grub2-i386-pc-2.06-150400.11.41.1<>,PeDp9|f?&R%gFI Ӧ6HM+h-jW,$;7^@#ǽwSg@'cL0i"x SyҴ<WY}?LXjq=d',Je::ڰIlK'B|)V$הp(='Wm0Y+lJUF'SFD {,ƚ#mAItV_+i(gē>@x?hd $ Zhlx|  L44  4  4 4 _4 `4e4k4qq4vv v w (w8w9{:>G4H4Ix4XY\4]4^nbͤcMdeflu4vӼ wX4x(4y"dCgrub2-i386-pc2.06150400.11.41.1Bootloader with support for Linux, Multiboot and moreThe GRand Unified Bootloader (GRUB) is a highly configurable and customizable bootloader with modular architecture. It supports rich variety of kernel formats, file systems, computer architectures and hardware devices. This subpackage provides support for pc systems.eDh04-ch1b$YSUSE Linux Enterprise 15SUSE LLC GPL-3.0-or-laterhttps://www.suse.com/System/Boothttp://www.gnu.org/software/grub/linuxnoarch loader_type=`sed -n \ "/^[^#]*LOADER_TYPE=/{s@.*=\(.*\)@\1@;s@^[\"']@@;s@[\"']\\$@@;p;q}" \ /etc/sysconfig/bootloader \ 2>/dev/null || :` for bl in grub2; do if test "x${bl}" == "x$loader_type"; then mkdir -p /run/update-bootloader/ touch /run/update-bootloader/reinit break fi done!)>dK j040,   |w0 l   $ t< <84lh T.D(hb#`?dl D4h x TD, @@)J d ( K;B#0`bpt' <0(%D@x L   #  DT|X8Dw58  47" @4 D | 4 $D" g ,lP ;?T `,t )\pdd  < @ ho(` pH40 .l \ H <`  $h#d; H L th | 4 h\\F /ld0  H<#H *L $  'd p\!TDQ n\@W=W'A@W!@WV@VՄ@VՄ@V@VT@VVvV$@VrVqR@VhVetVa@VV@VLh@V5V3[V2 @V#V @VV@UU@Uc@U@UUzUt2@Uq@Un@U]U[%UPUOH@U@U.RU/@UTTT[@T T@T@TT@T5TLTy@TeTR(@TR(@mchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.comglin@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commsuchanek@suse.combjorn.lie@gmail.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commsuchanek@suse.commchang@suse.commchang@suse.commchang@suse.comfvogt@suse.comrw@suse.commchang@suse.commchang@suse.compvorel@suse.czseife+obs@b1-systems.comfvogt@suse.compvorel@suse.czmchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.comnormand@linux.vnet.ibm.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.comlnussel@suse.defvogt@suse.comlnussel@suse.derw@suse.commchang@suse.commchang@suse.comolaf@aepfle.demchang@suse.combwiedemann@suse.comschwab@suse.demchang@suse.comrw@suse.commchang@suse.commchang@suse.commsuchanek@suse.demchang@suse.commchang@suse.comrw@suse.comrw@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.comguillaume.gardet@opensuse.orgjengelh@inai.demchang@suse.commchang@suse.comrw@suse.commchang@suse.commchang@suse.commchang@suse.comglin@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.comdimstar@opensuse.orgjosef.moellers@suse.commchang@suse.commchang@suse.comjbohac@suse.czjosef.moellers@suse.comjosef.moellers@suse.comjosef.moellers@suse.comjosef.moellers@suse.comkukuk@suse.deThomas.Blume@suse.comidonmez@suse.commchang@suse.commchang@suse.comjdelvare@suse.demchang@suse.commchang@suse.commsuchanek@suse.commchang@suse.commchang@suse.comiforster@suse.commchang@suse.commchang@suse.commchang@suse.comolaf@aepfle.demchang@suse.commchang@suse.commchang@suse.commchang@suse.comolaf@aepfle.dejmatejek@suse.commsuchanek@suse.commchang@suse.commlatimer@suse.commlatimer@suse.comagraf@suse.commchang@suse.commchang@suse.comrw@suse.combwiedemann@suse.comarvidjaar@gmail.commchang@suse.commchang@suse.comarvidjaar@gmail.comarvidjaar@gmail.comarvidjaar@gmail.commchang@suse.commchang@suse.comarvidjaar@gmail.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commsuchanek@suse.commchang@suse.comarvidjaar@gmail.commchang@suse.commchang@suse.comagraf@suse.comschwab@linux-m68k.orgmatwey.kornilov@gmail.commchang@suse.commchang@suse.comsor.alexei@meowr.rumchang@suse.commchang@suse.comdmueller@suse.commchang@suse.commatz@suse.comarvidjaar@gmail.commchang@suse.commchang@suse.commchang@suse.commchang@suse.comro@suse.demchang@suse.comarvidjaar@gmail.comjengelh@inai.deagraf@suse.comolaf@aepfle.deagraf@suse.commchang@suse.commchang@suse.comarvidjaar@gmail.comagraf@suse.comagraf@suse.commchang@suse.comdvaleev@suse.commchang@suse.comarvidjaar@gmail.comolaf@aepfle.dearvidjaar@gmail.comarvidjaar@gmail.comolaf@aepfle.deolaf@aepfle.demchang@suse.comarvidjaar@gmail.comarvidjaar@gmail.commchang@suse.commchang@suse.comeich@suse.commchang@suse.commchang@suse.comdmueller@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.commchang@suse.comarvidjaar@gmail.commchang@suse.comagraf@suse.commchang@suse.comarvidjaar@gmail.commchang@suse.comarvidjaar@gmail.comdmueller@suse.commchang@suse.commchang@suse.comschwab@suse.demchang@suse.comarvidjaar@gmail.commchang@suse.commchang@suse.commchang@suse.commpluskal@suse.comschwab@suse.deschwab@suse.deschwab@suse.deagraf@suse.comledest@gmail.comledest@gmail.comjdelvare@suse.demchang@suse.com- Fix failure to identify recent ext4 filesystem (bsc#1216010) * 0001-fs-ext2-Ignore-checksum-seed-incompat-feature.patch * 0001-fs-ext2-Ignore-the-large_dir-incompat-feature.patch - Add patch to fix reading files from btrfs with "implicit" holes * 0001-fs-btrfs-Zero-file-data-not-backed-by-extents.patch- Fix fadump not working with 1GB/2GB/4GB LMB[P10] (bsc#1216253) * 0001-kern-ieee1275-init-ppc64-Restrict-high-memory-in-pre.patch- Fix detection of encrypted disk's uuid in powerpc to cope with logical disks when signed image installation is specified (bsc#1216075) * 0003-grub-install-support-prep-environment-block.patch - grub2.spec: Add support to unlocking multiple encrypted disks in signed grub.elf image for logical disks- Fix CVE-2023-4692 (bsc#1215935) - Fix CVE-2023-4693 (bsc#1215936) * 0001-fs-ntfs-Fix-an-OOB-write-when-parsing-the-ATTRIBUTE_.patch * 0002-fs-ntfs-Fix-an-OOB-read-when-reading-data-from-the-r.patch * 0003-fs-ntfs-Fix-an-OOB-read-when-parsing-directory-entri.patch * 0004-fs-ntfs-Fix-an-OOB-read-when-parsing-bitmaps-for-ind.patch * 0005-fs-ntfs-Fix-an-OOB-read-when-parsing-a-volume-label.patch * 0006-fs-ntfs-Make-code-more-readable.patch - Bump upstream SBAT generation to 4- Fix a boot delay regression in PowerPC PXE boot (bsc#1201300) * 0001-ieee1275-ofdisk-retry-on-open-and-read-failure.patch- grub2-once: Fix 'sh: terminal_output: command not found' error (bsc#1204563)- Fix PowerVS deployment fails to boot with 90 cores (bsc#1208581) * 0001-ieee1275-implement-vec5-for-cas-negotiation.patch * 0002-kern-ieee1275-init-Convert-plain-numbers-to-constant.patch * 0003-kern-ieee1275-init-Extended-support-in-Vec5.patch- Fix unknown filesystem error on disks with 4096 sector size (bsc#1207064) (bsc#1209234) * 0001-grub-core-modify-sector-by-sysfs-as-disk-sector.patch - Fix installation over serial console ends up in infinite boot loop (bsc#1187810) (bsc#1209667) (bsc#1209372) * 0001-Fix-infinite-boot-loop-on-headless-system-in-qemu.patch- Fix aarch64 kiwi image's file not found due to '/@' prepended to path in btrfs filesystem. (bsc#1209165) * grub2-btrfs-05-grub2-mkconfig.patch- Make grub more robust against storage race condition causing system boot failures (bsc#1189036) * 0001-ieee1275-ofdisk-retry-on-open-and-read-failure.patch- Make grub.cfg invariant to efi and legacy platforms (bsc#1205200) - Removed patch linuxefi * grub2-secureboot-provide-linuxefi-config.patch * grub2-secureboot-use-linuxefi-on-uefi-in-os-prober.patch * grub2-secureboot-use-linuxefi-on-uefi.patch - Rediff * grub2-btrfs-05-grub2-mkconfig.patch * grub2-efi-xen-cmdline.patch * grub2-s390x-05-grub2-mkconfig.patch * grub2-suse-remove-linux-root-param.patch- Move unsupported zfs modules into 'extras' packages (bsc#1205554) (PED-2947)- Security fixes and hardenings * 0001-font-Reject-glyphs-exceeds-font-max_glyph_width-or-f.patch * 0002-font-Fix-size-overflow-in-grub_font_get_glyph_intern.patch - Fix CVE-2022-2601 (bsc#1205178) * 0003-font-Fix-several-integer-overflows-in-grub_font_cons.patch * 0004-font-Remove-grub_font_dup_glyph.patch * 0005-font-Fix-integer-overflow-in-ensure_comb_space.patch * 0006-font-Fix-integer-overflow-in-BMP-index.patch * 0007-font-Fix-integer-underflow-in-binary-search-of-char-.patch * 0008-fbutil-Fix-integer-overflow.patch - Fix CVE-2022-3775 (bsc#1205182) * 0009-font-Fix-an-integer-underflow-in-blit_comb.patch * 0010-font-Harden-grub_font_blit_glyph-and-grub_font_blit_.patch * 0011-font-Assign-null_font-to-glyphs-in-ascii_font_glyph.patch * 0012-normal-charset-Fix-an-integer-overflow-in-grub_unico.patch - Bump upstream SBAT generation to 3- Include loopback into signed grub2 image (jsc#PED-2150)- Add patches for automatic TPM disk unlock (jsc#SLE-24018) (bsc#1196668) (jsc#PED-1276) * 0001-luks2-Add-debug-message-to-align-with-luks-and-geli-.patch * 0002-cryptodisk-Refactor-to-discard-have_it-global.patch * 0003-cryptodisk-Return-failure-in-cryptomount-when-no-cry.patch * 0004-cryptodisk-Improve-error-messaging-in-cryptomount-in.patch * 0005-cryptodisk-Improve-cryptomount-u-error-message.patch * 0006-cryptodisk-Add-infrastructure-to-pass-data-from-cryp.patch * 0007-cryptodisk-Refactor-password-input-out-of-crypto-dev.patch * 0008-cryptodisk-Move-global-variables-into-grub_cryptomou.patch * 0009-cryptodisk-Improve-handling-of-partition-name-in-cry.patch * 0010-protectors-Add-key-protectors-framework.patch * 0011-tpm2-Add-TPM-Software-Stack-TSS.patch * 0012-protectors-Add-TPM2-Key-Protector.patch * 0013-cryptodisk-Support-key-protectors.patch * 0014-util-grub-protect-Add-new-tool.patch - Fix no disk unlocking happen (bsc#1196668) * 0001-crytodisk-fix-cryptodisk-module-looking-up.patch - Fix build error * fix-tpm2-build.patch- Fix installation failure due to unavailable nvram device on ppc64le (bsc#1201361) * 0001-grub-install-set-point-of-no-return-for-powerpc-ieee1275.patch- Security fixes and hardenings for boothole 3 / boothole 2022 (bsc#1198581) * 0001-video-Remove-trailing-whitespaces.patch * 0002-loader-efi-chainloader-Simplify-the-loader-state.patch * 0003-commands-boot-Add-API-to-pass-context-to-loader.patch - Fix CVE-2022-28736 (bsc#1198496) * 0004-loader-efi-chainloader-Use-grub_loader_set_ex.patch - Fix CVE-2022-28735 (bsc#1198495) * 0005-kern-efi-sb-Reject-non-kernel-files-in-the-shim_lock.patch * 0006-kern-file-Do-not-leak-device_name-on-error-in-grub_f.patch * 0007-video-readers-png-Abort-sooner-if-a-read-operation-f.patch * 0008-video-readers-png-Refuse-to-handle-multiple-image-he.patch - Fix CVE-2021-3695 (bsc#1191184) * 0009-video-readers-png-Drop-greyscale-support-to-fix-heap.patch - Fix CVE-2021-3696 (bsc#1191185) * 0010-video-readers-png-Avoid-heap-OOB-R-W-inserting-huff-.patch * 0011-video-readers-png-Sanity-check-some-huffman-codes.patch * 0012-video-readers-jpeg-Abort-sooner-if-a-read-operation-.patch * 0013-video-readers-jpeg-Do-not-reallocate-a-given-huff-ta.patch * 0014-video-readers-jpeg-Refuse-to-handle-multiple-start-o.patch - Fix CVE-2021-3697 (bsc#1191186) * 0015-video-readers-jpeg-Block-int-underflow-wild-pointer-.patch * 0016-normal-charset-Fix-array-out-of-bounds-formatting-un.patch - Fix CVE-2022-28733 (bsc#1198460) * 0017-net-ip-Do-IP-fragment-maths-safely.patch * 0018-net-netbuff-Block-overly-large-netbuff-allocs.patch * 0019-net-dns-Fix-double-free-addresses-on-corrupt-DNS-res.patch * 0020-net-dns-Don-t-read-past-the-end-of-the-string-we-re-.patch * 0021-net-tftp-Prevent-a-UAF-and-double-free-from-a-failed.patch * 0022-net-tftp-Avoid-a-trivial-UAF.patch * 0023-net-http-Do-not-tear-down-socket-if-it-s-already-bee.patch - Fix CVE-2022-28734 (bsc#1198493) * 0024-net-http-Fix-OOB-write-for-split-http-headers.patch - Fix CVE-2022-28734 (bsc#1198493) * 0025-net-http-Error-out-on-headers-with-LF-without-CR.patch * 0026-fs-f2fs-Do-not-read-past-the-end-of-nat-journal-entr.patch * 0027-fs-f2fs-Do-not-read-past-the-end-of-nat-bitmap.patch * 0028-fs-f2fs-Do-not-copy-file-names-that-are-too-long.patch * 0029-fs-btrfs-Fix-several-fuzz-issues-with-invalid-dir-it.patch * 0030-fs-btrfs-Fix-more-ASAN-and-SEGV-issues-found-with-fu.patch * 0031-fs-btrfs-Fix-more-fuzz-issues-related-to-chunks.patch * 0032-Use-grub_loader_set_ex-for-secureboot-chainloader.patch - Update SBAT security contact (boo#1193282) - Bump grub's SBAT generation to 2- Use boot disks in OpenFirmware, fixing regression caused by 0001-ieee1275-implement-FCP-methods-for-WWPN-and-LUNs.patch, when the root LV is completely in the boot LUN (bsc#1197948) * 0001-ofdisk-improve-boot-time-by-lookup-boot-disk-first.patch- Fix Power10 LPAR error "The partition fails to activate as partition went into invalid state" (bsc#1198714) * 0001-powerpc-do-CAS-in-a-more-compatible-way.patch- Fix grub-install error when efi system partition is created as mdadm software raid1 device (bsc#1179981) (bsc#1195204) * 0001-install-fix-software-raid1-on-esp.patch- Fix riscv64 build error * 0001-RISC-V-Adjust-march-flags-for-binutils-2.38.patch- Fix error in grub-install when linux root device is on lvm thin volume (bsc#1192622) (bsc#1191974) * 0001-grub-install-bailout-root-device-probing.patch- Support saving grub environment for POWER signed grub images (jsc#SLE-23854) * 0001-Add-grub_envblk_buf-helper-function.patch * 0002-Add-grub_disk_write_tail-helper-function.patch * 0003-grub-install-support-prep-environment-block.patch * 0004-Introduce-prep_load_env-command.patch * 0005-export-environment-at-start-up.patch - Use enviroment variable in early boot config to looking up root device * grub2.spec- Remove obsolete openSUSE 12.2 conditionals in spec file - Clean up powerpc certificate handling.- Set grub2-check-default shebang to "#!/bin/bash", as the the code uses many instructions which are undefined for a POSIX sh. (boo#1195794).- Power guest secure boot with static keys: GRUB2 signing portion (jsc#SLE-18271) (bsc#1192764) * 0001-grub-install-Add-SUSE-signed-image-support-for-power.patch- Fix wrong default entry when booting snapshot (bsc#1159205) * grub2-btrfs-08-workaround-snapshot-menu-default-entry.patch- Power guest secure boot with static keys: GRUB2 signing portion (jsc#SLE-18271) (bsc#1192764) * grub2.spec - Power guest secure boot with static keys: GRUB2 portion (jsc#SLE-18144) (bsc#1192686) * 0001-ieee1275-Drop-HEAP_MAX_ADDR-and-HEAP_MIN_SIZE-consta.patch * 0002-ieee1275-claim-more-memory.patch * 0003-ieee1275-request-memory-with-ibm-client-architecture.patch * 0004-Add-suport-for-signing-grub-with-an-appended-signatu.patch * 0005-docs-grub-Document-signing-grub-under-UEFI.patch * 0006-docs-grub-Document-signing-grub-with-an-appended-sig.patch * 0007-dl-provide-a-fake-grub_dl_set_persistent-for-the-emu.patch * 0008-pgp-factor-out-rsa_pad.patch * 0009-crypto-move-storage-for-grub_crypto_pk_-to-crypto.c.patch * 0010-posix_wrap-tweaks-in-preparation-for-libtasn1.patch * 0011-libtasn1-import-libtasn1-4.18.0.patch * 0012-libtasn1-disable-code-not-needed-in-grub.patch * 0013-libtasn1-changes-for-grub-compatibility.patch * 0014-libtasn1-compile-into-asn1-module.patch * 0015-test_asn1-test-module-for-libtasn1.patch * 0016-grub-install-support-embedding-x509-certificates.patch * 0017-appended-signatures-import-GNUTLS-s-ASN.1-descriptio.patch * 0018-appended-signatures-parse-PKCS-7-signedData-and-X.50.patch * 0019-appended-signatures-support-verifying-appended-signa.patch * 0020-appended-signatures-verification-tests.patch * 0021-appended-signatures-documentation.patch * 0022-ieee1275-enter-lockdown-based-on-ibm-secure-boot.patch * 0023-x509-allow-Digitial-Signature-plus-other-Key-Usages.patch- Fix no menuentry is found if hibernation on btrfs RAID1 (bsc#1193090) * grub2-systemd-sleep-plugin- Fix CVE-2021-3981 (bsc#1189644) * 0001-grub-mkconfig-restore-umask-for-grub.cfg.patch- Fix can't allocate initrd error (bsc#1191378) * 0001-Factor-out-grub_efi_linux_boot.patch * 0002-Fix-race-in-EFI-validation.patch * 0003-Handle-multi-arch-64-on-32-boot-in-linuxefi-loader.patch * 0004-Try-to-pick-better-locations-for-kernel-and-initrd.patch * 0005-x86-efi-Use-bounce-buffers-for-reading-to-addresses-.patch * 0006-x86-efi-Re-arrange-grub_cmd_linux-a-little-bit.patch * 0007-x86-efi-Make-our-own-allocator-for-kernel-stuff.patch * 0008-x86-efi-Allow-initrd-params-cmdline-allocations-abov.patch * 0009-x86-efi-Reduce-maximum-bounce-buffer-size-to-16-MiB.patch * 0010-efilinux-Fix-integer-overflows-in-grub_cmd_initrd.patch * 0011-Also-define-GRUB_EFI_MAX_ALLOCATION_ADDRESS-for-RISC.patch- Add support for simplefb (boo#1193532). + grub2-simplefb.patch- Fix extent not found when initramfs contains shared extents (bsc#1190982) * 0001-fs-btrfs-Make-extent-item-iteration-to-handle-gaps.patch- Fix arm64 kernel image not aligned on 64k boundary (bsc#1192522) * 0001-arm64-Fix-EFI-loader-kernel-image-allocation.patch * 0002-Arm-check-for-the-PE-magic-for-the-compiled-arch.patch- Remove openSUSE Tumbleweed specific handling for default grub distributor (bsc#1191198) - Use /usr/lib/os-release as fallback (bsc#1191196) * grub2-default-distributor.patch * grub2-check-default.sh - VUL-0: grub2: grub2-once uses fixed file name in /var/tmp (bsc#1190474) (CVE-2021-46705) * grub2-once * grub2-once.service - Fix unknown TPM error on buggy uefi firmware (bsc#1191504) * 0001-tpm-Pass-unknown-error-as-non-fatal-but-debug-print-.patch - Fix error /boot/grub2/locale/POSIX.gmo not found (bsc#1189769) * 0001-Filter-out-POSIX-locale-for-translation.patch - Fix error lvmid disk cannot be found after second disk added to the root volume group (bsc#1189874) (bsc#1071559) * 0001-ieee1275-implement-FCP-methods-for-WWPN-and-LUNs.patch - Fix error in grub installation due to unnecessary requirement to support excessive device for the root logical volume (bsc#1184135) * 0001-disk-diskfilter-Use-nodes-in-logical-volume-s-segmen.patch - Fix regression in reading xfs v4 * 0001-fs-xfs-Fix-unreadable-filesystem-with-v4-superblock.patch- Fix installation on usrmerged s390x- Improve support for SLE Micro 5.1 on s390x. (bsc#1190395) * amend grub2-s390x-04-grub2-install.patch * refresh grub2-s390x-11-secureboot.patch- Follow usr merge for looking up kernel config (bsc#1189782) (bsc#1190061) * 0001-templates-Follow-the-path-of-usr-merged-kernel-confi.patch- Add btrfs zstd compression on i386-pc and also make sure it won't break existing grub installations (bsc#1161823) * deleted 0001-btrfs-disable-zstd-support-for-i386-pc.patch * added 0001-i386-pc-build-btrfs-zstd-support-into-separate-modul.patch- Delete the author list from %description (the %description section is literally for package descriptions (only) these days, encoding was also problematic). - Add %doc AUTHORS to get packaged that info- update grub2-systemd-sleep.sh to fix hibernation by avoiding the error "no kernelfile matching the running kernel found" on usrmerged setup- Use %autosetup- Replace grub2-use-stat-instead-of-udevadm-for-partition-lookup.patch and fix-grub2-use-stat-instead-of-udevadm-for-partition-lookup-with-new-glibc.patch with upstream backport: 0001-osdep-Introduce-include-grub-osdep-major.h-and-use-i.patch and 0002-osdep-linux-hostdisk-Use-stat-instead-of-udevadm-for.patch.- Fix error not a btrfs filesystem on s390x (bsc#1187645) * 80_suse_btrfs_snapshot- Fix error gfxterm isn't found with multiple terminals (bsc#1187565) * grub2-fix-error-terminal-gfxterm-isn-t-found.patch- Fix boot failure after kdump due to the content of grub.cfg is not completed with pending modificaton in xfs journal (bsc#1186975) * grub-install-force-journal-draining-to-ensure-data-i.patch - Patch refreshed * grub2-mkconfig-default-entry-correction.patch- Version bump to 2.06 * rediff - 0001-add-support-for-UEFI-network-protocols.patch - 0002-net-read-bracketed-ipv6-addrs-and-port-numbers.patch - 0003-Make-grub_error-more-verbose.patch - 0003-bootp-New-net_bootp6-command.patch - 0005-grub.texi-Add-net_bootp6-doument.patch - 0006-bootp-Add-processing-DHCPACK-packet-from-HTTP-Boot.patch - 0006-efi-Set-image-base-address-before-jumping-to-the-PE-.patch - 0008-efinet-Setting-DNS-server-from-UEFI-protocol.patch - 0046-squash-verifiers-Move-verifiers-API-to-kernel-image.patch - grub-install-force-journal-draining-to-ensure-data-i.patch - grub2-btrfs-01-add-ability-to-boot-from-subvolumes.patch - grub2-diskfilter-support-pv-without-metadatacopies.patch - grub2-efi-HP-workaround.patch - grub2-efi-xen-cfg-unquote.patch - grub2-efi-xen-chainload.patch - grub2-fix-menu-in-xen-host-server.patch - grub2-gfxmenu-support-scrolling-menu-entry-s-text.patch - grub2-install-remove-useless-check-PReP-partition-is-empty.patch - grub2-lvm-allocate-metadata-buffer-from-raw-contents.patch - grub2-mkconfig-default-entry-correction.patch - grub2-pass-corret-root-for-nfsroot.patch - grub2-s390x-03-output-7-bit-ascii.patch - grub2-s390x-04-grub2-install.patch - grub2-secureboot-install-signed-grub.patch - grub2-setup-try-fs-embed-if-mbr-gap-too-small.patch - use-grub2-as-a-package-name.patch * update by patch squashed: - 0001-Add-support-for-Linux-EFI-stub-loading-on-aarch64.patch - grub2-efi-chainload-harder.patch - grub2-secureboot-no-insmod-on-sb.patch - grub2-secureboot-chainloader.patch - grub2-secureboot-add-linuxefi.patch * remove squashed patches: - 0008-squash-Add-support-for-Linux-EFI-stub-loading-on-aar.patch - 0009-squash-Add-support-for-linuxefi.patch - 0041-squash-Add-secureboot-support-on-efi-chainloader.patch - 0042-squash-grub2-efi-chainload-harder.patch - 0043-squash-Don-t-allow-insmod-when-secure-boot-is-enable.patch - 0045-squash-Add-support-for-Linux-EFI-stub-loading-on-aar.patch * drop upstream patches: - 0001-Warn-if-MBR-gap-is-small-and-user-uses-advanced-modu.patch - 0001-include-grub-i386-linux.h-Include-missing-grub-types.patch - 0001-kern-efi-sb-Add-chainloaded-image-as-shim-s-verifiab.patch - 0001-mdraid1x_linux-Fix-gcc10-error-Werror-array-bounds.patch - 0001-normal-Move-common-datetime-functions-out-of-the-nor.patch - 0001-yylex-Make-lexer-fatal-errors-actually-be-fatal.patch - 0002-efi-Make-shim_lock-GUID-and-protocol-type-public.patch - 0002-grub-install-Avoid-incompleted-install-on-i386-pc.patch - 0002-kern-Add-X-option-to-printf-functions.patch - 0002-safemath-Add-some-arithmetic-primitives-that-check-f.patch - 0002-zfs-Fix-gcc10-error-Werror-zero-length-bounds.patch - 0003-calloc-Make-sure-we-always-have-an-overflow-checking.patch - 0003-efi-Return-grub_efi_status_t-from-grub_efi_get_varia.patch - 0003-normal-main-Search-for-specific-config-files-for-net.patch - 0004-calloc-Use-calloc-at-most-places.patch - 0004-datetime-Enable-the-datetime-module-for-the-emu-plat.patch - 0004-efi-Add-a-function-to-read-EFI-variables-with-attrib.patch - 0005-Make-linux_arm_kernel_header.hdr_offset-be-at-the-ri.patch - 0005-efi-Add-secure-boot-detection.patch - 0005-malloc-Use-overflow-checking-primitives-where-we-do-.patch - 0006-efi-Only-register-shim_lock-verifier-if-shim_lock-pr.patch - 0006-iso9660-Don-t-leak-memory-on-realloc-failures.patch - 0007-font-Do-not-load-more-than-one-NAME-section.patch - 0007-verifiers-Move-verifiers-API-to-kernel-image.patch - 0008-efi-Move-the-shim_lock-verifier-to-the-GRUB-core.patch - 0008-script-Remove-unused-fields-from-grub_script_functio.patch - 0009-kern-Add-lockdown-support.patch - 0009-script-Avoid-a-use-after-free-when-redefining-a-func.patch - 0010-kern-lockdown-Set-a-variable-if-the-GRUB-is-locked-d.patch - 0010-linux-Fix-integer-overflows-in-initrd-size-handling.patch - 0011-efi-Lockdown-the-GRUB-when-the-UEFI-Secure-Boot-is-e.patch - 0012-efi-Use-grub_is_lockdown-instead-of-hardcoding-a-dis.patch - 0013-acpi-Don-t-register-the-acpi-command-when-locked-dow.patch - 0014-mmap-Don-t-register-cutmem-and-badram-commands-when-.patch - 0015-commands-Restrict-commands-that-can-load-BIOS-or-DT-.patch - 0016-commands-setpci-Restrict-setpci-command-when-locked-.patch - 0017-commands-hdparm-Restrict-hdparm-command-when-locked-.patch - 0018-gdb-Restrict-GDB-access-when-locked-down.patch - 0019-loader-xnu-Don-t-allow-loading-extension-and-package.patch - 0020-dl-Only-allow-unloading-modules-that-are-not-depende.patch - 0021-usb-Avoid-possible-out-of-bound-accesses-caused-by-m.patch - 0022-lib-arg-Block-repeated-short-options-that-require-an.patch - 0023-commands-menuentry-Fix-quoting-in-setparams_prefix.patch - 0024-kern-parser-Fix-resource-leak-if-argc-0.patch - 0025-kern-parser-Fix-a-memory-leak.patch - 0026-kern-parser-Introduce-process_char-helper.patch - 0027-kern-parser-Introduce-terminate_arg-helper.patch - 0028-kern-parser-Refactor-grub_parser_split_cmdline-clean.patch - 0029-kern-buffer-Add-variable-sized-heap-buffer.patch - 0030-kern-parser-Fix-a-stack-buffer-overflow.patch - 0031-util-mkimage-Remove-unused-code-to-add-BSS-section.patch - 0032-util-mkimage-Use-grub_host_to_target32-instead-of-gr.patch - 0033-util-mkimage-Always-use-grub_host_to_target32-to-ini.patch - 0034-util-mkimage-Unify-more-of-the-PE32-and-PE32-header-.patch - 0035-util-mkimage-Reorder-PE-optional-header-fields-set-u.patch - 0036-util-mkimage-Improve-data_size-value-calculation.patch - 0037-util-mkimage-Refactor-section-setup-to-use-a-helper.patch - 0038-util-mkimage-Add-an-option-to-import-SBAT-metadata-i.patch - 0039-grub-install-common-Add-sbat-option.patch - 0040-shim_lock-Only-skip-loading-shim_lock-verifier-with-.patch - grub-install-define-default-platform-for-risc-v.patch - grub2-editenv-add-warning-message.patch - grub2-efi-gop-add-blt.patch - grub2-efi-uga-64bit-fb.patch - grub2-verifiers-fix-system-freeze-if-verify-failed.patch - risc-v-add-clzdi2-symbol.patch - risc-v-fix-computation-of-pc-relative-relocation-offset.patch - Add grub2-instdev-fixup.pl for correcting /etc/default/grub_installdevice to use disk devie if grub has been installed to it - Add 0001-30_uefi-firmware-fix-printf-format-with-null-byte.patch to fix detection of efi fwsetup support- Fix running grub2-once leads to failure of starting systemd service in the boot sequence (bsc#1169460) * grub2-once * grub2-once.service- Fix crash in launching gfxmenu without theme file (bsc#1186481) * grub2-gfxmenu-support-scrolling-menu-entry-s-text.patch- Fix plaintext password in grub config didn't work to unlock menu entry if enabling secure boot in UEFI (bsc#1181892)- Fix obsolete syslog in systemd unit file and updating to use journal as StandardOutput (bsc#1185149) * grub2-once.service- Fix build error on armv6/armv7 (bsc#1184712) * 0001-emu-fix-executable-stack-marking.patch- Fix error grub_file_filters not found in Azure virtual machine (bsc#1182012) * 0001-Workaround-volatile-efi-boot-variable.patch- Fix powerpc-ieee1275 lpar takes long time to boot with increasing number of nvme namespace (bsc#1177751) 0001-ieee1275-Avoiding-many-unecessary-open-close.patch- Fix chainloading windows on dual boot machine (bsc#1183073) * 0001-kern-efi-sb-Add-chainloaded-image-as-shim-s-verifiab.patch- VUL-0: grub2,shim: implement new SBAT method (bsc#1182057) * 0031-util-mkimage-Remove-unused-code-to-add-BSS-section.patch * 0032-util-mkimage-Use-grub_host_to_target32-instead-of-gr.patch * 0033-util-mkimage-Always-use-grub_host_to_target32-to-ini.patch * 0034-util-mkimage-Unify-more-of-the-PE32-and-PE32-header-.patch * 0035-util-mkimage-Reorder-PE-optional-header-fields-set-u.patch * 0036-util-mkimage-Improve-data_size-value-calculation.patch * 0037-util-mkimage-Refactor-section-setup-to-use-a-helper.patch * 0038-util-mkimage-Add-an-option-to-import-SBAT-metadata-i.patch * 0039-grub-install-common-Add-sbat-option.patch - Fix CVE-2021-20225 (bsc#1182262) * 0022-lib-arg-Block-repeated-short-options-that-require-an.patch - Fix CVE-2020-27749 (bsc#1179264) * 0024-kern-parser-Fix-resource-leak-if-argc-0.patch * 0025-kern-parser-Fix-a-memory-leak.patch * 0026-kern-parser-Introduce-process_char-helper.patch * 0027-kern-parser-Introduce-terminate_arg-helper.patch * 0028-kern-parser-Refactor-grub_parser_split_cmdline-clean.patch * 0029-kern-buffer-Add-variable-sized-heap-buffer.patch * 0030-kern-parser-Fix-a-stack-buffer-overflow.patch - Fix CVE-2021-20233 (bsc#1182263) * 0023-commands-menuentry-Fix-quoting-in-setparams_prefix.patch - Fix CVE-2020-25647 (bsc#1177883) * 0021-usb-Avoid-possible-out-of-bound-accesses-caused-by-m.patch - Fix CVE-2020-25632 (bsc#1176711) * 0020-dl-Only-allow-unloading-modules-that-are-not-depende.patch - Fix CVE-2020-27779, CVE-2020-14372 (bsc#1179265) (bsc#1175970) * 0001-include-grub-i386-linux.h-Include-missing-grub-types.patch * 0002-efi-Make-shim_lock-GUID-and-protocol-type-public.patch * 0003-efi-Return-grub_efi_status_t-from-grub_efi_get_varia.patch * 0004-efi-Add-a-function-to-read-EFI-variables-with-attrib.patch * 0005-efi-Add-secure-boot-detection.patch * 0006-efi-Only-register-shim_lock-verifier-if-shim_lock-pr.patch * 0007-verifiers-Move-verifiers-API-to-kernel-image.patch * 0008-efi-Move-the-shim_lock-verifier-to-the-GRUB-core.patch * 0009-kern-Add-lockdown-support.patch * 0010-kern-lockdown-Set-a-variable-if-the-GRUB-is-locked-d.patch * 0011-efi-Lockdown-the-GRUB-when-the-UEFI-Secure-Boot-is-e.patch * 0012-efi-Use-grub_is_lockdown-instead-of-hardcoding-a-dis.patch * 0013-acpi-Don-t-register-the-acpi-command-when-locked-dow.patch * 0014-mmap-Don-t-register-cutmem-and-badram-commands-when-.patch * 0015-commands-Restrict-commands-that-can-load-BIOS-or-DT-.patch * 0016-commands-setpci-Restrict-setpci-command-when-locked-.patch * 0017-commands-hdparm-Restrict-hdparm-command-when-locked-.patch * 0018-gdb-Restrict-GDB-access-when-locked-down.patch * 0019-loader-xnu-Don-t-allow-loading-extension-and-package.patch * 0040-shim_lock-Only-skip-loading-shim_lock-verifier-with-.patch * 0041-squash-Add-secureboot-support-on-efi-chainloader.patch * 0042-squash-grub2-efi-chainload-harder.patch * 0043-squash-Don-t-allow-insmod-when-secure-boot-is-enable.patch * 0044-squash-kern-Add-lockdown-support.patch * 0045-squash-Add-support-for-Linux-EFI-stub-loading-on-aar.patch * 0046-squash-verifiers-Move-verifiers-API-to-kernel-image.patch - Drop patch supersceded by the new backport * 0001-linuxefi-fail-kernel-validation-without-shim-protoco.patch * 0001-shim_lock-Disable-GRUB_VERIFY_FLAGS_DEFER_AUTH-if-se.patch * 0007-linuxefi-fail-kernel-validation-without-shim-protoco.patch - Add SBAT metadata section to grub.efi - Drop shim_lock module as it is part of core of grub.efi * grub2.spec- Fix build error in binutils 2.36 (bsc#1181741) * 0001-Fix-build-error-in-binutils-2.36.patch - Fix executable stack in grub-emu (bsc#1181696) * 0001-emu-fix-executable-stack-marking.patch- Restore compatibilty sym-links * grub2.spec - Use rpmlintrc to filter out rpmlint 2.0 error (bsc#1179044) * grub2.rpmlintrc- Complete Secure Boot support on aarch64 (jsc#SLE-15020) * 0001-Add-support-for-Linux-EFI-stub-loading-on-aarch64.patch * 0002-arm64-make-sure-fdt-has-address-cells-and-size-cells.patch * 0003-Make-grub_error-more-verbose.patch * 0004-arm-arm64-loader-Better-memory-allocation-and-error-.patch * 0005-Make-linux_arm_kernel_header.hdr_offset-be-at-the-ri.patch * 0006-efi-Set-image-base-address-before-jumping-to-the-PE-.patch * 0007-linuxefi-fail-kernel-validation-without-shim-protoco.patch * 0008-squash-Add-support-for-Linux-EFI-stub-loading-on-aar.patch * 0009-squash-Add-support-for-linuxefi.patch- Fix rpmlint 2.0 error for having arch specific path in noarch package aiming for compatibility with old package (bsc#1179044) * grub2.spec - Fix non POSIX sed argument which failed in sed from busybox (bsc#1181091) * grub2-check-default.sh- Fix boot failure in blocklist installation (bsc#1178278) * Modified 0002-grub-install-Avoid-incompleted-install-on-i386-pc.patch- Fix grub2-install error with "failed to get canonical path of `/boot/grub2/i386-pc'." (bsc#1177957) * Modified 0002-grub-install-Avoid-incompleted-install-on-i386-pc.patch- Fix https boot interrupted by unrecognised network address error message (bsc#1172952) * 0001-add-support-for-UEFI-network-protocols.patch- grub2.spec: Fix bare words used as string in expression which is no longer allowed in rpm 4.16- Improve the error handling when grub2-install fails with short mbr gap (bsc#1176062) * 0001-Warn-if-MBR-gap-is-small-and-user-uses-advanced-modu.patch * 0002-grub-install-Avoid-incompleted-install-on-i386-pc.patch- Make efi hand off the default entry point of the linux command (bsc#1176134) * 0001-efi-linux-provide-linux-command.patch- Fix verification requested but nobody cares error when loading external module in secure boot off (bsc#1175766) * 0001-shim_lock-Disable-GRUB_VERIFY_FLAGS_DEFER_AUTH-if-se.patch- Make consistent check to enable relative path on btrfs (bsc#1174567) * 0001-Unify-the-check-to-enable-btrfs-relative-path.patch- Add fibre channel device's ofpath support to grub-ofpathname and search hint to speed up root device discovery (bsc#1172745) * 0001-ieee1275-powerpc-implements-fibre-channel-discovery-.patch * 0002-ieee1275-powerpc-enables-device-mapper-discovery.patch- Fix for CVE-2020-15705 (bsc#1174421) * 0001-linuxefi-fail-kernel-validation-without-shim-protoco.patch * 0002-cmdline-Provide-cmdline-functions-as-module.patch- Make grub-calloc inline to avoid symbol not found error as the system may not use updated grub to boot the system (bsc#1174782) (bsc#1175060) (bsc#1175036) * 0001-kern-mm.c-Make-grub_calloc-inline.patch- Fix for CVE-2020-10713 (bsc#1168994) * 0001-yylex-Make-lexer-fatal-errors-actually-be-fatal.patch - Fix for CVE-2020-14308 CVE-2020-14309, CVE-2020-14310, CVE-2020-14311 (bsc#1173812) * 0002-safemath-Add-some-arithmetic-primitives-that-check-f.patch * 0003-calloc-Make-sure-we-always-have-an-overflow-checking.patch * 0004-calloc-Use-calloc-at-most-places.patch * 0005-malloc-Use-overflow-checking-primitives-where-we-do-.patch * 0006-iso9660-Don-t-leak-memory-on-realloc-failures.patch * 0007-font-Do-not-load-more-than-one-NAME-section.patch - Fix CVE-2020-15706 (bsc#1174463) * 0008-script-Remove-unused-fields-from-grub_script_functio.patch * 0009-script-Avoid-a-use-after-free-when-redefining-a-func.patch - Fix CVE-2020-15707 (bsc#1174570) * 0010-linux-Fix-integer-overflows-in-initrd-size-handling.patch - Use overflow checking primitives where the arithmetic expression for buffer allocations may include unvalidated data - Use grub_calloc for overflow check and return NULL when it would occur * 0001-add-support-for-UEFI-network-protocols.patch * 0003-bootp-New-net_bootp6-command.patch * grub2-btrfs-01-add-ability-to-boot-from-subvolumes.patch * grub2-btrfs-09-get-default-subvolume.patch * grub2-gfxmenu-support-scrolling-menu-entry-s-text.patch * grub2-grubenv-in-btrfs-header.patch- No 95_textmode for PowerPC (boo#1174166)- Skip zfcpdump kernel from the grub boot menu (bsc#1166513) * grub2-s390x-skip-zfcpdump-image.patch- Fix boot failure as journaled data not get drained due to abrupt power off after grub-install (bsc#1167756) * grub-install-force-journal-draining-to-ensure-data-i.patch- Fix executable stack in grub-probe and other grub utility (bsc#1169137) * grub2-btrfs-06-subvol-mount.patch- Fix GCC 10 build fail (bsc#1158189) * 0001-mdraid1x_linux-Fix-gcc10-error-Werror-array-bounds.patch * 0002-zfs-Fix-gcc10-error-Werror-zero-length-bounds.patch- Backport to support searching for specific config files for netboot (bsc#1166409) * 0001-normal-Move-common-datetime-functions-out-of-the-nor.patch * 0002-kern-Add-X-option-to-printf-functions.patch * 0003-normal-main-Search-for-specific-config-files-for-net.patch * 0004-datetime-Enable-the-datetime-module-for-the-emu-plat.patch- move *.module files to separate -debug subpackage (boo#1166578)- Fix EFI console detection to make it a runtime decision (bsc#1164385) * grub2-SUSE-Add-the-t-hotkey.patch- Downgrade mtools to Suggests for consistency with xorriso (boo#1165839) - remove info requirements, file triggers are used now (boo#1152105)- Add secure boot support for s390x. (jsc#SLE-9425) * grub2-s390x-11-secureboot.patch- Fix grub hangs after loading rogue image without valid signature for uefi secure boot (bsc#1159102) * grub2-verifiers-fix-system-freeze-if-verify-failed.patch- From Stefan Seyfried : Fix grub2-install fails with "not a directory" error (boo#1161641, bsc#1162403) * grub2-install-fix-not-a-directory-error.patch- Correct awk pattern in 20_linux_xen (bsc#900418, bsc#1157912) - Correct linux and initrd handling in 20_linux_xen (bsc#1157912) M grub2-efi-xen-cfg-unquote.patch M grub2-efi-xen-chainload.patch M grub2-efi-xen-cmdline.patch M grub2-efi-xen-removable.patch- Disable btrfs zstd support for i386-pc to workaround core.img too large to be embedded in btrfs bootloader area or MBR gap (boo#1154809) * 0001-btrfs-disable-zstd-support-for-i386-pc.patch- Fix grub2.sleep to load old kernel after hibernation (boo#1154783)- Enable support for riscv64 - Backports from upstream: * risc-v-fix-computation-of-pc-relative-relocation-offset.patch * risc-v-add-clzdi2-symbol.patch * grub-install-define-default-platform-for-risc-v.patch- Version bump to 2.04 * removed - translations-20170427.tar.xz * grub2.spec - Make signed grub-tpm.efi specific to x86_64-efi build, the platform currently shipped with tpm module from upstream codebase - Add shim_lock to signed grub.efi in x86_64-efi build - x86_64: linuxefi now depends on linux, both will verify kernel via shim_lock - Remove translation tarball and po file hacks as it's been included in upstream tarball * rediff - grub2-setup-try-fs-embed-if-mbr-gap-too-small.patch - grub2-commands-introduce-read_file-subcommand.patch - grub2-secureboot-add-linuxefi.patch - 0001-add-support-for-UEFI-network-protocols.patch - grub2-efi-HP-workaround.patch - grub2-secureboot-install-signed-grub.patch - grub2-linux.patch - use-grub2-as-a-package-name.patch - grub2-pass-corret-root-for-nfsroot.patch - grub2-secureboot-use-linuxefi-on-uefi.patch - grub2-secureboot-no-insmod-on-sb.patch - grub2-secureboot-provide-linuxefi-config.patch - grub2-secureboot-chainloader.patch - grub2-s390x-01-Changes-made-and-files-added-in-order-to-allow-s390x.patch - grub2-s390x-02-kexec-module-added-to-emu.patch - grub2-s390x-04-grub2-install.patch - grub2-btrfs-01-add-ability-to-boot-from-subvolumes.patch - grub2-efi-chainloader-root.patch - grub2-ppc64le-disable-video.patch - grub2-ppc64-cas-reboot-support.patch - grub2-Fix-incorrect-netmask-on-ppc64.patch - 0003-bootp-New-net_bootp6-command.patch - 0006-bootp-Add-processing-DHCPACK-packet-from-HTTP-Boot.patch - 0012-tpm-Build-tpm-as-module.patch - grub2-emu-4-all.patch - grub2-btrfs-09-get-default-subvolume.patch - grub2-ppc64le-memory-map.patch - grub2-ppc64-cas-fix-double-free.patch - 0008-efinet-Setting-DNS-server-from-UEFI-protocol.patch * drop upstream patches - grub2-fix-locale-en.mo.gz-not-found-error-message.patch - grub2-fix-build-with-flex-2.6.4.patch - grub2-accept-empty-module.patch - 0001-Fix-packed-not-aligned-error-on-GCC-8.patch - 0001-Fix-PCIe-LER-when-GRUB2-accesses-non-enabled-MMIO-da.patch - unix-exec-avoid-atexit-handlers-when-child-exits.patch - 0001-xfs-Accept-filesystem-with-sparse-inodes.patch - grub2-binutils2.31.patch - grub2-msdos-fix-overflow.patch - 0001-tsc-Change-default-tsc-calibration-method-to-pmtimer.patch - grub2-efi-Move-grub_reboot-into-kernel.patch - grub2-efi-Free-malloc-regions-on-exit.patch - grub2-move-initrd-upper.patch - 0002-Add-Virtual-LAN-support.patch - 0001-ofnet-Initialize-structs-in-bootpath-parser.patch - 0001-misc-fix-invalid-character-recongition-in-strto-l.patch - 0001-tpm-Core-TPM-support.patch - 0002-tpm-Measure-kernel-initrd.patch - 0003-tpm-Add-BIOS-boot-measurement.patch - 0004-tpm-Rework-linux-command.patch - 0005-tpm-Rework-linux16-command.patch - 0006-tpm-Measure-kernel-and-initrd-on-BIOS-systems.patch - 0007-tpm-Measure-the-kernel-commandline.patch - 0008-tpm-Measure-commands.patch - 0009-tpm-Measure-multiboot-images-and-modules.patch - 0010-tpm-Fix-boot-when-there-s-no-TPM.patch - 0011-tpm-Fix-build-error.patch - 0013-tpm-i386-pc-diskboot-img.patch - grub2-freetype-pkgconfig.patch - 0001-cpio-Disable-gcc9-Waddress-of-packed-member.patch - 0002-jfs-Disable-gcc9-Waddress-of-packed-member.patch - 0003-hfs-Fix-gcc9-error-Waddress-of-packed-member.patch - 0004-hfsplus-Fix-gcc9-error-with-Waddress-of-packed-membe.patch - 0005-acpi-Fix-gcc9-error-Waddress-of-packed-member.patch - 0006-usbtest-Disable-gcc9-Waddress-of-packed-member.patch - 0007-chainloader-Fix-gcc9-error-Waddress-of-packed-member.patch - 0008-efi-Fix-gcc9-error-Waddress-of-packed-member.patch- Consistently find btrfs snapshots on s390x. (bsc#1136970) * grub2-s390x-04-grub2-install.patch- Fix fallback embed doesn't work when no post mbr gap at all (boo#1142229) * Refresh grub2-setup-try-fs-embed-if-mbr-gap-too-small.patch- Revert grub2-ieee1275-FCP-methods-for-WWPN-and-LUNs.patch until merged by upstream (bsc#1134287, bsc#1139345, LTC#177836, LTC#174229).- Fix iteration of FCP LUNs (bsc#1134287, bsc#1139345, LTC#177836, LTC#174229). * Refresh grub2-ieee1275-FCP-methods-for-WWPN-and-LUNs.patch- Use grub2-install to handle signed grub installation for UEFI secure boot and also provide options to override default (bsc#1136601) * grub2-secureboot-install-signed-grub.patch - Remove arm64 linuxefi patches as it's not needed for secure boot * 0001-efi-refactor-grub_efi_allocate_pages.patch * 0002-Remove-grub_efi_allocate_pages.patch * 0003-arm64-efi-move-EFI_PAGE-definitions-to-efi-memory.h.patch * 0004-efi-Add-central-copy-of-grub_efi_find_mmap_size.patch * 0005-efi-Add-grub_efi_get_ram_base-function-for-arm64.patch * 0006-Add-support-for-EFI-handover-on-ARM64.patch- Avoid high resolution when trying to keep current mode (bsc#1133842) * grub2-video-limit-the-resolution-for-fixed-bimap-font.patch - Make GRUB_SAVEDEFAULT working with btrfs (bsc#1128592) * grub2-grubenv-in-btrfs-header.patch- Check/refresh zipl-kernel before hibernate on s390x. (bsc#940457) (Getting rid of hardcoded 'vmlinuz', which failed on PPC as well.) * grub2-systemd-sleep.sh- Try to refresh zipl-kernel on failed kexec. (bsc#1127293) * grub2-s390x-04-grub2-install.patch - Fully support "previous" zipl-kernel, with 'mem=1G' being available on dedicated entries. (bsc#928131) * grub2-s390x-09-improve-zipl-setup.patch - Refresh * grub2-zipl-setup-fix-btrfs-multipledev.patch- Fix GCC 9 build failure (bsc#1121208) * 0001-cpio-Disable-gcc9-Waddress-of-packed-member.patch * 0002-jfs-Disable-gcc9-Waddress-of-packed-member.patch * 0003-hfs-Fix-gcc9-error-Waddress-of-packed-member.patch * 0004-hfsplus-Fix-gcc9-error-with-Waddress-of-packed-membe.patch * 0005-acpi-Fix-gcc9-error-Waddress-of-packed-member.patch * 0006-usbtest-Disable-gcc9-Waddress-of-packed-member.patch * 0007-chainloader-Fix-gcc9-error-Waddress-of-packed-member.patch * 0008-efi-Fix-gcc9-error-Waddress-of-packed-member.patch- Use %doc for older products for compatibility, or may end up with unsuccessful build result * grub2.spec- Revert grub2-ieee1275-open-raw-mode.patch for regression of crashing lvm on multipath SAN (bsc#1113702) * deleted grub2-ieee1275-open-raw-mode.patch - Add exception handling to FCP lun enumeration (bsc#1113702) * grub2-ieee1275-FCP-methods-for-WWPN-and-LUNs.patch- Fix LOADER_TYPE parsing in grub2-once (boo#1122569)- Create compatibility sym-link of grub.xen in the old location to which old VM definition is pointing (bsc#1123942)- Add patch to fix ARM boot, when kernel become too big: * grub2-move-initrd-upper.patch (boo#1123350)- Replace old $RPM_* shell vars.- Support long menu entry by scrolling its text left and right through the key stroke ctrl+l and ctrl+r (FATE#325760) * grub2-gfxmenu-support-scrolling-menu-entry-s-text.patch- Improved hiDPI device support (FATE#326680) * grub2-video-limit-the-resolution-for-fixed-bimap-font.patch- Build platform-packages 'noarch' and move to '/usr/share/efi' for SUSE Manager. (FATE#326960) * grub2-efi-xen-chainload.patch (bsc#1122563) * grub2-efi-xen-removable.patch (refresh)- Support for UEFI Secure Boot on AArch64 (FATE#326541) * 0001-efi-refactor-grub_efi_allocate_pages.patch * 0002-Remove-grub_efi_allocate_pages.patch * 0003-arm64-efi-move-EFI_PAGE-definitions-to-efi-memory.h.patch * 0004-efi-Add-central-copy-of-grub_efi_find_mmap_size.patch * 0005-efi-Add-grub_efi_get_ram_base-function-for-arm64.patch * 0006-Add-support-for-EFI-handover-on-ARM64.patch- Change default tsc calibration method to pmtimer on EFI (bsc#1114754) * 0001-tsc-Change-default-tsc-calibration-method-to-pmtimer.patch- ieee1275: Fix double free in CAS reboot (bsc#1111955) * grub2-ppc64-cas-fix-double-free.patch- Support NVDIMM device names (bsc#1110073) * grub2-getroot-support-nvdimm.patch- Translate caret back to space as the initrd stanza could use space to delimit multiple files loaded (bsc#1101942) * grub2-util-30_os-prober-multiple-initrd.patch- ieee1275: implement FCP methods for WWPN and LUNs (bsc#1093145) * grub2-ieee1275-FCP-methods-for-WWPN-and-LUNs.patch- Fix broken network interface with random address and same name (bsc#1084508) * 0001-ofnet-Initialize-structs-in-bootpath-parser.patch- Fix outputting invalid btrfs subvol path on non btrfs filesystem due to bogus return code handling. (bsc#1106381) * modified grub2-btrfs-10-config-directory.patch- Fix overflow in sector count calculation (bsc#1105163) * grub2-msdos-fix-overflow.patch- Downgrade libburnia-tools to suggest as minimal system can't afford pulling in tcl/tk and half of the x11 stack (bsc#1102515) * modified grub2.spec- Add grub2-binutils2.31.patch: x86-64: Treat R_X86_64_PLT32 as R_X86_64_PC32. Starting from binutils commit bd7ab16b x86-64 assembler generates R_X86_64_PLT32, instead of R_X86_64_PC32, for 32-bit PC-relative branches. Grub2 should treat R_X86_64_PLT32 as R_X86_64_PC32.- The grubxenarch packages are now architecture-independent. [bsc#953297, grub2.spec, grub2-rpmlintrc]- Fix config_directory on btrfs to follow path scheme (bsc#1063443) * grub2-btrfs-10-config-directory.patch - Fix grub2-install --root-directory does not work for /boot/grub2/ on separate btrfs subvolume (boo#1098420) * grub2-btrfs-06-subvol-mount.patch - Fix setparams doesn't work as expected from boot-last-label NVRAM var, after inital CAS reboot on ieee1275 (bsc#1088830) * grub2-ppc64-cas-new-scope.patch- Fix install on xfs error (bsc#1101283) * 0001-xfs-Accept-filesystem-with-sparse-inodes.patch- grub2.spec: change %config to %config(noreplace) Don't overwrite user changes to config files on upgrades.- Marked %{_sysconfdir}/grub.d/40_custom as (noreplace) [bsc#1079332, grub2.spec]- Replace "GRUB_DISABLE_LINUX_RECOVERY" by "GRUB_DISABLE_RECOVERY" in /etc/default/grub and remove test from s390x install section in upec file. [bsc#1042433, grub.default, grub2.spec]- Added "# needssslcertforbuild", which got lost somewhere, to spec file [grub2.spec]- Replace confusing menu on btrfs "snapper rollback" by help text. [bsc#1027588, grub2-btrfs-help-on-snapper-rollback.patch]- Use %license instead of %doc [bsc#1082318]- grub2-emu on s390 keep network during kexec boot (bsc#1089493) * grub2-s390x-10-keep-network-at-kexec.patch- Add grub2-freetype-pkgconfig.patch to fix build with new freetype use pkgconfig to find Freetype libraries.- Fallback to raw mode if Open Firmware returns invalid ihandler (bsc#1071559) * grub2-ieee1275-open-raw-mode.patch- Fix error of essential directory not found on UEFI Xen host (bsc#1085842) * add grub2-efi-xen-removable.patch * rediff grub2-suse-remove-linux-root-param.patch- Fix corruption of "grub2-install --help" and grub2-install manual page (bsc#1086670) * unix-exec-avoid-atexit-handlers-when-child-exits.patch- Fix Nvidia GPU in legacy I/O slot 2 disappears during system startup (bsc#1082914) * 0001-Fix-PCIe-LER-when-GRUB2-accesses-non-enabled-MMIO-da.patch- Fix packed-not-aligned error on GCC 8 (bsc#1084632) * 0001-Fix-packed-not-aligned-error-on-GCC-8.patch- Fix incorrect netmask on ppc64 (bsc#1085419) * grub2-Fix-incorrect-netmask-on-ppc64.patch- Fix UEFI HTTPS Boot from ISO installation image (bsc#1076132) * 0001-add-support-for-UEFI-network-protocols.patch- fix wrong command output when default subvolume is toplevel tree with id 5 (bsc#1078775) * grub2-btrfs-09-get-default-subvolume.patch - insert mdraid modules to support software RAID (bsc#1078775) * grub2-xen-pv-firmware.cfg- Rename grub2-btrfs-workaround-grub2-once.patch to grub2-grubenv-in-btrfs-header.patch - Store GRUB environment variable health_checker_flag in Btrfs header- Fix incorrect check preventing the script from running (bsc#1078481) * 80_suse_btrfs_snapshot- Fix disappeared snapshot menu entry (bsc#1078481) * 80_suse_btrfs_snapshot- Fix unquoted string error and add some more checks (bsc#1079330) * grub2-check-default.sh- The %prep section applies patches, the %build section builds. Remove mixup of patching and building from %prep for quilt setup Related to bsc#1065703- Check if default entry need to be corrected for updated distributor version and/or use fallback entry if default kernel entry removed (bsc#1065349) * grub2-check-default.sh * grub2-mkconfig-default-entry-correction.patch - Fix grub2-mkconfig warning when disk is LVM PV (bsc#1071239) * grub2-getroot-scan-disk-pv.patch- Filter out autofs and securityfs from /proc/self/mountinfo to speed up nfsroot test in large number of autofs mounts (bsc#1069094) * modified grub2-pass-corret-root-for-nfsroot.patch- Fix http(s) boot security review (bsc#1058090) * 0002-AUDIT-0-http-boot-tracker-bug.patch- 0001-add-support-for-UEFI-network-protocols.patch: * Workaround http data access in firmware * Fix DNS device path parsing for efinet device * Relaxed UEFI Protocol requirement * Support Intel OPA (Omni-Path Architecture) PXE Boot (bsc#1015589)- grub2-xen-pv-firmware.cfg: remove linemode=1 from cmdline for SUSE installer. openQA expects ncurses interface. (bsc#1066919)- use python3 for autogen.sh (fate#323526)- Do not check that PReP partition does not contain an ELF during installation (bsc#1065738). * grub2-install-remove-useless-check-PReP-partition-is-empty.patch- Build diskboot_tpm.img as separate image to diskboot.img to prevent failure in booting on some bogus firmware. To use the TPM image you have to use suse-enable-tpm option of grub2-install (bsc#1052401) * 0013-tpm-i386-pc-diskboot-img.patch- Use /boot//loader/linux to determine if install media is SUSE instead of /contents file (bsc#1054453)- Use the pvops-enabled default kernel if the traditional xen pv kernel and initrd are not found (bsc#1054453)- Fix reboot in UEFI environments (bsc#1047331) * Add grub2-efi-Move-grub_reboot-into-kernel.patch * Refresh grub2-efi-Free-malloc-regions-on-exit.patch- Add preliminary patch for UEFI HTTPS and related network protocol support (fate#320130) * 0001-add-support-for-UEFI-network-protocols.patch- grub2-s390x-04-grub2-install.patch : remove arybase dependency in grub2-zipl-setup by not referencing to $[ (bsc#1055280)- Fix minor oversights in and the exit value of the grub2-install helper on s390x. (bsc#1055343, fate#323298) * grub2-s390x-09-improve-zipl-setup.patch- Make grub2.info build reproducible (boo#1047218)- add grub2-fix-build-with-flex-2.6.4.patch - fix build with flex 2.6.4+ that removed explicit (void) cast from fprintf call in yy_fatal_error.- Support LVM physical volume created without metadatacopies (bsc#1027526) * grub2-diskfilter-support-pv-without-metadatacopies.patch - Fix page fault exception when grub loads with Nvidia cards (bsc#1038533) * grub2-efi-uga-64bit-fb.patch - Require 'kexec-tools' for System z. (bsc#944358) * modified grub2.spec- grub2-xen-pv-firmware.cfg: insmod lvm module as it's not auto-loaded to support booting from lvm volume (bsc#1004324) - Grub not working correctly with xen and btrfs snapshots (bsc#1026511) * Add grub2-btrfs-09-get-default-subvolume.patch * grub2-xen-pv-firmware.cfg : search path in default subvolume- new upstream version 2.02 * rediff - use-grub2-as-a-package-name.patch * drop upstream patches - grub2-fix-uninitialized-variable-in-btrfs-with-GCC7.patch - grub2-add-FALLTHROUGH-annotations.patch - update translations- update grub2-btrfs-workaround-grub2-once.patch to also store saved_entry in additional environment block (boo#1031025)- fix building with GCC (bsc#1030247) * add grub2-fix-uninitialized-variable-in-btrfs-with-GCC7.patch * grub2-add-FALLTHROUGH-annotations.patch- Fix out of memory error on lvm detection (bsc#1016536) (bsc#1027401) * grub2-lvm-allocate-metadata-buffer-from-raw-contents.patch - Fix boot failure if /boot is separate btrfs partition (bsc#1023160) * grub2-btrfs-06-subvol-mount.patch- 0004-tpm-Rework-linux-command.patch : Fix out of bound memory copy (bsc#1029187)- new upstream version 2.02~rc2 * rediff - use-grub2-as-a-package-name.patch - grub2-linguas.sh-no-rsync.patch * drop upstream patches - 0001-efi-strip-off-final-NULL-from-File-Path-in-grub_efi_.patch- TPM Support (FATE#315831) * 0001-tpm-Core-TPM-support.patch * 0002-tpm-Measure-kernel-initrd.patch * 0003-tpm-Add-BIOS-boot-measurement.patch * 0004-tpm-Rework-linux-command.patch * 0005-tpm-Rework-linux16-command.patch * 0006-tpm-Measure-kernel-and-initrd-on-BIOS-systems.patch * 0007-tpm-Measure-the-kernel-commandline.patch * 0008-tpm-Measure-commands.patch * 0009-tpm-Measure-multiboot-images-and-modules.patch * 0010-tpm-Fix-boot-when-there-s-no-TPM.patch * 0011-tpm-Fix-build-error.patch * 0012-tpm-Build-tpm-as-module.patch - grub2.spec : Add grub-tpm.efi for Secure Boot- Fix invalid Xen EFI config files if xen_args include GRUB2 quoting (bsc#900418) (bsc#951748) * grub2-efi-xen-cfg-unquote.patch - Fix linuxefi erroneously initialize linux's boot_params with non-zero values. (bsc#1025563) * grub2-linuxefi-fix-boot-params.patch - Removed grub2-fix-multi-device-root-kernel-argument.patch as it has regression on how GRUB_DISABLE_LINUX_UUID=true interpreted (bsc#1015138)- Fix for openQA UEFI USB Boot failure with upstream patch (bsc#1026344) * added 0001-efi-strip-off-final-NULL-from-File-Path-in-grub_efi_.patch * removed 0001-Revert-efi-properly-terminate-filepath-with-NULL-in-.patch- Temporary fix for openQA UEFI USB Boot failure (bsc#1026344) * 0001-Revert-efi-properly-terminate-filepath-with-NULL-in-.patch- grub2.spec: fix s390x file list.- require efibootmgr in efi package (boo#1025520)- Merge changes from SLE12 - add grub2-emu-4-all.patch * Build 'grub2-emu' wherever possible, to allow a better implementation of that feature. - add grub2-s390x-06-loadparm.patch, - add grub2-commands-introduce-read_file-subcommand.patch: * allow s390x to telecontrol grub2. (bsc#891946, bsc#892852) - add grub2-s390x-06-loadparm.patch: * ignore case and fix transliteration of parameter. (bsc#891946) - add grub2-s390x-07-add-image-param-for-zipl-setup.patch * Add --image switch to force zipl update to specific kernel (bsc#928131) - add grub2-s390x-08-workaround-part-to-disk.patch * Ignore partition tables on s390x. (bsc#935127) - add grub2-efi-chainload-harder.patch: * allow XEN to be chain-loaded despite firmware flaws. (bnc#887793) * Do not use shim lock protocol for reading pe header, it won't be available when secure boot disabled (bsc#943380) * Make firmware flaw condition be more precisely detected and add debug message for the case * Check msdos header to find PE file header (bsc#954126) - grub2-s390x-04-grub2-install.patch: * streamline boot to grub menu. (bsc#898198) * Force '/usr' to read-only before calling kexec. (bsc#932951) - grub2-once: * add '--enum' option to enumerate boot-entries in a way actually understood by 'grub2'. (bsc#892852, bsc#892811) * Examine variables from grub environment in 'grub2-once'. (fate#319632)- new upstream version 2.02~rc1 * rediff - use-grub2-as-a-package-name.patch - grub2-s390x-04-grub2-install.patch - grub2-accept-empty-module.patch - grub2-btrfs-04-grub2-install.patch - grub2-btrfs-06-subvol-mount.patch * drop upstream patches - 0001-dns-fix-buffer-overflow-for-data-addresses-in-recv_h.patch - 0001-build-Use-AC_HEADER_MAJOR-to-find-device-macros.patch - 0002-configure-fix-check-for-sys-sysmacros.h-under-glibc-.patch - 0001-Fix-fwpath-in-efi-netboot.patch - 0001-arm64-Move-firmware-fdt-search-into-global-function.patch - 0002-arm-efi-Use-fdt-from-firmware-when-available.patch - grub2-arm64-mknetdir-add-suport-for-arm64-efi.patch - 0001-10_linux-Fix-grouping-of-tests-for-GRUB_DEVICE.patch - 0002-20_linux_xen-fix-test-for-GRUB_DEVICE.patch - 0001-xen-make-xen-loader-callable-multiple-times.patch - 0002-xen-avoid-memleaks-on-error.patch - 0003-xen-reduce-number-of-global-variables-in-xen-loader.patch - 0004-xen-add-elfnote.h-to-avoid-using-numbers-instead-of-.patch - 0005-xen-synchronize-xen-header.patch - 0006-xen-factor-out-p2m-list-allocation-into-separate-fun.patch - 0007-xen-factor-out-allocation-of-special-pages-into-sepa.patch - 0008-xen-factor-out-allocation-of-page-tables-into-separa.patch - 0009-xen-add-capability-to-load-initrd-outside-of-initial.patch - 0010-xen-modify-page-table-construction.patch - 0011-xen-add-capability-to-load-p2m-list-outside-of-kerne.patch * add - fix-grub2-use-stat-instead-of-udevadm-for-partition-lookup-with-new-glibc.patch fix compilation with new glibc- Fix build error on glibc-2.25 * 0001-build-Use-AC_HEADER_MAJOR-to-find-device-macros.patch * 0002-configure-fix-check-for-sys-sysmacros.h-under-glibc-.patch - Fix fwpath in efi netboot (fate#321993) (bsc#1022294) * 0001-Fix-fwpath-in-efi-netboot.patch- grub2-systemd-sleep.sh: Fix prematurely abort by commands error return code and skip the offending menu entry (bsc#1022880)- Add support for BLT only EFI GOP adapters (FATE#322332) * grub2-efi-gop-add-blt.patch- info-dir-entry.patch: Update info dir entry to follow renaming to grub2- Add serial module to efi image. Serial terminal is still useful even with EFI Secure Boot- Support %posttrans with marcos provided by update-bootloader-rpm-macros package (bsc#997317)- Remove outdated README.openSUSE (bsc#907693)- 20_memtest86+: avoid adding memtest86+ to the list with UEFI booting.- Fix new line character in distributor (bsc#1007212) * modified grub2-default-distributor.patch- From Juergen Gross : grub-xen: support booting huge pv-domains (bsc#1004398) (bsc#899465) * 0001-xen-make-xen-loader-callable-multiple-times.patch * 0002-xen-avoid-memleaks-on-error.patch * 0003-xen-reduce-number-of-global-variables-in-xen-loader.patch * 0004-xen-add-elfnote.h-to-avoid-using-numbers-instead-of-.patch * 0005-xen-synchronize-xen-header.patch * 0006-xen-factor-out-p2m-list-allocation-into-separate-fun.patch * 0007-xen-factor-out-allocation-of-special-pages-into-sepa.patch * 0008-xen-factor-out-allocation-of-page-tables-into-separa.patch * 0009-xen-add-capability-to-load-initrd-outside-of-initial.patch * 0010-xen-modify-page-table-construction.patch * 0011-xen-add-capability-to-load-p2m-list-outside-of-kerne.patch- add support for netboot on arm64-efi platforms (bsc#998097) * grub2-arm64-mknetdir-add-suport-for-arm64-efi.patch- use $PRETTY_NAME instead of $NAME $VERSION for $GRUB_DISTRIBUTOR in openSUSE Tumbleweed (bsc#995549) * modified grub2-default-distributor.patch - grub2.spec: add http module to grub.efi (fate#320129)- binutils 2.27 creates empty modules without a symtab. Add patch grub2-accept-empty-module.patch to not reject them.- since version 1.7 cryptsetup defaults to SHA256 for LUKS - include gcry_sha256 in signed EFI image- Workaround default entry in snapshot menu (bsc#956046) * grub2-btrfs-08-workaround-snapshot-menu-default-entry.patch - grub2.spec: Add true command to grub.efi (bsc#993274)- grub.default: Empty GRUB_CMDLINE_LINUX_DEFAULT, the value will be fully taken from YaST settings. (bsc#989803)- Add patches from Roberto Sassu - Fix grub2-10_linux-avoid-multi-device-root-kernel-argument.patch, device path is not tested if GRUB_DISABLE_LINUX_UUID="true" - added grub2-fix-multi-device-root-kernel-argument.patch (bsc#960776) - grub2-zipl-setup: avoid multi-device root= kernel argument * added grub2-zipl-setup-fix-btrfs-multipledev.patch (bsc#960776) - Add SUSE_REMOVE_LINUX_ROOT_PARAM configuration option to /etc/default/grub, to remove root= and rootflags= from the kernel command line in /boot/grub2/grub.cfg and /boot/zipl/config - added grub2-suse-remove-linux-root-param.patch (bsc#962585)- Support HTTP Boot IPv4 and IPv6 (fate#320129) * 0001-misc-fix-invalid-character-recongition-in-strto-l.patch * 0002-net-read-bracketed-ipv6-addrs-and-port-numbers.patch * 0003-bootp-New-net_bootp6-command.patch * 0004-efinet-UEFI-IPv6-PXE-support.patch * 0005-grub.texi-Add-net_bootp6-doument.patch * 0006-bootp-Add-processing-DHCPACK-packet-from-HTTP-Boot.patch * 0007-efinet-Setting-network-from-UEFI-device-path.patch * 0008-efinet-Setting-DNS-server-from-UEFI-protocol.patch - Fix heap corruption after dns lookup * 0001-dns-fix-buffer-overflow-for-data-addresses-in-recv_h.patch- fix filelist for s390x- Fix grub2-editenv error on encrypted lvm installation (bsc#981621) * modified grub2-btrfs-workaround-grub2-once.patch - Add missing closing bracket in 'grub2-snapper-plugin.sh'. - Fix snapshot booting on s390x (bsc#955115) * modified grub2-snapper-plugin.sh - Fallback to old subvol name scheme to support old snapshot config (bsc#953538) * added grub2-btrfs-07-subvol-fallback.patch- update grub2-once with patch from Björn Voigt - skip comments in /etc/sysconfig/bootloader (boo#963610)- Make sure all systemd unit files are passed to %service_ macros.- Add patch to free memory on exit in efi environments (bsc#980739) * grub2-efi-Free-malloc-regions-on-exit.patch- Remove xen-devel from BuildRequires required headers are included in grub-2.0.2- Add support for "t" hotkey to switch to text mode (bsc#976836) * added grub2-SUSE-Add-the-t-hotkey.patch - Add support for hidden menu entries (bsc#976836) * added grub2-Add-hidden-menu-entries.patch- Correct show user defined comments in menu for snapshots (bsc#956698) * modified grub2-snapper-plugin.sh- Fix GRUB_DISABLE_LINUX_UUID to be ignore and also fallback kernel device won't be used if fs uuid not detected (bsc#971867) * added 0001-10_linux-Fix-grouping-of-tests-for-GRUB_DEVICE.patch * added 0002-20_linux_xen-fix-test-for-GRUB_DEVICE.patch- new upstream version 2.02~beta3 * highlights of user visible changes not yet present in openSUSE package - arm-uboot now generates position independent self relocating image, so single binary should run on all supported systems - loader for Xen on aarch64. grub-mkconfig support was not in time for beta3 yet. - improved ZFS support (extensible_dataset, large_blocks, embedded_data, hole_birth features) - support for IPv6 Router Advertisements - support for persistent memory (we do not overwrite it and pass correct information to OS) - try to display more specific icons for os-prober generated menu entries - grub-install detects EFI bit size and selects correct platform (x86_64-efi or i386-efi) independent of OS bit size; needs kernel 4.0 or higher. - LVM RAID1 support - xnu loader fixes which should make OS X menu entry generated by os-prober work again - key modifiers (Ctrl-X etc) should work on EFI too - ... and lot of fixes over entire tree * rediff - rename-grub-info-file-to-grub2.patch - use-grub2-as-a-package-name.patch - grub2-GRUB_CMDLINE_LINUX_RECOVERY-for-recovery-mode.patch - grub2-fix-menu-in-xen-host-server.patch - grub2-efi-HP-workaround.patch - grub2-secureboot-chainloader.patch - grub2-s390x-02-kexec-module-added-to-emu.patch - grub2-s390x-04-grub2-install.patch - grub2-s390x-05-grub2-mkconfig.patch - grub2-efi-xen-chainload.patch - grub2-mkconfig-aarch64.patch - grub2-btrfs-04-grub2-install.patch - grub2-ppc64-cas-reboot-support.patch - 0002-Add-Virtual-LAN-support.patch * fix grub2-secureboot-add-linuxefi.patch - use grub_memset and grub_memcpy instead of memset and memcpy (caused errors due to compiler warning) * drop upstream patches - 0001-grub-core-kern-efi-efi.c-Ensure-that-the-result-star.patch - 0001-look-for-DejaVu-also-in-usr-share-fonts-truetype.patch - 0001-efidisk-move-device-path-helpers-in-core-for-efinet.patch - 0002-efinet-skip-virtual-IPv4-and-IPv6-devices-when-enume.patch - 0003-efinet-open-Simple-Network-Protocol-exclusively.patch - 0001-efinet-Check-for-immediate-completition.patch - 0001-efinet-enable-hardware-filters-when-opening-interfac.patch - grub2-xen-legacy-config-device-name.patch - grub2-getroot-support-NVMe-device-names.patch - grub2-netboot-hang.patch - grub2-btrfs-fix-incorrect-address-reference.patch - aarch64-reloc.patch - grub2-glibc-2.20.patch (related code dropped upstream) - grub2-Initialized-initrd_ctx-so-we-don-t-free-a-random-poi.patch - grub2-btrfs-fix-get_root-key-comparison-failures-due-to-en.patch - grub2-getroot-fix-get-btrfs-fs-prefix-big-endian.patch - grub2-ppc64-qemu.patch - grub2-xfs-Add-helper-for-inode-size.patch - grub2-xfs-Fix-termination-loop-for-directory-iteration.patch - grub2-xfs-Convert-inode-numbers-to-cpu-endianity-immediate.patch - grub2-xfs-V5-filesystem-format-support.patch - 0001-Add-bootargs-parser-for-open-firmware.patch - grub2-arm64-set-correct-length.patch - grub2-arm64-setjmp-Add-missing-license-macro.patch - grub2-arm64-efinet-handle-get_status-on-buggy-firmware-properly.patch - 0001-unix-password-Fix-file-descriptor-leak.patch - 0002-linux-getroot-fix-descriptor-leak.patch - 0003-util-grub-mount-fix-descriptor-leak.patch - 0004-linux-ofpath-fix-descriptor-leak.patch - 0005-grub-fstest-fix-descriptor-leak.patch - ppc64le.patch - libgcc-prereq.patch - libgcc.patch - 0001-Fix-security-issue-when-reading-username-and-passwor.patch - 0001-menu-fix-line-count-calculation-for-long-lines.patch - grub2-arm64-Reduce-timer-event-frequency-by-10.patch - 0001-unix-do-not-close-stdin-in-grub_passwd_get.patch - 0001-grub-core-kern-i386-tsc.c-calibrate_tsc-Ensure-that.patch - 0002-i386-tsc-Fix-unused-function-warning-on-xen.patch - 0003-acpi-do-not-skip-BIOS-scan-if-EBDA-length-is-zero.patch - 0004-tsc-Use-alternative-delay-sources-whenever-appropria.patch - 0005-i386-fix-TSC-calibration-using-PIT.patch - biendian.patch - ppc64_opt.patch * drop workarounds for gdb_grub and grub.chrp, they are now installed under fixed name * do not patch docs/Makefile.in, it is regenerated anyway- Make mkconfig search for zImage on arm * grub2-mkconfig-arm.patch- Add support to directly pass an EFI FDT table to a kernel on 32bit arm * 0001-arm64-Move-firmware-fdt-search-into-global-function.patch * 0002-arm-efi-Use-fdt-from-firmware-when-available.patch- Add config option to set efi xen loader command line option (bsc#957383) * added grub2-efi-xen-cmdline.patch- Drop ppc64le patches. Build stage1 as BE for Power Droped patches: - grub2-ppc64le-01-Add-Little-Endian-support-for-Power64-to-the-build.patch - grub2-ppc64le-02-Build-grub-as-O1-until-we-add-savegpr-and-restgpr-ro.patch - grub2-ppc64le-03-disable-creation-of-vsx-and-altivec-instructions.patch - grub2-ppc64le-04-powerpc64-LE-s-linker-knows-how-to-handle-the-undefi.patch - grub2-ppc64le-05-grub-install-can-now-recognize-and-install-a-LE-grub.patch - grub2-ppc64le-06-set-the-ABI-version-to-0x02-in-the-e_flag-of-the-PPC.patch - grub2-ppc64le-07-Add-IEEE1275_ADDR-helper.patch - grub2-ppc64le-08-Fix-some-more-warnings-when-casting.patch - grub2-ppc64le-09-Add-powerpc64-types.patch - grub2-ppc64le-10-powerpc64-is-not-necessarily-BigEndian-anymore.patch - grub2-ppc64le-11-Fix-warnings-when-building-powerpc-linux-loader-64bi.patch - grub2-ppc64le-12-GRUB_ELF_R_PPC_-processing-is-applicable-only-for-32.patch - grub2-ppc64le-13-Fix-powerpc-setjmp-longjmp-64bit-issues.patch - grub2-ppc64le-14-Add-powerpc64-ieee1275-trampoline.patch - grub2-ppc64le-15-Add-64bit-support-to-powerpc-startup-code.patch - grub2-ppc64le-16-Add-grub_dl_find_section_addr.patch - grub2-ppc64le-17-Add-ppc64-relocations.patch - grub2-ppc64le-18-ppc64-doesn-t-need-libgcc-routines.patch - grub2-ppc64le-19-Use-FUNC_START-FUNC_END-for-powerpc-function-definit.patch - grub2-ppc64le-20-.TOC.-symbol-is-special-in-ppc64le-.-It-maps-to-the-.patch - grub2-ppc64le-21-the-.toc-section-in-powerpc64le-modules-are-sometime.patch - grub2-ppc64le-22-all-parameter-to-firmware-calls-should-to-be-BigEndi.patch - grub2-ppc64le-fix-64bit-trampoline-in-dyn-linker.patch - grub2-ppc64le-timeout.patch - grub2-ppc64-build-ppc64-32bit.patch - Added patches: - biendian.patch - grub2-ppc64-cas-reboot-support.patch - libgcc-prereq.patch - libgcc.patch - ppc64_opt.patch - ppc64le.patch- Backport upstream patches for HyperV gen2 TSC timer calbration without RTC (bsc#904647) * added 0001-grub-core-kern-i386-tsc.c-calibrate_tsc-Ensure-that.patch * added 0002-i386-tsc-Fix-unused-function-warning-on-xen.patch * added 0003-acpi-do-not-skip-BIOS-scan-if-EBDA-length-is-zero.patch * added 0004-tsc-Use-alternative-delay-sources-whenever-appropria.patch * added 0005-i386-fix-TSC-calibration-using-PIT.patch- Add 0001-menu-fix-line-count-calculation-for-long-lines.patch (bsc#943585)- grub2-xen-pv-firmware.cfg: fix hd boot (boo#926795)- Add 0001-Fix-security-issue-when-reading-username-and-passwor.patch Fix for CVE-2015-8370 [boo#956631]- Update grub2-efi-xen-chainload.patch - fix copying of Linux kernel and initrd to ESP (boo#958193)- Rename grub2-xen.cfg to grub2-xen-pv-firmware.cfg (boo#926795)- grub2-xen.cfg: to handle grub1 menu.lst in PV guest (boo#926795)- Expand list of grub.cfg search path in PV Xen guest for systems installed to btrfs snapshot. (bsc#946148) (bsc#952539) * modified grub2-xen.cfg - drop grub2-fix-Grub2-with-SUSE-Xen-package-install.patch (bsc#774666)- Add 0001-unix-do-not-close-stdin-in-grub_passwd_get.patch Fix reading password by grub2-mkpasswd-pbdk2 without controlling tty, e.g. when called from Xfce menu (boo#954519)- Modify grub2-linguas.sh-no-rsync.patch to re-enable en@quot catalog (boo#953022). Other autogenerated catalogs still fail to build due to missing C.UTF-8 locale.- Allow to execute menuentry unrestricted as default (fate#318574) * added grub2-menu-unrestricted.patch- Add missing quoting for linuxefi (bsc#951962) * modified grub2-secureboot-use-linuxefi-on-uefi.patch * refreshed grub2-secureboot-provide-linuxefi-config.patch- Include custom.cfg into the files scanned by grub2-once. Allows to chose manually added entries as well (FATE#319632).- Upstream patches for fixing file descriptor leakage (bsc#943784) * added 0001-unix-password-Fix-file-descriptor-leak.patch * added 0002-linux-getroot-fix-descriptor-leak.patch * added 0003-util-grub-mount-fix-descriptor-leak.patch * added 0004-linux-ofpath-fix-descriptor-leak.patch * added 0005-grub-fstest-fix-descriptor-leak.patch- Do not force ro option in linuxefi patch (bsc#948555) * modified grub2-secureboot-use-linuxefi-on-uefi.patch * refrehed grub2-secureboot-provide-linuxefi-config.patch- add 0001-efinet-Check-for-immediate-completition.patch, 0001-efinet-enable-hardware-filters-when-opening-interfac.patch, grub2-arm64-efinet-handle-get_status-on-buggy-firmware-properly.patch (bsc#947203)- Set default GRUB_DISTRIBUTOR from /etc/os-release if it is empty or not set by user (bsc#942519) * added grub2-default-distributor.patch * modified grub.default- add systemd-sleep-plugin subpackage (bsc#941758) - evaluate the menu entry's title string by printf * modified grub2-once * added grub2-systemd-sleep.sh- fix for 'rollback' hint (bsc#901487) * modified grub2-btrfs-05-grub2-mkconfig.patch:- Replace 12.1 with 12 SP1 for the list of snapshots (bsc#934252) * modified grub2-snapper-plugin.sh- Fix btrfs subvol detection on BigEndian systems (bsc#933541) * modified grub2-btrfs-06-subvol-mount.patch - Fix grub2-mkrelpath outputs wrong path on BigEndian system * added grub2-getroot-fix-get-btrfs-fs-prefix-big-endian.patch- If we have a post entry and the description field is empty, we should use the "Pre" number and add that description to the post entry. (fate#317972) - Show user defined comments in grub2 menu for snapshots (fate#318101) * modified grub2-snapper-plugin.sh- add 0001-grub-core-kern-efi-efi.c-Ensure-that-the-result-star.patch make sure firmware path starts with '/' (boo#902982)- Fix btrfs patch on BigEndian systems (bsc#933541) * modified grub2-btrfs-01-add-ability-to-boot-from-subvolumes.patch * modified grub2-btrfs-06-subvol-mount.patch- Fix license for setjmp module * added grub2-arm64-setjmp-Add-missing-license-macro.patch- Fix install into snapper controlled btrfs subvolume and can't load grub modules from separate subvolume (fate#318392) * added grub2-btrfs-06-subvol-mount.patch * grub2-snapper-plugin.sh: use absolute subvol name- also Recommends mtools for grub2-mkrescue (used to create EFI boot image) in addition to libburnia-tools.- Support booting opensuse installer as PV DomU (boo#926795) * added grub2-xen.cfg for tracking default pvgrub2 xen configs rather than generating it from spec file * grub2-xen.cfg: from Olaf Hering - replace grub2-efinet-reopen-SNP-protocol-for-exclusive-use-by-grub.patch with upstream version: * 0001-efidisk-move-device-path-helpers-in-core-for-efinet.patch * 0002-efinet-skip-virtual-IPv4-and-IPv6-devices-when-enume.patch * 0003-efinet-open-Simple-Network-Protocol-exclusively.patch Fixes EFI network boot in some QEMU configurations.- fix grub2-mkconfig-aarch64.patch: fix arch detection broken by malformed patch rediffing- Cleanup patch not applied * remove grub2-enable-theme-for-terminal-window.patch * grub2.rpmlintrc: remove addFilter("patch-not-applied")- Merge changes from SLE12 - Do not pass root= when root is on nfs (bnc#894374) * modified grub2-pass-corret-root-for-nfsroot.patch * modified grub2-secureboot-provide-linuxefi-config.patch * modified grub2-secureboot-use-linuxefi-on-uefi.patch - Fix xen pvops kernel not appear on menu (bnc#895286) * modified grub2-fix-menu-in-xen-host-server.patch - Workaround grub2-once (bnc#892358) * added grub2-btrfs-workaround-grub2-once.patch * added grub2-once.service * modified grub2-once - Fix busy-loop and hang while network booting (bnc#870613) * added grub2-netboot-hang.patch - Add warning in grubenv file about editing it directly (bnc#887008) * added grub2-editenv-add-warning-message.patch - Fix broken graphics with efifb on QEMU/KVM and nomodeset (bnc#884558) * added grub2-efi-disable-video-cirrus-and-bochus.patch - Disable video support on Power (bnc#877142) * added grub2-ppc64le-disable-video.patch - Track occupied memory so it can be released on exit (bnc#885026) * added grub2-ppc64le-memory-map.patch - Fix grub.xen config searching path on boot partition (bnc#884828) - Add linux16 and initrd16 to grub.xen (bnc#884830) * added grub2-xen-linux16.patch - VLAN tag support (fate#315753) * added 0001-Add-bootargs-parser-for-open-firmware.patch * added 0002-Add-Virtual-LAN-support.patch - Use chainloader to boot xen.efi under UEFI (bnc#871857) * added grub2-efi-xen-chainload.patch - Use device part of chainloader target, if present (bnc#871857) * added grub2-efi-chainloader-root.patch - Create only hypervisor pointed by /boot/xen.gz symlink (bnc#877040) * modified grub2-fix-Grub2-with-SUSE-Xen-package-install.patch - Fix xen and native entries differ in grub.cfg (bnc#872014) * modified grub2-linux.patch - Fix install error on ddf md device (bnc#872360) * added grub2-getroot-treat-mdadm-ddf-as-simple-device.patch - Fix booting from NVMe device (bnc#873132) * added grub2-getroot-support-NVMe-device-names.patch - Document peculiarities of s390 terminals * added README.ibm3215 - Grub2 for System z (fate#314213) * added grub2-s390x-02-kexec-module-added-to-emu.patch * added grub2-s390x-03-output-7-bit-ascii.patch * added grub2-s390x-04-grub2-install.patch * added grub2-s390x-05-grub2-mkconfig.patch- grub2-arm64-set-correct-length.patch: arm64: set correct length of device path end entry- grub2-efi-HP-workaround.patch: * try to read config from all-uppercase prefix as last resort. (bnc#872503) (boo#902982)- add luks, gcry_rijndael, gcry_sha1 to signed EFI image to support LUKS partition in default setup (boo#917427)- enable i386-xen (boo#891043)- Downgrade os-prober dependency to Recommends (boo#898610)- grub2-snapper-plugin.sh: cleanup grub-snapshot.cfg not referring to any snapshot (boo#909359)- Require efibootmgr also on i586- Require efibootmgr also on aarch64- grub2-snapper-plugin.sh: fix use of printf without format string; fix quoting- grub2-arm64-Reduce-timer-event-frequency-by-10.patch: fix periodic timer on arm64- enable 32bit arm targets for uboot and efi- Replace 'echo -e' command in grub2-snapper-plugin.sh script to 'printf' command. '-e' option of 'echo' command may be unsupported in some POSIX-complete shells.- fix bashism in post script- grub2.spec: Fix conditional construct which wasn't supported by older versions of rpmbuild (caused error message "parseExpressionBoolean returns -1".)- fix errors when boot is btrfs with Windows partition scheme. The first partition is created on cylinder boundary that can't offer enough room for core.img and also the installation has to be in logical paritition which made MBR the only location to install. (bnc#841247) * add grub2-setup-try-fs-embed-if-mbr-gap-too-small.patch/bin/sh  !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqrstuvwxyz{|}~      !"#$%&'()*+,-./012342.06-150400.11.41.1grub2-instdev-fixup.pli386-pcacpi.modadler32.modaffs.modafs.modafsplitter.modahci.modall_video.modaout.modappended_signature_test.modappendedsig.modarchelp.modasn1.modat_keyboard.modata.modbacktrace.modbfs.modbiosdisk.modbitmap.modbitmap_scale.modblocklist.modboot.imageboot.imgboot.modboot_hybrid.imageboot_hybrid.imgbsd.modbswap_test.modbtrfs.modbtrfs_zstd.modbufio.modcat.modcbfs.modcbls.modcbmemc.modcbtable.modcbtime.modcdboot.imagecdboot.imgchain.modcmdline.modcmdline_cat_test.modcmosdump.modcmostest.modcmp.modcmp_test.modcommand.lstconfigfile.modcpio.modcpio_be.modcpuid.modcrc64.modcrypto.lstcrypto.modcryptodisk.modcs5536.modctz_test.moddate.moddatehook.moddatetime.moddisk.moddiskboot.imagediskboot.imgdiskfilter.moddiv.moddiv_test.moddm_nv.moddrivemap.modecho.modefiemu.modefiemu32.oefiemu64.oehci.modelf.modeval.modexfat.modexfctest.modext2.modextcmd.modf2fs.modfat.modfdt.lstfile.modfont.modfreedos.modfs.lstfshelp.modfunctional_test.modgcry_arcfour.modgcry_blowfish.modgcry_camellia.modgcry_cast5.modgcry_crc.modgcry_des.modgcry_dsa.modgcry_idea.modgcry_md4.modgcry_md5.modgcry_rfc2268.modgcry_rijndael.modgcry_rmd160.modgcry_rsa.modgcry_seed.modgcry_serpent.modgcry_sha1.modgcry_sha256.modgcry_sha512.modgcry_tiger.modgcry_twofish.modgcry_whirlpool.modgdb.modgeli.modgettext.modgfxmenu.modgfxterm.modgfxterm_background.modgfxterm_menu.modgptsync.modgzio.modhalt.modhashsum.modhdparm.modhello.modhelp.modhexdump.modhfs.modhfsplus.modhfspluscomp.modhttp.modiorw.modiso9660.modjfs.modjpeg.modjson.modkernel.execkernel.imgkeylayouts.modkeystatus.modldm.modlegacy_password_test.modlegacycfg.modlinux.modlinux16.modlnxboot.imagelnxboot.imgloadenv.modloopback.modls.modlsacpi.modlsapm.modlsmmap.modlspci.modluks.modluks2.modlvm.modlzma_decompress.imagelzma_decompress.imglzopio.modmacbless.modmacho.modmda_text.modmdraid09.modmdraid09_be.modmdraid1x.modmemdisk.modmemrw.modminicmd.modminix.modminix2.modminix2_be.modminix3.modminix3_be.modminix_be.modmmap.modmoddep.lstmodinfo.shmorse.modmpi.modmsdospart.modmul_test.modmultiboot.modmultiboot2.modnativedisk.modnet.modnewc.modnilfs2.modnormal.modntfs.modntfscomp.modntldr.mododc.modoffsetio.modohci.modpart_acorn.modpart_amiga.modpart_apple.modpart_bsd.modpart_dfly.modpart_dvh.modpart_gpt.modpart_msdos.modpart_plan.modpart_sun.modpart_sunpc.modpartmap.lstparttool.lstparttool.modpassword.modpassword_pbkdf2.modpata.modpbkdf2.modpbkdf2_test.modpci.modpcidump.modpgp.modpkcs1_v15.modplan9.modplay.modpng.modprep_loadenv.modpriority_queue.modprobe.modprocfs.modprogress.modpxe.modpxeboot.imagepxeboot.imgpxechain.modraid5rec.modraid6rec.modrandom.modrdmsr.modread.modreboot.modregexp.modreiserfs.modrelocator.modromfs.modscsi.modsearch.modsearch_fs_file.modsearch_fs_uuid.modsearch_label.modsendkey.modserial.modsetjmp.modsetjmp_test.modsetpci.modsfs.modshift_test.modsignature_test.modsleep.modsleep_test.modsmbios.modspkmodem.modsquash4.modstrtoull_test.modsyslinuxcfg.modtar.modterminal.lstterminal.modterminfo.modtest.modtest_asn1.modtest_blockarg.modtestload.modtestspeed.modtftp.modtga.modtime.modtr.modtrig.modtrue.modtruecrypt.modudf.modufs1.modufs1_be.modufs2.moduhci.modusb.modusb_keyboard.modusbms.modusbserial_common.modusbserial_ftdi.modusbserial_pl2303.modusbserial_usbdebug.modusbtest.modvbe.modverifiers.modvga.modvga_text.modvideo.lstvideo.modvideo_bochs.modvideo_cirrus.modvideo_colors.modvideo_fb.modvideoinfo.modvideotest.modvideotest_checksum.modwrmsr.modxfs.modxnu.modxnu_uuid.modxnu_uuid_test.modxzio.modzstd.mod/usr/lib//usr/share/grub2//usr/share/grub2/i386-pc/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:31391/SUSE_SLE-15-SP4_Update/ce8894e570a4531f873c8bf43ce8cec4-grub2.SUSE_SLE-15-SP4_Updatedrpmxz5x86_64-suse-linux  Perl script text executabledirectoryELF 32-bit LSB relocatable, Intel 80386, version 1 (SYSV), not strippedELF 32-bit LSB relocatable, Intel 80386, version 1 (SYSV), strippedELF 32-bit LSB executable, Intel 80386, version 1 (SYSV), statically linked, not strippedASCII textELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), BuildID[sha1]=79aaa6906d89312dc4d6c7cfb9bfccae3bc9f294, not strippedemptyELF 32-bit LSB executable, Intel 80386, version 1 (SYSV), statically linked, with debug_info, not strippedELF 32-bit LSB executable, Intel 80386, version 1 (SYSV), statically linked, strippedPOSIX shell script, ASCII text executable, with very long linesR if test -f /run/update-bootloader/reinit; then rm -f /run/update-bootloader/{reinit,refresh} /sbin/update-bootloader --reinit || : elif test -f /run/update-bootloader/refresh; then rm -f /run/update-bootloader/refresh /sbin/update-bootloader --refresh || : fi/bin/shutf-8eb0813163464c2ff4e00fb94dd512101708ef095110617db10a141b9e93197e7?7zXZ !t/Ewp]"k%N=ry5a]ǥ}ώw@)vZ4#5RR出c wpa굛ʥ^Ś2l&suX<SzYB (N\ ɺ cǃ,L=3: /ߺ4FJLAPH֗ծfh M ]ބP ["{Wa*~"NY-T٩Uf\LȾmyr?[;%s D$X tMB qn!Q-̚uȶ=/SKć\?Wki 2{fթ`׉pC`+)m*?O:Rk T'Sk⋼o@ȶf|Z<)XE8XrQE%ˡO3B]c" .,>gޖ.pt;|ZUZ=#MqY7>NՓ.q x{2>;q Y|Cm?QйP)㸗2}#)$Ŕ T \"YOt >N5ָjVh$&k(awoe+zdNeLV?/|^F˅i>6f=j)F.K`-Ժ4L#XhnF^)iOt`@g%/5:Ud6C+!RB3%,k>߯Z|qRt"y}k9O^x% T.;YzΫ̋G#G,}mZU}yAfNQU' ջXAtB/y/'vf s>2!8G7Ό!u?= vC<ZC/cғb&W,wJNF?QP4u Mpz8Si$88t vo u@ww{t1+s ǮURҺO/_V`-IGE8 c>R{4Z׌"S|WaY20f3#B{ oZ~,ھY| =l?*;\Yfb0D7J4'?g)EˢB_)`6㤨@6lY>YDeEK "3wI a!hYM!좯I#Ֆ@s\!n}wsۧóq5Qe@L=b|y:sʖ=쎅 ԇGs_)0BWwP*^ꢄ^:$g^aq&b=ļ^$bDdQ&,ЪHx%Zd.nٙ $FAmaB$Im0x1V3ѲM~i<%ǛB̑Rxi &wmzBjPBꜾ8K*&.Y]OevR".?6BT ?IgV%FB{cҺ,3YHC/ :dݖusVXAJ(0w&u6Ų;mtE2ZJ_?qʹ?+)&[UY+Ruڒv^gWRwpI ;04{Yo¡ >Bs30L{Lb0ĸOu7]rQ1lQR.ٓ:oN :)Y'7O׵~+u&K>jnXW꽁Z?l>┺)ٕ%1DP#f8"#둣4TlIX}ŸeH97 br/!͂`(P:oh byZ9hB0 WTvcG X70 QB|.|i|k__)vLn3 :+@$k{"%1o,(M|36% ;XEuk&%gP•+ɟ2t"n 򅪋%I;^ A` h%՘/x]M$R9[,59ߐTf:4ss^m9]T(QITJ>fA<;vK’t]>U-av)`M]$m-RƬA+[U'Đq9B.m?]/bFw ۠ zF}L#e,C,[YZd+-5wviL$^aؑ /{eu)؎<$B`J-0~M9x 7n yܤC&Lݠ>)zJBGֈ˲P@wW}$;6v0#$S*Ra(1%Sv$y$~fм3Ir+#ooQ>['^%`Ј\aG5i5][ӚgTj? pfNUU%qǐB mrX0$ܜ:qreKT |)s~o}5{xۧcΰ/< ^ߘˀEʏe(@)ɺylP@:^7xGIBhbk4BV`AXC^EZ$E0^ ;tdњ}uF%yywљ'zۨle΅יɛd %ֲ-~)GZ'6d\]r9"΢+dG;$@+xVȢNUmHz@%&2l^"-FbY` I -'L i_%&]\V&N֓]0~B}?R#9ԛϢe~`F+sU^Y~fل$194 A_j'&(S*C3yH!]W=p7ζC1%5{:rj $ظ]}+ Hyd<76r$tCet6g7{NpO.lR]͍= їikdh˪VGھB5(&Bup iLtL<1+SPTԗy\FL8kwQQUT?H@ʏ<@ҪnIbxwk{ȁjw^`F<ь2,#:hQh\̭bFVpzڳCt@)B7q{T)9dx>{aZ6j$;1^B`Z!F'h;z.Sz?3A`(Md"jVRo$K(~qM}U' =ԙ!K@b,߄ I"#m*f;4WNh.ҋvb X6$Kve*?~o/$cs۵5fqWɨCvaE?7(:t9^O HHnm,tg1ek;#uhRDb<>^Sw{:D9Ň&APU4 ݅ӯf%;AF5R-ӄ.kvߊf);T[yam[dSi/좎 WYh$a)bz@_T<%L_U1\iHZ)=]TvfI36bhbp!3LPpulش!d+V(呾$sJ' $Ig%G GHS-0*mJ?@G4m))Eqbg:+8$SvT7\ {V0,* ǩ1wIp3{e#^؁gNrXһD7GAgga~غ/ÆWZJSӖtoc ]_aN"fZ%d=Ϣ{r~g˒@Qհw#JQ#_v _UWu'mX9V}c:DbZI4@Epϐ˖QbOCZG.@Q-Ɨ(6VŽj{JT#W oQxpP4HZ `5)w-pjz4Hs|1Z9iN9δՀ4zs`FJ첳:ң]!6 2}Aͬsq:W\QoT&VoIt^# pJBZ} ] QxW|wGl?]b%N) akNa7qNުK_5K#HdJ!q~?F_MUy)$t)P?^hfdZ"dbҫuLܪѻ%+G\6npesa6AYc 2x wu% ۥϿƜEAY%8]OlYǑ˸fw78>v/r~2ɺ- s^oKG~`4urqK?BdK uD!lÔ`O Yh[VjıҾvս 8=_,v~ ktF-JDEvm¢QS 戱a.o?4(m||lIM@tvQz6hI9}=>Lgp{heZ_bop?j9Gڏ*Wukx&k ͕q'|Jw K]|*/~+ ӓtWBm7i'ߦ~$Jw D+N>m`bnLb˨Ь{; HOftk-C~EmXCO*uvMscxRtzxsra$H|'MУ 딎!NwqUV"YAt"Э\c' AH?1غ] ]UnΓھ`D*Zb4"ٰG%t4%]?| ์[-(-#luJWޓDR΋1}9NDxTym"[⌧"7K/ x7K/O8|i{19D@,e f஢B4!)j-FiEx{6,ǐf${N 0Nt03=}ipw 8@{IjJ(x8դdAMg߂@s |<ҚdoE1K@0/B+w;878ׁ^A}AӉ9Ѝ/2Y P0x)sʸ(dzh t3&^3*TDp[,ԀG`{c~‘s @mzszcGr1ɡ A7 ~A,‚GU3v #TAypRْTW/Zqc .RhMp`JƼ3YD[ S"$eA%h !#Axx+urHg 9wX9^G18Njosqȕ,E;Td0Pߌ)@s|qkN-([4#l*LP Xtw,.~|3kwXr\.Y\( .`&X;pŔ6m{X7KC-Q.Y]`y58hX&O6G*{$S6> ͣ$9v `eƱR,E2UBL9&*/hDUI K 8}I`%ۊnT B~T< aoEƺYmuE&Pa~-1eͮ`u6Qyioo1Hg a#DBxh1K#6-?RK.Ub?&Nqtg 4'ZdEZ4 yPs-FчGsϑ' 65"Kg{qJMI*ҘmVIE͙nvb\^rn &Q\e h,B$^F9[Wa}՗RIQ(o\X5mӮ+,H )r ^0X;'\yt|*oXUf&&Mús|? ?g {젽6RuPp v\_fqߞ콶g;!y[: ;HwHa 0@_ėzsJq3GrYٙ&~HoPܥ+ %kG |l@PV]%0+>W$Dn$aϝv1HUaw6 GE%虥bI4< [nޮ\q,R 4O!ӓ)mʅuݰZ*:Lm"pBA$hZD+R_X'ۥDQ^G,\&R`PJ.+^퉢ӿ.|ĕq +皅 }6mDNײHHŒf4+ᄐY´8f<=)hOf)} x`o{D@~|`rWL$We4vJS=EYQęd^GP U#~+EƉ;Ib7w:6MSP;U6rKsB^ {yjEx$ ]Kn7 Jy\2)58"WlP)enɅD;Y74v9*M?+Z W+,j h$(2clRnx VI2CgJ"Lnu,Ͷ,>6CJ<ڛFͥu.;eqdg$SظQgvޕ&4)(؁N"F}QE+8]N&D`.Y{+fRh\Ah+1|[b8hIޗj0D=Tn^3ףW~qQe0g'9|Dz_[ !,!#-R/~{v noAò^ˍv{^t|,F2 [X/blqQ] (M!釁Rsv | as7hgs45h0] Kq(ท姩X*ߗbBATqZ+*DXg( "H%1d>Ra``~#7^_kyqBa_nnOPJۧ7 x~҅/ W sA }c?h<4w zkM:/5S*FI'1tڄa) 0!Y[S*S5*/@كCdNTȍJ\dc8!N#l&Q@G;{$)) lsۿVeMwV1VIB,&$ܐR=>}OLme<3F<ԖgXcbWP2dIi2Fդ4}ɣ;b1kBoegUQse[AhEx6*uQetN:wz*a50 }&b62P"u^TbjEazreCO7_-9+7Ybt_Gh氲xkA ι>u}KMYrUس TAS)NtNlpȻ=N  77}79Ez з>*S3*ı@ւnwZ!%c Ӆ)LS]Ҕ>H٪<m_3J/+nkZub|HDo6 Ft*y2Si0Z1ft ~CV\Ҳh Β=S#*3K^ƚA`fQ]DVų =Ui-򟩑ؘx_4)A5.eb/d1|qsP!K^Xw[Y%?_Юs~W@>DN̰7 mD 4jYA[5Ό?Jhfpge *:ץ+M^뢽QL_QզCDg/Tq\Iv=R!r$4T#eT>jH"~H 9!%yw&?~G+ʵy֢<+EDgvpqux,")/u#m91X;j?cc9qY'1݊,nL*IkN>Sкj8/@ Mz5 ws1t`֡~k9(ƌ0.%w! s$~7Sщ@ؑ&EjbzzlW|MQdQ5Ȱo>tKr6d\-]o'ԗfFEs?q=<G.\W+sp!5J(* %fwӲXmZoz6F"EaMK2w@himU=~zFۆTzt-D͵hll ;^ǚ4iqF4 <xKp֭ VuŽ 8[qɀ%ET|i+cXYZ?TnX[G՗-i.rHj{m)g?-| *$u LHw"$z+(Qڧa:t%[W9:Ds[P(;|\8+l+BgX.^AX]dh:0gӤCj g%}$rQ>G֜^Nԉ#tJ;CdRCQJ"Eֻ3r8"=<%b-Z=Iϱ[ӣ6?b -~ܶA/_Mq&qضY`2 !#nWE,@X Yh4ʥqT(Pٽ 룰,: o^ә0ΙI[śSz'] ViA > NKW)̊$hhw6̞vyqh)YnC#Z;.=V;]}ϋfϕjf.|(N7~8psţBol̽p܄427ue,>BnT#^>Ou~\/;iUβDF<2o)wN7E>ٕu5ঋk^6"Z(Pw k}!7WЂr8+A|a"KjEYk>ޠ9hV`x{uIe+ }G`˧4y4u_\5ܛ4Y)P{ jASXQrQuoĂ;jL+tS鐏K7  3wݤLN91d"h Xl8M+j*(nO:Gdo$QEֲ@YS5s ד֑dTTf_B Œ;y?XT"e~T%2\]N%>s)ud 7NoNs"z̦(,G]ޫQ5 *Ѭ2GY".Oo^xwYUms8r}n1 Y,wEBt֥qG,+eN ~ƐvtEr6](SQ̀_DJu_̷o4c܊ԃnU/A`ó iQ`ɹckBɸlEH{kr4qMLQ?+UQ[Ԧ2I6U'}VB z#,-qm$.e`gߔ&N`oDll )66k1tZ:Sn.ŵ_}>E`mh6}6m]jyr: h++Pe{ %}7Yczh~Dλ`+b-[Џmmmv3N3\n5Y"nFt:͕^}ǰu:[2?u0^#*(ga`l}פE*gcl}a5^+~.zwmiZ|i d zbGwnƠVuq}Q _V@l;~n]yڰ( +4VlqtRؽW\ ŨJ)uf%WsZx!RvE-lNY?1. hE;d#:>1^RR4nHLI^cXS} 7u ~a.#&mUX 0WOqŦ7Q7$k`5Ҥ,pcTC[Uڪ>'Ѽ&7aQxG#Ifx5{C5'|n0i?Đjrtʪ"͙8W`*czK.e:3Ns鍆}"sx5ҥ5sl"p6Ni MoU Ձfw|10?O)ٽavbG{~t'x7N_,MjR mzT@\'ɬXc XGvt?9Pߊ{ !Xpk0Գ7Y/Cr*Wm|ix Ywd$k9q [8&ֻ nHהBY}}4WU־z4ZO!}¢ nq[$heI4 -^f&LVm4|wMQ'Ƨ-/AAa7-A#iG_@\X1а¿7F8=jk.ݖC0La-\}5 iq kLO_#Q?Khh6K eI6>@U^C4NYoz$ M(*6F 7~X;0~㒊}bg8dl:g(eCfjYCŗFj4SDWCQa@"`fglloc +=zW-&/b1@w!b \p@K=YN*1s#Ǟ߷= g5"6灷xW+K%w@JK?+o 4XSXK#vˤF+͕ӱN+|loO~@aUT8R奔By.$NW ݅~s!oE+XT"U'@122_oi6Aj;?ӶC1 f:W 7*R? #i] pc6qgΔmY['{|f3uq 60p heCa8AA%kB}91^ t;~Xݤ'Q7O2lŰix-s04xE (lyW]qh#[e|zB €_>7y7Qe/Ѥ*Is|QH$gTȴW*㐤r}:[~GV2ߺo~>xnwVW'p,zoD`(-ek<=ė\pO*t35;[/j~@ $B"rU{ߵXe9.$RTf^m_7Hej&< %zז-H 54fؚW` Vj^},:`5'P1w.rY}NGܙE<5Q9Ӧ: UߧW:BU̯7kɗ_W1"&c.K\Oj4?.ꬊL7rYY_JeAN$VfmF$fYo)K1t -明 @Y6)ų›gD;`gc΁Yifu4z$1ݗ0/v>\ nUZmt'AsxҲQJ<:'6g qYd/{t4~vObOC%MO CSh&;CXT>iBH4 >\l[0ĺPҸǧ<ŇyQdA =uR {ԇ%^G/6 R kW%v+(,"ȑ[k7<ӳO`3h2[q6'ڇ fIWk p.2;(cOQiB<7|e얇 Wd+ }teRe/vWtVĉ;ENGY!n>ö,a"1MLmUž1- k ,\,됸1kk#|ċ1="lKT Ԉ2-O04/ϯ;|so{Aq1[v8:"^7u_Al#U\8O31q LeWo{+yzHU{n0%.P8џv{ K8;Tҕ>&T%_YXnVʁѪGf)-]Eh0c7^K|@Ne U%2._TW=(.^Bv.Ym 3#(6yY6yJkF035dĆHk# ][pY銰x*{ۓ0d,{l{˚r-7ċ,rT̝[$w'=< c.eQV,0saeOE=, | & Իb$Cd_Vꏥw(/t94V$]t}~{cHת4&˧sS&n}rm%̧( ၝ;Dg\5XmQWp'|9KWs4'/;aCkZe ;B=[-IbW V[_NAol CgdBoIb-GL/$p vlA9( YP6u =2C/^ɰA; nP Yu]n8>mR|~c+Hy}+5&wُy2@g ~D|TfxNN5`&*=P];ߓCْ"rإW&pUw}^( #$㎅aؼ|c{7|.7Js,Eڷɑc(7(eL.gw'en)pǡC>Nts͡Gv)ʊ'bz_UwKTK.%S4j4aq`khR{ )#SeVCE/d&8(Il,}kj}һ1n,(q,) %5̂b،ā߻ߵ˳*"|We*ʤNgq"o9BNYn;PvEsf(q6#IvFsW\ .XYC0h 1*G]z}*bHR=^[o ba|%ߏ!@ҍg wkX$-< M/_ 7_ЧG:BB^kpWk59!`J߲E<8%lxy 3 N*yțhH)e^5KPSY X]%=MhMPF9g\>5i^=XK7nXʾ'Xk2:U&&j"KRhϬ3U3f֨K%ؚk#3 _{4U0OqxCdߥCykr3̮|x. M*QR=,ϙ 0-ojwe0/b<;Mo?{H:c߭y,yb)9^8"<cc\l|!س'6\rQOWAGkW|ܑ'(r4Wk2 ?Uԏy>Pͩ+֘a^0s }]hoN'iTʺ[NzSbp{25x#'VR0cAάvr|yBF^DZ0}"AM LF6Nj=!vb6Spc"ٽ Wx6ouMc¶}RvrY+ 6OhŞMUГ>7KؖHlՓu.z]RIp|(*9>xDvU;t$>ł󙪴UzK()dxAVRrYպ^nYRlv~>eȍڒXq_> 7 eȡlRq[F5E2#TPʇD4u} idh*]KNÓ#X!VEޕPs&Xw dɮ~,/on{Y=I.G#6+]c6!h>dgEkRoԿC[ɤ7{ffd7ڈI)ZtY/Zwl`kH}=u욶͠0̭6ɀ@Rj-HPG{Fj*$]s1R3W2 x?ߛn~Jޟ;Awlg/pl|p w|)ʯ;e6.zidVPCD<;_TN$jSV}X̲qPzn;*ڛ-uhlw4zKPz?)tO}ԒL٤Ǎkr5?8|i?>4[$c J<%>^ZdR]>b+ K@0Kh"^WOP26WoQ"滻cR>(.a>ܓ1¥ebS*pBhI?np> q<whW ~BfQ SR<6Borcl3yHHΎt+1*W0{{ J-m8W4xv!) x1(tl4DJ$"qm4(\8Q{ANç%ٛ$lX6Hd (n2fsZO@OQ&ѠPyYٚϷR19D q׷<^˨(4-o-_+cJ#2 g L+svR;. e4.pK& [*h-C=zh I|YxKa7%F[dE|xp6w*BU/d V!Le]&'ĺL[qѱ_N\ڶY8銯EbʒT 7+zj>` ךg=_'#ŜIz#9^;l6٭@Gt.T8۽qO#NKdAIid 6kPАGb&ᓚ8Y#5s3uIGжh)Wj^_ݬMQx$9(՗+bYY [IS<=)al*kV6ϭm10KbZE npH~L l :WIZyDMB;[(➶r*<@f0fiMei%6G amlt~őVQU[6Dgirs1G)vSÇ\NU襤[rЫE|Xk!#8CSvKOƙſawRSQ-}IX $I.%ML<^LRzݖcBBz^R\IfstBkVHը?3 VX48pf'>e&A@XC@۝>hXedRU)_]T '=z'$įw:]OT* w} pʪv ^y-;6傲|J{}b`pGD2$aMg+tH˝,[̒1gz")UKW3a{cwN1Y+fxT" 8{t=,QSje3r7;S&N+ȿ%g'ʦ/UZ"-+lt]t:OpQ,,4øõ<-d(]Lœ -K׫.?^BnL3Jk0U>0n ΡM8jҧ7 S+Ɋi8UB|I!%8G h;nn-DioO .;G5k,Xe ,3lS{s?@&'`lKĽLhk5 2Rɿz #Cv6>:6R[QK<մK鷈L\P8em@9CEī k6/ꘘ+.$#nb_6:\ }u\XF 2nj0|`ܸ5(rԗ V{N-ςz1 Ml$ZIq7pYyHq;-E]X˘#Ƌwzҙ 텰`qW:]K{Ov^~hӜ-^Ǟ%kcdKdjN+'%*PU_/kWgjn/n @ŵqw: hY5:).O 0.S~Gy BD(rɶ li,+U+(Ie_ѝE3?SőT}yO_?@N ,<6R~t-po0lLJ"q՜֞_SVYb?(s|1*-}r [f g3TJnJq3׋'fW+&8 WҀ1RJ^z%7Nk.ӝ[K V!Bɛ ȵHt8Ϝ#DZ;{¬wn ԕNJI;s V+IpZHaUm"H:8|E猦fؗ9Eg1Sc襚Qb*, Ʈ[+ ե- U~s:œ*쥾 2=جrZRUjP_(@zt띰 Qڡn5+;@k!jLI K z "l/[>JQc 3KE\{ KCHfl_0yHM= \L:+DUTZ] TR"i٠XLO?-/(6wvY0+4 1V$/IyTǠJbit8ʝJ)QkzΏ_FA*ծ]dnsp. A6zM)5䜸?ʋ7I!8p$̂~0Oh֬mg?ܙOb:VN8QB4_jvRf7i7 K@&ASIѩA:|/=% %Njc -m̒hdh}Gl0v0|>ⴝojj9>Q󥠮+!ep6")Q'_zS`[8l-gpvm&D52lW0ѹ(ac HHY_/Wl.4?t4D}a 9'P vLRo7{8a)&[^wY#5.3T`TDYk'۞qZgSI=6mu t=٩,HxnSBp2T2 1EsU>S Hǣ&mD`Õ*cR[F\P͡E8SF\wg;9׺X9CX t-֌.uK+l'0mE3(F^J71= @0/(GGNXe1*عpztWɓ! >nmli>귓 ,|tAoDbE?E<}Ӂ%3ypO;{4Hx ~"cb[Lp9`~OkU/v=7"ikIuD9p<2'8#zuh89{1D}Zoܘ{UNhdQAd^` 2vB'.tpUrp_Qiv=/BZ8? NM궣sȻByh[|̃mTLZc^M#UiˁS%05kpWG^ Ƴk䤤簑奰zc6~`xt±xMwv98bϭMsQCBm:C-B.X`&0f5CLO} <]/;%ܲxj ![Wx}'%?sD[RhM='HD>JM( T({]:}5 IzU+H<㢏buö~ί\!{6WH'<(Kgp_(T3ݩ=5!0湿xAބ02*I-(=D=?_,\l{@^(Yt`z,R w70B]?I CteA[j4j\^WEpP3krbFA.dU_r_L z+4ѠéեS9$n=uXl ^iՈGh)Ҭh]w-ֱw{{DZ*,5gQXIvcVC8#PX8a]޼al#g3T֕\QdH |G@'QҐDH2O1ݿM?WĆ6U|y=  kvE:`!hK*$A :y& >~i u΂ԸyO8S\KſU(]rKG ttJDpz\d%)@]2x nTOV4z@}pU<MOf4]+: SKFp 7?е#㹻bέ<:spgl)^X¡$`z&ZI~9ja@rnJ< 7ţOnt &1zݫ2Y1 ;"T%kQ}jڍŸ #v%1gQ)ZI9U@N n71x.ld4oD3~&;f!ݬeqŁzCsG&@zרsIRKrχ`ꍵ?#bX~' r\Lp9kp;s(; F?a bټ2#5!x{%MQ`^2<,HаjDWs6h12ɚE~*~9jyi3 ,]/X2$u1VGGa@ޘ U#`lX*T}` r.P@\w0*mL=XU"*@"p}t̳Ɵv@K%yf(*ѽix>B柺FlzDNx`gir>llf ,ER)Զxo*Iq(NGD{U9-ˀ_6+JEEZAJ{*`Zڲ|5I"r\ǯ׀Gڠo .R%:Kb,C7,zTp ܇Z(^Q5Vv&ץz~p.e 5VcYǮJ.UtG3*F4󏭲Tb}Fy *MKoO }\kqj1BFM5R4֎)drπb(Jm?3h*f k;潞M^CO^p̬arcg̚zUFNs9 <Π%',{̪܅"F = d*R[4inʰgPl_Bj[!^V;Y#䀽slVI!]t87ʽC85MSjEl/<:=@g޺f>8,$R^:/-KCvRfʼ|}Vp:FlV+l̶Ue s˻!Ɂb皗(<ܿ.{1c$<-To Z5 }6 hw rG3 H|՞={>?Y|7'n &'N+ZDU+hX=5J$cO|5Ŏ*+DqFUF)DĴ4sЅ$ *c>o1\d ׃J2 t1tMUH䲒Ju$:K&.y~Ex rʜܪTގl{#8qqJ~iQDL>W8l g R Ybyܤݫiw,h2>}{xͮJt`~#J9p8(1,Ϩ~eE@}`5j%Acn4QagPޞs2'aFԹfUs®O܊H}acnȜϵpD%=P^w` J X!ZyMXf |P&`%4OiАe=?9ó} 'FTA{m)Bh9xqOr='a)ێ4ޘ(OR$1`A9=VnR/>Y%ĵEhN$gG^=dnOtDMŀ`gM>lܐgXq*_bNzGz.Gzm׳q4DJ͔bb?ʷG^0W?~:11$e$X}ډ0|C%ɍ~Jx`j?NDqnd/qrwocwc =.=`i1>1EK+D[-o[u>Q*mC'mdK ڏ"3!JA!s`|)@u[q6JS`8ط_Y̙3;O7H?£=yC)9UH:c 6{FP!Na1_$+gcc2dѡ?+ᵃ|!;ZLU&oU^?!.z$9fs1&ɒcpt񦥉\r$WF(v0Cf(p kQv2LT78{BY=`8g?T jKjFnA^q :q8jOɱqi0UHveT #;, Ăe@QM +X@OGk4Џƽ:Ѥzy3R P>Gʬ%Uq6 ,zA=|n|͢SKbFXNOV ^% EEQ!-./t ;7XlΝeKH{p5wSJ 8ƈT}`p/< XlmWbT"ЯC4"[+hDafרiЪ|XIa:*qo/i}0t6r׻K/2 6+d773Opsm$&Z 뼘EOozh,0es[^BK.kT-sM[:Җk#%϶-z**󁦊I-^%OWLĮLb[$T $^l(F\oiDV̶57a}[=|6h=2FƱqהʞ,0ilQM8җ\P$N wW6\R<Գg%$wvYY E_-$}[=y#^E_*e]u0͌`Zml#T8oS>q-k/$v*ӨH/G8`)(T@:6^y73&,Lq())BY-kS"~oq֣zXqnJ c(E-e- :&j$}!~p.{ ,"eBþhJ+GY{8a1MD0PcZtܨBɌ*E"E5fά=$^r9Mj8z^qcbcސHᯈ <[AJ%[!TWu 'eo3> ^8Wv Sw@?\R{;Js&7yc{8hjW„S D<3hYHxMCmn {~"yKE6:=!t407LA8\*Wca>}[7۲݄p mń.IZFO^'@\qGYÊGM?i 7-,jî6Ax4681J+ :7W-2뤴1*7" l~I*276jN!"̼~Deeg#R ?fWM̊f;]txHkVYB:/z bS.c]`4G1ԧ7wx9[E*KU 9~TACff395Q:f;L߁i͆]2So$cf|-^M^SBJ7to_[(GM ?w!mx(n%:jȎBCycެ*3wq SBV&kC\ґ)  sy2*dԻ)7FYϩeK]1׉P|mh'zІ[AXM0`Xfgnݷ?%l _h< .҉clY % 25ՈUn^pŶ%zh)TSwnүI&rW 0,IK_3P` DΒ6#Y7'yjѰ&X+7J@c[{LD8<^E|Y,;^mk4,J=*Bxfo_LZ#B+G$SxfH]ݭ<`5$HF[4B}4m0ؚw_%"|bH}Q~&UaRZ0GDQN[=怖_p''OqN_8ٜ*W_#TN2=cNs9+W򢿠C\QsRklyUYYo̢b=pcGסǰm/yulBkfmkbb(.h ;NDZn~p(#Υ'ɷߊ@zk86q>&xbՏ֡7?<ʺDy0H x?6 s+^'W s3C#{Tν;Ѳ|͍si,YsW6u- :4YjI8j|MOkB{['5U-Ӯ7d=ycq5>ZLDVLʀuuU~ӆ_tX1dIF|gŠ'E Y[ ĻQb0=tρKjWvR|XhT˒lF/g%VIYx;ע2*:YBMkz f9~axz¸ott:HPx QYd3OP9M,q/1끤CJ}gm;'_e`cFa+F(9rE! (]f3?ϻ|(,Ko|Qk g |/mt!.͋ϑ0kyU 0N@̂qȕWM.[zdqG}܇3M%-v4TUGfޙjR \ԇ-]OL$j/[nFqHJ TFϱoBռw-%:R/_ەS٥a춈oﺃ(E]:=G9OMaYcW7WKOoH8g-zRGp# 3q8^sH9nU1!Vqݷ=ii} m۱J"W5\B&tS椐(gUmsh6QNsE-MƩ<\{ #v}Pj5<_}_֥r'A|2RjLbl S %__T\ ̵Ago{q3Ų /'Q .ND]V#逹%Ȑ?NY_Wɒ~&%wwΧ IM z- n@5ss$<˰K߲%ʡC5 p~B];*ha t,[97k1l9^.zc W>Oo[V@ +3"3Jm4oƊrɳ !crSJŔ'U!4f"8cr&7B 4.9|̊ qԂ߷#!ы.^e$ zR>EyNWg~&}1 ;CD /Ƙ ň[ePלt=u(e ܯdԩD4NeAd3ʹȇiFD蜻 :jco\%<ŕtQ|3MPNRU\ NђבTO2Z5&QC͇Xyk$J`⮛>e0j8+n[2=)BC?Q"elt0ʅ޳9klؾ2a1 _s_n*Ǐ N_!l<K,YDjT`2k~*FVY݁Jk'f1hIV .mӶiD,j[ܴq^2pU?lK'@4xuO΋HRc3 O+ .=t4Pt-F3띓^a1{Ah8*4sF|70Yfiߣ8z _v(]ǪҷBI}w3W aʾch.E"c0a)DJ7JJ?M@͆uYUSw@|C84[(*@PBJ(y#!lFIQ9޷X93yp4E'40V=,z|{s\&2 bKX $g x;f2OcffZ|vTjo73('M*u#?&ryȢ&^\Klb;?X7y;ϵJVS_&e8󭛩.$&ғ PA#|~m߯Kh>0c g 1bMR!Է)nؓNe&WR3p܃}_-@ٷ7MX/?f{࿄ZbcUc޳ȵw-7S2"!SUܫ3R~KW$m 2|礍ڼcLH9TWeLbKv6\ 8Krh%u]ґ1CxC5"KYepO,P]q171c{΋lD*c}YKs]py5b9Z<r3,*p)d*-Ms?U725E(=W fdD}gii3f;/ ,m OGaVf 0用X!Vdb2L ʿ)l:T  V3m-!;h=О k"0OZ4[KE={$C=XĖQTzĚDF]mAO{8X-%zӚ;5/L`uYp ha#YT-GM4^S˳$Tr?IA^i%+}-`(j@c2'ya=*~w!YYY)Vq-ـ1kuO],HK `˛3[o-s|:64:}UOwp9YLz N~3<'NY*(LxűgP*QYo;xAB]Tbh $OR#8\o $4y͑A%"'yDjsUBvu 4J@< mD68fߙP#&#|Fr\2~pb{!ۦ x;j*x:v VNڷޝ~F謎e s^o Db 1|Z51kH,錙PA+H.}R,z3(c;SI-.n?]^u{r;=Ի4,(Vy>8(j[ Pa `8/S Vt;SS9S:Sf9OĄ5)=PZ5:j:3?Y=Z!gl`=D5G?@K=/1q]!.j@m$/]$q>ÓVٚm\dsVn?Qӓ嫵?3,iwhz.KaS-|PH4N<1H:6O²l l9-v|PiA>gD'}sRWU`#7M- EmcЪvaFw1]j2/nœ!l%%VI_50z'ЋVIR++]{Rլ4b(xs$&\OX?ݛrs&y84\K""p/EJlۖ dHjX dt"٭&i/xq(Nw&ce8(=[B*Aixؚo(2H%3mՈXJ|vRs>htUT$E5B%!4QGKxX-]Ċ2  w>HtP8 rQ% JYgOu>e\|u >_:*enb)ha-ې(|eynjL!ūSbSB!ܝ:4z G]+Ԋ^6^k(d^:<cw3Ďu!_:] \*m5tg %gņZ$7:;*~C)PF'`>f'ׂ﨓BG x +c1 n./)"Њ{]}j[*4bcLw?R6D0R}8[H * 1ӎBSFJBʃ>5ߧz]@-l۫F.\vt*s!bRo&' I$L%A x\vk1/$jri3tt=ʮI҆#K=w80|7XƏ2A=cϩ/`eDny7Bh(^@^GpuCpn;W\I%f`M!DC)`FhdCQs]_^[u *& ka{[-$whsROwR/۱Q(*1e$Hָ E3WS™@FٲSV087o|IМf-3%.J,V@ֶ7Y,HX 5n8oᚘyJnC_@Aӛ|TA0/hyDH e*x pn%A YPԫYwRBy{$>S|MdmUa% mke%tp/{ tw+}`t-)kjz WͤXR oOl4rtЧBљJK<}ȫx(P K-˯MRӳRFAƣm-I/o;M Gt: FNbX!:SIfs#:xg:犇;D}Tp7=lv{s*Xjd f>yor-3_f%VZ ul`mΓ$!*._C+q(x1u΢ٔY&Fifj85|z_k6Z#m\<7^6噑8# 3.ʯʃ v`:LR04vp$C$L$$85fw A!Q D\{|/Onʼn^7:\6f#dblXeoRRu[2'K9,BFRRnGsiǕBp_geLh5S*MQRH$ Dt:|OAJ`p>! Gxk)Ũ3򳀮 YirieW61kW$^<gdz4tc'_?L'c%Y` z;,:%. -;1w>,X!u.{E=\pIɆOzR׺UIA`}DS |^zR#D%aBҦ]ul>n_p` c_b%%+e=IyߞPfOS̠ bՁ+)MVP)V B6#^ʍr|WtBkñsa! !B@|eL3eE/|>0eJDުg805D m+*{Y?UU$| oVUFf 29@9}b.UE^bGO ~d'^HVτt̜zҵ̿u#7(☣"jRf:ZH_ZGؕb.8aB}fnp>[ W1`Eˑ:LHfi2h=Ye=W4RSeZΘexXmx__OφW\) s-Ipi)^3mY#Gᕄ>j8#%$t|) Z*{\52R9O@8yHkE7\c:+`;)0H/bŦFVρ/tE* o*@#P!3RFR"ϵ)xXϔ"5Zr|Q g7NSYhƺJ,(GRl R'GOGmwexUdMʩ⌭ tsȑw`SF]ċXr, qtu,PY]6Tt'kMt+mC^б+8;rͩZKZEiPsQQa M5)^ `Q9CcpЙD4wUœf #9N*aAig \hpJQfCJK%Uk3߄]EA=z]~ׯr b;K N8y~>?Z*KzEI9%?S4?@suE!4t.|۰9tM¸J%B!SzI/?S?AHm rI'nή8&#-m}u㞲>Roq(_RQao]7']as4XFe܂ DҖt#641N10dD%xh!2rXi7'ɐ8nԎ}gPKt;R޵ ('U}\=r% >x[ z } jL{ R;*9=Ẁ_ev`>D#j~ٻ{UgdB+Je"6CD#ղ`+(5ɵ&V 5as*B!K AWAbRJh>O-o!^rk*EgT"oeB$~ b1D޸TgcaĂ&n:)~+R9|, =z<췑3qȋ a@IufMwK0]Dn4HL5F3py>v8@r܏=t=SPbFH㾅(kg pDtF*_EZ `(KqO?Se`fW?x,V;nmp$FPМ1W@aat|CY*Ta,RZ@ahO1s8 5n^4G I~gxÆ(ZVDTtgW+]W͛-gd!`N|?wz"}Pz^}R/a If/W3űF+Frs'M~fb䱍@IVh^lO!l 'Iw后3L~ZrUo6 Us«uDOY6癪2Md Cp_E2T/HPW>Wg˫QV[xX%hPw4s|.櫞oDPۑQjOI< M⺟Iؖ][V%;4>y7 62\gC`؃Aj+L D7eZUx<9{v7:ͱzA5"mKG&kE6:d^A>}nho*Ip|kGe)\v8(47 ᄝbKI"E1;cs# 9*fc'FGeonv\z}҈~zikܸ-ܻG<(m U4B46EDq5a$> |$ k⿒Jj+=>N vaa-4DhH4X@X`g d:9*f_JH^@XJ᡹/Q$C@xm |ӂ]a.d['=)ݻshn\tfc{Eg[XW+ qOG[~=hKϧ> .;XIcbmd+maZa)Šo/SOC7 >+yx\s2[Zɼ+f PPIJ˃.8nI+cZ qǨ98/$iosT+$ 8X;yT*8f6qV_I ;3ۇS^L9F!<"$}7,~'*99Q%9G2FgGcBK};++O]TCE\9]c<ڭ X#~5Ӽ^&<כw=_*XX5Wz*?G8+fVGG%-L{'&B og#t?^.<3SֻO 5"I SQ}Af%>s bgb1O2eAAh'詁Ӈ׷,tX$p@)ru puҷ-~ЇNg'K?DaĨ sP;)帰i %.}R"5F!܅o70J_52 9O +Td+0\\w!SК=$t2<+8_{/j*߫#xJns5Hf,Htg[Aǧ<1M( Cax-ko0 ow J ZNh%SLEG*|t1կ7/W(?\X )>66;ڞYZ)STr{L_:Ws,16A'4j اIt3$nrY m4^+2' 9k.\X%e9EXYI2R#I''g￀oLd:*S}Y"cهBYu ?pD`90Q{[kB^-|Ahm%~0`/8b,lW~gCaW;&yFESr_in\sTvm\@fb lOί< ?"/(  X NhhRF3>w~ &KJUS2wlx*1tݩm,x;RQnB)Z1(\g|Ϧqcrx^᱕vоN;Ok4M᳼I՗k:_!c|(VnGh&4@|`(~ sI.YxM(4LA0XT= FY"/,t4 ӡ=Y=(Uޘ)Q'i*遐^!o*m,Gv(щ]DՓ_QLH6̀ոhk]+;i{ƖDNǛĉˣЬ QcBlniWF$ rAR]^P *^!oΝ/*ތ٣-a^?8gf/u 0ǥauGދ{$I8 Ӛ EYy3c̼vao8oUNR7nϧ5db2w4<꺍cᜎ<#D]q%aZm{tWt{I.mN Ia@΃"6C8>L GfSdO4F!o\9,%sW[l])?Caf%0drQwWLdN쌟z0|"b Wjs6F56<62ea>޽tZxMP~e6 ͯZ`O Gp0D 3[hإ&[-2g t@fLs<7J-vQ/I$%? |1H$^B2rv`J+pO[Mo=2e;͖aC;?\~3)Ggtx_я{I۾?:p)j Dޫ}^x`<]B^"Ԉ~;x{(/qT|M4^K Wk_Ybf޳ԣL7?CD%=>2"i;N>N[<CR1blg|c $?{iga p4fY[Oyգ~Sr64jgVO/v1BHbS/>:j ɧGSnI=bg$21EMuV5Hg3 TJ, s*=DikՈZpJT2ۚ#4t&F牺HO,@.N~#L R@'Eܫ6EMVf ,ngL 5n%bLP7gc9m_ xSa&:b!kgx ,zN|1qW߰_E :9Vmd:?ʠ8e|::,̤Gr5ZKԁƄT=HW: )x, ;idqQ7k'Y9 4b.*Ԅܚ4l]{)ucx\<+0JV)}-UiF#XX-BguUcjXrU\{gPUKb_BIb=|DtK#+aܢZxD2M " ,I-: W~lYky;TPƏ 3Fxi RCNw,ɘ4Y5oJ%A/8p?7*vB+P$A <5\YV$a]>5 ,j6:՟1pi6wu(YJ$VLzY$E2 9Ӣy\2뮫½އԢ,\jД]'ZEd]t2'Jܤ)>SLsd\|-s$V FJWӾFSӚ諔 %K\gF C}ُh-g *')CL?Hϫ"iޘzeOX7ܒ94|1?j00ДKX\Wzk;֎UO^'DdRuXDSwa_|hǘwPB~%Wވ#L w)j= E4)ua-|?8TPqKpBOTlh^0#bwc:o% <CLJuů}ʦUe!8Fgvɶ"ۿ;M̙ q[ 0BK - Vd?A>5nߢ,j*OMzoUTyZ6 !}>O=אd7Gf6{|~\|{;L\akLP3],cns٥V%ΘRNOӡ`բf1#:c?BUW_9o:=IGSRFHס+90nH2jMzMtKݼ9j-Վ>H7X C#M ADŗ%LˀI3]4=EYØ3bhhA1;y(Avk3<椈;2̂ sȳ-.z-4O,6q5,!Lbc4v@~L6.fTAD\Sxiu5k (Sۚk'm]bZq\zB$+-sB X}\bXֲ5T.YpB]4T|I "-g\W w 1h<\Q6]q=?M^YHѹ&, GYcd.pHZmyvHʹt4;2~o$)Js%Tr}aS|fd1[y#2v¸۟ \bRZGAQʙB[BR>Kp5> |T"8ƌ!#W#޴QПSGHu$PjJS#A2!i |ghb~􁁞,h|U3"uQ ߓҘE?iFtc*C9C'!9E8LpP,3h@;A4p7P)4OT7 z хBʲn y`}MR`;ʶ~U_T却,q".tRŋt}oe|i;Y!9 yT$ֆ;N-݈|z< C&yMxRnL󻣁I(g쯤cN5W; Ʋ]|}Q9pA|ƕmeK>u{1kdraƎ7Xjw'<4ZA#ݕ'StnKXޟ dt*)<@^'!SF ;h_y%7o;WO>}*+B,t(ê{]Ow9uJ#8zM\†a\!Fg>8 x9/;$T0ktBԝ9=c1t.on9̾rG!LB*_W&RΌC4 ~:AU(; l9buc5DT!vS@V.oHΪ'jp&Y?ժ 0FωG0z'CŠRe U 2yՕuRjx AhS}>9П=0HwUlp]+6&\7|Ao(28ޘ]݄ Iprv7! T Ɯeg=kҦ6x_hZ{#ڳ3PDZI*ɼfu-ҥ2Lo0NVs^C@EV79^WM Joc>. n9(ԁ54Q =s=-=)w?uE0qiQmB  hHZb'676R⽁BrO\ lxu h& U_zQh3znܛ@^N:fTҲ}}/@ 5^tg6'ЎϠ`2]?]}}e(l -,IQ/>kAQEZ%Qyat(2;nWTV1U@s {^3aLO6[ X6Zܴltj@WlCHDȋCe^w\/);u+QsTYD05S)fy骷f?ߩ_"*1x|ih93,4v!wikìg;w&F3r )2̎jsN-kGL!/1΃tyJ/b=kw㪔vt),G_۶ v 44j #?O$~Llw2࠿Ħ.E09nMvmO ;?,'We=,xlYXvG-A[rm9~c'AtuAOh͛mII 8i 4UΪ!>IK~`]J8c.kt!^vxyjLDI Al5/ت 7fkV\IcOŝ?z~"PZ<;G+b_ω,x<n.;q Bc74e0u: YZ