nss-util-3.79.0-10.el8 >  A cMU]O.N&d--(j+qi"\XTW5 *8%1H*oJ W8cpYM&5 hNM AT)o} o†cGT1{&{aߩMC2O'Zذ9F֪ 7J>$;~ì?\@AUY`ÕAbvҬjR`F XRr^$pq7Ph60c488050347c4ffad0e59114bdd2891ee4e5c633910c2b96ef564b1ebcec1dd023a626befa18ee1ee3c5a4ac424c677929b074e/cMU]J|w& N)sηGw"md:|E% ~MS\:V㬓AyRu]/fa::lv-ƣid!7&\9"$nC2pjΉǫ}(lV̵VTɔMY-ah(CR*,'_򥴨KC j֢*Vg@ɤ|W˷-gZR瞹OnaGa8)v5,xYpM_BX!4$YmnR?;%^â܍)Н2ʑ_%8+Ic@ T*<{<.% tPVJăzBk IM1oe7TnL!ٻ4kBBN\1;kfBeM3'@=R: ѵ3'!r7aIZ9^M-Ji]7'y"[ս)hCcEXğNTO!KZW%IS/A .a@>p<?d   E "(0H T ` x  (@^|,d(89 :]$GH I8X@Y\]^(bdefltuv0wxyCnss-util3.79.010.el8Network Security Services Utilities LibraryUtilities for Network Security Services and the Softoken modulec}ppc64le-01.mbox.centos.org]Unspecifiedhttp://www.mozilla.org/projects/security/pki/nss/linuxppc64le$FAAA큤cwcwcwczcwbNYddab08832b323c9d0c3b20e0bf2c6b56e46ea57d0be21453841ba86fef7b0123a20c1a32d1f8102432360b42e932869f7c11c7cdbacf9cac554c422132af47f4../../../../usr/lib64/libnssutil3.sorootrootrootrootrootrootrootrootrootrootrootrootnss-3.79.0-10.el8.src.rpmlibnssutil3.so()(64bit)libnssutil3.so(NSSUTIL_3.12)(64bit)libnssutil3.so(NSSUTIL_3.12.3)(64bit)libnssutil3.so(NSSUTIL_3.12.5)(64bit)libnssutil3.so(NSSUTIL_3.12.7)(64bit)libnssutil3.so(NSSUTIL_3.13)(64bit)libnssutil3.so(NSSUTIL_3.14)(64bit)libnssutil3.so(NSSUTIL_3.15)(64bit)libnssutil3.so(NSSUTIL_3.17.1)(64bit)libnssutil3.so(NSSUTIL_3.21)(64bit)libnssutil3.so(NSSUTIL_3.24)(64bit)libnssutil3.so(NSSUTIL_3.25)(64bit)libnssutil3.so(NSSUTIL_3.31)(64bit)libnssutil3.so(NSSUTIL_3.33)(64bit)libnssutil3.so(NSSUTIL_3.38)(64bit)libnssutil3.so(NSSUTIL_3.39)(64bit)libnssutil3.so(NSSUTIL_3.59)(64bit)nss-utilnss-util(ppc-64)@@@@@@@@     @libc.so.6()(64bit)libc.so.6(GLIBC_2.17)(64bit)libdl.so.2()(64bit)libnspr4.so()(64bit)libplc4.so()(64bit)libplds4.so()(64bit)libpthread.so.0()(64bit)libpthread.so.0(GLIBC_2.17)(64bit)nsprrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)rtld(GNU_HASH)4.34.0-33.0.4-14.6.0-14.0-15.2-14.14.3b@b@bγby@bba@blbbb@a@@`E`ݮ@` @`ٹ`̊`9@`Ȗ@`D`r_@_^@___@__"@_"@_"@_!d_@_ L_ _@^^@@^@^ۅ@^4]N@]]߶]e@]M@]µ]L]]^@\F@\Q\\\\\\@\I\I\U@\ `\l@[[[u[#@[[W[O+[M@[ZZw@Z|;Zo Zo Zg#Z ZZZ@Y+@Y{YY@Yn@YV@Y@YyYm@Yg`YJ_Y1S@XX@XX @XXYX@X@XX~@Xx@XoX>@X*X@WW@Wt@W~Wv[@WrfWoWm WbWQq@WPWJWDB@W4p@W@Wo@W@VV޾V޾V@VяVIVɦV@V@V=@V@V@VO @VHsVEV3[V UYU@UU@U@U>Ua@Ug@U[%UUU @T@Ts@TTء@T@TÉ@TT@T@T?@T:m@T"@S@S<@S@S@S @SSSSpShS(5@S@SRy@RJ@R@RR@RSRR@Rm@Rg@RD!R@RRR|Q@Q*@QQ@QKQ@QQW@Qw@Q]k@QNQ9Q7/Q#@QQ @P!@PՠP @PqP@P@PAPXPd@Pd@PPP@PP5@PPnP;a@P(@P H@O;O;O@OiO@O@O}O~OiOYOX@OOdO&@O!@@OO@O@N>@N>@NNܲ@N`NؽNN@NuN;@Np@Nf @NA!@N*NpM@MWMc@MM@M@MMfH@M^_@MZjMS@MQ0@MQ0@MQ0@MQ0@MK@MGMF@M6@M-MM@Ls@LOLLZ@L6LdL@L*@L@LA@LL@L4Lx@Lx@Li(@Lf@L_L_LT@L0L0L K @KsKsKKCKCKCK]KMKLd@KD{@K<@K5K4@K,@K+nK*@K K@K@K@KJݦ@J - 3.79.0-11Bob Relyea - 3.79.0-9Bob Relyea - 3.79.0-8Bob Relyea - 3.79.0-7Bob Relyea - 3.79.0-6Bob Relyea - 3.79.0-5Bob Relyea - 3.79.0-4Bob Relyea - 3.79.0-3Bob Relyea - 3.79.0-2Bob Relyea - 3.79.0-1Bob Relyea - 3.67.0-7Bob Relyea - 3.67.0-6Bob Relyea - 3.67.0-5Bob Relyea - 3.67.0-4Bob Relyea - 3.67.0-3Bob Relyea - 3.67.0-2Bob Relyea - 3.67.0-1Bob Relyea - 3.66.0-2Bob Relyea - 3.66.0-1.1Bob Relyea - 3.66.0-1Bob Relyea - 3.53.1-17Bob Relyea - 3.53.1-16Bob Relyea - 3.53.1-15Bob Relyea - 3.53.1-14Bob Relyea - 3.53.1-13Bob Relyea - 3.53.1-12Bob Relyea - 3.53.1-11Bob Relyea - 3.53.1-10Daiki Ueno - 3.53.1-9Daiki Ueno - 3.53.1-8Bob Relyea - 3.53.1-7Daiki Ueno - 3.53.1-6Bob Relyea - 3.53.1-5Bob Relyea - 3.53.1-4Daiki Ueno - 3.53.1-3Daiki Ueno - 3.53.1-2Daiki Ueno - 3.53.1-1Daiki Ueno - 3.53.0-1Bob Relyea - 3.44.0-15Bob Relyea - 3.44.0-14Bob Relyea - 3.44.0-13Daiki Ueno - 3.44.0-12Bob Relyea - 3.44.0-11Daiki Ueno - 3.44.0-10Bob Relyea - 3.44.0-9Bob Relyea - 3.44.0-8Daiki Ueno - 3.44.0-7Daiki Ueno - 3.44.0-6Daiki Ueno - 3.44.0-5Bob Relyea - 3.44.0-4.1Bob Relyea - 3.44.0-4Daiki Ueno - 3.44.0-3Bob Relyea - 3.44.0-2Daiki Ueno - 3.44.0-1Daiki Ueno - 3.41.0-5Bob Relyea - 3.41.0-4Daiki Ueno - 3.41.0-3Daiki Ueno - 3.41.0-2Daiki Ueno - 3.41.0-1Daiki Ueno - 3.39.0-1.5Bob Relyea - 3.39.0-1.4Daiki Ueno - 3.39.0-1.3Daiki Ueno - 3.39.0-1.2Daiki Ueno - 3.39.0-1.1Daiki Ueno - 3.39.0-1.0Daiki Ueno - 3.38.0-1.2Daiki Ueno - 3.38.0-1.1Daiki Ueno - 3.38.0-1.0Kai Engert - 3.36.1-1.2Daiki Ueno - 3.36.1-1.1Daiki Ueno - 3.36.1-1.0Daiki Ueno - 3.36.0-1.0Fedora Release Engineering - 3.35.0-5Kai Engert - 3.35.0-4Kai Engert - 3.35.0-3Daiki Ueno - 3.35.0-2Daiki Ueno - 3.34.0-2Daiki Ueno - 3.33.0-6Kai Engert - 3.33.0-5Kai Engert - 3.33.0-4Kai Engert - 3.33.0-3Daiki Ueno - 3.33.0-2Daiki Ueno - 3.32.1-2Daiki Ueno - 3.32.0-4Kai Engert - 3.32.0-3Daiki Ueno - 3.32.0-2Fedora Release Engineering - 3.31.0-6Fedora Release Engineering - 3.31.0-5Daiki Ueno - 3.31.0-4Daiki Ueno - 3.31.0-3Daiki Ueno - 3.31.0-2Daiki Ueno - 3.30.2-3Daiki Ueno - 3.30.2-2Kai Engert - 3.30.0-3Daiki Ueno - 3.30.0-2Kai Engert - 3.29.1-3Daiki Ueno - 3.29.1-2Daiki Ueno - 3.29.0-3Daiki Ueno - 3.29.0-2Daiki Ueno - 3.28.1-6Daiki Ueno - 3.28.1-5Daiki Ueno - 3.28.1-4Daiki Ueno - 3.28.1-3Daiki Ueno - 3.28.1-2Daiki Ueno - 3.27.2-2Daiki Ueno - 3.27.0-5Kai Engert - 3.27.0-4Daiki Ueno - 3.27.0-3Daiki Ueno - 3.27.0-2Daiki Ueno - 3.26.0-2Elio Maldonado - 3.25.0-6Elio Maldonado - 3.25.0-5Elio Maldonado - 3.25.0-4Elio Maldonado - 3.25.0-3Elio Maldonado - 3.25.0-2Kamil Dudka - 3.24.0-3Elio Maldonado - 3.24.0-2.3Elio Maldonado - 3.24.0-2.2Elio Maldonado - 3.24.0-2.1Elio Maldonado - 3.24.0-2.0Elio Maldonado - 3.23.0-9Elio Maldonado - 3.23.0-8Elio Maldonado - 3.23.0-7Elio Maldonado - 3.23.0-6Elio Maldonado - 3.23.0-5Elio Maldonado - 3.23.0-4Elio Maldonado - 3.23.0-3Elio Maldonado - 3.23.0-2Elio Maldonado - 3.22.2-2Elio Maldonado - 3.22.1-3Elio Maldonado - 3.22.1-1Elio Maldonado - 3.22.0-3Elio Maldonado - 3.22.0-2Fedora Release Engineering - 3.21.0-7Elio Maldonado - 3.21.0-6Michal Toman - 3.21.0-5Elio Maldonado - 3.21.0-4Elio Maldonado - 3.21.0-3Elio Maldonado Batiz - 3.21.1-2Elio Maldonado - 3.20.1-2Elio Maldonado - 3.20.0-6Elio Maldonado - 3.20.0-5Elio Maldonado - 3.20.0-4Elio Maldonado - 3.20.0-3Elio Maldonado - 3.20.0-2Elio Maldonado - 3.19.3-2Elio Maldonado - 3.19.2-3Kai Engert - 3.19.2-2Kai Engert - 3.19.1-2Kai Engert - 3.19.0-2Kai Engert - 3.18.0-2Elio Maldonado - 3.18.0-1Elio Maldonado - 3.17.4-5Till Maas - 3.17.4-4Elio Maldonado - 3.17.4-3Elio Maldonado - 3.17.4-2Elio Maldonado - 3.17.4-1Ville Skyttä - 3.17.3-4Elio Maldonado - 3.17.3-3Elio Maldonado - 3.17.3-2Elio Maldonado - 3.17.3-1Elio Maldonado - 3.17.2-2Elio Maldonado - 3.17.2-1Kai Engert - 3.17.1-1Kevin Fenzi - 3.17.0-2Elio Maldonado - 3.17.0-1Fedora Release Engineering - 3.16.2-4Elio Maldonado - 3.16.2-3Tom Callaway - 3.16.2-2Elio Maldonado - 3.16.2-1Elio Maldonado - 3.16.1-4Fedora Release Engineering - 3.16.1-3Jaromir Capik - 3.16.1-2Elio Maldonado - 3.16.1-1Elio Maldonado - 3.16.0-1Elio Maldonado - 3.15.5-2Elio Maldonado - 3.15.5-1Elio Maldonado - 3.15.4-5Elio Maldonado - 3.15.4-4Elio Maldonado - 3.15.4-3Peter Robinson 3.15.4-2Elio Maldonado - 3.15.4-1Elio Maldonado - 3.15.3.1-1Elio Maldonado - 3.15.3-2Elio Maldonado - 3.15.3-1Elio Maldonado - 3.15.2-3Elio Maldonado - 3.15.2-2Elio Maldonado - 3.15.2-1Elio Maldonado - 3.15.1-7Elio Maldonado - 3.15.1-6Elio Maldonado - 3.15.1-5Elio Maldonado - 3.15.1-4Elio Maldonado - 3.15.1-3Elio Maldonado - 3.15.1-2Elio Maldonado - 3.15.1-1Elio Maldonado - 3.15-5emaldona - 3.15-4emaldona - 3.15-3Elio Maldonado - 3.15-2Elio Maldonado - 3.15-1Elio Maldonado - 3.15-0.1.beta1.2Elio Maldonado - 3.15-0.1.beta1.1Kai Engert - 3.14.3-12Kai Engert - 3.14.3-10Kai Engert - 3.14.3-9Elio Maldonado - 3.14.3-1Elio Maldonado - 3.14.2-2Elio Maldonado - 3.14.2-1Kai Engert - 3.14.1-3Elio Maldonado - 3.14.1-2Elio Maldonado - 3.14.1-1Elio Maldonado - 3.14-12Elio Maldonado - 3.14-11Elio Maldonado - 3.14-10Elio Maldonado - 3.14-9Elio Maldonado - 3.14-8Elio Maldonado - 3.14-7Elio Maldonado - 3.14-6Elio Maldonado - 3.14-5Elio Maldonado - 3.14-4Elio Maldonado - 3.14-3Elio Maldonado - 3.14-2Elio Maldonado - 3.14-1Elio Maldonado - 3.14-0.1.rc.1Kai Engert - 3.13.6-1Elio Maldonado - 3.13.5-8Elio Maldonado - 3.13.5-7Fedora Release Engineering - 3.13.5-6Elio Maldonado - 3.13.5-5Elio Maldonado - 3.13.5-4Elio Maldonado - 3.13.5-3Elio Maldonado - 3.13.5-2Elio Maldonado - 3.13.5-1Elio Maldonado - 3.13.4-3Elio Maldonado - 3.13.4-2Elio Maldonado - 3.13.4-1Elio Maldonado - 3.13.3-4Elio Maldonado - 3.13.3-3Elio Maldonado - 3.13.3-2Elio Maldonado - 3.13.3-1Tom Callaway - 3.13.1-13Elio Maldonado - 3.13.1-12Fedora Release Engineering - 3.13.1-11Elio Maldonado - 3.13.1-11Elio Maldonado - 3.13.1-10elio maldonado - 3.13.1-9Elio Maldonado - 3.13.1-8Elio Maldonado - 3.13.1-7Elio Maldonado - 3.13.1-6Elio Maldonado - 3.13.1-5Elio Maldonado Batiz - 3.13.1-4Elio Maldonado - 3.13.1-2Elio Maldonado - 3.13.1-1Elio Maldonado - 3.13-1Elio Maldonado - 3.13-0.1.rc0.1Elio Maldonado - 3.12.11-3Kai Engert - 3.12.11-2Elio Maldonado - 3.12.11-1Elio Maldonado - 3.12.10-6Michael Schwendt - 3.12.10-5Elio Maldonado - 3.12.10-4Dennis Gilmore - 3.12.10-3Elio Maldonado - 3.12.10-2Elio Maldonado - 3.12.10-1Elio Maldonado - 3.12.10-0.1.beta1Elio Maldonado - 3.12.9-15Elio Maldonado - 3.12.9-14Elio Maldonado - 3.12.9-13Elio Maldonado - 3.12.9-12Elio Maldonado - 3.12.9-11Elio Maldonado - 3.12.9-10Elio Maldonado - 3.12.9-9Fedora Release Engineering - 3.12.9-8Elio Maldonado - 3.12.9-7Christopher Aillon - 3.12.9-6Elio Maldonado - 3.12.9-5Elio Maldonado - 3.12.9-4Elio Maldonado - 3.12.9-3Elio Maldonado - 3.12.9-2Elio Maldonado - 3.12.9-1Elio Maldonado - 3.12.9-0.1.beta2Elio Maldonado - 3.12.8.99.2-1Elio Maldonado - 3.12.8.99.1-1Elio Maldonado - 3.12.8-9Elio Maldonado - 3.12.8-8Elio Maldonado - 3.12.8-7Elio Maldonado - 3.12.8-6Elio Maldonado - 3.12.8-5Elio Maldonado - 3.12.8-4Elio Maldonado - 3.12.8-3Elio Maldonado - 3.12.8-2Elio Maldonado - 3.12.8-1Elio Maldonado - 3.12.7.99.4-1Elio Maldonado - 3.12.7.99.3-2Elio Maldonado - 3.12.7.99.3-1Elio Maldonado - 3.12.7-3Elio Maldonado - 3.12.7-2Elio Maldonado - 3.12.7-1Elio Maldonado - 3.12.6-12Elio Maldonado - 3.12.6-11Elio Maldonado - 3.12.6-10Elio Maldonado - 3.12.6-9Dennis Gilmore - 3.12.6-8Elio Maldonado - 3.12.6-7Elio Maldonado - 3.12.6-6Elio Maldonado - 3.12.6-5Elio Maldonado - 3.12.6-4Elio Maldonado - 3.12.6-3Elio Maldonado - 3.12.6-2Elio Maldonado - 3.12.6-1.2Elio Maldonado - 3.12.6-1.1Elio Maldonado - 3.12.6-1Elio Maldonado - 3.12.5-8Elio Maldonado - 3.12.5-5Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1.13.2Elio Maldonado - 3.12.5-1.13.1Elio Maldonado - 3.12.5-1.13Elio Maldonado - 3.12.5-1.11Elio maldonado - 3.12.5-1.9Elio Maldonado - 3.12.5-2.7Elio Maldonado - 3.12.5-1.6Elio Maldonado - 3.12.5-1.5Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1Elio Maldonado - 3.12.4-14.1Elio Maldonado - 3.12.4-13.1Elio Maldonado - 3.12.4-13Elio Maldonado - 3.12.4-12Elio Maldonado - 3.12.4-11Elio Maldonado - 3.12.4-10Elio Maldonado - 3.12.4-8Elio Maldonado - 3.12.4-6Elio Maldonado - 3.12.4-5Elio Maldonado - 3.12.4-4Elio Maldonado - 3.12.4-3Elio Maldonado - 3.12.4-2Elio Maldonado - 3.12.4-1Elio Maldonado - 3.12.3.99.3-30Elio Maldonado - 3.12.3.99.3-29Elio Maldonado - 3.12.3.99.3-28Elio Maldonado - 3.12.3.99.3-27Elio Maldonado - 3.12.3.99.3-26Elio Maldonado - 3.12.3.99.3-25Warren Togami - 3.12.3.99.3-24Elio Maldonado - 3.12.3.99.3-23Elio Maldonado - 3.12.3.99.3-22Elio Maldonado - 3.12.3.99.3-21Elio Maldonado - 3.12.3.99.3-20Elio Maldonado - 3.12.3.99.3-19Elio Maldonado - 3.12.3.99.3-18Elio Maldonado - 3.12.3.99.3-16Dennis Gilmore - 3.12.3.99.3-15Dennis Gilmore - 3.12.3.99.3-14Dennis Gilmore - 3.12.3.99.3-13Dennis Gilmore - 3.12.3.99.3-12Elio Maldonado+emaldona@redhat.com - 3.12.3.99.3-11Elio Maldonado - 3.12.3.99.3-10Dennis Gilmore - 3.12.3.99.3-9Elio Maldonado - 3.12.3.99.3-7.1Fedora Release Engineering - 3.12.3.99.3-7Elio Maldonado - 3.12.3.99.3-6Elio Maldonado - 3.12.3.99.3-5Elio Maldonado - 3.12.3.99.3-4Kai Engert - 3.12.3.99.3-3Kai Engert - 3.12.3.99.3-2Kai Engert - 3.12.3-7Kai Engert - 3.12.3-4Kai Engert - 3.12.3-3Kai Engert - 3.12.3-2Kai Engert - 3.12.2.99.3-7Kai Engert - 3.12.2.99.3-6Kai Engert - 3.12.2.99.3-5Kai Engert - 3.12.2.99.3-4Kai Engert - 3.12.2.99.3-3Kai Engert - 3.12.2.99.3-2Kai Engert - 3.12.2.99.3-1Fedora Release Engineering - 3.12.2.0-4Kai Engert - 3.12.2.0-3Dennis Gilmore - 3.12.1.1-4Kai Engert - 3.12.1.1-3Kai Engert - 3.12.1.1-2Kai Engert - 3.12.1.0-2Kai Engert - 3.12.0.3-7Kai Engert - 3.12.0.3-6Kai Engert - 3.12.0.3-3Kai Engert - 3.12.0.3-2Kai Engert - 3.12.0.1-1Jesse Keating - 3.11.99.5-2Kai Engert - 3.11.99.5-1Kai Engert - 3.11.99.4-1Kai Engert - 3.11.99.3-6Kai Engert - 3.11.99.3-5Kai Engert - 3.11.99.3-4Kai Engert - 3.11.99.3-3Kai Engert - 3.11.99.3-2Kai Engert - 3.11.99.3-1Kai Engert - 3.11.99.2b-3Kai Engert - 3.11.99.2b-2Kai Engert - 3.11.99.2-2Kai Engert - 3.11.99.2-1Kai Engert - 3.11.7-10Rob Crittenden - 3.11.7-9Kai Engert - 3.11.7-8Bob Relyea - 3.11.7-7Kai Engert - 3.11.7-6Kai Engert - 3.11.7-5Kai Engert - 3.11.7-4Kai Engert - 3.11.7-3Kai Engert - 3.11.7-2Kai Engert - 3.11.5-2Kai Engert - 3.11.5-1Bob Relyea - 3.11.4-4Kai Engert - 3.11.4-1Kai Engert - 3.11.3-2Kai Engert - 3.11.3-1Kai Engert - 3.11.2-2Jesse Keating - 3.11.2-1.1Kai Engert - 3.11.2-1Kai Engert - 3.11.1-2Kai Engert - 3.11.1-1Kai Engert - 3.11-4Jesse Keating - 3.11-3.2Jesse Keating - 3.11-3.1Ray Strode 3.11-3Christopher Aillon 3.11-2Christopher Aillon 3.11-1Christopher Aillon 3.11-0.cvs.2Christopher Aillon 3.11-0.cvsKai Engert Rob Crittenden 3.10-1- Fix QA found failures: - remove extra '+' from sslpolicy.txt file causing test error values - only use GRND_RANDOM if the kernel is in FIPS mode.- FIPS 140-3 changes- Update fips default for pk12util to AES rather than TDES - Fix bug in pkcs12 files with null passwords- Better fix for test regressions- fix nss.spec so it works in a rhel-8.1.0 buildroot- FIPS 140-3 changes - Reject Small RSA keys, 1024 bit keys are marked as FIP OK when verifying, reject signature keys by policy - Allow applications to retrigger selftests on demand.- Fix pkgconfig output- NSR Coverity fix changed selfserv from passive to active, change it back- Fix regressions found in test suites.- Rebase to NSS 3.79 - Set FIPS Module ID - skip attribute verification on attributes with default values - don't export trust objects if they are default trust objects from dbm - add dbtool to nss-tools- Fix CVE 2021 43527- Fix ssl alert issue- Fix issue with reading databases that were updated using unpatched versions of nss- Better fix for the sdb timeout. The issue wasn't a race, it was the sqlite timeout waiting to begin a transaction under heavy thread usage.- Fix sdb race condition- Fix coverity issues- Rebase to NSS 3.67- Restore old pkcs12 defaults.- build nss for older nspr so we can pass gating with the new nspr in the build root- Rebase to NSS 3.66- Fix various corner cases with ike v1 app b support.- Fix the following CVE - CVE-2020-12403 chacha-poly issues - CVE-2020-12400 constant time ECC. - CVE-2020-6829 constant time ECC.- Revert some policy changes the generate ABI runtime issues.- Add support for enable/disable in policy. Now if your policy file has disallow=x enable=y it will act just like our other libraries.- Add OAEP interface so applications can wrap keys with RSA-OAEP rather than RSA-PKCS-1.- fips need to reject small primes even if they are approved - code to autodetect whether or not to use the cache needs to do so in a way that doesn't mess with filesystem negative file caching. - add kdf selftests- Fix issue with upgradedb where upgradedb expects standard to generate dbm databases, not sql databases (default in RHEL8)- Disable dh timing test because it's unreliable on s390- Explicitly enable upgradedb/sharedb test cycles- Disable Delegated Credentials for TLS- Fix attribute decryption issue where the private key components integrity check on private attributes where not being checked.- Update nss-rsa-pkcs1-sigalgs.patch to the upstream version- Include required checks for dh and ecdh key generation in FIPS mode.- Add better checks for dh derive operations in FIPS mode.- Disable NSS_HASH_ALG_SUPPORT as well for MD5 (#1849938) - Adjust for update-crypto-policies packaging change (#1848649) - Fix compilation with -Werror=strict-prototypes (#1843417)- Fix regression in MD5 disablement (#1849938) - Include rsa_pkcs1_* in signature_algorithms extension (#1847945)- Update to NSS 3.53.1- Update to NSS 3.53- Fix swapped CMAC PKCS #11 values. - Fix data alignment crash in CMAC.- Fix coverify scan issue- Fix endian problem in SP-800 108 code.- Install cmac.h required by blapi.h (#1764513) - Fix out-of-bounds write in NSC_EncryptUpdate (#1775913)- Add SP-800 108 Generalized kdf- Check policy against hash algorithms used for ServerKeyExchange (#1730039)- Add CMAC- CKM_NSS_IKE1_APP_B_PRF_DERIVE was missing from the mechanism list, preventing PK11_Derive*() from using it. Add gtests for the PK11_Derive interface for all the CKM_NSS_IKE*_DERIVE mechanism.- Backport fixes from 3.44.1- Add continuous RNG test required by FIPS - fipstest: use CKM_TLS12_MASTER_KEY_DERIVE instead of vendor specific mechanism- Rebuild with the correct build target- rebuild to try to retrigger CI tests- Fix certutil man page - Fix extracting a public key from a private key for dh, ec, and dsa- Disable TLS 1.3 under FIPS mode - Disable RSASSA-PKCS1-v1_5 in TLS 1.3 - Fix post-handshake auth transcript calculation if SSL_ENABLE_SESSION_TICKETS is set - Revert the change to use XDG basedirs (mozilla#818686)- Add ike mechanisms in softokn - Add FIPS checks in softoken- Update to NSS 3.44 - Define NSS_SEED_ONLY_DEV_URANDOM=1 to exclusively use getentropy - Use %autosetup - Clean up manual pages generation - Clean up %check - Remove prelink dependency, which is not available in RHEL-8 - Remove upstreamed patches- Update manual pages to reflect recent changes in commands- Make sure corresponding public keys are created when importing private keys.- Fix the last change - Add --no-reload option to update-crypto-policies to avoid unnecessary restart of daemons- Restore LDFLAGS injection when linking DSO- Update to NSS 3.41 - Consolidate nss-util, nss-softokn, and nss into a single source package- Fix the last commit- Support for IKE/IPsec typical PKIX usage so libreswan can use nss without rejecting certs based on EKU- Backport upstream fixes for rhbz#1649026, rhbz#1608895, rhbz#1644854 - Document PKCS #11 URI - Add warning when adding module with modutil while p11-kit is enabled- Update nss-dsa.patch to not advertise DSA signature algorithm - Update PayPal test certs for testing- Backport "DSA" keyword in crypto-policies- Update to NSS 3.39- Fix LDFLAGS injection when linking DSO- Install crypto-policies configuration file for https://fedoraproject.org/wiki/Changes/NSSLoadP11KitModules - Port enable-fips-when-system-is-in-fips-mode.patch from RHEL-7 - Use %ldconfig_scriptlets - Remove needless use of %defattr, by Jason Tibbitts- Update to NSS 3.38- Backport upstream addition of nss-policy-check utility, rhbz#1428746, includes required fixes for mozbz#1296263 and mozbz#1474875- Switch the default DB type to SQL - Enable SSLKEYLOGFILE- Update to NSS 3.36.1 - Remove nss-3.14.0.0-disble-ocsp-test.patch - Fix partial injection of LDFLAGS - Remove NSS_NO_PKCS11_BYPASS, which is no-op in upstream- Update to NSS 3.36.0 - Add gcc-c++ to BuildRequires (C++ is needed for gtests) - Make test failure detection robuster- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild- Fix a compiler error with gcc 8, mozbz#1434070 - Set NSS_FORCE_FIPS=1 at %build time, and remove from %check.- Stop pulling in nss-pem automatically, packages that need it should depend on it, rhbz#1539401- Update to NSS 3.35.0- Update to NSS 3.34.0- Make sure 32bit nss-pem always be installed with 32bit nss in multlib environment, patch by Kamil Dudka- Fix test script- Update tests to be compatible with default NSS DB changed to sql (the default was changed in the nss-util package).- rhbz#1505487, backport upstream fixes required for rhbz#1496560- Update to NSS 3.33.0- Update to NSS 3.32.1- Update iquote.patch to really prefer in-tree headers over system headers- NSS libnssckbi.so has already been obsoleted by p11-kit-trust, rhbz#1484449- Update to NSS 3.32.0- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild- Backport mozbz#1381784 to avoid deadlock in dnf- Move signtool to %_libdir/nss/unsupported-tools, for: https://fedoraproject.org/wiki/Changes/NSSSigntoolDeprecation- Rebase to NSS 3.31.0- Enable gtests- Rebase to NSS 3.30.2 - Enable TLS 1.3- Backport upstream mozbz#1328318 to support crypto policy FUTURE.- Rebase to NSS 3.30.0 - Remove upstreamed patches- Backport mozbz#1334976 and mozbz#1336487.- Rebase to NSS 3.29.1- Disable TLS 1.3, following the upstream change- Rebase to NSS 3.29.0 - Suppress -Werror=int-in-bool-context warnings with GCC7- Work around pkgconfig -> pkgconf transition issue (releng#6597)- Disable TLS 1.3 - Add "Conflicts" with packages using older Mozilla codebase, which is not compatible with NSS 3.28.1 - Remove NSS_ECC_MORE_THAN_SUITE_B setting, as it was removed in upstream- Add "Conflicts" with older firefox packages which don't have support for smaller curves added in NSS 3.28.1- Fix incorrect version specification in %nss_{util,softokn}_version, pointed by Elio Maldonado- Rebase to NSS 3.28.1 - Remove upstreamed patch for disabling RSA-PSS - Re-enable TLS 1.3- Rebase to NSS 3.27.2- Revert the previous fix for RSA-PSS and use the upstream fix instead- Disable the use of RSA-PSS with SSL/TLS. #1383809- Disable TLS 1.3 for now, to avoid reported regression with TLS to version intolerant servers- Rebase to NSS 3.27.0 - Remove upstreamed ectest patch- Rebase to NSS 3.26.0 - Update check policy file patch to better match what was upstreamed - Remove conditionally ignore system policy patch as it has been upstreamed - Skip ectest as well as ecperf, which are built as part of nss-softokn - Fix rpmlint error regarding %define usage- Incorporate some changes requested in upstream review and commited upstream (#1157720)- Add support for conditionally ignoring the system policy (#1157720) - Remove unneeded test scripts patches in order to run more tests - Remove unneeded test data modifications from the spec file- Remove obsolete patch and spurious lines from the spec file (#1347336)- Cleanup spec file and patches and add references to bugs filed upstream- Rebase to nss 3.25- decouple nss-pem from the nss package (#1347336)- Apply the patch that was last introduced - Renumber and reorder some of the patches - Resolves: Bug 1342158- Allow application requests to disable SSL v2 to succeed - Resolves: Bug 1342158 - nss-3.24 does no longer support ssl V2, installation of IPA fails because nss init fails- Rebase to NSS 3.24.0 - Restore setting the policy file location - Make ssl tests scripts aware of policy - Ajust tests data expected result for policy- Bootstrap build to rebase to NSS 3.24.0 - Temporarily not setting the policy file location- Change POLICY_FILE to "nss.config"- Change POLICY_FILE to "nss.cfg"- Change the POLICY_PATH to "/etc/crypto-policies/back-ends" - Regenerate the check policy patch with hg to provide more context- Fix typo in the last %changelog entry- Load policy file if /etc/pki/nssdb/policy.cfg exists - Resolves: Bug 1157720 - NSS should enforce the system-wide crypto policy- Remove unused patch rendered obsolete by pem update- Update pem sources to latest from nss-pem upstream - Resolves: Bug 1300652 - [PEM] insufficient input validity checking while loading a private key- Rebase to NSS 3.23- Rebase to NSS 3.22.2- Fix ssl2/exp test disabling to run all the required tests- Rebase to NSS 3.22.1- Update .gitignore as part of updating to nss 3.22- Update to NSS 3.22- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild- Resolves: Bug 1299040 - Enable ssl_gtests upstream test suite - Remove 'export NSS_DISABLE_GTESTS=1' go ssl_gtests are built - Use %define when specifying the nss_tests to run- Add 64-bit MIPS to multilib arches- Update %{nss_util_version} and %{nss_softokn_version} to 3.21.0 - Resolves: Bug 1284095 - all https fails with sec_error_no_token- Add references to bugs filed upstream- Update to NSS 3.21 - Package listsuites as part of the unsupported tools set - Resolves: Bug 1279912 - nss-3.21 is available - Resolves: Bug 1258425 - Use __isa_bits macro instead of list of 64-bit - Resolves: Bug 1280032 - Package listsuites as part of the nss unsupported tools set- Update to NSS 3.20.1- Enable ECC cipher-suites by default [hrbz#1185708] - Split the enabling patch in two for easier maintenance - Remove unused patches rendered obsolete by prior rebase- Enable ECC cipher-suites by default [hrbz#1185708] - Implement corrections requested in code review- Enable ECC cipher-suites by default [hrbz#1185708]- Fix patches that disable ssl2 and export cipher suites support - Fix libssl patch that disable ssl2 & export cipher suites to not disable RSA_WITH_NULL ciphers - Fix syntax errors in patch to skip ssl2 and export cipher suite tests - Turn ssl2 off by default in the tstclnt tool - Disable ssl stress tests containing TLS RC4 128 with MD5- Update to NSS 3.20- Update to NSS 3.19.3- Create on the fly versions of sslcov.txt and sslstress.txt that disable tests for SSL2 and EXPORT ciphers- Update to NSS 3.19.2- Update to NSS 3.19.1- Update to NSS 3.19- Replace expired test certificates, upstream bug 1151037- Update to nss-3.18.0 - Resolves: Bug 1203689 - nss-3.18 is available- Disable export suites and SSL2 support at build time - Fix syntax errors in various shell scripts - Resolves: Bug 1189952 - Disable SSL2 and the export cipher suites- Rebuilt for Fedora 23 Change https://fedoraproject.org/wiki/Changes/Harden_all_packages_with_position-independent_code- Commented out the export NSS_NO_SSL2=1 line to not disable ssl2 - Backing out from disabling ssl2 until the patches are fixed- Disable SSL2 support at build time - Fix syntax errors in various shell scripts - Resolves: Bug 1189952 - Disable SSL2 and the export cipher suites- Update to nss-3.17.4- Own the %{_datadir}/doc/nss-tools dir- Resolves: Bug 987189 - nss-tools RPM conflicts with perl-PAR-Packer - Install pp man page in %{_datadir}/doc/nss-tools/pp.1 - Use %{_mandir} instead of /usr/share/man as more generic- Install pp man page in alternative location - Resolves: Bug 987189 - nss-tools RPM conflicts with perl-PAR-Packer- Update to nss-3.17.3 - Resolves: Bug 1171012 - nss-3.17.3 is available- Resolves: Bug 994599 - Enable TLS 1.2 by default- Update to nss-3.17.2- Update to nss-3.17.1 - Add a mechanism to skip test suite execution during development work- Rebuild for rpm bug 1131960- Update to nss-3.17.0- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild- Replace expired PayPal test cert with current one to prevent build failure- fix license handling- Update to nss-3.16.2- Remove unwanted source directories at end of %prep so it truly does it - Skip the cipher suite already run as part of the nss-softokn build- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild- Replacing ppc64 and ppc64le with the power64 macro - Related: Bug 1052545 - Trivial change for ppc64le in nss spec- Update to nss-3.16.1 - Update the iquote patch on account of the rebase - Improve error detection in the %section - Resolves: Bug 1094702 - nss-3.16.1 is available- Update to nss-3.16.0 - Cleanup the copying of the tools man pages - Update the iquote.patch on account of the rebase- Restore requiring nss_softokn_version >= 3.15.5- Update to nss-3.15.5 - Temporarily requiring only nss_softokn_version >= 3.15.4 - Fix location of sharedb files and their manpages - Move cert9.db, key4.db, and pkcs11.txt to the main package - Move nss-sysinit manpages tar archives to the main package - Resolves: Bug 1066877 - nss-3.15.5 is available - Resolves: Bug 1067091 - Move sharedb files to the %files section- Revert previous change that moved some sysinit manpages - Restore nss-sysinit manpages tar archives to %files sysinit - Removing spurious wildcard entry was the only change needed- Add explanatory comments for iquote.patch as was done on f20- Update pem sources to latest from nss-pem upstream - Pick up pem fixes verified on RHEL and applied upstream - Fix a problem where same files in two rpms created rpm conflict - Move some nss-sysinit manpages tar archives to the %files the - All man pages are listed by name so there shouldn't be wildcard inclusion - Add support for ppc64le, Resolves: Bug 1052545- ARM tests pass so remove ARM conditional- Update to nss-3.15.4 (hg tag NSS_3_15_4_RTM) - Resolves: Bug 1049229 - nss-3.15.4 is available - Update pem sources to latest from the interim upstream for pem - Remove no longer needed patches - Update pem/rsawrapr.c patch on account of upstream changes to freebl/softoken - Update iquote.patch on account of upstream changes- Update to nss-3.15.3.1 (hg tag NSS_3_15_3_1_RTM) - Resolves: Bug 1040282 - nss: Mis-issued ANSSI/DCSSI certificate (MFSA 2013-117) - Resolves: Bug 1040192 - nss-3.15.3.1 is available- Bump the release tag- Update to NSS_3_15_3_RTM - Resolves: Bug 1031897 - CVE-2013-5605 CVE-2013-5606 CVE-2013-1741 nss: various flaws - Fix option descriptions for setup-nsssysinit manpage - Fix man page of nss-sysinit wrong path and other flaws - Document email option for certutil manpage - Remove unused patches- Revert one change from last commit to preserve full nss pluggable ecc supprt [1019245]- Use the full sources from upstream - Bug 1019245 - ECDHE in openssl available -> NSS needs too for Firefox/Thunderbird- Update to NSS_3_15_2_RTM - Update iquote.patch on account of modified prototype on cert.h installed by nss-devel- Update pem sources to pick up a patch applied upstream which a faulty merge had missed - The pem module should not require unique file basenames- Update pem sources to the latest from interim upstream- Resolves: rhbz#996639 - Minor bugs in nss man pages - Fix some typos and improve description and see also sections- Cleanup spec file to address most rpmlint errors and warnings - Using double percent symbols to fix macro-in-comment warnings - Ignore unversioned-explicit-provides nss-system-init per spec comments - Ignore invalid-url Source0 as it comes from the git lookaside cache - Ignore invalid-url Source12 as it comes from the git lookaside cache- Add man page for pkcs11.txt configuration file and cert and key databases - Resolves: rhbz#985114 - Provide man pages for the nss configuration files- Fix errors in the man pages - Resolves: rhbz#984106 - Add missing option descriptions to man pages for {cert|cms|crl}util - Resolves: rhbz#982856 - Fix path to script in man page for nss-sysinit- Update to NSS_3_15_1_RTM - Enable the iquote.patch to access newly introduced types- Install man pages for nss-tools and the nss-config and setup-nsssysinit scripts - Resolves: rhbz#606020 - nss security tools lack man pages- Build nss without softoken or util sources in the tree - Resolves: rhbz#689918- Update ssl-cbc-random-iv-by-default.patch- Fix generation of NSS_VMAJOR, NSS_VMINOR, and NSS_VPATCH for nss-config- Update to NSS_3_15_RTM- Fix incorrect path that hid failed test from view - Add ocsp to the test suites to run but ... - Temporarily disable the ocsp stapling tests - Do not treat failed attempts at ssl pkcs11 bypass as fatal errors- Update to NSS_3_15_BETA1 - Update spec file, patches, and helper scripts on account of a shallower source tree- Update expired test certificates (fixed in upstream bug 852781)- Fix incorrect post/postun scripts. Fix broken links in posttrans.- Configure libnssckbi.so to use the alternatives system in order to prepare for a drop in replacement.- Update to NSS_3_14_3_RTM - sync up pem rsawrapr.c with softoken upstream changes for nss-3.14.3 - Resolves: rhbz#908257 - CVE-2013-1620 nss: TLS CBC padding timing attack - Resolves: rhbz#896651 - PEM module trashes private keys if login fails - Resolves: rhbz#909775 - specfile support for AArch64 - Resolves: rhbz#910584 - certutil -a does not produce ASCII output- Allow building nss against older system sqlite- Update to NSS_3_14_2_RTM- Update to NSS_3_14_1_WITH_CKBI_1_93_RTM- Require nspr >= 4.9.4 - Fix changelog invalid dates- Update to NSS_3_14_1_RTM- Bug 879978 - Install the nssck.api header template where mod_revocator can access it - Install nssck.api in /usr/includes/nss3/templates- Bug 879978 - Install the nssck.api header template in a place where mod_revocator can access it - Install nssck.api in /usr/includes/nss3- Bug 870864 - Add support in NSS for Secure Boot- Disable bypass code at build time and return failure on attempts to enable at runtime - Bug 806588 - Disable SSL PKCS #11 bypass at build time- Fix pk11wrap locking which fixes 'fedpkg new-sources' and 'fedpkg update' hangs - Bug 872124 - nss-3.14 breaks fedpkg new-sources - Fix should be considered preliminary since the patch may change upon upstream approval- Add a dummy source file for testing /preventing fedpkg breakage - Helps test the fedpkg new-sources and upload commands for breakage by nss updates - Related to Bug 872124 - nss 3.14 breaks fedpkg new-sources- Fix a previous unwanted merge from f18 - Update the SS_SSL_CBC_RANDOM_IV patch to match new sources while - Keeping the patch disabled while we are still in rawhide and - State in comment that patch is needed for both stable and beta branches - Update .gitignore to download only the new sources- Fix the spec file so sechash.h gets installed - Resolves: rhbz#871882 - missing header: sechash.h in nss 3.14- Update the license to MPLv2.0- Use only -f when removing unwanted headers- Add secmodt.h to the headers installed by nss-devel - nss-devel must install secmodt.h which moved from softoken to pk11wrap with nss-3.14- Update to NSS_3_14_RTM- Update to NSS_3_14_RC1 - update nss-589636.patch to apply to httpdserv - turn off ocsp tests for now - remove no longer needed patches - remove headers shipped by nss-util- Update to NSS_3_13_6_RTM- Rebase pem sources to fedora-hosted upstream to pick up two fixes from rhel-6.3 - Resolves: rhbz#847460 - Fix invalid read and free on invalid cert load - Resolves: rhbz#847462 - PEM module may attempt to free uninitialized pointer - Remove unneeded fix gcc 4.7 c++ issue in secmodt.h that actually undoes the upstream fix- Fix pluggable ecc support- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- Fix checkin comment to prevent unwanted expansions of percents- Resolves: Bug 830410 - Missing Requires %{?_isa} - Use Requires: %{name}%{?_isa} = %{version}-%{release} on tools - Drop zlib requires which rpmlint reports as error E: explicit-lib-dependency zlib - Enable sha224 portion of powerup selftest when running test suites - Require nspr 4.9.1- Resolves: rhbz#833529 - revert unwanted change to nss.pc.in- Resolves: rhbz#833529 - Remove unwanted space from the Libs: line on nss.pc.in- Update to NSS_3_13_5_RTM- Resolves: Bug 812423 - nss_Init leaks memory, fix from RHEL 6.3- Resolves: Bug 805723 - Library needs partial RELRO support added - Patch coreconf/Linux.mk as done on RHEL 6.2- Update to NSS_3_13_4_RTM - Update the nss-pem source archive to the latest version - Remove no longer needed patches - Resolves: Bug 806043 - use pem files interchangeably in a single process - Resolves: Bug 806051 - PEM various flaws detected by Coverity - Resolves: Bug 806058 - PEM pem_CreateObject leaks memory given a non-existing file name- Resolves: Bug 805723 - Library needs partial RELRO support added- Cleanup of the spec file - Add references to the upstream bugs - Fix typo in Summary for sysinit- Pick up fixes from RHEL - Resolves: rhbz#800674 - Unable to contact LDAP Server during winsync - Resolves: rhbz#800682 - Qpid AMQP daemon fails to load after nss update - Resolves: rhbz#800676 - NSS workaround for freebl bug that causes openswan to drop connections- Update to NSS_3_13_3_RTM- fix issue with gcc 4.7 in secmodt.h and C++11 user-defined literals- Resolves: Bug 784672 - nss should protect against being called before nss_Init- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- Deactivate a patch currently meant for stable branches only- Resolves: Bug 770682 - nss update breaks pidgin-sipe connectivity - NSS_SSL_CBC_RANDOM_IV set to 0 by default and changed to 1 on user request- Revert to using current nss_softokn_version - Patch to deal with lack of sha224 is no longer needed- Resolves: Bug 754771 - [PEM] an unregistered callback causes a SIGSEGV- Resolves: Bug 750376 - nss 3.13 breaks sssd TLS - Fix how pem is built so that nss-3.13.x works with nss-softokn-3.12.y - Only patch blapitest for the lack of sha224 on system freebl - Completed the patch to make pem link against system freebl- Removed unwanted /usr/include/nss3 in front of the normal cflags include path - Removed unnecessary patch dealing with CERTDB_TERMINAL_RECORD, it's visible- Statically link the pem module against system freebl found in buildroot - Disabling sha224-related powerup selftest until we update softokn - Disable sha224 and pss tests which nss-softokn 3.12.x doesn't support- Rebuild with nss-softokn from 3.12 in the buildroot - Allows the pem module to statically link against 3.12.x freebl - Required for using nss-3.13.x with nss-softokn-3.12.y for a merge inrto rhel git repo - Build will be temprarily placed on buildroot override but not pushed in bodhi- Fix broken dependencies by updating the nss-util and nss-softokn versions- Update to NSS_3_13_1_RTM - Update builtin certs to those from NSSCKBI_1_88_RTM- Update to NSS_3_13_RTM- Update to NSS_3_13_RC0- Fix attempt to free initilized pointer (#717338) - Fix leak on pem_CreateObject when given non-existing file name (#734760) - Fix pem_Initialize to return CKR_CANT_LOCK on multi-treaded calls (#736410)- Update builtins certs to those from NSSCKBI_1_87_RTM- Update to NSS_3_12_11_RTM- Indicate the provenance of stripped source tarball (#688015)- Provide virtual -static package to meet guidelines (#609612).- Enable pluggable ecc support (#712556) - Disable the nssdb write-access-on-read-only-dir tests when user is root (#646045)- make the testsuite non fatal on arm arches- Fix crmf hard-coded maximum size for wrapped private keys (#703656)- Update to NSS_3_12_10_RTM- Update to NSS_3_12_10_BETA1- Implement PEM logging using NSPR's own (#695011)- Update to NSS_3.12.9_WITH_CKBI_1_82_RTM- Short-term fix for ssl test suites hangs on ipv6 type connections (#539183)- Add a missing requires for pkcs11-devel (#675196)- Run the test suites in the check section (#677809)- Fix cms headers to not use c++ reserved words (#676036) - Reenabling Bug 499444 patches - Fix to swap internal key slot on fips mode switches- Revert patches for 499444 until all c++ reserved words are found and extirpated- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- Fix cms header to not use c++ reserved word (#676036) - Reenable patches for bug 499444- Revert patches for 499444 as they use a C++ reserved word and cause compilation of Firefox to fail- Fix the earlier infinite recursion patch (#499444) - Remove a header that now nss-softokn-freebl-devel ships- Fix infinite recursion when encoding NSS enveloped/digested data (#499444)- Update the cacert trust patch per upstream review requests (#633043)- Fix to honor the user's cert trust preferences (#633043) - Remove obsoleted patch- Update to 3.12.9- Rebuilt according to fedora pre-release package naming guidelines- Update to NSS_3_12_9_BETA2 - Fix libpnsspem crash when cacert dir contains other directories (#642433)- Update to NSS_3_12_9_BETA1- Update pem source tar with fixes for 614532 and 596674 - Remove no longer needed patches- Update PayPalEE.cert test certificate which had expired- Tell rpm not to verify md5, size, and modtime of configurations file- Fix certificates trust order (#643134) - Apply nss-sysinit-userdb-first.patch last- Move triggerpostun -n nss-sysinit script ahead of the other ones (#639248)- Fix invalid %postun scriptlet (#639248)- Replace posttrans sysinit scriptlet with a triggerpostun one (#636787) - Fix and cleanup the setup-nsssysinit.sh script (#636792, #636801)- Add posttrans scriptlet (#636787)- Update to 3.12.8 - Prevent disabling of nss-sysinit on package upgrade (#636787) - Create pkcs11.txt with correct permissions regardless of umask (#636792) - Setup-nsssysinit.sh reports whether nss-sysinit is turned on or off (#636801) - Added provides pkcs11-devel-static to comply with packaging guidelines (#609612)- NSS 3.12.8 RC0- Fix nss-util_version and nss_softokn_version required to be 3.12.7.99.3- NSS 3.12.8 Beta3 - Fix unclosed comment in renegotiate-transitional.patch- Change BuildRequries to available version of nss-util-devel- Define NSS_USE_SYSTEM_SQLITE and remove unneeded patch - Add comments regarding an unversioned provides which triggers rpmlint warning - Build requires nss-softokn-devel >= 3.12.7- Update to 3.12.7- Apply the patches to fix rhbz#614532- Removed pem sourecs as they are in the cache- Add support for PKCS#8 encoded PEM RSA private key files (#614532)- Fix nsssysinit to return userdb ahead of systemdb (#603313)- Require and BuildRequire >= the listed version not =- Require nss-softoken 3.12.6- Fix SIGSEGV within CreateObject (#596674)- Update pem source tar to pick up the following bug fixes: - PEM - Allow collect objects to search through all objects - PEM - Make CopyObject return a new shallow copy - PEM - Fix memory leak in pem_mdCryptoOperationRSAPriv- Update the test cert in the setup phase- Add sed to sysinit requires as setup-nsssysinit.sh requires it (#576071) - Update PayPalEE test cert with unexpired one (#580207)- Fix ns.spec to not require nss-softokn (#575001)- rebuilt with all tests enabled- Using SSL_RENEGOTIATE_TRANSITIONAL as default while on transition period - Disabling ssl tests suites until bug 539183 is resolved- Update to 3.12.6 - Reactivate all tests - Patch tools to validate command line options arguments- Fix curl related regression and general patch code clean up- retagging- Fix SIGSEGV on call of NSS_Initialize (#553638)- New version of patch to allow root to modify ystem database (#547860)- Temporarily disabling the ssl tests- Fix nsssysinit to allow root to modify the nss system database (#547860)- Fix an error introduced when adapting the patch for rhbz #546211- Remove left over trace statements from nsssysinit patching- Fix a misconstructed patch- Fix nsssysinit to enable apps to use system cert store, patch contributed by David Woodhouse (#546221) - Fix spec so sysinit requires coreutils for post install scriplet (#547067) - Fix segmentation fault when listing keys or certs in the database, patch contributed by Kamil Dudka (#540387)- Fix nsssysinit to set the default flags on the crypto module (#545779) - Remove redundant header from the pem module- Remove unneeded patch- Retagging to include missing patch- Update to 3.12.5 - Patch to allow ssl/tls clients to interoperate with servers that require renogiation- Retagging- Require nss-softoken of same architecture as nss (#527867) - Merge setup-nsssysinit.sh improvements from F-12 (#527051)- User no longer prompted for a password when listing keys an empty system db (#527048) - Fix setup-nsssysinit to handle more general formats (#527051)- Fix syntax error in setup-nsssysinit.sh- Fix sysinit to be under mozilla/security/nss/lib- Add nss-sysinit activation/deactivation script- Install blank databases and configuration file for system shared database - nsssysinit queries system for fips mode before relying on environment variable- Restoring nssutil and -rpath-link to nss-config for now - 522477- Add the nss-sysinit subpackage- Installing shared libraries to %{_libdir}- Retagging to pick up new sources- Update pem enabling source tar with latest fixes (509705, 51209)- PEM module implements memory management for internal objects - 509705 - PEM module doesn't crash when processing malformed key files - 512019- Remove symbolic links to shared libraries from devel - 521155 - No rpath-link in nss-softokn-config- Update to 3.12.4- Fix FORTIFY_SOURCE buffer overflows in test suite on ppc and ppc64 - bug 519766 - Fixed requires and buildrequires as per recommendations in spec file review- Restoring patches 2 and 7 as we still compile all sources - Applying the nss-nolocalsql.patch solves nss-tools sqlite dependency problems- restore require sqlite- Don't require sqlite for nss- Ensure versions in the requires match those used when creating nss.pc- Remove nss-prelink.conf as signed all shared libraries moved to nss-softokn - Add a temprary hack to nss.pc.in to unblock builds- caolan's nss.pc patch- Bump the release number for a chained build of nss-util, nss-softokn and nss- Fix nss-config not to include nssutil - Add BuildRequires on nss-softokn and nss-util since build also runs the test suite- disabling all tests while we investigate a buffer overflow bug- disabling some tests while we investigate a buffer overflow bug - 519766- remove patches that are now in nss-softokn and - remove spurious exec-permissions for nss.pc per rpmlint - single requires line in nss.pc.in- Fix BuildRequires: nss-softokn-devel release number- fix nss.pc.in to have one single requires line- cleanups for softokn- remove the softokn subpackages- don install the nss-util pkgconfig bits- remove from -devel the 3 headers that ship in nss-util-devel- kill off the nss-util nss-util-devel subpackages- split off nss-softokn and nss-util as subpackages with their own rpms - first phase of splitting nss-softokn and nss-util as their own packages- must install libnssutil3.since nss-util is untagged at the moment - preserve time stamps when installing various files- dont install libnssutil3.so since its now in nss-util- Fix spec file problems uncovered by Fedora_12_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild- removed two patch files which are no longer needed and fixed previous change log number- updated pem module incorporates various patches - fix off-by-one error when computing size to reduce memory leak. (483855) - fix data type to work on x86_64 systems. (429175) - fix various memory leaks and free internal objects on module unload. (501080) - fix to not clone internal objects in collect_objects(). (501118) - fix to not bypass initialization if module arguments are omitted. (501058) - fix numerous gcc warnings. (500815) - fix to support arbitrarily long password while loading a private key. (500180) - fix memory leak in make_key and memory leaks and return values in pem_mdSession_Login (501191)- add patch for bug 502133 upstream bug 496997- rebuild with higher release number for upgrade sanity- updated to NSS_3_12_4_FIPS1_WITH_CKBI_1_75- re-enable test suite - add patch for upstream bug 488646 and add newer paypal certs in order to make the test suite pass- add conflicts info in order to fix bug 499436- ship .chk files instead of running shlibsign at install time - include .chk file in softokn-freebl subpackage - add patch for upstream nss bug 488350- Update to NSS 3.12.3- temporarily disable the test suite because of bug 494266- fix softokn-freebl dependency for multilib (bug 494122)- introduce separate nss-softokn-freebl package- disable execstack when building freebl- add upstream patch to fix bug 483855- build nspr-less freebl library- Update to NSS_3_12_3_BETA4- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild- update to NSS_3_12_2_RC1 - use system zlib- add sparc64 to the list of 64 bit arches- bug 456847, move pkgconfig requirement to devel package- Update to NSS_3_12_1_RC2- NSS 3.12.1 RC1- fix bug bug 429175 in libpem module- bug 456847, add Requires: pkgconfig- nss package should own /etc/prelink.conf.d folder, rhbz#452062 - use upstream patch to fix test suite abort- Update to NSS_3_12_RC4- Update to NSS_3_12_RC2- Zapping old Obsoletes/Provides. No longer needed, causes multilib headache.- Update to NSS_3_12_BETA3- NSS 3.12 Beta 2 - Use /usr/lib{64} as devel libdir, create symbolic links.- Apply upstream patch for bug 417664, enable test suite on pcc.- Support concurrent runs of the test suite on a single build host.- disable test suite on ppc- disable test suite on ppc64- Build against gcc 4.3.0, use workaround for bug 432146 - Run the test suite after the build and abort on failures.* NSS 3.12 Beta 1- move .so files to /lib- NSS 3.12 alpha 2b- upstream patches to avoid calling netstat for random data- NSS 3.12 alpha 2- Add /etc/prelink.conf.d/nss-prelink.conf in order to blacklist our signed libraries and protect them from modification.- Fix off-by-one error in the PEM module- fix a C++ mode compilation error- Add 3.12 ckfw and libnsspem- Updated license tag- Ensure the workaround for mozilla bug 51429 really get's built.- Better approach to ship freebl/softokn based on 3.11.5 - Remove link time dependency on softokn- Fix unowned directories, rhbz#233890- Update to 3.11.7, but freebl/softokn remain at 3.11.5. - Use a workaround to avoid mozilla bug 51429.- Fix rhbz#230545, failure to enable FIPS mode - Fix rhbz#220542, make NSS more tolerant of resets when in the middle of prompting for a user password.- Update to 3.11.5 - This update fixes two security vulnerabilities with SSL 2 - Do not use -rpath link option - Added several unsupported tools to tools package- disable ECC, cleanout dead code- Update to 3.11.4- Revert the attempt to require latest NSPR, as it is not yet available in the build infrastructure.- Update to 3.11.3- Add /etc/pki/nssdb- rebuild- Update to 3.11.2 - Enable executable bit on shared libs, also fixes debug info.- Enable Elliptic Curve Cryptography (ECC)- Update to 3.11.1 - Include upstream patch to limit curves- add --noexecstack when compiling assembler on x86_64- bump again for double-long bug on ppc(64)- rebuilt for new gcc4.1 snapshot and glibc changes- rebuild- Update file list for the devel packages- Update to 3.11- Add patch to allow building on ppc* - Update the pkgconfig file to Require nspr- Initial import into Fedora Core, based on a CVS snapshot of the NSS_3_11_RTM tag - Fix up the pkcs11-devel subpackage to contain the proper headers - Build with RPM_OPT_FLAGS - No need to have rpath of /usr/lib in the pc file- Adressed review comments by Wan-Teh Chang, Bob Relyea, Christopher Aillon.- Initial build3.79.0-10.el83.79.0-10.el8.build-id6f4225c7f24cb76b326b652f790b31cabb8abf7blibnssutil3.sonss-utilCOPYING/usr/lib//usr/lib/.build-id//usr/lib/.build-id/6f//usr/lib64//usr/share/licenses//usr/share/licenses/nss-util/-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -fexceptions -fstack-protector-strong -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1 -m64 -mcpu=power8 -mtune=power8 -funwind-tables -fstack-clash-protectioncpioxz2ppc64le-redhat-linux-gnudirectoryELF 64-bit LSB shared object, 64-bit PowerPC or cisco 7500, version 1 (SYSV), dynamically linked, BuildID[sha1]=6f4225c7f24cb76b326b652f790b31cabb8abf7b, strippedASCII textPPPPPPPPP P P P P PPPPRRRRRRRRR utf-8622598b9d00e1af97bfa06cfb4975d78252db8e1da1aa7b8bc036e7f2726bb01?@7zXZ !#,] b2u jӫ`(y.SKPޝ#%ϕumz`s r;Wu3i€zM'HX Cȹ/@Z ǼiƬ:̓ߗQQI~6}]a(U xS'D5Yl~[%n}SkGYvӹK}9b(/'sER"BGΨWLJ6кdCWֶO+)@uwzVeY^V8ɐp>jhV7aW1D#oIK#aFU7dpPWB|=/@:l?͑G{_Y$LE{{Hekw mwM,EEnzi8 G3Ң6oqҬ=-w i3EWq Ɓ޴7#cCG`6& k>BtZD#·ȐC7\%CiO'}<UA+:jXhZLn){FV6~Yg#?nS ԅ'm`ykxqLp;HXYM%#,30r(MA;!8vsN(<*o@0Uՙ Zt"7/+DL}L$wja=ޅYF ܕȣ`oc7ҎĈvɍ; *(Uhze;jRA-Tq1 [s.$EFW`co -x `CSn,mZ[%w21Q)fR_Lpg=\h댳>s-qȚ"Esy,]ύжpнoMP̟+va ޫUS\@+k┎\3ŀz@'HrƔ^dN-~F?ߵ qgo)at=QШ!+?#'v]Q]!rg({g$wvN'a&+&kG]힌|(=igSkPSآ[g<]l]Dx#}Gi#wD J,UA+D̓d/5/y.Z Cg'tՓBx23UZ$\)a~@GOEVs[(܆o|`2D!dC#.H;u{J{|bHwhIvYWC+%q 0 k,*\~_Jp֬DdNGφ2DIJ!>p|{S Jt̑,3>=d!ao+E,3s ^sˣJ|?&\8(="z」xJWP{6F v;藺:}ζGbo-Kܖv,L,46(,WdBxd?!-k^m7 3V^CY jAUyvӞm۱L,tS0nqyr*-{ǜ@eo"C.HZq /huKrȳӞIa5ֳxx c_Zj?-G$us]*>KD LQ]<.nBWfO<\4-. V1$S}xabH0hnC~8GQpqk40t0\g@n*O9wTuF'UEVCP"eT]fʂaubځv۽nl@tւzI+Q3TCD),Y=č!+v*RC.Aޢ_#d3C= w?m /$@ _kjYZV1STlϵK`.8T0KDOAv"r_t~}=@ǟ ^Wl@JTy֝"V9 1 \F)+Wyx x}c!!; qmAlܷ{N:8m%fFMY؏ǂL;N7T5g]+8˒lV{g0bJϞI_ &b`?& $\k*ڑ F"(F+iBȧ]7<{Alm-J+Ω0޵L)a()dNO̲'Go+{6r]'6a8ƠwV-P, fQfAr47v0 T" tRJCUm᚞-dٲ```Wssg(; RvIDgm@Io&( SO!Yt&K7PFTZO?ϾD v7#J(sQdakэlŶ9qUlK2[Evk㏧k#Cd[ ̤^Wٴ:,I..F b*[:'w`l'm*S1'Q`6;tl'4*~veY>'GqF9P Ta#U?BmLL +t'|SAN A_U賱=(C:ӧQKņq/ "_׉M,HtB)l8'ܜWה_6-Ʃ-G 3|ڼW*w(E2q3֬Cc +xKQKIa Ws/)]\7Lϛb3uahj,9l&[k.)n[EգaZ%ǟqB 8:+}$z"Dc nv h[q5M2;g^.@jovf~:!]X@A1~G~ŷqBO zCwa 65"Tq.n"Q6CUZo{=-2f$\3pW^ oM[[j4q-0;!|Ke9#V\~|vr+L˫v(#pIЁriZ$1D-a,R]ȑO6"! L72]>$n#5xpʯ>Ο }.ɞnE 'YɌ3zVT(L\~'ƹhՑ;i1/]KԸa)Ր~0{؎ Ǒ_ԡ 9pۈz*{xHAZ_5b"m{vp&uh'Z'io]rl)>2}SO anm+ Nhk y‡ Цƒ'/01c 'qx`uoeF߀t+xĕf :ϴyB׏l B70 _Om+Y8G"$ ΣZZb^o~/+&ۙZԳ0r2ѐKQ ,"^L+۟wEuv9vs:͛_5 }q-%r> ǯ3vTY?Rʅ#q*BhEnÞN =McӜݚsw1ZկK 1L[;W@ro-wYVܝǫ/0 ~(944j17ι"i#J˺4BsmE(Guz]V`r18I+RܓXkAk$2i2 2D~TCam"ss5!X"B&=b6TcAۻb+w$38GF҇#Q`(2ijxH.OtB}F\" &.pQN$7e m."6*yڌ\$$á]/[B=xw=s&;t15Ή&$LQ83]E %G`M(&ni^nM@aVqqL[WUpIYm֖8]ْ'ۋl=`D)o*v|/ i6BFάkPgl,چK7h++`NeC8T|+>/؍R zLB4T};,7&B;}X.7$}-wAp^d[+o'>%+zA_B!9C Y(~C6ql.27;zh9r R./Ny4{(/͡v/םJN 9Gm 1cX1D3G4p?-ncrfI­:mV ]ۑX}guMil/~ m51~~ߕx=5~!:Y7DH-@cKgUA%` $hxURX9OI49/m2Hw=@z 8vJLkPI EAT 63f\;Ku]@Y&Za?4-l]C@9(@K\{/=4Z*0qk.o\ K P_f/ocW=TeCa>.P2dyڼGF|PlH囮Tm I!g=gLLY͚y hIzBwU?~i˺ҕ]е[?aoKi(L!ZެՏuQXіJh`& E && k>^s7-QMG1>f<.p SF"{^8_ $) e$LgtGxWvN}Ԃ+4=S#i#=tAfG5Z/_fyOTRph _N 3 zД#K\YNWNI:g-8 go1({"eą$j^W>ĚYO4hI9Rgs>C3wjf+6sE,`f>TMeƒ2+71ZܠnP)@<}!k& ~YX% 4QJj[6_ Т ATt*TE[*-nqJqօ*0/2'ls8Ul`Wid[ȏ.kB+ª$ĄD"_PJwn/RQ%E:}T|Be(0f@61}1HzS4T#w)G?~&scB宠fu<.-P)2g> ޼~A Z ! t%ivVq9!LҐ/hD1eHoA8u_h04ǽx׸9JŭVCuA'J /򴉣ry_ f ;ϑҪ= (8OH6/ZCOr<~Hgi(oa>Ȧoҧӫ\# nO7`0|HTEҖ&XGs!oV ͽ DnThƋtqŵr$EաUeT| t6nq ra($)q/*NaHZw֌tT}^  bgc܋P}N>={[U g` 0IA܆f@EqfBj/><^wia0I&MNVLRv>p tT8{ZXH{]0bC/y쵴y[c֠ p2B `6!xc ?کƉ@ۂZ!wmcNJX7tQ\ :V_N1Cqf53`K︐QSG^ho=8br8}k \:K 2f+MxHY@Go3./!ctAerDIstB;CW@>뺧PpebyX=j` qk> 1yXzqg |yOٷLKldYwrΐ-i-{)kV83h%g&w$Hp@m' qp`SIbԑ]tO1>i_kRɹW%Ou d@eHS]*4MV)^>$ O炘~bݏ,0,C501 >4Ӂ?I9 [;ձF:]k< d.0 nj)}T_6𢡄^p{:$/QzC~cV _@DaK%yQcɔZ<7'eĆ~8NfAŽAȈu5Emǹ w>|!OOkߨ4:E#[DPaqR^U!ys$sLpUՉa Ga1hglUzAETyrG@BZK$ӫF#?P$`9/{QgZ^Evvqq" Y,: ;!- # uǎN2Esjd~%#Kgfz Y |>fr nGzhw%7=d|  8Rȩ InA$omPc,L{F=c DI'tC,DKXl +b:Ԋ)M2s7xAE'$^^ovBJ?Yq~zRR\y3-_P}XfuQWdi.Ϙ:—_o,^Kad Õ#x_3u@UD '[LyVBc-[u/'em 8_$ιjw$IL qؓMA%>5V6և]yizW׽e0s %\cAFvWonC,߈─B;a$crobͱ÷ko#oXV vT:k ڷx!M C,XѶQVbX0xw[3۸@ʊIIvm_ 'n(xnUC":ZmQahB֨JY;ʺ"5J ;|x"`7s\x@}ƭyoyqht?hD^Ψ6KY:7F-W_/U<_HVZh>U{hr&jCҰ z3JRaq>*ܙ9FlGC*e^V,ZconpXLo!x]92>W2@zEؾ0:먐0}(IJ6?IKmSE^DbD&d`)>yT: z^"V';+W,4 &i<3InVh#Ձ22#2&6>혦y`Y'h [8-;̓yD` }4DZ*23XvZVweZ 1{czxُlkvUm`tX`3J2UOwFԏ2d$oQJ[o$^HAI i2O#S 4-oA*M1V `x?_AU-,/2IЕI{@؏)V/ZXD& eh[rFIuI\ c STpu?\钷]es\8CFXCy! 9$iV]"%B4rpXg"cH i?&*@uSת݈X4< k5/}<6SVbx9)P j VMa[1~Zgo}N;oHg0˷F7P®E9}̍SP,Dع2eh0Trmntfsr3}fWЊ~rs`&[r)Aь+J]rN\}Z>6QãwfKs28>F͢A^ y~P%5"l.Saq{+;gz16O؋bRmpc T*nƷ )"f3WR_W١RH.N#Ό;!p:|3¤3dldIk' ia40P-[0}A{qc[r_|U]Ls/˶O٬ 5c];8 7B8'Y'4")')]<}kTw.Di>8 oFֱ`v~1@¿]YqoT7D!hwp@[F<<^6 u4Y!AQWU/R4WȄnF0u,F,/*b4y0nNg+v-1zi&7]#&Inj֨F'قβqQ.:.byGDQ$<=/lxOxhYȫ'EYqN#F ݩyKe{N[2 -EQ̓sM~ppzNK:,*nxF:י^S w ɣ`7i8FbGL*(/q0@oq#7p>mh!<|Y!*6af\)ht$ӘAe694v"^ӳwj#*ّK?¢رÄS >xȲO=$ 1JQ{$'l&Q('8@P: H!܊7Tgfn$Pv+5K*T,tE!I,}Gfa56WO S;Z#+q|Vϓ 0֢<w`PVz2ԑ ez #Cbtsb2!iJ5_qe(=Y+%5>WjL!;Q(?Lc>97h&a`ϰOC=G_%5tAx`bټ@*&aCr\vD1qn+1|k;we ^ad.NQ6(] Uؐ*fnKȠ"I0̮lTtSEA.wr126#Nb36Y-ɓayw.d3C;X:At N`ݲA']qbI2OY(*%Ik3wʲ,FQ>|ցE/XnI>E-Ge)_\?5HEBBj(ER*# l*X3[s8pG:rtlŕ3ph}IX=KoaHm=Y?v".郋$v3U`) f&gpfdbvd3{y4wB~B~Q%E>+d]3xW'CpK㱯}$if DLW|ڽ& Õ0I]pM%A.L{V)[38yj #\a/pޕz\d ] bmܺҵSOW?n-" j|`X]Mw zJ2>FAAi[Jn)>#.I̵/O&@9%:}0/*O5ZHk*O*y|=w~9<1N YO-S?1[" dF$c䐏Ng1e' ۏ[U] ;:B2IGB\Qlp K>֢O_,]@8~F'TӞE@f!K! z!1Nxi{RZʍ_N%G7zGǪ?:<YAxhu VRrR %iel``ꂣ\Ji 5q-#noz"r7'j$F,%a"] #XcY>ڒd~q陭MpfM%k 6ejgs?هX-F%9dB9$g ()P>ɠV 06˱ӗ,UHmIdj3 h`ɉn?thh{1L峞RB _(6j,5Psq4wϔ$ҘK0ױ h.m *U α}F`T`w-85ӇBL}~ +"/肪cJX^&ץ5 ~)yDE!MUf &ͥ?j=fͷ%'c]Y*YjoO:UDjS磕]ftY p[Azaڑ)GժeVӵKvj ;X6,s]@y>+ .\@egQNeq{:6|v.Ta[ jXNR`#T\@#5=4 Œg=qn=o'U-9eh}֊c)!?J3oD/G0q2^-SVq1 uZEL5!]0uo&8*x$YԸ*~_=up˭\0*6ʸXE=>QJqb:rRԆN!5_r !O$?#S(^_ Ity@xKf$wFxJ8)Ԏ2TX.,- ۶+"HpX`(XRT&CAvkр.;c.oLwUd>wqXnjQ0>()߱I0hqTXEJD w/)Zvzˉ=6w9!n霎XXwC7,f&Z PK pTpF!yi{gK%]ئYv ![t1?$r(U}SP|@Pdn,sid,D*n>田^; 2 LYI Lw%E rר :ゝG]ϝԸ09'?9`\I(eeTj~2{eq^J rfY Y{N8R>tn՚=6{Gkö\*巵 Ǻ:wR~Po6҂56x]F>a(x&*L,\W)FM  s- IL26^z fd(k[zFPHlNMM!'O%vp1$~L)n8 mU080DЩ ,m"Ã^UWu1X__'r0*T F!q&h܌c-r뙿:6Л'SN" L4OV=tWhQI̥,05Tb8X Aʌ$!dsmŪTmEg*k_0[\8*Gh`Mh4n5mOV5JQ0}ӂdD,+j3 z4 f1ɮ6t6K9$6Mg@ J:`y=mlvGJƴVȇ,un64tN.` xG7.K=W'pK5Ҭ6(Uq ?@@dܶﰈؙx1ml7Km䈢|4Vpچ#2):W8,\Ss"_[zGhSKebߡ<弐;ݝǴhGo'~n=X2-{1p));:H јlU{6Mlul{rFy[(GalųyҨq[߁_[Ynf -#}\f|"N) z ?x4zğ&MnohYU)d 6XϵdUwKx[jꪼșia.y1;=?\l֔q޿3šh'҈zÞ]tEۼe˔|Z{0+Ze|kSZ ° ڐsj  H lku;޻{N,g;wzR^Q\VV0`W3?kfx! i{^Gryʼn_GaǪsM(NV:w`gXgDT0({GPD  }-|͹Z _=v]Xerׄ 2n^Žvat:R;=xt%3:)\l#xQxFR ׍-.ļQ*VR 8Yʋ皿>$@7\r&$ɭI] Df( &Vjϗzy=ytdn Wߊ%]4^J1"vΡ3?0V]5C΢U7i6Eţq!TnYJi͑eT-RfF2 "M+}SB{ЈVjQ gq LF;_jx)c >ʇyhq Q[4,jбb=KOg 4 Δ|݄J(ȍ=&Tز:6VbѫYwǠl*eݸ~n;@ #B3O`U7š>™~ [M& 1I8pFᒡ;6,coE=vn ,H~]"DHkDz_>,{~vbz?@N֔OX{ָDQG{_"5AoSkw_,6FՈt;TVXņG!O3u Se/ؾ@ /~)Jqi}9CVh%Oh/O30,Ԕlˀpu|~G@$a;K 9^%_F'8Vw%_c'][̓Kf}4 Nx8狙% 0N/q31l}-|qzRMiGpmF[ZRPnA=>,"Ar.2Q]'e;0*_~9R6O[1cdm2PrU[i$H?^`[b`&%zLgK~v1;N8@ex>ǧe- h-T(Wok.xޗBz2^ۍ$m%^W(m73@zDǃxA*GQD d= spIV6jqxh&]c_kFOkk=mVI,m41leᘾoHa+.!b,OLՠ 08Ƞ#oϏ>O욚n(e&$<@ފ%͌ "" }%!I7l]0,©Lf)MLDY+fI !V/ rGRLD"rEp@b=.W;(֢iiXj<ڸ\tūQ5ph}|lZACFnـ{VE @|-RY教>.[S *qn kXʍzH3Tހ+b oE#aWd4^S/0_ʯ’$sN'O ={\ KԉE@*`إ&S*D#vRkUKE1p$mD㛑Gkd{5 äp-8K9Wgpӓ֨ 7样w2) 35 e'%m:)%2'wp?o2"ж1eW Wȟ*/Ml8 6:*P5K92S7hKn!*4 A+^`)rһ>O)DϝɨRs?DJ2Q0$_j?S*-Nrbf*gNGHŤq넀C/}*Nxd0_n7Es0 < J\06T 1ߢ ;&g?l]S=Xk2&oˆML+8U#H ?˺1;M)d*5qǡM+:&BlޗNn,P\4!Bq=ipA sNzmY%Gy3Ā}y4S,EH 11#?yl=EO_Zu6㻡+֡WY&ؐ;*@_S6Uds^8ڴ‘}7^1yyLmzpT 7YDX \]r4< tM:ԁ8_[vcX^>)#YÖ2Ü]+\jNB—]μnoyT\H=Kx,{7B>o yK1 eQE>o&&i@鈈lU8 nPp |PSG>kM< B[A%d;)G0_8I0A6`RɢH=$ DTwץ|KB50G#_,ߒNw!/2[a^w-B RlXw%%}yBE;d=(rN]`$ņCxE\m9?\Jܯlv4*1 `42OTG؃sJYL˄ HO 1[tnHyZ0 YKjIo?a`S-K # $F '_XMUNr9\BB{A$xh  o(JJx?OG"+X{2/f&݅.Yq1T0{m$74Ok0dn+~ `mY:tT`;2vؑlHLX4v@ݳ.. Qv8 ZK GaL.͇:S ( ,eP7Z;.Hnu|. y4z ODO " elYGN׊U}PKcipfq3MI{GZ9/u.jXpq CɁ+w(CsR,H 珩D}|pjb'jtU8x-G܆4f2ULIVoTgD4)D'Mz,WIfEsݟA I%cŨ8{X n|'L%xTZlxg4gTcd'NVjT?P{/80YQ6 &4ieaErwr+/ԠjX[d3?B3wp";WCfJ$a 3R4 >8Dݸd'GDXɩ"w8-=S(M8&"umf "Nf"1w/6~] y%"jFM߮ 3#|"~꩐ -j́9݆ o ^x# vP-lMYKN..N'MPMk/un++,a]f8RVzj};H|삣 W0FZi$hO? s[Gg%Ǻݎz4JIdGkYХu ! h)Q{&o;Dژfs.,)Ϡ @oǢ*z‘ P\ }5vK_S<Ї@h^οT$ٹ[hι=+&H"(15O:-} ~+){徴|WS1oTV*^LTibh2&<} bn_hݳXImIv1k4LY녟x׍k}œB ߃V"IƜw ZT?MXaE$&3ml]edWρ :DΉH:#f;Op[ҽ9} Tp&~bR`L֟sK|PJ 21 n*7(UNJ8;Ch ++kmn=mH*~BcbYhS$6ކ|bG"YfdBI7_02 *i v1̲O|E>&xZ7ܔ/M $ e]ccl=+cV={ J:0C yoO]~]s>zc 4x03Q5IpJ`Q+P5uۛQTFTKآ 3芣m/hvἳJZ'jPV m$֟ŎßvɝzZG\xvl.Jujϯ~_84|nAı.mmEn,GMgГRlY$%`CK\XF2 'pxWyi$$:5sgXj$fRFʹz|/J&ᏠG$dŘR9̺WjN 1e{OyZ'FNCHz"lxXaLצRezsnDJ=oyf%s=Jb("uh1z\r|HaIQQc4ϕ"-c;iх8AvKRe1µWlX[+ZN| 0 'Ya,./v]-BlaΘ(D }4?0Q8-B%uB&s[oԮvXywIIE% &ܢ.o4!58٧|=뿍Ń 5R_g.0WtQuݎL椑a^ZFoOw zahq^U0љA(@*Klɽ|E#tvR*($m`S I:s-ۜS$"0bQ*/h&:%YYnZZ?S$Q=\ n7[$b%VP}:8ɲߴX|~ƸMtf|yrq#>\{z7g4TgBkI䘺qr4u'|t'4 0OJw1D1HҢp褌hQhDu_Œ 7ֹ}Jk9M۞>0 {/u0:S{϶OAǶb?M?_8,M<&݇&.Lⴽ_ouf _OX|~/N_Ao5^snqzV3a1|3n"C e( G\[[oJwz4Z  \P^1gd=qX>fM-~q;^}Aq3^7Vڲ l27tT^e.!3q<qŠܤitas0lwX  c)??]2xMcOctqo½o=^UI\up #NB$aH?kNnҐObIG _F7fI?0w>BQf??`Bݦ):FZyoK7䓜 "n.~##VrehB~hy`OR;@ ц5p KQi4ueSmgҩr^K25R /q3o^T}忐;7z}=J& }T:J*˂ªh>i2X k6Rr!wh*UWb8&ƐB ݰ<|i}ȣӟ a ~  (X8dUɊ)¸;-a+n wYl1XÜݓ>hQ+F` kNVϷo}3<Qa$Vmh| b\} lz͂`$>U NO?r>Ac`fEk|E+SB R?Wq\+}xk$_y|B[U恮9V[S<=Hz 5s~-nE;"%k|Cw Oa6 H W)նN]uk/ yX` <܍ph,0i2;Nb"c2V̓tl EC_ՆxǦP|)rdq_@W9M{BYz/;] vm.2ӺȥΏ>KsabGqrGBk9?]%Bp9f_55t^l {Z+[>FT$_TAO61P9, : *`z$E2ERV ܎.H@_G!@҅x 44D#QN $e404T?-!6nul-ƹ|hE=p vj Zng4<yC+A l#8f;bewCS̖n8k/+\%]yg`hEW5GR  b! hq7N}̓J#[ I %92댇F|)q΅^yRq)ċ2@;Oh&n#qX\jyHU@S`4{0wy\8m7ܘZ_'a\]YˤKNO%dyv.\$E۞DsK{+֑68Tx_<".Vy>yEԖgQuY9KB%3E5Y؛-~˲@(?fJ:GfZp!pruTf:]،^hPvg {׿"5xҭQS͈1WʕS+K5L 2Vcg(%HUvZx:ʊF x0%"or2 HU&te[1S1d7;S1Vj4*i7,NG78:Trw̳F˜~`n;!ZHɞiA#s:NLsH[K<GX+u^#Ii4g,`}F5F@qdV|p.Pd+#bAW"YlP]v}sg s-ʂuC硈\26/&W_A[_r憦#_ ?5XkvU tI]S-Eڨ/`:Hړe\zaa0K pI%QRβP/[Ni&Ĥ^T}Z0goˡ `^i`1EҧIL.2={49wo]Ml*MTh{}"-ֺIPpwDA*ٕϊӗ!5wwʇv »d}qV2mqi9H6{Ir]xD.u vbroXiP{9UX*ϫ/Q^q0!gndڑf5p`q d-,lt dwZ-)\5ԼFel40轰- ȫuY2b kLReM&>Ԇ@DIE靟ヮcBo.,ϡCPM2:2rWZҵ 9&yO$A"⟣Ycq>*!)--_Z3}mG7k׳-ðE;=;gu;mWFE`[$єRS`&<.Y~׊ Ki 5oįEe_deD|V ~{8 +F !{C0*HHOE]$N[%*Μ6R;/ܜ\u9VHЭWg;֗)g;y`=R.(z z~X-k3N݁W:,H"&ww?%Vi0J:Kc'!A~wkF"!j߇K;H ;@V1k#E#CS %g٢6 k4'd''C^&sŰ/&GkۥijCʪdz|^'("nU_>ZX)a UfZ^AmU+鿮דssN(z "8%J3^<~JڽҭZ`W>f h]Dڎ<|y=OWB~6 jpUw`]I&Hi&\yFżU ?ER72 rDӪ)Ci{¡#bUVxÜ2=`; Z3+|@<"m1q1lRMvY2,-btoЈ vZ;{uvb%`L⾜w|^͹7ppC Z7*+c@gS-Gӧ5OxսVcyAKoQ@-wIz*eÕhDނFڂ;2&jMӝ'VSPJE"Wg`6 ^! UDׇ;F.l4|r_o\C[ۄP=୒6>BS~O׌z祶T$Gq`vMq֨J:{/^za?-_ɳU'ϟz8H]f\8=k;Ȩ H8M jY6/?9( pBY ?~qvBG"^EJɮ̠ץ.:Av?n crNYFj;D8nhŽ-rޗnZtU^VJ`'Y>@DSmo|!?]4VoڍBmPdy O 5Acq/J`8U8{uIsagaFLs}1PX5յJnK)( sB+f` >넰[%!p_JY-!8cqpPhxE&'+&Q(Pm{g3{8Vw;#7X:jqMy 4yp+C|{)6l=~Da r @BBuw<^LeKLȬ 2yN)n旰D Pt&J~l BVu)N{W>5 sd.N vwͥ4ؓS.S>΄92T `̂"-WfnRwiLdd~Jx]eyu)k\6^|?ާƔ]m%(NW*#]'g@pA؆J۬`j|4+آZcʇ>|a0lwG ڪC{Qv۠Ĵ>7rFGEȡKS#S'ߌcG8^8ȓ |#duKZYmT9՝Tc.6*W`"*qq_Xu9f qw(&+~ ʉ =s~f}o˺յl`OSˠ%c:pgXUqխmb:RΟBdp:Xv+?l=,hݦc ~X(~L#E>Rw(v?>7~ڙѷA'tAuK=ؿE9>P0ӊ^l*e7~,|Ph dC3NmĀe$ɝKfQ{lWrM}}*)}^l 2ѾMSDXDW]?bvw 8ݙ7AUPug-A5+:*L"w[O3>NLxZ_qwۭ8ӪqB݌CgcMl 9[ĔVH7UgATS]Q:Df<\Lo> PRFS7uf+%бڷ~&y2Y樶Rb,낳c&( bIt_<9D9jgL=$UZK_$z\QgqȒqez籦%{6@lyAo+*h$7nh,1o\occ:S{?|QX.pS\k*]^ aȫZF6S N$YYd |'r5准~(Uuz(cUƶcc{+_}&ϛk0ʱsPB؋+5\o}5Gl`.`P} "ylKu֞'JNrD` əBb+VlZz1CNkizƇZnU>MWFiz$k闷ܾ N{R,VJ\;bз-FUZMircy~ɐ\"׾* Q2,ШӛH~Q'Ⱦ}vL2b .~Th2X\Хrb+sA L[ciY M* Z,Xy g ,A&:e]+dBXaMssg%!1gy51|,\0^/ Xŕi^esQwFiٹ|M.La9 #lCS^JߺT͖` #$ODT}*QP9[Djwo/;Y=+[M^UgR~E`UqDKd.X0OC'~T2QFHg'bz3ʊOق ]fBh8ZlZХ Qg,cJ]f~W@KIso4xQ**) ?bKɄBǐ\InE. 5h 5E.HӐˢ->_."'hQ̒hkS%;ІtZE_0W«:1F .]j!`1ScLP7^/ B=0^PW]JRh>'{p3mi.'ԯD->W ȓ40pVS /sGS`/ZH+ZN;Nj7B!H{> O2N=#'@Ve/1{ cu)ՖD4P_#z_JGY\ )尵${(^v*td8<34i Ph+3H?XWϞݼiر̃q){[]!2[8,`M Wb+2W`ih]a|zFkN͓N%jY¥PFf!l1<) Gd&8%'V`q3*^o}L8}{VײqԲn9G-9 O}sЎ`-MzC͖Q祂`[ZFIz/ Q0L ]yLq/@׽HY L5+MDj@L;wI\-rbO(mn٘_q^ &2z =9N13$ȴA6@w+q9jzR- >wX tfk=l5q ~ K٧8m쪩b.Og!)zgE86 ҼLvT{4˚7xbyl}b~| $9*a䲲JvВqrE@LVYȇإ$7O N$-lnfdFpSb._S,Artt?a߂|%l#}¸5\׽FG g]/gw<EM$t$JH1ߋFFf&+" by~A+!ʹ4^]Ɣ붎'x 0 !pK1[! NFwYl cV`~kDZ婔t, ܡtu=GYBI knGIiG] ۿ`%VNVn1R>;quE$97C[JlG$8$.,IKx @-7lrUbWNo|{WGdi:֬Rֵ‚~Wԍsf痻9g Z=n@̵ V4ɈbrNvs DSAIwl{2{t Á *[W|ryt/nI;P;G < cl]Qx20v#BOP tkGaA|=iM%]U*Ű92.Ni&}]yOA3fqv S*K}sGwN3Uif37ސXԤM$LǮNBjsI\+UGi5/+6YG|g7\P֧ o#m0GhF줏Q Cxd9cY|gILVNjBp|^XK Սtb=t58ɪr7x]Nu)7х1 3p219gN@i!y[ZXU' g ZIf@%?rd!cv.uy :nP?æ0#53| ޹_g(RKظڛ 8 |^JGWM4\ Ϗ/SU u/-dh`ܹon$?KO2`Vk4FeW kv=vJ& ZI*ar$;M:rh4q 6MYK&XTpzMV;| +vr͔'#7'T {0 bX*+( έY2<.וZͩ48SM]2y|kQO /X~0߅ίYBecĺ狤qBȳܨ j]j^”5 dpPlabMSW?woq?(qCXZ)iEb C"g{QŤ0On0ϱʅn9g\//)sIF7}L(%ոx۩NrڍTM߬$)ùɑ}Bee{֏KeCkEu.py\{ uK#*e݀Zj ܃쩨DӖ!=o`u6 :Bu~ꓛ7%GjxTo kn$3<ӃјSk9ij-ǽ0!}k8NfOz`;~\>/Uha"Bf>ug8u*H^zH&~ eQ+`vzk[3V@2E=]`9I`Kkn$~a_s"= ހ@5\ZyӲLWNJ Fo 숍I15YX&I8'P-RJ ȶ)b\dY aR!mC_῱ò"]UVM/art,57 jl7 dtޤ绺SZ\Sӻg{bPN. L7DL9hT!j @S!3]tM.bgI"'bV?-c$U7إ}>1}4JNLYDZc%Nkz}E=ک QB[ۥa(medxAc3 c2TE+DC?3n4()38L88~L0I5 z<9OS[5>}`^$>Tk/oz-+6]C>RnzOr̰XSP;-486d{>u/ SQ_;LO`%%k|EYNeu,8ejtKRņ>T/9w娣w^`\[Nn;[^fֳ=[d#[s;>875dDƈЎȉkc|@mNb}uL Ftm*ҡPg29RGCI72FN:ibP}zomq)#^9(g0|"R^9s72gc#)uVDD"k,)#)?AZ{sΣѥ~|I\,~2 Q'7A$Ph#U {sptmT[oney0߅ՒR.'UgpNP}3"J+ΚwXO,"|6 1\s"@:B9hAB7=<-@,7쭩Vl+ HZq+Œ`׸W*U+zQXqm%iG+=LHua8j<#e_PΥH. ;SHQEXq`qQ2_/UK-bپdԾOo\|pN2W:q^iys?VCK9&*:s)@O'- $~oA-\>efWL4ȋ`T}X.*9<(FcVvPOs~Js&LjY( GT q#IKG&ON=Ka,m!fS TM=nAD Ix 6Þ 2sU>y "^/b9#/hQmc iY5_|qfDV#m 0vJFC(8ٺfzl Nv`7|Fu\d7EYxj]uXDu UXujbY@`,yĕ'ꋐط8YM'R @ot0jH5bǨ%lE()-@O1ch}1\ҥ5R ^f5Xp NlR i|h8AI-Z-n%^@f<N*dS}i9-O`rme:qsxzeۓ^ozݎ>8w`Z-)Y,˨EM:et $?9&|hr:N!c'Z_wa#,m5P`L H"z+bONFqېOB'q.'K=Bp&Υ ?2*܋&W] 3=]?IvlBßݥJgsw "n\nɩutNw Rf_C ͘U.  LkٳK * %=bDOl6> u~_P8&c\1CKf[sLi4< `8p&&\#mm¿}O \ ꀄboy^փ@hf&]l+`~JWLȌ_Wg.hL4P=KwA!ä>ѝg-:'ʷv5\-$8HOBhھ"V'i;IV4MV*M,Fˮq@P6=7a)i>.W,;5"*>ۥds%*akk%]BSs_$HL{65` MMs<.-1GB߳?fuOyUΤc+PǝYd?o8l}fyD }l?l~]Rbi|{z wҹ`Ƚ>8LfO鍅~) i">شaX%(Uʷ1Xڷm?мN؀:JM-J1ih 6|Ot\7+NE}ㄘF8a_˛3DɱA iݻa\Fm/"fY넓 Oi ߆_d: ]j _|`ă->yYg}|药nWۛla#!kwP$)­Zu_kіuI}%i5`D1K<63\Bܐ[W0a O Iqѓo6yD|ajb̙j5o.] 0q=ov~1Lq}Հ2s$w>麝φ6(&C{_')>`m,;o܎Fm˥Ì+ȷI|V}X:+Cwl/%rLp<QX1;Rca0 DΧ?δ's<$*l.1W$5$& Dʖ*M~@!/# 1{8W*e4v5sd/O"Dl1A1d`e 07ˍvijR+pg1K%(.+,fqm)f0go3`ue!4 s(IW;EC68},0e=zѼ{aծxiY_aJWtMiX1A~ 3(W2Ĉ̈, @b\]QN'%m'S%ɉ~_W.I>K--)3G| 91<=|J3K ;5um[~U! ĮӬ^k/-+v]60^bE{d"_/WƕCne !e@OƗ#_ӦB[9P+U|0NeiS 4GJ-c`j#42:sBcڕꄛezÒsr! x<6bZFWؐi!bTb51oJUm Yê&RȘL9(|2. P@-ZN®=W&gJۮX/~ڜN)xI PXе&=l񟷕_,k`^c'k&YqM{J 9Ջ,Wa}hj_C5DŠg:7tȢfZB.Si uBOJٝTgh*D |57X{ VwA3ɾ`Dp%fc)~yu Be~FcEߛ)ܜm%bLqD| ow=s'se򄴺ꏻ[sVᅬ7.jQS|rB}QdUGV u{u%,CI-%䲖#mfeDȘy:LRT2R1$p!:T+.iR =Y}p>(c/ljIj*Q {T_͐e\xtX$ȭ6BѶ\ؐDbkd;ag#|C ?rNJ4a/E&q a-*X=㹢WپnCTo)UOy:F Lwt/n0s`5k-I:Byhf%/hҰYr8CrL2#Ӄu$`[!l̲i]/ˊ;'$oF%TF?Z(sZ, xQmjWnU er AQq9ك}͠ق$\G_ET-CA[p[!,j*nn4J{#)@k5 w W$x8}I1dˡd*@5'S4(@:1VEXlկ6+nl 68^KH8(-UlbB}lX' ٜ-wN‡;?=KB:#01~ rgRpx#w٨*3$-rǐ={0 VHUJzdr'1)"nRߒ)T]lѻab"ٝ4BCT,xrxvhR O 02jֹ7)=1V!%s:þsNuSn3p\odZkWf;ª5OٌtLZ#a-/!L^WM3rҞ2Gأn 1'*o@nR{1r\ܖmb4։!$%Y7~՛oþod4zF&p% Ñ\ 6.3 )uὥ`n>S.}rc^a8 VR]£p)9Ьj\maH-gO %tr_|̷KzC{o6MR  ԛ+S-Dٌi㰜nR~6o(]_^İIA H4%4.&{ 0dm^L+^)͍jW wh ~#{Q5kߘ^YE 7C`]V٨ %:BJ45RoVwEF:ʬ^.]P 5,3N+А>W)"6/0X ՙ3.ju & UA6ӜTk%b5*v ,FŒD'hmLMu^;*ULH=Δz5+j'yLi:r03Y"$|3[YN)nOs 9&\h([vu~si_d)*{yeeX#9-<`xMJrU|A̓W,W熄}`ټ_#0vmaZ7VP}FVW/z:!<Ew ,5*#Q Չ ;c$@Clg. xV= cb4&0ڑ{c=#޲)K C:p,^xöP(qQ&4#:#aWUjKBpb'm=7̲͛غ;m-24caݭuYfbsLֈ ܽIa ;CO$t87G>^ׇ*y`vb )['UFA@|S">hv/Q _0xfrb5Wxy*# E?nֶŇ ;:e%̆m]Hvю_ʦ,3_^~15H4@(GS>(zhOOt=ٴڤy%=x)lWY./e'qwZ cHEA[fTA~T(}OH{(0f2zKEĠzg$<ӄ"YкNl|0Έ]lkrI[H^s2c͢}N5=c~t`'MiDϰ#GxaV_I?4I+!^!c <\=[ [6ffipCx9GF.n(NC-!esElE{t,r~J,װ* :g$ݎj 'չWLspi/K9\|f_]|ػaY"hS0gя%}fC+& @XѻvAO|X;)#>RS@Ƈm {O~FrdA$=ŗ τ~FAoIow^Ł,!nrδ mW t{c6W]5Q.y5!dYf tOzp SLjUJ,AIO &p *3t.ojG%хýQ!>;_od&< 3/n`CXH|I'n%:[۷jg 1x[1L+AST 0+Z HCO'FmWNHd•}h1^7|t;YO\mЀ9CPd2j3z (YX++' ֡|7bIB_kt<*:n4ۖlh8qN<_'}cfPJtkWKsr +/]i;&z3]exPl D0/:9-PLW+sG+Z9{Bq*`c@a$hdNL9" dn͟Y78Q,[D2I9lPm3{2l~Xz Uux0D Qvj1ݼOh>֟ A^@S02@H!֜r6)FWȚ 1X^8אzGwx$/?yA鄨˓`q"Ap0 (I^P71}I"}Kmvr^f?4: \YPL,3vGJCL|_ZCܓlBM eYUHo&`vI VbE~y-B0`Kqy(8&PDE46Wi"<,ꓩc?&@SDj԰fEB!Vx\ TX|ؤEMױ>.*,gL{u}4=ƌA' ]` qPua{.֯L*CK Y{pRm%n1Mw$LHx@3y) )]},79n 2'0N.5!K`M\v{cO+TB0ٻ"i F .>9VÌ(/ h%YZ ޷W_0(FP,<"wD*A3ɌhW~͐; L9EN4 \b8b?sLX!Q{*~-Z"EgNB97s8JQJ?it+Ok ^ܬ;n+Ч]y_/),p_@[Q[kfFjXMePNB, |%uf/д[d?CWHo%L^pjUj^#ܸFAHmj S%NG=!(U6 o#f:NX T 7^?ux~pYp٧hŇ?Ld)-eety|KҦ 8=wڧ_ad2'!nˑI$nWM2TXfl |Lz^K/tf5ynI7Y-?(FBсATr]v9a) ,  av?epm!>ڹWRŬ]漱]2&[c\{?Q΅:%:Ȗ(1N}p \f#̑v#^xR+Qm;;eqTTh7e!Z9C#[CWaPifa6bNyZ.֛'Unc?<\(Z]Ϧ?eL)[tWN9v/m"Ί>^Nvt .xi/bp<7٠ğ6Ø@0ĤAI/af_7q f#[io AXtDj 7мcqNu|UäAO_[iҟPa BdVDZwd,o\dWӃp о/QGXW-z!›¢1s.7gvoA+EH i%K0d*6"WWð=Q VFyE)CbgO0}&CFp/?ag}vrde8 "cC|G)ꮊU3w5_%lQ7 p‡-9YZF֡j8Cu+#@]@?;0x ,0ƒdRdS5Hz9ڡRPك;qH"=z a_Vz}FxQ25d+ȣY&:BG/NU(.hY+j/$(x*^r`kA) geOp5]| {_@..:_5R?MX#F+@sC#z PЕ$VEsXP2Z~a١ԙ~g ~mWL׆YI@S2V( 3)Xd6gR/D7|+ͮcko8tl+X<͉TR #pdŁ0~Jϖ;rF8VɁzw&h )dҝȏsV l7_5_r}`+x3kج!|h<[E({Ci= _,W*ID((<<<\si[:+-VHgI&x` 8foDqi`vEk 7oGXo$6[̫[Zwu n\x{%ɩ `o017"<#Gfkфb7G*Ap1րī() dgE(Vz?CK,l@`Ylښ,̇k@,[m7jnMZ 6ʶw y>r"_wGAY͸PUZTOu]Nסb7`Viɼ /}l~[ZGJ|zɪ0~i&/ x:@|`܅pX}Ȧ㏭]())9\H{#A\:+HdeO!z;MIYz6&6dof#]sIŗrvNa-VG-P>zL?H`a?6!> EF[ 3$0>uBei$^zԻ2o% )d/TlI æc\vqLgPoYLU# B㳘>B1}* lF Y )Kkrual/h_٢J0ȑzvOcJT e~q_3aKb`x!'۾ckU@/\x_**X˻(%"\~=j-8%Tz(ē4 s\ x"բry b ~K@ S2 R<n 'nX1?D#WP7JG 5B}V0cJOJz ´~} 0P<.+]IPⷍ\D P"y߆fy^$ jLnټR&1OxE9GP5uϙJ@8CɪϚTu1zr#d< ex$Gı I{1LV7x% }g**%X x#ȗ_M)bT4Hd.sNx^vS}8#cBWOr)M&frto{J w9K7#R^/ GI 5O4 âտơRPa҇Ҧ-:14gn9۳,XX􎪒\H;X%rLU+{@BiKʨb`ׇ-JX8(4A6ZOMKْ>2F%?}| F*ve8Ikƭ x/8y_}t'yeIotPI\~SjTK{x.;V)yɊ 5_R='(|fb``s{J%ipE-5|)@*)sҎn[E K%[6]` [~gl#=5y׸EWLI/5er@574A.*EYJ#>J+:UE3 7ݡIA_iǯqe(7jʢxBy(K.ZusW-ңVS&4; C=Y k/8ЌA5(   FE=x^ɵ $,ub,(lC2!~Mz}7GYUW`0iwf VXǵ; +0;4[qE+#aF$ωUC[M裱x@}] "Yf'P6P u8b/3| _y$ }#$~Wvc(dH+͖V-Rkz2@N#+,R.pn5ɼc'wh})|`ne-E $mu !lj0,ˡ`.Ɠ.h6k*K'6JDwu Bei-=-yInT`ì>p`6h4B%5hٕuGjWrRfZ 2ԁկgh Et "EQdA}֭wD5*Ilu5T`DG挄 Qt*{kP MKըRpo3]+a]K2o-jaq¥ е!N`+ikVJ ebBztsMvqPn`j]OBvjӷ  t.syt8:dAQICLk}s$M{*i+ǿ!u(mkb$emc6-0 ۍN=F~` ُώw&2aZc(#Z׊n(LA-@iIp% ywJ3ߜ:0\zv"Wt]Z5ncʫWoRlRd<d5!u?\\I}ErT_St[U@ŷМ+& 0xk;=ꂮ6 0BJE ΂&IxFE_a>9\o@Fmdi#9 pSƯmiÔY)-)>,]FO3Y !4 335xnI_&vk`+"A~Z1nWۺIlb7]Fb'!*XǜXHSswwQ 8; \IrϠM%F)'lm&sXH\&pj$-҂1.h W܂H Š0 ĝ_Xl' +/Tt`siѢG̗?6X*8ZmIS*TszgȒۿ)]ǩ\*{\ /^yrPL` (aSÿp bhfmrqMYaiH-#hD;e~>%F3V[L9H*{t3`]B|ɲx*f ]pfjMFUku[%G-/S|=JʂYwܤ6 CbiG+`uk(bR> 7#}dϛD L=kHlakb_ŵQpRj#:_,$bO+{R!'q\;o)|GRRٓ咋C^1 :BD'$/#n@[#'7nwgy1E\,/F#q%_- X2]m#yАӲ(ėf,=Ly??\<gJ+f|E( С2#@M<"TىOJiLb_Qg?!FU&&4`0f7߇a'+ʑ~'>ן=Pm̙+T$_L?4-S,eԀsn٬pJO>aFXDv ԌIAbLau^TU)hWpJH-_Mcm [<Mw fQP;-3jj0zT, 1cWwe5 gr9gsO5bO(빁D͞(cPuu_:2@v-\̕{q*SL%mU?!Kz~3{􇊱"Y SD%T9:%L3-^I(Qb" T6<-Ȧ9. yU'wPFPfAeng~"i+MG7U~nr[uy4#}+FGHoзvXJHOSùTQA@;ZX2a-[-Hck?|#<LQa \hˏ^s+3!U5a;'If2y.[p%6:yHL8\/ZhLlBt6;I7ע"&^nWi&+$n䛖CdIHF=.H+賚-{`ꗬ6"<ŸNMC\ZV2YhHgUINk<hwK"]찏ñhdmo|PH23򈷷mf:U-:u UC^SjpѪwҌY0W>&|^d MD3qY>lY=62nN%xGDWUa͎`U{WmM\Ş bQbB{>xt74k7*J:BY_)2=|;u#grXc!0K`| AB&=1]ll&= &V6QMCGvh2SGH<Ý u/1vM>Y)9}ɐ!;J?q‰xx$±|#L$e(I9dD񎛴UC)2*2x|sњ8io8$h$9f¯;֔2DDCP"@Jx8Xl5Vx2#3DьkhpߚSֳFˣXnW&"p.%GAe:?=HRbB9PN\˒xw[.W|iWlBql$&"`z-NOv5l6@UajnXb\ us}!w"t7)nGN ze4Lг. H! ӽt19еeRHGעaߢj>9V= v6s0w:n1bGdʧwNdsau>1 sY/J0|R n( /t@Zxg) YyAy&(ƵؿFh_L{#xg 0ˉת0%kpXewSz]?ՌGpFNqPsFl; &Oi61 4`i=kW! 'f75?@ 4JG3-%A@Cw56x}= 3.Knsna5oɽJ$v5p* LBvy{! keU[\4t :vUz`srm3~=YFW8 Jq$ ֡jۯ%S 4cݷbޛ*EW٭V ]+F*oKBɇyJ2bڡ>\ t :)tڂ3}v[$i 81:t7b\&`oZv.Ukݱ{wM-K Qƫl4/S_Ϛ.\E|,`iYfо io"J{ij6^?73@/ޟ]x }uk#_b{ ptȠ ;$e(o,1X, XKyU&DŽ _.ⲛr9>II¨wd:6 DsfVvG8W?"4ʫo{ :a%l՝,i}B$+?*}5aMcj^59C#FKaREr %Yc L{dݤ&1I,\aUvlJmx.Dpm@XBu/d0:ೖS=LTxY!AGoclQ%b.˫Z* kL0bv3`!SE1iY24\KK&qgbK2^{ P/9M*ƟO9.Oqh'>rrqXP&jMw\k0d&`7gQX$LKQz{g(1#5{܂ f[\x=!Yơ驍!bF(Q=66W| GiQn./w#QT cc/[M}^`7ó MTø'C95 >7#نO +-f65*f483"l}SMTрAl8 +ɰ|q7&1{GTyPHÖὧ` jyҗ_m@R$OSg#9;N$8[o,.1棒j2:H>AWo@cg{5+ZmSpb}-6jOhKj;]JD"h]^.p/ĤaЄu/cF8=KΜ8`Q\iV&ܴG@V|PN.RgMD!fOG ͻƍ֠*4NX&]gE[.0nnjb>=yn yl"-zHTs<)GEgWxY+dZw#- .տXJОs\ONv]Ms_| 5A!)afқ}ev c&=MSte=@̼Y7ߛkywty39Ayv3緔hx)csw*,nf1s;}B)~fK&E^|ơߛp"Ղ"nq /7qvfe;bQɕwϓ#*_9 ܷm<+d /.ZLx,]i v~wfjM]JN 7sUxso'aaTu_{vEai$6~:Mmd!"tg waO٫]/53r0'J ,)qBj,8RfDmYVRi@I`#i]ѮP:vCߠ ,t7 %*&Y#ŕG.s$=b(aFkVx𠮏h2 /g1 m'jB[hs)wJ_*`yRt|Dbxi"9Ah#ۋ />W_MhI}x{Dg֞ϠlJВŚp?K\+du1_ U!_}~r6w;2qB5kʤPa0ʖkOJp@w*<;U;1~!Z1j u8<=|ser Jb`23K|R9'V|a躉V҂c >:|f2パ׼srԙ.O;Uo47b8GY,(Y,x4f}BC4I4P7^|uQс daI9rph.b[(}fqW!bBM D+RXf(Bͼ;^88/!V p'8 3ׄjZ;^V1[jtIS&.#GUY*>QkO걏́az_9(E.o4/ U:]RS6`5EǁL;Rv-ON\њk$.6N!X{Vʙ5 r+'C_=ےkboyu%5~=<B旟J@cY3A~x[7KK&ۍeqta\ۤr &΀PJ_r\IjuՏg;F~蚎&|?,@FE]4CuŲxvNթ ]@N7g8rLsјzf!?M"R<+=O[70lygp%RuMFW0,w džu}0/~RZ 'Z؋"}]⓽&7,Q@'cf3i#<|z H]W>Yz)b*H(FNN_M!ӂLXicpc~DEѣRIج8K;LÁN{\}q)4XFQ5hvVMN!J"9)Q[LAb_^AR:m~CMsHrX_WDCMĔ?M'E@ lH̕ꝅcܽMRWL!ùʺU,:T֔,NBɆ(PJ1+OSLO&\cHf@_@79KimVܯRA)H>B(̃]faX8ls>0»Ҹ;Iѐ>5h#'XiM&Xfv2+G-aᰮz<85燉KRXɜwP?^H})<.3HfFuD f,Zxϒx+ѲӞDjs&pKww)-ṫBf|ǚ 6Ox|o2Y},'>߄.j$q3U$b*7EC8i~'?%Oo,t&y1 V0H E,%5Ra_V66% wLʳ!vu?9% c7:%肍g0@]9(`/ *V0z21g߻Qxlwx՞ ,[Z^8քjMNzkQPsܽkfe5v:qt`YLJvtP3uހٻ x1 rEprfrȯHsM @Q\= .uu*mX{ss4Pɘv9T.G4Ig+ ?" "P4 Dh^NS5Fʔ5ob~Xׄ 40m"d2E?ǎ JX iE^tvKҩ6nV+|n['UD%Hnb'᚟P?Y|$<=JkWm-ڢeskDStKjl,ϓn$4B_90( 9/(H*7)?-r{I dq񕢺:UxiDa0l;ibN&دO}_: $N]W}#;uP 4B`λ;s 2lgNS۶V->@yόQ(ZMxNJg\VY8O%7+P/7L:"۴+N f 1L{ u8r&wA'-O4~n wÒdוX?,`{ ,]a$_=0;իP١"Բcтa=;=MJSRŽd/8^~U V*4\ rS>yg # q7ZopCL5 ouy^qC D}>cZ1u0ѹMiejrKdITqͮ3VFq8h;~ x#(z~,KucJ:\]%܏WMxaso5Xx.3"0]!6Gӏci >eyxD֮Bt^;-l#r<G;SI۱{HcĪu۰؀@oZ)OCk+:=ngAD]ywG|3fZT4|"]JiFPo6DۚE:?XhP+@>xVn<\~/-I}WE}Fiu 7{m@1J:lV8֘"χgEl'@ߔ͊1O_D?h8 ] e֕Uqf޳g8!v7^(@d m=53ȟM- 7wYփ9G7,lZ{ ΑڮR$v?˲%g,н6Qs_ ݐ]JאWjmXTŋ́,69ShqEǬM=cZVxߠO6 ʨ )RD@Xnzvxy#cS?7|X}X}R]cYQA1w DJFyrr VNE|SPұd)K [Ins _LbzA}݄%B8D&xNded죋e%O+#| Zv*lox0{4g\:\jzS|si0>E Ys1pzxJ+*7$ln-t].GzlJ@KtD_MUŵ~PS>S]{9N$l'2aSo^Q㡇?ë uN9z$5UpM^=M^ax9Fx,4 ea3bDtE 疪! 5NG$ |+蝒=-+Z/?a36@!P%|A 7 Nטߟ!Lh=s 3|G2-eY:9skP)@<$GC8Gj!2"dv7(y-F[U{1)c_kR!I§z7e "D{ T=@4lO=p7{ g,0RJV+=?NLg\^v?q \2-Nk 'Yt1:GG:ϰ-it_P؂/0RX=-a]3ׅÕZahCn(Y5$\4ek*x-6_H^b@ P!`8`xs zfɯd.8IB$Tq5v xD}ȁ p||plZHz*SQпbQ#[?F?e5F88-f.@2+hmS4Jfkc F;s=5CϬfFZ>,ݝ` vY0, y0y& ^g@avKGg%ƟP\j0YkWjC&JܟhrO5# TMtQ3WtS\09&ƪRipa{":R;ZDW%/FO逅wȚL;3l!"93٨25ĢQ0)3\҅@@VNcF)OyO*%ǢA&*+H@yl Z7{?A0$[:o1DaM -2~oXzXGJt3j*/.l0Ǵ,Gg&f&H{F&YT,ov*Q'&ō1߼LՆ\-Ju;LWZEj4#PCs`@@bǦIt]˙^d,|V ƀƷudAcxՓ/] fQH̕LΊ83_5vGǻl }!P ~[9GxRSJص@"ǁCo0%ۦn!C۽vjPatDD/6,8a4P_ ՇfDOy4 ;x4t!T{ߜ^< ;>\>7N%HzIR25UM-!']?0ܾNmE/q'_5u[OݖQ8ArTnd2KY58uK(&>PFqu /7.lPJrX^R~_Z7Z`P(PzfU%KR5ޮ坯g|54 *m?IdCx./||q²q EzxT?EjV 2q-J<i4󐼽}kǒǧ3A?: Y쟁THhLW 7;ng!k~M8;CaJOWF\9ޖ=r3c&EW 7{+9,ܲ4`tw{zn +!,kMu}彤UR"O̰&zMpq%$Jd̠)B R2>7V?.!u]m4Dk&r$ԁ+;o ^ /[ E!h;y?(_Gy?&qOWίX:=jiU9T&GΡ#*6e(8&3;%s#?OΗg7 ki5QC xf7M'[Enxz}f6wP,?)&]#kjf硊Z Xc/Uv[']QM;sd4\t5Nml~5jx#&*"*fP} a < 6o*07C|DL&&!IONdkQтAn76ch\cD G zVn\}՜ M3539Nd"??󏏼R, k)EaT|{ \C`UG+0ѡdFP50.hHg-g>&5k]J vCkk%R./'xj [xD7F۞4PGN^ZTY{2:!A3- ?/">3O\|.sMԲdX*4DV&eP%rH=6x+1YZ Uݥ eZK9L^eS!>_ i J_{= A;ai]L#҅FiL__·x}׬3/ בŶX.: }A)AhLopՕ( 4aDa|IejX:Ѫ" 5]3Qh zRQ#$U,9_a/dY1JܸS-+#U-aѤņx=W(ץ enBp Qu+8;)e KEnžƶP@XlDKUA\0}$-ŕWi;1c]{@t6G(և?TdXĥͤci{ {@v2wjz*ha䂨 }mRC LLa<^(X?vC5sWqv}{#;PP4S++v<ƕ̄e&^r^/1U ԩfY=.ev5n[>l!{DK!nA.M$Ap ";ohD,3}-կUOVf;V47DRlcz`OkίԐK^|-`{_ G,7wNJvqnE-p w9(S*".&+*bN'qaߋlQ6.ϵ#SȒ[_!zN|L(8( _oI&t֕~14(BwKŒJc\gtto s O/MkOюk"_oPvdJ2nmkIm"쩄z>Onq1%dE,fݵx0" VZ’g\vV#WI'hv໏k*`kjS/߁LjJ5n%,S6S/4Ȧ0qN5UoG0lƷWXqRI!4>E_Rb3d=%{~BAvXZ5dnr2941˶ g훪JzdzUu!.k/{B}cO,5*(=Yփ=1np0z*/ac}z2ؠ$)(ܝ᣽c|DFe9%:T'6< ~E(F.T~{C z jfw"}BW&Ȧ=䖱kPBVk?<6njh@k)8R#%Wc3R9vQ(o;c 0&_No) #gVXtO ZI"KE]EDt<_^>\OmP砛 1XGyNd 3y$Z _Ƴ ѯ޵>r͊G@_aЯֵ*AEl8G3ٲȒQPcTWBb۴=i{Z'$q&޻9ݳ7+ C6(a۩۶Șȷp}. 0r=b&Ut z9Vg";"ķj3jB`o! [:DkAtaPx)|YP9=P@Nb8 ke+E95S΃7 '?vv$G˃mޙ Yy8F/X\YZx<2(-xV[v]W#6}h(hw4QSzNdII>Jg4'I:m/ iT* P9>nw$Xެ{![~R]p`X`z)A^:JbʹL]D.(~z17%fx@x¬6 含}&ᙄl|J3Zֳ|h0jU#8BͶp%Ce_h Vd(ߺ0TֻCyr"bPm l?]$" -Lk64? !H`|&R?>jdhw`4=Q1sy5Q%P[&_PFA,dm#3LɨV)Ko/8L/xkb`UPh9dN+sYg0;F$$Bo~;6:i_z'$a:j Sc8lT'B@nPW~WxLUJj֧R#]-Uq.MA Ni㢋xΣ"qnဋ!|G FsAC\B./_Qe3 1?/V*[ˑ` _s i鰺@n;(-/ ~i-w?lc!Ai"7gyl-D7x|jqij(8M~g]C8קS /_bf ȍs|p7QdoZx []dʫWcak&!y+2=b]b>P7(i )pRX~~Z_ :;6%F.4Q_ 7$4Dk Sd.iW֦`N!KR k̲[|c}kmR'z`a+vY;%,$Ç* ^.&sb#r%!h}CɊQoǑ]g|s-izb5uno7 ?qpOhŲBQ,AyTi@%s'FoO@&E:~sGI+bck[Pط^^|ēpQ0_qٮ )g(QsMeC0' v?:S{<ШBhh}֏Ij[ K CUF"^Tj"W풩ޔk\UչN9!*1+kW668\mnd 188=}vwML)n:G Q6S\1{}sSN \&b`s k$ʶ?Cg6~+ZuΣ?*Y fUMNAVOX 3:STt<ƬFHWt#RcDɟ(eoW +VzvC`zT?)z9[]pݟA"LDlU:2!//)Q{ X1 sMƱvuM*Ć EqpC5^C}ꂀx pƤa䜧ܲq0q(<_?%qF't+K$ /* "~dž=٪6XVg@hxE FwӟU'+0ur7AY^64QpUL:!n=R٩# 6_ ` ┧spN z[nq]߰d+76&OGfvՠ1eYBv)aӷj꩛#]gEҢpq[`y?~F#/RPlUIn7qgg iE NJ;;^1&#ZZB ."}xL>0Fsp(rޘ7'Ngaa05/P omB,+Z0IQmsҲ I1F'=:zf|y-\Jnۮλ|ƵfOֶN3;N' 4m= &i꘿YsEXS _ P"ܘDU0=28_U]=T,pۭ3 d"cg J+haKp岣dGua"ի㺵b|$J؝ҖP!\XH]RhmW EN^`*|!}`0!Y oi[ѹ?O!#r}ȫ-iFEHm 3ۢaAT1ь)*ff@5RH+9O=8qnxدi~-LEl|]Q o ̼/øRԽB1mұrv_JGcof^(H9{ÿl'yϯBDނMs_9)PH}m x+|Z=SqJJ7sXtn}Jtq CP${ћz#k>S$ƒ l 4}!/g5g7aT}-Z VƦ8Jy㼠\ &GX/C"5'ٱ4Z}8N3EA<}6'6"C8S OJ! q<Rdf/))"6^uֻ1\-t^ 6φ` ۳F:6~0IDq4`xRbh<"S9_XJߓR=e"lD'qy92W yM^\)B@:SOO-v-_dHFYSlJ7d"8js$x5w5෕{KV>w5HC ?0[G8O-!=їFX5/yhrqe+TZCO Ⱥ =t0 Rn%B֡Hyd!ZeWJwJ_g7 Q$!eiTœC<)bTl]Aƥ:ς–M\آw{zZ5OAT~@2".D#3Qb*wea8)g?Ust?2NB=*txR  8Ng_F^`s;wRT=@W^MUAC|pһW' _N_ 5 wg>0 2B8L1c<4v/ErKJ˖ú |,1TN 11FjP0a;v3Ly.mYg[ Y659*y jqT]11.\=Qe嫒lhJ3JdTk aaSw:[^ͫМ M ɥ lZK߂Gw-¶sGU mO $b~ClK<8X|L/"N}Q3҄$i%X d^KZZOjl-G'O~J}cLEfGR*"qIfܲW`rF4|pIR En!ع/CTB;$Fof@vA갮Ѭ{(T T 㖧` #!:3Y) b'g8%`Y,Eu2CoJ0ri |.ֲyъp0o&.v09x;A ;u+JsJx2p,tc͔>ؤduxEϖSE~1Ycw%v|s3;:+UsT.7Э`d = =XH8g@ |q00j0#TT Pײ~pM5[|_r٤ञiVqFWYkv2Y4څa N  HTb7XO[zUn=@$yulzs-uubo~]-9jB^u͋[k{7z{J>v8Ұw@*ؒki")Pp>p$ w,ٜ9 'WqfKq0IŞ[ yH:~蟓qw鸢#P,xI̹VJHYϾsU*0 YPupjv6:Y8CpޕdE^UK)o(zn tZPmb\-T {m?B a9~C]1 ?Oŗ-bVVJY 92 ǝ:PyMXc9IZPNz O<NE5h">g=L_+m<S jrw_n4zpXRJ) SkV#]YZ\ű):R*:JHԼ"L[{Xu 4, +UO,YԈ TGFr{ENTqNk|/+\tC.v;. `J*e=n,}p dp&/Ii`+Q6|pz!gkt L{'PGd<7< }_@ L?ddMP0v!% ˛axQ6)&’2=?_ D5cn`zD7yE8Po-~r]I\e`qN9fk9%ա0a=$sv! -HqSSR[G@[ꛨKq{.fZʁ؜i1 KXlf`TYqs4CnWz,_ 2 H\ O=kM:2aTL|fvֈ;LSbl"C@؀lReZ{+\e7+u.l7'N/ƲtQ.V&eu WA")Z3Zlzε87@6'٤ώRѷ]GIaW1o{=L*h0SDe&#e҄-F<:3p;Cߝ_rVH:~7T٤)ܬJjH-+Ȳ.G]bܵ\V+;Mͫ%|Ou@9QR`?K+ A0g?Q#Aٷ ЙFW'07E*W':V M2CIhs߯zHg22Vl I<{l%akr7tdgHRV;-C&~FTxo V=ZH9cC宂gU\΂*E;bY엿l,(':hdy.H Lݚl Ʈ#EmkyuKQ'Uք!| %Œ}ا2u{:s-ʹb$yj3HD3,sfM42yCVx·9nf,[\(Saq|c~~Z2ǏP~; OoF -VPP3*];Qr\b 2L:LWHf A{0#=Y:-Q7Bn8b[ėum^iE (ecO#r\kb- Ϣٳ|=݄V~7[$B!뉯;) '% (u?E媅1?4׽7PE6,~ykk ;^)k2 #۴Z1s9ALٵY;ū;?QC;7j>ch)Sx/F>j?J "L˶aj۹a4A"M4P­HiYVfB/$,E׍L\~3OeTn`W@UHkod]X1NufU i6(҆&SS0 GAᲕS# * t{{Z)z c AE<2È2C?IPVlcy)t+ l+9|qrEͫ/ n({z[w!fL1~Yd?Ѹ2Ykm )+b _g82( L_xod(ol9re;*1WVVo2$g% oJu(T-![ 5: 1CZ>.|69OyJĨYI}v?XrLʞ}fwÝ%~ !y2A&%ΗMQv;i|. HbJ@Vrb$@a~@R?A1pwX)^᫖^aUwd-H<8D g1~RjFЕi[Y9jq'-jɔ)Oۖ264%9IYHc8|(Nm@Ά:,o:dSߌ2hxU^/0l+67ڜiڑvHmfcPFSr}=b,^A:;K]tE_.3R=.!o¤O_JP>%RpS7Q'e?o 9Xo e YZ