nss-util-3.79.0-11.el8 >  A   d+U]^΋)9E Q]SH,'Lm5?t7B8(Dxu!P *Ek9I*|@PtO-L>Bnws|9KdÛ~I,;øEmR <5 vO9};EWuK,q >y8SkdyZ!Ka|I4e^z"qչjp:ē|0ޤ.Cj @URKtmNѥ%:mq/]8[x{s3R󄻔 XDl6i:::Jy82s"? IX=""Ǜ]zkO!Y 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]XUk3( g&=M~l)l"%3AҏGXG24ĞN:Nf]t-䟩=s3 [?tp;1(HbiifY_tYzP`_ xv,P }x ʓ) оnY3ɝnQ74=w66"LM}DaS{<)j?Z.&g(tAa7gnW,qkΐTըʕWRXrx{|נ=\ D4U^ŗ\~Γ9 xG7CZ)H|70.pׅ/[@Yd"d@8iuI exxb3yi gov[JH L)')+q|Y̑`DgTB=/uh'3ŲS]!4iB$>o3fWpzb@ʻmfb>P<T?Dd   E !,D P \ t  $<Zx(h(89 :]GHIXY\L]d^b,dXe]f`lbt|uvwTxly@Cnss-util3.79.011.el8Network Security Services Utilities LibraryUtilities for Network Security Services and the Softoken moduled aarch64-02.stream.rdu2.redhat.com^CentOSCentOSMPLv2.0builder@centos.orgUnspecifiedhttp://www.mozilla.org/projects/security/pki/nss/linuxaarch64$FAAA큤d d d d ld bNYcb0ef1fe8b71f6c522c090730fbe14a09c6e386efbd17f37aecde02c510a02b1a20c1a32d1f8102432360b42e932869f7c11c7cdbacf9cac554c422132af47f4../../../../usr/lib64/libnssutil3.sorootrootrootrootrootrootrootrootrootrootrootrootnss-3.79.0-11.el8.src.rpmlibnssutil3.so()(64bit)libnssutil3.so(NSSUTIL_3.12)(64bit)libnssutil3.so(NSSUTIL_3.12.3)(64bit)libnssutil3.so(NSSUTIL_3.12.5)(64bit)libnssutil3.so(NSSUTIL_3.12.7)(64bit)libnssutil3.so(NSSUTIL_3.13)(64bit)libnssutil3.so(NSSUTIL_3.14)(64bit)libnssutil3.so(NSSUTIL_3.15)(64bit)libnssutil3.so(NSSUTIL_3.17.1)(64bit)libnssutil3.so(NSSUTIL_3.21)(64bit)libnssutil3.so(NSSUTIL_3.24)(64bit)libnssutil3.so(NSSUTIL_3.25)(64bit)libnssutil3.so(NSSUTIL_3.31)(64bit)libnssutil3.so(NSSUTIL_3.33)(64bit)libnssutil3.so(NSSUTIL_3.38)(64bit)libnssutil3.so(NSSUTIL_3.39)(64bit)libnssutil3.so(NSSUTIL_3.59)(64bit)nss-utilnss-util(aarch-64)@@@@@@@@@@     @ld-linux-aarch64.so.1()(64bit)ld-linux-aarch64.so.1(GLIBC_2.17)(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.17)(64bit)libdl.so.2()(64bit)libnspr4.so()(64bit)libplc4.so()(64bit)libplds4.so()(64bit)libpthread.so.0()(64bit)libpthread.so.0(GLIBC_2.17)(64bit)nsprrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)rtld(GNU_HASH)4.34.0-33.0.4-14.6.0-14.0-15.2-14.14.3dxb@b@bγby@bba@blbbb@a@@`E`ݮ@` @`ٹ`̊`9@`Ȗ@`D`r_@_^@___@__"@_"@_"@_!d_@_ L_ _@^^@@^@^ۅ@^4]N@]]߶]e@]M@]µ]L]]^@\F@\Q\\\\\\@\I\I\U@\ `\l@[[[u[#@[[W[O+[M@[ZZw@Z|;Zo Zo Zg#Z ZZZ@Y+@Y{YY@Yn@YV@Y@YyYm@Yg`YJ_Y1S@XX@XX @XXYX@X@XX~@Xx@XoX>@X*X@WW@Wt@W~Wv[@WrfWoWm WbWQq@WPWJWDB@W4p@W@Wo@W@VV޾V޾V@VяVIVɦV@V@V=@V@V@VO @VHsVEV3[V UYU@UU@U@U>Ua@Ug@U[%UUU @T@Ts@TTء@T@TÉ@TT@T@T?@T:m@T"@S@S<@S@S@S @SSSSpShS(5@S@SRy@RJ@R@RR@RSRR@Rm@Rg@RD!R@RRR|Q@Q*@QQ@QKQ@QQW@Qw@Q]k@QNQ9Q7/Q#@QQ @P!@PՠP @PqP@P@PAPXPd@Pd@PPP@PP5@PPnP;a@P(@P H@O;O;O@OiO@O@O}O~OiOYOX@OOdO&@O!@@OO@O@N>@N>@NNܲ@N`NؽNN@NuN;@Np@Nf @NA!@N*NpM@MWMc@MM@M@MMfH@M^_@MZjMS@MQ0@MQ0@MQ0@MQ0@MK@MGMF@M6@M-MM@Ls@LOLLZ@L6LdL@L*@L@LA@LL@L4Lx@Lx@Li(@Lf@L_L_LT@L0L0L K @KsKsKKCKCKCK]KMKLd@KD{@K<@K5K4@K,@K+nK*@K K@K@K@KJݦ@J - 3.79.0-11Bob Relyea - 3.79.0-10Bob Relyea - 3.79.0-9Bob Relyea - 3.79.0-8Bob Relyea - 3.79.0-7Bob Relyea - 3.79.0-6Bob Relyea - 3.79.0-5Bob Relyea - 3.79.0-4Bob Relyea - 3.79.0-3Bob Relyea - 3.79.0-2Bob Relyea - 3.79.0-1Bob Relyea - 3.67.0-7Bob Relyea - 3.67.0-6Bob Relyea - 3.67.0-5Bob Relyea - 3.67.0-4Bob Relyea - 3.67.0-3Bob Relyea - 3.67.0-2Bob Relyea - 3.67.0-1Bob Relyea - 3.66.0-2Bob Relyea - 3.66.0-1.1Bob Relyea - 3.66.0-1Bob Relyea - 3.53.1-17Bob Relyea - 3.53.1-16Bob Relyea - 3.53.1-15Bob Relyea - 3.53.1-14Bob Relyea - 3.53.1-13Bob Relyea - 3.53.1-12Bob Relyea - 3.53.1-11Bob Relyea - 3.53.1-10Daiki Ueno - 3.53.1-9Daiki Ueno - 3.53.1-8Bob Relyea - 3.53.1-7Daiki Ueno - 3.53.1-6Bob Relyea - 3.53.1-5Bob Relyea - 3.53.1-4Daiki Ueno - 3.53.1-3Daiki Ueno - 3.53.1-2Daiki Ueno - 3.53.1-1Daiki Ueno - 3.53.0-1Bob Relyea - 3.44.0-15Bob Relyea - 3.44.0-14Bob Relyea - 3.44.0-13Daiki Ueno - 3.44.0-12Bob Relyea - 3.44.0-11Daiki Ueno - 3.44.0-10Bob Relyea - 3.44.0-9Bob Relyea - 3.44.0-8Daiki Ueno - 3.44.0-7Daiki Ueno - 3.44.0-6Daiki Ueno - 3.44.0-5Bob Relyea - 3.44.0-4.1Bob Relyea - 3.44.0-4Daiki Ueno - 3.44.0-3Bob Relyea - 3.44.0-2Daiki Ueno - 3.44.0-1Daiki Ueno - 3.41.0-5Bob Relyea - 3.41.0-4Daiki Ueno - 3.41.0-3Daiki Ueno - 3.41.0-2Daiki Ueno - 3.41.0-1Daiki Ueno - 3.39.0-1.5Bob Relyea - 3.39.0-1.4Daiki Ueno - 3.39.0-1.3Daiki Ueno - 3.39.0-1.2Daiki Ueno - 3.39.0-1.1Daiki Ueno - 3.39.0-1.0Daiki Ueno - 3.38.0-1.2Daiki Ueno - 3.38.0-1.1Daiki Ueno - 3.38.0-1.0Kai Engert - 3.36.1-1.2Daiki Ueno - 3.36.1-1.1Daiki Ueno - 3.36.1-1.0Daiki Ueno - 3.36.0-1.0Fedora Release Engineering - 3.35.0-5Kai Engert - 3.35.0-4Kai Engert - 3.35.0-3Daiki Ueno - 3.35.0-2Daiki Ueno - 3.34.0-2Daiki Ueno - 3.33.0-6Kai Engert - 3.33.0-5Kai Engert - 3.33.0-4Kai Engert - 3.33.0-3Daiki Ueno - 3.33.0-2Daiki Ueno - 3.32.1-2Daiki Ueno - 3.32.0-4Kai Engert - 3.32.0-3Daiki Ueno - 3.32.0-2Fedora Release Engineering - 3.31.0-6Fedora Release Engineering - 3.31.0-5Daiki Ueno - 3.31.0-4Daiki Ueno - 3.31.0-3Daiki Ueno - 3.31.0-2Daiki Ueno - 3.30.2-3Daiki Ueno - 3.30.2-2Kai Engert - 3.30.0-3Daiki Ueno - 3.30.0-2Kai Engert - 3.29.1-3Daiki Ueno - 3.29.1-2Daiki Ueno - 3.29.0-3Daiki Ueno - 3.29.0-2Daiki Ueno - 3.28.1-6Daiki Ueno - 3.28.1-5Daiki Ueno - 3.28.1-4Daiki Ueno - 3.28.1-3Daiki Ueno - 3.28.1-2Daiki Ueno - 3.27.2-2Daiki Ueno - 3.27.0-5Kai Engert - 3.27.0-4Daiki Ueno - 3.27.0-3Daiki Ueno - 3.27.0-2Daiki Ueno - 3.26.0-2Elio Maldonado - 3.25.0-6Elio Maldonado - 3.25.0-5Elio Maldonado - 3.25.0-4Elio Maldonado - 3.25.0-3Elio Maldonado - 3.25.0-2Kamil Dudka - 3.24.0-3Elio Maldonado - 3.24.0-2.3Elio Maldonado - 3.24.0-2.2Elio Maldonado - 3.24.0-2.1Elio Maldonado - 3.24.0-2.0Elio Maldonado - 3.23.0-9Elio Maldonado - 3.23.0-8Elio Maldonado - 3.23.0-7Elio Maldonado - 3.23.0-6Elio Maldonado - 3.23.0-5Elio Maldonado - 3.23.0-4Elio Maldonado - 3.23.0-3Elio Maldonado - 3.23.0-2Elio Maldonado - 3.22.2-2Elio Maldonado - 3.22.1-3Elio Maldonado - 3.22.1-1Elio Maldonado - 3.22.0-3Elio Maldonado - 3.22.0-2Fedora Release Engineering - 3.21.0-7Elio Maldonado - 3.21.0-6Michal Toman - 3.21.0-5Elio Maldonado - 3.21.0-4Elio Maldonado - 3.21.0-3Elio Maldonado Batiz - 3.21.1-2Elio Maldonado - 3.20.1-2Elio Maldonado - 3.20.0-6Elio Maldonado - 3.20.0-5Elio Maldonado - 3.20.0-4Elio Maldonado - 3.20.0-3Elio Maldonado - 3.20.0-2Elio Maldonado - 3.19.3-2Elio Maldonado - 3.19.2-3Kai Engert - 3.19.2-2Kai Engert - 3.19.1-2Kai Engert - 3.19.0-2Kai Engert - 3.18.0-2Elio Maldonado - 3.18.0-1Elio Maldonado - 3.17.4-5Till Maas - 3.17.4-4Elio Maldonado - 3.17.4-3Elio Maldonado - 3.17.4-2Elio Maldonado - 3.17.4-1Ville Skyttä - 3.17.3-4Elio Maldonado - 3.17.3-3Elio Maldonado - 3.17.3-2Elio Maldonado - 3.17.3-1Elio Maldonado - 3.17.2-2Elio Maldonado - 3.17.2-1Kai Engert - 3.17.1-1Kevin Fenzi - 3.17.0-2Elio Maldonado - 3.17.0-1Fedora Release Engineering - 3.16.2-4Elio Maldonado - 3.16.2-3Tom Callaway - 3.16.2-2Elio Maldonado - 3.16.2-1Elio Maldonado - 3.16.1-4Fedora Release Engineering - 3.16.1-3Jaromir Capik - 3.16.1-2Elio Maldonado - 3.16.1-1Elio Maldonado - 3.16.0-1Elio Maldonado - 3.15.5-2Elio Maldonado - 3.15.5-1Elio Maldonado - 3.15.4-5Elio Maldonado - 3.15.4-4Elio Maldonado - 3.15.4-3Peter Robinson 3.15.4-2Elio Maldonado - 3.15.4-1Elio Maldonado - 3.15.3.1-1Elio Maldonado - 3.15.3-2Elio Maldonado - 3.15.3-1Elio Maldonado - 3.15.2-3Elio Maldonado - 3.15.2-2Elio Maldonado - 3.15.2-1Elio Maldonado - 3.15.1-7Elio Maldonado - 3.15.1-6Elio Maldonado - 3.15.1-5Elio Maldonado - 3.15.1-4Elio Maldonado - 3.15.1-3Elio Maldonado - 3.15.1-2Elio Maldonado - 3.15.1-1Elio Maldonado - 3.15-5emaldona - 3.15-4emaldona - 3.15-3Elio Maldonado - 3.15-2Elio Maldonado - 3.15-1Elio Maldonado - 3.15-0.1.beta1.2Elio Maldonado - 3.15-0.1.beta1.1Kai Engert - 3.14.3-12Kai Engert - 3.14.3-10Kai Engert - 3.14.3-9Elio Maldonado - 3.14.3-1Elio Maldonado - 3.14.2-2Elio Maldonado - 3.14.2-1Kai Engert - 3.14.1-3Elio Maldonado - 3.14.1-2Elio Maldonado - 3.14.1-1Elio Maldonado - 3.14-12Elio Maldonado - 3.14-11Elio Maldonado - 3.14-10Elio Maldonado - 3.14-9Elio Maldonado - 3.14-8Elio Maldonado - 3.14-7Elio Maldonado - 3.14-6Elio Maldonado - 3.14-5Elio Maldonado - 3.14-4Elio Maldonado - 3.14-3Elio Maldonado - 3.14-2Elio Maldonado - 3.14-1Elio Maldonado - 3.14-0.1.rc.1Kai Engert - 3.13.6-1Elio Maldonado - 3.13.5-8Elio Maldonado - 3.13.5-7Fedora Release Engineering - 3.13.5-6Elio Maldonado - 3.13.5-5Elio Maldonado - 3.13.5-4Elio Maldonado - 3.13.5-3Elio Maldonado - 3.13.5-2Elio Maldonado - 3.13.5-1Elio Maldonado - 3.13.4-3Elio Maldonado - 3.13.4-2Elio Maldonado - 3.13.4-1Elio Maldonado - 3.13.3-4Elio Maldonado - 3.13.3-3Elio Maldonado - 3.13.3-2Elio Maldonado - 3.13.3-1Tom Callaway - 3.13.1-13Elio Maldonado - 3.13.1-12Fedora Release Engineering - 3.13.1-11Elio Maldonado - 3.13.1-11Elio Maldonado - 3.13.1-10elio maldonado - 3.13.1-9Elio Maldonado - 3.13.1-8Elio Maldonado - 3.13.1-7Elio Maldonado - 3.13.1-6Elio Maldonado - 3.13.1-5Elio Maldonado Batiz - 3.13.1-4Elio Maldonado - 3.13.1-2Elio Maldonado - 3.13.1-1Elio Maldonado - 3.13-1Elio Maldonado - 3.13-0.1.rc0.1Elio Maldonado - 3.12.11-3Kai Engert - 3.12.11-2Elio Maldonado - 3.12.11-1Elio Maldonado - 3.12.10-6Michael Schwendt - 3.12.10-5Elio Maldonado - 3.12.10-4Dennis Gilmore - 3.12.10-3Elio Maldonado - 3.12.10-2Elio Maldonado - 3.12.10-1Elio Maldonado - 3.12.10-0.1.beta1Elio Maldonado - 3.12.9-15Elio Maldonado - 3.12.9-14Elio Maldonado - 3.12.9-13Elio Maldonado - 3.12.9-12Elio Maldonado - 3.12.9-11Elio Maldonado - 3.12.9-10Elio Maldonado - 3.12.9-9Fedora Release Engineering - 3.12.9-8Elio Maldonado - 3.12.9-7Christopher Aillon - 3.12.9-6Elio Maldonado - 3.12.9-5Elio Maldonado - 3.12.9-4Elio Maldonado - 3.12.9-3Elio Maldonado - 3.12.9-2Elio Maldonado - 3.12.9-1Elio Maldonado - 3.12.9-0.1.beta2Elio Maldonado - 3.12.8.99.2-1Elio Maldonado - 3.12.8.99.1-1Elio Maldonado - 3.12.8-9Elio Maldonado - 3.12.8-8Elio Maldonado - 3.12.8-7Elio Maldonado - 3.12.8-6Elio Maldonado - 3.12.8-5Elio Maldonado - 3.12.8-4Elio Maldonado - 3.12.8-3Elio Maldonado - 3.12.8-2Elio Maldonado - 3.12.8-1Elio Maldonado - 3.12.7.99.4-1Elio Maldonado - 3.12.7.99.3-2Elio Maldonado - 3.12.7.99.3-1Elio Maldonado - 3.12.7-3Elio Maldonado - 3.12.7-2Elio Maldonado - 3.12.7-1Elio Maldonado - 3.12.6-12Elio Maldonado - 3.12.6-11Elio Maldonado - 3.12.6-10Elio Maldonado - 3.12.6-9Dennis Gilmore - 3.12.6-8Elio Maldonado - 3.12.6-7Elio Maldonado - 3.12.6-6Elio Maldonado - 3.12.6-5Elio Maldonado - 3.12.6-4Elio Maldonado - 3.12.6-3Elio Maldonado - 3.12.6-2Elio Maldonado - 3.12.6-1.2Elio Maldonado - 3.12.6-1.1Elio Maldonado - 3.12.6-1Elio Maldonado - 3.12.5-8Elio Maldonado - 3.12.5-5Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1.13.2Elio Maldonado - 3.12.5-1.13.1Elio Maldonado - 3.12.5-1.13Elio Maldonado - 3.12.5-1.11Elio maldonado - 3.12.5-1.9Elio Maldonado - 3.12.5-2.7Elio Maldonado - 3.12.5-1.6Elio Maldonado - 3.12.5-1.5Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1Elio Maldonado - 3.12.4-14.1Elio Maldonado - 3.12.4-13.1Elio Maldonado - 3.12.4-13Elio Maldonado - 3.12.4-12Elio Maldonado - 3.12.4-11Elio Maldonado - 3.12.4-10Elio Maldonado - 3.12.4-8Elio Maldonado - 3.12.4-6Elio Maldonado - 3.12.4-5Elio Maldonado - 3.12.4-4Elio Maldonado - 3.12.4-3Elio Maldonado - 3.12.4-2Elio Maldonado - 3.12.4-1Elio Maldonado - 3.12.3.99.3-30Elio Maldonado - 3.12.3.99.3-29Elio Maldonado - 3.12.3.99.3-28Elio Maldonado - 3.12.3.99.3-27Elio Maldonado - 3.12.3.99.3-26Elio Maldonado - 3.12.3.99.3-25Warren Togami - 3.12.3.99.3-24Elio Maldonado - 3.12.3.99.3-23Elio Maldonado - 3.12.3.99.3-22Elio Maldonado - 3.12.3.99.3-21Elio Maldonado - 3.12.3.99.3-20Elio Maldonado - 3.12.3.99.3-19Elio Maldonado - 3.12.3.99.3-18Elio Maldonado - 3.12.3.99.3-16Dennis Gilmore - 3.12.3.99.3-15Dennis Gilmore - 3.12.3.99.3-14Dennis Gilmore - 3.12.3.99.3-13Dennis Gilmore - 3.12.3.99.3-12Elio Maldonado+emaldona@redhat.com - 3.12.3.99.3-11Elio Maldonado - 3.12.3.99.3-10Dennis Gilmore - 3.12.3.99.3-9Elio Maldonado - 3.12.3.99.3-7.1Fedora Release Engineering - 3.12.3.99.3-7Elio Maldonado - 3.12.3.99.3-6Elio Maldonado - 3.12.3.99.3-5Elio Maldonado - 3.12.3.99.3-4Kai Engert - 3.12.3.99.3-3Kai Engert - 3.12.3.99.3-2Kai Engert - 3.12.3-7Kai Engert - 3.12.3-4Kai Engert - 3.12.3-3Kai Engert - 3.12.3-2Kai Engert - 3.12.2.99.3-7Kai Engert - 3.12.2.99.3-6Kai Engert - 3.12.2.99.3-5Kai Engert - 3.12.2.99.3-4Kai Engert - 3.12.2.99.3-3Kai Engert - 3.12.2.99.3-2Kai Engert - 3.12.2.99.3-1Fedora Release Engineering - 3.12.2.0-4Kai Engert - 3.12.2.0-3Dennis Gilmore - 3.12.1.1-4Kai Engert - 3.12.1.1-3Kai Engert - 3.12.1.1-2Kai Engert - 3.12.1.0-2Kai Engert - 3.12.0.3-7Kai Engert - 3.12.0.3-6Kai Engert - 3.12.0.3-3Kai Engert - 3.12.0.3-2Kai Engert - 3.12.0.1-1Jesse Keating - 3.11.99.5-2Kai Engert - 3.11.99.5-1Kai Engert - 3.11.99.4-1Kai Engert - 3.11.99.3-6Kai Engert - 3.11.99.3-5Kai Engert - 3.11.99.3-4Kai Engert - 3.11.99.3-3Kai Engert - 3.11.99.3-2Kai Engert - 3.11.99.3-1Kai Engert - 3.11.99.2b-3Kai Engert - 3.11.99.2b-2Kai Engert - 3.11.99.2-2Kai Engert - 3.11.99.2-1Kai Engert - 3.11.7-10Rob Crittenden - 3.11.7-9Kai Engert - 3.11.7-8Bob Relyea - 3.11.7-7Kai Engert - 3.11.7-6Kai Engert - 3.11.7-5Kai Engert - 3.11.7-4Kai Engert - 3.11.7-3Kai Engert - 3.11.7-2Kai Engert - 3.11.5-2Kai Engert - 3.11.5-1Bob Relyea - 3.11.4-4Kai Engert - 3.11.4-1Kai Engert - 3.11.3-2Kai Engert - 3.11.3-1Kai Engert - 3.11.2-2Jesse Keating - 3.11.2-1.1Kai Engert - 3.11.2-1Kai Engert - 3.11.1-2Kai Engert - 3.11.1-1Kai Engert - 3.11-4Jesse Keating - 3.11-3.2Jesse Keating - 3.11-3.1Ray Strode 3.11-3Christopher Aillon 3.11-2Christopher Aillon 3.11-1Christopher Aillon 3.11-0.cvs.2Christopher Aillon 3.11-0.cvsKai Engert Rob Crittenden 3.10-1- Fix CVE-2023-0767- Fix QA found failures: - remove extra '+' from sslpolicy.txt file causing test error values - only use GRND_RANDOM if the kernel is in FIPS mode.- FIPS 140-3 changes- Update fips default for pk12util to AES rather than TDES - Fix bug in pkcs12 files with null passwords- Better fix for test regressions- fix nss.spec so it works in a rhel-8.1.0 buildroot- FIPS 140-3 changes - Reject Small RSA keys, 1024 bit keys are marked as FIP OK when verifying, reject signature keys by policy - Allow applications to retrigger selftests on demand.- Fix pkgconfig output- NSR Coverity fix changed selfserv from passive to active, change it back- Fix regressions found in test suites.- Rebase to NSS 3.79 - Set FIPS Module ID - skip attribute verification on attributes with default values - don't export trust objects if they are default trust objects from dbm - add dbtool to nss-tools- Fix CVE 2021 43527- Fix ssl alert issue- Fix issue with reading databases that were updated using unpatched versions of nss- Better fix for the sdb timeout. The issue wasn't a race, it was the sqlite timeout waiting to begin a transaction under heavy thread usage.- Fix sdb race condition- Fix coverity issues- Rebase to NSS 3.67- Restore old pkcs12 defaults.- build nss for older nspr so we can pass gating with the new nspr in the build root- Rebase to NSS 3.66- Fix various corner cases with ike v1 app b support.- Fix the following CVE - CVE-2020-12403 chacha-poly issues - CVE-2020-12400 constant time ECC. - CVE-2020-6829 constant time ECC.- Revert some policy changes the generate ABI runtime issues.- Add support for enable/disable in policy. Now if your policy file has disallow=x enable=y it will act just like our other libraries.- Add OAEP interface so applications can wrap keys with RSA-OAEP rather than RSA-PKCS-1.- fips need to reject small primes even if they are approved - code to autodetect whether or not to use the cache needs to do so in a way that doesn't mess with filesystem negative file caching. - add kdf selftests- Fix issue with upgradedb where upgradedb expects standard to generate dbm databases, not sql databases (default in RHEL8)- Disable dh timing test because it's unreliable on s390- Explicitly enable upgradedb/sharedb test cycles- Disable Delegated Credentials for TLS- Fix attribute decryption issue where the private key components integrity check on private attributes where not being checked.- Update nss-rsa-pkcs1-sigalgs.patch to the upstream version- Include required checks for dh and ecdh key generation in FIPS mode.- Add better checks for dh derive operations in FIPS mode.- Disable NSS_HASH_ALG_SUPPORT as well for MD5 (#1849938) - Adjust for update-crypto-policies packaging change (#1848649) - Fix compilation with -Werror=strict-prototypes (#1843417)- Fix regression in MD5 disablement (#1849938) - Include rsa_pkcs1_* in signature_algorithms extension (#1847945)- Update to NSS 3.53.1- Update to NSS 3.53- Fix swapped CMAC PKCS #11 values. - Fix data alignment crash in CMAC.- Fix coverify scan issue- Fix endian problem in SP-800 108 code.- Install cmac.h required by blapi.h (#1764513) - Fix out-of-bounds write in NSC_EncryptUpdate (#1775913)- Add SP-800 108 Generalized kdf- Check policy against hash algorithms used for ServerKeyExchange (#1730039)- Add CMAC- CKM_NSS_IKE1_APP_B_PRF_DERIVE was missing from the mechanism list, preventing PK11_Derive*() from using it. Add gtests for the PK11_Derive interface for all the CKM_NSS_IKE*_DERIVE mechanism.- Backport fixes from 3.44.1- Add continuous RNG test required by FIPS - fipstest: use CKM_TLS12_MASTER_KEY_DERIVE instead of vendor specific mechanism- Rebuild with the correct build target- rebuild to try to retrigger CI tests- Fix certutil man page - Fix extracting a public key from a private key for dh, ec, and dsa- Disable TLS 1.3 under FIPS mode - Disable RSASSA-PKCS1-v1_5 in TLS 1.3 - Fix post-handshake auth transcript calculation if SSL_ENABLE_SESSION_TICKETS is set - Revert the change to use XDG basedirs (mozilla#818686)- Add ike mechanisms in softokn - Add FIPS checks in softoken- Update to NSS 3.44 - Define NSS_SEED_ONLY_DEV_URANDOM=1 to exclusively use getentropy - Use %autosetup - Clean up manual pages generation - Clean up %check - Remove prelink dependency, which is not available in RHEL-8 - Remove upstreamed patches- Update manual pages to reflect recent changes in commands- Make sure corresponding public keys are created when importing private keys.- Fix the last change - Add --no-reload option to update-crypto-policies to avoid unnecessary restart of daemons- Restore LDFLAGS injection when linking DSO- Update to NSS 3.41 - Consolidate nss-util, nss-softokn, and nss into a single source package- Fix the last commit- Support for IKE/IPsec typical PKIX usage so libreswan can use nss without rejecting certs based on EKU- Backport upstream fixes for rhbz#1649026, rhbz#1608895, rhbz#1644854 - Document PKCS #11 URI - Add warning when adding module with modutil while p11-kit is enabled- Update nss-dsa.patch to not advertise DSA signature algorithm - Update PayPal test certs for testing- Backport "DSA" keyword in crypto-policies- Update to NSS 3.39- Fix LDFLAGS injection when linking DSO- Install crypto-policies configuration file for https://fedoraproject.org/wiki/Changes/NSSLoadP11KitModules - Port enable-fips-when-system-is-in-fips-mode.patch from RHEL-7 - Use %ldconfig_scriptlets - Remove needless use of %defattr, by Jason Tibbitts- Update to NSS 3.38- Backport upstream addition of nss-policy-check utility, rhbz#1428746, includes required fixes for mozbz#1296263 and mozbz#1474875- Switch the default DB type to SQL - Enable SSLKEYLOGFILE- Update to NSS 3.36.1 - Remove nss-3.14.0.0-disble-ocsp-test.patch - Fix partial injection of LDFLAGS - Remove NSS_NO_PKCS11_BYPASS, which is no-op in upstream- Update to NSS 3.36.0 - Add gcc-c++ to BuildRequires (C++ is needed for gtests) - Make test failure detection robuster- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild- Fix a compiler error with gcc 8, mozbz#1434070 - Set NSS_FORCE_FIPS=1 at %build time, and remove from %check.- Stop pulling in nss-pem automatically, packages that need it should depend on it, rhbz#1539401- Update to NSS 3.35.0- Update to NSS 3.34.0- Make sure 32bit nss-pem always be installed with 32bit nss in multlib environment, patch by Kamil Dudka- Fix test script- Update tests to be compatible with default NSS DB changed to sql (the default was changed in the nss-util package).- rhbz#1505487, backport upstream fixes required for rhbz#1496560- Update to NSS 3.33.0- Update to NSS 3.32.1- Update iquote.patch to really prefer in-tree headers over system headers- NSS libnssckbi.so has already been obsoleted by p11-kit-trust, rhbz#1484449- Update to NSS 3.32.0- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild- Backport mozbz#1381784 to avoid deadlock in dnf- Move signtool to %_libdir/nss/unsupported-tools, for: https://fedoraproject.org/wiki/Changes/NSSSigntoolDeprecation- Rebase to NSS 3.31.0- Enable gtests- Rebase to NSS 3.30.2 - Enable TLS 1.3- Backport upstream mozbz#1328318 to support crypto policy FUTURE.- Rebase to NSS 3.30.0 - Remove upstreamed patches- Backport mozbz#1334976 and mozbz#1336487.- Rebase to NSS 3.29.1- Disable TLS 1.3, following the upstream change- Rebase to NSS 3.29.0 - Suppress -Werror=int-in-bool-context warnings with GCC7- Work around pkgconfig -> pkgconf transition issue (releng#6597)- Disable TLS 1.3 - Add "Conflicts" with packages using older Mozilla codebase, which is not compatible with NSS 3.28.1 - Remove NSS_ECC_MORE_THAN_SUITE_B setting, as it was removed in upstream- Add "Conflicts" with older firefox packages which don't have support for smaller curves added in NSS 3.28.1- Fix incorrect version specification in %nss_{util,softokn}_version, pointed by Elio Maldonado- Rebase to NSS 3.28.1 - Remove upstreamed patch for disabling RSA-PSS - Re-enable TLS 1.3- Rebase to NSS 3.27.2- Revert the previous fix for RSA-PSS and use the upstream fix instead- Disable the use of RSA-PSS with SSL/TLS. #1383809- Disable TLS 1.3 for now, to avoid reported regression with TLS to version intolerant servers- Rebase to NSS 3.27.0 - Remove upstreamed ectest patch- Rebase to NSS 3.26.0 - Update check policy file patch to better match what was upstreamed - Remove conditionally ignore system policy patch as it has been upstreamed - Skip ectest as well as ecperf, which are built as part of nss-softokn - Fix rpmlint error regarding %define usage- Incorporate some changes requested in upstream review and commited upstream (#1157720)- Add support for conditionally ignoring the system policy (#1157720) - Remove unneeded test scripts patches in order to run more tests - Remove unneeded test data modifications from the spec file- Remove obsolete patch and spurious lines from the spec file (#1347336)- Cleanup spec file and patches and add references to bugs filed upstream- Rebase to nss 3.25- decouple nss-pem from the nss package (#1347336)- Apply the patch that was last introduced - Renumber and reorder some of the patches - Resolves: Bug 1342158- Allow application requests to disable SSL v2 to succeed - Resolves: Bug 1342158 - nss-3.24 does no longer support ssl V2, installation of IPA fails because nss init fails- Rebase to NSS 3.24.0 - Restore setting the policy file location - Make ssl tests scripts aware of policy - Ajust tests data expected result for policy- Bootstrap build to rebase to NSS 3.24.0 - Temporarily not setting the policy file location- Change POLICY_FILE to "nss.config"- Change POLICY_FILE to "nss.cfg"- Change the POLICY_PATH to "/etc/crypto-policies/back-ends" - Regenerate the check policy patch with hg to provide more context- Fix typo in the last %changelog entry- Load policy file if /etc/pki/nssdb/policy.cfg exists - Resolves: Bug 1157720 - NSS should enforce the system-wide crypto policy- Remove unused patch rendered obsolete by pem update- Update pem sources to latest from nss-pem upstream - Resolves: Bug 1300652 - [PEM] insufficient input validity checking while loading a private key- Rebase to NSS 3.23- Rebase to NSS 3.22.2- Fix ssl2/exp test disabling to run all the required tests- Rebase to NSS 3.22.1- Update .gitignore as part of updating to nss 3.22- Update to NSS 3.22- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild- Resolves: Bug 1299040 - Enable ssl_gtests upstream test suite - Remove 'export NSS_DISABLE_GTESTS=1' go ssl_gtests are built - Use %define when specifying the nss_tests to run- Add 64-bit MIPS to multilib arches- Update %{nss_util_version} and %{nss_softokn_version} to 3.21.0 - Resolves: Bug 1284095 - all https fails with sec_error_no_token- Add references to bugs filed upstream- Update to NSS 3.21 - Package listsuites as part of the unsupported tools set - Resolves: Bug 1279912 - nss-3.21 is available - Resolves: Bug 1258425 - Use __isa_bits macro instead of list of 64-bit - Resolves: Bug 1280032 - Package listsuites as part of the nss unsupported tools set- Update to NSS 3.20.1- Enable ECC cipher-suites by default [hrbz#1185708] - Split the enabling patch in two for easier maintenance - Remove unused patches rendered obsolete by prior rebase- Enable ECC cipher-suites by default [hrbz#1185708] - Implement corrections requested in code review- Enable ECC cipher-suites by default [hrbz#1185708]- Fix patches that disable ssl2 and export cipher suites support - Fix libssl patch that disable ssl2 & export cipher suites to not disable RSA_WITH_NULL ciphers - Fix syntax errors in patch to skip ssl2 and export cipher suite tests - Turn ssl2 off by default in the tstclnt tool - Disable ssl stress tests containing TLS RC4 128 with MD5- Update to NSS 3.20- Update to NSS 3.19.3- Create on the fly versions of sslcov.txt and sslstress.txt that disable tests for SSL2 and EXPORT ciphers- Update to NSS 3.19.2- Update to NSS 3.19.1- Update to NSS 3.19- Replace expired test certificates, upstream bug 1151037- Update to nss-3.18.0 - Resolves: Bug 1203689 - nss-3.18 is available- Disable export suites and SSL2 support at build time - Fix syntax errors in various shell scripts - Resolves: Bug 1189952 - Disable SSL2 and the export cipher suites- Rebuilt for Fedora 23 Change https://fedoraproject.org/wiki/Changes/Harden_all_packages_with_position-independent_code- Commented out the export NSS_NO_SSL2=1 line to not disable ssl2 - Backing out from disabling ssl2 until the patches are fixed- Disable SSL2 support at build time - Fix syntax errors in various shell scripts - Resolves: Bug 1189952 - Disable SSL2 and the export cipher suites- Update to nss-3.17.4- Own the %{_datadir}/doc/nss-tools dir- Resolves: Bug 987189 - nss-tools RPM conflicts with perl-PAR-Packer - Install pp man page in %{_datadir}/doc/nss-tools/pp.1 - Use %{_mandir} instead of /usr/share/man as more generic- Install pp man page in alternative location - Resolves: Bug 987189 - nss-tools RPM conflicts with perl-PAR-Packer- Update to nss-3.17.3 - Resolves: Bug 1171012 - nss-3.17.3 is available- Resolves: Bug 994599 - Enable TLS 1.2 by default- Update to nss-3.17.2- Update to nss-3.17.1 - Add a mechanism to skip test suite execution during development work- Rebuild for rpm bug 1131960- Update to nss-3.17.0- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild- Replace expired PayPal test cert with current one to prevent build failure- fix license handling- Update to nss-3.16.2- Remove unwanted source directories at end of %prep so it truly does it - Skip the cipher suite already run as part of the nss-softokn build- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild- Replacing ppc64 and ppc64le with the power64 macro - Related: Bug 1052545 - Trivial change for ppc64le in nss spec- Update to nss-3.16.1 - Update the iquote patch on account of the rebase - Improve error detection in the %section - Resolves: Bug 1094702 - nss-3.16.1 is available- Update to nss-3.16.0 - Cleanup the copying of the tools man pages - Update the iquote.patch on account of the rebase- Restore requiring nss_softokn_version >= 3.15.5- Update to nss-3.15.5 - Temporarily requiring only nss_softokn_version >= 3.15.4 - Fix location of sharedb files and their manpages - Move cert9.db, key4.db, and pkcs11.txt to the main package - Move nss-sysinit manpages tar archives to the main package - Resolves: Bug 1066877 - nss-3.15.5 is available - Resolves: Bug 1067091 - Move sharedb files to the %files section- Revert previous change that moved some sysinit manpages - Restore nss-sysinit manpages tar archives to %files sysinit - Removing spurious wildcard entry was the only change needed- Add explanatory comments for iquote.patch as was done on f20- Update pem sources to latest from nss-pem upstream - Pick up pem fixes verified on RHEL and applied upstream - Fix a problem where same files in two rpms created rpm conflict - Move some nss-sysinit manpages tar archives to the %files the - All man pages are listed by name so there shouldn't be wildcard inclusion - Add support for ppc64le, Resolves: Bug 1052545- ARM tests pass so remove ARM conditional- Update to nss-3.15.4 (hg tag NSS_3_15_4_RTM) - Resolves: Bug 1049229 - nss-3.15.4 is available - Update pem sources to latest from the interim upstream for pem - Remove no longer needed patches - Update pem/rsawrapr.c patch on account of upstream changes to freebl/softoken - Update iquote.patch on account of upstream changes- Update to nss-3.15.3.1 (hg tag NSS_3_15_3_1_RTM) - Resolves: Bug 1040282 - nss: Mis-issued ANSSI/DCSSI certificate (MFSA 2013-117) - Resolves: Bug 1040192 - nss-3.15.3.1 is available- Bump the release tag- Update to NSS_3_15_3_RTM - Resolves: Bug 1031897 - CVE-2013-5605 CVE-2013-5606 CVE-2013-1741 nss: various flaws - Fix option descriptions for setup-nsssysinit manpage - Fix man page of nss-sysinit wrong path and other flaws - Document email option for certutil manpage - Remove unused patches- Revert one change from last commit to preserve full nss pluggable ecc supprt [1019245]- Use the full sources from upstream - Bug 1019245 - ECDHE in openssl available -> NSS needs too for Firefox/Thunderbird- Update to NSS_3_15_2_RTM - Update iquote.patch on account of modified prototype on cert.h installed by nss-devel- Update pem sources to pick up a patch applied upstream which a faulty merge had missed - The pem module should not require unique file basenames- Update pem sources to the latest from interim upstream- Resolves: rhbz#996639 - Minor bugs in nss man pages - Fix some typos and improve description and see also sections- Cleanup spec file to address most rpmlint errors and warnings - Using double percent symbols to fix macro-in-comment warnings - Ignore unversioned-explicit-provides nss-system-init per spec comments - Ignore invalid-url Source0 as it comes from the git lookaside cache - Ignore invalid-url Source12 as it comes from the git lookaside cache- Add man page for pkcs11.txt configuration file and cert and key databases - Resolves: rhbz#985114 - Provide man pages for the nss configuration files- Fix errors in the man pages - Resolves: rhbz#984106 - Add missing option descriptions to man pages for {cert|cms|crl}util - Resolves: rhbz#982856 - Fix path to script in man page for nss-sysinit- Update to NSS_3_15_1_RTM - Enable the iquote.patch to access newly introduced types- Install man pages for nss-tools and the nss-config and setup-nsssysinit scripts - Resolves: rhbz#606020 - nss security tools lack man pages- Build nss without softoken or util sources in the tree - Resolves: rhbz#689918- Update ssl-cbc-random-iv-by-default.patch- Fix generation of NSS_VMAJOR, NSS_VMINOR, and NSS_VPATCH for nss-config- Update to NSS_3_15_RTM- Fix incorrect path that hid failed test from view - Add ocsp to the test suites to run but ... - Temporarily disable the ocsp stapling tests - Do not treat failed attempts at ssl pkcs11 bypass as fatal errors- Update to NSS_3_15_BETA1 - Update spec file, patches, and helper scripts on account of a shallower source tree- Update expired test certificates (fixed in upstream bug 852781)- Fix incorrect post/postun scripts. Fix broken links in posttrans.- Configure libnssckbi.so to use the alternatives system in order to prepare for a drop in replacement.- Update to NSS_3_14_3_RTM - sync up pem rsawrapr.c with softoken upstream changes for nss-3.14.3 - Resolves: rhbz#908257 - CVE-2013-1620 nss: TLS CBC padding timing attack - Resolves: rhbz#896651 - PEM module trashes private keys if login fails - Resolves: rhbz#909775 - specfile support for AArch64 - Resolves: rhbz#910584 - certutil -a does not produce ASCII output- Allow building nss against older system sqlite- Update to NSS_3_14_2_RTM- Update to NSS_3_14_1_WITH_CKBI_1_93_RTM- Require nspr >= 4.9.4 - Fix changelog invalid dates- Update to NSS_3_14_1_RTM- Bug 879978 - Install the nssck.api header template where mod_revocator can access it - Install nssck.api in /usr/includes/nss3/templates- Bug 879978 - Install the nssck.api header template in a place where mod_revocator can access it - Install nssck.api in /usr/includes/nss3- Bug 870864 - Add support in NSS for Secure Boot- Disable bypass code at build time and return failure on attempts to enable at runtime - Bug 806588 - Disable SSL PKCS #11 bypass at build time- Fix pk11wrap locking which fixes 'fedpkg new-sources' and 'fedpkg update' hangs - Bug 872124 - nss-3.14 breaks fedpkg new-sources - Fix should be considered preliminary since the patch may change upon upstream approval- Add a dummy source file for testing /preventing fedpkg breakage - Helps test the fedpkg new-sources and upload commands for breakage by nss updates - Related to Bug 872124 - nss 3.14 breaks fedpkg new-sources- Fix a previous unwanted merge from f18 - Update the SS_SSL_CBC_RANDOM_IV patch to match new sources while - Keeping the patch disabled while we are still in rawhide and - State in comment that patch is needed for both stable and beta branches - Update .gitignore to download only the new sources- Fix the spec file so sechash.h gets installed - Resolves: rhbz#871882 - missing header: sechash.h in nss 3.14- Update the license to MPLv2.0- Use only -f when removing unwanted headers- Add secmodt.h to the headers installed by nss-devel - nss-devel must install secmodt.h which moved from softoken to pk11wrap with nss-3.14- Update to NSS_3_14_RTM- Update to NSS_3_14_RC1 - update nss-589636.patch to apply to httpdserv - turn off ocsp tests for now - remove no longer needed patches - remove headers shipped by nss-util- Update to NSS_3_13_6_RTM- Rebase pem sources to fedora-hosted upstream to pick up two fixes from rhel-6.3 - Resolves: rhbz#847460 - Fix invalid read and free on invalid cert load - Resolves: rhbz#847462 - PEM module may attempt to free uninitialized pointer - Remove unneeded fix gcc 4.7 c++ issue in secmodt.h that actually undoes the upstream fix- Fix pluggable ecc support- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- Fix checkin comment to prevent unwanted expansions of percents- Resolves: Bug 830410 - Missing Requires %{?_isa} - Use Requires: %{name}%{?_isa} = %{version}-%{release} on tools - Drop zlib requires which rpmlint reports as error E: explicit-lib-dependency zlib - Enable sha224 portion of powerup selftest when running test suites - Require nspr 4.9.1- Resolves: rhbz#833529 - revert unwanted change to nss.pc.in- Resolves: rhbz#833529 - Remove unwanted space from the Libs: line on nss.pc.in- Update to NSS_3_13_5_RTM- Resolves: Bug 812423 - nss_Init leaks memory, fix from RHEL 6.3- Resolves: Bug 805723 - Library needs partial RELRO support added - Patch coreconf/Linux.mk as done on RHEL 6.2- Update to NSS_3_13_4_RTM - Update the nss-pem source archive to the latest version - Remove no longer needed patches - Resolves: Bug 806043 - use pem files interchangeably in a single process - Resolves: Bug 806051 - PEM various flaws detected by Coverity - Resolves: Bug 806058 - PEM pem_CreateObject leaks memory given a non-existing file name- Resolves: Bug 805723 - Library needs partial RELRO support added- Cleanup of the spec file - Add references to the upstream bugs - Fix typo in Summary for sysinit- Pick up fixes from RHEL - Resolves: rhbz#800674 - Unable to contact LDAP Server during winsync - Resolves: rhbz#800682 - Qpid AMQP daemon fails to load after nss update - Resolves: rhbz#800676 - NSS workaround for freebl bug that causes openswan to drop connections- Update to NSS_3_13_3_RTM- fix issue with gcc 4.7 in secmodt.h and C++11 user-defined literals- Resolves: Bug 784672 - nss should protect against being called before nss_Init- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- Deactivate a patch currently meant for stable branches only- Resolves: Bug 770682 - nss update breaks pidgin-sipe connectivity - NSS_SSL_CBC_RANDOM_IV set to 0 by default and changed to 1 on user request- Revert to using current nss_softokn_version - Patch to deal with lack of sha224 is no longer needed- Resolves: Bug 754771 - [PEM] an unregistered callback causes a SIGSEGV- Resolves: Bug 750376 - nss 3.13 breaks sssd TLS - Fix how pem is built so that nss-3.13.x works with nss-softokn-3.12.y - Only patch blapitest for the lack of sha224 on system freebl - Completed the patch to make pem link against system freebl- Removed unwanted /usr/include/nss3 in front of the normal cflags include path - Removed unnecessary patch dealing with CERTDB_TERMINAL_RECORD, it's visible- Statically link the pem module against system freebl found in buildroot - Disabling sha224-related powerup selftest until we update softokn - Disable sha224 and pss tests which nss-softokn 3.12.x doesn't support- Rebuild with nss-softokn from 3.12 in the buildroot - Allows the pem module to statically link against 3.12.x freebl - Required for using nss-3.13.x with nss-softokn-3.12.y for a merge inrto rhel git repo - Build will be temprarily placed on buildroot override but not pushed in bodhi- Fix broken dependencies by updating the nss-util and nss-softokn versions- Update to NSS_3_13_1_RTM - Update builtin certs to those from NSSCKBI_1_88_RTM- Update to NSS_3_13_RTM- Update to NSS_3_13_RC0- Fix attempt to free initilized pointer (#717338) - Fix leak on pem_CreateObject when given non-existing file name (#734760) - Fix pem_Initialize to return CKR_CANT_LOCK on multi-treaded calls (#736410)- Update builtins certs to those from NSSCKBI_1_87_RTM- Update to NSS_3_12_11_RTM- Indicate the provenance of stripped source tarball (#688015)- Provide virtual -static package to meet guidelines (#609612).- Enable pluggable ecc support (#712556) - Disable the nssdb write-access-on-read-only-dir tests when user is root (#646045)- make the testsuite non fatal on arm arches- Fix crmf hard-coded maximum size for wrapped private keys (#703656)- Update to NSS_3_12_10_RTM- Update to NSS_3_12_10_BETA1- Implement PEM logging using NSPR's own (#695011)- Update to NSS_3.12.9_WITH_CKBI_1_82_RTM- Short-term fix for ssl test suites hangs on ipv6 type connections (#539183)- Add a missing requires for pkcs11-devel (#675196)- Run the test suites in the check section (#677809)- Fix cms headers to not use c++ reserved words (#676036) - Reenabling Bug 499444 patches - Fix to swap internal key slot on fips mode switches- Revert patches for 499444 until all c++ reserved words are found and extirpated- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- Fix cms header to not use c++ reserved word (#676036) - Reenable patches for bug 499444- Revert patches for 499444 as they use a C++ reserved word and cause compilation of Firefox to fail- Fix the earlier infinite recursion patch (#499444) - Remove a header that now nss-softokn-freebl-devel ships- Fix infinite recursion when encoding NSS enveloped/digested data (#499444)- Update the cacert trust patch per upstream review requests (#633043)- Fix to honor the user's cert trust preferences (#633043) - Remove obsoleted patch- Update to 3.12.9- Rebuilt according to fedora pre-release package naming guidelines- Update to NSS_3_12_9_BETA2 - Fix libpnsspem crash when cacert dir contains other directories (#642433)- Update to NSS_3_12_9_BETA1- Update pem source tar with fixes for 614532 and 596674 - Remove no longer needed patches- Update PayPalEE.cert test certificate which had expired- Tell rpm not to verify md5, size, and modtime of configurations file- Fix certificates trust order (#643134) - Apply nss-sysinit-userdb-first.patch last- Move triggerpostun -n nss-sysinit script ahead of the other ones (#639248)- Fix invalid %postun scriptlet (#639248)- Replace posttrans sysinit scriptlet with a triggerpostun one (#636787) - Fix and cleanup the setup-nsssysinit.sh script (#636792, #636801)- Add posttrans scriptlet (#636787)- Update to 3.12.8 - Prevent disabling of nss-sysinit on package upgrade (#636787) - Create pkcs11.txt with correct permissions regardless of umask (#636792) - Setup-nsssysinit.sh reports whether nss-sysinit is turned on or off (#636801) - Added provides pkcs11-devel-static to comply with packaging guidelines (#609612)- NSS 3.12.8 RC0- Fix nss-util_version and nss_softokn_version required to be 3.12.7.99.3- NSS 3.12.8 Beta3 - Fix unclosed comment in renegotiate-transitional.patch- Change BuildRequries to available version of nss-util-devel- Define NSS_USE_SYSTEM_SQLITE and remove unneeded patch - Add comments regarding an unversioned provides which triggers rpmlint warning - Build requires nss-softokn-devel >= 3.12.7- Update to 3.12.7- Apply the patches to fix rhbz#614532- Removed pem sourecs as they are in the cache- Add support for PKCS#8 encoded PEM RSA private key files (#614532)- Fix nsssysinit to return userdb ahead of systemdb (#603313)- Require and BuildRequire >= the listed version not =- Require nss-softoken 3.12.6- Fix SIGSEGV within CreateObject (#596674)- Update pem source tar to pick up the following bug fixes: - PEM - Allow collect objects to search through all objects - PEM - Make CopyObject return a new shallow copy - PEM - Fix memory leak in pem_mdCryptoOperationRSAPriv- Update the test cert in the setup phase- Add sed to sysinit requires as setup-nsssysinit.sh requires it (#576071) - Update PayPalEE test cert with unexpired one (#580207)- Fix ns.spec to not require nss-softokn (#575001)- rebuilt with all tests enabled- Using SSL_RENEGOTIATE_TRANSITIONAL as default while on transition period - Disabling ssl tests suites until bug 539183 is resolved- Update to 3.12.6 - Reactivate all tests - Patch tools to validate command line options arguments- Fix curl related regression and general patch code clean up- retagging- Fix SIGSEGV on call of NSS_Initialize (#553638)- New version of patch to allow root to modify ystem database (#547860)- Temporarily disabling the ssl tests- Fix nsssysinit to allow root to modify the nss system database (#547860)- Fix an error introduced when adapting the patch for rhbz #546211- Remove left over trace statements from nsssysinit patching- Fix a misconstructed patch- Fix nsssysinit to enable apps to use system cert store, patch contributed by David Woodhouse (#546221) - Fix spec so sysinit requires coreutils for post install scriplet (#547067) - Fix segmentation fault when listing keys or certs in the database, patch contributed by Kamil Dudka (#540387)- Fix nsssysinit to set the default flags on the crypto module (#545779) - Remove redundant header from the pem module- Remove unneeded patch- Retagging to include missing patch- Update to 3.12.5 - Patch to allow ssl/tls clients to interoperate with servers that require renogiation- Retagging- Require nss-softoken of same architecture as nss (#527867) - Merge setup-nsssysinit.sh improvements from F-12 (#527051)- User no longer prompted for a password when listing keys an empty system db (#527048) - Fix setup-nsssysinit to handle more general formats (#527051)- Fix syntax error in setup-nsssysinit.sh- Fix sysinit to be under mozilla/security/nss/lib- Add nss-sysinit activation/deactivation script- Install blank databases and configuration file for system shared database - nsssysinit queries system for fips mode before relying on environment variable- Restoring nssutil and -rpath-link to nss-config for now - 522477- Add the nss-sysinit subpackage- Installing shared libraries to %{_libdir}- Retagging to pick up new sources- Update pem enabling source tar with latest fixes (509705, 51209)- PEM module implements memory management for internal objects - 509705 - PEM module doesn't crash when processing malformed key files - 512019- Remove symbolic links to shared libraries from devel - 521155 - No rpath-link in nss-softokn-config- Update to 3.12.4- Fix FORTIFY_SOURCE buffer overflows in test suite on ppc and ppc64 - bug 519766 - Fixed requires and buildrequires as per recommendations in spec file review- Restoring patches 2 and 7 as we still compile all sources - Applying the nss-nolocalsql.patch solves nss-tools sqlite dependency problems- restore require sqlite- Don't require sqlite for nss- Ensure versions in the requires match those used when creating nss.pc- Remove nss-prelink.conf as signed all shared libraries moved to nss-softokn - Add a temprary hack to nss.pc.in to unblock builds- caolan's nss.pc patch- Bump the release number for a chained build of nss-util, nss-softokn and nss- Fix nss-config not to include nssutil - Add BuildRequires on nss-softokn and nss-util since build also runs the test suite- disabling all tests while we investigate a buffer overflow bug- disabling some tests while we investigate a buffer overflow bug - 519766- remove patches that are now in nss-softokn and - remove spurious exec-permissions for nss.pc per rpmlint - single requires line in nss.pc.in- Fix BuildRequires: nss-softokn-devel release number- fix nss.pc.in to have one single requires line- cleanups for softokn- remove the softokn subpackages- don install the nss-util pkgconfig bits- remove from -devel the 3 headers that ship in nss-util-devel- kill off the nss-util nss-util-devel subpackages- split off nss-softokn and nss-util as subpackages with their own rpms - first phase of splitting nss-softokn and nss-util as their own packages- must install libnssutil3.since nss-util is untagged at the moment - preserve time stamps when installing various files- dont install libnssutil3.so since its now in nss-util- Fix spec file problems uncovered by Fedora_12_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild- removed two patch files which are no longer needed and fixed previous change log number- updated pem module incorporates various patches - fix off-by-one error when computing size to reduce memory leak. (483855) - fix data type to work on x86_64 systems. (429175) - fix various memory leaks and free internal objects on module unload. (501080) - fix to not clone internal objects in collect_objects(). (501118) - fix to not bypass initialization if module arguments are omitted. (501058) - fix numerous gcc warnings. (500815) - fix to support arbitrarily long password while loading a private key. (500180) - fix memory leak in make_key and memory leaks and return values in pem_mdSession_Login (501191)- add patch for bug 502133 upstream bug 496997- rebuild with higher release number for upgrade sanity- updated to NSS_3_12_4_FIPS1_WITH_CKBI_1_75- re-enable test suite - add patch for upstream bug 488646 and add newer paypal certs in order to make the test suite pass- add conflicts info in order to fix bug 499436- ship .chk files instead of running shlibsign at install time - include .chk file in softokn-freebl subpackage - add patch for upstream nss bug 488350- Update to NSS 3.12.3- temporarily disable the test suite because of bug 494266- fix softokn-freebl dependency for multilib (bug 494122)- introduce separate nss-softokn-freebl package- disable execstack when building freebl- add upstream patch to fix bug 483855- build nspr-less freebl library- Update to NSS_3_12_3_BETA4- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild- update to NSS_3_12_2_RC1 - use system zlib- add sparc64 to the list of 64 bit arches- bug 456847, move pkgconfig requirement to devel package- Update to NSS_3_12_1_RC2- NSS 3.12.1 RC1- fix bug bug 429175 in libpem module- bug 456847, add Requires: pkgconfig- nss package should own /etc/prelink.conf.d folder, rhbz#452062 - use upstream patch to fix test suite abort- Update to NSS_3_12_RC4- Update to NSS_3_12_RC2- Zapping old Obsoletes/Provides. No longer needed, causes multilib headache.- Update to NSS_3_12_BETA3- NSS 3.12 Beta 2 - Use /usr/lib{64} as devel libdir, create symbolic links.- Apply upstream patch for bug 417664, enable test suite on pcc.- Support concurrent runs of the test suite on a single build host.- disable test suite on ppc- disable test suite on ppc64- Build against gcc 4.3.0, use workaround for bug 432146 - Run the test suite after the build and abort on failures.* NSS 3.12 Beta 1- move .so files to /lib- NSS 3.12 alpha 2b- upstream patches to avoid calling netstat for random data- NSS 3.12 alpha 2- Add /etc/prelink.conf.d/nss-prelink.conf in order to blacklist our signed libraries and protect them from modification.- Fix off-by-one error in the PEM module- fix a C++ mode compilation error- Add 3.12 ckfw and libnsspem- Updated license tag- Ensure the workaround for mozilla bug 51429 really get's built.- Better approach to ship freebl/softokn based on 3.11.5 - Remove link time dependency on softokn- Fix unowned directories, rhbz#233890- Update to 3.11.7, but freebl/softokn remain at 3.11.5. - Use a workaround to avoid mozilla bug 51429.- Fix rhbz#230545, failure to enable FIPS mode - Fix rhbz#220542, make NSS more tolerant of resets when in the middle of prompting for a user password.- Update to 3.11.5 - This update fixes two security vulnerabilities with SSL 2 - Do not use -rpath link option - Added several unsupported tools to tools package- disable ECC, cleanout dead code- Update to 3.11.4- Revert the attempt to require latest NSPR, as it is not yet available in the build infrastructure.- Update to 3.11.3- Add /etc/pki/nssdb- rebuild- Update to 3.11.2 - Enable executable bit on shared libs, also fixes debug info.- Enable Elliptic Curve Cryptography (ECC)- Update to 3.11.1 - Include upstream patch to limit curves- add --noexecstack when compiling assembler on x86_64- bump again for double-long bug on ppc(64)- rebuilt for new gcc4.1 snapshot and glibc changes- rebuild- Update file list for the devel packages- Update to 3.11- Add patch to allow building on ppc* - Update the pkgconfig file to Require nspr- Initial import into Fedora Core, based on a CVS snapshot of the NSS_3_11_RTM tag - Fix up the pkcs11-devel subpackage to contain the proper headers - Build with RPM_OPT_FLAGS - No need to have rpath of /usr/lib in the pc file- Adressed review comments by Wan-Teh Chang, Bob Relyea, Christopher Aillon.- Initial build3.79.0-11.el83.79.0-11.el8.build-id0c0147f0fb3a13bda25dbd81d0d50bfc0cdecdaflibnssutil3.sonss-utilCOPYING/usr/lib//usr/lib/.build-id//usr/lib/.build-id/0c//usr/lib64//usr/share/licenses//usr/share/licenses/nss-util/-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -fexceptions -fstack-protector-strong -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1 -fasynchronous-unwind-tables -fstack-clash-protectioncpioxz2aarch64-redhat-linux-gnudirectoryELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=0c0147f0fb3a13bda25dbd81d0d50bfc0cdecdaf, strippedASCII textPPPPPPPPP P P P P PPPPRR RRRRRRRRRutf-8181dfcea0dd6829668908821813ba7f390b30905c76297e93b78facc9a231b24?@7zXZ !#,;] b2u jӫ`(y/&㍭;=ۄʋ=W?2Ӱiě>#*xWR>ӯV"juCq8n*FΛyj߹9"~ ({uT br~/ fq klXޡJJ <x:/Yׂ"bקng~fW:t0 Xd|z]9,~gD/, _IRaD؋Jn4D,-2FCW3 SbDyC1ѣ"g!d+ıcWN1wCe_"k<e*8 mP?G+ERcQ̭il ?hOᔓ7eI4k:Wj;e3-8bAԭsE>df $Vcꥶd}fF;VX#NCjm3SCy3N>/K:wpv#Lv Ӷ!Bi?h)7t,'A` m8/+'8Ղg9miPϪ.-ɮ3#}nK]14ar}S@Rn Ur <5nq`/Qrp{8>5Na*#/Bv]VV\_3,q@g`^n 'nђj_j> d0j^.T.y_W\I|ewsSH,Xol)u$A$ ]l%=6Lb2єԘå ix@6#?P||+?jI0 nr[X1~9{yߋt;(J4ÌBjЈ_\{5r,Jy`v*.v2.}:b|\/ƾڧ'2r ]*>:4ԶC0f; \ BD[Å'Ss).󪓲(OCFw3ODd㪐۽"$* ݒG \_81ʋ- rtd^oĈ~ * !h/8Ke+|@ Xy+z|c̊ZCV377koCH]J+9i"Z0msh戠)5Z]W>`` &ّf N ihyKXgL=nݒ.'vgcx> ʇ}{C&܇!Q]le&fiP](5d@S~5mZ+(rE&釡1$,'z*3ԣd}oy"^#3n'.z- [Zuo9éB\ɱ{Vc'[ hOVWt͚&=#K[쉏}+lZ]//LSӞ>q͚n >d{sdށw}v/ Dc8Yg}J^ZVF^.j2IE_9E I۲J >9#JUsd}hyw'z$X"$9Jk`4Tչ{NhhnR'5Ai Ē+_Z:CrSNA͇ڎWǎM[pBDm| 5d9+NnπpL6UvƢ &:^;%j ;J!K4`_"yaLW_' ˖PW|sKɂrPhc|= zJ,pH]^ x2 bAnpF#af泡YVK XaZ+w)dze\,ҮzgƷ('O,oŸ,+|ut/K! bw+xo2_7,í=w2DfE|E0h !EO^(p3Z#V'VyQu wh}E|] wr\_/a4LvBan1ѯʭ2ԏ`Yn@B~wx;7rӓTڰ7m u/9@؞rZ_Ȟa|Rr T@NiC2lzU{i?cjFXkI+N! D܅~ò Sz^(d4>GNxdZbۃ½W`g+/09T#}L/@֏`.Weu%)>^ k:*DOŧ sUy?3UD5ã2>~( #V%A|d4u2֟r@0eTAjYroD;0g1ݑ†t-<<35pV9.v=WecRÖPR-rp2zڔ4Q4$x>EC=SpRn T-z2E L>|2 RI_f5\{)]jBY֦o`Sz2a/ Cq+edauVwް~qճm#v}f"l x|w@=[=8ZSFT1/lݍ˶#a}B VVI3Dž1處MyS_xIHy07 W8( 7Ym.^e-r>|F]ajyüPčC>E!4[̍#bhorVj \m8j}AWꑀ"n@=P3gF]&͂9` Xu+w4-`Xml)| *%EmLY?t3"&VQ'R5lGeCF[5Yz wnqK1d:+."zβ5=r/ػ؆2ΠD&płxwEXMc!BP<`TBt*$Mr210 Jy '-ʪΦ\ղ0ŠCm> Fg;9"/@_mk(JAk$Uo>vGi]C"12zm/\Ǎ^`7B?(AG|ϋQĽZ־@pqTz|jykcwkgiј^hQ*Md=r6R~ʮ7'H횬h־T+V*Ej|Fݻc.imkRW܈|v084{:SK}dd+jJcZ;z{[B<[OPIctMji Y-F"Y! dK[U\`'Vb,ïot h )r6һsx?MXzrlY`EF>ӓd!MADF`ڷpW;]|&ȹ@ a$թ^/hFDEw// 1۠NMMnK0b-Eֹԟ:X_L:t]k4]LуX*DWpSxԐGLG_)f.?z^rɯ78tGa;RظyqN!f} [:C9貑4S+dDP %dvJCɮ 1@bȤi#eg:YqW^Rwg{zxn5@Vyt~+gsKIҿ}ig4[\eKZwod~ ޓ$=OrLpFqr`iW0|VIbCT9醢/"NʉZzؠ vzC?F[?Ioz[}s>w},W4(,OJc*8b(4J P[e?ZJ w(d2ObXXz#bXVtwb(Φ i͡~WBKiIo:;#f`HXick?PA]+dЂ -H]{< kԝhUp64R\ @ax }}P#v]j 8} 6Ư{htr DkuB(x|>"(CLt2)Edc&7]X/E WO:kQV%XËmvHQZQL|,2J Bj"}PUT Gq"tn26)pnPWo|6j+Veh5*O35AJ;A&jH>zEl{ѾSjџU{v!| ~THq@(ÎZ,h`svAVElfi0|,6l*Z(Nk }/Xa(2;]H)*v䠏=8T>zޜR~uY-8>pGs>&v 6'y Z)'*V7£h M1\ b[6S' ؀oSpu6  7i a]BwTq Ftl{'3&/ A7ieEɵI9E$ˈ\'bv `veb<4LU0K%p<3k\셹4mU6,_Rvc?1 5C`eL)LCgQzgҽTyO}4fPHī,rR6r2"e,P ,*a(hQtOcUhxBk ` 5w(DskGS'GH!qlY& xZȪc0{׫-0 O:"2I vƺe[Hɫ6S $8u1H ɏz omGĞs-j6?; 4z{o>FE3GN(xw϶'} iZIya(3iu?'>N$U TDJv ӂ%qGN#,?P1c~hQo.*&h&Ą'3[b'',#얀l6ucŞm PRJ["f'"S~i,O*J6Ez1&[N!Ob{m5%X\Ϡ-|}'BH: J()aw4.N|27)oL4Ϧz0䞐0e+ln>wPW.M"aaf2'H%6t.RRyhbGfmWgxTXSs\N:}[u0ՉAJeXgx#3:vUso'aJu >wkek rSJ.ֳoS5؝FH|Z)Pq!rD-{qYkd1ݣ !>u އ/Ȫ["r8!`E-ijeW\q$E:ě8ZpqhHΑH{PtrTKUfgV鍁GJs4uR}c5__^%Qŷ@䋸)3PE(0^. e>ۯZ}_5w)Mq)PvORޓnS]ac)f,$`SԄ_]%OV:QHNAԮe*ްe2դY ԩ$YJqW pٌ~MK[w$۰";evBFWCwaTvW 6vj-}V,仯yaUBp>?"z9/k.r"tOαNO אqzI` c?zD=6Jq9' ^iшVq˜-  ͍OwXc1% ,m/o0Wb گ@dk]>v1H'`[pjNҒh"$K1s(>? # M(jjM]LB=zb1`Fc~gt<(DP>?mD|Q(jqJZ>9+8qrV$G" GxXiuw؇9LSd/q O}ӎ@pޘFj#,iAGBRGa\`WCExrI^K$̙_Yc' v1z LuLm+ -NпV,:8:l5іOR ta7Gat` @g_ ϯo';KCG8툺'I7] qܚ}'"2{ ^*=5d?L$Uj8c"a2u ShJ_}n6aҀ\ #Ne+щ[\ T"=ST?(:(Y?#`z|&ڸ'-LŦ>`y~UǩTq0flOL%N!6rRZ@=pM,ͼ{'Wm lR@fb:{gsސ5l:*&!cA8p^$ᄮ=Ƴ#ANj.~<V4ΦYha[G IЈh:L<hCBnpv_11HRhX?i7O"),F xʃlʿ(R طRll$O/r;@C.3(Fu*ꡗl|:G;sMI3;ԗ6Q"ں TtstM0f*ca.)݇6QZr&cUvgX6t)X\Q?lGsZ^/JZ];6Z`:P{VQ[=czIB^ Ǖ%PLڟ>j5[M{S~gzh#xgΞ͖OwBk!U˻^fv^̾N: r%PKQ;6 'X@B ep+#3oxA2trN]@E55ݩ-fյtP5c➷[3XkDkArޮ  ZCQ=1L!-azngɥj2&˕legTӛ{&Rr$>bkW0cbž){kG&TJl^H@ 59ΕL(3'rY/8_q| Ǵ-R(3z, J7d_֪،7rDT~7V.0)n8, 9Ti[L  )A?ɒp:PJ ("Vĺ=HcKUӪu1$|NTٷn)D]ѥ䡒 swlJ̈JJNMUXB>]Bl@[f|@mt}s8tZ#E.jl $C32kbRcCZxߠkk) C 4 HPrukDiq%vY\[ 5˞@Fz)֖v,ŪGǵ~V#\>pIzyxlܻpU,Qv+oh}14҃院U? U%Cv1G"TefKKS9OQ. Vaj[CD6Ϩ6*NJ/ fdENx,Hk'U]*O^K0e*@Td?{Ǐ] tATiX[&y$`D >vkbI''JcrOS_bT v7ooRO+CC43Z>"n%SG 9FnXC ]ܷh>ExzY~GvQMFzBˁs{)TV^ ou-2-#RhSN  H!AVin m>f <?-0(6﷚ܹ{&MU.0zZߺL2[R]::?6JFocz/?AGvݳC)Eg$ƾF=7TaD@sg)&4i;Æ2| m@'/`rEbq6 k3Z:Y 1;5‰NHDE$4.~pgxϣE^mMP"'â%X6 G/amsZa!#>:$,ʋw!$MaESaL 3Eib=96 ^#Avu-ռ/-|2<0'TsaN*Xs`~{W1dUa:ZT POe=<ܢ=EЕ+f5&3Z#>eEyMFӵ Cdb1]Ѽxk2͖iďvI+C=S E撖^M esD--8eP;L2FPHi`8ꈧ? bI ԍBY UUn>0/R2{ k&}ox 4h|CEH d0P Aau_y% ?2d_Nsk=j,h#%ٹ4]al60Rpd ~RƦ8헔p}.v̊&ߊb{S:18J>:sw"6 W o]Y^έ4H?G.U۫sa_*;B91*{3npFbl*% _*s6TSʇSS c;Y2Mt3 .oPh>U( |wK!  h;=Ae 0? 'NUa@L5/#4t|C犢" phϨV(Rra<*"'C?8@}!>n5,׆5Uoů], tWe/< ]?k<ݭzp_Be:K=F30+Bu֡ɪ{bV0{JC1(anGJҒ SHH qzE^&0mgkmj˛#b7 5C| HeFFW7Z;ASc>20eBݰ+!1L0fxM.r3AC tw2>l-k~ P*V$4o5Ny츌sۮnᗡx u{/3wޟF639˶D^{%P? r|IB`I}: ڪ؁¡Q7"\h@t 5:А.A濩vLBķ+X`G3oityO n)B]d Ep KGx1[)j߸Z'5$176,mu@Fl^ʇ=Eb|Ɗ47PX6{aks=j_w_58Ma}ܤF}:b1f<-_yIjM`3xtE܊U(;F_l.A~uch5k~ FQ[ʿLx+?/rSty̖$DFKk99Ըwsjρ. k$/gX[5d!^x-vW "aț|I)#W\Nn7zO&DxXq:r/V2:m6O$Lm97}Hڻ#uXR4cl , pY bvB@eH[*٭eyfػ6 y7C6r)k_Iwpfc*fn~&Iݾ67aquUJ1c?2=ң\",hz:RfKO NMn#1%!0BO_M\dQNgt椋`j6Ew[tYвN\@)!S Z{ږH#mDoD:%c/d$Nw4u6B_BRrvG{=v#ugUm<\g"Z!X-kjE(K|%L=?Q[ '֨\n7ܙgzعҵ%7=Mm)7y謺@txO yOAnY#>JjHYiG]Bcվ2Jt&|)GnuJ4A pI## Rl9rU !nϱ)mSWq0?3{Wi@E,XЪKs(. (?Й ddMSmPD@Dcv#\<>ʳťFáNFF2 "D$E^iK_)y<)Ktgp]0+1*IA9|}^B;83eh\~w3_kM$' A(រ;oI@_(X9l0] oXK5v lT euKܸC> p{}}3'ęFɥho"e憵X*Z|iO ( A1BJPDK#`oF =,4-/ mN  |t~k1{=e-/ؒ[8eqUO7F*~IN)p!pfV/FɃM> "E}P^¬`ch/F f`L o>w]Y3|*];QSE@?'8ᙲ}7H?}bӵn}1@4kR /-]u8Ҳw,ƗZs+*1#HbtZ^k-t4Xnۍ̛2a@ K%~#& p`";X|gi>tÝKKDͲ7ZpgێECvblrݥZ1ۀ/A 3% MH@QúԤt_^PƓ,LY{oV8z$e9q% xӻ84͟,88XTM$X{Z=YZ 5%J^\01e4d-H SYeH-6X`{~GTFfEdi%ư>G/ Հ74/`咦0ޝCO/}N;1) cPPt?GE#_#ѷccOԈyJ/玛G6ٚ'&Cjex򁇋M @5 AWWß,FU!h3q'B`> BE ,:iB\{>ȺhߜwP$`coOimõoEEg`B"@ GHVC{ɟap>EÏB3u0!bL.e0 "a rrEq2K!֛$VPk7f1d5Nܦ4߸p=oQE#XۯQğ ~J1k=:>cp=^rW:cvPW~mu3d!T̞E6z1A05 S-2>d ӟ]JX%22WLQ/BV!9ʚX\U\ .'/"r6%*m.eoiotz'q0 '̔)%σLXPʼ>6|~ƓA\ G`YHf";Uq[x(pv(n*g$Hxw$LSDߡƘj$٦ј{uׁbJKNhB)OH"P-!=W! gE.03ۮDIf}mvhLW  "opRu;;#k2#'IHo8 RFFόFqaP)'3M[z Jk[S({F[vBn9B2 P0V Xaxt d!"5 H[g%ľYpÜ)QU4QX 9ONMx1,K-$Bs/YaR(Q`H4l87ݚȞj)eWWdH9c14 {47/K=%X6miP{C" ƝgDXm͠X/ە|'IJM͞"KrGۙXhUE-r*S#Uö_Nb6T S%r:,˿D:RRGE,knXe| $Ga"`[XG,(he%eu~ÓYyb q@! ׬ 1׽bj7=viCI~Pb=\Jd/"=&^E@^=^֊O׏@ 1Be^=#I(n/s$"`>髽T?xfU8`;% MÛ$D p9B=ړPڪsL-| '|m T.Po$*Yk~CUQ3R~U#XV[i4Utt[ϼr֎|> "$ n՗qf0Q (4 4(-T!J7JOFrVs|pٴf\A u. >kG*ro%^_볇B> H\Pȣ["(y R/B QBMFPwݛJ .>RA\b@Fc70p؂MYK2ДiKtm ʃ;sLLEcy P%VA>Yɾ#-Mkdɟ{ʩ;oBfnq;ԑpDzv.xBue3 ^B BKy4ɀgvS``T}]@h]fbs_3ݯ˷%@-U0YU/e $%j1Rk =Yh6bFHVNP_ʢE\^{u:mštOJ ?l+Ё0n* [y`qa/@gWtN??UvVE.g\m}YTqC$Nj)2!~VfM\r_ɖ-ŸiB~&{m%k!7O7byE%Ԇy4ܟg;jnV""),gRLJ'ub'o|iP`$i [i.RQ +ɱO&i.:nLwů*7Tubޭ ߧ]u2^|n#ٸ#!PLHÇÔ@^S}r6\'( `d iLڼuS'U#3!)+ oK-3Nɷ^vJ5ŰK F,ޭU$R\#3klңU\}({vN^lQBI $?I'.i1/@\@UWnaו;-sb;~%#&YM0hfؓFEГqH? " fE:UT{s4 6?,[ dJk\m= 'i݀ כFWQ~cq <&x!uד>+NycwoOmIx@oJ1ҭk^V:i (4ӌ$=-5&j}6Vu"m7XO5<4e@*q(.6r#u gUk$"H.h>Gxx^2cl3O{!OA1H8[5؄K-aN{,gdJ(hggl,}`#Ycѝǔj F^=Dnhb";uukXSd)f`X`~OhºWsWI WGp|X O Jn?}:Ctn~;VY/ö">5)צSa($ NXTM1?f?Z(%dn_ZrϼUk3BK  ~Ѣ 55IǐӓxΆDm m-pF gm OwAtzV*V u%*@Gn@ jg%gVpXNS ( zηdRF{"نdexɝn3LYHwB@cUvrQ:gh]| ohf:es˴A2:TݕrlZG@)ЬjidEqo4yt-C3]Ya7N*\u*Pடt1wټtJ!KfQ^4ヤ(pRAG!bI'8ѴcEXSA2[-rJtȉ$yՑp@|g%z8c2!ii̒~NJa0@*B&\ښYwS*ss&"oZʷA3g[ⶬP_wؑjW떃\*r)QS'{o!4Qo5p5W ; P9 l2M}89P7`".Ԯ6O]9&~w a7Ruɉؼ3|MA^r7)ŋ&İ/ٲgi=du\i?sMa%[l `Mo+!5tEl8)1aꝎ96};*t_ْI+M@.SyH&v(b-DL^"o;OAvm!"m߉RǫU-׭)C1ZX+MD(6\PlYo0)ng$. ~^jMKݕGtyE;٠~\ v^/[aۋ*<zD䵊mjQhz|4׳2u{8_-D#.M#鐝<!RIyѠ wLgDB_ 0x#>V'7<7=xtBjp@E!LL3o.bu.~zm[rFb>6WLF GEȣV^F,Ҥ+8ۺ3C UsE,B s;=$ڲ /%iobm 7d+ա[FIH)1'yLv2 .)Wׅ&+U&H `nQ fV>MSm.k :fKeUc|ʖXnڃzgE~PB8=;..܆7GRȚB?NW8T4.yJ b>qegRp0JwKY!y2nB1|1m?`] ݍ5w[ ~ɚe]嶮=${؇}_vn KR׶)Aa/o|Jږ?*uU}ZshP;|Mqq@)k rU6@dEOP#p;w F,KB.#}MBbD_lǠ/z@/z:(mܬlC'TO=R_S(ncO@|MgUQ'ζ`e<x+AX"ɬgi]Z.RSIݻi*Br?^itXELU9dH*+H YoJn ]ER;.vy (rX: GQE5gMw>#sD|i tSXD)oOiQVi&F0akh8B6v3U^8}SMHߋdy Md\"q.4* 6([n Eॣw}Stp幧z*SignzݵN_p%Ǫ>dO-_,:QJ!>P0@Ei#.X5 (` kF y`j,ۺ.@3#kS=[Qtr czkPq, Dpw(apnGeŭv- JE"8K`a\!L!v{yFC۞EUtx<KHXoq4b*I`A~uU!a0ԓ h/|"[d?VDg XH'`  Wה'ZNuf 3d̰ ʘDIۡ {LOlQʴ&VC~17T (2 ,"w^Lqil)3J,$a 5OYdG*ٍk%KG2⹘LOabaZ&##q-e4VX­=Ѷ^Y^OKK؎]p'l}7{$769f#vtR"$F#q Rѕg36|C%@ -N/^?,UYE,>Tdcou[0_( VWyM~)!-053Eɲ A1&}X$8^a!Ax㕾boHj/(.b ۍ'W%|&9HF3r5zf8aԊے4Ȩ&+8~Cz V%]cĨ|tً5h3AQ !:$WהBnImXP &~u#Eg$Q'p59(v)اM"RH:gWsln2Nox>$zQ-`Z) z7M,Ut5c`n,Hp*9(КH[$p6Y5o6 O{!ߠWu{͡lF*Kc>]\{:[F5GDbZ&P̽E:la/e,%oؖ@Q`D.* Tw$q&g2i;#x geGm~_[UN̵=N7nWZ# `MAp[0fi;AIP!Ǹj{%x]>\LvD[ Ln:SVC7 Jfd$+>xe;ImI !-yRɀ '8>ߝS[aiz`~1 3ͳ@BO:]cf}}+ět/PP"w2 ..՝iRZAuǸQ} "t6. G/d$Oyi0~dn\ _v $\[:No4V naJJ&Itg^ P+V@J!*ݶɚѭѬ"rs?T%M g$9BӼpkfS?żGmD6蛛VjOjoլkŝ+X¢D_wX[h'$o |kQ**ѯ:]᠘%x50_WMg!)į {BE)%U8|c(kU=̺0K h1p -L`NMWΩzNK}^Nbs0vFAMvЇfYԝr%%U`V̙Uz*KnGK6|2F_J׻\~^hLsϒo+@}Ml#NL5 U{-q@ɂI1…m:r['6yyoE8B6 $ V9xHƧCm#`h^bNjs 27( -̲F}taS(`1o,Ef\$M&1xj,%u9nGYj)HܵV6oXUl~pҁ8"oHvQ= Êy[\u_1i }εCS/=F[MfMDQDJkCK.zFEa7(D7:ԘִAoJ*J܏pAhXnZ', ? "5y*KXRDvL&+;%|`cT%l#N\ jDAxJ/\AGSŏt,('m659`tN8ZQ2;A<ݦJ]ݔjb!O,}JZcۺs5I_@nحCv熨,ϽL$)gVhl4aӡ5`^'E nLsȫe7ǝlyȊP;_ jA ŗZ^gp÷gl,ڽ2bδfc2kr8U+q`Zavyxp5+eLMQ4õk9ndTnV0I_YioH2Im] db2ŬG紇 ,%:Đ95k%*,UVoٙ 7bV%s٫qs nDκ;D\8ydZ^y+e:K6&tGɱTjĖd V!oxT8T.9R-o}Iyˁ,+12F)?RUy%y( Euu_VGu#k墀'#Aemlk|C+*ic5#BhK)M%vF:T2`o78{1p-w+cS '\g* R6x3 <(?!ۏ%UY~Ȉ޻LP*-jJgd.\ E'uR ]2R 4w>@Os+,LmkmmSE]g}TY(w)-NV̮Q{v`Sج.0i'^pnm6#3-㾰08MW;fֆ `CgI*d2KoWc|ű9{앐B0%exj:,EI1Dtp9 nPbqPde4+o_e!jlsOzCQ+u9sN&XTc,0(.M`P`K͗^Rm$"Pۘj*I1$_U$|VSk25s#5co^C9Ml7VA\K#P뺐N4mͦʏ@tq*TyW m&,X߂/ܓZc]XJ!@65E}Ԋmh/8-ހ$="Nyp*0`rj&K[mNMlxohlۊIڪՎJ,&t]mv0qA~ 㞺熙((OӅ;G |5)6z9+9%=Rk#6 /Zqߜ)z?V.PpU50e W<#5zs|L7 QZ3ihðg`^KX?aiʿdR0۩Q&08  KX$N$PMVST\ʜ3<;Fė;p'm0ܽ$'y{:䷟Q֎v:Wy/+kN}aINeO;c0#Z!L0Ւ9_ֶ>o)YymvUg(۳dGJUC!t Rf%H  V(JE4|OgPhX R^P̻}VCB51&g;#w/(ɄC4N  =HG%A^4\ mU%v<;τ S|6FJa1AüA4$'+Wd&3;Um4#ƳoґTvaY`yNx~mr/w²4wk"ZY(h?i=7u_+"-87/2wѤ +conGbdȩYsE)vZk]&bp`5\/)RP+޴`X+͚N&JquZ*0Gn lJAz&CʝR(֠龀߀[Kvb/C1VU甄"5cI~ iKIۋe|[d;dk{}R5'#>` MWϯN4YdpO'>[X{RMуd$2!ج-V334)"[|.Ppzjhz破hO\&ۓ 9igaZ{U6TnL3UkM'VDI}u_XcUT'NmWT}1[I?0e_~@HROOT"_jS%Xİ_G(WbjYF8歷cˍ0qK>?%&@I쯑!GʨGe&8,1<N͜gmC3k(eGKƌ82ٝE@@WjShiNi)ɟ vRlpn[W\QB{=CE#P(O8{^Cф1Us_ }UI-.럞C toM ,< 8yy>02}KP0R}7OQP["ыE{ lۙsH &@_LQi%τˣzthmAׂi'vM=\eDCU{"T~eR'{KÁtW8Q6#t:w9c:Mxi`0) Y,?&k@Nvq~K=!2-5ֻPӰBY'`4AOyW <:'xiBcơR(҄,*yXn C(''^=cs=w6 C|lᰨ&^k'+/}Ly ٯG~R5);e85"C\G9)(mzp1fG-(G4mhmLSV0zg H)ҝhlK|WggRm4.Bܠ3׌1̬G~W`ES3\q_kg;:7,p+ 'riB_.+j9Z"?4X_ช]?:Xm, \ԙ$nҸiwf2 T$ȑ]_[h-Yפn: _Jaчk:~[#X%lHϢYՠ*fsC5hX2G3IgËg-B%R1Yl♗ E6y~E'slz~'X8Ғ (w@_@E~ Ļ</ӈSQS3\H06r2;#smcTS}e:S%.t%['$I\ua̱ލ(D^WI(ȝZU眧.  UN^I.ن[/zU|eJXSN^vtz+7iG3ku}6%"#3LUg7' D[247F;X}kUzqܨdqiJ Y(UJ( ;-AOQ~o%\͛6h2rfF;Psxj}uA^-Y e1׺2F}d-qIͮꊧW' yΣsi\}vRܩ|L~ۊGB0WN̪!z)#=UtZת,'p,ЈɱcH?]YOPQ4H E1s0`ΩD^2|[)k#f `f0=&eO0dQG k "!2߾Uz+R\UAX M_;#sֶ,ƞi5l!nb'#jϘa#)3"Q8ގ Vs)WDzؽ]887-xɡkvycIt*Of`^8z3Yܦ(p1%-=boR6ryg*f<2EhJQî:B&l6!x6wO+x:4 OGD-a@XőVp#`HqGw 1x$ =<[d&5/vH k;h ɲ ҈'GV0X`@9ޜbOX'ȴF tWBCmsVt^ÌlSYr30A?+7`~Q00Yhi1]yqn]8pF / G"JTkOT4y1v&`)a?*Ď rlӷW4ƝFOcaŃYrnփD*Xb?Dx%4oluv?aY mYnm?c8 kߢqK[$ܲ5dw (֩DžHfU.3e{k-Afwh"E աE6c~C,R{9V`Ci'O (勤)8\ȆmL^A7|jZ $v!U!/pzc?m ':YsYI0`y<@8֩&Q% {Tgǟ,D*sZ!RSl$VTϯ9c3lM?r.UV{$8sd;i[7ݻr3w{*$r*W?͖,Ji_^^/Z(U0>! yZ]CWځU(`T;!I5 [K+G #* Ζ L5fRUXkh^迓^GFtk؋ uFo~^_zHr\V~6qZ _ݗ0T#"}xF\i$۲83g,%:o5XQ?C_h3{L\a_ fAj.`LHg3i̵tCC0@ڏr[K; kxA@WxxcS2j']`Ջ+! WcB 联2 #Aږ:.vm~~0F16@~JnlF>XVq_P0d~A+[[WPFsX-aȁ͜PGhL >f>Ǚk Ywu^-:u0A0])+~!Ɂ3<)t >|>@:ҍOQ̙eKy1,Ybڛ}X<@HC5"p0oc G'qp #*9V=4c&Ez%F>LpȂ kv "q[n񱱼' ʖ#:KMF6yVtwKppp2j?8_<8u|bǒ44;u@[h-`,V7G.pSuN8z&ln~ (^2"bnbieʊg1 PHD1+`9p"7+`cH`_5*ی.~W_@&/!Ô!e>S/|ƯSS*U"Su3ON;.x>{HW&-QT8.)˂j gz%ʳ(b` ^LgJ˰j?3s,+")O.FY- !(S; ~Ӭ=hǝ[՘o]KF񓂦UzfI˰J(Ѝ:X} g5ҥl#ghEү)e)i vc 쒼ٟjϚ֪ y}Af0ȞWk0veH*JZ%Zy&y@Ĩ4Y_ok_rNs\:|bhߧ\R{ kSwg1&5.QR X~ BgVz@$ÞBp=Q'?r59#jkvat0#:]?vbHǺ2U F8C$;/;l6:7 D-I̙XlԨT4Vٸ"m6շ:\l `3 >)drUS`ʭ9ts=$-f^h-}\=}~tɍF yp+`K2Jygb ӉN#d };wQ\EfJN5е>s^׀桌[oz-* 5?oS"SP;YFSݯ4oڷsZ&pUJD&bJ𞫐N0 tЈM rjimʽoI)ܜ'Z? $"2 Wg3LfNĆoO΍ 5ImٕlpuW 8솀)O O50g;G-ys>0gKwUZaۓhq&Iu JybS#E2YHH^f:]v2/Θ,3P교_ Ȕ]`]fi!`y,:iܷpΞ <`8YN{V%N-1@M]oMu?vQe$w/WwC!茴6I"E׃Xv(]wͱ] U- qSA5A$~Ąg7b3s04q'PB$-Ed3ۈHuTzhO|ddh-Ϋ#;#Nd'e9?'o~km>EZzI+>;Y``RkЅS^FywC; `rF#f)6(Ƣ{Hno:`Yei+w/L=_"-Ʒ_$E[yDNf .@alC.s" *ε擻qXQqz{.Vg립ݎ >/,uUzVVXE2PX oWT-iF;T&TﳎWpH8:>,A8Yo.£qB6DS 6'⨲9 zs*]~?'!|Z6La \:x046 0gmTCFx4Ě'H>3}ʳ٫C)r;wWtZTSM5v ]0 a\!SHĕE|6z:-pT]z^S}LJ9!ݹFͮ:㉎ȑZ?q1$:"A$5ͺy  oTyq@_'Bڱ(dfz텳)zBZ0^]+ |m7KWK&q%W7E?!VN=z2S}OKN3q./K(5z}셍_~x 5X&b%է5\g8b v8Zze!dtp cRB'˫oD#8SF4^~ 6a;@xQۏy +.`(G&%YdPn [{qjG$Kgz2.!LBd@ɫֹxk.S,CN_5R}?>~R <)] mt x//hE-fEY#΍f>!&PsFa`ȴAO1!I;Ǥv.10m>g 0Q?՜(>?Nxr Mr1 <̙p…̇4}IlY E9;H^^:'lElNEfLW 5Wa‰$hF4"wø}g*RuC%)׮)i?A^WsRq$: T^7gzpjal8qS)Ji" (cءU*0=v=g !j4uX(3 2h?ʂa+R,,wj($9Peq+ ~]L1u]ﵕI!Xgcg^[Pn5p=ی8I,|!>Jet8TڊdbPK6gQ~eeEz%ƫV5t8^xݥ*{:! 89yܳTl N?Ճï{&GoxqG PɉK|id ʸ# *YM"k=ΖяC]K_&v @(VdWpPX; F|'- (ߙ!溯i{"`C/;Yjښ VΤ{95;FLv,mkf8Ht'j?m//vPHuzL}7^Z(+mFvt8 ': >x2CcA;ng+ASbR3]~Ɉ&K0S.P}ln7}smcY%.KkR7rZ q\SNS;͍}ZU=Fy^?6TC 4tJ/i^~|bbgwՕʹtw]:&iR0huF!;b&Y2<-sϴJsnmg}$%tP5K(3[4EF7Pԛ@ܝ.1CW~Q]0L Ĭ̘rB% Ì$|(O3QIxQS?r0- ja'WVV慨i֩%38f. 26V9F(C"ut_|}uV4/z.LHp;eG4jN]Rl-:yN޽˶1zb9sD,Tu"-}$\7#9b&-|[:\"For)Uc&)Н;!k[hͩ TlVx$ٗ>12X\!K^Ddzkv+s:Ua[UȖ>Ւ]H^3, :'&hhMp\aӳ]b[@BFl\J3oj1i ӏ/Yn^ x4qbd`#2Hz7=tn16d/4 uI`Ѵtl{!B\2έὣ]f8ǿz1RyU!Y[."-Jnt3ɖ5p5)3ǺpDVZp< ia6nQL'T_PԬ4k;ʄL%'`hɱ#_erqpVNui)z?D\&Q^M!ϏηkI04Mo+ݽf#NzEROV[c>>RPIn#  A.I])C K@Ф|{ߧdA_Ak鉹v Wu\ ÀDzd:r*èsxwR{JFu)K3}w3{[ZɊ 9~r;@O)5[BZ#vV)p(Mjx;lո$徺ࠂt/0h\H] [}PF;UHgG/8߮y,BIcbm]IZTjݢ:" u?Ǎx"Qa; YS֭ݨ6ˊ?)p} itL%F?Xi/(- ]13wa M5G?~}@M_iBIO ѰL?`ςoaNJNK*jwt^G)cۯVm}ճ>T1]ű.W*c^D}mmobnM ,o B.)2?cNzrg~WprvvAYXt][g:4-<4K:ۤ@\4"*ꗀ6>a.mP |b.Dp jl\T]Aɯ/f* EGwԦܼ%9z[Soе)pO䏕&!|30ƥS#馀%7uc-D y8%:xB0nkrJ09J3yU2 mbV:G}߼?(;V'L ?ƙ c%U_<`tw,PNlOH Qeywp1 IQ- 3<3-2 ({8J-Qg'Ww#?̰Hq6oxviR1ȕ_qF1d:Prz[`ڥ$Wۂ6vʑ%Kr2?f!79XPQ‚̙3WG*Ř$ n*3;+pj L8%{:jק+< ؝uwv81D|I#x/:/=:bako.4eD" `1 qFZɅ"91A^^Ftk5m^J5ɳ.4ˡ%ʹ=6@`Tjte{9d 6jHDKe $58!$HMvS })3+]>+n `&xtJФ$D3.N<,A/hP8Ыm7wuF+pVƬ ӘHHydHe+rA5W`'U6C=3!&6 c웜MwX Jϡ5^C'Uy'o;?smz \Ҝ +Ap.M~\~7CQSސpJ=&!̈́>ɧTt XgJD&baї7[W:"ZAU nyi"Ve ?|C+ff%m8,%O-(wspOb'*y*A+z:";1WNd')96㛯%vP:foƚJ=v<8oI0;0@yv}+|.sv>lxMBmhS8^;*&:Fr5?s\Qg.mRA"-dcnX#4zy~꺶q{z-\ʹ0Y'E$Ý`%W{R;Wrp iE_ܦ6huitB/pqK>,[/qP2#-M!YӱT&Sܦw^}y#!bi+d&{&*#2[%{fD$rc1ezk Ә6x%;@'|ieBNjAGGNJY`X\Ҽ$ ='|(!hR8'nQVhPGS Z*) DWT>DTDpLJ+lpH *6` :8 'R6PFi=~1{gV~&~FD%u pO4W|6a/M.n@P췡8[ejw39JkZ7@^v cRjxޗ(͜ue\R6PGQ]_?ťD^)WޑM"i+z (j̐!̑T rEkuWX {r6K絴;RM6Sݙ,,b$z1,٧9{땅A]<>QoG32.˖bȔP `_ s[ϽR[A.'|]e4wvp瞛פ?$jsY9 < v]1#E f#B+*Sn Ŋ2~'>!=% !qU&1g7k.YV,gɅI,ْ5;kG0ZӑNou*O3 o9eM\.-&dͬ[C"@Vo޽hEdD'{^]f~;<1Wqp\F,Lka E-4V5DB"1f 2+;$*>XVؽ1oʸ%\\ ڕ[2凫P');VY$wqQLLY 30NiNLR &}ȕN:n-N>!NX[SbN+8ʡQOi!MsϝŮB /^~؎ OqT zo!|1!ќ̓PO w-Ul#Ip+1{k-2EWadF&[:mi67h)F0a[GՇ@ho8)۹Օ`ȒkD.2k%1ىᛧ_ I6'B Ի_C.LRBs1$Aye|o>Cj!x'@X:&,coT .b ٫UTbu1ϩ ĵB즸 ݦ.֌2ҪѰ*',FImJ9x:Oψj- QwZċY_d")Qd#j^mߨJEQڐơJoq-L(eN}EM [UXQea魁 p&La-RNGLwxguDIt^Sֲjz0A8lBbU^5CһZvmQN*z 'ޒ JH-$g\"dgXrXFT2I% #u42\қyĉ> MȤ-:p0Zu pN[\cKJ˙Eu˾{vG`jt2-rX J1 j=p<:(bFB 2.]qΥ:B=W*.`3v7wxv2DHVuIU | .f2ϰS@JR&߯V/S6ӼGG;YՇ= yaO!G4ianٳskڼlϟ5a$z?&x3J.)5ŷg+M_V\W6/-41np[ \ 9D#߉y,ԖTxlVUn}3}b>-><淀 YۏD5obnF7 ̓0#0 Cz-wôʀ^=lu0plۛ49=)nnbOKƎK 7X/灣'8kœ/z665އ{>*Ĝg8&ob#f&o(?Y\6tp~CCOBr=64suQʠ󁰭Kk[t~=j{ Zl@XOԠGLpC%a/9-"|GOZ=,j LQcECCSYϨij;5ygYqv ?)S1䑍.}ϖ#4tYdL?|14E0fB>*[E}4[R!*9E q[q>uކluy)i;0:2_^85b #q=8X.]h ֯I; J4C`JcȚP&:Ve$E\gZˈ ' zȢfE$QҠXֈ*ڵ²ŻMkR7>C)@Ct!/79\Esk;X[׀vY0}uq1 ҅GZ\ ўcDuP\%⤙{Obxxfȡ#I_ʫiƜmz`hߑM:Ѓݍ# $ %y=15Ld*x)s w#(jh tמ; GJQxh+X= 2\OG\AS~ƹ0 ZmUyPIy؛ j1ĪJm\ FCO Ɂ2o 0;y_.7Jl!+Tvti `itIm90e['z{::~Kx{m<M0!eXRӸ&zZU{z{57 SҼ 藮)Y1~Ad C/0cRV3MWCTE#|czA3+,޻X89@)Uʱ[/'amuѭߖF?l}wM%'MR3Q̕q\ą) ۞_׹2-bD9hv4t-+9=zdovy6kNJ(X+2B@R]e GFTÕgŜ{ ޡ='H֔6?Ao@GSl#4]SuJ)Sʵ={#g L/+i4糱y 'PS8@0 8.qQ#2R 6"u 9xq: 0Ӳ| x;HO$N0ȱ`*S wŔp_q ^5xBo0{U9)rY@=5ܒRxD՗7_o%՚̏pscqOWБN"i#ܡȢͿP4J?ɯW pi^2p;^Z"ݏ5 4pѿOAew5NC0 \z $fj$%ϗȼB3OsS 6niYl(ޖLSswLkyŒ 0@Y ,|=|#>NRծΐ`xƨ-Y/ÅnO.9+5̄"n<=o8R_duijN @/L󮣓ndR"Bj"]ү o,ܜ\Xbu3^C:${&CHsC{2zC(Yob_/tĮ`'n>@JP w ^¤\sq$yC?=dM`u*>e #7_0kqf5f0 [*~jx3^Tbܕ"@u*Z |K2-|_IG7A,6J(cy S 71M;Xbwqk?ЋeyVt"wتd\i9AQA`AM)8o ca&I e}#F8(KTpQD^y[9ԓ_8jhͭ2 0&1=RBR$e]ȳ'8b^#%hed(杀}ްMN$$CvbFJ mHhd^Fx Ȋ~W.9CþOx$.i@f:g_d4rfҾI!vt 9Y9όӰXγ>;˭Q}87ca;]SBTwD:wH\ pp፞ͼo\z׿6eB$Ai- pQcy4 g ['gGK5=֎[, pVB$3y2r>#諸t~CnOX?]tY;҈oDC:_Sº n<Ս*Ϡ I"ޏLڕ NzDB;Zzvρ|wڣ^"R]"'qqP3 [a˝>e*a Âh*t-<3v 3 ֚uks/+.\98TIXRJ=_c=Q226$SR4۞=tP%K{asa_q[ѫq#IkTR`SR t ) sO T55fѽK#>#1glUݻxnr6:N{c44YLLBIZ0K { .zOQ 9v^uEu0]r7äfNglxw1"A&Bq3qyWû M3ar[{$j%n$Bqq֗u#痦׎g=%;>.mr.{$o(/-TmQ]P{S28h)usU*ήc.& MFƐZ#BUsպİDYh/ڢ)1u_%9 ̸(ݿKu 8\(~Nݩk\B]Zci2fÒQ69#ڒHuYz'\-6|O^㩟GП*"q}n 65G܍B5VsxĴ[#*c(e䍊g]"8Sg:4?%uGr|Ʀ\mnDi`t&X%S^B)% )˥֕˾S?[TN6++"@DHɚvJpQg胺enܙ>E${ͻ;쿞./.4g19Wjs(cD8 |_ zj:pxf4DkrTQnj93>ɯ!gvC2 m@UF][ h>i2eڵ#iR_1InN &wꭇkLwۅ聆jrIw,l <[b3μ=Ea A֊1ax Y!&tt] ;g,,4o8i-@8 qդys M鉇1evUX?CLM#`{!X$Zpz)(緧M ֳy7>h~tuoGlK>&lݷ 4e;v_ d>O ˝\J ʜ{R 'u֯>\qCJ;V*u-fDDCwJ8"/-dn.9%ϖ&9/.=3~h eˠ1BbSZ@xtX5b6ڲ㮘Gq0zcc]}ԋn}%bTD<]4+oMl)nf/%~e rK.G*Vn'Ƿ3;賀#aoqlQ) ~đJĘ㌷^ }n140-i\Bx0~'h$#ruU y \ޣV૑>ݝ,eQcS*H. uN<mSѻ&SI~*^Ab] c98ȥWo0t@K) t[Tg oð=,KӼ ^V B !A*4r%=*4nh"S&e-ƯDcId lkจgϛ\T9Kc" ⳽{iٛTᧀT Gh,%}/8Ru].ﲁTr ;Y|"ݾQ 9R0e3 Ӭ,qZMjc$i:u6 )4mlĒt*Խ:D7R,uv質-.B9Rؒsd] ,!*eS Eh׋w&pfěĶk9UV6-ku ; sWfQ$T93z㯗A <]ɽqBI _".AD}W%+lUVDa3;Hl^(t`#!J}l5PGd1{~j(GxMʈEwXL8_UVCfƴDY~34c$̍@qR-Rt \dt$wV7ڽ9I6 _Z!}'&JIWz C!n[gKKLor{.d3˓T3h"ݱ(}$Ժ WVT[-d EB3l/܄\<43硓1MC*Tf|`C {!V %M!9ү=Kv"e 9Mnȫؼ"Hx'Zz 7 ll^cىwmX߷DO_ iճ<69!)iIUN|x%gJg]3æmGP Zw.aI93RDQ,!CM.:0WnCkNPnxm1Km}r;Tmhfemu_ doʬ|n;.Hܹe+dguؤ΢ YѴ1 Eg cHk+~iѺd{̏q_yr!*Dɮ3Q؝'Ͱ3.XԄl|^ [ϥ$rP}W{ Ip}PGׁ}i` ixZC\ccʖJDh[{d[ J-)BAA^H-?u h)GώñI%Ap1In( @`:ٝ3< 5:7(a.($q^{޿*j9-f8_) qTқRC9L6_GLלe=mԱïc<0:zu?@hJWآgi? QQ$gǚxņٟ2'Q]`V9_ O WKyccv>P&c[˳D kX|jD$ڨ6! BfO!N+;=څCU,iWqz!7.M셝BjttAb;(F_ { Ɖ`~ o[A&abAl:lIl. ibp /8rf \ G&fy¥MN^4BҞ4`=6 Y9 |P'W27vv4j*W ]g᭢̨Vz^J% 7ƀ34&9 Q/E!԰BiiaB:髧mhirJIyȤ%n Q %KZHPdsgLAoTL2 x9[ 7LR2S"=_A_hlTܫre% gWvAgծ/ "f)^'U\s|,6lI Bsnݴxjɇk,$y6Ar9}\~4݉M pR8gjM Φp9usN'OVN)gy?WWzFÿvz"O !c:z#b9ٮp:G,MRrW݇]U/ͥTeI06  f;,5z휗4>M{]v`v( e+OIGMd 3S\Q+@N@-y}skBRy'L 3wɧG OQ-/}峺D]n`dreu,cD)e,DD;Uu)f^^uMÚW *ϓ &#CQEH9.0^Ad녥i%!:*@eMaA48elhO.)]k^iU}/[gn~Zv sU⾬XU3UwFYVǗigRHP_ PxPq6?-oDfoX4uקG 0x wYUXVnqoōGIn  9D"eP[[r3DZKZs6Y{26F{RvQ]=OI"9V+O݊fJX;?^x9ZNf9v@?.ź c ;eEx| yuYpr_>׎}f^[YrDJÞ`t&+^Uz[8 )&dkM m}z*>ܥBZ(*S&~Ws6V`AZ ĜWs-Ȋ_VgmhΦ2wCn}B-+/ ʆSUoȖ1Jx30؛o`ҵw~4.\Nda?%8)m>G-Hmu $r^B3NVywfT4|kV]V5f.m?\l7rh(y\><{1]"7n2 $a"!3LӤVGh 30q$T1Hs< !^9v aG#~[Oxe92jƆ[ݚ(qX=:vͣO.U"@׍K?e:44{t:h\#_@JPaffRՂ@Zx2a4Ѻ~SV/WZ`֖OC&0@Sq`Crj4f&GwiVVe㠙WIʐh)w1*d|p%/$1J/FDі(6kR$)k˟lbB6**\D%/ rl^*PK/OQ xwJ.oDPxHl{x2x?RIn//c-NЃ8b,1y.r`%gi 1Աs5$߿e6!ll?-G k |U@{}L% LްP1FI4 %$8IMj܄\NunGeOObvuX\@!{~lrs!6 O堂V4Am[Vn27ⅼWC~4Qߊ,F>s5L gl82%^UH]-bţ\΢W]\3q.)EEhp ]>ِmț"J H@`9F-J)uc͢VCl}ZwUb$,H2^9Z\ky[q>6`Z+3=CY?8̮e9!$K yۏ*'8sx8a"Z`#iά\[v)n(l=|р)߳nE]s1b9/&Ñtƽf{e꬜ /Y7Z=&OӀKjN[c/ ?GT!`]&f&mx |N1(f sNj DԖ&\p<Wz9ִ۫%ϓrf(I\Mh/2Ì"-KTdy8|ncgK䦘 ?en:}&.B ӏ6hg= ?f:wֽ~!3۩RoЬ0oGƬQpn4 +Z2fSeZ(i/d+vߙt?d YՀɂ%nd'<&g@xw%NWgEFVfMsؙ-UdrxʎjN׀Zp()g%7F+)\g8uR&NKxTKfg:T Rգs[EUB'h™qtfLe9JʡP#r/!l=ͺ8߉O _rX,'@+dPmD3?nzm]sb=χ}ơU;~,kGdܖO%=*)Z)!ODĺ}Ĥs\oՇ9xyY;xUeUӈٳŨ*]]3uc0~g=ElFnx>XWf97 IRUU^;`IW,)-M,iT+lx }\PfJW9YW{6Q*}HFIwd$vO~c[32wP= ,^|QSMFɫABF;ٚiP.*! ;2>.*,nKV&(P!-иg\Ѣ{]HJj2R[Ξc155UrUL|f=Ju ДWg4k 1sXx[}P?96jLЮ1n^T:YIX7J og'W;dO0b7 XL+59aHd?aӫI  o›ͫy~PvĨldP}s%5(±:z5|u (>˦Ҙi!?qw/h1O9QB>vT&"/=ޣ\ĈG> 5l;fܰvQ'x;x %|e\'pPBВb !1ho9ϛǙZ&Iɰ 8Z1m!j:\,5V;U`y`:l:ow^azTL/tq";_ΪXqfQ57)\ ?T:vR!X8%X3DˊhS#kK2~#5?q'jz 0hQ:AN&ݓ!7 Do̿,q3͉MQr76QjoU I?z4Y 'Ա t,_BJ*~Ey+~7sm21a0 ( Ӵ`O:*nSZSn,~ҹNR,DlR_^/"f,X}0^NlJVPM.3_Ft1GxȩeDPә}ˡi!r+D#K5{Z 75= س:S]ϥM`4] I, xŦOaUec9 ڀ"Hl< i 0,CzPXl%F HNAbb7<=z 6|-O,|dz:X.-;L장w#$l Q'`iB a镞qZcmb.TydvЇDa\qe*T~ƾYw0 HGйdZMk?v;V(Qˤg̀k#HWGv-2%`NP/>YPh/A[,l&7H|KӈYgkY焖o%1yMkx./Ah|4.♊;<=@gkҘ@U+LNzp8tꠙ']{Eӊ_XF?b䰐VA ˣko.,pCpiEʩūTih. *x(7 H=kK\1y|F&,<(@kT-e.(H3m@pݲ6A ^BۓKj̺ g +B3\&J}A˯hX_р,|ʒ0Q©7BO$rBL)$:W=aa\K0|j!xz,zKQ1 4WVMXwO~c* @؏T&\V F}`۱6h4HU(|ka}(;e~6OZѐocT+Wc@1P "+>h#֪wyG}7;nP+b'M5C4ϳɽ 99+ަ:U'!p=755z}h yRgDXFu"tQ۝W3~4 K,U` MK+&T.]̐DRY;O)A)뽱8a1ڠJ!X۽vk㛹aߓw6~}dA50j'7C>6x4Z a rٺތ*^g?oOĴB,i6ө tz(L N Z֗zks?DdZW{c=iك21$AC"{CQ-(CHֺ)WFlr}8[3[T3ZXn]vwGF$ Ș i$RDzgD}KTJ9>e" 9oA㕱k(,z]&]ڈѲjGt7klIX\G+ԗ}~[D}u_Qr*zآ' ZvGݍc8a%wq/ CiYx&5F@EOwC;ڒO+y_ ;̧e~9NG>6B5XW?a.TX$)!*΋ŠU)Ly'O-Cs䐢Ӵl?>ND_R @3OġOf^J߄45ЂӗKc"ϚOVEW}n?ɻg}]o2]rX;A0EZH!Pݤ󄃿Z P؇ L&Snʄ! =t` .2Zj69Xk .Ke3ѵL8ve ;ߨ 2,o`^d'ߎ+}rLOK3vL ¡DMT6!n5t !h!Gߙ\ǬrdVns7{/ftWG-Acu*.ce Ĩ ,/ fpNgP7D㘛$ps#va*v4T66Ą[Ԫ)-s?3޳|9])ՆY/s̀q;uc4F+f@FƠQ\ǹFڙagQ&9w.b<+`[c!d+" mbxmM&> BRG3XDTMY^C~vc=FZǩv9"Y f}_uu !c/*rM: 5]%kNWq B$0> JBwF %p:@cf49)P+Rbӊv ޿h,uuъP'UiC-SAU1I«X^;IugEX&XKT Z$;"8;u;sϭ]6m`NZڱMNa:N elroH&#vLZYjQIVlQB>i]M9&SF#gShՀ2e L &942SYnh0&R[+WGMS =6z=“sˈm,BᏔ?mEhMmUOuU QT`d~):,;*#UXstrǞ:a 01ɣ8+J>T)|́>Zcnc[+HGwI4jaJQ5، Nք7b5x̔vnQfdcټ]S8 0aEA S#5 .65 ҶCNe⦢o7y.W(;fV(+l/gMvʻJ_[=b 'w^%K_?w1QYϥy>"?u!tɭ-wޏnH+-EzYQAaj8p%'sQcUpWMhW6GP1- LB!n@.쒙Iv`:8yEXrXt5s-SUxA<= C| T=n,]Tzw[&X{ݩi4$##0^ !0&>:|ICil?&="yuK.,jBe:h+3fLSz7^ Ax>Bd!Yo}QXlMpEʅ^=HEB63v#H!JEyO:vO\M >;*U% l)γBn=!t<4ʉ;Oc,&p/d׬7rSACܒ*㒄T.شydl"Y[Q Xhw_*Mm){%sB2^SwFeFW.-ba]zY,pى͊& ͙ Ln5stj#-Ī( Mh~Ҝ(d$a{hD)Alh:NNeK'm[u{{Sx{ bo"'c5-E[Rm/9vܐ/-0M'˙ȸ*T"w>Q>o87NqtϬI}CyVڤm.c`~ C7)<' -' =:)Dݩ>i_NIhmt'A_NxPa0=+ܕОm3z,VR1{ 0m n O'qN` a] YJC # ~:z)ޯ)r6|qzc7(A"$1ƛݒjl/ 7 J5tϝy5aUqlfyy2GA#^?tZQ'{eU~,Qⴸ=!vfAhaGr㩝{LVӼN V֔]q#Y* [ YZ