nss-util-3.67.0-7.el8_5 >  @ aM<U] D-Z^]pd`0~o/0i8BajEi": KaM%˲fl )tx x;.RXQqyi]-Pa$NA|+ S x)(Ez}5àm:)3Aȍϝ o̦pG, g1*.q͎8\\ dW^*(|&K>~v陚mJּN:o 5ϯrnYقoؼ*J n=2br2q̞1 _~JdZ/d1c'R)  DȌFji KK6uZSJR>b^ p(e*P8tv tjō? ݆n![-M5lkAǏN]cH<0H*3ΰz\ސ\ /& 0}#F/R~9,S+F/LkQ)1ab1b7ef67f117fedfc1f84433277387c521e72f985a0d20bb17f2400c859c23a6da087e9dfea4240baa53f82667aa6b6f62f9f9ȉaM<U]VTm 5ҎXi 1dQ;ڦ031#W&_ZvWi۾^/eai".-=ŗ C{N(14`LϧT>gnu&뚚=0AKS+]hO6WnPFp̌I}6[Dzls'/pLfAv ɶp-ŽұK1Cxۆ(c5xe"9٪$kQ4&X 7X ˟ިu@ۈ -\t 9:ktSpr~lW6@k?qe}bL̠[F5&+%:Oz"B .'QQ.Ń-}p:$Y NUHV-iϠ)66iᙕx /w+hYTzz [ WkwdUx18bkPG*EfnPFduôv00g "2|fxbX>p<?d   F "(0H T ` x  (@^|,l(8 9 :[GHI4X<Y\]^$bdefltuvwxy`djCnss-util3.67.07.el8_5Network Security Services Utilities LibraryUtilities for Network Security Services and the Softoken modulea,aarch64-02.mbox.centos.org^TCentOSCentOSMPLv2.0CentOS Buildsys Unspecifiedhttp://www.mozilla.org/projects/security/pki/nss/linuxaarch64$FAAA큤a,a,a,aMa,`1797f46dcf04f5f4dbac2f54a8f2abe8dab5ab03b91c02b36345e2a3273d33eda20c1a32d1f8102432360b42e932869f7c11c7cdbacf9cac554c422132af47f4../../../../usr/lib64/libnssutil3.sorootrootrootrootrootrootrootrootrootrootrootrootnss-3.67.0-7.el8_5.src.rpmlibnssutil3.so()(64bit)libnssutil3.so(NSSUTIL_3.12)(64bit)libnssutil3.so(NSSUTIL_3.12.3)(64bit)libnssutil3.so(NSSUTIL_3.12.5)(64bit)libnssutil3.so(NSSUTIL_3.12.7)(64bit)libnssutil3.so(NSSUTIL_3.13)(64bit)libnssutil3.so(NSSUTIL_3.14)(64bit)libnssutil3.so(NSSUTIL_3.15)(64bit)libnssutil3.so(NSSUTIL_3.17.1)(64bit)libnssutil3.so(NSSUTIL_3.21)(64bit)libnssutil3.so(NSSUTIL_3.24)(64bit)libnssutil3.so(NSSUTIL_3.25)(64bit)libnssutil3.so(NSSUTIL_3.31)(64bit)libnssutil3.so(NSSUTIL_3.33)(64bit)libnssutil3.so(NSSUTIL_3.38)(64bit)libnssutil3.so(NSSUTIL_3.39)(64bit)libnssutil3.so(NSSUTIL_3.59)(64bit)nss-utilnss-util(aarch-64)@@@@@@@@@@     @ld-linux-aarch64.so.1()(64bit)ld-linux-aarch64.so.1(GLIBC_2.17)(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.17)(64bit)libdl.so.2()(64bit)libnspr4.so()(64bit)libplc4.so()(64bit)libplds4.so()(64bit)libpthread.so.0()(64bit)libpthread.so.0(GLIBC_2.17)(64bit)nsprrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)rtld(GNU_HASH)4.25.03.0.4-14.6.0-14.0-15.2-14.14.3a@@`E`ݮ@` @`ٹ`̊`9@`Ȗ@`D`r_@_^@___@__"@_"@_"@_!d_@_ L_ _@^^@@^@^ۅ@^4]N@]]߶]e@]M@]µ]L]]^@\F@\Q\\\\\\@\I\I\U@\ `\l@[[[u[#@[[W[O+[M@[ZZw@Z|;Zo Zo Zg#Z ZZZ@Y+@Y{YY@Yn@YV@Y@YyYm@Yg`YJ_Y1S@XX@XX @XXYX@X@XX~@Xx@XoX>@X*X@WW@Wt@W~Wv[@WrfWoWm WbWQq@WPWJWDB@W4p@W@Wo@W@VV޾V޾V@VяVIVɦV@V@V=@V@V@VO @VHsVEV3[V UYU@UU@U@U>Ua@Ug@U[%UUU @T@Ts@TTء@T@TÉ@TT@T@T?@T:m@T"@S@S<@S@S@S @SSSSpShS(5@S@SRy@RJ@R@RR@RSRR@Rm@Rg@RD!R@RRR|Q@Q*@QQ@QKQ@QQW@Qw@Q]k@QNQ9Q7/Q#@QQ @P!@PՠP @PqP@P@PAPXPd@Pd@PPP@PP5@PPnP;a@P(@P H@O;O;O@OiO@O@O}O~OiOYOX@OOdO&@O!@@OO@O@N>@N>@NNܲ@N`NؽNN@NuN;@Np@Nf @NA!@N*NpM@MWMc@MM@M@MMfH@M^_@MZjMS@MQ0@MQ0@MQ0@MQ0@MK@MGMF@M6@M-MM@Ls@LOLLZ@L6LdL@L*@L@LA@LL@L4Lx@Lx@Li(@Lf@L_L_LT@L0L0L K @KsKsKKCKCKCK]KMKLd@KD{@K<@K5K4@K,@K+nK*@K K@K@K@KJݦ@J - 3.67.0-7Bob Relyea - 3.67.0-6Bob Relyea - 3.67.0-5Bob Relyea - 3.67.0-4Bob Relyea - 3.67.0-3Bob Relyea - 3.67.0-2Bob Relyea - 3.67.0-1Bob Relyea - 3.66.0-2Bob Relyea - 3.66.0-1.1Bob Relyea - 3.66.0-1Bob Relyea - 3.53.1-17Bob Relyea - 3.53.1-16Bob Relyea - 3.53.1-15Bob Relyea - 3.53.1-14Bob Relyea - 3.53.1-13Bob Relyea - 3.53.1-12Bob Relyea - 3.53.1-11Bob Relyea - 3.53.1-10Daiki Ueno - 3.53.1-9Daiki Ueno - 3.53.1-8Bob Relyea - 3.53.1-7Daiki Ueno - 3.53.1-6Bob Relyea - 3.53.1-5Bob Relyea - 3.53.1-4Daiki Ueno - 3.53.1-3Daiki Ueno - 3.53.1-2Daiki Ueno - 3.53.1-1Daiki Ueno - 3.53.0-1Bob Relyea - 3.44.0-15Bob Relyea - 3.44.0-14Bob Relyea - 3.44.0-13Daiki Ueno - 3.44.0-12Bob Relyea - 3.44.0-11Daiki Ueno - 3.44.0-10Bob Relyea - 3.44.0-9Bob Relyea - 3.44.0-8Daiki Ueno - 3.44.0-7Daiki Ueno - 3.44.0-6Daiki Ueno - 3.44.0-5Bob Relyea - 3.44.0-4.1Bob Relyea - 3.44.0-4Daiki Ueno - 3.44.0-3Bob Relyea - 3.44.0-2Daiki Ueno - 3.44.0-1Daiki Ueno - 3.41.0-5Bob Relyea - 3.41.0-4Daiki Ueno - 3.41.0-3Daiki Ueno - 3.41.0-2Daiki Ueno - 3.41.0-1Daiki Ueno - 3.39.0-1.5Bob Relyea - 3.39.0-1.4Daiki Ueno - 3.39.0-1.3Daiki Ueno - 3.39.0-1.2Daiki Ueno - 3.39.0-1.1Daiki Ueno - 3.39.0-1.0Daiki Ueno - 3.38.0-1.2Daiki Ueno - 3.38.0-1.1Daiki Ueno - 3.38.0-1.0Kai Engert - 3.36.1-1.2Daiki Ueno - 3.36.1-1.1Daiki Ueno - 3.36.1-1.0Daiki Ueno - 3.36.0-1.0Fedora Release Engineering - 3.35.0-5Kai Engert - 3.35.0-4Kai Engert - 3.35.0-3Daiki Ueno - 3.35.0-2Daiki Ueno - 3.34.0-2Daiki Ueno - 3.33.0-6Kai Engert - 3.33.0-5Kai Engert - 3.33.0-4Kai Engert - 3.33.0-3Daiki Ueno - 3.33.0-2Daiki Ueno - 3.32.1-2Daiki Ueno - 3.32.0-4Kai Engert - 3.32.0-3Daiki Ueno - 3.32.0-2Fedora Release Engineering - 3.31.0-6Fedora Release Engineering - 3.31.0-5Daiki Ueno - 3.31.0-4Daiki Ueno - 3.31.0-3Daiki Ueno - 3.31.0-2Daiki Ueno - 3.30.2-3Daiki Ueno - 3.30.2-2Kai Engert - 3.30.0-3Daiki Ueno - 3.30.0-2Kai Engert - 3.29.1-3Daiki Ueno - 3.29.1-2Daiki Ueno - 3.29.0-3Daiki Ueno - 3.29.0-2Daiki Ueno - 3.28.1-6Daiki Ueno - 3.28.1-5Daiki Ueno - 3.28.1-4Daiki Ueno - 3.28.1-3Daiki Ueno - 3.28.1-2Daiki Ueno - 3.27.2-2Daiki Ueno - 3.27.0-5Kai Engert - 3.27.0-4Daiki Ueno - 3.27.0-3Daiki Ueno - 3.27.0-2Daiki Ueno - 3.26.0-2Elio Maldonado - 3.25.0-6Elio Maldonado - 3.25.0-5Elio Maldonado - 3.25.0-4Elio Maldonado - 3.25.0-3Elio Maldonado - 3.25.0-2Kamil Dudka - 3.24.0-3Elio Maldonado - 3.24.0-2.3Elio Maldonado - 3.24.0-2.2Elio Maldonado - 3.24.0-2.1Elio Maldonado - 3.24.0-2.0Elio Maldonado - 3.23.0-9Elio Maldonado - 3.23.0-8Elio Maldonado - 3.23.0-7Elio Maldonado - 3.23.0-6Elio Maldonado - 3.23.0-5Elio Maldonado - 3.23.0-4Elio Maldonado - 3.23.0-3Elio Maldonado - 3.23.0-2Elio Maldonado - 3.22.2-2Elio Maldonado - 3.22.1-3Elio Maldonado - 3.22.1-1Elio Maldonado - 3.22.0-3Elio Maldonado - 3.22.0-2Fedora Release Engineering - 3.21.0-7Elio Maldonado - 3.21.0-6Michal Toman - 3.21.0-5Elio Maldonado - 3.21.0-4Elio Maldonado - 3.21.0-3Elio Maldonado Batiz - 3.21.1-2Elio Maldonado - 3.20.1-2Elio Maldonado - 3.20.0-6Elio Maldonado - 3.20.0-5Elio Maldonado - 3.20.0-4Elio Maldonado - 3.20.0-3Elio Maldonado - 3.20.0-2Elio Maldonado - 3.19.3-2Elio Maldonado - 3.19.2-3Kai Engert - 3.19.2-2Kai Engert - 3.19.1-2Kai Engert - 3.19.0-2Kai Engert - 3.18.0-2Elio Maldonado - 3.18.0-1Elio Maldonado - 3.17.4-5Till Maas - 3.17.4-4Elio Maldonado - 3.17.4-3Elio Maldonado - 3.17.4-2Elio Maldonado - 3.17.4-1Ville Skyttä - 3.17.3-4Elio Maldonado - 3.17.3-3Elio Maldonado - 3.17.3-2Elio Maldonado - 3.17.3-1Elio Maldonado - 3.17.2-2Elio Maldonado - 3.17.2-1Kai Engert - 3.17.1-1Kevin Fenzi - 3.17.0-2Elio Maldonado - 3.17.0-1Fedora Release Engineering - 3.16.2-4Elio Maldonado - 3.16.2-3Tom Callaway - 3.16.2-2Elio Maldonado - 3.16.2-1Elio Maldonado - 3.16.1-4Fedora Release Engineering - 3.16.1-3Jaromir Capik - 3.16.1-2Elio Maldonado - 3.16.1-1Elio Maldonado - 3.16.0-1Elio Maldonado - 3.15.5-2Elio Maldonado - 3.15.5-1Elio Maldonado - 3.15.4-5Elio Maldonado - 3.15.4-4Elio Maldonado - 3.15.4-3Peter Robinson 3.15.4-2Elio Maldonado - 3.15.4-1Elio Maldonado - 3.15.3.1-1Elio Maldonado - 3.15.3-2Elio Maldonado - 3.15.3-1Elio Maldonado - 3.15.2-3Elio Maldonado - 3.15.2-2Elio Maldonado - 3.15.2-1Elio Maldonado - 3.15.1-7Elio Maldonado - 3.15.1-6Elio Maldonado - 3.15.1-5Elio Maldonado - 3.15.1-4Elio Maldonado - 3.15.1-3Elio Maldonado - 3.15.1-2Elio Maldonado - 3.15.1-1Elio Maldonado - 3.15-5emaldona - 3.15-4emaldona - 3.15-3Elio Maldonado - 3.15-2Elio Maldonado - 3.15-1Elio Maldonado - 3.15-0.1.beta1.2Elio Maldonado - 3.15-0.1.beta1.1Kai Engert - 3.14.3-12Kai Engert - 3.14.3-10Kai Engert - 3.14.3-9Elio Maldonado - 3.14.3-1Elio Maldonado - 3.14.2-2Elio Maldonado - 3.14.2-1Kai Engert - 3.14.1-3Elio Maldonado - 3.14.1-2Elio Maldonado - 3.14.1-1Elio Maldonado - 3.14-12Elio Maldonado - 3.14-11Elio Maldonado - 3.14-10Elio Maldonado - 3.14-9Elio Maldonado - 3.14-8Elio Maldonado - 3.14-7Elio Maldonado - 3.14-6Elio Maldonado - 3.14-5Elio Maldonado - 3.14-4Elio Maldonado - 3.14-3Elio Maldonado - 3.14-2Elio Maldonado - 3.14-1Elio Maldonado - 3.14-0.1.rc.1Kai Engert - 3.13.6-1Elio Maldonado - 3.13.5-8Elio Maldonado - 3.13.5-7Fedora Release Engineering - 3.13.5-6Elio Maldonado - 3.13.5-5Elio Maldonado - 3.13.5-4Elio Maldonado - 3.13.5-3Elio Maldonado - 3.13.5-2Elio Maldonado - 3.13.5-1Elio Maldonado - 3.13.4-3Elio Maldonado - 3.13.4-2Elio Maldonado - 3.13.4-1Elio Maldonado - 3.13.3-4Elio Maldonado - 3.13.3-3Elio Maldonado - 3.13.3-2Elio Maldonado - 3.13.3-1Tom Callaway - 3.13.1-13Elio Maldonado - 3.13.1-12Fedora Release Engineering - 3.13.1-11Elio Maldonado - 3.13.1-11Elio Maldonado - 3.13.1-10elio maldonado - 3.13.1-9Elio Maldonado - 3.13.1-8Elio Maldonado - 3.13.1-7Elio Maldonado - 3.13.1-6Elio Maldonado - 3.13.1-5Elio Maldonado Batiz - 3.13.1-4Elio Maldonado - 3.13.1-2Elio Maldonado - 3.13.1-1Elio Maldonado - 3.13-1Elio Maldonado - 3.13-0.1.rc0.1Elio Maldonado - 3.12.11-3Kai Engert - 3.12.11-2Elio Maldonado - 3.12.11-1Elio Maldonado - 3.12.10-6Michael Schwendt - 3.12.10-5Elio Maldonado - 3.12.10-4Dennis Gilmore - 3.12.10-3Elio Maldonado - 3.12.10-2Elio Maldonado - 3.12.10-1Elio Maldonado - 3.12.10-0.1.beta1Elio Maldonado - 3.12.9-15Elio Maldonado - 3.12.9-14Elio Maldonado - 3.12.9-13Elio Maldonado - 3.12.9-12Elio Maldonado - 3.12.9-11Elio Maldonado - 3.12.9-10Elio Maldonado - 3.12.9-9Fedora Release Engineering - 3.12.9-8Elio Maldonado - 3.12.9-7Christopher Aillon - 3.12.9-6Elio Maldonado - 3.12.9-5Elio Maldonado - 3.12.9-4Elio Maldonado - 3.12.9-3Elio Maldonado - 3.12.9-2Elio Maldonado - 3.12.9-1Elio Maldonado - 3.12.9-0.1.beta2Elio Maldonado - 3.12.8.99.2-1Elio Maldonado - 3.12.8.99.1-1Elio Maldonado - 3.12.8-9Elio Maldonado - 3.12.8-8Elio Maldonado - 3.12.8-7Elio Maldonado - 3.12.8-6Elio Maldonado - 3.12.8-5Elio Maldonado - 3.12.8-4Elio Maldonado - 3.12.8-3Elio Maldonado - 3.12.8-2Elio Maldonado - 3.12.8-1Elio Maldonado - 3.12.7.99.4-1Elio Maldonado - 3.12.7.99.3-2Elio Maldonado - 3.12.7.99.3-1Elio Maldonado - 3.12.7-3Elio Maldonado - 3.12.7-2Elio Maldonado - 3.12.7-1Elio Maldonado - 3.12.6-12Elio Maldonado - 3.12.6-11Elio Maldonado - 3.12.6-10Elio Maldonado - 3.12.6-9Dennis Gilmore - 3.12.6-8Elio Maldonado - 3.12.6-7Elio Maldonado - 3.12.6-6Elio Maldonado - 3.12.6-5Elio Maldonado - 3.12.6-4Elio Maldonado - 3.12.6-3Elio Maldonado - 3.12.6-2Elio Maldonado - 3.12.6-1.2Elio Maldonado - 3.12.6-1.1Elio Maldonado - 3.12.6-1Elio Maldonado - 3.12.5-8Elio Maldonado - 3.12.5-5Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1.13.2Elio Maldonado - 3.12.5-1.13.1Elio Maldonado - 3.12.5-1.13Elio Maldonado - 3.12.5-1.11Elio maldonado - 3.12.5-1.9Elio Maldonado - 3.12.5-2.7Elio Maldonado - 3.12.5-1.6Elio Maldonado - 3.12.5-1.5Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1Elio Maldonado - 3.12.4-14.1Elio Maldonado - 3.12.4-13.1Elio Maldonado - 3.12.4-13Elio Maldonado - 3.12.4-12Elio Maldonado - 3.12.4-11Elio Maldonado - 3.12.4-10Elio Maldonado - 3.12.4-8Elio Maldonado - 3.12.4-6Elio Maldonado - 3.12.4-5Elio Maldonado - 3.12.4-4Elio Maldonado - 3.12.4-3Elio Maldonado - 3.12.4-2Elio Maldonado - 3.12.4-1Elio Maldonado - 3.12.3.99.3-30Elio Maldonado - 3.12.3.99.3-29Elio Maldonado - 3.12.3.99.3-28Elio Maldonado - 3.12.3.99.3-27Elio Maldonado - 3.12.3.99.3-26Elio Maldonado - 3.12.3.99.3-25Warren Togami - 3.12.3.99.3-24Elio Maldonado - 3.12.3.99.3-23Elio Maldonado - 3.12.3.99.3-22Elio Maldonado - 3.12.3.99.3-21Elio Maldonado - 3.12.3.99.3-20Elio Maldonado - 3.12.3.99.3-19Elio Maldonado - 3.12.3.99.3-18Elio Maldonado - 3.12.3.99.3-16Dennis Gilmore - 3.12.3.99.3-15Dennis Gilmore - 3.12.3.99.3-14Dennis Gilmore - 3.12.3.99.3-13Dennis Gilmore - 3.12.3.99.3-12Elio Maldonado+emaldona@redhat.com - 3.12.3.99.3-11Elio Maldonado - 3.12.3.99.3-10Dennis Gilmore - 3.12.3.99.3-9Elio Maldonado - 3.12.3.99.3-7.1Fedora Release Engineering - 3.12.3.99.3-7Elio Maldonado - 3.12.3.99.3-6Elio Maldonado - 3.12.3.99.3-5Elio Maldonado - 3.12.3.99.3-4Kai Engert - 3.12.3.99.3-3Kai Engert - 3.12.3.99.3-2Kai Engert - 3.12.3-7Kai Engert - 3.12.3-4Kai Engert - 3.12.3-3Kai Engert - 3.12.3-2Kai Engert - 3.12.2.99.3-7Kai Engert - 3.12.2.99.3-6Kai Engert - 3.12.2.99.3-5Kai Engert - 3.12.2.99.3-4Kai Engert - 3.12.2.99.3-3Kai Engert - 3.12.2.99.3-2Kai Engert - 3.12.2.99.3-1Fedora Release Engineering - 3.12.2.0-4Kai Engert - 3.12.2.0-3Dennis Gilmore - 3.12.1.1-4Kai Engert - 3.12.1.1-3Kai Engert - 3.12.1.1-2Kai Engert - 3.12.1.0-2Kai Engert - 3.12.0.3-7Kai Engert - 3.12.0.3-6Kai Engert - 3.12.0.3-3Kai Engert - 3.12.0.3-2Kai Engert - 3.12.0.1-1Jesse Keating - 3.11.99.5-2Kai Engert - 3.11.99.5-1Kai Engert - 3.11.99.4-1Kai Engert - 3.11.99.3-6Kai Engert - 3.11.99.3-5Kai Engert - 3.11.99.3-4Kai Engert - 3.11.99.3-3Kai Engert - 3.11.99.3-2Kai Engert - 3.11.99.3-1Kai Engert - 3.11.99.2b-3Kai Engert - 3.11.99.2b-2Kai Engert - 3.11.99.2-2Kai Engert - 3.11.99.2-1Kai Engert - 3.11.7-10Rob Crittenden - 3.11.7-9Kai Engert - 3.11.7-8Bob Relyea - 3.11.7-7Kai Engert - 3.11.7-6Kai Engert - 3.11.7-5Kai Engert - 3.11.7-4Kai Engert - 3.11.7-3Kai Engert - 3.11.7-2Kai Engert - 3.11.5-2Kai Engert - 3.11.5-1Bob Relyea - 3.11.4-4Kai Engert - 3.11.4-1Kai Engert - 3.11.3-2Kai Engert - 3.11.3-1Kai Engert - 3.11.2-2Jesse Keating - 3.11.2-1.1Kai Engert - 3.11.2-1Kai Engert - 3.11.1-2Kai Engert - 3.11.1-1Kai Engert - 3.11-4Jesse Keating - 3.11-3.2Jesse Keating - 3.11-3.1Ray Strode 3.11-3Christopher Aillon 3.11-2Christopher Aillon 3.11-1Christopher Aillon 3.11-0.cvs.2Christopher Aillon 3.11-0.cvsKai Engert Rob Crittenden 3.10-1- Fix CVE 2021 43527- Fix ssl alert issue- Fix issue with reading databases that were updated using unpatched versions of nss- Better fix for the sdb timeout. The issue wasn't a race, it was the sqlite timeout waiting to begin a transaction under heavy thread usage.- Fix sdb race condition- Fix coverity issues- Rebase to NSS 3.67- Restore old pkcs12 defaults.- build nss for older nspr so we can pass gating with the new nspr in the build root- Rebase to NSS 3.66- Fix various corner cases with ike v1 app b support.- Fix the following CVE - CVE-2020-12403 chacha-poly issues - CVE-2020-12400 constant time ECC. - CVE-2020-6829 constant time ECC.- Revert some policy changes the generate ABI runtime issues.- Add support for enable/disable in policy. Now if your policy file has disallow=x enable=y it will act just like our other libraries.- Add OAEP interface so applications can wrap keys with RSA-OAEP rather than RSA-PKCS-1.- fips need to reject small primes even if they are approved - code to autodetect whether or not to use the cache needs to do so in a way that doesn't mess with filesystem negative file caching. - add kdf selftests- Fix issue with upgradedb where upgradedb expects standard to generate dbm databases, not sql databases (default in RHEL8)- Disable dh timing test because it's unreliable on s390- Explicitly enable upgradedb/sharedb test cycles- Disable Delegated Credentials for TLS- Fix attribute decryption issue where the private key components integrity check on private attributes where not being checked.- Update nss-rsa-pkcs1-sigalgs.patch to the upstream version- Include required checks for dh and ecdh key generation in FIPS mode.- Add better checks for dh derive operations in FIPS mode.- Disable NSS_HASH_ALG_SUPPORT as well for MD5 (#1849938) - Adjust for update-crypto-policies packaging change (#1848649) - Fix compilation with -Werror=strict-prototypes (#1843417)- Fix regression in MD5 disablement (#1849938) - Include rsa_pkcs1_* in signature_algorithms extension (#1847945)- Update to NSS 3.53.1- Update to NSS 3.53- Fix swapped CMAC PKCS #11 values. - Fix data alignment crash in CMAC.- Fix coverify scan issue- Fix endian problem in SP-800 108 code.- Install cmac.h required by blapi.h (#1764513) - Fix out-of-bounds write in NSC_EncryptUpdate (#1775913)- Add SP-800 108 Generalized kdf- Check policy against hash algorithms used for ServerKeyExchange (#1730039)- Add CMAC- CKM_NSS_IKE1_APP_B_PRF_DERIVE was missing from the mechanism list, preventing PK11_Derive*() from using it. Add gtests for the PK11_Derive interface for all the CKM_NSS_IKE*_DERIVE mechanism.- Backport fixes from 3.44.1- Add continuous RNG test required by FIPS - fipstest: use CKM_TLS12_MASTER_KEY_DERIVE instead of vendor specific mechanism- Rebuild with the correct build target- rebuild to try to retrigger CI tests- Fix certutil man page - Fix extracting a public key from a private key for dh, ec, and dsa- Disable TLS 1.3 under FIPS mode - Disable RSASSA-PKCS1-v1_5 in TLS 1.3 - Fix post-handshake auth transcript calculation if SSL_ENABLE_SESSION_TICKETS is set - Revert the change to use XDG basedirs (mozilla#818686)- Add ike mechanisms in softokn - Add FIPS checks in softoken- Update to NSS 3.44 - Define NSS_SEED_ONLY_DEV_URANDOM=1 to exclusively use getentropy - Use %autosetup - Clean up manual pages generation - Clean up %check - Remove prelink dependency, which is not available in RHEL-8 - Remove upstreamed patches- Update manual pages to reflect recent changes in commands- Make sure corresponding public keys are created when importing private keys.- Fix the last change - Add --no-reload option to update-crypto-policies to avoid unnecessary restart of daemons- Restore LDFLAGS injection when linking DSO- Update to NSS 3.41 - Consolidate nss-util, nss-softokn, and nss into a single source package- Fix the last commit- Support for IKE/IPsec typical PKIX usage so libreswan can use nss without rejecting certs based on EKU- Backport upstream fixes for rhbz#1649026, rhbz#1608895, rhbz#1644854 - Document PKCS #11 URI - Add warning when adding module with modutil while p11-kit is enabled- Update nss-dsa.patch to not advertise DSA signature algorithm - Update PayPal test certs for testing- Backport "DSA" keyword in crypto-policies- Update to NSS 3.39- Fix LDFLAGS injection when linking DSO- Install crypto-policies configuration file for https://fedoraproject.org/wiki/Changes/NSSLoadP11KitModules - Port enable-fips-when-system-is-in-fips-mode.patch from RHEL-7 - Use %ldconfig_scriptlets - Remove needless use of %defattr, by Jason Tibbitts- Update to NSS 3.38- Backport upstream addition of nss-policy-check utility, rhbz#1428746, includes required fixes for mozbz#1296263 and mozbz#1474875- Switch the default DB type to SQL - Enable SSLKEYLOGFILE- Update to NSS 3.36.1 - Remove nss-3.14.0.0-disble-ocsp-test.patch - Fix partial injection of LDFLAGS - Remove NSS_NO_PKCS11_BYPASS, which is no-op in upstream- Update to NSS 3.36.0 - Add gcc-c++ to BuildRequires (C++ is needed for gtests) - Make test failure detection robuster- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild- Fix a compiler error with gcc 8, mozbz#1434070 - Set NSS_FORCE_FIPS=1 at %build time, and remove from %check.- Stop pulling in nss-pem automatically, packages that need it should depend on it, rhbz#1539401- Update to NSS 3.35.0- Update to NSS 3.34.0- Make sure 32bit nss-pem always be installed with 32bit nss in multlib environment, patch by Kamil Dudka- Fix test script- Update tests to be compatible with default NSS DB changed to sql (the default was changed in the nss-util package).- rhbz#1505487, backport upstream fixes required for rhbz#1496560- Update to NSS 3.33.0- Update to NSS 3.32.1- Update iquote.patch to really prefer in-tree headers over system headers- NSS libnssckbi.so has already been obsoleted by p11-kit-trust, rhbz#1484449- Update to NSS 3.32.0- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild- Backport mozbz#1381784 to avoid deadlock in dnf- Move signtool to %_libdir/nss/unsupported-tools, for: https://fedoraproject.org/wiki/Changes/NSSSigntoolDeprecation- Rebase to NSS 3.31.0- Enable gtests- Rebase to NSS 3.30.2 - Enable TLS 1.3- Backport upstream mozbz#1328318 to support crypto policy FUTURE.- Rebase to NSS 3.30.0 - Remove upstreamed patches- Backport mozbz#1334976 and mozbz#1336487.- Rebase to NSS 3.29.1- Disable TLS 1.3, following the upstream change- Rebase to NSS 3.29.0 - Suppress -Werror=int-in-bool-context warnings with GCC7- Work around pkgconfig -> pkgconf transition issue (releng#6597)- Disable TLS 1.3 - Add "Conflicts" with packages using older Mozilla codebase, which is not compatible with NSS 3.28.1 - Remove NSS_ECC_MORE_THAN_SUITE_B setting, as it was removed in upstream- Add "Conflicts" with older firefox packages which don't have support for smaller curves added in NSS 3.28.1- Fix incorrect version specification in %nss_{util,softokn}_version, pointed by Elio Maldonado- Rebase to NSS 3.28.1 - Remove upstreamed patch for disabling RSA-PSS - Re-enable TLS 1.3- Rebase to NSS 3.27.2- Revert the previous fix for RSA-PSS and use the upstream fix instead- Disable the use of RSA-PSS with SSL/TLS. #1383809- Disable TLS 1.3 for now, to avoid reported regression with TLS to version intolerant servers- Rebase to NSS 3.27.0 - Remove upstreamed ectest patch- Rebase to NSS 3.26.0 - Update check policy file patch to better match what was upstreamed - Remove conditionally ignore system policy patch as it has been upstreamed - Skip ectest as well as ecperf, which are built as part of nss-softokn - Fix rpmlint error regarding %define usage- Incorporate some changes requested in upstream review and commited upstream (#1157720)- Add support for conditionally ignoring the system policy (#1157720) - Remove unneeded test scripts patches in order to run more tests - Remove unneeded test data modifications from the spec file- Remove obsolete patch and spurious lines from the spec file (#1347336)- Cleanup spec file and patches and add references to bugs filed upstream- Rebase to nss 3.25- decouple nss-pem from the nss package (#1347336)- Apply the patch that was last introduced - Renumber and reorder some of the patches - Resolves: Bug 1342158- Allow application requests to disable SSL v2 to succeed - Resolves: Bug 1342158 - nss-3.24 does no longer support ssl V2, installation of IPA fails because nss init fails- Rebase to NSS 3.24.0 - Restore setting the policy file location - Make ssl tests scripts aware of policy - Ajust tests data expected result for policy- Bootstrap build to rebase to NSS 3.24.0 - Temporarily not setting the policy file location- Change POLICY_FILE to "nss.config"- Change POLICY_FILE to "nss.cfg"- Change the POLICY_PATH to "/etc/crypto-policies/back-ends" - Regenerate the check policy patch with hg to provide more context- Fix typo in the last %changelog entry- Load policy file if /etc/pki/nssdb/policy.cfg exists - Resolves: Bug 1157720 - NSS should enforce the system-wide crypto policy- Remove unused patch rendered obsolete by pem update- Update pem sources to latest from nss-pem upstream - Resolves: Bug 1300652 - [PEM] insufficient input validity checking while loading a private key- Rebase to NSS 3.23- Rebase to NSS 3.22.2- Fix ssl2/exp test disabling to run all the required tests- Rebase to NSS 3.22.1- Update .gitignore as part of updating to nss 3.22- Update to NSS 3.22- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild- Resolves: Bug 1299040 - Enable ssl_gtests upstream test suite - Remove 'export NSS_DISABLE_GTESTS=1' go ssl_gtests are built - Use %define when specifying the nss_tests to run- Add 64-bit MIPS to multilib arches- Update %{nss_util_version} and %{nss_softokn_version} to 3.21.0 - Resolves: Bug 1284095 - all https fails with sec_error_no_token- Add references to bugs filed upstream- Update to NSS 3.21 - Package listsuites as part of the unsupported tools set - Resolves: Bug 1279912 - nss-3.21 is available - Resolves: Bug 1258425 - Use __isa_bits macro instead of list of 64-bit - Resolves: Bug 1280032 - Package listsuites as part of the nss unsupported tools set- Update to NSS 3.20.1- Enable ECC cipher-suites by default [hrbz#1185708] - Split the enabling patch in two for easier maintenance - Remove unused patches rendered obsolete by prior rebase- Enable ECC cipher-suites by default [hrbz#1185708] - Implement corrections requested in code review- Enable ECC cipher-suites by default [hrbz#1185708]- Fix patches that disable ssl2 and export cipher suites support - Fix libssl patch that disable ssl2 & export cipher suites to not disable RSA_WITH_NULL ciphers - Fix syntax errors in patch to skip ssl2 and export cipher suite tests - Turn ssl2 off by default in the tstclnt tool - Disable ssl stress tests containing TLS RC4 128 with MD5- Update to NSS 3.20- Update to NSS 3.19.3- Create on the fly versions of sslcov.txt and sslstress.txt that disable tests for SSL2 and EXPORT ciphers- Update to NSS 3.19.2- Update to NSS 3.19.1- Update to NSS 3.19- Replace expired test certificates, upstream bug 1151037- Update to nss-3.18.0 - Resolves: Bug 1203689 - nss-3.18 is available- Disable export suites and SSL2 support at build time - Fix syntax errors in various shell scripts - Resolves: Bug 1189952 - Disable SSL2 and the export cipher suites- Rebuilt for Fedora 23 Change https://fedoraproject.org/wiki/Changes/Harden_all_packages_with_position-independent_code- Commented out the export NSS_NO_SSL2=1 line to not disable ssl2 - Backing out from disabling ssl2 until the patches are fixed- Disable SSL2 support at build time - Fix syntax errors in various shell scripts - Resolves: Bug 1189952 - Disable SSL2 and the export cipher suites- Update to nss-3.17.4- Own the %{_datadir}/doc/nss-tools dir- Resolves: Bug 987189 - nss-tools RPM conflicts with perl-PAR-Packer - Install pp man page in %{_datadir}/doc/nss-tools/pp.1 - Use %{_mandir} instead of /usr/share/man as more generic- Install pp man page in alternative location - Resolves: Bug 987189 - nss-tools RPM conflicts with perl-PAR-Packer- Update to nss-3.17.3 - Resolves: Bug 1171012 - nss-3.17.3 is available- Resolves: Bug 994599 - Enable TLS 1.2 by default- Update to nss-3.17.2- Update to nss-3.17.1 - Add a mechanism to skip test suite execution during development work- Rebuild for rpm bug 1131960- Update to nss-3.17.0- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild- Replace expired PayPal test cert with current one to prevent build failure- fix license handling- Update to nss-3.16.2- Remove unwanted source directories at end of %prep so it truly does it - Skip the cipher suite already run as part of the nss-softokn build- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild- Replacing ppc64 and ppc64le with the power64 macro - Related: Bug 1052545 - Trivial change for ppc64le in nss spec- Update to nss-3.16.1 - Update the iquote patch on account of the rebase - Improve error detection in the %section - Resolves: Bug 1094702 - nss-3.16.1 is available- Update to nss-3.16.0 - Cleanup the copying of the tools man pages - Update the iquote.patch on account of the rebase- Restore requiring nss_softokn_version >= 3.15.5- Update to nss-3.15.5 - Temporarily requiring only nss_softokn_version >= 3.15.4 - Fix location of sharedb files and their manpages - Move cert9.db, key4.db, and pkcs11.txt to the main package - Move nss-sysinit manpages tar archives to the main package - Resolves: Bug 1066877 - nss-3.15.5 is available - Resolves: Bug 1067091 - Move sharedb files to the %files section- Revert previous change that moved some sysinit manpages - Restore nss-sysinit manpages tar archives to %files sysinit - Removing spurious wildcard entry was the only change needed- Add explanatory comments for iquote.patch as was done on f20- Update pem sources to latest from nss-pem upstream - Pick up pem fixes verified on RHEL and applied upstream - Fix a problem where same files in two rpms created rpm conflict - Move some nss-sysinit manpages tar archives to the %files the - All man pages are listed by name so there shouldn't be wildcard inclusion - Add support for ppc64le, Resolves: Bug 1052545- ARM tests pass so remove ARM conditional- Update to nss-3.15.4 (hg tag NSS_3_15_4_RTM) - Resolves: Bug 1049229 - nss-3.15.4 is available - Update pem sources to latest from the interim upstream for pem - Remove no longer needed patches - Update pem/rsawrapr.c patch on account of upstream changes to freebl/softoken - Update iquote.patch on account of upstream changes- Update to nss-3.15.3.1 (hg tag NSS_3_15_3_1_RTM) - Resolves: Bug 1040282 - nss: Mis-issued ANSSI/DCSSI certificate (MFSA 2013-117) - Resolves: Bug 1040192 - nss-3.15.3.1 is available- Bump the release tag- Update to NSS_3_15_3_RTM - Resolves: Bug 1031897 - CVE-2013-5605 CVE-2013-5606 CVE-2013-1741 nss: various flaws - Fix option descriptions for setup-nsssysinit manpage - Fix man page of nss-sysinit wrong path and other flaws - Document email option for certutil manpage - Remove unused patches- Revert one change from last commit to preserve full nss pluggable ecc supprt [1019245]- Use the full sources from upstream - Bug 1019245 - ECDHE in openssl available -> NSS needs too for Firefox/Thunderbird- Update to NSS_3_15_2_RTM - Update iquote.patch on account of modified prototype on cert.h installed by nss-devel- Update pem sources to pick up a patch applied upstream which a faulty merge had missed - The pem module should not require unique file basenames- Update pem sources to the latest from interim upstream- Resolves: rhbz#996639 - Minor bugs in nss man pages - Fix some typos and improve description and see also sections- Cleanup spec file to address most rpmlint errors and warnings - Using double percent symbols to fix macro-in-comment warnings - Ignore unversioned-explicit-provides nss-system-init per spec comments - Ignore invalid-url Source0 as it comes from the git lookaside cache - Ignore invalid-url Source12 as it comes from the git lookaside cache- Add man page for pkcs11.txt configuration file and cert and key databases - Resolves: rhbz#985114 - Provide man pages for the nss configuration files- Fix errors in the man pages - Resolves: rhbz#984106 - Add missing option descriptions to man pages for {cert|cms|crl}util - Resolves: rhbz#982856 - Fix path to script in man page for nss-sysinit- Update to NSS_3_15_1_RTM - Enable the iquote.patch to access newly introduced types- Install man pages for nss-tools and the nss-config and setup-nsssysinit scripts - Resolves: rhbz#606020 - nss security tools lack man pages- Build nss without softoken or util sources in the tree - Resolves: rhbz#689918- Update ssl-cbc-random-iv-by-default.patch- Fix generation of NSS_VMAJOR, NSS_VMINOR, and NSS_VPATCH for nss-config- Update to NSS_3_15_RTM- Fix incorrect path that hid failed test from view - Add ocsp to the test suites to run but ... - Temporarily disable the ocsp stapling tests - Do not treat failed attempts at ssl pkcs11 bypass as fatal errors- Update to NSS_3_15_BETA1 - Update spec file, patches, and helper scripts on account of a shallower source tree- Update expired test certificates (fixed in upstream bug 852781)- Fix incorrect post/postun scripts. Fix broken links in posttrans.- Configure libnssckbi.so to use the alternatives system in order to prepare for a drop in replacement.- Update to NSS_3_14_3_RTM - sync up pem rsawrapr.c with softoken upstream changes for nss-3.14.3 - Resolves: rhbz#908257 - CVE-2013-1620 nss: TLS CBC padding timing attack - Resolves: rhbz#896651 - PEM module trashes private keys if login fails - Resolves: rhbz#909775 - specfile support for AArch64 - Resolves: rhbz#910584 - certutil -a does not produce ASCII output- Allow building nss against older system sqlite- Update to NSS_3_14_2_RTM- Update to NSS_3_14_1_WITH_CKBI_1_93_RTM- Require nspr >= 4.9.4 - Fix changelog invalid dates- Update to NSS_3_14_1_RTM- Bug 879978 - Install the nssck.api header template where mod_revocator can access it - Install nssck.api in /usr/includes/nss3/templates- Bug 879978 - Install the nssck.api header template in a place where mod_revocator can access it - Install nssck.api in /usr/includes/nss3- Bug 870864 - Add support in NSS for Secure Boot- Disable bypass code at build time and return failure on attempts to enable at runtime - Bug 806588 - Disable SSL PKCS #11 bypass at build time- Fix pk11wrap locking which fixes 'fedpkg new-sources' and 'fedpkg update' hangs - Bug 872124 - nss-3.14 breaks fedpkg new-sources - Fix should be considered preliminary since the patch may change upon upstream approval- Add a dummy source file for testing /preventing fedpkg breakage - Helps test the fedpkg new-sources and upload commands for breakage by nss updates - Related to Bug 872124 - nss 3.14 breaks fedpkg new-sources- Fix a previous unwanted merge from f18 - Update the SS_SSL_CBC_RANDOM_IV patch to match new sources while - Keeping the patch disabled while we are still in rawhide and - State in comment that patch is needed for both stable and beta branches - Update .gitignore to download only the new sources- Fix the spec file so sechash.h gets installed - Resolves: rhbz#871882 - missing header: sechash.h in nss 3.14- Update the license to MPLv2.0- Use only -f when removing unwanted headers- Add secmodt.h to the headers installed by nss-devel - nss-devel must install secmodt.h which moved from softoken to pk11wrap with nss-3.14- Update to NSS_3_14_RTM- Update to NSS_3_14_RC1 - update nss-589636.patch to apply to httpdserv - turn off ocsp tests for now - remove no longer needed patches - remove headers shipped by nss-util- Update to NSS_3_13_6_RTM- Rebase pem sources to fedora-hosted upstream to pick up two fixes from rhel-6.3 - Resolves: rhbz#847460 - Fix invalid read and free on invalid cert load - Resolves: rhbz#847462 - PEM module may attempt to free uninitialized pointer - Remove unneeded fix gcc 4.7 c++ issue in secmodt.h that actually undoes the upstream fix- Fix pluggable ecc support- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- Fix checkin comment to prevent unwanted expansions of percents- Resolves: Bug 830410 - Missing Requires %{?_isa} - Use Requires: %{name}%{?_isa} = %{version}-%{release} on tools - Drop zlib requires which rpmlint reports as error E: explicit-lib-dependency zlib - Enable sha224 portion of powerup selftest when running test suites - Require nspr 4.9.1- Resolves: rhbz#833529 - revert unwanted change to nss.pc.in- Resolves: rhbz#833529 - Remove unwanted space from the Libs: line on nss.pc.in- Update to NSS_3_13_5_RTM- Resolves: Bug 812423 - nss_Init leaks memory, fix from RHEL 6.3- Resolves: Bug 805723 - Library needs partial RELRO support added - Patch coreconf/Linux.mk as done on RHEL 6.2- Update to NSS_3_13_4_RTM - Update the nss-pem source archive to the latest version - Remove no longer needed patches - Resolves: Bug 806043 - use pem files interchangeably in a single process - Resolves: Bug 806051 - PEM various flaws detected by Coverity - Resolves: Bug 806058 - PEM pem_CreateObject leaks memory given a non-existing file name- Resolves: Bug 805723 - Library needs partial RELRO support added- Cleanup of the spec file - Add references to the upstream bugs - Fix typo in Summary for sysinit- Pick up fixes from RHEL - Resolves: rhbz#800674 - Unable to contact LDAP Server during winsync - Resolves: rhbz#800682 - Qpid AMQP daemon fails to load after nss update - Resolves: rhbz#800676 - NSS workaround for freebl bug that causes openswan to drop connections- Update to NSS_3_13_3_RTM- fix issue with gcc 4.7 in secmodt.h and C++11 user-defined literals- Resolves: Bug 784672 - nss should protect against being called before nss_Init- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- Deactivate a patch currently meant for stable branches only- Resolves: Bug 770682 - nss update breaks pidgin-sipe connectivity - NSS_SSL_CBC_RANDOM_IV set to 0 by default and changed to 1 on user request- Revert to using current nss_softokn_version - Patch to deal with lack of sha224 is no longer needed- Resolves: Bug 754771 - [PEM] an unregistered callback causes a SIGSEGV- Resolves: Bug 750376 - nss 3.13 breaks sssd TLS - Fix how pem is built so that nss-3.13.x works with nss-softokn-3.12.y - Only patch blapitest for the lack of sha224 on system freebl - Completed the patch to make pem link against system freebl- Removed unwanted /usr/include/nss3 in front of the normal cflags include path - Removed unnecessary patch dealing with CERTDB_TERMINAL_RECORD, it's visible- Statically link the pem module against system freebl found in buildroot - Disabling sha224-related powerup selftest until we update softokn - Disable sha224 and pss tests which nss-softokn 3.12.x doesn't support- Rebuild with nss-softokn from 3.12 in the buildroot - Allows the pem module to statically link against 3.12.x freebl - Required for using nss-3.13.x with nss-softokn-3.12.y for a merge inrto rhel git repo - Build will be temprarily placed on buildroot override but not pushed in bodhi- Fix broken dependencies by updating the nss-util and nss-softokn versions- Update to NSS_3_13_1_RTM - Update builtin certs to those from NSSCKBI_1_88_RTM- Update to NSS_3_13_RTM- Update to NSS_3_13_RC0- Fix attempt to free initilized pointer (#717338) - Fix leak on pem_CreateObject when given non-existing file name (#734760) - Fix pem_Initialize to return CKR_CANT_LOCK on multi-treaded calls (#736410)- Update builtins certs to those from NSSCKBI_1_87_RTM- Update to NSS_3_12_11_RTM- Indicate the provenance of stripped source tarball (#688015)- Provide virtual -static package to meet guidelines (#609612).- Enable pluggable ecc support (#712556) - Disable the nssdb write-access-on-read-only-dir tests when user is root (#646045)- make the testsuite non fatal on arm arches- Fix crmf hard-coded maximum size for wrapped private keys (#703656)- Update to NSS_3_12_10_RTM- Update to NSS_3_12_10_BETA1- Implement PEM logging using NSPR's own (#695011)- Update to NSS_3.12.9_WITH_CKBI_1_82_RTM- Short-term fix for ssl test suites hangs on ipv6 type connections (#539183)- Add a missing requires for pkcs11-devel (#675196)- Run the test suites in the check section (#677809)- Fix cms headers to not use c++ reserved words (#676036) - Reenabling Bug 499444 patches - Fix to swap internal key slot on fips mode switches- Revert patches for 499444 until all c++ reserved words are found and extirpated- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- Fix cms header to not use c++ reserved word (#676036) - Reenable patches for bug 499444- Revert patches for 499444 as they use a C++ reserved word and cause compilation of Firefox to fail- Fix the earlier infinite recursion patch (#499444) - Remove a header that now nss-softokn-freebl-devel ships- Fix infinite recursion when encoding NSS enveloped/digested data (#499444)- Update the cacert trust patch per upstream review requests (#633043)- Fix to honor the user's cert trust preferences (#633043) - Remove obsoleted patch- Update to 3.12.9- Rebuilt according to fedora pre-release package naming guidelines- Update to NSS_3_12_9_BETA2 - Fix libpnsspem crash when cacert dir contains other directories (#642433)- Update to NSS_3_12_9_BETA1- Update pem source tar with fixes for 614532 and 596674 - Remove no longer needed patches- Update PayPalEE.cert test certificate which had expired- Tell rpm not to verify md5, size, and modtime of configurations file- Fix certificates trust order (#643134) - Apply nss-sysinit-userdb-first.patch last- Move triggerpostun -n nss-sysinit script ahead of the other ones (#639248)- Fix invalid %postun scriptlet (#639248)- Replace posttrans sysinit scriptlet with a triggerpostun one (#636787) - Fix and cleanup the setup-nsssysinit.sh script (#636792, #636801)- Add posttrans scriptlet (#636787)- Update to 3.12.8 - Prevent disabling of nss-sysinit on package upgrade (#636787) - Create pkcs11.txt with correct permissions regardless of umask (#636792) - Setup-nsssysinit.sh reports whether nss-sysinit is turned on or off (#636801) - Added provides pkcs11-devel-static to comply with packaging guidelines (#609612)- NSS 3.12.8 RC0- Fix nss-util_version and nss_softokn_version required to be 3.12.7.99.3- NSS 3.12.8 Beta3 - Fix unclosed comment in renegotiate-transitional.patch- Change BuildRequries to available version of nss-util-devel- Define NSS_USE_SYSTEM_SQLITE and remove unneeded patch - Add comments regarding an unversioned provides which triggers rpmlint warning - Build requires nss-softokn-devel >= 3.12.7- Update to 3.12.7- Apply the patches to fix rhbz#614532- Removed pem sourecs as they are in the cache- Add support for PKCS#8 encoded PEM RSA private key files (#614532)- Fix nsssysinit to return userdb ahead of systemdb (#603313)- Require and BuildRequire >= the listed version not =- Require nss-softoken 3.12.6- Fix SIGSEGV within CreateObject (#596674)- Update pem source tar to pick up the following bug fixes: - PEM - Allow collect objects to search through all objects - PEM - Make CopyObject return a new shallow copy - PEM - Fix memory leak in pem_mdCryptoOperationRSAPriv- Update the test cert in the setup phase- Add sed to sysinit requires as setup-nsssysinit.sh requires it (#576071) - Update PayPalEE test cert with unexpired one (#580207)- Fix ns.spec to not require nss-softokn (#575001)- rebuilt with all tests enabled- Using SSL_RENEGOTIATE_TRANSITIONAL as default while on transition period - Disabling ssl tests suites until bug 539183 is resolved- Update to 3.12.6 - Reactivate all tests - Patch tools to validate command line options arguments- Fix curl related regression and general patch code clean up- retagging- Fix SIGSEGV on call of NSS_Initialize (#553638)- New version of patch to allow root to modify ystem database (#547860)- Temporarily disabling the ssl tests- Fix nsssysinit to allow root to modify the nss system database (#547860)- Fix an error introduced when adapting the patch for rhbz #546211- Remove left over trace statements from nsssysinit patching- Fix a misconstructed patch- Fix nsssysinit to enable apps to use system cert store, patch contributed by David Woodhouse (#546221) - Fix spec so sysinit requires coreutils for post install scriplet (#547067) - Fix segmentation fault when listing keys or certs in the database, patch contributed by Kamil Dudka (#540387)- Fix nsssysinit to set the default flags on the crypto module (#545779) - Remove redundant header from the pem module- Remove unneeded patch- Retagging to include missing patch- Update to 3.12.5 - Patch to allow ssl/tls clients to interoperate with servers that require renogiation- Retagging- Require nss-softoken of same architecture as nss (#527867) - Merge setup-nsssysinit.sh improvements from F-12 (#527051)- User no longer prompted for a password when listing keys an empty system db (#527048) - Fix setup-nsssysinit to handle more general formats (#527051)- Fix syntax error in setup-nsssysinit.sh- Fix sysinit to be under mozilla/security/nss/lib- Add nss-sysinit activation/deactivation script- Install blank databases and configuration file for system shared database - nsssysinit queries system for fips mode before relying on environment variable- Restoring nssutil and -rpath-link to nss-config for now - 522477- Add the nss-sysinit subpackage- Installing shared libraries to %{_libdir}- Retagging to pick up new sources- Update pem enabling source tar with latest fixes (509705, 51209)- PEM module implements memory management for internal objects - 509705 - PEM module doesn't crash when processing malformed key files - 512019- Remove symbolic links to shared libraries from devel - 521155 - No rpath-link in nss-softokn-config- Update to 3.12.4- Fix FORTIFY_SOURCE buffer overflows in test suite on ppc and ppc64 - bug 519766 - Fixed requires and buildrequires as per recommendations in spec file review- Restoring patches 2 and 7 as we still compile all sources - Applying the nss-nolocalsql.patch solves nss-tools sqlite dependency problems- restore require sqlite- Don't require sqlite for nss- Ensure versions in the requires match those used when creating nss.pc- Remove nss-prelink.conf as signed all shared libraries moved to nss-softokn - Add a temprary hack to nss.pc.in to unblock builds- caolan's nss.pc patch- Bump the release number for a chained build of nss-util, nss-softokn and nss- Fix nss-config not to include nssutil - Add BuildRequires on nss-softokn and nss-util since build also runs the test suite- disabling all tests while we investigate a buffer overflow bug- disabling some tests while we investigate a buffer overflow bug - 519766- remove patches that are now in nss-softokn and - remove spurious exec-permissions for nss.pc per rpmlint - single requires line in nss.pc.in- Fix BuildRequires: nss-softokn-devel release number- fix nss.pc.in to have one single requires line- cleanups for softokn- remove the softokn subpackages- don install the nss-util pkgconfig bits- remove from -devel the 3 headers that ship in nss-util-devel- kill off the nss-util nss-util-devel subpackages- split off nss-softokn and nss-util as subpackages with their own rpms - first phase of splitting nss-softokn and nss-util as their own packages- must install libnssutil3.since nss-util is untagged at the moment - preserve time stamps when installing various files- dont install libnssutil3.so since its now in nss-util- Fix spec file problems uncovered by Fedora_12_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild- removed two patch files which are no longer needed and fixed previous change log number- updated pem module incorporates various patches - fix off-by-one error when computing size to reduce memory leak. (483855) - fix data type to work on x86_64 systems. (429175) - fix various memory leaks and free internal objects on module unload. (501080) - fix to not clone internal objects in collect_objects(). (501118) - fix to not bypass initialization if module arguments are omitted. (501058) - fix numerous gcc warnings. (500815) - fix to support arbitrarily long password while loading a private key. (500180) - fix memory leak in make_key and memory leaks and return values in pem_mdSession_Login (501191)- add patch for bug 502133 upstream bug 496997- rebuild with higher release number for upgrade sanity- updated to NSS_3_12_4_FIPS1_WITH_CKBI_1_75- re-enable test suite - add patch for upstream bug 488646 and add newer paypal certs in order to make the test suite pass- add conflicts info in order to fix bug 499436- ship .chk files instead of running shlibsign at install time - include .chk file in softokn-freebl subpackage - add patch for upstream nss bug 488350- Update to NSS 3.12.3- temporarily disable the test suite because of bug 494266- fix softokn-freebl dependency for multilib (bug 494122)- introduce separate nss-softokn-freebl package- disable execstack when building freebl- add upstream patch to fix bug 483855- build nspr-less freebl library- Update to NSS_3_12_3_BETA4- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild- update to NSS_3_12_2_RC1 - use system zlib- add sparc64 to the list of 64 bit arches- bug 456847, move pkgconfig requirement to devel package- Update to NSS_3_12_1_RC2- NSS 3.12.1 RC1- fix bug bug 429175 in libpem module- bug 456847, add Requires: pkgconfig- nss package should own /etc/prelink.conf.d folder, rhbz#452062 - use upstream patch to fix test suite abort- Update to NSS_3_12_RC4- Update to NSS_3_12_RC2- Zapping old Obsoletes/Provides. No longer needed, causes multilib headache.- Update to NSS_3_12_BETA3- NSS 3.12 Beta 2 - Use /usr/lib{64} as devel libdir, create symbolic links.- Apply upstream patch for bug 417664, enable test suite on pcc.- Support concurrent runs of the test suite on a single build host.- disable test suite on ppc- disable test suite on ppc64- Build against gcc 4.3.0, use workaround for bug 432146 - Run the test suite after the build and abort on failures.* NSS 3.12 Beta 1- move .so files to /lib- NSS 3.12 alpha 2b- upstream patches to avoid calling netstat for random data- NSS 3.12 alpha 2- Add /etc/prelink.conf.d/nss-prelink.conf in order to blacklist our signed libraries and protect them from modification.- Fix off-by-one error in the PEM module- fix a C++ mode compilation error- Add 3.12 ckfw and libnsspem- Updated license tag- Ensure the workaround for mozilla bug 51429 really get's built.- Better approach to ship freebl/softokn based on 3.11.5 - Remove link time dependency on softokn- Fix unowned directories, rhbz#233890- Update to 3.11.7, but freebl/softokn remain at 3.11.5. - Use a workaround to avoid mozilla bug 51429.- Fix rhbz#230545, failure to enable FIPS mode - Fix rhbz#220542, make NSS more tolerant of resets when in the middle of prompting for a user password.- Update to 3.11.5 - This update fixes two security vulnerabilities with SSL 2 - Do not use -rpath link option - Added several unsupported tools to tools package- disable ECC, cleanout dead code- Update to 3.11.4- Revert the attempt to require latest NSPR, as it is not yet available in the build infrastructure.- Update to 3.11.3- Add /etc/pki/nssdb- rebuild- Update to 3.11.2 - Enable executable bit on shared libs, also fixes debug info.- Enable Elliptic Curve Cryptography (ECC)- Update to 3.11.1 - Include upstream patch to limit curves- add --noexecstack when compiling assembler on x86_64- bump again for double-long bug on ppc(64)- rebuilt for new gcc4.1 snapshot and glibc changes- rebuild- Update file list for the devel packages- Update to 3.11- Add patch to allow building on ppc* - Update the pkgconfig file to Require nspr- Initial import into Fedora Core, based on a CVS snapshot of the NSS_3_11_RTM tag - Fix up the pkcs11-devel subpackage to contain the proper headers - Build with RPM_OPT_FLAGS - No need to have rpath of /usr/lib in the pc file- Adressed review comments by Wan-Teh Chang, Bob Relyea, Christopher Aillon.- Initial build3.67.0-7.el8_53.67.0-7.el8_5.build-id86d2e4c71328e44f2e1bbceee5770f1d687f97d4libnssutil3.sonss-utilCOPYING/usr/lib//usr/lib/.build-id//usr/lib/.build-id/86//usr/lib64//usr/share/licenses//usr/share/licenses/nss-util/-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -fexceptions -fstack-protector-strong -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1 -fasynchronous-unwind-tables -fstack-clash-protectioncpioxz2aarch64-redhat-linux-gnudirectoryELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=86d2e4c71328e44f2e1bbceee5770f1d687f97d4, strippedASCII textPPPPPPPPP P P P P PPPPRR RRRRRRRRRutf-842b9fae13909a0046b8f67bca9dc3fd183dd43f26ae77468ce33e1ac39be93f5?@7zXZ !#,] b2u jӫ`(y-6yR=!Ke"PҍʀU 0#' ΥgaضʼnQTo>쳻m ,)CNB?hQ9"v~Dw[, kEe࿎RثI ?hk&9lĥibih, Jt=RZ~Q6<펖KG" IJ8m|)'ݣJ1nQ3Ue ޛ(NVHrW!;X)|¹MJd\SqdJ rpA-3nt洉^Sbz#:Tgh2jKD 4)Ō9Jղ# ZQBIK G&G0ktƆ'o-;=]ɚ0ar8 ?aqZNq9;[OO R!n,ӌKbyΕдV я?-Kr;4s;"1b.K{XsivHVGQ+'(4y|[D4ڬߪA*y|E502ΏèRƭ;>xKq}zy$~JDAPHtpQa_-QM{/2X7#0*aPY[/#C (RIBswU8]E?}`g)pǾSO{Σidghy?a< DlMZ46k!o()e;h "-Ln1j\ =&UFU4>g[-zwMG$h~bp?283:Pcׁd RR*Fi\ly*%pr%zb.̓{$TCʿ1k K9ҢRR!S-r[£]~kԮ2piW9^ >eT '}zV5+I()YC"Y31 vS5+%ELJ;nF֥$+*9Wɍ*YcBR%A:ֱvH:_nUmΟAD*[Ev=4ɮEߒam|hoG3\EZ_y]dU_Йo>zBrE[^}$1r|;[5{@b=ltIW2DW%?U=e]=[W[S$ (ɽbQq1ۚ '8ZNƊ$+ /(x%ߌ "퇧ѷR@MmNհ^& *%mYtmNL갻D"Kp8~z 2\gv(eoXȒ2oE ("& *g?`p_>B0y"xLdri&0u FvaS~ؒfϥz,[uwf:[ez7+5Du:${d)X8ԝ`}e!^]Qfxx( ,酡bM˦NER^:g$ '16b&Dr?_dmJ&7>HR jMs,ދ*})$6"sr]iYVH +HN~QbijM,%Gew =|E@ɵ2 _ oAm PZ&hO;G#ZjpCvn;+,`I:'hC\ sB^jV"W"Ց;W 8j}#ٲ۪Uj!I@{]R7YcyNtbo0x]hl(.NIM3ڛP.c5Z,O-O50U's#y3'S!H8wgSpR箳ωq*=>$Ƣ0BMto\['{ʊ;>ľ@熑{7\_ȈSDՐL9C=ZQ1GW$'kȍ 9h"$c)f' of9AF/&v˭*ͷFiLN'ˤPҜ=f p"QMb؟,oRz老n 'Bo۷t|;piUq??jCoɱrTE? =#tZݝϪ17ӎMS -pk>Ūs@2v.Za8w{U(Z Fy!PrEowc3XCR, qji[.MnTx~iq3D3kb἞t:dѧß5ՆW[J .Y[dAT^{ds!3Dg-H`0o`ڷ-N.M`ƣucBڍgK MK͜i= ƅX*LRvvoHN uՒ<@̓,}#azP3L6V2kϵގ[7Ŕ$ t?s頷{f[ɥȤ+Gm= 9T8 o?֬L6@V vcU~{goRPm7qE 3ΎQV}A " h憽v]{}$7lq;rqa-PXzg>Vy+"50@ݖ#IG[.$L t Ŷ!/|gO-2ₑL@jeѰ޺q-2]YkEa|r9Qf:_\ih] W4'VTV~;\bӐVHBq6AƤSl4%xF91Nmkw:b, DB/ѨuhO} k%-i8θϫu g*]p9!ࠖ7 CѴt 1{r5I+@v}&lIbW=oF̱B8jy6:UQ۵R1ME[keꮵDޞ~ ][ 7{%?f=*ʨ!Iɧ5~}_PuzWO?`4{ = ݝϟQ,^悢g? ?b9.d$HAU7lͩalyk8&0-B `}n:czV:yJ:]D;1RoYj)^u?x3}fJ>lz|E0J\gߣtgL]ۧ6T倔q-/KD틳,QH9PC8I4 Z?g@\6 K6WJ-gpJň^F9oG)3M'<C/ H E!ӝ#\~A}”As/Λ t@g=n/aoWh$ M.pe_. Ȥ~i[e;lH_?#{onʄ^Z')$~&D=*5#q3d}P.;vĉ A1ZB`BjԘČ2jr^̮ kM0o+xn yS.Gpјu]N'.G)ڼ:xR RZ)_8Ɉ )Z's>tEj5Jqc7pK>yj+-pm&q=vBD@hWgkĪ"ߢhVpP5yF'X\j]܁e&dddIGSTǕaQ*v6IBbM F+ߡc~gMg7wtzBe%îڃ[Ntf#mL#0@Vv^8W;# =WĎ4fHݰ 0|($P̉>z]dDcon. p0DtzFi CRA۔CI-#z{^I׷nbADeMHBG ik9]v7?'c)_5f-,NܸѼox/TYnQm/qT,E;ҏE)48\kSEE\yPp9Wnڌ%f$* $ŕfԸ[P ~fv]]ye/<)aHO}SUp^m60sNTt䢘4T*I5Iv+Q!Pw̳ jbdgfՍl?_%3a04o_w9qDtpL8wgZ|)̈́AR!Fy Gï&X&YP2qQ~O<5۱Vџ넓4[Vۿ:U!RT|PNP˙jrajr%?%$7yI&|Qe`_=Vҧ9)B7]@?:HW^SSRL b|!#1 &99X5a}[Te[GclC>#TY|  ^r hH+F&cm%⭥e,^I]{;E <ʗBϟK[gID>hH"DyFRË7$ԑRlѝ)P:<2R~ۅyg<əlC˕f]6{.m28nH^hV;pE"e ԁ$Mйt44G™OУ/^0t@(Be|;|W:$EԺ,Q. ނS>^\CINge2H6OVmGQ kbmF ߔ0kYՒҕ\0^B%Z,%L'~V'>UJW!(Jr\< 'مaݴ6uMdoZb(~WMir)' t[۪Mi+@bnWCGfpulp1^-OnT+aofGEtޠE*DOQ-c=^-a20Q/ۨUzdu,b a:uyIU٩-:m 琳m+bU]PC>MH|.;Hw꘻7ZRd=OMHyvp`W*vIIB * kM Wi sg"D(~L،d@Ҩz[_b33nmNu;*xQeIg)]xr4F\ Ҫ{@\Q2E}L(B9WCK.c:C m2xDxC R{뢿k3/Ʒ(~ Z5E# KlwB/R QQK$Pz fmp[b:&(+nw^-WJ7\Q.)Cf;u)YNm!~0<گcq evVݓW0E4h 28UPfc' &zu0ď2ϿPDJ05CO4Rl϶V> 5"r;c: q3 M/wJQ~p;u"@\0 mbϗ:(9(owq?ot6qw! G֍.vqn-b_88˙wbl?H06`DFZcЪ&nA:<ȱ&e qzHӗernO_npIf\kZR.w OpMT[o gÄ?  @U^ǍV59gR*cM"^ﶽLi33U%ؒiނEp᷀!4֚iGZ fxi@ؼsdOފb?,~b@QC l ň9)"~Vߺ&)t sD % W0yB@ܗDDLd V>( 9sXQ#[ے`~ZcRpխ  $?*Xӧ^1>ѯy Q@$dQ=;s5v c"߭xdU g3$H2x×ɷy^RlCɌbW|Š- T fnR_qZZK)!ni|g$-9ѬgY{/'96Rnm>\'4w܁ð>b!/YW7B0ֻ=9?3SX<=#tP%Z;{Ax(kj2ӷU`irom' r$:(g=&ޭ[oѣrwG$EKtL1W_?W҈=1g)T#bk+P!'qU=\]A Ȃ݂XeҍF~=x 45Y}$G8=ݑ+3'7!R {&` ]CX aFѧ䖐l8C#'8|OB;DHhCo~pBӱ3wǕ7mE]gMeNәr^߽s&tȕLdӁ ^̷IJNQa|A2N 0c/e1l}LIKT8Xg!q^{QRw/n*vnfJA0_Hp@^QA5dޘXM;%Xe9ז jG%I0[j2#lCo,ĻϺEƞVn *Xo+SEq7hU-rğZܤsӠAr,>ZH+{l⛯4/Vs yRyZǢƕPdbzGEHmm.L"^if31(c|d좦pk;[Vr%#\w,\KlhKKݯW "8!alT/#W)0x&VE >>{-'HzMqвش[h)qSv CIfĽrU ݋W/B&1'e"8UdneSciMH]yC T,}v5Rֳ[WWG%lnYQb5$R֪{KM`Dtp)%aӞ>9Uz%آR}&5(.tD,S1֍3Vib+cgc%<,huo?"#pUI ˌTi6("ݿ{oH$pְD<2=R5 ؇Zfq^c9Ȳ=uG 2%F׶Dm?:x`zriwܿ`]s>Jݰ"̯^we " :9B=մwr[-jKirK÷`TWꅗ|x_XAV =r\R/T o≭]{aoKy\66XBHu3qM\qPFc4[Mg%EZ+ʙM' YF>8K$Ыs 2n3++m5K? u`3,ԹC~H0g sZE5\A{Wڞ='nnz$\ъKchMߧ, ٺ[ * yяoF/`5l\nIխqk׾|ֽHx Q qX04"oxxADP{υ&4C))P gG^ғ,Ġ€?䶭u(c`hFcpFt ^Ji\{ϝhxƌfcevk+%[gHa5HeL/))bPWוbLgv9]EfbUJȥ,̼GS;;=>|'HeY718TQ6D70o X3 944a5[B: ]mhԔdӘHrF?.%`2? ?d_,ʘ <(574Y-#Un&:|8Cb(yvͺ+8jUytm@[@o=̙(HΰJa E{ZuuPVǡa!`%gSCR X.bevvmC)P31jxx! hl?oK*ŹF+xMjgI/ޏءiiufoKE&ӄRxi ?[c#ВG [BOG)@p0sVrWW wH9 >v|{V|8-m xüBlєDg9){oX"ȿ_ $ [pꉳ~k[,[)Zs?c#=x$qX74mNQfs}TH2g' [.?=^T.SSSa Fqs8}C$5C4Ez:D*u`9c dN텦z \t^; A&,'~xN\miިRb,NP=4f[c)a:|_4I<r=F?TūdjF]YMޒ. xF**](m XHرUxl&O3]4Q~:0XyTS-x33O#.Y*^;E㾙e^U}6M؈\޷aw8)Yώ!x;CR{Eb:E'9\DeiXƑ&/( 5 jd-LH1EUyĎL4ˍWaTuWKA Ep gN\~d)s\3zR1A0Cy9I1g鷬ZInɯmQJteyNXe%e,ETc r;$hVρD !1U `lgfoBK@ZYt&S*Nyb[bZ_7<=0Q!5=ܲi†Bs9'}s70wc: Җq'/Ί|K8,Yw4ƣx[,+amQGo:.)tbMX y(`\t4Ηsy4e2`L\ f7ۦ|W/*%>3(p|7 e^n/OW9NN=In."%$/>(*o1]8o?teت_0_O[| Iz|fR=vB8|Owm$Iy9<E.5 FS!Q+P{IrٹrM(~DMojJ~Bǰqz徙#,`sHa !Vq? чRVT +8zđU#hlϳM ( #(Df灺aEC 5_{#C#gwvbb}re׉n=jxsr먮fOl*UO'@;>~ט/HĨٲHsãv(\$7/矷瑵K<<{+S0{s,t@P<%੎k7g`w2ӫx\U`euFyW*=;D@D=SZ /Z$nAƎ+@15oEyzŹ@,!\Vq7:UoQ4c5& y<$@?ۇn)/ڦO*sm`hiBBEc| __q jyFЀck{췖V#gmK͟SIQ}z@u f},@eM,n:c']׳”)㬊(`c69' ~jm;i*u`H*>q*+!;Ǡ'2jj(xM8"[ oWzHrt2OW0z-4UU#D̻%kҗ#4ȺU9gaR=,56%OX#)rn~T읡\,yEo/^*Ԑ*}$u@C Cɭn 7>)X DqCk_8tl55n.* F>B1!!ܧ()n ߟjҪNJS逅;sZ,H{yաxdĒAjWɰx3mbY(z^^vagEj$t2=^`8bk tk.= K)do89D{1vCvjBOe3y7፮2.k{^e2'T˝fdGuIՎB`;CtQ8f̷۸aFBo#MIz/':@-3Mvŵ+S7ꁁv\Te-(p-An:IFP{"Ad5rK-zdu>>X6Y#a/z ^RM3aˌa?> ܾ=es LNLM?"+4h"El)DUU3q5V0dAdQ$jR4{;vҦn0SUvh%Rˬ&AvN|IǛ\|"\Z+0mg ez$ zayު^ULvN5}T8 r\ʻ[J9^|!?5]xxi=?6zLh1?isxqXUU?Qμ<9v}q tbVЍm:ex_/⹂0쩇/৕ʿh Mt!kTP~Yje7bNơY;pSW`Vɛ^j#fDJhaT\CrU1BȀНfX:pժV<˜Z')+3wQ+W{0L9*&*ٺPMw|f. qGT~6ࢷ(@6OCu/EA!3 .>G½$ڈ* =JfՑzX= w) g{=9,:)=ij`}zKZ )3?ĉ5XBeLJئfK[]'_!QN6%4[:p#~r}q̇G~c-ᇔE^Ͼ?"E IP |4dhIKp;ܖ6;Cפ$4QJOp&|O1RJJ1 Ncg?aS\6T4,ܘћ='*T% S"WL'ƷxwEzOGa!Iښ vůCb: μQG Zu8 _acA}drɉäjGMAo5REj0#㣗]#q YŜiG`[c"I&aTޡ7= bh&5Dh B^xG8fGq Hj-ǵ*3~ܫyƾߕX M 1\h嘥o@j显֤ p8'<|Iu<{V̰tSVztn|m3gL^R>O $SeGO,KS 9>㐉=9bz"|ܷ?\d#s[0*xP{pVK O;4JLZzwdR+7 $%:Ex`.n=9XWo}>n XVowt/9$K w+r=bF.IML-NNxæb&np2)e u7';! +ՆKq[|A{S({Aێ/ie!RjfF3Q z'(}gU~XFO8J$ԈQKa)k})^kTӌڭN&Gz,h? )nANaQ܇>V װ?ct%Y3JsAxmyQj*$r:p5 VLW둚qr$MgPFȺR1}B=eg.s-YjQ&A[1~p/'!]G6Mq@W qP"0vG2ukI]JK~E֍{:3˳Cd 2=A:]k[wN&kuLT7xۄcvד-y24uec6GƃƬKM%=Y~ho|-!=[GЃw)E2ˠxTw݁x}!Yg^xKPzϦ!:IJG>7xiTu $Qv́!.C}a~FQ'2zG;q&l,H*1so*q'!9ѸF_jiEM :|+Fp_EvWjG7Z}*n c!GN%&Kp}׌2tK2Y3w%~)Qx D+9Z XWߍJ4EZJfG@o3mtDݺDHCL6C*.h 2gsf%^|! $xj2sh9|,f, [sqC7RݕGz%ro7I_aiT\* `c:E>/@ߦȠ?u< P3bF7F:ֱp@+k;ekT) pGN陎7QE'P,߸&KVcDs: D!w")y^Oğdb8t]Ap+,˵Kxg:܁jL&,NMnhUH޵yɀehAcG8%#zdi__jSANVf:Uaݔ.m92b{̐k$CWB=<H֧d3،gcE pP?V|{d./65drF&yKBz9ve6lӑP=T#їV &U|L`,!9z%3dwatS vT*I:f:<8"L3O,.R,G@`F?bAAg#Aq|;陚#XɯʵuuxUšImKU*t*;+TI<+ӎsvŽWϧ)1nN~XV+sIW0vE &'( &sbٹdH7=Vͨ6OFA?oE|ԅ.6@$ Qtyz?+|L\f G뀠$4r;$+Rc1F?{XYE #1ٗn*d,Qo֐Oa+48n zq*FV|%CgC(5%w1ܙxS6E.B׊.i7~=Q_)-, m4y!3v6R7?gZsGi@9 v2Q~0/)/e7hʘ̡{xEbvrψ/wj8d^^շ 3,IguiKZtMl\*80{MB "jόPNǬe :2KYVxZ8]!vq ͳ 8+j'uϟ"&:" M`+5H3%m րᩃ* ݋,*ec`-p&k C8X:u]4IqN7^kuȁ Aa)3IYHK~JM?GNsV\sJ><_W1.ȥVB}݉TNG,@(}")G]?X`1RxI}5{}ǧ}md is0 w9>[:w>cA$W/K/w1`f^ NGݡy(>#jt+߆w娟.Ԑǽ3[ L|] R2D7Y\p#xs@~v?%r*X2H)h^-`an aAd)8sy"`\ p0$U"PrU)_{C&[d8e%6ç9F?fdx.oQ*h#ٗcKl0ېT)KSZ -U<gf}GS,PISGFy'V`6oDg2#=s] 8_O#͋:L˝l줉'Q> AU2)dj'$0 ZI$,tE4Lfk;3pcfdBa࠳_TgS CJ{ ! )T "RۗF%S _;Hb89/g_ -+snD:'ŐŻK]fBr5GF}Qf8˟zp v2H P#'ƭuoWSBɉlk=̱hC=4qtr@@4wө{|;>\Cw yy,e\Le&JSGgS$R&gI ɱcx9sAD#)akwHz`  rmǞr +aBg?JE49q#yo;@ul*Gs^Іkd'IN97L2DZ'F%u!jzKmOML y1/T1L㮾H1kόkpH"L#}@*i!VC:tҬAT۱dFeuR& v`EhI3qrBO˄0|zi' J@AjٍD>)Z-OdV8ZןEpoY~mʓDܞwz4ymжߥ:X?baNbv^bꀌFtt¾0 ⵤuBi_YYoQT3F$9\Rw6-KVx)M-VL +B3kn.woc&D\wu)%D@WwYgr/`R"]A`xgLPiV9#iAE^&-A%v^dcc!)Ky.ao`:o rPc |kx.ͼa|\#oQڳ P!A q}{& ׷#U=z꫊AЂ;2 8Cvt K3.9sϽ9c/ۗPmhmAbfʸOÚJ1`>_^&N,W.}'b.ltl;t}k#\Sot'L/bޗʿ #SvoYV "0^Wc(yЂZtxtƱ؈^;0LIUGh9Ev zc@ԽnYp)Pv ֭ԸHZ{Tְ'[d9sQ١FU⦋:tCouŶ!/p9#ɪݕ!Il t^sŊēNc?oyXFyfEty թV넕yȧv'M(D0"MpؙF+ %iy/Tprix{ʌF:Lpoӝ&oEwUSXTbRtկ$HJpU=d{bb Y7&4'+&X_9ȵD@}D>-glFkzXnZ`܂?"YL(gbU/8.Oa ū5ٖ٥-{gKNZOL7~\O^6Qc(m ~;D|F-<@U8 7ۢ7Cػq=^,=C_Oj-6l (Du!`Ci<\l pqƘP i=P5iܨ2`.xiwHwF/^ٕ:iO>bתXPy!!;kAX8(QkPF_[U* h^9*^0FK?&[nȌSn!K\e>Y[<ޓ?$?*%Ŷ >@+Z*tSgc?WX:"ddVǎ|wuJ6@a\ q;B'.Բ=IFe𕔤HRRtHdk#anR}Rt]ۄ=Dok9֍eKy06{,u.hS2 tZlXQ/ һ4oWS{V/v`m>[=JL,BJIzyBtG˶erۿqdfzM s4O:$JLmGK2 n ugCitɉn#l H5dEitމQ=׍W~|BkRзЩ_:#2\,.aH8ZMO"K1}qiӚԑ,^LRv U^3W* BTE͇\Pn_5hRg>JV%SPTfp ]y?{ djkg tGxPu*8;.|\UMCпx,AaĎvi#yĽB.SĴL59&-E|U Ț0WEFwu~,FIUEU3ӂJH *EoydVNN29|o\6Ȃxl\zLGF eCJfTs^8?lr L5:pbzóWE!0BPAr})h NgkrB)vrF',2~@ȃ<`J2WNc+ed ixNE\C>SthZ5ƛ: `j OOjxN`s(-Q{rd݋Db!S{H$v H.ƛ895KGI^ $^>YFAC 'f1SQm@XA6s5>$"Yg\L}BRyW@^jam1{a_9ֵp?_g~@+U9U,9vV_K4)o{eP~c+;h':m~ie~5mHwNL~G~1D9}-&y1iTѵ= ڇJh sC|NړJ?9EMnC]#vsć3u2uGc.26*P.\sį o-,-OĮ[d,Kq] ZVgd 2K3bE*h"e->YOT6hXj #p聒;, 3Q{Tjv4^@Z_Xx͎X>钧 b`Y`ِ,(\aLiA"[B ,2pY,XhAt q}ʖqeP:|FoTV]wDE ]hE&_h$tޥWr=?`eĥ񔲆M6m9^r|5EsfvT I6h?nLp'l_]|Ӆe?g/W+CYkc@Xm+w- !u@h\A &>CFNcWvḭK)L{.]>~]loxZYl 7ҡY`dM7ty!L|ѱ%#pa/ ,MTb+GT9 (bO&M>l*?X?sTdWqT WY̍ Gm QD ;޸Pg E=֌qdi3iST٪u4X5f`sB'Ā(&M8&kZx^jN4r`Yb`k]=ǡHCuXXHpmԮj$e/)(zҮm GGd8U{u3- 0s 8ܖbI4uvaF"47xökb3HG$6e(hE [SDbeVh2xiL,6@ *,aV.rӠf8/qӕĐqV2\*+ f3/1"I $tӲJI18V= JEw|?©%\(Q(ƕOҰE_J_tØZx<۝ ZB$K2(hUk6m[ y ]52li<[yh򆶝Ȍ^+B$ܫ Et%1awN?–]I #;g{x#%5QZ}"Ѹnx_6?xR@Q8 v~run(pY9ݳi7 9~_%.iYhX (SJoEJ-xo"_V'[6%m#3@mIФ:.w}ѪCfv|_PUkOŀZ0y  7 PMUp cb]a:ɷptĵ{.K'ғk{]%j E!ЂzkDZ72u/vlrY1/^dJ=9rqUSߐxz);i2O_ZmU@_Bՙb-azõ}S퐒rrڦlߓWTXZ5dWgf4o t F""JIdUf%ۦ[ &$HU#^yW8-C03.."lAUwc-X\Aqe:m1DypPA:y"/\U: ʁAg_X&ǐ֬{Rcj{4>`T~%E{wx9C[ 2s%#UVCn*QK#xVҢ$5ߛQWUR,Sտ6j8҃&o)[&z5{Y#kE`\QrÎ&ȝ_EJ-*>_&Qհ7V<#_u!Pю2f@hwZW  Gntm,pҵ;^i9=v-rk7D5]޽Ѥ/% d2VZj K`@zǠLde1?AJ#ji2zR[Zp+x[$775$}1#غm2Sq p$ 2gZӤ ҏJtZzdPpH [HΛ@ l.Pq D*H((dO=ac_#DKg1:I~}kFdm%n%/]A 7;PX˪.:cLF22p_Xp]6]p%zqDZ˰~^`Aʨ'\h}ǝ?%HTE*8 -3З=GR8Hd藶ҭBFFs!dIvw֦Ya]DL V7cUA= +^:Uz?8Mzw5C͂JM|b #~-.m9kѪdkm~o"&i:ۮN(˃'6VrLz,޻ 颵! $k6\vn.~.ķꚮ !9*1K P:(V!^+ [Zsrcm9RkD!]v}u*QYgyw'@a-up`9Y!%˵↰N( 8dmZpw|XY'j獔1٨v66wp k/j;{x?СBHmpStBI p4z;~eEj|эK*, RI5暖ݼ\K|pƱ>NȳM(;#VwCwyv"O@;w0ҋ׀i'jJ7^`ǎ$H`ȫ,8ND+eR~/GV_Q2ʬp;qÙ"SÞkCIf `/\C7\r侯aҽQ&&%Sc6Ѻ-߱vH-nj aǢ4uZk`| )2\'AP8m㡍ʹ995{*)y~ly~Ws0S1OsKRDl~HS[X$89‰(AJō=ʝ=;;Cddo0RE ?V¼g_$G(LY YT_qW@ɕc6 mnEp?,l3ّ@z FRi#tx%Da[K0|aJ 3x%Or7 ?M~]O4S8%s3iLJ?/wsctØKG~S oGW\+Rs īp,഍+aS>$! ˖3W\o9$OڝE~Y9K*:cYClŝ(&_4I .wW@TЃBrz~f1x=.HtB:_VǶQ?Fgb5ac P^?<(N@db !Fv: A} /^Җ $\ a<>J/xqI]v}"(D~#;_hv}z/BRe54}CG?6LX)!np;`.j#ZM 7vM*%D_ve~ UӸ_f@]j_){@GBy;$Ct9cZ3DpzHUO.mWq[hέdH7#^ 2EWB*qW̨k!I8"J!`' >I 3E+U5@^3VT}#<~(#kz"=6Zj/s_RI]ܠz*>^VלW!+VF~gwy*3b$| %.O)GzaϤtYi&i :`U _3>/ep_"4u岚m'^WT0}xs"ҩXj-nI&ƋSDzw@z.JƅxԊn(7,b0'$i}BׯtTVOp"*ЄhO( 7CT/dj$zL8bN!^2Lܝϻe? ) * hIvhlsR.*`c˸h6~ F U֋ &,.-ibe)D$q6Ʋ!{N'2JeN]\'XW2{(mdz.g>Y%}%N"(ylJ57qdLtCb GRvaZx$^4kJF!+!S}y]-^4zrc ۲.F؊_dfk;b \h:aڔ7U ǚ A$0sH ϨU~,KYMJʗ~NKfAR9|}HGK3y8|chf)DgJkOP f]V~> Wcyb̚4P"Q-Y9Ѿ}fk!IU h_p,"ңytY-v9F%IjgBL~SKfW#0MR|+'# HR2w UڵB(9=ML UQ/?X{zhW҄l[o/:uQ9MSg:gjQd#E9pQ=Qv"oWyhYa6.PQ72"ڐzuHY&xyWrq*_Dj)1n{5r%=j;fdHVXRύ\|P.U]I?geFT.qgC *5k O07èeSk~D)[5tIz0&ttݶ3͵:^Nw?S]}ԕ,=[{ z_a=cA%L!G\檽#RLuw{V/`=&Оhӏ]$*Rۓڏ&S zGPiٜQ14Lu'u&p~j_2>7#GK$j+e3h;]i&׎X sb~4eg(Gx݈]0zRu ݢ:gl^5(S1SlEC2WE%(Ќ{p?:;GsQ,גA . D%0%xi[Ch:]22`(4NQy{7=~Rm#y ,/͎fD1<+ F g$-tHͺ&m:+ω.]3IJWO~ҾOf٤yeqFe`}zSu)>׷;N t4+1V _sEr"8~b^1JݪtSV]ƠC8@&i!W<a`wf kQ%.G ڱ"C%ISZ ˭[D+A51 m^@f 1& ['EE_%!6XnO ?[-jü u ނ{ut RXj' 8ӚKK}T&5DHkulp蓁K{gۼVAqdD IzIpMu^"Yq@鯉_Zdc  e <6PRCAWږw`J=_d1Eg֟b^^z^ڦ^!T`F^ gGʤ2 ],A/R"j 0օ?DeAv{H4o& _G2>P  !DH`,UDFI(:JUU2HvW&"S8t{ 9ܴZ&U #ǵ]HW҃>D?6&8@`Qf;<δ,ˀ 'ʡͽ`x4Z7@4!ɋ뎍Q !X `b~~ ;Fe"8">T=k_'ȓ| =7MéSA-/FswPƇ%۠BމQU.vl>Ĩ ntkvhsNbޚ 9%!] JL:X+;y"Kԍ' hˍnW&@rkzXIe&|(M#!oxe']1jڕǎܽ,5BXrXM0 ։^%X^%l%ݯ߭g^IU;per͙~#zPIZ$c$mc` N2aM7y}A7)(.-b >c;2L@njy+VO9y 8^k=OB*N7#uCl}k%?ELJ<NMm`͒:fzZ!AitqVрk3J`:|mr|U-㸳5Gל$w[ڞDHAQ6b!@,Uj0m5rPyL+[5=I;̣ ^^6|˟L `jk W6V.m/ [A%=5x/G: ;G睦KGxX >`5'[P쒝jם@i!LSN : +Y YѠs:.Ү{#Un)Ccݟ2wؼZ94q`V42GV{nDC ZgԆv?-0c Y^v %w:c. \ep ݯ?SQ8YhD-5:1\Y*2:e +LM,_Y2V*O',x~ٜ}a '$,xx<8!{p *X{wZFV6(6 obHJ,!z,q_dVptxv-,I! Xaɐ%Z~ _Qg"+HE Cv̹, q}q[#4'̲u ~~j'0#sm^C1ҧjgdlxTMMUVⱶ, Pؖha'Oqx^$qs|i&Fœ{6lȹP?1WkgAHQ͝wC[m].&(gY#W+ijŮo qS2aӀ`;xTF4IBzT?SI֕ H)7r[jw*(W?m3AptTZ}* 9Բ! ø!ݗ\`q*5 Eoy`֡8 76 P*gpx%7,RZz)++u>z'r' "Wjd!Ѣ."NJ;Oy&܋N x|VD!Cw-!w~t.``'9N^ms]`d++/u-:gRh2-ҹFO|ztyU<"5:"=gře|ٱRs7THv˃*Wo QWi1`<-S%WΩ@&S HJ-o-_FSS:̔xιpT~-*o(D+ŽtkQN(a4\! OWlnQG#I7ĖML*OiUY!SyA-v)ὼ[ $`4{aϓrnPSIn29B{0)|C]rxیa|*׾hZt'ROY ZFV k$| Jo֤5&k4ĎiM M%3X!)׋: Zs9uM.+9aSa {XHPq5É))TObG ܬ*+&Ss `vptV7]ΆRA:qی+=_/iagmgj9;6VuHW|xb8عx}q*^zsRGblVv٫Q^^iPR{ .ҪQА+k0kG~րuI57r(pɣwp ;[aEh.&=0NON6 կUi &Mx-j#HltIC<l0n Ru??SIkiJknqS1;kyP-U{~ֆ5PfpAa9UvpnqVvO'wni2 cQN_߀m _*znlG{4KE6K0z{,TNJI@a9uώwFHpVs0Bѓ j$.zC!_jZm&nu<,)j` STYYd!80p Π}c J,gaĕ=zحL>d-GVAν݇Q2'4 9X~^_T#%:?FKuM&ivYѿ$Q;`3ERzt%Nx} u<˴U$#fڝW뤽v9;@j˧;[ت|q-W^gз绰5uUxq,xA\% ے$[8 u(Y)exZNnJE6,t>WR%ssTy9`BڊPtx"]2"T2"T|En[Uj^lRb/r57+I)}Jg@鳠AWz84[ΉL[gaC 7[T+EZq* Q;Ga~2]X;q7$Ǟ}^hQMD&e[ĕyIB{5wpg`l\%TiW~|u" e kLIGlƠͲi1::{Wu9(L@8[ f~-ٙ OO'I܈ļ7G} \#Iѫ<.!SSh.X. S8 I[DKd-uA7$NJ9S7ql6U3XDnO\+b 5qD&e!]T`s?mЎӛ(N4-d9WCLq$X?5w@K-xZΘVۇژ /8]4'#kN*͛%I炡>Q)GIכh Cׄ!i nZ~M:t-T=Xއ[(Wy K:vRXqeu|&XZ6"7gZAݢti;7kߑC)2Ͳp2Q7D%zTOpdZI̍ b픓3OٳB8 9#X1ySt:)x,iRDQ@ t$pQAp4.1]Kp߄WU}U5jICBɠ+R,V;kxðvf H1v+&r nWCkeakn27m(N}rq؏"ã~?4 TsAhU]yq`% *(fa셄Po%RnS%Խ8sptauHwV2:V\b8Dzo='ePC6~9`uCYaصD b=.;ΞexK4>$TiMt4d tu3[=|D+(!JPE}ޮ]!FF\dEzO~Fkb"}N]*8wtlCtJEnAQ?΄+yb4P/_Fk,>]Ml-6Og v]쐀ͣZRd%qo"nܩhBHt]zO 1:+{nD>KtϷ%w[Uҧgxs/ZΊi'>n͗dFvp>AH" .wT#v*fbin<cO\vۖjO'9u:n:lG9h${zQ ,w֣*%&poL Ρ,98Mt :eVx4(r Qteϗ1}w Aw!RwåFnbVa*=Fo>g#L1(e B6O6YW#jS@Wc)"%>FX4EsQAT.XBymy~Gѷ1diYcgu`}}@[u-UPI~IE Ӯz+41ht+_ePPwFx_hjZtzoxm29!.;rL D 6h4E0ٰzGBvCNmu)Tް=,sI]ʴL9~|zK>{#Fz 'Ҥh F{ -IdV"? B㤧/ڶS$x݂cV4gN *(W{wz+L3Sȴ䝕$.A^7K=r{ܪ2:!w/==h[g<L 8{ AmR' gVmCeE&(ܯuZIyw2}{>6Ih{(lai* S[N `yaM29i|Bh v|){<]g)1l$sm/D[IX,j(a  Knj("-4 y "0 cCr`:Y-^x|cVK*8dcC)UP !_ fݾ0nPklo[8M$#i+1ju/qkΓu68x4QB=>ۋbgf DcjSs(TTtRb8C3s BTꓺ2ZxWAhʠX PM~3>Akr zؔ>/죬4C'J܏jV? aynza2,{Cd]0/<7-WcK/Y3R6|29;Y4gN虯aD6&s5I+j*8hroR% nQ~תr梆7uj^| &ˆfXymLWr\q6c=}[ 5vem˶oQe19\*c[Q:8*ަՆ?rT>Ր;A0 < h 8_.*urD0s cv?W$dfCAFbG` ww'!c/>&^+uR@3KDjBEh0t2GR[l˝ 꽟1$]8$Qv `LXg*lyO& O[ҨMhpnonpom-x[>2A.,ogqbeш H&XNVՔg|MpLƕV&*Y]-puur.b_g <=q*Y$ZQ-(TynQ]xÚ ݺj 1ŬwW/eKfU]Q4yC^3/z%ա=C p˴n!CcܛkA%^4J>dDu툲;,79l*?":3z.A|GJ9eH_J2+rJ sSXv%,uAb@N>zҁzvIgNZ-x./x' Y((Q)8@hLn[#0NvaZ#3Q5-11@(e"AYofх\'rF Q# _~Q/E_`#*-%\3l&#>GXg,HSDyy9[u,u)<(} 8vATMP≰SFnVt5)dg=<,ubl<eb|Z~X]PS>]hS.F/bOKn;/hhq`hjWw.ZHYl~2O;3rGhDYޟ7s? r jP=5PrY\޹-*䊁@&鶐GTt(d̽ 1.wMo[ʔE﩮ل|z! 4yv-eYE~my^ Cl1$w/͝8.fMSMc4$GkuFK'ߏ} |Z-u'.,B\79H#*OȰ1ʕH.oFZiNzrk1F%! w2Mm吤Yvt1IMfL֝~y1W%^ er[mY$M҈{"7. WEVbe6o'(BIJ!"U (#vݘ0@UlAUPj~gתextHm z;swuajt|;Pe/<^/7{\ jTFQ4㖟שzau`9(!-q|_^c>U w |PP| BPHIeZT$Y NR>%mSH7`1 N@JdF^9pi e-(`XijUI+$)Ӹ8*O $rPV%#c=HWvl,>E=ɓ<ǛϧCK+J Pϑ4dxgToY`u0Q v3/$.+BRWq>u^7";:yz!=L`$(- 4Um%awV! ELf~xٱS슰]fU XXaA&kqоK㷗nK"46 "Nyh5"P>@ζ5Jt#i%^ie`vԞ&-(_{sGTmb,ܽs_,lOUN9h-9ӏ̿[.h{=yS18w8jL!5Bع 0 ?J"?LvS.d M]oiSv7Tn[ kW.Hn*.\ Uh= C,yeP`]X/#C@R%҆V|^t}G.kzPj}EoЭ?u jojzKŀr3G$&}Ɏ|@/Wv:啈GCӰ {m71{8 y:O3@WZ^TIM˙8H=<4}e p=ΥS#m?TFó8IH5*ߍ-_Вh.S{.# lkxҹx)+ʤҥ^b7%C$оJI*Ro|k2KfN8ߡ;KW 쩹SFOp|MC(T|f|= o`1~>(b)Y̦f@eCkΔ’yHQ%@w̭e3T#r+vf})Af4)@-naoGS TtLU^դ! 7z:vN؛\*o=fyv08ƫǑ9FëI{v>({χ`Q\OICs]jt->|% A( lKG{[̸i `?;i925;3W TV"MA ȝkD&Z^lAڧY"&w[;R#[F5'+wZ:=8/OCݛQT<|z ɌEQt-3t ^=j.ڰ;}7Tv+:l*|f -0Es{ 6dְYĖGe!F ;\Rin |R.lW~ OZf\~j&Ő|v&X;x89\?FU`uys%I6g$&pu U4i= &#/L;ڏ?G]OI ٬3]mFx" PxӪWܒzX2jw tcLͨlwz)kJB;U:ëؾeY&W  J,ځ.W< 8M kc?]c/O'; L/[\DPue^i_GE4+SةLo Nt޽DĺU.B1kݍv'T^Oq;`άjU)9 ǖtVPo;`Ž31H!Jz^$V*,u[550 I:5S fv0̍S[q;i@H+w'-"irb}կm͂)ia~i3"r2%rWmXB6F)Rb#ywX?++~I #7՚?CcMZ6 1r9^EV צ/X${`X PFHw`wmYPsD4D<` vg'w}XBDC(CVC[7 n%/bWrI7$pA=b9+EHZs"_—]iCc6[]Wx(r@Sik33[ ̎%@ColѦg~1(% HGpeVu_1: <"961#)׈.ɤVUgjߚK,wL\u|G`mN4_BV]*U_=ضFyj(A Q;l[&V=P$uZo]U?S%+t.^Dz5$"^8S>F|Ÿ>NY. oWb59h s:G= +fʾ+ KldKrk+[B) lxoោڮݴVR9'ꑂ'g CtrhջS(բyxM$OL"v) Š1'oHJ?hgZ[23lbdtk1_>O_s47=q 8NOX'pfUsmbZ)9 )x>9/y\ǟfMX/eig|_XBfTrP 9ۉ++9ҔIl͹8ځWJJ&G%8t^7fԹhxe?E'K;&v_8M'쫑mj!'p>o_Ȼڟ0uH^TS!"m;PkQē- :dNi -/FbR>vOыCcjy([W18xml4K`^4 uzpjJ^=YdӚU]8:^Mdz`*Td7CD|߀"(?OoepQ|@IB?SKѯƄ@Ph|QG]AwAƷ%lNJg^ 7a[*E 35CD$p5/F毞.6(fir`ް7xfq,jOڻ{ 딱VYg$z6tS._3uFD[ ˀk>Ĝyvn1 Fӵ([y~,ce\џ?G8vQ%-ba 5Zeg ̕2.nީwKX @0ŀVi4H ^ŇoKc՞bI_A٥dL_h6fSjcypeS VғE>t+mՔ|Aah祘f`jxQI '] g/Ke/\?0Q tWu &Z}3A<{pg0~:"wlp+#[z%{>)Ωo˻Rp >ySKT6dm E&ky{kEc%!Ilh~0܀WAWk0-? eJFKu6(ur|}H4h@@.TYHn""&1If_eTQ,Q>H/mМ;y*sޮMcN([c̆Nq(ICaJ udJ/cW|XLH5 ]dc?CM0fQigzOMı,~jyjx ۖ-v~OO-yJp}Ȁ-wq޾Bz'z.ZNk,})#Uw 1Qc˽Ҝ`嬤3bŹ^jBS/E uwh,MuXa(Ze^"7Ǥ9DI~>[­ d()ۮ:Uz oIݭIJ&cDӹ%qqA1Eo"!V͹j~q4 VC9&sJ,RNR-!%c{2P<+Ye;1ofXt9aʐr>pV[Mb_KzCXAW fNArkq0Y7b }OTD-I q+352@o^Ğ:AmEH4h,Jо(qu-S)ʒ@9~ZAK;Xs>8 *E0]ש=}#QXܙ ZŒ=Yu-t(zu:_txS( DLӼ⓹NF=Sy_YgRg!@*[+?5dɄUŷ/sr419`5f'pZw8,`e}}ߔHE Mc }j>3/&s1߫qE5#6kD5j9e3f>~}\gvP˥Pؿ$捦IJ 2bNק4QfQuWLpFo5mϊP")1MqN`eŷK^3PSs[r[A~|tA ?̒qeLZ`MmpdktVcX栿S8iwr@ښDn1j#^V}G+a}s lBYr\("U<>kw9^p?_hnRyYvMrbV0Gv߭"6f+ntU=EȦȍfv a[#v_65QL P2SDJT%4lׇ_( n](2 bU'i|ˆ/y "5!6o=q) z݊x2(.m&(? QPfRKN |/&ߔ)~\zì8Sߕb!fukE[bՙ9>M`l+lnVWHD;NTBYT|AyJ` TҥMI$RG{.Z[M@l,=2yW5mWP,;soFFuycW{g[ H<㚞Z|#p,<*jjLF<ĆD9N$_PN۵i&G<)6~3\J4kQnHr5<\Р];/kJ":=c!W]OIMP}/›`=^+_Q֔!΢sH$-5{/![9j,LuPI Νk8oP$eW6.ď)JC8g\i{/9_gb>0 -d=g9W❗HҶJщ![6\ϫ"׈BoUE0PCC\=Ӛ㏈]:Đ2ݟ5'"Ur:t= SeF0/S{% &Oݰ!.g;1P2^an9Dɹ~@I?pPxqYVQ\r>$9\ZMݴZB\rGTRji cI$b[mcHUAՁD*6֫0X`-Sqi^"7a7xp;E|oH(U~3[CZ֋%/ ŴX %^\Tp^K 퐯x7栤3M!GlfCa<8ˣS*eS`~˙Iϲ̎i+SSLhAzШqlzA-2T)>th>IU3xa<>BX l@Ә;2l$pBal.߃mHsw%7sAVk˽wI@QwZdC7EHؠq fa|l#įߑ d$G؏=C͑G4cOɺ,%Vcؗ?Дy9OɎy=kgD@uX;fyBʅ8%M}+*z%$)d]ZΙ4#Ə;)~8ihV ;}rzfM셏Dr^B8wT3NIm}-l}6&%u 4Á:$qᙦ$T[iG/$<mu3c|^/o!".yM~ei衑4nMqB :}0بƫQl@q# M V ]0zp5Yp'Z244AǮ|߾|YiՑ } .()жGqvƏw%Z#ޱ\0rq{>*$:0;^f3B-HRӛ>aoї|#1Z?g΅V$6>,B[>\׵f?ς)gC 6;n=:*PV|ֺ @RГEo`א*nCIGzPMe*m h}%ȀNE=a_Do]X/8T+&%<,"SPGBZ'o;( ߎkaΥx5FR|c=c򅯎 ZaxyJ/ܩE)a}r|U~z1-0la>y]oyPˤ:D)<&EgЇ/j4R^]qX#gW9G wE+oRJm eprR*iNVBZKGon!E4e[srx;?-U~hdr0: \Lt!RıJ<˵ƣȪ(.doO.ОyXag9@fqv93lXER4iYfJ哰e:wR]ueI𚵶_7b\pGZ^$wx.6uR)`>[Hȫdپ: wpxnP8Ro@TCyxϣJT|C 0kA|A4Og9Ei/:Lpu |3<7H)/2NeYn٤$]M8Ghj4,8 sF,l Em%ekm7Žm0{/漾뀍CBO"yxc dM<̊H apCמ:3HUn $?ל2sP2 $ibS^@d"фn};|>`,hGl']gk'|@ǰP=g=s ߵM"FJvQ))9p zG{̞s{K|z(aHQai¤-G%bO"F!9N보U,Rj{[bBҤx/ɆCyNfETMlg*ɻ 'Yu}Kļg/rF= Pk;?TYKtܯz?1Ea.PpwD4 y2N-w\ol=#{UK>z|2PY^45V.f4 SfZ_J+S^YU#+E6n12V-/dL;KHK1wYr-$DTcN#6?HH QpO?eaFǓ9[WQsl.[` ew M),Y6d SPv2 r#,Q@TΩ -b|pnɽ7:S˻wg8Ǖ TB-ҌP )WAvlOpJltȖ, ]:PB?\ua5p4jn_'!TΠ}y|VUԳx7ȥh|>p8R%jSmqow͡vS%.{:5,.y""NEYuv}eY 46kPkmwhAC諨.+bؚ24(|?hR> (GlcR:Zo#ufTUC7 E Y &iPb.Q (v˵|LTwj|lyL0^dIHBΜqBۆrGX 9È@ޫ$%OF Em< @ы[: deD?t䯊npK7ˌ1NVζz#,zє\4hߢ~2=?Fv2Cl߆,/X鵝7aPEIʱbc'6Zo΍LJ+WǢXo$&O) @K;םrC[+*<Ao8eeLH&lN]+}PEl'ƂZ0yew`;2c|( Q!+az)aIJ|uo;\QXi]jQKzߴ}| \}o,JkٟYޤPoql oBeZAA8?c]9J8.U,$T`7J4lkIMrC4F6l+#۽ ,Jm=eX!;v6q!&!OS(+}'ih?+ SWG6%$T?so *2YwYp R`Mwk26N%@y;|}a@…]κm4=C6uGM^6w?* 1B{3eqh>ܾn(AN/}᫓J3% _aoί@s_*Fixejso$1ivhXycfބPiKw @ocSQ7S,皣>H?$ h߆>YC~KJΣ0sdβ6"D6d&#mP[(#MqncQb9H^=፪9_mvˇΑ3#g¶PCAy վ}#fI&w`j:NP<!†]='N"ѕ5K&sDWZ= JM< `/S{)u oˏʚs$L"}k5RZpHviA/ؕ^.2S@#k .H[;rQXjvq8t/}L]N}7!?+=(408bêBQ1vMp/* l_9q N Kҗ- KfuT0:K \iԸwJIA_Xmn-^YbR9 1=Ny{Cj2=A1qqR2^܇\Tw\D*,ٍjC4 %j0bԷ576(d'bȁ(OX!сSTb7Qr?lL&4/08mڃMƇaLs6Ƿob$2IgqD'b4/wcLe]=xy4Tp#׳_B?W6Zi!]9[9 ٍe- ZPf6A;seK]KBY<( ;8GB]y z똷_rYxL I Ј kISnl3;Ě-iP>y!~Tp(Px;,DACw °yĒ~6Vw #mWt,VK.YkM@8dF5'ahߥȇmTYKR<'B7WO~LJm]͝`jQ.Ú.jmMd ՗%І'dL^* ȕHxSBCms|L%E4 gn9aA:窰%G6LVA{Ox>-i0CѪi=¬PAj^{/&~wͽ%["y@&hPS对O|ºJ<DvOo#3EVW5",ވ1L@Nj{o`svB#v.L#E6rFbڭOSy\;I-Ifau]ҵ!҉o' a,\/9"O.I|Av u1B6Cj}uٮfT [x`6⳩e4 jpcXY M8R"0%j 1#bQ8:\J/E\UlI^ (%;LN“c Z!: :۷Y ZS(J@.ҔVcJAm8o°֔ni*&Od^NYc>PIv*Wmh`:8:=U3$xE!߈G"1ՠxP?xz]ldA:v\+\+S8m"WNevr~mvx{ Sv莝)»Ńױ\uڂ &7ڸ)nGh4%^2Bpz$ix.ETy7ҫ{[試͋$JwJ8ܲmA)^٪ID&Yqܶm_3B$5$4*?ҝ#Jn]qo2[EH"̚(ASy`]S;Z<M(Zo:`xFFŢrHqb,$@RF_d]|5[>+S .  C!`8٫E>AxTڵOsg/Dg9]ZwJqA A6̷p"oUlԸa6XK]HKVX]/2K4 B vqe~^95VBQ1/ +FL~ϫIB ERDq\MV,%@-aɿR}zO%@Ãp{|rQDRİG5Ql0 evZij^6[8Hap_=5*}'e;G5ٓQL6y%·qvE*aGej ij=tٗ-I)h 2.ecQItvT0rzj|a3nyF_r 9GG|p>nwl* Wb.SbFpSu9\qh\-M(cPBu!=d{JڛicZoaɮVܡ[xzYT`N#|Oax;tglx7) /tS0A @`"TZħG0ʏwŞuc~{Y܈#(I\$M$+լAo,w,4(]`vFZ,EL8 i=N'p{iҎ8XuHQ؇S\ V{Ne愿j(n_-Ԥ__ 8AJ8.k-c9*Ӭ%1)a*(x#YfP셂b2ABZD[Bqy9VrV2 %(S&'ZܻO2>rP8^3LP Wx J@!Gƿc^=`:Oq`j7Ptʓ|,ʝ^wt22-tnְ+ .1ZE3oGR6K{Vw~i١{A 9^YByQ[6/[ RDwb3f19:'I)\B6oM.دWȻ-.EΔo Alde1Bo t ~fҏgAS%ԯ Ǯ/^CMqa&WU@nFRaOm{YH+Nӈ3Cqa=*,Q2OM=Ȣ򢋸)m2ON&@T%؄Zn_ΚY|hcYn S ;nWZ9|'Ӆf>#rC[Zr{M\&P5aۀ }V^o p.E$rdl=iGC,| -B^z-g3%̓,'r{$ܸ1JJL=PuI7+ ؋$P5 GciM.^lY{?\cm.C"I+QaOL NG';"qJCJ wH6}_WND)aGי\r㦨[i3Q'ǧq~}>0ڌo~6Iџʨ4`WX1:'U`''Y[g@TYʥ<;1)&G٪{ܓs-Bj+>+6J"\|D)g!Mvaxte!< S]jB)y(N@: bV4(5I`]O͚p.|606CR}ߍ9ye@I>ڢi42-?J猪ʮH~bZR`c rò)]Q-R@'`o;yjsrzNv =FIHX)OTqtR @eP~mf:}2_X1 u #S`6}/mr43!`pLhZ\gf.'h$SvKr*'M79 ~4Qȯb!Y#gI̵6l9(#'Sž;VNlStAqFŠyfO (ӔGМ.׹5 ZtAiQ/ľu>km:b/,[^}882хL9Nc(Ǖt &q[@[ka^sL5'ھ!0G8W> -¬\PTKzI$ڿ8SmJߘvf+%t;k FͨCU˿}9#x;ۣ+Tۘ!Y#baD%߼Ƨ&#spwV.c RR#7ӎҹbh'q((xM}s{Z4 uaE9kPs&~~R;k F :sozzv\f3kA$ mGfK"u1x#sR)Ԣ$|33k{E {>/y\9FU #''( :+V3?U-|!Ho{z2nZK|'C]@Gum =N6ҸG7~k>8.G[$ io1ccy0Cжn>yԧfy']ekxKy0԰w]a'Bf"r.1I֔vsgQ-bu`;+i)i`XMWA",ִKnZ-v֗Q1;r4,SXbhMk`9Y BҐ J>J?axtycBStIUXc, | `@) udׯ8KNFB^,luڹ W.SIQe;\2z,|N`-Ͼ̩9Qjqm*z۴\T:*la Hl!JjZ r%^*i xk:Nz!3W_ exlb돌 K4oPQO1 ~,UQw(Gh굅HK΢!b+;a''1f p ÀB'#D"`;=C/nzf6ĸzZi9< n&',90Fe5,lA0"BƢA8J<[bƶF;CW"FzDgM P+mㆩڥ*JP@G&wFة(7NcQZvND_RMt/رth@(\h))3KTihM_JLW?~)|)05ˉ~R֣yc\q7EOvqvs]>Ӭi2ilqoLip' ՁGc~ WJu Y;cdR*mGj~e8yz9P8$1}͓яEdbqX2| ʛϹYlɡ\k{j.bCN/"!X^hE[ //}5gpHEGWTTF,a?pdYN[oi8.Wh ]5q1_h+9N .(,4i 䇶<: z'%C.ẆyYк0- !\v%Ej!%o&ݕ8`i<^p=LdAvyC6WH'y[.ׁ JzQz|f: 4w-?$R|&jR~ Cr%3^M>|bBStc/ _b09uP6ȕ# ܈3K[_ެ?15"J!y?}]Qᶛg "\X¤PU?7Q+6.7jOE x߁x~w5@+e8 ޅDOByEɉq:N)KɃ/"V?${T7ВblrVb#C3p1YԎԱ( .EX)7_7#iաC"R|"^TƼ=D\WX{ܝ6|Q"U<R=Ce "WKWHgu"GXcMrc 0 4J1DsWpEKA-0W5 V6k~!فK9 kX7 |[\vJ#O 2id挛5u}WLC'-*|/x; +]Wi"f{_y%Y%S<5(a3ی%)Y xܲ#J `k&;DPloG Oj[,-n9.g0D ̒85V/g&h#Y\/qMkTU~ݺj]BoSdk' (ͯ@XdT}§cMd +hHLVp4o)A # `?nw1ovKQ@^~Ԛ:yyt:#5ix~# Y*BZ)H9&d²#\(/baqv{YUX ɵڟA{T|.erʢqJq9yʢNdtc؏=gz U oa"IWiBEZ P0YzFƵ,s+UxW'l&~28өU4R"@[o hyr>Axruѽȋc:,|wݭ2!FI:gM/Zv{M:82Ģ&W0̝ 1a+]&2{ H>fxl޳hFweZOD|tهWk0>㶵Yc{8qFa Y\yxõBG5BEE3}104TN4 >QKvrVp 6ԟ/KE]uT]-\!RlZ< }T\ġGpK%x>zLF٫Zs$n@hD?oװ`K=rNƎPKb8(\?ss [Q ۈEF1Xbݙ RU|42u;Nt@va@ePH]n_{TOJ"i,|ҳ5je.aջNj%"YL"$[|_Rkgi$:m'،v,ОA".̼Pdp4cq2xeM=~FҵJo e~HdR0ety+tKP9/.z 1%r2<%\8ضf)tzB Ղ aVJ5S>(ȫxUը#CDo^!b TIo_.ke6, (;4ԭQ 2(J83F3;dmHKg5g+1yZ$U#L)iP=m#^d-웙W_ ,XLyt<ElI{C) oCg 3(VT Xٖ)#1!uO?3R(fkӷFɓpO|MzWuQ-0lXl}2ڦ}h95th[wo =o?ꏥ&fh7 4C#T AFJ+;bdPk}~gµYJ>Co3?zQ)\װl$RU6žmQ sEr~+חdXʠ4=߽[ u;)sL7T P9UusCv]P=>&y̜>)sF^hMcpLJ[7BQnLy E<7_U[}ln.8ܗXKl>($_NvP A"Ex`\3u:_YuΓ/;>T7@,v )BHn]iȄk i!4'j!DPf7۽ڽ)%LCI b ^p [}l=H1>hsi+ϭjӄF2ʁ? Ao p'XT等I t>ۥ}6į8ksRЧR&$X XSу!G_vϠ9L(ݗ"T^>>IVJ~ Ć ]<IN=p}C3O済7LJ>e? iX)_=pw7'dg6gƻ{L=T\pC +W1G/VPwT cJl}g%h !DVgVdp={޲ X9uLProK5-+Qyj ' 9S,}* #`-(FrxGhpɳN.Pbi,.F^[+Q%G5)d7;8H^aDL:Px5bqx}p$eΈ' ﭛVX8Wz'2:le` 宁#"A_I^'G#qxjS2&;ϸ<梫0uy.eԢ-T5@m)6Z-r]7x uQnXf-ıVKhpI󤿡~oD~&>6e#,\ɚ/3g 6