kernel-tools-debuginfo-4.19.90-2407.1.0.0284.oe2003sp40>    f= ;G|`u` . A #}ir׆L.V2>"+׼&iƿ"wmeBo e@ZGh?+sq L/vFet׊{mUP6 8s$ޘdezç{+U/TJ BY3Hm(' }?etQ9jl?j\d! 9 d04: Oax~   <   X \(#8,090:0F\G\H](I]dX]tY]|\]]]^`ba^dbIebNfbQlbStbpubvb zij jjjXCkernel-tools-debuginfo4.19.902407.1.0.0284.oe2003sp4Debug information for package kernel-toolsThis package provides debug information for package kernel-tools. Debug information is useful when developing applications that use this package or when debugging this package.fdc-64g.compass-cix`GPLv2http://openeuler.orgDevelopment/Debughttp://www.kernel.org/linuxaarch64`glfi4 ︁AAA$$$$$$$$A$f[f[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-4.19.90-2407.1.0.0284.oe2003sp4.src.rpmkernel-tools-debuginfokernel-tools-debuginfo(aarch-64)    rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)3.0.4-14.6.0-14.0-15.2-14.15.1ff|fqvfifh<@f`S@fWfM@fDf:f(@ff-f @ee@eZeeeBeeee@eeee@exK@epb@ek@ee@ee@eae_>e]@e[J@e[J@eWUeWUeTeSa@eSa@eReReN@eLeJ&chenyi - 4.19.90-2407.1.0.0284chenyi - 4.19.90-2406.4.0.0283chenyi - 4.19.90-2406.3.0.0282chenyi - 4.19.90-2406.2.0.0281chenyi - 4.19.90-2406.1.0.0280chenyi - 4.19.90-2406.1.0.0279chenyi - 4.19.90-2405.5.0.0278hongrongxuan - 4.19.90-2405.4.0.0277chenyi - 4.19.90-2405.3.0.0276chenyi - 4.19.90-2405.1.0.0275chenyi - 4.19.90-2404.3.0.0274chenyi - 4.19.90-2404.2.0.0273hongrongxuan - 4.19.90-2404.1.0.0272hongrongxuan - 4.19.90-2403.4.0.0271hongrongxuan - 4.19.90-2403.3.0.0270hongrongxuan - 4.19.90-2403.2.0.0269hongrongxuan - 4.19.90-2403.1.0.0268hongrongxuan - 4.19.90-2402.6.0.0267hongrongxuan - 4.19.90-2402.5.0.0266yangjunshuo - 4.19.90-2402.4.0.0265hongrongxuan - 4.19.90-2402.4.0.0264hongrongxuan - 4.19.90-2402.1.0.0263hongrongxuan - 4.19.90-2401.5.0.0262YunYi Yang - 4.19.90-2401.4.0.0261YunYi Yang - 4.19.90-2401.3.0.0260YunYi Yang - 4.19.90-2401.1.0.0259YunYi Yang - 4.19.90-2312.6.0.0258YunYi Yang - 4.19.90-2312.4.0.0257YunYi Yang - 4.19.90-2312.3.0.0256YunYi Yang - 4.19.90-2312.1.0.0255Zhang Mingqian - 4.19.90-2311.5.0.0254Yuan Zhang - 4.19.90-2311.5.0.0253Li Xiaodong - 4.19.90-2311.5.0.0252Zhou Kaiqi - 4.19.90-2311.4.0.0251Keyi Zhong - 4.19.90-2311.4.0.0250Luo Shengwei - 4.19.90-2311.4.0.0249YunYi Yang - 4.19.90-2311.3.0.0248Yu Liao - 4.19.90-2311.3.0.0247Zhou Kaiqi - 4.19.90-2311.3.0.0246Li Xiaodong - 4.19.90-2311.3.0.0245Luo Shengwei - 4.19.90-2311.3.0.0244YunYi Yang - 4.19.90-2311.2.0.0243Li Xiaodong - 4.19.90-2311.2.0.0242mingqian218472 - 4.19.90-2311.1.0.0241Yu Liao - 4.19.90-2311.1.0.0240hongrongxuan - 4.19.90-2311.1.0.0239Kunkun Jiang - 4.19.90-2311.1.0.0238YaQiang Chen - 4.19.90-2311.1.0.0237- !9629 stm class: Fix a double free in stm_register_device() - !9646 phonet: fix rtm_phonet_notify() skb allocation - !9628 m68k: Fix spinlock race in kernel thread creation - !9623 v2 net/nfc/rawsock.c: fix a permission check bug - !9648 backport two patches from 5.10 to fix some bugs for GuestOS - !9617 mac80211: track only QoS data frames for admission control - !9637 ipv6: sr: fix invalid unregister error path - !9607 enic: Validate length of nl attributes in enic_set_vf_port - !9606 drm/nouveau: fix off by one in BIOS boundary checking - !9605 scsi: bfa: Ensure the copied buf is NUL terminated - irqchip: gic-v3: Collection table support muti pages - scsi: virtio_scsi: limit number of hw queues by nr_cpu_ids - phonet: fix rtm_phonet_notify() skb allocation - ipv6: sr: fix invalid unregister error path - stm class: Fix a double free in stm_register_device() - m68k: Fix spinlock race in kernel thread creation - !9076 RDMA/cma: Ensure rdma_addr_cancel() happens before issuing more requests - net/nfc/rawsock.c: fix a permission check bug - mac80211: track only QoS data frames for admission control - enic: Validate length of nl attributes in enic_set_vf_port - drm/nouveau: fix off by one in BIOS boundary checking - !9600 CVE-2024-38597 - scsi: bfa: Ensure the copied buf is NUL terminated - !9409 drm/mediatek: Add 0 size check to mtk_drm_gem_obj - !9452 jffs2: prevent xattr node from overflowing the eraseblock - eth: sungem: remove .ndo_poll_controller to avoid deadlocks - net: fec: remove .ndo_poll_controller to avoid deadlocks - !8163 v2 mmc: sdio: fix possible resource leaks in some error paths - !9535 igbvf: fix double free in `igbvf_probe` - !9590 s390/ap: Fix crash in AP internal function modify_bitmap() - !9584 ipvlan: Dont Use skb->sk in ipvlan_process_v{4,6}_outbound - !9537 virtio: delete vq in vp_find_vqs_msix() when request_irq() fails - !9585 net/mlx5e: Avoid field-overflowing memcpy() - s390/ap: Fix crash in AP internal function modify_bitmap() - net/mlx5e: Avoid field-overflowing memcpy() - ipvlan: Dont Use skb->sk in ipvlan_process_v{4,6}_outbound - !9534 rpmsg: char: Fix race between the release of rpmsg_ctrldev and cdev - !9419 mm/migrate: set swap entry values of THP tail pages properly. - !9560 net: systemport: Add global locking for descriptor lifecycle - !9526 media: lgdt3306a: Add a check against null-pointer-def - !9539 ext4: fix mb_cache_entry's e_refcnt leak in ext4_xattr_block_cache_find() - net: systemport: Add global locking for descriptor lifecycle - !9340 serial: max3100: Lock port->lock when calling uart_handle_cts_change() - !9330 ASoC: ops: Reject out of bounds values in snd_soc_put_xr_sx() - !9382 serial: max3100: Update uart_driver_registered on driver removal - !9503 v2 watchdog: cpu5wdt.c: Fix use-after-free bug caused by cpu5wdt_trigger - !9464 quota: Fix rcu annotations of inode dquot pointers - !9530 v2 Backport LTS patches - ext4: fix mb_cache_entry's e_refcnt leak in ext4_xattr_block_cache_find() - virtio: delete vq in vp_find_vqs_msix() when request_irq() fails - !9435 fix CVE-2024-38621 - igbvf: fix double free in `igbvf_probe` - rpmsg: char: Fix race between the release of rpmsg_ctrldev and cdev - !9381 vfio/pci: fix potential memory leak in vfio_intx_enable() - !9497 netrom: fix possible dead-lock in nr_rt_ioctl() - pinctrl: devicetree: fix refcount leak in pinctrl_dt_to_map() - pinctrl: devicetree: fix null pointer dereferencing in pinctrl_dt_to_map - media: lgdt3306a: Add a check against null-pointer-def - !9505 CVE-2024-38587 - !9473 um: Add winch to winch_handlers before registering winch IRQ - !9407 drm/arm/malidp: fix a possible null pointer dereference - !9400 Fix CVE-2024-31076 - speakup: Fix sizeof() vs ARRAY_SIZE() bug - !9439 CVE-2022-48715 - !9133 net: ethernet: fix potential use-after-free in ec_bhf_remove - watchdog: cpu5wdt.c: Fix use-after-free bug caused by cpu5wdt_trigger - netrom: fix possible dead-lock in nr_rt_ioctl() - !9265 ring-buffer: Fix a race between readers and resize checks - !9390 NFS: Fix an off by one in root_nfs_cat() - um: Add winch to winch_handlers before registering winch IRQ - quota: Fix rcu annotations of inode dquot pointers - fs/quota: erase unused but set variable warning - jffs2: prevent xattr node from overflowing the eraseblock - scsi: bnx2fc: Make bnx2fc_recv_frame() mp safe - media: stk1160: fix bounds checking in stk1160_copy_video() - mm/migrate: set swap entry values of THP tail pages properly. - drm/mediatek: Add 0 size check to mtk_drm_gem_obj - drm/arm/malidp: fix a possible null pointer dereference - genirq/cpuhotplug, x86/vector: Prevent vector leak during CPU offline - NFS: Fix an off by one in root_nfs_cat() - serial: max3100: Update uart_driver_registered on driver removal - vfio/pci: fix potential memory leak in vfio_intx_enable() - serial: max3100: Lock port->lock when calling uart_handle_cts_change() - ASoC: ops: Reject out of bounds values in snd_soc_put_xr_sx() - ring-buffer: Fix a race between readers and resize checks - net: ethernet: fix potential use-after-free in ec_bhf_remove - RDMA/cma: Ensure rdma_addr_cancel() happens before issuing more requests - mmc: sdio: fix possible resource leaks in some error paths- !9471 CVE-2021-47434 - xhci: Fix commad ring abort, write all 64 bits to CRCR register. - xhci: Fix command ring pointer corruption while aborting a command - !8935 wifi: nl80211: don't free NULL coalescing rule - !9444 CVE-2022-48737 - !8493 rpmsg: virtio: Free driver_override when rpmsg_remove() - !8473 scsi: mpt3sas: Fix kernel panic during drive powercycle test - ASoC: ops: Fix bounds check for _sx controls - ASoC: ops: Reject out of bounds values in snd_soc_put_volsw_sx() - !9322 drm/amd/display: Fix potential index out of bounds in color transformation function - !9366 macintosh/via-macii: Fix "BUG: sleeping function called from invalid context" - !9392 drm/msm/dsi: invalid parameter check in msm_dsi_phy_enable - !9232 batman-adv: Avoid WARN_ON timing related checks - !9351 Revert "x86/mm/ident_map: Use gbpages only where full GB page should be mapped." - !9393 net: lts v4.311 backport - !9286 mm, vmscan: prevent infinite loop for costly GFP_NOIO | __GFP_RETRY_MAYFAIL allocations - !9206 v2 sched: smart_grid: fix potential NULL pointer dereference - !9314 spi: Fix deadlock when adding SPI controllers on SPI buses - net: sunrpc: Fix an off by one in rpc_sockaddr2uaddr() - ipv6: fib6_rules: flush route cache when rule is changed - drm/msm/dsi: invalid parameter check in msm_dsi_phy_enable - !8360 v2 loop: use lo->lo_disk for kobject_uevent - !9343 firmware: arm_scpi: Fix string overflow in SCPI genpd driver - !9326 af_unix: Fix data races in unix_release_sock/unix_stream_sendmsg - macintosh/via-macii: Fix "BUG: sleeping function called from invalid context" - !9285 of: module: add buffer overflow check in of_modalias() - !9316 CVE-2022-48755 - Revert "x86/mm/ident_map: Use gbpages only where full GB page should be mapped." - !9344 round lts patches - !8769 atl1c: Work around the DMA RX overflow issue - !9292 net: bridge: xmit: make sure we have at least eth header len bytes - net: bridge: fix corrupted ethernet header on multicast-to-unicast - net: bridge: fix multicast-to-unicast with fraglist GSO - net: mark racy access on sk->sk_rcvbuf - net l2tp: drop flow hash on forward - firmware: arm_scpi: Fix string overflow in SCPI genpd driver - af_unix: Fix data races in unix_release_sock/unix_stream_sendmsg - !9324 v2 Linux 4.19.312-313 LTS patches - vxlan: Fix regression when dropping packets due to invalid src addresses - udp: preserve the connected status if only UDP cmsg - vxlan: drop packets from invalid src-address - ipv6: fix race condition between ipv6_get_ifaddr and ipv6_del_addr - SUNRPC: increase size of rpc_wait_queue.qlen from unsigned short to unsigned int - drm/amd/display: Fix potential index out of bounds in color transformation function - powerpc64/bpf: Limit 'ldbrx' to processors compliant with ISA v2.06 - spi: fix kabi breakage in struct spi_controller - spi: Fix deadlock when adding SPI controllers on SPI buses - !9278 CVE-2021-47231 - !8783 v2 arm64 mpam fix patch - !9270 inet_diag: fix kernel-infoleak for UDP sockets - !9140 v2 CVE-2024-36971 - !8847 wl1251: Fix possible buffer overflow in wl1251_cmd_scan - !9260 v3 ftrace: Fix possible use-after-free issue in ftrace_location() - net: bridge: xmit: make sure we have at least eth header len bytes - mm, vmscan: prevent infinite loop for costly GFP_NOIO | __GFP_RETRY_MAYFAIL allocations - of: module: add buffer overflow check in of_modalias() - !9061 iio: mma8452: Fix trigger reference couting - can: mcba_usb_start(): add missing urb->transfer_dma initialization - can: mcba_usb: fix memory leak in mcba_usb - inet_diag: fix kernel-infoleak for UDP sockets - ftrace: Fix possible use-after-free issue in ftrace_location() - !9227 kprobes: Fix possible use-after-free issue on kprobe registration - !9228 coresight: tmc-etf: Fix global-out-of-bounds in tmc_update_etf_buffer() - !9225 can: sja1000: fix use after free in ems_pcmcia_add_card() - !8656 mm, slub: fix potential memoryleak in kmem_cache_open() - !8937 firewire: ohci: mask bus reset interrupts between ISR and bottom half - !8691 Fix page corruption caused by racy check in __free_pages - batman-adv: Avoid WARN_ON timing related checks - coresight: tmc-etf: Fix global-out-of-bounds in tmc_update_etf_buffer() - kprobes: Fix possible use-after-free issue on kprobe registration - can: sja1000: fix use after free in ems_pcmcia_add_card() - !9179 CVE-2021-47232 - !9004 media: ngene: Fix out-of-bounds bug in ngene_command_config_free_buf() - !8130 v2 CVE-2021-47493 - !9006 media: tc358743: register v4l2 async device only after successful setup - !9144 serial: 8250_exar: Don't remove GPIO device on suspend - sched: smart_grid: fix potential NULL pointer dereference - can: j1939: fix Use-after-Free, hold skb ref while in use - can: j1939: transport: j1939_session_tx_dat(): fix use-after-free read in j1939_tp_txtimer() - can: j1939: transport: add j1939_session_skb_find_by_offset() function - !8800 ALSA: usb-audio: Stop parsing channels bits when all channels are found. - !8798 hid: cp2112: Fix duplicate workqueue initialization - !8799 usb: gadget: f_fs: Fix race between aio_cancel() and AIO request complete - serial: 8250_exar: Don't remove GPIO device on suspend - net: fix kabi breakage in struct dst_ops - net: fix __dst_negative_advice() race - iio: mma8452: Fix trigger reference couting - media: tc358743: register v4l2 async device only after successful setup - media: ngene: Fix out-of-bounds bug in ngene_command_config_free_buf() - firewire: ohci: mask bus reset interrupts between ISR and bottom half - wifi: nl80211: don't free NULL coalescing rule - wl1251: Fix possible buffer overflow in wl1251_cmd_scan - ALSA: usb-audio: Stop parsing channels bits when all channels are found. - usb: gadget: f_fs: Fix race between aio_cancel() and AIO request complete - hid: cp2112: Fix duplicate workqueue initialization - arm64/mpam: Fix softlockup when reading mondata - arm64/mpam: Fix wrong seconds to jiffies conversion - arm64/mpam: change allocation mode from GFP_KERNEL to GFP_NOWAIT - mpam/resctrl: Fix use-after-free due to inaccurate refcount of rdtgroup - mpam/resctrl: Clean up resctrl_group_rmdir_[ctrl/mon]() - mpam/resctrl: Clean up unused function parameter in mkdir path - mpam/resctrl: Fix a deadlock due to inaccurate reference - atl1c: Work around the DMA RX overflow issue - Fix page corruption caused by racy check in __free_pages - mm, slub: fix potential memoryleak in kmem_cache_open() - rpmsg: virtio: Free driver_override when rpmsg_remove() - scsi: mpt3sas: Fix kernel panic during drive powercycle test - loop: use lo->lo_disk for kobject_uevent - jbd2: export jbd2_journal_[grab|put]_journal_head - ocfs2: fix a deadlock when commit trans - ocfs2: fix race between searching chunks and release journal_head from buffer_head- !9086 v2 dhugetlb: use rcu lock to protect hpool - !8796 CVE-2023-52810 - !8699 wifi: cfg80211: check A-MSDU format more carefully - !9123 staging: rtl8192e: Fix use after free in _rtl92e_pci_disconnect() - staging: rtl8192e: Fix use after free in _rtl92e_pci_disconnect() - !9005 scsi: bnx2fc: Remove spin_lock_bh while releasing resources after upload - !9113 IB/qib: Protect from buffer - !9119 PCI: aardvark: Fix kernel panic during PIO transfer - !9058 watchdog: Fix possible use-after-free by calling del_timer_sync() - !9053 soc: fsl: qbman: Use raw spinlock for cgr_lock - PCI: aardvark: Fix kernel panic during PIO transfer - PCI: aardvark: Increase polling delay to 1.5s while waiting for PIO response - PCI: aardvark: Don't rely on jiffies while holding spinlock - !9091 RDMA/cma: Fix rdma_resolve_route() memory leak - IB/qib: Fix memory leak in qib_user_sdma_queue_pkts() - IB/qib: Protect from buffer overflow in struct qib_user_sdma_pkt fields - !9037 fix CVE-2021-47509 - RDMA/cma: Fix rdma_resolve_route() memory leak - dhugetlb: use rcu lock to protect hpool - !8291 Fix CVE-2023-52836 - !8574 net: ieee802154: fix null deref in parse dev addr - !9017 misc/libmasm/module: Fix two use after free in ibmasm_init_one - !9045 ALSA: seq: Fix race of snd_seq_timer_open() - !9046 net: rds: fix memory leak in rds_recvmsg - !8632 phy: phy-mtk-tphy: Fix some resource leaks in mtk_phy_init() - !8695 net: macb: fix use after free on rmmod - !4633 Add support for Hygon family 18h model 5h HD-Audio - !9057 CVE-2021-47261 - !8637 dyndbg: fix old BUG_ON in >control parser - !8698 net: batman-adv: fix error handling - !8715 net/sched: act_skbmod: prevent kernel-infoleak - !8775 llc: verify mac len before reading mac header - watchdog: Fix possible use-after-free by calling del_timer_sync() - IB/mlx5: Fix initializing CQ fragments buffer - soc: fsl: qbman: Use raw spinlock for cgr_lock - !9022 wifi: libertas: fix some memleaks in lbs_allocate_cmd_buffer() - !8786 tty: n_gsm: require CAP_NET_ADMIN to attach N_GSM0710 ldisc - !8704 usb: fix various gadget panics on 10gbps cabling - !9013 net: encx24j600: check error in devm_regmap_init_encx24j600 - net: rds: fix memory leak in rds_recvmsg - ALSA: seq: Fix race of snd_seq_timer_open() - !9036 IB/hfi1: Restore allocated resources on failed copyout - !4620 Some fixes for Hygon model 4h~6h processors - !4630 Add support for Hygon model 6h L3 PMU - ALSA: pcm: oss: Limit the period size to 16MB - ALSA: pcm: oss: Fix potential out-of-bounds shift - !8549 batman-adv: Avoid infinite loop trying to resize local TT - !8763 tipc: fix UAF in error path - IB/hfi1: Restore allocated resources on failed copyout - !8956 net: ti: fix UAF in tlan_remove_one - !8959 comedi: vmk80xx: fix bulk-buffer overflow - !8740 CVE-2024-36914 - !8824 igb: Fix use-after-free error during reset - !8987 bna: ensure the copied buf is NUL terminated - !9026 tty: n_gsm: fix possible out-of-bounds in gsm0_receive() - !8923 i40e: Fix NULL pointer dereference in i40e_dbg_dump_desc - !8961 nfp: Fix memory leak in nfp_cpp_area_cache_add() - !8875 drm/vmwgfx: Fix invalid reads in fence signaled events - !8883 scsi: lpfc: Move NPIV's transport unregistration to after resource clean up - tty: n_gsm: fix possible out-of-bounds in gsm0_receive() - wifi: libertas: fix some memleaks in lbs_allocate_cmd_buffer() - misc/libmasm/module: Fix two use after free in ibmasm_init_one - net: encx24j600: check error in devm_regmap_init_encx24j600 - !8998 i2c: acpi: fix resource leak in reconfiguration device addition - scsi: bnx2fc: Remove spin_lock_bh while releasing resources after upload - !8991 clk: mediatek: clk-mt2701: Add check for mtk_alloc_clk_data - !8992 fix CVE-2024-36905 - i2c: acpi: fix resource leak in reconfiguration device addition - !8868 ipv6: prevent NULL dereference in ip6_output() - net: relax socket state check at accept time. - tcp: defer shutdown(SEND_SHUTDOWN) for TCP_SYN_RECV sockets - !8737 ubifs: Set page uptodate in the correct place - !8668 phonet/pep: fix racy skb_queue_empty() use - clk: mediatek: clk-mt2701: Add check for mtk_alloc_clk_data - bna: ensure the copied buf is NUL terminated - nfp: Fix memory leak in nfp_cpp_area_cache_add() - comedi: vmk80xx: fix bulk-buffer overflow - net: ti: fix UAF in tlan_remove_one - i40e: Fix NULL pointer dereference in i40e_dbg_dump_desc - scsi: lpfc: Move NPIV's transport unregistration to after resource clean up - drm/vmwgfx: Fix invalid reads in fence signaled events - ipv6: prevent NULL dereference in ip6_output() - igb: Fix use-after-free error during reset - fs/jfs: Add check for negative db_l2nbperpage - jfs: jfs_dmap: Validate db_l2nbperpage while mounting - tty: n_gsm: require CAP_NET_ADMIN to attach N_GSM0710 ldisc - llc: verify mac len before reading mac header - tipc: fix UAF in error path - drm/amd/display: Skip on writeback when it's not applicable - ubifs: Set page uptodate in the correct place - net/sched: act_skbmod: prevent kernel-infoleak - usb: fix various gadget panics on 10gbps cabling - wifi: cfg80211: check A-MSDU format more carefully - net: batman-adv: fix error handling - net: macb: fix use after free on rmmod - phonet/pep: fix racy skb_queue_empty() use - dyndbg: fix old BUG_ON in >control parser - phy: phy-mtk-tphy: Fix some resource leaks in mtk_phy_init() - net: ieee802154: fix null deref in parse dev addr - batman-adv: Avoid infinite loop trying to resize local TT - locking/ww_mutex/test: Fix potential workqueue corruption - EDAC/amd64: Adjust UMC channel for Hygon family 18h model 6h - x86/amd_nb: Get DF ID from F5 device for Hygon family 18h model 6h - EDAC/amd64: Fix intlv_num_chan for Hygon family 18h model 4h - EDAC/amd64: Revert hi_addr_offset for Hygon family 18h model 4h - ALSA: hda: Fix single byte write failure issue for Hygon - ALSA: hda: Add Hygon HD-Audio support - perf/x86/uncore: Add L3 PMU support for Hygon family 18h model 6h- !8895 net: fix out-of-bounds access in ops_init - !8694 clk: mediatek: clk-mt6797: Add check for mtk_alloc_clk_data - !8858 PCI/PM: Drain runtime-idle callbacks before driver removal - !8626 fs/9p: only translate RWX permissions for plain 9P2000 - !8490 scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up() - !8777 memory: fsl_ifc: fix leak of IO mapping on probe failure - !8806 media: zr364xx: fix memory leak in zr364xx_start_readpipe - !8664 mmc: mmc_spi: fix error handling in mmc_spi_probe() - !8865 staging: rtl8712: fix use-after-free in rtl8712_dl_fw - !8888 nsh: Restore skb->{protocol,data,mac_header} for outer header in nsh_gso_segment(). - !8825 watchdog: Fix possible use-after-free in wdt_startup() - !8654 nfc: fix potential NULL pointer deref in nfc_genl_dump_ses_done - !8358 perf report: Fix memory leaks around perf_tip() - !8552 tipc: fix a possible memleak in tipc_buf_append - !8851 ipv6: fib6_rules: avoid possible NULL dereference in fib6_rule_action() - net: fix out-of-bounds access in ops_init - !8802 CVE-2021-47294 - nsh: Restore skb->{protocol,data,mac_header} for outer header in nsh_gso_segment(). - staging: rtl8712: fix use-after-free in rtl8712_dl_fw - PCI/PM: Drain runtime-idle callbacks before driver removal - ipv6: fib6_rules: avoid possible NULL dereference in fib6_rule_action() - !8628 erspan: make sure erspan_base_hdr is present in skb->head - !8716 CVE-2024-35910 - !8325 ocfs2: fix data corruption after conversion from inline format - !8729 tcp: Use refcount_inc_not_zero() in tcp_twsk_unique(). - !8636 ipv6: Fix potential uninit-value access in __ip6_make_skb() - watchdog: Fix possible use-after-free in wdt_startup() - !8773 sched: remove WARN_ON on checking rq->tmp_alone_branch - media: zr364xx: fix memory leak in zr364xx_start_readpipe - !8678 can: pch_can: pch_can_rx_normal: fix use after free - netrom: Fix use-after-free of a listening socket. - netrom: Decrease sock refcount when sock timers expire - !8676 net: tulip: de4x5: fix the problem that the array 'lp->phy[8 - !8708 media: imon: fix access to invalid resource for the second interface - !8707 regmap: Fix possible double-free in regcache_rbtree_exit() - !8706 isdn: mISDN: Fix sleeping function called from invalid context - !8705 usb: dwc2: fix possible NULL pointer dereference caused by driver concurrency - !8357 nilfs2: fix underflow in second superblock position calculations - !8681 rtnetlink: Correct nested IFLA_VF_VLAN_LIST attribute validation - !8484 scsi: megaraid_sas: Fix resource leak in case of probe failure - memory: fsl_ifc: fix leak of IO mapping on probe failure - sched: remove WARN_ON on checking rq->tmp_alone_branch - !8620 CVE-2024-35896 - !8526 SUNRPC: Fix RPC client cleaned up the freed pipefs dentries - !8336 tcp: fix page frag corruption on page fault - tcp: Use refcount_inc_not_zero() in tcp_twsk_unique(). - !8521 isofs: Fix out of bound access for corrupted isofs image - !7786 powerpc/powernv: Add a null pointer check in opal_event_init() - !8568 gfs2: Fix use-after-free in gfs2_glock_shrink_scan - tcp: properly terminate timers for kernel sockets - mptcp: add sk_stop_timer_sync helper - !8478 arm64: asm-bug: Add .align 2 to the end of __BUG_ENTRY - !8366 net/mlx4_en: Fix an use-after-free bug in mlx4_en_try_alloc_resources() - !8544 CVE-2021-47358 - !8577 mmc: sdhci-msm: pervent access to suspended controller - !8579 net: qlogic: qlcnic: Fix a NULL pointer dereference in qlcnic_83xx_add_rings() - !8603 rxrpc: Fix rxrpc_local leak in rxrpc_lookup_peer() - media: imon: fix access to invalid resource for the second interface - regmap: Fix possible double-free in regcache_rbtree_exit() - isdn: mISDN: Fix sleeping function called from invalid context - usb: dwc2: fix possible NULL pointer dereference caused by driver concurrency - !8516 CVE-2021-47409 - !8465 drm/amd/display: Avoid NULL dereference of timing generator - !8500 pwm: Fix double shift bug - clk: mediatek: clk-mt6797: Add check for mtk_alloc_clk_data - rtnetlink: Correct nested IFLA_VF_VLAN_LIST attribute validation - can: pch_can: pch_can_rx_normal: fix use after free - net: tulip: de4x5: fix the problem that the array 'lp->phy[8]' may be out of bound - !8402 i40e: Fix freeing of uninitialized misc IRQ vector - !8398 comedi: ni_usb6501: fix NULL-deref in command paths - mmc: mmc_spi: fix error handling in mmc_spi_probe() - nfc: fix potential NULL pointer deref in nfc_genl_dump_ses_done - !8464 i2c: smbus: fix NULL function pointer dereference - !8434 iio: accel: kxcjk-1013: Fix possible memory leak in probe and remove - !8411 platform/x86: wmi: Fix opening of char device - ipv6: Fix potential uninit-value access in __ip6_make_skb() - !8307 s390/dasd: protect device queue against concurrent access - !8444 CVE-2021-47511 - !8443 v2 ipack: ipoctal: fix module reference leak - !8611 smackfs: restrict bytes count in smk_set_cipso() - !8610 media: gspca: cpia1: shift-out-of-bounds in set_flicker - !8609 can: peak_pci: peak_pci_remove(): fix UAF - !8430 drm/sched: Avoid data corruptions - !8557 net: cdc_eem: fix tx fixup skb leak - !8365 efi/capsule-loader: fix incorrect allocation size - !8333 soc: qcom: llcc: Handle a second device without data corruption - erspan: make sure erspan_base_hdr is present in skb->head - fs/9p: only translate RWX permissions for plain 9P2000 - netfilter: complete validation of user input - netfilter: validate user input for expected length - smackfs: restrict bytes count in smk_set_cipso() - media: gspca: cpia1: shift-out-of-bounds in set_flicker - can: peak_pci: peak_pci_remove(): fix UAF - rxrpc: Fix rxrpc_local leak in rxrpc_lookup_peer() - net: qlogic: qlcnic: Fix a NULL pointer dereference in qlcnic_83xx_add_rings() - mmc: sdhci-msm: pervent access to suspended controller - gfs2: Fix use-after-free in gfs2_glock_shrink_scan - net: cdc_eem: fix tx fixup skb leak - tipc: fix a possible memleak in tipc_buf_append - staging: greybus: uart: fix tty use after free - SUNRPC: Fix RPC client cleaned up the freed pipefs dentries - isofs: Fix out of bound access for corrupted isofs image - usb: dwc2: Fix memory leak in dwc2_hcd_init - usb: dwc2: check return value after calling platform_get_resource() - pwm: Fix double shift bug - scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up() - scsi: megaraid_sas: Fix resource leak in case of probe failure - arm64: asm-bug: Add .align 2 to the end of __BUG_ENTRY - drm/amd/display: Avoid NULL dereference of timing generator - i2c: smbus: fix NULL function pointer dereference - ALSA: pcm: oss: Fix negative period/buffer sizes - ALSA: pcm: oss: Fix a few more UBSAN fixes - ipack: ipoctal: fix module reference leak - iio: accel: kxcjk-1013: Fix possible memory leak in probe and remove - drm/sched: Avoid data corruptions - platform/x86: wmi: Fix opening of char device - i40e: Fix freeing of uninitialized misc IRQ vector - comedi: ni_usb6501: fix NULL-deref in command paths - net/mlx4_en: Fix an use-after-free bug in mlx4_en_try_alloc_resources() - efi/capsule-loader: fix incorrect allocation size - perf report: Fix memory leaks around perf_tip() - nilfs2: fix underflow in second superblock position calculations - tcp: fix page frag corruption on page fault - soc: qcom: llcc: Handle a second device without data corruption - ocfs2: fix data corruption after conversion from inline format - s390/dasd: protect device queue against concurrent access - powerpc/powernv: Add a null pointer check in opal_event_init()- scsi: hisi_sas: Allocate DFX memory during dump trigger- !8437 comedi: dt9812: fix DMA buffers on stack - !8515 v2 *** CVE-2021-47356 *** - !8582 v2 bcache: avoid oversized read request in cache missing code path - !8522 smb: client: fix use-after-free bug in cifs_debug_data_proc_show() - !8499 udf: Fix NULL pointer dereference in udf_symlink function - !8498 Bluetooth: l2cap: fix null-ptr-deref in l2cap_chan_timeout - !8570 net: hamradio: fix memory leak in mkiss_close - !8506 CVE-2024-36015 - !8508 memory: fsl_ifc: fix leak of private memory on probe failure - !8470 v2 CVE-2024-35808 - !8050 block: prevent division by zero in blk_rq_stat_sum() - !8469 watchdog: sc520_wdt: Fix possible use-after-free in wdt_turnoff() - !8482 v2 Fix hugetlb deadlock - bcache: avoid oversized read request in cache missing code path - !8327 wifi: mac80211: don't return unset power in ieee80211_get_tx_power() - !8316 net/usb: kalmia: Don't pass act_len in usb_bulk_msg error path - net: hamradio: fix memory leak in mkiss_close - !8310 jfs: fix two - !8507 tty: vcc: Add check for kstrdup() in vcc_probe() - !8441 pinctrl: core: delete incorrect free in pinctrl_enable() - !8414 backport for CVE-2023-52750 - !8449 drm/amd/pm: Update intermediate power state for SI - !8453 net: fix uninit-value in caif_seqpkt_sendmsg - !6800 block: fix overflow in blk_ioctl_discard() - !8068 CVE-2021-47427 - !8102 v2 sata_fsl: fix UAF in sata_fsl_port_stop when rmmod sata_fsl - !8413 NFC: digital: fix possible memory leak in digital_tg_listen_mdaa() - !8417 NFC: digital: fix possible memory leak in digital_in_send_sdd_req() - !8403 can: j1939: j1939_netdev_start(): fix UAF for rx_kref of j1939_priv - !8393 4.19: fix CVE-2024-35978 - !8349 perf hist: Fix memory leak of a perf_hpp_fmt - smb: client: fix use-after-free bug in cifs_debug_data_proc_show() - mISDN: hfcpci: Fix use-after-free bug in hfcpci_softirq - mISDN: fix possible use-after-free in HFC_cleanup() - memory: fsl_ifc: fix leak of private memory on probe failure - tty: vcc: Add check for kstrdup() in vcc_probe() - !8296 atm: iphase: fix possible use-after-free in ia_module_exit() - !8297 v2 powerpc/mm: Fix lockup on kernel exec fault - !8405 tty: serial: 8250: serial_cs: Fix a memory leak in error handling path - ppdev: Add an error check in register_device - ppdev: Remove usage of the deprecated ida_simple_xx() API - !8423 mac80211: limit injected vht mcs/nss in ieee80211_parse_tx_radiotap - udf: Fix NULL pointer dereference in udf_symlink function - Bluetooth: l2cap: fix null-ptr-deref in l2cap_chan_timeout - !8354 CVE-2021-47277 - !8386 drm/nouveau/debugfs: fix file release memory leak - !8452 Fix CVE-2021-47438 - !8308 mac80211: fix use-after-free in CCMP/GCMP RX - !8341 net/mlx5: Properly link new fs rules into the tree - hugetlb: pass head page to remove_hugetlb_page() - hugetlbfs: fix hugetlbfs_statfs() locking - hugetlb: make free_huge_page irq safe - hugetlb: change free_pool_huge_page to remove_pool_huge_page - hugetlb: call update_and_free_page without hugetlb_lock - hugetlb: create remove_hugetlb_page() to separate functionality - Revert "hugetlb: make free_huge_page irq safe" - Revert "hugetlbfs: fix hugetlbfs_statfs() locking" - !8075 v2 HID: betop: fix slab-out-of-bounds Write in betop_probe - md/dm-raid: don't clear MD_RECOVERY_FROZEN after setting frozen - md/dm-raid: don't call md_reap_sync_thread() directly - watchdog: sc520_wdt: Fix possible use-after-free in wdt_turnoff() - !8191 HID: usbhid: free raw_report buffers in usbhid_stop - !8314 mcb: fix error handling in mcb_alloc_bus() - !7852 CVE-2021-47407 - net: fix uninit-value in caif_seqpkt_sendmsg - net/mlx5e: nullify cq->dbg pointer in mlx5_debug_cq_remove() - net/mlx5e: Fix memory leak in mlx5_core_destroy_cq() error path - !8276 usb: udc: remove warning when queue disabled ep - !8142 i40e: Do not use WQ_MEM_RECLAIM flag for workqueue - !8410 iio: adc: stm32-adc: harden against NULL pointer deref in stm32_adc_probe() - drm/amd/pm: Update intermediate power state for SI - !8175 jfs: fix array-index-out-of-bounds in diAlloc - pinctrl: core: delete incorrect free in pinctrl_enable() - comedi: dt9812: fix DMA buffers on stack - mac80211: limit injected vht mcs/nss in ieee80211_parse_tx_radiotap - !8292 netfilter: conntrack: serialize hash resizes and cleanups - NFC: digital: fix possible memory leak in digital_in_send_sdd_req() - arm64: Restrict CPU_BIG_ENDIAN to GNU as or LLVM IAS 15.x or newer - arm64: Make CPU_BIG_ENDIAN depend on ld.bfd or ld.lld 13.0.0+ - NFC: digital: fix possible memory leak in digital_tg_listen_mdaa() - iio: adc: stm32-adc: harden against NULL pointer deref in stm32_adc_probe() - tty: serial: 8250: serial_cs: Fix a memory leak in error handling path - !8348 ethernet: hisilicon: hns: hns_dsaf_misc: fix a possible array overflow in hns_dsaf_ge_srst_by_port() - can: j1939: j1939_netdev_start(): fix UAF for rx_kref of j1939_priv - !8324 drm/amd: Fix UBSAN array-index-out-of-bounds for Polaris and Tonga - !8394 hugetlbfs: fix hugetlbfs_statfs() locking - !8188 v2 ACPI: video: check for error while searching for backlight device parent - hugetlbfs: fix hugetlbfs_statfs() locking - Bluetooth: Fix memory leak in hci_req_sync_complete() - !8303 ipvlan: add ipvlan_route_v6_outbound() helper - drm/nouveau/debugfs: fix file release memory leak - !8211 fix CVE-2024-35877 - !7964 v2 vt: fix unicode buffer corruption when deleting characters - !8160 v2 ipack: ipoctal: fix stack information leak - !8100 arch related major bugfix before 2023 - !8192 atm: nicstar: Fix possible use-after-free in nicstar_cleanup() - kvm: fix previous commit for 32-bit builds - kvm: avoid speculation-based attacks from out-of-range memslot accesses - !8181 v3 cpu/hotplug: Don't offline the last non-isolated CPU - perf hist: Fix memory leak of a perf_hpp_fmt - ethernet: hisilicon: hns: hns_dsaf_misc: fix a possible array overflow in hns_dsaf_ge_srst_by_port() - !8205 fix hugetlb deadlock - !8061 *** CVE-2021-47475 *** - !8252 sysv: don't call sb_bread() with pointers_lock held - !8248 gfs2: ignore negated quota changes - !8206 RDMA: Verify port when creating flow rule - net/mlx5: Properly link new fs rules into the tree - wifi: mac80211: don't return unset power in ieee80211_get_tx_power() - drm/amd: Fix UBSAN array-index-out-of-bounds for Polaris and Tonga - !8219 tipc: Change nla_policy for bearer-related names to NLA_NUL_STRING - !8223 CVE-2023-52804 - net/usb: kalmia: Don't pass act_len in usb_bulk_msg error path - mcb: fix error handling in mcb_alloc_bus() - jfs: fix array-index-out-of-bounds in dbFindLeaf - fs: jfs: Fix UBSAN: array-index-out-of-bounds in dbAllocDmapLev - mac80211: fix use-after-free in CCMP/GCMP RX - !8209 net/smc: Fix NULL pointer dereferencing in smc_vlan_by_tcpsk() - !8257 v5 can: dev: can_put_echo_skb(): don't crash kernel if can_priv::echo_skb is accessed out of bounds - ipvlan: add ipvlan_route_v6_outbound() helper - powerpc/mm: Fix lockup on kernel exec fault - atm: iphase: fix possible use-after-free in ia_module_exit() - netfilter: conntrack: serialize hash resizes and cleanups - !8062 CVE-2024-35789 - usb: udc: remove warning when queue disabled ep - can: dev: can_put_echo_skb(): don't crash kernel if can_priv::echo_skb is accessed out of bounds - !7804 v2 selinux: avoid dereference of garbage after mount failure - sysv: don't call sb_bread() with pointers_lock held - !8186 ALSA: hda: Fix possible null-ptr-deref when assigning a stream - !8208 ocfs2: mount fails with buffer overflow in strlen - !8207 drm/msm: Fix null pointer dereference on pointer edp - gfs2: ignore negated quota changes - !7470 x86/cpufeatures: Fix dependencies for GFNI, VAES, and VPCLMULQDQ - !7699 CVE-2023-52669 - !7868 CVE-2024-35995 - fs/jfs: Add validity check for db_maxag and db_agpref - fs: jfs: fix shift-out-of-bounds in dbAllocAG - jfs: fix divide error in dbNextAG - tipc: Change nla_policy for bearer-related names to NLA_NUL_STRING - x86/mm/pat: fix VM_PAT handling in COW mappings - net/smc: Fix NULL pointer dereferencing in smc_vlan_by_tcpsk() - ocfs2: mount fails with buffer overflow in strlen - drm/msm: Fix null pointer dereference on pointer edp - !8180 Fix CVE-2021-47495 - RDMA: Verify port when creating flow rule - hugetlb: make free_huge_page irq safe - mm/hugetlb: defer freeing of huge pages if in non-task context - !8146 pinctrl: single: fix potential NULL dereference - !8164 sctp: break out if skb_header_pointer returns NULL in sctp_rcv_ootb - !8131 scsi: libfc: Fix potential NULL pointer dereference in fc_lport_ptp_setup() - atm: nicstar: Fix possible use-after-free in nicstar_cleanup() - HID: usbhid: free raw_report buffers in usbhid_stop - ACPI: video: check for error while searching for backlight device parent - ALSA: hda: Fix possible null-ptr-deref when assigning a stream - cpu/hotplug: Don't offline the last non-isolated CPU - usbnet: fix error return code in usbnet_probe() - usbnet: sanity check for maxpacket - jfs: fix array-index-out-of-bounds in diAlloc - sctp: break out if skb_header_pointer returns NULL in sctp_rcv_ootb - ipack: ipoctal: fix stack information leak - pinctrl: single: fix potential NULL dereference - i40e: Do not use WQ_MEM_RECLAIM flag for workqueue - scsi: libfc: Fix potential NULL pointer dereference in fc_lport_ptp_setup() - sata_fsl: fix UAF in sata_fsl_port_stop when rmmod sata_fsl - x86/ioapic: Unbreak check_timer() - irqchip/gic-v3: Ensure pseudo-NMIs have an ISB between ack and handling - genirq/ipi: Fix NULL pointer deref in irq_data_get_affinity_mask() - HID: betop: fix slab-out-of-bounds Write in betop_probe - scsi: iscsi: Fix iscsi_task use after free - scsi: iscsi: Have abort handler get ref to conn - wifi: mac80211: check/clear fast rx for non-4addr sta VLAN changes - mac80211: clear sta->fast_rx when STA removed from 4-addr VLAN - comedi: vmk80xx: fix expression for tx buffer size - comedi: vmk80xx: fix transfer-buffer overflows - block: prevent division by zero in blk_rq_stat_sum() - vt: fix unicode buffer corruption when deleting characters - ACPI: CPPC: Fix access width used for PCC registers - ACPI: CPPC: Fix bit_offset shift in MASK_VAL() macro - ACPI: CPPC: Use access_width over bit_width for system memory accesses - ACPI: CPPC: Fix up I/O port access in cpc_read() - ACPI: CPPC: Implement support for SystemIO registers - KVM: x86: Handle SRCU initialization failure during page track init - selinux: avoid dereference of garbage after mount failure - crypto: s390/aes - Fix buffer overread in CTR mode - x86/cpufeatures: Fix dependencies for GFNI, VAES, and VPCLMULQDQ - block: fix overflow in blk_ioctl_discard()- !8066 drm/amd: Fix UBSAN array-index-out-of-bounds for SMU7 - !8038 CVE-2023-52817 - !8106 usb: dwc3: ep0: fix NULL pointer exception - !8059 soc: fsl: qbman: Always disable interrupts when taking cgr_lock - !8017 perf/core: Bail out early if the request AUX area is out of bound - !8064 isdn: mISDN: netjet: Fix crash in nj_probe: - !8049 xsk: validate user input for XDP_{UMEM|COMPLETION}_FILL_RING - usb: dwc3: ep0: fix NULL pointer exception - !8055 drm/client: Fully protect modes[ - !8000 v2 net/tls: Fix flipped sign in tls_err_abort() calls - !8032 netfilter: nf_tables: Fix potential data-race in __nft_flowtable_type_get() - drm/amd: Fix UBSAN array-index-out-of-bounds for SMU7 - isdn: mISDN: netjet: Fix crash in nj_probe: - !8056 scsi: qla2xxx: Fix a memory leak in an error path of qla2x00_process_els() - !7999 HID: i2c-hid: remove I2C_HID_READ_PENDING flag to prevent lock-up - soc: fsl: qbman: Always disable interrupts when taking cgr_lock - scsi: qla2xxx: Fix a memory leak in an error path of qla2x00_process_els() - drm/client: Fully protect modes[] with dev->mode_config.mutex - xsk: validate user input for XDP_{UMEM|COMPLETION}_FILL_RING - !7817 netfilter: nft_flow_offload: reset dst in route object after setting up flow - drm/amdgpu/debugfs: fix error code when smc register accessors are NULL - drm/amdgpu: Fix a null pointer access when the smc_rreg pointer is NULL - netfilter: nf_tables: Fix potential data-race in __nft_flowtable_type_get() - !7965 nvmem: Fix shift-out-of-bound (UBSAN) with byte size cells - !7951 sched/rt: Fix rt_runtime leaks with cpu hotplug and RT_RUNTIME_SHARE - perf/core: Bail out early if the request AUX area is out of bound - !7981 Fix CVE-2021-47455 - !7901 f2fs: fix to avoid racing on fsync_entry_slab by multi filesystem instances - !7700 scsi: lpfc: Fix possible memory leak in lpfc_rcv_padisc() - !7682 dm snapshot: fix lockup in dm_exception_table_exit - !7867 media: bttv: fix use after free error due to btv->timeout timer - !7421 x86/CPU/AMD: Update the Zenbleed microcode revisions - !7415 cpu/SMT: Make SMT control more robust against enumeration failures - !7451 v2 ip: Treat IPv4 segment's lowest address as unicast - !7393 v2 scsi: sr: Do not leak information in ioctl - !7971 fbmon: prevent division by zero in fb_videomode_from_videomode() - net/tls: Fix flipped sign in tls_err_abort() calls - HID: i2c-hid: remove I2C_HID_READ_PENDING flag to prevent lock-up - !7963 ipv6: Fix infinite recursion in fib6_dump_done(). - !7979 drm/radeon: fix a possible null pointer dereference - ptp: fix code indentation issues - ptp: Fix possible memory leak in ptp_clock_register() - drm/radeon: fix a possible null pointer dereference - fbmon: prevent division by zero in fb_videomode_from_videomode() - !7944 v2 netrom: Fix a data-race around sysctl_netrom_transport_maximum_tries - nvmem: Fix shift-out-of-bound (UBSAN) with byte size cells - ipv6: Fix infinite recursion in fib6_dump_done(). - sched/rt: Fix rt_runtime leaks with cpu hotplug and RT_RUNTIME_SHARE - netrom: Fix a data-race around sysctl_netrom_transport_maximum_tries - !7811 Input: synaptics-rmi4 - fix use after free in rmi_unregister_function() - !7892 CVE-2023-52868 - !7910 hwmon: (mlxreg-fan) Return non-zero value when fan current state is enforced from sysfs - hwmon: (mlxreg-fan) Return non-zero value when fan current state is enforced from sysfs - !7851 netrom: Fix data-races around sysctl_netrom_network_ttl_initialiser - f2fs: fix to avoid racing on fsync_entry_slab by multi filesystem instances - thermal: core: prevent potential string overflow - !7854 net/mlx5e: fix a double-free in arfs_create_groups - !7794 v2 Fix CVE-2023-52656 - media: bttv: fix use after free error due to btv->timeout timer - !7840 netrom: Fix a data-race around sysctl_netrom_transport_timeout - net/mlx5e: fix a double-free in arfs_create_groups - netrom: Fix data-races around sysctl_netrom_network_ttl_initialiser - !7770 drm/amd/pm: fix a double-free in si_dpm_init - netrom: Fix a data-race around sysctl_netrom_transport_timeout - !7589 irqchip/gic-v3-its: Prevent double free on error - !7713 CVE-2024-35936 - !7751 Fix CVE-2023-52698 - netfilter: nft_flow_offload: reset dst in route object after setting up flow - Input: synaptics-rmi4 - fix use after free in rmi_unregister_function() - io_uring: drop any code related to SCM_RIGHTS - io_uring/unix: drop usage of io_uring socket - !7742 netrom: Fix data-races around sysctl_net_busy_read - !7748 drm/radeon: possible buffer overflow - drm/amd/pm: fix a double-free in si_dpm_init - calipso: fix memory leak in netlbl_calipso_add_pass() - netlabel: remove unused parameter in netlbl_netlink_auditinfo() - net: netlabel: Fix kerneldoc warnings - drm/radeon: possible buffer overflow - netrom: Fix data-races around sysctl_net_busy_read - !7669 btrfs: send: handle path ref underflow in header iterate_inode_ref() - btrfs: add missing mutex_unlock in btrfs_relocate_sys_chunks() - btrfs: handle chunk tree lookup error in btrfs_relocate_sys_chunks() - scsi: lpfc: Fix possible memory leak in lpfc_rcv_padisc() - dm snapshot: fix lockup in dm_exception_table_exit - btrfs: send: handle path ref underflow in header iterate_inode_ref() - irqchip/gic-v3-its: Prevent double free on error - ip: Treat IPv4 segment's lowest address as unicast - x86/CPU/AMD: Update the Zenbleed microcode revisions - cpu/SMT: Make SMT control more robust against enumeration failures - scsi: sr: Do not leak information in ioctl- !7694 Bluetooth: af_bluetooth: Fix deadlock - !7701 ext4: fix corruption during on-line resize - !7676 sched/all: Change all BUG_ON() instances in the scheduler to WARN_ON_ONCE() - ext4: fix corruption during on-line resize - Bluetooth: af_bluetooth: Fix deadlock - !7573 pstore: ram_core: fix possible overflow in persistent_ram_init_ecc() - sched/all: Change all BUG_ON() instances in the scheduler to WARN_ON_ONCE() - !7547 btrfs: fix information leak in btrfs_ioctl_logical_to_ino() - !7586 powerpc/imc-pmu: Add a null pointer check in update_events_in_group() - powerpc/imc-pmu: Add a null pointer check in update_events_in_group() - pstore: ram_core: fix possible overflow in persistent_ram_init_ecc() - !7477 firewire: nosy: ensure user_length is taken into account when fetching packet contents - btrfs: fix information leak in btrfs_ioctl_logical_to_ino() - !7483 Bluetooth: Fix use-after-free bugs caused by sco_sock_timeout - Bluetooth: Fix use-after-free bugs caused by sco_sock_timeout - firewire: nosy: ensure user_length is taken into account when fetching packet contents - !7425 net: gtp: Fix Use-After-Free in gtp_dellink - !7434 net: openvswitch: Fix Use-After-Free in ovs_ct_exit - net: openvswitch: Fix Use-After-Free in ovs_ct_exit - net: gtp: Fix Use-After-Free in gtp_dellink - !7228 s390/zcrypt: fix reference counting on zcrypt card objects - !7193 CVE-2024-26921 - !7096 fix CVE-2024-26865 - s390/zcrypt: fix reference counting on zcrypt card objects - sk_buff: Fix KABI break for the modification of struct sk_buff - inet: inet_defrag: prevent sk release while still in use - inet: frags: re-introduce skb coalescing for local delivery - net: Fix KABI break for introducing is_skb_wmem() - skb_expand_head() adjust skb->truesize incorrectly - skbuff: introduce skb_expand_head() - tcp: Fix NEW_SYN_RECV handling in inet_twsk_purge() - tcp: Clean up kernel listener's reqsk in inet_twsk_purge()- !7194 s390/dasd: fix double module refcount decrement - !7059 nilfs2: prevent kernel bug at submit_bh_wbc() - !7163 v2 usb: gadget: f_ncm: Fix UAF ncm object at re-bind after usb ep transport error - !7104 KVM: Always flush async #PF workqueue when vCPU is being destroyed - !7203 NTB: fix possible name leak in ntb_register_device() - NTB: fix possible name leak in ntb_register_device() - s390/dasd: fix double module refcount decrement - !7158 v2 Squashfs: check the inode number is not the invalid value of zero - !7181 nfs: fix UAF in direct writes - !7091 nouveau: lock the client object tree. - !7120 v2 clk: zynq: Prevent null pointer dereference caused by kmalloc failure - !7089 nilfs2: fix failure to detect DAT corruption in btree and direct mappings - !7151 v2 scsi: sd: Fix sd_do_mode_sense() buffer length handling - nfs: fix UAF in direct writes - !7033 Revert "tracing/trigger: Fix to return error if failed to alloc snapshot" - !7079 nvmet: fix a use-after-free - usb: gadget: f_ncm: Fix UAF ncm object at re-bind after usb ep transport error - !7140 media: usbtv: Remove useless locks in usbtv_video_free() - Squashfs: check the inode number is not the invalid value of zero - scsi: sd: Fix sd_do_mode_sense() buffer length handling - !7137 v2 SUNRPC: fix a memleak in gss_import_v2_context - !7138 SUNRPC: fix some memleaks in gssx_dec_option_array - !7100 netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get() - !7095 CVE-2024-27020 - media: usbtv: Remove useless locks in usbtv_video_free() - SUNRPC: fix some memleaks in gssx_dec_option_array - SUNRPC: fix a memleak in gss_import_v2_context - !7114 v2 backport patch for thp deferred list for 4.19 - !7034 fix CVE-2024-27001 for 4.19 - !7032 clk: qcom: mmcc-apq8084: fix terminating of frequency table arrays - !7115 drm/radeon: add a force flush to delay work when radeon - !7055 scsi: qla2xxx: Fix command flush on cable pull - !7109 fix CVE-2024-26960 - clk: zynq: Prevent null pointer dereference caused by kmalloc failure - !6260 packet: move from strlcpy with unused retval to strscpy - drm/radeon: add a force flush to delay work when radeon - THP: avoid lock when check whether THP is in deferred list - mm/mmu_gather: limit free batch count and add schedule point in tlb_batch_pages_flush - mm, thp: do not queue fully unmapped pages for deferred split - !7046 USB: usb-storage: Prevent divide-by-0 error in isd200_ata_command - mm: swap: fix race between free_swap_and_cache() and swapoff() - mm/swapfile.c: use __try_to_reclaim_swap() in free_swap_and_cache() - !7053 CVE-2024-27024 - KVM: Always flush async #PF workqueue when vCPU is being destroyed - netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get() - !6970 ALSA: usb-audio: Fix an out-of-bounds bug in __snd_usb_parse_audio_interface() - !6995 v2 net/mlx5e: Prevent deadlock while disabling aRFS - !7038 i40e: Fix NULL ptr dereference on VSI filter sync - !7037 media: v4l2-tpg: fix some memleaks in tpg_alloc - netfilter: nf_tables: Fix potential data-race in __nft_expr_type_get() - netfilter: nf_tables: __nft_expr_type_get() selects specific family type - nouveau: lock the client object tree. - nilfs2: fix failure to detect DAT corruption in btree and direct mappings - !6992 media: edia: dvbdev: fix a use-after-free - nvmet: fix a use-after-free - !7045 v2 b43: fix CVE-2023-52644 - !7017 v2 net: ath9k: fix CVE-2024-26897 - nilfs2: prevent kernel bug at submit_bh_wbc() - !7016 v3 Fix CVE-2022-48693 - !7012 clk: qcom: gcc-ipq8074: fix terminating of frequency table arrays - scsi: qla2xxx: Fix command flush on cable pull - net/rds: fix possible cp null dereference - net/rds: fix WARNING in rds_conn_connect_if_down - USB: usb-storage: Prevent divide-by-0 error in isd200_ata_command - !6991 mac802154: fix llsec key resources release in mac802154_llsec_key_del - wifi: b43: Stop/wake correct queue in DMA Tx path when QoS is disabled - b43: dma: Fix use true/false for bool type variable - !7005 media: ttpci: fix two memleaks in budget_av_attach - !7014 nilfs2: fix OOB in nilfs_set_de_type - !7001 fix CVE-2024-27010 - i40e: Fix NULL ptr dereference on VSI filter sync - media: v4l2-tpg: fix some memleaks in tpg_alloc - !6880 media: go7007: fix a memleak in go7007_load_encoder - comedi: vmk80xx: fix incomplete endpoint checking - Revert "tracing/trigger: Fix to return error if failed to alloc snapshot" - clk: qcom: mmcc-apq8084: fix terminating of frequency table arrays - !6984 clk: qcom: mmcc-msm8974: fix terminating of frequency table arrays - !6893 cpufreq: brcmstb-avs-cpufreq: add check for cpufreq_cpu_get's return value - !6958 netfilter: nf_tables: fix memleak in map from abort path - !6820 s390/dasd: fix Oops in dasd_alias_get_start_dev due to missing pavgroup - !6940 drm: nv04: Fix out of bounds access - wifi: ath9k: delay all of ath9k_wmi_event_tasklet() until init is complete - ath9k_htc: fix NULL pointer dereference at ath9k_htc_tx_get_packet() - soc: brcmstb: pm-arm: Fix refcount leak and __iomem leak bugs - soc: bcm: brcmstb: pm: pm-arm: Fix refcount leak in brcmstb_pm_probe - nilfs2: fix OOB in nilfs_set_de_type - !6968 CVE-2024-26974 - clk: qcom: gcc-ipq8074: fix terminating of frequency table arrays - !6976 nfp: flower: handle acti_netdevs allocation failure - media: ttpci: fix two memleaks in budget_av_attach - !6944 USB: core: Fix deadlock in usb_deauthorize_interface() - net/sched: fix kabi change in struct Qdisc - net/sched: Fix mirred deadlock on device recursion - !6870 scsi: mpt3sas: Fix use-after-free warning - net/mlx5e: Prevent deadlock while disabling aRFS - media: edia: dvbdev: fix a use-after-free - !6966 speakup: Avoid crash on very long word - !6963 v2 CVE-2024-27000 - mac802154: fix llsec key resources release in mac802154_llsec_key_del - clk: qcom: mmcc-msm8974: fix terminating of frequency table arrays - !6942 v2 ima: fix deadlock when traversing "ima_default_rules". - !6951 v2 spi: spi-mt65xx: Fix NULL pointer access in interrupt handler - nfp: flower: handle acti_netdevs allocation failure - ALSA: usb-audio: Fix an out-of-bounds bug in __snd_usb_parse_audio_interface() - crypto: qat - resolve race condition during AER recovery - crypto: qat - fix double free during reset - !6881 v4 CVE-2024-26846 - !6894 tun: limit printing rate when illegal packet received by tun dev - speakup: Avoid crash on very long word - serial: core: fix kernel-doc for uart_port_unlock_irqrestore() - serial: mxs-auart: add spinlock around changing cts state - serial: core: Provide port lock wrappers - !6883 Bluetooth: Fix TOCTOU in HCI debugfs implementation - !6856 media: dvb-frontends: avoid stack overflow warnings with clang - netfilter: nf_tables: fix memleak in map from abort path - spi: spi-mt65xx: Fix NULL pointer access in interrupt handler - !6839 CVE-2023-52650 - !6869 v2 media: v4l2-mem2mem: fix a memleak in v4l2_m2m_register_entity - !6867 v2 nouveau: fix instmem race condition around ptr stores - USB: core: Fix deadlock in usb_deauthorize_interface() - !6852 serial/pmac_zilog: Remove flawed mitigation for rx irq flood - ima: fix deadlock when traversing "ima_default_rules". - drm: nv04: Fix out of bounds access - tun: limit printing rate when illegal packet received by tun dev - cpufreq: brcmstb-avs-cpufreq: add check for cpufreq_cpu_get's return value - Bluetooth: Fix TOCTOU in HCI debugfs implementation - nvme-fc: do not wait in vain when unloading module - nvme-fc: remove err_work work item - media: go7007: fix a memleak in go7007_load_encoder - scsi: mpt3sas: Fix use-after-free warning - media: v4l2-mem2mem: fix a memleak in v4l2_m2m_register_entity - nouveau: fix instmem race condition around ptr stores - media: dvb-frontends: avoid stack overflow warnings with clang - serial/pmac_zilog: Remove flawed mitigation for rx irq flood - drm/tegra: dsi: Add missing check for of_find_device_by_node - s390/dasd: fix Oops in dasd_alias_get_start_dev due to missing pavgroup - packet: move from strlcpy with unused retval to strscpy- !6858 CVE-2024-26883 - !6836 fs: sysfs: Fix reference leak in sysfs_break_active_protection() - !6845 erofs: fix pcluster use-after-free on UP platforms - !6827 fat: fix uninitialized field in nostale filehandles - !6807 CVE-2024-26923 - !6847 ALSA: emu10k1: Fix out of bounds access in snd_emu10k1_pcm_channel_alloc() - bpf: Fix stackmap overflow check on 32-bit arches - bpf: Check for integer overflow when using roundup_pow_of_two() - !6758 CVE-2022-48664 - ALSA: emu10k1: Fix out of bounds access in snd_emu10k1_pcm_channel_alloc() - erofs: fix pcluster use-after-free on UP platforms - fs: sysfs: Fix reference leak in sysfs_break_active_protection() - !6795 rtmutex: Add acquire semantics for rtmutex lock acquisition slow path - fat: fix uninitialized field in nostale filehandles - !6777 tun: Fix xdp_rxq_info's queue_index when detaching - !6803 scsi: target: core: Add TMF to tmr_list handling - af_unix: Suppress false-positive lockdep splat for spin_lock() in __unix_gc(). - af_unix: Fix garbage collector racing against connect() - scsi: target: core: Add TMF to tmr_list handling - !6705 quota: fix CVE-2024-26878 - rtmutex: Add acquire semantics for rtmutex lock acquisition slow path - tun: Fix xdp_rxq_info's queue_index when detaching - !6674 cifs: fix underflow in parse_server_interfaces() - !6494 v2 oom_kill.c: futex: delay the OOM reaper to allow time for proper futex cleanup - !6745 PCI/IOV: Improve performance of creating VFs concurrently - !6754 binder: check offset alignment in binder_get_object() - !6746 v3 openEuler-1.0-LTS: bugfix for mm - !6716 CVE-2024-26922 - btrfs: fix hang during unmount when stopping a space reclaim worker - Btrfs: fix crash during unmount due to race with delayed inode workers - binder: check offset alignment in binder_get_object() - !6652 geneve: make sure to pull inner header in geneve_rx() - mm/madvise: fix potential pte_unmap_unlock pte error - PCI/IOV: Improve performance of creating VFs concurrently - !6664 drm/bridge: adv7511: fix crash on irq during probe - !6653 net/ipv6: avoid possible UAF in ip6_route_mpath_notify() - !6510 cachefiles: fix memory leak in cachefiles_add_cache() - drm/amdgpu: validate the parameters of bo mapping operations more clearly - amdgpu: validate offset_in_bo of drm_amdgpu_gem_va - drm/amdgpu: restrict bo mapping within gpu address limits - drm/amdgpu: check alignment on CPU page for bo map - quota: Fix potential NULL pointer dereference - quota: check time limit when back out space/inode change - quota: code cleanup for __dquot_alloc_space() - !6662 sched/rt: Disallow writing invalid values to sched_rt_period_us - !6661 sched/rt: sysctl_sched_rr_timeslice show default timeslice after reset - !6659 sched/rt: Fix sysctl_sched_rr_timeslice intial value - !6578 drm/mediatek: Fix a null pointer crash in mtk_drm_crtc_finish_page_flip - !6641 CVE-2024-26863 - cifs: fix underflow in parse_server_interfaces() - !6646 fix race between rebuild scheduler domains and hotplug work - drm/bridge: adv7511: fix crash on irq during probe - sched/rt: Disallow writing invalid values to sched_rt_period_us - sched/rt: sysctl_sched_rr_timeslice show default timeslice after reset - sched/rt: Fix sysctl_sched_rr_timeslice intial value - !6642 v3 x86/hyperv: Fix NULL deref in set_hv_tscchange_cb() if Hyper-V setup fails - net/ipv6: avoid possible UAF in ip6_route_mpath_notify() - geneve: make sure to pull inner header in geneve_rx() - !6621 amdkfd: use calloc instead of kzalloc to avoid integer overflow - cpuset: fix race between rebuild scheduler domains and hotplug work - !6617 net/bnx2x: Prevent access to a freed page in page_pool - !6611 net: ip_tunnel: make sure to pull inner header in ip_tunnel_rcv() - x86/hyperv: Fix NULL deref in set_hv_tscchange_cb() if Hyper-V setup fails - hsr: Fix uninit-value access in hsr_get_node() - net: hsr: fix placement of logical operator in a multi-line statement - !6397 btrfs: fix data race at btrfs_use_block_rsv() when accessing block reserve - !6616 drm/amdgpu: Reset IH OVERFLOW_CLEAR bit - amdkfd: use calloc instead of kzalloc to avoid integer overflow - net/bnx2x: Prevent access to a freed page in page_pool - drm/amdgpu: Reset IH OVERFLOW_CLEAR bit - net: ip_tunnel: make sure to pull inner header in ip_tunnel_rcv() - !6525 v2 CVE-2024-24860 bugfix - !6478 do_sys_name_to_handle(): use kzalloc() to fix kernel-infoleak - !6582 ACPI: processor_idle: Fix memory leak in acpi_processor_power_exit() - !6577 media: rc: bpf attach/detach requires write permission - !6560 IB/hfi1: Fix a memleak in init_credit_return - !6420 tty: fix read of tty->pgrp outside of ctrl_lock - !6436 dm: call the resume method on internal suspend - !6562 nfc: nci: free rx_data_reassembly skb on NCI device cleanup - !6481 CVE-2024-26875 - ACPI: processor_idle: Fix memory leak in acpi_processor_power_exit() - drm/mediatek: Fix a null pointer crash in mtk_drm_crtc_finish_page_flip - media: rc: bpf attach/detach requires write permission - !6495 RDMA/srpt: Do not register event handler until srpt device is fully setup - !6457 CVE-2024-26813 - nfc: nci: free rx_data_reassembly skb on NCI device cleanup - IB/hfi1: Fix a memleak in init_credit_return - !6517 scsi: lpfc: Fix link down processing to address NULL pointer dereference - !6521 netfilter: nf_conntrack_h323: Add protection for bmp length out of range - !6454 CVE-2021-47182 - Bluetooth: Fix atomicity violation in {min,max}_key_size_set - Bluetooth: Move {min,max}_key_size debugfs into hci_debugfs_create_le - netfilter: nf_conntrack_h323: Add protection for bmp length out of range - scsi: lpfc: Fix link down processing to address NULL pointer dereference - cachefiles: fix memory leak in cachefiles_add_cache() - RDMA/srpt: Do not register event handler until srpt device is fully setup - mm: oom_kill: fix KABI broken by "oom_kill.c: futex: delay the OOM reaper to allow time for proper futex cleanup" - oom_kill.c: futex: delay the OOM reaper to allow time for proper futex cleanup - sched: Allocate a new task_struct_resvd object for fork task - media: pvrusb2: fix uaf in pvr2_context_set_notify - do_sys_name_to_handle(): use kzalloc() to fix kernel-infoleak - vfio/platform: Create persistent IRQ handlers - vfio/platform: Disable virqfds on cleanup - scsi: core: Fix scsi_mode_sense() buffer length handling - scsi: core: Reshuffle response handling in scsi_mode_sense() - scsi: core: Fixup calling convention for scsi_mode_sense() - dm: call the resume method on internal suspend - tty: fix read of tty->pgrp outside of ctrl_lock - btrfs: fix data race at btrfs_use_block_rsv() when accessing block reserve- !6313 fixup CVE-2024-26908 - !6447 can: j1939: prevent deadlock by changing j1939_socks_lock to rwlock - !6309 v5 ima: Avoid blocking in RCU read-side critical section - !6405 wifi: ath10k: fix NULL pointer dereference in ath10k_wmi_tlv_op_pull_mgmt_tx_compl_ev() - !6466 bpf: Fix hashtab overflow check on 32-bit arches - !6396 tracing/trigger: Fix to return error if failed to alloc snapshot - !6278 Bluetooth: Avoid potential use-after-free in hci_error_reset - bpf: Fix hashtab overflow check on 32-bit arches - can: j1939: prevent deadlock by changing j1939_socks_lock to rwlock - !6203 ALSA: usb-audio: fix null pointer dereference on pointer cs_desc - !6292 aoe: fix the potential use-after-free problem in aoecmd_cfg_pkts - !6301 v2 tipc: Check the bearer type before calling tipc_udp_nl_bearer_add() - wifi: ath10k: fix NULL pointer dereference in ath10k_wmi_tlv_op_pull_mgmt_tx_compl_ev() - !6266 usb: typec: tipd: Remove WARN_ON in tps6598x_block_read - tracing/trigger: Fix to return error if failed to alloc snapshot - !6290 CVE-2024-24861 - x86/xen: Add some null pointer checking to smp.c - ima: Avoid blocking in RCU read-side critical section - !6269 scsi: lpfc: Fix list_add() corruption in lpfc_drain_txq() - !6276 wifi: brcmfmac: Fix use-after-free bug in brcmf_cfg80211_detach - tipc: Check the bearer type before calling tipc_udp_nl_bearer_add() - !6277 gtp: fix use-after-free and null-ptr-deref in gtp_newlink() - !6275 arp: Prevent overflow in arp_req_get(). - !6280 scsi: advansys: Fix kernel pointer leak - !6177 arm64/mpam: Not allowed setting 0 to cache portion bit mask - !6176 arm64/mpam: return EOPNOTSUPP when changing rmid of monitor group or resource group with monitor - aoe: fix the potential use-after-free problem in aoecmd_cfg_pkts - media: xc4000: Fix atomicity violation in xc4000_get_frequency - !6075 Fix CVE-2024-26764 - scsi: advansys: Fix kernel pointer leak - Bluetooth: Avoid potential use-after-free in hci_error_reset - gtp: fix use-after-free and null-ptr-deref in gtp_newlink() - wifi: brcmfmac: Fix use-after-free bug in brcmf_cfg80211_detach - arp: Prevent overflow in arp_req_get(). - !6084 netlink: Fix kernel-infoleak-after-free in __skb_datagram_iter - scsi: lpfc: Fix list_add() corruption in lpfc_drain_txq() - usb: typec: tipd: Remove WARN_ON in tps6598x_block_read - !6246 ubi: Check for too small LEB size in VTBL code - ubi: Check for too small LEB size in VTBL code - ALSA: usb-audio: fix null pointer dereference on pointer cs_desc - arm64/mpam: Not allowed setting 0 to cache portion bit mask - arm64/mpam: return EOPNOTSUPP when changing rmid of monitor group or resource group with monitor - netlink: Fix kernel-infoleak-after-free in __skb_datagram_iter - fs/aio: Check IOCB_AIO_RW before the struct aio_kiocb conversion - fs/aio: Restrict kiocb_set_cancel_fn() to I/O submitted via libaio- !6231 v2 drm/vkms: call drm_atomic_helper_shutdown before drm_dev_put() - !6083 can: j1939: Fix UAF in j1939_sk_match_filter during setsockopt(SO_J1939_FILTER) - !6160 net/sched: act_mirred: don't override retval if we already lost the skb - drm/vkms: call drm_atomic_helper_shutdown before drm_dev_put() - !6152 Fix CVE-2024-26812 - !6139 iavf: free q_vectors before queues in iavf_disable_vf - !6164 CVE-2021-47194 - !6123 xen/events: close evtchn after mapping cleanup - cfg80211: call cfg80211_stop_ap when switch from P2P_GO type - net/sched: act_mirred: don't override retval if we already lost the skb - vfio/pci: Create persistent INTx handler - vfio: Introduce interface to flush virqfd inject workqueue - !6053 net: ip_tunnel: prevent perpetual headroom growth - !6002 KVM: s390: vsie: fix race during shadow creation - iavf: free q_vectors before queues in iavf_disable_vf - !6102 Fix CVE-2024-27437 - !6070 Fix CVE-2024-26686 - !6049 wifi: mac80211: fix race condition on enabling fast-xmit - !5916 ext4: fix double-free of blocks due to wrong extents moved_len - xen/events: close evtchn after mapping cleanup - !6099 vfio/pci: Lock external INTx masking ops - !6032 gtp: fix use-after-free and null-ptr-deref in gtp_genl_dump_pdp() - !5899 dm-crypt: don't modify the data when using authenticated encryption - vfio/pci: Disable auto-enable of exclusive INTx IRQ - genirq: Add IRQF_NO_AUTOEN for request_irq/nmi() - vfio/pci: Lock external INTx masking ops - !6042 nilfs2: fix data corruption in dsync block recovery for small block sizes - !6030 Fix CVE-2024-26685 - !6015 btrfs: don't drop extent_map for free space inode on write error - !5963 btrfs: dev-replace: properly validate device names - can: j1939: Fix UAF in j1939_sk_match_filter during setsockopt(SO_J1939_FILTER) - fs/proc: do_task_stat: use sig->stats_lock to gather the threads/children stats - fs/proc: do_task_stat: move thread_group_cputime_adjusted() outside of lock_task_sighand() - fs/proc: do_task_stat: use __for_each_thread() - exit: Use the correct exit_code in /proc//stat - net: ip_tunnel: prevent perpetual headroom growth - wifi: mac80211: fix race condition on enabling fast-xmit - !5999 mm/swap: fix race when skipping swapcache - nilfs2: fix data corruption in dsync block recovery for small block sizes - !6019 net/sched: act_mirred: use the backlog for mirred ingress - !6010 PM / devfreq: Synchronize devfreq_monitor_[start/stop - !5846 ext4: avoid allocating blocks from corrupted group in ext4_mb_find_by_goal() - gtp: fix use-after-free and null-ptr-deref in gtp_genl_dump_pdp() - !5994 ipv6: sr: fix possible use-after-free and null-ptr-deref - nilfs2: fix potential bug in end_buffer_async_write - nilfs2: fix buffer corruption due to concurrent device reads - !5951 RDMA/qedr: Fix qedr_create_user_qp error flow - net/sched: act_mirred: use the backlog for mirred ingress - btrfs: don't drop extent_map for free space inode on write error - PM / devfreq: Synchronize devfreq_monitor_[start/stop] - !5961 fbdev: savage: Error out if pixclock equals zero - KVM: s390: vsie: fix race during shadow creation - mm/swap: fix race when skipping swapcache - ipv6: sr: fix possible use-after-free and null-ptr-deref - !5875 v3 CVE-2024-26771 - !5926 RDMA/srpt: Support specifying the srpt_service_guid parameter - btrfs: dev-replace: properly validate device names - fbdev: savage: Error out if pixclock equals zero - !5778 ext4: avoid allocating blocks from corrupted group in ext4_mb_try_best_found() - RDMA/qedr: Fix qedr_create_user_qp error flow - !5830 fbdev: sis: Error out if pixclock equals zero - RDMA/srpt: Support specifying the srpt_service_guid parameter - ext4: fix double-free of blocks due to wrong extents moved_len - dm-crypt: don't modify the data when using authenticated encryption - !5807 nilfs2: fix hang in nilfs_lookup_dirty_data_buffers() - dmaengine: ti: edma: Add some null pointer checks to the edma_probe - dmaengine: ti: edma: Fix error return code in edma_probe() - dmaengine: ti: edma: add missed operations - dmaengine: ti: edma: fix missed failure handling - ext4: avoid allocating blocks from corrupted group in ext4_mb_find_by_goal() - fbdev: sis: Error out if pixclock equals zero - nilfs2: fix hang in nilfs_lookup_dirty_data_buffers() - ext4: avoid allocating blocks from corrupted group in ext4_mb_try_best_found()- !5874 scsi: hisi_sas: Update disk locked timeout to 7 seconds - scsi: hisi_sas: Update disk locked timeout to 7 seconds - !5841 fixup CVE-2024-26751 - !5834 CVE-2021-47144 - ARM: ep93xx: Add terminator to gpiod_lookup_table - drm/amd/amdgpu: fix refcount leak - !5796 netfilter: nft_limit: reject configurations that cause integer overflow - netfilter: nft_limit: reject configurations that cause integer overflow - !5755 sh: push-switch: Reorder cleanup operations to avoid use-after-free bug - !5767 v5 net: fec: fix the potential memory leak in fec_enet_init() - !5718 CVE-2024-26654 - net: fec: fix the potential memory leak in fec_enet_init() - !5722 btrfs: don't abort filesystem when attempting to snapshot deleted subvolume - sh: push-switch: Reorder cleanup operations to avoid use-after-free bug - !5727 fix CVE-2021-47101 - !5531 ip6_tunnel: fix NEXTHDR_FRAGMENT handling in ip6_tnl_parse_tlv_enc_lim() - !5715 net: hns3: updates 2024.04.02 - !5710 v2 ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv() - asix: fix wrong return value in asix_check_host_enable() - asix: fix uninit-value in asix_mdio_read() - net: asix: fix uninit value bugs - btrfs: don't abort filesystem when attempting to snapshot deleted subvolume - !5700 sr9800: Add check for usbnet_get_endpoints - !5680 USB: usbfs: Don't WARN about excessively large memory allocations - !5679 fix CVE-2023-52587 - ALSA: sh: aica: reorder cleanup operations to avoid UAF bugs - ALSA: aica: Fix a long-time build breakage - !5713 v2 tipc: wait and exit until all work queues are done - net: hns3: update hns3 version to 24.3.1 - net: hns3: fix port vlan filter not disabled problem in dynamic vlan mode - !5696 NFS: Fix an Oopsable condition in __nfs_pageio_add_request() - tipc: wait and exit until all work queues are done - ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv() - !5702 ext4: Validate inode pa before using preallocation blocks - !5694 tipc: skb_linearize the head skb when reassembling msgs - ext4: Validate inode pa before using preallocation blocks - !5674 mac80211: fix locking in ieee80211_start_ap error path - !5672 arm64/mpam_ctrlmon: Update ctrl group config with rdtgrp's partid - sr9800: Add check for usbnet_get_endpoints - !5528 btrfs: do not BUG_ON in link_to_fixup_dir - NFS: Fix an Oopsable condition in __nfs_pageio_add_request() - tipc: skb_linearize the head skb when reassembling msgs - !5522 md/raid5: fix atomicity violation in raid5_cache_count - USB: usbfs: Don't WARN about excessively large memory allocations - IB/ipoib: Fix mcast list locking - RDMA/IPoIB: Fix error code return in ipoib_mcast_join - mac80211: fix locking in ieee80211_start_ap error path - arm64/mpam: Allocate new partid for the created ctrl group - arm64/mpam_ctrlmon: Update ctrl group config with rdtgrp's partid - !5581 CVE-2023-52622 - !5658 v2 CVE-2021-47131 - !5645 [sync] PR-5493: arm64/mpam: Fix repeated enabling in mpam_enable() - !5559 fix CVE-2021-47173 - !5575 net: dsa: fix a crash if ->get_sset_count() fails - net/tls: Use RCU API to access tls_ctx->netdev - net/tls: Remove the context from the list in tls_device_down - tls: Fix context leak on tls_device_down - net/tls: Resolve KABI break when backport bugfix of CVE-2021-47131 - net/tls: Fix use-after-free after the TLS device goes down and up - net/tls: Replace TLS_RX_SYNC_RUNNING with RCU - !5625 i2c: i801: Don't generate an interrupt on bus reset - !5517 dm: revert partial fix for redundant bio-based IO accounting - arm64/mpam: Fix repeated enabling in mpam_enable() - !5481 jfs: fix array-index-out-of-bounds in dbAdjTree - !5572 mld: fix panic in mld_newpack() - !5565 tracing: Ensure visibility when inserting an element into tracing_map - !5571 v2 mm/mlock: return EINVAL for illegal user memory range in mlock - i2c: i801: Don't generate an interrupt on bus reset - !5587 Fix CVE-2021-47171 - !5579 mm: ksm: fix use-after-free kasan report in ksm_might_need_to_copy - !5573 Fix CVE-2021-47160 - !5564 serial: rp2: use 'request_firmware' instead of 'request_firmware_nowait' - !5560 drm/amdgpu: Fix a use-after-free - net: usb: fix possible use-after-free in smsc75xx_bind - net: usb: fix memory leak in smsc75xx_bind - ext4: avoid online resizing failures due to oversized flex bg - ext4: unify the type of flexbg_size to unsigned int - ext4: remove unnecessary check from alloc_flex_gd() - mm: ksm: fix use-after-free kasan report in ksm_might_need_to_copy - !5558 net: fujitsu: fix potential null-ptr-deref - !5556 NFC: nci: fix memory leak in nci_allocate_device - net: dsa: fix a crash if ->get_sset_count() fails - net: dsa: mt7530: fix VLAN traffic leaks again - net: dsa: mt7530: fix VLAN traffic leaks - mld: fix panic in mld_newpack() - mm/mlock: return EINVAL for illegal user memory range in mlock - tracing: Ensure visibility when inserting an element into tracing_map - serial: rp2: use 'request_firmware' instead of 'request_firmware_nowait' - !5552 net/smc: remove device from smcd_dev_list after failed device_add() - !5290 crypto: algif_aead - Only wake up when ctx->more is zero - !5446 keys: safe concurrent user->{session,uid}_keyring access - drm/amdgpu: Fix a use-after-free - !5550 pciehp: clear p_slot->work.data after powering off a slot - usb: misc: fix improper handling of refcount in uss720_probe() - misc/uss720: fix memory leak in uss720_probe - !5515 netfilter: nf_tables: disallow timeout for anonymous sets - !5538 netfilter: nf_tables: disallow anonymous set with timeout flag - net: fujitsu: fix potential null-ptr-deref - NFC: nci: fix memory leak in nci_allocate_device - net/smc: remove device from smcd_dev_list after failed device_add() - pciehp: clear p_slot->work.data after powering off a slot - netfilter: nf_tables: disallow anonymous set with timeout flag - ip6_tunnel: fix NEXTHDR_FRAGMENT handling in ip6_tnl_parse_tlv_enc_lim() - btrfs: do not BUG_ON in link_to_fixup_dir - md/raid5: fix atomicity violation in raid5_cache_count - dm: revert partial fix for redundant bio-based IO accounting - netfilter: nf_tables: disallow timeout for anonymous sets - jfs: fix array-index-out-of-bounds in dbAdjTree - keys: safe concurrent user->{session,uid}_keyring access - crypto: af_alg - Work around empty control messages without MSG_MORE - crypto: af_alg - Fix regression on empty requests - crypto: algif_aead - Only wake up when ctx->more is zero- !5539 spi: spi-fsl-dspi: Fix a resource leak in an error handling path - !5542 round lts patches - !5520 scsi: lpfc: Fix a possible data race in lpfc_unregister_fcf_rescan() - l2tp: pass correct message length to ip6_append_data - ipv6: Fix signed integer overflow in l2tp_ip6_sendmsg - spi: spi-fsl-dspi: Fix a resource leak in an error handling path - !5514 CVE-2021-47110 - !5497 llc: Drop support for ETH_P_TR_802_2. - !5498 llc: make llc_ui_sendmsg() more robust against bonding changes - !5490 tcp: add sanity checks to rx zerocopy - scsi: lpfc: Fix a possible data race in lpfc_unregister_fcf_rescan() - x86/kvm: Do not try to disable kvmclock if it was not enabled - x86/kvm: Disable kvmclock on all CPUs on shutdown - !5502 pstore/ram: Fix crash when setting number of cpus to an odd number - !5477 Fixed CVE-2021-47112 - pstore/ram: Fix crash when setting number of cpus to an odd number - llc: make llc_ui_sendmsg() more robust against bonding changes - llc: Drop support for ETH_P_TR_802_2. - tcp: add sanity checks to rx zerocopy - !5479 jfs: fix cve-2023-52600 - !5478 jfs: fix array-index-out-of-bounds in diNewExt - !5485 nfsd: fix use-after-free due to delegation race - nfsd: fix use-after-free due to delegation race - !5281 printk: avoid deadlock in panic - jfs: fix uaf in jfs_evict_inode - JFS: fix memleak in jfs_mount - jfs: fix array-index-out-of-bounds in diNewExt - x86/kvm: Teardown PV features on boot CPU as well - !5465 wifi: ath9k: Fix potential array-index-out-of-bounds read in ath9k_htc_txstatus() - !5361 btrfs: abort in rename_exchange if we fail to insert the second ref - !5254 tomoyo: fix UAF write bug in tomoyo_write_control() - !5321 UBSAN: array-index-out-of-bounds in dtSplitRoot - !5455 CVE-2021-47114 - wifi: ath9k: Fix potential array-index-out-of-bounds read in ath9k_htc_txstatus() - !5320 jfs: fix slab-out-of-bounds Read in dtSearch - ocfs2: issue zeroout to EOF blocks - ocfs2: fix zero out valid data - ocfs2: fix data corruption by fallocate - !5374 hwrng: core - Fix page fault dead lock on mmap-ed hwrng - !5418 [sync] PR-5317: KVM: s390: fix setting of fpc register - !5272 net/smc: fix illegal rmb_desc access in SMC-D connection dump - !5274 phonet/pep: refuse to enable an unbound pipe - !5359 CVE-2021-47121 and CVE-2021-47122 - KVM: s390: fix setting of fpc register - !5358 v5 CVE-2023-52595 - !5336 binder: fix race between mmput() and do_exit() - hwrng: core - Fix page fault dead lock on mmap-ed hwrng - btrfs: abort in rename_exchange if we fail to insert the second ref - net: caif: fix memory leak in caif_device_notify - net: caif: fix memory leak in cfusbl_device_notify - net: caif: add proper error handling - net: caif: added cfserl_release function - rt2x00: Fix kabi breakage in struct rt2x00lib_ops - wifi: rt2x00: restart beacon queue when hardware reset - rt2x00: clear up IV's on key removal - rt2x00: clear IV's on start to fix AP mode regression - rt2800: add pre_reset_hw callback - rt2800: do not nullify initialization vector data - binder: fix race between mmput() and do_exit() - UBSAN: array-index-out-of-bounds in dtSplitRoot - jfs: fix slab-out-of-bounds Read in dtSearch - printk: avoid deadlock in panic - phonet/pep: refuse to enable an unbound pipe - net/smc: fix illegal rmb_desc access in SMC-D connection dump - tomoyo: fix UAF write bug in tomoyo_write_control()- !5306 FS:JFS:UBSAN:array-index-out-of-bounds in dbAdjTree - !5347 s390/ptrace: handle setting of fpc register correctly - !5309 drm/msm/dpu: Add mutex lock in control vblank irq - s390/ptrace: handle setting of fpc register correctly - !5267 llc: call sock_orphan() at release time - drm/msm/dpu: Add mutex lock in control vblank irq - FS:JFS:UBSAN:array-index-out-of-bounds in dbAdjTree - !5241 powerpc/lib: Validate size for vector operations - !5246 ceph: fix deadlock or deadcode of misusing dget() - !5268 crypto: algif_aead - fix uninitialized ctx->init - crypto: algif_aead - fix uninitialized ctx->init - llc: call sock_orphan() at release time - !5220 powerpc/mm: Fix null-pointer dereference in pgtable_cache_add - !5196 drm: Don't unref the same fb many times by mistake due to deadlock handling - ceph: fix deadlock or deadcode of misusing dget() - powerpc/lib: Validate size for vector operations - !5210 v2 Fix CVE-2022-48629 and CVE-2022-48630 - powerpc/mm: Fix null-pointer dereference in pgtable_cache_add - !5175 arm64/mpam: Fix use-after-free when deleting resource groups - !5163 nfc: nci: assert requested protocol is valid - !5172 CVE-2023-52502 for openEuler-1.0-LTS - crypto: qcom-rng - fix infinite loop on requests not multiple of WORD_SZ - crypto: qcom-rng - ensure buffer for generate is completely filled - drm: Don't unref the same fb many times by mistake due to deadlock handling - !5177 net: nfc: llcp: Add lock when modifying device list - !5157 RDMA/srp: Do not call scsi_done() from srp_abort() - net: nfc: llcp: Add lock when modifying device list - arm64/mpam: Fix use-after-free when deleting resource groups - arm64/mpam: remove kernfs_get() calls() and add kernfs_put() calls to prevent refcount leak - !5142 arm64/mpam: Expand the monitor number of the resctrl root - net: nfc: fix races in nfc_llcp_sock_get() and nfc_llcp_sock_get_sn() - nfc: constify several pointers to u8, char and sk_buff - nfc: nci: assert requested protocol is valid - RDMA/srp: Do not call scsi_done() from srp_abort() - arm64/mpam: Expand the monitor number of the resctrl root- !5133 CVE-2021-46926 - !5136 NFS: fs_context: validate UDP retrans to prevent shift out-of-bounds - !5052 v3 Remove WQ_FLAG_BOOKMARK flag - !5140 linux-4.19.y inclusion(4.19.305..4.19.307) part3 - dmaengine: fix is_slave_direction() return false when DMA_DEV_TO_DEV - NFS: fs_context: validate UDP retrans to prevent shift out-of-bounds - ALSA: hda: intel-sdw-acpi: harden detection of controller - soundwire: intel: filter SoundWire controller device search - !5114 fix CVE-2023-52578 - !5119 crypto: scomp - fix req->dst buffer overflow - !5101 EDAC/thunderx: Fix possible out-of-bounds string access - !5094 HID: logitech-hidpp: Fix kernel crash on receiver USB disconnect - crypto: scomp - fix req->dst buffer overflow - net: fix kabi check warning - net: Fix unwanted sign extension in netdev_stats_to_stats64() - net: bridge: use DEV_STATS_INC() - net: add atomic_long_t to net_device_stats fields - !5092 wifi: mac80211: fix potential key use-after-free - EDAC/thunderx: Fix possible out-of-bounds string access - !5095 linux-4.19.y inclusion(4.19.305..4.19.307) part 2 - !5090 drm: bridge/panel: Cleanup connector on bridge detach - !5088 uio_hv_generic: Fix a memory leak in error handling paths - !4952 scsi: qedf: Add pointer checks in qedf_update_link_speed() - !5076 v3 CVE-2021-47074 - netfilter: nft_compat: reject unused compat flag - ppp_async: limit MRU to 64K - inet: read sk->sk_family once in inet_recv_error() - bonding: remove print in bond_verify_device_path - af_unix: fix lockdep positive in sk_diag_dump_icons() - net: ipv4: fix a memleak in ip_setup_cork - ipv6: Ensure natural alignment of const ipv6 loopback and router addresses - virtio_net: Fix Fix "‘%d’ directive writing between 1 and 11 bytes into a region of size 10" warnings - bonding: return -ENOMEM instead of BUG in alb_upper_dev_walk - SUNRPC: Fix a suspicious RCU usage warning - tcp: Add memory barrier to tcp_push() - vlan: skip nested type that is not IFLA_VLAN_QOS_MAPPING - md: Whenassemble the array, consult the superblock of the freshest device - jbd2: correct the printing of write_flags in jbd2_write_superblock() - !5073 RDMA/rxe: Clear all QP fields if creation failed - !5077 RDMA/rxe: Return CQE error if invalid lkey was supplied - !5055 linux-4.19.y inclusion(4.19.305..4.19.307) part 1 - HID: logitech-hidpp: Fix kernel crash on receiver USB disconnect - wifi: mac80211: fix potential key use-after-free - drm: bridge/panel: Cleanup connector on bridge detach - uio_hv_generic: Fix a memory leak in error handling paths - of: unittest: Fix of_count_phandle_with_args() expected value message - of: unittest: Fix compile in the non-dynamic case - RDMA/rxe: Return CQE error if invalid lkey was supplied - nvme-loop: fix memory leak in nvme_loop_create_ctrl() - nvme-loop: don't put ctrl on nvme_init_ctrl error - !5060 net: fix possible store tearing in neigh_periodic_work() - RDMA/rxe: Clear all QP fields if creation failed - net: fix possible store tearing in neigh_periodic_work() - of: Fix double free in of_parse_phandle_with_args_map - pmdomain: core: Move the unused cleanup to a _sync initcall - tick/sched: Preserve number of idle sleeps across CPU hotplug events - acpi: property: Let args be NULL in __acpi_node_get_property_reference - tick-sched: Fix idle and iowait sleeptime accounting vs CPU hotplug - ACPI: LPIT: Avoid u32 multiplication overflow - audit: Send netlink ACK before setting connection in auditd_set - crypto: scompress - return proper error code for allocation failure - crypto: af_alg - Disallow multiple in-flight AIO requests - x86/mm/ident_map: Use gbpages only where full GB page should be mapped. - mm/writeback: fix possible divide-by-zero in wb_dirty_limits(), again - !5046 usb: gadget: f_fs: Clear ffs_eventfd in ffs_data_clear. - sched: remove wait bookmarks - filemap: remove use of wait bookmarks - usb: gadget: f_fs: Clear ffs_eventfd in ffs_data_clear. - !4929 scsi: pm80xx: Avoid leaking tags when processing OPC_INB_SET_CONTROLLER_CONFIG command - !4752 block: add check that partition length needs to be aligned with block size - !4735 blk-mq: fix IO hang from sbitmap wakeup race - !3864 nvme: sanitize metadata bounce buffer for reads - !4946 NFC: st21nfca: Fix memory leak in device probe and remove - !4999 CVE-2021-46984 - !4938 crypto: qat - ADF_STATUS_PF_RUNNING should be set after adf_dev_init - !4990 vt: fix memory overlapping when deleting chars in the buffer - !4978 nilfs2: fix potential use after free in nilfs_gccache_submit_read_data() - !5018 ethernet:enic: Fix a use after free bug in enic_hard_start_xmit - !4992 bnxt_en: Fix RX consumer index logic in the error path. - !4997 Fixed CVE-2023-52504 - !4982 i2c: img-scb: fix reference leak when pm_runtime_get_sync fails - !4983 net:emac/emac-mac: Fix a use after free in emac_mac_tx_buf_send - !4995 mpam/mpam_ctrlmon: update monitor config with its parent's ctrl_val - !4974 arm64/mpam: set default feedback of last_cmd_status interface as null string - !4975 arm64/mpam: support resctrl fs to show mounting option - !4973 arm64/mpam: Skip updates of unrelated ctrl type - ethernet:enic: Fix a use after free bug in enic_hard_start_xmit - !4996 soundwire: stream: fix memory leak in stream config error path - !4817 v2 io_uring: fix overflows checks in provide buffers - kyber: fix kabi broken in ->bio_merge() - kyber: fix out of bounds access when preempted - x86/alternatives: Disable KASAN in apply_alternatives() - soundwire: stream: fix memory leak in stream config error path - mpam/mpam_ctrlmon: update monitor config with its parent's ctrl_val - bnxt_en: Fix RX consumer index logic in the error path. - !4969 CVE-2021-46990 - vt: fix memory overlapping when deleting chars in the buffer - !4945 ieee802154: ca8210: Fix a potential UAF in ca8210_probe - !4944 perf/x86/lbr: Filter vsyscall addresses - !4967 i2c: xiic: fix reference leak when pm_runtime_get_sync fails - !4970 binder: fix async_free_space accounting for empty parcels - !4919 v2 HID: usbhid: fix info leak in hid_submit_ctrl - !4980 net: usb: smsc75xx: Fix uninit-value access in __smsc75xx_read_reg - net:emac/emac-mac: Fix a use after free in emac_mac_tx_buf_send - i2c: img-scb: fix reference leak when pm_runtime_get_sync fails - net: usb: smsc75xx: Fix uninit-value access in __smsc75xx_read_reg - !4949 CVE-2021-47024 - nilfs2: fix potential use after free in nilfs_gccache_submit_read_data() - arm64/mpam: support resctrl fs to show mounting option - arm64/mpam: set default feedback of last_cmd_status interface as null string - arm64/mpam: Skip updates of unrelated ctrl type - binder: fix async_free_space accounting for empty parcels - powerpc/64s: Fix crashes when toggling entry flush barrier - i2c: xiic: fix reference leak when pm_runtime_get_sync fails - scsi: qedf: Add pointer checks in qedf_update_link_speed() - vsock/virtio: free queued packets when closing socket - vsock/virtio: discard packets only when socket is really closed - virtio_vsock: Fix race condition in virtio_transport_recv_pkt - NFC: st21nfca: Fix memory leak in device probe and remove - ieee802154: ca8210: Fix a potential UAF in ca8210_probe - perf/x86/lbr: Filter vsyscall addresses - crypto: qat - ADF_STATUS_PF_RUNNING should be set after adf_dev_init - scsi: pm80xx: Avoid leaking tags when processing OPC_INB_SET_CONTROLLER_CONFIG command - HID: usbhid: fix info leak in hid_submit_ctrl - io_uring: fix overflows checks in provide buffers - block: add check that partition length needs to be aligned with block size - blk-mq: fix IO hang from sbitmap wakeup race - nvme: sanitize metadata bounce buffer for reads- !4947 powerpc/64s: Fix pte update for kernel memory on radix - !4932 phy: ti: phy-omap-usb2: Fix NULL pointer dereference for SRP - powerpc/64s: Fix pte update for kernel memory on radix - !4874 v2 net: openvswitch: limit the number of recursions from action sets - !4920 ARM: footbridge: remove personal server platform - !4887 KVM: Destroy I/O bus devices on unregister failure _after_ sync'ing SRCU - !4918 v3 usb: hub: Guard against accesses to uninitialized BOS descriptors - !4936 i2c: validate user data in compat ioctl - i2c: validate user data in compat ioctl - !4898 platform/x86: dell-smbios-wmi: Fix oops on rmmod dell_smbios - !4879 KVM: Stop looking for coalesced MMIO zones if the bus is destroyed - !4869 Fix CVE-2021-46941 - phy: ti: phy-omap-usb2: Fix NULL pointer dereference for SRP - !4904 i2c: sprd: fix reference leak when pm_runtime_get_sync fails - !4859 hfsplus: prevent corruption in shrinking truncate - !4877 i2c: Fix a potential use after free - ARM: footbridge: fix PCI interrupt mapping - !4888 v3 media: dvbdev: Fix memory leak in dvb_media_device_free() - usb: hub: Guard against accesses to uninitialized BOS descriptors - !4825 sched/membarrier: reduce the ability to hammer on sys_membarrier - !4882 Input: appletouch - initialize work before device registration - !4876 backport patch to fix CVE-2021-47077 - !4899 net: qualcomm: rmnet: fix global oob in rmnet_policy - i2c: sprd: fix reference leak when pm_runtime_get_sync fails - !4892 Bluetooth: rfcomm: Fix null-ptr-deref in rfcomm_check_security - !4881 i2c: cadence: fix reference leak when pm_runtime_get_sync fails - net: qualcomm: rmnet: fix global oob in rmnet_policy - platform/x86: dell-smbios-wmi: Fix oops on rmmod dell_smbios - !4865 Input: powermate - fix use-after-free in powermate_config_complete - !4860 apparmor: avoid crash when parsed profile name is empty - Bluetooth: rfcomm: Fix null-ptr-deref in rfcomm_check_security - media: dvbdev: Fix memory leak in dvb_media_device_free() - KVM: Destroy I/O bus devices on unregister failure _after_ sync'ing SRCU - Input: appletouch - initialize work before device registration - i2c: cadence: fix reference leak when pm_runtime_get_sync fails - KVM: Stop looking for coalesced MMIO zones if the bus is destroyed - i2c: Fix a potential use after free - ARM: 9064/1: hw_breakpoint: Do not directly check the event's overflow_handler hook - net: openvswitch: limit the number of recursions from action sets - usb: dwc3: core: Do not perform GCTL_CORE_SOFTRESET during bootup - usb: dwc3: core: balance phy init and exit - usb: dwc3: core: Do core softreset when switch mode - Input: powermate - fix use-after-free in powermate_config_complete - !4856 bus: qcom: Put child node before return - apparmor: avoid crash when parsed profile name is empty - hfsplus: prevent corruption in shrinking truncate - bus: qcom: Put child node before return - !4828 Drivers: hv: vmbus: Use after free in __vmbus_open() - !4806 v2 media: pvrusb2: fix use after free on context disconnection - !4777 drivers/amd/pm: fix a use-after-free in kv_parse_power_table - !4819 v2 fix CVE-2020-36782 - !4833 openvswitch: fix stack OOB read while fragmenting IPv4 packets - !4677 f2fs: fix to avoid dirent corruption - !4804 CVE-2023-52451 backport to 4.19 v2 - openvswitch: fix stack OOB read while fragmenting IPv4 packets - Drivers: hv: vmbus: Use after free in __vmbus_open() - !4778 v3 Revert "memcg: fix a UAF problem in drain_all_stock()" - sched/membarrier: reduce the ability to hammer on sys_membarrier - i2c: imx-lpi2c: fix reference leak when pm_runtime_get_sync fails - PM: runtime: Add pm_runtime_resume_and_get to deal with usage counter - !4812 parisc: Clear stale IIR value on instruction access rights trap - parisc: Clear stale IIR value on instruction access rights trap - media: pvrusb2: fix use after free on context disconnection - powerpc/pseries/memhp: Fix access beyond end of drmem array - powerpc/pseries/memhotplug: Quieten some DLPAR operations - !4758 binder: signal epoll threads of self-work - !4746 KVM: arm64: vgic-its: Avoid potential UAF in LPI translation cache - Revert "memcg: fix a UAF problem in drain_all_stock()" - drivers/amd/pm: fix a use-after-free in kv_parse_power_table - !4751 [sync] PR-4623: i2c: Optimized the value setting of maxwrite limit to fifo depth - 1 - !4707 mtd: Fix gluebi NULL pointer dereference caused by ftl notifier - !4686 mlxsw: spectrum_acl_tcam: Fix stack corruption - binder: signal epoll threads of self-work - !4710 CVE-2021-46904 for openEuler1.0 - i2c: hisi: Add clearing tx aempty interrupt operation - i2c: hisi: Optimized the value setting of maxwrite limit to fifo depth - 1 - !4671 uio: Fix use-after-free in uio_open - KVM: arm64: vgic-its: Avoid potential UAF in LPI translation cache - net: hso: fix NULL-deref on disconnect regression - net: hso: fix null-ptr-deref during tty device unregistration - usb: hso: check for return value in hso_serial_common_create() - mtd: Fix gluebi NULL pointer dereference caused by ftl notifier - mlxsw: spectrum_acl_tcam: Fix stack corruption - f2fs: fix to avoid dirent corruption - uio: Fix use-after-free in uio_open- !4701 v2 mlxsw: spectrum_acl_tcam: Fix NULL pointer dereference in error path - !4684 v3 CVE-2023-52435 - mlxsw: spectrum_acl_tcam: Fix NULL pointer dereference in error path - net: Fix compile warning in skb_segment() - net: prevent mss overflow in skb_segment() - !4643 f2fs: explicitly null-terminate the xattr list - f2fs: explicitly null-terminate the xattr list- !4601 v2 xen-netback: don't produce zero-size SKB frags - xen-netback: don't produce zero-size SKB frags - !4583 net: hns3: fix a bug and modify the hns3 driver version - net: hns3: update hns3 version to 24.2.1 - net: hns3: fix tm port shapping of fibre port is incorrect after driver initialization - !4552 v4 CVE-2023-52340 - !4526 v2 fs:/dcache.c: fix negative dentry flag warning in dentry_free - ipv6: fix kabi broken in struct dst_ops - ipv6: Document that max_size sysctl is deprecated - ipv6: remove max_size check inline with ipv4 - !4538 fix kprobe reenter bug - arm64/openeuler_defconfig: add not set config to fix compiling error - tracing/kprobes: Do the notrace functions check without kprobes on ftrace - fs:/dcache.c: fix negative dentry flag warning in dentry_free- !4524 fix spi: hisi-sfc-v3xx: Return IRQ_NONE if no interrupts were detected- !4454 netfilter: nf_tables: reject QUEUE/DROP verdict parameters - netfilter: nf_tables: reject QUEUE/DROP verdict parameters - !4411 v2 drm/atomic: Fix potential use-after-free in nonblocking commits - !4412 v3 Save and restore msg_namelen in sock_sendmsg - net: Save and restore msg_namelen in sock_sendmsg - net: prevent rewrite of msg_name in sock_sendmsg() - !4399 net: dst: Optimized route gc - drm/atomic: Fix potential use-after-free in nonblocking commits - !4392 linux-4.19.y inclusion - !4369 mm/filemap: avoid buffered read/write race to read inconsistent data - net/dst: use a smaller percpu_counter batch for dst entries accounting - net: add a route cache full diagnostic message - net: check dev->gso_max_size in gso_features_check() - net: warn if gso_type isn't set for a GSO SKB - mm: fix unmap_mapping_range high bits shift bug - x86/alternatives: Sync core before enabling interrupts - mm/filemap: avoid buffered read/write race to read inconsistent data - !4360 net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve - !4320 io_uring/af_unix: disable sending io_uring over sockets - net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve - io_uring/af_unix: disable sending io_uring over sockets- !4277 fs:/dcache.c: fix negative dentry limit not complete problem - !4288 net/rds: Fix UBSAN: array-index-out-of-bounds in rds_cmsg_recv - !4299 smb: client: fix NULL deref in asn1_ber_decoder() - smb: client: fix NULL deref in asn1_ber_decoder() - net/rds: Fix UBSAN: array-index-out-of-bounds in rds_cmsg_recv - !4228 fix spinlock already unlocked in inet_csk_reqsk_queue_add' bug - fs:/dcache.c: fix negative dentry limit not complete problem - !4235 nfc: nci: fix possible NULL pointer dereference in send_acknowledge() - !4255 drm/amdgpu: Fix potential fence use-after-free v2 - !4209 dhugetlb: skip unexpected migration - drm/amdgpu: Fix potential fence use-after-free v2 - !4231 crypto: hisilicon/qm - drop unnecessary IS_ENABLE(CONFIG_NUMA) check - nfc: nci: fix possible NULL pointer dereference in send_acknowledge() - crypto: hisilicon/qm - drop unnecessary IS_ENABLE(CONFIG_NUMA) check - ipv6: init the accept_queue's spinlocks in inet6_create - tcp: make sure init the accept_queue's spinlocks once - !4212 netlink: fix potential sleeping issue in mqueue_flush_file - netlink: fix potential sleeping issue in mqueue_flush_file - dhugetlb: skip unexpected migration - dhugetlb: introduce page_belong_to_dynamic_hugetlb() function - !3944 time: Handle negative seconds correctly in timespec64_to_ns() - !3943 timerqueue: Use rb_entry_safe() in timerqueue_getnext() - !3942 efi/x86: Map the entire EFI vendor string before copying it - !4166 sched/fair: Fix qos_timer deadlock when cpuhp offline - sched/fair: Fix qos_timer deadlock when cpuhp offline - !4137 sctp: fix potential deadlock on &net->sctp.addr_wq_lock - sctp: fix potential deadlock on &net->sctp.addr_wq_lock - time: Handle negative seconds correctly in timespec64_to_ns() - timerqueue: Use rb_entry_safe() in timerqueue_getnext() - efi/x86: Map the entire EFI vendor string before copying it- !4101 netfilter: nf_tables: fix pointer math issue in nft_byteorder_eval() - !2954 spi: phytium: fix phytium_spi_irq panic on boot - netfilter: nf_tables: fix pointer math issue in nft_byteorder_eval() - !4067 fix CVE-2022-48619 - !4080 rtnetlink: Reject negative ifindexes in RTM_NEWLINK - rtnetlink: Reject negative ifindexes in RTM_NEWLINK - Revert "rtnetlink: Reject negative ifindexes in RTM_NEWLINK" - !4065 smb: client: fix OOB in receive_encrypted_standard() - !4021 netfilter: nf_tables: Reject tables of unsupported family - Input: add bounds checking to input_set_capability() - smb: client: fix OOB in receive_encrypted_standard() - !4039 crypto: hisilicon/qm: fix several issues - !4025 crypto: hisilicon - replace 'smp_processor_id' with the raw version of the macro - !3980 vhost: use kzalloc() instead of kmalloc() followed by memset() - crypto: hisilicon/qm: fix several issues - crypto: hisilicon - replace 'smp_processor_id' with the raw version of the macro - netfilter: nf_tables: Reject tables of unsupported family - vhost: use kzalloc() instead of kmalloc() followed by memset() - spi: phytium: fix phytium_spi_irq panic on boot- !4006 crypto: hisilicon/sec2: fix memory use-after-free issue - crypto: hisilicon/sec2: fix memory use-after-free issue - !3923 net: bridge: multicast: fix UAF of net_bridge - net: bridge: multicast: fix UAF of net_bridge- !3768 iomap: add support to track dirty state of sub pages - !3845 netfilter: ctnetlink: fix possible refcount leak in ctnetlink_create_conntrack() - !3847 nvmet: nul-terminate the NQNs passed in the connect command - !3863 linux-4.19.y inclusion(4.19.299..4.19.303) part2 - team: Fix use-after-free when an option instance allocation fails - packet: Move reference count in packet_sock to atomic_long_t - tcp: do not accept ACK of bytes we never sent - ipv4: ip_gre: Avoid skb_pull() failure in ipgre_xmit() - ipv6: fix potential NULL deref in fib6_add() - ipv4: Correct/silence an endian warning in __ip_do_redirect - net: sched: fix race condition in qdisc_graft() - macvlan: Don't propagate promisc change to lower dev in passthru - ppp: limit MRU to 64K - tty: Fix uninit-value access in ppp_sync_receive() - net: annotate data-races around sk->sk_dst_pending_confirm - net: annotate data-races around sk->sk_tx_queue_mapping - !3862 linux-4.19.y inclusion(4.19.299..4.19.303) part1 - ring-buffer: Fix memory leak of free page - arm64: mm: Always make sw-dirty PTEs hw-dirty in pte_modify - asm-generic: qspinlock: fix queued_spin_value_unlocked() implementation - Revert "PCI: acpiphp: Reassign resources on bridge if necessary" - x86/CPU/AMD: Check vendor in the AMD microcode callback - genirq/generic_chip: Make irq_remove_generic_chip() irqdomain aware - audit: don't WARN_ON_ONCE(!current->mm) in audit_exe_compare() - audit: don't take task_lock() in audit_exe_compare() code path - nvmet: nul-terminate the NQNs passed in the connect command - netfilter: ctnetlink: fix possible refcount leak in ctnetlink_create_conntrack() - !3823 [sync] PR-3822: ext4: fix kernel BUG in 'ext4_write_inline_data_end()' - ext4: fix kernel BUG in 'ext4_write_inline_data_end()' - !3803 net/sched: cbs: Fix not adding cbs instance to list - net/sched: cbs: Fix not adding cbs instance to list - !3770 ext4: fix uninitialized ratelimit_state->lock access in __ext4_fill_super() - ext4: fix uninitialized ratelimit_state->lock access in __ext4_fill_super() - iomap: add support to track dirty state of sub pages - !3757 Fix bugs from LTS patches - devcoredump: Send uevent once devcd is ready - devcoredump : Serialize devcd_del work - driver core: Release all resources during unbind before updating device links - !3716 appletalk: Fix Use-After-Free in atalk_ioctl - !3667 net/rose: Fix Use-After-Free in rose_ioctl - appletalk: Fix Use-After-Free in atalk_ioctl - net/rose: Fix Use-After-Free in rose_ioctl- !3660 atm: Fix Use-After-Free in do_vcc_ioctl - !3687 Bluetooth: af_bluetooth: Fix Use-After-Free in bt_sock_recvmsg - Bluetooth: af_bluetooth: Fix Use-After-Free in bt_sock_recvmsg - !3672 smb: client: fix potential OOB in smb2_dump_detail() - !3671 smb: client: fix OOB in smbCalcSize() - !3627 jbd2: fix soft lockup in journal_finish_inode_data_buffers() - !3189 fs: don't audit the capability check in simple_xattr_list() - smb: client: fix potential OOB in smb2_dump_detail() - smb: client: fix OOB in smbCalcSize() - !3555 net: check vlan filter feature in vlan_vids_add_by_dev() and vlan_vids_del_by_dev() - atm: Fix Use-After-Free in do_vcc_ioctl - !3592 CVE-2023-35827 patchset - !3449 Fix data-races around - jbd2: fix soft lockup in journal_finish_inode_data_buffers() - ravb: Fix races between ravb_tx_timeout_work() and net related ops - ravb: Fix use-after-free issue in ravb_tx_timeout_work() - net: check vlan filter feature in vlan_vids_add_by_dev() and vlan_vids_del_by_dev() - ip: Fix data-races around sysctl_ip_no_pmtu_disc. - ip: Fix data-races around sysctl_ip_fwd_update_priority. - fs: don't audit the capability check in simple_xattr_list()- !3607 Fix CVE-2023-6546 - !3606 perf/core: Fix CVE-2023-6931 - tty: n_gsm: fix the UAF caused by race condition in gsm_cleanup_mux - tty: n_gsm: fix restart handling via CLD command - perf: Fix perf_event_validate_size() lockdep splat - perf: Fix perf_event_validate_size() - !3417 SCSI: hisi_raid: support SPxxx serial RAID/HBA controllers - !3531 Fix kernel panic occurs during ISO installation on the 20.03 SP3/SP4 - i2c: hisi: Only handle the interrupt of the driver's transfer - i2c: hisi: Only use the completion interrupt to finish the transfer - i2c: hisi: Avoid redundant interrupts - !3483 net: Remove acked SYN flag from packet in the transmit queue correctly - net: Remove acked SYN flag from packet in the transmit queue correctly - SCSI: hisi_raid: support SPxxx serial RAID/HBA controllers- !3426 Revert "hrtimers: Push pending hrtimers away from outgoing CPU earlier" - Revert "hrtimers: Push pending hrtimers away from outgoing CPU earlier" - Revert "cpu/hotplug: fix kabi breakage in enum cpuhp_state"- !3347 tun: avoid double free in tun_free_netdev - tun: avoid double free in tun_free_netdev - !3239 net: hns: fix fake link up - !3113 KVM: arm64: limit PMU version to PMUv3 for ARMv8.1 - !3281 LTS patch backport - !3122 nvme: retain split access workaround for capability reads - !3262 icmp: Fix a data-race around sysctl_icmp_errors_use_inbound_ifaddr. - net: fix kabi broken in struct netns_xfrm - xfrm: fix a data-race in xfrm_gen_index() - !3276 linux-4.19.y inclusion - !3263 workqueue: Override implicit ordered attribute in workqueue_apply_unbound_cpumask() - !3267 x86/cpu: Fix AMD erratum #1485 on Zen4-based CPUs - dccp/tcp: Call security_inet_conn_request() after setting IPv6 addresses. - can: dev: can_restart(): fix race condition between controller restart and netif_carrier_on() - can: dev: can_restart(): don't crash kernel if carrier is OK - can: dev: move driver related infrastructure into separate subdir - ipv6: avoid atomic fragment on GSO packets - tcp_metrics: do not create an entry from tcp_init_metrics() - tcp_metrics: properly set tp->snd_ssthresh in tcp_init_metrics() - tcp_metrics: add missing barriers on delete - tcp: tsq: relax tcp_small_queue_check() when rtx queue contains a single skb - tcp: fix excessive TLP and RACK timeouts from HZ rounding - genirq/matrix: Exclude managed interrupts in irq_matrix_allocated() - ACPI: sysfs: Fix create_pnp_modalias() and create_of_modalias() - ACPI: irq: Fix incorrect return value in acpi_register_gsi() - ext4: move 'ix' sanity check to corrent position - vfs: fix readahead(2) on block devices - overlayfs: set ctime when setting mtime and atime - quota: Fix slow quotaoff - mcb: remove is_added flag from mcb_device struct - sched,idle,rcu: Push rcu_idle deeper into the idle path - cgroup: Remove duplicates in cgroup v1 tasks file - x86/cpu: Fix AMD erratum #1485 on Zen4-based CPUs - workqueue: Override implicit ordered attribute in workqueue_apply_unbound_cpumask() - icmp: Fix a data-race around sysctl_icmp_errors_use_inbound_ifaddr. - net: hns: update hns version to 23.12.1 - net: hns: fix fake link up on xge port - !3021 fix CFS bandwidth vs. hrtimer self deadlock - !3202 regmap: fix NULL deref on lookup - regmap: fix NULL deref on lookup - KVM: arm64: limit PMU version to PMUv3 for ARMv8.1 - arm64: cpufeature: Extract capped perfmon fields - nvme: retain split access workaround for capability reads - cpu/hotplug: fix kabi breakage in enum cpuhp_state - hrtimers: Push pending hrtimers away from outgoing CPU earlier- !3158 mm: don't let userspace spam allocations warnings - mm: don't let userspace spam allocations warnings - !2781 cpufreq: Abort show()/store() for half-initialized policies - !3118 sched: smart grid: check is active in affinity timer - sched: smart grid: check is active in affinity timer - !2977 Backport crypto bugfix - !3071 perf/core: Fix perf_mmap fail when CONFIG_PERF_USE_VMALLOC enabled - perf/core: Fix perf_mmap fail when CONFIG_PERF_USE_VMALLOC enabled - !3038 ipv4: igmp: fix refcnt uaf issue when receiving igmp query packet - !3031 x86/mce/amd: Publish the bank pointer only after setup has succeeded - !3030 x86/mce/inject: Fix a wrong assignment of i_mce.status - ipv4: igmp: fix refcnt uaf issue when receiving igmp query packet - x86/mce/amd: Publish the bank pointer only after setup has succeeded - x86/mce/inject: Fix a wrong assignment of i_mce.status - crypto: fix kabi broken in struct crypto_instance - crypto: api - Use work queue in crypto_destroy_instance - cpufreq: make interface functions and lock holding state clear - cpufreq: Abort show()/store() for half-initialized policies- bug fix for enfs, when diconnect many sockets io is hang- arm64: cpufeature: Extract capped perfmon fields - KVM: arm64: limit PMU version to PMUv3 for ARMv8.1- !3000 [openEuler-1.0-LTS] add Phytium drivers CONFIG - arm64: config: add config for Phytium drivers - !2908 mm/migrate.c: fix potential indeterminate pte entry in migrate_vma_insert_page() - !2869 mm, memory_hotplug: update pcp lists everytime onlining a memory block - !2805 sched/fair: Refill bandwidth before scaling - !2804 signal: Properly set TRACE_SIGNAL_LOSE_INFO in __send_signal - !2960 Add script to check & update openeuler_defconfig - config: update openeuler_defconfig for arm64 - config: update openeuler_defconfig for x86 - kconfig: Add script to check & update openeuler_defconfig - kbuild: ensure full rebuild when the compiler is updated - mm/migrate.c: fix potential indeterminate pte entry in migrate_vma_insert_page() - mm, memory_hotplug: update pcp lists everytime onlining a memory block - sched/fair: Refill bandwidth before scaling - signal: Properly set TRACE_SIGNAL_LOSE_INFO in __send_signal- Revert "genirq: Increase the number of IRQ descriptors"- crypto: hisilicon - Add value profile support for kernel- !1935 [openEuler-1.0-LTS] Add Phytium optee driver support - !2895 netfilter: conntrack: dccp: copy entire header to stack buffer, not just basic one - !2873 Fix SAS start error with maxcpus=1 - genirq: Take the proposed affinity at face value if force==true - optee: add phytium optee driver - optee: model OP-TEE as a platform device/driver - netfilter: conntrack: dccp: copy entire header to stack buffer, not just basic one - irqchip/gic-v3: Always trust the managed affinity provided by the core code - genirq: Always limit the affinity to online CPUs - genirq/msi: Shutdown managed interrupts with unsatifiable affinities - !2508 [openEuler-1.0-LTS] jpeg: Add a Phytium JPEG Engine driver - !2522 [openEuler-1.0-LTS] Add support for Phytium SoC RNG - !2877 Revert "tcp: fix delayed ACKs for MSS boundary condition" - !2693 [openEuler-1.0-LTS] Add support for Phytium QSPI - !2402 [openEuler-1.0-LTS] Add Phytium w1 driver support - !2403 [openEuler-1.0-LTS] Add Phytium adc driver support - !1874 [openEuler-1.0-LTS] Add Phytium mailbox driver support - !2024 [openEuler-1.0-LTS] Add Phytium RTC driver support - !2682 [openEuler-1.0-LTS] Add support for Phytium MMC - !2671 [openEuler-1.0-LTS] phytium dwmac net driver - !2676 [openEuler-1.0-LTS] Add Phytium gpio driver support - !2604 [openEuler-1.0-LTS] Add support for Phytium SPI - !2540 [openEuler-1.0-LTS] Driver for the Phytium keypad port. - Revert "tcp: fix delayed ACKs for MSS boundary condition" - hwrng: Add support for Phytium SoC RNG - jpeg: Add a Phytium JPEG Engine driver - !2818 Fix memleak in disassociate_ctty() - !2810 drivers/gmjstcm: import CVE-2011-1160 CVE-2011-1162 fixes to tcm.c - drivers/gmjstcm: import CVE-2011-1160 CVE-2011-1162 fixes to tcm.c - rtc: add phytium rtc driver document - rtc: add rtc drivers for Phytium SOCs - gpio: add phytium gpio driver - dwmac:add phytium dwmac driver - mailbox:add phytium mailbox driver document - mailbox: add phytium mailbox driver - mmc: add phytium mmc driver DT binding docs - mmc: add support for Phytium MMC - tty: tty_jobctrl: fix pid memleak in disassociate_ctty() - Revert "tty: fix pid memleak in disassociate_ctty()" - spi: add phytium spi driver DT binding docs - spi: add phytium spi support - qspi: add phytium qspi driver DT binding docs - qspi: add support for Phytium QSPI controller - gpio: add phytium gpio driver document - dwmac:add phytium dwmac driver DT binding docs - adc: add phytium adc driver - adc: add phytium adc driver document - w1: add phytium w1 driver - w1: add phytium w1 driver document - KEYPAD: Driver for the Phytium keypad port. - KEYPAD: Document for the Phytium keypad port.- config: arm64: Enable dubugfs config of hisi sas - scsi: hisi_sas_v3_hw: Remove extra function calls for runtime pm - scsi: hisi_sas_v3_hw: Don't use PCI helper functions - scsi: hisi_sas: Check usage count only when the runtime PM status is RPM_SUSPENDING - scsi: hisi_sas: Work around build failure in suspend function - scsi: hisi_sas: Block requests before take debugfs snapshot - scsi: hisi_sas: Add slave_destroy interface for v3 hw - scsi: hisi_sas: Configure the initialization registers according to HBA model - scsi: hisi_sas: Increase debugfs_dump_index after dump is completed - scsi: hisi_sas: Ensure all enabled PHYs up during controller reset - scsi: hisi_sas: Exit suspending state when usage count is greater than 0 - scsi: hisi_sas: Set a port invalid only if there are no devices attached when refreshing port id - Revert "scsi: hisi_sas: Disable SATA disk phy for severe I_T nexus reset failure" - scsi: hisi_sas: Disable-SATA-disk-phy-for-severe-I_T-nexus reset failure - scsi: hisi_sas: Use abort task set to reset SAS disks when discovered - scsi: hisi_sas: Undo RPM resume for failed notify phy event for v3 HW - scsi: hisi_sas: Fix rescan after deleting a disk - scsi: hisi_sas: Modify v3 HW SSP underflow error processing - scsi: hisi_sas: Fix phyup timeout on FPGA - scsi: hisi_sas: Prevent parallel controller reset and control phy command - scsi: hisi_sas: Limit users changing debugfs BIST count value - scsi: hisi_sas: Use autosuspend for the host controller - scsi: hisi_sas: Keep controller active between ISR of phyup and the event being processed - scsi: hisi_sas: Add more logs for runtime suspend/resume - scsi: hisi_sas: Wait for phyup in hisi_sas_control_phy() - scsi: hisi_sas: Initialise devices in .slave_alloc callback - scsi: hisi_sas: Speed up error handling when internal abort timeout occurs - scsi: hisi_sas: Reset controller for internal abort timeout - scsi: hisi_sas: Include HZ in timer macros - scsi: hisi_sas: Run I_T nexus resets in parallel for clear nexus reset - scsi: hisi_sas: Put a limit of link reset retries - scsi: hisi_sas: Print SATA device SAS address for soft reset failure - scsi: hisi_sas: Warn in v3 hw channel interrupt handler when status reg cleared - scsi: hisi_sas: Directly snapshot registers when executing a reset - scsi: hisi_sas: Call sas_unregister_ha() to roll back if .hw_init() fails - scsi: hisi_sas: Print SAS address for v3 hw erroneous completion print - scsi: hisi_sas: Add trace FIFO debugfs support - scsi: hisi_sas: Enable debugfs support by default - scsi: hisi_sas: Remove deferred probe check in hisi_sas_v2_probe() - scsi: hisi_sas: use threaded irq to process CQ interrupts - scsi: hisi_sas: Remove preemptible() - scsi: hisi_sas: Move debugfs code to v3 hw driver - scsi: hisi_sas: Reduce some indirection in v3 hw driver - scsi: hisi_sas: Fix up probe error handling for v3 hw - scsi: hisi_sas: Recover PHY state according to the status before reset - scsi: hisi_sas: Add device link between SCSI devices and hisi_hba - scsi: hisi_sas: Add check for methods _PS0 and _PR0 - scsi: hisi_sas: Add controller runtime PM support for v3 hw - scsi: hisi_sas: Switch to new framework to support suspend and resume - scsi: hisi_sas: Code style cleanup - scsi: hisi_sas: Add missing newlines - scsi: hisi_sas: Add BIST support for fixed code pattern - scsi: hisi_sas: Add BIST support for phy FFE - scsi: hisi_sas: Make phy index variable name consistent - scsi: hisi_sas: Do not modify upper fields of PROG_PHY_LINK_RATE reg - scsi: hisi_sas: Modify macro name for OOB phy linkrate - scsi: hisi_sas: Remove one kerneldoc comment - scsi: hisi_sas: Do not reset phy timer to wait for stray phy up - scsi: hisi_sas: Stop returning error code from slot_complete_vX_hw() - scsi: hisi_sas: Add SAS_RAS_INTR0 to debugfs register name list - scsi: hisi_sas: Modify the commit information for DSM method - scsi: hisi_sas: Display proc_name in sysfs - scsi: hisi_sas: Fix build error without SATA_HOST - scsi: hisi_sas: Use dev_err() in read_iost_itct_cache_v3_hw() - scsi: hisi_sas: Add prints for v3 hw interrupt converge and automatic affinity - scsi: hisi_sas: Modify the file permissions of trigger_dump to write only - scsi: hisi_sas: Replace magic number when handle channel interrupt - scsi: hisi_sas: Stop converting a bool into a bool - scsi: hisi_sas: Return directly if init hardware failed - scsi: hisi_sas: Record the phy down event in debugfs - scsi: hisi_sas: Delete the debugfs folder of hisi_sas when the probe fails - scsi: hisi_sas: Add ability to have multiple debugfs dumps - scsi: hisi_sas: Add module parameter for debugfs dump count - scsi: hisi_sas: Allocate memory for multiple dumps of debugfs - scsi: hisi_sas: Add debugfs file structure for ITCT cache - scsi: hisi_sas: Add debugfs file structure for IOST cache - scsi: hisi_sas: Add debugfs file structure for ITCT - scsi: hisi_sas: Add debugfs file structure for IOST - scsi: hisi_sas: Add debugfs file structure for port - scsi: hisi_sas: Add debugfs file structure for registers - scsi: hisi_sas: Add debugfs file structure for DQ - scsi: hisi_sas: Add debugfs file structure for CQ - scsi: hisi_sas: Add timestamp for a debugfs dump - scsi: hisi_sas: Don't create debugfs dump folder twice - scsi: hisi_sas: Make three functions static - scsi: hisi_sas: fix spelling mistake "digial" -> "digital" - scsi: hisi_sas: Add hisi_sas_debugfs_alloc() to centralise allocation - scsi: hisi_sas: Remove some unused function arguments - scsi: hisi_sas: Remove redundant work declaration - scsi: hisi_sas: Remove hisi_sas_hw.slot_complete - scsi: hisi_sas: add debugfs auto-trigger for internal abort time out - scsi: hisi_sas: use devm_platform_ioremap_resource() to simplify code - scsi: hisi_sas: remove set but not used variable 'irq_value' - scsi: hisi_sas: Remove some unnecessary code - scsi: hisi_sas: Modify return type of debugfs functions - scsi: hisi_sas: Drop free_irq() when devm_request_irq() failed - scsi: hisi_sas: Drop SMP resp frame DMA mapping - scsi: hisi_sas: Drop kmap_atomic() in SMP command completion - scsi: hisi_sas: Snapshot AXI and RAS register at debugfs - scsi: hisi_sas: Snapshot HW cache of IOST and ITCT at debugfs - scsi: hisi_sas: Fix pointer usage error in show debugfs IOST/ITCT - scsi: hisi_sas: Make max IPTT count equal for all hw revisions - scsi: hisi_sas: Some misc tidy-up - scsi: hisi_sas: Use pci_irq_get_affinity() for v3 hw as experimental - scsi: hisi_sas: Fix losing directly attached disk when hot-plug - scsi: hisi_sas: Fix type casting and missing static qualifier in debugfs code - scsi: hisi_sas: No need to check return value of debugfs_create functions- Backport cpu turbo patches- genirq: Increase the number of IRQ descriptors - irqchip: gic-v3: Collection table support muti pages- net: hns3: Fix unreasonable modifications caused by rollback extension ringparam parameters - net: hns3: Fix ethtool_ Ops&gen_ Improper modification of kabi changes caused by adding members in the ops structure - net: hns3: Fix Kabi issue caused by ptp introducing gettimex64() - Fallback ethtool about nla_ Modification of kabi changes caused by the addition of new associations in the policy structure - net: hns3: Fallback Ethtool's modifications to extack - net: hns3: Fallback ethtool's modification of lane - net: hns3: HNAE3 framework add support for ROH client - net: hns3: add ROH MAC type definitions and support query MAC type - net: hns3: Add configuration of TM QCN error event - net: hns3: fix return value check bug of rx copybreak - net: hns3: add netdev reset check for hns3_set_tunable() - ethtool: mark netlink family as __ro_after_init - net: hns3: add max order judgement for tx spare buffer - net: hns3: fix ethtool tx copybreak buf size indicating not aligned issue - net: hns3: fix deadlock issue when externel_lb and reset are executed together - ethtool: Fix uninitialized number of lanes - ethtool: reset lanes when lanes is omitted - ethtool: limit bitset size - ethtool: fix application of verbose no_mask bitset - net: hns3: fix for not calculating TX BD send size correctly - NIC: hns3: fix kabi - ptp: deprecate gettime64() in favor of gettimex64() - net: hns3: add support for Hisilicon ptp sync device - net: hns3: sync linux kernel hns3 wol to openeuler - net: hns3: fix pointer cast to different type for wol - net: hns3: fix the HCLGE_OPC_WOL_CFG opcode id for wol - net: hns3: fix getting supported parameter from driver in hclge_set_wol - net: hns3: add supports pfc storm detection and suppression - net: hns3: debugfs add dump dscp map info - net: hns3: support debugfs for wake on lan - net: hns3: add debugfs support for interrupt coalesce - net: hns3: delete the hclge_cmd.c and hclgevf_cmd.c - net: hns3: refactor VF cmdq init and uninit APIs with new common APIs - net: hns3: refactor PF cmdq init and uninit APIs with new common APIs - net: hns3: create common cmdq init and uninit APIs - net: hns3: refactor VF cmdq resource APIs with new common APIs - net: hns3: refactor PF cmdq resource APIs with new common APIs - net: hns3: create common cmdq resource allocate/free/query APIs - net: hns3: refactor hclgevf_cmd_send with new hclge_comm_cmd_send API - net: hns3: refactor hclge_cmd_send with new hclge_comm_cmd_send API - net: hns3: fix setting wrong tx_timeout value issue - net: hns3: refactor hclge_mac_link_status_wait for interface reuse - net: hns3: add wait until mac link down - net: hns3: fix set cpu affinity when state down - net: hns3: restore user pause configure when disable autoneg - net: hns3: add tm flush when setting tm - net: hns3: fix the imp capability bit cannot exceed 32 bits issue - net: hns3: fix GRE checksum offload issue - net: hns3: fix strncpy() not using dest-buf length as length issue - net: hns3: add support config dscp map to tc - net: hns3: refactor hclge_update_desc_vfid for extension - net:ethtool Fix the Kabi problem is caused by the new FEC callback function in ethtool_ops - net:hns3 The kabi issue is resolved when the lane members are added to the ethtool_link_ksettings structure - net: hns3: add querying fec statistics - ethtool: add FEC statistics - ethtool: fec_prepare_data() - jump to error handling - ethtool: support FEC settings over netlink - ethtool: netlink bitset handling - net: hns3: avoid mult + div op in critical data path - net: hns3: add support to query and set lane number by ethtool - ethtool: Extend link modes settings uAPI with lanes - net: hns3: Resolved the kabi change issue caused by new members in the devlink structure - The kabi issue is resolved when the rx_buf_len extension ring is used to set parameters or obtain APIs - net: hns3: Fix for the compilation problem of hclge_comm_cmd - net: hns3: remove always exist devlink pointer check - net: hns3: add support for registering devlink for VF - net: hns3: add support for registering devlink for PF - net: hns3: fix output information incomplete for dumping tx queue info with debugfs - net: hns3: fix reset timeout when enable full VF - net: hns3: modify reset delay time to avoid configuration timeout - net: hns3: add support for getting GE port lanes - net: hns3: Use the correct style for SPDX License Identifier - net: hns3: support set/get VxLAN rule of rx flow director by ethtool - net: hns3: refactor for function hclge_fd_convert_tuple - net: hns3: PF supports to set and query lane_num by sysfs - net: ethtool: add VxLAN to the NFC API - net: hns3: add extend interface support for read and write phy register - net: hns3: add support set led - net: hns3: add support set mac state - net: hns3: add support detect port wire type - net: hns3: add support PF provides customized interfaces to detect port faults. - net: hns3: add support disable nic clock - net: hns3: add support config and query serdes lane status - net: hns3: add supports configure optical module enable - net: hns3: add support query the presence of optical module - net: hns3: disbable pfc en before the reset - net: hns3: support set pfc pause trans time - net: hns3: add support query port ext information - net: hns3: add support to get/set 1d torus param - net: hns3: add supports fast reporting of faulty nodes - net: hns3: add support configuring function-level interrupt affinity - net: hns3: add support clear mac statistics - net: hns3: add support customized exception handling interfaces. - net: hns3: fix miss L3E checking for rx packet - net: hns3: support wake on lan configuration and query - net: hns3: refactor the debugfs for dumping FD tcam - net: hns3: allocate fd counter for queue bonding - net: hns3: add queue bonding mode support for VF - net: hns3: add support for queue bonding mode of flow director - net: hns3: refine the handling for VF heartbeat - net: hns3: fix setting incorrect phy link ksettings for firmware in resetting process - net: hns3: add support for external loopback test - net: hns3: net: hns3: add querying and setting fec off mode from firmware - net: hns3: add querying and setting fec llrs mode from firmware - net: hns3: add querying fec ability from firmware - net: hns3: fix software vlan talbe of vlan 0 inconsistent with hardware - net: hns3: handle empty unknown interrupt for VF - net: hns3: add support for TX push mode - net: hns3: create new set of unified hclge_comm_cmd_send APIs - net: hns3: use struct hclge_desc to replace hclgevf_desc in VF cmdq module - net: hns3: create new cmdq hardware description structure hclge_comm_hw - net: hns3: fix incorrect components info of ethtool --reset command - net: hns3: add dql info when tx timeout - net: hns3: debugfs add drop packet statistics of multicast and broadcast for igu - net: hns3: remove the way to set tx spare buf via module parameter - net: hns3: add support to set/get rx buf len via ethtool for hns3 driver - ethtool: add support to set/get rx buf len via ethtool - net: hns3: add support to set/get tx copybreak buf size via ethtool for hns3 driver - ethtool: add support to set/get tx copybreak buf size via ethtool - ethtool: set device ring sizes with RINGS_SET request - ethtool: provide ring sizes with RINGS_GET request - ethtool: helper functions for netlink interface - ethtool: introduce ethtool netlink interface - ethtool: provide link mode names as a string set - ethtool: move string arrays into common file - ethtool: move to its own directory - net: hns3: allow configure ETS bandwidth of all TCs - net: hns3: fix some mac statistics is always 0 in device version V2 - net: hns3: sync rx ring head in echo common pull - net: hns3: fix ROCE base interrupt vector initialization bug - net: hns3: add support for pf querying new interrupt resources - net: hisilicon: fix hsn3_ethtool kernel-doc warnings - net: hns3: adjust string spaces of some parameters of tx bd info in debugfs - net: hns3: add more string spaces for dumping packets number of queue info in debugfs - net: hns3: fix data endian problem of some functions of debugfs - net: hns3: add error recovery module and type for himac - net: hns3: add new ras error type for roce - net: hns3: add update ethtool advertised link modes for FIBRE port when autoneg off - net: hns3: modify functions of converting speed ability to ethtool link mode - net: hns3: add support pause/pfc durations for mac statistics - net: hns3: device specifications add number of mac statistics - net: hns3: modify mac statistics update process for compatibility - net: hns3: schedule the polling again when allocation fails - net: hns3: fix for miscalculation of rx unused desc - net: hns3: PF enable promisc for VF when mac table is overflow - net: hns3: don't rollback when destroy mqprio fail - net: hns3: fix hclge_dbg_dump_tm_pg() stack usage - xdp: Fixed an issue where the trace_mem_disconnect function cannot find the definition. - net: hns3: fix the max tx size according to user manual - net: hns3: disable sriov before unload hclge layer - net: hns3: add limit ets dwrr bandwidth cannot be 0 - net: hns3: fix always enable rx vlan filter problem after selftest - net: hns3: fix show wrong state when add existing uc mac address - net: hns3: do not allow call hns3_nic_net_open repeatedly - net: hns3: optimize the rx page reuse handling process - net: hns3: fix misuse vf id and vport id in some logs - net: hns3: make hclgevf_cmd_caps_bit_map0 and hclge_cmd_caps_bit_map0 static - net: hns3: remove unnecessary spaces - net: hns3: add some required spaces - net: hns3: clean up a type mismatch warning - net: hns3: refine function hns3_set_default_feature() - net: hns3: uniform parameter name of hclge_ptp_clean_tx_hwts() - net: hnss3: use max() to simplify code - net: hns3: refine function hclge_dbg_dump_tm_pri() - net: hns3: reconstruct function hclge_ets_validate() - net: hns3: reconstruct function hns3_self_test - net: hns3: initialize each member of structure array on a separate line - net: hns3: add required space in comment - net: hns3: remove unnecessary "static" of local variables in function - net: hns3: don't config TM DWRR twice when set ETS - net: hns3: add new function hclge_get_speed_bit() - net: hns3: refactor function hclgevf_parse_capability() - net: hns3: refactor function hclge_parse_capability() - net: hns3: uniform type of function parameter cmd - net: hns3: merge some repetitive macros - net: hns3: package new functions to simplify hclgevf_mbx_handler code - net: hns3: remove redundant param to simplify code - net: hns3: use memcpy to simplify code - net: hns3: add hns3_state_init() to do state initialization - net: hns3: add macros for mac speeds of firmware command - net: hns3: fix GRO configuration error after reset - net: hns3: fix speed unknown issue in bond 4 - net: hns3: add support ethtool extended link state - net: hns3: add header file hns3_ethtoo.h - ethtool: add two link extended substates of bad signal integrity - docs: ethtool: Add two link extended substates of bad signal integrity - net: hns3: add support for triggering reset by ethtool - net: hns3: change the method of obtaining default ptp cycle - net: hns3: fix rx VLAN offload state inconsistent issue - net: hns3: add support for FD counter in debugfs - net: hns3: Fix a memory leak in an error handling path in 'hclge_handle_error_info_log()' - net: hns3: fix different snprintf() limit - net: hns3: use bounce buffer when rx page can not be reused - net: hns3: support dma_map_sg() for multi frags skb - net: hns3: add support to query tx spare buffer size for pf - net: hns3: use tx bounce buffer for small packets - net: hns3: add priv flags support to switch limit promisc mode - net: hns3: refactor for hns3_fill_desc() function - net: hns3: minor refactor related to desc_cb handling - net: hns3: fix a double shift bug - net: hns3: add support for PTP - net: hns3: refactor dev capability and dev spec of debugfs - net: hns3: use list_move_tail instead of list_del/list_add_tail in hclgevf_main.c - net: hns3: add error handling compatibility during initialization - net: hns3: update error recovery module and type - net: hns3: add support for imp-handle ras capability - net: hns3: add the RAS compatibility adaptation solution - net: hns3: add support for handling all errors through MSI-X - net: hns3: remove now redundant logic related to HNAE3_UNKNOWN_RESET - net: hns3: add log for workqueue scheduled late - net: hns3: add scheduling logic for error handling task - net: hns3: add a separate error handling task - net: hns3: use HCLGE_VPORT_STATE_PROMISC_CHANGE to replace HCLGE_STATE_PROMISC_CHANGED - net: hns3: fix user's coalesce configuration lost issue - net: hns3: add support for configuring interrupt quantity limiting - net: hns3: clear unnecessary reset request in hclge_reset_rebuild - net: hns3: cleanup inappropriate spaces in struct hlcgevf_tqp_stats - net: hns3: Trivial spell fix in hns3 driver - net: hns3: split out hclge_tm_vport_tc_info_update() - net: hns3: split function hclge_reset_rebuild() - net: hns3: remove redundant query in hclge_config_tm_hw_err_int() - net: hns3: remove redundant blank lines - net: hns3: remove unused code of vmdq - net: hns3: add support to query device specifications - net: hns3: add phy loopback support for imp-controlled PHYs - net: hns3: add ioctl support for imp-controlled PHYs - net: hns3: add get/set pause parameters support for imp-controlled PHYs - net: hns3: add support for imp-controlled PHYs - net:hns3 Fix KABI for The dev_version & caps element is added to the hnae3_ae_dev structure. - net:hns3 Fix KABI for deletion of hnae3_unic_private_info in hnae3_handle - net:hns3 Fix KABI for ethtools->supported_coalesce_params - net: hns3: split out hclgevf_cmd_send() - net: hns3: split out hclge_cmd_send() - net: hns3: refactor out hclgevf_get_rss_tuple() - net: hns3: refactor out hclge_get_rss_tuple() - net: hns3: refactor out hclge_set_vf_vlan_common() - net: hns3: use ipv6_addr_any() helper - net: hns3: refactor out hclgevf_cmd_convert_err_code() - net: hns3: refactor out hclge_cmd_convert_err_code() - net: hns3: remove unused macro definition - net: hns3: change hclge_query_bd_num() param type - net: hns3: change hclge_parse_speed() param type - net: hns3: clean up unnecessary parentheses in macro definitions - net: hns3: remove the shaper param magic number - net: hns3: add a structure for IR shaper's parameter in hclge_shaper_para_calc() - net: hns3: add support for TX hardware checksum offload - net: hns3: initialize the message content in hclge_get_link_mode() - net: hns3: add UDP segmentation offload support - net: hns3: use capabilities queried from firmware - net: hns3: add support to query device capability - net: hns3: add device version to replace pci revision - net: hns3: remove some unused macros - net: hns3: remove some unused codes in hns3_nic_set_features() - net: hns3: fix two coding style issues in hclgevf_main.c - net: hns3: remove two unused macros in hclgevf_cmd.c - net: hns3: remove an unused macro hclge_is_csq - net: hns3: fix a print format issue in hclge_mac_mdio_config() - net: hns3: remove some unused fields in struct hclge_dev - net: hns3: remove two duplicated register macros in hclgevf_main.h - net: hns3: remove unused struct hnae3_unic_private_info - net: hns3: remove some unused fields in struct hns3_nic_priv - net: hns3: modify an incorrect type in struct hclgevf_cfg_gro_status_cmd - net: hns3: modify an incorrect type in struct hclge_cfg_gro_status_cmd - net: hns3: refactor hclge_query_bd_num_cmd_send() - net: hns3: refactor hclge_config_tso() - net: hns3: remove a duplicated printing in hclge_configure() - net: hns3: modify two uncorrect macro names - net: hns3: remove a redundant register macro definition - net/hns: Remove custom driver version in favour of global one - net: hns3: clear port base VLAN when unload PF - net: hns3: reject unsupported coalescing params - net: hns3: modify an unsuitable log in hclge_map_ring_to_vector() - net: hns3: remove unused macros - net: hns3: adjust hns3_uninit_phy()'s location in the hns3_client_uninit() - net: hns3: fix compile warning without CONFIG_RFS_ACCEL - net: hns3: Use LLDP ethertype define ETH_P_LLDP - net: hns3: return 0 and print warning when hit duplicate MAC - net: hns3: make function hclge_set_all_vf_rst() static - net: phy: Move linkmode helpers to somewhere public - net: hns3: Add unlikely for buf_num check - net: hns3: Add default irq affinity - net: hns3: Only update mac configuation when necessary - net: hns3: Fix for loopback selftest failed problem- !2803 drivers/gmjstcm: fix a dev_err() call in spi tcm device probe - !2841 drm/qxl: fix UAF on handle creation - !2785 [openEuler-1.0-LTS] SCSI: SSSRAID: Support 3SNIC 3S5XX serial RAID/HBA controllers - drm/qxl: fix UAF on handle creation - !2809 bugfix for CVE-2022-45884 - media: dvb-core: Fix use-after-free due to race at dvb_register_device() - media: media/dvb: Use kmemdup rather than duplicating its implementation - media: dvbdev: Fix memleak in dvb_register_device - drivers/gmjstcm: fix a dev_err() call in spi tcm device probe - SCSI: SSSRAID: Support 3SNIC 3S5XX serial RAID/HBA controllers- config: arm64: Build HiSilicon SPI/SFC driver as module - spi: hisi-sfc-v3xx: drop unnecessary ACPI_PTR and related ifendif protection - spi: hisi-sfc-v3xx: fix potential irq race condition - spi: hisi-sfc-v3xx: add address mode check - spi: hisi-sfc-v3xx: extend version checking compatibility - spi: hisi-sfc-v3xx: add support for IRQ mode - spi: hisi-sfc-v3xx: factor out the bit definition of interrupt register - spi: hisi-sfc-v3xx: factor out bus config and transfer functions - spi: hisi-sfc-v3xx: factor out IO modes configuration - spi: Remove CONFIG_ prefix from Kconfig select - spi: hisi-sfc-v3xx: add error check after per operation - spi: HiSilicon v3xx: Use DMI quirk to set controller buswidth override bits - spi: HiSilicon v3xx: Properly set CMD_CONFIG for Dual/Quad modes - spi: Allow SPI controller override device buswidth - spi: Add HiSilicon v3xx SPI NOR flash controller driver - spi/acpi: avoid spurious matches during slave enumeration - spi/acpi: fix incorrect ACPI parent check - spi/acpi: enumerate all SPI slaves in the namespace - driver core: platform: return -ENXIO for missing GpioInt - driver: platform: Support parsing GpioInt 0 in platform_get_irq() - spi: spi-mem: Fix build error without CONFIG_SPI_MEM - spi: spi-mem: Add SPI_MEM_NO_DATA to the spi_mem_data_dir enum - sh: Replace CONFIG_MTD_M25P80 with CONFIG_MTD_SPI_NOR in sh7757lcr_defconfig - powerpc: Drop CONFIG_MTD_M25P80 in 85xx-hw.config - m68k: Drop CONFIG_MTD_M25P80 in stmark2_defconfig - mips: Drop CONFIG_MTD_M25P80 in various defconfig files - ARM: shmobile: defconfig: Refresh config CONFIG_MTD_M25P80 for v5.4-rc1 - mtd: spi-nor: core: Fix an issue of releasing resources during read/write - mtd: spi-nor: fix kernel-doc for spi_nor::spimem - mtd: spi-nor: Pointer parameter for CR in spi_nor_read_cr() - mtd: spi-nor: Pointer parameter for FSR in spi_nor_read_fsr() - mtd: spi-nor: Pointer parameter for SR in spi_nor_read_sr() - mtd: spi-nor: Stop compare with negative in Reg Ops methods - mtd: spi-nor: Prepend spi_nor_ to all Reg Ops methods - mtd: spi-nor: Fix direction of the write_sr() transfer - mtd: spi-nor: Move m25p80 code in spi-nor.c - mtd: spi-nor: always use bounce buffer for register read/writes - mtd: spi-nor: Add support for mx25u12835f - spi: add support for octal mode I/O data transfer- !2793 handle uninitialized numa nodes gracefully. - !2789 linux-4.19.y inclusion - arch/x86/mm/numa: Do not initialize nodes twice - mm: handle uninitialized numa nodes gracefully - mm, memory_hotplug: make arch_alloc_nodedata independent on CONFIG_MEMORY_HOTPLUG - !2713 Fix netfilter conntrack - !2651 sched/membarrier: fix missing local execution of ipi_sync_rq_state() - tcp: fix delayed ACKs for MSS boundary condition - tcp: fix quick-ack counting to count actual ACKs of new data - ipv4, ipv6: Fix handling of transhdrlen in __ip{,6}_append_data() - team: fix null-ptr-deref when team device type is changed - af_unix: Fix data race around sk->sk_err. - af_unix: Fix data-races around sk->sk_shutdown. - af_unix: Fix data-race around unix_tot_inflight. - af_unix: Fix data-races around user->unix_inflight. - net: ipv6/addrconf: avoid integer underflow in ipv6_create_tempaddr - net: read sk->sk_family once in sk_mc_loop() - skbuff: skb_segment, Call zero copy functions before using skbuff frags - igmp: limit igmpv3_newpack() packet size to IP_MAX_MTU - tcp: tcp_enter_quickack_mode() should be static - net: Avoid address overwrite in kernel_connect - md/raid1: fix error: ISO C90 forbids mixed declarations - md: raid1: fix potential OOB in raid1_remove_disk() - ACPICA: Add AML_NO_OPERAND_RESOLVE flag to Timer - autofs: fix memory leak of waitqueues in autofs_catatonic_mode - pstore/ram: Check start of empty przs during init - scsi: iscsi: Add strlen() check in iscsi_if_set{_host}_param() - fs: Fix error checking for d_hash_and_lookup() - !2767 crypto: hisilicon/qm - alloc reserve buffer to set and get xqc - crypto: hisilicon/qm - alloc reserve buffer to set and get xqc - !2760 fs: lockd: avoid possible wrong NULL parameter - !2164 Net: ethernet: Support 3snic 3s9xx network card - !2605 add CONFIG_NGBE for Wangxun 1G NIC for aarch64 - !1873 [openEuler-1.0-LTS] Add Phytium hda driver support - !2564 [openEuler-1.0-LTS] Add Phytium i2c driver support - !2636 kernel/trace: Fix do not unregister tracepoints when register sched_migrate_task fail - fs: lockd: avoid possible wrong NULL parameter - !2754 Sync LTS patches for openEuler-1.0-LTS - !2758 crypto: hisilicon - qm obtain the mailbox config at one time - crypto: hisilicon - qm obtain the mailbox config at one time - regmap: rbtree: Fix wrong register marked as in-cache when creating new node - regmap: rbtree: Use alloc_flags for memory allocations - !2730 PCI/IOV: Add pci_sriov_numvfs_lock to support enable pci sriov concurrently - !2722 net: sched: sch_qfq: Use non-work-conserving warning handler - !2650 sched/cpuacct: Fix charge cpuacct.usage_sys - PCI/IOV: Add pci_sriov_numvfs_lock to support enable pci sriov concurrently - net: sched: sch_qfq: Use non-work-conserving warning handler - arm64: config: add CONFIG_NGBE for Wangxun 1G NIC - netfilter: conntrack: fix infinite loop on rmmod - netfilter: conntrack: do not auto-delete clash entries on reply - netfilter: conntrack: allow insertion of clashing entries - netfilter: conntrack: split resolve_clash function - netfilter: conntrack: place confirm-bit setting in a helper - netfilter: conntrack: remove two args from resolve_clash - netfilter: conntrack: tell compiler to not inline nf_ct_resolve_clash - sched/membarrier: fix missing local execution of ipi_sync_rq_state() - sched/cpuacct: Fix charge cpuacct.usage_sys - kernel/trace: Fix do not unregister tracepoints when register sched_migrate_task fail - hda: add phytium hda driver - hda: add phytium hda driver document - i2c: add Phytium i2c driver - i2c: add phytium i2c driver DT binding docs - Net: ethernet: Support 3snic 3s9xx network card- Add feature for nfs client support multipath- mpam: support ACPI for MPAM 2.0- perf metricgroup: Fix find_evsel_group() event selector - perf metricgroup: Fix for metrics containing duration_time - perf metricgroup: Fix system PMU metrics - perf metricgroup: Return error code from metricgroup__add_metric_sys_event_iter() - perf vendor events arm64: Fix incorrect Hisi hip08 L3 metrics - perf test: Fix metric parsing test - perf test: Fix msan uninitialized use. - perf test: Set NULL sentinel in pmu_events table in "Parse and process metrics" test - perf expr: Allow numbers to be followed by a dot - perf expr: Test parsing of floating point numbers - perf jevents: Add support for HiSilicon PA PMU aliasing - perf jevents: Add support for HiSilicon SLLC PMU aliasing - perf jevents: Add support for HiSilicon HHA PMU aliasing - perf jevents: Add support for HiSilicon DDRC PMU aliasing - perf jevents: Add support for HiSilicon L3C PMU aliasing - perf test: Add pmu-events test for aliases of hip09 ddrc pmu - perf vendor events arm64: Revise hip08 uncore events - perf test: Verify more event members in pmu-events test - perf jevents: Support ConfigCode - perf parse-events: Set numeric term config - perf test: Add pmu-events sys event support - perf jevents: Print SoC name per system event table - perf pmu: Make pmu_add_sys_aliases() public - perf test: Add more pmu-events uncore aliases - perf test: Re-add pmu-event uncore PMU alias test - perf pmu: Check .is_uncore field in pmu_add_cpu_aliases_map() - perf test: Test pmu-events core aliases separately - perf test: Factor out pmu-events alias comparison - perf test: Declare pmu-events test events separately - perf jevents: Relocate test events to cpu folder - perf test: Factor out pmu-events event comparison - perf jevents: Make build dependency on test JSONs - perf pmu: Save pmu name - perf pmu: Simplify arguments of __perf_pmu__new_alias - perf pmu: Add alias match method to fit pmu_name of HiSilicon DDRC - perf pmu: Fix alias matching - perf tools: Fix pattern matching for same substring in different PMU type - perf jevents: Add test for arch std events - perf metricgroup: Support adding metrics for system PMUs - perf metricgroup: Support printing metric groups for system PMUs - perf metricgroup: Split up metricgroup__print() - perf metricgroup: Fix metrics using aliases covering multiple PMUs - perf evlist: Change evlist__splice_list_tail() ordering - perf pmu: Add pmu_add_sys_aliases() - perf pmu: Add pmu_id() - perf jevents: Add support for system events tables - perf jevents: Add support for an extra directory level - perf jevents: Tidy error handling - perf jevents: Fix event syntax error caused by ExtSel - perf jevents: Fix getting maximum number of fds - perf jevents: Fix event code for events referencing std arch events - perf vendor events arm64: Add Hisi hip08 L3 metrics - perf vendor events arm64: Add Hisi hip08 L2 metrics - perf vendor events arm64: Add Hisi hip08 L1 metrics - perf pmu: Add pmu_events_map__find() function to find the common PMU map for the system - perf test: Handle metric reuse in pmu-events parsing test - perf metricgroup: Make find_metric() public with name change - perf metricgroup: Fix uncore metric expressions - perf test: Free formats for perf pmu parse test - perf metric: Do not free metric when failed to resolve - perf metric: Free metric when it failed to resolve - perf metric: Release expr_parse_ctx after testing - perf test: Fix memory leaks in parse-metric test - perf parse-event: Fix memory leak in evsel->unit - perf evlist: Fix cpu/thread map leak - perf metric: Fix some memory leaks - part 2 - perf metric: Fix some memory leaks - perf test: Free aliases for PMU event map aliases test - perf metricgroup: Fix typo in comment. - perf list: Do not print 'Metric Groups:' unnecessarily - perf metricgroup: Pass pmu_event structure as a parameter for arch_get_runtimeparam() - perf jevents: Add support for parsing perchip/percore events - perf jevents: Add new structure to pass json fields. - perf jevents: Make json_events() static and ditch jevents.h file - perf metric: Rename group_list to metric_list - perf metric: Rename struct egroup to metric - perf metric: Add metric group test - perf metric: Make compute_single function more precise - perf metric: Add recursion check when processing nested metrics - perf metric: Add DCache_L2 to metric parse test - perf metric: Add cache_miss_cycles to metric parse test - perf tests: Add parse metric test for frontend metric - perf tests: Add parse metric test for ipc metric - perf metric: Add events for the current list - perf metric: Compute referenced metrics - perf metric: Add referenced metrics to hash data - perf metric: Collect referenced metrics in struct metric_expr - perf metric: Collect referenced metrics in struct metric_ref_node - perf metric: Rename __metricgroup__add_metric to __add_metric - perf metric: Add add_metric function - perf metric: Add macros for iterating map events - perf metric: Add expr__del_id function - perf metric: Change expr__get_id to return struct expr_id_data - perf metric: Add expr__add_id function - perf metric: Fix memory leak in expr__add_id function - perf metric: Add 'struct expr_id_data' to keep expr value - perf metric: Rename expr__add_id() to expr__add_val() - perf pmu: Improve CPU core PMU HW event list ordering - perf pmu: List kernel supplied event aliases for arm64 - perf tools: Add test_generic_metric function - perf tools: Release metric_events rblist - perf tools: Factor out prepare_metric function - perf tools: Add metricgroup__parse_groups_test function - perf tools: Add fake_pmu to parse_group() function - perf parse: Factor out parse_groups() function - perf tests: Add another metric parsing test - perf pmu: Add a perf_pmu__fake object to use with __parse_events() - perf parse: Provide a way to pass a fake_pmu to parse_events() - perf tests: Factor check_parse_id function - perf tools: Add fake pmu support - perf tools: Fix term parsing for raw syntax - perf parse: Add 'struct parse_events_state' pointer to scanner - perf stat: Do not pass avg to generic_metric - perf tools: Allow r0x event syntax - perf parser: Add support to specify rXXX event with pmu - perf metricgroup: Remove unnecessary ',' from events - perf metricgroup: Add options to not group or merge - perf metricgroup: Remove duped metric group events - perf metricgroup: Order event groups by size - perf metricgroup: Delay events string creation - perf metricgroup: Use early return in add_metric - perf metricgroup: Always place duration_time last - perf metricgroup: Make 'evlist_used' variable a bitmap instead of array of bools - perf expr: Migrate expr ids table to a hashmap - perf test: Provide a subtest callback to ask for the reason for skipping a subtest - perf test: Improve pmu event metric testing - perf expr: Parse numbers as doubles - perf expr: Increase max other - perf expr: Allow ',' to be an other token - perf expr: Allow for unlimited escaped characters in a symbol - perf test: Test pmu-events aliases - perf pmu: Make pmu_uncore_alias_match() public - perf pmu: Add is_pmu_core() - perf test: Add pmu-events test - perf pmu: Refactor pmu_add_cpu_aliases() - perf jevents: Support test events folder - perf jevents: Add some test events - perf tests expr: Added test for runtime param in metric expression - perf metricgroups: Enhance JSON/metric infrastructure to handle "?" - perf metrictroup: Split the metricgroup__add_metric function - perf expr: Add expr_scanner_ctx object - perf expr: Add expr_ prefix for parse_ctx and parse_id - perf expr: Fix copy/paste mistake - perf expr: Fix memory leaks in metric bison - perf expr: Make expr__parse() return -1 on error - perf expr: Straighten expr__parse()/expr__find_other() interface - perf expr: Increase EXPR_MAX_OTHER to support metrics with more than 15 variables - perf expr: Move expr lexer to flex - perf expr: Add expr.c object - perf vendor events intel: Add NO_NMI_WATCHDOG metric constraint - perf metricgroup: Support metric constraint - perf util: Factor out sysctl__nmi_watchdog_enabled() - perf metricgroup: Factor out metricgroup__add_metric_weak_group() - perf jevents: Support metric constraint - perf tools: Update copy of libbpf's hashmap.c - perf tools: Sync hashmap.h with libbpf's - perf tools: Grab a copy of libbpf's hashmap - libbpf, hashmap: Fix undefined behavior in hash_bits - libbpf: Fix libbpf hashmap on (I)LP32 architectures - libbpf: Define __WORDSIZE if not available - libbpf, hashmap: Remove unused #include - libbpf: fix missing __WORDSIZE definition - perf parse-events: Fix an old style declaration - perf metricgroup: Fix printing event names of metric group with multiple events incase of overlapping events - tools bitmap: Implement bitmap_equal() operation at bitmap API - perf metricgroup: Fix printing event names of metric group with multiple events - perf list: Hide deprecated events by default - perf tools: Move ALLOC_LIST into a function - perf stat: Fix free memory access / memory leaks in metrics - perf vendor events arm64: Add some missing events for Hisi hip08 HHA PMU - perf vendor events arm64: Add some missing events for Hisi hip08 L3C PMU - perf vendor events arm64: Add some missing events for Hisi hip08 DDRC PMU - perf vendor events arm64: Fix Hisi hip08 DDRC PMU eventname - perf jevents: Add support for Hisi hip08 L3C PMU aliasing - perf jevents: Add support for Hisi hip08 HHA PMU aliasing - perf jevents: Add support for Hisi hip08 DDRC PMU aliasing - perf pmu: Support more complex PMU event aliasing - perf metricgroup: Support multiple events for metricgroup - perf metricgroup: Scale the metric result - perf pmu: Change convert_scale from static to global - perf metricgroup: Remove needless includes from metricgroup.h - perf metricgroup: Add missing list_del_init() when flushing egroups list - perf tools metric: Don't include duration_time in group - perf list: Avoid extra : for --raw metrics - perf jevents: Use nonlocal include statements in pmu-events.c - perf jevents: Remove unused variable - perf stat: Fix metrics with --no-merge - libbpf: add resizable non-thread safe internal hashmap - perf list: Output tool events - perf evsel: Support printing evsel name for 'duration_time' - perf stat: Implement duration_time as a proper event - perf stat: Revert checks for duration_time - perf stat: Implement duration_time as a proper event - perf stat: Revert checks for duration_time - perf tools: Fix legacy events symbol separator parsing - perf list: Display metric expressions for --details option - perf stat: Move 'metric_events' to 'struct perf_stat_config' - perf stat: Pass a 'struct perf_stat_config' argument to global print functions - perf stat: Pass 'struct perf_stat_config' argument to local print functions - perf stat: Add 'struct perf_stat_config' argument to perf_evlist__print_counters() - perf stat: Move STAT_RECORD out of perf_evlist__print_counters() - perf stat: Introduce perf_evlist__print_counters()- scsi: virtio_scsi: limit number of hw queues by nr_cpu_ids- spec: fix the problem that patches are not packaged in src.rpmdc-64g.compass-ci 1719989265 4.19.90-2407.1.0.0284.oe2003sp44.19.90-2407.1.0.0284.oe2003sp40-metadata_list-compact_tlv-kernel-tools-debuginfo-4.19.90-2407.1.0.0284.oe2003sp4.aarch640-metadata_list-compact-kernel-tools-debuginfo-4.19.90-2407.1.0.0284.oe2003sp4.aarch64debugusrbincpupower-4.19.90-2407.1.0.0284.oe2003sp4.aarch64.debuggpio-event-mon-4.19.90-2407.1.0.0284.oe2003sp4.aarch64.debuggpio-hammer-4.19.90-2407.1.0.0284.oe2003sp4.aarch64.debugiio_event_monitor-4.19.90-2407.1.0.0284.oe2003sp4.aarch64.debugiio_generic_buffer-4.19.90-2407.1.0.0284.oe2003sp4.aarch64.debuglsgpio-4.19.90-2407.1.0.0284.oe2003sp4.aarch64.debuglsiio-4.19.90-2407.1.0.0284.oe2003sp4.aarch64.debugtmon-4.19.90-2407.1.0.0284.oe2003sp4.aarch64.debuglib64libcpupower.so.0.0.1-4.19.90-2407.1.0.0284.oe2003sp4.aarch64.debug/etc/ima/digest_lists.tlv//etc/ima/digest_lists//usr/lib//usr/lib/debug//usr/lib/debug/usr//usr/lib/debug/usr/bin//usr/lib/debug/usr/lib64/-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -fstack-protector-strong -grecord-gcc-switches -specs=/usr/lib/rpm/generic-hardened-cc1 -fasynchronous-unwind-tables -fstack-clash-protectioncpioxz2aarch64-openEuler-linux-gnu  directoryELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, interpreter \004, BuildID[sha1]=c5055079a2e36b766366d5f4235fc6defb053e50, for GNU/Linux 3.7.0, with debug_info, not strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, interpreter \004, BuildID[sha1]=ee261df9348cccbc8576b514ea6c9b7dfca69cfa, for GNU/Linux 3.7.0, with debug_info, not strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, interpreter \004, BuildID[sha1]=2efbbb6cefa6e14e4a5fe022c5042befb9deeae9, for GNU/Linux 3.7.0, with debug_info, not strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, interpreter \004, BuildID[sha1]=8774d03b60d59949dfeeca836a6309eea4f196a1, for GNU/Linux 3.7.0, with debug_info, not strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, interpreter \004, BuildID[sha1]=3814ccddf75ddd06851b1dc51a113be426636260, for GNU/Linux 3.7.0, with debug_info, not strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, interpreter \004, BuildID[sha1]=60126e1854dc6ff35fa1c49633375d3affa40324, for GNU/Linux 3.7.0, with debug_info, not strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, interpreter \004, BuildID[sha1]=8d7deb603beba259698d0ab655d4ad09e708c1e7, for GNU/Linux 3.7.0, with debug_info, not strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, interpreter \004, BuildID[sha1]=59979f7c548b2e6e98276d65897d1684e2b10c8d, for GNU/Linux 3.7.0, not strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=77f36726c09e3eafcf670983549d1e6cb0e2696c, with debug_info, not strippedqپ9ȶutf-8cdd3cdd8768a8097babd65ae063710b6decb7116ae1845e197189f1f86b87591?p7zXZ !#,] b2u Q{LY7`uj} λT6렣 e_ѯ0^Zva$eԃ3,/!~ cW21 `XY;>c@(E.xYeS,c#WVXDTBirA;[jY>u-uu@5\]ڈ)W4%xO8 `CF#Ӳ R%59_ܠF_tb&نiN.3O0Đ%ͺ@gr~tXW"UR)go|&H(A[BVww @=ܭjԉ[0àBY3Wi!L*5>Trf|x2C\> Ӗ4 ^_/+TǗ$U(P&AbA${[uj^gS7x 3BRfYaU%Ē.q.7g+bX`7oQs}4@X+]M t$1ְzD`KՏ>L(yTcwȐ,7=s7%H&93em]cf_g6=!0p G@ Wl)EUNBƼQyh;u׀tD#20"6FUbK[j!Ha퇔IVGHg b \a[&'-XB 3zB3pޖR*bMxSp}g<^ "z !9mY2.'DžmrD smgnLfg* yE߲`f~Yb9,Nqm`ž"h'f;vn~^ mM.jUw`e Hlab==幂\(ߝ3RuKXb/9cp,m<Rlz ғAՃt-ԪMc}7sKC:7ϋ^a!DhCo)dD gM C;LvgFT<*hmnݼs4U'~[H:2u.=p^ "x!B֯3uA$6>%(/79I 7rq#EJʲ=~,N%1CМeqh>|:NIDMqr/>5bkm2TIXEÈ E+E0T')^3ԃKx??`TI\C1d&G GK<\RDTpy1IG=;tQ_knÏweV0#s=[F LׂvDo@մIi|8${ZA'6ultjY0} u"*Uh.|Ao7}_d|6|:|'<`Ɋ7᝱Ck`>o<4V8 !K0?TUU== QNabU`J<-rmUD@1)1-H/,ҭ"cXӰ늰,Jߥ3tt~~҉4>LU%Hk߹bԕ,of7v`ϰOli/{Ea`pC(ueKp,U/Y (3>U a1-1E<\FQP ,]NFb9:aP N쁈rw]?ZuA~xP5PJrh\qC4d%Ҷ/ ڢE;n2hmUU,!I7g-@yle+?5X]h"#ϗꊹ{ !~;J45Pisr~u : i! ?+@$>_t }w;Bz'\ÙFx*ރM|=?gU2pyydaӞ~lyHްcWOQQ(B &9'FPz;=cp_>$-c{#zAt0D8y:6.deg0pLKi,8( ~NT9W?^8Cg{{Fv\ߪhI~,KKz'T؝` `]_wj#4D"}N{`Z& $ҶPH%Qh?=*mI dWx;їfdsc[S@O';t,\ 1Eb')e1Ji/B/- vi{"N쳜[#9$T?~Y|Z]Dzb^SucPd0AQ#UQb1)HSqt愉SR{K/" &˪ ;^d_۵ɼhcpDm''v&7FӘ-*1 @'/ VOwȷ)޸;&Wf!Sd'R:3o.M`3#`Gܼߔ6дCqB5mV{KNYa_1~B5ԧ̾d[./(nW#);T@w6 u;c=@ UW^s{TʣJ\a5><Xr|M4'fv₭ɘiP' oԺ: *Hψ;D1Q `_O$`N hr\;5*$ɾ';8}B, uKӦj[ Z"9p`)9*4SpWe?A}ú\U]OIW._sɼ-sOi;%zܵU0Xo%Ӏ܍ͽ3kmLMKpOQzA~Y̊|X8~zNz;9oxVvf *Y?(o<+Ͱ@B|9JO4W RDRNK%#$ P4ƬX|5y(9U椁Ё50F{SU0.Q, //cA]b1oh?ՎoOmRjv$Y$]ql0իP>օvi `&S\pqH4M̯Q&mz$= gv!jTO]^;sԤSU]#b +2L޹6,dvא_}fͶ ٲp}8 [z'ҰYNo_h#1=㭼_Hl.Ry^3x20)1rU^\(G痟V(gǦ{1vr{죿Ϳ8ÙЬѩsG9d_"]UQo)͂KhpuE ae&l1FJqBlR2{c(sfXiL&' <ytC,*=k0=}) U \h*뇚  dʇ/`HWk+i\pM J +o~~k r7bTcna.?B x?eG\ui :}*aX"[f#rt>;ӜZ0&1Dɗ99&_n2cU'9^ ڀn~.|fTCU2 owv62Z3;swSd[BM@#uvh}t(68}"jϦZK]|SO>`E-XBK&{G@xտdVPP/l'JT Χ_8"'XLCb[D Wndeq;H%8 C) ''A7%5τ*|}c*U35 ;pޱe8џi3*ՃP?ʈfcRܚvЯ@OQ)eCF?$$~\ȝeX/_ P am:KĬ|Nk<'g}F 8~[idfݒߎ>!ϲY[L//̀1|d{;炧|oK9 zzMFϠ G)f-Q[Tr%7ɅKg[DX-%eHrpؼE׆yC y}i U:% >@ i .f|-D[- []sGJD*#ARǤ?eG* @s?9 \bsB#2U#߈ir =%Tf(F}g鵉\>6$3qV'ה$2'2 6k],vEwL+5 ̗j޷^ |pg砠~y\x!{mtH5)OXi_rˌd|y ;̠F &tj`)X.c 4 Uge@d \p}f0SXPS.2p|9nD7Ij(e.jEO qY,R$2'`?Lv mKў_`FyRz2[\vйL5bu'=][1MY SlGZ1RBJg)ݹX]˭V$:ƈ3Crvv}LZ ׋f>T# R$ \<ŧ3 ٣4pj  Ozux Iމ/4xc)\/b4ydZ+nΰ.L?^QG~r͔]ꪫZa@!R tVD)cPOC봸}i~do˟&}) O)vR ,}e\boEL+l~@72ۙSP&,b]ҺILʹ R"~~YDjR2Ġ{,3Fg&cTxVeG.'& Kp)X9!m;j[ޘ 0Nhp_r9NftɯA Ec~7 ;RiB4"U6vV nA!7ՃfSΊ[F:{C0@ &<+E|I2|tWS^R"7{(= '7hGŰOS@XO"V!m1 P>\$+N fBAܹ}GѰMrEϑ5ȎUR`AD#2.,=C`yP-Πh[P*Ck4\vw5y[,="~;le=LߛuXgSw͈MM!Un"K.8Ut_czb3L| R_ONTG?<men=%|[BKA8hs a6?k(י&|Qu>G6ER?}^ߪw.s0EW" =fW0|#zWṴQуs 95F[?3):d>,C㼴lSsc~cysբT΃BS[7:WۛؠvmWE5ʝKFUWLUEpPP$2 &ub)C͓l3ih,Gv157{&cPѯ*Vϓklҟ1KOv? sWžmR<_wNi/ur'1#N@^lQ;YRsn@jǵ'{8aDA}#=oㄙ,R.J}DW_y 2<< I#$EѹUZLzg ,B%@j`r8۬l`yeRQ x$aoK'vqΞ <&F;;YSP |<1}655N[ \0L1-"E[6 aZgҕ#AXfc[nF痗U/7y1l)=C`ETȉ6ȱSy ~NRA8EPj~LP5 C>I|Iav2N%FoMԌ-t;Gi|-렻7얜~g)kIז &sV=e~U]k.R.HOlXd]O{qpK%(d2^ҢUn#i{Djs]SwLX:3!ox 4Oic‹qIS@F5DPX k|8=2y՟_;1K.TMn/jܗrMo-SLx? gb&Q5GxA? ,A?gvf=[ P{x`7Dp&d5^xپx> ]"ƒ=ae&>a3bl $=%~e[+o ֘JsrĈϾKpt:[RGD]^O8hK0 ފPE{Q"a`Z8+. cXwI}_H@\ՙZjl^l÷ƵS>XPS<{TN&q5rlve ZE@ "]=29L; $_/FKb/wd ӛ L W"{;lx[sGC~~%k. ClC$cBXSaӓVfQN =8XRʠrue3m9^&YiW W>%:ײ -蠭kv<%Dr/>ԁ+ۈ2C撜+ZTqj7ҤRß |nF|?`o o?1`\ HҕNpi1^;ec r({Iȃ9aNd,LFU"LEseHc9 lbBI8H6>֊M54yc?#:c>ޘ jUnVi!^@Z3ʐ" _0 - 8..7FWf i}I+(ߤ+9od%1^zdSXҝBT9QO^#~VUv-Ҝ!HPLKT|DTs)e 7?o3A ,֭ϩ ⩔Z,b%T^C.vGKd jTxG ;-&#&B'T 5"{g'85_[/;=n#%NY|:_`4/탕%a5IpY^O}`xDeW6vfs~Tۆۋ~8!=@;ݘJ&U*,yQ@Wiv܊h%ܝQWNn:d84o}1oVևh-<v K-KSwSD:d{Ame+wC*dM8]a3RP&_ڑyd{?P/Ih"yFp8kTҥafr5GC|2ItVwuϛI筦VRaK#)K?RbWKNTUa%r|M!)IN$6kAoI\('TErz*6ό1jΣbP rMǰv_TrRTr X[*@!&̤b v'ugɷ WhoIf [a[+ZRJcIK@9$p@$cc}TiHe |ylͰ _&(!JcBtBuKVk_h Km:>OgJѣzh8B+,l|i9pqT`wuwfF? (xtcypG1`ejA뭬.ji;Ǩ6ֳZ!3cyYBu귡MJ߳ 1"4\xD|8FARѦ[a- 8i|85ƿT5K | &CHh{v5i G}6E@rC}G5EXĩ="7oZrK(%k"ea?Р/ƺij(Ku{b C]`1W q5هP5=0$>Gex: ugʣ=1:^qT;Zl Kymob KP5"|zÎ'y96Ā tz_Ohp%{)K##+Β!Si+ j䯮6V,1#vs$7C {Fs~JVBib29vLOY(Q:x@QWH"I=sn.4aY~q䍌7;: ׅgM|#SN.0Cpm!BKLx^v7vuew@Ơ -3[NNp%p3O+.|,#.ϫ_Ճ 9SiEF?[^2FSI-:/aDW Cb\[y( (+9;)4A>v& 9'8џQ w/],?)00t܆G;}m:ZYW_ό]}|1"~!&AJokm뛱iZoO\y SgCpX;DNrqEuK_-}ŊJsz싏]*BD/o!v]xŤ.7nd:Tje0xƈXLZe1 bƞgu:5=:S>7$8eN:EDDNW]"}XQp{Y$ XK R8̟GN8t!ޖX-]ȷ>K};sYr 1 6ey+s@YgKK7r_eۄȲ9Pa VM<'@B^4c~-t-nQvYk}Mˠ5xx>Li㌬D ^j܃Ė|SЩtKrT/%awLN959hm&w㜮9JO/nz8O+dK ~ӨoAbHcw>LÚ'K^\j]s"bgqZ!Q}ĒŽ>baR3Օo`#:3U5[⇍ZW2ȥʁGjجFm%(ƨ9ۉE7Kۂ:`>*[@IWu)#gc4QM(*,r'xH_w\!'z5Ҭbq]6 V62 [<'F|71?T.'Q&rtf5|BOD0b~IWo2sH(nN‡$ymӟy'Tߖg41ʫ_`wK@oLp9 HIkc ']<2U\Ha-~L׮!<Ս[MSwzi^c.)تƮ:*oU"RHF!;tt a.oMUp }!8B15mh.g*ƍ63zH ]YL0؆e=Yu"ӷh2k9zcW|xt$zSJ_Ci9Fzw'.~ԶԄJH=ƺZ+kiߍ37ޕNXĂ>'be/UN$$7|uu 87 Zc#\hl)/ԼI땙M̓6 Δ傠x=}:nS=,zl8!r%/ 3|dsvt} Tv,pEĹ1@T?;HpLAHy82G葻4Ŀkص9Lc$BGZe1d8KXl-젓S@:-0.l=@f%HF;nTr  Ɠ$)6W-R^y4?c8܆: <ͧU@3]p^Kǚ5&UVM7Ǚ"2bUutfdx OOu0xBW0cH;n,+65~B>2WN !N %pL{Uܱcro0(-aco/' 1|V!nQr\k1#UܖX4u08+ *w ͯR +i-rk5cxShf%~5 :=PvZ% '_]ƍ}{΂'٦HV_tC'1 {++"5=6~r"G5 ,^`PR.&/KADQx*W däpvuQLu;O9%3{Xx^ٟm:-: IZ1S f1ʰP2)0%lis_ PPŁfQF /;vy(qO@-ߢtTШWXP+kCF[!*Ҧ]ɀٱ*Azqf6:X lHt\)*C!~k6%A|igj$W OۙΈ |MET-3E+֥<fFoȴr*Y,|~Q_L:k Q#T(l"pKEV@K@;WTy=l@P( ;@4%{jo.mc |3bf^왒*]'I&I|p*N~LE\'CXAB=Czv_U0AJ?p T.ymwnD:2^XfK5CP/" %"uE' Be71"kdgR~[~q'mN|S~In -~ɯ͗|J,S~ټPiN~AU[])ь ۟;_: d_NY;NJ֝ZG@0 =T#XKfaK";<#4I_[<x.!'&Oˑ;4(_LQƥ,>{Y>F[n b"7˯%|nYK\I?y'ʇ~uKb A#8?5Aa#fJZqz#9.װWaT.e9 fLKB~=#6B@'ʼn~I~DKMY~6tJ:8:WZb8d@+>}YժʄƕzGUW.>r~G'AHl#&R,~aپw/sլ$\ *@Օaa]b k .{> -꩛9Ò>g]2ZPGPW1 $»>[m/|=Xf^@<b3tL"u9~;')Hx̾v&_F:>0Uw+5Վ Ő{.&[ŭAzfD͒_P{w"(Uѷ_PXM[B#Ga@^7di<,cE뺠FNi 80c1Lt2/NCףWx< Lw~'[e<( ^CB1}b'0#eD1@~L*S哑i8`'gTŹѓNΊ-i>PD"%o?Mm.ezxC @PF%]4oV}!22L.$x#wZG` }=Jbg2OY% B zLF)w-U4iw!+ʚo'W 0)`n:Y7=^VCjEQ9mSs3ie pic?vH;U5oTA~=+>/ۢQ^՝urEreDR!`Ms !EW0ov N]݁i<«>0W__F&x#1oV~ +P<-|4PA-D4_J >]4,}*2Ȏ(VW<,Qn!HKWE}nGoB}_) w-Eltź1\rqId0OdH:ŀ$e C~W(ki1l`h>ų'9zS54UAL$dZ&@l_&Z*ibP|tu *V(-#tnI*fy&5#ƟS$zO$=^a pFT|3:x„$USa4ܩ5~5Pbw\ߊb۶JGAj3K&X:02{5%Ig0iu#O=)!QC%as.]T%$QZ&<@OPcmD16+gDt(b7ƘƟWs' %[~b2W-*}|.no\jVaiqsѽzV:Ʌ}'kVk7%nς8ũ rZONxQn)t=OW:6#׋4;41OfEY|)XJ9~\)*yd_X;ls_GʂγHj+9ͥ>?Mq/3wځbnyNB4[^2'H8y%?MQdGbs j;P̂4i?c7XsŷF\rFw*Ir\A \j*˚xYnD,*hP1@dBs؛IckBgѶ<[x>GxlzQoά+0u*4]|RNN(:|Dyѣ$8G%9:T0VZ. F|ey,W4g>U|v`T uh2^Jw|VNZ.a0Cg*3l,-eN7YUz)2y4 0[ߕ3uԢNL" 8^xh@*3eM>d 8VXdr/qV(+ܑYt84%z= JxݼS Щ^OF ^"4O*U] #-#2-4DsY<#VMsi6S'mL-TL"IDO@Tќtx HGW;f gf&h-?՘:kk k%3tA.eK`~|*zv@ oRu0uj81B0Tg3'V> vNpgE΂OY5gv9I嫁#[8hU4Ҵf͚сELrn)X >Aok+F$c9NV}iNeRʥ81VddXr5/1pg /hăY$.=nԧFYY+E|ҿmCr{ww r辇)A ȵF:4X]j?k5wb"Ww 흉)X!Ogix}4ZQrpŔy!be^47|l~Xs)i:.Q;LEɏ^[/?u=hV$^psI8Te PS:Hy]MT9Ag%0rJԑ5?.t$'g)b'tin2#mnߌz!}dm tP4d@B1".cm3e@ړz#7Xhew_$r3l=(]# nlEX'q5 ruĂ^VȽUS\V*`?p# 0>`}永_c [x~2%:LZ-8%|ײAB\/_"72Z$k cQMweqܵe{M(L |T.lv{9웲,i+a T3;9l'1χEk,ңZ$jwn bJu/j'aի.Y0Fn3 WZ&HG+7Q-7<%|"#<شv@E-8oB u|(%֬J {a$]# ܸr˕y,5Zވam+LoRP #r!^ZCi9%phybN  Skr j@>b]p=G'٭8-:'QǍoť/]-鸭**D1˽ksb@7GVnf+Fg ah\,'cBWWc!3KE~H^ZSPO1 Ɣ&l ^F++))k(1lC%w 5@Z;hQɷ v ڶTAUA-->$G%Y9M6+ K\y" L{)牶[n1AOgD86aӵ|y+?{2ػF("O3-?T<4&g3 13<֎_Ig#%,2<wo*T"rP<)qMl yvH:tSA,:/ 6,Lv~]W ʞڼΑ7RM1#czk/6'C_erMQ+8:b]IJi8](4{CİG&Sx1Yx@֔`H&L?[t&sN~*'*tXiFm;GloTQ75OiPžYaU|ZjO-9k:4tpK\c_pjA31tFECT(sā=ZrpuH[49 z&PZa17#@c48 921jqz;^Z%^֍{|l4oLW[k|r Ўw|bcf*GxTiQh3Am{9ipŲg j"&,{8p'9y%zC xRC@{Ϳt 2<|?q"z6¥sEo; )HIz'؞dЃ6{tC""L){ a >b)a`?_:pWjנ&k?,6l-7:|睋#)ao:.26(-Oz]'H#R?wJӯ8vyϽ $:M{;uLwO,$oOnyVVjثFU7) .Nk/eҩCir -.N>VM9گ\ߛf;g U|o/ƉĊ<>EE-/ut[gKExb|:bM89Kׯ4\ t p,Yx׆Ձ&w/*[nHi+ɦ } 8&OO?eZO%Ēt[0$x2 =I\j).uE!prDḨWyR Nn 2A bRb,ZB>6'.skЍnySt <~p!R6 9ĄPϨ'2l >ĺ( jIv ˞ (j{\`$u \m4Ht|$HwkNXIhX 9PKh^ 3` Dtd3ڥ] 'H77`r\E4Y,- >h ő4AQXPW~,D.bm'X>f!g 2mw)GV <[Ia\m]grԹ8[" k[רx:ePI8_O+d>=!V[PR# y&$ݡr8#Dmф>T9]$ncT R6q{MN+o^h87a?RC2R[dh@|άKN3<}mxN[z57!Ea'gZybe _O}y!ڡ (IO07MFpȍ55_M5B c eubyoXHIy,uəAN -3fsk#\Ar˄S79qꩮ)">u_QoY6Wf92=ϦNnGKG+.9/1U{2;X{wrx|\]ɾyY,o. 5MlFv?Dm)B[ 59 E~Mg? dwb/rsg]sȗ+Ycq.~}O^GAKҵ?!o\jM?AfJ.gB)95K)-r0aNj9_ 1w讳2^CC]l,As< 7K@L~c޵MV*& ׾#,'2١W (+퓦ݐs.fC*xQv+}*^DYgSDw(JETb&rp<.%͍ReJv:pϜH.6^t&SyMٿhuIY n&1Ȗ驗C^eb͈'8,w],L5 E (X }]ZPkNǼպ>Xo94.l5vQEj29X S];kH7NϯF`էx$?sE^#B QRʓhsKT݆EBJ`vtӝf^ S 1ا VSC`?):%ߨlI)o馹\R0Ԧ2$=ܖ7T*C Ye/d:p5-v մ!D8KgӔ!`y0+B}e >5o+n,pԒJHr0 />:tl{置ҩڻe] v)GzNO%JB1/4R:jI*fYݠ)mQ>dk&t'Sf-ٞ+[j)V8c!+b'$uS Љk8.nl8X3u5U綥yY#;(m5Izrῌռ91p{xl6qDnc D|ܟ=rk1Q;&R=#(=V@L)4:G L#t^İ$zl +)f#K,ɭʫRz %aEAe96*eltiJuMO3bݕZn*ҍ}'%k'EO!U(y<)r)ĺU՟ls :i7zD3ɝ,kt[U.>]*0 =5ʆRp3#! Xʒ@LɌvbd=z.(y]{X1 ҂h} /vl(]_McziN͢fۤ͊gT6 qQ_<\5ߍpWAnIp&jߚ͟8n4b8 { ųvd* $I+:QAf6C} MumDVT+pN$c*Ә(^$*1bA܋a -<E$+@Kbjo lDGYX̦퓿t;B,^ƈU+aocjcKp. HM^巰)e$S|' xeϕK'4>/䗿H[VDv~CG-2=,rbxރL^ lRK xA*?nwle衇qϼr*+gЌqy恽waU[HA W~#αPG(xR.ӌDP̔xlGSɗѢb}GR\>h2[~ѐ|Ts„ѭe2 Vpڋ ^mڍ`&Dk.;n- ` eŸQoVVtBbg!~7Ġ[Z 0&?[*ݳN;Ʊ:pOf$7j~ÉOJǂ2iPW"=À*?߷wݠ^&i`#9.V#f߇nެ"Mށ->RnSW=U11ְ͕.ڽJt3CuvlQ(v6|E w?IaɁGh\I*?k鐀vH̖f{3(3 Hδ#m04Ұ%3;Ls=F)=:MC՜I.r@Tb}`=,}L15uOzSUno5N:jT.'t4X}k%UxU.b`;t&t_V3i2bU?S+52}8:@z:3vӹw-Ҹ_d (72RnN[-JF:H6&~[P!Ok/Q*b~{U߁bŀN Hx]Z(,w_J #LoTǨEhJaJIHH+7 ZЬ#b%MIX>0/x놅yZFU`ָ +{EWNfRr鬌>9 loYbHSuntazҴy=n=sw_ tVYG>T(%+ xŷ3U)h|B'?ܸ:}l/CSVyүGqw7V7y>&\ʅ8r "AANsLN+|qFngw;tF-˜rx[@eX]pLJՓÿ4WGڽE]Юd6AmfYO9lhY|鼌溗,مZ  >!.G,7H dGA3~I{cA7cӻK.{d=.D'萆aNG&0C#+~~uZg DZ>{沇 ,T!jz fc:w65;ySO8;'~͆`ajZN+E<)Bݺ58O*4u6*g/.5WC^Vy!cBOr LE2Kxn4I sNp}TU169F!,7@ЌE¡h{䧏GsJCl]~^KԵ91 əHXܼf6hJ8^[Jt`w|8t;F8W`E}@ xNrzܜ6feLÅ+qH|BMoIޫLM9Y}i#$v`D7BKlB, ܅Z& j[z^8Q ‡xN F*<*2^S{tײe o]݆舭H ͣMhͩqrZf0MUl&5~:ToV供ij>;/i!/fa?QT TvZvd==w% lzU<Ҩ1_*)˰bXgס]P wq_'=fclQ?~qSH`uc zDT','(2xkg {\dZ?J&^o(#ް$Qd`||,FK}hbL-GN[ V9px^[EL?N|GA;S^amz!oSfǒ\A>8:g ,{w?%1j16Dd@-%PiP](,HҠ ݖ戤unJܑuߨK&-q蕴d?3dPlr|+9!$u2V>c;UhV{8Ƞyi  `UJu9F ^<]΄yn%d[ҹgfA]hXP".<}AtϞ[a{t6 k66uS-}ezdRU V}*yKCECB8,|S2(nn-wu [.٦M(Vݏ0"DjʵQ|VA88%ʬ!󚲖gL>x+u& W2+XAqq M fGJgs4AJ54g2)8|F*47FWdaX4>1zax8ѯ3,h#Xk(Zm#v; Awe$ߩ$+40V/61P^Q͡ǟ5zVRDX48/g֢ٳαɲ!X iucRP^*mXi e^+g\ iUtp oX? 4Gg |Jָ@crgF PSl7Sx(^pe{܁oxL7:fUzo%[>?O} `*RA%R9fv+.MВ.0&m嚸CӴ ب%WqM*5 Ծ3WKl{\[n6^LsPީ .tG1ufʵB'v$7+BO8r'ܰ07,yҾ$8 j}|.'#A'wKgGs\ם<*q#WEk tD unRx~yy%"&#W ;дwh vj\{H2vP8i?b2lSSt$&TPwR؇5.j8M*HԸ8*(gcQk߂ {(s""k^z]%hQX/jDƓvh}QsEjFPu Fݾ;0;rv^/aݤ?r <վlC/4CěIdYQn}۳tÌ`(#XrlGH@KR tlM/Qew0 ~0ee~ӕ3D-'I>Y\MW⹄yD!da]߮lR\?W~#+@Xߧ]Hqzȕhy×=ч+^Zfdtp7RtoN8Uqqrfd9 =ˆQ N@(9O[{o/N?fbjoIv!g.5r"֔aDP4b,az~7tAQdGl%7e?CܔVm{{ij `eԤbcibH$ܰ#t4UbR?~tB`nY4_~ C&!mnf;Uy)^nƁ3wQS8\Բr5N6(7y *LaXk+=ָ_*`U~H/B[cXg7_NOMHfSyd)dz]u\+"gw#|~*h~ĉ3]bCy2RBgŝA_1GIԘpRj"9iV|l(pGYp0ߴgy3%ixsGA|R:S褲5Lg=ڔns?D&+7g?E4zs49pKʘn)a{\/ Ϲf\Kfr&2L+|#WN-d5z+:خ l1J̗۰<ށ@Q1:wx)v"Je+V JI=gazuͭc4+*ILC<7F&giYRp8ґKk>5V8tD(?+{:0q`zЃ[IBl;Ք\jSԱ48 E؋Z>z͈%wς%]IR2@%8`X'H-df!&B?ye͎OO5sʳ(?g9I chKkIlM}s8;zS*>j./))"2Q61^c`; 䮂$\ĉjr'5(0bwU|r[B.T@졻o6$ uOlb;B]BrL5GThGj?Q3M=z5|brnOjƆvid=Qp W T>P`bDKb  vUOD][+`gQ7R2cr Ek+Hr1?98 bl- ky"Kne#x~(\ HŪ|ȼڒhUի[kD ܊*E[Jð&j郪W2#ZR0Mf 蓥*rV斟Z~׿۔z`zG@d@ Y=vqvx 9rwC5q@FA*$mٕKҾ{u '@cYxSh8anxGJJIbYҿT@٪d4ͷ\Sr*ʍ9N,G / pyhdְvitQ>BK,O쁐nWO]F *I0V*]$>1h h(]9T 3.0?.꞊',ATݧ0FWY!^\>)w&dBY6qΫ h9Kao-dN"/.^B ˣŔw[Q](xXHuxOmf'MXrt=P7 -ЇSSu2t&Va т™wu0Q:/ Qgxi#N߯,Ϛyn^_exadfNHjs~ Usݹ/跋rwUqc:hZ>wW2¾ O_.0j#ȣA.a=XkdaПӭqfsl:|B/LnFWa:e4֖~V*<%5{|E9(7B7 >h&OiCKǚz>l]*4f<%fP)1Nq_udzJ\'lp y# ~.675d" e}\ &o)x|ψQepC4FSe8P]!pM^L Q 03&dj:0gYaM~xiHFy/G.RXRI`E4E,ȔQD;ʤdZ|c#;+nG~8 qek"T3ҰҵJL4;_DLR۹ؘB5A?qg +kr Qʦ`XѩƂ֗ޭZ<}0f Bx2ko FVZvǺrhH[#],rSPCd9)NrPr P oQF'ӨibWJFI 5*Y'xgZ<[ZM4bT{,XrKlf(L ~ܹ "LmxXQۋ*@$b(#">Mq,8С$k[ PH&[lԚMUg4OLUZǭL&Y$Uǝ#06;7{>C F\ݛe˿0"Nw5MH:EՀ6gJ򚤪IZ\$H(`!]2(:忻q3s &D4 }`]u@RY"]/-ID*<+WZz11TFҝ{Sy,=W}_x`Y߆[Ko`9ޔ: 6dg QO HbR&茅F(ha&Giad|X*'C|mL꿤s==|1 6:CX;;NG$8C^ +E8'qꕕ|1: ˳9h҉>|7'>;*1ŵI* ,Uzݞ4'7ѽZF[2RsBgtٝs*T1pi~ё%n!.Q }u0wxȕQRBap@2U=()X;m( c-M6 S0 t2k؜CK|@~?w j m'%F =yI+S @uoJ$ٍR4S/89d Z W5 i 4ITG-j]Xe' fn~R`Z'S>@=[ z J h.'ԝ4GXc%$-s.G ꙍF:b#-ƻ4+̯'C9$̠\4h9z{Ҹ:WdE2Nh9n\.B$k6 }W 9 2O&߿ O Df hH)Ggxl7OdA9]@/uק XJ)u Fp߀G^ʶOp%#T1{r30|cM8el9!JDgJW-µG/0@,7 'g9YG\mBW8buH-[IKciߌO=,FdC?;>! 8Rko;^ҹ\eq)x3|m*b%蓽\:r.h. S,-M[]VwΆjd?+Ux HMtS%rf~{f/'Wr%mLXؑwgK QRYt1gf&KJ?e5\<}kq0M/n!#[T>}yd(.c~A2Ϯ&ˆ i2PD%O5yE}KpSS=Nf]ƨfU.ŖBe!R ~Z I?A,SSv5Y!@kcu52?|ޢ T)\gr=t8'[F[/uyG8&]/$D.3d̎jof :@3x^ h-Ȳ7|h{DD`U%CuhTF[4 bݧ:]Δ(Sa `1N{Wx'qe5Dr %>DJ1Ga6oeMZr\J׽  ƧTee`7t:ud7H͉Yn]Ɵ'P$R; FHlS,2>XX%[ŁM6mH| s#mNA,̍g I|LV8=ܮR#)g =o1q9TΜvbC2Ui&LM6SbJ3PK밂SC+S/KNJ"Sr$8Z6hJ ̷S @HWV)lkඅ;y(u7g eLY.ƴCk8-;^owt*tklr@zjd 488VӷSe,.IV)WDTogQuLDMW 3`vaҿ>m/d ^BvtPR{j#;[uWK,tH'#AD5/#r{G&gƬl/z5D !6,s_L<4!R8q`.up0b ڃB #΂b32Q; 4?V]7s2W" 5C\G,"Ex}yAT o]!M>σ!Ze9ħثc=l?9r9WRfE7٘Oit#`h$6(e7z[p31Z 5[9hMCi~VXr{}g3+ʵ ۹+|mϺ[m8 !D\}4!Hҗu*R3Bo8)3*|Hcrf42IV1)#f˩/Ɉ3j:pHT k;+ ]*$vĮ/!L.0>8 |tqYl*1\̈́& ˧E oiGhz2DHVTw("9),oB7ۋ b}4QC#>y{eK vc⦵ȶ*M%)<9yQ?X-ZxZqXN(-BZqp?_] nUjFXJ/NWۋ!^9t8㾾 L!q$lܽ9ע\q9Ǩ7=$XRWxSҾ 9Ul$=:w ïSkUݾyΧ)oVҮzkHo 5) w"`ߡ0R[b]m'f$1PAk83F-nXar<5&YQ9I9Xby.G.yDO.@:xࢣpQF5a>Cz֔^(I{*_;*Mnp'A!~[~cמ{Jpdy]H!#6!M `3YY=xa jfG@t$kˀS!M!X8tqY5wfm l:Ԭ`r-X[Z7lodGEV,Dq +Wo¸7+ۂS&+T :.]2? "ʱ)JWOߨNlծ񧲁͵ݥz0=?n@ѿzDV ` ŽhoKtN[- jxY" nI` B+e~t w }0>O F(DYK %Wb'' c&!Q`m)f lxN`0wQ*PG(|X=/[D>/#bz0+KDr0L` Y!4*@"pڐ/M`!$Z|brև9T2GR2>ni"i.bFT@\++Gʳ9NWe"`n:I/Gm(Ɩ7;AEXG&] yH~Z:fi~g 9,wx(}"lʤ V|>H~,lWZ5jIQkF5ؽk-u%k]87Y2o@PȂ+0'TMU=4W`bb U(x^m&"\ A\&yU/j$,xꦷabqnj 3Evҍ$ZT?lH:qz ^8$ -aM?mvgBU\vϠJ{=ʪC 8=3٢e\/Xx=Wkgig$c:_?K=ZH |g պz*V6SRjp,)W!ɾ Ogr͚:!}Sv+2G"OQVAW\ء%7:T=]A8 <6]~5nG-[}uA^8{)y,?: DD0ɒ[X_oR6mB>6«bI\%Tdf_,E+Kq\b !GWVg@B;L>R[űG0̬qD9yu.֘!bh-N;jδ]EmBUae}^L VNՀc 9$eFNCx d9M`,1nIɥ~ br`V}::ciHVԮ1nBb}ne-E81Q=X15#=AAF芓lю#Dlna "Meԛi٢Υ ,֧ *A{M)m;pu0"=ItըAX.yCmk@10#۾10iA/c@Y"J@7!(! T?я*н$?Ek(ڞz&Yq>WVɖ?l!v 6~U&^ƣQ[ߕN#\(F2}qw+zڃH5{~beӢkv55me@/C$PxNSvaAf>\\hdͥs^F-zWr \m59eUJ+?{E{={m|*,hzN\ӫ*Ըqԕ- yz:0n |ϗug 7eh ~[7Dtt5xpK%frv..0BWrrkõwJ;ȣEE@9 oz2q;~lHETeߤ}T˄P<ܛk?Y2mtUz-8h*/Nqߕ=wUZ?fz*PPq!fNr8}iYS0F0:934Z`_W8S⿒`ݏ>hԠ7|F~&-.Ou$ #屳B}Q 9ZY܊YmTo+~RܲwLm`ckb$Xϰ_0?Ok7*5}GI*'E$DԫdFNmiSJ=>7^sJu 2U2@qK;<F`Hj\<9p>Xkѧ4L#sVDD9\7j'YǛl 18NuKidJYb R[/Y]~9,QJ vY YZ|'eePPatVKhcE0!ՙ) /UV{̈́#]IJ!$o.}WO,sJ1_?P`nO W>ܚs+3ȡEDR7#)ojXQ;fOn,sNS5@'-l\ 8_3 sxie {SN `czVC2R G]?27OMJUzȝ?Y.S"n,ND؏:im{W|t$>+TJR>&3$uRRNhԑes`NFp}4yY? _0>M7Љx 4I%~s:"*Bv-ٝyJZNp6 / `X3}]w vBԌJ#rF 0--{@6J|ʑa0{##O0.YH4N9ܽ͊M I쑅:pQMtV]Y(Bd`\a[}W}8CJx / +^R@ٞ3+օxK?^}sds)k ߤ7p`{;kkӲFBjnVeˀ{̐nq밷l~]R<V cTykJB6Rg@UycDTy4"/LqQc}! w])iTp?LVaThh=n}bƃ}6ۛxbC<' :Rh+PҩQk5NMM@+BO *1o<ԙ-.WG^Y*S=s/\2­}H GX,,M2dG}-shIa |h0(Hpӥ7\HV֮A$ 5g eWDdt43:zaѧe \8ϱi|u Ha9J,-wW]x9ַ\($^H(Bhݝ g5IQ+! =X CPT[jԬvƒ6d' f=\xjdQ׎; L0:.yŸ7[ dy?ҷKl  Z C&4RFO48UBw0i]}}ЦMHf'$RdKRӚ*$yNHHlٿ & Ղ#d: 8>Dj[bN4)FpVa/* Q5:WdG)nbY\}U~ FU4=|-,={2nvLJmb-t(BFoDw%Jԙn-o]Q~k" &~\{ź8s v5 6Z!fcKI4+̣"ۇ4df"c:Ւ&|_,7(^&tOwXu]hɢe578o>QS7e>,W{;NH*o  FNo)q~H_˲Ā_6nvcrl"ph|Ӑ@bOLA=jSeEJZoe>ȃ\KXDɦdF9n#g bts P}i{XMR<_֐\=ΐuT')+ 2J.r5\I`[E *ޭ&Jl>UPkID |BhcNUiy>ee2&)ʗ SļhKMcI6=~0"#or4rsq_ȷ }A*tiD(9w +P N`:@2Grv7fB@anҶPm@I_,gUSDrvs㿾WCitc R5 ӄ_MLJ7|u!@tV&Id1̙m3n;?˳ThxfZEZ6?r.?DI}ٗ=uaa[_k;싻7n .M+/b/iƒ{OT*8^զ(>4G t{wˈl&!=e{"w 5!K O$n7ל^Fg{ XOЀA*v6ahu3hA1G$M$ܴ.[kPOϔ}]--Q2?63Ӫ1:kSKdž4ﰌ`<  #cqh:qҼε͂J'F('~=MUP -J<-LVwʟH\Zݣ 6義:hʳg~p1/bC(&ް@n)zʶUOCY*[gS-{4J ⸪wױp VƜ$ay_6=d$KTlak#N4  1t7GRmu1O~b3OBD5YFI ]~N(|F=pIB<M.plMۥiGWKoj4N-͜$Hp#>-Hj3۰JpgkH|ɷ<&f1Ьq{5Zqgymũ(DSz|>`@m&Ǯv!>(zLJRC#:e {NoF3 H}IH (HѮ 2Wp]a>~gڪt NOوQ|\rMs3| |s3WzC+&4 ;V(W7tE-E)dz0g6̌UM0j.Ҽ#dhoТh2s^ӰVԬO DLҳ([|4 Cab(R"_@F<Fu>4qmͦd3 佺%}tT d%{T)A;OnFqDu%HT8V$2Ǔ+CCܗ:%WR@,ۙ//9e:kP"a(r:6#cϵ`l?KqKP$c})fu7c x>հ.o0@8L0o%8G##3>Po)GIXj GG[k$~yaKG2l2t<%> KP9_ 0m򽻑et䉿XղsȜɧ#RhZbr*|Y燛F [e?3%& bQxЙ E+6\+S"Uv*?;xxp8f>j-yoYH}7qڨUg*O/80sjJH60D|A%t7Ë䪹k33d̬.6*tK %lI0LlIc҃rzF<3&kROE9=xUhmZt%wib;;bEuE;$9p7%AƖsǘBnh+SFqqhnYCASp(>_/Г H'X-x *H'_p:ia]tR90*6TkUU=%F1?}_`XG'Ȏ4kH/%:a A[jQ'/dPmL!ɋCQf(٭ U_31]GZڛ0BKez=|b6pp{VVf 4uS㶳SP"ѓ+r'X+pVad+Ͻ=V~sep?gTpC .GӐ1B|htIV|]񫩌j&MerYŌ_; A0 WRкq9R\!#A,w|l= GKMVW?< z$U_BGox/j'wBz71Oͷln&BM`Qx?Dbh,viM|'.vI ?B`\ڡ^>v>}꘽9ҶzO/* 6p-+ypJU3'y6JCjFSNS(EbV'iǞؒ5iDxzDv@d7?y f->[rcRTj|Mx!Xn#DK*@9ɼƺȫTT]1*H$pl/"=#Xk!bEMBQuÙbPm&qNҗ./ B( yDI^MW\ɲ 3/#}a+Eg*0  UB^P &$r<%yP =nlSǨS\DD, Fi+ϐy/H$nNa0kV'hVvt"f]e<ߧ=jL*8Bi %*d`qg#`0"٭lk7wjB b8KO[U|,7zU[( ĀZp؟ύ.3(uOG *w4:Z ie!+19C1c*@~ my}WEF7Q[I=#ehMF{qKDšpySv4 G`A){AsM!D"л)`ϩ9 P39K5D,^w]i%@Ss@2#t;șmQy (ƗEIzU?x~tTJ[=}TBvsC_k@4oo"hl )qJ)r6BDրI՟5l}J<.8.i;mO2Gu:4n7~fLs5xO΃+O#wZ4SETn g@8lkd7(Xu6&B!o$ 9k\/\o6Hrp I{ۆ4tzvq-BBQj;Ϣ0gm8" :\} i[+aSɅtbю2YUO٠c';2(ӟI~hۺa&D$8КԖ!,=X:O1Ui&VkL%$ya$B# &&i.5胒xk_䀄TPfkzţlĎ 8* eBwn`tyoZ-zci01կ/Pe-OyAO~ Uߠθ@jW*7Xj.Eʌz"#>d?{ӊvw''Tǎy`'X/VTgZ h҃nYi랟/3ɝ(A Ft ZôDQ>ת.5M, ff`tw&[@ @+/CT^2?yiߠhpI*u p{U$[j/CrBL3F8IN&Cg wGB*v:~Q-Q'n@^elZH9g11$Z 5~3&u*#*DgZjI:Z{2+"8YFcB\\-X32yE>,f}<'tq0G<7sOyi<ŇXw}Ӱ; $b1G1CTU`}N 2˲jnz٥Cz?'<0J*9zof;hO;Ğ \Hc|4Y'It)lCXrnAM(DBQ;Xϔ H}7_ZQ8S~k%Id*#—o ۟3z?mm(w$OǮNiRLBbvgJv'LC8϶N7F-ɒFWH~ $L<Azplu(9۹f>vX8 h1ideA"KPpAE|"B/zV9q Y"C9j;?Pmiap#+&[`yڋ>s;@+\̼1l{@*WT6NЂy!aJBdnIXGEɕnJRֱJoV_ 3y@ ci=i1Hut0Ϗpȝ" UH9ha ad!&2흊:ST:ΈQ?խBs:xJQifCxAA6{5φ6}I =>WH}U2Smt9S$vwhf H! Jh2 \x{ B38v0Ia'7%?՘pmAA.'xM')WvPx{bJvBHV%r)SGgad#w'5O5tōΟ[)Aգsj+Z {HzP.f?pϮt'<GAZ ;/7rM`ɾP&E +Zmz<]:3 zq p4dUk3s.^OM)1 axϱf%W>JP4vݮdy49toyLT&1zNr|~h_8!C_IU%#qw#&YY)ljeUpH`N[yIݸY/P[06nI\"m]WoV+hc.I`yE>@Ht'|u<40x r9f˰⢝GKi4Y* sE]*b^)wJ^PXꗒ2a y4;l~5`4Dۤmju/1vo1d)P!sIf|[!{Ql[?sg2PT`%Ba/R]/h[cqN#pd(( IOEWX N's&KBuˋR  `$#?aW]640R煴ǷHl0P:%cqa FiG_v/HJI %\I.cR=-Q~.Ba8t9>Я{`yMp^X3QUFDO79׷}S8f,s- ԧ0jF6&0G|h7EtTr坸 DǰR-}aE!U!gO1s2l)$uCa ~RFknL%poJkZ;0*\jo@852eT?zFUյ@bT ĩE%36e&Ukq*&NS!%; hS_8x F|(tfi幍yֱT.#ڳ۳Kx@ҒHo ˳EvV|Rr mt*zC`ej^:bWH7ٌ{B[꧜G6}(lxsXj˃FNc'~wKbicTSV3J OZI aѴ1=9dbd1[Sv0)y-&?@l:W{w`qB'29~X'XuՒߑrR(Y;ǔD.O?{j60Cok+x~<,}5;ռW$%r uG94nA(V 9jl O6&R8A .X~tƉ\k溟Lx}TkM/<2B_A=h]_'w lIu$3i*j=(tjM@yhZuL}\ًOܯ)^ C5VuS'/bz.Ul]9&6~yFcSQ]Du=lOe;+DUIܳ10jpCmYJ()6 ))1X@Oy7%G\%5Jfhl0!ZJmFurՠ6j t_d*k C6 AV o kVGQMbzRno#,Fuj(A'qFg7^Qc~A؂Z7 3Se|NUƹTđ hFG!wO\ &qof+ ]Yڋl4v ip^m8t$2ܦ᯴.rB4đIRC6PyRwW {[RΕ6r)?E[X=/PKAm$PGRܾLtw#M[|R/ PS2op=P9p;V``)iVҧ̴C!5aꩰy)zN:Lrz,dNʜrg4Xzˣa*K+3 rF=flP 8 3.[(%@QR9ɘ?U6R!AW@8`p;dz>7=,t'1Ꞓ:qXqSf~gf&cdP,˾X{XVFD%^3?tahj7;7)E!1/]YFL18qQ5{ކoo֒ KSeZNR^51Ȉ3OW+<?;:_a4PӴf6EddWHČyEAH듉..{d/SBPĚ=@{QW69b%9 2괵LT$Wddo' dx<<߫Qb kJ73z3M  :5Cm`~r#Sgj!:+z^WS4=z-#)hW!+/NxBbr$ߵ]H!J"<4P' \%pt.YA!%\0'Bւ`E#^s(,;#^A ^ÚsfhbJ{1Pb_ZoNҽVI<`5WfI Y+; W5\6 ;Nұl4U h+^#ZO=_ xQ^J"SH4c+B@>r4/)YLUVh6ǝna܁Un;zO~ȫꮔ" n%ܗ _S8o5=ߓK>b Ǒ&XnEG4s]e=2U"-jy% j!B]ƬLѫ(E|9zc Z.Gk+*^ӆ_"HxD"%R$jʊ;"]J̍ڡ@(i_o5:ZƠ 2A Սq5 @zan/Oy諄ʡÎ7=h1lgq~%a6_76^qm,ZBf#f^󋿥4]?{@L9.5,|+ uc8\b"m<2kP)g6y9ӺR1Mo,VA4Йj߃zII M}:}H7{  3M+ F|Wj}'gW 2v g&aR|=@rgHAX%bl*doIDUcAr" )z"S127r 1. k} |i<>,츿7 D)6vjyxǹhf ԁ ԥ}^ IbK{ۇJI[º (`SkV#N nbg$ lTav%a{qn:z NhOi>ٯ\Jhl6D\ jJ]x_&e=aN]YU|Gm𓀒(3⯞F*M}u507ܾ $[ștTVb2HetLƤ~CfX<-}*_7~ugy;vp~K%|wwt+=DLV) إ6\ 0 d6e}tX$ BjU/E"va Թ fd3<46hŠQ0BETрphVzV#@+E{9?lN2?Gێ%>.զ?ٌ~ :> 900sziha[jVNwggB wEUYe횇b"Lp <$CB(o̭o>?oLJHS#O&ʘWxVڛdƣnx!7/EЩ+BuShBfz" *3ϨdԨ[u%CaK$i<Yx7_).Y- /PqUgQhQ[qv8=ݬ|vZ\!(vcK1I<,نP:$樗$KO rP& ,4׶p,masy(^I"bZWD-Jx0HkTj@o xA}hUㄒKpuVX+t%T@C ȶ1<\3,S^w\H}=ŲB2U0`pߤ,FrL1QȫR% bNUwΫ?> WDH'c]N `|B}%a@K^|99!ԡc?@U;҅ϸ5QUedޫ\.{_Q^μNstfgNÌfUc$&HhKYy\WBlG"_gqʛX cS2!3YRuՊk Do"DTISpjs|\Y>$% ۶?NIn!oo96rCV֓AzɷE=l[dfbx=7§Xj<_um% `1j2O([s]Gĸw!vd+[uC9QF#<՝sЍ.S!υ̴ Ky?~9Fx$Ko_iè 3ԅ+DȬI\ oxrKjr$!q=/6IiklG"ȳ^vЂv?{d4*]s҇B!/8}S~ι0_*,Mw/d>Yþ!MbL[[QO(8ꐧqPxԑ4 Qi1.PgS8fld$— 6|_2 ?4ʹ72ω `$siW$ 1?<` j㺔;*t2!߹FPMW9Zc~/XD ?ycsɼT#DR.%&CeŞjyO I`%((]7 mI:^ 4 D"kiT=TC}^2PWΘÂ`LџtIs?G];Eyzj&$ŐM`:+S&#FG)^ Pyr^C# |}> Y$OIa ǑwADM, DJ2X;6:^T0t1 ۵r8̩lS"18d0*&bb|A-jRMn3{U%Nچ. MNj?2#IVZ(:ќTNJu=~a7uo;$hkh1Sq-i!NTc~xmc_&#Jpo>P$,y.;4Y\2SX`8>2;H勚K*@g~/]sk@JdRĞ)CO6#;%'ǶF/|%зjNLjȗ}hQHE[$mK5鵖#lM>3h\f3QSɃEN!3%л4N$L2c+_!kpʵtטؤ5Oטw◹f^{Ãͣe=nu/qiBe42ف>.פp=`r>kAX4YF1nsmԠ9`|+-pO+QƧ')`AFgаQpzn07@+O4oBU3hșG+}6Hy9;e1r&|Ҭv&l;X:53Iݐ~͒QO=>yp,}K6s}k:/,QGKǹW#"Oz궷 c"yG(܅|0*͋,`^]P[?fQE7[kxB%t1<κ 1wMm  %cas!Oe㹹oj`\2;U_ ?WzeNk ~oB sg*:! 8o`DB3`3hsUD"C cKܐɶKTe Zo\)ύ! }BM ss~T N@y}.Yȼ V.D@n# 1ܓX?I=E hR >xߡx#) s]SNˆGoak`p{4`\6o ?+s`u19QD|z"$խ1qy=(Raɳ##$Ku1qndOx;-zN4m!%z27oo)[bœqVA#DML@8ov3~Kv m!sJpu1'ޜ{lFG$ܟ&c tiɬ_CJ~YX˾z|c¶[\.ɖM[#Ϳ,^>y Q o ͬai3KyhRƙ7iāVun-´hp?exf^WVZj| kY +'n>p&Ϊ~ԟӬ:!@/EuMUXݟo]ƴW\r_BMd G"y7碢z/Gxn9f;=XrGNVC9w y^F+Q?&[Ϯ>̎ bR1*)FU^^S4bJrT&>LnG*/.\ȺuAíTl(`WD>d*ywQh_-]\M>`i 4"0 S-[ (( oڨ4;5k!Ʋs {kK ?ugc aZ7IT4@,+z8GqUpBJ^@ڦs b'Q oO^Gen5n:N536s',Ɔ[W*{mӌqb@3 ιIi Ċ}h𜃌b +0!*7Μp%],n/Χ{@8@^*EYT6Щi 8c*C\B~7K\(xBAGsɲ'Ҙ@aS,XR~ FZ0(玲.ğ4O< _2erȝJ9]`.Ϊ1I.H ͦ+8I{\B)b=X%}X3Nl1IZ>t9걧UDwθ.sngwm}fJ(]iKSa1K :|_'v2w[8B$!ΏI9/uh+7Y̝iѿ[8i+ұrfvY^KUJrX4y~.-^w(m@8s]hgő`@@Qn_͌pYa1/ԦE5Y@EJ~6?kyvҤJI/[VJ[ nx8 ꨾~1"XHOa􆠛Е!Ezt(sϳ^e|w,t̸"nNYrC^5³DnDKPz-6ZD &H9á2vmD% _Ȗ-D+} 8ô9wb1 I!rcaз"*'JV,'.{U3"yPc}rmnEZgI fy*đ{2qlMR^X2_`R8Œ5pVXڍbV;X9$N;_#tX#a%Egg[sw[s_)C?۫<e#aBX07}K kQ[7# bnB*װ颽X58ĺ}Tu1&oi ЉZA >|(6Bc嶄vb'oN`J2n֍]XHUM`1q>x1s5#9PJH6\t# ȍmAȗ?PoosCLd RU·:!RPngָܧ*`>wG`?h9̊W}$`SGk**Q%wh~mX :|m1MVSZF]B1:=nLvϑV*n:>k&Q۲txk`Hz&Q A;*z3IyTle[e GuSw8hA6B8xVwhuf,tC[Gx;Jn'ȻVvva3 0gS7\,Y|VF$y8e$V9 UZ;!)#P0LN.+Y0EK`ql mDΛ*S& Zo 9cz&/fet y:YOm `d?߃+`  ɪ#n㰢r[|dHZ*zhTjD1GeNx,+ŷfon_@S:~s?AƩ2@kb @r$hαrPuUPm| a$=eߓ^΢ڡ3 <.!f-V7g1,1.(&6K +߯T`[杩Rg3ʐiDi"#'S{,Ձ1EP,DFh= ,iZ:OQgI/(lSS rI;2/eXPCEbҤ4|NL@e|Opq޺v ym -A\ }$!I(L49_t!*Ov]baF/@g\#`94OYN+rC+( M6Pikng8r|%biUSEBt>,CAO/l b`1p]ߤֲ=DZ'Qpz?8tLSSv85b\œ+edӅ1'iOYC) r|1iӲ$w -Yw{S&NFw1]³H`@#eXJ-= q]SM*`W2=`9{)mxgBrT3(,>yũ`Z\FJdawyJ9jGX`? K2P-wDo-ӽɏPÙh.c޹궂2B[phoLl[dtjDɈč30c %l5 1gh2ZYZ!'_ AǍ(" Ҹ Riyz&W*0/ȕB q[$9/| Co-gy9G cPAN~&}ZWqQu"",X{tJJL F|y=Q%6H ^ [fEB < t% ~rQ*tL/FIfF jm;DElrMLG]6`jp]G͆ʈ<$ԝ OƔ&i?D4^Uz$q'oǫBSaQ:_ H[ Z.GJJ5󡁡Osη_񠌜wF) 'Iƀ:%a`W pk-Vozkr(&%\mŐ_A_XX >ץM|5^v(L7 '#-Wg;k>(ʌkvPPb<_dpRmͱZ RjSLuhSkҁWs'_cfnoj[ه̋HHQu/>r5JJA`Q3ͧsb|Z'u܂|-qЇxR8ccݶwNg#ٖ˝p okm3^P>xtD!8 XXH(, f~<7-3VE3'Ox+4d%x>`} $7IxF /hC_wE}~&o$4a 4V @?.IzHMY jձPr}U[Y/(ʞ v8&``Kf5t{ITQ]u^.\rLП( _aHg 3?PSDkXF RUzw>RTL\ۄf/,Y7jB95!uƳy-LtΉ}T\(n*5 ^halCm|'PIeg@sQ$]?~iv#MMv&*/)(!EZ![G!YckЛ#69-#X4S c¾9i#*/{Da3ա=>Y/VZ Oo8 (jvYw@PS/1Z.lፀ<$z*э㱖):0ؾ%ӭٸp$`>K1jv8̣:Nd0d,K{O/O Gl;րFzƲ^L‰(e9 6UOadyђ*w~0?a2!@FŨg ͩ4 jxP/mOrUVfYoeɿ>c TN>CI y،lE.0zPJ~zt1f0"C/HZĭ]P6kB0{$_ #HCpCpywd4[uP+񄄸U/"ii9p,Q K#I )Eg)SyV[XW81E2ڛ#9K. *P"tXBQmipGT/rO={9Y"6(" 7?&VcX_Bho֫ #c (|2\ұ%UNN [4uju?$aG+A-E7X#հ 枵d(c,OIM[Iַ*/s>!KV:׾ێYڑ_y;Ntkg~:o}MqS |#x, #`A?i;ICWmDtwTFRT,@go&HŸ#Gbqp^ӝ wǼB$ʿiO6{x$cN(K+FMHmV CP`-cz |R6(%l1$_}Srtq ;)b4絖2O{S1\\a:ś]zz#oj]w$ ~/.42+{^h=fvwLUN,ybπ6۟ؤJ \zS*6X>z~ aOƀGkso dY_+/ʇp,DوV>&_@0edL_p>E۳ om+V^$ǡ7<unT@sʛueo&V+ȠReV9o0Īf7Blz 6CCЩ$}8 iZ,bfA82xsK3rbaea\5G'Yh#r][9XPݲ>>z\Ф2 )W"JVdn)cdıqQ:J Be/~X^Qd7pɭV4敏0k|'A*ĵOZy\(ˌ˜wr2B(ַ 7\O!UɤIFDYb. G,ڔƚ<|U"<<1j{S9Q><E& v hiʙyMTkK0.Gf-G-zcOQoi <*^G/*QxCw-`A=M%2{Zn{Ā!ew-:a ,lV9 [LDQyoA4s :靮0$zGkAmZfk.i# 6sY٪Y47H6pE/$MCj!pla)1v`]/2N%tX/Ug Kc[E :䛬Kw}U!y]I*ꃒ=ˎ1.z@yv]SqUo6WZ1G' \D JC >M?x`Wm(.>)E%mįDG x$pʷ'L-Y@* +M@Pٖ,h d$/UtЀAYPw@T*fOhllP|1ҩrK5Y(~\u3^_ ī`+xc<6aob{`*тsĩD!jnPX1?ϹAy WNbf΃yypar ݱjZÝ\)j'j&2 =pc=kt7DeX~!|WMw& 8( 0eZ'{Rtfybwi2]|kbCFU@ "ֳ LԑsY+g;4ٞ$^n${ۗyu #\\W&STۻr © 4"#UtO CQSB%V'TM to};cZZrA7?%y] $N2S5I U&9=']: x l_)nDVp p. 66"V46D$F5P"-aT^vQŕU|+!XSp㆑!VA ;ᬃ4aQD䩸<_DKOLĔ? L)kN2B ֭Ȍ(Y3mE$1ph.bwV~#ڞp~h؏yNTLkG60i rC{8D&ur f ngLp7ER5{͵OWokS@hrTʗ<F kxpm\b\b8ܴ)l;Ў;;bj)RTe-~?# 0drji8->#0ʜ3`!0byMf<3]ַ(O]A'c F9.|7e/Ex~x l@6rY=~V9>\- {l5ݡ+۳VQI?8[- nZXƖ5M59|w1N(DV 5aPŶI9W;y89<k#)L<5/yp'kO4=)5q2B)Q X?_S 2wS60v!!>L.I BLtxtVfG' y/{)68l9A9PK[};T]9<e7IoxT)C1aM߫!y/5rG(%b&Wnd}L\ѓ=7DOԾDNV$yeFs2) Vx37 6-]d}RWd'G^_d1~LRU$4iwGh~L̓X,YPg) !pk%h?Mg:K՟h*,6VsY`}5HTFDC7 I3mC?u}e)־0G5 dcHJ-d,D{w rj)a?yx¼5F$R0<i.LBEO tBrLb;c\ݐEފ5%Czg) ( 6Zd%jƽr{ Q_~Y?[+iOxD*' A:b;u;]U!^Ry-JͮwSyNyZxHQGR҇˗2̓6Ehb,Dߪ IdpOsEE [ݪL'` &[2vÆK'(DhK:P:l}͚@{'O%0i~[+&Ruz̐=tB . / (X|?9KͼBI6MAn7I|h qAp:K=OמG rq߂&PjO}U_F{i+=U?LH(f7 ;"СNDV#K\jW UVܒۖ3gEЅ']P(ĜX(gb?ԉ |0g `ke +'LZXxFn>_些}  oB1)؝KI/K0J,ŝs4{oC[4\,K:`IyumlNύGf [<(H5bztLJ6:] pS^jN'.Zj:d6$e'8DUs[G<"P$o+HnZn)=q21ߗդ\b6O6yw#Ϙg i$kxj&,-?Jv&D,̳ k w{ 'O|J p󚝦^saҥK)u f=(@ҥ><W/ö[v$[n?M)5% ;[t~Bgc咸ó5_C5#܄6:A#LW؄0-lC'u?G::^p:.]!\mSw>%1TEgrs ϕxk,;  ذZĉp oѕmP<i  NV}ߗ61"aggۂV=HR^MF }799 tbqᎠL,I݈Γ,$Xd a{“]Gԑ\\8袨,Kp3Gf:0]8x!4JSrku|R3/0i56trtu1퉤q3g'Y~ƯmU: 23|&1CP2O3K É'} ^A7V휛'ک]2+~e}tҝK^ß/P'm ,iC2JsML2w%ocAEtviT) /rYqfvN0MSdgsZsSGS=I]d-AEflWl6&n VƲI(3C=&kWMeD%YWgM|l9 LN%p4rNKZkO 6lQ^|1)=-#\SbI$Υ> [pvb8OL[I~FpVoJ*&j ϾH[vog4\jK"p/3K0ܪrGRtbzpW2nJ>5|vy3ݳE3V2~QWlK`~;Z&Krj+,?._@ǣƊG $b@6T{/mĹA4,ǎ8 >W[Oy @-rfVo;a՘wT 77L%IJUhaj;_V*#VQ;< vuY&3pŅwȽ =z3)ҫ#iQDþ`b\- %zx0{SZ~&$}O-$h{=iDߔiIB8+B=TY+ V'Zݰ~[v8v %=zgiʑe@&"t#NGgB؆9c˅腧hbr)/Mخ<NVEb)uY{E9^)BXsWIF&yw _,^ז;D\f؝/7OYXFG?bȷb[<~Sضs!z8$i'|mn\XĪ"Ιcz-s@|wF5:A%/PydϺr `;=tYRwwÁHgw>}2*e {9'0D&.|M?j " ?Uu}ʪTmeǍDin,A$ii:SVIָ'QT/ʄTFE@m/<3Dpا8z'SthqVi' 9f4|WjC `fE%Llv@~ejP$ú+wW-b@)@51bڒ)R'nlxMpf b|&qr:Zz. &8ae` =UDZ# ҫ wd3zE6JnAJTmX1v3 Vs B،)k{G9nTwħS-}SE* =qAA N`+"^SJ|2̔}BC_j]HM'GT6I wކ$ ?"m bz=1%Z{PmhM%ܧH?aw˨Ȍ^t7 Q^JBoм'S(z2R{(U\vkxjA+ E,̐(q<>a߮j9@#:_Mpb ԒP8=V{o o]}_KFe,pDa"'QQlA2{/3TMfU7Tߔ[ |st+yTl-m^zJ0=J$B;*A{y>ԉ6 mY ?vqΑdh-[+Ad>Z6i/qѬY-UCj~7 y`R|Oũ)Ŏ:2$IaipX;s p5jh.XBoXS\ҹ?E(?{X9fi?óZRt!%&)ӪH7qcT ir+'7u (OYK$oxYh3n:OyV|^؂(է3@.򱓈:uI`RW%Pvh XH^wrF#{ SHfbh_q7B*z=a' |.AK{=Φ o'Y'/&>Uv=d[I (Ol/-å*L<s80{Yg9C>;*TԱrDL9 dfBץR 9y k8y,}gX8PGQ,0&Wһ8ϴ^`  deV-sjaINη''+ҝs[/>5Co;n`|yOMƝW{eA vgf2>37T 'jv\CdwoتCg6uiAh1rDV$~mgEDOfi F>GF{HwkZP,b#" —?݀:GPM*t;Ő>GQͼ<4deP^Q{_aScqH"n(F!b:ND=d/F3iytR2T$ز-Inl5{;p +Yȩddc7Iu _n\x7OZ4#S\ª~vBฮؕK˱ ?;h9ۜDd7k!IJ~lѿ(l}F8(|F-r"Q;;ejXorP&hj-7N>;QD"xOVcxCzHF8Fz`G֣U~$i m2EڽJ/؄MKWXC3ښDatS-b YEy4_'&jgP֣Zi ˹: WL(42c9N'^pݏA!V"RjH&i>E8ܞnb,h$aWHetǤC. ۶Il$m?zjH!f]API>KkMa_zebB# x\}?#'= ੸  bs@Ǩ,μrE^iH>Rlw=t/?hӹcc.=&*')o;g=]aj-T$`BTFykP"bvUE91-VGՒo0oH.G6Z/ QZqJ+GֶҞ;DdIqZ׾ ?QsWirng^긎_N+"?kr^Klߟd,QryKY%<,*!E`{{,<ÕzLTRmh}>;moVTyxY6m{NGYyhMAhO3)+DQWkeh \Z2J0MЇ*|$8Woأ4b5˰5&75f,^γuoW>i]24Bծ 87"tmbk}mfX }**,JKXxKr24#~uuS[vH_^Zσ4`M,%pؐgoAf D&v{'*0!̱Ṡ A9w|Bnf :0αO/"fμ͚3+jeh>gQ'g4?*&8PGf^)lʾ7ˋ)M{ƔULΛ{9X ؆^7k(J8xkUN$=|K>~e1D{"{mxXZ4Rqs6@tqb3c]oz#;'d~=KbbAUIA5C4G"(okRXx4`aM.$cZUGQ:(`Kc]]͒ ŗaWo<;VVnqé1PŊo⬁6.D. ']ggaI&SU+$άo% TݹMyJhuoxYo&/Y)IW`Ӧ$y y~T&9shkǪWh΍Pa7ߐxO>g@3Ƹiy;q,?FKѷ†$Yn^xddo7Ii@ `>zMJ({M+v3C]`gC<+kjjX}S" 4'^]/nstuW,r\`sckkOB;x%m'ImU`\\Mz=%74^Dt]$--:y)دG<ƀ22NGI_B _"gA{]vko ݭ eW;Md٫3EاM(Eɕq԰,H|V9zAɶOoB GeЄ$!Uaբ]I&%ؔ%R MZŞOB@^ {kU4-EYս|.?,e+Nܹ~6ߞc7 d vLsQF#dJ[j%LWno}zbA1|c w$o\tשbmdIqϐ'-1Gi5/G)>P$hM`6 9YAG7QS6q;@/Tj8Q#POQ9n{#C4 R UԖT5]+%{&,VӍ/EBhGYFMԣD^@K֮G 'U<|6TC1M~Cµ @+mL+]2 q 8^/yČH>dž:Q4D/4< ʂSj.ی=egӎXX˗f巜l\A'!>V, |Cad?}z |5z`þUX@ĬȈ2Jw$GƄW7(f&/3 rGXs\p z-&Fλ MG_>Ø#ՙRQnBZZ$;;bUD{~iұِPPO&ClD1bGzZʭIe'>HE6cGi8}L;- ! 9 m[ *I¹>lw Hʋm_:Ig&zy?y(mtN5Ҝ6*['JfA1kF-OlR83ظ/JslJ˖ᵨ(rl+y*]x$>jc$h]yu:؊U*ƋҞ7XK.F:G]7ܶ.45D* q=9t-Du :; -~ܐ ~Cm޵) dJձ9mwqvEn-}#F?Z [i0urD۽Y CH Y'Pi11ms A>At5 rC_SO^DYOM/T e'mK1~q,0gCy9Mo;mAg6߀cupu=Ҭϐ!QwzlW9ڲULo|"$=_Ş>AsƹK!]r=cc?H?#6mrk RE鎳mO`̈́B:Dܒi̯YJe嵟O ӦߡסnvNsKo}! .ߟ| Tf'8(y%܊YdaHZjEaUOS l%;ic7 .q_dE̅{IHi\r:S[o?9!dՍYsX>1)r»R.ɏp33܋0G5 }qDI9t}D5`ykH1ٟt,gͬXUMC{Y/ؑUiQ# *9'1$]1lDu~ՁE/\hߕR%?Y-8~Г,DT4-ͫ.5]ZAt9*)!Hur y{QA5s\t#"mɠ#FY:0zJ6Zyv9liS*Hb,[^DtWu2g\{G_|DС}k㎏{t+% EIrĻ5A o\"q/RU9^}?Q6@ PuGy!8)u!,%M΋*{6g>|8&=X N^Lf7f޶PA+KpԤbczp˯sCEs7oAV -D4JVF^گy24RnZm0\QtU/DpōE H@r8uNзl8$z !ב'3 Ӌp15<_BHDWi "ع̌hIK#QΕ2u8Q~>@u5zt `?p4Ox ƪ/UyHVդMekI Sq 0%wU|W++*hH9n(g[L >(4,.pgNbx;Z<&Y򼘒 eqn` v2V]&$p>3yNtYTN쒒}un-<`1&VzGK=Uy5`ڄ\y8_g1~qM_K8|! 6:V¬c*12Eh0L8^؆LW1=$(tB/?@n')(K :Fj5V(+UHj7=amGZw2-TI,V9Xy+H[+0;vŞЇ{hDP戮 E hdUbY]68.fi'ݑ HjeL#vO6S].{_E*@Gm!#$]~z[眒/~|U+bXjdt9Q2пO6gD$/=$%E M#n8cNCsץ5M1x QnxL0ffrVE4_*G&{#(I`yTR *8<}O5ago*Tbt2Hp}԰y^}'ljlhHApyUjf ~k@8iis醰喇2'-ar}, cSꖱ;ܓeApRU=(}A"%v)mj\؞w6AYΦU1\Ѥ 3uksX~il9 W~j85@EsR|,NuC N}о©`R1 3[zS3@ 7JԇI,:]VpraJdfİ`ԑU,=8jZ;盹r< =\(+-CθF1 ld3iMȂ%Jp;\8`Y_Ê2moj@|C=eƒXD2 swۚ e@kRKaᙓ(Rƾ(KhmaI.Ealw|-a:Y⦹ ]f6YhgOf*q. D-mtUNjQXt );Tټ4: =W-g-œvqsuܿfu5o'ߪ>Y\s T%_bIޝJ3wϪ}E9Uf<^xc6ワ(ڝJa_r:yVJE 7r9p՝VIJz_bO'ERVVxCQliWP0_4!JɌۣQ'?:0}%툉J̕5 O$)F52 D2iN'v1ma]SxC+cp$@z/9J,L $NO:n蟩06>(A^K^߯%R2[.f0ڼ*/ Xgg d YfΔIOys^.b!0ǜZ @;1RFPDԓmo]yFb`} )#i ti-KTxUrR$9=1^*!jS]lx" )%R55yꂳJ323xPu5=G#L;ՙid38Ƃj2WU@ nrZ,;ݖ sL$Ҡ2$ 5Fs-d)Ehzq} 2"ߖ\0xh>cXˠ[U)Og0L 0h..In蜚~Ѫʍ_C ۞|'br Ge{/R[XpϷ*&|gU" ~>Ρ RZ>{)8DQ H3'ĊG DWsU9 -X?{9626̄^z!F?yɵ`@턓ښP,\y1l?vmxvڗEPД5Nr,m,e]n ^Rh_N<aBe%JD[hu1X>&keK|8懈EKa91厴@LeYTWmB'u|Y ӛrE0l%"AYwgAMŽXhs>M|1>.` |֙,;@ 1oB twQ@K:81B۸:uxDWULM-] z  #KLJL}FNEO̕a6f0^}4R`J7p,=qxC y3֠ǫ⃦ԇ ,{z҄Rbp:He0>G̦-ϯhI!U;(}Wo^rLy6!՟xCI.'dcuVwv+_1b)0JKb$70&eQ+P-hUaH߄=Ftq:B)|/SDvةFC}ֵxKܖ-$9)Vt>ePnBth?x&LnxF8`/i{*=XE:bXs*90% ㎸$4}!?i#`CFV7ѻ̩dZa#_)Ft :A'1^L1(\BCMGdA~|" *]:Z?r{?C͠@P<Ԗ;jy<*v*+P.u\Z7, kZn-b7_&v4BF)O^,NftS9t3ۊ"8ß)Rsi>Dx<l42Zw K95R<Iaq~1G<*2&7}MuZfIEDUFLwL)V+8[dNM e~RC&*KWsf&58߶tJjzh8n$N.^R ed^-A:] :i05.,Ww6ev@HIR,Oɜ2x:믡1nUr-Oې7ITA 0zYyDxod6 Є#,ʈ*(L9}x3EkTzĦww}avTǨ͛S2%;8>8@MW ~3 :Kmʂ>e]kgذi9|'X\DS-LB}4aplENAi.uJA|htl^n1hb$Zw8M\D2]rdO5q͌#wwViï\@Cv@9ny7^P:ۃE$7iob wɅ1"VdYk<9G5 GŇҭ:2p $YZx(:QJug-D_/!.+9]q8I< BD8*p,ׯcɀJc0iM`=N=K}vSM+/3FϠAb_j̝sEj('*D 2&n0ɉӾPȠeqyEW-pX5?h}4y!6[\{a.JW>CL/IL=!] 5[j$ïz|f:.BS jA5QX`'XO<\ /33ؙsgִ {`$]-6y}Cs| {GNZ 8*> l 6J A:CT6Tv1ؒ80%:: ^Bگ%-rX`3rlF\_,. u(Ou) &}zRM*2l4Z{ၨIIZz:!kF{=E)#ʣbt'EvNsG.reH}tkr` $:]V׺7n2ۊm>rRD[hO-mLe>6L*Ƽ箂AK̪>JmT4sߜ'|!ɺND , Ѧ;:1V9 6 O.@GiY%jWeiT̮>T}@ 쳨 ŒfRJ/ݱ0..؝)Gt ό-lӺQ )0V}r% 5<{k9wxMخ=yB#3J S_2y32B&XiƖ*B+O^ P:v2+e eTPQOZآ\! yG?t5dY,w ?6nuk#Ӌ m5;ĊgZONHO[K"1H",Lf+˃=Cr`PBP,e^'^~ 8[8]Ee j EWdzLn+b%?XzƸ4 b`y;θ*&e㧅dmqq b9, T b5<ۂ=8+=¾&"}G X?Xf_ ٲصۛ;0b8LU\s55 tF~ֳF gFUn>4T6œe}b9,gc쬅/LPs|:EδM}idU)- 1R8^𞋂en2C^cLR$syxxʻFU3C"ko7fuj:rї8MYĊvF -<'3[g|:'9!jYC~BPh7 9ȚD5Aw-yKUGcH6OLJ^[Os)P9bm0&5?,o:Ok\}[yax_Յ%SmPuS.eq" mԚqq' 6|qÅRĹ8Bsz +ѹ~_uxV#xe(<#$8(+`~ʝ^u3rjsSyˊ󙱻9ƲS?F gǐ$i~~юlGCD(!DZa%H R]Lf9序E_s=Nsm>iG!]'wGMÉW&|896/E$xghkCۅ NQ QlgSΎՕ_*t,L Ű%4޻*YܒuPƷF5gf[ۅE*d?`+ds~@(AQ*l!LߢDAm+j\Њ;xV+̄8=MV .m.ciҔb\x_V<,u 5?hhv8qL9rǼg7ey/Rs&.&V-;nZHX>) <}BW`pµ;խCoQ5y=[vv%{#v%t#U^C0<[(e sΦ~ھ a%oʫ-5|ʧIY57-_b9X X9ߔ4{!(ʱbƣBԢ>fFce.Eȏ*@;ɋfp:_A!+fE #kȲQK;4 - ?dZ8kى. Ŷwdӯ_jAG+Ks6`Kw9tZT\1 n1$&~1Kրw}/m7g1=Rsj賭1'Fi mwQ{L0%$`vT:*N`0d',}\lx &OHdg4M(cоb8(<֪e:8uP[nNbqy&jr,G 6<5/o܎0qWׂeTۀmmꮭױiWlC2Id/I릒uiVp`Jg+ 6-}K Yr|z Ⱦ ^+X!76 fc6sdfx>NqelYu{6=ίV^Yz| ā`e%whȍ\@B_r,U "ٙ LBqm ^ _zɺtobXc1QHHT}=B%p?FoSuÂzenY+QSp/8^ ډjl3o[wdp[ab?Šdnv"Kw($hx awB&% TGI&y.@˒WTq:[Y}‡G(Wׯ_yͤEVTeM..ygzvi|%(od܈0H[?``qqAb?5y- %^TU0^*MV3gi۽]L (~>WRx\'n]ɢUsA[_/'@f:CENTb`4W+/Uxߨ&EOZ!0ky+{u.*f_^Sq|TXd5mQ,5G{owe΍oM{8SQ(T=cUH\^Ĵvw-]q̅Y 34'#GqkQv!:$ #q]_7T^% YMef1R/GDK1[2"3!)İ)nLWq&a6` %bhvȷ[p%Fo?J˿֞s"z`x"iMDJ[7P>-: tR{f+\:AЗxf¢ "?L9ȕewRt+C&B~ 'QQaBo*`cZ骏eRN`йWNzɖ&}q¾A񜎢asepFƚhv,R1 S&L5VT*RZ-hUyaWIѠ_HnxqF <  P!)g56(ay,CGXd9&˨p5 t,Gzk`#D.)0@H2E>C`kȖ|}$hVai}"" jDuaԘ7JtY ?˷g7p7d.Vu@AVwp$g6=D.F%g%Y ze=DGR^#*BA?Jh$ӟK5tB2`AY:uH~Z$`: A B˶7 ]#lӦfs%R.ܵ] o6x%UA> -.A2ax)ycNbn=ԯ\0i癪/o x%1~Ic*WKmz5.^ xxSΜn=YI[ĺ6=Ů8U:? <>!i)I CۅQ¦,vX \~OVB.Xel0f\ 8v/ria `*a,6oPN.>櫸Xm^ ͪE4e&k.w'$wI;Vqrhq1!w8|AFTDb Mn)UwSp[D[B짭ePnZ 5G_W vV}τ0տ,];h,z4˕D܌glJ_䀛÷Wlt;+<$חK"z[LDr7(u^B?D96#7Ė"%n\ιjz/=UYn,~Z++tr1Nm8fuU ?Qŭ阑l 8h`'FL}:[ʪhd>Fb۾{2D(2´PYߓ̾ۇO#z.B0 .gaci(N—lFg /=1͕͞Cc <Or&ҕ]['J !\^.2?2$@dqy95_J=N@>(zG:?K)?mT_U IX "bbtC*' s_D؁(ܩOiq]"v#<X!.SOSc;;{OByDz5' ,`3yt%2DV$߆t,9 $.Xbiꨧ8Hך3T6InI?mʷtt@ɛPդe:,#,h]o'LERKـz(SW/HO,f[<ˈސHCOج)a*g!)1ٿ+o*Mwx=:Fo%ۤEhk壬"dN*8*;#J E:`m Q0Y1MB/o)D"Z^oA]{F+;\ P/g^awrZǘxʏB\gtVǰ vtm+t+;+WwN}%sߥ& e28Aڰ~s܍cH `a] yr ~aչLi9v?DV,Co#kxzI/v<7m! )ohsHXv[Cuz(.# mf-S/YuV8FQ$.+&Onr|U9U&+J%֑ Ȯ#ˡp}ǓYv"6RYVz-0PgBٗyb?T'gn^qUzۃG% 1<o:GF>w ^4Ȕͫ-I*PU,FXŪKBR1v *rPR;SSL& 54Pהrl_LXi 0It&- bIzaΛVU -QY@C]\jz{R"z$ ׯC \rWIL 3ZYeS,G/:iUgw*(HP8:f}m(aM&a!CE >or- 1zkDԞG9TnbPDt2SW߇f,aӇwrJz=zNCRhf87Νu͆)H""R'4T?qlⵂAT2o>XTqix2&.+hCSu#P^?[O2q^Z9nvn<>JM:~);w?$@1 r,D2"W۲G˛GqpWpoख़Hsa#nʃenP2;*Y4q1Vg7RC]=W0͍QV<+LS8Uw?  ŦS(s4Rt eGO^ӡ2~8,&R; Q跇'8Y#I޴{7IA`O!@ `cA'qēf j~T:N?UyO}>*%\Gov `up|zJqxeK#w)q|ErNr|f Lt WK(8 n`e{潛H<&DҞ#nգ+7Y7ĢB)hm/~a)*.e=jM_|/9_2da gF"cOƼ5giI1{2&cֲ͈V.^̓N}BP}!z6Z޾`V%+&\p'4"p9v,O_I{^oEna6!l߂RM^P}Ő_Y>2[.>ﱻv}'-DgIYʲ) I""wD3sDy֪1-\'~`ُ;etbGBW(y~tkzB/&evAv.L^I.#\~DC]nQ mgyyn!|XFպj>hoi > 袰$ Y YdU)wuNb E@M({3W+M /F!D7l  ՄؒΊwO*0z[iP5ʣj$ݣfukZXR?k~/En<$Us $Wu>1} (srRs-v:H'y0E9|beb@һG?C+}~H!o u;2' ZJ9IU MYܹ%lRN]@!<¯Dj,B_1[.~Tx#چ/n͖. ZFe-D z0 KM1|S]<VG?{yJs״Z1z%*F|0-(c)(A"nP5'*RH䚭\NIG!LVѳZ?M*2ZWRmLI#6S9 =teY٠=L_vĹtqAR1b>AXn=`* /QZhK`<<DtD[g@?!xw\_:Bw%)j+cHA*@#( -ܐU%i7Մ2ꜴJ4zQ]1B =Ac#BjeiK e!&Ӗ[(Mdߎ¥TPo-5Q+-*gW1ޭ\DgBJK^S\Ukq;!wKM/qB.cp?`wĽI~^VO7J*7^c%E bP[tO~A&ڛ%4#pD櫩h?zER;V\ޮLE̺+F(EAUC]`6^Zk]E<3"is1i6%^c!*ϋ00[AĕMx݄ͯJ(]sb:* yuRٌkB^K1+淚͕Sh_o)[EXmLro:+ފ&3ɏ –^.lwziׯ}㪩Hq^ P$/u\ aV+"kK +["5eiuUq;L$"VB{dexoV0 slT?WCDX{`@Рl^(Uڗ!V%U<{^GDo\~n3F\GMc5É9R&| BLj$p0=w|U~ȸFRjn;< lmCŃU'_M?eH(@[_MoBw6FIlsq•ڠ;/~:w!,Xr0vƦ`waK/w1c@ed|C9ao~s5X]Q0t\p;JW5pW4*JKd<UcTUJ`XArܬ%hH~<8 3mBvS}t}HUE2US޿i;T/> emæb G7a{VD $og {ŏOLJs+V7R#t+TF$`1P+%LX@TōFgU2?ZZ5vIqշGRd+w߃@!.ԁϮw1gգ%j KW\&p',=)Ϥ YZ