nss-util-3.90.0-4.el8 >  H    ̉e}~ U]hQDs;Ipl6XY{O\*-wQIe{ [1" DdpEz1 d/fL%4;O0W>ZqTVK!CGMUϲ5Ƶ!쭀$j֚eKD#b:3nY`~=Mٰ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}} U]0=ŃYD呂 q<7б5SgsN}TmwgW1E.e%s|0uBbCտMhF-TtP6ȕ8 HPHsʺ9%W{K@[c[!(Z)xLbte?Vi9Eu#.8]UpIevz&+o:'-liVC[K3ʛ Z2ˆyrxsȒIk}nʒwif/W #nMT" EHfwefAۡ'uŗYn$s$pbrQ{p9~|K ΡefKuBV7{*:gpk[A4J3@a" bja'lhItG6l?d&^Kmĭn`߫Vtk`5Oua0OʂsEp cO̿%3Q8 ƛzxz1 jځ^+S^x)cs}2Fa@>`<?d   D (@ L X p   8Vtl(89 :^G H$I<XDY\]^4bdeflt u$v<wxy(Cnss-util3.90.04.el8Network Security Services Utilities LibraryUtilities for Network Security Services and the Softoken moduleepnppc64le-03.stream.rdu2.redhat.com]@X*X@WW@Wt@W~Wv[@WrfWoWm WbWQq@WPWJWDB@W4p@W@Wo@W@VV޾V޾V@VяVIVɦV@V@V=@V@V@VO @VHsVEV3[V UYU@UU@U@U>Ua@Ug@U[%UUU @T@Ts@TTء@T@TÉ@TT@T@T?@T:m@T"@S@S<@S@S@S @SSSSpShS(5@S@SRy@RJ@R@RR@RSRR@Rm@Rg@RD!R@RRR|Q@Q*@QQ@QKQ@QQW@Qw@Q]k@QNQ9Q7/Q#@QQ @P!@PՠP @PqP@P@PAPXPd@Pd@PPP@PP5@PPnP;a@P(@P H@O;O;O@OiO@O@O}O~OiOYOX@OOdO&@O!@@OO@O@N>@N>@NNܲ@N`NؽNN@NuN;@Np@Nf @NA!@N*NpM@MWMc@MM@M@MMfH@M^_@MZjMS@MQ0@MQ0@MQ0@MQ0@MK@MGMF@M6@M-MM@Ls@LOLLZ@L6LdL@L*@L@LA@LL@L4Lx@Lx@Li(@Lf@L_L_LT@L0L0L K @KsKsKKCKCKCK]KMKLd@KD{@K<@K5K4@K,@K+nK*@K K@K@K@KJݦ@J - 3.90.0-4Bob Relyea - 3.90.0-3.1Bob Relyea - 3.90.0-3Bob Relyea - 3.90.0-2Bob Relyea - 3.90.0-1Bob Relyea - 3.79.0-11Bob Relyea - 3.79.0-10Bob Relyea - 3.79.0-9Bob Relyea - 3.79.0-8Bob Relyea - 3.79.0-7Bob Relyea - 3.79.0-6Bob Relyea - 3.79.0-5Bob Relyea - 3.79.0-4Bob Relyea - 3.79.0-3Bob Relyea - 3.79.0-2Bob Relyea - 3.79.0-1Bob Relyea - 3.67.0-7Bob Relyea - 3.67.0-6Bob Relyea - 3.67.0-5Bob Relyea - 3.67.0-4Bob Relyea - 3.67.0-3Bob Relyea - 3.67.0-2Bob Relyea - 3.67.0-1Bob Relyea - 3.66.0-2Bob Relyea - 3.66.0-1.1Bob Relyea - 3.66.0-1Bob Relyea - 3.53.1-17Bob Relyea - 3.53.1-16Bob Relyea - 3.53.1-15Bob Relyea - 3.53.1-14Bob Relyea - 3.53.1-13Bob Relyea - 3.53.1-12Bob Relyea - 3.53.1-11Bob Relyea - 3.53.1-10Daiki Ueno - 3.53.1-9Daiki Ueno - 3.53.1-8Bob Relyea - 3.53.1-7Daiki Ueno - 3.53.1-6Bob Relyea - 3.53.1-5Bob Relyea - 3.53.1-4Daiki Ueno - 3.53.1-3Daiki Ueno - 3.53.1-2Daiki Ueno - 3.53.1-1Daiki Ueno - 3.53.0-1Bob Relyea - 3.44.0-15Bob Relyea - 3.44.0-14Bob Relyea - 3.44.0-13Daiki Ueno - 3.44.0-12Bob Relyea - 3.44.0-11Daiki Ueno - 3.44.0-10Bob Relyea - 3.44.0-9Bob Relyea - 3.44.0-8Daiki Ueno - 3.44.0-7Daiki Ueno - 3.44.0-6Daiki Ueno - 3.44.0-5Bob Relyea - 3.44.0-4.1Bob Relyea - 3.44.0-4Daiki Ueno - 3.44.0-3Bob Relyea - 3.44.0-2Daiki Ueno - 3.44.0-1Daiki Ueno - 3.41.0-5Bob Relyea - 3.41.0-4Daiki Ueno - 3.41.0-3Daiki Ueno - 3.41.0-2Daiki Ueno - 3.41.0-1Daiki Ueno - 3.39.0-1.5Bob Relyea - 3.39.0-1.4Daiki Ueno - 3.39.0-1.3Daiki Ueno - 3.39.0-1.2Daiki Ueno - 3.39.0-1.1Daiki Ueno - 3.39.0-1.0Daiki Ueno - 3.38.0-1.2Daiki Ueno - 3.38.0-1.1Daiki Ueno - 3.38.0-1.0Kai Engert - 3.36.1-1.2Daiki Ueno - 3.36.1-1.1Daiki Ueno - 3.36.1-1.0Daiki Ueno - 3.36.0-1.0Fedora Release Engineering - 3.35.0-5Kai Engert - 3.35.0-4Kai Engert - 3.35.0-3Daiki Ueno - 3.35.0-2Daiki Ueno - 3.34.0-2Daiki Ueno - 3.33.0-6Kai Engert - 3.33.0-5Kai Engert - 3.33.0-4Kai Engert - 3.33.0-3Daiki Ueno - 3.33.0-2Daiki Ueno - 3.32.1-2Daiki Ueno - 3.32.0-4Kai Engert - 3.32.0-3Daiki Ueno - 3.32.0-2Fedora Release Engineering - 3.31.0-6Fedora Release Engineering - 3.31.0-5Daiki Ueno - 3.31.0-4Daiki Ueno - 3.31.0-3Daiki Ueno - 3.31.0-2Daiki Ueno - 3.30.2-3Daiki Ueno - 3.30.2-2Kai Engert - 3.30.0-3Daiki Ueno - 3.30.0-2Kai Engert - 3.29.1-3Daiki Ueno - 3.29.1-2Daiki Ueno - 3.29.0-3Daiki Ueno - 3.29.0-2Daiki Ueno - 3.28.1-6Daiki Ueno - 3.28.1-5Daiki Ueno - 3.28.1-4Daiki Ueno - 3.28.1-3Daiki Ueno - 3.28.1-2Daiki Ueno - 3.27.2-2Daiki Ueno - 3.27.0-5Kai Engert - 3.27.0-4Daiki Ueno - 3.27.0-3Daiki Ueno - 3.27.0-2Daiki Ueno - 3.26.0-2Elio Maldonado - 3.25.0-6Elio Maldonado - 3.25.0-5Elio Maldonado - 3.25.0-4Elio Maldonado - 3.25.0-3Elio Maldonado - 3.25.0-2Kamil Dudka - 3.24.0-3Elio Maldonado - 3.24.0-2.3Elio Maldonado - 3.24.0-2.2Elio Maldonado - 3.24.0-2.1Elio Maldonado - 3.24.0-2.0Elio Maldonado - 3.23.0-9Elio Maldonado - 3.23.0-8Elio Maldonado - 3.23.0-7Elio Maldonado - 3.23.0-6Elio Maldonado - 3.23.0-5Elio Maldonado - 3.23.0-4Elio Maldonado - 3.23.0-3Elio Maldonado - 3.23.0-2Elio Maldonado - 3.22.2-2Elio Maldonado - 3.22.1-3Elio Maldonado - 3.22.1-1Elio Maldonado - 3.22.0-3Elio Maldonado - 3.22.0-2Fedora Release Engineering - 3.21.0-7Elio Maldonado - 3.21.0-6Michal Toman - 3.21.0-5Elio Maldonado - 3.21.0-4Elio Maldonado - 3.21.0-3Elio Maldonado Batiz - 3.21.1-2Elio Maldonado - 3.20.1-2Elio Maldonado - 3.20.0-6Elio Maldonado - 3.20.0-5Elio Maldonado - 3.20.0-4Elio Maldonado - 3.20.0-3Elio Maldonado - 3.20.0-2Elio Maldonado - 3.19.3-2Elio Maldonado - 3.19.2-3Kai Engert - 3.19.2-2Kai Engert - 3.19.1-2Kai Engert - 3.19.0-2Kai Engert - 3.18.0-2Elio Maldonado - 3.18.0-1Elio Maldonado - 3.17.4-5Till Maas - 3.17.4-4Elio Maldonado - 3.17.4-3Elio Maldonado - 3.17.4-2Elio Maldonado - 3.17.4-1Ville Skyttä - 3.17.3-4Elio Maldonado - 3.17.3-3Elio Maldonado - 3.17.3-2Elio Maldonado - 3.17.3-1Elio Maldonado - 3.17.2-2Elio Maldonado - 3.17.2-1Kai Engert - 3.17.1-1Kevin Fenzi - 3.17.0-2Elio Maldonado - 3.17.0-1Fedora Release Engineering - 3.16.2-4Elio Maldonado - 3.16.2-3Tom Callaway - 3.16.2-2Elio Maldonado - 3.16.2-1Elio Maldonado - 3.16.1-4Fedora Release Engineering - 3.16.1-3Jaromir Capik - 3.16.1-2Elio Maldonado - 3.16.1-1Elio Maldonado - 3.16.0-1Elio Maldonado - 3.15.5-2Elio Maldonado - 3.15.5-1Elio Maldonado - 3.15.4-5Elio Maldonado - 3.15.4-4Elio Maldonado - 3.15.4-3Peter Robinson 3.15.4-2Elio Maldonado - 3.15.4-1Elio Maldonado - 3.15.3.1-1Elio Maldonado - 3.15.3-2Elio Maldonado - 3.15.3-1Elio Maldonado - 3.15.2-3Elio Maldonado - 3.15.2-2Elio Maldonado - 3.15.2-1Elio Maldonado - 3.15.1-7Elio Maldonado - 3.15.1-6Elio Maldonado - 3.15.1-5Elio Maldonado - 3.15.1-4Elio Maldonado - 3.15.1-3Elio Maldonado - 3.15.1-2Elio Maldonado - 3.15.1-1Elio Maldonado - 3.15-5emaldona - 3.15-4emaldona - 3.15-3Elio Maldonado - 3.15-2Elio Maldonado - 3.15-1Elio Maldonado - 3.15-0.1.beta1.2Elio Maldonado - 3.15-0.1.beta1.1Kai Engert - 3.14.3-12Kai Engert - 3.14.3-10Kai Engert - 3.14.3-9Elio Maldonado - 3.14.3-1Elio Maldonado - 3.14.2-2Elio Maldonado - 3.14.2-1Kai Engert - 3.14.1-3Elio Maldonado - 3.14.1-2Elio Maldonado - 3.14.1-1Elio Maldonado - 3.14-12Elio Maldonado - 3.14-11Elio Maldonado - 3.14-10Elio Maldonado - 3.14-9Elio Maldonado - 3.14-8Elio Maldonado - 3.14-7Elio Maldonado - 3.14-6Elio Maldonado - 3.14-5Elio Maldonado - 3.14-4Elio Maldonado - 3.14-3Elio Maldonado - 3.14-2Elio Maldonado - 3.14-1Elio Maldonado - 3.14-0.1.rc.1Kai Engert - 3.13.6-1Elio Maldonado - 3.13.5-8Elio Maldonado - 3.13.5-7Fedora Release Engineering - 3.13.5-6Elio Maldonado - 3.13.5-5Elio Maldonado - 3.13.5-4Elio Maldonado - 3.13.5-3Elio Maldonado - 3.13.5-2Elio Maldonado - 3.13.5-1Elio Maldonado - 3.13.4-3Elio Maldonado - 3.13.4-2Elio Maldonado - 3.13.4-1Elio Maldonado - 3.13.3-4Elio Maldonado - 3.13.3-3Elio Maldonado - 3.13.3-2Elio Maldonado - 3.13.3-1Tom Callaway - 3.13.1-13Elio Maldonado - 3.13.1-12Fedora Release Engineering - 3.13.1-11Elio Maldonado - 3.13.1-11Elio Maldonado - 3.13.1-10elio maldonado - 3.13.1-9Elio Maldonado - 3.13.1-8Elio Maldonado - 3.13.1-7Elio Maldonado - 3.13.1-6Elio Maldonado - 3.13.1-5Elio Maldonado Batiz - 3.13.1-4Elio Maldonado - 3.13.1-2Elio Maldonado - 3.13.1-1Elio Maldonado - 3.13-1Elio Maldonado - 3.13-0.1.rc0.1Elio Maldonado - 3.12.11-3Kai Engert - 3.12.11-2Elio Maldonado - 3.12.11-1Elio Maldonado - 3.12.10-6Michael Schwendt - 3.12.10-5Elio Maldonado - 3.12.10-4Dennis Gilmore - 3.12.10-3Elio Maldonado - 3.12.10-2Elio Maldonado - 3.12.10-1Elio Maldonado - 3.12.10-0.1.beta1Elio Maldonado - 3.12.9-15Elio Maldonado - 3.12.9-14Elio Maldonado - 3.12.9-13Elio Maldonado - 3.12.9-12Elio Maldonado - 3.12.9-11Elio Maldonado - 3.12.9-10Elio Maldonado - 3.12.9-9Fedora Release Engineering - 3.12.9-8Elio Maldonado - 3.12.9-7Christopher Aillon - 3.12.9-6Elio Maldonado - 3.12.9-5Elio Maldonado - 3.12.9-4Elio Maldonado - 3.12.9-3Elio Maldonado - 3.12.9-2Elio Maldonado - 3.12.9-1Elio Maldonado - 3.12.9-0.1.beta2Elio Maldonado - 3.12.8.99.2-1Elio Maldonado - 3.12.8.99.1-1Elio Maldonado - 3.12.8-9Elio Maldonado - 3.12.8-8Elio Maldonado - 3.12.8-7Elio Maldonado - 3.12.8-6Elio Maldonado - 3.12.8-5Elio Maldonado - 3.12.8-4Elio Maldonado - 3.12.8-3Elio Maldonado - 3.12.8-2Elio Maldonado - 3.12.8-1Elio Maldonado - 3.12.7.99.4-1Elio Maldonado - 3.12.7.99.3-2Elio Maldonado - 3.12.7.99.3-1Elio Maldonado - 3.12.7-3Elio Maldonado - 3.12.7-2Elio Maldonado - 3.12.7-1Elio Maldonado - 3.12.6-12Elio Maldonado - 3.12.6-11Elio Maldonado - 3.12.6-10Elio Maldonado - 3.12.6-9Dennis Gilmore - 3.12.6-8Elio Maldonado - 3.12.6-7Elio Maldonado - 3.12.6-6Elio Maldonado - 3.12.6-5Elio Maldonado - 3.12.6-4Elio Maldonado - 3.12.6-3Elio Maldonado - 3.12.6-2Elio Maldonado - 3.12.6-1.2Elio Maldonado - 3.12.6-1.1Elio Maldonado - 3.12.6-1Elio Maldonado - 3.12.5-8Elio Maldonado - 3.12.5-5Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1.13.2Elio Maldonado - 3.12.5-1.13.1Elio Maldonado - 3.12.5-1.13Elio Maldonado - 3.12.5-1.11Elio maldonado - 3.12.5-1.9Elio Maldonado - 3.12.5-2.7Elio Maldonado - 3.12.5-1.6Elio Maldonado - 3.12.5-1.5Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1Elio Maldonado - 3.12.4-14.1Elio Maldonado - 3.12.4-13.1Elio Maldonado - 3.12.4-13Elio Maldonado - 3.12.4-12Elio Maldonado - 3.12.4-11Elio Maldonado - 3.12.4-10Elio Maldonado - 3.12.4-8Elio Maldonado - 3.12.4-6Elio Maldonado - 3.12.4-5Elio Maldonado - 3.12.4-4Elio Maldonado - 3.12.4-3Elio Maldonado - 3.12.4-2Elio Maldonado - 3.12.4-1Elio Maldonado - 3.12.3.99.3-30Elio Maldonado - 3.12.3.99.3-29Elio Maldonado - 3.12.3.99.3-28Elio Maldonado - 3.12.3.99.3-27Elio Maldonado - 3.12.3.99.3-26Elio Maldonado - 3.12.3.99.3-25Warren Togami - 3.12.3.99.3-24Elio Maldonado - 3.12.3.99.3-23Elio Maldonado - 3.12.3.99.3-22Elio Maldonado - 3.12.3.99.3-21Elio Maldonado - 3.12.3.99.3-20Elio Maldonado - 3.12.3.99.3-19Elio Maldonado - 3.12.3.99.3-18Elio Maldonado - 3.12.3.99.3-16Dennis Gilmore - 3.12.3.99.3-15Dennis Gilmore - 3.12.3.99.3-14Dennis Gilmore - 3.12.3.99.3-13Dennis Gilmore - 3.12.3.99.3-12Elio Maldonado+emaldona@redhat.com - 3.12.3.99.3-11Elio Maldonado - 3.12.3.99.3-10Dennis Gilmore - 3.12.3.99.3-9Elio Maldonado - 3.12.3.99.3-7.1Fedora Release Engineering - 3.12.3.99.3-7Elio Maldonado - 3.12.3.99.3-6Elio Maldonado - 3.12.3.99.3-5Elio Maldonado - 3.12.3.99.3-4Kai Engert - 3.12.3.99.3-3Kai Engert - 3.12.3.99.3-2Kai Engert - 3.12.3-7Kai Engert - 3.12.3-4Kai Engert - 3.12.3-3Kai Engert - 3.12.3-2Kai Engert - 3.12.2.99.3-7Kai Engert - 3.12.2.99.3-6Kai Engert - 3.12.2.99.3-5Kai Engert - 3.12.2.99.3-4Kai Engert - 3.12.2.99.3-3Kai Engert - 3.12.2.99.3-2Kai Engert - 3.12.2.99.3-1Fedora Release Engineering - 3.12.2.0-4Kai Engert - 3.12.2.0-3Dennis Gilmore - 3.12.1.1-4Kai Engert - 3.12.1.1-3Kai Engert - 3.12.1.1-2Kai Engert - 3.12.1.0-2Kai Engert - 3.12.0.3-7Kai Engert - 3.12.0.3-6Kai Engert - 3.12.0.3-3Kai Engert - 3.12.0.3-2Kai Engert - 3.12.0.1-1Jesse Keating - 3.11.99.5-2Kai Engert - 3.11.99.5-1Kai Engert - 3.11.99.4-1Kai Engert - 3.11.99.3-6Kai Engert - 3.11.99.3-5Kai Engert - 3.11.99.3-4Kai Engert - 3.11.99.3-3Kai Engert - 3.11.99.3-2Kai Engert - 3.11.99.3-1Kai Engert - 3.11.99.2b-3Kai Engert - 3.11.99.2b-2Kai Engert - 3.11.99.2-2Kai Engert - 3.11.99.2-1Kai Engert - 3.11.7-10Rob Crittenden - 3.11.7-9Kai Engert - 3.11.7-8Bob Relyea - 3.11.7-7Kai Engert - 3.11.7-6Kai Engert - 3.11.7-5Kai Engert - 3.11.7-4Kai Engert - 3.11.7-3Kai Engert - 3.11.7-2Kai Engert - 3.11.5-2Kai Engert - 3.11.5-1Bob Relyea - 3.11.4-4Kai Engert - 3.11.4-1Kai Engert - 3.11.3-2Kai Engert - 3.11.3-1Kai Engert - 3.11.2-2Jesse Keating - 3.11.2-1.1Kai Engert - 3.11.2-1Kai Engert - 3.11.1-2Kai Engert - 3.11.1-1Kai Engert - 3.11-4Jesse Keating - 3.11-3.2Jesse Keating - 3.11-3.1Ray Strode 3.11-3Christopher Aillon 3.11-2Christopher Aillon 3.11-1Christopher Aillon 3.11-0.cvs.2Christopher Aillon 3.11-0.cvsKai Engert Rob Crittenden 3.10-1- FIPS review changes - add PORT_SafeZero to avoid compiler optimizing a way zeroing memory. - update the indicators for this release - allow hashing of longer than int32 values in a single PKCS #11 call.- Fix expired certs in tests - Fix CVE-2023-5388- add indicators for pbkdf2 - add camellia to pkcs12 doc files - fix ems policy bug - disable ech- fix the change log- rebase to NSS 3.90- Fix CVE-2023-0767- Fix QA found failures: - remove extra '+' from sslpolicy.txt file causing test error values - only use GRND_RANDOM if the kernel is in FIPS mode.- FIPS 140-3 changes- Update fips default for pk12util to AES rather than TDES - Fix bug in pkcs12 files with null passwords- Better fix for test regressions- fix nss.spec so it works in a rhel-8.1.0 buildroot- FIPS 140-3 changes - Reject Small RSA keys, 1024 bit keys are marked as FIP OK when verifying, reject signature keys by policy - Allow applications to retrigger selftests on demand.- Fix pkgconfig output- NSR Coverity fix changed selfserv from passive to active, change it back- Fix regressions found in test suites.- Rebase to NSS 3.79 - Set FIPS Module ID - skip attribute verification on attributes with default values - don't export trust objects if they are default trust objects from dbm - add dbtool to nss-tools- Fix CVE 2021 43527- Fix ssl alert issue- Fix issue with reading databases that were updated using unpatched versions of nss- Better fix for the sdb timeout. The issue wasn't a race, it was the sqlite timeout waiting to begin a transaction under heavy thread usage.- Fix sdb race condition- Fix coverity issues- Rebase to NSS 3.67- Restore old pkcs12 defaults.- build nss for older nspr so we can pass gating with the new nspr in the build root- Rebase to NSS 3.66- Fix various corner cases with ike v1 app b support.- Fix the following CVE - CVE-2020-12403 chacha-poly issues - CVE-2020-12400 constant time ECC. - CVE-2020-6829 constant time ECC.- Revert some policy changes the generate ABI runtime issues.- Add support for enable/disable in policy. Now if your policy file has disallow=x enable=y it will act just like our other libraries.- Add OAEP interface so applications can wrap keys with RSA-OAEP rather than RSA-PKCS-1.- fips need to reject small primes even if they are approved - code to autodetect whether or not to use the cache needs to do so in a way that doesn't mess with filesystem negative file caching. - add kdf selftests- Fix issue with upgradedb where upgradedb expects standard to generate dbm databases, not sql databases (default in RHEL8)- Disable dh timing test because it's unreliable on s390- Explicitly enable upgradedb/sharedb test cycles- Disable Delegated Credentials for TLS- Fix attribute decryption issue where the private key components integrity check on private attributes where not being checked.- Update nss-rsa-pkcs1-sigalgs.patch to the upstream version- Include required checks for dh and ecdh key generation in FIPS mode.- Add better checks for dh derive operations in FIPS mode.- Disable NSS_HASH_ALG_SUPPORT as well for MD5 (#1849938) - Adjust for update-crypto-policies packaging change (#1848649) - Fix compilation with -Werror=strict-prototypes (#1843417)- Fix regression in MD5 disablement (#1849938) - Include rsa_pkcs1_* in signature_algorithms extension (#1847945)- Update to NSS 3.53.1- Update to NSS 3.53- Fix swapped CMAC PKCS #11 values. - Fix data alignment crash in CMAC.- Fix coverify scan issue- Fix endian problem in SP-800 108 code.- Install cmac.h required by blapi.h (#1764513) - Fix out-of-bounds write in NSC_EncryptUpdate (#1775913)- Add SP-800 108 Generalized kdf- Check policy against hash algorithms used for ServerKeyExchange (#1730039)- Add CMAC- CKM_NSS_IKE1_APP_B_PRF_DERIVE was missing from the mechanism list, preventing PK11_Derive*() from using it. Add gtests for the PK11_Derive interface for all the CKM_NSS_IKE*_DERIVE mechanism.- Backport fixes from 3.44.1- Add continuous RNG test required by FIPS - fipstest: use CKM_TLS12_MASTER_KEY_DERIVE instead of vendor specific mechanism- Rebuild with the correct build target- rebuild to try to retrigger CI tests- Fix certutil man page - Fix extracting a public key from a private key for dh, ec, and dsa- Disable TLS 1.3 under FIPS mode - Disable RSASSA-PKCS1-v1_5 in TLS 1.3 - Fix post-handshake auth transcript calculation if SSL_ENABLE_SESSION_TICKETS is set - Revert the change to use XDG basedirs (mozilla#818686)- Add ike mechanisms in softokn - Add FIPS checks in softoken- Update to NSS 3.44 - Define NSS_SEED_ONLY_DEV_URANDOM=1 to exclusively use getentropy - Use %autosetup - Clean up manual pages generation - Clean up %check - Remove prelink dependency, which is not available in RHEL-8 - Remove upstreamed patches- Update manual pages to reflect recent changes in commands- Make sure corresponding public keys are created when importing private keys.- Fix the last change - Add --no-reload option to update-crypto-policies to avoid unnecessary restart of daemons- Restore LDFLAGS injection when linking DSO- Update to NSS 3.41 - Consolidate nss-util, nss-softokn, and nss into a single source package- Fix the last commit- Support for IKE/IPsec typical PKIX usage so libreswan can use nss without rejecting certs based on EKU- Backport upstream fixes for rhbz#1649026, rhbz#1608895, rhbz#1644854 - Document PKCS #11 URI - Add warning when adding module with modutil while p11-kit is enabled- Update nss-dsa.patch to not advertise DSA signature algorithm - Update PayPal test certs for testing- Backport "DSA" keyword in crypto-policies- Update to NSS 3.39- Fix LDFLAGS injection when linking DSO- Install crypto-policies configuration file for https://fedoraproject.org/wiki/Changes/NSSLoadP11KitModules - Port enable-fips-when-system-is-in-fips-mode.patch from RHEL-7 - Use %ldconfig_scriptlets - Remove needless use of %defattr, by Jason Tibbitts- Update to NSS 3.38- Backport upstream addition of nss-policy-check utility, rhbz#1428746, includes required fixes for mozbz#1296263 and mozbz#1474875- Switch the default DB type to SQL - Enable SSLKEYLOGFILE- Update to NSS 3.36.1 - Remove nss-3.14.0.0-disble-ocsp-test.patch - Fix partial injection of LDFLAGS - Remove NSS_NO_PKCS11_BYPASS, which is no-op in upstream- Update to NSS 3.36.0 - Add gcc-c++ to BuildRequires (C++ is needed for gtests) - Make test failure detection robuster- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild- Fix a compiler error with gcc 8, mozbz#1434070 - Set NSS_FORCE_FIPS=1 at %build time, and remove from %check.- Stop pulling in nss-pem automatically, packages that need it should depend on it, rhbz#1539401- Update to NSS 3.35.0- Update to NSS 3.34.0- Make sure 32bit nss-pem always be installed with 32bit nss in multlib environment, patch by Kamil Dudka- Fix test script- Update tests to be compatible with default NSS DB changed to sql (the default was changed in the nss-util package).- rhbz#1505487, backport upstream fixes required for rhbz#1496560- Update to NSS 3.33.0- Update to NSS 3.32.1- Update iquote.patch to really prefer in-tree headers over system headers- NSS libnssckbi.so has already been obsoleted by p11-kit-trust, rhbz#1484449- Update to NSS 3.32.0- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild- Backport mozbz#1381784 to avoid deadlock in dnf- Move signtool to %_libdir/nss/unsupported-tools, for: https://fedoraproject.org/wiki/Changes/NSSSigntoolDeprecation- Rebase to NSS 3.31.0- Enable gtests- Rebase to NSS 3.30.2 - Enable TLS 1.3- Backport upstream mozbz#1328318 to support crypto policy FUTURE.- Rebase to NSS 3.30.0 - Remove upstreamed patches- Backport mozbz#1334976 and mozbz#1336487.- Rebase to NSS 3.29.1- Disable TLS 1.3, following the upstream change- Rebase to NSS 3.29.0 - Suppress -Werror=int-in-bool-context warnings with GCC7- Work around pkgconfig -> pkgconf transition issue (releng#6597)- Disable TLS 1.3 - Add "Conflicts" with packages using older Mozilla codebase, which is not compatible with NSS 3.28.1 - Remove NSS_ECC_MORE_THAN_SUITE_B setting, as it was removed in upstream- Add "Conflicts" with older firefox packages which don't have support for smaller curves added in NSS 3.28.1- Fix incorrect version specification in %nss_{util,softokn}_version, pointed by Elio Maldonado- Rebase to NSS 3.28.1 - Remove upstreamed patch for disabling RSA-PSS - Re-enable TLS 1.3- Rebase to NSS 3.27.2- Revert the previous fix for RSA-PSS and use the upstream fix instead- Disable the use of RSA-PSS with SSL/TLS. #1383809- Disable TLS 1.3 for now, to avoid reported regression with TLS to version intolerant servers- Rebase to NSS 3.27.0 - Remove upstreamed ectest patch- Rebase to NSS 3.26.0 - Update check policy file patch to better match what was upstreamed - Remove conditionally ignore system policy patch as it has been upstreamed - Skip ectest as well as ecperf, which are built as part of nss-softokn - Fix rpmlint error regarding %define usage- Incorporate some changes requested in upstream review and commited upstream (#1157720)- Add support for conditionally ignoring the system policy (#1157720) - Remove unneeded test scripts patches in order to run more tests - Remove unneeded test data modifications from the spec file- Remove obsolete patch and spurious lines from the spec file (#1347336)- Cleanup spec file and patches and add references to bugs filed upstream- Rebase to nss 3.25- decouple nss-pem from the nss package (#1347336)- Apply the patch that was last introduced - Renumber and reorder some of the patches - Resolves: Bug 1342158- Allow application requests to disable SSL v2 to succeed - Resolves: Bug 1342158 - nss-3.24 does no longer support ssl V2, installation of IPA fails because nss init fails- Rebase to NSS 3.24.0 - Restore setting the policy file location - Make ssl tests scripts aware of policy - Ajust tests data expected result for policy- Bootstrap build to rebase to NSS 3.24.0 - Temporarily not setting the policy file location- Change POLICY_FILE to "nss.config"- Change POLICY_FILE to "nss.cfg"- Change the POLICY_PATH to "/etc/crypto-policies/back-ends" - Regenerate the check policy patch with hg to provide more context- Fix typo in the last %changelog entry- Load policy file if /etc/pki/nssdb/policy.cfg exists - Resolves: Bug 1157720 - NSS should enforce the system-wide crypto policy- Remove unused patch rendered obsolete by pem update- Update pem sources to latest from nss-pem upstream - Resolves: Bug 1300652 - [PEM] insufficient input validity checking while loading a private key- Rebase to NSS 3.23- Rebase to NSS 3.22.2- Fix ssl2/exp test disabling to run all the required tests- Rebase to NSS 3.22.1- Update .gitignore as part of updating to nss 3.22- Update to NSS 3.22- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild- Resolves: Bug 1299040 - Enable ssl_gtests upstream test suite - Remove 'export NSS_DISABLE_GTESTS=1' go ssl_gtests are built - Use %define when specifying the nss_tests to run- Add 64-bit MIPS to multilib arches- Update %{nss_util_version} and %{nss_softokn_version} to 3.21.0 - Resolves: Bug 1284095 - all https fails with sec_error_no_token- Add references to bugs filed upstream- Update to NSS 3.21 - Package listsuites as part of the unsupported tools set - Resolves: Bug 1279912 - nss-3.21 is available - Resolves: Bug 1258425 - Use __isa_bits macro instead of list of 64-bit - Resolves: Bug 1280032 - Package listsuites as part of the nss unsupported tools set- Update to NSS 3.20.1- Enable ECC cipher-suites by default [hrbz#1185708] - Split the enabling patch in two for easier maintenance - Remove unused patches rendered obsolete by prior rebase- Enable ECC cipher-suites by default [hrbz#1185708] - Implement corrections requested in code review- Enable ECC cipher-suites by default [hrbz#1185708]- Fix patches that disable ssl2 and export cipher suites support - Fix libssl patch that disable ssl2 & export cipher suites to not disable RSA_WITH_NULL ciphers - Fix syntax errors in patch to skip ssl2 and export cipher suite tests - Turn ssl2 off by default in the tstclnt tool - Disable ssl stress tests containing TLS RC4 128 with MD5- Update to NSS 3.20- Update to NSS 3.19.3- Create on the fly versions of sslcov.txt and sslstress.txt that disable tests for SSL2 and EXPORT ciphers- Update to NSS 3.19.2- Update to NSS 3.19.1- Update to NSS 3.19- Replace expired test certificates, upstream bug 1151037- Update to nss-3.18.0 - Resolves: Bug 1203689 - nss-3.18 is available- Disable export suites and SSL2 support at build time - Fix syntax errors in various shell scripts - Resolves: Bug 1189952 - Disable SSL2 and the export cipher suites- Rebuilt for Fedora 23 Change https://fedoraproject.org/wiki/Changes/Harden_all_packages_with_position-independent_code- Commented out the export NSS_NO_SSL2=1 line to not disable ssl2 - Backing out from disabling ssl2 until the patches are fixed- Disable SSL2 support at build time - Fix syntax errors in various shell scripts - Resolves: Bug 1189952 - Disable SSL2 and the export cipher suites- Update to nss-3.17.4- Own the %{_datadir}/doc/nss-tools dir- Resolves: Bug 987189 - nss-tools RPM conflicts with perl-PAR-Packer - Install pp man page in %{_datadir}/doc/nss-tools/pp.1 - Use %{_mandir} instead of /usr/share/man as more generic- Install pp man page in alternative location - Resolves: Bug 987189 - nss-tools RPM conflicts with perl-PAR-Packer- Update to nss-3.17.3 - Resolves: Bug 1171012 - nss-3.17.3 is available- Resolves: Bug 994599 - Enable TLS 1.2 by default- Update to nss-3.17.2- Update to nss-3.17.1 - Add a mechanism to skip test suite execution during development work- Rebuild for rpm bug 1131960- Update to nss-3.17.0- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild- Replace expired PayPal test cert with current one to prevent build failure- fix license handling- Update to nss-3.16.2- Remove unwanted source directories at end of %prep so it truly does it - Skip the cipher suite already run as part of the nss-softokn build- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild- Replacing ppc64 and ppc64le with the power64 macro - Related: Bug 1052545 - Trivial change for ppc64le in nss spec- Update to nss-3.16.1 - Update the iquote patch on account of the rebase - Improve error detection in the %section - Resolves: Bug 1094702 - nss-3.16.1 is available- Update to nss-3.16.0 - Cleanup the copying of the tools man pages - Update the iquote.patch on account of the rebase- Restore requiring nss_softokn_version >= 3.15.5- Update to nss-3.15.5 - Temporarily requiring only nss_softokn_version >= 3.15.4 - Fix location of sharedb files and their manpages - Move cert9.db, key4.db, and pkcs11.txt to the main package - Move nss-sysinit manpages tar archives to the main package - Resolves: Bug 1066877 - nss-3.15.5 is available - Resolves: Bug 1067091 - Move sharedb files to the %files section- Revert previous change that moved some sysinit manpages - Restore nss-sysinit manpages tar archives to %files sysinit - Removing spurious wildcard entry was the only change needed- Add explanatory comments for iquote.patch as was done on f20- Update pem sources to latest from nss-pem upstream - Pick up pem fixes verified on RHEL and applied upstream - Fix a problem where same files in two rpms created rpm conflict - Move some nss-sysinit manpages tar archives to the %files the - All man pages are listed by name so there shouldn't be wildcard inclusion - Add support for ppc64le, Resolves: Bug 1052545- ARM tests pass so remove ARM conditional- Update to nss-3.15.4 (hg tag NSS_3_15_4_RTM) - Resolves: Bug 1049229 - nss-3.15.4 is available - Update pem sources to latest from the interim upstream for pem - Remove no longer needed patches - Update pem/rsawrapr.c patch on account of upstream changes to freebl/softoken - Update iquote.patch on account of upstream changes- Update to nss-3.15.3.1 (hg tag NSS_3_15_3_1_RTM) - Resolves: Bug 1040282 - nss: Mis-issued ANSSI/DCSSI certificate (MFSA 2013-117) - Resolves: Bug 1040192 - nss-3.15.3.1 is available- Bump the release tag- Update to NSS_3_15_3_RTM - Resolves: Bug 1031897 - CVE-2013-5605 CVE-2013-5606 CVE-2013-1741 nss: various flaws - Fix option descriptions for setup-nsssysinit manpage - Fix man page of nss-sysinit wrong path and other flaws - Document email option for certutil manpage - Remove unused patches- Revert one change from last commit to preserve full nss pluggable ecc supprt [1019245]- Use the full sources from upstream - Bug 1019245 - ECDHE in openssl available -> NSS needs too for Firefox/Thunderbird- Update to NSS_3_15_2_RTM - Update iquote.patch on account of modified prototype on cert.h installed by nss-devel- Update pem sources to pick up a patch applied upstream which a faulty merge had missed - The pem module should not require unique file basenames- Update pem sources to the latest from interim upstream- Resolves: rhbz#996639 - Minor bugs in nss man pages - Fix some typos and improve description and see also sections- Cleanup spec file to address most rpmlint errors and warnings - Using double percent symbols to fix macro-in-comment warnings - Ignore unversioned-explicit-provides nss-system-init per spec comments - Ignore invalid-url Source0 as it comes from the git lookaside cache - Ignore invalid-url Source12 as it comes from the git lookaside cache- Add man page for pkcs11.txt configuration file and cert and key databases - Resolves: rhbz#985114 - Provide man pages for the nss configuration files- Fix errors in the man pages - Resolves: rhbz#984106 - Add missing option descriptions to man pages for {cert|cms|crl}util - Resolves: rhbz#982856 - Fix path to script in man page for nss-sysinit- Update to NSS_3_15_1_RTM - Enable the iquote.patch to access newly introduced types- Install man pages for nss-tools and the nss-config and setup-nsssysinit scripts - Resolves: rhbz#606020 - nss security tools lack man pages- Build nss without softoken or util sources in the tree - Resolves: rhbz#689918- Update ssl-cbc-random-iv-by-default.patch- Fix generation of NSS_VMAJOR, NSS_VMINOR, and NSS_VPATCH for nss-config- Update to NSS_3_15_RTM- Fix incorrect path that hid failed test from view - Add ocsp to the test suites to run but ... - Temporarily disable the ocsp stapling tests - Do not treat failed attempts at ssl pkcs11 bypass as fatal errors- Update to NSS_3_15_BETA1 - Update spec file, patches, and helper scripts on account of a shallower source tree- Update expired test certificates (fixed in upstream bug 852781)- Fix incorrect post/postun scripts. Fix broken links in posttrans.- Configure libnssckbi.so to use the alternatives system in order to prepare for a drop in replacement.- Update to NSS_3_14_3_RTM - sync up pem rsawrapr.c with softoken upstream changes for nss-3.14.3 - Resolves: rhbz#908257 - CVE-2013-1620 nss: TLS CBC padding timing attack - Resolves: rhbz#896651 - PEM module trashes private keys if login fails - Resolves: rhbz#909775 - specfile support for AArch64 - Resolves: rhbz#910584 - certutil -a does not produce ASCII output- Allow building nss against older system sqlite- Update to NSS_3_14_2_RTM- Update to NSS_3_14_1_WITH_CKBI_1_93_RTM- Require nspr >= 4.9.4 - Fix changelog invalid dates- Update to NSS_3_14_1_RTM- Bug 879978 - Install the nssck.api header template where mod_revocator can access it - Install nssck.api in /usr/includes/nss3/templates- Bug 879978 - Install the nssck.api header template in a place where mod_revocator can access it - Install nssck.api in /usr/includes/nss3- Bug 870864 - Add support in NSS for Secure Boot- Disable bypass code at build time and return failure on attempts to enable at runtime - Bug 806588 - Disable SSL PKCS #11 bypass at build time- Fix pk11wrap locking which fixes 'fedpkg new-sources' and 'fedpkg update' hangs - Bug 872124 - nss-3.14 breaks fedpkg new-sources - Fix should be considered preliminary since the patch may change upon upstream approval- Add a dummy source file for testing /preventing fedpkg breakage - Helps test the fedpkg new-sources and upload commands for breakage by nss updates - Related to Bug 872124 - nss 3.14 breaks fedpkg new-sources- Fix a previous unwanted merge from f18 - Update the SS_SSL_CBC_RANDOM_IV patch to match new sources while - Keeping the patch disabled while we are still in rawhide and - State in comment that patch is needed for both stable and beta branches - Update .gitignore to download only the new sources- Fix the spec file so sechash.h gets installed - Resolves: rhbz#871882 - missing header: sechash.h in nss 3.14- Update the license to MPLv2.0- Use only -f when removing unwanted headers- Add secmodt.h to the headers installed by nss-devel - nss-devel must install secmodt.h which moved from softoken to pk11wrap with nss-3.14- Update to NSS_3_14_RTM- Update to NSS_3_14_RC1 - update nss-589636.patch to apply to httpdserv - turn off ocsp tests for now - remove no longer needed patches - remove headers shipped by nss-util- Update to NSS_3_13_6_RTM- Rebase pem sources to fedora-hosted upstream to pick up two fixes from rhel-6.3 - Resolves: rhbz#847460 - Fix invalid read and free on invalid cert load - Resolves: rhbz#847462 - PEM module may attempt to free uninitialized pointer - Remove unneeded fix gcc 4.7 c++ issue in secmodt.h that actually undoes the upstream fix- Fix pluggable ecc support- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- Fix checkin comment to prevent unwanted expansions of percents- Resolves: Bug 830410 - Missing Requires %{?_isa} - Use Requires: %{name}%{?_isa} = %{version}-%{release} on tools - Drop zlib requires which rpmlint reports as error E: explicit-lib-dependency zlib - Enable sha224 portion of powerup selftest when running test suites - Require nspr 4.9.1- Resolves: rhbz#833529 - revert unwanted change to nss.pc.in- Resolves: rhbz#833529 - Remove unwanted space from the Libs: line on nss.pc.in- Update to NSS_3_13_5_RTM- Resolves: Bug 812423 - nss_Init leaks memory, fix from RHEL 6.3- Resolves: Bug 805723 - Library needs partial RELRO support added - Patch coreconf/Linux.mk as done on RHEL 6.2- Update to NSS_3_13_4_RTM - Update the nss-pem source archive to the latest version - Remove no longer needed patches - Resolves: Bug 806043 - use pem files interchangeably in a single process - Resolves: Bug 806051 - PEM various flaws detected by Coverity - Resolves: Bug 806058 - PEM pem_CreateObject leaks memory given a non-existing file name- Resolves: Bug 805723 - Library needs partial RELRO support added- Cleanup of the spec file - Add references to the upstream bugs - Fix typo in Summary for sysinit- Pick up fixes from RHEL - Resolves: rhbz#800674 - Unable to contact LDAP Server during winsync - Resolves: rhbz#800682 - Qpid AMQP daemon fails to load after nss update - Resolves: rhbz#800676 - NSS workaround for freebl bug that causes openswan to drop connections- Update to NSS_3_13_3_RTM- fix issue with gcc 4.7 in secmodt.h and C++11 user-defined literals- Resolves: Bug 784672 - nss should protect against being called before nss_Init- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- Deactivate a patch currently meant for stable branches only- Resolves: Bug 770682 - nss update breaks pidgin-sipe connectivity - NSS_SSL_CBC_RANDOM_IV set to 0 by default and changed to 1 on user request- Revert to using current nss_softokn_version - Patch to deal with lack of sha224 is no longer needed- Resolves: Bug 754771 - [PEM] an unregistered callback causes a SIGSEGV- Resolves: Bug 750376 - nss 3.13 breaks sssd TLS - Fix how pem is built so that nss-3.13.x works with nss-softokn-3.12.y - Only patch blapitest for the lack of sha224 on system freebl - Completed the patch to make pem link against system freebl- Removed unwanted /usr/include/nss3 in front of the normal cflags include path - Removed unnecessary patch dealing with CERTDB_TERMINAL_RECORD, it's visible- Statically link the pem module against system freebl found in buildroot - Disabling sha224-related powerup selftest until we update softokn - Disable sha224 and pss tests which nss-softokn 3.12.x doesn't support- Rebuild with nss-softokn from 3.12 in the buildroot - Allows the pem module to statically link against 3.12.x freebl - Required for using nss-3.13.x with nss-softokn-3.12.y for a merge inrto rhel git repo - Build will be temprarily placed on buildroot override but not pushed in bodhi- Fix broken dependencies by updating the nss-util and nss-softokn versions- Update to NSS_3_13_1_RTM - Update builtin certs to those from NSSCKBI_1_88_RTM- Update to NSS_3_13_RTM- Update to NSS_3_13_RC0- Fix attempt to free initilized pointer (#717338) - Fix leak on pem_CreateObject when given non-existing file name (#734760) - Fix pem_Initialize to return CKR_CANT_LOCK on multi-treaded calls (#736410)- Update builtins certs to those from NSSCKBI_1_87_RTM- Update to NSS_3_12_11_RTM- Indicate the provenance of stripped source tarball (#688015)- Provide virtual -static package to meet guidelines (#609612).- Enable pluggable ecc support (#712556) - Disable the nssdb write-access-on-read-only-dir tests when user is root (#646045)- make the testsuite non fatal on arm arches- Fix crmf hard-coded maximum size for wrapped private keys (#703656)- Update to NSS_3_12_10_RTM- Update to NSS_3_12_10_BETA1- Implement PEM logging using NSPR's own (#695011)- Update to NSS_3.12.9_WITH_CKBI_1_82_RTM- Short-term fix for ssl test suites hangs on ipv6 type connections (#539183)- Add a missing requires for pkcs11-devel (#675196)- Run the test suites in the check section (#677809)- Fix cms headers to not use c++ reserved words (#676036) - Reenabling Bug 499444 patches - Fix to swap internal key slot on fips mode switches- Revert patches for 499444 until all c++ reserved words are found and extirpated- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- Fix cms header to not use c++ reserved word (#676036) - Reenable patches for bug 499444- Revert patches for 499444 as they use a C++ reserved word and cause compilation of Firefox to fail- Fix the earlier infinite recursion patch (#499444) - Remove a header that now nss-softokn-freebl-devel ships- Fix infinite recursion when encoding NSS enveloped/digested data (#499444)- Update the cacert trust patch per upstream review requests (#633043)- Fix to honor the user's cert trust preferences (#633043) - Remove obsoleted patch- Update to 3.12.9- Rebuilt according to fedora pre-release package naming guidelines- Update to NSS_3_12_9_BETA2 - Fix libpnsspem crash when cacert dir contains other directories (#642433)- Update to NSS_3_12_9_BETA1- Update pem source tar with fixes for 614532 and 596674 - Remove no longer needed patches- Update PayPalEE.cert test certificate which had expired- Tell rpm not to verify md5, size, and modtime of configurations file- Fix certificates trust order (#643134) - Apply nss-sysinit-userdb-first.patch last- Move triggerpostun -n nss-sysinit script ahead of the other ones (#639248)- Fix invalid %postun scriptlet (#639248)- Replace posttrans sysinit scriptlet with a triggerpostun one (#636787) - Fix and cleanup the setup-nsssysinit.sh script (#636792, #636801)- Add posttrans scriptlet (#636787)- Update to 3.12.8 - Prevent disabling of nss-sysinit on package upgrade (#636787) - Create pkcs11.txt with correct permissions regardless of umask (#636792) - Setup-nsssysinit.sh reports whether nss-sysinit is turned on or off (#636801) - Added provides pkcs11-devel-static to comply with packaging guidelines (#609612)- NSS 3.12.8 RC0- Fix nss-util_version and nss_softokn_version required to be 3.12.7.99.3- NSS 3.12.8 Beta3 - Fix unclosed comment in renegotiate-transitional.patch- Change BuildRequries to available version of nss-util-devel- Define NSS_USE_SYSTEM_SQLITE and remove unneeded patch - Add comments regarding an unversioned provides which triggers rpmlint warning - Build requires nss-softokn-devel >= 3.12.7- Update to 3.12.7- Apply the patches to fix rhbz#614532- Removed pem sourecs as they are in the cache- Add support for PKCS#8 encoded PEM RSA private key files (#614532)- Fix nsssysinit to return userdb ahead of systemdb (#603313)- Require and BuildRequire >= the listed version not =- Require nss-softoken 3.12.6- Fix SIGSEGV within CreateObject (#596674)- Update pem source tar to pick up the following bug fixes: - PEM - Allow collect objects to search through all objects - PEM - Make CopyObject return a new shallow copy - PEM - Fix memory leak in pem_mdCryptoOperationRSAPriv- Update the test cert in the setup phase- Add sed to sysinit requires as setup-nsssysinit.sh requires it (#576071) - Update PayPalEE test cert with unexpired one (#580207)- Fix ns.spec to not require nss-softokn (#575001)- rebuilt with all tests enabled- Using SSL_RENEGOTIATE_TRANSITIONAL as default while on transition period - Disabling ssl tests suites until bug 539183 is resolved- Update to 3.12.6 - Reactivate all tests - Patch tools to validate command line options arguments- Fix curl related regression and general patch code clean up- retagging- Fix SIGSEGV on call of NSS_Initialize (#553638)- New version of patch to allow root to modify ystem database (#547860)- Temporarily disabling the ssl tests- Fix nsssysinit to allow root to modify the nss system database (#547860)- Fix an error introduced when adapting the patch for rhbz #546211- Remove left over trace statements from nsssysinit patching- Fix a misconstructed patch- Fix nsssysinit to enable apps to use system cert store, patch contributed by David Woodhouse (#546221) - Fix spec so sysinit requires coreutils for post install scriplet (#547067) - Fix segmentation fault when listing keys or certs in the database, patch contributed by Kamil Dudka (#540387)- Fix nsssysinit to set the default flags on the crypto module (#545779) - Remove redundant header from the pem module- Remove unneeded patch- Retagging to include missing patch- Update to 3.12.5 - Patch to allow ssl/tls clients to interoperate with servers that require renogiation- Retagging- Require nss-softoken of same architecture as nss (#527867) - Merge setup-nsssysinit.sh improvements from F-12 (#527051)- User no longer prompted for a password when listing keys an empty system db (#527048) - Fix setup-nsssysinit to handle more general formats (#527051)- Fix syntax error in setup-nsssysinit.sh- Fix sysinit to be under mozilla/security/nss/lib- Add nss-sysinit activation/deactivation script- Install blank databases and configuration file for system shared database - nsssysinit queries system for fips mode before relying on environment variable- Restoring nssutil and -rpath-link to nss-config for now - 522477- Add the nss-sysinit subpackage- Installing shared libraries to %{_libdir}- Retagging to pick up new sources- Update pem enabling source tar with latest fixes (509705, 51209)- PEM module implements memory management for internal objects - 509705 - PEM module doesn't crash when processing malformed key files - 512019- Remove symbolic links to shared libraries from devel - 521155 - No rpath-link in nss-softokn-config- Update to 3.12.4- Fix FORTIFY_SOURCE buffer overflows in test suite on ppc and ppc64 - bug 519766 - Fixed requires and buildrequires as per recommendations in spec file review- Restoring patches 2 and 7 as we still compile all sources - Applying the nss-nolocalsql.patch solves nss-tools sqlite dependency problems- restore require sqlite- Don't require sqlite for nss- Ensure versions in the requires match those used when creating nss.pc- Remove nss-prelink.conf as signed all shared libraries moved to nss-softokn - Add a temprary hack to nss.pc.in to unblock builds- caolan's nss.pc patch- Bump the release number for a chained build of nss-util, nss-softokn and nss- Fix nss-config not to include nssutil - Add BuildRequires on nss-softokn and nss-util since build also runs the test suite- disabling all tests while we investigate a buffer overflow bug- disabling some tests while we investigate a buffer overflow bug - 519766- remove patches that are now in nss-softokn and - remove spurious exec-permissions for nss.pc per rpmlint - single requires line in nss.pc.in- Fix BuildRequires: nss-softokn-devel release number- fix nss.pc.in to have one single requires line- cleanups for softokn- remove the softokn subpackages- don install the nss-util pkgconfig bits- remove from -devel the 3 headers that ship in nss-util-devel- kill off the nss-util nss-util-devel subpackages- split off nss-softokn and nss-util as subpackages with their own rpms - first phase of splitting nss-softokn and nss-util as their own packages- must install libnssutil3.since nss-util is untagged at the moment - preserve time stamps when installing various files- dont install libnssutil3.so since its now in nss-util- Fix spec file problems uncovered by Fedora_12_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild- removed two patch files which are no longer needed and fixed previous change log number- updated pem module incorporates various patches - fix off-by-one error when computing size to reduce memory leak. (483855) - fix data type to work on x86_64 systems. (429175) - fix various memory leaks and free internal objects on module unload. (501080) - fix to not clone internal objects in collect_objects(). (501118) - fix to not bypass initialization if module arguments are omitted. (501058) - fix numerous gcc warnings. (500815) - fix to support arbitrarily long password while loading a private key. (500180) - fix memory leak in make_key and memory leaks and return values in pem_mdSession_Login (501191)- add patch for bug 502133 upstream bug 496997- rebuild with higher release number for upgrade sanity- updated to NSS_3_12_4_FIPS1_WITH_CKBI_1_75- re-enable test suite - add patch for upstream bug 488646 and add newer paypal certs in order to make the test suite pass- add conflicts info in order to fix bug 499436- ship .chk files instead of running shlibsign at install time - include .chk file in softokn-freebl subpackage - add patch for upstream nss bug 488350- Update to NSS 3.12.3- temporarily disable the test suite because of bug 494266- fix softokn-freebl dependency for multilib (bug 494122)- introduce separate nss-softokn-freebl package- disable execstack when building freebl- add upstream patch to fix bug 483855- build nspr-less freebl library- Update to NSS_3_12_3_BETA4- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild- update to NSS_3_12_2_RC1 - use system zlib- add sparc64 to the list of 64 bit arches- bug 456847, move pkgconfig requirement to devel package- Update to NSS_3_12_1_RC2- NSS 3.12.1 RC1- fix bug bug 429175 in libpem module- bug 456847, add Requires: pkgconfig- nss package should own /etc/prelink.conf.d folder, rhbz#452062 - use upstream patch to fix test suite abort- Update to NSS_3_12_RC4- Update to NSS_3_12_RC2- Zapping old Obsoletes/Provides. No longer needed, causes multilib headache.- Update to NSS_3_12_BETA3- NSS 3.12 Beta 2 - Use /usr/lib{64} as devel libdir, create symbolic links.- Apply upstream patch for bug 417664, enable test suite on pcc.- Support concurrent runs of the test suite on a single build host.- disable test suite on ppc- disable test suite on ppc64- Build against gcc 4.3.0, use workaround for bug 432146 - Run the test suite after the build and abort on failures.* NSS 3.12 Beta 1- move .so files to /lib- NSS 3.12 alpha 2b- upstream patches to avoid calling netstat for random data- NSS 3.12 alpha 2- Add /etc/prelink.conf.d/nss-prelink.conf in order to blacklist our signed libraries and protect them from modification.- Fix off-by-one error in the PEM module- fix a C++ mode compilation error- Add 3.12 ckfw and libnsspem- Updated license tag- Ensure the workaround for mozilla bug 51429 really get's built.- Better approach to ship freebl/softokn based on 3.11.5 - Remove link time dependency on softokn- Fix unowned directories, rhbz#233890- Update to 3.11.7, but freebl/softokn remain at 3.11.5. - Use a workaround to avoid mozilla bug 51429.- Fix rhbz#230545, failure to enable FIPS mode - Fix rhbz#220542, make NSS more tolerant of resets when in the middle of prompting for a user password.- Update to 3.11.5 - This update fixes two security vulnerabilities with SSL 2 - Do not use -rpath link option - Added several unsupported tools to tools package- disable ECC, cleanout dead code- Update to 3.11.4- Revert the attempt to require latest NSPR, as it is not yet available in the build infrastructure.- Update to 3.11.3- Add /etc/pki/nssdb- rebuild- Update to 3.11.2 - Enable executable bit on shared libs, also fixes debug info.- Enable Elliptic Curve Cryptography (ECC)- Update to 3.11.1 - Include upstream patch to limit curves- add --noexecstack when compiling assembler on x86_64- bump again for double-long bug on ppc(64)- rebuilt for new gcc4.1 snapshot and glibc changes- rebuild- Update file list for the devel packages- Update to 3.11- Add patch to allow building on ppc* - Update the pkgconfig file to Require nspr- Initial import into Fedora Core, based on a CVS snapshot of the NSS_3_11_RTM tag - Fix up the pkcs11-devel subpackage to contain the proper headers - Build with RPM_OPT_FLAGS - No need to have rpath of /usr/lib in the pc file- Adressed review comments by Wan-Teh Chang, Bob Relyea, Christopher Aillon.- Initial build3.90.0-4.el83.90.0-4.el8.build-id56a7a8e3a1e2e03205540ec2802b53c0c480a14dlibnssutil3.sonss-utilCOPYING/usr/lib//usr/lib/.build-id//usr/lib/.build-id/56//usr/lib64//usr/share/licenses//usr/share/licenses/nss-util/-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -fexceptions -fstack-protector-strong -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1 -m64 -mcpu=power8 -mtune=power8 -funwind-tables -fstack-clash-protectioncpioxz2ppc64le-redhat-linux-gnudirectoryELF 64-bit LSB shared object, 64-bit PowerPC or cisco 7500, version 1 (SYSV), dynamically linked, BuildID[sha1]=56a7a8e3a1e2e03205540ec2802b53c0c480a14d, strippedASCII textPPPPPPPPP P P P P PPPPPPRRRRRRRRR utf-8f7a188218a96bcee319e1cc7c1e437c6ea230cb181772a06e5786a238570ff06?@7zXZ !#,] b2u jӫ`(y0qWfk] ,iMEX߹jSjŰs(H}tՄ>zh/hE.E;pcKATIK"/ 06 BI{xĤ9e|H:z9m8M7R>LUM\!_.GkĊ b$:D௓|l,ҍ~!n I׾4BGt=` ݰz2Eo}<.q5-qBqk^H.+%dbwPX$,z4 w TP\o,J}Re)9u8 y `ZUF>tN[ p:_Sata}PxH0?Vʗ S#c>2kNDuČVB'Sq+`84~V-߭(l};TAMm¼u"` &bpW}3\[’FOxl6kw %$>]dMcsq [ONQmCӭq I(PDr! R &#USwY=dfe5Ł/kP"Am{K3.=#۷jA$\X]ePɀ?/$:P>\bU8ԧ^^i:2ݢx^5R㱈HE?:Zͻ;{s:뀊\O+j`6Ctar'V)^"4=$Bu1j}.$D1XyÖ9R.|>Y#Ū(1gt5gVW!eDׄCTy/O_8+lAQB^m t.[ݘ'ȥ< OԐ0b]:זc0xS%_ h(_};-\ׄ{:`p|0Ո\1wZFvcqM7 bC'X[6 X'91kE|DdvQRxjD_Ic$|)=<8R'5Bt~j;~. Q15-6&lIW,cTiG*#T`8i9H* (&߇ 9͏"9^Q1{jnI2O^dBm0/37#'d5.q!М=8LQg?/fvru1\ :rvm>*7o+ y~oOFC \Cj sH[+1}TvS+ET[V}<]AIx3X2:iL\ gįNihe-, RL8\Ha&=6qC^n"C7~./cQI4()욚[GM £ÁYV@@af su[ 4}촨\ w+G[=E(,i,:#LsT_z+k7좨uzP鍼OI#Ag\+˄>)"юgݥFIGE#VȔj;Z9X]ͷȨyi!tre~Q^ WK~mb(xA0"LR{D?"M ƭʏ-`uosĀ-cQz~H:cg9q˧+ɀP-7sB3 JH/CZUpu4 Q3`'I2];~lI|ț% "Cz#I6T3GB@\Wu^OTf+C\`Rd[L D^m\&Eqq]CC"%[[ =а # ,MaFDxJT|vjt]e0ʀ}-_j1=l2G+>k6杓 T<;[F#5U+r䧣6`|4l2NjPcr$МM9 ެäTz#uv_@E*{R+w_^+YsDH71x*l]VJk@:Im:/l 8}J  !ZѸ^#ПP%ʣ#ۇwudd5z~m˾VB{ #^0l'O|dt( . 0Az ђ\ua2ⴘidn#\~X$ܓHmQl 2Cg,+No31FMU={ ܽGiA2 6ћnj+E6 > Ǟߗ@q/^4v[_cXVt1i`O.| ŢNA*]OA2rJO f>3fWu/5E_] ⌭GM!=9 y\2Q2x/, ׈~k&ܧ6X)Xx~P/*`|RVfm>F5:Oi':/Az51@gY;01OV vo`xLj4rVv;VSI6OƃHg)]PvD;5jVgdP$H$,tXeuAbVi$y}ZB]\!37T,|aej3sUO=Vo*ÞH UMlUgUlyѪz.w<+>=WQCo^">ɹ-[[E 1qsko&]i愞V a`3e~% >@}oer+.8}ۂؓiBUUd`qmZ‹(E7eL$U|tgMkXn+"` C GDd #z{I) ̐02g  Rs ϩbhc;T}Iz^"]4!BLX6&J~LzIn Q_  xc #ou LYj| EJ,"\4MbU&ѿ9lҔW֐v̹'*%x=#&`*k`@n9J+`YM< q2/|Q4{5n*]Ǥވ t|x6XrX[̘B7 ~>ղyo#fsf>6p3,GcG5Aj\ .["un:W5" >3EMNp&h͉6&RWEt9 Cq8Q-[#It_ 0Npo$PmY\,5hR rºmF ydYz ;x`3 z$=kwi8$ʴ0#t'eѲbr{/]3+#\U~X0zf1nR b 1pԲ@"4ĭ|24Jcyi}Њ0Iyg #d.Fvp<&0ɐP..4L-lz߆ ^#XNG+׹gHW~Rz$ݻ%o!vi`;8|;Uuhi@A$W49VAeZ־'4Tq'wkg+=x17]HX[ SsJnu4%nUBMve_wYjG`M :|Lr%m/ʑA5|UYY-{JNѪ=Շ5'*e6;TԷ DӜ(bateWۖh.7'-m;m%7@+a=A@{V>51L cL k`5)>l~Y"vK8F٭`G;uM;fvqMRkT 4T)ZC_?Sx~^SEVڴ{lX):eᮣ:bQ旇Pt0 ׋Ak { l|13< Vj6bfb|8}r?D͸ $no(TM0"<%Nr1% $uͿHe9~20+q>s_-CD\9p[@FQ{I4T6o@IADUz?FdkR7~d@ `IyQXdK%`킛Ym` &oL2O+t- |Sۗ06"MMؑ5}OV޸;RfUb,)&/"Y%3pc?$ypQH#}h;9tO;FEqz5N0<,LjYš0b*_Z%79N򣺫z敢F'ƙ'lLAhO[Z1bKh`$~qҳ ~W6}{FHm4LCC5*y5L}xQF%?L+?|d_UD E 4y5u>:13G\-7 *P6ˋUj cjҞpk%\~@߃z(vNÁ Y90F9.}ip Vm_N ?o^GC :M9͞'kb#nMw_&I2xaFt2E95Bt8-UPc !Q "G0 ~zȩzvb C9"]|c'P]z0?DW3Cv4_D2䄩T9A;uo阂˦^찲rSw9G_&T0eץ;L;~ۥQBb$d>xUZ~@h+nALqKʝaF$۶4Gg.. 7sx2UJeWw" ~VCreBun Dk(db/q0:9 8>HNvQ>9K lN S 'o|82U xTaAjfѭ.LYQ|zާ<f5 RI=1~p8;~itu7smuig!ÇF+iOY֦j_Su>8ݣj a"iJD5If@Wlt<'o^s]aiǥCD,T'd[}Rds#c{ZHw+gfL+(}+"@촓Aπ*dJs3ӔrN<8*-1c$u=)I˟Kki'A6ƟgT)F+8,/HqÛ6"˧Uod<`nRX,-bW#NL6 4K7 B{;}=9A.|rT) m.iZ $Ql[Z 1Lv(.MGVt(LjkƩp~՛1gXs \'P%LKoS[[̳f=$7<hEdt$q Kc wP*O 1v6~'zr*mhQwfD H@ =Pp~(4(^;l byQ$`8d2v+eS_`}2' Z^d\xdv K3ḽt4*3^4e, +uBQ֤]]+! F.mb02)T o]Tu~M΂豮ɂBjq j8t?ugksZӄm4sWѹ-"ixlUWڹ±@0yv;pC7 Ξ0qW.\f. 0v`R@G|>{1өQ)n~)GzJjw'/#Iᾬ0l=*m&t:8欂8 _/(8St@y_.-Q.yV_#!{Q&-) /|B<#UeV~rɳ| m_/Km@L"kŸ5@ &OF%9 /!d/7V]/ԺJ`x|˯o؛~)IeְIflCv: d W%0ӑ MֲF1S&?jXg^~:*OCu!$Z;P>3qw> Gh*=]¬WIsW;ˈIVx2E ~ ]UlOQ#HL2>!m(L vU]A7)f8+D/%ɶ2ˏ,v @f! 4KCX 8pƪ"eSkm"[}nnR>*?~nq%TmNaU +]L/Bo)Ղ9sr$kMSN yl9{a泵hAdSv|γƢF eնlsl 3GWR'~VLz>O(!tNYfPABt9o=KCs!Su ~ShcTsaR Y}FC#3L-/4{=.$' öt,槾Df[|,i+Zpk8D-fTݩ9S,b$lSSsgfuQ0Z]AVM"5WRc(Z~zD{qF:&?k:POD\#5>$t`XiSݣeFYbո74 ]Ψ84z r^Y%um{OpHfw^UD|b>:AP0B7Bû]㢳6="'~;Kv@y3>-;,1#L^{g(Y] p X[72jH*J 鈗.WIӫ0Xl/`*Ws iF%W4#ZI<6W \OvtU L1,jn+p=Eoeɪjfq'#l5>*Ht\ Y|ǟlbˀ]xAE0v@͢x0BF:pRW08z|DNxPұV[|9Mz:^}>z"2h-5{|eI9H Vdb=,DznInzf`(ꢣ\Ss>Z\ZfA0O'ٯ!v99y1eJ kZ{Upj &$CEgvUJy;p|vq%oa~lC{9?ģB z&.o?N&b@xȶ-a# # d%Gi۩`@''Soe@Z)_Q̟)(N9lHgĩۏh $!5c>bWyS2#2E{tͣn<9GMnPT.@0Ġ^8. ~1s(UJ*]$+cQ ~SeBtGj/:EU|jL{jF2W(JF%* @y˒QKI:\#h6/6L"$ {(;M dyp77 =X ߭ra}@D}ĦCb7Q`@'7$X|T!8&A1U]( (U\*ZyGS8*0("oم87E*TJRtqe7"Bw<% 㠸ɡ"r(1 7[L5{IH8)( S8TՋ>-7XӚ섩 )ō+}WtA M p`vєI\, Pr޺B'oZ/ t9WJނ2J:Yt]FdrPgAP/Ƭ/'C|NϗgBZ25mg+E~B FP ћC)QdNnv,zD%FWZcA4A*j/5jޑib a}b(E zo5L`,M"mU֍)woǎ<5Y:p{h&@M'L5a1*Y*3g*{GkdV&H*5Z6-_LJ.#VOWa+D_y(ɓܖcȧ)FO K"sENFԫ[ӑsoN>1>;wdf)-8!-7) 4D"ėw>-'dX4^WAMo`e c'1" hS~;hy8L=C,m>P4]xBC`%ds9ax1nKL(d/dЍhi\7@>E~ySN⃸ne2,^%eMYas,Sba\5lOT`NzmNxh#N\|yigFy1!r,0*E,C@-*PnۄJxPz8y/iD|>Qv!t#ߠmī΁6">E/6D: T.uwe$ 6P*P2wLa:zL/'җa_(&»fفSGg SK-Wkw~\nƶ wDXJUl.zNL 7 ! =l~9 & /.0zoP`1Hfai_wҝUO$hKa[zIJwc& j(0Df"/ 5N{_*]kH'3qoݻ$Y? έ2cG|Ӕ۽gOnNN3Skd ፑX8>!,s50LOAAhұ;$^ۓ{c)"e:4'~69`!O)'"E}qA"?JCxD%Z:-"\r߇rfQ]YԈ/A v*sN2CӇnlS08{! 5BU+b DfFY85k(Z CL=RQnewAQ lpWhW:Q^<^L߰.TC%QqZn `Hȏ3(.=}̋~8 {M|XsՂy;dOf\8j?grgAj-tsd U$әͩ B`޷JzD!E+<$sgCK4}& ;1ߑz;QK ԮX{Id\-'g@ J\Gg[]|l?dNrC xOҵJ54P.,6`^2/ ;{&r!izo]oЉ6ϻLHY1NZ,:96F<v&EPW3nk[Vͷ3<5ĘZ<Z)Гrs_>[^I\m #FXZS_H= 6%M];<^e( [@z49].x\ƅt@G̖.щ:#ef$9&*nnrQk.NJP6\v} 5պ7*Pr_"TY^iHR uwJ$^L;&!(KQ.9WteLTi<_BocvG$@AlYzru&Kj<6]J(g|Q Sܓ2tB0W. =)wNc ٬tǔ7%-iSs[hicWSrx:Jr M Ts5e;wv#VJmv: (DgL9I \n/hN=}j_elK1]xz̈mu 4n1Iz\ewUtC;".CfnE=5@Li[H"y $*rдjkaw)i\L5۰;kImp 8O)rwSQV]^Dկu3+7ykC{RfZg2y&:rR{R @o"wze͞_tӂk2U40R(q!˪Ga!'5<{W}{2g7<*ա#ٙ/=|%v噫h0봸Onn*.C(ƞ3L9LSU(w'n,ꭂ5q"f0w\Pcp[o- ee]Hq9(фk 8 tC/(0ױ|N 5nfj^X;yN A BxIvzeRQY`y KU_iuG\Ws+m9`E%= >.rpJ^U|@ 0_IܤZր|ԧ~iT-n"JnŸ͛9AhWm7Ixq ~K&G~FjXAHӷA ?"Goo>W7ODx] A@c1r_N _1# '&j =D׸(Q'yA92,/nC ",[SJ0]M!|=jLwh$U,(WJ )[ !9QN†} ء6u_qV,hc~c; xLnq& :E ]Stծz ^/yDCbgxo}5w*0qs&O‰<3l8wF e|fI܆&(@q\ҏX/U=ַo. ( 9 LuL#:PQxBJwz*R Xݣ67#%/,?*_(h/ EF+*C!Ao$4`9׶L84R!tDmQ2HQSn5 ;2#. W+^"3;Z C|dWzOl4|!yj-Rׂ mRe;ŠhpQA:9a(Eao,l**alIVqЭF]x0wz,tN@@I>#?X~ZS96bP QHsjb=N֦e3 R@t _ِwO51jc=(L>,Or2lU"{#.É@vl4J<Ri5]$on, $&#=V I~!ֻdѶ3x2/^,[aቩy0NTr 啔+1+»i4 e*EOX#zD{۾& ϗc+HOA/=(!A5Wn{- ]2㥝w֣7V ve04pDJb"8G>ȞO?_˷pDV"^R*bŲ c$ hͱHV. Qu |O *E`_>[T9R 3߁$N8m#6 ]"*;ؼ?緡|>6fL|chAuŠF4)MJBfCخm#9FIX)éSpBoߒۓefDw-^jV[[u,(t Kʴ1rdeeIsxاĪUUe31t"Zo*w&:@:Q*K<| 8*w[}7OeN% '-qx8q@ĻRX7)(cZ@p[2z"!:dLktVKt q?z'Y}s-N9;s( Jhw`Ў<|X,P2 HOTl<}|憍WZLkg]NTAD61ƨ6;h\q1ȏwfp9-@A\?[n$~LN4QI` /AIY dpN@{xEƴFD{HqT'9veЧi/^$ *(71 E)HB|cCc6GwN⷇3M_\̆nm>#,}_vlZ?.zdd}b%;c2 ƹ `0Sd] ,m.wi'EMlTV7\A}@s;nV,3Uqg19;?-ʐE]݂;y3 نQYaCHI`'*{dmR7@.T z!1,Ft/lm>/ňmC҇s$v۱ҷA!0ț~^6IGWb?؟9*E1OB 1"e@(a?9tM`mJi/BfCrG5E2^F7rĐݶw7M&h'-PrδLvQ 0@(2|>T& 8O.mm\M^ԗr,JIaѿ?ӳWԞ-m,9&ʷr1 Gdd9h'y %C!:@1t%/td1kmK#mEuպi*pB("4BOh~VbZ@x7SfPz N3VHՐ2Q<f0_@LĂE +1O?u:2l*%KDHLoA tޏ&t(@3T>/"YBwDGe DB*w㓛[a6LQcW)G6@),A We)'oOm.ڞH{ekeKװsS@P1L6R  އe&vf"B|>" o󜽷oz:jI_&< naUK u5ÒBk<&aوfe&x]Ys GIR)>؉۫68=G3O (4^罎yH@ aMȟI(+b so0b^uZ&*ąZo6-œN(3QZwQݖlQ0H@+chלcKFKdDg{2>0T̝" AmpQGc{N tޘMJ1\11fr#\$3) /i~^n\@+g |m!]"<ݞkٵTDQoN1g )Ek+dH}yvVFҢ_.; "9 AS(R-dg`2DG86~qG̢i3ҒԌ5h:C\lжg~8̲@l;6]D [t;h!zk'8f YDc t"&I Na%=o ȯ񫋝?j&:_@R0$N.TGgh]C x΋"sjuw=Oc]WIX- J(y(ѿͰV" \n:K4['9P  L%vF[*2)8!ͼ\%Ss%В=z9[h\]A$FXkgm#e:(5n}6ArG؇UdF00u,8J;X#âFعke^'!rߝ O&:*)B8zMSQh ݨgD88<2jyHܣ\ zC73MS+@Ͷv-3Co(j8%,eX^؎G86p TQ;?F&Zg| `ѿ{nLIzw'<4mvtM_ݙ }ѧB4 tL=s<; OBJ)syI( ?rGniɝ[3lb(pKw؂@m{X}t[ҁ?U}Bq^Xi(xP0oIٚ}u]#T7v`~ܨ!v}OT]a׾$WAj< Al%6p ~U7'g2fBu?;']fLv3Ǻ .9-w5PJjAɸ⃌s&c4 iɑ't$@X$Җ8(v0!_2RU>:~YP& Gn0 A+GkXS?#ZcbCAmKvYrs;䃣\Sm-zj19Eb5S  1^9$Ň_c~.[Ǽd+/ N#K;:V)}V_L쿧8kXi/f>->&d&ɜTnBI%eZa0PU9"O]J 6A6t(WIxo%)Ɋab!R~c308tRWY`$[mTI #kFC`LϷ94A7丂ձ+POg9w9mA B{YD06Ī7v m-=L2_ᐔ"Ef 3nSy҃TdvWA/Kq4E*Ri*>I4~=+fD՟#cᖰ7ہ-JH{l[Tl $ 5}"ˀjP쯹2vL̎jxlxx´LS*4oΉcg;g'P7V^8 ;z;g9X-Qg=cQ6T[wT AqQ"A\đa("mi3@#o~jiV`XC Ҕj눿[dNH_*ʆSߺ:hnk*B r*}O^סMZc0!:/]{ڿ% s6GP|ՑY"t@? ĪWfJd (!i ?X KG 7Z{uBI!-7L &N{ewm 9:rx@&&5DZR*t, mXU}St#%H7l=멳9Fb%//dh+GF]=Wu}qJi(?}gCѺp()5 X+t JH~ {2B]jIxEXA4l젅"agpV{>'3Fpfǝ@+r6?,0Ѳ=1^ﳝ vm &h$axLz;0o"LꢉԳ6!0z~o|2;;S)Ro:/54#lq oGgjTˍΝ]L3Ol!wM`np=W:?uƵY`9k֢1Kٕק8Niv%TZU.RQ%JkHMhՕ9TID(mga jxA5m`^=.Kly蹺OcIk$c]پSm|X.HdZ(>={Ǒ i9q9G[; u&s0㕩nj>k ŗ1/`o9^ߟʤs?P6N*%M}+(A XH'(ZBR 8 L`*@ ή_DMPvVJ-_m@KCϵ5="'^&]+y 16,aV { jǮw*R7NaD`!zeP"Fū A/(["PaVȡ=˔୩xLˑ7=j6]3#tM ~ .J(CJ[?(0(lh!@<>ƅ|+m-Kf^亭e=]';m)QW賐VCLp霭 ,/DM)eG@rar>G~#g5&\M-[Gz]C';+S\ɬ9c[a.fVJBB$}U +RB]G6uL!\hQ !~XݑQ[;~R2yp^dSRLb.ٷ<PO1!}}vJ-\go|>ë 3l1v.wvaއpJ_r_o /~41VW9PפkWT6ɥS A3 ">AXfv/4g]GG Ae7W#~Mz Q~f[珬Y 21{HF }sL0c@ MSЩcF?EŊR}bBWh AHSbvN9>^9$kp_U$$I~~3,ҕT]w3Q:[LN7|PM υ6/:@7U=}$q"gsڰ|~Jbm $X p{K?xͻXRbkn:"ȅe/}0Hj5t#µPS1gNG$;ɘ^6#ʱ,#uwrLk(2Z))0L\9l(ۨG;Цid Oi VaCYdaˎ{Cݴ|n]ڔN:D:! Gֱ|\[ F"V\1IbX4õ̌P 衂Oۊ pw Sp>a`Yx=&Z[D^q%'|\1nD!NKyکHӡ!hA0( p@XYrOհRTvr[R} =u*C,w\H&%grp .#l.aAȶTV% h::v_<難Lj0]K|E|#N{@z<=ǚ 3.jeRjwQ&N(AgmwI}>8W7XԧWrjеiޓma 2 XN@,uD'Z_ Ή$Wt`-a£yee&7|F! ѿ=.m!"֥OI!P"'x>! &-'!`fmz7d Iz(DclXf$Y6>l?T_}C2 ~E7'TFrx)g誄Nun`c:1ZFo;Yb0s!aH-hdRw\*vZ/c `ep2wrtDRK*'!}YǛ;81! ՓV?׸CX2SDl~|9զ_' h<Ԯ!Ao\`a4iqQF_6qh9F*͵Ev.zl[cP~|MR|MTRMKhv@c+r-hMdx9{sP\uShj27rIVϜ2 +OKqUݜ%#UnQ'6y{T6n#Ә;aIp4v݈e\xY%TEB*6$ d0/7M^RHK/ۈ*a_FrK+[:q !(^X0n5m"'?J23H+MBt +p\d9Vasv[Kb7O1Ĉmx|E@[O3mJŋS7UZ־2͞?`Rdta|Z4YY\'~A6" Spu/1ހ/ )VʊݙV :H2|7ե"~v@&ΤR4͖ ybNa}Gw|!WZf.h\H #5޳d~3jpmM۷ԛ8, |v H':+[߄>z\Z(8u,*kƈl< xv~̩|<1%vTakODM>LmDa9-"ߒK;l͟LWwU=UТGԨ@ՙ ^DAC\~ Tf-o "u3~6H<Zd []xW>>\e bu *5qp~z֝5O K)p$'dP%iw.#T7=>Dŏj3OYR7@߮+VaߢўJqKlEԶOA' Gq[:!ֈc>9L% yp8iFX/I"JqBzy_HY!F{Y+h]M^_TC|Ðh%Ekmǹ"&tX,C]/Az E 1ՃP}Vj⑶K֩y+ .Xb^Gd?Lx0{^5BМsk:!%ROcr:?f4^3BB1BNE.ūαjeu2$7#c,!fm˂җGmnwbAKy /rf6:N(-f2ÜD[!ĝЅD|#(rIv#7f&^RoQ=\ b T1`~Z:O7B? =PFJCʌMx_ mX,k1^!irN#4PE[ZGQzb"Ta|=$YWoZHbBo +~Й݂g>DzP5ӄ)-u] 9]y#-ހ#ϥ(!iZy.G\~?r_~]gC.d=|.Yzxc+)Aµd JD'ݢVgd@2E+\Y?Re+A)p- Kkϧ?<豖ԣl iSj?m%A(J?1uԂ1jcJbAѦ FhfIOQ޶-?ˉ6l.=˜}bk45֬ߥ,;AަBՐb$TjUaQ=ت t e.(ؗ\#8Ah^c>gf r:'x;@M.p?bC@,]mp*EgF}'(؈ hu0mV,7v(l=* GO&흨 fްϽ |i#7Rhd73)'bN{/p@YG]i~<;>@OzXn}E8y` "KSqGu85}z@!m1_3EX=;돦. &wfM;-Dj0 ە.b#KNWmpYcY Ii{.:Ԝ}3?a1s`6n1xF5& NPCS& ȭ!u2TCT2n 8 y*övhtUJ zKl=+H2m5SJ|(>7]zo`w쏮M d$6Rl%>4}i' k7)K(<5CsG k\q|C3h;q#.7(3 @+3܄{Y^R{oݝ퐁hdSc1_8vT[Wq9wȗH6J\7zON6#[rH6&y9ҺN%>! zc`c0ü "A[ԃÕr%A NbHT ]2zF))+lIE;:ߋR@L>d|T>x:z Z2'DLrH OgZ,.{T'8_@l62RI|\a&DR'r ^_hvȻKb,/i$51WN6*8?X==Cw2 Xy*@Fd7T Sk}Yٻ9doT ]=ᠭ {OZƝ1|;X#Wn2a8anev>ruDSpz@-1ைB+YUθk(vclwNQ '}>a?ż!{)1 @T4̅5fMt9sN B)}[|yF|H8B5 Oe2J}mdw!Z01qUb:4듂e3h yLk:0jQ7N WJ7hf@(ՄoĵYŁjgMcnp'{Y~.pJ8CDF؅BpۘzmC=|i9iӬ| ?yn>5x`H}$DrK '4F*tf@ي>Ă64ᡍH3ǐh4^\4&i߇x(9^m8R-淅+D$ia$ا`,[(އ߰ʹ6ku6MS(LdbK)'.Y \8L!75>g `ar v>6p# 本 4R98Ʀ LI: ?9$7[ =& fAvKlj~ YW~Y+q͠=W,= / 9oZbGuV$)'m# m⣍>%ey%DKWװڵ8S*@Uva%Ā-r2e.`N${ŰQ4J*6xzW՟!Ν'۠Ԛ[Y/)Z%$Cv45zms܈GtOKq: %>y*c0_X5 i#1)Swp+d}u٭?-z`T|qh^L| yͶ&[E{ڶFS'ӈS?fX_;ȨR?l]Nu+)m$#{H$t)!PPh5fU펍UPQLJϾU}]VU[hn Ω45Vw<^=kxw8 ]xKgKؚcog,F+dfk]\ݽ,a'k'B* . M_"C\naPXVg7*՟Q([oʲa  m 'ߗ–24c6D ;_.xWڔx@ue; t7939κEFQ "ǎ Y;* nIN!Y-+DBݱ2 0DLh%d.O{^`ՖRk]'h96\3oݝ큍r #jrC TȰaW8*xiASêN1H~>k *Ӳj|. UC`y5J?kPkY!Ȫ:oNf 黬p#MDZ L#/y ڍJk3HGd\y[ O v̖FNWiƧ33+>"F[}c de.!׫fR],-*B*"!0R2{TDfhd!gg ה@[TX V0hBfk'g*xVdl|e&ByEզPbP e$eۋ ]W5KP4zf]m+ܜ˓חHxE^Qe/Mi-YTaSцXIekZ~厎Eprᓐafxh7jp-n^vd8fzîUkͮЏLE$ÃmtϩZ#KC9h`>#˵ϒͮPgsyCVU]+ja> %q)J=EǰUQ )!n @` 1f~-_bY %;SՔx0퐫6S8b!po_Xe+8u }':8yɹDz4[F=bosIOa$Apy[+KPZHR ,G *Ɂh6)fa7WiHDjY<{6#޼m%괃!:1h$.2>d~wQ0qJ++w?ݠ%Hk SrGj޽(3Bl~SZEJ=; [bx=7^m|ۯ0FEeoEVT ^BM7ϺEly~V߾vno!ˊGclҎ3& ht$C-wEnxEs10G5 a],HWQX7%ѷ`_ܘ6?ODIeg1eKtכ+;u[= (H޵ +)ޠwvXe4/\(q32pC+Gw\!;50o@mw4tPpsbPk?ǞE-$f.A$ݺNk9D >1φK0`Ok̆QLAmkx,+9_NDžyd_jtf5^=H*~JaeCG2CӟM?6X6e G1,;d )9\;}m {]d "%Y{Hqϫ(P~ xs:Co:76 />QR0|*lR0SB=پR-H,Gv9djU7+Y}aGIR~_3j2Qu#z= ct8^K$]4]l'(nB9\ 8 1\WqA"2ʗ/aG=!n۷XXEXHdbusz(@CӏS8x a"g5a5gp;. =L5ZuUELC 6.<+v.H wHUUu7=A jw%&x}:o\y1e:9c)=k[Dg _[#$$ лL#NlѪѯcN;L=W~#xv*e_ eHy\b0;: cv#5tYmzTZ_dd!^p[԰aJgnHDsXdf{; [jI̼m.BpE'5Jl8z\GCc$M% ڦ#_y d1:SzJ4-)܏ʋo+y avxÍ{ctT7^G*8${0Ρ'qOte"TOP9Xk ^J.k>I0?)u%+/rl)@uÉ+(؈#Ϋ@Yj,k;hމpx" _◎ qw4tۑWl" z4YGa ݢ< aO໥BA cޫZϏLậm"eN]wuEׯꙤ=rkL,dPMΛeP mbQwrd[ Ĝ4Z7sj '&4Z001-`MMCɤiIBHO>lvB=xKLOajI4e$"J6ߑn|F3,\"Y4p{}+03&voV4r)(yMl9 $i||i[Me< ?kMˊ9&tMl{bR;<L +2zK!j:,Hfd.35+4?.M)TsLކ=c@u+Z[!h}F.SWCP_$n3_*"i;֚|?c|3}2zːIwTQh(d1alqc8݃?zUɂ L@b=^lN#*B)\ kAW/#!O&ń^BC%km@C)z?\'-ީg`n6Lc)Çx %>HjS|ڋHV6Q@ޕ9VMkM߬,SR@HPvCL3Us#zHP|V)t+1bthz,q֎QYMLЧu?LxUýd@{t23 9fUk83׼!΍wه/GZs_s'SQzJJPp~Uw˅K0+(,Te@YSG]wʚ/BGq귄4޳CJmO/=S4ԘnIj3swb2%L '\bc0YϬԐT8nWwZ$4?ק2+ KRf`ḅw.ͮ.9owy3ϸΘ o>GC\ɥ<j8Mc7f+}jm|"z \S;P%RKưQW ˁ-WdJ)Pa <-](xڋr{K,dm=S*t5G.`_DeT{#ZxܝوV~Zu*#-!c$_GhC( Ta1C=D(m# (F< !RJ)D 9 UZN#4 N+aMl۷$o?2*dl[:)=5jW! 0R铊D'MaDCٮcw ӵ .{PL7[=|DRM H4qTR(u#5M\ipù2%I7<,5Lq#x "cm9M F1uK-!u<#̷=Kؽgݺ?zcQsD#&Z7NAK݆\;w!pFP#n*3pgbF6`չ"N7f9,$k q_xY=[IRycY "FKPot@6F|yQ붩}W{IERKIcaXg%#^ A:543V ,Q ZMhl7>ۡ0\S".eC#ʏQ'8`Ƙ^K(йe:`r-}IR&W@~ ҩ6: ln1fDtG)Z)6s((T+qJ".*siK@r7~Jmw *mc^`Hd+x{C*:< '[f3xpz>O#C3յ ‰|)PW$c.P6Tĭ6)V8+̲i6ݛ; ZOYO2JL :ݭkWQ2(SRdit跾X MK@l[5! %Iʫ=.}cvc+z;9avf?\]\,o|ⴀ~Xm$ l? 6}>4x)5{\SwQa_O6q fB%R"fgh`b/ƌcyàɖ',`IT]Hn¦i?#Ia5p;n^ G ꚙ.^rgϧ>H+ jF䧞IRuy@eqڪF*sW ~ηn05;V/ y3?$ 1矟hDXjmgdn[ EYT_pS?8}" 1B1<1=9lY/gg4J O)|gث\HS싇Hz4 +ǵ`Ufΰ x|ޖ9w fH3W+ְP ZM1 (nOFƊP¯z=  ?؉$^sV:On3mз$#LPKOS v*=^C6v U"L:l Uw&_Ji5:EsH&PEbxkbTbݐda [2~qt[B>͙:${b>Ve8? _}jݶGpXMԗ"[&u4qy=qg6(l:4m.1gqvEYOm=}7o}K`*UحT]  _LT383cWafzQp4eY%6v7m(iNe*!^𾠞n-CacdDG8Yם%g'rr)İ0Y5S ]7T*ENuzSPiRwTc>ANUqVq /+^ xGƅ -ơnE ک`Gf`P&ځ@ 8Cټ={+wy"s}Res\w}pXcvP3J1zˀfL0VM_.$4Y6DG]S%v;uHɂo@:YfBeQm>рHS ) ,{CXIÊPXSa}/RۢFW >CϱtԕFMr7ƛE@wΓ~3IBiUDN]9#sA~%mf,`5)mAК׻H"?st1ʡ`T 72,%w\v:hDB@@è&"lTA#}HA@41w+͑-:SUP :oG?IOD^56{a9g[fN=CH{:)u La9URU>lIִxZ*Y+%O5֛c+b 鿣4KttN_0dCs ,Up_P蔡ҏAÙu#\:!b z4bFA-7-p&=dC3vD,^2Z;~uԛ R8&k5J`?CDd|0=DMT3>w@KXxQVlVkL=IޠÞ쬃єwZa~9F斬'꼻A9mZ zdƃzo 5.F:y,b۰zFd  NfF0"%IlfKn7'[nHIiLdcXpʲg9J?oMffe/14ԛc.2sKuv+&Sxl\ey/ˣ\yD^qNc$|_Ͱa[%KqjG0 us2bkhvSςynU$poX՛{xz2xFA%D];Y{QnThi |p~!&CҎFod,aj)qO%k1Oȩ{ʏ-ᗩp' FuZՠ J)zJ r>_r3oa2fI&V?xLV\vVWa_0Qqp g ʢGz& )+ts 7?8cCB&iT!aP6PԂ";eZQ%A[G Ҙ'Zٽj?`=J/b_!MҬ.n+K?lB2ߒ~ 8Wf咊ƙF/.e+U2U cU&䈮rD{hN$2l9rI\J'ISꀥV&_{ZF%QQ+% Ll|%RRE8Y:;^S6pT?n(|ryK@M_'vN&SD ]_GO $iDw{pvލ,a5iOo{{1vC4R'ӶEo϶yK8`\>%d$%.@eI^{z-Sgۏ:֌BE#WM_&[L'0" :JV[w=UAk>˷jŜbzvĊLWw1ꣿG&3d*G@ыHhZqP3'S ͉9Ph2X>⯰iQ듎0l T}8G\D;N#!ЕABJ# vRi [ אg-2APѩlAu  >Kf饃qӣ,C)g^K~Y©q%ؽc;Pglrp00^%+< :>K=ƊiI0/6'j,uA~:EPC/127,1KTF"6~^n.枢E1ƌ{4 ĂfCH@'ud:Jnh$ bNBAyR$52ۙdYUO*lԧ,U 7lr;I }L20pF~&{;1g?)H1( | x^mM0[?$jiĪ.o 7E MY*TCh<@r!}@_b󺻆o>Uf:"LQظdζqGhH>njExUX @gBJB&̷*v3wo7T򱙼擬:-v\[[5.Ѐ+ZenT%w$$?FqVg[g¹\KӀQ 4y41/RķW/%^ijw A-%Vhi4޶6q+*h* `=,n8Qt=Ԕe _GrT,6ժvR(j)!](ƅ4 IMa3J.*x> q8.ҳJppdVF".DmsJ i̥Θ+;(V6TF&LoOTmst>K7:KJ ,I' _##JP:~ZCUb6h;gmwLX%*H6sXJOD!!9:գS'\p2B29Ns/{c'ˑrwpc VY Mc{Ag'26@d~HriyKNyئ6qa Q3R8t cV%ob9s}ˑǪu,"ٿ:L^"j`ƫ{b_lϹ c4xx$gS~Y +1C;Im[{8u %=\?S܋:z{˦zU%pEMpje"4s>̉sH}r xT&^H␄JN?~Ջ5Z|wO%٨T%xx._J nD#(y:,REB:T)+Pk4 koNiN q!xD틐gcd1& )&6Bе$|{y*?̨& L;p%+w;2q;u2 * CP ~(HoIsf0$8(W|P?R]LTH+mN''X2|+ނq_R, ]xgNGXM|I=(H^6) 5![enu>2 NHױ3EFȎs&EC0>-{-c f6T;̼ﲌ9i+[ )a#h 6&W] *Y& YS\}{_Tйc 7S@`9/=S ] fYMs$G^doXuԆ6gֱ0&9" K` m*wiD}]ZNu#ufY!3hmҽ BW7vzgAZIGwD&#%js:8CWOϨ;[1b~ξ0C{%:F (lzBs-v S2P@KUw6Q=!/wG,,B kWW`bC,;慧g%A0#v_m}n8)rBIAee @c0t>}MHlT2_`U;8@hF$RT=lRvp1rͿjhY/tk&.kOz1NxCnA$<`cϚlfOF@\4b9m7E(`d6CۀsUAeX+_N?McN*y'P20zKJ)/mFЩFj`{`cxDD6bhnp~?b4R&ç L&bN1 NO~э7B[WVA(œfEmlpqè (]=Kyu-bOƵ'qX!!bq[C[9J $ʁfhp $c Ǯ t~M'OfҲU% #$ |;Mli_ }=O8* "^XeGԖ"2hjγ.^4-޺IjЙYNSFF^Yu\88c莝<DŽf7'(U&, 4Č4p*N;(J;nPH*%f> ^;ܥŎ3I5TG'Q".]S#GImOh1Mq h8?~Q:jHDy>pzBKCYLAd{|:싣c_L&Ȟ+pG:3Saú!b5[L4U@k?$*|ـۊ);~X;~A6v˔vj36c lۼ ]<,#b°7 𜄹F7W'pW3%E5(91wHCy҈PCH,{Ze0)%9|h^)A芅<:>sP7$x!R|奾!Ol$:gw)8ݛFћw|/;d췽-0[,IgQ*&h=k{͑(Fw4FIhA)$p 7Y2F IMjA]8-aFݗGgFTT5XE*sab*l7b!}R';&Vp \oo{v**QEeO D"k$oyUXeNˋ[v@BB _Eb>{eė!Nӥ}CdCUAuhO Gŧ,7ViȂDaO{w t.{>] msS܍q-춰7lrOxm?; 19]H0ƹ7ZBiQvجeagIxP=mi\X^3QwTkMO'#iHX"E>ND_4Msr Gdƒ0ޔª%W'~!]2v!* t]kZݗ<mJceƚ&9h Q(cRI`3Rᤙ@mΚߠ+oak@b^5wC:/ֆ7Qkhh[li%<*&B ݍ9}mi,}=IGL4u)n wQ~88 ik0,[JjҴ&PE8Çh(7@2Iu{eŝKMrdrx`99&0eBM&cް;(FdkCPci?:ahq&m)6(YFXh%;$·|)3 QzDl6{@F^@Pag(_!z/|M64`fY YҾwEȾYS'8ҟD9~wv3Џx ]pUgkp7P$uy{ua e[rǓ{Kh`!f>d8̮b"( Hz,q\qi(0g0cF ׵l"f ACJ2Ɍ^?0/LG?\SfaYq=t$&MŴ]Lzi{sf9՝DA~g(&k c#ʏ:u5ҥ -fD_6NL%`1͗FQHE@5n$M" FC$/B@{UMYJ {d4zd_T!z/i8*:RS.p|R^xg¶5<9әOj|c(RtQU2 w۽DGui=dm:A$}6Lm?M>9]bl89k\HVB3 np0.ԱX<{Nɱ?-GῼDxXSSZ(!VLbxQ%LI \ C3;x9|sI0,Eݍǃ|c"bEtGkmbg& o]ǁ5ޞ~ոmd6:6[DHg$O*Qx̋lʏ >Я" VB!>H7]Za=Y} ~mC34>]!i~ &u{o[IC2bX]wlBGBhqe,xG7a̙k^e?CD}SqZz<5#1a3d0H|#+ic:LTzϰ2/Jl߲!O7@2*1}ko/z/D;RxVL.Q1aZ٢Zt97 /*)%~)-c5l"}یV ŢleTO +vmvtQjf :0afI?9e8âue6^f8%T sT[QyjҫVLQqWh\K1hủeIA ]D8sR#>J!TEm/doF=P/Q  t7|g'qaRΜW2DIQTFB~& ƪC'نJc񳘧fAE;N4VC7i *S~@ D=NF8 "9T9͝"֣]~갏&8,MYkE,8Rl6$iN`^FdBJ/{Mf-"hr[C=Eg.C/4dHSm~F¢ͧzX통/:L5hn1>M=jArxitlj}?֊ґ=1q. 45 ǃcIPkQ y bfGiګ3{7`&  W^c@WQ_92 xx'GOo{Cwl0{*nnL 1y[뼊[&:8X JZbhY'M,9$ '{n1m+!Y,G]G Mb~%dU 0Be`]oɹ`<,υDC7=%zEO2i2WaBC61+R8Ɲ@"Z͙@E ,kvD2r< We&U' Q0'ք""^-3 )A;Wx&%F?"}~`z RR#)DB\_R㙎˜E^쐉G%rQNr s;:e(/^$#5CjOLW΄7^vX"OsZJoZ(&<WH<\cɼ*Z*od8&mʦPF^VDfuoZO?qe yS)0 reBR/gjЩ8MTN^sDIZkI$1Y+(M cv+l~q?OѭڄxDT: RK&hn|Ejv0;ZT1S#礲l1*Bb 4,En FYlDw?#qŢ`fRM _ET{X)#~G;hʷyu;K,]ʕ(Va?M,i'R(Ȕ_GBfQ&vs?] znf3Jhjb(]T;!FP*́)5W*q(Ѝe> )J.Ź[! $::7 P`؀дps ԖTo·W7=M̥F2q&%xz˃˂ȋcB +*Kz!ˮ^!*u]_=}=}*ŒkU`Azi H1KH8,PK./:'Ö$Gz!pO>b`ET_4>CD312/}")plv{K/7R3ytm1}-3r6?a`u 9{T pzMhg~JUj1CU5rjAf; U M2,`2r  T>>Y&jMHcWst NyJk!ɕ{6 ;@XkE(D>9S~ ymv*[:rqS؅>Sk+tƥB%[% NznOF@2ZБ"iZ }OxIG r4KTv0n ֯\qR6{v6|3 %Zl<č H^2y&{TK\~:Rk4sw.E8ӌ~}t^T{k/629h;Qm_Ncɉ9 ^O݃ʨikM#|gʑ$U>>|+́z(! Gplqó#DZWUM{%;@PDrPRWǢa aZ@zbpO]pA%Жuw֌w&꣕KX%Xh%} _0LAvn|79o|?7W]/S xz]=Gl uh߅ /uKY>Rڨm iDK#;C|mwS;g񦛁<tXҧHt@0b q~]a? ۠[_xUG33}ry) ("/uJlּ<X7-1HfQև[N*]87])3IUh{\FcI@V%iKIvk[#qڶ|V;݄oY#7| j (gM%4 ܪgELk"}Rݘ7Cgp49Tm_EOZA)6zyi v D-UT\Bp(ْLo (a=dS%dɏsԸ-;,a$MdI0jN:3=ᘑqK+fneaQH=Gj"$]kG7nqY"ARI*/<e)zMɲ"yTˆ N0DWE?#Ddh 6s"~*S'J}|hh^ G@0r%{'ӼS@ "XNG;ДybKl6ٓNGb{,ykx]q<&t.$tHH ւ(k&nC! b/Қ@;xϢ2(X@k(-lGr.dfA*,*_2'|~ΊL>dTw (SW+TNd1OΨ#P@.~yYbo|Jݶ\ӽH&H1SjoL8Lj0t"8Mbvom6K+>F0ϑۋZgc*7vޒ|=NѲnn$[g/ <ꍔ ya5>F(etZE|ɤ1XӰ 𼊈[~Ct5z-TTM9 ٱ=4W|Vnt;pOIRF*#-G3v7ܭB(e[o8$~dAv}Iӡ&2[ÓUςd qN a{be~K9YZmϙujOk4%OԺ2JZ{᥂]D9? ErJOIii 3)c$lʅ,1uiq?w4-XaeH1Q8TBHưuU5kq33iۼ{Ij±lA&=Ȏ@2e=ū֪+]DOFYLOO3Kb;WgOc;͎C=s f,1՘Uo OR!:C;k#|rN[Dv)wj,,Z&6آC4 ;qϮ/QgpmZ5{y' m7؎bIA7,w/ύD)K!Z.$~(40%f<4{%!&,ha;WUm?ZDKr-MLtZ (6;K4*~HM`dLY?8E3=Џ-)_@5߅"5 3W,Ʒl]"` Y1T V %Xeq&ܟ_J1!V"/ҼGY3xkbzPku&@/ti qo UoY!T6qkݸ`-\㥄uFhX`uKf)t90![wZm"1v7\`际&q>6i.H@1aBLT_<֚}F5O]6(dt[ҀȡOV'{, 1SXOg6 e>b(*>[.ֱAxuDF[X2#PU,~gU΀X02MS~PU1TPT[%~if;Ecs.qL{Hnwݦ" e٤ sR,8XU- ,ߏ \+X,yuSKK!+Xlހ%EMϼz^ 3>j 'X_(w]RBjyB4btiVɩm.@Й9MLS^zw_nt#>U1*@lF `yrsvFEc!/l _@w!T3$7;2y+clS p4c^ yh0xN rKPnB .'u,?_[YZ}-iˋ$&әQD{Cb dީt#|| h(+Dx4Q41.GvǿvIFk C_uBvpU\qz;>2)Esaϗ~!>,rۗʗ&ÕI.c WVN٠.y3ǥhwˣͽ%8_B«@pV[Hz?]FQ9#UVļ-?7Zh(i=~523|Š7 BЕK-|%֐HǗVgb'Ǹf_ PBlis+:WRY5(ԫDԎ ryh` HㄵDox}.Pޕe/gTc; rWz|#.Vi&–+zQZxdqpz#((" U1`EF5ؙk˟{?*278ې|^(yuHa`$S2X93R jqZEtcʍ?V M V堁tø!xOĭ.qR*WШgPUXdw#:yv 9B`5 xdTDߩ'![#B odtSR"|q`c腩b A3UU!V`qk3%)`pg,AtKu%gRn-!ԕ#I^aė)}wC dz ¨Qmj11ulsb@Oa_$,zcAE\QR[}!DqTReF.0&Q9cs?<:O u !zwG[OZ?TR7Ǝ{sIun_eg4D{c~[+>'Wϧ ?uMkN DuWMjPSqoC̫O.'J6BS+Y)X5SwM-*<:>Vgtk>2T4okpoUY{& rflK2qD0oH^ů K. SUoeUhЕVj'j_TLPG&4 @_{ 87'`Dm9~~PSPxJ3Y;yIѧz\y7Y}C@.n#bkƱңMm]5U]1/R80^wHYC\#''B )qIfToz۵KUzwEz/43"Tz^4Y i2Wd`fHHd\I\ :,A>hmU A._¸ o~IxcUhM@oYPב̾I|829qTڹnn+p筗`a2յEN p2"= [T54_5f?so ,v6)?fF.'aZ}]6,+ٸHޓ4Ijlo|1XL[!qn8Q26 D>7XRA2 &nNr2i7hĩj`ϊʹ-_ #F=Y੊nj* ]<=̞JJݜщ(7SvhB1MŃfٌtFݖ@.^#Fo t-:;'Af YL8ݷ;'ɋi}l$4s7q2w1LgJ8]lE~u&nGӖTMj⻈MƉkF4 q?vL<`1Evn g5YM!G^ǶBaM/+-o1Kz*9Py>d,}Hx 7QЦ6f# SUvAg=|65W( tyMZRP3ѭ)likHuVz1i@Qyg7?#Z[7JXCNFvԧy [V%3)̒ZN S%lEïwBy;In*$A\D.A]'78ݷNz_oiau#zp`r8߽ 1삕]F+t/[5v/v˛Lq)Qw~EkԯjFCѸx+ ++G1cb:OImDs%{'9r5QrPUY,( <5qH=})$?ixaտrWeSYր%60AȪWϨC&Dd/_"[Ă4]WmQC૤z27ÖkRiQ?k.3}xC\h t0~i 0?͏p u?p(%kWIR˗>[LR@>;sLV3r䆻i:5Si r0Ypg;+Z? f$v&dždP6 lSU (˿`oS{h> )xAPsu䘔iSfhBwWVȵOZ,(V4P /$φd)<Qax0I *d&s.$cC=w`'C$4%0FugA6LYTA+ꄍ(뻮IT+ %6b|~~>Pxx0;K:nA{+3nZU6r%x!B8csaZL09nK lC\x&Z?hb3?1$^]nHԀblFRw'2?.*TBZr B)CU02'_;e )8{h_w^"UajHɧ }[?7=S )g;Ϲ`Yw0w,oV\cC VdU" 0twzWnS9uޭh1Xw #!ҊqqJ +_2? w#] GÙ2yEcgXYQnU6IXԊǯh*ygnGwO&?ƞ683 < ` l'y{k6HN.퓽/0!Җ7 ʋw*'lj97"7,@:kRӺh`wlIg5 ħe;Z@HP|U,X *~c>YunP92 tɠ8tP՚b ^%=D9?c2N 5*6W3?SGoTHj`t=|*V 7ME:؋``{vcboqdϟ;juɳLkgSH+[0ʫSԌN`c˂ x'wX)3Z]ȋ= *c|ɕj+yK?A'I|jQ?ͷB}75h }~Z1v: ^"[>YOe0ju>r>qDs׈I?8C7o^Hʌx pȒ)kOU8 Eo?aV6 -a yb2H3*whY#A*H3kV0H OMa,`_;^1xBcTp;U^ T쯨"ryL'tzvlnk攗u0l9*RGgEz"ȈXcLz7]Vڱ v#5XM.7rw8?YcW;N_=uQ)z[HRi;ߞNՙ Wβ˙|,S@d`c+`zڈ("AlKe8T4@S.RgXxgלv^9p]:iTJxS1f}#Z;ZLaZ < Eۦ;6Wb- E?6j*jgԍrqIc0<8 <<Vx쀕 t:'q:6oBYQ݄ޯ?`$,A|xf_E7؁@4O$ PzPKvbq(etzVNʌ|"y4^ŭ~yV'{$$O «q=;1p fV>T+RH:2'F}T*\!Goc§\96&Eu) NKbǂ^@oJ5ވ$FH}!>`Q5CO="lSg㜓!dJ 7wXz9' pl/DEjaĂB)Y]_6YzDe(9 ^y82>"EDcFI1<kL*ZfA!Tx~k@-KlLH{j6Ozp|.=-g Lq2B*Y<#P\-$d$%0z]K`G0 jfo˘턘JS+溱;Ŧ]|dr!ԄeЛO0K1q^EGuRSP}i}ցBMdG7HG5!1Εd}@Su>zc˶K F8 z"厎2 2X?A1Wx: n~5Oe8G'$ߛi_^_`D|JUg:jаݓ78qY\#ߪ4nE?Y1t} H!i3VFk@I8܃d[`hg݇~)ԬK)ϴZ.~vưDC7z@2|DM)Puׂz+EUn,(G 5b<.f1BAfbG4W<(,vg3l;AdhŲXH4Ff=7u"į < Q*U $ܙaF(Zd}L巚ʼ:)Gh(5`oV[4<ș$ 3oYP)XS~2q{/P۾! $$q}S? &b$__4s2;#BZoڸz 2ok+)i$'eŨC X5 و8Bc% yNa1Q?,#OpWP|AZ$yC5"PVQԼ:6Ws鱺2sڗ7ΣB'.NqB8B0՝};zNשR]օI[9XakJ1d#>nڊ vۖ3wxBiaGW6X ^ω4 QarDMYFR+ ~g ⍱$ dn %rX ֖tzL6=oԵ1:CQ'pƛ5% ?_ ciPo ;2Mݚ,--p 4p-+b#;̯M z[c57p+a.F qy<Z5eY5BuM7=49Nѐ5ۛ$06f^e@VǀYd E l&e8h13Nװ۟}]QR ɒDghdxV!,3q둀;'F_C]Ꮽk{t\uvk$ 8wD'ױQx(5r;)P`\4Y&pZi:82:wlY+*)U+uH4`@LG%1@KZ3<ݽJxnfrc}m"34&.>^BMkG4? 8 n+Ψ֚9*4p_NB3Pmx[Tl`]=>hZdgȺ ryXApɑ&%>⻢@- ˨OA~{7|tlZ%J+ex)󐱼NaYӄd"˹zX0!c\g:u]f|.Py ]AL;>[Aj²Q׿z]keCf?f5*Œ6P4MqiɖPxZpU̢IJTjh-_Lc;Hw4gYy5I&Q+ɂ&>@7wfIR+\/ )/JڪfȌ`GgاG{!OpbCu6~GOA*Ht$[v5.$,-K<{vgk(FMa둳Ug,ܶSk6Awc$s};B*pId}tmt3kP/]0 A!TN5VR )y؆pPɋma 3w%.PkTBDaCSW(Z pl !@,vd]&L~Bddk;!_++$!BЖ oZ`lO5!V?g|fMQy3Sݯ3 wz`\J㽌u <] PZFUM8ݵ]Kqb/lif#9rH@1/>$`es~iuiH׆9F~c?!WN:#Zy5Mv4 B䌐fj[H^HhU8C?a kܞŢ^܆٠_ᨖ0YsBzMk[krLrxH $ZVq2ӘH"%4oX 8=bXYܼ| ͠7=PF '5o-@͓^-cs!8 x`)n5,A9ePDFeto=vo7 gvUeT}Phz"3ԏ3ʍNҭLglZ΂0֟ǭ9E]˨N+#.N% DQ ?2/Yx*Į^\% hNչ%!G(H@|˪vь&@[gq2$@ <4+m  )e RUs((Rdɿk_,EmP ^'Z&Hl{q$RU4˜Z8V$1^Y55#q\Rdayws qapҰ|G~C}9"%w2:_$?gsR=ׅ8z3lA2=FM[6=Npy0%=[:^NL(/ݜlu^"(".?.H ւ-kbZXaVw%wiHwy캼`vk:uɒ:: mu[m, n(İ55%2n -uG}r1ޕT} t5r&;Nl8*][u;_}SH} x>k?&+Сil6zSh+%X_M'tUIO w3J~;c]y,ʹb{/!ư-1 >1>Y6zP[ xkX4taw|J&IkbBHv_7IKGb|r?\4 7۫^K:SP/@><*y+ZG8`qN'$lTUvf@~ yqo0:ế 7h7) W|E[HO;A6< 1_$Fճz?p0_HPۙǷNXvEZ,uӕ>'MPUON4,+s~"7덪COt^#3L&TcYBMBlmq2M]qE5(0{4ZnR5V[gkբ+k+^N8 &$pǀe3mw mPcRuπXb/~̇' 4iYƩ+Y!t#5VeP@ P_Jq70p{^Aֶ18J*L32?Z\YMej4)D<KMyaЃf?Ve<FLS.~P 6&*ʹ3^ih4*,0T)$K!x*F}|u3AnKx%!e \%L@wsϛ-|ݒ+^8f0 aY$ٜȊGWc$>>K]V kBXIg!Og@)nt3R1)?+ST_nRfl(uQr؉f݁ ҽ|h#]}ZkH=}:tZRzqSٳOFK{@ɝLI=;^ 6؟ nܛ %>5[WWX'Mѐ X~=``]D*=a{B|gEf|ᬗS_iJ ~!؎]L}Ceሐ6r[]=/I:[{ڥ %;$b7WQr]j\lY "i1/ ͠uL4w^ԔSA'UDD]w*NN[s S᠑NƠaˈ9ctI79܄tkL(Sõ1AcmLx }Z Ip=ajF#' )6!# ;IұBn诀4̖I3 5&TұW =?t xHUE3l+p\όIOfSNu|>j^|30oFEb淙Ưc&3\y/A.Iè9gyjX3^AWqqzs#MFjEfA@u6/ڐH7A'Wr>.0O}pTz/-` *.筿}w۰_`h+{poK0(buΰvq#޳_3xb5])ẅuf6@ t].H+M+ޑ`'s44n8%B/K{y'`㋹&L^4fm(+E z_@;4VO}j1'1R_%`j<m`xly>?%CJ vxr;E> HAL6m!=9Y\0`ꬭT?pݣwe*.e3\sDGސ4H,X!;jMc/TQ[R|C2ĸ "3Ȏ&7o!Ss胠>ȉD$0]s7݁&ftu:&ǯZ:v6 R~Erh^ewkGGoXFB[b)i*ŀ? >'DrvBM EbALzo%Ԓ:f8x /`NlXq2 Әn?oY}H YV& iRD!ӄ09S/ ?v\t-W.F/qzap).-cI9pN|:+A,D h KFvb֕ +4z1Q;/iZp 1I^OVKW]:d4DrxM9 ##2< &)SpHI8NBASW;-y6%0WAOz؉D6-IB0|']4hN4?D9K#3Iadqxǃ,a/;}ht>OR~5'.Ѐ0C hFF%vkL]?DE2ݦ{7e9ijas4PZ}EQgWi{HUd@a05%K[S4_b(I sŝͩ-l|g79赪_'?l jh$ʽldlն Hc3e򷋹h+yu8@풣BP%@SttUjuǀ^dHCGpP-Hƨ aR8k*3Z44iΊG.UV]ێF ʲe]3uZӏ\'v0nwX/ Kwbr;GouzBh6-k~ogBPNڠ%Mˋj+Xp4͟Ae^TPyi95M`c J:l 3H/N>a^+p1pnI뢖WO'xvAuB:dK#VKJSm"u(qV\blhQ~%NհZ׬=Kby:MjN9doH:6~??|Wacyτl;"? w]<熆`ʭ8O ǹþee a+,'~{:%@i}T\ă XYN0iL:t5Ct߿.K*."| 8kK*݋ ͈/kxBqJ0%ϰ匎=k1q $x%KogMG̟cؼtQ掯ݥd=|L<4Ee\HM_@RC/l]$Hc,C`gAܡsxr{Uӆb}Gydl}Js%FZD~ {ӃIr!tʽϻdH=6h z;%3b)ECqrPuD4nnVHYDDox "v3.@.xojBF֚ .II-zˋdxH2/adC-5Uܠ<.Llj0\Զ3s\ }IQT7_LN՞N?󦆭XGڃ CLl&)j\~G׭3#dRh1N>Ks? sJg"kzaV1ىę#WDr]X*Iqw5zoi ^C EWs6;\G "B#H䣿FX\C78G~8HRܧf*B 딕AͼkULc6rlgWA˙kyPőd:n@S8< <w[-Jsw\٣:3k{-?$иgt} p%\OL dw'* .W8@Xv2fx.b 4rJHBPV'K}6[@AC ܾt '/tү\ ~nAjegR!GU|4l1Ջ/~V h@\#*s -|ERni<#_Ra<08G xO^޿vYΕ!Q^>dz)/J͜d:.HF bg> Y]̓;S-`M#zS)C܎ޙZ( g%@YqZP(bzbkB$vA@T"2{٧r{WJ N^&QI-tzRfpͺ03CcE(k6a}SctĎxtb x'B("c)QvҼ'[z1V5dBT7UfSBa=y|Bsy@^[jA= k _7 zO=:>750rQC$%hcdlj.ôy:FCZ.k|?X^wYǘ`UV;C`A~7+?w_q? {fJa[ k 0 U.$CZ]jd]j{B,7rDmERT5HsD XYWQ:br[lU}c5 ѕQ 7f:F0&{xžӷx  zx3(0I \>$up_3r|"Hȼr'H +sR]iʨN?z2?$yH& EX=_(5%}pԼ r}DnmW5̱0Ŋv?I3i#NOq'5`)퇍;kfjAw2aUPg?NwpU`z;d+2_?..g{l.#ME,8v'b9̆c8zL o 0A)B F9eT["ԩ|jf/N%<yPg^ S pG|1zK,KzQ!A<OB!;2g v4V$e%;xh>/_3- ;XGe3*}2}Z'=˱.T}8)#`nShu/ݐ?ODip^#ş<]x橏K_x_ S< o2uuR]?u?6LkY~qP(_q emyګ$txA`C%Nj :m 'p`2G.?$π#qL~1љmR$N[͐cd.8g WW(tSx/. 5{FL݇ %)8y΄_z1\VeYo1Y9G"~&9Gh|P!_G1fm L is^gb-Bişi83j@Roݟhtvőg*lOm1T=dֈ<6cɬ9, EސQGt}^rBK桝e9L'Ŕ48a{.2mN*pXQS8]Fs <*OOǥk׆OD$.A敉̍.$4&/az!PVu(ta6G þ`IE/3r=-CЀ@ ōnS*uha 8jUMpegxĿ8&5mS>B~0-qw9%~XLp;`MKlKC-sV@"/IפEve]>.ŝسKbPbU o8B[_"W.o,Z%E0ϜY!i: YG )D|YL%xsb'^b$eK8U8}" .<}U!?# ^ 5ef,RQ_FM^+fdIK+$rr`p}A)*?Puļ餎5lpLSiUrЫWYw#z/m|:-D|[qO<Ա³(HEH.t{D Tt#㱗xUNMDq~oDh짋9R%PvSP9R$o7.h(} [kⷬ}>[zAf»tsb{HNӹԎ彻FG(H \1 QCDJRвѼ#Up⫆!~O+54rKd&x$}%h^?TgeAs^*3*U2E7E47N?8ֿ71-<6Ƣ:#H%|jfdP\Uq%arV,zU9:C~+wYA6 nTiUS[UIU%b/ewYKϗhvd2W%1jh\MED7̥, %(GU(ƃ:Ґ)6Wh 'f@m HG9mWڞ{FIMʝw\֡L -wt,P]Y;yixZ&XfԞ cU57=i q.M:ͪ SklnYwFЬ]LǓYr95`nGBpqs5i{dƃk_msI֪Cӧ+8js9ޏ'C%iJ R͋:6=4LWyi E3-Jbڱӌ5x˷5Ȋ_͎ir{.@\"UtNHG&Յȧdݺn=2ast;dnpvPZ`0(l^-c:liq+lcs1NW9*jvd^ }wM c3'Be,K'_y :/bZ38 u"zL{TɹP]VfI:V "s]U!^OpޘO%9ji')&tl]zXwV̬^`,O=@%Nwk[Sҋ|$NACoۼf{c#D8V$ l+7iMR>Rc`Jc;րD6$Lw 5Y:SB-Ybh=IC"Bj+xٝCے2Df\yηF2|Mc[K6t%.#Tz܆dQݿK\Mܖ(汤K~IO -ؽMyD+#Am˴qگ^ʎŚFu营yʏP(2|4b ̓ʊ ,JU4یyNA+vY[ uDC-1ٸ{WU"? %ϑ=$CH RgaDåBޯZ,@SǠ4d4<9;V]#]~݀ mNVc #ӌ |.p1s}| 2 Ɖ5bPӹ\Xgc)ʱ.c"2Pn.0ILIDe~zC4@YM*12s¬neAT1ƎlF҃p-;8н!¤W7dA|rɎ{n>vy!YdJF.ʰ58/\D$>lFU|Ƙgrr2s4ciUI|m.sD9l߳-7rYגq7V[,<&.YSۓR 5*"iP/OCn9Տڱ'ĈN3XrPT!ﺎ"ܘ_Β$H{(TH#(k5vN}˸i:':n35[V"h:߅孿6v5[|vF> ߞ B^3`q\ϖVOf1 mwG_UE߅?N7{6=*ܞ ;˛db)`pz|,zIٓЈwa溥sjO`ʋG+U^'roX &oLusT]Sr , F[Ś֠B7|^umܴ&]7_Ũd A+j-CWr@pI'c~<_:_B[hoh(B {_ GmP25/q98›N(OQvK=(f.掁e>i|n[FvCbx#ɾ~sC -qqm Mkީ^biwdĮaQkie2upKɵjxT~KcnxwLd&LdАy{ݘV:/%J=3Ao ~A; d5v.sA{6*M̂ <*ƘBEX_VC>}uR dLhc?&/,Ԇd2/ս=Mu*}0|,Ȝh!.#8YZM(XkO? YZ