nss-util-3.79.0-5.el8 >  A b HU]׋ ʳj,<0slD 8H}nMf5MzmP?ɰ P0e ؒ,띷4ߡ@ivCTAtb"dk#`M? ~O1_MRpó _ew2_ňZJmNjr#g?V67.ӗdoAwV{hyYjB V2[#Bzc?. n8QEh Sܸehf!} 7rQ~pA J'ow=˽~ٓ0hEﳃ1Z7z]yJT.#눩s] ]gG8Ό 4c`U#9@d(2 (Ҫ.,ՙV;л w"S'|C" QP<4t y.q`:,fqw9*I< pT4X)Emjza686cf4bcc79e8650d1dd4af8abade2b6833af7c602288d8953d0d629fd666a60060c11b0d27c93e3edcd3b9815abfd1ca7cdd09lb HU]/fߊj78:C]1>e*,6l4OLlJ Q'`@ ><9ESt4a9z'ǁ]RBYS Ubg @ra#Uv$ BLutq6EsE v$+l4@U@BB5뢍_tB1 'Ϝ\蹧[I)B0ZMhxY,Ejڐ:j2$=˯ߓ*.f?V)p ܄6R0Ka#yv?NkD<9utmg̊&qj3L[Hk%(> 9T:: <}hEE1:Qb`-kjeSbn#6^&D (x{yxu%R1cWڟ ;V$:(h;)C3p<?d   D $,D P \ t  $<Zx(h(89 :\GHI0X8Y\]^bdefltuvwxyX\bCnss-util3.79.05.el8Network Security Services Utilities LibraryUtilities for Network Security Services and the Softoken modulebaarch64-01.mbox.centos.org^CentOSCentOSMPLv2.0CentOS Buildsys Unspecifiedhttp://www.mozilla.org/projects/security/pki/nss/linuxaarch64$FAAA큤b b b bvb bNYa115be91b88bbf08e38488c512ad6cd44488d04faf9ef43b7fcce5bfa65a68e2a20c1a32d1f8102432360b42e932869f7c11c7cdbacf9cac554c422132af47f4../../../../usr/lib64/libnssutil3.sorootrootrootrootrootrootrootrootrootrootrootrootnss-3.79.0-5.el8.src.rpmlibnssutil3.so()(64bit)libnssutil3.so(NSSUTIL_3.12)(64bit)libnssutil3.so(NSSUTIL_3.12.3)(64bit)libnssutil3.so(NSSUTIL_3.12.5)(64bit)libnssutil3.so(NSSUTIL_3.12.7)(64bit)libnssutil3.so(NSSUTIL_3.13)(64bit)libnssutil3.so(NSSUTIL_3.14)(64bit)libnssutil3.so(NSSUTIL_3.15)(64bit)libnssutil3.so(NSSUTIL_3.17.1)(64bit)libnssutil3.so(NSSUTIL_3.21)(64bit)libnssutil3.so(NSSUTIL_3.24)(64bit)libnssutil3.so(NSSUTIL_3.25)(64bit)libnssutil3.so(NSSUTIL_3.31)(64bit)libnssutil3.so(NSSUTIL_3.33)(64bit)libnssutil3.so(NSSUTIL_3.38)(64bit)libnssutil3.so(NSSUTIL_3.39)(64bit)libnssutil3.so(NSSUTIL_3.59)(64bit)nss-utilnss-util(aarch-64)@@@@@@@@@@     @ld-linux-aarch64.so.1()(64bit)ld-linux-aarch64.so.1(GLIBC_2.17)(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.17)(64bit)libdl.so.2()(64bit)libnspr4.so()(64bit)libplc4.so()(64bit)libplds4.so()(64bit)libpthread.so.0()(64bit)libpthread.so.0(GLIBC_2.17)(64bit)nsprrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)rtld(GNU_HASH)4.34.0-33.0.4-14.6.0-14.0-15.2-14.14.3ba@blbbb@a@@`E`ݮ@` @`ٹ`̊`9@`Ȗ@`D`r_@_^@___@__"@_"@_"@_!d_@_ L_ _@^^@@^@^ۅ@^4]N@]]߶]e@]M@]µ]L]]^@\F@\Q\\\\\\@\I\I\U@\ `\l@[[[u[#@[[W[O+[M@[ZZw@Z|;Zo Zo Zg#Z ZZZ@Y+@Y{YY@Yn@YV@Y@YyYm@Yg`YJ_Y1S@XX@XX @XXYX@X@XX~@Xx@XoX>@X*X@WW@Wt@W~Wv[@WrfWoWm WbWQq@WPWJWDB@W4p@W@Wo@W@VV޾V޾V@VяVIVɦV@V@V=@V@V@VO @VHsVEV3[V UYU@UU@U@U>Ua@Ug@U[%UUU @T@Ts@TTء@T@TÉ@TT@T@T?@T:m@T"@S@S<@S@S@S @SSSSpShS(5@S@SRy@RJ@R@RR@RSRR@Rm@Rg@RD!R@RRR|Q@Q*@QQ@QKQ@QQW@Qw@Q]k@QNQ9Q7/Q#@QQ @P!@PՠP @PqP@P@PAPXPd@Pd@PPP@PP5@PPnP;a@P(@P H@O;O;O@OiO@O@O}O~OiOYOX@OOdO&@O!@@OO@O@N>@N>@NNܲ@N`NؽNN@NuN;@Np@Nf @NA!@N*NpM@MWMc@MM@M@MMfH@M^_@MZjMS@MQ0@MQ0@MQ0@MQ0@MK@MGMF@M6@M-MM@Ls@LOLLZ@L6LdL@L*@L@LA@LL@L4Lx@Lx@Li(@Lf@L_L_LT@L0L0L K @KsKsKKCKCKCK]KMKLd@KD{@K<@K5K4@K,@K+nK*@K K@K@K@KJݦ@J - 3.79.0-5Bob Relyea - 3.79.0-4Bob Relyea - 3.79.0-3Bob Relyea - 3.79.0-2Bob Relyea - 3.79.0-1Bob Relyea - 3.67.0-7Bob Relyea - 3.67.0-6Bob Relyea - 3.67.0-5Bob Relyea - 3.67.0-4Bob Relyea - 3.67.0-3Bob Relyea - 3.67.0-2Bob Relyea - 3.67.0-1Bob Relyea - 3.66.0-2Bob Relyea - 3.66.0-1.1Bob Relyea - 3.66.0-1Bob Relyea - 3.53.1-17Bob Relyea - 3.53.1-16Bob Relyea - 3.53.1-15Bob Relyea - 3.53.1-14Bob Relyea - 3.53.1-13Bob Relyea - 3.53.1-12Bob Relyea - 3.53.1-11Bob Relyea - 3.53.1-10Daiki Ueno - 3.53.1-9Daiki Ueno - 3.53.1-8Bob Relyea - 3.53.1-7Daiki Ueno - 3.53.1-6Bob Relyea - 3.53.1-5Bob Relyea - 3.53.1-4Daiki Ueno - 3.53.1-3Daiki Ueno - 3.53.1-2Daiki Ueno - 3.53.1-1Daiki Ueno - 3.53.0-1Bob Relyea - 3.44.0-15Bob Relyea - 3.44.0-14Bob Relyea - 3.44.0-13Daiki Ueno - 3.44.0-12Bob Relyea - 3.44.0-11Daiki Ueno - 3.44.0-10Bob Relyea - 3.44.0-9Bob Relyea - 3.44.0-8Daiki Ueno - 3.44.0-7Daiki Ueno - 3.44.0-6Daiki Ueno - 3.44.0-5Bob Relyea - 3.44.0-4.1Bob Relyea - 3.44.0-4Daiki Ueno - 3.44.0-3Bob Relyea - 3.44.0-2Daiki Ueno - 3.44.0-1Daiki Ueno - 3.41.0-5Bob Relyea - 3.41.0-4Daiki Ueno - 3.41.0-3Daiki Ueno - 3.41.0-2Daiki Ueno - 3.41.0-1Daiki Ueno - 3.39.0-1.5Bob Relyea - 3.39.0-1.4Daiki Ueno - 3.39.0-1.3Daiki Ueno - 3.39.0-1.2Daiki Ueno - 3.39.0-1.1Daiki Ueno - 3.39.0-1.0Daiki Ueno - 3.38.0-1.2Daiki Ueno - 3.38.0-1.1Daiki Ueno - 3.38.0-1.0Kai Engert - 3.36.1-1.2Daiki Ueno - 3.36.1-1.1Daiki Ueno - 3.36.1-1.0Daiki Ueno - 3.36.0-1.0Fedora Release Engineering - 3.35.0-5Kai Engert - 3.35.0-4Kai Engert - 3.35.0-3Daiki Ueno - 3.35.0-2Daiki Ueno - 3.34.0-2Daiki Ueno - 3.33.0-6Kai Engert - 3.33.0-5Kai Engert - 3.33.0-4Kai Engert - 3.33.0-3Daiki Ueno - 3.33.0-2Daiki Ueno - 3.32.1-2Daiki Ueno - 3.32.0-4Kai Engert - 3.32.0-3Daiki Ueno - 3.32.0-2Fedora Release Engineering - 3.31.0-6Fedora Release Engineering - 3.31.0-5Daiki Ueno - 3.31.0-4Daiki Ueno - 3.31.0-3Daiki Ueno - 3.31.0-2Daiki Ueno - 3.30.2-3Daiki Ueno - 3.30.2-2Kai Engert - 3.30.0-3Daiki Ueno - 3.30.0-2Kai Engert - 3.29.1-3Daiki Ueno - 3.29.1-2Daiki Ueno - 3.29.0-3Daiki Ueno - 3.29.0-2Daiki Ueno - 3.28.1-6Daiki Ueno - 3.28.1-5Daiki Ueno - 3.28.1-4Daiki Ueno - 3.28.1-3Daiki Ueno - 3.28.1-2Daiki Ueno - 3.27.2-2Daiki Ueno - 3.27.0-5Kai Engert - 3.27.0-4Daiki Ueno - 3.27.0-3Daiki Ueno - 3.27.0-2Daiki Ueno - 3.26.0-2Elio Maldonado - 3.25.0-6Elio Maldonado - 3.25.0-5Elio Maldonado - 3.25.0-4Elio Maldonado - 3.25.0-3Elio Maldonado - 3.25.0-2Kamil Dudka - 3.24.0-3Elio Maldonado - 3.24.0-2.3Elio Maldonado - 3.24.0-2.2Elio Maldonado - 3.24.0-2.1Elio Maldonado - 3.24.0-2.0Elio Maldonado - 3.23.0-9Elio Maldonado - 3.23.0-8Elio Maldonado - 3.23.0-7Elio Maldonado - 3.23.0-6Elio Maldonado - 3.23.0-5Elio Maldonado - 3.23.0-4Elio Maldonado - 3.23.0-3Elio Maldonado - 3.23.0-2Elio Maldonado - 3.22.2-2Elio Maldonado - 3.22.1-3Elio Maldonado - 3.22.1-1Elio Maldonado - 3.22.0-3Elio Maldonado - 3.22.0-2Fedora Release Engineering - 3.21.0-7Elio Maldonado - 3.21.0-6Michal Toman - 3.21.0-5Elio Maldonado - 3.21.0-4Elio Maldonado - 3.21.0-3Elio Maldonado Batiz - 3.21.1-2Elio Maldonado - 3.20.1-2Elio Maldonado - 3.20.0-6Elio Maldonado - 3.20.0-5Elio Maldonado - 3.20.0-4Elio Maldonado - 3.20.0-3Elio Maldonado - 3.20.0-2Elio Maldonado - 3.19.3-2Elio Maldonado - 3.19.2-3Kai Engert - 3.19.2-2Kai Engert - 3.19.1-2Kai Engert - 3.19.0-2Kai Engert - 3.18.0-2Elio Maldonado - 3.18.0-1Elio Maldonado - 3.17.4-5Till Maas - 3.17.4-4Elio Maldonado - 3.17.4-3Elio Maldonado - 3.17.4-2Elio Maldonado - 3.17.4-1Ville Skyttä - 3.17.3-4Elio Maldonado - 3.17.3-3Elio Maldonado - 3.17.3-2Elio Maldonado - 3.17.3-1Elio Maldonado - 3.17.2-2Elio Maldonado - 3.17.2-1Kai Engert - 3.17.1-1Kevin Fenzi - 3.17.0-2Elio Maldonado - 3.17.0-1Fedora Release Engineering - 3.16.2-4Elio Maldonado - 3.16.2-3Tom Callaway - 3.16.2-2Elio Maldonado - 3.16.2-1Elio Maldonado - 3.16.1-4Fedora Release Engineering - 3.16.1-3Jaromir Capik - 3.16.1-2Elio Maldonado - 3.16.1-1Elio Maldonado - 3.16.0-1Elio Maldonado - 3.15.5-2Elio Maldonado - 3.15.5-1Elio Maldonado - 3.15.4-5Elio Maldonado - 3.15.4-4Elio Maldonado - 3.15.4-3Peter Robinson 3.15.4-2Elio Maldonado - 3.15.4-1Elio Maldonado - 3.15.3.1-1Elio Maldonado - 3.15.3-2Elio Maldonado - 3.15.3-1Elio Maldonado - 3.15.2-3Elio Maldonado - 3.15.2-2Elio Maldonado - 3.15.2-1Elio Maldonado - 3.15.1-7Elio Maldonado - 3.15.1-6Elio Maldonado - 3.15.1-5Elio Maldonado - 3.15.1-4Elio Maldonado - 3.15.1-3Elio Maldonado - 3.15.1-2Elio Maldonado - 3.15.1-1Elio Maldonado - 3.15-5emaldona - 3.15-4emaldona - 3.15-3Elio Maldonado - 3.15-2Elio Maldonado - 3.15-1Elio Maldonado - 3.15-0.1.beta1.2Elio Maldonado - 3.15-0.1.beta1.1Kai Engert - 3.14.3-12Kai Engert - 3.14.3-10Kai Engert - 3.14.3-9Elio Maldonado - 3.14.3-1Elio Maldonado - 3.14.2-2Elio Maldonado - 3.14.2-1Kai Engert - 3.14.1-3Elio Maldonado - 3.14.1-2Elio Maldonado - 3.14.1-1Elio Maldonado - 3.14-12Elio Maldonado - 3.14-11Elio Maldonado - 3.14-10Elio Maldonado - 3.14-9Elio Maldonado - 3.14-8Elio Maldonado - 3.14-7Elio Maldonado - 3.14-6Elio Maldonado - 3.14-5Elio Maldonado - 3.14-4Elio Maldonado - 3.14-3Elio Maldonado - 3.14-2Elio Maldonado - 3.14-1Elio Maldonado - 3.14-0.1.rc.1Kai Engert - 3.13.6-1Elio Maldonado - 3.13.5-8Elio Maldonado - 3.13.5-7Fedora Release Engineering - 3.13.5-6Elio Maldonado - 3.13.5-5Elio Maldonado - 3.13.5-4Elio Maldonado - 3.13.5-3Elio Maldonado - 3.13.5-2Elio Maldonado - 3.13.5-1Elio Maldonado - 3.13.4-3Elio Maldonado - 3.13.4-2Elio Maldonado - 3.13.4-1Elio Maldonado - 3.13.3-4Elio Maldonado - 3.13.3-3Elio Maldonado - 3.13.3-2Elio Maldonado - 3.13.3-1Tom Callaway - 3.13.1-13Elio Maldonado - 3.13.1-12Fedora Release Engineering - 3.13.1-11Elio Maldonado - 3.13.1-11Elio Maldonado - 3.13.1-10elio maldonado - 3.13.1-9Elio Maldonado - 3.13.1-8Elio Maldonado - 3.13.1-7Elio Maldonado - 3.13.1-6Elio Maldonado - 3.13.1-5Elio Maldonado Batiz - 3.13.1-4Elio Maldonado - 3.13.1-2Elio Maldonado - 3.13.1-1Elio Maldonado - 3.13-1Elio Maldonado - 3.13-0.1.rc0.1Elio Maldonado - 3.12.11-3Kai Engert - 3.12.11-2Elio Maldonado - 3.12.11-1Elio Maldonado - 3.12.10-6Michael Schwendt - 3.12.10-5Elio Maldonado - 3.12.10-4Dennis Gilmore - 3.12.10-3Elio Maldonado - 3.12.10-2Elio Maldonado - 3.12.10-1Elio Maldonado - 3.12.10-0.1.beta1Elio Maldonado - 3.12.9-15Elio Maldonado - 3.12.9-14Elio Maldonado - 3.12.9-13Elio Maldonado - 3.12.9-12Elio Maldonado - 3.12.9-11Elio Maldonado - 3.12.9-10Elio Maldonado - 3.12.9-9Fedora Release Engineering - 3.12.9-8Elio Maldonado - 3.12.9-7Christopher Aillon - 3.12.9-6Elio Maldonado - 3.12.9-5Elio Maldonado - 3.12.9-4Elio Maldonado - 3.12.9-3Elio Maldonado - 3.12.9-2Elio Maldonado - 3.12.9-1Elio Maldonado - 3.12.9-0.1.beta2Elio Maldonado - 3.12.8.99.2-1Elio Maldonado - 3.12.8.99.1-1Elio Maldonado - 3.12.8-9Elio Maldonado - 3.12.8-8Elio Maldonado - 3.12.8-7Elio Maldonado - 3.12.8-6Elio Maldonado - 3.12.8-5Elio Maldonado - 3.12.8-4Elio Maldonado - 3.12.8-3Elio Maldonado - 3.12.8-2Elio Maldonado - 3.12.8-1Elio Maldonado - 3.12.7.99.4-1Elio Maldonado - 3.12.7.99.3-2Elio Maldonado - 3.12.7.99.3-1Elio Maldonado - 3.12.7-3Elio Maldonado - 3.12.7-2Elio Maldonado - 3.12.7-1Elio Maldonado - 3.12.6-12Elio Maldonado - 3.12.6-11Elio Maldonado - 3.12.6-10Elio Maldonado - 3.12.6-9Dennis Gilmore - 3.12.6-8Elio Maldonado - 3.12.6-7Elio Maldonado - 3.12.6-6Elio Maldonado - 3.12.6-5Elio Maldonado - 3.12.6-4Elio Maldonado - 3.12.6-3Elio Maldonado - 3.12.6-2Elio Maldonado - 3.12.6-1.2Elio Maldonado - 3.12.6-1.1Elio Maldonado - 3.12.6-1Elio Maldonado - 3.12.5-8Elio Maldonado - 3.12.5-5Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1.13.2Elio Maldonado - 3.12.5-1.13.1Elio Maldonado - 3.12.5-1.13Elio Maldonado - 3.12.5-1.11Elio maldonado - 3.12.5-1.9Elio Maldonado - 3.12.5-2.7Elio Maldonado - 3.12.5-1.6Elio Maldonado - 3.12.5-1.5Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1Elio Maldonado - 3.12.4-14.1Elio Maldonado - 3.12.4-13.1Elio Maldonado - 3.12.4-13Elio Maldonado - 3.12.4-12Elio Maldonado - 3.12.4-11Elio Maldonado - 3.12.4-10Elio Maldonado - 3.12.4-8Elio Maldonado - 3.12.4-6Elio Maldonado - 3.12.4-5Elio Maldonado - 3.12.4-4Elio Maldonado - 3.12.4-3Elio Maldonado - 3.12.4-2Elio Maldonado - 3.12.4-1Elio Maldonado - 3.12.3.99.3-30Elio Maldonado - 3.12.3.99.3-29Elio Maldonado - 3.12.3.99.3-28Elio Maldonado - 3.12.3.99.3-27Elio Maldonado - 3.12.3.99.3-26Elio Maldonado - 3.12.3.99.3-25Warren Togami - 3.12.3.99.3-24Elio Maldonado - 3.12.3.99.3-23Elio Maldonado - 3.12.3.99.3-22Elio Maldonado - 3.12.3.99.3-21Elio Maldonado - 3.12.3.99.3-20Elio Maldonado - 3.12.3.99.3-19Elio Maldonado - 3.12.3.99.3-18Elio Maldonado - 3.12.3.99.3-16Dennis Gilmore - 3.12.3.99.3-15Dennis Gilmore - 3.12.3.99.3-14Dennis Gilmore - 3.12.3.99.3-13Dennis Gilmore - 3.12.3.99.3-12Elio Maldonado+emaldona@redhat.com - 3.12.3.99.3-11Elio Maldonado - 3.12.3.99.3-10Dennis Gilmore - 3.12.3.99.3-9Elio Maldonado - 3.12.3.99.3-7.1Fedora Release Engineering - 3.12.3.99.3-7Elio Maldonado - 3.12.3.99.3-6Elio Maldonado - 3.12.3.99.3-5Elio Maldonado - 3.12.3.99.3-4Kai Engert - 3.12.3.99.3-3Kai Engert - 3.12.3.99.3-2Kai Engert - 3.12.3-7Kai Engert - 3.12.3-4Kai Engert - 3.12.3-3Kai Engert - 3.12.3-2Kai Engert - 3.12.2.99.3-7Kai Engert - 3.12.2.99.3-6Kai Engert - 3.12.2.99.3-5Kai Engert - 3.12.2.99.3-4Kai Engert - 3.12.2.99.3-3Kai Engert - 3.12.2.99.3-2Kai Engert - 3.12.2.99.3-1Fedora Release Engineering - 3.12.2.0-4Kai Engert - 3.12.2.0-3Dennis Gilmore - 3.12.1.1-4Kai Engert - 3.12.1.1-3Kai Engert - 3.12.1.1-2Kai Engert - 3.12.1.0-2Kai Engert - 3.12.0.3-7Kai Engert - 3.12.0.3-6Kai Engert - 3.12.0.3-3Kai Engert - 3.12.0.3-2Kai Engert - 3.12.0.1-1Jesse Keating - 3.11.99.5-2Kai Engert - 3.11.99.5-1Kai Engert - 3.11.99.4-1Kai Engert - 3.11.99.3-6Kai Engert - 3.11.99.3-5Kai Engert - 3.11.99.3-4Kai Engert - 3.11.99.3-3Kai Engert - 3.11.99.3-2Kai Engert - 3.11.99.3-1Kai Engert - 3.11.99.2b-3Kai Engert - 3.11.99.2b-2Kai Engert - 3.11.99.2-2Kai Engert - 3.11.99.2-1Kai Engert - 3.11.7-10Rob Crittenden - 3.11.7-9Kai Engert - 3.11.7-8Bob Relyea - 3.11.7-7Kai Engert - 3.11.7-6Kai Engert - 3.11.7-5Kai Engert - 3.11.7-4Kai Engert - 3.11.7-3Kai Engert - 3.11.7-2Kai Engert - 3.11.5-2Kai Engert - 3.11.5-1Bob Relyea - 3.11.4-4Kai Engert - 3.11.4-1Kai Engert - 3.11.3-2Kai Engert - 3.11.3-1Kai Engert - 3.11.2-2Jesse Keating - 3.11.2-1.1Kai Engert - 3.11.2-1Kai Engert - 3.11.1-2Kai Engert - 3.11.1-1Kai Engert - 3.11-4Jesse Keating - 3.11-3.2Jesse Keating - 3.11-3.1Ray Strode 3.11-3Christopher Aillon 3.11-2Christopher Aillon 3.11-1Christopher Aillon 3.11-0.cvs.2Christopher Aillon 3.11-0.cvsKai Engert Rob Crittenden 3.10-1- FIPS 140-3 changes - Reject Small RSA keys, 1024 bit keys are marked as FIP OK when verifying, reject signature keys by policy - Allow applications to retrigger selftests on demand.- Fix pkgconfig output- NSR Coverity fix changed selfserv from passive to active, change it back- Fix regressions found in test suites.- Rebase to NSS 3.79 - Set FIPS Module ID - skip attribute verification on attributes with default values - don't export trust objects if they are default trust objects from dbm - add dbtool to nss-tools- Fix CVE 2021 43527- Fix ssl alert issue- Fix issue with reading databases that were updated using unpatched versions of nss- Better fix for the sdb timeout. The issue wasn't a race, it was the sqlite timeout waiting to begin a transaction under heavy thread usage.- Fix sdb race condition- Fix coverity issues- Rebase to NSS 3.67- Restore old pkcs12 defaults.- build nss for older nspr so we can pass gating with the new nspr in the build root- Rebase to NSS 3.66- Fix various corner cases with ike v1 app b support.- Fix the following CVE - CVE-2020-12403 chacha-poly issues - CVE-2020-12400 constant time ECC. - CVE-2020-6829 constant time ECC.- Revert some policy changes the generate ABI runtime issues.- Add support for enable/disable in policy. Now if your policy file has disallow=x enable=y it will act just like our other libraries.- Add OAEP interface so applications can wrap keys with RSA-OAEP rather than RSA-PKCS-1.- fips need to reject small primes even if they are approved - code to autodetect whether or not to use the cache needs to do so in a way that doesn't mess with filesystem negative file caching. - add kdf selftests- Fix issue with upgradedb where upgradedb expects standard to generate dbm databases, not sql databases (default in RHEL8)- Disable dh timing test because it's unreliable on s390- Explicitly enable upgradedb/sharedb test cycles- Disable Delegated Credentials for TLS- Fix attribute decryption issue where the private key components integrity check on private attributes where not being checked.- Update nss-rsa-pkcs1-sigalgs.patch to the upstream version- Include required checks for dh and ecdh key generation in FIPS mode.- Add better checks for dh derive operations in FIPS mode.- Disable NSS_HASH_ALG_SUPPORT as well for MD5 (#1849938) - Adjust for update-crypto-policies packaging change (#1848649) - Fix compilation with -Werror=strict-prototypes (#1843417)- Fix regression in MD5 disablement (#1849938) - Include rsa_pkcs1_* in signature_algorithms extension (#1847945)- Update to NSS 3.53.1- Update to NSS 3.53- Fix swapped CMAC PKCS #11 values. - Fix data alignment crash in CMAC.- Fix coverify scan issue- Fix endian problem in SP-800 108 code.- Install cmac.h required by blapi.h (#1764513) - Fix out-of-bounds write in NSC_EncryptUpdate (#1775913)- Add SP-800 108 Generalized kdf- Check policy against hash algorithms used for ServerKeyExchange (#1730039)- Add CMAC- CKM_NSS_IKE1_APP_B_PRF_DERIVE was missing from the mechanism list, preventing PK11_Derive*() from using it. Add gtests for the PK11_Derive interface for all the CKM_NSS_IKE*_DERIVE mechanism.- Backport fixes from 3.44.1- Add continuous RNG test required by FIPS - fipstest: use CKM_TLS12_MASTER_KEY_DERIVE instead of vendor specific mechanism- Rebuild with the correct build target- rebuild to try to retrigger CI tests- Fix certutil man page - Fix extracting a public key from a private key for dh, ec, and dsa- Disable TLS 1.3 under FIPS mode - Disable RSASSA-PKCS1-v1_5 in TLS 1.3 - Fix post-handshake auth transcript calculation if SSL_ENABLE_SESSION_TICKETS is set - Revert the change to use XDG basedirs (mozilla#818686)- Add ike mechanisms in softokn - Add FIPS checks in softoken- Update to NSS 3.44 - Define NSS_SEED_ONLY_DEV_URANDOM=1 to exclusively use getentropy - Use %autosetup - Clean up manual pages generation - Clean up %check - Remove prelink dependency, which is not available in RHEL-8 - Remove upstreamed patches- Update manual pages to reflect recent changes in commands- Make sure corresponding public keys are created when importing private keys.- Fix the last change - Add --no-reload option to update-crypto-policies to avoid unnecessary restart of daemons- Restore LDFLAGS injection when linking DSO- Update to NSS 3.41 - Consolidate nss-util, nss-softokn, and nss into a single source package- Fix the last commit- Support for IKE/IPsec typical PKIX usage so libreswan can use nss without rejecting certs based on EKU- Backport upstream fixes for rhbz#1649026, rhbz#1608895, rhbz#1644854 - Document PKCS #11 URI - Add warning when adding module with modutil while p11-kit is enabled- Update nss-dsa.patch to not advertise DSA signature algorithm - Update PayPal test certs for testing- Backport "DSA" keyword in crypto-policies- Update to NSS 3.39- Fix LDFLAGS injection when linking DSO- Install crypto-policies configuration file for https://fedoraproject.org/wiki/Changes/NSSLoadP11KitModules - Port enable-fips-when-system-is-in-fips-mode.patch from RHEL-7 - Use %ldconfig_scriptlets - Remove needless use of %defattr, by Jason Tibbitts- Update to NSS 3.38- Backport upstream addition of nss-policy-check utility, rhbz#1428746, includes required fixes for mozbz#1296263 and mozbz#1474875- Switch the default DB type to SQL - Enable SSLKEYLOGFILE- Update to NSS 3.36.1 - Remove nss-3.14.0.0-disble-ocsp-test.patch - Fix partial injection of LDFLAGS - Remove NSS_NO_PKCS11_BYPASS, which is no-op in upstream- Update to NSS 3.36.0 - Add gcc-c++ to BuildRequires (C++ is needed for gtests) - Make test failure detection robuster- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild- Fix a compiler error with gcc 8, mozbz#1434070 - Set NSS_FORCE_FIPS=1 at %build time, and remove from %check.- Stop pulling in nss-pem automatically, packages that need it should depend on it, rhbz#1539401- Update to NSS 3.35.0- Update to NSS 3.34.0- Make sure 32bit nss-pem always be installed with 32bit nss in multlib environment, patch by Kamil Dudka- Fix test script- Update tests to be compatible with default NSS DB changed to sql (the default was changed in the nss-util package).- rhbz#1505487, backport upstream fixes required for rhbz#1496560- Update to NSS 3.33.0- Update to NSS 3.32.1- Update iquote.patch to really prefer in-tree headers over system headers- NSS libnssckbi.so has already been obsoleted by p11-kit-trust, rhbz#1484449- Update to NSS 3.32.0- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild- Backport mozbz#1381784 to avoid deadlock in dnf- Move signtool to %_libdir/nss/unsupported-tools, for: https://fedoraproject.org/wiki/Changes/NSSSigntoolDeprecation- Rebase to NSS 3.31.0- Enable gtests- Rebase to NSS 3.30.2 - Enable TLS 1.3- Backport upstream mozbz#1328318 to support crypto policy FUTURE.- Rebase to NSS 3.30.0 - Remove upstreamed patches- Backport mozbz#1334976 and mozbz#1336487.- Rebase to NSS 3.29.1- Disable TLS 1.3, following the upstream change- Rebase to NSS 3.29.0 - Suppress -Werror=int-in-bool-context warnings with GCC7- Work around pkgconfig -> pkgconf transition issue (releng#6597)- Disable TLS 1.3 - Add "Conflicts" with packages using older Mozilla codebase, which is not compatible with NSS 3.28.1 - Remove NSS_ECC_MORE_THAN_SUITE_B setting, as it was removed in upstream- Add "Conflicts" with older firefox packages which don't have support for smaller curves added in NSS 3.28.1- Fix incorrect version specification in %nss_{util,softokn}_version, pointed by Elio Maldonado- Rebase to NSS 3.28.1 - Remove upstreamed patch for disabling RSA-PSS - Re-enable TLS 1.3- Rebase to NSS 3.27.2- Revert the previous fix for RSA-PSS and use the upstream fix instead- Disable the use of RSA-PSS with SSL/TLS. #1383809- Disable TLS 1.3 for now, to avoid reported regression with TLS to version intolerant servers- Rebase to NSS 3.27.0 - Remove upstreamed ectest patch- Rebase to NSS 3.26.0 - Update check policy file patch to better match what was upstreamed - Remove conditionally ignore system policy patch as it has been upstreamed - Skip ectest as well as ecperf, which are built as part of nss-softokn - Fix rpmlint error regarding %define usage- Incorporate some changes requested in upstream review and commited upstream (#1157720)- Add support for conditionally ignoring the system policy (#1157720) - Remove unneeded test scripts patches in order to run more tests - Remove unneeded test data modifications from the spec file- Remove obsolete patch and spurious lines from the spec file (#1347336)- Cleanup spec file and patches and add references to bugs filed upstream- Rebase to nss 3.25- decouple nss-pem from the nss package (#1347336)- Apply the patch that was last introduced - Renumber and reorder some of the patches - Resolves: Bug 1342158- Allow application requests to disable SSL v2 to succeed - Resolves: Bug 1342158 - nss-3.24 does no longer support ssl V2, installation of IPA fails because nss init fails- Rebase to NSS 3.24.0 - Restore setting the policy file location - Make ssl tests scripts aware of policy - Ajust tests data expected result for policy- Bootstrap build to rebase to NSS 3.24.0 - Temporarily not setting the policy file location- Change POLICY_FILE to "nss.config"- Change POLICY_FILE to "nss.cfg"- Change the POLICY_PATH to "/etc/crypto-policies/back-ends" - Regenerate the check policy patch with hg to provide more context- Fix typo in the last %changelog entry- Load policy file if /etc/pki/nssdb/policy.cfg exists - Resolves: Bug 1157720 - NSS should enforce the system-wide crypto policy- Remove unused patch rendered obsolete by pem update- Update pem sources to latest from nss-pem upstream - Resolves: Bug 1300652 - [PEM] insufficient input validity checking while loading a private key- Rebase to NSS 3.23- Rebase to NSS 3.22.2- Fix ssl2/exp test disabling to run all the required tests- Rebase to NSS 3.22.1- Update .gitignore as part of updating to nss 3.22- Update to NSS 3.22- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild- Resolves: Bug 1299040 - Enable ssl_gtests upstream test suite - Remove 'export NSS_DISABLE_GTESTS=1' go ssl_gtests are built - Use %define when specifying the nss_tests to run- Add 64-bit MIPS to multilib arches- Update %{nss_util_version} and %{nss_softokn_version} to 3.21.0 - Resolves: Bug 1284095 - all https fails with sec_error_no_token- Add references to bugs filed upstream- Update to NSS 3.21 - Package listsuites as part of the unsupported tools set - Resolves: Bug 1279912 - nss-3.21 is available - Resolves: Bug 1258425 - Use __isa_bits macro instead of list of 64-bit - Resolves: Bug 1280032 - Package listsuites as part of the nss unsupported tools set- Update to NSS 3.20.1- Enable ECC cipher-suites by default [hrbz#1185708] - Split the enabling patch in two for easier maintenance - Remove unused patches rendered obsolete by prior rebase- Enable ECC cipher-suites by default [hrbz#1185708] - Implement corrections requested in code review- Enable ECC cipher-suites by default [hrbz#1185708]- Fix patches that disable ssl2 and export cipher suites support - Fix libssl patch that disable ssl2 & export cipher suites to not disable RSA_WITH_NULL ciphers - Fix syntax errors in patch to skip ssl2 and export cipher suite tests - Turn ssl2 off by default in the tstclnt tool - Disable ssl stress tests containing TLS RC4 128 with MD5- Update to NSS 3.20- Update to NSS 3.19.3- Create on the fly versions of sslcov.txt and sslstress.txt that disable tests for SSL2 and EXPORT ciphers- Update to NSS 3.19.2- Update to NSS 3.19.1- Update to NSS 3.19- Replace expired test certificates, upstream bug 1151037- Update to nss-3.18.0 - Resolves: Bug 1203689 - nss-3.18 is available- Disable export suites and SSL2 support at build time - Fix syntax errors in various shell scripts - Resolves: Bug 1189952 - Disable SSL2 and the export cipher suites- Rebuilt for Fedora 23 Change https://fedoraproject.org/wiki/Changes/Harden_all_packages_with_position-independent_code- Commented out the export NSS_NO_SSL2=1 line to not disable ssl2 - Backing out from disabling ssl2 until the patches are fixed- Disable SSL2 support at build time - Fix syntax errors in various shell scripts - Resolves: Bug 1189952 - Disable SSL2 and the export cipher suites- Update to nss-3.17.4- Own the %{_datadir}/doc/nss-tools dir- Resolves: Bug 987189 - nss-tools RPM conflicts with perl-PAR-Packer - Install pp man page in %{_datadir}/doc/nss-tools/pp.1 - Use %{_mandir} instead of /usr/share/man as more generic- Install pp man page in alternative location - Resolves: Bug 987189 - nss-tools RPM conflicts with perl-PAR-Packer- Update to nss-3.17.3 - Resolves: Bug 1171012 - nss-3.17.3 is available- Resolves: Bug 994599 - Enable TLS 1.2 by default- Update to nss-3.17.2- Update to nss-3.17.1 - Add a mechanism to skip test suite execution during development work- Rebuild for rpm bug 1131960- Update to nss-3.17.0- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild- Replace expired PayPal test cert with current one to prevent build failure- fix license handling- Update to nss-3.16.2- Remove unwanted source directories at end of %prep so it truly does it - Skip the cipher suite already run as part of the nss-softokn build- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild- Replacing ppc64 and ppc64le with the power64 macro - Related: Bug 1052545 - Trivial change for ppc64le in nss spec- Update to nss-3.16.1 - Update the iquote patch on account of the rebase - Improve error detection in the %section - Resolves: Bug 1094702 - nss-3.16.1 is available- Update to nss-3.16.0 - Cleanup the copying of the tools man pages - Update the iquote.patch on account of the rebase- Restore requiring nss_softokn_version >= 3.15.5- Update to nss-3.15.5 - Temporarily requiring only nss_softokn_version >= 3.15.4 - Fix location of sharedb files and their manpages - Move cert9.db, key4.db, and pkcs11.txt to the main package - Move nss-sysinit manpages tar archives to the main package - Resolves: Bug 1066877 - nss-3.15.5 is available - Resolves: Bug 1067091 - Move sharedb files to the %files section- Revert previous change that moved some sysinit manpages - Restore nss-sysinit manpages tar archives to %files sysinit - Removing spurious wildcard entry was the only change needed- Add explanatory comments for iquote.patch as was done on f20- Update pem sources to latest from nss-pem upstream - Pick up pem fixes verified on RHEL and applied upstream - Fix a problem where same files in two rpms created rpm conflict - Move some nss-sysinit manpages tar archives to the %files the - All man pages are listed by name so there shouldn't be wildcard inclusion - Add support for ppc64le, Resolves: Bug 1052545- ARM tests pass so remove ARM conditional- Update to nss-3.15.4 (hg tag NSS_3_15_4_RTM) - Resolves: Bug 1049229 - nss-3.15.4 is available - Update pem sources to latest from the interim upstream for pem - Remove no longer needed patches - Update pem/rsawrapr.c patch on account of upstream changes to freebl/softoken - Update iquote.patch on account of upstream changes- Update to nss-3.15.3.1 (hg tag NSS_3_15_3_1_RTM) - Resolves: Bug 1040282 - nss: Mis-issued ANSSI/DCSSI certificate (MFSA 2013-117) - Resolves: Bug 1040192 - nss-3.15.3.1 is available- Bump the release tag- Update to NSS_3_15_3_RTM - Resolves: Bug 1031897 - CVE-2013-5605 CVE-2013-5606 CVE-2013-1741 nss: various flaws - Fix option descriptions for setup-nsssysinit manpage - Fix man page of nss-sysinit wrong path and other flaws - Document email option for certutil manpage - Remove unused patches- Revert one change from last commit to preserve full nss pluggable ecc supprt [1019245]- Use the full sources from upstream - Bug 1019245 - ECDHE in openssl available -> NSS needs too for Firefox/Thunderbird- Update to NSS_3_15_2_RTM - Update iquote.patch on account of modified prototype on cert.h installed by nss-devel- Update pem sources to pick up a patch applied upstream which a faulty merge had missed - The pem module should not require unique file basenames- Update pem sources to the latest from interim upstream- Resolves: rhbz#996639 - Minor bugs in nss man pages - Fix some typos and improve description and see also sections- Cleanup spec file to address most rpmlint errors and warnings - Using double percent symbols to fix macro-in-comment warnings - Ignore unversioned-explicit-provides nss-system-init per spec comments - Ignore invalid-url Source0 as it comes from the git lookaside cache - Ignore invalid-url Source12 as it comes from the git lookaside cache- Add man page for pkcs11.txt configuration file and cert and key databases - Resolves: rhbz#985114 - Provide man pages for the nss configuration files- Fix errors in the man pages - Resolves: rhbz#984106 - Add missing option descriptions to man pages for {cert|cms|crl}util - Resolves: rhbz#982856 - Fix path to script in man page for nss-sysinit- Update to NSS_3_15_1_RTM - Enable the iquote.patch to access newly introduced types- Install man pages for nss-tools and the nss-config and setup-nsssysinit scripts - Resolves: rhbz#606020 - nss security tools lack man pages- Build nss without softoken or util sources in the tree - Resolves: rhbz#689918- Update ssl-cbc-random-iv-by-default.patch- Fix generation of NSS_VMAJOR, NSS_VMINOR, and NSS_VPATCH for nss-config- Update to NSS_3_15_RTM- Fix incorrect path that hid failed test from view - Add ocsp to the test suites to run but ... - Temporarily disable the ocsp stapling tests - Do not treat failed attempts at ssl pkcs11 bypass as fatal errors- Update to NSS_3_15_BETA1 - Update spec file, patches, and helper scripts on account of a shallower source tree- Update expired test certificates (fixed in upstream bug 852781)- Fix incorrect post/postun scripts. Fix broken links in posttrans.- Configure libnssckbi.so to use the alternatives system in order to prepare for a drop in replacement.- Update to NSS_3_14_3_RTM - sync up pem rsawrapr.c with softoken upstream changes for nss-3.14.3 - Resolves: rhbz#908257 - CVE-2013-1620 nss: TLS CBC padding timing attack - Resolves: rhbz#896651 - PEM module trashes private keys if login fails - Resolves: rhbz#909775 - specfile support for AArch64 - Resolves: rhbz#910584 - certutil -a does not produce ASCII output- Allow building nss against older system sqlite- Update to NSS_3_14_2_RTM- Update to NSS_3_14_1_WITH_CKBI_1_93_RTM- Require nspr >= 4.9.4 - Fix changelog invalid dates- Update to NSS_3_14_1_RTM- Bug 879978 - Install the nssck.api header template where mod_revocator can access it - Install nssck.api in /usr/includes/nss3/templates- Bug 879978 - Install the nssck.api header template in a place where mod_revocator can access it - Install nssck.api in /usr/includes/nss3- Bug 870864 - Add support in NSS for Secure Boot- Disable bypass code at build time and return failure on attempts to enable at runtime - Bug 806588 - Disable SSL PKCS #11 bypass at build time- Fix pk11wrap locking which fixes 'fedpkg new-sources' and 'fedpkg update' hangs - Bug 872124 - nss-3.14 breaks fedpkg new-sources - Fix should be considered preliminary since the patch may change upon upstream approval- Add a dummy source file for testing /preventing fedpkg breakage - Helps test the fedpkg new-sources and upload commands for breakage by nss updates - Related to Bug 872124 - nss 3.14 breaks fedpkg new-sources- Fix a previous unwanted merge from f18 - Update the SS_SSL_CBC_RANDOM_IV patch to match new sources while - Keeping the patch disabled while we are still in rawhide and - State in comment that patch is needed for both stable and beta branches - Update .gitignore to download only the new sources- Fix the spec file so sechash.h gets installed - Resolves: rhbz#871882 - missing header: sechash.h in nss 3.14- Update the license to MPLv2.0- Use only -f when removing unwanted headers- Add secmodt.h to the headers installed by nss-devel - nss-devel must install secmodt.h which moved from softoken to pk11wrap with nss-3.14- Update to NSS_3_14_RTM- Update to NSS_3_14_RC1 - update nss-589636.patch to apply to httpdserv - turn off ocsp tests for now - remove no longer needed patches - remove headers shipped by nss-util- Update to NSS_3_13_6_RTM- Rebase pem sources to fedora-hosted upstream to pick up two fixes from rhel-6.3 - Resolves: rhbz#847460 - Fix invalid read and free on invalid cert load - Resolves: rhbz#847462 - PEM module may attempt to free uninitialized pointer - Remove unneeded fix gcc 4.7 c++ issue in secmodt.h that actually undoes the upstream fix- Fix pluggable ecc support- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- Fix checkin comment to prevent unwanted expansions of percents- Resolves: Bug 830410 - Missing Requires %{?_isa} - Use Requires: %{name}%{?_isa} = %{version}-%{release} on tools - Drop zlib requires which rpmlint reports as error E: explicit-lib-dependency zlib - Enable sha224 portion of powerup selftest when running test suites - Require nspr 4.9.1- Resolves: rhbz#833529 - revert unwanted change to nss.pc.in- Resolves: rhbz#833529 - Remove unwanted space from the Libs: line on nss.pc.in- Update to NSS_3_13_5_RTM- Resolves: Bug 812423 - nss_Init leaks memory, fix from RHEL 6.3- Resolves: Bug 805723 - Library needs partial RELRO support added - Patch coreconf/Linux.mk as done on RHEL 6.2- Update to NSS_3_13_4_RTM - Update the nss-pem source archive to the latest version - Remove no longer needed patches - Resolves: Bug 806043 - use pem files interchangeably in a single process - Resolves: Bug 806051 - PEM various flaws detected by Coverity - Resolves: Bug 806058 - PEM pem_CreateObject leaks memory given a non-existing file name- Resolves: Bug 805723 - Library needs partial RELRO support added- Cleanup of the spec file - Add references to the upstream bugs - Fix typo in Summary for sysinit- Pick up fixes from RHEL - Resolves: rhbz#800674 - Unable to contact LDAP Server during winsync - Resolves: rhbz#800682 - Qpid AMQP daemon fails to load after nss update - Resolves: rhbz#800676 - NSS workaround for freebl bug that causes openswan to drop connections- Update to NSS_3_13_3_RTM- fix issue with gcc 4.7 in secmodt.h and C++11 user-defined literals- Resolves: Bug 784672 - nss should protect against being called before nss_Init- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- Deactivate a patch currently meant for stable branches only- Resolves: Bug 770682 - nss update breaks pidgin-sipe connectivity - NSS_SSL_CBC_RANDOM_IV set to 0 by default and changed to 1 on user request- Revert to using current nss_softokn_version - Patch to deal with lack of sha224 is no longer needed- Resolves: Bug 754771 - [PEM] an unregistered callback causes a SIGSEGV- Resolves: Bug 750376 - nss 3.13 breaks sssd TLS - Fix how pem is built so that nss-3.13.x works with nss-softokn-3.12.y - Only patch blapitest for the lack of sha224 on system freebl - Completed the patch to make pem link against system freebl- Removed unwanted /usr/include/nss3 in front of the normal cflags include path - Removed unnecessary patch dealing with CERTDB_TERMINAL_RECORD, it's visible- Statically link the pem module against system freebl found in buildroot - Disabling sha224-related powerup selftest until we update softokn - Disable sha224 and pss tests which nss-softokn 3.12.x doesn't support- Rebuild with nss-softokn from 3.12 in the buildroot - Allows the pem module to statically link against 3.12.x freebl - Required for using nss-3.13.x with nss-softokn-3.12.y for a merge inrto rhel git repo - Build will be temprarily placed on buildroot override but not pushed in bodhi- Fix broken dependencies by updating the nss-util and nss-softokn versions- Update to NSS_3_13_1_RTM - Update builtin certs to those from NSSCKBI_1_88_RTM- Update to NSS_3_13_RTM- Update to NSS_3_13_RC0- Fix attempt to free initilized pointer (#717338) - Fix leak on pem_CreateObject when given non-existing file name (#734760) - Fix pem_Initialize to return CKR_CANT_LOCK on multi-treaded calls (#736410)- Update builtins certs to those from NSSCKBI_1_87_RTM- Update to NSS_3_12_11_RTM- Indicate the provenance of stripped source tarball (#688015)- Provide virtual -static package to meet guidelines (#609612).- Enable pluggable ecc support (#712556) - Disable the nssdb write-access-on-read-only-dir tests when user is root (#646045)- make the testsuite non fatal on arm arches- Fix crmf hard-coded maximum size for wrapped private keys (#703656)- Update to NSS_3_12_10_RTM- Update to NSS_3_12_10_BETA1- Implement PEM logging using NSPR's own (#695011)- Update to NSS_3.12.9_WITH_CKBI_1_82_RTM- Short-term fix for ssl test suites hangs on ipv6 type connections (#539183)- Add a missing requires for pkcs11-devel (#675196)- Run the test suites in the check section (#677809)- Fix cms headers to not use c++ reserved words (#676036) - Reenabling Bug 499444 patches - Fix to swap internal key slot on fips mode switches- Revert patches for 499444 until all c++ reserved words are found and extirpated- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- Fix cms header to not use c++ reserved word (#676036) - Reenable patches for bug 499444- Revert patches for 499444 as they use a C++ reserved word and cause compilation of Firefox to fail- Fix the earlier infinite recursion patch (#499444) - Remove a header that now nss-softokn-freebl-devel ships- Fix infinite recursion when encoding NSS enveloped/digested data (#499444)- Update the cacert trust patch per upstream review requests (#633043)- Fix to honor the user's cert trust preferences (#633043) - Remove obsoleted patch- Update to 3.12.9- Rebuilt according to fedora pre-release package naming guidelines- Update to NSS_3_12_9_BETA2 - Fix libpnsspem crash when cacert dir contains other directories (#642433)- Update to NSS_3_12_9_BETA1- Update pem source tar with fixes for 614532 and 596674 - Remove no longer needed patches- Update PayPalEE.cert test certificate which had expired- Tell rpm not to verify md5, size, and modtime of configurations file- Fix certificates trust order (#643134) - Apply nss-sysinit-userdb-first.patch last- Move triggerpostun -n nss-sysinit script ahead of the other ones (#639248)- Fix invalid %postun scriptlet (#639248)- Replace posttrans sysinit scriptlet with a triggerpostun one (#636787) - Fix and cleanup the setup-nsssysinit.sh script (#636792, #636801)- Add posttrans scriptlet (#636787)- Update to 3.12.8 - Prevent disabling of nss-sysinit on package upgrade (#636787) - Create pkcs11.txt with correct permissions regardless of umask (#636792) - Setup-nsssysinit.sh reports whether nss-sysinit is turned on or off (#636801) - Added provides pkcs11-devel-static to comply with packaging guidelines (#609612)- NSS 3.12.8 RC0- Fix nss-util_version and nss_softokn_version required to be 3.12.7.99.3- NSS 3.12.8 Beta3 - Fix unclosed comment in renegotiate-transitional.patch- Change BuildRequries to available version of nss-util-devel- Define NSS_USE_SYSTEM_SQLITE and remove unneeded patch - Add comments regarding an unversioned provides which triggers rpmlint warning - Build requires nss-softokn-devel >= 3.12.7- Update to 3.12.7- Apply the patches to fix rhbz#614532- Removed pem sourecs as they are in the cache- Add support for PKCS#8 encoded PEM RSA private key files (#614532)- Fix nsssysinit to return userdb ahead of systemdb (#603313)- Require and BuildRequire >= the listed version not =- Require nss-softoken 3.12.6- Fix SIGSEGV within CreateObject (#596674)- Update pem source tar to pick up the following bug fixes: - PEM - Allow collect objects to search through all objects - PEM - Make CopyObject return a new shallow copy - PEM - Fix memory leak in pem_mdCryptoOperationRSAPriv- Update the test cert in the setup phase- Add sed to sysinit requires as setup-nsssysinit.sh requires it (#576071) - Update PayPalEE test cert with unexpired one (#580207)- Fix ns.spec to not require nss-softokn (#575001)- rebuilt with all tests enabled- Using SSL_RENEGOTIATE_TRANSITIONAL as default while on transition period - Disabling ssl tests suites until bug 539183 is resolved- Update to 3.12.6 - Reactivate all tests - Patch tools to validate command line options arguments- Fix curl related regression and general patch code clean up- retagging- Fix SIGSEGV on call of NSS_Initialize (#553638)- New version of patch to allow root to modify ystem database (#547860)- Temporarily disabling the ssl tests- Fix nsssysinit to allow root to modify the nss system database (#547860)- Fix an error introduced when adapting the patch for rhbz #546211- Remove left over trace statements from nsssysinit patching- Fix a misconstructed patch- Fix nsssysinit to enable apps to use system cert store, patch contributed by David Woodhouse (#546221) - Fix spec so sysinit requires coreutils for post install scriplet (#547067) - Fix segmentation fault when listing keys or certs in the database, patch contributed by Kamil Dudka (#540387)- Fix nsssysinit to set the default flags on the crypto module (#545779) - Remove redundant header from the pem module- Remove unneeded patch- Retagging to include missing patch- Update to 3.12.5 - Patch to allow ssl/tls clients to interoperate with servers that require renogiation- Retagging- Require nss-softoken of same architecture as nss (#527867) - Merge setup-nsssysinit.sh improvements from F-12 (#527051)- User no longer prompted for a password when listing keys an empty system db (#527048) - Fix setup-nsssysinit to handle more general formats (#527051)- Fix syntax error in setup-nsssysinit.sh- Fix sysinit to be under mozilla/security/nss/lib- Add nss-sysinit activation/deactivation script- Install blank databases and configuration file for system shared database - nsssysinit queries system for fips mode before relying on environment variable- Restoring nssutil and -rpath-link to nss-config for now - 522477- Add the nss-sysinit subpackage- Installing shared libraries to %{_libdir}- Retagging to pick up new sources- Update pem enabling source tar with latest fixes (509705, 51209)- PEM module implements memory management for internal objects - 509705 - PEM module doesn't crash when processing malformed key files - 512019- Remove symbolic links to shared libraries from devel - 521155 - No rpath-link in nss-softokn-config- Update to 3.12.4- Fix FORTIFY_SOURCE buffer overflows in test suite on ppc and ppc64 - bug 519766 - Fixed requires and buildrequires as per recommendations in spec file review- Restoring patches 2 and 7 as we still compile all sources - Applying the nss-nolocalsql.patch solves nss-tools sqlite dependency problems- restore require sqlite- Don't require sqlite for nss- Ensure versions in the requires match those used when creating nss.pc- Remove nss-prelink.conf as signed all shared libraries moved to nss-softokn - Add a temprary hack to nss.pc.in to unblock builds- caolan's nss.pc patch- Bump the release number for a chained build of nss-util, nss-softokn and nss- Fix nss-config not to include nssutil - Add BuildRequires on nss-softokn and nss-util since build also runs the test suite- disabling all tests while we investigate a buffer overflow bug- disabling some tests while we investigate a buffer overflow bug - 519766- remove patches that are now in nss-softokn and - remove spurious exec-permissions for nss.pc per rpmlint - single requires line in nss.pc.in- Fix BuildRequires: nss-softokn-devel release number- fix nss.pc.in to have one single requires line- cleanups for softokn- remove the softokn subpackages- don install the nss-util pkgconfig bits- remove from -devel the 3 headers that ship in nss-util-devel- kill off the nss-util nss-util-devel subpackages- split off nss-softokn and nss-util as subpackages with their own rpms - first phase of splitting nss-softokn and nss-util as their own packages- must install libnssutil3.since nss-util is untagged at the moment - preserve time stamps when installing various files- dont install libnssutil3.so since its now in nss-util- Fix spec file problems uncovered by Fedora_12_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild- removed two patch files which are no longer needed and fixed previous change log number- updated pem module incorporates various patches - fix off-by-one error when computing size to reduce memory leak. (483855) - fix data type to work on x86_64 systems. (429175) - fix various memory leaks and free internal objects on module unload. (501080) - fix to not clone internal objects in collect_objects(). (501118) - fix to not bypass initialization if module arguments are omitted. (501058) - fix numerous gcc warnings. (500815) - fix to support arbitrarily long password while loading a private key. (500180) - fix memory leak in make_key and memory leaks and return values in pem_mdSession_Login (501191)- add patch for bug 502133 upstream bug 496997- rebuild with higher release number for upgrade sanity- updated to NSS_3_12_4_FIPS1_WITH_CKBI_1_75- re-enable test suite - add patch for upstream bug 488646 and add newer paypal certs in order to make the test suite pass- add conflicts info in order to fix bug 499436- ship .chk files instead of running shlibsign at install time - include .chk file in softokn-freebl subpackage - add patch for upstream nss bug 488350- Update to NSS 3.12.3- temporarily disable the test suite because of bug 494266- fix softokn-freebl dependency for multilib (bug 494122)- introduce separate nss-softokn-freebl package- disable execstack when building freebl- add upstream patch to fix bug 483855- build nspr-less freebl library- Update to NSS_3_12_3_BETA4- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild- update to NSS_3_12_2_RC1 - use system zlib- add sparc64 to the list of 64 bit arches- bug 456847, move pkgconfig requirement to devel package- Update to NSS_3_12_1_RC2- NSS 3.12.1 RC1- fix bug bug 429175 in libpem module- bug 456847, add Requires: pkgconfig- nss package should own /etc/prelink.conf.d folder, rhbz#452062 - use upstream patch to fix test suite abort- Update to NSS_3_12_RC4- Update to NSS_3_12_RC2- Zapping old Obsoletes/Provides. No longer needed, causes multilib headache.- Update to NSS_3_12_BETA3- NSS 3.12 Beta 2 - Use /usr/lib{64} as devel libdir, create symbolic links.- Apply upstream patch for bug 417664, enable test suite on pcc.- Support concurrent runs of the test suite on a single build host.- disable test suite on ppc- disable test suite on ppc64- Build against gcc 4.3.0, use workaround for bug 432146 - Run the test suite after the build and abort on failures.* NSS 3.12 Beta 1- move .so files to /lib- NSS 3.12 alpha 2b- upstream patches to avoid calling netstat for random data- NSS 3.12 alpha 2- Add /etc/prelink.conf.d/nss-prelink.conf in order to blacklist our signed libraries and protect them from modification.- Fix off-by-one error in the PEM module- fix a C++ mode compilation error- Add 3.12 ckfw and libnsspem- Updated license tag- Ensure the workaround for mozilla bug 51429 really get's built.- Better approach to ship freebl/softokn based on 3.11.5 - Remove link time dependency on softokn- Fix unowned directories, rhbz#233890- Update to 3.11.7, but freebl/softokn remain at 3.11.5. - Use a workaround to avoid mozilla bug 51429.- Fix rhbz#230545, failure to enable FIPS mode - Fix rhbz#220542, make NSS more tolerant of resets when in the middle of prompting for a user password.- Update to 3.11.5 - This update fixes two security vulnerabilities with SSL 2 - Do not use -rpath link option - Added several unsupported tools to tools package- disable ECC, cleanout dead code- Update to 3.11.4- Revert the attempt to require latest NSPR, as it is not yet available in the build infrastructure.- Update to 3.11.3- Add /etc/pki/nssdb- rebuild- Update to 3.11.2 - Enable executable bit on shared libs, also fixes debug info.- Enable Elliptic Curve Cryptography (ECC)- Update to 3.11.1 - Include upstream patch to limit curves- add --noexecstack when compiling assembler on x86_64- bump again for double-long bug on ppc(64)- rebuilt for new gcc4.1 snapshot and glibc changes- rebuild- Update file list for the devel packages- Update to 3.11- Add patch to allow building on ppc* - Update the pkgconfig file to Require nspr- Initial import into Fedora Core, based on a CVS snapshot of the NSS_3_11_RTM tag - Fix up the pkcs11-devel subpackage to contain the proper headers - Build with RPM_OPT_FLAGS - No need to have rpath of /usr/lib in the pc file- Adressed review comments by Wan-Teh Chang, Bob Relyea, Christopher Aillon.- Initial build3.79.0-5.el83.79.0-5.el8.build-id79d53eefda6f4f44ec5dba7aa797679a67f0c5bflibnssutil3.sonss-utilCOPYING/usr/lib//usr/lib/.build-id//usr/lib/.build-id/79//usr/lib64//usr/share/licenses//usr/share/licenses/nss-util/-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -fexceptions -fstack-protector-strong -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1 -fasynchronous-unwind-tables -fstack-clash-protectioncpioxz2aarch64-redhat-linux-gnudirectoryELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=79d53eefda6f4f44ec5dba7aa797679a67f0c5bf, strippedASCII textPPPPPPPPP P P P P PPPPRR RRRRRRRRRutf-828174572da26a741140e53d155cfbad0b906b3274560c87803bf681422f7616d?@7zXZ !#,] b2u jӫ`(y-8r(c@> "}|# o+F.$@2Bz^,!?򌱋i !3F[0O6 (M D, y(+0L~PfpA̖7Y U5MXiu0yVMD,7Mk-@+v(_;|DA v,fD6YU$.r.~ROF&fZT\AO$beIOzNZ^1Mw ԿO$݂&3?R%"lIêsh>47`/&B4!/*&Ms8O)Wt] nI:TK GP;YӪ0 ΀ l+y㲶'#?>wf|EWwD+{b|hN俭XKjrkݛM!F=+G#,/*JbN+1-I&·hҙjjWgAiY]嚛uɤrl~&=~!4edØb2woi̩E56"clSڊ[Ia1P4Y`T9<7-cXF|A?B]UUiƛƍx qhp*$ LݣJh97,Ēe0%/ԙHBN5'MO3 bhViήs~tAM2!})U .GSo0DI>b؁HBʴR>*EɞQKj)! HWu,4=vJlbYFey G7ne#7OB*ȝsa% p*:,5Q=bZ08+*_1=kHKSūǽK.J*( [/On)sQy9.Vz-Ͷ89L`+e3A{0ƀ$TX!m5qpa+H+r' 0HZ % N._ M\|Hi\gc0YzLaW-X0J=tOZ|1TH 5VS6wɅivps`li\WyFl@ֺ0I.,('u.7l?;co_c $v$!b%xeCF#+AHhDBH= l!/, ;I턫BZ˖Ij;蜲o=F &VwTI#iEvT"M}{?kTЁGX>;~#/fx;Xᖹ0xv!~fn|8IԎ)MwM4…gz6UBfoUohO싔qͧ1;Òԫiua w bbG/5SqWhhtɲyH|uC|EEϔy-fGfGCN޴[D38oFS9\xwgZ~ftoa{88`;k)h6g'O%j qѣ5&-s)?krô8<=WkRt"%#POG =`mMcrEك{o+Ҥ wQ`t*X\z8."5X#mHx4`hl7+ Lތʼ?rEc1pE!%0 i#)"o7 l.6?ʤo3|Ar29`S{5\^~hX5%ڋھ|ģ&Czy(_kȆ2?Og 3McYF}\6!E{eEĨoZ/ҋjeisXͤ1YY&f6190UJs<] =Mw|f8ՆW*K[՛״aZFî>յ) y.k,f8q5|6 C8LVZ攐擽~N:A2ݯE!-ͻ$UV0>-U'._p&HѓP Dpټ&'AKh؁~he֪힖%%۰5A/g 0vw@v4{nȷ?N12V*vѿB`f|@"x/<--˱>EToN'/w]g?}Vq}@"id R}h$80L %Y+Os@lɑ:`vqiyQgkiBC|rN{}2[BfHp2k4O?3qiܛJ&~5-E|X/%M`hmHL‹sȮ'v´s)~%#3J7 uJ|9Q `rNޜu/+@,a8[W/ϱ %Vp= J-+OtWܙŪ4d{ Td5FmL`H~woY&{ ɷWU<xN_rm"C|J|vEZnz2te9VîxT3>lK*ӂaۿ=%c)>MA6f"D^ZHs//.|Ko=gzHS+dsS,`:V:0=/#ߦcȬ-<{M(JѦ5M K8w23 GRL~f6yVp@VxmoC9ěp9,ןec~x?o=çUƈ.?SA.N w_*YRhPgE.ȫoK΃ M' }Ѽ5Gd4Z!4y͒Ɉ[uH:CK|E$Tp0$ ]rꅣj|cFF*~m񈀹CC79]k͈Jfk.v W_ZL>fIFim=EVS2[ wb87=' 跑>=M9̴g _'d'5dc#o Gލ&v RbSP{ hp\p_XK &dy;M@RF5i(p\w>/zrd,OF^u, <׶gyI)[z~L" '0`֐:DtD5VY&,7cnbt'QÏudthSc0o+mwSWLWt7 b4QJVO "JW!|!`ulK >E^|K/Uiי. x7J85xjEX z(7-ot+ʍIp %q_?JT_ϳ{"ΦUx,V;8nd>")E#cȷ#yTAJd#Zݶ[FVAI^ͫ8VR iBu-9PM_:-ږPݭiJ|.%SiY:J/^֔E#3?z:O>Vh=ypkpsKPEe$B~MRggEx6aSmH/D'{pa7z쫘s`YU;r:+cFu̎ӧQZ۬i5jc:OF^w!Uܱp|'- $j[n$.zio~g;`3'TnŒ dPu]&X-Ŕlxb($6cugÑWoúhrޑi ]ԺSoA[$4AѲKt$81#cThUY y&HQD׵Is6ʨ냭y)`rY97 V uB-- 02M  LܢZ(BsU?@26OYN~0~YIx dcxrN`/?i-S]Baф=Ὼ;?P@Z&} Ⱥ1;eڷ)J&/'"Z?f5 _u;~q^\>Wmߛ`Wz#<(پ_U mU%:fT3"o\9bߡMm[/<;"NYr ݖMu19{&d#i|R52a[I)cmJlOHՆY|H`wKU2oMRb >9 w.E= +@T+y!M7 }547 m'tv0k 8-~y}\3 ֏+`H [% |ƻyt3 `(Jhj( ghs'=f?nge0L(&/]:aTOM.xHr{FDdCp뚻A]庴9VxW}w&:K~|$5GDqP\ xJ߬wpYm/&$'ae2 אvW =|c9>te/\ʨp QH]}:&B_B# NQd&=7Y6esC񠓛;W9@Ro9kM k|6ǾU6*#F&$^=H=K'9T$vdž'(OKI,g`W2\Ǚ@5zBB٩"0=d0۴ܥңkAq:.E߸lwP (@R[,9?fWON]Ww6+uI'H0t`du]5EvlɉI! }&jIBwMj7  YTEWXB>XfxzBWpO9!sQ}tt<֏-XillA a5H!rĶ%r09HflF;'7RG"Wr2,BF*iI ۴}b1a{3#;\MtP.EXkш1kuJ,Jnea5On}ouVrC*>Eܼ. Ƽ]CV`ſF.2DR C8ӿ$oӀ7$VA-SB1nt `XeZDWr툼Kx~?oVv$UM5DBdg@}`N-5/R^Ӳļ#,OBCt:e "bӪ$kNj|*$[\H,ۦw%1֝ynĵڞRxJ8%WNs#h@'.N%+n"ߞ\[/|jQaXImЯ'b_=s[.!otn\N->A--/%KI!nLt-1Pu|[LK1jk_;Q0/=Q D uR& DG+Ue% lӯ^b~M$kLnqB/-R7gjZ NLBr[`v&*EZT[dy8Y JJyy| gX$7T0s, ~j%1*b Fw;Yhj˄DtɊMXq/y8M֪le߳)ܝnډTډD8XR@$>M#Y~9AdyFOIJG+!>wQjy5 @f]wn G^ynW1$OfKjtvħxva*56Q>@0)ވ[ĵhtd8h~^O]0+&)Xz Bz\Z5ڤYV7 DZK/}ٍ>t-(&)}Ŗi> (!(~F5Tkw'r~ˤN9±a=gngmFLuǝثRSaT]bCc!Z{h`KwIa3z51_ l9zp݃oFGB`c*Ǝ`#A'$׀0@C5;L ,c"(x]Lﭼdȧ˼=DCG/o+t3/f-j Vz^ӌvq}٨ ]b_xSmBxME(ݗՔfI`}`NJ($2Hil]DW Wq+2z{PJL_#zIըqυoASTʔXHO?KL7.uHDiR?5s3`p[u{)ܰk @]c50@*iFuo_uoFë[:.lg<4Ix'3/mgΌԧ*7k}nzLeh_ibZ',DSz'lwr;OHu8/bWgO<uuYtxuDq?tj|r7S+2xTv6͓UMޱD=82=[<ӏrae^bO%KxI ~csWþ/o@XN.,V Cqvov;CvFdp$oL,hfxzeo-b~*Ky4/ˇgp|>ATbC*y|qYTHC5"=tQþD>N'jaSO$Ix`RS.K}S^6})_d_Q֠C.t .p{[\GqH%{P߳G @36!Ng3bgf;1hzclEhK-#jhfĦ Y abmptmD"ζ=s'jgmAݭ|ȉ̦`ɸVy?F6~g0F\ `՘WJm]Udػ5^#**ڴak:@o _m"BxR2ߑ֛,x j䉡 s'V%}A~ fV޹ӆ:?㤱+8`R]9TL}xi`qR1_0m򐸃,x6axa² }h`Ìq ۵al4%|ġUޥ. w ymx_4NwF1'D# ۳#4ӽ^yȊn sݤ;%_hZxr.藡pͩyPz,A`cLUHtc;/YBVFb&9h齢/#9!,pn%W^ 41|Q&H}7TVŢ:+NRr|y?sдeͲi5 gs[CU')biB?(Aq88a{)A ' ˤQ7 <*ϒj6z jt!`f6У \ f6>.|W7N / xf{Mġ=p"g I3+ +>ɲxRxx r]'6 |@PQ^?*dVIJ:`UC["C$ݘF$BN: m p-Y*>Z͚>l K4mW(/ʮ(^U$ˑ5]WDrϳ)TÝ33Fߋ,Q"(G$Wϡ<گE$P{>9CV%Bۑ R@ ?R42TrM%%\ص͵$M;ҞdH|n{b"DU STSwjY}GZ4pqxѫU:kaN 8ט8K!ˠKok|Xfr~1.S|BiXՍ\Arw\|@wbM\i?U54OԸ:l LJRJzEcct8E~KA HzԻf~i*ߎ% 'ejyUTȟ-Hٚ0ɘws l9o,zo/Ch~̵Z{"Ǥۂ(>t(I㽱 %/Iԯ@[:ܯ F㰅k.aɱ GQE6#ZW}|o1%%׵It?@+B(wz!M vBa@U&aSړKH?u[dQSI/zuF dtK]EI(P`+ ݝ~{7|}S~qk"Sxyb{j IWdq+ƉIؾ`V)mQ16 <MV)\sx O-}yRz-^xre, BGw'\)a#SKď[zoC)TTm$A{~Om_zp QǸV3戃5fg_Ջ@'HZYHg~*[b#Tq;ݴkyt!e1$mo[$n=^z"圮.i{Qt6׃T!;WaEA7vUjw՟jB5+sBtYje[T9rp|K34D!>4'Tg] aQ%ѷҎ}FŞyQ͌O?\`v{O7pעA/́Y=4^4*Qw1ވ6M7h?.]\x[G.NhM3ԁZ*Lkк3PSS}筡q]F7SutKPn,9_N5y_#xh:U.%x I#"w6Rb4-#N+x :"Brv~\iTp(Zui챞9ڰbcs=dC[jbw?X+F6 .E3YWtbKDzQFR[%NC/SwV`UpJʮTuFDŽXpdǙ UA j͢bS|S E0/'+ev?pQ,6-*yDWڅ YK(Wu'd5UOAz;C0r!8GwBop{^V;B" {uwRuvnGlTz?upZ8&(erKm6ņsb8\:ŎdGD|F~pϒI)n˘+-0?'QB]K:+X#~ ⏒0^QY#t[I]&pF]d;l6N~m4n75.;5SP]@-ҘX1ƱJXYqZ)TAO@7 V9^(PǞ0Ux6Ma:o"``C/rF&7!RvqGW/Ǫ\b,?#^Tס5qRJ6^hB{"^m C([xBפ@'} dLL276e&JOBDiiQQ#5> !{$:$ѻ"4$Vaxn_?Jc!&g9u$66I`{\{O=.exB/gR$ G;\.er#;&O7 $Uĉ0 iH/\AX L9tqt4]X(?e_NJ k3~0dx2edړ) XT_ޖK$YKOhU ߰Bk= Y毑2(NykN<#0QQ Pi¨Bβ _Hװ) f-_ԿX,P?jŸ~o՗$@[$qyn.ʀFH.o_.X!LƮBMh[(Yc(keclǭ~ƥS_STqi <ђoF-$(5\}bP+O9IޘDYp9R3I ;D8kM /uXOOiD fal;')WWQrJl6i,iB>Dj\bIIc\.$(+q(w@m] =L#$yH,8)Oy?GQQ6MR7¼# sTmZA16 ]|P Y ZqǺ!t?t^]a)uwŠ `= Ppg*Ysm`LL}HPddr.Oˇ&P0J>ɩu&,p$1:YDmUtr?]֏8S/iRܱmk3*x4.i 0+uHBD&t$!"zEfwճXކudIOŝ>Ȉߙk2щժuAh\~F07CD>-+RM^Y4ƥc R%TשG8\^ٛb Y^V2AxGsA1?’Cأrv:՞R~ۜm`KiQRf.-⪮lU1vv+0TaZ0d.i?ٖr G^r7IU)Ǐn y.i<϶o]|ptZ34O/0^)TTCŻ nBcIl~|8`f?>~$e; c:5`6zy/.jr'Rg7*E Ki|YI mZr!P2y5+sˤ)sSu'*<@.|Sr6&ƅal\u"nB>XWX2vŋ4x4txUH9T[Ԁ->@2tѪ&4c=ijc!<8u@2yhx_unܦzXGG/[Qc,S2ig톖NKZE Ff#rKLi1h$)EŒXMvGP$/+ 2PЖtw\␾zr#ִ~UV nrJQxT Sƾa}fo[x -=)ֶg mԷ]rn`O$RֱEӅC'@_nzpoޮw"L:vux0¢~8!c E)!a5ͱꨗv8U&ܓ'w KT&]o [{JOAEvrh.28LNz?\Fz>T@5 A/kB'O/9AbB .{w\uێI+I!l<ˤ3c a^(c 3ngw70R5oc3X*b 7$WUe-d-8Xv׹p#;Q\.,IGߣCR5IX%-g6B4t;>"=S>St-6T=P'M[ mZ3 [j2ޏțRR~{`|pTC^%}Z;5~_nx<0CFQ,pKI%4KMaגBBؚ*,IU)BC`2mig +7Qm{kl!W/Qg&Chclp~*L&G*y_ k*o7'ճ?u 9ɑES9Jv$۝)vFZP!S)x5CG!02qk/Bfirf\H}Asr&&3w3[#i=~_rY`gFDPւŗi 19n qE"Om$@dpV({U1$-Gk 6ҁV[|T_Mx*>kGT}a SNWǵ (s,mtjz k &z5Bo1j^e &>Y'ihSҳ wň=៉[JԊEjS7wT\L #ĭFLNK&hvgAVg({Jon1mRp^G#*ЂF|繈^TɴN!$V3{/m$^j7% ƞ/kzMul+j)uT4[}ħޡdPkgmbv]oѼ C@9KftȄV" zYD5 ϵRޛ,X#gA*X:ɸAPZeKS1n s/QnE7j9NKv>+\*c0~tҍ^tOqqZ#>B7 ߲|1ҋJR4פ[&,i{{ 0df<,PLiIN6Dw]LVL=Q9! g.Zw9= n+B"=j}HnVb@euaMZ L.Bs<&)˅ ֘bŵW!M>fҁtj%F&*m|eHt y뽧s]]Zr:nMZއ9k4|D|KR:2ʖB#&'rm衤E44= {D?&bk 30[KIt~Gx)ze=[{#YC7}hB0"iLd[ Dst/i'Wqz\/fcK>."XYVb s 2q*(ZWհvڅg{u8jbm. XF1S5FwC@qf*% Wvq!KZk_ 0YEi|/ @}{<-/8Sj?>~t'dܮP5d—,Ga3A)A~IT=>Uh9saE=*:=!(4>&uL„r$=P/)20l7c)mUzYW7n'JS3;;$ErT k#ʨCrdImhiBϟ/kǃg|Z Uq}LٰϽp}6"4!PRᗮ7]hL]WDd6zAD%k~YѴoKqwAF^.4e Ö{Wzx[>7Qr} >W X|dygh/c2% Qe2/ WkQ9.7_y~v}F\.Mēӓ VO˭-DKKm:㒗jSe.afMwKSذ,[4xY&SS[<~g WefYK71Ο =Fm}=%'  ^*-X: ~tEy6ڛgbwe~*D#f~cGځ7&!Pjg1}`@*ܰ!B,[%@^k0Nk~k;&BMs`͍q^Yd@ !3" nae{㋹aP1,5٦l?mVu ?@]5" %H]iXxRYM)E(X VTMS] ,]DiPL5>*Ut%Ղ'b(Wd]JQĠvg{%lʢn/bbvW^CmFS761_S|Q=DcHsŽ~ƺ2FO/f/ipMLݪ/S$?AS͖7M$Rvg.ހ&N'&NG&sɥ6zD ;B5䕠>7Dn K@)=\~) aCXvbP{~).v!,\y^_z qJ-e̖eW<@WiQIuۆT g}PܦDP*r q-\0 S=8v3 @G40i>(;C8$ɿA+UZ2I#1Hf]qc>f_Ŝ뀻$#`tjЛToNʣB_C"/&ܸcThCv&].IU{T -uwҗc>ݴ>b} Ra'3q9)u|@I# ;Ar"qF zڏ".[Bەbin BͧpWKeմU6ZAQ=&4 thOhS0LsaXR#iH,a(7f].u|44+yGe.7r+H;t*qQEvʎ"ok38j:n8&*`Z6M= *0ld}Qax0*Iܒ.«%S4b)Dʌpޕ$C w{ΟuǼ*H#Y_י%I #_nؿJiKJQ苹T:p5 O轗cQE!vng hES'#9c sCO&ʨS|"CELءBj P<&U[O*58+R6E*pp-^yDNrδH(Ȅ%?E "KI5 Kd=_; ~[fT2_"JPoexM6Nf=KD00o}l`hK[4gJ'F( YO:ÁÏ3Fܬ@sZ}%+u'._KY; =+\̠T_!%apO]LEDTȻmr˞\ VqNk&*w`X0G;JmG?jP3eI̠SǸuarX&p[x*("pߠw-[& #HLݣ;0!)@F+ql в n?l&om@q;YGɍ.ذrԂRLv%Rocr/^Gt2KLp2=KP̑G+oP0_ Q"@BQ/Uy?N'*Z-p7K& .RvvFw⭬]e."I1fDGdB lqZK 8Q2Ga ~'DϩosD1dykn˽7ﰡ.ϛ1ZAqr bңx,0sz:kT۵d6{v1ǥPM~1Zm pGCVa?Fv#]m0#&yAF񥇍GLKC.?\;tYyBa1~%GJMrM}1fjIuYYŹno\ń8NN3|w['#n\;RW"RHd,EOؘ&tKk"k1a}Cѱq+ﱶ~u;-B_r5" >3[?;`Obd5KVb2021%CnqQRfBFzxOv$wxr-&[Vb' PZ}Y@x0i`.m G5O*wި1uk-ւenN,vFv=ipg%?zG3T-Yf%{pMI+ /jYn,[eX&eils4DȴSdg\.^Uy)?ѬjEr\XY8,K&v$*Oxv\_TE6_?"Fa.izhmQTuߵnSj~wG]EZ e vxYH98MNSPPLrg#Њ}uyl%KO<]CA頻G6t)FkElku;v Ńy]bf1s ,'(.hA=ab3A'82m6 _o?]V=ʊ;҃Տb֬ꁓFQ)8T< ~FqA&s]͏jhT&N oѸ' y(cZaB?~'*ob^| Md(eLXb?CL`hW8R4^7BA"^_hӰWs'Qؔ>%W/L;{C2M :Ol_;"L] 3ܥGRS_@eJE@+C ya-1s?A_W GڟS7~lRWt|iv>@)岱f*NڇpQEG M*;CH Aa&R~ZD,(C4qurFe|CCSrSN:/ ;~V <%g@';ϫ()5fz>%JBN*iߐ-4'?ocvW8&($Dz"!)kNtƫ/L-ʗ#=e&B0*8n$0Q,ў QzFMC:|:4 AK:ĹOKP񱕏?{`ԩszeUEl-*y]B'A ̪[j-ˍHe2vlK &[f~Io{?:Ǯ^xR2/]f.LRzqy+:m3}hfߛ8MVd&J=[T1w>R2r/eQY`G$ڬY0Z?F/bw `gt^oͷ;:n2{BٰP읮#vTd13gAiTFm5n?^jc3SMaDקk4=ukDfDv}keV@ȴ2BU%cZlS14kZ9bJ2B\dOM@v?9'`IfU_&Q sWRli-;ҫXV kjP3}*rEem5׮?}Yo`Ir*Y]JRrn]zF͌D{/A8߶K̒ n񳽷Rp[| 6xR8sݖo0 {I1Bi\Jn\~u^Q_jX!\v.ޠ:K{{ G 6-rؓHd&Y>{_H)M9Quik*KmY nݐ1zÑc,Kr pN ^l^})_!j|2܃+!7}p&D_XKsz \ \37 >2OAo(Z>ToGԝFd`F~zidxVP(pN~8\#?۪"Y^S^بB@ fLziy}u%JMJa6QцcN{U^]ћE ܡFuTR Jq}q+L[L>o+]:m3ўqp/ F~V6(ul@H ^'n4. k\}xˌ9jl_7Z֚Fv$ JjM#9&M'R,꽾 [+ѭ{MۘxŪq!ԁ b+Ys(ծT5o'SX3u.ż'/ú;ؼ;p;},̸ w# ؀pՆ]!nr^FaӁ(+,܃ܱB%8^^uQrZ,Es?A߮E-)}7sQ''VŅLؠ˜ Ύv_[W|o@ ,u"??yieՃO\pn'#pNAMg1⸡kե"wv{Jovn811!A(nole{bϮ~)QKCȂ;&E)l)eT0:kR,0LSFB]V?2hښy֔dF m{Qq?TX lk[vKwyK Z"{Þ˒ƼnƩwsdc˙h[k@|k*UЯ"]J..o< e:evz!y5ĿI`8GL:'t?b;pBbv#>? H {(_ 5v m  BVJ!50lz ڱ %0Y9_s 8u}~&FZk$q4Ѹf0w'tIu Pl3\(ܣHv$b;s[z&ŁIȣu!@SO]Uy* Mm9N6Lf4(]\[YmB\X0Ev!c)MPUK/0, d,5)[j`/$mH娜Pg ʸ, +TT4UQ9^Td0qF4[L]i~[[%B0y.?#Ap(m=(0<%:˓n6Qÿp9=HtLbk}xODq(riZ:P5ѾғA/҃Yc&6ySytOHbnq^LS +N3Mϩ{1#Ķ1Lhvf2ҥ_g|'4!-4-ݒE+I5˭_ڰ n='\*/N`aQ6!91uUM#I &!S t6D-$@j"Ŀ3[˙ZsyP5+%y8ԪPW@AԎx)pXƣ[O @LU :s8gt*0Cc9ֈE L ;e`M(<đ??{t9]7"|&ےń1?&o[(M6?r?ʱ):[!N]C2W68 2e_VQBW]Gzc 5QXķBb[}E|=H] k_ެy1cOBsE7wcn` OuΟB sF\Y )8%傟09zuve/1E;J3IKr6Q=ljCd;EMcDg:;|*_={DiԄDLM/0ſ&bhCetBro[@EcRԆ~ڃt0uxr[(Ќus 4/g֒r\aeaXO&eT:jdy$,Ƣq1J[w6/I E9gP+f|SbTtE]9nv+ \\sWqaAg5ť MAKE2G)vwi!QVN Z=TAsoJ+?㑪+L$зz5#kiH;mCEߧF1\iIWA5vBCG՜KbM &6nqֆyǙu=xb{w%~-& 4/oμh*5WƭE1xJ(x`x5j]a^iH^*&h/m^ P̽wLD3it6ڎoW`TܚT1%neI 5ђ 4iN#l.M~$U7wR=/ R'@s?>O/Q3hDkc-~C`[kd#c6v ?Y҇S Bw6nxљ=eL"{V~1R\)4`EPᒃ OZmZZ-YĆi3&dtv2DȔ,̏l6WZΕIWbmm=W)͈0.vJ&ZDM}tbL,Yz) {lytid,õL}7JMX^*;+Zc1TegTJcYمpXGQ{'O?R.KlTg&+C&W]4GpL2}J!D۪2O opk₧РErRٝX~0jM@CR>-Ly/' E4 >!}@2\p:aO+x&iU쯈jZ$ [d>A6P|C|n:{zyvr[p>>czL![1 ֟ۈ*L5Ghh窟mDI ԁּ!J~zX?F$G wr5Ri2'R;ܪ^mƨEOuNT_ Qne_F07}6ِgX\\4 KγN2i z4Q`=!CZgɿcBeJC!ieFK9:j$WcT'W؍f1jArp0|%#Ս`m`VjӐ$xgfSSe.GJ4>"1"9;AX23XBG& NJ1(3' XWs`5*w?퓐P1y?/l!ZC ΀Lx[KlMޒa̽Ҏ$pCK1͢-gQlБ`Ac/Z[n#6~8@:J=ehSud%v:BgsE{b)|ȷOeSRC46q;s6h0 |غ?.>Զ;#ُCEjŭْC]RP" 9/w2uaf {ǓV (B "~!J4:Z`|wZ07~上JR`M6Z >'<.v0$ hmt_kbʍqr]R6PN=i9߀@o^35MHl(A=Ei;.g\+WԝS-$|SjWgo# K1F(*8{&h,8$9j'!W@QDz}OK6{7=\'_GоI/ ?ӏu!"kExX2q"MrV/X,Cjf~-J݉ o݄4~;BHPKA*tf=3ݹ1d1ʱv2=85@sosuj. nXyI_13XO݅C'|c$ؚ jAي5sآi\7)eBQOҏH MdPAŞ*&cHP0v !@_= $6dC?2Seܭ1HZE.OS&~::A'R)e2}_-{.FCm MM@Z{mc\O0em)o|8 ٵ|qfX..4MTcn^yem(d83@+_)̊je3>k-Oʠ3@ϫ7sX+hnݔXo)1~Y'5d#(_חt: SJKC c:p0^E5G@B 5:(ǏԌG& CZ= S¹2ez S 7$|BYsI $d ?2+=TAE{1gX4bh7F~>LiE@9ܐbA]Z-ϵW %E %p^˕iĀ :S@c`d@=X;`#q:[@k@#L(I|:42MEopUa_ve><{<3x:9G\g<]cnKwNAww5 \-`=X @,!hXf4lP5u(X]JJ"rkz2ib}\Wm2B̼7U@NsOm[V(\ݍ51D-nHy7ZODs6&}I{ l{4+](3]ԣOT:EQ/KܒP+-nXfw}PWDCDCE`eQ[; %K=nZT#^C܍gyhߞ K@]9WH-Jf9nubx}*9_luAy 2YA 6ŅncV0 % Ӻ~Z9N'T/)сokeH tG wX5o,zvyos=WIX(:J.NĘB5oJ&4lkdͶK1ҸK Q>=s򄽣l]L-g,N4GSIwPUA'/4 Yۘrc6љEm(ߥct­8_$nBEk /wNf`&}E:"# m6JF/m>UJqk! uZÜe<3Ā㙥 `zJ'D8)}UL&,Q8>G, r,iy`mp+V B*MDc"]hUhxI܁q00wmfXu&M {*Gm~XPZWoI'.[`pwAJ U-|:n3]P[1(C|5Ȍ'ؚͰ1nzXv^]j͊GPɯ$e`PGpnpc3_/q)!H ֓! ,esBYgIWrLcvw/su"}V]Աz UXտ7Qo:*ɢWUYy/\frQU(C^s'o0}tγ\W$2,~B? }vEү3\xPح`z4]f?wIpJj@Мp,pߨ1&LEȡFʲދAGߜ7[Z۩WM[CL54^MXi ?;Mx"u̙I1a.vȍ}} *TD >ں>-ơߠ-9HrRVV z> X ;dж>r9.L"`ʊQM~/1< eqOYSUֈ\E^VU(Cr2#T7mo9 NI!הD|+/~ Ibd*ȊPh?wNҏAD ]T1zta~ l6Y腣QK *꿗(?]E4 ']7>MOM;H\)]q6ʗ*@ 5bN ˎv>b_~m8 zJo.*w²v [Iȱt|S۷+YG*Ա@ q*Q>)[EQ:pT= fTfJ%ܡ #>mWe'{BIŒ(5ImwP LPhN> ^@Kƞ6 7mۤ[-7`t~E_F*av]%Eό8`Zج:uXidҙ G@F0c<ܔdI*CΪGMNt2BA ()Dt\ٖ*̼ i-חFO߅u_yvDIFFmrt7a ]!Rh29/rnJQ8p- +ZB |'x|WnmNghMtd)'_ׇ-S?FvfJ.Fn)|%+GִUATz`?꫹h#tSƌAVi+C(zƩF)10g]Mije ڱ¹Ώ5deEP!tɨߏ IZĩՙS`C;Q[fN機VU5s˻)̓+)gX@Vh#D6iZFU`;1;q M> 7 ?=ی^-=A*2M[}, l1whع*991+u+!BDlʃEel\2(Mj Jua߈,A H@'xW%Xn  oGz{ͩ읶"Deq E#c w$A~S9+{Lh;}(7[EY+LA#QgZlȘ}v%p i:~{Q dNq4ķ;)7:\U&<2[Z ": ޱL^*j[n^E_eg,`/TT@1{UFURn!}VO+Z{ pCEh 2U ˭]br{>1*+(ZVVk}  +X֎}ƛ &ǹK;DNǪ.hxF{jͥ= -̼`zFd܁D OWy*H1 GՅC 8?_tZ_x| @ը&A̖@Th2n-g't|s֎OCҮnQeyC[k S!A9(hQZnmP͑^sՈC&=,,vL*Ϩ^r,=lbZ`&>-DzHkè M} =voz-og3I6l'bUO',к\[\YL̚%/|檰 lxʕέ?j :N>IRU\`ؠq-ޚ+_w_TaySA ?~4v93c>5ZtoⅥ'\dKf>]}`c[Ɖh+?/}u-A ݝt5>wR 4,8p! 3~PsiH@F C9e0D]zE͛BtNLd2tٷLGi3vF y烐緑r^/Tw oߴ=}4b#f '`?ˇUw HdYRkOu %PѮ? vbUN&cœ׼<еdLvAr4:UC%t엙J.co΍,X4*j[  .A([!> 9^ ZnWۆ?rFn_*v“mp=j +OFVj`_xD?>$\dظ0*&tO$K:)rZzov_ MPJ%gĝժy gCa%iWh][/ lo;%;`Ǫy`XX-/ 9ߪmgvڍh yD)GڶZ{"7RtpN̋9WSeZZT&wY22SݼjSXܽqRe^SVx%0B|ؑ䊲kv1\$WorB'%P P!oל`"1qX(֔%86QqO=P^;A?gނ2L0y(׺euSyMilxΏgf wAMRZ(†~\p1JITb83[yNNO6)B(HyTy7%o E~X$ČgV(@.<*L nYRZrCf@o`gxE:+CQ*:<ߡ@/,}p%&%B)wFY$k}h΢|"r\v3Z)k^{csAL~yvd"AyGPj%@or:k.€)T_qys *e'jJ(1F]r} U@/]gFw IC_Pzk}ӵ9cv~]Cpe5j^(`ɣ%ju#}t,n6[>`A)5#܀nN2aDs٦sZ!5>xFy@q!5qoHAs*}Zܕ*\^F6u@.Y?ۆ PFLLc(aEig7]P;Z+)FB'pd=hSQ{B0]aj?/O= 8pq4@ k5KҲH\4E*ʬqPkY`kL2Ӎ^8TRؗt.z8D,M3CG^| HIAǜլ¶4/Lз2QWG;uAq3vٍA]i_%qѽ.[xs(]a9*ڮ'Nuxg^ ,[WSHjS9A뽐(dL˥/1tuB >T O~R&淗 wu5 X84-CݱZO=, ܦz6lR$! :LCUyZNY]{ekҞMɸ3uQ,[b7)J,gIؐnԓT|@m8m2_m>< h =6n"tŽ) 掗7 '?F;"̊-t1]~1PkpxY虚yLd,!mZ;8VL 5%x Qً_,5Tl£5?/FH԰2|WQ2E` fbk 92mrfc9P}URrS ^eЗGxKL{js؎]4QZ{ڔWHEr-ՙL -WZJ}WWI-Y×r7$bF(-独68x;sb[)5z3X-?}1BCz;)΁-~-nh hb 뤒'z_{jοp'>wl:B'b;E E_}b8fXibְfŲ69T}گwfdr+4Yا_h0Ԭ z4_n-٘a. hMo`YαݵoD_u4ӗ0oi[-PJ%i4QAanO,÷nmL_lJ(0+~g)Zm*RLݭpo˪OEn#"iu#ǜyʿ s2'z3B u0f `~4|V;ޱNyX~":_KB z?; -]|:>"a%mf^iLԽ0\@35V`g'%^Q1^g]PˠhF;z+?,qpU)WBoԖď?iE)o/n8U"/̓Hy0 Pl$%G$6*"i vMo) 7Ջ&awd?e})pY@ʼnT7=."HE҇]-Y; sO޼ڤy6 JkށHY|#u ڴG1t7߇| u: SB:fplFp!3IG Uwŏ$HSWj׊Eqs ;nSAhV栮!wekڴ(?ȼ.Lؑ9Nc-dJU>(uzh4t?| A=jNX +YBl/A|e{V`>@@VXw8\b@->»35'lql]|rQ3#:Cxs.uH/i*QYH齨;hm,L[ܦ:a}f}% ЙY jL.'LZZ|lo:ūKoker_RӆwXi]E?cW7h<+ tsauI(US[1}A*#Ō; lVCnoD]Td')4q^*u+.N\dD 2%ѢnؾBnWt#Ҧ ØLD#R<U/N5Նv3tF`AzGҔjj?GC(٥|;Ww™͋C,(妯Ry1dKBV<]T>L Aj =bHi. ֹ)3z%]w;a o+&u  ,\?FfͪǕ4P+42alKmUbj7Ɛځ0xIM942K2)z t;oV خc3?nl׽'T}3!Шy٬OUf#b\|3 ,x u)[ _H,hMXr s>CD;~ٹ=U=Aj6ƤtIhwLla }&9jBw0>0][2z tTb3G;FzR?rBA$wwY DJA.ou 50|?h129,jПK ۊAZtw!/_]+*V?kS>eҝͷ$?VB;c2t !=am2 xeWދYX&5-9EL6D\ ^\0RvՌ}ۦzбle*g[:M[ٱȬؓ$́0Z}zd1} ۡ"4p֐`F0A0GM+V &,9#j(^爛WFg$bWHnUlxipaUt]8o"ڿ(xt~ilTo ì)zR(o}5^EwujXiSw8Wg䌗[Ն] xe 'KdhtY02vro 0b'WOl ,r`5R9\"%\8S2FjorˇwI"ߘ́5M5;oR,' ;LĨi2'H褃*~ѽ$$dr٣ 5yŸH5WR;[oya0uv7Gq5V *R]l,Im}Ǘ㍉S*;NYC|g_aA&w& ȤePp, ~00w _Ay#H4B_0ta]PFWKmV߷"Q%rLB`ҾCj}ҭF*(EYz0nٙ Tn[OjKE[TNfz8bOT_ &P A~~, ^rf8GpwjAd/شPVx qp~^zS4cnQl]lyVto>^OMqD8c|X++f8brԛ Am2vm&[cLN*FDwƬ^29U{ޑG)S!:YR&ޓ^9hؓs=L7^*fsԯk8m#$y& pƓlvnC{[h4蟛`EްD.&8탻TW8ň_S>4RFod#*aE7V5eLPf3.T@:b|o-pρޞ;F#.@](%ۓ~,ճ'K78MB$7sƔ\dq6$'jG@y$Na}+k52iZ=Ls3WԢ?v, c_lbԝ %Vr;t@,?N.Mi+iȏR:&2S&4gW ?{Z"'}ehr[zߊ_M[=O<;hfȩHS* 0Sj'P3r[RлiIʌ ;T~BSɲTz:*7jW8w__WS dQ]+&26MMڧ/(eo `&?6vF԰/ K\&9 +X>]`ŏiB|8ũ&no&, 7s\eH,qq){>} vdr>FnI9YiXF&jakydsKHI8iB;^_*)ժ@ha]zS,ʹhk݃`䦥(oT  }ѝOuDie|~. Is% #thf*{>J?a6MPA)ꬸdwnԵZ'zs:W%cvݞđxS~?Ǖ,OS]g]FpG$yQlֱ;:D ,ΊQY&KpYxH:CaBճpmQoeYBt "UBYv r|4] C;~er @$k2 "~|v?sƇ{6jga6X4d WŠNC pviDUc`Y[~_y7Yt|P}M۴}[vBTS~A"E7pxFN-ꟛ`9𐓩DH#W+sjDw&EA?@V.[XABqca[RߜbQ`_k7G[\%CljdZrv_Cc?SghzT[!+I[zd*wv% =j4-e`*C`rE;7>Zqd5oK;9 [8ަ9/ߖtRIhŭmU_|*<-i}j| =W IL;:%~l-tZ._Q }3*_ѫ;hP v2 7&o.D<2xhh}D[fAI<ӇpZ@X<isH"pGie~ 3̎UGRJ9sqN+Zv?XH^|GK.me݇ЯF m34Z0 ,BLUf-ȪbQc/WBlWU\BDҠڍUz!=OsAרx\_[a%ŦĕDgw_xmO&-Ñ'hHDȹ$v2m/p϶d,FHr*vTR|7=FaEFOQiu+H! <ЭmhLJ6DPJc9`N$e! 'Xq~eĮb?};bJ[aUe|\İYgߒR/eFfT\Do*@9ѐvԸYv <ܓ|p'YZ u3!3 RV6ѓ-~Dh %Ѥ8*/dG! t> JLOYus"M%#!sY2Uxs#~..`칙Pv߷M\5cXۮJ+¼H\h~$Ȍd_ڄp~%l(;M8K)v|E4o ~fY&e#fW"xڜ="(oe7ß;URTRx=U6ێ;~x'udDg!G1#oӭ7ץc/s EDqiJܥ/ 1ә"$M5EN :L]yv;|ияP3//p˛销ՠaɻhgؒT dLA%BwCҵSRWe )$A]gӄH!S? (@r%](c/w#גalw+ K-b1!{U8X+}!uB U(*r\l 6ؒyj+sL*!>ᰴ_;#ӻG:eKJ 6(ܬ+-R,|1سc{݉1soDvKH J`zL v(>E7vY1FLfBd{a:#JW(fٖ(|y/ϣ(|X;x09a3հ0u~8{y' _1~h MgPK%ۍda\a]̎7YHs3H1W"lXe3$:ǗHĊA1IpӟÇV$5evNH-i=v݂`*bNf"rm15*z1.9yF?ax`BT/5o?5lGVwGwTGD~kobj{ь ~r!G^`Ã}i:XILJ0}|waE6N@Z566%x#b-6~-<00Dޔ#UxyRH;00͡+ i㪗/5C? N<-25 >#Ҍ̌#OM,K6C"ݦU/6Pud%C$#59mi46/ t(fn*fY*y ==QbΜI`ً@rRlB VTl|=uY+1b(d`=Vgd"!}z>ityr)w3OFa^oz|1 ;iųh9TVCGZrfu8\=»1_qc4 yg8dk)U@J*FV90-ׯhX8+_PkD5,|@^/,ˢn]6&=@6ЗDx d]CJ0 㝁ursˠvB?Xη' Ace5z+}k'@ <8OYlZV!=ytƦd7lHH CarЖD{mǨ뾯*8Խ gˆU}S2Tn42F&ʆ+BgRGs6 DU%5D `UVƶ'utĎ:7x6Xu9(> ؉FYҭq>l1w1NR<¼D䊈a\u(Y!ټ|Q럚. jkAQa63w8^ٜMxEb0C!)F֧?L4goF$w`n3:<5xj8LtG A  m*m( z:goNJq?̀;#o١{_ɓy,k+X3+M"{Y2 (63U3Hs ʰ%FXoZ]æ|y "'VQpf 9,RʓiWWzgԼJ+r~/f 8WaNZA&Ew;p+SR%Z}4tH.v"f^P=Y7ՔvJXE?ۗFB"!nVR'Y +0v!jFؾ1văm1s!sNX:s a'VRE&jpzl(sslދ٤Z ,]t(֦y$eUd 5 㢿]hM3dؚʸg胯\ev_46GACES+?a Oѳ6I՝&F&[K Y<}0#gG-U\<vlaX@<ųdOSX^N%2g2Ț89[J_(/SB9iӿrE矏1+<~Fk[j{ o!z `N| yc*@d"}9MyV"elpKm3 @>f.`=*hr‡Ii:2xF>5= Xxib-2Uao3@g8o=2[^ګ-x9+EfGΧJwuH3 ۵jv$&ROF"Y AGpWU#Bg`qTeHp9@şr~gٗ-C',G JI=dP8Ӷy1u35g\OYЊ=iYgiΟ !JY]X#f):+{~u V8 Uv5,MsK}SUUc j3h͠⼶0' gGf3!6ri6ǘP7v"VS$ѵ<=Ӗ+P)DtѤloΛeʍJ mgƅ\&ĸo'dkUˢA]7Z 8 hQ T <+AûV  m~ەa~~\!3%=Tpr,-G[E.N\gtk%X5T4b b4L OG@i@^Ոu߱;{:qU{I|KQn5 h;IKZQ䥓5̎0U_$">2jjmkC>UP|\Ym}eW=O0-]8p +ԳzlD\c_$Km@U!kn2ZA%s]Hj `Ut nGv, ǖf-ȁp2:uG8R3/nH:W뼤̡ <*G/4s1/椩$;aSZ%q`٩4kِo~` ePR?"9X ,'˧ >HLJ}?[|!]Dbާ+Є%׹lYy!])xmfFL?5.BUH sݷ3Ixx-Ԑspvb PsaD/<|&%W}hr`+7,lqYC6lzIpgR?78CwvU^;c'g!c.8q? fpnAêTă3%# =+6 p3?fm Nd[09F3: 5`KK%BɁ$"k]F붰ǿ cvT[m^'{V)yhwRbxh30%8Rkxk_n'3-Z2 }_KV^_6\9 lrc 75쁒 pX,LZnvhj@"o]1fp⩉*)Pw9X@3ƹDQk)qTWKۏh~ƘjBZ5d @œΖ3.M~ǂhvFX^vNPjohDc[Ujr20y9H>pۅmu:^zOߜ\] ֶ}2IӬ)tԧ;@N_F^\b8@Ԉވ0yТidw38zq,}"YDp0`] H6ahz=Vl݃Ey=+gf{J"̷'E!Գs"/א;CO:Tm[#/cIU#NGA[;ؐsiKL+X]Y}8t;0fS]LN":*@ ^.w8rԗ%S ~c%Y\ R}T^ dY]*saSgx(``{9Az*doEQɀBRfjM<4GP|ėHa "p:nlc%G}vNHMiǦ kK>פHl^m&&I~A. |NJr1wf-IX׬DTg? \@|U]'%MWKA_CgxiShDO@GlȕkӀn40{OYjs[g6oщ\/аѽ!vLD-CN+`!"qhK@S^1 MG>}ޕcB) H%~h'x U%3`YI %v \IJ!Pכ0{WZ) L3PP3a' TN:AxbKx1{ gTD)E+Y_aX:R!UFaӫs~ƣ9pte= )]՟7TѩXo]HLK(|:cɍtCɄ M PbOw1:>CJʓ:d7lA(iLyfE2 ޘ&E'l9Jo|e9!Pn /٪߻L9j $?p[%T[?W("+| I4ʯ=oΰk1t6&Z,;U㙯 _ +6U/b 3E6]Je7l7\snPpXKa ^SC1(uwX@g~{;MHnl=+z$1<kȣ%5cҨ=)2.-7Ow𐳨amV qzd%hԗD>QdC|_٩p#S_0M2Tޖ[T1wW繲E u8|@ Ֆs+Mg ]{[TVLidu>"\}GcuANqZUnI@gbQќs ̵[G׉q|n'z(тat5?DEZ`Ҵ(@&%¥ބNƪX#ttLD^ZJE>ܥ2s,DE  z|E%,UZuM4ıi K !=@lֆ}QU.mHc$vS2Zގf{qX̘^T*){⸄ )2eśÒg [UOU7<^[ e4@<(jK\TG.sOrß{0+Wn)'0jR]fc1(ؼ'U֫\"az]K41˿_ghGPSuuDϙFLÅd3OUJӰ!Ņ)'Z$#,( :(N!EfϝmX@tp57Vz>Zmd`V ⃕% l#;zⒸ$ y q k> wtD+fE*E}|2;]z`OE,tmTs7|Ĝzg0r6#%5we![B[l`2+ueu5ɂbD0Z: ϐu}e,;_WPM $`P ~;nb} S5W4z7lWrpGY=+LiF Z?wa+魤ߞ?NP hр= T{(3EVi]5՗Nў 8$Q62007 ZV<=?87 ӔΦh\uKï-sCvQlB[&#IRTf!PG mFXS^a_8["2B16Yeۓe}>n$ ?:m`V /_0(]v `Q)kB7eEΨBn6o7M;\>Q6Qz- $nLD̕܍H#|m1]& dClfMAD()h~bv\ p {(epFv?ONr<^3{-5~V@̄y0T{kès 3@?8P]tL 0M5xqGWDz''H=$vU=:&"&몣'8Z.^D7k>C\nG} ִh N9R_B` ΣL7 e c* '_ {.?=)1]Z޵ XH\G"Q~+e{JkDGwaFkccY|Ƅ{a m`GߧT,2l9@@499V ##/DrI40tz)-wPeȎ~!׼QEF]&9?2MAx~拮VT ՘r\rOd;Mm(Jnz]$؀JFH׺]c]Wm>ANw$Y8bn7Qv}6F:9{O >7nR:2Ȩ/ -XgnuNъ4!%&̽& ]~~L+KBI4x?#ȕn*c~= * 8"eCe:1;H$z mrBL,xE9١RiŹr;2?|A|! OXgy+wxA+ipK}nh/%(uG8Z--BlN0NƻQn\zpߋPgwB`R BngKV0!beAԎ9qL^)BP _r4Xktec3𽝇@ .˂ .|#m8J V73|/c#7hE/ɮNG@@2F$j ztG%|뙮]n; tHf[ (t}}-\-?ruCSirmAנȯC~ IxB*(cBBR_ ֋cMmKou{зr-YOc'rBD:_݀pzGwj+/.^,Rz@j}ܦ[]IGIFGE$а`a떩‘ {ę̭fe赴ۤ]g%sϫxq2. |5>ԥYk#J({3{"93kkK*.K&K& 0gl^gF6m@CnD}5'>p]vcMUc8y=rmk^@{faL t5🰛܁ueY%ȴgn%M `&T͑Lwg>졍EXXB.{}]30 [Yy'g IsJy2"Վ@zej>>$dm豗d)Ȏ[aqI)v2aZoK,T9LӰ눘q>"H %h2vdI4: pil@ E*DmǵEXI(G~Ծ>*`DpZN C&J\q^^ pJVw0O- R _p&zR;}Ͳ#?u-!:3Y:u {ɠi nK4gG 0XHflguwe`| ,՜dJj$MO2I;\$Yby` 5>~Zp(%:3'̠7\T7C*͞\3]8\ }$iY(5BBR,C<ٷw6o|vgTNIJ ?RW@d{s4B×ujgꌖYg[(O|wv.Y]^>w,OR`vՁ3?⫐&c]#8d\dSa!.T@8s԰)X WʆvM#LKR/qئ[g]Cjj/ ^-!A`H)4煈N4J.oWr^[\y8C9@P_ȠϠ"Ҥ_Pd2C3 *ϟ{s%C0VOr%8aHk``(dF@EMzR-‹lu0]]1AFY"b?Iq,  j8#n<7F=Kf &gj/SF#R@6%!Y̸TBVwّKtpR!;(%@,d[Q~U2j9@S~ +kzA{ ,1}v@ -8&ڭmmM=MDEt.8YDJ4~m6 ^!t`fX(!XB:;s<8=dp7yDɲ8w-gDJYek] bsz, eN2{GpvIQpb5z͂4!MTuc?YYr*jIqWH0,a7RTbn3Jz!x,~դԙUv{z2^Ziacv&Gұi$^둲37ƞ%׏DX>(;ptj&T?Kς+y925SlMś٩3@H$ހB|>iDR TFyD6yګ_uc^%quI!3$ :t6^EaI N:eE}bke `A`DC*ԏH'ܒh<|yGO'.k4$›lSܑ,KG CO+F7[Fw;CXcKbue0[{8w̐eoD|lʯ=4}hm#rgXUwkpH3,+J(H7o;d<^x ٝ[L/JNk̶6Vz;Ѩ }ךŗ6!P?`鳋2eBN& {(~Y?nlZ[Kٵ)ki$2X&Mr `o}UA 2^^j?XN6W9RG:`EMyI+[Ʈ=oܬt$Y1.F] O4AᲤf05ڑBAEW Nź,w<pH#O"g !*VG%D/؃Cz\_)%װu\Ⱦ|DG9n 4O6خt3^:gN` D(dE& 1y6Mڍ՝Iu j0g:@,mu,wIy'-ǟ ïǵT$eb)Yqc.S3)0ֳC?*=C۽(zJ=W#|O1ۀIq 0~z"p3(I[=&lM@ ]T6 7۔!gdHˀAI慗Hebr q~)"lOwquL꙲ZqP0\@wFZ{0+LfQ#"\\GfzIXjRYdz=1q=ЀU;>2׍<oؠ$[_RPIJN,Kkc^aab U؋ >6o-*CnUMrdqL8HZ}#H1 it5a[jW߃^,\;-$qgI,N>R;@Y+TGXbk`I>s?#s!Pmk\ a /<֚H6[:cV>GF=wܳčQajAB|WPA6g4Oյj;ح;\ld bQ,E:?cI_ f<@1dak?ls [N7 85I c dT '!_ <ͮaxʆi?#Nk`/<1{A) v^$je>o0y4K6=H] \gC{i\ 2jח. fUa@;&Z ]sUnT)t0(LlOޭቤťu9f=91Zv283 O=*^1}Wa dv~ah ,W$g/aV"Rln]^hOLI|ki3V9b:`_`HyHJ:xV`VWI#src2&k rnů ^ϕmW1\ A΢aÔj@U;"N~,+`,ʃ{~sckd)kN5*m2ʸ͓`LƺyYt*;+ :vX!Mfp/_&K}y9}edg9e־au%K݊$gL糽UEic|#òrqN``NxZc} dWy0Ԅ*YB>9ϲ++N0~B9 wX66 A, Ų+E0I/1Mz22EŒиd:H/<V!{Cz?O(r]_)$wx0sLJMZj] )␴ I>~˜y󦬮7:x-/hm!SPۈ$#0_PCR'ŝ:v)n pc dQW/Ag#OMv{O>R ]"o<8aV$QƖvqf[DCA>.,K)p.v5ۍY1+atJo@Mapa`F+O!^{U5uxϪC3[f0 gO&] JnhFҴ Ni5sz^2,J$y 4TRS 1?)nDqhF& ]s9OI7+׫cx&T0RD?H? }8g0tf^WrvR|fwz],og[-p:V>ЊBiW6rk:7$$;6cDL;I G&|we`m?N~z M\Y6F;r 8w#ᬱ3GPdq)&Npr~esx}P7s4)o,QjOȞjW=GuWN"4\5۱\N'I0 WLvnP`Pòh/^-MN*?ϡ߁%'aaнBu;3s3dc zW۶KS+-vi% i3!/[2pJR0 A|ԟBEIk (Tsgؑ4 )^%9~7j?m=86-'cĦ 0[;.?+h.QPw>6F%MNJ>A>Fl#M絮'Cl@fҵE{H`R!nYMa\|Ctc.;8)*\ˑ ׎۪$ޅ}ƱKZNđDl½FL**.Uj,e'S"Xal<ے eQBzl" ƣoc=sdcN%o ovȲHOܱ`+Lm_J2+xbkT ѸÍcQ,1~'ұja|O^uo;}& e?:L+K,\|Dw1zEeC; g=/.adB#rR`5Q`ׄ c!7iPR)!ߧ}CZԧan C #Xaeۍ_e=՞ɘѥMn Adi,(.?< 6Q~oW|{e^vLzh ɿjbt&6 XS$ФAhGܵ ZWI+ ;qE) 6 jvF"daxΧJc= @0ÄM)inO[җ:NKVI45b 5R^xiFdC _^!/7L.J'3b&t%igb<`:q%%yzGD\Cs ۗ$,6[ԯAR^D8Ğnv#s ]#ZfD񱃹Tܹo ů _x PNuKK[iɢp.7+\X4L3  ]S+k{ 1YE[ xR>f(C&D RfAE?*Mҥ"Mߵ $HÌg#VqM~ϸJXtƜRSچcZlŷ;д$Xh{AEOgy7ш+вM2,?W_ ld/زSɘ'ouRF5XSYSC7%Qe䄁8M~-ga ӪCc'뻾 uv[|72(/Y6R,'QS.(Q/5T띯YO4'ĆBJOEDϚz Dvnr}5jY6νU6;bM󼀕gatψ)*NŘ]̕7y'@am&z1hhJQyT_/{ &qvCTw;{#Q$:R6@ƻcV"01'):?;JBwsG]^/`^^ `a YZ