From xen-announce-bounces@lists.xenproject.org Fri Feb 23 10:59:01 2018 Return-path: Envelope-to: archives@lists.xen.org Delivery-date: Fri, 23 Feb 2018 10:59:01 +0000 Received: from localhost ([127.0.0.1] helo=lists.xenproject.org) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1epB2t-0005G9-7u; Fri, 23 Feb 2018 10:57:43 +0000 Received: from us1-rack-dfw2.inumbo.com ([104.130.134.6]) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1epB2j-0005Fj-Lp for xen-announce@lists.xenproject.org; Fri, 23 Feb 2018 10:57:33 +0000 X-Inumbo-ID: 3b003a40-1888-11e8-ba59-bc764e045a96 Received: from mail-wm0-x236.google.com (unknown [2a00:1450:400c:c09::236]) by us1-rack-dfw2.inumbo.com (Halon) with ESMTPS id 3b003a40-1888-11e8-ba59-bc764e045a96; Fri, 23 Feb 2018 11:56:42 +0100 (CET) Received: by mail-wm0-x236.google.com with SMTP id t74so3886367wme.3 for ; Fri, 23 Feb 2018 02:57:32 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:mime-version:subject:message-id:date:cc:to; bh=hkWpWVV9wNj9ld3wbgF5PMmD28gps0ntBRfa+0X3jbU=; b=VUz3LTuKfkPCR/fwt5yGFGaLYrmlBRgTHWpUgqFhMoQnWhdtpRjImsb8zoOGN/U8ee 1jBAwVu389SyAb/iDFcD/hdAbOB5zx/IWk1uzwIFFyf4H8xHiz2K8eLLBi+wcCFhhVoY /8St6MQKeSY1MDYBxX0Na6tOiXhgGmbuG90bBYfUq2tDRRfhHNYHwghJIS/5I7NCGm8X jAPq+D7rKbAkm78aQP7gdmuiPdbb46urZzw75X1iOLYPOsEzdHd1Ue7fFUeGqmOT76h8 RblNtZ9UQfR8q3HrhLh/NgfiHBsBW3QiZEL1JotsYXDSA2rt8MB2I03HIKcGRePxo8P7 go3A== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:mime-version:subject:message-id:date:cc:to; bh=hkWpWVV9wNj9ld3wbgF5PMmD28gps0ntBRfa+0X3jbU=; b=TbBumbgYifJn+HMHVqA0e5UB/RZpIMo6Nz8O8TWtW1mu0TO+Ib4I/ZAg1dRzIcLkxI 4R2dv36ZyZ+LynZVEEbz2b3p390e8daI43wAge3ryl+aiLk1yp/t8AECEpAZ3PXjAg3M gW+ILuNOu7FuYHeS9Eh6jPVOEhySGURBtXQsIw2Ne1USU7j+G4UnGKJcuL/CV3mDvpN7 DhYqMsBBVw9RGBB0yQNpBq4+7/GhXOsY0Onoceh2xzEe3Vmcw2omzKzTi3GMwdWg5jQR rkQopNdvxM6Xm135wRSr9X5+P2G6Oy3cANlIWkMIrXRGkYbe+F96byKpIY0/0VripE6X ejMA== X-Gm-Message-State: APf1xPDCDlhl4JUg5nl+XMDv1JDyCLZUQR7dLpawDIb54HbMoD7QRzSC ugB23FsA/10TxGQa4/CbDcoIsmUS X-Google-Smtp-Source: AH8x226Sf3U8a/Ew0vvRzAEFk+10Pb0vVexCs0DvRVvOFlyd8wA6VAccegUSFbl5492fhd3tsrHq6Q== X-Received: by 10.80.245.245 with SMTP id x50mr2221270edm.310.1519383450723; Fri, 23 Feb 2018 02:57:30 -0800 (PST) Received: from ?IPv6:2a00:c1a0:4883:a700:e5ac:de91:d064:3f86? ([2a00:c1a0:4883:a700:e5ac:de91:d064:3f86]) by smtp.gmail.com with ESMTPSA id o6sm1806616edj.65.2018.02.23.02.57.29 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Fri, 23 Feb 2018 02:57:29 -0800 (PST) From: Lars Kurth X-Google-Original-From: Lars Kurth Mime-Version: 1.0 (Mac OS X Mail 11.2 \(3445.5.20\)) Message-Id: Date: Fri, 23 Feb 2018 11:57:28 +0100 To: xen-announce@lists.xenproject.org X-Mailer: Apple Mail (2.3445.5.20) X-Mailman-Approved-At: Fri, 23 Feb 2018 10:57:42 +0000 Cc: security@xenproject.org Subject: [Xen-announce] Xen Security Process Consultation : is there a case to change anything? X-BeenThere: xen-announce@lists.xenproject.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: "Xen announcements \(low volume\)" List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Content-Type: multipart/mixed; boundary="===============5050535990392932860==" Errors-To: xen-announce-bounces@lists.xenproject.org Sender: "Xen-announce" --===============5050535990392932860== Content-Type: multipart/alternative; boundary="Apple-Mail=_92D1E150-9990-49CD-A4CA-7FBF351F7A86" --Apple-Mail=_92D1E150-9990-49CD-A4CA-7FBF351F7A86 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=utf-8 Dear Community Member, =20 the last time we updated the Xen Project Security Process = , was 3 years ago (in March = 2015): I think it is time to take stock, see whether what we have works = and if there is scope for improvement. In the last 3 years I have had = only positive feedback about the process, however more recently I had = the odd conversation with community members on how we might improve = things. =20 The Consultation Process Rather than start a discussion with a concrete proposal or with nothing, = I wanted to collect some data on pain points based on your input, and = use this information to create a White Paper for further discussion.=20 If you want to participate, please send input to = lars.kurth@xenproject.org (please use = the title =E2=80=9Cre: Xen Security Process Consultation=E2=80=9D). You = may use a public list, but if you do, CC me. If you reply to this mail, = note that replies will *not* be published on xen-announce@ Over the next 4-5 weeks, I will collate input into a White Paper and = Proposal for Security Process Update listing pain points and possible = solutions including trade-offs. I will distribute the White Paper for discussion on xen-devel@ asking = for public feedback. If it turns out there is a case for changes/improvements, condense the = output of this discussion into a concrete change proposal to be voted on = in the usual way (which may require several iterations) What information am I looking for? What is working well for you and why?=20 What is not working well and why?=20 What could we improve and why? If you raise an issue, please also state how painful the issue is for = you now (on a scale of "a little", "moderately", "painful") =20 Examples of feedback I have received in the last year are items such as A discussion on batching security issues: see = http://markmail.org/message/kxfg5mxw2jvqnmj5 = There were a few instances when we released between 8-10 XSAs in one go, = causing problems with resource planning for pre-disclosure list members = as well as users not on the list For every Xen release we find it hard to co-ordinate XSAs and the = release, leading to either release slippages or two batches of XSAs just = before the release =20 This is not a conclusive list: it is just intended to get you thinking. = There is also no restriction on who can provide information: feedback = from *all* users on or off the pre-disclosure list is welcome. =20 Recent changes we have made informally Note that we have made some changes within the framework of the security = process. 1) Batching security issues: we have attempted to batch security issues = for more than 6 months now. We always pre-disclose 2 weeks before public = release in a batch, as required by our security process.=20 XSAs Batch Size Public Release Comment 252,255,256 3 2018-02-27 4th Tue of Feb 253 1 2018-01-04 Released as a Xen 4.10 only update 254 1 2018-01-03 Meltdown/Spectre: publicly disclosed by discoverers 248-251 3 2017-12-12 Batch released because it blocked the 4.10 release 246-247 2 2017-11-28 4th Tue of Nov 236 1 2017-10-24 Could not identify reason for release date Possibly date set by discoverer 237-244 8 2017-10-12 2nd Thu of Oct 245 1 2017-09-28 ARM only issue Date set by discoverer=20 231-234 3 2017-09-12 2nd Thu of Sept 235 1 2017-08-23 Was not embargoed: The issue was discussed publicly before being = recognized as a security issue 226-230 5 2017-08-15 3rd Tue of Aug 216-225 10 2017-06-20 3rd Tue of Jun Date impacted by 4.9 release No real attempt to batch security issues prior to this. 2) SUPPORT.MD: In addition, we took steps to become a CVE Numbering = Authority. This has resulted in the creation of SUPPORT.MD. Some of the = tooling related to SUPPORT.MD, such as generation of web pages similar = to https://wiki.xenproject.org/wiki/Xen_Project_Release_Features = , is = still missing. Looking forward you your feedback =20 Best Regards Lars= --Apple-Mail=_92D1E150-9990-49CD-A4CA-7FBF351F7A86 Content-Transfer-Encoding: quoted-printable Content-Type: text/html; charset=utf-8
Dear Community Member,
 
the last time we updated the Xen = Project Security Process, was 3 years = ago (in March 2015): I think it is time to take stock, see whether what = we have works and if there is scope for improvement. In the last 3 years = I have had only positive feedback about the process, however more = recently I had the odd conversation with community members on how we = might improve things.
 
The Consultation Process
Rather than start a discussion with a concrete proposal or = with nothing, I wanted to collect some = data on pain points based on your input, and use this information to = create a White Paper for further discussion. 

If you want to participate, = please send input to lars.kurth@xenproject.org (please use the title =E2=80=9Cr= e: Xen Security Process Consultation=E2=80=9D). You may use a public = list, but if you do, CC me. If you reply to this mail, note that replies = will *not* be published on xen-announce@
  1. Over the next 4-5 = weeks, I will collate input into a White Paper and = Proposal for Security Process Update listing pain points and = possible solutions including trade-offs.
  2. I will distribute = the White Paper for discussion on xen-devel@ asking for public = feedback.
  3. If = it turns out there is a case for changes/improvements, condense the = output of this discussion into a concrete change proposal to be voted on = in the usual way (which may require several iterations)

What information am I looking = for?
What is working well for you and = why? 
What is not working well and = why? 
What could we improve and why?

If you raise an issue, = please also state how painful the issue is for you now (on a scale of "a = little", "moderately", "painful")
 
Examples of feedback I have = received in the last year are items such as
  • A discussion on batching security = issues: see http://markmail.org/message/kxfg5mxw2jvqnmj5
  • There were a few instances when we released between 8-10 XSAs = in one go, causing problems with resource planning for pre-disclosure = list members as well as users not on the list
  • For = every Xen release we find it hard to co-ordinate XSAs and the release, = leading to either release slippages or two batches of XSAs just before = the release
 
This is not a conclusive list: it is just intended to get = you thinking. There is also no restriction on who can provide = information: feedback from *all* users on or off the = pre-disclosure list is welcome.
 
Recent changes we have made = informally
Note that we have made some changes = within the framework of the security process.

1) Batching security = issues: we have attempted to batch = security issues for more than 6 months now. We always pre-disclose 2 = weeks before public release in a batch, as required by our security = process. 

254
5
10
XSAs
Batch = Size
Public = Release
Comment
252,255,256
3
2018-02-27
4th Tue of = Feb
253
1
2018-01-04
Released as a Xen 4.10 = only update
1
2018-01-03
Meltdown/Spectre: = publicly disclosed by discoverers
248-251
3
2017-12-12
Batch released because = it blocked the 4.10 release
246-247
2
2017-11-28
4th Tue of = Nov
236
1
2017-10-24
Could not identify = reason for release date
Possibly date set by = discoverer
237-244
8
2017-10-12
2nd Thu of = Oct
245
1
2017-09-28
ARM only issue
Date set by discoverer 
231-234
3
2017-09-12
2nd Thu of = Sept
235
1
2017-08-23
Was not embargoed: The = issue was discussed publicly before being recognized as a security = issue
226-230
2017-08-15
3rd Tue of = Aug
216-225
2017-06-20
3rd Tue of Jun
Date impacted by 4.9 release
No real attempt to batch security issues prior = to this.


2) SUPPORT.MD: In = addition, we took steps to become a CVE Numbering Authority. This has = resulted in the creation of SUPPORT.MD. Some of the tooling related to = SUPPORT.MD, such as generation of web pages similar to https://wiki.xenproject.org/wiki/Xen_Project_Release_Features, = is still missing.

Looking forward you your = feedback
 
Best Regards
Lars
= --Apple-Mail=_92D1E150-9990-49CD-A4CA-7FBF351F7A86-- --===============5050535990392932860== Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: base64 Content-Disposition: inline X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX18KWGVuLWFubm91 bmNlIG1haWxpbmcgbGlzdApYZW4tYW5ub3VuY2VAbGlzdHMueGVucHJvamVjdC5vcmcKaHR0cHM6 Ly9saXN0cy54ZW5wcm9qZWN0Lm9yZy9tYWlsbWFuL2xpc3RpbmZvL3hlbi1hbm5vdW5jZQ== --===============5050535990392932860==-- From xen-announce-bounces@lists.xenproject.org Fri Feb 23 19:18:29 2018 Return-path: Envelope-to: archives@lists.xen.org Delivery-date: Fri, 23 Feb 2018 19:18:29 +0000 Received: from localhost ([127.0.0.1] helo=lists.xenproject.org) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1epIqP-0006qf-Lo; Fri, 23 Feb 2018 19:17:21 +0000 Received: from all-amaz-eas1.inumbo.com ([34.197.232.57]) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1epIqO-0006qO-Kj for xen-announce@lists.xen.org; Fri, 23 Feb 2018 19:17:20 +0000 X-Inumbo-ID: 646a109d-18ce-11e8-b9b1-635ca7ef6cff Received: from mail.xenproject.org (unknown [104.130.215.37]) by us1-amaz-eas1.inumbo.com (Halon) with ESMTPS id 646a109d-18ce-11e8-b9b1-635ca7ef6cff; Fri, 23 Feb 2018 19:18:56 +0000 (UTC) Received: from xenbits.xenproject.org ([104.239.192.120]) by mail.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1epIq7-0005MT-3r; Fri, 23 Feb 2018 19:17:03 +0000 Received: from iwj by xenbits.xenproject.org with local (Exim 4.84_2) (envelope-from ) id 1epIq7-0001yc-0n; Fri, 23 Feb 2018 19:17:03 +0000 Content-Type: multipart/mixed; boundary="=separator"; charset="utf-8" Content-Transfer-Encoding: binary MIME-Version: 1.0 X-Mailer: MIME-tools 5.505 (Entity 5.505) To: xen-announce@lists.xen.org, xen-devel@lists.xen.org, xen-users@lists.xen.org, oss-security@lists.openwall.com From: Xen.org security team Message-Id: Date: Fri, 23 Feb 2018 19:17:03 +0000 Cc: "Xen.org security team" Subject: [Xen-announce] Xen Security Advisory 254 (CVE-2017-5753, CVE-2017-5715, CVE-2017-5754) - Information leak via side effects of speculative execution X-BeenThere: xen-announce@lists.xenproject.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: "Xen announcements \(low volume\)" List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Errors-To: xen-announce-bounces@lists.xenproject.org Sender: "Xen-announce" --=separator Content-Type: text/plain; charset="utf-8" Content-Disposition: inline Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Xen Security Advisory CVE-2017-5753,CVE-2017-5715,CVE-2017-5754 / XSA-254 version 11 Information leak via side effects of speculative execution UPDATES IN VERSION 11 ===================== Information provided about migitation for Spectre variant 2. Mention whether CPU hardware virtualisation extensions are required in the SP3 mitigations summary table. An additional patch "x86: fix GET_STACK_END" is required to fix a possible build failure in the PTI patches. README.pti updated accordingly. ISSUE DESCRIPTION ================= Processors give the illusion of a sequence of instructions executed one-by-one. However, in order to most efficiently use cpu resources, modern superscalar processors actually begin executing many instructions in parallel. In cases where instructions depend on the result of previous instructions or checks which have not yet completed, execution happens based on guesses about what the outcome will be. If the guess is correct, execution has been sped up. If the guess is incorrect, partially-executed instructions are cancelled and architectural state changes (to registers, memory, and so on) reverted; but the whole process is no slower than if no guess had been made at all. This is sometimes called "speculative execution". Unfortunately, although architectural state is rolled back, there are other side effects, such as changes to TLB or cache state, which are not rolled back. These side effects can subsequently be detected by an attacker to determine information about what happened during the speculative execution phase. If an attacker can cause speculative execution to access sensitive memory areas, they may be able to infer what that sensitive memory contained. Furthermore, these guesses can often be 'poisoned', such that attacker can cause logic to reliably 'guess' the way the attacker chooses. This advisory discusses three ways to cause speculative execution to access sensitive memory areas (named here according to the discoverer's naming scheme): "Bounds-check bypass" (aka SP1, "Variant 1", Spectre CVE-2017-5753): Poison the branch predictor, such that victim code is speculatively executed past boundary and security checks. This would allow an attacker to, for instance, cause speculative code in the normal hypercall / emulation path to execute with wild array indexes. "Branch Target Injection" (aka SP2, "Variant 2", Spectre CVE-2017-5715): Poison the branch predictor. Well-abstracted code often involves calling function pointers via indirect branches; reading these function pointers may involve a (slow) memory access, so the CPU attempts to guess where indirect branches will lead. Poisoning this enables an attacker to speculatively branch to any code that is executable by the victim (eg, anywhere in the hypervisor). "Rogue Data Load" (aka SP3, "Variant 3", Meltdown, CVE-2017-5754): On some processors, certain pagetable permission checks only happen when the instruction is retired; effectively meaning that speculative execution is not subject to pagetable permission checks. On such processors, an attacker can speculatively execute arbitrary code in userspace with, effectively, the highest privilege level. More information is available here: https://meltdownattack.com/ https://spectreattack.com/ https://googleprojectzero.blogspot.co.uk/2018/01/reading-privileged-memory-with-side.html Additional Xen-specific background: Xen hypervisors on most systems map all of physical RAM, so code speculatively executed in a hypervisor context can read all of system RAM. When running PV guests, the guest and the hypervisor share the address space; guest kernels run in a lower privilege level, and Xen runs in the highest privilege level. (x86 HVM and PVH guests, and ARM guests, run in a separate address space to the hypervisor.) However, only 64-bit PV guests can generate addresses large enough to point to hypervisor memory. IMPACT ====== Xen guests may be able to infer the contents of arbitrary host memory, including memory assigned to other guests. An attacker's choice of code to speculatively execute (and thus the ease of extracting useful information) goes up with the numbers. For SP1, an attacker is limited to windows of code after bound checks of user-supplied indexes. For SP2, the attacker will in many cases will be limited to executing arbitrary pre-existing code inside of Xen. For SP3 (and other cases for SP2), an attacker can write arbitrary code to speculatively execute. Additionally, in general, attacks within a guest (from guest user to guest kernel) will be the same as on real hardware. Consult your operating system provider for more information. NOTE ON TIMING ============== This vulnerability was originally scheduled to be made public on 9 January. It was accelerated at the request of the discloser due to one of the issues being made public. VULNERABLE SYSTEMS ================== Systems running all versions of Xen are affected. For SP1 and SP2, both Intel and AMD are vulnerable. Vulnerability of ARM processors to SP1 and SP2 varies by model and manufacturer. ARM has information on affected models on the following website: https://developer.arm.com/support/security-update For SP3, only Intel processors are vulnerable. (The hypervisor cannot be attacked using SP3 on any ARM processors, even those that are listed as affected by SP3.) Furthermore, only 64-bit PV guests can exploit SP3 against Xen. PVH, HVM, and 32-bit PV guests cannot exploit SP3. MITIGATION ========== There is no mitigation for SP1. SP2 can be mitigated by a combination of new microcode and compiler and hypervisor changes. See Resolution below. SP3 can be mitigated by page-table isolation ("PTI"). See Resolution below. SP3 can, alternatively, be mitigated by running guests in HVM or PVH mode. (Within-guest attacks are still possible unless the guest OS has also been updated with an SP3 mitigation series such as KPTI/Kaiser.) For guests with legacy PV kernels which cannot be run in HVM or PVH mode directly, we have developed two "shim" hypervisors that allow PV guests to run in HVM mode or PVH mode. This prevents attacks on the host, but it leaves the guest vulnerable to Meltdown attacks by its own unprivileged processes, even if the guest OS has KPTI or similar Meltdown mitigation. The HVM shim (codenamed "Vixen") is available now, as is the PVH shim (codenamed "Comet") for Xen 4.10 and Xen 4.8. Please read README.which-shim to determine which shim is suitable for you. RESOLUTION ========== These are hardware bugs, so technically speaking they cannot be properly fixed in software. However, it is possible in many cases to provide patches to software to work around the problems. There is no available resolution for SP1. A solution may be available in the future. SP2 can be mitigated on x86 by combinations of new CPU microcode and new hypervisor code. The required hypervisor changes for Xen 4.6, 4.7, 4.8, 4.9 and 4.10 are detailed in the attached README.bti. For AMD hardware, and for Intel hardware pre-dating the Skylake microarchitecture, the hypervisor changes alone are sufficient to mitigate the issue for Xen itself. No microcode updates are required. For the Intel Skylake microarchitecture the hypervisor changes are insufficient to protect Xen without appropriate new microcode. Microcode updates are required in any event to guard against one guest attacking another. Consult Intel, your hardware vendor, or your dom0 OS distributor for the microcode updates. Additionally, compiler support for `indirect thunk' is required. Again, without appropriate compiler support, the hypervisor patches are insufficient. Consult your compiler distributor. SP2 is mitigated on ARM 32-bit by a set of changes to the hypervisor alone. SP2 can be mitigated on ARM 64-bit (aarch64) by a combination of new PSCI firmware and new hypervisor code. The required hypervisor changes for Xen 4.6, 4.7, 4.8, 4.9 and 4.10 are detailed in the attached README.bti. For ARM 32-bit these changes are complete. For ARM 64-bit the hypervisor changes are still in development and are expected to be available soon. SP3 can be mitigated by page-table isolation ("PTI"). We have a "stage 1" implementation. It allows 64-bit PV guests to be run natively while restricting what can be accessed via SP3 to the Xen stack of the current pcpu (which may contain remnants of information from other guests, but should be much more difficult to attack reliably). Unfortunately these "stage 1" patches incur a non-negligible performance overhead; about equivalent to the "PV shim" approaches above. Moving to plain HVM or PVH guests is recommended where possible. For more information on that, see below. Patches for the "stage-1" PTI implementation are available in the Xen staging-NN branches for each Xen revision. See README.pti for specific revisons. SP3 MITIGATION OPTIONS SUMMARY TABLE FOR 64-bit X86 PV GUESTS ============================================================= Everything in this section applies to 64-bit PV x86 guests only. Xen PTI Use PVH Use HVM PVH shim HVM shim "stage 1" "Comet" "Vixen" How to use README.pti type="pvh" type="hvm" README.comet README.vixen Guest All Linux 4.11+ Most[4] All All support ?unikernels?[3] Xen 4.6+ 4.10+ All 4.10, 4.8 All versions 4.8-comet[1] Testing Limited 4.10: Good Very good Moderate Very good status Very new 4.8: Moderate Performance Fair Excellent Varies[4] Fair Fair Hypervisor Needed No need No need No need No need changes SP3 guest Substantially Protected Protected Protected Protected to host protected SP3 within Protected Guest Guest Vulnerable Vulnerable guest patches patches [5] [5] SP3 from Protected n/a; vuln. n/a; vuln. n/a; vuln. n/a; vuln. dom0 user [9] [9] [9] [9] Device model No dm No dm Qemu No dm Qemu Config change None type="pvh" type="hvm"/ type="pvh" Tool to rewrite builder="hvm" pvshim=1 Needs "sidecar" Within-guest None Should be Disks+net None None changes? none may change CPU hw virt Not needed Needed Needed Needed Needed feature (VT-x) Extra RAM use V. slight None ~9Mb/guest >=~20Mb/guest >=~29Mb/guest Migration OK OK OK[4] OK Unsupported[2] Guest mem adj OK OK OK Broken[2] Unsupported[2] vcpu hotplug OK OK OK OK Unsupported[2] Solution Indefinite Indefinite Indefinite Indefinite Limited lifetime [7] [6] [1] PVH is supported in Xen 4.8 only with the 4.8 "Comet" security release branch. [2] Some features in PVH/HVM shim guests are not inherently broken, but buggy in the currently available versions. These may be fixed in future proper releases of the same feature. [3] Most unikernels have Xen support based on a version of mini-os. mini-os master can boot PVH. But this is very recent. [4] Some guests which have support for Xen PV fail to boot properly in Xen HVM. Some such guests can made to boot HVM by disabling the PV-on-HVM support entirely in the guest or in Xen; in that case the guest may work but IO performance will be poor. Some PV-supporting guests can boot as HVM, with PV drivers, but fail when migrated. [5] The Comet and Vixen shim hypervisors direct-map all of their "physical" memory, and that direct-map can be accessed using Meltdown by unprivileged processes in the guest. So the guest is vulnerable to within-guest Meltdown attacks and the guest operating system cannot protect itself. [6] "Vixen" HVM shim is not expected to be incorporated in future Xen stable releases. At some point, support for it will be withdrawn. However, HVM shim functionality may be available in a future Xen 4.10 stable point release and would then probably be useable with the existing conversion script provided in this advisory. [7] The lifetime of the special Comet branches is limited, but we will not desupport them until some time after the same functionality is in appropriate Xen stable point releases. [8] The 64-bit x86 PV guest ABI precludes a guest from mapping its kernel and userspace in the same address space. So these guests are inherently immune to within-guest Meltdown attacks, without within-guest patching. (This applies to 64-bit x86 PV guests only.) [9] It is not possible to run dom0 as HVM. dom0 PVH is a planned enhancement which is not yet available even in preview form. ATTACHMENTS =========== $ sha256sum xsa254*/* c5f2d8f87169edc9be890416a4d261cfc11d9f8d898d83a8922360b210676015 xsa254/README.bti 1cba14ff83844d001d6c8a74afc3f764f49182cc7a06bb4463548450ac96cc2f xsa254/README.comet 208453583ee3c7bb427aa2f70fc5fdc687ba084341129624e511eb6c064fb801 xsa254/README.pti 3ef42381879befc84aa78b67d3a9b7b0cd862a2ffa445810466e90be6c6a5e86 xsa254/README.vixen 7e816160c1c1d1cd93ec3c3dd9753c8f3957fefe86b7aa967e9e77833828f849 xsa254/README.which-shim 1d2098ad3890a5be49444560406f8f271c716e9f80e7dfe11ff5c818277f33f8 xsa254/pvshim-converter.pl $ NOTE ON LACK OF EMBARGO ======================= The timetable and process were set by the discloser. After the intensive initial response period for these vulnerabilities is over, we will prepare and publish a full timeline, as we have done in a handful of other cases of significant public interest where we saw opportunities for process improvement. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQEcBAEBCAAGBQJakGiYAAoJEIP+FMlX6CvZTo0H/jmtssoZhVRYDbi5UP07eWla ZefMHnwagNUeMEf4rZgWoGSuftiRPMXH73V4r02SDfIauC/7qTPJTxg3ozBLP6RK d3bQtdb+Hr/i5mtYnD/ubjmg+VgB04Q4CF5Ikgc8Yx8qiUuSxo5HTHQV72a175eZ ze6xRBvUSt4hw25X7kNGYpkpN1Hoyydv2/pHPdkuAfP90ZTlxPq+UWDwa37Z55ON E/hVjBcvsnpvmgfztablVz5kFA+6O1aXzFuouNCQz0x62necQCrRgz9T173dlB1+ uQlvNN8gXV513ePaYjVP3B7c7P3QjMszX4WlK498KZTwo4ck+h0XtYdLtPAAZrg= =2SNf -----END PGP SIGNATURE----- --=separator Content-Type: application/octet-stream; name="xsa254/README.bti" Content-Disposition: attachment; filename="xsa254/README.bti" Content-Transfer-Encoding: base64 ICAgICAgICAgICAgICAgICAgICAgIEJyYW5jaCBUYXJnZXQgSW5qZWN0aW9u IChCVEkpCiAgICAgICAgICAgICAgICAgICAgICA9PT09PT09PT09PT09PT09 PT09PT09PT09PT09PT09CgpTdW1tYXJ5Ci0tLS0tLS0KClRoaXMgUkVBRE1F IGdpdmVzIHJlZmVyZW5jZXMgZm9yIHRoZSBtaXRpZ2F0aW9uIGZvciBTcGVj dHJlIHYyLgoKCkRldGVybWluaW5nIHdoZXRoZXIgdGhlIG1pZ2l0YXRpb24g aXMgZW5hYmxlZCBvbiB4ODYKLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLQoKSW4gZ2VuZXJhbCwgY29tcGls ZXIgYW5kIENQVSBtaWNyb2NvZGUgdXBkYXRlcyBhcmUgYWxzbyByZXF1aXJl ZC4KCldoZW4gdGhlIG1pdGlnYXRpb24gaXMgZnVsbHkgYWN0aXZlLCBvbiBB TUQgaGFyZHdhcmUsClhlbiBwcmludHMgYXQgbGVhc3QgdGhlIGZvbGxvd2lu ZyBtZXNzYWdlczoKCiAgU3BlY3VsYXRpdmUgbWl0aWdhdGlvbiBmYWNpbGl0 aWVzOgogICAgQ29tcGlsZWQtaW4gc3VwcG9ydDogSU5ESVJFQ1RfVEhVTksK ICBCVEkgbWl0aWdhdGlvbnM6IFRodW5rIExGRU5DRQoKT24gcHJlLVNreWxh a2UgSW50ZWwgaGFyZHdhcmU6CgogIFNwZWN1bGF0aXZlIG1pdGlnYXRpb24g ZmFjaWxpdGllczoKICAgIENvbXBpbGVkLWluIHN1cHBvcnQ6IElORElSRUNU X1RIVU5LCiAgQlRJIG1pdGlnYXRpb25zOiBUaHVuayBSRVRQT0xJTkUKCk9u IFNreWxha2UgKG9yIGxhdGVyKSBJbnRlbCBoYXJkd2FyZToKCiAgU3BlY3Vs YXRpdmUgbWl0aWdhdGlvbiBmYWNpbGl0aWVzOgogICAgSGFyZHdhcmUgZmVh dHVyZXM6IElCUlMvSUJQQiBTVElCUAogICAgQ29tcGlsZWQtaW4gc3VwcG9y dDogSU5ESVJFQ1RfVEhVTksKICBCVEkgbWl0aWdhdGlvbnM6IFRodW5rIEpN UCwgT3RoZXJzOiBJQlJTKyBJQlBCCgpOb3RlIGhvd2V2ZXIgdGhhdCBvbiBy ZWxlYXNlIGJ1aWxkcyBub25lIG9mIHRoZXNlIG1lc3NhZ2VzIGFyZSB2aXNp YmxlCmJ5IGRlZmF1bHQ7ICJsb2dsdmw9YWxsIiBuZWVkcyB0byBiZSBwYXNz ZWQgdG8gc2VlIGFsbCBvZiB0aGVtLgpIb3dldmVyIHByb2R1Y3Rpb24gc3lz dGVtcyBzaG91bGQgbm90IGJlIHJ1biB3aXRoICJsb2dsdmw9YWxsIiBhcyB0 aGF0CmV4cG9zZXMgYSBsb2cgc3BldyAoZGVuaWFsIG9mIHNlcnZpY2UpIHZ1 bG5lcmFiaWxpdHkgdG8gZ3Vlc3RzLgoKImxvZ2x2bD1pbmZvIiAod2hpY2gg aXMgcGVyaGFwcyBiZXR0ZXIpIGlzIHN1ZmZpY2llbnQgdG8gc2VlCiAgQlRJ IG1pdGlnYXRpb25zOiAuLi4KbGlzdGluZyB0aGUgbWl0aWdhdGlvbnMgWGVu IGFjdHVhbGx5IHVzZXMuCgpJZiB5b3UgYXJlIG5vdCBzdXJlIHdoZXRoZXIg eW91ciBJbnRlbCBDUFUgaXMgcHJlLSBvciBwb3N0LVNreWxha2UsCnBsZWFz ZSBsb29rIHlvdXIgY3B1IG1vZGVsIG51bWJlciAocHJpbnRlZCBpbiAvcHJv Yy9jcHVpbmZvIG9uIExpbnV4KQp1cCBvbiBXaWtpcGVkaWEuCgoKUHJlY2lz ZSBnaXQgY29tbWl0cwotLS0tLS0tLS0tLS0tLS0tLS0tCgo0LjEwOgoKMzE4 MTQ3MmE1Y2E0NWFlNWU3N2FiYmNmMDI0ZDAyNWQ5YmE3OWNlZCB4ODYvaWRs ZTogQ2xlYXIgU1BFQ19DVFJMIHdoaWxlIGlkbGUKNTY0NDUxNDA1MGI5YWU3 ZDc1Y2RkOTVmZDA3OTEyYjk5MzBjYWUwOCB4ODYvY3B1aWQ6IE9mZmVyIElu ZGlyZWN0IEJyYW5jaCBDb250cm9scyB0byBndWVzdHMKZGIxMjc0M2YyZDI0 ZmM1OWQ1YjljZWZjMTVlYjNkNTZjZGFmNTQ5ZCB4ODYvY3R4dDogSXNzdWUg YSBzcGVjdWxhdGlvbiBiYXJyaWVyIGJldHdlZW4gdmNwdSBjb250ZXh0cwpi YzBlNTk5YTgzZDE3ZjA2ZWM3ZGExNzA4NzIxY2VkZTJkZjgyNzRlIHg4Ni9i b290OiBDYWxjdWxhdGUgdGhlIG1vc3QgYXBwcm9wcmlhdGUgQlRJIG1pdGln YXRpb24gdG8gdXNlCmZjODE5NDZjZWFhZTJjMjdmY2UyYmEwZjNmMjlmYTlk ZjM5NzU5NTEgeDg2L2VudHJ5OiBBdm9pZCB1c2luZyBhbHRlcm5hdGl2ZXMg aW4gTk1JLyNNQyBwYXRocwpjZTdkN2MwMTY4NTU2OWQ5ZmYxZjk3MWMwZjA2 MjI1NzNiZmU4YmYzIHg4Ni9lbnRyeTogT3JnYW5pc2UgdGhlIGNsb2JiZXJp bmcgb2YgdGhlIFJTQi9SQVMgb24gZW50cnkgdG8gWGVuCmE2OTVmOGRjZTdj M2YxMzdmNjFjOGM4YTg4MGIyNGIxYjRjZjMxOWMgeDg2L2VudHJ5OiBPcmdh bmlzZSB0aGUgdXNlIG9mIE1TUl9TUEVDX0NUUkwgYXQgZWFjaCBlbnRyeS9l eGl0IHBvaW50CjkyZWZiZTg2NTgxM2Q4NDg3M2EwZTcyNjJiMWZhNDE0ODQy MzA2YjYgeDg2L2h2bTogUGVybWl0IGd1ZXN0cyBkaXJlY3QgYWNjZXNzIHRv IE1TUl97U1BFQ19DVFJMLFBSRURfQ01EfQo4YmFiYTg3NGQ2Yzc2YzFkNmRk NjliMWQ5YWEwNmFiZGMzNDRhMWY1IHg4Ni9taWdyYXRlOiBNb3ZlIE1TUl9T UEVDX0NUUkwgb24gbWlncmF0ZQo3OTg5MWVmOTQ0MmFjYjk5OGYzNTRiOTY5 ZTczMDJkODEyNDVhYjBiIHg4Ni9tc3I6IEVtdWxhdGlvbiBvZiBNU1Jfe1NQ RUNfQ1RSTCxQUkVEX0NNRH0gZm9yIGd1ZXN0cwo2NDFjMTFlZjI5M2M3ZjNh NThjMTg1NjEzODgzNWMwNmUwOWQ2YjA3IHg4Ni9jcHVpZDogSGFuZGxpbmcg b2YgSUJSUy9JQlBCLCBTVElCUCBhbmQgSUJSUyBmb3IgZ3Vlc3RzCjY1ZWU2 ZTA0M2E2ZGM2MWJlY2U3NWE5ZGZlMjRjN2VlNzBjNjU5N2MgeDg2L2NtZGxp bmU6IEludHJvZHVjZSBhIGNvbW1hbmQgbGluZSBvcHRpb24gdG8gZGlzYWJs ZSBJQlJTL0lCUEIsIFNUSUJQIGFuZCBJQlBCCjEyOTg4MGRkOGYyOGJjNzI4 ZjkzZTNhYWQ0Njc1NjIyYzFlZTJhYWQgeDg2L2ZlYXR1cmU6IERlZmluaXRp b25zIGZvciBJbmRpcmVjdCBCcmFuY2ggQ29udHJvbHMKYzUxMzI0NGQ4ZTVi OGFhMDMyNmM2ZjJkNWZiMjM4MjgxMWM5N2Q2ZCB4ODY6IEludHJvZHVjZSBh bHRlcm5hdGl2ZSBpbmRpcmVjdCB0aHVua3MKMGUxMmMyYzg4MWFhMTIwMTZi YjY1OWFiMWViNGM3Mjg5MjQ0YjNlNyB4ODYvYW1kOiBUcnkgdG8gc2V0IGxm ZW5jZSBhcyBiZWluZyBEaXNwYXRjaCBTZXJpYWxpc2luZwo2YWFmMzUzZjJl Y2JlOGFlNTdlMTY4MTJhNmQ3NGE0ZjA4OWRlZjNhIHg4Ni9ib290OiBSZXBv cnQgZGV0YWlscyBvZiBzcGVjdWxhdGl2ZSBtaXRpZ2F0aW9ucwozMmJhYmZj MTlhZDNhMzEyM2Y4ZWQ0NDY2ZGYzYzc5NDkyYTIyMTJiIHg4NjogU3VwcG9y dCBpbmRpcmVjdCB0aHVua3MgZnJvbSBhc3NlbWJseSBjb2RlCjQ3YmJjYjJk ZDEyOTFkNjEwNjJmZTU4ZGE4MDcwMTA2MzFmZTFiM2EgeDg2OiBTdXBwb3J0 IGNvbXBpbGluZyB3aXRoIGluZGlyZWN0IGJyYW5jaCB0aHVua3MKODc0M2Zj MmVmN2QxMDcxMDRjMTdiNzczZWFkZWUxNWZlZmE2NGU1MyBjb21tb24vd2Fp dDogQ2xhcmlmaWNhdGlvbnMgdG8gd2FpdCBpbmZyYXN0cnVjdHVyZQoxODMw YjIwYjZiODNiZTM4NzM4Nzg0ZWExNjJkNjJmY2Y4NWYzMTc4IHg4Ni9lbnRy eTogRXJhc2UgZ3Vlc3QgR1BSIHN0YXRlIG9uIGVudHJ5IHRvIFhlbgphYjk1 Y2IwZDk0OGZkYzlmY2RhMjE1ZmVjMDUyNmFjOTAyMzQwYjE0IHg4Ni9odm06 IFVzZSBTQVZFX0FMTCB0byBjb25zdHJ1Y3QgdGhlIGNwdV91c2VyX3JlZ3Mg ZnJhbWUgYWZ0ZXIgVk1FeGl0CmQwMmVmM2QyNzQ4NWUxNDI5YWM0ODBjY2E3 OGFiMzYzNjM4N2RmMjMgeDg2L2VudHJ5OiBSZWFycmFuZ2UgUkVTVE9SRV9B TEwgdG8gcmVzdG9yZSByZWdpc3RlciBpbiBzdGFjayBvcmRlcgplMzJmODE0 MTYwYzk1MDk0ZGE4M2ZiYzgxM2I0NWVjYTQyZDUzOTdhIHg4NjogSW50cm9k dWNlIGEgY29tbW9uIGNwdWlkX3BvbGljeV91cGRhdGVkKCkKYzUzNGFiNGU5 NDBhZTNmYmRkZjBiNDg0MGMzNTQ5YzAzNjU0OTIxZiB4ODYvaHZtOiBSZW5h bWUgdXBkYXRlX2d1ZXN0X3ZlbmRvcigpIGNhbGxiYWNrIHRvIGNwdWlkX3Bv bGljeV9jaGFuZ2VkKCkKYmUzMTM4YjZmNjU5NTUxOTZkNjdjMWQ1NGFlYTNk NmEzYmYzMzkzNCB4ODYvYWx0OiBJbnRyb2R1Y2UgQUxURVJOQVRJVkV7LF8y fSBtYWNyb3MKNzkwMTJlYWQ5MzdmMDUzM2VjNTkxYzRlY2U5MjVlNGQyMzU2 ODg3NCB4ODYvYWx0OiBCcmVhayBvdXQgYWx0ZXJuYXRpdmUtYXNtIGludG8g YSBzZXBhcmF0ZSBoZWFkZXIgZmlsZQpiYmQwOTNjNTAzM2Q4N2MwMDQzY2Y5 MGFhNzgyZWZkYzE0MWRjMGU3IHhlbi9hcm0zMjogZW50cnk6IERvY3VtZW50 IHRoZSBwdXJwb3NlIG9mIHIxMSBpbiB0aGUgdHJhcHMgaGFuZGxlcgphNjlh OGI1ZmRjOWNjOTBhYTRmYWY1MjJjMzU1YWJkODQ5ZjExMDAxIHhlbi9hcm0z MjogSW52YWxpZGF0ZSBpY2FjaGUgb24gZ3Vlc3QgZXhpc3QgZm9yIENvcnRl eC1BMTUKZjE2N2ViZjZiMzNjNGRiZGIwMTM1YzM1MGMwZDkyNzk4MDE5MWFj NSB4ZW4vYXJtMzI6IEludmFsaWRhdGUgQlRCIG9uIGd1ZXN0IGV4aXQgZm9y IENvcnRleCBBMTcgYW5kIDEyCmM0YzAxODc4MzliYWNhZGM4MmE1NzI5Y2Vh NzM5ZThjNDg1ZjZjNjAgeGVuL2FybTMyOiBBZGQgc2tlbGV0b24gdG8gaGFy ZGVuIGJyYW5jaCBwcmVkaWN0b3IgYWxpYXNpbmcgYXR0YWNrcwoxOWFkOGE3 Mjg3Mjk4ZjcwMWI1NTdlNTVlNGJlNjg5YTcwMjE5NGMwIHhlbi9hcm0zMjog ZW50cnk6IEFkZCBtaXNzaW5nIHRyYXBfcmVzZXQgZW50cnkKM2NhZjMyYzQ3 MGYyZjdlYjM0NTJjOGE2MWQ2MjI0ZDEwZTU2ZjlhMyB4ZW4vYXJtMzI6IEFk ZCBtaXNzaW5nIE1JRFIgdmFsdWVzIGZvciBDb3J0ZXgtQTE3IGFuZCBBMTIK ZGY3YmU5NGYyNjc1N2E3Nzc0N2JmNGZiZmI4NGJiZTJhM2RhM2I0ZiB4ZW4v YXJtMzI6IGVudHJ5OiBDb25zb2xpZGF0ZSBERUZJTkVfVFJBUF9FTlRSWV8q IG1hY3Jvcwo3MjhmYWRiNTg2YTJhMTRhMjQ0ZGFiZDcwNDYzYmNjMTY1NGVj Yzg1IHhlbi9hcm06IGNwdWVycmF0YTogUmVtb3ZlIHBlcmNwdS5oIGluY2x1 ZGUKOTI4MTEyOTAwZTViNGE5MmNjZWJiMmVlYTExNjY1ZmQ3NmFhMGYwZCB4 ZW4vYXJtNjQ6IEltcGxlbWVudCBicmFuY2ggcHJlZGljdG9yIGhhcmRlbmlu ZyBmb3IgYWZmZWN0ZWQgQ29ydGV4LUEgQ1BVcwpjYWU2ZTE1NzJmMzlhMTkw NmJlMGZjM2JkYWY0OWZlNTE0YzZhOWMwIHhlbi9hcm02NDogQWRkIHNrZWxl dG9uIHRvIGhhcmRlbiB0aGUgYnJhbmNoIHByZWRpY3RvciBhbGlhc2luZyBh dHRhY2tzCmQxZjQyODNhMWQ4NDA1YTQ4MGI0MTIxZTFlZmNmYWVjOGJiZGJm ZmEgeGVuL2FybTogY3B1ZXJyYXRhOiBBZGQgTUlEUl9BTExfVkVSU0lPTlMK MGY3YTRmYWFmYjJkNzk5MjBjYzYzNDU3Y2ZjYTNlMDM5OTBhZjRjYyB4ZW4v YXJtNjQ6IEFkZCBtaXNzaW5nIE1JRFIgdmFsdWVzIGZvciBDb3J0ZXgtQTcy LCBBNzMgYW5kIEE3NQpiODI5ZDQyODI5YzFmZjYyNmEwMjc1NmFjYWU0ZGQ0 ODJmYzIwYzlhIHhlbi9hcm06IEludHJvZHVjZSBlbmFibGUgY2FsbGJhY2sg dG8gZW5hYmxlIGEgY2FwYWJpbGl0aWVzIG9uIGVhY2ggb25saW5lIENQVQo5 MTBkZDAwNWRhMjBmMjdmMzQxNWI3ZWNjZGY0MzY4NzQ5ODk1MDZiIHg4Ni9l bnRyeTogUmVtb3ZlIHN1cHBvcnQgZm9yIHBhcnRpYWwgY3B1X3VzZXJfcmVn cyBmcmFtZXMKCjQuOToKCjg4ZmJhYmM0OTE1OGIwYjg1ODI0OGZhMTI0ZWY1 OTBjNWRmNzc4MmYgeDg2L1BWOiBjb3JyZWN0bHkgY291bnQgTVNScyB0byBt aWdyYXRlCjdkNWY4YjM2YmUxNDljMTY5MjE1YjNhZmUyMGUxY2ZiYTg0NTYx NzAgeDg2L2lkbGU6IENsZWFyIFNQRUNfQ1RSTCB3aGlsZSBpZGxlCjU5OTk5 YWVjZGFkNmZjNGY0NDY5NThiNjVlMjg2OWUwMjUzMGIxYTYgeDg2L2NwdWlk OiBPZmZlciBJbmRpcmVjdCBCcmFuY2ggQ29udHJvbHMgdG8gZ3Vlc3RzCjc5 ZDUxOTc5NTIzMTExMGYyMjJhMjQzNzllM2E0MzI0M2RiNmU1NWYgeDg2L2N0 eHQ6IElzc3VlIGEgc3BlY3VsYXRpb24gYmFycmllciBiZXR3ZWVuIHZjcHUg Y29udGV4dHMKNjhjNzZkNzFlMDQ1YTRlODUxMDcwNDI3MGZjNTcwZmI5ZDc5 N2RmZCB4ODYvYm9vdDogQ2FsY3VsYXRlIHRoZSBtb3N0IGFwcHJvcHJpYXRl IEJUSSBtaXRpZ2F0aW9uIHRvIHVzZQpiZGEzMjgzNjNmZmVmNThjMzQ3NTEw NWU5MzAxNmZjYWM0ODZjNWQ1IHg4Ni9lbnRyeTogQXZvaWQgdXNpbmcgYWx0 ZXJuYXRpdmVzIGluIE5NSS8jTUMgcGF0aHMKYTI0Yjc1NTNmOTI1MTdiM2Q4 MWNhZDFhZDQ3OThlZjc0YjQyMDU1YiB4ODYvZW50cnk6IE9yZ2FuaXNlIHRo ZSBjbG9iYmVyaW5nIG9mIHRoZSBSU0IvUkFTIG9uIGVudHJ5IHRvIFhlbgox M2EzMGJhNTRjYWExYjMzZjcwNzEzNzI3OWQyN2Q1Y2QzOWU4ODQ0IHg4Ni9l bnRyeTogT3JnYW5pc2UgdGhlIHVzZSBvZiBNU1JfU1BFQ19DVFJMIGF0IGVh Y2ggZW50cnkvZXhpdCBwb2ludAowMTc3YmY1ZDI1YzY2ZTcwMGUxNTAyNDkx M2EzYmM3MWM3Y2Y1MDdkIHg4Ni9odm06IFBlcm1pdCBndWVzdHMgZGlyZWN0 IGFjY2VzcyB0byBNU1Jfe1NQRUNfQ1RSTCxQUkVEX0NNRH0KMmZkZWU2MGVj MTJjMjM4MzU4YmZmMjA5Mzc4YzdkOTFlNDgxN2ZhNyB4ODYvbWlncmF0ZTog TW92ZSBNU1JfU1BFQ19DVFJMIG9uIG1pZ3JhdGUKZTU3ZDRkMDQzYjBkZjhm OTk1M2IzZDIxMWZlYWNjM2E1NDQwMTgxNyB4ODYvbXNyOiBFbXVsYXRpb24g b2YgTVNSX3tTUEVDX0NUUkwsUFJFRF9DTUR9IGZvciBndWVzdHMKMWRjZmQz OTUxOTk5ZTg3NWY5MTFmYjA1MTMzOTE3NzRhZjhkNWZiNCB4ODYvY3B1aWQ6 IEhhbmRsaW5nIG9mIElCUlMvSUJQQiwgU1RJQlAgYW5kIElCUlMgZm9yIGd1 ZXN0cwo3NjQ4MDQ5MzhjNjliNjllMWVlMzY5YTliNTQ4MGU4OWIxOGU0NTNh IHg4Ni9jbWRsaW5lOiBJbnRyb2R1Y2UgYSBjb21tYW5kIGxpbmUgb3B0aW9u IHRvIGRpc2FibGUgSUJSUy9JQlBCLCBTVElCUCBhbmQgSUJQQgo2MDI2MzNl YjczZWQyZDk5MThkYTJkYWU3YmViZjI3OWEwNTdlYTIwIHg4Ni9mZWF0dXJl OiBEZWZpbml0aW9ucyBmb3IgSW5kaXJlY3QgQnJhbmNoIENvbnRyb2xzCjZm ZWY0NmQ2ZmI5ZmE0NTc4Yjk3ZjhkNmEwY2IyNDBhYmVjNDg1ODcgeDg2OiBJ bnRyb2R1Y2UgYWx0ZXJuYXRpdmUgaW5kaXJlY3QgdGh1bmtzCjMwYjk5Mjk5 ZDZlYTBjNTAwOGY1ZTRmNDFlYjFmNDhlMWFlNTY2Y2UgeDg2L2FtZDogVHJ5 IHRvIHNldCBsZmVuY2UgYXMgYmVpbmcgRGlzcGF0Y2ggU2VyaWFsaXNpbmcK NDQ3ZGNlODkxZjA1YzA1ODVlYzY3YzQ3ZWQyMmViMmUwNzNjZTBhYiB4ODYv Ym9vdDogUmVwb3J0IGRldGFpbHMgb2Ygc3BlY3VsYXRpdmUgbWl0aWdhdGlv bnMKMjlkZjhhNWM0ZDYyNzFkNTIyMzFiYmVjYzUyYTdjM2ViMzhhYWMxMyB4 ODY6IFN1cHBvcnQgaW5kaXJlY3QgdGh1bmtzIGZyb20gYXNzZW1ibHkgY29k ZQo2NDAzYjUwNDhkNmYxYWM1YmM4NTI0OTM3Yjc5NzVmOTZiNTk3MDQ2IHg4 NjogU3VwcG9ydCBjb21waWxpbmcgd2l0aCBpbmRpcmVjdCBicmFuY2ggdGh1 bmtzCjYyOGI2YWYyNGY5NzI3ZjIwMWY2NzdhNGFkOTgxMDRjMDBjYzc2YzEg Y29tbW9uL3dhaXQ6IENsYXJpZmljYXRpb25zIHRvIHdhaXQgaW5mcmFzdHJ1 Y3R1cmUKMjM3YTU4YjFkMGMzNTIwMWUxZTllZDdjMzJkZWFjZjljZDgwNDIy OSB4ODYvZW50cnk6IEVyYXNlIGd1ZXN0IEdQUiBzdGF0ZSBvbiBlbnRyeSB0 byBYZW4KZjBmN2NlNWU4MmI1YmQ1MTFlZjNlZWQ4ZmU4YjhiMjdhMjNmNDM2 NSB4ODYvaHZtOiBVc2UgU0FWRV9BTEwgdG8gY29uc3RydWN0IHRoZSBjcHVf dXNlcl9yZWdzIGZyYW1lIGFmdGVyIFZNRXhpdApkNmU5NzI1MDhlZDZhZTg0 YzVhNDY1ODBhZjEyZWJkY2I4OGRlNzAyIHg4Ni9lbnRyeTogUmVhcnJhbmdl IFJFU1RPUkVfQUxMIHRvIHJlc3RvcmUgcmVnaXN0ZXIgaW4gc3RhY2sgb3Jk ZXIKOWFhYTIwODg4NjNkNjMxNjg5ODZmOWU2OWMwZjQ4MjgzOWEyNGQ4MCB4 ODY6IEludHJvZHVjZSBhIGNvbW1vbiBjcHVpZF9wb2xpY3lfdXBkYXRlZCgp CjQwZjlhZTlkMDUzMmEzYzdkYmIyYTFlNzQwYzJjZWJlMmFlYjFkNzIgeDg2 L2h2bTogUmVuYW1lIHVwZGF0ZV9ndWVzdF92ZW5kb3IoKSBjYWxsYmFjayB0 byBjcHVpZF9wb2xpY3lfY2hhbmdlZCgpCmFkZTk1NTRmODcyNjJiMGM2ZGNj MjFhY2ExOTRmMzEzOWEzMWZjZmEgeDg2L2FsdDogSW50cm9kdWNlIEFMVEVS TkFUSVZFeyxfMn0gbWFjcm9zCmEwZWQwMzQ5ZmYyMTJiNDFkYmZhYjM3MTQx Y2NjYjcxYmMxYzMwMzEgeDg2L2FsdDogQnJlYWsgb3V0IGFsdGVybmF0aXZl LWFzbSBpbnRvIGEgc2VwYXJhdGUgaGVhZGVyIGZpbGUKNGQwMWRiYzcxMzNl MGM1NWFlY2IzMWQ5NWNkNDYxNTgwMjQxYzU3NiB4ZW4vYXJtMzI6IGVudHJ5 OiBEb2N1bWVudCB0aGUgcHVycG9zZSBvZiByMTEgaW4gdGhlIHRyYXBzIGhh bmRsZXIKMjIzNzliNmFkY2UwMjQ5ZmZjMDVhM2E3ODcwZjIyOTMzNjgzMzdl MSB4ZW4vYXJtMzI6IEludmFsaWRhdGUgaWNhY2hlIG9uIGd1ZXN0IGV4aXN0 IGZvciBDb3J0ZXgtQTE1CjZlMTNhZDc3N2QzMzFjZDUzNDkyOGRmNzIwZGJm NTQyNDk3MjMxYmEgeGVuL2FybTMyOiBJbnZhbGlkYXRlIEJUQiBvbiBndWVz dCBleGl0IGZvciBDb3J0ZXggQTE3IGFuZCAxMgowZDMyMjM3ZDVmNGRiNDE5 Zjg0ZGE4OTE3NjFhYmI0ZjZiMWE4ZjUyIHhlbi9hcm0zMjogQWRkIHNrZWxl dG9uIHRvIGhhcmRlbiBicmFuY2ggcHJlZGljdG9yIGFsaWFzaW5nIGF0dGFj a3MKNGJhNTliZGMyNmJkNjliZGQ4NGJjYjJiZDU5N2ZlZTE0NGU4NDVkOSB4 ZW4vYXJtMzI6IGVudHJ5OiBBZGQgbWlzc2luZyB0cmFwX3Jlc2V0IGVudHJ5 CjI5OTdjNWU2MjhkZDU4OGZmNGFkYjM3MzNiN2Y0OGJiMDUyMWEyNDMgeGVu L2FybTMyOiBBZGQgbWlzc2luZyBNSURSIHZhbHVlcyBmb3IgQ29ydGV4LUEx NyBhbmQgQTEyCjc1MWM4NzkxZDA4NjgzMWYyMDM4ZmUxODIxN2U1NTNmNjEy YTU2MDAgeGVuL2FybTMyOiBlbnRyeTogQ29uc29saWRhdGUgREVGSU5FX1RS QVBfRU5UUllfKiBtYWNyb3MKYTI1NjdkNmI1NGI3YjE4N2VjYzAxNjUwMjFi NmRkMDdkYWZhZjA2YSB4ZW4vYXJtOiBjcHVlcnJhdGE6IFJlbW92ZSBwZXJj cHUuaCBpbmNsdWRlCjlmNzllOGQ4NDZlODQxM2M4MjhmNWZjN2NjNmFjNzMz NzI4ZGZmMDAgeGVuL2FybTY0OiBJbXBsZW1lbnQgYnJhbmNoIHByZWRpY3Rv ciBoYXJkZW5pbmcgZm9yIGFmZmVjdGVkIENvcnRleC1BIENQVXMKZmJhNDhl ZmYxOGMwMmQ3MTZjOTViOTJkZjgwNGE3NTU2MjBiZTgyZSB4ZW4vYXJtNjQ6 IEFkZCBza2VsZXRvbiB0byBoYXJkZW4gdGhlIGJyYW5jaCBwcmVkaWN0b3Ig YWxpYXNpbmcgYXR0YWNrcwozNzkwODMzZWYxNmI5NTY1MzQyNGVjOWIxNDVl NDYwZWMxYTU2ZDE2IHhlbi9hcm06IGNwdWVycmF0YTogQWRkIE1JRFJfQUxM X1ZFUlNJT05TCjUwNDUwYzFmMzNkYzcyZjIxMzhhNjcxZDczODkzNGY3OTZi ZTMzMTggeGVuL2FybTY0OiBBZGQgbWlzc2luZyBNSURSIHZhbHVlcyBmb3Ig Q29ydGV4LUE3MiwgQTczIGFuZCBBNzUKMmVjN2NjYmZmYzZiNzg4ZjY1ZTU1 NDk4ZTQzNDdjMWVlM2E0NGIwMSB4ZW4vYXJtOiBJbnRyb2R1Y2UgZW5hYmxl IGNhbGxiYWNrIHRvIGVuYWJsZSBhIGNhcGFiaWxpdGllcyBvbiBlYWNoIG9u bGluZSBDUFUKMjIxM2ZmZTFhMmQ4MmMzYzljNGExNTRlYTZlZTI1MjM5NWFh ODY5MyB4ODYvZW50cnk6IFJlbW92ZSBzdXBwb3J0IGZvciBwYXJ0aWFsIGNw dV91c2VyX3JlZ3MgZnJhbWVzCgo0Ljg6Cgo1OTM4YWExN2I0OTU5NTE1MGNh ZGUzZGRjMmMxOTI5ZWNkMGRmMzlhIHg4Ni9QVjogY29ycmVjdGx5IGNvdW50 IE1TUnMgdG8gbWlncmF0ZQo5OWVkNzg2M2IyOWVhMTcwZTUwNzQ5ZmUyMjk5 MWI5NjRjYmNlNmJhIHg4Ni9pZGxlOiBDbGVhciBTUEVDX0NUUkwgd2hpbGUg aWRsZQo3NmJkZmU4OTRhYjIyMDVmNTk3ZTUyNDQ4ZDYyMDk4MmI4NDU2NWM0 IHg4Ni9jcHVpZDogT2ZmZXIgSW5kaXJlY3QgQnJhbmNoIENvbnRyb2xzIHRv IGd1ZXN0cwpmZWU0Njg5YzVjNjBiNjk5ZjRkZWEyMWEyMWEyYmExNzg4N2Qy ZjQ5IHg4Ni9jdHh0OiBJc3N1ZSBhIHNwZWN1bGF0aW9uIGJhcnJpZXIgYmV0 d2VlbiB2Y3B1IGNvbnRleHRzCmMwYmZkZTY4Y2NkOTQxYjE0YTJmMGNhNTRj NjFhODM3OTYxNTZlYTYgeDg2L2Jvb3Q6IENhbGN1bGF0ZSB0aGUgbW9zdCBh cHByb3ByaWF0ZSBCVEkgbWl0aWdhdGlvbiB0byB1c2UKNjRjMTc0MmIyMDYz NDRjNTFkYjEzMGIwYmI0N2ZjMjk5YTE0NjJjYSB4ODYvZW50cnk6IEF2b2lk IHVzaW5nIGFsdGVybmF0aXZlcyBpbiBOTUkvI01DIHBhdGhzCjg2MTUzODU2 Zjg1N2Y3ODZiOTVlY2M0ZjgxMjYwNDc3ZDc1ZGMxNWMgeDg2L2VudHJ5OiBP cmdhbmlzZSB0aGUgY2xvYmJlcmluZyBvZiB0aGUgUlNCL1JBUyBvbiBlbnRy eSB0byBYZW4KZTA5YTVjMjkxNzUwNmNmOWQ5NWQ4NWY2NWIyZGYxNThhNDk0 NjQ5YyB4ODYvZW50cnk6IE9yZ2FuaXNlIHRoZSB1c2Ugb2YgTVNSX1NQRUNf Q1RSTCBhdCBlYWNoIGVudHJ5L2V4aXQgcG9pbnQKZmY1NzBhM2VlMGI0MmEw MzZkZjFlOGMyYjA1NzMwMTkyYWQ0YmQ5MCB4ODYvaHZtOiBQZXJtaXQgZ3Vl c3RzIGRpcmVjdCBhY2Nlc3MgdG8gTVNSX3tTUEVDX0NUUkwsUFJFRF9DTUR9 CmU2YmNiNDE2YTVmNTQ4OTM2NmZjMjBmNDVmZDkyYTcwM2FkOTZlMTUgeDg2 L21pZ3JhdGU6IE1vdmUgTVNSX1NQRUNfQ1RSTCBvbiBtaWdyYXRlCjI5ZTcx NzFlOWRkMGFhOGUzNWY3OTAxNTdkNzgxZGZmMjJmNmE5NzAgeDg2L21zcjog RW11bGF0aW9uIG9mIE1TUl97U1BFQ19DVFJMLFBSRURfQ01EfSBmb3IgZ3Vl c3RzCmMzZDE5NWNkOTEzODU1MzFlZDEyYWYyNTc2YmZlZGNhYjMxMTgyMTEg eDg2L2NwdWlkOiBIYW5kbGluZyBvZiBJQlJTL0lCUEIsIFNUSUJQIGFuZCBJ QlJTIGZvciBndWVzdHMKNTMyY2NmNGZkNTVjZmQ5MTZmNTYyNzlhNzE4NTI1 ODVkNzI2YWIyMyB4ODYvY21kbGluZTogSW50cm9kdWNlIGEgY29tbWFuZCBs aW5lIG9wdGlvbiB0byBkaXNhYmxlIElCUlMvSUJQQiwgU1RJQlAgYW5kIElC UEIKZGE0OWU1MThkNzljYTZjNDA1YTI0NDg4OWNhYjU3YWM4ZWQwOTdjYiB4 ODYvZmVhdHVyZTogRGVmaW5pdGlvbnMgZm9yIEluZGlyZWN0IEJyYW5jaCBD b250cm9scwpjYTk1ODNkOWU3MDVhYWE3NGRhMTIxZTkyMGViZjc3ZDlmNzk5 NWIyIHg4NjogSW50cm9kdWNlIGFsdGVybmF0aXZlIGluZGlyZWN0IHRodW5r cwo0NzliODc5YTdkZDBiYmYwMjkyMGQyZjYwNTNkOWJlZTI3MTc5N2NlIHg4 Ni9hbWQ6IFRyeSB0byBzZXQgbGZlbmNlIGFzIGJlaW5nIERpc3BhdGNoIFNl cmlhbGlzaW5nCjJlZWZkOTI2YmJjODIxN2NmNTExYmMwOTZjODk3YWU0YzU2 ZGQwYzIgeDg2L2Jvb3Q6IFJlcG9ydCBkZXRhaWxzIG9mIHNwZWN1bGF0aXZl IG1pdGlnYXRpb25zCjYwYzUwZjJiMGJmNWQzZjg5NGNhNDI4Y2Y0YjQzNzRm YmVhMmQwODIgeDg2OiBTdXBwb3J0IGluZGlyZWN0IHRodW5rcyBmcm9tIGFz c2VtYmx5IGNvZGUKMTgzOGUyMTUyMTQ5N2NkZmE2ZDNiMWRmYWMwMzc0YmNj ZTcxN2ViYSB4ODY6IFN1cHBvcnQgY29tcGlsaW5nIHdpdGggaW5kaXJlY3Qg YnJhbmNoIHRodW5rcwo1NzMyYThlZjI4ODU2MzNjZGZmYzU2ZmU5ZDhkZjQw Zjc2YmZiMmMyIGNvbW1vbi93YWl0OiBDbGFyaWZpY2F0aW9ucyB0byB3YWl0 IGluZnJhc3RydWN0dXJlCjk4N2IwOGQ1NmNkOGQ0MzliZGY0MzUwOTkyMThi OTZkZTkwMTE5OWQgeDg2L2VudHJ5OiBFcmFzZSBndWVzdCBHUFIgc3RhdGUg b24gZW50cnkgdG8gWGVuCmVhZGNkODMxOGM0NmY1M2VkOGVlNjUxNmNhODc2 MjcxZjc1OTMwZmEgeDg2L2h2bTogVXNlIFNBVkVfQUxMIHRvIGNvbnN0cnVj dCB0aGUgY3B1X3VzZXJfcmVncyBmcmFtZSBhZnRlciBWTUV4aXQKZWYyNDY0 YzU2ZThkYWIxOTRjZDk1NjQ5OGMzZDUyMTVmMWI2Yjk3YiB4ODYvZW50cnk6 IFJlYXJyYW5nZSBSRVNUT1JFX0FMTCB0byByZXN0b3JlIHJlZ2lzdGVyIGlu IHN0YWNrIG9yZGVyCjE3YmZiYzgyODljNDg3YmNiNWY0NDZmNzlkZTU0ODY5 ZjEyNzg2Y2IgeDg2OiBJbnRyb2R1Y2UgYSBjb21tb24gY3B1aWRfcG9saWN5 X3VwZGF0ZWQoKQo0OTkzOTFiNTBiODVkMzFmYTNkZDRjNDI3YTgxNmUxMGZh Y2IxZmU0IHg4Ni9odm06IFJlbmFtZSB1cGRhdGVfZ3Vlc3RfdmVuZG9yKCkg Y2FsbGJhY2sgdG8gY3B1aWRfcG9saWN5X2NoYW5nZWQoKQo4N2NiMGUyMDkw ZmNlMzE3YzRlNjc3NWYzNDNkNWNhYmE2NmY2MWYxIHg4Ni9hbHQ6IEludHJv ZHVjZSBBTFRFUk5BVElWRXssXzJ9IG1hY3JvcwozZWZjZDdmYjQwYTkwMGJj N2Q0ZjkwNjNmMmQ0M2VlMjdiMGE1MjcwIHg4Ni9hbHQ6IEJyZWFrIG91dCBh bHRlcm5hdGl2ZS1hc20gaW50byBhIHNlcGFyYXRlIGhlYWRlciBmaWxlCjEx ODc1YjdkNTcwNmY4YWVmODZkMzA2YTQzZDdmZTNiNzAxMWFhYTIgeGVuL2Fy bTMyOiBlbnRyeTogRG9jdW1lbnQgdGhlIHB1cnBvc2Ugb2YgcjExIGluIHRo ZSB0cmFwcyBoYW5kbGVyCjExMDVmM2E5MmRmODNmM2JmY2RhNzhkNjZjNGQy ODQ1ODEyM2UxYmIgeGVuL2FybTMyOiBJbnZhbGlkYXRlIGljYWNoZSBvbiBn dWVzdCBleGlzdCBmb3IgQ29ydGV4LUExNQo3NTQzNDVjMDE5MzNmMWVlZDNk MTYwMWZhOGZkYmY2MmY1MmM5ZDgwIHhlbi9hcm0zMjogSW52YWxpZGF0ZSBC VEIgb24gZ3Vlc3QgZXhpdCBmb3IgQ29ydGV4IEExNyBhbmQgMTIKNzMzNmQw ZDJhNzE5ZDYxMzViOGQwMjgwMTQwMWU0NDliMGRiYmZiNiB4ZW4vYXJtMzI6 IEFkZCBza2VsZXRvbiB0byBoYXJkZW4gYnJhbmNoIHByZWRpY3RvciBhbGlh c2luZyBhdHRhY2tzCmNmOTViYmE3Yjc0MDZlZjE5MjllYTRjNmMzNjM4OGVk NDNiNGY5YmIgeGVuL2FybTMyOiBlbnRyeTogQWRkIG1pc3NpbmcgdHJhcF9y ZXNldCBlbnRyeQphNTg2Y2JkOWYwY2JiMzgzNWRlMWY4YWI0ZDlhMTA1ZTA4 YjJhYzVhIHhlbi9hcm0zMjogQWRkIG1pc3NpbmcgTUlEUiB2YWx1ZXMgZm9y IENvcnRleC1BMTcgYW5kIEExMgo2MDgyZTNiYTg5NDFiM2QxMGMzY2I3M2Y0 NDU3NTljMTllODlhZmM5IHhlbi9hcm0zMjogZW50cnk6IENvbnNvbGlkYXRl IERFRklORV9UUkFQX0VOVFJZXyogbWFjcm9zCjZmNjc4NmVmMGQ3ZjcwMjU4 NjBkMzYwZjZiMTI2NzE5M2ZmZDFiMjcgeGVuL2FybTY0OiBJbXBsZW1lbnQg YnJhbmNoIHByZWRpY3RvciBoYXJkZW5pbmcgZm9yIGFmZmVjdGVkIENvcnRl eC1BIENQVXMKNDQxMzlmZWQ3Yzc5NGViNGU0N2E5YmI5MzA2MWUzMjViZDU3 ZmU4YyB4ZW4vYXJtNjQ6IEFkZCBza2VsZXRvbiB0byBoYXJkZW4gdGhlIGJy YW5jaCBwcmVkaWN0b3IgYWxpYXNpbmcgYXR0YWNrcwpjZjBiNTg0YzhjNTAz MDU4OGJjNDdhMzYxNGFkODYwYWY3NDgyYzUzIHhlbi9hcm06IGNwdWVycmF0 YTogQWRkIE1JRFJfQUxMX1ZFUlNJT05TCjg1OTkwYmY1M2FkZGNkYjBjZThl NDU4YTNkOGZhZDE5OTcxMGFjNTkgeGVuL2FybTY0OiBBZGQgbWlzc2luZyBN SURSIHZhbHVlcyBmb3IgQ29ydGV4LUE3MiwgQTczIGFuZCBBNzUKOTQ2ZGQy ZWVmYWUyZmFlZWNiZWI5NjYyZTY2OTM1YzgwNzBmNjRmNSB4ZW4vYXJtOiBJ bnRyb2R1Y2UgZW5hYmxlIGNhbGxiYWNrIHRvIGVuYWJsZSBhIGNhcGFiaWxp dGllcyBvbiBlYWNoIG9ubGluZSBDUFUKYTdjZjBhM2I4MTgzNzdhOGE0OWJh ZWQzNjA2YmZhMmYyMTRjZDY0NSB4ODYvZW50cnk6IFJlbW92ZSBzdXBwb3J0 IGZvciBwYXJ0aWFsIGNwdV91c2VyX3JlZ3MgZnJhbWVzCgo0Ljc6CgphZGUz YmNhZmQyNTg4MzEzMGZjMjM0MTIxZWQ3NDE2ZDUzMWU0NTZkIHg4Ni9QVjog Y29ycmVjdGx5IGNvdW50IE1TUnMgdG8gbWlncmF0ZQphYWM0Y2JlMzY0NDcz OGQ0ODVkMzhiZDU1MTA0NmQ2M2MwMGNjNjcwIHg4NjogZml4IGJ1aWxkIHdp dGggb2xkZXIgdG9vbCBjaGFpbgo2ODQyMGI0N2Q5YjgxM2NhNDg4OTFiNjA0 ZmFiMzc5ZDQwYWE1OTRlIHg4Ni9pZGxlOiBDbGVhciBTUEVDX0NUUkwgd2hp bGUgaWRsZQplMDk1NDhkMjhhMWNmZmFmYzBmYTVlZDlmOTdhYzU4NTE0NDkx YWI4IHg4Ni9jcHVpZDogT2ZmZXIgSW5kaXJlY3QgQnJhbmNoIENvbnRyb2xz IHRvIGd1ZXN0cwpiZTI2MWJkOTdmN2I0ZmM3NmRiN2MxMWJiMzM2Njk3NGY1 NjM1YTA0IHg4Ni9jdHh0OiBJc3N1ZSBhIHNwZWN1bGF0aW9uIGJhcnJpZXIg YmV0d2VlbiB2Y3B1IGNvbnRleHRzCjMyN2E3ODM2NzQ0Y2E4ZDdlMWNmYzZk YzQ3NmQ1MWQ3YzYzZjY4ZWEgeDg2L2Jvb3Q6IENhbGN1bGF0ZSB0aGUgbW9z dCBhcHByb3ByaWF0ZSBCVEkgbWl0aWdhdGlvbiB0byB1c2UKOWYwOGZjZTNi OTQyMTgwZDYyYmM3NzNjYWI4NDBmYTQ1MzNkMGE1MSB4ODYvZW50cnk6IEF2 b2lkIHVzaW5nIGFsdGVybmF0aXZlcyBpbiBOTUkvI01DIHBhdGhzCjRhMzhl YzI2YmFmZGU3MGYyYWYzNmQ3YmMyYmVjN2YyMTgxNDU5ODIgeDg2L2VudHJ5 OiBPcmdhbmlzZSB0aGUgY2xvYmJlcmluZyBvZiB0aGUgUlNCL1JBUyBvbiBl bnRyeSB0byBYZW4KNjVjOWUwNjQyOWY2MjkyNDlhODRkMDEyMzFiZTVmYTY0 MzQ2MDU0NyB4ODYvZW50cnk6IE9yZ2FuaXNlIHRoZSB1c2Ugb2YgTVNSX1NQ RUNfQ1RSTCBhdCBlYWNoIGVudHJ5L2V4aXQgcG9pbnQKODRkNDdhY2MwNWFm NTE2ZDgxM2YxOTUyZTg1M2M0Y2EyYmUyYWRiYSB4ODYvaHZtOiBQZXJtaXQg Z3Vlc3RzIGRpcmVjdCBhY2Nlc3MgdG8gTVNSX3tTUEVDX0NUUkwsUFJFRF9D TUR9CmI3ZGFlNTVjMGVhYWU2ZDVhMzRiZmRkM2E2MmZlOTM4NjczZjUzY2Yg eDg2L21pZ3JhdGU6IE1vdmUgTVNSX1NQRUNfQ1RSTCBvbiBtaWdyYXRlCmIy YjdmZTEyOGY2ZmJlY2Y1NGU5N2NkZDJkNzE5MjNkMGE4NTI1MzUgeDg2L21z cjogRW11bGF0aW9uIG9mIE1TUl97U1BFQ19DVFJMLFBSRURfQ01EfSBmb3Ig Z3Vlc3RzCmM5NDdlMWUyM2QxZGIxN2RhMGRkMjExYjk0MTBmMzExMjQ4YjZj MTMgeDg2L2NwdWlkOiBIYW5kbGluZyBvZiBJQlJTL0lCUEIsIFNUSUJQIGFu ZCBJQlJTIGZvciBndWVzdHMKZTkyMjBiNDBjNjdhNmMxZWFiNmIzNjEzZjYw NTRhZGZhY2VhNjVlYiB4ODYvY21kbGluZTogSW50cm9kdWNlIGEgY29tbWFu ZCBsaW5lIG9wdGlvbiB0byBkaXNhYmxlIElCUlMvSUJQQiwgU1RJQlAgYW5k IElCUEIKZjk2MTY4ODRlMTZiODAyOGMyNTdjOGIwMWZiMTJkYWZmN2ZlMzQ1 NCB4ODYvZmVhdHVyZTogRGVmaW5pdGlvbnMgZm9yIEluZGlyZWN0IEJyYW5j aCBDb250cm9scwo5MWY3ZTQ2MjdiNjU5NzUzNmRlZDViODMyNmRhM2NhNTA0 YjE3NzJmIHg4NjogSW50cm9kdWNlIGFsdGVybmF0aXZlIGluZGlyZWN0IHRo dW5rcwpmMjkxYzAxY2Q2ZDQwNTkyN2NlYjAyMmJkZWY2NDc5ZGU4YjlmYjlh IHg4Ni9hbWQ6IFRyeSB0byBzZXQgbGZlbmNlIGFzIGJlaW5nIERpc3BhdGNo IFNlcmlhbGlzaW5nCjNjZjRlMjlmOGRmNWZjMThmNjViYWEwODQwOGEzZDdj ZjMyNjlkMDMgeDg2L2Jvb3Q6IFJlcG9ydCBkZXRhaWxzIG9mIHNwZWN1bGF0 aXZlIG1pdGlnYXRpb25zCjg4NjAyMTkwZjY5OGFlYWNlNmQ3ZTAyODk1NGEx MzQ5OTk3ZWUwYmUgeDg2OiBTdXBwb3J0IGluZGlyZWN0IHRodW5rcyBmcm9t IGFzc2VtYmx5IGNvZGUKNjJhMjYyNGUzYzYyNTBjNmJlOGE5MjQ4YzhmZTVh MzIxMTgzNGQ0ZCB4ODY6IFN1cHBvcnQgY29tcGlsaW5nIHdpdGggaW5kaXJl Y3QgYnJhbmNoIHRodW5rcwpjM2Y4ZGYzZGYyMjRlZWFjMGU3ODUzMzY0NDAx MGVkMDk2ZGU3YTM0IGNvbW1vbi93YWl0OiBDbGFyaWZpY2F0aW9ucyB0byB3 YWl0IGluZnJhc3RydWN0dXJlCjM4NzdjMDI0ZWE0OTE2ZWRlMTc3ZWYwMDY3 YTA4MWY3M2VlMTZjNGQgeDg2L2VudHJ5OiBFcmFzZSBndWVzdCBHUFIgc3Rh dGUgb24gZW50cnkgdG8gWGVuCmYwZWQ1Zjk1Y2IzNzNmYjU1ZDllYjJlYjNm ZTBjYmE0NDJlODBlYjIgeDg2L2h2bTogVXNlIFNBVkVfQUxMIHRvIGNvbnN0 cnVjdCB0aGUgY3B1X3VzZXJfcmVncyBmcmFtZSBhZnRlciBWTUV4aXQKMTYw YjUzYzgyNDAxMWI5ZGRiODllNjdmMGY2ODJmNDcxMzM1NzQ3ZCB4ODYvZW50 cnk6IFJlYXJyYW5nZSBSRVNUT1JFX0FMTCB0byByZXN0b3JlIHJlZ2lzdGVy IGluIHN0YWNrIG9yZGVyCmUxMzEzMDk4ZTQzYzQxNTk4ZDViMzc4ZTYzNDRk NjkxZGNmMjlmMmYgeDg2OiBJbnRyb2R1Y2UgYSBjb21tb24gY3B1aWRfcG9s aWN5X3VwZGF0ZWQoKQo5ZWRlMWFjYmU5MWNiMTI3YjIzZDVlNzExNDcwMDI1 YjQ2MmY1ZDUwIHg4Ni9odm06IFJlbmFtZSB1cGRhdGVfZ3Vlc3RfdmVuZG9y KCkgY2FsbGJhY2sgdG8gY3B1aWRfcG9saWN5X2NoYW5nZWQoKQpkMGNmYmU4 MWQwMWIyYWMxZGM5ZDAyZDcwZDMyNDkyNDlkNWNiNWJjIHg4Ni9hbHQ6IElu dHJvZHVjZSBBTFRFUk5BVElWRXssXzJ9IG1hY3JvcwpkNTk2ZTZhMGE2ZGRm ZWJiZTY1N2QwN2QwZDY0MTU5Y2M0ZWI3YTY4IHg4Ni9hbHQ6IEJyZWFrIG91 dCBhbHRlcm5hdGl2ZS1hc20gaW50byBhIHNlcGFyYXRlIGhlYWRlciBmaWxl CmY1MGVhODQwYjlhODYwOTI3YzdhY2E1ZmE2NGViMzRlMTRmMTcxNjQgeGVu L2FybTMyOiBlbnRyeTogRG9jdW1lbnQgdGhlIHB1cnBvc2Ugb2YgcjExIGlu IHRoZSB0cmFwcyBoYW5kbGVyCmRlM2JkYWE3MTcwMDJlNGVjOTE3YmQwNDk0 OTQzZWIxNjYwZDcxYjggeGVuL2FybTMyOiBJbnZhbGlkYXRlIGljYWNoZSBv biBndWVzdCBleGlzdCBmb3IgQ29ydGV4LUExNQo3NjY5OTBiMGI2NDMzNmQx Yjg1OWI2Y2FhMzYwMzNlYzUzMzhkNTYzIHhlbi9hcm0zMjogSW52YWxpZGF0 ZSBCVEIgb24gZ3Vlc3QgZXhpdCBmb3IgQ29ydGV4IEExNyBhbmQgMTIKNGFj MDIyOWJjNTMxMmEwMTY2NGI3NDcyNjFlZTFjYzdlYTUyYzRiNSB4ZW4vYXJt MzI6IEFkZCBza2VsZXRvbiB0byBoYXJkZW4gYnJhbmNoIHByZWRpY3RvciBh bGlhc2luZyBhdHRhY2tzCmJhZmQ2M2Y4YmUyZThhNzhjMGU4NTQ0NGU0YzI1 NWU2NzkzMDMyODIgeGVuL2FybTMyOiBlbnRyeTogQWRkIG1pc3NpbmcgdHJh cF9yZXNldCBlbnRyeQpkNWJiNDI1ZGFjNjcxOGQzZmJhNjRiODYzYjA3ZDcz MTRjODU3MDY3IHhlbi9hcm0zMjogQWRkIG1pc3NpbmcgTUlEUiB2YWx1ZXMg Zm9yIENvcnRleC1BMTcgYW5kIEExMgowMDNlYzNlMDBhMDU5MzVlYTZhMzE0 MzBkYTY1ZWU2MjM2MzkwMGY5IHhlbi9hcm0zMjogZW50cnk6IENvbnNvbGlk YXRlIERFRklORV9UUkFQX0VOVFJZXyogbWFjcm9zCmZkODg0ZDYxOTkxY2Qw ZGU1ODhhZTUxNzI4Y2QwNjAyMzc1ZGZhNzEgeGVuL2FybTY0OiBJbXBsZW1l bnQgYnJhbmNoIHByZWRpY3RvciBoYXJkZW5pbmcgZm9yIGFmZmVjdGVkIENv cnRleC1BIENQVXMKNTBjNjhkZjgxODJiZjMzMjUyNWViZjYxMjBkM2IxZTBm ZGY3NzU0NSB4ZW4vYXJtNjQ6IEFkZCBza2VsZXRvbiB0byBoYXJkZW4gdGhl IGJyYW5jaCBwcmVkaWN0b3IgYWxpYXNpbmcgYXR0YWNrcwoxYmRjYzlmN2Vm NDM4YWI5YzIxOWE1MDk5NzI2YjExMmI5M2E0ZmJlIHhlbi9hcm06IGNwdWVy cmF0YTogQWRkIE1JRFJfQUxMX1ZFUlNJT05TCjI5MTRlZjU3NTNjOTMyODg4 OWRmMzE0ZjMzYmIxMmVjZTFiZDRmYmUgeGVuL2FybTY0OiBBZGQgbWlzc2lu ZyBNSURSIHZhbHVlcyBmb3IgQ29ydGV4LUE3MiwgQTczIGFuZCBBNzUKNjJi OTcwNmRiYTNiNmEzZDk4ODEzMjliY2E2MDQyMTYzMTNjODJkYyB4ZW4vYXJt OiBJbnRyb2R1Y2UgZW5hYmxlIGNhbGxiYWNrIHRvIGVuYWJsZSBhIGNhcGFi aWxpdGllcyBvbiBlYWNoIG9ubGluZSBDUFUKNjI0YWJkY2YyZDMwYWU0OGUw NjUzZmI1MTFiNGM5MGQzY2NkZDJhZiB4ZW4vYXJtOiBEZXRlY3Qgc2lsaWNv biByZXZpc2lvbiBhbmQgc2V0IGNhcCBiaXRzIGFjY29yZGluZ2x5CmQ3Yjcz ZWRkMGZlNmJiMGM0NmFhODgzMjI5ZjkwMDY0M2I0NzI2ZTkgeGVuL2FybTog Y3B1ZmVhdHVyZTogUHJvdmlkZSBhbiBoZWxwZXIgdG8gY2hlY2sgaWYgYSBj YXBhYmlsaXR5IGlzIHN1cHBvcnRlZAoxMTJjNDljMTE0ZmZlMzdlMDY4ZmM5 ZjEzZTk2MGE4ZjI3NTM3OWQyIHhlbi9hcm06IEFkZCBjcHVfaHdjYXAgYml0 bWFwCmE1YjBmYTQ4NzFiMDg5NWRhMjAzZmIyZGFjMTY4NDBkMjRjNmJlMjEg eGVuL2FybTogQWRkIG1hY3JvcyB0byBoYW5kbGUgdGhlIE1JRFIKMGU2YzZm YzQ0OTAwMGQ5N2Y5ZmE4N2VkMWZiZTIzZjBjZjIxNDA2YiB4ODYvZW50cnk6 IFJlbW92ZSBzdXBwb3J0IGZvciBwYXJ0aWFsIGNwdV91c2VyX3JlZ3MgZnJh bWVzCgo0LjY6CgowZmJmMzBhN2Y4NjMxMzlkZDBhYzU1NmU0NGY5MmY1Nzg3 NjU0ODQ3IHg4Ni9odm06IERvbid0IGNvcnJ1cHQgdGhlIEhWTSBjb250ZXh0 IHN0cmVhbSB3aGVuIHdyaXRpbmcgdGhlIE1TUiByZWNvcmQKN2UyMGI5YjJk ZGJiMDRjNmViYjYwNjEzYjExMTdlMDVlZGM4YTVlYSB4ODYvUFY6IGNvcnJl Y3RseSBjb3VudCBNU1JzIHRvIG1pZ3JhdGUKNzViZGQ2OTMwMzNlNmRiZDZm ZTVhZTIzNWY3OTk2MWQyZjBhYTg0ZCB4ODYvaWRsZTogQ2xlYXIgU1BFQ19D VFJMIHdoaWxlIGlkbGUKODk5NGNmM2NmNzMwNDIyZGVkNjU5NmVjYjE4ZGMw ZDhiNjU3OTQ5MyB4ODYvY3R4dDogSXNzdWUgYSBzcGVjdWxhdGlvbiBiYXJy aWVyIGJldHdlZW4gdmNwdSBjb250ZXh0cwo2NDJjNjAzN2JiYTMxMDUzOGIw MGMwY2JiNWQ5MTUyNWJkMWVlZDBhIHg4Ni9ib290OiBDYWxjdWxhdGUgdGhl IG1vc3QgYXBwcm9wcmlhdGUgQlRJIG1pdGlnYXRpb24gdG8gdXNlCmMyNWVh OWExMzkzYzFlYjVkNjczMmVjMzY2YmFhMTA5MWRiNWU3ZGIgeDg2L2VudHJ5 OiBBdm9pZCB1c2luZyBhbHRlcm5hdGl2ZXMgaW4gTk1JLyNNQyBwYXRocwpm ZWJhNTcxYTVkOTU4Njc3OGUwOTc4YjhkZjViOTE2NjI3NWI4NjgwIHg4Ni9l bnRyeTogT3JnYW5pc2UgdGhlIGNsb2JiZXJpbmcgb2YgdGhlIFJTQi9SQVMg b24gZW50cnkgdG8gWGVuCjAxNjMwODdlZDYxNzViMDA5NjZmNGVlOTkxZDhj NDI0YWQ3ZWI1OWQgeDg2L2VudHJ5OiBPcmdhbmlzZSB0aGUgdXNlIG9mIE1T Ul9TUEVDX0NUUkwgYXQgZWFjaCBlbnRyeS9leGl0IHBvaW50CjQ0YzI2NjY1 ODlmZWZjMTMwNDllZGM4NzRjN2VmMDYzODIzYmFkOTAgeDg2L2h2bTogUGVy bWl0IGd1ZXN0cyBkaXJlY3QgYWNjZXNzIHRvIE1TUl97U1BFQ19DVFJMLFBS RURfQ01EfQpkYjc0M2IwNDk5OGE5Y2JmNjg2NmI1ZjMyODg1NTIzOWE3MzIy MGU1IHg4Ni9taWdyYXRlOiBNb3ZlIE1TUl9TUEVDX0NUUkwgb24gbWlncmF0 ZQo0MWE1Y2NlYzk5ZTgxYTc2OGE2Njk5NWY0ODNmNDI0Zjg0OGY1YjVlIHg4 Ni9tc3I6IEVtdWxhdGlvbiBvZiBNU1Jfe1NQRUNfQ1RSTCxQUkVEX0NNRH0g Zm9yIGd1ZXN0cwo0ZTFiOWU5OGRmZmJjMmYyOWEwYTkwYTRhZTQzYjllMTlm MzIzMDg5IHg4Ni9jcHVpZDogSGFuZGxpbmcgb2YgSUJSUy9JQlBCLCBTVElC UCBhbmQgSUJSUyBmb3IgZ3Vlc3RzCjRkMjE1NDkxNGUzZjQ0YmFlMTIzZGM2 YTkzZmJiM2YxYjM5YzBmZWUgeDg2L2NtZGxpbmU6IEludHJvZHVjZSBhIGNv bW1hbmQgbGluZSBvcHRpb24gdG8gZGlzYWJsZSBJQlJTL0lCUEIsIFNUSUJQ IGFuZCBJQlBCCmZmNDgwMGNhYzYzNzU2Zjc3NTVlNmMyNTE1NzFjZDI5ZmQ1 MTcxZWIgeDg2L2ZlYXR1cmU6IERlZmluaXRpb25zIGZvciBJbmRpcmVjdCBC cmFuY2ggQ29udHJvbHMKMjYxM2ExYmM3MDllZDRiNDZhZjM2YjBiYWIzMjAw ZWQ5ZDNjODZkMCB4ODY6IEludHJvZHVjZSBhbHRlcm5hdGl2ZSBpbmRpcmVj dCB0aHVua3MKODMzNWM4YWVkYWNkOWE1MGI0Nzk2YWZiNTMzZGM4MjA1ZjIx MjllNCB4ODYvYW1kOiBUcnkgdG8gc2V0IGxmZW5jZSBhcyBiZWluZyBEaXNw YXRjaCBTZXJpYWxpc2luZwphYjIwYzVjODA0YWU4MTRkZTliZWQ1Zjg1ZDU1 ZmVjYzg5NGRjNzhmIHg4Ni9ib290OiBSZXBvcnQgZGV0YWlscyBvZiBzcGVj dWxhdGl2ZSBtaXRpZ2F0aW9ucwo5MDg5ZGE5Y2QwNjg3NWJlNmMxMDIyZDU5 YTY2NTFjZjM5MTlkYTJlIHg4NjogU3VwcG9ydCBpbmRpcmVjdCB0aHVua3Mg ZnJvbSBhc3NlbWJseSBjb2RlCjhlZGZjODJmNjdmMjUxMzc5MDlkZGExM2U2 NjU4Y2JhNGQxZTVkMjYgeDg2OiBTdXBwb3J0IGNvbXBpbGluZyB3aXRoIGlu ZGlyZWN0IGJyYW5jaCB0aHVua3MKYWY1YjYxYWY5ZTM1MGJjYzJjOGIwZjA1 MzY4MmUzYzdhNzAwYjQ2ZiBjb21tb24vd2FpdDogQ2xhcmlmaWNhdGlvbnMg dG8gd2FpdCBpbmZyYXN0cnVjdHVyZQplYzA1MDkwNDAzZWY0ZDc2MGZiZTcw MWUzMWFmZDBmMGVkYzQxNGQ1IHg4Ni9lbnRyeTogRXJhc2UgZ3Vlc3QgR1BS IHN0YXRlIG9uIGVudHJ5IHRvIFhlbgo3NTI2M2Y3OTA4YTAyZjU2NzNjMjVk ZjliY2RhZWQ5ZmU1ZjlkZTVjIHg4Ni9odm06IFVzZSBTQVZFX0FMTCB0byBj b25zdHJ1Y3QgdGhlIGNwdV91c2VyX3JlZ3MgZnJhbWUgYWZ0ZXIgVk1FeGl0 CmY3ZTI3M2EwN2NjZjk5MzA2MzcyNzY3NTU4OWYxMGRhMjA2ZjE2ODMgeDg2 L2VudHJ5OiBSZWFycmFuZ2UgUkVTVE9SRV9BTEwgdG8gcmVzdG9yZSByZWdp c3RlciBpbiBzdGFjayBvcmRlcgowM2M3ZDJjZDFiNGJiOTg2OGMxMGM0YTNk YjJiMDkyZDIxMWQwNTVhIHg4Ni9hbHQ6IEludHJvZHVjZSBBTFRFUk5BVElW RXssXzJ9IG1hY3Jvcwo5Y2UxYTcxODAwNTAzNTNjMDczMjE5ODBjZjFlZDBi MGJhZWJmMzhhIHg4Ni9hbHQ6IEJyZWFrIG91dCBhbHRlcm5hdGl2ZS1hc20g aW50byBhIHNlcGFyYXRlIGhlYWRlciBmaWxlCmE3MzVjN2FlODA0NjAyNDky NTkyNzQwNjc0N2Q0YTZjYTViZjdmY2MgeDg2L21pY3JvY29kZTogQWRkIHN1 cHBvcnQgZm9yIGZhbTE3aCBtaWNyb2NvZGUgbG9hZGluZwo5ZDUzNGMxMmJm NzFiYWJiNzZmMTMzODAyOTg0MWY3NTcxOTFmNzI5IHhlbi9hcm0zMjogZW50 cnk6IERvY3VtZW50IHRoZSBwdXJwb3NlIG9mIHIxMSBpbiB0aGUgdHJhcHMg aGFuZGxlcgpkYmIzNTUzMTMwMjQxYWU5OWQ0NDRhNmEwOGI3ZGMzMmNlOTBh MjcyIHhlbi9hcm0zMjogSW52YWxpZGF0ZSBpY2FjaGUgb24gZ3Vlc3QgZXhp c3QgZm9yIENvcnRleC1BMTUKZTU0YThjNjE3Y2ViNWJhMzQ4MWU2YWExMjJh ZDNmODM1YzE5MTViOCB4ZW4vYXJtMzI6IEludmFsaWRhdGUgQlRCIG9uIGd1 ZXN0IGV4aXQgZm9yIENvcnRleCBBMTcgYW5kIDEyCjgwMDVlZDNlZjE0YzZj OGIzMWE5ZTFhNWFlMjU3NmE0YjRjNjY1MjggeGVuL2FybTMyOiBBZGQgc2tl bGV0b24gdG8gaGFyZGVuIGJyYW5jaCBwcmVkaWN0b3IgYWxpYXNpbmcgYXR0 YWNrcwo5YTg1MmUwZWViYzYzMDA1ODVkYjg5NjY5ZGJhZGU2MjViZTE4YTEy IHhlbi9hcm0zMjogZW50cnk6IEFkZCBtaXNzaW5nIHRyYXBfcmVzZXQgZW50 cnkKZDc3OWNjMWY5YzZhNWYxZDQwZGI5ZTg1Zjc3OWE3OWM4ZWVkMmNjZiB4 ZW4vYXJtMzI6IEFkZCBtaXNzaW5nIE1JRFIgdmFsdWVzIGZvciBDb3J0ZXgt QTE3IGFuZCBBMTIKYzkzYmNmOTQwOWUwZGExNGNiYzRiZjQzYmYxMzhiZmFh ZWNlZmEyYyB4ZW4vYXJtMzI6IGVudHJ5OiBDb25zb2xpZGF0ZSBERUZJTkVf VFJBUF9FTlRSWV8qIG1hY3JvcwoxNWFkY2YzOTU5MjM0OTllYjFlYWFjYTFl NjdjMDMyOTU2NDI4MTkxIHhlbi9hcm02NDogSW1wbGVtZW50IGJyYW5jaCBw cmVkaWN0b3IgaGFyZGVuaW5nIGZvciBhZmZlY3RlZCBDb3J0ZXgtQSBDUFVz CmQ3YjgxOTBkMzIyMjE1NmU4OWNjZWZiN2FjNzRhZDA0MTAzMzcwOTcgeGVu L2FybTY0OiBBZGQgc2tlbGV0b24gdG8gaGFyZGVuIHRoZSBicmFuY2ggcHJl ZGljdG9yIGFsaWFzaW5nIGF0dGFja3MKMmIxNDU3Zjk1NWE5ODAwN2NkNTFi ZTY3Zjc4ZDE2OTA3MTFlODg0OSB4ZW4vYXJtOiBjcHVlcnJhdGE6IEFkZCBN SURSX0FMTF9WRVJTSU9OUwphMzU3ODgwMmEyODgyYWZiYmZlNzMwZjAyMjdl MDc1YjVmNDJiNGE2IHhlbi9hcm02NDogQWRkIG1pc3NpbmcgTUlEUiB2YWx1 ZXMgZm9yIENvcnRleC1BNzIsIEE3MyBhbmQgQTc1CmVlMjNmY2MyNTM5Y2U4 MTQzYWU0Y2U1OGE3YzE0MGZhNDZhNDM1OWIgeGVuL2FybTogSW50cm9kdWNl IGVuYWJsZSBjYWxsYmFjayB0byBlbmFibGUgYSBjYXBhYmlsaXRpZXMgb24g ZWFjaCBvbmxpbmUgQ1BVCjU2NTEwMTU0YmJkMjFmMTAwODA5OTNiNzg4OGMx YTQ3YTgwMmMzZTIgeGVuL2FybTogRGV0ZWN0IHNpbGljb24gcmV2aXNpb24g YW5kIHNldCBjYXAgYml0cyBhY2NvcmRpbmdseQoyMjVlOWM3MDUwZThmMjY5 NGRmM2RjOTJjOTViMDZhNDZlNTcxMzBlIHhlbi9hcm06IGNwdWZlYXR1cmU6 IFByb3ZpZGUgYW4gaGVscGVyIHRvIGNoZWNrIGlmIGEgY2FwYWJpbGl0eSBp cyBzdXBwb3J0ZWQKM2M3MDYxOTU1NjU5MTBiOTYxZWI1YTdlNjRmMzQ5NDhk ZWIyYTU0NSB4ZW4vYXJtOiBBZGQgY3B1X2h3Y2FwIGJpdG1hcAoxMjIyMzMz YTgyMjA2Mzg3NDdlNzdiNDBiNjQxOGRhYTg1MjcwMjY1IHhlbi9hcm06IEFk ZCBtYWNyb3MgdG8gaGFuZGxlIHRoZSBNSURSCmM2ZTllNjA5NTY2OWIzYzYz YjkyZDIxZmRkYjMyNjQ0MWM3MzcxMmMgeDg2L2VudHJ5OiBSZW1vdmUgc3Vw cG9ydCBmb3IgcGFydGlhbCBjcHVfdXNlcl9yZWdzIGZyYW1lcwo= --=separator Content-Type: application/octet-stream; name="xsa254/README.comet" Content-Disposition: attachment; filename="xsa254/README.comet" Content-Transfer-Encoding: base64 CQkJICAgIFBWLWluLVBWSCBzaGltCiAgICAgICAgICAgICAgICAgICAgICAg ICAgICA9PT09PT09PT09PT09PQoKU3VtbWFyeQotLS0tLS0tCgpUaGlzIFJF QURNRSBkZXNjcmliZXMgb25lIG9mIHRocmVlIG1pdGlnYXRpb24gc3RyYXRl Z2llcyBmb3IgTWVsdGRvd24uCgpUaGUgYmFzaWMgcHJpbmNpcGxlIGlzIHRv IHJ1biBQViBndWVzdHMgKHdoaWNoIGNhbiByZWFkIGFsbCBvZiBob3N0Cm1l bW9yeSBkdWUgdG8gdGhlIGhhcmR3YXJlIGJ1Z3MpIGFzIFBWSCBndWVzdHMg KHdoaWNoIGNhbm5vdCwgYXQgbGVhc3QKbm90IGR1ZSB0byBNZWx0ZG93biku ICBUaGUgUFYgZW52aXJvbm1lbnQgaXMgc3RpbGwgcHJvdmlkZWQgdG8gdGhl Cmd1ZXN0IGJ5IGFuIGVtYmVkZGVkIGNvcHkgb2YgWGVuLCB0aGUgInNoaW0i LiAgVGhpcyB2ZXJzaW9uIG9mIHRoZQpzaGltIGlzIGNvZGVuYW1lZCAiQ29t ZXQiLgoKVW5saWtlIFZpeGVuLCBDb21ldCByZXF1aXJlcyBtb2RpZmljYXRp b25zIHRvIHRoZSB0b29sc3RhY2sgYW5kIGhvc3QKaHlwZXJ2aXNvci4KCk5v dGUgdGhhdCBib3RoIG9mIHRoZXNlIHNoaW0tYmFzZWQgYXBwcm9hY2hlcyBw cmV2ZW50IGF0dGFja3Mgb24gdGhlCmhvc3QsIGJ1dCBsZWF2ZSB0aGUgZ3Vl c3QgdnVsbmVyYWJsZSB0byBNZWx0ZG93biBhdHRhY2tzIGJ5IGl0cyBvd24K dW5wcml2aWxlZ2VkIHByb2Nlc3NlczsgdGhpcyBpcyB0cnVlIGV2ZW4gaWYg dGhlIGd1ZXN0IE9TIGhhcyBLUFRJIG9yCnNpbWlsYXIgTWVsdGRvd24gbWl0 aWdhdGlvbi4KClZlcnNpb25zIGZvciBYZW4gNC44IGFuZCA0LjEwIGFyZSBh dmFpbGFibGUuCgpXaGF0IHlvdSB3aWxsIG5lZWQKLS0tLS0tLS0tLS0tLS0t LS0tCgogKiBZb3Ugd2lsbCBuZWVkIHRoZSB4ZW4uZ2l0IHdpdGggdGhlIGZv bGxvd2luZyB0YWdzOgogIC0gRm9yIDQuMTA6IDQuMTAuMC1zaGltLWNvbWV0 LTMKICAtIEZvciA0Ljg6ICA0LjguM3ByZS1zaGltLWNvbWV0LTIgICBhbmQg IDQuMTAuMC1zaGltLWNvbWV0LTMKCkJ1aWxkIGluc3RydWN0aW9uczogNC4x MAotLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0KCjEuIEJ1aWxkIGEgNC4xMCsg c3lzdGVtCiAgICBnaXQgY2xvbmUgZ2l0Oi8veGVuYml0cy54ZW5wcm9qZWN0 Lm9yZy94ZW4uZ2l0IHhlbi5naXQKICAgIGNkIHhlbi5naXQKICAgIGdpdCBj aGVja291dCA0LjEwLjAtc2hpbS1jb21ldC0zCgpEbyBhIGJ1aWxkIGFuZCBp bnN0YWxsIGFzIG5vcm1hbC4gIFRoZSBzaGltIHdpbGwgYmUgYnVpbHQgYXMg cGFydCBvZiB0aGUKbm9ybWFsIGJ1aWxkIHByb2Nlc3MsIGFuZCBwbGFjZWQg d2l0aCBvdGhlciAnc3lzdGVtJyBiaW5hcmllcyB3aGVyZSB0aGUKdG9vc3Rh Y2sga25vd3MgaG93IHRvIGZpbmQgaXQuCgpCdWlsZCBpbnN0cnVjdGlvbnM6 IDQuOAotLS0tLS0tLS0tLS0tLS0tLS0tLS0tLQoKVGhlIGNvZGUgZm9yIHNo aW0gaXRzZWxmIGlzIG5vdCBiYWNrcG9ydGVkIHRvIDQuOC4gIDQuOCB1c2Vy cyBzaG91bGQKdXNlIGEgc2hpbSBidWlsdCBmcm9tIDQuMTAtYmFzZWQgc291 cmNlIGNvZGU7IHRoaXMgY2FuIGJlIHNpbXBseQpkcm9wcGVkIGludG8gYSBY ZW4gNC44IGluc3RhbGxhdGlvbi4KCjEuIEJ1aWxkIGEgNC44KyBzeXN0ZW0g d2l0aCBzdXBwb3J0IGZvciBydW5uaW5nIFBWSCwgYW5kIGZvciBwdnNoaW06 CgogICAgZ2l0IGNsb25lIGdpdDovL3hlbmJpdHMueGVucHJvamVjdC5vcmcv eGVuLmdpdCB4ZW4uZ2l0CiAgICBjZCB4ZW4uZ2l0CiAgICBnaXQgY2hlY2tv dXQgNC44LjNwcmUtc2hpbS1jb21ldC0yCgogIERvIGEgYnVpbGQgYW5kIGlu c3RhbGwgYXMgbm9ybWFsLgoKMi4gQnVpbGQgYSA0LjEwKyBzeXN0ZW0gdG8g YmUgdGhlIHNoaW06CgogICAgZ2l0IGNsb25lIGdpdDovL3hlbmJpdHMueGVu cHJvamVjdC5vcmcveGVuLmdpdCB4ZW4uZ2l0CiAgICBjZCB4ZW4uZ2l0CiAg ICBnaXQgY2hlY2tvdXQgNC4xMC4wLXNoaW0tY29tZXQtMwogICAgLi9jb25m aWd1cmUKICAgIG1ha2UgLUMgdG9vbHMvZmlybXdhcmUveGVuLWRpcgoKICBB bmQgdGhlbiBpbnN0YWxsIHRoZSBzaGltIGV4ZWN1dGFibGUgd2hlcmUKICB0 aGUgNC44IHB2IHNoaW0gbW9kZSB0b29scyBleHBlY3QgdG8gZmluZCBpdAoK ICAgIGNwIHRvb2xzL2Zpcm13YXJlL3hlbi1kaXIveGVuLXNoaW0gL3Vzci9s aWIveGVuL2Jvb3QveGVuLXNoaW0KICAgIGNwIHRvb2xzL2Zpcm13YXJlL3hl bi1kaXIveGVuLXNoaW0gL3Vzci9sb2NhbC9saWIveGVuL2Jvb3QveGVuLXNo aW0KCiAgVGhpcyBzdGVwIGlzIG9ubHkgbmVlZGVkIHRvIGJvb3QgZ3Vlc3Rz IGluICJQVkggd2l0aCBQViBzaGltIgogIG1vZGU7IGl0IGlzIG5vdCBuZWVk ZWQgd2hlbiBib290aW5nIFBWSC1zdXBwb3J0aW5nIGd1ZXN0cyBhcyBQVkgu CgoKVXNhZ2UgaW5zdHJ1Y3Rpb25zCi0tLS0tLS0tLS0tLS0tLS0tLQoKKiBD b252ZXJ0aW5nIGEgUFYgY29uZmlnIHRvIGEgUFZIIHNoaW0gY29uZmlnCgot IFJlbW92ZSBhbnkgcmVmZXJlbmNlIHRvICdidWlsZGVyJyAoZS5nLiwgYGJ1 aWxkZXI9ImdlbmVyaWMiYCkKLSBBZGQgdGhlIGZvbGxvd2luZyB0d28gbGlu ZXM6CiAgdHlwZT0icHZoIgogIHB2c2hpbT0xCgoqIENvbnZlcnRpbmcgYSBQ ViBjb25maWcgdG8gYSBQVkggY29uZmlnCgpJZiB5b3UgaGF2ZSBhIGtlcm5l bCBjYXBhYmxlIG9mIGJvb3RpbmcgUFZILCB0aGVuIFBWSCBtb2RlIGlzIGJv dGgKZmFzdGVyIGFuZCBtb3JlIHNlY3VyZSB0aGFuIFBWIG9yIFBWSC1zaGlt IG1vZGUuCgotIFJlbW92ZSBhbnkgcmVmZXJlbmNlIHRvICdidWlsZGVyJyAo ZS5nLiwgYGJ1aWxkZXI9ImdlbmVyaWMiYCkKLSBBZGQgdGhlIGZvbGxvd2lu ZyBsaW5lOgogIHR5cGU9InB2aCIKCiogVGhlcmUgaXMgbm8gbmVlZCB0byBy ZWJvb3QgdGhlIGhvc3QuCg== --=separator Content-Type: application/octet-stream; name="xsa254/README.pti" Content-Disposition: attachment; filename="xsa254/README.pti" Content-Transfer-Encoding: base64 ICAgICAgICAgICAgICAgICAgICAgIFhlbiBwYWdlLXRhYmxlIGlzb2xhdGlv biAoWFBUSSkKICAgICAgICAgICAgICAgICAgICAgID09PT09PT09PT09PT09 PT09PT09PT09PT09PT09PT0KClN1bW1hcnkKLS0tLS0tLQoKVGhpcyBSRUFE TUUgZ2l2ZXMgcmVmZXJlbmNlcyBmb3Igb25lIG9mIHRocmVlIG1pdGlnYXRp b24gc3RyYXRlZ2llcwpmb3IgTWVsdGRvd24uCgpUaGlzIHNlcmllcyBpcyBh IGZpcnN0LWNsYXNzIG1pZ2l0YXRpb24gcGFnZXRhYmxlIGlzb2xhdGlvbiBz ZXJpZXMgZm9yClhlbi4gIEl0IGlzIGF2YWlsYWJsZSBmb3IgWGVuIDQuNiB0 byBYZW4gNC4xMCBhbmQgbGF0ZXIuCgpQcmVjaXNlIGdpdCBjb21taXRzIGFy ZSBhcyBmb2xsb3dzOgoKNC4xMDoKCjA1ZWJhOTNhMGEzNDRlYzE4OWU3MTcy MmJkNTQyY2RjNzk0OWE4YTUgeDg2OiBmaXggR0VUX1NUQUNLX0VORAo3Y2Nj ZDZmNzQ4ZWM3MjRjZjk0MDhjZWM2YjNlYzhlNTRhOGEyYzFmIHg4NjogYWxs b3cgTWVsdGRvd24gYmFuZC1haWQgdG8gYmUgZGlzYWJsZWQKMjM0ZjQ4MTMz N2VhMWE5M2RiOTY4ZDYxNDY0OWE2YmRmZGM4NDE4YSB4ODY6IE1lbHRkb3du IGJhbmQtYWlkIGFnYWluc3QgbWFsaWNpb3VzIDY0LWJpdCBQViBndWVzdHMK NTdkYzE5N2NmMGQzNmM1NmJhMWQ5ZDMyYzZhMTQ1NGJiNTI2MDViYiB4ODYv bW06IEFsd2F5cyBzZXQgX1BBR0VfQUNDRVNTRUQgb24gTDRlIHVwZGF0ZXMK OTEwZGQwMDVkYTIwZjI3ZjM0MTViN2VjY2RmNDM2ODc0OTg5NTA2YiB4ODYv ZW50cnk6IFJlbW92ZSBzdXBwb3J0IGZvciBwYXJ0aWFsIGNwdV91c2VyX3Jl Z3MgZnJhbWVzCgo0Ljk6CgpmMTFjZjI5ZjI3NGU5MGU2NDUxYWFhYTVhYjUy ZGYyZWQ2M2ViMzBkIHg4NjogZml4IEdFVF9TVEFDS19FTkQKZGM3ZDQ2NTgw ZDljNjMzYTU5YmUxYzM3NzZmNzljMDFkZDBjYjk4YiB4ODY6IGFsbG93IE1l bHRkb3duIGJhbmQtYWlkIHRvIGJlIGRpc2FibGVkCjFlMDk3NDYzOGQ2NWQ5 YjhhY2Y5YWM3NTExZDc0NzE4OGYzOGJjYzMgeDg2OiBNZWx0ZG93biBiYW5k LWFpZCBhZ2FpbnN0IG1hbGljaW91cyA2NC1iaXQgUFYgZ3Vlc3RzCjg3ZWE3 ODE2MjQ3MDkwZThlNWJjNTY1M2IxNmM0MTI5NDNhMDU4YjUgeDg2L21tOiBB bHdheXMgc2V0IF9QQUdFX0FDQ0VTU0VEIG9uIEw0ZSB1cGRhdGVzCjIyMTNm ZmUxYTJkODJjM2M5YzRhMTU0ZWE2ZWUyNTIzOTVhYTg2OTMgeDg2L2VudHJ5 OiBSZW1vdmUgc3VwcG9ydCBmb3IgcGFydGlhbCBjcHVfdXNlcl9yZWdzIGZy YW1lcwoKNC44OgoKMmNkMTg5ZWI1NWFmOGIwNDE4NWI0NzNhYzI4ODVmNzZi M2Q4N2VmZSB4ODY6IGZpeCBHRVRfU1RBQ0tfRU5ECjMxZDM4ZDYzM2EzMDZi MmIwNjc2N2I1YTVmNWE4YTAwMjY5ZjNjOTIgeDg2OiBhbGxvdyBNZWx0ZG93 biBiYW5kLWFpZCB0byBiZSBkaXNhYmxlZAoxYmE0NzdiZGU3MzdiZjliMjhj YzQ1NWJlZjFlOWE2YmM3NmQ2NmZjIHg4NjogTWVsdGRvd24gYmFuZC1haWQg YWdhaW5zdCBtYWxpY2lvdXMgNjQtYml0IFBWIGd1ZXN0cwowNDllMmY0NWJm YTQ4ODk2NzQ5NDQ2NmVjNjUwNmMzZWNhZTVmZTBlIHg4Ni9tbTogQWx3YXlz IHNldCBfUEFHRV9BQ0NFU1NFRCBvbiBMNGUgdXBkYXRlcwphN2NmMGEzYjgx ODM3N2E4YTQ5YmFlZDM2MDZiZmEyZjIxNGNkNjQ1IHg4Ni9lbnRyeTogUmVt b3ZlIHN1cHBvcnQgZm9yIHBhcnRpYWwgY3B1X3VzZXJfcmVncyBmcmFtZXMK CjQuNzoKCmIxYWUxMjY0YmFmODYxN2RmMDM2YTI5ODQ2MWExYmI0M2VhZTc5 YzEgeDg2OiBmaXggR0VUX1NUQUNLX0VORAplMTlkMGFmNGVlMmFlOWU0MmE4 NWRiNjM5ZmQ2ODQ4ZTcyZjU2NThiIHg4NjogYWxsb3cgTWVsdGRvd24gYmFu ZC1haWQgdG8gYmUgZGlzYWJsZWQKZTE5NTE3YTMzNTVhY2FhYTJmZjgzMDE4 YmM0MWU3ZmQwNDQxNjFlNSB4ODY6IE1lbHRkb3duIGJhbmQtYWlkIGFnYWlu c3QgbWFsaWNpb3VzIDY0LWJpdCBQViBndWVzdHMKOWI3NjkwOGU2ZTA3NGQ3 ZWZiZWFmZTZiYWQwNjZlY2M1ZjNjM2M0MyB4ODYvbW06IEFsd2F5cyBzZXQg X1BBR0VfQUNDRVNTRUQgb24gTDRlIHVwZGF0ZXMKMGU2YzZmYzQ0OTAwMGQ5 N2Y5ZmE4N2VkMWZiZTIzZjBjZjIxNDA2YiB4ODYvZW50cnk6IFJlbW92ZSBz dXBwb3J0IGZvciBwYXJ0aWFsIGNwdV91c2VyX3JlZ3MgZnJhbWVzCgo0LjY6 Cgo0NGFkN2Y2ODk1ZGE5ODYxMDQyZDdhNDFlNjM1ZDQyZDgzY2IyNjYwIHg4 NjogYWxsb3cgTWVsdGRvd24gYmFuZC1haWQgdG8gYmUgZGlzYWJsZWQKOTFk YzkwMmZkZjQxNjU5YzIxMDMyOWQ2ZjY1NzhmODEzMmVlNDc3MCB4ODY6IE1l bHRkb3duIGJhbmQtYWlkIGFnYWluc3QgbWFsaWNpb3VzIDY0LWJpdCBQViBn dWVzdHMKYTA2NTg0MWIzYWU5ZjBlZjQ5Yjk4MjNjZDIwNWM3OWVlMGMyMmI5 YyB4ODYvbW06IEFsd2F5cyBzZXQgX1BBR0VfQUNDRVNTRUQgb24gTDRlIHVw ZGF0ZXMKYzZlOWU2MDk1NjY5YjNjNjNiOTJkMjFmZGRiMzI2NDQxYzczNzEy YyB4ODYvZW50cnk6IFJlbW92ZSBzdXBwb3J0IGZvciBwYXJ0aWFsIGNwdV91 c2VyX3JlZ3MgZnJhbWVzCg== --=separator Content-Type: application/octet-stream; name="xsa254/README.vixen" Content-Disposition: attachment; filename="xsa254/README.vixen" Content-Transfer-Encoding: base64 ICAgICAgICAgICAgICAgIFBWLWluLUhWTSBzaGltIHdpdGggInNpZGVjYXIi IElTTwogICAgICAgICAgICAgICAgPT09PT09PT09PT09PT09PT09PT09PT09 PT09PT09PT09CgpTdW1tYXJ5Ci0tLS0tLS0KClRoaXMgUkVBRE1FIGRlc2Ny aWJlcyBvbmUgb2YgdGhyZWUgbWl0aWdhdGlvbiBzdHJhdGVnaWVzIGZvciBN ZWx0ZG93bi4KClRoZSBiYXNpYyBwcmluY2lwbGUgaXMgdG8gcnVuIFBWIGd1 ZXN0cyAod2hpY2ggY2FuIHJlYWQgYWxsIG9mIGhvc3QKbWVtb3J5IGR1ZSB0 byB0aGUgaGFyZHdhcmUgYnVncykgYXMgSFZNIGd1ZXN0cyAod2hpY2ggY2Fu bm90LCBhdCBsZWFzdApub3QgZHVlIHRvIE1lbHRkb3duKS4gIFRoZSBQViBl bnZpcm9ubWVudCBpcyBzdGlsbCBwcm92aWRlZCB0byB0aGUKZ3Vlc3QgYnkg YW4gZW1iZWRkZWQgY29weSBvZiBYZW4sIHRoZSAic2hpbSIuICBUaGlzIHZl cnNpb24gb2YgdGhlCnNoaW0gaXMgY29kZW5hbWVkICJWaXhlbiIuCgpJbiBv cmRlciB0byBib290IHRoZSBzaGltIHdpdGggYW4gdW5tb2RpZmllZCB0b29s c3RhY2ssIHlvdSBhbHNvCnByb3ZpZGUgYSBzcGVjaWFsIGRpc2sgY29udGFp bmluZyB0aGUgc2hpbSBhbmQgdGhlIGd1ZXN0IGtlcm5lbCAob3IKcHZncnVi KTsgdGhpcyBpcyBjYWxsZWQgdGhlICJzaWRlY2FyIi4KCk5vdGUgdGhhdCBi b3RoIG9mIHRoZXNlIHNoaW0tYmFzZWQgYXBwcm9hY2hlcyBwcmV2ZW50IGF0 dGFja3Mgb24gdGhlCmhvc3QsIGJ1dCBsZWF2ZSB0aGUgZ3Vlc3QgdnVsbmVy YWJsZSB0byBNZWx0ZG93biBhdHRhY2tzIGJ5IGl0cyBvd24KdW5wcml2aWxl Z2VkIHByb2Nlc3NlczsgdGhpcyBpcyB0cnVlIGV2ZW4gaWYgdGhlIGd1ZXN0 IE9TIGhhcyBLUFRJIG9yCnNpbWlsYXIgTWVsdGRvd24gbWl0aWdhdGlvbi4K CldoYXQgeW91IHdpbGwgbmVlZAotLS0tLS0tLS0tLS0tLS0tLS0KCiAqIFlv dXIgaG9zdCBtdXN0IGJlIGFibGUgdG8gcnVuIGdydWItbWtyZXNjdWUgdG8g Z2VuZXJhdGUgYSAuaXNvCiAqIFlvdSB3aWxsIHRoZXJlZm9yZSBuZWVkIHhv cnJpc28gYW5kIG10b29scwogKiBZb3UgbXVzdCBiZSB1c2luZyB4bCBhbmQg YWJsZSB0byB1c2UgYW4gYWx0ZXJuYXRpdmUgeW91ciBndWVzdCBjb25maWcK CiAqIFlvdSB3aWxsIG5lZWQgdGhlIHNjcmlwdCAicHZzaGltLWNvbnZlcnRl ci5wbCIKICAtIFRoaXMgcmVsaWVzIG9uIHBlcmwtanNvbgogKiBZb3Ugd2ls bCBuZWVkIHRoZSB4ZW4uZ2l0IHRhZyA0LjkuMS1zaGltLXZpeGVuLTEKCgpJ bnN0cnVjdGlvbnMKLS0tLS0tLS0tLS0tCgoxLiBPbiBhIHN1aXRhYmxlIHN5 c3RlbSAocGVyaGFwcyBhIGRpZmZlcmVudCBob3N0KQogICAgZ2l0IGNsb25l IGdpdDovL3hlbmJpdHMueGVucHJvamVjdC5vcmcveGVuLmdpdCB4ZW4uZ2l0 CiAgICBjZCB4ZW4uZ2l0CiAgICBnaXQgY2hlY2tvdXQgNC45LjEtc2hpbS12 aXhlbi0xCgpJZiB5b3UgbmVlZCBiaS1kaXJlY3Rpb25hbCBjb25zb2xlIGFu ZCBkb24ndCBtaW5kIGEgbGVzcy10ZXN0ZWQgcGF0Y2gsCnlvdSBjYW4gYXBw bHkgdGhlIHBhdGNoIGZvdW5kIGluIHRoaXMgZW1haWw6CgogICAgbWFyYy5p bmZvLz9pPTwxNTE1NjA0NTUyLTkyMDUtMS1naXQtc2VuZC1lbWFpbC1zcm5A cHJnbXIuY29tPgoKYnVpbGQgYSB4ZW4gaHlwZXJ2aXNvciBiaW5hcnkgYXMg dXN1YWw6CgogICAgbWFrZSB4ZW4KCklmIHlvdXIgZGVmYXVsdCB2ZXJzaW9u IG9mIHB5dGhvbiBpcyBweXRob24gMywgeW91IG1heSBuZWVkIHRvIGFkZCB0 aGUgZm9sbG93aW5nOgoKICAgIG1ha2UgUFlUSE9OPXB5dGhvbjIgeGVuCgpU aGlzIHdpbGwgYnVpbGQgYSBmaWxlCiAgICB4ZW4veGVuLmd6CgoyLiBDb3B5 IHRoYXQgZmlsZSB0byB5b3VyIGRvbTAuCgpJZGVhbGx5IHNvbWVwbGFjZSBs aWtlIC91c3IvbGliL3hlbi9ib290L3hlbi12aXhlbi5negoKMy4gQ29weSB0 aGUgc2NyaXB0IHB2c2hpbS1jb252ZXJ0ZXIgdG8geW91ciBkb20wIGFuZCBt YWtlCiAgIGl0IGV4ZWN1dGFibGU6CiAgICAgIGNobW9kICt4IHB2c2hpbS1j b252ZXJ0ZXIucGwKCjQuIEZvciBlYWNoIGd1ZXN0CgogIChpKSBpZiB0aGUg Z3Vlc3QgaXMgY3VycmVudGx5IGJvb3RlZCB3aXRoIHB5Z3J1YiB5b3UgbXVz dCBmaXJzdAogICBzd2l0Y2ggdG8gZGlyZWN0IGtlcm5lbCBib290IChieSBt YW51YWxseSBjb3B5aW5nIHRoZSBrZXJuZWwgYW5kCiAgIGluaXRyYW1mcyBv dXQgb2YgdGhlIGd1ZXN0LCBhbmQgY29uZmlndXJpbmcgdGhlIGNvbW1hbmQg bGluZSBpbiB0aGUKICAgZG9tYWluIGNvbmZpZ3VyYXRpb24gZmlsZSksIG9y IHB2Z3J1Yi4KCiAgKGlpKSBydW4KICAgICAgLi9wdnNoaW0tY29udmVydGVy LnBsIC0tc2hpbT0vdXNyL2xpYi94ZW4vYm9vdC94ZW4tdml4ZW4uZ3ogL2V0 Yy94ZW4vR1VFU1QuY2ZnIC9ldGMveGVuL0dVRVNULndpdGgtc2hpbS1jZmcK CiAgKGlpaSkgc2h1dCB0aGUgZ3Vlc3QgZG93biBjbGVhbmx5CgogIChpdikg Y3JlYXRlIHRoZSBndWVzdCB3aXRoIHRoZSBuZXcgY29uZmlnCiAgICAgIHhs IGNyZWF0ZSAvZXRjL3hlbi9HVUVTVC53aXRoLXNoaW0tY2ZnCgogICh2KSBD aGVjayB0aGF0IGl0IGJvb3RzIHByb3Blcmx5LiAgeGwgY29uc29sZSBzaG91 bGQgd29yay4KCiAgKHZpKSBNYWtlIGFycmFuZ2VtZW50cyBzbyB0aGF0IGF1 dG9zdGFydGluZyBvZiB0aGUgZ3Vlc3Qgd2lsbCB1c2UKICAgICB0aGUgbmV3 IGNvbmZpZyBmaWxlIHJhdGhlciB0aGFuIHRoZSBvbGQgb25lCgo= --=separator Content-Type: application/octet-stream; name="xsa254/README.which-shim" Content-Disposition: attachment; filename="xsa254/README.which-shim" Content-Transfer-Encoding: base64 CQkgICBIb3cgdG8gZGVjaWRlIHdoaWNoIHNoaW0gdG8gdXNlCgkJICAgPT09 PT09PT09PT09PT09PT09PT09PT09PT09PT09PQoKQSB3b3JrLWFyb3VuZCB0 byBNZWx0ZG93biAoYWthICJTUDMiIG9yICJWYXJpYW50IDMiKSBvbiBJbnRl bApwcm9jZXNzb3JzIGlzIHRvIHJ1biBndWVzdHMgaW4gSFZNIG9yIFBWSCBt b2RlLgoKTm90ZSB0aGlzIHNoaW0tYmFzZWQgYXBwcm9hY2ggcHJldmVudHMg YXR0YWNrcyBvbiB0aGUgaG9zdCwgYnV0IGxlYXZlcwp0aGUgZ3Vlc3QgdnVs bmVyYWJsZSB0byBNZWx0ZG93biBhdHRhY2tzIGJ5IGl0cyBvd24gdW5wcml2 aWxlZ2VkCnByb2Nlc3NlczsgdGhpcyBpcyB0cnVlIGV2ZW4gaWYgdGhlIGd1 ZXN0IE9TIGhhcyBLUFRJIG9yIHNpbWlsYXIKTWVsdGRvd24gbWl0aWdhdGlv bi4KClNvbWUgZ3Vlc3RzIGFyZSBkaWZmaWN1bHQgdG8gY29udmVydCB0byBy dW5uaW5nIGluIEhWTSBvciBQVkggbW9kZSwKZWl0aGVyIGR1ZSB0byBsYWNr IG9mIHBhcnRpdGlvbmluZyAvIE1CUiwgb3IgZHVlIHRvIGtlcm5lbApjb21w YXRpYmlsaXRpZXMuICBBcyBhbiBlbWVyZ2VuY3kgYmFja3N0b3AsIHRoZXJl IGFyZSB0d28gYXBwcm9hY2hlcywKd2hpY2ggd2UndmUgY29kZW5hbWVkICJW aXhlbiIgYW5kICJDb21ldCIuICBCb3RoIGludm9sdmUgcnVubmluZyBhbgpl bWJlZGRlZCBjb3B5IG9mIFhlbiAoY2FsbGVkIGEgInNoaW0iKSB3aXRoaW4g dGhlIEhWTSBvciBQVkggZ3Vlc3QgdG8KcHJvdmlkZSB0aGUgbmF0aXZlIFBW IGludGVyZmFjZS4KCkJlbG93IGRlc2NyaWJlcyB0aGUgcHJvcGVydGllcywg YW5kIHdobyBtaWdodCB3YW50IHRvIHVzZSBlYWNoIG9uZS4KCk5PVEU6IEJv dGggc2hpbXMgcmVxdWlyZSBob3N0IHBhdGNoZXMgdG8gYm9vdCBvbiBBTUQg aG9zdHMuICBUaGlzCnNob3VsZG4ndCBiZSBhbiBpc3N1ZSwgYXMgU1AzIGRv ZXMgbm90IGFmZmVjdCBzeXN0ZW1zIHJ1bm5pbmcgb24gQU1ELgoKVml4ZW4K LS0tLS0KClZpeGVuIGhhcyB0aGUgZm9sbG93aW5nIHByb3BlcnRpZXM6CiAq IFJ1bnMgdGhlIHNoaW0gaW4gYW4gSFZNIGd1ZXN0LgogKiBJdCByZXF1aXJl cyBubyBoeXBlcnZpc29yIG9yIHRvb2xzdGFjayBjaGFuZ2VzLCBub3IgZG9l cyBpdCByZXF1aXJlCiAgIGEgaG9zdCByZWJvb3QuCiAqIEl0IGhhcyBiZWVu IGV4dGVuc2l2ZWx5IHRlc3RlZCBpbiBBbWF6b24ncyBkZXBsb3ltZW50IGZv ciB2ZXJzaW9ucwogICBvZiBYZW4gZ29pbmcgYmFjayB0byAzLjQKICogR3Vl c3QgcmVib290cyBhcmUgcmVxdWlyZWQKICogR3Vlc3QgY29uZmlncyBtdXN0 IGJlIGZlZCB0aHJvdWdoIGEgY29udmVydGVyIHByb2dyYW0KICogVGhlIGNv bnZlcnRlciBwcm9ncmFtIHNwaXRzIG91dCBhIHNtYWxsIGd1ZXN0LXNwZWNp ZmljIC5pc28KICAgaW1hZ2UgKHdlIGNhbGwgdGhpcyBhICJzaWRlY2FyIikg dXNlZCBmb3IgYm9vdGluZwogKiBCZWNhdXNlIHRoZSByZXN1bHQgaXMgYW4g SFZNIGd1ZXN0LCB0aGlzIGFwcHJvYWNoIGludm9sdmVzCiAgIHJ1bm5pbmcg cWVtdSBhcyBhIFBDIGVtdWxhdG9yICh0aGlzIGlzIGRvbmUgYXV0b21hdGlj YWxseSkKICogU29tZSBjb21tb24gZmVhdHVyZXMgYXJlIG5vdCBzdXBwb3J0 ZWQ6CiAgLSBCYWxsb29uaW5nCiAgLSBNaWdyYXRpb24KICAtIHZjcHUgaG90 cGx1ZwogIC0gYmlkaXJlY3Rpb25hbCBjb25zb2xlIHN1cHBvcnQgKGNvbnNv bGUgaXMgd3JpdGUtb25seSkKICogRGlyZWN0LWJvb3Qga2VybmVscyBhbmQg cHZncnViIChib3RoIHB2Z3J1YjEgYW5kIHB2Z3J1YjIpIGFyZQogICBzdXBw b3J0ZWQgYnkgdGhlIGNvbnZlcnNpb24gcHJvZ3JhbS4gICdweWdydWInIGlz IG5vdCBzdXBwb3J0ZWQuCiAqIHhsIGFuZCB4bSBkb21haW4gY29uZmlncyBj YW4gYmUgY29udmVydGVkOyBsaWJ2aXJ0IGRvbWFpbgogICBjb25maWd1cmF0 aW9uIGFycmFuZ2VtZW50cyBhcmUgbm90IHN1cHBvcnRlZC4KICogR3Vlc3Qg dXNlcnNwYWNlIGNhbiByZWFkIGFsbCBvZiBndWVzdCBtZW1vcnksIHdpdGhp biBlYWNoIGd1ZXN0LAogICBhbmQgYSBndWVzdCBtaWdpdGF0aW9uIGZvciB0 aGlzIGlzIG5vdCBwb3NzaWJsZS4KCllvdSBtaWdodCBjb25zaWRlciB0aGlz IGFwcHJvYWNoIGlmOgotIFlvdSB3YW50IHRvIGRlcGxveSBhIGZpeCBpbW1l ZGlhdGVseQotIFlvdSBjYW4gdG9sZXJhdGUgdGhlIGxvc3Mgb2Ygd2l0aGlu LWd1ZXN0IHNlY3VyaXR5Ci0gWW91IGNhbid0LCBvciB3b3VsZCBsaWtlIHRv IGF2b2lkLCB1cGRhdGluZyB0byBYZW4gNC44IG9yIG5ld2VyCi0gWW91J2Qg bGlrZSB0byBhdm9pZCBwYXRjaGluZyBhbmQgcmVib290aW5nIHlvdXIgaG9z dAotIFlvdSBhcmUgYWJsZSB0bzoKIC0gUnVuIGEgc2NyaXB0IHRvIG1vZGlm eSBlYWNoIGRvbWFpbiBjb25maWcKIC0gQWZmb3JkIGFuIGV4dHJhIDgwTWlC IHBlciBndWVzdAogLSBUb2xlcmF0ZSBoYXZpbmcgYW4gZXh0cmEgUUVNVSBh cm91bmQKLSBZb3UgZG9uJ3QgbmVlZCBtaWdyYXRpb24sIG1lbW9yeSBiYWxs b29uaW5nLCB2Y3B1IGhvdHBsdWcsCiAgb3IgYSBiaS1kaXJlY3Rpb25hbCBj b25zb2xlCgpUbyB1c2UgdGhpcyBzb2x1dGlvbiwgc2VlIFJFQURNRS52aXhl bi4KCkJpLWRpcmVjdGlvbmFsIGNvbnNvbGUgaXMgYXZhaWxhYmxlIGFzIGFu IGV4dHJhIHBhdGNoLCBidXQgaGFzbid0IGJlZW4Kd2lkZWx5IHRlc3RlZDoK Cm1hcmMuaW5mby8/aT08MTUxNTYwNDU1Mi05MjA1LTEtZ2l0LXNlbmQtZW1h aWwtc3JuQHByZ21yLmNvbT4KCkNvbWV0Ci0tLS0tCgpDb21ldCBoYXMgdGhl IGZvbGxvd2luZyBwcm9wZXJ0aWVzOgogKiBSdW5zIHRoZSBzaGltIGluIGEg UFZIIGd1ZXN0LgogKiBQVkggbW9kZSBpcyBhdmFpbGFibGUgaW4gWGVuIDQu MTAsIGFuZCB3aWxsIGJlIGJhY2twb3J0ZWQgdG8gWGVuCiAgIDQuOSBhbmQg NC44IGJ1dCBubyBmYXJ0aGVyCiAqIFJlcXVpcmVzIGhvc3QgaHlwZXJ2aXNv ciBhbmQgdG9vbHN0YWNrIHBhdGNoZXMgKGFuZCBob3N0IHJlYm9vdCksCiAg IGV2ZW4gZm9yIFhlbiA0LjEwCiAqIFJlcXVpcmVzIG1pbmltYWwgZ3Vlc3Qg Y29uZmlnIGNoYW5nZXMsIGFuZCBubyAic2lkZWNhciIKICogQm9vdGxvYWRp bmcgaXMgaWRlbnRpY2FsIHRvIG5hdGl2ZSBQViBndWVzdHM7IGRpcmVjdC1i b290LCBwdmdydWIsCiAgIGFuZCBweWdydWIgYWxsIHdvcmsgZXF1YWxseSB3 ZWxsCiAqIEJlY2F1c2UgdGhlIHJlc3VsdCBpcyBhIFBWSCBndWVzdCwgdGhp cyBhcHByb2FjaCBpbnZvbHZlcyBubyBQQyBlbXVsYXRvci4KICogVGhlIGZv bGxvd2luZyBmZWF0dXJlcyBub3QgYXZhaWxhYmxlIGluIFZpeGVuIGFyZSBz dXBwb3J0ZWQ6CiAgLSBNZW1vcnkgYmFsbG9vbmluZwogIC0gR3Vlc3QgbWln cmF0aW9uCiAgLSB2Y3B1IGhvdHBsdWcKICAtIGJpZGlyZWN0aW9uYWwgY29u c29sZSBzdXBwb3J0CiAqIEd1ZXN0IHVzZXJzcGFjZSBjYW4gcmVhZCBhbGwg b2YgZ3Vlc3QgbWVtb3J5LCB3aXRoaW4gZWFjaCBndWVzdCwKICAgYW5kIGEg Z3Vlc3QgbWlnaXRhdGlvbiBmb3IgdGhpcyBpcyBub3QgcG9zc2libGUuCgpZ b3UgbWlnaHQgY29uc2lkZXIgdGhpcyBhcHByb2FjaCBpZjoKLSBZb3UncmUg b24gNC44IG9yIGxhdGVyIGFscmVhZHkKLSBZb3UgY2FuIHRvbGVyYXRlIHRo ZSBsb3NzIG9mIHdpdGhpbi1ndWVzdCBzZWN1cml0eQotIFlvdSBjYW4gcGF0 Y2ggYW5kIHJlYm9vdCB5b3VyIGhvc3QKLSBZb3UgZG9uJ3Qgd2FudCBhbiBl eHRyYSBRRU1VIGFyb3VuZAotIFlvdSBuZWVkIG1pZ3JhdGlvbiwgbWVtb3J5 IGJhbGxvb25pbmcsIG9yIHZjcHUgaG90cGx1Zywgb3IgYQogIGJpZGlyZWN0 aW9uYWwgY29uc29sZQotIFlvdSBuZWVkIHB5Z3J1YgotIFlvdSBuZWVkIHRv IHVzZSBsaWJ2aXJ0CgpBdCB0aGUgbW9tZW50LCBDb21ldCBpcyBhdmFpbGFi bGUgZm9yIDQuMTAuICAgV2UgZXhwZWN0IHRvIGhhdmUKYmFja3BvcnRzIHRv IDQuOCBhbmQgNC44IGF2YWlsYWJsZSB3aXRoaW4gYSBmZXcgd29ya2luZyBk YXlzLgo= --=separator Content-Type: application/octet-stream; name="xsa254/pvshim-converter.pl" Content-Disposition: attachment; filename="xsa254/pvshim-converter.pl" Content-Transfer-Encoding: base64 IyEvdXNyL2Jpbi9wZXJsIC13CiMKIyB1c2FnZToKIyAgIHB2c2hpbS1jb252 ZXJ0ZXIgW09QVElPTlNdIE9MRC1DT05GSUcgTkVXLUNPTkZJRwojCiMgb3B0 aW9uczoKIyAgIC0tcWVtdSBQQVRILVRPLVFFTVUgICAgICAgIGZpbGVuYW1l IG9mIHFlbXUtc3lzdGVtLWkzODYKIyAgIC0tc2lkZWNhcnMtZGlyZWN0b3J5 IERJUiAgIGRlZmF1bHQgaXMgL3Zhci9saWIveGVuL3B2c2hpbS1zaWRlY2Fy cwojICAgLS1zaGltIFNISU0gICAgICAgICAgICAgICAgb3ZlcnJpZGVzIGRv bWFpbiBjb25maWcgZmlsZQojICAgLS1kZWJ1ZyAgICAgICAgICAgICAgICAg ICAgdmVyYm9zZSwgYW5kIGxlYXZlcyBzaWRlY2FyIHByZXAgZGlyIGFyb3Vu ZAojCiMgV2hhdCB3ZSBkbwojCiMgIHJlYWQgZXhpc3RpbmcgY29uZmlnIGZp bGUgdXNpbmcgcHl0aG9uCiMgIGRldGVybWluZSBrZXJuZWwsIHJhbWRpc2sg YW5kIGNtZGxpbmUKIyAgdXNlIHRoZW0gdG8gcHJvZHVjZSBzaWRlY2FyIGFu ZCBzYXZlIGl0IHVuZGVyIGRvbWFpbiBuYW1lCiMgIG1lc3Mgd2l0aCB0aGUg dGhpbmdzIHRoYXQgbmVlZCB0byBiZSBtZXNzZWQgd2l0aAojICBzcGl0IG91 dCBuZXcgY29uZmlnIGZpbGUKCnVzZSBzdHJpY3Q7Cgp1c2UgR2V0b3B0OjpM b25nOwp1c2UgSlNPTjsKdXNlIElPOjpIYW5kbGU7CnVzZSBQT1NJWDsKdXNl IEZjbnRsIHF3KDpmbG9jayk7CgpvdXIgJGRlYnVnOwoKc3ViIHJ1bmNtZCB7 CiAgICBwcmludCBTVERFUlIgIisgQF9cbiIgaWYgJGRlYnVnOwogICAgJCE9 MDsgJD89MDsgc3lzdGVtIEBfIGFuZCBkaWUgIiRfWzBdOiAkISAkPyI7Cn0K Cm91ciAkcWVtdTsKb3VyICRzaGltOwpvdXIgJHNpZGVjYXJzX2RpciA9ICcv dmFyL2xpYi94ZW4vcHZzaGltLXNpZGVjYXJzJzsKCkdldE9wdGlvbnMoJ3Fl bXU9cycgPT4gXCRxZW11LAogICAgICAgICAgICdzaWRlY2Fycy1kaXJlY3Rv cnk9cycgPT4gXCRzaWRlY2Fyc19kaXIsCiAgICAgICAgICAgJ3NoaW09cycg PT4gXCRzaGltLAogICAgICAgICAgICdkZWJ1ZycgPT4gXCRkZWJ1ZykKICAg IG9yIGRpZSAicHZzaGltLWNvbnZlcnRlcjogYmFkIG9wdGlvbnNcbiI7CgpA QVJHVj09MiBvciBkaWUgInB2c2hpbS1jb252ZXJ0ZXI6IG5lZWQgb2xkIGFu ZCBuZXcgY29uZmlnIGZpbGVuYW1lcyI7CgpvdXIgKCRpbiwkb3V0KSA9IEBB UkdWOwoKb3VyICRpbmRhdGE7CgppZiAoJGluIG5lICctJykgewogICAgb3Bl biBJLCAnPCcsICIkaW4iIG9yIGRpZSAib3BlbiBpbnB1dCBjb25maWcgZmls ZTogJCFcbiI7Cn0gZWxzZSB7CiAgICBvcGVuIEksICc8JlNURElOJyBvciBk aWUgJCE7Cn0KewogICAgbG9jYWwgJC87CiAgICAkaW5kYXRhID0gPEk+Owp9 CkktPmVycm9yIGFuZCBkaWUgJCE7CmNsb3NlIEk7CgpvcGVuIFAsICItfCIs IHF3KHB5dGhvbjIgLWMpLCA8PEVORCwgJGluZGF0YSBvciBkaWUgJCE7Cmlt cG9ydCBzeXMKaW1wb3J0IGpzb24KbCA9IHt9CmV4ZWMgc3lzLmFyZ3ZbMV0g aW4gbApmb3IgayBpbiBsLmtleXMoKToKCWlmIGsuc3RhcnRzd2l0aCgiXyIp OgoJCWRlbCBsW2tdCnByaW50IGpzb24uZHVtcHMobCkKRU5ECgpvdXIgJGM7 Cgp7CiAgICBsb2NhbCAkLzsKICAgICRfID0gPFA+OwogICAgJCE9MDsgJD89 MDsgY2xvc2UgUCBvciBkaWUgIiQhICQ/IjsKICAgICRjID0gZGVjb2RlX2pz b24gJF87Cn0KCmRpZSAibm8gZG9tYWluIG5hbWUgPyIgdW5sZXNzIGV4aXN0 cyAkYy0+e25hbWV9OwpkaWUgImJvb3Rsb2FkZXIgbm90IHlldCBzdXBwb3J0 ZWQiIGlmICRjLT57Ym9vdGxvYWRlcn07CmRpZSAibm8ga2VybmVsIiB1bmxl c3MgJGMtPntrZXJuZWx9OwoKb3VyICRzaWRlY2FyID0gJGMtPntwdnNoaW1f c2lkZWNhcl9wYXRofSB8fCAiJHNpZGVjYXJzX2Rpci8kYy0+e25hbWV9Lmlz byI7Cm91ciAkZG13cmFwID0gJGMtPntwdnNoaW1fc2lkZWNhcl9wYXRofSB8 fCAiJHNpZGVjYXJzX2Rpci8kYy0+e25hbWV9LmRtIjsKCiRzaGltIHx8PSAk Yy0+e3B2c2hpbV9wYXRofTsKJHNoaW0gfHw9ICcvdXNyL2xvY2FsL2xpYi94 ZW4vYm9vdC94ZW4tc2hpbSc7CgpvdXIgJHNoaW1fY21kbGluZSA9ICRjLT57 cHZzaGltX2NtZGxpbmV9IHx8ICdjb25zb2xlPWNvbTEgY29tMT0xMTUyMDBu MSc7CiRzaGltX2NtZGxpbmUgLj0gJyAnLiRjLT57cHZzaGltX2V4dHJhfSBp ZiAkYy0+e3B2c2hpbV9leHRyYX07CgpvdXIgJGtlcm5lbF9jbWRsaW5lID0g JGMtPntjbWRsaW5lfSB8fCAnJzsKJGtlcm5lbF9jbWRsaW5lIC49ICcgcm9v dD0nLiRjLT57cm9vdH0gaWYgJGMtPntyb290fTsKJGtlcm5lbF9jbWRsaW5l IC49ICcgJy4kYy0+e2V4dHJhfSBpZiAkYy0+e2V4dHJhfTsKCnByaW50ICJw dnNoaW0tY29udmVydGVyOiBjcmVhdGluZyBzaWRlY2FyIGluICRzaWRlY2Fy XG4iOwoKcnVuY21kIHF3KG1rZGlyIC1tNzAwIC1wIC0tKSwgJHNpZGVjYXJz X2RpcjsKCm9wZW4gTCwgIj4iLCAiJHNpZGVjYXIubG9jayIgb3IgZGllICIk c2lkZWNhci5sb2NrOiBvcGVuICQhIjsKZmxvY2sgTCwgTE9DS19FWCBvciBk aWUgIiRzaWRlY2FyLmxvY2s6IGxvY2s6ICQhIjsKCm15ICRzZCA9ICIkc2lk ZWNhci5kaXIiOwoKc3lzdGVtIHF3KHJtIC1yZiAtLSksICRzZDsKbWtkaXIg JHNkLCAwNzAwOwoKcnVuY21kIHF3KGNwIC0tKSwgJHNoaW0sICIkc2Qvc2hp bSI7CnJ1bmNtZCBxdyhjcCAtLSksICRjLT57a2VybmVsfSwgIiRzZC9rZXJu ZWwiOwpydW5jbWQgcXcoY3AgLS0pLCAkYy0+e3JhbWRpc2t9LCAiJHNkL3Jh bWRpc2siIGlmICRjLT57cmFtZGlza307CgpteSAkZ3J1YmNmZyA9IDw8RU5E OwpzZXJpYWwgLS11bml0PTAgLS1zcGVlZD05NjAwIC0td29yZD04IC0tcGFy aXR5PW5vIC0tc3RvcD0xCnRlcm1pbmFsX2lucHV0IHNlcmlhbAp0ZXJtaW5h bF9vdXRwdXQgc2VyaWFsCgpzZXQgdGltZW91dD0wCgptZW51ZW50cnkgJ1hl biBzaGltJyB7CglpbnNtb2QgZ3ppbwoJaW5zbW9kIHh6aW8KICAgICAgICBt dWx0aWJvb3QgKGNkKS9zaGltIHBsYWNlaG9sZGVyICRzaGltX2NtZGxpbmUK ICAgICAgICBtb2R1bGUgKGNkKS9rZXJuZWwgcGxhY2Vob2xkZXIgJGtlcm5l bF9jbWRsaW5lCiAgICAgICAgbW9kdWxlIChjZCkvcmFtZGlzawp9CkVORAoK cnVuY21kIHF3KG1rZGlyIC1wIC0tKSwgIiRzZC9ib290L2dydWIiOwpvcGVu IEcsICI+IiwgIiRzZC9ib290L2dydWIvZ3J1Yi5jZmciIG9yIGRpZSAiJHNk LCBncnViLmNmZzogJCEiOwpwcmludCBHICRncnViY2ZnIG9yIGRpZSAkITsK Y2xvc2UgRyBvciBkaWUgJCE7Cgp1bmxpbmsgIiRzaWRlY2FyLm5ldyIgb3Ig JCE9PUVOT0VOVCBvciBkaWUgIiRzaWRlY2FyLm5ldzogcm06ICQhIjsKcnVu Y21kIHF3KGdydWItbWtyZXNjdWUgLW8pLCAiJHNpZGVjYXIubmV3IiwgIiRz aWRlY2FyLmRpciI7CmlmICghc3RhdCAiJHNpZGVjYXIubmV3IikgewogICAg JCE9PUVOT0VOVCBvciBkaWUgIiRzaWRlY2FyLm5ldzogc3RhdDogJCEiOwoK ICAgIHByaW50IFNUREVSUiA8PEVORDsKcHZzaGltLWNvbnZlcnRlcjogZ3J1 Yi1ta3Jlc2N1ZSBleGl0ZWQgd2l0aCBzdGF0dXMgemVybyBidXQgZmFpbGVk IHRvIG1ha2UgaXNvLgpOQiB0aGF0IGdydWItbWtyZXNjdWUgaGFzIGEgdGVu ZGVuY3kgdG8gbGllIGluIGl0cyBlcnJvciBtZXNzYWdlcy4KRU5ECiAgICBt eSAkbWlzc2luZzsKICAgIGZvcmVhY2ggbXkgJGNoZWNrIChxdyh4b3JyaXNv IG1mb3JtYXQpKSB7CiAgICAgICAgJG1pc3NpbmcgfD0gc3lzdGVtIHF3KHNo IC1jKSwgInR5cGUgJGNoZWNrIjsKICAgIH0KCiAgICBpZiAoJG1pc3Npbmcp IHsKICAgICAgICBwcmludCBTVERFUlIgPDxFTkQ7CllvdSBzZWVtIHRvIGhh dmUgc29tZSBwcm9ncmFtKHMpIG1pc3Npbmcgd2hpY2ggZ3J1Yi1ta3Jlc2N1 ZSBkZXBlbmRzIG9uLApzZWUgYWJvdmUuICAoIm1mb3JtYXQiIGlzIG5vcm1h bGx5IGluIHRoZSBwYWNrYWdlICJtdG9vbHMiLikKSW5zdGFsbGluZyB0aG9z ZSBwcm9ncmFtcyB3aWxsIHByb2JhYmx5IGhlbHAuCkVORAogICAgfSBlbHNl IHsKICAgICAgICBwcmludCBTVERFUlIgPDxFTkQ7CkFuZCBvbGRlciBncnVi LW1rcmVzY3VlIGhhcyBhIHRlbmRlbmN5IG5vdCB0byBub3RpY2UgY2VydGFp biBwcm9ibGVtcy4KTWF5YmUgc3RyYWNlIHdpbGwgdGVsbCB5b3Ugd2hhdCBp cyB3cm9uZy4gIDotLwpFTkQKICAgIH0KICAgIGRpZSAicHZzaGltLWNvbnZl cnRlcjogZ3J1Yi1ta3Jlc2N1ZSBkaWQgbm90IG1ha2UgaXNvXG4iOwp9Cgpy dW5jbWQgcXcocm0gLXJmIC0tKSwgIiRzaWRlY2FyLmRpciIgdW5sZXNzICRk ZWJ1ZzsKCm9wZW4gUSwgIj4iLCAiJGRtd3JhcC5uZXciIG9yIGRpZSAiJGRt d3JhcDogJCEiOwpwcmludCBRIDw8J0VORF9ETVdSQVAnIG9yIGRpZSAkITsK IyEvYmluL2Jhc2gKCnNldCAteAo6ICIkQCIKc2V0ICt4CgpuZXdhcmdzPSgp CgpuZXdhcmcgKCkgewogICAgbmV3YXJncys9KCIkMSIpCn0KCndoaWxlIFsg JCMgLWd0IDEgXTsgZG8KICAgIGNhc2UgIiQxIiBpbgoJLW5vLXNodXRkb3du fC1ub2RlZmF1bHRzfC1uby11c2VyLWNvbmZpZykKCSAgICBuZXdhcmcgIiQx Ijsgc2hpZnQKCSAgICA7OwoJLXhlbi1kb21pZHwtY2hhcmRldnwtbW9ufC1k aXNwbGF5fC1ib290fC1tfC1tYWNoaW5lKQoJICAgIG5ld2FyZyAiJDEiOyBz aGlmdAoJICAgIG5ld2FyZyAiJDEiOyBzaGlmdAoJICAgIDs7CiAgICAgICAg LW5hbWUpCiAgICAgICAgICAgIG5ld2FyZyAiJDEiOyBzaGlmdAogICAgICAg ICAgICBuYW1lPSIkMSI7IHNoaWZ0CiAgICAgICAgICAgIG5ld2FyZyAiJG5h bWUiCiAgICAgICAgICAgIDs7CgktbmV0ZGV2fC1jZHJvbSkKCSAgICA6IGZp eG1lCgkgICAgbmV3YXJnICIkMSI7IHNoaWZ0CgkgICAgbmV3YXJnICIkMSI7 IHNoaWZ0CgkgICAgOzsKCS1kcml2ZXwta2VybmVsfC1pbml0cmR8LWFwcGVu ZHwtdm5jKQoJICAgIHNoaWZ0OyBzaGlmdAoJICAgIDs7CgktZGV2aWNlKQoJ ICAgIHNoaWZ0CgkgICAgY2FzZSAiJDEiIGluCgkJWFhYcnRsODEzOSopCgkJ ICAgIG5ld2FyZyAiLWRldmljZSIKCQkgICAgbmV3YXJnICIkMSI7IHNoaWZ0 CgkJICAgIDs7CgkJKikKCQkgICAgc2hpZnQKCQkgICAgOzsKCSAgICBlc2Fj CgkgICAgOzsKCSopCgkgICAgZWNobyA+JjIgIndhcm5pbmc6IHVuZXhwZWN0 ZWQgYXJndW1lbnQgJDEgYmVpbmcgcGFzc2VkIHRocm91Z2giCgkgICAgbmV3 YXJnICIkMSI7IHNoaWZ0CgkgICAgOzsKICAgIGVzYWMKZG9uZQoKI2lmIFsg IngkbmFtZSIgIT0geCBdOyB0aGVuCiMgICAgbG9nZGlyPS92YXIvbG9nL3hl bgojICAgIGxvZ2ZpbGU9IiRsb2dkaXIvc2hpbS0kbmFtZS5sb2ciCiMgICAg c2F2ZWxvZyAiJGxvZ2ZpbGUiIHx8OgojICAgIG5ld2FyZyAtc2VyaWFsCiMg ICAgbmV3YXJnICJmaWxlOiRsb2dmaWxlIgojZmkKRU5EX0RNV1JBUAoKaWYg KCRxZW11KSB7CiAgICBwcmludGYgUSA8PCdFTkRfRE1XUkFQJywgJHFlbXUg b3IgZGllICQhOwogICAgZXhlYyAnJXMnICIke25ld2FyZ3NbQF19IgpFTkRf RE1XUkFQCn0gZWxzZSB7CiAgICBwcmludCBRIDw8J0VORF9ETVdSQVAnIG9y IGRpZSAkITsKc2V0IC14CmZvciBwYXRoIGluIC91c3IvbG9jYWwvbGliL3hl bi9iaW4gL3Vzci9saWIveGVuL2JpbiAvdXNyL2xvY2FsL2JpbiAvdXNyL2Jp bjsgZG8KICAgIGlmIHRlc3QgLWUgJHBhdGgvcWVtdS1zeXN0ZW0taTM4Njsg dGhlbgogICAgICAgIGV4ZWMgJHBhdGgvcWVtdS1zeXN0ZW0taTM4NiAiJHtu ZXdhcmdzW0BdfSIKICAgIGZpCmRvbmUKZWNobyA+JjIgJ2NvdWxkIG5vdCBl eGVjIHFlbXUnCmV4aXQgMTI3CkVORF9ETVdSQVAKfQoKY2htb2QgMDc1NSwg IiRkbXdyYXAubmV3IiBvciBkaWUgIiRkbXdyYXA6IGNobW9kOiAkISI7Cgpj bG9zZSBRIG9yIGRpZSAkITsKCnJlbmFtZSAiJHNpZGVjYXIubmV3IiwgJHNp ZGVjYXIgb3IgZGllICIkc2lkZWNhcjogaW5zdGFsbDogJCEiOwpyZW5hbWUg IiRkbXdyYXAubmV3IiwgICRkbXdyYXAgIG9yIGRpZSAiJGRtd3JhcDogaW5z dGFsbDogJCEiOwoKcHJpbnQgU1RERVJSIDw8RU5EOwpwdnNoaW0tY29udmVy dGVyOiB3cm90ZSBxZW11IHdyYXBwZXIgdG8gJGRtd3JhcApwdnNoaW0tY29u dmVydGVyOiB3cm90ZSBzaWRlY2FyIHRvICRzaWRlY2FyCkVORAoKbXkgJGFw cGVuZCA9IDw8RU5EOwpidWlsZGVyPSdodm0nCnR5cGU9J2h2bScKZGV2aWNl X21vZGVsX3ZlcnNpb249J3FlbXUteGVuJwpkZXZpY2VfbW9kZWxfb3ZlcnJp ZGU9JyRkbXdyYXAnCmRldmljZV9tb2RlbF9hcmdzX2h2bT1bJy1jZHJvbScs JyRzaWRlY2FyJ10KYm9vdD0nYycKc2VyaWFsPSdwdHknCkVORAoKaWYgKCRv dXQgbmUgJy0nKSB7CiAgICBvcGVuIE8sICI+IiwgIiRvdXQudG1wIiBvciBk aWUgIm9wZW4gb3V0cHV0IGNvbmZpZyB0ZW1wOiAkb3V0LnRtcDogJCFcbiI7 Cn0gZWxzZSB7CiAgICBvcGVuIE8sICI+JlNURE9VVCIgb3IgZGllICQhOwp9 CgpwcmludCBPICRpbmRhdGEsICJcbiIsICRhcHBlbmQgb3IgZGllICJ3cml0 ZSBvdXRwdXQ6ICQhIjsKY2xvc2UgTyBvciBkaWUgImNsb3NlIG91dHB1dDog JCEiOwoKaWYgKCRvdXQgbmUgJy0nKSB7CiAgICByZW5hbWUgIiRvdXQudG1w IiwgJG91dCBvciBkaWUgImluc3RhbGwgb3V0cHV0OiAkISI7CiAgICBwcmlu dCBTVERFUlIgInB2c2hpbS1jb252ZXJ0ZXI6IHdyb3RlIG5ldyBndWVzdCBj b25maWcgdG8gJG91dFxuIjsKfSBlbHNlIHsKICAgIHByaW50IFNUREVSUiAi cHZzaGltLWNvbnZlcnRlcjogd3JvdGUgbmV3IGd1ZXN0IGNvbmZpZyB0byBz dGRvdXRcbiI7Cn0K --=separator Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: base64 Content-Disposition: inline X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX18KWGVuLWFubm91 bmNlIG1haWxpbmcgbGlzdApYZW4tYW5ub3VuY2VAbGlzdHMueGVucHJvamVjdC5vcmcKaHR0cHM6 Ly9saXN0cy54ZW5wcm9qZWN0Lm9yZy9tYWlsbWFuL2xpc3RpbmZvL3hlbi1hbm5vdW5jZQ== --=separator-- From xen-announce-bounces@lists.xenproject.org Fri Feb 23 19:36:52 2018 Return-path: Envelope-to: archives@lists.xen.org Delivery-date: Fri, 23 Feb 2018 19:36:52 +0000 Received: from localhost ([127.0.0.1] helo=lists.xenproject.org) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1epJ8M-0000kj-0W; Fri, 23 Feb 2018 19:35:54 +0000 Received: from us1-rack-dfw2.inumbo.com ([104.130.134.6]) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1epJ8J-0000k2-UI for xen-announce@lists.xen.org; Fri, 23 Feb 2018 19:35:52 +0000 X-Inumbo-ID: a263190d-18d0-11e8-ba59-bc764e045a96 Received: from mail.xenproject.org (unknown [104.130.215.37]) by us1-rack-dfw2.inumbo.com (Halon) with ESMTPS id a263190d-18d0-11e8-ba59-bc764e045a96; Fri, 23 Feb 2018 20:34:59 +0100 (CET) Received: from xenbits.xenproject.org ([104.239.192.120]) by mail.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1epJ86-0005q6-TS; Fri, 23 Feb 2018 19:35:38 +0000 Received: from iwj by xenbits.xenproject.org with local (Exim 4.84_2) (envelope-from ) id 1epJ86-0004TG-QP; Fri, 23 Feb 2018 19:35:38 +0000 Content-Type: multipart/mixed; boundary="=separator"; charset="utf-8" Content-Transfer-Encoding: binary MIME-Version: 1.0 X-Mailer: MIME-tools 5.505 (Entity 5.505) To: xen-announce@lists.xen.org, xen-devel@lists.xen.org, xen-users@lists.xen.org, oss-security@lists.openwall.com From: Xen.org security team Message-Id: Date: Fri, 23 Feb 2018 19:35:38 +0000 Cc: "Xen.org security team" Subject: [Xen-announce] Xen Security Advisory 254 (CVE-2017-5753, CVE-2017-5715, CVE-2017-5754) - Information leak via side effects of speculative execution X-BeenThere: xen-announce@lists.xenproject.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: "Xen announcements \(low volume\)" List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Errors-To: xen-announce-bounces@lists.xenproject.org Sender: "Xen-announce" --=separator Content-Type: text/plain; charset="utf-8" Content-Disposition: inline Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Xen Security Advisory CVE-2017-5753,CVE-2017-5715,CVE-2017-5754 / XSA-254 version 12 Information leak via side effects of speculative execution UPDATES IN VERSION 12 ===================== Corrections to ARM SP2 information: * ARM 32-bit requires new firmware on some CPUs. * Provide link to the ARM firmware page, accordingly. * ARM 32-bit mitigations are complete for Cortex-A CPUs. We do not have information for other ARM CPUs at this time. ISSUE DESCRIPTION ================= Processors give the illusion of a sequence of instructions executed one-by-one. However, in order to most efficiently use cpu resources, modern superscalar processors actually begin executing many instructions in parallel. In cases where instructions depend on the result of previous instructions or checks which have not yet completed, execution happens based on guesses about what the outcome will be. If the guess is correct, execution has been sped up. If the guess is incorrect, partially-executed instructions are cancelled and architectural state changes (to registers, memory, and so on) reverted; but the whole process is no slower than if no guess had been made at all. This is sometimes called "speculative execution". Unfortunately, although architectural state is rolled back, there are other side effects, such as changes to TLB or cache state, which are not rolled back. These side effects can subsequently be detected by an attacker to determine information about what happened during the speculative execution phase. If an attacker can cause speculative execution to access sensitive memory areas, they may be able to infer what that sensitive memory contained. Furthermore, these guesses can often be 'poisoned', such that attacker can cause logic to reliably 'guess' the way the attacker chooses. This advisory discusses three ways to cause speculative execution to access sensitive memory areas (named here according to the discoverer's naming scheme): "Bounds-check bypass" (aka SP1, "Variant 1", Spectre CVE-2017-5753): Poison the branch predictor, such that victim code is speculatively executed past boundary and security checks. This would allow an attacker to, for instance, cause speculative code in the normal hypercall / emulation path to execute with wild array indexes. "Branch Target Injection" (aka SP2, "Variant 2", Spectre CVE-2017-5715): Poison the branch predictor. Well-abstracted code often involves calling function pointers via indirect branches; reading these function pointers may involve a (slow) memory access, so the CPU attempts to guess where indirect branches will lead. Poisoning this enables an attacker to speculatively branch to any code that is executable by the victim (eg, anywhere in the hypervisor). "Rogue Data Load" (aka SP3, "Variant 3", Meltdown, CVE-2017-5754): On some processors, certain pagetable permission checks only happen when the instruction is retired; effectively meaning that speculative execution is not subject to pagetable permission checks. On such processors, an attacker can speculatively execute arbitrary code in userspace with, effectively, the highest privilege level. More information is available here: https://meltdownattack.com/ https://spectreattack.com/ https://googleprojectzero.blogspot.co.uk/2018/01/reading-privileged-memory-with-side.html Additional Xen-specific background: Xen hypervisors on most systems map all of physical RAM, so code speculatively executed in a hypervisor context can read all of system RAM. When running PV guests, the guest and the hypervisor share the address space; guest kernels run in a lower privilege level, and Xen runs in the highest privilege level. (x86 HVM and PVH guests, and ARM guests, run in a separate address space to the hypervisor.) However, only 64-bit PV guests can generate addresses large enough to point to hypervisor memory. IMPACT ====== Xen guests may be able to infer the contents of arbitrary host memory, including memory assigned to other guests. An attacker's choice of code to speculatively execute (and thus the ease of extracting useful information) goes up with the numbers. For SP1, an attacker is limited to windows of code after bound checks of user-supplied indexes. For SP2, the attacker will in many cases will be limited to executing arbitrary pre-existing code inside of Xen. For SP3 (and other cases for SP2), an attacker can write arbitrary code to speculatively execute. Additionally, in general, attacks within a guest (from guest user to guest kernel) will be the same as on real hardware. Consult your operating system provider for more information. NOTE ON TIMING ============== This vulnerability was originally scheduled to be made public on 9 January. It was accelerated at the request of the discloser due to one of the issues being made public. VULNERABLE SYSTEMS ================== Systems running all versions of Xen are affected. For SP1 and SP2, both Intel and AMD are vulnerable. Vulnerability of ARM processors to SP1 and SP2 varies by model and manufacturer. ARM has information on affected models on the following website: https://developer.arm.com/support/security-update For SP3, only Intel processors are vulnerable. (The hypervisor cannot be attacked using SP3 on any ARM processors, even those that are listed as affected by SP3.) Furthermore, only 64-bit PV guests can exploit SP3 against Xen. PVH, HVM, and 32-bit PV guests cannot exploit SP3. MITIGATION ========== There is no mitigation for SP1. SP2 can be mitigated by a combination of new microcode and compiler and hypervisor changes. See Resolution below. SP3 can be mitigated by page-table isolation ("PTI"). See Resolution below. SP3 can, alternatively, be mitigated by running guests in HVM or PVH mode. (Within-guest attacks are still possible unless the guest OS has also been updated with an SP3 mitigation series such as KPTI/Kaiser.) For guests with legacy PV kernels which cannot be run in HVM or PVH mode directly, we have developed two "shim" hypervisors that allow PV guests to run in HVM mode or PVH mode. This prevents attacks on the host, but it leaves the guest vulnerable to Meltdown attacks by its own unprivileged processes, even if the guest OS has KPTI or similar Meltdown mitigation. The HVM shim (codenamed "Vixen") is available now, as is the PVH shim (codenamed "Comet") for Xen 4.10 and Xen 4.8. Please read README.which-shim to determine which shim is suitable for you. RESOLUTION ========== These are hardware bugs, so technically speaking they cannot be properly fixed in software. However, it is possible in many cases to provide patches to software to work around the problems. There is no available resolution for SP1. A solution may be available in the future. SP2 can be mitigated on x86 by combinations of new CPU microcode and new hypervisor code. The required hypervisor changes for Xen 4.6, 4.7, 4.8, 4.9 and 4.10 are detailed in the attached README.bti. For AMD hardware, and for Intel hardware pre-dating the Skylake microarchitecture, the hypervisor changes alone are sufficient to mitigate the issue for Xen itself. No microcode updates are required. For the Intel Skylake microarchitecture the hypervisor changes are insufficient to protect Xen without appropriate new microcode. Microcode updates are required in any event to guard against one guest attacking another. Consult Intel, your hardware vendor, or your dom0 OS distributor for the microcode updates. Additionally, compiler support for `indirect thunk' is required. Again, without appropriate compiler support, the hypervisor patches are insufficient. Consult your compiler distributor. SP2 is mitigated on ARM 32-bit by a set of changes to the hypervisor; on some processors, in combination with new firmware. SP2 can be mitigated on ARM 64-bit (aarch64) by a combination of new PSCI firmware and new hypervisor code. The required hypervisor changes for Xen 4.6, 4.7, 4.8, 4.9 and 4.10 are detailed in the attached README.bti. For ARM 32-bit these changes are complete for Cortex-A processors. For other processors, please contact the vendor for information. For ARM 64-bit the hypervisor changes are still in development and are expected to be available soon. SP3 can be mitigated by page-table isolation ("PTI"). We have a "stage 1" implementation. It allows 64-bit PV guests to be run natively while restricting what can be accessed via SP3 to the Xen stack of the current pcpu (which may contain remnants of information from other guests, but should be much more difficult to attack reliably). Unfortunately these "stage 1" patches incur a non-negligible performance overhead; about equivalent to the "PV shim" approaches above. Moving to plain HVM or PVH guests is recommended where possible. For more information on that, see below. Patches for the "stage-1" PTI implementation are available in the Xen staging-NN branches for each Xen revision. See README.pti for specific revisons. SP3 MITIGATION OPTIONS SUMMARY TABLE FOR 64-bit X86 PV GUESTS ============================================================= Everything in this section applies to 64-bit PV x86 guests only. Xen PTI Use PVH Use HVM PVH shim HVM shim "stage 1" "Comet" "Vixen" How to use README.pti type="pvh" type="hvm" README.comet README.vixen Guest All Linux 4.11+ Most[4] All All support ?unikernels?[3] Xen 4.6+ 4.10+ All 4.10, 4.8 All versions 4.8-comet[1] Testing Limited 4.10: Good Very good Moderate Very good status Very new 4.8: Moderate Performance Fair Excellent Varies[4] Fair Fair Hypervisor Needed No need No need No need No need changes SP3 guest Substantially Protected Protected Protected Protected to host protected SP3 within Protected Guest Guest Vulnerable Vulnerable guest patches patches [5] [5] SP3 from Protected n/a; vuln. n/a; vuln. n/a; vuln. n/a; vuln. dom0 user [9] [9] [9] [9] Device model No dm No dm Qemu No dm Qemu Config change None type="pvh" type="hvm"/ type="pvh" Tool to rewrite builder="hvm" pvshim=1 Needs "sidecar" Within-guest None Should be Disks+net None None changes? none may change CPU hw virt Not needed Needed Needed Needed Needed feature (VT-x) Extra RAM use V. slight None ~9Mb/guest >=~20Mb/guest >=~29Mb/guest Migration OK OK OK[4] OK Unsupported[2] Guest mem adj OK OK OK Broken[2] Unsupported[2] vcpu hotplug OK OK OK OK Unsupported[2] Solution Indefinite Indefinite Indefinite Indefinite Limited lifetime [7] [6] [1] PVH is supported in Xen 4.8 only with the 4.8 "Comet" security release branch. [2] Some features in PVH/HVM shim guests are not inherently broken, but buggy in the currently available versions. These may be fixed in future proper releases of the same feature. [3] Most unikernels have Xen support based on a version of mini-os. mini-os master can boot PVH. But this is very recent. [4] Some guests which have support for Xen PV fail to boot properly in Xen HVM. Some such guests can made to boot HVM by disabling the PV-on-HVM support entirely in the guest or in Xen; in that case the guest may work but IO performance will be poor. Some PV-supporting guests can boot as HVM, with PV drivers, but fail when migrated. [5] The Comet and Vixen shim hypervisors direct-map all of their "physical" memory, and that direct-map can be accessed using Meltdown by unprivileged processes in the guest. So the guest is vulnerable to within-guest Meltdown attacks and the guest operating system cannot protect itself. [6] "Vixen" HVM shim is not expected to be incorporated in future Xen stable releases. At some point, support for it will be withdrawn. However, HVM shim functionality may be available in a future Xen 4.10 stable point release and would then probably be useable with the existing conversion script provided in this advisory. [7] The lifetime of the special Comet branches is limited, but we will not desupport them until some time after the same functionality is in appropriate Xen stable point releases. [8] The 64-bit x86 PV guest ABI precludes a guest from mapping its kernel and userspace in the same address space. So these guests are inherently immune to within-guest Meltdown attacks, without within-guest patching. (This applies to 64-bit x86 PV guests only.) [9] It is not possible to run dom0 as HVM. dom0 PVH is a planned enhancement which is not yet available even in preview form. ATTACHMENTS =========== $ sha256sum xsa254*/* c5f2d8f87169edc9be890416a4d261cfc11d9f8d898d83a8922360b210676015 xsa254/README.bti 1cba14ff83844d001d6c8a74afc3f764f49182cc7a06bb4463548450ac96cc2f xsa254/README.comet 208453583ee3c7bb427aa2f70fc5fdc687ba084341129624e511eb6c064fb801 xsa254/README.pti 3ef42381879befc84aa78b67d3a9b7b0cd862a2ffa445810466e90be6c6a5e86 xsa254/README.vixen 7e816160c1c1d1cd93ec3c3dd9753c8f3957fefe86b7aa967e9e77833828f849 xsa254/README.which-shim 1d2098ad3890a5be49444560406f8f271c716e9f80e7dfe11ff5c818277f33f8 xsa254/pvshim-converter.pl $ NOTE ON LACK OF EMBARGO ======================= The timetable and process were set by the discloser. After the intensive initial response period for these vulnerabilities is over, we will prepare and publish a full timeline, as we have done in a handful of other cases of significant public interest where we saw opportunities for process improvement. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQEcBAEBCAAGBQJakG0FAAoJEIP+FMlX6CvZDR0H/0P2j85tnOXt1ipeT7UUVY8P 0bkWJ1OhKcSZFwPkuybK0xcfsyyPYX8HjFcRlacPgq8r6AY16RIh/ZpAhC2F6DJu UrFhMVW9bdApBNaKMDo1/QCcLnloOcEXx65+Nn29qTX+IKdkdlzUTLpjZRianMPQ AJnSumiP1RXyi/FDWbNfxlChHonCIEwYurA8z9KIqq3qeGF1tT7BB+oSFvHoICoX Q0CX3StuHMFK53X+BKbvJy62MOjJIHRWx8lBBF/VQxfFQp3LPjGALeSBhn1BlZUF KpXguxQAici4mj9yM7LUZ9lV2OrCQLTiWwSMAMOvjs5eHSS3tU2CZvJ+Xg711ZM= =Kl89 -----END PGP SIGNATURE----- --=separator Content-Type: application/octet-stream; name="xsa254/README.bti" Content-Disposition: attachment; filename="xsa254/README.bti" Content-Transfer-Encoding: base64 ICAgICAgICAgICAgICAgICAgICAgIEJyYW5jaCBUYXJnZXQgSW5qZWN0aW9u IChCVEkpCiAgICAgICAgICAgICAgICAgICAgICA9PT09PT09PT09PT09PT09 PT09PT09PT09PT09PT09CgpTdW1tYXJ5Ci0tLS0tLS0KClRoaXMgUkVBRE1F IGdpdmVzIHJlZmVyZW5jZXMgZm9yIHRoZSBtaXRpZ2F0aW9uIGZvciBTcGVj dHJlIHYyLgoKCkRldGVybWluaW5nIHdoZXRoZXIgdGhlIG1pZ2l0YXRpb24g aXMgZW5hYmxlZCBvbiB4ODYKLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLQoKSW4gZ2VuZXJhbCwgY29tcGls ZXIgYW5kIENQVSBtaWNyb2NvZGUgdXBkYXRlcyBhcmUgYWxzbyByZXF1aXJl ZC4KCldoZW4gdGhlIG1pdGlnYXRpb24gaXMgZnVsbHkgYWN0aXZlLCBvbiBB TUQgaGFyZHdhcmUsClhlbiBwcmludHMgYXQgbGVhc3QgdGhlIGZvbGxvd2lu ZyBtZXNzYWdlczoKCiAgU3BlY3VsYXRpdmUgbWl0aWdhdGlvbiBmYWNpbGl0 aWVzOgogICAgQ29tcGlsZWQtaW4gc3VwcG9ydDogSU5ESVJFQ1RfVEhVTksK ICBCVEkgbWl0aWdhdGlvbnM6IFRodW5rIExGRU5DRQoKT24gcHJlLVNreWxh a2UgSW50ZWwgaGFyZHdhcmU6CgogIFNwZWN1bGF0aXZlIG1pdGlnYXRpb24g ZmFjaWxpdGllczoKICAgIENvbXBpbGVkLWluIHN1cHBvcnQ6IElORElSRUNU X1RIVU5LCiAgQlRJIG1pdGlnYXRpb25zOiBUaHVuayBSRVRQT0xJTkUKCk9u IFNreWxha2UgKG9yIGxhdGVyKSBJbnRlbCBoYXJkd2FyZToKCiAgU3BlY3Vs YXRpdmUgbWl0aWdhdGlvbiBmYWNpbGl0aWVzOgogICAgSGFyZHdhcmUgZmVh dHVyZXM6IElCUlMvSUJQQiBTVElCUAogICAgQ29tcGlsZWQtaW4gc3VwcG9y dDogSU5ESVJFQ1RfVEhVTksKICBCVEkgbWl0aWdhdGlvbnM6IFRodW5rIEpN UCwgT3RoZXJzOiBJQlJTKyBJQlBCCgpOb3RlIGhvd2V2ZXIgdGhhdCBvbiBy ZWxlYXNlIGJ1aWxkcyBub25lIG9mIHRoZXNlIG1lc3NhZ2VzIGFyZSB2aXNp YmxlCmJ5IGRlZmF1bHQ7ICJsb2dsdmw9YWxsIiBuZWVkcyB0byBiZSBwYXNz ZWQgdG8gc2VlIGFsbCBvZiB0aGVtLgpIb3dldmVyIHByb2R1Y3Rpb24gc3lz dGVtcyBzaG91bGQgbm90IGJlIHJ1biB3aXRoICJsb2dsdmw9YWxsIiBhcyB0 aGF0CmV4cG9zZXMgYSBsb2cgc3BldyAoZGVuaWFsIG9mIHNlcnZpY2UpIHZ1 bG5lcmFiaWxpdHkgdG8gZ3Vlc3RzLgoKImxvZ2x2bD1pbmZvIiAod2hpY2gg aXMgcGVyaGFwcyBiZXR0ZXIpIGlzIHN1ZmZpY2llbnQgdG8gc2VlCiAgQlRJ IG1pdGlnYXRpb25zOiAuLi4KbGlzdGluZyB0aGUgbWl0aWdhdGlvbnMgWGVu IGFjdHVhbGx5IHVzZXMuCgpJZiB5b3UgYXJlIG5vdCBzdXJlIHdoZXRoZXIg eW91ciBJbnRlbCBDUFUgaXMgcHJlLSBvciBwb3N0LVNreWxha2UsCnBsZWFz ZSBsb29rIHlvdXIgY3B1IG1vZGVsIG51bWJlciAocHJpbnRlZCBpbiAvcHJv Yy9jcHVpbmZvIG9uIExpbnV4KQp1cCBvbiBXaWtpcGVkaWEuCgoKUHJlY2lz ZSBnaXQgY29tbWl0cwotLS0tLS0tLS0tLS0tLS0tLS0tCgo0LjEwOgoKMzE4 MTQ3MmE1Y2E0NWFlNWU3N2FiYmNmMDI0ZDAyNWQ5YmE3OWNlZCB4ODYvaWRs ZTogQ2xlYXIgU1BFQ19DVFJMIHdoaWxlIGlkbGUKNTY0NDUxNDA1MGI5YWU3 ZDc1Y2RkOTVmZDA3OTEyYjk5MzBjYWUwOCB4ODYvY3B1aWQ6IE9mZmVyIElu ZGlyZWN0IEJyYW5jaCBDb250cm9scyB0byBndWVzdHMKZGIxMjc0M2YyZDI0 ZmM1OWQ1YjljZWZjMTVlYjNkNTZjZGFmNTQ5ZCB4ODYvY3R4dDogSXNzdWUg YSBzcGVjdWxhdGlvbiBiYXJyaWVyIGJldHdlZW4gdmNwdSBjb250ZXh0cwpi YzBlNTk5YTgzZDE3ZjA2ZWM3ZGExNzA4NzIxY2VkZTJkZjgyNzRlIHg4Ni9i b290OiBDYWxjdWxhdGUgdGhlIG1vc3QgYXBwcm9wcmlhdGUgQlRJIG1pdGln YXRpb24gdG8gdXNlCmZjODE5NDZjZWFhZTJjMjdmY2UyYmEwZjNmMjlmYTlk ZjM5NzU5NTEgeDg2L2VudHJ5OiBBdm9pZCB1c2luZyBhbHRlcm5hdGl2ZXMg aW4gTk1JLyNNQyBwYXRocwpjZTdkN2MwMTY4NTU2OWQ5ZmYxZjk3MWMwZjA2 MjI1NzNiZmU4YmYzIHg4Ni9lbnRyeTogT3JnYW5pc2UgdGhlIGNsb2JiZXJp bmcgb2YgdGhlIFJTQi9SQVMgb24gZW50cnkgdG8gWGVuCmE2OTVmOGRjZTdj M2YxMzdmNjFjOGM4YTg4MGIyNGIxYjRjZjMxOWMgeDg2L2VudHJ5OiBPcmdh bmlzZSB0aGUgdXNlIG9mIE1TUl9TUEVDX0NUUkwgYXQgZWFjaCBlbnRyeS9l eGl0IHBvaW50CjkyZWZiZTg2NTgxM2Q4NDg3M2EwZTcyNjJiMWZhNDE0ODQy MzA2YjYgeDg2L2h2bTogUGVybWl0IGd1ZXN0cyBkaXJlY3QgYWNjZXNzIHRv IE1TUl97U1BFQ19DVFJMLFBSRURfQ01EfQo4YmFiYTg3NGQ2Yzc2YzFkNmRk NjliMWQ5YWEwNmFiZGMzNDRhMWY1IHg4Ni9taWdyYXRlOiBNb3ZlIE1TUl9T UEVDX0NUUkwgb24gbWlncmF0ZQo3OTg5MWVmOTQ0MmFjYjk5OGYzNTRiOTY5 ZTczMDJkODEyNDVhYjBiIHg4Ni9tc3I6IEVtdWxhdGlvbiBvZiBNU1Jfe1NQ RUNfQ1RSTCxQUkVEX0NNRH0gZm9yIGd1ZXN0cwo2NDFjMTFlZjI5M2M3ZjNh NThjMTg1NjEzODgzNWMwNmUwOWQ2YjA3IHg4Ni9jcHVpZDogSGFuZGxpbmcg b2YgSUJSUy9JQlBCLCBTVElCUCBhbmQgSUJSUyBmb3IgZ3Vlc3RzCjY1ZWU2 ZTA0M2E2ZGM2MWJlY2U3NWE5ZGZlMjRjN2VlNzBjNjU5N2MgeDg2L2NtZGxp bmU6IEludHJvZHVjZSBhIGNvbW1hbmQgbGluZSBvcHRpb24gdG8gZGlzYWJs ZSBJQlJTL0lCUEIsIFNUSUJQIGFuZCBJQlBCCjEyOTg4MGRkOGYyOGJjNzI4 ZjkzZTNhYWQ0Njc1NjIyYzFlZTJhYWQgeDg2L2ZlYXR1cmU6IERlZmluaXRp b25zIGZvciBJbmRpcmVjdCBCcmFuY2ggQ29udHJvbHMKYzUxMzI0NGQ4ZTVi OGFhMDMyNmM2ZjJkNWZiMjM4MjgxMWM5N2Q2ZCB4ODY6IEludHJvZHVjZSBh bHRlcm5hdGl2ZSBpbmRpcmVjdCB0aHVua3MKMGUxMmMyYzg4MWFhMTIwMTZi YjY1OWFiMWViNGM3Mjg5MjQ0YjNlNyB4ODYvYW1kOiBUcnkgdG8gc2V0IGxm ZW5jZSBhcyBiZWluZyBEaXNwYXRjaCBTZXJpYWxpc2luZwo2YWFmMzUzZjJl Y2JlOGFlNTdlMTY4MTJhNmQ3NGE0ZjA4OWRlZjNhIHg4Ni9ib290OiBSZXBv cnQgZGV0YWlscyBvZiBzcGVjdWxhdGl2ZSBtaXRpZ2F0aW9ucwozMmJhYmZj MTlhZDNhMzEyM2Y4ZWQ0NDY2ZGYzYzc5NDkyYTIyMTJiIHg4NjogU3VwcG9y dCBpbmRpcmVjdCB0aHVua3MgZnJvbSBhc3NlbWJseSBjb2RlCjQ3YmJjYjJk ZDEyOTFkNjEwNjJmZTU4ZGE4MDcwMTA2MzFmZTFiM2EgeDg2OiBTdXBwb3J0 IGNvbXBpbGluZyB3aXRoIGluZGlyZWN0IGJyYW5jaCB0aHVua3MKODc0M2Zj MmVmN2QxMDcxMDRjMTdiNzczZWFkZWUxNWZlZmE2NGU1MyBjb21tb24vd2Fp dDogQ2xhcmlmaWNhdGlvbnMgdG8gd2FpdCBpbmZyYXN0cnVjdHVyZQoxODMw YjIwYjZiODNiZTM4NzM4Nzg0ZWExNjJkNjJmY2Y4NWYzMTc4IHg4Ni9lbnRy eTogRXJhc2UgZ3Vlc3QgR1BSIHN0YXRlIG9uIGVudHJ5IHRvIFhlbgphYjk1 Y2IwZDk0OGZkYzlmY2RhMjE1ZmVjMDUyNmFjOTAyMzQwYjE0IHg4Ni9odm06 IFVzZSBTQVZFX0FMTCB0byBjb25zdHJ1Y3QgdGhlIGNwdV91c2VyX3JlZ3Mg ZnJhbWUgYWZ0ZXIgVk1FeGl0CmQwMmVmM2QyNzQ4NWUxNDI5YWM0ODBjY2E3 OGFiMzYzNjM4N2RmMjMgeDg2L2VudHJ5OiBSZWFycmFuZ2UgUkVTVE9SRV9B TEwgdG8gcmVzdG9yZSByZWdpc3RlciBpbiBzdGFjayBvcmRlcgplMzJmODE0 MTYwYzk1MDk0ZGE4M2ZiYzgxM2I0NWVjYTQyZDUzOTdhIHg4NjogSW50cm9k dWNlIGEgY29tbW9uIGNwdWlkX3BvbGljeV91cGRhdGVkKCkKYzUzNGFiNGU5 NDBhZTNmYmRkZjBiNDg0MGMzNTQ5YzAzNjU0OTIxZiB4ODYvaHZtOiBSZW5h bWUgdXBkYXRlX2d1ZXN0X3ZlbmRvcigpIGNhbGxiYWNrIHRvIGNwdWlkX3Bv bGljeV9jaGFuZ2VkKCkKYmUzMTM4YjZmNjU5NTUxOTZkNjdjMWQ1NGFlYTNk NmEzYmYzMzkzNCB4ODYvYWx0OiBJbnRyb2R1Y2UgQUxURVJOQVRJVkV7LF8y fSBtYWNyb3MKNzkwMTJlYWQ5MzdmMDUzM2VjNTkxYzRlY2U5MjVlNGQyMzU2 ODg3NCB4ODYvYWx0OiBCcmVhayBvdXQgYWx0ZXJuYXRpdmUtYXNtIGludG8g YSBzZXBhcmF0ZSBoZWFkZXIgZmlsZQpiYmQwOTNjNTAzM2Q4N2MwMDQzY2Y5 MGFhNzgyZWZkYzE0MWRjMGU3IHhlbi9hcm0zMjogZW50cnk6IERvY3VtZW50 IHRoZSBwdXJwb3NlIG9mIHIxMSBpbiB0aGUgdHJhcHMgaGFuZGxlcgphNjlh OGI1ZmRjOWNjOTBhYTRmYWY1MjJjMzU1YWJkODQ5ZjExMDAxIHhlbi9hcm0z MjogSW52YWxpZGF0ZSBpY2FjaGUgb24gZ3Vlc3QgZXhpc3QgZm9yIENvcnRl eC1BMTUKZjE2N2ViZjZiMzNjNGRiZGIwMTM1YzM1MGMwZDkyNzk4MDE5MWFj NSB4ZW4vYXJtMzI6IEludmFsaWRhdGUgQlRCIG9uIGd1ZXN0IGV4aXQgZm9y IENvcnRleCBBMTcgYW5kIDEyCmM0YzAxODc4MzliYWNhZGM4MmE1NzI5Y2Vh NzM5ZThjNDg1ZjZjNjAgeGVuL2FybTMyOiBBZGQgc2tlbGV0b24gdG8gaGFy ZGVuIGJyYW5jaCBwcmVkaWN0b3IgYWxpYXNpbmcgYXR0YWNrcwoxOWFkOGE3 Mjg3Mjk4ZjcwMWI1NTdlNTVlNGJlNjg5YTcwMjE5NGMwIHhlbi9hcm0zMjog ZW50cnk6IEFkZCBtaXNzaW5nIHRyYXBfcmVzZXQgZW50cnkKM2NhZjMyYzQ3 MGYyZjdlYjM0NTJjOGE2MWQ2MjI0ZDEwZTU2ZjlhMyB4ZW4vYXJtMzI6IEFk ZCBtaXNzaW5nIE1JRFIgdmFsdWVzIGZvciBDb3J0ZXgtQTE3IGFuZCBBMTIK ZGY3YmU5NGYyNjc1N2E3Nzc0N2JmNGZiZmI4NGJiZTJhM2RhM2I0ZiB4ZW4v YXJtMzI6IGVudHJ5OiBDb25zb2xpZGF0ZSBERUZJTkVfVFJBUF9FTlRSWV8q IG1hY3Jvcwo3MjhmYWRiNTg2YTJhMTRhMjQ0ZGFiZDcwNDYzYmNjMTY1NGVj Yzg1IHhlbi9hcm06IGNwdWVycmF0YTogUmVtb3ZlIHBlcmNwdS5oIGluY2x1 ZGUKOTI4MTEyOTAwZTViNGE5MmNjZWJiMmVlYTExNjY1ZmQ3NmFhMGYwZCB4 ZW4vYXJtNjQ6IEltcGxlbWVudCBicmFuY2ggcHJlZGljdG9yIGhhcmRlbmlu ZyBmb3IgYWZmZWN0ZWQgQ29ydGV4LUEgQ1BVcwpjYWU2ZTE1NzJmMzlhMTkw NmJlMGZjM2JkYWY0OWZlNTE0YzZhOWMwIHhlbi9hcm02NDogQWRkIHNrZWxl dG9uIHRvIGhhcmRlbiB0aGUgYnJhbmNoIHByZWRpY3RvciBhbGlhc2luZyBh dHRhY2tzCmQxZjQyODNhMWQ4NDA1YTQ4MGI0MTIxZTFlZmNmYWVjOGJiZGJm ZmEgeGVuL2FybTogY3B1ZXJyYXRhOiBBZGQgTUlEUl9BTExfVkVSU0lPTlMK MGY3YTRmYWFmYjJkNzk5MjBjYzYzNDU3Y2ZjYTNlMDM5OTBhZjRjYyB4ZW4v YXJtNjQ6IEFkZCBtaXNzaW5nIE1JRFIgdmFsdWVzIGZvciBDb3J0ZXgtQTcy LCBBNzMgYW5kIEE3NQpiODI5ZDQyODI5YzFmZjYyNmEwMjc1NmFjYWU0ZGQ0 ODJmYzIwYzlhIHhlbi9hcm06IEludHJvZHVjZSBlbmFibGUgY2FsbGJhY2sg dG8gZW5hYmxlIGEgY2FwYWJpbGl0aWVzIG9uIGVhY2ggb25saW5lIENQVQo5 MTBkZDAwNWRhMjBmMjdmMzQxNWI3ZWNjZGY0MzY4NzQ5ODk1MDZiIHg4Ni9l bnRyeTogUmVtb3ZlIHN1cHBvcnQgZm9yIHBhcnRpYWwgY3B1X3VzZXJfcmVn cyBmcmFtZXMKCjQuOToKCjg4ZmJhYmM0OTE1OGIwYjg1ODI0OGZhMTI0ZWY1 OTBjNWRmNzc4MmYgeDg2L1BWOiBjb3JyZWN0bHkgY291bnQgTVNScyB0byBt aWdyYXRlCjdkNWY4YjM2YmUxNDljMTY5MjE1YjNhZmUyMGUxY2ZiYTg0NTYx NzAgeDg2L2lkbGU6IENsZWFyIFNQRUNfQ1RSTCB3aGlsZSBpZGxlCjU5OTk5 YWVjZGFkNmZjNGY0NDY5NThiNjVlMjg2OWUwMjUzMGIxYTYgeDg2L2NwdWlk OiBPZmZlciBJbmRpcmVjdCBCcmFuY2ggQ29udHJvbHMgdG8gZ3Vlc3RzCjc5 ZDUxOTc5NTIzMTExMGYyMjJhMjQzNzllM2E0MzI0M2RiNmU1NWYgeDg2L2N0 eHQ6IElzc3VlIGEgc3BlY3VsYXRpb24gYmFycmllciBiZXR3ZWVuIHZjcHUg Y29udGV4dHMKNjhjNzZkNzFlMDQ1YTRlODUxMDcwNDI3MGZjNTcwZmI5ZDc5 N2RmZCB4ODYvYm9vdDogQ2FsY3VsYXRlIHRoZSBtb3N0IGFwcHJvcHJpYXRl IEJUSSBtaXRpZ2F0aW9uIHRvIHVzZQpiZGEzMjgzNjNmZmVmNThjMzQ3NTEw NWU5MzAxNmZjYWM0ODZjNWQ1IHg4Ni9lbnRyeTogQXZvaWQgdXNpbmcgYWx0 ZXJuYXRpdmVzIGluIE5NSS8jTUMgcGF0aHMKYTI0Yjc1NTNmOTI1MTdiM2Q4 MWNhZDFhZDQ3OThlZjc0YjQyMDU1YiB4ODYvZW50cnk6IE9yZ2FuaXNlIHRo ZSBjbG9iYmVyaW5nIG9mIHRoZSBSU0IvUkFTIG9uIGVudHJ5IHRvIFhlbgox M2EzMGJhNTRjYWExYjMzZjcwNzEzNzI3OWQyN2Q1Y2QzOWU4ODQ0IHg4Ni9l bnRyeTogT3JnYW5pc2UgdGhlIHVzZSBvZiBNU1JfU1BFQ19DVFJMIGF0IGVh Y2ggZW50cnkvZXhpdCBwb2ludAowMTc3YmY1ZDI1YzY2ZTcwMGUxNTAyNDkx M2EzYmM3MWM3Y2Y1MDdkIHg4Ni9odm06IFBlcm1pdCBndWVzdHMgZGlyZWN0 IGFjY2VzcyB0byBNU1Jfe1NQRUNfQ1RSTCxQUkVEX0NNRH0KMmZkZWU2MGVj MTJjMjM4MzU4YmZmMjA5Mzc4YzdkOTFlNDgxN2ZhNyB4ODYvbWlncmF0ZTog TW92ZSBNU1JfU1BFQ19DVFJMIG9uIG1pZ3JhdGUKZTU3ZDRkMDQzYjBkZjhm OTk1M2IzZDIxMWZlYWNjM2E1NDQwMTgxNyB4ODYvbXNyOiBFbXVsYXRpb24g b2YgTVNSX3tTUEVDX0NUUkwsUFJFRF9DTUR9IGZvciBndWVzdHMKMWRjZmQz OTUxOTk5ZTg3NWY5MTFmYjA1MTMzOTE3NzRhZjhkNWZiNCB4ODYvY3B1aWQ6 IEhhbmRsaW5nIG9mIElCUlMvSUJQQiwgU1RJQlAgYW5kIElCUlMgZm9yIGd1 ZXN0cwo3NjQ4MDQ5MzhjNjliNjllMWVlMzY5YTliNTQ4MGU4OWIxOGU0NTNh IHg4Ni9jbWRsaW5lOiBJbnRyb2R1Y2UgYSBjb21tYW5kIGxpbmUgb3B0aW9u IHRvIGRpc2FibGUgSUJSUy9JQlBCLCBTVElCUCBhbmQgSUJQQgo2MDI2MzNl YjczZWQyZDk5MThkYTJkYWU3YmViZjI3OWEwNTdlYTIwIHg4Ni9mZWF0dXJl OiBEZWZpbml0aW9ucyBmb3IgSW5kaXJlY3QgQnJhbmNoIENvbnRyb2xzCjZm ZWY0NmQ2ZmI5ZmE0NTc4Yjk3ZjhkNmEwY2IyNDBhYmVjNDg1ODcgeDg2OiBJ bnRyb2R1Y2UgYWx0ZXJuYXRpdmUgaW5kaXJlY3QgdGh1bmtzCjMwYjk5Mjk5 ZDZlYTBjNTAwOGY1ZTRmNDFlYjFmNDhlMWFlNTY2Y2UgeDg2L2FtZDogVHJ5 IHRvIHNldCBsZmVuY2UgYXMgYmVpbmcgRGlzcGF0Y2ggU2VyaWFsaXNpbmcK NDQ3ZGNlODkxZjA1YzA1ODVlYzY3YzQ3ZWQyMmViMmUwNzNjZTBhYiB4ODYv Ym9vdDogUmVwb3J0IGRldGFpbHMgb2Ygc3BlY3VsYXRpdmUgbWl0aWdhdGlv bnMKMjlkZjhhNWM0ZDYyNzFkNTIyMzFiYmVjYzUyYTdjM2ViMzhhYWMxMyB4 ODY6IFN1cHBvcnQgaW5kaXJlY3QgdGh1bmtzIGZyb20gYXNzZW1ibHkgY29k ZQo2NDAzYjUwNDhkNmYxYWM1YmM4NTI0OTM3Yjc5NzVmOTZiNTk3MDQ2IHg4 NjogU3VwcG9ydCBjb21waWxpbmcgd2l0aCBpbmRpcmVjdCBicmFuY2ggdGh1 bmtzCjYyOGI2YWYyNGY5NzI3ZjIwMWY2NzdhNGFkOTgxMDRjMDBjYzc2YzEg Y29tbW9uL3dhaXQ6IENsYXJpZmljYXRpb25zIHRvIHdhaXQgaW5mcmFzdHJ1 Y3R1cmUKMjM3YTU4YjFkMGMzNTIwMWUxZTllZDdjMzJkZWFjZjljZDgwNDIy OSB4ODYvZW50cnk6IEVyYXNlIGd1ZXN0IEdQUiBzdGF0ZSBvbiBlbnRyeSB0 byBYZW4KZjBmN2NlNWU4MmI1YmQ1MTFlZjNlZWQ4ZmU4YjhiMjdhMjNmNDM2 NSB4ODYvaHZtOiBVc2UgU0FWRV9BTEwgdG8gY29uc3RydWN0IHRoZSBjcHVf dXNlcl9yZWdzIGZyYW1lIGFmdGVyIFZNRXhpdApkNmU5NzI1MDhlZDZhZTg0 YzVhNDY1ODBhZjEyZWJkY2I4OGRlNzAyIHg4Ni9lbnRyeTogUmVhcnJhbmdl IFJFU1RPUkVfQUxMIHRvIHJlc3RvcmUgcmVnaXN0ZXIgaW4gc3RhY2sgb3Jk ZXIKOWFhYTIwODg4NjNkNjMxNjg5ODZmOWU2OWMwZjQ4MjgzOWEyNGQ4MCB4 ODY6IEludHJvZHVjZSBhIGNvbW1vbiBjcHVpZF9wb2xpY3lfdXBkYXRlZCgp CjQwZjlhZTlkMDUzMmEzYzdkYmIyYTFlNzQwYzJjZWJlMmFlYjFkNzIgeDg2 L2h2bTogUmVuYW1lIHVwZGF0ZV9ndWVzdF92ZW5kb3IoKSBjYWxsYmFjayB0 byBjcHVpZF9wb2xpY3lfY2hhbmdlZCgpCmFkZTk1NTRmODcyNjJiMGM2ZGNj MjFhY2ExOTRmMzEzOWEzMWZjZmEgeDg2L2FsdDogSW50cm9kdWNlIEFMVEVS TkFUSVZFeyxfMn0gbWFjcm9zCmEwZWQwMzQ5ZmYyMTJiNDFkYmZhYjM3MTQx Y2NjYjcxYmMxYzMwMzEgeDg2L2FsdDogQnJlYWsgb3V0IGFsdGVybmF0aXZl LWFzbSBpbnRvIGEgc2VwYXJhdGUgaGVhZGVyIGZpbGUKNGQwMWRiYzcxMzNl MGM1NWFlY2IzMWQ5NWNkNDYxNTgwMjQxYzU3NiB4ZW4vYXJtMzI6IGVudHJ5 OiBEb2N1bWVudCB0aGUgcHVycG9zZSBvZiByMTEgaW4gdGhlIHRyYXBzIGhh bmRsZXIKMjIzNzliNmFkY2UwMjQ5ZmZjMDVhM2E3ODcwZjIyOTMzNjgzMzdl MSB4ZW4vYXJtMzI6IEludmFsaWRhdGUgaWNhY2hlIG9uIGd1ZXN0IGV4aXN0 IGZvciBDb3J0ZXgtQTE1CjZlMTNhZDc3N2QzMzFjZDUzNDkyOGRmNzIwZGJm NTQyNDk3MjMxYmEgeGVuL2FybTMyOiBJbnZhbGlkYXRlIEJUQiBvbiBndWVz dCBleGl0IGZvciBDb3J0ZXggQTE3IGFuZCAxMgowZDMyMjM3ZDVmNGRiNDE5 Zjg0ZGE4OTE3NjFhYmI0ZjZiMWE4ZjUyIHhlbi9hcm0zMjogQWRkIHNrZWxl dG9uIHRvIGhhcmRlbiBicmFuY2ggcHJlZGljdG9yIGFsaWFzaW5nIGF0dGFj a3MKNGJhNTliZGMyNmJkNjliZGQ4NGJjYjJiZDU5N2ZlZTE0NGU4NDVkOSB4 ZW4vYXJtMzI6IGVudHJ5OiBBZGQgbWlzc2luZyB0cmFwX3Jlc2V0IGVudHJ5 CjI5OTdjNWU2MjhkZDU4OGZmNGFkYjM3MzNiN2Y0OGJiMDUyMWEyNDMgeGVu L2FybTMyOiBBZGQgbWlzc2luZyBNSURSIHZhbHVlcyBmb3IgQ29ydGV4LUEx NyBhbmQgQTEyCjc1MWM4NzkxZDA4NjgzMWYyMDM4ZmUxODIxN2U1NTNmNjEy YTU2MDAgeGVuL2FybTMyOiBlbnRyeTogQ29uc29saWRhdGUgREVGSU5FX1RS QVBfRU5UUllfKiBtYWNyb3MKYTI1NjdkNmI1NGI3YjE4N2VjYzAxNjUwMjFi NmRkMDdkYWZhZjA2YSB4ZW4vYXJtOiBjcHVlcnJhdGE6IFJlbW92ZSBwZXJj cHUuaCBpbmNsdWRlCjlmNzllOGQ4NDZlODQxM2M4MjhmNWZjN2NjNmFjNzMz NzI4ZGZmMDAgeGVuL2FybTY0OiBJbXBsZW1lbnQgYnJhbmNoIHByZWRpY3Rv ciBoYXJkZW5pbmcgZm9yIGFmZmVjdGVkIENvcnRleC1BIENQVXMKZmJhNDhl ZmYxOGMwMmQ3MTZjOTViOTJkZjgwNGE3NTU2MjBiZTgyZSB4ZW4vYXJtNjQ6 IEFkZCBza2VsZXRvbiB0byBoYXJkZW4gdGhlIGJyYW5jaCBwcmVkaWN0b3Ig YWxpYXNpbmcgYXR0YWNrcwozNzkwODMzZWYxNmI5NTY1MzQyNGVjOWIxNDVl NDYwZWMxYTU2ZDE2IHhlbi9hcm06IGNwdWVycmF0YTogQWRkIE1JRFJfQUxM X1ZFUlNJT05TCjUwNDUwYzFmMzNkYzcyZjIxMzhhNjcxZDczODkzNGY3OTZi ZTMzMTggeGVuL2FybTY0OiBBZGQgbWlzc2luZyBNSURSIHZhbHVlcyBmb3Ig Q29ydGV4LUE3MiwgQTczIGFuZCBBNzUKMmVjN2NjYmZmYzZiNzg4ZjY1ZTU1 NDk4ZTQzNDdjMWVlM2E0NGIwMSB4ZW4vYXJtOiBJbnRyb2R1Y2UgZW5hYmxl IGNhbGxiYWNrIHRvIGVuYWJsZSBhIGNhcGFiaWxpdGllcyBvbiBlYWNoIG9u bGluZSBDUFUKMjIxM2ZmZTFhMmQ4MmMzYzljNGExNTRlYTZlZTI1MjM5NWFh ODY5MyB4ODYvZW50cnk6IFJlbW92ZSBzdXBwb3J0IGZvciBwYXJ0aWFsIGNw dV91c2VyX3JlZ3MgZnJhbWVzCgo0Ljg6Cgo1OTM4YWExN2I0OTU5NTE1MGNh ZGUzZGRjMmMxOTI5ZWNkMGRmMzlhIHg4Ni9QVjogY29ycmVjdGx5IGNvdW50 IE1TUnMgdG8gbWlncmF0ZQo5OWVkNzg2M2IyOWVhMTcwZTUwNzQ5ZmUyMjk5 MWI5NjRjYmNlNmJhIHg4Ni9pZGxlOiBDbGVhciBTUEVDX0NUUkwgd2hpbGUg aWRsZQo3NmJkZmU4OTRhYjIyMDVmNTk3ZTUyNDQ4ZDYyMDk4MmI4NDU2NWM0 IHg4Ni9jcHVpZDogT2ZmZXIgSW5kaXJlY3QgQnJhbmNoIENvbnRyb2xzIHRv IGd1ZXN0cwpmZWU0Njg5YzVjNjBiNjk5ZjRkZWEyMWEyMWEyYmExNzg4N2Qy ZjQ5IHg4Ni9jdHh0OiBJc3N1ZSBhIHNwZWN1bGF0aW9uIGJhcnJpZXIgYmV0 d2VlbiB2Y3B1IGNvbnRleHRzCmMwYmZkZTY4Y2NkOTQxYjE0YTJmMGNhNTRj NjFhODM3OTYxNTZlYTYgeDg2L2Jvb3Q6IENhbGN1bGF0ZSB0aGUgbW9zdCBh cHByb3ByaWF0ZSBCVEkgbWl0aWdhdGlvbiB0byB1c2UKNjRjMTc0MmIyMDYz NDRjNTFkYjEzMGIwYmI0N2ZjMjk5YTE0NjJjYSB4ODYvZW50cnk6IEF2b2lk IHVzaW5nIGFsdGVybmF0aXZlcyBpbiBOTUkvI01DIHBhdGhzCjg2MTUzODU2 Zjg1N2Y3ODZiOTVlY2M0ZjgxMjYwNDc3ZDc1ZGMxNWMgeDg2L2VudHJ5OiBP cmdhbmlzZSB0aGUgY2xvYmJlcmluZyBvZiB0aGUgUlNCL1JBUyBvbiBlbnRy eSB0byBYZW4KZTA5YTVjMjkxNzUwNmNmOWQ5NWQ4NWY2NWIyZGYxNThhNDk0 NjQ5YyB4ODYvZW50cnk6IE9yZ2FuaXNlIHRoZSB1c2Ugb2YgTVNSX1NQRUNf Q1RSTCBhdCBlYWNoIGVudHJ5L2V4aXQgcG9pbnQKZmY1NzBhM2VlMGI0MmEw MzZkZjFlOGMyYjA1NzMwMTkyYWQ0YmQ5MCB4ODYvaHZtOiBQZXJtaXQgZ3Vl c3RzIGRpcmVjdCBhY2Nlc3MgdG8gTVNSX3tTUEVDX0NUUkwsUFJFRF9DTUR9 CmU2YmNiNDE2YTVmNTQ4OTM2NmZjMjBmNDVmZDkyYTcwM2FkOTZlMTUgeDg2 L21pZ3JhdGU6IE1vdmUgTVNSX1NQRUNfQ1RSTCBvbiBtaWdyYXRlCjI5ZTcx NzFlOWRkMGFhOGUzNWY3OTAxNTdkNzgxZGZmMjJmNmE5NzAgeDg2L21zcjog RW11bGF0aW9uIG9mIE1TUl97U1BFQ19DVFJMLFBSRURfQ01EfSBmb3IgZ3Vl c3RzCmMzZDE5NWNkOTEzODU1MzFlZDEyYWYyNTc2YmZlZGNhYjMxMTgyMTEg eDg2L2NwdWlkOiBIYW5kbGluZyBvZiBJQlJTL0lCUEIsIFNUSUJQIGFuZCBJ QlJTIGZvciBndWVzdHMKNTMyY2NmNGZkNTVjZmQ5MTZmNTYyNzlhNzE4NTI1 ODVkNzI2YWIyMyB4ODYvY21kbGluZTogSW50cm9kdWNlIGEgY29tbWFuZCBs aW5lIG9wdGlvbiB0byBkaXNhYmxlIElCUlMvSUJQQiwgU1RJQlAgYW5kIElC UEIKZGE0OWU1MThkNzljYTZjNDA1YTI0NDg4OWNhYjU3YWM4ZWQwOTdjYiB4 ODYvZmVhdHVyZTogRGVmaW5pdGlvbnMgZm9yIEluZGlyZWN0IEJyYW5jaCBD b250cm9scwpjYTk1ODNkOWU3MDVhYWE3NGRhMTIxZTkyMGViZjc3ZDlmNzk5 NWIyIHg4NjogSW50cm9kdWNlIGFsdGVybmF0aXZlIGluZGlyZWN0IHRodW5r cwo0NzliODc5YTdkZDBiYmYwMjkyMGQyZjYwNTNkOWJlZTI3MTc5N2NlIHg4 Ni9hbWQ6IFRyeSB0byBzZXQgbGZlbmNlIGFzIGJlaW5nIERpc3BhdGNoIFNl cmlhbGlzaW5nCjJlZWZkOTI2YmJjODIxN2NmNTExYmMwOTZjODk3YWU0YzU2 ZGQwYzIgeDg2L2Jvb3Q6IFJlcG9ydCBkZXRhaWxzIG9mIHNwZWN1bGF0aXZl IG1pdGlnYXRpb25zCjYwYzUwZjJiMGJmNWQzZjg5NGNhNDI4Y2Y0YjQzNzRm YmVhMmQwODIgeDg2OiBTdXBwb3J0IGluZGlyZWN0IHRodW5rcyBmcm9tIGFz c2VtYmx5IGNvZGUKMTgzOGUyMTUyMTQ5N2NkZmE2ZDNiMWRmYWMwMzc0YmNj ZTcxN2ViYSB4ODY6IFN1cHBvcnQgY29tcGlsaW5nIHdpdGggaW5kaXJlY3Qg YnJhbmNoIHRodW5rcwo1NzMyYThlZjI4ODU2MzNjZGZmYzU2ZmU5ZDhkZjQw Zjc2YmZiMmMyIGNvbW1vbi93YWl0OiBDbGFyaWZpY2F0aW9ucyB0byB3YWl0 IGluZnJhc3RydWN0dXJlCjk4N2IwOGQ1NmNkOGQ0MzliZGY0MzUwOTkyMThi OTZkZTkwMTE5OWQgeDg2L2VudHJ5OiBFcmFzZSBndWVzdCBHUFIgc3RhdGUg b24gZW50cnkgdG8gWGVuCmVhZGNkODMxOGM0NmY1M2VkOGVlNjUxNmNhODc2 MjcxZjc1OTMwZmEgeDg2L2h2bTogVXNlIFNBVkVfQUxMIHRvIGNvbnN0cnVj dCB0aGUgY3B1X3VzZXJfcmVncyBmcmFtZSBhZnRlciBWTUV4aXQKZWYyNDY0 YzU2ZThkYWIxOTRjZDk1NjQ5OGMzZDUyMTVmMWI2Yjk3YiB4ODYvZW50cnk6 IFJlYXJyYW5nZSBSRVNUT1JFX0FMTCB0byByZXN0b3JlIHJlZ2lzdGVyIGlu IHN0YWNrIG9yZGVyCjE3YmZiYzgyODljNDg3YmNiNWY0NDZmNzlkZTU0ODY5 ZjEyNzg2Y2IgeDg2OiBJbnRyb2R1Y2UgYSBjb21tb24gY3B1aWRfcG9saWN5 X3VwZGF0ZWQoKQo0OTkzOTFiNTBiODVkMzFmYTNkZDRjNDI3YTgxNmUxMGZh Y2IxZmU0IHg4Ni9odm06IFJlbmFtZSB1cGRhdGVfZ3Vlc3RfdmVuZG9yKCkg Y2FsbGJhY2sgdG8gY3B1aWRfcG9saWN5X2NoYW5nZWQoKQo4N2NiMGUyMDkw ZmNlMzE3YzRlNjc3NWYzNDNkNWNhYmE2NmY2MWYxIHg4Ni9hbHQ6IEludHJv ZHVjZSBBTFRFUk5BVElWRXssXzJ9IG1hY3JvcwozZWZjZDdmYjQwYTkwMGJj N2Q0ZjkwNjNmMmQ0M2VlMjdiMGE1MjcwIHg4Ni9hbHQ6IEJyZWFrIG91dCBh bHRlcm5hdGl2ZS1hc20gaW50byBhIHNlcGFyYXRlIGhlYWRlciBmaWxlCjEx ODc1YjdkNTcwNmY4YWVmODZkMzA2YTQzZDdmZTNiNzAxMWFhYTIgeGVuL2Fy bTMyOiBlbnRyeTogRG9jdW1lbnQgdGhlIHB1cnBvc2Ugb2YgcjExIGluIHRo ZSB0cmFwcyBoYW5kbGVyCjExMDVmM2E5MmRmODNmM2JmY2RhNzhkNjZjNGQy ODQ1ODEyM2UxYmIgeGVuL2FybTMyOiBJbnZhbGlkYXRlIGljYWNoZSBvbiBn dWVzdCBleGlzdCBmb3IgQ29ydGV4LUExNQo3NTQzNDVjMDE5MzNmMWVlZDNk MTYwMWZhOGZkYmY2MmY1MmM5ZDgwIHhlbi9hcm0zMjogSW52YWxpZGF0ZSBC VEIgb24gZ3Vlc3QgZXhpdCBmb3IgQ29ydGV4IEExNyBhbmQgMTIKNzMzNmQw ZDJhNzE5ZDYxMzViOGQwMjgwMTQwMWU0NDliMGRiYmZiNiB4ZW4vYXJtMzI6 IEFkZCBza2VsZXRvbiB0byBoYXJkZW4gYnJhbmNoIHByZWRpY3RvciBhbGlh c2luZyBhdHRhY2tzCmNmOTViYmE3Yjc0MDZlZjE5MjllYTRjNmMzNjM4OGVk NDNiNGY5YmIgeGVuL2FybTMyOiBlbnRyeTogQWRkIG1pc3NpbmcgdHJhcF9y ZXNldCBlbnRyeQphNTg2Y2JkOWYwY2JiMzgzNWRlMWY4YWI0ZDlhMTA1ZTA4 YjJhYzVhIHhlbi9hcm0zMjogQWRkIG1pc3NpbmcgTUlEUiB2YWx1ZXMgZm9y IENvcnRleC1BMTcgYW5kIEExMgo2MDgyZTNiYTg5NDFiM2QxMGMzY2I3M2Y0 NDU3NTljMTllODlhZmM5IHhlbi9hcm0zMjogZW50cnk6IENvbnNvbGlkYXRl IERFRklORV9UUkFQX0VOVFJZXyogbWFjcm9zCjZmNjc4NmVmMGQ3ZjcwMjU4 NjBkMzYwZjZiMTI2NzE5M2ZmZDFiMjcgeGVuL2FybTY0OiBJbXBsZW1lbnQg YnJhbmNoIHByZWRpY3RvciBoYXJkZW5pbmcgZm9yIGFmZmVjdGVkIENvcnRl eC1BIENQVXMKNDQxMzlmZWQ3Yzc5NGViNGU0N2E5YmI5MzA2MWUzMjViZDU3 ZmU4YyB4ZW4vYXJtNjQ6IEFkZCBza2VsZXRvbiB0byBoYXJkZW4gdGhlIGJy YW5jaCBwcmVkaWN0b3IgYWxpYXNpbmcgYXR0YWNrcwpjZjBiNTg0YzhjNTAz MDU4OGJjNDdhMzYxNGFkODYwYWY3NDgyYzUzIHhlbi9hcm06IGNwdWVycmF0 YTogQWRkIE1JRFJfQUxMX1ZFUlNJT05TCjg1OTkwYmY1M2FkZGNkYjBjZThl NDU4YTNkOGZhZDE5OTcxMGFjNTkgeGVuL2FybTY0OiBBZGQgbWlzc2luZyBN SURSIHZhbHVlcyBmb3IgQ29ydGV4LUE3MiwgQTczIGFuZCBBNzUKOTQ2ZGQy ZWVmYWUyZmFlZWNiZWI5NjYyZTY2OTM1YzgwNzBmNjRmNSB4ZW4vYXJtOiBJ bnRyb2R1Y2UgZW5hYmxlIGNhbGxiYWNrIHRvIGVuYWJsZSBhIGNhcGFiaWxp dGllcyBvbiBlYWNoIG9ubGluZSBDUFUKYTdjZjBhM2I4MTgzNzdhOGE0OWJh ZWQzNjA2YmZhMmYyMTRjZDY0NSB4ODYvZW50cnk6IFJlbW92ZSBzdXBwb3J0 IGZvciBwYXJ0aWFsIGNwdV91c2VyX3JlZ3MgZnJhbWVzCgo0Ljc6CgphZGUz YmNhZmQyNTg4MzEzMGZjMjM0MTIxZWQ3NDE2ZDUzMWU0NTZkIHg4Ni9QVjog Y29ycmVjdGx5IGNvdW50IE1TUnMgdG8gbWlncmF0ZQphYWM0Y2JlMzY0NDcz OGQ0ODVkMzhiZDU1MTA0NmQ2M2MwMGNjNjcwIHg4NjogZml4IGJ1aWxkIHdp dGggb2xkZXIgdG9vbCBjaGFpbgo2ODQyMGI0N2Q5YjgxM2NhNDg4OTFiNjA0 ZmFiMzc5ZDQwYWE1OTRlIHg4Ni9pZGxlOiBDbGVhciBTUEVDX0NUUkwgd2hp bGUgaWRsZQplMDk1NDhkMjhhMWNmZmFmYzBmYTVlZDlmOTdhYzU4NTE0NDkx YWI4IHg4Ni9jcHVpZDogT2ZmZXIgSW5kaXJlY3QgQnJhbmNoIENvbnRyb2xz IHRvIGd1ZXN0cwpiZTI2MWJkOTdmN2I0ZmM3NmRiN2MxMWJiMzM2Njk3NGY1 NjM1YTA0IHg4Ni9jdHh0OiBJc3N1ZSBhIHNwZWN1bGF0aW9uIGJhcnJpZXIg YmV0d2VlbiB2Y3B1IGNvbnRleHRzCjMyN2E3ODM2NzQ0Y2E4ZDdlMWNmYzZk YzQ3NmQ1MWQ3YzYzZjY4ZWEgeDg2L2Jvb3Q6IENhbGN1bGF0ZSB0aGUgbW9z dCBhcHByb3ByaWF0ZSBCVEkgbWl0aWdhdGlvbiB0byB1c2UKOWYwOGZjZTNi OTQyMTgwZDYyYmM3NzNjYWI4NDBmYTQ1MzNkMGE1MSB4ODYvZW50cnk6IEF2 b2lkIHVzaW5nIGFsdGVybmF0aXZlcyBpbiBOTUkvI01DIHBhdGhzCjRhMzhl YzI2YmFmZGU3MGYyYWYzNmQ3YmMyYmVjN2YyMTgxNDU5ODIgeDg2L2VudHJ5 OiBPcmdhbmlzZSB0aGUgY2xvYmJlcmluZyBvZiB0aGUgUlNCL1JBUyBvbiBl bnRyeSB0byBYZW4KNjVjOWUwNjQyOWY2MjkyNDlhODRkMDEyMzFiZTVmYTY0 MzQ2MDU0NyB4ODYvZW50cnk6IE9yZ2FuaXNlIHRoZSB1c2Ugb2YgTVNSX1NQ RUNfQ1RSTCBhdCBlYWNoIGVudHJ5L2V4aXQgcG9pbnQKODRkNDdhY2MwNWFm NTE2ZDgxM2YxOTUyZTg1M2M0Y2EyYmUyYWRiYSB4ODYvaHZtOiBQZXJtaXQg Z3Vlc3RzIGRpcmVjdCBhY2Nlc3MgdG8gTVNSX3tTUEVDX0NUUkwsUFJFRF9D TUR9CmI3ZGFlNTVjMGVhYWU2ZDVhMzRiZmRkM2E2MmZlOTM4NjczZjUzY2Yg eDg2L21pZ3JhdGU6IE1vdmUgTVNSX1NQRUNfQ1RSTCBvbiBtaWdyYXRlCmIy YjdmZTEyOGY2ZmJlY2Y1NGU5N2NkZDJkNzE5MjNkMGE4NTI1MzUgeDg2L21z cjogRW11bGF0aW9uIG9mIE1TUl97U1BFQ19DVFJMLFBSRURfQ01EfSBmb3Ig Z3Vlc3RzCmM5NDdlMWUyM2QxZGIxN2RhMGRkMjExYjk0MTBmMzExMjQ4YjZj MTMgeDg2L2NwdWlkOiBIYW5kbGluZyBvZiBJQlJTL0lCUEIsIFNUSUJQIGFu ZCBJQlJTIGZvciBndWVzdHMKZTkyMjBiNDBjNjdhNmMxZWFiNmIzNjEzZjYw NTRhZGZhY2VhNjVlYiB4ODYvY21kbGluZTogSW50cm9kdWNlIGEgY29tbWFu ZCBsaW5lIG9wdGlvbiB0byBkaXNhYmxlIElCUlMvSUJQQiwgU1RJQlAgYW5k IElCUEIKZjk2MTY4ODRlMTZiODAyOGMyNTdjOGIwMWZiMTJkYWZmN2ZlMzQ1 NCB4ODYvZmVhdHVyZTogRGVmaW5pdGlvbnMgZm9yIEluZGlyZWN0IEJyYW5j aCBDb250cm9scwo5MWY3ZTQ2MjdiNjU5NzUzNmRlZDViODMyNmRhM2NhNTA0 YjE3NzJmIHg4NjogSW50cm9kdWNlIGFsdGVybmF0aXZlIGluZGlyZWN0IHRo dW5rcwpmMjkxYzAxY2Q2ZDQwNTkyN2NlYjAyMmJkZWY2NDc5ZGU4YjlmYjlh IHg4Ni9hbWQ6IFRyeSB0byBzZXQgbGZlbmNlIGFzIGJlaW5nIERpc3BhdGNo IFNlcmlhbGlzaW5nCjNjZjRlMjlmOGRmNWZjMThmNjViYWEwODQwOGEzZDdj ZjMyNjlkMDMgeDg2L2Jvb3Q6IFJlcG9ydCBkZXRhaWxzIG9mIHNwZWN1bGF0 aXZlIG1pdGlnYXRpb25zCjg4NjAyMTkwZjY5OGFlYWNlNmQ3ZTAyODk1NGEx MzQ5OTk3ZWUwYmUgeDg2OiBTdXBwb3J0IGluZGlyZWN0IHRodW5rcyBmcm9t IGFzc2VtYmx5IGNvZGUKNjJhMjYyNGUzYzYyNTBjNmJlOGE5MjQ4YzhmZTVh MzIxMTgzNGQ0ZCB4ODY6IFN1cHBvcnQgY29tcGlsaW5nIHdpdGggaW5kaXJl Y3QgYnJhbmNoIHRodW5rcwpjM2Y4ZGYzZGYyMjRlZWFjMGU3ODUzMzY0NDAx MGVkMDk2ZGU3YTM0IGNvbW1vbi93YWl0OiBDbGFyaWZpY2F0aW9ucyB0byB3 YWl0IGluZnJhc3RydWN0dXJlCjM4NzdjMDI0ZWE0OTE2ZWRlMTc3ZWYwMDY3 YTA4MWY3M2VlMTZjNGQgeDg2L2VudHJ5OiBFcmFzZSBndWVzdCBHUFIgc3Rh dGUgb24gZW50cnkgdG8gWGVuCmYwZWQ1Zjk1Y2IzNzNmYjU1ZDllYjJlYjNm ZTBjYmE0NDJlODBlYjIgeDg2L2h2bTogVXNlIFNBVkVfQUxMIHRvIGNvbnN0 cnVjdCB0aGUgY3B1X3VzZXJfcmVncyBmcmFtZSBhZnRlciBWTUV4aXQKMTYw YjUzYzgyNDAxMWI5ZGRiODllNjdmMGY2ODJmNDcxMzM1NzQ3ZCB4ODYvZW50 cnk6IFJlYXJyYW5nZSBSRVNUT1JFX0FMTCB0byByZXN0b3JlIHJlZ2lzdGVy IGluIHN0YWNrIG9yZGVyCmUxMzEzMDk4ZTQzYzQxNTk4ZDViMzc4ZTYzNDRk NjkxZGNmMjlmMmYgeDg2OiBJbnRyb2R1Y2UgYSBjb21tb24gY3B1aWRfcG9s aWN5X3VwZGF0ZWQoKQo5ZWRlMWFjYmU5MWNiMTI3YjIzZDVlNzExNDcwMDI1 YjQ2MmY1ZDUwIHg4Ni9odm06IFJlbmFtZSB1cGRhdGVfZ3Vlc3RfdmVuZG9y KCkgY2FsbGJhY2sgdG8gY3B1aWRfcG9saWN5X2NoYW5nZWQoKQpkMGNmYmU4 MWQwMWIyYWMxZGM5ZDAyZDcwZDMyNDkyNDlkNWNiNWJjIHg4Ni9hbHQ6IElu dHJvZHVjZSBBTFRFUk5BVElWRXssXzJ9IG1hY3JvcwpkNTk2ZTZhMGE2ZGRm ZWJiZTY1N2QwN2QwZDY0MTU5Y2M0ZWI3YTY4IHg4Ni9hbHQ6IEJyZWFrIG91 dCBhbHRlcm5hdGl2ZS1hc20gaW50byBhIHNlcGFyYXRlIGhlYWRlciBmaWxl CmY1MGVhODQwYjlhODYwOTI3YzdhY2E1ZmE2NGViMzRlMTRmMTcxNjQgeGVu L2FybTMyOiBlbnRyeTogRG9jdW1lbnQgdGhlIHB1cnBvc2Ugb2YgcjExIGlu IHRoZSB0cmFwcyBoYW5kbGVyCmRlM2JkYWE3MTcwMDJlNGVjOTE3YmQwNDk0 OTQzZWIxNjYwZDcxYjggeGVuL2FybTMyOiBJbnZhbGlkYXRlIGljYWNoZSBv biBndWVzdCBleGlzdCBmb3IgQ29ydGV4LUExNQo3NjY5OTBiMGI2NDMzNmQx Yjg1OWI2Y2FhMzYwMzNlYzUzMzhkNTYzIHhlbi9hcm0zMjogSW52YWxpZGF0 ZSBCVEIgb24gZ3Vlc3QgZXhpdCBmb3IgQ29ydGV4IEExNyBhbmQgMTIKNGFj MDIyOWJjNTMxMmEwMTY2NGI3NDcyNjFlZTFjYzdlYTUyYzRiNSB4ZW4vYXJt MzI6IEFkZCBza2VsZXRvbiB0byBoYXJkZW4gYnJhbmNoIHByZWRpY3RvciBh bGlhc2luZyBhdHRhY2tzCmJhZmQ2M2Y4YmUyZThhNzhjMGU4NTQ0NGU0YzI1 NWU2NzkzMDMyODIgeGVuL2FybTMyOiBlbnRyeTogQWRkIG1pc3NpbmcgdHJh cF9yZXNldCBlbnRyeQpkNWJiNDI1ZGFjNjcxOGQzZmJhNjRiODYzYjA3ZDcz MTRjODU3MDY3IHhlbi9hcm0zMjogQWRkIG1pc3NpbmcgTUlEUiB2YWx1ZXMg Zm9yIENvcnRleC1BMTcgYW5kIEExMgowMDNlYzNlMDBhMDU5MzVlYTZhMzE0 MzBkYTY1ZWU2MjM2MzkwMGY5IHhlbi9hcm0zMjogZW50cnk6IENvbnNvbGlk YXRlIERFRklORV9UUkFQX0VOVFJZXyogbWFjcm9zCmZkODg0ZDYxOTkxY2Qw ZGU1ODhhZTUxNzI4Y2QwNjAyMzc1ZGZhNzEgeGVuL2FybTY0OiBJbXBsZW1l bnQgYnJhbmNoIHByZWRpY3RvciBoYXJkZW5pbmcgZm9yIGFmZmVjdGVkIENv cnRleC1BIENQVXMKNTBjNjhkZjgxODJiZjMzMjUyNWViZjYxMjBkM2IxZTBm ZGY3NzU0NSB4ZW4vYXJtNjQ6IEFkZCBza2VsZXRvbiB0byBoYXJkZW4gdGhl IGJyYW5jaCBwcmVkaWN0b3IgYWxpYXNpbmcgYXR0YWNrcwoxYmRjYzlmN2Vm NDM4YWI5YzIxOWE1MDk5NzI2YjExMmI5M2E0ZmJlIHhlbi9hcm06IGNwdWVy cmF0YTogQWRkIE1JRFJfQUxMX1ZFUlNJT05TCjI5MTRlZjU3NTNjOTMyODg4 OWRmMzE0ZjMzYmIxMmVjZTFiZDRmYmUgeGVuL2FybTY0OiBBZGQgbWlzc2lu ZyBNSURSIHZhbHVlcyBmb3IgQ29ydGV4LUE3MiwgQTczIGFuZCBBNzUKNjJi OTcwNmRiYTNiNmEzZDk4ODEzMjliY2E2MDQyMTYzMTNjODJkYyB4ZW4vYXJt OiBJbnRyb2R1Y2UgZW5hYmxlIGNhbGxiYWNrIHRvIGVuYWJsZSBhIGNhcGFi aWxpdGllcyBvbiBlYWNoIG9ubGluZSBDUFUKNjI0YWJkY2YyZDMwYWU0OGUw NjUzZmI1MTFiNGM5MGQzY2NkZDJhZiB4ZW4vYXJtOiBEZXRlY3Qgc2lsaWNv biByZXZpc2lvbiBhbmQgc2V0IGNhcCBiaXRzIGFjY29yZGluZ2x5CmQ3Yjcz ZWRkMGZlNmJiMGM0NmFhODgzMjI5ZjkwMDY0M2I0NzI2ZTkgeGVuL2FybTog Y3B1ZmVhdHVyZTogUHJvdmlkZSBhbiBoZWxwZXIgdG8gY2hlY2sgaWYgYSBj YXBhYmlsaXR5IGlzIHN1cHBvcnRlZAoxMTJjNDljMTE0ZmZlMzdlMDY4ZmM5 ZjEzZTk2MGE4ZjI3NTM3OWQyIHhlbi9hcm06IEFkZCBjcHVfaHdjYXAgYml0 bWFwCmE1YjBmYTQ4NzFiMDg5NWRhMjAzZmIyZGFjMTY4NDBkMjRjNmJlMjEg eGVuL2FybTogQWRkIG1hY3JvcyB0byBoYW5kbGUgdGhlIE1JRFIKMGU2YzZm YzQ0OTAwMGQ5N2Y5ZmE4N2VkMWZiZTIzZjBjZjIxNDA2YiB4ODYvZW50cnk6 IFJlbW92ZSBzdXBwb3J0IGZvciBwYXJ0aWFsIGNwdV91c2VyX3JlZ3MgZnJh bWVzCgo0LjY6CgowZmJmMzBhN2Y4NjMxMzlkZDBhYzU1NmU0NGY5MmY1Nzg3 NjU0ODQ3IHg4Ni9odm06IERvbid0IGNvcnJ1cHQgdGhlIEhWTSBjb250ZXh0 IHN0cmVhbSB3aGVuIHdyaXRpbmcgdGhlIE1TUiByZWNvcmQKN2UyMGI5YjJk ZGJiMDRjNmViYjYwNjEzYjExMTdlMDVlZGM4YTVlYSB4ODYvUFY6IGNvcnJl Y3RseSBjb3VudCBNU1JzIHRvIG1pZ3JhdGUKNzViZGQ2OTMwMzNlNmRiZDZm ZTVhZTIzNWY3OTk2MWQyZjBhYTg0ZCB4ODYvaWRsZTogQ2xlYXIgU1BFQ19D VFJMIHdoaWxlIGlkbGUKODk5NGNmM2NmNzMwNDIyZGVkNjU5NmVjYjE4ZGMw ZDhiNjU3OTQ5MyB4ODYvY3R4dDogSXNzdWUgYSBzcGVjdWxhdGlvbiBiYXJy aWVyIGJldHdlZW4gdmNwdSBjb250ZXh0cwo2NDJjNjAzN2JiYTMxMDUzOGIw MGMwY2JiNWQ5MTUyNWJkMWVlZDBhIHg4Ni9ib290OiBDYWxjdWxhdGUgdGhl IG1vc3QgYXBwcm9wcmlhdGUgQlRJIG1pdGlnYXRpb24gdG8gdXNlCmMyNWVh OWExMzkzYzFlYjVkNjczMmVjMzY2YmFhMTA5MWRiNWU3ZGIgeDg2L2VudHJ5 OiBBdm9pZCB1c2luZyBhbHRlcm5hdGl2ZXMgaW4gTk1JLyNNQyBwYXRocwpm ZWJhNTcxYTVkOTU4Njc3OGUwOTc4YjhkZjViOTE2NjI3NWI4NjgwIHg4Ni9l bnRyeTogT3JnYW5pc2UgdGhlIGNsb2JiZXJpbmcgb2YgdGhlIFJTQi9SQVMg b24gZW50cnkgdG8gWGVuCjAxNjMwODdlZDYxNzViMDA5NjZmNGVlOTkxZDhj NDI0YWQ3ZWI1OWQgeDg2L2VudHJ5OiBPcmdhbmlzZSB0aGUgdXNlIG9mIE1T Ul9TUEVDX0NUUkwgYXQgZWFjaCBlbnRyeS9leGl0IHBvaW50CjQ0YzI2NjY1 ODlmZWZjMTMwNDllZGM4NzRjN2VmMDYzODIzYmFkOTAgeDg2L2h2bTogUGVy bWl0IGd1ZXN0cyBkaXJlY3QgYWNjZXNzIHRvIE1TUl97U1BFQ19DVFJMLFBS RURfQ01EfQpkYjc0M2IwNDk5OGE5Y2JmNjg2NmI1ZjMyODg1NTIzOWE3MzIy MGU1IHg4Ni9taWdyYXRlOiBNb3ZlIE1TUl9TUEVDX0NUUkwgb24gbWlncmF0 ZQo0MWE1Y2NlYzk5ZTgxYTc2OGE2Njk5NWY0ODNmNDI0Zjg0OGY1YjVlIHg4 Ni9tc3I6IEVtdWxhdGlvbiBvZiBNU1Jfe1NQRUNfQ1RSTCxQUkVEX0NNRH0g Zm9yIGd1ZXN0cwo0ZTFiOWU5OGRmZmJjMmYyOWEwYTkwYTRhZTQzYjllMTlm MzIzMDg5IHg4Ni9jcHVpZDogSGFuZGxpbmcgb2YgSUJSUy9JQlBCLCBTVElC UCBhbmQgSUJSUyBmb3IgZ3Vlc3RzCjRkMjE1NDkxNGUzZjQ0YmFlMTIzZGM2 YTkzZmJiM2YxYjM5YzBmZWUgeDg2L2NtZGxpbmU6IEludHJvZHVjZSBhIGNv bW1hbmQgbGluZSBvcHRpb24gdG8gZGlzYWJsZSBJQlJTL0lCUEIsIFNUSUJQ IGFuZCBJQlBCCmZmNDgwMGNhYzYzNzU2Zjc3NTVlNmMyNTE1NzFjZDI5ZmQ1 MTcxZWIgeDg2L2ZlYXR1cmU6IERlZmluaXRpb25zIGZvciBJbmRpcmVjdCBC cmFuY2ggQ29udHJvbHMKMjYxM2ExYmM3MDllZDRiNDZhZjM2YjBiYWIzMjAw ZWQ5ZDNjODZkMCB4ODY6IEludHJvZHVjZSBhbHRlcm5hdGl2ZSBpbmRpcmVj dCB0aHVua3MKODMzNWM4YWVkYWNkOWE1MGI0Nzk2YWZiNTMzZGM4MjA1ZjIx MjllNCB4ODYvYW1kOiBUcnkgdG8gc2V0IGxmZW5jZSBhcyBiZWluZyBEaXNw YXRjaCBTZXJpYWxpc2luZwphYjIwYzVjODA0YWU4MTRkZTliZWQ1Zjg1ZDU1 ZmVjYzg5NGRjNzhmIHg4Ni9ib290OiBSZXBvcnQgZGV0YWlscyBvZiBzcGVj dWxhdGl2ZSBtaXRpZ2F0aW9ucwo5MDg5ZGE5Y2QwNjg3NWJlNmMxMDIyZDU5 YTY2NTFjZjM5MTlkYTJlIHg4NjogU3VwcG9ydCBpbmRpcmVjdCB0aHVua3Mg ZnJvbSBhc3NlbWJseSBjb2RlCjhlZGZjODJmNjdmMjUxMzc5MDlkZGExM2U2 NjU4Y2JhNGQxZTVkMjYgeDg2OiBTdXBwb3J0IGNvbXBpbGluZyB3aXRoIGlu ZGlyZWN0IGJyYW5jaCB0aHVua3MKYWY1YjYxYWY5ZTM1MGJjYzJjOGIwZjA1 MzY4MmUzYzdhNzAwYjQ2ZiBjb21tb24vd2FpdDogQ2xhcmlmaWNhdGlvbnMg dG8gd2FpdCBpbmZyYXN0cnVjdHVyZQplYzA1MDkwNDAzZWY0ZDc2MGZiZTcw MWUzMWFmZDBmMGVkYzQxNGQ1IHg4Ni9lbnRyeTogRXJhc2UgZ3Vlc3QgR1BS IHN0YXRlIG9uIGVudHJ5IHRvIFhlbgo3NTI2M2Y3OTA4YTAyZjU2NzNjMjVk ZjliY2RhZWQ5ZmU1ZjlkZTVjIHg4Ni9odm06IFVzZSBTQVZFX0FMTCB0byBj b25zdHJ1Y3QgdGhlIGNwdV91c2VyX3JlZ3MgZnJhbWUgYWZ0ZXIgVk1FeGl0 CmY3ZTI3M2EwN2NjZjk5MzA2MzcyNzY3NTU4OWYxMGRhMjA2ZjE2ODMgeDg2 L2VudHJ5OiBSZWFycmFuZ2UgUkVTVE9SRV9BTEwgdG8gcmVzdG9yZSByZWdp c3RlciBpbiBzdGFjayBvcmRlcgowM2M3ZDJjZDFiNGJiOTg2OGMxMGM0YTNk YjJiMDkyZDIxMWQwNTVhIHg4Ni9hbHQ6IEludHJvZHVjZSBBTFRFUk5BVElW RXssXzJ9IG1hY3Jvcwo5Y2UxYTcxODAwNTAzNTNjMDczMjE5ODBjZjFlZDBi MGJhZWJmMzhhIHg4Ni9hbHQ6IEJyZWFrIG91dCBhbHRlcm5hdGl2ZS1hc20g aW50byBhIHNlcGFyYXRlIGhlYWRlciBmaWxlCmE3MzVjN2FlODA0NjAyNDky NTkyNzQwNjc0N2Q0YTZjYTViZjdmY2MgeDg2L21pY3JvY29kZTogQWRkIHN1 cHBvcnQgZm9yIGZhbTE3aCBtaWNyb2NvZGUgbG9hZGluZwo5ZDUzNGMxMmJm NzFiYWJiNzZmMTMzODAyOTg0MWY3NTcxOTFmNzI5IHhlbi9hcm0zMjogZW50 cnk6IERvY3VtZW50IHRoZSBwdXJwb3NlIG9mIHIxMSBpbiB0aGUgdHJhcHMg aGFuZGxlcgpkYmIzNTUzMTMwMjQxYWU5OWQ0NDRhNmEwOGI3ZGMzMmNlOTBh MjcyIHhlbi9hcm0zMjogSW52YWxpZGF0ZSBpY2FjaGUgb24gZ3Vlc3QgZXhp c3QgZm9yIENvcnRleC1BMTUKZTU0YThjNjE3Y2ViNWJhMzQ4MWU2YWExMjJh ZDNmODM1YzE5MTViOCB4ZW4vYXJtMzI6IEludmFsaWRhdGUgQlRCIG9uIGd1 ZXN0IGV4aXQgZm9yIENvcnRleCBBMTcgYW5kIDEyCjgwMDVlZDNlZjE0YzZj OGIzMWE5ZTFhNWFlMjU3NmE0YjRjNjY1MjggeGVuL2FybTMyOiBBZGQgc2tl bGV0b24gdG8gaGFyZGVuIGJyYW5jaCBwcmVkaWN0b3IgYWxpYXNpbmcgYXR0 YWNrcwo5YTg1MmUwZWViYzYzMDA1ODVkYjg5NjY5ZGJhZGU2MjViZTE4YTEy IHhlbi9hcm0zMjogZW50cnk6IEFkZCBtaXNzaW5nIHRyYXBfcmVzZXQgZW50 cnkKZDc3OWNjMWY5YzZhNWYxZDQwZGI5ZTg1Zjc3OWE3OWM4ZWVkMmNjZiB4 ZW4vYXJtMzI6IEFkZCBtaXNzaW5nIE1JRFIgdmFsdWVzIGZvciBDb3J0ZXgt QTE3IGFuZCBBMTIKYzkzYmNmOTQwOWUwZGExNGNiYzRiZjQzYmYxMzhiZmFh ZWNlZmEyYyB4ZW4vYXJtMzI6IGVudHJ5OiBDb25zb2xpZGF0ZSBERUZJTkVf VFJBUF9FTlRSWV8qIG1hY3JvcwoxNWFkY2YzOTU5MjM0OTllYjFlYWFjYTFl NjdjMDMyOTU2NDI4MTkxIHhlbi9hcm02NDogSW1wbGVtZW50IGJyYW5jaCBw cmVkaWN0b3IgaGFyZGVuaW5nIGZvciBhZmZlY3RlZCBDb3J0ZXgtQSBDUFVz CmQ3YjgxOTBkMzIyMjE1NmU4OWNjZWZiN2FjNzRhZDA0MTAzMzcwOTcgeGVu L2FybTY0OiBBZGQgc2tlbGV0b24gdG8gaGFyZGVuIHRoZSBicmFuY2ggcHJl ZGljdG9yIGFsaWFzaW5nIGF0dGFja3MKMmIxNDU3Zjk1NWE5ODAwN2NkNTFi ZTY3Zjc4ZDE2OTA3MTFlODg0OSB4ZW4vYXJtOiBjcHVlcnJhdGE6IEFkZCBN SURSX0FMTF9WRVJTSU9OUwphMzU3ODgwMmEyODgyYWZiYmZlNzMwZjAyMjdl MDc1YjVmNDJiNGE2IHhlbi9hcm02NDogQWRkIG1pc3NpbmcgTUlEUiB2YWx1 ZXMgZm9yIENvcnRleC1BNzIsIEE3MyBhbmQgQTc1CmVlMjNmY2MyNTM5Y2U4 MTQzYWU0Y2U1OGE3YzE0MGZhNDZhNDM1OWIgeGVuL2FybTogSW50cm9kdWNl IGVuYWJsZSBjYWxsYmFjayB0byBlbmFibGUgYSBjYXBhYmlsaXRpZXMgb24g ZWFjaCBvbmxpbmUgQ1BVCjU2NTEwMTU0YmJkMjFmMTAwODA5OTNiNzg4OGMx YTQ3YTgwMmMzZTIgeGVuL2FybTogRGV0ZWN0IHNpbGljb24gcmV2aXNpb24g YW5kIHNldCBjYXAgYml0cyBhY2NvcmRpbmdseQoyMjVlOWM3MDUwZThmMjY5 NGRmM2RjOTJjOTViMDZhNDZlNTcxMzBlIHhlbi9hcm06IGNwdWZlYXR1cmU6 IFByb3ZpZGUgYW4gaGVscGVyIHRvIGNoZWNrIGlmIGEgY2FwYWJpbGl0eSBp cyBzdXBwb3J0ZWQKM2M3MDYxOTU1NjU5MTBiOTYxZWI1YTdlNjRmMzQ5NDhk ZWIyYTU0NSB4ZW4vYXJtOiBBZGQgY3B1X2h3Y2FwIGJpdG1hcAoxMjIyMzMz YTgyMjA2Mzg3NDdlNzdiNDBiNjQxOGRhYTg1MjcwMjY1IHhlbi9hcm06IEFk ZCBtYWNyb3MgdG8gaGFuZGxlIHRoZSBNSURSCmM2ZTllNjA5NTY2OWIzYzYz YjkyZDIxZmRkYjMyNjQ0MWM3MzcxMmMgeDg2L2VudHJ5OiBSZW1vdmUgc3Vw cG9ydCBmb3IgcGFydGlhbCBjcHVfdXNlcl9yZWdzIGZyYW1lcwo= --=separator Content-Type: application/octet-stream; name="xsa254/README.comet" Content-Disposition: attachment; filename="xsa254/README.comet" Content-Transfer-Encoding: base64 CQkJICAgIFBWLWluLVBWSCBzaGltCiAgICAgICAgICAgICAgICAgICAgICAg ICAgICA9PT09PT09PT09PT09PQoKU3VtbWFyeQotLS0tLS0tCgpUaGlzIFJF QURNRSBkZXNjcmliZXMgb25lIG9mIHRocmVlIG1pdGlnYXRpb24gc3RyYXRl Z2llcyBmb3IgTWVsdGRvd24uCgpUaGUgYmFzaWMgcHJpbmNpcGxlIGlzIHRv IHJ1biBQViBndWVzdHMgKHdoaWNoIGNhbiByZWFkIGFsbCBvZiBob3N0Cm1l bW9yeSBkdWUgdG8gdGhlIGhhcmR3YXJlIGJ1Z3MpIGFzIFBWSCBndWVzdHMg KHdoaWNoIGNhbm5vdCwgYXQgbGVhc3QKbm90IGR1ZSB0byBNZWx0ZG93biku ICBUaGUgUFYgZW52aXJvbm1lbnQgaXMgc3RpbGwgcHJvdmlkZWQgdG8gdGhl Cmd1ZXN0IGJ5IGFuIGVtYmVkZGVkIGNvcHkgb2YgWGVuLCB0aGUgInNoaW0i LiAgVGhpcyB2ZXJzaW9uIG9mIHRoZQpzaGltIGlzIGNvZGVuYW1lZCAiQ29t ZXQiLgoKVW5saWtlIFZpeGVuLCBDb21ldCByZXF1aXJlcyBtb2RpZmljYXRp b25zIHRvIHRoZSB0b29sc3RhY2sgYW5kIGhvc3QKaHlwZXJ2aXNvci4KCk5v dGUgdGhhdCBib3RoIG9mIHRoZXNlIHNoaW0tYmFzZWQgYXBwcm9hY2hlcyBw cmV2ZW50IGF0dGFja3Mgb24gdGhlCmhvc3QsIGJ1dCBsZWF2ZSB0aGUgZ3Vl c3QgdnVsbmVyYWJsZSB0byBNZWx0ZG93biBhdHRhY2tzIGJ5IGl0cyBvd24K dW5wcml2aWxlZ2VkIHByb2Nlc3NlczsgdGhpcyBpcyB0cnVlIGV2ZW4gaWYg dGhlIGd1ZXN0IE9TIGhhcyBLUFRJIG9yCnNpbWlsYXIgTWVsdGRvd24gbWl0 aWdhdGlvbi4KClZlcnNpb25zIGZvciBYZW4gNC44IGFuZCA0LjEwIGFyZSBh dmFpbGFibGUuCgpXaGF0IHlvdSB3aWxsIG5lZWQKLS0tLS0tLS0tLS0tLS0t LS0tCgogKiBZb3Ugd2lsbCBuZWVkIHRoZSB4ZW4uZ2l0IHdpdGggdGhlIGZv bGxvd2luZyB0YWdzOgogIC0gRm9yIDQuMTA6IDQuMTAuMC1zaGltLWNvbWV0 LTMKICAtIEZvciA0Ljg6ICA0LjguM3ByZS1zaGltLWNvbWV0LTIgICBhbmQg IDQuMTAuMC1zaGltLWNvbWV0LTMKCkJ1aWxkIGluc3RydWN0aW9uczogNC4x MAotLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0KCjEuIEJ1aWxkIGEgNC4xMCsg c3lzdGVtCiAgICBnaXQgY2xvbmUgZ2l0Oi8veGVuYml0cy54ZW5wcm9qZWN0 Lm9yZy94ZW4uZ2l0IHhlbi5naXQKICAgIGNkIHhlbi5naXQKICAgIGdpdCBj aGVja291dCA0LjEwLjAtc2hpbS1jb21ldC0zCgpEbyBhIGJ1aWxkIGFuZCBp bnN0YWxsIGFzIG5vcm1hbC4gIFRoZSBzaGltIHdpbGwgYmUgYnVpbHQgYXMg cGFydCBvZiB0aGUKbm9ybWFsIGJ1aWxkIHByb2Nlc3MsIGFuZCBwbGFjZWQg d2l0aCBvdGhlciAnc3lzdGVtJyBiaW5hcmllcyB3aGVyZSB0aGUKdG9vc3Rh Y2sga25vd3MgaG93IHRvIGZpbmQgaXQuCgpCdWlsZCBpbnN0cnVjdGlvbnM6 IDQuOAotLS0tLS0tLS0tLS0tLS0tLS0tLS0tLQoKVGhlIGNvZGUgZm9yIHNo aW0gaXRzZWxmIGlzIG5vdCBiYWNrcG9ydGVkIHRvIDQuOC4gIDQuOCB1c2Vy cyBzaG91bGQKdXNlIGEgc2hpbSBidWlsdCBmcm9tIDQuMTAtYmFzZWQgc291 cmNlIGNvZGU7IHRoaXMgY2FuIGJlIHNpbXBseQpkcm9wcGVkIGludG8gYSBY ZW4gNC44IGluc3RhbGxhdGlvbi4KCjEuIEJ1aWxkIGEgNC44KyBzeXN0ZW0g d2l0aCBzdXBwb3J0IGZvciBydW5uaW5nIFBWSCwgYW5kIGZvciBwdnNoaW06 CgogICAgZ2l0IGNsb25lIGdpdDovL3hlbmJpdHMueGVucHJvamVjdC5vcmcv eGVuLmdpdCB4ZW4uZ2l0CiAgICBjZCB4ZW4uZ2l0CiAgICBnaXQgY2hlY2tv dXQgNC44LjNwcmUtc2hpbS1jb21ldC0yCgogIERvIGEgYnVpbGQgYW5kIGlu c3RhbGwgYXMgbm9ybWFsLgoKMi4gQnVpbGQgYSA0LjEwKyBzeXN0ZW0gdG8g YmUgdGhlIHNoaW06CgogICAgZ2l0IGNsb25lIGdpdDovL3hlbmJpdHMueGVu cHJvamVjdC5vcmcveGVuLmdpdCB4ZW4uZ2l0CiAgICBjZCB4ZW4uZ2l0CiAg ICBnaXQgY2hlY2tvdXQgNC4xMC4wLXNoaW0tY29tZXQtMwogICAgLi9jb25m aWd1cmUKICAgIG1ha2UgLUMgdG9vbHMvZmlybXdhcmUveGVuLWRpcgoKICBB bmQgdGhlbiBpbnN0YWxsIHRoZSBzaGltIGV4ZWN1dGFibGUgd2hlcmUKICB0 aGUgNC44IHB2IHNoaW0gbW9kZSB0b29scyBleHBlY3QgdG8gZmluZCBpdAoK ICAgIGNwIHRvb2xzL2Zpcm13YXJlL3hlbi1kaXIveGVuLXNoaW0gL3Vzci9s aWIveGVuL2Jvb3QveGVuLXNoaW0KICAgIGNwIHRvb2xzL2Zpcm13YXJlL3hl bi1kaXIveGVuLXNoaW0gL3Vzci9sb2NhbC9saWIveGVuL2Jvb3QveGVuLXNo aW0KCiAgVGhpcyBzdGVwIGlzIG9ubHkgbmVlZGVkIHRvIGJvb3QgZ3Vlc3Rz IGluICJQVkggd2l0aCBQViBzaGltIgogIG1vZGU7IGl0IGlzIG5vdCBuZWVk ZWQgd2hlbiBib290aW5nIFBWSC1zdXBwb3J0aW5nIGd1ZXN0cyBhcyBQVkgu CgoKVXNhZ2UgaW5zdHJ1Y3Rpb25zCi0tLS0tLS0tLS0tLS0tLS0tLQoKKiBD b252ZXJ0aW5nIGEgUFYgY29uZmlnIHRvIGEgUFZIIHNoaW0gY29uZmlnCgot IFJlbW92ZSBhbnkgcmVmZXJlbmNlIHRvICdidWlsZGVyJyAoZS5nLiwgYGJ1 aWxkZXI9ImdlbmVyaWMiYCkKLSBBZGQgdGhlIGZvbGxvd2luZyB0d28gbGlu ZXM6CiAgdHlwZT0icHZoIgogIHB2c2hpbT0xCgoqIENvbnZlcnRpbmcgYSBQ ViBjb25maWcgdG8gYSBQVkggY29uZmlnCgpJZiB5b3UgaGF2ZSBhIGtlcm5l bCBjYXBhYmxlIG9mIGJvb3RpbmcgUFZILCB0aGVuIFBWSCBtb2RlIGlzIGJv dGgKZmFzdGVyIGFuZCBtb3JlIHNlY3VyZSB0aGFuIFBWIG9yIFBWSC1zaGlt IG1vZGUuCgotIFJlbW92ZSBhbnkgcmVmZXJlbmNlIHRvICdidWlsZGVyJyAo ZS5nLiwgYGJ1aWxkZXI9ImdlbmVyaWMiYCkKLSBBZGQgdGhlIGZvbGxvd2lu ZyBsaW5lOgogIHR5cGU9InB2aCIKCiogVGhlcmUgaXMgbm8gbmVlZCB0byBy ZWJvb3QgdGhlIGhvc3QuCg== --=separator Content-Type: application/octet-stream; name="xsa254/README.pti" Content-Disposition: attachment; filename="xsa254/README.pti" Content-Transfer-Encoding: base64 ICAgICAgICAgICAgICAgICAgICAgIFhlbiBwYWdlLXRhYmxlIGlzb2xhdGlv biAoWFBUSSkKICAgICAgICAgICAgICAgICAgICAgID09PT09PT09PT09PT09 PT09PT09PT09PT09PT09PT0KClN1bW1hcnkKLS0tLS0tLQoKVGhpcyBSRUFE TUUgZ2l2ZXMgcmVmZXJlbmNlcyBmb3Igb25lIG9mIHRocmVlIG1pdGlnYXRp b24gc3RyYXRlZ2llcwpmb3IgTWVsdGRvd24uCgpUaGlzIHNlcmllcyBpcyBh IGZpcnN0LWNsYXNzIG1pZ2l0YXRpb24gcGFnZXRhYmxlIGlzb2xhdGlvbiBz ZXJpZXMgZm9yClhlbi4gIEl0IGlzIGF2YWlsYWJsZSBmb3IgWGVuIDQuNiB0 byBYZW4gNC4xMCBhbmQgbGF0ZXIuCgpQcmVjaXNlIGdpdCBjb21taXRzIGFy ZSBhcyBmb2xsb3dzOgoKNC4xMDoKCjA1ZWJhOTNhMGEzNDRlYzE4OWU3MTcy MmJkNTQyY2RjNzk0OWE4YTUgeDg2OiBmaXggR0VUX1NUQUNLX0VORAo3Y2Nj ZDZmNzQ4ZWM3MjRjZjk0MDhjZWM2YjNlYzhlNTRhOGEyYzFmIHg4NjogYWxs b3cgTWVsdGRvd24gYmFuZC1haWQgdG8gYmUgZGlzYWJsZWQKMjM0ZjQ4MTMz N2VhMWE5M2RiOTY4ZDYxNDY0OWE2YmRmZGM4NDE4YSB4ODY6IE1lbHRkb3du IGJhbmQtYWlkIGFnYWluc3QgbWFsaWNpb3VzIDY0LWJpdCBQViBndWVzdHMK NTdkYzE5N2NmMGQzNmM1NmJhMWQ5ZDMyYzZhMTQ1NGJiNTI2MDViYiB4ODYv bW06IEFsd2F5cyBzZXQgX1BBR0VfQUNDRVNTRUQgb24gTDRlIHVwZGF0ZXMK OTEwZGQwMDVkYTIwZjI3ZjM0MTViN2VjY2RmNDM2ODc0OTg5NTA2YiB4ODYv ZW50cnk6IFJlbW92ZSBzdXBwb3J0IGZvciBwYXJ0aWFsIGNwdV91c2VyX3Jl Z3MgZnJhbWVzCgo0Ljk6CgpmMTFjZjI5ZjI3NGU5MGU2NDUxYWFhYTVhYjUy ZGYyZWQ2M2ViMzBkIHg4NjogZml4IEdFVF9TVEFDS19FTkQKZGM3ZDQ2NTgw ZDljNjMzYTU5YmUxYzM3NzZmNzljMDFkZDBjYjk4YiB4ODY6IGFsbG93IE1l bHRkb3duIGJhbmQtYWlkIHRvIGJlIGRpc2FibGVkCjFlMDk3NDYzOGQ2NWQ5 YjhhY2Y5YWM3NTExZDc0NzE4OGYzOGJjYzMgeDg2OiBNZWx0ZG93biBiYW5k LWFpZCBhZ2FpbnN0IG1hbGljaW91cyA2NC1iaXQgUFYgZ3Vlc3RzCjg3ZWE3 ODE2MjQ3MDkwZThlNWJjNTY1M2IxNmM0MTI5NDNhMDU4YjUgeDg2L21tOiBB bHdheXMgc2V0IF9QQUdFX0FDQ0VTU0VEIG9uIEw0ZSB1cGRhdGVzCjIyMTNm ZmUxYTJkODJjM2M5YzRhMTU0ZWE2ZWUyNTIzOTVhYTg2OTMgeDg2L2VudHJ5 OiBSZW1vdmUgc3VwcG9ydCBmb3IgcGFydGlhbCBjcHVfdXNlcl9yZWdzIGZy YW1lcwoKNC44OgoKMmNkMTg5ZWI1NWFmOGIwNDE4NWI0NzNhYzI4ODVmNzZi M2Q4N2VmZSB4ODY6IGZpeCBHRVRfU1RBQ0tfRU5ECjMxZDM4ZDYzM2EzMDZi MmIwNjc2N2I1YTVmNWE4YTAwMjY5ZjNjOTIgeDg2OiBhbGxvdyBNZWx0ZG93 biBiYW5kLWFpZCB0byBiZSBkaXNhYmxlZAoxYmE0NzdiZGU3MzdiZjliMjhj YzQ1NWJlZjFlOWE2YmM3NmQ2NmZjIHg4NjogTWVsdGRvd24gYmFuZC1haWQg YWdhaW5zdCBtYWxpY2lvdXMgNjQtYml0IFBWIGd1ZXN0cwowNDllMmY0NWJm YTQ4ODk2NzQ5NDQ2NmVjNjUwNmMzZWNhZTVmZTBlIHg4Ni9tbTogQWx3YXlz IHNldCBfUEFHRV9BQ0NFU1NFRCBvbiBMNGUgdXBkYXRlcwphN2NmMGEzYjgx ODM3N2E4YTQ5YmFlZDM2MDZiZmEyZjIxNGNkNjQ1IHg4Ni9lbnRyeTogUmVt b3ZlIHN1cHBvcnQgZm9yIHBhcnRpYWwgY3B1X3VzZXJfcmVncyBmcmFtZXMK CjQuNzoKCmIxYWUxMjY0YmFmODYxN2RmMDM2YTI5ODQ2MWExYmI0M2VhZTc5 YzEgeDg2OiBmaXggR0VUX1NUQUNLX0VORAplMTlkMGFmNGVlMmFlOWU0MmE4 NWRiNjM5ZmQ2ODQ4ZTcyZjU2NThiIHg4NjogYWxsb3cgTWVsdGRvd24gYmFu ZC1haWQgdG8gYmUgZGlzYWJsZWQKZTE5NTE3YTMzNTVhY2FhYTJmZjgzMDE4 YmM0MWU3ZmQwNDQxNjFlNSB4ODY6IE1lbHRkb3duIGJhbmQtYWlkIGFnYWlu c3QgbWFsaWNpb3VzIDY0LWJpdCBQViBndWVzdHMKOWI3NjkwOGU2ZTA3NGQ3 ZWZiZWFmZTZiYWQwNjZlY2M1ZjNjM2M0MyB4ODYvbW06IEFsd2F5cyBzZXQg X1BBR0VfQUNDRVNTRUQgb24gTDRlIHVwZGF0ZXMKMGU2YzZmYzQ0OTAwMGQ5 N2Y5ZmE4N2VkMWZiZTIzZjBjZjIxNDA2YiB4ODYvZW50cnk6IFJlbW92ZSBz dXBwb3J0IGZvciBwYXJ0aWFsIGNwdV91c2VyX3JlZ3MgZnJhbWVzCgo0LjY6 Cgo0NGFkN2Y2ODk1ZGE5ODYxMDQyZDdhNDFlNjM1ZDQyZDgzY2IyNjYwIHg4 NjogYWxsb3cgTWVsdGRvd24gYmFuZC1haWQgdG8gYmUgZGlzYWJsZWQKOTFk YzkwMmZkZjQxNjU5YzIxMDMyOWQ2ZjY1NzhmODEzMmVlNDc3MCB4ODY6IE1l bHRkb3duIGJhbmQtYWlkIGFnYWluc3QgbWFsaWNpb3VzIDY0LWJpdCBQViBn dWVzdHMKYTA2NTg0MWIzYWU5ZjBlZjQ5Yjk4MjNjZDIwNWM3OWVlMGMyMmI5 YyB4ODYvbW06IEFsd2F5cyBzZXQgX1BBR0VfQUNDRVNTRUQgb24gTDRlIHVw ZGF0ZXMKYzZlOWU2MDk1NjY5YjNjNjNiOTJkMjFmZGRiMzI2NDQxYzczNzEy YyB4ODYvZW50cnk6IFJlbW92ZSBzdXBwb3J0IGZvciBwYXJ0aWFsIGNwdV91 c2VyX3JlZ3MgZnJhbWVzCg== --=separator Content-Type: application/octet-stream; name="xsa254/README.vixen" Content-Disposition: attachment; filename="xsa254/README.vixen" Content-Transfer-Encoding: base64 ICAgICAgICAgICAgICAgIFBWLWluLUhWTSBzaGltIHdpdGggInNpZGVjYXIi IElTTwogICAgICAgICAgICAgICAgPT09PT09PT09PT09PT09PT09PT09PT09 PT09PT09PT09CgpTdW1tYXJ5Ci0tLS0tLS0KClRoaXMgUkVBRE1FIGRlc2Ny aWJlcyBvbmUgb2YgdGhyZWUgbWl0aWdhdGlvbiBzdHJhdGVnaWVzIGZvciBN ZWx0ZG93bi4KClRoZSBiYXNpYyBwcmluY2lwbGUgaXMgdG8gcnVuIFBWIGd1 ZXN0cyAod2hpY2ggY2FuIHJlYWQgYWxsIG9mIGhvc3QKbWVtb3J5IGR1ZSB0 byB0aGUgaGFyZHdhcmUgYnVncykgYXMgSFZNIGd1ZXN0cyAod2hpY2ggY2Fu bm90LCBhdCBsZWFzdApub3QgZHVlIHRvIE1lbHRkb3duKS4gIFRoZSBQViBl bnZpcm9ubWVudCBpcyBzdGlsbCBwcm92aWRlZCB0byB0aGUKZ3Vlc3QgYnkg YW4gZW1iZWRkZWQgY29weSBvZiBYZW4sIHRoZSAic2hpbSIuICBUaGlzIHZl cnNpb24gb2YgdGhlCnNoaW0gaXMgY29kZW5hbWVkICJWaXhlbiIuCgpJbiBv cmRlciB0byBib290IHRoZSBzaGltIHdpdGggYW4gdW5tb2RpZmllZCB0b29s c3RhY2ssIHlvdSBhbHNvCnByb3ZpZGUgYSBzcGVjaWFsIGRpc2sgY29udGFp bmluZyB0aGUgc2hpbSBhbmQgdGhlIGd1ZXN0IGtlcm5lbCAob3IKcHZncnVi KTsgdGhpcyBpcyBjYWxsZWQgdGhlICJzaWRlY2FyIi4KCk5vdGUgdGhhdCBi b3RoIG9mIHRoZXNlIHNoaW0tYmFzZWQgYXBwcm9hY2hlcyBwcmV2ZW50IGF0 dGFja3Mgb24gdGhlCmhvc3QsIGJ1dCBsZWF2ZSB0aGUgZ3Vlc3QgdnVsbmVy YWJsZSB0byBNZWx0ZG93biBhdHRhY2tzIGJ5IGl0cyBvd24KdW5wcml2aWxl Z2VkIHByb2Nlc3NlczsgdGhpcyBpcyB0cnVlIGV2ZW4gaWYgdGhlIGd1ZXN0 IE9TIGhhcyBLUFRJIG9yCnNpbWlsYXIgTWVsdGRvd24gbWl0aWdhdGlvbi4K CldoYXQgeW91IHdpbGwgbmVlZAotLS0tLS0tLS0tLS0tLS0tLS0KCiAqIFlv dXIgaG9zdCBtdXN0IGJlIGFibGUgdG8gcnVuIGdydWItbWtyZXNjdWUgdG8g Z2VuZXJhdGUgYSAuaXNvCiAqIFlvdSB3aWxsIHRoZXJlZm9yZSBuZWVkIHhv cnJpc28gYW5kIG10b29scwogKiBZb3UgbXVzdCBiZSB1c2luZyB4bCBhbmQg YWJsZSB0byB1c2UgYW4gYWx0ZXJuYXRpdmUgeW91ciBndWVzdCBjb25maWcK CiAqIFlvdSB3aWxsIG5lZWQgdGhlIHNjcmlwdCAicHZzaGltLWNvbnZlcnRl ci5wbCIKICAtIFRoaXMgcmVsaWVzIG9uIHBlcmwtanNvbgogKiBZb3Ugd2ls bCBuZWVkIHRoZSB4ZW4uZ2l0IHRhZyA0LjkuMS1zaGltLXZpeGVuLTEKCgpJ bnN0cnVjdGlvbnMKLS0tLS0tLS0tLS0tCgoxLiBPbiBhIHN1aXRhYmxlIHN5 c3RlbSAocGVyaGFwcyBhIGRpZmZlcmVudCBob3N0KQogICAgZ2l0IGNsb25l IGdpdDovL3hlbmJpdHMueGVucHJvamVjdC5vcmcveGVuLmdpdCB4ZW4uZ2l0 CiAgICBjZCB4ZW4uZ2l0CiAgICBnaXQgY2hlY2tvdXQgNC45LjEtc2hpbS12 aXhlbi0xCgpJZiB5b3UgbmVlZCBiaS1kaXJlY3Rpb25hbCBjb25zb2xlIGFu ZCBkb24ndCBtaW5kIGEgbGVzcy10ZXN0ZWQgcGF0Y2gsCnlvdSBjYW4gYXBw bHkgdGhlIHBhdGNoIGZvdW5kIGluIHRoaXMgZW1haWw6CgogICAgbWFyYy5p bmZvLz9pPTwxNTE1NjA0NTUyLTkyMDUtMS1naXQtc2VuZC1lbWFpbC1zcm5A cHJnbXIuY29tPgoKYnVpbGQgYSB4ZW4gaHlwZXJ2aXNvciBiaW5hcnkgYXMg dXN1YWw6CgogICAgbWFrZSB4ZW4KCklmIHlvdXIgZGVmYXVsdCB2ZXJzaW9u IG9mIHB5dGhvbiBpcyBweXRob24gMywgeW91IG1heSBuZWVkIHRvIGFkZCB0 aGUgZm9sbG93aW5nOgoKICAgIG1ha2UgUFlUSE9OPXB5dGhvbjIgeGVuCgpU aGlzIHdpbGwgYnVpbGQgYSBmaWxlCiAgICB4ZW4veGVuLmd6CgoyLiBDb3B5 IHRoYXQgZmlsZSB0byB5b3VyIGRvbTAuCgpJZGVhbGx5IHNvbWVwbGFjZSBs aWtlIC91c3IvbGliL3hlbi9ib290L3hlbi12aXhlbi5negoKMy4gQ29weSB0 aGUgc2NyaXB0IHB2c2hpbS1jb252ZXJ0ZXIgdG8geW91ciBkb20wIGFuZCBt YWtlCiAgIGl0IGV4ZWN1dGFibGU6CiAgICAgIGNobW9kICt4IHB2c2hpbS1j b252ZXJ0ZXIucGwKCjQuIEZvciBlYWNoIGd1ZXN0CgogIChpKSBpZiB0aGUg Z3Vlc3QgaXMgY3VycmVudGx5IGJvb3RlZCB3aXRoIHB5Z3J1YiB5b3UgbXVz dCBmaXJzdAogICBzd2l0Y2ggdG8gZGlyZWN0IGtlcm5lbCBib290IChieSBt YW51YWxseSBjb3B5aW5nIHRoZSBrZXJuZWwgYW5kCiAgIGluaXRyYW1mcyBv dXQgb2YgdGhlIGd1ZXN0LCBhbmQgY29uZmlndXJpbmcgdGhlIGNvbW1hbmQg bGluZSBpbiB0aGUKICAgZG9tYWluIGNvbmZpZ3VyYXRpb24gZmlsZSksIG9y IHB2Z3J1Yi4KCiAgKGlpKSBydW4KICAgICAgLi9wdnNoaW0tY29udmVydGVy LnBsIC0tc2hpbT0vdXNyL2xpYi94ZW4vYm9vdC94ZW4tdml4ZW4uZ3ogL2V0 Yy94ZW4vR1VFU1QuY2ZnIC9ldGMveGVuL0dVRVNULndpdGgtc2hpbS1jZmcK CiAgKGlpaSkgc2h1dCB0aGUgZ3Vlc3QgZG93biBjbGVhbmx5CgogIChpdikg Y3JlYXRlIHRoZSBndWVzdCB3aXRoIHRoZSBuZXcgY29uZmlnCiAgICAgIHhs IGNyZWF0ZSAvZXRjL3hlbi9HVUVTVC53aXRoLXNoaW0tY2ZnCgogICh2KSBD aGVjayB0aGF0IGl0IGJvb3RzIHByb3Blcmx5LiAgeGwgY29uc29sZSBzaG91 bGQgd29yay4KCiAgKHZpKSBNYWtlIGFycmFuZ2VtZW50cyBzbyB0aGF0IGF1 dG9zdGFydGluZyBvZiB0aGUgZ3Vlc3Qgd2lsbCB1c2UKICAgICB0aGUgbmV3 IGNvbmZpZyBmaWxlIHJhdGhlciB0aGFuIHRoZSBvbGQgb25lCgo= --=separator Content-Type: application/octet-stream; name="xsa254/README.which-shim" Content-Disposition: attachment; filename="xsa254/README.which-shim" Content-Transfer-Encoding: base64 CQkgICBIb3cgdG8gZGVjaWRlIHdoaWNoIHNoaW0gdG8gdXNlCgkJICAgPT09 PT09PT09PT09PT09PT09PT09PT09PT09PT09PQoKQSB3b3JrLWFyb3VuZCB0 byBNZWx0ZG93biAoYWthICJTUDMiIG9yICJWYXJpYW50IDMiKSBvbiBJbnRl bApwcm9jZXNzb3JzIGlzIHRvIHJ1biBndWVzdHMgaW4gSFZNIG9yIFBWSCBt b2RlLgoKTm90ZSB0aGlzIHNoaW0tYmFzZWQgYXBwcm9hY2ggcHJldmVudHMg YXR0YWNrcyBvbiB0aGUgaG9zdCwgYnV0IGxlYXZlcwp0aGUgZ3Vlc3QgdnVs bmVyYWJsZSB0byBNZWx0ZG93biBhdHRhY2tzIGJ5IGl0cyBvd24gdW5wcml2 aWxlZ2VkCnByb2Nlc3NlczsgdGhpcyBpcyB0cnVlIGV2ZW4gaWYgdGhlIGd1 ZXN0IE9TIGhhcyBLUFRJIG9yIHNpbWlsYXIKTWVsdGRvd24gbWl0aWdhdGlv bi4KClNvbWUgZ3Vlc3RzIGFyZSBkaWZmaWN1bHQgdG8gY29udmVydCB0byBy dW5uaW5nIGluIEhWTSBvciBQVkggbW9kZSwKZWl0aGVyIGR1ZSB0byBsYWNr IG9mIHBhcnRpdGlvbmluZyAvIE1CUiwgb3IgZHVlIHRvIGtlcm5lbApjb21w YXRpYmlsaXRpZXMuICBBcyBhbiBlbWVyZ2VuY3kgYmFja3N0b3AsIHRoZXJl IGFyZSB0d28gYXBwcm9hY2hlcywKd2hpY2ggd2UndmUgY29kZW5hbWVkICJW aXhlbiIgYW5kICJDb21ldCIuICBCb3RoIGludm9sdmUgcnVubmluZyBhbgpl bWJlZGRlZCBjb3B5IG9mIFhlbiAoY2FsbGVkIGEgInNoaW0iKSB3aXRoaW4g dGhlIEhWTSBvciBQVkggZ3Vlc3QgdG8KcHJvdmlkZSB0aGUgbmF0aXZlIFBW IGludGVyZmFjZS4KCkJlbG93IGRlc2NyaWJlcyB0aGUgcHJvcGVydGllcywg YW5kIHdobyBtaWdodCB3YW50IHRvIHVzZSBlYWNoIG9uZS4KCk5PVEU6IEJv dGggc2hpbXMgcmVxdWlyZSBob3N0IHBhdGNoZXMgdG8gYm9vdCBvbiBBTUQg aG9zdHMuICBUaGlzCnNob3VsZG4ndCBiZSBhbiBpc3N1ZSwgYXMgU1AzIGRv ZXMgbm90IGFmZmVjdCBzeXN0ZW1zIHJ1bm5pbmcgb24gQU1ELgoKVml4ZW4K LS0tLS0KClZpeGVuIGhhcyB0aGUgZm9sbG93aW5nIHByb3BlcnRpZXM6CiAq IFJ1bnMgdGhlIHNoaW0gaW4gYW4gSFZNIGd1ZXN0LgogKiBJdCByZXF1aXJl cyBubyBoeXBlcnZpc29yIG9yIHRvb2xzdGFjayBjaGFuZ2VzLCBub3IgZG9l cyBpdCByZXF1aXJlCiAgIGEgaG9zdCByZWJvb3QuCiAqIEl0IGhhcyBiZWVu IGV4dGVuc2l2ZWx5IHRlc3RlZCBpbiBBbWF6b24ncyBkZXBsb3ltZW50IGZv ciB2ZXJzaW9ucwogICBvZiBYZW4gZ29pbmcgYmFjayB0byAzLjQKICogR3Vl c3QgcmVib290cyBhcmUgcmVxdWlyZWQKICogR3Vlc3QgY29uZmlncyBtdXN0 IGJlIGZlZCB0aHJvdWdoIGEgY29udmVydGVyIHByb2dyYW0KICogVGhlIGNv bnZlcnRlciBwcm9ncmFtIHNwaXRzIG91dCBhIHNtYWxsIGd1ZXN0LXNwZWNp ZmljIC5pc28KICAgaW1hZ2UgKHdlIGNhbGwgdGhpcyBhICJzaWRlY2FyIikg dXNlZCBmb3IgYm9vdGluZwogKiBCZWNhdXNlIHRoZSByZXN1bHQgaXMgYW4g SFZNIGd1ZXN0LCB0aGlzIGFwcHJvYWNoIGludm9sdmVzCiAgIHJ1bm5pbmcg cWVtdSBhcyBhIFBDIGVtdWxhdG9yICh0aGlzIGlzIGRvbmUgYXV0b21hdGlj YWxseSkKICogU29tZSBjb21tb24gZmVhdHVyZXMgYXJlIG5vdCBzdXBwb3J0 ZWQ6CiAgLSBCYWxsb29uaW5nCiAgLSBNaWdyYXRpb24KICAtIHZjcHUgaG90 cGx1ZwogIC0gYmlkaXJlY3Rpb25hbCBjb25zb2xlIHN1cHBvcnQgKGNvbnNv bGUgaXMgd3JpdGUtb25seSkKICogRGlyZWN0LWJvb3Qga2VybmVscyBhbmQg cHZncnViIChib3RoIHB2Z3J1YjEgYW5kIHB2Z3J1YjIpIGFyZQogICBzdXBw b3J0ZWQgYnkgdGhlIGNvbnZlcnNpb24gcHJvZ3JhbS4gICdweWdydWInIGlz IG5vdCBzdXBwb3J0ZWQuCiAqIHhsIGFuZCB4bSBkb21haW4gY29uZmlncyBj YW4gYmUgY29udmVydGVkOyBsaWJ2aXJ0IGRvbWFpbgogICBjb25maWd1cmF0 aW9uIGFycmFuZ2VtZW50cyBhcmUgbm90IHN1cHBvcnRlZC4KICogR3Vlc3Qg dXNlcnNwYWNlIGNhbiByZWFkIGFsbCBvZiBndWVzdCBtZW1vcnksIHdpdGhp biBlYWNoIGd1ZXN0LAogICBhbmQgYSBndWVzdCBtaWdpdGF0aW9uIGZvciB0 aGlzIGlzIG5vdCBwb3NzaWJsZS4KCllvdSBtaWdodCBjb25zaWRlciB0aGlz IGFwcHJvYWNoIGlmOgotIFlvdSB3YW50IHRvIGRlcGxveSBhIGZpeCBpbW1l ZGlhdGVseQotIFlvdSBjYW4gdG9sZXJhdGUgdGhlIGxvc3Mgb2Ygd2l0aGlu LWd1ZXN0IHNlY3VyaXR5Ci0gWW91IGNhbid0LCBvciB3b3VsZCBsaWtlIHRv IGF2b2lkLCB1cGRhdGluZyB0byBYZW4gNC44IG9yIG5ld2VyCi0gWW91J2Qg bGlrZSB0byBhdm9pZCBwYXRjaGluZyBhbmQgcmVib290aW5nIHlvdXIgaG9z dAotIFlvdSBhcmUgYWJsZSB0bzoKIC0gUnVuIGEgc2NyaXB0IHRvIG1vZGlm eSBlYWNoIGRvbWFpbiBjb25maWcKIC0gQWZmb3JkIGFuIGV4dHJhIDgwTWlC IHBlciBndWVzdAogLSBUb2xlcmF0ZSBoYXZpbmcgYW4gZXh0cmEgUUVNVSBh cm91bmQKLSBZb3UgZG9uJ3QgbmVlZCBtaWdyYXRpb24sIG1lbW9yeSBiYWxs b29uaW5nLCB2Y3B1IGhvdHBsdWcsCiAgb3IgYSBiaS1kaXJlY3Rpb25hbCBj b25zb2xlCgpUbyB1c2UgdGhpcyBzb2x1dGlvbiwgc2VlIFJFQURNRS52aXhl bi4KCkJpLWRpcmVjdGlvbmFsIGNvbnNvbGUgaXMgYXZhaWxhYmxlIGFzIGFu IGV4dHJhIHBhdGNoLCBidXQgaGFzbid0IGJlZW4Kd2lkZWx5IHRlc3RlZDoK Cm1hcmMuaW5mby8/aT08MTUxNTYwNDU1Mi05MjA1LTEtZ2l0LXNlbmQtZW1h aWwtc3JuQHByZ21yLmNvbT4KCkNvbWV0Ci0tLS0tCgpDb21ldCBoYXMgdGhl IGZvbGxvd2luZyBwcm9wZXJ0aWVzOgogKiBSdW5zIHRoZSBzaGltIGluIGEg UFZIIGd1ZXN0LgogKiBQVkggbW9kZSBpcyBhdmFpbGFibGUgaW4gWGVuIDQu MTAsIGFuZCB3aWxsIGJlIGJhY2twb3J0ZWQgdG8gWGVuCiAgIDQuOSBhbmQg NC44IGJ1dCBubyBmYXJ0aGVyCiAqIFJlcXVpcmVzIGhvc3QgaHlwZXJ2aXNv ciBhbmQgdG9vbHN0YWNrIHBhdGNoZXMgKGFuZCBob3N0IHJlYm9vdCksCiAg IGV2ZW4gZm9yIFhlbiA0LjEwCiAqIFJlcXVpcmVzIG1pbmltYWwgZ3Vlc3Qg Y29uZmlnIGNoYW5nZXMsIGFuZCBubyAic2lkZWNhciIKICogQm9vdGxvYWRp bmcgaXMgaWRlbnRpY2FsIHRvIG5hdGl2ZSBQViBndWVzdHM7IGRpcmVjdC1i b290LCBwdmdydWIsCiAgIGFuZCBweWdydWIgYWxsIHdvcmsgZXF1YWxseSB3 ZWxsCiAqIEJlY2F1c2UgdGhlIHJlc3VsdCBpcyBhIFBWSCBndWVzdCwgdGhp cyBhcHByb2FjaCBpbnZvbHZlcyBubyBQQyBlbXVsYXRvci4KICogVGhlIGZv bGxvd2luZyBmZWF0dXJlcyBub3QgYXZhaWxhYmxlIGluIFZpeGVuIGFyZSBz dXBwb3J0ZWQ6CiAgLSBNZW1vcnkgYmFsbG9vbmluZwogIC0gR3Vlc3QgbWln cmF0aW9uCiAgLSB2Y3B1IGhvdHBsdWcKICAtIGJpZGlyZWN0aW9uYWwgY29u c29sZSBzdXBwb3J0CiAqIEd1ZXN0IHVzZXJzcGFjZSBjYW4gcmVhZCBhbGwg b2YgZ3Vlc3QgbWVtb3J5LCB3aXRoaW4gZWFjaCBndWVzdCwKICAgYW5kIGEg Z3Vlc3QgbWlnaXRhdGlvbiBmb3IgdGhpcyBpcyBub3QgcG9zc2libGUuCgpZ b3UgbWlnaHQgY29uc2lkZXIgdGhpcyBhcHByb2FjaCBpZjoKLSBZb3UncmUg b24gNC44IG9yIGxhdGVyIGFscmVhZHkKLSBZb3UgY2FuIHRvbGVyYXRlIHRo ZSBsb3NzIG9mIHdpdGhpbi1ndWVzdCBzZWN1cml0eQotIFlvdSBjYW4gcGF0 Y2ggYW5kIHJlYm9vdCB5b3VyIGhvc3QKLSBZb3UgZG9uJ3Qgd2FudCBhbiBl eHRyYSBRRU1VIGFyb3VuZAotIFlvdSBuZWVkIG1pZ3JhdGlvbiwgbWVtb3J5 IGJhbGxvb25pbmcsIG9yIHZjcHUgaG90cGx1Zywgb3IgYQogIGJpZGlyZWN0 aW9uYWwgY29uc29sZQotIFlvdSBuZWVkIHB5Z3J1YgotIFlvdSBuZWVkIHRv IHVzZSBsaWJ2aXJ0CgpBdCB0aGUgbW9tZW50LCBDb21ldCBpcyBhdmFpbGFi bGUgZm9yIDQuMTAuICAgV2UgZXhwZWN0IHRvIGhhdmUKYmFja3BvcnRzIHRv IDQuOCBhbmQgNC44IGF2YWlsYWJsZSB3aXRoaW4gYSBmZXcgd29ya2luZyBk YXlzLgo= --=separator Content-Type: application/octet-stream; name="xsa254/pvshim-converter.pl" Content-Disposition: attachment; filename="xsa254/pvshim-converter.pl" Content-Transfer-Encoding: base64 IyEvdXNyL2Jpbi9wZXJsIC13CiMKIyB1c2FnZToKIyAgIHB2c2hpbS1jb252 ZXJ0ZXIgW09QVElPTlNdIE9MRC1DT05GSUcgTkVXLUNPTkZJRwojCiMgb3B0 aW9uczoKIyAgIC0tcWVtdSBQQVRILVRPLVFFTVUgICAgICAgIGZpbGVuYW1l IG9mIHFlbXUtc3lzdGVtLWkzODYKIyAgIC0tc2lkZWNhcnMtZGlyZWN0b3J5 IERJUiAgIGRlZmF1bHQgaXMgL3Zhci9saWIveGVuL3B2c2hpbS1zaWRlY2Fy cwojICAgLS1zaGltIFNISU0gICAgICAgICAgICAgICAgb3ZlcnJpZGVzIGRv bWFpbiBjb25maWcgZmlsZQojICAgLS1kZWJ1ZyAgICAgICAgICAgICAgICAg ICAgdmVyYm9zZSwgYW5kIGxlYXZlcyBzaWRlY2FyIHByZXAgZGlyIGFyb3Vu ZAojCiMgV2hhdCB3ZSBkbwojCiMgIHJlYWQgZXhpc3RpbmcgY29uZmlnIGZp bGUgdXNpbmcgcHl0aG9uCiMgIGRldGVybWluZSBrZXJuZWwsIHJhbWRpc2sg YW5kIGNtZGxpbmUKIyAgdXNlIHRoZW0gdG8gcHJvZHVjZSBzaWRlY2FyIGFu ZCBzYXZlIGl0IHVuZGVyIGRvbWFpbiBuYW1lCiMgIG1lc3Mgd2l0aCB0aGUg dGhpbmdzIHRoYXQgbmVlZCB0byBiZSBtZXNzZWQgd2l0aAojICBzcGl0IG91 dCBuZXcgY29uZmlnIGZpbGUKCnVzZSBzdHJpY3Q7Cgp1c2UgR2V0b3B0OjpM b25nOwp1c2UgSlNPTjsKdXNlIElPOjpIYW5kbGU7CnVzZSBQT1NJWDsKdXNl IEZjbnRsIHF3KDpmbG9jayk7CgpvdXIgJGRlYnVnOwoKc3ViIHJ1bmNtZCB7 CiAgICBwcmludCBTVERFUlIgIisgQF9cbiIgaWYgJGRlYnVnOwogICAgJCE9 MDsgJD89MDsgc3lzdGVtIEBfIGFuZCBkaWUgIiRfWzBdOiAkISAkPyI7Cn0K Cm91ciAkcWVtdTsKb3VyICRzaGltOwpvdXIgJHNpZGVjYXJzX2RpciA9ICcv dmFyL2xpYi94ZW4vcHZzaGltLXNpZGVjYXJzJzsKCkdldE9wdGlvbnMoJ3Fl bXU9cycgPT4gXCRxZW11LAogICAgICAgICAgICdzaWRlY2Fycy1kaXJlY3Rv cnk9cycgPT4gXCRzaWRlY2Fyc19kaXIsCiAgICAgICAgICAgJ3NoaW09cycg PT4gXCRzaGltLAogICAgICAgICAgICdkZWJ1ZycgPT4gXCRkZWJ1ZykKICAg IG9yIGRpZSAicHZzaGltLWNvbnZlcnRlcjogYmFkIG9wdGlvbnNcbiI7CgpA QVJHVj09MiBvciBkaWUgInB2c2hpbS1jb252ZXJ0ZXI6IG5lZWQgb2xkIGFu ZCBuZXcgY29uZmlnIGZpbGVuYW1lcyI7CgpvdXIgKCRpbiwkb3V0KSA9IEBB UkdWOwoKb3VyICRpbmRhdGE7CgppZiAoJGluIG5lICctJykgewogICAgb3Bl biBJLCAnPCcsICIkaW4iIG9yIGRpZSAib3BlbiBpbnB1dCBjb25maWcgZmls ZTogJCFcbiI7Cn0gZWxzZSB7CiAgICBvcGVuIEksICc8JlNURElOJyBvciBk aWUgJCE7Cn0KewogICAgbG9jYWwgJC87CiAgICAkaW5kYXRhID0gPEk+Owp9 CkktPmVycm9yIGFuZCBkaWUgJCE7CmNsb3NlIEk7CgpvcGVuIFAsICItfCIs IHF3KHB5dGhvbjIgLWMpLCA8PEVORCwgJGluZGF0YSBvciBkaWUgJCE7Cmlt cG9ydCBzeXMKaW1wb3J0IGpzb24KbCA9IHt9CmV4ZWMgc3lzLmFyZ3ZbMV0g aW4gbApmb3IgayBpbiBsLmtleXMoKToKCWlmIGsuc3RhcnRzd2l0aCgiXyIp OgoJCWRlbCBsW2tdCnByaW50IGpzb24uZHVtcHMobCkKRU5ECgpvdXIgJGM7 Cgp7CiAgICBsb2NhbCAkLzsKICAgICRfID0gPFA+OwogICAgJCE9MDsgJD89 MDsgY2xvc2UgUCBvciBkaWUgIiQhICQ/IjsKICAgICRjID0gZGVjb2RlX2pz b24gJF87Cn0KCmRpZSAibm8gZG9tYWluIG5hbWUgPyIgdW5sZXNzIGV4aXN0 cyAkYy0+e25hbWV9OwpkaWUgImJvb3Rsb2FkZXIgbm90IHlldCBzdXBwb3J0 ZWQiIGlmICRjLT57Ym9vdGxvYWRlcn07CmRpZSAibm8ga2VybmVsIiB1bmxl c3MgJGMtPntrZXJuZWx9OwoKb3VyICRzaWRlY2FyID0gJGMtPntwdnNoaW1f c2lkZWNhcl9wYXRofSB8fCAiJHNpZGVjYXJzX2Rpci8kYy0+e25hbWV9Lmlz byI7Cm91ciAkZG13cmFwID0gJGMtPntwdnNoaW1fc2lkZWNhcl9wYXRofSB8 fCAiJHNpZGVjYXJzX2Rpci8kYy0+e25hbWV9LmRtIjsKCiRzaGltIHx8PSAk Yy0+e3B2c2hpbV9wYXRofTsKJHNoaW0gfHw9ICcvdXNyL2xvY2FsL2xpYi94 ZW4vYm9vdC94ZW4tc2hpbSc7CgpvdXIgJHNoaW1fY21kbGluZSA9ICRjLT57 cHZzaGltX2NtZGxpbmV9IHx8ICdjb25zb2xlPWNvbTEgY29tMT0xMTUyMDBu MSc7CiRzaGltX2NtZGxpbmUgLj0gJyAnLiRjLT57cHZzaGltX2V4dHJhfSBp ZiAkYy0+e3B2c2hpbV9leHRyYX07CgpvdXIgJGtlcm5lbF9jbWRsaW5lID0g JGMtPntjbWRsaW5lfSB8fCAnJzsKJGtlcm5lbF9jbWRsaW5lIC49ICcgcm9v dD0nLiRjLT57cm9vdH0gaWYgJGMtPntyb290fTsKJGtlcm5lbF9jbWRsaW5l IC49ICcgJy4kYy0+e2V4dHJhfSBpZiAkYy0+e2V4dHJhfTsKCnByaW50ICJw dnNoaW0tY29udmVydGVyOiBjcmVhdGluZyBzaWRlY2FyIGluICRzaWRlY2Fy XG4iOwoKcnVuY21kIHF3KG1rZGlyIC1tNzAwIC1wIC0tKSwgJHNpZGVjYXJz X2RpcjsKCm9wZW4gTCwgIj4iLCAiJHNpZGVjYXIubG9jayIgb3IgZGllICIk c2lkZWNhci5sb2NrOiBvcGVuICQhIjsKZmxvY2sgTCwgTE9DS19FWCBvciBk aWUgIiRzaWRlY2FyLmxvY2s6IGxvY2s6ICQhIjsKCm15ICRzZCA9ICIkc2lk ZWNhci5kaXIiOwoKc3lzdGVtIHF3KHJtIC1yZiAtLSksICRzZDsKbWtkaXIg JHNkLCAwNzAwOwoKcnVuY21kIHF3KGNwIC0tKSwgJHNoaW0sICIkc2Qvc2hp bSI7CnJ1bmNtZCBxdyhjcCAtLSksICRjLT57a2VybmVsfSwgIiRzZC9rZXJu ZWwiOwpydW5jbWQgcXcoY3AgLS0pLCAkYy0+e3JhbWRpc2t9LCAiJHNkL3Jh bWRpc2siIGlmICRjLT57cmFtZGlza307CgpteSAkZ3J1YmNmZyA9IDw8RU5E OwpzZXJpYWwgLS11bml0PTAgLS1zcGVlZD05NjAwIC0td29yZD04IC0tcGFy aXR5PW5vIC0tc3RvcD0xCnRlcm1pbmFsX2lucHV0IHNlcmlhbAp0ZXJtaW5h bF9vdXRwdXQgc2VyaWFsCgpzZXQgdGltZW91dD0wCgptZW51ZW50cnkgJ1hl biBzaGltJyB7CglpbnNtb2QgZ3ppbwoJaW5zbW9kIHh6aW8KICAgICAgICBt dWx0aWJvb3QgKGNkKS9zaGltIHBsYWNlaG9sZGVyICRzaGltX2NtZGxpbmUK ICAgICAgICBtb2R1bGUgKGNkKS9rZXJuZWwgcGxhY2Vob2xkZXIgJGtlcm5l bF9jbWRsaW5lCiAgICAgICAgbW9kdWxlIChjZCkvcmFtZGlzawp9CkVORAoK cnVuY21kIHF3KG1rZGlyIC1wIC0tKSwgIiRzZC9ib290L2dydWIiOwpvcGVu IEcsICI+IiwgIiRzZC9ib290L2dydWIvZ3J1Yi5jZmciIG9yIGRpZSAiJHNk LCBncnViLmNmZzogJCEiOwpwcmludCBHICRncnViY2ZnIG9yIGRpZSAkITsK Y2xvc2UgRyBvciBkaWUgJCE7Cgp1bmxpbmsgIiRzaWRlY2FyLm5ldyIgb3Ig JCE9PUVOT0VOVCBvciBkaWUgIiRzaWRlY2FyLm5ldzogcm06ICQhIjsKcnVu Y21kIHF3KGdydWItbWtyZXNjdWUgLW8pLCAiJHNpZGVjYXIubmV3IiwgIiRz aWRlY2FyLmRpciI7CmlmICghc3RhdCAiJHNpZGVjYXIubmV3IikgewogICAg JCE9PUVOT0VOVCBvciBkaWUgIiRzaWRlY2FyLm5ldzogc3RhdDogJCEiOwoK ICAgIHByaW50IFNUREVSUiA8PEVORDsKcHZzaGltLWNvbnZlcnRlcjogZ3J1 Yi1ta3Jlc2N1ZSBleGl0ZWQgd2l0aCBzdGF0dXMgemVybyBidXQgZmFpbGVk IHRvIG1ha2UgaXNvLgpOQiB0aGF0IGdydWItbWtyZXNjdWUgaGFzIGEgdGVu ZGVuY3kgdG8gbGllIGluIGl0cyBlcnJvciBtZXNzYWdlcy4KRU5ECiAgICBt eSAkbWlzc2luZzsKICAgIGZvcmVhY2ggbXkgJGNoZWNrIChxdyh4b3JyaXNv IG1mb3JtYXQpKSB7CiAgICAgICAgJG1pc3NpbmcgfD0gc3lzdGVtIHF3KHNo IC1jKSwgInR5cGUgJGNoZWNrIjsKICAgIH0KCiAgICBpZiAoJG1pc3Npbmcp IHsKICAgICAgICBwcmludCBTVERFUlIgPDxFTkQ7CllvdSBzZWVtIHRvIGhh dmUgc29tZSBwcm9ncmFtKHMpIG1pc3Npbmcgd2hpY2ggZ3J1Yi1ta3Jlc2N1 ZSBkZXBlbmRzIG9uLApzZWUgYWJvdmUuICAoIm1mb3JtYXQiIGlzIG5vcm1h bGx5IGluIHRoZSBwYWNrYWdlICJtdG9vbHMiLikKSW5zdGFsbGluZyB0aG9z ZSBwcm9ncmFtcyB3aWxsIHByb2JhYmx5IGhlbHAuCkVORAogICAgfSBlbHNl IHsKICAgICAgICBwcmludCBTVERFUlIgPDxFTkQ7CkFuZCBvbGRlciBncnVi LW1rcmVzY3VlIGhhcyBhIHRlbmRlbmN5IG5vdCB0byBub3RpY2UgY2VydGFp biBwcm9ibGVtcy4KTWF5YmUgc3RyYWNlIHdpbGwgdGVsbCB5b3Ugd2hhdCBp cyB3cm9uZy4gIDotLwpFTkQKICAgIH0KICAgIGRpZSAicHZzaGltLWNvbnZl cnRlcjogZ3J1Yi1ta3Jlc2N1ZSBkaWQgbm90IG1ha2UgaXNvXG4iOwp9Cgpy dW5jbWQgcXcocm0gLXJmIC0tKSwgIiRzaWRlY2FyLmRpciIgdW5sZXNzICRk ZWJ1ZzsKCm9wZW4gUSwgIj4iLCAiJGRtd3JhcC5uZXciIG9yIGRpZSAiJGRt d3JhcDogJCEiOwpwcmludCBRIDw8J0VORF9ETVdSQVAnIG9yIGRpZSAkITsK IyEvYmluL2Jhc2gKCnNldCAteAo6ICIkQCIKc2V0ICt4CgpuZXdhcmdzPSgp CgpuZXdhcmcgKCkgewogICAgbmV3YXJncys9KCIkMSIpCn0KCndoaWxlIFsg JCMgLWd0IDEgXTsgZG8KICAgIGNhc2UgIiQxIiBpbgoJLW5vLXNodXRkb3du fC1ub2RlZmF1bHRzfC1uby11c2VyLWNvbmZpZykKCSAgICBuZXdhcmcgIiQx Ijsgc2hpZnQKCSAgICA7OwoJLXhlbi1kb21pZHwtY2hhcmRldnwtbW9ufC1k aXNwbGF5fC1ib290fC1tfC1tYWNoaW5lKQoJICAgIG5ld2FyZyAiJDEiOyBz aGlmdAoJICAgIG5ld2FyZyAiJDEiOyBzaGlmdAoJICAgIDs7CiAgICAgICAg LW5hbWUpCiAgICAgICAgICAgIG5ld2FyZyAiJDEiOyBzaGlmdAogICAgICAg ICAgICBuYW1lPSIkMSI7IHNoaWZ0CiAgICAgICAgICAgIG5ld2FyZyAiJG5h bWUiCiAgICAgICAgICAgIDs7CgktbmV0ZGV2fC1jZHJvbSkKCSAgICA6IGZp eG1lCgkgICAgbmV3YXJnICIkMSI7IHNoaWZ0CgkgICAgbmV3YXJnICIkMSI7 IHNoaWZ0CgkgICAgOzsKCS1kcml2ZXwta2VybmVsfC1pbml0cmR8LWFwcGVu ZHwtdm5jKQoJICAgIHNoaWZ0OyBzaGlmdAoJICAgIDs7CgktZGV2aWNlKQoJ ICAgIHNoaWZ0CgkgICAgY2FzZSAiJDEiIGluCgkJWFhYcnRsODEzOSopCgkJ ICAgIG5ld2FyZyAiLWRldmljZSIKCQkgICAgbmV3YXJnICIkMSI7IHNoaWZ0 CgkJICAgIDs7CgkJKikKCQkgICAgc2hpZnQKCQkgICAgOzsKCSAgICBlc2Fj CgkgICAgOzsKCSopCgkgICAgZWNobyA+JjIgIndhcm5pbmc6IHVuZXhwZWN0 ZWQgYXJndW1lbnQgJDEgYmVpbmcgcGFzc2VkIHRocm91Z2giCgkgICAgbmV3 YXJnICIkMSI7IHNoaWZ0CgkgICAgOzsKICAgIGVzYWMKZG9uZQoKI2lmIFsg IngkbmFtZSIgIT0geCBdOyB0aGVuCiMgICAgbG9nZGlyPS92YXIvbG9nL3hl bgojICAgIGxvZ2ZpbGU9IiRsb2dkaXIvc2hpbS0kbmFtZS5sb2ciCiMgICAg c2F2ZWxvZyAiJGxvZ2ZpbGUiIHx8OgojICAgIG5ld2FyZyAtc2VyaWFsCiMg ICAgbmV3YXJnICJmaWxlOiRsb2dmaWxlIgojZmkKRU5EX0RNV1JBUAoKaWYg KCRxZW11KSB7CiAgICBwcmludGYgUSA8PCdFTkRfRE1XUkFQJywgJHFlbXUg b3IgZGllICQhOwogICAgZXhlYyAnJXMnICIke25ld2FyZ3NbQF19IgpFTkRf RE1XUkFQCn0gZWxzZSB7CiAgICBwcmludCBRIDw8J0VORF9ETVdSQVAnIG9y IGRpZSAkITsKc2V0IC14CmZvciBwYXRoIGluIC91c3IvbG9jYWwvbGliL3hl bi9iaW4gL3Vzci9saWIveGVuL2JpbiAvdXNyL2xvY2FsL2JpbiAvdXNyL2Jp bjsgZG8KICAgIGlmIHRlc3QgLWUgJHBhdGgvcWVtdS1zeXN0ZW0taTM4Njsg dGhlbgogICAgICAgIGV4ZWMgJHBhdGgvcWVtdS1zeXN0ZW0taTM4NiAiJHtu ZXdhcmdzW0BdfSIKICAgIGZpCmRvbmUKZWNobyA+JjIgJ2NvdWxkIG5vdCBl eGVjIHFlbXUnCmV4aXQgMTI3CkVORF9ETVdSQVAKfQoKY2htb2QgMDc1NSwg IiRkbXdyYXAubmV3IiBvciBkaWUgIiRkbXdyYXA6IGNobW9kOiAkISI7Cgpj bG9zZSBRIG9yIGRpZSAkITsKCnJlbmFtZSAiJHNpZGVjYXIubmV3IiwgJHNp ZGVjYXIgb3IgZGllICIkc2lkZWNhcjogaW5zdGFsbDogJCEiOwpyZW5hbWUg IiRkbXdyYXAubmV3IiwgICRkbXdyYXAgIG9yIGRpZSAiJGRtd3JhcDogaW5z dGFsbDogJCEiOwoKcHJpbnQgU1RERVJSIDw8RU5EOwpwdnNoaW0tY29udmVy dGVyOiB3cm90ZSBxZW11IHdyYXBwZXIgdG8gJGRtd3JhcApwdnNoaW0tY29u dmVydGVyOiB3cm90ZSBzaWRlY2FyIHRvICRzaWRlY2FyCkVORAoKbXkgJGFw cGVuZCA9IDw8RU5EOwpidWlsZGVyPSdodm0nCnR5cGU9J2h2bScKZGV2aWNl X21vZGVsX3ZlcnNpb249J3FlbXUteGVuJwpkZXZpY2VfbW9kZWxfb3ZlcnJp ZGU9JyRkbXdyYXAnCmRldmljZV9tb2RlbF9hcmdzX2h2bT1bJy1jZHJvbScs JyRzaWRlY2FyJ10KYm9vdD0nYycKc2VyaWFsPSdwdHknCkVORAoKaWYgKCRv dXQgbmUgJy0nKSB7CiAgICBvcGVuIE8sICI+IiwgIiRvdXQudG1wIiBvciBk aWUgIm9wZW4gb3V0cHV0IGNvbmZpZyB0ZW1wOiAkb3V0LnRtcDogJCFcbiI7 Cn0gZWxzZSB7CiAgICBvcGVuIE8sICI+JlNURE9VVCIgb3IgZGllICQhOwp9 CgpwcmludCBPICRpbmRhdGEsICJcbiIsICRhcHBlbmQgb3IgZGllICJ3cml0 ZSBvdXRwdXQ6ICQhIjsKY2xvc2UgTyBvciBkaWUgImNsb3NlIG91dHB1dDog JCEiOwoKaWYgKCRvdXQgbmUgJy0nKSB7CiAgICByZW5hbWUgIiRvdXQudG1w IiwgJG91dCBvciBkaWUgImluc3RhbGwgb3V0cHV0OiAkISI7CiAgICBwcmlu dCBTVERFUlIgInB2c2hpbS1jb252ZXJ0ZXI6IHdyb3RlIG5ldyBndWVzdCBj b25maWcgdG8gJG91dFxuIjsKfSBlbHNlIHsKICAgIHByaW50IFNUREVSUiAi cHZzaGltLWNvbnZlcnRlcjogd3JvdGUgbmV3IGd1ZXN0IGNvbmZpZyB0byBz dGRvdXRcbiI7Cn0K --=separator Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: base64 Content-Disposition: inline X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX18KWGVuLWFubm91 bmNlIG1haWxpbmcgbGlzdApYZW4tYW5ub3VuY2VAbGlzdHMueGVucHJvamVjdC5vcmcKaHR0cHM6 Ly9saXN0cy54ZW5wcm9qZWN0Lm9yZy9tYWlsbWFuL2xpc3RpbmZvL3hlbi1hbm5vdW5jZQ== --=separator-- From xen-announce-bounces@lists.xenproject.org Tue Feb 27 12:01:20 2018 Return-path: Envelope-to: archives@lists.xen.org Delivery-date: Tue, 27 Feb 2018 12:01:20 +0000 Received: from localhost ([127.0.0.1] helo=lists.xenproject.org) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1eqdvm-0003M0-Bm; Tue, 27 Feb 2018 12:00:26 +0000 Received: from all-amaz-eas1.inumbo.com ([34.197.232.57]) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1eqdvk-0003JM-J6 for xen-announce@lists.xen.org; Tue, 27 Feb 2018 12:00:24 +0000 X-Inumbo-ID: 0c65e5e1-1bb6-11e8-b9b1-635ca7ef6cff Received: from mail.xenproject.org (unknown [104.130.215.37]) by us1-amaz-eas1.inumbo.com (Halon) with ESMTPS id 0c65e5e1-1bb6-11e8-b9b1-635ca7ef6cff; Tue, 27 Feb 2018 12:02:14 +0000 (UTC) Received: from xenbits.xenproject.org ([104.239.192.120]) by mail.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1eqdvX-0008OA-4G; Tue, 27 Feb 2018 12:00:11 +0000 Received: from iwj by xenbits.xenproject.org with local (Exim 4.84_2) (envelope-from ) id 1eqdvX-0006o2-1W; Tue, 27 Feb 2018 12:00:11 +0000 Content-Type: multipart/mixed; boundary="=separator"; charset="utf-8" Content-Transfer-Encoding: binary MIME-Version: 1.0 X-Mailer: MIME-tools 5.505 (Entity 5.505) To: xen-announce@lists.xen.org, xen-devel@lists.xen.org, xen-users@lists.xen.org, oss-security@lists.openwall.com From: Xen.org security team Message-Id: Date: Tue, 27 Feb 2018 12:00:11 +0000 Cc: "Xen.org security team" Subject: [Xen-announce] Xen Security Advisory 256 - x86 PVH guest without LAPIC may DoS the host X-BeenThere: xen-announce@lists.xenproject.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: "Xen announcements \(low volume\)" List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Errors-To: xen-announce-bounces@lists.xenproject.org Sender: "Xen-announce" --=separator Content-Type: text/plain; charset="utf-8" Content-Disposition: inline Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Xen Security Advisory XSA-256 version 2 x86 PVH guest without LAPIC may DoS the host UPDATES IN VERSION 2 ==================== Public release. ISSUE DESCRIPTION ================= So far, x86 PVH guests can be configured with or without Local APICs. Configurations with Local APICs are identical to x86 HVM guests, and will use as much hardware acceleration support as possible. Configurations without Local APICs try to turn off all hardware acceleration, and disable all software emulation. Multiple paths in Xen assume the presence of a Local APIC without sufficient checks, and can fall over a NULL pointer. On Intel hardware, the logic to turn off hardware acceleration is incomplete and leaves the guest with full control of the real Task Priority Register. IMPACT ====== A malicious or buggy guest may cause a hypervisor crash, resulting in a Denial of Service (DoS) affecting the entire host. VULNERABLE SYSTEMS ================== Xen version 4.8 and onwards are vulnerable. Only x86 systems are vulnerable. ARM systems are not vulnerable. Only x86 PVH guests can exploit the vulnerability. x86 PV and HVM guests cannot exploit the vulnerability. MITIGATION ========== Running only PV or HVM guests avoids the vulnerability. Running all PVH guests with "apic=1" in the guest configuration file (or equivalent thereof) also avoids the vulnerability. CREDITS ======= This issue was discovered by Ian Jackson of Citrix. RESOLUTION ========== Applying the appropriate attached patch resolves this issue. xsa256.patch xen-unstable, Xen 4.10.x, Xen 4.9.x xsa256-4.8.patch Xen 4.8.x $ sha256sum xsa256* 3e45cc3f2ea516e7470083592041e238c0dfe32324790b2fba0e47c9efe38865 xsa256.patch c029fcb67ff7c3c9a2adcb8e6f5e245a0d347acc8a9b3530591a639cbf321349 xsa256-4.8.patch $ DEPLOYMENT DURING EMBARGO ========================= Deployment of the patches and/or mitigations described above (or others which are substantially similar) is permitted during the embargo, even on public-facing systems with untrusted guest users and administrators. But: Distribution of updated software is prohibited (except to other members of the predisclosure list). Predisclosure list members who wish to deploy significantly different patches and/or mitigations, please contact the Xen Project Security Team. (Note: this during-embargo deployment notice is retained in post-embargo publicly released Xen Project advisories, even though it is then no longer applicable. This is to enable the community to have oversight of the Xen Project Security Team's decisionmaking.) For more information about permissible uses of embargoed information, consult the Xen Project community's agreed Security Policy: http://www.xenproject.org/security-policy.html -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQEcBAEBCAAGBQJalUe0AAoJEIP+FMlX6CvZsmIH/3B9QnpiL1+NRkGIE62xljEG NfV/vL6gE2ytNMs8PRdhycovQum7qj+l9S53EswiwgiaUFw9VW5Jq9pg1UQlAQ/q 7aIIke33TgkVKwZnb+7ercGfLNWsJAIldGc5emc9lBSBkPOUhFtxmTytdudB6dy1 VMI+MVM1f4xgxEizNN7QstmlaMB34m0WH0nEdoCR8evXlAcmcBi+HwYDouUNnR5x 21DkEBxyslvheX6SI8sbocfrZpT/K2b8B3zdLmd3nO3TF5ypC1daowIk0vl8o4Yj TSx4nsBlJ4V0G0gYa1UDBktUfDbVrpoEcdGb5zO3RhoMhcagzWVD6P6F25aYbiU= =PLNS -----END PGP SIGNATURE----- --=separator Content-Type: application/octet-stream; name="xsa256.patch" Content-Disposition: attachment; filename="xsa256.patch" Content-Transfer-Encoding: base64 RnJvbTogQW5kcmV3IENvb3BlciA8YW5kcmV3LmNvb3BlcjNAY2l0cml4LmNv bT4KU3ViamVjdDogeDg2L2h2bTogRGlzYWxsb3cgdGhlIGNyZWF0aW9uIG9m IEhWTSBkb21haW5zIHdpdGhvdXQgTG9jYWwgQVBJQyBlbXVsYXRpb24KClRo ZXJlIGFyZSBtdWx0aXBsZSBwcm9ibGVtcywgbm90IG5lY2Vzc2VyaWx5IGxp bWl0ZWQgdG86CgogKiBHdWVzdHMgd2hpY2ggY29uZmlndXJlIGV2ZW50IGNo YW5uZWxzIHZpYSBodm1vcF9zZXRfZXZ0Y2huX3VwY2FsbF92ZWN0b3IoKSwK ICAgb3Igd2hpY2ggaGl0ICVjcjggZW11bGF0aW9uIHdpbGwgY2F1c2UgWGVu IHRvIGZhbGwgb3ZlciBhIE5VTEwgdmxhcGljLT5yZWdzCiAgIHBvaW50ZXIu CgogKiBPbiBJbnRlbCBoYXJkd2FyZSwgZGlzYWJsaW5nIHRoZSBUUFJfU0hB RE9XIGV4ZWN1dGlvbiBjb250cm9sIHdpdGhvdXQKICAgcmVlbmFibGluZyBD Ujhfe0xPQUQsU1RPUkV9IGludGVyY2VwdGlvbiBtZWFucyB0aGF0IHRoZSBn dWVzdHMgJWNyOAogICBhY2Nlc3NlcyBpbnRlcmFjdCB3aXRoIHRoZSByZWFs IFRQUi4gIEFtb25nc3Qgb3RoZXIgdGhpbmdzLCBzZXR0aW5nIHRoZQogICBy ZWFsIFRQUiB0byAweGYgYmxvY2tzIGV2ZW4gSVBJcyBmcm9tIGludGVycnVw dGluZyB0aGlzIENQVS4KCiAqIE9uIGhhcmR3YXJlIHdoaWNoIHNldHMgdXAg dGhlIHVzZSBvZiBJbnRlcnJ1cHQgUG9zdGluZywgaW5jbHVkaW5nCiAgIElP TU1VLVBvc3RpbmcsIGd1ZXN0cyBydW4gd2l0aG91dCB0aGUgYXBwcm9wcmlh dGUgbm9uLXJvb3QgY29uZmlndXJhdGlvbiwKICAgd2hpY2ggYXQgYSBtaW5p bXVtIHdpbGwgcmVzdWx0IGluIGRyb3BwZWQgaW50ZXJydXB0cy4KCldoZXRo ZXIgbm8tTEFQSUMgbW9kZSBpcyBvZiBhbnkgdXNlIGF0IGFsbCByZW1haW5z IHRvIGJlIHNlZW4uCgpUaGlzIGlzIFhTQS0yNTYuCgpSZXBvcnRlZC1ieTog SWFuIEphY2tzb24gPGlhbi5qYWNrc29uQGV1LmNpdHJpeC5jb20+ClJldmll d2VkLWJ5OiBSb2dlciBQYXUgTW9ubsOpIDxyb2dlci5wYXVAY2l0cml4LmNv bT4KU2lnbmVkLW9mZi1ieTogQW5kcmV3IENvb3BlciA8YW5kcmV3LmNvb3Bl cjNAY2l0cml4LmNvbT4KUmV2aWV3ZWQtYnk6IEphbiBCZXVsaWNoIDxqYmV1 bGljaEBzdXNlLmNvbT4KCmRpZmYgLS1naXQgYS94ZW4vYXJjaC94ODYvZG9t YWluLmMgYi94ZW4vYXJjaC94ODYvZG9tYWluLmMKaW5kZXggZjkzMzI3Yi4u ZjY1ZmMxMiAxMDA2NDQKLS0tIGEveGVuL2FyY2gveDg2L2RvbWFpbi5jCisr KyBiL3hlbi9hcmNoL3g4Ni9kb21haW4uYwpAQCAtNDEzLDcgKzQxMyw3IEBA IHN0YXRpYyBib29sIGVtdWxhdGlvbl9mbGFnc19vayhjb25zdCBzdHJ1Y3Qg ZG9tYWluICpkLCB1aW50MzJfdCBlbWZsYWdzKQogICAgICAgICBpZiAoIGlz X2hhcmR3YXJlX2RvbWFpbihkKSAmJgogICAgICAgICAgICAgIGVtZmxhZ3Mg IT0gKFhFTl9YODZfRU1VX0xBUElDfFhFTl9YODZfRU1VX0lPQVBJQykgKQog ICAgICAgICAgICAgcmV0dXJuIGZhbHNlOwotICAgICAgICBpZiAoICFpc19o YXJkd2FyZV9kb21haW4oZCkgJiYgZW1mbGFncyAmJgorICAgICAgICBpZiAo ICFpc19oYXJkd2FyZV9kb21haW4oZCkgJiYKICAgICAgICAgICAgICBlbWZs YWdzICE9IFhFTl9YODZfRU1VX0FMTCAmJiBlbWZsYWdzICE9IFhFTl9YODZf RU1VX0xBUElDICkKICAgICAgICAgICAgIHJldHVybiBmYWxzZTsKICAgICB9 Cg== --=separator Content-Type: application/octet-stream; name="xsa256-4.8.patch" Content-Disposition: attachment; filename="xsa256-4.8.patch" Content-Transfer-Encoding: base64 RnJvbTogQW5kcmV3IENvb3BlciA8YW5kcmV3LmNvb3BlcjNAY2l0cml4LmNv bT4KU3ViamVjdDogeDg2L2h2bTogRGlzYWxsb3cgdGhlIGNyZWF0aW9uIG9m IEhWTSBkb21haW5zIHdpdGhvdXQgTG9jYWwgQVBJQyBlbXVsYXRpb24KClRo ZXJlIGFyZSBtdWx0aXBsZSBwcm9ibGVtcywgbm90IG5lY2Vzc2VyaWx5IGxp bWl0ZWQgdG86CgogKiBHdWVzdHMgd2hpY2ggY29uZmlndXJlIGV2ZW50IGNo YW5uZWxzIHZpYSBodm1vcF9zZXRfZXZ0Y2huX3VwY2FsbF92ZWN0b3IoKSwK ICAgb3Igd2hpY2ggaGl0ICVjcjggZW11bGF0aW9uIHdpbGwgY2F1c2UgWGVu IHRvIGZhbGwgb3ZlciBhIE5VTEwgdmxhcGljLT5yZWdzCiAgIHBvaW50ZXIu CgogKiBPbiBJbnRlbCBoYXJkd2FyZSwgZGlzYWJsaW5nIHRoZSBUUFJfU0hB RE9XIGV4ZWN1dGlvbiBjb250cm9sIHdpdGhvdXQKICAgcmVlbmFibGluZyBD Ujhfe0xPQUQsU1RPUkV9IGludGVyY2VwdGlvbiBtZWFucyB0aGF0IHRoZSBn dWVzdHMgJWNyOAogICBhY2Nlc3NlcyBpbnRlcmFjdCB3aXRoIHRoZSByZWFs IFRQUi4gIEFtb25nc3Qgb3RoZXIgdGhpbmdzLCBzZXR0aW5nIHRoZQogICBy ZWFsIFRQUiB0byAweGYgYmxvY2tzIGV2ZW4gSVBJcyBmcm9tIGludGVycnVw dGluZyB0aGlzIENQVS4KCiAqIE9uIGhhcmR3YXJlIHdoaWNoIHNldHMgdXAg dGhlIHVzZSBvZiBJbnRlcnJ1cHQgUG9zdGluZywgaW5jbHVkaW5nCiAgIElP TU1VLVBvc3RpbmcsIGd1ZXN0cyBydW4gd2l0aG91dCB0aGUgYXBwcm9wcmlh dGUgbm9uLXJvb3QgY29uZmlndXJhdGlvbiwKICAgd2hpY2ggYXQgYSBtaW5p bXVtIHdpbGwgcmVzdWx0IGluIGRyb3BwZWQgaW50ZXJydXB0cy4KCldoZXRo ZXIgbm8tTEFQSUMgbW9kZSBpcyBvZiBhbnkgdXNlIGF0IGFsbCByZW1haW5z IHRvIGJlIHNlZW4uCgpUaGlzIGlzIFhTQS0yNTYuCgpSZXBvcnRlZC1ieTog SWFuIEphY2tzb24gPGlhbi5qYWNrc29uQGV1LmNpdHJpeC5jb20+ClJldmll d2VkLWJ5OiBSb2dlciBQYXUgTW9ubsOpIDxyb2dlci5wYXVAY2l0cml4LmNv bT4KU2lnbmVkLW9mZi1ieTogQW5kcmV3IENvb3BlciA8YW5kcmV3LmNvb3Bl cjNAY2l0cml4LmNvbT4KUmV2aWV3ZWQtYnk6IEphbiBCZXVsaWNoIDxqYmV1 bGljaEBzdXNlLmNvbT4KCmRpZmYgLS1naXQgYS94ZW4vYXJjaC94ODYvZG9t YWluLmMgYi94ZW4vYXJjaC94ODYvZG9tYWluLmMKaW5kZXggODgxNzI2My4u OTFiOWFiNyAxMDA2NDQKLS0tIGEveGVuL2FyY2gveDg2L2RvbWFpbi5jCisr KyBiL3hlbi9hcmNoL3g4Ni9kb21haW4uYwpAQCAtNTU3LDExICs1NTcsOSBA QCBpbnQgYXJjaF9kb21haW5fY3JlYXRlKHN0cnVjdCBkb21haW4gKmQsIHVu c2lnbmVkIGludCBkb21jcl9mbGFncywKICAgICAgICAgICAgIHJldHVybiAt RUlOVkFMOwogICAgICAgICB9CiAKLSAgICAgICAgLyogUFZIdjIgZ3Vlc3Rz IGNhbiByZXF1ZXN0IGVtdWxhdGVkIEFQSUMuICovCi0gICAgICAgIGlmICgg ZW1mbGFncyAmJgotICAgICAgICAgICAgKGlzX2h2bV9kb21haW4oZCkgPyAo KGVtZmxhZ3MgIT0gWEVOX1g4Nl9FTVVfQUxMKSAmJgotICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgKGVtZmxhZ3MgIT0gWEVOX1g4Nl9FTVVf TEFQSUMpKSA6Ci0gICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIChl bWZsYWdzICE9IFhFTl9YODZfRU1VX1BJVCkpICkKKyAgICAgICAgaWYgKCBp c19odm1fZG9tYWluKGQpID8gKChlbWZsYWdzICE9IFhFTl9YODZfRU1VX0FM TCkgJiYKKyAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIChlbWZs YWdzICE9IFhFTl9YODZfRU1VX0xBUElDKSkKKyAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgIDogKGVtZmxhZ3MgJiYgZW1mbGFncyAhPSBYRU5fWDg2 X0VNVV9QSVQpICkKICAgICAgICAgewogICAgICAgICAgICAgcHJpbnRrKFhF TkxPR19HX0VSUiAiZCVkOiBYZW4gZG9lcyBub3QgYWxsb3cgJXMgZG9tYWlu IGNyZWF0aW9uICIKICAgICAgICAgICAgICAgICAgICAid2l0aCB0aGUgY3Vy cmVudCBzZWxlY3Rpb24gb2YgZW11bGF0b3JzOiAlI3hcbiIsCg== --=separator Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: base64 Content-Disposition: inline X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX18KWGVuLWFubm91 bmNlIG1haWxpbmcgbGlzdApYZW4tYW5ub3VuY2VAbGlzdHMueGVucHJvamVjdC5vcmcKaHR0cHM6 Ly9saXN0cy54ZW5wcm9qZWN0Lm9yZy9tYWlsbWFuL2xpc3RpbmZvL3hlbi1hbm5vdW5jZQ== --=separator-- From xen-announce-bounces@lists.xenproject.org Tue Feb 27 12:01:20 2018 Return-path: Envelope-to: archives@lists.xen.org Delivery-date: Tue, 27 Feb 2018 12:01:20 +0000 Received: from localhost ([127.0.0.1] helo=lists.xenproject.org) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1eqdvg-0003JR-2Y; Tue, 27 Feb 2018 12:00:20 +0000 Received: from all-amaz-eas1.inumbo.com ([34.197.232.57]) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1eqdvf-0003Ik-DM for xen-announce@lists.xen.org; Tue, 27 Feb 2018 12:00:19 +0000 X-Inumbo-ID: 08d1d86a-1bb6-11e8-b9b1-635ca7ef6cff Received: from mail.xenproject.org (unknown [104.130.215.37]) by us1-amaz-eas1.inumbo.com (Halon) with ESMTPS id 08d1d86a-1bb6-11e8-b9b1-635ca7ef6cff; Tue, 27 Feb 2018 12:02:08 +0000 (UTC) Received: from xenbits.xenproject.org ([104.239.192.120]) by mail.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1eqdvQ-0008NX-Q2; Tue, 27 Feb 2018 12:00:04 +0000 Received: from iwj by xenbits.xenproject.org with local (Exim 4.84_2) (envelope-from ) id 1eqdvQ-0006jx-H6; Tue, 27 Feb 2018 12:00:04 +0000 Content-Type: multipart/mixed; boundary="=separator"; charset="utf-8" Content-Transfer-Encoding: binary MIME-Version: 1.0 X-Mailer: MIME-tools 5.505 (Entity 5.505) To: xen-announce@lists.xen.org, xen-devel@lists.xen.org, xen-users@lists.xen.org, oss-security@lists.openwall.com From: Xen.org security team Message-Id: Date: Tue, 27 Feb 2018 12:00:04 +0000 Cc: "Xen.org security team" Subject: [Xen-announce] Xen Security Advisory 252 - DoS via non-preemptable L3/L4 pagetable freeing X-BeenThere: xen-announce@lists.xenproject.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: "Xen announcements \(low volume\)" List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Errors-To: xen-announce-bounces@lists.xenproject.org Sender: "Xen-announce" --=separator Content-Type: text/plain; charset="utf-8" Content-Disposition: inline Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Xen Security Advisory XSA-252 version 2 DoS via non-preemptable L3/L4 pagetable freeing UPDATES IN VERSION 2 ==================== Public release. ISSUE DESCRIPTION ================= Guests have the ability to request removal of memory from themselves. This operation is intended to be requested for normal read/write pages, but is also permitted to be used on other types of pages. So far this in particular included pages pinned to their current type, with the necessary unpinning happening implicitly. The unpinning of higher level page tables can, however, take a significant amount of time, and hence is generally expected to be carried out with intermediate preemption checks. Such checks were missing from the code path involved here. IMPACT ====== A malicious guest administrator can cause a Denial of Service (DoS). Specifically, prevent use of a physical CPU for a significant period of time. VULNERABLE SYSTEMS ================== All Xen versions are vulnerable. Only x86 systems are affected. ARM systems are not affected. Only PV guests can leverage this vulnerability. HVM guests cannot leverage this vulnerability. MITIGATION ========== Running only HVM guests will avoid this issue. CREDITS ======= This issue was discovered by Jann Horn of Google Project Zero. RESOLUTION ========== Applying the appropriate attached patch resolves this issue. xsa252.patch xen-unstable, Xen 4.10.0 xsa252-4.9.patch Xen 4.9.x, Xen 4.8.x xsa252-4.7.patch Xen 4.7.x xsa252-4.6.patch Xen 4.6.x, Xen 4.5.x $ sha256sum xsa252* 5bf651378b92520969cde49d11500bcaeffab15590d21c16736be408a85ab3fa xsa252.meta 53174dfd05eb274431dc756c9c3a39b355d485d6c9d12a8797b350bab343d22e xsa252.patch b7ba005fa62ace07f4880cc79824968c24ead3182245e4ed3a6e22cf8d2d7c05 xsa252-4.6.patch 14f37eb6b7a9fb19b258ca3c0e2da71dbc4240e6273137d5eb4003b122101aa6 xsa252-4.7.patch cb679f2145e76b1c754c4377b397d201007f50438ee18e451c4b0da3f510a293 xsa252-4.9.patch $ DEPLOYMENT DURING EMBARGO ========================= Deployment of the patches and/or mitigations described above (or others which are substantially similar) is permitted during the embargo, even on public-facing systems with untrusted guest users and administrators. But: Distribution of updated software is prohibited (except to other members of the predisclosure list). Predisclosure list members who wish to deploy significantly different patches and/or mitigations, please contact the Xen Project Security Team. (Note: this during-embargo deployment notice is retained in post-embargo publicly released Xen Project advisories, even though it is then no longer applicable. This is to enable the community to have oversight of the Xen Project Security Team's decisionmaking.) For more information about permissible uses of embargoed information, consult the Xen Project community's agreed Security Policy: http://www.xenproject.org/security-policy.html -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQEcBAEBCAAGBQJalUevAAoJEIP+FMlX6CvZaDEH/0MrInFkPbVr0OFNs8KHuZNh 5fz3sXFbf/7O0aTdFT5JJpwZaOngSyjnnKJKZMtsEHz52Nzs6o4xnYzqzNlemPJf FG5NKjWgQI762H8Co4z65eWwHevfDo9a1XAy2LRHlbaNkGXMwic3B2VbhW2A0Hkp nAATx19TpS21Fk4dK5+P8HCy+YN5RwPKKADE1Jps0MsCcSZ9NHcKfedokqpaD2DQ XEWlfhclzHGLdrBGFWtvBUGuxUIioB/ovVQK/6q7/Go2nLNvkrU63tdiCchzpVLA qXskJeatqqH/QnLXxhgzAQWf4rmjCU21l3Lh75ZK0xrRKAPFMOiPLuQ3VtVhcYA= =sq8W -----END PGP SIGNATURE----- --=separator Content-Type: application/octet-stream; name="xsa252.meta" Content-Disposition: attachment; filename="xsa252.meta" Content-Transfer-Encoding: base64 ewogICJYU0EiOiAyNTIsCiAgIlN1cHBvcnRlZFZlcnNpb25zIjogWwogICAg Im1hc3RlciIsCiAgICAiNC4xMCIsCiAgICAiNC45IiwKICAgICI0LjgiLAog ICAgIjQuNyIsCiAgICAiNC42IiwKICAgICI0LjUiCiAgXSwKICAiVHJlZXMi OiBbCiAgICAieGVuIgogIF0sCiAgIlJlY2lwZXMiOiB7CiAgICAiNC4xMCI6 IHsKICAgICAgIlJlY2lwZXMiOiB7CiAgICAgICAgInhlbiI6IHsKICAgICAg ICAgICJTdGFibGVSZWYiOiAiZmQwN2M2ZDBmMDA0Mjg2YzcwMDVlOGQ4ZjZm Y2UyNjE0MGRhMzc0NiIsCiAgICAgICAgICAiUHJlcmVxcyI6IFsKICAgICAg ICAgICAgMjQ4LAogICAgICAgICAgICAyNDksCiAgICAgICAgICAgIDI1MCwK ICAgICAgICAgICAgMjUxCiAgICAgICAgICBdLAogICAgICAgICAgIlBhdGNo ZXMiOiBbCiAgICAgICAgICAgICJ4c2EyNTIucGF0Y2giCiAgICAgICAgICBd CiAgICAgICAgfQogICAgICB9CiAgICB9LAogICAgIjQuNSI6IHsKICAgICAg IlJlY2lwZXMiOiB7CiAgICAgICAgInhlbiI6IHsKICAgICAgICAgICJTdGFi bGVSZWYiOiAiZWExNjIwZmVkODEwNGVjNDVhNmZjMGY1YWQ3ZWRjMzc5YWM1 ZjBkYSIsCiAgICAgICAgICAiUHJlcmVxcyI6IFsKICAgICAgICAgICAgMjQ4 LAogICAgICAgICAgICAyNDksCiAgICAgICAgICAgIDI1MCwKICAgICAgICAg ICAgMjUxCiAgICAgICAgICBdLAogICAgICAgICAgIlBhdGNoZXMiOiBbCiAg ICAgICAgICAgICJ4c2EyNTItNC42LnBhdGNoIgogICAgICAgICAgXQogICAg ICAgIH0KICAgICAgfQogICAgfSwKICAgICI0LjYiOiB7CiAgICAgICJSZWNp cGVzIjogewogICAgICAgICJ4ZW4iOiB7CiAgICAgICAgICAiU3RhYmxlUmVm IjogIjQ3ZDNlNzM5ZTBhMWRhZjk0YjEwMmIwMjdmYTM0MjVjYmRmZjJlNjAi LAogICAgICAgICAgIlByZXJlcXMiOiBbCiAgICAgICAgICAgIDI0OCwKICAg ICAgICAgICAgMjQ5LAogICAgICAgICAgICAyNTAsCiAgICAgICAgICAgIDI1 MQogICAgICAgICAgXSwKICAgICAgICAgICJQYXRjaGVzIjogWwogICAgICAg ICAgICAieHNhMjUyLTQuNi5wYXRjaCIKICAgICAgICAgIF0KICAgICAgICB9 CiAgICAgIH0KICAgIH0sCiAgICAiNC43IjogewogICAgICAiUmVjaXBlcyI6 IHsKICAgICAgICAieGVuIjogewogICAgICAgICAgIlN0YWJsZVJlZiI6ICJi Mzk4MWVhOWU4OGJhOTZiYTU1YzFjZDQxZTcxMjM5MjRkMGY2OWZjIiwKICAg ICAgICAgICJQcmVyZXFzIjogWwogICAgICAgICAgICAyNDgsCiAgICAgICAg ICAgIDI0OSwKICAgICAgICAgICAgMjUwLAogICAgICAgICAgICAyNTEKICAg ICAgICAgIF0sCiAgICAgICAgICAiUGF0Y2hlcyI6IFsKICAgICAgICAgICAg InhzYTI1Mi00LjcucGF0Y2giCiAgICAgICAgICBdCiAgICAgICAgfQogICAg ICB9CiAgICB9LAogICAgIjQuOCI6IHsKICAgICAgIlJlY2lwZXMiOiB7CiAg ICAgICAgInhlbiI6IHsKICAgICAgICAgICJTdGFibGVSZWYiOiAiZTU0YmM3 ZTk5YjdhNzAwNmZmNDBlZTFjMWQ3ZWVhMWYyMDdiODY3MSIsCiAgICAgICAg ICAiUHJlcmVxcyI6IFsKICAgICAgICAgICAgMjQ4LAogICAgICAgICAgICAy NDksCiAgICAgICAgICAgIDI1MCwKICAgICAgICAgICAgMjUxCiAgICAgICAg ICBdLAogICAgICAgICAgIlBhdGNoZXMiOiBbCiAgICAgICAgICAgICJ4c2Ey NTItNC45LnBhdGNoIgogICAgICAgICAgXQogICAgICAgIH0KICAgICAgfQog ICAgfSwKICAgICI0LjkiOiB7CiAgICAgICJSZWNpcGVzIjogewogICAgICAg ICJ4ZW4iOiB7CiAgICAgICAgICAiU3RhYmxlUmVmIjogIjBhMGRjZGNkMjBl OTcxMWNiZmIwOGRiNWIyMWFmNTI5OWVlMWViOGIiLAogICAgICAgICAgIlBy ZXJlcXMiOiBbCiAgICAgICAgICAgIDI0OCwKICAgICAgICAgICAgMjQ5LAog ICAgICAgICAgICAyNTAsCiAgICAgICAgICAgIDI1MQogICAgICAgICAgXSwK ICAgICAgICAgICJQYXRjaGVzIjogWwogICAgICAgICAgICAieHNhMjUyLTQu OS5wYXRjaCIKICAgICAgICAgIF0KICAgICAgICB9CiAgICAgIH0KICAgIH0s CiAgICAibWFzdGVyIjogewogICAgICAiUmVjaXBlcyI6IHsKICAgICAgICAi eGVuIjogewogICAgICAgICAgIlN0YWJsZVJlZiI6ICI0MzU1MDk3MjM5NWY5 YTNhNDhiYjQwODZhMGZhZjBmOGQ0NDJlMzdkIiwKICAgICAgICAgICJQcmVy ZXFzIjogWwogICAgICAgICAgICAyNDgsCiAgICAgICAgICAgIDI0OSwKICAg ICAgICAgICAgMjUwLAogICAgICAgICAgICAyNTEKICAgICAgICAgIF0sCiAg ICAgICAgICAiUGF0Y2hlcyI6IFsKICAgICAgICAgICAgInhzYTI1Mi5wYXRj aCIKICAgICAgICAgIF0KICAgICAgICB9CiAgICAgIH0KICAgIH0KICB9Cn0= --=separator Content-Type: application/octet-stream; name="xsa252.patch" Content-Disposition: attachment; filename="xsa252.patch" Content-Transfer-Encoding: base64 RnJvbTogSmFuIEJldWxpY2ggPGpiZXVsaWNoQHN1c2UuY29tPgpTdWJqZWN0 OiBtZW1vcnk6IGRvbid0IGltcGxpY2l0bHkgdW5waW4gZm9yIGRlY3JlYXNl LXJlc2VydmF0aW9uCgpJdCB2ZXJ5IGxpa2VseSB3YXMgYSBtaXN0YWtlIChj b3B5LWFuZC1wYXN0ZSBmcm9tIGRvbWFpbiBjbGVhbnVwIGNvZGUpCnRvIGlt cGxpY2l0bHkgdW5waW4gaGVyZTogVGhlIGNhbGxlciBzaG91bGQgcmVhbGx5 IHVucGluIGl0c2VsZiBiZWZvcmUKKG9yIGFmdGVyLCBpZiB0aGV5IHNvIHdp c2gpIHJlcXVlc3RpbmcgdGhlIHBhZ2UgdG8gYmUgcmVtb3ZlZC4KClRoaXMg aXMgWFNBLTI1Mi4KClJlcG9ydGVkLWJ5OiBKYW5uIEhvcm4gPGphbm5oQGdv b2dsZS5jb20+ClNpZ25lZC1vZmYtYnk6IEphbiBCZXVsaWNoIDxqYmV1bGlj aEBzdXNlLmNvbT4KUmV2aWV3ZWQtYnk6IEFuZHJldyBDb29wZXIgPGFuZHJl dy5jb29wZXIzQGNpdHJpeC5jb20+CgotLS0gYS94ZW4vY29tbW9uL21lbW9y eS5jCisrKyBiL3hlbi9jb21tb24vbWVtb3J5LmMKQEAgLTM1NywxMSArMzU3 LDYgQEAgaW50IGd1ZXN0X3JlbW92ZV9wYWdlKHN0cnVjdCBkb21haW4gKmQs CiAKICAgICByYyA9IGd1ZXN0X3BoeXNtYXBfcmVtb3ZlX3BhZ2UoZCwgX2dm bihnbWZuKSwgbWZuLCAwKTsKIAotI2lmZGVmIF9QR1RfcGlubmVkCi0gICAg aWYgKCAhcmMgJiYgdGVzdF9hbmRfY2xlYXJfYml0KF9QR1RfcGlubmVkLCAm cGFnZS0+dS5pbnVzZS50eXBlX2luZm8pICkKLSAgICAgICAgcHV0X3BhZ2Vf YW5kX3R5cGUocGFnZSk7Ci0jZW5kaWYKLQogICAgIC8qCiAgICAgICogV2l0 aCB0aGUgbGFjayBvZiBhbiBJT01NVSBvbiBzb21lIHBsYXRmb3JtcywgZG9t YWlucyB3aXRoIERNQS1jYXBhYmxlCiAgICAgICogZGV2aWNlIG11c3QgcmV0 cmlldmUgdGhlIHNhbWUgcGZuIHdoZW4gdGhlIGh5cGVyY2FsbCBwb3B1bGF0 ZV9waHlzbWFwCg== --=separator Content-Type: application/octet-stream; name="xsa252-4.6.patch" Content-Disposition: attachment; filename="xsa252-4.6.patch" Content-Transfer-Encoding: base64 RnJvbTogSmFuIEJldWxpY2ggPGpiZXVsaWNoQHN1c2UuY29tPgpTdWJqZWN0 OiBtZW1vcnk6IGRvbid0IGltcGxpY2l0bHkgdW5waW4gZm9yIGRlY3JlYXNl LXJlc2VydmF0aW9uCgpJdCB2ZXJ5IGxpa2VseSB3YXMgYSBtaXN0YWtlIChj b3B5LWFuZC1wYXN0ZSBmcm9tIGRvbWFpbiBjbGVhbnVwIGNvZGUpCnRvIGlt cGxpY2l0bHkgdW5waW4gaGVyZTogVGhlIGNhbGxlciBzaG91bGQgcmVhbGx5 IHVucGluIGl0c2VsZiBiZWZvcmUKKG9yIGFmdGVyLCBpZiB0aGV5IHNvIHdp c2gpIHJlcXVlc3RpbmcgdGhlIHBhZ2UgdG8gYmUgcmVtb3ZlZC4KClRoaXMg aXMgWFNBLTI1Mi4KClJlcG9ydGVkLWJ5OiBKYW5uIEhvcm4gPGphbm5oQGdv b2dsZS5jb20+ClNpZ25lZC1vZmYtYnk6IEphbiBCZXVsaWNoIDxqYmV1bGlj aEBzdXNlLmNvbT4KUmV2aWV3ZWQtYnk6IEFuZHJldyBDb29wZXIgPGFuZHJl dy5jb29wZXIzQGNpdHJpeC5jb20+CgotLS0gYS94ZW4vY29tbW9uL21lbW9y eS5jCisrKyBiL3hlbi9jb21tb24vbWVtb3J5LmMKQEAgLTMxNiw5ICszMTYs NiBAQCBpbnQgZ3Vlc3RfcmVtb3ZlX3BhZ2Uoc3RydWN0IGRvbWFpbiAqZCwK IAogICAgIHJjID0gZ3Vlc3RfcGh5c21hcF9yZW1vdmVfcGFnZShkLCBnbWZu LCBtZm4sIDApOwogCi0gICAgaWYgKCAhcmMgJiYgdGVzdF9hbmRfY2xlYXJf Yml0KF9QR1RfcGlubmVkLCAmcGFnZS0+dS5pbnVzZS50eXBlX2luZm8pICkK LSAgICAgICAgcHV0X3BhZ2VfYW5kX3R5cGUocGFnZSk7Ci0gICAgICAgICAg ICAKICAgICBpZiAoICFyYyAmJiB0ZXN0X2FuZF9jbGVhcl9iaXQoX1BHQ19h bGxvY2F0ZWQsICZwYWdlLT5jb3VudF9pbmZvKSApCiAgICAgICAgIHB1dF9w YWdlKHBhZ2UpOwogCg== --=separator Content-Type: application/octet-stream; name="xsa252-4.7.patch" Content-Disposition: attachment; filename="xsa252-4.7.patch" Content-Transfer-Encoding: base64 RnJvbTogSmFuIEJldWxpY2ggPGpiZXVsaWNoQHN1c2UuY29tPgpTdWJqZWN0 OiBtZW1vcnk6IGRvbid0IGltcGxpY2l0bHkgdW5waW4gZm9yIGRlY3JlYXNl LXJlc2VydmF0aW9uCgpJdCB2ZXJ5IGxpa2VseSB3YXMgYSBtaXN0YWtlIChj b3B5LWFuZC1wYXN0ZSBmcm9tIGRvbWFpbiBjbGVhbnVwIGNvZGUpCnRvIGlt cGxpY2l0bHkgdW5waW4gaGVyZTogVGhlIGNhbGxlciBzaG91bGQgcmVhbGx5 IHVucGluIGl0c2VsZiBiZWZvcmUKKG9yIGFmdGVyLCBpZiB0aGV5IHNvIHdp c2gpIHJlcXVlc3RpbmcgdGhlIHBhZ2UgdG8gYmUgcmVtb3ZlZC4KClRoaXMg aXMgWFNBLTI1Mi4KClJlcG9ydGVkLWJ5OiBKYW5uIEhvcm4gPGphbm5oQGdv b2dsZS5jb20+ClNpZ25lZC1vZmYtYnk6IEphbiBCZXVsaWNoIDxqYmV1bGlj aEBzdXNlLmNvbT4KUmV2aWV3ZWQtYnk6IEFuZHJldyBDb29wZXIgPGFuZHJl dy5jb29wZXIzQGNpdHJpeC5jb20+CgotLS0gYS94ZW4vY29tbW9uL21lbW9y eS5jCisrKyBiL3hlbi9jb21tb24vbWVtb3J5LmMKQEAgLTMyMCw5ICszMjAs NiBAQCBpbnQgZ3Vlc3RfcmVtb3ZlX3BhZ2Uoc3RydWN0IGRvbWFpbiAqZCwK IAogICAgIHJjID0gZ3Vlc3RfcGh5c21hcF9yZW1vdmVfcGFnZShkLCBnbWZu LCBtZm4sIDApOwogCi0gICAgaWYgKCAhcmMgJiYgdGVzdF9hbmRfY2xlYXJf Yml0KF9QR1RfcGlubmVkLCAmcGFnZS0+dS5pbnVzZS50eXBlX2luZm8pICkK LSAgICAgICAgcHV0X3BhZ2VfYW5kX3R5cGUocGFnZSk7Ci0KICAgICAvKgog ICAgICAqIFdpdGggdGhlIGxhY2sgb2YgYW4gSU9NTVUgb24gc29tZSBwbGF0 Zm9ybXMsIGRvbWFpbnMgd2l0aCBETUEtY2FwYWJsZQogICAgICAqIGRldmlj ZSBtdXN0IHJldHJpZXZlIHRoZSBzYW1lIHBmbiB3aGVuIHRoZSBoeXBlcmNh bGwgcG9wdWxhdGVfcGh5c21hcAo= --=separator Content-Type: application/octet-stream; name="xsa252-4.9.patch" Content-Disposition: attachment; filename="xsa252-4.9.patch" Content-Transfer-Encoding: base64 RnJvbTogSmFuIEJldWxpY2ggPGpiZXVsaWNoQHN1c2UuY29tPgpTdWJqZWN0 OiBtZW1vcnk6IGRvbid0IGltcGxpY2l0bHkgdW5waW4gZm9yIGRlY3JlYXNl LXJlc2VydmF0aW9uCgpJdCB2ZXJ5IGxpa2VseSB3YXMgYSBtaXN0YWtlIChj b3B5LWFuZC1wYXN0ZSBmcm9tIGRvbWFpbiBjbGVhbnVwIGNvZGUpCnRvIGlt cGxpY2l0bHkgdW5waW4gaGVyZTogVGhlIGNhbGxlciBzaG91bGQgcmVhbGx5 IHVucGluIGl0c2VsZiBiZWZvcmUKKG9yIGFmdGVyLCBpZiB0aGV5IHNvIHdp c2gpIHJlcXVlc3RpbmcgdGhlIHBhZ2UgdG8gYmUgcmVtb3ZlZC4KClRoaXMg aXMgWFNBLTI1Mi4KClJlcG9ydGVkLWJ5OiBKYW5uIEhvcm4gPGphbm5oQGdv b2dsZS5jb20+ClNpZ25lZC1vZmYtYnk6IEphbiBCZXVsaWNoIDxqYmV1bGlj aEBzdXNlLmNvbT4KUmV2aWV3ZWQtYnk6IEFuZHJldyBDb29wZXIgPGFuZHJl dy5jb29wZXIzQGNpdHJpeC5jb20+CgotLS0gYS94ZW4vY29tbW9uL21lbW9y eS5jCisrKyBiL3hlbi9jb21tb24vbWVtb3J5LmMKQEAgLTM0MSw5ICszNDEs NiBAQCBpbnQgZ3Vlc3RfcmVtb3ZlX3BhZ2Uoc3RydWN0IGRvbWFpbiAqZCwK IAogICAgIHJjID0gZ3Vlc3RfcGh5c21hcF9yZW1vdmVfcGFnZShkLCBfZ2Zu KGdtZm4pLCBtZm4sIDApOwogCi0gICAgaWYgKCAhcmMgJiYgdGVzdF9hbmRf Y2xlYXJfYml0KF9QR1RfcGlubmVkLCAmcGFnZS0+dS5pbnVzZS50eXBlX2lu Zm8pICkKLSAgICAgICAgcHV0X3BhZ2VfYW5kX3R5cGUocGFnZSk7Ci0KICAg ICAvKgogICAgICAqIFdpdGggdGhlIGxhY2sgb2YgYW4gSU9NTVUgb24gc29t ZSBwbGF0Zm9ybXMsIGRvbWFpbnMgd2l0aCBETUEtY2FwYWJsZQogICAgICAq IGRldmljZSBtdXN0IHJldHJpZXZlIHRoZSBzYW1lIHBmbiB3aGVuIHRoZSBo eXBlcmNhbGwgcG9wdWxhdGVfcGh5c21hcAo= --=separator Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: base64 Content-Disposition: inline X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX18KWGVuLWFubm91 bmNlIG1haWxpbmcgbGlzdApYZW4tYW5ub3VuY2VAbGlzdHMueGVucHJvamVjdC5vcmcKaHR0cHM6 Ly9saXN0cy54ZW5wcm9qZWN0Lm9yZy9tYWlsbWFuL2xpc3RpbmZvL3hlbi1hbm5vdW5jZQ== --=separator-- From xen-announce-bounces@lists.xenproject.org Tue Feb 27 12:01:25 2018 Return-path: Envelope-to: archives@lists.xen.org Delivery-date: Tue, 27 Feb 2018 12:01:25 +0000 Received: from localhost ([127.0.0.1] helo=lists.xenproject.org) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1eqdwi-0003bU-N0; Tue, 27 Feb 2018 12:01:24 +0000 Received: from all-amaz-eas1.inumbo.com ([34.197.232.57]) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1eqdwh-0003ZO-9o for xen-announce@lists.xen.org; Tue, 27 Feb 2018 12:01:23 +0000 X-Inumbo-ID: 0b3138cf-1bb6-11e8-b9b1-635ca7ef6cff Received: from mail.xenproject.org (unknown [104.130.215.37]) by us1-amaz-eas1.inumbo.com (Halon) with ESMTPS id 0b3138cf-1bb6-11e8-b9b1-635ca7ef6cff; Tue, 27 Feb 2018 12:02:12 +0000 (UTC) Received: from xenbits.xenproject.org ([104.239.192.120]) by mail.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1eqdvU-0008Nn-8d; Tue, 27 Feb 2018 12:00:08 +0000 Received: from iwj by xenbits.xenproject.org with local (Exim 4.84_2) (envelope-from ) id 1eqdvU-0006ly-7n; Tue, 27 Feb 2018 12:00:08 +0000 Content-Type: multipart/mixed; boundary="=separator"; charset="utf-8" Content-Transfer-Encoding: binary MIME-Version: 1.0 X-Mailer: MIME-tools 5.505 (Entity 5.505) To: xen-announce@lists.xen.org, xen-devel@lists.xen.org, xen-users@lists.xen.org, oss-security@lists.openwall.com From: Xen.org security team Message-Id: Date: Tue, 27 Feb 2018 12:00:08 +0000 Cc: "Xen.org security team" Subject: [Xen-announce] Xen Security Advisory 255 - grant table v2 -> v1 transition may crash Xen X-BeenThere: xen-announce@lists.xenproject.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: "Xen announcements \(low volume\)" List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Errors-To: xen-announce-bounces@lists.xenproject.org Sender: "Xen-announce" --=separator Content-Type: text/plain; charset="utf-8" Content-Disposition: inline Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Xen Security Advisory XSA-255 version 3 grant table v2 -> v1 transition may crash Xen UPDATES IN VERSION 3 ==================== Public release. ISSUE DESCRIPTION ================= Grant tables come in two flavors (versions), and domains are permitted to freely change between them (subject to certain constraints). For the guest to use the facility, both the "normal" shared pages (applicable to v1 and v2) and the "status" pages (applicable to v2 only) need to be mapped by the guest into its address space. When transitioning from v2 to v1, the status pages become unnecessary and are therefore freed by Xen. That means Xen needs to check that there are no mappings of those pages by the domain. However, that check was mistakenly implemented as a bug check, rather than returning an error to the guest. IMPACT ====== A malicious or buggy guest may cause a hypervisor crash, resulting in a Denial of Service (DoS) affecting the entire host. Privilege escalation as well as information leaks cannot be ruled out for HVM, PVH (both x86), and ARM guests. The impact is more severe for Xen versions 4.0.x, 4.1.0 ... 4.1.3, and 4.2 in that the pages are freed without any checking, thus allowing their re-use for another domain, or by Xen itself, while there still are active mappings (see XSA-26). VULNERABLE SYSTEMS ================== Xen versions 4.0 and newer are vulnerable. Both x86 and ARM systems are vulnerable. MITIGATION ========== Using the "gnttab=max_ver:1" hypervisor command line option, where available, to disable use of v2 grant tables allows to avoid the vulnerability. Use of this option will, however, break any guests which require to make use of v2 functionality. The patch introducing this option was not merged so far, but is available (in its current form) at https://lists.xenproject.org/archives/html/xen-devel/2018-02/msg00059.html ("common/gnttab: Introduce command line feature controls"). There is no other known mitigation. CREDITS ======= This issue was discovered by Jan Beulich of SUSE. RESOLUTION ========== Applying the appropriate attached patch resolves this issue. xsa255-?.patch xen-unstable, Xen 4.10.x xsa255-4.9-?.patch Xen 4.9.x, Xen 4.8.x xsa255-4.7-?.patch Xen 4.7.x xsa255-4.6-?.patch Xen 4.6.x $ sha256sum xsa255* 05a5570ecf4354f7aad35bb77a4c2f5f556bcabf3555829a98c94dcfb6dd4696 xsa255-1.patch df43a147f1e1a2b7d59588bc91cdaac05d4e45bcfc4e2c8cb5e8de840d44b43d xsa255-2.patch be62d81583df10a6be275427d5cfa02084c8717473b3694cd2a9bbdc10cbadcb xsa255-4.6-1.patch 3dd58114c5ce68fd8dd43f8f92eaafdcec1fd9add37eb41faed1cf818058539a xsa255-4.6-2.patch 9bfc4a33a0faeb36aec8449ea940cef52d523cc3d13529b4eeaae64bf5a7b644 xsa255-4.7-1.patch 6d95ceb54298de7863dc7133c0f3adf85f7da9b8d326146ff46e641194a47fc0 xsa255-4.7-2.patch 0b4706f0d2d21d4f6414ae9c0205e553bfb792c23d44e129b3a0f90be557d13f xsa255-4.9-1.patch 9c6b2d2183ffa484182ca75e1a048d0713c4d150e750ccf58be5a24991a3e1de xsa255-4.9-2.patch $ DEPLOYMENT DURING EMBARGO ========================= Deployment of the patches described above (or others which are substantially similar) is permitted during the embargo, even on public-facing systems with untrusted guest users and administrators. However, deployment of the mitigation is NOT permitted (except where all the affected systems and VMs are administered and used only by organisations which are members of the Xen Project Security Issues Predisclosure List). Specifically, deployment on public cloud systems is NOT permitted. This is because this produces a guest-visible change which will indicate which component contains the vulnerability. Additionally, distribution of updated software is prohibited (except to other members of the predisclosure list). Predisclosure list members who wish to deploy significantly different patches and/or mitigations, please contact the Xen Project Security Team. (Note: this during-embargo deployment notice is retained in post-embargo publicly released Xen Project advisories, even though it is then no longer applicable. This is to enable the community to have oversight of the Xen Project Security Team's decisionmaking.) For more information about permissible uses of embargoed information, consult the Xen Project community's agreed Security Policy: http://www.xenproject.org/security-policy.html -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQEcBAEBCAAGBQJalUeyAAoJEIP+FMlX6CvZrgoH/3bGXBS8dUA/59slmiyw7UpG jShI/y+aCo5APtvPVrm+1cM/YOFVCHoZcnL0V+E9VBekCeVo84lfrDwrsU76RWNq vIyPKBBeJbJFCCLatiWWDSEG6MukhhF0xiJy5RuMd/A1d4+6XLsD3y2bIkBb1P13 WzPJcgN1/wMM4A5Tp7MgyncOdm5yODu0A85L4J6fOOGm+LrNErvFpREcivoIKhbq PKm04dSNb3jp7b7J9cVfSH/ZhpD1szwJ9yrddX3zgOF/1jlDi54Bri2potAZRZ0j h+dN4Oh1HUR6NJeTuJqHx/VwFsx7V2zmWZZwsHaI7f/Oe15GRY/vPJNEm3VhNoM= =atsR -----END PGP SIGNATURE----- --=separator Content-Type: application/octet-stream; name="xsa255-1.patch" Content-Disposition: attachment; filename="xsa255-1.patch" Content-Transfer-Encoding: base64 RnJvbTogSmFuIEJldWxpY2ggPGpiZXVsaWNoQHN1c2UuY29tPgpTdWJqZWN0 OiBnbnR0YWIvQVJNOiBkb24ndCBjb3JydXB0IHNoYXJlZCBHRk4gYXJyYXkK Ci4uLiBieSB3cml0aW5nIHN0YXR1cyBHRk5zIHRvIGl0LiBJbnRyb2R1Y2Ug YSBzZWNvbmQgYXJyYXkgaW5zdGVhZC4KQWxzbyBpbXBsZW1lbnQgZ250dGFi X3N0YXR1c19nbWZuKCkgcHJvcGVybHkgbm93IHRoYXQgdGhlIGluZm9ybWF0 aW9uIGlzCnN1aXRhYmx5IGJlaW5nIHRyYWNrZWQuCgpXaGlsZSB0b3VjaGlu ZyBpdCBhbnl3YXksIHJlbW92ZSBhIG1pc2d1aWRlZCAoYnV0IGx1Y2tpbHkg YmVuaWduKSB1cHBlcgpib3VuZCBjaGVjayBmcm9tIGdudHRhYl9zaGFyZWRf Z21mbigpOiBXZSBzaG91bGQgbmV2ZXIgYWNjZXNzIGJleW9uZCB0aGUKYm91 bmRzIG9mIHRoYXQgYXJyYXkuCgpUaGlzIGlzIHBhcnQgb2YgWFNBLTI1NS4K ClNpZ25lZC1vZmYtYnk6IEphbiBCZXVsaWNoIDxqYmV1bGljaEBzdXNlLmNv bT4KUmV2aWV3ZWQtYnk6IFN0ZWZhbm8gU3RhYmVsbGluaSA8c3N0YWJlbGxp bmlAa2VybmVsLm9yZz4KUmV2aWV3ZWQtYnk6IEFuZHJldyBDb29wZXIgPGFu ZHJldy5jb29wZXIzQGNpdHJpeC5jb20+Ci0tLQp2MzogRG9uJ3QgaW5pdCB0 aGUgQVJNIEdGTiBhcnJheXMgdG8gemVybyBhbnltb3JlLCB1c2UgSU5WQUxJ RF9HRk4uCnYyOiBOZXcuCgotLS0gYS94ZW4vY29tbW9uL2dyYW50X3RhYmxl LmMKKysrIGIveGVuL2NvbW1vbi9ncmFudF90YWJsZS5jCkBAIC0zNzc1LDYg KzM3NzUsNyBAQCBpbnQgZ250dGFiX21hcF9mcmFtZShzdHJ1Y3QgZG9tYWlu ICpkLCB1CiB7CiAgICAgaW50IHJjID0gMDsKICAgICBzdHJ1Y3QgZ3JhbnRf dGFibGUgKmd0ID0gZC0+Z3JhbnRfdGFibGU7CisgICAgYm9vbCBzdGF0dXMg PSBmYWxzZTsKIAogICAgIGdyYW50X3dyaXRlX2xvY2soZ3QpOwogCkBAIC0z Nzg1LDYgKzM3ODYsNyBAQCBpbnQgZ250dGFiX21hcF9mcmFtZShzdHJ1Y3Qg ZG9tYWluICpkLCB1CiAgICAgICAgICAoaWR4ICYgWEVOTUFQSURYX2dyYW50 X3RhYmxlX3N0YXR1cykgKQogICAgIHsKICAgICAgICAgaWR4ICY9IH5YRU5N QVBJRFhfZ3JhbnRfdGFibGVfc3RhdHVzOworICAgICAgICBzdGF0dXMgPSB0 cnVlOwogICAgICAgICBpZiAoIGlkeCA8IG5yX3N0YXR1c19mcmFtZXMoZ3Qp ICkKICAgICAgICAgICAgICptZm4gPSBfbWZuKHZpcnRfdG9fbWZuKGd0LT5z dGF0dXNbaWR4XSkpOwogICAgICAgICBlbHNlCkBAIC0zODAyLDcgKzM4MDQs NyBAQCBpbnQgZ250dGFiX21hcF9mcmFtZShzdHJ1Y3QgZG9tYWluICpkLCB1 CiAgICAgfQogCiAgICAgaWYgKCAhcmMgKQotICAgICAgICBnbnR0YWJfc2V0 X2ZyYW1lX2dmbihndCwgaWR4LCBnZm4pOworICAgICAgICBnbnR0YWJfc2V0 X2ZyYW1lX2dmbihndCwgc3RhdHVzLCBpZHgsIGdmbik7CiAKICAgICBncmFu dF93cml0ZV91bmxvY2soZ3QpOwogCi0tLSBhL3hlbi9pbmNsdWRlL2FzbS1h cm0vZ3JhbnRfdGFibGUuaAorKysgYi94ZW4vaW5jbHVkZS9hc20tYXJtL2dy YW50X3RhYmxlLmgKQEAgLTksNyArOSw4IEBACiAjZGVmaW5lIElOSVRJQUxf TlJfR1JBTlRfRlJBTUVTIDFVCiAKIHN0cnVjdCBncmFudF90YWJsZV9hcmNo IHsKLSAgICBnZm5fdCAqZ2ZuOworICAgIGdmbl90ICpzaGFyZWRfZ2ZuOwor ICAgIGdmbl90ICpzdGF0dXNfZ2ZuOwogfTsKIAogdm9pZCBnbnR0YWJfY2xl YXJfZmxhZyh1bnNpZ25lZCBsb25nIG5yLCB1aW50MTZfdCAqYWRkcik7CkBA IC0yMSw3ICsyMiw2IEBAIGludCByZXBsYWNlX2dyYW50X2hvc3RfbWFwcGlu Zyh1bnNpZ25lZAogICAgICAgICB1bnNpZ25lZCBsb25nIG5ld19ncGFkZHIs IHVuc2lnbmVkIGludCBmbGFncyk7CiB2b2lkIGdudHRhYl9tYXJrX2RpcnR5 KHN0cnVjdCBkb21haW4gKmQsIHVuc2lnbmVkIGxvbmcgbCk7CiAjZGVmaW5l IGdudHRhYl9jcmVhdGVfc3RhdHVzX3BhZ2UoZCwgdCwgaSkgZG8ge30gd2hp bGUgKDApCi0jZGVmaW5lIGdudHRhYl9zdGF0dXNfZ21mbihkLCB0LCBpKSAo MCkKICNkZWZpbmUgZ250dGFiX3JlbGVhc2VfaG9zdF9tYXBwaW5ncyhkb21h aW4pIDEKIHN0YXRpYyBpbmxpbmUgaW50IHJlcGxhY2VfZ3JhbnRfc3VwcG9y dGVkKHZvaWQpCiB7CkBAIC00MiwxOSArNDIsMzUgQEAgc3RhdGljIGlubGlu ZSB1bnNpZ25lZCBpbnQgZ250dGFiX2RvbTBfbQogCiAjZGVmaW5lIGdudHRh Yl9pbml0X2FyY2goZ3QpICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgXAogKHsgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg IFwKLSAgICAoZ3QpLT5hcmNoLmdmbiA9IHh6YWxsb2NfYXJyYXkoZ2ZuX3Qs IChndCktPm1heF9ncmFudF9mcmFtZXMpOyAgICAgICBcCi0gICAgKCAoZ3Qp LT5hcmNoLmdmbiA/IDAgOiAtRU5PTUVNICk7ICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgXAorICAgIHVuc2lnbmVkIGludCBuZ2ZfID0g KGd0KS0+bWF4X2dyYW50X2ZyYW1lczsgICAgICAgICAgICAgICAgICAgICAg ICAgIFwKKyAgICB1bnNpZ25lZCBpbnQgbnNmXyA9IGdyYW50X3RvX3N0YXR1 c19mcmFtZXMobmdmXyk7ICAgICAgICAgICAgICAgICAgICBcCisgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgXAorICAgIChndCktPmFyY2guc2hhcmVk X2dmbiA9IHhtYWxsb2NfYXJyYXkoZ2ZuX3QsIG5nZl8pOyAgICAgICAgICAg ICAgICAgIFwKKyAgICAoZ3QpLT5hcmNoLnN0YXR1c19nZm4gPSB4bWFsbG9j X2FycmF5KGdmbl90LCBuc2ZfKTsgICAgICAgICAgICAgICAgICBcCisgICAg aWYgKCAoZ3QpLT5hcmNoLnNoYXJlZF9nZm4gJiYgKGd0KS0+YXJjaC5zdGF0 dXNfZ2ZuICkgICAgICAgICAgICAgICAgXAorICAgIHsgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgIFwKKyAgICAgICAgd2hpbGUgKCBuZ2ZfLS0gKSAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICBcCisg ICAgICAgICAgICAoZ3QpLT5hcmNoLnNoYXJlZF9nZm5bbmdmX10gPSBJTlZB TElEX0dGTjsgICAgICAgICAgICAgICAgICAgXAorICAgICAgICB3aGlsZSAo IG5zZl8tLSApICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgIFwKKyAgICAgICAgICAgIChndCktPmFyY2guc3RhdHVz X2dmbltuc2ZfXSA9IElOVkFMSURfR0ZOOyAgICAgICAgICAgICAgICAgICBc CisgICAgfSAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgXAorICAgIGVsc2UgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgIFwKKyAgICAgICAgZ250dGFiX2Rlc3Ryb3lfYXJj aChndCk7ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICBcCisgICAgKGd0KS0+YXJjaC5zaGFyZWRfZ2ZuID8gMCA6IC1FTk9NRU07 ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgXAogfSkKIAogI2Rl ZmluZSBnbnR0YWJfZGVzdHJveV9hcmNoKGd0KSAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgIFwKICAgICBkbyB7ICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICBcCi0gICAgICAgIHhmcmVlKChndCktPmFyY2guZ2ZuKTsg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgXAot ICAgICAgICAoZ3QpLT5hcmNoLmdmbiA9IE5VTEw7ICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgIFwKKyAgICAgICAgeGZyZWUo KGd0KS0+YXJjaC5zaGFyZWRfZ2ZuKTsgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICBcCisgICAgICAgIChndCktPmFyY2guc2hhcmVkX2dm biA9IE5VTEw7ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg XAorICAgICAgICB4ZnJlZSgoZ3QpLT5hcmNoLnN0YXR1c19nZm4pOyAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIFwKKyAgICAgICAgKGd0 KS0+YXJjaC5zdGF0dXNfZ2ZuID0gTlVMTDsgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICBcCiAgICAgfSB3aGlsZSAoIDAgKQogCi0jZGVm aW5lIGdudHRhYl9zZXRfZnJhbWVfZ2ZuKGd0LCBpZHgsIGdmbikgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgXAorI2RlZmluZSBnbnR0YWJfc2V0 X2ZyYW1lX2dmbihndCwgc3QsIGlkeCwgZ2ZuKSAgICAgICAgICAgICAgICAg ICAgICAgICAgIFwKICAgICBkbyB7ICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICBcCi0g ICAgICAgIChndCktPmFyY2guZ2ZuW2lkeF0gPSBnZm47ICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgXAorICAgICAgICAoKHN0KSA/ IChndCktPmFyY2guc3RhdHVzX2dmbiA6IChndCktPmFyY2guc2hhcmVkX2dm bilbaWR4XSA9ICAgIFwKKyAgICAgICAgICAgIChnZm4pOyAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICBc CiAgICAgfSB3aGlsZSAoIDAgKQogCiAjZGVmaW5lIGdudHRhYl9jcmVhdGVf c2hhcmVkX3BhZ2UoZCwgdCwgaSkgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgXApAQCAtNjUsOCArODEsMTAgQEAgc3RhdGljIGlubGluZSB1bnNp Z25lZCBpbnQgZ250dGFiX2RvbTBfbQogICAgIH0gd2hpbGUgKCAwICkKIAog I2RlZmluZSBnbnR0YWJfc2hhcmVkX2dtZm4oZCwgdCwgaSkgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgIFwKLSAgICAoICgoaSA+PSBu cl9ncmFudF9mcmFtZXModCkpICYmICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICBcCi0gICAgICAgKGkgPCAodCktPm1heF9ncmFudF9m cmFtZXMpKT8gMCA6IGdmbl94KCh0KS0+YXJjaC5nZm5baV0pKQorICAgIGdm bl94KCgoaSkgPj0gbnJfZ3JhbnRfZnJhbWVzKHQpKSA/IElOVkFMSURfR0ZO IDogKHQpLT5hcmNoLnNoYXJlZF9nZm5baV0pCisKKyNkZWZpbmUgZ250dGFi X3N0YXR1c19nbWZuKGQsIHQsIGkpICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICBcCisgICAgZ2ZuX3goKChpKSA+PSBucl9zdGF0dXNf ZnJhbWVzKHQpKSA/IElOVkFMSURfR0ZOIDogKHQpLT5hcmNoLnN0YXR1c19n Zm5baV0pCiAKICNkZWZpbmUgZ250dGFiX25lZWRfaW9tbXVfbWFwcGluZyhk KSAgICAgICAgICAgICAgICAgICAgXAogICAgIChpc19kb21haW5fZGlyZWN0 X21hcHBlZChkKSAmJiBuZWVkX2lvbW11KGQpKQotLS0gYS94ZW4vaW5jbHVk ZS9hc20teDg2L2dyYW50X3RhYmxlLmgKKysrIGIveGVuL2luY2x1ZGUvYXNt LXg4Ni9ncmFudF90YWJsZS5oCkBAIC00Niw3ICs0Niw3IEBAIHN0YXRpYyBp bmxpbmUgdW5zaWduZWQgaW50IGdudHRhYl9kb20wX20KIAogI2RlZmluZSBn bnR0YWJfaW5pdF9hcmNoKGd0KSAwCiAjZGVmaW5lIGdudHRhYl9kZXN0cm95 X2FyY2goZ3QpIGRvIHt9IHdoaWxlICggMCApCi0jZGVmaW5lIGdudHRhYl9z ZXRfZnJhbWVfZ2ZuKGd0LCBpZHgsIGdmbikgZG8ge30gd2hpbGUgKCAwICkK KyNkZWZpbmUgZ250dGFiX3NldF9mcmFtZV9nZm4oZ3QsIHN0LCBpZHgsIGdm bikgZG8ge30gd2hpbGUgKCAwICkKIAogI2RlZmluZSBnbnR0YWJfY3JlYXRl X3NoYXJlZF9wYWdlKGQsIHQsIGkpICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgIFwKICAgICBkbyB7ICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICBcCg== --=separator Content-Type: application/octet-stream; name="xsa255-2.patch" Content-Disposition: attachment; filename="xsa255-2.patch" Content-Transfer-Encoding: base64 RnJvbTogSmFuIEJldWxpY2ggPGpiZXVsaWNoQHN1c2UuY29tPgpTdWJqZWN0 OiBnbnR0YWI6IGRvbid0IGJsaW5kbHkgZnJlZSBzdGF0dXMgcGFnZXMgdXBv biB2ZXJzaW9uIGNoYW5nZQoKVGhlcmUgbWF5IHN0aWxsIGJlIGFjdGl2ZSBt YXBwaW5ncywgd2hpY2ggd291bGQgdHJpZ2dlciB0aGUgcmVzcGVjdGl2ZQpC VUdfT04oKS4gU3BsaXQgdGhlIGxvb3AgaW50byBvbmUgZGVhbGluZyB3aXRo IHRoZSBwYWdlIGF0dHJpYnV0ZXMgYW5kCnRoZSBzZWNvbmQgKHdoZW4gdGhl IGZpcnN0IGZ1bGx5IHBhc3NlZCkgZnJlZWluZyB0aGUgcGFnZXMuIFJldHVy biBhbgplcnJvciBpZiBhbnkgcGFnZXMgc3RpbGwgaGF2ZSBwZW5kaW5nIHJl ZmVyZW5jZXMuCgpUaGlzIGlzIHBhcnQgb2YgWFNBLTI1NS4KClNpZ25lZC1v ZmYtYnk6IEphbiBCZXVsaWNoIDxqYmV1bGljaEBzdXNlLmNvbT4KUmV2aWV3 ZWQtYnk6IFN0ZWZhbm8gU3RhYmVsbGluaSA8c3N0YWJlbGxpbmlAa2VybmVs Lm9yZz4KUmV2aWV3ZWQtYnk6IEFuZHJldyBDb29wZXIgPGFuZHJldy5jb29w ZXIzQGNpdHJpeC5jb20+Ci0tLQp2NDogQWRkIGdwcmludGsoWEVOTE9HX0VS UiwgLi4uKSB0byBkb21haW5fY3Jhc2goKSBpbnZvY2F0aW9ucy4KdjM6IENh bGwgZ3Vlc3RfcGh5c21hcF9yZW1vdmVfcGFnZSgpIGZyb20gZ250dGFiX21h cF9mcmFtZSgpLCBtYWtpbmcgdGhlCiAgICBjb2RlIHVuY29uZGl0aW9uYWwg YXQgdGhlIHNhbWUgdGltZS4gUmUtYmFzZSBvdmVyIGNoYW5nZXMgdG8gZmly c3QKICAgIHBhdGNoLgp2MjogQWxzbyBkZWFsIHdpdGggdHJhbnNsYXRlZCBn dWVzdHMuCgotLS0gYS94ZW4vY29tbW9uL2dyYW50X3RhYmxlLmMKKysrIGIv eGVuL2NvbW1vbi9ncmFudF90YWJsZS5jCkBAIC0xNjM2LDIzICsxNjM2LDc0 IEBAIHN0YXR1c19hbGxvY19mYWlsZWQ6CiAgICAgcmV0dXJuIC1FTk9NRU07 CiB9CiAKLXN0YXRpYyB2b2lkCitzdGF0aWMgaW50CiBnbnR0YWJfdW5wb3B1 bGF0ZV9zdGF0dXNfZnJhbWVzKHN0cnVjdCBkb21haW4gKmQsIHN0cnVjdCBn cmFudF90YWJsZSAqZ3QpCiB7Ci0gICAgaW50IGk7CisgICAgdW5zaWduZWQg aW50IGk7CiAKICAgICBmb3IgKCBpID0gMDsgaSA8IG5yX3N0YXR1c19mcmFt ZXMoZ3QpOyBpKysgKQogICAgIHsKICAgICAgICAgc3RydWN0IHBhZ2VfaW5m byAqcGcgPSB2aXJ0X3RvX3BhZ2UoZ3QtPnN0YXR1c1tpXSk7CisgICAgICAg IGdmbl90IGdmbiA9IGdudHRhYl9nZXRfZnJhbWVfZ2ZuKGd0LCB0cnVlLCBp KTsKKworICAgICAgICAvKgorICAgICAgICAgKiBGb3IgdHJhbnNsYXRlZCBk b21haW5zLCByZWNvdmVyaW5nIGZyb20gZmFpbHVyZSBhZnRlciBwYXJ0aWFs CisgICAgICAgICAqIGNoYW5nZXMgd2VyZSBtYWRlIGlzIG1vcmUgY29tcGxp Y2F0ZWQgdGhhbiBpdCBzZWVtcyB3b3J0aAorICAgICAgICAgKiBpbXBsZW1l bnRpbmcgYXQgdGhpcyB0aW1lLiBIZW5jZSByZXNwZWN0aXZlIGVycm9yIHBh dGhzIGJlbG93CisgICAgICAgICAqIGNyYXNoIHRoZSBkb21haW4gaW4gc3Vj aCBhIGNhc2UuCisgICAgICAgICAqLworICAgICAgICBpZiAoIHBhZ2luZ19t b2RlX3RyYW5zbGF0ZShkKSApCisgICAgICAgIHsKKyAgICAgICAgICAgIGlu dCByYyA9IGdmbl9lcShnZm4sIElOVkFMSURfR0ZOKQorICAgICAgICAgICAg ICAgICAgICAgPyAwCisgICAgICAgICAgICAgICAgICAgICA6IGd1ZXN0X3Bo eXNtYXBfcmVtb3ZlX3BhZ2UoZCwgZ2ZuLAorICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIF9tZm4ocGFnZV90b19t Zm4ocGcpKSwgMCk7CisKKyAgICAgICAgICAgIGlmICggcmMgKQorICAgICAg ICAgICAgeworICAgICAgICAgICAgICAgIGdwcmludGsoWEVOTE9HX0VSUiwK KyAgICAgICAgICAgICAgICAgICAgICAgICJDb3VsZCBub3QgcmVtb3ZlIHN0 YXR1cyBmcmFtZSAldSAoR0ZOICUjbHgpIGZyb20gUDJNXG4iLAorICAgICAg ICAgICAgICAgICAgICAgICAgaSwgZ2ZuX3goZ2ZuKSk7CisgICAgICAgICAg ICAgICAgZG9tYWluX2NyYXNoKGQpOworICAgICAgICAgICAgICAgIHJldHVy biByYzsKKyAgICAgICAgICAgIH0KKyAgICAgICAgICAgIGdudHRhYl9zZXRf ZnJhbWVfZ2ZuKGd0LCB0cnVlLCBpLCBJTlZBTElEX0dGTik7CisgICAgICAg IH0KIAogICAgICAgICBCVUdfT04ocGFnZV9nZXRfb3duZXIocGcpICE9IGQp OwogICAgICAgICBpZiAoIHRlc3RfYW5kX2NsZWFyX2JpdChfUEdDX2FsbG9j YXRlZCwgJnBnLT5jb3VudF9pbmZvKSApCiAgICAgICAgICAgICBwdXRfcGFn ZShwZyk7Ci0gICAgICAgIEJVR19PTihwZy0+Y291bnRfaW5mbyAmIH5QR0Nf eGVuX2hlYXApOworCisgICAgICAgIGlmICggcGctPmNvdW50X2luZm8gJiB+ UEdDX3hlbl9oZWFwICkKKyAgICAgICAgeworICAgICAgICAgICAgaWYgKCBw YWdpbmdfbW9kZV90cmFuc2xhdGUoZCkgKQorICAgICAgICAgICAgeworICAg ICAgICAgICAgICAgIGdwcmludGsoWEVOTE9HX0VSUiwKKyAgICAgICAgICAg ICAgICAgICAgICAgICJXcm9uZyBwYWdlIHN0YXRlICUjbHggb2Ygc3RhdHVz IGZyYW1lICV1IChHRk4gJSNseClcbiIsCisgICAgICAgICAgICAgICAgICAg ICAgICBwZy0+Y291bnRfaW5mbywgaSwgZ2ZuX3goZ2ZuKSk7CisgICAgICAg ICAgICAgICAgZG9tYWluX2NyYXNoKGQpOworICAgICAgICAgICAgfQorICAg ICAgICAgICAgZWxzZQorICAgICAgICAgICAgeworICAgICAgICAgICAgICAg IGlmICggZ2V0X3BhZ2UocGcsIGQpICkKKyAgICAgICAgICAgICAgICAgICAg c2V0X2JpdChfUEdDX2FsbG9jYXRlZCwgJnBnLT5jb3VudF9pbmZvKTsKKyAg ICAgICAgICAgICAgICB3aGlsZSAoIGktLSApCisgICAgICAgICAgICAgICAg ICAgIGdudHRhYl9jcmVhdGVfc3RhdHVzX3BhZ2UoZCwgZ3QsIGkpOworICAg ICAgICAgICAgfQorICAgICAgICAgICAgcmV0dXJuIC1FQlVTWTsKKyAgICAg ICAgfQorCisgICAgICAgIHBhZ2Vfc2V0X293bmVyKHBnLCBOVUxMKTsKKyAg ICB9CisKKyAgICBmb3IgKCBpID0gMDsgaSA8IG5yX3N0YXR1c19mcmFtZXMo Z3QpOyBpKysgKQorICAgIHsKICAgICAgICAgZnJlZV94ZW5oZWFwX3BhZ2Uo Z3QtPnN0YXR1c1tpXSk7CiAgICAgICAgIGd0LT5zdGF0dXNbaV0gPSBOVUxM OwogICAgIH0KICAgICBndC0+bnJfc3RhdHVzX2ZyYW1lcyA9IDA7CisKKyAg ICByZXR1cm4gMDsKIH0KIAogLyoKQEAgLTI5NjIsOCArMzAxMyw5IEBAIGdu dHRhYl9zZXRfdmVyc2lvbihYRU5fR1VFU1RfSEFORExFX1BBUkEKICAgICAg ICAgYnJlYWs7CiAgICAgfQogCi0gICAgaWYgKCBvcC52ZXJzaW9uIDwgMiAm JiBndC0+Z3RfdmVyc2lvbiA9PSAyICkKLSAgICAgICAgZ250dGFiX3VucG9w dWxhdGVfc3RhdHVzX2ZyYW1lcyhjdXJyZCwgZ3QpOworICAgIGlmICggb3Au dmVyc2lvbiA8IDIgJiYgZ3QtPmd0X3ZlcnNpb24gPT0gMiAmJgorICAgICAg ICAgKHJlcyA9IGdudHRhYl91bnBvcHVsYXRlX3N0YXR1c19mcmFtZXMoY3Vy cmQsIGd0KSkgIT0gMCApCisgICAgICAgIGdvdG8gb3V0X3VubG9jazsKIAog ICAgIC8qIE1ha2Ugc3VyZSB0aGVyZSdzIG5vIGNydWQgbGVmdCBvdmVyIGZy b20gdGhlIG9sZCB2ZXJzaW9uLiAqLwogICAgIGZvciAoIGkgPSAwOyBpIDwg bnJfZ3JhbnRfZnJhbWVzKGd0KTsgaSsrICkKQEAgLTM4MDMsNiArMzg1NSwx MSBAQCBpbnQgZ250dGFiX21hcF9mcmFtZShzdHJ1Y3QgZG9tYWluICpkLCB1 CiAgICAgICAgICAgICByYyA9IC1FSU5WQUw7CiAgICAgfQogCisgICAgaWYg KCAhcmMgJiYgcGFnaW5nX21vZGVfdHJhbnNsYXRlKGQpICYmCisgICAgICAg ICAhZ2ZuX2VxKGdudHRhYl9nZXRfZnJhbWVfZ2ZuKGd0LCBzdGF0dXMsIGlk eCksIElOVkFMSURfR0ZOKSApCisgICAgICAgIHJjID0gZ3Vlc3RfcGh5c21h cF9yZW1vdmVfcGFnZShkLCBnbnR0YWJfZ2V0X2ZyYW1lX2dmbihndCwgc3Rh dHVzLCBpZHgpLAorICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgKm1mbiwgMCk7CisKICAgICBpZiAoICFyYyApCiAgICAgICAgIGdu dHRhYl9zZXRfZnJhbWVfZ2ZuKGd0LCBzdGF0dXMsIGlkeCwgZ2ZuKTsKIAot LS0gYS94ZW4vaW5jbHVkZS9hc20tYXJtL2dyYW50X3RhYmxlLmgKKysrIGIv eGVuL2luY2x1ZGUvYXNtLWFybS9ncmFudF90YWJsZS5oCkBAIC03Myw2ICs3 MywxMSBAQCBzdGF0aWMgaW5saW5lIHVuc2lnbmVkIGludCBnbnR0YWJfZG9t MF9tCiAgICAgICAgICAgICAoZ2ZuKTsgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgXAogICAgIH0gd2hp bGUgKCAwICkKIAorI2RlZmluZSBnbnR0YWJfZ2V0X2ZyYW1lX2dmbihndCwg c3QsIGlkeCkgKHsgICAgICAgICAgICAgICAgICAgICAgICAgICAgIFwKKyAg IF9nZm4oKHN0KSA/IGdudHRhYl9zdGF0dXNfZ21mbihOVUxMLCBndCwgaWR4 KSAgICAgICAgICAgICAgICAgICAgICAgICBcCisgICAgICAgICAgICAgOiBn bnR0YWJfc2hhcmVkX2dtZm4oTlVMTCwgZ3QsIGlkeCkpOyAgICAgICAgICAg ICAgICAgICAgICAgXAorfSkKKwogI2RlZmluZSBnbnR0YWJfY3JlYXRlX3No YXJlZF9wYWdlKGQsIHQsIGkpICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgIFwKICAgICBkbyB7ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICBcCiAgICAgICAg IHNoYXJlX3hlbl9wYWdlX3dpdGhfZ3Vlc3QoICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgXAotLS0gYS94ZW4vaW5jbHVkZS9hc20t eDg2L2dyYW50X3RhYmxlLmgKKysrIGIveGVuL2luY2x1ZGUvYXNtLXg4Ni9n cmFudF90YWJsZS5oCkBAIC00Nyw2ICs0NywxMiBAQCBzdGF0aWMgaW5saW5l IHVuc2lnbmVkIGludCBnbnR0YWJfZG9tMF9tCiAjZGVmaW5lIGdudHRhYl9p bml0X2FyY2goZ3QpIDAKICNkZWZpbmUgZ250dGFiX2Rlc3Ryb3lfYXJjaChn dCkgZG8ge30gd2hpbGUgKCAwICkKICNkZWZpbmUgZ250dGFiX3NldF9mcmFt ZV9nZm4oZ3QsIHN0LCBpZHgsIGdmbikgZG8ge30gd2hpbGUgKCAwICkKKyNk ZWZpbmUgZ250dGFiX2dldF9mcmFtZV9nZm4oZ3QsIHN0LCBpZHgpICh7ICAg ICAgICAgICAgICAgICAgICAgICAgICAgICBcCisgICAgdW5zaWduZWQgbG9u ZyBtZm5fID0gKHN0KSA/IGdudHRhYl9zdGF0dXNfbWZuKGd0LCBpZHgpICAg ICAgICAgICAgICAgXAorICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg OiBnbnR0YWJfc2hhcmVkX21mbihndCwgaWR4KTsgICAgICAgICAgICAgIFwK KyAgICB1bnNpZ25lZCBsb25nIGdwZm5fID0gZ2V0X2dwZm5fZnJvbV9tZm4o bWZuXyk7ICAgICAgICAgICAgICAgICAgICAgICBcCisgICAgVkFMSURfTTJQ KGdwZm5fKSA/IF9nZm4oZ3Bmbl8pIDogSU5WQUxJRF9HRk47ICAgICAgICAg ICAgICAgICAgICAgICAgXAorfSkKIAogI2RlZmluZSBnbnR0YWJfY3JlYXRl X3NoYXJlZF9wYWdlKGQsIHQsIGkpICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgIFwKICAgICBkbyB7ICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICBcCkBAIC02 MywxMSArNjksMTEgQEAgc3RhdGljIGlubGluZSB1bnNpZ25lZCBpbnQgZ250 dGFiX2RvbTBfbQogICAgIH0gd2hpbGUgKCAwICkKIAogCi0jZGVmaW5lIGdu dHRhYl9zaGFyZWRfbWZuKGQsIHQsIGkpICAgICAgICAgICAgICAgICAgICAg IFwKKyNkZWZpbmUgZ250dGFiX3NoYXJlZF9tZm4odCwgaSkgICAgICAgICAg ICAgICAgICAgICAgICAgXAogICAgICgodmlydF90b19tYWRkcigodCktPnNo YXJlZF9yYXdbaV0pID4+IFBBR0VfU0hJRlQpKQogCiAjZGVmaW5lIGdudHRh Yl9zaGFyZWRfZ21mbihkLCB0LCBpKSAgICAgICAgICAgICAgICAgICAgIFwK LSAgICAobWZuX3RvX2dtZm4oZCwgZ250dGFiX3NoYXJlZF9tZm4oZCwgdCwg aSkpKQorICAgIChtZm5fdG9fZ21mbihkLCBnbnR0YWJfc2hhcmVkX21mbih0 LCBpKSkpCiAKIAogI2RlZmluZSBnbnR0YWJfc3RhdHVzX21mbih0LCBpKSAg ICAgICAgICAgICAgICAgICAgICAgICBcCg== --=separator Content-Type: application/octet-stream; name="xsa255-4.6-1.patch" Content-Disposition: attachment; filename="xsa255-4.6-1.patch" Content-Transfer-Encoding: base64 RnJvbTogSmFuIEJldWxpY2ggPGpiZXVsaWNoQHN1c2UuY29tPgpTdWJqZWN0 OiBnbnR0YWIvQVJNOiBkb24ndCBjb3JydXB0IHNoYXJlZCBHRk4gYXJyYXkK Ci4uLiBieSB3cml0aW5nIHN0YXR1cyBHRk5zIHRvIGl0LiBJbnRyb2R1Y2Ug YSBzZWNvbmQgYXJyYXkgaW5zdGVhZC4KQWxzbyBpbXBsZW1lbnQgZ250dGFi X3N0YXR1c19nbWZuKCkgcHJvcGVybHkgbm93IHRoYXQgdGhlIGluZm9ybWF0 aW9uIGlzCnN1aXRhYmx5IGJlaW5nIHRyYWNrZWQuCgpXaGlsZSB0b3VjaGlu ZyBpdCBhbnl3YXksIHJlbW92ZSBhIG1pc2d1aWRlZCAoYnV0IGx1Y2tpbHkg YmVuaWduKSB1cHBlcgpib3VuZCBjaGVjayBmcm9tIGdudHRhYl9zaGFyZWRf Z21mbigpOiBXZSBzaG91bGQgbmV2ZXIgYWNjZXNzIGJleW9uZCB0aGUKYm91 bmRzIG9mIHRoYXQgYXJyYXkuCgpUaGlzIGlzIHBhcnQgb2YgWFNBLTI1NS4K ClNpZ25lZC1vZmYtYnk6IEphbiBCZXVsaWNoIDxqYmV1bGljaEBzdXNlLmNv bT4KUmV2aWV3ZWQtYnk6IFN0ZWZhbm8gU3RhYmVsbGluaSA8c3N0YWJlbGxp bmlAa2VybmVsLm9yZz4KUmV2aWV3ZWQtYnk6IEFuZHJldyBDb29wZXIgPGFu ZHJldy5jb29wZXIzQGNpdHJpeC5jb20+CgotLS0gYS94ZW4vYXJjaC9hcm0v ZG9tYWluLmMKKysrIGIveGVuL2FyY2gvYXJtL2RvbWFpbi5jCkBAIC00Mjgs MTkgKzQyOCwzNyBAQCB2b2lkIHN0YXJ0dXBfY3B1X2lkbGVfbG9vcCh2b2lk KQogc3RydWN0IGRvbWFpbiAqYWxsb2NfZG9tYWluX3N0cnVjdCh2b2lkKQog ewogICAgIHN0cnVjdCBkb21haW4gKmQ7CisgICAgdW5zaWduZWQgaW50IGks IG1heF9zdGF0dXNfZnJhbWVzOworCiAgICAgQlVJTERfQlVHX09OKHNpemVv ZigqZCkgPiBQQUdFX1NJWkUpOwogICAgIGQgPSBhbGxvY194ZW5oZWFwX3Bh Z2VzKDAsIDApOwogICAgIGlmICggZCA9PSBOVUxMICkKICAgICAgICAgcmV0 dXJuIE5VTEw7CiAKICAgICBjbGVhcl9wYWdlKGQpOwotICAgIGQtPmFyY2gu Z3JhbnRfdGFibGVfZ3BmbiA9IHh6YWxsb2NfYXJyYXkoeGVuX3Bmbl90LCBt YXhfZ3JhbnRfZnJhbWVzKTsKKworICAgIGQtPmFyY2guZ3JhbnRfc2hhcmVk X2dmbiA9IHhtYWxsb2NfYXJyYXkoZ2ZuX3QsIG1heF9ncmFudF9mcmFtZXMp OworICAgIG1heF9zdGF0dXNfZnJhbWVzID0gZ3JhbnRfdG9fc3RhdHVzX2Zy YW1lcyhtYXhfZ3JhbnRfZnJhbWVzKTsKKyAgICBkLT5hcmNoLmdyYW50X3N0 YXR1c19nZm4gPSB4bWFsbG9jX2FycmF5KGdmbl90LCBtYXhfc3RhdHVzX2Zy YW1lcyk7CisgICAgaWYgKCAhZC0+YXJjaC5ncmFudF9zaGFyZWRfZ2ZuIHx8 ICFkLT5hcmNoLmdyYW50X3N0YXR1c19nZm4gKQorICAgIHsKKyAgICAgICAg ZnJlZV9kb21haW5fc3RydWN0KGQpOworICAgICAgICByZXR1cm4gTlVMTDsK KyAgICB9CisKKyAgICBmb3IgKCBpID0gMDsgaSA8IG1heF9ncmFudF9mcmFt ZXM7ICsraSApCisgICAgICAgIGQtPmFyY2guZ3JhbnRfc2hhcmVkX2dmbltp XSA9IF9nZm4oSU5WQUxJRF9HRk4pOworCisgICAgZm9yICggaSA9IDA7IGkg PCBtYXhfc3RhdHVzX2ZyYW1lczsgKytpICkKKyAgICAgICAgZC0+YXJjaC5n cmFudF9zdGF0dXNfZ2ZuW2ldID0gX2dmbihJTlZBTElEX0dGTik7CisKICAg ICByZXR1cm4gZDsKIH0KIAogdm9pZCBmcmVlX2RvbWFpbl9zdHJ1Y3Qoc3Ry dWN0IGRvbWFpbiAqZCkKIHsKLSAgICB4ZnJlZShkLT5hcmNoLmdyYW50X3Rh YmxlX2dwZm4pOworICAgIHhmcmVlKGQtPmFyY2guZ3JhbnRfc2hhcmVkX2dm bik7CisgICAgeGZyZWUoZC0+YXJjaC5ncmFudF9zdGF0dXNfZ2ZuKTsKICAg ICBmcmVlX3hlbmhlYXBfcGFnZShkKTsKIH0KIAotLS0gYS94ZW4vYXJjaC9h cm0vbW0uYworKysgYi94ZW4vYXJjaC9hcm0vbW0uYwpAQCAtMTA1Nyw2ICsx MDU3LDcgQEAgaW50IHhlbm1lbV9hZGRfdG9fcGh5c21hcF9vbmUoCiAgICAg aW50IHJjOwogICAgIHAybV90eXBlX3QgdDsKICAgICBzdHJ1Y3QgcGFnZV9p bmZvICpwYWdlID0gTlVMTDsKKyAgICBib29sX3Qgc3RhdHVzID0gMDsKIAog ICAgIHN3aXRjaCAoIHNwYWNlICkKICAgICB7CkBAIC0xMDc0LDYgKzEwNzUs NyBAQCBpbnQgeGVubWVtX2FkZF90b19waHlzbWFwX29uZSgKICAgICAgICAg ICAgICAgICBtZm4gPSB2aXJ0X3RvX21mbihkLT5ncmFudF90YWJsZS0+c3Rh dHVzW2lkeF0pOwogICAgICAgICAgICAgZWxzZQogICAgICAgICAgICAgICAg IG1mbiA9IElOVkFMSURfTUZOOworICAgICAgICAgICAgc3RhdHVzID0gMTsK ICAgICAgICAgfQogICAgICAgICBlbHNlCiAgICAgICAgIHsKQEAgLTEwODks NyArMTA5MSwxMCBAQCBpbnQgeGVubWVtX2FkZF90b19waHlzbWFwX29uZSgK ICAgICAgICAgCiAgICAgICAgIGlmICggbWZuICE9IElOVkFMSURfTUZOICkK ICAgICAgICAgewotICAgICAgICAgICAgZC0+YXJjaC5ncmFudF90YWJsZV9n cGZuW2lkeF0gPSBncGZuOworICAgICAgICAgICAgaWYgKCBzdGF0dXMgKQor ICAgICAgICAgICAgICAgIGQtPmFyY2guZ3JhbnRfc3RhdHVzX2dmbltpZHhd ID0gX2dmbihncGZuKTsKKyAgICAgICAgICAgIGVsc2UKKyAgICAgICAgICAg ICAgICBkLT5hcmNoLmdyYW50X3NoYXJlZF9nZm5baWR4XSA9IF9nZm4oZ3Bm bik7CiAKICAgICAgICAgICAgIHQgPSBwMm1fcmFtX3J3OwogICAgICAgICB9 Ci0tLSBhL3hlbi9pbmNsdWRlL2FzbS1hcm0vZG9tYWluLmgKKysrIGIveGVu L2luY2x1ZGUvYXNtLWFybS9kb21haW4uaApAQCAtNTIsNyArNTIsOCBAQCBz dHJ1Y3QgYXJjaF9kb21haW4KICAgICB1aW50NjRfdCB2dHRicjsKIAogICAg IHN0cnVjdCBodm1fZG9tYWluIGh2bV9kb21haW47Ci0gICAgeGVuX3Bmbl90 ICpncmFudF90YWJsZV9ncGZuOworICAgIGdmbl90ICpncmFudF9zaGFyZWRf Z2ZuOworICAgIGdmbl90ICpncmFudF9zdGF0dXNfZ2ZuOwogCiAgICAgc3Ry dWN0IGlvX2hhbmRsZXIgaW9faGFuZGxlcnM7CiAgICAgLyogQ29udGludWFi bGUgZG9tYWluX3JlbGlucXVpc2hfcmVzb3VyY2VzKCkuICovCi0tLSBhL3hl bi9pbmNsdWRlL2FzbS1hcm0vZ3JhbnRfdGFibGUuaAorKysgYi94ZW4vaW5j bHVkZS9hc20tYXJtL2dyYW50X3RhYmxlLmgKQEAgLTE0LDcgKzE0LDYgQEAg aW50IHJlcGxhY2VfZ3JhbnRfaG9zdF9tYXBwaW5nKHVuc2lnbmVkCiAgICAg ICAgIHVuc2lnbmVkIGxvbmcgbmV3X2dwYWRkciwgdW5zaWduZWQgaW50IGZs YWdzKTsKIHZvaWQgZ250dGFiX21hcmtfZGlydHkoc3RydWN0IGRvbWFpbiAq ZCwgdW5zaWduZWQgbG9uZyBsKTsKICNkZWZpbmUgZ250dGFiX2NyZWF0ZV9z dGF0dXNfcGFnZShkLCB0LCBpKSBkbyB7fSB3aGlsZSAoMCkKLSNkZWZpbmUg Z250dGFiX3N0YXR1c19nbWZuKGQsIHQsIGkpICgwKQogI2RlZmluZSBnbnR0 YWJfcmVsZWFzZV9ob3N0X21hcHBpbmdzKGRvbWFpbikgMQogc3RhdGljIGlu bGluZSBpbnQgcmVwbGFjZV9ncmFudF9zdXBwb3J0ZWQodm9pZCkKIHsKQEAg LTI5LDggKzI4LDEyIEBAIHN0YXRpYyBpbmxpbmUgaW50IHJlcGxhY2VfZ3Jh bnRfc3VwcG9ydGUKICAgICB9IHdoaWxlICggMCApCiAKICNkZWZpbmUgZ250 dGFiX3NoYXJlZF9nbWZuKGQsIHQsIGkpICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICBcCi0gICAgKCAoKGkgPj0gbnJfZ3JhbnRfZnJh bWVzKGQtPmdyYW50X3RhYmxlKSkgJiYgICAgICAgICAgICAgICAgICAgICAg ICAgXAotICAgICAoaSA8IG1heF9ncmFudF9mcmFtZXMpKSA/IDAgOiAoZC0+ YXJjaC5ncmFudF90YWJsZV9ncGZuW2ldKSkKKyAgICBnZm5feCgoKGkpID49 IG5yX2dyYW50X2ZyYW1lcyh0KSkgPyBfZ2ZuKElOVkFMSURfR0ZOKSAgICAg ICAgICAgICAgICBcCisgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgIDogKGQpLT5hcmNoLmdyYW50X3NoYXJlZF9nZm5baV0pCisKKyNk ZWZpbmUgZ250dGFiX3N0YXR1c19nbWZuKGQsIHQsIGkpICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICBcCisgICAgZ2ZuX3goKChpKSA+ PSBucl9zdGF0dXNfZnJhbWVzKHQpKSA/IF9nZm4oSU5WQUxJRF9HRk4pICAg ICAgICAgICAgICAgXAorICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgOiAoZCktPmFyY2guZ3JhbnRfc3RhdHVzX2dmbltpXSkKIAog I2RlZmluZSBnbnR0YWJfbmVlZF9pb21tdV9tYXBwaW5nKGQpICAgICAgICAg ICAgICAgICAgICBcCiAgICAgKGlzX2RvbWFpbl9kaXJlY3RfbWFwcGVkKGQp ICYmIG5lZWRfaW9tbXUoZCkpCg== --=separator Content-Type: application/octet-stream; name="xsa255-4.6-2.patch" Content-Disposition: attachment; filename="xsa255-4.6-2.patch" Content-Transfer-Encoding: base64 RnJvbTogSmFuIEJldWxpY2ggPGpiZXVsaWNoQHN1c2UuY29tPgpTdWJqZWN0 OiBnbnR0YWI6IGRvbid0IGJsaW5kbHkgZnJlZSBzdGF0dXMgcGFnZXMgdXBv biB2ZXJzaW9uIGNoYW5nZQoKVGhlcmUgbWF5IHN0aWxsIGJlIGFjdGl2ZSBt YXBwaW5ncywgd2hpY2ggd291bGQgdHJpZ2dlciB0aGUgcmVzcGVjdGl2ZQpC VUdfT04oKS4gU3BsaXQgdGhlIGxvb3AgaW50byBvbmUgZGVhbGluZyB3aXRo IHRoZSBwYWdlIGF0dHJpYnV0ZXMgYW5kCnRoZSBzZWNvbmQgKHdoZW4gdGhl IGZpcnN0IGZ1bGx5IHBhc3NlZCkgZnJlZWluZyB0aGUgcGFnZXMuIFJldHVy biBhbgplcnJvciBpZiBhbnkgcGFnZXMgc3RpbGwgaGF2ZSBwZW5kaW5nIHJl ZmVyZW5jZXMuCgpUaGlzIGlzIHBhcnQgb2YgWFNBLTI1NS4KClNpZ25lZC1v ZmYtYnk6IEphbiBCZXVsaWNoIDxqYmV1bGljaEBzdXNlLmNvbT4KUmV2aWV3 ZWQtYnk6IFN0ZWZhbm8gU3RhYmVsbGluaSA8c3N0YWJlbGxpbmlAa2VybmVs Lm9yZz4KUmV2aWV3ZWQtYnk6IEFuZHJldyBDb29wZXIgPGFuZHJldy5jb29w ZXIzQGNpdHJpeC5jb20+CgotLS0gYS94ZW4vYXJjaC9hcm0vbW0uYworKysg Yi94ZW4vYXJjaC9hcm0vbW0uYwpAQCAtMTA4OSwxMiArMTA4OSwyMyBAQCBp bnQgeGVubWVtX2FkZF90b19waHlzbWFwX29uZSgKICAgICAgICAgICAgICAg ICBtZm4gPSBJTlZBTElEX01GTjsKICAgICAgICAgfQogICAgICAgICAKKyAg ICAgICAgaWYgKCBtZm4gIT0gSU5WQUxJRF9NRk4gJiYKKyAgICAgICAgICAg ICBnZm5feChnbnR0YWJfZ2V0X2ZyYW1lX2dmbihkLCBzdGF0dXMsIGlkeCkp ICE9IElOVkFMSURfR0ZOICkKKyAgICAgICAgeworICAgICAgICAgICAgcmMg PSBndWVzdF9waHlzbWFwX3JlbW92ZV9wYWdlKGQsCisgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgZ2ZuX3goZ250dGFiX2dl dF9mcmFtZV9nZm4oZCwgc3RhdHVzLAorICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgIGlkeCkpLAorICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgIG1mbiwgMCk7CisgICAgICAgICAgICBpZiAoIHJjICkKKyAg ICAgICAgICAgIHsKKyAgICAgICAgICAgICAgICB3cml0ZV91bmxvY2soJmQt PmdyYW50X3RhYmxlLT5sb2NrKTsKKyAgICAgICAgICAgICAgICByZXR1cm4g cmM7CisgICAgICAgICAgICB9CisgICAgICAgIH0KKwogICAgICAgICBpZiAo IG1mbiAhPSBJTlZBTElEX01GTiApCiAgICAgICAgIHsKLSAgICAgICAgICAg IGlmICggc3RhdHVzICkKLSAgICAgICAgICAgICAgICBkLT5hcmNoLmdyYW50 X3N0YXR1c19nZm5baWR4XSA9IF9nZm4oZ3Bmbik7Ci0gICAgICAgICAgICBl bHNlCi0gICAgICAgICAgICAgICAgZC0+YXJjaC5ncmFudF9zaGFyZWRfZ2Zu W2lkeF0gPSBfZ2ZuKGdwZm4pOworICAgICAgICAgICAgZ250dGFiX3NldF9m cmFtZV9nZm4oZCwgc3RhdHVzLCBpZHgsIF9nZm4oZ3BmbikpOwogCiAgICAg ICAgICAgICB0ID0gcDJtX3JhbV9ydzsKICAgICAgICAgfQotLS0gYS94ZW4v Y29tbW9uL2dyYW50X3RhYmxlLmMKKysrIGIveGVuL2NvbW1vbi9ncmFudF90 YWJsZS5jCkBAIC0xNTEyLDIzICsxNTEyLDc0IEBAIHN0YXR1c19hbGxvY19m YWlsZWQ6CiAgICAgcmV0dXJuIC1FTk9NRU07CiB9CiAKLXN0YXRpYyB2b2lk CitzdGF0aWMgaW50CiBnbnR0YWJfdW5wb3B1bGF0ZV9zdGF0dXNfZnJhbWVz KHN0cnVjdCBkb21haW4gKmQsIHN0cnVjdCBncmFudF90YWJsZSAqZ3QpCiB7 Ci0gICAgaW50IGk7CisgICAgdW5zaWduZWQgaW50IGk7CiAKICAgICBmb3Ig KCBpID0gMDsgaSA8IG5yX3N0YXR1c19mcmFtZXMoZ3QpOyBpKysgKQogICAg IHsKICAgICAgICAgc3RydWN0IHBhZ2VfaW5mbyAqcGcgPSB2aXJ0X3RvX3Bh Z2UoZ3QtPnN0YXR1c1tpXSk7CisgICAgICAgIGdmbl90IGdmbiA9IGdudHRh Yl9nZXRfZnJhbWVfZ2ZuKGQsIDEsIGkpOworCisgICAgICAgIC8qCisgICAg ICAgICAqIEZvciB0cmFuc2xhdGVkIGRvbWFpbnMsIHJlY292ZXJpbmcgZnJv bSBmYWlsdXJlIGFmdGVyIHBhcnRpYWwKKyAgICAgICAgICogY2hhbmdlcyB3 ZXJlIG1hZGUgaXMgbW9yZSBjb21wbGljYXRlZCB0aGFuIGl0IHNlZW1zIHdv cnRoCisgICAgICAgICAqIGltcGxlbWVudGluZyBhdCB0aGlzIHRpbWUuIEhl bmNlIHJlc3BlY3RpdmUgZXJyb3IgcGF0aHMgYmVsb3cKKyAgICAgICAgICog Y3Jhc2ggdGhlIGRvbWFpbiBpbiBzdWNoIGEgY2FzZS4KKyAgICAgICAgICov CisgICAgICAgIGlmICggcGFnaW5nX21vZGVfdHJhbnNsYXRlKGQpICkKKyAg ICAgICAgeworICAgICAgICAgICAgaW50IHJjID0gZ2ZuX3goZ2ZuKSA9PSBJ TlZBTElEX0dGTgorICAgICAgICAgICAgICAgICAgICAgPyAwCisgICAgICAg ICAgICAgICAgICAgICA6IGd1ZXN0X3BoeXNtYXBfcmVtb3ZlX3BhZ2UoZCwg Z2ZuX3goZ2ZuKSwKKyAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICBwYWdlX3RvX21mbihwZyksIDApOworCisgICAg ICAgICAgICBpZiAoIHJjICkKKyAgICAgICAgICAgIHsKKyAgICAgICAgICAg ICAgICBncHJpbnRrKFhFTkxPR19FUlIsCisgICAgICAgICAgICAgICAgICAg ICAgICAiQ291bGQgbm90IHJlbW92ZSBzdGF0dXMgZnJhbWUgJXUgKEdGTiAl I2x4KSBmcm9tIFAyTVxuIiwKKyAgICAgICAgICAgICAgICAgICAgICAgIGks IGdmbl94KGdmbikpOworICAgICAgICAgICAgICAgIGRvbWFpbl9jcmFzaChk KTsKKyAgICAgICAgICAgICAgICByZXR1cm4gcmM7CisgICAgICAgICAgICB9 CisgICAgICAgICAgICBnbnR0YWJfc2V0X2ZyYW1lX2dmbihkLCAxLCBpLCBf Z2ZuKElOVkFMSURfR0ZOKSk7CisgICAgICAgIH0KIAogICAgICAgICBCVUdf T04ocGFnZV9nZXRfb3duZXIocGcpICE9IGQpOwogICAgICAgICBpZiAoIHRl c3RfYW5kX2NsZWFyX2JpdChfUEdDX2FsbG9jYXRlZCwgJnBnLT5jb3VudF9p bmZvKSApCiAgICAgICAgICAgICBwdXRfcGFnZShwZyk7Ci0gICAgICAgIEJV R19PTihwZy0+Y291bnRfaW5mbyAmIH5QR0NfeGVuX2hlYXApOworCisgICAg ICAgIGlmICggcGctPmNvdW50X2luZm8gJiB+UEdDX3hlbl9oZWFwICkKKyAg ICAgICAgeworICAgICAgICAgICAgaWYgKCBwYWdpbmdfbW9kZV90cmFuc2xh dGUoZCkgKQorICAgICAgICAgICAgeworICAgICAgICAgICAgICAgIGdwcmlu dGsoWEVOTE9HX0VSUiwKKyAgICAgICAgICAgICAgICAgICAgICAgICJXcm9u ZyBwYWdlIHN0YXRlICUjbHggb2Ygc3RhdHVzIGZyYW1lICV1IChHRk4gJSNs eClcbiIsCisgICAgICAgICAgICAgICAgICAgICAgICBwZy0+Y291bnRfaW5m bywgaSwgZ2ZuX3goZ2ZuKSk7CisgICAgICAgICAgICAgICAgZG9tYWluX2Ny YXNoKGQpOworICAgICAgICAgICAgfQorICAgICAgICAgICAgZWxzZQorICAg ICAgICAgICAgeworICAgICAgICAgICAgICAgIGlmICggZ2V0X3BhZ2UocGcs IGQpICkKKyAgICAgICAgICAgICAgICAgICAgc2V0X2JpdChfUEdDX2FsbG9j YXRlZCwgJnBnLT5jb3VudF9pbmZvKTsKKyAgICAgICAgICAgICAgICB3aGls ZSAoIGktLSApCisgICAgICAgICAgICAgICAgICAgIGdudHRhYl9jcmVhdGVf c3RhdHVzX3BhZ2UoZCwgZ3QsIGkpOworICAgICAgICAgICAgfQorICAgICAg ICAgICAgcmV0dXJuIC1FQlVTWTsKKyAgICAgICAgfQorCisgICAgICAgIHBh Z2Vfc2V0X293bmVyKHBnLCBOVUxMKTsKKyAgICB9CisKKyAgICBmb3IgKCBp ID0gMDsgaSA8IG5yX3N0YXR1c19mcmFtZXMoZ3QpOyBpKysgKQorICAgIHsK ICAgICAgICAgZnJlZV94ZW5oZWFwX3BhZ2UoZ3QtPnN0YXR1c1tpXSk7CiAg ICAgICAgIGd0LT5zdGF0dXNbaV0gPSBOVUxMOwogICAgIH0KICAgICBndC0+ bnJfc3RhdHVzX2ZyYW1lcyA9IDA7CisKKyAgICByZXR1cm4gMDsKIH0KIAog LyoKQEAgLTI3NjgsOCArMjgxOSw5IEBAIGdudHRhYl9zZXRfdmVyc2lvbihY RU5fR1VFU1RfSEFORExFX1BBUkEKICAgICAgICAgYnJlYWs7CiAgICAgfQog Ci0gICAgaWYgKCBvcC52ZXJzaW9uIDwgMiAmJiBndC0+Z3RfdmVyc2lvbiA9 PSAyICkKLSAgICAgICAgZ250dGFiX3VucG9wdWxhdGVfc3RhdHVzX2ZyYW1l cyhjdXJyZCwgZ3QpOworICAgIGlmICggb3AudmVyc2lvbiA8IDIgJiYgZ3Qt Pmd0X3ZlcnNpb24gPT0gMiAmJgorICAgICAgICAgKHJlcyA9IGdudHRhYl91 bnBvcHVsYXRlX3N0YXR1c19mcmFtZXMoY3VycmQsIGd0KSkgIT0gMCApCisg ICAgICAgIGdvdG8gb3V0X3VubG9jazsKIAogICAgIC8qIE1ha2Ugc3VyZSB0 aGVyZSdzIG5vIGNydWQgbGVmdCBvdmVyIGZyb20gdGhlIG9sZCB2ZXJzaW9u LiAqLwogICAgIGZvciAoIGkgPSAwOyBpIDwgbnJfZ3JhbnRfZnJhbWVzKGd0 KTsgaSsrICkKLS0tIGEveGVuL2luY2x1ZGUvYXNtLWFybS9ncmFudF90YWJs ZS5oCisrKyBiL3hlbi9pbmNsdWRlL2FzbS1hcm0vZ3JhbnRfdGFibGUuaApA QCAtMjAsNiArMjAsMTcgQEAgc3RhdGljIGlubGluZSBpbnQgcmVwbGFjZV9n cmFudF9zdXBwb3J0ZQogICAgIHJldHVybiAxOwogfQogCisjZGVmaW5lIGdu dHRhYl9zZXRfZnJhbWVfZ2ZuKGQsIHN0LCBpZHgsIGdmbikgICAgICAgICAg ICAgICAgICAgICAgICAgICAgXAorICAgIGRvIHsgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgIFwKKyAgICAgICAgKChzdCkgPyAoZCktPmFyY2guZ3JhbnRfc3RhdHVz X2dmbiAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICBcCisgICAgICAg ICAgICAgIDogKGQpLT5hcmNoLmdyYW50X3NoYXJlZF9nZm4pW2lkeF0gPSAo Z2ZuKTsgICAgICAgICAgICAgICAgXAorICAgIH0gd2hpbGUgKCAwICkKKwor I2RlZmluZSBnbnR0YWJfZ2V0X2ZyYW1lX2dmbihkLCBzdCwgaWR4KSAoeyAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgIFwKKyAgIF9nZm4oKHN0KSA/ IGdudHRhYl9zdGF0dXNfZ21mbihkLCAoZCktPmdyYW50X3RhYmxlLCBpZHgp ICAgICAgICAgICAgICBcCisgICAgICAgICAgICAgOiBnbnR0YWJfc2hhcmVk X2dtZm4oZCwgKGQpLT5ncmFudF90YWJsZSwgaWR4KSk7ICAgICAgICAgICAg XAorfSkKKwogI2RlZmluZSBnbnR0YWJfY3JlYXRlX3NoYXJlZF9wYWdlKGQs IHQsIGkpICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIFwKICAgICBk byB7ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICBcCiAgICAgICAgIHNoYXJlX3hlbl9w YWdlX3dpdGhfZ3Vlc3QoICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgXAotLS0gYS94ZW4vaW5jbHVkZS9hc20teDg2L2dyYW50X3Rh YmxlLmgKKysrIGIveGVuL2luY2x1ZGUvYXNtLXg4Ni9ncmFudF90YWJsZS5o CkBAIC0xOCw2ICsxOCwxNCBAQCBpbnQgY3JlYXRlX2dyYW50X2hvc3RfbWFw cGluZyh1aW50NjRfdCBhCiBpbnQgcmVwbGFjZV9ncmFudF9ob3N0X21hcHBp bmcoCiAgICAgdWludDY0X3QgYWRkciwgdW5zaWduZWQgbG9uZyBmcmFtZSwg dWludDY0X3QgbmV3X2FkZHIsIHVuc2lnbmVkIGludCBmbGFncyk7CiAKKyNk ZWZpbmUgZ250dGFiX3NldF9mcmFtZV9nZm4oZCwgc3QsIGlkeCwgZ2ZuKSBk byB7fSB3aGlsZSAoIDAgKQorI2RlZmluZSBnbnR0YWJfZ2V0X2ZyYW1lX2dm bihkLCBzdCwgaWR4KSAoeyAgICAgICAgICAgICAgICAgICAgICAgICAgICAg IFwKKyAgICB1bnNpZ25lZCBsb25nIG1mbl8gPSAoc3QpID8gZ250dGFiX3N0 YXR1c19tZm4oKGQpLT5ncmFudF90YWJsZSwgaWR4KSBcCisgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICA6IGdudHRhYl9zaGFyZWRfbWZuKChkKS0+ Z3JhbnRfdGFibGUsIGlkeCk7IFwKKyAgICB1bnNpZ25lZCBsb25nIGdwZm5f ID0gZ2V0X2dwZm5fZnJvbV9tZm4obWZuXyk7ICAgICAgICAgICAgICAgICAg ICAgICBcCisgICAgX2dmbihWQUxJRF9NMlAoZ3Bmbl8pID8gZ3Bmbl8gOiBJ TlZBTElEX0dGTik7ICAgICAgICAgICAgICAgICAgICAgICAgXAorfSkKKwog I2RlZmluZSBnbnR0YWJfY3JlYXRlX3NoYXJlZF9wYWdlKGQsIHQsIGkpICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgIFwKICAgICBkbyB7ICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICBcCiAgICAgICAgIHNoYXJlX3hlbl9wYWdlX3dpdGhf Z3Vlc3QoICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg XApAQCAtMzMsMTEgKzQxLDExIEBAIGludCByZXBsYWNlX2dyYW50X2hvc3Rf bWFwcGluZygKICAgICB9IHdoaWxlICggMCApCiAKIAotI2RlZmluZSBnbnR0 YWJfc2hhcmVkX21mbihkLCB0LCBpKSAgICAgICAgICAgICAgICAgICAgICBc CisjZGVmaW5lIGdudHRhYl9zaGFyZWRfbWZuKHQsIGkpICAgICAgICAgICAg ICAgICAgICAgICAgIFwKICAgICAoKHZpcnRfdG9fbWFkZHIoKHQpLT5zaGFy ZWRfcmF3W2ldKSA+PiBQQUdFX1NISUZUKSkKIAogI2RlZmluZSBnbnR0YWJf c2hhcmVkX2dtZm4oZCwgdCwgaSkgICAgICAgICAgICAgICAgICAgICBcCi0g ICAgKG1mbl90b19nbWZuKGQsIGdudHRhYl9zaGFyZWRfbWZuKGQsIHQsIGkp KSkKKyAgICAobWZuX3RvX2dtZm4oZCwgZ250dGFiX3NoYXJlZF9tZm4odCwg aSkpKQogCiAKICNkZWZpbmUgZ250dGFiX3N0YXR1c19tZm4odCwgaSkgICAg ICAgICAgICAgICAgICAgICAgICAgXAo= --=separator Content-Type: application/octet-stream; name="xsa255-4.7-1.patch" Content-Disposition: attachment; filename="xsa255-4.7-1.patch" Content-Transfer-Encoding: base64 RnJvbTogSmFuIEJldWxpY2ggPGpiZXVsaWNoQHN1c2UuY29tPgpTdWJqZWN0 OiBnbnR0YWIvQVJNOiBkb24ndCBjb3JydXB0IHNoYXJlZCBHRk4gYXJyYXkK Ci4uLiBieSB3cml0aW5nIHN0YXR1cyBHRk5zIHRvIGl0LiBJbnRyb2R1Y2Ug YSBzZWNvbmQgYXJyYXkgaW5zdGVhZC4KQWxzbyBpbXBsZW1lbnQgZ250dGFi X3N0YXR1c19nbWZuKCkgcHJvcGVybHkgbm93IHRoYXQgdGhlIGluZm9ybWF0 aW9uIGlzCnN1aXRhYmx5IGJlaW5nIHRyYWNrZWQuCgpXaGlsZSB0b3VjaGlu ZyBpdCBhbnl3YXksIHJlbW92ZSBhIG1pc2d1aWRlZCAoYnV0IGx1Y2tpbHkg YmVuaWduKSB1cHBlcgpib3VuZCBjaGVjayBmcm9tIGdudHRhYl9zaGFyZWRf Z21mbigpOiBXZSBzaG91bGQgbmV2ZXIgYWNjZXNzIGJleW9uZCB0aGUKYm91 bmRzIG9mIHRoYXQgYXJyYXkuCgpUaGlzIGlzIHBhcnQgb2YgWFNBLTI1NS4K ClNpZ25lZC1vZmYtYnk6IEphbiBCZXVsaWNoIDxqYmV1bGljaEBzdXNlLmNv bT4KUmV2aWV3ZWQtYnk6IFN0ZWZhbm8gU3RhYmVsbGluaSA8c3N0YWJlbGxp bmlAa2VybmVsLm9yZz4KUmV2aWV3ZWQtYnk6IEFuZHJldyBDb29wZXIgPGFu ZHJldy5jb29wZXIzQGNpdHJpeC5jb20+CgotLS0gYS94ZW4vYXJjaC9hcm0v ZG9tYWluLmMKKysrIGIveGVuL2FyY2gvYXJtL2RvbWFpbi5jCkBAIC00Mzgs MTkgKzQzOCwzNyBAQCB2b2lkIHN0YXJ0dXBfY3B1X2lkbGVfbG9vcCh2b2lk KQogc3RydWN0IGRvbWFpbiAqYWxsb2NfZG9tYWluX3N0cnVjdCh2b2lkKQog ewogICAgIHN0cnVjdCBkb21haW4gKmQ7CisgICAgdW5zaWduZWQgaW50IGks IG1heF9zdGF0dXNfZnJhbWVzOworCiAgICAgQlVJTERfQlVHX09OKHNpemVv ZigqZCkgPiBQQUdFX1NJWkUpOwogICAgIGQgPSBhbGxvY194ZW5oZWFwX3Bh Z2VzKDAsIDApOwogICAgIGlmICggZCA9PSBOVUxMICkKICAgICAgICAgcmV0 dXJuIE5VTEw7CiAKICAgICBjbGVhcl9wYWdlKGQpOwotICAgIGQtPmFyY2gu Z3JhbnRfdGFibGVfZ3BmbiA9IHh6YWxsb2NfYXJyYXkoeGVuX3Bmbl90LCBt YXhfZ3JhbnRfZnJhbWVzKTsKKworICAgIGQtPmFyY2guZ3JhbnRfc2hhcmVk X2dmbiA9IHhtYWxsb2NfYXJyYXkoZ2ZuX3QsIG1heF9ncmFudF9mcmFtZXMp OworICAgIG1heF9zdGF0dXNfZnJhbWVzID0gZ3JhbnRfdG9fc3RhdHVzX2Zy YW1lcyhtYXhfZ3JhbnRfZnJhbWVzKTsKKyAgICBkLT5hcmNoLmdyYW50X3N0 YXR1c19nZm4gPSB4bWFsbG9jX2FycmF5KGdmbl90LCBtYXhfc3RhdHVzX2Zy YW1lcyk7CisgICAgaWYgKCAhZC0+YXJjaC5ncmFudF9zaGFyZWRfZ2ZuIHx8 ICFkLT5hcmNoLmdyYW50X3N0YXR1c19nZm4gKQorICAgIHsKKyAgICAgICAg ZnJlZV9kb21haW5fc3RydWN0KGQpOworICAgICAgICByZXR1cm4gTlVMTDsK KyAgICB9CisKKyAgICBmb3IgKCBpID0gMDsgaSA8IG1heF9ncmFudF9mcmFt ZXM7ICsraSApCisgICAgICAgIGQtPmFyY2guZ3JhbnRfc2hhcmVkX2dmbltp XSA9IF9nZm4oSU5WQUxJRF9HRk4pOworCisgICAgZm9yICggaSA9IDA7IGkg PCBtYXhfc3RhdHVzX2ZyYW1lczsgKytpICkKKyAgICAgICAgZC0+YXJjaC5n cmFudF9zdGF0dXNfZ2ZuW2ldID0gX2dmbihJTlZBTElEX0dGTik7CisKICAg ICByZXR1cm4gZDsKIH0KIAogdm9pZCBmcmVlX2RvbWFpbl9zdHJ1Y3Qoc3Ry dWN0IGRvbWFpbiAqZCkKIHsKLSAgICB4ZnJlZShkLT5hcmNoLmdyYW50X3Rh YmxlX2dwZm4pOworICAgIHhmcmVlKGQtPmFyY2guZ3JhbnRfc2hhcmVkX2dm bik7CisgICAgeGZyZWUoZC0+YXJjaC5ncmFudF9zdGF0dXNfZ2ZuKTsKICAg ICBmcmVlX3hlbmhlYXBfcGFnZShkKTsKIH0KIAotLS0gYS94ZW4vYXJjaC9h cm0vbW0uYworKysgYi94ZW4vYXJjaC9hcm0vbW0uYwpAQCAtMTA2NSw2ICsx MDY1LDcgQEAgaW50IHhlbm1lbV9hZGRfdG9fcGh5c21hcF9vbmUoCiAgICAg aW50IHJjOwogICAgIHAybV90eXBlX3QgdDsKICAgICBzdHJ1Y3QgcGFnZV9p bmZvICpwYWdlID0gTlVMTDsKKyAgICBib29sX3Qgc3RhdHVzID0gMDsKIAog ICAgIHN3aXRjaCAoIHNwYWNlICkKICAgICB7CkBAIC0xMDgyLDYgKzEwODMs NyBAQCBpbnQgeGVubWVtX2FkZF90b19waHlzbWFwX29uZSgKICAgICAgICAg ICAgICAgICBtZm4gPSB2aXJ0X3RvX21mbihkLT5ncmFudF90YWJsZS0+c3Rh dHVzW2lkeF0pOwogICAgICAgICAgICAgZWxzZQogICAgICAgICAgICAgICAg IG1mbiA9IElOVkFMSURfTUZOOworICAgICAgICAgICAgc3RhdHVzID0gMTsK ICAgICAgICAgfQogICAgICAgICBlbHNlCiAgICAgICAgIHsKQEAgLTEwOTcs NyArMTA5OSwxMCBAQCBpbnQgeGVubWVtX2FkZF90b19waHlzbWFwX29uZSgK ICAgICAgICAgCiAgICAgICAgIGlmICggbWZuICE9IElOVkFMSURfTUZOICkK ICAgICAgICAgewotICAgICAgICAgICAgZC0+YXJjaC5ncmFudF90YWJsZV9n cGZuW2lkeF0gPSBncGZuOworICAgICAgICAgICAgaWYgKCBzdGF0dXMgKQor ICAgICAgICAgICAgICAgIGQtPmFyY2guZ3JhbnRfc3RhdHVzX2dmbltpZHhd ID0gX2dmbihncGZuKTsKKyAgICAgICAgICAgIGVsc2UKKyAgICAgICAgICAg ICAgICBkLT5hcmNoLmdyYW50X3NoYXJlZF9nZm5baWR4XSA9IF9nZm4oZ3Bm bik7CiAKICAgICAgICAgICAgIHQgPSBwMm1fcmFtX3J3OwogICAgICAgICB9 Ci0tLSBhL3hlbi9pbmNsdWRlL2FzbS1hcm0vZG9tYWluLmgKKysrIGIveGVu L2luY2x1ZGUvYXNtLWFybS9kb21haW4uaApAQCAtNTEsNyArNTEsOCBAQCBz dHJ1Y3QgYXJjaF9kb21haW4KICAgICB1aW50NjRfdCB2dHRicjsKIAogICAg IHN0cnVjdCBodm1fZG9tYWluIGh2bV9kb21haW47Ci0gICAgeGVuX3Bmbl90 ICpncmFudF90YWJsZV9ncGZuOworICAgIGdmbl90ICpncmFudF9zaGFyZWRf Z2ZuOworICAgIGdmbl90ICpncmFudF9zdGF0dXNfZ2ZuOwogCiAgICAgc3Ry dWN0IHZtbWlvIHZtbWlvOwogCi0tLSBhL3hlbi9pbmNsdWRlL2FzbS1hcm0v Z3JhbnRfdGFibGUuaAorKysgYi94ZW4vaW5jbHVkZS9hc20tYXJtL2dyYW50 X3RhYmxlLmgKQEAgLTE0LDcgKzE0LDYgQEAgaW50IHJlcGxhY2VfZ3JhbnRf aG9zdF9tYXBwaW5nKHVuc2lnbmVkCiAgICAgICAgIHVuc2lnbmVkIGxvbmcg bmV3X2dwYWRkciwgdW5zaWduZWQgaW50IGZsYWdzKTsKIHZvaWQgZ250dGFi X21hcmtfZGlydHkoc3RydWN0IGRvbWFpbiAqZCwgdW5zaWduZWQgbG9uZyBs KTsKICNkZWZpbmUgZ250dGFiX2NyZWF0ZV9zdGF0dXNfcGFnZShkLCB0LCBp KSBkbyB7fSB3aGlsZSAoMCkKLSNkZWZpbmUgZ250dGFiX3N0YXR1c19nbWZu KGQsIHQsIGkpICgwKQogI2RlZmluZSBnbnR0YWJfcmVsZWFzZV9ob3N0X21h cHBpbmdzKGRvbWFpbikgMQogc3RhdGljIGlubGluZSBpbnQgcmVwbGFjZV9n cmFudF9zdXBwb3J0ZWQodm9pZCkKIHsKQEAgLTI5LDggKzI4LDEyIEBAIHN0 YXRpYyBpbmxpbmUgaW50IHJlcGxhY2VfZ3JhbnRfc3VwcG9ydGUKICAgICB9 IHdoaWxlICggMCApCiAKICNkZWZpbmUgZ250dGFiX3NoYXJlZF9nbWZuKGQs IHQsIGkpICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICBc Ci0gICAgKCAoKGkgPj0gbnJfZ3JhbnRfZnJhbWVzKGQtPmdyYW50X3RhYmxl KSkgJiYgICAgICAgICAgICAgICAgICAgICAgICAgXAotICAgICAoaSA8IG1h eF9ncmFudF9mcmFtZXMpKSA/IDAgOiAoZC0+YXJjaC5ncmFudF90YWJsZV9n cGZuW2ldKSkKKyAgICBnZm5feCgoKGkpID49IG5yX2dyYW50X2ZyYW1lcyh0 KSkgPyBfZ2ZuKElOVkFMSURfR0ZOKSAgICAgICAgICAgICAgICBcCisgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIDogKGQpLT5hcmNo LmdyYW50X3NoYXJlZF9nZm5baV0pCisKKyNkZWZpbmUgZ250dGFiX3N0YXR1 c19nbWZuKGQsIHQsIGkpICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICBcCisgICAgZ2ZuX3goKChpKSA+PSBucl9zdGF0dXNfZnJhbWVz KHQpKSA/IF9nZm4oSU5WQUxJRF9HRk4pICAgICAgICAgICAgICAgXAorICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgOiAoZCktPmFy Y2guZ3JhbnRfc3RhdHVzX2dmbltpXSkKIAogI2RlZmluZSBnbnR0YWJfbmVl ZF9pb21tdV9tYXBwaW5nKGQpICAgICAgICAgICAgICAgICAgICBcCiAgICAg KGlzX2RvbWFpbl9kaXJlY3RfbWFwcGVkKGQpICYmIG5lZWRfaW9tbXUoZCkp Cg== --=separator Content-Type: application/octet-stream; name="xsa255-4.7-2.patch" Content-Disposition: attachment; filename="xsa255-4.7-2.patch" Content-Transfer-Encoding: base64 RnJvbTogSmFuIEJldWxpY2ggPGpiZXVsaWNoQHN1c2UuY29tPgpTdWJqZWN0 OiBnbnR0YWI6IGRvbid0IGJsaW5kbHkgZnJlZSBzdGF0dXMgcGFnZXMgdXBv biB2ZXJzaW9uIGNoYW5nZQoKVGhlcmUgbWF5IHN0aWxsIGJlIGFjdGl2ZSBt YXBwaW5ncywgd2hpY2ggd291bGQgdHJpZ2dlciB0aGUgcmVzcGVjdGl2ZQpC VUdfT04oKS4gU3BsaXQgdGhlIGxvb3AgaW50byBvbmUgZGVhbGluZyB3aXRo IHRoZSBwYWdlIGF0dHJpYnV0ZXMgYW5kCnRoZSBzZWNvbmQgKHdoZW4gdGhl IGZpcnN0IGZ1bGx5IHBhc3NlZCkgZnJlZWluZyB0aGUgcGFnZXMuIFJldHVy biBhbgplcnJvciBpZiBhbnkgcGFnZXMgc3RpbGwgaGF2ZSBwZW5kaW5nIHJl ZmVyZW5jZXMuCgpUaGlzIGlzIHBhcnQgb2YgWFNBLTI1NS4KClNpZ25lZC1v ZmYtYnk6IEphbiBCZXVsaWNoIDxqYmV1bGljaEBzdXNlLmNvbT4KUmV2aWV3 ZWQtYnk6IFN0ZWZhbm8gU3RhYmVsbGluaSA8c3N0YWJlbGxpbmlAa2VybmVs Lm9yZz4KUmV2aWV3ZWQtYnk6IEFuZHJldyBDb29wZXIgPGFuZHJldy5jb29w ZXIzQGNpdHJpeC5jb20+CgotLS0gYS94ZW4vYXJjaC9hcm0vbW0uYworKysg Yi94ZW4vYXJjaC9hcm0vbW0uYwpAQCAtMTA5NywxMiArMTA5NywyMyBAQCBp bnQgeGVubWVtX2FkZF90b19waHlzbWFwX29uZSgKICAgICAgICAgICAgICAg ICBtZm4gPSBJTlZBTElEX01GTjsKICAgICAgICAgfQogICAgICAgICAKKyAg ICAgICAgaWYgKCBtZm4gIT0gSU5WQUxJRF9NRk4gJiYKKyAgICAgICAgICAg ICBnZm5feChnbnR0YWJfZ2V0X2ZyYW1lX2dmbihkLCBzdGF0dXMsIGlkeCkp ICE9IElOVkFMSURfR0ZOICkKKyAgICAgICAgeworICAgICAgICAgICAgcmMg PSBndWVzdF9waHlzbWFwX3JlbW92ZV9wYWdlKGQsCisgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgZ2ZuX3goZ250dGFiX2dl dF9mcmFtZV9nZm4oZCwgc3RhdHVzLAorICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgIGlkeCkpLAorICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgIG1mbiwgMCk7CisgICAgICAgICAgICBpZiAoIHJjICkKKyAg ICAgICAgICAgIHsKKyAgICAgICAgICAgICAgICBncmFudF93cml0ZV91bmxv Y2soZC0+Z3JhbnRfdGFibGUpOworICAgICAgICAgICAgICAgIHJldHVybiBy YzsKKyAgICAgICAgICAgIH0KKyAgICAgICAgfQorCiAgICAgICAgIGlmICgg bWZuICE9IElOVkFMSURfTUZOICkKICAgICAgICAgewotICAgICAgICAgICAg aWYgKCBzdGF0dXMgKQotICAgICAgICAgICAgICAgIGQtPmFyY2guZ3JhbnRf c3RhdHVzX2dmbltpZHhdID0gX2dmbihncGZuKTsKLSAgICAgICAgICAgIGVs c2UKLSAgICAgICAgICAgICAgICBkLT5hcmNoLmdyYW50X3NoYXJlZF9nZm5b aWR4XSA9IF9nZm4oZ3Bmbik7CisgICAgICAgICAgICBnbnR0YWJfc2V0X2Zy YW1lX2dmbihkLCBzdGF0dXMsIGlkeCwgX2dmbihncGZuKSk7CiAKICAgICAg ICAgICAgIHQgPSBwMm1fcmFtX3J3OwogICAgICAgICB9Ci0tLSBhL3hlbi9j b21tb24vZ3JhbnRfdGFibGUuYworKysgYi94ZW4vY29tbW9uL2dyYW50X3Rh YmxlLmMKQEAgLTE1MTYsMjMgKzE1MTYsNzQgQEAgc3RhdHVzX2FsbG9jX2Zh aWxlZDoKICAgICByZXR1cm4gLUVOT01FTTsKIH0KIAotc3RhdGljIHZvaWQK K3N0YXRpYyBpbnQKIGdudHRhYl91bnBvcHVsYXRlX3N0YXR1c19mcmFtZXMo c3RydWN0IGRvbWFpbiAqZCwgc3RydWN0IGdyYW50X3RhYmxlICpndCkKIHsK LSAgICBpbnQgaTsKKyAgICB1bnNpZ25lZCBpbnQgaTsKIAogICAgIGZvciAo IGkgPSAwOyBpIDwgbnJfc3RhdHVzX2ZyYW1lcyhndCk7IGkrKyApCiAgICAg ewogICAgICAgICBzdHJ1Y3QgcGFnZV9pbmZvICpwZyA9IHZpcnRfdG9fcGFn ZShndC0+c3RhdHVzW2ldKTsKKyAgICAgICAgZ2ZuX3QgZ2ZuID0gZ250dGFi X2dldF9mcmFtZV9nZm4oZCwgMSwgaSk7CisKKyAgICAgICAgLyoKKyAgICAg ICAgICogRm9yIHRyYW5zbGF0ZWQgZG9tYWlucywgcmVjb3ZlcmluZyBmcm9t IGZhaWx1cmUgYWZ0ZXIgcGFydGlhbAorICAgICAgICAgKiBjaGFuZ2VzIHdl cmUgbWFkZSBpcyBtb3JlIGNvbXBsaWNhdGVkIHRoYW4gaXQgc2VlbXMgd29y dGgKKyAgICAgICAgICogaW1wbGVtZW50aW5nIGF0IHRoaXMgdGltZS4gSGVu Y2UgcmVzcGVjdGl2ZSBlcnJvciBwYXRocyBiZWxvdworICAgICAgICAgKiBj cmFzaCB0aGUgZG9tYWluIGluIHN1Y2ggYSBjYXNlLgorICAgICAgICAgKi8K KyAgICAgICAgaWYgKCBwYWdpbmdfbW9kZV90cmFuc2xhdGUoZCkgKQorICAg ICAgICB7CisgICAgICAgICAgICBpbnQgcmMgPSBnZm5feChnZm4pID09IElO VkFMSURfR0ZOCisgICAgICAgICAgICAgICAgICAgICA/IDAKKyAgICAgICAg ICAgICAgICAgICAgIDogZ3Vlc3RfcGh5c21hcF9yZW1vdmVfcGFnZShkLCBn Zm5feChnZm4pLAorICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgIHBhZ2VfdG9fbWZuKHBnKSwgMCk7CisKKyAgICAg ICAgICAgIGlmICggcmMgKQorICAgICAgICAgICAgeworICAgICAgICAgICAg ICAgIGdwcmludGsoWEVOTE9HX0VSUiwKKyAgICAgICAgICAgICAgICAgICAg ICAgICJDb3VsZCBub3QgcmVtb3ZlIHN0YXR1cyBmcmFtZSAldSAoR0ZOICUj bHgpIGZyb20gUDJNXG4iLAorICAgICAgICAgICAgICAgICAgICAgICAgaSwg Z2ZuX3goZ2ZuKSk7CisgICAgICAgICAgICAgICAgZG9tYWluX2NyYXNoKGQp OworICAgICAgICAgICAgICAgIHJldHVybiByYzsKKyAgICAgICAgICAgIH0K KyAgICAgICAgICAgIGdudHRhYl9zZXRfZnJhbWVfZ2ZuKGQsIDEsIGksIF9n Zm4oSU5WQUxJRF9HRk4pKTsKKyAgICAgICAgfQogCiAgICAgICAgIEJVR19P TihwYWdlX2dldF9vd25lcihwZykgIT0gZCk7CiAgICAgICAgIGlmICggdGVz dF9hbmRfY2xlYXJfYml0KF9QR0NfYWxsb2NhdGVkLCAmcGctPmNvdW50X2lu Zm8pICkKICAgICAgICAgICAgIHB1dF9wYWdlKHBnKTsKLSAgICAgICAgQlVH X09OKHBnLT5jb3VudF9pbmZvICYgflBHQ194ZW5faGVhcCk7CisKKyAgICAg ICAgaWYgKCBwZy0+Y291bnRfaW5mbyAmIH5QR0NfeGVuX2hlYXAgKQorICAg ICAgICB7CisgICAgICAgICAgICBpZiAoIHBhZ2luZ19tb2RlX3RyYW5zbGF0 ZShkKSApCisgICAgICAgICAgICB7CisgICAgICAgICAgICAgICAgZ3ByaW50 ayhYRU5MT0dfRVJSLAorICAgICAgICAgICAgICAgICAgICAgICAgIldyb25n IHBhZ2Ugc3RhdGUgJSNseCBvZiBzdGF0dXMgZnJhbWUgJXUgKEdGTiAlI2x4 KVxuIiwKKyAgICAgICAgICAgICAgICAgICAgICAgIHBnLT5jb3VudF9pbmZv LCBpLCBnZm5feChnZm4pKTsKKyAgICAgICAgICAgICAgICBkb21haW5fY3Jh c2goZCk7CisgICAgICAgICAgICB9CisgICAgICAgICAgICBlbHNlCisgICAg ICAgICAgICB7CisgICAgICAgICAgICAgICAgaWYgKCBnZXRfcGFnZShwZywg ZCkgKQorICAgICAgICAgICAgICAgICAgICBzZXRfYml0KF9QR0NfYWxsb2Nh dGVkLCAmcGctPmNvdW50X2luZm8pOworICAgICAgICAgICAgICAgIHdoaWxl ICggaS0tICkKKyAgICAgICAgICAgICAgICAgICAgZ250dGFiX2NyZWF0ZV9z dGF0dXNfcGFnZShkLCBndCwgaSk7CisgICAgICAgICAgICB9CisgICAgICAg ICAgICByZXR1cm4gLUVCVVNZOworICAgICAgICB9CisKKyAgICAgICAgcGFn ZV9zZXRfb3duZXIocGcsIE5VTEwpOworICAgIH0KKworICAgIGZvciAoIGkg PSAwOyBpIDwgbnJfc3RhdHVzX2ZyYW1lcyhndCk7IGkrKyApCisgICAgewog ICAgICAgICBmcmVlX3hlbmhlYXBfcGFnZShndC0+c3RhdHVzW2ldKTsKICAg ICAgICAgZ3QtPnN0YXR1c1tpXSA9IE5VTEw7CiAgICAgfQogICAgIGd0LT5u cl9zdGF0dXNfZnJhbWVzID0gMDsKKworICAgIHJldHVybiAwOwogfQogCiAv KgpAQCAtMjc3Myw4ICsyODI0LDkgQEAgZ250dGFiX3NldF92ZXJzaW9uKFhF Tl9HVUVTVF9IQU5ETEVfUEFSQQogICAgICAgICBicmVhazsKICAgICB9CiAK LSAgICBpZiAoIG9wLnZlcnNpb24gPCAyICYmIGd0LT5ndF92ZXJzaW9uID09 IDIgKQotICAgICAgICBnbnR0YWJfdW5wb3B1bGF0ZV9zdGF0dXNfZnJhbWVz KGN1cnJkLCBndCk7CisgICAgaWYgKCBvcC52ZXJzaW9uIDwgMiAmJiBndC0+ Z3RfdmVyc2lvbiA9PSAyICYmCisgICAgICAgICAocmVzID0gZ250dGFiX3Vu cG9wdWxhdGVfc3RhdHVzX2ZyYW1lcyhjdXJyZCwgZ3QpKSAhPSAwICkKKyAg ICAgICAgZ290byBvdXRfdW5sb2NrOwogCiAgICAgLyogTWFrZSBzdXJlIHRo ZXJlJ3Mgbm8gY3J1ZCBsZWZ0IG92ZXIgZnJvbSB0aGUgb2xkIHZlcnNpb24u ICovCiAgICAgZm9yICggaSA9IDA7IGkgPCBucl9ncmFudF9mcmFtZXMoZ3Qp OyBpKysgKQotLS0gYS94ZW4vaW5jbHVkZS9hc20tYXJtL2dyYW50X3RhYmxl LmgKKysrIGIveGVuL2luY2x1ZGUvYXNtLWFybS9ncmFudF90YWJsZS5oCkBA IC0yMCw2ICsyMCwxNyBAQCBzdGF0aWMgaW5saW5lIGludCByZXBsYWNlX2dy YW50X3N1cHBvcnRlCiAgICAgcmV0dXJuIDE7CiB9CiAKKyNkZWZpbmUgZ250 dGFiX3NldF9mcmFtZV9nZm4oZCwgc3QsIGlkeCwgZ2ZuKSAgICAgICAgICAg ICAgICAgICAgICAgICAgICBcCisgICAgZG8geyAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgXAorICAgICAgICAoKHN0KSA/IChkKS0+YXJjaC5ncmFudF9zdGF0dXNf Z2ZuICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIFwKKyAgICAgICAg ICAgICAgOiAoZCktPmFyY2guZ3JhbnRfc2hhcmVkX2dmbilbaWR4XSA9IChn Zm4pOyAgICAgICAgICAgICAgICBcCisgICAgfSB3aGlsZSAoIDAgKQorCisj ZGVmaW5lIGdudHRhYl9nZXRfZnJhbWVfZ2ZuKGQsIHN0LCBpZHgpICh7ICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgXAorICAgX2dmbigoc3QpID8g Z250dGFiX3N0YXR1c19nbWZuKGQsIChkKS0+Z3JhbnRfdGFibGUsIGlkeCkg ICAgICAgICAgICAgIFwKKyAgICAgICAgICAgICA6IGdudHRhYl9zaGFyZWRf Z21mbihkLCAoZCktPmdyYW50X3RhYmxlLCBpZHgpKTsgICAgICAgICAgICBc Cit9KQorCiAjZGVmaW5lIGdudHRhYl9jcmVhdGVfc2hhcmVkX3BhZ2UoZCwg dCwgaSkgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgXAogICAgIGRv IHsgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgIFwKICAgICAgICAgc2hhcmVfeGVuX3Bh Z2Vfd2l0aF9ndWVzdCggICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICBcCi0tLSBhL3hlbi9pbmNsdWRlL2FzbS14ODYvZ3JhbnRfdGFi bGUuaAorKysgYi94ZW4vaW5jbHVkZS9hc20teDg2L2dyYW50X3RhYmxlLmgK QEAgLTE4LDYgKzE4LDE0IEBAIGludCBjcmVhdGVfZ3JhbnRfaG9zdF9tYXBw aW5nKHVpbnQ2NF90IGEKIGludCByZXBsYWNlX2dyYW50X2hvc3RfbWFwcGlu ZygKICAgICB1aW50NjRfdCBhZGRyLCB1bnNpZ25lZCBsb25nIGZyYW1lLCB1 aW50NjRfdCBuZXdfYWRkciwgdW5zaWduZWQgaW50IGZsYWdzKTsKIAorI2Rl ZmluZSBnbnR0YWJfc2V0X2ZyYW1lX2dmbihkLCBzdCwgaWR4LCBnZm4pIGRv IHt9IHdoaWxlICggMCApCisjZGVmaW5lIGdudHRhYl9nZXRfZnJhbWVfZ2Zu KGQsIHN0LCBpZHgpICh7ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg XAorICAgIHVuc2lnbmVkIGxvbmcgbWZuXyA9IChzdCkgPyBnbnR0YWJfc3Rh dHVzX21mbigoZCktPmdyYW50X3RhYmxlLCBpZHgpIFwKKyAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgIDogZ250dGFiX3NoYXJlZF9tZm4oKGQpLT5n cmFudF90YWJsZSwgaWR4KTsgXAorICAgIHVuc2lnbmVkIGxvbmcgZ3Bmbl8g PSBnZXRfZ3Bmbl9mcm9tX21mbihtZm5fKTsgICAgICAgICAgICAgICAgICAg ICAgIFwKKyAgICBfZ2ZuKFZBTElEX00yUChncGZuXykgPyBncGZuXyA6IElO VkFMSURfR0ZOKTsgICAgICAgICAgICAgICAgICAgICAgICBcCit9KQorCiAj ZGVmaW5lIGdudHRhYl9jcmVhdGVfc2hhcmVkX3BhZ2UoZCwgdCwgaSkgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgXAogICAgIGRvIHsgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgIFwKICAgICAgICAgc2hhcmVfeGVuX3BhZ2Vfd2l0aF9n dWVzdCggICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICBc CkBAIC0zMywxMSArNDEsMTEgQEAgaW50IHJlcGxhY2VfZ3JhbnRfaG9zdF9t YXBwaW5nKAogICAgIH0gd2hpbGUgKCAwICkKIAogCi0jZGVmaW5lIGdudHRh Yl9zaGFyZWRfbWZuKGQsIHQsIGkpICAgICAgICAgICAgICAgICAgICAgIFwK KyNkZWZpbmUgZ250dGFiX3NoYXJlZF9tZm4odCwgaSkgICAgICAgICAgICAg ICAgICAgICAgICAgXAogICAgICgodmlydF90b19tYWRkcigodCktPnNoYXJl ZF9yYXdbaV0pID4+IFBBR0VfU0hJRlQpKQogCiAjZGVmaW5lIGdudHRhYl9z aGFyZWRfZ21mbihkLCB0LCBpKSAgICAgICAgICAgICAgICAgICAgIFwKLSAg ICAobWZuX3RvX2dtZm4oZCwgZ250dGFiX3NoYXJlZF9tZm4oZCwgdCwgaSkp KQorICAgIChtZm5fdG9fZ21mbihkLCBnbnR0YWJfc2hhcmVkX21mbih0LCBp KSkpCiAKIAogI2RlZmluZSBnbnR0YWJfc3RhdHVzX21mbih0LCBpKSAgICAg ICAgICAgICAgICAgICAgICAgICBcCg== --=separator Content-Type: application/octet-stream; name="xsa255-4.9-1.patch" Content-Disposition: attachment; filename="xsa255-4.9-1.patch" Content-Transfer-Encoding: base64 RnJvbTogSmFuIEJldWxpY2ggPGpiZXVsaWNoQHN1c2UuY29tPgpTdWJqZWN0 OiBnbnR0YWIvQVJNOiBkb24ndCBjb3JydXB0IHNoYXJlZCBHRk4gYXJyYXkK Ci4uLiBieSB3cml0aW5nIHN0YXR1cyBHRk5zIHRvIGl0LiBJbnRyb2R1Y2Ug YSBzZWNvbmQgYXJyYXkgaW5zdGVhZC4KQWxzbyBpbXBsZW1lbnQgZ250dGFi X3N0YXR1c19nbWZuKCkgcHJvcGVybHkgbm93IHRoYXQgdGhlIGluZm9ybWF0 aW9uIGlzCnN1aXRhYmx5IGJlaW5nIHRyYWNrZWQuCgpXaGlsZSB0b3VjaGlu ZyBpdCBhbnl3YXksIHJlbW92ZSBhIG1pc2d1aWRlZCAoYnV0IGx1Y2tpbHkg YmVuaWduKSB1cHBlcgpib3VuZCBjaGVjayBmcm9tIGdudHRhYl9zaGFyZWRf Z21mbigpOiBXZSBzaG91bGQgbmV2ZXIgYWNjZXNzIGJleW9uZCB0aGUKYm91 bmRzIG9mIHRoYXQgYXJyYXkuCgpUaGlzIGlzIHBhcnQgb2YgWFNBLTI1NS4K ClNpZ25lZC1vZmYtYnk6IEphbiBCZXVsaWNoIDxqYmV1bGljaEBzdXNlLmNv bT4KUmV2aWV3ZWQtYnk6IFN0ZWZhbm8gU3RhYmVsbGluaSA8c3N0YWJlbGxp bmlAa2VybmVsLm9yZz4KUmV2aWV3ZWQtYnk6IEFuZHJldyBDb29wZXIgPGFu ZHJldy5jb29wZXIzQGNpdHJpeC5jb20+CgotLS0gYS94ZW4vYXJjaC9hcm0v ZG9tYWluLmMKKysrIGIveGVuL2FyY2gvYXJtL2RvbWFpbi5jCkBAIC00NjEs MTkgKzQ2MSwzNyBAQCB2b2lkIHN0YXJ0dXBfY3B1X2lkbGVfbG9vcCh2b2lk KQogc3RydWN0IGRvbWFpbiAqYWxsb2NfZG9tYWluX3N0cnVjdCh2b2lkKQog ewogICAgIHN0cnVjdCBkb21haW4gKmQ7CisgICAgdW5zaWduZWQgaW50IGks IG1heF9zdGF0dXNfZnJhbWVzOworCiAgICAgQlVJTERfQlVHX09OKHNpemVv ZigqZCkgPiBQQUdFX1NJWkUpOwogICAgIGQgPSBhbGxvY194ZW5oZWFwX3Bh Z2VzKDAsIDApOwogICAgIGlmICggZCA9PSBOVUxMICkKICAgICAgICAgcmV0 dXJuIE5VTEw7CiAKICAgICBjbGVhcl9wYWdlKGQpOwotICAgIGQtPmFyY2gu Z3JhbnRfdGFibGVfZ2ZuID0geHphbGxvY19hcnJheShnZm5fdCwgbWF4X2dy YW50X2ZyYW1lcyk7CisKKyAgICBkLT5hcmNoLmdyYW50X3NoYXJlZF9nZm4g PSB4bWFsbG9jX2FycmF5KGdmbl90LCBtYXhfZ3JhbnRfZnJhbWVzKTsKKyAg ICBtYXhfc3RhdHVzX2ZyYW1lcyA9IGdyYW50X3RvX3N0YXR1c19mcmFtZXMo bWF4X2dyYW50X2ZyYW1lcyk7CisgICAgZC0+YXJjaC5ncmFudF9zdGF0dXNf Z2ZuID0geG1hbGxvY19hcnJheShnZm5fdCwgbWF4X3N0YXR1c19mcmFtZXMp OworICAgIGlmICggIWQtPmFyY2guZ3JhbnRfc2hhcmVkX2dmbiB8fCAhZC0+ YXJjaC5ncmFudF9zdGF0dXNfZ2ZuICkKKyAgICB7CisgICAgICAgIGZyZWVf ZG9tYWluX3N0cnVjdChkKTsKKyAgICAgICAgcmV0dXJuIE5VTEw7CisgICAg fQorCisgICAgZm9yICggaSA9IDA7IGkgPCBtYXhfZ3JhbnRfZnJhbWVzOyAr K2kgKQorICAgICAgICBkLT5hcmNoLmdyYW50X3NoYXJlZF9nZm5baV0gPSBJ TlZBTElEX0dGTjsKKworICAgIGZvciAoIGkgPSAwOyBpIDwgbWF4X3N0YXR1 c19mcmFtZXM7ICsraSApCisgICAgICAgIGQtPmFyY2guZ3JhbnRfc3RhdHVz X2dmbltpXSA9IElOVkFMSURfR0ZOOworCiAgICAgcmV0dXJuIGQ7CiB9CiAK IHZvaWQgZnJlZV9kb21haW5fc3RydWN0KHN0cnVjdCBkb21haW4gKmQpCiB7 Ci0gICAgeGZyZWUoZC0+YXJjaC5ncmFudF90YWJsZV9nZm4pOworICAgIHhm cmVlKGQtPmFyY2guZ3JhbnRfc2hhcmVkX2dmbik7CisgICAgeGZyZWUoZC0+ YXJjaC5ncmFudF9zdGF0dXNfZ2ZuKTsKICAgICBmcmVlX3hlbmhlYXBfcGFn ZShkKTsKIH0KIAotLS0gYS94ZW4vYXJjaC9hcm0vbW0uYworKysgYi94ZW4v YXJjaC9hcm0vbW0uYwpAQCAtMTE0OCw2ICsxMTQ4LDcgQEAgaW50IHhlbm1l bV9hZGRfdG9fcGh5c21hcF9vbmUoCiAgICAgaW50IHJjOwogICAgIHAybV90 eXBlX3QgdDsKICAgICBzdHJ1Y3QgcGFnZV9pbmZvICpwYWdlID0gTlVMTDsK KyAgICBib29sIHN0YXR1cyA9IGZhbHNlOwogCiAgICAgc3dpdGNoICggc3Bh Y2UgKQogICAgIHsKQEAgLTExNjUsNiArMTE2Niw3IEBAIGludCB4ZW5tZW1f YWRkX3RvX3BoeXNtYXBfb25lKAogICAgICAgICAgICAgICAgIG1mbiA9IHZp cnRfdG9fbWZuKGQtPmdyYW50X3RhYmxlLT5zdGF0dXNbaWR4XSk7CiAgICAg ICAgICAgICBlbHNlCiAgICAgICAgICAgICAgICAgbWZuID0gbWZuX3goSU5W QUxJRF9NRk4pOworICAgICAgICAgICAgc3RhdHVzID0gdHJ1ZTsKICAgICAg ICAgfQogICAgICAgICBlbHNlCiAgICAgICAgIHsKQEAgLTExODAsNyArMTE4 MiwxMCBAQCBpbnQgeGVubWVtX2FkZF90b19waHlzbWFwX29uZSgKIAogICAg ICAgICBpZiAoIG1mbiAhPSBtZm5feChJTlZBTElEX01GTikgKQogICAgICAg ICB7Ci0gICAgICAgICAgICBkLT5hcmNoLmdyYW50X3RhYmxlX2dmbltpZHhd ID0gZ2ZuOworICAgICAgICAgICAgaWYgKCBzdGF0dXMgKQorICAgICAgICAg ICAgICAgIGQtPmFyY2guZ3JhbnRfc3RhdHVzX2dmbltpZHhdID0gZ2ZuOwor ICAgICAgICAgICAgZWxzZQorICAgICAgICAgICAgICAgIGQtPmFyY2guZ3Jh bnRfc2hhcmVkX2dmbltpZHhdID0gZ2ZuOwogCiAgICAgICAgICAgICB0ID0g cDJtX3JhbV9ydzsKICAgICAgICAgfQotLS0gYS94ZW4vaW5jbHVkZS9hc20t YXJtL2RvbWFpbi5oCisrKyBiL3hlbi9pbmNsdWRlL2FzbS1hcm0vZG9tYWlu LmgKQEAgLTUwLDcgKzUwLDggQEAgc3RydWN0IGFyY2hfZG9tYWluCiAgICAg c3RydWN0IHAybV9kb21haW4gcDJtOwogCiAgICAgc3RydWN0IGh2bV9kb21h aW4gaHZtX2RvbWFpbjsKLSAgICBnZm5fdCAqZ3JhbnRfdGFibGVfZ2ZuOwor ICAgIGdmbl90ICpncmFudF9zaGFyZWRfZ2ZuOworICAgIGdmbl90ICpncmFu dF9zdGF0dXNfZ2ZuOwogCiAgICAgc3RydWN0IHZtbWlvIHZtbWlvOwogCi0t LSBhL3hlbi9pbmNsdWRlL2FzbS1hcm0vZ3JhbnRfdGFibGUuaAorKysgYi94 ZW4vaW5jbHVkZS9hc20tYXJtL2dyYW50X3RhYmxlLmgKQEAgLTE0LDcgKzE0 LDYgQEAgaW50IHJlcGxhY2VfZ3JhbnRfaG9zdF9tYXBwaW5nKHVuc2lnbmVk CiAgICAgICAgIHVuc2lnbmVkIGxvbmcgbmV3X2dwYWRkciwgdW5zaWduZWQg aW50IGZsYWdzKTsKIHZvaWQgZ250dGFiX21hcmtfZGlydHkoc3RydWN0IGRv bWFpbiAqZCwgdW5zaWduZWQgbG9uZyBsKTsKICNkZWZpbmUgZ250dGFiX2Ny ZWF0ZV9zdGF0dXNfcGFnZShkLCB0LCBpKSBkbyB7fSB3aGlsZSAoMCkKLSNk ZWZpbmUgZ250dGFiX3N0YXR1c19nbWZuKGQsIHQsIGkpICgwKQogI2RlZmlu ZSBnbnR0YWJfcmVsZWFzZV9ob3N0X21hcHBpbmdzKGRvbWFpbikgMQogc3Rh dGljIGlubGluZSBpbnQgcmVwbGFjZV9ncmFudF9zdXBwb3J0ZWQodm9pZCkK IHsKQEAgLTI5LDggKzI4LDEyIEBAIHN0YXRpYyBpbmxpbmUgaW50IHJlcGxh Y2VfZ3JhbnRfc3VwcG9ydGUKICAgICB9IHdoaWxlICggMCApCiAKICNkZWZp bmUgZ250dGFiX3NoYXJlZF9nbWZuKGQsIHQsIGkpICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICBcCi0gICAgKCAoKGkgPj0gbnJfZ3Jh bnRfZnJhbWVzKGQtPmdyYW50X3RhYmxlKSkgJiYgICAgICAgICAgICAgICAg ICAgICAgICAgXAotICAgICAoaSA8IG1heF9ncmFudF9mcmFtZXMpKSA/IDAg OiBnZm5feChkLT5hcmNoLmdyYW50X3RhYmxlX2dmbltpXSkpCisgICAgZ2Zu X3goKChpKSA+PSBucl9ncmFudF9mcmFtZXModCkpID8gSU5WQUxJRF9HRk4g ICAgICAgICAgICAgICAgICAgICAgXAorICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICA6IChkKS0+YXJjaC5ncmFudF9zaGFyZWRfZ2Zu W2ldKQorCisjZGVmaW5lIGdudHRhYl9zdGF0dXNfZ21mbihkLCB0LCBpKSAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgXAorICAgIGdm bl94KCgoaSkgPj0gbnJfc3RhdHVzX2ZyYW1lcyh0KSkgPyBJTlZBTElEX0dG TiAgICAgICAgICAgICAgICAgICAgIFwKKyAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgIDogKGQpLT5hcmNoLmdyYW50X3N0YXR1c19n Zm5baV0pCiAKICNkZWZpbmUgZ250dGFiX25lZWRfaW9tbXVfbWFwcGluZyhk KSAgICAgICAgICAgICAgICAgICAgXAogICAgIChpc19kb21haW5fZGlyZWN0 X21hcHBlZChkKSAmJiBuZWVkX2lvbW11KGQpKQo= --=separator Content-Type: application/octet-stream; name="xsa255-4.9-2.patch" Content-Disposition: attachment; filename="xsa255-4.9-2.patch" Content-Transfer-Encoding: base64 RnJvbTogSmFuIEJldWxpY2ggPGpiZXVsaWNoQHN1c2UuY29tPgpTdWJqZWN0 OiBnbnR0YWI6IGRvbid0IGJsaW5kbHkgZnJlZSBzdGF0dXMgcGFnZXMgdXBv biB2ZXJzaW9uIGNoYW5nZQoKVGhlcmUgbWF5IHN0aWxsIGJlIGFjdGl2ZSBt YXBwaW5ncywgd2hpY2ggd291bGQgdHJpZ2dlciB0aGUgcmVzcGVjdGl2ZQpC VUdfT04oKS4gU3BsaXQgdGhlIGxvb3AgaW50byBvbmUgZGVhbGluZyB3aXRo IHRoZSBwYWdlIGF0dHJpYnV0ZXMgYW5kCnRoZSBzZWNvbmQgKHdoZW4gdGhl IGZpcnN0IGZ1bGx5IHBhc3NlZCkgZnJlZWluZyB0aGUgcGFnZXMuIFJldHVy biBhbgplcnJvciBpZiBhbnkgcGFnZXMgc3RpbGwgaGF2ZSBwZW5kaW5nIHJl ZmVyZW5jZXMuCgpUaGlzIGlzIHBhcnQgb2YgWFNBLTI1NS4KClNpZ25lZC1v ZmYtYnk6IEphbiBCZXVsaWNoIDxqYmV1bGljaEBzdXNlLmNvbT4KUmV2aWV3 ZWQtYnk6IFN0ZWZhbm8gU3RhYmVsbGluaSA8c3N0YWJlbGxpbmlAa2VybmVs Lm9yZz4KUmV2aWV3ZWQtYnk6IEFuZHJldyBDb29wZXIgPGFuZHJldy5jb29w ZXIzQGNpdHJpeC5jb20+CgotLS0gYS94ZW4vYXJjaC9hcm0vbW0uYworKysg Yi94ZW4vYXJjaC9hcm0vbW0uYwpAQCAtMTE4MCwxMiArMTE4MCwyMiBAQCBp bnQgeGVubWVtX2FkZF90b19waHlzbWFwX29uZSgKICAgICAgICAgICAgICAg ICBtZm4gPSBtZm5feChJTlZBTElEX01GTik7CiAgICAgICAgIH0KIAorICAg ICAgICBpZiAoIG1mbiAhPSBtZm5feChJTlZBTElEX01GTikgJiYKKyAgICAg ICAgICAgICAhZ2ZuX2VxKGdudHRhYl9nZXRfZnJhbWVfZ2ZuKGQsIHN0YXR1 cywgaWR4KSwgSU5WQUxJRF9HRk4pICkKKyAgICAgICAgeworICAgICAgICAg ICAgcmMgPSBndWVzdF9waHlzbWFwX3JlbW92ZV9wYWdlKGQsCisgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgZ250dGFiX2dl dF9mcmFtZV9nZm4oZCwgc3RhdHVzLCBpZHgpLAorICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgIF9tZm4obWZuKSwgMCk7Cisg ICAgICAgICAgICBpZiAoIHJjICkKKyAgICAgICAgICAgIHsKKyAgICAgICAg ICAgICAgICBncmFudF93cml0ZV91bmxvY2soZC0+Z3JhbnRfdGFibGUpOwor ICAgICAgICAgICAgICAgIHJldHVybiByYzsKKyAgICAgICAgICAgIH0KKyAg ICAgICAgfQorCiAgICAgICAgIGlmICggbWZuICE9IG1mbl94KElOVkFMSURf TUZOKSApCiAgICAgICAgIHsKLSAgICAgICAgICAgIGlmICggc3RhdHVzICkK LSAgICAgICAgICAgICAgICBkLT5hcmNoLmdyYW50X3N0YXR1c19nZm5baWR4 XSA9IGdmbjsKLSAgICAgICAgICAgIGVsc2UKLSAgICAgICAgICAgICAgICBk LT5hcmNoLmdyYW50X3NoYXJlZF9nZm5baWR4XSA9IGdmbjsKKyAgICAgICAg ICAgIGdudHRhYl9zZXRfZnJhbWVfZ2ZuKGQsIHN0YXR1cywgaWR4LCBnZm4p OwogCiAgICAgICAgICAgICB0ID0gcDJtX3JhbV9ydzsKICAgICAgICAgfQot LS0gYS94ZW4vY29tbW9uL2dyYW50X3RhYmxlLmMKKysrIGIveGVuL2NvbW1v bi9ncmFudF90YWJsZS5jCkBAIC0xNTE2LDIzICsxNTE2LDc0IEBAIHN0YXR1 c19hbGxvY19mYWlsZWQ6CiAgICAgcmV0dXJuIC1FTk9NRU07CiB9CiAKLXN0 YXRpYyB2b2lkCitzdGF0aWMgaW50CiBnbnR0YWJfdW5wb3B1bGF0ZV9zdGF0 dXNfZnJhbWVzKHN0cnVjdCBkb21haW4gKmQsIHN0cnVjdCBncmFudF90YWJs ZSAqZ3QpCiB7Ci0gICAgaW50IGk7CisgICAgdW5zaWduZWQgaW50IGk7CiAK ICAgICBmb3IgKCBpID0gMDsgaSA8IG5yX3N0YXR1c19mcmFtZXMoZ3QpOyBp KysgKQogICAgIHsKICAgICAgICAgc3RydWN0IHBhZ2VfaW5mbyAqcGcgPSB2 aXJ0X3RvX3BhZ2UoZ3QtPnN0YXR1c1tpXSk7CisgICAgICAgIGdmbl90IGdm biA9IGdudHRhYl9nZXRfZnJhbWVfZ2ZuKGQsIHRydWUsIGkpOworCisgICAg ICAgIC8qCisgICAgICAgICAqIEZvciB0cmFuc2xhdGVkIGRvbWFpbnMsIHJl Y292ZXJpbmcgZnJvbSBmYWlsdXJlIGFmdGVyIHBhcnRpYWwKKyAgICAgICAg ICogY2hhbmdlcyB3ZXJlIG1hZGUgaXMgbW9yZSBjb21wbGljYXRlZCB0aGFu IGl0IHNlZW1zIHdvcnRoCisgICAgICAgICAqIGltcGxlbWVudGluZyBhdCB0 aGlzIHRpbWUuIEhlbmNlIHJlc3BlY3RpdmUgZXJyb3IgcGF0aHMgYmVsb3cK KyAgICAgICAgICogY3Jhc2ggdGhlIGRvbWFpbiBpbiBzdWNoIGEgY2FzZS4K KyAgICAgICAgICovCisgICAgICAgIGlmICggcGFnaW5nX21vZGVfdHJhbnNs YXRlKGQpICkKKyAgICAgICAgeworICAgICAgICAgICAgaW50IHJjID0gZ2Zu X2VxKGdmbiwgSU5WQUxJRF9HRk4pCisgICAgICAgICAgICAgICAgICAgICA/ IDAKKyAgICAgICAgICAgICAgICAgICAgIDogZ3Vlc3RfcGh5c21hcF9yZW1v dmVfcGFnZShkLCBnZm4sCisgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgX21mbihwYWdlX3RvX21mbihwZykpLCAw KTsKKworICAgICAgICAgICAgaWYgKCByYyApCisgICAgICAgICAgICB7Cisg ICAgICAgICAgICAgICAgZ3ByaW50ayhYRU5MT0dfRVJSLAorICAgICAgICAg ICAgICAgICAgICAgICAgIkNvdWxkIG5vdCByZW1vdmUgc3RhdHVzIGZyYW1l ICV1IChHRk4gJSNseCkgZnJvbSBQMk1cbiIsCisgICAgICAgICAgICAgICAg ICAgICAgICBpLCBnZm5feChnZm4pKTsKKyAgICAgICAgICAgICAgICBkb21h aW5fY3Jhc2goZCk7CisgICAgICAgICAgICAgICAgcmV0dXJuIHJjOworICAg ICAgICAgICAgfQorICAgICAgICAgICAgZ250dGFiX3NldF9mcmFtZV9nZm4o ZCwgdHJ1ZSwgaSwgSU5WQUxJRF9HRk4pOworICAgICAgICB9CiAKICAgICAg ICAgQlVHX09OKHBhZ2VfZ2V0X293bmVyKHBnKSAhPSBkKTsKICAgICAgICAg aWYgKCB0ZXN0X2FuZF9jbGVhcl9iaXQoX1BHQ19hbGxvY2F0ZWQsICZwZy0+ Y291bnRfaW5mbykgKQogICAgICAgICAgICAgcHV0X3BhZ2UocGcpOwotICAg ICAgICBCVUdfT04ocGctPmNvdW50X2luZm8gJiB+UEdDX3hlbl9oZWFwKTsK KworICAgICAgICBpZiAoIHBnLT5jb3VudF9pbmZvICYgflBHQ194ZW5faGVh cCApCisgICAgICAgIHsKKyAgICAgICAgICAgIGlmICggcGFnaW5nX21vZGVf dHJhbnNsYXRlKGQpICkKKyAgICAgICAgICAgIHsKKyAgICAgICAgICAgICAg ICBncHJpbnRrKFhFTkxPR19FUlIsCisgICAgICAgICAgICAgICAgICAgICAg ICAiV3JvbmcgcGFnZSBzdGF0ZSAlI2x4IG9mIHN0YXR1cyBmcmFtZSAldSAo R0ZOICUjbHgpXG4iLAorICAgICAgICAgICAgICAgICAgICAgICAgcGctPmNv dW50X2luZm8sIGksIGdmbl94KGdmbikpOworICAgICAgICAgICAgICAgIGRv bWFpbl9jcmFzaChkKTsKKyAgICAgICAgICAgIH0KKyAgICAgICAgICAgIGVs c2UKKyAgICAgICAgICAgIHsKKyAgICAgICAgICAgICAgICBpZiAoIGdldF9w YWdlKHBnLCBkKSApCisgICAgICAgICAgICAgICAgICAgIHNldF9iaXQoX1BH Q19hbGxvY2F0ZWQsICZwZy0+Y291bnRfaW5mbyk7CisgICAgICAgICAgICAg ICAgd2hpbGUgKCBpLS0gKQorICAgICAgICAgICAgICAgICAgICBnbnR0YWJf Y3JlYXRlX3N0YXR1c19wYWdlKGQsIGd0LCBpKTsKKyAgICAgICAgICAgIH0K KyAgICAgICAgICAgIHJldHVybiAtRUJVU1k7CisgICAgICAgIH0KKworICAg ICAgICBwYWdlX3NldF9vd25lcihwZywgTlVMTCk7CisgICAgfQorCisgICAg Zm9yICggaSA9IDA7IGkgPCBucl9zdGF0dXNfZnJhbWVzKGd0KTsgaSsrICkK KyAgICB7CiAgICAgICAgIGZyZWVfeGVuaGVhcF9wYWdlKGd0LT5zdGF0dXNb aV0pOwogICAgICAgICBndC0+c3RhdHVzW2ldID0gTlVMTDsKICAgICB9CiAg ICAgZ3QtPm5yX3N0YXR1c19mcmFtZXMgPSAwOworCisgICAgcmV0dXJuIDA7 CiB9CiAKIC8qCkBAIC0yNzc0LDggKzI4MjUsOSBAQCBnbnR0YWJfc2V0X3Zl cnNpb24oWEVOX0dVRVNUX0hBTkRMRV9QQVJBCiAgICAgICAgIGJyZWFrOwog ICAgIH0KIAotICAgIGlmICggb3AudmVyc2lvbiA8IDIgJiYgZ3QtPmd0X3Zl cnNpb24gPT0gMiApCi0gICAgICAgIGdudHRhYl91bnBvcHVsYXRlX3N0YXR1 c19mcmFtZXMoY3VycmQsIGd0KTsKKyAgICBpZiAoIG9wLnZlcnNpb24gPCAy ICYmIGd0LT5ndF92ZXJzaW9uID09IDIgJiYKKyAgICAgICAgIChyZXMgPSBn bnR0YWJfdW5wb3B1bGF0ZV9zdGF0dXNfZnJhbWVzKGN1cnJkLCBndCkpICE9 IDAgKQorICAgICAgICBnb3RvIG91dF91bmxvY2s7CiAKICAgICAvKiBNYWtl IHN1cmUgdGhlcmUncyBubyBjcnVkIGxlZnQgb3ZlciBmcm9tIHRoZSBvbGQg dmVyc2lvbi4gKi8KICAgICBmb3IgKCBpID0gMDsgaSA8IG5yX2dyYW50X2Zy YW1lcyhndCk7IGkrKyApCi0tLSBhL3hlbi9pbmNsdWRlL2FzbS1hcm0vZ3Jh bnRfdGFibGUuaAorKysgYi94ZW4vaW5jbHVkZS9hc20tYXJtL2dyYW50X3Rh YmxlLmgKQEAgLTIwLDYgKzIwLDE3IEBAIHN0YXRpYyBpbmxpbmUgaW50IHJl cGxhY2VfZ3JhbnRfc3VwcG9ydGUKICAgICByZXR1cm4gMTsKIH0KIAorI2Rl ZmluZSBnbnR0YWJfc2V0X2ZyYW1lX2dmbihkLCBzdCwgaWR4LCBnZm4pICAg ICAgICAgICAgICAgICAgICAgICAgICAgIFwKKyAgICBkbyB7ICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICBcCisgICAgICAgICgoc3QpID8gKGQpLT5hcmNoLmdyYW50 X3N0YXR1c19nZm4gICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgXAor ICAgICAgICAgICAgICA6IChkKS0+YXJjaC5ncmFudF9zaGFyZWRfZ2ZuKVtp ZHhdID0gKGdmbik7ICAgICAgICAgICAgICAgIFwKKyAgICB9IHdoaWxlICgg MCApCisKKyNkZWZpbmUgZ250dGFiX2dldF9mcmFtZV9nZm4oZCwgc3QsIGlk eCkgKHsgICAgICAgICAgICAgICAgICAgICAgICAgICAgICBcCisgICBfZ2Zu KChzdCkgPyBnbnR0YWJfc3RhdHVzX2dtZm4oZCwgKGQpLT5ncmFudF90YWJs ZSwgaWR4KSAgICAgICAgICAgICAgXAorICAgICAgICAgICAgIDogZ250dGFi X3NoYXJlZF9nbWZuKGQsIChkKS0+Z3JhbnRfdGFibGUsIGlkeCkpOyAgICAg ICAgICAgIFwKK30pCisKICNkZWZpbmUgZ250dGFiX2NyZWF0ZV9zaGFyZWRf cGFnZShkLCB0LCBpKSAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICBc CiAgICAgZG8geyAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgXAogICAgICAgICBzaGFy ZV94ZW5fcGFnZV93aXRoX2d1ZXN0KCAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgIFwKLS0tIGEveGVuL2luY2x1ZGUvYXNtLXg4Ni9n cmFudF90YWJsZS5oCisrKyBiL3hlbi9pbmNsdWRlL2FzbS14ODYvZ3JhbnRf dGFibGUuaApAQCAtMTgsNiArMTgsMTQgQEAgaW50IGNyZWF0ZV9ncmFudF9o b3N0X21hcHBpbmcodWludDY0X3QgYQogaW50IHJlcGxhY2VfZ3JhbnRfaG9z dF9tYXBwaW5nKAogICAgIHVpbnQ2NF90IGFkZHIsIHVuc2lnbmVkIGxvbmcg ZnJhbWUsIHVpbnQ2NF90IG5ld19hZGRyLCB1bnNpZ25lZCBpbnQgZmxhZ3Mp OwogCisjZGVmaW5lIGdudHRhYl9zZXRfZnJhbWVfZ2ZuKGQsIHN0LCBpZHgs IGdmbikgZG8ge30gd2hpbGUgKCAwICkKKyNkZWZpbmUgZ250dGFiX2dldF9m cmFtZV9nZm4oZCwgc3QsIGlkeCkgKHsgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICBcCisgICAgdW5zaWduZWQgbG9uZyBtZm5fID0gKHN0KSA/IGdu dHRhYl9zdGF0dXNfbWZuKChkKS0+Z3JhbnRfdGFibGUsIGlkeCkgXAorICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgOiBnbnR0YWJfc2hhcmVkX21m bigoZCktPmdyYW50X3RhYmxlLCBpZHgpOyBcCisgICAgdW5zaWduZWQgbG9u ZyBncGZuXyA9IGdldF9ncGZuX2Zyb21fbWZuKG1mbl8pOyAgICAgICAgICAg ICAgICAgICAgICAgXAorICAgIFZBTElEX00yUChncGZuXykgPyBfZ2ZuKGdw Zm5fKSA6IElOVkFMSURfR0ZOOyAgICAgICAgICAgICAgICAgICAgICAgIFwK K30pCisKICNkZWZpbmUgZ250dGFiX2NyZWF0ZV9zaGFyZWRfcGFnZShkLCB0 LCBpKSAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICBcCiAgICAgZG8g eyAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgXAogICAgICAgICBzaGFyZV94ZW5fcGFn ZV93aXRoX2d1ZXN0KCAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgIFwKQEAgLTMzLDExICs0MSwxMSBAQCBpbnQgcmVwbGFjZV9ncmFu dF9ob3N0X21hcHBpbmcoCiAgICAgfSB3aGlsZSAoIDAgKQogCiAKLSNkZWZp bmUgZ250dGFiX3NoYXJlZF9tZm4oZCwgdCwgaSkgICAgICAgICAgICAgICAg ICAgICAgXAorI2RlZmluZSBnbnR0YWJfc2hhcmVkX21mbih0LCBpKSAgICAg ICAgICAgICAgICAgICAgICAgICBcCiAgICAgKCh2aXJ0X3RvX21hZGRyKCh0 KS0+c2hhcmVkX3Jhd1tpXSkgPj4gUEFHRV9TSElGVCkpCiAKICNkZWZpbmUg Z250dGFiX3NoYXJlZF9nbWZuKGQsIHQsIGkpICAgICAgICAgICAgICAgICAg ICAgXAotICAgIChtZm5fdG9fZ21mbihkLCBnbnR0YWJfc2hhcmVkX21mbihk LCB0LCBpKSkpCisgICAgKG1mbl90b19nbWZuKGQsIGdudHRhYl9zaGFyZWRf bWZuKHQsIGkpKSkKIAogCiAjZGVmaW5lIGdudHRhYl9zdGF0dXNfbWZuKHQs IGkpICAgICAgICAgICAgICAgICAgICAgICAgIFwK --=separator Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: base64 Content-Disposition: inline X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX18KWGVuLWFubm91 bmNlIG1haWxpbmcgbGlzdApYZW4tYW5ub3VuY2VAbGlzdHMueGVucHJvamVjdC5vcmcKaHR0cHM6 Ly9saXN0cy54ZW5wcm9qZWN0Lm9yZy9tYWlsbWFuL2xpc3RpbmZvL3hlbi1hbm5vdW5jZQ== --=separator--