- boot-architecture - lists.linaro.org

by François Ozog

Hi Tom Le lun. 25 oct. 2021 à 18:59, Tom Rini <trini(a)konsulko.com> a écrit : > On Mon, Oct 25, 2021 at 05:41:44PM +0100, Daniel Thompson wrote: > > On Mon, Oct 25, 2021 at 03:59:49PM +0200, Heinrich Schuchardt wrote: > > > On 10/25/21 15:32, Daniel Thompson wrote: > > > > On Mon, Oct 25, 2021 at 01:51:34PM +0200, Heinrich Schuchardt wrote: > > > > > On 10/25/21 12:43, François Ozog wrote: > > > > > > Hi > > > > > > > > > > > > back in April we had a workshop on firmware sustainability. > Since then a > > > > > > number of discussions related concerns on closed source > components in TF-A > > > > > > and U-Boot communities. We are also approaching a technical > maturity level > > > > > > > > > > U-Boot is licenced under GPL. You must not include any code which > is not > > > > > licensed under GPL or a compatible license (cf. > > > > > https://www.gnu.org/licenses/license-list.html) into U-Boot. This > > > > > disqualifies any closed source component but also open source > which is not > > > > > GPL compatible like OpenSSL. > > > > > > > > > > The BSD-3 license of TF-A is compatible with GPL. > > > > > > > > > > For closed source TF-A components distributed with U-Boot the > following GPL > > > > > exception *MIGHT* apply in some cases: > > > > > > > > > > "However, as a special exception, the source code distributed need > not > > > > > include anything that is normally distributed (in either source or > binary > > > > > form) with the major components (compiler, kernel, and so on) of > the > > > > > operating system on which the executable runs, unless that > component itself > > > > > accompanies the executable." > > > > > > > > The GNU GPLv2 "mere aggregation" language must also be mentioned when > > > > looking at the license effects here. > > > > > > > > If TF-A and u-boot were merely aggregated together on the same > storage > > > > media then the license of one would not influence the licensing of > > > > the other. > > > > > > > > I am doubtful that one component being responsible for copying the > other > > > > into memory would change this. > > > > > > Think of U-Boot's UEFI variables managed by an OP-TEE module > (Standalone > > > MM), or U-Boot (or Linux) invoking PSCI. These are not cases of mere > > > aggregation but come close to the operating system case. But TF-A is > not an > > > operating system. > > > > This is very much an example of "each case turns on its own facts". > > > > PSCI is a generic protocol. It is based on traps. Its primary purpose is > > to decouple components that run at different trust levels. TF-A is not > > the only implementation. U-boot is not the only client. > > > > Such facts make it unlikely that TF-A would become a derived work of > > u-boot simply because u-boot gets PSCI services from TF-A. > > > > To be clear I agree there are definitely circumstances that could lead > > an OP-TEE TA, OP-TEE itself or TF-A being combined with u-boot (rather > > than aggregated alongside). A OP-TEE TA to assist with variable storage > > could certainly reach this level, especially if it's interfaces were > > specifically designed to match the u-boot driver model (although this > > still may not impact TF-A). > > So, this might be an unpopular opinion here, but perhaps the Canonical > or Linaro lawyers could chime in with some non-binding thoughts? > Engineers arguing about the law tends to not be productive. i agree. From my standpoint, there are products on the market that assemble firmware components such as TF-A , U-Boot and OP-TEE in various ways : so lawyers have done their job and it is possible. My question is: can we further characterize the distributed firmware with regards to parameters described in the checklist? If there are binary components in the mix, how much a platform owner (in the checklist sense) can rebuild the open source portion, include the binaries and redistribute the result? > > > -- > Tom > -- François-Frédéric Ozog | *Director Business Development* T: +33.67221.6485 francois.ozog(a)linaro.org | Skype: ffozog

4 years

2
2
0 0

Devicetree Evo call today at 2PM UTC / 10am US eastern

by Bill Mills

All, We have our DT evo call today one hour earlier than normal. 2 PM UTC / 3PM UK / 10 AM US East (NY) (in 48 min as I write this.) Today we will talk about DTB life cycle in firmware at run time. We might get an update from Simon of DTB signatures. Thanks, Bill -- Bill Mills Principal Technical Consultant, Linaro +1-240-643-0836 TZ: US Eastern Work Schedule: Tues/Wed/Thur

4 years

1
1
0 0

Re: Poll for new time for DT Evo call

by Bill Mills

Yep I see your info. Thanks for the bug report :) -- Bill On 10/5/21 12:02 PM, Simon Glass wrote: > OK that worked, I think. > > - Simon > > On Mon, 4 Oct 2021 at 19:19, Bill Mills <bill.mills(a)linaro.org> wrote: >> >> Sorry wrong link. >> Please try this one: >> https://doodle.com/meeting/participate/id/mepQEZNa >> >> On 10/4/21 6:19 PM, Bill Mills wrote: >>> All, >>> >>> If you normally attend the Devicetree evolution call, >>> Please fill out this poll: >>> https://doodle.com/meeting/organize/id/mepQEZNa >>> >>> Thanks, >>> Bill >>> >>> -- >>> Bill Mills >>> Principal Technical Consultant, Linaro >>> +1-240-643-0836 >>> TZ: US Eastern >>> Work Schedule: Tues/Wed/Thur >> >> -- >> Bill Mills >> Principal Technical Consultant, Linaro >> +1-240-643-0836 >> TZ: US Eastern >> Work Schedule: Tues/Wed/Thur -- Bill Mills Principal Technical Consultant, Linaro +1-240-643-0836 TZ: US Eastern Work Schedule: Tues/Wed/Thur

4 years, 1 month

1
0
0 0

Poll for new time for DT Evo call

by Bill Mills

All, If you normally attend the Devicetree evolution call, Please fill out this poll: https://doodle.com/meeting/organize/id/mepQEZNa Thanks, Bill -- Bill Mills Principal Technical Consultant, Linaro +1-240-643-0836 TZ: US Eastern Work Schedule: Tues/Wed/Thur

4 years, 1 month

1
2
0 0

Making recordings of DT Evo meetings public

by Bill Mills

All, I have recordings and automated transcripts of all the meetings in 2021. So far I have not made these public. *** Is there any objection to making them public? *** I don't imagine many people will go back and look but it is sometimes nice to know that you could. Please let me know if you have any concern. I will take no action until next week. Thanks, Bill -- Bill Mills Principal Technical Consultant, Linaro +1-240-643-0836 TZ: US Eastern Work Schedule: Tues/Wed/Thur

4 years, 1 month

1
0
0 0

Notes and slides from today's DT Evo call

by Bill Mills

All, Today we discussed Simon's slides [1] about DTB signatures. Simmons points (as I understand them) * U-boot has used signatures in FIT format for years * The technique used for FIT is actually generic to any DTB * Such a signed DTB could still be passed to kernel * even an old one like 4.4 * Suggest we adopt this for signing individual DTBs Discussion: * General interest in idea, no strong objections * multiple people want to see the worked example to know for sure * Which nodes do we want to sign? * Should we sign in a way that allows the kernel to recheck the signature? * would require we exclude from hashing anything that will get fixed up by u-boot at run time, such as mac addrs and chosen * If u-boot applies any non-trivial DTBO's, the kernel won't be able to check the result, is it worth the effort for the simple case? * If we really want the kernel to verify, we should pass on a set of dtbs: a base and set of overlays, one overlay would be the fixup data. kernel could check each dtb and then verify that fixup data only touches the stuff that it should * Joakim worked with a student to do things very similar to what Simon is talking about. see [2] Other comments: * verifying 10 rsa signatures on 10 hashes is more expensive than verifying 1 rsa signature of 10 strong hashes. (RSA signatures on the actual data itself would be VERY expensive.) * We should be careful about boot time in all these discussions. * If all the DTB data is internal to u-boot, just use FIT and have one signature for all the various hashes. * Is it OK to use the "exploded" rsa public key data in all cases? * Is the exploded for faster or just less code? * Can we supply the plan/std pub key AND the exploded version? * implementations that care about speed and code size can use the exploded ver, while things that need to standard key structure can use that. We would need a offline tool to verify both. * UEFI secure boot will have public keys installed. Can we explode the key on install for internal storage? Actions: * Simon to work up an example of signing just one dtb We also introduced the topics of DT lifecycle at firmware level: A) Source level lifecycle, keeping things in sync A1) Golden source repo A2: Golden source for platforms that opt-in A3) auto checker but manual fixup A4) remove DT from sub projects and rely on B2 model Pretty sure this is a NOPE! A5) do nothing and trust platforms maintainers to do the right thing (despite evidence that many are not currently). B) runtime life-cycle B1) each component has its own DTB B2) DTB is only present in "first" firmware and is passed along from there B3) mixture of B1 & B2 at different firmware stages Actions: * Bill to make slides so we can discuss properly on Oct 18. [1] https://drive.google.com/file/d/1PA5aQ2rISOrdNbqElfIWXaSrCG28Rqx4/view?usp=… [2] https://github.com/marianomarciello/Device_Tree_Verification/tree/e0b2fc989… Thanks, Bill -- Bill Mills Principal Technical Consultant, Linaro +1-240-643-0836 TZ: US Eastern Work Schedule: Tues/Wed/Thur

4 years, 1 month

1
0
0 0

DT Evo call today at 4PM UTC (30 min)

by Bill Mills

Hello, We have our DT evo call in just a bit. Today I would like to talk about DT lifecycle and flow "with in" firmware. Up till this point we have focused on firmware to "OS layer" hand off. That topic is not done but I think we need to start exploring the flow within firmware as people seem to have very different views. We need to figure out what models are valid (2 seems plenty) and how we can talk about them. I don't have slides today but we can start the discussion. Thanks, Bill -- Bill Mills Principal Technical Consultant, Linaro +1-240-643-0836 TZ: US Eastern Work Schedule: Tues/Wed/Thur

4 years, 1 month

1
0
0 0

Of capsules, signatures and device trees, TGTBTU

by François Ozog

Hi, Following the EFI capsule revert, here* is a contribution to understand the context in which we designed the patch set. (everyone is a commenter, please be mindful). The presentation explores booting, with more details for the Arm context, pre and post U-Boot. On Arm, pre-U-Boot is shaped after Firmware Framework-A and other interfaces. There is a similar approach in RISC-V with OpenSBI. There is nothing to agree on: many elements of the presentation are specifications for the Arm ecosystem. The purpose is to reach common understanding of those for rest of the journey. Careful reading is required because as we all know very well the topic, we may skip over stuff and miss key elements that may have changed since you last checked. So I'll attract your attention on: Slide 9: there can be multiple device trees in a Trusted Firmware FIP (nothing to agree on...) Slide 11: roles and responsibilities of firmware go far beyond booting and OTA. CoreBoot and SPL will have to take those into account in the future. Slide 17: there is a new boot flow based on "give-me-my-initrd" UEFI protocol Slide 24: when the firmware is stored on Secure Storage which is a common case for products, U-Boot/Linux have absolutely no means to perform the update (see notes for details). Slide 28: there are plenty of keys needed, the U-Boot and U-Boot updater can be different; as well as all firmware components. I acknowledge that the presentation is hard to read without enough speaker notes or myself talking to it. Let's say that I prefer to keep the ball rolling before we can actually program a call: could you send me in private message your preferred day of the week and best time (with TZ) for such a thing? Cordially, -- François-Frédéric Ozog *) https://docs.google.com/presentation/d/1AHTf9xMNqPXbiDLkBpoKt45UTjV8s34Jdtm…

4 years, 1 month

1
0
0 0

Re: Question about extension board used in U-boot

by François Ozog

Hi Paul Too posting because I think we also need to address this at a higher level. i think we discussed this topic quite a while back. I may be wrong but it may be Bill Mills who proposed to have an eeprom on the extensions that the carrier board can use to detect and fetch proper overlay. Another way would be that the contract between the extension board and the carrier board includes an i2c accessible storage to fetch an overlay that would identify the board and give all details. Bottom line, a software only solution seems not entirely satisfying. In that suboptimal case, U-Boot shall be able to assemble a DT for itself and another for OS (may be same in some cases) through scripting. And in this case, come your questions below . Le sam. 18 sept. 2021 à 01:21, Ying-Chun Liu (PaulLiu) <paulliu(a)debian.org> a écrit : > Hi all, > > > I have some questions about how to implement extension board usage. > My case is on imx8mm-cl-iot-gate. It can add three different types of > extension boards. > One of the extension boards is SPI extension which have 3 empty slots. > And you can add > some small boards onto it. One of them is a "TPM2" module. > > > My first question is if I want to use tpm2 in U-boot for measured boot. > How to implement this right? Currently I just modify the dts used by > U-boot to let it drive > the extension board. And let it drive the TPM. But it is not good for > upstreaming because > when other types of extension boards installed then it is not working. > Where to implement this? What is the best practice of this? > The second question is about extension manager. > I have read the extension.rst. I think I'll implement this anyway > because then > I can have a command to query what type of extension boards I have. > And if the extension board is the 3 slots one. I can then detect which > slot is the TPM. > I'll implement this anyway because the "extension" command is convenient > for users. > But it seems to me that it only solves the problem for Linux kernel. > It can apply a DTB Overlay to Linux DTB to let Linux knows we have that > extension board. > But it is too late for U-boot itself, right? > > > The third question is I'm also dong SystemReady IR certificate. That means > the dtb for Linux is directly provided by U-boot. We use U-boot dtb > directly to Linux > kernel. In this case, how to modify that dts dynamically to feed to the > Linux kernel by > the extension manager? > What is the best practice if I want to use U-boot dts for Linux in > implementation? > > > Thanks a lot. > > > Yours, > Paul > > > -- François-Frédéric Ozog | *Director Business Development* T: +33.67221.6485 francois.ozog(a)linaro.org | Skype: ffozog

4 years, 1 month

3
4
0 0

Today's Devicetree call

by Bill Mills

All, Today is the first day of the Linux Plumbers Conference. I suspect we will not have quorum. However since I did not cancel before now, I will be on the bridge. Thanks, Bill -- Bill Mills Principal Technical Consultant, Linaro +1-240-643-0836 TZ: US Eastern Work Schedule: Tues/Wed/Thur

4 years, 1 month

1
0
0 0

Native PE/COFF support for aarch64

by François Ozog

Hi, this mail just to inform you that there is a plan to support native building of PE/COFF for aarch64 and in particular to support SBAT for shim.efi. It is seen possible to deliver this by the end of October (this is just an early estimate). Cordially FF -- François-Frédéric Ozog | *Director Business Development* T: +33.67221.6485 francois.ozog(a)linaro.org | Skype: ffozog

4 years, 1 month

4
7
0 0

No DT Evo call Sept 6

by Bill Mills

All, Monday Sept 6 is a US Holiday so I am canceling the call this week. Thanks, Bill -- Bill Mills Principal Technical Consultant, Linaro +1-240-643-0836 TZ: US Eastern Work Schedule: Tues/Wed/Thur

4 years, 2 months

1
0
0 0

incompatible device trees between u-boot and linux

by François Ozog

Hi, Trying to respond to a U-Boot digest manually, please accept apologies as I don't know how to do it properly... >On Wed, Aug 25, 2021 at 06:43:23PM +0300, Vladimir Oltean wrote: >> On Wed, Aug 25, 2021 at 11:24:08AM -0400, Tom Rini wrote: >> > On Wed, Aug 25, 2021 at 06:12:20PM +0300, Vladimir Oltean wrote: >> > > On Wed, Aug 25, 2021 at 10:26:10AM -0400, Tom Rini wrote: >> > > > On Wed, Aug 25, 2021 at 05:18:16PM +0300, Vladimir Oltean wrote: >> > > > > On Wed, Aug 25, 2021 at 10:00:45AM -0400, Tom Rini wrote: >> > > > > > On Wed, Aug 25, 2021 at 03:58:10PM +0200, Michael Walle wrote: >> > > > > > >> > > > > > > Hi, >> > > > > > > >> > > > > > > I noticed that there is a fallback to the u-boot device tree for linux >> > > > > > > (esp. EFI boot) if no other device tree was found, see [1]. It seems this >> > > > > > > is working fine for imx devices, for example, where you can just boot a >> > > > > > > stock installer iso via EFI. It will just work and it is quite a nice >> > > > > > > feature as a fallback. >> > > > > > > >> > > > > > > Now for the layerscape architecture, the ls1028a in my case, things are >> > > > > > > more difficult because the bindings differ between u-boot and linux - one >> > > > > > > which comes to mind is DSA and ethernet. >> > > > > > > >> > > > > > > Which begs the general question, is it encouraged to have both bindings >> > > > > > > diverge? To me it seems, that most bindings in u-boot are ad-hoc and there >> > > > > > > is no real review or alignment but just added as needed, which is ok if >> > > > > > > they are local to u-boot. But since they are nowadays passed to linux >> > > > > > > (by default!) I'm not so sure anymore. >> > > > > > > >> > > > > > > OTOH The whole structure around a .dts{,i} and -u-boot.dtsi looks like >> > > > > > > they should (could?) be shared between linux and u-boot. >> > > > > > > >> > > > > > > -michael >> > > > > > > >> > > > > > > [1] >> > > > > > > https://elixir.bootlin.com/u-boot/v2021.10-rc2/source/common/board_r.c#L471 >> > > > > > >> > > > > > The U-Boot device tree is supposed to be able to be passed on to Linux >> > > > > > and Just Work. The bindings are not supposed to be different between >> > > > > > the two (except for when we take the binding while it's being hashed out >> > > > > > upstream BUT THEN RESYNCED). >> > > > > >> > > > > You might need to spell that out a bit clearer. >> > > > > >> > > > > You are saying that both U-Boot and Linux are allowed to have their own >> > > > > custom properties (like 'u-boot,dm-spl' for U-Boot, and 'managed = "in-band-status"' >> > > > > for Linux), as long as the device tree files themselves are in sync, and >> > > > > the subset of the device tree blob understood by Linux (i.e. the U-Boot >> > > > > blob sans the U-Boot specifics) is compatible with the Linux DT blob? >> > > > >> > > > I don't know what about the Linux example makes it Linux specific. But >> > > > yes, 'u-boot,dm-spl' is clearly in our namespace and should be ignored >> > > > by Linux. The whole reason we have the -u-boot.dtsi automatic drop-in >> > > > logic (as much as it can be used is that device trees are device trees >> > > ^ >> > > I don't think this parenthesis ever closes... >> > >> > Ah, whoops. Should have been "(as much as it can be used)" because it >> > does get #included instead in some cases, for reasons. >> > >> > > >> > > > and describe the hardware and developers don't need to write a device >> > > > tree for Linux and a device tree for U-Boot and a device tree for >> > > > FreeBSD and ... So yes, you're supposed to use the device tree for a >> > > ^ >> > > so I never get the answer to "the whole reason is...". >> > > >> > > > platform and it works here and there and every where. >> > > >> > > The fact that only Linux uses it makes it Linux specific. >> > > >> > > > > To expand even further on that, it means we should put 'managed = "in-band-status"' >> > > > > in U-Boot, which is a Linux phylink device tree property, even if U-Boot >> > > > > does not use phylink? >> > > > >> > > > We should be able to drop in the device trees from Linux and use them. >> > > > Custodians should be re-syncing them periodically. Some are, even. >> > > >> > > Are you ready to take up device tree bindings for PTP timers, PCIe root >> > > complex event collectors, cascaded interrupt controllers, things which >> > > U-Boot will never ever need to support? >> > > >> > > At least in Linux there is a policy to not add device tree nodes that do >> > > not have drivers. Is the same policy not true for U-Boot? At least your >> > > ./scripts/checkpatch.pl does have the same "check for DT compatible >> > > documentation" section as Linux. You might consider removing it if you >> > > want people to not strip the DTs they submit to U-Boot. >> > > >> > > And why do we even maintain the device tree bindings in Linux at all? >> > > It seems rather counter-productive for both ends to do that, if it is >> > > expected that the kernel works with DT blobs provided by third parties too, >> > > and if all third parties need to resync with it (there are other boot >> > > loaders too beyond U-Boot, and other kernels beyond Linux). Somehow it >> > > doesn't feel right for the reference to be the Linux kernel. Maybe this >> > > is something that needs to be brought up with higher-level Linux maintainers. >> > > >> > > I have no problem at all with structuring the device tree in the same >> > > way in U-Boot as in Linux, as long as that proves to not be a foolish >> > > endeavor. >> > >> > DT is ABI is hardware description and OS-agnostic has been the rule for >> > 10+ years. If that's no longer the case, can someone please tell me? >> >> So if Michael's board with DT provided by U-Boot doesn't work for some >> stupid reason like "Linux expects the pcie node to be under /soc", or >> "Linux wants all PCIe BARs of a RCIEP ECAM to be spelled out in the >> 'ranges' property, because it's too dumb to detect them itself", or >> something like that, I've got no argument against that, let's go ahead >> and resync U-Boot with Linux. >> >> But "DT is ABI is hardware description" is a pretty vague truism that >> does not actually help here. > >I'm saying that because it's what's been said for what feels like 10+ >years. I don't want to think how many countless hours have been spent >on that point at conferences over the years. It's not even a Linux >thing. I would swear you can (or could, unless it got broken) take the >same DTB for some platforms and boot Linux or FreeBSD or some other BSD >or maybe even VxWorks and it works. > > I cannot agree more. For historical reasons in the embedded market, the product maker was the board maker, the distro producer and the firmware producer. That led to a situation where the Linux kernel developper was stating the hardware description and that led to...problems. The best analogy I have to describe how wrong this is: As a French driver, my Device Tree description about the car is that the steering wheel is on the left hand side of the car; when entering an English car, I just complain that the wheel is not where it should be. Now the value chain is going more "mature" and your may end up booting a Fedora IoT edition on a bunch of platforms that have been designed to boot any distro; and the Trusted Applications may come from the OEM and not the board maker. Organizing the software value chain along side of the hardware value chain (Silicon provider, SoM provider, Carrier provider, Integrator, Car manufacturer for instance) need DT technology and lifecycle re-boot. (softwsystem up firmware such as Trusted Firmware, boot firmware such as U-Boot and operating systems) Some elements of discussion can be found here: https://linaro.atlassian.net/wiki/spaces/DTE/overview https://docs.google.com/document/d/1CLkhLRaz_zcCq44DLGmPZQFPbYHOC6nzPowaL0X… If we take the https://www.solid-run.com/arm-servers-networking-platforms/honeycomb-workst… board as an example to stay on NXP SoCs: what is the ideal way to deal with device tree should we start from a blank sheet? A key element are SerDes pins: from a SoC perspective they can be made PCI lanes or Ethernet lanes. This is chosen by the board vendor. An operating system should never manage the SerDes, it will see either the PCI lanes or the Ethernet port (not exactly true yet because of DPAA2 - but let's keep it high level). It is the responsibility of the firmware to actually match the SoC configuration with board layout (PCI slot, PCI device, Ethernet port). In my mind, the ideal situation is: The board vendor takes the SoC DT as input and applies fixups (at design time or runtime) to produce the board DT. The board DT should be independent from the firmware stack (Coreboot, TF-A+U-Boot, TF-A + LinuxBoot) and the booted OS: it is just describing the hardware!!! Firmware elements can still apply fixes at runtime: TF-A role is to pass detected DRAM, U-Boot may have a parameter (saved as U-Boot variable) to define active cores and ensures the DT is fixed up to match that desire, OP-TEE can expose the amount of Secure DRAM it has carved out through FF-A API. >> Will you accept device trees with devices for which a driver will never >> probe in U-Boot, > >Yes, I will absolutely take device trees that have devices we don't need >in U-Boot since the point is, and many SoC vendors are doing (and the >ones that aren't are, I am not happy about / with) right now. > >> and will you remove the checkpatch warnings about those, >> to not discourage people from submitting them prior to the actual public >> review? > >With respect to checkpatch.pl, maybe I'm just missing the line in >question? Or maybe it's a kernel-related warning we need to disable in >our .checkpatch.conf. But I don't want to side-track over this part. > >> If a U-Boot driver will be written for a device that does not have a >> driver yet in Linux, then the Linux driver will be written but with >> DT bindings incompatible with what was established in U-Boot, will you >> wake up the U-Boot developer from the grave and ask them to resync the >> driver to follow Linux? Or will you accept drivers at all for hardware >> that is not supported by Linux? > >What I've said for years (but yes, I've missed changes, maybe the yaml >dt binding stuff would help so I could make CI fail or at least require >manual override?) is that U-Boot will take immature bindings but it's on >the developer to re-sync once the bindings are fully reviewed. This is >to help with the chicken-and-egg problem. But old bindings are not >intended to be supported, once it's finalized. That is part of the >bargain. > >> I also think there are various degrees of what it means "to work" with a >> device tree provided directly by U-Boot. Distros like Arch Linux ARM >> have a package for device tree blobs, and it is expected that these are >> updated by the distro, and U-Boot just loads them. As Michael points out, >> the DT provided by U-Boot is just a fallback. The OS should boot to >> prompt and have a network connection to set itself up properly again. >> But we need to draw a harder line on what we _actually_ desire to work >> beyond that. > >Every distribution has a package for device tree binaries, because >that's how you get a device tree on the still vast majority of platforms >that don't ship one in-flash (RPis being the modern exception) and to my >knowledge none of them are happy about having to build and pass and make >sure the right one is used on a given board at boot. So yes, U-Boot >being able to pass a device tree on to the next stage is one of those >things to help everything Just Work and be boring. > >-- >Tom

4 years, 2 months

1
0
0 0

systemd's sd-boot: devicetree command using EFI_DT_FIXUP_PROTOCOL

by Heinrich Schuchardt

For systemd's GRUB replacement sd-boot there is a pull request for adding a devicetree command. The command calls the EFI_DT_FIXUP_PROTOCOL implemented in U-Boot for fixing up device-trees. Best regards Heinrich sd-boot: Support installing new devicetree https://github.com/systemd/systemd/pull/19417/commits/3c717de49ec35c2684653… EFI_DT_FIXUP_PROTOCOL specification https://github.com/U-Boot-EFI/EFI_DT_FIXUP_PROTOCOL

4 years, 2 months

1
0
0 0

No DT Evo call for Aug 23

by Bill Mills

All, I am on vacation this week and will not host the DT Evo call. See you in 2 weeks. BIll -- Bill Mills Principal Technical Consultant, Linaro +1-240-643-0836 TZ: US Eastern Work Schedule: Tues/Wed/Thur

4 years, 2 months

1
0
0 0

EBBR Cancelled for 16th Aug 2021

by Grant Likely

Hi all, Sorry for the last minute notice, but I need to cancel the EBBR meeting due to a conflict that I cannot move. g. IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.

4 years, 2 months

1
0
0 0

eBPF as replacement for UEFi EBC and ACPI AML

by François Ozog

This: https://linuxfoundation.org/press-release/facebook-google-isovalent-microso… Following earlier addition of eBPF in Windows kernel: https://github.com/microsoft/ebpf-for-windows Makes me think that the crazy idea I talked about a couple of months ago (subject of the mail) may not be that crazy…. Cheers FF -- François-Frédéric Ozog | *Director Business Development* T: +33.67221.6485 francois.ozog(a)linaro.org | Skype: ffozog

4 years, 2 months

3
6
0 0

DT Evo call today

by Bill Mills

All, I will be on the bridge today but I have no topics queued up. Heinrich will not be on the call. We will be looking for a new time for EBBR/DT Evo. Thanks, Bill -- Bill Mills Principal Technical Consultant, Linaro +1-240-643-0836 TZ: US Eastern Work Schedule: Tues/Wed/Thur

4 years, 2 months

1
0
0 0

[EBBR PATCH] Relax Update requirements by dropping ESRT

by Grant Likely

The ESRT support in U-Boot is immature and not ready for mainline. Temporarily remove the ESRT requirement so that platforms can meaningfully conform to EBBR. When ESRT functionality has matured this requirement will can be brought back in. Signed-off-by: Grant Likely <grant.likely(a)arm.com> --- Hi all, As described above, I'm proposing ESRT gets dropped for v2.0.x series of EBBR, with the plan to add it back in ebbr-next. Once there are U-Boot releases that have a solid ESRT implementation that works for fwupd, mender.io and possibly Windows Update then I would like to bring it back in. Here's the pull request for the change in github: https://github.com/ARM-software/ebbr/pull/86 Thoughts? g. source/chapter2-uefi.rst | 13 +------------ 1 file changed, 1 insertion(+), 12 deletions(-) diff --git a/source/chapter2-uefi.rst b/source/chapter2-uefi.rst index 092fd1d..4c4cacb 100644 --- a/source/chapter2-uefi.rst +++ b/source/chapter2-uefi.rst @@ -467,9 +467,7 @@ EBBR platforms are required to implement either an in-band or an out-of-band fir If firmware update is performed in-band (firmware on the application processor updates itself), then the firmware shall implement the `UpdateCapsule()` runtime service and accept updates in the "Firmware Management Protocol Data Capsule Structure" format as described in [UEFI]_ § 23.3, -"Delivering Capsules Containing Updates to Firmware Management Protocol. [#FMPNote]_ -Firmware is also required to provide an EFI System Resource Table (ESRT). [UEFI]_ § 23.4 -Every firmware image that can be updated in-band must be described in the ESRT. +"Delivering Capsules Containing Updates to Firmware Management Protocol." If firmware update is performed out-of-band (e.g., by an independent Baseboard Management Controller (BMC), or firmware is provided by a hypervisor), @@ -477,7 +475,6 @@ then the platform is not required to implement the `UpdateCapsule()` runtime ser `UpdateCapsule()` is only required before `ExitBootServices()` is called. - .. [#OPTEESupplicant] It is worth noting that OP-TEE has a similar problem regarding secure storage. OP-TEE's chosen solution is to rely on an OS supplicant agent to perform @@ -488,11 +485,3 @@ then the platform is not required to implement the `UpdateCapsule()` runtime ser during runtime services. https://optee.readthedocs.io/en/latest/architecture/secure_storage.html - -.. [#FMPNote] The `UpdateCapsule()` runtime service is expected to be suitable - for use by generic firmware update services like fwupd and Windows Update. - Both fwupd and Windows Update read the ESRT table to determine what firmware - can be updated, and use an EFI helper application to call `UpdateCapsule()` - before `ExitBootServices()` is called. - - https://fwupd.org/ -- 2.20.1 IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.

4 years, 3 months

2
2
0 0

Today's DT Evo call canceled

by Bill Mills

All, It appears we do not have quorum today so I will cancel. I am thinking of sending a doodle poll for a new time for this call. What are peoples thoughts? Thanks, Bill -- Bill Mills Principal Technical Consultant, Linaro +1-240-643-0836 TZ: US Eastern Work Schedule: Tues/Wed/Thur

4 years, 3 months

1
0
0 0

Re: [TF-A] Proposal: TF-A to adopt hand-off blocks (HOBs) for information passing between boot stages

by Julius Werner

> > Thank you all for your feedback. > > It appears that in theory we are all happy with using bloblist with few > implementation details which needs to be taken care of during > implementation. > Just to clarify: are you using "bloblist" as a general term for the concept of a simple linked list of tagged data blobs, or to refer specifically to the U-Boot implementation with that name? The existing TF-A implementation (bl_aux_params) is basically identical in concept to the U-Boot bloblist, but not binary compatible. Are we talking about just keeping that, or throwing it away in order to reimplement the exact structure U-Boot is using? (I would prefer to keep the bl_aux_params as they are to avoid disrupting existing uses, of course. Making backwards-incompatible changes to an interface that passes across multiple repos and firmware components is always a big pain.)

4 years, 3 months

5
9
0 0

Verified Boot for Embedded (VBE) proposal

by Simon Glass

Hi, This has been discussed in a few forums and the main VBE doc has been presented in a U-Boot contributor call recently. I have now written up a proposal for the mechanics of bootmethod / bootflow for review. Think of it as a newer version of Distro Boot. I'm not sure how to format it for the mailing lists, so please see : [1] VBE doc with minor updates [2] Proposal for the bootmethod/bootflow part of VBE Please let me know if you would like to comment on the source docs [3] and [4]. Regards, Simon [1] https://drive.google.com/file/d/187z5Mzdv2dnjUosmdh5dljVz7Jlydn7u/view?usp=… [2] https://drive.google.com/file/d/1TmbDachP8bnq0xffFsKL_oHYfeaYV0QK/view?usp=… [3] https://docs.google.com/document/d/1fuv12M7Z6yFlECD9xR2Z1nzKo72SL8Z3hrv_fxZ… [4] https://docs.google.com/document/d/1hn-0GaJBJqZ5SxxdS_g4XMqLHigNjTrzYD5wjnQ…

4 years, 3 months

1
0
0 0

DT Evo call today July 12

by Bill Mills

All, We have our normal call at the normal time and place today. 3 PM UTC / 11 AM US Eastern Zoom: [1] Meeting ID: 961 7042 8801 Passcode: 8250 Last meeting was on June 14. Notes here [2] Today I would like to start with Heinrich's DT signature patches / proposal if he is available. [3] (I have not heard from Heinrich today so perhaps not.) Other topics welcome or we can cancel if Heinrich is not available. Thanks, Bill [1] https://linaro-org.zoom.us/j/96170428801?pwd=elBJNFdVMFJub0UzanFUcVQxTHBqdz… [2] https://lists.linaro.org/pipermail/boot-architecture/2021-June/001877.html [3] https://lists.linaro.org/pipermail/boot-architecture/2021-May/001807.html -- Bill Mills Principal Technical Consultant, Linaro +1-240-643-0836 TZ: US Eastern Work Schedule: Tues/Wed/Thur

4 years, 3 months

1
1
0 0

[PATCH v4] Add RISC-V support content to the EBBR specification

by Atish Patra

This patch adds all the required content to make RISC-V EBBR compatible. The additional content is not a lot given that we just need to update the architecture specific sections for RISC-V. Rest of the document is ISA agnostic anyways. Signed-off-by: Atish Patra <atish.patra(a)wdc.com> --- source/chapter1-about.rst | 86 +++++++++++++++++++++++------ source/chapter2-uefi.rst | 41 +++++++++++++- source/chapter3-secureworld.rst | 12 ++++ source/images/riscv-sbi-intro1.png | Bin 0 -> 11926 bytes source/images/riscv-sbi-intro2.png | Bin 0 -> 23280 bytes source/index.rst | 3 + source/references.rst | 6 ++ 7 files changed, 130 insertions(+), 18 deletions(-) create mode 100644 source/images/riscv-sbi-intro1.png create mode 100644 source/images/riscv-sbi-intro2.png diff --git a/source/chapter1-about.rst b/source/chapter1-about.rst index 52e61e80b7f9..5097e85ea648 100644 --- a/source/chapter1-about.rst +++ b/source/chapter1-about.rst @@ -158,6 +158,8 @@ easily meet the stricter BBR requirements. By definition, all BBR compliant systems are also EBBR compliant, but the converse is not true. +This specification is also referenced by RISC-V platform specification [RVPLTSPEC]_. + Conventions Used in this Document ================================= @@ -181,14 +183,12 @@ This document uses the following terms and abbreviations. .. glossary:: +AARCH64 +------- A64 The 64-bit Arm instruction set used in AArch64 state. All A64 instructions are 32 bits. - AArch32 - Arm 32-bit architectures. AArch32 is a roll up term referring to all - 32-bit versions of the Arm architecture starting at ARMv4. - AArch64 state The Arm 64-bit Execution state that uses 64-bit general purpose registers, and a 64-bit program counter (PC), Stack Pointer (SP), and @@ -197,10 +197,6 @@ This document uses the following terms and abbreviations. AArch64 Execution state provides a single instruction set, A64. - EFI Loaded Image - An executable image to be run under the UEFI environment, - and which uses boot time services. - EL0 The lowest Exception level on AArch64. The Exception level that is used to execute user applications, in Non-secure state. @@ -218,17 +214,59 @@ This document uses the following terms and abbreviations. execute Secure Monitor code, which handles the transitions between Non-secure and Secure states. EL3 is always in Secure state. - Logical Unit (LU) - A logical unit (LU) is an externally addressable, independent entity - within a device. In the context of storage, a single device may use - logical units to provide multiple independent storage areas. +ARM +--- + AArch32 + Arm 32-bit architectures. AArch32 is a roll up term referring to all + 32-bit versions of the Arm architecture starting at ARMv4. - OEM - Original Equipment Manufacturer. In this document, the final device - manufacturer. +RISC-V +------ + HART + Hardware thread in RISC-V. This is the hardware execution context that contains + all the state mandated by the ISA. - SiP - Silicon Partner. In this document, the silicon manufacturer. + HSM + Hart State Management (HSM) is an SBI extension that enables the supervisor + mode software to implement ordered booting. + + HS Mode + Hypervisor-extended-supervisor mode which virtualizes the supervisor mode. + + M Mode + Machine mode is the most secure and privileged mode in RISC-V. + + RISC-V + An open standard Instruction Set Architecture (ISA) based on + Reduced Instruction Set Architecture (RISC). + + RV32 + 32 bit execution mode in RISC-V. + + RV64 + 64 bit execution mode in RISC-V. + + RISC-V Supervisor Binary Interface (SBI) + Supervisor Binary Interface. This is an interface between SEE and supervisor + mode in RISC-V. + + SEE + Supervisor Execution Environment in RISC-V. This can be M mode or HS mode. + + S Mode + Supervisor mode is the next privilege mode after M mode where virtual memory is enabled. + + U Mode + User mode is the least privilege mode where user-space application is expected to run. + + VS Mode + Virtulized supervisor mode where the guest OS is expected run when hypervisor is enabled. + +UEFI +---- + EFI Loaded Image + An executable image to be run under the UEFI environment, + and which uses boot time services. UEFI Unified Extensible Firmware Interface. @@ -240,3 +278,17 @@ This document uses the following terms and abbreviations. UEFI Runtime Services Functionality that is provided to an Operating System after the ExitBootServices() call. + +Miscellaneous +------------- + Logical Unit (LU) + A logical unit (LU) is an externally addressable, independent entity + within a device. In the context of storage, a single device may use + logical units to provide multiple independent storage areas. + + OEM + Original Equipment Manufacturer. In this document, the final device + manufacturer. + + SiP + Silicon Partner. In this document, the silicon manufacturer. diff --git a/source/chapter2-uefi.rst b/source/chapter2-uefi.rst index 53c962ab5c25..18a9b5404cba 100644 --- a/source/chapter2-uefi.rst +++ b/source/chapter2-uefi.rst @@ -209,7 +209,7 @@ Resident UEFI firmware might target a specific privilege level. In contrast, UEFI Loaded Images, such as third-party drivers and boot applications, must not contain any built-in assumptions that they are to be loaded at a given privilege level during boot time since they can, for example, -legitimately be loaded into either EL1 or EL2 on AArch64. +legitimately be loaded into either EL1 or EL2 on AArch64 and HS/VS/S mode on RISC-V. AArch64 Exception Levels ------------------------ @@ -232,6 +232,45 @@ UEFI-compliant Operating System. In this instance, the UEFI boot-time environment can be provided, as a virtualized service, by the hypervisor and not as part of the host firmware. +RISC-V Privilege Levels +----------------------- + +Unlike AARCH64, RISC-V doesn't define dedicated privilege levels for hypervisor +enabled platforms. The supervisor mode becomes HS mode where a hypervisor or a hosting-capable +operating system runs while the guest OS runs in virtual S mode (VS mode) as shown in below figures. +Resident UEFI firmware can be executed in M mode or S/HS mode during POST. However, +the UEFI images must be loaded in HS or VS mode if virtualization is available at OS load time. + +.. image:: images/riscv-sbi-intro1.png + :align: center + +Figure1. RISC-V System without H-extension + +.. image:: images/riscv-sbi-intro2.png + :align: center + +Figure2. RISC-V System with H-extension + +UEFI Boot at S mode +^^^^^^^^^^^^^^^^^^^^^^ + +Most systems are expected to boot UEFI at S mode as the hypervisor extension [RVHYPSPEC]_ is +still in draft state. + +UEFI Boot at HS mode +^^^^^^^^^^^^^^^^^^^^ + +Any platform with hypervisor extension enabled most likely to boot UEFI at HS mode, +to allow for the installation of a hypervisor or a virtualization aware Operating System. + +UEFI Boot at VS mode +^^^^^^^^^^^^^^^^^^^^^^ + +Booting of UEFI at VS mode is employed within a hypervisor hosted Guest Operating System environment, +to allow the subsequent booting of a UEFI-compliant Operating System. +In this instance, the UEFI boot-time environment can be provided, as a +virtualized service, by the hypervisor and not as part of the host firmware. + UEFI Boot Services ================== diff --git a/source/chapter3-secureworld.rst b/source/chapter3-secureworld.rst index 9c51bca24f33..d6bfbd322837 100644 --- a/source/chapter3-secureworld.rst +++ b/source/chapter3-secureworld.rst @@ -27,3 +27,15 @@ Platforms without EL3 must implement one of: However, the spin table protocol is strongly discouraged. Future versions of this specification will only allow PSCI, and PSCI should be implemented in all new designs. + +RISC-V Multiprocessor Startup Protocol +====================================== +The resident firmware in M mode or hypervisor running in HS mode must implement +and conform to at least SBI [RVSBISPEC]_ v0.2 with HART +State Management(HSM) extension for both RV32 and RV64. In addition to that, the +firmware must ensure the following condition before jumping to the UEFI +application. + +The device tree must contain a property named **boot-hartid** under the */chosen* +node. This property must indicate the id of the booting hart. The corresponding entry +in the ACPI tables has not been defined yet as ACPI support in RISC-V is under progress. diff --git a/source/images/riscv-sbi-intro1.png b/source/images/riscv-sbi-intro1.png new file mode 100644 index 0000000000000000000000000000000000000000..953e6529912af2e5b774ec6033abd856262651fe GIT binary patch literal 11926 zcmeI2bySq?*Y8IqRYE`{1e6#+N@@@!q$P$%q!r1bBnPAvL68t(2<h&WE<q$DMH+^Z zk_Kspe6R8OJ<t0*=l7no&imhc);cT}_nMpgy61|0?fu=KYrj=fkte!La~T4G5Gg#A z(SSfMnm`~IE)!e?cf>u4Xdw`8Lj@U0EjOd}#4B!ELp29F(3p->sjHT^5VvL+rQYMQ zU#RI|uLv^XoMK~GY0|TeDt`2!;QBSSLB`8b`W!KuMZUPWmnxDT-wt}RPRL4dD$~+8 z`jYe}0gf-B=VqMH*qE-zzWE}IKNfSIbdItpM1DGsOFU>CNlKJ40G)umB$Oh;UQ>ui znZf0W;wN|#KK4HTAD=JVkbzHkabbku^5J4U4!9`4f@24e^%;5rTr{7cz~7hbB?{p3 znc{zXGkrgnOt2sXt{R$}L)$mDKSOOLbyPbgxF3+>;8x`f*Gz5%1qF3>cIM^ft*js_ zXx`A5DCmEN-X^$=t6u0-V_;@xwy>~Z8a*G05WFh(1XcMGE=5XlIZaPTL&NdM=U4sx z8jgx_nt4NacVEKM7h!~wYHWcBLv?j^2M1nZmL7I1soY1+-!H+eu8cC{NT%M(bHT;M zosSgAcCIn7tI{uglZtQCPg$Zs;43AmwK`m&TV^|6Ia!As@GGsaH~7cDOB9$SEm7M@ zA3wG9o=Y(57DaARZpQR^S@MO9O5Rkf+12l(cJD$~dF5{92$R_kLopVTp_MpX<|rd% zpLI!vRcPpCt+XH7YlHsVL0k9C*2sfH2;t<$0d1~MrUqfW7bSbbEi>TT*DYB`(dAQe zPf?YmIWkT8fm4^3j%n{((R+n1C0Zz3#vO_Xw8f_nKW4>QW_g0bJ26LzmOCzVCW(27 zBz`mc^ul(m)T}LpdU<*I<HwJ$@rclM$l_?_Y5pKJQ7F_L%-Y~k;qpn)b&gu+WvO(p z<9)*h&zjP{_3^4ODqhChw{P?E^78P6Ri^0=a$l@qe;8H1>~!?=jm3V7>tWPnF8rEp zWN~KoGRK#?1ESz}F3u}t2i?iEf(RQF*+`Vk=@PO0N+x3`_0$~xmJ`fM+M(=`Q|Zmx zdh1;u@z~Nb#YQrsV(WM3&BjbeSJM&+o!VsPuVxg%T4Eh|Yyy|=-{a(E;rwVg|3h8D z-m58H0XI`!C=^+~DKqYpVIg;VxZx*ZHxlhHC7%{$8xeq3T(CH?L8Z%wiNDxgLRVPV z#3v{Ftc`vg$~ViTy88rT(Vy#Z@8+PG^V0ViV{Zkb6~y9dB62F#ROGesi<CFs>Hhxy z*REZAjZgA(^Pt*c&N5JiEetLH8TwkQ??6I!dg4QXh35UAI=$-mj}`~Y)f=KMYh%kX zT^Uu4jB}}WU(%$G)7xCX_^d-ooSfSqKK^C5y&u$~ea@_!H=VqtIlE{JpK`c^IVI;M zH_pgR+f2+`3mevEG!6PPlQWsj#VxGldQTvGzWY~^@Z0=zR`=tM5BL^pLTQ_%^qF`r zb3To{nAe>dq4={|T*1|O$==dxfe#N`pyPjx`*?pneSdi%dvDTd@f#S4tgNg9l)*<` z{TdRvHY#aY+xlbUd#ZHqaT7kn^O*i!+ROo&buo|q=Lf%Lng`d>6&%QQrY9)LJMv$@ zeYuuYz86o?8xrK{5A{d087mPgN&Mgz%%Kgx-+h+zk<MX#Z*aKx7QABBqccNnknw1b zim5`paJ|=h+u{{8=BV3mfx#i>rrv&f!UR$9TU5Hh>yyKJ?^CrLg@5(f^C@a<Y;59g zL{wB}@8FsDEo2RRz!s4#>K;+Ys*;exjaxHbWO#orr;@YhYfV0@sAz&bwtr1Iei9uF z_3iZx*5U0JnAoN8nhhJCw5wMuq3*7{VaY@@2v#<yEeI~}MWN>#y=Vnj=rQyBqP{o6 z@7>h%^%iR*fNS_W_$2TW@vYL&M9{6oum~-1uN%3Ih<~etZWmsnK#*}+pd{5Wv6N*B zwO6uFQ^qfFN!i}^X``zxc;VK#?i_`ZC0gm%{ZZst>ZYY1tvVdeBwsylietk^wa|So zY|M4}+X?=?S9KzD;rw@<;&=HFHY4bHk7)-T9@z4dM>e$4LrYFvG~ZZFH;mV$M4|Ug z<|_?<XgIK=pjwQPe85%W%aZ~Wm)YOSp-rFbcxScRY<F@LXG|WAG@fP3TGGSAyStSQ zABi1Fmu}qAv`;dy*4(@;{f1yCS4g#cq}aH35{jLvY?9tLEX)C|Ei5+@hkZNltEe+` z^7_kZu7tE4eazbf%h+dsuVT*lh30rpR>>$%>Q0Rxi_ZuT+Xy*j)@Em*cTcCZ&Q$Un z62qS8p~#c7x78LSY6;(7^WpgW$}rjTRdYxTn81XQ8wTh?Fa;aajg6(H5e@ICczqcu zbTq}5NIGh}80NR-E4X8VX^u!7b8mM`v`>C~Ca<MM;nnQAG2y;4$bNLjWmJDpNGJv@ z@6{n3#A=X-x0sjyUU6?pn%oqNsJ&m-AT{BbYComUsglT*sRiZx*j=_A_9ZQiF2*pt zB<H<>u!D=k;GV?7?Xyw7pM5dyHRO-h91V<)yA{WU<n=^c$VWB@7?1qWI&Qni&)odw z_0`_W?9!7SOw?vn5ofLy1SRV{*lM?yUqYplVjV9Ya=}8c8`|q()XS2us;HRuI<<H( zD=<zgpmmJbwaVS-%Db)iF)>vxtB-60AJ;ltEq+V1Vq;~s0PeQ4bhn3I?1eJ|aVN2& zprBxD?&~JHLaC~p3mC`}h47*IQDs~2WI+p<_~2QAI1LMC2UQ-D%{V4wRd{bme1lY1 zIsb15y7rca7g}KGfzfA}JVq4nFxws@2Yn{!qeoTR>h|Bp*C^`VwL|mC*AY`%7oGZ( zT7;bVzn^m7+NrXVR?H$(cwC9vAZf2(;PG>Ae?H}D+<!k{uLJlDfqrN&z6%&(KlC-# zh4`xqTO>)mb`})A=rox*TfU`NAbbwp6)>~)8%`%3q{NLExENoKoA=bR6HQPke>;ck zGRz7Ggi$SNY^VgW@UKAK1Pujo{X)FoEj9|AKbqN)`KG9m+Vm6r6<hzkL3mu;iaUk@ z0`ZNluD&;#anYuq+pcPS!7(Z_lH&UH>l73P7a%X6_^r@t3+K6LZRKp_X8w-ynQ3Wh z1qC5?#X-Tr%QR>_2&9Q%NGQ)yYc*$9eNt2D>C%PxawVV~+}+)+tk@03oRcen`18G% zXRo!8Gpyd4UYi~L1*-{S^78J~eoR|^vr%HeJp%L<fm}|5dQ`fe{PnPvB)!YhB%>LI zdHMOvL8%@fSWeg>g&`0eCavk5PW8g{AbA&6E`OjO{uFI5eMaXbLoY%uUIn`B>}e3b z;AIHGU7*+wU&Y16T_qV*`wD@)!U4}qs6Bq%?z8JhvqA;A_5LON;tzbN@`ukb1tOQL z5YmT0>-`e6_?Docpzt(41J7mXD&)auNIcHx5u4GHS7H&VMR6A(1XS2J$DN#beu8W0 z^ni|C1**`q6PRA2O7;{qS4mQk1VT!MeHpt_G-sa&v-IEYNCyyW!!-yl=ea{(eulsZ zUv56HF(3|*7F4*+_D~uDgWQ5(`*q*EH>ps>lujVS{1W6M1PrVp9l1G`CpIkkpAQMO z(+!bAZhgi!5Lz3b&w|I}k<ceZM^n<%(=#w6hllqy`uGUuD*Q5d6k5qwhumy9-l$t< z0}HwIoR6PhK9nXC>Mq?_<vr#^>Wl3#EiC`!i~kjNr=#6v`7rvzoE$c8?xg!jI~A38 zaU;y0_OP9wJxpbdd&Bxlii+P7gq?t_aakQEVh}gz*}=0RJER9)^=>wg>h0`IQ?42> zBreAhhsD#~clGo4-&-9iuC3LhE4%Qw2g5=`GrQH(<!mQwD}eN)?&;~t>=U#ewhV{I z!w4tuOB(x}?j3H;-FI1;cNXF2=f@7>VA>}+VAM*WT+n8^!K)?k8X+O!+qZ9l<>^=2 z^u75u!d3ByGV2%d*jte$<TvkrsH&Q6NGD+Ved?3P9_EE5nL<~?RvYcg%XixOkG7ze z3x;*BUfUh4y-8wS(nqI*Rb20`y)*~Oz-N0)?Wwp}ev49;yI>qQ@4FW4huw+cHdJh) zwX2rwV&FHwDx2hU=DtBp&F5F^gXuC>NftjHvq)AKhyN@$HOd|q+r$`u_(Sc8KmP%# z*#?4#?I~t^LGL0DAJ9)gMim*>Mb}|4n6K~X^gq22tiZoYm7;Ha30-BcN*F*)r-ARR z9LtxPl9G~^<_rDKQ~&GYf@-2jRKTuBzP&yJ6Qt(?u%+qmc_*@|?(-#2o4+(SkI@E} zl-xZdM@B_O0m+e`YTtl)Q)|lA*VjiJ@EZEK-p0V-=EA^QURIV|ql%n8>?$?0?EczV z^JH@XiDrzs3+P>`{j@j&#kE`qoNl_SmR4kR!2>*H!u@k3RdET>J`)SJ)Z@cn2_888 zHp22d_T<|cz`nARUfdBEPl{ge&%E-L!DEeAUC7IGy<#NC>vV6#T8W58Adrp)2CGy} z7AI#_;pE~PlG`(H{>5*ETl$pi6_e?cBRg&FsD^wNj*QGq!mhD-Y|N`!Oj1b{`IyQ# ze<Ye`T+?9d6#@~!=5XH9`P-ppz%;+?^wA+D&QF};48TB8XfTlM)J&xqL<e`w>XgT3 zPkZ|lrrYgW<?8P&CwE+63a*(XE9#UVH|`khmUV#dxZJBbY~OggU%zPlcvZ)8xKdmW z5_bu>j>c4NOq=8Oyn-I={(b%6iRaBk6l2v6Oz?UW6BCt$d#Osrt?RBk76A?p4tnoT zw8x0f=GK6{kKpf>kc_R}`4wMudVC<{Arklg{e$3v3yue$4yFc*zZVqF>``5?BnCd@ z<ju!Uk4*h4I~1#`_rWBRgkJPv8AqHs*axA}hUJ#w(L2NX_Ug=nf>8}q4qxeNGkZyZ z)CNmy?77uCR%S8neQc{p#cSdRi%UvU30IXk)e3%(0@~Ef+<arAW@j*069`xRdN&6< zyQ1inLzK%%J4bQ7l#%ziZPof@U5x8n*AQq7TGIsaeb(t`cPiXxw@==gBgHsXcl_wD zURESp&Mz)5&d-CT=@SUQ3T0t28!dTS+;~<io?TlT7ZRHI46MabDv89&ucEq*+SwqE z1QiQ8xi+tZNu5WJvO>8HYs-Nne9<MmiQy0i)(;(EY3%Ooq>=DG0UM!Qon@?c^}62p zByt)kn6K^a4@Gjicp6VwB`|~}UOPQPRny)cb*}4{_Q$)+WsVDqr<Z%s|7nHX2-Z*& zkW-dRIclyi&_EvSfMouMkluGF*fOp5UpXI_JfOP-5xDf*twx=NQ~D$!$IN0r9j)Yp z$dKZWb%k_?Ro#$sVXU(!j_F!>eorf4_vA>FD0d9<5`uNysx#AyS}7@U_z;4t*ry^{ zl%jK>>^SExk01{qSjUllQ^I><*?C1QqLxBy2gD%Y_aMfo<mBQig_S&N$jg`5O<O!x z^7J)`8~Nq{o#0`+^s_sbpPik3Eqt)#y!XZhNCQ52jN!xGrx(YW1qXQ{4{lumZzrLk zq%4JNNQ05!kYUZ|0UQp0gJ0%TM*txp#r7zGoqmw*U-5xq-%TwY^!(C)8*=nhG75*E zms5dA$D5m*i@;oQ2SDI`Om9=8B)|zZe$VSBfo=d!Mq68ZXlUr~#DI+K3lJ9ICng4^ z8}Scb@bF<^L`1|TeB#LH=m^dJ1dYEZ{Zdj`DRScm3j8Ai`VR;}MwXV6@-iXfXC!w_ z*Sc%|-w*_NB?ufg<CV4t8<PU5oIE@_`M*^OE>;-52g2w9DLSKE;P#;9&P#aZhiEa5 zH|J{QN@O!L+Z+`!y^owcIom|~HS|tGsw-m_f6+0*<P4&rN6tD<aaqIT7R7vab~{qx zah$JFtT`Rx?;U(nvT}RS%*GcH<t&y8@uD94Yy7>U0~OXf*#p#cbY9DuG5f0{s&Ist z-kj+SYl+$Jcf)PvDN%#^I^`4V{KIh#hk?7)n4#W5W#gca@5%$sRU-3G_uRHRXwyu~ z+&n%WPD-cATL>0fAu_#SsM4AtCmGLz=YDT>8z1p|F)=WBljd&$A`+Esr4XOMXLfmg z0Yq=$Q%{F<j0^RvxOsT~^UHC|oufrVPhY(4oz5lEsIyn4KA200;BC`4(8=f`T6fnB ztqSyXrQkgMX&JN@LKc3_WD13d>z$u#CNUA5g1)Za=I63PQBzZw$ABQEiC^Co@Gtz) zFZQt5=u@T57~iwDklo$g(a}-K*Lc98=qP1vQp>W@laup5|M6gDW!TxfHR!rwt#fK$ zgV!;)af5-d?s%0w1FwmUl$4Z-38UAJB}c97I^&3CeNu{?)l$W_0C#L^+YQy2tr>}e zb-u=A&KKsvRN2*{hTZP<l4rFwCQpp7-QdXPG5uKFlgD7Pe<RStE{X(Z<=DIxlbk~r z6hsl5*uwL*v!=lN8j+XUwD%r6rbK|<h?zBT)raluZ1E_xVYhlh0j-UGincv14PpyO zX^jzMJ*!ctTOZPX_wCr$%Wo}U$w+AO<aucOd3dz|oL;sq(@~>gKNEc$*OrKKQBfbU zp%w0xX<$*M9Q$kOQ<`+%#Lz^3tMU2Zt?6n`L8Aob<YY~8y2yxUA6?`yD!i20M`;{d zt`LMTjXg@z023Qs-Z40+h3?8PZg|n3p%4$V6>*sLi%We?Vzs-}2b35PCtS##ot<R^ zFw=49OL$j*D2oV!FkTD9!O?aXPp+ily62~zZ}%gWEq*DH41P~8`10jTU|?X=Yy6!9 zkBMpr0U6dvkoNsCwd^bkNo{obgNOT3d@2<Yb=`tG9d3PytxLTIPD8;J>G?i9!F*AD z2ag_R*SPrIWO3@}xxaVeqkH(_TJc`I+Ye$)tYwF}Fv{a(k#Di7ZbhE@lzW*;IqaKb z;`wow+b;ds`gEOZq^t7aI#;gh0bbXgqaLq{bmai07Os&lrrEw5(2gJPtygz^_#VsA zH#Sx((XvpAafwedUe;+pnVMWdQJ?-S=#8pu_qiHL^2&;_J>({{I40Pw)#;h!*G%J7 zqi%ANz>>S+R6N6t1<=R#iRulSA!E6fWm0AgDbSq1c11>wtDYXsCWj>QGIGj&ai%$7 zNR%X@3@d8}v<#=kKtlca@neu9TWoLLxPILM32b{XQ~&A)F`Y<cEraK;3rO}*omN8; z_~2BT1qss1B4-@z?+vtkQJ<TbWGLCty_whtY+GLTUH3vAWBNL|1p^uObJsPZm@h{U zx+05X4C8LC#CSQqswMm+J`Q!_<IWGedvw#w&;6OVZPh&2SZ2))q}A8Jk=6a^EaZ_{ zXd3$sF0zdrI8(cMl9v{7pL+_1oM_#EwQhdt8=G)XngTNqEiKoM75P#2a9qfEg}4ry zag#I3w$#WgrdPw%ulBl`uK7<Hm)#$&mEYK=+1u8%#&uJ@ZPf+_-Qus#cJ`KMz{!BC zHr;;q^<8Ez_vS8KXfiS}vB#E4S68?G7P6v|q217Kz&Rexs+u&<J(;H#<2zwHQk3Wb z0L;(1i6L@&`fus`;lb3!tU2n4L7NCgW~9|4NoLkzS4>UjMcrWUv2&e+2T^-lcn<N4 zx-7>6>0)6+(fvGWVRzBe=-ve}n^ViuMG>9-N3??E?qp-<%@Qb{I<lDTk+w|+raDnC z&okb!Z*^JTxfA);Ix4I)dEDC$3jx-v@}Yl>cRui_$aSCU^zxob)~TX*CebMdSFq{D zYRGn?Nw-Qx;`NmgJVAJ9RmV<~K443g3Za{g=Vvnk3|V5qVPQI7MSppZFW+GerWwpE z`)s&ix&_ErasiY4yXRFM?SeGean1HZ&n-`E`gaHuw#PEeMMX2!Y$6g=b>DjHvfR6; zgU3*>bkbZ#0k?<}nA124+_N08(HKZJ?=-djvU_kIf$Cc0F!Ok6k#zJW<7hr@Xf~T^ zVe`G^dj~{%i1)(qVrO-r%ZQDxt76<Cx9wq5_TKQPq6w-&`M46P9703{9D$<?pg|Y( zEm)+!cSepKEGsYZPjBlYqX2g*s>nTfe_PrQGZ@eM6Nt=3J5;!}fRU<N`fl7JTxUHU zO4&noIPlf1cUX?9ETHJr$@E|-doXG>M%&jR=~%I+<592rKznRt<}RUPDcMXw5!&fX zu(-2!i_irf*MhLCTNBEhN!*KdeJaa!ZJGP^y2oQrZJfQnyHN};uB6O-FQ}vJ66fkl z^OUMvT0X*AE%Y#~;mrvXc<Qf4J}4S5%3$z2B&|)>9qjZ<oOiG$|MGbfE8!!)zSQ!T z9PB_WP20w=IZ-d{T1b0y_SyhJutVYq*y%N(Bw}N0Kx(0xtpd=v{nl)2O-+p`f}uuk zZVyNBkwl|(Qir~L;JFbuLv`Osd_Y&b^qU)q_WQ_!JRg5~kF0~EuF{(p26qyzHYqWZ z=mO&|q|9E|9on8cIXs`^E3xM>n0{1bIq^0w&eq7tpx52X&}-iQ0rknQduheLoWH%d zc(M?@y$+8X>|b-8JrD0FJG1v9?y2;**jJvoSKc%`V!&ct?(UQ6$=T6p$X{ZAnzO}L z&^sjAoT`hw&YnKN5G_teZ*-nj^v^Y|hvPZ?=0L!mPXf(5KR*wIEm{@<;`QX(bd+ua z-7{qTV#N<C5^Nq@WjFLD5Tq`E+{M0ebaag7($C^lnzliI#72tDf55JJn$QvQL7ct> zM-VZc6z}BjMxi^KMSiv_Y=_Fnsi^A?HYO;bck?`jQ6YXoKd&!uBbi}msZFJwl*l4- zA>wdV`E<qw`4>*vc~(5iWHA{61aTFg<PL90S?X8?<US96lYG7`==i?dDux+lRr-N~ zhc(^j(C~G_rOkF}^D}|6rtfduO$P7weS9tYzN^3G14FQ3@kkg=*lfx|jfmwv($yly zIm<##k(EYcN_`>j4Z$24nmVkZ|1~MEsoamSgP<`9*@C4O`b6GWEt8vj?<MvV^Xb}e z8Beesi;b2ffNj}UKd%z55RT6v+&YR`;4wS1wOU`a=-jPRN7u=oSf&_sT(xgByC7M} zHJWi@G=mHMc*br3;RM5=IWae$nj~ziHt%ju{t%3A3zCqtomLUu2^7JRY`A9A55c~@ z;JGv@jv%~5;nJV5jj#zy^e1d%2CxkR7~P+m65HhWL6+3NH)uLn11FEZ@&Cg}+uV7O z*?yR~)aC!r+5X#{t=q<NAPWx8tyGkhu8@#~g@yIDw=V%456eq_Epqc+OH0ed#01F3 zlkX!{I{IoMFQJ#P5XsG@)c?v24bT6AtVO3(eFmhGr{U1|+^C7i2cuLh40-tzOCGV! z3JN%b>L%@6Qi#)Wqobk-dy@l(7~5__9t`|uF7+b1Ha48C0OnNy61TnW=rS6QTMF;@ z)ob~131Ug}n=I(C#tS<^<8KatbQ=7woO5MPU9?6ZfXWdt@1_cx@IGEQa)SH|Bi(i4 zi<2j&g>j0C)_>!Wef;>tKK^=nO45f99{|L#w*HYaj0+K<2Dz$tGr9xNE<-J?-9b&& z)~{bR%>fy^SM>OY(6lGN-Ne113D2D#JyICq10`(IYCq~++7mByrB{M%rl{{CAT9bq z@8c2Io)JS*to|U7iEHy6sK{6#NDR|)>4hEr7(o~q`R9PE>?WbANhce1oAjb?zd*Vy zpqT)(r7`2yD-R^6xN>sPc-})|2x7iB7ePEuO6H#v<?ZdQqN1Xwr>CqO(meA}L4g`( zGrC&bSj19-i;$6*ACTF3%bIl0WhF8q-Q@xVj)#S6FHsjr4}bR!OyxxeY=(a6{Na_C zFf4+ee&y43^+7yHtN$dqE)RRpo6~L!(n3ff*jDWShJ00ZOHJP*BBU&RimyXREq_1s zHH-l%lK3JlgBy296!PH7Z|n>(%c^ZeEdmd6>j`!U)}Xg3|6m8gPCu0u6)$@*3+DXA z54@jz@guZB{V&-2?~wbFpr9Z%eNO7T3y_P1U_AeT<^f`VQ3Fuy@ZTwbD3?XtJU8P7 zJm389g$KR<t)w`TlH6a`U3Ijyv>rWr1k|UF&fhb4wm?9^|2IVkjEahi#5eD$>FFt| zC^#wpqgde@fLpDtt=PhX48lx3BJ9Zl*Ao;eI5Z3N^}UF#QK&WG1{nGu#Rw)nae@F6 zjDPYFg0ppXbqyh?Ui|6Z|8<liTY}Dz((|q6*0*`_5Pp|?N!tiD?fKAIf&ATF9%*q@ zQv37pA)}KGIS0E}al@v(!{Lu2sE^d=G@4S!FxyK-n^U(Qj*S1Xac2p*FH^5+nh|&w zyO(Z0N=-LqSZQ1hpA5Z)dI_f?P>G)p)(?eUT9;>O&nUiVVSJrInNlaatNqJIBQowg z#T_wKsHRT?gVj8l>!TRi*<jt-tf^8Z6{~KWxDb51kn)HEAyYAQ*50X9AFnR`<Tv)c zCfR3Z^Re-*A7ff_-A#HoTe_-(6IAvHhgn-*>^8GIM#2>1VejxlW%Mf*&WQ8+%)z;0 z$1%u#_5d`nl0;}`M7d7-QckDcJ)f}}Fxd^C)HL(^>0?evxgEDAxb%$u`1zAJYlyF- zo|rAF(`u`8#5mLT=i&}a(ryILYgQw5l%Q@h_o})^^3~X1BX1F+ADC&ZP@et16#yXE zpu)q$!$h|ODLoHo0@(W%>+B?h?bRQj{VF%)J!)UZByB#cKJXhNM=*UO=&N|`w#}Nh zGK3dPLn%piJx)@W5vJH86ZFcEW{~bpRwa3HOxU-ZPl;yp&op<HWArzN)ay@6KDY-z zRE=Iut?)W>K2@Y(*Uyf+(tG;@3)?mG=1bdFMv4WNH(2HNqRTW+bKW>O6k7W%B9+OQ zUIhAChEs8E*S4FU<`{Lp;gpLtPa6Fe(?0Jbt~>sTTR(~1&SzU+IHM6$y)<MpL4AyW z_Fb*!&EgI%&NH#7*oOP2X<rxff(<OYm$&m4#lqaJ2HH|n!Yw1<c-BDpjY2o;HXDEo z#nSZ*aFT{@JZ$CRbWIF+RAd0+g=+S|SiVj%mwsjU2VN#IvBc>0>BjS~3_jhlfT{tY zy4sg6Z)0Nv*p{(3#_ZHsU9aAamk9XWgY|JFI7~R=8Xg?{&Q>VQ&Haut0f=qca$H+R zP9HaP5tWzeh!!<(JY0pEy;7W!!J?1oIJl}KHCO0yVUP8D<?zngm)~Z)Ec{o6$5M)Z zMs{!d+&NoRP%reTZ4KFAO3p5<Ypjg-31#z9DA<a8rWaOfWu{wr9BTn{H$%MkE2&kq zHSp_LW=1a0bC|SomEO<DKQJx6*7oyT;{olpnfLoU7-iknucvCzg6gWKqaK(kZ>PXc zi}>BgazCfp$II<!h}mHoIvek$Nr-b*E35UW%q(bJen?bHy<17HjxY}`GUOlN)eTt( zM33ceTg4dlC$)o#D46Zd%QSDHW2PmKytDjmBUG&2+zvtXVCS>yXBP2}^IAn3z6!ve z8_azTv!AF|pT@%DTrXhhPCqAVoO16w%*xQD>0d_-U}jSRzg0VEqqRS2yCk@)@42Tf zjHD8>n?O!`9n7OtH9Tg%_=}n{JjFB*xVAozw_DG>{L2D$Wn(`gW$D=8F)-_f(TMrA zjAf>+rg^kopXpepZm{?{gQ}Zx@7Z#xAtnINa0<mXx%Pdv^oD3Moc=}SepyGh9pe3i zg{f6Wz2o$+)^*o+Oh?X4wN}v+?%Ra3KFN9O^q5a;{Wi*t-ex^=yXi-+{HklTN&QF* ziLop~Hff@jsU(hZS_Z9=UX3D3xv^L|Iyc9Hn_?pJp#!3hkA*OkgDJEr67TZq1e?FH zE$jDkXSU?g5<&kqXEY$eWU)VAE9+h2po@Z;N`kZ7OzlUH91lQT6yL0Qn^M_4^J8yd z9pZx7ssh;>Ox7)MLq4a@=iGZk<Ml|hVeLo?Y@MWHSw{0XFTZH^_A!C<9tknK0h#?? z7ROMa$F@v1g?m?Vsu;Is1eY&wQUI?hY$6jwEh*{MuqCJ^=iwox@GMd`(riy{Ysg+| zv_xV3)ou4eZ!Lv=nx{4!q7uSdYObofWxRGb&EnimCV9HVIv$3v*BvR0ch$?la+EZM zYVVf!;uaSFF$4E#Q@5T!o<DGAkV8sssl=M^JIjRcvAu=K%Y0bVc>YkJ102a)fgL#o zl{nqi6!{Voay9Ngs(CdagiV^#P>;3(v-t~Dbw#5E@E30*)DD2Ym>5zKK`uAEsiOh@ z>n|&ynlmDo>$KJo7n;*|JM&X*tnL@QatGFd;=dDajxm}WHY_u<N|wMBE+I458uq&I z2wyZ7Bit;HDn}kZBQL01qcr6|x*n&XJ8Uw@srgnPsc=c8tNljVyhS<6o0<MNJi%~F zU;R?uV79I?SKE-0<@~Go9_V#jOqB9K)|pXNe#eX5i{_}QA1GJxhoC@Y8>SFK&Hn}+ zCVrIT@KBPvbjjSJi<Qr4lYNO^^24;IskwPj?QtZO=?|yyY{FVfs@%qUfB#@QCpf_U zc;O+-qVG)VD*hCG?Hvx@w!*sMuCrrY%q?D3oq=4Xge2qf1ro~&*~r$=YjdwS2t!wh z*YDKP(p#2D@w0d7g~XZNaaiTHLc{sCe~@DK(!VZbziv4l=_nqMAHojds4`2A?p~vF zo+r$TV%pEFs(AgyWD#_=@5-S~KdonfHJvBm2G`@YN+eAC5`~?zeu<`@0g-n|xCeHt zyJa6EhN63oP*4Kh07xegkK@3Xf_=SJyIM2{?5>L;sgk3O>LBj<r^S(cV;ZJ)zYyl} zo$XKFTh6_kAJ;w5&P1Fb*YED%OE^SS+E5wK^euXX>LUwdSSDYDhSVRgqPczU?5|ns zY9E}aoW;HJzBV_j*y8p>Q7XMw7L{phVZ;azRM|UQHtFb<DN?X{6kS0j*rhc)JbA^X zN-%t8`_&3YRs)UF{$%ynl9lmt*w?zQ-hzfvoS#|?k7Z&wdIXc{Sq3Q23t&yFu7bK@ zMmZh>+UIc^zZ3+Tq1V?)be&HDw}L%Gfn(Qr-e-7|y5Dcs10(<r<@y>o%bzq|tZhvZ zc2iOLR%+H2xmTc9k!RfK4Nk!6M4YP^qV=bI&b@5gp<lKGve$!n+de_RGq3F%U~+n> zZ*MMC2;D26H=C0UkP*yr);+m$n>SoTAb)(nU3NRvVYO(lGy_i35xC!VRZClbFFGKa zg6Y8G^b!#zFL#kl2!0W>K%UakAt7eP3XxDATCi_&0>K;?9N`2557omLRqYa^^{Hh4 z)gn`~H4_O5%JA}vaY{vlUP!*#n8dFtv!+PvVf>xqa31DtmiE=4jZYdT3#+25E(4nU zYavEC@n2SWMt-0O?#A!hgDu((eN8*FE>Gio%V&AwqJwTk!CMBSwHj+BLLYxtQ*7}J zs6BlJJ&P}Dragm?43nS3bryK-e-ZvsHS<UD>1f8azhvPPl-ytCtiEuXf4xDCjo|;j z0i&RxwvjjlLOR&e+S&xY{siUfP&dgPlb?~1k&}~?lJW%P{Qq9A($5W!w1CES_Ruyk zP#*aX`>*R>?r?AbNvfozw7imfTrdf~CPd9E{f>OayF2tlVigqFQr$W&ZSB6$>xM$k z0Sk^b#1P1XyHb0hc{hhd^4w0&-%H>8Kj!t>=f&E$uYla;|FN3q+1B5+*eM`20$u;J bK>Nfey~M9A7FUcJ+=M8|s>l>cJ@Neyyz-YG literal 0 HcmV?d00001 diff --git a/source/images/riscv-sbi-intro2.png b/source/images/riscv-sbi-intro2.png new file mode 100644 index 0000000000000000000000000000000000000000..4f0bde914f6ba9d0fef8c673464cc598bfa39c68 GIT binary patch literal 23280 zcmd>mWn7e7+wXvan-)<zL=>b1C5A>qx?!Y2MWm#=K|nz1kOt|Yk&tEp0ST!Aq`O<` z=BzRH-p{k2_q^wv-}!XTd~qD^d)@0^bzT2hD^N*65)Ydk8v=pgNlS^VKp>ZdAP}^G zKhVK11es~w5QtWVw77_xliqp~meY0E*8@ww6Kq<{=YgapH*aA*xcTYU2^@a2wGl(S zxl#GE@&F+zC8qd8G?MGj?Jp;iXkNw`F-+unDE`O@Q}6nu;`NtkpNMfUUweh+mVJD? zrK?~wt)?H#Zt&tDk)fw<DY3eI()B_YHbJ<A1}Xq~7<N<b3hE1_Qpelw66(tz<oBd1 zY*F7J(<PUYc&INojlF*V@#X~T2goZ-DJbe+ulH#GpIzeB(%#mlqzi#uEqhpv24M-g zDr%1gdDx4-f(a?+3A2Den9=@^zoLJ!AJUcNSjdItUBBpvW^SL#g)tXmlfYEfYTLh4 zSCuz>%r`*3G&N=N`)D~;==vI$Of=d1(v{WZi}M4-d|+^}pzUJN<}Oww9*^S(xZj5* zJ&t6BY6e7+(@6Jw5uXPf9I&FL7QrJn*7A=q(tBRKVHP(VY7b}M4$N%T9q6@q_6Qz? zU1Y}S&E`VqUO{;$=_-ha-`UH>Q}Nl|^~;h^$a0N`S}G*x71e7UC`AdlpX?6`);}vj zTe?SF&b~ix*4i(9Fn@5va+HyoSyn;8<9H=|(CZ&hTpz1oyM6mMJ^kW*dt`NF$2{!? zf$-_g1wG$}5Grr;E>`+HjasMse#Zw}J%a|HL;CurPkpWsltiYfCGpxW`n9+<Kflzi z%VPR;y=o{ZJ94vqi+QrF)PC)8$I)lu^HfX$w#{}+B6b~!?ahgY(<|du9D7HIi?glj zr6k8m+MZzOB;0l0+Pm}4ojadi<E1Mu;roj@u9C*stT`V{IF1mJk;TQu@w)69pP9VM zcBss6pnbNp*j4AU_a-z{QA%og_`_U0m)UMF?~q4kW@b2(d4E>dD-4_{LqmKTAvvF| zXm!2zL0H~n<rm`Om(O%Rz9i#klo_mZJy?}BA1?OBr!S|WqMFE2WyoEn)r%SP$y#zk zIDc(TcI|TFTX{1zFEfVlyqIqEN#HaQb!Xz@vTyK0OW-!2y$VfBXG?oH5#|y$w&apb zJaA?{_AwJ(noO{{Nbk9!VSAjNbN?fSF-4MEf$c<&ji%cC@xVgFxeKkm^laV1Bpm@) z;Zo_;d~qU&U~+5pDlHW*Ndu)6^s3W~FR>!-=kK&F`UIg<Zl&;JG-Ya%%G2#mwu>d< zi=%}Y{qe<RYVyA8p@|$e^KJHPUvGd9F|k7213%GpiQoq>$hBV>YvAJGq|-*^RaI4~ zZ6Gr{lLcL|v9U4n$ZzXJUY3Mfj7!1DZ+TjYU?_Gy7#SJ4e&%_xb)kIJ<9W^zy@j~& zI6nEp(G%u>s%Fub=9jEU#}-@+M&59RB~7^^M(*mT`$e+6#@m>O)y~Af8mnaLRAz0o zoY~OhTjP~%#gy~?G0UZ{grP!R{)!E!SG!6I3L&fZGbYv(ih1dxTa$HrSEtP51)NI~ z+bOo}_>TBcuh*`;bMH%MN0RaJ?#g`C+5Q->cjd;%v9_JX1k2T<bto^(;^+QKm5L{o z5c-GJ-VL_9%YEOzS&`pgDW!uEQ1OWyZingjgn!1k=LuTMMQxusxwluTC4GK5QPB0B zXjeSfTyEluL(W2HOsPdb!a#&hD05@@gHK)=o!a2k$IY(=6fohlUDd+Hg@r2f$4iQy z$3%~&T-FL~qgg%o2Gw^Dh7jjm&gc6Th`<i(xS77l_=VMXtlDsyl-#P0H5L5$TC{qL z<RA0h4Jp{jyQr@9@+AulYCfu_r`JtQRz+1oDc}?)WYM=!fT<%jHj629_ujoi^&;v$ z7Y`*Vn)bA`G^wcdDTKa-$dprkca7s#H|%GdEFXTK8xRV<baZs2mWfac2??P`B=^M8 z`?s7rk*lu~g8_6|3aUi+O%mqOwGU?2RhV#FvMob~jI8X!<%uFExeN-%mMb)F#nO@V zoTDWvy(yAyaW-+z7iS03Iua5Rg?e>bj;+nj%Nxtf6c0JDVSDPw3W+?8SjV&2W<!OU z%U~XuDCR7*22(^vM%@W)iHNwitr{hCvU<e%lyr=NLETxmLnIQ~Fw|B0YYB=uTT~}U zTs-W3G*)fD_Vm+hDjq8@u_b|uA`Zt*od}C#3N7qp;+V4@p_6=gZPz{+GpbcaJ;^dz zCEul`rFFQrnsi`%eGT51+K)Pzi<D5qpSW;L*G4Et9{=spce@%DI<R_Tg;~6pn0D;u zvs->>cpNLW@aQdZJJxpPv`G;AvES{M01l(>Hr`VWhXJ^<WC&#{6P}gLfNI>~v=4zs zMW0m;e-A9=#BHlL;K8u6h{@wrI6UC>#K6EnkMKnza<h8vo((=JyI039VH~F6F{R>I z{t~mn{R+i|W?02qMAGjL2Mhc<6oE`sSPG*RQ&CZIBBY(@<Xx(APx3fBK3i2ssMJL} zY3b~Hf|c#|xz@**(hJmrE@7UNwa%#bePg#X;5SitmU3~L4L>ELJC<Eg6gu)1v#D=? zdS5u%hK~N%s3)Hp$Wc9g=&hd`@b)cTXyVOKoaEL&&Q+q<XGrY#vYeFqZD;4^{5X$$ zz1B=vZJZZ6qBF+8xcXY8-$PC15pWYx%JPY==5RN_o5t;1dKjZ>R$^Z5oudI&#l9&a z_v5zq4x+0T`p)P!v}4n|20Qt01P|iB+aV1RN6}fT8X8hG4Zdp?&34%zB0GBhnO9E? zT7#4?MLU%`i-T#MQ~j(3`*>c0e4#mzNG2=$O4g$8@WyCoXJ<bW*(Pk%O?jM<oLne; z%|5|W05zS>=`0$p&;&rRHpTYX?5(smpcS<41#?)@Kpd=RZ5Lh8sby;FPI`qzspFR? z`x~eB?Cv9AK~p&zRM)>_E}46ej_y;x*8GEZ5v2Kc#Rt3Pepb(KXX~Xs@GjjNhd$%U zkLKDT$XiXHNnBGr&z)tS1Xelkyx4a8-a^vEwcI~N#_^)9{dDqvMbDN##T5U$og3LS z2}ZD=A+1n{iC$gHAD`+Si)M-AmLBry>GdM@B0U%WRt2V=K1mwoD86)ZcymG*zxvUQ z&Ww!P$F3lFO9kGD+it~K@t68iQ=DC{7|SkFnaquxBGGqKKIlC9F>774atOh!B?6;2 zYkDR~nOZz~hb80rB3L!wi(KM8K0BD|H|lcPTOG_%%?8o;w9Z}7<=b>)%~pLvT6lPP zfp&#nrB!NnIcX<0<*kqAW1xqH<2j7c-}g*`D4o@(8j2+5Hv1a%`fz=H{b*;2xs$w4 zxbwBYe~OTMyZ{K80%8HVQ#(f7mGv7m8?W}&>)Dnabl>!Y3C#2}hfqJIS0DXapuGj2 z39=5A3K?l>=jBxY!y6v0!_tO_*>^iSItCuzNhVf19YDYEK@;_$*wZnj*PXNr?{8I& zKgUpM&A@Th;t#%^nwr|Q_c-zNU2>wOhlX58c6K!RuZ{-^TdeoJ8@HpWou<(S*GPyM z6f$<CM8B<%l$Ow7UmCs&l3cHr#sTW}L_Yh~ZvL(7o9E7u42oh}RG#<NCr1!I<ETNw z{Ssa~(E_qTil0ef>?j)KF*?YLpID>P<^N~CvO;_Zq_07|;%_rDN^dyn(dE)ktPbR) zTVO+OzE{h393zsdfIL*!n^j+W%C6BxwpY^B)C3lQ+1Xhn5?NC6pq$1<LQSl?uS6dW zVj8i!YvGE%LJYY%@uWDOd(}`On?qO_@&3KnYbWxlL62oJ(E9g`a{FsGurjnEUUoi> zrlatfjqxhmo@Bu*_>}LzCkZ9xo%M2n&d}-p{d~v@rq5uRG8>rqWA*O*!CSj4i9+%J z<z?Cx7F4Kf##ii!iHURntJ1V<oxZ=uqX1)Ff~E@x8++hCS1*^NQmh)yidQvh(p>T8 z1iF`BruKN5{S1|>|3ICn?`yy2A$y%@!pS{+1FZ)6O7`O$c?qsMzLLf{gyCx3^oK^< zqjlpEZ{t5urC)jREREc!#>;L8qy7P`$Ox6fD_B@qI63hcN{EXqY2ux{t#x3lm`@`e zyYJ$Kl}287f^1^Y+WRW-G17v|`n}&HhH1Eea=Px@^%JF}=&8X8t%z^u7cC)4G!Ewc z1}_?d6(jqKG`_$!wUTA)S_GhDvC}E-W(PL1_e@(If~aEy15I%^)5vx8hAq(-nN{~( z_D|l#Yy^>Wy+LZ!2_B5wnhxvFm%CQoA!!*7>ANI%RcPNrsCJUaEMB$*X^R$R0RpPL zv~;TbaEamD^{FxwB3?#utkxt>7t{E7jr8K#%al-a!3}k%7@<}rR?-yubo~#-`S?-9 z9B$-ic%7@pa^HGtb!rqJ6Pb^8_=ft_1i>X@NcI!Fj<jHP$!GPmhWwhEno-<thgQe3 zhFt4xdW91VrfKrpv~KGYZVh$TUpZr*XD*@Nod^J-rdJ4;l1Iq_6;Kn|5U1O`j{GLO z1DsqRB%Zb~^49K{m+4z`Ts*~HX}!|lOmtDfIs@Is4h$p+l)q_m<DgYbP|aw<J7DYz z|0<M_Fg!#ehp+-Sz|*XBJRoGe{-yn656QmX0b(`$x?^&tNXgLck`Hr}San(QQffiz z(pu{{7jvou8uYRn)f}@~u9VX1$QS+}4`JhZ%zH}f&5siE{R%sRjwhCzdt??Q?8ZM* z9xO^eE#U8O^%a-!H*`$PrJnsV%-H#9)DBBp3RfB~8ByJxTSv*o8}azT%-r-ny4=16 zzq738^^<BvjTazo{b(`4$Hc_+;K2ia{)Ai?<B4kfiYX7*v*SIwTerx$Ozk>ZD{A+? zYE#Zi*zG>L{<u&_x^G}WjY;2qZ%~aslzPGNb1;Qt7uQfPCZ`E<-j77@8>1-;k!;Mp zx|OVih=>T|QtdM1@2h!5tEquR3^ot^3aeLhr_MGVQ{4B-{D+I^`1e}mLv9!$*GIq# zewjqK+D^0F^oFE-NJjLJp<+DALx#_)Q(0`-`OXeotK78wMOXayxzGKy!GVDQvh57% zdloSCzW{KcudgqO&ps`809oZY>CC{&8k}ZVPt2n6KHu(7SeCsr{J}s{>us6wO{@&N zlcS{+lea6Cl!7i%f<JOE-lLlORywoYWvjN04_TK+>)lVlIEdir?C1dXlMoCJq2C(> zkJLSflG`qRNmbI(N&NmWCMHHTN-HEdI1>Ya3k7O-kuAdHg-74w_dOD>F0zH0_&>NU zzNbbVe8`&;(95nuF}m}0e2%aJ|JuFs=DuQX-5m0RjyKgQ#6y}NB%QA_SIo7iQB#ZY z_9@Dx+3eEjr`Zf_eP&|yHMED99{cl|dEUM+K6p4%H7OaqaEP#^(_JtQyC%FdSDo<o z+T<C*N(Rmthtu=%vOW8X#N3({@!jGWlN>m0delZ=-Wz}4cq<;Jk4C|&H3`dB%d5d0 zVjQJJ#Ag+oi;;by!P!hy4@2T<q&s83SzE;rQe%=?UQJ%`gUzhT?>*j&JhbAW1QRMx zy(lX@4qI*T1{U7OC{+6E20%RX<9t$nhxPIyy|s^2iUOzKK1J;`6DcYkg?gUSMSEVH zOsy$fcn{S(Y-n8*Q%e$b{dk~kaJ1!l!7tB=N6s0`YfCTRuvLF@Z{;>VAu37Ge9`%i z6+l{Y?w6#jT+iFC3Nlp~?8eeCcYpcvMW@V|u;AdsXX^CdRlbRu)4jFU4=7iMif95O z@5sKh;$mP}0)1{boHL#(cBMPR{C%m|AYdfUzI`H4d!Ji4$qn#kd&ZInz?;sQ0Fpj^ z`ZS}~nFJFLnI)h?MTy7a9c9t1swj9zhvsG_pY!(fT%ohwew}DXWTd3O7=h5?G#HL6 z5z%=x9*4BiMKzmz-5?QQg5~fl2UPP#OV?Q&Z;n@~)d8r8U;X}7Z7ay=l;T3z0=xUt zB~_ij=4(=JV_Dx1Ck&Fvl^rWGHzX0bMj{Z>%OoqUe9c@<L1P=CQ&97r9VS-PF>fkm z#{w%q5z|kO)Mo!U*G?In&^Nl4FC4pEy(6ymx$m~T39ZLuwoWEG?9-^jfsiSS|3q(O z$958T=za@Zl(aTrG#rAGu{YqBJ!8&lcxDrt-9h@_c-5u3O!oq$3jeL+Nr=e4`V>JG zt?<`Uop%<k_ckh~vP{>$7F5Zk6y_X%)wb-r@^ZheZNn+edaiXKb*M=HB6_Vm@@rKB zXJ7jGt9l0}rE)+%pav?1MWr{YB8sTg_IFLFcMMwMI2&!F2NJ9%#^!R5!pm@*K2LUC z>7roxlnN4L<)ht|ew#gzY|+xv+BNV-4r=J>QL9VmtCrg?b?a=PK(VxhZ8UN|I>I=8 zJA{hA(q*}qcIMiG4jv2II}6u?O*}k2c|}DwM-hzN2$uzTZDh%3-%D5Um9(s_@2ekd zO?h_PCj@s4#8rix74}iTJ3E{URde7=QllsEN8zBsi5f@SXzX!(b+D9)ELbAW-gVqQ zfy>bt^UM>?KD$Ln%6j{L+<xAsaL8Q`Aup1S<V<ZTHC**Pr8vcEU#ckL_z}MC`ll>S zK^v9jhX@lvrrJ5yYKGcRUGubkbQKSo{PXOgDFa_&4DBcI4_{p8_Z4na!2^T{Ochym zBP!7S#T3Ip@D{yQj;1w{+_uaV7agiEoz~v@_r9{Ty!xZB*cb-22WiO2qz#c|I);rR z3WX8(X6E7WyYbbVHCsZ&PlK}e?NJPYvgqd!DtkqL{88<K+b)$Itar_dRI@|Ce2n9c z?yx{~9D_NVu9zaUw>Ff$5=25+h$Z!-9$!Ll7_I(Qfge*&Zk&(f!Gp>tzLx_Nb1t&g z3T@)bx7#Bbs$6E9v2r6K^8iZVkk~Uccs4HQY}aMQS$tWen(*x8AiHa#(t1vk#$DXc zb+by6;Cr%ERlNV@qV+!I2>D#M{3FgpUfb6lc9(gZ{Yx@3eDkU=&odp|jRUj_{*f>H z4Kfka8Qra`g$H@pg=ye8hSEu4AH&jbh<?6#KD?TLc0X<Fs^q1OJk}tO$ec98{&e!V z9andexVA*edE(pmGbVDjStiECgBRWi9?u&UcC<F#H*JGg)6fhGXqT@k=_{FhUcN5{ z9oiRfA>|0B-k~!gBND>je9*++;Tj5_{?51P*5H~SC9QMgV7b}Q{>E5^h!19MK$yh? z_XPm06B8-jMaZ^o(bc<J;+zLGUaai5Go)C-Ui-}f6fSgrXpn0$Q4Q1k#_Z^N+x1Im z^ij#8B=W%@G_KH<7h3aR&{z8-uH;PhDo=|o$-}}e)UHOPDP>Sd?ip%YQVO}n=5fhP zXHvMkye~kk71mUqxSt;_xxh{Ov*vm2manSs?Cj*Y0A^?n>%lhR{i2c%2iKvEQL~~O z$y?Q#Sy^v7_?-tuV&4SaEI+KexTQ%IAE)bR7P!82NkiG;j7f5$w*SW4+H^t5-t?!4 zRr>Kj;g(ekKEjjPXC1hKA%jU}rlslCdva24x*bF61?8m+*PTVLU1Q8GpKdx0hlBUU zHyiTlur6|k7pYZ*#X8ZNux%_$<Ct!c?!#p|J1(hCCg&2!39{xTjQws|bYvIF;i^g< z?5soVp~qblwHsjdcL58A-&(!jCa(1!24f!f?I1uQFbcD=DLPt=l=ul?VPRcA%e9gH zLK7Gd78-|*QRO2LgXVH^72B)#XAi7)F%UKtk~Xi7KB&aotQ~cH`nAeT=>Wd>M0ldq zZ0O$1vEJJ#do-bpNww%JS*KEJo=-;0&D3X(ycvZRP~5D#SyY2;g>7LHfo<v*`_8!S z=$5bG@pAfS9f9pOIyEXmm$JlkIvT>ARbMP3-!<I|0O#YT>=QsN@PE;h%qoCbYh`Pn zaNVi{nFg&$)w7m26qdE&VnVdIk#H`S;~aI)JqL5`jg6Bo2I)^NY=?;iHyOT-z3dA` z!0Sp8PLjquYYXuGrpHdc>B>y3kI0#y9&N@VzGQx7de^mj^#qCJ%iF)>@t7QHPQ`k| zLyXORFl1h0URvX0XC>_UhsYRZwevR+?dGn7K$#D1+M*HgZt^8Rwp(9LV>#*q$veyF zXbF`=UdzuJEk&rvX_N`3Em`t57d1W--XY&$l-BqRy8+$UGw0Y0PgMHOh2iXqtFPKi zq9%YEvGi_~<A#?r64<^CX1e4Z9}T)*yJPk>f2Ih%t!UE7(6DY7DVz7WAWd<*Kg$F$ zVfzUWy1a3l!HmtI7dPAW`5~Uk5i|OiE~pvwW42t}Hf-Ttn_2eimpBgI{sj1k+9!># z0s;a6v_j^K$XNHKJrZ=?pTCO0JODg!ui6>F+&cDyu<cj+RbzC#ji(xn@{B(wt8Zvs z!jeVxZHKK%T^$`cPuIQGI~h6p-UK;N*m*p<Ct>4?or(zfcEfk6h_TmDEaqyvB%fxs zLeecRUKAPhrJ=7ug$}s^$d0A6)K}}muKVjCnMi<IQqR1?1`OOO$PRBUEw@QF*UEH- z&<G3B(fJ64C?yotALpLpsjhw)(y_&Jf0>5Q;d$<sndCU-9wYR!&%X+g-Q(7usdn2X z2%JNU;dZii6X$`;gHzUz#5NF&;-4eV|L9yLbskEmEGRX#1mK4jYfp4`H7w;uv>WHO z^K(O|3J+TQ2u{412x{w-X^;fw89SdFWt2%_nh2Zp-F$R1GZpN=i(&A&+i@VzN#e<P z?zemH?KDvP^4U;V^XOiWw}qC^GAje!Jw%LOeB3YZmB=}c(XI<3?|h!2wBqGEkXLku z-o|CVTf{Oj@=dkbax+UT^@v0Jvx1YlW^bjWjA%=!kGO=HFn+|~eT!pE!Hnlje=U%| zr!l7R#q^^L92L_3Y{ellP9(BS=0QNKGr1OE%4)3VBm`wjA;L~JHN+l635!o!F2LFp zo|2{yv%r$40oqF0zC<v2Fa=bhXO|wp3Ony`^!MiJU0Ir97ai!j_K2e{OXK*P!sYEy zoOz63*Noe-l+1TjzsG{?^`_g_L`Et<Aab)6s3IQk#&papM>5Tbts2_<tbG<q)3sY4 zwgx!IB_I}RsaN`<>+bwx<=*{+wV_Z?eR@GbcR*$7yM6a7vul78uDpQy@;jr|l(h<W zEFaKg*Wk(@3RSMP8RQlH;kb>iqg8p4J1O%eefmKLU)@;p!)gpjfLCX)(;@e9U0~Ba zvApi-dp9TYF%I+xwF8~6>%9Jxhaj{fBPW=WKtPp;4UGrM#xXJy%BRosT$t~NzUmD7 zll(vj<j2QV+|B<$V!({7{OvAH+hqNIvJ{jwKdXSxhd+Y?62mdLGO>Rd$qIQ`-S~vd z96W(`0#ccnqp<anA<O~|g2cnjGXd4ZU%_lxkh6EG5cIagfrMGGYshQcV><o|xgsSa z^Mlvn=Ki|Xs0%2XRL4t7{l8wNK}kbn*^bX~b3864rUFE@7KqnFF~PUTBzq55%?9QM z6qd=9@m3u0>nOb9KX3hHKE#xjl|4L!+;xTl38U*t0fBhGb|KzlTQwXQf`86Q>g5=W zvRIyg3~+iJ{GfqI-@JVbh!uQFo`>qx?iRzCkUuyFO5vW$Z0Yq9f(jeH$vIheVq2K+ zv%c5-V450~w6tVst}n-@E8;3-+Y&%-_A2$Hoj<AzIws%aDJOEtibvw1s?_?sN}8Hv zy5_r@-uG$%FNF?y_&zoH(b-!UvOTU<Yg2|@Ij&3!7bt`)c<M(-18r9U`~rdKJO<QW zP3b4URSaS<`aiyRyd(>VzV&V?l3WsvKct{zuO{(WumCN{wXm?jcn|)*)eGijSIV$F z(U1#n)s9R^=oDU($Kb-uN6$zQ6xqUjjDf@(j!zZy-=0?Z_n%_`wr*|~rykFF2;;h> zfi4B5K$VXR%4h40VOt7MO3jT&V?oPEzyl=_V}g=mKsMrRm5ut@8$6f>Jh%xwIKk%h z@OxXE6!;Sp@1VfdQ&86g?@7FTJWv)R$g!g(9bPAzQvcxr*7vT5TbN%_g++lL&JnA* zI<L0#@EhIDiI<oz&|>Z|i-r)MBnAIZsrVbBVUePy+<(}ByOO|N@2-Hm!hyJxGv{*W zx=N`?7`SWwGPp|sbr(=2bA0~!2gnoC3LYMW1Evv;1_2n1ZlvStg*qddvN7}X^S!;j zm6erIQBff8%9HkJbi`1z#48181ML!Kub#NLc<*LLR@VMXzofj4e{Ffp^G^5K2U7w{ z>C@|%)&QgLRpE1zuUUH6cD&MBGL)K?i3tVwfqYR~S~@6zfV-n{nvZf`dk@HjrS2qt zSs9sqkdfJ~Ab~IfciseUheq^np<-$<DV_K$v$L~RUp#%9O8&>?au%<TFGsFjyM`>( ztpSWC*CGZ`&@~!Hu6(@&2w%%92eGlF9qawsJ;!@%U^qt^k9{;}takeTY@*a=L58-D ztj_b|ywT?h)C74Oa5H~XcJpYc>ioJApa-ji%tAs!w6v*!dIyoVPi%=PMyt~5DZtA) zU5^X2l$(GeN5N$(o-kTvyHtcY*XoX`+Ue#u89A8p)W?&mJ=v_O#Woe-;6TZgM%{@s zVYNv%BhP8rXpa}sC|;Ek<X-^`$Rz$I5xv}#xF$}Eai{49Z-9>}lR)(21-PnU34o^* zfk+0$MN^=p<{UR(p-BW1&6p)3^AsduEA8W1dUxOp#l^+<bgMzr`A5wHd%@kOjju3V z(Akhh`iOMN(0iICzInX7ya0{>d_@?|Z?}B2T-^_}jA|3AJG`3P!s&(zwAIzr)HF1B z3_GrO&~TYv_n$9_?p!=^%ISp?3|~!je<BE2^lwkC^bsEJ2b&XOVq%&_R{>-^C2#<1 z#@b+>WGWyORHEk<)YPIr%?u+vh1n=5C}fX7e#ykf7BlwzIa+g=F<sAZ1eyEd#fw#} z+BVRIa5)v}LZIoq>mVc~bSXg(6qUKl$f$gYdKxo<%d8cq7xUp|eP|4}`;Hf0<F8Im zx#EbFc6N3K@>Ag3x9NsJUmCsus?VE_v6lcsaz}$qB8P3T%GT&H@BRDtfm%Y%{c;$% zG<M-EUZfsEc@L3FicbgvnX0t3w3yWQp8L(uKY!{nwDE1`6W|=4MAFM^%-_!t=VgN4 zi|IP}u99j=T};b!(%=H-^z_Aaz002IjLVInyeansT`4Ik)VLT=mn6UjgGW&jz+17` zxIn~wYAqJl+n2uHm$$@}Ng;iAgfX4vnI5cixyAw|@LLJe3fj#70Rv-y9#b&-KRm}{ zdtO?Ln~qNGV0UvOK>#p7fFJ@)9D_n)7?Sxe3(LG?-!lUPdj=CBLykjzV>a!Nat<BE z+}kC&4O8sqQ}uP(3<=-Ae=p<NxT!9DG*46|qG(7}0Xml5g1VUC_X}-I10iyUkWRww z^!w*2&kJ{H>Gp6s$<`1m+0O1{LG2zCYv>FX#pNwPI@7Vb7mE4g%f4e70UC82htbzU zU0Ez(%s{3GlXKnb0k4+sDy92KTpTPA9{VFkAmanc{ty70qaV%l81BZm*P6})mHMW; z^N_Bi``O-5nRMAx;6126_l?0WI|R-anY{DUogV4r4m=m8gsr*Erc)k>na^L-1`KK7 zU1)D_2aR#t<r)zYsLA=H>sC9jp`qdJj~ZS1K+(oGpQzreKiM=JEi-xk{JD%whZuoi zR7y&bB+8utbT&=QB-^tJAE42OU%ibNlbkH%^lh50{!lcOseKVvp=5Rm6W185Ux4u6 z7=Wqk+OHK<*r2p<kZC%C7dAEn+C`n!j3}yEcid~$bar_lIKQijMm-MtNeVBbsUPtW za*x$p5OK5e*D~ex5PuUi%d92jOCqmou(zx@q=)SfKC6B2J+SgQ+-7EeOS41PcX8xR z^X=p*9tC&eeS_EJmtyd}+s9get+4BD8Pbv0Te8GxxhO94qDNK)|C%1dgxUQoRy=Bh zi^uJn*f}FN+X!Q8&2fLOrVUx&in18PRJ$%UhBnNb8~l1Cw;`a>a;=D7T~II<lm5N1 zsJYLfk`fXf)xo(x;*n4LSoiN50DDmg%LF|41w_{CZ$Ec#FLWBNNc@PMa+AN~%M*PW zkmC>$X;vtE=bB;`UyiNa_+6>5xKw;mnG`n$NQ<%m{`36eVu@Y)EAmT^(IP97e!pM* z_V)I55;Y}*2Bs(5A31&v;~Ea+kNn_o7ba2NQ)4T>`d5i4$?&g=qQu8P>+pZ!Ps9-M ziOXmZxHOn510hRXe>Ed3#F(h_;KB=}iN>PWfy@PrJ0v7A@7}$Oj?Mv!*I(86nKfDy zHLch!E-jH<zaHjAx0kgq*7Mh!Vn9$?Xsdic63D<uN|%5~B4ZM)!zjV-&*rXx{E*=) zvBE*d=zij$VhP+Mj~+cT72d_Ax8(mhNPlU1<Gva|gUhJ^<?$tTH#La@l@RmKX8e`j zT8Ogf)j9#I76_+frACS(BHp6}f`7H<PZg0IDg~V;LG{S6Lbb^Q=3YTE<i;&-%d}+| zAE|sgQL#s&iIvqKmIsx)a<B{lbL2Z%Dz2j2#rq5%uY>bqoI2J5WGrm8!Y9n?h3m*n zSsNQ0V`F0-9UU-u0InIljhId@a4{oYWdxJ+eH}oq?<b_?<v04XL*wW1oz2+V-}$_~ zM!MnvmKB^K+2%K%K%SVl?9alB?n&g`X~JQ9{^A9&yhuEHr0cv8y)jy@x^3niUwO5h zIG6)3XoKLu<a71~>ujWBb7A=`%}#UF%&okt_{T)8q-V+3i0hbUpZU^>%eiTF<x|xx zV~&m7obb|ja^5%UihmS0*BZ<Z9BazTeIRQB^E*B%sbKL4<KX3>cBEVacktz9;C%xb zLpSixtUdrj&PHFlfBX`twwY(AH}tYZwS0<DQupR10)h93SMbQi&%t6E*+C~6lJUSk z6u`U-K%d%?*{=^Pw-;fU&Wa9badvaEmmIN~Uddi6f_ZL`8tm4{$L_oe2)a7+^x3E} zSHaiyG>Vr-K6aNpW)?;i6%|PeQ`{e4^7eB5xLR=k&rFIx#iL3~a&lB_(q{UOceusp zP?}KSGkWtT;<GAKr2i=Z;~X$m6_sUd9*6Z|zZQW{F`Z3*INE@^AtM_BW=Sq!HlPu% zS5B7z0T&FU^W(Lmz31dz?P4BU>Yyp$Oyzc);O(VlWz&s8T7Z&{bOHd@-yF<ScXM+S z6-Aep2GS9{!kCrZh@4dOV1Kmn=;Zkz8->BFCLhesl<t{9nf5bttv3}6dViSfve;N$ zQ>T9$U=?nYxjZJu;#?p@$7gfWdZSK2$2FFMig6K<u^5}5G*YJ^;FJwlm#opv<~Ir= zgqB^ipB0~QlCL^n^K>&-8i9~fWKev=Ve1j<B8(aV5)&Y0DT)fgDBr#TcSWgk$@%## zg_~0dPXJrx<2h5YnEy%|l^!7q#Vs4%_Gg~6F^Kr_Z`DS=a|gbvL9b?DoaoGZ-^#(k z0TN*M#V=&|?PH8F^817X4?qhygK4{RSuu$Zc2K)NYBpbWaeh)29~C7&2*^f@!*4To zeJMQFqCK2VF|r7cvk+>*>gVm(3K!?+!?u6tat(2uQT&wnxtn7ZTmCd2@6loQdmjPv zm!TIt@WElSQl;$b>cYdpSwm*x^jvle4V$NutdlhB<LPf`yS8S0Wl5M>4e?SuKz6r{ z`Yi08%OfJ#Z66_LNwcMHJ+0+v!W(`2np*bzJF^K~w+^WGl=H_!v<;G7#mBsSc|NS$ zb2Ykce1S_gua3-)h34{TbM_}*oTNG}iWJC<t+@Mia5oJ9njH*su}Xbtx**SurRR#L z<KeTM6tLOfoY3ysnnDOW(<>%_83ehY%AOB_5Rd!uF3?G3kG3g9K#nW8)Uy8RtrG_p zd5%6p=uU4U9P_qB2xS$(NWj<tU?fnMmCoVH={&bB3v{@rB$W~_%T@RJNimcIFIcsI z$NbTJq+(??fEFOhtH<}1U6}$jA+YrzcMN%qKyIy;l_!qMK)Hb*_SUUe9Gbx^MI+{b z`^?=9^vwgRZTf0<ibn@bW-hBzX5w`R5aFho%yD5WJ6F_yx29Cq)$07CdX*&hYK8%2 zLq=X1CVvfRMOw9a++%rj73JVSWUj0p(Uf^U^3?~b3VM#GvE*mx&&-U35?8Xi4zktN z91D@Tgfl{%cPlXa@sN0jeg{ULfI<QK2*HAKCq@?+ST-`1tgWp<;&IpR+q6h-#CYJF zH#R(!CkI<gh6V-(jGp~j@&NzZB;Z!iyWZnF`F1OrUW92a@;%`-zbGXYl{8F&20WB2 zD6jUO!H64;i1{`46^W&YsT<S$@QdRi1YC}qH@mFN4y<Fl%Jf1)$!q}tZwLa~ty5yR zr7HJgNVL#~mya*LgF!KQeiew$a2bU{6(f}VaD-olZm$sH68bULI?FqJ(00Q9#HMQ1 zXtyNL?rlguykq&uyeRLR(rCHKs845s?0Ci8*Vqr9`NlJzS#YdHGo$k<7pVEUe&!DU zMt#xi1H6ucM!O%&*4hX|k~q!w=O8j75)#SItjx?07b8Z1tg9HA^f)nRI#?f3)z1aZ zGwyDpWdd@(;-{YgiSb^NH$%P0`Tj|<zj(BcJwF!tOwDb2#|dB$J_YtaZWE;MBWf|3 zsC1h-n?D;vE|Di(fr*iWi2!B$1G!*Y{QPW;zK8Q{Aj4hn<JaW2wEFiJVUMbnMJn&H z6fz-$(~nEWotJMd=1%=uxQaqX8{_Uv>~XlnO<gmf>!Xv@TqA9v(Vo2ZeJtV8Cmcsx zuKU@N3l8J)$qlQl4@6I>h<L$7vKWK%8HUo}HT{?~hwl5pX~wEU5KwtM;W*{z>s$76 zB%(vmW%qqA$klhBXZQ00#nvM;p^xS~kwfn3Qf;hz)T1wX*d*>l8^C-(T*#1t65UOu zr31&`XO|oay&An8hTH(z>+P8p(WyFD=vn5rqVQP;J<Mi(_&(ovbscLza;qP&w*YAQ zYlB4$9^6|ie=_uE5<eD>ddIVI38{en*`dO6*ePzzCtaG8dOcO;vxg@ixBZMyUKYH( z?)hfpP^tEN;yW@T`$p-!uVdC`+i#MGgk+5=I8KgmKySy8K&?Bdg~@$Ch*YB?zMZV^ zNS*}+;ZF3|I9hJ!YkX*$u@aY*tZ_G}DJ~A1dh|9pcrb~!@PkxG_2K#_AMY3##`$X# zkPiq7j?7=tKb8*$hDmXYURBM{8$Vw(c)35DAgSA|u<G?W2*&F802s(83mi>doI``F zKq7SNdJ7~ok+ybGoh=z1`l{1xw|b4xncDPK-@p2H%7sx~4_q25s;a^#>!qsM3LsH1 z>rUha1jqvX;Ac;d-5rX7Xc?LcU*AU1n38Xv<<17_U%2ekZj=|7+cuYv8XVyC9q0|s zt93+=s@&e<?(X-n3)Y%j-WxJSEPOCYbttk(cIa0>+0Lq8#T<niG)r3MC1fPj-YT(H zG)^EVXUaOuY%-{KFtk=w7@3pwVdq9AS9-~3z$X|=dVh8<RQUY-WDDTO5K7($4(l3P z4uC{)>CT0X=H;D6*Pv8Ctz(@(9gLH}44bc8^X?ij7G_GK_={xA`Xh-09lQOR#)i(^ zaOk9yPgYY6@V%}TA+qGt@LWM8+heFzd*1>~DKM?Qr4-LX#K&f36x_L7F71^`;i(^g z1jPOYB@m;u%8Zo(I|=l|>gPEE7UMi;?RBr*s&vXagz>L!qyaKzZK!BSY)NMd*Ys;X znO{k1=~7Qh5sPd;#GKUr(P+l*?k*r^Jb@yGMCzrM8z-7Psb+Q69Upx(P?VjM7JFA- zx!i;ib6k(`Z0N#RI7Jz%*ZkS^9D32QwA?hyY!onMcg>!Nv#-A_eBbOQ^JM-XtSR)z zb|k?R##5J!WAo3xZINv0YFKqxSwBh}jepsy<mY0mbNDs8eKh!OjXe{!KE<yAxxKyw zI55ia#6-DBjKJjP=H|_b8pOe*tBnHSFaudPvw%tCofr!L0ZT<ZFj0X03K0?8y<!9l zOG|6Y@vq4_jT>-Q6?R4>rMZi${j@09pF9NXs!4Zd5^(9{S=8-4#-|c+`UaF^lnLD2 z90>m;_jK+;mvaE$@tzy281R>)ndYDk*fk)ii16r1j}QVWkF9utjs__w`0dCWN5$C7 z-_}$3?B5{J*lic(xG*2G{<ih~Ovt_YPEI{Ez<4+M5}Vozf$IWi9B@(MKAyu|!8}F( zK>+?n45$hD6Q=&o{81VCPn`IZy$=47F#V*3{+EjRcJT-eGC=v^!v|0l!LOol{rvm@ zYYf;wz~q3J*T($^-`qHFZuI+VFl7OP0mRM-ptHN~{RcYxFA(LO3b@Pn?*XNDiL+=O z*cB=MK~4V+->^r$dj|knUr<C!3fPZu0D++6?Xj%t4|KwdltWedQ;pc2$H;!Yt{CY4 zt~)I)Eu1+h9QQxF76Ku@@+XSI8~z6vZP*O5OLg(~12Fv8TVDE@Ra-02g7KelF!nzH zuQrF>veG+?f5*Wmz<?eR8{38q##V!Ic-{G1@%x5H+Y9+)q`A3d4cGnxlxQark&$$= z(0~8=H+!vFtsMP>r2eZNyyWBf9ScEGHo49>5C4T<uv_~o-)DaLC*3VK$^DC7ej=Hu zko{>!$uHsRd`4J2-Yd#~=Q7j=A7l9qyu3R9$KUTNDJfBF|K}ed?3LP-iTb~QECq!6 z%0V=<y2A?c4&a73IXUm$yLabKCa@y8sMV`4S@8hE7_d+LCdiCZqaG$+mm50QtgzRA z@ehznnsF3>I|n`+l++A|8-v&aR{gH-?yp48H6QEg)dK_gdGOR{8qaZa{7SXy>%+fB z1jI@hMNdZ}ii?%-)Sg8df>GMEx20qsdjHCR5D&(0`U5gfunC~i{MMh$^guDcW-Bt7 zctEg~Qt9MhO9ZZQZ$FZL;NJkO<>KPvD%SdvjkEI+AZ@{pEX8DiEyn(>9^ZH>0qI*0 zxMSeA&Tj|^3%h!jVz{CZx4gUzvdA^oV%4Hovgiulzj+j|x44@C?sRu{QgFPG)6t<c zM5R{x;f7ZTs3|#(uR0&^Z{+dQPTaflx0V8Ae34#V`~x~Vx+>EsLzLQ1z$h?b@CB`$ z;IE=lG(4cLRRGe)R1Yp$2fXS$NZ;!>?=O0dUde9w%^-Q5G}Zy@6P-lRAwaeW0D%B? z0^n{C75}>jz`WXp^@inSB|GKNd*u^>aQ?qn26UUPjSUDRk&%(<>FHGXlFyz!0|Yfl z@C60E4dVbEttKJSYTF~|xH`aiNAh3aAA-9{d}V3qcU>Tuj&FT-%zjVBpCp_idFt=6 zssL1{&PzabLh)_`B6Zh(Qfpxr4(N3h8q`wI-y{69J#CxxPf`xq_4}@uG9WSzr0V|h zbHapKa9;v<QGmNt7rT@4fTXj0k#b!F3vJ~EM{kXHIoJ!zy#Q1OVD{f`Q-J;BE`30Z z%r_?eAku&&<^d{)gQ^^gdt3PR`!OO3V;>DXh7>&J7yIV?JR2Q0hzogW^;^>70%R_@ z1KSiAa`g)+CJ!iUFXb&P?h$N)r3K>k1QV2S1C(Ia(b=i0qa+fH26;ucYw-jI0?!25 zis&9X<P{D0zclLqBQt;hKWc;O|M5;$9Efz^{nM?-s4}LB0H3~EhAoFuQ0*3yXn3(O zeHx#z#}-N08Us@y&^iG$GBGjH)Qscnd<8_mA1oOzxagE4UMxw$$iu@!L<9|sN5yiL z1t<4ccw{HV#oXyJ#-9MB3_yS=>2tN9vQi_-Pz1c)kJyHK%sE+CDhN_z6_yNp?^06q z)zmV&OWrg6(s)tzxCmP81sn3hUB;?x0sG3r!lGuRsdNLl@liA!s-m6}w#&0EZ=o-T zi$M|zJQmllUx$~nz_EYD@h9x0Uxa<^c5aMGLpPw$eU<74fu8l)wpBg<z(ao{ZG)8P zd}lgx&tSHVH^<D<z(YR4+VwicK#BZ|I_4k`MI4uHeXYE%g0vl}wbc<$T?Y@Rp-Z|d zDv<`y#Kb7A2?-go>_?$8ed)E%619Q*#_<vhj1v|x?n^JUiHM^u+(z;yA6{i&S#%&W zTmq!Np3{sUuz|L<wZY+V=AzmXU>Ah-n_a3H)07uC4=!e>AlLsedE#FF_G9|(Q?rIG zqFZ!Sw6wOC?f2=2Ud35j9R<WlnF~x5mfoK?5m7vsH3QpS5xAZotliKH)=EV@dy`5n z>mvo&#t#z=6hnCTzTogvlkdCq2#xGftYR%D7*S8ST+rN=Va|k6q_b1Re^ajhj`3o) zta$Q?sbY07C2vFrFc$CuvH)bkl>prXZRxRm5#G3k5f@?d6-Lth_&=Mj4U1-S?;%jQ z#EqAc{FtO1W}m-6V|TAS60UcI|EQlw!tm=FnzRW-y$Ib%Tym^<H<4m6$6{$54d>2X z&9&p;yEExEo<_KhFO6^YBD<Pgz|NDEcM%by3m~h7$y*b!Ra(t7f&G9HrWS*_gJ5TB zYbebWU?pN>V}ZQs3D`)N2T7LOVZwZT)gZ8_MQiaL0BcP~W~OqPd;&KPF^kei+drMu zV1w&>Ravue;yvQ0d{T{12JhEDV_VJEEVhlzGidsh{;7$d%Y;es&6V?S<I`&%gSYDy zo*QeJCb?WHG_P}>rn8~rYb|eM*0R#RVE6ZVED~84QEE7yURS6P8X6!M5VSsAxiUJ1 zuS_hwv+n!Uod3?}W<F6-yQOW914n6T`Jgw2BscmQ>RKixC7q_;m!MS#Zw~vsV{&&$ zL$%h#)P4uOng;UV71Ny@ndJQWH#PE!N8RR*6(+s0A!1q+85dP&)KxieEk3$YO0i-M ziS*jO+oO=8Hr44dLbQ_!Sh}nRGY^VYpUoWOM{!hXM;lEIkn^r&^i~N8z09{}blwSi zL47BEP#L{ol=Rg|ulW1S1iw8@RaYb{qx1=><AnVX9*vM2*xm*d7I?fihF&p{CIQQ) zTk;%B9fX8sITo$5fDW*6by|+k3g6!+7sT_E8Gjo1L)e+I#du|S#LD6M^egOb`h~^C z*M5HXD@ebhXy7kY4#0;3jw}{mg<Zows7S+Bxa%t?v!k)wAVFxbozT7!lM*bYsV0jv z{mTtrpEnnr9z9$BJ&1D8n%DB<ALqXE%nVXj_yvSjhxesSUc^RxYj;O5NK4*YuaSJ+ z&nXNyq?kcMw`Ys&5E}@wWEKkL?_NPkV8}=8%=gc=PB{_5O!(_8l}0cpqzD$C>ly7P zu)t4N+LTfqOBY?>7hDCtyN`*Dwyn><e^AbdgvYy1eWKiZQMxeqZP9Y`X3vHR>+ayh zI|n@H7vpyRwXh}mp7%#N(82*@M0Lpr_;Fd(%V#kO&YD@)ZcPnlMcGsXM8lRZyAqa< zI*hW)Obz~cAx7l=&Vu+Wg`8Jrf;P|76=Wum*{UPUHo)Fx*X7>S+%B~S-WrFEwC$Dt z?1j~lQX?@@(Ob7}@kE9ypv=P+FGoaS*IIs>hkxv-RUwDA!1w~xCO;TlQ8zJw$H&FB z!?p;se6Hg@rkZ2^N|gACT$BXne2FIAbctTwmWx~9Rc^u+AsdT%+2m2^arEUE`(2LY zL{j-m%bqkYZ}R+8NabN?Z_#U~)qPUfKOP;u|6HZDyNjb1jElEZFH*%d;o)-1mccf) zd8Tb3rQb^wrL>)mwU_oxRE%-}AEqe4b&rW9D5}?6Sb(A8Jq_s6@)MYe&d+AtQ8mbM zS8??}=ZVh+#-_ffGxI|`y#4dI@hL8IGQkoyi8diZN9rwznN5G=p=Dz$y315!6&6*p z79#;r<q|r@)9Bnl<-QJ?r~8~UF?O~%3>q4i?7%F&*o{Q0L}UVUbWmvMQZF!jCx?eO z8q%$-tl01$UvSMa#iXZ~TQ7nA_&Rs2<zY59<$854t?>Gna&oxphN5C(ysLsupTyC9 zU{i-BoCp1GiiX!7>Ifd~@}OM6oZ+@Ma!yWQsd`<$VfXDjHtREFeFXa%)V&I0&g}WA zmArSBoAdY5Pk923&$G`pBClh))><lA$V0CY-)7TrBJ1jZRdO*xQ8p88S=v>zSCO`Q zaF17&w;KduRMSMyv40y~^IHp{kJexDporeGbgoP6F^uFe_E>dhG|YVSfoCU5^)&l? z2F_=@RWg#)_RnS2((6m_f{!M}+l}p`9;ytY=CZFovTNJ~R@XR?YuAt3)tl@zi-ipU zRnC2qj#u=s1tk^lT)UvkTuPac)z0ly0k=bT^)rdTCM4p4=Z-u}{9@JdoI(2QGSh?z zC4Uk^q%K+HelS-4B%p-9?jgQm4;{(0+stF_eGD$CtWw=S?7OLr2zp1~GcCY+_XOej z{Bj`TojNCv{t*T7j^#$tbEeOl;TA&X4x8=-k)^QhXtgYa+WC;z8~+Hf4VR2lc+Z9| z`AfepwB_sRz6k9E8JFdVfD5(b#1okOfR|nWhuFy{_k!){KopWlWiG4~#j8{z=FDM& zvL6v=dRzh~*uthAJh}S1s+S`V3Xg-?sWP4vuafG2SoB!PAro$k+#?$c%x-1fbfxio z_KD7pf$>Jg#u|N5fPT-LKk#(JIiwVq9isQ?-<?+1Ww*#DmV6GyY?nz%A|)ZbpQWm3 z(B>x6GF78#n_KwBxq<MSXw&k1KS@0}jUbsi_V~ldl0<#fV|7<XqfJ)cU8vxFY0ulM z+*3}NU5a&M64&S0T$#42$$}p}m6!!gr9P(%^;UIbZaiFi#i3j4XRM2k=5pSiM{P5) zd;I3jn=G&uClze#hUuoEXL3a{A-LPvF!_=cnA(c)R79LS%&mYa0ysKya&o|Kq!F-< z6_{4IfE5PlDmDYIzAHB|d|;ms-*6r5)U0y8<)=B}KnSrR@+MQi!(_Kei?{m1Z(Drb zqY;(et3GZLYml%WwRG7aKMu0K(Rw4it8xWj#q}w^|GE5^TJO;CSlI&AtsRlj6pt6D zo2j0+Xp#FJZw{6xED(K+uBXOfFXsdibQdH9YPG^foQgP1=Yt3;7M%kmFf_211jTJz z6C(-24=YAa{UG(u`zk})QTEm&Kc>7QbM(f{I)(2HMON3^olxVcy_5r?+JinqqvRy3 z-FAe~R24~PS5?*Q=hH9R+@Z-ur>|EGhA#dsY!!g;#Hv*W2YeCAOaO@nJG-)l6&@>T zaTHltxobj49|4OF*x*s*9{}(WN=y?428W%c9`$#bIDXtLjEsTYjDIsumZ|^IFM^Gk z7xMjvtFrKg=w(JoNl0))2V&~`$a~>&M{|dM-{!X7;wWD}0>ko!gV~YAsZoST{(ceR zcwtLr+D`N;D`#`6r~7tiqvv`|U&K7VNz86@M&r<#>DVRD-LgvU?Ah<-A`i~b-fk1F zzCEpW)>8VeigOz=T(ww1K+Zuj{#CffLyWIGDvJh<TbTPK`}0MUWx|SnDEneUib$mD zmPuww!C65ThW1d=c8vvZ+)$qo@_PoiG!DJQBS!?2xhBHf1-;^BGb;9IySM7cd5`q} z3iL$mD=&<iTQDU_aUb_fsH}Lejgp>u48PSa=YM)zCo1J+$$L1KX28MWu=%z1sOz}) z7NU)#{~_6V0=nG&nRL5LATw`pN$16Vq0N8x<&d94TO~W$KJr-h?z<?9CFTo%lhCXi zY#W1R-w%YNB+J<ODKZj@P>?}3WRX1<ufV9^ZnYb4Zq{gWpog?P7wmhzS0GY-gi6&L zjPZY_^O!4(%zp;}xX3Q`e}N3YiUeByPZS~r)&FJxME!7N6lPKXFDT^Zgc}C%lHR^! za^ZIsg?Z|)QBdHlEP_qq-l@gKy(@OWqQSw&W(gFjx2Us&rl~kBk?Yd7ce^q;Q*u>* zK#3=JnV33yda^@t09eUhv;1+OP_56Re7v9uer8<MqN@EH3>c^fE?99fFfdS?c$q_m zpf6DudO7yiN|!QprE*3h-EtK^pb(CCYFSy7(A{1x$rMs>z5z9=Voq1O5;$FvlrkKQ zUD>PGf1oK+up4~YG`$DgZUh`j0(db9q=DafGGioiQ7K;9L<p9x0pJi6_505gi=G%d zR4Uc|KEx;g3(Cp~up%+I#><cqY(KCT0lrKKq!HLUAq^$K39{W&u8IPm53PP|@@4_J z6}U|Pb`eldqrizaz%lXz;zIrqMQ#56`utDQ3p~viIJhAB(tjFPAP=wpDD5Un@eT?C zCKOnE&LVh7@sBfvZUTNX+MYs8fr|iC4i8m1jFqni2~6X@H?!lx!A*^rsOp*iG-hH$ ze<FWyDK_fT!B|d{h}=;o6o&wTh+zD<6y?T@C_u3XpgL-(>agH5at~sF3vf^u%sNF_ z{AcsS9^9>{d&UaLlx5~)4#*5?z>vUfc9|fM0rVf+;pZOff`d-pp8h8v0z+F#er>HA zIH%#10)c`|W0VjGoC?)K#GebQWfT<|JW&oyc=O%P?VTOJwW-uqY6E;wHs|lMTbi50 z5Mb95VDZ`R-c|av`J7A^s-<*53J$A!pM^TTN`tau)wIbMi={ReoE1Vq$-@qXsw;*W zYW{<|0_EcWELU0=td75EtLS5SUtizl3l>?&4xs;l%4%DBC%N2!Kupn44cc;FUHyNB zvVx%a@gHrOQ~0<@Pd*ONC^}pnC4gEA^S_=9Xee;<mOS7~fCWe|H}Aios{XphVh{$f znPd>@_wRrK1fmEywFppOWc&^+hQJ}0Ky+Pmzh6=K`=x#$!)rK-f=)H1`B7o(yh6a# z{BKZHz!l93I0H~ICH4Psk`+1FAG%$tK=!xclivymsb3r^I6aK%$B74@R_ypF@nPjy zA_{-Iltl`#P--*uD0UWH%KfAFpZ~OeiC$b}fDu{yV??%npZg3bKEnwK6!ipte)(U_ z8+u@fjscSfP)fh&TLw4@<Np0{dx{$<XV~uv_Rr~xn$thsT@bHn)H!EQH2-3leogWR zbh>aoP_ovKmwMrkGl=tRo`8kqVK1toz~?F_s&?RW84oq4z(?c~=zj3|&zGRxWPEoq z1jaT5;zkEfQb>C2%?Q?Vufp0LTfoDhmgkq^{~fFJuMVw$@Ik}>9i{Yd#;kv^QUU)R zpY#tu)<1}^ze0|!s#FLG^hH3lrxH;RPBm9WJI%RB#vL5VfCQz2I5{V{R1w>`O9BtS zs{GCvsjVVj9K$@^n$c`HgVKD<MNhRwdPqA4cS8o>KA=)6JmT(XwqAfsQ-X1*S=n|} z%|Mrz<}mQ0hYkahhCS6K&s%7@;faNOa$NV9t0^H@hq#aerI^*ymGCP0`rPEjQ<wbJ zBKdyk`uNKaj%k&GvUw3M950TITB)Eerfpx;pHt(Ro*2F})=?j;>5<U0>ZXP}>n$^f z)X^)*6Y-xj=^?bAL#x7`cs%@)t}SV*ti=d;0zXZpIJ+#gJ{e|-rz(pKK486dYZlDb z0kGLrabwG&Vd$;^ff)O+v!m_cN9A}1))9kOfmQMjYx#z%AD{L(736Li>}_1zoV%m5 zmsyUdXv**5E_1`k#l6dU7LQ94y7S49`i@yr+8sAexxG*MrcIJ7tubM+8-7rLWN-)w zJh$5!?3aiX1w@iZr#8Hblw<M5*h%SJ6%-x!0+bH0-oAe9bnBD&i%a*9A1m{v%VdQF zMh4L%x>s(|i;DZdRWN}qiY|V^y`P`GKio;E(sHr6CEh79I;zb@Y?gABX!C0Ds_BN3 z*_421Dq%}hx$0a~IZpDm>jb5zgd5U2&w}72%*W479Jl7-A;2WEde&-5cF(2!>UZT^ zv@&*b{SgcBmmP29(&V@ZUY0VK&0ho+!Y5->sfg}foUmz05jT_6X$4WtorPSaCVXw0 zPh{#Q9XgdV^7ozip0j#u$(>in!n|aSkQK$qXd+Q4F856ng(<9BaJN?s*l>Z$d`l7R zH;JZk{~xVfYgAI%9``nlGp1!TiCGrCObfGo6_uqu@Wr5p`53LlGE_3CTbOC4lT%Ql zMG6{fsQ7+>reG?T<Et{o6jM_Moia&9OhbHR%H1?}*Q{C1m%Hw_^I@;E*WPEZeg6O7 zYXTiFmbCtZJdCRf@&V}&KecQ#HU>g4Z;Gx7K<zmdlBCbpf0r-T|KoqE#MT!*sH#d~ zy}SU@v`m0Di1=YpGwhb>T9U7+-DJ2KQhvEoy6c1ggLy|8`sFQneNzZ79sNk)eNk$V zZg(`8?Ei+m@`ijf`+)n2M`lHzJU)eRx5P71W^>*_FKQF4kD~<@J~~x~x_pC0yo^F` zFOQ-KX{Gd1uq*vK6{+w&e!Y>v!V4SW_0v||GhL{uM#BD>M15srD&pSZctoF5>%`ME zOpwNVtvuo590&u!I0JoUUm3_8nmU8+DLX>;-xk+fZm+q&Q*o%Iv7>g2et-LIWqzJ6 zJvAZDX~eV5yuF;G_sS>8!^Jm-9lByaW~Q0uf!C_phO6B%<nM0#dMOVk9;96-k#6gm zMeVC2Yv=e)0p|ZXpZ!}p$n+WmBmoeHQ~&OeCok2v+Ys05mhC4<2Un4+qD(}v8U%>f z>VW3fQ7x_2mV<!J2W|^XI-tH9HUL1TZn@Tz^E1s_c>gycV*h35<I`U4DCHh0HU9mf z|C<q7cBu7QG+Lma?rxRi*{B@eGbI~==Flm9g{}i8x2U76iW8Gnz?yk=hewrkmt+#A zVQ}#G?W{x_<waXwV3LPoKKs6p;zGY8f4R~sn-w+<VJCH`A!m_Ic5ic!b0pWU_U-(a zSmbP6J<E?i4LhP3E%Od-@H;bm_W8oTb;Y)^>@n_h`b-^ha!|lgGGgY~uP_#K%n*60 zp67VWY#4dcV<$jeO7mG`ByT#wO>g)4^|%g|t$beiL)&4)H6Vpd2(+>lmB0jYaXT7? zCD+x+;;XV?Hj@jsbO+4QV89^(m;b{$cVUZLwk+NJz5xt#MaEn60ebSD{Yleq9nMXQ zS<+U)G3`q_PCxRFZQA=WWBcar`c<+p;(<js3yk_&^WW0su^8p)33xr-(#{Lv<w06} zt!l~Z8^rc?lXvIiGms_6wEG91$dB55i<Q$7Vk7)$d6H`;;U`3KGz2>wW91Z`<&zG{ z?J4J6Iyv~B!N8crl$cq|c2g|+M~m;OXT4C*Z0X;~vvdi$3$eHp*EW39R6BWbDO005 zQ?!QyTXHTJKQsv<v|8H$cXA7a#x=mmF<Umo!+3Vs`BWb0#nUeUXo;MApabYpIm1RV z1)1#?`75B%mM^D4Z;r5n&}pYGW322O{saExZ38{uC}*R1+ECX?#QY%sC@5eiWZ~zh zFbIADZ#e&Hfx)xYT<$QZ5&IB|S<zfj=<D$D+0rm`tXF()4yxgt&t_>WN<MNw_mLd_ z$#8tcsprI&d5L`vR}&}kq&(=BTaT9K@CniEnT&+&zKy|rA8~WWyMK2HA`Cy#2?=gG zy+=gC*g+r~q^E{TR{1#`)L^(-m~#Wv2s_PjKCitt<pAq7QY?el67`~L^fLPJhr($d zotr^=U*>k`o6)BtT8f<XU3O~a72kZzQxnOag2Xvo^yKp5j7*DMWD3&<J+N|q!j{$$ z3+=yctYPiW$DZjJxZ{Rvjo;dogxHUTMaW^@uS7dv_?_TYrz*X!h+-~J+sWRSTdx#0 z7wJ|MCc9X*U?$yqgDqA^nm)_Lpchs#&Pkp_O&g0_ywK>&b(^V#CB0-+K5zgn=NPrC z1hzH|=AVA%PA30yn7QB%7bJrAf|_;BUSeQFGz7?VHj%3UHVytODxL4(&__pM*T<kA z$@NYoDOvArgMLLsKv0()dd#=KXe;%Xi;oQ=QZgYin4?s=>RU;g;>4kkBs0@P(XeW) z;*<?OyKmf6W@Pl%HilxnuwJ=cpsTrJiIZMidhdSc=0_N=V*N@Q)``V5hg63u!n0m3 z)9!$hn8|F$yqlY@>zD7gn_@cvKob3%Kfo!G)@-rPK8wSAqp9$9Cis>)hz6mnAUSj* zd;pFbC_439A)d8b=u|UHbyNt!NiDufv;xu&aFsc3wYRs2pX>bu65i<5+U7vc64wlP z^93}dM->h#;sqsAsja~7WHnmu2Skry&wjc-WV-lQGrMZh_0;UZB32ir18T!_t{6+G zWbTVB4y2~-rNi`<yB&z-{%hO0o=pOIY=k_2rsTA-GA(psU0E9Au}eZ(P%w)p^O|&^ z|7AZKABQ{7J`Zp$G{g#}l$y2NK2iJ%RDwcBLCc#K6r9GE!k`}3-5IrVL<k${JVPl^ z?TFW|_aWizU3i>HQ%j1Jw_}mf)1WTMRj5Nu+vAdARAuZtjdQGb#^)4`iN?)6hTAQM zF5y(AL>#enSFQMu?*YhALkI|nCIxdDIB5fuq5gcVPv>kPs5;cYzzn7N<4RK*S`m4# zGX*@kL)&T#@&5oTs4S|WvX!JR;25efum4hxf2Aq^S6l<!F+EwIlZ@Aa5ZoI?xrW2T zulQC$$vw6#367i0+(YwsO>*hjs_O<|4^tfo1PG_vpWXm55ABMFpR4)agK|Rw(~>Mi zA?0~{8$PqTBoJj56%_?g^j5lks(zVj;8%bKF!kTOsbJh!aS)&jB=Xt<zO5WtqN%Al zAIT3s`_200YG!AZ><V4P_<(&$qJ!Em7E;M@1&Na>9fCio@&cWxmQ-DhdJ;6x=7sud z2S~x+s68tNt;ed)rE2TzKr?ds=l}np@lr6u@s=-dkNNHcF|S&)V9R2#HZ@0EX9VYv HZ`6MPEO#^o literal 0 HcmV?d00001 diff --git a/source/index.rst b/source/index.rst index 48318757f717..acd214d25323 100644 --- a/source/index.rst +++ b/source/index.rst @@ -1,5 +1,6 @@ .. EBBR Source Document Copyright Arm Limited, 2017-2019 + Copyright Western Digital Corporation or its affiliates, 2021 SPDX-License-Identifier: CC-BY-SA-4.0 #################################################### @@ -8,6 +9,8 @@ Embedded Base Boot Requirements (EBBR) Specification Copyright © 2017-2019 Arm Limited and Contributors. +Copyright © 2021 Western Digital Corporation or its affiliates. + This work is licensed under the Creative Commons Attribution-ShareAlike 4.0 International License. To view a copy of this license, visit http://creativecommons.org/licenses/by-sa/4.0/ or send a letter to diff --git a/source/references.rst b/source/references.rst index 6d09d3c0aaa7..5b777a4d032f 100644 --- a/source/references.rst +++ b/source/references.rst @@ -29,3 +29,9 @@ .. [UEFI] `Unified Extensable Firmware Interface Specification v2.8 Errata A <https://uefi.org/sites/default/files/resources/UEFI_Spec_2_8_A_Feb14.pdf>`_, February 2020, `UEFI Forum <http://www.uefi.org>`_ + +.. [RVPLTSPEC] `RISC-V Platform specification <https://github.com/riscv/riscv-platform-specs>`_ + +.. [RVSBISPEC] `RISC-V Supervisor Binary Interface specification <https://github.com/riscv/riscv-sbi-doc>`_ + +.. [RVHYPSPEC] `RISC-V ISA Hypervisor extension <https://github.com/riscv/riscv-isa-manual/blob/master/src/hypervisor.tex>`_ -- 2.30.1

4 years, 3 months

5
15
0 0

No EBBR Biweekly for 5th or 19th July

by Grant Likely

I'm out on annual leave. There will be no EBBR biweekly meetings for July. g. IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.

4 years, 4 months

1
0
0 0

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

boot-architecture