apache2-devel-2.4.23-11.2>t  DH`pY`/=„sL=̓1!N nA7i:[?[d  > 5;D    d  +/5`::?T?x ? @r (@8@9Cp:QF/G/H3I8XX9pY9x\9]=^K bLcMdMqeMvfM{lM}uMvQwRxW y[lz[Capache2-devel2.4.2311.2Apache 2 Header and Include FilesThis package contains header files and include files that are needed for development using the Apache API.Y`lamb11 openSUSE Leap 42.3openSUSEApache-2.0http://bugs.opensuse.orgDevelopment/Libraries/C and C++http://httpd.apache.org/linuxx86_64IIII  n  q  n 3 q 6d|'a %# HC$>`;X Pb1Mz Ni “\uF Z 7 Z Bq% e Qa &g[Hkw$L&J ^= U $|AAAAAA큤큤큤Y`gY`gY`gY`gY`gY`gY`gY`gY`gY`gY`eY`eY`ZY`ZY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`gY`gY`gY`gY`gY`gY`gY`gY`gY`gY`gY`gY`eY`eY`Y`Y`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`gY`gY`gY`gY`gY`gY`gY`gY`gY`gY`gY`gY`eY`eY`Y`Y`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`fY`gY`gY`gY`gY`gY`gY`gY`gY`gY`gY`gY`Y`Y`gY`gY`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`Y`oY`gY`gY`\Y`XY`\Y`\Y`Y`Y`XY`XY`XY`XY`XY`XY`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-eventapxs-preforkapxs-worker../apache2/ap_compat.h../apache2/ap_config.h../apache2/ap_expr.h../apache2/ap_hooks.h../apache2/ap_listen.h../apache2/ap_mmn.h../apache2/ap_mpm.h../apache2/ap_provider.h../apache2/ap_regex.h../apache2/ap_regkey.h../apache2/ap_release.h../apache2/ap_slotmem.h../apache2/ap_socache.h../apache2/apache_noprobes.h../apache2/cache_common.h../apache2/heartbeat.h../apache2/http_config.h../apache2/http_connection.h../apache2/http_core.h../apache2/http_log.h../apache2/http_main.h../apache2/http_protocol.h../apache2/http_request.h../apache2/http_vhost.h../apache2/httpd.h../apache2/mod_auth.h../apache2/mod_cache.h../apache2/mod_cgi.h../apache2/mod_core.h../apache2/mod_dav.h../apache2/mod_dbd.h../apache2/mod_include.h../apache2/mod_log_config.h../apache2/mod_proxy.h../apache2/mod_request.h../apache2/mod_rewrite.h../apache2/mod_session.h../apache2/mod_so.h../apache2/mod_ssl.h../apache2/mod_ssl_openssl.h../apache2/mod_status.h../apache2/mod_unixd.h../apache2/mod_watchdog.h../apache2/mod_xml2enc.h../apache2/mpm_common.h../apache2/os.h../apache2/scoreboard.h../apache2/unixd.h../apache2/util_cfgtree.h../apache2/util_charset.h../apache2/util_cookies.h../apache2/util_ebcdic.h../apache2/util_fcgi.h../apache2/util_filter.h../apache2/util_ldap.h../apache2/util_md5.h../apache2/util_mutex.h../apache2/util_script.h../apache2/util_time.h../apache2/util_varbuf.h../apache2/util_xml.h../apache2/ap_compat.h../apache2/ap_config.h../apache2/ap_expr.h../apache2/ap_hooks.h../apache2/ap_listen.h../apache2/ap_mmn.h../apache2/ap_mpm.h../apache2/ap_provider.h../apache2/ap_regex.h../apache2/ap_regkey.h../apache2/ap_release.h../apache2/ap_slotmem.h../apache2/ap_socache.h../apache2/apache_noprobes.h../apache2/cache_common.h../apache2/heartbeat.h../apache2/http_config.h../apache2/http_connection.h../apache2/http_core.h../apache2/http_log.h../apache2/http_main.h../apache2/http_protocol.h../apache2/http_request.h../apache2/http_vhost.h../apache2/httpd.h../apache2/mod_auth.h../apache2/mod_cache.h../apache2/mod_cgi.h../apache2/mod_core.h../apache2/mod_dav.h../apache2/mod_dbd.h../apache2/mod_include.h../apache2/mod_log_config.h../apache2/mod_proxy.h../apache2/mod_request.h../apache2/mod_rewrite.h../apache2/mod_session.h../apache2/mod_so.h../apache2/mod_ssl.h../apache2/mod_ssl_openssl.h../apache2/mod_status.h../apache2/mod_unixd.h../apache2/mod_watchdog.h../apache2/mod_xml2enc.h../apache2/mpm_common.h../apache2/os.h../apache2/scoreboard.h../apache2/unixd.h../apache2/util_cfgtree.h../apache2/util_charset.h../apache2/util_cookies.h../apache2/util_ebcdic.h../apache2/util_fcgi.h../apache2/util_filter.h../apache2/util_ldap.h../apache2/util_md5.h../apache2/util_mutex.h../apache2/util_script.h../apache2/util_time.h../apache2/util_varbuf.h../apache2/util_xml.h../apache2/ap_compat.h../apache2/ap_config.h../apache2/ap_expr.h../apache2/ap_hooks.h../apache2/ap_listen.h../apache2/ap_mmn.h../apache2/ap_mpm.h../apache2/ap_provider.h../apache2/ap_regex.h../apache2/ap_regkey.h../apache2/ap_release.h../apache2/ap_slotmem.h../apache2/ap_socache.h../apache2/apache_noprobes.h../apache2/cache_common.h../apache2/heartbeat.h../apache2/http_config.h../apache2/http_connection.h../apache2/http_core.h../apache2/http_log.h../apache2/http_main.h../apache2/http_protocol.h../apache2/http_request.h../apache2/http_vhost.h../apache2/httpd.h../apache2/mod_auth.h../apache2/mod_cache.h../apache2/mod_cgi.h../apache2/mod_core.h../apache2/mod_dav.h../apache2/mod_dbd.h../apache2/mod_include.h../apache2/mod_log_config.h../apache2/mod_proxy.h../apache2/mod_request.h../apache2/mod_rewrite.h../apache2/mod_session.h../apache2/mod_so.h../apache2/mod_ssl.h../apache2/mod_ssl_openssl.h../apache2/mod_status.h../apache2/mod_unixd.h../apache2/mod_watchdog.h../apache2/mod_xml2enc.h../apache2/mpm_common.h../apache2/os.h../apache2/scoreboard.h../apache2/unixd.h../apache2/util_cfgtree.h../apache2/util_charset.h../apache2/util_cookies.h../apache2/util_ebcdic.h../apache2/util_fcgi.h../apache2/util_filter.h../apache2/util_ldap.h../apache2/util_md5.h../apache2/util_mutex.h../apache2/util_script.h../apache2/util_time.h../apache2/util_varbuf.h../apache2/util_xml.h../bin/apxsapxsrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootapache2-2.4.23-11.2.src.rpmapache2-develapache2-devel(x86-64)@@   /bin/sh/usr/bin/perlapache-rpm-macros-controlapache2apache2-MPMapache2-preforkgcclibapr-util1-devellibapr1-develrpmlib(CompressedFileNames)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsLzma)2.4.233.0.4-14.0-14.4.6-14.11.2YP@YI@Y1S@X @XGW@WW-@W@WF@Wpgajdos@suse.comLed kstreitova@suse.comcrrodriguez@opensuse.orgLed pgajdos@suse.compgajdos@suse.compgajdos@suse.comkstreitova@suse.compgajdos@suse.comoholecek@suse.compgajdos@suse.compgajdos@suse.compgajdos@suse.comcrrodriguez@opensuse.orgmc@suse.comlnussel@suse.decrrodriguez@opensuse.orgdraht@suse.decrrodriguez@opensuse.orgcrrodriguez@opensuse.orgfreek@opensuse.orgcrrodriguez@opensuse.orgcrrodriguez@opensuse.orgcrrodriguez@opensuse.orgcrrodriguez@opensuse.orgcrrodriguez@opensuse.orgcrrodriguez@opensuse.orgaj@suse.comcrrodriguez@opensuse.orgcrrodriguez@opensuse.orgcrrodriguez@opensuse.orgcrrodriguez@opensuse.orgmeissner@suse.comcrrodriguez@opensuse.orgcrrodriguez@opensuse.orgcrrodriguez@opensuse.orgcrrodriguez@opensuse.orgcrrodriguez@opensuse.orgcrrodriguez@opensuse.orgcrrodriguez@opensuse.orgcrrodriguez@opensuse.orgcrrodriguez@opensuse.orgmlin@suse.comcrrodriguez@opensuse.orgcrrodriguez@opensuse.orgmhrusecky@suse.czcrrodriguez@opensuse.orgcrrodriguez@opensuse.orgcrrodriguez@opensuse.orgsaschpe@suse.demeissner@suse.commeissner@suse.comdimstar@opensuse.orgadrian@suse.depoeml@cmdline.netcoolo@suse.comdraht@suse.dechris@computersalat.demeissner@suse.decoolo@suse.comdraht@suse.dedraht@suse.defcrozat@suse.comfcrozat@suse.comdraht@suse.dedraht@suse.dedraht@suse.defcrozat@suse.comcrrodriguez@opensuse.orgcrrodriguez@opensuse.orgcrrodriguez@opensuse.orgcrrodriguez@opensuse.orgcrrodriguez@opensuse.orgcrrodriguez@opensuse.orgcrrodriguez@opensuse.orgcrrodriguez@opensuse.orgcrrodriguez@opensuse.orgcrrodriguez@opensuse.orgcrrodriguez@opensuse.orglnussel@suse.dewerner@suse.delnussel@suse.depoeml@cmdline.netcristian.rodriguez@opensuse.orgpoeml@cmdline.netpoeml@cmdline.netlars@linux-schulserver.deaj@suse.depoeml@cmdline.netpoeml@cmdline.netcoolo@novell.comjengelh@medozas.depoeml@cmdline.netpoeml@cmdline.netpoeml@suse.depoeml@suse.dehvogel@suse.depoeml@suse.depoeml@suse.depoeml@suse.depoeml@suse.depoeml@suse.decrrodriguez@suse.depoeml@suse.de- security update * CVE-2017-7679 [bsc#1045060] + apache2-CVE-2017-7679.patch * CVE-2017-3169 [bsc#1045062] + apache2-CVE-2017-3169.patch * CVE-2017-3167 [bsc#1045065] + apache2-CVE-2017-3167.patch- remove /usr/bin/http2 symlink only during apache2 package uninstall, not upgrade [bsc#1041830]- gensslcert: use hostname when fqdn is too long [bsc#1035829]- security update * CVE-2016-8743 [bsc#1016715] + apache2-CVE-2016-8743.patch + apache2-CVE-2016-8743-1.patch * CVE-2016-0736 [bsc#1016712] + apache2-CVE-2016-0736.patch * CVE-2016-2161 [bsc#1016714] + apache2-CVE-2016-2161.patch - add missing copy of hcuri and hcexpr ftom the worker to the health check worker [bsc#1019380]- security update: CVE-2016-8740 [bsc#1013648] * apache2-CVE-2016-8740.patch- add NotifyAccess=all to service files [bsc#980663]- readd the support of multiple entries in APACHE_ACCESS_LOG [bsc#991032]- Add apache2-cve-2016-5387.patch to fix CVE-2016-5387. Prior to this patch, Apache would translate every header "Foo: ..." received in the HTTP request into an environment variable called $HTTP_FOO="...". While useful in general, this feature could be abused by sending specially crafted "Proxy" headers, which would result in server code running in an environment where $HTTP_PROXY points to an arbitrary, potentially hostile location. This update modifies Apache to ignore the non-standard "Proxy" header entirely so that HTTP_PROXY is never set by the server. [bnc#988488]- update to 2.4.23 to fix CVE-2016-4979 [bsc#987365] - mod_proxy_fdpass needs explicit configure line now - mod_proxy_hcheck was missing due to upstream bug - removed note about ulimits in sysconfig file [bsc#976711] - enable authnz_fcgi module- remove Alias= from [Install] of the template service [bsc#981541c#10]- updated to 2.4.20 to fix CVE-2016-1546 [bsc#980370] - removed httpd-2.4.18-missing-semicolon.patch (upstreamed) - removed httpd-2.4.17-debug-crash.patch (httpd -X does not crash anymore)- start apache services after remote-fs [bsc#978543]- backport of HttpContentLengthHeadZero and HttpExpectStrict + httpd-2.4.x-fate317766-config-control-two-protocol-options.diff (needed to be refreshed against 2.4.18)- fix build for SLE_11_SP4: + httpd-2.4.18-missing-semicolon.patch- Update to version 2.4.18 * drop 2.4.17-protocols.patch in upstream. - Change list too long to mention here see: http://www.apache.org/dist/httpd/CHANGES_2.4.18 for details.- systemd: Set TasksMax=infinity for current systemd releases. The default limit of 512 is too small and prevents the creation of new server processes. Apache has its own runtime/harcoded limits.- fix crash when for -X + httpd-2.4.17-debug-crash.patch- add a note: FollowSymLinks or SymLinksIfOwnerMatch is neccessary for RewriteRule in given dir [bnc#955701]- restart apache once after the rpm or zypper transaction [bnc#893659] - drop some old compat code from %post- 2.4.17-protocols.patch from upstream http2 module: * master conn_rec* addition to conn_rec * improved ALPN and Upgrade handling * allowing requests for servers whose TLS configuration is compatible to the SNI server ones * disabling TLS renegotiation for slave connections- LogLevel directive into correct config file, thanks Michael Calmer for the fix [bsc#953329]- do not build mod_http2 for older distros than 13.2 for now (nghttp2 does not build there)- Include directives really into /etc/apache2/sysconfig.d/include.conf, fix from Erik Wegner [bsc#951901]- gensslcert: CN now defaults to `hostname -f` [bnc#949766] (internal), fix help [bnc#949771] (internal)- Update to 2.4.17 - Enable mod_http2/ BuildRequire nghttp2 - MPMs: Support SO_REUSEPORT to create multiple duplicated listener records for scalability - mod_ssl: Support compilation against libssl built with OPENSSL_NO_SSL3 - For more changes see: http://www.apache.org/dist/httpd/CHANGES_2.4.17- start_apache2: reintroduce sysconfig.d, include it on command line (not in httpd.conf) instead of individual directives [bnc#949434] (internal), [bnc#941331]- Fixup libdir in installed files- fix Logjam vulnerability: change SSLCipherSuite cipherstring to disable export cipher suites and deploy Ephemeral Elliptic-Curve Diffie-Hellman (ECDHE) ciphers. Adjust 'gensslcert' script to generate a strong and unique Diffie Hellman Group and append it to the server certificate file [bnc#931723], [CVE-2015-4000]- add reference upstream bug#58188 along httpd-2.4.12-lua-5.2.patch- update to 2.4.16 * changes http://www.apache.org/dist/httpd/CHANGES_2.4.16 * remove the following patches (fixed in 2.4.16) * httpd-2.4.x-mod_lua_websocket_DoS.patch * httpd-2.4.12-CVE-2015-0253.patch * update httpd-2.4.12-lua-5.2.patch- add patch: httpd-2.4.12-lua-5.2.patch * lua_dump introduced a new strip option in 5.3, set it to 0 to get the old behavior * luaL_register was deprecated in 5.2, use luaL_setfuncs and luaL_newlib instead * luaL_optint was deprecated in 5.3, use luaL_optinteger instead * lua_strlen and lua_objlen wad deprecated in 5.2, use lua_rawlen instead- change Provides: from suse_maintenance_mmn = # to suse_maintenance_mmn_#- apache2 Suggests:, not Recommends: apache2-prefork; that means for example, that `zypper in apache2-worker` will not pull apache2-prefork also - installing /usr/sbin/httpd link: * do not try to install it in '%post ' when apache2 (which includes /usr/share/apache2/script-helpers) is not installed yet (fixes installation on 11sp3) * install it in '%post' if apache2 is installed after apache2- to be sure it is there- access_compat shared also for 11sp3- apache2-implicit-pointer-decl.patch renamed to httpd-implicit-pointer-decl.patch to align with other patches names- apachectl is now wrapper to start_apache2; therefore, it honors HTTPD_INSTANCE variable, see README-instances.txt for details + httpd-apachectl.patch - httpd-2.4.10-apachectl.patch- a2enmod/a2dismod and a2enflag/a2disflag now respect HTTPD_INSTANCE= environment variable, which can be used to specify apache instance name; sysconfig file is expected at /etc/sysconfig/apache2@ (see README-instances.txt for details)- provides suse_maintenance_mmn symbol [bnc#915666] (internal)- credits to Roman Drahtmueller: * add reference to /etc/permissions.local to output of %post if setting the permissions of suexec2 fails * do not enable mod_php5 by default any longer * httpd-2.0.49-log_server_status.dif obsoleted * apache2-mod_ssl_npn.patch removed because not used * include mod_reqtimeout.conf in httpd.conf * added cgid-timeout.conf, include it in httpd.conf - fix default value APACHE_MODULES in sysconfig file - %service_* macros for apache2@.service- reenable 690734.patch, it should be upstreamed by the author (Adrian Schroeter) though + httpd-2.4.9-bnc690734.patch - httpd-2.2.x-bnc690734.patch- drop startssl from start_apache2- allow to run multiple instances of Apache on one system [fate#317786] (internal) * distributed httpd.conf no longer includes sysconfig.d, nor this directory is shipped. httpd.conf includes loadmodule.conf and global.conf which are former sysconfig.d/loadmodule.conf and sysconfig.d/global.conf for default /etc/sysconfig/apache2 global.conf and loadmodule.conf are not included when sysconfig variables could have been read by start_apache2 startup script (run with systemd services). Therefore, when starting server via /usr/sbin/httpd, sysconfig variables are not taken into account. * some not-maintained scripts are moved from /usr/share/apache2 to /usr/share/apache2/deprecated-scripts * all modules comment in sysconfig file is not generated anymore * added README-instances.txt * removed Sources: load_configuration find_mpm get_module_list get_includes find_httpd_includes apache-find-directives * added Sources: deprecated-scripts.tar.xz apache2-README-instances.txt apache2-loadmodule.conf apache2-global.conf apache2-find-directives apache2@.service apache2-script-helpers- add SSLHonorCipherOrder directive to apache2-ssl-global.conf - adopt SSLCipherSuite directive value from SLE12 - remove default-vhost-ssl.conf and default-vhost.conf from /etc/apache2. These two files are not (!) read by the configuration framework, but are named *.conf, which is misleading. The files are almost identical with the vhost templates in /etc/apache2/vhosts.d/. The two templates there do it right because they are not named *.conf and are not sourced either. apache's response with no explicit (eg. default, vanilla) configuration is contained in /etc/apache2/default-server.conf. * remove apache2-README.default-vhost as there are no default-vhost* files anymore.- apache2.service: We have to use KillMode=mixed for the graceful stop, restart to work properly.- dropped 2.0 -> 2.2 modules transition during upgrade * apache-20-22-upgrade renamed to apache-22-24-upgrade - apache-*-upgrade script is called in %posttrans now [bnc#927223]- fix find_mpm to echo mpm binary- apache2.service: Only order us after network.target and nss-lookup.target but not pull the units in. - apache2.service: SSL requires correct system time to work properly, order after time-sync.target- align filenames with upstream names (and add compat symlinks) - find_httpd2_includes renamed to find_httpd_includes- access_compat now built as shared and disabled by default - amend config to use also old syntax when access_compat is loaded - added apache2-README-access_compat.txt - added apache-find-directive script - see [bnc#896083] and its duplicates- add httpd-2.4.12-CVE-2015-0253.patch to fix SECURITY: CVE-2015-0253 (cve.mitre.org) core: Fix a crash introduced in with ErrorDocument 400 pointing to a local URL-path with the INCLUDES filter active, introduced in 2.4.11. PR 57531. [Yann Ylavic]- simplify apache2.logrotate, use sharedscripts [bnc#713581]- remove curly brackets around format sequence "%y" in `stat --format="%{y}" %{SOURCE1}` that caused an incorrect evaluation. Add escaping to proper spec-cleaner processing in the future- remove 'exit 0' from the %post section in the specfile that was placed here incorrectly and caused that the rest of the %post section couldn't be executed.- /etc/init.d/apache2 reload -> systemctl reload apache2.service in apache2.logrotate [bnc#926523]- authz_default -> authz_core in sysconfig.apache2/APACHE_MODULES [bnc#922236]- Add Requires(post) apache2 to the subpackage -worker, -event and - prefork: their respective post scriptlets execute /usr/share/apache2/get_module_list, which is shipped as part of the main package. This script has the side-effect to call find_mpm, which in turn creates the corresponding /usr/sbin/httpd2 symlink.- Patched get_module_list to ensure proper SELinux context for sysconfig.d/loadmodule.conf- Pname -> name variable reduction - Try to fix sle11 build- Version bumpt o 2.4.12: * ) mpm_winnt: Accept utf-8 (Unicode) service names and descriptions for internationalization. [William Rowe] * ) mpm_winnt: Normalize the error and status messages emitted by service.c, the service control interface for Windows. [William Rowe] * ) configure: Fix --enable-v4-mapped configuration on *BSD. PR 53824. [ olli hauer , Yann Ylavic ]- Exit cleanly on end of the post and cleanup the update detection - Remove Apache.xpm as it ain't used- Cleanup init/unit decision making and provide just systemd service on systemd systems- Deprecate realver define as it is equal to version. - Explicitely state MPM mods to ensure we don't lose some bnc#444878- Pass over spec-cleaner, there should be no actual technical change in this just reduction of lines in the spec- add httpd-2.4.x-mod_lua_websocket_DoS.patch to fix mod_lua bug where a maliciously crafted websockets PING after a script calls r:wsupgrade() can cause a child process crash [CVE-2015-0228], [bnc#918352].- httpd2.pid in rc.apache2 was wrong [bnc#898193]- httpd-2.4.3-mod_systemd.patch find libsystemd-daemon with pkg-config, this is the only correct way, in current versions sd_notify is in libsystemd and in old products in libsystemd-daemon.- remove obsolete patches * httpd-2.4.10-check_null_pointer_dereference.patch * httpd-event-deadlock.patch * httpd-2.4.x-bnc871310-CVE-2013-5704-mod_headers_chunked_requests.patch * httpd-2.4.x-bnc909715-CVE-2014-8109-mod_lua_handling_of_Require_line.patch- Apache 2.4.11 * ) SECURITY: CVE-2014-3583 (cve.mitre.org) mod_proxy_fcgi: Fix a potential crash due to buffer over-read, with response headers' size above 8K. [Yann Ylavic, Jeff Trawick] * ) SECURITY: CVE-2014-3581 (cve.mitre.org) mod_cache: Avoid a crash when Content-Type has an empty value. PR 56924. [Mark Montague , Jan Kaluza] * ) SECURITY: CVE-2014-8109 (cve.mitre.org) mod_lua: Fix handling of the Require line when a LuaAuthzProvider is used in multiple Require directives with different arguments. PR57204 [Edward Lu ] * ) SECURITY: CVE-2013-5704 (cve.mitre.org) core: HTTP trailers could be used to replace HTTP headers late during request processing, potentially undoing or otherwise confusing modules that examined or modified request headers earlier. Adds "MergeTrailers" directive to restore legacy behavior. [Edward Lu, Yann Ylavic, Joe Orton, Eric Covener] * ) mod_ssl: New directive SSLSessionTickets (On|Off). The directive controls the use of TLS session tickets (RFC 5077), default value is "On" (unchanged behavior). Session ticket creation uses a random key created during web server startup and recreated during restarts. No other key recreation mechanism is available currently. Therefore using session tickets without restarting the web server with an appropriate frequency (e.g. daily) compromises perfect forward secrecy. [Rainer Jung] * ) mod_proxy_fcgi: Provide some basic alternate options for specifying how PATH_INFO is passed to FastCGI backends by adding significance to the value of proxy-fcgi-pathinfo. PR 55329. [Eric Covener] * ) mod_proxy_fcgi: Enable UDS backends configured with SetHandler/RewriteRule to opt-in to connection reuse and other Proxy options via explicitly declared "proxy workers" (] * ) mod_proxy_fcgi: Remove proxy:balancer:// prefix from SCRIPT_FILENAME passed to fastcgi backends. [Eric Covener] * ) core: Configuration files with long lines and continuation characters are not read properly. PR 55910. [Manuel Mausz ] * ) mod_include: the 'env' function was incorrectly handled as 'getenv' if the leading 'e' was written in upper case in statements. [Christophe Jaillet] * ) split-logfile: Fix perl error: 'Can't use string ("example.org:80") as a symbol ref while "strict refs"'. PR 56329. [Holger Mauermann ] * ) mod_proxy: Prevent ProxyPassReverse from doing a substitution when the URL parameter interpolates to an empty string. PR 56603. [] * ) core: Fix -D[efined] or [d] variables lifetime accross restarts. PR 57328. [Armin Abfalterer , Yann Ylavic]. * ) mod_proxy: Preserve original request headers even if they differ from the ones to be forwarded to the backend. PR 45387. [Yann Ylavic] * ) mod_ssl: dump SSL IO/state for the write side of the connection(s), like reads (level TRACE4). [Yann Ylavic] * ) mod_proxy_fcgi: Ignore body data from backend for 304 responses. PR 57198. [Jan Kaluza] * ) mod_ssl: Do not crash when looking up SSL related variables during expression evaluation on non SSL connections. PR 57070 [Ruediger Pluem] * ) mod_proxy_ajp: Fix handling of the default port (8009) in the ProxyPass and configurations. PR 57259. [Yann Ylavic] * ) mpm_event: Avoid a possible use after free when notifying the end of connection during lingering close. PR 57268. [Eric Covener, Yann Ylavic] * ) mod_ssl: Fix recognition of OCSP stapling responses that are encoded improperly or too large. [Jeff Trawick] * ) core: Add ap_log_data(), ap_log_rdata(), etc. for logging buffers. [Jeff Trawick] * ) mod_proxy_fcgi, mod_authnz_fcgi: stop reading the response and issue an error when parsing or forwarding the response fails. [Yann Ylavic] * ) mod_ssl: Fix a memory leak in case of graceful restarts with OpenSSL >= 0.9.8e PR 53435 [tadanori , Sebastian Wiedenroth ] * ) mod_proxy_connect: Don't issue AH02447 on sockets hangups, let the read determine whether it is a normal close or a real error. PR 57168. [Yann Ylavic] * ) mod_proxy_wstunnel: abort backend connection on polling error to avoid further processing. [Yann Ylavic] * ) core: Support custom ErrorDocuments for HTTP 501 and 414 status codes. PR 57167 [Edward Lu ] * ) mod_proxy_connect: Fix ProxyRemote to https:// backends on EBCDIC systems. PR 57092 [Edward Lu ] * ) mod_cache: Avoid a 304 response to an unconditional requst when an AH00752 CacheLock error occurs during cache revalidation. [Eric Covener] * ) mod_ssl: Move OCSP stapling information from a per-certificate store to a per-server hash. PR 54357, PR 56919. [Alex Bligh , Yann Ylavic, Kaspar Brand] * ) mod_cache_socache: Change average object size hint from 32 bytes to 2048 bytes. [Rainer Jung] * ) mod_cache_socache: Add cache status to server-status. [Rainer Jung] * ) event: Fix worker-listener deadlock in graceful restart. PR 56960. * ) Concat strings at compile time when possible. PR 53741. * ) mod_substitute: Restrict configuration in .htaccess to FileInfo as documented. [Rainer Jung] * ) mod_substitute: Make maximum line length configurable. [Rainer Jung] * ) mod_substitute: Fix line length limitation in case of regexp plus flatten. [Rainer Jung] * ) mod_proxy: Truncated character worker names are no longer fatal errors. PR53218. [Jim Jagielski] * ) mod_dav: Set r->status_line in dav_error_response. PR 55426. * ) mod_proxy_http, mod_cache: Avoid (unlikely) accesses to freed memory. [Yann Ylavic, Christophe Jaillet] * ) http_protocol: fix logic in ap_method_list_(add|remove) in order: - to correctly reset bits - not to modify the 'method_mask' bitfield unnecessarily [Christophe Jaillet] * ) mod_slotmem_shm: Increase log level for some originally debug messages. [Jim Jagielski] * ) mod_ldap: In 2.4.10, some LDAP searches or comparisons might be done with the wrong credentials when a backend connection is reused. [Eric Covener] * ) mod_macro: Add missing APLOGNO for some Warning log messages. [Christophe Jaillet] * ) mod_cache: Avoid sending 304 responses during failed revalidations PR56881. [Eric Covener] * ) mod_status: Honor client IP address using mod_remoteip. PR 55886. [Jim Jagielski] * ) cmake-based build for Windows: Fix incompatibility with cmake 2.8.12 and later. PR 56615. [Chuck Liu , Jeff Trawick] * ) mod_ratelimit: Drop severity of AH01455 and AH01457 (ap_pass_brigade failed) messages from ERROR to TRACE1. Other filters do not bother re-reporting failures from lower level filters. PR56832. [Eric Covener] * ) core: Avoid useless warning message when parsing a section guarded by if $(foo) is used within the section. PR 56503 [Christophe Jaillet] * ) mod_proxy_fcgi: Fix faulty logging of large amounts of stderr from the application. PR 56858. [Manuel Mausz ] * ) mod_proxy_http: Proxy responses with error status and "ProxyErrorOverride On" hang until proxy timeout. PR53420 [Rainer Jung] * ) mod_log_config: Allow three character log formats to be registered. For backwards compatibility, the first character of a three-character format must be the '^' (caret) character. [Eric Covener] * ) mod_lua: Don't quote Expires and Path values. PR 56734. [Keith Mashinter, ] * ) mod_authz_core: Allow 'es to be seen from auth stanzas under virtual hosts. PR 56870. [Eric Covener]- Redone lost patch to fix boo#859439 + service reload can cause log data to be lost with logrotate under some circumstances: remove "-t" from service reload. [bnc#859439]- Fix URL syntax in various files- fix IfModule directive around SSLSessionCache [bnc#842377c#11]- added httpd-2.4.x-bnc871310-CVE-2013-5704-mod_headers_chunked_requests.patch to fix flaw in the way mod_headers handled chunked requests. Adds "MergeTrailers" directive to restore legacy behavior [bnc#871310], [CVE-2013-5704].- added httpd-2.4.x-bnc909715-CVE-2014-8109-mod_lua_handling_of_Require_line.patch that fixes handling of the Require line when a LuaAuthzProvider is used in multiple Require directives with different arguments [bnc#909715], [CVE-2014-8109].- fixed start at boot for ssl and encrypted key [bnc#792309]- fix shebang in start_apache2 script that contains bash-specific constructions- small improvement of ssl instructions [bnc#891813]- fix bashisms in post scripts- added httpd-2.4.10-check_null_pointer_dereference.patch to avoid a crash when Content-Type has an empty value [bnc#899836], CVE-2014-3581- httpd-event-deadlock.patch: Fix worker-listener deadlock in graceful restart.- httpd-2.1.9-apachectl.dif renamed to httpd-2.4.10-apachectl.patch and updated (fixed bashism).- drop (turned off) itk mpm spec file code as mpm-itk is now provided as a separate module, not via patch (see http://mpm-itk.sesse.net/ and [bnc#851229])- enable mod_imagemap [bnc#866366]- fixed link to Apache quickstart [bnc#624681], [bnc#789806]- the following unused patches were removed from the package: * apache2-mod_ssl_npn.patch * httpd-2.0.49-log_server_status.dif- 700 permissions for /usr/sbin/apache2-systemd-ask-pass and /usr/sbin/start_apache2 [bnc#851627]- allow only TCP ports in Yast2 firewall files- more 2.2 -> 2.4 [bnc#862058]- ServerSignature=Off and ServerTokens=Prod by request from security team [bnc#716495]- fix documentation links 2.2 -> 2.4 [bnc#888163] (internal)- Update package Summary and Description. - version 2.4.10 * SECURITY: CVE-2014-0117 (cve.mitre.org) * SECURITY: CVE-2014-3523 (cve.mitre.org) * SECURITY: CVE-2014-0226 (cve.mitre.org) * SECURITY: CVE-2014-0118 (cve.mitre.org) * SECURITY: CVE-2014-0231 (cve.mitre.org) * Multiple bugfixes to mod_ssl, mod_cache, mod_deflate, mod_lua * mod_proxy_fcgi supports unix sockets.- provide httpd.service as alias for apache2.service for compatibility reasons (bnc#888093)- move most ssl options to ssl-global.conf. There is usually no need for every vhost to re-define the ciphers for example (bnc#865582). Drop some commented entries that only lead to confusion.- version 2.4.9 * SECURITY: CVE-2014-0098 * SECURITY: CVE-2013-6438 * multiple bugfixes and improvements to mod_ssl, mod_lua, mod_session and core, see CHANGES for details.- /etc/sysconfig/apache2: add socache_shmcb to the list of modules that are enabled. /etc/apache2/ssl-global.conf: make SSLSessionCache shmcb... conditional on IfModule socache_shmcb. The same applies to SSLSessionCache dmb:* via module socache_dbm in commented section of same file. [bnc#864185] - /etc/sysconfig/apache2: remove reference to non-existing script /usr/share/doc/packages/apache2/certificate.sh, which was only a wrapper to mkcert.sh anyways. [bnc#864185]- update to apache 2.4.7, important changes: * This release requires both apr and apr-util 1.5.x series and therefore will no longer build in older released products * mod_ssl: Improve handling of ephemeral DH and ECDH keys (obsoletes httpd-mod_ssl_ephemeralkeyhandling.patch) * event MPM: Fix possible crashes * mod_deflate: Improve error detection * core: Add open_htaccess hook in conjunction with dirwalk_stat. * mod_rewrite: Make rewrite websocket-aware to allow proxying. * mod_ssl: drop support for export-grade ciphers with ephemeral RSA keys, and unconditionally disable aNULL, eNULL and EXP ciphers (not overridable via SSLCipherSuite) * core, mod_ssl: Enable the ability for a module to reverse the sense of a poll event from a read to a write or vice versa (obsoletes httpd-event-ssl.patch) * see CHANGES for more details- httpd-mod_ssl_ephemeralkeyhandling.patch obsoletes mod_ssl-2.4.x-ekh.diff this new patch is the final form of the rework, merged for 2.4.7.- Removed obsolete directive DefaultType - Changed all access control to new Require directive- reenable mod_ssl-2.4.x-ekh.diff- Correct build in old distros.- disable (revert) mod_ssl changes in the previous commit so it does not end in factory or 13.1 yet.- make mod_systemd static so scenarios described in [bnc#846897] do not happen again.- mod_ssl: improve ephemeral key handling in particular, support DH params with more than 1024 bits, and allow custom configuration. This patch adjust DH parameters according to the relevant RFC recommendations and permanently disables the usage of "export" and "NULL" ciphers no matter what the user configuration is (mod_ssl-2.4.x-ekh.diff, to be in 2.4.7)- fix [bnc#846897] problems building kiwi images due to systemd not being running in chroot. (submit to 13.1 ASAP)- Fix SUSE spelling.- Also fix subtle non-obvious systemd unit confusion we really mean -DFOREGROUND not -DNO_DETACH the latter only inhibits the parent from forking, not quite the same as running in well.. the foreground as required.- Ensure we only use /run and not /var/run- Really use %requires_ge for libapr1 and libapr-util1 mentioned but not implemented in the previous commit.- Use %requires_ge for libapr1 and libapr-util1 - apache2-default-server.conf: Need to use IncludeOptional - apache-20-22-upgrade: also load authz_core - httpd-visibility.patch: Use compiler symbol visibility.- Make the default keysize in the sample gensslcerts 2048 bits to match government recommendations.- Enable mod_proxy_html, mod_xml2enc and mod_lua (missed BuildRequires)- provide and obsolete mod_macro - upgrade: some people complain that log_config module is not enabled by default sometimes, fix that. - upgrade : "SSLMutex" no longer exists. - Toogle EnableSendfile on because now apache defaults to off due to kernel bugs. that's a silly thing to do here as kernel bugs have to be fixed at their source, not worked around in applications.- httpd-event-ssl.patch: from upstream Lift the restriction that prevents mod_ssl taking full advantage of the event MPM.- Update to version 2.4.6 * SECURITY: CVE-2013-1896 (cve.mitre.org) * SECURITY: CVE-2013-2249 (cve.mitre.org) * Major updates to mod_lua * Support for proxying websocket requests * Higher performant shm-based cache implementation * Addition of mod_macro for easier configuration management * As well as several exciting fixes, especially those related to RFC edge cases in mod_cache and mod_proxy. - IMPORTANT : With the current packaging scheme, we can no longer Include the ITK MPM, therefore it has been disabled. This is because this MPM can now only be provided as a loadable module but we do not currently build MPMs as shared modules but as independant binaries and all helpers/startup scripts depend on that behaviour. It will be fixed in the upcoming weeks/months.- apache-20-22-upgrade: still no cookie, module authn_file is ok and must not be disabled on update. authn_core must however be enabled too.- fix apache_mmn spec macro, otherwise all modules down the chain will have broken dependencies- remove After=mysql.service php-fpm.service postgresql.service which were added in the previous change, those must be added as Before=apache2.service in the respective services.- Include mod_systemd for more complete integration with systemd, turn the service to Typé=notify as required - Disable SSL NPN patch for now, it is required for mod_spdy but mod_spdy does not support apache 2.4- apache 2.4.4 * fix for CVE-2012-3499 * fix for the CRIME attack (disable ssl compression by default) * many other bugfies * build access_compat amd unixd as static modules and solve some other upgrade quirks (bnc#813705)- Install apache2.service accordingly (/usr/lib/systemd for 12.3 and up or /lib/systemd for older versions).- Apache 2.4.3 * SECURITY: CVE-2012-3502 * SECURITY: CVE-2012-2687 * mod_cache: Set content type in case we return stale content. * lots of bugfixes see http://www.apache.org/dist/httpd/CHANGES_2.4.3- Improve systemd unit file (tested for months)- use %set_permissions instead %run_permissions (bnc#764097)- Fix factory-auto (aka r2dbag) complains about URL. - Provide a symlink for apxs2 new location otherwise all buggy spec files of external modules will break.- BuildRequire xz explicitly, fix build in !Factory - Drop more old, unused patches- Upgrade to apache 2.4.2 * * ATTENTION, before installing this update YOU MUST READ http://httpd.apache.org/docs/2.4/upgrading.html CAREFULLY otherwise your server will most likely fail to start due to backward incompatible changes. * You can read the huge complete list of changes at http://httpd.apache.org/docs/2.4/new_features_2_4.html- gensslcert: Use 0400 permissions for generated SSL certificate files instead of 0644- modified apache2.2-mpm-itk-20090414-00.patch to fix itk running as root. bnc#681176 / CVE-2011-1176- remove the insecure LD_LIBRARY_PATH line. bnc#757710- Add apache2-mod_ssl_npn.patch: Add npn support to mod_ssl, which is needed by spdy. - Provide apache2(mod_ssl+npn), indicating that our mod_ssl does have the npn patch. This can be used by mod_spdy to ensure a compatible apache/mod_ssl is installed.- fix truncating and resulting paniking of answer headers (bnc#690734)- update to 2.2.22 * ) SECURITY: CVE-2011-3368 (cve.mitre.org) Reject requests where the request-URI does not match the HTTP specification, preventing unexpected expansion of target URLs in some reverse proxy configurations. * ) SECURITY: CVE-2011-3607 (cve.mitre.org) Fix integer overflow in ap_pregsub() which, when the mod_setenvif module is enabled, could allow local users to gain privileges via a .htaccess file. * ) SECURITY: CVE-2011-4317 (cve.mitre.org) Resolve additional cases of URL rewriting with ProxyPassMatch or RewriteRule, where particular request-URIs could result in undesired backend network exposure in some configurations. * ) SECURITY: CVE-2012-0021 (cve.mitre.org) mod_log_config: Fix segfault (crash) when the '%{cookiename}C' log format string is in use and a client sends a nameless, valueless cookie, causing a denial of service. The issue existed since version 2.2.17. PR 52256. * ) SECURITY: CVE-2012-0031 (cve.mitre.org) Fix scoreboard issue which could allow an unprivileged child process could cause the parent to crash at shutdown rather than terminate cleanly. * ) SECURITY: CVE-2012-0053 (cve.mitre.org) Fix an issue in error responses that could expose "httpOnly" cookies when no custom ErrorDocument is specified for status code 400. * ) mod_proxy_ajp: Try to prevent a single long request from marking a worker in error. * ) config: Update the default mod_ssl configuration: Disable SSLv2, only allow >= 128bit ciphers, add commented example for speed optimized cipher list, limit MSIE workaround to MSIE <= 5. * ) core: Fix segfault in ap_send_interim_response(). PR 52315. * ) mod_log_config: Prevent segfault. PR 50861. * ) mod_win32: Invert logic for env var UTF-8 fixing. Now we exclude a list of vars which we know for sure they dont hold UTF-8 chars; all other vars will be fixed. This has the benefit that now also all vars from 3rd-party modules will be fixed. PR 13029 / 34985. * ) core: Fix hook sorting for Perl modules, a regression introduced in 2.2.21. PR: 45076. * ) Fix a regression introduced by the CVE-2011-3192 byterange fix in 2.2.20: A range of '0-' will now return 206 instead of 200. PR 51878. * ) Example configuration: Fix entry for MaxRanges (use "unlimited" instead of "0"). * ) mod_substitute: Fix buffer overrun. - adjusted SSL template/default config for upstream changes, and added MaxRanges example to apache2-server-tuning.conf - fixed installation of (moved) man pages- compile with pcre 8.30 - patch taken from apache bugzilla- enable mod_reqtimeout by default via APACHE_MODULES in /etc/sysconfig/apache2, configuration /etc/apache2/mod_reqtimeout.conf . Of course, the existing configuration remains unchanged.- add default vhost configs * default-vhost.conf, default-vhost-ssl.conf, README.default-vhost- openldap2 is not necessary, just openldap2-devel as buildrequires- add automake as buildrequire to avoid implicit dependency- update to /etc/init.d/apache2: handle reload with deleted binaries after package update more thoughtfully: If the binaries have been replaced, then a dlopen(3) on the apache modules is prone to fail. => Don't reload then, but complain and fail. Especially important for logrotate!- httpd-2.2.x-CVE-2011-3368-server_protocl_c.diff fixes mod_proxy reverse exposure via RewriteRule or ProxyPassMatch directives. This is CVE-2011-3368.- Ensure service_add_pre macro is correctly called for openSUSE 12.1 or later.- Fix systemd files packaging, %ghost is not a good idea. - Use systemd rpm macros for openSUSE 12.1 and later.- don't create $RPM_BUILD_ROOT/etc/init.d twice in %install.- Update to 2.2.21. News therein: * re-worked CVE-2011-3192 (byterange_filter.c) with a regression fix. New config option: MaxRanges (PR 51748) * multi fixes in mod_filter, mod_proxy_ajp, mod_dav_fs, mod_alias, mod_rewrite. As always, see CHANGES file. - added httpd-%{realver}.tar.bz2.asc to source, along with 60C5442D.key which the tarball was signed with.- need to add %ghost /lib/systemd to satisfy distributions that have no systemd yet.- Add apache2-systemd-ask-pass / apache2.service / start_apache2 and modify apache2-ssl-global.conf for systemd support (bnc#697137).- Update to version 2.2.20, fix CVE-2011-3192 mod_deflate D.o.S.- Fix apache PR 45076- Use SSL_MODE_RELEASE_BUFFERS to reduce mod_ssl memory usage- Add 2 patches from the "low hanging fruit" warnings in apache STATUS page. * mod_deflate: Stop compressing HEAD requests if there is not Content-Length header * mod_reqtimeout: Disable keep-alive after read timeout- Remove -fno-strict-aliasing from CFLAGS, no longer needed.- Allow KeepAliveTimeout to be expressed in miliseconds sometimes one second is too long, upstream r733557.- When linux changes to version 3.x configure tests are gonna break. remove version check, assuming kernel 2.2 or later.- Update to 2.2.19, only one bugfix. * ) Revert ABI breakage in 2.2.18 caused by the function signature change of ap_unescape_url_keep2f(). This release restores the signature from 2.2.17 and prior, and introduces ap_unescape_url_keep2f_ex(). [Eric Covener]- Remove SSLv2 disabled patch, already in upstream. - Update to version 2.2.18 * mod_ssl, ab: Support OpenSSL compiled without SSLv2 support. * core: Treat timeout reading request as 408 error, not 400. * core: Only log a 408 if it is no keepalive timeout. * mod_rewrite: Allow to unset environment variables. * prefork: Update MPM state in children during a graceful restart. * Other fixes in mod_cache,mod_dav,mod_proxy se NEWS for detail.- Fix regular expression in vhost ssl template IE workaround it is obsolete see https://issues.apache.org/bugzilla/show_bug.cgi?id=49484 You should apply this update to fix painfully slow SSL connections when using IE.- Allow usage of an openSSL library compiled without SSlv2- set sane default cipher string in apache2-vhost-ssl.template - remove useless example snakeoil certs - remove broken mkcert script- Tag boot script as interactive as systemd uses it- recommend the default mpm package (bnc#670027)- update to 2.2.17: SECURITY: CVE-2010-1623 (cve.mitre.org) Fix a denial of service attack against apr_brigade_split_line(). [Actual fix is in the libapr 1.3 line, which we don't use // poeml] SECURITY: CVE-2009-3560, CVE-2009-3720 (cve.mitre.org) Fix two buffer over-read flaws in the bundled copy of expat which could cause applications to crash while parsing specially-crafted XML documents. [We build with system expat library // poeml] prefork MPM: Run cleanups for final request when process exits gracefully to work around a flaw in apr-util. PR 43857 core: - check symlink ownership if both FollowSymlinks and SymlinksIfOwnerMatch are set - fix origin checking in SymlinksIfOwnerMatch PR 36783 - (re)-introduce -T commandline option to suppress documentroot check at startup. PR 41887 vhost: - A purely-numeric Host: header should not be treated as a port. PR 44979 rotatelogs: - Fix possible buffer overflow if admin configures a mongo log file path. Proxy balancer: support setting error status according to HTTP response code from a backend. PR 48939. mod_authnz_ldap: - If AuthLDAPCharsetConfig is set, also convert the password to UTF-8. PR 45318. mod_dir, mod_negotiation: - Pass the output filter information to newly created sub requests; as these are later on used as true requests with an internal redirect. This allows for mod_cache et.al. to trap the results of the redirect. PR 17629, 43939 mod_headers: - Enable multi-match-and-replace edit option PR 46594 mod_log_config: - Make ${cookie}C correctly match whole cookie names instead of substrings. PR 28037. mod_reqtimeout: - Do not wrongly enforce timeouts for mod_proxy's backend connections and other protocol handlers (like mod_ftp). Enforce the timeout for AP_MODE_GETLINE. If there is a timeout, shorten the lingering close time from 30 to 2 seconds. mod_ssl: - Do not do overlapping memcpy. PR 45444- Add missing libcap-devel to BuildRequires, wanted by "itk" MPM.- update to 2.2.16: SECURITY: CVE-2010-1452 (cve.mitre.org) mod_dav, mod_cache: Fix Handling of requests without a path segment. PR: 49246 SECURITY: CVE-2010-2068 (cve.mitre.org) mod_proxy_ajp, mod_proxy_http, mod_reqtimeout: Fix timeout detection for platforms Windows, Netware and OS2. PR: 49417. core: - Filter init functions are now run strictly once per request before handler invocation. The init functions are no longer run for connection filters. PR 49328. mod_filter: - enable it to act on non-200 responses. PR 48377 mod_ldap: - LDAP caching was suppressed (and ldap-status handler returns title page only) when any mod_ldap directives were used in VirtualHost context. mod_ssl: - Fix segfault at startup if proxy client certs are shared across multiple vhosts. PR 39915. mod_proxy_http: - Log the port of the remote server in various messages. PR 48812. apxs: - Fix -A and -a options to ignore whitespace in httpd.conf mod_dir: - add FallbackResource directive, to enable admin to specify an action to happen when a URL maps to no file, without resorting to ErrorDocument or mod_rewrite. PR 47184 mod_rewrite: - Allow to set environment variables without explicitely giving a value. - add Requires and BuildRequires on libapr1 >= 1.4.2. In the past, libapr1 >= 1.0 was sufficient. But since 2.2.16, a failure to create listen sockets can occur, unless newer libapr1 is used. See https://bugzilla.redhat.com/show_bug.cgi?id=516331 - remove obsolete httpd-2.2.15-deprecated_use_of_build_in_variable.patch- add type and encoding for zipped SVG images (.svgz) Thanks to Sebastian Siebert (via Submit Request #40059)- fix deprecated usage of $[ in apxs2 (httpd-2.2.15-deprecated_use_of_build_in_variable.patch)- Do not compile in build time but use mtime of changes file instead. This allows build-compare to identify that no changes have happened.- add apache2-prefork to the Requires of apache2-devel, because apxs2 will build for prefork, if not called as apxs2-worker (which should rarely be the case). Also added gcc to the Requires.- update to 2.2.15: SECURITY: CVE-2009-3555 (cve.mitre.org) mod_ssl: Comprehensive fix of the TLS renegotiation prefix injection attack when compiled against OpenSSL version 0.9.8m or later. Introduces the 'SSLInsecureRenegotiation' directive to reopen this vulnerability and offer unsafe legacy renegotiation with clients which do not yet support the new secure renegotiation protocol, RFC 5746. SECURITY: CVE-2009-3555 (cve.mitre.org) mod_ssl: A partial fix for the TLS renegotiation prefix injection attack by rejecting any client-initiated renegotiations. Forcibly disable keepalive for the connection if there is any buffered data readable. Any configuration which requires renegotiation for per-directory/location access control is still vulnerable, unless using OpenSSL >= 0.9.8l. SECURITY: CVE-2010-0408 (cve.mitre.org) mod_proxy_ajp: Respond with HTTP_BAD_REQUEST when the body is not sent when request headers indicate a request body is incoming; not a case of HTTP_INTERNAL_SERVER_ERROR. SECURITY: CVE-2010-0425 (cve.mitre.org) mod_isapi: Do not unload an isapi .dll module until the request processing is completed, avoiding orphaned callback pointers. SECURITY: CVE-2010-0434 (cve.mitre.org) Ensure each subrequest has a shallow copy of headers_in so that the parent request headers are not corrupted. Elimiates a problematic optimization in the case of no request body. PR 48359 mod_reqtimeout: - New module to set timeouts and minimum data rates for receiving requests from the client. core: - Fix potential memory leaks by making sure to not destroy bucket brigades that have been created by earlier filters. - Return APR_EOF if request body is shorter than the length announced by the client. PR 33098 - Preserve Port information over internal redirects PR 35999 - Build: fix --with-module to work as documented PR 43881 worker: - Don't report server has reached MaxClients until it has. Add message when server gets within MinSpareThreads of MaxClients. PR 46996. ab, mod_ssl: - Restore compatibility with OpenSSL < 0.9.7g. mod_authnz_ldap: - Add AuthLDAPBindAuthoritative to allow Authentication to try other providers in the case of an LDAP bind failure. PR 46608 - Failures to map a username to a DN, or to check a user password now result in an informational level log entry instead of warning level. mod_cache: - Introduce the thundering herd lock, a mechanism to keep the flood of requests at bay that strike a backend webserver as a cached entity goes stale. - correctly consider s-maxage in cacheability decisions. mod_disk_cache, mod_mem_cache: - don't cache incomplete responses, per RFC 2616, 13.8. PR15866. mod_charset_lite: - Honor 'CharsetOptions NoImplicitAdd'. mod_filter: - fix FilterProvider matching where "dispatch" string doesn't exist. PR 48054 mod_include: - Allow fine control over the removal of Last-Modified and ETag headers within the INCLUDES filter, making it possible to cache responses if desired. Fix the default value of the SSIAccessEnable directive. mod_ldap: - If LDAPSharedCacheSize is too small, try harder to purge some cache entries and log a warning. Also increase the default LDAPSharedCacheSize to 500000. This is a more realistic size suitable for the default values of 1024 for LdapCacheEntries/LdapOpCacheEntries. PR 46749. mod_log_config: - Add the R option to log the handler used within the request. mod_mime: - Make RemoveType override the info from TypesConfig. PR 38330. - Detect invalid use of MultiviewsMatch inside Location and LocationMatch sections. PR 47754. mod_negotiation: - Preserve query string over multiviews negotiation. This buglet was fixed for type maps in 2.2.6, but the same issue affected multiviews and was overlooked. PR 33112 mod_proxy: - unable to connect to a backend is SERVICE_UNAVAILABLE, rather than BAD_GATEWAY or (especially) NOT_FOUND. PR 46971 mod_proxy, mod_proxy_http: - Support remote https proxies by using HTTP CONNECT. PR 19188. mod_proxy_http: - Make sure that when an ErrorDocument is served from a reverse proxied URL, that the subrequest respects the status of the original request. This brings the behaviour of proxy_handler in line with default_handler. PR 47106. mod_proxy_ajp: - Really regard the operation a success, when the client aborted the connection. In addition adjust the log message if the client aborted the connection. mod_rewrite: - Make sure that a hostname:port isn't fully qualified if the request is a CONNECT request. PR 47928 - Add scgi scheme detection. mod_ssl: - Fix a potential I/O hang if a long list of trusted CAs is configured for client cert auth. PR 46952. - When extracting certificate subject/issuer names to the SSL_*_DN_* variables, handle RDNs with duplicate tags by exporting multiple varialables with an "_n" integer suffix. PR 45875. - obsolete patch CVE-2009-3555-2.2.patch removed- readd whitespace removed by autobuild- package documentation as noarch- add patch for CVE-2009-3555 (cve.mitre.org) http://www.apache.org/dist/httpd/patches/apply_to_2.2.14/CVE-2009-3555-2.2.patch http://mail-archives.apache.org/mod_mbox/httpd-announce/200911.mbox/%3c20091107013220.31376.qmail@minotaur.apache.org%3e A partial fix for the TLS renegotiation prefix injection attack by rejecting any client-initiated renegotiations. Any configuration which requires renegotiation for per-directory/location access control is still vulnerable, unless using OpenSSL >= 0.9.8l.- update to 2.2.14: * ) SECURITY: CVE-2009-2699 (cve.mitre.org) Fixed in APR 1.3.9. Faulty error handling in the Solaris pollset support (Event Port backend) which could trigger hangs in the prefork and event MPMs on that platform. PR 47645. [Jeff Trawick] * ) SECURITY: CVE-2009-3095 (cve.mitre.org) mod_proxy_ftp: sanity check authn credentials. [Stefan Fritsch , Joe Orton] * ) SECURITY: CVE-2009-3094 (cve.mitre.org) mod_proxy_ftp: NULL pointer dereference on error paths. [Stefan Fritsch , Joe Orton] * ) mod_proxy_scgi: Backport from trunk. [André Malo] * ) mod_ldap: Don't try to resolve file-based user ids to a DN when AuthLDAPURL has been defined at a very high level. PR 45946. [Eric Covener] * ) htcacheclean: 19 ways to fail, 1 error message. Fixed. [Graham Leggett] * ) mod_ldap: Bring the LDAPCacheEntries and LDAPOpCacheEntries usage() in synch with the manual and the implementation (0 and -1 both disable the cache). [Eric Covener] * ) mod_ssl: The error message when SSLCertificateFile is missing should at least give the name or position of the problematic virtual host definition. [Stefan Fritsch sf sfritsch.de] * ) htdbm: Fix possible buffer overflow if dbm database has very long values. PR 30586 [Dan Poirier] * ) Add support for HTTP PUT to ab. [Jeff Barnes ] * ) mod_ssl: Fix SSL_*_DN_UID variables to use the 'userID' attribute type. PR 45107. [Michael Ströder , Peter Sylvester ] * ) mod_cache: Add CacheIgnoreURLSessionIdentifiers directive to ignore defined session identifiers encoded in the URL when caching. [Ruediger Pluem] * ) mod_mem_cache: fix seg fault under load due to pool concurrency problem PR: 47672 [Dan Poirier ] * ) mod_autoindex: Correctly create an empty cell if the description for a file is missing. PR 47682 [Peter Poeml ]- update to 2.2.13: * ) SECURITY: CVE-2009-2412 (cve.mitre.org) Distributed with APR 1.3.8 and APR-util 1.3.9 to fix potential overflow in pools and rmm, where size alignment was taking place. * ) mod_ssl, ab: improve compatibility with OpenSSL 1.0.0 betas. Report warnings compiling mod_ssl against OpenSSL to the httpd developers. * ) mod_cgid: Do not add an empty argument when calling the CGI script. PR 46380 * ) Fix potential segfaults with use of the legacy ap_rputs() etc interfaces, in cases where an output filter fails. PR 36780.- update to 2.2.12: SECURITY: CVE-2009-1891 (cve.mitre.org) Fix a potential Denial-of-Service attack against mod_deflate or other modules, by forcing the server to consume CPU time in compressing a large file after a client disconnects. PR 39605. SECURITY: CVE-2009-1195 (cve.mitre.org) Prevent the "Includes" Option from being enabled in an .htaccess file if the AllowOverride restrictions do not permit it. SECURITY: CVE-2009-1890 (cve.mitre.org) Fix a potential Denial-of-Service attack against mod_proxy in a reverse proxy configuration, where a remote attacker can force a proxy process to consume CPU time indefinitely. SECURITY: CVE-2009-1191 (cve.mitre.org) mod_proxy_ajp: Avoid delivering content from a previous request which failed to send a request body. PR 46949 SECURITY: CVE-2009-0023, CVE-2009-1955, CVE-2009-1956 (cve.mitre.org) The bundled copy of the APR-util library has been updated, fixing three different security issues which may affect particular configurations and third-party modules. core: - New piped log syntax: Use "||process args" to launch the given process without invoking the shell/command interpreter. Use "|$command line" (the default behavior of "|command line" in 2.2) to invoke using shell, consuming an additional shell process for the lifetime of the logging pipe program but granting additional process invocation flexibility. - prefork: Fix child process hang during graceful restart/stop in configurations with multiple listening sockets. PR 42829. - Translate the status line to ASCII on EBCDIC platforms in ap_send_interim_response() and for locally generated "100 Continue" responses. - CGI: return 504 (Gateway timeout) rather than 500 when a script times out before returning status line/headers. PR 42190 - prefork: Log an error instead of segfaulting when child startup fails due to pollset creation failures. PR 46467. - core/utils: Enhance ap_escape_html API to support escaping non-ASCII chars - Set Listen protocol to "https" if port is set to 443 and no proto is specified (as documented but not implemented). PR 46066 - Output -M and -S dumps (modules and vhosts) to stdout instead of stderr. PR 42571 and PR 44266 (dup). mod_alias: - check sanity in Redirect arguments. PR 44729 - Ensure Redirect emits HTTP-compliant URLs. PR 44020 mod_authnz_ldap: - Reduce number of initialization debug messages and make information more clear. PR 46342 mod_cache: - Introduce 'no-cache' per-request environment variable to prevent the saving of an otherwise cacheable response. - Correctly save Content-Encoding of cachable entity. PR 46401 - When an explicit Expires or Cache-Control header is set, cache normally non-cacheable response statuses. PR 46346. mod_cgid: - fix segfault problem on solaris. PR 39332 mod_disk_cache: - The module now turns off sendfile support if 'EnableSendfile off' is defined globally. PR 41218. mod_disk_cache/mod_mem_cache: - Fix handling of CacheIgnoreHeaders directive to correctly remove headers before storing them. mod_deflate: - revert changes in 2.2.8 that caused an invalid etag to be emitted for on-the-fly gzip content-encoding. PR 39727 will require larger fixes and this fix was far more harmful than the original code. PR 45023. mod_ext_filter: - fix error handling when the filter prog fails to start, and introduce an onfail configuration option to abort the request or to remove the broken filter and continue. PR 41120 mod_include: - fix potential segfault when handling back references on an empty SSI variable. - Prevent a case of SSI timefmt-smashing with filter chains including multiple INCLUDES filters. PR 39369 - support generating non-ASCII characters as entities in SSI PR 25202 mod_ldap: - Avoid a segfault when result->rc is checked in uldap_connection_init when result is NULL. This could happen if LDAP initialization failed. PR 45994. mod_negotiation: - Escape pathes of filenames in 406 responses to avoid HTML injections and HTTP response splitting. PR 46837. mod_proxy: - Complete ProxyPassReverse to handle balancer URL's. Given; BalancerMember balancer://alias http://example.com/foo ProxyPassReverse /bash balancer://alias/bar backend url http://example.com/foo/bar/that is now translated /bash/that mod_proxy_ajp: - Check more strictly that the backend follows the AJP protocol. - Forward remote port information by default. mod_proxy_http: - fix Host: header for literal IPv6 addresses. PR 47177 - fix case sensitivity checking transfer encoding PR 47383 mod_rewrite: - Remove locking for writing to the rewritelog. PR 46942 - Fix the error string returned by RewriteRule. RewriteRule returned "RewriteCond: bad flag delimiters" when the 3rd argument of RewriteRule was not started with "[" or not ended with "]". PR 45082 - When evaluating a proxy rule in directory context, do escape the filename by default. PR 46428 - Introduce DiscardPathInfo|DPI flag to stop the troublesome way that per-directory rewrites append the previous notion of PATH_INFO to each substitution before evaluating subsequent rules. PR38642 - fix "B" flag breakage by reverting r589343 PR 45529 mod_ssl: - Add server name indication support (RFC 4366) and better support for name based virtual hosts with SSL. PR 34607 - Add SSLProxyCheckPeerExpire and SSLProxyCheckPeerCN directives to enable stricter checking of remote server certificates. - Add SSLRenegBufferSize directive to allow changing the size of the buffer used for the request-body where necessary during a per-dir renegotiation. PR 39243. mod_substitute: - Fix a memory leak. PR 44948- Fix missing -Y option in gensslcert [bnc#416888]- merge changes from openSUSE:Factory: - trailing spaces removed from robots.txt - moved Snakeoil certificates to separate subpackage example-certificates [bnc#419601] - removed outdated ca-bundle.crt - NOT merging the change from [bnc#301380] (setting TraceEnable Off), since there is no reason to deviate from upstream- avoid useless (and potentially irritating) messages from usermod called in %post when updating the package - this should probably only be run when updating from very old installs anyway. - likewise, avoid similar useless messages about creation of the httpd user when installing on Fedora.- fix hyperref to the quickstart howto in the installed httpd.conf [bnc#500938] Thanks, Frank!- add ITK MPM (apache2.2-mpm-itk-20090414-00.patch) see http://mpm-itk.sesse.net/- buildfix (from Factory): replace "shadow" by "pwdutils" in requires- update apache2-vhost.template mod_php4 references [bnc#444205]- fixed the ed script which turns apxs into apxs-{prefork,worker,event) to work on Fedora, by using - instead of ^ to go "up" one line. Thereby fixing Fedora build. (Package probably needs further tuning to fit into a Fedora environment.)lamb11 1499471487  !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqrstuvwxyz{|}~     2.4.23-11.22.4.23-11.2 apxsapxs-eventapxs-preforkapxs-workerapxs2apxs2-eventapxs2-preforkapxs2-workerapache2apache2-eventap_compat.hap_config.hap_config_auto.hap_config_layout.hap_expr.hap_hooks.hap_listen.hap_mmn.hap_mpm.hap_provider.hap_regex.hap_regkey.hap_release.hap_slotmem.hap_socache.hapache_noprobes.hcache_common.hheartbeat.hhttp_config.hhttp_connection.hhttp_core.hhttp_log.hhttp_main.hhttp_protocol.hhttp_request.hhttp_vhost.hhttpd.hmod_auth.hmod_cache.hmod_cgi.hmod_core.hmod_dav.hmod_dbd.hmod_include.hmod_log_config.hmod_proxy.hmod_request.hmod_rewrite.hmod_session.hmod_so.hmod_ssl.hmod_ssl_openssl.hmod_status.hmod_unixd.hmod_watchdog.hmod_xml2enc.hmpm_common.hos.hscoreboard.hunixd.hutil_cfgtree.hutil_charset.hutil_cookies.hutil_ebcdic.hutil_fcgi.hutil_filter.hutil_ldap.hutil_md5.hutil_mutex.hutil_script.hutil_time.hutil_varbuf.hutil_xml.hapache2-preforkap_compat.hap_config.hap_config_auto.hap_config_layout.hap_expr.hap_hooks.hap_listen.hap_mmn.hap_mpm.hap_provider.hap_regex.hap_regkey.hap_release.hap_slotmem.hap_socache.hapache_noprobes.hcache_common.hheartbeat.hhttp_config.hhttp_connection.hhttp_core.hhttp_log.hhttp_main.hhttp_protocol.hhttp_request.hhttp_vhost.hhttpd.hmod_auth.hmod_cache.hmod_cgi.hmod_core.hmod_dav.hmod_dbd.hmod_include.hmod_log_config.hmod_proxy.hmod_request.hmod_rewrite.hmod_session.hmod_so.hmod_ssl.hmod_ssl_openssl.hmod_status.hmod_unixd.hmod_watchdog.hmod_xml2enc.hmpm_common.hos.hscoreboard.hunixd.hutil_cfgtree.hutil_charset.hutil_cookies.hutil_ebcdic.hutil_fcgi.hutil_filter.hutil_ldap.hutil_md5.hutil_mutex.hutil_script.hutil_time.hutil_varbuf.hutil_xml.hapache2-workerap_compat.hap_config.hap_config_auto.hap_config_layout.hap_expr.hap_hooks.hap_listen.hap_mmn.hap_mpm.hap_provider.hap_regex.hap_regkey.hap_release.hap_slotmem.hap_socache.hapache_noprobes.hcache_common.hheartbeat.hhttp_config.hhttp_connection.hhttp_core.hhttp_log.hhttp_main.hhttp_protocol.hhttp_request.hhttp_vhost.hhttpd.hmod_auth.hmod_cache.hmod_cgi.hmod_core.hmod_dav.hmod_dbd.hmod_include.hmod_log_config.hmod_proxy.hmod_request.hmod_rewrite.hmod_session.hmod_so.hmod_ssl.hmod_ssl_openssl.hmod_status.hmod_unixd.hmod_watchdog.hmod_xml2enc.hmpm_common.hos.hscoreboard.hunixd.hutil_cfgtree.hutil_charset.hutil_cookies.hutil_ebcdic.hutil_fcgi.hutil_filter.hutil_ldap.hutil_md5.hutil_mutex.hutil_script.hutil_time.hutil_varbuf.hutil_xml.hap_compat.hap_config.hap_config_auto.hap_config_layout.hap_expr.hap_hooks.hap_listen.hap_mmn.hap_mpm.hap_provider.hap_regex.hap_regkey.hap_release.hap_slotmem.hap_socache.hapache_noprobes.hcache_common.hheartbeat.hhttp_config.hhttp_connection.hhttp_core.hhttp_log.hhttp_main.hhttp_protocol.hhttp_request.hhttp_vhost.hhttpd.hmod_auth.hmod_cache.hmod_cgi.hmod_core.hmod_dav.hmod_dbd.hmod_include.hmod_log_config.hmod_proxy.hmod_request.hmod_rewrite.hmod_session.hmod_so.hmod_ssl.hmod_ssl_openssl.hmod_status.hmod_unixd.hmod_watchdog.hmod_xml2enc.hmpm_common.hos.hscoreboard.hunixd.hutil_cfgtree.hutil_charset.hutil_cookies.hutil_ebcdic.hutil_fcgi.hutil_filter.hutil_ldap.hutil_md5.hutil_mutex.hutil_script.hutil_time.hutil_varbuf.hutil_xml.hapxsapxs2apache2buildconfig.niceconfig_vars.mkconfig_vars.mk-eventconfig_vars.mk-preforkconfig_vars.mk-workerinstdso.shlibrary.mkltlib.mkmkdir.shprogram.mkrules.mkspecial.mk/usr/bin//usr/include//usr/include/apache2-event//usr/include/apache2-prefork//usr/include/apache2-worker//usr/include/apache2//usr/sbin//usr/share//usr/share/apache2//usr/share/apache2/build/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector -funwind-tables -fasynchronous-unwind-tables -gobs://build.opensuse.org/openSUSE:Leap:42.3/standard/4132bec854fc86ab3e1aaa801a9bec83-apache2cpiolzma5x86_64-suse-linuxa /usr/bin/perl -w script, ASCII text executabledirectoryASCII textC source, ASCII textHTML document, ASCII textPOSIX shell script, ASCII text executablemakefile script, ASCII textRRRRRRR i1X8 Խs@?`] crv9uhfc艿GX[ }"T] Ʃ'K&qʱlv OABL(:Cy, s xkG]i֠jG[݆Ըl[:42.f21O0|qnݘKP !{bKr"il{` 緤P-?c`獕cxs(pDVR&UVrwg佭챞>A ܆q2hM2غ\,yKX9]Z5)آ-A5K "|;pЦt~p1 ut|Q0eTsJE#q&9슺,[ ʾCK<80zM'9/y7ǹ3̵|S4)P(KqT{+,^(s:zAI8% jŻZJB{-4r(A/DN ްPh^=ETJWW`udSp[o?lSOEwiL)7wrdh*.\Λť?PoR^SFA~ʂDf® WO' $:j7~c 4(AAV/m'+8@NA6#?CMp͝LFrOB?b3Bͪlm w.2Fm$AO#jY) v W|PeyW\J@++c֐ +oh>,)RSˉn<g>t zf}V`vvd?Cɦ%*oIFd@劧ޔF3ߓ@H4Q}HW*o?q=m \t\$h.HXcr PfգEhݤ%Cub(vwSf1ơ8>(ᱟ`}dUl!FR9w(:Y*wǕ VHjR,C' A UXжh;3p%l[O!sIls]QݷXv945Z+;,5佱Q0ٙO:0Ǚz<ȡ}a1!T~NPM%=`jwZ NK,)8Ly%WRk-ͲPLB_7#]z:4.geI5jZT7 z Ty=b8^_^-J Ʒ#nFW QH6{^PE/QT-dpKt #Z;bk?i?A뷱6_Mt/Xr)9!?6LF>ux9!iOI urͯu+yp?,I* mo/`/5ܸ$vk gP~&Av44AV4i=(: 6=]WƗ=)i:X =i ]A)fԈua*`"v_(c>|:ǚaʆ.=H~&QP?mL*y\M)ČT(=NNn5AsEs  8q };V\Y'ss};A5̠(sQQ=/mLy!PLImUG(@\-&oMCfpRz/k^=:63p}hLeq9\tGH+bLHѵf6KK>(51I ,ȸ堟?Jdd1&_aR T򫟅ۼG}y+(0V uΆv!Rp 3QmA,jݎ~/E=azA\@b?T"Wh5t&"+rG8IBH&|tQO>n]pF -*4<4[|$b11Z/ս 3QEǫ\eLwgҒgTl\"eJ_͊P| PhڃhVfS7S\sMwB^UR3./-Σ%}, #d.1צյؐ↺SYB;mQ=_]ƽ8DK;#au1 Ԕ K,>f9^:3Ҧ0xSv=3Tcr} bHD3ng (=ջ.kӳX-S'q6^QUj7ZGNn 3}*mSHāxk )Î{K6'ti)řH="w=$2.ps)髹hjgN }n9&)-8:׼jnOU'gG*vW5RXF墨)GCby2}cؼ;ҠՊe !r>z]9+1)W_c9x-ϊ`pHrESs.i;{-ZKtHE.{8݂w9eQڃ"G񌑛*9a*[0G[ǿ9dpHcG"WBqbً%2 _u5|.ASl".i\Q8>SȷJju@q\!ܩi9@q%ż&NB39tFQg_ DlћXԛeÚF*4}WW`Bm@))(})ձɇM'-Z^d4%A![DZ*o'd^Q/lO- c'##ZI3(J |5Ϛ5-ďмWkвXxĕQwa] p^9[x |Vke;X0I dk~`*9 j= A_/BRNg-"2e,q%^fV㵼xݻY.ӱ^ þ6$?r)6|"x:^Ĩh]c}(riA- c,FN=llvmZj5=1LZ8a 1ڕ}L؉[0uVMsЉ+)!ο.gVrM 7PPLW%O9#4wnxΆ> Dw:jQa.GE>jQoFZ0p Z绸R^`jC<~~(IKwcpZ}*򵅀 6]ƻ@KAKw޺"tp=CQr؛!4J`rjuYL;V$1o'EHt^+q۷1{:{ZF.dJc8#L$|Tssx F*ii<}TuXD\S Gf/=TDG7\ ^h 4İQ\̸Z sTX̽O{P|h3rw^hVs7s?_@v''@3%]^f/Z'#wgpWw&ZrZ(]O/jQ<页/ 3Spﲒd熊A3\s}eaԜwTQ^fe e<ַ:!ibQr*^OZG;.i|o$UZo*Rϗ~Q48D!c՚SRΌkEcSiIU8涠\$ U „O<\R]Fڦ\|5@q\Db=eL鞰[Gу7F*S}QgK(M8 )3v8r().%} q $8\0 4h/Y.Ax"x3s$N5./2'7g6?B:"䈄O"z-( q]x\I[XQ׳}$[rf&1k֌ Kr͙u67mDJnumqͩ]yÚg*ccz.T!u* ~Sp)#H4,V#Ǒ+uV` O7\;ּpȓ]UlO6 '*MRwems!rqf"o<&j8M3lg#H{ɿf%?`+d$zI g(䟃Hg A_s_SV9*X?>6PN쉧4U\ṷ x˹|JIϴeYZ{_ @B%bDC).Ve2* )Ϧ1]{&tLH mi#z&xP#cTVb0?m.J-~\f3$F3o{}%^9E (G4izWѷꫭäSH2&H:- Ic}shgY8żP lQ$}8]U; -[fE\ѻp"yzQdžv&JQ3eaVSI:&ݤ<2 Х-Yq9șԙcvkbsRB}}K) LenBoO OцA?GL):%;~7ކKU&jpxW RgMz'Aکvte MΑV0mdɓϩvL6ZJvTQ<dOvK첉v$5ҚA{DjWnKŦ(%\&628i̼/Nq++Wj WxfdO^ %YoC.lZ-LAʥ:ǻ Usލw8ќLvۻ1PNÍ,:v{Zw]@9#alm9R^9@1\ZXN:W  RIY\{&I2 >6!sGu)Pœd 1 5K/ "瞃rTz^;M6Ƴs&m7N|Fad z5"`MNJOu$ɼϖ:ܞ ]s՛=1ߴ>:&sðFn~T!hpoT,= ֥ uYpK}d؍ǚ]uZάXSL[|_z{tUOdIB~m̴(4 ,@mWs fQ`n(Pifk%!H@I_m&BZ{!/㈤g6I~LuvktlH̓uG X7܀%%gMhB[ i ǑrRXѩ'FO3Xh] K@Dʦ&X/hu{za$Teb$N"\-d Nve9S/裛eɻSy!DviSltlj 0|`<`޲B#_P2s u5Wubjٺ/,Q=+HrTĆs>idص4 רX qE;؈e(FHuw%̷0jR K/X0&7,~Unδi2`s«IR Y& C| "Cw$cGLۈ.97G,g!Ui[VOfr4s"]U5FZ|%Md;2a)鍸ryyA//[LnzMyX44<;1̑7Z,+3/q3Wp5\eR4<ή훮,'.Y xA=l8&.|K#όWYkCLc ꏙ|&\a;bf`"jyj3 V L, 2,L1q' i3<4fʹc\JV)(K֙{۽Khc5(:h1h>&٪h.a!̰'&X]vD_28(9ĖzRsaU·bl$+?N e=9BkuDf^,aEF*ch ?,Djj|f@\Fğ4]xA5YFRn1*9ߒ t̏Kj,S BST0cF/*d9K;@*# ?SDg ϝT-O\=fAI#1I^ǰ[fՊz|VF.&θ[P\86lc4pЈ=㵾 nϮ56wÖ(MҔh ':y2V)w\<>]|is&%gB:"ujӗ/֤%(WW4RtaudRl~?r1}U҅@g>ڙ{`&d)g6h U műNQMJ֎sL.'3qG%p ٥k?Uѭ6SB=2\\Ύ>ۖa@lU4rƌ?2]{#c;fj&fu1o{h ܛ\ 䈫?<"PPQD=Q1ESל8jKئSsk֏xAK߅c Aznl7N b&hUR%YkڧϧF{tq^upOzrZ&(!NQB(3ês 9(CT)&n5$NAgzV]޼y) jlo='P 4Ԗx[|v$%G,x!E7,QB5prtڛmCMfo!l]/wda3F>UY䓢ܸۧ23w}@ʤXv!}\߇Pu}o1 Ar˹nskxp:uv5m0!ael|_;=Wf4o$i>$fUZ3? Q̸C|tS+1AyɳjqWɉ=_Bxc%e(4Me5Ʌ,'ߑ؎3j'U-X`7+_FƲU)Z`ydyE]AƆ(#6K\o5Y)lNU )<+((-) -Vů.ǜ+'XC·:nRw,f1C# UJTz *x4c Pg}¥)9w{9`óW@YX'|'ԻD+oWDy5X,1#ub79Ц)l<mi9VȾc-5`Ȑb]n{ ƚh]7N~,rV"2 *ɬh2޿78*[ lks2E MiT__Ѐl!^l^lPNTAGao={ݰȰ 6<ug\O|\L.c6ʸN|bA`gהb/ĨFk 96%7kԞ+E-74q֝+5c\Tf,f  x*,(. :FK/|8)ZeFh| ٥@><$F'b%.z܉Ut8`Ɔ 0[s\.!NyXWU԰6Jf\[vJ\jxlSQ|Sdj/78'n}?*5ʰUPV_- gc ʟ hw[16fOYXyګN^$X]({kvwuE͹d=bCGItcMQv0&bA0{O@P`ղ5Jʚ9˹D90RiHfGyzCEtJ?%izg7V:5[`9<8'vYo&aK|̬*I6t1Ο7[kXe]K`V_]K 9PhەA݇ʵTQ7BH/2:APz$mѼCXš;[H0Ve4%TNJ>0p|Il8c' mt6qMZRZOcGiE W?`5X*#TK:R|wҕW .# r';K)y~&Dީs}Q $"{Pu5*HF)J]v~~ Vgwئ,YpZ.(h fDW5JR%'Vba'n~ N A"]o(+B0IKNd]si Ӫ8 z֯e!zdq w?BIɀy=>nƱ:vnIk c3cWPl/{vҘMSB_Mne]Vu }H}tmXbZQZ I9qЧ3VmE <$H#C9ӅbDtm0e-h=P. NB )IqZp%1{˔$|ȲqHd[V&.:_܆l> fi-׻ߡ3FIcp fL&·3B׮jVI洝 Kh5X[Łz,r8JE ed|S+2WCT; U;=yh›h]f<3\?} +6s « bR4ߔ<k Mͭ|$AO\,ʚ7Huj(iCB:Guf`)V@kRhsX %Hvz'f4~{30J@!S0Njb wtZ[y~x2Pph@4?<ڵ!mDy蜂->P9'B&4˦qnIj3Ĕ =)%膵VY쏾le?mqsB )N8DnKΚuķf 6%],D43৬t&Ĕ%}|:3\CKr/hʤWFbee_f~(2On{`2,F-ʙVZ^Фy^e#[o >&l.-Ҡѣ4ߺ'ĸb9N4p eM&!ŁrqJ}]_+˻!~N[. zl҄V ƩW-ͯgͱt<&>=eJ;7^;-?s ; ː0"9]  &o`_*#۟Qe6\J<ɞ܉N@~"|p\LήXBo]u(]f'[=Jp7PQsQ0PM0Ϡ}өG{+&mR%o W#-?JԕYf_ZIe4h|czpm{+oO3}H`ӹQJ(̓-.3t$?̄Q>rUDd=J'&r[Vw~6޽dc73-jPkʅl7rH~(P3P.(gyH#ڮ'Oq]i<$B[C> ѡK3l㳿O('_2D˖lW!iELJPcda.zi:cp#QH|hȦ_>)e摡s; RJ^v#%Ӂ MݔI"J[칒tw9W *5l2)4ʾU[Q krºקnh4aXNh<-YQ0 ֐!h>LϿhG!.R'sʶgt]+4eAqۻr' U9flz;Fx2Cuq0ӋiGI-9HۘEP4VPrt*rɡ H!2hS$-4@x8D;q2nSEa#/mB"nbUy^곞 !"׫U2vF{gyuK2]4lG-Q 5Mpx"؁wbzLRVFQT<~(R{Q<|ʨlz1x{䉗gOxZxOiW:2: 7Far[I]⃑ Jf;[m ɷovI V2<(2tK7]x% M -E,Sh3b *8Ȋ]83}urSj⊶l~A< yϔela |t&3&"&3Zd]"=P3|\mҨncH)@JUq8Ϟ$ A\u =Jask%q2nďı\UUR *߻-5_n/[gFkܖp#ٿ0ZJ^"_1[1PNRlD ƿٔ5q+-7A&S.ߪXCօb0cPd8MٗaoY6_DfY,?(OdMw;}Ni4#:ZPX?+`f%J9zy- tv–MQ^P~SC[DEPXЭd{2PS/z1g0OHlܔ 9 ǦF/S9l] I .L Ą8~tm2; A{XɈРV(r;KU}uŤ_aSCC}Z;|4a<>->Dv/mu *b{YlC4ΎOW7eq玌g(IHBe:ĢXhǘtA-l݆J_XFm693zHRC`/=(rx3sc-x R=aȠS-uX١>#JY H!j^!;MA~{\5ۗ@oTaOCѺ71\ߑmOWF<K~Vq8!BD:nd H[L"[jdɈJÏ 1dr]2ԅy^Ios7eh N"z9#KGj.z}3 ~? Wdװ ޷,z>DU$ n|y+4>_]Lt@V ,1r^<JQM>fܠ_Al;_&OivllSpkxy*C4* ';26jL0xS]Aco"lYBF6)mfA ;395@2H[1GII`C.IXHB)?v6*ahhPᥠ+chCzCBJAyk-UϴB}rg16tЪS|j' {ՇWϨ˕LFg"=räTA$MBJrc4=OWFs*aj}2+b]Ffd/,fESWۿ|ݭz;=_1YE)U9[.2UU_ȇ1Buy-)4Li-IPO Y,"HƮxd}Bй$bWIgNӒȔ2FZNoCq0vg]T7"磏Sri4n{۾'Q\[]% <=! Bglvl9&0kDfOtN]Hۚp]t:X/@ cD촪8N80"H3^Vc1)L.Ss?#aDåX2TS;M_ 2$ѺPgU?* ZK̸ t`6жT--:J$[ŷ#3P7Ĭ8p,>SvSN Cq)2cpx܄:$+S>ɞx` um}C`d#~5#C`4p78xx|]Hl;8g=ӗ<·ސJjݚ;"vWOyDv8@+˵hh YHY׍VˬegwC)])!R Fߥw e~ݒTx,>?ݡ0sK [ H~&ӿ uιƉ@=Wz9r;:m{)r bykJPyBPA5j7K꓈@Ny0KDPru`X\ 1rH̴Nذ5Sfz̊ܫ}fL)Omꦬۑ;S=obXp !1̤3QS7tq͡0z5[nr EY:Lx{!s&ӌ@QRËHbUM"; 6Wg%"pzT'WyjVJ;,FeI^&AݸW+Y)/oL,YiﶠV/߽? вXtTm$vF}{cz(-_)p=yGBݶ;PXࢴjN۔S =C=^U(ǟ7lm̔bȢΖ9hkKswB.U6'j l, X;J~ycB2_/^nn0SP$"uѴYXw6k-4bOw"/J9aH )HMN>^z#͎#GT{. "[L.8 |ZjX#2Necĵ` %c5u"29FYo_sȔ/R!Z?"Qe;MVI{R-Ǐ]6'zykҚa{\bDOYt154N>TW,Ưtnb2Atgk,}%.Et:QM5QӘ_'hcqP6v$o]wPK1i0< ׊iS45. .X/f3,"5\|O2ԦwT7ɿ[wtâ&#L(@ϓÚ'pG>l Gig\ XYƔ^Sϼ!~_Kc9tjfxҎClԙ;o/?Ğm9GvDa4KCiJR (&A˟E>;1T1@uֱ}q'!^+?pX^8nɗad|aWB6aqM@OКsuu4dD&YVE;F p)7я*`S/DӀyYK$uzEF{]ނkEMn=pktݿ=|e)C$0t_ǮsTlnwOH>NW ?aJsF*I! R\c$Y[?BOrMl(c!e y)دJ7<؁ .M|@?t|q Rh*+9CƊ󫌳/,5lT#kOee<fIW~j҃E81};JO ?B1LsGӪ2ɣb$5p]$nq= j㤕rTK tT \e5t~/Rsg%nE/tn* QĬC L Ԡ fTXdZHR{xr@>+ #y1zkj$q#!^?ٷJd&!R@x©eq5JUMyaz71se)GTVgDb5|Nrvv xfKNuE= Чe!CG-S*w01I)zͭ'ՊGJZN.RZ0o\0j?˄p"};id̡͍ٓjX1z=$ ;F^_j24MJ 9Ͽ%IG[~$pZ=a4c=60㫍N15f>  ?e0MH"d/D,+%-TcwYWA$hgsH'xen((ا!ƯvgRK'I離&g95xu*.Pܐ}zBueĹg|ڔs$0ɦ\pDj Km(9}`;&hstdbXy3|J?T!H%p&epo" S xEBn(@~1wiaU+?"_0JčH ls[f5Gu2OZB x5E] ~.S?7aTӜCʹG0c\ X[c{!9PUjrܤֿ SےVC¾@HVV$MPq% ;<WWKmضPAA)0R Pv9G)[>"!y㷎si#x"4%oS=!$ ZqFwݨ\HH}yg6EAn̄ϙ̍s<'Waԛd)y bwm;舧 |jtB^-9@4]1fGv1X[x'*%"<\ԯ4QhL <|-/*XWt`?5% Ie ;ʌW'SY& O ExdsU\ԉ'OO4d :l>_Tݤ1o+ggKO=[.LRV]QsP5#-G g:pW8ff2X.b$턶㒔VfWP;tH'0o/J5 7X 3 ۂ92ew-@c߫lFqg4RK3|L01 ; ! >OӲA%B 'F o`Tmz aa6\NQW?r T g]Mf߶7Iv3X@ )z#ښ%i@$,zGZEXk"hYFo>?=mm:KF;Q:&m2J<3lbkH["KEJZ>$%k:ߣwemyY`ߊ!v͵NkU yn*xdJ0!-" 3?%`X#:Br?L9e,.tɀeU""8/,($s)ȋL{1 mc}ÂO]Gy,)V. l!77Ǔd\Q$5Jr*VsC0V .ZȩiЇgDF:ʠC&dٕPj2sV[Te|xG/5)N?cVV7 |NC,WF]5&]n<4!Jޗ%?bj`XJ'~pQf ޤ3VRtqŵG V co2 2²͙ZٍNi6n$&X~#=ݜѣ ߕx<`-82nAhqnZw2F=Z{T>1t>j9TX@rzɿ_QΌᾚتՆJ!ۼݾ[JLf1UEy>%yCTךM(*[tN=0$Y\sDkr_;NzHZHJHBZ79iC& k0/gvۖÇ_uR;d&yM5lę+L+\/?0N L@y$jp4DQUXQ}YPƭ ގHUSF5D!fml^̹-NP22_$=u:(ɷ^zlsSݞu'7հij^ qavi5˱SQ"{YJ5Ĥaq$AqC^EUԉ`{5I5)9Pd幷uXwdPI~G*ިp /g?**V1jLҞh:8 kh.k1Ecs00RYZpL]y\f*]לc W#O^G.XKŋɈ6.8lwW6^قǺScб`$ʠ ti*Z:dtǙ2o៌g!>[tzBfZM*.wy m&l`w7?ĥZc22ס4ݟG d=,GXA Zfht`DsZ;{ESΎ/X q"4- 3l ^ߌ":=ȫU`$\ 2X`;R#~OtW6`gvdw< ~}PGFNjHk|b#JK6;lJ[M#s:v:ɆJc6PAkś[Sy2+ltU}v|HNtD'φewVthX;0dqY-4zGR6"cxfC8+(- qu#0 -=D>$Y7U<Jj?7Y#`DE)5j*G+SHYsYn|s9F]0mWph\nR04.0eB\q(>/׍3_ʎ>ݎd\8ŜYa-e+emy[~9yBٴh*p7I0w>YߝOim\:7Eڛ|Z\ZA0]G= Ssh=6NA"aW 5it%$ցI=8{ Cmsfm)&QSd9~ xsݟe?,20@_Rw#nES/mQs(Z4XM*5q*`cGk{[U2KaqpV_^}3BC[,R9 go90҇oL ޷sjӿbYz,ٞ}Ç'? LGpY#Aw4]U8T}y(:o"JDe*s.7Da870"n}XD <*AƘuaZ19l9`xJF_Pnj)c@E3#Cq CJ%aN4pR4}dmT??G#fO8%FfkbmfjU"PHM;׫CC+N Xp2_4_[K&ȴ??9!t(Dn=48o"+~/ ?"JBojezṉzԫBOpÓAAܰ)4Ł??'lĈ< .P&*Qln#E9%s7{ήufCJ|Qx4G õS{\? tB;5qFt%NOGǬ;QҰU ‹rl٪U=2 5N5b7aAŵ; GKB/ybLf9#v KvbG;RY#2GN X-Z+w%=x١Ÿy8&Ͳ]O_8*J"SdF5~iC?M Q?.9"yJCA\8=4EU66GV.L(V(:Q5ȍԡaLpvaFb,SI?[y|"o~0aFhG(E*/sFWƫ# e(P{U%p[afk !G%erE9I1@׷/zMZgqFo ␉H;B, ?ݬR^]P'~(p`ZwYdS:%1ض}20(+ˑPs \!-1MaYm<{V)1Pa|H.JT"Y,+bznuܴf7M+ۿE~!%N.7iTB` VA,, _G&* ]2xEk']unS+.yELqۇ/|vyobnBR:fr{x"x+iܗY h?8$Z+%(j龎p?&OOB"QJZ0@eoIY0cHD#R%Ȱq۳ o|pdx*e]M$\#\VKP-obUk)W]uu9獣kIk1^Db(Zl)53=߹Wq|v7&{ǩT ^8Ӧ%VaXX)q8h8 ^ʍNb73x_sL*G=.\j-ԱE`}'_zs_(S[b35244ETG~֣`63h#G,ɊAMD'fҨTx.0ί,y- eOXU\cI~5 7g/eLVz"lڨk¶FaY. Zc{̦SCfkjBcvJe$I*ex$@(ǃ6RsnJΰ~~[FdD&1vtuz .q9+Ѻ:@c%sbK;;r}ai: {̵CO{A]];r5b]438GO/+/ڟǾuQRlAvT R&mSI759KU 464V x$` f=cөMs D?R2"c|eXۇxbXtq|75MTlV|zA"W~{?7u.oJf1 JlqW?f<.)z{^=tcb`,yL`3VWxEOv_ӯXjѡ'h𧮄5;pe= um7`F&AcrK3 Dž@qyJ.c @c^ɲ\1[VJBٚ$[zNE[56t]q]&X C*ayЖ*(tpDNh¨w>"2&nmlhl.7KlQ+,™;V7JigE#j ~[1- FPTXsr'1( 议K!(O"nCGa\e ! {A_/-rN#v%0U>P26"iTH-I]WGj[&MC)FXJ˸l߳Hn .YD)B]6P"8_a<1*j v7Z YU_~tnx8|56ö$wHnkQF^LE%c5bxh$v뿟ґn`yll\K6 W%;ɚMW!vWjRpW깈J 7\_ rmN`[og|?݊9OŦM H5+NNoHK/62wJTNY߭dw=N?өFE2r~&W)1S toSR5OiF%6'|3wp*IpH EՐ:TUAp uBj + 5;BFq@3g_ dkE8xI%9"4,% wzFM۫N6]ZƆ}`bBse" ihbr9\#?t\Ҥ@U q.}~j,5G0߷H=4\qF M*#/^}!_Wu~/%B:)|Q)Wٰ*_tyw=JY#t'K1U<yVz;EU- S f*Z<Ȑ55i *dGުl+Y.Y3 *b$ Q)kh])9MWޤB&^'Pޥ #z5%]b.s.^$}xi۳v]M~3ͲK1)u)&F{D~gimolL}2ϯ/R Zͷ% UT۠{tXHw̸A- jO.Y0a%ƽׇ҅axM2t6mփ_ЎHbI6aX;(?O( WK~^4_}50RPM=;F;V 0{^K3Ȱ=)Q2GPd %4:o|;-!t2=Y7.G}=&P/iޭwa`(62qgtه'bC/cتg UV^="\?ȒKjlk5C;oI >S@$q$aJXu]po)@$VBI)3 w;8kXNUJx#O:װ6_ӽOF8ިyeN#+cr=ni':0$0k3Pq*zƞf '% !I_`|"ckN^n_ %n9p` $udz^ddWgQ#+pM>;9m>zJʝ&X4uY[@U.g" ~Pi#Z$A^acI8A8E_@b9&@vX}|d*)9s {-LRCLιQ gr2*MV&9~Obpe9؍ʒaUa҉y8&Ա.\V̹O8t sS=3qMb~¥)jCjd]\C ]R9e|I wR*d\ُ@X2dshƨd$~CE"̏ ZG0dԝtլ)'_D~*l<4G; /QtnA=Osd ID!$[(h\-5UǮj(C wG `ȗ+? 4y:{8HQOr8 `F}/ N$%F>O7׿L?.Q!AlXW/0Z}y^8NP-$6 oe1ݫ.{VJ)׉ڧ-W@8>0鮎B[;tJRmv[2bOcW9RԛS&8zFzyw$A}I/Ka(.dcX%@$9+KUFqVǦ?sx79 翌Z w D8-0S@'sQG{p0(R"7]$+H}:cg-`<f2rc2I׽ 7uC~6h3?}HFdCnee^W;ӗPn@q٬x/3ACalափ++ SR #1Dg ]8]u(d5 oq1Ȭm';q*_dYߦ] x[h#)'0h!{ LZG<6 .$K*PC.qc>k,F`˞ٺ "u]ߥbTFFu[B &̈6xΥeGxvL_>-qʣ2NR"+b"=rEb?%&flMH{t}ւϵz\QwKr)RlaLq+%FԆi9Hؿy Q"!.t y-ȵq .*ײ3(AC^[p=t6>~mPs] AQƍL@iB} H ڵkX65~"n߳oSwh$wp*?ٚd0o*ԴBt_`$]~E4򩚜 P 0ѷ o_T(Wu+9%}v(9ӤcE*\/E# #ypF%b^k$,wjv'_6bY: <[)l]ƗՄk Od&Ŕ< qАWF# @{:<7՞XU.mw/Cͻ8@|ĘI;;K ױ[ߋ\X%~oXKq͞D>5Z`vsX.$7p-}oMTW!~76g}1w,3E(-_Qo",^qO<1Vqz ^G L$v:@o.J픩Jcz{HDy G3xV!@~MgѠqB'uSǥrO՞PݦMSaVMwd?rJ˅:x&$BtIZ1"0?ڔG8ì:j$cDk,R7֠5U'VH2nqkְ/kt+jvnIkעEZԞ1\p[DXCo+ЌvBR&Y͎t+D/2h"BA!\RP ;X:Mecah:d.W\QfKzd'(b5tЀBWJۿ7Yjc,=^r7[=}f9*dv{`n7@㯻?ƳI>H47 {O#`-"3͍YĻ&  iL(}`DwB/[6|ԿʢVRN&h  u/HS%3eG~AwR.%pͤlps?.`7M:קۇ/MyqaZΣZ A#hѸA fR[bdɷ4SsxĊI* ΌJUsj5 X.>(z l;¹.X#!5@u'1`G/580g݂_xv܍u %!V{|O Cwⱒe 4!g!\l $X{})EG\Ջqk`\ "nǷ#xQqC C+̥?AK'X_D㴬ZajZ$]<=uh,Iؽ]P|X+X'1kXQ+e렳f_ŢesI4ӢO-tY3mNVnן߄ 0\ i Os^e6071AS ZH绌zjguڭv>pԟ!4L/ X;1R51H>g`A?{ҷvͧ^L4#鄯* p!@!W.m:#"lWz ]{"`t51+MAsGVHђ0d5#]D+6Z:Ѵbh5"*А[9y>Y ܐq FLK}u)ƻ\xg؝_jD!3k6lWe:OLY~m wkU\ 4iŎ'm)U#\.zFPtE jKˣb3ӷnozcMAV('xS MJqs5V 3>Rx\A5=:p!~r-dcG"hq 71qagN{}dLFei͵ދ8,J$Ya㜣\ !܋bӨY( {m PRj~vܕ60P> "@!Rhl5meoP]3Eo{uwr)ti kQ Ui7Ð.\|2IhT> ،U{sGX| bH;8U41W\īNtZ& 9Y%yZYXQNCFdS ޖ-ŪCcfdz+P JݩWr@QlŌ[@+2>V UCH:"E*R]r/2 ,]_܄vx @Ue;z:)2* cqDR f[9)1#ʱ/B8"%C}bܘS?.;T 4=7C'h`5J)7e&M>J8;{HNBLU9ޠڜ5zM%piĬ :17TphDg+&OPP\65U_9|>Z6RGOeAo+@v >0]E 'i{N'x≂ESQ?-þ-8q aJ5il32RXī 4i \%%qT#hF5jRoq1r'];S+d}|83@r{r=N]m  NR6Itw03d [**pm-)f" h8 8w5XruHP@cXm5 dCP\?cCUrE/׻nu[U1rSXƤ]YH\2xSg$x.*$&DΪIs _> Lq-bIWxDO'1ɐe3q4 wq,F/ev!mBdVRUFKղ*agԞwz $m0ؿW*@zM%Q.fm',ma5j F ,gռD`W"G/^l(@[*ʻ+h:{M םn*UKo9M%Sq!|}bM!'ȑ1GoF/:s\F.˅w DCe=<|gZP #cJQ6 ziX_/ qQ5 ƉV҇+|^BlFAcPj%C]7~j20с2k(M"aq37S+W=YVRw<`1,J?"D/&r(Ln&zJ(b*b>L~9GNt@wN'PGuVj[THC@cx4=3@o`2?򀅜,1>q!褻uS=`ۅ*1(Keˁ0;I[Lն2ڔX^2}]CLi.ٵS Y%)BC&ԨS&TvZc. k3t /Ih, #yWoq&^P7L5MJ/cuDU%^q0Ǎ{ȑ2{Q]{ q"k?w^8<2PRn~ل+} " -3;cK((T޵j#dJLLXDa9HorK-Y_D+J0oEO~ ´*-s0- cl;]L3fei66ەdY]E k&{-ROyt(oku@gx%u"u^H{Rn{k;.`5arbf,#tjLU%Rkr#dfc[f MTt\"=m:Ÿw,wju$SEuD@/H)QD37H26z<,Hj,8h&يCm3O//_ _)2< u]7hl̡=} 2m}A1gu|5>;_-0$ӆU/\$i=Tk 3t&_HQQoH 0F5RO%gd?S"EUVjF#ܵsM5"~k>9z4Xx /UA7@9 I#,+6<':'7Z}J|ׯHu,`j'c@Vm'Ҿ(g0 ̔]-Kys4!:C'XMs$š}q 1Yx"Prrі\wE%s0.>EbtxjUunRF%qERm:LqQ^JdBF9l`@pS-t{9v\Ri$v?wȅz06pES¬XAş$tIt\(bDf05J623T~{KgoX9-b*Bz/˟D3 0d% <Wf9uK\o6FVYTF?~IӟQv"^ku[R]3@8 cң%,{xZ ~'> `Q |gmf3,4w] *eH.1BL=h/E+?DۂC peՏs̀NgyqpS| ot 1ֿP-l갗Hd%{d^=fC |Lf9_#%bZdIO7-D&6:CG 15_PL^8 (Pl]\*yTfLҕAJJ߮ܺFw+fۆ2;fZghrȰg,*\nKDnG<}29c=vLX)(!a//o{J$4xj [%&n%vNF¨Gӑ\)ЗyY-L/v%լ*/w{BMEV@M)X;>"[c/,Ntt;h5]3gߦ RKc|8)%`xU6 p?-WDJ0mj7mNUzhNM c#~)"D:aݜ`BRZ'9MQ:41Ecw(hQp/}Z[ t*B h%H]~rA$5˩ T^3ԁ _l,7O.jջYzq4Ԓ8vx4X-vػs{St=m|+ fT?lvUXL9`]c{o$/_E2)puFIOUb&'5TYNR{k B[!|BQ- llxԠP;Mv锤Z}f[Aw"?DJwF:E[֡@28 O)ϭ-H@V5L'p\w3pu2? ,Dƻx_-z67 }TL]0=M1 iF+|Dm%ԎޙlfB%qiYu 2&“~lWV/k9!hND4/SOSxfi&၎Fv6}ڊ*&fH˯Lw He/o3(O *Q5lq+')t=LarɎ{ +qDMh<)u5((B7$\ h$!ב߹ƨ^aǝM>O\9yXd@o Hx}yS88D=h_TQ@m*5'^,;{]5y,%ʮ9l1}բH˜ep#R|~ߡ IDC86zYM]lHb+rnܥu:BBw1?6Sreaq#)V&΅6` JF`FBcK(_ A R?,yʋ#Ho+?◮AV+Hs:܀G]?6vmBTvW5!-i/0|)b-~vэv]78mWbY1 K9Qr'6JZ]<_Ix>i\3fYebL vn%A+AZ[@y\Bvr\1gf;RCY`Wz_hӀ~A}(I'ڗ!Ea]̨"(y913~Upb"A7Nw=p#q2{팩;~9E8׭m6QJ}Sr$YBn$FԶNʁ)0v-2ezQRB &ՍuLL!P=9@5'e?j*pшX;~+ܤ[πz$`TihSz^+QikC|*sί=:A aE_c(Xщr|8 P-r91mJ"+&=(:s"<ңb$22;p_kʤɺYDŴn0-dF54'ֽ@٢Rjb s+jL訐vAFGSNȘE%<+Ȝ-=Eak +V u}UN=yoJݟirgqy^d.hR>b[c k<2]\F{}z= \Rz8O^",_l{Ӟm͍xLV  KK055^G2ż1Ӣu(0]Hr'># >g]*'n3z{[` D1[n]J \OtC'v%tNVr]U пd[SeV# VȂ)={qt3BHxgaML`RLlRn0W w, 5#sjCVJYk9FfW %]v!{frv[l6owd{# f7"F|~0ˈ +s 2_ugwnN󊦲Tѹ%+M'=5/^1 m="jyz]hI$k[O2m&F:C@%4 ˱I |e4_֯tuwS*t;װzH!s 6YnӒX| 3`[#ڐ*J؝7ٙ?u2L O7ʃ[=jvB7[9J֬&\Ua,e5BrVϹjũt]8QRċnfB9ThVY ?P'm`g塺Ey[92~W- FQ1#7e_1Vbx8= eE>?O;:Hfʮ jt)R[+*ݬ `Xg)&|4\?w??gSjd7/۹Fxίļ:_Q1kG=!_E'!!idϡdM'|镇2R|5Q]ϓg ~WYO~iCٝ* 8]iHf%[p":c:X0Ud;5L>.*P+X/=>*n(xB(%_+s?;\2V'%ڶz}'h` 7[agF6ܿ\x(?S)Ae7$ c0d#JPiϲ-ő6#' Q߲(G#w PM.VϣSt\X5yl[;)}ieDX@~F\kuN̑|'-!*6px`D@详If)Sڽkglh8lF Ue K>mv"6|dƽ")#0 SB!d`/@~ 5 v`iᄏFAY vo _:< Cq=th/)M/t>b'[9DV $"ͬ7;> m?{1zkKůؗ<ŗJ8`K LJ0M b:*ʰc} xQw?~(l,gv' %zsd$} n}|R{ёwtT*uwcD8+??LF^ *F̓+BgݣU#lqY08‚Ljm^ #@=)Np3o z`_w 7=%B1A L\"rGL?‹L^mE͂˂dqA-+or"ީn+R-1c1j[CXzZɸ,U~ًlDvyA:&Gέ;\+auTUt7a{,C`!a8v2\x=pk ޸CHI- rvi@=a0\u]U/ljjSi#.˅W}gAEs Fc!; Y)~@hf~m-(NmRv/ɲ{e4R$xqwigKn$+'DoF*#TEڅ lW!%-Zܹ rwjrHP){iK$٥GQK֛zC- :Te~lTx f_fn9M1S {=0% [0)2#>O*{W eNCN#e#N^b2r9WHby06~J ~ !j<ɲUWVIcm#\GbMx@TRwzX+[OSטG.$9ڔ}DDoD6 2,@"bc1QJ|N=h٪W=*`W-XJ7aΘ߃.#ZDmB?A@i%n4ہ7~_w\#z~ {퐤%beBte=\xa iD~8]C(hRQB &Iml(ʫYr;J7.0񡮆JM'8k0YC>_tUkvI0شZꬸwqiP[b\bW룾VpT Dj&*R%N< <ܚ9})_^\w}TC~aAhyuK,87m Ҏc-1[Elޗ,_'4ærDXRH(Xa.f"m߲JN XWt)jĂ^TY ho6[_#.[$Mj(/x S3$A=qQBd5C#`@] (~ 7/kR0fb+RGg>Fduo%L.T2^i=\s]MnqMꥷdhl+>П=My%~&c#Iz#a5ELPp] ?:Lܰg2s}q]2Q"/QT79" Kw]9V,Šz.ؚ̻fq%eoWYɚĉGʖ5Hd:oo>4qNYa(fYp? n8@61JZcİe/ˇdzO }6`|-^x̭BD# =Qڂ*g)sL(G:?pY8rDo21xVlkuI[rt<&>-"<5״Pu#R|tR=c=zU~"uc EBՖl5"xndXE\A幥 ?o1$a̍ne(-#6|u ;|"H5G 0hlhL~"PƿZ&) 17Go[\WZ"\]Jȷ `/=$kzIPXMż1ȸ|xD"G2[jqM+BO"u$m^X~DR09-R3 fsRS$<_֩dsTa1$.(&G7Xdw S>%z 9Ǡv,L?&p?F+U"}Vw R2uV ϵc sjo,q1хZUwR8 9⮕3a ^fKC{80M<-$4~@ޙ~15ܼ ?9-b[Xp!pM N,<XLx6J <U;]\5$ЙO=Q!KP:_x@Ҝ&"x$UqYFO' rqz!,\u((;l'R$O>EeiwcS[v60WWF0RD1GCۥZDF$u;q}>xs 4ȥX5$Qm(8ug' ^LA_0/O.YYc Pr4cpyҟ!biSKum- T8'Ǧ$Fl .тfG6r?ˏ0\0j~袜#.i0|ߢ&'Vr^" '<1NAs[/VBb‚f< c"PGj^w m8jAu%S=pcD־௦H]1~:]iܑ<(Ϟ7n"zp] ̠YZ1{g?1 QK!#5VC&E&)fn|,a\]BB{0tG_m1Ǵ: `3AaPSU@~]R0j} lt>Q-8j>H+>Ll@KioBx)wOv/f5^>hO('@O׾ bqH!Bv] NsOΙ{(YCDy6i\L`} RwTLG qe!$1-hW翤R.ŚnOcxZ4ORA=j@4Sާ&Ӫ492󋟔2!fwtRcz??ʎ`58MF JQt+"o/r3F̂%(_ulvT~aV% gb:X nSTT("n"D꣋nSz:2$Md{O|)ʮ;;JGJvƖKTX$jH~NA^:5l\LYŽF @2dz}jd)㎼q#b}(F+QÂ!]IIyckŗW>kK y%4М3V4P@I?YCZY=AV7y)oŵyUӜ5!5X>bPLFHBbDpF> \3rY:I(GG"! %h Lh fʹn$#sl3~|HtwnXY9fd/p [_g,UaH&Y#Xz,ҵ^K~8*w^2@v)b-*5ִUq"1"疗{jCk3nZ=Vi1O,$g,6;J958ȶ hZh#=y`bE 40ȭ MizPx=NaлYEDAe',Twɲ"i &4i3ߍ{Ijrծa.*kT &Zh4 _,ȊgtBIcrz;KӆR9k=&Tt-! o _(BU72|I~g)5t$3 nΥ'!-׳b;0; !-ࢗT&znQgׁCD VO^67B[cJ0M5Dy@1BbQM#C8m`&& *{H'A8 F rz J*?.0Pv˂ȋ Q{7I ۻ)؍ D4ziX()ie)72;{"jiş⡹1Š G$Y,~v;}2a8YIm'+vE͵'Y'JO} &c{ u/2\[ r";R q*V~AݨI:Iy/ hqg#HB0dd:R'OT>0r 7ۛ&H[|ʖLR+= SpLs bRf"nCWREoxᅱ- B'r7A=@X Eڵ%1=Jʸt@C$\V~c3F>e̶4L;j!6GGaxQa;kNzCME2V* h8?3 W_z`F/%RTs2ddh6'0;NEAMlD{j(\tgn @8nY*7mP!8וKنŗ lgP1T8)ﰳ rB~ź5XN HxAL6&:R}(/":2lIjՕ2V$k_^c:.e_Яv\Sx5dfÝ`x}U#>)c[th&ƌL"^4quxUR%'G~1p_PA @2cYH&}ऩx@H`IS(TǂkX0-5;Hv[U̞:uAX^_ y R[?8\}}5dAU,ߔ Rjnq;=5EOcOL1'EEtfhH$?]5e48FѨ\&PБxAw2Km(KK\@#'cRE}m W6Lj?z@aڧ3q9,zʼqH_Bؤ &$2ZE#+i!V%ЄF&Xkc`' $VfgĮ b U<G;($5Cd;HHLJ1oSo8ep;bLyfLz,e]L| .{bע=\*L%4 JWj{w6-GтITzlWV[YhҍXECU/@%Jʂ9~t\x0l}?oy_]f*JɣҮXNt$VCh0fUb4tc A‘%ϛ)KR!}]'O R,QTu97Xzi!ms:(,ZKz+5m3 x@~,){'7=ePNbXA"eZ4%a5 WqDHri=1(|Fp꒘&^_>A X&-8vP˶A2_EM:VѰĻy]sϽqhU0#nCx}{G R'J9 WG],s ,_j!퐉=D s:%C_k:UaD#฽;>xV, h4d`~6Q7ɔNX=<)t7[]Ἀ!ՠRZ5vsBL~e} 8XDY^jKVazmcJ>%g) OGͨ<+8S3h,D e3oMh-, qA8P{CLA'-CݝDGUm\' 1="Í,w)ohJwŸ0K@>}yg}D8P2{\*2,zxgY&q4arlT  ߗF%Mѻ+GfN|%6h\9~r:}B]vu>J.`M.0 GM1kn>_-q%L{uo[~0.gz*32L23 l.bkrG*ȳa%K`t`#1^/B 0-"pO^Nldr aXv(mCMuq׀Q@ (>[̰]bk!-aф0k JUUaKKO~ o7 2'&}^ͼMgzp6~Xj =fr{B)ԺE">/la y-:.we6? %͝-ʁ׵aY$hTa<*ym??Gp!'?K!A:buv&OybqQbUl#8AfWiJ4jߙx8W<)3B+{3g˩ڮ![ۇfۤGok.bͶ'A*p6 5w!|~\Eݪc-_ WCH4m+@AgQV_cO.$O,J , p5py[ ']1XsuT=B ˎƩbT&_2=cg>їDy +  .%/w¾@f3 LD0p_fRmKB;8{ȠowzI=m~};DK)>ICOfjaC%*qks+E:*Tu]'UQ(MQ-cԳwn: 'aklk㓊ۭ=yᚆ`GV_hB4 ,}o5rܲ`$zq?OnHI,:5{O I]yd^$KU.@QVH󖝅=B!<}rPo$[6i\o ֚އ0Xl> ڜ6H-/:hph-Gb  eƽ`4؀#<7.2Ikn.Odݚ$%;t)PnhGKqES)Z5䟭nw,)fx Ag`_%TTj!3"L=ިZ#ᕰg jӥfr.[eq gLJT{I/`fR|K ALC Xu*sǒأdp ,zUYn QvIt;Ǥ>_ U@L 唭g-p_^s[_J[|+~~UXp?&q*yTQ(Ą:l7RIЉvz0`-a7!d!aWU;afzrkң*WYl8YXqz.01>ئ6qSF9и^@Q{+sYWnLFUqbկرN~: "ѯRY]!]?عCLER@[T |&R7էpH2[f)TH?Ӑ㎈C4ebcړEd"XG N2 H5nE.żk\[;vL( VvN^+?bw`|ClnGW1 P!}34CNj>Ơht Q?z&I (jKe]VCv*Wڈ*vގwihŪgN@Zsv qQ_jۿ Fe F`&5gpk$I)yC9T}NvK]  TK`\?.8mCl }zI"B֥Φp8ZԩS W#Q>l(9s-\]pnopZHWN-HYho'㰏5k5c,[j޾_܎tl3Pz7r W M/"*82/GS#xrR'g{5A0}H<01tnwQKzhIro{0Yt񱌘D'2]fC36tv'NKp zz\M_|f!™%TZBs"\.;4fh,jiSK/ o"wL|o,{h :Hcې4CI/Ec iaIZ5tKowb'RM{YD[V_" ~4 b$?C9/ӑd/L,Q<+IrLW=|de@ܨIlJb8]X.!\"ol%o\l7 'W[.~ iR!({] H cxe;ӥigL? *\#uikSy{0 5 -(~$>6@}& p9U*#7p^rL.d t\4 HK ӫ uEX7eՋK/qCRagZ,,G/Dgb $c8Sdm+;k81$Za G̸{e:yeZY{0X7ql 9Ղ/q1|{TG6(9`!D4OsGH3 8gn7EWn[Kf(~؞kaKraL{Z9orآ n2W Phor+%b 3^3W] biӘl}")iyEFB3DRQFNaELcr8$˥ Z~ YjW-1\U ƀY(Ԑ-؊=.S gJ}rae]>5+ ?\CHS(eEi_VA qeQnĩ2zRxĚO궄Su6!XxQ3tP靇X \ބEE/JXWN5KZ;I:,[b'B,ҧ ?.+;fpC>5 CƧ̣i#=BzSy㽏2¤AH;܊R]Km=qߵMF~t$3 fUOR$ܹν` 9 @h#/CA 5rC^y=}YjD6 ]yH~9[:Yਥ؁X!Xdl!R8OGv(V"T.V] \ (mʢ˪ /u)P%݆u.xKtV-xDL$ BP1AadVI\;oxbm+&Z='U'˭{ }<[)VA0U 64DE2A3̴nհoޚMܲx5R/!ŅOo[&̊H o0 [ LG^mBxWlU#(3u[(Q=pxzt.o>=!<=䧤\ݱ6~W6 Ԭ:*QP‼&_2NI,Hh&/75զ4;VW ҈9Aw ?7eooPOb Ϲ*V dY戮,|3C!a:<5^0]uKUǘ°0t fb2;epٍ4R>fLO੢yQ rB Ắt!y]g jlBF)rH/Ƨ$KP96&XT-MzP҄,]J [ZZEK*F!/vsz] a?7gnw<1LSȭ4J;n8|yɸ{Xrb9b;P(b{ /(f-h쁀.lشKG?]L(; K~%<Ļi^>Y|.JMr.QQ^F~©j|y+%U NFF.j_ο3x(lq֘ʈ'&tt.ĕ;dzY"<߁ֱuCmjed=IdeJ)ҁUMf ho>4 ^I\m6K\k{ΩKp[\* Y.9S@xnٱX>0Q#}Y,-DIaKA[Vi\gTnQ(%f4@ˎt\D)x@O1잩Lʢ6pkϥȺȔ\ .*l*Y pOcq Qf$gk~DHs~`Nz tDڐLe&ur4X:!@R&"hZO@*(7hcb/|V^=(ALޝB0=\\0 +Cה4p>eW uooUg&N`=!NBIgb+RNJ.vN~Q| ֧8v/H >"rMV(}ύ2~M{ɢwTETE_lYG8 VHokNeBIUv [l])1TO~v2r'oEDTP l6chG"K:u0P V_3vhݝTllHNFWKP}fjd|5;p4]۹{Y\6v1/1'9m:iƔ᫃AYE uq^)oNoWKxG<*Ur:Jtj=~j ?rvC~CKǿE<3YЉ;Wna`>- x)'+Yl{+KD"?d*z mXLjl?*r=A;ְhoTAv0e1Gz/P /gԇIT \$p/?7*&@{2bO]pX9bP D L7^]ZuGiG]aN4(f8@~*+LOa]-zT f 9mwPɨ;6M_yMfQQ3+' 4k^xֈWd cY^|QQnRj>ִvhI$ԫ2:\΋-r$ \a3L f4pkA:OHYTL>l7Of)Y{‹iq s%p]WU\%bFI 8yV2~y1D5Zse,{ٖ0#׬IjYq 23U)QV,@ +X 4פ8s~rf5/{യMW $S"M}FHgcaWhbx VFÝ~Ѥ*4*Ju3{֨mL8_GEA5kP]p?$ ӫM¤SDcqؽėPתצ7.*W,8!M6+mcg!  وm|}$B?ڧ+ s~?>Qeip(َzF`*#=xd(@1&?DiB/Y,eQE&ʍtzl5GHS˸,Zl-XB;hԑ̕9&cNqGݗX[ȇ,-$R^&⪞Q) ewnk4C ֈV`Ň+&(7?jR009dj-Z(pJӈ<wg ή! BZ-AK;ǵE()A ( e9{i·xeO-_-Qi.Pi7 ZLk.1i:y0ON )hV!v=/+H !n}4 EcD7Y)H+bKh4*aRݽGlδMXb* 7]/&*uJ9U<@*!q&[шXe_2,Bv-M>T#ު5W3aSk+`GojxB>k]<ؤ$!cFsJa(2I t0c^楣sH;yc$ t0[+N8 7&+1>27w>{\WʘxOk(aP“r. fd>mԂI+ %AoJWG p)28dxxJ0&G>hl+zl)Rim$ ڲG0dKaCMkSQ/5>sѱNgWWRxL}?-GO#pDg7 "23t<{vD%s#1I{z=+0Gg0n1NTŌk9D76 cV%R2c@jHo(8,єNJq(D.6>sC'ӽӖ1-5,܍{'X!79 KDxtQ%B6k"3] z :jfԌQpК7uE 4%h?I&<(D3L͋p6E,CaՑŎ>k~4DM E τпiU #\UjXL[NÇXjcuUQو +u.i<ZD+f=dxFXn y[/a (~#Q?:M a.ګpOhq|)kFNh-im׾^,ד`%G>y1:^HG SEl>H7\ǐQP(7aS~B,m7Kv0;ޮ&g^/. V5gR+0[&iG "S[Ȍ+A[¡Q h#94R ?j{*1KJTe`:gnեK̃,J3▥ir `=LȪ}nS$ľKA6O Q)~1'yfkU.\-U~]tJ׹}{ $B&\P2|z蒪1v I$]p4@ $)9(Sd#Қ?v Abb nX)x뽄|TN}5H>H6wp/= ֑zjLEWPřt $ˋn&Zu\ao;kN-_W5a1xf?>",Tg/MP-#}d=RCH]k{"wIF>_bb]OV_ ;̛%1\i-o?8PNDaςYVs풏ϡ)Qݕ#@fi#l@Uޮuم8k-}''hh:GLYI Ap/l_wwk+& FMfA5 F\a*}{oGݗfк ^m^fY<4&D''2h-r0^Q#u%!Y<?N~*wc6l`t\_rt*s{TbÒR5\v]SRQɼr;;[*|FMx(A\lCk&b4zy,*f02]X/+Nܯ6sFwE Wnٔ4s#[ %eԶ;ٴxB-3Ѯ,crd77ꡜ}BHd.Hj>jzq t5^Rvkkǒp*[@}Q[sv̔28qx^ %$%W]4&Blwr9W4k W0{= adO XGm;g^\ЩoɔrD('raLcIck4n(caWb)|._ h_(ł}.BL_[Vi 8%ko$BL)Nxg"mU&tC$E37Ug%=D ]_NrvJ&/W6k8=f$zըl3͸ )dŨe %#FdXLS"֥un %H%Y~kN8T}vŬ5C IYKe֩ʇKtFYx^՜rnܘ67/r$K ByB[]$v@\wxĖQWcMM#o Ztb7F;9Լ.h$~M&PhX֨ [ҘT= 6@1}e y\˒ :t"XA4 eXxِaXʍq*W&ў ÑRJ.SyZcdKҶV;wc?Boe@}+|NW%K|lDZ4u'rz΀m\;Q/E>j՟Pʽkg5̭ 8-[/:QǑH^k̠=X֐ gѩZ\[|s_P+fXNvb =)o$:I3 "d-c%ݡ ڔ@SVe2Dzuĥ)or;=Yd{F/6i@':W͵Hg3W%8៫hDKྠ6}|$[H9JѝعgT;&yGi7J5q`a>"Fx +2%܍Ѥ&-B#3;prW#sRRcОTdSXMHa*=50UrpMd2OC5bOB~h .\Z^C ?,):TH5œ /dC DlrڹX(*]X&O6t3j<6* &"Vr3QDuJP Q/~ms yp ]#h:@x`i:6׎vf@*ַT^6PVe)%46Kl0(|`hls O uށLL+7{[Md݃Ic^x; pKe.K.?R5IGĠbeLb6լ0E| &ew~G̈́Оso۳VXap;F^uCޖo"Hx@DWŒNvveèow9\7>hnVuE;Er' z:LaDrz1'YcV%lmfA&H1ˬ=7%20fGtGjL_3мwTߘBN TQ_=aVOdƽ'vx0GE&quo[c\{5 ̺#+tZSh5$Ȳ1J=6g-wȻ{b# f`ҔmY`M+xuɻWA:tU(9byOա끉Dw(@q f#-'c2Q‰u%۠/j\(nm~w)G7kDQDݸ?=2?fe Q&MX8t]eN~wM:#`!M' ҕH>H5ǴC~"2lR_Iʮξ*sc\AzMR$϶hiU$'FƢ=ɔ71"q5=闫sV|M͗ރ 7e..kylnNzԌ{' Kbrz]ĢzsƼ Z*!,r&xS\ph\:jU:08)wa3kn|C%:A= auaRX),(J !'#%W&cqbry!uXU1m\x hO ^( ̷1HQ]E5YNjygk0gTy8XC02یE'9w6j.d|ֈT6s}nDM[h<^inrz!L2^( -cOKi߸hw\{ƅع bþn[I!J|Woc\v u%ۛ_*onP$fR^lFs3T" @*CwHaqrxZh+1F$9. EaF06 \Llu@E* C6Aqw%Fu#C=è jtjz~Y|Y7vUN4扈~Kw =88WW0@<#)~ =/'_K)1|F_VTUԅvbW~z{P! r*I]860{ٿa+w 2I^78wF8UV"G%8# MXܙ)Kw-/9S۷ā[Nͳ4ޕܒw }JZ9*25X.5.9V{6#~?[wAo Š3Z| qպNgsji7LJA` %\Sܥߒ+ֹ秱r4,2#4\ g!O%~/dEƩ=h.%(kH8˭\ޭMj_GH#S+ j z}JARn;iNU ?h0c5m{)&x!]kQFJܽ!pOI$$hq|ٗyyDysΡތʯO(H+۵~B[W؝`\On}};:L |-aQ bdZǧGpNb]vEe wNsZL1DЋ?a.q6Zs=mx?e#E'*mӶG<%#6dH5瀘DzpA)atlcc ѽZT[{ {A5j`rқ  8(%#?fOUNO.FӉE-A6S- zwN^lFN,38،É;p[oM]ăР8M#'bjd&֏6(33_CɌ %X }ETػC$>?4e1n6o$ݺTIצ=W$XX1=YBxz0:0{:ASӈ)D`vTٮi왪DKihۋi6Ȟ3"R5nRJy7ow$(cd3{X8ixOնTzഠ5<_!+ CͨD:. |͑^zsw_CGHx]bYtNJuri)yH/!KJIeL6vL?lg|R}Y]  W" EAMDdBѭ)95OSD1l&2K|<a7ۭh&O U!FlLt[~ƘvfԁgXW}\"v;es?o9ļt ¸J; ): J` ojRj4-:"hog(wꙔM|io\?L%CZ\$ί$5֔9-_⃄1Ŧf1 LԇʚfNbN$-|Y=S%mN1fIїHþ/Ft.>a~dH2,JRǎŮi.Jde]{Zz2鞜toqy{f[ʲʬ>!$L_ޡQt@\`z;B&B n?-eQkAtܥ"jjU'KoA} n9,-n>UgtkxM:'r #5#] tCMN{8"Xg,z+ ڂ&|%:W%z\ e[$f?pGm"凧$Y`c-Bۚon"̟Z񜬔>H >",+BEiab&Ocȭwd"Vˍ^Ӻ~Ȁ=h&`x[vJ8V UL}\ahWk_/.؟(VmPPwęx`{Q'/@=pqL}Aw0UBl_J=v0S4}0Lb( r8k:ߦNIˑL^~P?$pw^I8^I#27c(:-֫HQluvDA䖇"~.?\i)Fzm }Fq{p)4x9KӛM_ 'Dv9FE-6u钥g=I7I2ԛ3|xP o+Sy,8 Mz1a>wەaucHBevoӫ OLc8|4I S}A;kOkf;+g#A{X7[:(ct*CX-KFP4nR[QTnIp qb"mSJQo|Ð߇珑jQ5091ePMrfdxL&ٷu@[L7 }\@:VcLbf*.\pb f(^ʅ!p~̔%K+'cL:EUƿ":2\HfZLNZϥvr†uc\zZ I685Trh[>rM@i<}K3xvRv,8\;mp[V"vs&~_(m_jO,r^X~i#140.bBm-[B2w 9\qƝ9u-_ S榐TB/E.`UOZkA:`cPdϰZg;6- y]#j( Hl*SL&U:K"u,#2;vu'I̱T+sn~XW`/͕%<0GEaAL8H8:fO44A>N5xӏն L%Wh7 GM 4d1M#{-ZhR l)Qa>B!) -hL%tMh1{`q&s{ ZXEBb6Fе*\PVmٴJ#Bdx һg|jkփHa HD)EBVի G8V@e[As@Ǻ8EД-P_]!mJhA-#c')x=,vKͱǒ*Z\-r%xmYKngH~V+ S)8 AUubGp.U_ΟDIےd14OWr\䁳J|YT@Y`DUm⋢A?vBbO4e*z=rZr/$_raTvJ8|8OpnǰUE-5( y0-J3ZIV6b=- "-b@z͐`)aE1UG'P)i eqj?Nc+dT/_)BHX/DUj5OfAN?Je⤃RwAä-$n M^laj jjNؖdsaW-6A-S~0Py*}YNTm].7vZȐёaȈXjKEM&_d@t W'R2lʟn/u8J. ?y'P *, Cݲ7/jEXΔΕi?#`2[;22O~V=BZ7qlEl67G-FXg ?_hצ?Z** lb 3lZwC]Y|Q ~$a 1;D3+z kp B6*P6rE0G;hK!cZ)FkLPeR8ڱ&{Cj׫D [߭(k.u5/7.W{h8"Nܒ ":(ANܼGY'IٟPF}PT|Zʲ)d%MMCWx$ŶLjuiVk҉7~\I|faęO)"yփ:RM̳ u)mh] s:' ̕J 5T\c-y{5?N$C(C3R1*3VT谞##ί#j'~-B^f"ļ2bnd%~6'o^ q]iA ;pU3.7<z- c? cc@ʧh> @b_8}9Hw[ bh2:8frե8=82,2 kLV<vW'Һ _J0t;[fFͱ f)SJCh},`H}a A9/A$HM&Wg:uHྂ>nF/ 6Vuم(x|/~38r}Esa3C6+zsiPS$Y0LjK#JKUj "~^6 %}+- TtcR?ς!Ŭ8*Aӟ|p ;]mN/CY5+^2F^W8҈͈MIUPC7^Ȯk5=Trłtw4F.BR@x^,c˫[i^w{azoS6֗evrbXW|jzq]Xi|<ȡ-ҧq|kl) =_qEN jAI566_胍gT?5rb\]x0]}q- ™08ܼۢm\455ՇͷAzEN VWqMK`&P<ttM! ӝ˭JũCPY8gFTs^m>h^L ,#/Td!}?7|p|U ־IBsy)$"9͛0š䮞'Ixt-3 ? xrnwd4J`׶T)M:S$-N6ceq}q"67*eѭ+hC3V~ hmZ@9ٙ[O03Gcp̈޾,eXRx6s8x|iAGJ_bqډW :&-jA꽶ӏǝϫxiٽE\2Zg~W `g!eHQV Y\\έwh(Y&&ZT>ХdxpE)!XBS}]XҞ-V #k0TǑHW89vB>Z'KX-+5`V%޳7ٱ8,?Np{g#x1sWܟK-х)eܾ_]bO!!=laPj6}{xY?ŁL¾{fA.(BH\x쎠mN'Cܫ$QNj<;D$!]GLIo,*KN;ag'|H,ųhOl.60NJQ:넩҈Fug+eA{kڜYgt}I?Ѹ kߌO/R^MNYb!)@'>;sׂߴnqWZl4YCsb:Aa!#)XB$QTnsi5 лڌL5?6LzE"yA UH4a^ %'D-nU!#s8hDgco#0.`] UH!l|ZMqCTFcS~YTS+*g: V/rr֗Py.O׌*9JR,nҡQzl/DmFX\H7Y[.9jRviyr/CԒ}M,i+wZ+ !c>sWO0)g"9ȵI8;t,5NV MsձGDUIfh$ >`\N1h$ CˌY;.%bm\wez#!SpV0@ijJx܁b'Mfa0urp\ ]6* 8|f*ԨpI^/4=d|S@ K~w_1%7:Uy\@϶2Nr<j *M5:@bYIvkV&?v3uJ{DY1N6'oR|gcJ#>J=9.¸Q?J2A<}~/z6DWx(V8JVp̭9< a.N-#(\˛H2ï|1Hl^ {^DE68y첢*cV)#*/FtɼisA -DKTg/„O$ wW)o|C!8jx紒`) \0Lvn7=2&Wa?Zq$DՌZ1bC3Ups%@d<-Fu#w $*dXNBQ pAn0-lc X_;Bf+ؘ9-S2Z*5ZǑyUPAa㹑WܥB#vC ~ڐQ ^L ?eLJ')|ݪgxR kklT?#ez7ŽۭnѢ$sO?YvRx_/b\B$!8( %)D>½' Q*=7pӠ7J>\:-!.|l.AckĦ% 姨ewD+rcęs0dEW@3䷫X%(*+NGfMJ3o:`O<'Jv(9#.7ʞ܍ (6\[ر\2mA0rwKv WnۀXNos:<}/#rE0l֮jAQ+#,9'OVsOe|2I~(-!I[[ "LX޼@Leϭ@V7-nַ (M+Y>܂)<欵ɟ59[ҜGx:dX$hՃgaѕpA+lK~ ѥ^,QDuQzl0JteCC) .u8]{j!Q^G& {gJ[Tez{u cgg D-@rG>5)>lJ] *0Mwf7)*1Wh3Rqqr-Ƿl74nttd2,2VTq1@,=Ӽbzcn[ wtI=HAǀ*Kn>1!q;*)!`4eqb K s1=B`qp#]L3nPr *ǝ?P^;K :z^.ҏ 2{ׁ߬ks ֋:A]F(Jeƣ'%la:LMN=y9P\vѻ^ p=$Ld o2"PP1Ƙwm$?Y͐TK)u}~0elZ i-?݋ά?_jĦ+zj @e.~6{&2T]'#C7D].G[]cS [i tu[b=* :=]hV`z.6Ţ&duW)Qz],_j |%6lp#Cw"6k4|.9]עD%-`e3.(E o^YĪeETڤ՟`uۮѮ$؃P >fT7dfx ~ ΗqT_,lRxՒRZ=f~c0yCv*oP2[Ko~ ? _ޞ>h#R2se('(ߥu of 0cF:A͙7 fT{B3!Z>_9oW[MVMZV`W=mXؓBa#^2X"> <;0t $"C<mŘ(Ǻ5wd ƿ[aq*+_C@s ^VU#="r$0NRm-ld+GTI\ewo?:" Ϩ[mUӨJmMO$AVjbJXbRO Bp(1otSOV"=u9^'_ o f jjq":>-GF_AΧv<!2- TdsgѠ8qǝrO}K?HD)NFGE¾ V*'zӇu,ʦF68AD+,4d~vRjoպ5"^v p[?0OijY_+h-$섑8Ն4+_C,/rtaz1Yؐ+Ol|5j?hHή:b%ԍXJn^Rkj#۝ݳ5"ky7U<¥ ȠkUTb*Gn;:}7"!W sxeu*X8-b3"m YFc#m!;MvS=, }Rua-Q{) X0/rbL3s\' y*ɍAKt0"*ړ !زKϯq= c7d>?HE14ґus\fFRaH0)7n`s3clҕ_Pj GycA##-|Os[[qG˒Ŏ9&2wJD:- T"s ^0? l?^nZmfV).goj$^~v$nîV IȬ"kN딚ӱӦˎq^*yVSF&c;.@7wv,/8(^~PbۤݑhJ_(23#Ua,\3ݤqE i ֹtyWBpz$wx2{'p&߰rĜue':k7@x(ޥq+=T/eFZT`ȓ=Hlu3?&ڮRB`WftMum$<ɨ;[HlNTQ側"s.`h9{r>w \>)@/9}bU~lNO[ [74(c+~BpʹUaxސ\][T>4 =.”HB@rk朙)5۸{#OLGa bUi h ^W" |#X4Y?mU+k҈bd"Kek.tA` ؼC@F461{!W*ok;%uL~y+aR 52-M+ȴDf{(cf:(g9G;:bkxŬC$Ψ|+V0CXr vs〴3TKެm#G#qD%MnQ t{~6L }RB|#NC ghilH^uK K6+J;CW$9^o˾HZ`ϡkGACb b.R?j*wĒ% &-V.!%ސ _EAb%@ɼ*2Lt:2b.hn`}_- 5IL'3hZdoZO"XCgowL4-H<#[Y]A%$.\KHhlcO!|T)JEq`rqTI J)EE5GΖyHSSuwXDQ_[O ,{̸(PjVGX2xISk\^e"c-LBLx0 fRLl-{UR.P0oe>cFXN83p+ƀ{09ZIOXuOyJڍA!}`#Obg ]V jO}N=_V&t~BF"zqE\)~N5X&e`"2gTi:11#&ei4z#Kww{ =X3tES2") &bnyVN<,2ºIPY6iRl`GiY 8Ȕ^,-*X{~EBO@&943М9i(8)#lIrX΄eݨH7p r2s5~2gTc/әudY%l]K¬1큛 uR gDv]خ:5ԐGpA5lX@%~Nkߗ^i\>W]Wۧ/w*X"C(K$nSӥUڢXmk/RBf467_[]K0ѝ;mjl;!#%5% VYxw2-dc'I}4k!Co >5'4}SHē|A )7:61K7 ␪~GV) DZǷ t0e%Dܤ(*U^^Sh#0{7 ]~@ojvT'GD״dXxj\:L/;y?bjX&dQC_r="4{*>]`'81S11}d4<3(tZih}{X 𫁰u"wc7AEOKUg4}rag47 3,hd1Di1nKbzkA*a_ңW]PZ2γb`#8U3t,L F3䍦;$-^\C&|ޜu)2`3Y/cyi3[ȳP7|JTC=I $58i`cu}@LՓw;9FAJՠƱtrQ( ufhS$ ;_"cٖg4/j]J'1BB. j,*G"4.U߉A?!~srQQ#ɧz%pg/PE3t}v[7-+H jVqs~Hc6'qS[!`g?;eyI(yK׾X3(<:ÍiūAqylz'H*_8_tG=p׍4< ٞ&J^U*<êES ʁ0I<(*jڤЅJVcRb3C4]pqH[=r&Cuǽ"0_Z#\jDZm zRKQs#!"9gX m74&Dmo?V0xuܑvZF'<4`MjZjGr}S5= pX] @_&'ang{E';"QO+YZElO.pE2.b;v~ie$˦),̀PόJ. =AఴZ5$D;MU2'qt ~rviLC52šGR#*-xQH+IdrBrʳ!Ԇ| <]( (zH,:a[@+fI'"mH¤H8Q帼 j.a~)2>k_r'{dށeh)v=$@x~;߽3W90 *(K ״ud>Ջ!b YoE?r27(pΚixk~=4[^tTNPA6xq|# Kru5'H_,HZ'~ce(]t>t4n, 'ӹH*y`at/pt̹jBQs|-5H5s+/H-R'Hl~N{r`-? «5<=`̞XcUvP[>nsͷv@_pj 1*d?,pkٹAT,0賄P?S`@mG0'tIeȗ᱌8%@om qWtQz>n˧?*Зu1%?khC3;WN5 W#x[6G]d|B5I!跴f73NF5Uƚ7QWΨZbj {(=$FǐeK2x( FDj[jټvdc=L]cD\. 8.*`8h8OjM.B-f7ޙ]_A=!ZZ H N'Wf^dTk4sIj"]G-!ܥϊPI+6 o{+} HІFj S5hZF]hvnpq5xw ֝ |+*g3 he=XL|+D1hYބz췦>9OZ~"%7񝝞<%zOATD62wQQͰBM.Gp@fzq~ҫRCי {Į|̓P%^5.۱囪b5IrC?g%G?@+@yrT)e-u :A6mKpޢX:/S j.|m㵆l!ST, p\1_"hڐ]"06(M>ҥ+#'ShnF;k*Mo)GFA;dk+M3.1,G-2ƐcvB [04 Z/XݸGv)J PO`Z*^'hT; ;nCMzY; AjhS>G`Py[\0~(!\Ր3ԗy!j 3C-yT@t@zWôlxbdܖ2{eBʪ/`o6- dӁJX$~ȆϰiHT̨XiǥgF\9P!|BD|uQ8ڱl4ɰ1sE^܌Vl5xRGGȆմf Ѩɲ59OV\}`QC5b Š?ZͬX.JHRt^En;˥? y`0dxl;PL0k9ʼp7euSVqq5n>B&J}ZPLZAXdLA:Hl]:qHnEW!0n[- I{m=oEP`+GO} u#}{nqTIÌIg^;i";S*'{Xy4sMNT Q]pC|aܰ3t:l>dVA/v:gZ4i̸Z0޾U~+:>iv:c6]۲NYgDwaއmw2/&jX0j~~9o5,<*_Qyl;KE&}T*fF~>Q줠bW^à1cIG? fO8W]sj%+h7ݹLiqǠ%  zDoe9&cZ%`M@iiK>SwXd&WHk%09-xPZ )z;\>=X.Z i(6_~w&69g@<(5 t|{%zB:wynсK$MrP5=ܘ8YbY9^xEv]̙ 'gjSlBeݚ23Q[^!<1bG5f@$䒺`DjhWvR#5x2iTZ|0(V:@|吪Q@kLC$p&Yh1+g2<%"$O_TH T@ὖuAcD+Hq}SЬ{FϹۣn&cr "D8IF*ː98 H*'SQ<|;2.s,̎)"DxZ%8s%} ܭ#RNs.:L!ƎLZ0B+9_G Bf匆6ԭlU+(zUX\T&%-^_ FJjx5-a"XnQ.xf'nU4k^&[x\=k](Ti $>Y R4cCš-qO;j)QwRnwocK> G 5gR^;&KWLd[Qzusk; 0&mJy5(ʋahLoMqh=LzOP"ȧ Ah9w.[BWKvWj_6Z)2"k=#((un5AxЖvƘ']ط+vJ rWd*y_MHIu:Kdo}Pit;-rPMP-3sͥ|.N@ד;CqwP(vaf{NA+,pcjl?V=zG撡r&+ :$;ykWxgF5hϹLh'b|:/p*w ~+ kQH/7oа꬛Z6Yw8v?c :lS;2oPLD H1^B0]ҷHfh"@ ?rp֬N9/Yni=> wUH D' v;#y^+K&ew^QFSLw$Qr%zy mc6ұHe;Q<&|/,0}Bi#y`'NJHu}/FXL\@b?9/ ԌH9?RmDRdɫ+3.(}TzRb桃KarUj2lWҲ$p5y8tESU;ۏ";Ɂ74OO2V+-ǿ4Č g2-vKIw9!v?cm@#GSZ) Ж8eP\I~cQ+@w< q0{׺NL—ԆO~K.s^p&LjF4u%!܊*]Qj}VDD9W ә+e1FўD\;b& ra~d.2D-|\fJM#F=aJĭM~j>h7' !l!~d14 O݋|aL:ؙY4[ܤ*Gt{JM@fFpŎR& MVaL>v ߉}Oؤy|_B9 *[U~B>t1ݬZ=4xӳr4ADwړ& Ns|u@c,By yJFupI#0sͬګD>էC_HI^y\q q2k +_nw\*3`q\.E]=h`ga ߵ߀8]kʊUL,G?媈]?[y[C*eםsBh_bD)b ܑHHi+D|mh.Ư\ 13P9I A0'Q1DƊP1I :j /SK/yGQ?-ժC10r }TǤPDr 7/\:-UYo?<ǔ8{Y!N&0gB=亝7C» FkOO]@c2c;V2)Lufk0SPʔR5+>q3*r[ nx9MaIYU]ZPBǥ( Dߓx8hd|]e_UG)juNX^Nw,k5vB|ŬUִ>ʠY<`vckYFWaIْ@&`M)@hG84QmitE9m(mɲ=;njzvS}1Bbb)u( :AվҚߤNcIpzȚ]|Q4O5f=~wVA/0(>Ӎ%V@eZ![l,wS-,Axjt6Ë ͦ.>rуG$ \kk|ÙEv̕&Zftx@Y, W\^[p1ۓCff=H״~;6;$Jon/t͞GPKқGL}\bI5grݣW9ߟbnݦd5Jm0oG `F/6 :VoU̕s̽|y.a4tپSxOCZ)dN* [7A@۳ W P Jyu:8T =^FZo;AI`WX1%o5>L+z <_|Y,H%,K+̓:`Kx;3rWF-fm{\&f%x<ۉgYGق2_%j OeAoCϖz.gj.+%lY%g6A&jcxn\ۘkqC !^hk/,*_Y2^3*.ceeLK(SCK:ziP?i 42sFףS.dtQzׁeh;,Dgzgf% 8|f!'k\_z >wJ~frܧX4-cp4qkpgɹg將8O Q?'5{3;ͻ5:7l%;{@oX'Rޯ~\gòZA1XB֗ H%# PSڿrSg7]3gatp7CzWS5-RJ7(I2"߽(lu3<(DGp?:5T Oιpmhv7{73FI=+8Uq@6}Hߓl>Oy?=\q`cϾk:T3%@ހ yQ pa?Yऄ7\T;~m²T%K2\1uԑaUo`gS3ruoI ҆Wx{@**AK'R[PK; \E6Ĵ+e5{M4,Jtª;  3XhF8Wu &))g.5\dw5jX}4p a2Zvm -/:)/y0%// 'u2!Tu~QD9 z9KIU>&oafH!;ɟ ߓr"e0"aE;~޽jV= d`Nٷ-FC3f:ZF&3Sp"Y(o*5Ԭ}Z:NZhՌ&o0fZPtHZYJ^N0hTh1tPuyLT6O~6 dс)u#[5,\?1f1bPS+Nocdp@"ãM{-Z9T=Yha!eelk+v+7R;H&UN.wUikYQ,} lp.=i 4߷cơ?Zcf%4{pBGr\匠s mF ]HWw=L5֋U^9JlzTAX+KP*N xX~Vlqɥh42PõUh91:nʼn2A>Yoj D:nuj1lI=4Xh옥?Ń^]j7) YCTVHr{Kp~ ڂΘ hi.O1zZ6s_WLy|CXD9@Bw{9Y9P_Oi q"xPSE4t + IV],=wRK 6"un ҆aIk&Vbˏw~ A}yy칗*5[:)PO]]\zm;͂qr\&(vOO)؟ \f6SHÔ_NGy+YAw$]SC-Vx5O7+G:dNs]}tЄ%BڰEm=mϒ _"&? ^wOƒi6X*PĶx [8i+ǂ,uCz7x W!a T-04pA_>ERmGw_`BJeI ԉ'4L"nbzccsEM&͉+4G'[p~M7y@h[ ? A` `wG | ;}3'bW>[ _/:>mZ{"9C[C*b=&@9h&T Ö3t/M8>\{Qg=ݑlZd5qR`Tm^qT%ZZz_Uig$GT-e%\zC!i%jC=D "_H ˽|3PdxDd\p bq eBdjlVvs]Пw@18`G&+!' <)E?, [K%`qZwdNѩ<~#wܵ*y %4<ƕʑc Z7;~p@&{Ps7x(KnI.~T{(DӁ޹0#O䞶mZG<g pY/rxhZc8ӧ#Bunp酸V/G< ġHsfY=ࣽSZ}`kUvI0?CC)wi {VEx W*p7%dz,_d~`r}ۨ7IWD-=yu~Gpь c夥VNJKehǏLŗsn>E a~Rh媏_CBy@*}csFO  T!#\S:xN2yp+C*Q8y*A9$T R6LDL*(2g1+jp9'_}ᓕ0r,/0 K%Ü'%ՠ(Xƶ 8) +8baH(B P F $]!Yjf7l!rnWi{鞵}ֺI\ehKTWI%cy vHU6+/9vU2 `jx Xo @4 ڶ=F9#*to]K|rMn':}/ʺ 4P F:t`T 67>bҽ79̫!k'ݔ_CzrVy]ہ [3x"*+'A-veؔQэ})F2aٽ.\jPYn]nErv {d,1$@!X˃}ۄ|K04*sW=-1.IԈts[ 3 4Z= 6E"X?so1!,K/ %*&E6!^+8;ސ(߳+-ddO!Ƈr95'  ^2M?I/9Xh ߠfbt0rLvNxܟdSl=r߷*L|?TQL6d=t%BwQ VY&Y5UD08e1ɣ oT*'3oAF wfbq|rEb.l: d7CNx jHVvsmŒ-Y KYlyI^mFlVa,Z+"NIh5)a%{{=zICX>SƠRPUPn?/BO'b(q#H Js_cär 6R6X}aQqL;]f݉T<_% G1ꅅn E9.{ =w`Yn^n] ߯Hگz{jf!AYg)3O X5!p /9-ns */ y^3} V7H|r"憻24ۀ}' :6ɫ(+hG|=2!K> nz;ο٪GI8e쟴1N阙ot2Lk.z\!vwzi.uNXɮO0n1NraD kbdi&4KmLM.jE`|A.Ac(]?opXS ?A(KQ/r^[nr3=zR#ZFAGja-*Zo2-+>!OZP8J,}A(ދw<'dU<_;QED~%n3mnOYQ]GWETjipI#So.з:Ri=o[KX_ /aZ2^BXX__U,}D2*nxgz\V`/hflk/,h<OV.hΩ\+J,'J?꽓d a-Qq?JL~ %Fi3-Ӳ qze* R< NQ{/XxclϦ;Mhs:ݖXqH4pt2_LTVV g/ ~Mœ7QzU$&Gh?Z&pO{p0W\w/e9 yk0@I-cDʡꈯ>j ^\^.8]4 [r.@q8>#%[ 2`K?dUA%L1-̏ @sœ)[A=m_@,IE :61II`_X뮆tN}HF{qbIA(ݖ5`*KP@#?swT3Mdw Us)]n8,.+u;ĄV];DZQ9`RAK$n֎4k=^R؁aH6s%qeYm Zꦺ:%"vj }T(<}2 o8wQUܜUEZ?5.9?={D{?^нz*LӶ)[CJY)+hWwX3M:Uq9Xc׾ڼ~_MWf]W_#Cn'd*_ -~:rNq] `ɔx 9W+z[.sX9]2޴VaSvª6XOrVk0jvlSXGd)$U](ZW"SB"("ʼFG+ FS0pZŃ"D(?9F[]j T$U,<ɟ8CDoRcɓa[++5("xFjo7PT[^?SUw:a &EX' -'i cEo@Pw2/2_S7G<sg_$.Ȏ1^ΫBDgy!/O;Eoybɀfj0'm2M_{vh f %uB_h:7i+%K PF&~ՄE|_oSh0y@+ C P(슔*z)(l#2E3~hԤ`n$3nA5JqV'v|H~0i]6Q,ApĸĆv !@ (y]4jcHOzЎ+iYQdO%?,~tn2cQl"ե&YF#I;CZRQ([c!u@櫃<>& "lm^>=*R3HoΖ//4ց["h0 &{'^?rb>eVd܅*X!ʠ̠_~ULc4)U䧧XBwZ3wa,`]ƨBu P b.!?Nlk&+G}l{FD{ D~ ݙ" (=Mjr1Z/ijOq@b_T=,) 3"~V$;%.rx2!KAk*umH2O*/Y}>ށ16M"Qj=\i]p!m`erPʍDt1?EIJqcjcv8Qx%):ˁ9)݈A"Z,g4MԠ-qX~eօs&Jy?C? pWg( A۰J;\bVP^+L@>5:y\ёBcz!CJ9FWD suM{dr7f{ئO 셞p9,'*j,COK$93J ܺ*n1 mrQvgbKVgRdb2ֲ#BD`Aw7(r!+B d?NM"=&ȷc|"Zx[AG+Brʹ͔-n\˹VGEl#T2YA**p+& #f7hd*-U5 O3zG ׸tȨƵn&!6!޿=,Un&gJsՃ~ '#hPPf%ޅ6I'EHERƊ \&V(|>%`xlK/ef ^o\Vؑ!hң$6&g*!z;:bY +w2HJ bU7OQv\Bz`_̃ r`؎l y.6-9ӃlbRqurd6T^{=bF,adRW& rk8} 6eiAPe`,%n3QE5'4y R1fgUo|D~}\/\Nc dyZA-PBm[iZ@Qc;7D~K9h`X-<8_6IJNT/A~Ȫ-_^/jN bo)rS%Y50tփN\ b:Ot{߄A﫽R} e4Q2dU/wǗO&P~E7* p+2kpLT%it|7_V f8ߒrdXH׀5IS.$z1MSxv$Pŕw踭<>*|]Tü҃_8xÎq-Y7PdLb4Chpi(Dh1z RUosum 39zZ8ѦGSw+uߙe0(0i9w?UgݍPwbV.XQDa9}h0`T9rZY֧.:;cQ j~`hN E(Hݲ-z-(Af` P\wmykQ,`M=?jp`W+%gԍwVgp8-ua9WWOu=D|]Xf N9@R;c+9҂nPL <|2$1C(zIu)[tƛ&D/m5}of Aǝ2hQ4 6>4 _҃^=p`$S yIYUkX-*r|aTv?xRV>M:" w Ys-z܎aVX%py,5LJXb&K_6%i) # hAE6ҢHnm J|_m^tZg$yxǣOβ.Ig8NWI ~ 49ızJ!JS 9°,w05v`;Sآz>eEQeKdz=3fPňF@U X$+EABl‚>ux)2-1|Q?ޫLܗg%s#F=r=^.Cz}oW,TN"jij!\E%c`oj <| ^E%do/j.Ȱup!/ҏ8̩b; Hw?t&!yP܅b Ғ4e):(#~9ЬOdf< TZ"!dtC /2H!|b&ddAyYPtp۲2hK Pm;߳];f8rtgW)!gǰ]'7_%w/䮱V.¸ *eYL+q `R)>7$\3Nb\CSУBJxu޶FtVᏖ0L}i+ WF % 2Q+h#59ߒز`TMILL̹v(آ|`c"L((-40tT9RsЧCYlB)vbBRKuUw˭. R SqӖro*!Ω6alW̫w_j#rʐmn 2`([1'OIۋ-'@t*Y z~@:(hUkK[3JLtkx#%q3I9ekH5 k>SP+ُM# `ngɆW=/`*{mvu"ϙ2N")ÜA}.x}Lm)4ڹڦ_q;nu7 J_b$h^ v/?p؛Jg(WRye4AAg$m?*3BF9JOU~ºLZ3Pb&(˓z3Nl5`K5ѡpk^%K}RsO&^v cKyaL Z)S^ )`[Rz:}v9KjKȈGZ@guD% la7B' Ca?bu9 vJאAT[$04>`IN3dHzkpIR%RO/f8#'嘇@p,K? 4Y^};1]: ‹-L{QH'_Nş~O&N#ʹυ٦析 Qѿm,< &a%L z}Y1`rⴃZQ2cM$4ߑ)20J )ڛ!:/5"zԯifX<maJ5]zAV=zAJPa_+9NQj6$ vJF&Ysaвl򂓕-9hNyl ^,VQ=pnKgŵV@8}(6mtB@۬&1(2,wУRC}n! D|Kz@tL|xgwld AhJIONU^U艌/=28#xZY6GP:ܜ9(Y",g2Q Z[SP2d6x~V: 5Í?QYzezO thXd2{U77gy=L"_!:Eqjihx^x,n t]GճaHY;gZ$_嬟m/}thnHԪO0}p@~<@ jO2zO)up_3erX`]j|<6 47MjTNM|NT k\>z;3OiJfOMސFI:{1\ׯr.W pWRa5?E+EVSs zQt~Äh%>JXu8t \lq(@NoF ,X 8ZpF Rr_&*懶7T2BҪU~l%`w?'8~\zvzRS0K*d23.'MnWLDё,Y_hO0w\ip4i\C |ﴲo*{Qu^O y p*J)ElW al _O+`/PH} r+E,>`"oh`~Jլ X7qN7)v$owߛ>ԳTau^4L܀]|i-.QVE%#Aܒ*ى"PJc' 1 @BޢUGC.Gb/#~C#-^8UC$qXqR E;OdzT6U\ae,D0?nB:7B7I#9U <(p'Wh+C'W ѿOCg1S:x[m$JHZ$d- P›9K PixUbn<75' ﯩ$5ײfEݮTjPF Tʽ٧yohPj'9sBy7*չ_UU2`5E܌FM^=F{#F8M^i-XNTMP4y4Eo9l)yD,,EA@sі|V.PDJQ8 NFf|ˮ̭B?rgy몡r`e/rIk Zx{ CrvC/mSH^]FMC$ב3rX5Q7H+`kE,R9y]WUTCPǚRCm~D̏f5OCY܎ñw^R l3Q{|/uB>Hm*Yhu?-!*$_T<ߋ9PnNd&?إ`c()R"AJS-2MRF\"jeL oްc8;=QT\ߎS, gvv5k]j$RMp|E~}Q:l,wHP.f2gC5-=]5e<#\dTl\1g9ͮ?ObYNǷ0;U;"VƵ~n2uⅷ> {P.پXc!2Mv 3 ><*s uO{[|섦_ITA3Y pEhJs b;PrId3s)Dl Kz90e<m?7\i#\3lokYw?/2NrMx ty&MOFw^O:9lrUX|6g]s9v,YYz?=KOddj{fQoDO'NPh80l{֠[:HMcϞ¬fP@6Jh.Pp<Z B#瀲V}|oۑCvb;aGE:6}^Qt IhJA 1!AQySY9x2Uej+)H?._|rC8fQ&ɋ6Vp8o)/)TU"LZJn!19*IaXVΜ\ZF:3NX1XI-Ua<Ă?w xmbg*S].{CF# 2?\J_:$t+F@\I8ޙ# )C]gW,GMQѻ;؅"XqLfx۳4"jSU.JT!RWCe3rk'Q:Ү24FKL#g%U%%/vjcCGUqC%?_t4+`}K_ u-!#>I\vqN>B[v C܍ Rbqpcr ?P6[K-rK!Cy% @$$8,vZ[9XEǁwollKI7&9}=pD`(O(! k#ʼni^TsBW50IϷ|dƲus#eZw&j,~vUыv#N?\ZH"(iBI$/uw)n&96Z#H5SjYBb:b8nO+5"%Ն? 2]\994 ]S>!8jr;b8:~iߡ?@x -*9%㕃B6-GB◘Z:0++SVY[%3O@gQ6ߒT8]t ؛keHa[eΤ-oԗnsdl a$*O8}reθ._:7n"l72!."ˎ C{} 3)3-\nm.ń5y,h@%t5\Х\|Z%) Z"d$PW)n:R ^J4Teoc^S`'$9LUށi53쑱*с̇6= ]d#tBѯe$tYDJ-uvEw-\qϭj D~ #_߮󡴬+;2iJJ?҄56!2Hs  epV6#A뛊Y𑮼9Ҵb3Z*S}{'3ƣȂWF vLKAgMuhrOfK柋Y]?lZG._(SK?zCY Q,ڏ~U/d}l7&$O@J d'/ 2JY3$F}qYBƱɘlB"jKn/¡ZC$eRz`+(B\`!DHxK :y裋2C}䋈s9g!K.s3J^7L^Ua}KC4u{MOrta\_l$C,ͅD3'Dy/Y@p/^8>`(Lv8~jVu6+z@R&I(b EɛP?R*2;G2l+ٕxĖ*}v8 hkqG[Lpfɶ"4\R)Qy͒|i@z1DfFG^4BF3;/*vr+t.N,dv"-/"-ҁp d5=k{]6ֺ/xDsSs$؈b7K$LV9p8!/2~,* JAsD*u:l1ɴV7faOE5(bܮ0ѧnd0R]}ҋvc/ Z ˽YG#`$Rq5=هY~V҄&LC& KuBZbAG7\%}%TZ¨›옟; p `66}BKa\'d^yb`{vpQxn=q-yK!4l|S1Fhy.{V &+\|gL*Kz_ᔏj- H. VMIj~ oR-lY~N u\z⫭LͲײ`{"g] 9'%\.xƊaf2(j:m4#D N(%_?RAy}Y YL52?y.F_1! pS=M2 [Jn?zB4+]U.{UQ-PfN8=bm vgLc}&H:]WfʞSQ;3e]o}j~&A!gؖ3ms_"hb/p -wI,YƖ>EoO[\, T[s=! čo'Q#u>Fd&4![xw܎mS sŠjcU l dozcFs9 OeMw2;q)#䓨}ig@j&,+>եU tbDfr7N} Bqkh>Lk-BAِ qNY,v&K%?8U~Z/MZ3ӈ Kb<19Ƥr-!> \Mm2/;FH|[91BZ3>̖@xz**) 5bT_(XɀK7\س<;ݜՇ_fer|GkC ͥQp9aw.dž{J0ϊ@yD+sAζpdyxUpGͻ`V xXe0Us{ ޙ$‚:0Y|j1 8=xPV.g+"kԍ4Lg{&l}CdӗkN[SɂެL7Q{EZUݧrx"VSQ¾қZ>[1z j<ܽ|f< HwO~x\8㧢:3Y'S[kTܷ&PH՜`&Z=杻b cpx,iN{9@݂žN=jDwV)og]F~MwAuq e97i+V(lj!+P&KZFՠ8FcLZ-*E4~51=q$y3q^ ZY w>pMiTP&)d2xz52o@OʼOpT-w7_ŽGT\>ZYOj|F؁68:[rfؿ{ܑ KGxayW׌н5c>:;$8QW7pvy+kW7U2(B`\[-`Gdm9jgXTFK4.=tQ hL]yeϒ>Y@2Jq-w}*dtMiPml㧅rܠRtf~qb ~Y)A`^Eq{:Hz| Y2Pc"@*,5" z% IHgD0i8~0wyW ="rn+Xܟ *h:rBRQ&Yj~}t2`4נi`.lx r7M:ŇkkĄ7,szr}#+_L:͹74i>yo[ \Zd-RtQE(8i.]HcOM%6[26 zAR[j9r MjPĜzc#Mػ-hu+wG'an&v2raAQ^LV7jˣ e;^"XpqwOЊ5C#ߊqI6Ϲ|A.z$_Cm$H{ӓרf,>;Db8Dw'i޿N#گ֣Dm`pyiz%YJ^qCNK _=,Y2x*_p3*#j+ ⨩PT"e` K@ !AI8ez-dE÷P:awHLCҕ @on[ νf27bk^x+H^Grj:(3Ssz D[A(֔tRn޼f, &𫯻s٠!{LDXS݄JunM25Q֭nPS {0)| i 0Z̶ΘP7m'v0‘X\Pj[.rZW /7mft%x+?&3_TZUӫ:73+|i_j4|qDmVtof eer]|uG8\7E@rRmķ al2!mv8M_\rXfNh^$\7{Kd `qPhs鉗~Y5TN=jto7 ޽Q-A_*n"$,4<$GJ|!>/  yS86eBsqA%e)om 5 GY*Y! f1 @E5z?alhie%L1"^ȢS!84?98?$+eֱV*im2j'/@UY$#vSA+ԡC6[bцma׮LҪUǯ)W޸k–F9 oېjZMjث1%P OSielcdx:[IƐ]&q7<0DeFovft'C6", 1Bo9 k[.NG !zTjTx!*8nwRi}$ʃX4jOfpb04[>.̀ϟi%σG6Yy!#փmu9R 8iii,_e?)jZI~[-RF8ܴ0OƈKɡ"5Pk*YG|,W5H$ўq"!"n3pˌoHbwzb2x5Z&>1~?{/T:vk@Jn&-Й߿p=L _$)tZ4!—ـ ˽5+" ~I(u8TAM+('|@*"!|CKb4)̿lk״1 ātZ!FLHx-{6*(Rh :{|ny)NZr$n0šLջzF]i'UcED"/hw [Af)>hG,LNꗵ +ZR w J!.BQoyot]nyY)~H1tnc9eA2.r q=a䊋E5aF2D_\:8g VvFH]gzseX+ rzF0:SpM[\As$:Q v=Z;~r !|t E[)V de6b/{A[jaaEon cVhtBsS|Xى͓1wB-ŲP)67kJgH b쏤\UIs$ ??Uk_Ҋ+@'߭O;LNKg A!-7 < ,zߠCەLg]%y{7FKUeʼIJwQ 2eHm{WtWbH4δ4Yj1r"LYfm%cun쐵=5XHv]LII˗`U/bFLEa)0⥓v2aN7 tBIN*#7 ܹG=+FJPEiDȸdei݂JDi+q]Cc0 p ]^ǴCFH2kw 9R^aɒT4dtgEÇXyw5KY3P$#_\Y֑*`MWHouݼ$UzbvCOeQ.nںu=/W+U.rR@L%Q&XD)smp~Pyn>H?c-4ͳ& m]{ 4.|zn h۴'6r@CN7h {-5N_8k#P^p, Z#erڥ2ߥ=V ~.VZSo 8ȭݰ塮9$4`8`e%ݘdn*JOA!rXCo^)[CbBQ}E<0j, ByO,$e㊿~eAɋ<6@K ߙ ٬~N[Z4\ WB4ѿ0kRT1{1]~EH{ՄAkεo,U2䦔٤fᵓO{GGjg)nbudfP+3جSQS\rP엓h}d>BLQBl3ZAd*4!F۳pF" q&5Ψ:|(h|ŷ~Ceϖ4w8+Be")~xbOYg$' aEH7u3Bg3~<>BNgkV(횇]*GnI9ler+`R .q GI:cQ$GZkg 7?Uau%I)J~#}@5g4{*P@ɓ5U[l!c4)`DA}GMufG@(ov(霣Dɻچߗ3<}@>KрߡdƩd۽th}=G|.P+TVPcyՈY$#AdePِ9J62ó^uȹtmǏ/^[9BcRdʨo;Rĩc@b<5R?֒ױ8Qh{_k'όwbmUJ"Ad _J'NM(5-_"r3#!4*@}as9`K(R8[ob[cntTA| ,,Lu$(~y|T3DžtF8mNزO !ݣɼ;<ކuǭ&'XvT&|.Κez@U~JLPhcm9kmgoN9r S46M#I!Kܺ'B%_ϧbCESt{88=Brg@iڬKSyS>]r%Gro0?A-W WG`}.~JVgݧΟ~,PZR+<8?ʴJDOYp| !FQi) K̒FP%̦f/uW>U%,ѿ8C:a\T!eTN:{t˂H&p M]ծmUҘ-R/yܬ5 C9zN~~McxVNcҾ,kBCY.En9x7i(4a~ɾUTˁ?*mOiN^a.rKHKsLNI<+zyQYJ*i#og Ecؤ6|XLL:[/9 Ys5`MTPYu |P!?yV-$BsqUT\!&rqZNS7k6}ΔcUz#@b)Qi v\\j.{mȬߚ=[!=n Ôe"c|^-R.ŕ5{}82{ 7cl۷Qbż~`\K*fG\: =2%W$Oobi:>23 C;ǣ9ޜ*L3_m2y%.G%dpƣ@ ` Z'Ao[#LNoA9v.NC&]Hj4C6x "zYj A7JU{0~%,IC=;P4 -#"rt[زB:ŅTy 5kn CEA09M՛e;ĢFDɧ"nMk^ӦDRH0 (ye3^3f0{1w_^i}ܣҨKK~״٫Րɢwe`Lx_n^*G喧4 YMuE-N wA uxwj+YP'ݖ$`(M4DB3 mA#H ][UxAW`?lKԞԫockVVkc/I" /o6C ww1Bpd\2nw/a.Hܬͯ*vŴT@K6Үf[ u dbGYj X9';}C]KФ[-{mFgU *]LV}}cj>?BE`R9~̙,'\~st*yfʋMb[ xXH5K&k n&Zk&a̚o¨B1RY2ŖZX%E4>6${3;󍹗, . L@ Qdy)}Mmb.촯*Im;JEpnbn?c>>#CHI98y݉g?wsmv5.@3[Inbٸ֋VMwd& 䨅%[^)vf;uNV'ÈBMT76>&q|F꜔Q` t0|2-&Jskf󬼣\i\]VXqHUi6 Q*6A_#V:0N-qi0Y~jҕ$[s |MbMwѕq]ݘ]?]<P'A&jXhlv+t}u2EZhKPQPj&;{{QHЄ@Lomzfil /smvT^.#M˗f!=™S#^4iCP`|2p=eGtI}9Gۈqؘ1CuQpNu#b|R0Uu6/&orEьjWxy6rhH8;/JC-!rjy'BTA1'PbmF6 ~l#u*i#*bK]AqD;,t_K/B"HR5:UP0CF!eV7!8u,Y 5JiZmxrA썹9._ m¼2SO '*Q$ {ο㐟kϤ5 z@l0 &i ~h(<ԅѕD!T= t7di k-&ȝ@Tꮡ!Es{5Brx|K=Lq#WeQVGgTS|qf~UkWz^R8T}ctt}kБmX\=HJFs6v-J)x uc_N)mU_*MFRtVSBIZF8`0RJn.%1C/)ݚsT T<-Ff6[F0AYF$|3H=3K?ĔFWk߿]?OU\ЛnϑLO%-U\)>5q/\G}\Pc-ٸ,SL‹Vm4b\^_˫561k- Pk2+R;Ǵ4&Ǧo=dRCEpɴxg],U-̴U$sX$C*OD[]jA|BYcw唲뎨#EkJc7D>PolFu_ $NܒW&K`8{2sYK4NfcW@!~)BϳB^NģIHQX,),aA m4T'rSO9ɰx9Qr#1$]gV̺6l"{.O2A}4$O46 MA]) +҉OSw\(E ?ܷ g]1Y RjRkY` l"#li|y/_ MǸ\C+P1k 46@r[AJC8eKFNjM\oY;E_MgJU (0zf"ֺڈ 'm"Թ۠ZVgz*sW V}ʏj$i@lGFMor~HՂ(m}#T@cxc<45 &˛YL9m-,{Ϊڜ[D.20>24gIIFU(C[JO:P]#npCr>XB$^ X(& +50.ܴޗ;>$qEI^wTRhY{Gz"U>,e]nTci"U")L4Qvx֐'ˢ)q'uV|4XQ1N*@Y-,]FЪ d*BxQ0́LR@*nvÀ=qotDcCՖj#4?wyp#0 n6?C[ E7rm#.^> 5CJF\؜!WJzz]1f[]VHR\  !bMT<HZd]V5폧33<ڶ͹$ Ivy"%VDxpU&=k#[f×mwqBx\xhO0O~#P$떢1kDS(ڔW♿[\g{Y&A"/>!2:ua"uws'm&9K|C] ɖ[nK꜆W4C#<\BFdS| p+'6c3ƊdѲ `iVOy\Q18޶-XX+FZ6n LwrxD`Η@CAey //t[q6A GՐ %A > <*:L#mnk ŋYz̧1ipN )(d*~II<* b5"4ߚP&=D]3>5Bf3rxܢ7^*X]_ۨp3^ޫF&z4h( ݑAy8<"#Ĺ~u{m%ߖܟ-:.,ț% JUmix_Π6}b{ 퉍d5#Ebo*Zӱ!%:2 Rx%!hbBdDD+[7U” =ltq#3`Q\NY>6/"!Y!n3<JR 5ZYM c>BQWh7jS(wS0E7ZMR(MV+sV,xOnem$,V뾩w@ Z@d#Xu!-JU9HjB'?%(f8rZl SDd?ܦ_ UERج$zFa\yA.r\KATO <gb$?ߠmU,D.콧'3"oʰd1{9)L~Z'Sv Ǧ#/Q+O+`9[Q)^EF7Hux("!u18"MdcG QdS3o nPH,YS 2Gƈ||,c˱s]fVnG0%FVj*E=+Dl}+"!#̊@p^C`[Cd/t-(FK!iXZݰݘiG)XcD$n؃+}-EH 9ǛJjfrOEt+7t;җLآE1ΡC7_RN{@Wmi|rO(;Π sLv9nwDpSmmOjN6jok\S~|ڐF]ݥUMxog+ȷ=*Fd-ٞ'kRr/G/~+ F]D߬]- (f]YtxRa iV{*H_Jh䃫pX.h:wᙊĖwc_}XNb(:; e?:{o ں֭@i#3[3}7|$lZ;i>) mN>ݷ/ޓ]9Sd'#H3q flf gWv"Qm`0Ѣ~U1"63"/+Plƥ}A; 絫f˞#h_;cM\FÐ 4fΎ8䮎qͪ5PK)T#l3Ug3nv دS(J; ĞܵY+ ]_͏l?Pʓa"xcQP  Y4 -)-@/^]=/''̺oYhl/Ǧ|C`Log0#$_Ͼ; 9cKN,3ʔd>`T, |nPLIl8neL^zlAxT,l=g -eIFN|#V坏^3zSFx_%hE*U"r;$97Ntc wAЉOu/|zybO`lXaW:+gQƢmZŽ:ςb[sBdCCE'twWPLm]S$`fqશ6򑋢lqQF%JI٩dD5 e Й-?lH#c3I:ܪJ:_J}aeFY]nŽtHQIzz6=||-~hՐ >|PL WE$jfW桭G%pfHt ag6$kPZqd Fa~k\=V*BG-V" a.bS{~g Da4NA_Gg/LX 2ގpTN9_Gh2D I'~g_\p` !ͯNTq܀u 7Nxܕ𩢁ʕ]5D8T(trGnCMcG8*icq .*3YmtNdʥ\5WmLSw\֨zt24vI*h珣G1a7x)"pn&<;$_I.&G?}BƌF}ESAO S4j,KhQ<#OL+kPuz5'|:9(&S}f7x3eRK̷~.ٌ_۞0B:8ץ/޿/ oʤ.&hd"//H)k |UXE!+ $]+CMI01ivAmYAsQ=e7r*;nRϳLDK}ۈY]YC :g7n tÔ `Wf$.TT}XϽO-kkyÙowW׷$r\rY.eKd|͋!)c% ̱YuFI2 LReŴʪ|"n EM[k$R#W'C6e(Ws|N8LXKCJ;:qlGC'õ%ѹD'E["gA.N2530KXOэΊm+E(8:p*oCDr܁ۋ%M"An= b WS0aRqƼ`O!w2auS7WCԴvF~\ {`ótSq } f\hSs/B| 5I7fwގG8YNsknwJ,-ƿKousI_=`A9^eh YiP7(8Anq~oO(i뽟2 lعJy)٨X?S&MފB{h\,?=sf7!6D%g^hiп4(%^e?,B7ȨOQTӮo]r+8y\fK4%&`&/H C$X˖vt!wcm iKr9l9OF^'P?TyDuϪaLJ çU4[bۉ}$"0;,ud{) =Y˚䛧,@'jlp98ls;y4s'N5A`hn͢]9(-v`̦si3k-"fgx_DY>fҩ :h@Xz-=! ܐCw6bHnfEFyT䠀H)XF _'_b Fd͉>{zz-ݝw pK~ԡV>b!)<KsHWE Qtj=bD&w`|[9[\l/~_U%(z hĜ^No +5#NtyF% ΚYUa*83>x i8$j/nLxN -Ǎga)q02tR6XOxA;Z:XAOp+&NUJ.OOJmqU^ >ne6Glxb@i#-$(ih7&gm:ލWw17`vd A&gF"rK<O ׳cC txD#6DW&ryɂSzaa̦SKrZ% Z;9DzѵW`Wg:`U׆qG+|'_ HQ<^?:E=67K&%EZ3A@?e~xy`Nj5nz- >LM ]dUJY,b!?,@2-D-`͎dSM #<@;2iT`Å8B(!&_QKT ZfL?S5}%2IԪC" ,?y3uEAPX`DNz՝WɭXF)Eh$T D K5kiXf<@P#c™RjdV2/y VY{:GtgOλu}ѩ9 oڴ0o=AjMpVPl7?3G6RX8Fd4"xw>vkz:sjtUGzDv;ݴ.^"X[U:Roڊ5`IWӬca@MJrl$x{&\J^hp@f1  D[T@7}.gV'SΡ+eH?-/Qfr?Hxtہt=3ޮ>_v@Ndd06fܴ:wJNYZwkS4ZL*/x85 ^$xUT4?Z4RH g~u%G*x4)ls7Y$fA#6GdSIzN l/-aě}`rжh`Ek|Ar?^ulhoek)s#)_oMJaХOŇ[d 6DZ"[*%&fI(чM]#d!lZiG4DZЦ>56EAs4AHqyy Pej!$  p0Q5h yLwXDP$4'|. ɐO莶MGX@8`Z*ֲQU59'HTO]Îh5mI~[ T6"[zߒ3jD,O1pw^g?*-sB|ZF)E6I^']ljȎG|gV3cNdtDh|Ba4{cꠒDuxqS~0ք{*K4~W;vFC)D RZTƓ]Dh(W% Պb郟<C@Kɭy~Ս6RO}|Iu,iY4/~'bw0(HǪ=#- +~"\Opmd7tP>."ոǦOU-Fty˭ #g޿U T^-/;`mg@@e|rn-qv]R@[V6eFNئV=:'q41w׋Jw/(Zwjt?iQd1ɷCzjvGcu EUZnYXT]g7L+"}xfUJ nor5ݡYr"}j}s}^UUk{\B;x!=Zi`!I#t$>ytb|C d³jkM7(gZ`Y?*@IId}VMc,LO iY= @LР톤E<1MZ<栣+7얋;SF$Y{⼺u뛧@ZLZđUy-o4d#S~xr J-D]lw`nSRI J'Redxb.4u_E佊K 3`G:R*` Lȼvn!PX=_`V48G.&? !:*sŁiV!̤g[o38!ϯmRٓˑdz˗#yDev^OW-= (I 6!2xs@TJx-Fѭ XgQ'^ \E '}kL\EꤢbnuyY s^u"p) bt%QS~wʗ[') mX] .rBM c5ıFhtJT %!BJqqu~6eYy,8bn1w3)rr+;HzK W1>9RB4ABDhi9c/ &yȧ6ؗ| p P]n+k$c p1!`9jM;5}R!7VQP}J F9"[Ԋ+r=Gej%9TJ'\Gȴ,/D>1vbVL 'mQC.ŋ`4 Sಎ'6 mdðROݧ]},;LܥW;n( `T3ٲޱb/1L\G?Jr6}PɯT!#|A*>zwhlk KWWpa;p9'ѯ dK:.dr?:nMnGGgp*K-(xI\`JTpj mI Xlތ '|N }5Wslc*Jd>FߠNw%OpnD+$70HacrH -Ʃu"m_Oex_iGpiU5`BS uRn}B3+_KJfq`,ZV=__߃~'I=Fi@["ɾ";[''WFT)D;$A#{:2i+`fE 6"-5G&ah6MݧlQc {.U]"Ix탾ËIٖ^1:!XXߠy>D_]pÝ>d8㊨¥|bvY$v2FhQ5 7|XpW-ƺLΧ1-!P++o~??韹؈ Q> Ȭje'~蕡ȩzwqR(kg-B݊Ϻ#+ !!(-2Axl`.=u]S/RuQ (^Ũ}^\PYgFbo8psS*+ c(c{Ԣ$]Gȸ\bFR 1׆+Lc%FYQegF=C`Ic(WG -wOۤR7ek^}Lf9O)b8ْ,(c /9eC' 7Zi#¬ek6 ss> FYMBamN쇿+$1Q GX\*t]fƛTx0# 'rEwf+lV7Ғܵ^c'vE^]'QD,޷H)E >Q5㍖l6.AUzfgxnEUhz;E![E|2oJ_~Q6uf#{xx>['ˍU%6$|0 U0RJSFI3!E :>+o)XÆ$-iUE% wm1PcW/t!MNlY"*%N0SeD{ZƧLi(h|2^w/} kꗨx6A?&N"*dz*(p[%&C#}bvcHĎ۹qOnׄ0hγ[$CbNżݙ?*@F~9EOʳdĺ)QWiH4UwK2#\uRu)\? ,Íː[~@T53(s9=u`M\`=%A;pdϲB58s@7Q371=$3ByuA"W4bZNm/S`'e&n-j>Y].kn$,r`;}H;2t(nת:->˔-0E G(GoV<:}.ءħdFh]3u4rXGZ'M5f{V;XΨf0\«K{XGIvRrE9XaE~>|-{eC.mkY^ O~~%|ȋ"4|z3eIVZA:awnłDd}#!LTܚ5 V>ӳYPQcnOt ZM:cR $Z0oqh:@u<+^UJ LVLtwwX/hHz`U %iX & ŜWc 645Q Ҧ<-} &+VyxkGܢp:bDA/³\hUtY9J^aW6Yl:K%,InPNj_x8_Q^*T{VfŃPCKD䝔n̦9=6]- eGH C"lz/CjSRAzT'2꼳|#+M۩JNAجdq\\`8 }#`Ty/=eW>\`^m"+ e1r͌]o{HpFoed||ҡaZޤ+,-Z$RZaWIa+K۩zQrx5-E9Pe1>Ͱx`#R? zP @idkQ{v 墢&U>H?P20F"r\Km3S7p.֠rbk}oXfa*^le.aǹ65v< Q)Y;- USZ3 uKpFp8ߓEn DT=˔ڏ)azDIpYQB0.@QD ~dv:q+kHdj4|~5Mwk+N'yWLO/˴P3/wa/ ѫNT 1 D=@ Dm*TA|NNYP[/qZ-Q,f*Sn) lT88E"H>Nd3zuH-ȬDF=XMNd%C"r"LM\tv tRӪ,Ȁ<;7dH6$p)=xyTP4aa_#;/ቦ$䆤طO^ē=tkѩ/j͚U߇rw* OWHwrCA/˔U*2540>+ss AjPW)"b-!~ ^pt/ ucu|w@wILY4SԞi%(f 0X_ln'WӒpS${؛A'ᶪₒ+#R~nbթ0/Iͫ][]O w9 qvaލ.tLhEޠfD%w{"yRFiZ}q? @ѭFJkW[P'n_<=ϫ]vcbkޖ?°)Kςjm<ƜgfH-e{ )5K$ZC-zfbލ"NFY Mq?հ u-fSؐ!rs"}yA#\@֐kKq&b0M笁F<(TW<;7EO0&fi#Po+A 6x]-o=z 0\7Sz*A^NwKr$CY3{A7nJg5P!+F-@ͷ$8P->Hp;5p^%uB\ދ,&Ð 1%B<[Md1 }EGskr ,cn#E@kc4BGsXBRA.pnϵŠ3:Ӝ8Æ$&3GB8G-׿}|JQu;kGRy \m㿂4Kb5N u;>F¯A$Ui ʪ>aq6i3J/g2}"x JcETMq۩!ҽ?}8,G%Pce>KuD+[ܰ*%CWl~c0VB".J-*N0Cȟۭ^V vA&462_la\o3DʥA/ڟ9i./B'/c6$mA0 gF|Ud (&~& IՁ`ia/tqdA2 C92oX} 96Zr'Wܠdduaua+ a8w'l)Sl>dk ti5v!x#3G4S!ﵰIQՉo,5( ʦM~ɸZ?+.FoaeMb ^9cPS:_>MXxd }ۃ3\?@u}g /Zdbq͖Չ'60Nm;$H|׭8)XJnkERXΠ: H_>&sgmېM@l᧶Km.g&q󣉜jl }v>Ō2h߉ĘA7|;KD;Ŷ) }NF}MOF4x)}#=J̃mfpLJ]]2" ZPa5_T Ld#-ט@Q>2{ۣiٸH鮄N&4Ɋ?VTW,19ÃqG^NP^־ϛDTR:YCqI퉥:D˷(ӄ^?ƺgt9Rf6z]K#fuaoΦWf?QIpSmY7Oع _}圗I#M}HiYh_0 ja#b4LlX XQ,RMՉy;׳Q]Q{c &DAU_64ZãO^\K<+^&] MRbsià\syOA8/jRqL GlP,M:}P^.qFBܗW%HZhH*^ +d\`%~A߹m IѲ8BwfBH.G#ߌIWf^2*^7| #u&,\{,o>v62!Wvtt[%t[ h,m;x%_pTEN+ƥQkyr+S<\X>E|EgeY>79Oϙ&Qq˕J-&תYq[ ݰfL#jl!uV^םs4##_ْjyFAԖ mxO&AZXI?$x5s LZ|0s>2w e)Ūó܄?|b.%Hu`oC=`$jڭ@*]n:TpV;$MqR"J@0>[MExc5E5|F+af~Rq 4VqrDwqLr*r93Hq`pȨϑS0[w |4|7r&Sp|Gm쓂`G8/K,EO7 ^Q<}3K"mBy{ z1WPy&"y-k;z/Pl׵25L =RQŚkIr=H?I$JPՉ-y"- Q1Pb'YO)%ڍ=K}JY ̲,A wy~a9O\uɖ8- YmV3Rl{a&ڪrw=}oSpyhNOv[~ltr90bi%>q.I]7g =GV%oqNW]o(6"|MO:K) L `.SiZ/N7<w.`AG+^tɿ P@h]pP`RӮ9i!yÀ3/?x{ncf @-f99RU/Ga\g 9o:ɰH0wgZ0gE=h iaAycZƸeS.U1ھ1\n Eרg2o̧uуddg>ƥm<<,"9uxCpGK v1*&N//3ݧt@PSM[[W&#g2<'ZårCGED.kn}"Qh]ᥦyVqG)@(Vu}oO j}W$NpzVV-bׂ4-UU/@/R5࢕Hx>`W<fZǞS>%& &yM^~up04\Ƴ6eo~545xJh`ai|3%618n9fM tjJl^e*."϶|nұ;U`9:Cr<S5|QGi= }쏤3N8u:QFh:y$g؆ҡگת&G v 7}GSd!y=tQbL).=5BS>jo'V_+{*. +Ҙk}PJ=Z>!VM*Ms5v UґF4һp*%v5Y6d:4߁D_AwH0k wuAGFH5&*vrÊ]ZUpyi$e ~_ =m8&j5G4TV3?})zv~=8] YHo;RXUwpJ(W -f!WTCq榍(Ɂ{ʲYÆe4J{579J1;'@ rV;{>Y`Ih}j@# ᫽*w=T`ז)`*]$buw . wrܨo#  QSUv$Rnĭ&󡘒fn{ïU0N.sstsh [+FizY7홱,h8Ia:ǕG{uagz&Aa_|IEJ՞`u]^Ajd5gŏ/o}룤"W^/dM1`qGs 7 v +HI;ow(3*:P?DCmq]m 0͡5D{y2+Px NZ9D* [e,k-V'Vf yov5c~AN]VjYRtD}io!Hߚ,9! "|CD{J]IۃAߓ 2RԺ)K ͍1wÐ H%*spS8̑)ivYt -)y YIܛL:|$#!R߀Q]iys4GSP^S^@ +fs ĞLd_ vJtI08*nO*Ck |2Iʒ[ w\LvZ+p۬|qS|U>Jw a6E+AD'&cyu`Uq&i6hJҘ&Jz̖-{Ck؋;bkH[úɞzM~L {0 s8F[[~-:[[ a wPkc[0Ow?&dja\6yvvo>Q4zy%>=6i9"#@??B(TӸ.AIRDJg2VmB3R0}>gRn}]f#6O5BH  ꤸhYHMfu&Q"T,Wvk? vS; 3}& /u[T6%7zr^#43Ä=*Rl3(R_l" :`wÊ1T,凎YWi]Nwtro~ͽA،#k Ga.֏xc}sI!}^lr&CĸQotGBLsZnZ^͗4OIť?H&څ4DmcJ$[99LA'Ơ=8HTȆ[>B׉\ի(%:RVÌzuXla~bZ\BWqNgQ6K5v1cR>[˖udb1ܰ\ѣe7B?Z5rn!~]i:Sz0PTc↧H(}[\;hSsGݧGhkezhB8mGY+bՏ gR4 Qyd$rhQS pac)KGUdV<= T^n+=կSHc\rZW%ČlJl:GU:̀6~>\`OLUTٗRL~|9ހt.zЯo1[3s$JX䫳\b߄Fi}Y;eR~I1գ7xD˿N #bhIwQ~e ߀K8e U@_(Qn7 kCGT/7P