opencryptoki-devel-3.22.0-2.el8 >  H   e3' U]9M~o]e9ל,UBgHb\:d>/MDm9:(U`1z.`7:Կgx~RbI47~79]0!{mBaDiaM+P<֔T"j y.sG=yV  $Y}Y[ 5- t]if 倔?dc7Nigx>?-wM` Eܑo8"2JiϷflLq2,/+?`kW`%1%בJϹWM{ ElDKY+8q:c8} V?u6IǼi\0wEgn"4(ݠd6Eě:V_&Yj0sk1S oԋ;.fJeO%/>+zmbwwnJ]U *3TӃ6Ho0)WOG]C0I"9D- `BЈ}qf# Cf4*7EyX_.*ǜ:cu; by4BM14(2YIs`TD'̲?n]a s n6͟t&"a u\nL`IF7+zM/#`2398'yՑ-nroB"' .fev{gzmlE9H?7\@5_D>`<@?@d " E HNXt    3 <X{$<(8k9k:nkG<H<I<X<Y<\= ]=(^=b=d>e>f>l>t?u?,v?Hw?xx?y????@Copencryptoki-devel3.22.02.el8Development files for openCryptokiThis package contains the development header files for building opencryptoki and PKCS#11 based applicationseOaarch64-01.stream.rdu2.redhat.comCentOSCentOSCPLbuilder@centos.orgDevelopment/Librarieshttps://github.com/opencryptoki/opencryptokilinuxaarch64)errLA큤eOeOeOeOeOeOeOe066b8695e4d87dcc79a354c62672d32e19223ff94e5a72a57d852d3cbcdbf825cc82c642fc88043624667b341f75e8f6ff5ad66fda69626fde17dab9d521c1812cb16baf5ff8344392cc7a9ce280d2f63567f57cd21c2f944e2fe33596a0a59668d24ee36f9c3c1636a34a2d0c6c13aba8813e2d1acac74e935ffacf76095712ec6d02b7da67c57c612e3f25fd4846f3ccf4441dd43de683eb4852c10af7f2b1eb71a6bacaf862d4d10eec7312a0c172b57cb24050317e3290da8337488a941rootrootrootrootrootrootrootrootrootrootrootrootrootrootopencryptoki-3.22.0-2.el8.src.rpmopencryptoki-developencryptoki-devel(aarch-64)pkgconfig(opencryptoki)@    /usr/bin/pkg-configopencryptoki-libs(aarch-64)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)3.22.0-2.el83.0.4-14.6.0-14.0-15.2-14.14.3e@e_>d~d~d8d dZ@doMdkY@dcp@dbcױ@ca @b@b=bbY^@aZ@aban@a?=@aG`t`Ȗ@`P@`!@`&m`&m_____@^^b^^@]}@]߶]ʞ]c\!\@\@[Ѱ@[Z@Z|;Z Z@Y@YyY;@X9@XW@W(V=@VetVLh@UUa@UKSUG_@T=@S@S@SSR@RRRG@RRRNQQp@QQɆ@QQ]k@Qh@P H@O OOH@ONMQ0@M4/@L7LcL5L)@K@KՀ@KoKoK`*KY@JJ@JJ|@JeJeJeThan Ngo - 3.22.0-2Than Ngo - 3.22.0-1Than Ngo - 3.21.0-9Than Ngo - 3.21.0-8Than Ngo - 3.21.0-7Than Ngo - 3.21.0-6Than Ngo - 3.21.0-5Than Ngo - 3.21.0-4Than Ngo - 3.21.0-3Than Ngo - 3.21.0-2Than Ngo - 3.21.0-1Than Ngo - 3.19.0-2Than Ngo - 3.19.0-1Than Ngo - 3.18.0-3Than Ngo - 3.18.0-2Than Ngo - 3.18.0-1Than Ngo - 3.17.0-4Than Ngo - 3.17.0-3Than Ngo - 3.17.0-2Than Ngo - 3.17.0-1Than Ngo - 3.16.0-6Than Ngo - 3.16.0-5Than Ngo - 3.16.0-4Than Ngo - 3.16.0-3Than Ngo - 3.16.0-2Than Ngo - 3.16.0-1Than Ngo - 3.15.1-5Than Ngo - 3.15.1-4Than Ngo - 3.15.1-3Than Ngo - 3.15.1-2Than Ngo - 3.15.1-1Than Ngo - 3.15.0-1Than Ngo - 3.14.0-5Than Ngo - 3.14.0-4Than Ngo - 3.14.0-3Than Ngo - 3.14.0-2Than Ngo - 3.14.0-1Than Ngo - 3.12.1-2Than Ngo - 3.12.1-1Than Ngo - 3.12.0-1Dan Horák - 3.11.1-2Than Ngo - 3.11.1-1Than Ngo - 3.11.0-3Than Ngo - 3.10.0-3Than Ngo - 3.10.0-2Dan Horák - 3.10.0-1Dan Horák - 3.9.0-1Fedora Release Engineering - 3.8.2-3Dan Horák - 3.8.2-2Dan Horák - 3.8.2-1Fedora Release Engineering - 3.7.0-3Fedora Release Engineering - 3.7.0-2Sinny Kumari - 3.7.0-1Sinny Kumari - 3.6.2-1Fedora Release Engineering - 3.5.1-2Jakub Jelen - 3.5.1-1Jakub Jelen - 3.5-1Fedora Release Engineering - 3.4.1-2Jakub Jelen 3.4.1-1Jakub Jelen 3.4-1Jakub Jelen 3.3-1.1Fedora Release Engineering - 3.2-4Jakub Jelen 3.2-3Jakub Jelen 3.2-2Petr Lautrbach 3.2-1Fedora Release Engineering - 3.1-2Petr Lautrbach 3.1-1Fedora Release Engineering - 3.0-11Petr Lautrbach 3.0-10Petr Lautrbach 3.0-9Dan Horák - 3.0-8Dan Horák - 3.0-7Dan Horák - 3.0-6Dan Horák - 3.0-5Dan Horák - 3.0-4Fedora Release Engineering - 3.0-3Dan Horák - 3.0-2Dan Horák - 3.0-1Dan Horák - 2.4.3.1-1Dan Horák - 2.4.3-1Dan Horák - 2.4.2-4Dan Horák - 2.4.2-3Fedora Release Engineering - 2.4.2-2Dan Horák - 2.4.2-1Dan Horák - 2.4.1-2Dan Horák - 2.4.1-1Fedora Release Engineering - 2.4-2Dan Horák - 2.4-1Fedora Release Engineering - 2.3.3-2Dan Horák 2.3.3-1Michal Schmidt 2.3.2-2Dan Horák 2.3.2-1Michal Schmidt 2.3.1-7Dan Horák 2.3.1-6Dan Horák 2.3.1-5Dan Horák 2.3.1-4Michal Schmidt 2.3.1-3Michal Schmidt 2.3.1-2Michal Schmidt 2.3.1-1Dan Horák 2.3.0-5Michal Schmidt 2.3.0-4Tomas Mraz - 2.3.0-3Michal Schmidt 2.3.0-2Michal Schmidt 2.3.0-1Michal Schmidt - 2.2.8-5Michal Schmidt - 2.2.8-4Michal Schmidt - 2.2.8-2- timing side-channel in handling of RSA PKCS#1 v1.5 padded ciphertexts (Marvin) Resolves: RHEL-22791- Resolves: RHEL-11413, update to 3.22.0- Resolves: #2223588, FTBFS- Related: #2222595, add triggerun to reload daemon- Resolves: #2222595, p11sak tool: slot option does not accept argument 0 for slot index 0 - Resolves: #2222594, p11sak fails as soon as there reside non-key objects- add workaround for segfault in PEM_write_bio() on OpenSSL 1.1.1 Related: #2159741- add requirement on selinux-policy >= 3.14.3-121 for pkcsslotd policy sandboxing Related: #2159697- add verify attributes for opencryptoki.conf to ignore the verification Related: #2159697- pkcsstats: Fix handling of user name - p11sak: Fix user confirmation prompt behavior when stdin is closed Related: #2159697- add missing /var/lib/opencryptoki/HSM_MK_CHANGE - disable unsupported sandbox options and add /run to ReadWritePaths to exclude /run directory from being made read-only on rhel8 Related: #2159697- Resolves: #1984865, ep11 and cca: support concurrent HSM master key changes - Resolves: #2110500, ep11 token: PKCS #11 3.0 - support AES_XTS - Resolves: #2111011, cca token: protected key support - Resolves: #2159697, update to 3.21.0 - Resolves: #2159740, pkcsslotd hardening - Resolves: #2159741, p11sak support Dilithium and Kyber keys - Resolves: #2159742, ica and soft tokens: PKCS #11 3.0 - support AES_XTS- Resolves: #2043856, Support of ep11 token for new IBM Z Hardware (IBM z16)- Resolves: #2126612, opencryptoki fails after generating > 500 RSA keys - Resolves: #2110315, rebase to 3.19.0 - Resolves: #2110990, openCryptoki key generation with expected MKVP only on CCA and EP11 tokens - Resolves: #2110477, openCryptoki ep11 token: master key consistency - Resolves: #1984871, openCryptoki ep11 token: vendor specific key derivation- Related: #2043854, do not touch opencryptoki.conf if it is in place already and even if it is unchanged - Resolves: #2112785, EP11: Fix C_GetMechanismList returning CKR_BUFFER_TOO_SMALL- Related: #2043854, fix json output- Resolves: #2043845, rebase to 3.18.0 - Resolves: #2043854, add crypto counters - Resolves: #2043855, support crypto profiles- Resolves: #2066762, Dilithium support not available- Resolves: #2040677, API: Unlock GlobMutex if user and group check fails- Related: #1984993, add missing p11sak_defined_attrs.conf- Resolves: #1984993, rebase to 3.17.0 - Resolves: #1984870, openCryptoki key management tool- Fix: Could not open /run/lock/opencryptoki/LCK..APIlock- Resolves: #1987256, pkcstok_migrate leaves options with multiple strings in opencryptoki.conf options without double-quotes- Resolves: #1964304, Fix detection if pkcsslotd is still running- Related: #1919223, add conditional requirement- Related: #1919223, add requirement on selinux-policy >= 3.14.3-70 for using ipsec- Resolves: #1919223, rebase to 3.16.0 - Resolves: #1922195, Event Notification Support - Resolves: #1959936, Soft token does not check if an EC key is valid - Resolves: #1851104, import and export of secure key objects - Resolves: #1851106, openCryptoki ep11 token: protected key support - Resolves: #1851107, openCryptoki ep11 token: support attribute bound keys- Resolves: #1928120, Fix problem with C_Get/SetOperationState and digest contexts- Resolves: #1927745, pkcscca migration fails with usr/sb2 is not a valid slot ID- Resolves: #1902022 Fix compiling with c++ Added error message handling for p11sak remove-key command- Related: #1847433, Added error message handling for p11sak remove-key command- Related: #1847433 upstream fixes: - Free generated key in all error cases - CCA: Zeroize key buffer to avoid CCA 8/32 error - Do not delete the map-btree entry if destroying an object is not allowed - Remove now unused header timeb.h - TESTCASES: Use FIPS conforming keys for 3DES CBC-MAC test vectors - Fix buffer overrun in C_CopyObject - TPM: Fix double free in openssl_gen_key- Resolves: #1847433, rebase to 3.15.0 - Resolves: #1851105, PKCS #11 3.0 - baseline provider support - Resolves: #1851108, openCryptoki ep11 token: enhanced functionality - Resolves: #1851109, openCryptoki key management tool: key deletion function- Related: #1853420, more fixes- Resolves: #1853420, endian issue- Resolves: #1780294, PIN conversion tool- Related: #1780293, fix regression, segfault in C_SetPin- Resolves: #1723863 - ep11 token: Enhanced Support - Resolves: #1780285 - ep11 token: Support for new IBM Z hardware z15 - Resolves: #1780293 - rebase to 3.14.0 - Resolves: #1800549 - key management tool: list keys function -Resolves: #1800555 - key management tool: random key generation function- Resolves: #1782445, EP11: Fix EC-uncompress buffer length- Resolves: #1777313, rebase to 3.12.1- Resolves: #1726243, rebase to 3.12.0- Resolves: #1739433, ICA HW token missing after the package update- Resolves: #1706140, rebase to 3.11.1- Resolves: #1667941, 3des tests failures due to FIPS incompatible test scenarios - Resolves: #1651731, ep11 token: enhanced IBM z14 functions - Resolves: #1651732, ep11 token: support m_*Single functions from ep11 lib - Resolves: #1525407, use CPACF hashes in ep11 token - Resolves: #1651238, rebase to 3.11.0 - Resolves: #1682530, gating- Resolves: #1657683, can't establish libica token in FIPS mode - Resolves: #1652856, EP11 token fails when using Strict-Session mode or VHSM-Mode- Resolves: #1602641, covscan- Rebase to 3.10.0- Rebase to 3.9.0- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild- use upstream tmpfiles config- Rebase to 3.8.2 (#1512678)- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild- Rebase to 3.7.0 - Added libitm-devel as BuildRequires- Rebase to 3.6.2 - RHBZ#1424017 - opencryptoki: FTBFS in rawhide- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild- New upstream release- New upstream release- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild- New bugfix upstream release- New upstream release - Adding post-release patch fixing compile warnings- New upstream release - Correct dependencies for group creation- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild- Few more undefined symbols fixed for s390(x) specific targets - Do not require --no-undefined, because s390(x) requires some- Fix missing sources and libraries in makefiles causing undefined symbols (#1193560) - Make inline function compatible for GCC5- new upstream release 3.2 - add new sub-package opencryptoki-ep11tok on s390x- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild- new upstream release 3.1- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild- create the right lock directory for cca tokens (#1054442)- use Requires(pre): opencryptoki-libs for subpackages- include token specific directories (#1013017, #1045775, #1054442) - fix pkcsconf crash for non-root users (#10054661) - the libs subpackage must care of creating the pkcs11 group, it's the first to be installed- fix build with -Werror=format-security (#1037228)- apply post-3.0 fixes (#1033284)- update opencryptoki man page (#1001729)- update unit file (#995002)- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild- update pkcsconf man page (#948460)- new upstream release 3.0- new upstream release 2.4.3.1- new upstream release 2.4.3- enable hardened build - switch to systemd macros in scriptlets (#850240)- add virtual opencryptoki(token) Provides to token modules and as Requires to main package (#904986)- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- new upstream release 2.4.2 - add pkcs_slot man page - don't add root to the pkcs11 group- fix unresolved symbols in TPM module (#830129)- new upstream release 2.4.1 - convert from initscript to systemd unit - import fixes from RHEL-6 about root's group membership (#732756, #730903)- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- new upstream release 2.4- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- new upstream release 2.3.3- Apply Obsoletes to package names, not provides.- new upstream release 2.3.2 - put STDLLs in separate packages to match upstream package design- Move the LICENSE file to the -libs subpackage.- rebuilt with CCA enabled (#604287) - fixed issues from #546274- fixed one more issue in the initscript (#547324)- fixed pidfile creating and usage (#547324)- Also list 'reload' and 'force-reload' in "Usage: ...".- Support 'force-reload' in the initscript.- New upstream release 2.3.1. - opencryptoki-2.3.0-fix-nss-breakage.patch was merged.- made pkcsslotd initscript LSB compliant (#522149)- Added opencryptoki-2.3.0-fix-nss-breakage.patch on upstream request.- rebuilt with new openssl- Require libica-2.0.- New upstream release 2.3.0: - adds support for RSA 4096 bit keys in the ICA token.- Require arch-specific dependency on -libs.- Return support for crypto hw on s390. - Renamed to opencryptoki. - Simplified multilib by putting libs in subpackage as suggested by Dan Horák.- Fedora package based on RHEL-5 package.3.22.0-2.el83.22.0-2.el83.22.0opencryptokiapiclient.hec_curves.hpkcs11.hpkcs11types.hpqc_oids.hopencryptoki.pc/usr/include//usr/include/opencryptoki//usr/lib64/pkgconfig/-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -fexceptions -fstack-protector-strong -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1 -fasynchronous-unwind-tables -fstack-clash-protectioncpioxz2aarch64-redhat-linux-gnudirectoryC source, ASCII textpkgconfig filePRutf-88d2f117a5c4c17764f13ea27c0f91197208a606cc2adec0f5ac3d6e21cc32264?@7zXZ !#,CB] b2u jӫ`(y/>j7Zh|wSwH_Ah:.:p\suBc7՝@ ? .@f8>ϸWvCA 0^adx{_Rgy%cDtثK>ֻ(IKI!v 8)*LZ{&"EQ05ؔH_ZZڠנ8~lZ&e_7{LBjS{0ĽK[\]u'TsJ ?ڮ,P*|fnrҶܨK 9;bߤXhp =Ǫ911;K'q"S`H9= u!֑Etk1 .j6϶:A. Dwj7ѯQ QC;|RLVTW8+Y*Z*Gx}6͊V̓1|!M`O!bFnӤgwMu;t? dxc ݬziXeU5*e G'm@ᮤm\G:#P!1u8[<}ܫ6^) El} g|x J1I3YN`.*blJ:Wc( [=܉ݱjR=0B! .5_a>ѪD~A*uLjpjxLѶ?qT#p#|ȭ8FCl:Zd/Bz|EَHK9#}@1nKMyBUHĩJlo^N9d~F!OmfΎ@m=EPu^3rt]5HY˯/XQJR||poj GÑA1$!цW.A2->r.I$位jZ^LI = g # E(9gX8Z尩;\8$c[)ldn蹱CDBԵ>trg ,jU H4~2!!qrws7.,2YezWZTsmk50:Ǧ|t<ޯ.>ŘM>Nt ܜZgV_ݱ?dNl4B黆R k4`5>4mEh E:ge) !ݎ5S1?)fvuQVNI1Ŏg`3f֕M?Ě3y|9_ƶ5KrwNn'YrFpӱR較@=.vY4H+eXd62>.źxgD8ޙ #**>9I d/xE9 Ţ-N5RITYNɅ0EHA1)V [ZF>-?< Đ0[w(۩s$ӌ,5JȁMUoq^Q4A_ @-q M.a|z{SI#f¯(ja<ݒ&kPml$$C͗+;J ,}7`xFic0?[ilR@HRIF7DYԝtlM\!{z9G]V_;Ć/"z`L}21bg Epu;MPQ? jMM93 lcuz,›Sp ޡRg;9qeybk5F7u9#muWYt/^ۥ ,z&QhBc¤8Â7 8{5]I.Zckl+ Zj xDiV@da$7R+#8E$92eQ:ÊN_ޔX4ݲ[GF ~TP}6cSG8%LZ7"%ݛ> *J]Cr($s ׌o;mG xOa(WP4 kזCA8 o+2*bdWt^,!1/%"޶2/4O$nhTּ~2_Lg~%Qguj#3U1h<էPmO%V$k`tʹ)*,`lXw{zjy00_zt+iDF5Ў J Wz]U5⻷&,NߟW&-~zUe[Ð1g>DS.]4MF)T&mut[<^O5 ] ǥ'?hPe"Y%|h7dVӎPlqqU).76@XOcBXAmh`Zzn\ F{Xf* Pݝ蚃9˂Uܞol `PKd}x^SU`dC4{yZ5x E̼*w ,fge91 װ??ŃChHh* 7\1ViQnUQ^E]FjCk60V"Jَ  4h.i@stN7Kvt\T%){q- >\6w#^cS:qdY0C?sH7񱡮N\s$pmRb[c~F->U%*G1^g$yXr tpir+3`ɢ@O'Xg 5!DLV(TNw+H*~/lu^գ379crnVzn8jEd:흋C޴AqE"qBFpX0;brSeA.^&@^)>FlE\*v}?liF$-g<?w̞\ڤ`g5<4(vCf ~ң]XD a5Ԇ5$5-%+ 2ÆoY(yx_(N h^սmt^L E~o ZuOWZ21n9X );:*{1wom Źػmwp^(R~.tF̘eMJF  }6G:T5l]Z4*. -nv[0Ds.3|WN>f(XS )cׅ^]W&s}%*Kt|"w0:݇^USR~ֹ״eewaW0ڳsvQ4!Y|>Jw9 DjkxY5Qe2Q#n7=àu:9ϡtLF$+ E RZV?鴈> 15{~#3/.V L=ͳQ\ fT\[3*&ܝ03oo%A 2;[$^p$l&(<3,W|\qgv=E]c1/LIOoE sqhr46b^?BZ;ija!bKr ]v0Irղԁn\-%vl8ǜ`מen^KoHnV$-x=0\xfX3j__Av|_ݫwWZ~ Q%EMf'Mį2pcc 1 /ͤ*Qr}nvo@'@L_.x96y$Wꨁv Tw糃tsuI^jj%3;y6c }? $WjCΧx[E96Df6Ɓ7wIU7]ErL@+`2jXɚ i+}Q;_ƌ #R3[gӱ6 ?݈uڳ+p?pK-.XO ] 3Kg=)~ _ R O꫖G* B_d+LGb8gud4}Dw+cx!Q(\y(2?Ք,R[U(^Ѱ6̖YH#UXRs]Bg=<$ѷcTӛlܭvDIz1=K4iBr35dzP gu/1CrF˰"jzZRJa58KZOG,?eV&7V&B9/@Mesq4]AǫY&\쩹x|^~?<`9by]Jj1JC7| Ⱥ <3Xc _ ^:cy@0ikk6=?$+3d\qqK۹ڛ8,c hhW<"QU(YA7e[GsC={'8<H*յ&]N`a pD4P$Q6䎓sxjC $0Mq_lȻIi{)zA(1p=܀7vh1|#xvV=^T}Ñkjs?* sao^\fK[̟lĉsmXŸk?/qNum= L59=36*<V*( f+>%@ tdH{R<"αW1>JW|$"EƁb&7 1si[VrFK$؎Z|+cW1ۭBcqdB>[ߞGYAB!e%70$|hQZgJtm =%ḫ1*Qu&LU'Ӂ]v$]7Zw& ז́q6a1_n%PK\F@ӒD6g@ LtKҥjhT:,]r C>7alмB远.ab Z-b  tQIJbX;j72ڍm559â\D) HJ7b.kmvkvW+72:ΈxHjGdnh"q-nx{ 6\V r;6WVx7B@~~k&zɮC cĽ߃兾]7o6dUXv;37^.PFw{S =@d?2aٕ&fK=>mbw%/m̀HAe XdJ0MSrFGck[p<~CfPm̼N_n ; *boRm&q=@ FgHHr<uvnn'Ơt]NcP='jXsHd2$dfQUmC9~pA O%H{M>Uj#|n[ y^%$Bal_k||@2'{݋t,v xJ I\*Ϯ+ i :@ {0l\}9Rl(ۖOcP~+x}#fF<}i4rV@Tz#PGn~lvwεHLX'FatHLf>}i$oӟ}mOuBʯƤiXSfLxե׉p N{WK쨞 bVm?]Z_moZFMST}y WE :&."T:FpKd`!}v/K~lr厾UɭckS&f\/UpdP_vi׺D*xӃ Xv K%ܯD1mnC}sJ2 ;kٜ 1>y"ڢax%(KөVUJl#hzNxǘKLT E8G"َptݗ&W)KO"hjA;r?Z-9 RUi лGP4s||c;}l:|A1};i5t%#g/ы'hՓu"m͘d([@Ub) uEZ%VM#4(4x#eVQ;앂wѤ`x3@&Ԟ\A$D @fP[a;)Kx"MI.{T_3t_ݒW ϣGS=j+9=*(FNn1LPzp\ҡ"ՋH O7γf<̰ǡSL` v5)rE!ti|^iEˇ4| mP fǐLRg g.P pIA"{=W^/VA2̌{ YUWҴ|JJjqԣ͖ڿ?}1/:x[rZλCяu,֞ AQWYRtF]P|%I0opR_LmJ [%cWs]fl돟;`DZLJ)kxOQ&(2K"5G:AtJ̮>f@7 _ZYeRN}/zkgE?5QA'a[=^m ,CN] 1t8%84LSXNhed.t@+7mw3W]U 9z6>f?'$!<˧fha/B^lYje'!#l>CylWEq")?2Z (\.EtY{М*7]r78+ݗ˒(=-I75S̠R&kݛ T&Dloake :e,ACO;/ODq]<;{:afƔu*u:C*Nñ"q[ZP}d~g+Rsz-;$0j)HB0E`fL"!oϚ!aYtεI|@Ta9)2 [TwUmEbڌ6"1WqmKAuƺ AGE`>bJFrW5yfjتRH8$AIL d$40m^-;_a-mWȌ_GTU%AƙH%6ޝb2]X" h @&Szֿ+~B'՟dXLV`K/EOV#pIT: Fo39~M; Aw<\!ڥ[ȮW!٢#,e3+?c>cje3Ȧ\< Ɯ/r;Q[$@ʆj(^Vуvof'k f[g~2KRVoVu N,$eF$Y׃E{Ɗ6[7Oyjg+uq839w[@s0#aFc]tZ7f3O0cŬٔs.n޵ME89+jzm:<ͳD#hhyuvh>pvxVe$y}]Meb9 E@kA^UnT[1dyLq3zAmq_B€$`_; -svs.F#P?V}l1 NN)BG^[]*%(y46YկݮSȬknpô' \5kvB# !D| Zm'4eZԨl[L~(~\^ב!ϽZMLn=l垰'+zx j[ԏȆ&!y=6P^Z uBٛ/@+P-^ؐ 8[AWP%YYt?{5Tv'0O*^'7"cnWf.aA[,Y 2`3 AWh\}YPm 6Qv_mJr?y`dQƋ>uR{vVo'0[pNUs~`5LnωZI=s/ڕN i~榐3QJ` 0, n 8lh`˃!fj0q9+*Bik+ ]ǦoC 2~87ExgU0Tz!io_:*2M!;K(>Uzzɰp]F(fF04Vz?űhe2=[Lq ް#H~xdyRww[wErq}00=ͦ4Tk9Hx(‡]S2IbYPs4dp*B2jphYDw&ed({!$ ÙiW;teyw~BSLumXG uYҾV SNeKq`ɎTZil&\ﵾ|˜(nQ S4Qi /w5>>T:s#ZQ^$S*n{K8ⲯso$;VACuۙ`O~%&%7QC,rsR~Qʥ̯o٥*GwS;A=1 ePݥ(c|Dނגc*_+O#]# ~Do".tM %\*_zTăN95;{u>  <"#Bln!mɆӫ͏Ң}*PVruh+ M;/Vu| 'Aa.n[.$ rΟϠlE+M](?#=<߸e|un@bdj n0k |`^TXd3Adl1"6y!JGh29ګDfS2B.R.i XM>܂dw_RaUA:Yȩ2 mpr/Sf`(!3 fAi٤Hs{\m \ka&xeQ5RC*5˒~qV9֞lIlR{Bl51(@Y=-%Zy$Q@J6Pb|5Vrez!ٿrTcgg' sLZ&v s[TcYm#f8{g`~^݌ţ@#S˧Ys,XΛXrpwD:?PG雸u _8!;)ۃM )q6j%)=~tX2D˚޼+#&hּcw O$V8J@2ud,V/OIA2>. 1F:WBk@M{+*8b#uyaU; ='l;t=fe|y^a?pF¥F: Qۅ9GƝ7"K.L\mfH%T{zԚ-hX!مƅw0k`HSge 3g$U_OTw~FjH,7u;yz" chWuǎ ?>v|4=?3o8t0(p$4O.CIthLrRpnoy05;'W)ߙA6h7)֨{qVl f{7{},|k9` uJ|VH$qGt25[b+tۋ# hb.[ONݧ JVsp>* #vihX>/4 (DD꠭X) T||D8C 2U,:w1R{چi J/srH|ޔ $kOoè6 F)q|h+&x<ƗoQ/TOj,Ϊayvq/N[)T{ `Ők;3\ddQpPZ@)NiU ו6A27҄̕Cc2$ YZ