nss-util-3.90.0-7.el8 >  H   ȉf U]KQw-ͯvĝ{"2cJPNaİ+ gzMM0/[ƫDXl )-&/k-1ͬȚx{QuMQ/iڦ,*b4} ?'FMlLr&Bw4)f*4-ۧȅ$|bsoUO.ahSPJ*rUwa.̋mZvgHo%NϮHXڨh5 y>_{'C@/~p'#\=c|].G@>@]uzb[_5lS{Iҗ̡_0I1_e\|E)sR$<.ړӔާ9:濑5 c^1d3u>?]ZuoUBY&V_o,X%gLK}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 f U]$to))IQuo" +nV.%U[`$3p> Zq8:sr$# 0k]BZoYgSh䷤3P%4;m+e4@oTՏŭ*Z%;)L̫cft𺠐E<~l刞f 6?R$ƨW2&]>[3rSՄ2'[5%B2Nq)@DԵ ݛa3mh*Ρ"w-lk|R.r)"LmM[ծH[N0 cՍd dU diq..U 2&\)Z 27f4 I6uaiSTߐtr^ƫ[wǓIFQґDgomqXF_4 |E4BF{a>oJ`<?d   D (@ L X p   8Vtl)(Y8`9P:_rGHIXY\\]^bldefltuvwxy<@FCnss-util3.90.07.el8Network Security Services Utilities LibraryUtilities for Network Security Services and the Softoken modulefaarch64-03.stream.rdu2.redhat.com^CentOSCentOSMPLv2.0builder@centos.orgUnspecifiedhttp://www.mozilla.org/projects/security/pki/nss/linuxaarch64$FAAA큤fffffd|N98dafe70c9b531f476f2e2c16e4cc4bbf85f6ad0db10edb7e932e8b6e8c5fb04a20c1a32d1f8102432360b42e932869f7c11c7cdbacf9cac554c422132af47f4../../../../usr/lib64/libnssutil3.sorootrootrootrootrootrootrootrootrootrootrootrootnss-3.90.0-7.el8.src.rpmlibnssutil3.so()(64bit)libnssutil3.so(NSSUTIL_3.12)(64bit)libnssutil3.so(NSSUTIL_3.12.3)(64bit)libnssutil3.so(NSSUTIL_3.12.5)(64bit)libnssutil3.so(NSSUTIL_3.12.7)(64bit)libnssutil3.so(NSSUTIL_3.13)(64bit)libnssutil3.so(NSSUTIL_3.14)(64bit)libnssutil3.so(NSSUTIL_3.15)(64bit)libnssutil3.so(NSSUTIL_3.17.1)(64bit)libnssutil3.so(NSSUTIL_3.21)(64bit)libnssutil3.so(NSSUTIL_3.24)(64bit)libnssutil3.so(NSSUTIL_3.25)(64bit)libnssutil3.so(NSSUTIL_3.31)(64bit)libnssutil3.so(NSSUTIL_3.33)(64bit)libnssutil3.so(NSSUTIL_3.38)(64bit)libnssutil3.so(NSSUTIL_3.39)(64bit)libnssutil3.so(NSSUTIL_3.59)(64bit)libnssutil3.so(NSSUTIL_3.82)(64bit)libnssutil3.so(NSSUTIL_3.90)(64bit)nss-utilnss-util(aarch-64)@@@@@@@@@@     @ld-linux-aarch64.so.1()(64bit)ld-linux-aarch64.so.1(GLIBC_2.17)(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.17)(64bit)libdl.so.2()(64bit)libnspr4.so()(64bit)libplc4.so()(64bit)libplds4.so()(64bit)libpthread.so.0()(64bit)libpthread.so.0(GLIBC_2.17)(64bit)nsprrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)rtld(GNU_HASH)4.35.0-13.0.4-14.6.0-14.0-15.2-14.14.3f@e@e@epb@e\d˖d\@d\@dxb@b@bγby@bba@blbbb@a@@`E`ݮ@` @`ٹ`̊`9@`Ȗ@`D`r_@_^@___@__"@_"@_"@_!d_@_ L_ _@^^@@^@^ۅ@^4]N@]]߶]e@]M@]µ]L]]^@\F@\Q\\\\\\@\I\I\U@\ `\l@[[[u[#@[[W[O+[M@[ZZw@Z|;Zo Zo Zg#Z ZZZ@Y+@Y{YY@Yn@YV@Y@YyYm@Yg`YJ_Y1S@XX@XX @XXYX@X@XX~@Xx@XoX>@X*X@WW@Wt@W~Wv[@WrfWoWm WbWQq@WPWJWDB@W4p@W@Wo@W@VV޾V޾V@VяVIVɦV@V@V=@V@V@VO @VHsVEV3[V UYU@UU@U@U>Ua@Ug@U[%UUU @T@Ts@TTء@T@TÉ@TT@T@T?@T:m@T"@S@S<@S@S@S @SSSSpShS(5@S@SRy@RJ@R@RR@RSRR@Rm@Rg@RD!R@RRR|Q@Q*@QQ@QKQ@QQW@Qw@Q]k@QNQ9Q7/Q#@QQ @P!@PՠP @PqP@P@PAPXPd@Pd@PPP@PP5@PPnP;a@P(@P H@O;O;O@OiO@O@O}O~OiOYOX@OOdO&@O!@@OO@O@N>@N>@NNܲ@N`NؽNN@NuN;@Np@Nf @NA!@N*NpM@MWMc@MM@M@MMfH@M^_@MZjMS@MQ0@MQ0@MQ0@MQ0@MK@MGMF@M6@M-MM@Ls@LOLLZ@L6LdL@L*@L@LA@LL@L4Lx@Lx@Li(@Lf@L_L_LT@L0L0L K @KsKsKKCKCKCK]KMKLd@KD{@K<@K5K4@K,@K+nK*@K K@K@K@KJݦ@J - 3.90.0-7Bob Relyea - 3.90.0-6Bob Relyea - 3.90.0-5Bob Relyea - 3.90.0-4Bob Relyea - 3.90.0-3.1Bob Relyea - 3.90.0-3Bob Relyea - 3.90.0-2Bob Relyea - 3.90.0-1Bob Relyea - 3.79.0-11Bob Relyea - 3.79.0-10Bob Relyea - 3.79.0-9Bob Relyea - 3.79.0-8Bob Relyea - 3.79.0-7Bob Relyea - 3.79.0-6Bob Relyea - 3.79.0-5Bob Relyea - 3.79.0-4Bob Relyea - 3.79.0-3Bob Relyea - 3.79.0-2Bob Relyea - 3.79.0-1Bob Relyea - 3.67.0-7Bob Relyea - 3.67.0-6Bob Relyea - 3.67.0-5Bob Relyea - 3.67.0-4Bob Relyea - 3.67.0-3Bob Relyea - 3.67.0-2Bob Relyea - 3.67.0-1Bob Relyea - 3.66.0-2Bob Relyea - 3.66.0-1.1Bob Relyea - 3.66.0-1Bob Relyea - 3.53.1-17Bob Relyea - 3.53.1-16Bob Relyea - 3.53.1-15Bob Relyea - 3.53.1-14Bob Relyea - 3.53.1-13Bob Relyea - 3.53.1-12Bob Relyea - 3.53.1-11Bob Relyea - 3.53.1-10Daiki Ueno - 3.53.1-9Daiki Ueno - 3.53.1-8Bob Relyea - 3.53.1-7Daiki Ueno - 3.53.1-6Bob Relyea - 3.53.1-5Bob Relyea - 3.53.1-4Daiki Ueno - 3.53.1-3Daiki Ueno - 3.53.1-2Daiki Ueno - 3.53.1-1Daiki Ueno - 3.53.0-1Bob Relyea - 3.44.0-15Bob Relyea - 3.44.0-14Bob Relyea - 3.44.0-13Daiki Ueno - 3.44.0-12Bob Relyea - 3.44.0-11Daiki Ueno - 3.44.0-10Bob Relyea - 3.44.0-9Bob Relyea - 3.44.0-8Daiki Ueno - 3.44.0-7Daiki Ueno - 3.44.0-6Daiki Ueno - 3.44.0-5Bob Relyea - 3.44.0-4.1Bob Relyea - 3.44.0-4Daiki Ueno - 3.44.0-3Bob Relyea - 3.44.0-2Daiki Ueno - 3.44.0-1Daiki Ueno - 3.41.0-5Bob Relyea - 3.41.0-4Daiki Ueno - 3.41.0-3Daiki Ueno - 3.41.0-2Daiki Ueno - 3.41.0-1Daiki Ueno - 3.39.0-1.5Bob Relyea - 3.39.0-1.4Daiki Ueno - 3.39.0-1.3Daiki Ueno - 3.39.0-1.2Daiki Ueno - 3.39.0-1.1Daiki Ueno - 3.39.0-1.0Daiki Ueno - 3.38.0-1.2Daiki Ueno - 3.38.0-1.1Daiki Ueno - 3.38.0-1.0Kai Engert - 3.36.1-1.2Daiki Ueno - 3.36.1-1.1Daiki Ueno - 3.36.1-1.0Daiki Ueno - 3.36.0-1.0Fedora Release Engineering - 3.35.0-5Kai Engert - 3.35.0-4Kai Engert - 3.35.0-3Daiki Ueno - 3.35.0-2Daiki Ueno - 3.34.0-2Daiki Ueno - 3.33.0-6Kai Engert - 3.33.0-5Kai Engert - 3.33.0-4Kai Engert - 3.33.0-3Daiki Ueno - 3.33.0-2Daiki Ueno - 3.32.1-2Daiki Ueno - 3.32.0-4Kai Engert - 3.32.0-3Daiki Ueno - 3.32.0-2Fedora Release Engineering - 3.31.0-6Fedora Release Engineering - 3.31.0-5Daiki Ueno - 3.31.0-4Daiki Ueno - 3.31.0-3Daiki Ueno - 3.31.0-2Daiki Ueno - 3.30.2-3Daiki Ueno - 3.30.2-2Kai Engert - 3.30.0-3Daiki Ueno - 3.30.0-2Kai Engert - 3.29.1-3Daiki Ueno - 3.29.1-2Daiki Ueno - 3.29.0-3Daiki Ueno - 3.29.0-2Daiki Ueno - 3.28.1-6Daiki Ueno - 3.28.1-5Daiki Ueno - 3.28.1-4Daiki Ueno - 3.28.1-3Daiki Ueno - 3.28.1-2Daiki Ueno - 3.27.2-2Daiki Ueno - 3.27.0-5Kai Engert - 3.27.0-4Daiki Ueno - 3.27.0-3Daiki Ueno - 3.27.0-2Daiki Ueno - 3.26.0-2Elio Maldonado - 3.25.0-6Elio Maldonado - 3.25.0-5Elio Maldonado - 3.25.0-4Elio Maldonado - 3.25.0-3Elio Maldonado - 3.25.0-2Kamil Dudka - 3.24.0-3Elio Maldonado - 3.24.0-2.3Elio Maldonado - 3.24.0-2.2Elio Maldonado - 3.24.0-2.1Elio Maldonado - 3.24.0-2.0Elio Maldonado - 3.23.0-9Elio Maldonado - 3.23.0-8Elio Maldonado - 3.23.0-7Elio Maldonado - 3.23.0-6Elio Maldonado - 3.23.0-5Elio Maldonado - 3.23.0-4Elio Maldonado - 3.23.0-3Elio Maldonado - 3.23.0-2Elio Maldonado - 3.22.2-2Elio Maldonado - 3.22.1-3Elio Maldonado - 3.22.1-1Elio Maldonado - 3.22.0-3Elio Maldonado - 3.22.0-2Fedora Release Engineering - 3.21.0-7Elio Maldonado - 3.21.0-6Michal Toman - 3.21.0-5Elio Maldonado - 3.21.0-4Elio Maldonado - 3.21.0-3Elio Maldonado Batiz - 3.21.1-2Elio Maldonado - 3.20.1-2Elio Maldonado - 3.20.0-6Elio Maldonado - 3.20.0-5Elio Maldonado - 3.20.0-4Elio Maldonado - 3.20.0-3Elio Maldonado - 3.20.0-2Elio Maldonado - 3.19.3-2Elio Maldonado - 3.19.2-3Kai Engert - 3.19.2-2Kai Engert - 3.19.1-2Kai Engert - 3.19.0-2Kai Engert - 3.18.0-2Elio Maldonado - 3.18.0-1Elio Maldonado - 3.17.4-5Till Maas - 3.17.4-4Elio Maldonado - 3.17.4-3Elio Maldonado - 3.17.4-2Elio Maldonado - 3.17.4-1Ville Skyttä - 3.17.3-4Elio Maldonado - 3.17.3-3Elio Maldonado - 3.17.3-2Elio Maldonado - 3.17.3-1Elio Maldonado - 3.17.2-2Elio Maldonado - 3.17.2-1Kai Engert - 3.17.1-1Kevin Fenzi - 3.17.0-2Elio Maldonado - 3.17.0-1Fedora Release Engineering - 3.16.2-4Elio Maldonado - 3.16.2-3Tom Callaway - 3.16.2-2Elio Maldonado - 3.16.2-1Elio Maldonado - 3.16.1-4Fedora Release Engineering - 3.16.1-3Jaromir Capik - 3.16.1-2Elio Maldonado - 3.16.1-1Elio Maldonado - 3.16.0-1Elio Maldonado - 3.15.5-2Elio Maldonado - 3.15.5-1Elio Maldonado - 3.15.4-5Elio Maldonado - 3.15.4-4Elio Maldonado - 3.15.4-3Peter Robinson 3.15.4-2Elio Maldonado - 3.15.4-1Elio Maldonado - 3.15.3.1-1Elio Maldonado - 3.15.3-2Elio Maldonado - 3.15.3-1Elio Maldonado - 3.15.2-3Elio Maldonado - 3.15.2-2Elio Maldonado - 3.15.2-1Elio Maldonado - 3.15.1-7Elio Maldonado - 3.15.1-6Elio Maldonado - 3.15.1-5Elio Maldonado - 3.15.1-4Elio Maldonado - 3.15.1-3Elio Maldonado - 3.15.1-2Elio Maldonado - 3.15.1-1Elio Maldonado - 3.15-5emaldona - 3.15-4emaldona - 3.15-3Elio Maldonado - 3.15-2Elio Maldonado - 3.15-1Elio Maldonado - 3.15-0.1.beta1.2Elio Maldonado - 3.15-0.1.beta1.1Kai Engert - 3.14.3-12Kai Engert - 3.14.3-10Kai Engert - 3.14.3-9Elio Maldonado - 3.14.3-1Elio Maldonado - 3.14.2-2Elio Maldonado - 3.14.2-1Kai Engert - 3.14.1-3Elio Maldonado - 3.14.1-2Elio Maldonado - 3.14.1-1Elio Maldonado - 3.14-12Elio Maldonado - 3.14-11Elio Maldonado - 3.14-10Elio Maldonado - 3.14-9Elio Maldonado - 3.14-8Elio Maldonado - 3.14-7Elio Maldonado - 3.14-6Elio Maldonado - 3.14-5Elio Maldonado - 3.14-4Elio Maldonado - 3.14-3Elio Maldonado - 3.14-2Elio Maldonado - 3.14-1Elio Maldonado - 3.14-0.1.rc.1Kai Engert - 3.13.6-1Elio Maldonado - 3.13.5-8Elio Maldonado - 3.13.5-7Fedora Release Engineering - 3.13.5-6Elio Maldonado - 3.13.5-5Elio Maldonado - 3.13.5-4Elio Maldonado - 3.13.5-3Elio Maldonado - 3.13.5-2Elio Maldonado - 3.13.5-1Elio Maldonado - 3.13.4-3Elio Maldonado - 3.13.4-2Elio Maldonado - 3.13.4-1Elio Maldonado - 3.13.3-4Elio Maldonado - 3.13.3-3Elio Maldonado - 3.13.3-2Elio Maldonado - 3.13.3-1Tom Callaway - 3.13.1-13Elio Maldonado - 3.13.1-12Fedora Release Engineering - 3.13.1-11Elio Maldonado - 3.13.1-11Elio Maldonado - 3.13.1-10elio maldonado - 3.13.1-9Elio Maldonado - 3.13.1-8Elio Maldonado - 3.13.1-7Elio Maldonado - 3.13.1-6Elio Maldonado - 3.13.1-5Elio Maldonado Batiz - 3.13.1-4Elio Maldonado - 3.13.1-2Elio Maldonado - 3.13.1-1Elio Maldonado - 3.13-1Elio Maldonado - 3.13-0.1.rc0.1Elio Maldonado - 3.12.11-3Kai Engert - 3.12.11-2Elio Maldonado - 3.12.11-1Elio Maldonado - 3.12.10-6Michael Schwendt - 3.12.10-5Elio Maldonado - 3.12.10-4Dennis Gilmore - 3.12.10-3Elio Maldonado - 3.12.10-2Elio Maldonado - 3.12.10-1Elio Maldonado - 3.12.10-0.1.beta1Elio Maldonado - 3.12.9-15Elio Maldonado - 3.12.9-14Elio Maldonado - 3.12.9-13Elio Maldonado - 3.12.9-12Elio Maldonado - 3.12.9-11Elio Maldonado - 3.12.9-10Elio Maldonado - 3.12.9-9Fedora Release Engineering - 3.12.9-8Elio Maldonado - 3.12.9-7Christopher Aillon - 3.12.9-6Elio Maldonado - 3.12.9-5Elio Maldonado - 3.12.9-4Elio Maldonado - 3.12.9-3Elio Maldonado - 3.12.9-2Elio Maldonado - 3.12.9-1Elio Maldonado - 3.12.9-0.1.beta2Elio Maldonado - 3.12.8.99.2-1Elio Maldonado - 3.12.8.99.1-1Elio Maldonado - 3.12.8-9Elio Maldonado - 3.12.8-8Elio Maldonado - 3.12.8-7Elio Maldonado - 3.12.8-6Elio Maldonado - 3.12.8-5Elio Maldonado - 3.12.8-4Elio Maldonado - 3.12.8-3Elio Maldonado - 3.12.8-2Elio Maldonado - 3.12.8-1Elio Maldonado - 3.12.7.99.4-1Elio Maldonado - 3.12.7.99.3-2Elio Maldonado - 3.12.7.99.3-1Elio Maldonado - 3.12.7-3Elio Maldonado - 3.12.7-2Elio Maldonado - 3.12.7-1Elio Maldonado - 3.12.6-12Elio Maldonado - 3.12.6-11Elio Maldonado - 3.12.6-10Elio Maldonado - 3.12.6-9Dennis Gilmore - 3.12.6-8Elio Maldonado - 3.12.6-7Elio Maldonado - 3.12.6-6Elio Maldonado - 3.12.6-5Elio Maldonado - 3.12.6-4Elio Maldonado - 3.12.6-3Elio Maldonado - 3.12.6-2Elio Maldonado - 3.12.6-1.2Elio Maldonado - 3.12.6-1.1Elio Maldonado - 3.12.6-1Elio Maldonado - 3.12.5-8Elio Maldonado - 3.12.5-5Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1.13.2Elio Maldonado - 3.12.5-1.13.1Elio Maldonado - 3.12.5-1.13Elio Maldonado - 3.12.5-1.11Elio maldonado - 3.12.5-1.9Elio Maldonado - 3.12.5-2.7Elio Maldonado - 3.12.5-1.6Elio Maldonado - 3.12.5-1.5Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1Elio Maldonado - 3.12.4-14.1Elio Maldonado - 3.12.4-13.1Elio Maldonado - 3.12.4-13Elio Maldonado - 3.12.4-12Elio Maldonado - 3.12.4-11Elio Maldonado - 3.12.4-10Elio Maldonado - 3.12.4-8Elio Maldonado - 3.12.4-6Elio Maldonado - 3.12.4-5Elio Maldonado - 3.12.4-4Elio Maldonado - 3.12.4-3Elio Maldonado - 3.12.4-2Elio Maldonado - 3.12.4-1Elio Maldonado - 3.12.3.99.3-30Elio Maldonado - 3.12.3.99.3-29Elio Maldonado - 3.12.3.99.3-28Elio Maldonado - 3.12.3.99.3-27Elio Maldonado - 3.12.3.99.3-26Elio Maldonado - 3.12.3.99.3-25Warren Togami - 3.12.3.99.3-24Elio Maldonado - 3.12.3.99.3-23Elio Maldonado - 3.12.3.99.3-22Elio Maldonado - 3.12.3.99.3-21Elio Maldonado - 3.12.3.99.3-20Elio Maldonado - 3.12.3.99.3-19Elio Maldonado - 3.12.3.99.3-18Elio Maldonado - 3.12.3.99.3-16Dennis Gilmore - 3.12.3.99.3-15Dennis Gilmore - 3.12.3.99.3-14Dennis Gilmore - 3.12.3.99.3-13Dennis Gilmore - 3.12.3.99.3-12Elio Maldonado+emaldona@redhat.com - 3.12.3.99.3-11Elio Maldonado - 3.12.3.99.3-10Dennis Gilmore - 3.12.3.99.3-9Elio Maldonado - 3.12.3.99.3-7.1Fedora Release Engineering - 3.12.3.99.3-7Elio Maldonado - 3.12.3.99.3-6Elio Maldonado - 3.12.3.99.3-5Elio Maldonado - 3.12.3.99.3-4Kai Engert - 3.12.3.99.3-3Kai Engert - 3.12.3.99.3-2Kai Engert - 3.12.3-7Kai Engert - 3.12.3-4Kai Engert - 3.12.3-3Kai Engert - 3.12.3-2Kai Engert - 3.12.2.99.3-7Kai Engert - 3.12.2.99.3-6Kai Engert - 3.12.2.99.3-5Kai Engert - 3.12.2.99.3-4Kai Engert - 3.12.2.99.3-3Kai Engert - 3.12.2.99.3-2Kai Engert - 3.12.2.99.3-1Fedora Release Engineering - 3.12.2.0-4Kai Engert - 3.12.2.0-3Dennis Gilmore - 3.12.1.1-4Kai Engert - 3.12.1.1-3Kai Engert - 3.12.1.1-2Kai Engert - 3.12.1.0-2Kai Engert - 3.12.0.3-7Kai Engert - 3.12.0.3-6Kai Engert - 3.12.0.3-3Kai Engert - 3.12.0.3-2Kai Engert - 3.12.0.1-1Jesse Keating - 3.11.99.5-2Kai Engert - 3.11.99.5-1Kai Engert - 3.11.99.4-1Kai Engert - 3.11.99.3-6Kai Engert - 3.11.99.3-5Kai Engert - 3.11.99.3-4Kai Engert - 3.11.99.3-3Kai Engert - 3.11.99.3-2Kai Engert - 3.11.99.3-1Kai Engert - 3.11.99.2b-3Kai Engert - 3.11.99.2b-2Kai Engert - 3.11.99.2-2Kai Engert - 3.11.99.2-1Kai Engert - 3.11.7-10Rob Crittenden - 3.11.7-9Kai Engert - 3.11.7-8Bob Relyea - 3.11.7-7Kai Engert - 3.11.7-6Kai Engert - 3.11.7-5Kai Engert - 3.11.7-4Kai Engert - 3.11.7-3Kai Engert - 3.11.7-2Kai Engert - 3.11.5-2Kai Engert - 3.11.5-1Bob Relyea - 3.11.4-4Kai Engert - 3.11.4-1Kai Engert - 3.11.3-2Kai Engert - 3.11.3-1Kai Engert - 3.11.2-2Jesse Keating - 3.11.2-1.1Kai Engert - 3.11.2-1Kai Engert - 3.11.1-2Kai Engert - 3.11.1-1Kai Engert - 3.11-4Jesse Keating - 3.11-3.2Jesse Keating - 3.11-3.1Ray Strode 3.11-3Christopher Aillon 3.11-2Christopher Aillon 3.11-1Christopher Aillon 3.11-0.cvs.2Christopher Aillon 3.11-0.cvsKai Engert Rob Crittenden 3.10-1- Allow for shorter ecdsa signatures by padding them to full length- Fix ecc DER wrapping.- Pick up validated constant time implementations of p256, p384, and p521 from upsream - More Fips indicator changes- FIPS review changes - add PORT_SafeZero to avoid compiler optimizing a way zeroing memory. - update the indicators for this release - allow hashing of longer than int32 values in a single PKCS #11 call.- Fix expired certs in tests - Fix CVE-2023-5388- add indicators for pbkdf2 - add camellia to pkcs12 doc files - fix ems policy bug - disable ech- fix the change log- rebase to NSS 3.90- Fix CVE-2023-0767- Fix QA found failures: - remove extra '+' from sslpolicy.txt file causing test error values - only use GRND_RANDOM if the kernel is in FIPS mode.- FIPS 140-3 changes- Update fips default for pk12util to AES rather than TDES - Fix bug in pkcs12 files with null passwords- Better fix for test regressions- fix nss.spec so it works in a rhel-8.1.0 buildroot- FIPS 140-3 changes - Reject Small RSA keys, 1024 bit keys are marked as FIP OK when verifying, reject signature keys by policy - Allow applications to retrigger selftests on demand.- Fix pkgconfig output- NSR Coverity fix changed selfserv from passive to active, change it back- Fix regressions found in test suites.- Rebase to NSS 3.79 - Set FIPS Module ID - skip attribute verification on attributes with default values - don't export trust objects if they are default trust objects from dbm - add dbtool to nss-tools- Fix CVE 2021 43527- Fix ssl alert issue- Fix issue with reading databases that were updated using unpatched versions of nss- Better fix for the sdb timeout. The issue wasn't a race, it was the sqlite timeout waiting to begin a transaction under heavy thread usage.- Fix sdb race condition- Fix coverity issues- Rebase to NSS 3.67- Restore old pkcs12 defaults.- build nss for older nspr so we can pass gating with the new nspr in the build root- Rebase to NSS 3.66- Fix various corner cases with ike v1 app b support.- Fix the following CVE - CVE-2020-12403 chacha-poly issues - CVE-2020-12400 constant time ECC. - CVE-2020-6829 constant time ECC.- Revert some policy changes the generate ABI runtime issues.- Add support for enable/disable in policy. Now if your policy file has disallow=x enable=y it will act just like our other libraries.- Add OAEP interface so applications can wrap keys with RSA-OAEP rather than RSA-PKCS-1.- fips need to reject small primes even if they are approved - code to autodetect whether or not to use the cache needs to do so in a way that doesn't mess with filesystem negative file caching. - add kdf selftests- Fix issue with upgradedb where upgradedb expects standard to generate dbm databases, not sql databases (default in RHEL8)- Disable dh timing test because it's unreliable on s390- Explicitly enable upgradedb/sharedb test cycles- Disable Delegated Credentials for TLS- Fix attribute decryption issue where the private key components integrity check on private attributes where not being checked.- Update nss-rsa-pkcs1-sigalgs.patch to the upstream version- Include required checks for dh and ecdh key generation in FIPS mode.- Add better checks for dh derive operations in FIPS mode.- Disable NSS_HASH_ALG_SUPPORT as well for MD5 (#1849938) - Adjust for update-crypto-policies packaging change (#1848649) - Fix compilation with -Werror=strict-prototypes (#1843417)- Fix regression in MD5 disablement (#1849938) - Include rsa_pkcs1_* in signature_algorithms extension (#1847945)- Update to NSS 3.53.1- Update to NSS 3.53- Fix swapped CMAC PKCS #11 values. - Fix data alignment crash in CMAC.- Fix coverify scan issue- Fix endian problem in SP-800 108 code.- Install cmac.h required by blapi.h (#1764513) - Fix out-of-bounds write in NSC_EncryptUpdate (#1775913)- Add SP-800 108 Generalized kdf- Check policy against hash algorithms used for ServerKeyExchange (#1730039)- Add CMAC- CKM_NSS_IKE1_APP_B_PRF_DERIVE was missing from the mechanism list, preventing PK11_Derive*() from using it. Add gtests for the PK11_Derive interface for all the CKM_NSS_IKE*_DERIVE mechanism.- Backport fixes from 3.44.1- Add continuous RNG test required by FIPS - fipstest: use CKM_TLS12_MASTER_KEY_DERIVE instead of vendor specific mechanism- Rebuild with the correct build target- rebuild to try to retrigger CI tests- Fix certutil man page - Fix extracting a public key from a private key for dh, ec, and dsa- Disable TLS 1.3 under FIPS mode - Disable RSASSA-PKCS1-v1_5 in TLS 1.3 - Fix post-handshake auth transcript calculation if SSL_ENABLE_SESSION_TICKETS is set - Revert the change to use XDG basedirs (mozilla#818686)- Add ike mechanisms in softokn - Add FIPS checks in softoken- Update to NSS 3.44 - Define NSS_SEED_ONLY_DEV_URANDOM=1 to exclusively use getentropy - Use %autosetup - Clean up manual pages generation - Clean up %check - Remove prelink dependency, which is not available in RHEL-8 - Remove upstreamed patches- Update manual pages to reflect recent changes in commands- Make sure corresponding public keys are created when importing private keys.- Fix the last change - Add --no-reload option to update-crypto-policies to avoid unnecessary restart of daemons- Restore LDFLAGS injection when linking DSO- Update to NSS 3.41 - Consolidate nss-util, nss-softokn, and nss into a single source package- Fix the last commit- Support for IKE/IPsec typical PKIX usage so libreswan can use nss without rejecting certs based on EKU- Backport upstream fixes for rhbz#1649026, rhbz#1608895, rhbz#1644854 - Document PKCS #11 URI - Add warning when adding module with modutil while p11-kit is enabled- Update nss-dsa.patch to not advertise DSA signature algorithm - Update PayPal test certs for testing- Backport "DSA" keyword in crypto-policies- Update to NSS 3.39- Fix LDFLAGS injection when linking DSO- Install crypto-policies configuration file for https://fedoraproject.org/wiki/Changes/NSSLoadP11KitModules - Port enable-fips-when-system-is-in-fips-mode.patch from RHEL-7 - Use %ldconfig_scriptlets - Remove needless use of %defattr, by Jason Tibbitts- Update to NSS 3.38- Backport upstream addition of nss-policy-check utility, rhbz#1428746, includes required fixes for mozbz#1296263 and mozbz#1474875- Switch the default DB type to SQL - Enable SSLKEYLOGFILE- Update to NSS 3.36.1 - Remove nss-3.14.0.0-disble-ocsp-test.patch - Fix partial injection of LDFLAGS - Remove NSS_NO_PKCS11_BYPASS, which is no-op in upstream- Update to NSS 3.36.0 - Add gcc-c++ to BuildRequires (C++ is needed for gtests) - Make test failure detection robuster- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild- Fix a compiler error with gcc 8, mozbz#1434070 - Set NSS_FORCE_FIPS=1 at %build time, and remove from %check.- Stop pulling in nss-pem automatically, packages that need it should depend on it, rhbz#1539401- Update to NSS 3.35.0- Update to NSS 3.34.0- Make sure 32bit nss-pem always be installed with 32bit nss in multlib environment, patch by Kamil Dudka- Fix test script- Update tests to be compatible with default NSS DB changed to sql (the default was changed in the nss-util package).- rhbz#1505487, backport upstream fixes required for rhbz#1496560- Update to NSS 3.33.0- Update to NSS 3.32.1- Update iquote.patch to really prefer in-tree headers over system headers- NSS libnssckbi.so has already been obsoleted by p11-kit-trust, rhbz#1484449- Update to NSS 3.32.0- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild- Backport mozbz#1381784 to avoid deadlock in dnf- Move signtool to %_libdir/nss/unsupported-tools, for: https://fedoraproject.org/wiki/Changes/NSSSigntoolDeprecation- Rebase to NSS 3.31.0- Enable gtests- Rebase to NSS 3.30.2 - Enable TLS 1.3- Backport upstream mozbz#1328318 to support crypto policy FUTURE.- Rebase to NSS 3.30.0 - Remove upstreamed patches- Backport mozbz#1334976 and mozbz#1336487.- Rebase to NSS 3.29.1- Disable TLS 1.3, following the upstream change- Rebase to NSS 3.29.0 - Suppress -Werror=int-in-bool-context warnings with GCC7- Work around pkgconfig -> pkgconf transition issue (releng#6597)- Disable TLS 1.3 - Add "Conflicts" with packages using older Mozilla codebase, which is not compatible with NSS 3.28.1 - Remove NSS_ECC_MORE_THAN_SUITE_B setting, as it was removed in upstream- Add "Conflicts" with older firefox packages which don't have support for smaller curves added in NSS 3.28.1- Fix incorrect version specification in %nss_{util,softokn}_version, pointed by Elio Maldonado- Rebase to NSS 3.28.1 - Remove upstreamed patch for disabling RSA-PSS - Re-enable TLS 1.3- Rebase to NSS 3.27.2- Revert the previous fix for RSA-PSS and use the upstream fix instead- Disable the use of RSA-PSS with SSL/TLS. #1383809- Disable TLS 1.3 for now, to avoid reported regression with TLS to version intolerant servers- Rebase to NSS 3.27.0 - Remove upstreamed ectest patch- Rebase to NSS 3.26.0 - Update check policy file patch to better match what was upstreamed - Remove conditionally ignore system policy patch as it has been upstreamed - Skip ectest as well as ecperf, which are built as part of nss-softokn - Fix rpmlint error regarding %define usage- Incorporate some changes requested in upstream review and commited upstream (#1157720)- Add support for conditionally ignoring the system policy (#1157720) - Remove unneeded test scripts patches in order to run more tests - Remove unneeded test data modifications from the spec file- Remove obsolete patch and spurious lines from the spec file (#1347336)- Cleanup spec file and patches and add references to bugs filed upstream- Rebase to nss 3.25- decouple nss-pem from the nss package (#1347336)- Apply the patch that was last introduced - Renumber and reorder some of the patches - Resolves: Bug 1342158- Allow application requests to disable SSL v2 to succeed - Resolves: Bug 1342158 - nss-3.24 does no longer support ssl V2, installation of IPA fails because nss init fails- Rebase to NSS 3.24.0 - Restore setting the policy file location - Make ssl tests scripts aware of policy - Ajust tests data expected result for policy- Bootstrap build to rebase to NSS 3.24.0 - Temporarily not setting the policy file location- Change POLICY_FILE to "nss.config"- Change POLICY_FILE to "nss.cfg"- Change the POLICY_PATH to "/etc/crypto-policies/back-ends" - Regenerate the check policy patch with hg to provide more context- Fix typo in the last %changelog entry- Load policy file if /etc/pki/nssdb/policy.cfg exists - Resolves: Bug 1157720 - NSS should enforce the system-wide crypto policy- Remove unused patch rendered obsolete by pem update- Update pem sources to latest from nss-pem upstream - Resolves: Bug 1300652 - [PEM] insufficient input validity checking while loading a private key- Rebase to NSS 3.23- Rebase to NSS 3.22.2- Fix ssl2/exp test disabling to run all the required tests- Rebase to NSS 3.22.1- Update .gitignore as part of updating to nss 3.22- Update to NSS 3.22- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild- Resolves: Bug 1299040 - Enable ssl_gtests upstream test suite - Remove 'export NSS_DISABLE_GTESTS=1' go ssl_gtests are built - Use %define when specifying the nss_tests to run- Add 64-bit MIPS to multilib arches- Update %{nss_util_version} and %{nss_softokn_version} to 3.21.0 - Resolves: Bug 1284095 - all https fails with sec_error_no_token- Add references to bugs filed upstream- Update to NSS 3.21 - Package listsuites as part of the unsupported tools set - Resolves: Bug 1279912 - nss-3.21 is available - Resolves: Bug 1258425 - Use __isa_bits macro instead of list of 64-bit - Resolves: Bug 1280032 - Package listsuites as part of the nss unsupported tools set- Update to NSS 3.20.1- Enable ECC cipher-suites by default [hrbz#1185708] - Split the enabling patch in two for easier maintenance - Remove unused patches rendered obsolete by prior rebase- Enable ECC cipher-suites by default [hrbz#1185708] - Implement corrections requested in code review- Enable ECC cipher-suites by default [hrbz#1185708]- Fix patches that disable ssl2 and export cipher suites support - Fix libssl patch that disable ssl2 & export cipher suites to not disable RSA_WITH_NULL ciphers - Fix syntax errors in patch to skip ssl2 and export cipher suite tests - Turn ssl2 off by default in the tstclnt tool - Disable ssl stress tests containing TLS RC4 128 with MD5- Update to NSS 3.20- Update to NSS 3.19.3- Create on the fly versions of sslcov.txt and sslstress.txt that disable tests for SSL2 and EXPORT ciphers- Update to NSS 3.19.2- Update to NSS 3.19.1- Update to NSS 3.19- Replace expired test certificates, upstream bug 1151037- Update to nss-3.18.0 - Resolves: Bug 1203689 - nss-3.18 is available- Disable export suites and SSL2 support at build time - Fix syntax errors in various shell scripts - Resolves: Bug 1189952 - Disable SSL2 and the export cipher suites- Rebuilt for Fedora 23 Change https://fedoraproject.org/wiki/Changes/Harden_all_packages_with_position-independent_code- Commented out the export NSS_NO_SSL2=1 line to not disable ssl2 - Backing out from disabling ssl2 until the patches are fixed- Disable SSL2 support at build time - Fix syntax errors in various shell scripts - Resolves: Bug 1189952 - Disable SSL2 and the export cipher suites- Update to nss-3.17.4- Own the %{_datadir}/doc/nss-tools dir- Resolves: Bug 987189 - nss-tools RPM conflicts with perl-PAR-Packer - Install pp man page in %{_datadir}/doc/nss-tools/pp.1 - Use %{_mandir} instead of /usr/share/man as more generic- Install pp man page in alternative location - Resolves: Bug 987189 - nss-tools RPM conflicts with perl-PAR-Packer- Update to nss-3.17.3 - Resolves: Bug 1171012 - nss-3.17.3 is available- Resolves: Bug 994599 - Enable TLS 1.2 by default- Update to nss-3.17.2- Update to nss-3.17.1 - Add a mechanism to skip test suite execution during development work- Rebuild for rpm bug 1131960- Update to nss-3.17.0- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild- Replace expired PayPal test cert with current one to prevent build failure- fix license handling- Update to nss-3.16.2- Remove unwanted source directories at end of %prep so it truly does it - Skip the cipher suite already run as part of the nss-softokn build- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild- Replacing ppc64 and ppc64le with the power64 macro - Related: Bug 1052545 - Trivial change for ppc64le in nss spec- Update to nss-3.16.1 - Update the iquote patch on account of the rebase - Improve error detection in the %section - Resolves: Bug 1094702 - nss-3.16.1 is available- Update to nss-3.16.0 - Cleanup the copying of the tools man pages - Update the iquote.patch on account of the rebase- Restore requiring nss_softokn_version >= 3.15.5- Update to nss-3.15.5 - Temporarily requiring only nss_softokn_version >= 3.15.4 - Fix location of sharedb files and their manpages - Move cert9.db, key4.db, and pkcs11.txt to the main package - Move nss-sysinit manpages tar archives to the main package - Resolves: Bug 1066877 - nss-3.15.5 is available - Resolves: Bug 1067091 - Move sharedb files to the %files section- Revert previous change that moved some sysinit manpages - Restore nss-sysinit manpages tar archives to %files sysinit - Removing spurious wildcard entry was the only change needed- Add explanatory comments for iquote.patch as was done on f20- Update pem sources to latest from nss-pem upstream - Pick up pem fixes verified on RHEL and applied upstream - Fix a problem where same files in two rpms created rpm conflict - Move some nss-sysinit manpages tar archives to the %files the - All man pages are listed by name so there shouldn't be wildcard inclusion - Add support for ppc64le, Resolves: Bug 1052545- ARM tests pass so remove ARM conditional- Update to nss-3.15.4 (hg tag NSS_3_15_4_RTM) - Resolves: Bug 1049229 - nss-3.15.4 is available - Update pem sources to latest from the interim upstream for pem - Remove no longer needed patches - Update pem/rsawrapr.c patch on account of upstream changes to freebl/softoken - Update iquote.patch on account of upstream changes- Update to nss-3.15.3.1 (hg tag NSS_3_15_3_1_RTM) - Resolves: Bug 1040282 - nss: Mis-issued ANSSI/DCSSI certificate (MFSA 2013-117) - Resolves: Bug 1040192 - nss-3.15.3.1 is available- Bump the release tag- Update to NSS_3_15_3_RTM - Resolves: Bug 1031897 - CVE-2013-5605 CVE-2013-5606 CVE-2013-1741 nss: various flaws - Fix option descriptions for setup-nsssysinit manpage - Fix man page of nss-sysinit wrong path and other flaws - Document email option for certutil manpage - Remove unused patches- Revert one change from last commit to preserve full nss pluggable ecc supprt [1019245]- Use the full sources from upstream - Bug 1019245 - ECDHE in openssl available -> NSS needs too for Firefox/Thunderbird- Update to NSS_3_15_2_RTM - Update iquote.patch on account of modified prototype on cert.h installed by nss-devel- Update pem sources to pick up a patch applied upstream which a faulty merge had missed - The pem module should not require unique file basenames- Update pem sources to the latest from interim upstream- Resolves: rhbz#996639 - Minor bugs in nss man pages - Fix some typos and improve description and see also sections- Cleanup spec file to address most rpmlint errors and warnings - Using double percent symbols to fix macro-in-comment warnings - Ignore unversioned-explicit-provides nss-system-init per spec comments - Ignore invalid-url Source0 as it comes from the git lookaside cache - Ignore invalid-url Source12 as it comes from the git lookaside cache- Add man page for pkcs11.txt configuration file and cert and key databases - Resolves: rhbz#985114 - Provide man pages for the nss configuration files- Fix errors in the man pages - Resolves: rhbz#984106 - Add missing option descriptions to man pages for {cert|cms|crl}util - Resolves: rhbz#982856 - Fix path to script in man page for nss-sysinit- Update to NSS_3_15_1_RTM - Enable the iquote.patch to access newly introduced types- Install man pages for nss-tools and the nss-config and setup-nsssysinit scripts - Resolves: rhbz#606020 - nss security tools lack man pages- Build nss without softoken or util sources in the tree - Resolves: rhbz#689918- Update ssl-cbc-random-iv-by-default.patch- Fix generation of NSS_VMAJOR, NSS_VMINOR, and NSS_VPATCH for nss-config- Update to NSS_3_15_RTM- Fix incorrect path that hid failed test from view - Add ocsp to the test suites to run but ... - Temporarily disable the ocsp stapling tests - Do not treat failed attempts at ssl pkcs11 bypass as fatal errors- Update to NSS_3_15_BETA1 - Update spec file, patches, and helper scripts on account of a shallower source tree- Update expired test certificates (fixed in upstream bug 852781)- Fix incorrect post/postun scripts. Fix broken links in posttrans.- Configure libnssckbi.so to use the alternatives system in order to prepare for a drop in replacement.- Update to NSS_3_14_3_RTM - sync up pem rsawrapr.c with softoken upstream changes for nss-3.14.3 - Resolves: rhbz#908257 - CVE-2013-1620 nss: TLS CBC padding timing attack - Resolves: rhbz#896651 - PEM module trashes private keys if login fails - Resolves: rhbz#909775 - specfile support for AArch64 - Resolves: rhbz#910584 - certutil -a does not produce ASCII output- Allow building nss against older system sqlite- Update to NSS_3_14_2_RTM- Update to NSS_3_14_1_WITH_CKBI_1_93_RTM- Require nspr >= 4.9.4 - Fix changelog invalid dates- Update to NSS_3_14_1_RTM- Bug 879978 - Install the nssck.api header template where mod_revocator can access it - Install nssck.api in /usr/includes/nss3/templates- Bug 879978 - Install the nssck.api header template in a place where mod_revocator can access it - Install nssck.api in /usr/includes/nss3- Bug 870864 - Add support in NSS for Secure Boot- Disable bypass code at build time and return failure on attempts to enable at runtime - Bug 806588 - Disable SSL PKCS #11 bypass at build time- Fix pk11wrap locking which fixes 'fedpkg new-sources' and 'fedpkg update' hangs - Bug 872124 - nss-3.14 breaks fedpkg new-sources - Fix should be considered preliminary since the patch may change upon upstream approval- Add a dummy source file for testing /preventing fedpkg breakage - Helps test the fedpkg new-sources and upload commands for breakage by nss updates - Related to Bug 872124 - nss 3.14 breaks fedpkg new-sources- Fix a previous unwanted merge from f18 - Update the SS_SSL_CBC_RANDOM_IV patch to match new sources while - Keeping the patch disabled while we are still in rawhide and - State in comment that patch is needed for both stable and beta branches - Update .gitignore to download only the new sources- Fix the spec file so sechash.h gets installed - Resolves: rhbz#871882 - missing header: sechash.h in nss 3.14- Update the license to MPLv2.0- Use only -f when removing unwanted headers- Add secmodt.h to the headers installed by nss-devel - nss-devel must install secmodt.h which moved from softoken to pk11wrap with nss-3.14- Update to NSS_3_14_RTM- Update to NSS_3_14_RC1 - update nss-589636.patch to apply to httpdserv - turn off ocsp tests for now - remove no longer needed patches - remove headers shipped by nss-util- Update to NSS_3_13_6_RTM- Rebase pem sources to fedora-hosted upstream to pick up two fixes from rhel-6.3 - Resolves: rhbz#847460 - Fix invalid read and free on invalid cert load - Resolves: rhbz#847462 - PEM module may attempt to free uninitialized pointer - Remove unneeded fix gcc 4.7 c++ issue in secmodt.h that actually undoes the upstream fix- Fix pluggable ecc support- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- Fix checkin comment to prevent unwanted expansions of percents- Resolves: Bug 830410 - Missing Requires %{?_isa} - Use Requires: %{name}%{?_isa} = %{version}-%{release} on tools - Drop zlib requires which rpmlint reports as error E: explicit-lib-dependency zlib - Enable sha224 portion of powerup selftest when running test suites - Require nspr 4.9.1- Resolves: rhbz#833529 - revert unwanted change to nss.pc.in- Resolves: rhbz#833529 - Remove unwanted space from the Libs: line on nss.pc.in- Update to NSS_3_13_5_RTM- Resolves: Bug 812423 - nss_Init leaks memory, fix from RHEL 6.3- Resolves: Bug 805723 - Library needs partial RELRO support added - Patch coreconf/Linux.mk as done on RHEL 6.2- Update to NSS_3_13_4_RTM - Update the nss-pem source archive to the latest version - Remove no longer needed patches - Resolves: Bug 806043 - use pem files interchangeably in a single process - Resolves: Bug 806051 - PEM various flaws detected by Coverity - Resolves: Bug 806058 - PEM pem_CreateObject leaks memory given a non-existing file name- Resolves: Bug 805723 - Library needs partial RELRO support added- Cleanup of the spec file - Add references to the upstream bugs - Fix typo in Summary for sysinit- Pick up fixes from RHEL - Resolves: rhbz#800674 - Unable to contact LDAP Server during winsync - Resolves: rhbz#800682 - Qpid AMQP daemon fails to load after nss update - Resolves: rhbz#800676 - NSS workaround for freebl bug that causes openswan to drop connections- Update to NSS_3_13_3_RTM- fix issue with gcc 4.7 in secmodt.h and C++11 user-defined literals- Resolves: Bug 784672 - nss should protect against being called before nss_Init- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- Deactivate a patch currently meant for stable branches only- Resolves: Bug 770682 - nss update breaks pidgin-sipe connectivity - NSS_SSL_CBC_RANDOM_IV set to 0 by default and changed to 1 on user request- Revert to using current nss_softokn_version - Patch to deal with lack of sha224 is no longer needed- Resolves: Bug 754771 - [PEM] an unregistered callback causes a SIGSEGV- Resolves: Bug 750376 - nss 3.13 breaks sssd TLS - Fix how pem is built so that nss-3.13.x works with nss-softokn-3.12.y - Only patch blapitest for the lack of sha224 on system freebl - Completed the patch to make pem link against system freebl- Removed unwanted /usr/include/nss3 in front of the normal cflags include path - Removed unnecessary patch dealing with CERTDB_TERMINAL_RECORD, it's visible- Statically link the pem module against system freebl found in buildroot - Disabling sha224-related powerup selftest until we update softokn - Disable sha224 and pss tests which nss-softokn 3.12.x doesn't support- Rebuild with nss-softokn from 3.12 in the buildroot - Allows the pem module to statically link against 3.12.x freebl - Required for using nss-3.13.x with nss-softokn-3.12.y for a merge inrto rhel git repo - Build will be temprarily placed on buildroot override but not pushed in bodhi- Fix broken dependencies by updating the nss-util and nss-softokn versions- Update to NSS_3_13_1_RTM - Update builtin certs to those from NSSCKBI_1_88_RTM- Update to NSS_3_13_RTM- Update to NSS_3_13_RC0- Fix attempt to free initilized pointer (#717338) - Fix leak on pem_CreateObject when given non-existing file name (#734760) - Fix pem_Initialize to return CKR_CANT_LOCK on multi-treaded calls (#736410)- Update builtins certs to those from NSSCKBI_1_87_RTM- Update to NSS_3_12_11_RTM- Indicate the provenance of stripped source tarball (#688015)- Provide virtual -static package to meet guidelines (#609612).- Enable pluggable ecc support (#712556) - Disable the nssdb write-access-on-read-only-dir tests when user is root (#646045)- make the testsuite non fatal on arm arches- Fix crmf hard-coded maximum size for wrapped private keys (#703656)- Update to NSS_3_12_10_RTM- Update to NSS_3_12_10_BETA1- Implement PEM logging using NSPR's own (#695011)- Update to NSS_3.12.9_WITH_CKBI_1_82_RTM- Short-term fix for ssl test suites hangs on ipv6 type connections (#539183)- Add a missing requires for pkcs11-devel (#675196)- Run the test suites in the check section (#677809)- Fix cms headers to not use c++ reserved words (#676036) - Reenabling Bug 499444 patches - Fix to swap internal key slot on fips mode switches- Revert patches for 499444 until all c++ reserved words are found and extirpated- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- Fix cms header to not use c++ reserved word (#676036) - Reenable patches for bug 499444- Revert patches for 499444 as they use a C++ reserved word and cause compilation of Firefox to fail- Fix the earlier infinite recursion patch (#499444) - Remove a header that now nss-softokn-freebl-devel ships- Fix infinite recursion when encoding NSS enveloped/digested data (#499444)- Update the cacert trust patch per upstream review requests (#633043)- Fix to honor the user's cert trust preferences (#633043) - Remove obsoleted patch- Update to 3.12.9- Rebuilt according to fedora pre-release package naming guidelines- Update to NSS_3_12_9_BETA2 - Fix libpnsspem crash when cacert dir contains other directories (#642433)- Update to NSS_3_12_9_BETA1- Update pem source tar with fixes for 614532 and 596674 - Remove no longer needed patches- Update PayPalEE.cert test certificate which had expired- Tell rpm not to verify md5, size, and modtime of configurations file- Fix certificates trust order (#643134) - Apply nss-sysinit-userdb-first.patch last- Move triggerpostun -n nss-sysinit script ahead of the other ones (#639248)- Fix invalid %postun scriptlet (#639248)- Replace posttrans sysinit scriptlet with a triggerpostun one (#636787) - Fix and cleanup the setup-nsssysinit.sh script (#636792, #636801)- Add posttrans scriptlet (#636787)- Update to 3.12.8 - Prevent disabling of nss-sysinit on package upgrade (#636787) - Create pkcs11.txt with correct permissions regardless of umask (#636792) - Setup-nsssysinit.sh reports whether nss-sysinit is turned on or off (#636801) - Added provides pkcs11-devel-static to comply with packaging guidelines (#609612)- NSS 3.12.8 RC0- Fix nss-util_version and nss_softokn_version required to be 3.12.7.99.3- NSS 3.12.8 Beta3 - Fix unclosed comment in renegotiate-transitional.patch- Change BuildRequries to available version of nss-util-devel- Define NSS_USE_SYSTEM_SQLITE and remove unneeded patch - Add comments regarding an unversioned provides which triggers rpmlint warning - Build requires nss-softokn-devel >= 3.12.7- Update to 3.12.7- Apply the patches to fix rhbz#614532- Removed pem sourecs as they are in the cache- Add support for PKCS#8 encoded PEM RSA private key files (#614532)- Fix nsssysinit to return userdb ahead of systemdb (#603313)- Require and BuildRequire >= the listed version not =- Require nss-softoken 3.12.6- Fix SIGSEGV within CreateObject (#596674)- Update pem source tar to pick up the following bug fixes: - PEM - Allow collect objects to search through all objects - PEM - Make CopyObject return a new shallow copy - PEM - Fix memory leak in pem_mdCryptoOperationRSAPriv- Update the test cert in the setup phase- Add sed to sysinit requires as setup-nsssysinit.sh requires it (#576071) - Update PayPalEE test cert with unexpired one (#580207)- Fix ns.spec to not require nss-softokn (#575001)- rebuilt with all tests enabled- Using SSL_RENEGOTIATE_TRANSITIONAL as default while on transition period - Disabling ssl tests suites until bug 539183 is resolved- Update to 3.12.6 - Reactivate all tests - Patch tools to validate command line options arguments- Fix curl related regression and general patch code clean up- retagging- Fix SIGSEGV on call of NSS_Initialize (#553638)- New version of patch to allow root to modify ystem database (#547860)- Temporarily disabling the ssl tests- Fix nsssysinit to allow root to modify the nss system database (#547860)- Fix an error introduced when adapting the patch for rhbz #546211- Remove left over trace statements from nsssysinit patching- Fix a misconstructed patch- Fix nsssysinit to enable apps to use system cert store, patch contributed by David Woodhouse (#546221) - Fix spec so sysinit requires coreutils for post install scriplet (#547067) - Fix segmentation fault when listing keys or certs in the database, patch contributed by Kamil Dudka (#540387)- Fix nsssysinit to set the default flags on the crypto module (#545779) - Remove redundant header from the pem module- Remove unneeded patch- Retagging to include missing patch- Update to 3.12.5 - Patch to allow ssl/tls clients to interoperate with servers that require renogiation- Retagging- Require nss-softoken of same architecture as nss (#527867) - Merge setup-nsssysinit.sh improvements from F-12 (#527051)- User no longer prompted for a password when listing keys an empty system db (#527048) - Fix setup-nsssysinit to handle more general formats (#527051)- Fix syntax error in setup-nsssysinit.sh- Fix sysinit to be under mozilla/security/nss/lib- Add nss-sysinit activation/deactivation script- Install blank databases and configuration file for system shared database - nsssysinit queries system for fips mode before relying on environment variable- Restoring nssutil and -rpath-link to nss-config for now - 522477- Add the nss-sysinit subpackage- Installing shared libraries to %{_libdir}- Retagging to pick up new sources- Update pem enabling source tar with latest fixes (509705, 51209)- PEM module implements memory management for internal objects - 509705 - PEM module doesn't crash when processing malformed key files - 512019- Remove symbolic links to shared libraries from devel - 521155 - No rpath-link in nss-softokn-config- Update to 3.12.4- Fix FORTIFY_SOURCE buffer overflows in test suite on ppc and ppc64 - bug 519766 - Fixed requires and buildrequires as per recommendations in spec file review- Restoring patches 2 and 7 as we still compile all sources - Applying the nss-nolocalsql.patch solves nss-tools sqlite dependency problems- restore require sqlite- Don't require sqlite for nss- Ensure versions in the requires match those used when creating nss.pc- Remove nss-prelink.conf as signed all shared libraries moved to nss-softokn - Add a temprary hack to nss.pc.in to unblock builds- caolan's nss.pc patch- Bump the release number for a chained build of nss-util, nss-softokn and nss- Fix nss-config not to include nssutil - Add BuildRequires on nss-softokn and nss-util since build also runs the test suite- disabling all tests while we investigate a buffer overflow bug- disabling some tests while we investigate a buffer overflow bug - 519766- remove patches that are now in nss-softokn and - remove spurious exec-permissions for nss.pc per rpmlint - single requires line in nss.pc.in- Fix BuildRequires: nss-softokn-devel release number- fix nss.pc.in to have one single requires line- cleanups for softokn- remove the softokn subpackages- don install the nss-util pkgconfig bits- remove from -devel the 3 headers that ship in nss-util-devel- kill off the nss-util nss-util-devel subpackages- split off nss-softokn and nss-util as subpackages with their own rpms - first phase of splitting nss-softokn and nss-util as their own packages- must install libnssutil3.since nss-util is untagged at the moment - preserve time stamps when installing various files- dont install libnssutil3.so since its now in nss-util- Fix spec file problems uncovered by Fedora_12_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild- removed two patch files which are no longer needed and fixed previous change log number- updated pem module incorporates various patches - fix off-by-one error when computing size to reduce memory leak. (483855) - fix data type to work on x86_64 systems. (429175) - fix various memory leaks and free internal objects on module unload. (501080) - fix to not clone internal objects in collect_objects(). (501118) - fix to not bypass initialization if module arguments are omitted. (501058) - fix numerous gcc warnings. (500815) - fix to support arbitrarily long password while loading a private key. (500180) - fix memory leak in make_key and memory leaks and return values in pem_mdSession_Login (501191)- add patch for bug 502133 upstream bug 496997- rebuild with higher release number for upgrade sanity- updated to NSS_3_12_4_FIPS1_WITH_CKBI_1_75- re-enable test suite - add patch for upstream bug 488646 and add newer paypal certs in order to make the test suite pass- add conflicts info in order to fix bug 499436- ship .chk files instead of running shlibsign at install time - include .chk file in softokn-freebl subpackage - add patch for upstream nss bug 488350- Update to NSS 3.12.3- temporarily disable the test suite because of bug 494266- fix softokn-freebl dependency for multilib (bug 494122)- introduce separate nss-softokn-freebl package- disable execstack when building freebl- add upstream patch to fix bug 483855- build nspr-less freebl library- Update to NSS_3_12_3_BETA4- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild- update to NSS_3_12_2_RC1 - use system zlib- add sparc64 to the list of 64 bit arches- bug 456847, move pkgconfig requirement to devel package- Update to NSS_3_12_1_RC2- NSS 3.12.1 RC1- fix bug bug 429175 in libpem module- bug 456847, add Requires: pkgconfig- nss package should own /etc/prelink.conf.d folder, rhbz#452062 - use upstream patch to fix test suite abort- Update to NSS_3_12_RC4- Update to NSS_3_12_RC2- Zapping old Obsoletes/Provides. No longer needed, causes multilib headache.- Update to NSS_3_12_BETA3- NSS 3.12 Beta 2 - Use /usr/lib{64} as devel libdir, create symbolic links.- Apply upstream patch for bug 417664, enable test suite on pcc.- Support concurrent runs of the test suite on a single build host.- disable test suite on ppc- disable test suite on ppc64- Build against gcc 4.3.0, use workaround for bug 432146 - Run the test suite after the build and abort on failures.* NSS 3.12 Beta 1- move .so files to /lib- NSS 3.12 alpha 2b- upstream patches to avoid calling netstat for random data- NSS 3.12 alpha 2- Add /etc/prelink.conf.d/nss-prelink.conf in order to blacklist our signed libraries and protect them from modification.- Fix off-by-one error in the PEM module- fix a C++ mode compilation error- Add 3.12 ckfw and libnsspem- Updated license tag- Ensure the workaround for mozilla bug 51429 really get's built.- Better approach to ship freebl/softokn based on 3.11.5 - Remove link time dependency on softokn- Fix unowned directories, rhbz#233890- Update to 3.11.7, but freebl/softokn remain at 3.11.5. - Use a workaround to avoid mozilla bug 51429.- Fix rhbz#230545, failure to enable FIPS mode - Fix rhbz#220542, make NSS more tolerant of resets when in the middle of prompting for a user password.- Update to 3.11.5 - This update fixes two security vulnerabilities with SSL 2 - Do not use -rpath link option - Added several unsupported tools to tools package- disable ECC, cleanout dead code- Update to 3.11.4- Revert the attempt to require latest NSPR, as it is not yet available in the build infrastructure.- Update to 3.11.3- Add /etc/pki/nssdb- rebuild- Update to 3.11.2 - Enable executable bit on shared libs, also fixes debug info.- Enable Elliptic Curve Cryptography (ECC)- Update to 3.11.1 - Include upstream patch to limit curves- add --noexecstack when compiling assembler on x86_64- bump again for double-long bug on ppc(64)- rebuilt for new gcc4.1 snapshot and glibc changes- rebuild- Update file list for the devel packages- Update to 3.11- Add patch to allow building on ppc* - Update the pkgconfig file to Require nspr- Initial import into Fedora Core, based on a CVS snapshot of the NSS_3_11_RTM tag - Fix up the pkcs11-devel subpackage to contain the proper headers - Build with RPM_OPT_FLAGS - No need to have rpath of /usr/lib in the pc file- Adressed review comments by Wan-Teh Chang, Bob Relyea, Christopher Aillon.- Initial build3.90.0-7.el83.90.0-7.el8.build-ideedbffa69ea62dbab08fd795b0de1da5f7c381a2libnssutil3.sonss-utilCOPYING/usr/lib//usr/lib/.build-id//usr/lib/.build-id/ee//usr/lib64//usr/share/licenses//usr/share/licenses/nss-util/-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -fexceptions -fstack-protector-strong -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1 -fasynchronous-unwind-tables -fstack-clash-protectioncpioxz2aarch64-redhat-linux-gnudirectoryELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=eedbffa69ea62dbab08fd795b0de1da5f7c381a2, strippedASCII textPPPPPPPPP P P P P PPPPPPRR RRRRRRRRRutf-8358d854fc7c06cc11fde2c1f5e657b00bf4de760b9942c2ced136bb76b4ce34c?@7zXZ !#, ] b2u jӫ`(y0JV+rAW*WM*Dg}O՘{^'%!Fw!+o`06/qU-vZDZy#W;iڬ"IDTߢxK&WU{x8<&%}Afcl_t [3#IOIDX hk6U>dʕj[ui$X!:w[!]}s8m6ظ8{ , ̴\qU|hkdhOCG}p $)+J{ptLY>0dKZ4Pbm8I&)87fbcN`m%Mƞ6?>U@BFL"W=0VoۋzV.mkwܗd޶[n\=3mCsu=Wu->s 5G4#4J_ܰd3a~+I=ٕ@ B#zn/%[XŏgPKHw"^#(0.+Yf;xh`#\d&Clf(^00|mHKoSG3x}_¼VY,eY/cc; Gŝ:@#l/>#M2ls>IE~j)vń.8MVKI|(W 3̙{Մ#N <2f!?43W3sh vԄ[)Jms^D6qj#y%̲$ 2T(NdM.OCUNK71'ށCGH08-ǢrLJGyg*>'95W s;IPY6{@sw? k܂Xԣ. 2sMZeW(W݇P8)KN[i篹OdʓȿD)*d3U@,O]q[3%uD\ :jBV&K< "VU^/;H@k*"WdɕJ-V7/c;32V/LxW)'xuJ7 l\cXUuʎ`, h_Htp ;;龗-5w+OS5a{N0(~7- f8[M 4h~τQVkZ͸)Tͪ21Q[>K*$)%\, kwDU"^DA#ah8r hM?~gOd2U@gb#ggXsO-vy/'L&X{gw1P2w3L,7&ZefTo̊V]T(113,6o Nrx{)>UBb qTZx$3po/oC7&2 hi3/(7@(RK-N%,XZL`ٚ\>'x\C$0|PJl >{h˟1ૂkvFsD]`oxdzMD}  .2} ݸ# [uVCcmga^*%{;0%Aw~FD$bKkW5ĴƏ}`L<^<]lF~E,!T[5H7Hj;t^Yb!ISz\0 ;<`e^QvꋽWJ xOM?2!Ex0Pi#GT%]p*;#4zܥ Rdrh]70ga+(b?_ҌR˃&:P|>BڀĶ+my^> i||<`=Y?(1fnت_L2UxAdȌkn\.mtZ x'1+Y3)^dޟrBf΢̂l0i@:0=?^sZ}(v-=dc_d {vz!8e6⯜G^ܹՌ0E!A$<W'l {wy Z Agf`@ѯ2/ݍ%EWŃPoD:9[awIGKJf H˖M4Љɣ]s9l@5Z`[dg*)pٗ|y[5?n&=5!"M6XrgjlbIH6::"k4i a蟮8Vy\mpM*A UʵirN؍{` 2={[cJb c鹨馿9BfsOw4Wէ WuL&(WU%p+@4Z&Q#Io_Os l7Vok<ϟC7 SnPN{ jXt 8"ݣ5R9?e{>+JAܠ Q|3- sEdN4̠"osg2;b2Ck ^A| 7փ[:I@XtSbJgcؿ*)9)`&j{hU8x#T(sj3M+!.Mw,=dX7U"3y;'jwK"v3ͼdZђ.I~(9axtREJ6呯*?T.TAӼvl/ԥÍ38iaUl;ʫZ qv%hYL'nI.ӓ$ȓbhvl1s cXBrym `2Ɋߣ*rVt'HDGV͟9:\([1"Xs8'Yf\!;h],fc4ǔTc5?tJgȣ$ g; syG惵> Cگ.!WU6R rzd̠F+rR%B͉Alnz!0^ ;$pb&@6*R.&f$oSw,IL';QX\x:F &4yxL%' _,Vo?< <.%>yP!0಼2Qqay>ap{-E7:e\!GC#//ll<pn~n| (6U홅} HҤ%k\r}!@; IqO4"!ɉq'#/EGVUB+hBٯ67*'.ГK=.Y=Wp!d#a*J`2Õ]#26)Cmržfm_+D Fy'KQO/uTӱ9 &{y\yv^Ql3!>F?XW)eΞ-%YQp|j]8ndnvGeAFj:15he.4$k*]aL>$ƌ,nʺFCKmO T̯{gov]Ԏ|R(9L7~O|c' G4UhM% >}o-ℰ#(UZ9 Ё3j˞]W(q}z!4=R?G 6ʖA uИ6_Jܧu|qO =j]IAj-5q1n ߣEfZS o5O6tHf8y`?/ʿ4=`ljC6m(t=,"+#5|:Cq"won(eH1QԗYϥT{}Yvj1IVQpW/O;J294.Sk4jG``` >#76I{.7I!dbLr.] {{ Y_eeÄ1kb5KT*S?g;I@tԾ('m6.B]aiL^7S䋃79SUT/ mČ {/("seg | X BdyP΢;6_yk``IN%s6OqJ[Cp8MoTqn3"yN iM*[mK^Z~pDo(,0p.@Ci6{J3tG% B8F $/_e! 5`I5RK]dFj쑲xի\Ig&Í x+=`~|,8Xŝ$ нb٬w㲉_6Qa76@w-Ջh%n))`&w 8̖p.az ܍G"xCsmBB?l80r^W=ҍlY#)f~!.@?OFN(Yzg3Ϻm)a5LpcJ?5|y4ɚ\ŮXpt :.adn/v͝osG+(X8i WKΩ^.3L ֯{֋[dC_/4`@6B!^*g 4֖J=lrL`Ҿz;'{Hx\c3 TVj5s %~IJ>8Xr6>SҳT ~Iq{Eށ^B̢icLRgZDhӏ+U S5cT#9'd@Օy^T J 쨟Fx賱"e/lWG_fbDdNbw?zďaۏʝFR:>``Wq>rpMнEzl8Gw5Mudog䪽:GT'@S Ꝫ_2 [ןһķ aX)vUԙ@ ~(9me ԔffäWX`&/;!.x~+)xA9FDVl6y0CJN:-qߺB[#}f0̿XVFUUiq9C5N~{( bA#M](,VwyS>+M.6XPRohgV2Td@mK@gev Oy5gvȦD=OLM2wщ s"!gf*PzV[+駻%Ui-Xun$Cr3+;m `XYTFLׂ1H i8DrMN" Y1;ٷ`,CZ{y9)4-!&D4YdH9aٛ@ar<ԇ f[A5/HeG8)$/O92fN!&BMiX0Q 9t=o=W/f$\#Zu6ToE g,؞][.];}>5x0gEk>?,S &=0˫4,:qm 8i1i7)H XF2Y(> rUPqY^Eb4Ls{S:%R H)}Յ9.0AT= يp6"cMEy5dZѡ1c1Ƥ"ܑ~ JTud(/nFf9b;ƘN5D (¡s-BGP,b1E\D6X6+{HTq(XI*VCEk1ٳϊxLC=bHV?W">8!TCYRwcLJ8s 0ƴAh}kn3Pue(6G(7> ަd?`__,~;کs8H,0f65[[-0 we !EWUp17 YgI Y-3u*>^rz|1*8CSEԄܠߗm#B$Q\Z+Vqhb}J*N:=a(Ѩiđ}Odؼ96&+JC1Gf. jԯ#qn@`~@03.X.|17sJ|)7Z2Md &W7( dc@tKEYE%|EpOn9ErGGˈrW`}(BRLrxCO8ȴ~u" 3] ]?HqjLF'.DBP|sDzHn ~M'ʄP# #AQ`[I ׵q.?9YmjHZpڴIjōGkclz ߜɯnhMVj\3v>  g?nڞjWwVAPzdp >H0pP`Zcvkexb9g?{˾Dඏֹc}&-EY?zTC՝E9mObS.{ g7*ϰ2dZAUp 8nE|~OɄt3mVrVVmscT 熠~&.@aߌ*r"l:o[}n %q.{l*ff#'@zg`Wr{4b2+ڒ;#+᝚p|Z`{hwiC4h?;]{Nl]]2:Roi{ïWISXJ7GJ/]IΚ_)}a^# z?q{fqO%8rhI&+9GL\AL9vշBΖ.W=YyN IPjW@9Wsik xe,rҡ8~'}pMqˈ5=^ą*J?= '[hnHK7XC ٹ: h;׸NCҘkvΗLYJ|RQM_llJ}F%ř;15Hs5?|]4Nd{H73)`Qmf.DPOIf('XwaUxe/>2_7Kʩl"=ݕDTe1ŏ~7DcՈ֘͒!C-NBM#يij̤rUP?Б8ҀH-fG !31~XB׸q1 5[Óql4aeէa?Bqh N?օkaf=S676km F| 9[SX|D+05w\QUA+r1g),(m!&[8+XqtA1P5I~,aP3VR0"#Or[x% ;{zN1=Rʫxށ O luʙmf(\Y#:C>$76mɽ|sUXʇu҄T Aok[$VS* # ث!My.khxiyqׯA=|;A H/k7'Tb2t 36{Q^VgI2c)"Cׄ uW̲3{y*^4&xLZ;}deJt8)`>qIHF(sBL 74:n^ ^Rt0€yA8ώP09Lm}S+-WUT !bq2`^͜L{N^RC:'6V/Ni&J1S`1{xP?L0Z r=HJF`:.ʠH8%?S,'y2 B4%b&'c㗡eWQAMGzUCݢ &p+!Kߨ;[Qb^yJ'I.;Ey1}~5_`QVa!zNMZ9h;-8g8tha: @V wc&wRz)gʭ!8$ !CKT&sj4}7վz)VHۤB.6vyJJYRL~aN XOK`>yF_q"5@8I|ip2u0|4娇8șC2,*o)6ӈu\d~HCY"[zi-sU)Am3'7e)X6ULƱm{hd֮r>AaF$f874zuDN5rq1S7$h>ݩ7 'ƒvwKj2 Ro=)~NyQ:+!j*GV5]$ʜIx} QLV-s/g܈680kVv<\rQxYи4ýg)s!-=gp oL4_dIoQ`E[ @MQ~!?fqOq1wMPdߗIaVUνNw8Ȼr7qF8) N%K{If$ z煣$]FpqVRHnw W3 rtYa7_-tΗ`WhO"L]J6=# ҙut;VrRt[6ھr}lu]HUeXdpF6)J4_!;@t$VƓXd]ᦀh\ k߷?ʚ>_sodU( .ve0yuʆA5Q:%궯$$YO7fpskQ8q>yqۙN6qUX /Ƀ[)HG䧥N*!vbPZl|km0>F' ]g#LvMIC.gPgR:wn*€;lĿτs!-"} "R/X3{ _'ɅTorKяZSu嘫.H>1xwW7!,n;Cc j>8=u[_egsBB0!w7&%}](_8ݙ@e {[c#8u4⿹X@P@w!.Fo 23 /΂Y~)Y0h;Q+(3]x҃}(7\Ov O2 t*mx8 *FmJy| }z@I[kP]g{=Uk&%l˼# n ſ0 + A< ڧ& Áعy5T_8E}i9Nkr]CF ff9 m|ӮzY11tzX=0f K~H#2m@-@gRd&rBqB!:1ˇ|h>jK9!M>}A0H~ ҖGwYf giT 1N<=d iJ6>cP¯i&sT|W(ns^oxZj_QK9w]1Mw mD;/ق} tC/q.hzq%g"pKwy kj셌2{R [qv.|>u>gxJVևAED%*U}cHנ@BY9/s)_o0PJh64+HGFSrS$H“֛ an 8qt hI3xIt9UI8Z%m@1ɵOpuDX-{Wm1I/}lK`z ɸb6hHfh4JM :\#j . hWE`=<3ii'Bxi <-ңdz-ޖ^ѱ<9:> ۩sXiC.4q ;j}ߏ0fD"WmT,/)kJiZŊ9h-,(!{3 !ػ;-*e ' "HhZE|% 9?Z"(@%b,Bd& ciŪNom$|֗ 7ѪB<TہoBh)":9EGW*6dMڦč,xVu-FIcޢ\K 74]>nSR®W;0B9*%3gisU"K%+{hT/ ?X_@QllnYر/!fg:(Elb/y[})h}MEn].{c/HڅHyuGbnER&jN'=]v_彨oeujɭ3mg 앰Q/%^܇,0c+ !\.MZ7AC8 员::$[0b!tbF7SnIO5ȠTm}vbT{N%`Ĭ8 tZZOON@XRQnmI ah[G 'O<ː&+?Cㅳ﹬KhNJT &D0qp^iYr &9S;䧂O#p&l-Ƌŭwg{gڴl"ӻ3Ӧe!3=4WB<+: ͦZR {KO4F ۶Uazؙ l9ptJ  8$yxi_:V8 7ȃE@^9X[B% u-/)gMPu~ͥk2NfNZO ;*D {8/-SΝ/lN`*_S=S3P};1ZkrGUJfC_cK&+^/Oa;.Jb#D0"3 Aj+ ׄ~aC4xRV} Zp93L8M+>a+[3Ip|kS5ɵ ̛/Kh=W S >1>`j"oo![[o2!whjV kU\Ԝx D8CZ<#sB1 (ۊFt70& Y%<|~'.SiG:g78!nFlz@7+rl1A_(l5Wt? \oxyRgc쏜)D IǓY椎k 5w6oml \P0`ٺYC~jlr/NFfn`B>"!{І;UFX#[rd]hŧE %>0=5P`\֐6d璕 +ˍ}8לTΔ@Ɔx j\wEfDk?Z6\ELK/qnMJ? g,VAb}LZ~٪`Ci=y(Oب Y _`yf'2~ɸH,5l+V>P1L*4dfꭨW¡xaZ it }3֛"MW^hmbMc]g; L^,c4oB&!ׯwGM.55ݚ.Rd/ב vLY $Fd=8o%Q*qpm[O*fO7 nO0IFzKsMNgĜ>4J_8r pvM+<Afv,89[xITq RJ-];X" HؤŔ/>V*$[sCb]:8;(^;OnA+_- /v 6+j|̘ofmmriЂ8ԫ#&)\}iErYE?V;U"OM!9mC~oi5mްp3BT ;[|YG~y*Nݙ :jR2Xsmj[4(hOQ|tHa> ϾVvr_J9wް˜,oks׹P&- 6cلi T>qaRlnP[ۣ1 yo iC?M~ŅL䗙8L௴_7#>[Kh=/z`3b=ԛ#  Z7Թ@ac65C3ʂv {dBae+?\{pfED>TfpCSʱԱϭy50~굖Qp3TW/*IKc&_ZƺIyg1wGPe%vr`D<:2Pɺ2CNYvBcZp_fb,@1Rޥ};ںz4]>u/v]}[44Rڌ D?LY ǡ[dH?ؾrthO~p[ToG"PGYev 15x @b! s=[%@SRvFD&{4l;z 0t"bpGi͚$h gl!eaR c=iuo_rr5 N -wRME#SR6GM;t%t~r⻐_LR|拄@5+ǸuφE}@\_[E;0`s0ƒNS-bh]N>>]y+p%PfQaLھ+3dewܼ+3d6;! U16BV +v[ɋU4}doz筓)ȝL X 9-HuʻdêqzFE"1؎%^c/5:!]-QF3˰l#նRg\f:?Ad aMKJVsdX`$QJ wN;w:=xN &x[%\ؗˤ,` `}1/pmL1EUf0N$O6!dYR ¾2Ύ*6τZ ÑUut(e y\?"M"/wl?Y]ӿg/6XPW>&`;|G԰Dxjs=1w6] I๟`6]~Af sb:3xJJnZXp9Զ)b>h\{/HoVEʈE#xskk)${4aGɻgPd:Tck?^[Ra1_Av\v&`A XHDE,f#g'n$P duBƤ-vj 44@1>s(4+7 V7#4xf’ʼQp!L}c s+kyw6ka4%+oi.Ne~H\69VmDV[R%dm):CEV6ԫyccrȊ;1L7փ"rGI+|727>IB0ȥL^g{x"Uu4wj_/ݲQ?M}:jêlA iKA_2z]*hԘL_k61i!{@)Ԋ፬|Qߺį\=*e~H9J0 :)dT;b#ck&KŸ9E+Z7BǵѩBI!Х~ridߜ$n_2(.~{Q;y!1fqEߧ J'aZQ~`n̰1@bĦ E*axBҀJv䧄 TjRYZtjѐ!,yhb!XO75ypDTf#5I?I@FDR8nG\i荋M5梣geܹqٯ%@O8Jky&Mv~QIt^q2+%~=,#^gzl+v[紵ś7tέ1fAA.0KbI/)ITQ6p0poiFG͏Ȣ w`೟MNjK@;^u Zk*m.l[<j8!BXx\h%&D6dM_+?q~)@.p{aax6ވWLJ3POU̒*".!pA`*֐o'A㫂>VV2 9CTEB` CIZIUt\-(?Ȳ?AVѺ5,Zwa/Dl0p[ö:=s,ȫgI),Y?Z~e-lAE:鵚)l8i1lv8xoU!qJ~GWPqlϞ,{_A+RƘuZ j#E1sU*T +8prD\b\QKkGsu4Ш:7'|R"^&veS& g*o{v "FegabHʅ{X4nk`נg<[h^,j0-GP77CPYi,!7gYaPލ8 Gׄ58+Bwk5'8-gB0+ahe*s` X+RFňh<ޟKwq yK<('zM3{Cqq-u =F~ I+%M6(ˉ׮w lR\OB{شe8}[PtOCx_R} MEo> 4?ǰ?0-as<֐xs%}z# `4aU/F{aC{l'ˆpKܰՠ)Y8+AYb̌<36sg\I |( nc.;mC Wn]/c%0FQw? sҢg'ő@#̛\F35ahUix2U?1yÕr#U4{c)nedO\zzň81MC\?$3XW{+uR !_B6ZZ)s %hzĽ۷9 Yg$^i:k>1*|BgeOuW2are:Mw?RK' 0՗F9{]a6*s񛐖HlE-.5,[CAeEv>X8#rIMCyegO9"Ud]l/)]!BifVPu6=?7ׯ=fvڙZ4|Dƞb7s% Zz Hl^jlp(Zt d-$F&r<7L.o$1DVZYdtXs<"ݒLC`0@wEHNۜi. _ǣeTo.| L.w"~o71jl3~?fVco`tL/O>$7_9z[h71D4{vc0VmzCEQY9oDE'+TM>LCҕ 5ghcaʴ,}<Evd讛0ZYc *5Ɠ?}!߹%'॓MQ;Bm;T(=9(i5\ H%S?LByxD]`?:Wh#jnnOƢc[ )}kr~QZyJ!!Ŗ;4$jX[؇o1$9/`wbqvq)ڳrPXP%Xެ+/[SF ebkz5 y[m=L/T-_t'*Ƥ>/'۰NAM愺UH&KL }f,|1m@<=)3S]yL͔ U,Q3%)88۽Phy^EAtfcJ-2£&O|#JDFۀSVNrcEDwY9BW@]Z poOBX~i8@Iu6L}H, Xwc dnځ Mܻ ̃6?x6no]e,hԃĞmʻm.teN'  O#84l{`oZoo 2_0C>{QQAh_ J[GޓgW ! 'J~,^Dջ`Vv0S!dόw`9Wr*Oԣԙ&ھl]D%*i&` X`\sP̷ В"0ZKMMCKGت)c+z1Y[Pd60 cC*pYg_<p }8^3 ]x|S:lYi]4rpͨ%F&ܯ3I_sxƜ Dt|?"p`sT1p= ү }NCB7f;]$u'mw~aIbJ &Q3l0n-̳5^׻WI ң,G(WuawIw֬#&jm*!c䮚k+:N?; J>(܂ X1negikE!⺳ cVnhTHQ^17̿X`,|[ "4*xlUaB>'纫9Klt:MãʢΑe_ys*hHe!Ǩ^9QD}`8u2lXF4K%?[yGN$ZN ɚjiZeI^ɰ>2@&3Ͷt&zb-=L_~{tUu~{2ڧ@'\LN#F&jsL:Ҋ.C~YGl00bg_. u% 'h%yCΦ|QgJ5ȐXs0qrrN]WD$k!a*E'QyV0JNm+J2XU ?n[$n4yКBFs Q'v>ݗb L#ia.)Lh;\Ȧhyn}ACf-{nډZ5sj})~̓GP8S:?pWGf$8u*w'aS9P 4vi3־ 3'd@LniG#x(ܗ"48y;Q“DAp z 7yuM!:AŒ vKYzhlLv+zKb(p/pߝ?~r<V2uAiG7C.o@+wϢ [F0+5W- utt l_8,E0酋p rX5';__R )֘!~='oT5ܵP=@쾳΄TFYB0!ו[?m(;A 1=$"1AzQxLimȫKsYGG [95יGbY9x~;xDOe8ĥ/o&mmMϤǏpYui@NEЦrb<ەfT aY[cI&y{/-BukHx69(7}[Gfoh[Қ_0~- Q0 R+.`s~!WO=2ڈjࡌ^-$fO#>01 qQgZ nm^K_"=D>؞b6u# ykvGEr-ezGpռ<|5&(ш6Vc+؉6<9Gp3Kê漕v2%TQ* >6(uխo#HZ/~i0.ЫĴk0H'^k!G?C8h^G[KvmM cE+}<] u'| Y,~T}='z3 #[ C^h<eV/hZTRdUdc Xם\\19.A4+׭ F6`ΙH|"ZI+Qjiuw@J!tK!Λq/L0d- M;|Ԛ%CՓbqم5):H5t?,[D&Ucs+%W+ jH)@xG_/)KUg9%L @kn #< y2q[΋`qR]gqAs/ݻdN5pMJ".%{cm:c` 2tDX6>BGqok$(3a._s'n.k] e^a+U2/Ad_gdȶZi%}UzCwir}`.'bƠ(ziB i_[OLշ5z& -9| _iO eܫ{/독a1HJ\hƮ^_6B`sUʰ@[ʄ'|6ɀ֑luɨG* :FfPzDBr0d!g'OzKMj Sb$wH4ZKqOi8g}E6r D֋:!:%v0YIdmHI]ӆA xU$l~M_bN* ;'l^1W-o[^ESRx^[Dw{a\فVCwT yjٶA/fφ\`Y)DB'n:<7>ߎy,~ t1+A8m o ,w3` Ax؝n ~3%Gu"״e=z/X HxG!f<3FeVS}aA/~Ի9>23hwP_*?UNes,W*82{qR?OȌLfԉsn|{E}iFƍ~]o:bN@ } o[~1m$)i 7\E8|v$&,[ݨϙNY9Sԧq%(khGpLŪ7P5:6 [Vt3Z&)2ayؔHæPl}(\5-"X/^ =e_=>(YR7^wX5*{:5ߦ2_h-uoSo$0C#x`oq\M*˳ag6Pr52AfϤNlgmq1E)J3-{FӓrLv`uɛy1>Ǩry+c~JK3FɈOh/P/BrY==卻#XܵӫFi+aoeSur1E5@/^@ =1҅ v^Md0kHPqbE*!(P;i'1%SfE/:AMSN ~tY 2@۫hu(]xDkwGj$`0R)y Aq˞ijLŃ|\5#[@ْf;D AGbvF& ,),'w_.g;Cݏ.6)+F4, EM\]zgGqjwy0PqSkQf/Ņ_R4ACOFj{Mo-3WČCLHb-ݱ@A37)whmfৗE!nuہUkhü+R஑_ [Jh৵ܞ9oumgi>nq]L[;<E8Lb}Zw a:,PAc7\wmꄼ9%JJ,vҜf*J{j~~(M 퍼N2)vM;_oԦ)敔ңAf_@E3kkD ̃U= ec6aN, øsveKahCQyu1^È5m< 'Щ Uc{qbCE@-9Q :…KǟLl@j[:]1 Df^rQmHMq۪BT)q {&H/vA* (@(tQZ[SӒmt蝒'S*<;b{7a]3*bx^&bג.΢?}\? R8X%܂LXV; \]Fm80e%(J?trg WQh6%TDx@jjoqcUZ.|"*-P&^fR9/ߛ:.UdU5R4;9Haīl^d?F/ IK|QA WU3&lAtK,SUHq-a jĭ 5e|<a-]Z`p0ha0)qp:w קkJWRͨb9|VN<~+ѮoBb2;nJR,ivx#C©Q)1ke)U+>8:ߧnR^\"VX.b@iֵ[GY"a+=iB5<̾:r"%`-Y%^'ɞa!tj7Yɶ9 {6'B/F`{r3!*Ʀ2+-'ٵ?^Nj2Uf]ȄڊcT"AU_ G7e s?.Jٍݐf_#RD^`sgb&#=68g(sl*:u{mO_@y>VsK5iT8âE"%l6ԯ@( Z5!%_f(}8ej[0?ejJ-̀y0V6T$tr!pkl:gOi-T5D5cޝ|<ϮkC _|#i!c/JBfDNA3SbIR$5/RZQlG/pp 'my>JNB`j[],wM"i)q -G4|xYW&ZYP`ÙEIF=B%5$LP^jz9ȪQfSgb+soK$݄*A%~ kmя^٪FCV46G_E-wYQn$8058h)p߀\4=*1:׊y=(, LFpJMl=\QᵑQC \zT:x2Y`R YDÝML͓+FS`;`_P+nӢp@waYo@Of |N-0 8I`&aJ7%t& .F/ |2FD˩? 1_dWmqK#_ 35ԾAAX uoywcLk_Ae!,wpN@Mמ2 |1٫̀˜A>dߊtV c%|QPQxnW> L#RĐzZ~1!ha=A6 8NW3@߈bI4MbxH=/mh^ņQ딱DjޅF|SJZnF+VWQ@٢/6&!hx=p+r޽Ocޙ9ӥyuxz%DDkNر+)nipհIifҭ_oܖT1 3C]HETR'Jj$g@A l.HӢBsb4Tr3_C݃C(Vd?@;M(dj%L;XgunیVq^:NuF12([V2T,xӽ+ CȄnj uZ,X$ӹ=]WDX0[Ua1t7UDeC'i3.Sdl*#nQ-Gw`)""#5v&I\2e(-p@n $L[xwg "ULUf OrK2RDPVU-Ȯ 1XsUs+QUd qd F:*J!bИY\\S/֧$EɺhuC Ŗh9Y=:9Ļjl )iA!Y8oىR5{*yy ΣOs(}TFڪ:㨺@]4+NIIPL[QRFP rA^b)bZ K۾)JHehQ;^h Pi;VTMukf\P4YTi,I̻I#u<(AfHRT;!5tU -$h:4zx]rNXYiDpݩ43 *vϒRL@ 6&}-{(y2?" o<z3b/{<}\7N7*-C,@tM mF4q¿C@|`Tm1a>FKsBp G沝C1=h?-֋yR @c͋m5m,j4lr}d1k'مlҊ ̖H!xǚ up=y~bvEd5 P תfu,]8s- H]l:J:Q[dbq gBP)vL!.ktkE8 u{ҧda 9L]aM|yinT?p`2 2h Wە e 8Lmf{< e荔l{ih>\\Q{dO2 ZҞ#^rm[ ON^ 3-*>uOXJ\] qKG|[oTW'"O | HnI U^+mɀvy?P!&PC .NS˶"Rz0e1bãTODQMXǬ-b12LȽ78H-eh@| 'R̗\wUoyhOUr"m2t”I'Ll/Jd&n膪iˎrL\P A-gI܎޾w4$qqvv!dў5hzEK3V5Vnfs}/ GP=YsR$xd-Sk?!t+( #ƥjDKx6TP${q$=z nO?i>LvmaxaYb`!+OA!ECOExk_d67W*ԷƱFȲbapJ|))zn-44mdJ-qx(r0B=ߔ[L] a$Pnq  @KUqӿ߳ gV5E\f\w!~IM!yRg {'meFz;-Nb8lFn{*ۺ~7sM{U-Gu6%gDpPd#XS2'+q+>Po0^%\u0ڿ=f0v.͚ !{Ǚd.]3L1ɣiS!^uaJI|*+SR T&~kǘ+D׸a?M9 ,fD4 2׹DZ˻M -FQJcF3\ σd0]։Ow:{s}˰ɔ;=@l/ݤ fEJ)\Se-JRŦ>rz~ʠ|Rwp.3];O*X1+#,8TMZbj] :8lBbYO8 SkTW0vT L>1>/TWd+lV5sTt؈\.un{#\RЧ (qNc"Hym, l Mwp0nFӺl0k 1`8Z`X>N/B$(_aj'_ND-G•wm?CWh&5Z<&{}e+#L\ǻ]u[Fje[$v5{ߋE_:1P ϴxbť'sn!7s| )%g۞uq(|i-`T ӱ 7vcY6xbϤ{zRt^9 P3sNwbr  W1H{Sç;a8AN0*4Ex 'yG[mTJ|b1pe"N#C( VƱU|UT{K$戜g/uK2%Q51wlېgW8ALDkn&tQC!xq׉]5qJ |xSV0AY1>)UNKiFCwP; &ЖxqHS¯W">ǯ:ȇye xh  `7o6N6ڸRV! ^^nb>WǬE4^#05ܥpPY,|@5whma"*,T e`No {b{3Sw <D${FPeu GkT<JHjW vcLJvG& zޔ39wZu2Нcg.%" vgIߊgBIؕk IG9Mm8v+: bR?f;t{@A?;١ټ opWP< G !B&ҙۧ(\\X4q-@z`74>$aB|Zw1H8Q>Ls#пy1Qh+0zVmɭ7B;jl(?йB[wZ]]E6cS/fB^(v )7b$ph<M6л$UEN콉c.\-1FY>A-&u =#bwh$^SU+ʿ3{fWLܳp$DG/$2-4('=a̱l}UlsJ UU}M!P>)U{yA☏x.CE\eĻFxfxZ'QY`3\Y^FRxYaWP 9p8Ut/F_<$Nc1us5?^3Rk{r`C \ ~ ?-_dCegC:/s#]c&|1p wQtS_äR0L(05S%Kkb`x%I̾ZjǾI^%s3/Ϧ|ܴ0.y=8 ,^@/ 4 K^DʝIAt'"/&_ETFlxiu^3t&g8J^DcEy{ꭤ=C35V`ݩ=kƯ KS?yд0(bI%G.;}v ΐTxlIuOXٯ .Y)B/A16Ğ)]O+Ll9x74X8=OQ bGRܞb- j]m֮S SX!MB_)]vA`b; LIEjco("r^2nL[۽璘c6Αd\C^e4#RuK;gqYDm;ױ߃tEl36iPŘ'nd4J ,-_)6HM k;x oW$jRx>89X!痫 Q$Ђw˸~N %tE vK9.!Ls=]X\%XM!cJk`nO< EH:,  qCnj]=D!+1`| jFmQ|/ UeG!ހBElD 7Sr8セL_ 3z*)qӵiͮ>EFV'7@~# ؗ:2vɄ^^f" [pO5-1 FZԍ5L uh:㧴]lXοŠ@>GQէsxLh<.LMK5/, ^3Zh$=t)r4< Wpzt]vl񜯅F}w-fFd:j]3ۯ!){3t[l~tͼ*\ě/sINbFLw]?K(N%\xS&ȼr]]ܶ ӨFDE+a0[7&?ϵ2fA]Ͻ(fZnG!9 E/z#1_Mhv% MɕqZؒ\~:e,ei4?ťE HorV-={C'Ml l(wo<0)_a Z=%wjSvS~gpl" ztkSqv>)#rf:?As:Goq@8tJ?Ste 3{&կK @vF*NNn3v'T;׃?[>]$tPU^f;{hذvfëH c#7"Ch :Ow~ 􆲁zYci6 vk '\^DjH^VثY>p\0&}'A?FInEUݛ\L03b8͕ uσ62pF2noc!mȑ YBY 0E`F2lő{t6TDb\-FߧEܶ e]bxF+^d%ΐ`H۬1}j MR3b rkE%LGx#pHwS'wuD ڹʫ¢+Yq@ Pj(Ǫ_Xs6 .MEL*/~s+ICE N0eqj;(PVidAUͲ;vVu& |Fw;h(#;;z&"yZ34fɴg\@0J~*rKtsZ 2ۈ q E5ڕ䱗gpc[_g{6#iiY] )鎊ڀ#,ud@!Ih:kO >X 3`U>泊񃝡 n$F{ 8g_B(o2ʵnk0XBt/ȺlZҎ8#'O?WVK>w LdL1oGomB%'I^UʊC[ϻOZ4s4)J#G a2Qz8E{xd8qէ(ӽMM*ktػӭք"CgƂ;IM¿l@uxpt}uv"dd(C{_JhJNW y$V wT^<n޳z-5<:B'} V;fN p}/J,p8@z9䫂٧.Kg";Vhl:RF"6|.8 G$$޼$7;`Br_qIlUU r3Uhhg[9u &w͢> MkE$%z {G zQ%0 2~-j%2Q%\; tR\Hyv`T>^+:;_(Fhlnn7YZ Mޛ9v:M[{6Tszgn@(1Yz]Y\LC *W}zҧ*ݼ!B΅̋8T+ bK<}Nom5bEqSvnPGk1rqYqQ}ݞ|EP/(`t abeSXpl&k7{IL[~dt5$3NPpH!ĆB~3H.)4M߹{+&y+4_Gx hyeeqOUd(Ir^4` mRN tyd`U} p=Q-񅨅e{ؿ,IdGE“6/Jlt.&KHmeRq_Ǡ:*13BIϦB89<۾.Zi{d DA38};cUQ~Y=;fw\꜅RLU6EBPΖ;#7U7V'IB xN4٪(xz?IF'$@dۃQTOHQi 5X?[xox$,L|n˚: l]_?\ pZ?ۑ$Ho&(HtQy}e$ȼȵ!-@.iSrS54ko" 8y+$(t1$EEcHx $Th@G ^%и3t\Tr~sc:]0RO ~Mv=\?IqLɻ s-mֶ\8u !$.g!œCOhޠ3("])Sd[׼+_f3,Uo>^؏AhG4a5rbKXg}p|•J=uJSҨL`oL6 󟒀U3erۘW 3nѤp\^{4,߃(c/tN$П1_?h1dku/ͻ@\ED4_`H GYM*#GbfIʴN6ݠ}_+@Y=H>$$̟1H|sB&ǏSJ ZktL֣;cp;⣗;MBC^~eAW<. pb\Ks?K&U3GȞP=4ɘ'GRFcE >qcW38<~y< j[$wJWɤ%мi(OVɈ{J@\uoNeY s|qR wτ굏$SŧWZhi7=5آ^4SU;kqƇK1)vɘ/虇S 5GU wxRp|%l "{Y`Beaӗ4iggGALSfc[ k!ƋsBnf 1fLJLBΔ2c`642 G-WpfLS6`Ɩ=[Iɧ [J=BLhXq:(h܁zMejSh%BZw(䀂9$#8Hr"TH&o j@x%b:D+CS(V0`^?ϻc8iOj|RNɘ$䣹Deº 0/δ pZg}ȗa@n Ցm4@ "ZJ&\ "י?ٜe;,﹐Ox_دHK:T} =TD m1LB$I&썗ģ)u BBo6OmFkf}LeSyM/e8btprnʼ%QIRuB\a=R'HxYrI'{mD[g2R!4 :U]L7@YnZ>0]SԴV^J#KbWZ~/ iDpFnbRuwZf*?}3Eu918W@eLn 7 wNv[YSQAa==[PpYBn}Wnyq4x1aRf("-rd3q[#Dg^2%)\(MЊKfhD6C,|G\PÒG i7;KXs%0ŧ6_'S T|-I(C-TG/u[> sq(Y8:oFSqF<[~`:)H#ѦNag2ח€]~4}wvߏK~C [+][F5уƀI2Pi sT4l̢~f |,"PYr:r>wŹnX[O YY4RHVb:Tvǖ" Qa{PԈbc>ͳ]õ 'z!Al X*YRSZO4HN"0(4=E)onvfRO0VGGV֝Nm#/JLsr3>.nv¬|G 6l]fQ첊QM@_/^>~OQzkӕE+!X0HC@~%kͱZGPJmwa|DjHB ҔV:l7,[|Wy"UmG{_Ag?#56^=A-p_B}IWナaz!ǚ@>75øT^=@e0$ .1 rն"gʖB tTBg'p.in9sބT[b~IQ]򯣞Шn #]K qn }LriN,~t*{#`*E_:*/g6M3'>f7WB~}'VU>?#$9嚑itp%37K4/thy ]C>Vz Y-s yaÆK.OuhWʝYղoc&S |v;?Ԥ [,{ͰxMo@OA](݅^/K <%'Kv4mz Va=e4?,2<;oL.,4oԇ @@\s"~Sd"4<1EZI45\(,4h?SꑘX`.ȅ"(½EpG`º\GwY~^W{%T=1nѕ]K>NX6;BR钳Rf @C }֢DJmoW1;%D1vl`mLX kj+b?6wbS$ȩ_Ol'_/3 >bɫtyv9[2=gP+FW^Y j\t< _T%VuxN8/ )~ zT7{&idä2b|`5'Eo-uꝯo^NS˓2FnȀD;3~}É&9+srDNuҝj C}kv TWLdɔY<0*$im%~Lk$̬o57OHD3Ww .Oj4mM9Ѭxyk Z?Q" ɀ|=|iZ&_>l7?Y*t R)s?Fsr̍۳ 3?MXE$r 4 [-Kot8o9Cp KgK'Ehc2"Q=ųM4ȡX4kvX - hdfM^G)Vd%6G|IަpY6NUg38COO|/?36F'xK~#ޟ0(H73z=K'@|(9\l]:VtODN.DǦyyaU?}$6(B%nal-/ <ǗsUa9Lm hr}U 1{=s24[5/w|}v=/\挒*ͥݴ,Ły΅^;Sep+z%eݛT'Sʵ+G[`Zp01)!E׍ k$b|> k+B sE7xX Xq_dNSq-9';fhr4F{\ҶUQ%j+ӱ@/H;*WIJY3ֲ(t5aup=)鍎AE1:Tor(O?ɰavxN Y "Q~C`OncQMsއ|zxσ;O4ޮL%~},jjNU&bw˜ Oܹgcp"f.v :} [<DL/}5d#8~Jum*4ew@RT{Oڽ^\utpqrNVۇ^ RpO :F.̆ei@vW4cM8!aU5b)˲܈/R4} t|<~6@xW AMБ+ a[@OQ֑xvQ<̂ٻ%#`cQs$i:T'|d5m1 /9MUd#1լB-B)U۶鍩)7ËlG%v*gjiGIp}Ɋ*af0Fxn^zNM%h)N|9JsRbnMdqZ^pKc~'}3ax%kLVV$Y.'|N40\Y 1rZ[# zFhTvP8ЏtKG5kG[g~p'g.`}{}!nF nG!cp8 פ:-c\x <$,}6~r-bx^KV-#RdхigH.%'0`j8u(ׂV5na(@wE o̯B=D.89^39N୉p`ڍv&mu(ȷ'-x 78E{5ǣ_i!6܆!h~8 K/_:bhT3Ij Rac6ieo4 r }Q Ɋs(T=5,v\w48v{L,g\=__xdJ9!%t!*>Eg/h֧'n6&X Ț⡾7g)#"3x Tu+34 [rrqޙÝw\ϝ,)lt0# >xSiA cVXghI4*Z䖫c -?&YAg=~XF.Lj@8Rpǵk> )i~rm-6jKi]zdXoPGh@E:X&3l= @܃LȂ'x_2IJz뚧ywf]H 5^DZ9-{xu= |0jXu2J`7YҪ #<72驀UE<4A|CdHU`İL1ż4p]6]83q.]O{Kԫ-:0AL-8[bx"W*Gc ZtrOXMoIXMY̩`7W~k |X{t=71p)"02 d(VQ($oJ4jI&QTArAĝo@k$n> ʌ@}B %-if-9+ccBn%-[sjkh:v ɻ_>_=BbO-uģRtBN!*漢l/k(EҠ<"d"Et[J=5ļ2u'Ҙtmcr #<G ԧ>T%u7}q`t WT̋YV܅2ɖ1RD.%2"Z! (q풆IÁ}AC],=}p#$u!|P(}7s y4B-PXH ʋFY:Fa௜< k;7ހsԩr}X`C@T1C2$HӜ_{/%9#OEl~1]Mr'6x̛4W}%~pJphg!FM|qbI .v]vBgM$rX!}hwtH@2xr2ߑ(=k,ܞԗ%1Dޒȡ5Jy&}[JD oe^9J[WurJyA 8p(kSя\h4(#̝ !zv%F+~I<#Y_{gx KemؿfAu!nvL(k>7 C(mJ@2yEpôM2*Oj%EGѝz* FuY/"3a QϬrl5o^atJ xߤT|]MU."oX#4֜ho]sMXF( FlD_wBspL%Ph]\<1bݙb. X}oM[؛PWTGb<]Z4}ĩV|W.X&SG(z$rBhR; |W4 }Ѓyڤ k~Uj& 3767gwjQfh{2a]X6< BI{|hH(j8=R ?sC@]0EO瓆i( -n0r8;u֛>#letK&{lr*ü]S.Ef3Q ܎:֎xKhaK}Fӝq󰃋cєI9?Ofm1 ӡNsvjn0 3\,kg42mrY@ֻuPuJVJ0@:hAE?v\uTf`@H:.veH޼{6{Unģ!1w"Gpl%6xIȂ,cbU=97}xdO; NLw:x`v eY}hSfDW(E Ztfk3LEZ|Cdn\r*3gbw9(3r@OSqSqҍ^>I4z' 5_Q.׵} Ue=D='qFgdiK8uQj uLN&*(V3¹&){ČUA-nJ9 20{ٵ. kBeml>H dINe}a!NLrLü{u* ITO _5HzW A@mzeV 5WKO_UߖY[y".R*."SIWz6>@D YH7~8ene*8&3 ۑ$v.* EL;vScJov:7TbgmpCR2ǁ_o#BL<2.}.n?tgX1d) g _x]Ɂ`l]i7%v"r-F hCuvkII #(P&D|)(EEbr;nN?rVHKGm|LA ]޹Ha)df-Ȇs[o8k:Mᆇ1tbx,2/&@Wg9r*Nq9p`2`+[vqn|gHrr q}PxfDمqt-ٯ/L%C٭֜9͈d-D;4@5-]wΑ7ܧfclK-aRGEony\#1@9Ȳ:~A]@KVە:8Z!d3 aC7D=I YƠʣp}Xj WWcWsXCET xΨ:lw}p08lMTg˷ok!TЧF}v!6(Z7x#P`<ϨIY(b=Rȅk'Mɿ޺a)8 L@ȤiGX5v2xc$eZ#l%[$2i${;8Ho}3_b+k˞?֕]͈ =^D$vS?W6 ?oSN#D绫2})b|~1pEæO}K߀pP\gAGO d#%g) >S+SAK?˵nt$umjafMOYQQAݿiN"UCb1Ӄ1ћ|F2BNL2>N+f,&;`tw<_fmH42e+~ KnhbWdf|4 EɀB€s/#Lu~0xPl&o j?ߑ9xI쑀P`ǝqtByŲ eڿ^_ʆ1 TKdy)ГN|NJt ܃̭1O ˨:OaS?ŏR@sʎ?u Hh$dgF1#:8P}u /Ph~'y3:d|hS0E~wsHg_e_h3<'MU3i =æ{B:+w0u/9pf}8[7;ryD+ !uiU'B;z-MID{frBUg>1_SDj8$)g\ 7W˗}P?y-t5ṔP0jm3\AeHINR_ D tS-q~kzB_eQS7jL7!9aEIaIO ZꗀN@]Ǣ A-K;#wz3Ĺ5qF}y ǜbOxE>Dj.~5`ѿPouΑcH3VbZS8g`F l׌ό$񧰍PPyc`ͳgo %SPTwڃL?/͸Tl n1]DC JV\S:%\rʡ[3Jb;ҩt30SN]G!]YiQT\; W=!(tr<+ekpT}'_7^Cӎ_ƫГy0 qSҭN݉Z3o\TdB WH!;SV2As絲84,XK2x)-MAU([t`4,KA%0\rD5T}\!4,8=R1d "YG! 'w'xNC Ձ;WeY30* Hyihk;@E$=Q=Hp Q_;IT҂!),%İ=ίysT/aiYwhFcpGJ@)

q Ln˻ǥ+ѝL=;<%%C7ʒ"&H؇TC}50E;JBgR& N{sj)D{oq ƀZH~Y> kޤg/U%☬P}`67_ "a($]\C=ͳ֨^I #$02K\P&#`̈́ihj5IۺwV% ⧐|> :%@GWa5w/nTJs;[7\{[Žd"FEJv n16#HCG i] jj0+ڦ> PvHDJˋ|_rmBJF1iS夸fᄝP@Y'oiM&Ӛr~)(PA2|!M>$]Ԛ\C6$|[wwh_Ctt647~Ɓ}[fR %f+|kP:Y9i\̈C^4/i Hp΄_6/QbXGD Z"~Q䜪 jHջX^EL͢@7.ncӛ{ EX$0WH n.$f( mӗ''0}*|S1[ -PثRܩ& 3˼VT!CV64 $u,5QS6}9Zu\ Qbx  }dMhjHB^R=h3̽[79W8-X&%ժ"r_t>z6uT FoUY7&B}PYץKХgqS,!+1H6pR,EIǧ0+^/7-R~&L4X;tފCvQ^)&*M n! >^wH"iŵ'qĤ74Jk=|_H&@m􋔮/1؂ހX530ùD/<-ߛz 5%vu@Ju`5f}`{Ë"~~OӛY \+*lj{\We@"㋸1q8cGӃ-t/ śNysԾ.=s ad]v `2HrSis^ d3i!7N@||ؐU:M@}d![=:FTf"Z7ȕ?oxZ0^Wqҧ~6Kd ;Σ6bJAK#q=\Ef `,, j0~@Z U.9|V[r&+G]o04yq{ }PQm)Ɇқh9UK`y|qzLo4|ia~[10o\s9b*d6@\roVt7&g5`K*%OK"ԲwGt/3Kh7|M/xsUW5JLwrPG5JhƬD.*fӛ*SLYZgݻm! 2i`2n|ddiMb2 V෢96f͊jZ=f>':I_np5~9U㘾=k+YFOk5댏c_ <02E <i8e_n(MF%97qV*n*ez)_A1A?m0;^`vJTGҞ -*vA4-d{z8dlՔ9* LWI!>g.1v;VA'֟dCfm( }9,'mt ܐ-}CiW=[W&<,|$}<RRVreQe/P3:rty{h~ EmWJw,3En,(Iـ;{`Nxa0$2QJa L R DfmG:AS=l#uKp8\l, qmljyOL{F ,+EOѮRgNnj2%WN Rd+]i(; ,etL| OTlCﶿQ}oL/6&]@!9ƑZt~-]H/ʇCl[l7SR V8ʀVzͱxP\!]ػ/Ջ(euG5GjZ7ʉyke>i_pA=‹V?s /& 1qq SYݍ= )OЯeqGGHgj_ O[7fSxJC%ɺTѣRZ]g?ӽ1MjN\}@SRKj@*s%Lb(\)kI״dl"܅!%3 ] BV8E %W!y*O\{eY;JЧhrşOpy%XⱟR΄ZZKz!Z?=@Gm ,j2"MI:ikVVޭ#.Qj fjSo`mQQW*??Z^O0m Ow!݆R.ƌooORrzþ"B V"L艧`r%MJI5as*i", :+-_`4"Gzθ߿ŒZu"TsW)J锚Ԟ$f+sqP5qsXQAM9xm.ICz>nkܻJ4EA$%fg ݭ/Pvǔ69:·ϫe|trT>Xdh ]HL=7Z'rZ#4d:u aV&&91Lhג/AL~Ӡ|Ќ};рi5;ʣ*'2"Q6Cz%U tlS='gHQqY˂ 8(U(ep) 5* N)ܥxfS!E:\n%-d."I[>4/9Є pPT4"yHSJP!*5bf+?#>˂,xQO+xPlaM+PR:PVLDc'윶->P%+$=Avko&)d1_wo"l*)#+h8`=Dʳ1;^R E[Yc칎݃B=fH~%ZXEH_2hLKCŅ!4`j1]ݟZ7h1PgW'#1b  ^cze.t>/?n /bt?ZvyRJ mWT@[:'M<>Dە{o$CF- ~\fG2l;';״QSjbm1Pn*f}# S`O.Hl=h-nFcy!bvaX?*0pfV%jQCU&-#}l7qƵ8)dLCA`TYůX2E(C wO2J;z^(9Ank vFB8߱z) }yRRo!Nuxcxy8 g37m" Δ$ќ!@x֑7R,At&S^ʴ~]H1b.*W4[{kWL$AA<'WӐi&8~ZׁTȻ{43*d|5;dM~ʨU]qNZt |*:uɨt|h=U?=ƛ9 b1 (4ttU8$Hy TA$Խhn\7}v6h4kpEOaF}U/vG,Rߛz".ΌO^pu Nǵ l+5G))8%{Y(ʼ!H0i$gAMWQA}VL2Sгe5,4E1n"OBOk!H)pi(M)۟j~BELA)b8=Q|mcRcR/ͯ:s/˃F 0 (p ~67-}+sK&]^#PnB۵DN*=x=Dmq $E)Y `w)+:0BC8CMaǣ_xFK=qܲ6A4]Z`Sm KLC2nP;;\l=VK RXVj=Az{D;8eJw.i'O-(kb9'0+)_$:Q76T٨I>`2eN14h46K8'[ siɠ)w(d?UKT=|QౚMAju5͊?^] ,WN)]qUx!U[e*)OPs1onH=0=zi2*n@'+]w`@*N5^B :HV{1DQT[-ԕZ:Pk{DFZ6w`mM6jΞؿV.3; ȶT/;9bV"dd# 61^t}w q w#&%rzj{ 5@qԹ]wa3\WWrdH|zpJ=APě" Tno (Քf!*7o#q,wLwyG 1ZQw:S:fH(}Zjc+wmVŸ]o?6oSEiE8گJ-ah]~c*_.@t467zs9} 7eZ-Z +!;PQd,n.z)q!X(iӢbz^OԶHw ֢?Q;JIi!@#dYehs2$ 0P6g]4=z5Z#I_č胃!kY"g_Iv 3lﮐr|u)h#YuVo]AiKP\mu@0Ojv[Mx1Wxz,lCwRXiڌ)B-z10vj!N}JҍCTm}.#.ę.w(7^=2vcY`]L˵WE(K+$o0 Q8X6 e#b7|bIQtc-!yQPT$H |"TwuYܴzW`TaT߳ [,@lFr Zɺ Î4Eϡ67qMwCD5#EW' w2e"c1Ӹ 旤Tp1iLfߟ%3ÆI%!ty&M"~ q| [^$(1Μb ±A˛S,l" .0elQc=Be-/M>~͕4<|G-}ds'ܦ=˃/Hdos|l S'ܴΑsTFDA T{0%}s~gC3Ua6^JtH_ik{ڲ3Gb`F$:m!NFnCyF ŧq >8e,D& @ya՜2F|YD,*:3Qaf*Eo*2oxi6~R2qWzaA)5 !fJmDi[0j~%)` kI Ā2o,㻴}-upL=ub% pbc~p>r=T_f 3Dڙr&NF@<0LV9`˙8 ȎBQWGTS A Џ'̻O_h-, B1kף2_-ިZYEALthVͽ]f^q?;%qӒrzR>lY9 ơKKIjn`>!X=9ֈnVl=DMYuݰ$4# `K(z`"D/>pKﺄlGCPk'kOuu2OЁҡS&'9qBmҝkup:clw_aSP:y?U1)YTox| oY'ch,N+|v9KߓqVW!1مv^zqvs#:rjLOԫD l1q5qT 7lXFe+L F#'?#x$_}Bjbӡ*q9IډTPҮ\ -se/SE\({#}FHCl#Q;8c:%LjLۮ >Lh@/G$7j˟ F9L"Z꭛nqΩ#bj[\[?琒}J6)x_!Z0 |pf&,T ijBT-kSscʝh"bH