nss-util-3.79.0-5.el8 >  A b IU]Vs3PrNN^䣇#x-ʍh.h~9l@>!-n=pCN}q7}E&c:ӼDoWT6)>H 4q>6]Vm 4ddԜsڏ^.q%y!*;4RrlrZ("}e iq;5lr քdLfaWE+ zzT.(}ie !hX~kvN3)[UOځOfPdns] 6 tϣg3c>wt/-V#u2I&Yp!D|D|J- 6WUhEFGE#_hF+N3滠edsY8IHu ,]`qgraCXηPΔd?̎Ks9(DŽf7 Xqb}XPlwdf97a79fcb41113fd575c8da18b561886a2e62fd28b38bf044364778e6716e5cee81b62e83349d248a317d5b59c038b4b86a71b0ĉb IU]G4Ik?Qifzq궪7")7ͭĶ"XJOqN[Nͩ$/݀#CdVe9-?ko)*^=mb%r3YyW *L6A@>J=ͯ} Q\I.+䵨"d |`5W+C_s RޭoA1<Ξ:-@ ]2]n%8(N¾`E:ɇ^Di@rp<?d   D  (@ L X p   8Vt$l(H8P9:\G4HLIdXlY\]^Pbdeflt8uPvhw x$y<Cnss-util3.79.05.el8Network Security Services Utilities LibraryUtilities for Network Security Services and the Softoken moduleb|x86-02.mbox.centos.orgndCentOSCentOSMPLv2.0CentOS Buildsys Unspecifiedhttp://www.mozilla.org/projects/security/pki/nss/linuxx86_64$'FAAA큤bybybybbybNYea347820873ccec744119d1c35a1f3d2386e1ea2715c56139e83fc8aaf2c7d40a20c1a32d1f8102432360b42e932869f7c11c7cdbacf9cac554c422132af47f4../../../../usr/lib64/libnssutil3.sorootrootrootrootrootrootrootrootrootrootrootrootnss-3.79.0-5.el8.src.rpmlibnssutil3.so()(64bit)libnssutil3.so(NSSUTIL_3.12)(64bit)libnssutil3.so(NSSUTIL_3.12.3)(64bit)libnssutil3.so(NSSUTIL_3.12.5)(64bit)libnssutil3.so(NSSUTIL_3.12.7)(64bit)libnssutil3.so(NSSUTIL_3.13)(64bit)libnssutil3.so(NSSUTIL_3.14)(64bit)libnssutil3.so(NSSUTIL_3.15)(64bit)libnssutil3.so(NSSUTIL_3.17.1)(64bit)libnssutil3.so(NSSUTIL_3.21)(64bit)libnssutil3.so(NSSUTIL_3.24)(64bit)libnssutil3.so(NSSUTIL_3.25)(64bit)libnssutil3.so(NSSUTIL_3.31)(64bit)libnssutil3.so(NSSUTIL_3.33)(64bit)libnssutil3.so(NSSUTIL_3.38)(64bit)libnssutil3.so(NSSUTIL_3.39)(64bit)libnssutil3.so(NSSUTIL_3.59)(64bit)nss-utilnss-util(x86-64)@@@@@@@@@@@@     @libc.so.6()(64bit)libc.so.6(GLIBC_2.14)(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.3)(64bit)libc.so.6(GLIBC_2.3.4)(64bit)libc.so.6(GLIBC_2.4)(64bit)libdl.so.2()(64bit)libnspr4.so()(64bit)libplc4.so()(64bit)libplds4.so()(64bit)libpthread.so.0()(64bit)libpthread.so.0(GLIBC_2.2.5)(64bit)nsprrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)rtld(GNU_HASH)4.34.0-33.0.4-14.6.0-14.0-15.2-14.14.3ba@blbbb@a@@`E`ݮ@` @`ٹ`̊`9@`Ȗ@`D`r_@_^@___@__"@_"@_"@_!d_@_ L_ _@^^@@^@^ۅ@^4]N@]]߶]e@]M@]µ]L]]^@\F@\Q\\\\\\@\I\I\U@\ `\l@[[[u[#@[[W[O+[M@[ZZw@Z|;Zo Zo Zg#Z ZZZ@Y+@Y{YY@Yn@YV@Y@YyYm@Yg`YJ_Y1S@XX@XX @XXYX@X@XX~@Xx@XoX>@X*X@WW@Wt@W~Wv[@WrfWoWm WbWQq@WPWJWDB@W4p@W@Wo@W@VV޾V޾V@VяVIVɦV@V@V=@V@V@VO @VHsVEV3[V UYU@UU@U@U>Ua@Ug@U[%UUU @T@Ts@TTء@T@TÉ@TT@T@T?@T:m@T"@S@S<@S@S@S @SSSSpShS(5@S@SRy@RJ@R@RR@RSRR@Rm@Rg@RD!R@RRR|Q@Q*@QQ@QKQ@QQW@Qw@Q]k@QNQ9Q7/Q#@QQ @P!@PՠP @PqP@P@PAPXPd@Pd@PPP@PP5@PPnP;a@P(@P H@O;O;O@OiO@O@O}O~OiOYOX@OOdO&@O!@@OO@O@N>@N>@NNܲ@N`NؽNN@NuN;@Np@Nf @NA!@N*NpM@MWMc@MM@M@MMfH@M^_@MZjMS@MQ0@MQ0@MQ0@MQ0@MK@MGMF@M6@M-MM@Ls@LOLLZ@L6LdL@L*@L@LA@LL@L4Lx@Lx@Li(@Lf@L_L_LT@L0L0L K @KsKsKKCKCKCK]KMKLd@KD{@K<@K5K4@K,@K+nK*@K K@K@K@KJݦ@J - 3.79.0-5Bob Relyea - 3.79.0-4Bob Relyea - 3.79.0-3Bob Relyea - 3.79.0-2Bob Relyea - 3.79.0-1Bob Relyea - 3.67.0-7Bob Relyea - 3.67.0-6Bob Relyea - 3.67.0-5Bob Relyea - 3.67.0-4Bob Relyea - 3.67.0-3Bob Relyea - 3.67.0-2Bob Relyea - 3.67.0-1Bob Relyea - 3.66.0-2Bob Relyea - 3.66.0-1.1Bob Relyea - 3.66.0-1Bob Relyea - 3.53.1-17Bob Relyea - 3.53.1-16Bob Relyea - 3.53.1-15Bob Relyea - 3.53.1-14Bob Relyea - 3.53.1-13Bob Relyea - 3.53.1-12Bob Relyea - 3.53.1-11Bob Relyea - 3.53.1-10Daiki Ueno - 3.53.1-9Daiki Ueno - 3.53.1-8Bob Relyea - 3.53.1-7Daiki Ueno - 3.53.1-6Bob Relyea - 3.53.1-5Bob Relyea - 3.53.1-4Daiki Ueno - 3.53.1-3Daiki Ueno - 3.53.1-2Daiki Ueno - 3.53.1-1Daiki Ueno - 3.53.0-1Bob Relyea - 3.44.0-15Bob Relyea - 3.44.0-14Bob Relyea - 3.44.0-13Daiki Ueno - 3.44.0-12Bob Relyea - 3.44.0-11Daiki Ueno - 3.44.0-10Bob Relyea - 3.44.0-9Bob Relyea - 3.44.0-8Daiki Ueno - 3.44.0-7Daiki Ueno - 3.44.0-6Daiki Ueno - 3.44.0-5Bob Relyea - 3.44.0-4.1Bob Relyea - 3.44.0-4Daiki Ueno - 3.44.0-3Bob Relyea - 3.44.0-2Daiki Ueno - 3.44.0-1Daiki Ueno - 3.41.0-5Bob Relyea - 3.41.0-4Daiki Ueno - 3.41.0-3Daiki Ueno - 3.41.0-2Daiki Ueno - 3.41.0-1Daiki Ueno - 3.39.0-1.5Bob Relyea - 3.39.0-1.4Daiki Ueno - 3.39.0-1.3Daiki Ueno - 3.39.0-1.2Daiki Ueno - 3.39.0-1.1Daiki Ueno - 3.39.0-1.0Daiki Ueno - 3.38.0-1.2Daiki Ueno - 3.38.0-1.1Daiki Ueno - 3.38.0-1.0Kai Engert - 3.36.1-1.2Daiki Ueno - 3.36.1-1.1Daiki Ueno - 3.36.1-1.0Daiki Ueno - 3.36.0-1.0Fedora Release Engineering - 3.35.0-5Kai Engert - 3.35.0-4Kai Engert - 3.35.0-3Daiki Ueno - 3.35.0-2Daiki Ueno - 3.34.0-2Daiki Ueno - 3.33.0-6Kai Engert - 3.33.0-5Kai Engert - 3.33.0-4Kai Engert - 3.33.0-3Daiki Ueno - 3.33.0-2Daiki Ueno - 3.32.1-2Daiki Ueno - 3.32.0-4Kai Engert - 3.32.0-3Daiki Ueno - 3.32.0-2Fedora Release Engineering - 3.31.0-6Fedora Release Engineering - 3.31.0-5Daiki Ueno - 3.31.0-4Daiki Ueno - 3.31.0-3Daiki Ueno - 3.31.0-2Daiki Ueno - 3.30.2-3Daiki Ueno - 3.30.2-2Kai Engert - 3.30.0-3Daiki Ueno - 3.30.0-2Kai Engert - 3.29.1-3Daiki Ueno - 3.29.1-2Daiki Ueno - 3.29.0-3Daiki Ueno - 3.29.0-2Daiki Ueno - 3.28.1-6Daiki Ueno - 3.28.1-5Daiki Ueno - 3.28.1-4Daiki Ueno - 3.28.1-3Daiki Ueno - 3.28.1-2Daiki Ueno - 3.27.2-2Daiki Ueno - 3.27.0-5Kai Engert - 3.27.0-4Daiki Ueno - 3.27.0-3Daiki Ueno - 3.27.0-2Daiki Ueno - 3.26.0-2Elio Maldonado - 3.25.0-6Elio Maldonado - 3.25.0-5Elio Maldonado - 3.25.0-4Elio Maldonado - 3.25.0-3Elio Maldonado - 3.25.0-2Kamil Dudka - 3.24.0-3Elio Maldonado - 3.24.0-2.3Elio Maldonado - 3.24.0-2.2Elio Maldonado - 3.24.0-2.1Elio Maldonado - 3.24.0-2.0Elio Maldonado - 3.23.0-9Elio Maldonado - 3.23.0-8Elio Maldonado - 3.23.0-7Elio Maldonado - 3.23.0-6Elio Maldonado - 3.23.0-5Elio Maldonado - 3.23.0-4Elio Maldonado - 3.23.0-3Elio Maldonado - 3.23.0-2Elio Maldonado - 3.22.2-2Elio Maldonado - 3.22.1-3Elio Maldonado - 3.22.1-1Elio Maldonado - 3.22.0-3Elio Maldonado - 3.22.0-2Fedora Release Engineering - 3.21.0-7Elio Maldonado - 3.21.0-6Michal Toman - 3.21.0-5Elio Maldonado - 3.21.0-4Elio Maldonado - 3.21.0-3Elio Maldonado Batiz - 3.21.1-2Elio Maldonado - 3.20.1-2Elio Maldonado - 3.20.0-6Elio Maldonado - 3.20.0-5Elio Maldonado - 3.20.0-4Elio Maldonado - 3.20.0-3Elio Maldonado - 3.20.0-2Elio Maldonado - 3.19.3-2Elio Maldonado - 3.19.2-3Kai Engert - 3.19.2-2Kai Engert - 3.19.1-2Kai Engert - 3.19.0-2Kai Engert - 3.18.0-2Elio Maldonado - 3.18.0-1Elio Maldonado - 3.17.4-5Till Maas - 3.17.4-4Elio Maldonado - 3.17.4-3Elio Maldonado - 3.17.4-2Elio Maldonado - 3.17.4-1Ville Skyttä - 3.17.3-4Elio Maldonado - 3.17.3-3Elio Maldonado - 3.17.3-2Elio Maldonado - 3.17.3-1Elio Maldonado - 3.17.2-2Elio Maldonado - 3.17.2-1Kai Engert - 3.17.1-1Kevin Fenzi - 3.17.0-2Elio Maldonado - 3.17.0-1Fedora Release Engineering - 3.16.2-4Elio Maldonado - 3.16.2-3Tom Callaway - 3.16.2-2Elio Maldonado - 3.16.2-1Elio Maldonado - 3.16.1-4Fedora Release Engineering - 3.16.1-3Jaromir Capik - 3.16.1-2Elio Maldonado - 3.16.1-1Elio Maldonado - 3.16.0-1Elio Maldonado - 3.15.5-2Elio Maldonado - 3.15.5-1Elio Maldonado - 3.15.4-5Elio Maldonado - 3.15.4-4Elio Maldonado - 3.15.4-3Peter Robinson 3.15.4-2Elio Maldonado - 3.15.4-1Elio Maldonado - 3.15.3.1-1Elio Maldonado - 3.15.3-2Elio Maldonado - 3.15.3-1Elio Maldonado - 3.15.2-3Elio Maldonado - 3.15.2-2Elio Maldonado - 3.15.2-1Elio Maldonado - 3.15.1-7Elio Maldonado - 3.15.1-6Elio Maldonado - 3.15.1-5Elio Maldonado - 3.15.1-4Elio Maldonado - 3.15.1-3Elio Maldonado - 3.15.1-2Elio Maldonado - 3.15.1-1Elio Maldonado - 3.15-5emaldona - 3.15-4emaldona - 3.15-3Elio Maldonado - 3.15-2Elio Maldonado - 3.15-1Elio Maldonado - 3.15-0.1.beta1.2Elio Maldonado - 3.15-0.1.beta1.1Kai Engert - 3.14.3-12Kai Engert - 3.14.3-10Kai Engert - 3.14.3-9Elio Maldonado - 3.14.3-1Elio Maldonado - 3.14.2-2Elio Maldonado - 3.14.2-1Kai Engert - 3.14.1-3Elio Maldonado - 3.14.1-2Elio Maldonado - 3.14.1-1Elio Maldonado - 3.14-12Elio Maldonado - 3.14-11Elio Maldonado - 3.14-10Elio Maldonado - 3.14-9Elio Maldonado - 3.14-8Elio Maldonado - 3.14-7Elio Maldonado - 3.14-6Elio Maldonado - 3.14-5Elio Maldonado - 3.14-4Elio Maldonado - 3.14-3Elio Maldonado - 3.14-2Elio Maldonado - 3.14-1Elio Maldonado - 3.14-0.1.rc.1Kai Engert - 3.13.6-1Elio Maldonado - 3.13.5-8Elio Maldonado - 3.13.5-7Fedora Release Engineering - 3.13.5-6Elio Maldonado - 3.13.5-5Elio Maldonado - 3.13.5-4Elio Maldonado - 3.13.5-3Elio Maldonado - 3.13.5-2Elio Maldonado - 3.13.5-1Elio Maldonado - 3.13.4-3Elio Maldonado - 3.13.4-2Elio Maldonado - 3.13.4-1Elio Maldonado - 3.13.3-4Elio Maldonado - 3.13.3-3Elio Maldonado - 3.13.3-2Elio Maldonado - 3.13.3-1Tom Callaway - 3.13.1-13Elio Maldonado - 3.13.1-12Fedora Release Engineering - 3.13.1-11Elio Maldonado - 3.13.1-11Elio Maldonado - 3.13.1-10elio maldonado - 3.13.1-9Elio Maldonado - 3.13.1-8Elio Maldonado - 3.13.1-7Elio Maldonado - 3.13.1-6Elio Maldonado - 3.13.1-5Elio Maldonado Batiz - 3.13.1-4Elio Maldonado - 3.13.1-2Elio Maldonado - 3.13.1-1Elio Maldonado - 3.13-1Elio Maldonado - 3.13-0.1.rc0.1Elio Maldonado - 3.12.11-3Kai Engert - 3.12.11-2Elio Maldonado - 3.12.11-1Elio Maldonado - 3.12.10-6Michael Schwendt - 3.12.10-5Elio Maldonado - 3.12.10-4Dennis Gilmore - 3.12.10-3Elio Maldonado - 3.12.10-2Elio Maldonado - 3.12.10-1Elio Maldonado - 3.12.10-0.1.beta1Elio Maldonado - 3.12.9-15Elio Maldonado - 3.12.9-14Elio Maldonado - 3.12.9-13Elio Maldonado - 3.12.9-12Elio Maldonado - 3.12.9-11Elio Maldonado - 3.12.9-10Elio Maldonado - 3.12.9-9Fedora Release Engineering - 3.12.9-8Elio Maldonado - 3.12.9-7Christopher Aillon - 3.12.9-6Elio Maldonado - 3.12.9-5Elio Maldonado - 3.12.9-4Elio Maldonado - 3.12.9-3Elio Maldonado - 3.12.9-2Elio Maldonado - 3.12.9-1Elio Maldonado - 3.12.9-0.1.beta2Elio Maldonado - 3.12.8.99.2-1Elio Maldonado - 3.12.8.99.1-1Elio Maldonado - 3.12.8-9Elio Maldonado - 3.12.8-8Elio Maldonado - 3.12.8-7Elio Maldonado - 3.12.8-6Elio Maldonado - 3.12.8-5Elio Maldonado - 3.12.8-4Elio Maldonado - 3.12.8-3Elio Maldonado - 3.12.8-2Elio Maldonado - 3.12.8-1Elio Maldonado - 3.12.7.99.4-1Elio Maldonado - 3.12.7.99.3-2Elio Maldonado - 3.12.7.99.3-1Elio Maldonado - 3.12.7-3Elio Maldonado - 3.12.7-2Elio Maldonado - 3.12.7-1Elio Maldonado - 3.12.6-12Elio Maldonado - 3.12.6-11Elio Maldonado - 3.12.6-10Elio Maldonado - 3.12.6-9Dennis Gilmore - 3.12.6-8Elio Maldonado - 3.12.6-7Elio Maldonado - 3.12.6-6Elio Maldonado - 3.12.6-5Elio Maldonado - 3.12.6-4Elio Maldonado - 3.12.6-3Elio Maldonado - 3.12.6-2Elio Maldonado - 3.12.6-1.2Elio Maldonado - 3.12.6-1.1Elio Maldonado - 3.12.6-1Elio Maldonado - 3.12.5-8Elio Maldonado - 3.12.5-5Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1.13.2Elio Maldonado - 3.12.5-1.13.1Elio Maldonado - 3.12.5-1.13Elio Maldonado - 3.12.5-1.11Elio maldonado - 3.12.5-1.9Elio Maldonado - 3.12.5-2.7Elio Maldonado - 3.12.5-1.6Elio Maldonado - 3.12.5-1.5Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1Elio Maldonado - 3.12.4-14.1Elio Maldonado - 3.12.4-13.1Elio Maldonado - 3.12.4-13Elio Maldonado - 3.12.4-12Elio Maldonado - 3.12.4-11Elio Maldonado - 3.12.4-10Elio Maldonado - 3.12.4-8Elio Maldonado - 3.12.4-6Elio Maldonado - 3.12.4-5Elio Maldonado - 3.12.4-4Elio Maldonado - 3.12.4-3Elio Maldonado - 3.12.4-2Elio Maldonado - 3.12.4-1Elio Maldonado - 3.12.3.99.3-30Elio Maldonado - 3.12.3.99.3-29Elio Maldonado - 3.12.3.99.3-28Elio Maldonado - 3.12.3.99.3-27Elio Maldonado - 3.12.3.99.3-26Elio Maldonado - 3.12.3.99.3-25Warren Togami - 3.12.3.99.3-24Elio Maldonado - 3.12.3.99.3-23Elio Maldonado - 3.12.3.99.3-22Elio Maldonado - 3.12.3.99.3-21Elio Maldonado - 3.12.3.99.3-20Elio Maldonado - 3.12.3.99.3-19Elio Maldonado - 3.12.3.99.3-18Elio Maldonado - 3.12.3.99.3-16Dennis Gilmore - 3.12.3.99.3-15Dennis Gilmore - 3.12.3.99.3-14Dennis Gilmore - 3.12.3.99.3-13Dennis Gilmore - 3.12.3.99.3-12Elio Maldonado+emaldona@redhat.com - 3.12.3.99.3-11Elio Maldonado - 3.12.3.99.3-10Dennis Gilmore - 3.12.3.99.3-9Elio Maldonado - 3.12.3.99.3-7.1Fedora Release Engineering - 3.12.3.99.3-7Elio Maldonado - 3.12.3.99.3-6Elio Maldonado - 3.12.3.99.3-5Elio Maldonado - 3.12.3.99.3-4Kai Engert - 3.12.3.99.3-3Kai Engert - 3.12.3.99.3-2Kai Engert - 3.12.3-7Kai Engert - 3.12.3-4Kai Engert - 3.12.3-3Kai Engert - 3.12.3-2Kai Engert - 3.12.2.99.3-7Kai Engert - 3.12.2.99.3-6Kai Engert - 3.12.2.99.3-5Kai Engert - 3.12.2.99.3-4Kai Engert - 3.12.2.99.3-3Kai Engert - 3.12.2.99.3-2Kai Engert - 3.12.2.99.3-1Fedora Release Engineering - 3.12.2.0-4Kai Engert - 3.12.2.0-3Dennis Gilmore - 3.12.1.1-4Kai Engert - 3.12.1.1-3Kai Engert - 3.12.1.1-2Kai Engert - 3.12.1.0-2Kai Engert - 3.12.0.3-7Kai Engert - 3.12.0.3-6Kai Engert - 3.12.0.3-3Kai Engert - 3.12.0.3-2Kai Engert - 3.12.0.1-1Jesse Keating - 3.11.99.5-2Kai Engert - 3.11.99.5-1Kai Engert - 3.11.99.4-1Kai Engert - 3.11.99.3-6Kai Engert - 3.11.99.3-5Kai Engert - 3.11.99.3-4Kai Engert - 3.11.99.3-3Kai Engert - 3.11.99.3-2Kai Engert - 3.11.99.3-1Kai Engert - 3.11.99.2b-3Kai Engert - 3.11.99.2b-2Kai Engert - 3.11.99.2-2Kai Engert - 3.11.99.2-1Kai Engert - 3.11.7-10Rob Crittenden - 3.11.7-9Kai Engert - 3.11.7-8Bob Relyea - 3.11.7-7Kai Engert - 3.11.7-6Kai Engert - 3.11.7-5Kai Engert - 3.11.7-4Kai Engert - 3.11.7-3Kai Engert - 3.11.7-2Kai Engert - 3.11.5-2Kai Engert - 3.11.5-1Bob Relyea - 3.11.4-4Kai Engert - 3.11.4-1Kai Engert - 3.11.3-2Kai Engert - 3.11.3-1Kai Engert - 3.11.2-2Jesse Keating - 3.11.2-1.1Kai Engert - 3.11.2-1Kai Engert - 3.11.1-2Kai Engert - 3.11.1-1Kai Engert - 3.11-4Jesse Keating - 3.11-3.2Jesse Keating - 3.11-3.1Ray Strode 3.11-3Christopher Aillon 3.11-2Christopher Aillon 3.11-1Christopher Aillon 3.11-0.cvs.2Christopher Aillon 3.11-0.cvsKai Engert Rob Crittenden 3.10-1- FIPS 140-3 changes - Reject Small RSA keys, 1024 bit keys are marked as FIP OK when verifying, reject signature keys by policy - Allow applications to retrigger selftests on demand.- Fix pkgconfig output- NSR Coverity fix changed selfserv from passive to active, change it back- Fix regressions found in test suites.- Rebase to NSS 3.79 - Set FIPS Module ID - skip attribute verification on attributes with default values - don't export trust objects if they are default trust objects from dbm - add dbtool to nss-tools- Fix CVE 2021 43527- Fix ssl alert issue- Fix issue with reading databases that were updated using unpatched versions of nss- Better fix for the sdb timeout. The issue wasn't a race, it was the sqlite timeout waiting to begin a transaction under heavy thread usage.- Fix sdb race condition- Fix coverity issues- Rebase to NSS 3.67- Restore old pkcs12 defaults.- build nss for older nspr so we can pass gating with the new nspr in the build root- Rebase to NSS 3.66- Fix various corner cases with ike v1 app b support.- Fix the following CVE - CVE-2020-12403 chacha-poly issues - CVE-2020-12400 constant time ECC. - CVE-2020-6829 constant time ECC.- Revert some policy changes the generate ABI runtime issues.- Add support for enable/disable in policy. Now if your policy file has disallow=x enable=y it will act just like our other libraries.- Add OAEP interface so applications can wrap keys with RSA-OAEP rather than RSA-PKCS-1.- fips need to reject small primes even if they are approved - code to autodetect whether or not to use the cache needs to do so in a way that doesn't mess with filesystem negative file caching. - add kdf selftests- Fix issue with upgradedb where upgradedb expects standard to generate dbm databases, not sql databases (default in RHEL8)- Disable dh timing test because it's unreliable on s390- Explicitly enable upgradedb/sharedb test cycles- Disable Delegated Credentials for TLS- Fix attribute decryption issue where the private key components integrity check on private attributes where not being checked.- Update nss-rsa-pkcs1-sigalgs.patch to the upstream version- Include required checks for dh and ecdh key generation in FIPS mode.- Add better checks for dh derive operations in FIPS mode.- Disable NSS_HASH_ALG_SUPPORT as well for MD5 (#1849938) - Adjust for update-crypto-policies packaging change (#1848649) - Fix compilation with -Werror=strict-prototypes (#1843417)- Fix regression in MD5 disablement (#1849938) - Include rsa_pkcs1_* in signature_algorithms extension (#1847945)- Update to NSS 3.53.1- Update to NSS 3.53- Fix swapped CMAC PKCS #11 values. - Fix data alignment crash in CMAC.- Fix coverify scan issue- Fix endian problem in SP-800 108 code.- Install cmac.h required by blapi.h (#1764513) - Fix out-of-bounds write in NSC_EncryptUpdate (#1775913)- Add SP-800 108 Generalized kdf- Check policy against hash algorithms used for ServerKeyExchange (#1730039)- Add CMAC- CKM_NSS_IKE1_APP_B_PRF_DERIVE was missing from the mechanism list, preventing PK11_Derive*() from using it. Add gtests for the PK11_Derive interface for all the CKM_NSS_IKE*_DERIVE mechanism.- Backport fixes from 3.44.1- Add continuous RNG test required by FIPS - fipstest: use CKM_TLS12_MASTER_KEY_DERIVE instead of vendor specific mechanism- Rebuild with the correct build target- rebuild to try to retrigger CI tests- Fix certutil man page - Fix extracting a public key from a private key for dh, ec, and dsa- Disable TLS 1.3 under FIPS mode - Disable RSASSA-PKCS1-v1_5 in TLS 1.3 - Fix post-handshake auth transcript calculation if SSL_ENABLE_SESSION_TICKETS is set - Revert the change to use XDG basedirs (mozilla#818686)- Add ike mechanisms in softokn - Add FIPS checks in softoken- Update to NSS 3.44 - Define NSS_SEED_ONLY_DEV_URANDOM=1 to exclusively use getentropy - Use %autosetup - Clean up manual pages generation - Clean up %check - Remove prelink dependency, which is not available in RHEL-8 - Remove upstreamed patches- Update manual pages to reflect recent changes in commands- Make sure corresponding public keys are created when importing private keys.- Fix the last change - Add --no-reload option to update-crypto-policies to avoid unnecessary restart of daemons- Restore LDFLAGS injection when linking DSO- Update to NSS 3.41 - Consolidate nss-util, nss-softokn, and nss into a single source package- Fix the last commit- Support for IKE/IPsec typical PKIX usage so libreswan can use nss without rejecting certs based on EKU- Backport upstream fixes for rhbz#1649026, rhbz#1608895, rhbz#1644854 - Document PKCS #11 URI - Add warning when adding module with modutil while p11-kit is enabled- Update nss-dsa.patch to not advertise DSA signature algorithm - Update PayPal test certs for testing- Backport "DSA" keyword in crypto-policies- Update to NSS 3.39- Fix LDFLAGS injection when linking DSO- Install crypto-policies configuration file for https://fedoraproject.org/wiki/Changes/NSSLoadP11KitModules - Port enable-fips-when-system-is-in-fips-mode.patch from RHEL-7 - Use %ldconfig_scriptlets - Remove needless use of %defattr, by Jason Tibbitts- Update to NSS 3.38- Backport upstream addition of nss-policy-check utility, rhbz#1428746, includes required fixes for mozbz#1296263 and mozbz#1474875- Switch the default DB type to SQL - Enable SSLKEYLOGFILE- Update to NSS 3.36.1 - Remove nss-3.14.0.0-disble-ocsp-test.patch - Fix partial injection of LDFLAGS - Remove NSS_NO_PKCS11_BYPASS, which is no-op in upstream- Update to NSS 3.36.0 - Add gcc-c++ to BuildRequires (C++ is needed for gtests) - Make test failure detection robuster- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild- Fix a compiler error with gcc 8, mozbz#1434070 - Set NSS_FORCE_FIPS=1 at %build time, and remove from %check.- Stop pulling in nss-pem automatically, packages that need it should depend on it, rhbz#1539401- Update to NSS 3.35.0- Update to NSS 3.34.0- Make sure 32bit nss-pem always be installed with 32bit nss in multlib environment, patch by Kamil Dudka- Fix test script- Update tests to be compatible with default NSS DB changed to sql (the default was changed in the nss-util package).- rhbz#1505487, backport upstream fixes required for rhbz#1496560- Update to NSS 3.33.0- Update to NSS 3.32.1- Update iquote.patch to really prefer in-tree headers over system headers- NSS libnssckbi.so has already been obsoleted by p11-kit-trust, rhbz#1484449- Update to NSS 3.32.0- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild- Backport mozbz#1381784 to avoid deadlock in dnf- Move signtool to %_libdir/nss/unsupported-tools, for: https://fedoraproject.org/wiki/Changes/NSSSigntoolDeprecation- Rebase to NSS 3.31.0- Enable gtests- Rebase to NSS 3.30.2 - Enable TLS 1.3- Backport upstream mozbz#1328318 to support crypto policy FUTURE.- Rebase to NSS 3.30.0 - Remove upstreamed patches- Backport mozbz#1334976 and mozbz#1336487.- Rebase to NSS 3.29.1- Disable TLS 1.3, following the upstream change- Rebase to NSS 3.29.0 - Suppress -Werror=int-in-bool-context warnings with GCC7- Work around pkgconfig -> pkgconf transition issue (releng#6597)- Disable TLS 1.3 - Add "Conflicts" with packages using older Mozilla codebase, which is not compatible with NSS 3.28.1 - Remove NSS_ECC_MORE_THAN_SUITE_B setting, as it was removed in upstream- Add "Conflicts" with older firefox packages which don't have support for smaller curves added in NSS 3.28.1- Fix incorrect version specification in %nss_{util,softokn}_version, pointed by Elio Maldonado- Rebase to NSS 3.28.1 - Remove upstreamed patch for disabling RSA-PSS - Re-enable TLS 1.3- Rebase to NSS 3.27.2- Revert the previous fix for RSA-PSS and use the upstream fix instead- Disable the use of RSA-PSS with SSL/TLS. #1383809- Disable TLS 1.3 for now, to avoid reported regression with TLS to version intolerant servers- Rebase to NSS 3.27.0 - Remove upstreamed ectest patch- Rebase to NSS 3.26.0 - Update check policy file patch to better match what was upstreamed - Remove conditionally ignore system policy patch as it has been upstreamed - Skip ectest as well as ecperf, which are built as part of nss-softokn - Fix rpmlint error regarding %define usage- Incorporate some changes requested in upstream review and commited upstream (#1157720)- Add support for conditionally ignoring the system policy (#1157720) - Remove unneeded test scripts patches in order to run more tests - Remove unneeded test data modifications from the spec file- Remove obsolete patch and spurious lines from the spec file (#1347336)- Cleanup spec file and patches and add references to bugs filed upstream- Rebase to nss 3.25- decouple nss-pem from the nss package (#1347336)- Apply the patch that was last introduced - Renumber and reorder some of the patches - Resolves: Bug 1342158- Allow application requests to disable SSL v2 to succeed - Resolves: Bug 1342158 - nss-3.24 does no longer support ssl V2, installation of IPA fails because nss init fails- Rebase to NSS 3.24.0 - Restore setting the policy file location - Make ssl tests scripts aware of policy - Ajust tests data expected result for policy- Bootstrap build to rebase to NSS 3.24.0 - Temporarily not setting the policy file location- Change POLICY_FILE to "nss.config"- Change POLICY_FILE to "nss.cfg"- Change the POLICY_PATH to "/etc/crypto-policies/back-ends" - Regenerate the check policy patch with hg to provide more context- Fix typo in the last %changelog entry- Load policy file if /etc/pki/nssdb/policy.cfg exists - Resolves: Bug 1157720 - NSS should enforce the system-wide crypto policy- Remove unused patch rendered obsolete by pem update- Update pem sources to latest from nss-pem upstream - Resolves: Bug 1300652 - [PEM] insufficient input validity checking while loading a private key- Rebase to NSS 3.23- Rebase to NSS 3.22.2- Fix ssl2/exp test disabling to run all the required tests- Rebase to NSS 3.22.1- Update .gitignore as part of updating to nss 3.22- Update to NSS 3.22- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild- Resolves: Bug 1299040 - Enable ssl_gtests upstream test suite - Remove 'export NSS_DISABLE_GTESTS=1' go ssl_gtests are built - Use %define when specifying the nss_tests to run- Add 64-bit MIPS to multilib arches- Update %{nss_util_version} and %{nss_softokn_version} to 3.21.0 - Resolves: Bug 1284095 - all https fails with sec_error_no_token- Add references to bugs filed upstream- Update to NSS 3.21 - Package listsuites as part of the unsupported tools set - Resolves: Bug 1279912 - nss-3.21 is available - Resolves: Bug 1258425 - Use __isa_bits macro instead of list of 64-bit - Resolves: Bug 1280032 - Package listsuites as part of the nss unsupported tools set- Update to NSS 3.20.1- Enable ECC cipher-suites by default [hrbz#1185708] - Split the enabling patch in two for easier maintenance - Remove unused patches rendered obsolete by prior rebase- Enable ECC cipher-suites by default [hrbz#1185708] - Implement corrections requested in code review- Enable ECC cipher-suites by default [hrbz#1185708]- Fix patches that disable ssl2 and export cipher suites support - Fix libssl patch that disable ssl2 & export cipher suites to not disable RSA_WITH_NULL ciphers - Fix syntax errors in patch to skip ssl2 and export cipher suite tests - Turn ssl2 off by default in the tstclnt tool - Disable ssl stress tests containing TLS RC4 128 with MD5- Update to NSS 3.20- Update to NSS 3.19.3- Create on the fly versions of sslcov.txt and sslstress.txt that disable tests for SSL2 and EXPORT ciphers- Update to NSS 3.19.2- Update to NSS 3.19.1- Update to NSS 3.19- Replace expired test certificates, upstream bug 1151037- Update to nss-3.18.0 - Resolves: Bug 1203689 - nss-3.18 is available- Disable export suites and SSL2 support at build time - Fix syntax errors in various shell scripts - Resolves: Bug 1189952 - Disable SSL2 and the export cipher suites- Rebuilt for Fedora 23 Change https://fedoraproject.org/wiki/Changes/Harden_all_packages_with_position-independent_code- Commented out the export NSS_NO_SSL2=1 line to not disable ssl2 - Backing out from disabling ssl2 until the patches are fixed- Disable SSL2 support at build time - Fix syntax errors in various shell scripts - Resolves: Bug 1189952 - Disable SSL2 and the export cipher suites- Update to nss-3.17.4- Own the %{_datadir}/doc/nss-tools dir- Resolves: Bug 987189 - nss-tools RPM conflicts with perl-PAR-Packer - Install pp man page in %{_datadir}/doc/nss-tools/pp.1 - Use %{_mandir} instead of /usr/share/man as more generic- Install pp man page in alternative location - Resolves: Bug 987189 - nss-tools RPM conflicts with perl-PAR-Packer- Update to nss-3.17.3 - Resolves: Bug 1171012 - nss-3.17.3 is available- Resolves: Bug 994599 - Enable TLS 1.2 by default- Update to nss-3.17.2- Update to nss-3.17.1 - Add a mechanism to skip test suite execution during development work- Rebuild for rpm bug 1131960- Update to nss-3.17.0- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild- Replace expired PayPal test cert with current one to prevent build failure- fix license handling- Update to nss-3.16.2- Remove unwanted source directories at end of %prep so it truly does it - Skip the cipher suite already run as part of the nss-softokn build- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild- Replacing ppc64 and ppc64le with the power64 macro - Related: Bug 1052545 - Trivial change for ppc64le in nss spec- Update to nss-3.16.1 - Update the iquote patch on account of the rebase - Improve error detection in the %section - Resolves: Bug 1094702 - nss-3.16.1 is available- Update to nss-3.16.0 - Cleanup the copying of the tools man pages - Update the iquote.patch on account of the rebase- Restore requiring nss_softokn_version >= 3.15.5- Update to nss-3.15.5 - Temporarily requiring only nss_softokn_version >= 3.15.4 - Fix location of sharedb files and their manpages - Move cert9.db, key4.db, and pkcs11.txt to the main package - Move nss-sysinit manpages tar archives to the main package - Resolves: Bug 1066877 - nss-3.15.5 is available - Resolves: Bug 1067091 - Move sharedb files to the %files section- Revert previous change that moved some sysinit manpages - Restore nss-sysinit manpages tar archives to %files sysinit - Removing spurious wildcard entry was the only change needed- Add explanatory comments for iquote.patch as was done on f20- Update pem sources to latest from nss-pem upstream - Pick up pem fixes verified on RHEL and applied upstream - Fix a problem where same files in two rpms created rpm conflict - Move some nss-sysinit manpages tar archives to the %files the - All man pages are listed by name so there shouldn't be wildcard inclusion - Add support for ppc64le, Resolves: Bug 1052545- ARM tests pass so remove ARM conditional- Update to nss-3.15.4 (hg tag NSS_3_15_4_RTM) - Resolves: Bug 1049229 - nss-3.15.4 is available - Update pem sources to latest from the interim upstream for pem - Remove no longer needed patches - Update pem/rsawrapr.c patch on account of upstream changes to freebl/softoken - Update iquote.patch on account of upstream changes- Update to nss-3.15.3.1 (hg tag NSS_3_15_3_1_RTM) - Resolves: Bug 1040282 - nss: Mis-issued ANSSI/DCSSI certificate (MFSA 2013-117) - Resolves: Bug 1040192 - nss-3.15.3.1 is available- Bump the release tag- Update to NSS_3_15_3_RTM - Resolves: Bug 1031897 - CVE-2013-5605 CVE-2013-5606 CVE-2013-1741 nss: various flaws - Fix option descriptions for setup-nsssysinit manpage - Fix man page of nss-sysinit wrong path and other flaws - Document email option for certutil manpage - Remove unused patches- Revert one change from last commit to preserve full nss pluggable ecc supprt [1019245]- Use the full sources from upstream - Bug 1019245 - ECDHE in openssl available -> NSS needs too for Firefox/Thunderbird- Update to NSS_3_15_2_RTM - Update iquote.patch on account of modified prototype on cert.h installed by nss-devel- Update pem sources to pick up a patch applied upstream which a faulty merge had missed - The pem module should not require unique file basenames- Update pem sources to the latest from interim upstream- Resolves: rhbz#996639 - Minor bugs in nss man pages - Fix some typos and improve description and see also sections- Cleanup spec file to address most rpmlint errors and warnings - Using double percent symbols to fix macro-in-comment warnings - Ignore unversioned-explicit-provides nss-system-init per spec comments - Ignore invalid-url Source0 as it comes from the git lookaside cache - Ignore invalid-url Source12 as it comes from the git lookaside cache- Add man page for pkcs11.txt configuration file and cert and key databases - Resolves: rhbz#985114 - Provide man pages for the nss configuration files- Fix errors in the man pages - Resolves: rhbz#984106 - Add missing option descriptions to man pages for {cert|cms|crl}util - Resolves: rhbz#982856 - Fix path to script in man page for nss-sysinit- Update to NSS_3_15_1_RTM - Enable the iquote.patch to access newly introduced types- Install man pages for nss-tools and the nss-config and setup-nsssysinit scripts - Resolves: rhbz#606020 - nss security tools lack man pages- Build nss without softoken or util sources in the tree - Resolves: rhbz#689918- Update ssl-cbc-random-iv-by-default.patch- Fix generation of NSS_VMAJOR, NSS_VMINOR, and NSS_VPATCH for nss-config- Update to NSS_3_15_RTM- Fix incorrect path that hid failed test from view - Add ocsp to the test suites to run but ... - Temporarily disable the ocsp stapling tests - Do not treat failed attempts at ssl pkcs11 bypass as fatal errors- Update to NSS_3_15_BETA1 - Update spec file, patches, and helper scripts on account of a shallower source tree- Update expired test certificates (fixed in upstream bug 852781)- Fix incorrect post/postun scripts. Fix broken links in posttrans.- Configure libnssckbi.so to use the alternatives system in order to prepare for a drop in replacement.- Update to NSS_3_14_3_RTM - sync up pem rsawrapr.c with softoken upstream changes for nss-3.14.3 - Resolves: rhbz#908257 - CVE-2013-1620 nss: TLS CBC padding timing attack - Resolves: rhbz#896651 - PEM module trashes private keys if login fails - Resolves: rhbz#909775 - specfile support for AArch64 - Resolves: rhbz#910584 - certutil -a does not produce ASCII output- Allow building nss against older system sqlite- Update to NSS_3_14_2_RTM- Update to NSS_3_14_1_WITH_CKBI_1_93_RTM- Require nspr >= 4.9.4 - Fix changelog invalid dates- Update to NSS_3_14_1_RTM- Bug 879978 - Install the nssck.api header template where mod_revocator can access it - Install nssck.api in /usr/includes/nss3/templates- Bug 879978 - Install the nssck.api header template in a place where mod_revocator can access it - Install nssck.api in /usr/includes/nss3- Bug 870864 - Add support in NSS for Secure Boot- Disable bypass code at build time and return failure on attempts to enable at runtime - Bug 806588 - Disable SSL PKCS #11 bypass at build time- Fix pk11wrap locking which fixes 'fedpkg new-sources' and 'fedpkg update' hangs - Bug 872124 - nss-3.14 breaks fedpkg new-sources - Fix should be considered preliminary since the patch may change upon upstream approval- Add a dummy source file for testing /preventing fedpkg breakage - Helps test the fedpkg new-sources and upload commands for breakage by nss updates - Related to Bug 872124 - nss 3.14 breaks fedpkg new-sources- Fix a previous unwanted merge from f18 - Update the SS_SSL_CBC_RANDOM_IV patch to match new sources while - Keeping the patch disabled while we are still in rawhide and - State in comment that patch is needed for both stable and beta branches - Update .gitignore to download only the new sources- Fix the spec file so sechash.h gets installed - Resolves: rhbz#871882 - missing header: sechash.h in nss 3.14- Update the license to MPLv2.0- Use only -f when removing unwanted headers- Add secmodt.h to the headers installed by nss-devel - nss-devel must install secmodt.h which moved from softoken to pk11wrap with nss-3.14- Update to NSS_3_14_RTM- Update to NSS_3_14_RC1 - update nss-589636.patch to apply to httpdserv - turn off ocsp tests for now - remove no longer needed patches - remove headers shipped by nss-util- Update to NSS_3_13_6_RTM- Rebase pem sources to fedora-hosted upstream to pick up two fixes from rhel-6.3 - Resolves: rhbz#847460 - Fix invalid read and free on invalid cert load - Resolves: rhbz#847462 - PEM module may attempt to free uninitialized pointer - Remove unneeded fix gcc 4.7 c++ issue in secmodt.h that actually undoes the upstream fix- Fix pluggable ecc support- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- Fix checkin comment to prevent unwanted expansions of percents- Resolves: Bug 830410 - Missing Requires %{?_isa} - Use Requires: %{name}%{?_isa} = %{version}-%{release} on tools - Drop zlib requires which rpmlint reports as error E: explicit-lib-dependency zlib - Enable sha224 portion of powerup selftest when running test suites - Require nspr 4.9.1- Resolves: rhbz#833529 - revert unwanted change to nss.pc.in- Resolves: rhbz#833529 - Remove unwanted space from the Libs: line on nss.pc.in- Update to NSS_3_13_5_RTM- Resolves: Bug 812423 - nss_Init leaks memory, fix from RHEL 6.3- Resolves: Bug 805723 - Library needs partial RELRO support added - Patch coreconf/Linux.mk as done on RHEL 6.2- Update to NSS_3_13_4_RTM - Update the nss-pem source archive to the latest version - Remove no longer needed patches - Resolves: Bug 806043 - use pem files interchangeably in a single process - Resolves: Bug 806051 - PEM various flaws detected by Coverity - Resolves: Bug 806058 - PEM pem_CreateObject leaks memory given a non-existing file name- Resolves: Bug 805723 - Library needs partial RELRO support added- Cleanup of the spec file - Add references to the upstream bugs - Fix typo in Summary for sysinit- Pick up fixes from RHEL - Resolves: rhbz#800674 - Unable to contact LDAP Server during winsync - Resolves: rhbz#800682 - Qpid AMQP daemon fails to load after nss update - Resolves: rhbz#800676 - NSS workaround for freebl bug that causes openswan to drop connections- Update to NSS_3_13_3_RTM- fix issue with gcc 4.7 in secmodt.h and C++11 user-defined literals- Resolves: Bug 784672 - nss should protect against being called before nss_Init- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- Deactivate a patch currently meant for stable branches only- Resolves: Bug 770682 - nss update breaks pidgin-sipe connectivity - NSS_SSL_CBC_RANDOM_IV set to 0 by default and changed to 1 on user request- Revert to using current nss_softokn_version - Patch to deal with lack of sha224 is no longer needed- Resolves: Bug 754771 - [PEM] an unregistered callback causes a SIGSEGV- Resolves: Bug 750376 - nss 3.13 breaks sssd TLS - Fix how pem is built so that nss-3.13.x works with nss-softokn-3.12.y - Only patch blapitest for the lack of sha224 on system freebl - Completed the patch to make pem link against system freebl- Removed unwanted /usr/include/nss3 in front of the normal cflags include path - Removed unnecessary patch dealing with CERTDB_TERMINAL_RECORD, it's visible- Statically link the pem module against system freebl found in buildroot - Disabling sha224-related powerup selftest until we update softokn - Disable sha224 and pss tests which nss-softokn 3.12.x doesn't support- Rebuild with nss-softokn from 3.12 in the buildroot - Allows the pem module to statically link against 3.12.x freebl - Required for using nss-3.13.x with nss-softokn-3.12.y for a merge inrto rhel git repo - Build will be temprarily placed on buildroot override but not pushed in bodhi- Fix broken dependencies by updating the nss-util and nss-softokn versions- Update to NSS_3_13_1_RTM - Update builtin certs to those from NSSCKBI_1_88_RTM- Update to NSS_3_13_RTM- Update to NSS_3_13_RC0- Fix attempt to free initilized pointer (#717338) - Fix leak on pem_CreateObject when given non-existing file name (#734760) - Fix pem_Initialize to return CKR_CANT_LOCK on multi-treaded calls (#736410)- Update builtins certs to those from NSSCKBI_1_87_RTM- Update to NSS_3_12_11_RTM- Indicate the provenance of stripped source tarball (#688015)- Provide virtual -static package to meet guidelines (#609612).- Enable pluggable ecc support (#712556) - Disable the nssdb write-access-on-read-only-dir tests when user is root (#646045)- make the testsuite non fatal on arm arches- Fix crmf hard-coded maximum size for wrapped private keys (#703656)- Update to NSS_3_12_10_RTM- Update to NSS_3_12_10_BETA1- Implement PEM logging using NSPR's own (#695011)- Update to NSS_3.12.9_WITH_CKBI_1_82_RTM- Short-term fix for ssl test suites hangs on ipv6 type connections (#539183)- Add a missing requires for pkcs11-devel (#675196)- Run the test suites in the check section (#677809)- Fix cms headers to not use c++ reserved words (#676036) - Reenabling Bug 499444 patches - Fix to swap internal key slot on fips mode switches- Revert patches for 499444 until all c++ reserved words are found and extirpated- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- Fix cms header to not use c++ reserved word (#676036) - Reenable patches for bug 499444- Revert patches for 499444 as they use a C++ reserved word and cause compilation of Firefox to fail- Fix the earlier infinite recursion patch (#499444) - Remove a header that now nss-softokn-freebl-devel ships- Fix infinite recursion when encoding NSS enveloped/digested data (#499444)- Update the cacert trust patch per upstream review requests (#633043)- Fix to honor the user's cert trust preferences (#633043) - Remove obsoleted patch- Update to 3.12.9- Rebuilt according to fedora pre-release package naming guidelines- Update to NSS_3_12_9_BETA2 - Fix libpnsspem crash when cacert dir contains other directories (#642433)- Update to NSS_3_12_9_BETA1- Update pem source tar with fixes for 614532 and 596674 - Remove no longer needed patches- Update PayPalEE.cert test certificate which had expired- Tell rpm not to verify md5, size, and modtime of configurations file- Fix certificates trust order (#643134) - Apply nss-sysinit-userdb-first.patch last- Move triggerpostun -n nss-sysinit script ahead of the other ones (#639248)- Fix invalid %postun scriptlet (#639248)- Replace posttrans sysinit scriptlet with a triggerpostun one (#636787) - Fix and cleanup the setup-nsssysinit.sh script (#636792, #636801)- Add posttrans scriptlet (#636787)- Update to 3.12.8 - Prevent disabling of nss-sysinit on package upgrade (#636787) - Create pkcs11.txt with correct permissions regardless of umask (#636792) - Setup-nsssysinit.sh reports whether nss-sysinit is turned on or off (#636801) - Added provides pkcs11-devel-static to comply with packaging guidelines (#609612)- NSS 3.12.8 RC0- Fix nss-util_version and nss_softokn_version required to be 3.12.7.99.3- NSS 3.12.8 Beta3 - Fix unclosed comment in renegotiate-transitional.patch- Change BuildRequries to available version of nss-util-devel- Define NSS_USE_SYSTEM_SQLITE and remove unneeded patch - Add comments regarding an unversioned provides which triggers rpmlint warning - Build requires nss-softokn-devel >= 3.12.7- Update to 3.12.7- Apply the patches to fix rhbz#614532- Removed pem sourecs as they are in the cache- Add support for PKCS#8 encoded PEM RSA private key files (#614532)- Fix nsssysinit to return userdb ahead of systemdb (#603313)- Require and BuildRequire >= the listed version not =- Require nss-softoken 3.12.6- Fix SIGSEGV within CreateObject (#596674)- Update pem source tar to pick up the following bug fixes: - PEM - Allow collect objects to search through all objects - PEM - Make CopyObject return a new shallow copy - PEM - Fix memory leak in pem_mdCryptoOperationRSAPriv- Update the test cert in the setup phase- Add sed to sysinit requires as setup-nsssysinit.sh requires it (#576071) - Update PayPalEE test cert with unexpired one (#580207)- Fix ns.spec to not require nss-softokn (#575001)- rebuilt with all tests enabled- Using SSL_RENEGOTIATE_TRANSITIONAL as default while on transition period - Disabling ssl tests suites until bug 539183 is resolved- Update to 3.12.6 - Reactivate all tests - Patch tools to validate command line options arguments- Fix curl related regression and general patch code clean up- retagging- Fix SIGSEGV on call of NSS_Initialize (#553638)- New version of patch to allow root to modify ystem database (#547860)- Temporarily disabling the ssl tests- Fix nsssysinit to allow root to modify the nss system database (#547860)- Fix an error introduced when adapting the patch for rhbz #546211- Remove left over trace statements from nsssysinit patching- Fix a misconstructed patch- Fix nsssysinit to enable apps to use system cert store, patch contributed by David Woodhouse (#546221) - Fix spec so sysinit requires coreutils for post install scriplet (#547067) - Fix segmentation fault when listing keys or certs in the database, patch contributed by Kamil Dudka (#540387)- Fix nsssysinit to set the default flags on the crypto module (#545779) - Remove redundant header from the pem module- Remove unneeded patch- Retagging to include missing patch- Update to 3.12.5 - Patch to allow ssl/tls clients to interoperate with servers that require renogiation- Retagging- Require nss-softoken of same architecture as nss (#527867) - Merge setup-nsssysinit.sh improvements from F-12 (#527051)- User no longer prompted for a password when listing keys an empty system db (#527048) - Fix setup-nsssysinit to handle more general formats (#527051)- Fix syntax error in setup-nsssysinit.sh- Fix sysinit to be under mozilla/security/nss/lib- Add nss-sysinit activation/deactivation script- Install blank databases and configuration file for system shared database - nsssysinit queries system for fips mode before relying on environment variable- Restoring nssutil and -rpath-link to nss-config for now - 522477- Add the nss-sysinit subpackage- Installing shared libraries to %{_libdir}- Retagging to pick up new sources- Update pem enabling source tar with latest fixes (509705, 51209)- PEM module implements memory management for internal objects - 509705 - PEM module doesn't crash when processing malformed key files - 512019- Remove symbolic links to shared libraries from devel - 521155 - No rpath-link in nss-softokn-config- Update to 3.12.4- Fix FORTIFY_SOURCE buffer overflows in test suite on ppc and ppc64 - bug 519766 - Fixed requires and buildrequires as per recommendations in spec file review- Restoring patches 2 and 7 as we still compile all sources - Applying the nss-nolocalsql.patch solves nss-tools sqlite dependency problems- restore require sqlite- Don't require sqlite for nss- Ensure versions in the requires match those used when creating nss.pc- Remove nss-prelink.conf as signed all shared libraries moved to nss-softokn - Add a temprary hack to nss.pc.in to unblock builds- caolan's nss.pc patch- Bump the release number for a chained build of nss-util, nss-softokn and nss- Fix nss-config not to include nssutil - Add BuildRequires on nss-softokn and nss-util since build also runs the test suite- disabling all tests while we investigate a buffer overflow bug- disabling some tests while we investigate a buffer overflow bug - 519766- remove patches that are now in nss-softokn and - remove spurious exec-permissions for nss.pc per rpmlint - single requires line in nss.pc.in- Fix BuildRequires: nss-softokn-devel release number- fix nss.pc.in to have one single requires line- cleanups for softokn- remove the softokn subpackages- don install the nss-util pkgconfig bits- remove from -devel the 3 headers that ship in nss-util-devel- kill off the nss-util nss-util-devel subpackages- split off nss-softokn and nss-util as subpackages with their own rpms - first phase of splitting nss-softokn and nss-util as their own packages- must install libnssutil3.since nss-util is untagged at the moment - preserve time stamps when installing various files- dont install libnssutil3.so since its now in nss-util- Fix spec file problems uncovered by Fedora_12_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild- removed two patch files which are no longer needed and fixed previous change log number- updated pem module incorporates various patches - fix off-by-one error when computing size to reduce memory leak. (483855) - fix data type to work on x86_64 systems. (429175) - fix various memory leaks and free internal objects on module unload. (501080) - fix to not clone internal objects in collect_objects(). (501118) - fix to not bypass initialization if module arguments are omitted. (501058) - fix numerous gcc warnings. (500815) - fix to support arbitrarily long password while loading a private key. (500180) - fix memory leak in make_key and memory leaks and return values in pem_mdSession_Login (501191)- add patch for bug 502133 upstream bug 496997- rebuild with higher release number for upgrade sanity- updated to NSS_3_12_4_FIPS1_WITH_CKBI_1_75- re-enable test suite - add patch for upstream bug 488646 and add newer paypal certs in order to make the test suite pass- add conflicts info in order to fix bug 499436- ship .chk files instead of running shlibsign at install time - include .chk file in softokn-freebl subpackage - add patch for upstream nss bug 488350- Update to NSS 3.12.3- temporarily disable the test suite because of bug 494266- fix softokn-freebl dependency for multilib (bug 494122)- introduce separate nss-softokn-freebl package- disable execstack when building freebl- add upstream patch to fix bug 483855- build nspr-less freebl library- Update to NSS_3_12_3_BETA4- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild- update to NSS_3_12_2_RC1 - use system zlib- add sparc64 to the list of 64 bit arches- bug 456847, move pkgconfig requirement to devel package- Update to NSS_3_12_1_RC2- NSS 3.12.1 RC1- fix bug bug 429175 in libpem module- bug 456847, add Requires: pkgconfig- nss package should own /etc/prelink.conf.d folder, rhbz#452062 - use upstream patch to fix test suite abort- Update to NSS_3_12_RC4- Update to NSS_3_12_RC2- Zapping old Obsoletes/Provides. No longer needed, causes multilib headache.- Update to NSS_3_12_BETA3- NSS 3.12 Beta 2 - Use /usr/lib{64} as devel libdir, create symbolic links.- Apply upstream patch for bug 417664, enable test suite on pcc.- Support concurrent runs of the test suite on a single build host.- disable test suite on ppc- disable test suite on ppc64- Build against gcc 4.3.0, use workaround for bug 432146 - Run the test suite after the build and abort on failures.* NSS 3.12 Beta 1- move .so files to /lib- NSS 3.12 alpha 2b- upstream patches to avoid calling netstat for random data- NSS 3.12 alpha 2- Add /etc/prelink.conf.d/nss-prelink.conf in order to blacklist our signed libraries and protect them from modification.- Fix off-by-one error in the PEM module- fix a C++ mode compilation error- Add 3.12 ckfw and libnsspem- Updated license tag- Ensure the workaround for mozilla bug 51429 really get's built.- Better approach to ship freebl/softokn based on 3.11.5 - Remove link time dependency on softokn- Fix unowned directories, rhbz#233890- Update to 3.11.7, but freebl/softokn remain at 3.11.5. - Use a workaround to avoid mozilla bug 51429.- Fix rhbz#230545, failure to enable FIPS mode - Fix rhbz#220542, make NSS more tolerant of resets when in the middle of prompting for a user password.- Update to 3.11.5 - This update fixes two security vulnerabilities with SSL 2 - Do not use -rpath link option - Added several unsupported tools to tools package- disable ECC, cleanout dead code- Update to 3.11.4- Revert the attempt to require latest NSPR, as it is not yet available in the build infrastructure.- Update to 3.11.3- Add /etc/pki/nssdb- rebuild- Update to 3.11.2 - Enable executable bit on shared libs, also fixes debug info.- Enable Elliptic Curve Cryptography (ECC)- Update to 3.11.1 - Include upstream patch to limit curves- add --noexecstack when compiling assembler on x86_64- bump again for double-long bug on ppc(64)- rebuilt for new gcc4.1 snapshot and glibc changes- rebuild- Update file list for the devel packages- Update to 3.11- Add patch to allow building on ppc* - Update the pkgconfig file to Require nspr- Initial import into Fedora Core, based on a CVS snapshot of the NSS_3_11_RTM tag - Fix up the pkcs11-devel subpackage to contain the proper headers - Build with RPM_OPT_FLAGS - No need to have rpath of /usr/lib in the pc file- Adressed review comments by Wan-Teh Chang, Bob Relyea, Christopher Aillon.- Initial build3.79.0-5.el83.79.0-5.el8.build-id3f89ffbb2a9abb924ff9efadcd7927ff74e83ed3libnssutil3.sonss-utilCOPYING/usr/lib//usr/lib/.build-id//usr/lib/.build-id/3f//usr/lib64//usr/share/licenses//usr/share/licenses/nss-util/-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -fexceptions -fstack-protector-strong -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1 -m64 -mtune=generic -fasynchronous-unwind-tables -fstack-clash-protection -fcf-protectioncpioxz2x86_64-redhat-linux-gnudirectoryELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=3f89ffbb2a9abb924ff9efadcd7927ff74e83ed3, strippedASCII textPPPPPPPPP P P P P PPPPR RRRRRRR RR RRRutf-8edb28f442acf9bf10e25bf404a9accba122005958ae180bb5e25627c4a80097a?@7zXZ !#,] b2u jӫ`(y-8E)̇mYܻ2e:mƲF;L=Asf ?7sXJ}r$ |pk=nā,\Ӽp-E;ɮs(9󫒌"QV/T1n+A4\hXͭ~8#Ѳxҵ biK|^0)荠<ό (5z-q1'm d 6I Et*D-B~&Reb{>O ?޺_z_d7@:ϳ=y#sLU.^x\ٹ.9x: ЂtKwO  ^gV/飷Ds Da.c ,J~%{tD\g-\>P@w1mx ?ɲRu>4ge'%A8џd|4L d2Lql:{|人OWgH TN#8~.@M6)5>:޼ogPZxay:|M q3 fQtdF;:j&Htlln]ìFcI@5LwX 1y#{V`L~^~0<9.P]:-KՄ"6:R[׀}:767o2ϻJ}ȬFsb'%@)wnc3x?>ײyWPPpygk19K{;CeHN¯1Ǥbx@tɅ0vP'~H yz"*&;2<04 U# HGp3p}jPa D>nsqOxv<(S+IKg.Xhҭd`\p ywr%[L8MјtŮ(F Vnܿ ӡuN8Ɋ=ic9 4:II:"k>Kz"6)W(ax {5Ov  >gia dLmVO' -P`PE5H,0ETANo0xBDd>s2p{`^n6CF7KFz d:Em׵{]8@MZry BPT{³LتzK#[|VSԏJS#\~r/AIeBiU|{d+FtaSA^-/bbX ;UUFf<36VҶ!%Pya"WwsϕͱٗQЧnrz!M;Na;gtؚq(vs,m$;wS/1JrjXDaI12f2a˥XX٬UwBqO"Q~\tw7:*ŀ_Wl-YHW7Mܘ)R[?xgR㯱KtݫwjͣX m'xtUR |HZMpD@Ͱj_0EwaԗxOrr2icO/6cb.X^cY ]x<ى̜T*UgHij[☐6-qbf:8`vUe,etw<"϶ܲ}ԙR~PRYnfQic ]jA;MN\bfF+_|bTJ#W&ׅe$E9/e2 #yh)"jAu^^zyB-2_!'v^5>5[K ~0a)>)+}0:m1=ˁ^O;nJəT^ݿ2Dkg/BPg%З+F)ǞZi/ i99-!WF\{NIkaɯ_;}M1>Mϐ]# XXUL`S,E wAGiVqi{ @2H߂g%3<)J-HC}m8Qu$Hrb6#cH#x2槌*|@D`G~17#7["8,3xp:^KT;[#*^T`ڒ:4 .h_^0_׼ %8]"6`MZJ+L6$? `t)PzRRoO46qMm .y/z*LbWQulQ~c WpQo`vnΤAկ W>˰t9v SұQMC,Ss(-"}o {~H :`$)ԗ2D8ZZWcjX48o꜊2Ap:죝 (w TVE n{o|C1Pr o6)<8`4J%܃̥p8GⳭK{?| ~,œ3I:qVvS.ɰÑy[)Xj>w|IE;ӹ3qUzf2b. ".OT!DsZqZn ,:g~1…Ӕ;![ΥB5JOaDfQ-YH>QxeMkfrhvz/[pF.ɔԿHY9]@S7D3ASRyc#?hP<t>:b 5:+V"yzste 5Ƽ1Qv6xonrڟEP|c\A+e$N팒D[ȁ˞b{XF@rσŶ;ݛݦvLeu]Ju齲D Fו,$4AW ,f3T|$ anpRE%(jPKj|F/_ 6|` >F1Q޻? ?LSfbZ( u %:8j%UuѕX7%%e fHIJHK9᜘o.;_`ي%!!JzE{oGMf̐C+Z`TM8wLt!Rh̬uBMl{U;Džؒl6KSCqa#PIl\Px,o u2DNw_L:K+ijfЇΓj»k&JjR=2&]]/\aųPu" 8^M(u/D^n`{D#s೫jbժ!x E.xMvuۉ! |׃# h=mLܫ.媩zF IݎM` EES?%Q{0qF\9rx5r0/QE4Z4  X_sM7GڢӼ@&{E |˸s;aJF]/ʇXI-m-6M;XQ,4J>p()g^s~1l1jݠak? `yBۑ2Ba7#XpA;`󸎂P!6!M@C6QcQӆz|-Vf*0gIjG)_>S/ZQ]HɃvsuL˔,B5Loar̻GmYֶ4:ymk4;saYy/#]m wlx*cTG AiuŻŌꥷvZa79:tLkЧfK,DfGX>7sQ+Z)TVո/ep8S=EyjI77T:Npw=BrONTJ?oinaD<)dpEa9#ռ;|7HϫC|r4a%Uqc#| aǥ 鏎awB]:B@7C" Oc(ʕMF33{*Y" ԳSY0Ut|2|%tRLX σڮ([`@u)Ҩ*F O)K*/TϲF(4h3uЗy "Y\n γ.c#\7GkÇql \c}O^{+eΑ ȃ- wv:4T*>I#j"]x<|3F0 {V{/I-*43n'l [8EݡZŰG) C\P"\}P!q殝ˇ+ zvy"Ni5$ߚ58wVs+7F T`m΍e~=Eo}8sp֚hiZa/R_/'F WfȌ쳸|+ݴ_Yެ÷k27ℓ<9Sr3Eo% IQiͶI=~+ulr`g$%M9LNVG2yZ5^ԔTKS!+ $w4"6f2Uw~V{\{]o<3FC>caH\2lIuK#f>XR(YxkG"yÎы=~?F|gKnNUn?N[!m6CÅdի1ă=tbPvxpH1Z.KlDW8?&]<^-]nE13kڇK̿&F' Z]56 ɴD<4 "OsiÕ/b;|n [[ s+E9vdV$U~TF\FG59H`[dggc\֠~8EWS]hn52Eq<ǰo Oq--O󫟃ajkfawe0)欨y+D!MnQP&.& ]rSrPRݴU[s&u &g,ZY__#}i_@juij[:y2*gʚW/ӟzU6)r5`5t^q$){?b}ZH֤SPDRi zꎗnVm>Nu(sXeo<ߖ1мͩ'?^oD_>~OVQuN[y2ԡ[Icxr!:/VJ1o{[T"Sh25"%H!qdI@)"J^4$5PHW/ Aj6c6 %2.a#cŐiNx}מd(k 廃[Iq$ޅʹS}uEܰ"pAW)Δ.ՂW~Y_e^*k)|[B c~Uenu(烄k%Pic$~8h),+1xcs_n9Umǫv[Tu`[o%*:4ѧ9bI^7zD@ F: LF(D@Ӄ6ޢ KS B!.}F0J}5kոsE߫4ryD-!]doo0.PҊ:t]el(wy ">('[a 1o53'JƐ:ݽB2g~ڣӃ$/9)}w&!SX h’E']"(.#!K!N884 T숮T<7#qLia\(m~Lt1O@l짝g$Xe$y&NVr-ߐO3l['{6, =d9UF(̟*| Ɖl<7: 3?j=&}]ӏ0n%Dul']* :-;k}ܖ5D.;k.WVZԭ ¡ +s ̯u"vѤqv}>Kg|,(`[:oH L(&7pRfztVdvK+k䝭, gº\M5?(\)z|5~3;4FsmCS;-o`Z rP!qT`g,ӤZqJ1{%G$}VM"YH2Oe[`͆>H; Y3LWֈ:Ŵe}dF@ɿ}н%4#$tTl^7W* GNm{r1YkimDǗކDlѣkOwI8?yN󔢦8p&q(ڧc9AұMxf$/ n|?EВRͻ~hP^2`":"d# HΤ&qEQf~"y$ $."".4]:/.[Jx`0)ۮ*2^k)UY\NN|ʹS{f5׭M%`7Fuq q)y`.i?,>p8}ź8dE7 ҖSun)/&_;Zbיg.iX: Y5`З~e%p-CֵCf|IE`Kjzzn'~jbCuk` o=0noCWH;q h Z.^#ZT\D6O?]:Ueh<|?LYXA/+/ҍx Rf=1Ekw<5ԇBsA,`XL?3(hxA7G]Stq}rEwPؾQemKi 3~ )3kGȯ(St#\gϏj|dHﱍu>@.߸Qp6šLYЩ4 2mhhZ9,~ E~P̄#b;U?v X{uJӭ^m OF 2uzv4BHQ򁺣ׇd< ɥ}yg^*H(P0 ڧʹD/ ֋A tƧ~3H8B7& OWc,1~b%:J)$Yt'|50'AJxر~Q&)5ij `:pXX d:W^PA'.K*Gc {bWRŌ'7.=c1 >-Gڒz!'AQ@썾Bg4ؠ膜7r%ugTsĥi3cgG }G5 O Q_ui g5m`ݩ({5<;R8sHQ)Y]6M T(6(LkUK;}{U{.gC_06, Ag#v5Fppфnh]ϝ^WeVʎ[j@Ijj llӶڴ-§gcKmQj,% ϙI&=mLE@)" bYe6sh!l QgQOxois(OkӇ`d=V=lQnsie+̂LEf>3c< %yDv!R19 lQhq-$5R[ګ̫hC7b !r82m<]tրuX;fR7M| O`ٵi077^>MetaٴpV6yECiյwgd_e4mZi*`êFۅ,ehXa :WB6"Ef^Y.#8\uk=Tw5#_*pQnIŅhw,# 4BNt``rCn!pl8\^"מ^?L0M{S{HƑ?+' ;KN8b8XDV|9.Wwڑ)Q'w@"Ťa'q7ZN^ʷVPTlW &y G*., "fRQI '3s3e.BɵȥD`JBy`͐hr: ,(vŌ)-;Du=}Ai~PWqla[J[eM6e;Ɣ©A]tՔz/\5z(ѻi#;rZ#ݳy,:w^͸98ΑAł%|[~O/԰ Q.L]:#89o3]Z m'4w#yE1](LAٝ_K#0+vF}Sk0$@HW8HZlpO.ů[ u.a5+%ޭ0~ =+aSS1E3Qu3;Tid:i-.ѢPIOIzKdor#v(/Z|Lk>)H#N50ʵMrG?7y*ߏ|2GQuD=c4?i9(EBJK;I-DlQp^%)nk>KQ +#Jģhs.q#!ʤG(%;NҤCvn8HPVME%S[.Kgs#5^4ƽD`CdJnhq"мN;[(T,iT:ˑ4,kTS[eH8&Dhan(e umC Ċ>⻩ DAŨ E6mT Sv%/Ur4wEa*.?5~2#$s!술XYL Af=画v.\bEPHY}DN#CyP]D9r/SB(0m'ț}]uYߋliw'Ŗ+K*T2nzi:N"3Lq*Uo`{ו'?,<' ߠ/>gY+vBT@z|!|3;.1^{{ Q>}^X{]!lvZjWz4]x%#f/PP4Rj:f/*<õL`9=`m]cgҢ<)؆^!lC_>/}wr|(2zJƃd42=~1]9: 7nW| lP#i\]_XVxPXO4 IZJi6"BE6isSɔueî!=s0lxxzEsa1>^7F1̱"%~kA^Ui.<Ƌ74^Y,瀃v-ZNvwv>yK(9|Bbǹ`h3[qCWB*Ojd-%4jޔ>w yp*ŝ4`F,fov&y@t1ܦXUKh'Ϲ0t:AYayumXZcƋ\6~/`fpi^msckK%U=c?o*0W:Ӽ (\'}2hrio"l=`Mv(S+2WJkO_/ֲg=)W:՘ĝZ{uYz.#be`[zt? Yc!|!I- vjk! ÿbe}_"Ae@|^Qԉ2f B]SźfrګR~Tnom̠#SW:Յm/є*qm:t͞K>E:3{4Q8v6]񟴥wIWnBB3,IQ'@lb,t>P&fݓ.R91#wx./c ϾdƸaΣNU-خ}-; xZCT*J,o򈣤u|P3̈́!ZBfg݆-k|RE 9*TSn!w>-U~7OPנ#Z'q tv-ƒ9.<DzMB)b!bz-%C}S0/mk ޠc܁L@Ŗ(P6/Iy.Kml[_8q 3J 4q3jFjY Ag"ݰ!C ȗlʃl5x @`4"3MS{ 4Rwq6vqEzZȒV%"Z<9IS.IQ$5{gʭ f2&)^vxҶ& +|$\nYR<<[JЃtEnTW{%?`Tmם4DNgP/q:oe'z5+"[opw}2 cf'aYӤc[Kaس PT|$Яg Wp!TiCiᇠƜmzDv δ>}b3QCnuiD !}@fq{`+pYGm lX ~x22ċe]R49LVg`@n{OWO@*,T`a;ى8 0ߧ cGI` ֐I"E45Kx sWGK_fG!]< ѾdFZǸsj?e!տ,.:ҐRU ocקeQ_c4k8-썶I'x]۲gِ=HFoxD/")){!\lhF<j*<% C)bBdUC݄cՍj#UKFM|@ޞfdO{V`<BLi"PI'fU-@oX),>6౜ֶu L E2Wߙi&˜0`@{0nr bv~m H\.m7b쪏 j=%14?6,[*UJ;T9L ECLabſNP߲ uO rF}?uu["߈|$5찵}!]ugErivGu; |( ͉X*-֡]TX`_VBzpvQٛKAN"1ylU!F1Ap`a8Z\궷o&KK|x f0A0ӛЈY~lKbTiAL Kw5~7[ Hp$ZL^w:܂=T#H39Df$FtBq;3S3;qk;?-}!z,M l^A7kj|.SDກ $᥆[?!OpH|"UKQ6(XTbe,7% #TID7[b!<6O9) (~[E<܇15ғңOe`hINJXRV8$i(DM(,0ۖB3Z |u(!:cl}}m_ʶbH7XC[fF+X#O\GLbmRIW i؃ 5Gr$pc. $wLn0 ԯ>+25\M1@ U} 3<2a`RN]`qbJVU8,ғ:z9~Ⱥ L!%皛\ lEf{H> fef}ޘ«a1+2^ȋ7rg_Jh4,|nGrFP m|&b .^-?qqTX8.C^s+‚nFo姗r}:"u (qmj{hC0 k$<*zj qoRΰ+Fݫmq wŬe: ̙< 1Q7+&OWC{*&0|,?p۶,* # rV2ƛ( ,Vg[.,x}],2'_YC䀉]e:yq/A%,Kuj,gřu@(1q1J&3!z- uS%3Ez*>pvs<3'eJz/w\[1vܗZu}~k{\6n`G~M tVWc2nF3QG5KϺ>w3LiXNݻ' V$/~/-3RscqnUs\POEs T*l+ʮ>}W61&Cdu2}_k- |$#'YTvxc[SsGˡ2jEk8=}IlCM쵿\h칳HfG[6LA0<`qpk"/{M+Da8Krډч jsA*w(ţ߃~[!Hy Liְ9f8=x) 49n19 `qc7Z*$Qɰ|zb9f 2s RKUTͲO2iKJ,r׼Pz>&*AӪwtR'ÝߵQ='-?9[XhsOܾvNG΋䒬h /4~?/ 2^[3(1[Hou (/WyG|jh}:+@k4F^? 2ytYe`|&mX!_h8 1 4A]|Oj$U" O c$\qtbcih BC爭a:X wvΤ0ƀ~1FN,0 7pP0/7ՓXgPj7w=T%(Ĝ@\ Cgؠ|~8R6/\J ,WS:S\Čh zjmfu)M3ˮTC\ ]]*~'?Ϸ'i]G*t^_}} K*?+p19vVdv ,Y"ۦaMv?.Z0H̔ĺQu^RzJUshp YnyN3TdrsZ*y/ ;G/WrF:qhlr##: cW*`+86"c9a-TdM9j练D} 8;y_XFK&7zhfkHBbJFm̢'V3afyyN@kZmݏL8r4! ,) zsû41q RqZ+;Ќ?k"ԮݔB'TȚ(a'M)UD?]մgepF̡7w[cƈv*X]FQ,t5*`* r6O`8zPHY 8Z`/(%L#^(c{1Ec?j`9؍}nj=:Fǝǔeٙ)-\x-ӹyr#򚨀O/)&VAJɤ }EpO &r ,|LN+&7$""=eBҠv)^ߘmcf<6uU6pYU1gU08HtܥP1XNY<,N90TH%Qԑ-րҲ,O/S{L^cy޷@ȅ3]>׳v_ \\'4:=KǦ3R48gg2㓖Mq,CHNk0y Gw@'Z*`aEL IXO5Z\=Vw=^6g$af!$A~ hl䋖^"͟ٳXQP[DxuA0 Fw"KT?DOC]^S.AKrD/d5RW ]dJ5}0 h'9 &F纁*i#q5KvF` ulYFL +Ej (Z;w:PU5eqj}J)ӵ3o=lmo"eM`[PR{?3T[9=is[̲Ix]A`,Ķ'Xݸ4՟aA<4?j(irF MMl'gKu`jHyE!?!f(w}`5c)J4[VL.!O'NW;%efo}Uġ^c591߹y[|q5ij&Ҏem#N29fX-팧[!ʆDa0KeocJbm%m *W*{co+, 3T@ײ&jwņԆ= IKgV"?"EaATR$((wz>!jv;k xJِOL8PY?B$L8wڝ:R Tj1۷Ԍ+=,OS6@C;ؙk5%IAݜ:s7/wdV1R9Nht'Y d۶ ?.LJh (&+ 0V=KzUC7lIƇGJmᐜ#vO_$;_g֡",kDc! sƮT=`$;\AΎۚd1=\q1. x]9W/4,>2 ׬~vdfnb}Q'疫xWbk[f0` k&GSv0 !P>!8=>f|4wdaTԺ7 AtRydJ+XB sC`1pdJ2G\cW˾:1`x,zb | ƫ?ٮaƴ祢 gqOu~G#IĆpxp 5`:$mIX^qs-2:d>2} nC9piκsY Jt'aS@ ľ^,6{Q?|o<:Q|JDbgAp3xHTSyLRl{#o!.鬽h a#S0^b4Oc(y5YS7H GBIpnJ!\/+kt);5bڢ lfzvA JsVVyLƜq^t;ՖZ5xX+e5FkTm1 7 5yF`_n4~#'QwӰZ3+U%m~г!t^RD"NVt]Ԗsp~$ͬHN)ÑpZYFg98=7W~Bx&Z T P} Dҋ]IM|)xZ3!F쁞Į>yWuǟ)y`S[~=J5^y|v<ˎp T46MTFQO9Bm{Xwkf&0 s0w5gՇz aO+K#%0c\%ɣ Njlv!I~S# ms^Sw]"/]Lcʪ<Ю~nBA@BS2Y\a@ .%} _A{KLyݪoJQb&C_q\iM"O>oaANj$/O󶍠185!'@}*cY NtuXwuS"{-u2*F3:ߵzKT@Ѐ:SJFy(nBFz:ݿ=ŗE=KJ$Hsw#%k|6!$5Y #,OLJA~FOF)/R[22p.:+Ԑ'Zmw2b$.(6UO̲0N y_\ΦHhǵ^[,:=tkh; 8鷜2z $s\I=[fNA^mdu]sPF[xg Ce֗=u[)XHslƇ :Y7b kTn濋V:D&lb-mB͊h,[ Uae6I 9J]2~nWM9#^X\3P`i.-q}⫓ϤS -T%FWUGA^[Q28g{y8Z؜/rIqe3jGJwf|2'ZFĩT15K3&SR4} `\,I)!Y#C+5Ov9A"EY4%z.C4ގ\O:%,<&m[f};kDI{N=D?rqc `YST0ح %hj{,Ɠ?- Q%ZѸ8+vpD蒷:C '/j-Ujn7u%@SvFգ/cجu@w"D %w 4@4ޗ,@碙`k䬝4"$ >G1q[_gwo\F~/+%ujR'xlwg1 2h,za^/^0Ș!Pʨ4Kt;VNZl\|Jnv ՙ ̓fyölx8T1T[ K\i )ڨt&Gp ׳mVZ{*06UoZ jBUZ5A~7wzVJEuŹF{&C.-ldz4VE"L5/d2t빞S+MyXv~tN7m7$'"oƎBY2zYL"ee;jYl@3X0I.Uv'TIah=0VBNecd/Rw (·x1K̴K2 c ot6gJ5H&32 pm P2+FY\-u! DMY%ݝ@/odB4֧ͭ}0pՓ{:a͵Y9FmDdw{IisPX#.mY[xpB͟PI%E9| rKE41[?M $-)VAj ) 5M'Sa-zLcG;ABj:λbWV360T"Cpq }Vh- \mV .jRɒS{t-pEJ;`K$y]oq.Y3Y(sdc"4/6ⲭBc.`AJ̫S\55?zWV]Kf0r_M7P/p`l.wwpZcwKd oҢQQZmpV];Ux{Q1O1)x̐$@qރe7)Z\ZZQT kU:\ZCCHm0z `KMJ=r2oݜs_³t`3 / _G"/&B_8<@þ6 B\#Oɭ#C-TQ^0u{,Q?O RQ$k9mQJ56 |r̉^N`X2VkA׿gx&#mȿq[<SvR~S2]/?{5: \ {&8u74+-\'pn>F ``B). ;%ښ}UZJ{a?_ꀍRC} PNzʯJ~) 9lO옾|}O [UI|TУD\UxVQGZ,uA#΅≖v.D0 "$av|$6N26L=r?iVMsJөw4֠,mFhz)=J`mgt==$T҉6Ɲ}RRZ'RP ުlrkyB+>$fĘ;04a5яY49Wp[:@}He{ֹU$Z;>$c e}뱾L~pQn?<+:3f|ϳӿE7-=gEopk#?8 jIy yzv ??-v*鲦Uh3gZ> L֘9/ǝUN7I]k=~/b#iFfaX\nnU@,\nF@ӯpÈYOwGA_޳{;~-6`2 M<ʖZV?expYJEܥ *l6r#GxpB;Z"akȕpӜZi2^]_>s˄oS2|L^`$-.\gK`8a~H-tp,dlUJ{5/ZDї24ln,BpʥB='ʡGڥ ܸ;׎%ZS%`9@WS+fk::WqXG=ƠsW.ld@`f/-EKDZH1.]K6-)){ aiނ('vc$5h#62O^(n M ptxɦ ǚˎ0gУ 1צ}Òn$rχfKy3s!VՅoJLq20o@?dDD &U(QCΟa/!Bӥf@~6?u1#T{,`|PRU\ӕncZ=b3h @+1l1yS)53!Rj.nj'o`Kk%L9VӞcBo/κۦ:[ߎ:YgG4&m !IEd,JڌFGWT`<%h,%"x/mA-]',9uL*[[8EkAW͊hC_B}'Ghy` (hi<ު^FSŻ6@<6(bh @?ބ''xfůD$@'\ 1{L{BsbgpJ\:}yZ{A꟣ Lߵy#xI&9AX_?|޼(2;GloEJ1Iև&hƢ]\lm! Jk镥ֈKtw,?+/wM!R,#P #ƿWڨp{r?:'2.B Bzd~d DlGa cQ W'ŀ+A5]U2I8= q5R{Ҽse7n8z01݁]1b_r 蚤+LGx[:c:#!O˿ O+u+$GCm0Ow?r^I{?7ޚJxY af.'8Ś&UiPN~wuLU̵hl4q#!6[?:㮪eUKiZXi TO :l - ;,VZ[2sLz2D_+O(dͶ7YKW1%K"m8.9eNYjwAeR#O}e俻YzM^ŋ) e\BpP d^+&GuB{Қ]ٗ2ic!z䱲d'fE]d'Ei$~`8>B֑Ǚ|RF#o$n7Jvɗb]l3>[D _FPIErʘ!ػ n'MߑŒ=QqXzɹv(4M$Zm5-Bع+#Z7foʻq2V|bݟ>ߙ;%ql@កYjy DߦJ0Wsg[qbON۳9u| ]U/AFK$_BMbZXu<< xHXt2+ I9\2weHe]M=Q^6cx[%,\fd0ᢙtI <Ҩ$!Fs.IT;'M`4zZ⏭:I[!]z~3ysLN ?q*i$w#b1$W}@ 9$Nn+u?E0 4(_SzoCΉK|[VaZL$RZd 3\BwYf/iͪb([QoA669έi5e/8:. =z1Gx%:1^!+p xi RAGM+LA4DfVFzq uu2*:ȥ@,kn>Coҕ kYֆj/VN-Y~M-^+REz,)!Ŋ@,aELe;=}ѵ6ȝf[2QCr@Ґ)j.~2yjТ-W50fE^N/ T " $ȌM22ɴ=(p~rFMΐuyJG܃!I"]Ş9%5nnS*8faX.x*@eD!; -MyL:Fa`+%4ANqfPB:!-Ҷ!_n(H݃fƾ=x+cA:^_5{~݁q QMY ;|02N 6VR)OF_ [Gb'^]=*D, ߂d5\R_p` f*_P% BijE#3ҡ?x8&ihb%핝:C O9meSU>w"6̄&&bw9ѽ}#sHdtNsHCsd&u 7o s/93I=bg}8gLcG7?J]ٗL*T01p>m;.z\Ei:c븁:s+_dr }=yEN62&ų6<}|)fPA+(s>ꥂM>ݜ$ȽOM"cY 6e$}^H˓䍰 ޶cA@P* ~B04dz{1]'x/;[P`7n>ZlG^f<1ΙCSg~ S0ܩIa[*p(߷A{ u ,ɮS<52S:R1I\rआB^Uᡔ2,}7/wYm7_߹|!$ A!]Ym&QA?!o8:SKz斡o- I;;(\-eBn]tw]< f!;PM|kaAisl}qhME톤k ȬdB!a\o:63yiYDm>DlK I|'*^w{*&rGN g31s*?>Cētpʂԥ}|e1iS ƖM|>ԔjPΈe$~UT&3Ѐv?1*vq(A=VLfŴeٝ 7ȘB<}l=ͅo8V9 π[~8juUJT ך,׎w9K?~Ho'')*yZDJd顴ad2 7tgX*hcSYOGwy/m(> R;1Ѵ+1U4?4IU]^P#Ve.z%I%Ac$#_] {gJ S{xpo,)k.-#3{f_6[]YzwUk J7ߠ\M"Ք÷Si~P4qz@I9x'L>an"S,Sw.z7\^T&/h*M±JfHHR˅6C+-͑ݎLT(Bv-`~]] hƗǑNe-!K?[SQuV/Y'%NRHqJ h8BCD^)UeW4zPUފX m&,Prp.igr?S]|zƎ=VZKl=9;|@1\ ZI,) 7ƍlXuǴv$lGCB-g4b'p. *;T)&gob'D o?AyڌW6@F6:ÂmQ#R龜\z\x7j5,s׳`Feux33k~D~T%j;6ɜQI%֚L5!83kH-mKͫn}F[3*Wԝ pw[JohfqZ2&dcc纡Zr j+,{gS08iN ]eMg,̣l6uǿh[/ `1tZ/1bbˉkٲVW |#3UWT-!JDYw|`8RZdvv!ߖp Bt(MVV?H6aC"\)mXf,_8,:JiV˯ V&o+R O}W׍k x;K#(Tt KKk܌Uh J2ύ0{$ $ԤjbiՉ <ՍĜ@F5i!(ۮmHѳQHyG+ ZM O Ahd|34!x^,X',!dVkTD/qЌ0eiCQ(VA8b5%zɳYt/}:vqr~&T5|t}d7Άd 7+'%o&+̃2NGr]bX꺖ȎtT!h:^"B\&fb[ ##=#kw mJwQ/Y7}YhaHIyG9>FI$u$^7õ')BanS ( Wd89#s?KG2,7soE&UGŞz۪ԉ bl X.$C ډT˓/*4Jblr@g>eQ)]Hp; wlFFDF q(Ud4z~Wͣ%9y3vNozT #30KiA[Fzw{g>,t)5#2a'zs@a lcH]G2rWyd =5 )6,voх~€\~=^ X=k:F2[BogXHXȌ{tCSOtp\NFO)hʽ$:䏟}'*mDY }{a MGedLf1c6v沣6sŏÅz&)LTdL>;3~-A*_auQAǞݹym,UgOEz$"Uj-ySɀ ouɠĴ/Fwt[J s^ p8*\ɁgsfкDitLVo\&2'oMM29 kͪu/p_KtUa-mf02@)!ooxl5qpWRơXY^Wu^Jx76|y`8x+-$}ŁTdm?}7?(v~UYWEYo}G!-Ld 5<1ן}f<@b؋n]湩ҿ!W{ Jy!NFa?}c=oӨV-+eq%Z]Bv6ʉ`w &(jsE7 #i+ȸV09֜[bnă>kc@qSNH~c) hgC훖bb7y6.ڐ:O@[^[ a> R@:_Vlm19P^2;TTf;jT;݉E,t9i92Va>]XX{2ma8rflgR"h{ w.tD|VB$%fl݂/[dTPe^pm|JLݩߧ<C-Q]L8VcI &zM=m_-<ІzTD-΍ ~vsJQ0P0)ɊhS>!|^ m&Uɋ+ q&a'qn'`)c~P989>\zm^%"唽xIJlU>N_דu)I]ʂs8@>ǐt( 'E֨ F _ KE20[r=pXȫKP@y6wkb80v K`eNafw=LՏSn♚5xKpO_f!=~EhAOd{ڨ}"BY/혌g:82A^*'ubՙoJe Ҳ4;q/wUho["s],]0 6: |gJץ7d`>53Vxۦ栮M ~qRy$qгGsI[dп/FxBie|i0—:9]6j#=VR[ rL۬}yfKэTN-}0fOȚ7_EV3^YXTCЯ_g$_@Tȫ/rfE]^w5ޙPB-L_@/Y#|+V{/8Kamby74hXzJxNl ;`e#{Y +[׍jRvjfUJSJbPWct}+ LP]4{p0In7$_3ߴ-|Y"&Wrde)rT񼕻(mzm\BH"1&ƐLizErҷE ,Q4 <@?$+M]$e\2i>xB{_)ـ I9^$ ? 08[{ϰu ̕M%u#G悊b$zc31|덪#ۻg" 5>a2ҿgܳMX@~7z2ܾl]>G.=g~hW6]g$"QYWq_z^՚lzA$GpX۟H<1оxϐ4I^β>'#~C[:p~/mQ~ntN׹p!&lH2#+Ҕ~(9ʈl-u M T̢6FO]6P-gv15ƠD{k;=Aj`(' "z;t`[#bY3%%u GܑZsyASɇT &`3xg}BQd!Ц2;5 <3O4߅׆I*1HָF7Zxը?]_@77eLX\eŁbfT?iֲXF\z2Q.݉G̍/;-VF+{a&H0/ջJ`Hc9,k'UZF/9ZL!MܜLBDbӰ?P2Յsv]%|W'h5ľcvhL: ͎xbs3j1P$E >V_⣯+X7YqRŻGW5ydwJpEyyuj4e;Q3]E, >keķH<5$:esɳܳ=jU`WPK¼{,HIhR^ LI'Že޳$̌i&ouEԜ.^# F-BWسzn,8dCKaz(m:o$,}vJBN ,Q̻5ޖ-k$1'Hȕ8o` 3QP%hMu#$Z0%nw@^di|*:ʙ/ Qmr-?Hvquu)=4hqDGvmF$}vs s['hSG|/yjƬf o cH(.mg#Rx,V(W`U1Ԙ&b^MIȹ}M_ky=.+%b Zxg¶DR-r8;S>iƹZgCYO~Pg?7΀Yn TV3=#l`BǧvQi)ނooo@lӎZ;dϵi݄rލ:X)*ˊmz*Su{-{7EnTM-X6^~OZR@m`gun3AjouJJ8ESS9]`?s2oGdwitqa-./TUIp(@{>Q&4*Zk6X l{yH,ohǝ )Yaפurp6>La JqP'(-:vVN`oWO΋z-mLȰ9`s ZT߅\L ii:Ís~`ʫD"˫CB(}dJԶ3& D&I&s& dPs@("U}VZ (֊c,?{84M7uݒv,yXdqɡP<J@G jgGX"GMm)cԄvFi_xCnkbPں^L/fԉ4SD8I+\I:кƣswK]=O8yZĝF2Fk^r7r-kٯC>Pkmf[àF鬾7H97J{WcOJmo mZrC5z%#9_+[|%sbU,PF<ͦqsɀ s;u( "UaIJ{I,5wT޴oבQ866 }dQE" LDut d]Ly,Xu+/`BT OF*j*?C8QWVtfxߣł@?A ԝ 6eeɨhS j2[q?uWQ?H+Y0V<)εߒ[TU%Of<'`ZGgt+ $Y>Y/qPmk_uSgԸ^/vrқ{PY`@bu뿰ѣ nhU >Kw3 u!^88uUeR\4dC'dS*w $z:qNmJ7 DfLג |3;]0jr6o[^ʈl2c7z%De(h"r_/tǭMZ?H+şM.F;|.5o Tb?@cBBټcD\I .uK=gc]~~ZӊtՎS&Gёe4d]e*.78jWՃ!E%(P+PF|^Q=6b_旦`,@U߰`B9d$l %<LZ Gh Mei.^Z3+> D $@n'Zn'Lƻ2N `8C ו0MI.im6S3z@M`Azjw0`E2CKc }-+4*N41y#~U\MZ C(.04#r .K`mW5t}$ushl9N8 "hxOZ~*]FxDnB(z@-涌 Qs+X`)8`;KGqOir0+++s-'}4۸Y̝kL_wh{ q^Pkv,@N \NAPqvI{z/~{SY޲cg D<\-e9#'&Fe9*6nL88c @yb2%v΍  b KTg'0~̧IZ#I`@$k&ְs(5kgr@C* mbzI[,x6Yep>']{,Z :-"e'E .G&sr>qh$&wô1Lƥj1fjNxE awOԍ?v|xd397v*C=xs{5| 9/#'*'(zzU$d)yb;,fYB_ VW0գ#Fǯg9/Q]B^\/@V-)1=S M(İ{ڋ뺫`Esȿgy+[v$O`3I]JBZ씼CإS |ۢCr^Byp`|JiDG`9HB 4u@/_U`2+pQ5tHѨ0DH\YR|@ )h"rb#B%fN:'"*-r*>xF5HZGi;R;`F?nwPԿj(|J9RvI\d%2a4A WdC$czjydc6~=c 2g*Pcyb8{̲*c\ |dW>>]|[^oj͗CՍ`+KSE#hPhk"qx$ hČEyB|8zl^:_ƥ Jphf/94I*ZvC#is55&.lPqbPj/BsLovwfUPb`N"2 0 ~Wq 7T$%$-5TD[\MEz_v( 홂3k LDJg Om=—z)Kf V$0pf$?(3!:2wH=@C+I!&1߻t9黏bWJ#iri]:O"n*sS=5Q?bJ؋.AzCQ!C)Ɵ %c&+a4#9mF;1u!؈t"J.AW9l#R.\{FiҨ)wddS@^b₿~SprUX"I8s9mĨG,gGVT ي4NQ/YfkAH0̟a'1U&1$vKR]}3/z"z#bf-Tp02y } hC\2*f j˨ޠtϤrӅWC,18 Y?c9z|(֣oCJHjX79AAG]5e:Q!ˡ,h+*kVx2 GGdHFΚ''ډM1v^ n7AZb )D$K7s'r ;.lo` h.3^/*_B۪ ΍JC^’c1'}no( 0QtnK.ر ١A$aV꛶܈]I}-dyH.*ZZ4mCJ_nգּuFnyy&>㶁#"%^$TA&k_}Vjor6àY68r3 ܴOً~ xMBW,BPë@H Ae6=/~uGf9`ɴ`<4-ǿ4 b0FSj%O%LdukmNOvl3D e؍~x>0^ T:}Z@g%cLo'"{{*% rx1nc*J֭(lۛ|B7Oq =HC";<׵7L Ӫlǒ?m 8D!p3O:O 9om@ \d2>n?;&d$u ^ )´Do|] דVho]z܆ o$<";n:'<\֞XVyBͣ [VڛM,k_;\ j;e7=g/nA>1ĸy*xr;s6:gJ ߎ^D>w-$+VoyT}c`8Qŕ΍̻##ySuv|C%b,UZ i'R mIJ]۳kpA'kW>9ېuxR6 í7^k6HzQ&jPh{2]SF.5ff9$KY6Ncnӳ;_ʧH(:PQu/?nOkg[37.s{bX' ^c}5x0l6Gh6}$Je֭;FbsXv,Xɇ 5h٫ !( ib PGb&9%[^|bB<<3 4bƌ9Aw1h9d_fj'jiCAELi B%zh\{OCd4GA<}r;*6u)o 1kwKvM L>QmAUm=̛[`KW¶SƷa?ĩ7sêT`JҊݔk,niQ$cE rQrW6K0:xiKXZ w gVA*{Y 7'ڸVD B}aCЍL1:?i=nkI9z0m7rePZC?1f̂7)xԩ,'oMb9Mo xu"m83J@?fդ):i&&t zE?YXY2, *@ՒO8#A )ިM0 PvU NW:߭wza^vlQ!D={f Bg}@uDS&j\/$PʳƪPez6$ JS` _FPjxXBƅU[^۲vaTEsx;(sAAEk"]~CNr_ӹv Fu mh2?]^yP-3PdM"aa("HB!2jvn$T:j!$= rQ4ě=,p/$0DM\-g';ОkSeXEꢪIH<*BPOfg|)AnuQ łt&'㖢Jw6"„D_>3(XMZ/Ac宧MH|:OspHRL'H?Zg`FNp|UJTyn7e.<<Q:ɗ DF SFdbqru&%S2r3+8c`o@U{8L=Hl\РHʜuWeƂ CƭݲHKc̔`f.F^u D]'22n&G#T+c "9~S-!+PZK`BXz ͙ Vul]wYv@wc7rF3# /=F:a墮S\4b9rw?blD az=z k3AH}H|_6^29h^g:Z~/]ҘGW[cM"$֢7 䘤H]NJ7FÿY.G ܢi5kmBܤdN&{<žж׵ FFt:N`D%-Ua1@ Z<dZ$f]DMMeTUk*[(-.ԒjF{JEP?{dX.8UhڈeƗ%I2;?hj[~O,7zkAgqjG~<``!HtBJLU|#ln(&ö3g_j9&1/uWÎ6;"Op塎iB"ŋP33;,Y5EG:ZΞuTIB59z9ŧ)%K5 ߕ&!'0OҀO֭EBi(t3].Tt٩ 6/OJSQ)/K=ds`RJe`@)"Y g+y."_P$86zTLneg;7}S0 .C=:/3ϗzsyP#v1D`ܑioxqq#hK`9֎d3<\Gvy"7%SbS.RW/w W6T*6]%Zzɒc ⫛ ;_nr'Glncm8_7 sppR7<͚y52!RwPQ`~vJc S0BgԹ)r%=x4u,?x Q}J~ ֠w!H&K8o!//{sÒECE>)-eܔWCE ӵzFjQml( yw$~Yi[hIymN􈌡k=ܑoGN X>S0WD^Kӟ0&n}e 3-rjӿƣ=v.ȅ<\6!S (u!M{e-LLۈ]a6(X)& [cap .*x~AzK8{Vl%"jHlyHDv)֣.h Qyo/:?:\l.|Hw:+FCxdܝ"G<*|kWV _"G.2khNVzt"HrvW͹UvDX[k 3dD1G v|;=.^m0!AhL"U(mLN3Չm"pEHlzwt!kPfR6,q \ncPDް n,A\Ri{@kr1&<}Pw.UInYH;k(\^[IUiz[g%@r;gKdGc;[PyKU`]U0Hzh @%ow: x lPrq7,E33;ћ2n5PWDe?%?>Py0)ѷry&QOP@|3idRF>6 L60I$Uġr2QIb^߲UYi)zYaz*SS:g~` qqrӖ$@*@`@5+ބʗݫVU限1٨t5A({됥Kbh HzJCN}뤙ߔ 5UaWHTj9D`Vf.S>s`ȇcHc7Lm4kEݾ JS)ǕcLׂ)M_th!| >$-Rnw@ٕcBO-t1vLy߹\Z&VvwnjdKGcpN0cڧ{}̻f-z9`c.ɞ#ͪRfu쇺:_pO`'=t?@㧳I8LCAT{Ca'\!#l=/U\#|AEpCQhGѠ#nxDXXL BZQN6ߠLwq`y޾D;|lð[UFsa līs\ 3/{e"w-{B-emܧ%aOb|KثG=i>BqmhRɱm<2&|۔>к9.y607ҲmMZLѲbO17cܡvs)%-rj"!{EU0/J }Ff.E<qqDt,J}hyb=2E/ B :zkʲ=:ś)->/#TÛ`|gKjBXY՜WhYa d3ge/ DO[KRpra Dt~ֲ8d iu/j~zٰ ~{"t=rDkkﶷz+-\u;V A/|)gc4*זowK:5åD:n$hCYp-987%.@iyꢥ5m5`>o%y D-1P8sހ+nX9\L$Ms4 |WlGv;h3 '`sK!zVխ,ܔ184<%h.'>g߳Ou~}F1_9bDSYE|r~a!jQFҐ+\hT~2dP%Xqf?u'MXlbc353p<0y2 VSF0> DW_e@xYy~ ZkBD;"ΕgL4&JRT.Ormz@= ]/0tMZ,MZv DNC/ GM@gU+.QeJ^$7ZBI[hZxrDy6!yԐ 3v!&V%yAxbv, >l+`+|>o/x L|]rI׎n>û%GD'Pt ;D#wF8`p m.pRy.[K^}]GKCQ ׄl#N LNe)=m*!I.'אsaPvL"a:;D1ߺ'BIy?5z?Hok ⶑ&E"5NF;c̶ҿrE:P ^'gݚip #jT^MLu'~߀duSVOL&_ @e=dXڶPjx_t! uR9FwW:tl TUl9GȡBlDzDJA6p {%{1Z"i#G͸0{EFGiF1 ϔ7RF\הacَJ}@LS7%G!ucԩ^΢W"C;%p\}4.*k`ԗ% zs]3$覲[;$eKlxe2n½m F*jWv&RUpQt]eJKjO-lk4u)zy;i+6dc;OA>bkuhWB+cN_׏X:$M>*"`gW՘8ZRuS׹bp4-İ~k/dcoA7B%ҷkano#Czl[I0 KUS.Bj[u~7Jc|_ #׊mPڄ:$gs9p p *gkԾH>j9ԅf;%emoȷ4-;RU2/mn c,W',njC.s{`bO61n3ȞnTy`x4mx(2+29B?= keWجtp^: =-={a) $%spwTOk qSM'K)}IjoYb u;ɰVQs,j=Gea IO:RpZ{m4{pp:dBľ.L"u'^Sd?Y/T0MQga1*XeH9M:z #۞X^kFG^cYyگ*WYŜ)jIaB2h5-oLy!_j*Z0+1ڡ$~PuV Ɉ_ٱh&Oň~S<ƭV%gI"Y]vžN'ЁPt{Wr% w~lٰz$Wʼ!.#y+ph;k:R$M+A[xNnH3c:jɶ>@XT;V`,vQ3e*>x~^YBz`# ~C!K<;\j5蟆h)H)2o摲ܮqPpRf~>]1!~VшfŐr)VPR{ gSy\З2 dehwԩ- ۭk[+)9`#^ÕfGeӲۥMU.@cо4aq Ut|^oJwtf0Ffv7 5]?}\"`}iӣTTId2" %T2?vۺ}nO αB0i,I*Tۃ0d`KR WO9k T2{$`y3:~%t9#{x^F}# v3#["〩]₣ ; -?o+@ 2Y=rXdU9?4g/…UoK|X(8$ǜUP4JW]Kca'zO_1ΨF$L!b:&܈ vQ`,ol H奈N,7 p)=Cl'tùR_QxJuAI]Hއxyψyjf?ǪDx=;)*7&#R,,gRR{B$3POpz&ŨΆ XᲦ-uG@_rZ>rb Ԑ<lCУ~@`>INDIOH5{_\X;[iȜDŽ|E5pݞM7GEJ,I2/8%%A~+~I}%g&"Bmr/:9qHwϹ rcតU7pj!rLFTN۠~ݞl@>;T2!|EZ 1~Μi$fvzJ sܻ*ց8_wL:yc2B!}?epd_N r!|=-+l㱹S ďCtYy,m r$zY%g`bgpU6pƁnđ*9q^%z0k? K[Q&S _/' MsMY"i4B]Ӭ~d\eCG-WfR(j\aat_lN P/2-}|xB%y^>1o/.ePցLfY8=rX+7$~"{"a`OOD{6`>CDZvB*w-SrGZZ%V2ũ μJv- dh[-(YF=tnj*- ֋OvqimZ|փj Sˊ5SJAn2"Hko"raQ龪+_n7E㱵Y>\`YA8 Fɭ}J9g%RSVIWvK'$+tm+WsvX_+?/(=be| gDŽD,%8g05pIuwa^ aּb'&E̘=/8up4#0)8`-疼/`h8s$p"](-Z.4G@g!:BT ^3'%+6 KiUBϻ]JAIa{ezp;+c:M߬T;[N$ Odz@o͗iai󄠎4 ԉXLdf3kҰy?0-Բt)d¾F$!jO@l#c#Hh%ƔD<0^ʂ捽Ԁ"3A5A!2vs6+Q+$a>)ʊ1߮ Ɓ^l".$26 2U,5^瞥3WPCJ!3,J1(Vg&buHP~C4I!)SqH Èn-?f T$=P>daxu);* A ў9)XvC֖Rin"&Qȁzۗvuv"~zUUCB.XaJ|+nۋcK[ؽ6If ˷iI=_aYdXkvr"3 Ҳvʆޠa[ sA=cO6A:K^!+f3YA5*p (v+d縳 _7wUBcT$ GW%N}"Dfkna zW=v% 11,iqK06sD7RتD"NEzȯί('.aY\Nb{_JC?p% ><|g֘uSp4؄xKVnu'9k܎$Q<# *}dAtH]n ^YQlܲ'b-ٚ=,+rCt>` f>hqIN.ytIk4 EIQk,5+` a mH[7.O甸fBµ][,k׸Syn~Od۠g|]we S{ OΈNB?T1'Kw5bzAtyKeo4T9o8D+>,]Su"G5|%?nFJcJC&rcW!dƒh.N'^}DaH J{ppTX29}uÑ(--cMzG&1 4-.)L_62JAl]jcځYr2\ӠR2A!݊4}UiK4"YcEO'PrfųZ8À"y$}$eR+Lפ$=S2 PE,CWfȰv:3adQMqV sQL_ \(Eh͂VhOB~d p+(J]Y 2   :>\t —Pt@P9* >KNgn 7yW55,uq;$?s<ބK9\^t!lLu 임JgDc[R`"踫u?c?v/%hB`6 X558҅jbq #X]Œ`rde.x.|s5өՌ|٩}LC1_T@|2wʯ-LS2w}XC.cp0#H, |Zehb^0(dc6\x tDuga";%"oFS;y٠`#h(B4]K3m IعG5iCrb+y{&5tAzyl;0x7U[`P -+ӉӶJEU:O=f7I/-+l5q𠾬8{g};ChKs.ݔIuRߨ2;K}U!U7Eg[ `3K)L\ybHZ"ZÖ́րBbs} k6P{^ ?fHhQe1Jhfioa5)/ݼΰqX-z>% ENi4qkh|ӫn+NS$\qR$V("rH}B\=R]Ib<L6})E4vnY5޵~p_י|:kF|́%IpJlB(62[pTNu~TW0Ug͚]v1 λ{FzI!ǚ^ uۥ4K-e  _Q/yYoF. >Ѩ>A@!\04Qu=;.4پ[T 7rC79CO >rx1vUT:ed>Kxzl<&>WN?NkPL^XheESP(6@ȜhjiKvqGLB2dRc$Rܪv*t@c#a7iRxS^,iU`ХHNq )DA˜Wk 4܆Ҫx#t2Iǟ[ճ!bj -:cbd\ mS} 3?4%( ]IBi>$T9b03<)-/+o=1?^ $M|op_6FF!*&0 B ON4?OΧ㬙qTu"ygEj&A7#t~Gx`R>(#2 ehdV <\J@# }d۠>RV9]Tx$:z>bKjz$'`s'T39#?3b_N< 9YEs54ivi_⸔?zRcRKCH9HבqcXBٜJk[Ev-*_'Ct Z;v̿bߏ$]tY9".2:}<{jpvի$V';3NV{B6n$ @C4Rq/ivþ-|Pw-xE\ lSZD*7u6AhVtciYo/>R愐Oywqښq&#E dž_Y^A] d?`Z(SlagrAqsX-H.=:ٶ]v KA)ñ]xP gC~Bo\2?wsۯ!G.@ 1ӽTD&>wbs&J`Ҕj[v.!YuReb:Y-0RSkr<''e3s#|5+wIlzsM`d-br#`Y9L?LsT,zeatRz3NOrlSqEֿ@z>EjȗQiv;ZҮGvHɡأ]t*GF8{(L/ {L"ˠo{hBxw63e{8[=g,,/QysqnNj`ET~c, @%d(wlEp V $V-]2]^$ξ|,S Ɨw*NoU=˻5FIwBYF*pBf\ QO:NG])W\67jd`<|'b% ccTvQȐcqr㑥&6NgƍeFWV.ƛ c99Fj5P&i=YEޤ ~N4cP//Uf|:і/dKj\QcZ#ʋ_Z \';í/Q#g(olh% 7@p3 ¨Je7tj87ko?^d6owbl oY uL& q<.fX, xV$&Sxt\'(Π ^kn?/`YO%c0rR}tv9;xvME8 e 'J/.ḑ{m v}q'&@J)'fq~G6Eո35җO~Bƫσq?{U,_/9>^e_$lΎ7|cp,oPsX5q$/]a G.Eԯlo ɹ:Do8ᵏ,,su)VF2"xn*jY g,I~:Du"54 ca I,z鐅\(iUnZLֱ`fQWL0G{@{ŕN.Z渌#$Uxֆ˔|L>O $Wbx_%bktۛC9^UcF5aJ=}S`$ o vog&#NN=k1=mnEq 1xD՜lR)Ӧ|F'v'7t)+?R&OvNk|hi%$_ js_ V}/:/S~@'Qo2))Q1Tvf8yPY^ +g!ao\qi5Hc[ ]C!U K ऴwo;Ùo,(wC?6:|=*ߦNQU9ԑ|{!_oMjuz~EsS*&4Rk!: vZ42󝙠^0¢/۾|bPU~h_3`Ϯ\߿繢J>8"XL?-яb(IhFؐd1cAΐEgnD@ҵ$%xC=-L"E–G&Z$>>] $E8K#tޱ<:bɛ*t1)`Ǵy''goȀRL ƸXb_v7&peq1VGZ/'L}q8bΔX_nnIj7S+C T`! hXuWtW'+v&ƅ4Z-d \q<<@P79N^.)f%]_NicF20F#l"¸'n'4EOĕ_(o`}Mr4j]،ðE?gYL_ PG+@xu";ߖdǶp >_*NJ.2Jl#[ӓJRrm:읉0Ehd7O;=DV?Z6Q%@(T2{7l9⬡܌B& 5פXiÌ'c`VOi.dLA,a oDE/+ _"-U tU7_c30gbKΜia߁0h,5oȉSD4X#9|a}d'Yd=aI?3KP)Tt 3Cc>͒B~^dW.fLKh0&[;QË=M' 2J\ibnӅfd^N :UbfoYY^nqEt8O3,];';;9;EGNL02osXJIMJs`S򁢼mOwairFLhCSF7z)>=h!9C&R*K~f,jg6iiPQZrT6L ;Ivㆊ :@=b}&]4gèR&AE I YE`x%oEaP03 D"zv[ 'j/O/)r{5Wuh~ǺcU"1y" Bo'3C(ԭ߁8XdPRa]2#["9&xT.D+];|0t(ܷn_ [6·ޣMSc;c\n۝aW N?H͔rD#b x~n [ō#y)@@}?i'$GIS6)rA@"!-n{܂FI1]An1I;GA9v"ڼNiKB#9s .JUV^&[o<ݶU*Iw&??fAzx3~cAϳu*fVBU7ᥭY)b)xkgטp-ߩnZX%1_Dk-fYvbdĠ82`ZVpeYJ`!蓊 (& B$d\2@݇E/sXrhe&q`aK۩ߍ$,_5{v]+7weѳYN |!9j]>1SI:BX{l>v{EbFtuVkI}L(ag:WT yQC0 Er5Wev4 ȝ#7=?>1 \vYFlWBmڏMf]GUKR+0ݶ \{LB+pbs*'i{dQjpairBBx "Ԩ5ʵ>v|A=q,\a^ ,%Eb}~gN^(7eU儾r\[5g 0iúNE@O|۟ˉ` y9`9۬LO= BȄ AMhf@ :f9,aВܜuITmqN>JM K9훎,䉁=ie#1I͋8/)ά9.'$ anbknV _Z:zIV]^+ԃˍkG&H`&Z M-Րe=;9F+ @yX驩rs"G"3c@}UXd&B8Bjdnl(xc"f[F%VK "ep1Aeعf-+Cֿ ,6%t Fa١.?-[G bw,PMUX{ 5ZaC5+UCgKb@˾\kx۽cV51Խ܂ F[=Eْ*ӗi "u- r ^o 9¬ rnƈU.*٫Nٽul%{ ӚmUg}ת^`nu:Ԩ3`jكU W r<_Lr&Yr5iY q^KGo BW?@aa!቉$||Q#;.jDsB,J0Yu*˩hY,dnczWxb=b"JEtƴT'>Vڪ~_F ~&P4/ \͵SDm.ޅI?}uAW;JRL../]__-@q f=xQhK"FǸl_A>qeXyad6/A2Rz` *s;e My@BTLm?)~vK'P4<]/盃EP҆&ܛ㚢0%90mǃtT=)*!T ` 0PX4iB̠3҉=!loY݌: %HGFb!!$2\EǠ?'ƜM墈wVosEi,@#}8qb?;K&{"Xd_S-MI^B56VFGl2WK 8;_8fЙwqՌٯps?`+ 5}CXV!v4tHpA;p$$cy7Y@xpa<Ͳ`ioh7k]?ȩߖtVּߟ\.iďTI83k 6G;τc٩G<:HBNFZL_Vp[J:E(OF%YkiIT D`iddŸfЪuk;.Ò0C_@[ eLS!%i͖F@䫺QF%4՜Ku52q? D%SM1.Fin\s7ߥrj9Svr-ēʓ:j۩טHk>50e\N~ɬ36lۅTVR!ETaQ >1J  *dT PS 0jux. ' u :ȝW;3=TzP, .._K}eC~{HۙE?( Zmhk2R}Hoar(ɘjo KjJF,Rh N@cIk xzop) |)p=>Yt!26R"Ğ+}PGɔG`E6,k /dÜ(svb߼'4Y#nLqǩdY:5}^0t(IFn/]|'sŽ!CpeDĈ1\#oc3λT P<35k|5  ZGvv84Gi=6&bz*]{O71Wzp59 ]#ifӊDZg-Q7F}%|S]}x." tѨ Ide5'SSv9ұ G]3ml܀gXJ]qjތf&M00Xힼ_1 DcKH(?|nD{Aq e(h 2" fsB&}\OKIb@N=5K=j#oO{+|- {K*lo괨3^>Hk\qE=SV!y5\ t)oԀKC8 ln/tDcH?-hhN+NC$J:6 l! fEĄgݗ_[:a=`EY1a#fT: Cy0ѮMrf|=fbe*JFpvsAMß[z꿐ZQ9Y-ohNM z}J͎yXp"Uȵ}0%H4Y@P&x>q:bo'zU+m-ȅ<ٽ$V1)l1)[,iqN渰[~2K'ħH)r +aqKЏ1b'sQŇ<:zrepiűW8vh ,Ұ I6+Vڙְi1V񤆬p-8 kr_6\TJkTnI9~NC 16+tEC(fs䆜9g5^s$ZߊI&(-xr8h "5oA&99M̓z@]FCxbQj֢̑؏4NF/~* eA8U"*+EICQ踞/ 51i5w &A3}؄{Y6cv^`X};lT3 }6ǰAH ]jpzr`{.Mq0!zok򜸌.156̉yxv"xiނb`W-.҉f;(]/)G/mHT:xM05ɩ ZEq(I_RPA@uiÿ˽֋>wNF~ 4$a/LN9PSEQA4AtW$ 9f& LC~N[Ojp=Vy Ue0w "ŒT;{|.Lo5  J YZ