login_defs-4.8.1-150400.10.6.1 >  A d?+p9|2žq?u%sY&ĶʏViO%uxn`r'YVՈޡŏPE&/j_9V%?ͪB8eSrD+4σ^&)__H茸z TheE8>p????d  ! ? *6]cj    f hpz ((8393:3=<F<G<$H<,I<4X<8Yv>z>>?????Clogin_defs4.8.1150400.10.6.1login.defs configuration fileThis package contains the default login.defs configuration file as used by util-linux, pam and shadow.d?sheep05CSUSE Linux Enterprise 15SUSE LLC BSD-3-Clause AND GPL-2.0-or-laterhttps://www.suse.com/System/Basehttps://github.com/shadow-maint/shadowlinuxnoarchtest -f /etc/login.defs.rpmsave && mv -v /etc/login.defs.rpmsave /etc/login.defs.rpmsave.old ||:'d?d?7a6cdc2ecb8acf969dd0bb1d4d2d6c9af7ad24c79669615bda4c5bf0481be61904ad0f765fefc657cac5d4ffb41790f38aa5ed7e8b52639f70553ddc41edcb8frootrootrootrootshadow-4.8.1-150400.10.6.1.src.rpmconfig(login_defs)login_defslogin_defs-support-for-pamlogin_defs-support-for-util-linux     /bin/sh/bin/shconfig(login_defs)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)4.8.1-150400.10.6.13.0.4-14.6.0-14.0-15.2-14.14.3d>@cwsaa`@` l_@_@__P_~@_Wr@^Ǿ^*@^%@^ P@]@](]m@]Z@]:@]9]3@]1]@\\\8\HW@[ٙ@Zz@ZZZYYY@YdYo@Yo@Y@Y9<@Y"X@X@XW;WM|WL+@W=V@UK@mvetter@suse.comfstrba@suse.comsbrabec@suse.comsbrabec@suse.comsbrabec@suse.comkukuk@suse.comfvogt@suse.comwerner@suse.dewerner@suse.dewerner@suse.desbrabec@suse.comsbrabec@suse.comfvogt@suse.commvetter@suse.commvetter@suse.commvetter@suse.commvetter@suse.comkukuk@suse.demvetter@suse.comkukuk@suse.desbrabec@suse.comkukuk@suse.desbrabec@suse.comsbrabec@suse.commvetter@suse.commpluskal@suse.comlnussel@suse.desbrabec@suse.comadam.majer@suse.devrothberg@suse.commvetter@suse.comfvogt@suse.comkbabioch@suse.commvetter@suse.comadam.majer@suse.deschwab@suse.demvetter@suse.commvetter@suse.commvetter@suse.commvetter@suse.comkukuk@suse.deadam.majer@suse.dejosef.moellers@suse.commeissner@suse.commvetter@suse.commvetter@suse.commvetter@suse.commvetter@suse.comchristian.brauner@mailbox.orgfvogt@suse.comjkeil@suse.de- bsc#1210507 (CVE-2023-29383): Check for control characters - Add shadow-CVE-2023-29383.patch- Added patch: * shadow-4.8.1-AUDIT_NO_ID.patch + fix bsc#1205502: useradd audit event user id field cannot be interpreted- The legacy code does not support /etc/login.defs.d used by YaST. Enable libeconf to read it (bsc#1192954).- shadow-util-linux.patch: * Add support for LOGIN_KEEP_USERNAME from util-linux >= 2.37. - Refresh shadow-login_defs-suse.patch.- Do not require libeconf-devel on products without /usr/etc.- Split login.defs configuration file into own sub-package, which allows to install util-linux or pam on small embedded/edge systems or container without the need to pull in the full shadow suite.- Amend patches/useradd-userkeleton.patch to also write into existing directories and prefer files from /etc- Add patch useradd-userkeleton.patch to extend original C code of useradd to handle /usr/etc/skel (boo#1173321) - Remove /usr/etc/skel support in useradd.local script- Change again useradd.local script to let it work even for system accounts and work together with SELinux (bsc#1178296) - Change patch useradd-script.patch to support the four arguments used by the useradd.local script (bsc#1178296)- Add support for /usr/etc/skel to useradd.local script (boo#1173321)- shadow-login_defs-check.sh: Fix the regexp to get a real variable list (boo#1164274).- login.defs: Add support for new util-linux-2.36 login variable MOTD_FIRSTONLY (shadow-util-linux.patch). - shadow-login_defs-comments.patch: Remove duplicated LASTLOG_UID_MAX. - shadow-login_defs-check.sh: Update for new build system. - shadow-util-linux.patch: Restore lost chunk: SYSLOG_SU_ENAB is not used in SUSE Linux. - Refresh shadow-login_defs-suse.patch and shadow-login_defs-comments.patch.- Use pure #!/bin/sh in: * useradd.local * userdel-post.local * userdel-pre.local- Update to 4.8.1: * selinux: include stdio * man: don't suggest making groupmems user-writeable * Makefile: bail out on error in for loops * Adding logging of SSH_ORIGINAL_COMMAND to nologin * add new HOME_MODE login.defs option * Add tty logging to useradd * Useradd: make non-executable shell check only a warning * Update Dutch translation * user_busy: Do not mistake a regular user process for a namespaced one * Revert "Honor --sbindir and --bindir for binary installation" - Remove shadow-4.8-shell-check.patch: included - Remove shadow-4.8-selinux-include.patch: upstreamed- Set 0755 for chpasswd, groupadd, groupdel, groupmod, newusers, useradd, userdel, usermod explicitly.- bsc#1160729: Make valid shell check only a warning * Add shadow-4.8-shell-check.patch- Update to 4.8: * Initial optional bcrypt support. * Make build/install of 'su' optional. * Fix for vipw not resuming correctly when suspended * Sync password field descriptions in manpages * Check for valid shell argument in useradd * Allow translation of new strings through POTFILES.in * Migrate to itstool for translations * Migrate to new SELinux api * Support --enable-vendordir * pwck: Only check homedir if set and not a system user * Support nonstandard usernames * sget{pw,gr}ent: check for data at EOL * Add YYY-MM-DD support in chage * Fix failing chmod calls for suidubins * Fix --sbindir and --bindir for binary installations * Fix LASTLOG_UID_MAX in login.defs * Fix configure error with dash - Remove because upstreamed: * libeconf.patch * shadow-usermod-variable.patch - Rebase: * shadow-login_defs-unused-by-pam.patch * chkname-regex.patch * shadow-util-linux.patch * shadow-login_defs-comments.patch - Add shadow-4.8-selinux-include.patch See https://github.com/shadow-maint/shadow/pull/200- libeconf.patch: Add support for libeconf and /usr/etc for login.defs. - Move first configuration files and pam config files to /usr/etc- bsc#1144060: Add pam_keyinit.so to /etc/pam.d configuration files to support kernel keyring feature - Update pamd.tar.bz2 with pam configuration files accordingly- encryption_method_nis.patch: drop, DES should really not be used anymore anywhere, even with NIS - shadow-login_defs-suse.patch: remove encryption NIS entry- Fix incorrect variable name in usermod (shadow-usermod-variable.patch). - shadow-login_defs-comments.patch: * Drop SHA_CRYPT_*_ROUNDS that are in the upstream login.defs. * Add missing LASTLOG_UID_MAX. * Refresh shadow-login_defs-suse.patch. - Port shadow-login_defs-check.sh to match the current spec file and login.defs.- Provide "useradd_or_adduser_dep" for sysuser-shadow- shadow-login_defs-suse.patch: Set ALWAYS_SET_PATH default to "yes" (bsc#353876#c7).- Fix comment about patch in spec file- Update to 4.7: * Spawn: don't loop forever on ECHILD * Do not fail locking if there is a stale lockfile (Tomas Mraz) * Use lckpwdf if prefix not set (Tomas Mraz) * Build: check correct DocBook version (Jan Tojnar) * Usermod: Print 'no changes' to stdout, not stderr (Serge Hallyn) * Add support for btrfs subvolumes for home (Adam Majer) * Fix chpasswd long line handling (Nathan Ruiz) * Use secure_getenv for gettime (Chris Lamb) * Make sp_lstchg reproducible (Chris Lamb) * Do not crash commonio_close if db file is not open (Tomas Mraz) * Don't flush nscd and sssd cache in read-only mode (Charlie Vuillemez) * French manpage update (Alban VIDAL) * Fix manpage defaults for SUB_UID/GID_COUNT (Tomas Mraz) * Sync po files from shadow.pot (Alban VIDAL) * Usermod: guard against unsafe chown of homedir contents (Tomas Mraz) * Add LASTLOG_UID_MAX to login.defs (Tomas Mraz) * new[ug]idmap file capabilities support (Giuseppe Scrivano and Christian Brauner) * Fix segfault in useradd (bsc#1141113, Tomas Mraz) * Coverity issues (Tomas Mraz) * Flush sssd caches (Jakub Hrozek) * Log UID in nologin (Vladimir Ivanov) * run pam_getenvlist after setup_env in su.c (Michael Vogt) * Support systems with only utmpx (A. Wilcox) * Fix unguarded ENABLE_SUBIDS code (Jan Chren (rindeal)) * Update po/zh_CN translation (Lion Yang) * Create parent dirs for useradd -m (Michael Vetter) * Prevent usermod segv * Fix usermod crash (fariouche) - Remove btrfs-subvolumes.patch (fate#316134): upstreamed: https://github.com/shadow-maint/shadow/pull/149 - Remove useradd-mkdirs.patch (bsc#865563): upstreamed https://github.com/shadow-maint/shadow/pull/112 - Remove shadow-4.6.0-fix-usermod-prefix-crash.patch upstreamed https://github.com/shadow-maint/shadow/issues/110 - Remove shadow-4.6-bsc1141113-useradd-segfault.patch (SLE15 SP3 and openSUSE Leap 15.3 only) upstreamed https://github.com/shadow-maint/shadow/issues/125 - Rebase userdel-script.patch - Rebase useradd-script.patch - Rebase shadow-util-linux.patch- Make building more verbose - Use spec-cleaner- don't specify MOTD_FILE in login.defs but fall back to built in defaults of login (boo#1133929)- Split shadow-login_defs.patch hunks to its logical components (bsc#1121197): * shadow-login_defs-unused-by-pam.patch * shadow-login_defs-comments.patch * shadow-util-linux.patch * shadow-login_defs-suse.patch * Move appropriate hunks to chkname-regex.patch and encryption_method_nis.patch * Remove GROUPADD_CMD that is not supported (bsc#1121197#c14). - Split getdef-new-defs.patch hunks to its logical components (bsc#1121197): * encryption_method_nis.patch * chkname-regex.patch * shadow-util-linux.patch Add support for login: ALWAYS_SET_PATH and LOGIN_PLAIN_PROMPT. * useradd-script.patch, userdel-script.patch * Remove duplicated definitions of MOTD_FILE and ENV_PATH. - Add shadow-login_defs-unused-check.sh to allow verification of login.defs variable usage (bsc#1121197). - Add virtual symbols for login.defs compatibility (bsc#1121197).- btrfs-subvolumes.patch: implement support for creating user home directories on btrfs subvolumes (fate#316134)- Add empty /etc/sub{u,g}id files. useradd and usermod add entries for users only when those files exist. Having those entries is a requirement to create user namespaces, for instance, when running podman as a non-root user.- Update to 4.6: * Newgrp: avoid unnecessary lookups * Make language less binary * Add error when turning off man switch * Spelling fixes * Make userdel work with -R * newgidmap: enforce setgroups=deny if self-mapping a group * Norwegian bokmål translation * pwck: prevent crash by not passing O_CREAT * WITH_TCB fixes from Mandriva * Fix pwconv and grpconv entry skips * Fix -- slurping in su * add --prefix option - Remove CVE-2018-7169.patch: upstreamed - Remove shadow-4.1.5.1-pam_group.patch: upstreamed - Update userdel-script.patch: change due to prefix - Update useradd-mkdirs.patch: change due to prefix Additionally changed in that patch (bsc#1106914): * Test for strdup() failure * Directory to 0755 instead 0777 - Add shadow-4.6.0-fix-usermod-prefix-crash.patch: Fixes crash in usermod when called with --prefix. See https://github.com/shadow-maint/shadow/issues/110- Use %license (boo#1082318)- Added CVE-2018-7169.patch: Fixed an privilege escalation in newgidmap, which allowed an unprivileged user to be placed in a user namespace where setgroups(2) is allowed. (CVE-2018-7169 bsc#1081294)- bsc#1061838: Revert: Requires: group(mail) Introduced circular dependency- Revert accidentalied prerequisites. Use PreReq for permissions- Prequire group(shadow), group(root), user(root)- bsc#1061838: Add Requires for group(mail)- boo#1048645: Set suid bit for newuidmap and newgimap- Revert the changes for bsc#1023895 back Pulls in too many deps into ring0. Next version of shadow plans to have no conditional man pages.- run spec-cleaner - bsc#1023895: man page contained invalid options because they depend on compile flags and we shipped pre built ones. New BuildRequires: docbook-xsl-stylesheets docbook_4 xml2po xsltproc- Adjust requires (we need user/group root instead of aaa_base now)- New upstream version 4.5 - Refreshed patches: * shadow-login_defs.patch * chkname-regex.patch * getdef-new-defs.patch * useradd-mkdirs.patch - Upstreamed patches: * shadow-4.1.5.1-manfix.patch * shadow-4.1.5.1-errmsg.patch * shadow-4.1.5.1-backup-mode.patch * shadow-4.1.5.1-audit-owner.patch * shadow-4.2.1-defs-chroot.patch * shadow-4.2.1-merge-group.patch * Fix-user-busy-errors-at-userdel.patch * useradd-clear-tallylog.patch - shadow-4.1.5.1-pam_group.patch dynamically added users via pam_group are not listed in groups databases but are still valid - shadow.keyring: update keyring with current maintainer's keyid only - Serge Hallyn 'F1D08DB778185BF784002DFFE9FEEA06A85E3F9D' - disable_new_audit_function.patch: Disable newer libaudit functionality for older distributions- useradd: call external program "/sbin/pam_tally2" to reset failed login counter in "/var/log/tallylog" (bsc#980486, useradd-clear-tallylog.patch)- add keyring, three public keys from https://pkg-shadow.alioth.debian.org/download.php- bsc#1002975: Use permissions according to permissions package and dont try to manipulate them in %files section.- boo#994486: Include shadow.5 manpage Previously this was provided by man-pages package in the man-pages-addons tarball which got removed later on.- Add package dependency for aaa_base, fixing bnc#899409 (was done by tbehrens@suse.com but not submitted to Factory)- shadow 4.2.1 requested by fate#320422 - bsc#979069: Dont include shadow-4.1.5.1-bug935203-manpage.patch - Dont set SUID bit yet. Once bsc#979282 is through, which will adapt the permissions package, we can enable the SUID bits. Remove the files used to circumvent the check. - Remove: * shadow-rpmlintrc * shadow-subids * shadow-subids.easy * shadow-subids.secure * shadow-subids.paranoid- Update to shadow-4.2.1: - add support for subuids/subgids via newuidmap/newgidmap - Rename chkname-regex.diff to chkname-regex.patch - Rename encryption_method_nis.diff to encryption_method_nis.patch - Rename getdef-new-defs.diff to getdef-new-defs.patch - Rename shadow-login_defs.diff to shadow-login_defs.patch - Rename userdel-scripts.diff to userdel-script.patch - Rename useradd-script.diff to useradd-script.patch - Rename useradd-default.diff to useradd-default.patch - Rename useradd-mkdirs.diff to useradd-mkdirs.patch - Add fixes from Red Hat/Fedora: - shadow-4.1.5.1-audit-owner.patch.patch: - log owner changes for home directory - shadow-4.1.5.1-userdel-helpfix.patch.patch: - give a hint about what happens when you force the removal of a user - shadow-4.2.1-defs-chroot.patch.patch: - initialize uid_t uid_min and uid_t uid_max not before we need them - shadow-4.2.1-merge-group.patch.patch: - simplify by using a single call to snprintf() - Add upstream fix - Fix-user-busy-errors-at-userdel.patch: - call sub_uid_close()- Moved call from %verifyscript into %post: * Caused call to %service_add_post shadow.service shadow.timer during rpm -qV shadow- Add systemd unit files to continuously check password & groupfile integrity * Idea from Arch Linux * pending request to systemd-presets-branding-openSUSE to enable by default/bin/shsheep05 16818897714.8.1-150400.10.6.14.8.1-150400.10.6.11.3.12.37login.defslogin.defs.5.gz/etc//usr/share/man/man5/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:28641/SUSE_SLE-15-SP4_Update/25e1c6c60b79ef4eb9dd35cca54aebb7-shadow.SUSE_SLE-15-SP4_Updatecpioxz5x86_64-suse-linuxAlgol 68 source, ASCII texttroff or preprocessor input, ASCII text, with very long lines (gzip compressed data, max compression, from Unix)rی.!.0-r# rpmsave file can be created by # - change of owning package (SLE15 SP2->SP3, Leap 15.2->15.3) # - Migration to /usr/etc (after SLE15 and Leap 15) test -f /etc/login.defs.rpmsave && mv -v /etc/login.defs.rpmsave /etc/login.defs ||:/bin/shutf-8b295db6be474c943d8237c4e2002f03af00fe46ce5b44ce2877565e4748e710a?7zXZ !t/E7+] crv(vX0͊HxHCvŠǕ٧+f R^ =r(/CA1&k,an4]Qf)b lFb](#łAX1]O$Ţ ڬYzfa1Vj })Yw_(.N,pd#ܤӆ& 6x]'nm5¤tS{aFD[/Lju=4hmȎ(աoH5}@:6$X=;ʎ4E\_R͟I@u.cA)LOTQ0iІueJ`sL&E.NI̬&Bq-۠P^eQ9 H &Q>Al8&k<oj/4_t},IG>e$N K0GG2q3 :k/)& Z] wS@Ftsp>Re9V>׬! WE)& kG87ƱqH-]9$٬oួ%l~'2[HA3٪+z0OqsH@::t-fԃ>!`NB qr@|{滝6Ձ2xt;]Ubi;}]]Xo o+IrvGPbar+yE׆98?~'4< :x X bmP.gD0ƽR -gJb_WCdwa_mh`]NկeSPڄCX$ǗFTM7{d3jA !@hZٓ󋍕5bs":HCu=2ˁ0IN*VXv?c2uXpۀ-x{[A .m`HbQMwC!cT 5hإHUCKκ@⬵xp|S.=S= gA<Z`EGf@+RvHFE߭\D9ݵSp~5|ҭ.%) NUKKVrK̑lx>lll**BdFHoF߫fvkE`b@YUm $"JNݢAN_:ϲZ\sM2USad6dĄg t_ b@h1Tr-Y =wܠV`}MԿ3=ؗ{KfXJ72t gЇ(lƽSx7GnfR5׏TYgu^R%Z# ŻK Sr&G: .N7pXIp>8YbG^?/k΂x .0./&~_P{ak VJ&c!i%DZ3`hL54Kw V֢8&$}6~+#m?rݩ? 'uėKP>i[cWLZ`"\#:T|xf#|J(6]V(l3 C-dEnS7Bxh`H7ЕR*g={^hǕ;@D4RdxX$O 1βffytUe^9;h i$|%YL֤YOwE -3!.хO C~bGv5㑞b% m`n>NhѱmS:*1!\;dI~e.QET?*S)Tς91Z5P:^N&ˋ:Z霒^iHm[Vv>P]CDTM%ԟ)A/| Abtn=O;DOg?L8h+c ZvpGKpz;dL}]M:*=1',5_xZyr!b\KefD@8CSXXLŞf]9m>8*HuPŅ(I|\|KCkבjHPO8t4MqvpUtI =Db1+0zuZcEgF/i_614ĽI(WDWxJf ye O :K *eGkc"~}ؿSHn|I" GcIs"&4\)LI[c, %Q M  zIdF6 u+9]qO5F>Y`WKkl*~iւxc΢EOQNMHb5JF$2o 53M}ѳs)⎞r0ד&Lwh+I"܂FyXz\ݛ&gB8Q:6-_lv&Nsmv|z;D`b鿌-6\Ψ|l =@7FF!< wD Nq&G%eܔm.evg;Ssw1mP90K=,FS;Y,~0r (Q-LS`iAt#Rս!D]y:\¸|5 %yޯvJ 寱b>('ר|V9,6 x W0C  f,ŤNrsnA }5%iDF qyK4cd#k&Na^T7Y J̹O $aXc֏Mӵi;_ROh*MnՊ< &L-#WyE^0`<ˢ6 k3 u1PiuC{2ߪTSm!$禑׋9yhj}r?6l7n(7' ib^[J 0  [(ɪ>LܘR{H]g!3 Q;Xԋ~Zv2TȜdƈz";A\陬Spfؽy-Hd^k Vmmh.@e0)T_j6z2᰻/p^w$I|#C"RJRz咬+}3x[i* !3!᝶rj9U̜bʡ283KKG}44Pl:s#74gqCExUUYrN;u-9 sPȉ?c6Yz]5\udz.*1A~fMۤCA{aSfKmRaQgRR-+tsԴ2uJ*>E K"./a4K҂ ur?9F&L'jxDP ؉u9(YD\-: TlːO2o!K.w%8D@tC(j:Cٹ@KBAS,rh$00z R%fB!P JuWA( u_ "r=P.pE?&qŵ6_8&0 $GNiZxy:~\Nrא50J ~GR槐81=^: _Y#;~BB7#ΊI6H[߯L<6D9|.׺DKK<혪뚛hPKR{)ѦKfaj1 43r9YEb<`W⼮\M(8nGcy>xFaK!wV]ԃgtur>'K5␜c*f| O?`Զ6+1r{0Y}丸 ㄴeҫr?QvڼkCN|emqGa\/3HˬPs/t=l/5gJz\a%ec^Uw(":QXJ]*{yF-Qp& =-9F<09ݭfuWz){KΗCɬj x;RS&u–{_E^W@?>0 ¾XG >%q+NSm/.}p_+Ss8UۇMH%dq@*Rs v-Y"/=eKHu{w1khiI@EUjYJR ; 7ix ̻d(Bz8*1a9a֧?1F L y;3\RɁ^rAT#ERm%57YМ+o[TbmP$?6;_5YoL2`_8Nr>U7G1ޗaDvS[c:~Jxg+qc8#L XKTSFW&JGIu[fr ]a0t:3?x\'A[v$L&%L2-WJqDdfY26*w %'-?ʇ?|g5/~6֑'^ϟ>2^%\n j2nT=9 1MEͦށ Nc?x6zxW{jT B%w!ְC_Sݾ_H#ǴK)EP/نQLW콷̥QtunSB td4&zgꩧX?q2R ]"t!+."-;s,N)-%P@BXQU d,CnjxKc[uPԒSEEڅŤL"\г醰x1{a84 dX {44)1$~<{~GeR"U 6 .X-\1fh$}@K6- xU0-Ԃ Yq-XF%!-]J\XWץsrm<0e-TM )5gxqG e@{Vm_'9 8Tװ{'e zg ATqtS8^C8ȳ_*G ?iVrၕ#fZP&Y(\LTU&L9XP(еbH50X+ DZrM|V4 8(p oL+>O'vüX=gT \p{-EqDՕW٥B@ÏiH&g%!N>NEnܜ$OϬ슇i`5B{QkQǎ.4"y?ѝ”iQt؄2LuV)x6ɹi B"`WxE=W% An.҇E 0Ί qy" 3V~-&Tip KɄK'+G?mpB1X'dHkJMĆB)B)6dju[@ƅ4aT`,e9t4tUnUx qD{m:vnol䀅s8Qc_g|o#-6krS=zCPCL bP1b6i)hX~8u-&(CTVwP1<XqY5m2> mo#6喋̇=C$eP] oQ|쨏Ho:|f!^N?pneG`V`XH'x\*m@0(L‰(&f .L>Dž_kB CepO s5zҸx Dnįw@RXPdÆk]*|rZQUu+d:Bf47mn8NV+HABhXE}N=LjN\MȿPg- gJ7yڟ9_K#׍cȔQaI8g[E)lϺ:eڜ1ܵyjJ慯z6L e@x7{p[c4}SfEb{H }zEqJ_^iC#-QsN /2Ք;.i9J7li{ϑm&筒#-o!&XލNsO"Bڌ KBtHŇ ՕЊ3Gc+I(O|XFVŔ rJGI޳fYP&?ș񖙳D1<F&GӶY/9nj MfnJ6^uc\޹';P]BY'{Ùgƚt>oI^dJfg.`2,\Khػy{? y{* :AX})mk =h nCz]p+&Pp2埙x(YlO׫ws0[/ :#*oE$ PG+2 ұӾJ"h[P5FɹI,9zfۏmsW). ayJ]u,`pnq\1L?RE)[C+@I(.D{nL"gPEn>l!`$bUe&fŤse:^HQ|~#ИfNE5+|B4%4aѾ X6:7ds+ǁ yd94q+ {P&JSRoKbn \SZpɝʔ=g|uoۿ(*4JڬbqWAvyPc؂6_@j 9VQ^:ؿ|,woNsӌ|sZYIjՁdٌͩ*x\n\: &בg0 R ^8&UPkP U#m=ne*;gꨯ/y Ƚy G`tv\6E4_o6)BV~"&6o ^*2dɚn]SX[4 :\ߝUnz.MȩZ៪Qm%*.{\v>`۝*8ՀF* #*ܺցӒO::♅X=YcS[̠R| ,Df B/ ElmZ#a+#F,'飯QzaV/E=ǔc9t7ajQV-!>EJ]tRF- G@\wLxcOϪ4m D?v2586*{,"e/  zB>;SɵzWS$g;^|M{'#wz*O7\Z%Ũ 字Ӈ{3;VB 2|]9=Sq ʀV+0xΎ]O"O۶߳Yყ*!Ź`m5-~3KGxJ4n9ȡxƈŢ0b-.GMdQ |_mBW)r tWrO|Ía/B Pqvv,kq&X8<+o@;-3#1!6m]AH]gd8A1)? 6tȧY$XSodt:\A-0TVY5 ډqױ/qDuϫ9c̩;yHMry Rb"b|9W,}y[%21c2P,>h4Yp*ti{GƲ5Gy7SgTP'{ޥA% |rZ0ݙ-y&(nHhRƯϗŨ}m%3q4 ^X))k; %n qO*E^u`MQ3dJ4xLoS ! QSG5: o科@K; >/~ 쁄"O~"k.mtVR9!wd4eRܥ5<]%`NXm #xVY-Fh(l %dxm8ǖo;)[@^16G jjZ= %$s҃-?f0ȥE]mzX7@VZ?sM{%jᣘoZ\X-(-ztŜ3n8,7,d)G{#@} dKō-%JnAekv$CGmOIQ$Ud!t7O^APq[8;8 Zc|e1͂~y b!yU{\Ua) ᕻEKkE$XɃU!No=%Sj8 ,7џ;xH7B)V %Zxթ}HXT3v=W_}<9XTmÙVAyж;X K>:fE>se1kaƐn[j$]d>)Fl‘NWiS^'v"P0Z;1s<͹3}µcٛw让.lɛ u9"J尓m0ŮJsIĮ VfSAeDž4cw&|dn=d| `YWz v UkW em]ܱ^Qm{xB$G]s1fݮm +2u08 /((?VUIͶ YZ