nss-util-3.90.0-7.el8 >  H   ȉf U];̑ԎF9N-W9KJwd``paJS|2kmһ,GI"W深Rq)ƺ/Kd䗆ha/Ep|:Udpdkw@QÝcWCzK+9W{I#p,WNw}P4­"liK^LG9yUJM&:DQ,Gf)l"KNŻy:`+pc"$\* ځ{`i kĽz@p`]޺NuY_NV a4u,R$BZ ^t@snԩ;3rI}p2omgȄ;\9>G^bϚ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 U],BW}-lHg >^F8%$.-#Nl\fo2OQA!!a޻&i\, ]hya2tͭSP*zYFxO}\wsԸҬH!p&#SrX>`<?d   D  8 D P h  0NldV(89:_GHI0X8Y\]^(bdefltu(v@wxy Cnss-util3.90.07.el8Network Security Services Utilities LibraryUtilities for Network Security Services and the Softoken modulef&x86-05.stream.rdu2.redhat.comnTCentOSCentOSMPLv2.0builder@centos.orgUnspecifiedhttp://www.mozilla.org/projects/security/pki/nss/linuxx86_64$'FAAA큤f&f&f&ff&d|N6066a25bf8afed90d7cb70ed05a0d4b518799cc1baa84a721db607d3c3580758a20c1a32d1f8102432360b42e932869f7c11c7cdbacf9cac554c422132af47f4../../../../usr/lib64/libnssutil3.sorootrootrootrootrootrootrootrootrootrootrootrootnss-3.90.0-7.el8.src.rpmlibnssutil3.so()(64bit)libnssutil3.so(NSSUTIL_3.12)(64bit)libnssutil3.so(NSSUTIL_3.12.3)(64bit)libnssutil3.so(NSSUTIL_3.12.5)(64bit)libnssutil3.so(NSSUTIL_3.12.7)(64bit)libnssutil3.so(NSSUTIL_3.13)(64bit)libnssutil3.so(NSSUTIL_3.14)(64bit)libnssutil3.so(NSSUTIL_3.15)(64bit)libnssutil3.so(NSSUTIL_3.17.1)(64bit)libnssutil3.so(NSSUTIL_3.21)(64bit)libnssutil3.so(NSSUTIL_3.24)(64bit)libnssutil3.so(NSSUTIL_3.25)(64bit)libnssutil3.so(NSSUTIL_3.31)(64bit)libnssutil3.so(NSSUTIL_3.33)(64bit)libnssutil3.so(NSSUTIL_3.38)(64bit)libnssutil3.so(NSSUTIL_3.39)(64bit)libnssutil3.so(NSSUTIL_3.59)(64bit)libnssutil3.so(NSSUTIL_3.82)(64bit)libnssutil3.so(NSSUTIL_3.90)(64bit)nss-utilnss-util(x86-64)@@@@@@@@@@@@     @libc.so.6()(64bit)libc.so.6(GLIBC_2.14)(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.3)(64bit)libc.so.6(GLIBC_2.3.4)(64bit)libc.so.6(GLIBC_2.4)(64bit)libdl.so.2()(64bit)libnspr4.so()(64bit)libplc4.so()(64bit)libplds4.so()(64bit)libpthread.so.0()(64bit)libpthread.so.0(GLIBC_2.2.5)(64bit)nsprrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)rtld(GNU_HASH)4.35.0-13.0.4-14.6.0-14.0-15.2-14.14.3f@e@e@epb@e\d˖d\@d\@dxb@b@bγby@bba@blbbb@a@@`E`ݮ@` @`ٹ`̊`9@`Ȗ@`D`r_@_^@___@__"@_"@_"@_!d_@_ L_ _@^^@@^@^ۅ@^4]N@]]߶]e@]M@]µ]L]]^@\F@\Q\\\\\\@\I\I\U@\ `\l@[[[u[#@[[W[O+[M@[ZZw@Z|;Zo Zo Zg#Z ZZZ@Y+@Y{YY@Yn@YV@Y@YyYm@Yg`YJ_Y1S@XX@XX @XXYX@X@XX~@Xx@XoX>@X*X@WW@Wt@W~Wv[@WrfWoWm WbWQq@WPWJWDB@W4p@W@Wo@W@VV޾V޾V@VяVIVɦV@V@V=@V@V@VO @VHsVEV3[V UYU@UU@U@U>Ua@Ug@U[%UUU @T@Ts@TTء@T@TÉ@TT@T@T?@T:m@T"@S@S<@S@S@S @SSSSpShS(5@S@SRy@RJ@R@RR@RSRR@Rm@Rg@RD!R@RRR|Q@Q*@QQ@QKQ@QQW@Qw@Q]k@QNQ9Q7/Q#@QQ @P!@PՠP @PqP@P@PAPXPd@Pd@PPP@PP5@PPnP;a@P(@P H@O;O;O@OiO@O@O}O~OiOYOX@OOdO&@O!@@OO@O@N>@N>@NNܲ@N`NؽNN@NuN;@Np@Nf @NA!@N*NpM@MWMc@MM@M@MMfH@M^_@MZjMS@MQ0@MQ0@MQ0@MQ0@MK@MGMF@M6@M-MM@Ls@LOLLZ@L6LdL@L*@L@LA@LL@L4Lx@Lx@Li(@Lf@L_L_LT@L0L0L K @KsKsKKCKCKCK]KMKLd@KD{@K<@K5K4@K,@K+nK*@K K@K@K@KJݦ@J - 3.90.0-7Bob Relyea - 3.90.0-6Bob Relyea - 3.90.0-5Bob Relyea - 3.90.0-4Bob Relyea - 3.90.0-3.1Bob Relyea - 3.90.0-3Bob Relyea - 3.90.0-2Bob Relyea - 3.90.0-1Bob Relyea - 3.79.0-11Bob Relyea - 3.79.0-10Bob Relyea - 3.79.0-9Bob Relyea - 3.79.0-8Bob Relyea - 3.79.0-7Bob Relyea - 3.79.0-6Bob Relyea - 3.79.0-5Bob Relyea - 3.79.0-4Bob Relyea - 3.79.0-3Bob Relyea - 3.79.0-2Bob Relyea - 3.79.0-1Bob Relyea - 3.67.0-7Bob Relyea - 3.67.0-6Bob Relyea - 3.67.0-5Bob Relyea - 3.67.0-4Bob Relyea - 3.67.0-3Bob Relyea - 3.67.0-2Bob Relyea - 3.67.0-1Bob Relyea - 3.66.0-2Bob Relyea - 3.66.0-1.1Bob Relyea - 3.66.0-1Bob Relyea - 3.53.1-17Bob Relyea - 3.53.1-16Bob Relyea - 3.53.1-15Bob Relyea - 3.53.1-14Bob Relyea - 3.53.1-13Bob Relyea - 3.53.1-12Bob Relyea - 3.53.1-11Bob Relyea - 3.53.1-10Daiki Ueno - 3.53.1-9Daiki Ueno - 3.53.1-8Bob Relyea - 3.53.1-7Daiki Ueno - 3.53.1-6Bob Relyea - 3.53.1-5Bob Relyea - 3.53.1-4Daiki Ueno - 3.53.1-3Daiki Ueno - 3.53.1-2Daiki Ueno - 3.53.1-1Daiki Ueno - 3.53.0-1Bob Relyea - 3.44.0-15Bob Relyea - 3.44.0-14Bob Relyea - 3.44.0-13Daiki Ueno - 3.44.0-12Bob Relyea - 3.44.0-11Daiki Ueno - 3.44.0-10Bob Relyea - 3.44.0-9Bob Relyea - 3.44.0-8Daiki Ueno - 3.44.0-7Daiki Ueno - 3.44.0-6Daiki Ueno - 3.44.0-5Bob Relyea - 3.44.0-4.1Bob Relyea - 3.44.0-4Daiki Ueno - 3.44.0-3Bob Relyea - 3.44.0-2Daiki Ueno - 3.44.0-1Daiki Ueno - 3.41.0-5Bob Relyea - 3.41.0-4Daiki Ueno - 3.41.0-3Daiki Ueno - 3.41.0-2Daiki Ueno - 3.41.0-1Daiki Ueno - 3.39.0-1.5Bob Relyea - 3.39.0-1.4Daiki Ueno - 3.39.0-1.3Daiki Ueno - 3.39.0-1.2Daiki Ueno - 3.39.0-1.1Daiki Ueno - 3.39.0-1.0Daiki Ueno - 3.38.0-1.2Daiki Ueno - 3.38.0-1.1Daiki Ueno - 3.38.0-1.0Kai Engert - 3.36.1-1.2Daiki Ueno - 3.36.1-1.1Daiki Ueno - 3.36.1-1.0Daiki Ueno - 3.36.0-1.0Fedora Release Engineering - 3.35.0-5Kai Engert - 3.35.0-4Kai Engert - 3.35.0-3Daiki Ueno - 3.35.0-2Daiki Ueno - 3.34.0-2Daiki Ueno - 3.33.0-6Kai Engert - 3.33.0-5Kai Engert - 3.33.0-4Kai Engert - 3.33.0-3Daiki Ueno - 3.33.0-2Daiki Ueno - 3.32.1-2Daiki Ueno - 3.32.0-4Kai Engert - 3.32.0-3Daiki Ueno - 3.32.0-2Fedora Release Engineering - 3.31.0-6Fedora Release Engineering - 3.31.0-5Daiki Ueno - 3.31.0-4Daiki Ueno - 3.31.0-3Daiki Ueno - 3.31.0-2Daiki Ueno - 3.30.2-3Daiki Ueno - 3.30.2-2Kai Engert - 3.30.0-3Daiki Ueno - 3.30.0-2Kai Engert - 3.29.1-3Daiki Ueno - 3.29.1-2Daiki Ueno - 3.29.0-3Daiki Ueno - 3.29.0-2Daiki Ueno - 3.28.1-6Daiki Ueno - 3.28.1-5Daiki Ueno - 3.28.1-4Daiki Ueno - 3.28.1-3Daiki Ueno - 3.28.1-2Daiki Ueno - 3.27.2-2Daiki Ueno - 3.27.0-5Kai Engert - 3.27.0-4Daiki Ueno - 3.27.0-3Daiki Ueno - 3.27.0-2Daiki Ueno - 3.26.0-2Elio Maldonado - 3.25.0-6Elio Maldonado - 3.25.0-5Elio Maldonado - 3.25.0-4Elio Maldonado - 3.25.0-3Elio Maldonado - 3.25.0-2Kamil Dudka - 3.24.0-3Elio Maldonado - 3.24.0-2.3Elio Maldonado - 3.24.0-2.2Elio Maldonado - 3.24.0-2.1Elio Maldonado - 3.24.0-2.0Elio Maldonado - 3.23.0-9Elio Maldonado - 3.23.0-8Elio Maldonado - 3.23.0-7Elio Maldonado - 3.23.0-6Elio Maldonado - 3.23.0-5Elio Maldonado - 3.23.0-4Elio Maldonado - 3.23.0-3Elio Maldonado - 3.23.0-2Elio Maldonado - 3.22.2-2Elio Maldonado - 3.22.1-3Elio Maldonado - 3.22.1-1Elio Maldonado - 3.22.0-3Elio Maldonado - 3.22.0-2Fedora Release Engineering - 3.21.0-7Elio Maldonado - 3.21.0-6Michal Toman - 3.21.0-5Elio Maldonado - 3.21.0-4Elio Maldonado - 3.21.0-3Elio Maldonado Batiz - 3.21.1-2Elio Maldonado - 3.20.1-2Elio Maldonado - 3.20.0-6Elio Maldonado - 3.20.0-5Elio Maldonado - 3.20.0-4Elio Maldonado - 3.20.0-3Elio Maldonado - 3.20.0-2Elio Maldonado - 3.19.3-2Elio Maldonado - 3.19.2-3Kai Engert - 3.19.2-2Kai Engert - 3.19.1-2Kai Engert - 3.19.0-2Kai Engert - 3.18.0-2Elio Maldonado - 3.18.0-1Elio Maldonado - 3.17.4-5Till Maas - 3.17.4-4Elio Maldonado - 3.17.4-3Elio Maldonado - 3.17.4-2Elio Maldonado - 3.17.4-1Ville Skyttä - 3.17.3-4Elio Maldonado - 3.17.3-3Elio Maldonado - 3.17.3-2Elio Maldonado - 3.17.3-1Elio Maldonado - 3.17.2-2Elio Maldonado - 3.17.2-1Kai Engert - 3.17.1-1Kevin Fenzi - 3.17.0-2Elio Maldonado - 3.17.0-1Fedora Release Engineering - 3.16.2-4Elio Maldonado - 3.16.2-3Tom Callaway - 3.16.2-2Elio Maldonado - 3.16.2-1Elio Maldonado - 3.16.1-4Fedora Release Engineering - 3.16.1-3Jaromir Capik - 3.16.1-2Elio Maldonado - 3.16.1-1Elio Maldonado - 3.16.0-1Elio Maldonado - 3.15.5-2Elio Maldonado - 3.15.5-1Elio Maldonado - 3.15.4-5Elio Maldonado - 3.15.4-4Elio Maldonado - 3.15.4-3Peter Robinson 3.15.4-2Elio Maldonado - 3.15.4-1Elio Maldonado - 3.15.3.1-1Elio Maldonado - 3.15.3-2Elio Maldonado - 3.15.3-1Elio Maldonado - 3.15.2-3Elio Maldonado - 3.15.2-2Elio Maldonado - 3.15.2-1Elio Maldonado - 3.15.1-7Elio Maldonado - 3.15.1-6Elio Maldonado - 3.15.1-5Elio Maldonado - 3.15.1-4Elio Maldonado - 3.15.1-3Elio Maldonado - 3.15.1-2Elio Maldonado - 3.15.1-1Elio Maldonado - 3.15-5emaldona - 3.15-4emaldona - 3.15-3Elio Maldonado - 3.15-2Elio Maldonado - 3.15-1Elio Maldonado - 3.15-0.1.beta1.2Elio Maldonado - 3.15-0.1.beta1.1Kai Engert - 3.14.3-12Kai Engert - 3.14.3-10Kai Engert - 3.14.3-9Elio Maldonado - 3.14.3-1Elio Maldonado - 3.14.2-2Elio Maldonado - 3.14.2-1Kai Engert - 3.14.1-3Elio Maldonado - 3.14.1-2Elio Maldonado - 3.14.1-1Elio Maldonado - 3.14-12Elio Maldonado - 3.14-11Elio Maldonado - 3.14-10Elio Maldonado - 3.14-9Elio Maldonado - 3.14-8Elio Maldonado - 3.14-7Elio Maldonado - 3.14-6Elio Maldonado - 3.14-5Elio Maldonado - 3.14-4Elio Maldonado - 3.14-3Elio Maldonado - 3.14-2Elio Maldonado - 3.14-1Elio Maldonado - 3.14-0.1.rc.1Kai Engert - 3.13.6-1Elio Maldonado - 3.13.5-8Elio Maldonado - 3.13.5-7Fedora Release Engineering - 3.13.5-6Elio Maldonado - 3.13.5-5Elio Maldonado - 3.13.5-4Elio Maldonado - 3.13.5-3Elio Maldonado - 3.13.5-2Elio Maldonado - 3.13.5-1Elio Maldonado - 3.13.4-3Elio Maldonado - 3.13.4-2Elio Maldonado - 3.13.4-1Elio Maldonado - 3.13.3-4Elio Maldonado - 3.13.3-3Elio Maldonado - 3.13.3-2Elio Maldonado - 3.13.3-1Tom Callaway - 3.13.1-13Elio Maldonado - 3.13.1-12Fedora Release Engineering - 3.13.1-11Elio Maldonado - 3.13.1-11Elio Maldonado - 3.13.1-10elio maldonado - 3.13.1-9Elio Maldonado - 3.13.1-8Elio Maldonado - 3.13.1-7Elio Maldonado - 3.13.1-6Elio Maldonado - 3.13.1-5Elio Maldonado Batiz - 3.13.1-4Elio Maldonado - 3.13.1-2Elio Maldonado - 3.13.1-1Elio Maldonado - 3.13-1Elio Maldonado - 3.13-0.1.rc0.1Elio Maldonado - 3.12.11-3Kai Engert - 3.12.11-2Elio Maldonado - 3.12.11-1Elio Maldonado - 3.12.10-6Michael Schwendt - 3.12.10-5Elio Maldonado - 3.12.10-4Dennis Gilmore - 3.12.10-3Elio Maldonado - 3.12.10-2Elio Maldonado - 3.12.10-1Elio Maldonado - 3.12.10-0.1.beta1Elio Maldonado - 3.12.9-15Elio Maldonado - 3.12.9-14Elio Maldonado - 3.12.9-13Elio Maldonado - 3.12.9-12Elio Maldonado - 3.12.9-11Elio Maldonado - 3.12.9-10Elio Maldonado - 3.12.9-9Fedora Release Engineering - 3.12.9-8Elio Maldonado - 3.12.9-7Christopher Aillon - 3.12.9-6Elio Maldonado - 3.12.9-5Elio Maldonado - 3.12.9-4Elio Maldonado - 3.12.9-3Elio Maldonado - 3.12.9-2Elio Maldonado - 3.12.9-1Elio Maldonado - 3.12.9-0.1.beta2Elio Maldonado - 3.12.8.99.2-1Elio Maldonado - 3.12.8.99.1-1Elio Maldonado - 3.12.8-9Elio Maldonado - 3.12.8-8Elio Maldonado - 3.12.8-7Elio Maldonado - 3.12.8-6Elio Maldonado - 3.12.8-5Elio Maldonado - 3.12.8-4Elio Maldonado - 3.12.8-3Elio Maldonado - 3.12.8-2Elio Maldonado - 3.12.8-1Elio Maldonado - 3.12.7.99.4-1Elio Maldonado - 3.12.7.99.3-2Elio Maldonado - 3.12.7.99.3-1Elio Maldonado - 3.12.7-3Elio Maldonado - 3.12.7-2Elio Maldonado - 3.12.7-1Elio Maldonado - 3.12.6-12Elio Maldonado - 3.12.6-11Elio Maldonado - 3.12.6-10Elio Maldonado - 3.12.6-9Dennis Gilmore - 3.12.6-8Elio Maldonado - 3.12.6-7Elio Maldonado - 3.12.6-6Elio Maldonado - 3.12.6-5Elio Maldonado - 3.12.6-4Elio Maldonado - 3.12.6-3Elio Maldonado - 3.12.6-2Elio Maldonado - 3.12.6-1.2Elio Maldonado - 3.12.6-1.1Elio Maldonado - 3.12.6-1Elio Maldonado - 3.12.5-8Elio Maldonado - 3.12.5-5Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1.13.2Elio Maldonado - 3.12.5-1.13.1Elio Maldonado - 3.12.5-1.13Elio Maldonado - 3.12.5-1.11Elio maldonado - 3.12.5-1.9Elio Maldonado - 3.12.5-2.7Elio Maldonado - 3.12.5-1.6Elio Maldonado - 3.12.5-1.5Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1Elio Maldonado - 3.12.4-14.1Elio Maldonado - 3.12.4-13.1Elio Maldonado - 3.12.4-13Elio Maldonado - 3.12.4-12Elio Maldonado - 3.12.4-11Elio Maldonado - 3.12.4-10Elio Maldonado - 3.12.4-8Elio Maldonado - 3.12.4-6Elio Maldonado - 3.12.4-5Elio Maldonado - 3.12.4-4Elio Maldonado - 3.12.4-3Elio Maldonado - 3.12.4-2Elio Maldonado - 3.12.4-1Elio Maldonado - 3.12.3.99.3-30Elio Maldonado - 3.12.3.99.3-29Elio Maldonado - 3.12.3.99.3-28Elio Maldonado - 3.12.3.99.3-27Elio Maldonado - 3.12.3.99.3-26Elio Maldonado - 3.12.3.99.3-25Warren Togami - 3.12.3.99.3-24Elio Maldonado - 3.12.3.99.3-23Elio Maldonado - 3.12.3.99.3-22Elio Maldonado - 3.12.3.99.3-21Elio Maldonado - 3.12.3.99.3-20Elio Maldonado - 3.12.3.99.3-19Elio Maldonado - 3.12.3.99.3-18Elio Maldonado - 3.12.3.99.3-16Dennis Gilmore - 3.12.3.99.3-15Dennis Gilmore - 3.12.3.99.3-14Dennis Gilmore - 3.12.3.99.3-13Dennis Gilmore - 3.12.3.99.3-12Elio Maldonado+emaldona@redhat.com - 3.12.3.99.3-11Elio Maldonado - 3.12.3.99.3-10Dennis Gilmore - 3.12.3.99.3-9Elio Maldonado - 3.12.3.99.3-7.1Fedora Release Engineering - 3.12.3.99.3-7Elio Maldonado - 3.12.3.99.3-6Elio Maldonado - 3.12.3.99.3-5Elio Maldonado - 3.12.3.99.3-4Kai Engert - 3.12.3.99.3-3Kai Engert - 3.12.3.99.3-2Kai Engert - 3.12.3-7Kai Engert - 3.12.3-4Kai Engert - 3.12.3-3Kai Engert - 3.12.3-2Kai Engert - 3.12.2.99.3-7Kai Engert - 3.12.2.99.3-6Kai Engert - 3.12.2.99.3-5Kai Engert - 3.12.2.99.3-4Kai Engert - 3.12.2.99.3-3Kai Engert - 3.12.2.99.3-2Kai Engert - 3.12.2.99.3-1Fedora Release Engineering - 3.12.2.0-4Kai Engert - 3.12.2.0-3Dennis Gilmore - 3.12.1.1-4Kai Engert - 3.12.1.1-3Kai Engert - 3.12.1.1-2Kai Engert - 3.12.1.0-2Kai Engert - 3.12.0.3-7Kai Engert - 3.12.0.3-6Kai Engert - 3.12.0.3-3Kai Engert - 3.12.0.3-2Kai Engert - 3.12.0.1-1Jesse Keating - 3.11.99.5-2Kai Engert - 3.11.99.5-1Kai Engert - 3.11.99.4-1Kai Engert - 3.11.99.3-6Kai Engert - 3.11.99.3-5Kai Engert - 3.11.99.3-4Kai Engert - 3.11.99.3-3Kai Engert - 3.11.99.3-2Kai Engert - 3.11.99.3-1Kai Engert - 3.11.99.2b-3Kai Engert - 3.11.99.2b-2Kai Engert - 3.11.99.2-2Kai Engert - 3.11.99.2-1Kai Engert - 3.11.7-10Rob Crittenden - 3.11.7-9Kai Engert - 3.11.7-8Bob Relyea - 3.11.7-7Kai Engert - 3.11.7-6Kai Engert - 3.11.7-5Kai Engert - 3.11.7-4Kai Engert - 3.11.7-3Kai Engert - 3.11.7-2Kai Engert - 3.11.5-2Kai Engert - 3.11.5-1Bob Relyea - 3.11.4-4Kai Engert - 3.11.4-1Kai Engert - 3.11.3-2Kai Engert - 3.11.3-1Kai Engert - 3.11.2-2Jesse Keating - 3.11.2-1.1Kai Engert - 3.11.2-1Kai Engert - 3.11.1-2Kai Engert - 3.11.1-1Kai Engert - 3.11-4Jesse Keating - 3.11-3.2Jesse Keating - 3.11-3.1Ray Strode 3.11-3Christopher Aillon 3.11-2Christopher Aillon 3.11-1Christopher Aillon 3.11-0.cvs.2Christopher Aillon 3.11-0.cvsKai Engert Rob Crittenden 3.10-1- Allow for shorter ecdsa signatures by padding them to full length- Fix ecc DER wrapping.- Pick up validated constant time implementations of p256, p384, and p521 from upsream - More Fips indicator changes- FIPS review changes - add PORT_SafeZero to avoid compiler optimizing a way zeroing memory. - update the indicators for this release - allow hashing of longer than int32 values in a single PKCS #11 call.- Fix expired certs in tests - Fix CVE-2023-5388- add indicators for pbkdf2 - add camellia to pkcs12 doc files - fix ems policy bug - disable ech- fix the change log- rebase to NSS 3.90- Fix CVE-2023-0767- Fix QA found failures: - remove extra '+' from sslpolicy.txt file causing test error values - only use GRND_RANDOM if the kernel is in FIPS mode.- FIPS 140-3 changes- Update fips default for pk12util to AES rather than TDES - Fix bug in pkcs12 files with null passwords- Better fix for test regressions- fix nss.spec so it works in a rhel-8.1.0 buildroot- FIPS 140-3 changes - Reject Small RSA keys, 1024 bit keys are marked as FIP OK when verifying, reject signature keys by policy - Allow applications to retrigger selftests on demand.- Fix pkgconfig output- NSR Coverity fix changed selfserv from passive to active, change it back- Fix regressions found in test suites.- Rebase to NSS 3.79 - Set FIPS Module ID - skip attribute verification on attributes with default values - don't export trust objects if they are default trust objects from dbm - add dbtool to nss-tools- Fix CVE 2021 43527- Fix ssl alert issue- Fix issue with reading databases that were updated using unpatched versions of nss- Better fix for the sdb timeout. The issue wasn't a race, it was the sqlite timeout waiting to begin a transaction under heavy thread usage.- Fix sdb race condition- Fix coverity issues- Rebase to NSS 3.67- Restore old pkcs12 defaults.- build nss for older nspr so we can pass gating with the new nspr in the build root- Rebase to NSS 3.66- Fix various corner cases with ike v1 app b support.- Fix the following CVE - CVE-2020-12403 chacha-poly issues - CVE-2020-12400 constant time ECC. - CVE-2020-6829 constant time ECC.- Revert some policy changes the generate ABI runtime issues.- Add support for enable/disable in policy. Now if your policy file has disallow=x enable=y it will act just like our other libraries.- Add OAEP interface so applications can wrap keys with RSA-OAEP rather than RSA-PKCS-1.- fips need to reject small primes even if they are approved - code to autodetect whether or not to use the cache needs to do so in a way that doesn't mess with filesystem negative file caching. - add kdf selftests- Fix issue with upgradedb where upgradedb expects standard to generate dbm databases, not sql databases (default in RHEL8)- Disable dh timing test because it's unreliable on s390- Explicitly enable upgradedb/sharedb test cycles- Disable Delegated Credentials for TLS- Fix attribute decryption issue where the private key components integrity check on private attributes where not being checked.- Update nss-rsa-pkcs1-sigalgs.patch to the upstream version- Include required checks for dh and ecdh key generation in FIPS mode.- Add better checks for dh derive operations in FIPS mode.- Disable NSS_HASH_ALG_SUPPORT as well for MD5 (#1849938) - Adjust for update-crypto-policies packaging change (#1848649) - Fix compilation with -Werror=strict-prototypes (#1843417)- Fix regression in MD5 disablement (#1849938) - Include rsa_pkcs1_* in signature_algorithms extension (#1847945)- Update to NSS 3.53.1- Update to NSS 3.53- Fix swapped CMAC PKCS #11 values. - Fix data alignment crash in CMAC.- Fix coverify scan issue- Fix endian problem in SP-800 108 code.- Install cmac.h required by blapi.h (#1764513) - Fix out-of-bounds write in NSC_EncryptUpdate (#1775913)- Add SP-800 108 Generalized kdf- Check policy against hash algorithms used for ServerKeyExchange (#1730039)- Add CMAC- CKM_NSS_IKE1_APP_B_PRF_DERIVE was missing from the mechanism list, preventing PK11_Derive*() from using it. Add gtests for the PK11_Derive interface for all the CKM_NSS_IKE*_DERIVE mechanism.- Backport fixes from 3.44.1- Add continuous RNG test required by FIPS - fipstest: use CKM_TLS12_MASTER_KEY_DERIVE instead of vendor specific mechanism- Rebuild with the correct build target- rebuild to try to retrigger CI tests- Fix certutil man page - Fix extracting a public key from a private key for dh, ec, and dsa- Disable TLS 1.3 under FIPS mode - Disable RSASSA-PKCS1-v1_5 in TLS 1.3 - Fix post-handshake auth transcript calculation if SSL_ENABLE_SESSION_TICKETS is set - Revert the change to use XDG basedirs (mozilla#818686)- Add ike mechanisms in softokn - Add FIPS checks in softoken- Update to NSS 3.44 - Define NSS_SEED_ONLY_DEV_URANDOM=1 to exclusively use getentropy - Use %autosetup - Clean up manual pages generation - Clean up %check - Remove prelink dependency, which is not available in RHEL-8 - Remove upstreamed patches- Update manual pages to reflect recent changes in commands- Make sure corresponding public keys are created when importing private keys.- Fix the last change - Add --no-reload option to update-crypto-policies to avoid unnecessary restart of daemons- Restore LDFLAGS injection when linking DSO- Update to NSS 3.41 - Consolidate nss-util, nss-softokn, and nss into a single source package- Fix the last commit- Support for IKE/IPsec typical PKIX usage so libreswan can use nss without rejecting certs based on EKU- Backport upstream fixes for rhbz#1649026, rhbz#1608895, rhbz#1644854 - Document PKCS #11 URI - Add warning when adding module with modutil while p11-kit is enabled- Update nss-dsa.patch to not advertise DSA signature algorithm - Update PayPal test certs for testing- Backport "DSA" keyword in crypto-policies- Update to NSS 3.39- Fix LDFLAGS injection when linking DSO- Install crypto-policies configuration file for https://fedoraproject.org/wiki/Changes/NSSLoadP11KitModules - Port enable-fips-when-system-is-in-fips-mode.patch from RHEL-7 - Use %ldconfig_scriptlets - Remove needless use of %defattr, by Jason Tibbitts- Update to NSS 3.38- Backport upstream addition of nss-policy-check utility, rhbz#1428746, includes required fixes for mozbz#1296263 and mozbz#1474875- Switch the default DB type to SQL - Enable SSLKEYLOGFILE- Update to NSS 3.36.1 - Remove nss-3.14.0.0-disble-ocsp-test.patch - Fix partial injection of LDFLAGS - Remove NSS_NO_PKCS11_BYPASS, which is no-op in upstream- Update to NSS 3.36.0 - Add gcc-c++ to BuildRequires (C++ is needed for gtests) - Make test failure detection robuster- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild- Fix a compiler error with gcc 8, mozbz#1434070 - Set NSS_FORCE_FIPS=1 at %build time, and remove from %check.- Stop pulling in nss-pem automatically, packages that need it should depend on it, rhbz#1539401- Update to NSS 3.35.0- Update to NSS 3.34.0- Make sure 32bit nss-pem always be installed with 32bit nss in multlib environment, patch by Kamil Dudka- Fix test script- Update tests to be compatible with default NSS DB changed to sql (the default was changed in the nss-util package).- rhbz#1505487, backport upstream fixes required for rhbz#1496560- Update to NSS 3.33.0- Update to NSS 3.32.1- Update iquote.patch to really prefer in-tree headers over system headers- NSS libnssckbi.so has already been obsoleted by p11-kit-trust, rhbz#1484449- Update to NSS 3.32.0- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild- Backport mozbz#1381784 to avoid deadlock in dnf- Move signtool to %_libdir/nss/unsupported-tools, for: https://fedoraproject.org/wiki/Changes/NSSSigntoolDeprecation- Rebase to NSS 3.31.0- Enable gtests- Rebase to NSS 3.30.2 - Enable TLS 1.3- Backport upstream mozbz#1328318 to support crypto policy FUTURE.- Rebase to NSS 3.30.0 - Remove upstreamed patches- Backport mozbz#1334976 and mozbz#1336487.- Rebase to NSS 3.29.1- Disable TLS 1.3, following the upstream change- Rebase to NSS 3.29.0 - Suppress -Werror=int-in-bool-context warnings with GCC7- Work around pkgconfig -> pkgconf transition issue (releng#6597)- Disable TLS 1.3 - Add "Conflicts" with packages using older Mozilla codebase, which is not compatible with NSS 3.28.1 - Remove NSS_ECC_MORE_THAN_SUITE_B setting, as it was removed in upstream- Add "Conflicts" with older firefox packages which don't have support for smaller curves added in NSS 3.28.1- Fix incorrect version specification in %nss_{util,softokn}_version, pointed by Elio Maldonado- Rebase to NSS 3.28.1 - Remove upstreamed patch for disabling RSA-PSS - Re-enable TLS 1.3- Rebase to NSS 3.27.2- Revert the previous fix for RSA-PSS and use the upstream fix instead- Disable the use of RSA-PSS with SSL/TLS. #1383809- Disable TLS 1.3 for now, to avoid reported regression with TLS to version intolerant servers- Rebase to NSS 3.27.0 - Remove upstreamed ectest patch- Rebase to NSS 3.26.0 - Update check policy file patch to better match what was upstreamed - Remove conditionally ignore system policy patch as it has been upstreamed - Skip ectest as well as ecperf, which are built as part of nss-softokn - Fix rpmlint error regarding %define usage- Incorporate some changes requested in upstream review and commited upstream (#1157720)- Add support for conditionally ignoring the system policy (#1157720) - Remove unneeded test scripts patches in order to run more tests - Remove unneeded test data modifications from the spec file- Remove obsolete patch and spurious lines from the spec file (#1347336)- Cleanup spec file and patches and add references to bugs filed upstream- Rebase to nss 3.25- decouple nss-pem from the nss package (#1347336)- Apply the patch that was last introduced - Renumber and reorder some of the patches - Resolves: Bug 1342158- Allow application requests to disable SSL v2 to succeed - Resolves: Bug 1342158 - nss-3.24 does no longer support ssl V2, installation of IPA fails because nss init fails- Rebase to NSS 3.24.0 - Restore setting the policy file location - Make ssl tests scripts aware of policy - Ajust tests data expected result for policy- Bootstrap build to rebase to NSS 3.24.0 - Temporarily not setting the policy file location- Change POLICY_FILE to "nss.config"- Change POLICY_FILE to "nss.cfg"- Change the POLICY_PATH to "/etc/crypto-policies/back-ends" - Regenerate the check policy patch with hg to provide more context- Fix typo in the last %changelog entry- Load policy file if /etc/pki/nssdb/policy.cfg exists - Resolves: Bug 1157720 - NSS should enforce the system-wide crypto policy- Remove unused patch rendered obsolete by pem update- Update pem sources to latest from nss-pem upstream - Resolves: Bug 1300652 - [PEM] insufficient input validity checking while loading a private key- Rebase to NSS 3.23- Rebase to NSS 3.22.2- Fix ssl2/exp test disabling to run all the required tests- Rebase to NSS 3.22.1- Update .gitignore as part of updating to nss 3.22- Update to NSS 3.22- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild- Resolves: Bug 1299040 - Enable ssl_gtests upstream test suite - Remove 'export NSS_DISABLE_GTESTS=1' go ssl_gtests are built - Use %define when specifying the nss_tests to run- Add 64-bit MIPS to multilib arches- Update %{nss_util_version} and %{nss_softokn_version} to 3.21.0 - Resolves: Bug 1284095 - all https fails with sec_error_no_token- Add references to bugs filed upstream- Update to NSS 3.21 - Package listsuites as part of the unsupported tools set - Resolves: Bug 1279912 - nss-3.21 is available - Resolves: Bug 1258425 - Use __isa_bits macro instead of list of 64-bit - Resolves: Bug 1280032 - Package listsuites as part of the nss unsupported tools set- Update to NSS 3.20.1- Enable ECC cipher-suites by default [hrbz#1185708] - Split the enabling patch in two for easier maintenance - Remove unused patches rendered obsolete by prior rebase- Enable ECC cipher-suites by default [hrbz#1185708] - Implement corrections requested in code review- Enable ECC cipher-suites by default [hrbz#1185708]- Fix patches that disable ssl2 and export cipher suites support - Fix libssl patch that disable ssl2 & export cipher suites to not disable RSA_WITH_NULL ciphers - Fix syntax errors in patch to skip ssl2 and export cipher suite tests - Turn ssl2 off by default in the tstclnt tool - Disable ssl stress tests containing TLS RC4 128 with MD5- Update to NSS 3.20- Update to NSS 3.19.3- Create on the fly versions of sslcov.txt and sslstress.txt that disable tests for SSL2 and EXPORT ciphers- Update to NSS 3.19.2- Update to NSS 3.19.1- Update to NSS 3.19- Replace expired test certificates, upstream bug 1151037- Update to nss-3.18.0 - Resolves: Bug 1203689 - nss-3.18 is available- Disable export suites and SSL2 support at build time - Fix syntax errors in various shell scripts - Resolves: Bug 1189952 - Disable SSL2 and the export cipher suites- Rebuilt for Fedora 23 Change https://fedoraproject.org/wiki/Changes/Harden_all_packages_with_position-independent_code- Commented out the export NSS_NO_SSL2=1 line to not disable ssl2 - Backing out from disabling ssl2 until the patches are fixed- Disable SSL2 support at build time - Fix syntax errors in various shell scripts - Resolves: Bug 1189952 - Disable SSL2 and the export cipher suites- Update to nss-3.17.4- Own the %{_datadir}/doc/nss-tools dir- Resolves: Bug 987189 - nss-tools RPM conflicts with perl-PAR-Packer - Install pp man page in %{_datadir}/doc/nss-tools/pp.1 - Use %{_mandir} instead of /usr/share/man as more generic- Install pp man page in alternative location - Resolves: Bug 987189 - nss-tools RPM conflicts with perl-PAR-Packer- Update to nss-3.17.3 - Resolves: Bug 1171012 - nss-3.17.3 is available- Resolves: Bug 994599 - Enable TLS 1.2 by default- Update to nss-3.17.2- Update to nss-3.17.1 - Add a mechanism to skip test suite execution during development work- Rebuild for rpm bug 1131960- Update to nss-3.17.0- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild- Replace expired PayPal test cert with current one to prevent build failure- fix license handling- Update to nss-3.16.2- Remove unwanted source directories at end of %prep so it truly does it - Skip the cipher suite already run as part of the nss-softokn build- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild- Replacing ppc64 and ppc64le with the power64 macro - Related: Bug 1052545 - Trivial change for ppc64le in nss spec- Update to nss-3.16.1 - Update the iquote patch on account of the rebase - Improve error detection in the %section - Resolves: Bug 1094702 - nss-3.16.1 is available- Update to nss-3.16.0 - Cleanup the copying of the tools man pages - Update the iquote.patch on account of the rebase- Restore requiring nss_softokn_version >= 3.15.5- Update to nss-3.15.5 - Temporarily requiring only nss_softokn_version >= 3.15.4 - Fix location of sharedb files and their manpages - Move cert9.db, key4.db, and pkcs11.txt to the main package - Move nss-sysinit manpages tar archives to the main package - Resolves: Bug 1066877 - nss-3.15.5 is available - Resolves: Bug 1067091 - Move sharedb files to the %files section- Revert previous change that moved some sysinit manpages - Restore nss-sysinit manpages tar archives to %files sysinit - Removing spurious wildcard entry was the only change needed- Add explanatory comments for iquote.patch as was done on f20- Update pem sources to latest from nss-pem upstream - Pick up pem fixes verified on RHEL and applied upstream - Fix a problem where same files in two rpms created rpm conflict - Move some nss-sysinit manpages tar archives to the %files the - All man pages are listed by name so there shouldn't be wildcard inclusion - Add support for ppc64le, Resolves: Bug 1052545- ARM tests pass so remove ARM conditional- Update to nss-3.15.4 (hg tag NSS_3_15_4_RTM) - Resolves: Bug 1049229 - nss-3.15.4 is available - Update pem sources to latest from the interim upstream for pem - Remove no longer needed patches - Update pem/rsawrapr.c patch on account of upstream changes to freebl/softoken - Update iquote.patch on account of upstream changes- Update to nss-3.15.3.1 (hg tag NSS_3_15_3_1_RTM) - Resolves: Bug 1040282 - nss: Mis-issued ANSSI/DCSSI certificate (MFSA 2013-117) - Resolves: Bug 1040192 - nss-3.15.3.1 is available- Bump the release tag- Update to NSS_3_15_3_RTM - Resolves: Bug 1031897 - CVE-2013-5605 CVE-2013-5606 CVE-2013-1741 nss: various flaws - Fix option descriptions for setup-nsssysinit manpage - Fix man page of nss-sysinit wrong path and other flaws - Document email option for certutil manpage - Remove unused patches- Revert one change from last commit to preserve full nss pluggable ecc supprt [1019245]- Use the full sources from upstream - Bug 1019245 - ECDHE in openssl available -> NSS needs too for Firefox/Thunderbird- Update to NSS_3_15_2_RTM - Update iquote.patch on account of modified prototype on cert.h installed by nss-devel- Update pem sources to pick up a patch applied upstream which a faulty merge had missed - The pem module should not require unique file basenames- Update pem sources to the latest from interim upstream- Resolves: rhbz#996639 - Minor bugs in nss man pages - Fix some typos and improve description and see also sections- Cleanup spec file to address most rpmlint errors and warnings - Using double percent symbols to fix macro-in-comment warnings - Ignore unversioned-explicit-provides nss-system-init per spec comments - Ignore invalid-url Source0 as it comes from the git lookaside cache - Ignore invalid-url Source12 as it comes from the git lookaside cache- Add man page for pkcs11.txt configuration file and cert and key databases - Resolves: rhbz#985114 - Provide man pages for the nss configuration files- Fix errors in the man pages - Resolves: rhbz#984106 - Add missing option descriptions to man pages for {cert|cms|crl}util - Resolves: rhbz#982856 - Fix path to script in man page for nss-sysinit- Update to NSS_3_15_1_RTM - Enable the iquote.patch to access newly introduced types- Install man pages for nss-tools and the nss-config and setup-nsssysinit scripts - Resolves: rhbz#606020 - nss security tools lack man pages- Build nss without softoken or util sources in the tree - Resolves: rhbz#689918- Update ssl-cbc-random-iv-by-default.patch- Fix generation of NSS_VMAJOR, NSS_VMINOR, and NSS_VPATCH for nss-config- Update to NSS_3_15_RTM- Fix incorrect path that hid failed test from view - Add ocsp to the test suites to run but ... - Temporarily disable the ocsp stapling tests - Do not treat failed attempts at ssl pkcs11 bypass as fatal errors- Update to NSS_3_15_BETA1 - Update spec file, patches, and helper scripts on account of a shallower source tree- Update expired test certificates (fixed in upstream bug 852781)- Fix incorrect post/postun scripts. Fix broken links in posttrans.- Configure libnssckbi.so to use the alternatives system in order to prepare for a drop in replacement.- Update to NSS_3_14_3_RTM - sync up pem rsawrapr.c with softoken upstream changes for nss-3.14.3 - Resolves: rhbz#908257 - CVE-2013-1620 nss: TLS CBC padding timing attack - Resolves: rhbz#896651 - PEM module trashes private keys if login fails - Resolves: rhbz#909775 - specfile support for AArch64 - Resolves: rhbz#910584 - certutil -a does not produce ASCII output- Allow building nss against older system sqlite- Update to NSS_3_14_2_RTM- Update to NSS_3_14_1_WITH_CKBI_1_93_RTM- Require nspr >= 4.9.4 - Fix changelog invalid dates- Update to NSS_3_14_1_RTM- Bug 879978 - Install the nssck.api header template where mod_revocator can access it - Install nssck.api in /usr/includes/nss3/templates- Bug 879978 - Install the nssck.api header template in a place where mod_revocator can access it - Install nssck.api in /usr/includes/nss3- Bug 870864 - Add support in NSS for Secure Boot- Disable bypass code at build time and return failure on attempts to enable at runtime - Bug 806588 - Disable SSL PKCS #11 bypass at build time- Fix pk11wrap locking which fixes 'fedpkg new-sources' and 'fedpkg update' hangs - Bug 872124 - nss-3.14 breaks fedpkg new-sources - Fix should be considered preliminary since the patch may change upon upstream approval- Add a dummy source file for testing /preventing fedpkg breakage - Helps test the fedpkg new-sources and upload commands for breakage by nss updates - Related to Bug 872124 - nss 3.14 breaks fedpkg new-sources- Fix a previous unwanted merge from f18 - Update the SS_SSL_CBC_RANDOM_IV patch to match new sources while - Keeping the patch disabled while we are still in rawhide and - State in comment that patch is needed for both stable and beta branches - Update .gitignore to download only the new sources- Fix the spec file so sechash.h gets installed - Resolves: rhbz#871882 - missing header: sechash.h in nss 3.14- Update the license to MPLv2.0- Use only -f when removing unwanted headers- Add secmodt.h to the headers installed by nss-devel - nss-devel must install secmodt.h which moved from softoken to pk11wrap with nss-3.14- Update to NSS_3_14_RTM- Update to NSS_3_14_RC1 - update nss-589636.patch to apply to httpdserv - turn off ocsp tests for now - remove no longer needed patches - remove headers shipped by nss-util- Update to NSS_3_13_6_RTM- Rebase pem sources to fedora-hosted upstream to pick up two fixes from rhel-6.3 - Resolves: rhbz#847460 - Fix invalid read and free on invalid cert load - Resolves: rhbz#847462 - PEM module may attempt to free uninitialized pointer - Remove unneeded fix gcc 4.7 c++ issue in secmodt.h that actually undoes the upstream fix- Fix pluggable ecc support- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- Fix checkin comment to prevent unwanted expansions of percents- Resolves: Bug 830410 - Missing Requires %{?_isa} - Use Requires: %{name}%{?_isa} = %{version}-%{release} on tools - Drop zlib requires which rpmlint reports as error E: explicit-lib-dependency zlib - Enable sha224 portion of powerup selftest when running test suites - Require nspr 4.9.1- Resolves: rhbz#833529 - revert unwanted change to nss.pc.in- Resolves: rhbz#833529 - Remove unwanted space from the Libs: line on nss.pc.in- Update to NSS_3_13_5_RTM- Resolves: Bug 812423 - nss_Init leaks memory, fix from RHEL 6.3- Resolves: Bug 805723 - Library needs partial RELRO support added - Patch coreconf/Linux.mk as done on RHEL 6.2- Update to NSS_3_13_4_RTM - Update the nss-pem source archive to the latest version - Remove no longer needed patches - Resolves: Bug 806043 - use pem files interchangeably in a single process - Resolves: Bug 806051 - PEM various flaws detected by Coverity - Resolves: Bug 806058 - PEM pem_CreateObject leaks memory given a non-existing file name- Resolves: Bug 805723 - Library needs partial RELRO support added- Cleanup of the spec file - Add references to the upstream bugs - Fix typo in Summary for sysinit- Pick up fixes from RHEL - Resolves: rhbz#800674 - Unable to contact LDAP Server during winsync - Resolves: rhbz#800682 - Qpid AMQP daemon fails to load after nss update - Resolves: rhbz#800676 - NSS workaround for freebl bug that causes openswan to drop connections- Update to NSS_3_13_3_RTM- fix issue with gcc 4.7 in secmodt.h and C++11 user-defined literals- Resolves: Bug 784672 - nss should protect against being called before nss_Init- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- Deactivate a patch currently meant for stable branches only- Resolves: Bug 770682 - nss update breaks pidgin-sipe connectivity - NSS_SSL_CBC_RANDOM_IV set to 0 by default and changed to 1 on user request- Revert to using current nss_softokn_version - Patch to deal with lack of sha224 is no longer needed- Resolves: Bug 754771 - [PEM] an unregistered callback causes a SIGSEGV- Resolves: Bug 750376 - nss 3.13 breaks sssd TLS - Fix how pem is built so that nss-3.13.x works with nss-softokn-3.12.y - Only patch blapitest for the lack of sha224 on system freebl - Completed the patch to make pem link against system freebl- Removed unwanted /usr/include/nss3 in front of the normal cflags include path - Removed unnecessary patch dealing with CERTDB_TERMINAL_RECORD, it's visible- Statically link the pem module against system freebl found in buildroot - Disabling sha224-related powerup selftest until we update softokn - Disable sha224 and pss tests which nss-softokn 3.12.x doesn't support- Rebuild with nss-softokn from 3.12 in the buildroot - Allows the pem module to statically link against 3.12.x freebl - Required for using nss-3.13.x with nss-softokn-3.12.y for a merge inrto rhel git repo - Build will be temprarily placed on buildroot override but not pushed in bodhi- Fix broken dependencies by updating the nss-util and nss-softokn versions- Update to NSS_3_13_1_RTM - Update builtin certs to those from NSSCKBI_1_88_RTM- Update to NSS_3_13_RTM- Update to NSS_3_13_RC0- Fix attempt to free initilized pointer (#717338) - Fix leak on pem_CreateObject when given non-existing file name (#734760) - Fix pem_Initialize to return CKR_CANT_LOCK on multi-treaded calls (#736410)- Update builtins certs to those from NSSCKBI_1_87_RTM- Update to NSS_3_12_11_RTM- Indicate the provenance of stripped source tarball (#688015)- Provide virtual -static package to meet guidelines (#609612).- Enable pluggable ecc support (#712556) - Disable the nssdb write-access-on-read-only-dir tests when user is root (#646045)- make the testsuite non fatal on arm arches- Fix crmf hard-coded maximum size for wrapped private keys (#703656)- Update to NSS_3_12_10_RTM- Update to NSS_3_12_10_BETA1- Implement PEM logging using NSPR's own (#695011)- Update to NSS_3.12.9_WITH_CKBI_1_82_RTM- Short-term fix for ssl test suites hangs on ipv6 type connections (#539183)- Add a missing requires for pkcs11-devel (#675196)- Run the test suites in the check section (#677809)- Fix cms headers to not use c++ reserved words (#676036) - Reenabling Bug 499444 patches - Fix to swap internal key slot on fips mode switches- Revert patches for 499444 until all c++ reserved words are found and extirpated- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- Fix cms header to not use c++ reserved word (#676036) - Reenable patches for bug 499444- Revert patches for 499444 as they use a C++ reserved word and cause compilation of Firefox to fail- Fix the earlier infinite recursion patch (#499444) - Remove a header that now nss-softokn-freebl-devel ships- Fix infinite recursion when encoding NSS enveloped/digested data (#499444)- Update the cacert trust patch per upstream review requests (#633043)- Fix to honor the user's cert trust preferences (#633043) - Remove obsoleted patch- Update to 3.12.9- Rebuilt according to fedora pre-release package naming guidelines- Update to NSS_3_12_9_BETA2 - Fix libpnsspem crash when cacert dir contains other directories (#642433)- Update to NSS_3_12_9_BETA1- Update pem source tar with fixes for 614532 and 596674 - Remove no longer needed patches- Update PayPalEE.cert test certificate which had expired- Tell rpm not to verify md5, size, and modtime of configurations file- Fix certificates trust order (#643134) - Apply nss-sysinit-userdb-first.patch last- Move triggerpostun -n nss-sysinit script ahead of the other ones (#639248)- Fix invalid %postun scriptlet (#639248)- Replace posttrans sysinit scriptlet with a triggerpostun one (#636787) - Fix and cleanup the setup-nsssysinit.sh script (#636792, #636801)- Add posttrans scriptlet (#636787)- Update to 3.12.8 - Prevent disabling of nss-sysinit on package upgrade (#636787) - Create pkcs11.txt with correct permissions regardless of umask (#636792) - Setup-nsssysinit.sh reports whether nss-sysinit is turned on or off (#636801) - Added provides pkcs11-devel-static to comply with packaging guidelines (#609612)- NSS 3.12.8 RC0- Fix nss-util_version and nss_softokn_version required to be 3.12.7.99.3- NSS 3.12.8 Beta3 - Fix unclosed comment in renegotiate-transitional.patch- Change BuildRequries to available version of nss-util-devel- Define NSS_USE_SYSTEM_SQLITE and remove unneeded patch - Add comments regarding an unversioned provides which triggers rpmlint warning - Build requires nss-softokn-devel >= 3.12.7- Update to 3.12.7- Apply the patches to fix rhbz#614532- Removed pem sourecs as they are in the cache- Add support for PKCS#8 encoded PEM RSA private key files (#614532)- Fix nsssysinit to return userdb ahead of systemdb (#603313)- Require and BuildRequire >= the listed version not =- Require nss-softoken 3.12.6- Fix SIGSEGV within CreateObject (#596674)- Update pem source tar to pick up the following bug fixes: - PEM - Allow collect objects to search through all objects - PEM - Make CopyObject return a new shallow copy - PEM - Fix memory leak in pem_mdCryptoOperationRSAPriv- Update the test cert in the setup phase- Add sed to sysinit requires as setup-nsssysinit.sh requires it (#576071) - Update PayPalEE test cert with unexpired one (#580207)- Fix ns.spec to not require nss-softokn (#575001)- rebuilt with all tests enabled- Using SSL_RENEGOTIATE_TRANSITIONAL as default while on transition period - Disabling ssl tests suites until bug 539183 is resolved- Update to 3.12.6 - Reactivate all tests - Patch tools to validate command line options arguments- Fix curl related regression and general patch code clean up- retagging- Fix SIGSEGV on call of NSS_Initialize (#553638)- New version of patch to allow root to modify ystem database (#547860)- Temporarily disabling the ssl tests- Fix nsssysinit to allow root to modify the nss system database (#547860)- Fix an error introduced when adapting the patch for rhbz #546211- Remove left over trace statements from nsssysinit patching- Fix a misconstructed patch- Fix nsssysinit to enable apps to use system cert store, patch contributed by David Woodhouse (#546221) - Fix spec so sysinit requires coreutils for post install scriplet (#547067) - Fix segmentation fault when listing keys or certs in the database, patch contributed by Kamil Dudka (#540387)- Fix nsssysinit to set the default flags on the crypto module (#545779) - Remove redundant header from the pem module- Remove unneeded patch- Retagging to include missing patch- Update to 3.12.5 - Patch to allow ssl/tls clients to interoperate with servers that require renogiation- Retagging- Require nss-softoken of same architecture as nss (#527867) - Merge setup-nsssysinit.sh improvements from F-12 (#527051)- User no longer prompted for a password when listing keys an empty system db (#527048) - Fix setup-nsssysinit to handle more general formats (#527051)- Fix syntax error in setup-nsssysinit.sh- Fix sysinit to be under mozilla/security/nss/lib- Add nss-sysinit activation/deactivation script- Install blank databases and configuration file for system shared database - nsssysinit queries system for fips mode before relying on environment variable- Restoring nssutil and -rpath-link to nss-config for now - 522477- Add the nss-sysinit subpackage- Installing shared libraries to %{_libdir}- Retagging to pick up new sources- Update pem enabling source tar with latest fixes (509705, 51209)- PEM module implements memory management for internal objects - 509705 - PEM module doesn't crash when processing malformed key files - 512019- Remove symbolic links to shared libraries from devel - 521155 - No rpath-link in nss-softokn-config- Update to 3.12.4- Fix FORTIFY_SOURCE buffer overflows in test suite on ppc and ppc64 - bug 519766 - Fixed requires and buildrequires as per recommendations in spec file review- Restoring patches 2 and 7 as we still compile all sources - Applying the nss-nolocalsql.patch solves nss-tools sqlite dependency problems- restore require sqlite- Don't require sqlite for nss- Ensure versions in the requires match those used when creating nss.pc- Remove nss-prelink.conf as signed all shared libraries moved to nss-softokn - Add a temprary hack to nss.pc.in to unblock builds- caolan's nss.pc patch- Bump the release number for a chained build of nss-util, nss-softokn and nss- Fix nss-config not to include nssutil - Add BuildRequires on nss-softokn and nss-util since build also runs the test suite- disabling all tests while we investigate a buffer overflow bug- disabling some tests while we investigate a buffer overflow bug - 519766- remove patches that are now in nss-softokn and - remove spurious exec-permissions for nss.pc per rpmlint - single requires line in nss.pc.in- Fix BuildRequires: nss-softokn-devel release number- fix nss.pc.in to have one single requires line- cleanups for softokn- remove the softokn subpackages- don install the nss-util pkgconfig bits- remove from -devel the 3 headers that ship in nss-util-devel- kill off the nss-util nss-util-devel subpackages- split off nss-softokn and nss-util as subpackages with their own rpms - first phase of splitting nss-softokn and nss-util as their own packages- must install libnssutil3.since nss-util is untagged at the moment - preserve time stamps when installing various files- dont install libnssutil3.so since its now in nss-util- Fix spec file problems uncovered by Fedora_12_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild- removed two patch files which are no longer needed and fixed previous change log number- updated pem module incorporates various patches - fix off-by-one error when computing size to reduce memory leak. (483855) - fix data type to work on x86_64 systems. (429175) - fix various memory leaks and free internal objects on module unload. (501080) - fix to not clone internal objects in collect_objects(). (501118) - fix to not bypass initialization if module arguments are omitted. (501058) - fix numerous gcc warnings. (500815) - fix to support arbitrarily long password while loading a private key. (500180) - fix memory leak in make_key and memory leaks and return values in pem_mdSession_Login (501191)- add patch for bug 502133 upstream bug 496997- rebuild with higher release number for upgrade sanity- updated to NSS_3_12_4_FIPS1_WITH_CKBI_1_75- re-enable test suite - add patch for upstream bug 488646 and add newer paypal certs in order to make the test suite pass- add conflicts info in order to fix bug 499436- ship .chk files instead of running shlibsign at install time - include .chk file in softokn-freebl subpackage - add patch for upstream nss bug 488350- Update to NSS 3.12.3- temporarily disable the test suite because of bug 494266- fix softokn-freebl dependency for multilib (bug 494122)- introduce separate nss-softokn-freebl package- disable execstack when building freebl- add upstream patch to fix bug 483855- build nspr-less freebl library- Update to NSS_3_12_3_BETA4- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild- update to NSS_3_12_2_RC1 - use system zlib- add sparc64 to the list of 64 bit arches- bug 456847, move pkgconfig requirement to devel package- Update to NSS_3_12_1_RC2- NSS 3.12.1 RC1- fix bug bug 429175 in libpem module- bug 456847, add Requires: pkgconfig- nss package should own /etc/prelink.conf.d folder, rhbz#452062 - use upstream patch to fix test suite abort- Update to NSS_3_12_RC4- Update to NSS_3_12_RC2- Zapping old Obsoletes/Provides. No longer needed, causes multilib headache.- Update to NSS_3_12_BETA3- NSS 3.12 Beta 2 - Use /usr/lib{64} as devel libdir, create symbolic links.- Apply upstream patch for bug 417664, enable test suite on pcc.- Support concurrent runs of the test suite on a single build host.- disable test suite on ppc- disable test suite on ppc64- Build against gcc 4.3.0, use workaround for bug 432146 - Run the test suite after the build and abort on failures.* NSS 3.12 Beta 1- move .so files to /lib- NSS 3.12 alpha 2b- upstream patches to avoid calling netstat for random data- NSS 3.12 alpha 2- Add /etc/prelink.conf.d/nss-prelink.conf in order to blacklist our signed libraries and protect them from modification.- Fix off-by-one error in the PEM module- fix a C++ mode compilation error- Add 3.12 ckfw and libnsspem- Updated license tag- Ensure the workaround for mozilla bug 51429 really get's built.- Better approach to ship freebl/softokn based on 3.11.5 - Remove link time dependency on softokn- Fix unowned directories, rhbz#233890- Update to 3.11.7, but freebl/softokn remain at 3.11.5. - Use a workaround to avoid mozilla bug 51429.- Fix rhbz#230545, failure to enable FIPS mode - Fix rhbz#220542, make NSS more tolerant of resets when in the middle of prompting for a user password.- Update to 3.11.5 - This update fixes two security vulnerabilities with SSL 2 - Do not use -rpath link option - Added several unsupported tools to tools package- disable ECC, cleanout dead code- Update to 3.11.4- Revert the attempt to require latest NSPR, as it is not yet available in the build infrastructure.- Update to 3.11.3- Add /etc/pki/nssdb- rebuild- Update to 3.11.2 - Enable executable bit on shared libs, also fixes debug info.- Enable Elliptic Curve Cryptography (ECC)- Update to 3.11.1 - Include upstream patch to limit curves- add --noexecstack when compiling assembler on x86_64- bump again for double-long bug on ppc(64)- rebuilt for new gcc4.1 snapshot and glibc changes- rebuild- Update file list for the devel packages- Update to 3.11- Add patch to allow building on ppc* - Update the pkgconfig file to Require nspr- Initial import into Fedora Core, based on a CVS snapshot of the NSS_3_11_RTM tag - Fix up the pkcs11-devel subpackage to contain the proper headers - Build with RPM_OPT_FLAGS - No need to have rpath of /usr/lib in the pc file- Adressed review comments by Wan-Teh Chang, Bob Relyea, Christopher Aillon.- Initial build3.90.0-7.el83.90.0-7.el8.build-id4684af42088feda28fccb3c44de791afa3fab756libnssutil3.sonss-utilCOPYING/usr/lib//usr/lib/.build-id//usr/lib/.build-id/46//usr/lib64//usr/share/licenses//usr/share/licenses/nss-util/-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -fexceptions -fstack-protector-strong -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1 -m64 -mtune=generic -fasynchronous-unwind-tables -fstack-clash-protection -fcf-protectioncpioxz2x86_64-redhat-linux-gnudirectoryELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=4684af42088feda28fccb3c44de791afa3fab756, strippedASCII text PPPPPPPPP P P P P PPPPPPR RRRRRRR RR RRRutf-838a30668733d2cd2586a8b7e0aa077809f72353a2c0d3753bc9385197338aa41?@7zXZ !#,ҿ] b2u jӫ`(y0KfRplP]*:RXAR^e^T'q,EcĀcȳL 0=-G M7 =["7EeWg2M x`>TELמ!F΋ q͜49ս9T4&j^-{>{c&=AQ5Yթ .FT̏qGE*q>ʥU$,ccGl87Y0n{ O NP[^Q}Xps[5=i]?*s8?AZڛN_gbFT(:],oG's4yS-zb0yc&PvE=Xa4HR(2 sXKs `J*>~P(,b#,D\dX4 "7Q^ R4P22jY,E(P7铞ڝ>tHgO_" n}r 2q8ۋvW<\Hr\@@]~zhݼJԤL\bb~KVP.MJDGNUg譺Ɉz)Y ^kRcdǬ@÷HEmAog78ۦ>% [g.$l=ޑd&eԴ%Έ7ә1P`FkEsQ,ᬊD1hf\_p"2@oM(4X!|SĎ}OĽG[W,"@P4cjQ @p/%#?e#P}0ʏ͖)fQ/=mp`Fxլ[蜯Cqz߬n9ŭbѽմ LyTf./ jV'{ jxdz0<-{QG"j#-q ,c ]ʒ&֌6-!f GJ$f| e3;O3]鿊Y=m)iukN]9Il \:,䲉ky XvtkBP#5㵡"iBNR!후"x7e,N)yfBwg5aٺU\rsVvΕ,Wkx+xDp&|pKmi9,{-Et[\2S1]vٮr46P$ {!,_]Q)E5EQc. F`a\ƛS(yQ% 7=|d}SMVoF#CZe/F A[Ơ%̌=S°!̿qYa@4LJbYA|3ՙ<4DyN?/= 76!;'#dBR,ݞXYMjփ\&LŝX};NE   N`1장6bku?٫[qph<%6rq2qMdL ud%x//,&Nu>c }/nf)o18ЛKEYБm IPuIȼ[,tj=3l'9{J;+s|!4^@οo&2ұ$r;-ѭVF]o dw!x-bԪCv!H^,QN< \>I&4 'whE1ld*nFjod)Kmm2Vd00sn{* [jy-)Y濶gBHAAJLЖC=* =3!ko -P8 @'(}k}X+u5 ReDeq+Y¦&1SG/;{?m}8CAULfGtَ9o0V 3Zګ󎥧LH̕g+FO:uX _Hn骩Oᣛh*"f^8CGnN{ `/Jf7u%E-iݝ3ERG`g<_(Q#]n`KYJٓ^D;~Ѭ-&1J^X~4Qyt4ᮬ=^<# }uO$V;".抒RF<}>oH `GqУߗ\sOS"&``~[dTQ&[i.ِ.z,RhڲQ^Ādmn5\Jw!%^^ s / 4uҷZi!aI  Ȳ^,jĤ s<3J:Wh>+UL"A>!Sخpә(~&y鋡xB7i'Xy>ia׈0Ñ!z/g@|+kt%QXtu9e.=5\n)hxVͤ^4 ,{EydPyCBEk1&3s qJ΍/Blv=@/h'}c@j:np)DA&nU,?hL=en_D*– gc(V?҂$zȘcTl{%4E*~ [2hxWQTeb=-Zfv|廅| ]uɦ SbW'_C1ܲsqFBFjmMb- 䖜ݘg!҅c?=!>ѲUi58P(6ײd'1 8e`PVzc67#'D7̂ms(2AU6m1B _U䄆+s)&gFo4!*68qN6, ˪B_57ng=]I&XM]%JhaMQaEl" m>ٍߦ0x\5:N ժ.f0 91y^ TO&?ypR%`=)0dKT*\A/cmI]%19Vb?ᘤL"rW=UDֿ3ָ08iĥȨ08 }M +} ߫2#ͳ mTlN ~W} K!HA7JޔTڇEB>g^>ddtqJMֺa3\{[˩/[56>Y7/!{~:iH^^F K%hs6/"Cry ]+ÏDcYZaYbrSS9rCsu=ܯт GTō0FzU @?,H _W@_*# _ŧuEQj揉uV0##dMP20ŧ(T:v7)`/EQwbTOC,:^뢊ko7L VQd)W#n̦A'i*n&4}FKn#YeEG>U{^+lIlUi3T¨ KPݒc_)_/BMlZux꿸\ gou4/=cV)? _mS53ʜރ5lh>[sQnނVEEdo;=j@̣ä;>e` ?@"%MT+<$s̭ [G*Zo K4W 3 yL5rFF O$T,WH4][ U Z;#W(X.](,4aNio.~s\|d~5/Y M/nzֽm *nbTo/46-~4Cm :g hQwGe.L_ G _\NQoWbW+h< uAʘErh6*竟j:jfȚKwPA.x-z/zAKs=vxdyڅS!tmrt#?'u@w CjG3cM ()qu1MR$#o+@ wf2Г+d@2-z,5 e׎ Ohȿd4uЫơ%V_DQHXdk~l̐Fa[s:OΝ`RۖPke#.Ji̖f ~;W|goCȆOie aTy&1Q Ng((%?cI^`u2;xjΘ*sxfiH@jssa iDbI o͗1WESI \Z ǥ>$u7*#fDp&t"Nhf6TU2(z%#'g7Z(_7N -jho4oݎ`_)qaX`QK"(V[23ڹ^@-\t˟iO_ {GgYy Ѻk{kMn74nEh/1N9cg1ēGcW(b7}7P螰ֱ*dpbkˍi) EJ¢rBH{vK kUFTRhJJ {*so|eGWWN$' r]CTbOO9Am5󐥗hntG;%\-L}϶F'S6Z~bUOj:/:g¾"eLau8'G%mV AUvJ_wn{-TIL0}T'޿6N}^oh).<mVa3f56N{TL*s>9k4th^0@ǕsڅvHzϛ\ػ!t>mU&*Dؤ觀m\/L;gQ^"#oMahX]u|kqLƅFţg\[N9ӵTGyx부5 P*9a9^&n_60E 'NܽbL zfm'Im-^ܻ9… ޝ`rc)s#ucjtfRH]Og@,ɂܸ\gǂ]2T7!H8U6Af^n& Ra^66h%|U_N\u G\7D |{pU -'[ G! T%IZq _Z*:|E:OOre5t?})# Vm28٬kfʎ <~`.wx h.3quAS~\ I9U٣f:'ukuSrC* V7UfbD0Uk†50o9^lk!\`@W-Jw>窞nyXS9+oxqTk/k>iJ$z* 4(/WEfأFk)j{4ٍWL5?@hsA,H&N*;M߲L&|r-!}#-aOZ1t)\j؄ٜ_ihD(ۭk#^ M$^% agkIHW?d)ǔrQ0quhd.}PR"s56wouC"xx ,ڛ)qޱ|Sd/`+0&Tl󆬅i@DV;I"b)Z]k&"֙?63gԌEWFLi1'e1 c@\ BԴCk YGLw*$S4S3a9%W9L`(k6ѝEKa'ɱ,S-jhW.FtFqglB#DTQι;HpoaL /Mo u'cdQߝ7Hb _h7z$Ik sD<>~#Z D"*F=аz`Pz^|DVOPU l82y{6>3םw3K䧄1nSrVv+ gܧyWp5;PdQ 8ig2;O~ ixف$rHtBt{AF#šp Mbyo{xD2| nqH:*Z܊\cՑeyo˅ {oQAXyؖ!@AFSU پ4L1{:hZ&:QܜOu }^V? d*gr_Bž'ώ Qʑ]}R)UDMۆVP1=zPTRwU Zʗf*=21)*eVφ Ix iD* ]yɫ¢jPG6EiV")ۈLh9ϲ's`p$kfYw ǵT LYuHmS aR+~VŞh@f.z(HObɥi(DxlfCb/0('k߷9lIX:K'&>:U@KBYhy*x;'`ڪ#M;R]4M\Ǧ%ң"4(a)HC1z<?wġ<8qB|˓VZX`6J7܁PD~P7b*6=Mûf[9Aԑ'6#+L7c k G$a v_,Mɹmz-oAo ,,z6JJMΨ. 3`RgY [!k|"C6,t{Q+c`KPYFv+Q}A=8S!ZLf:S\_\*42R +9(ʳ^%IpP2u5$vX(IIV1G~ϕ f=(>$O ؝jBGȳ쨊maXCسZ&Uvz*lp33pRbl[,qѧTcni,~ښ8,ba>y-x F˨ܝPcakر'Hc&^KHI0^[tu٘<˨i1v% R_L EnoM'%(ߥJr)b~Ė;?{0 (3ؚg{M@+Z73ߟ y|7TbB\ز}7`ZZ@.p^*'3K372} oaWjcL< L1)KRY lְ6 hJݰv/BL+TU3q8 K[\fţcrUud:3qtdQri(hu!axc!KC&qfgQ~#sVQX7D.r݄&K?faq:X=sP)hX6&m, 2qld_3#C..?3Dvz\zT[w>+G/p*[ >&R2zY8 N0wqxPcq ƎުC'^KenI\dO$a[\\s%#6FSI:a *fccLq5nR0Zp-Ԫm)SpZݨsT>cs&^yՠ2\+Ö 7**ݾ}31Uڸbf ሞ;#s›ޅ 5,nqzPf|R]GV oaL#D@ 覿.-NP1wIm.9zHp#GÙ:5 Mg=qX;$1A#_Ko'X);A> %V IPBm/^}k %BR\ڑgxHjOtT9oY*]`l U|d0q/KMC ru3*I\M UZph!( "EM я]$P~O\f8 Vn97u2GiRr< :k*qa&L݅~Zjh(7Ct`@3FL-^UaES߆!3gy֮JP5?kt6.yc4V4"ڔjw@_&&:tdZ+G͖Z߮0џd %+ͫ΅ oZQR|'T>XpA" L*ęXʹ lzC+BVޖBƅQLѱCFM@$Z⥞?a1$h l å6KUwZ=tj;g.Q*[5u ZEFօDoVA&MHe"E1OLK36fO3<)n&oLomeFH`-Y8 7p"F w/ڹhXS0V$δG?F扉F4Y*7sG% x/CXv3,u6&G1aA#aJx. Tt2%q\%f9%0`w X]7|!4-O0f[+S |X ))S_ *!S-;fJȲC;3HE4}򣹅lB5;GܟDeyݛ5CY7atfMu .G%Ld(gdzMW;֚F\h!R:d `aZ2{1[IDpnLH`ŬY(RQ#O'Q"٥̾=!O34WK^l_(hr 7g4><}QaWKR#dF5b"BYg~[4vTriPlƗ^2ZM8IEg _.XGIl8?QK|`SmL,^ z9gBTz- 1N8٘Î\ ȫl6IejG0=u3YMD!8 B$PFшXri7;̹curFD=oCOҀV>OK=%k%x1%eZ3o?#[[X5 ^2 7BOŻS `N*^Qy[ d %`dzAIut'!afL`Pܚ~ f`h| 9-?)K}\+oJZaS=H w_X i_Cި4K2uw.011)菨S!&p'עN32-xuWu߰=G2ڻs8TWcd/E8cl Pȏͣ'A/7ʖ֊ە9>eA vXWoXO.`ErJ_ ۥMpWHV)W.3n[kc#nD 0,*AoN{V$ߙ7 ֍pBŅny@u3>xF.6.E2 ؉҈F '4vq'46pd.R@Y3mghôéJf?GwnHoVAi_* KŚ$Y\QMYZ%YtnR|Y[etμk\xg҃y{BߋTGEoolnVRN Q=4W >: (TW(č`3W{zY˷|y=w VWsSb$7tֲq|F6+yhCoMG2A %$=4A^GA4N d%Y:sZbz,W,R9Qe ~#29w+>mݡ6>N w&gM^oe6{H+r s{('YC",ɘv3{nv 3 Z(y >L=͢V .M<QJHl^5Y/I'[=[jS#&FO@8Uj#Wanm\!wiETMLSD{)Q*uP9#ɉyFwEn}^+o + zf1^(jG(tn$ ,)mMN)`;%14#-fQ"|㺜P'G=.e#ke7Y6~֦D'K0L[ -ϒvcϜ'+\ZEda;Н;p}OҢK눈!պ9|\qBĕAS8̾/Y}z.$f"QG2=`c.%mЊ8NB+)Inba;r ,ż\?^| my,R Xu&AƎU^{G0ae!^ =|@ mVDE3~6m @wڬ+K‰$5LAd TFhJǭo|ӭ޽THq5_X,e[iڧ = H h ge0c8jv"E50Ye|e0ig[dY??%>0 Ou(A|q:Է+4fR00K%nI\p$ |LQB'nnO u^1Xwۥ{,'΂q\m<oͶ{*]8N+ysiG(<#H"oLy}Q3Ѿ#;d}o}$Gi$ D*騉iq2umi whT >D La 7ĥRD-ZnJa9ڬΏ9>w|anR]F :N66ޭ`_( =sł_`Gh.n~/y!*|p&]X7n l+_eCDw>458,)?wT&^'%I.paº#dke%lRCS ?ۀ> ~ Z#TF-R $O>n7ÐRw|AqO H4LIoPO>UgmjЫkŹhL3d< Z#JVF,.SU)aewpV*c [7&YGa_ΒdN`T*=3҈eM|Msqɪz) kVdN,`QZi/>Iこ[}g FEܛ[5)/\\!`+kۼxl_s|YЬ{$zLjC|~ˢ1$r~\|=\g+&"d񅹽J`RQ)&+$T$@';gB᧖Uc?gcmWz%n FJCαv"7+:hgq(I9H8^\UM1OUU%i_P=qp$ Y4ɪ' C@yl c/‹))v%:!$ωgڕ`HTlhhj9g_OО,ngB(XKvk7c_a[ wPKƧ"b5+j fI6?</^lu 1ԛz"<Ӭgb3`5J0f=G8KDVEfm)` lj{iȠkG,i0q 69Tu1 K s(q'v[X`! fk)'j-Q]fG*b^ +n)$z;J;7ClbVo-',V`Ud% >{-[x;[i#S WMOFjD_TKt<5YdGR1k#1ڵx1Gcŕ9D*;,QK*Å;w(-0;nf m]浍S\G ]$EC_䝇>%Y1Na~?DrDՁ\>1Vrgt 3Ez_OJdW!Hδ"ֻc>J[.4_gadgȯ &0X{Fe'w+7Bc-ޟ dܖCrT h'1{IvMcQ[cU՞-ӽEVdBE'qڡQ EB st-iAJvZԽhy5N ˀV'qtB cug 1 '05i}n_wDq,J4wF<۫ iiE:gm5(yν$~:|ssUzBG]);yMU!Uo]5FsX?Q [ȃ8áoaz@IK-Fow͊ j!b/18N<ܔJOCw  0uZ~Y>D FŽUOvY3X|2oHBO']@ٷT4jN#z>Asٮa:<:;l7𼬲 _!%8ðz )bz [)hC.# *daoOG@938dh8**.ueϲ4¡I5ܛ|7@_؟sIFR$^Ul` wlvI:PPrgd%HMICf.WxQHE,e@sLyp ]ų +z ]0h:bN\JXbwꯚpӤх1ʽ޺́!mEfhp(^OF/qsq:Q_Hq=rM[T3ߗeJ*>sn#H<"c Vett7v, =S,2(}3OfFAjWܻ[~l-y4s AR/Q[B8a@Ȓ{gvgtP;}oSqմdR: -_n52KM)Py5\[{xk2"TϏgléP3D?\ĸ9Ab[Kw[Y#LB@DS~TV3}.mk0rb&QZjtR3뇻Ɋ.sʞX ̾ɊW'Ip2)Ȱq>@\S;2U@e^x>e\/7*Aϫ(.JJqSksbǐp(uҜ rb%ˆ⥘=UNo̸Om<)Oa}T6 .~ mjiFwjJPv~=^zM+įhkk㱑ñYn?IX9$n-תU@ڟ !/c'g@-BVyy{ge$5A;viEI:k slѽH j4h2:& ⦅qFZVL'\ęI?6hAhw~>asxap|gil#0ǧZbړpluwM̏L$ ,zǟSS1,0mQ3Px:y94FI6COk[EPq^kWdqj׍6~<rc N }vٺxc X0*ӊXS 5rɏ3 ekL3{Sh yY͢ -fj/Z*v?^(anld,QAx'Qܤ8-}m&5HN^cYfE3S"oV&U 4ly5^k%2k)/a 5X"Su0,ohyͨhδpY# H'tf h ԺWJZ4vc(/ 9lU*4% [*x N> 2,mVŁ>r\0 vH×UȶRꑌdF盔.:W g4)湈B~#9H#eG>bENrsՐ ǔ\ɖ` RFDso>N R:;1Qw?Fs9[:^pba8LQj蓦bwp="d2E 9I k }P_Q7UeQJO7;Ǿg6~"ӛ;l cM҂x/ LYVjN`J;]Qe-c`A)=QـQh"jlьUJ ̙kقw~ vT! ȘݳvRN3#;_P”`;,+K@>|4ԋt #I[+"L_/8̚yRJ+Ӧ3\/V83GN -4] d 쪋J"Ua! .zyAE! Z -rfmӓcdztrAm@ _MMPCآyڑ| |ŕLf '{=>=#[D]B[n%^p 5YOфRůSEü?> t-R=A'Jgq].M[RάԻ١t:rv=\{`ҭT9&O9ҝJ~!﹋\($@YH0[uݡ9d%KiwH\?_lK2jY>E3euK/oqjbz8B>@W³ѼVyQg Y?Ń~IbqLJ~2@<|=IWjK}ѝ> :7uMP^$dZuI7,Ftx[(\]XqG'tRpt4cow\TN%F #((Zq_Jb6:31rhb]#~u-&ˉXc`|v_$qCAkagv?d-zGh4la5r]UTMFE>̓75X2rvm}_]㞙#Aݰ!JAd~ 5W !幻!{~㛜DaP5M¨,;Aۃ$dȆ@%Bj/{Nk847x}]1a0hKWAN8]qM5o_}G5,d^ .U.YVo0Oj/ @zrN],g{"e)NƐyhv'|Ӣaj;sPAfV[(rI(ޣia*cxfBի1^>'(:ZnY/_i㫙6z4U'h;dӉrmhKO:0ZQ沟ZfQo}֍?R-_ RV=WfS3* Ôrzdnǎr-b8[?An+chc;<ϴmDЭ;a玄Q'!< orŠlOaPG ؓqa4@HM[yovSaM3lP:gx8YdE+r͂L<+X( /B(=u );]jsݖ_^n {&RXGV.c YD=|H_O MO gAI4cwp(7f"γZVq[\ʸtq W`5$*JÁ~HO+.&q y!òJW7rײ!G3ΕФLѦ>ܧ5cj [$WDv x` Q_8S{ul 8`4MVdKcGGv;B*C8Oh4 .b4t.Ci%le t&;OW5\W &GcލOAwۛ;,W 8ac;߈خޠߐ= F\J |bse! q ((C$lǰ3L/XO|s+MPaYI>_Һ7VOp2OVAG&0%F|cJ :Szrϐ¬菙o%NYq2iL6q*5\}96+:l^>s~P00]KwuӵPt &G{@VM *89>*iЕd n2G1% McW8J,܏`,*> 2x0s5xeUYb-_E;x{co66,EYyXL@T`}SVswht1B'O!SO.1uƧ'#{36|R?fv=PI8|~cw}ST&?ZBŎK&>hb{ue&}{ۮ74ߝ@ .x,Xy N%l )n*ndN* REIBh!]6vasXCRNj Ğ!J]̍8 "e=saWu )y[=:F5C%7* Zg]O=s%VK8& ?)P|Yv9s*:pWRjJ.x%8Sc*1(^"(oit ϰQ|SoIQRoC7z`_DKloh6Uޟh ]4X&C5^Āmspbw|zdk;5Ck7:T60tA@f.EccyJ3K!vGD[-u.Дq,O[!Rq!­-5{m>ꪎr.}c*20S17Sў$i0W\lF/8[&GS`EQ/6jMTTz^_Ҽܫ APt6+Tv2B3QY1 c-*[4ń?`-7o6ڱM,22nm8]m ^iS`&es 9g0#EW%ζ~篒ͯCE+$sn]_@%febZE v|fX?S9B x#rq 9H,=hD&38OC1{t0+xR&\)oW=B&<`NB9[~7٭-=85=*~suQYY%ch}_{ʗ&b6uhlSt1dbb?hks-xo'X1Vk9~?%ޅFl"chD.ȴ}Aҋa2J׆dCoqG>9&s'',{}*Ő|%}`A2[cwtn]zC%k U-u~"lr9aPkF`!s(F㼨RW50X.\oG2{y gcM濊8 /  ['_an[_нmzm8x{; K vHfS5،J@eO*ay9#DH@VI D1mPx+#o`)> [2֬-_[@?vm{MÖ޺c=Y\0! p2T`3FtLh!XyMpfcAꞢȂ? f."|8HZ7``)!qX)&,muXBqH4"3 7E]5B;m>*|5Kh"?d$cd@ ap#OI}V3Kè/ޭIFiO詜Ô8^'3qYk#jIBp7Rh=:%?L2ӣ|R zw~.:;6|j p:w.Pq?v{Fhה7!L x1.Ȼy{ 70ra$o腙C̚o|uB,$K Y\ 5oZ0J]5hLyI%?7Bק˖:k0_ؼ9 [ԟ)z&6oǢK'\6\8f2 c-O2Ƿ叉_]b$(Q\qd ;hc$|Pg.wWJiit(8NǤiϚ4[SubDȌfN$5oO1pv `"ۧQP:>0 JD̗ YXaUr~d,fd.#3̆[7~HW4ni))qw$iS,1&$@Xcױ=bڅx٣ܘIPSH [*cn5sxtѩ)P7Y{r 6vpڡ1%ٮq-rٗlm^sb)7 4V5dJ=8 TRE|;ߗ>T);ħNǗa_FiV3St9.` Θ'bM[Sɖ2\eT{QW|`l=@MQ(}ht: @rMRSA lȼ hǖT2D }[GfpGXsbZ ,L_D0n(rN/lK8|husjP8;@xݬw aIJ!9?NRe"< ưo,  ).ml7.%Y 2B;#"@YMoB|Eb.q+J|<F?7oG.ءG˿@*o:GRo vBdsj} MĤiR\{}G$&Eu!3[PMʙ:X_ܲUsW[ݔA0v,G<+v9 k,[EiBW5Np7ҙ=rY#B"kvyZFo%GVe~rc9PLr+75B}t?#Esb=[#9`tSw93IbCO2c3Q&U=&~ZI$:TIh]doR13fŊƯ4ʣ/CӠ_D& ϑmh;^ #'fmAzLxLUč=z|1D4(fk%Լ^Q9#?Qe0AOJ^Mf`-I-15PShӧ0)#UDLPK\.4e߰fj c-Fii1]._2X/ˀ`tD Np⮬BNuL_YmȂ709T0dkMFW P+"_49oJ(S}\!y~b-JMK1baK~Š'%Y]59w=Dlی^VA֌~K]C]-8AL1Y4ݗ3ʎ#ōU^qWvxm;+|8Fk[H5PK"ϚyZƂjsHc-Q=Eq5jGP3Z)lzEY)6  [A06f/ o^,F'wլw#w!yČ댙! 4!(+H0=Qyq[Ղ -s4BLӉ_ B&hP;/J`K4@OhmPnmF(liЧ4(oqrƦYIP'q.ArR! VXჀG;&XvbLN EeGd c7>u^ْ(9+C-N"TfRt&4Ti6Lrv e! Y|fNT\Z?*Nk@b[Y&4AM{,ݠʯNE3\Dqj(&LA-7pHNN:/lkӹ@;\D)D6;h= ScNnixwR'|@O[4x*-|ՊH&Dl|6naUٌD= ,<и 9>+\MyQ L~_oJYIVFv]ǻw*NlwCDLU~xMlPӫA`GOِR8]w rHjN]G)$̽*L.Kw_^ @J3Y`CKsf@A\kHgiù7+?r]S ((2B%Fe-*bp+VɿV|,6H΋_<* ťdجzeLn7ό>2+Mtcߊd- a]A Alil%[)6-dP|w(N X'l>p8*@:AܷSdzmKyBsm}oX{P=He@n<LnD\g[8l06wَ00(٠D+="Qχ#!/xR=s߫tN1Q` iGx7Yɬg#@a rs/ >+3X+#jO1N:?^^^OԀ;1>|. 1VHPe 5]\?5)A(^)Hh( x9}AJΠ3&I}Vl!$d"oHn"5w;X*ܘ{z]!py|HҸd7&.Yb.SMЧ$/.ӅN($F,S=5ҥZir97X]8lďU8F8'z?9C°fo$sTP*`6K1X '҅Ӑ|:U۶A3ĉNimc~(]t5}ZIkvoWzA4BҜ?}zVTsjJu/ 55FKnZix7œ{I|: `.#j8sgmq#c|Gܱ" rFY?o G_^T1ϗӷ7ZڡӧD@,/ eQ8U$* 3 uGoOˁˍziMQ &-\%J/Nv/ :1Q8;[N1>g} fiRm|d^-Zw$6>L m},O.g? Sk˦=` 1'7d7q*ͱAW_&;\1 uM++xvO brjj#wb c'Z?).mG?D<&GSA"-f5߷^ } gNM2ʹ+ə~ʛ/lJ&tџgd{$P<+ɺboOiCYD.7A0[Iͤ po[åx[5be Du4Wf|RiZڿvN  #mxʰ3N6cFG~ДZ(.)ۆ> N6Iݷ5}fC H>h&^l0e@lIjjnyK̹^K|{I^,0Gb-Jҩڹ-YC"-^옮ng 0~ۍ5`q^;)I}8tFmՂ=lϊ &1 +e7C+""%@ ?\^^:\3uؘ)v%|1P:('S]4TpM'YP`ҊU˺n ۋ0̤ɍ]fn4Xm5MJ'#~K\6Ps)Ä<_w1پW0VcE1|]3 >My-+ ~ۃwMQBi{I%Ip}G: ݾ1 lj%2G򰡄5?x>N txC1{`@TPw1X#hp_r#轋Ӧ5Lȼn}aV?tctDU6Ā?9PLPhxA{{q,3sQMtzTv"í[dpadAhlɜ ^ځEe'QuMӠ˒=Ȃn'PdgEqO0z>Q1Cg߂홿_xSd;7ŗSu!Vr^+R "9H(q]e*@Y!̎=}=t}q#=ϰ`ꚜy{pRVGI -rGNx?7W`j be{/Km 4lk}an 4\II7AV5HcAP$ H|@=WWI Bd>h$ g a-}$i]ܶ SF"/@GLf,dG >:>2tR'.*;F>K?hH9]\aenELq~+B;kix"`mb^ 0yF.츣ɑXc #9ROQGHb:j%.aʭ.n9D}^6v>3%+=~m U+Sq&:̿l0k,i!<Ә$ C~zQR0[%x"́;~dijoM\†&)a떿h D j2D%Զ;f!n!/"wrF_jukIYbEW]FD= a |4TM1N7qWT\/@ݤ"٥W{.`źVA9&bAy0DP#|/:L(CKCېY2P[9Yw06w5``hpq6&bhc x oR*s5訇M0̭xf@l3Xav05R&Brr <^Q|fD8(j0[bpD<6snq:"ɼ TosU X!! chQWŊ}V6Dŗ2ʚd73fKאym/ym—"j1ra6Bp2 ##f%%;D5SU'CHOKm¾nn%r3G:b+\nOWl,b\Rn*۰$x7\2 7^$䢐Bwۃ :H`8czg=d&ğy@F6Xbآ'$D^s[L$И/{0q/0DkxxcHߨQOjL&Hk=y%+E(TH]C H_˩ U?4HM\6Wdl"(' !FW`)<.d84>5=E㮵\?祱7gtJ:]ӯrjDRjveE&Oǫ Q{oo:?u9H[l#6 b_6 ۝9 [0H=/7ʫCt@ilkQmrQά3ktC(5\|3C<@ŽRfh Tö3:PemaT."wPr8?ewx/P~s>,aqUu{}ѝ^,SJM(Q^ +аBKi?f 'i_tFۚj"d*C X uNoEiiA=s*.xǯ[ h %c,CI]F%j# Ϙj mlvr߀)9)-xL/VqagoSŻHM{㟃 ^-qҰGfVpP=cD=̡BbF4pl[a $R]z0_5_-n H}H-$?(ًH!B|/(Z5!*o JyHEw-F'y|VJU;_/[R,O͸zП4q2Y-j:*Gۘ݃F o&6oM+σb>-+λК) . MX99Biţl˻ͼ>UVv1 hHm٫ OQ(~B&Q/PGPl@+0D8OCrZ5^>O~VE,b|(*{ Q H@1fZ9䮘!Gɴ*(;oBzL[q2$7tWmg<*kʑ3 &uH;3 mrjOvQ#+nY33S <(|2p{ާ"!ϰy= GN]VިR1%D?iћ:E>O4Yg7^##EKQx44y gJ$ Jdbs\12(Xe=J^d)p6SgBLzY(0쨏6 0 L@8hZ=n4_. H6hZ=$T:膔5֤rz8]2­C -v?4 T/[e$7gnk.ߜh?+BW;"$! 5*Qel`mٗ. ӽۻpRf!!5geF:zsZakuA5.`_վc@q3_8Ghg)rZ~=X( }etŽ*C3cԉ=4W=˷+9 )|?xyf::Syr؈?b1B0.۳* }ړMeS90v^נk8`>P#Φ[St_5rF[O2Zd@p C: 2v vtVuMC_4 A+= DL'CIתߑ==콈9v7#@>`8j>@ ߊ?PS=nYq` m2ɔ~T}tnuq>jҋ_꘠| ((Ab>rN7mo旾6֠`}L%]|OI'\ ]=6}Ng5zc\g(Q&tyj^$I_DMc;!}t1ڐeg[]đ9 HX vnj:}&%f#<H=j*Ca/|=f ?+THE!QdzQ_K=3xdt 2C!_`=SvϞvu PlzqKnB|cs*/2mLvq~7ޔFz!#,N 9Y\G*]^M Q9f.)ZEGga ɃD}"wpvIbWblnk_/U 즏 ``>\Z)cqD:F $i -!YvѵBq^<ɪ]ؤ(zϞx\rGMŶa@MS@p41eZ,$(Z0Zqw"hڮheUF`vf0gGvf&3כ*Pĩ#UHYOtr @X +9yAւb1GTjFT1ddX.!W3c8Fo1. dk sNDž/̹ۧ\-oV_^Qs,{D]TBG'$wb*>&"D?a20IAD@q'r9kleYdaJʢSڞݹ_(sc֋7{*IO P%̛mE0}E,ѥՠ`R%?P6%AEti *&.AP8 Q6kXGHTf5X ;+zsΡƵa3sѮ̞ti ӽՃfonFx%;e]5%C]Mn>4r#.E>6 nk"W 5|݅vHgng |P)J `k2_Ϣ#e=uGRBfVqgtLA(JblGp00?~լ d"@S:6gPeanB'XgV%)묁z\>$o'KC ]+r`M~^y\?-UR֮NaK67HO&[[NPlVLᭃpqŅ7Ee /M.Lxf jG殜=lj3Z"ق|~s}<`36JX1|"n nגr4ʥﴹ۔l0]|KzU@~j& +fuyHM`AHg vS5lU,Em}'4Uo|`;g-Tl'GRZt=`&U2#'Ջz!<@׬ȣ.3#g$ԃy0MY(6F fʽP;.&IC+ei**> XXK:3#kx'laPEE*䀻Em;L=vl{)#1,EWf&cjqAL]Η(A׸a14I2D+9qD˰ɍ>7 RʊHe{UaGWrw w;1| dJ@$Nnyyˁ^XúkX&r!TD[9.8lq>mPWA |~E[AhUp(6 -p[8fwq1-B!m.>cqcI6Y{4cZb@|-}/d {0r\6MC  8@L56>ISyj* SKen rr`Pp${9gqJD+[w=S_B}Ms k""v]A ~=(+[ֲgR.,~\OA :|Ԝ0oHqzB˃t_PGLFu=fmI)02m~GלPonzlr e\e#{Brm6DCõOأKܚSH$ 4& mZIyrJf jNY< nWAup{ߴ'+CS+iI[0لKiPB.J7ps_~c:oǪw5!СR@F[n)GYS(˦t}e81Ȟ:I,0Ɯp0<ޮdg~_{UviEO7{ %a@:][w8ADꙵ1č0t/b+_K'򅭃 $U$u^^*dhf?냘͒Guz>&|?#t1A ŀ~]yZPѥu&"sb{Vy<ڤzG/F~qe~N֖j7`Tq,xgD\ccJ;ZMFHI|} Q0b0=#2IQ4lAL,Dٙ.! szub8Bq• 7*ܥ6ИAqRFk.ޤŇysm UAT n\Lh٥=$ *:hw‹*7l`w|l"9,O$PrYٱ OaU-HT[%4 Hm k+}xNaC? QuG<4WegZ ϩ@|Sqī E)zG.-_7x9J$Uxjّ `+ hhWAeqe} 3cQXmҿՊT9ߎl(QP3J%qZ6=de %)HeM ޞn$蠬RD~[ND.bc6z"#KE %Bk3.~/#v-q:9^Fzш뽀kW;9*qE]om[ivkѠ(kq\i M֦5@0Eqqk9'_rvD6wIΞZR/Fw[h*Q{=-O*|k2pxc{&xm25TE)q /CGL2AߋT+MI gu 9`m4X7 lp1_~}sƔh߱~oWDN)p`{R a{޸wvxj_6|[0"|κz MDDfHC"q!GjI{M0 &{W=/^;4YD߂ryg7bZ"p`2-rʢ q%L;ٰ|; 42 L~2B';̤8M^נQRbr8Aney7:یꝵy_x"CcȧSVXj#Q(.ͬ8(騁I?S[ Euz6ā=ȁ հxys@!?H5K-l=bV>8=+UZ%e:StV#dZ)+G(!?`j {wQǿX7 ~4c8s !>u+#E䈎 /F"W i=&i-{~&=4e]#H2fC-[3-oM4ե&6@|0s_SxbKtOco>k}?>-i)Ten7ϕ1*\RܽcFn;p "AkĈPّvggڊ?jUnp@2?.wuXs"r79ߋr%Нڲ.{`hGT+R@74DRHUXf Ya8ֵ/_y Qt̔&2"LD:")U|'|T[bF Pmz {}EȼDf5;;FI҉}Rۭ/vNQ1ZKK={KA!aU7P&$+xܯA E ~I]K ~{2TFm`Z<%ڊ|wN .,r5]l)p±|mRh0$Zϊa!Q]wZ5cr,=/iŒ%4i<GQFRl_1䖹LGv81^ scPbyZlz%+ট u"thjPJw'v| 3'=j.|"=剈#LHn(NE"~"Nf!Inqօ40Wݨ07ϰŤ~ VcT=<-ۓ89[˸SءU%g`EB 2@e$6!)Eȝd3w rij9:*}1XFm۔<@򼍃\kwo!MN&J4Z_hVkOdkn^E$))i1੮lЅp)|Qo^U!"uRnB1YB$@~ βV5Y\Bw\U*vp\kO.r8gTJey \,kl.v )Ȧ %2d<'_l**w({`}M?YԒH"B{/WT,UP 8!Í&yp|节> n lzV/G"ƙjJrwB:[ްs4\%a2mp 9X :x8 E&_cHswbW.cQGOwHe*qW^m L6$0#2!}61ZeR(^.8I>Cɘ&N余24W29aB-Wۤ2hvU~Xܐh  s$*,8 E:HeT O;HO< UGq,]I_lRr #Ԩ9Gޙ<=Ss1[ $r18X r߇K`+e|Gu|"dr9w]|nX<tؚhrIB e?^Gw3(ȳjMC/PTEͼݔDA#v17@.+n5 Adxĸq?K IsTOYO)_y{@ `Kpzt+̒$k̯1;_5cM\BWDA=%paO&N  Q8Qѐ0#k~\Cch>r.'_Wl'#'R/";ÓfB2uT $s/oдnxZ7H3 3¡Z^TlAl#Q]z~QY`6"B\׆#wb(eKraԓfr _6a5St325njXf d)~ AIR[LYӠV @ؙ٠@_}XXq(Ds ms*wi<ˉv߅IjI`5ig( Stgk7.gVSև0S!.-D&Gm'S#jXIJcq]"$6#eC/?c<|2657߮՞:JqAaZٸ5hMˠ/46t',gA:1H֠W9Ztsih28Bq5z:Q{ے߭.ѪP#\@ ,o!b^8I# UkOnd$!^SyHpՃ=B'Jb[ kh.fj*lk*z z0 ju{+LV6j2.o 95{@[/K#h)ᣔFH`wPjnC8swmoipqr'\DT)1D ,@4wݝ[Cɚ@v֍ܻKa90ҵZ*dgeدne auQD}+Uh!֢:߂ߔɈM\|µT5k~=_A݀mb Y3L(Bi#AZ-+qmysۖn1G>tTAvR[JdGp"_9ݕ>Y%洒KGq́ÝGxGC )="Q8" W+[1&/;MZ?eJpO_ |&*"ZbC Jz֕i{fb? Z!vɜыhE)=PxKsr>y6 ڀOR͹}iKFշwo" }w =gɾ{N^ܧL% \+1=aY«#aٕ?m)TvGgwTLm$'?տ L1+Mv=;nv2ﰥ/xH"V3=Mk.O~.a[ NptdNK:ş&9rP l?J& sKcr#@3rM-a얥>"pMpY<[;#aHlQ4*<񍚺\8SCB˫w,kH}{LĞyD ,::)P4=2EN(=!w> Cu`1 3)\_+Dߩ{2ЯΣ_=Vc1@pr 6, 50*;1e\>+_G %X{)$)So$B{r hy!7alBюu4Ŀ.ta\w-,iS*hoR3s-0P>3 0L C@61@PPzܯʺC'] Y.:2s.`5jlÍ^Q[@o&$u<`UdԄ X&P=nEa \D8a[Ì19K~F;zhP+ BE!];޺3ofEHCs GJ;AP|^'2V@ ?+̭g@3DL2zznV 93C'z\~K[x8|z.╾0Ianw~6J]B"tx5n),Uq!CiaF2 Aσ*ɖ 1 bce(kWBȝE>_7Yˑhv=dFip6auyg :CąB q'|wkߡr Y1dp5_6 C䗧@+^3I~?Oq=yKe1ވJ v0x J < )Ggŕy7uvfT*IER݃B077DC͂5H㧗RoM'[]1{-:HZQrk3 Fw@{פ:ymʢͼ ~2/ o[Gzҏzz${=̶V?qߦ n#< ľ]yLTvy3DՈC>`h:r ^-3Q`NK.k@_Pq#g}Oҹ3ȡ’j#bįva5J[q)wb.d.̋Yv6urkR"-/ J BV5ܛR|_o܃ Q cvBx8S4Tm[}sͨbEkS!yC*o[buU/Ƽ?/Hd}$L]y2 2>gZ"@,|ci.} mD . yQ#IoW@ `{ 7>TPE04 zu(@nlhQxFtcL@8+s$@O13pSݽ`Tq[{R#s`tNӥwK/~-Ǐ<":CO|XחI74!S+9?>vtGAg,s}u6L3Q7\fUMUqLkXg.] k|Hv6[0@ M- $:_&I6x^s5 ,ݵo8kn^-pINSF\~8s ֣C{"gUTKOS,%zQĤ=s@D9*dt=LZn\Fz4lֿ1?}3GF2^0vV ژe@ftDo6YXkm܏b@ f?nR_~SJ rA2WNz`$_\ Q^E4`Iz!8[nv-1 ؘ؛Mhm>d;H*TOehɣ!}]_f>ubYUh|Wne-ԇ*{3n GjZ<">yyNp4zAIk{slU,? F=m܋lVPkP(%鴽i̘/~7%>[ Y:cUڄf4|<( oY,Toؼ^eB"`&BQZmO:VK֥-JB`EtSu{_> fK4w/ݟ@L<\AV|n(vs[?S!s.-PH?X܄WRϛ09efsgpKgEK*BYP%0EN?3!t9ޖn-wl08o`@kգ!ǃdY/{w%%>|6ñ $<]K;`C،3;rҠ{ ǢSx~Y k܋2!i'x)JՀ;nAE$m2ȍT?tp3bT*'Ygzs׊LL"MEFdo5WƑjY s/s+URH$?RE":)C]!%>bsy|3(?F$ FwѾ~NYvl 䚬er:YT*2%ci7gGjhN*`ܛ'un,u* ?b/ n-m^񱋷^OyNB Ȑ{]2Jh+2/jHtNG2M!i阨q=ja͓ mpDPRKjpJI*,ҴƲniOU]ӲOQ@RF"i-(bÙ jMyǚѫyhly Ftb@ f qTˍδ>Bz2a*jl:9 x4Zqx^pWVaȦ:e-A%\˻k̅)ia7RO9;)$F\jPXE=*z$ Kx[Pp8Uv5R|?1 66ôUӨ ='۽[2$!d{y>(DKԈ;Q[`SoC.Ԭ"Rϫh"އk9WC wP$T5i c2Agpb]Cq %A#p$D%;6z2s>i%"}Lm ͷlhzZЯNY_sdV;|>nBJ5Ѳ*:`tZ<\02nXơbzzҚoלb.ZfAww/h{txNZ zKVآvw{ś?*$; Όy"ש5@VTgy*y!i&J*vp퉱)"jR,:US}v"@bw-*y.;}*F?Ly?LIdon=~U2 0[}(iXtqN'P`-9>fЎ!nì Τ]Pg/}1"ꇽWvjN:բı; "k1gDdH(WdF)l~4:eԹ- b_{/ås2QnilF~%Kmiyp [ߪm,J#4Bԙp4 V_sBSʙc`T2Fxyދ/#b3٬"n\0{(pRuާ$9rs8e13#ɤcLSJڼJ !I0?\D_ӝUt£4ж!cQN(O4J 6+{ldC(L?zX}ͿhJP'9\zP0D(yo'4`\v4oƿ!"qy!3bGZӯH<"ጬ\3?Jly38: > Щ l NHi*}.OTbR0*̚q7.+v?drӱǼswg8i7$4ީa"2's73x^ o %z9-eXLVb[y:is^boY(7cUL3;-ޗm͌%@fyLGC4H[TQr9ڹj˾|C- Ե#ѮoF]AڛsuaDhd?u3͢uq9ܘ=- Q>$$lXaPpr90[ƺu,B{UdX0J(3_&GbvuK;hQ32dZt3tg52NZ`|_eV"ob'TJZ-BD_X'zDՄ甦LSf_eSOdYЇMpo@AĤȲVX""%(r׶js.=gP,foBB]OS0. CۅϦ(^h1M|cwbvbmޕľŋiͼa`YGu<{9}sIB1y[}IuuhË&y=HlmꢞJʹ}hSmۖg\WIhwk$mN "x]B Ilm8`k& )uݏRmZ6a03{df$jgM>j98H" 2Q#7G"{k1V  z+C쇙CBu~MsVS\aN!)f[Ojie4T%T0 54eR-C&<+^pƃܚG^HƲKv* ,#@pkp]H!)ec @hOI4 ν3W|}\ bb~3M =J%(1Z,0 >r C=nmzxLt6ᱪ\Fˋr{% I8\h\sĂ\ޏ䂦!ۻ7a @?}$uBSϭ@5xk;oXό{FztѬɒi,}A16C3xR2IHTh پOV8PSSXaBKfP(_#5r & 6B7C IJ5Ǣ]l\SIzjA&CLY'6nF#X[gtiH_oA~(p:t_F༝;@q.5ʋ$\#&R{4$|D#TcȜI^2ߪ&F& F8TB.5 T RDqBѬMThG %+pڬ|s6Ͼ]ivPE=Skd<][q? 3xh|&%> ubt˚nt|]m7_:_Ook*D'.j1.rfPtG?hv?6ɌaoyQ%K6j7Dlƞɛ;?}XuzQnh@ܲpӺ1x+ 5m]$`:Jo1Z@LFwv[ ){WJQ^,CHu6wFJ />%E;aF^ZFi!4u2ʿ+jc=i8iF6c^d9zfάjk$.BLYr.x=L(WExg#l}>MVl@Vݪ︋@dO݀ৰW}8(bJ ٨qGgZ4k ߇pw ,ȓ}?#YOj=E!'?A ""8-NDEXwHOT&SsL'4F[iydiw׍AÈIpUPP-96^O3o4[ǻ|Ʉ9B~Df:]՞ } 4#imQZ]I`#xvc.FitĶ@(}KR;jl!; Qo'wS^PeOۓIw6IB#K;m==1^'EN:2ѳMكQ5^NÍX<F]ြ_/wCXN)mS&^)bK }ND?Y#K3ݷ>Y8_ ̴ҴL Za![֘!^p{nNZ];TEN7TvZ|@LNx2uɀiXzyaU.*'H@/w|c8æUJFX6Fbqosl"yH>.N;TwNKIJELEX(5N*Hǜw?r0hPꎛu졿V;JHo(++ʶ{Xa;[eFToHGO׉a\LGwb{>(M~FMPQrd55|C*K$rgwu F|ڐEI8N>|$noKӏkbHU {d~FOPB+ֆwfɩN5b͝+m=,pBwm3NR޿L'glctC4io_Y#;GkYXf!Z_S?f(Dicؙ4WZXwE7dzbqn,bժ1 M7O@"d~OƌBT!uD"/&j%|JJVw`S}RbL/:ӘԼ ıy,%>Z"{}7FV]:dw3,RczV-:odMkA%!)Na}>GK@qA*9rE͙UjRc(ZuxR}<}?$B|q7Z_~Zbn$r%.qR(bFjU;5F[!~Hg~ʴ!*;TrtmEc"#qm&4Ӝ ?n>LiξGɜ%8,y+DGHګ C>5l{'>2Ti,)xah1l@12L -%ɖ5ى';/֟ǚ>۸Z-gY(oq8<硫+f'ZTe1`*6([תδ&tWh%=iL.j*UWoGf>}EnK6l)hsw(m_t|ñe2")ֿyapp } mIgm.8ZŲNw$B+&< WX\å[irӏnvCpnC1kBHL>2T8FO^;s2tƚⱤTRQ5!|LX{%hl%`r (Ta/8, ChTũ\։QG҄'?Wl*ZڛYoF,:SnT "ieCHy di>bS˘gi#EޯšqAZ%VCԖǟbUH{Z 0f@- Ā+:G27W xyD+TsNW<n{fz~x,6|Se-5!vَLf:Z^mA%*țyRB4$ezHe8\4sdM)R5˅_,XlIQ,d.;EmaBUWhI rΚ?LEVKg&n>?XR\< 5Rs>4|mg HRybkGzk4VIh'ojrcwt; W|L 3B(K.{Ï ]z9u{=9pF=faed*`FSRɥx[)?U,1JYb N])q &1+0bYWgxq#!!)Dui\v4M~t&<\Dkg&ӄpSV.*HI~ Ƴsnv{K2(d"B<d9C/ O٦ h2rjymgNTRXEpQpQ*KGs]LZNTzf9t$6 vɻ=-gDQm-Z 㩝UrBiR[O[T`x@Mý8#9]TGF{SJc}K]d洼DB aPm &zx<0_+_YKIN|Ÿ1'Vci%ۦȴ[ .uunBomdntp}s}#/Z>a{Ɂ”&`5>8{פ<9*rhr7,o`0[9~//As׹.Zwƅ,AY%eE"Abp4\{l]zuu$eOP>M!yabulBO^oa|2CxYv D 2oc 4j;&C.Vt~_MCɚQo[:Sp^LO3/%YtZ5D-f#WGQ|c1/~T|(owrumahFGQtcY5ޔ(* O!Luק":RW˾]@..3OOuftfZx ?m>H>rlVTLUSU9,<^n~5D !"a(oYSF**?n&FU\yAFG9>. >Bu^ ͸L[yĺJ̹ܬ%]D!'v(K`=tsņIՁ2XfBxmD CI(ZE҈N'NV#Z]׋{2NN>pXVzLD[Ì8eJ![!l^|zyhv,R8j3{8DMGiЀ+T$'Q7ʑM K@qv htPp\`ÄfoQy2]Xn u;D Dig.~ X o97XkN!Nֳͯ;R.. ݚYl=8ǽ-V*Kfop1+xUgz;Yv|#F#dnT(x2UcP+|{w. [c2{tov+%m.lIj}˒>{R3S<lqr,L'+5^p䘼f(_ө7Dd`Os@9ͧW#l>&3rǨڱ>]3pMKUp2VD8Ubg>.Re{4M&cE)H;T\![@gkUavVn| ]߆.qD"~nAqBy"30K5H9b{p5R} սOl`?4I?'^*AG8BEGfA׸¼a|Q|^oH~h{"ws_$&ڰ52/TQD_Mc]^X smv ]" Eja։ޚ?"0t}4O''AA&OT_<*. ?:d$[/3J62b@b=u9mMTQ^*|L,jнOO6$&f_ӖRϬJU~Zt١./iB;|FKGhL^Fؐo)a~//a3̎oʯkc)f\S@[WN$) s1B0$-%*y+9FR@}u2{ iW,&v)l""`A_u+=kNBxӮn(JAײDfG.TGTIT0+z`>TONǸV^.|[;r1rLo:"CD#o" {M/d-'GkK}m;('RQZ|sI$z$(7ǎqA7ֈŞ_^@LxլqӮa߁$xeϷY~6IOߢ?kd%jŋxh_9 ~ ~]#U^N;䎟ϖ i|bNh^.9' zF=oc~q@{' (xC7g>\E0 @v5Prһap<)t!/t>j\_&6v3ŊW#JX& !h1ѱ'9HԃEX~/,lѯs}BYdAMl3ncߎu3-8y 6*)-G񌌨svG}0@_-#kddʹm\/%O~QkWR+3VSbe}-Xke |D\/Z YMNZA[Mz _ x'}NVizW1 %ND@ kkʲ8 OwrEn4! Fϕ׮I Wͳ!yNWeܔKNmsnjbtw$J+^S>TUWSX0qq R سo J0,r"}1`UW,{ї'=@)ro+߱}Kh@+{[ZV-]F,J:M"')|bYsji$( ]Z-nE`}frg;tgo]%`Hds83u4OCg2QO͌F`*즇 7KqOb,6cbA ?a[H5b~ͲN"?Rۡ:A]·ţMNlװ]Bsyީ#گ>>n n~Z Q߿>uGh8IOfS(|HB FŔW]F­x5>1>JLʚcʌ)Py{w*>&-z0->nN#~)ܪ@a3ɿV;]jZ (r|)#Dj<~!q?QL+Ml7 GRp ~ ent`20< {~T-kE%lpԍd rWw0X_'ib;FvI:j?Jf(Ǎ@v|,$eq4XꞯQI6qgncpdDd@Hqw0>WwyUwZDEw>@.q{ $h$h\Vɘzغ,n!1٢ӂT`u+KC^ܞ;P잊!p0"ZbgEK&S٨ N)z|D,4BbV  eDžP[w[8D/sPQh`7 %>f`TfY|Á^X=A/b0p;V/U?۩E]Oٌ| .Lڏ /Jt^ to^4q35&'/! j6y Kz?̌"XdA({+#6W_-@Zoqۅc0ϝY%l,W5boj7yg.&225;(6s~p FP689+s J^ߟ7Lz+pw i3.ƚ,}M,B1V(t!r"{k[֑⤼ԋU}ѬS2L$-ק /:~55ʞsxZA"SΨsl,;F i!oՆ.d)O{X{0\2xNoE,<|>PE7xd@Ӆfa.j(Y f 7 2^J_n5I@oYq!3KEB=g#tdQzwn GW~cscbv4&aZv wXG2"Rfa[VbPa0Ӆ>/?<&mY昳Ti,j~ۼ2B5I,zCp\Q00> `]EWlP`A6 .)Ic&HP.ʄE%0Ak MO~mmb^E,pcr̋V<*T-ΎD: -D/6k"տ|r!Wbd%HفUʤC7؁#&38ELJ 1)%2p Zxk޹&~c?޵B`rD;n@fum/uEu?1 x>!pͲ9\ċ\fDeNϻ;3U޽o1P~xtH#OuWW*Kc^Z-E8kVȝ_XsQ0E.9LI/Z8&֧jE8 ÚV\"BV iCQ҂Cy@"8ڙ7|Q ,7W|m`4KDˡg?1.B[)8E{Z^(1G` ʼת˭FY3S=8}~lGQ4 jk^{jLG/r)i|^u|i%ܨóEѱ*·+r Fl`RQ:ofw4bsVT|0n3uVˋ<+.ij#a;Qʸ98EV'\f^F.↋D ,:Ϙb;7"J6sJ耶s6ڵQNgcd* @~,1Iِzk~!<,|FےRҭbE\)!Yb2Su&4aXĥ IW=ߕս XEx̩q"K I{EG7a@}V\e^8ӌ_'V~-pÜbFn<FbldМmi2p=h?xboAerCEvWJǬ7FћZO6gG05~Uwھ~Z7h\a H'pLA;=#TǾ#[W/7õjop P5#)n*x8ݎ HReE/nW)ّ1'mgl) $} (-/i$17Ɲ%xe (ڊ' 7۵(j1zn 1W.m'R7{<%@]F ϧBI‘YH~V;RwF><3g'KlgSaВ<}Ah0Ii̲;挱`MbđfI!GY4;4~d n9vG(Ӏ e?X GI> Xt,نaG7z4UiX06~alYm91zX䯰҆6D$ >OA+STӍ+ʫo>76yU@;Y-YY9Lܬ&y^ Y}/HA tp/l5֔2n^Q U8~P|婳2`$>~~,3ߟ:#G3VDnoъ3$ 6[_"]E*PC^}3Utٽ y#.3꽒m@``9@*CYC?2/cvZōI~ ) YBn^]iV`9)#dm=po;z1s:%ߡe!zaw-ExhSJi"{uJؐL%kOQ6kե$<%RڃP%ϡ_|q(m|tc 'W~C~oݙZ Tr>(r kUbUj&JC|Z1/m) U?¯Ѓy-Rq*\BM6*MG ͇S|#pdRU(}uV<̇ϴ}!e(Rހ ,an'8#Wh@^!ļԔ]D [ 6!Z=m5-jَ8l)d׭Nykݱ#RHhNxbX :m*^? d/e82浓֎O:tJW޸X5.X(!C}=PǬy#NF47cs*{Kb J5c0$^LHc^F;eUTrӉFLOpdž9GS0QZ۩w$ 8ܼڧ5囝ճτRrx5yތv݆_<%5|Cu7&Ldji& ;\uB&& KU3v2)ⲋFK{(j=[#4r))<՟NB`_Uq%wai 5͗n 5Jc}k\ڈZo! $W94}}✒GE軾Mj˞UxbTN:??au ܝ*MC+`;2ELxmT4ۏIHkuZTŮqwF^>;8[? B]ZqK3amm2Z53pt/_DTN0oȆE,(?@Fu5X&mP2/c)"Ъ~g,`:N`$o_ 7QWX *uL\Kdq.Ttk[q HJ٩mL_xEY<=) ^+w; ^#]ӝ֔7+!©Pѩ}4,?֩a"q.̙|Gr ntim?kFXjuBK̈lYzP_jY1^u{gn)o61Q<̌R(͏]綜ط,1R!>@ѫr 5yS34Tp/W~}ɆC_ۍjzF}0o)/)2t .HЯQzkR7Ywo1dPjRTe `br$DqR@ #EZ9-k멃?O~*`oͦp@|Ơ6λ(*`(?ZYF_%OoJ)/ h940j=o<n*)DVQ|Ԍx|o9u[ 4)eT4?ܭ\U)iodƮCIt83ZzӬy.e qWK= LY 6խI ;q3/ϷA'2=+Ռ&QHR{tv)<7;# njOTY RehODz ہhvg%ڀ-^CyI&Za,`HJ9?Q4Py.-9OތWPk.ݩs%SAJWdr_a[@.0y,~R.02P)6oJ3w}q˖59v:[0K|Jx5Uw+ae[{xH [x)#ܢ ^zE׿W0*>SZfbҌxEh@!_0YM)wlcen \,[٨|Wq"6N+\ݣѧO&~BؒEL'D Lka'k u.FQfXE(?I4ݯ,2 tQBuxŷ T6h YZ