nscd-2.31-150300.9.12.1 >  A acp9|+SioHp=6Xz"Ӿ5׌2(Y;wVZ$ځ\ ƨ`Rc$g !a=nwi5xZ-+򗜵V8PR+I=DUg\m<[v-C˘6\jФ P?JUnX1ic65[vJt^kL\K:]gʻ'bڙM^D|Gxqj32861f5b65e707003bc8db04867c838609ff7d44eb1dd89a9b5fc2f9c80c8437eb9c092d01e15cc785dbbe1133570aeaae91750bdacp9|fkQˉ b`&i̼8.Du"O 9D9h)_,%QoykDfKeKN,k`{ὍqL]ٚA8 WӮˇ˄k*URey{ RygεsVRUc=xlb2 PQ_꓇Y#!>pIڬ?ڜd   6  KQY& H E    H W tFh<(88@9X:W=с>щ?ё@љBѡFѧGѼHI4XDYTZҐ[Ҕ\Ҝ]^O bckdefluvD w٠xy z<LPVژCnscd2.31150300.9.12.1Name Service Caching DaemonNscd caches name service lookups and can dramatically improve performance with NIS, NIS+, and LDAP.a`ibs-arm-6SUSE Linux Enterprise 15SUSE LLC GPL-2.0-or-laterhttps://www.suse.com/System/Daemonshttp://www.gnu.org/software/libc/libc.htmllinuxaarch64getent group nscd >/dev/null || /usr/sbin/groupadd -r nscd getent passwd nscd >/dev/null || /usr/sbin/useradd -r -g nscd -c "User for nscd" -s /sbin/nologin -d /run/nscd nscd if [ -x /usr/bin/systemctl ]; then test -n "$FIRST_ARG" || FIRST_ARG="$1" [ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || : for service in nscd.service ; do sysv_service=${service%.*} if [ ! -e /usr/lib/systemd/system/$service ] && [ ! -e /etc/init.d/$sysv_service ]; then mkdir -p /run/systemd/rpm/needs-preset touch /run/systemd/rpm/needs-preset/$service elif [ -e /etc/init.d/$sysv_service ] && [ ! -e /var/lib/systemd/migrated/$sysv_service ]; then /usr/sbin/systemd-sysv-convert --save $sysv_service || : mkdir -p /run/systemd/rpm/needs-sysv-convert touch /run/systemd/rpm/needs-sysv-convert/$service fi done fi if [ -x /usr/bin/systemctl ]; then test -n "$FIRST_ARG" || FIRST_ARG="$1" [ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || : if [ "$YAST_IS_RUNNING" != "instsys" ]; then /usr/bin/systemctl daemon-reload || : fi for service in nscd.service ; do sysv_service=${service%.*} if [ -e /run/systemd/rpm/needs-preset/$service ]; then /usr/bin/systemctl preset $service || : rm "/run/systemd/rpm/needs-preset/$service" || : elif [ -e /run/systemd/rpm/needs-sysv-convert/$service ]; then /usr/sbin/systemd-sysv-convert --apply $sysv_service || : rm "/run/systemd/rpm/needs-sysv-convert/$service" || : touch /var/lib/systemd/migrated/$sysv_service || : fi done fi [ -z "${TRANSACTIONAL_UPDATE}" -a -x /usr/bin/systemd-tmpfiles ] && /usr/bin/systemd-tmpfiles --create /usr/lib/tmpfiles.d/nscd.conf || : # Previously we had nscd.socket, remove it test -x /usr/bin/systemctl && /usr/bin/systemctl stop nscd.socket 2>/dev/null || : test -x /usr/bin/systemctl && /usr/bin/systemctl disable nscd.socket 2>/dev/null || : # Hard removal in case the above did not work rm -f /etc/systemd/system/sockets.target.wants/nscd.socket exit 0 test -n "$FIRST_ARG" || FIRST_ARG="$1" if [ "$FIRST_ARG" -eq 0 -a -x /usr/bin/systemctl ]; then # Package removal, not upgrade /usr/bin/systemctl --no-reload disable nscd.service || : ( test "$YAST_IS_RUNNING" = instsys && exit 0 test -f /etc/sysconfig/services -a \ -z "$DISABLE_STOP_ON_REMOVAL" && . /etc/sysconfig/services test "$DISABLE_STOP_ON_REMOVAL" = yes -o \ "$DISABLE_STOP_ON_REMOVAL" = 1 && exit 0 /usr/bin/systemctl stop nscd.service ) || : fi test -n "$FIRST_ARG" || FIRST_ARG="$1" if [ $1 -eq 0 ]; then # Package removal for service in nscd.service ; do sysv_service="${service%.*}" rm "/var/lib/systemd/migrated/$sysv_service" || : done fi if [ -x /usr/bin/systemctl ]; then /usr/bin/systemctl daemon-reload || : fi if [ "$FIRST_ARG" -ge 1 ]; then # Package upgrade, not uninstall if [ -x /usr/bin/systemctl ]; then ( test "$YAST_IS_RUNNING" = instsys && exit 0 test -f /etc/sysconfig/services -a \ -z "$DISABLE_RESTART_ON_UPDATE" && . /etc/sysconfig/services test "$DISABLE_RESTART_ON_UPDATE" = yes -o \ "$DISABLE_RESTART_ON_UPDATE" = 1 && exit 0 /usr/bin/systemctl try-restart nscd.service ) || : fi fi exit 0  A큤A큤A큀a`7a`7a`a`a`7a`7a`7a`Aa`7a`7a`a`a`a`a`e2cdfafd373d24fab07018d0e95dd49510ea6c992b7be2b0611ab23bbc2750b579fe74962fbce2fa9b2a4b92f693b2fd42cbc2ed331fae268de7104879a72df879c9cec5dd2414dcb76d11e75903aa6fd9b7785c897cb9f853edcb140a71b779caee4610a80d33e4ee68627eb4b1c0c96d6c28528abc013a67e49a7b22bd66f8/sbin/service@YYYYYYYrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootglibc-2.31-150300.9.12.1.src.rpmconfig(nscd)glibc:/usr/sbin/nscdnscdnscd(aarch-64) @@@@@@@@@    /bin/sh/bin/sh/bin/sh/bin/shconfig(nscd)glibcld-linux-aarch64.so.1()(64bit)ld-linux-aarch64.so.1(GLIBC_2.17)(64bit)libaudit.so.1()(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.17)(64bit)libcap.so.2()(64bit)libpthread.so.0()(64bit)libpthread.so.0(GLIBC_2.17)(64bit)libselinux.so.1()(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)shadowsystemdsystemdsystemdsystemd2.31-150300.9.12.12.313.0.4-14.6.0-14.0-15.2-14.14.3aa@aZ@a@a@a0`ݮ@`a@`H`H`?z@`@_T__/@_O@^)@^@^{G^g@^`^U @^&^]@]7@]|@]@]:\@\\]@\@\|\~d[[ͻ[$@[t[r@[qr[^[!@[@Z@ZJ@Z2@ZH@ZZ Z}@ZxG@Zp^@Zp^@Ze@ZKt@Z1@Z/Z@Y@Y@YYܶ@YdY@Y@YY@Y@Y@YW@Y@YJYYw2Yp@YJ_YA%@Y.@Y, @Y, @Y$$@Y"XۡX@XWw@W@W@Ws@Wk@Wj}WYZ@WL+@W3W0{WW V@V@V޾Vm@VIV@VŲ@V`VVV@VLh@V.V$@VVZV VUYU|@UAUȒ@UU@UU4@UUv@U%@U/@U:T@TPTgTܕTء@TO@schwab@suse.deschwab@suse.deschwab@suse.degiuliano.belinassi@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.derguenther@suse.comrguenther@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.dematz@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.dematz@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.dematz@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.dejslaby@suse.comschwab@suse.deschwab@suse.deschwab@suse.deidonmez@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.denormand@linux.vnet.ibm.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.demeissner@suse.comschwab@suse.deschwab@suse.demgorman@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.de- getcwd-erange.patch: getcwd: Set errno to ERANGE for size == 1 (CVE-2021-3999, bsc#1194640, BZ #28769)- 0001-powerpc-Optimized-strcpy-for-POWER9.patch, 0002-powerpc-Optimized-stpcpy-for-POWER9.patch, 0003-powerpc-Optimized-rawmemchr-for-POWER9.patch, 0004-powerpc64le-add-optimized-strlen-for-P9.patch, 0005-powerpc-fix-ifunc-implementation-list-for-POWER9-str.patch, 0006-powerpc-Add-optimized-strncpy-for-POWER9.patch, 0007-powerpc-Add-optimized-stpncpy-for-POWER9.patch, 0008-powerpc-Add-optimized-ilogb-for-POWER9.patch, 0009-powerpc-Add-optimized-llogb-for-POWER9.patch, 0010-powerpc-Add-optimized-strlen-for-POWER10.patch, 0011-powerpc64le-Optimized-memmove-for-POWER10.patch, 0012-powerpc64le-Optimize-memcpy-for-POWER10.patch, 0013-powerpc64le-Optimize-memset-for-POWER10.patch, 0014-powerpc64le-Fix-ifunc-selection-for-memset-memmove-b.patch, 0015-powerpc-Add-optimized-rawmemchr-for-POWER10.patch: ppc64le ifunc improvements (bsc#1194785, jsc#SLE-18195)- clnt-create-unix-overflow.patch: Buffer overflow in sunrpc clnt_create for "unix" (CVE-2022-23219, bsc#1194768, BZ #22542) - svcunix-create-overflow.patch: Buffer overflow in sunrpc svcunix_create (CVE-2022-23218, bsc#1194770, BZ #28768)- Add support for livepatches (jsc#SLE-20049). - Enable livepatching on x86_64. - Generate ipa-clones tarball artifact when livepatching is enabled.- 0001-s390x-Align-child-stack-while-clone.-BZ-27968.patch, 0002-S390-Optimize-__memcpy_z196.patch, 0003-S390-Optimize-__memset_z196.patch, 0004-S390-Sync-HWCAP-names-with-kernel-by-adding-aliases-.patch, 0005-S390-Add-new-hwcap-values.patch, 0006-S390-Add-PCI_MIO-and-SIE-HWCAPs.patch: [15sp4 FEAT] GNU2007 - GLIBC: Support for new IBM Z Hardware (bsc#1191592, jsc#IBM-869)- mq-notify-use-after-free.patch: Use __pthread_attr_copy in mq_notify (CVE-2021-33574, bsc#1186489, BZ #27896)- wordexp-param-overflow.patch: wordexp: handle overflow in positional parameter number (CVE-2021-35942, bsc#1187911, BZ #28011)- s390-memmove-ifunc-selector-arch13.patch: S390: Also check vector support in memmove ifunc-selector (bsc#1184035, BZ #27511)- Update glibc-2.31-HTM-vzeroupper.diff with a AVX-SSE transition fix.- Add glibc-2.31-HTM-vzeroupper.diff to avoid VZEROUPPER in the AVX2 accelerated string routines which cause HTM transaction aborts. Instead use EVEX or SSE. (bsc#1181403)- nscd-netgroupcache.patch: nscd: Fix double free in netgroupcache (CVE-2021-27645, bsc#1182733, BZ #27462)- gconv-assertion-iso-2022-jp.patch: gconv: Fix assertion failure in ISO-2022-JP-3 module (CVE-2021-3326, bsc#1181505, BZ #27256)- sysvipc-sem-stat-any.patch: sysvipc: Fix SEM_STAT_ANY kernel argument pass (bsc#1180557, BZ #26637)- aarch64-getauxval.patch: aarch64: Accept PLT calls to __getauxval within libc.so (bsc#1167939) - iconv-redundant-shift.patch: iconv: Accept redundant shift sequences in IBM1364 (CVE-2020-27618, bsc#1178386, BZ #26224) - iconv-ucs4-loop-bounds.patch: iconv: Fix incorrect UCS4 inner loop bounds (CVE-2020-29562, bsc#1179694, BZ #26923) - printf-long-double-non-normal.patch: x86: Harden printf against non-normal long double values (CVE-2020-29573, bsc#1179721, BZ #26649) - get-nprocs-cpu-online-parsing.patch: Fix parsing of /sys/devices/system/cpu/online (bsc#1180038, BZ #25859)- power10-support.patch: Add support for POWER10 (jsc#SLE-13520) - iconv-option-parsing.patch: Rewrite iconv option parsing (CVE-2016-10228, bsc#1027496, BZ #19519)- Update to glibc 2.31 - glibc-2.14-crypt.diff, crypt_blowfish-const.patch, crypt_blowfish-1.2-sha.diff, crypt_blowfish-gensalt.patch, crypt_blowfish-1.2-hack_around_arm.diff, glibc-nodate.patch, powerpc-elision-enable-envvar.patch, s390-elision-enable-envvar.patch, crt-nocompress-debug-sections.patch, resolv-context-leak.patch, dl-runtime-resolve-opt-avx512f.patch, libpthread-compat-wrappers.patch, math-c++-compat.patch, remove-nss-nis-compat.patch, eh-frame-zero-terminator.patch, ld-so-hwcap-x86-64.patch, assert-pedantic.patch, getaddrinfo-errno.patch, resolv-conf-oom.patch, dynarray-allocation.patch, nearbyint-inexact.patch, nss-compat.patch, nscd-libnsl.patch, malloc-tcache-leak.patch, falkor-memcpy-memmove.patch, aarch64-cpu-features.patch, nss-files-large-buffers.patch, sysconf-uio-maxiov.patch, glob-tilde-overflow.patch, dl-runtime-resolve-xsave.patch, spawni-assert.patch, x86-64-dl-platform.patch, glob64-s390.patch, tst-tlsopt-powerpc.patch, powerpc-hwcap-bits.patch, malloc-tcache-check-overflow.patch, dl-init-paths-overflow.patch, fillin-rpath-empty-tokens.patch, getcwd-absolute.patch, memalign-overflow.patch, stack-guard-size-accounting.patch, libgcc-rtld-now.patch, res-send-enomem.patch, glibc-fix-avx512-mempcpy.patch, i386-memmove-sse2-unaligned.patch, realpath-ssize-max-overflow.patch, localtime-2039.patch, math-remove-slow-path.patch, aarch64-hwcap-atomics.patch, glibc-fix-aarch64-build.diff, absolute-symbols.patch, x86-haswell-string-flags.patch, pthread-cond-broadcast-waiters-after-spinning.patch, mman-map-sync.patch, mman-linux-map-shared-validate.patch, nptl-setxid-error.patch, pthread-mutex-trylock-barrier.patch, getaddrinfo-parse-ipv4-address.patch, japanese-era-name-may-2019.patch, force-elision-race.patch, regex-read-overrun.patch, regex-parse-reg-exp.patch, 0001-S390-Add-configure-check-to-detect-z10-as-mininum-ar.patch, 0002-S390-Use-hwcap-instead-of-dl_hwcap-in-ifunc-resolver.patch, 0003-S390-Unify-31-64bit-memcpy.patch, 0004-S390-Refactor-memcpy-mempcpy-ifunc-handling.patch, 0005-S390-Remove-s390-specific-implementation-of-bcopy.patch, 0006-S390-Use-memcpy-for-forward-cases-in-memmove.patch, 0007-S390-Add-configure-check-to-detect-z13-as-mininum-ar.patch, 0008-S390-Add-z13-memmove-ifunc-variant.patch, 0009-S390-Add-z13-strstr-ifunc-variant.patch, 0010-S390-Add-z13-memmem-ifunc-variant.patch, 0011-S390-Cleanup-ifunc-resolve.h.patch, 0012-S390-Mark-vx-and-vxe-as-important-hwcap.patch, 0013-S390-Add-new-hwcap-values-for-new-cpu-architecture-a.patch, 0014-S390-Add-configure-check-to-detect-support-for-arch1.patch, 0015-S390-Add-arch13-memmove-ifunc-variant.patch, 0016-S390-Add-arch13-strstr-ifunc-variant.patch, 0017-S390-Add-arch13-memmem-ifunc-variant.patch, prefer-map-32bit-exec.patch, s390-strstr-page-boundary.patch, ppc-tle-htm-nosc.patch, posix-Add-internal-symbols-for-posix_spawn-interface.patch, glibc-2.29-posix-Use-posix_spawn-on-popen.patch, backtrace-powerpc.patch, pthread-rwlock-pwn.patch, manual-memory-protection.patch, ldbl-96-rem-pio2l.patch, dl-sort-maps.patch, dlopen-filter-object.patch, glob-use-after-free.patch, nptl-setxid-race.patch, nscd-senfile.patch, ldd-system-interp.patch, abort-no-flush.patch, fnmatch-collating-elements.patch, nss-files-long-lines-2.patch, iconv-reset-input-buffer.patch, nscd-prune.patch, syslog-locking.patch: Removed. - long-double-alias.patch, glibc-nsswitch-usr.diff, euc-kr-overrun.patch, riscv-syscall-clobber.patch, nscd-gc-cycle.patch: Added.- nscd-senfile.patch: Fix concurrent changes on nscd aware files (bsc#1171878, BZ #23178) - nscd-prune.patch: nscd: bump GC cycle during cache pruning (bsc#1171878, BZ #26130) - syslog-locking.patch: Correct locking and cancellation cleanup in syslog functions (bsc#1172085, BZ #26100)- nptl-setxid-race.patch: nptl: wait for pending setxid request also in detached thread (bsc#1162930, BZ #25942)- glob-use-after-free.patch: Fix use-after-free in glob when expanding ~user (CVE-2020-1752, bsc#1167631, BZ #25414)- dl-sort-maps.patch, dlopen-filter-object.patch: Allow dlopen of filter object to work (bsc#1166106, BZ #16272)- ldbl-96-rem-pio2l.patch: Avoid ldbl-96 stack corruption from range reduction of pseudo-zero (CVE-2020-10029, bsc#1165784, BZ #25487)- pthread-rwlock-pwn.patch: Fix rwlock stall with PREFER_WRITER_NONRECURSIVE_NP (bsc#1164505, BZ #23861) - manual-memory-protection.patch: manual: Document mprotect and introduce section on memory protection (bsc#1163184)- backtrace-powerpc.patch: Fix array overflow in backtrace on PowerPC (CVE-2020-1751, bsc#1158996, BZ #25423)- posix-Add-internal-symbols-for-posix_spawn-interface.patch, glibc-2.29-posix-Use-posix_spawn-on-popen.patch: Use posix_spawn on popen (bsc#1149332, BZ #22834)- ppc-tle-htm-nosc.patch: powerpc: Fix syscalls during early process initialization (SLE-8348, BZ #22685)- s390-strstr-page-boundary.patch: S390: Fix handling of needles crossing a page in strstr z15 ifunc-variant (bsc#1157893, BZ #25226)- prefer-map-32bit-exec.patch: rtld: Check __libc_enable_secure before honoring LD_PREFER_MAP_32BIT_EXEC (CVE-2019-19126, bsc#1157292, BZ [#25204])- GNU1815 - Hardware support in toolchain (bsc#1151582) 0001-S390-Add-configure-check-to-detect-z10-as-mininum-ar.patch 0002-S390-Use-hwcap-instead-of-dl_hwcap-in-ifunc-resolver.patch 0003-S390-Unify-31-64bit-memcpy.patch 0004-S390-Refactor-memcpy-mempcpy-ifunc-handling.patch 0005-S390-Remove-s390-specific-implementation-of-bcopy.patch 0006-S390-Use-memcpy-for-forward-cases-in-memmove.patch 0007-S390-Add-configure-check-to-detect-z13-as-mininum-ar.patch 0008-S390-Add-z13-memmove-ifunc-variant.patch 0009-S390-Add-z13-strstr-ifunc-variant.patch 0010-S390-Add-z13-memmem-ifunc-variant.patch 0011-S390-Cleanup-ifunc-resolve.h.patch 0012-S390-Mark-vx-and-vxe-as-important-hwcap.patch 0013-S390-Add-new-hwcap-values-for-new-cpu-architecture-a.patch 0014-S390-Add-configure-check-to-detect-support-for-arch1.patch 0015-S390-Add-arch13-memmove-ifunc-variant.patch 0016-S390-Add-arch13-strstr-ifunc-variant.patch 0017-S390-Add-arch13-memmem-ifunc-variant.patch- regex-parse-reg-exp.patch: ERE '0|()0|\1|0' causes regexec undefined behavior (CVE-2009-5155, bsc#1127223, BZ #18986) - regex-read-overrun.patch: regex: fix read overrun (CVE-2019-9169, bsc#1127308, BZ #24114)- crt-nocompress-debug-sections.patch: Don't compress debug sections in crt*.o files (bsc#1123710)- ldconfig-concurrency.patch: Avoid concurrency problem in ldconfig (bsc#1117993, BZ #23973)- force-elision-race.patch: Fix race in pthread_mutex_lock while promoting to PTHREAD_MUTEX_ELISION_NP (bsc#1131330, BZ #23275)- japanese-era-name-may-2019.patch: ja_JP locale: Add entry for the new Japanese era (bsc#1100396, BZ #22964)- pthread-mutex-trylock-barrier.patch: pthread_mutex_trylock does not use the correct order of instructions while maintaining the robust mutex list due to missing compiler barriers (bsc#1130045, BZ #24180) - getaddrinfo-parse-ipv4-address.patch: getaddrinfo: Fully parse IPv4 address strings (CVE-2016-10739, bsc#1122729, BZ #20018)- mman-map-sync.patch: Add MAP_SYNC from Linux 4.15 (bsc#1126590) - mman-linux-map-shared-validate.patch: Add MAP_SHARED_VALIDATE from Linux 4.15 (bsc#1126590) - nptl-setxid-error.patch: nptl: Preserve error in setxid thread broadcast in coredumps (bsc#1063675, BZ #22153)- x86-haswell-string-flags.patch: Fix Haswell CPU string flags (bsc#1114984, BZ #23709) - pthread-cond-broadcast-waiters-after-spinning.patch: Fix waiters-after-spinning case (bsc#1114993, BZ #23538)- absolute-symbols.patch: Don't relocate absolute symbols (bsc#1112570, BZ [#19818])- glibc-fix-aarch64-build.diff: Fix build on aarch64 with binutils newer than 2.30.- Add glibc-locale-base subpackage containing only C, C.UTF-8 and en_US.UTF-8 locales (fate#326551)- aarch64-hwcap-atomics.patch: aarch64: add HWCAP_ATOMICS to HWCAP_IMPORTANT (fate#325962)- math-remove-slow-path.patch: Remove slow paths from math routines (fate#325815, fate#325879, fate#325880, fate#325881, fate#325882)- localtime-2039.patch: Fix year 2039 bug for localtime with 64-bit time_t (bsc#1102526, BZ #22639)- i386-memmove-sse2-unaligned.patch: Fix SSE2 memmove issue when crossing 2GB boundary (CVE-2017-18269, bnc#1094150, BZ #22644) - realpath-ssize-max-overflow.patch: Fix overflow in path length computation (CVE-2018-11236, bsc#1094161, BZ #22786) - glibc-fix-avx512-mempcpy.patch: replace with upstream version- Use %license also for COPYING and COPYING.LIB (bsc#1082318)- Add glibc-fix-avx512-mempcpy.patch as quick fix for mempcpy buffer overwrite in memmove-avx512-no-vzeroupper.S for Knights Landing CPUs (CVE-2018-11237, bnc#1094154, bnc#1092877, BZ #23196)- Readd nis to netgroup and automount nss config (bsc#1088860)- res-send-enomem.patch: Fix crash in resolver on memory allocation failure (bsc#1086690, BZ #23005)- Use %license (bsc#1082318)- stack-guard-size-accounting.patch: Fix stack guard size accounting (bsc#1074208, BZ #22637) - libgcc-rtld-now.patch: Open libgcc.so with RTLD_NOW during pthread_cancel (bsc#1074208, BZ #22636)- Mark source0 as nosource in non-main source rpms- Add systemtap-headers to BuildRequires. - Add --enable-systemtap to configure arguments. (fate#324969, bsc#1073636)- memalign-overflow.patch: Fix integer overflows in internal memalign and malloc functions (CVE-2018-6485, CVE-2018-6551, bsc#1079036, BZ #22343, BZ #22774)- fix-locking-in-_IO_cleanup.patch: Skip locked files during exit (bsc#1070491, BZ #15142)- Avoid duplicate source rpm- getcwd-absolute.patch: make getcwd(3) fail if it cannot obtain an absolute path (CVE-2018-1000001, bsc#1074293, BZ #22679)- dl-init-paths-overflow.patch: Count components of the expanded path in _dl_init_path (CVE-2017-1000408, CVE-2017-1000409, bsc#1071319, BZ [#22607], BZ #22627) - fillin-rpath-empty-tokens.patch: Check for empty tokens before dynamic string token expansion (CVE-2017-16997, bsc#1073231, BZ #22625)- tst-tlsopt-powerpc.patch: fix tst-tlsopt-powerpc (bcn#1070419) - powerpc-hwcap-bits.patch: Update HWCAP for powerpc (bnc#1070420) - malloc-tcache-check-overflow.patch: Fix integer overflow in malloc when tcache is enabled (CVE-2017-17426, bnc#1071479, BZ #22375)- Add _multibuild- glob64-s390.patch: no compat glob64 on s390 - noversion.tar.bz2: remove unused source- x86-64-dl-platform.patch: Don't set GLRO(dl_platform) to NULL (BZ #22299)- spawni-assert.patch: Fix improper assert in Linux posix_spawn (BZ [#22273])- math-c++-compat.patch: Add more C++ compatibility (BZ #22296) - malloc-tcache-leak.patch: Fix tcache leak after thread destruction (BZ [#22111]) - falkor-memcpy-memmove.patch: Optimized implementation of memcpy/memmove for Qualcomm Falkor - aarch64-cpu-features.patch: Fix glibc.tune.cpu tunable handling - nss-files-large-buffers.patch: Avoid large buffers with many host addresses (BZ #22078) - sysconf-uio-maxiov.patch: Fix missing definition of UIO_MAXIOV (BZ [#22321]) - glob-tilde-overflow.patch: Fix buffer overflows with GLOB_TILDE (CVE-2017-15670, CVE-2017-15671, CVE-2017-15804, bsc#1064569. bsc#1064580, bsc#1064583, BZ #22320, BZ #22325, BZ #22332) - dl-runtime-resolve-xsave.patch: Use fxsave/xsave/xsavec in _dl_runtime_resolve (BZ #21265)- nscd-libnsl.patch: Remove reference to libnsl from nscd (bsc#1062244)- Drop glibc-obsolete - glibc-2.3.90-noversion.diff: remove - reinitialize-dl_load_write_lock.patch: remove- nss-compat.patch: Move nss_compat from nis to nss subdir and install it unconditionally - nsswitch.conf: switch back to compat for passwd, group, shadow- assert-pedantic.patch: Suppress pedantic warning caused by statement expression (BZ #21242, BZ #21972) - math-c++-compat.patch: Add more C++ compatibility (BZ #22235) - getaddrinfo-errno.patch: Fix errno and h_errno handling in getaddrinfo (BZ #21915, BZ #21922) - resolv-conf-oom.patch: Fix memory handling in OOM situation during resolv.conf parsing (BZ #22095, BZ #22096) - dynarray-allocation.patch: Fix initial size of dynarray allocation and set errno on overflow error - nearbyint-inexact.patch: Avoid spurious inexact in nearbyint (BZ #22225)- math-c++-compat.patch: add more C++ compatibility (BZ #22146)- Remove rpcsvc/yppasswd.* from glibc-devel - ld-so-hwcap-x86-64.patch: add x86_64 to hwcap (bsc#1056606, BZ #22093)- eh-frame-zero-terminator.patch: Properly terminate .eh_frame (BZ #22051)- Disable obsolete libnsl and NIS support - remove-nss-nis-compat.patch: remove nis and compat from default NSS configs - nsswitch.conf: Likewise- math-c++-compat.patch: Do not use __builtin_types_compatible_p in C++ mode (BZ #21930)- Add iconvconfig to baselibs.conf (bsc#1051042)- resolv-context-leak.patch: Fix leaks of resolver contexts - dl-runtime-resolve-opt-avx512f.patch: Use _dl_runtime_resolve_opt only with AVX512F (BZ #21871) - libpthread-compat-wrappers.patch: Don't use IFUNC resolver for longjmp or system in libpthread (BZ #21041)- Update to glibc 2.26 * A per-thread cache has been added to malloc * Unicode 10.0.0 Support * Improvements to the DNS stub resolver * New function reallocarray, which resizes an allocated block (like realloc) to the product of two sizes, with a guaranteed clean failure upon integer overflow in the multiplication * New wrappers for the Linux-specific system calls preadv2 and pwritev2 * posix_spawnattr_setflags now supports the flag POSIX_SPAWN_SETSID, to create a new session ID for the spawned process * errno.h is now safe to use from C-preprocessed assembly language on all supported operating systems * On ia64, powerpc64le, x86-32, and x86-64, the math library now implements 128-bit floating point as defined by ISO/IEC/IEEE 60559:2011 (IEEE 754-2008) and ISO/IEC TS 18661-3:2015 * The synchronization that pthread_spin_unlock performs has been changed to now be equivalent to a C11 atomic store with release memory order to the spin lock's memory location * The DNS stub resolver no longer performs EDNS fallback * res_mkquery and res_nmkquery no longer support the IQUERY opcode * The _res_opcodes variable has been removed from libresolv * no longer includes inline versions of any string functions, as this kind of optimization is better done by the compiler * The nonstandard header has been removed * The obsolete header has been removed * The obsolete signal constant SIGUNUSED is no longer defined by * The obsolete function cfree has been removed * The stack_t type no longer has the name struct sigaltstack * The ucontext_t type no longer has the name struct ucontext * On S/390 GNU/Linux, the constants defined by have been synced with the kernel * Linux kernel 3.2 or later is required at runtime, on all architectures supported by that kernel * The DNS stub resolver limits the advertised UDP buffer size to 1200 bytes, to avoid fragmentation-based spoofing attacks (CVE-2017-12132) * LD_LIBRARY_PATH is now ignored in binaries running in privileged AT_SECURE mode to guard against local privilege escalation attacks (CVE-2017-1000366) * Avoid printing a backtrace from the __stack_chk_fail function since it is called on a corrupt stack and a backtrace is unreliable on a corrupt stack (CVE-2010-3192) * A use-after-free vulnerability in clntudp_call in the Sun RPC system has been fixed (CVE-2017-12133) * fate#322258, fate#321513, fate#322453 - fts-symbol-redirect.patch, glibc-resolv-reload.diff, glibc-2.2-sunrpc.diff, i686-memchr-sse.patch, ld-hwcap-mask-suid.patch, ld-library-path-suid.patch, sunrpc-use-after-free.patch, test-math-vector-sincos-aliasing.patch, tunables-bigendian.patch: Removed- Fix RPM group- s390-elision-enable-envvar.patch: enable TLE only if GLIBC_ELISION_ENABLE=yes is defined (fate#322271)- ld-hwcap-mask-suid.patch: Ignore and remove LD_HWCAP_MASK for AT_SECURE programs (BZ #21209) - ld-library-path-suid.patch: Completely ignore LD_LIBRARY_PATH for AT_SECURE=1 programs (CVE-2017-1000366, bsc#1039357, BZ #21624)- Remove glibc-cpusetsize.diff, no longer useful- fts-symbol-redirect.patch: Fix symbol redirect for fts_set (bsc#1041123, BZ #21289)- test-math-vector-sincos-aliasing.patch: Fix test-math-vector-sincos.h aliasing- add-locales.patch: renamed from glibc-2.3.locales.diff.bz2, drop en_BE locales (bsc#1039502)- Remove glibc-testsuite.patch, no longer relevant- Use multibuild feature - Remove obsolete check-build.sh - glibc.rpmlintrc: remove obsolete entries - Use %tmpfiles_create in nscd postin- i686-memchr-sse.patch: Fix i686 memchr overflow calculation (bsc#1031021, BZ #21182) - sunrpc-use-after-free.patch: Avoid use-after-free read access in clntudp_call (BZ #21115) - Build testsuite with gdb and python-pexpect to enable more tests- tunables-bigendian.patch: Fix getting tunable values on big-endian (BZ [#21109])- Update to glibc 2.25 * The feature test macro __STDC_WANT_LIB_EXT2__, from ISO/IEC TR 24731-2:2010, is supported to enable declarations of functions from that TR. * The feature test macro __STDC_WANT_IEC_60559_BFP_EXT__, from ISO/IEC TS 18661-1:2014, is supported to enable declarations of functions and macros from that TS. * The feature test macro __STDC_WANT_IEC_60559_FUNCS_EXT__, from ISO/IEC TS 18661-4:2015, is supported to enable declarations of functions and macros from that TS. * The nonstandard feature selection macros _REENTRANT and _THREAD_SAFE are now treated as compatibility synonyms for _POSIX_C_SOURCE=199506L. * The inclusion of by is deprecated. * New features from TS 18661-1:2014 are added to libm: the fesetexcept, fetestexceptflag, fegetmode and fesetmode functions, the femode_t type and the FE_DFL_MODE and FE_SNANS_ALWAYS_SIGNAL macros. * Integer width macros from TS 18661-1:2014 are added to : CHAR_WIDTH, SCHAR_WIDTH, UCHAR_WIDTH, SHRT_WIDTH, USHRT_WIDTH, INT_WIDTH, UINT_WIDTH, LONG_WIDTH, ULONG_WIDTH, LLONG_WIDTH, ULLONG_WIDTH; and to : INT8_WIDTH, UINT8_WIDTH, INT16_WIDTH, UINT16_WIDTH, INT32_WIDTH, UINT32_WIDTH, INT64_WIDTH, UINT64_WIDTH, INT_LEAST8_WIDTH, UINT_LEAST8_WIDTH, INT_LEAST16_WIDTH, UINT_LEAST16_WIDTH, INT_LEAST32_WIDTH, UINT_LEAST32_WIDTH, INT_LEAST64_WIDTH, UINT_LEAST64_WIDTH, INT_FAST8_WIDTH, UINT_FAST8_WIDTH, INT_FAST16_WIDTH, UINT_FAST16_WIDTH, INT_FAST32_WIDTH, UINT_FAST32_WIDTH, INT_FAST64_WIDTH, UINT_FAST64_WIDTH, INTPTR_WIDTH, UINTPTR_WIDTH, INTMAX_WIDTH, UINTMAX_WIDTH, PTRDIFF_WIDTH, SIG_ATOMIC_WIDTH, SIZE_WIDTH, WCHAR_WIDTH, WINT_WIDTH. * New features are added from TS 18661-1:2014: - Signaling NaN macros: SNANF, SNAN, SNANL. - Nearest integer functions: roundeven, roundevenf, roundevenl, fromfp, fromfpf, fromfpl, ufromfp, ufromfpf, ufromfpl, fromfpx, fromfpxf, fromfpxl, ufromfpx, ufromfpxf, ufromfpxl. - llogb functions: the llogb, llogbf and llogbl functions, and the FP_LLOGB0 and FP_LLOGBNAN macros. - Max-min magnitude functions: fmaxmag, fmaxmagf, fmaxmagl, fminmag, fminmagf, fminmagl. - Comparison macros: iseqsig. - Classification macros: iscanonical, issubnormal, iszero. - Total order functions: totalorder, totalorderf, totalorderl, totalordermag, totalordermagf, totalordermagl. - Canonicalize functions: canonicalize, canonicalizef, canonicalizel. - NaN functions: getpayload, getpayloadf, getpayloadl, setpayload, setpayloadf, setpayloadl, setpayloadsig, setpayloadsigf, setpayloadsigl. * The functions strfromd, strfromf, and strfroml, from ISO/IEC TS 18661-1:2014, are added to libc. * Most of glibc can now be built with the stack smashing protector enabled. * The function explicit_bzero, from OpenBSD, has been added to libc. * On ColdFire, MicroBlaze, Nios II and SH3, the float_t type is now defined to float instead of double. * On x86_64, when compiling with -mfpmath=387 or -mfpmath=sse+387, the float_t and double_t types are now defined to long double instead of float and double. * The getentropy and getrandom functions, and the header file have been added. * The buffer size for byte-oriented stdio streams is now limited to 8192 bytes by default. * The header now includes the header. * The malloc_get_state and malloc_set_state functions have been removed. * The “ip6-dotint” and “no-ip6-dotint” resolver options, and the corresponding RES_NOIP6DOTINT flag from have been removed. * The "ip6-bytestring" resolver option and the corresponding RES_USEBSTRING flag from have been removed. * The flags RES_AAONLY, RES_PRIMARY, RES_NOCHECKNAME, RES_KEEPTSIG, RES_BLAST defined in the header file have been deprecated. * The "inet6" option in /etc/resolv.conf and the RES_USE_INET6 flag for _res.flags are deprecated. * DNSSEC-related declarations and definitions have been removed from the header file, and libresolv will no longer attempt to decode the data part of DNSSEC record types. * The resource record type classification macros ns_t_qt_p, ns_t_mrr_p, ns_t_rr_p, ns_t_udp_p, ns_t_xfr_p have been removed from the header file because the distinction between RR types and meta-RR types is not officially standardized, subject to revision, and thus not suitable for encoding in a macro. * The types res_sendhookact, res_send_qhook, re_send_rhook, and the qhook and rhook members of the res_state type in have been removed. * For multi-arch support it is recommended to use a GCC which has been built with support for GNU indirect functions. * GDB pretty printers have been added for mutex and condition variable structures in POSIX Threads. * Tunables feature added to allow tweaking of the runtime for an application program. * A new version of condition variables functions have been implemented in the NPTL implementation of POSIX Threads to provide stronger ordering guarantees. * A new version of pthread_rwlock functions have been implemented to use a more scalable algorithm primarily through not using a critical section anymore to make state changes. * On ARM EABI (32-bit), generating a backtrace for execution contexts which have been created with makecontext could fail to terminate due to a missing .cantunwind annotation. (CVE-2016-6323) * The DNS stub resolver functions would crash due to a NULL pointer dereference when processing a query with a valid DNS question type which was used internally in the implementation. (CVE-2015-5180) - Enable stack protector if part of %optflags - startcontext-cantunwind.patch: Removed - cpuid-assertion.patch: Removed- cpuid-assertion.patch: Don't assert on older Intel CPUs (BZ #20647)- glibc-2.3.3-nscd-db-path.diff: Move persistent nscd databases to /var/lib/nscd - glibc-2.3.90-langpackdir.diff: simplify- Update to glibc 2.24 * The minimum Linux kernel version that this version of the GNU C Library can be used with is 3.2 * The pap_AN locale has been deleted * The readdir_r and readdir64_r functions have been deprecated * The type `union wait' has been removed * A new NSS action is added to facilitate large distributed system administration * The deprecated __malloc_initialize_hook variable has been removed from the API * The long unused localedef --old-style option has been removed * nextupl, nextup, nextupf, nextdownl, nextdown and nextdownf are added to libm * An unnecessary stack copy in _nss_dns_getnetbyname_r was removed (CVE-2016-3075) * Previously, getaddrinfo copied large amounts of address data to the stack, even after the fix for CVE-2013-4458 has been applied, potentially resulting in a stack overflow. getaddrinfo now uses a heap allocation instead (CVE-2016-3706) * The glob function suffered from a stack-based buffer overflow when it was called with the GLOB_ALTDIRFUNC flag and encountered a long file name (CVE-2016-1234) * The Sun RPC UDP client could exhaust all available stack space when flooded with crafted ICMP and UDP messages (CVE-2016-4429) * The IPv6 name server management code in libresolv could result in a memory leak for each thread which is created, performs a failing naming lookup, and exits (CVE-2016-5417) - startcontext-cantunwind.patch: mark __startcontext as .cantunwind (bsc#974800, BZ #20435) - Removed patches: * 0001-Updated-translations-for-2.23.patch * 0002-Regenerate-libc.pot-for-2.23.patch * 0003-Regenerated-configure-scripts.patch * 0004-x86_64-Set-DL_RUNTIME_UNALIGNED_VEC_SIZE-to-8.patch * 0005-Add-fts64_-to-sysdeps-arm-nacl-libc.abilist.patch * 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch * 0007-NEWS-2.23-Fix-typo-in-bug-19048-text.patch * 0008-Update-NEWS.patch * 0009-sln-use-stat64.patch * 0010-Add-sys-auxv.h-wrapper-to-include-sys.patch * 0011-mips-terminate-the-FDE-before-the-return-trampoline-.patch * 0012-Use-HAS_ARCH_FEATURE-with-Fast_Rep_String.patch * 0013-Mention-BZ-19762-in-NEWS.patch * 0014-Define-_HAVE_STRING_ARCH_mempcpy-to-1-for-x86.patch * 0015-Or-bit_Prefer_MAP_32BIT_EXEC-in-EXTRA_LD_ENVVARS.patch * 0016-Fix-resource-leak-in-resolver-bug-19257.patch * 0017-math-don-t-clobber-old-libm.so-on-install-BZ-19822.patch * 0018-resolv-Always-set-resplen2-out-parameter-in-send_dg-.patch * 0019-S390-Save-and-restore-fprs-vrs-while-resolving-symbo.patch * 0020-S390-Extend-structs-La_s390_regs-La_s390_retval-with.patch * 0021-CVE-2016-3075-Stack-overflow-in-_nss_dns_getnetbynam.patch * 0022-configure-fix-test-usage.patch * 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch * 0024-nss_db-Propagate-ERANGE-error-if-parse_line-fails-BZ.patch * 0025-getnameinfo-Do-not-preserve-errno.patch * 0026-getnameinfo-Refactor-and-fix-memory-leak-BZ-19642.patch * 0027-getnameinfo-Reduce-line-length-and-add-missing-comme.patch * 0028-getnameinfo-Avoid-calling-strnlen-on-uninitialized-b.patch * 0029-getnameinfo-Return-EAI_OVERFLOW-in-more-cases-BZ-197.patch * 0030-hesiod-Remove-RCS-keywords.patch * 0031-hesiod-Always-use-thread-local-resolver-state-BZ-195.patch * 0032-hesiod-Avoid-heap-overflow-in-get_txt_records-BZ-200.patch * 0033-malloc-Remove-NO_THREADS.patch * 0034-Fix-malloc-threaded-tests-link-on-non-Linux.patch * 0035-malloc-Run-fork-handler-as-late-as-possible-BZ-19431.patch * 0036-malloc-Remove-malloc-hooks-from-fork-handler.patch * 0037-malloc-Add-missing-internal_function-attributes-on-f.patch * 0038-nss_dns-Fix-assertion-failure-in-_nss_dns_getcanonna.patch * 0039-nss_dns-Validate-RDATA-length-against-packet-length-.patch * 0040-resolv-nss_dns-Remove-remaining-syslog-logging-BZ-19.patch * 0041-nss_dns-Check-address-length-before-creating-addrinf.patch * 0042-nss_dns-Skip-over-non-PTR-records-in-the-netent-code.patch * 0043-resolv-Always-set-resplen2-out-parameter-in-send_vc-.patch * 0044-tst-audit4-tst-audit10-Compile-AVX-AVX-512-code-sepa.patch * 0045-Fix-tst-audit10-build-when-mavx512f-is-not-supported.patch * 0046-tst-audit10-Fix-compilation-on-compilers-without-bit.patch * 0047-strfmon_l-Use-specified-locale-for-number-formatting.patch * 0048-glob-Simplify-the-interface-for-the-GLOB_ALTDIRFUNC-.patch * 0049-CVE-2016-1234-glob-Do-not-copy-d_name-field-of-struc.patch * 0050-ldconfig-Do-not-remove-stale-symbolic-links-with-X-B.patch * 0051-Report-dlsym-dlvsym-lookup-errors-using-dlerror-BZ-1.patch * 0052-Fix-tst-dlsym-error-build.patch * 0053-Remove-trailing-newline-from-date_fmt-in-Serbian-loc.patch * 0054-Revert-Report-dlsym-dlvsym-lookup-errors-using-dlerr.patch * 0055-CVE-2016-3706-getaddrinfo-stack-overflow-in-hostent-.patch * 0056-Fix-strfmon_l-Use-specified-locale-for-number-format.patch * clntudp-call-alloca.patch * glibc-memset-nontemporal.diff * nis-initgroups-status.patch * nscd-gc-crash.patch * robust-mutex-deadlock.patch * strncat-avoid-array-bounds-warning.patch- strncat-avoid-array-bounds-warning.patch: Avoid array-bounds warning for stncat on i586 (BZ #20260) - Update glibc.keyring - Unset MALLOC_CHECK_ during testsuite run- nsswitch.conf: Add fallback to files for passwd and group to prepare for libnsl removal.- nis-initgroups-status.patch: Return proper status from _nss_nis_initgroups_dyn (bsc#984269, BZ #20262) - robust-mutex-deadlock.patch: Fix generic __lll_robust_timedlock_wait to check for timeout (bsc#985170, BZ #20263)- nscd-gc-crash.patch: Fix nscd assertion failure in gc (bsc#965699, BZ [#19755])- clntudp-call-alloca.patch: do not use alloca in clntudp_call (CVE-2016-4429, bsc#980854, BZ #20112)- Import patches from 2.23 branch 0001-Updated-translations-for-2.23.patch 0002-Regenerate-libc.pot-for-2.23.patch 0003-Regenerated-configure-scripts.patch 0004-x86_64-Set-DL_RUNTIME_UNALIGNED_VEC_SIZE-to-8.patch 0005-Add-fts64_-to-sysdeps-arm-nacl-libc.abilist.patch 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch 0007-NEWS-2.23-Fix-typo-in-bug-19048-text.patch 0008-Update-NEWS.patch 0009-sln-use-stat64.patch 0010-Add-sys-auxv.h-wrapper-to-include-sys.patch 0011-mips-terminate-the-FDE-before-the-return-trampoline-.patch 0012-Use-HAS_ARCH_FEATURE-with-Fast_Rep_String.patch 0013-Mention-BZ-19762-in-NEWS.patch 0014-Define-_HAVE_STRING_ARCH_mempcpy-to-1-for-x86.patch 0015-Or-bit_Prefer_MAP_32BIT_EXEC-in-EXTRA_LD_ENVVARS.patch 0016-Fix-resource-leak-in-resolver-bug-19257.patch 0017-math-don-t-clobber-old-libm.so-on-install-BZ-19822.patch 0018-resolv-Always-set-resplen2-out-parameter-in-send_dg-.patch 0019-S390-Save-and-restore-fprs-vrs-while-resolving-symbo.patch 0020-S390-Extend-structs-La_s390_regs-La_s390_retval-with.patch 0021-CVE-2016-3075-Stack-overflow-in-_nss_dns_getnetbynam.patch 0022-configure-fix-test-usage.patch 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch 0024-nss_db-Propagate-ERANGE-error-if-parse_line-fails-BZ.patch 0025-getnameinfo-Do-not-preserve-errno.patch 0026-getnameinfo-Refactor-and-fix-memory-leak-BZ-19642.patch 0027-getnameinfo-Reduce-line-length-and-add-missing-comme.patch 0028-getnameinfo-Avoid-calling-strnlen-on-uninitialized-b.patch 0029-getnameinfo-Return-EAI_OVERFLOW-in-more-cases-BZ-197.patch 0030-hesiod-Remove-RCS-keywords.patch 0031-hesiod-Always-use-thread-local-resolver-state-BZ-195.patch 0032-hesiod-Avoid-heap-overflow-in-get_txt_records-BZ-200.patch 0033-malloc-Remove-NO_THREADS.patch 0034-Fix-malloc-threaded-tests-link-on-non-Linux.patch 0035-malloc-Run-fork-handler-as-late-as-possible-BZ-19431.patch 0036-malloc-Remove-malloc-hooks-from-fork-handler.patch 0037-malloc-Add-missing-internal_function-attributes-on-f.patch 0038-nss_dns-Fix-assertion-failure-in-_nss_dns_getcanonna.patch 0039-nss_dns-Validate-RDATA-length-against-packet-length-.patch 0040-resolv-nss_dns-Remove-remaining-syslog-logging-BZ-19.patch 0041-nss_dns-Check-address-length-before-creating-addrinf.patch 0042-nss_dns-Skip-over-non-PTR-records-in-the-netent-code.patch 0043-resolv-Always-set-resplen2-out-parameter-in-send_vc-.patch 0044-tst-audit4-tst-audit10-Compile-AVX-AVX-512-code-sepa.patch 0045-Fix-tst-audit10-build-when-mavx512f-is-not-supported.patch 0046-tst-audit10-Fix-compilation-on-compilers-without-bit.patch 0047-strfmon_l-Use-specified-locale-for-number-formatting.patch 0048-glob-Simplify-the-interface-for-the-GLOB_ALTDIRFUNC-.patch 0049-CVE-2016-1234-glob-Do-not-copy-d_name-field-of-struc.patch 0050-ldconfig-Do-not-remove-stale-symbolic-links-with-X-B.patch 0051-Report-dlsym-dlvsym-lookup-errors-using-dlerror-BZ-1.patch 0052-Fix-tst-dlsym-error-build.patch 0053-Remove-trailing-newline-from-date_fmt-in-Serbian-loc.patch 0054-Revert-Report-dlsym-dlvsym-lookup-errors-using-dlerr.patch 0055-CVE-2016-3706-getaddrinfo-stack-overflow-in-hostent-.patch 0056-Fix-strfmon_l-Use-specified-locale-for-number-format.patch - CVE-2016-3075 CVE-2016-1234 CVE-2016-3706 bsc#973164 bsc#969727 - resolv-mem-leak.patch: renamed to 0016-Fix-resource-leak-in-resolver-bug-19257.patch - no-long-double.patch: renamed to 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch - glibc-gcc6.patch: renamed to 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch- glibc-c-utf8-locale.patch: fix bad standard in LC_IDENTIFICATION categories - glibc-2.3.locales.diff.bz2: likewise- glibc-gcc6.patch: Suppress GCC 6 warning about ambiguous 'else' with - Wparentheses- Add compatibility symlinks for LSB 3.0 (fate#318933)- powerpc-elision-enable-envvar.patch: enable TLE only if GLIBC_ELISION_ENABLE=yes is defined (bsc#967594, fate#318236)- ldd-system-interp.patch: Restore warning about execution permission, it is still needed for noexec mounts (bsc#915985)- Add C.UTF-8 locale (see https://sourceware.org/glibc/wiki/Proposals/C.UTF-8) and rh#902094 . Added with glibc-c-utf8-locale.patch. - Add glibc-disable-gettext-for-c-utf8.patch to disable gettext for C.UTF-8 same as C locale.- Move %install_info_delete to %preun - crypt_blowfish-1.3.tar.gz.sign: Remove, the sign key is no longer acceptable- no-long-double.patch: Don't use long double functions if NO_LONG_DOUBLE- Update to glibc 2.23 release. * Unicode 8.0.0 Support * sched_setaffinity, pthread_setaffinity_np no longer attempt to guess the kernel-internal CPU set size * The fts.h header can now be used with -D_FILE_OFFSET_BITS=64 * getaddrinfo now detects certain invalid responses on an internal netlink socket * A defect in the malloc implementation, present since glibc 2.15 (2012) or glibc 2.10 via --enable-experimental-malloc (2009), could result in the unnecessary serialization of memory allocation requests across threads * The obsolete header has been removed * The obsolete functions bdflush, create_module, get_kernel_syms, query_module and uselib are no longer available to newly linked binaries * Optimized string, wcsmbs and memory functions for IBM z13. * Newly linked programs that define a variable called signgam will no longer have it set by the lgamma, lgammaf and lgammal functions - Removed patches: * dont-remove-nodelete-flag.patch * openat64-readd-o-largefile.patch * mntent-blank-line.patch * opendir-o-directory-check.patch * strcoll-remove-strdiff-opt.patch * ld-pointer-guard.patch * tls-dtor-list-mangling.patch * powerpc-lock-elision-race.patch * prelink-elf-rtype-class.patch * vector-finite-math-aliases.patch * powerpc-elision-adapt-param.patch * catopen-unbound-alloca.patch * strftime-range-check.patch * hcreate-overflow-check.patch * errorcheck-mutex-no-elision.patch * refactor-nan-parsing.patch * send-dg-buffer-overflow.patch * isinf-cxx11-conflict.patch * ibm93x-redundant-shift-si.patch * iconv-reset-input-buffer.patch * tzset-tzname.patch * static-dlopen.patch- isinf-cxx11-conflict.patch: Fix isinf/isnan declaration conflict with C++11 (bsc#963700, BZ #19439)- tls-dtor-list-mangling.patch: Harden tls_dtor_list with pointer mangling (BZ #19018) - prelink-elf-rtype-class.patch: Keep only ELF_RTYPE_CLASS_{PLT|COPY} bits for prelink (BZ #19178) - vector-finite-math-aliases.patch: Better workaround for aliases of * _finite symbols in vector math library (BZ# 19058) - powerpc-elision-adapt-param.patch: powerpc: Fix usage of elision transient failure adapt param (BZ #19174) - catopen-unbound-alloca.patch: Fix unbound alloca in catopen (CVE-2015-8779, bsc#962739, BZ #17905) - strftime-range-check.patch: Add range check on time fields (CVE-2015-8776, bsc#962736, BZ #18985) - hcreate-overflow-check.patch: Handle overflow in hcreate (CVE-2015-8778, bsc#962737, BZ #18240) - errorcheck-mutex-no-elision.patch: Don't do lock elision on an error checking mutex (bsc#956716, BZ #17514) - refactor-nan-parsing.patch: Refactor strtod parsing of NaN payloads (CVE-2014-9761, bsc#962738, BZ #16962) - send-dg-buffer-overflow.patch: Fix getaddrinfo stack-based buffer overflow (CVE-2015-7547, bsc#961721, BZ #18665) - powerpc-lock-elision-race.patch: renamed from 0001-powerpc-Fix-a-race-condition-when-eliding-a-lock-20150730.patch- Add audit-devel and libcap-devel to BuildRequires, for use by nscd- reinitialize-dl_load_write_lock.patch: Reinitialize dl_load_write_lock on fork (bsc#958315, BZ #19282)- resolv-mem-leak.patch: Fix resource leak in resolver (bsc#955647, BZ #19257) - tzset-tzname.patch: Force rereading TZDEFRULES after it was used to set DST rules only (BZ #19253)- glibc-2.3.90-noversion.diff: use stat64- ld-pointer-guard.patch: Always enable pointer guard (CVE-2015-8777, bsc#950944, BZ #18928)- strcoll-remove-strdiff-opt.patch: Remove incorrect STRDIFF-based optimization (BZ #18589)- iconv-reset-input-buffer.patch: Fix iconv buffer handling with IGNORE error handler (BZ #18830)- new patch [BZ #18743] PowerPC: Fix a race condition when eliding a lock 0001-powerpc-Fix-a-race-condition-when-eliding-a-lock-20150730.patch- nss-files-long-lines-2.patch: Properly reread entry after failure in nss_files getent function (bsc#945779, BZ #18991)- fnmatch-collating-elements.patch: Fix fnmatch handling of collating elements (BZ #17396, BZ #16976)- opendir-o-directory-check.patch: Fix opendir inverted o_directory_works test - static-dlopen.patch: Static dlopen default library search path fix (bsc#937853)- mntent-blank-line.patch: Fix memory corruption w/blank lines- dont-remove-nodelete-flag.patch: Don't remove DF_1_NODELETE flag from all loaded objects on failed dlopen - openat64-readd-o-largefile.patch: Readd O_LARGEFILE flag for openat64- Update to glibc 2.22 release. * Cache information can be queried via sysconf() function on s390 * A buffer overflow in gethostbyname_r and related functions performing DNS requests has been fixed. (CVE-2015-1781) * The time zone file parser has been made more robust against crafted time zone files * A powerpc and powerpc64 optimization for TLS, similar to TLS descriptors for LD and GD on x86 and x86-64, has been implemented. * Character encoding and ctype tables were updated to Unicode 7.0.0 * Added vector math library named libmvec * A new fmemopen implementation has been added with the goal of POSIX compliance. * The header is deprecated, and will be removed in a future release. * bsc#905313 bsc#920338 bsc#927080 bsc#928723 bsc#931480 bsc#939211 bsc#940195 bsc#940332 bsc#944494 bsc#968787 - Patches from upstream removed * htm-tabort.patch * o-tmpfile.patch * memcpy-chk-non-SSE2.patch * pthread-mutexattr-gettype-kind.patch * powerpc-software-sqrt.patch * static-tls-dtv-limit.patch * threaded-trim-threshold.patch * resolv-nameserver-handling.patch * nss-separate-state-getXXent.patch * aarch64-sigstksz.patch * heap-top-corruption.patch * pthread-join-deadlock.patch- pthread-join-deadlock.patch: Use IE model for static variables in libc.so, libpthread.so and rtld (bsc#930015, BZ #18457)- glibc-nodate.patch: fix verification of timestamp- also filter out -fstack-protector-strong- getaddrinfo-ipv6-sanity.diff: Remove. It breaks services that start before IPv6 is up (bsc#931399) - glibc-2.3.locales.diff.bz2: Remove sh_YU locales, fix currency for en_BE.- Add /usr/include/gnu/lib-names-.*.h to baselibs - pthread-join-deadlock.patch: Don't require rtld lock to store static TLS offset in the DTV (bsc#930015, BZ #18457) - heap-top-corruption.patch: Do not corrupt the top of a threaded heap if top chunk is MINSIZE (BZ #18502)- threaded-trim-threshold.patch: Fix regression in threaded application malloc performance (bsc#915955, BZ #17195)- aarch64-sigstksz.patch: Increase MINSIGSTKSZ and SIGSTKSZ (BZ #16850)- powerpc-software-sqrt.patch: Fix powerpc software sqrt (BZ #17964, BZ [#17967]) - nss-separate-state-getXXent.patch: Separate internal state between getXXent and getXXbyYY NSS calls (CVE-2014-8121, bsc#918187, BZ #18007) - static-tls-dtv-limit.patch: Fix DTV race, assert, DTV_SURPLUS Static TLS limit, and nptl_db garbage (bsc#919678, BZ #17090, BZ #17620, BZ #17621, BZ #17628)- resolv-nameserver-handling.patch: Replace with simpler version with more compatibility- memcpy-chk-non-SSE2.patch: Fix __memcpy_chk on non-SSE2 CPUs (bsc#920084)- resolv-nameserver-handling.patch: Rewrite handling of nameserver configuration in resolver- htm-tabort.patch: Fix TABORT encoding for little endian- Update to glibc 2.21 release. * A new semaphore algorithm has been implemented in generic C code for all machines * Added support for TSX lock elision of pthread mutexes on powerpc32, powerpc64 and powerpc64le * Optimized strcpy, stpcpy, strchrnul and strrchr implementations for AArch64 * i386 memcpy functions optimized with SSE2 unaligned load/store * New locales: tu_IN, bh_IN, raj_IN, ce_RU * The obsolete sigvec function has been removed * CVE-2015-1472 CVE-2015-1473 CVE-2012-3406 CVE-2014-9402 CVE-2014-7817 bsc#864081 bsc#906371 bsc#909053 bsc#910599 bsc#916222 - Patches from upstream removed * ifunc-x86-slow-sse4.patch * pthread-mutex-trylock-elision.patch - o-tmpfile.patch: Fix value of O_TMPFILE for architectures with non-default O_DIRECTORY (BZ #17912)- Update to crypt_blowfish 1.3. * Add support for the $2b$ prefix. - ifunc-x86-slow-sse4.patch: Fix misdetected Slow_SSE4_2 cpu feature bit (BZ #17501)/bin/sh/bin/sh/bin/sh/bin/shunscdibs-arm-6 1643274443 2.31-150300.9.12.12.31-150300.9.12.12.31-150300.9.12.1 0.48nscd.confnscdnscd.pidsocketnscd.servicetmpfiles.dnscd.confnscdrcnscdnscdgrouphostsnetgrouppasswdservices/etc//run//run/nscd//usr/lib/systemd/system//usr/lib//usr/lib/tmpfiles.d//usr/sbin//var/lib//var/lib/nscd/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:22553/SUSE_SLE-15-SP3_Update/2008ac17db825608b3b78f51563881ed-glibc.SUSE_SLE-15-SP3_Updatecpioxz5aarch64-suse-linux ASCII textdirectorycannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.9.12.1.aarch64/run/nscd/nscd.pid' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.9.12.1.aarch64/run/nscd/socket' (No such file or directory)ELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, interpreter /lib/ld-linux-aarch64.so.1, BuildID[sha1]=057e7540efef0f43f6e801dfb6d20941efd45e90, for GNU/Linux 3.7.0, strippedcannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.9.12.1.aarch64/var/lib/nscd/group' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.9.12.1.aarch64/var/lib/nscd/hosts' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.9.12.1.aarch64/var/lib/nscd/netgroup' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.9.12.1.aarch64/var/lib/nscd/passwd' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.9.12.1.aarch64/var/lib/nscd/services' (No such file or directory) RR R R RRR R RUF؆FytbDOhA8ڟǤe4/O_\;&>-{Y0~U7e311ʼn-T:<\ /_{,G;j;:L+m{a)+Ñy}=iaqQ'v fMNņv{{s;wdM6izFedKf squ@=)½&6+^K${nʎ6U;Ҷ ,a'cxɃmyTШRZQm[HzNkkbHVy%FA3I;} ,)D]Pg UbWuq[ټS x"=GhK䈣 *ҿ4L%oMl u8-v,7udGP]f(>nlׁ!bh"si>b:Wu2VyA݃X.EJ\Nƻ {OᜩئB[vV;T:)IF˺`tNo)Knb3 4/^v5(GIWk(},~x!_iV `N[!@{o)EWJ7cLc-z4fpjpc"*Dۣ._Xs\!*/1 R SNUg`L{B0М7|p|`i+AN+ΈIBj:>0IۮHA >-јMU"D?턕yѡ*g8$6v4 uu# 8lL+ 3Ͷԫ<_hP\P\J9m "hl~0Nyx[X *^MMhLvkN)+Heb7Hp"N'4Ft8qSm肪,E)W)dFfիNd:?BYtު*9l7q! TpxFk ":2&AFpGS嶢xd><qN:}@^h(8$ D]q#|ƕ̪r`.D܆! tR٥4AQ:c>iOf_7V Ւep:0 2,A!J)V /;7h?@6*-6aelFJ\bS;j[6bMJ$KV*6ҫy8vLq hc0FɋV`dfb`w_!Rz >4`ʔ u|]kֽk#]zx|E'NKť?bFOv pgh2r& bGz`o626\6C4wQIg1PpQZnJһilws_уq"yAPg>! }/7r=/FS1(h ("+ӎsU{=~L7nc^O_+lu#ӏ]PHev_jN( &TdkE Utkբsd"*JA׵/M җ!-m $cI)RD3y! jLKɞsEwK]ȕ>kCeDyϡ|EB\֮y#+K2ǡ 4#- 98D uXJu^ }<14ڐ=lޔ/n:9OőxbA]ɦbȴr%c>11V%C H$8sQlm!0g 8²%]gV!1Zu G f5 22B$4)y}ORK>O1Ġ@`q>` bLzFc$t W."+<3},=ppA=ˬ,΂3*u^6*}bc^Sf7cUXMBҔ8r|RAL-~/KQA~+SC`b2{dM="Fr=rrj<U=#:Oib羐 \8 m/y{*BhR.?x1?^1̛Rk>Bln^=^#C]·AxَlC/cp4ȽU .YO{8O+E(Lߵ(8~9ϩr,XK9w RlI6\%*ݱ"b* GK{=O@qgqI9yc[u>&  [*C`Ǣ~W\F|i w Y) u?ޖc5%<خXYSp }9i7sƦ[@!\m|V4NG%Qﳽ(5|US8 S*7w2*,7w@h4ĘZXX4\)FV8;:O \i4d7W5ٟ<0&VD%Yj'_c\ޟ$s&8%Y T}1Tٝ,GU\\X0/Qx1d'-`>w&bDUHueu bņ)ܤܕvu ir4K8 }|s8p:$瑤E*R&R3 ck%a=_x=6|k)- Ê#Ms驉LQj)B k";9x0*g⻕b|j=  L?ʶ׭׸Y _ś6,kJOvynh퐔I,E |Fr@UtJyo V8)X/L(yUDZ]= )!Z} |>c#|Mj}Eǝ;[s R*$ %ճD*z"a&?O ڶ GC!7 FPۑLIW[4q%0#Vhv?Fߜb<"gӷZvF LzIrQWЃv7Vv"!,(١R4al3סyA$yURf563(-$mWw+./sj/.7O/1F0rPpK2i$t~ŏGHIFGcb{̆w@d (kAmg*Hm78YC-pi^m9cC"K6gX3eӎp#pO>72 A-;ecǞZm2ݍ ={MdC="ݷuf$< L#pv'uL%q[f\ҳV\e)N;p^mznx'16-XrP#ї>O]LPYKHZkC0j Z Tl95ŕh3FJW~q =|$y)iY}ʏu[ 5MhwVA{ G,Mc_~AD՚?n>Ͱ{I6sqyVCպ.:TAk8Y6OKJ}׿)b8.v-Y#q*UM@Xr3SjC뷹]^j-gre}HԢOORPK(5i(prn'VaF4-vTMO[VI8v</q$]Id'-OxF%qH"%X~ eA;uhfC|>?`ɠ /| {!"oR]V%T 3qS$nBLbFq͇!鋹 @lX.]zkX[Nvn4 @jT[in1Ƙ._Ki8s6"pQp~,2+sQ!h+a 52k:X y48+i2X P0uR#U#۵C;{FW.n6܂Ǹ U[%WE1C7:aI: u`ze[4:H3Շs7=7iJ$vqGbv :@-I}RlBۙ]n!]Zp4d,dk//:A9\d vEcawFcRI??aWa9E0ۇJ pW(^`KtߧgٱME{z@ A`"{&%LR+G t0 ^a ÖcU):ō9rQ jia.S9L@_){CK=e <d{R!ݔI6NF} {g1|/{reC6U4ߩUNq231 _o[ @3R4BdxȎm80ZI5#}/8 ><@&6GaAƌnt.sՁo4f,,i״!b3u ,$&3jD 6rW=<Lm<}*RL4ZuVǾCZ rI쵬[hb4KGtv_"O^ >:0DbKR H^Ũ({Db|8C赇ru nrP8uX&?PǺuD1R-j;ISkZ;0}G ؋-y1Ţ1]d,xI3]z;tR`>iڭ[Ef- |t>H,v}O;C+]ȅ{5>Fv|RեDZ+ZOf;aɊd|ozKja8>b5DcT͛u[ǎ_ Ru3Iwޱv$iҀHzɏ/R,`D' pF`}^6-:l3ysߨzZy(`E0<5LK"2k U (N)Yz]c<8$wQs$uog]+zNKjpu[ G" 7^OHGl |iߓ`U'\y1 ח1$mm nM^T 7㗈L&*85#)LRMWgH4edXnpm5%H>{]4N[W;T0`*|iM)5CglM@] U*. +lyS:)AtX$q%Ff1Š'TEz9ChpɐCvWRN(3w>ԫO1|8=xwCfeYg ;vF:MWgW3f)oJv ~y~@&Y맗 t+ $;-yg&X2>:szHw,q)!rDu!(/|D pIպZ$*0썄_R/^llNXm2o~[H^Oں%?֫>q/h"6'!xi3wыuJ%g4st|CY=G1Ix*DKx? Ȉ/;.m)һhE&=Gl\xTQ}¦c[ V=GVƮjphdTW_Ew(?"_3C/W,.S5<fENMi5o!F۞OXap#Qಏ >'Kj (rվ]EWuҥX7)!SȻB6ZXoWT*xGzit/\6m0LU6v]0>D $,0 q8<9"Zȉ›\A=[ʂ~Jy #D: #`^UGx($hpC./Z|`Q3Ν6F?e=$EpWlnS"MJvR}*Q D{P),I`@^T|7_ :Rn\M-񈜷 "Z 55ą3hS2V$#dBNl/vI_f)S`5]^TaD/4LJJZ8ޛL~?t3JD:-. ' ;Az'9~^wOs@{Mx0ro;OZNFJ?Or#|x&2<)0п0Z L h:ø6l/p[i^lmip| %V"vgדaRc* 5ovA`3{1`=lM'MH8lg7 jbQ=xn~4osp,lbɌ^5w髾}'1nv(ja4t U8mvɠ*UlOTf ,%l왐vY&YW)a>Ј_qS)^fII}QۥHDu-2#1P9#XYꀿ|dɦ; b\qh˲gZ pZGӞL$ťz ߖn\*˛of= n~2Gh[Mmh'05gNy\_f88݀*Fq *[fFKlǴ g֙=_%Jхx pƃqwA{6dc6ʛ錶=KLWEQLS:LCp>vx#C.%PnGM2q3!3)͵qEb聝Xr}+4~+-iN8W۟5g-V dgV ÀeW^[Ƌ@'2xrO!S/RfuYG@bƘܮd$jf#%ys0%6eki4w ~}9ETG׮N 3<m#P} On\>W66@d@0k1ݱ󎱃<<>٨@^yBXR#0@A6-Ӆ[$f!Lrio]r +6Uum$BZ'H:Ѳg %iԚ: 'szKϕ$2K[\ bNj-F`-M""h1 yXGPA7vZZ.&aU;wkL Br%f5q3ܟ <ƨw?}Ϩ/geleL6\\x+9#/7u`J4Z,y'氤qcǰNm~n) $ GS1,& afG<܄ L֘ȡ)l<=̉͋FxM+< CgYԥ҂]s9%Y2)%H{heӐ@#m21q՝AjaxJNKWf\;Oy}-ũ O6H)xu1mGHA6KS!uVaV\+pчp Ο| * Y\ ȘCK*l@qX;)5Cɦ,*QXN}pz:J/g\(D*DF8 9V 9@CTr lsoS:8dx~\ܹ*Ϋ$C)J񂌾ɛiݷߗd|;F`o͋`-A-(5y8Î[JbJwIܙS@xC񎇰< DZa3@5JξtAgtcA>vzt*Y\@]\=W򺏵(ޕ GSOJ7]Y\*36~Ρ Zz )[ʼMSr$P˛gs~'"0<吳(fִ\ j*>fF{NA  G@fN`~˻q ^Epƅbr<*8gr/O&~ z>4@`ўo? cw_ PY ^uOMn;<5*󥸫8e6k#vZ:k )OeQbч4d&YV~/bI۬q/ǁ2m\{ -?l-Bz+c 5\nr0k5].;W;j+J>lY @ i1]3a!u xWKUAZWI/ V.iIÜ7)mg̮n/? 8=Np&huq1% :;3nR bM}Thm0}ӕ-  Fv*̻v#>S9:N\7\M9r=Xdn`=m=h܍, bt[GGwU9 Igj a#J"_a:UsLFaN veNď٦\py< 1LXs\w[v.d{<wPhGϸL$ aʁ#@&ئ)] zcкҪ~$JfLmVdl8'RVPgELs#Ols[JjE < +1}Jkش\EeHQd $'[݌ηʋȖM/>jVKvoԄlEBkFI:!)EZ[ t7 %=)0u2*!Bn_@]ТŖ+i.pWd7lnZ8~v ?|9Bz8 ǤO~f9aX1B)KC.rz϶ ^ UA0yU]*+Q^^550xv2h1o0c0x`>=qB9u>3b!zvg H(piL^Lvqdͥ>RزDBCm'5|VM} |=`Vye"rɇPφA<0GB٭9\?^` HM7B_ QKz L%&`=5=a!2&_k;NxuI9C!TZ `~ku*y."**ѹ_E-E.Y^DT7kLۨcJ˻ JiwL}2>HM*4{lx.;o~21D'I=Is`,ʤ TKQHu2nP էٻ/^KqƑN3(0[q!Ʋ,+oY:ʙ#I:?pm|cGS Y&RQ-wǤǪT,PgVI/Zo o (îWb }0C$񶫧B |U޶SZΜ."{aN4jjvS-%[[Y<ͺ)Y@M0B:Jw^*Gg0,Q;>[1"Tr)L ఐ2*|[iϣO8T_YL gVsݨ$O? I?$GvM $}UIB_-2M&e*-MЦDh8o\G+9eQ/(Կ*Drǭg9"TWK"[ D׶G JT W|2rE#B,i^ۣч)W-4'u"po%\Vړ_ͽ|(ÁE93&[-@9=-c$bغjl2c@zPCZRjZjY^u3V5O9YO2:X #m y vO&ے^=LFu9-H̎1ְHmYlx{qvOukQ# =0g !xU>ٯ̴RbqCn9 PvMvHcy5N@:SE*@_8F6pkE#[n}.RxcLxć%rpځ~'ބov^4F#ߪkFk URW9_5߄5ӅTk7ZZ7;7Ѣ]ҿ/|Ȫ\P=ne+B"(np ۆȉ3=;ۯ|91ŗC4yqQ%~:;*Hz#Z ݮͅ߃!brK"vcPyȘFIdІbDv#1^¥$Ƽ` v˯L`+g%D2@NsY9>iQSʢ|At)XwvLv:/W%ܳMSHFZj!$;f!s͔TIՇo+]R~1r*A3M"tev@Z% O5'ԩ]XDݪWMrS, \E^h>q"8dt2rOQ)V#[-ڈ[CȠ&0z;%-.©%&:Jn( sB_&| b+x7 W,2H\w59sv́O|,B?݇}MG@*c4yuf%G /([7YJ9Y-UBh]_󀚾ެ|pwu^\@BpWuUaICm.>Y)^UԿւ2)r`hFOበ |Ń7 n9F9MT=*֎vMēǶ! $=110{%ÌXgJ4jKFlڔΏ޾|%N}"θv`v6nD{mxmP7,n޺ɝqNC2;Ӗ`;zDUOݭ28 75etYOY<;yoYia;(r+썩GlJ蚷Tf_#%1`u\h1F~TXЋ(OYcľ'M]ER6{(Xh(Ą.k 8v偎 ͺNnA+׾T,OSFǓ=f<9t\n1XRkxw'bC/~@lwnL0Z`d~pW8!լ51Bo0RXm.ED )avj(՟δ>Ҳ1Ǎ-@h_}بr&#Cep4s=r;4> 2"Gd3:W),$66ʡkKe%b#eaiI]⇳-ۏY~]OG[u0yl?ڃIj|HUm\\Hh&wk1!BW*jXSQQ뱚-RG qQێ[2Mf)Ü\=2 `SRںv.LYU9Xd1B!O8(iL<9"֡ FV\O9 o:$! KYA`RDn%O`^ҭFvB4*  |ߤ?kJ?]pjy- 艤"Qe)fTH `VCL/xdLB:+/ ڳӗ I[!X7C[gӼޕ;g=6e׉Ngo.|wXƌ^-3RJGtQKx7fRj!كrIڮ;yb?3e`KڗM-{2wΛ\11Y1o1ىF@.bbը>3y٫47W/_?YbK8~Abɶk q\);}sToA^PT6&k=1w8-/jtFKn˟"Lҍ*xQ'u<ҎZƊ vϣojw_{o'W Hucք}Ę]П(Oe5v|x >d*,~s9dP`iiwz,-Qj5BWaVq1&yhP5MZGL $<:ܷ1s&DUcU}_^VuF{UZZ':1JoW7kG.Jp|07~SgROZ#zX2擢8=Vs oF0gɳ(3uٹH:SKY {y,%6ѪH5J>%b煖ИfAj\?;rΏXl9l)xP֚_je1Sa|<'j2IEDro5},W2٘vwnβ76gӈ4&=ko™u4U%M^Xi~8g3d ~4?D _i8BDGh OtZ>/xV *c\I 3;G}s}UјH1?hzV@v0fwyS$QnZ*z䞂L;KX(T2kT=h\V_-M-FQ/"+S/y[Nsv jGnԫgyXk\ t*h,W){&Ϛ_qLZAhWXZ b,>܏]ɹJ5F~Ijj%\EEEP<HZWg{֙qce LA/Dl2(fRe]_ .*fja:9Rx~ѝNaVC({01 '5IĒS{G_vtv)W?jKy2*Ô|9mK"5Zol p9V51V.6k--ٯ}7G|M%5IːxZEMMS HdڗKHrlR($p1NqNWs:[f,[)ߩ8 J5Mɶ'A7jr Q/o1QtJ.lAs%Q?R~:{`<;4K s2|hی{$l,{3ݿXs\OP nZ׳X^pmfC!Por.C>)1YdMԼ@ ln$6-thO}n%Bߔu2j9)'$ / *ݕ-;;&c7BK~I "m5z3d9,axt"{g'nWHc5%cɮ|rXB, yW~y^Wn(WjV~t1~F2H4*԰Ѕ,fwpE5}^S5-8.J20!6v d *xm2ѣ!z9Mv+e:Y`7jmT=q8l y\hJoF?t}vTVDoqj~[PjCViD HJmrPEJrp|RPhS7*'x3 =RGf`J"Xߒ2Ƿ5I5^#h܊1+.18Ve#k~;v*K7{xkKpY/ޯ IßT j4D鋶a- m貰ɥ vkŗ-`䑑1mv@_#whAQ|`N5Ս/DBʚ?}E_Xd1pao hP"@>] [(D,y9Ȃ P-!8}V]9F! p^ʅʲg\T5vЖS7@3![|i"R"r_Zڤ5y'X3ti CẢ 3sXRx?!y1~Zǁ$u*mTT/"29pIJT uF0-˴pa7EHnW`FB b#f| (J=oIZ(;7iQ`dF M*fJh> ?=N-`c(2jg?&jzf||SԙO G !FY7_&}a'7pw`MZa"O{ޮA3"|wQ$nkHmW7Lԟ^=W^0ø),qjl_,LO j5ڕ<,J4,^*O B~43@=ld,9:ՒdVhO)i֍@VY_L)CS&c yp(Ilɼ)%8vshЪؔG.4c._b;i5o[ֱ{_|Gx `ޞnQba=|bov{,nfaf[f昅k ;1GTHoqk ¤8ǠPzWCxGV޻=VljViK=.D.=a.Vz$h (f\wWx {l/jXllҁ;';|1 T\Nx<ϲNL`cAF;Mip]rgoYYhmt K{,GO]|}9uDDc {2D6w6J%UWqJeNƐ` ^.[RexОHOÄ?AR'XV\q7 C]1J1Fmwgm(]ƨ b*<*~&Q)|%lb7 bߋSYw8Q/:?>Sm-m4\9Um:CB 殯DVhPr5uj`Kk^}4du;ӈV1^S ,QJ<5I6a{-2}&@ys/QVI[t͗I^?;s6ݽ}0lמ7s=|́UŔ՚DCz_IhX8f!vcԗiƙaZA6h#ĤWYmNXezI2tXie~d ziv5"_`ʅQI\:Ws2zHw9r3{/^Ln9}pw rg,I/2 )-E >8~qj5`Îς6m):8giίXFLHͺj8<zռ;H!gi1lL uw&nx@m #-#\|(^ )ڎ.+;a0FAvvɂ* R7 Y+xRgOq9TxQ݇:ߩuG浕u>cBб406\ ꓓ_[JDž!1`ٶ|YNlѥA;N Žپu4~)Kl7\><$|GwLَq` pWܬ3i/̙fW3)8,U RB}vxǓaz"6X.XTl,P$~-<$?^M/!ZØ pʢsuGpw7GW\,Oh:FpR#{tZґSLB;K$4(= '#3S:EwUxUSvH8_˫ 7^V †R*82kj˜x.f.L2w5uR B8jX?ąP|K8Qb֐ږIk衖֌ ozٲcleȆoLp܃/ɩn#vL$[}3(]!ʃAfPBm:GE:Xڲ N7WHaa4ͲWc,a" eSkr_pJT'6aR9xݐ{fl >]ajL3b,ӓ^>ǮːX}~Kwi]Ѓa Yߧ.7 3)ZD8")'/(ƪ3oӴgO֢ -N tn::U`2!i*dEfEܗEw%IE_3Is"x'֖:OlF<+NP,_FG 43FÃ#A G &A(5yaDs8Hɐ_-ny)!G\n1+iʠ@xiܧ-rxF%ja,^(9R4)U', sK3{MQ*FNV'=زϹ48Ur(4FOѡ`<n}$Շ,)Hy: >d|oL. Ơ'Qt5 p#Do dҲGͧ؀84 :uƌp&ixL16s#ݜcj i~i8A,(6`$ P4'(+[F^=9D8hO-+JUiG}JL}V-Ӆ.rD[0S&XL߼X,.M4F[BCi0{mj"m^\RyuLUWrΜxΞvf0o: dG\o 1'Q`zv*N.@Y!K8T#h0Y0"VcBWE-͍v8P2F'{)<{>mKe@/sGƵ%21M Ե6pw|q4NKTk ^xAr;'`_S, ƞBYeH㆕TY0$c MnL7@Pʫa~\+:0F⪃\Y3[zh_?bHn;?I ?\={kFcیAW<9N~~R&ǟC 0U!3BF qT[[ ^-5$4OP'N7"g%){ߤU?}SUk&ݖVLol)O5 lf@T\x=FG 2MW JS˫'oև+ͫ;|.]h_+G9ab:+*fI q w3z:ޖnX20Ù[-~zLk98?:lu~*-gqʼX|'ZJr2'*m8T(}cѽ;`|]<ɀ9,Ws^<; $ O׌ ߬=ZFа:n\;4%Ii z I)']ަ(Q XUR/Osi$Hb9kr" /D +IBljK;[59Hj.S^7 cѹx= !f`ntZ$JJAa bQ,ś2/N4+7/ː4|nA}hX?Nr 3$tEq;oi]% .W"2l~9LOe 6b;yƚ)ԭ4-R³"⺩QQ1"Z.g=yrlWLTCoz8tc_CvTSHyXvv&<| -UmCtKńLRrbldhD 9]DnIIaxa)AJVlGl@&Ӱ]nƥh5[n^G;_1ˋ޻V'Xl"p:xLV\ I=-v3eZ?0>LlVW7 T9+;MZxQ KU@OKsI9R> 6#_,sgtk gs'y$`$8a,18O(51*pP;5JYIi4Yv=-l.?VЙm\ `Oف_GDܒ1`0-wd ߶U2 .f󤄵y *4ڣB,֑c#UQn^T|9]F&}ݜD: xGxMwOiR[ͳTĿpJc[2 DY5Pث2pgkV3)07I3Y5%3=f&DW(IvNmG6kCa+ VRM~q&$qCr1/#6 }-Ob&͏0rErL^浇 MآH)yX=fPY d><Y$r)8So')lm*O;L % މ *.2t5@ť*0㙌#r_A̟iS_- նAO!ѥu̵K$E" GB4lV2J{?ͨG=,LgDr[y~ N7$Qd\2 lZ!b{[5K)`)̅}yMn=Vh$$@:0ɯb*nQfq<N箩5UdC'y8E#DupB Yc"[ |vHh j<\"q̜m?UoϪEb aҶ 2Q]n`rʫQ W{;?Ӎ% Uh/2Wg}]# e%H͏[BVvd(biod;l)욊vmO7Wbv7As_??S%Xd?TUˉ%.]7ef}ui~+>7ߺI'˟h 5$撐f5BpIz\'Ӑ^ˬYxKC-wKBuPhUm? ҄t+Fo$f N X xKonva- yݺb:me[@Ğz"r"@`95_a ׎vg<_SJ )959/9&[QCګw]7y Sz~kNPtBGhZYIF񄑹rI WX/m8;EOo1Hy$ՓoTL=Dl5 \Y"7X'ZPl&l(Eq5 i~#v?{ Vwdy6ѳ#wQ߫ބ$:LXqhN)_X ۖ5B>ENAtlf`Mi3ez6rj /bRۗ!NAq]iҴl2W%+iKlh!M Ĩ.)bX^%ћӳo~F٠thk/9%:6~=L@;0[|Q֔n%/QE1w]84dV|Hd4`3j LZ\+'dhbɣ(xxfEܾn]\CfcE6i9 m xn9[vIL.ankGM^rJyZHrլք|" !S[yNls[<;ᲊm?Bi3`Q432YF]dg HN 1]8$,]/^AQ ePIފ}4B>7$15R X*ƛN~$lFQs 4XUQm4 zd\ƻff<7[pkǐ%S$/q̫M|@2')C!53^sٲd'B'Ū%Q%TA Kn%X`<1 ba>tIҨvETxྣʺ'{x\ЁfQm:dYYudU.׺y!aCB9[Mk,<<ʦ^Κj'w5ז~+QIX@|=eH_ ޔRuoz;۟[1D^T^9żzX*шaeiY+=>tYYSx3uE=K( 2fR9ݝ=8 ;$, -{_]1a%s$QkA !D%*/3IS/ ^8%[d{ZvE]r6ҳ(!uSW+Iwd}xn[mYKb/LW[:NYF՚)x ɔ_EX觎'i9`wN6z(dȓk kA+.^yva4>C#\2eǧXR]aٷs_/y-}V 2,t¦%9 :AEd65_\!fsm!*jNEo!(^Nj |~ua 1s!!XQ$&3ǒ?PLAfZc+xJ.ĚmBQQ6Y>.Ԩ -9[Kl+TSpqr r=V|T(8W#waU{Ò?u1^ ~2;օMS2^Gj|+8mroYΣ7;yut́R!I&|?>Q7\HHXD54QVC)S -OXs\NcVK+l[t? 4GF֒Ϗ¨e l?Ak-yV{9#ƵB[-kj;_|v2=`B- ?v uPN!(ilt{u˄=P^8e(y64̋vNPL\IZ4zrbk!\ں_ Ʊ}Zj~riXrt]k[AEcsYY,zlט Jp; Xu~tTiހ(͓Cfg.wCR)c[Z7?!85}bF}5W}9!)3JO6F(ihhO^5jޣHqі'*3h&)@8Ro$c|ӵdhcdfm:N?Sd^s/MsJ6l֏^r(PeS/g}|Ⱦ'DUEd4ㄛw|#/tgFNVhNJԍW.c~)gJw๨ZưY@6 dy3+|QF4 v~ȴ 8ڧW&vD$hj+hU-jϖQm7##i@4瀠Z8g}A^}s1ݝ)(g3gɛdݥohXh 2Jd7ڨ-pFPfdhR*n6M8\pGkyWe7u LOQmJ%y(Sgg ~{{"mlo7ewx񪃶Zn ( ljsnG[y` Y!9>A?^!^&H,_eѣ4 BMiBľ79^We\>$G[fU++|m8z g`+nVia膒9bH>B\GK挤g/CLo_GŎhnĸ92Y&jLϕ`i'gx8ouQ%m}Dwg0W' 8EũAD2pnɧ0V3n)g}*7,]X?s1Fdk6ycd)8R.x]s4k߫PVz&iӒ`<1q/TggJ vn%,7dr'ucw6}D6X rU6@pG{ZD!q&VL$j''B.ɯɦ-ʁ̜PCHuԶD _ A)P>DLZ E-%c$_h*9e@?FƅvAԿU7Z$_2=+<}۪]ګeIvr_4qg/pI3qZI:HlԀTM|*Ϛll{2 O[!üjk"}ɢ6Zu9€)N*2p-vסkowhosg1D-+eڛ\Pʉ e=(k*luH=_ 4Nqw$=FlU0mfŠ3Ž/8Pw5LȩN"㭆 VdQiE[ߋ03#RL:Q]T;3p.NPhF1n3 p:Cm֨Ě5{N~ ?WS9p&S_J:ϼJzuD*޲K^ ۯs.M]<ƛmz[0 GKZ]v7?l3꟒k@ f>$YNL(mR4YdKOӘ惺)7$|%GvEֿ7q!"_U"q_ 10~.kMrX^v25PK@v5P 9cϞ1$E\?ٟ  Fq T720nSU~UfރKX *kZlD@"8JPR⌠#)xB٧B$~kUQyb2M|₸/2|ʬRJe&PL2m6] lB /B3vpʙ D&姢UzQI0D %Y q#d-0·MNčKBB|`K=D+YW|K)uFt|#cyPSuL^=WSW(ğjX/`iN+&,my0πަҶ'og;RBl\0K\6Sk 7XGL5NK U_ӭ@bq8O1pvr.<t9/ӴTv3ތXd3(-B{j6;keyI=PPlv}r|QqZnBC5\Jw=X mDJ\ a,FviCAjXǻ {+ci,:d]=v٠lI9Jkp$dxn'ȺFt/J"^{Rd^DzPcȓmm9gu"&REQG2w,Kai{+f#_LR 0:-KCKz,S4%5$J<к0|MixF(4Q@%SV/}YC\y*j H*nȡ%AUlXkSz Z?&w;%.4()jN?S+O+%nqNC7 ] hC!yY$*=ׄٷ Pˊ)[lw7g7h)$}?$0H#TU+ $ΈI OquHyщ>7ROS+iQMCf)udghBPK;C_Ps|PwO,ߟ &+]?!6Gl;'yelWebHx; |ڟ.|H<Ⲅ&m(ks5P_%3ɯs\oqGk^?惈 &]^ 65Xw#y^SSVLHr$Agw1,1&6(Q@}Wj#@+<{xV&h.'Idlx|̱b d1?}y[G஭:lzpO?6)k&Ǭ66VĻ>;|wCmeT%>\%vk~Aӱ#ǯȑ>,0}c))-H1qP>C NBvT,À QdP[\6J_C/%&Ė<Gc1 s3V.opbaɵ%t<΅LF?6Ŝ ҠiS8Ql b9aXs n Ԫak-Cj'j]Е0TiCpԃJ³Cߡ@IĜU>;NֆZ2pt|giFh#Vw|>&zYۼaw3aI$;5c q1QЈa޿$ \x΂xdh?,줟ptQ;~=L`*6UMQAk&3uOT^ V3l !nV!-M0S ѫEkm /!,C9'u$ûڟƯI\h&^jyƋQH RpjRU) d+NV8qt'CGNL2y#/v靨z5]Hm֐a`*TJ15A8b0M^,<.cRH>x[GԖ=qúzvWCnXFC+#*'v2l!Ijd^+}P.9LF sIHEq@(eSx">|#wnHņ+3'9EՋe-DaO3~` 0~?j{6.=$so}I 1%n~a*X[ꗙw-QENΟ^xljgφ4/=GQX+6I輸Qɑ)lFB) 2ueע^]nTw,E-֛ ]%ݩhi?0>[!|Cu6;Sѿf-f=L߻-aok4)|}dO U̺1%5PK`VQUGBGMd'@Ɠ„ . Ab66f EE8S(ekY+ї<9t+cqIsP, IF*sV1$Qp _.qU".j'‚aRWQ4ӻqc JyRjYV<E ; 6uI"[ `4lf%9NqLuI3->$ɽ'W.l=Ng} B26x~_*cO͠J@=0k_^mT(;3:ʎbdx?ޔX /fBI{X  `7:9rȺ˩\#\hG#frP3y.!j"ȾH/nbyˠS (D<٧*ߒR>G~t_~aGq#ݴ~oūnҌA1鎍Ng_ < %g=(֙4 c,!YYO)x, fg_7AЎ82PLM'h-݄[qlɶL}ЕmƯ}q24w[tN-`sͬˆ9ͯD])?%IL'mkJ;7/n՞6!a.wB }ޖ=s8^|аZ0psl2N4̑/G8̄ê\zp[KDY7tW|G2ՙhiXEty⬐" b׎1r_lÆяZ9X]= D# C@z0{x=ɱ0Soؕ۶LQ"f ˶W2m'uI6KC~6$ίI"{:bT0Y"<=C5 3̌w?4vv"}D`^ީ&y.7w|þ_gndyexT1{Qi.G]zL1Y>-b!ՒQYJaezY)M,Ņ%-P e G$[pRl!ٖ»XMTnT HR*=Eq^BÍ".^i2JVgFM`~p&SIJ]4ϊ&$ mriqjIJ䡸:GDrxw:*S݆ V0OEUTPУۭn'^C9Z_Zr Ǵ4\PAYS^hBXгi Ysƕ1jbnp9`EmYB8Z+;p"?l6e'rkt*t0\҂#% Ĝ'ר..ax)Ro-ӝO=lT$%MSwh;*Ìbd?vpe8y0[1`#y-q}c!Ў)RSV=ۜӭ;٤8ud6Ջ"NL^чkL5s~EW#DNIGZ /;TE].mMW֌C716-2uvt|^oRAY+vb*X=M?lx@\NǸ1X5{^{Ď I!c)l0#q"۴C4M \yc4C ܾmޯ0mutBMx1pJeY$6rrHA#l+ѽ[B M٪}ѽd{M@f3A- {ee1P A^൙e@@'(F*Cљz&ݜƀMw#I~|qH&Vʷ܁{Z ם^idl~@:$~" =ӎ&Vhn[HJfܓNzWY6dejsoXu6;6 ƕӷS!l˵x+&x87y-[1!.6;e׫7 )p: ni2(0-S4RY bHRzb n/y#C~z]TN;[v%~ul쒭]:*LMml^Sg%f@IO¼Ut/=CŔ5a/jf %tm? 쯊sזSq*t=Y4u]ЊIImzƵ^ ӷy,7h.cxHVK$(#\xZ}qv5pᨧȚfJsG~6}z³%(gH6bW]]'G蕽]F7!DdWWդg_Igi%N]G5be0u_hsO݇3e;ʣcH{w:,pK 뜻mhy?75A']caTuw|{vQEsߡ֐yH..81Fԧq 񁊌[o2QC.VϡLc" F{C}ZyaW84m)wӿ2ǿ^Z ei-8&nlnI x~Q5+  )ZÿPAtʜi1bﯮ;u7QdqfQsG7BeЌ Cb>4Ⱥtң.9[!Byq_4¬i[+A8[RǧIjxkRZJ?D-r;m^ m܋[&S+u|*Љ pf+P[}s/Om@v<ډ?eGnrSqqdPtrOcB q⑙]B)`9䞲"IFU~YF)\rjT䩚RMf:˩)rՁS88/u0Oa~m]̑a,&rZP+ ;gQ'#vi{>=FMv"$Ƙ]#^iWEđM S F?֓AKpnaHP6K orp9Y@+r/{T.Bsoߥ/=[)lX yR8Ŷ8!"Q _ٲX|@z$/wbJUR=w7 K"Bn'Rao!:d* kx GǀPh٪IUЬA%{ᐰw5oG(e͡G]| ϝ 2D;.o7*CBR(j2KgfOˣ6벎"D;5.U#6#Cfnѭ`Ԕ'9`Vyqrj $YTo<@nţDLOz:I9lc0bE p0v΀+5m{IʊD5.,|F{_+[[Ԡd! 3!rkE%&Q 4Sɱ īN XSEeBc5ho Q:·a½d՞#NR`Ilp`8^_g9A# %'' QD㛶E&j}LA+6Y .dtmXi.eC6CfC1Ƒ>%[iLWgJȴJ24v^qǭ&kA-H3D-b^ڨObJ0ҵh &{rG)--eXb%ĺYZo?c>*ղ{K`6*9hJz=Lj8Ruc)՗ў灄7ӱt9hO-L_ PbP*e8X-;DSa ~DJ4܈'<3pcJ!<=0T& E1ALҾ`Y@2Kg^/%dW?,U2@ 9z) ć3QCQf#$i$!詿|i!Mwxw+f{!V Ok@(7j5͌r0YRה 1]VV;T_)Nu &$xPU+0|=ĶLmC&ZV,: 2|^{@ybvةܛS@*pnNf|ERشhL=HC8>BxvDTzQѪxʝ8NJ)2 w sFXne["rN,ٕߋ hlF` | ye D^ZDv'u8yň#au:'B>Z-7{FJ0#Ҏ<>IL߼,(yH(>f*9GHDd2G[@{I)颖PٲSŅn^+]A&`eElEIr.=_8 z6g UzӉ.l-#نbVh^Hso[lEu)_GPxu*'i$N^k%9bܜA\z.8|B-~h^($;\D4CkƦg9HY.V#^/H ?.7J:TJ<ܸҘ}qIwAUrե Lv s?)mQh+(\;=1'CN:eg@YFibʻҿpЌ(iOH] )mxGM?1ʖt  ag74ֈ>oAeD3Q"@<-אT>evL=ʥ=NCTbVKykf)parI0=n\R~ ~؈&%MV~:\Bjִ*gv'a(cU'-)4p]c`0)\b7 MFA{(vl$5c~<Cp,H뭓$Cr A׳cZ1CaM/_ib|y XH#0 $ₓ⚥ 1l< r7fQH(&IGf(]޿sroxshwd+]=ܚl$]byAjMoV y.vvkjwVRִ.tM?3S6;afGI#ӡRnw+9֥K7T3͑%Ss|Fi fg;Msl_Eru1rc ):2o (|l笯 {?Io*+5Ґ]AUz?Hġ QJq(eyFk v]!w4Kfg,|t%Ӓ"ƝK‘,v|q<I4ύa(ؤL& e8'ۤ$gLO~4W+tEDӌ/~=XR_CGfDlgfK[HV M7JږZD"q!d~ J)C5UU(g)gmW&*aы蛪>1(&&?bM-jJhɅDq=lyELTJt ã[ֻDiUC y<'`WҸc>Zf}; ds]2^0m5!m]Vry)}|p6Z?'Q|b<~ e[PΊt MJw|,E؆}Xa#-K~ie%[SޱN(D< O=q3y_.}1cZ}gn1e,̥@{L{P*vFH^F !aeTq MXaͤ9I6SG7ySЬUxU*ELܫ*+=VbC>D)u.bOj@80s+fgjߢ)ԐРn[<t\>g ]D(=_a9] -̖^+7'm?7N̕i mP}gm.G C#ZaZ 'LEЁn߷[\xt20J(^Z`ngV7- %| f~,s7/߂:,8{o "no1SXAniḰnP򚴜x>}Mkf (v%IZ[*C1dZyVs25˦,B'E.Q(`,M5D1 mZnhC<I#6_y#Fs AKrr ‘&iIw@$R'HoIêky"tŞLgCW;H -]cybH}K& aDt_RJݨ@s#2ӡ1)Mz4Jű@֭YR(#r]'fLRTnbx ۡ>i(믽 a9^5CSg_~ԗQxtw0P*8VnBjl!ir}ES5i~/ ʗʖ2j& `1tH`gE(>Nжj*mק{%uHenʬ$Dh9ܔmNoA춒6sg+y[=j<'(B P3}&1@:4 'M$h&(բ5"qf&8Iq{RyH 9C:ľ6FM oh+5M&|^f eTo] k;Ws2lMYr#J3ME ]w#s'm~FDR.y"똳?eEj#Q)yf4I]ÑeEs):K7}i{&!*P*|j@<%vIי*-DM񉶏YTnZǶ<}םRkQ03L\ދυmM9 j8~{BtcwhvkjMnͶA;[f{'ޭc\6?ך(6e0RRj:`gUߣ@~._ TT,&4Qذ?@ڏPO#F-pmy(}%eZ]^{%-AOhTDQX/#ۓ*A[6;M$^E !cd<ss3€߂L J'yF#aWB0RU-ֲ# l4jWOl S+ 01Yf855c7#-& z6Rތ|(Y$bB+zN)=fnTqctr7 ܰJ9}dOFɎش1|Uj;*e+WGy30[ɦ.anv^֏s2]4p&$2gFƶ0=5Ju[=`Iun 3C ?l nqHY'U/zD/=9/(2aXBY=Da+[`F7iO;G{T9z؉j67>=0p>OJ+q^-[LakBl8v0c89a1>),!,PK%* G] yeP]o8^,-nw^ < pocMLF=_L~y{f5.ci z L_7+$2eKL!El}Y/d"y_ꦼZ2]"0ȐvQ)h@8)V$MآD7ݝÀѝ{Q(qs,ؼ+c;{^mK=8E7FnJ 0v[8: U˪^7wpzT׽JAi{O!3}YOl:/ӊ^le"q" sB AD3! le0}T).BDhj/)ճ.`cK~|~N.E8!]%{Ai 4A3ҿ0"@圮f:a#9ᘒco1{xv5diXd@VR .{:_ H_ɢN݆1c*0k1hֲMS%<=$҆MJIv )T{&mdvXDž򦶧0 fbwJ/,*7mW\ nK.Zʤ%~;85O޺% :^תP*"/tؠuYؾ85YŊ^~$69AA'BL"vkdCH/EM>j?y%HJn~eW SODW~ubF<"]p;=Jյ\F ]dpYFMzehJ w4g= @P( MBpBR'FL}.]VMAKKd~qajyP<(OpB3WasrWaW GG1d`|QZOT):]npɼ>0>E*ܜ6\Q%x Bk<ؒgVP_Qu 옂G>ufzP)8^'SQK*=Oswm']#GRq?$dN(7I կZ^l38du\w6ٗ zߛt.@ '~@9 &`a C Hī(3(fO^BJa90犙`ݔ7Ď9혩]\@;-@&ORMJa@S;@.@)a31+RR6,V{}[^/n1:F%u,v7O}r=&j<|F\kW@9ٶJXa*mHJ- WuB%^Yy$6 AA76c'eMJQʛ$ю,UslIgm [ˆLhOoԚ`&sRschVW:4釫|y1Q$hOIwn1mo_{*i?Up 3^2\m[ӌDz6Fx#3$F {L`?}r6LPƐbm(ģ8y3q0)iy Sr>XBjO% KӚr<0afW|92-:27{q՗k&}t>%|mgA5BS*4ϣiDV[Jr&61O>8ú{et/Ayl`K?Y{Y@l﫾{V5=Ne ۺ0 ,ʬ,GWXR>]V 8ďYr*!itV6"C؟Pt$@G2qJzNH'ZB vMcѷFkg:o.2wl fӢ>=vB*~I=?lvŅǹ .3&F#Hm. L//8N-Y]NJ4-- ԅ(^(:bO6C8aK7md:D5R-!WQRU xx0(v!GD'#~z>9Ac6J9ڛ_:]IO~9J53Zx 7 G@2!s4< ?2,R +V.Z}d|NL$pg/XYݢ9}1%S9V=-86uS_**9EmBi܊ƿB'4+t ?k>% 7 ~۷QsxQl6Ug LRźqSL[|_*i\(fm dF N}lb. F6<FIM|Uo>Kgbk8@[@?1SƧFw[OC?Ul![tVa9oT'r=+dkC?QϪ&EکT/ aSSLGe˖_Ρ ,>6.襆Zj&b d$Y !/-ԉ^E)v6BI4T46>:;o)WB,7'B#jz75#.IDqD&%Y\EmvL_i=jj..;hנ/sؿo߉:쯟 +uFqr}ݘLqVR`/% {J0TeUn7$ϘGlXu&m#PtX'3f <^QT1t;͟Z{?_tjX]U_ 5g D yKw+I0Y`QEvv'n&=jE HY=LNֲ0aUD!4~o6lAxفب.I䍵X&&Ze&{|T~ gnN,;M L*+V郠vr[AX1{|}-"c q+:U^d{ w2y(n9{$#n]u5"jNШ nC=vU߻)<Т۴$pW>;͐ q^J ^ ݛ0zq B=+QI|4>-$[9BOWUK\LE3.u23WD5[,6O0 qB0ycaIAmÎC 6Xz 9%}^k$JH#@O@8{ `Hmnd6[]]' C\h=*(|oR;b5<`vD.+[Z_cW_8 x :<=UӪA49mInkT8F R砿um%+F JSXvx0$98 S!zzL PFH \]fyp]{~N]q}rU">8F@p jc%uFp.=Cp8XzeپcyR(U'dlp 0T9ΞrD!z7pi~SI.xQBRqw/yq%pL v%KnեV)Aq1{աA Ѱ8!TUظ84{JBS T06yESe;] 爮ZE>zb/MUGN*JMՏHoΰÁ1mbP(&"Xvin2WB^vJwH?LH@hD̮WMRbk&_v.Р-pJ'V:!뻡\nc} +m#{[5@6iD٬LCݐ%`3kkr%5g/r|㦇NU7\cw=:pjKe '?$ fsxW.Hܲ'U AM=Rң #7wreZfʎ=0lO Zr ͩaWwU?13@d+x>N]夓Y5ĕה~z,;ϫ2ԍʯ{< V$QVw/^ьc]< Y,JO+p Puj#N;r+gpJ|ٓa3v^:=*pMְA-ܶ]#'L"aR~Wb/8QrHW ,A^4w*޽$E] ۦ.y!twWH0фD̈́8x(NZI8u eX,źQ ݽ4:at#zPl/<LzPPP1ù/ /蝼 g{ QoMqv3eqU1ZDikG ʍژܿ#Upq$Qq[C9D-`4#~Ù>>Zͱ xnlXmpRˉ%36+O>Ư%bxe3Sc-,acIT~aǏ|y0Di- l*<n r(>F~b6]eC/tpX/rmt~m1z~Ѵ%p%= L( YZ