nscd-2.31-150300.20.7 >  A b+;p9|IO 9=,*OMP1⫵)!1Řd` ^@y!=kw((ϡ-ی7юn^+[L™I;-{_wYtgV)xh  yeB,RlȱOO`14e~\cܩT `/0 R=2%fX*}ixir(/U@M|)592cb811b9cbc0ec954b9268a474e30f225d33a1adddde658f7de6d75ce65b04eb54b3bc9f181ac792dc390a0c8a111fe0e7c1bcdb+;p9|(&GVkLN0/NJfQ`A EhGqQEL]yDEN<^S @oX=p݋oq#>ڸ U{!D>pI8?(d   4  GMU" D A   D S pBd,(89:=%>-?5@=BEFKG`HќIXYZ,[0\8]t^ b^cdԇeԌfԏlԑuԤv w4xpy٬z$Cnscd2.31150300.20.7Name Service Caching DaemonNscd caches name service lookups and can dramatically improve performance with NIS, NIS+, and LDAP.b+mnebbiolo SUSE Linux Enterprise 15SUSE LLC GPL-2.0-or-laterhttps://www.suse.com/System/Daemonshttp://www.gnu.org/software/libc/libc.htmllinuxppc64legetent group nscd >/dev/null || /usr/sbin/groupadd -r nscd getent passwd nscd >/dev/null || /usr/sbin/useradd -r -g nscd -c "User for nscd" -s /sbin/nologin -d /run/nscd nscd if [ -x /usr/bin/systemctl ]; then test -n "$FIRST_ARG" || FIRST_ARG="$1" [ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || : for service in nscd.service ; do sysv_service=${service%.*} if [ ! -e /usr/lib/systemd/system/$service ] && [ ! -e /etc/init.d/$sysv_service ]; then mkdir -p /run/systemd/rpm/needs-preset touch /run/systemd/rpm/needs-preset/$service elif [ -e /etc/init.d/$sysv_service ] && [ ! -e /var/lib/systemd/migrated/$sysv_service ]; then /usr/sbin/systemd-sysv-convert --save $sysv_service || : mkdir -p /run/systemd/rpm/needs-sysv-convert touch /run/systemd/rpm/needs-sysv-convert/$service fi done fi if [ -x /usr/bin/systemctl ]; then test -n "$FIRST_ARG" || FIRST_ARG="$1" [ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || : if [ "$YAST_IS_RUNNING" != "instsys" ]; then /usr/bin/systemctl daemon-reload || : fi for service in nscd.service ; do sysv_service=${service%.*} if [ -e /run/systemd/rpm/needs-preset/$service ]; then /usr/bin/systemctl preset $service || : rm "/run/systemd/rpm/needs-preset/$service" || : elif [ -e /run/systemd/rpm/needs-sysv-convert/$service ]; then /usr/sbin/systemd-sysv-convert --apply $sysv_service || : rm "/run/systemd/rpm/needs-sysv-convert/$service" || : touch /var/lib/systemd/migrated/$sysv_service || : fi done fi [ -z "${TRANSACTIONAL_UPDATE}" -a -x /usr/bin/systemd-tmpfiles ] && /usr/bin/systemd-tmpfiles --create /usr/lib/tmpfiles.d/nscd.conf || : # Previously we had nscd.socket, remove it test -x /usr/bin/systemctl && /usr/bin/systemctl stop nscd.socket 2>/dev/null || : test -x /usr/bin/systemctl && /usr/bin/systemctl disable nscd.socket 2>/dev/null || : # Hard removal in case the above did not work rm -f /etc/systemd/system/sockets.target.wants/nscd.socket exit 0 test -n "$FIRST_ARG" || FIRST_ARG="$1" if [ "$FIRST_ARG" -eq 0 -a -x /usr/bin/systemctl ]; then # Package removal, not upgrade /usr/bin/systemctl --no-reload disable nscd.service || : ( test "$YAST_IS_RUNNING" = instsys && exit 0 test -f /etc/sysconfig/services -a \ -z "$DISABLE_STOP_ON_REMOVAL" && . /etc/sysconfig/services test "$DISABLE_STOP_ON_REMOVAL" = yes -o \ "$DISABLE_STOP_ON_REMOVAL" = 1 && exit 0 /usr/bin/systemctl stop nscd.service ) || : fi test -n "$FIRST_ARG" || FIRST_ARG="$1" if [ $1 -eq 0 ]; then # Package removal for service in nscd.service ; do sysv_service="${service%.*}" rm "/var/lib/systemd/migrated/$sysv_service" || : done fi if [ -x /usr/bin/systemctl ]; then /usr/bin/systemctl daemon-reload || : fi if [ "$FIRST_ARG" -ge 1 ]; then # Package upgrade, not uninstall if [ -x /usr/bin/systemctl ]; then ( test "$YAST_IS_RUNNING" = instsys && exit 0 test -f /etc/sysconfig/services -a \ -z "$DISABLE_RESTART_ON_UPDATE" && . /etc/sysconfig/services test "$DISABLE_RESTART_ON_UPDATE" = yes -o \ "$DISABLE_RESTART_ON_UPDATE" = 1 && exit 0 /usr/bin/systemctl try-restart nscd.service ) || : fi fi exit 0 ` A큤A큤A큀b+b+b+fb+fb+b+b+b+b+b+b+fb+fb+fb+fb+fe2cdfafd373d24fab07018d0e95dd49510ea6c992b7be2b0611ab23bbc2750b579fe74962fbce2fa9b2a4b92f693b2fd42cbc2ed331fae268de7104879a72df879c9cec5dd2414dcb76d11e75903aa6fd9b7785c897cb9f853edcb140a71b779070218c4a231291539d81323cebb2fcbd4542751f666bbb892bd5dc4d4d91d1d/sbin/service@YYYYYYYrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootglibc-2.31-150300.20.7.src.rpmconfig(nscd)glibc:/usr/sbin/nscdnscdnscd(ppc-64) @@@@@@@    /bin/sh/bin/sh/bin/sh/bin/shconfig(nscd)glibclibaudit.so.1()(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.17)(64bit)libcap.so.2()(64bit)libpthread.so.0()(64bit)libpthread.so.0(GLIBC_2.17)(64bit)libselinux.so.1()(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)shadowsystemdsystemdsystemdsystemd2.31-150300.20.72.313.0.4-14.6.0-14.0-15.2-14.14.3aa@aZ@a@a@a0`ݮ@`a@`H`H`?z@`@_T__/@_O@^)@^@^{G^g@^`^U @^&^]@]7@]|@]@]:\@\\]@\@\|\~d[[ͻ[$@[t[r@[qr[^[!@[@Z@ZJ@Z2@ZH@ZZ Z}@ZxG@Zp^@Zp^@Ze@ZKt@Z1@Z/Z@Y@Y@YYܶ@YdY@Y@YY@Y@Y@YW@Y@YJYYw2Yp@YJ_YA%@Y.@Y, @Y, @Y$$@Y"XۡX@XWw@W@W@Ws@Wk@Wj}WYZ@WL+@W3W0{WW V@V@V޾Vm@VIV@VŲ@V`VVV@VLh@V.V$@VVZV VUYU|@UAUȒ@UU@UU4@UUv@U%@U/@U:T@TPTgTܕTء@TO@schwab@suse.deschwab@suse.deschwab@suse.degiuliano.belinassi@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.derguenther@suse.comrguenther@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.dematz@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.dematz@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.dematz@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.dejslaby@suse.comschwab@suse.deschwab@suse.deschwab@suse.deidonmez@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.denormand@linux.vnet.ibm.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.demeissner@suse.comschwab@suse.deschwab@suse.demgorman@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.de- getcwd-erange.patch: getcwd: Set errno to ERANGE for size == 1 (CVE-2021-3999, bsc#1194640, BZ #28769)- 0001-powerpc-Optimized-strcpy-for-POWER9.patch, 0002-powerpc-Optimized-stpcpy-for-POWER9.patch, 0003-powerpc-Optimized-rawmemchr-for-POWER9.patch, 0004-powerpc64le-add-optimized-strlen-for-P9.patch, 0005-powerpc-fix-ifunc-implementation-list-for-POWER9-str.patch, 0006-powerpc-Add-optimized-strncpy-for-POWER9.patch, 0007-powerpc-Add-optimized-stpncpy-for-POWER9.patch, 0008-powerpc-Add-optimized-ilogb-for-POWER9.patch, 0009-powerpc-Add-optimized-llogb-for-POWER9.patch, 0010-powerpc-Add-optimized-strlen-for-POWER10.patch, 0011-powerpc64le-Optimized-memmove-for-POWER10.patch, 0012-powerpc64le-Optimize-memcpy-for-POWER10.patch, 0013-powerpc64le-Optimize-memset-for-POWER10.patch, 0014-powerpc64le-Fix-ifunc-selection-for-memset-memmove-b.patch, 0015-powerpc-Add-optimized-rawmemchr-for-POWER10.patch: ppc64le ifunc improvements (bsc#1194785, jsc#SLE-18195)- clnt-create-unix-overflow.patch: Buffer overflow in sunrpc clnt_create for "unix" (CVE-2022-23219, bsc#1194768, BZ #22542) - svcunix-create-overflow.patch: Buffer overflow in sunrpc svcunix_create (CVE-2022-23218, bsc#1194770, BZ #28768)- Add support for livepatches (jsc#SLE-20049). - Enable livepatching on x86_64. - Generate ipa-clones tarball artifact when livepatching is enabled.- 0001-s390x-Align-child-stack-while-clone.-BZ-27968.patch, 0002-S390-Optimize-__memcpy_z196.patch, 0003-S390-Optimize-__memset_z196.patch, 0004-S390-Sync-HWCAP-names-with-kernel-by-adding-aliases-.patch, 0005-S390-Add-new-hwcap-values.patch, 0006-S390-Add-PCI_MIO-and-SIE-HWCAPs.patch: [15sp4 FEAT] GNU2007 - GLIBC: Support for new IBM Z Hardware (bsc#1191592, jsc#IBM-869)- mq-notify-use-after-free.patch: Use __pthread_attr_copy in mq_notify (CVE-2021-33574, bsc#1186489, BZ #27896)- wordexp-param-overflow.patch: wordexp: handle overflow in positional parameter number (CVE-2021-35942, bsc#1187911, BZ #28011)- s390-memmove-ifunc-selector-arch13.patch: S390: Also check vector support in memmove ifunc-selector (bsc#1184035, BZ #27511)- Update glibc-2.31-HTM-vzeroupper.diff with a AVX-SSE transition fix.- Add glibc-2.31-HTM-vzeroupper.diff to avoid VZEROUPPER in the AVX2 accelerated string routines which cause HTM transaction aborts. Instead use EVEX or SSE. (bsc#1181403)- nscd-netgroupcache.patch: nscd: Fix double free in netgroupcache (CVE-2021-27645, bsc#1182733, BZ #27462)- gconv-assertion-iso-2022-jp.patch: gconv: Fix assertion failure in ISO-2022-JP-3 module (CVE-2021-3326, bsc#1181505, BZ #27256)- sysvipc-sem-stat-any.patch: sysvipc: Fix SEM_STAT_ANY kernel argument pass (bsc#1180557, BZ #26637)- aarch64-getauxval.patch: aarch64: Accept PLT calls to __getauxval within libc.so (bsc#1167939) - iconv-redundant-shift.patch: iconv: Accept redundant shift sequences in IBM1364 (CVE-2020-27618, bsc#1178386, BZ #26224) - iconv-ucs4-loop-bounds.patch: iconv: Fix incorrect UCS4 inner loop bounds (CVE-2020-29562, bsc#1179694, BZ #26923) - printf-long-double-non-normal.patch: x86: Harden printf against non-normal long double values (CVE-2020-29573, bsc#1179721, BZ #26649) - get-nprocs-cpu-online-parsing.patch: Fix parsing of /sys/devices/system/cpu/online (bsc#1180038, BZ #25859)- power10-support.patch: Add support for POWER10 (jsc#SLE-13520) - iconv-option-parsing.patch: Rewrite iconv option parsing (CVE-2016-10228, bsc#1027496, BZ #19519)- Update to glibc 2.31 - glibc-2.14-crypt.diff, crypt_blowfish-const.patch, crypt_blowfish-1.2-sha.diff, crypt_blowfish-gensalt.patch, crypt_blowfish-1.2-hack_around_arm.diff, glibc-nodate.patch, powerpc-elision-enable-envvar.patch, s390-elision-enable-envvar.patch, crt-nocompress-debug-sections.patch, resolv-context-leak.patch, dl-runtime-resolve-opt-avx512f.patch, libpthread-compat-wrappers.patch, math-c++-compat.patch, remove-nss-nis-compat.patch, eh-frame-zero-terminator.patch, ld-so-hwcap-x86-64.patch, assert-pedantic.patch, getaddrinfo-errno.patch, resolv-conf-oom.patch, dynarray-allocation.patch, nearbyint-inexact.patch, nss-compat.patch, nscd-libnsl.patch, malloc-tcache-leak.patch, falkor-memcpy-memmove.patch, aarch64-cpu-features.patch, nss-files-large-buffers.patch, sysconf-uio-maxiov.patch, glob-tilde-overflow.patch, dl-runtime-resolve-xsave.patch, spawni-assert.patch, x86-64-dl-platform.patch, glob64-s390.patch, tst-tlsopt-powerpc.patch, powerpc-hwcap-bits.patch, malloc-tcache-check-overflow.patch, dl-init-paths-overflow.patch, fillin-rpath-empty-tokens.patch, getcwd-absolute.patch, memalign-overflow.patch, stack-guard-size-accounting.patch, libgcc-rtld-now.patch, res-send-enomem.patch, glibc-fix-avx512-mempcpy.patch, i386-memmove-sse2-unaligned.patch, realpath-ssize-max-overflow.patch, localtime-2039.patch, math-remove-slow-path.patch, aarch64-hwcap-atomics.patch, glibc-fix-aarch64-build.diff, absolute-symbols.patch, x86-haswell-string-flags.patch, pthread-cond-broadcast-waiters-after-spinning.patch, mman-map-sync.patch, mman-linux-map-shared-validate.patch, nptl-setxid-error.patch, pthread-mutex-trylock-barrier.patch, getaddrinfo-parse-ipv4-address.patch, japanese-era-name-may-2019.patch, force-elision-race.patch, regex-read-overrun.patch, regex-parse-reg-exp.patch, 0001-S390-Add-configure-check-to-detect-z10-as-mininum-ar.patch, 0002-S390-Use-hwcap-instead-of-dl_hwcap-in-ifunc-resolver.patch, 0003-S390-Unify-31-64bit-memcpy.patch, 0004-S390-Refactor-memcpy-mempcpy-ifunc-handling.patch, 0005-S390-Remove-s390-specific-implementation-of-bcopy.patch, 0006-S390-Use-memcpy-for-forward-cases-in-memmove.patch, 0007-S390-Add-configure-check-to-detect-z13-as-mininum-ar.patch, 0008-S390-Add-z13-memmove-ifunc-variant.patch, 0009-S390-Add-z13-strstr-ifunc-variant.patch, 0010-S390-Add-z13-memmem-ifunc-variant.patch, 0011-S390-Cleanup-ifunc-resolve.h.patch, 0012-S390-Mark-vx-and-vxe-as-important-hwcap.patch, 0013-S390-Add-new-hwcap-values-for-new-cpu-architecture-a.patch, 0014-S390-Add-configure-check-to-detect-support-for-arch1.patch, 0015-S390-Add-arch13-memmove-ifunc-variant.patch, 0016-S390-Add-arch13-strstr-ifunc-variant.patch, 0017-S390-Add-arch13-memmem-ifunc-variant.patch, prefer-map-32bit-exec.patch, s390-strstr-page-boundary.patch, ppc-tle-htm-nosc.patch, posix-Add-internal-symbols-for-posix_spawn-interface.patch, glibc-2.29-posix-Use-posix_spawn-on-popen.patch, backtrace-powerpc.patch, pthread-rwlock-pwn.patch, manual-memory-protection.patch, ldbl-96-rem-pio2l.patch, dl-sort-maps.patch, dlopen-filter-object.patch, glob-use-after-free.patch, nptl-setxid-race.patch, nscd-senfile.patch, ldd-system-interp.patch, abort-no-flush.patch, fnmatch-collating-elements.patch, nss-files-long-lines-2.patch, iconv-reset-input-buffer.patch, nscd-prune.patch, syslog-locking.patch: Removed. - long-double-alias.patch, glibc-nsswitch-usr.diff, euc-kr-overrun.patch, riscv-syscall-clobber.patch, nscd-gc-cycle.patch: Added.- nscd-senfile.patch: Fix concurrent changes on nscd aware files (bsc#1171878, BZ #23178) - nscd-prune.patch: nscd: bump GC cycle during cache pruning (bsc#1171878, BZ #26130) - syslog-locking.patch: Correct locking and cancellation cleanup in syslog functions (bsc#1172085, BZ #26100)- nptl-setxid-race.patch: nptl: wait for pending setxid request also in detached thread (bsc#1162930, BZ #25942)- glob-use-after-free.patch: Fix use-after-free in glob when expanding ~user (CVE-2020-1752, bsc#1167631, BZ #25414)- dl-sort-maps.patch, dlopen-filter-object.patch: Allow dlopen of filter object to work (bsc#1166106, BZ #16272)- ldbl-96-rem-pio2l.patch: Avoid ldbl-96 stack corruption from range reduction of pseudo-zero (CVE-2020-10029, bsc#1165784, BZ #25487)- pthread-rwlock-pwn.patch: Fix rwlock stall with PREFER_WRITER_NONRECURSIVE_NP (bsc#1164505, BZ #23861) - manual-memory-protection.patch: manual: Document mprotect and introduce section on memory protection (bsc#1163184)- backtrace-powerpc.patch: Fix array overflow in backtrace on PowerPC (CVE-2020-1751, bsc#1158996, BZ #25423)- posix-Add-internal-symbols-for-posix_spawn-interface.patch, glibc-2.29-posix-Use-posix_spawn-on-popen.patch: Use posix_spawn on popen (bsc#1149332, BZ #22834)- ppc-tle-htm-nosc.patch: powerpc: Fix syscalls during early process initialization (SLE-8348, BZ #22685)- s390-strstr-page-boundary.patch: S390: Fix handling of needles crossing a page in strstr z15 ifunc-variant (bsc#1157893, BZ #25226)- prefer-map-32bit-exec.patch: rtld: Check __libc_enable_secure before honoring LD_PREFER_MAP_32BIT_EXEC (CVE-2019-19126, bsc#1157292, BZ [#25204])- GNU1815 - Hardware support in toolchain (bsc#1151582) 0001-S390-Add-configure-check-to-detect-z10-as-mininum-ar.patch 0002-S390-Use-hwcap-instead-of-dl_hwcap-in-ifunc-resolver.patch 0003-S390-Unify-31-64bit-memcpy.patch 0004-S390-Refactor-memcpy-mempcpy-ifunc-handling.patch 0005-S390-Remove-s390-specific-implementation-of-bcopy.patch 0006-S390-Use-memcpy-for-forward-cases-in-memmove.patch 0007-S390-Add-configure-check-to-detect-z13-as-mininum-ar.patch 0008-S390-Add-z13-memmove-ifunc-variant.patch 0009-S390-Add-z13-strstr-ifunc-variant.patch 0010-S390-Add-z13-memmem-ifunc-variant.patch 0011-S390-Cleanup-ifunc-resolve.h.patch 0012-S390-Mark-vx-and-vxe-as-important-hwcap.patch 0013-S390-Add-new-hwcap-values-for-new-cpu-architecture-a.patch 0014-S390-Add-configure-check-to-detect-support-for-arch1.patch 0015-S390-Add-arch13-memmove-ifunc-variant.patch 0016-S390-Add-arch13-strstr-ifunc-variant.patch 0017-S390-Add-arch13-memmem-ifunc-variant.patch- regex-parse-reg-exp.patch: ERE '0|()0|\1|0' causes regexec undefined behavior (CVE-2009-5155, bsc#1127223, BZ #18986) - regex-read-overrun.patch: regex: fix read overrun (CVE-2019-9169, bsc#1127308, BZ #24114)- crt-nocompress-debug-sections.patch: Don't compress debug sections in crt*.o files (bsc#1123710)- ldconfig-concurrency.patch: Avoid concurrency problem in ldconfig (bsc#1117993, BZ #23973)- force-elision-race.patch: Fix race in pthread_mutex_lock while promoting to PTHREAD_MUTEX_ELISION_NP (bsc#1131330, BZ #23275)- japanese-era-name-may-2019.patch: ja_JP locale: Add entry for the new Japanese era (bsc#1100396, BZ #22964)- pthread-mutex-trylock-barrier.patch: pthread_mutex_trylock does not use the correct order of instructions while maintaining the robust mutex list due to missing compiler barriers (bsc#1130045, BZ #24180) - getaddrinfo-parse-ipv4-address.patch: getaddrinfo: Fully parse IPv4 address strings (CVE-2016-10739, bsc#1122729, BZ #20018)- mman-map-sync.patch: Add MAP_SYNC from Linux 4.15 (bsc#1126590) - mman-linux-map-shared-validate.patch: Add MAP_SHARED_VALIDATE from Linux 4.15 (bsc#1126590) - nptl-setxid-error.patch: nptl: Preserve error in setxid thread broadcast in coredumps (bsc#1063675, BZ #22153)- x86-haswell-string-flags.patch: Fix Haswell CPU string flags (bsc#1114984, BZ #23709) - pthread-cond-broadcast-waiters-after-spinning.patch: Fix waiters-after-spinning case (bsc#1114993, BZ #23538)- absolute-symbols.patch: Don't relocate absolute symbols (bsc#1112570, BZ [#19818])- glibc-fix-aarch64-build.diff: Fix build on aarch64 with binutils newer than 2.30.- Add glibc-locale-base subpackage containing only C, C.UTF-8 and en_US.UTF-8 locales (fate#326551)- aarch64-hwcap-atomics.patch: aarch64: add HWCAP_ATOMICS to HWCAP_IMPORTANT (fate#325962)- math-remove-slow-path.patch: Remove slow paths from math routines (fate#325815, fate#325879, fate#325880, fate#325881, fate#325882)- localtime-2039.patch: Fix year 2039 bug for localtime with 64-bit time_t (bsc#1102526, BZ #22639)- i386-memmove-sse2-unaligned.patch: Fix SSE2 memmove issue when crossing 2GB boundary (CVE-2017-18269, bnc#1094150, BZ #22644) - realpath-ssize-max-overflow.patch: Fix overflow in path length computation (CVE-2018-11236, bsc#1094161, BZ #22786) - glibc-fix-avx512-mempcpy.patch: replace with upstream version- Use %license also for COPYING and COPYING.LIB (bsc#1082318)- Add glibc-fix-avx512-mempcpy.patch as quick fix for mempcpy buffer overwrite in memmove-avx512-no-vzeroupper.S for Knights Landing CPUs (CVE-2018-11237, bnc#1094154, bnc#1092877, BZ #23196)- Readd nis to netgroup and automount nss config (bsc#1088860)- res-send-enomem.patch: Fix crash in resolver on memory allocation failure (bsc#1086690, BZ #23005)- Use %license (bsc#1082318)- stack-guard-size-accounting.patch: Fix stack guard size accounting (bsc#1074208, BZ #22637) - libgcc-rtld-now.patch: Open libgcc.so with RTLD_NOW during pthread_cancel (bsc#1074208, BZ #22636)- Mark source0 as nosource in non-main source rpms- Add systemtap-headers to BuildRequires. - Add --enable-systemtap to configure arguments. (fate#324969, bsc#1073636)- memalign-overflow.patch: Fix integer overflows in internal memalign and malloc functions (CVE-2018-6485, CVE-2018-6551, bsc#1079036, BZ #22343, BZ #22774)- fix-locking-in-_IO_cleanup.patch: Skip locked files during exit (bsc#1070491, BZ #15142)- Avoid duplicate source rpm- getcwd-absolute.patch: make getcwd(3) fail if it cannot obtain an absolute path (CVE-2018-1000001, bsc#1074293, BZ #22679)- dl-init-paths-overflow.patch: Count components of the expanded path in _dl_init_path (CVE-2017-1000408, CVE-2017-1000409, bsc#1071319, BZ [#22607], BZ #22627) - fillin-rpath-empty-tokens.patch: Check for empty tokens before dynamic string token expansion (CVE-2017-16997, bsc#1073231, BZ #22625)- tst-tlsopt-powerpc.patch: fix tst-tlsopt-powerpc (bcn#1070419) - powerpc-hwcap-bits.patch: Update HWCAP for powerpc (bnc#1070420) - malloc-tcache-check-overflow.patch: Fix integer overflow in malloc when tcache is enabled (CVE-2017-17426, bnc#1071479, BZ #22375)- Add _multibuild- glob64-s390.patch: no compat glob64 on s390 - noversion.tar.bz2: remove unused source- x86-64-dl-platform.patch: Don't set GLRO(dl_platform) to NULL (BZ #22299)- spawni-assert.patch: Fix improper assert in Linux posix_spawn (BZ [#22273])- math-c++-compat.patch: Add more C++ compatibility (BZ #22296) - malloc-tcache-leak.patch: Fix tcache leak after thread destruction (BZ [#22111]) - falkor-memcpy-memmove.patch: Optimized implementation of memcpy/memmove for Qualcomm Falkor - aarch64-cpu-features.patch: Fix glibc.tune.cpu tunable handling - nss-files-large-buffers.patch: Avoid large buffers with many host addresses (BZ #22078) - sysconf-uio-maxiov.patch: Fix missing definition of UIO_MAXIOV (BZ [#22321]) - glob-tilde-overflow.patch: Fix buffer overflows with GLOB_TILDE (CVE-2017-15670, CVE-2017-15671, CVE-2017-15804, bsc#1064569. bsc#1064580, bsc#1064583, BZ #22320, BZ #22325, BZ #22332) - dl-runtime-resolve-xsave.patch: Use fxsave/xsave/xsavec in _dl_runtime_resolve (BZ #21265)- nscd-libnsl.patch: Remove reference to libnsl from nscd (bsc#1062244)- Drop glibc-obsolete - glibc-2.3.90-noversion.diff: remove - reinitialize-dl_load_write_lock.patch: remove- nss-compat.patch: Move nss_compat from nis to nss subdir and install it unconditionally - nsswitch.conf: switch back to compat for passwd, group, shadow- assert-pedantic.patch: Suppress pedantic warning caused by statement expression (BZ #21242, BZ #21972) - math-c++-compat.patch: Add more C++ compatibility (BZ #22235) - getaddrinfo-errno.patch: Fix errno and h_errno handling in getaddrinfo (BZ #21915, BZ #21922) - resolv-conf-oom.patch: Fix memory handling in OOM situation during resolv.conf parsing (BZ #22095, BZ #22096) - dynarray-allocation.patch: Fix initial size of dynarray allocation and set errno on overflow error - nearbyint-inexact.patch: Avoid spurious inexact in nearbyint (BZ #22225)- math-c++-compat.patch: add more C++ compatibility (BZ #22146)- Remove rpcsvc/yppasswd.* from glibc-devel - ld-so-hwcap-x86-64.patch: add x86_64 to hwcap (bsc#1056606, BZ #22093)- eh-frame-zero-terminator.patch: Properly terminate .eh_frame (BZ #22051)- Disable obsolete libnsl and NIS support - remove-nss-nis-compat.patch: remove nis and compat from default NSS configs - nsswitch.conf: Likewise- math-c++-compat.patch: Do not use __builtin_types_compatible_p in C++ mode (BZ #21930)- Add iconvconfig to baselibs.conf (bsc#1051042)- resolv-context-leak.patch: Fix leaks of resolver contexts - dl-runtime-resolve-opt-avx512f.patch: Use _dl_runtime_resolve_opt only with AVX512F (BZ #21871) - libpthread-compat-wrappers.patch: Don't use IFUNC resolver for longjmp or system in libpthread (BZ #21041)- Update to glibc 2.26 * A per-thread cache has been added to malloc * Unicode 10.0.0 Support * Improvements to the DNS stub resolver * New function reallocarray, which resizes an allocated block (like realloc) to the product of two sizes, with a guaranteed clean failure upon integer overflow in the multiplication * New wrappers for the Linux-specific system calls preadv2 and pwritev2 * posix_spawnattr_setflags now supports the flag POSIX_SPAWN_SETSID, to create a new session ID for the spawned process * errno.h is now safe to use from C-preprocessed assembly language on all supported operating systems * On ia64, powerpc64le, x86-32, and x86-64, the math library now implements 128-bit floating point as defined by ISO/IEC/IEEE 60559:2011 (IEEE 754-2008) and ISO/IEC TS 18661-3:2015 * The synchronization that pthread_spin_unlock performs has been changed to now be equivalent to a C11 atomic store with release memory order to the spin lock's memory location * The DNS stub resolver no longer performs EDNS fallback * res_mkquery and res_nmkquery no longer support the IQUERY opcode * The _res_opcodes variable has been removed from libresolv * no longer includes inline versions of any string functions, as this kind of optimization is better done by the compiler * The nonstandard header has been removed * The obsolete header has been removed * The obsolete signal constant SIGUNUSED is no longer defined by * The obsolete function cfree has been removed * The stack_t type no longer has the name struct sigaltstack * The ucontext_t type no longer has the name struct ucontext * On S/390 GNU/Linux, the constants defined by have been synced with the kernel * Linux kernel 3.2 or later is required at runtime, on all architectures supported by that kernel * The DNS stub resolver limits the advertised UDP buffer size to 1200 bytes, to avoid fragmentation-based spoofing attacks (CVE-2017-12132) * LD_LIBRARY_PATH is now ignored in binaries running in privileged AT_SECURE mode to guard against local privilege escalation attacks (CVE-2017-1000366) * Avoid printing a backtrace from the __stack_chk_fail function since it is called on a corrupt stack and a backtrace is unreliable on a corrupt stack (CVE-2010-3192) * A use-after-free vulnerability in clntudp_call in the Sun RPC system has been fixed (CVE-2017-12133) * fate#322258, fate#321513, fate#322453 - fts-symbol-redirect.patch, glibc-resolv-reload.diff, glibc-2.2-sunrpc.diff, i686-memchr-sse.patch, ld-hwcap-mask-suid.patch, ld-library-path-suid.patch, sunrpc-use-after-free.patch, test-math-vector-sincos-aliasing.patch, tunables-bigendian.patch: Removed- Fix RPM group- s390-elision-enable-envvar.patch: enable TLE only if GLIBC_ELISION_ENABLE=yes is defined (fate#322271)- ld-hwcap-mask-suid.patch: Ignore and remove LD_HWCAP_MASK for AT_SECURE programs (BZ #21209) - ld-library-path-suid.patch: Completely ignore LD_LIBRARY_PATH for AT_SECURE=1 programs (CVE-2017-1000366, bsc#1039357, BZ #21624)- Remove glibc-cpusetsize.diff, no longer useful- fts-symbol-redirect.patch: Fix symbol redirect for fts_set (bsc#1041123, BZ #21289)- test-math-vector-sincos-aliasing.patch: Fix test-math-vector-sincos.h aliasing- add-locales.patch: renamed from glibc-2.3.locales.diff.bz2, drop en_BE locales (bsc#1039502)- Remove glibc-testsuite.patch, no longer relevant- Use multibuild feature - Remove obsolete check-build.sh - glibc.rpmlintrc: remove obsolete entries - Use %tmpfiles_create in nscd postin- i686-memchr-sse.patch: Fix i686 memchr overflow calculation (bsc#1031021, BZ #21182) - sunrpc-use-after-free.patch: Avoid use-after-free read access in clntudp_call (BZ #21115) - Build testsuite with gdb and python-pexpect to enable more tests- tunables-bigendian.patch: Fix getting tunable values on big-endian (BZ [#21109])- Update to glibc 2.25 * The feature test macro __STDC_WANT_LIB_EXT2__, from ISO/IEC TR 24731-2:2010, is supported to enable declarations of functions from that TR. * The feature test macro __STDC_WANT_IEC_60559_BFP_EXT__, from ISO/IEC TS 18661-1:2014, is supported to enable declarations of functions and macros from that TS. * The feature test macro __STDC_WANT_IEC_60559_FUNCS_EXT__, from ISO/IEC TS 18661-4:2015, is supported to enable declarations of functions and macros from that TS. * The nonstandard feature selection macros _REENTRANT and _THREAD_SAFE are now treated as compatibility synonyms for _POSIX_C_SOURCE=199506L. * The inclusion of by is deprecated. * New features from TS 18661-1:2014 are added to libm: the fesetexcept, fetestexceptflag, fegetmode and fesetmode functions, the femode_t type and the FE_DFL_MODE and FE_SNANS_ALWAYS_SIGNAL macros. * Integer width macros from TS 18661-1:2014 are added to : CHAR_WIDTH, SCHAR_WIDTH, UCHAR_WIDTH, SHRT_WIDTH, USHRT_WIDTH, INT_WIDTH, UINT_WIDTH, LONG_WIDTH, ULONG_WIDTH, LLONG_WIDTH, ULLONG_WIDTH; and to : INT8_WIDTH, UINT8_WIDTH, INT16_WIDTH, UINT16_WIDTH, INT32_WIDTH, UINT32_WIDTH, INT64_WIDTH, UINT64_WIDTH, INT_LEAST8_WIDTH, UINT_LEAST8_WIDTH, INT_LEAST16_WIDTH, UINT_LEAST16_WIDTH, INT_LEAST32_WIDTH, UINT_LEAST32_WIDTH, INT_LEAST64_WIDTH, UINT_LEAST64_WIDTH, INT_FAST8_WIDTH, UINT_FAST8_WIDTH, INT_FAST16_WIDTH, UINT_FAST16_WIDTH, INT_FAST32_WIDTH, UINT_FAST32_WIDTH, INT_FAST64_WIDTH, UINT_FAST64_WIDTH, INTPTR_WIDTH, UINTPTR_WIDTH, INTMAX_WIDTH, UINTMAX_WIDTH, PTRDIFF_WIDTH, SIG_ATOMIC_WIDTH, SIZE_WIDTH, WCHAR_WIDTH, WINT_WIDTH. * New features are added from TS 18661-1:2014: - Signaling NaN macros: SNANF, SNAN, SNANL. - Nearest integer functions: roundeven, roundevenf, roundevenl, fromfp, fromfpf, fromfpl, ufromfp, ufromfpf, ufromfpl, fromfpx, fromfpxf, fromfpxl, ufromfpx, ufromfpxf, ufromfpxl. - llogb functions: the llogb, llogbf and llogbl functions, and the FP_LLOGB0 and FP_LLOGBNAN macros. - Max-min magnitude functions: fmaxmag, fmaxmagf, fmaxmagl, fminmag, fminmagf, fminmagl. - Comparison macros: iseqsig. - Classification macros: iscanonical, issubnormal, iszero. - Total order functions: totalorder, totalorderf, totalorderl, totalordermag, totalordermagf, totalordermagl. - Canonicalize functions: canonicalize, canonicalizef, canonicalizel. - NaN functions: getpayload, getpayloadf, getpayloadl, setpayload, setpayloadf, setpayloadl, setpayloadsig, setpayloadsigf, setpayloadsigl. * The functions strfromd, strfromf, and strfroml, from ISO/IEC TS 18661-1:2014, are added to libc. * Most of glibc can now be built with the stack smashing protector enabled. * The function explicit_bzero, from OpenBSD, has been added to libc. * On ColdFire, MicroBlaze, Nios II and SH3, the float_t type is now defined to float instead of double. * On x86_64, when compiling with -mfpmath=387 or -mfpmath=sse+387, the float_t and double_t types are now defined to long double instead of float and double. * The getentropy and getrandom functions, and the header file have been added. * The buffer size for byte-oriented stdio streams is now limited to 8192 bytes by default. * The header now includes the header. * The malloc_get_state and malloc_set_state functions have been removed. * The “ip6-dotint” and “no-ip6-dotint” resolver options, and the corresponding RES_NOIP6DOTINT flag from have been removed. * The "ip6-bytestring" resolver option and the corresponding RES_USEBSTRING flag from have been removed. * The flags RES_AAONLY, RES_PRIMARY, RES_NOCHECKNAME, RES_KEEPTSIG, RES_BLAST defined in the header file have been deprecated. * The "inet6" option in /etc/resolv.conf and the RES_USE_INET6 flag for _res.flags are deprecated. * DNSSEC-related declarations and definitions have been removed from the header file, and libresolv will no longer attempt to decode the data part of DNSSEC record types. * The resource record type classification macros ns_t_qt_p, ns_t_mrr_p, ns_t_rr_p, ns_t_udp_p, ns_t_xfr_p have been removed from the header file because the distinction between RR types and meta-RR types is not officially standardized, subject to revision, and thus not suitable for encoding in a macro. * The types res_sendhookact, res_send_qhook, re_send_rhook, and the qhook and rhook members of the res_state type in have been removed. * For multi-arch support it is recommended to use a GCC which has been built with support for GNU indirect functions. * GDB pretty printers have been added for mutex and condition variable structures in POSIX Threads. * Tunables feature added to allow tweaking of the runtime for an application program. * A new version of condition variables functions have been implemented in the NPTL implementation of POSIX Threads to provide stronger ordering guarantees. * A new version of pthread_rwlock functions have been implemented to use a more scalable algorithm primarily through not using a critical section anymore to make state changes. * On ARM EABI (32-bit), generating a backtrace for execution contexts which have been created with makecontext could fail to terminate due to a missing .cantunwind annotation. (CVE-2016-6323) * The DNS stub resolver functions would crash due to a NULL pointer dereference when processing a query with a valid DNS question type which was used internally in the implementation. (CVE-2015-5180) - Enable stack protector if part of %optflags - startcontext-cantunwind.patch: Removed - cpuid-assertion.patch: Removed- cpuid-assertion.patch: Don't assert on older Intel CPUs (BZ #20647)- glibc-2.3.3-nscd-db-path.diff: Move persistent nscd databases to /var/lib/nscd - glibc-2.3.90-langpackdir.diff: simplify- Update to glibc 2.24 * The minimum Linux kernel version that this version of the GNU C Library can be used with is 3.2 * The pap_AN locale has been deleted * The readdir_r and readdir64_r functions have been deprecated * The type `union wait' has been removed * A new NSS action is added to facilitate large distributed system administration * The deprecated __malloc_initialize_hook variable has been removed from the API * The long unused localedef --old-style option has been removed * nextupl, nextup, nextupf, nextdownl, nextdown and nextdownf are added to libm * An unnecessary stack copy in _nss_dns_getnetbyname_r was removed (CVE-2016-3075) * Previously, getaddrinfo copied large amounts of address data to the stack, even after the fix for CVE-2013-4458 has been applied, potentially resulting in a stack overflow. getaddrinfo now uses a heap allocation instead (CVE-2016-3706) * The glob function suffered from a stack-based buffer overflow when it was called with the GLOB_ALTDIRFUNC flag and encountered a long file name (CVE-2016-1234) * The Sun RPC UDP client could exhaust all available stack space when flooded with crafted ICMP and UDP messages (CVE-2016-4429) * The IPv6 name server management code in libresolv could result in a memory leak for each thread which is created, performs a failing naming lookup, and exits (CVE-2016-5417) - startcontext-cantunwind.patch: mark __startcontext as .cantunwind (bsc#974800, BZ #20435) - Removed patches: * 0001-Updated-translations-for-2.23.patch * 0002-Regenerate-libc.pot-for-2.23.patch * 0003-Regenerated-configure-scripts.patch * 0004-x86_64-Set-DL_RUNTIME_UNALIGNED_VEC_SIZE-to-8.patch * 0005-Add-fts64_-to-sysdeps-arm-nacl-libc.abilist.patch * 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch * 0007-NEWS-2.23-Fix-typo-in-bug-19048-text.patch * 0008-Update-NEWS.patch * 0009-sln-use-stat64.patch * 0010-Add-sys-auxv.h-wrapper-to-include-sys.patch * 0011-mips-terminate-the-FDE-before-the-return-trampoline-.patch * 0012-Use-HAS_ARCH_FEATURE-with-Fast_Rep_String.patch * 0013-Mention-BZ-19762-in-NEWS.patch * 0014-Define-_HAVE_STRING_ARCH_mempcpy-to-1-for-x86.patch * 0015-Or-bit_Prefer_MAP_32BIT_EXEC-in-EXTRA_LD_ENVVARS.patch * 0016-Fix-resource-leak-in-resolver-bug-19257.patch * 0017-math-don-t-clobber-old-libm.so-on-install-BZ-19822.patch * 0018-resolv-Always-set-resplen2-out-parameter-in-send_dg-.patch * 0019-S390-Save-and-restore-fprs-vrs-while-resolving-symbo.patch * 0020-S390-Extend-structs-La_s390_regs-La_s390_retval-with.patch * 0021-CVE-2016-3075-Stack-overflow-in-_nss_dns_getnetbynam.patch * 0022-configure-fix-test-usage.patch * 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch * 0024-nss_db-Propagate-ERANGE-error-if-parse_line-fails-BZ.patch * 0025-getnameinfo-Do-not-preserve-errno.patch * 0026-getnameinfo-Refactor-and-fix-memory-leak-BZ-19642.patch * 0027-getnameinfo-Reduce-line-length-and-add-missing-comme.patch * 0028-getnameinfo-Avoid-calling-strnlen-on-uninitialized-b.patch * 0029-getnameinfo-Return-EAI_OVERFLOW-in-more-cases-BZ-197.patch * 0030-hesiod-Remove-RCS-keywords.patch * 0031-hesiod-Always-use-thread-local-resolver-state-BZ-195.patch * 0032-hesiod-Avoid-heap-overflow-in-get_txt_records-BZ-200.patch * 0033-malloc-Remove-NO_THREADS.patch * 0034-Fix-malloc-threaded-tests-link-on-non-Linux.patch * 0035-malloc-Run-fork-handler-as-late-as-possible-BZ-19431.patch * 0036-malloc-Remove-malloc-hooks-from-fork-handler.patch * 0037-malloc-Add-missing-internal_function-attributes-on-f.patch * 0038-nss_dns-Fix-assertion-failure-in-_nss_dns_getcanonna.patch * 0039-nss_dns-Validate-RDATA-length-against-packet-length-.patch * 0040-resolv-nss_dns-Remove-remaining-syslog-logging-BZ-19.patch * 0041-nss_dns-Check-address-length-before-creating-addrinf.patch * 0042-nss_dns-Skip-over-non-PTR-records-in-the-netent-code.patch * 0043-resolv-Always-set-resplen2-out-parameter-in-send_vc-.patch * 0044-tst-audit4-tst-audit10-Compile-AVX-AVX-512-code-sepa.patch * 0045-Fix-tst-audit10-build-when-mavx512f-is-not-supported.patch * 0046-tst-audit10-Fix-compilation-on-compilers-without-bit.patch * 0047-strfmon_l-Use-specified-locale-for-number-formatting.patch * 0048-glob-Simplify-the-interface-for-the-GLOB_ALTDIRFUNC-.patch * 0049-CVE-2016-1234-glob-Do-not-copy-d_name-field-of-struc.patch * 0050-ldconfig-Do-not-remove-stale-symbolic-links-with-X-B.patch * 0051-Report-dlsym-dlvsym-lookup-errors-using-dlerror-BZ-1.patch * 0052-Fix-tst-dlsym-error-build.patch * 0053-Remove-trailing-newline-from-date_fmt-in-Serbian-loc.patch * 0054-Revert-Report-dlsym-dlvsym-lookup-errors-using-dlerr.patch * 0055-CVE-2016-3706-getaddrinfo-stack-overflow-in-hostent-.patch * 0056-Fix-strfmon_l-Use-specified-locale-for-number-format.patch * clntudp-call-alloca.patch * glibc-memset-nontemporal.diff * nis-initgroups-status.patch * nscd-gc-crash.patch * robust-mutex-deadlock.patch * strncat-avoid-array-bounds-warning.patch- strncat-avoid-array-bounds-warning.patch: Avoid array-bounds warning for stncat on i586 (BZ #20260) - Update glibc.keyring - Unset MALLOC_CHECK_ during testsuite run- nsswitch.conf: Add fallback to files for passwd and group to prepare for libnsl removal.- nis-initgroups-status.patch: Return proper status from _nss_nis_initgroups_dyn (bsc#984269, BZ #20262) - robust-mutex-deadlock.patch: Fix generic __lll_robust_timedlock_wait to check for timeout (bsc#985170, BZ #20263)- nscd-gc-crash.patch: Fix nscd assertion failure in gc (bsc#965699, BZ [#19755])- clntudp-call-alloca.patch: do not use alloca in clntudp_call (CVE-2016-4429, bsc#980854, BZ #20112)- Import patches from 2.23 branch 0001-Updated-translations-for-2.23.patch 0002-Regenerate-libc.pot-for-2.23.patch 0003-Regenerated-configure-scripts.patch 0004-x86_64-Set-DL_RUNTIME_UNALIGNED_VEC_SIZE-to-8.patch 0005-Add-fts64_-to-sysdeps-arm-nacl-libc.abilist.patch 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch 0007-NEWS-2.23-Fix-typo-in-bug-19048-text.patch 0008-Update-NEWS.patch 0009-sln-use-stat64.patch 0010-Add-sys-auxv.h-wrapper-to-include-sys.patch 0011-mips-terminate-the-FDE-before-the-return-trampoline-.patch 0012-Use-HAS_ARCH_FEATURE-with-Fast_Rep_String.patch 0013-Mention-BZ-19762-in-NEWS.patch 0014-Define-_HAVE_STRING_ARCH_mempcpy-to-1-for-x86.patch 0015-Or-bit_Prefer_MAP_32BIT_EXEC-in-EXTRA_LD_ENVVARS.patch 0016-Fix-resource-leak-in-resolver-bug-19257.patch 0017-math-don-t-clobber-old-libm.so-on-install-BZ-19822.patch 0018-resolv-Always-set-resplen2-out-parameter-in-send_dg-.patch 0019-S390-Save-and-restore-fprs-vrs-while-resolving-symbo.patch 0020-S390-Extend-structs-La_s390_regs-La_s390_retval-with.patch 0021-CVE-2016-3075-Stack-overflow-in-_nss_dns_getnetbynam.patch 0022-configure-fix-test-usage.patch 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch 0024-nss_db-Propagate-ERANGE-error-if-parse_line-fails-BZ.patch 0025-getnameinfo-Do-not-preserve-errno.patch 0026-getnameinfo-Refactor-and-fix-memory-leak-BZ-19642.patch 0027-getnameinfo-Reduce-line-length-and-add-missing-comme.patch 0028-getnameinfo-Avoid-calling-strnlen-on-uninitialized-b.patch 0029-getnameinfo-Return-EAI_OVERFLOW-in-more-cases-BZ-197.patch 0030-hesiod-Remove-RCS-keywords.patch 0031-hesiod-Always-use-thread-local-resolver-state-BZ-195.patch 0032-hesiod-Avoid-heap-overflow-in-get_txt_records-BZ-200.patch 0033-malloc-Remove-NO_THREADS.patch 0034-Fix-malloc-threaded-tests-link-on-non-Linux.patch 0035-malloc-Run-fork-handler-as-late-as-possible-BZ-19431.patch 0036-malloc-Remove-malloc-hooks-from-fork-handler.patch 0037-malloc-Add-missing-internal_function-attributes-on-f.patch 0038-nss_dns-Fix-assertion-failure-in-_nss_dns_getcanonna.patch 0039-nss_dns-Validate-RDATA-length-against-packet-length-.patch 0040-resolv-nss_dns-Remove-remaining-syslog-logging-BZ-19.patch 0041-nss_dns-Check-address-length-before-creating-addrinf.patch 0042-nss_dns-Skip-over-non-PTR-records-in-the-netent-code.patch 0043-resolv-Always-set-resplen2-out-parameter-in-send_vc-.patch 0044-tst-audit4-tst-audit10-Compile-AVX-AVX-512-code-sepa.patch 0045-Fix-tst-audit10-build-when-mavx512f-is-not-supported.patch 0046-tst-audit10-Fix-compilation-on-compilers-without-bit.patch 0047-strfmon_l-Use-specified-locale-for-number-formatting.patch 0048-glob-Simplify-the-interface-for-the-GLOB_ALTDIRFUNC-.patch 0049-CVE-2016-1234-glob-Do-not-copy-d_name-field-of-struc.patch 0050-ldconfig-Do-not-remove-stale-symbolic-links-with-X-B.patch 0051-Report-dlsym-dlvsym-lookup-errors-using-dlerror-BZ-1.patch 0052-Fix-tst-dlsym-error-build.patch 0053-Remove-trailing-newline-from-date_fmt-in-Serbian-loc.patch 0054-Revert-Report-dlsym-dlvsym-lookup-errors-using-dlerr.patch 0055-CVE-2016-3706-getaddrinfo-stack-overflow-in-hostent-.patch 0056-Fix-strfmon_l-Use-specified-locale-for-number-format.patch - CVE-2016-3075 CVE-2016-1234 CVE-2016-3706 bsc#973164 bsc#969727 - resolv-mem-leak.patch: renamed to 0016-Fix-resource-leak-in-resolver-bug-19257.patch - no-long-double.patch: renamed to 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch - glibc-gcc6.patch: renamed to 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch- glibc-c-utf8-locale.patch: fix bad standard in LC_IDENTIFICATION categories - glibc-2.3.locales.diff.bz2: likewise- glibc-gcc6.patch: Suppress GCC 6 warning about ambiguous 'else' with - Wparentheses- Add compatibility symlinks for LSB 3.0 (fate#318933)- powerpc-elision-enable-envvar.patch: enable TLE only if GLIBC_ELISION_ENABLE=yes is defined (bsc#967594, fate#318236)- ldd-system-interp.patch: Restore warning about execution permission, it is still needed for noexec mounts (bsc#915985)- Add C.UTF-8 locale (see https://sourceware.org/glibc/wiki/Proposals/C.UTF-8) and rh#902094 . Added with glibc-c-utf8-locale.patch. - Add glibc-disable-gettext-for-c-utf8.patch to disable gettext for C.UTF-8 same as C locale.- Move %install_info_delete to %preun - crypt_blowfish-1.3.tar.gz.sign: Remove, the sign key is no longer acceptable- no-long-double.patch: Don't use long double functions if NO_LONG_DOUBLE- Update to glibc 2.23 release. * Unicode 8.0.0 Support * sched_setaffinity, pthread_setaffinity_np no longer attempt to guess the kernel-internal CPU set size * The fts.h header can now be used with -D_FILE_OFFSET_BITS=64 * getaddrinfo now detects certain invalid responses on an internal netlink socket * A defect in the malloc implementation, present since glibc 2.15 (2012) or glibc 2.10 via --enable-experimental-malloc (2009), could result in the unnecessary serialization of memory allocation requests across threads * The obsolete header has been removed * The obsolete functions bdflush, create_module, get_kernel_syms, query_module and uselib are no longer available to newly linked binaries * Optimized string, wcsmbs and memory functions for IBM z13. * Newly linked programs that define a variable called signgam will no longer have it set by the lgamma, lgammaf and lgammal functions - Removed patches: * dont-remove-nodelete-flag.patch * openat64-readd-o-largefile.patch * mntent-blank-line.patch * opendir-o-directory-check.patch * strcoll-remove-strdiff-opt.patch * ld-pointer-guard.patch * tls-dtor-list-mangling.patch * powerpc-lock-elision-race.patch * prelink-elf-rtype-class.patch * vector-finite-math-aliases.patch * powerpc-elision-adapt-param.patch * catopen-unbound-alloca.patch * strftime-range-check.patch * hcreate-overflow-check.patch * errorcheck-mutex-no-elision.patch * refactor-nan-parsing.patch * send-dg-buffer-overflow.patch * isinf-cxx11-conflict.patch * ibm93x-redundant-shift-si.patch * iconv-reset-input-buffer.patch * tzset-tzname.patch * static-dlopen.patch- isinf-cxx11-conflict.patch: Fix isinf/isnan declaration conflict with C++11 (bsc#963700, BZ #19439)- tls-dtor-list-mangling.patch: Harden tls_dtor_list with pointer mangling (BZ #19018) - prelink-elf-rtype-class.patch: Keep only ELF_RTYPE_CLASS_{PLT|COPY} bits for prelink (BZ #19178) - vector-finite-math-aliases.patch: Better workaround for aliases of * _finite symbols in vector math library (BZ# 19058) - powerpc-elision-adapt-param.patch: powerpc: Fix usage of elision transient failure adapt param (BZ #19174) - catopen-unbound-alloca.patch: Fix unbound alloca in catopen (CVE-2015-8779, bsc#962739, BZ #17905) - strftime-range-check.patch: Add range check on time fields (CVE-2015-8776, bsc#962736, BZ #18985) - hcreate-overflow-check.patch: Handle overflow in hcreate (CVE-2015-8778, bsc#962737, BZ #18240) - errorcheck-mutex-no-elision.patch: Don't do lock elision on an error checking mutex (bsc#956716, BZ #17514) - refactor-nan-parsing.patch: Refactor strtod parsing of NaN payloads (CVE-2014-9761, bsc#962738, BZ #16962) - send-dg-buffer-overflow.patch: Fix getaddrinfo stack-based buffer overflow (CVE-2015-7547, bsc#961721, BZ #18665) - powerpc-lock-elision-race.patch: renamed from 0001-powerpc-Fix-a-race-condition-when-eliding-a-lock-20150730.patch- Add audit-devel and libcap-devel to BuildRequires, for use by nscd- reinitialize-dl_load_write_lock.patch: Reinitialize dl_load_write_lock on fork (bsc#958315, BZ #19282)- resolv-mem-leak.patch: Fix resource leak in resolver (bsc#955647, BZ #19257) - tzset-tzname.patch: Force rereading TZDEFRULES after it was used to set DST rules only (BZ #19253)- glibc-2.3.90-noversion.diff: use stat64- ld-pointer-guard.patch: Always enable pointer guard (CVE-2015-8777, bsc#950944, BZ #18928)- strcoll-remove-strdiff-opt.patch: Remove incorrect STRDIFF-based optimization (BZ #18589)- iconv-reset-input-buffer.patch: Fix iconv buffer handling with IGNORE error handler (BZ #18830)- new patch [BZ #18743] PowerPC: Fix a race condition when eliding a lock 0001-powerpc-Fix-a-race-condition-when-eliding-a-lock-20150730.patch- nss-files-long-lines-2.patch: Properly reread entry after failure in nss_files getent function (bsc#945779, BZ #18991)- fnmatch-collating-elements.patch: Fix fnmatch handling of collating elements (BZ #17396, BZ #16976)- opendir-o-directory-check.patch: Fix opendir inverted o_directory_works test - static-dlopen.patch: Static dlopen default library search path fix (bsc#937853)- mntent-blank-line.patch: Fix memory corruption w/blank lines- dont-remove-nodelete-flag.patch: Don't remove DF_1_NODELETE flag from all loaded objects on failed dlopen - openat64-readd-o-largefile.patch: Readd O_LARGEFILE flag for openat64- Update to glibc 2.22 release. * Cache information can be queried via sysconf() function on s390 * A buffer overflow in gethostbyname_r and related functions performing DNS requests has been fixed. (CVE-2015-1781) * The time zone file parser has been made more robust against crafted time zone files * A powerpc and powerpc64 optimization for TLS, similar to TLS descriptors for LD and GD on x86 and x86-64, has been implemented. * Character encoding and ctype tables were updated to Unicode 7.0.0 * Added vector math library named libmvec * A new fmemopen implementation has been added with the goal of POSIX compliance. * The header is deprecated, and will be removed in a future release. * bsc#905313 bsc#920338 bsc#927080 bsc#928723 bsc#931480 bsc#939211 bsc#940195 bsc#940332 bsc#944494 bsc#968787 - Patches from upstream removed * htm-tabort.patch * o-tmpfile.patch * memcpy-chk-non-SSE2.patch * pthread-mutexattr-gettype-kind.patch * powerpc-software-sqrt.patch * static-tls-dtv-limit.patch * threaded-trim-threshold.patch * resolv-nameserver-handling.patch * nss-separate-state-getXXent.patch * aarch64-sigstksz.patch * heap-top-corruption.patch * pthread-join-deadlock.patch- pthread-join-deadlock.patch: Use IE model for static variables in libc.so, libpthread.so and rtld (bsc#930015, BZ #18457)- glibc-nodate.patch: fix verification of timestamp- also filter out -fstack-protector-strong- getaddrinfo-ipv6-sanity.diff: Remove. It breaks services that start before IPv6 is up (bsc#931399) - glibc-2.3.locales.diff.bz2: Remove sh_YU locales, fix currency for en_BE.- Add /usr/include/gnu/lib-names-.*.h to baselibs - pthread-join-deadlock.patch: Don't require rtld lock to store static TLS offset in the DTV (bsc#930015, BZ #18457) - heap-top-corruption.patch: Do not corrupt the top of a threaded heap if top chunk is MINSIZE (BZ #18502)- threaded-trim-threshold.patch: Fix regression in threaded application malloc performance (bsc#915955, BZ #17195)- aarch64-sigstksz.patch: Increase MINSIGSTKSZ and SIGSTKSZ (BZ #16850)- powerpc-software-sqrt.patch: Fix powerpc software sqrt (BZ #17964, BZ [#17967]) - nss-separate-state-getXXent.patch: Separate internal state between getXXent and getXXbyYY NSS calls (CVE-2014-8121, bsc#918187, BZ #18007) - static-tls-dtv-limit.patch: Fix DTV race, assert, DTV_SURPLUS Static TLS limit, and nptl_db garbage (bsc#919678, BZ #17090, BZ #17620, BZ #17621, BZ #17628)- resolv-nameserver-handling.patch: Replace with simpler version with more compatibility- memcpy-chk-non-SSE2.patch: Fix __memcpy_chk on non-SSE2 CPUs (bsc#920084)- resolv-nameserver-handling.patch: Rewrite handling of nameserver configuration in resolver- htm-tabort.patch: Fix TABORT encoding for little endian- Update to glibc 2.21 release. * A new semaphore algorithm has been implemented in generic C code for all machines * Added support for TSX lock elision of pthread mutexes on powerpc32, powerpc64 and powerpc64le * Optimized strcpy, stpcpy, strchrnul and strrchr implementations for AArch64 * i386 memcpy functions optimized with SSE2 unaligned load/store * New locales: tu_IN, bh_IN, raj_IN, ce_RU * The obsolete sigvec function has been removed * CVE-2015-1472 CVE-2015-1473 CVE-2012-3406 CVE-2014-9402 CVE-2014-7817 bsc#864081 bsc#906371 bsc#909053 bsc#910599 bsc#916222 - Patches from upstream removed * ifunc-x86-slow-sse4.patch * pthread-mutex-trylock-elision.patch - o-tmpfile.patch: Fix value of O_TMPFILE for architectures with non-default O_DIRECTORY (BZ #17912)- Update to crypt_blowfish 1.3. * Add support for the $2b$ prefix. - ifunc-x86-slow-sse4.patch: Fix misdetected Slow_SSE4_2 cpu feature bit (BZ #17501)/bin/sh/bin/sh/bin/sh/bin/shunscdnebbiolo 1646991981 2.31-150300.20.72.31-150300.20.72.31-150300.20.7 0.48nscd.confnscdnscd.pidsocketnscd.servicetmpfiles.dnscd.confnscdrcnscdnscdgrouphostsnetgrouppasswdservices/etc//run//run/nscd//usr/lib/systemd/system//usr/lib//usr/lib/tmpfiles.d//usr/sbin//var/lib//var/lib/nscd/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:23165/SUSE_SLE-15-SP3_Update/abcdb2b52b9e2c5dca0320527f5f154a-glibc.SUSE_SLE-15-SP3_Updatecpioxz5ppc64le-suse-linux ASCII textdirectorycannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.20.7.ppc64le/run/nscd/nscd.pid' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.20.7.ppc64le/run/nscd/socket' (No such file or directory)ELF 64-bit LSB shared object, 64-bit PowerPC or cisco 7500, version 1 (SYSV), dynamically linked, interpreter /lib64/ld64.so.2, BuildID[sha1]=df366ef938e5f817ce154f5132a1c9723066b250, for GNU/Linux 3.10.0, strippedcannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.20.7.ppc64le/var/lib/nscd/group' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.20.7.ppc64le/var/lib/nscd/hosts' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.20.7.ppc64le/var/lib/nscd/netgroup' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.20.7.ppc64le/var/lib/nscd/passwd' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.20.7.ppc64le/var/lib/nscd/services' (No such file or directory)R RR R RR RKlr2D utf-8fbdb5b6016399a57d8e722f3cf74a7227bd2c477bfb43ca0784d5f44dcbec5f1?p7zXZ !t/] crv(vX0 Bi~~1+hPw1DS~0-5_ MFo@AeEs& =HlV[z,JɾOR"k^5cS I Y`(%Ib\ˬAvgb("vA-N|@oxtǬ<7!!%7;d6fe&҇"W^Ϗo 0bQd Lm|heZؗȒ ^4lzLORߴ/Ķo!C Űd0aCL!jv$hD"/k(nYt+rݑ!>E .dtT 'DC68zDɚ_SxAx" 1Ol WO!sJEd:gc=7OP|g7F#$4ĻPTQ--%}&Nd~xg_h>,AmML eҿCa5嫈}\r}=ۊ sꮢpM>A,f&E5a'4E.(I,,-D"gy$?z3ixa޹)d;kNmFa_JS,lvS? 6:;HH :,%dţq3%U<m _\AEOKHX +\ACѢZwUa&FKϷd%;T7YExS?Gao7F g*$3(;vgjr)yXy(+j3<HVۏaѻnAA TGr_mRZKɞSХ]׏w=aiB4 zG*FURCtyA9-[vӦ01ԙIv&6yƉB8zk&vH鯴zz=H %1)8Ο2SA.LE8:9>O_?:O2RK@]’G%n3n;} .Bں7`ҿL_ĜFjS^F՗& YMuY!=ɮWT *֒"?NIzQ.t"Y@fڟq=ӊ{QTIm7-n% ! :  6㿍PBs͟FսƇKg !j htD ??60~$r,;FYU螆D}sY,Dy4DC G5K%H$2U^@c7^4㟿Yd2 ӊºFy3% Ï/d9q}bY^*jaiB OWAJEU!RX,LGu=NJE0 %ܪ׈۸R͓IGF zrBm0gaaRlI l}:gIy# +jTK+sf/J?R'~6"zxYu΋里i薁bX’l LnmH8?SJ(^dRĝg)>mkv ^M̦'5'Vt*bRER-ɸ}&[/:O,dm:Kh .s:@w : ċӞxE+vlh 2*j2?!ciz8},XcWD3Qھo! r쌃j͏lg ۿи}h'qM>ocJ16‘by Om8'Ѥ Y^Z,n!'ٓo o+TI<*7t5\.DjNNM'9Rl7O/ZLx~[3^g'rǭ؝wau?dZ᱀[!>"JܸAS 5$Qv:I8TZ8Q/G-X W'_6d|%›+yk56Ĭ\($<j{JʨX(]*uQi~:_cr*ŀBv+ o$5B JrHYVOq} e7ΓۼmS@b{U|@A*#_.>=N{ xź^X^!O(ljQW@((0*vWyGcoHmPy}.*YL8sn҆-M^2e1/r0mq٘͹ܟL2DkI:G';;-X6pexd4;hdGs`rAWe0oĶPcU'}H!T'yK9DpdMag(kЅ@O~EPG}"tM%<.Ptpe`-@kK$.=GYm44ΤCO"в4M]zCn[<"ѴaVbĮhRdW/Bɴs^O - ݳ< ";3hlCr ZUH: Ne4SI0HK{{J$9gSrl?9|:N~}7c͆N0 küVIQu0188ғPN"nh!QcZF蓲iR  ֨n냨a٨Ý|7/.=ٖ< P^`pM=&!hwrrl [kZcL|`m۰}Iֱ5[pB%i~N}q*tf"iv8и[tY \&NB\j:#` An2,B-E @6={܇Į9=hd|g;% ]\@Jt)qN̗-0Ar@$nC744yU[x[aze,A-c=>f>(W {.r>s9%I=JwEec} (^ -<$:ʱ(2'wU$VZ½`aQC,KF@k\73@#~{xbW:옵4Ԙ8"*-c_<6ëmytG1?Ӆg!}ք?PE_BhHV'+(+%JgvxrY*r_6R zOҬo+%Zɇ>2Ar[  `KT].J6: Yp*@ wܷ3as|[#LZʆABk%He Ь @_f2b!|.`eV|{/i))oIߊNuFbO+7Oq3MOR?T\߫=8wi͠Ҵ7-˵< -/d_ A13lI:J-G]6da,uXs'Ӷ@d{uS\%rƈKӣT[t~zc>'a%lPg 4F'<,eonCE{B!6q6O:7O0glUM,Sl`1aCZļ;@w*utBT sʄ% jF)*w\sGɁC|2Oi!R%}wDY8jH pnPa{ho@A#7KIk۰eCbԒ!#9>nCciUEvƁ=ߐkƼX sϟ;]D'V&?M="F~nܨgN t&3)>?У9FdTha=ZCUۢɅ4l,%3=z"_.?h?œ8[&U.3w*H+W'$&9aoO;:FC?Nݗ(/ 1B&ń؁qPQ @a!:R =p'`M6QI{ n͹(y1d8_xRcs˃F )x ?ekД[bsHjOo pC@T&)!dpq|aՉz5KZf Šv r9) *;7+ /֋7Zu,H%o!<5o ';pY :B+0ilJ 򔊝8V֓o ,lzvG3)l5_!$vAl(y#F䡬P\]M:G!ȱ4h:c} bʼn}aa Ȍi@Jea&k9^,!qƦ#9Ve#4"P^i&Ћ%R{UAm\9X0Eоε+<P#?Zk^i~$*Vm{7TYQ$A& @"iL/rfGQ_rpWCrwe%/v{ŀC:5ǫ+ϱ. M3t~Y9a k84wB'2Lm۔w^5眚5kk[SOK^6 XSC+]peJ$3M$@lǝCh?>f1?ңѲEn%ӧ;^k N5ҏ@3k&P?\"7e8\e;c)9n u27Ѐ!'g?୿ѥpG 0%_ jnzjWDi,xHhUaDBtiqxz&+hI-/==kP<VEɒԵD4%Xn(EM5_J꾱V~>9GJb#n[~Ds',&%HhLqa 0dїB)jfрY'A;Y`o/4T焸.&5{8]|h6R?W_t^|G=b9$tTk➇:G >h8!R&LL/I_B.#}UǗFQ cdDQ&p Q74PuٔPjͺbr9D5zOHR+x34Sƾ]}]z(3`"Ax(֦_zkݘ༩ R3U+iQ#MS}4!460ι4ې30jnј YD8p WCg{of &qIkAd9HCfi'?>uRv谎SEEg+xj x+~7V].PQpTosWgmv ٝ-]rD_y3SշrG0x3?EY'.]`,v,u8Z-ڮ),[+X>^,\…bnsX;L˔75JyUlJm#".Op-:Nql uNrpz7L%y@)4XMUՔv~xO(q# Ɏ磑x}!; b>+BY}2{/H;O۱c-i[s_=-q.ƹ⡢}M1V%]GfS"b< m6dg&K~ W䱠YP\ D1^u]HW#3QHHNϻT5n>m:r{1?/Ç4W.n'}AVq_L+nڮZx= OmTVɊ~O " Jh>X{7kmʹ Ad؍7.!X0 p-5z_wAoFUR{pkHEe n;˄kP$VH}j|:"dV&8=K_XA[=@"5(܇`IoaxpU HtCK]4fNɒ\p1PEء<㡩\Lj~2I vUrn?\n> 7U屗^rQ?c!?!-gFD4F~D"[(Z_HwXj0۟qK2#jt"Rv з}3Yv?l*)N^H} 7]ں@XEGi6Y7h!WE}O#YyձUUnV\乻GN?-*|QvF\2z3o/Z:5 ~t9AEjN%3 ^L83 ϝ=1\r6t^k9ɡK"Dϋ+Củ4GMZ|,(yu: `sURķ)Ba gq;eI ]VjbRe&-ɼN,Rᄳg_gUXMF,k:ߡXfпEPQ lFʀo8H\}̆tzܓs8;c5l4vgZ;T\\1xGY@5!@~Ѹ"o *$f'UBTyDoF֍j'ٰJcCE"CŦv߆յ;,/͎u,| `Nx/v2oCl8g$V@ P-Y5//hajհ5T~jcBįعʐy>)Ys's "h3[~ 8;s-fS3uS/b4 |̗ktXqVL+k'jgN.̣;v= J1Me%3n֎NhW5&E]=4*%ڔN}"P/]hָDn/q=%B_]jɝبq<HcchM"; Vh?6F^QW򜀔Lytb_!n&A9H'tET&OK&<Ƶ` ۱wug;uʘ.L֫m̿$<[Τƕtf…W̔gj89"l]Jj7I>ھI!ş8qD`D_e%9C<ߺBW1ʺ1Vyty;BM6:"i[AUWԴ{,3k@}S]}u nBBPC_6Q~J x,~XZdQEHkȗ,'Rų2G=ٳ> jHBJJde9bo.~$f5ldg Kq_@yfm؄0nP'WrM5X"Y6ÓvcC,bdm,]lIYOfS5>D. 0bv"s}-U9?խok;/[2 G+Hrsr28tˆ3^YP@Chm ҲCx$?/]1=EwUC/Fʸ}MAen힥V2"}s&k QP`ak,v7d}DtyylU5'Zp"17=!av7N:of1uIVgۓސ۹v >K08-Ҽ(XR'Mt&>< X:1YpXN~(%jˁcҟ-8y?G&CR$KVrB 4 nv!]̻D,q!@?.BshL0VNkMizKCuSErW?ɰ:?V*|2lǫ[㿺~EM؎1=hV{E"}nDN}~ŬM[>"55enCVH"aw9O1ǻk~t:g:b,wvK4/xbKYn eL+L1<ϳQ.Lͱ^7KSYOI l F6F@nLgђW^9y{s|ŽZ2z~&f~ћt\oLv#5!6RWc%-[{8fB j)@hr3/M>Yۧ[7ۀ{JzǪvHfR<~;=PznkH@'YY<ƛm1k c*ZMiBj# 5eWH*HPv|B/#η4cxyMS7pm+T= m,i*7A2ȦOAm.[$0caNy?W<]`XHVayWBߌ[Hܗ,l(~ɱJ\*hqp%j4&Z|'R'Aߍx!ĕ[ltC+|c 9oݩ)Ϛ*>Rz$lܢkBT@T_ywׇwe+E{Աkw;ep8 Ckk Dܶ$*,B_v5P>s Q?/FKާ$5@x '"/e>SMҝ]]Q{`O0C0p :ۭ|;{u)삑<.QuRK2$cO6cuD0GFGc4/Wvf^_:0"bbHM-К#($y ^fe܉wOC nj.d3Cvzoyy[ѳ`Kx‰R@^I;boT~Y^L<;`RCbFBjvJߍ@aGE輢vG#g#%С Df۹x+8{OOo̳BTbm `Ɉ(Yn'?姈C: A(9;L]LfAIpI1['r,3M w63<)߉N&68Qsk;w, Ph;쯤:O(fG7+~(@>6UY'EFipm7%0D2aN_DR0=JbR~,(>G?zV- [tҚgG78zrլ]to >s#ۓ<0n][U"vÉEltkQ2%]enVQ<]П9D !70ebxD:u1G}Bsܐ?6w$DŽK~oZXWg SzxS-@XHFetg"8tV-ق6Ii`I+G 蟐.:pus7 KƫԎ L$>LX^3EG5tr˖x=rj68~v{,G|@>AXGT)j_HUY3?7DIuԏ@9R6ש46LիL.y6Bɍ~ SNngTxo!؊ >dDx L|ylBz2bl3ᝮ4^bGg^X3xc7o P?oZP d ̭xU42"r1F+S . YF:-Rj]3k3 2zWv3k/ܯU+hN#>!p>4 hNJ>e{lqLu1'ejcZ<ٸ㒃=vՏ @Q{Eb];zO#; m#26wnS `gMjIpy@tq&B<6F kFQL%@jt -mOOTvPn\V"zSO>,\yN[I?H9,J+\hOI0A+C Q\1:B&vJ4bsFm}B_ lP L8Rޠҕ%@=['PɏSg)ptwD/jzhl=hc#윒U73ʥB!Fve BY]Fbeх -Qǰ,Lڕ-O;[Y·y፪5$ ϻ< P,~dž NM/B|Ǚ#(DmRƀM{/5 q)@R^Ԙ<q[!mK}P5l-7?S;+;3;$Oۓ^=zN9,V*hKSzp0&P?}_V,B K F =7_ݑ_JkNhːq`\{XzU fj[")VfSm&a4(Wik)YlhH:!F%Gao!S,W8fsb)B{f^\r.  j[$/Dz]f5[AZ`geBjtxV=r0˽G/lnYKYڨA8?6-!]-bynoHQ_ֹ+RNJL@Ay̑ z4Gh_XɂA47QEޛZHuw`މr+7r}1kQJT]Hgig&O`2L\/K@44:8@Ϲ:R: /TjMt'VMCM2b֜Q^ԳG3(Y08qꮄX"xI08\1b"~[Y I1F q4G*^~]҄]xbG;fQtڇԌ?øgmr.TnXR9%xs89xO AgCC4,1 ܙ@ Vgkw5K>*4/N6OPٲ3OlxJu 6ϜC>O ER/"!AddW[0r]y5AiloONaƍawPo [+(WE {iԤ0v(/H"@C躭s#| PT3rm-D>)QuP9JsrYBY9{d} a-75CW2~r=M8zA͞ ^g5bԹj\i+9o"RV>0[rutDm8ZO{#0yŽ!̚rW2ҋN@:D͑=aAB@*\UX $, YsJjXcOv\C|w:vHDL o~f7qXSW=efVw\>ztasXï6wmۅ;tfo-H"QFr.ʽ{ҎYa\ s|I-8zBF0A2ع_"1Yrŗ,3gvPA#E0e`0 8v |ø_~&{ w.5NȞ+VEXCgdhaem%ppqfj&UP]bXn|%fĴ +{B+r^6| FaD'&2ʫCnjgiHٱDNo"{E6R,YMTZlJ~Y NFae/uT=q9H>\; nf,}#X@8(Q|JYv9.-4|:M|I}%Z529ZbLΨsϳd%{8^^(UO@lBoW=QRO^si>}"~lVAf4ܶҠëLSzxDEHCDz\<Dr$ ':qH,wVW6U1udON‰<*aLG Y|v\=+r K$϶ˤ'RSm'Q$P_bqLw?5Y0WP/iXsfv,P@ .)rʪ`GԛJn'lM̯u{jc.ݖlO^XDfAF' ۇ3 sᝅ{ʦ$%*\Hߙqp/Uc LmybR/Yҋ3Lhx,Sڸ_;Q^Zr*}#NQ>sr!/j_)jWOZFn1FW;(AТB넋'N}9ϟr4BwȰ"%e7b"uGN^4Yn&隁X>ZRTJ{9qDŏ8Zn-mU* ,sLEbyHMxB5~c1 m+; x\?E*S0 &O[rU!_Z(avRիy}}TQqD8(IQe)\:S %krHER_Tk(]yzh1<_%N&>2 "č|KN!=%z=%AMyDx{%id1lf+"n[;k3N?xb/kGJ{b=w{,ZwAwa. 劋fp+Y.ŕ:M qC'SO?7q ]x=kw_$ic`|̇Ir~QS1v> XEpWz1=LOrvKYYwʂo)eR#KP'Tbk )9jpvLh 1*5zQjto)Xi=haӌn6ǝQO;hl0ik~./3SYJMJZ/n,QuXn|99`$n@KPxex>ͰN^S]a. 9H޼8߹v_1$%&j Iֈ`h0H.۸.hRH\La} FA(#O z88" Pq&$9EmRZ:ZV1d X嗅y+Bu)JXAwsY:+ݮ*%me5,Ӧßv ^b9*svi75٬qThQ{##Kw&Ӝ3\M !_,-j;Q=Tʓ@ { 5cz!ȁK8R53lEk62F wA|PT:A8CE@_++@]ʔW!?::TIQoд؍mtMʧ}#{ gH1N%-O5X ;(cN`O.0T:oڭ̓)5-_麠rҵ/-"^p]|6"g$c:yKlzZ:GZAjyxND8'8[M:bz 1BnGt|l 25_/gu@농G_aGO.YW#5E| S!]S ߸b7>kuRJxAq+4ʃ 췝=Tm7B)&D!u+1swGf ]^TQ 9 e%?7/`Lr+čL&OsPĖ~9pͯ Zw/*:z5OMɾhP ݈[Zcmma?]FIb44hM7zӑq,K9 U9!I &0ynhd .ݻn;=u'_0zOT?сŮ.| wJvf\Agqj1ҏ7ub}11:B `Y1ڳav.lwM{FM~| Um(nȿ??Ya9f1{* NQsaDȎRGtiG[0F-/YV`XK1N& wN؛}e/O/i8G6׏we@?CXôa#řoG?f݉$ 33ŕjoH V*ɞv"zYQ31d淌+X6NQ5ʪ !Yc6meZ{LΕnH?wBSSI >Wu$6zΨc;r":^ !9cF ;-NגuȎh{ߊz6%trfFrÂMW޲r-iˏIeyEXo"B5qw 1]B*JԲeyp `?t>M`Qk]DRw JunnɴxSaQ{5wd8CoTn4Hҫx&o%炛 [:Oq1;#ŸJxPVE)a%*됗 L . 90?JxkZ8*c%?*l/Ob oAjEGZiY8 /\y 4#YowG kXbR`j-m'/MmD7. C *9S>cP(ÞΓh2,hrE\:_jEg|cǘg)jMb,N4 g;;\|b!!?kBXQ7ՆifۼFU*I`oM]8+R CWd O$¯9jJơ:p:m_Kq7sI|Jc1ƴ77*nH&`Nk-`c'#:baIyU>ltU ˪QA˒lʺמGuCG,bQJe H6 c[L4Pc{_g4:(+y3tK_!_C{pGB 6TJtr~*SW`  Uw֯jj 淒 ہ`hª zg#&J'ssmUp&n|G6Q o%o%H13')j= 2 2qI\e=n `v $*36h<4֧`yz)ALv+YaiR%Od5Ǯ%훽- AqVE`t+LsQ GZBB Ēh=oWJ&6-ә6>6+pg 5[czv`9Gi֫ib.Pp Zy|_7v~2GvJ٧dRݡȧw,^y(bԂR yW,@ڣz~.g*?F[L{ό8!2/%E7çZp5W瞸FeK}|Ԕ%3=O't Y F,R=v#7.$:>_8\|:ʴ\ 儃ymJڍϘcZg="Z51`: g[<{gYhk_פtJR Hj*HB'@nA9n)]1D0!"/36!<>4r S`JVVeLoߑ;go&+lKPvWh;F&I9 'EbV!q|ث@ smbycm|UDx^]v((Mc#Q>ͅ.s1RPZ'ujs"v>;Ҥ/zh"{04U[-ܬ|Lٷ>\i7) ݓZ Zb]$9kBL- ]Ϡ0\( ι}DI I[iD  ɋ.qZA& r DԢ U@z|NpcowBL)b` 9S L~⡑ 4&:!1 hwD &o'6ǗQL܅;jsk32>gy`ډ#jʭe݄yx1Rp ORVY$cž̵ꖮ> B}M#䵤^THK 62'U,+ 뉥S,/Id#s_OSq7{j#{sBd%ܰa\LAUi(6P|,~qz8%_;T5uZHg~5[Skܖ?ZN69%atK|?C*8E,ZqycKN()|(!3;W4 gbKi3-H8u؇`񷔶=8+Qv#Wj]#T PK8"pHVs%VU QkA^ {seG:BEޛm X'4fǶC~sB$ڙm&G)A%ZjѮZ()n`' Ci)] CY)FҮg$GWNl U򠽶AzD)T"Hp"mGݲg[&&I[W FF = IVIU,[*Гw_$M+7|gjsiif< Z(!Y!7!8,#wn굉㌣ 3EkSG}P̎lQo@Y.Ϲbȗ2PiF5x?x)܇'z bqzw:qS)\H{Q"wIeGWy҂yy|5`Q$<1 !. rY<&w]eѫ :DZϻ4`p 6(fŢV \d# ,_eJδ<%Iz]f8~9 b[-$uS_xaK&o&8fEZUYZ9xXͫZ& *(E_yUC1x20ԏy\ݶnJ4;ѹA#xqn'%2|6#g>Hw]87Najv*p&ꢉ TmG X` MRT# =Fy%tKh?ynAsI=b&z뇮MFe.e+pU<_4R$ b,d)PMvgNLub$!wHqVD-b0^sF> 7a"ƭ3a@(ygm29i089S֋雌 KX9`!Ki }Զ Bn0kE}egE6Sqs6<7@r~r@0EeZ%}ԟ1Y9=|G\An8iTvMJ/ݩ'sЙRJ ª\٭?wBW} C? |;/IABFjqjW@ ab(e2TKBʀiʳƇB4FcrAe#o1c!i&vjYdcF=lcNI%&ʇc&LߵA}f>.k >q ruD~}|HBؠqBVd F`s>p⚡DNUԞEE +2ѫ CR(0iwǚSI F/֧ݍ0 \X&:ֻAM^@q2R FGELڈ!\C b3AEHkI gjoHj+ӪQ&1°%Mn ة{ܖRfwH޻? =)0q&꽂L=I U׌+}K!f"' .yH*7˕,E/2~9.F-H[ ~ї@r,[.E\DӹT~4HO+/"x[_̱# x\KzꍅٙPNvKէWLX_A²i ۪bH=cc ]R T%CcT'$I(]7ܼ-~+A++P'˥GU)W; iI^ VWw_ɫ94\Q9>Q);ƛm^|S34y(-&9{^ک&w#QxŊ8A' r Eu"vF2whExGNM (+(2p\!ӿ_L!h#iT 4kcDZs2ݫrUgyfHTX)puO<,peOaAE2#Wd=ΛVUNK38s< k&kn>\ABcd ƴ{|8)ĴYhA3։ܐ R^ˇSPL&B_0T|b7RIȬٞG02_~\/WRx,h絳aߪ%J\% XEF(\Q+Wo*ꊁ="-۞vh(.b{^Ǚؓ0DD~0Ұ71@OڐUUAJXxD9k77x$i]̰}`0㟠;K3o HZ`t4=]\mR1Pn*F;ގ[|u|͔ lI{|6(j}2cr{`Vw h!Zh%8b1 (B [3'iH hjpԶ|ױOYs9(MS[7xhg$Jp EIpPrMn|<𖍒e^]TysU.*.1`y[-\h.U2p_5?G[m&:rw똶FCmfØ?L;xX#Z\}LBG?+SHeLPX8nF4#)/p^LV'| ]]=1yuB8j*߆-z #$L9ʝMt?}x5:o G:̃Df`i ZCZyѹ:҂K_} E 2R"[~q5Q9[%,:g9/My[ogX#l+|50\c𷊥Ua@?A*^SllNف߼H؄zf%9|+lܜ!_OdA)3jB:!+3=to[v;vYyԬGN>P4qGlxt__e>/Q+~2pO!5 TlI7y_¤/Bn7b1瞩&A:>v >O'{4 ձv^muS, J5`vZmI;=~3k.{g+1gA&!fL?2مw@dG9(AĵmZrQnTf6 Hy"Mˆ||mf  ȼBk!jIy (W q-q$NzDl=֠qvCX : h=G3]ÕywYlor7s"9`qϤe;1b+/=aW 岞U|"kώeאo 2#1+2UYJ}fq/ P::-S ϗ>RkDCrzRE18oط#|'ȗ~8=|iB)142'`)8Csa[sZ&C|~wp,|Z= ] 8-//9*(b[zq^p΄u=EYz̺ط! 諘I2<]3nf݁#C4le)$uY&2X1]SS_,TXϹxpBr̞O:Ȟs]mjB'C%tAڵJ4j6`[Rk9X)%Ml̀5v/0&;ɂb/PQmJg>L\dݮ&ްXzL @U Mu~vIx!I-?n?T.nJP&(6?rɟP8s2vOq?[j;'m'2hWs֧ ‘߂?<ʼ2Df.c[3D&Ik9>k Keˈ#k0D X,|>#?"̕Yz ~:gvO|'4FH'Xr@w#S9vKWH0P!izuĈda37ց5aYi8`w/v=m+ U7e <ܭ+2ئy!Ѐ'XmZ TJKuP}QO\wP9k_{z>RM\t3Zɬ&LZO:A'Naz)J) +jSNeMx è{a9_u\k`#o#xʫZ3~!S+M7p*u؂ i <\ A Ö6BcY5B du? =L!dcQxJl56g|k?b~mxqؚ  ;Q.l ;AJyn_@Ơt$o-@gzX#<7| |"WߓRo7n1f"2T MdqsrB5)sj*NVY6W N g 8J@rإ y#)o?lK=<4DVrOۗx1Ez4DkUsi%ځ̏\S8ux3Hx92pp)!~m>*Yg(&Dߐ +)@鐜/MZ|Q?)}r;3\Xa;l>P1ǺW'ec ]U|Qth1;6qXd "^ ;nWKg勧W+6k#~CĽ렊ļyxYk86*~$#/<NE(?uwq'Zb6 IrɃ2ɃM{([ӵXSwtZ֦"RVO"gmBNƏQ+l3ZS`$mdޣ7\0!%@`31q7틁&Hi^gޓN| |Y.M<>BU,=Ƽߦ[u|-δ4Wci,)Zdy4[*]2CS6E곏Oh AkiOPŵgnc`@f85\i0c⚕iG֟}/TG7o7Z:ʙKr(+h>RDn3"f zqձ~4l9H!:[W A]&̓b:ՑK}%zAIP>=l3w~6?-"m/v˓bz=-Y BU)H6*θwD=FJňeBS䥕[~5LR_n`>=۷Sݰr,z8g[í!3p!_IL 7`%vj#'e9 _'ԙ!Ƿ@+JXԅI%r4u]6LjQᩎ 51x 1ScOvJ.Ns5Ն؍2|$( +g9&7۫ l)zf*3QS~Ln.Ge̶81"ϙQyl1fZFd<>FXUxzq g9$Uf>d.ϨF_6 _N kaK ]"j\!K_e}J5\J"MPm'Maic36,yb.sg$(H]BГ+r͛FmVBvՇcvkzn3I?;V(9Աjύ4KPŗ6 N[jSߚd,Euc؃}Ph-qߒے*ۓA?No]3rQE(mz'3 hg{BՖ V+ibݜkLg pKn8{j f)3 VЎ#@aɵhM:' R<UVNZãeJ qx>K Ż#匢8tm&vߔKGj0ƆCmzAuoYAs{1Z(ⵜ65m}ܽMgL7}+Һ8/#&ha/ /!Q@t+Or3!]١ʑrHf%1j[)FϘ.@ۚJdZ`˖/_/ a̕>3|naGo+,ȗNd{.ze_= ݕjPd r$2S_kv$Nj%hU(Bs3{KVc*8~YOQ`P=*#sư31rnю%]@ wBœ!mY jv\qԂ]@읳80z9BQѱGjEr۾Y4,݅`0|a{;բgev)*?aU p!fC>@I*M^R%/nj~9XI78gɃh|j`fmaᾦX:,ӗWfO0F]AvB [2-kY,/܍<|;!yN=6 O[i4WhKHmA.μHgdQX6% d[%0X'X,t mxŇoVK`A"3Rvqx?A"R"惋Pr)ms8~-V3,4`44?n2py7;KI!VH{`=}U(5gt"IAYoMUHN ^47k|";-FRF\nΖ69+[u}&aͨ8~P0}!N[Z 0JkU Tea :Eעy[`k1%$uOۺ3^UMuQ@8e h0~6|wU|Now>9W<e h8ӱI7?-?;3LO4,-f3AAUkRԺ)B<來U)^f.bF|dm?3nX~pC]gd(|t,!A=ƱZn<4r$# z (aWk:* Pb ȡ>]$Dup 7 J4\*,KH[:>| mQE 'P>w4ݤ4dS1;%UHhBU4sOkeqGSZk9 sX36Jy p#T&͜.؝pJSڌe)4iCY $BpܠY`0q_ ;wk?mo.QnУpZ'x&K9Z mEdB?)ͷ-S/G]`5~Z/_w[1b9 TԤ,ط&b4(#"oLlՄ a`[M "ggp 4gY̸/>jd% /px 1 z&bi#^a7B2i~ԋΈ~ s_GFӯH(KU\#K -)*n &k+b<nC|яk .}QhLn|WE~ezS,yu*)qK1II5Ҋ۱,o>'c'mTV[ IS?-T+##@ie$3W`0g"i.XĸހsؠP*; *@(vC߄}Cz:ݢ$)*A@nQ8lӻ+9M34رT6J_[`OK.HV3% >MWՠɍQ ݩ %˛c|LK`:$⌘h^lz"E@"(]5@rb360aEs,K@?8dFI8#5m݅KM6LecKc]9 ,Ov_09R!m!|IƉ#e^ %~.Z^ڰT,37U3|/+WsUl5z+L}&)@&AuWR0q oK;=p`>$C`:3_j&Rcf] Py]JK(~N"TfG_Mº Fֲp$*Ɏʚ x=JfwWґlOm&a`gSBe#M# =);j_:0z1* 'T4Q ?Dk8:z>Gv<'ls!2wraL+F,13`fNq'Zߟ*-KrJ^#_E|/)g(4W~8A2B.`N'-;6]誩9SI`|\D Ϧ>+/K壘KT@\iNq¤ͯjǜYUk;jtn0I7^Hf Y ,_N5Hf2ɥ`CBѢt;4Y$'_?ETq*k L bљ+~od3Br ' .<# zcIFKAhqeD(&<P٧k\8on'ʔcf uS),hqrz;P]Ac⾛єؾQq^kÜT`<7 Cb-*/5NUR7'LbL S$y;VQʉ :7hꡝYD4>2gn7NQ6DVTp!ЧbL1:H`?~4<+,|qCA;*V,^H{0m!'P[v=Zv 2][VC۴;tnI|Ma\6`}DTrP(}kT{9KH2Qi_4>J,\d%͆W Nu|bs`SK:gl̰ fBXڛIʌK݂ ধ,O 5lE W"7mJɉywT }0J:aygLBBE ( Tz@?t|`l/>8"a& 90ۛfߐb<)jjPYD HP l0{1ԩg3*T~ |G'Ul|FMGjJB)RquEUWPR83IydMޗ !rهY- x1Bђ,VFhfn'+ukOj֧.D]1Oھ BS$ӱ3wO٩ah4f5O2?ALp/5juXmsl4-Ue*.*}}W]! 2SAd% m_l ]Qsys#]Z7W@LiIxY$)jyj XBcQgE>g˒e"rjB=eL+BnR͸Ǎ<^h,2rԝx.epW:Ap܅}=ew?.G`<)7uaȯs֣3 O:[XW0}R(dFGa10MG~wZe<[̼.;a}` &Z\?K䉐o.r׉ ʒ8 H%\>R=r h%S5~{p-#oF+]!~=9t"-߈& hMI ZXLGʄo_zj؇C+[K'?@xM# ޣ߫H t2 '%`Fns^ RWDL]E6fCAe.*T_DŽ2fÇiASŖ94BΫ s(#Bj 尢OzDESQet)Tw*w }߇wHfb^G_ {UTXpmѽWZ0\H#]1^M H&?;4̣JcsxÔ^ӆ!B%P,-#Ғ jz2-'iv?F*4arIpp maB'hGS"Q?Ԉ6Ħ{9~.0-ǣ:l[i݊a.B0Ú`䘣EH0Uz|yB|Zf4,;cV}-SwD .O$7\ o,),$v](&׈8 7,ßR>97X200g8ӏ-]yBKr '6߈g앋њO"KfI֧:Gtc#J&զk-6OTg1uXGBICC]JOS8\H4!wXT֙}$(|u5~>FMGq+_C"k"=ᖇs`Wז)):Z$ert׭kOQ֩>(6ϗ%pRouJTSlMpd16-A/|ΐTll BW}ѻ12#HfF a_zATL(: yVCd5Oд,,BNtc;L"_ M8͝`|]./k_HNv!s-,$-ϓfFX oqE'N90yDSV$ WҭGW?.ִ\㭮xvOȦR15^uzcAs Zx#]2-& 3z!x#D*\_F .n&>bE蠰.pRu#oCFu. 9@︹d`\٣cV j6kpӯǝ~e͘OwgMqoX8p؈29Bf8hgHC/-N,ei4gd)$v0Zchcm r?d Ô Npa g0ExAÝC禅=QEhV!0{]g:Dc\URɚ+zV|,&y/kW.-)@HI/t3Yfpt/sw1̡c3>'A*FRDǚ?xJEGVpۿKJ^v4zoo>u9~?כ},;68Z~:7#V Vxiv^EDq5fL C&zS䂅xWKR"<, Zn !,Q7zr ED*&j]Y'V*Q&UO/r)AϊIocnPmܰ\lc 7A2;+퀓l /1mL MKO1QO&Dn?V[d&t=9=7:$\1d轭+fKW.r\cuPlg<>Yzj]%ؾc{ŖPH&SH@?c:Js t(tCL XUP* IJ+>aڟF>y.3N^V:oh~G^#Uq,?Y w O<>wl&tShZ3OksjN-P)m?R)g'/!s%KPfJ&^I[-#Mikdxhl5$/N1!&j0bPu$Nw[B1H9*[Z'XL|\>Wz-L'8]^5b ZiѻaJ^kq/ְnSI`á89+p+ɪDI)TA'` ᤲֽq_͒81GVrv&x<#W_RsYcYnX(CAKß,-b {qxCyLF .$uOʎ̱=nȨzd>/-Gfq?`NTDʿ(#HbZJ䫯k8l$ xou=%1*L!^4A(pwxR' SDc@ch+ZȝàJЍH qIsge4@[Mޓ^{Yrv+Fdt%oe!*=U't2W'aړk9K)܃oir&%2nT5 U{2i) s;K c45\iF7.nPr64^?,Q(6N a92 h*fyє2 C'/ D1ʛT\/"gl@e"q | rbdcӝng9r?9D#iSv~+c=/d[٢i#]%@:-XM 'D;Q |=yGl"dkOBhDFpy[cꡠUYm1rnU0M\ǸӸ7cʎfE겗[k#1;êZi4rnZi*@_nt(hMEa]4bHH,ض?5%͚sd`4\`~DD'I;A(7bO$t Cmfn>HqRߪAy̼tVq;ϧ;'ep1FQبCbW:G6/>6֝DkkJrJQkD\zC HW^xA v6bYe{zJI~˹o5`FwP줽JeԲJ/aBHyГT O+Bs -&({W AIE.WŲI23gIpC]3ߋ*oVK!NAuxkG/i .aԩaS+ FLhT5PA?KM-(.hp[D)KiZoH/q-Vva3ieR 7/ RnE&' 6"t Sr_)hxCtuRj;Mzf{xDZOc0%H9V!6xDP ;FOԃ^$ha .)5ɸ!Έ?~4sWO $=NVKD5ɀI+[9(cNhgZ$f [/~.IOBYggpI7i4 @'TIw'UNfk7[VrAv>M'Ʌfb~QCxPfڬK-dcO!yLx LgSv+.R:[츂MZ8!rj@̏mDO49RHoKd,GA1y#>QJ's-6Tn FŇ'IgrSo s{6)_`]꧁h k[ :'LB⢂5\0^vh3*BtkmP5 kS1߫!9sTb1Kv6zO "ux!'I: I:VD 7]6nA0+ӉocfQ++`0pbJ.S5/'ظ tDŽQBaPPe%UTœaԃ $k%qQN.f(.:赜k `'^D| ?"tp^玏 ;v17 3' F- 9~=^;HQQ#7X.=ih^g63iYb􅢻WÏ]tvEc2ྷf>w _yqZG G{e—2xkO@坟y`(y̘-wwQ6VaKzpanO 60$բ"K RFq8 9q.nxI3wY@=xf젧,iB?c-PNَIUngzSO'Z܈]YY!eI1|$ʇ8A&JpIv{E95"&1`y9ˡ8#_q Wڣ&]S.m Uth{#+1lɥ-Xw ӮkZ9̙$t}8U=Qaz%++l .B D m5"+g~q#dG4H0TG>Í 3%n<6ʬ>rȂ +޸UA^S{J.Ln!l};H&fL7TBcw;?Ɩ8+2HK񊒡)>NdȽkスхh!n P{%1PƙW\In2z>GQL.iuP˙hOnxNO A2Hkպu,|_2ɢc;b]aogݐ*iȵEl2tgwt ّu;$ii}]F$ﺹ6:abzmXf'iM} e 1q ʌw(W8deXt/膥*h ҙv S^;;mJص-2cft}<ߢ۸ ;6̢hL R:;ƔL^MQmPI'<,6-2evTL ;Yt pRZSK|("oά"INѭd9%ȒiÓbz]9H9"CNn:q܆TDh}Z+VXQ৒~ O&N|4cY쏧[ KJ,9S-Vay{S3x7/cNRFtp7nwvM2I$dgr61u&tZnTVujT{H3_ Eolrz6~C.Tr:<)!H 3AtHXA?IeLѵ<~wR;D+:Mg+.hQjCoqpO;+r܍ގ::CtSZW-ىތP~&saqӴq4 CGU 7JʻLl|}^v \ÿe'va<[/A$3m]ޟ׆h>Eʊ(C,C2ߤm\'/SH45 N؎Fk s t ƙ!KJ]yC7f:d4"anmXF߰C[B?a2 TGګ:%rAA d*s(5'd 8!b# Pku3Wlc(Fd.=M>@W&O?̦L~g7>k'*7/&s>2΢c:۬pfBlf>A2"?ÅW  *k>;VPfhK  prnV~QCn*mRD=j GbC|eĊZTפ{Obtmqr$q q'vW+ J!lf>L9sVO}'4%}f])hjDbZU:y$?};P5RC ho$.&䍷B<))Ƙ<f0;W 2n 6@q]rć46ޗ#F~MGm'AF&P_p_ LQHh%G@vKc\8dj֫ ѨA4z_ o{Nj1#3b u%πP`6a"]VV)Q^DADFT v_‰tc}Xo8yw#'8R`܏*m{ iO>PnyF.dw]+ߊaqti^T‡8,ٱ-*lTryAm&ON)bLRpXD~**b#ҡ&[\c|LPЭ &珸cXE&;YnC]Nqob h`1 [:]9(tETt _H֢rɎK$l2B`uie |; ￷SVvޚJ7GrAI2ae?inJt޼GeʹYd0&_U/y, $Z>ܱQBYeFI(+X7֢fTY  (% 0|sJڨ%Tn@kRnV%dn@ߌ!R5 3Q#ӪB[@k !\*e -1;(*UOwJFz>%3?Aa x^vu18`ܣh2Ώ>3 $>y8;0N%6}hZ^nG)o+4j~yeÓMb5&J'jr'c‰F{ &QWՒcQ@JOO*,YWXF@[ "YPyJ\3ψ= sq7'.Tb F2Ǥ$Y6?&r"7{Lh+9ʩj޷~-*xYPlB5 z #&Uu\N<IJq\avfo{w( 뛓G\=;fYt2XF'glBh#G)^ mjvԱTueAٓ~Af 1 3 +@˵ŷes3G|h; <g+<S>|YסM.KN˃h#I8?u ?&FސR&jt\b@d܄ z?^OyF{첒}$(n(q){^AǶ@:\ Z\.hc|AXDyJMS]Z py&!;~<5XjǪ,ba`,$coR\% -jlC:#H'.:%x;9ÄCa'f~dl",Y$*4މj3$\$+bj5'g.Go!CXW4%]вέe9f'E%&/|[KIt;W:N&6}G|HiM,jr|=?"j,"é]/uN? v&~ >tJ)m/9X}l{<"o5LDR?uwte 'DwUvHxԖإ@36kn2YRBb@s4-@\ C.DmƩ|ov >.=Mq:E@⣔StsKYPUth Fq]Cີ\Sz8 oM)cѪ빺 ;hT Lҷj'3h5HV_+e/UW#/$ͫjxk06Zl-iTj}tJ-(#D}>"EpDNE^8 *K[;^U/*G';I%&\g7SQ&[$O+?<.b&njdnm6/P^ۉ0n[cM D0^iV3ЊȻ<0B jnhS,훼.EMA ` @Iͽ:$8m gîOY&[g6uDtR^žRM$.W~ #1N9hr֬ZL]5=O48Rkb,e9Dl 0 u3B6LU`-{ٛt~N jdb12N{ﷳEWokѣҋΣPZ-D[ "LےỈz5gï5DDŽ^W!3-oĂ՗*䤄R+;?sTِ莲P)mugGvoJu G/@/N=SRΣLUF \`4,㙯|˱x .7Yz 1-ޢ i\8ņZ7=9^}ԈSq梙Wb+XE=cWyu:YYn uR!412 *3?nK;WOV <.ŊLkzI\M/8t!G ؉$a9^J Nь#]S{҆ vG7aݸFމ\}MX[53q%n78֑%\eq }(0ITZm˙üYх%/+ Ggvitp7P,d[yhd v>C E#xbܬ>&!%_٣eS\a $yA"sػ+C!mb@BShOТwcuĖ⤀+ytTS&w~zO%?m`~d 6$R%^,Jtܙa ,.jB~7|RId˫h`-|<#M_gkaU58d :Y`{=f_BY.!fF!ֲ' 5;cHkRޥ8u.MX[ PT!\;Ss0Pysn︈]vlI(>Y)a=+C!>V72pVT `nw.T 'ey>[خ^02*43 W zB? 3c.hq|yQWN ~ 3P8O菩Xl9du7beB0ds[ŧRݢz@F{-3Pj^zR̼lU~Yچ"Z8Rf[ܑqѠIެR1#|(91dT&\ku-̆-PѺRA>JŁPUn؊ 2u ָxg #et`FW/_MG.X8jBCp-WUrkʆYwyp'":n(&/eK7m7؂ƇX֌`AdP*mOSkamcIl] $݁nz2oR (جi9$zC0(E{U_!yF}([=li+Ù]IoQ7ΰa,{ͬA#8*uRC+:6D?_ދ}q!u\@~ 2)@m1ƞ)wBH,O6c*v?J6,u{<A؟uzoBpep#% o#yѶC[ԑݷN:K~#оE۸xT\pfRMMw!Ne8yy$@&Mg1TXϩEʚĐ<n p# AK{?tڶꭌnAǘ(+1<_捾/=`CZ֣[[F#쵉h4} _c 1tRCZ$Jwv{ۯD` |(CYҍS ܹfYMp;b^86wr'.n}ܱkt~|tr,M݋J'`V~o6G浶J9!9<0Qs#Z}3; |@[YBiq賈(+bI@Q|/Kq|p/ثD;8GvZuxN=o52ξ#J|C5u%e6۫C\pEaؚ#0fTR@lNJΩeDJJ oشAOBϱş -Dƍp ^Dž!L.Y(˕$E #6>Ȩa,7&oIcxIi7U/qW@:YČt=.9DVt埈jx !$u۵/,Eju fh ~Rѻyr ۾3Dv@La #<1F}#q,2r97яJUNڗjM61UL%8uЁzat?@xD|Y^A$+80E~ غFaEt ;E,G$:B {''e)H,V6_gwMZIUlo,rB_??S;Z2>FIJ/+OT#Ax'_mNmZk?Tz'bz^GU7= ?4S*b6Mō(Kne)}pC&]SscvIzl,kt~.gCN+%HTWӲV bd;Qxc}V )9GXoMŇlvտ ƋF1m!S ̤`!uKD%73/uJ|+T/i[XB(g1oEͬ/MԨNBI E7wjȟ+&Ȏ)T2Il[* FVl_ O`BJ1A8i%&IVKNSfNFG.>UUw2?s|°~3'g˔uбc2GEӠD U\˅"3S5*Qu—lau 3Bp2y Q4>Eԉts`+95"n8`>r¯vD"T~tәY̴e)ſF{eOjkU/=aw⏒cdeۧe,:tԸch%q ,_ 0 iGw5}`A/˂8h L>Pz颳׹7snrp0L#Ր~}KXڎ Q:MOe֝ы܀.VBZbgi{h=ǑN*$Syݗj x&_A*'?t˞ӹaK!\ά$=,1`yoPA5KLol('[) 7u;>3ЙV_aq^q# }|H - BB2hGD@;7bw~NM5+rҿeˊɐ%1e%՛n>J&JNc5P;٢-(K!Pw8Ը9ᜊ3.RU6t2U{70e+)7vS&ʩt;4K=8$w4#r3^_vE F0G&8(oK}D*Kz6L{cT @ɮ%J% K2œJ_js_5}ZVP!rwRl=⡠ܹhNݠ`b (h9NQP'P3׋8)=kFF);)>lJeX'kN#s47H/\ W -)?3Jp=5iB;zUo~ UGB#}S1ӫ^ݔ/ B^g=w󿗸 /R*,}{Vb;8|:= Ϊ%R?ɷL 3 puPeE6PЮj}ф˓BqyMH5xϱHX_p6(lܱ8Јg}ҷ~ j2aFVfyftqVTQ{\2u3q5屁vtb"{8hbyvf^9)]W2߅2;{q֛cZY^L7%R!f\)v]qJq Y* 10aF>o7%Mb&q~T҂qm1 3obkd!B΍@~ת!K0|4L#Tq bI!,[ia_9/~hq7`.7X{cdRs6՚&T9Z5_ S"= $$ʅog^l+ܚfr&3zHzhbҫIêziSWLF7scX/ Z/Ͽϰ5zC{wz,~` x(ByPݢ1}qw ~|pc;LP.f%/K12AK_VqC$6sO#4xwia04ďU]h:Ɩv ЗOM)J(~aRڿmgN.SK k?v 6hHWW-n-i#QWiSojbyYRdM6 ~irC' !E9pV#!}j ^X>@犕>\Τw[T?Qxd DiQ #A UJ zٔ\X@MBQPb. +r ,OꟀ0MnLÿY.TKƿq"gT)3nVa}A'&*VK$p1(*-\p^qZc]Rx}FڌS!f]si͸7Ŭ~;^3T{kzhߘ1j~* w'\I4,XU|kerrhڰt,$렸>#Z:'eg:kLY !JQ.%%ȊTfzoBNFW1sWMep SB3bXzVoACctI.f 48oU416=6ﳰe`X45ϵeQbkz@wvR+rv`MʡnZmɲRT~[/308$w鿌h& O Hc+J$U;S_E#_Yz WGa[ѓZ`).OQ'6٠bo3o,UcuTEHSbW&?ɻON3 4?'YzImEʌr3wiӣ\r6IT1ؾYOoV="KwaX e|XŚ4ceR;G;z 滨io<.``,zlr2tBanYe:F`X"goav'pa.!R}4`l=dįMQRo>rO,!Rl#aKvRl_G\M_D5WBrYa% |PX8 /zɷjyDf!|7Ƃc ݫ$(WT@b$q1h3d4iyTeI4o栯x}&udGE(Xێ )1P*N&q|679]ݎJ 6:/}m2 ƺJ_bY2ۤ(&vRuy d5F F^[6KDq WgXDI,̴RzCvah)3ǡWLlyfn;`Su/qo`$0G: rI 6ۉXwKlekXAʛxV g=.N*{V #.[N2q +]=ONk2ņ_zu nya}73w^U ;ae?:#^/ ٨Du?>֔KM=PH~54D~q$A&\ bU| y>z`wjYp!9qp̀;_MӓmC)aӣm:\⢌E~O6r~x-U GR%zqNc!脵 .b1P珬W?B p4h$K Rxib:Ꮘ};3)ZU׋H*zZPޛg"`v*/$HŁ[~ \lꐍ˘?yEM;~`yrSc{m)]0Ŧ@s,]]36++x>yqtEpW7dd2u^~/p?0:.m <GN8yӑa>p%B] .3?|{szTcN2UmYov2W4B1qaO1rc`Q4zh}tB)t-;lRpڋf}}!:D{[e1Lp,Ls2@G6LCGUMoHհÉ*G~ 6IKLI `UgАDX 0Fv57;ڨ&1#QB$-{yi#0.Q쿞~?)sIrF:'K{&,(lV)5;la[؈Z9NfFmw햍H(]Rw7Xʘ :ƞb{=i^~"\6u V!it'B(B] i!NesQw-0yCSH# B |PW1-{ zT>Q̰' -FWAI8_{#E,,&ZG y~ȃ׋tU%F2\tLn)}kn((&+_"p~&|0A|6mgһvN眧5XPr αߌ91 9@FbBOV3ZF<&(P'I'wbܺ5:dc/< h< HyTPx"kŅ0YEXsǎxqj b CoCmRϴs%vA?R2P)|8{^pʔ 'c!cwu)ΖA!Q;N p̾15kXwL .[q5`[F?Ew5uPȑO;O)s{MWsohդ͢)sr&t|/ا+ P_u:gvH*۳!$$xdv$Z]mRq :%46@͵r${{e-c@YeN&q8 xq $Q b Ob581av2J4 + FR!]Y`qݰSI쥃c#@A?@!%2e>- rJt6ؤ 5EPMT, wyȽp5فUdFAPrcCR)nEʞ{>"4l,.7tܨl=3@0 ?--p=dqHc{<3vG{Gbø*(({ av~C,JOegȅ!V'[+b\%))ӅLfb>|/6jkɷubPP1M0 S9V.nD 6Sϴ2bgf#.1*G㯩hGb|ur*- 6eWry}:;ʤxٝ9y 5/Y@eZyju/(q!9` /P)ug:N/ҡv+"Sg54N?&nұ>ri=Džȧ}OpIu?[t3\ke`䝿c;C%4KM=#SylX?jX1/pfs/^+ 3 #)垊&čˠcXų4A0S~܏,2JV Y!2-d'Q UvT)nZFXQHr)|_2g}jAQvZgi0sE z4ls60 g`yV1mׁ|seX."{ |+`#!QgNǒ3HWK."}vT*;mbaW7St@#)4Nv~J,\:q#>, qJ%To0+X)<TA{{.wsX,1 ?!UߜR)r-|q 5Tyxq2V)$xeBH ]g3 "+( G/lKY3ڃv-ٕt >w+ɚq'>4uY=N9yƼ^~ TDb0o%0䧨dJNn[C\(wTOܛȝX&7]$^U&D;p]/k&XZ?c |tf uU 2?,F:6@GFNFr ѻF'1( Oy 1D9tgPIķ]9sJB Wz TjH3ԩ *^p:)|0R;7g` d K41`΀}{0y(oA kq!‡WAR?l39O337FXf U5hrGXP6hi,BzO$?LpehJ7ڳ{ 1a~!/fg'+9F~H+ZQwyU_QIN@  *gQD@2 (WwKFޤ_5hXݘG֥P{NE]ΈxLw-tH͘ |Hob nZvo~l'Z肂C#1? J` -saW ȿ^俁>Fğ̴QN 4WXԣ{5b+nmsz?F?AJ pijttd} Y++ sBKUkMAŭA z3Ўh3.t D[/GR#4[Rf]n-P.^Odn4@)dc뗘a/imxzlDZ$,kZ0<:=/&qduΛiգ 'Z.-^˿4s9bL.Ek/qUt1 y%v~3=w JQgӢrbm}|(;}},I-Vri ۷ӡask0E<3ԏe6Eی汓DL%ʾTJJ7>N^i)OB9hGs>~0a7T ݊z<Tπ3sHw !~L=vd wKT!!*NY = }Jw oŞQ=yqeʒ.IpBe2`2s? VM?nz2fYC_j-[Fpʪ]Z(S' (8ueZy>]hfn.TQ6v=7q"-;KZ+} b$ `MJD|sjCݧ`rkĺ#6"V6f[_*E4'!q6hlc8@~I5"0 ? ݄-zu3AĭdۉU y߉n@m˗w!^4kwژTHIX̠#6)uuaoBVZ4\ N o~v׻\?7puXѼ_:ԤXa\ eGQ\gFtxʏx5ca賟;&?Bizp>66#cqfȅ9⵮zI3Hmr9UKnZeB;;Y2m?::y2 z/CB+J8J0?mwOaRAg7([Om1pZY($>ҡu+Z$`տv"\|f2_#2&{ '֡i`I$} $l-|8P%ċɤOt V"W=DA4`D l\!Ԁ63i7<}fJd|> rE .p1 os80%g؜s}|^V3"!qxu)q3Aߘ$x4%l t bWGxVBJ^ G$P>9^[Vt!yf ZIU%ޣ~aN9cQ7KhX\IRhw މiыA΀tw;_p.cͪ!lVMKKIB%i@Ec~RX!^ο"&Ck]1t~t9n^ πD: <>Ήdt[.45XIKeΛod0%f3Ed!7!2G5rkYks̍,h d-A2n_}HZ xC_X>Q (m sP>ػ+> TrܹG4 "~_7 gMzH!eWad_Waő_'ˆܭ4@4\G͑m$wJ!/BpPqMqb8k>{ VHGJFS㵱vuaGSV/Rf5^Ṽ,ϥЭyP曟N Ώ<:SSQ.FtU-/WN 8.׮pe6)IqՉfGဇ+216{>wtR,lۄ)1/]lۛ_kTw-jLK#ؘSDTG Vt?ST&H8[tRxQﺜ7ry݀#<%5ڗa&[b) `yݾ;ZT?Q<7`M6=/ӃUïªuzA>߲'E'ysS0i4$';}TZ J]lG  YZ