport-rw-functions.patch - bsc#960093 - VUL-0: CVE-2015-8615: xen: x86: unintentional
  logging upon guest changing callback method (XSA-169)
  5677f350-x86-make-debug-output-consistent-in-hvm_set_callback_via.patch - Adjust xen-dom0-modules.service to run Before xenstored.service
  instead of proc-xen.mount to workaround a bug in systemd "design"
  (bnc#959845) - bsc#959387 - VUL-0: CVE-2015-8568 CVE-2015-8567: xen: qemu: net:
  vmxnet3: host memory leakage
  CVE-2015-8568-qemuu-net-vmxnet3-avoid-memory-leakage-in-activate_device.patch - bsc#957988 - VUL-0: CVE-2015-8550: xen: paravirtualized drivers
  incautious about shared memory contents (XSA-155)
  xsa155-xen-0001-xen-Add-RING_COPY_REQUEST.patch
  xsa155-xen-0002-blktap2-Use-RING_COPY_REQUEST.patch
  xsa155-xen-0003-libvchan-Read-prod-cons-only-once.patch
  xsa155-qemuu-qdisk-double-access.patch
  xsa155-qemut-qdisk-double-access.patch
  xsa155-qemuu-xenfb.patch
  xsa155-qemut-xenfb.patch
- bsc#959006 - VUL-0: CVE-2015-8558: xen: qemu: usb: infinite loop
  in ehci_advance_state results in DoS
  CVE-2015-8558-qemuu-usb-infinite-loop-in-ehci_advance_state-results-in-DoS.patch
- bsc#958918 - VUL-0: CVE-2015-7549: xen: qemu pci: null pointer
  dereference issue
  CVE-2015-7549-qemuu-pci-null-pointer-dereference-issue.patch
- bsc#958493 - VUL-0: CVE-2015-8504: xen: qemu: ui: vnc: avoid
  floating point exception
  CVE-2015-8504-qemuu-vnc-avoid-floating-point-exception.patch
  CVE-2015-8504-qemut-vnc-avoid-floating-point-exception.patch
- bsc#958007 - VUL-0: CVE-2015-8554: xen: qemu-dm buffer overrun in
  MSI-X handling (XSA-164)
  xsa164.patch
- bsc#958009 - VUL-0: CVE-2015-8555: xen: information leak in
  legacy x86 FPU/XMM initialization (XSA-165)
  xsa165.patch
- bsc#958523 - VUL-0: xen: ioreq handling possibly susceptible to
  multiple read issue (XSA-166)
  xsa166.patch - bsc#956832 - VUL-0: CVE-2015-8345: xen: qemu: net: eepro100:
  infinite loop in processing command block list
  CVE-2015-8345-qemuu-eepro100-infinite-loop-fix.patch
  CVE-2015-8345-qemut-eepro100-infinite-loop-fix.patch
- Upstream patches from Jan
  56377442-x86-PoD-Make-p2m_pod_empty_cache-restartable.patch
  5641ceec-x86-HVM-always-intercept-AC-and-DB.patch (Replaces CVE-2015-5307-xsa156.patch)
  5644b756-x86-HVM-don-t-inject-DB-with-error-code.patch
  56544a57-VMX-fix-adjust-trap-injection.patch
  56546ab2-sched-fix-insert_vcpu-locking.patch - bsc#956592 - VUL-0: xen: virtual PMU is unsupported (XSA-163)
  56549f24-x86-vPMU-document-as-unsupported.patch
- bsc#956408 - VUL-0: CVE-2015-8339, CVE-2015-8340: xen:
  XENMEM_exchange error handling issues (XSA-159)
  xsa159.patch
- bsc#956409 - VUL-0: CVE-2015-8341: xen: libxl leak of pv kernel
  and initrd on error (XSA-160)
  xsa160.patch
- bsc#956411 - VUL-0: CVE-2015-7504: xen: heap buffer overflow
  vulnerability in pcnet emulator (XSA-162)
  xsa162-qemuu.patch
  xsa162-qemut.patch
- bsc#947165 - VUL-0: CVE-2015-7311: xen: libxl fails to honour
  readonly flag on disks with qemu-xen (xsa-142)
  5628fc67-libxl-No-emulated-disk-driver-for-xvdX-disk.patch
  5649bcbe-libxl-relax-readonly-check-introduced-by-XSA-142-fix.patch - fate#315712: XEN: Use the PVOPS kernel
  Turn off building the KMPs now that we are using the pvops kernel
  xen.spec - Upstream patches from Jan
  561bbc8b-VT-d-don-t-suppress-invalidation-address-write-when-it-is-zero.patch
  561d20a0-x86-hide-MWAITX-from-PV-domains.patch
  561e3283-x86-NUMA-fix-SRAT-table-processor-entry-parsing-and-consumption.patch
  5632118e-arm-Support-hypercall_create_continuation-for-multicall.patch
  56321222-arm-rate-limit-logging-from-unimplemented-PHYSDEVOP-and-HVMOP.patch
  56321249-arm-handle-races-between-relinquish_memory-and-free_domheap_pages.patch
  5632127b-x86-guard-against-undue-super-page-PTE-creation.patch
  5632129c-free-domain-s-vcpu-array.patch (Replaces CVE-2015-7969-xsa149.patch)
  563212c9-x86-PoD-Eager-sweep-for-zeroed-pages.patch
  563212e4-xenoprof-free-domain-s-vcpu-array.patch
  563212ff-x86-rate-limit-logging-in-do_xen-oprof-pmu-_op.patch
  56323737-libxl-adjust-PoD-target-by-memory-fudge-too.patch
  56377442-x86-PoD-Make-p2m_pod_empty_cache-restartable.patch
  5641ceec-x86-HVM-always-intercept-AC-and-DB.patch (Replaces CVE-2015-5307-xsa156.patch)
  5644b756-x86-HVM-don-t-inject-DB-with-error-code.patch
- Dropped 55b0a2db-x86-MSI-track-guest-masking.patch - Use upstream variants of block-iscsi and block-nbd - Remove xenalyze.hg, its part of xen-4.6 - Update to Xen Version 4.6.0
  xen-4.6.0-testing-src.tar.bz2
  mini-os.tar.bz2
  blktap2-no-uninit.patch
  stubdom-have-iovec.patch
- Renamed
  xsa149.patch to CVE-2015-7969-xsa149.patch
- Dropped patches now contained in tarball or unnecessary
  xen-4.5.2-testing-src.tar.bz2
  54c2553c-grant-table-use-uint16_t-consistently-for-offset-and-length.patch
  54ca33bc-grant-table-refactor-grant-copy-to-reduce-duplicate-code.patch
  54ca340e-grant-table-defer-releasing-pages-acquired-in-a-grant-copy.patch
  54f4985f-libxl-fix-libvirtd-double-free.patch
  55103616-vm-assist-prepare-for-discontiguous-used-bit-numbers.patch
  551ac326-xentop-add-support-for-qdisk.patch
  552d0fd2-x86-hvm-don-t-include-asm-spinlock-h.patch
  552d0fe8-x86-mtrr-include-asm-atomic.h.patch
  552d293b-x86-vMSI-X-honor-all-mask-requests.patch
  552d2966-x86-vMSI-X-add-valid-bits-for-read-acceleration.patch
  5537a4d8-libxl-use-DEBUG-log-level-instead-of-INFO.patch
  5548e903-domctl-don-t-truncate-XEN_DOMCTL_max_mem-requests.patch
  5548e95d-x86-allow-to-suppress-M2P-user-mode-exposure.patch
  554c7aee-x86-provide-arch_fetch_and_add.patch
  554c7b00-arm-provide-arch_fetch_and_add.patch
  554cc211-libxl-add-qxl.patch 55534b0a-x86-provide-add_sized.patch
  55534b25-arm-provide-add_sized.patch
  5555a4f8-use-ticket-locks-for-spin-locks.patch
  5555a5b9-x86-arm-remove-asm-spinlock-h.patch
  5555a8ec-introduce-non-contiguous-allocation.patch
  556d973f-unmodified-drivers-tolerate-IRQF_DISABLED-being-undefined.patch
  5576f143-x86-adjust-PV-I-O-emulation-functions-types.patch
  55795a52-x86-vMSI-X-support-qword-MMIO-access.patch
  557eb55f-gnttab-per-active-entry-locking.patch
  557eb5b6-gnttab-introduce-maptrack-lock.patch
  557eb620-gnttab-make-the-grant-table-lock-a-read-write-lock.patch
  557ffab8-evtchn-factor-out-freeing-an-event-channel.patch
  5582bf43-evtchn-simplify-port_is_valid.patch
  5582bf81-evtchn-remove-the-locking-when-unmasking-an-event-channel.patch
  5583d9c5-x86-MSI-X-cleanup.patch
  5583da09-x86-MSI-track-host-and-guest-masking-separately.patch
  5583da64-gnttab-use-per-VCPU-maptrack-free-lists.patch
  5583da8c-gnttab-steal-maptrack-entries-from-other-VCPUs.patch
  5587d711-evtchn-clear-xen_consumer-when-clearing-state.patch
  5587d779-evtchn-defer-freeing-struct-evtchn-s-until-evtchn_destroy_final.patch
  5587d7b7-evtchn-use-a-per-event-channel-lock-for-sending-events.patch
  5587d7e2-evtchn-pad-struct-evtchn-to-64-bytes.patch
  55b0a218-x86-PCI-CFG-write-intercept.patch
  55b0a255-x86-MSI-X-maskall.patch 55b0a283-x86-MSI-X-teardown.patch
  55b0a2ab-x86-MSI-X-enable.patch blktapctrl-close-fifos.patch
  blktapctrl-default-to-ioemu.patch blktapctrl-disable-debug-printf.patch
  blktap-no-uninit.patch blktap-pv-cdrom.patch build-tapdisk-ioemu.patch
  ioemu-bdrv-open-CACHE_WB.patch ioemu-blktap-barriers.patch
  ioemu-blktap-fv-init.patch ioemu-blktap-image-format.patch
  ioemu-blktap-zero-size.patch libxl.set-migration-constraints-from-cmdline.patch
  local_attach_support_for_phy.patch pci-attach-fix.patch
  qemu-xen-upstream-megasas-buildtime.patch tapdisk-ioemu-logfile.patch
  tapdisk-ioemu-shutdown-fix.patch udev-rules.patch xen.build-compare.ipxe.patch
  xen.build-compare.mini-os.patch xen.build-compare.smbiosdate.patch
  xen.build-compare.vgabios.patch xen.build-compare.xen_compile_h.patch
  xl-coredump-file-location.patch - bsc#954405 - VUL-0: CVE-2015-8104: Xen: guest to host DoS by
  triggering an infinite loop in microcode via #DB exception
- bsc#954018 - VUL-0: CVE-2015-5307: xen: x86: CPU lockup during
  fault delivery (XSA-156)
  CVE-2015-5307-xsa156.patch - Update to Xen 4.5.2
  xen-4.5.2-testing-src.tar.bz2
- Drop the following
  xen-4.5.1-testing-src.tar.bz2
  552d0f49-x86-traps-identify-the-vcpu-in-context-when-dumping-regs.patch
  5576f178-kexec-add-more-pages-to-v1-environment.patch
  55780be1-x86-EFI-adjust-EFI_MEMORY_WP-handling-for-spec-version-2.5.patch
  558bfaa0-x86-traps-avoid-using-current-too-early.patch
  5592a116-nested-EPT-fix-the-handling-of-nested-EPT.patch
  559b9dd6-x86-p2m-ept-don-t-unmap-in-use-EPT-pagetable.patch
  559bc633-x86-cpupool-clear-proper-cpu_valid-bit-on-CPU-teardown.patch
  559bc64e-credit1-properly-deal-with-CPUs-not-in-any-pool.patch
  559bc87f-x86-hvmloader-avoid-data-corruption-with-xenstore-rw.patch
  559bdde5-pull-in-latest-linux-earlycpio.patch
  55a62eb0-xl-correct-handling-of-extra_config-in-main_cpupoolcreate.patch
  55a66a1e-make-rangeset_report_ranges-report-all-ranges.patch
  55a77e4f-dmar-device-scope-mem-leak-fix.patch
  55c1d83d-x86-gdt-Drop-write-only-xalloc-d-array.patch
  55c3232b-x86-mm-Make-hap-shadow-teardown-preemptible.patch
  55dc78e9-x86-amd_ucode-skip-updates-for-final-levels.patch
  55df2f76-IOMMU-skip-domains-without-page-tables-when-dumping.patch
  55e43fd8-x86-NUMA-fix-setup_node.patch
  55e43ff8-x86-NUMA-don-t-account-hotplug-regions.patch
  55e593f1-x86-NUMA-make-init_node_heap-respect-Xen-heap-limit.patch
  55f2e438-x86-hvm-fix-saved-pmtimer-and-hpet-values.patch
  55f9345b-x86-MSI-fail-if-no-hardware-support.patch
  5604f2e6-vt-d-fix-IM-bit-mask-and-unmask-of-FECTL_REG.patch
  560a4af9-x86-EPT-tighten-conditions-of-IOMMU-mapping-updates.patch
  560a7c36-x86-p2m-pt-delay-freeing-of-intermediate-page-tables.patch
  560a7c53-x86-p2m-pt-ignore-pt-share-flag-for-shadow-mode-guests.patch
  560bd926-credit1-fix-tickling-when-it-happens-from-a-remote-pCPU.patch
  560e6d34-x86-p2m-pt-tighten-conditions-of-IOMMU-mapping-updates.patch
  561bbc8b-VT-d-don-t-suppress-invalidation-address-write-when-0.patch
  561d20a0-x86-hide-MWAITX-from-PV-domains.patch
  561e3283-x86-NUMA-fix-SRAT-table-processor-entry-handling.patch
  563212c9-x86-PoD-Eager-sweep-for-zeroed-pages.patch
  CVE-2015-4106-xsa131-9.patch CVE-2015-3259-xsa137.patch
  CVE-2015-7311-xsa142.patch CVE-2015-7835-xsa148.patch
  xsa139-qemuu.patch xsa140-qemuu-1.patch xsa140-qemuu-2.patch
  xsa140-qemuu-3.patch xsa140-qemuu-4.patch xsa140-qemuu-5.patch
  xsa140-qemuu-6.patch xsa140-qemuu-7.patch xsa140-qemut-1.patch
  xsa140-qemut-2.patch xsa140-qemut-3.patch xsa140-qemut-4.patch
  xsa140-qemut-5.patch xsa140-qemut-6.patch xsa140-qemut-7.patch
  xsa151.patch xsa152.patch xsa153-libxl.patch
  CVE-2015-5154-qemuu-check-array-bounds-before-writing-to-io_buffer.patch
  CVE-2015-5154-qemuu-fix-START-STOP-UNIT-command-completion.patch
  CVE-2015-5154-qemuu-clear-DRQ-after-handling-all-expected-accesses.patch
  CVE-2015-5154-qemut-check-array-bounds-before-writing-to-io_buffer.patch
  CVE-2015-5154-qemut-clear-DRQ-after-handling-all-expected-accesses.patch
  CVE-2015-6815-qemuu-e1000-fix-infinite-loop.patch
  CVE-2015-5239-qemuu-limit-client_cut_text-msg-payload-size.patch
  CVE-2015-5239-qemut-limit-client_cut_text-msg-payload-size.patch" - bsc#950704 - CVE-2015-7970 VUL-1: xen: x86: Long latency
  populate-on-demand operation is not preemptible (XSA-150)
  563212c9-x86-PoD-Eager-sweep-for-zeroed-pages.patch - Upstream patches from Jan
  5604f239-x86-PV-properly-populate-descriptor-tables.patch
  561bbc8b-VT-d-don-t-suppress-invalidation-address-write-when-0.patch
  561d2046-VT-d-use-proper-error-codes-in-iommu_enable_x2apic_IR.patch
  561d20a0-x86-hide-MWAITX-from-PV-domains.patch
  561e3283-x86-NUMA-fix-SRAT-table-processor-entry-handling.patch - bsc#951845 - VUL-0: CVE-2015-7972: xen: x86: populate-on-demand
  balloon size inaccuracy can crash guests (XSA-153)
  xsa153-libxl.patch - bsc#950703 - VUL-1: CVE-2015-7969: xen: leak of main per-domain
  vcpu pointer array (DoS) (XSA-149)
  xsa149.patch
- bsc#950705 - VUL-1: CVE-2015-7969: xen: x86: leak of per-domain
  profiling-related vcpu pointer array (DoS) (XSA-151)
  xsa151.patch
- bsc#950706 - VUL-0: CVE-2015-7971: xen: x86: some pmu and
  profiling hypercalls log without rate limiting (XSA-152)
  xsa152.patch
- Dropped
  55dc7937-x86-IO-APIC-don-t-create-pIRQ-mapping-from-masked-RTE.patch
  5604f239-x86-PV-properly-populate-descriptor-tables.patch - bsc#932267 - VUL-1: CVE-2015-4037: qemu,kvm,xen: insecure
  temporary file use in /net/slirp.c
  CVE-2015-4037-qemuu-smb-config-dir-name.patch
  CVE-2015-4037-qemut-smb-config-dir-name.patch
- bsc#877642 - VUL-0: CVE-2014-0222: qemu: qcow1: validate L2 table
  size to avoid integer overflows
  CVE-2014-0222-qemuu-qcow1-validate-l2-table-size.patch
  CVE-2014-0222-qemut-qcow1-validate-l2-table-size.patch - bsc#950367 - VUL-0: CVE-2015-7835: xen: x86: Uncontrolled
  creation of large page mappings by PV guests (XSA-148)
  CVE-2015-7835-xsa148.patch - bsc#949138 - Setting vcpu affinity under Xen causes libvirtd
  abort
  54f4985f-libxl-fix-libvirtd-double-free.patch - bsc#949046 - Increase %suse_version in SP1 to 1316
  xen.spec
- Update README.SUSE detailing dom0 ballooning recommendations - bsc#945167 - Running command â€™ xl pci-assignable-add 03:10.1â€™
  secondly show errors
  55f7f9d2-libxl-slightly-refine-pci-assignable-add-remove-handling.patch
- Upstream patches from Jan
  55f2e438-x86-hvm-fix-saved-pmtimer-and-hpet-values.patch
  55f9345b-x86-MSI-fail-if-no-hardware-support.patch
  5604f239-x86-PV-properly-populate-descriptor-tables.patch
  5604f2e6-vt-d-fix-IM-bit-mask-and-unmask-of-FECTL_REG.patch
  560a4af9-x86-EPT-tighten-conditions-of-IOMMU-mapping-updates.patch
  560a7c36-x86-p2m-pt-delay-freeing-of-intermediate-page-tables.patch
  560a7c53-x86-p2m-pt-ignore-pt-share-flag-for-shadow-mode-guests.patch
  560bd926-credit1-fix-tickling-when-it-happens-from-a-remote-pCPU.patch
  560e6d34-x86-p2m-pt-tighten-conditions-of-IOMMU-mapping-updates.patch - bsc#941074 - VmError: Device 51728 (vbd) could not be connected.
  Hotplug scripts not working.
  hotplug-Linux-block-performance-fix.patch - bsc#947165 - VUL-0: CVE-2015-7311: xen: libxl fails to honour
  readonly flag on disks with qemu-xen (xsa-142)
  CVE-2015-7311-xsa142.patch - bsc#945165 - Xl pci-attach show error with kernel of SLES 12 sp1
  pci-attach-fix.patch - bsc#945164 - Xl destroy show error with kernel of SLES 12 sp1
  5537a4d8-libxl-use-DEBUG-log-level-instead-of-INFO.patch - Upstream patches from Jan
  55dc78e9-x86-amd_ucode-skip-updates-for-final-levels.patch
  55dc7937-x86-IO-APIC-don-t-create-pIRQ-mapping-from-masked-RTE.patch
  55df2f76-IOMMU-skip-domains-without-page-tables-when-dumping.patch
  55e43fd8-x86-NUMA-fix-setup_node.patch
  55e43ff8-x86-NUMA-don-t-account-hotplug-regions.patch
  55e593f1-x86-NUMA-make-init_node_heap-respect-Xen-heap-limit.patch
  54c2553c-grant-table-use-uint16_t-consistently-for-offset-and-length.patch
  54ca33bc-grant-table-refactor-grant-copy-to-reduce-duplicate-code.patch
  54ca340e-grant-table-defer-releasing-pages-acquired-in-a-grant-copy.patch - bsc#944463 - VUL-0: CVE-2015-5239: qemu-kvm: Integer overflow in
  vnc_client_read() and protocol_client_msg()
  CVE-2015-5239-qemuu-limit-client_cut_text-msg-payload-size.patch
  CVE-2015-5239-qemut-limit-client_cut_text-msg-payload-size.patch
- bsc#944697 - VUL-1: CVE-2015-6815: qemu: net: e1000: infinite
  loop issue
  CVE-2015-6815-qemuu-e1000-fix-infinite-loop.patch
  CVE-2015-6815-qemut-e1000-fix-infinite-loop.patch - bnc#935634 - VUL-0: CVE-2015-3259: xen: XSA-137: xl command line
  config handling stack overflow
  55a62eb0-xl-correct-handling-of-extra_config-in-main_cpupoolcreate.patch - bsc#907514 - Bus fatal error & sles12 sudden reboot has been
  observed
- bsc#910258 - SLES12 Xen host crashes with FATAL NMI after
  shutdown of guest with VT-d NIC
- bsc#918984 - Bus fatal error & sles11-SP4 sudden reboot has been
  observed
- bsc#923967 - Partner-L3: Bus fatal error & sles11-SP3 sudden
  reboot has been observed
  552d293b-x86-vMSI-X-honor-all-mask-requests.patch
  552d2966-x86-vMSI-X-add-valid-bits-for-read-acceleration.patch
  5576f143-x86-adjust-PV-I-O-emulation-functions-types.patch
  55795a52-x86-vMSI-X-support-qword-MMIO-access.patch
  5583d9c5-x86-MSI-X-cleanup.patch
  5583da09-x86-MSI-track-host-and-guest-masking-separately.patch
  55b0a218-x86-PCI-CFG-write-intercept.patch
  55b0a255-x86-MSI-X-maskall.patch
  55b0a283-x86-MSI-X-teardown.patch
  55b0a2ab-x86-MSI-X-enable.patch
  55b0a2db-x86-MSI-track-guest-masking.patch
- Upstream patches from Jan
  552d0f49-x86-traps-identify-the-vcpu-in-context-when-dumping-regs.patch
  559bc633-x86-cpupool-clear-proper-cpu_valid-bit-on-CPU-teardown.patch
  559bc64e-credit1-properly-deal-with-CPUs-not-in-any-pool.patch
  559bc87f-x86-hvmloader-avoid-data-corruption-with-xenstore-rw.patch
  55a66a1e-make-rangeset_report_ranges-report-all-ranges.patch
  55a77e4f-dmar-device-scope-mem-leak-fix.patch
  55c1d83d-x86-gdt-Drop-write-only-xalloc-d-array.patch
  55c3232b-x86-mm-Make-hap-shadow-teardown-preemptible.patch
- Dropped for upstream version
  x86-MSI-mask.patch
  x86-MSI-pv-unmask.patch
  x86-MSI-X-enable.patch
  x86-MSI-X-maskall.patch
  x86-MSI-X-teardown.patch
  x86-pci_cfg_okay.patch
  x86-PCI-CFG-write-intercept.patch - bsc#939712 - VUL-0: XSA-140: QEMU leak of uninitialized heap
  memory in rtl8139 device model
  xsa140-qemuu-1.patch
  xsa140-qemuu-2.patch
  xsa140-qemuu-3.patch
  xsa140-qemuu-4.patch
  xsa140-qemuu-5.patch
  xsa140-qemuu-6.patch
  xsa140-qemuu-7.patch
  xsa140-qemut-1.patch
  xsa140-qemut-2.patch
  xsa140-qemut-3.patch
  xsa140-qemut-4.patch
  xsa140-qemut-5.patch
  xsa140-qemut-6.patch
  xsa140-qemut-7.patch
- bsc#939709 - VUL-0: XSA-139: xen: Use after free in QEMU/Xen
  block unplug protocol
  xsa139-qemuu.patch - bsc#937371 - xen vm's running after reboot
  xendomains-libvirtd-conflict.patch - bsc#938344 - VUL-0: CVE-2015-5154: qemu,kvm,xen: host code
  execution via IDE subsystem CD-ROM
  CVE-2015-5154-qemuu-check-array-bounds-before-writing-to-io_buffer.patch
  CVE-2015-5154-qemut-check-array-bounds-before-writing-to-io_buffer.patch
  CVE-2015-5154-qemuu-fix-START-STOP-UNIT-command-completion.patch
  CVE-2015-5154-qemut-fix-START-STOP-UNIT-command-completion.patch
  CVE-2015-5154-qemuu-clear-DRQ-after-handling-all-expected-accesses.patch
  CVE-2015-5154-qemut-clear-DRQ-after-handling-all-expected-accesses.patch - Remove xendomains.service from systemd preset file because it
  conflicts with libvirt-guests.service (bnc#937371)
  Its up to the admin to run systemctl enable xendomains.service - bnc#935634 - VUL-0: CVE-2015-3259: xen: XSA-137: xl command line
  config handling stack overflow
  CVE-2015-3259-xsa137.patch
- Upstream patches from Jan
  558bfaa0-x86-traps-avoid-using-current-too-early.patch
  5592a116-nested-EPT-fix-the-handling-of-nested-EPT.patch
  559b9dd6-x86-p2m-ept-don-t-unmap-in-use-EPT-pagetable.patch
  559bdde5-pull-in-latest-linux-earlycpio.patch
- Upstream patches from Jan pending review
  552d0fd2-x86-hvm-don-t-include-asm-spinlock-h.patch
  552d0fe8-x86-mtrr-include-asm-atomic.h.patch
  552d293b-x86-vMSI-X-honor-all-mask-requests.patch
  552d2966-x86-vMSI-X-add-valid-bits-for-read-acceleration.patch
  554c7aee-x86-provide-arch_fetch_and_add.patch
  554c7b00-arm-provide-arch_fetch_and_add.patch
  55534b0a-x86-provide-add_sized.patch
  55534b25-arm-provide-add_sized.patch
  5555a4f8-use-ticket-locks-for-spin-locks.patch
  5555a5b9-x86-arm-remove-asm-spinlock-h.patch
  5555a8ec-introduce-non-contiguous-allocation.patch
  55795a52-x86-vMSI-X-support-qword-MMIO-access.patch
  557eb55f-gnttab-per-active-entry-locking.patch
  557eb5b6-gnttab-introduce-maptrack-lock.patch
  557eb620-gnttab-make-the-grant-table-lock-a-read-write-lock.patch
  557ffab8-evtchn-factor-out-freeing-an-event-channel.patch
  5582bf43-evtchn-simplify-port_is_valid.patch
  5582bf81-evtchn-remove-the-locking-when-unmasking-an-event-channel.patch
  5583d9c5-x86-MSI-X-cleanup.patch
  5583da09-x86-MSI-track-host-and-guest-masking-separately.patch
  5583da64-gnttab-use-per-VCPU-maptrack-free-lists.patch
  5583da8c-gnttab-steal-maptrack-entries-from-other-VCPUs.patch
  5587d711-evtchn-clear-xen_consumer-when-clearing-state.patch
  5587d779-evtchn-defer-freeing-struct-evtchn-s-until-evtchn_destroy_final.patch
  5587d7b7-evtchn-use-a-per-event-channel-lock-for-sending-events.patch
  5587d7e2-evtchn-pad-struct-evtchn-to-64-bytes.patch
  x86-MSI-pv-unmask.patch
  x86-pci_cfg_okay.patch
  x86-PCI-CFG-write-intercept.patch
  x86-MSI-X-maskall.patch
  x86-MSI-X-teardown.patch
  x86-MSI-X-enable.patch
  x86-MSI-mask.patch - Adjust more places to use br0 instead of xenbr0 - bnc#936516 - xen fails to build with kernel update(4.1.0 from
  stable)
  556d973f-unmodified-drivers-tolerate-IRQF_DISABLED-being-undefined.patch - Update to Xen Version 4.5.1 FCS (fate#315675)
  xen-4.5.1-testing-src.tar.bz2
- Dropped patches now contained in tarball
  556c2cf2-x86-don-t-crash-mapping-a-page-using-EFI-rt-page-tables.patch
  556d9718-efi-fix-allocation-problems-if-ExitBootServices-fails.patch
  556eabf7-x86-apic-Disable-the-LAPIC-later-in-smp_send_stop.patch
  556eac15-x86-crash-don-t-use-set_fixmap-in-the-crash-path.patch
  55780aaa-efi-avoid-calling-boot-services-after-ExitBootServices.patch
  55780aff-x86-EFI-fix-EFI_MEMORY_WP-handling.patch
  55780b43-EFI-early-add-mapbs-to-map-EfiBootServices-Code-Data.patch
  55780b97-EFI-support-default-attributes-to-map-Runtime-service-areas.patch
  5513b458-allow-reboot-overrides-when-running-under-EFI.patch
  5513b4d1-dont-apply-reboot-quirks-if-reboot-set-by-user.patch
  5576f178-kexec-add-more-pages-to-v1-environment.patch
  5535f633-dont-leak-hypervisor-stack-to-toolstacks.patch
  CVE-2015-3456-xsa133-qemuu.patch
  CVE-2015-3456-xsa133-qemut.patch
  qemu-MSI-X-enable-maskall.patch
  qemu-MSI-X-latch-writes.patch
  x86-MSI-X-guest-mask.patch - Replace 5124efbe-add-qxl-support.patch with the variant that
  finally made it upstream, 554cc211-libxl-add-qxl.patch - bsc#931627 - VUL-0: CVE-2015-4105: XSA-130: xen: Guest triggerable
  qemu MSI-X pass-through error messages
  qemu-MSI-X-latch-writes.patch
- bsc#907514 - Bus fatal error & sles12 sudden reboot has been observed
- bsc#910258 - SLES12 Xen host crashes with FATAL NMI after shutdown
  of guest with VT-d NIC
- bsc#918984 - Bus fatal error & sles11-SP4 sudden reboot has been
  observed
- bsc#923967 - Partner-L3: Bus fatal error & sles11-SP3 sudden reboot
  has been observed
  x86-MSI-X-teardown.patch
  x86-MSI-X-enable.patch
  x86-MSI-X-guest-mask.patch
  x86-MSI-X-maskall.patch
  qemu-MSI-X-enable-maskall.patch
- Upstream patches from Jan
  55780aaa-efi-avoid-calling-boot-services-after-ExitBootServices.patch
  55780aff-x86-EFI-fix-EFI_MEMORY_WP-handling.patch
  55780b43-EFI-early-add-mapbs-to-map-EfiBootServices-Code-Data.patch
  55780b97-EFI-support-default-attributes-to-map-Runtime-service-areas.patch
  55780be1-x86-EFI-adjust-EFI_MEMORY_WP-handling-for-spec-version-2.5.patch
  55103616-vm-assist-prepare-for-discontiguous-used-bit-numbers.patch
  5548e95d-x86-allow-to-suppress-M2P-user-mode-exposure.patch
- Dropped the following patches now contained in the tarball
  xen-no-array-bounds.patch CVE-2015-4103-xsa128.patch
  CVE-2015-4104-xsa129.patch CVE-2015-4105-xsa130.patch
  CVE-2015-4106-xsa131-1.patch CVE-2015-4106-xsa131-2.patch
  CVE-2015-4106-xsa131-3.patch CVE-2015-4106-xsa131-4.patch
  CVE-2015-4106-xsa131-5.patch CVE-2015-4106-xsa131-6.patch
  CVE-2015-4106-xsa131-7.patch CVE-2015-4106-xsa131-8.patch - Update to Xen 4.5.1 RC2
- bsc#931628 - VUL-0: CVE-2015-4106: XSA-131: xen: Unmediated PCI
  register access in qemu
  CVE-2015-4106-xsa131-1.patch
  CVE-2015-4106-xsa131-2.patch
  CVE-2015-4106-xsa131-3.patch
  CVE-2015-4106-xsa131-4.patch
  CVE-2015-4106-xsa131-5.patch
  CVE-2015-4106-xsa131-6.patch
  CVE-2015-4106-xsa131-7.patch
  CVE-2015-4106-xsa131-8.patch
  CVE-2015-4106-xsa131-9.patch
- bsc#931627 - VUL-0: CVE-2015-4105: XSA-130: xen: Guest triggerable
  qemu MSI-X pass-through error messages
  CVE-2015-4105-xsa130.patch
- bsc#931626 - VUL-0: CVE-2015-4104: XSA-129: xen: PCI MSI mask
  bits inadvertently exposed to guests
  CVE-2015-4104-xsa129.patch
- bsc#931625 - VUL-0: CVE-2015-4103: XSA-128: xen: Potential
  unintended writes to host MSI message data field via qemu
  CVE-2015-4103-xsa128.patch
- Upstream patches from Jan
  5548e903-domctl-don-t-truncate-XEN_DOMCTL_max_mem-requests.patch
  556c2cf2-x86-don-t-crash-mapping-a-page-using-EFI-rt-page-tables.patch
  556d9718-efi-fix-allocation-problems-if-ExitBootServices-fails.patch
  556d973f-unmodified-drivers-tolerate-IRQF_DISABLED-being-undefined.patch
  556eabf7-x86-apic-Disable-the-LAPIC-later-in-smp_send_stop.patch
  556eac15-x86-crash-don-t-use-set_fixmap-in-the-crash-path.patch - Add DefaultDependencies=no to xen-dom0-modules.service because
  it has to run before proc-xen.mount - Update to Xen 4.5.1 RC1 - Update blktap-no-uninit.patch to work with gcc-4.5 - bsc#927967 - VUL-0: CVE-2015-3340: xen: Information leak through
  XEN_DOMCTL_gettscinfo (XSA-132)
  5535f633-dont-leak-hypervisor-stack-to-toolstacks.patch - bnc#929339 - VUL-0: CVE-2015-3456: qemu kvm xen: VENOM qemu
  floppy driver host code execution
  CVE-2015-3456-xsa133-qemuu.patch
  CVE-2015-3456-xsa133-qemut.patch - bsc#928783 - Reboot failure; Request backport of upstream Xen
  patch to 4.5.0, or update pkgs to 4.5.1
  5513b458-allow-reboot-overrides-when-running-under-EFI.patch
  5513b4d1-dont-apply-reboot-quirks-if-reboot-set-by-user.patch - bnc#927750 - Avoid errors reported by system-modules-load.service - Add xen-no-array-bounds.patch and blktap-no-uninit.patch to selectively
  turn errors back to warnings to fix build with GCC 5.
- Amend xen.stubdom.newlib.patch to pull in declaration of strcmp to
  avoid implicit-fortify-decl rpmlint error.
- Fix quoting of __SMBIOS_DATE__ in xen.build-compare.smbiosdate.patch. - xentop: Fix memory leak on read failure
  551ac326-xentop-add-support-for-qdisk.patch - Dropped xentop-add-support-for-qdisk.patch in favor of upstream
  version
  551ac326-xentop-add-support-for-qdisk.patch - Enable spice support in qemu for x86_64
  5124efbe-add-qxl-support.patch
  qemu-xen-enable-spice-support.patch - Add xen-c99-fix.patch to remove pointless inline specifier on
  function declarations which break build with a C99 compiler which
  GCC 5 is by default. (bsc#921994)
- Add ipxe-no-error-logical-not-parentheses.patch to supply
  - Wno-logical-not-parentheses to the ipxe build to fix
  breakage with GCC 5. (bsc#921994) - bnc#921842 - Xentop doesn't display disk statistics for VMs using
  qdisks
  xentop-add-support-for-qdisk.patch - Disable the PIE enablement done for Factory, as the XEN code
  is not buildable with PIE and it does not make much sense
  to build the hypervisor code with it. - bnc#918169 - XEN fixes required to work with Kernel 3.19.0
  xen.spec - Package xen.changes because its referenced in xen.spec - Update seabios to rel-1.7.5 which is the correct version for
  Xen 4.5 - Update to Xen 4.5.0 FCS - Include systemd presets in 13.2 and older - bnc#897352 - Enable xencommons/xendomains only during fresh install
- disable restart on upgrade because the toolstack is not restartable - adjust seabios, vgabios, stubdom and hvmloader build to reduce
  build-compare noise
  xen.build-compare.mini-os.patch
  xen.build-compare.smbiosdate.patch
  xen.build-compare.ipxe.patch
  xen.build-compare.vgabios.patch
  xen.build-compare.seabios.patch
  xen.build-compare.man.patch - Update to Xen 4.5.0 RC4 - Remove xend specific if-up scripts
  Recording bridge slaves is a generic task which should be handled
  by generic network code - Use systemd features from upstream
  requires updated systemd-presets-branding package - Update to Xen 4.5.0 RC3 - Set GIT, WGET and FTP to /bin/false - Use new configure features instead of make variables
  xen.stubdom.newlib.patch - adjust docs and xen build to reduce build-compare noise
  xen.build-compare.doc_html.patch
  xen.build-compare.xen_compile_h.patch - Drop trailing B_CNT from XEN_EXTRAVERSION to reduce build-compare noise - Update to Xen 4.5.0 RC2 - Update to Xen 4.5.0 RC1
  xen-4.5.0-testing-src.tar.bz2
- Remove all patches now contained in the new tarball
  xen-4.4.1-testing-src.tar.bz2
  5315a3bb-x86-don-t-propagate-acpi_skip_timer_override-do-Dom0.patch
  5315a43a-x86-ACPI-also-print-address-space-for-PM1x-fields.patch
  53299d8f-xenconsole-reset-tty-on-failure.patch
  53299d8f-xenconsole-tolerate-tty-errors.patch
  5346a7a0-x86-AMD-support-further-feature-masking-MSRs.patch
  53563ea4-x86-MSI-drop-workaround-for-insecure-Dom0-kernels.patch
  537c9c77-libxc-check-return-values-on-mmap-and-madvise.patch
  537cd0b0-hvmloader-also-cover-PCI-MMIO-ranges-above-4G-with-UC-MTRR-ranges.patch
  537cd0cc-hvmloader-PA-range-0xfc000000-0xffffffff-should-be-UC.patch
  539ebe62-x86-EFI-improve-boot-time-diagnostics.patch
  53aac342-x86-HVM-consolidate-and-sanitize-CR4-guest-reserved-bit-determination.patch
  53c9151b-Fix-xl-vncviewer-accesses-port-0-by-any-invalid-domid.patch
  53d124e7-fix-list_domain_details-check-config-data-length-0.patch
  53dba447-x86-ACPI-allow-CMOS-RTC-use-even-when-ACPI-says-there-is-none.patch
  53df727b-x86-HVM-extend-LAPIC-shortcuts-around-P2M-lookups.patch
  53e8be5f-x86-vHPET-use-rwlock-instead-of-simple-one.patch
  53f737b1-VMX-fix-DebugCtl-MSR-clearing.patch
  53f7386d-x86-irq-process-softirqs-in-irq-keyhandlers.patch
  53fcebab-xen-pass-kernel-initrd-to-qemu.patch
  53ff3659-x86-consolidate-boolean-inputs-in-hvm-and-p2m.patch
  53ff36ae-x86-hvm-treat-non-insn-fetch-NPF-also-as-read-violations.patch
  53ff36d5-x86-mem_event-deliver-gla-fault-EPT-violation-information.patch
  53ff3716-x86-ats-Disable-Address-Translation-Services-by-default.patch
  53ff3899-x86-NMI-allow-processing-unknown-NMIs-with-watchdog.patch
  54005472-EPT-utilize-GLA-GPA-translation-known-for-certain-faults.patch
  540effe6-evtchn-check-control-block-exists-when-using-FIFO-based-events.patch
  540f2624-x86-idle-add-barriers-to-CLFLUSH-workaround.patch
  541825dc-VMX-don-t-leave-x2APIC-MSR-intercepts-disabled.patch
  541ad385-x86-suppress-event-check-IPI-to-MWAITing-CPUs.patch
  541ad3ca-x86-HVM-batch-vCPU-wakeups.patch
  541ad81a-VT-d-suppress-UR-signaling-for-further-desktop-chipsets.patch
  54216833-x86-shadow-fix-race-when-sampling-dirty-vram-state.patch
  54216882-x86-emulate-check-cpl-for-all-privileged-instructions.patch
  542168ae-x86emul-only-emulate-swint-injection-for-real-mode.patch
  54228a37-x86-EFI-fix-freeing-of-uninitialized-pointer.patch
  5423e61c-x86emul-fix-SYSCALL-SYSENTER-SYSEXIT-emulation.patch
  5424057f-x86-HVM-fix-miscellaneous-aspects-of-x2APIC-emulation.patch
  542405b4-x86-HVM-fix-ID-handling-of-x2APIC-emulation.patch
  542bf997-x86-HVM-properly-bound-x2APIC-MSR-range.patch
  54325cc0-x86-MSI-fix-MSI-X-case-of-freeing-IRQ.patch
  54325d2f-x86-restore-reserving-of-IO-APIC-pages-in-XENMEM_machine_memory_map-output.patch
  54325d95-don-t-allow-Dom0-access-to-IOMMUs-MMIO-pages.patch
  54325ecc-AMD-guest_iommu-properly-disable-guest-iommu-support.patch
  54325f3c-x86-paging-make-log-dirty-operations-preemptible.patch
  54379e6d-x86-vlapic-don-t-silently-accept-bad-vectors.patch
  CVE-2013-4540-qemu.patch qemu-support-xen-hvm-direct-kernel-boot.patch
  qemu-xen-upstream-blkif-discard.patch change-vnc-passwd.patch
  libxc-pass-errno-to-callers-of-xc_domain_save.patch
  libxl.honor-more-top-level-vfb-options.patch
  libxl.add-option-for-discard-support-to-xl-disk-conf.patch
  libxl.introduce-an-option-to-disable-the-non-O_DIRECT-workaround.patch
  x86-dom-print.patch x86-extra-trap-info.patch tmp_build.patch
  xl-check-for-libvirt-managed-domain.patch disable-wget-check.patch
- Xend/xm is no longer supported and is not part of the upstream code. Remove
  all xend/xm specific patches, configs, and scripts
  xen-xmexample.patch bridge-opensuse.patch xmexample.disks xmclone.sh
  init.xend xend-relocation.sh xend.service xend-relocation-server.fw
  domUloader.py xmexample.domUloader xmexample.disks
  bridge-vlan.patch bridge-bonding.patch bridge-record-creation.patch
  network-nat-open-SuSEfirewall2-FORWARD.patch
  xend-set-migration-constraints-from-cmdline.patch
  xen.migrate.tools-xend_move_assert_to_exception_block.patch
  xend-pvscsi-recognize-also-SCSI-CDROM-devices.patch
  xend-config.patch xend-max-free-mem.patch xend-hvm-default-pae.patch
  xend-vif-route-ifup.patch xend-xenapi-console-protocol.patch xend-core-dump-loc.patch
  xend-xen-api-auth.patch xend-checkpoint-rename.patch xend-xm-save-check-file.patch
  xend-xm-create-xflag.patch xend-domu-usb-controller.patch xend-devid-or-name.patch
  xend-migration-domname-fix.patch xend-del_usb_xend_entry.patch xend-xen-domUloader.patch
  xend-multi-xvdp.patch xend-check_device_status.patch xend-change_home_server.patch
  xend-minimum-restart-time.patch xend-disable-internal-logrotate.patch xend-config-enable-dump-comment.patch
  xend-tools-watchdog-support.patch xend-console-port-restore.patch xend-vcpu-affinity-fix.patch
  xend-migration-bridge-check.patch xend-managed-pci-device.patch xend-hvm-firmware-passthrough.patch
  xend-cpuinfo-model-name.patch xend-xm-reboot-fix.patch xend-domain-lock.patch
  xend-domain-lock-sfex.patch xend-32on64-extra-mem.patch xend-hv_extid_compatibility.patch
  xend-xenpaging.autostart.patch xend-remove-xm-deprecation-warning.patch libxen_permissive.patch
  tmp-initscript-modprobe.patch init.xendomains xendomains.service
  xen-watchdog.service xen-updown.sh - bnc#901317 - L3: increase limit domUloader to 32MB
  domUloader.py - bnc#898772 - SLES 12 RC3 - XEN Host crashes when assigning non-VF
  device (SR-IOV) to guest
  54325cc0-x86-MSI-fix-MSI-X-case-of-freeing-IRQ.patch
- bnc#882089 - Windows 2012 R2 fails to boot up with greater than
  60 vcpus
  54325ecc-AMD-guest_iommu-properly-disable-guest-iommu-support.patch
- bnc#826717 - VUL-0: CVE-2013-3495: XSA-59: xen: Intel VT-d
  Interrupt Remapping engines can be evaded by native NMI interrupts
  541ad81a-VT-d-suppress-UR-signaling-for-further-desktop-chipsets.patch
- Upstream patches from Jan
  540effe6-evtchn-check-control-block-exists-when-using-FIFO-based-events.patch (Replaces xsa107.patch)
  54216833-x86-shadow-fix-race-when-sampling-dirty-vram-state.patch (Replaces xsa104.patch)
  54216882-x86-emulate-check-cpl-for-all-privileged-instructions.patch (Replaces xsa105.patch)
  542168ae-x86emul-only-emulate-swint-injection-for-real-mode.patch (Replaces xsa106.patch)
  54228a37-x86-EFI-fix-freeing-of-uninitialized-pointer.patch
  5423e61c-x86emul-fix-SYSCALL-SYSENTER-SYSEXIT-emulation.patch
  5424057f-x86-HVM-fix-miscellaneous-aspects-of-x2APIC-emulation.patch
  542405b4-x86-HVM-fix-ID-handling-of-x2APIC-emulation.patch
  542bf997-x86-HVM-properly-bound-x2APIC-MSR-range.patch (Replaces xsa108.patch)
  54325d2f-x86-restore-reserving-of-IO-APIC-pages-in-XENMEM_machine_memory_map-output.patch
  54325d95-don-t-allow-Dom0-access-to-IOMMUs-MMIO-pages.patch
  54325f3c-x86-paging-make-log-dirty-operations-preemptible.patch (Replaces xsa97.patch)
  54379e6d-x86-vlapic-don-t-silently-accept-bad-vectors.patch /sbin/ldconfig /sbin/ldconfig                                                                                                                                                                     	   
                                                                      !   "   #   $   %   &   '   (   )   *   +   ,   -                                                                                                                                                                                                  4.10.4_06-lp150.2.25.1 4.10.4_06-lp150.2.25.1                                                                                                                                                                         fs ext2fs fsimage.so fat fsimage.so iso9660 fsimage.so reiserfs fsimage.so ufs fsimage.so xfs fsimage.so zfs fsimage.so libfsimage.so.1.0 libfsimage.so.1.0.0 libxencall.so.1 libxencall.so.1.0 libxenctrl.so.4.10 libxenctrl.so.4.10.0 libxendevicemodel.so.1 libxendevicemodel.so.1.1 libxenevtchn.so.1 libxenevtchn.so.1.1 libxenforeignmemory.so.1 libxenforeignmemory.so.1.2 libxengnttab.so.1 libxengnttab.so.1.1 libxenguest.so.4.10 libxenguest.so.4.10.0 libxenlight.so.4.10 libxenlight.so.4.10.0 libxenstat.so.0 libxenstat.so.0.0 libxenstore.so.3.0 libxenstore.so.3.0.3 libxentoolcore.so.1 libxentoolcore.so.1.0 libxentoollog.so.1 libxentoollog.so.1.0 libxenvchan.so.4.10 libxenvchan.so.4.10.0 libxlutil.so.4.10 libxlutil.so.4.10.0 /usr/lib64/ /usr/lib64/fs/ /usr/lib64/fs/ext2fs/ /usr/lib64/fs/fat/ /usr/lib64/fs/iso9660/ /usr/lib64/fs/reiserfs/ /usr/lib64/fs/ufs/ /usr/lib64/fs/xfs/ /usr/lib64/fs/zfs/ -fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -g obs://build.opensuse.org/openSUSE:Maintenance:11478/openSUSE_Leap_15.0_Update/2ff7bbfe6252b11e375926823eedd926-xen.openSUSE_Leap_15.0_Update drpm xz 5 x86_64-suse-linux                                                              	      
                                                                              directory ELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=0af08e74b2dd5466c05cd12f352389bc8b205769, stripped ELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=8b89047acafa8b376a36ce2e3b40e34277fde221, stripped ELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=106c549ba0782693bd3cf97bdb93f4be7c0b4ea1, stripped ELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=7864156c74bd17da386168368fe103d62cd557c0, stripped ELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=602656a80eb37ac9da05c5cb7a94b56517c96c5f, stripped ELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=da635a9d2287302316d99d93be1123d21996b9fa, stripped ELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=69a30f9b452ce63daf614050513a3f695630d0ef, stripped  ELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=0e125392f5a2f59f7d11f410b370620e4cb291d0, stripped ELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=04ff0ff37e1d758daba505538ef74a782a9c315e, stripped ELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=a0ac6090fa2cbda61767171f7116ce8a07090116, stripped ELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=6f07d489d05cca23af1564a9439fd2ce8a70f2ba, stripped ELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=d293fe5a2afd5050682bcb636faf2f0a027e227f, stripped ELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=516938fa801ee51846169b736ef32b12c41a2a6a, stripped ELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=6d387359ee5ba43f40723e94533637661e68782e, stripped ELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=66db049cbb2633f52267efb495f9ec21b759a440, stripped ELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=5aaeed380cd66ff0bdd16460688e88c72e4e8a3c, stripped ELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=72e646ca1479e64f3abd38ce6a81edfa61b883c4, stripped ELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=acfb113c79c0c61bd3bf585304db2389a59745b4, stripped ELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=71cb9dbf9987d2ea3816c6a09fb0a9c7fb7b5203, stripped ELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=a503f57a2e825ba2784c8794ade955db0e50c19e, stripped ELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=61b097642489be64996503139f60e04df5e4065f, stripped ELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=e2313b4a86e53439b9fa196a4c025dc87953e239, stripped       utf-8 456462d48f8381adfc7217afb0db61af12f3550be07e48d04363cafd014c26df        ?   ÿÿüP   ý7zXZ  
áû¡ !   t/å£àlU=] "ÌkÀ%ŒZ¡†´rÕ]‘H·ÒpÇñBŠIå$t0oýîÁ‰ÌXÊÉ˜Q¾tñŸQ©hÂ‚U£4÷Ç'wI’0$3SŸ²²µvÎü5/GŒ÷V¡ìB¥xBÝ“nd9µ=ˆµxL¶´Rðœôé+—‘U¿žpœ@‡¡Á’UÅÓï>yŠ±¿k•Æª ÌPRòK–¨¡T ÝË¨R‡`[Z£Åöèž@ãX?¥S+¢üÛ…$öT½¶á±˜§ÛÊ«¥ƒR\ÖUNSš(”>}WÐv›½°gP >89Y zgy%)atÐ<öSP&}´‹ž]Ýz(Ï˜x}átœ7R.ëY	x±Ó }í­Ï²1ã	—VùäqX™’É4ñÌ>>7ùþ8Þ
ä(‰iR16¦û M÷@ûO’@À¬/•Qôç]*z9w´^:>›>¾álL’›§’%SÔg±ã¾ ÛòqŸHvSk*|ËÅ#òrm¾l‚øx‚AúÍ½]…'JÛ-)í¤F>Òˆö¾mzeW\k±»m­o¤à+`]-ÎòôàÅè­Vh|$-Ï¡!š¼õWâ‘uH°v(¾œ^›>êp‰§±XxðÙo&Ú¸²zâi,Do)Îð’dH'0£jª®€˜ýÆ!H’·’úŒž˜2ØânÉÏ¥"é~Pt¥‹‚äôD¨P‹HLX6ÎÉù2ap&¬e."©ûÖï6±óLváy–uð­Zr×Ü^ÉòA#j‰K¡[ü™kÀÄ‚©CÁÜK6[ã<(çÚÌôßßIö9Éž¬I¬ëo9‹3„h+ÔŽøÏoëTÍ^{U'ñb0”:j«Êï€mZ*Ùeó”jŸäöñæ-	ûót:ëúÞ
°Ün¬}Ã‰W*-ÈwCV`NYÉ¨Õ?£NYN^§à¹ @Í€2cp[B(À±Noö/ŸÍÞ»pX$Ê§‘+ŠCtÞ#L~ƒcýë¥PM¼5ò¸j›˜´ù*Ìé÷x»jP‘¿ƒ±$^¤ã]´.dƒ»+Üòh^2”FbæaƒOÁäŠ”ßoÈÇŠF<®<G¡ø\¯s¬ü<wV˜,~9˜sŸD*<Çÿ7Ž:™¿Ž2m ÁÁm49¸ù@ªùItÐ¹ìº#½v¾fåqÑi%hÑ¯2P=ñ#çÔ+ÕT †šn÷‡¾æF[ òør‰43½KmÌÂ\Â!¶Y??c[g4Ë<jMZR)²øbÛ»Ú¿ÂHlÊïvÕ²Š„þ¿—ãXûˆ'œ˜vO>NàãS31î<½%\C àÚ‚tFÍ€Þ¡žè6BÁLíé!Óï9¬J=sÄø2|ÎmW/=¯¡¦=fÏ)Æ#ûÇÞ‚Ø_zE÷tÙ/÷Álßôµ]éÊºWAa÷"!â±ƒ'­`uQø.î{sŸ ¹¨(X^¯Øíu
Nô
›YàÝdþãzšØ11ªŠ ÕŽ.@~‰ºxVu®šJoØ0í³º„¾C¤'Ì¥z÷ú®ìÈ]Ð?+un«Ò·\¦Ñj‰"^U½ò¶*t7aÝÉ¦Ûb¹ognäh@ÝoúÓAÞ¹{›ÊÓ¬ÕÇÃ	}e´ª!ÆYãÿ ¾ì`T§tŸù™RtËÞëAJSÒê»³<P\ü$¾SýåôI¿2ÒÍtc }”³/azšãœ‡Z^VU´šAÍØu08Ý&cgˆ£Ó¼K!¯Á>éÜÖŠo‹v¥†µÑ]w´“ð´Ú©\x!|…À<¹Ói9 pÃˆ§O
´¿Z0`4X­\¿(^Sdc95TõQcuÃÖ2]•“:Aˆ+¾r]ãE|Ôæ¤{ü0+–º)Öù'u¾~ÚC¡³ù)§&ý&m=Í’OÊë`åUÔþ“µMOO"È¤‰!¢[_’ßùÞ<B.T÷Lê¶ªÙË½›Ôq%½w-‚“­²é|oƒ†|»ããš6£T=	´; ´`ç~×¢Ç°ÐU}î-%@h’ÉBÌÌ­_níf­¤¨‰ùTþ2–yl3rÀø‘¶õ;îùTò{q/Æ7¨Ê…Lå[|°1ÏÝëbeï*ÃùÂV1JÆä–NÒ<Ò´"ÍUµìf}°;`Zèv=h›;D‚T‰zO» ¡¼-™ü¦5.S‚*~V¶?¯íÿÂ*U º©Dèk™Ë†JÇ3ÂWÙ"t£#–åÕ&*_£°dÏ¬u3Îù°ìþ_,1ßCæÉ1
T©c(rºÅ[œùS6H*òÈhqýÐûêÍgÜg•õ$Ú $PÙ3zÜ¶Ð]QŸüU|ô‘‡´Òn‚¢¡*p*é&Í€Çœ¡%Œ²£fOÒ¹žËXMù)târ@_5/L[OH.ùÚ2jùR,µÎJæüÉà¥æJÒªÕ¢Ro1Š8mñîSÅ˜™éªß?cüÇ«³üßé¼ÛÓ6gu'ƒW«ºÄhm¯;sLî¨8Õâ»M°$ìÎ¾™&—”º‰eº]j#¸+ÙÁ<]Ðž"óÂÅ …<é\…Æ•xÀÊá·Ç©4.­&ÌÚEs˜óÎÒÀRŸ2‹7¹ï›ÆÜ’ÎþúÎ„Úe.ÀPIöÄ=v9žm)U#Äúr<(à8b<±ŒßKþûcûÇ¹ƒj‹ªWXls³'Ëà¶‚]õ-½úUxsÏÊUBSñ¼!$ÿ¸þb Î¬£ŠüYÒÖð²•‡@Y‹[ê˜w±YHTÏÀÎëþ¯‘?ÙK#__8*ôCvtYHËùÒ‰Þ……{Ì…f~ñ]ÖV¦¶%…ÛÒÙw•2§û¦Z—dKzÈ;yQÇþ2†CÃÏ»ºõï"eHÞY–ÜRPQæ×3Ó|Â†Nºì‡²ó_öG³´Ì7.™ÞÕ¦Máº¶Ø©7§fÞŸû…P.ÛCÝ¶h´R’ˆœü| ;d`êÕÔÕ;ßu9Ûþ{T>aø]~Q®ÿÄ÷1"qi›I-¾KhÖ(e
œ¾àà‡Þ¤Çéè«5C©
,u'ÎyQ6hü}„y´ì8ì¶­ž½¶à­ÉªuéêP·“OÚ€n£„0)	ò(Om¼A¢W>öÖÚÑÚø¯¡Õf¿Y2Ñ.—5á”uãðZÁïèo)Õmí™:ó4/}¤U»œ„aldZ©1)²œ¸]œ·ñOezÒ×#Y‡.>Š´CÉÛ{ß©‹R)Û:#ëŒ­-?kX5%gO>ûS£™‹©£ ò“j†êPTäpYÔb—ßØYKÁ{Ä=N3N—sp-1²ê¿…çþaºÄô]ªžŸ‰æì@Ï~'&³ú¶q P}Mú|ô[5±@£†Ö×ÞõõS:ûSêXÈXF¦,'[5PîtÃá’Ûûä‡ñ¤öŠè»ÿA2‹qŒ¦=÷6‰ŒÿšKÓ2]–}SbOq:Ò²~Bçr§˜‰)9C	@fjÐáìtï%y ¶D—þI& Ú@8Sd7F]b‰¤ wFæï|$*Qò,ÙRQu¸!!é0äH/ÌŸk2—j.ÓXóUê…
3ÕNo´ï2„TÝ~GAƒðT¬ÏöðÖö"¨Lð]¤$HÌHˆÞóMlêTjš–Yë_6Y¹e7…¡!W€J­¸¯—NÀ´¼y{ÏïÆ­ÎÑl€©ZL2î‡NÕyÃC#E3%x³ŽE'DJš]å4L„Tãœ%Ä"¦À™IÁ=óÞ0x€žk8"§Ú…sÚ
ï#æ¾­&`Ì^|ÇÝ÷ðš-èÆ!‡oìO31qA}Åê¸ÜX“LaœÀ¼E\š×ñÞ: b;Ô3Ä¼ÿmJ ~äÙ¹º“éÇá[¬óÅP1Z|¸›s†s-O+mEèÌþ¼;pžSÂ1ÞÒo°0Ž®¶Uih>-Ž3è¢(ÉAärkGçÌË"ÒB‘!¾Ï‘éÎÇà¬Ìæë™k*7£/'ó¡í	·~Vý7E2¤ÿ.gèSƒŸ°µvý©²c¿sH¶>½Ç‡¸8¬Y€Òå® µg^Â¬ä`Y
i±JËÝþ+žU©ðQ ©áÚŸ1:¬.òÙÝñ”@¸;Æ49ãÿF¸vgû<špýÂ9‡£ÑgÈï"Üû]•¬š9’G•¶ÐËÅ	!T0öí$ò>e«8‡·¯¿fÜ6®1ÐòÐ—ûl¸ÊÛêê5¨¤ZÇ‰n&ágùBFMÐnÈÐ"rý®Yø3Ø‘ÿ0e>kÕˆ]VyAäq÷ý½Càµ™¦)û¦4€û(þK†b=(×,ý,õ…uï"³¨{Ó ×Xz›o†ÍÅ—ÑfGk;¡F–SrmÙßê‹àa£’Z˜®F:”åŸb©’EáprjæÓÉOý§þéñÞ—L&¥<r±#Æ°áåãäâš³Ñ­ß§í¼S”¬ä9
‰”Ü.HÏÚšÞÙJnb¯,ÛD~P¸™Iu^ŒÂ;Øø³ßW\Ïx_£*d #ùJí$ÙoKˆD%‘RFÄ›=Ô^&ù–æ…èÌc‘æi¼:\¼
å£
™O8ƒòBê¹€6Å°‘š¿0åst²Ø1ú…8‘Ø-¾ò¬Ú¡b_ñ¢®e­H/ÉaµúMãe×	Nw+L|ì"iæ3\=Ïú#‘Ìê‘¢@Ò$6 Ú)…,:ù*äú@öœ%úšPAxõ¨ºž-±ÓÆcùfåè
ÕêáWÞŒÀœ*'Vð×"„Ü÷Ú#¥;%0Þ¦cœùiÝç·¡ .Qrµwh€L
™,ÉÜ³cÌõßÁ¹ž·Â²‡Ö%ÀÞí
iê¦s<aáÅù¢?¢g ødÌàˆÄÅÃ”6…62|†àC|D•Œ6…°™M´fô­ ¶•ël°]©âØ1’“X/íÝ:‰Á‹/ãßMúÏhUÖIûvŠŒk²H¡¸<´Q2‚bÒlþasËD»æ·>bt°:ÃÔÍ#YµÿÚíÔ —ÑÍ}µL;”|$O'Ã2ž4¶ž/<³lUSr*-°¥L‡¯4$Nôv—îZ[ÞÌ†ÑÞoÍ~©Sw^Œ+‹d±û9Gp€£×Ä!ƒSfoßÝþñâ DMÖxÏx*7°¢òU†/+²N/¢$û,¥^œçz/V«ºêèo–Î³­ÑÉì÷CžW§GúCŒÃ`&oö¢P>ä-XÄ¼y·†F²fà_à3M%zF¦U	°bGgÊm”žH:šyƒ3¨»Þ>Ä#žÖFO3?%’Rá(îÌÉÍ„%!’		½œØá+N:›¯t\ÚÇÕ¢«Ãˆ76Ã-Ãž„7TÓlÐ3]ŸI ó‡Y^wï	».4|ë÷0ÖÑë¦©ä]ÅzŠÝŠY¡Î î1ÈÞÐç`…ðÙµ+þ4Bì#
ìÖ1
'-›ìnÚžûñ`{xkTÊc©^ÔëH_nÛ$éŸ¦ôî7ç33™šd¨ ¯l\$|múMª.q9…«fª}`†×ÿ"bí dÓÛ/ïÖ*Ÿ´	¤¶D~æÌB7ˆ·­{[û8äI{å<L¡¨x%£HcMÚÿæþÝÛp–Íá§ØçFD\øŠA5\V eÃª•lA÷ªfv€I·XîsÌÕŸ
k~=³s-5—ÔÙñI–®B¬¨T i¸
uäÙfÜ‡ù»*î‰˜]‡q.môó{sùiEÁ‡ùÐ‹5ˆ*±v7@tÎ`<¥¨Adä«„”ö­ÒgZ8R$W¥´!/ô(Â6çGQË¿ÎúÇptqgÁôKW\hLOšæB&¨E–ñõ½e9uÀ—ÌNé• s-ÞŸÑº*T(\›uy-8D½rƒcWfÑç|Ün¸9cY†£’R¾zƒ›Fm¨ýžW]ÒýÑe³VÞïë¨0Ô¦jÝë-³fºCñ©dý´wî[2D' HGÛgíÆróÖO¡ž"uOU"gá;SöúRÕÖ™&ßr>Ýµ§Óò Üª‹ç?€›&rmQDp$cÛBýÌü4Œ¼A
"H±­E•±©WÓ‚Sªæï ›÷^Ùº(®eº¯J{_š€íehðªhsœˆÆ©‚UØ€T
B”Iv²[Ü; néñG¯ÃÎf¾òx3voš€œ•UPãBîØbÆQ:c¸!1b¡Š¥V<Ñ&öWÂjeS ú÷ö‰æ)>ëÂãfŠ`dðE<‚mƒVt~»2ŠOzcÎ`8à¥† ÖÃÏC¼ûC†
•üµ>jŸŸNç["yáL`!ÓTš8¾ð+å¾Ió*“x"&Eì]%,äë—R ’}IûÁ;¢ÂŽ
Ë²|,'ÉJF¯SÜU¶ofôvY²E„œá‡šÉÚôVQ·Ï€]
h—ä](Ø×béw+]ê+è|DXt•p*>h_v¡ÅjP€—
sU’·(z°ðÄ^¼
•2b¥ 2Šõ¾#omÄ*¿h¼åFî‡àO˜[ÊA[A\Uÿ¹ÔŸSºJø<ç!JG®¢\Ð¨2¬X„ØÏrø70Kd;'ÜÎÔŒæ€JòZó\ÏcW(ðwê‹9ã&Å|cw?¿€Ž*|€RÚ24ÿÑ;òüŸÐŸž½{Ì¸UÔ
{Í=C\w'BU¼šêÄg|AçíÍãÛcåí»ò<ûA8ÿw¨Â:	
Ò…_=!ÐÂÕs„ì£c†3V,Óî¶ûß®Í‘Ó?g|x³ƒxd?gìS¯[íšžhLíúJr$hæ[ŸUhq½˜ÎÌyêI£!ËÜÑQzþ’íeü¹4ì6¡H!ÃÒDeç‘%8€Q8žC@½d”yi¿bœÇŒ{Ñ£mx%ó¿þ_7
OtAÐ#åÔâ6÷Å¹™7èÔÅ6Y>tÆôp&€±š…XÆÞûªöyšàOÄiMqêp¿£ŽÚ'T•]Ñ¢dUb
1;îé&ç‡ôdÑR±ê¶ÅGŒÝ±ˆ_p
8:®È£ìºçÎ»ð—<ß<öø8¼ƒ÷ šTé1éÚj1q2aÅ
¶uo6}^•õj)*º<yŠÒçübJ®—‘X*€š„k´z ^p˜ý´a¥\—•ä§Ú™³ÃØWà9¥%
Ýþó¿KÐÌDž‰h'uv`4˜Ë¤güôÃ[c1‘‘Z£oëñû_†W²•¼äÉ{Ìª¸‰ÔÄB@)•
¯5E»ËF6—:…6p—ŒeØ‡?1E,E‰²3»^c¢ ˆÞÊKÍ#¼¾GÆyàÙoùìÈ©
î>yÞè`FXæÊ
$ªn)Ï¯Ž.;B¶Þ9ìIŽÿ™³ˆSŠØ¼¿£é^Ò“«ä=všô
æ¥Á÷UR·4ðµIgÖ×nG0–½Ä+kEÌ²4H¦ß)DÌ¶@@v%Z?>PöP•VÜÃ#‰-[ZÐÉ?Ô/r÷0Wm¶† ¥'ksá—rdY%Ð,Nj}¡ÍÀ ƒù-\Êúð÷›€Hâ¢l«­ý
-EêÆ/€apOÙxhùŽ¦ø\èc2÷ãÄqˆI£–NÉ>£$¬Õféno)2æñ¥ÒŽÐ¸½ZÅ€ênsø
6ß=¯´¶|J2A¶qñôe	 øÎcÂ­'Q¹FàJ	3Ì:ßØþéË[i‘p““>.‰mFðÙ!EÖ«Úñt<&Úxš%ÔýE°Ýó¤D"hpq”=SëÉö&1(zxÅî³­uœ§m)6¢þÕMª?q‘‹ñD€¡a|1©À9·ƒÇãßÇýE·ˆHýDˆŸF/ýþˆ\¤ ŠŠ8ƒw|ª¦cÉRKÏÌL¡}ùÈe(+D›;íƒà‘—s&˜³Q‘„‰7tÒSŠÉ/¡ÏýU¶öÝW/l^T{d±ü=¾ùˆý`[Çôpª§RËÈ{Rã/ˆ¡åâ¨Ë¾‹©¯Ðë}ù* ìÏÝºM-¼«Õ»½²z¤”f5…|Wðßø¢ Ž¦ MÇc)I.¼³ñÒU(¶uíÿF‹ªL ÝãMîÉµ9ƒªèwCaŽ>R5|¯Å—º×äO©îÖíÍ¬AV;êt„›3¢n€ò‡2a‰kÕNbµá@‚
Ü°R›tþ{‚ÞÁp1©J‹Þ‚¾Z°uÍ£vpXÂ¾8­^0Ø)(0>t0uº/È0‡±6
†‘p[½Îá‡Þ9é’Öêâû“ßì@Þ¼ô· Gb™ÿ¶ŸK9YææTäJI9cüÁ?;:Pìv 0]ÉŽ'°ª‹D[	.‹o\£²‚ŽlÂ°+v‰YùZy‘èÂ!}þaÃ›:¤§9Jð­`JÏ˜qëTÊCÊpšÓ÷¯Y«¤×düGYJE,ÚÅŒÉÙq„°é·>QÆQ‘]Nq²^“qE9}fHka–4w¶‹·œDÂ€ºÅßlÊ×ø=nOžJ(ÂŠÕÞT[njR¹€+  ˆe?ÞB}øN¿`Ži Ún’†¶Ï¹·¶Ø™ã/lµ&{¹ò±£ÃÕ9„ñ®m“öj_Zl·FÜÆ}kZ©`NS=A¿¼AZáÛ' *yñl!ìõþü¼lú„¥ßýÖÅzÆ÷b˜ÂWª?î—á+ëàËý×þ‡Ïá¯”»0'N³=~P$k‘&ÔI–ùr*ö	Eg3®Ž€…¯\ú’†Ä(„zVáÿ<+4E)£µvõGÿDÊ¬÷ãçïbj“F®“7vÍÑ¼‚%åQs9ßE+·C!ã|ö¨j9æ×O £/4v+?ìz3¥1ß:y³ò5á)L½ËÛ­ÛŽ0•…%e¡)†­†TšÁø×0Ã=oK˜+.[üíº­üHÖ2w¿l@Î ÒX÷Tw8ˆOãW÷_žYAÈfeXá(µ±Õ]ßs[32žY
mu$Ù=qÈñÌ¥¥ÁÔ›Že¦ÅÀÖƒj¸Ë¾·½iA™M6¼ž *®eÝ©·6Å”Ú±þÞ^
l|‰÷‰sZÂ$×@øñC/ÏTwÅ#J ÀŒ ÈK{vVðC‡]JD±n\}T1F¡»$Ý|—<¤ePFÜÑ²
,\Ì³n»2À^Š|‹h«­ŸS\üqéÀ2åì‡!Œþ¡ùz¡u&[Ö„–Sà˜u¦…0y£ÕÜÒ9OÛÆ§5—ûc4?:ÇN9M°û]"0ÝÞÖAÆØ”Mh{ÿåïÑÔáÙvm¥;zO& <eCé€Õ‰ÕôÈìšŒF!?Â7nªHl®-öáÃ¨ìA…6öNPá€ª=åŒ![èöPÑƒôXs@tT|=ŠI	|DDê,Ž"L\‡Nh‹’íª–’’œTï\« O›æ•f1O(†BºâTM	A3¤³ú¢4¨Å÷Ð"úJò0P<FÑÔì‰BoV¦TÞ²ã^Ãð£êz¶Í<Š3“§	j&.L,Å"´*LZMõBÇZ-Hþmý:¼Ìá BÔPÐ»’V`sX¨»%ž¹†àRT4Ü`{‡Á—VÖ²kKàÁ¤w¹ÍOCLËÖ1i€Þo |î)ÝëöYƒL:ùDïÈr
-YåF‰‚a=Q¥2/ÐÁ‹ÝV<òqR
tnuwv¸”V$}žƒÿ3eP|	w(QœÒÅ‹¦¦Þç¼òX‰ÐËjž&}åeÜ‹àA-3šdèÙ™áþg°äššŒ þ"÷ÆýC­DûaI7oNò9jvôP€B2”sñ•N°¥jP•â=©ºûg™é÷B"ºÞ_Ë«X
ÏpXGN[«úºz>åÿï* La¢ðØØû^Ž3YÞ#îQZ—¿&µs/çU6|ºùºØªŽ˜÷”OÔîR,’3‘ÑÊ›yE!öpýXa†àêÔÎN‘dwÓøƒ2š€¤ÀLàfØŸÔ!|÷˜ÐE“Ï[„gÕtÂ~'ÕÛûû„u3àQo7YPIvNã]€±Æ‡ø•²q.ïW7K¯Œè™›òø~"³$¿±ªÅ¾–“°Æ bM­†\wc™FbÎ9èÏŒ8T¹µ®jça.Ú,æDà?(Ú§‡6•pŽŠáÔxÐÌmHš/yÆóÁ ÑŠò\Îï´KÒÍ¦e5=/åß`´ŠX b3^ÙÎ;{i¥ez¸Ÿ’–ët›\Ó¢Éš!Ê26@,¬|!}Ølçn
TãïÀ„ÂËÁüpëã(RÝT§«›–mçwA½Ò€U¼pŒ$œ8ÎJÈpX‹1„j9ÅPz‡¨i3Y3õŒù+°D lóEQÇ.?œuÂ¢ ³TÀV@S5w\“s€k-ãcB
–•LFg<ÛÑ¢´{GžY-ÄSË3gdLAØˆL‡¾í9Ñ—v\YÖÆäâ½<v€`oR™yî³ÜÅ5Ø­†ùÌê_kæ›ñ3ÐD¼¹þ«õ´·.d…¦Vi0wtCÎkY‘ƒfÕWs»1½idyÃŒJ—MÐ4èf9sIgÔÖØÌ¡HÛË”š0ýê2½^c²Ác·tZ%Y†˜dñ{­Í©Ì2K],Ùñh(Œ´áYD‚¹"æ{Sÿi:x§P2zgÅö5Yƒ×5ã©Éîy×„º$d°2˜©Lˆ~o‰‘ž1ÐH&{A€#–`®aQfžèu@0…“»±*|ñVcÑ:h’Xä§¿+l;'îG2[`£&\Áá45Y¿£¡uiMò”ûú)tç^+‰.‰1´'Œ¦[ŒÇÆCŠçä(w Q+UÌ¦B°«Rø‚Î×º° DA­“„#ô•­ŒÂš£@Ü·JÐ´:Èo=HÁõóëÓ!±³›»Z’$É²ž†ô_óCö’d[Sv;åñþfn¢+œƒÇWÕ1%GbXÜÙõEÑCéâENê¿°„=,‚°?Œ!My³©Íà@l½âàðUÉ¬Î·k[š&ÈdIS¾ú‘sþq£ ~Â}/8ïg=§š$­YZîÖ;Çn–{!Î 6£[–Ï·åL!=}}7„HJùàÞËþAÁ™î@?3ôÚË3úò¨^†o†x9þ]É’noºu¯{TŒì./b*ç¶AÒò³‰F¤-Ê³P$^>4œàÜCºwæ-Á
Ù[ÁöæÎ-ÇRáë©á~†:8zI(Ùæ`t\¼¶=á'£r›e;È°êÄÉv}æÛ7džl‰m«óá0`=-×¾ãÂD7k®M!PÏT·H",ÊÝË#ÄH_—˜+60õj:íFRúÃ¦ëEgÑ„ ÍäŠù.pdÄo´,ÀŠÒ¿Jo"©÷l.—}ƒRBã÷±EZ¬?@ÙŠ:*µun<xh£‚p?j¢7ixä‘í?7z‹	úp[§«‘>	£#óÌ£é‘^_‡±ËÂ5ýÔ—Ò$—$¡Ž;Oµ¼žÉe]Ò3Æ¸hRi¿À`$ŒŒ@À$»Ì	XŽCž;>V¦KZïBÖüø(ðÕ”J&ÁŠ˜‡_ùZó70¦Î¦)˜¼ÿIZ)ÚõyZÿpÕ«Ìû.SÌš±_QÐX³“]²9CvÓ~ÄÏc.ƒta¿zkF–íˆ³Î÷¯]ÊÑz BQï|1ð;þ—[[áÀt)`Rò¼ÑYàg¤¤ÿ}Ef—ˆ8vóæLPéÝÝ*¿[fÙÃ`uŒEÛ«˜£JÈîŸ2–©:P¶¥Ðùº‹…é6ëéêÌÅüÂÓ Ö2ùh~ ôÏ{âou¶òÐŠÊ¬=JÌŒT¸¢,Ïy	›Ð{á›Ÿg¬]µ)J)ª.¯·’ÏOæÿAë6‰ S·L¹ãI©ãÆqhÿÈiVÏL¯É¶ ,~1JŸÑlŽÛ»ù‘€›H&™>ÑæX ‡Î°&?™ÿò’ç·ŸùÃ¥÷Ÿœµ·}tâ0h1Ó1TÜñ¿à½bmu(Í±9‹®~¹ØàvïÔÜÄ7ŽYJI«¾Øüi¬XºU5µ¥–EVbÖŽŸH8ä©~jn%Ä;kÖ½»óPÉ?œd$oo, U÷,¦™ã‰û['¥ñÒˆ¾|À˜ûÇ=ÃÒ#›áâÎþ\;¿¡2ìïÕaiÚ$d0ËU’‡,²·Ïw`K<•”qà3\ïYœ<Úh]ìn˜D|Ø)Õð‚vñãÍ®ËýÏEGk7Su~h®M.îû±ÔiÓ‹Cz¾ ÉUÕ÷4_Æ­5YéöÛ3DïœS&0“péiÚxìº×Ü9’™QÙ”²d«‘ ¾‹*ØÑÞ!Ÿ66¸Áá&BU¨Ôàö#cvÂr¾¿;ÞŸn› ª h¹é”LÇIwÚ…Yr Oâ‹!ÿ1Mv˜‹«m×³Oc -³µ?èSºrOÊEŸ5P·Îš\&‚U¦qV¦}E…$ºdr:ÊÆYÀ¼í¹Uè‹^ÿÞ‘‹{µEã»Åç:ˆŽ¼‡ôÎ¥Ùl¡Ñäh)Î\–íÓ|Fpr„4»û±S{MoÜK-Éd^úóŸ›Îà°©ÊÓ–üdC2°b—ç*yõ
•u,bXžr{ÙÄýïl¥¹ßP™ùph"|—Ÿ,œ°ã÷õh…XO-4ÝH1Ž÷Ž‹+÷…3H(HËªÝŠÈqG#âƒò€ýb~ÞÉi8üL¦FQDµù$»˜QA¸í«$³O8ÿ¥7ûO¦	tÚÜcÔà ©4XÈgèU(OÙR.ß|*BBòÂŽÖ)¬Ÿ¸G$¾HÆ>#â-Éí‡UVE²ÇÄ×aG	[ŠÊ/
F<Lè•®swO?|w#uM8©çÎ›~öI7¯H¼ÙßrgW)5N©u•KwO"Ž"?¸…¯P‘±¨””U#iœ‚5™ÆÈÂTaƒw)ÉÆMeîrÔ7@€t¯¤Lëô:Ð±ë_ù	(èïgczÿXá*yq µãöòŒ€ÂÛþ™jBhzÇD4Ñ–O	>Ñ³ß™Q”hŠÂ”¤óNÔi7k[}+…ÝAÓüA‘“q¢é^;õgW\]Î³ÞL˜ŒÙ‡Ó®R€ÿ·lMö*K‚WlYk¹)lâÀ#œË~ýbhÞw«úYPÅÌš¸p˜†uX Üp^)ÖüHvð¼Â"PñÊ›ó>!´2‡¦Ç„…®Rþ bx¯r¨¤h	ðÑ|õ=:´¡Q9ï½Ñ¥‡M‡Í¤æO°*·•J¨Ä,ë]Z!ßÒ½}ëÂÅPµ3±æpÒ“¢“&³“"§m9N5Q±û^Æ¿ŒðZ9²;k‡TÞ*7¾«…Ç™q¿”WDhô¾6•AT3Có‚­ X2E÷¬P³wÈzDÖZo6¯íÿRywo,:ý7±ÑéÑïûÇ¢ÆÏnJö{¶ U“W#Ù¯èâ^©-nfÁD½2@¤Bqèž&´ž•ªcX•Õ
¼ŠoºÊ¼mQÜ]ã[ïC{$ÂšwÔ¼óÀwYÀ ÷A®{w ^­‰Ó\ïa¹õ¿mLdwz´}:BÊv(tëçÅ’²‘Í9vÆcšß'™^¨Ú)Ñð-¶j¾EEà„òúAœ&Õd­Q<Laé°Mfmrßí©eG}L–ìkMÛ–‹<­­sÍ§kˆˆ¥ú”ó‡
Ç$F±Åd$á
³tQÂ¦AP”'Wk5N‰]—Dš]ÁU&µ…Îìƒ#kÝ„FRA˜MòU_ª$m#Ûùç¼bpö,i1’¸ÊÎÁ(?H5œ*çy¥ã…Ÿò;yÃŸJä0üQ	t!|G~žL"fºÑwû„é~YéHy|Äm0Qƒëc÷È=fâ•à‚¢»däˆ~åÁC·€ÀG¬Ût´Ã°yÂŸ6 <ÀÌ–¹*2î±õdÑ½dþ»Ç·ê_ØNâùPó=Éj¨ÒÌf:ÛšÒ!tË˜÷6óD¼Uá<O‡‚ƒ³ÊDíH¿ìÂ×å:Ìe3Ê­Ï`]jGÉ’Õkºv’x;	£¶×éÐÉ:~(ŸŸQèZVûýk¬M¦-§.l%aB6\ïL’0À#>àq±¡·V#®|•¹º‡( ìG…‰1ébÝ®ÈÓ¦NÌjkÕÓß®ÿÉ»+É±bbý/3ÅðuP÷Ë½¥ÉVÛø;.°$Gj*äŠßcÉ•>pr¯{OƒÀdy´§Ê
œŠÛ„p:9IÚˆ;|©.Âå53Tâè¤ý«Ë\|{a‰ø½éjc§Oç#ºô}j¼&<ÆÐûYb	…8?5º—8`¨µlƒVÛ7JÔ÷Tì4µ=vÜ\og_YÜWBÍ<—pÙZ¦>"rW¼%þžùòŸáCŽ![ 2m´CÅEçc–Éåv£W¶¨¸‰¾q£…Ø§9<á·ŒšysvQó„«´CPo3jÚ$ØtÒ¸gFÎý®[g/:gùVªqÿWÏÕ›1#ê<K|¹õbÊ”u¡È}O‘Ï;{wˆF*·CÅ„3Rð`m›h2 1%¨jÌ{1§˜±…vDÏ»h¿Ñ#ˆ §]Õº¿51+ÈÝUžˆ[_ãép¤ƒ¾_5îÙ±;ÝNT|r IZù°‹V…ói²eÀÊTæ^|èã©³öñƒQ`š¼Ò­SæOŠ5.ÞÛyóá…b¥ÚÙùëpÙ ô5ƒj"JvPen¼4ÄTœ'â¬˜àßþÿ·xA¶mÒ‡cÕ„Ã&ò+
ó”¨ŒíçDä8/Å.ðR5 Uc¬ÂQß>~¿¹f%ÐXôŸø¨YOôtp|=ÑÔÇ¸Ç…/®Ö.û­=Çj¸G2Ž¸0Ï-ð<ƒÔÀÉz˜ˆû®%=ždp‰mðÃ½¿]ƒUG¸˜¼órnÕFïy¹¥áñ:ÃÙòtNqýÿ\NÔ¢F6¾Ãß‘©ZÎ¶¯¯Yjnà.éßÜLƒÛ’i(o¢Î¤™ºÅ½ÿÄ3¼°/™c¬>oÉq©7íI¿¾IJƒæãzÝ%eÌŠfCó.Ý)0N®Ôb÷Ø,ÌàÇ‰sºcâN½¼”l @}¸J¨R6›ˆ5G‘âø,J˜Ø–,Ã¡Ñxr?
cs;»½òM‚=^„aó^ÏË‰Â YÜœØ6Ï{RðèŒç.©sRÍ+ÃùË~ ¿­ûe'ÐÏÛ¶ÅÌ<R&ïûå<6b¸‡Ø.ZaüÃï$4ÞL eÃÕ6Ø –F÷‡aª€‰¨Î»qeäÓXO—EŒ\g“÷môEI›¾„6èú·Ùò
¹Õ)Äyã[yŠ •BšÓ¦Vk3¶ËêÐÓˆêi'2cµ3¢î´mà
L+Ò†Aåô©½Äq:A_µ´<]ò1I„õÀ»”Û¨9³(	chhjñ§åg¦‘âc<lG$N°£z>\¸ýcæ-Ñµ†yœ>;/YHrL.i´“¯"_l1ÈÉ´î†³Ð­ƒ+ñHÏŸ7“"mÎã<ŽŸ\lKÓ¬íÃðÜê §,ùjëýD™ê^f¯5øß€g0i/WÄ±ÛÞ1]²ƒÄ¿ö Ãz®[<´<Z˜…f6èqu–õk‘jœ]˜Ö
jûÉa®a/‡„'ýQœ¹j8²	ÜÒ)yåQ[4‘“Ù¸J-.æŽ®U¦j¥›l÷›KðÞK\²ó+un¤Äô}$‰ØuÎëER’¥m˜¨BB¶‰ÎÙôq1Z,dhns\ÆÛ“Œ3§.…£´ÀÐqžZìsKa
ObT0¹×!˜Íl¢r3d}ÉëØŸgr+ŒØ3:„Ï¯æm,^¸#BñŒ7Š“Ã-¼.W#ªø37Ðœ’¬›4JŠ´8RXäKägJ¦jÏqÐ:½îÓv0ðsŸÅä()–îñÄÂ@Î)Ra˜âÙÂžÛ¡ž\Á?áÇNëv ¾ó5ÂxÞk7á"³ Þì	wöfgNáa‹$B±+õ²Íz¦Š’Ÿøõ<«à«æ@aä¸¹¡ò’ët™úîK¹¬žk)Ã‚Oc•Ôø¤^‹mØð,þ‚FRžÜ§*úMÝ9â8[`›¨€o’È6pª`c2MLz½Žs¡˜»Îâí÷)(ý*½öÜ%ßaÁ‡F–cS—éNˆœNÑì	ˆ»2sÖ?c¸,¥‹Â [^/›Q;ƒÿÝ[¥VQ¼ÈFÈèx~3ÉßeSxÔKó	¼™X´¹Q¡½UíÍÙ¬î\¾z•®é©æ%>mxcÃL~\œ?’éîˆ:Í+¿W,´r
)—Æ—ÊO.ÝâßjÐpmiˆwË¿DV'Š/‰t³»}°sÅ•—4¼IU˜¾šš6Â×9ÑjgØÿˆ„U•’Š€³<ÈÝ†ýÇ–Ú²ëUxŽ/Q0º+ã›«C^ªÍ_P9™³z—#Øî”†ñˆõY}wéßrt8£àù*’ÕYž„›8ÞÀ€+WþÎ¥ò@ój£¿ÏêÍü§¾nMziVq;ôùd.]Æs‹4x®ðt^6¢TÚÌKwŸAz-lŒòäVKU>øD-”Ñ@Úœ/ÔÀSË¡3ïBp7ƒwÐ—ÖêzˆÒq‚¨ÖOðWe‘yž|¢Ë®<‘})E¹i¼ÜªeˆôQ7’!ËœˆíQ BùCÎˆ_çg ¶¥ó_—Iõ:ÛÛ¯ËTsRòÌu?ÞË<‰H‘”FŒ²$u™ËØ½ºümvº%Æà=+º¡WðFzÆìµäq,¾©Ñ@µg»iYŸ6ý4žw½½%¸»¿ØsLZÒÝ˜þ|•pÍã2mêùzˆ§™AóCn©±Ãqa†ïwôä(=f0 é¶¶x×gqÔnÛIÃK›TÛ	zL?Ò„nÊáÎ\)^SU-Þ{¡…ÃwýCÀÔÊïÌ‡ÝÙ<û)xñ<¥¡du¡úÄ‘Â2…w¶ýºrHÑ|ïõÃÚƒ-á‡s9«ùIÙwPÙí"¤mE±Q¸7WÀLZ[÷Ê:båéô3 ™FúÐŒp¨^2KÔþ¥[;¹«ÅèŒœT9Ê”°(™ƒ\Ø¼‚éˆŸê+F¿å	—˜q1—’óÒ+F?•ÿ dÐÓX(»–ÈSÍ[öêÊ±ÚVT@È<ÙéS¦4W…†OqäÇStMqPx×aûcd³	pù8;×ùyzý")3pœVä°ç²ß~37k3mŒ0Àçpˆ SC l9Ü’úp€æy¢Úø»¥Z¢œv¬¸îŽªºfÈª¢´¥€Jê“  ‘gï=jþüÐó.ôNQùlÎB;€+éãCðÒÎ½gØ«4%çß¢÷)5ÀšÈ²’µ'£žÜ/ÓØe[´ÇÕ¹1‡zÅfWò¯	·e£”š™XÊŽˆgçì´·££tÖvù1ÉX¡RÒûÓryOSÃ úyñÂAVU1­˜²£”M—Æ@®4Ææ·M”Ä&ÅyõÒ¶zª4”H´”ïú­ÎÍm%ÕÆyæÇHú¸‚XG~°•ñy+GR<qàÃ(>Ú’Û&o¤¤¬ cê	¯4®Š‰r°—À%÷ÂJ£¯¨çU]:0"ßj­©–ì}ê¾ÂŽr_ª/!N©ƒÐbØïÜ©Ø€1¥UÑB6\æµ¹acmóá˜O#Ò¥Æˆ5GCÃùúÂ|]ßO3…Nñ-éÊ`_¦ÉaPÑ¤+h«þô¸}ñ_ã µ]ç!"®61c‹ŽleÕUí.b©‰\âë‚a„‚õPpÚïJ—“'¼|¢âÚÂo{.ÿ·g[ Ëhº)§—ä?ùS—%=Y“ª7”_Ý: Ù~Ö¿áýNúî4ÒÍŒV…/‹o¥6ÊwÑÅë*Ú«·~·ÚäÛ5`ð ˆÅkA¦ú<‘õ%­ÈÛ²œn˜¨~wÿh¾M8o¹›HE„}ù¬Ô–eŠ:$×K¢2ËTDTVþÔ.Ž£ÁÖ|7&ÜÚá éu»X2?ÏŠv;¦¹8yd6TÌYå¥vãàéÞmL±B¸úK6AUƒYÀëLBÒ<=Rig¤È{¿íŠ»«Ëk~’¼eßÎÁ¬ƒø‰8S?l`I-¦Ô’7"±hÞØÁWý›[½åÑ»×Sëù|#kKˆ!ocóÁµ)ýUŒÔ›À CÚ
ûâB~¯Š”ú[ó6‹“ºß¤§¦+ ;u]þ(-È<úÔŽ;ùëXJs»À3Ó$2—#¨FwEóv
íóFÄUgÑ>Ú`÷ó¢ñßz@«ú
µ-rëéIüÈ;êbq§-B]ÈBû§ÍímÔ÷âfÅw¡0‰IøûØ8~ŒSÁS?bâ|&8Í«‘/ª'³œ€eåÅùyw##µþ~‚€Üš7|11»cCÜÉTwÂ}ŽÎw<¥¯@*2(	þDT¯þÿÒö£«äaÛõÁÇ6±;7áä&ÖÛe<­øËÞiŽ 
G
àÂbC]øñ\ÇDôÌÁñ\‹
ÛæK†Ð¤ðîj³SŠ]8\Ð³³ÎÓVŽÝÂ1cxeàÇ>Å„ÏJ…dnîžþý¿Ú@(°Æ\„cü1kúîØƒÛêÚAWdºÜƒ.Xô²ü÷‘Ãi‹×]Þz‚mµý'; 	ÍÓe¦¾¿ö{™üß­nÀ5(d‹B	ûHãµ¢dÔ$Á¥œêù'f[gêÜX¥„³ú±*pP'À‘|F‡ÿ¥‚Òu%tJQõp8§Ë:eDÚVq—a	 ‚çÀ,Ze$Ã¨«Ò—K8¹ï{Ö‚
D#Ró.öBª×<æ’‚ÍÚÊ /~›éÀ54ÆKÈ·/jSÌªøŠ|¥õRS‚¾9m¤Åú‹ cAS×é4Š#scÐù}Éî-ñ=ÉIŒTqÃ·RöküÓfžŽEä‘œ|ni²Éïò‘ÂQ„9ê’Òëù7€²:›=•I Ãº_—@Ÿ:(xÏÂþþÄÝ`í•ã á÷…2œ	x3˜xïÔ~:{P$„ÅA|Æç…r]
¤©N‘ÏøÖÏãúº‹6„¬É×*I'”Ã¦Åc·ž¥n#cGÌ÷nà;÷Å^ …Þä
%¯6µ5é9œÿÅ´ãÅ dÙØß¸cìÚì·O!ÃGxÇþòØ\•¾ð_Ýn§aRkY¼"¥Ó°>ÞÄÌX•”i-÷{N©¢sw¿l?§tÊƒºF
7³¬v/ª¤„YUeˆ0QÔAÎç±’…é•æ¾¹Wá&ÐRoKFå$áÚho¨%¤4S3S¯‹@ƒV+91!Ð¸ÓäÖbŽ8#¼3‘(pµ²îé€€I'˜¿úZ(I²‘ë
`ÓE…|r
ßò²[éÈ¤ïøŸSœ{×wa‘p3î`ÕˆJ­ô•ô
öÜ‚úaœL ûnÝ¿m#O‚mqð‚bþê)ü¼¹d6¶ÉÏQ0ëFrMŽ®`p˜UJ'Iâê*;-thÂDNp'|!éN
æv9O_`jnÊávÂƒØm'ÆËÚ*ÿsnÞJ$²ãlÆ[Š-ûpûüE¯°@ç”9¾À]IlLªy5¿Khr€ÉBíl‘g¿Sˆ–DyðdfZÎ>ì4co§^]Ñ‡‰“ÑAŒmµh?kÅ_q xïd_ˆ€4¥ïq?Øa»Su2u-ô9I½}K’pÛ*EÂ cÔ˜eãü>Ær
<Ÿ¿ÔÈ/PËå7è—ÙŸŸxªîgSVe×»ßW›·cL´}3­s˜Jk”Õj}×Ÿ²!Ë×(7~2S¸¯Œã>F[Ô`àá‚z7Œã§‰7™Ø	Ñ"¨½¾Îš•ÚVÛ	LD_°
~ä²åw€_×Ó½h ÷©?cl“X Å*-ËeÿÐÙ7½q0qãwè²¡"ñóæåöp‚|+™(Ë|Â,“C–}Ýp„ãùú@2;ÊbµŠ•ý¬Ìÿìé¹±{ùëä|Ùb™Y<ÔÿtÙ4üØøÂy«¼˜¬üË‰öÙÙ¿}mŒ°ó§„ƒ(¿Pß¸Ñ=x÷ð6`ŽÂ“éWTÀçÜÞç¶Q| Ú=Å·ó‘g»ÚØ ÑÄ€ã.—›€Œêžàó>:Æ<–^­S<[H	3Ë—¾5‹±V HÝ).DL±#¿ÀQûóV¬”`1I›H/lb‰e€Vü=ëò	Ò7ÔY0Ó»@<Á>w¯ï6Cqµ‡’æâ01¤PÌqÑ!„8%¡0àGtÒßðGOäu®@²ás¹_¥ýVnMFY€+ŸgÌ¤òðYR|xH×7úYÍ²=ÆW¤;>wÚôšù³ôMª´ è\&á^n+&O¥™«fuûœüJ“5 R)<ÁÑn÷ïn6rÏÖ˜
^.ÂÞêA“!¬¹¶%Ž½¥±$úSU¡zÖ”3È†7hKŽŠ»]¶O “«|v^Ô„àTaúÔ$”"âÁ¶Ø«ÕÀÃébÿ¸¬ »@äK¾žÄ8¯§«V¾‰ä=’™hb¿¬ÔÃXyªÿŸÅ‘üÊ{Ì&<’·|5Âö,8¿CõŠê#¯]gÂTP´Œíj	&{m:Ã_4j$m©‡±P üm«‘¿Û”Bˆy±˜P~°ÈöÍÖ_H¼½IUÕöÃßrÄÔÞÝ_D»“YVl|5NI´›
Éþæë6ýÜŠM„]M¾ÀüÓ%¬"ÂÆ”jÔ´¯´»šŸ¢Ú¥ŽÄoSþ¼×ÓßBÒÛ:T&6ƒ
®Îƒ˜YV©Q<¯teX "Lès*N•]ðþ {I’ŒKžQèMºRòF;…—•ˆï9Ä¤Ãy«„=€•/ÝL½IéÇQ•ØCR4±ò:®Û"™BJcïŽåaÓñs¢n“^ãùeµ‹s»' z,1ï´úƒ–ÁÄ(!HÆˆÊ†ùµ @PÚí›?ãTÎGS¶Õ-ÌãB¡ù-frÉKµú“Ê¥9hµªT²¢<!*÷‹È„.©\ŒïÓ‰ÝJQ!‘¸ù¨>c½€ý‚R9K³UW‚8¦¾zlš©å•8xtFTz•3}£•¾½
»‹×ò³Ørž~¿r¿œÛÍqÏ×OIñ1›ô® â–ízâo¸eæ”7‰Dï¤H¹î÷?ñ¶@¶÷¹¿;2ÜX4-I¼ÌDSÌÓ‰ön¤ÅB•¥^÷mÂ;ø×õz´´%×S]ÙêÀG–•ÈÃ}•µü\³ö¬Ù(2‰L¹£ð4^›Ù3ŒDÔgÇë5ùÄ~“³cwúòb1¤õGïGvÕîH%%€}£¯ËZZðî4C@· Œ[¹[Ž,…£ŽpUÅÐî:WŸ…›©w`„þwªŒ5Aäüwœhºf°|%žäÚN*uÁË*r¿1µaÂÄûïõ…š<f_T6ƒD£uÄšßñ>nƒßÌ¯Z.“ÉQóäÃ³
¬–ÃÉŠ8Ï¶¾ø|Ež	“A3‡o4Ç‹qV;g;ïK—§ÈG>¡ˆ) e{iÊ³ÝF8¿$OäEEY]—ƒJPÁ/Ú6é…†Ï[í'Å£–¨²Ó&.H6aQUœþLÛ\­÷5Î¼1úqž†Y’‹âÓ¥"“¾ªyNÑJÖô*é_’t8‚M3™OôûhÃ(á˜º@]˜ÝÀ¸’»ü¾ÁÊç0I†Yí™}œÿ&5²ÄÇÿ®'ýÖo
™^Yã{vgn÷(¥žŸ½úå‹Õõäw—Î·ÚO€&çìêñÈ(îvéæ)1=´ &»¶À$‘¥ËG1¢ûNÉJ»V5O•0CXÂÚhwš·p¡óÈ<éâþ°‡œ¿ØzÃšh·«#“§›®´fÙÖßaø3}å-JîùåÊyW¿æ‘lö°*¨8VE#ßX+ðƒ<éºò¯mrvoËøÅˆãø¯Ýú|€õ|†®xiÎóZòÍFPûVÊVFªa&,)±ÿoö¿­/½P«U¿n*qF0èÁ » ROéÏ™B[}8…†R'BžÔV®£e'ˆ1Ð‡–Â‚Ì\í³Býë.¬`<â5Qý5mUÏ& Ëû¨«oîü_×Â8ßQÕ<=«
Ù;uË  f™Î$wŒ;êÒv²­¥%-ß¥6Û×Ž^Žrš¸ƒä0­­æ Cw(vÃXpI÷Coo>Ì +£‹c®6oO¼ø ÍQu]š9v~L+Õ„ØðÛ©j³Rã¡'ó(Ò¯íŽ¼rô*…U|æ^ïcE\•"dcð_¹RöbyÇ³,CKóÜYKR
ß¼8œ3#løýäº²Òº ½á(Z©à{àBPX`Z¬	ñ})ˆñã€DÉ…~ªWK5<ª°ûEŽ¤Q…å¤$ˆÁ—ú(0I¯Ymê?XF‡ñÌ9 ÉØŽ~ÈhBI$L’Qõ²'ÃÓÂ¥»öÍçç×}à¿  k«Þ³â_eB«Ý¦K¶l4ž½)ø+WùÑN{ŠuºAì_öA	ÔZõà¨‚PÞ ­N©ôú¤3)¨gT—8Ÿ8;œÚ#?=~)8mXóQ*—æ0…%Þ[_oš†böþqnO“ëZÙ¸uÙµN“Qíe{´%Ôh?€îÑj_ßìC¦½L§ÖÜ‡4åˆýAÐÃ“îsSßÓSU	6jcŽ•Áä½Gðÿ%!æPì7W\n±=âh<Ï£!ÜX44Vm@9··áObã¬ '…d>|Œ;ØGh&®Ð›ª5ëAóP–z ‹tò ¸Q¶Ìn¸Üx•NüÒPeÓÞ‡Dý J†({ Dpã˜À˜`Ë¹¸RâY…}K¢¾Ž¯’¨\âWøt²EE¾äŒäéú,ÚÙN‚ŠÖM9 âCÖÑ¾A‹…Qã¥ndÀï'{ŒP—a—Ú y=EõÏ4¨ôfÈzÉ†´
"ã.ypû¦ÒFXå£‰|ù×æUÑìê§_›PkÃ»©ô²Ž©Fµ­Ÿä²ëÓ™ÈCƒ¼]{æX¥>hÓ>ysúçsa‰á:÷„¼3Thqý³ùWÆ®G	;»SØÊËÍ·Ž×´xTR,ü ‚"À’Ÿfí:1ò
<0Í
qm©OƒéUJW ˆôí‘n«oþ}xÃ_çŒé/B€¸GTZÓrÄ²‹“ü§©8íú|† !ÏÃÀ(¬½‚{¨CHQetçDjëžWuÒV˜þw1ø…4cÆËî,ø0­àçÀš}‡•}2y3Óµ’"Ï)"¨êU'ƒ@7fÆ`ƒ¹ÀÒ©­ÃÒ(SH/@ŒxøLõ!ƒ"BŽ¢½ß“O¦È9Ž(£8.¸Ñ)7‰–-hAŽ`>²v•¨¯•VB³*üï¹²ãxwõ[Ì)n¿…Â`y¿"eù»¼ÿ ET]d}ðuå¸‰É+Qìd¦.cñÄ›,ï&Û
@ÜäÑÅ^—J‘`ï¹cÖ¬šSpÎ—¬Ã]¿ïOà`Á9ˆkãX7 4x9ø!s:3 Ø=ÕÌ:êÙeƒgL¾¿^U;˜[â5]ÆnEùÅjmXDUðn„).žÛå-´]i›„¹V‘3Àåë²ÆÎ7uj´}7Ø¦§Š1	Ç–vÞih'šÀýúÊ]¿ê¯æúÑÔ–³>i¾„
5ñ3ñJ%Û;•ÉGéÊ:¥qkèÆm8Ã†Â°gÉª´H)8qX2å4d´;þþšCrÉÞ\éÎD*ôâ@PñCìhª»ä¹iÖC9š8óºšBQÃîýž@âaWÞ_>XzÜ€‘n§*È„•h’PH÷ôì“‰,NM³V’7—¨O`"*Ãî(ãé£ß†§Ò2×œ+&Ä?Õ~Äâ	v;³ïfê%î\ÿßóÅÂÒÃŒbRÒ´Uëºë<HBÎ°ÅdgW’WšNv‹ÖWòÚ-¢÷¤±êtâ‘¾—x9g ü×†‘#£˜_=s/±®-ä0²éâ3:î?N;]cM¥?,åyH³ŒIØ#‚
2”ä˜2aeñ0b=ÚöÏ3ìîŒâ©ƒŸ%|ÚÖ‹¨pLk*Fá³WeŒ#¶ ‚…°°3n—g!¥%>­Â/÷³MAVíc×·NÃ ÊÞ|P„t¢Ùçä («|¶U&ÈR|ç’þw°ÛÈ\“¹Ù{OØƒ›Uú€	XaÓ:ËYCÜJåÕšÎ0¨ÅzBõc×ÈÒa(2ƒˆo4g°!†‰µ÷ñ}7ä¯c
ÂéÎ2^
YiìŸ%„ZôàôrLyÆŠÎ²Åe+Ðb|ÁÓ¸ñä£qL4­&ˆß“°x¦3r©áJÞ«9{ÑóÑ*à^ÂOßÿz¡6,sdH£„‚v4ÅÿÞŸ´æ8C­Œ5ÝÅ¼¯ÛçÀb³˜Žkÿ¿…‡ïÿH˜²5S“®Ñ9zÄQŠ1Š
Ã×p|S^<—.ëøŽš^úÐôŸuÝ-OAµô›8^=>ÓëåC°OúYÄÀœµ¦ÂÑ“kkDN‚%,1ãoP$é‡ÕEÏñý\†Ô@¿\/JgÞ™l-Y¦nBxÎ6xû"ˆ$ôñõÈfæÈÓ÷¤·²ñÒÍ:Ö4ÞáQ˜0 ÑTRW,Ð–¯•¿^cHC¢¼@ˆÅ×H]XTù|Ð–9³õCµüH'Ú)•v²‚>,GDeuDuùîd»e*Â4äV=P wÿ‘_óukM…{IµÈ‰ÑmìÄºê¢1À2{+DŸÁ‹˜t·Ÿ 1z
<?qÀ4ÜX†øÖ9kÇ¤ñ¾ô„næ`^ÏÓkÑ8xö\4¢€XÜBvŽ+ìGC(DjÙ^>gæ–îxéŸî9…8ff­]Ïþ7' M/mvÒ3ÈOpä CZdƒ“U'f
A²¾Èúârb\-™üÈ ©FmLã³gö%¿ Üå”öŒÛ¹íO¼Ñçv•õÖ½„§úù€Â•Ö˜ñ{ìÔá5¥¾pôio&|Ûb‡wXÖ@³ v¡—Xb@Ü’Ã¹¡ÓJµ¡ÑLÄÿýj—¿ííè(Â9õn‰=†Ù9ç°*.ùW'<OøÛ¦
Ó€®î™l
ùù(ÇØbÅ"ïDÕÙ‹¬fÚ^—³ÞË—E8Ë‹:”U­BÆÒïÛªÚ¿³êóöúZ£prA(áEFUL¦²›RÙ·o–5«™Z½b†8Hç¦b~þ1À¼8¶ÃØL»ÔßôÎ„³B’'»ƒnYGò[<Ÿ6*¾òLäO•å<àb6ÎJ4ïXKòí:*`)¢~ÍyªY¾xdqärå'Å’»ª„¬q—›1,(v©’ñª9š¾V’<S›OÄbßŠ˜!rÃÄà!‡œ¡°9[«àòïHm»¨I(a	ùF|Í×äoWQósò{ai–BÈ>×k&Gkãæê}Ût¥5íâ“óô™åÙk
!¨tpu‹ç:Øv}Ó:Ê	Ä\¤‰út‡'£dƒ¹K­ºvê‚lšUíiâmÔ)t…—Ý÷:Ú?u›|Æ”Ô×f¸z“ûï†¬@î±ÎÅ’·ºâý§…ÔAQÄ5jCr®X-_Núr·ð'Ï´”Ã"˜€'8Úú‚¼à:,™ª¯Þ9Ÿc¤8¨oÓaà“Ú•oQâNn:Q†)ª ðuòà¢’$;Á,G`ÊR=ÓTÊ±ÝL.vdã6–|ÝO£UEˆç`Ê\x‹¦¿c3“!<ÝÜÉ‹•Z–Ç]TzÄ¨èåþlÜ ;Ï*b‹	,9ŠÍ+Û!ß¨‡÷ûP€’~ÿä“‘9ë´,¨¢ú q	=èo_Î©vE[Þ,•jS+±³uÍû¢K^LãÞöÞæ,½(‘ö[ŽëÃAû²R±ÝãÆ\(Ÿÿe x‡*–­ üUçP/§ª¨z'=t­:¼Ñg¤¨÷ßô¶Ä!$÷æ‚áAõ¢ªäl.ðs{<n³÷¤ª^R)ý—l: ÞN„h·t}‚‰‹ÉfŒªOŒÞêƒ1§Gv‘ClB{(Ö–›tnê»pâ+„RyWÚ¬eN£ŒqæO°ÒQàó‚1*CÚžnøéõX‡b¿@‰½¼Ù£Wâv´ø^#5_ÁDÖÚà)¯N=LÝai)¯\p¹“nH•ƒ3âÆXXm^ùH1G}*×õü:Gx™GÊQ¬?–úL¦gÝG½á…*O!ep—!ëÚ½ƒN¼TÖ<PæWÐð]˜ë­VgË˜@ýÀÎ>Ã]ªp ¦‡½=wd8ÁÞ‡DÇ8HžÏñU<žSjÀ£Ç±H Ô9‹ªá”xýNPÿ•›'¬2	TýÁRÁõ8X‘º©¯Q½¢Í¸Ðmæ4™•ÑŽFë'Ga§ž@4ÿnØ%õéëšk6Éª1Î†Ú+åYzfš“<ØßÑ[ö:Ž5(¸%ñZtEFV6Ã‡iÍ¬x‰À•B@~j‡ãáæaÀR/——‘kÑZõQ¥Xï~Qù8ŒÿÝr¼œ	'È=ƒÍ‡ûÝ˜ÃQY‚›Ÿ„¸Gh“£3ž¸ð
²6í®wÖ€½U­Œ‰®ïùC^3!š,æ¦RÈSpÔIlíñðôðçÔNA»Ù‹éõ ;Êkp´¼e‰Œ¹œfrú–Ìø€}M
”bèýKK
°É"­òv¤]á!'‰²›æ['¿=ÿ#_µ™÷œ=›ƒÖ¿öŽÖ&¿³v,H˜=âƒKN§Aqê”%.`ý0Ä.v6z!¼/óµïy/>)’J«H©ïã¯ìÁ!vB—Ñ3ý³WÅÆsÒ‚F>¼ñ®PD1¡ú½Lc,m6·°×KDÅÊÉ»YI¨Ý°Øfsµ¨Î«|ñ(ònÓh@d‹3¤íÓ$óÀk’UñÄâmenÌ¥Ãæ™©:rÒjl'[†>h7J+šGV®ÝzØò®¦«4‡¹›¾NjÁ*jÐÖÜ9[“›ðŸ5a“nÊZ­†Ã(iæè».qNÏvªE½þS\tœî² U€¨¾‚<KÄ@¯jo²v¥û,v±Š7eÞ7ß¨ñÔ>Y`PTe_“"ðëÍÚ7iÛ4»yEâ$5rcÙ7ør„›T„—¿²ž˜†½]>us¼øâËÎ»ðnXƒ‰Ä9SW5h.	®IŽð‚`ô<z–^ÓXè|oì+Àd’Zþ8Sä×IIîVX¶¦.^.ÏE¢
Bíú®åœ YfUÌ?G&¯Î>X1BZ'ùqï…é—åîáQÂ
C»JQwhVñÕLü¼¾©Oo%ÿ[_ú´\×ºå‹¨ük´gÂL¾Ïö´ÝÅ«é\B ¿Í5µL¬£íåE‹ ]Õ	wa@¾Í(4±W	¿×B§ÑcÉùœÛ˜—F¯ÏÍ‰_\¦´ƒŸ»whòºBéxªÌ×}¯©ß+Mh+VT†.TÍ!‡À±b_m^Ê =ûÍ…£ÆŸùïALÙ
Ö‹ÊNeWS •—‡	ù›±}OMÞXÌ…rõL°¬Ž„;Â¼ª”r´ãåR´™˜ˆ¹ŽrÂ²,Ø{åÚÔÿ.`#p±@ &¶VšöVQa½2GÌÓµÍ±bžTóÖWç
)^Oº'Lä`fX^{ˆ,¡2ÿ}M%¯ÊVÜ»YÏcqÔÌfµÆhwäšNoDMÕ¨˜…n¥,€;ç@÷VJ²–oè µŽµ+°¾›˜ÞË×¡ö/ë’?yåÒêun6Èw¿ŒC¦ë,ü¡a}¹rb°ž"Ùê<ßÞÛÇë>aQk.¢á4eŽ3ÚAGë×D*Àè­h›¤Z¢E6n×F‹ˆ	—‡U?}ˆ mEi×Pº·Ñ²ÝÿŠ˜µJ°«<ÞÚ!éÝZêb}gTI”aÎªI’œ•'sûÎôdn{”NSÅîÙÒñc¼zƒâ"{O8ùN§ãBÎGÒ/ºÓLûê¨¨,ÑYÇ¢§ùÁj9{ïé=yÚþy‚ Ü5§Î~Š*J`‘”OW8AžÞ¡ÀráÈ`NöDÞmôh°ËÜkêÆ¶|Z‘ßs]‰4âàåÿ÷ó×4ÊÂù.\–`UÑl‰9ýÍ>_'¢R¥á­,Zì“rÐo#W‡ŽWN ‚©+	D}ÔÅŽUƒgú“Ôêƒ(ðºXÛ ¬‰ÔYEdLŠ¸]Uf:$Ì•Ðï­­ }u0M²ä»­Êä”¯>V™ÂÏÁ4 8Ã#>y·¡LÞ;dý©bŒLÖ1,Ô|ªÒ§
ˆòç%BOqQ—Ñ×>2Ïœ¤+‚a¼äéÍôÔÉV¸
Kœ‰ôh*é¾m­	cM»3‹ÁvÂc]²Ài¦R^+Wäú]ñàíàB-šš‘gb|bûÃÝå$AÀEºxRk‚Pç÷Ñ3×RŠiÖxà—ú‰¥Ö–„ ïMå ÷Uh°"£Þ1~°®y™	åØ­w¨/†q&[†‚´c¥É‡‘m²Û)¹I|¦µDìrêˆŸŒDt`A^Äã«ñ§ÄK¦ÍRïB³³âß¾¸1±;¶q¹	^ï“‡¼EM T’$Šv=Ì´ŽœtP–ÈÏqvfà'’u‰fåa4&Ð[¢"h\«Ú§:‹UBÒ)¼a,O·qu²ÓŸê'ëlñž žüÄªW    ^
ªw¾lá¬ä
Jïn~qSé§”ÓÖzÿû„?µÚï ñªŽÙy†æS¶éß    
YZ