nss-util-3.90.0-6.el8 >  H    ĉe{u U] qUoԎeo)ݜ2PYg:$}/H Fw%VI _]cgz#lXĉ:A3&]6Vrl'Wpo b>tRҚA4*(f* Ҝ{a9ڦ ":O nw!V , n]QjcxX\",Rb\I4a=b,=,26VT CD043#Ps]Qo-"rXZZ$..qVK ePtگA6(g,,+I xx` BXZN}qíhjx3LwQ$ߦ\%Hw_1}l&-vDۍ%?U!Dgؚ%2GpxTHڠmhDw!'OР=$n=& UϼCN|,Fo/i% _QZ2Eq6eecb433ec17179a4277f4bcdd2eae8799edff75fd865fc980cc1054919826b8999b482e22253ffa5fc42fa5bfddcd70f6582e0f0302047c435bb500683066023100cbe9c205217699ba9fb0a78e4ff5f5df60d919144e5827362426bfd4a9294084b5bc3c5235bf055f7701bc8c11086f07023100cb2787672368621a27df1338d39891c82eaf643cf5bd5a5bf1e73099b501e65ee438bf3a3592404105bd24558495b0fe0302047c435bb500683066023100cbe9c205217699ba9fb0a78e4ff5f5df60d919144e5827362426bfd4a9294084b5bc3c5235bf055f7701bc8c11086f07023100cb2787672368621a27df1338d39891c82eaf643cf5bd5a5bf1e73099b501e65ee438bf3a3592404105bd24558495b0fe0302047c435bb500683066023100cbe9c205217699ba9fb0a78e4ff5f5df60d919144e5827362426bfd4a9294084b5bc3c5235bf055f7701bc8c11086f07023100cb2787672368621a27df1338d39891c82eaf643cf5bd5a5bf1e73099b501e65ee438bf3a3592404105bd24558495b0fe0302047c435bb50067306502307fe3b5d171d295af56676f1938afc98f2c42e78ee0259d7b355db9cd417253b20cb646165711d5a64630c87e9083248b023100cdc937d911d661b46e44ae67130d638d7cbebe195c29182f4d46c24a5de392898b2940b4c751dbc98d58679f7c06f3800302047c435bb500683066023100cbe9c205217699ba9fb0a78e4ff5f5df60d919144e5827362426bfd4a9294084b5bc3c5235bf055f7701bc8c11086f07023100cb2787672368621a27df1338d39891c82eaf643cf5bd5a5bf1e73099b501e65ee438bf3a3592404105bd24558495b0fe0302047c435bb50067306502306199e2f2a5c5ec8207638fe3a0b68107ff51bbf3b73feb43118e22e1348d28463653569693639bce4ef906df8554e8ef023100aec474ae386160bb498d8d7850483d26068fc9c2f77612c8181208faba420972bfd2a93b8795c5572b1915213390ed2f e{u U]47:F5/֚qT CIrdX̹>;CX7ΪyjТ?7}?D~!$g;m Ѻj<#92O "ncZe,;^<;㚒> ZdX~&$!-^nbKu2sGE!h_?3yF"WHN"L6I; &o`;~1>sv3~l%>-wc X[lι>ZB*3>ek˪b(DO=GިC?Unq}*r Z{*I Є#N7&c XXA7Mw>?ǿCWUvAf96/:>*\W(#FDWSЄ-b+ Y`h}l NKl^jr?q!2]4im\> i^ E}6[8#7X`WZ _ =e>*b>`<?d   D (@ L X p   8Vtl)(Y8`9L:_/GHH`IxXY\]^pbdeflt4uLvdw x$y<Cnss-util3.90.06.el8Network Security Services Utilities LibraryUtilities for Network Security Services and the Softoken moduleer[aarch64-03.stream.rdu2.redhat.com^CentOSCentOSMPLv2.0builder@centos.orgUnspecifiedhttp://www.mozilla.org/projects/security/pki/nss/linuxaarch64$FAAA큤erWerWerWeCerWd|N5b07d2382da894922d26b2ad757dd0f094afa3c9c13dd3d9a3960ea9852d27efa20c1a32d1f8102432360b42e932869f7c11c7cdbacf9cac554c422132af47f4../../../../usr/lib64/libnssutil3.sorootrootrootrootrootrootrootrootrootrootrootrootnss-3.90.0-6.el8.src.rpmlibnssutil3.so()(64bit)libnssutil3.so(NSSUTIL_3.12)(64bit)libnssutil3.so(NSSUTIL_3.12.3)(64bit)libnssutil3.so(NSSUTIL_3.12.5)(64bit)libnssutil3.so(NSSUTIL_3.12.7)(64bit)libnssutil3.so(NSSUTIL_3.13)(64bit)libnssutil3.so(NSSUTIL_3.14)(64bit)libnssutil3.so(NSSUTIL_3.15)(64bit)libnssutil3.so(NSSUTIL_3.17.1)(64bit)libnssutil3.so(NSSUTIL_3.21)(64bit)libnssutil3.so(NSSUTIL_3.24)(64bit)libnssutil3.so(NSSUTIL_3.25)(64bit)libnssutil3.so(NSSUTIL_3.31)(64bit)libnssutil3.so(NSSUTIL_3.33)(64bit)libnssutil3.so(NSSUTIL_3.38)(64bit)libnssutil3.so(NSSUTIL_3.39)(64bit)libnssutil3.so(NSSUTIL_3.59)(64bit)libnssutil3.so(NSSUTIL_3.82)(64bit)libnssutil3.so(NSSUTIL_3.90)(64bit)nss-utilnss-util(aarch-64)@@@@@@@@@@     @ld-linux-aarch64.so.1()(64bit)ld-linux-aarch64.so.1(GLIBC_2.17)(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.17)(64bit)libdl.so.2()(64bit)libnspr4.so()(64bit)libplc4.so()(64bit)libplds4.so()(64bit)libpthread.so.0()(64bit)libpthread.so.0(GLIBC_2.17)(64bit)nsprrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)rtld(GNU_HASH)4.35.0-13.0.4-14.6.0-14.0-15.2-14.14.3e@e@epb@e\d˖d\@d\@dxb@b@bγby@bba@blbbb@a@@`E`ݮ@` @`ٹ`̊`9@`Ȗ@`D`r_@_^@___@__"@_"@_"@_!d_@_ L_ _@^^@@^@^ۅ@^4]N@]]߶]e@]M@]µ]L]]^@\F@\Q\\\\\\@\I\I\U@\ `\l@[[[u[#@[[W[O+[M@[ZZw@Z|;Zo Zo Zg#Z ZZZ@Y+@Y{YY@Yn@YV@Y@YyYm@Yg`YJ_Y1S@XX@XX @XXYX@X@XX~@Xx@XoX>@X*X@WW@Wt@W~Wv[@WrfWoWm WbWQq@WPWJWDB@W4p@W@Wo@W@VV޾V޾V@VяVIVɦV@V@V=@V@V@VO @VHsVEV3[V UYU@UU@U@U>Ua@Ug@U[%UUU @T@Ts@TTء@T@TÉ@TT@T@T?@T:m@T"@S@S<@S@S@S @SSSSpShS(5@S@SRy@RJ@R@RR@RSRR@Rm@Rg@RD!R@RRR|Q@Q*@QQ@QKQ@QQW@Qw@Q]k@QNQ9Q7/Q#@QQ @P!@PՠP @PqP@P@PAPXPd@Pd@PPP@PP5@PPnP;a@P(@P H@O;O;O@OiO@O@O}O~OiOYOX@OOdO&@O!@@OO@O@N>@N>@NNܲ@N`NؽNN@NuN;@Np@Nf @NA!@N*NpM@MWMc@MM@M@MMfH@M^_@MZjMS@MQ0@MQ0@MQ0@MQ0@MK@MGMF@M6@M-MM@Ls@LOLLZ@L6LdL@L*@L@LA@LL@L4Lx@Lx@Li(@Lf@L_L_LT@L0L0L K @KsKsKKCKCKCK]KMKLd@KD{@K<@K5K4@K,@K+nK*@K K@K@K@KJݦ@J - 3.90.0-6Bob Relyea - 3.90.0-5Bob Relyea - 3.90.0-4Bob Relyea - 3.90.0-3.1Bob Relyea - 3.90.0-3Bob Relyea - 3.90.0-2Bob Relyea - 3.90.0-1Bob Relyea - 3.79.0-11Bob Relyea - 3.79.0-10Bob Relyea - 3.79.0-9Bob Relyea - 3.79.0-8Bob Relyea - 3.79.0-7Bob Relyea - 3.79.0-6Bob Relyea - 3.79.0-5Bob Relyea - 3.79.0-4Bob Relyea - 3.79.0-3Bob Relyea - 3.79.0-2Bob Relyea - 3.79.0-1Bob Relyea - 3.67.0-7Bob Relyea - 3.67.0-6Bob Relyea - 3.67.0-5Bob Relyea - 3.67.0-4Bob Relyea - 3.67.0-3Bob Relyea - 3.67.0-2Bob Relyea - 3.67.0-1Bob Relyea - 3.66.0-2Bob Relyea - 3.66.0-1.1Bob Relyea - 3.66.0-1Bob Relyea - 3.53.1-17Bob Relyea - 3.53.1-16Bob Relyea - 3.53.1-15Bob Relyea - 3.53.1-14Bob Relyea - 3.53.1-13Bob Relyea - 3.53.1-12Bob Relyea - 3.53.1-11Bob Relyea - 3.53.1-10Daiki Ueno - 3.53.1-9Daiki Ueno - 3.53.1-8Bob Relyea - 3.53.1-7Daiki Ueno - 3.53.1-6Bob Relyea - 3.53.1-5Bob Relyea - 3.53.1-4Daiki Ueno - 3.53.1-3Daiki Ueno - 3.53.1-2Daiki Ueno - 3.53.1-1Daiki Ueno - 3.53.0-1Bob Relyea - 3.44.0-15Bob Relyea - 3.44.0-14Bob Relyea - 3.44.0-13Daiki Ueno - 3.44.0-12Bob Relyea - 3.44.0-11Daiki Ueno - 3.44.0-10Bob Relyea - 3.44.0-9Bob Relyea - 3.44.0-8Daiki Ueno - 3.44.0-7Daiki Ueno - 3.44.0-6Daiki Ueno - 3.44.0-5Bob Relyea - 3.44.0-4.1Bob Relyea - 3.44.0-4Daiki Ueno - 3.44.0-3Bob Relyea - 3.44.0-2Daiki Ueno - 3.44.0-1Daiki Ueno - 3.41.0-5Bob Relyea - 3.41.0-4Daiki Ueno - 3.41.0-3Daiki Ueno - 3.41.0-2Daiki Ueno - 3.41.0-1Daiki Ueno - 3.39.0-1.5Bob Relyea - 3.39.0-1.4Daiki Ueno - 3.39.0-1.3Daiki Ueno - 3.39.0-1.2Daiki Ueno - 3.39.0-1.1Daiki Ueno - 3.39.0-1.0Daiki Ueno - 3.38.0-1.2Daiki Ueno - 3.38.0-1.1Daiki Ueno - 3.38.0-1.0Kai Engert - 3.36.1-1.2Daiki Ueno - 3.36.1-1.1Daiki Ueno - 3.36.1-1.0Daiki Ueno - 3.36.0-1.0Fedora Release Engineering - 3.35.0-5Kai Engert - 3.35.0-4Kai Engert - 3.35.0-3Daiki Ueno - 3.35.0-2Daiki Ueno - 3.34.0-2Daiki Ueno - 3.33.0-6Kai Engert - 3.33.0-5Kai Engert - 3.33.0-4Kai Engert - 3.33.0-3Daiki Ueno - 3.33.0-2Daiki Ueno - 3.32.1-2Daiki Ueno - 3.32.0-4Kai Engert - 3.32.0-3Daiki Ueno - 3.32.0-2Fedora Release Engineering - 3.31.0-6Fedora Release Engineering - 3.31.0-5Daiki Ueno - 3.31.0-4Daiki Ueno - 3.31.0-3Daiki Ueno - 3.31.0-2Daiki Ueno - 3.30.2-3Daiki Ueno - 3.30.2-2Kai Engert - 3.30.0-3Daiki Ueno - 3.30.0-2Kai Engert - 3.29.1-3Daiki Ueno - 3.29.1-2Daiki Ueno - 3.29.0-3Daiki Ueno - 3.29.0-2Daiki Ueno - 3.28.1-6Daiki Ueno - 3.28.1-5Daiki Ueno - 3.28.1-4Daiki Ueno - 3.28.1-3Daiki Ueno - 3.28.1-2Daiki Ueno - 3.27.2-2Daiki Ueno - 3.27.0-5Kai Engert - 3.27.0-4Daiki Ueno - 3.27.0-3Daiki Ueno - 3.27.0-2Daiki Ueno - 3.26.0-2Elio Maldonado - 3.25.0-6Elio Maldonado - 3.25.0-5Elio Maldonado - 3.25.0-4Elio Maldonado - 3.25.0-3Elio Maldonado - 3.25.0-2Kamil Dudka - 3.24.0-3Elio Maldonado - 3.24.0-2.3Elio Maldonado - 3.24.0-2.2Elio Maldonado - 3.24.0-2.1Elio Maldonado - 3.24.0-2.0Elio Maldonado - 3.23.0-9Elio Maldonado - 3.23.0-8Elio Maldonado - 3.23.0-7Elio Maldonado - 3.23.0-6Elio Maldonado - 3.23.0-5Elio Maldonado - 3.23.0-4Elio Maldonado - 3.23.0-3Elio Maldonado - 3.23.0-2Elio Maldonado - 3.22.2-2Elio Maldonado - 3.22.1-3Elio Maldonado - 3.22.1-1Elio Maldonado - 3.22.0-3Elio Maldonado - 3.22.0-2Fedora Release Engineering - 3.21.0-7Elio Maldonado - 3.21.0-6Michal Toman - 3.21.0-5Elio Maldonado - 3.21.0-4Elio Maldonado - 3.21.0-3Elio Maldonado Batiz - 3.21.1-2Elio Maldonado - 3.20.1-2Elio Maldonado - 3.20.0-6Elio Maldonado - 3.20.0-5Elio Maldonado - 3.20.0-4Elio Maldonado - 3.20.0-3Elio Maldonado - 3.20.0-2Elio Maldonado - 3.19.3-2Elio Maldonado - 3.19.2-3Kai Engert - 3.19.2-2Kai Engert - 3.19.1-2Kai Engert - 3.19.0-2Kai Engert - 3.18.0-2Elio Maldonado - 3.18.0-1Elio Maldonado - 3.17.4-5Till Maas - 3.17.4-4Elio Maldonado - 3.17.4-3Elio Maldonado - 3.17.4-2Elio Maldonado - 3.17.4-1Ville Skyttä - 3.17.3-4Elio Maldonado - 3.17.3-3Elio Maldonado - 3.17.3-2Elio Maldonado - 3.17.3-1Elio Maldonado - 3.17.2-2Elio Maldonado - 3.17.2-1Kai Engert - 3.17.1-1Kevin Fenzi - 3.17.0-2Elio Maldonado - 3.17.0-1Fedora Release Engineering - 3.16.2-4Elio Maldonado - 3.16.2-3Tom Callaway - 3.16.2-2Elio Maldonado - 3.16.2-1Elio Maldonado - 3.16.1-4Fedora Release Engineering - 3.16.1-3Jaromir Capik - 3.16.1-2Elio Maldonado - 3.16.1-1Elio Maldonado - 3.16.0-1Elio Maldonado - 3.15.5-2Elio Maldonado - 3.15.5-1Elio Maldonado - 3.15.4-5Elio Maldonado - 3.15.4-4Elio Maldonado - 3.15.4-3Peter Robinson 3.15.4-2Elio Maldonado - 3.15.4-1Elio Maldonado - 3.15.3.1-1Elio Maldonado - 3.15.3-2Elio Maldonado - 3.15.3-1Elio Maldonado - 3.15.2-3Elio Maldonado - 3.15.2-2Elio Maldonado - 3.15.2-1Elio Maldonado - 3.15.1-7Elio Maldonado - 3.15.1-6Elio Maldonado - 3.15.1-5Elio Maldonado - 3.15.1-4Elio Maldonado - 3.15.1-3Elio Maldonado - 3.15.1-2Elio Maldonado - 3.15.1-1Elio Maldonado - 3.15-5emaldona - 3.15-4emaldona - 3.15-3Elio Maldonado - 3.15-2Elio Maldonado - 3.15-1Elio Maldonado - 3.15-0.1.beta1.2Elio Maldonado - 3.15-0.1.beta1.1Kai Engert - 3.14.3-12Kai Engert - 3.14.3-10Kai Engert - 3.14.3-9Elio Maldonado - 3.14.3-1Elio Maldonado - 3.14.2-2Elio Maldonado - 3.14.2-1Kai Engert - 3.14.1-3Elio Maldonado - 3.14.1-2Elio Maldonado - 3.14.1-1Elio Maldonado - 3.14-12Elio Maldonado - 3.14-11Elio Maldonado - 3.14-10Elio Maldonado - 3.14-9Elio Maldonado - 3.14-8Elio Maldonado - 3.14-7Elio Maldonado - 3.14-6Elio Maldonado - 3.14-5Elio Maldonado - 3.14-4Elio Maldonado - 3.14-3Elio Maldonado - 3.14-2Elio Maldonado - 3.14-1Elio Maldonado - 3.14-0.1.rc.1Kai Engert - 3.13.6-1Elio Maldonado - 3.13.5-8Elio Maldonado - 3.13.5-7Fedora Release Engineering - 3.13.5-6Elio Maldonado - 3.13.5-5Elio Maldonado - 3.13.5-4Elio Maldonado - 3.13.5-3Elio Maldonado - 3.13.5-2Elio Maldonado - 3.13.5-1Elio Maldonado - 3.13.4-3Elio Maldonado - 3.13.4-2Elio Maldonado - 3.13.4-1Elio Maldonado - 3.13.3-4Elio Maldonado - 3.13.3-3Elio Maldonado - 3.13.3-2Elio Maldonado - 3.13.3-1Tom Callaway - 3.13.1-13Elio Maldonado - 3.13.1-12Fedora Release Engineering - 3.13.1-11Elio Maldonado - 3.13.1-11Elio Maldonado - 3.13.1-10elio maldonado - 3.13.1-9Elio Maldonado - 3.13.1-8Elio Maldonado - 3.13.1-7Elio Maldonado - 3.13.1-6Elio Maldonado - 3.13.1-5Elio Maldonado Batiz - 3.13.1-4Elio Maldonado - 3.13.1-2Elio Maldonado - 3.13.1-1Elio Maldonado - 3.13-1Elio Maldonado - 3.13-0.1.rc0.1Elio Maldonado - 3.12.11-3Kai Engert - 3.12.11-2Elio Maldonado - 3.12.11-1Elio Maldonado - 3.12.10-6Michael Schwendt - 3.12.10-5Elio Maldonado - 3.12.10-4Dennis Gilmore - 3.12.10-3Elio Maldonado - 3.12.10-2Elio Maldonado - 3.12.10-1Elio Maldonado - 3.12.10-0.1.beta1Elio Maldonado - 3.12.9-15Elio Maldonado - 3.12.9-14Elio Maldonado - 3.12.9-13Elio Maldonado - 3.12.9-12Elio Maldonado - 3.12.9-11Elio Maldonado - 3.12.9-10Elio Maldonado - 3.12.9-9Fedora Release Engineering - 3.12.9-8Elio Maldonado - 3.12.9-7Christopher Aillon - 3.12.9-6Elio Maldonado - 3.12.9-5Elio Maldonado - 3.12.9-4Elio Maldonado - 3.12.9-3Elio Maldonado - 3.12.9-2Elio Maldonado - 3.12.9-1Elio Maldonado - 3.12.9-0.1.beta2Elio Maldonado - 3.12.8.99.2-1Elio Maldonado - 3.12.8.99.1-1Elio Maldonado - 3.12.8-9Elio Maldonado - 3.12.8-8Elio Maldonado - 3.12.8-7Elio Maldonado - 3.12.8-6Elio Maldonado - 3.12.8-5Elio Maldonado - 3.12.8-4Elio Maldonado - 3.12.8-3Elio Maldonado - 3.12.8-2Elio Maldonado - 3.12.8-1Elio Maldonado - 3.12.7.99.4-1Elio Maldonado - 3.12.7.99.3-2Elio Maldonado - 3.12.7.99.3-1Elio Maldonado - 3.12.7-3Elio Maldonado - 3.12.7-2Elio Maldonado - 3.12.7-1Elio Maldonado - 3.12.6-12Elio Maldonado - 3.12.6-11Elio Maldonado - 3.12.6-10Elio Maldonado - 3.12.6-9Dennis Gilmore - 3.12.6-8Elio Maldonado - 3.12.6-7Elio Maldonado - 3.12.6-6Elio Maldonado - 3.12.6-5Elio Maldonado - 3.12.6-4Elio Maldonado - 3.12.6-3Elio Maldonado - 3.12.6-2Elio Maldonado - 3.12.6-1.2Elio Maldonado - 3.12.6-1.1Elio Maldonado - 3.12.6-1Elio Maldonado - 3.12.5-8Elio Maldonado - 3.12.5-5Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1.13.2Elio Maldonado - 3.12.5-1.13.1Elio Maldonado - 3.12.5-1.13Elio Maldonado - 3.12.5-1.11Elio maldonado - 3.12.5-1.9Elio Maldonado - 3.12.5-2.7Elio Maldonado - 3.12.5-1.6Elio Maldonado - 3.12.5-1.5Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1Elio Maldonado - 3.12.4-14.1Elio Maldonado - 3.12.4-13.1Elio Maldonado - 3.12.4-13Elio Maldonado - 3.12.4-12Elio Maldonado - 3.12.4-11Elio Maldonado - 3.12.4-10Elio Maldonado - 3.12.4-8Elio Maldonado - 3.12.4-6Elio Maldonado - 3.12.4-5Elio Maldonado - 3.12.4-4Elio Maldonado - 3.12.4-3Elio Maldonado - 3.12.4-2Elio Maldonado - 3.12.4-1Elio Maldonado - 3.12.3.99.3-30Elio Maldonado - 3.12.3.99.3-29Elio Maldonado - 3.12.3.99.3-28Elio Maldonado - 3.12.3.99.3-27Elio Maldonado - 3.12.3.99.3-26Elio Maldonado - 3.12.3.99.3-25Warren Togami - 3.12.3.99.3-24Elio Maldonado - 3.12.3.99.3-23Elio Maldonado - 3.12.3.99.3-22Elio Maldonado - 3.12.3.99.3-21Elio Maldonado - 3.12.3.99.3-20Elio Maldonado - 3.12.3.99.3-19Elio Maldonado - 3.12.3.99.3-18Elio Maldonado - 3.12.3.99.3-16Dennis Gilmore - 3.12.3.99.3-15Dennis Gilmore - 3.12.3.99.3-14Dennis Gilmore - 3.12.3.99.3-13Dennis Gilmore - 3.12.3.99.3-12Elio Maldonado+emaldona@redhat.com - 3.12.3.99.3-11Elio Maldonado - 3.12.3.99.3-10Dennis Gilmore - 3.12.3.99.3-9Elio Maldonado - 3.12.3.99.3-7.1Fedora Release Engineering - 3.12.3.99.3-7Elio Maldonado - 3.12.3.99.3-6Elio Maldonado - 3.12.3.99.3-5Elio Maldonado - 3.12.3.99.3-4Kai Engert - 3.12.3.99.3-3Kai Engert - 3.12.3.99.3-2Kai Engert - 3.12.3-7Kai Engert - 3.12.3-4Kai Engert - 3.12.3-3Kai Engert - 3.12.3-2Kai Engert - 3.12.2.99.3-7Kai Engert - 3.12.2.99.3-6Kai Engert - 3.12.2.99.3-5Kai Engert - 3.12.2.99.3-4Kai Engert - 3.12.2.99.3-3Kai Engert - 3.12.2.99.3-2Kai Engert - 3.12.2.99.3-1Fedora Release Engineering - 3.12.2.0-4Kai Engert - 3.12.2.0-3Dennis Gilmore - 3.12.1.1-4Kai Engert - 3.12.1.1-3Kai Engert - 3.12.1.1-2Kai Engert - 3.12.1.0-2Kai Engert - 3.12.0.3-7Kai Engert - 3.12.0.3-6Kai Engert - 3.12.0.3-3Kai Engert - 3.12.0.3-2Kai Engert - 3.12.0.1-1Jesse Keating - 3.11.99.5-2Kai Engert - 3.11.99.5-1Kai Engert - 3.11.99.4-1Kai Engert - 3.11.99.3-6Kai Engert - 3.11.99.3-5Kai Engert - 3.11.99.3-4Kai Engert - 3.11.99.3-3Kai Engert - 3.11.99.3-2Kai Engert - 3.11.99.3-1Kai Engert - 3.11.99.2b-3Kai Engert - 3.11.99.2b-2Kai Engert - 3.11.99.2-2Kai Engert - 3.11.99.2-1Kai Engert - 3.11.7-10Rob Crittenden - 3.11.7-9Kai Engert - 3.11.7-8Bob Relyea - 3.11.7-7Kai Engert - 3.11.7-6Kai Engert - 3.11.7-5Kai Engert - 3.11.7-4Kai Engert - 3.11.7-3Kai Engert - 3.11.7-2Kai Engert - 3.11.5-2Kai Engert - 3.11.5-1Bob Relyea - 3.11.4-4Kai Engert - 3.11.4-1Kai Engert - 3.11.3-2Kai Engert - 3.11.3-1Kai Engert - 3.11.2-2Jesse Keating - 3.11.2-1.1Kai Engert - 3.11.2-1Kai Engert - 3.11.1-2Kai Engert - 3.11.1-1Kai Engert - 3.11-4Jesse Keating - 3.11-3.2Jesse Keating - 3.11-3.1Ray Strode 3.11-3Christopher Aillon 3.11-2Christopher Aillon 3.11-1Christopher Aillon 3.11-0.cvs.2Christopher Aillon 3.11-0.cvsKai Engert Rob Crittenden 3.10-1- Fix ecc DER wrapping.- Pick up validated constant time implementations of p256, p384, and p521 from upsream - More Fips indicator changes- FIPS review changes - add PORT_SafeZero to avoid compiler optimizing a way zeroing memory. - update the indicators for this release - allow hashing of longer than int32 values in a single PKCS #11 call.- Fix expired certs in tests - Fix CVE-2023-5388- add indicators for pbkdf2 - add camellia to pkcs12 doc files - fix ems policy bug - disable ech- fix the change log- rebase to NSS 3.90- Fix CVE-2023-0767- Fix QA found failures: - remove extra '+' from sslpolicy.txt file causing test error values - only use GRND_RANDOM if the kernel is in FIPS mode.- FIPS 140-3 changes- Update fips default for pk12util to AES rather than TDES - Fix bug in pkcs12 files with null passwords- Better fix for test regressions- fix nss.spec so it works in a rhel-8.1.0 buildroot- FIPS 140-3 changes - Reject Small RSA keys, 1024 bit keys are marked as FIP OK when verifying, reject signature keys by policy - Allow applications to retrigger selftests on demand.- Fix pkgconfig output- NSR Coverity fix changed selfserv from passive to active, change it back- Fix regressions found in test suites.- Rebase to NSS 3.79 - Set FIPS Module ID - skip attribute verification on attributes with default values - don't export trust objects if they are default trust objects from dbm - add dbtool to nss-tools- Fix CVE 2021 43527- Fix ssl alert issue- Fix issue with reading databases that were updated using unpatched versions of nss- Better fix for the sdb timeout. The issue wasn't a race, it was the sqlite timeout waiting to begin a transaction under heavy thread usage.- Fix sdb race condition- Fix coverity issues- Rebase to NSS 3.67- Restore old pkcs12 defaults.- build nss for older nspr so we can pass gating with the new nspr in the build root- Rebase to NSS 3.66- Fix various corner cases with ike v1 app b support.- Fix the following CVE - CVE-2020-12403 chacha-poly issues - CVE-2020-12400 constant time ECC. - CVE-2020-6829 constant time ECC.- Revert some policy changes the generate ABI runtime issues.- Add support for enable/disable in policy. Now if your policy file has disallow=x enable=y it will act just like our other libraries.- Add OAEP interface so applications can wrap keys with RSA-OAEP rather than RSA-PKCS-1.- fips need to reject small primes even if they are approved - code to autodetect whether or not to use the cache needs to do so in a way that doesn't mess with filesystem negative file caching. - add kdf selftests- Fix issue with upgradedb where upgradedb expects standard to generate dbm databases, not sql databases (default in RHEL8)- Disable dh timing test because it's unreliable on s390- Explicitly enable upgradedb/sharedb test cycles- Disable Delegated Credentials for TLS- Fix attribute decryption issue where the private key components integrity check on private attributes where not being checked.- Update nss-rsa-pkcs1-sigalgs.patch to the upstream version- Include required checks for dh and ecdh key generation in FIPS mode.- Add better checks for dh derive operations in FIPS mode.- Disable NSS_HASH_ALG_SUPPORT as well for MD5 (#1849938) - Adjust for update-crypto-policies packaging change (#1848649) - Fix compilation with -Werror=strict-prototypes (#1843417)- Fix regression in MD5 disablement (#1849938) - Include rsa_pkcs1_* in signature_algorithms extension (#1847945)- Update to NSS 3.53.1- Update to NSS 3.53- Fix swapped CMAC PKCS #11 values. - Fix data alignment crash in CMAC.- Fix coverify scan issue- Fix endian problem in SP-800 108 code.- Install cmac.h required by blapi.h (#1764513) - Fix out-of-bounds write in NSC_EncryptUpdate (#1775913)- Add SP-800 108 Generalized kdf- Check policy against hash algorithms used for ServerKeyExchange (#1730039)- Add CMAC- CKM_NSS_IKE1_APP_B_PRF_DERIVE was missing from the mechanism list, preventing PK11_Derive*() from using it. Add gtests for the PK11_Derive interface for all the CKM_NSS_IKE*_DERIVE mechanism.- Backport fixes from 3.44.1- Add continuous RNG test required by FIPS - fipstest: use CKM_TLS12_MASTER_KEY_DERIVE instead of vendor specific mechanism- Rebuild with the correct build target- rebuild to try to retrigger CI tests- Fix certutil man page - Fix extracting a public key from a private key for dh, ec, and dsa- Disable TLS 1.3 under FIPS mode - Disable RSASSA-PKCS1-v1_5 in TLS 1.3 - Fix post-handshake auth transcript calculation if SSL_ENABLE_SESSION_TICKETS is set - Revert the change to use XDG basedirs (mozilla#818686)- Add ike mechanisms in softokn - Add FIPS checks in softoken- Update to NSS 3.44 - Define NSS_SEED_ONLY_DEV_URANDOM=1 to exclusively use getentropy - Use %autosetup - Clean up manual pages generation - Clean up %check - Remove prelink dependency, which is not available in RHEL-8 - Remove upstreamed patches- Update manual pages to reflect recent changes in commands- Make sure corresponding public keys are created when importing private keys.- Fix the last change - Add --no-reload option to update-crypto-policies to avoid unnecessary restart of daemons- Restore LDFLAGS injection when linking DSO- Update to NSS 3.41 - Consolidate nss-util, nss-softokn, and nss into a single source package- Fix the last commit- Support for IKE/IPsec typical PKIX usage so libreswan can use nss without rejecting certs based on EKU- Backport upstream fixes for rhbz#1649026, rhbz#1608895, rhbz#1644854 - Document PKCS #11 URI - Add warning when adding module with modutil while p11-kit is enabled- Update nss-dsa.patch to not advertise DSA signature algorithm - Update PayPal test certs for testing- Backport "DSA" keyword in crypto-policies- Update to NSS 3.39- Fix LDFLAGS injection when linking DSO- Install crypto-policies configuration file for https://fedoraproject.org/wiki/Changes/NSSLoadP11KitModules - Port enable-fips-when-system-is-in-fips-mode.patch from RHEL-7 - Use %ldconfig_scriptlets - Remove needless use of %defattr, by Jason Tibbitts- Update to NSS 3.38- Backport upstream addition of nss-policy-check utility, rhbz#1428746, includes required fixes for mozbz#1296263 and mozbz#1474875- Switch the default DB type to SQL - Enable SSLKEYLOGFILE- Update to NSS 3.36.1 - Remove nss-3.14.0.0-disble-ocsp-test.patch - Fix partial injection of LDFLAGS - Remove NSS_NO_PKCS11_BYPASS, which is no-op in upstream- Update to NSS 3.36.0 - Add gcc-c++ to BuildRequires (C++ is needed for gtests) - Make test failure detection robuster- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild- Fix a compiler error with gcc 8, mozbz#1434070 - Set NSS_FORCE_FIPS=1 at %build time, and remove from %check.- Stop pulling in nss-pem automatically, packages that need it should depend on it, rhbz#1539401- Update to NSS 3.35.0- Update to NSS 3.34.0- Make sure 32bit nss-pem always be installed with 32bit nss in multlib environment, patch by Kamil Dudka- Fix test script- Update tests to be compatible with default NSS DB changed to sql (the default was changed in the nss-util package).- rhbz#1505487, backport upstream fixes required for rhbz#1496560- Update to NSS 3.33.0- Update to NSS 3.32.1- Update iquote.patch to really prefer in-tree headers over system headers- NSS libnssckbi.so has already been obsoleted by p11-kit-trust, rhbz#1484449- Update to NSS 3.32.0- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild- Backport mozbz#1381784 to avoid deadlock in dnf- Move signtool to %_libdir/nss/unsupported-tools, for: https://fedoraproject.org/wiki/Changes/NSSSigntoolDeprecation- Rebase to NSS 3.31.0- Enable gtests- Rebase to NSS 3.30.2 - Enable TLS 1.3- Backport upstream mozbz#1328318 to support crypto policy FUTURE.- Rebase to NSS 3.30.0 - Remove upstreamed patches- Backport mozbz#1334976 and mozbz#1336487.- Rebase to NSS 3.29.1- Disable TLS 1.3, following the upstream change- Rebase to NSS 3.29.0 - Suppress -Werror=int-in-bool-context warnings with GCC7- Work around pkgconfig -> pkgconf transition issue (releng#6597)- Disable TLS 1.3 - Add "Conflicts" with packages using older Mozilla codebase, which is not compatible with NSS 3.28.1 - Remove NSS_ECC_MORE_THAN_SUITE_B setting, as it was removed in upstream- Add "Conflicts" with older firefox packages which don't have support for smaller curves added in NSS 3.28.1- Fix incorrect version specification in %nss_{util,softokn}_version, pointed by Elio Maldonado- Rebase to NSS 3.28.1 - Remove upstreamed patch for disabling RSA-PSS - Re-enable TLS 1.3- Rebase to NSS 3.27.2- Revert the previous fix for RSA-PSS and use the upstream fix instead- Disable the use of RSA-PSS with SSL/TLS. #1383809- Disable TLS 1.3 for now, to avoid reported regression with TLS to version intolerant servers- Rebase to NSS 3.27.0 - Remove upstreamed ectest patch- Rebase to NSS 3.26.0 - Update check policy file patch to better match what was upstreamed - Remove conditionally ignore system policy patch as it has been upstreamed - Skip ectest as well as ecperf, which are built as part of nss-softokn - Fix rpmlint error regarding %define usage- Incorporate some changes requested in upstream review and commited upstream (#1157720)- Add support for conditionally ignoring the system policy (#1157720) - Remove unneeded test scripts patches in order to run more tests - Remove unneeded test data modifications from the spec file- Remove obsolete patch and spurious lines from the spec file (#1347336)- Cleanup spec file and patches and add references to bugs filed upstream- Rebase to nss 3.25- decouple nss-pem from the nss package (#1347336)- Apply the patch that was last introduced - Renumber and reorder some of the patches - Resolves: Bug 1342158- Allow application requests to disable SSL v2 to succeed - Resolves: Bug 1342158 - nss-3.24 does no longer support ssl V2, installation of IPA fails because nss init fails- Rebase to NSS 3.24.0 - Restore setting the policy file location - Make ssl tests scripts aware of policy - Ajust tests data expected result for policy- Bootstrap build to rebase to NSS 3.24.0 - Temporarily not setting the policy file location- Change POLICY_FILE to "nss.config"- Change POLICY_FILE to "nss.cfg"- Change the POLICY_PATH to "/etc/crypto-policies/back-ends" - Regenerate the check policy patch with hg to provide more context- Fix typo in the last %changelog entry- Load policy file if /etc/pki/nssdb/policy.cfg exists - Resolves: Bug 1157720 - NSS should enforce the system-wide crypto policy- Remove unused patch rendered obsolete by pem update- Update pem sources to latest from nss-pem upstream - Resolves: Bug 1300652 - [PEM] insufficient input validity checking while loading a private key- Rebase to NSS 3.23- Rebase to NSS 3.22.2- Fix ssl2/exp test disabling to run all the required tests- Rebase to NSS 3.22.1- Update .gitignore as part of updating to nss 3.22- Update to NSS 3.22- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild- Resolves: Bug 1299040 - Enable ssl_gtests upstream test suite - Remove 'export NSS_DISABLE_GTESTS=1' go ssl_gtests are built - Use %define when specifying the nss_tests to run- Add 64-bit MIPS to multilib arches- Update %{nss_util_version} and %{nss_softokn_version} to 3.21.0 - Resolves: Bug 1284095 - all https fails with sec_error_no_token- Add references to bugs filed upstream- Update to NSS 3.21 - Package listsuites as part of the unsupported tools set - Resolves: Bug 1279912 - nss-3.21 is available - Resolves: Bug 1258425 - Use __isa_bits macro instead of list of 64-bit - Resolves: Bug 1280032 - Package listsuites as part of the nss unsupported tools set- Update to NSS 3.20.1- Enable ECC cipher-suites by default [hrbz#1185708] - Split the enabling patch in two for easier maintenance - Remove unused patches rendered obsolete by prior rebase- Enable ECC cipher-suites by default [hrbz#1185708] - Implement corrections requested in code review- Enable ECC cipher-suites by default [hrbz#1185708]- Fix patches that disable ssl2 and export cipher suites support - Fix libssl patch that disable ssl2 & export cipher suites to not disable RSA_WITH_NULL ciphers - Fix syntax errors in patch to skip ssl2 and export cipher suite tests - Turn ssl2 off by default in the tstclnt tool - Disable ssl stress tests containing TLS RC4 128 with MD5- Update to NSS 3.20- Update to NSS 3.19.3- Create on the fly versions of sslcov.txt and sslstress.txt that disable tests for SSL2 and EXPORT ciphers- Update to NSS 3.19.2- Update to NSS 3.19.1- Update to NSS 3.19- Replace expired test certificates, upstream bug 1151037- Update to nss-3.18.0 - Resolves: Bug 1203689 - nss-3.18 is available- Disable export suites and SSL2 support at build time - Fix syntax errors in various shell scripts - Resolves: Bug 1189952 - Disable SSL2 and the export cipher suites- Rebuilt for Fedora 23 Change https://fedoraproject.org/wiki/Changes/Harden_all_packages_with_position-independent_code- Commented out the export NSS_NO_SSL2=1 line to not disable ssl2 - Backing out from disabling ssl2 until the patches are fixed- Disable SSL2 support at build time - Fix syntax errors in various shell scripts - Resolves: Bug 1189952 - Disable SSL2 and the export cipher suites- Update to nss-3.17.4- Own the %{_datadir}/doc/nss-tools dir- Resolves: Bug 987189 - nss-tools RPM conflicts with perl-PAR-Packer - Install pp man page in %{_datadir}/doc/nss-tools/pp.1 - Use %{_mandir} instead of /usr/share/man as more generic- Install pp man page in alternative location - Resolves: Bug 987189 - nss-tools RPM conflicts with perl-PAR-Packer- Update to nss-3.17.3 - Resolves: Bug 1171012 - nss-3.17.3 is available- Resolves: Bug 994599 - Enable TLS 1.2 by default- Update to nss-3.17.2- Update to nss-3.17.1 - Add a mechanism to skip test suite execution during development work- Rebuild for rpm bug 1131960- Update to nss-3.17.0- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild- Replace expired PayPal test cert with current one to prevent build failure- fix license handling- Update to nss-3.16.2- Remove unwanted source directories at end of %prep so it truly does it - Skip the cipher suite already run as part of the nss-softokn build- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild- Replacing ppc64 and ppc64le with the power64 macro - Related: Bug 1052545 - Trivial change for ppc64le in nss spec- Update to nss-3.16.1 - Update the iquote patch on account of the rebase - Improve error detection in the %section - Resolves: Bug 1094702 - nss-3.16.1 is available- Update to nss-3.16.0 - Cleanup the copying of the tools man pages - Update the iquote.patch on account of the rebase- Restore requiring nss_softokn_version >= 3.15.5- Update to nss-3.15.5 - Temporarily requiring only nss_softokn_version >= 3.15.4 - Fix location of sharedb files and their manpages - Move cert9.db, key4.db, and pkcs11.txt to the main package - Move nss-sysinit manpages tar archives to the main package - Resolves: Bug 1066877 - nss-3.15.5 is available - Resolves: Bug 1067091 - Move sharedb files to the %files section- Revert previous change that moved some sysinit manpages - Restore nss-sysinit manpages tar archives to %files sysinit - Removing spurious wildcard entry was the only change needed- Add explanatory comments for iquote.patch as was done on f20- Update pem sources to latest from nss-pem upstream - Pick up pem fixes verified on RHEL and applied upstream - Fix a problem where same files in two rpms created rpm conflict - Move some nss-sysinit manpages tar archives to the %files the - All man pages are listed by name so there shouldn't be wildcard inclusion - Add support for ppc64le, Resolves: Bug 1052545- ARM tests pass so remove ARM conditional- Update to nss-3.15.4 (hg tag NSS_3_15_4_RTM) - Resolves: Bug 1049229 - nss-3.15.4 is available - Update pem sources to latest from the interim upstream for pem - Remove no longer needed patches - Update pem/rsawrapr.c patch on account of upstream changes to freebl/softoken - Update iquote.patch on account of upstream changes- Update to nss-3.15.3.1 (hg tag NSS_3_15_3_1_RTM) - Resolves: Bug 1040282 - nss: Mis-issued ANSSI/DCSSI certificate (MFSA 2013-117) - Resolves: Bug 1040192 - nss-3.15.3.1 is available- Bump the release tag- Update to NSS_3_15_3_RTM - Resolves: Bug 1031897 - CVE-2013-5605 CVE-2013-5606 CVE-2013-1741 nss: various flaws - Fix option descriptions for setup-nsssysinit manpage - Fix man page of nss-sysinit wrong path and other flaws - Document email option for certutil manpage - Remove unused patches- Revert one change from last commit to preserve full nss pluggable ecc supprt [1019245]- Use the full sources from upstream - Bug 1019245 - ECDHE in openssl available -> NSS needs too for Firefox/Thunderbird- Update to NSS_3_15_2_RTM - Update iquote.patch on account of modified prototype on cert.h installed by nss-devel- Update pem sources to pick up a patch applied upstream which a faulty merge had missed - The pem module should not require unique file basenames- Update pem sources to the latest from interim upstream- Resolves: rhbz#996639 - Minor bugs in nss man pages - Fix some typos and improve description and see also sections- Cleanup spec file to address most rpmlint errors and warnings - Using double percent symbols to fix macro-in-comment warnings - Ignore unversioned-explicit-provides nss-system-init per spec comments - Ignore invalid-url Source0 as it comes from the git lookaside cache - Ignore invalid-url Source12 as it comes from the git lookaside cache- Add man page for pkcs11.txt configuration file and cert and key databases - Resolves: rhbz#985114 - Provide man pages for the nss configuration files- Fix errors in the man pages - Resolves: rhbz#984106 - Add missing option descriptions to man pages for {cert|cms|crl}util - Resolves: rhbz#982856 - Fix path to script in man page for nss-sysinit- Update to NSS_3_15_1_RTM - Enable the iquote.patch to access newly introduced types- Install man pages for nss-tools and the nss-config and setup-nsssysinit scripts - Resolves: rhbz#606020 - nss security tools lack man pages- Build nss without softoken or util sources in the tree - Resolves: rhbz#689918- Update ssl-cbc-random-iv-by-default.patch- Fix generation of NSS_VMAJOR, NSS_VMINOR, and NSS_VPATCH for nss-config- Update to NSS_3_15_RTM- Fix incorrect path that hid failed test from view - Add ocsp to the test suites to run but ... - Temporarily disable the ocsp stapling tests - Do not treat failed attempts at ssl pkcs11 bypass as fatal errors- Update to NSS_3_15_BETA1 - Update spec file, patches, and helper scripts on account of a shallower source tree- Update expired test certificates (fixed in upstream bug 852781)- Fix incorrect post/postun scripts. Fix broken links in posttrans.- Configure libnssckbi.so to use the alternatives system in order to prepare for a drop in replacement.- Update to NSS_3_14_3_RTM - sync up pem rsawrapr.c with softoken upstream changes for nss-3.14.3 - Resolves: rhbz#908257 - CVE-2013-1620 nss: TLS CBC padding timing attack - Resolves: rhbz#896651 - PEM module trashes private keys if login fails - Resolves: rhbz#909775 - specfile support for AArch64 - Resolves: rhbz#910584 - certutil -a does not produce ASCII output- Allow building nss against older system sqlite- Update to NSS_3_14_2_RTM- Update to NSS_3_14_1_WITH_CKBI_1_93_RTM- Require nspr >= 4.9.4 - Fix changelog invalid dates- Update to NSS_3_14_1_RTM- Bug 879978 - Install the nssck.api header template where mod_revocator can access it - Install nssck.api in /usr/includes/nss3/templates- Bug 879978 - Install the nssck.api header template in a place where mod_revocator can access it - Install nssck.api in /usr/includes/nss3- Bug 870864 - Add support in NSS for Secure Boot- Disable bypass code at build time and return failure on attempts to enable at runtime - Bug 806588 - Disable SSL PKCS #11 bypass at build time- Fix pk11wrap locking which fixes 'fedpkg new-sources' and 'fedpkg update' hangs - Bug 872124 - nss-3.14 breaks fedpkg new-sources - Fix should be considered preliminary since the patch may change upon upstream approval- Add a dummy source file for testing /preventing fedpkg breakage - Helps test the fedpkg new-sources and upload commands for breakage by nss updates - Related to Bug 872124 - nss 3.14 breaks fedpkg new-sources- Fix a previous unwanted merge from f18 - Update the SS_SSL_CBC_RANDOM_IV patch to match new sources while - Keeping the patch disabled while we are still in rawhide and - State in comment that patch is needed for both stable and beta branches - Update .gitignore to download only the new sources- Fix the spec file so sechash.h gets installed - Resolves: rhbz#871882 - missing header: sechash.h in nss 3.14- Update the license to MPLv2.0- Use only -f when removing unwanted headers- Add secmodt.h to the headers installed by nss-devel - nss-devel must install secmodt.h which moved from softoken to pk11wrap with nss-3.14- Update to NSS_3_14_RTM- Update to NSS_3_14_RC1 - update nss-589636.patch to apply to httpdserv - turn off ocsp tests for now - remove no longer needed patches - remove headers shipped by nss-util- Update to NSS_3_13_6_RTM- Rebase pem sources to fedora-hosted upstream to pick up two fixes from rhel-6.3 - Resolves: rhbz#847460 - Fix invalid read and free on invalid cert load - Resolves: rhbz#847462 - PEM module may attempt to free uninitialized pointer - Remove unneeded fix gcc 4.7 c++ issue in secmodt.h that actually undoes the upstream fix- Fix pluggable ecc support- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- Fix checkin comment to prevent unwanted expansions of percents- Resolves: Bug 830410 - Missing Requires %{?_isa} - Use Requires: %{name}%{?_isa} = %{version}-%{release} on tools - Drop zlib requires which rpmlint reports as error E: explicit-lib-dependency zlib - Enable sha224 portion of powerup selftest when running test suites - Require nspr 4.9.1- Resolves: rhbz#833529 - revert unwanted change to nss.pc.in- Resolves: rhbz#833529 - Remove unwanted space from the Libs: line on nss.pc.in- Update to NSS_3_13_5_RTM- Resolves: Bug 812423 - nss_Init leaks memory, fix from RHEL 6.3- Resolves: Bug 805723 - Library needs partial RELRO support added - Patch coreconf/Linux.mk as done on RHEL 6.2- Update to NSS_3_13_4_RTM - Update the nss-pem source archive to the latest version - Remove no longer needed patches - Resolves: Bug 806043 - use pem files interchangeably in a single process - Resolves: Bug 806051 - PEM various flaws detected by Coverity - Resolves: Bug 806058 - PEM pem_CreateObject leaks memory given a non-existing file name- Resolves: Bug 805723 - Library needs partial RELRO support added- Cleanup of the spec file - Add references to the upstream bugs - Fix typo in Summary for sysinit- Pick up fixes from RHEL - Resolves: rhbz#800674 - Unable to contact LDAP Server during winsync - Resolves: rhbz#800682 - Qpid AMQP daemon fails to load after nss update - Resolves: rhbz#800676 - NSS workaround for freebl bug that causes openswan to drop connections- Update to NSS_3_13_3_RTM- fix issue with gcc 4.7 in secmodt.h and C++11 user-defined literals- Resolves: Bug 784672 - nss should protect against being called before nss_Init- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- Deactivate a patch currently meant for stable branches only- Resolves: Bug 770682 - nss update breaks pidgin-sipe connectivity - NSS_SSL_CBC_RANDOM_IV set to 0 by default and changed to 1 on user request- Revert to using current nss_softokn_version - Patch to deal with lack of sha224 is no longer needed- Resolves: Bug 754771 - [PEM] an unregistered callback causes a SIGSEGV- Resolves: Bug 750376 - nss 3.13 breaks sssd TLS - Fix how pem is built so that nss-3.13.x works with nss-softokn-3.12.y - Only patch blapitest for the lack of sha224 on system freebl - Completed the patch to make pem link against system freebl- Removed unwanted /usr/include/nss3 in front of the normal cflags include path - Removed unnecessary patch dealing with CERTDB_TERMINAL_RECORD, it's visible- Statically link the pem module against system freebl found in buildroot - Disabling sha224-related powerup selftest until we update softokn - Disable sha224 and pss tests which nss-softokn 3.12.x doesn't support- Rebuild with nss-softokn from 3.12 in the buildroot - Allows the pem module to statically link against 3.12.x freebl - Required for using nss-3.13.x with nss-softokn-3.12.y for a merge inrto rhel git repo - Build will be temprarily placed on buildroot override but not pushed in bodhi- Fix broken dependencies by updating the nss-util and nss-softokn versions- Update to NSS_3_13_1_RTM - Update builtin certs to those from NSSCKBI_1_88_RTM- Update to NSS_3_13_RTM- Update to NSS_3_13_RC0- Fix attempt to free initilized pointer (#717338) - Fix leak on pem_CreateObject when given non-existing file name (#734760) - Fix pem_Initialize to return CKR_CANT_LOCK on multi-treaded calls (#736410)- Update builtins certs to those from NSSCKBI_1_87_RTM- Update to NSS_3_12_11_RTM- Indicate the provenance of stripped source tarball (#688015)- Provide virtual -static package to meet guidelines (#609612).- Enable pluggable ecc support (#712556) - Disable the nssdb write-access-on-read-only-dir tests when user is root (#646045)- make the testsuite non fatal on arm arches- Fix crmf hard-coded maximum size for wrapped private keys (#703656)- Update to NSS_3_12_10_RTM- Update to NSS_3_12_10_BETA1- Implement PEM logging using NSPR's own (#695011)- Update to NSS_3.12.9_WITH_CKBI_1_82_RTM- Short-term fix for ssl test suites hangs on ipv6 type connections (#539183)- Add a missing requires for pkcs11-devel (#675196)- Run the test suites in the check section (#677809)- Fix cms headers to not use c++ reserved words (#676036) - Reenabling Bug 499444 patches - Fix to swap internal key slot on fips mode switches- Revert patches for 499444 until all c++ reserved words are found and extirpated- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- Fix cms header to not use c++ reserved word (#676036) - Reenable patches for bug 499444- Revert patches for 499444 as they use a C++ reserved word and cause compilation of Firefox to fail- Fix the earlier infinite recursion patch (#499444) - Remove a header that now nss-softokn-freebl-devel ships- Fix infinite recursion when encoding NSS enveloped/digested data (#499444)- Update the cacert trust patch per upstream review requests (#633043)- Fix to honor the user's cert trust preferences (#633043) - Remove obsoleted patch- Update to 3.12.9- Rebuilt according to fedora pre-release package naming guidelines- Update to NSS_3_12_9_BETA2 - Fix libpnsspem crash when cacert dir contains other directories (#642433)- Update to NSS_3_12_9_BETA1- Update pem source tar with fixes for 614532 and 596674 - Remove no longer needed patches- Update PayPalEE.cert test certificate which had expired- Tell rpm not to verify md5, size, and modtime of configurations file- Fix certificates trust order (#643134) - Apply nss-sysinit-userdb-first.patch last- Move triggerpostun -n nss-sysinit script ahead of the other ones (#639248)- Fix invalid %postun scriptlet (#639248)- Replace posttrans sysinit scriptlet with a triggerpostun one (#636787) - Fix and cleanup the setup-nsssysinit.sh script (#636792, #636801)- Add posttrans scriptlet (#636787)- Update to 3.12.8 - Prevent disabling of nss-sysinit on package upgrade (#636787) - Create pkcs11.txt with correct permissions regardless of umask (#636792) - Setup-nsssysinit.sh reports whether nss-sysinit is turned on or off (#636801) - Added provides pkcs11-devel-static to comply with packaging guidelines (#609612)- NSS 3.12.8 RC0- Fix nss-util_version and nss_softokn_version required to be 3.12.7.99.3- NSS 3.12.8 Beta3 - Fix unclosed comment in renegotiate-transitional.patch- Change BuildRequries to available version of nss-util-devel- Define NSS_USE_SYSTEM_SQLITE and remove unneeded patch - Add comments regarding an unversioned provides which triggers rpmlint warning - Build requires nss-softokn-devel >= 3.12.7- Update to 3.12.7- Apply the patches to fix rhbz#614532- Removed pem sourecs as they are in the cache- Add support for PKCS#8 encoded PEM RSA private key files (#614532)- Fix nsssysinit to return userdb ahead of systemdb (#603313)- Require and BuildRequire >= the listed version not =- Require nss-softoken 3.12.6- Fix SIGSEGV within CreateObject (#596674)- Update pem source tar to pick up the following bug fixes: - PEM - Allow collect objects to search through all objects - PEM - Make CopyObject return a new shallow copy - PEM - Fix memory leak in pem_mdCryptoOperationRSAPriv- Update the test cert in the setup phase- Add sed to sysinit requires as setup-nsssysinit.sh requires it (#576071) - Update PayPalEE test cert with unexpired one (#580207)- Fix ns.spec to not require nss-softokn (#575001)- rebuilt with all tests enabled- Using SSL_RENEGOTIATE_TRANSITIONAL as default while on transition period - Disabling ssl tests suites until bug 539183 is resolved- Update to 3.12.6 - Reactivate all tests - Patch tools to validate command line options arguments- Fix curl related regression and general patch code clean up- retagging- Fix SIGSEGV on call of NSS_Initialize (#553638)- New version of patch to allow root to modify ystem database (#547860)- Temporarily disabling the ssl tests- Fix nsssysinit to allow root to modify the nss system database (#547860)- Fix an error introduced when adapting the patch for rhbz #546211- Remove left over trace statements from nsssysinit patching- Fix a misconstructed patch- Fix nsssysinit to enable apps to use system cert store, patch contributed by David Woodhouse (#546221) - Fix spec so sysinit requires coreutils for post install scriplet (#547067) - Fix segmentation fault when listing keys or certs in the database, patch contributed by Kamil Dudka (#540387)- Fix nsssysinit to set the default flags on the crypto module (#545779) - Remove redundant header from the pem module- Remove unneeded patch- Retagging to include missing patch- Update to 3.12.5 - Patch to allow ssl/tls clients to interoperate with servers that require renogiation- Retagging- Require nss-softoken of same architecture as nss (#527867) - Merge setup-nsssysinit.sh improvements from F-12 (#527051)- User no longer prompted for a password when listing keys an empty system db (#527048) - Fix setup-nsssysinit to handle more general formats (#527051)- Fix syntax error in setup-nsssysinit.sh- Fix sysinit to be under mozilla/security/nss/lib- Add nss-sysinit activation/deactivation script- Install blank databases and configuration file for system shared database - nsssysinit queries system for fips mode before relying on environment variable- Restoring nssutil and -rpath-link to nss-config for now - 522477- Add the nss-sysinit subpackage- Installing shared libraries to %{_libdir}- Retagging to pick up new sources- Update pem enabling source tar with latest fixes (509705, 51209)- PEM module implements memory management for internal objects - 509705 - PEM module doesn't crash when processing malformed key files - 512019- Remove symbolic links to shared libraries from devel - 521155 - No rpath-link in nss-softokn-config- Update to 3.12.4- Fix FORTIFY_SOURCE buffer overflows in test suite on ppc and ppc64 - bug 519766 - Fixed requires and buildrequires as per recommendations in spec file review- Restoring patches 2 and 7 as we still compile all sources - Applying the nss-nolocalsql.patch solves nss-tools sqlite dependency problems- restore require sqlite- Don't require sqlite for nss- Ensure versions in the requires match those used when creating nss.pc- Remove nss-prelink.conf as signed all shared libraries moved to nss-softokn - Add a temprary hack to nss.pc.in to unblock builds- caolan's nss.pc patch- Bump the release number for a chained build of nss-util, nss-softokn and nss- Fix nss-config not to include nssutil - Add BuildRequires on nss-softokn and nss-util since build also runs the test suite- disabling all tests while we investigate a buffer overflow bug- disabling some tests while we investigate a buffer overflow bug - 519766- remove patches that are now in nss-softokn and - remove spurious exec-permissions for nss.pc per rpmlint - single requires line in nss.pc.in- Fix BuildRequires: nss-softokn-devel release number- fix nss.pc.in to have one single requires line- cleanups for softokn- remove the softokn subpackages- don install the nss-util pkgconfig bits- remove from -devel the 3 headers that ship in nss-util-devel- kill off the nss-util nss-util-devel subpackages- split off nss-softokn and nss-util as subpackages with their own rpms - first phase of splitting nss-softokn and nss-util as their own packages- must install libnssutil3.since nss-util is untagged at the moment - preserve time stamps when installing various files- dont install libnssutil3.so since its now in nss-util- Fix spec file problems uncovered by Fedora_12_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild- removed two patch files which are no longer needed and fixed previous change log number- updated pem module incorporates various patches - fix off-by-one error when computing size to reduce memory leak. (483855) - fix data type to work on x86_64 systems. (429175) - fix various memory leaks and free internal objects on module unload. (501080) - fix to not clone internal objects in collect_objects(). (501118) - fix to not bypass initialization if module arguments are omitted. (501058) - fix numerous gcc warnings. (500815) - fix to support arbitrarily long password while loading a private key. (500180) - fix memory leak in make_key and memory leaks and return values in pem_mdSession_Login (501191)- add patch for bug 502133 upstream bug 496997- rebuild with higher release number for upgrade sanity- updated to NSS_3_12_4_FIPS1_WITH_CKBI_1_75- re-enable test suite - add patch for upstream bug 488646 and add newer paypal certs in order to make the test suite pass- add conflicts info in order to fix bug 499436- ship .chk files instead of running shlibsign at install time - include .chk file in softokn-freebl subpackage - add patch for upstream nss bug 488350- Update to NSS 3.12.3- temporarily disable the test suite because of bug 494266- fix softokn-freebl dependency for multilib (bug 494122)- introduce separate nss-softokn-freebl package- disable execstack when building freebl- add upstream patch to fix bug 483855- build nspr-less freebl library- Update to NSS_3_12_3_BETA4- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild- update to NSS_3_12_2_RC1 - use system zlib- add sparc64 to the list of 64 bit arches- bug 456847, move pkgconfig requirement to devel package- Update to NSS_3_12_1_RC2- NSS 3.12.1 RC1- fix bug bug 429175 in libpem module- bug 456847, add Requires: pkgconfig- nss package should own /etc/prelink.conf.d folder, rhbz#452062 - use upstream patch to fix test suite abort- Update to NSS_3_12_RC4- Update to NSS_3_12_RC2- Zapping old Obsoletes/Provides. No longer needed, causes multilib headache.- Update to NSS_3_12_BETA3- NSS 3.12 Beta 2 - Use /usr/lib{64} as devel libdir, create symbolic links.- Apply upstream patch for bug 417664, enable test suite on pcc.- Support concurrent runs of the test suite on a single build host.- disable test suite on ppc- disable test suite on ppc64- Build against gcc 4.3.0, use workaround for bug 432146 - Run the test suite after the build and abort on failures.* NSS 3.12 Beta 1- move .so files to /lib- NSS 3.12 alpha 2b- upstream patches to avoid calling netstat for random data- NSS 3.12 alpha 2- Add /etc/prelink.conf.d/nss-prelink.conf in order to blacklist our signed libraries and protect them from modification.- Fix off-by-one error in the PEM module- fix a C++ mode compilation error- Add 3.12 ckfw and libnsspem- Updated license tag- Ensure the workaround for mozilla bug 51429 really get's built.- Better approach to ship freebl/softokn based on 3.11.5 - Remove link time dependency on softokn- Fix unowned directories, rhbz#233890- Update to 3.11.7, but freebl/softokn remain at 3.11.5. - Use a workaround to avoid mozilla bug 51429.- Fix rhbz#230545, failure to enable FIPS mode - Fix rhbz#220542, make NSS more tolerant of resets when in the middle of prompting for a user password.- Update to 3.11.5 - This update fixes two security vulnerabilities with SSL 2 - Do not use -rpath link option - Added several unsupported tools to tools package- disable ECC, cleanout dead code- Update to 3.11.4- Revert the attempt to require latest NSPR, as it is not yet available in the build infrastructure.- Update to 3.11.3- Add /etc/pki/nssdb- rebuild- Update to 3.11.2 - Enable executable bit on shared libs, also fixes debug info.- Enable Elliptic Curve Cryptography (ECC)- Update to 3.11.1 - Include upstream patch to limit curves- add --noexecstack when compiling assembler on x86_64- bump again for double-long bug on ppc(64)- rebuilt for new gcc4.1 snapshot and glibc changes- rebuild- Update file list for the devel packages- Update to 3.11- Add patch to allow building on ppc* - Update the pkgconfig file to Require nspr- Initial import into Fedora Core, based on a CVS snapshot of the NSS_3_11_RTM tag - Fix up the pkcs11-devel subpackage to contain the proper headers - Build with RPM_OPT_FLAGS - No need to have rpath of /usr/lib in the pc file- Adressed review comments by Wan-Teh Chang, Bob Relyea, Christopher Aillon.- Initial build3.90.0-6.el83.90.0-6.el8.build-id254fc202befaac8c7cc6e219ae4802d0a290113blibnssutil3.sonss-utilCOPYING/usr/lib//usr/lib/.build-id//usr/lib/.build-id/25//usr/lib64//usr/share/licenses//usr/share/licenses/nss-util/-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -fexceptions -fstack-protector-strong -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1 -fasynchronous-unwind-tables -fstack-clash-protectioncpioxz2aarch64-redhat-linux-gnudirectoryELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=254fc202befaac8c7cc6e219ae4802d0a290113b, strippedASCII textPPPPPPPPP P P P P PPPPPPRR RRRRRRRRRutf-8cae630ae0bcf377df0337e719d6024263a7f11b5cc3342ab2d9f7d084191a650?@7zXZ !#, ] b2u jӫ`(y/I_wRD 7iJ&3&JEGoU<{m”5OCg/,zd&̌4zM wn}nYbM(B\(_+9wj>Yd2 Ï.4[|s牋]fghbZrD XM!V,| G"9w76:7f@)Sq,5h N!'3cl! gQRiE* mC Dce6)DP('lt&g\cY@VI_7z|!o3`gjg [ߡe ݞaA۳$>,G&7z:3EQ9Gǵ dT RȐ4;i~;Z-JI@0$pTzχoªʭ_6YP .I[rH<3 2nsoE+Cv2w (; _x눒ova@L$T_v3E#S]Ynh^eDo|sRH^H~cqmx'Sw8F+Hs39g<陙br-gً8vA;*DBo ]pZ\Mu%S<⹄vvu7'RT w@Mj'i-w`Ё u`H(__\^"M.5;:w16$Q6B_,)vBҙnfQ^] GABR-ʘiH;L8 CG\QS1]"5mV*8MXvMk&dugm9r{s^Qe[loFwe#f)W Z #DA"iㄷ?Tuȍ*I\tIƶWB =K{fz^Wn%dW(C,"մ2↩T,hWoI{ jr͑_fe<7VL!͠mMt2R np+'ך@.#\5@vcx%" "`Y[&Uꋠ:&L@x]9=3iWa!k誴lOi7BHڿ#'xfZVrlW\/2L]Mb.NQ40mLt' '$`4׊_>cK:xEEn܄ԅڒ="klZn+Ӎ1(7hl…ͫP`7P ܇)Hiܫk[a &y7ϐwKlbDP)<ufs ko9KXn6N$?6l*-myы/nz+02ٚSgMO&I\PrRڧP3j($P{)ee9k5e*Z `|hW$i0t%g:!˹l_񵼓v)VngdQr2jOU|_FO ʾ5=30€~,y ?.CS xu6GqhSNoT}M1o616:x#AJ7@g0?L!Ʃ T &e@d-ʷ5knG̖Ꭺ=i+=Wn(> T[ڇD#FdR4sv欩3r6Tψ'`ޘbv e{ \W]^[9GM6b7XỴ5=(0İ`Ԉ{T& p#Lsh)+aIbV DEA: '4OZc7tDOw -N\ ,[-=rhMf+v$qrscFB QOHSGR[_G;I@uiB׃E-ث u@.Oᒧ@ 17&ZiM6ӵq3u+]#1|\{+o<{ƷB1j@뤻Oo ME{=e`jvUnꈳ7CIur!50=:u]=W/;VԦR$]{fF*s4Q j[S Yf*7Jk@r8gח؈#a{AüurHj%w_,_h/iRlu) rdvsUV%Օ$AY19% J_M G*1h2~~PG&.G~ɤfvs.ibu5''gH ?,&h[&6g{lެ喤Ep!:JN}@²?:/nnň捂u>L]geokF#raZv Zasa.w]lwt !mdv|x{ݿr1:`3# #ffF=S~P<]cAC9+I%qbV&Aua!$7]nvRq?N=o@58q$r:M9]yIwXYDVΰPgݴ)r+gĉwu:Cp4<6Ԭt8x:f/oޙO6SU ۿ2Y/Q0zbj? >}38c8i #k E;k.uߙs- 'o &Uk?NA~y'b]ЪHXճatWomRՒ!%y(瓓l}ۭN >f.{/SG[LWxQd;0}勢4 |ZzBD7oΟ Ul&Fc&|Ы*o<s1y[g "=r¨Fך>z2aK6%fѯ@C /,,ra,YޔQ q$J7 @7aD(0Bg,ep#,IK4_`VzC]2InI7*̦u?Kqybл M{9,1*Su[ &ؚplA׺$~#.uPqM_brP4uǕͤ>WkΈƷEIse47[̗;# +{UI.Kp*@נxV23S6X\Ve3|Usbvx0>jÐf.[ԉyЗ.E Q|Z>=HGiegATS#w>ř&vCAt=yYYBxzpZ N"~":+O>y(j]cάXp7.c}H(7$Ʊ.yz,5(`Tl^h{]9Ⱥ@ i߾6ImlV-_Lbxd䈹K04Ai~iɵܹo[.k nXs&?n3@zm+Un9WQ2^1/ɳX~zZ0^9Fp":H6$T1Ƹvθ4=Wl*_:4?m,G(;-#cAJ?,|mcZrsL|<ɡ_Ә&2y6 ݠnx6+1}HFBױ뀵lO8Th;")KS׽7SEg,i^,HfHm຋9{r6dXW'~r3aq<)t m#G'Z8- 3⿍|P2 يs4q oED N ! g?Qh{!:!O ㄙ }XH{&RW/!vw~v"E-5҉}+$"G0;,dގb0cfHG/*qz| >Cӕf T6^_JAd,#E<i)ʒ2Dz`nʖPz=_wgTY0ɑ-l.*VL„m.6V;`,yh&PyŠFl_sshY]%KY'lR,yS˫z^gF%mdNxc 3mhzoXؿ ,W*tYbQH7dT,/М qbKZoaL4ߥ}wdwLd䫒=ӪZ[=@ϔEgƯT|m^_k-4k:#9rܿ,7sk ]*H#Cƣܻ5k$R畲w^K7U #3<7&a;u$2 ;qj6ЛDG[.i / .ހwr'R;..Q~ߵua|gDZo ,{ԛ "\gfѥJ, D. u;eۚ *25OZk$m1;]]+h suT-]  7qq̿gmg9`<d HIAj ڮ I@@f OƒоΖ9l#¬Fݤ +G܃x2AmUFrD+a׶IR24czk9cC:m(ɥxoS7`(D,}@;"Y:{'QUjk (?QeB@T i'@.H;߷5HQZNSg/uYiE!9k]PKA=mW.Eqԋsn|=6Rz#RWZb<3h (lOlR^CGG 9CHD(s!*Px$`TB~>0:wS &T]KtêqR2z;uO'Ӳc-!u7+iBz=UpvXogwGF|{3)*@mTNY VCm(Xj K:A&" ڤaodg(1`7F9 .ڧޠ<]F`_Q>U.No;syh'#ҚX4T:OL G>ԋE̪яn(JKnhX+սڨI=wuDƗutWDdK9rGAA25͚DKyEM8Sm5 cM/sc@z<91|t]3N[G|: y*=šx-I7I}Du|ׂV2|ײ::=1fP7]3 w3{tb4M9ݢP+L@֋=aY9YBv.+ձ풿 ! 6'9K5UaQqqᇊC Ձ^rß ^ vA5eC1c@RH?3S\wH` 𸥴M'VrrT~$KNJؔM/e'\l\-Ugr XoK\ηj4RȝÅ-#J SPXVGݍKkٗL=y5ZT-#׸zm~30N*_E?ӸlטPo/ >Gƥ_bK%2p0; FKvv4% G@HywI_M dOQt<{5Kcd`KLA8TTa LϬ.Lc_9h㻈.WehU9aqiYF3;bs# cshg+ˬôp=SoƾN)7 Fd)*tq=+XtD1˃\}g֖nG]^YOE|R"UV\`Ĝ2wa M!ҎJ(+s)NZ'z?5}ō pbEDY5V>#Rw~YJSnL,hvEh Hc"oYNA gg3-,v 5*IAhiOKS=1SCY^n7|sd>߀OsjF5ZB]hu8k6dv1V͚5soo߲relMyc:?7gN‰8"u#ki%w'Q7cG.ILy^}z*0 lE8cw U~S6o/)4fEd5P/8S@mP | cUA؇,y4GeXAJ;A㝽kubS*|mqt/?'P} vyȄz1虶Ak;L"yܢwҍ }6mTѽ=v䃼48D#"܎5\CB5-ɹ!Y.ÛR8^L'eGP5%}PPAwUeFGxၳHU輹vuB>lQ zN&{X;oTIf#y鼊q)p+L  (fyй8ޕZ޸ E.4{~B(Y0mg_ҏses$dΝS:]͏;pDl;`RhFm7Rks@@ (0S ͗.tʍo?q[W)4;:G׫v9o8KZQTCeBEB c uUB Smi.< @gJZz֥cu6ri%3} cv"DBgdC0fe:n 0NծFT쵁%jVTrsq }&|̢1V8qk_&mgȹvpNPa7C J7 :h*[7ҽO,O&^G؂ k;_Xl h0q]mgQo|{GQ LڏTV^vGHyY1W%C)|xX;w!F e[ wPEގ]ޱN tGZc: 1d0aYPoECz׺MS*UOi$>7oҖ߾Gҏ>DW^+Xu/u[H2Td{T?rg'd=\o,&ēv%#і2 OX8bZfS!3@㛯 ^W$":d-X6G.py0m*B,a}S2Rf4h;OIö~89$G{p4oHB3ryPEa3v5! sk'{솧>6If573Ǿie[/n3.l9ك5~ uIC_69q'DWafZC^;޳)@S:/ Uӯރ3m~>q5NQ4 v{̡ѢI=ݒR*BƓ7W7w&̺=SI\_", W^ar6د-&U!.+ch`j#D|T Wo;Р:G"FLהsjqZ+IB` fːڻp_>Ofxhe!~~2i~ 1 ECmSx戛U/3)ic{d(!t|sm D8,#7F , #Əf_:؃,XyGe]٩7̺ktjeBZ\30p$9V謈 #)sӬÿ|mJn9ɬ)42nOe6XV|0h?; yv و"sZ*Kx/5(k+h\{sY-I}lZ>]mmH1$5iGUl+(V|OŲ\r[ v`^&?31޺m~}HG/fvc<\zDQLe m5Ru7荴8_vPs`-O%˕$+(;R$كm0@XdToꕩ0 2ؕfh>Xs:ԔhcB{A3y,xZ;A 7'w hm>Cخx_y?AdӪ#lD)vU؊+UV>xwbU[o= SH6t[Uख़v1tP'uLZW&V.R,b?ՙ6g-痠U 2XByHvU_EФ o4˟lд%IXSUu-lC72炔rlopc,UP˂kg\G3Z &$pqw.GǛ7dT[3FW4-Ƣ$Rd_>(u+1j# /gj93v+;D .c>¾K=;uqV99!5t Bw3YmbztJ~]l d^fEmRӝzP' Șymkpߊ+~Jͧc k睼sw[jXw('ʵUz1I_FNlIN@0KQE}?O?CjvUvC2ckX+<9&IiO N".ܫk4]AU^x:_Z~>,<_B}oBKl {sKOwaDgȫF8uWW.9oCm~Sځ0$+#8u5ؔQ߭>?M(Zi@ڡǪa⧸7L5za2K_y1-EC2{̚~}^zz D #{MD#4nT\B3*wn/'PmM&sZÀ'5 ia='ь61rfŹ0'V {D9(b[l̑[icξ&{!meSh2DhbEFz~(5}N /`jţae/G =knhUtlX-Ι ^}5rU؆$2y{?o-lOziSDRW> {VgoZnrۓR&Mw72%xlhAPB 0I&Vf?ө ,^lfzn o![xp%(Ɋ?vnZ`+=%R2oXp` =ʩ38V%/䜶* 8~`m($[O؛َ8\ц0siV b]fOAV5oA:?=mzU*[s;XG{M9 jB<2rGDn6}.-V2ĔQ/lb eM?ɪԻ!i{֕ T`ZV t۷.~׬?[a*8XKlXs^y<p谉΄1wcD ԗ%:4.bLͲ=_KS쭝JO_]~Zg2]>wPtlT# yp>>Dy;kNݡýԫƍ[o{2V/\6*JǶj2ӧj[_o?QP@f{w r0Rr!:j~T*jWWa?tZ# ׿e;$7Fn MI(k>`=ꢴpYS= -uMudXKZBqjSٍ|%REGH./#ZPo 'Χ^*! [ϒ$QK*)2КPs`HP' ˆ,BGKwibpˣÒP4GeH͐+uz?;b^$"h扸t ͔-6CA?v.P`buBT}Ԓɻ5Evtaep`my̌xf3p7)iC4[ rqٗzIFwReb$S.c &5ĵӔU^ ¾Ir>?": B,S׷e{9i㴋sn˞#ܳNRƶ4;h pxMzxlh`V].pS}R'#7E~#EK}mvR5ydMCnUCќsM+gq;oAּVH.LuUN!Ν\IAkLM"EXېI>c"pd8TׇdF= {+ ? d5D 0jSb.مE >%sܝ?޲YK`E/.Pv£ Ʋfu9 "Z5TMϬxGG3yHuMfA|P8Ycq2Ә1PmI6EHIPuαgJJQ\V1Ӱ'Io į! KqOla<3IH0c^- rR1xIdDw!gmh$弆^Zɑll}½4'궍}AoDU a^G+LCV0YzhRC## ꞷ@ʶvwcydi%ca3< Xv uGDb|#W :2" UQ+UijAjY`#f.̋w7ȸD?/Lsn _!@S{?!1^+ Ej5lQ4=9}tOU@h:^oPQ p#I?qdI<}쎂?HLS#IÅ%opbn*:y(؂ %ކCd1$xFAቾzd}S2QD(>oC3]t"4Av1S_R].tlԁ=D7*5}-s.r '_JH\vI2C6F[~geTpṃ3HbTɵޒbL9Hlby)Ys+֒) Ly:GSVŰw3 }Tc~עk;aه_iV1w ?gI>eVwi¹(\Ct7C5;uBj`s>|+ÒMZ n= <a6D(0T+/ t\pOMJ eUj{&=jj+Vx~2J!ۻmmh fc^e:8H*Cs囬]C߫UzX́_kE.L;Mg/=hF,/oLS>q.]/hX$YMz`"]:l-7eq" eIQ2 tq]̨̫k!"ZX k_:5;OJ|w @)}U'2R2IdoE^>%3n h=XO1Oʦ|{P ~z>N]M1@A̩1hYdTI 4"FjX(A5"R:%X٭)"6 ka, B8s*RA|^Nwx&a o'7>b OlTC5S9Q1w͞lʦ)(DyaJG2 0_9w1L_:Q>aQF5[LqxϘCqJyv\fM=R@`)Dk<_8G-<.K]@`nalP?5KA`5Wģ)v[ 800< %4Q*Yw%m)3ƌe=Uu$ b& Irgbv_V͟9kWFfwI 6 W1t&O\ehW뎨8 ^LtGy~˽h!%NN]/>r?xtVrZ01f܂0ca%?50*PIx[\|EۿYmԺ 89;va=D܅z*'[3DO' Ʋpf.#hk,{K#ƾӛ!mrళfrF"fUjGJD9> *ց(7[kJM9H*9?U0_Ä%httucBhn@*v5e=`hߎ"Vfʥfn.a޳b4*j*9h@_(*ci6q/'ʻ}U~O3JCYC !j,̷ s'aib;c.KT!r3čn^O6Omm`bo6!}QliU U<%+K:?lYXR3흈c3݂WZB`;0J.rb׌?s <*R{-v ;l?oSbM}in*`A;, yB#"8.@Kksyund^/*Y-UK42G7uavrSz2_h+ysc%vUK|Xy䣴]^B`$e͓+")Uɨ;|WQk!/}de 0{dOyTPc@@1Ygex#ƽF ZZƃneX/[u%PKE5=t(ub gSݧIXҞVhƴH5HVhLdtN^x!b41CDF E}t E^UQha!$-  fb5ŧzӒhJ\f6_ IA B[g&kFutn9@~D,@׏ yYSd#>sv `idnI=rwF"BKoPOaSɯ<"Ƈf &`AHR:阴0n D͑&UY,eVgRlrR2xiZaT|Ab`&~$YdX*Ѵ6LמB(˜/\%Z5AĜjl\JÎG/]Mc03kgv;^D b1[- =9l_JEB&0kœ\(͊h_ <lWTcCNzh3I lXm{(YVrb&_ Qt@s1"PLv_]́6 I{3*j#:q1Ic;%>{v1z{/x{+c}òDd3c2 k-P3OAdσ)} ,yJmF RWE1_MIz1jВZOq9PǛNHm>ɁWz"fyg{t>9flӏ 5@ - !+Fg uՓoZOYD).j*Fݵ ~r^'N6?mY^"+m$9J&};_O9[a@}T3{4n:Ƭc]6jt;]{L^ePaOY'0@OS+ en; \-9]I2kͼ N~UPi(bɜ*v;,oJNJ[fLG &f<öcF/'蝧|֜iF.3 aE9kϙwĂIu#/ Y߰w訿 Ʈ(\ ӹdi[yaj#-=V#C@TB(+$dΩn啉㴌Ll3kKl .<ٱa7aFo:SwEs+=O*0W6y: }V_W]Lm;A99d9C.?ç9f7NB,)O*D(o,m\2:mX/wiɖ#۽5l <(;7J;Cq R#3?heP#0ꢃՇm}8[wK('[BY*xA!߼xV8Fj\h];tIQ=nVB/T4f#}vA0xuɨwub[چ}2KNVy e+٘jR?#Q$K<4@z{)bs+~2$c X2k0VmӷEHTk6vc8X,7Xl{)iqy>(ffϫl'RQ "]rL,ݼ87J e3TJh\HA#UU5YF]ȟI!!O݁M6jQ.ި^Dlx׋Ƣ|a2J/W"CfpU5"2B>9Jk>QW݅d؁uㄓ|+ wmðSegd&EՁ"v.'EAڒ<EIjiv4\` ,]#n[i乒| A Z2qm[JP0WKӛ!&zK[Ψy 0~#gFl=~B0@uzָI3 'q ND3'>/k2ɘCMbk҉}7楃 =oZi%+_ߤY>9zD-\CȂ搛d[ʳLܹJ{ ˑW",|!Nty w2gw|e-UIK%xibS\4 ps_A7KhQN499qEй`6,!&_z絇luy;ʱM#H"{l$-\n R!Cro'*1Wbp`-a,X =(~q슂%u&ѲR+|Ȯx^C6[WK١oc 8='i7A%fxNIl忭'rQq-g4DM˥8%\$6dfzcT$kS¢{NrFpS-` % smCQ/ e%wcʱuxeF!"4JzB\)|V22~$@]!OX=g7Q(tEEkh}N!FfIGDŦ#I?nm[jCzzsn49Q@'={@2 aLC^Bq={p3Cݕ p5\ݿjXB[" 4^0e~Sir ʽdMv11Vp4 f#<E,Hm)=;DM nY-ya%̷͠D)0};H rCp/$"h>Ñ1og jb-7o `yE|ٷ̟y7ok\z4 ^M&٧ihDjX^d-r2=0`n*H%tk' WΊDϗ<Ңsx]!!$w),uf x_j( ,<^gn1v!BE({̖jC6 %s_8u=]o"\0GYH1Fʒ X "d;UBH` ߩ՚ͮ?뽎{ @\TM_D%g4!{1@aXd^}w}Hy4GFp+Q3|6t!ᥙSPqGǹ~ 5M&]#P_|w^ڼo00U<ɣ0MIWAoB}GY&Kn {:2Ϣ2*q/oؠCMי'Uu73.=6db8=\ 1GfU8s.<UWzdPz]=rEBcӻ|?C,2$.$~| 0;^R lots>}#!V]z gQῇ:ӭ(|gd^۷$5,b'5(1k?W.!8!NqO(nM;!&ԌuIħhŕTc '$ \Ց 'r/`Y9X[_[.Bhs{= pnĩ V(7ޢL/L']e 6n=v@W-#Awzn::buLp[(,0kO#izRW^5&I;E]rOCp_/*[ 6UU[*K $(lbIn^ft4a I_yR:pr :K~Fcܗ]xsva8#[qX-5[Фyh};RI<ⅰ'hKza`g[ 2_ES7F~:crUIDk`-ܣ)y+^bz܅T[M( EPF ͿP&ƈf3(qᕡ"I9D=ڨ`HFŐ1e>\!,$+b4yBx:dCkah6>C' ;h;AZqB!IAÛ;gM"ܼPv̓\-ns,RhgR#:> YeTA?'$m9c{ㆷc9uf2 X=4{h-5q_JIkĆ;F{]\ AX晋Hs34fups`O!C@C]uh);wA71*z,!w)m}&ɳ) _0\6C7aEX3X@nͬW) 7L(*qdP'Cl }LSg:Q0Zғjܛ]Yo/evEw\wN3XV w9  #h`l30qrp`dMeAw8X?a/|F Qݛ/J~ɭ_U~_XxX=IF||ӊ^ J:bC? zER43<QuΈwK"#Tsx& مqdNҬL@{lr68V+a5[Rf͌tU-񥽤{Ec} O#/ %PW:Pt)>q(Cr!&<,#kN/i =p <}lF7ӸZ2Vр8jM}"ܜ-3xߌJgҚ:Q.qw<Ĵ@0;0ϼ/& Z‡Doۢ|zduf?s, T%zW(Z"c(cG6.`57`XʗxZ:ͥ*[#`ELZ(zvkP)]*g{R~fG%b)Bd܎jqo{J)4O8~H 0Say'!xΡev%[HQ¿!ȑZ}yY-;XMgNFV}TJ/q[F<,GKorx= 7KS/,#®۹!h]+XqG(~wPf 6jd,dF<*#1{_9]O֡AWfXWWhqD|/0jyEgie1c|͝$GTBxUMk;},A>2VE%ihޞLF ٩U=U';Mֶ T\U\bO+ H S/Dա҈lRm}~?TכȎ0#6qdnֶ(_qs C(9'Ӱ42B>;ͻ_1)< 5o҅Dgw˂3j[r-k%97 Q"~ar~9h xnp%ӻlzز[Q Q4u=DYBY:vݳA֯LpuaF},{@lU$lݶ6FP"TE}@)4@Mv=]B*7 _Z̈xt/w ڪ5*ޟ/TUUB@QM"le= -8ՌY j黝< 7鼻%4.H鯷N ;5'a iH E>m/pekn>!z)CC/)e0VaZW:]xY6J*\b ֙A@kcҠZXq$ I~bQ z"uēCEErgA$5Fn2Ud NRn,4^?`,w`qa)Omrܙ4\dgw3Ѣ] P*(=r0BXEōBN]h y G,]MNN{TU2 <Ѣ))LK\FHw?Zoa$L'Bv&j%-۟r1ZYq5 $qkkT(D [ZtC@f#hI7v&ߒMd)*-_gD+;:1@Om_O pv\5g6 úsߐsGO'7)1@UƓ@l/I S;BtsC)mrmX Z#j\gzxA:rnj/cO<3t#Md/N0|\B﫶CRoX<6dY=3znRvjNIp:< h߯FqA.rQQcHW؈]3g}E,ybZRdiX4 f$Q/HRh [T(1YOb0X:ɾ\k/r \)H5߁ 2u y0+yE߂Bt 9#E@]I8ylL'܃E5|O;í*ο{7o6`#Ȯ" FcY86XƮ|9,ӠdRJNCL6NF4ppc&Z-)k3痤[Ow˕%fO}R@36b"4޺+=6SPQ'-QuE昈0E7PC/hw- -/.lUKv>ɯ>ylȄMg٪Qy%66UHǏBǁdOc.sc t$gBSB* hݣ1ZZs IT)fk+v.7zY>##Zm;ůT@%yDzxwS҄~dC'n$1 9&%(BS?BG7F U::C2zz"<>`zmףtqi9\d)u,#uγS'ΰnưԳ/86Av"AKϴieiݤ%w(bw%ӍܙTjT|eh2ejdPZ6eT/aµkއ4kyS?- _]&prOX4_=B? @nN1R_N>ly?C)[ǦJ"r\7HF5nqW *^قdaMm? ¢HYMʨaԸ=rzEi nhEBkkD%AZk6n[2~}ézFJz 6NHT ARx8&D.:iSM N%uIP?(UԺ(znft: FDi BfY*<奄,W(U }F00q ~1C̽~x-2)Fm0)~aAC9GӮSO/,Jlۡu WBVɅV?5CfU6%Y⧵բe7&Ug"Cnp;tB%:r:{P#7L 70)|- W@l)AomNP;p{,mrće/j%@+'x ?*Rctq2 T>32w-s2AD-ҡT8%0OhJ(X7+ _QEV̂_N˅>[f dtiO9ևlB; ?u,!v$oXSLV6퐸>z,^R4_q7"_QCqج{i٠`dHihqwQBנÞ;.}+)O'M-()`-3{ݎQVG( /@1>Ƿߪv{έZWS(`S/ m:9Ml͌;:}/܈핰Ti^/^=*SUvowݯ qФ']ܘOU,`_>&b&m$ì#F.TQ+,@OXS醖'mrh &ǛJzy;Ͻv\dQ2Csd\4ˇ' ldo =ґ9 kڇD]J3k"d¥կ`HM˛k?0dzZݕV'&+8:ͣ27V޺2Zwsh.?HoHƈQaF`ٴlʽ薉ٶ( 69xV\M4[]/^c21i),hK^+[.j45"Nİț]H]Pdr)n4xZ^;;YL~O$;}ZRr."8?W&Lto^*)k[5FG7/1WS2@ ,!0l 1PF_a4BsWA!p~YmCxkRhz(#EU&+aQ$(CI|x. Nbʧ|0WFͦV-) 8xh\K@$ަ @oloY~=y:ByQ:]7[֯m"_2%ӏ\$m>zhcgWUR*㘛[߿nJU !GE OՂq_8)- WB#!%?)% n:u(ڍ+01s~"0GQx.9-uXޤwW3#vt"ovUʌ3cK͹*ڀVsD7Acȸ}鱵-ԐG_#a>&)CPrdp[rk,ӚĔ/ R ۰hǐ;{ 5ݛ pXmZjs~E\u0*d/YѴv \a>'&eR2`p pĠ:JzU  \`wރ hx ?-AƁ@=A4NGWe>86~ŷu+k6zoG?t!dQSG$( aRW2<BCb"B{Q6v3Cͭۇk) 0GS_/0Aۚ{$W&KZ`$ & zgDq7\ƒ^w؜pc '_}. `E;Хnޖ$)L'q6y#KF»&LR0tׁmu.nyU[3ǜ=!#"ز|*'@̱"uV|$Զ#g'&%S1틬/\RInz\1Df!HwhD&jd#ɿ mq,߭ާ9#>6OW[ U PxQĄxW$gr˦ A>zL1sOvS1Ute{(` Ѝ 7.(@{ϻvѤ ^]J1B2c*Or3I$x#nJMƨӮg?ƾx|G8"Lg$8Z"¢奝xPG ?@^>c{?< =tZe eʠ9ej?tE$ Rcu5 n.DɁ׽ᔉJ|Ma``"> VPKI@c,2v/4ǯ)c:+|Ap9hܟ;pr_:cDSu-/qJ{ *'śs1Iv, [S+a^Xc% o-^mX0mYO"x&Q->: 0T\҃#7!r77Aub<]`2.wh[jz&x89[Rk G`9=h@%N"/ R/ŞSxAML/P>S8M;?1T6sfZ-Q44wQ`ˢqL@$k8x<_@hw{eVP7z0);@F^bf.ll&ӻM)G0!`(In ؾ.nƪXz7v47A>3!`_=F@7' fVbrW{uRp+Nk@a0ME|ݧNVEZPpαM!S?|wP+wrɥgS =?ICMY 8U$E^?4,Ÿ'Ϙ'͑ą4AP}Sv/ rDX|P%Ƭ=u W!WY)xCU.P8![bt`+p ޙ aq,vzLx}wy$YEjnNb;"yd+9G(plh$TV$*3#MrI6EHԨnzEβధȖWN@ ڡ\φ6p:\|=wݬ樺wNe~xYJ=TC'Ŗ?@ܶLy:!p٫`/a: %ا|n]bGq%JxCLp51_ vi`'YՈej.R<TEf*#SOW !>#jUymb!ZE.Ԡ kS8=!WMd6#U3Z+|L EȮ"9ѧ0Ċlx=B9^A,_ s ]P"0KhT 56)W[D .Si7-zD/[$ȠC%FK?oJީ"ɯתK#4# +Z{ftD&%oƞ}4Q*Wa:2>RO7=X(+pl$ϻA]xEAOʞ<O$G.Mj IpGۇ}_?uY[{hUO{nR]* 4r$ZAC %)6eW; @DK~,{S[͔Ɉ"Oy_$拇?~,*uu$j"8ЪlVvjk8sZTM u8=꿷brL|phLw+SEDDW=Њ6fD.ȷ~$lPpmFkW.]Bnd&cj=Qf h \^@@-g[cΏbC jDO0ЍT%ܺX7fT4JWk c}BL(E#)/H"}on#o7owH8&o_:& J%TL*ĉ[OinTޏX!WaP+ڽv>_ib2_w#a1GE؈֮l뀥}) nvOJ < 9R]kZ|ı7/h`=)9oHq/\ӯeR>s7~i|{RI]nm|1C/wZB@WNB*O=%8΢afbMI=r1,-^WwmVcarN$+8`٠TmNd!UgB}]iO7S~܁K+g+FIL@g|TjRd"9T25TfeV-nSMrrFD,>. *DѸtj6*5P:5u\P;poo"/mȸ1t܏:['#`Jhm},͚,6NOI*'W=P`u A@VS#GsD68%3( -3H 6Ѕ郔kszɴQ\9+n=ivb4?sZoW^FC"6IA~tɉ|xП*3c$yd+Ȼ}ЭoPѳ`qȧRM9^e]1u)j>fB568AY!yHJF:@sfSfO-`e Uh!@QD^C?+;GQ'< Q?\VeJ˲,`@i5c ESfE᭕vVQ<}͵7* 5g4Ɯ(kfLCѝ 3Q*0LZAs<5+vjQ͸+`@2VQj Hzܧ:tX9|ګM=ӥ.Ä(kXrxcK ٭k,)є)3 XNJ[AU]#o'&7{> b8yq4Zuъu6PցRƥ iR0 yR:HL'-|ˊvν== a"lM (xJ{%RК߂ݸ~1sG)@*G3?,\k e @ʟbe=^/0jOL+,ur H^EmYi*QEn@;__z u,>77)p}|xc4rB9nd'N e 5N_hSbLCҫ.ǀ]sbsK]Iz:#Iռ!qBmOQ I#km>`g*입N<}a4 9JuWp@ѾV^rX=Iӈ#x_H(MXh-yV!c&U|i! ڇyy?BNqh;MooZyƺ^6xNO?h .Esd.yeOQ:Է@Wq[dmSK12Ԋꬁ v㘱E[0 2O B:(rqv2X)\ǟ'H j!RJ4rJ8[ۍ{wJ :YmZnuV-]$.3'EY lt 1 M<}ʀݤBd'.gIs*m#kM(>I4 T|yJSs u&97x2qQ>eNeoWt?)V*W}t^:'"E7 n}V͇/Cyz.4isPFf8ĝvj[ؗde5͍\=n:QZ~!t)m{>@pYAc2B“ROH3¢p$,V$Vvw3> -!CKX33j &8pa 5j@djR 4׻ʂ8 ^ YnZgf5ΒӅȳɁA6N>%by(n7&OnOL$ݻd=Iy:=6iz0zrP퐁]jil%1x Lu; EaBAdV7V mǢX1Au{g t DSӤV&qY?oyj<*WNxM}_e6OR,:'NlB=i]C)<^fs Wb8UAXc1dž.m4_b݀;r򩰋LlPHܘmg| l h A|_nnjb?{s}X.LU|Tr<eWbPrFv߅G?{A WB6xHnWd ҕ_GpN_GRgJ86<, j#uq5,8{n="ܱ…氣k\c(:;~s{Lj;,y+,W<83nSo xpʹg4 A >n?h PgaP 9:o]h(g^ʝdb$_!Z{8[ZQbn*C/G[ta@|#&hZ:3B0 +ã@HBFY~mBό V7aS'plИeoA؄ $䪅o[6,xs/+EF#XPmW3μ&q;=?>a*N堂zZD#`Uu3܈#؀pzF}6f7le~b=RLp8SAJP EV$+K׋-Vs xuݰMllHBvcO.w]=Q*R7={djz(L'a譅] \eub*m%zTič;I;w9LJzSMST[s8zagcXTaO~]}J $2("8^*rL@od]. ,OO駸 YSCv/`F  ݷ׾|M餍2ۡ:G T-X]s,I$4gDcs9 '4 7#&b`D֙K8fYӀ8&܌ʷy~` %(è_"Q[-x{SU[d"7kG]46hTb؟YH ]\n@pjmJ'#yS{YbAQ"53u-><ӿecj[\H}aO6?@Lsp"٘ '5 F˼Iл73˃uÜ\B(e|SKȃ-2CFqx ~FGlp4)73{aT\}{\s"WӏjîAB{\ڂQFaĤ< T0K+px؅]ЍC@>L7prgƮ]wTI':0Տ]Nֱ;yȄ%ߠWO(M<7{j_oD7C͛M')k. $^&"-`y+89%dCTi]|go+GN"LO7=I~aUM H4"Rxׂ"#73 :bX r{ݙPWam ~x |$Mu1&g+ByWW Hg8<Ʉ5@$Gow#4;/m1Y`z(^8n-y4Jmu˶]b?&SXK~/[e nb4Ye -dN ;PN˞9B w*SÆ"ʢj656$c2xeݔz, \`r&*P4o?lUR HvRcbXkTz,tv Po./܊niEUȖ iyM]rIg\9UozT)g$oL6>S̜Wb,i;3*]r9ňiqbp$q 1og+3|FM8X Q{XCJ͸ϽK rߨo!w]߲\ q*|)3_E+Slg/QS,b׋%`Xט'ɍ~% .n1LrAKO@%ƴِ-E'12^hkKu0'DJ'~QJn8536r/o ߃<{%RU7?P)_qK ^#|)ӿ A`I m+0ONla؏pmuL= ]&Q7lr:'S"F՗`M'+\aP=,BO`%%&219 D\5WX++4|&L/"1xO$.k9*"s{ē 4;yg뫁oxИ>RN:^˃oG|C<4fiR];rDzXyV|Q"Qarx =$sd#R= Cg5>cX,C>06Ofh!|9P䭟VRԣ4AnLU7T:;Ex3]J\tL)Q{ߩwLNje}R.2gElmpU^*ɧH\)ܯJpWڶ[Ա@W`w: $"ʑDb " I;Spfmt赱=:xBTUGZW_/"nQFҡ~kcq7]`" yJ)O fG*k'kE1O{lfzt2 !yR52B0wKd[l;?b{zUzY_κTjEg ncNAMl_u#6 yN'6AvSZ~̹3}M *(QD8PcCmXc!VT ԈoRy߬\]kW:=\[_~A 7zwPD fهk)nT4e!^AWA=[DPPUa ӣԃ`%Z=Uč1›[_?ۛ0 rR=zSDH:!͖tJ*6R CYkh6?$$hwJ-(.sMj,"ǀ/kդt!4hy^b&vgqMWVk͵Г*F/qgjA7EvjP#^Op Y뫘HnZ}WJ3C)ifUwƙF0^5FRzYCB|*yƘ.8ͦ: Zg F"\끒MWN7 8 YLl<׺"RcRRV)̵Մ[3/3x͇5fv;omprCPx ->,apD͑iT ooCDwDE⿧NZ}Jj7wl{= b(/ >ϭЏO5f(tIs~.JȑݏX/oK9ܖE{B\HI^AK1w,!h/ ?KDX ٦y?[fGێϙ| X惔!$KlB lwH<{)xIX3lE 't(FgAG8 =JyBM|F;}0.RN?n-&:YHt--]u=$q1? j4Y^rW#;_UngrA"O17똇2mrW7Ly#"w|YJ+ c ')՛,QLXgjD28R(95  reI-|CV5z]eZwZ(!( I<[dMV/T$A[ǦGVeL"03}N/B$b7o)\GQFm7r_It. ŌҐ+`DnZhҗ :A6WIQ,ɗ'ceHNͦ@AJ; E 5҃2568P$z L{+?~=#WNuj;dqZQ᢯k9V}.`}Q*53x/($e+N[28@Zb߶yT׏@ѐt;qp^>q&1Ȫ:N2ug0p٫[7y^"G:J:Qq#Q18tX6V:P7G lwgyN`HHzeyYݺ5񞤩OcY7b0دѦVsl"+v)E%Fd#rpo~SGJQf,֤)4-sWH]R{Ck<1toSJL +Z/.mns܂=ٿLTKg.peڛst<6< `V*j|ِY+qm7ZpIW1yB#LPlH2i!Π'2 "F*BRJZh19EQ1!E SIFoI>dWDIp94Nwmz duX\^*ۛ߆ q.r _! W "bH*Lg8BGU^2f7C[fuѯ֔@5׷:Wfp7"kP!Z푆 @> 1S?>?|c|YSۮH ߑ;_%:Kkf<"e'*HwS\J_-n* _kuŷ;>pи4qy|fc YD- $UqTOY.52m}r3NdtN b;a~l4+?451$x{>. 9>n"`2 !0 ;MRd.m]׬΁(oiP:P̄,K#}W>aĹnE<6(^*bt@8=A5 NU/X(7[vϏ"+̀H:a 7]&ءA $aIV|njv4]c$Tn&Nԅ7큿i%}( okCpf>lB3^w{P^-d5( @;EZ*0drވ-ق'=O.d'ƿ,kt..Wn0Y !H6XȜݼ'}iF壿öej{7Μ׬  %O 4}sfp[Dh ;_@Ce}GĽ<0$}uQGGI (zB DKү+ǜы}k1"I7ۘA?𹗊u{]f7 Bwy:܂J +L+(t\O؃Hk6D4ol;Y_@x`zT>p8Efp9^~^K[GKn`Jc<ȁO,ھk"!g-K0hIAWߖÕ0kA} q{re_ WQkycq9H9@,LU2mPT;MbC7%y*MP7#\jaR.>zB׊z]x.N1(qGҳ!԰b9R7$NC뀀^T(8ր\noV~9c^dcFdɈkE_AT2$ŁOWpm ;ݝx~4J5[3Jqegnn@6 7wO+~\2oAghAxrjӀ䂥Pqx$\$Cb'g:h$fPu0xy2Q%t`vk;s:CqкM~ZF4 *\>=*ST5X^bٌ9N2וr/y]K8X> _CEV?(X`t|XŽ \-x(gZ$듾5t.(LkEhxjhDeZlBB #}<8Xrb2?G+xk!KfeEIck@${srW!ETvڰlMnU,Vjj@ c|=U:E/`a`n*c:sݖS h=LHHs Ga-kpɺWC%Ͽ ~-W'13ZHw0vxgT]'CJ/?hY,9ߠ!.B)@e J6:yQ lȇW.˩lQ4>G!j-dY@˃߱Ȯ5&>QQ<=RZoOU'} ] )e Es!0~ݩ Z7`w?ǐNf|tW]^hgdPa„QmBB^J@;OABpZD )P[Roޥ~T(2n&7,#8w,:fkPkC>Lp i!H68ߐOq(bO^`IR8%5gKl^sܦVIe &9(JйUi(wR A5HS;!cJD7q~m;hrs;XZ^ɗ}ۺd}Ԙk kڈ*cW S)GjeD_\_?UB{2~zYֽǠ찑Sy1d]#j0f"]/9Hc-ţ'wTCbݤAݬ|ώCe  ,$ҔOݦ&џOyE]u%!/_ Ig3ԛXN^?!h{߲ ^>TlOb;1|=q:TLrC]u?;&11 gQy߀P!!!mXf)vsMd#eqE -'x@ kuf2t&TM7A"&~u<%>Y;349Į5hI*A9~XY̷sS/w^w^&z=}:cooSsv& ȴǍ}4@%:#SB#'Ve^=Jc Yk?vc%Tyؘ/u&Sx̀&)*;!A<93vD/3[B Xao@V,@4fHY #FHIkC~!hk$;x% y5k原(գM.|ר6NHf`PnsEpm l}U 2 ;^͊}pY vU(VdT+piav_ ӲL?@$, 0EWKQkc>MzWAIQ=&&c O-I8 q[r,s0$j ?`*t].wG3i="P@e?`}lXV:;TaW{-J4r<5wcp?~Η/ra}PyQ972bR;c'v(|Cn2baN8C 8}@A dh_釲cSϺi`d3RV_K:SgsM|:!P |g^d:մ gh gFZ5Ih).C_hJ 2fɿw3br'Dt#]4I^tlNyBQWCڗ@dGڵV}=I8HVժ,\P+[c@ve fG٤xQ{ǰΞEkq|t/ۧ-`\ul%3VtsWϼnF%c(ʓz5/kj/ztW }H|5ǕHrM7-''֤BS9d(͙9>N_YXd{[ tR_6^dGf6})#VӗR@#g]/eUL"ս#4<4?(IgJ_&HME"]Q'؊vw#ɿ3'{;J7rF/cA,pXZO[ZCtEH(* <hVNHrS.R]V eEX ^ڡc${b^Ehy\6ЏGQSnwkj[pB'Ky)Mw`f>^!]vMwij=8;Yxяs%,K*r@4lcdҖ#@},$ɥCu8_D@gO*3 ԵM}g%`#t̜tT!:+C*y似0˱ Cn4a_ >@}PW?!.ѩ!Ş_RtCb ո@=1hhhu$a9=;v1n 61drH}:"w@Q39&@簔GF9&YLs!_L6r_ cւѢOs6-6Oǖ-!  kҕ^ q`/ӡm6@yrEO誟;E>䖁<Uo 342(vL2SN/ZW l rCv$:TZUdFQKZhսp=={ 6(qep(l*n1j^En Z͍U-EBb],Z1Ѽcf|Yf=ydOwѳxrXK|/?d}4NenKcq H,\R4-}$ā@t75'$7i.\&]5_>%k'3!e 1G G'e;%RqIvMNjubBZb`ÌޕpFaܽ^2 I9z8a4U:>i  ۚ=%ͺ :ةHK-Od^ꟲ$іs٪3c1Ԥ(w :ClPf׆|P 8- -3N/f̡6!V݂W4t0iM(cLv#OvWAKPU*v8n9,E+qt5o zʩl_e4HG8ig@bO 4Aݍ*D XF55JS]ۭl >ɵw^њW(OWXi/le ͣ3:ؓ"=.& 3⃊c9puLTS@˷S*#9p?ytRE?XˆV.Yɱi:.j ۦ֊1 w 錳TWz<b`i Ky'豦Î7[]Hbn3Q*)gPX<; ) 'ta(zy'H S7 C3F]8TlyFROQvJAc Fdi*]ē&) #̥[tRWomSO:QN;f`$z; W\r*݅ JP6p\7w. BR.z 'mDɭ;7Y r^Yf2+Md%#fx1Zve<_vA]f|l GJO%P9NX 'țrΒCJ HY+ ]RIa-bB?ƥI\\S_fPj 1lc0{%Q8Ԁ}0-?Hd6GE3|U {j VǁMTJ;B?"wwE-."|NnK"beᧃwIG0m6eU6Jt}+Z RPu#2}=@uG" "_Z.С#+`÷ǧ|.uC:020Z^ţ)S9I5O ,Y\bVtS3J^Vw$V?=`USD;5]hT (o[ʫYf>FCvy1VW (G#p&}$a/lN%c}j`\*xbvaVܼhKPK(k&t3_+"l!dx="zVatm JDw8ʅ 6 v92OR[S̜0L T-;Q"<\Ð״jyX u!(ĵrE>ک;_2_M yѦ<5U PՃ-8WM'f-XXʖDWŒ<-[ ^C`ʭ|:uK7@Bg? /!tMFM%mO*Du)V]:G.R⎖N3͇Ex5*|r\f)dř 0E KL2 p͚W?5F8Ҹ@vKk0g'dkjAfIL=^61>?jZ<x4V \HqdŌ(U'P<3PtDpI=33`̜7Y.c3[ pf޸7:X?胨I o!bu@׵::zݍH](̌G6]=`rP*c"l4u!)ə^y4#w+90Pn$!n%? -cmC u>I;WAbtucOYNq?񡺔Dp7X]3 wt艭%(\73;,KO(ӧnm,f*4+`)<ݼji{ ʱrC>$إGns6:KM(6V JѕRp[hx zrpt[tdK/_4g+NRTi{,F$5QP,qBJҸ!x-'@֦_hfcfػ|{}k MA"T%XT]fċ<#'aȯ4yxF. fHg3DP576|avE^B|}eNKD7*u`RR Q@+Cp昇c2dTd'U˘cfizٛzRy\lpCV@/aސiiC~cS Ax.#fU;5' "؏su7Sb`O?ySї`$y0"ZR>\uآ !avL02|$rŏЌdj<}М7DeR᏾S$;3x*= ]OLAl(b BZ&(jlB]RQݓ4#nC>"ز\fԙί÷auR+h x=үC!.l-LКR'A-iOJ&ST|<]O%)l*((r6L0j,j`ǶM䋊H]anY(bC ve%FDX'>t!ӭGr{i}K޻t:,^0 Den,?ǷJƬ0E[>naMQ;F~>bY($`n :lu>|LQWkR2$5%9#5e\p[yas'tĈذOW5< b^ۜ3yad7~n7m*KR:̤v_ՙ h( !ЫA劬ʁآF;{,E7f8rFhO'H+( ~ddg| u8Ta0T졉-#SBV?j2[Fȶe.2 ZƊTҞ,%`LZ"FCN 'Hj^- -[_27ʊ$H*υo!Yh]z'axy+t ȎBOTp.1/S L )vVD!&il&8)VAT6&6y.S%#.`Geݙ'Z8&_\ZQBg#LH5@&Z^ X1=QlkͰ rr__?<9I2b1ډV|{ "6`Hd;1'^?rn'Ux?Z }o"X9|qX78%("_TW#X#-s@mIeE/yO|1A8z[um+CZEқpO Ε)=@g+Ewҫ{ m:ژU q^uj)=^FO5=*0i+9qOah/R7d!Vy'n5qrYE*^[Y`3ryM78%'1E48#եg$)%R u;ևoXlZkQ- 3%~'#&r<+3#i'>kO3j5bhV^?yJT-g 'o^쮭RoFv޷Nc cǞNmd<-ޘS1%4kg_\Ŗwa-f~@wRΒe:E_Na b͓t  =+m/-='T YmXQޝNW> A9::`NEzK"7뙼ӗW* H9"Tcu {=P[^4俎Ҋ/%I~`Zj`\yFȸ 3Gf޽x ,.Q,uO̿)&z掯sFw4qo"QF1l\hC%hN/5$U-ݏͱc0^7!)#c hFa+Ǵȑ̉La&TuOzA0`SX IiP'ܬЈV~mSR-4s ;o{Aj5u̦)G-e+*%5?${^I\>s)ylwjÑxE5[UIchA% ,`1m"1]NWY 30''./?c\lA17 kW`F#(YeDETW*'?TGZ@{M qH{!Q`3AyXJzJ}W9Ļ zkVR2F@Ѭ ;%ĿPD˕b-eS |('$.€.ħsLK_6^Sg ܵ VgN\Ħ޾I*<_X]gKF0jɁe|ゞ/'")!yˠӃ-oEW^Zhy?_8,\[I]]Rڶ'#nyH$/!*n:^ĴVMuOp<ɤOq|U&p`G9d+F}mkmm\lyڈq"&cMH yY{dG"[H5+/۪LQ;,Aa%jQ<)^"ěVكeg #{tH*v$ ꬁE~'K/XA"MC!]Ǒ \yUw]q !F{Q*Xzor#U25YL,A;c`dmϛ,%(I\h$ Dڃy:C! ?} v*S98\mQ;6ʝj\`֬a1:~+.L`+\߰|瑉S#3{ `zsH8 !s!7BhlSj7L[f&!EמkcZ+R !@O46P7 6۔~N̚t3Mɘ&Uy%jL=Bb@=$.-*ӛ)+N@v뜦SVim>wǍ(ms i?{EX\i`q[ߤ޷&Z#+ ֌e7 F:?5=x #D4vP O|>OBuǷ)v[ǼW} G"߶fwkdcw`j!PAlC+Hkv<죺<9x#%s1Krq.5ʤyЗ99bÊPA!mhoHxV?SAVcNҏPe59YWl|r9s-c^/ŭɝelj80t};2m,s,FP?Rf%R!QXnAV:W١- ekjUQq255|aYG,ēH†41ƟFJddSp$d!O,O W[5IKP/GMԤCPTSM^>-O#GV2lUiiE:ӻ gqRﶽ8\ęa\CЛ2fz"+C]=ɛ/xEs|'6Uyi$J5 rm ! 8Dc)t825P.C&X(O7(+, q0T<ڒ Emt:[wtzx쩠DܑX b>si~W>}Wh.(W(PLAZਥ.| rYhv7,G 8@% \}bzdPH?ꮍ0__B9e?3| X_ԼO96ź[ e;&.R:&X7}fb~ӈоV& Jt)NĠ~#PCTYX ؊ϗ%N=)=s%IjCYu6t [hē2lHCO\LYG,=b&fj@#J5j>LyPuH4){NǴ(6Bw7#Ж6`fB#? `<+iq:IË9ܠ5ccilh >1̋tCQ+B,АLMy.,8bpϪṣPgi"vZXgpIڶ[¤T~yaG2/\<! C^",K)zvd #\4V*ȤߟLNxȁU6j˱  K1K&WEZ6QU3f`^%o8ZAǯ.z} Aob*xw \w'[]Xo5ElT뺼=:#ЭScJ l'5s^J}zw]h866P1& Q 84ӔhAK=X_[禅 qŞ5\@ RA~haۦ DVUp¢] mZ YRsAaj|E%:$V7Bc졣:smsLY]s Az{i<Ѧ6 vPl\@x!b3scŚB"CT.!{MbeѬ8=W7>66+?|K;S%q@`rQH$%2׾4':V︞:@)} DvZ┶JPt7\_z N5s7ʜ,3 âhTSv9tz†n.S/y%k9 %#, >C0s*HTju^ mjCִh₧Ztp=tB֍(\3‘_8芀v7 P=u7]-zL؇"tjY_oRwow'IV[#TW^*C2^kNZk/8#뺣GեM4A6F2TjUME}ȁC54JѡqؼQ;f ~}0 3s4Ot\X[keD"Z(>þ^YãE7yV_(!VrExg:)qSPfyIoeI4PaP ̚0БG?M;c1 3ܿ\?垲^gqoc!cJ\ݾ1̂ y,c(8=[ g1;$w<բ ozCНv ɤnwëᚎ$ծ/y?J2\#U6-g޽v?8r\~ ݲa󴎒Pk֮O_y[QؙX/iݬs/l-:#I10[7Y$΂Wx<#$Z|Wl,QYe眈5ॠQ1 uK[RfK⦫-@\3l L9CAoSķu(b29QG|X/AAS_!T@QS'+qU"N+ź r x˴fbԸ5'@lC,*z>+qsnAʜa-hGu۾]ƯN$IUW: SFdEmaO #lL$dn3Vm1r#z-c#jvZ;$` L7S+Kk;r}f_#;YM4R%3+tzR*zP7jah!rQL"g3K*)s3LZcLNo: Vd)ޔ$޲f9#.,ALz9NH[M'L7Q9$J}mM`H4S:KR5`n|{u`CpWOs;*eU |4eƽrJpptU5ޞCpT]fr>6Ps7E-ʠY6_a,ɔBpShe)~/5Q +Vz.<)'evc?rqV\B-D)Å T7` FƖ-PjwI$e_:,:炛w˔f𽁀!s %@LqedrHp]y/6ifLNW@ܷ<]vσٺ3F`_lu} a 1r" gաJ[`!]$,.πa1ݒNp1sPfqBQH NS}ßAN>ޝj~غޣҁ=(O |2!5w*p]IܬSeɸl)[,N=>λp}i5v)T%`U{uqiqCR/qc(L k J(p\c#c1V5wxYf(V՘cեݤPBذNIBϗnyH֢@v4*.ٚ_ M)WrZ;M'AαpVY|w0!oZmw7`٥z%ůH&`Jt/֚49-٥,ISY_gD \uPގXXg9UɁF}F|vb!wɯFU{وV5ŏ9NYw]K1u>Hr#" qȣ*qr@P%5 .P?Guٙ ,ZK,L_[TV8-Ox=ZPO K.ito)X Bl%>K>ߨ|Eea$]X-x|jr!CK!jIxymN;Lv^W+o\&Nz0M-1Լ_1֬Tf"wNN8HQ#81 `>\|*v4P<.,Y7w0!Ƀ[UYc&#V -k25@|ExM%}J267v|Dntrȷ|TI;Ait+T<N< nQWWQjg/X63sHaQRu ʟ a]N{3#ܸț6DTloa U[ +h%˕v0t+P%̵m6)%fV)*.vf@ώRůdtbSV硩DM \lK5lnb=VD ) YZ