nscd-2.31-7.30 >  A `p9|YQC /;p嬏=}۲ؾm>_""(M,y=9IJ!O &径G u] Y[̊:ڴ{f.Y6Ԋ ŴSVe"ʟ ,T[ lWo[9ZMxQK- q9">Cnr̽s'0=(^O|LύȪ㣈܆YH Hp/1.sW*C@ c!V7i+HC!>pIј?шd   -  CIQ @ =   @ O l>X,(8(9$:=>?@BFG,HhIɤXɴYZ[\],^ʣ bc˿defl u4vp wЌxy z(8<BфCnscd2.317.30Name Service Caching DaemonNscd caches name service lookups and can dramatically improve performance with NIS, NIS+, and LDAP.` ibs-arm-6}SUSE Linux Enterprise 15SUSE LLC GPL-2.0-or-laterhttps://www.suse.com/System/Daemonshttp://www.gnu.org/software/libc/libc.htmllinuxaarch64getent group nscd >/dev/null || /usr/sbin/groupadd -r nscd getent passwd nscd >/dev/null || /usr/sbin/useradd -r -g nscd -c "User for nscd" -s /sbin/nologin -d /run/nscd nscd if [ -x /usr/bin/systemctl ]; then test -n "$FIRST_ARG" || FIRST_ARG="$1" [ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || : for service in nscd.service ; do sysv_service=${service%.*} if [ ! -e /usr/lib/systemd/system/$service ] && [ ! -e /etc/init.d/$sysv_service ]; then mkdir -p /run/systemd/rpm/needs-preset touch /run/systemd/rpm/needs-preset/$service elif [ -e /etc/init.d/$sysv_service ] && [ ! -e /var/lib/systemd/migrated/$sysv_service ]; then /usr/sbin/systemd-sysv-convert --save $sysv_service || : mkdir -p /run/systemd/rpm/needs-sysv-convert touch /run/systemd/rpm/needs-sysv-convert/$service fi done fi if [ -x /usr/bin/systemctl ]; then test -n "$FIRST_ARG" || FIRST_ARG="$1" [ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || : if [ "$YAST_IS_RUNNING" != "instsys" ]; then /usr/bin/systemctl daemon-reload || : fi for service in nscd.service ; do sysv_service=${service%.*} if [ -e /run/systemd/rpm/needs-preset/$service ]; then /usr/bin/systemctl preset $service || : rm "/run/systemd/rpm/needs-preset/$service" || : elif [ -e /run/systemd/rpm/needs-sysv-convert/$service ]; then /usr/sbin/systemd-sysv-convert --apply $sysv_service || : rm "/run/systemd/rpm/needs-sysv-convert/$service" || : touch /var/lib/systemd/migrated/$sysv_service || : fi done fi [ -z "${TRANSACTIONAL_UPDATE}" -a -x /usr/bin/systemd-tmpfiles ] && /usr/bin/systemd-tmpfiles --create /usr/lib/tmpfiles.d/nscd.conf || : # Previously we had nscd.socket, remove it test -x /usr/bin/systemctl && /usr/bin/systemctl stop nscd.socket 2>/dev/null || : test -x /usr/bin/systemctl && /usr/bin/systemctl disable nscd.socket 2>/dev/null || : # Hard removal in case the above did not work rm -f /etc/systemd/system/sockets.target.wants/nscd.socket exit 0 test -n "$FIRST_ARG" || FIRST_ARG="$1" if [ "$FIRST_ARG" -eq 0 -a -x /usr/bin/systemctl ]; then # Package removal, not upgrade /usr/bin/systemctl --no-reload disable nscd.service || : ( test "$YAST_IS_RUNNING" = instsys && exit 0 test -f /etc/sysconfig/services -a \ -z "$DISABLE_STOP_ON_REMOVAL" && . /etc/sysconfig/services test "$DISABLE_STOP_ON_REMOVAL" = yes -o \ "$DISABLE_STOP_ON_REMOVAL" = 1 && exit 0 /usr/bin/systemctl stop nscd.service ) || : fi test -n "$FIRST_ARG" || FIRST_ARG="$1" if [ $1 -eq 0 ]; then # Package removal for service in nscd.service ; do sysv_service="${service%.*}" rm "/var/lib/systemd/migrated/$sysv_service" || : done fi if [ -x /usr/bin/systemctl ]; then /usr/bin/systemctl daemon-reload || : fi if [ "$FIRST_ARG" -ge 1 ]; then # Package upgrade, not uninstall if [ -x /usr/bin/systemctl ]; then ( test "$YAST_IS_RUNNING" = instsys && exit 0 test -f /etc/sysconfig/services -a \ -z "$DISABLE_RESTART_ON_UPDATE" && . /etc/sysconfig/services test "$DISABLE_RESTART_ON_UPDATE" = yes -o \ "$DISABLE_RESTART_ON_UPDATE" = 1 && exit 0 /usr/bin/systemctl try-restart nscd.service ) || : fi fi exit 0  A큤A큤A큀` 2` 2` ` ` 2` 2` 2` <` 2` 2` ` ` ` ` e2cdfafd373d24fab07018d0e95dd49510ea6c992b7be2b0611ab23bbc2750b579fe74962fbce2fa9b2a4b92f693b2fd42cbc2ed331fae268de7104879a72df879c9cec5dd2414dcb76d11e75903aa6fd9b7785c897cb9f853edcb140a71b779427693950fcea8318e1472b203e4d36c6e3d4bf6426d41e8f4a34e32aa768104/sbin/service@YYYYYYYrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootglibc-2.31-7.30.src.rpmconfig(nscd)glibc:/usr/sbin/nscdnscdnscd(aarch-64) @@@@@@@@@    /bin/sh/bin/sh/bin/sh/bin/shconfig(nscd)glibcld-linux-aarch64.so.1()(64bit)ld-linux-aarch64.so.1(GLIBC_2.17)(64bit)libaudit.so.1()(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.17)(64bit)libcap.so.2()(64bit)libpthread.so.0()(64bit)libpthread.so.0(GLIBC_2.17)(64bit)libselinux.so.1()(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)shadowsystemdsystemdsystemdsystemd2.31-7.302.313.0.4-14.6.0-14.0-15.2-14.14.1`a@`H`H`?z@`@_T__/@_O@^)@^@^{G^g@^`^U @^&^]@]7@]|@]@]:\@\\]@\@\|\~d[[ͻ[$@[t[r@[qr[^[!@[@Z@ZJ@Z2@ZH@ZZ Z}@ZxG@Zp^@Zp^@Ze@ZKt@Z1@Z/Z@Y@Y@YYܶ@YdY@Y@YY@Y@Y@YW@Y@YJYYw2Yp@YJ_YA%@Y.@Y, @Y, @Y$$@Y"XۡX@XWw@W@W@Ws@Wk@Wj}WYZ@WL+@W3W0{WW V@V@V޾Vm@VIV@VŲ@V`VVV@VLh@V.V$@VVZV VUYU|@UAUȒ@UU@UU4@UUv@U%@U/@U:T@TPTgTܕTء@TO@schwab@suse.derguenther@suse.comrguenther@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.dematz@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.dematz@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.dematz@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.dejslaby@suse.comschwab@suse.deschwab@suse.deschwab@suse.deidonmez@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.denormand@linux.vnet.ibm.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.demeissner@suse.comschwab@suse.deschwab@suse.demgorman@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.de- s390-memmove-ifunc-selector-arch13.patch: S390: Also check vector support in memmove ifunc-selector (bsc#1184035, BZ #27511)- Update glibc-2.31-HTM-vzeroupper.diff with a AVX-SSE transition fix.- Add glibc-2.31-HTM-vzeroupper.diff to avoid VZEROUPPER in the AVX2 accelerated string routines which cause HTM transaction aborts. Instead use EVEX or SSE. (bsc#1181403)- nscd-netgroupcache.patch: nscd: Fix double free in netgroupcache (CVE-2021-27645, bsc#1182733, BZ #27462)- gconv-assertion-iso-2022-jp.patch: gconv: Fix assertion failure in ISO-2022-JP-3 module (CVE-2021-3326, bsc#1181505, BZ #27256)- sysvipc-sem-stat-any.patch: sysvipc: Fix SEM_STAT_ANY kernel argument pass (bsc#1180557, BZ #26637)- aarch64-getauxval.patch: aarch64: Accept PLT calls to __getauxval within libc.so (bsc#1167939) - iconv-redundant-shift.patch: iconv: Accept redundant shift sequences in IBM1364 (CVE-2020-27618, bsc#1178386, BZ #26224) - iconv-ucs4-loop-bounds.patch: iconv: Fix incorrect UCS4 inner loop bounds (CVE-2020-29562, bsc#1179694, BZ #26923) - printf-long-double-non-normal.patch: x86: Harden printf against non-normal long double values (CVE-2020-29573, bsc#1179721, BZ #26649) - get-nprocs-cpu-online-parsing.patch: Fix parsing of /sys/devices/system/cpu/online (bsc#1180038, BZ #25859)- power10-support.patch: Add support for POWER10 (jsc#SLE-13520) - iconv-option-parsing.patch: Rewrite iconv option parsing (CVE-2016-10228, bsc#1027496, BZ #19519)- Update to glibc 2.31 - glibc-2.14-crypt.diff, crypt_blowfish-const.patch, crypt_blowfish-1.2-sha.diff, crypt_blowfish-gensalt.patch, crypt_blowfish-1.2-hack_around_arm.diff, glibc-nodate.patch, powerpc-elision-enable-envvar.patch, s390-elision-enable-envvar.patch, crt-nocompress-debug-sections.patch, resolv-context-leak.patch, dl-runtime-resolve-opt-avx512f.patch, libpthread-compat-wrappers.patch, math-c++-compat.patch, remove-nss-nis-compat.patch, eh-frame-zero-terminator.patch, ld-so-hwcap-x86-64.patch, assert-pedantic.patch, getaddrinfo-errno.patch, resolv-conf-oom.patch, dynarray-allocation.patch, nearbyint-inexact.patch, nss-compat.patch, nscd-libnsl.patch, malloc-tcache-leak.patch, falkor-memcpy-memmove.patch, aarch64-cpu-features.patch, nss-files-large-buffers.patch, sysconf-uio-maxiov.patch, glob-tilde-overflow.patch, dl-runtime-resolve-xsave.patch, spawni-assert.patch, x86-64-dl-platform.patch, glob64-s390.patch, tst-tlsopt-powerpc.patch, powerpc-hwcap-bits.patch, malloc-tcache-check-overflow.patch, dl-init-paths-overflow.patch, fillin-rpath-empty-tokens.patch, getcwd-absolute.patch, memalign-overflow.patch, stack-guard-size-accounting.patch, libgcc-rtld-now.patch, res-send-enomem.patch, glibc-fix-avx512-mempcpy.patch, i386-memmove-sse2-unaligned.patch, realpath-ssize-max-overflow.patch, localtime-2039.patch, math-remove-slow-path.patch, aarch64-hwcap-atomics.patch, glibc-fix-aarch64-build.diff, absolute-symbols.patch, x86-haswell-string-flags.patch, pthread-cond-broadcast-waiters-after-spinning.patch, mman-map-sync.patch, mman-linux-map-shared-validate.patch, nptl-setxid-error.patch, pthread-mutex-trylock-barrier.patch, getaddrinfo-parse-ipv4-address.patch, japanese-era-name-may-2019.patch, force-elision-race.patch, regex-read-overrun.patch, regex-parse-reg-exp.patch, 0001-S390-Add-configure-check-to-detect-z10-as-mininum-ar.patch, 0002-S390-Use-hwcap-instead-of-dl_hwcap-in-ifunc-resolver.patch, 0003-S390-Unify-31-64bit-memcpy.patch, 0004-S390-Refactor-memcpy-mempcpy-ifunc-handling.patch, 0005-S390-Remove-s390-specific-implementation-of-bcopy.patch, 0006-S390-Use-memcpy-for-forward-cases-in-memmove.patch, 0007-S390-Add-configure-check-to-detect-z13-as-mininum-ar.patch, 0008-S390-Add-z13-memmove-ifunc-variant.patch, 0009-S390-Add-z13-strstr-ifunc-variant.patch, 0010-S390-Add-z13-memmem-ifunc-variant.patch, 0011-S390-Cleanup-ifunc-resolve.h.patch, 0012-S390-Mark-vx-and-vxe-as-important-hwcap.patch, 0013-S390-Add-new-hwcap-values-for-new-cpu-architecture-a.patch, 0014-S390-Add-configure-check-to-detect-support-for-arch1.patch, 0015-S390-Add-arch13-memmove-ifunc-variant.patch, 0016-S390-Add-arch13-strstr-ifunc-variant.patch, 0017-S390-Add-arch13-memmem-ifunc-variant.patch, prefer-map-32bit-exec.patch, s390-strstr-page-boundary.patch, ppc-tle-htm-nosc.patch, posix-Add-internal-symbols-for-posix_spawn-interface.patch, glibc-2.29-posix-Use-posix_spawn-on-popen.patch, backtrace-powerpc.patch, pthread-rwlock-pwn.patch, manual-memory-protection.patch, ldbl-96-rem-pio2l.patch, dl-sort-maps.patch, dlopen-filter-object.patch, glob-use-after-free.patch, nptl-setxid-race.patch, nscd-senfile.patch, ldd-system-interp.patch, abort-no-flush.patch, fnmatch-collating-elements.patch, nss-files-long-lines-2.patch, iconv-reset-input-buffer.patch, nscd-prune.patch, syslog-locking.patch: Removed. - long-double-alias.patch, glibc-nsswitch-usr.diff, euc-kr-overrun.patch, riscv-syscall-clobber.patch, nscd-gc-cycle.patch: Added.- nscd-senfile.patch: Fix concurrent changes on nscd aware files (bsc#1171878, BZ #23178) - nscd-prune.patch: nscd: bump GC cycle during cache pruning (bsc#1171878, BZ #26130) - syslog-locking.patch: Correct locking and cancellation cleanup in syslog functions (bsc#1172085, BZ #26100)- nptl-setxid-race.patch: nptl: wait for pending setxid request also in detached thread (bsc#1162930, BZ #25942)- glob-use-after-free.patch: Fix use-after-free in glob when expanding ~user (CVE-2020-1752, bsc#1167631, BZ #25414)- dl-sort-maps.patch, dlopen-filter-object.patch: Allow dlopen of filter object to work (bsc#1166106, BZ #16272)- ldbl-96-rem-pio2l.patch: Avoid ldbl-96 stack corruption from range reduction of pseudo-zero (CVE-2020-10029, bsc#1165784, BZ #25487)- pthread-rwlock-pwn.patch: Fix rwlock stall with PREFER_WRITER_NONRECURSIVE_NP (bsc#1164505, BZ #23861) - manual-memory-protection.patch: manual: Document mprotect and introduce section on memory protection (bsc#1163184)- backtrace-powerpc.patch: Fix array overflow in backtrace on PowerPC (CVE-2020-1751, bsc#1158996, BZ #25423)- posix-Add-internal-symbols-for-posix_spawn-interface.patch, glibc-2.29-posix-Use-posix_spawn-on-popen.patch: Use posix_spawn on popen (bsc#1149332, BZ #22834)- ppc-tle-htm-nosc.patch: powerpc: Fix syscalls during early process initialization (SLE-8348, BZ #22685)- s390-strstr-page-boundary.patch: S390: Fix handling of needles crossing a page in strstr z15 ifunc-variant (bsc#1157893, BZ #25226)- prefer-map-32bit-exec.patch: rtld: Check __libc_enable_secure before honoring LD_PREFER_MAP_32BIT_EXEC (CVE-2019-19126, bsc#1157292, BZ [#25204])- GNU1815 - Hardware support in toolchain (bsc#1151582) 0001-S390-Add-configure-check-to-detect-z10-as-mininum-ar.patch 0002-S390-Use-hwcap-instead-of-dl_hwcap-in-ifunc-resolver.patch 0003-S390-Unify-31-64bit-memcpy.patch 0004-S390-Refactor-memcpy-mempcpy-ifunc-handling.patch 0005-S390-Remove-s390-specific-implementation-of-bcopy.patch 0006-S390-Use-memcpy-for-forward-cases-in-memmove.patch 0007-S390-Add-configure-check-to-detect-z13-as-mininum-ar.patch 0008-S390-Add-z13-memmove-ifunc-variant.patch 0009-S390-Add-z13-strstr-ifunc-variant.patch 0010-S390-Add-z13-memmem-ifunc-variant.patch 0011-S390-Cleanup-ifunc-resolve.h.patch 0012-S390-Mark-vx-and-vxe-as-important-hwcap.patch 0013-S390-Add-new-hwcap-values-for-new-cpu-architecture-a.patch 0014-S390-Add-configure-check-to-detect-support-for-arch1.patch 0015-S390-Add-arch13-memmove-ifunc-variant.patch 0016-S390-Add-arch13-strstr-ifunc-variant.patch 0017-S390-Add-arch13-memmem-ifunc-variant.patch- regex-parse-reg-exp.patch: ERE '0|()0|\1|0' causes regexec undefined behavior (CVE-2009-5155, bsc#1127223, BZ #18986) - regex-read-overrun.patch: regex: fix read overrun (CVE-2019-9169, bsc#1127308, BZ #24114)- crt-nocompress-debug-sections.patch: Don't compress debug sections in crt*.o files (bsc#1123710)- ldconfig-concurrency.patch: Avoid concurrency problem in ldconfig (bsc#1117993, BZ #23973)- force-elision-race.patch: Fix race in pthread_mutex_lock while promoting to PTHREAD_MUTEX_ELISION_NP (bsc#1131330, BZ #23275)- japanese-era-name-may-2019.patch: ja_JP locale: Add entry for the new Japanese era (bsc#1100396, BZ #22964)- pthread-mutex-trylock-barrier.patch: pthread_mutex_trylock does not use the correct order of instructions while maintaining the robust mutex list due to missing compiler barriers (bsc#1130045, BZ #24180) - getaddrinfo-parse-ipv4-address.patch: getaddrinfo: Fully parse IPv4 address strings (CVE-2016-10739, bsc#1122729, BZ #20018)- mman-map-sync.patch: Add MAP_SYNC from Linux 4.15 (bsc#1126590) - mman-linux-map-shared-validate.patch: Add MAP_SHARED_VALIDATE from Linux 4.15 (bsc#1126590) - nptl-setxid-error.patch: nptl: Preserve error in setxid thread broadcast in coredumps (bsc#1063675, BZ #22153)- x86-haswell-string-flags.patch: Fix Haswell CPU string flags (bsc#1114984, BZ #23709) - pthread-cond-broadcast-waiters-after-spinning.patch: Fix waiters-after-spinning case (bsc#1114993, BZ #23538)- absolute-symbols.patch: Don't relocate absolute symbols (bsc#1112570, BZ [#19818])- glibc-fix-aarch64-build.diff: Fix build on aarch64 with binutils newer than 2.30.- Add glibc-locale-base subpackage containing only C, C.UTF-8 and en_US.UTF-8 locales (fate#326551)- aarch64-hwcap-atomics.patch: aarch64: add HWCAP_ATOMICS to HWCAP_IMPORTANT (fate#325962)- math-remove-slow-path.patch: Remove slow paths from math routines (fate#325815, fate#325879, fate#325880, fate#325881, fate#325882)- localtime-2039.patch: Fix year 2039 bug for localtime with 64-bit time_t (bsc#1102526, BZ #22639)- i386-memmove-sse2-unaligned.patch: Fix SSE2 memmove issue when crossing 2GB boundary (CVE-2017-18269, bnc#1094150, BZ #22644) - realpath-ssize-max-overflow.patch: Fix overflow in path length computation (CVE-2018-11236, bsc#1094161, BZ #22786) - glibc-fix-avx512-mempcpy.patch: replace with upstream version- Use %license also for COPYING and COPYING.LIB (bsc#1082318)- Add glibc-fix-avx512-mempcpy.patch as quick fix for mempcpy buffer overwrite in memmove-avx512-no-vzeroupper.S for Knights Landing CPUs (CVE-2018-11237, bnc#1094154, bnc#1092877, BZ #23196)- Readd nis to netgroup and automount nss config (bsc#1088860)- res-send-enomem.patch: Fix crash in resolver on memory allocation failure (bsc#1086690, BZ #23005)- Use %license (bsc#1082318)- stack-guard-size-accounting.patch: Fix stack guard size accounting (bsc#1074208, BZ #22637) - libgcc-rtld-now.patch: Open libgcc.so with RTLD_NOW during pthread_cancel (bsc#1074208, BZ #22636)- Mark source0 as nosource in non-main source rpms- Add systemtap-headers to BuildRequires. - Add --enable-systemtap to configure arguments. (fate#324969, bsc#1073636)- memalign-overflow.patch: Fix integer overflows in internal memalign and malloc functions (CVE-2018-6485, CVE-2018-6551, bsc#1079036, BZ #22343, BZ #22774)- fix-locking-in-_IO_cleanup.patch: Skip locked files during exit (bsc#1070491, BZ #15142)- Avoid duplicate source rpm- getcwd-absolute.patch: make getcwd(3) fail if it cannot obtain an absolute path (CVE-2018-1000001, bsc#1074293, BZ #22679)- dl-init-paths-overflow.patch: Count components of the expanded path in _dl_init_path (CVE-2017-1000408, CVE-2017-1000409, bsc#1071319, BZ [#22607], BZ #22627) - fillin-rpath-empty-tokens.patch: Check for empty tokens before dynamic string token expansion (CVE-2017-16997, bsc#1073231, BZ #22625)- tst-tlsopt-powerpc.patch: fix tst-tlsopt-powerpc (bcn#1070419) - powerpc-hwcap-bits.patch: Update HWCAP for powerpc (bnc#1070420) - malloc-tcache-check-overflow.patch: Fix integer overflow in malloc when tcache is enabled (CVE-2017-17426, bnc#1071479, BZ #22375)- Add _multibuild- glob64-s390.patch: no compat glob64 on s390 - noversion.tar.bz2: remove unused source- x86-64-dl-platform.patch: Don't set GLRO(dl_platform) to NULL (BZ #22299)- spawni-assert.patch: Fix improper assert in Linux posix_spawn (BZ [#22273])- math-c++-compat.patch: Add more C++ compatibility (BZ #22296) - malloc-tcache-leak.patch: Fix tcache leak after thread destruction (BZ [#22111]) - falkor-memcpy-memmove.patch: Optimized implementation of memcpy/memmove for Qualcomm Falkor - aarch64-cpu-features.patch: Fix glibc.tune.cpu tunable handling - nss-files-large-buffers.patch: Avoid large buffers with many host addresses (BZ #22078) - sysconf-uio-maxiov.patch: Fix missing definition of UIO_MAXIOV (BZ [#22321]) - glob-tilde-overflow.patch: Fix buffer overflows with GLOB_TILDE (CVE-2017-15670, CVE-2017-15671, CVE-2017-15804, bsc#1064569. bsc#1064580, bsc#1064583, BZ #22320, BZ #22325, BZ #22332) - dl-runtime-resolve-xsave.patch: Use fxsave/xsave/xsavec in _dl_runtime_resolve (BZ #21265)- nscd-libnsl.patch: Remove reference to libnsl from nscd (bsc#1062244)- Drop glibc-obsolete - glibc-2.3.90-noversion.diff: remove - reinitialize-dl_load_write_lock.patch: remove- nss-compat.patch: Move nss_compat from nis to nss subdir and install it unconditionally - nsswitch.conf: switch back to compat for passwd, group, shadow- assert-pedantic.patch: Suppress pedantic warning caused by statement expression (BZ #21242, BZ #21972) - math-c++-compat.patch: Add more C++ compatibility (BZ #22235) - getaddrinfo-errno.patch: Fix errno and h_errno handling in getaddrinfo (BZ #21915, BZ #21922) - resolv-conf-oom.patch: Fix memory handling in OOM situation during resolv.conf parsing (BZ #22095, BZ #22096) - dynarray-allocation.patch: Fix initial size of dynarray allocation and set errno on overflow error - nearbyint-inexact.patch: Avoid spurious inexact in nearbyint (BZ #22225)- math-c++-compat.patch: add more C++ compatibility (BZ #22146)- Remove rpcsvc/yppasswd.* from glibc-devel - ld-so-hwcap-x86-64.patch: add x86_64 to hwcap (bsc#1056606, BZ #22093)- eh-frame-zero-terminator.patch: Properly terminate .eh_frame (BZ #22051)- Disable obsolete libnsl and NIS support - remove-nss-nis-compat.patch: remove nis and compat from default NSS configs - nsswitch.conf: Likewise- math-c++-compat.patch: Do not use __builtin_types_compatible_p in C++ mode (BZ #21930)- Add iconvconfig to baselibs.conf (bsc#1051042)- resolv-context-leak.patch: Fix leaks of resolver contexts - dl-runtime-resolve-opt-avx512f.patch: Use _dl_runtime_resolve_opt only with AVX512F (BZ #21871) - libpthread-compat-wrappers.patch: Don't use IFUNC resolver for longjmp or system in libpthread (BZ #21041)- Update to glibc 2.26 * A per-thread cache has been added to malloc * Unicode 10.0.0 Support * Improvements to the DNS stub resolver * New function reallocarray, which resizes an allocated block (like realloc) to the product of two sizes, with a guaranteed clean failure upon integer overflow in the multiplication * New wrappers for the Linux-specific system calls preadv2 and pwritev2 * posix_spawnattr_setflags now supports the flag POSIX_SPAWN_SETSID, to create a new session ID for the spawned process * errno.h is now safe to use from C-preprocessed assembly language on all supported operating systems * On ia64, powerpc64le, x86-32, and x86-64, the math library now implements 128-bit floating point as defined by ISO/IEC/IEEE 60559:2011 (IEEE 754-2008) and ISO/IEC TS 18661-3:2015 * The synchronization that pthread_spin_unlock performs has been changed to now be equivalent to a C11 atomic store with release memory order to the spin lock's memory location * The DNS stub resolver no longer performs EDNS fallback * res_mkquery and res_nmkquery no longer support the IQUERY opcode * The _res_opcodes variable has been removed from libresolv * no longer includes inline versions of any string functions, as this kind of optimization is better done by the compiler * The nonstandard header has been removed * The obsolete header has been removed * The obsolete signal constant SIGUNUSED is no longer defined by * The obsolete function cfree has been removed * The stack_t type no longer has the name struct sigaltstack * The ucontext_t type no longer has the name struct ucontext * On S/390 GNU/Linux, the constants defined by have been synced with the kernel * Linux kernel 3.2 or later is required at runtime, on all architectures supported by that kernel * The DNS stub resolver limits the advertised UDP buffer size to 1200 bytes, to avoid fragmentation-based spoofing attacks (CVE-2017-12132) * LD_LIBRARY_PATH is now ignored in binaries running in privileged AT_SECURE mode to guard against local privilege escalation attacks (CVE-2017-1000366) * Avoid printing a backtrace from the __stack_chk_fail function since it is called on a corrupt stack and a backtrace is unreliable on a corrupt stack (CVE-2010-3192) * A use-after-free vulnerability in clntudp_call in the Sun RPC system has been fixed (CVE-2017-12133) * fate#322258, fate#321513, fate#322453 - fts-symbol-redirect.patch, glibc-resolv-reload.diff, glibc-2.2-sunrpc.diff, i686-memchr-sse.patch, ld-hwcap-mask-suid.patch, ld-library-path-suid.patch, sunrpc-use-after-free.patch, test-math-vector-sincos-aliasing.patch, tunables-bigendian.patch: Removed- Fix RPM group- s390-elision-enable-envvar.patch: enable TLE only if GLIBC_ELISION_ENABLE=yes is defined (fate#322271)- ld-hwcap-mask-suid.patch: Ignore and remove LD_HWCAP_MASK for AT_SECURE programs (BZ #21209) - ld-library-path-suid.patch: Completely ignore LD_LIBRARY_PATH for AT_SECURE=1 programs (CVE-2017-1000366, bsc#1039357, BZ #21624)- Remove glibc-cpusetsize.diff, no longer useful- fts-symbol-redirect.patch: Fix symbol redirect for fts_set (bsc#1041123, BZ #21289)- test-math-vector-sincos-aliasing.patch: Fix test-math-vector-sincos.h aliasing- add-locales.patch: renamed from glibc-2.3.locales.diff.bz2, drop en_BE locales (bsc#1039502)- Remove glibc-testsuite.patch, no longer relevant- Use multibuild feature - Remove obsolete check-build.sh - glibc.rpmlintrc: remove obsolete entries - Use %tmpfiles_create in nscd postin- i686-memchr-sse.patch: Fix i686 memchr overflow calculation (bsc#1031021, BZ #21182) - sunrpc-use-after-free.patch: Avoid use-after-free read access in clntudp_call (BZ #21115) - Build testsuite with gdb and python-pexpect to enable more tests- tunables-bigendian.patch: Fix getting tunable values on big-endian (BZ [#21109])- Update to glibc 2.25 * The feature test macro __STDC_WANT_LIB_EXT2__, from ISO/IEC TR 24731-2:2010, is supported to enable declarations of functions from that TR. * The feature test macro __STDC_WANT_IEC_60559_BFP_EXT__, from ISO/IEC TS 18661-1:2014, is supported to enable declarations of functions and macros from that TS. * The feature test macro __STDC_WANT_IEC_60559_FUNCS_EXT__, from ISO/IEC TS 18661-4:2015, is supported to enable declarations of functions and macros from that TS. * The nonstandard feature selection macros _REENTRANT and _THREAD_SAFE are now treated as compatibility synonyms for _POSIX_C_SOURCE=199506L. * The inclusion of by is deprecated. * New features from TS 18661-1:2014 are added to libm: the fesetexcept, fetestexceptflag, fegetmode and fesetmode functions, the femode_t type and the FE_DFL_MODE and FE_SNANS_ALWAYS_SIGNAL macros. * Integer width macros from TS 18661-1:2014 are added to : CHAR_WIDTH, SCHAR_WIDTH, UCHAR_WIDTH, SHRT_WIDTH, USHRT_WIDTH, INT_WIDTH, UINT_WIDTH, LONG_WIDTH, ULONG_WIDTH, LLONG_WIDTH, ULLONG_WIDTH; and to : INT8_WIDTH, UINT8_WIDTH, INT16_WIDTH, UINT16_WIDTH, INT32_WIDTH, UINT32_WIDTH, INT64_WIDTH, UINT64_WIDTH, INT_LEAST8_WIDTH, UINT_LEAST8_WIDTH, INT_LEAST16_WIDTH, UINT_LEAST16_WIDTH, INT_LEAST32_WIDTH, UINT_LEAST32_WIDTH, INT_LEAST64_WIDTH, UINT_LEAST64_WIDTH, INT_FAST8_WIDTH, UINT_FAST8_WIDTH, INT_FAST16_WIDTH, UINT_FAST16_WIDTH, INT_FAST32_WIDTH, UINT_FAST32_WIDTH, INT_FAST64_WIDTH, UINT_FAST64_WIDTH, INTPTR_WIDTH, UINTPTR_WIDTH, INTMAX_WIDTH, UINTMAX_WIDTH, PTRDIFF_WIDTH, SIG_ATOMIC_WIDTH, SIZE_WIDTH, WCHAR_WIDTH, WINT_WIDTH. * New features are added from TS 18661-1:2014: - Signaling NaN macros: SNANF, SNAN, SNANL. - Nearest integer functions: roundeven, roundevenf, roundevenl, fromfp, fromfpf, fromfpl, ufromfp, ufromfpf, ufromfpl, fromfpx, fromfpxf, fromfpxl, ufromfpx, ufromfpxf, ufromfpxl. - llogb functions: the llogb, llogbf and llogbl functions, and the FP_LLOGB0 and FP_LLOGBNAN macros. - Max-min magnitude functions: fmaxmag, fmaxmagf, fmaxmagl, fminmag, fminmagf, fminmagl. - Comparison macros: iseqsig. - Classification macros: iscanonical, issubnormal, iszero. - Total order functions: totalorder, totalorderf, totalorderl, totalordermag, totalordermagf, totalordermagl. - Canonicalize functions: canonicalize, canonicalizef, canonicalizel. - NaN functions: getpayload, getpayloadf, getpayloadl, setpayload, setpayloadf, setpayloadl, setpayloadsig, setpayloadsigf, setpayloadsigl. * The functions strfromd, strfromf, and strfroml, from ISO/IEC TS 18661-1:2014, are added to libc. * Most of glibc can now be built with the stack smashing protector enabled. * The function explicit_bzero, from OpenBSD, has been added to libc. * On ColdFire, MicroBlaze, Nios II and SH3, the float_t type is now defined to float instead of double. * On x86_64, when compiling with -mfpmath=387 or -mfpmath=sse+387, the float_t and double_t types are now defined to long double instead of float and double. * The getentropy and getrandom functions, and the header file have been added. * The buffer size for byte-oriented stdio streams is now limited to 8192 bytes by default. * The header now includes the header. * The malloc_get_state and malloc_set_state functions have been removed. * The “ip6-dotint” and “no-ip6-dotint” resolver options, and the corresponding RES_NOIP6DOTINT flag from have been removed. * The "ip6-bytestring" resolver option and the corresponding RES_USEBSTRING flag from have been removed. * The flags RES_AAONLY, RES_PRIMARY, RES_NOCHECKNAME, RES_KEEPTSIG, RES_BLAST defined in the header file have been deprecated. * The "inet6" option in /etc/resolv.conf and the RES_USE_INET6 flag for _res.flags are deprecated. * DNSSEC-related declarations and definitions have been removed from the header file, and libresolv will no longer attempt to decode the data part of DNSSEC record types. * The resource record type classification macros ns_t_qt_p, ns_t_mrr_p, ns_t_rr_p, ns_t_udp_p, ns_t_xfr_p have been removed from the header file because the distinction between RR types and meta-RR types is not officially standardized, subject to revision, and thus not suitable for encoding in a macro. * The types res_sendhookact, res_send_qhook, re_send_rhook, and the qhook and rhook members of the res_state type in have been removed. * For multi-arch support it is recommended to use a GCC which has been built with support for GNU indirect functions. * GDB pretty printers have been added for mutex and condition variable structures in POSIX Threads. * Tunables feature added to allow tweaking of the runtime for an application program. * A new version of condition variables functions have been implemented in the NPTL implementation of POSIX Threads to provide stronger ordering guarantees. * A new version of pthread_rwlock functions have been implemented to use a more scalable algorithm primarily through not using a critical section anymore to make state changes. * On ARM EABI (32-bit), generating a backtrace for execution contexts which have been created with makecontext could fail to terminate due to a missing .cantunwind annotation. (CVE-2016-6323) * The DNS stub resolver functions would crash due to a NULL pointer dereference when processing a query with a valid DNS question type which was used internally in the implementation. (CVE-2015-5180) - Enable stack protector if part of %optflags - startcontext-cantunwind.patch: Removed - cpuid-assertion.patch: Removed- cpuid-assertion.patch: Don't assert on older Intel CPUs (BZ #20647)- glibc-2.3.3-nscd-db-path.diff: Move persistent nscd databases to /var/lib/nscd - glibc-2.3.90-langpackdir.diff: simplify- Update to glibc 2.24 * The minimum Linux kernel version that this version of the GNU C Library can be used with is 3.2 * The pap_AN locale has been deleted * The readdir_r and readdir64_r functions have been deprecated * The type `union wait' has been removed * A new NSS action is added to facilitate large distributed system administration * The deprecated __malloc_initialize_hook variable has been removed from the API * The long unused localedef --old-style option has been removed * nextupl, nextup, nextupf, nextdownl, nextdown and nextdownf are added to libm * An unnecessary stack copy in _nss_dns_getnetbyname_r was removed (CVE-2016-3075) * Previously, getaddrinfo copied large amounts of address data to the stack, even after the fix for CVE-2013-4458 has been applied, potentially resulting in a stack overflow. getaddrinfo now uses a heap allocation instead (CVE-2016-3706) * The glob function suffered from a stack-based buffer overflow when it was called with the GLOB_ALTDIRFUNC flag and encountered a long file name (CVE-2016-1234) * The Sun RPC UDP client could exhaust all available stack space when flooded with crafted ICMP and UDP messages (CVE-2016-4429) * The IPv6 name server management code in libresolv could result in a memory leak for each thread which is created, performs a failing naming lookup, and exits (CVE-2016-5417) - startcontext-cantunwind.patch: mark __startcontext as .cantunwind (bsc#974800, BZ #20435) - Removed patches: * 0001-Updated-translations-for-2.23.patch * 0002-Regenerate-libc.pot-for-2.23.patch * 0003-Regenerated-configure-scripts.patch * 0004-x86_64-Set-DL_RUNTIME_UNALIGNED_VEC_SIZE-to-8.patch * 0005-Add-fts64_-to-sysdeps-arm-nacl-libc.abilist.patch * 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch * 0007-NEWS-2.23-Fix-typo-in-bug-19048-text.patch * 0008-Update-NEWS.patch * 0009-sln-use-stat64.patch * 0010-Add-sys-auxv.h-wrapper-to-include-sys.patch * 0011-mips-terminate-the-FDE-before-the-return-trampoline-.patch * 0012-Use-HAS_ARCH_FEATURE-with-Fast_Rep_String.patch * 0013-Mention-BZ-19762-in-NEWS.patch * 0014-Define-_HAVE_STRING_ARCH_mempcpy-to-1-for-x86.patch * 0015-Or-bit_Prefer_MAP_32BIT_EXEC-in-EXTRA_LD_ENVVARS.patch * 0016-Fix-resource-leak-in-resolver-bug-19257.patch * 0017-math-don-t-clobber-old-libm.so-on-install-BZ-19822.patch * 0018-resolv-Always-set-resplen2-out-parameter-in-send_dg-.patch * 0019-S390-Save-and-restore-fprs-vrs-while-resolving-symbo.patch * 0020-S390-Extend-structs-La_s390_regs-La_s390_retval-with.patch * 0021-CVE-2016-3075-Stack-overflow-in-_nss_dns_getnetbynam.patch * 0022-configure-fix-test-usage.patch * 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch * 0024-nss_db-Propagate-ERANGE-error-if-parse_line-fails-BZ.patch * 0025-getnameinfo-Do-not-preserve-errno.patch * 0026-getnameinfo-Refactor-and-fix-memory-leak-BZ-19642.patch * 0027-getnameinfo-Reduce-line-length-and-add-missing-comme.patch * 0028-getnameinfo-Avoid-calling-strnlen-on-uninitialized-b.patch * 0029-getnameinfo-Return-EAI_OVERFLOW-in-more-cases-BZ-197.patch * 0030-hesiod-Remove-RCS-keywords.patch * 0031-hesiod-Always-use-thread-local-resolver-state-BZ-195.patch * 0032-hesiod-Avoid-heap-overflow-in-get_txt_records-BZ-200.patch * 0033-malloc-Remove-NO_THREADS.patch * 0034-Fix-malloc-threaded-tests-link-on-non-Linux.patch * 0035-malloc-Run-fork-handler-as-late-as-possible-BZ-19431.patch * 0036-malloc-Remove-malloc-hooks-from-fork-handler.patch * 0037-malloc-Add-missing-internal_function-attributes-on-f.patch * 0038-nss_dns-Fix-assertion-failure-in-_nss_dns_getcanonna.patch * 0039-nss_dns-Validate-RDATA-length-against-packet-length-.patch * 0040-resolv-nss_dns-Remove-remaining-syslog-logging-BZ-19.patch * 0041-nss_dns-Check-address-length-before-creating-addrinf.patch * 0042-nss_dns-Skip-over-non-PTR-records-in-the-netent-code.patch * 0043-resolv-Always-set-resplen2-out-parameter-in-send_vc-.patch * 0044-tst-audit4-tst-audit10-Compile-AVX-AVX-512-code-sepa.patch * 0045-Fix-tst-audit10-build-when-mavx512f-is-not-supported.patch * 0046-tst-audit10-Fix-compilation-on-compilers-without-bit.patch * 0047-strfmon_l-Use-specified-locale-for-number-formatting.patch * 0048-glob-Simplify-the-interface-for-the-GLOB_ALTDIRFUNC-.patch * 0049-CVE-2016-1234-glob-Do-not-copy-d_name-field-of-struc.patch * 0050-ldconfig-Do-not-remove-stale-symbolic-links-with-X-B.patch * 0051-Report-dlsym-dlvsym-lookup-errors-using-dlerror-BZ-1.patch * 0052-Fix-tst-dlsym-error-build.patch * 0053-Remove-trailing-newline-from-date_fmt-in-Serbian-loc.patch * 0054-Revert-Report-dlsym-dlvsym-lookup-errors-using-dlerr.patch * 0055-CVE-2016-3706-getaddrinfo-stack-overflow-in-hostent-.patch * 0056-Fix-strfmon_l-Use-specified-locale-for-number-format.patch * clntudp-call-alloca.patch * glibc-memset-nontemporal.diff * nis-initgroups-status.patch * nscd-gc-crash.patch * robust-mutex-deadlock.patch * strncat-avoid-array-bounds-warning.patch- strncat-avoid-array-bounds-warning.patch: Avoid array-bounds warning for stncat on i586 (BZ #20260) - Update glibc.keyring - Unset MALLOC_CHECK_ during testsuite run- nsswitch.conf: Add fallback to files for passwd and group to prepare for libnsl removal.- nis-initgroups-status.patch: Return proper status from _nss_nis_initgroups_dyn (bsc#984269, BZ #20262) - robust-mutex-deadlock.patch: Fix generic __lll_robust_timedlock_wait to check for timeout (bsc#985170, BZ #20263)- nscd-gc-crash.patch: Fix nscd assertion failure in gc (bsc#965699, BZ [#19755])- clntudp-call-alloca.patch: do not use alloca in clntudp_call (CVE-2016-4429, bsc#980854, BZ #20112)- Import patches from 2.23 branch 0001-Updated-translations-for-2.23.patch 0002-Regenerate-libc.pot-for-2.23.patch 0003-Regenerated-configure-scripts.patch 0004-x86_64-Set-DL_RUNTIME_UNALIGNED_VEC_SIZE-to-8.patch 0005-Add-fts64_-to-sysdeps-arm-nacl-libc.abilist.patch 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch 0007-NEWS-2.23-Fix-typo-in-bug-19048-text.patch 0008-Update-NEWS.patch 0009-sln-use-stat64.patch 0010-Add-sys-auxv.h-wrapper-to-include-sys.patch 0011-mips-terminate-the-FDE-before-the-return-trampoline-.patch 0012-Use-HAS_ARCH_FEATURE-with-Fast_Rep_String.patch 0013-Mention-BZ-19762-in-NEWS.patch 0014-Define-_HAVE_STRING_ARCH_mempcpy-to-1-for-x86.patch 0015-Or-bit_Prefer_MAP_32BIT_EXEC-in-EXTRA_LD_ENVVARS.patch 0016-Fix-resource-leak-in-resolver-bug-19257.patch 0017-math-don-t-clobber-old-libm.so-on-install-BZ-19822.patch 0018-resolv-Always-set-resplen2-out-parameter-in-send_dg-.patch 0019-S390-Save-and-restore-fprs-vrs-while-resolving-symbo.patch 0020-S390-Extend-structs-La_s390_regs-La_s390_retval-with.patch 0021-CVE-2016-3075-Stack-overflow-in-_nss_dns_getnetbynam.patch 0022-configure-fix-test-usage.patch 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch 0024-nss_db-Propagate-ERANGE-error-if-parse_line-fails-BZ.patch 0025-getnameinfo-Do-not-preserve-errno.patch 0026-getnameinfo-Refactor-and-fix-memory-leak-BZ-19642.patch 0027-getnameinfo-Reduce-line-length-and-add-missing-comme.patch 0028-getnameinfo-Avoid-calling-strnlen-on-uninitialized-b.patch 0029-getnameinfo-Return-EAI_OVERFLOW-in-more-cases-BZ-197.patch 0030-hesiod-Remove-RCS-keywords.patch 0031-hesiod-Always-use-thread-local-resolver-state-BZ-195.patch 0032-hesiod-Avoid-heap-overflow-in-get_txt_records-BZ-200.patch 0033-malloc-Remove-NO_THREADS.patch 0034-Fix-malloc-threaded-tests-link-on-non-Linux.patch 0035-malloc-Run-fork-handler-as-late-as-possible-BZ-19431.patch 0036-malloc-Remove-malloc-hooks-from-fork-handler.patch 0037-malloc-Add-missing-internal_function-attributes-on-f.patch 0038-nss_dns-Fix-assertion-failure-in-_nss_dns_getcanonna.patch 0039-nss_dns-Validate-RDATA-length-against-packet-length-.patch 0040-resolv-nss_dns-Remove-remaining-syslog-logging-BZ-19.patch 0041-nss_dns-Check-address-length-before-creating-addrinf.patch 0042-nss_dns-Skip-over-non-PTR-records-in-the-netent-code.patch 0043-resolv-Always-set-resplen2-out-parameter-in-send_vc-.patch 0044-tst-audit4-tst-audit10-Compile-AVX-AVX-512-code-sepa.patch 0045-Fix-tst-audit10-build-when-mavx512f-is-not-supported.patch 0046-tst-audit10-Fix-compilation-on-compilers-without-bit.patch 0047-strfmon_l-Use-specified-locale-for-number-formatting.patch 0048-glob-Simplify-the-interface-for-the-GLOB_ALTDIRFUNC-.patch 0049-CVE-2016-1234-glob-Do-not-copy-d_name-field-of-struc.patch 0050-ldconfig-Do-not-remove-stale-symbolic-links-with-X-B.patch 0051-Report-dlsym-dlvsym-lookup-errors-using-dlerror-BZ-1.patch 0052-Fix-tst-dlsym-error-build.patch 0053-Remove-trailing-newline-from-date_fmt-in-Serbian-loc.patch 0054-Revert-Report-dlsym-dlvsym-lookup-errors-using-dlerr.patch 0055-CVE-2016-3706-getaddrinfo-stack-overflow-in-hostent-.patch 0056-Fix-strfmon_l-Use-specified-locale-for-number-format.patch - CVE-2016-3075 CVE-2016-1234 CVE-2016-3706 bsc#973164 bsc#969727 - resolv-mem-leak.patch: renamed to 0016-Fix-resource-leak-in-resolver-bug-19257.patch - no-long-double.patch: renamed to 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch - glibc-gcc6.patch: renamed to 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch- glibc-c-utf8-locale.patch: fix bad standard in LC_IDENTIFICATION categories - glibc-2.3.locales.diff.bz2: likewise- glibc-gcc6.patch: Suppress GCC 6 warning about ambiguous 'else' with - Wparentheses- Add compatibility symlinks for LSB 3.0 (fate#318933)- powerpc-elision-enable-envvar.patch: enable TLE only if GLIBC_ELISION_ENABLE=yes is defined (bsc#967594, fate#318236)- ldd-system-interp.patch: Restore warning about execution permission, it is still needed for noexec mounts (bsc#915985)- Add C.UTF-8 locale (see https://sourceware.org/glibc/wiki/Proposals/C.UTF-8) and rh#902094 . Added with glibc-c-utf8-locale.patch. - Add glibc-disable-gettext-for-c-utf8.patch to disable gettext for C.UTF-8 same as C locale.- Move %install_info_delete to %preun - crypt_blowfish-1.3.tar.gz.sign: Remove, the sign key is no longer acceptable- no-long-double.patch: Don't use long double functions if NO_LONG_DOUBLE- Update to glibc 2.23 release. * Unicode 8.0.0 Support * sched_setaffinity, pthread_setaffinity_np no longer attempt to guess the kernel-internal CPU set size * The fts.h header can now be used with -D_FILE_OFFSET_BITS=64 * getaddrinfo now detects certain invalid responses on an internal netlink socket * A defect in the malloc implementation, present since glibc 2.15 (2012) or glibc 2.10 via --enable-experimental-malloc (2009), could result in the unnecessary serialization of memory allocation requests across threads * The obsolete header has been removed * The obsolete functions bdflush, create_module, get_kernel_syms, query_module and uselib are no longer available to newly linked binaries * Optimized string, wcsmbs and memory functions for IBM z13. * Newly linked programs that define a variable called signgam will no longer have it set by the lgamma, lgammaf and lgammal functions - Removed patches: * dont-remove-nodelete-flag.patch * openat64-readd-o-largefile.patch * mntent-blank-line.patch * opendir-o-directory-check.patch * strcoll-remove-strdiff-opt.patch * ld-pointer-guard.patch * tls-dtor-list-mangling.patch * powerpc-lock-elision-race.patch * prelink-elf-rtype-class.patch * vector-finite-math-aliases.patch * powerpc-elision-adapt-param.patch * catopen-unbound-alloca.patch * strftime-range-check.patch * hcreate-overflow-check.patch * errorcheck-mutex-no-elision.patch * refactor-nan-parsing.patch * send-dg-buffer-overflow.patch * isinf-cxx11-conflict.patch * ibm93x-redundant-shift-si.patch * iconv-reset-input-buffer.patch * tzset-tzname.patch * static-dlopen.patch- isinf-cxx11-conflict.patch: Fix isinf/isnan declaration conflict with C++11 (bsc#963700, BZ #19439)- tls-dtor-list-mangling.patch: Harden tls_dtor_list with pointer mangling (BZ #19018) - prelink-elf-rtype-class.patch: Keep only ELF_RTYPE_CLASS_{PLT|COPY} bits for prelink (BZ #19178) - vector-finite-math-aliases.patch: Better workaround for aliases of * _finite symbols in vector math library (BZ# 19058) - powerpc-elision-adapt-param.patch: powerpc: Fix usage of elision transient failure adapt param (BZ #19174) - catopen-unbound-alloca.patch: Fix unbound alloca in catopen (CVE-2015-8779, bsc#962739, BZ #17905) - strftime-range-check.patch: Add range check on time fields (CVE-2015-8776, bsc#962736, BZ #18985) - hcreate-overflow-check.patch: Handle overflow in hcreate (CVE-2015-8778, bsc#962737, BZ #18240) - errorcheck-mutex-no-elision.patch: Don't do lock elision on an error checking mutex (bsc#956716, BZ #17514) - refactor-nan-parsing.patch: Refactor strtod parsing of NaN payloads (CVE-2014-9761, bsc#962738, BZ #16962) - send-dg-buffer-overflow.patch: Fix getaddrinfo stack-based buffer overflow (CVE-2015-7547, bsc#961721, BZ #18665) - powerpc-lock-elision-race.patch: renamed from 0001-powerpc-Fix-a-race-condition-when-eliding-a-lock-20150730.patch- Add audit-devel and libcap-devel to BuildRequires, for use by nscd- reinitialize-dl_load_write_lock.patch: Reinitialize dl_load_write_lock on fork (bsc#958315, BZ #19282)- resolv-mem-leak.patch: Fix resource leak in resolver (bsc#955647, BZ #19257) - tzset-tzname.patch: Force rereading TZDEFRULES after it was used to set DST rules only (BZ #19253)- glibc-2.3.90-noversion.diff: use stat64- ld-pointer-guard.patch: Always enable pointer guard (CVE-2015-8777, bsc#950944, BZ #18928)- strcoll-remove-strdiff-opt.patch: Remove incorrect STRDIFF-based optimization (BZ #18589)- iconv-reset-input-buffer.patch: Fix iconv buffer handling with IGNORE error handler (BZ #18830)- new patch [BZ #18743] PowerPC: Fix a race condition when eliding a lock 0001-powerpc-Fix-a-race-condition-when-eliding-a-lock-20150730.patch- nss-files-long-lines-2.patch: Properly reread entry after failure in nss_files getent function (bsc#945779, BZ #18991)- fnmatch-collating-elements.patch: Fix fnmatch handling of collating elements (BZ #17396, BZ #16976)- opendir-o-directory-check.patch: Fix opendir inverted o_directory_works test - static-dlopen.patch: Static dlopen default library search path fix (bsc#937853)- mntent-blank-line.patch: Fix memory corruption w/blank lines- dont-remove-nodelete-flag.patch: Don't remove DF_1_NODELETE flag from all loaded objects on failed dlopen - openat64-readd-o-largefile.patch: Readd O_LARGEFILE flag for openat64- Update to glibc 2.22 release. * Cache information can be queried via sysconf() function on s390 * A buffer overflow in gethostbyname_r and related functions performing DNS requests has been fixed. (CVE-2015-1781) * The time zone file parser has been made more robust against crafted time zone files * A powerpc and powerpc64 optimization for TLS, similar to TLS descriptors for LD and GD on x86 and x86-64, has been implemented. * Character encoding and ctype tables were updated to Unicode 7.0.0 * Added vector math library named libmvec * A new fmemopen implementation has been added with the goal of POSIX compliance. * The header is deprecated, and will be removed in a future release. * bsc#905313 bsc#920338 bsc#927080 bsc#928723 bsc#931480 bsc#939211 bsc#940195 bsc#940332 bsc#944494 bsc#968787 - Patches from upstream removed * htm-tabort.patch * o-tmpfile.patch * memcpy-chk-non-SSE2.patch * pthread-mutexattr-gettype-kind.patch * powerpc-software-sqrt.patch * static-tls-dtv-limit.patch * threaded-trim-threshold.patch * resolv-nameserver-handling.patch * nss-separate-state-getXXent.patch * aarch64-sigstksz.patch * heap-top-corruption.patch * pthread-join-deadlock.patch- pthread-join-deadlock.patch: Use IE model for static variables in libc.so, libpthread.so and rtld (bsc#930015, BZ #18457)- glibc-nodate.patch: fix verification of timestamp- also filter out -fstack-protector-strong- getaddrinfo-ipv6-sanity.diff: Remove. It breaks services that start before IPv6 is up (bsc#931399) - glibc-2.3.locales.diff.bz2: Remove sh_YU locales, fix currency for en_BE.- Add /usr/include/gnu/lib-names-.*.h to baselibs - pthread-join-deadlock.patch: Don't require rtld lock to store static TLS offset in the DTV (bsc#930015, BZ #18457) - heap-top-corruption.patch: Do not corrupt the top of a threaded heap if top chunk is MINSIZE (BZ #18502)- threaded-trim-threshold.patch: Fix regression in threaded application malloc performance (bsc#915955, BZ #17195)- aarch64-sigstksz.patch: Increase MINSIGSTKSZ and SIGSTKSZ (BZ #16850)- powerpc-software-sqrt.patch: Fix powerpc software sqrt (BZ #17964, BZ [#17967]) - nss-separate-state-getXXent.patch: Separate internal state between getXXent and getXXbyYY NSS calls (CVE-2014-8121, bsc#918187, BZ #18007) - static-tls-dtv-limit.patch: Fix DTV race, assert, DTV_SURPLUS Static TLS limit, and nptl_db garbage (bsc#919678, BZ #17090, BZ #17620, BZ #17621, BZ #17628)- resolv-nameserver-handling.patch: Replace with simpler version with more compatibility- memcpy-chk-non-SSE2.patch: Fix __memcpy_chk on non-SSE2 CPUs (bsc#920084)- resolv-nameserver-handling.patch: Rewrite handling of nameserver configuration in resolver- htm-tabort.patch: Fix TABORT encoding for little endian- Update to glibc 2.21 release. * A new semaphore algorithm has been implemented in generic C code for all machines * Added support for TSX lock elision of pthread mutexes on powerpc32, powerpc64 and powerpc64le * Optimized strcpy, stpcpy, strchrnul and strrchr implementations for AArch64 * i386 memcpy functions optimized with SSE2 unaligned load/store * New locales: tu_IN, bh_IN, raj_IN, ce_RU * The obsolete sigvec function has been removed * CVE-2015-1472 CVE-2015-1473 CVE-2012-3406 CVE-2014-9402 CVE-2014-7817 bsc#864081 bsc#906371 bsc#909053 bsc#910599 bsc#916222 - Patches from upstream removed * ifunc-x86-slow-sse4.patch * pthread-mutex-trylock-elision.patch - o-tmpfile.patch: Fix value of O_TMPFILE for architectures with non-default O_DIRECTORY (BZ #17912)- Update to crypt_blowfish 1.3. * Add support for the $2b$ prefix. - ifunc-x86-slow-sse4.patch: Fix misdetected Slow_SSE4_2 cpu feature bit (BZ #17501)/bin/sh/bin/sh/bin/sh/bin/shunscdibs-arm-6 1620315589 2.31-7.302.31-7.302.31-7.30 0.48nscd.confnscdnscd.pidsocketnscd.servicetmpfiles.dnscd.confnscdrcnscdnscdgrouphostsnetgrouppasswdservices/etc//run//run/nscd//usr/lib/systemd/system//usr/lib//usr/lib/tmpfiles.d//usr/sbin//var/lib//var/lib/nscd/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:SLE-15-SP3:GA/standard/e678176f9574a47ff2e591d9d3c9fa6a-glibccpioxz5aarch64-suse-linux ASCII textdirectorycannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-7.30.aarch64/run/nscd/nscd.pid' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-7.30.aarch64/run/nscd/socket' (No such file or directory)ELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, interpreter /lib/ld-linux-aarch64.so.1, BuildID[sha1]=766d751e7cd8245add8aac54ec3054429d377642, for GNU/Linux 3.7.0, strippedcannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-7.30.aarch64/var/lib/nscd/group' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-7.30.aarch64/var/lib/nscd/hosts' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-7.30.aarch64/var/lib/nscd/netgroup' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-7.30.aarch64/var/lib/nscd/passwd' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-7.30.aarch64/var/lib/nscd/services' (No such file or directory) RR R R RRR R RQ $tVutf-887f6a39ba30fa93428d8385491d17cb5273ea48d6bda47be1e2718c5c2c683ce?p7zXZ !t/!] crv(vX0a\|;/jF`x%P,f/a%^pwuG"p؎rB;[[6nt*Jv?U2KC tʝh I\ ~Zt¨0  EBa$=fAZaPTC OL$)_.O E? r:^_ f^ö/אY?XƬXʆ3?vL+m7؆ET.CCFJ?h>Ec1ژh'j VLх:jyT#Wɽ;Z98m;~4ҧ}'gOc#>+0^;;i@K82v͉'cߎzI4jH{Ts*0#'/;Yzk}4V46}{>-8infW_}%s|t>Q,>u#f&UhU1 0X_?XdFHi5bi57ЂgtqG3 *=ku@aa98"i]5FX}ނ|44PI4&~Gr%IOwO3.n *GK9(/YiEP0OE߂\`"Ľ^ʁ1KO D3^k6xC 1fVhVluAZe~E傻rBx׏`3YDǞWomgd"`Z%&OEb'%⦏캱+xJ-[̎^OL[I~ni:ʗ@W/ ,ʋ70|LNzK7DB#ۄ׳(8w<R'v2A!Q0v~y rcXwA@[خ,e$-͊f=&/Qy[5 "/t8K-MX }rK= ؎<^)3tF%Tףw{Ӈl@VuM^6X9OJ+C4=و'aK즽;ӭֲaqE5v[o΍^{7orUܢ4FM ]<Ha)JM||AB(0o{"9R-MJm!+O%g~\=29 +$P bW%;hmtg ?K$ygۋ湴p<7=яCfqRh1A:OVH84>D#ߊ'.V a_nD&qDu -N" Q9чrl2F,J_avVݐK˝H;0#gQ!96eZ+5IJ"V,ޅ#"U>ZT>gms=?aV3\ZB|==~:__ܲrC0ax^l' XaT|`gY=@Igz7ibewQSi z<۷mJ2k=NnWZ࿑ ̤(󋐺ߨe{l7YC6ҼɒK;Oݸ0TB4RC]^^vCZY-39L?@ bqet!IMәB)[Aۡ&K+{?RUIň7p &W/ 3t>q$}ZN2JsPD yΌ%WM;yOVI6BCiݰtIzZ(L6 7ʒ >k=m9*5ú^SPɏa8H}6cn!ξuN/GSF&"7;;%N_ 5h'lW`QNZ&PZ.eN &3x)*Pޤ^2BW3ݦ^)[0;8 Sv Šqjme)yhē{vR]W*y%rZIcg=S# X@:`߈] S㋍U`7XS1X;+pjcz6'o*]6-X{Zy_{U;z2^ѱYKoQOTؕ}u~ (%&Dc OO82c+1l΁Q. } %aC us<؀+/@|v]oo}]~+2]=wovBS)7Z>l9OV&öCam2gh]NMu4܃kj^=F.,#dh8dd9TV)j!4{g] ܄ܳ}0hE<";#U ܭO/!4DZ+O7*uH`/ZĪ/EzDvG){}kWf,ڰj TҝxIHnaޞ:b"P1ܻ8H×FYwZ}h=w^AR\e&^6XsUXZ/|1 5}G:!OQJhʍɳ8 o{n@xO]LI;_CyZN" <2[h$Z]d>iM^w*,Jh\s0CT_ujL $8 굟Ou"0\J`.Nٮ:T'ikb)#vϫa*HGIo=#t;v\{% -^ڄgs,;;MX[#Dpw2Yz*>)'ŚlmYfKL^Cli ;kJ}Z]dR3ޕ̑&ANhDd]ATr(ДQDO@<:vcXP-͞6̓r2!IOs'wO5``+2 ӈs=ao7'[Sv5hӲ!  0oeV7[CjHBJ l]LZ#"b'sAd\E<)UetվDCքrn`^GyT>8S/,W4F`,FnÕζ)EπCnf1XjAzߑ~xLE~kX'xTM?NKsY%[T9fZb}/$'{=_Gf4c gLz!JL7F QJbF h2A$ ޟ DV-ȓ;+i+Ј3!|XUw Ov^]xoM8TZ_ nOR]/-nJ%P`{/N&T!/5 Mos=n/G!$=F\\Hf:+~+3B+R]ZUZM@ )մ'`!> W0fPŝ=o*ElFC~BJ!3DGdy+̦_eI[`a]g!|hlmQQ] ,PIa[BMl6ؤYFcv8w6i$ᲣBJE̴KNN`pꊂXZ(+Y="F68 H91``QaIWSslbk%D#*vkֵTsiQZsEN 3]?\釩Ϙ(FrAV'{bݷJ,m>0D}"8$ȒP] #"LqBh'&-34|_QY-EIQ qBz(by؉KO3ǔ?Sw e3W_RtHGr;(WJauh,w{N`{گJK*ZQ_=2]D+BYFga bF VK|隈G'P+{EȥQ׷[wuKΚ=uϏ9[Jc@|Sbh~& *oX{YXXO5p6 cf;2~hr!SdצDaL΂`z[AJe[q`D46f@H)/WICoo9o nfmRZF6iWcXS,e=n`, *Rӻ]?Yu$D3TsAMfIj']8yc,`+DQ+ ;bc NL@7Ev2>pѹr=\O:X$_q|BnԕT!$tp>ܤ5;Rn#uꦺӜyფ(IeQ̓_:b,꧎(?3MjY<{WѶ9|C*w!^6|r0ɕ\F7WQ7 '!(`GœAXIS qs7?{&9vRiy\,7ݤ1.+C"gv-oB|x9 Up< v$/)ߙ,G?$Ϻ";q+0DnPl]*B.' o1f"iF8 qP !ݦү9AѷE#{s<Ք}d_2uZ"4n4'8qa%ѥ<~;a&6GCϛěaH0cWxihzsԉυ _lT ّ.$uHɈFPYcoTɧti΅h`%v֯o944c x;J'Kbx-qiaC>9[ m\ӛtUW`M6`H|өл{Qu~`l.Nc+U!4EW,?n|)& z?W7gQP҄=@n9٦(s0"XAXj33 A.C\8#2KZiiF%Nףٸ[3l8P;m@Fk&\ڎ/e# Ji'\Oԗk 1Oj7!ƭ $n3I1__^ݼF80b?TV*P G:r)-L3#xd`#IyPlj /FH*;͐FrM8̨E*| e_~7%ά(~GziW1݋^rX;9Im?l/oV*xrZ(.W2TM?{5B,"ư-1|M֝=Xi.rwy?mb@to:AYNdXY[{T,oQFYy E'mBrs.n !Mه8o6u=1%A(r{\y<&!3>,gw{}W Mhpsh (7^oV.r }Yiraо,e/]XҲeaKC PEV);x KDPףJV#N/0)(e쮛RIJ 4 `3_|Np mgGaud r{tpzEk)U℗$+䐽"D^4HomlODsϊɽY!(gχO / ڿ{ߒ9أ0T-[?_LEBͤR6#q_8BeިƌzܿRIK 2\De$\@qG6WF!kUkn[@"1.l$ ~UfL82!5ϼ|TnMtLiڣ4@R nٜY2ōX ԣ5ct2].,{fPW 1s%U2u`Γ/mє(5\OuoPȁmEXeIAJ<ɽ\j7~eeoJz;(!{pUJqd܀7 &FRQIp& 5}K i;M(.U͓@Lt MȊaʂ)?bֆ@:~9т+R.s誑+kSԡP.gIrX#=5ɳ t%sފIȭG83EQ;BdOIP`3.>޳ڥDBjd]" 6Q6ŌV (WsE{jrO3P>njsypA(ԪOmܞ}y Y)hZ /XeO@c7GL[fV?F+;Saz2Ä0H6ܯdv?D,'[EHʍQPQgүAZI`L-]7' 5|'[7N*?@&ER|>T K%t3b6aU| /:At{zNonQdU7r5ue Y 2im_0O,rjh#'eO{ˊ/9(`̀=mDfHBበA[\zZ8?b&Ggwis UH}^N5iN_=b©" ҽWp5i /=4{D{YsD逮5HF^űҫ7cgh[tbc1Tw`M FdIbyR:g'ɽM]Ļ2,}@=) VӖpYZL}Z pn#<plF8&@WYL~ Ǚ xv^JM &S$r(St =KZޒsV:9bɓgP1ިe8 (?ƕΖBUnݿrrS%mU,:-P+A Dzn6(zٵ՟Iҝ9' >XAP<*l Zߔu*[||(G`~s4BlziuP4% Rۻ}+yN'G"NviЦB\9i9-bHP.T!?4 ;Adj/=b'Edp ?;xnwRٯKhΞj|C iobhҵ69z#L߂L6Pn=;E^$jWc1ܣkhȜZu   ӵ N,InljF&18rx(~N#9ȏP5V-C~d05lk ŽFk\F$!G*]6tZ{euo.UتI^"q1Eע"#*C*,$_YN0ZW~ToUC{W h@>wr[&G5z딹o]BQW ԑ|gce#ө@Io~ kiYik>[_*}:eY; MG~JLf"E!ު܊Aֶ}mhr8>$˛4Zjbffa CO zz53XAeDp"1DR+R0<ŐZ!_OꕋZU~";)>Լ<:Yë\ o^-9 }>#H>1akf蜗)eFəQΈFY$:DjŽ! =b~E.9S媚UFyA)Sk=r2!/ \*z+iqm"-3٪b|,r|v̖5);v%J-]Aa3 0Pq -Й~D;^LNբ+7[]ÉB=՜g!1pUfU^DK/=1X`@pd0zICL*d{H~%3x|@la(lшۨcĶ kZ?r%W|1pi0VJ[|bNIPK)Txy/ڳ-7YzFf*-K_.ۚAC/0Zh%!AE ^6َjK}P;1V"H@]rTӴ{юv{TTGd]Am|.aN@p%P,^ bʭx)nnQ9.z 7;UCh|3W\X 8n.GP#p'C$zqi=/Ua[gwm[՞}ݻ/7XcyA剓=$<,ԑDn(q<+ Gw Kf8x`%)C,ﭨ5!ۑYn\ :S5 } !:o^T /!R[ N1q?o(NSC P}U].6 ?u5a%JLÝ4wV˶6F%6,uhb1֮'.@^cbrօ׉W-Iz@ȀfY~V##|!4i5V(!ҌVP.ް}a"6}[y|6AKT=N53߭D1Uܗ]E$yGщoOj4_0mKxkЁw!|6HC8I:Y>zf>S4Ǟ֦*ʇ?Fckw ? lye)yMʽ:a'JCdk5齤C՛#t ՟ʾU 詄`ٵ+Ý$_H!!\Ej衛$l.S W7C%t@S՛NxfAu=]1iao.[O(b܊r.ˏcSXzBljx_8N1 N-goĆ[~mx@~f$V/l] 6t ڎ8aZ7`Gϸ3P|AglIΑ!q~@ >X7(?3sNӃa%gq%,-?R 稈7@ ΜW[ _`@NYJ%j/Slp]2Y\U\ hj&Hzնg@xs|(⹄Q@(cNh#,d( %>|h?uY95S)O0PC*/G I3 |! ߻䧃êπMQ&"\f[]¶"v9%`D\3Y oV@ ҆WhϛlyKlRy;TQ;;rm[JH- J1g2`Dt*cc9gr@5Vq 4\G>/}0$*_^)v L@P{\sytM?Yln}G?P*A<`8Hٙ9xxף@$9^Z65azkAPCSJ+ N|sI1"60oK>s^ˤ_2Zn" 9ZFȪ4C[D3q tZ~(u5|%]?ހp, @b'n|$F(r*Z^pR˿B,DFx΂<#l6QXe=lXrÈM y#'GnxF5I;v+xfW}K:X#mH=[PbHՍL4>ׅ69~Ęahppb2KPnX{t8:U/%i]޾؇>̊էqvڴ;NUm%D{5K0P|n%"\wޗL$c?6=.>GWظկ ٱ%zz2݋:܍UM07{A4ruE#2 ٭*?mC<&v3N0ftN 9Dˌ2C@y DyD3:3懽7R:T@v[e⊏06&FIYF!В̘S$hR3j #灝V-D?E6G[\,KqZs4Q @?Trf˰dž)=qϋ+=Zv* ҆i䘖PP)ʤT<|.0v9.c8ñM~ S(x8`qf 3I|#,%0(V4ͭJ ȯYMeV*+ kv'Cx{/-nRb3F4,%.Gu-aw|C5 sϣ5K7>F$[_+'@#8`_\ߡ=lSڊMK2;*V]K&I;/z+ 94QHx/q sO#ZWz%5?2X˼-9M=-VcY5Ii#W֖D6T(;|ozYJeU)Cmr'I9I8i}Mmw c C@}f/x}}`OL@_4'jTvrW5 &5C  G1 yOJO5P#Y>2Jl&&D@0/k m`O34X AGfo͌W)"LMPD?/KNFQS0+{_sg^B^hhh-^iԒ`[ P I㷯 L-ɛ p4:+WIAF!p%KIv HIԣ5`lmDq .A ŏi_ߣh >Y4B#S զ7l27R7OGx,pH)@6[azJTYv6XؔP 0I=SsRgR>`@z'(eT4ۖW{g>k랠{#@EZ~Pϊ$#B$!f7 V'qM׉[9fCieixy(-z4SuSI rѝ1K&<:+g/tBv90 9K MbW&[U^!g">f^FMcq_ڵ}&D#+ h zy g)[\lզ 9l:)DGӘaR/6q X3J $Ƴ#'48hL6v!)p67cGQ>(L'k 9.d[]NDcU&Ie͏y8s0zY”CG ,JQcx3)u-!l7<3uB:&Vo|J#_HC} QqtS)tr de'`{ _0PFwF{Eit!Gڙ6jDc)^‚f=c!dlt&luuBe*\t_^R;x`t4)+1XK,P%XH8tI`x5Ă;Vo+nE[Eْ?ct3F(&ՙ3#9W1t_ V^ 28ȤEijb->StPvw>Du]ZV̬؉uްxmq5D?\U8 /"OAack){ok4-UE@!7kKYA&RG!DdM_c*1,o ` [22?VV3u2ed%pp[ jdbJbl@VFos'Q;O"?^B|zSGv`\Ӊf\Qͯ6b/̲pu g2[Όbš`gt|&T  sO~c`Y%J Hҕ xC3) "`Y  Mv7Ib :sA]^mӊ=j=TE^tU7) D9%c||IlOd:b){*pw7Ϥ3~QB/w_\Ǚ.ht4M o3$48{Mߜ>0K)``Ůn],VAt'+H %V.Wݓ(!yˮav:c9٤shXXrPrP{ 32zG%.%ZDA``,p}/̇41%̩fZ I1[ A<-Y e?Fo/N{J Ζk"b# ؤX4u$.\EBR<yɄ~~RioٍV?B8b CP*21&FI#x罺cV=/ *eyhʲ/KjCo̜P!!zlaeFq MXY j\]ZץDJApn0+?/hXr} :pl qH40qв0ݣ`" k:ئ9@LOw!i \ ߶En]zCy \@gGS̞38LOفmA)}kے1@T OclӤ"zS{sĦgۢ|BFqs A!l'P>{5> /9B$]eݡN.p-\ní1Wo[3)Ԩ]V*<]Kަ \t|B/!S 1S5j΅4s+)+thXEe͏PA\5 EZT: e;D7% ̫v=I?ț$ {J?Ga΍[ iBMA&M#ﭜ{ O9ۓ)v~kFe%-TB$ƴ=j?~1n]k?b)b$s}op3HRJy%o*x?+|ǻgKm:v>ιFeYh/Cs|6á/xrp3 iwX&.t[ y7#Ɗ1Uif_$.` #w@9%kaY?B=b_5Wt"̼' -Ԟ3o)ԥ\D8D Xr+CL€FKhe6c9ej9aL l%x Τ,r.Y)uosNC姞:tyR`T UWS4,Cϐp Ƃ&rR6U-e6[] x(ܬCJD f3 eA~ ou<fe=d^m`tS:\C:5I;YϩwPȲv^M[Tf-?*Q#0 C?Zctm:RU>O@?wI8`P)[+%ReM7~BVW5Be|.{~Mw{n&Crs:Y% ָXćustx8n!DU*O61}wJ\zъ`ȕEB9 F%#^y}o ǩ+աv.~Asyp .?76Ӿb$MRt ўBEDQDIJ&L1D3:/kH6b*m{0unkghn)heiI *Yl7q̢^~E@G@F4)IuC!fV]yeiWHA'Am;G/U}c|~=:Kv #&yJw R XB}"IRr#Áw[D.y61*>ݹpf?Ԍ]&'$قydxLbQUwƻJ,ĵG$#> s䢏a?VRSv#? $?"꣊:%\lgcxܼhKىsl⪅UZq(4qKJrO;6L.)`Q5Xyz5rk@4e]m]N`ԁC~(q"ލ*D5/U{+⟈$r25='?xbaXY㘏iQ@PB%ǐPcgv͖U>A J`Tm-4m5F mO$l; I:Kǒeyk30ST"tI#Hbp_&fĐjfVeyC饵>OJuT)Ig9 WP٧6FMBmcRK>eA(LjCϾ6!=x JNdMRX*_D}+"OoQ*dLD>CLZar6&qi-{n`y/&g-ST|F> "L6eBzsToƾ$jfvرkJA7m@~vX(&KA$W[Z؇yrUn1"v7H t;z׷+h^w+5S@~ DfxjM+>s^$M Sy>\i#!K%;o@zv<ac2'{?k^ <<ѵϖʈ-$(@c^\!~Tm}W' xEX Hf쀉8psccg66gmЛ줕؀-x@ȚI/")d':/p|vw Y9 7&鸥3ґ<JW&^&Ir^NQX+j3 XZ$ joGޮ/%Kع#c&0}0-\2$jZ9*U+}])zu`PŜ"f}۝mږkpY@/'UD*G^V)<**\ EvQxAڪ, |Vuԓ _Rv*Yq ^9B%(3&MҮ5+:'m)4}0 _9xx۾)H=u6Tm'CˁΗw~*OՆCgmz1XH:QB`Ɓgs m<>:|=#n.|_&Mj牁턑7bRH,"u[7`XzLJO_OlnQTOF;A6'rINfe\Tc*2uo}K1Zn5QchJ\]k=XYbQ&0i$5SztsHK8P4"LmH lдBrǻ229\;I=WƖ|i BZij}ֈVJT4+ſT:} $?;]ՃӗTvShP!Hz;-b0DQyw *Qo RM(hхg_͸ gm8\^T9Ckflȝ#aCubώaFi4RC{?)xiAMf vr rٳUgT{4uݖa=$Iӝow'6^]DTӺ&%L0./xml]ido8\ʌ10)g Ic^>j3z{ܶi{v@T |NbIb~&= Gm18.K>ЈՐzC`X3B~ͭR{vAl5>CH ѽ@*8+ϫ{涗-"x9x= ^dTp.it]2JAqKﭐЍkiDGPh][\*?`ӓQ 0xTZ9|2oQ:e? k*΍]yJueXDKBV!Y%4MOStjw.=P cLt$Os .utSA紿U4i2Dm`4 ׈Iq>@\֥|zzW9ⷻ m&.(zp[BQӖ3!a3#D%`z53z5N-ql'>:Zdt (ܦߤګU[{3q{-9_Xc= M*٘콤}ɡ#p$.-f i qJv5s} £6fȏ R% frp8ol 꼕xqJR[o塎e^Dh֊l~}^P_K &QHZ s.}N7&ooG.4j,._fbI-®򞑂d$%2̮c)OЦ+H?Xn0O| v1Vqwz@ʭw,_p Zps :G\HxHktMv$vz |a2:u3Jl`>v+%DkzJ X|4N)|8OSFI|a+v(RfR[; kY[(//,yvc^x;A8 RAbZ)YS)#g Rض.ZǏت9 (ѬuFc-!"Zn[z\ÅhJ  |u 4l$ףt"bh1Q Y2+zS"FXzӧ!)@4n73_Gc8wK8G鐳pǪC$߄[ߥ+{wI56@XwH:C_~Z6v\bgkBWGR|bu{s7]"+W4S[AR5:HM7⢗/Iak2b:xVAB4 #U^j {LEpɀ3_M ߀-<5D`?rT-pf#%]4U]; J$K-h([٢Nqtyʰ bY@ )" cDO ZX3nI15ۛ@4(_.$ }i-0'cHzRw3,9qDgEӏ2^O@кfF;(h (/~7G/xv<2"̆[^0f/y>!݈B+M>#~~yu3͹&FXJl4S*b%!=;yZy/A@i]4[&{ =I,-AX&3L["O6aYJSn VʤNBp5}92f;})^DDvn$1V y|iDtӶt[`Mfi .@=3Dؿ3^⠂?;P%ոy#_cLs܏:zf$L4'F .A((U&Jlޤޙ,:%^G;(}$6 뾘t~aFY #2YBq0!S 7w]>&,)<{ 8&(>*˅DU@8C-Ֆg}L^;lo>_S p$SE}[׫+t|cj1j N ";'JHD-*+R~F.ryL2AB %b^bRu]dvu9G Bv2T_{O@@ql U4 5|KAs%yL^݅ү1?vF4)Uӌ9Ѭ/"e>e|Tkɮ{Q:#1U4c2z0E7?ʓ-MJi4n&K)K gNka}#>mVw+]hJ 'YѶ6WyYXeWjZ\Ԉ3An4#%3--(4'_ УD]JѲj=D LCWOi=WUjbTdOFo/Jh^))YW9 >&L* U]ݶZ-<Bv,8VI"9CISK{jnI™%a;Fc>po-]Q㵶28hCoWe0.u9 Jq#]hѻa!h/;UA%xif)ّ_$ReX&=٫@p' SyesѝW&3bw^_YYLVh2~]mM뻐UJ;#P~cK&K1蹇g@%0˜K[ $o59=V%ϟvHD6r[eNxvZka&z\E=@JH (~[ͱSxIM/le㠡b͑}YB0 sG*^ze uv4"~sU1_ ç˷gLZ;Z%6󃚖Rf5:бz2NN8xHkRlSh<27* 8kǺK_!{%9ՔՇ c/~0Ckc= X߫2V= 5:|wS?M{3<TjۗD[P1UW>іNylR1fMVi&'0i )NUcz@ $ҡCtwyvKTnYwļlXja;o&M(k!f~:X"qZbKn"4XVe+, EUG4is/VP)Q}V.K?ٮWA.m:Rv N j =<붅Q$P'p\L;i4bCϔ]q~t o?52r[DT.2%nܕ3 '.B?݌5_u!!fT[df6Iu~HOE7Կ8Bx6G3?L'9z W v`OUi5zZJ6u- itU< ##DsLVs(Se_it'~锚?8ɹ4$m1{8L&5_:ȴc޺t_TbA& ^Y%qz7٭Va¬L'!c'1<VsWoB=sN& ,bCFE_ci>.*-n,ZX@֗+eJŖV!CSRpELJhl#<$20] hͯ7IF G"FEc%"#M ε!zв =m?F0~_ozP"o%`>ٯDV|/PalYbZjB;iV܍IaBNslXgδ=KW7sE_!绉DDEfoǝ1k5sC[>B JxGi4YI AٯX?,Sv98&!49) $n~~Er jVcPmFHR45x2k=~ʓaaΡn=8L&\*#ڶ(ϜuDK+1ALO0B2jNE4no(Fo7:IUc\9mM2=\2AT-kpBv0?4 WRVL{^ָ&BDnFruz17Z΍#$O"_yx܊"3[ {))%Թ Z̀$rYpJ%JDj:x͘nADffDcos;;Z 29],SFc1`-XaC6'F?R tf՞ws8)Qiv5 STr#WpqA+W\A40e"(ި6Ӛ= Zқrr㌽"cEZ9*I0BL'E UAeMA;tmxA#^w^DIJDwD=jcXmQUй,s[# `)Q)$:*3.ūy#[?7TAL:% 码Lrm\ey3xta:F*{4x )k2`\,كY"Iڬ@slcQ7Aˡ#'}pg `<^W0ۿ #< H}R*T祻?@f?0/E,(:?w"X9!ߙn#x}HآӨLs83#BUzS.c-]`"k]BN =OOcQN<ͦ3̠d Խ lU212EІ A?4 ѡ q$F񑛔ak`;sДoo $jT34`CP6q0=Yޟ..Qu`<`c;e׈UIB~/[Fqk)YfdvVԷ# (84[<|+B>,2wwc ~CpӺu<-=ϹLz4A@!1_T+f2"Yb$鋍mWWV6m9],c/!ff6kFH32da.6c( >zQBhBş;?v_&/v!? N<MJXAzB)E ӶM$@8#`GASFWpW5Fi;?4*Q?1Yqf?`g G"~PeKkCP3_n}Y$u<ԽD$ ? ,";TqܷE$ֹSf1]`lt>j W@YiEDeN"2^L;7LY*apGG'$պr ?d-(6Q61&:)&SHO]?ɴxzpFFJH3Nc fȈW|s?߬ydd d h0FVJ!FSg5iͼyvIAi6!b@w'4+JJuK\qu%֔坱F8 Bqk"lmdZxfNNi  ZX: 2q5C|x?A;G(sQfN)w^ɕh( 8! sq=K\><qhbkp{>:縸p3][Όw-]٬/}}0 zYфy嶠hcXɎcrlC nGL89Y_}51q[Q$1#b ooh :M>*d1"u Ej!+u<3x \ybDPj*'KUB Vb2qC"-?*H$/ז݃Ri|d00dl꽴KPȡI8"J+ҠdXn '7(RdqNW!J Nx  zKfvIveuCRE kW@TX!V>9N"@x9oDu`;UY6fv$HaJUVctYӧqc:Xasaq`6iY>C'C*juQtf&f5UJ֙u%ˢ̈́!N$\=]ҋlS1x9x|q6bv{ 2h39~1~zo= qQ10qW49/W|P $ծx_:㌨Bs\A:taGhl]F}%RCt&$F8 LOVɪY;jl.W AڹrB$5#rݰbO t0pD@fO)T95;ۍz oPeT SXS;.)Iy8I$4vLr E}%pN1AR<$j_^ 76Ϻ! iN*CRӽuA 6qYW)yWO#+u⾞PLﳣI 70y_E$&4FE]}GX3ޙv>=JW֜1|Px~;O#\E8GNe5-* Ml=zϰbh%'7oakF.]қz'ψ0ZVPPW 4ʻN3 `NGH >2f1IbT_`(Qy\3VJ\A9RGѸZ Ƀ<5XZ<7\QFpzðHYMߤl;6Web^2^EJXk{`N V5h;pDi]({9ձ) )(k?3bS:P3]KtAúgR7eCbqtkxR|z]%4zê6a{H]͗G;>ӱީ׫6G (B,$t$]&XF#?r*"$=jSe0#lÌA!O=]F3O|wfbCh² A14B@Ky|z됂.y/zȆ>Zع XIa" {v%U؎~,DI6rSE X48 C$6#*i5/C21Q `AXQ{@FzNfYHYJJX&8l|q"qcA.YǗ#L)(r~Th~"đ҇z7!=톦.P^><ZxJa'gTQ!b19a1z]qtJE(^gwkkT3zr۠9sp,a  /{v)_~r3ҍRFPKOڏvitp !ߍS,bT++[8d抓q4Z,F9[qH||e `Ss6k$ m׋nX}-XdiC6 -zM2w<;KF#CWc#CY}k|Ō둰Sgøjt ,e"Gsn ޴-tSX.-|{4}P~ dGmp7V@kb,Yۜ`"{'/0mIBrMS Egrj{h9:1h"}9nV6Zӓ겐vxJ HEJvQ swˈ9veqnZ} wfN+Kh]?oN2Ù Na!46|:A#aDb,Rz0w/pS1&7ر\E>%'Ǫ9؇dB|Hq"%F|4TNc %f*pRS6rL@_m-Sʇ܄ٸ %6׹Y+Z[]j3J+~TFU0/iEc٩܈ϠH}knG>CWpǦpн.?_dVp-Brrj4Lu7P]9 \72@ڍSZgNd/jܯe3  IL5\Srϼ7Y8`t1(WU4uW_VO^f-1[J2Qy5T}E#Ab. fȄ=84Ź6=5D(i .L xWUt tZQrnqX#(sM-ƛNax"=4-N |{|<^܃ CshܖH〾1%A5x4e;r0&nAw̞ETD ]G*e6k^[- Qn >NeYk1R.4{ db` ^Q?72q v:0{5Qsa75ֽeo@gr}2T.Dw+59 Ҽ:pB.sEp/ApMF&)~(෫D@U.yd񀓸NqXZSt5Lir;>qD'5F*reJ%D$]cB+IFDZX7(On2u:e2 뗭:~ 郒(bKvɛ cv }=?6) xdpS0e8%݂(Byg,U aDn`~ry"?9,~+ҾFx#N5<6mH6h~d{,Mc.hΰȌ[ r^l+asͼ}ۦw:^:CYgWm i$uPGRe˷vĕX.ÈHţq&2 :(U4zP&`fNS0j*JØ%u ߒ0UЍѬ1WwnσIdo%kYF2HO<#_m*23]d`)? 6&AwI,2kZg8ʴxh f7ԏnysNIN5,fla vҖJΞZRU0*o(r7mppDkWa+FчZQ5KF+¼{@\Vd4쇶{`8ʗݜ[.=pmE/e 5vStˆɥN\X?X _0tve&:d% Xa-~]Sq@Te^Nw_w;x癿ޤ!cb(Ju?cDǿz H-vgY;Red ut jBڇ zp.~s,83I8^/AIКX0EcR??6(,#kQ7x9i$屃ST/ZG+hofR ͉!]PBQ6(m2qT0w',^2cvVq=.q;psD|MDo|\2D@}t ^>X .wE'Wz:0P=r%l^IM\RMq/k@06a -f8B4"T3G_܏ؔ˚2IաF*BKְۥ ?SԍD@ԎJRF$0kj3*H8OoO/DMM`H %60wH /'f-c`R'b!cxdU%kMN׫ X.7t[x_6y[ fz}ݴdo&%_,Yz>WNN|wVZA'ǿ򁒓sͿ,j#}"Rxp09cvI$Y؄R}.Bl^ee.@l3<"G,ӃVfUk8ԉ>e'[FWBAf\ۅK2=uC|(|BbqpD}n̈ v秅nrDj͵4`~ٿJhJN:wN)F enzkvLJΨɂ{Is?# tIJAGR{ rh)Θa#V=##+Oxp)-Q%h'ے`C_p_ηн'G7_`N\7"vj) rd w` fmM2ȎP%")v^zE;s% +paX 0x"KT+Pq#M2g70?#5y d`Idr+'6w SPFq(Q~+Vw%s;};%CEZ,cldcj./ \h5k e,e4-Xx9FtA>|yy#>W۹Ig1gţ|!r L_yGd |FPTR6Mn];"14WM95? E@`%/)6fJ7h.;T߀59}]Zq<ț73ό`\0ȜZVIzt7W%[KetoƦœ}~_2,k9~UXÕ3bQ ,ZZƉ>-1n_,C,?DQUS( ’dχ2K.I,Dz*?MسV%%hf 8yidt-Qv@ [ eqMvO dWLjh/ kHr7\dv>OF tH9keGY.RotOa=-\BG2j0߻{ "N.9yTZLPz?epJ99첻ZKp@̍TR7@~JTmFRxHe]u/p 1jq6,H~ $FDiJP㟊oxUhhΆl3"shJ?Y 617z$4ȴWʳ=; [!RgVal/;s8YIoU)yH? crv a~&,Q:G ZV&J{Ĩ㌈9"+ByYp6!c$uji!SĊX >ތwKH?Da,]i4M9¹iOM0p^ {h8IWF+-]1:yjf^ 7J>9+׷1 xHU^VOǙ տC2uG"Mnμj ~:\ȟn,Sb`u^c=jf1/sW|g/ڲ{qjY2MjPQפ i'W`@1PMg4ð~b/ Jhj2s'.=(q><8>6 pY$CI#O+Y['!=¦VV}tU.q|(c$Hx F;iZJwҜƕbz:OL)|;%c fܪKZtXX{ j>B6^ԣ]:z_#{Ezo %9tH)L?_<ݝFK+cdA#:SdP)N*%(fܾ@Wi[6nύ ХpliI*V^fy83J=u;wkJ &X| t^GWs Ò !=eLSXa5Wn I>*.@DMe9$!2rs MU||x2`^r]sf-:7 2nhH2L.u0U .:6>Ynd3.A}C$=3Aۮ}zEvQ JÆLs%yjWb7BhFlZAƜ6f,w~(Bz&NOj'/ J։iYɎs1G0Sy񗟲_gc'c+5(;;!Vg t?dP@x mmfdqIĶ3yWJd'~vsuO f.-' m!*$rDb|igoL(,3F"Zh<,)8̾C7߮_<2POJA'7aNpdHڋLzM^9-PΎ!*[  W$;g^ЋSj‘/3%$iJ%klǾF"R7-r$ղg3_S@7GSis%aSiGG11 j)@՚o˂JA^B%)Hx} :"݈Koz2ƉSRQXQb1WRCؾK_{.\Z63A6[|Y~-j!=oE\h57D5!;1Xb<(W=9-G'b_J[%!(yIfRJhRQl?|&|{!B[s OѸ|$@? Z@KVHɵ)$7\e4^R=+턆/_{7wFgMȬ5M| ΣE;HX;=t_j6(^RفAWmQvަ/7tqlrׂƏIB\.܁fǒsJPZͼiŰ {> ⸜\Acߒڠ6zg˞d!Q 1~I>u z^ZxɒtC`9|[lKh5 6V l?k&*( f|%s:ޅ׃nvx< bG w(QJC##+mJ uAXؽj#σS$Mމ[N?{G\Yp&qSl"RB#w!s8`Lq&In\kr\}Ћk˔ ~+9H렔B,\Vg@dSHB=eaD%r,qOBVm74Eյɸ' gJzcKo:V2#W92L)sW !dSkܘ"̀$ PL @{87l:N1lzr RS#rEXه"#۶-l,+E#g8ɬG@͑F}d?Uo: Gã}gx[()mSV,Mݐ(3m*Kz5BjZ\[߳Ƥif/n~?ְmK&Xf4"¹60-H/ܕu!"u5  (ĩ:"WBWt8aS-3yLqJ\@ A?!XWn̒so|?M*L)*q jAHL2VQi4an_#3Áh>vq{&{Y" |$<=7ӆ|A|>o)P+otuv/K%r#S z27Ѓ6 g>F"PP`4\[IbƪӁܰQskٚ@c@oAiZXP6t ec/so3Ӭ]6ϟ`wLˎ[9"oVO~MVT*?TffeLzhB@+C9K1 Ӊd'*Ȩ_8i/-`^Q6B1a ?;龯j P@(3 r3Č6<7mA#ζYc8 '1bbrgL!g*-Pꒆ!˭;[ 5@B^8 1`:D04&~>zk"<U(Zf:*o>ң 7=7}O(j4ό vcXwߪ66tieUH2ј!>Ffn ednCTmJuZFyI{ 觤f J?̆%x+QD3=/ưmmG-wIJHSo6Fu"w$,aȆd}WCN-IԹ dք"}T>]Svʺ.F4B ̚0Z|I!H^tDy5I܎sc1ֿvom%/9^d1(: M.3tNZ'S2EriT41E4O/1ehr V4/17P^K8?D;9 (`"EgWHXD3dz#JD!PenLP|tWVCk@C,c]^ίDYoZ.ҩS9dz>"F "[%2N՘̼D6;帑8裝Nj1A¸e6WH-&ӟ mls$kGeʤ^lu8:lݎ$3#z4,d?#U{V å0`bJӄ*{ӚIz[;g%z&u;|ͨi#2=U?)Jr͔4ᾀOjsɝ`2PO5 ^VIxeFx=Khn'&;nOs,ec mn͸ki2 %^v nBfQ9cfS>F.^ZD@Ԧ)<3wsɽ5 JߥwFd%_1PkeLeKSxhu/Smr L>SܗfME99XbUo!r5߀*CLJ]K RSEkVEot@_΍c(B 4nsh%(] 3l=VQ(ˁtƹI v˪.bMX4+N(Fj4|b^Hn4 2i1PHiUe-Ghk3*aU cV3k7”W4fyzU#Ѳ93,Wb7i-UU\d(ĴavI : ͅ;JRhٙ5+AK7w@UGn<-VTd]ONKx#mZ%v$kEoc]Ri"8Ĭ{#2hXŻT&zlR"OShAKi6' ͒㎣ 8A%z~Is{݂P˜* ĒH=-z9ҟlte3&FТ[Wc J\W5ރ_gyͻm]PV3 qR=`J4" _iVt_*dvńǮx}WMb,=j'!hI:">w9g rHxL"8ѦT/d/`XQ<<ʹh06Q3q~_~w+#Pyy}dL{}OdŔߓ3 /qW47i :!SY_S߇(p"gaE(Ь1M?\wG0}32<vqkb N nFFF "˄ĥnjl!sǶ im$Q\(+ eWJvH?ǎy )`7Ku(8 +ez`Q͋+_b6FAp^Sk;~!6aB1Pa3K9WԐ "2cW0"@8kfG 7eL<ZHv2;vBBf >!aQ̶bQ&PQ(\40 7YX$ 5K"0lJu}/@6vcV5`\)[X4IH,Xni?`A}w[yͭzdM}:-xŎ8Hԗ'R!WIrNeSRYDq/w&2b+O Zmz-ei*{hͶANBLo/h<$Ry`rfiʚH]">wI$\X GC'q'6jg* ᝡrE*US31GUӧl.jk|)Mf~mM%L.ȯ:-cMElzx&GyhIBE +W-sAeUD2q\M64#cę V4[gm?Dkf}XYw鑾/_M6#5~\ QfSYB-Dz7fz(bDg[Uw*^ބ^B3 }WNY3 Vt˶(mmD/GX)VL6.KS-*ڀѽI08(),h.bwCZ#JiUQʝ>!*ĝł\ WI#%5eqEiDحzǑS%\ϿMvEy`D󙱮Cx\cw $-Ԉx&<[K,6,[ !#}cwU[65=U54|i÷~ZE!D$,  ׭&(u`HcrRӒGXS,)X-1V)`JHpwoHFwĸp=})Nkq=\1+ա)}Pnv1rPYD,,~qmQ;A{ { >U5;\Uh2W^=i!/Rv=kw_Y2l$lcA?-)HZ<#9Cẹ-# ͤn爉$z{,51@5GvHtFdp2ֺMkDQBhfh„rqfDr:Td`NgAAPHfhϑ{}@Uߠ4`q~gNxjE9 hó)@[]5#3$U kVGY?5 );-;cSUan{o(?+sVhqJjp4XC:8`?ym |[goCi-!^_%`NEd;:Aꯥ/`ʈ41]փ0ѷWO' <9];w4oqOV]["mCW4Mtׅ;JdV#|m( Δace-:?2xn}4IZ_:*WWB9 YM z\\G+- -P_v}N 6@+ʨƙt KO h+yMsp:'q|ls3:*eSj bH8$ 6~|/KJs Mz=ܝaذ곪Ͷq2}t"|N\ci~ <'qLLbrV{MʖցڡAZJ].]M2LIg(.PL[pNǐ̉y|7'rbC_-t@֌I'SA ;tsHg7_q@cpH;a=^VZi(Hү/ rG3iǕ $fF|m;WZLQTi]ݒ'f&OSĖhe3LQB =U췔 #+Ϙ[.kyOuVZƏF;vmMޙ`ŪcBX<}^{_QY+b8[[Wy[ǎS)|_Hϛ350Efu$Ih3\O-Z{ܸj@2Թ4ϟF]W(JZXA&ac+օvX(o7;")b]ǮbQEʘP5 B,Ӹ/mKWVGWk& k:=l>!Gwڵoښ[_9ܸZg7:(9RӛղǝlK=^="#W #pZhl\8ܑl:/SC/dԎ͵3Hy2ǻO=f*[3jP$փBupNyc SD&}56>9䒧1fZ=!"rf2'UZԄ(xA;j'mwujmyHEDRc ESP-4aQrDPL&d>@ TQgDX8H;7-3#$}kcU_+mLJ>X!ɿWT|mr5HE)z I6Xb@Bm9D0J].2`1A+Oc?0>Fwn-Gbq^.8F zAee:쓗r"b#pZD3VJzsw22ZwzS$KSKv8-j^&k{]]h}_N4gl Sߧ;%FV`ĺ-]_￧,M$h aH$Jb¸j[';s _>3Ԍ$GfՠL=8[q dwQƼ-C[#Gos-x x9%<=vYZ{9=^iovN+:!M=FNuY;{@񽫤L9ZƶuaF+6uw^d/؍Ζ֮ÿZ]e0M|'[ ɪW mEg%KYC+S3><ǘ]56ljȊV%AtQ4V'.5t֞&ڮE"2(+l!kə8$ѳV gGjf |HtKryoU);ʓoՋ;=DW\,zϤ-b S;qR\^[>IJzKlgD#+7VPkQPevXh VGsA.ƯYk>Phz&#FGַ2螦*fIx䬽>UI❍UOK^+c37gM@geO>+n7921CI$lmI B su>HF$b;'?*.:16܆ꠓ^%3- -x)I)_*+1Iy8y"ǒ8NHSˍ %һ='/}3~#;j DqAIܐt+4S#S><7kAײ#mj]TRtSY)cQ2,j5|.j8mT9 DwAǚ:*adLFk`Κioq䄷W ]x.s ٣ӇQd. x3U6Eցൗ̳G96]RM#YZ^%-y?moY n&t/xy%FCe8m~ G׼m9<1(u]zEy*@Omb]W) ,g#OO,\W~w8RX<[01W!Ó(Ap,#ڦz*͑{RqVH J#6\%F26x-עk5Gں 8%f`XFK=!0[L^S!ܣV C)ΟKhXeF鳇 .SQ0wp@7SM✣pCuS"j뤻ۻYq[ S䜺ծUru-Omm)^V6D(@#{4I{չ-$m^֋"ǰ㱏KM,xdd^TN]eΎ5qjל!*DQ L]:hoD^BԚtN'*xKjvfg1 ȑx E w,iUܣ/+׀- 흀P~>XdSrL`Yd(t|:AuS(P r>ZUyܺ`vX{.qsey&Kīe uZ}i( 9n 2V,"hguHoӆ4 }>` VϏ5nClktL׾kݑl T5d'7Z!J3]n?sऔca ~8ĻTΛ+sC,y*uȯQ. J_t7RjzE2j\{PDj2{n@T#`E څp<s4o;i-SVuѳƚ -9YSn! p 05f0:Œs3fZ)Ԥ~cr܇!zK+?H,w*V3$eWh>fJlCnW+Q+#DAd, ) >vf'}-Ej #Ƅ*ȁ9Z>u/ٯw6I@}L(p,aZ&I S5uxd#CQ] g]j:XI;e`=#&d5vY46(RS&G4^jOU9ɍf{"nc?Oɫ`ʇ?}_{*Tt20lshO{tͅJ{> ~ȟD]v Fq勛G)vCzϗVڏ\?pJ% [a:oE?$v B^'~B cLpt(;G5n?H&_Օ ;{% gTLgp_TŻku.f!Z) o#ӒXd-eerr^d.sNg~ο~9S5ryyL'AF'̟Z% \oNbuoTVtwW܍U??Zf&MqtQ%V5aHRPݻ\ŁRCZOiltr=~-_ [-k~A1b)@yYKR"%`'vTRh/ƛ:A>)i3h4*O ez{b4EnVnUwA5]*֨N0_ ,D)t>JgJYpFS`u&1H7z 2jws, rh49? SO=n9Z"-j ;jN5>Kw]cqdA1Hq z9P[aY_&$XRF+%/i#%TQ?PDk[aޝx[Y1OsTɜdv K2۲u`F0zVLD|4kؙA3"%R2q/AFl_iZ׉/w$U֭,x!3j eB@A \gT lҾ˴WeM>u~!y:_>Ò*Hl)ALme-74z5DY-!7,qIj[] U N?$*5k8oŪ0=,In=?93bÁ"~yshAѦ"#"bgjV4fpc`u7c]V۞E~$%eY+#@8.e !۶8Զz骩Į XRs%ύ8nSu9&i 97go:y,ۖ$h;+1y,B$c)-y=-t%G+4;A!̄W{ -wg#g7uC4g$O7giJeJGNAqt} wP6|5i`VLl/+1h(e˨FCC!2B/ױt?׬ \\{BYAuk}vƇ_&2P*u] "YߗChk'0Pl%py ! ~2.8[.q^u5'94<A[{=sݯEr)V?(;m6|_.p-<Pm._0x&Rpl1>ڠM,!;y\!xp.Wz\f"kLC" dob&UwV͛86JTz)se h8\:ޏSRtB>9!shdS 54G+usow҂5exQ.Dd%RM&atFk` ta+L/ W%jSh>%bM)E"O (k/4fZ,8!NKCc+~0']b&ɀ&cCh=;swOpf\O3gu{̢ -LF;:w:R{L/Zy{sp@Q$[ y;`ڤR "5.XdZfn4V;hb>S7m{3NWZ䛙 1LVa g|) +Ǿy) l~GD2,/C=pBqSĥjw-<[Z®o Ǻ|UfqFDߤS[Dc,*ebjgw.GBn W%o\{s|HwhW:IUx ;&J=Ku[>쉻R+. ΰіt\28xғ[q4͍8z lH>M Ne" `|}{݆7L8S;Z`MwH {;Cb)j >$rRMz"&ۄ(@!xy=PvԄj-QUaj,*x~&ij;]5^gpbnJ_'dGJ[/p휻KU2&G Fb0`/F'XΎ$ңrY2(4h}kL .HZDb:yrt CZO'.{%Jߥ~=hض+Pʦ xp 5S;wS9 {84Xrr}A %f`EEե*=j48U\AҚ Y\O긱-wЦwhZ][;0kh\ǝ-(ŻtݫS-$1۸Ħ+o9z W]}ko3.ymP>66&H7-G~$O( ].d2,nJp b~+X+@x:Iy:twF! $G.^,CGfJF8No L4{9{bLks_rj'T.c;M yYډ`}M2 ,Shfx}K#3O hGVvE0y"6(O:#Jx!q?~@1* 7ʆ3a i$^s7=!S}4=̐mjfy \ZeyA(=ic7ֵ~W`U$"'_!(!FT?AwQ3=|pIaM#Cx5t,Y6BU؍3w48-\#YоW8}%ٸvz ׶ YZ