nscd-2.31-9.9.1 >  A a}Wp9|8]U҃$94ԗyoDu:A>_cbvP#%V&N=M I[BBVHo}lg9À& O:MӒ_je&jCi 0h@Ui)%58 mJqc ^mzX~ Wmұj Z!.ȝ%(O{af6萮: 0ݏ)ƛ;_X%r> hyHuL(oA Xjp῰bU,&37fe7e0656af7277fb1797c2514415486d9bcc86978e8af1d4b2a7576ab72ba5893591081877994163155802203989adc77b96392bԈa}Wp9|zക:LQWa/ h#KhFDkP6';e*ݟ32ahQeT d#<'iT7kxC6}y۸xFTyy1n.l?L}ZpI?d   .  GMU" D A   D S pB\$(89:=> ?@B%F+GDH̀I̼XYZ[\ ]H^Ϳ b2cd[e`fcleuxvϴ wxyXztԄԈԎCnscd2.319.9.1Name Service Caching DaemonNscd caches name service lookups and can dramatically improve performance with NIS, NIS+, and LDAP.a{wibs-power9-12SUSE Linux Enterprise 15SUSE LLC GPL-2.0-or-laterhttps://www.suse.com/System/Daemonshttp://www.gnu.org/software/libc/libc.htmllinuxppc64legetent group nscd >/dev/null || /usr/sbin/groupadd -r nscd getent passwd nscd >/dev/null || /usr/sbin/useradd -r -g nscd -c "User for nscd" -s /sbin/nologin -d /run/nscd nscd if [ -x /usr/bin/systemctl ]; then test -n "$FIRST_ARG" || FIRST_ARG="$1" [ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || : for service in nscd.service ; do sysv_service=${service%.*} if [ ! -e /usr/lib/systemd/system/$service ] && [ ! -e /etc/init.d/$sysv_service ]; then mkdir -p /run/systemd/rpm/needs-preset touch /run/systemd/rpm/needs-preset/$service elif [ -e /etc/init.d/$sysv_service ] && [ ! -e /var/lib/systemd/migrated/$sysv_service ]; then /usr/sbin/systemd-sysv-convert --save $sysv_service || : mkdir -p /run/systemd/rpm/needs-sysv-convert touch /run/systemd/rpm/needs-sysv-convert/$service fi done fi if [ -x /usr/bin/systemctl ]; then test -n "$FIRST_ARG" || FIRST_ARG="$1" [ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || : if [ "$YAST_IS_RUNNING" != "instsys" ]; then /usr/bin/systemctl daemon-reload || : fi for service in nscd.service ; do sysv_service=${service%.*} if [ -e /run/systemd/rpm/needs-preset/$service ]; then /usr/bin/systemctl preset $service || : rm "/run/systemd/rpm/needs-preset/$service" || : elif [ -e /run/systemd/rpm/needs-sysv-convert/$service ]; then /usr/sbin/systemd-sysv-convert --apply $sysv_service || : rm "/run/systemd/rpm/needs-sysv-convert/$service" || : touch /var/lib/systemd/migrated/$sysv_service || : fi done fi [ -z "${TRANSACTIONAL_UPDATE}" -a -x /usr/bin/systemd-tmpfiles ] && /usr/bin/systemd-tmpfiles --create /usr/lib/tmpfiles.d/nscd.conf || : # Previously we had nscd.socket, remove it test -x /usr/bin/systemctl && /usr/bin/systemctl stop nscd.socket 2>/dev/null || : test -x /usr/bin/systemctl && /usr/bin/systemctl disable nscd.socket 2>/dev/null || : # Hard removal in case the above did not work rm -f /etc/systemd/system/sockets.target.wants/nscd.socket exit 0 test -n "$FIRST_ARG" || FIRST_ARG="$1" if [ "$FIRST_ARG" -eq 0 -a -x /usr/bin/systemctl ]; then # Package removal, not upgrade /usr/bin/systemctl --no-reload disable nscd.service || : ( test "$YAST_IS_RUNNING" = instsys && exit 0 test -f /etc/sysconfig/services -a \ -z "$DISABLE_STOP_ON_REMOVAL" && . /etc/sysconfig/services test "$DISABLE_STOP_ON_REMOVAL" = yes -o \ "$DISABLE_STOP_ON_REMOVAL" = 1 && exit 0 /usr/bin/systemctl stop nscd.service ) || : fi test -n "$FIRST_ARG" || FIRST_ARG="$1" if [ $1 -eq 0 ]; then # Package removal for service in nscd.service ; do sysv_service="${service%.*}" rm "/var/lib/systemd/migrated/$sysv_service" || : done fi if [ -x /usr/bin/systemctl ]; then /usr/bin/systemctl daemon-reload || : fi if [ "$FIRST_ARG" -ge 1 ]; then # Package upgrade, not uninstall if [ -x /usr/bin/systemctl ]; then ( test "$YAST_IS_RUNNING" = instsys && exit 0 test -f /etc/sysconfig/services -a \ -z "$DISABLE_RESTART_ON_UPDATE" && . /etc/sysconfig/services test "$DISABLE_RESTART_ON_UPDATE" = yes -o \ "$DISABLE_RESTART_ON_UPDATE" = 1 && exit 0 /usr/bin/systemctl try-restart nscd.service ) || : fi fi exit 0 X A큤A큤A큀a{a{a{ma{ma{a{a{a{a{a{a{ma{ma{ma{ma{me2cdfafd373d24fab07018d0e95dd49510ea6c992b7be2b0611ab23bbc2750b579fe74962fbce2fa9b2a4b92f693b2fd42cbc2ed331fae268de7104879a72df879c9cec5dd2414dcb76d11e75903aa6fd9b7785c897cb9f853edcb140a71b7792a94a5df14cc5bb2bef1627b1b6447bb2dddac6ca6c1ce70ce7e1c43fed69ca8/sbin/service@YYYYYYYrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootglibc-2.31-9.9.1.src.rpmconfig(nscd)glibc:/usr/sbin/nscdnscdnscd(ppc-64) @@@@@@@    /bin/sh/bin/sh/bin/sh/bin/shconfig(nscd)glibclibaudit.so.1()(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.17)(64bit)libcap.so.2()(64bit)libpthread.so.0()(64bit)libpthread.so.0(GLIBC_2.17)(64bit)libselinux.so.1()(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)shadowsystemdsystemdsystemdsystemd2.31-9.9.12.313.0.4-14.6.0-14.0-15.2-14.14.3a@a@a0`ݮ@`a@`H`H`?z@`@_T__/@_O@^)@^@^{G^g@^`^U @^&^]@]7@]|@]@]:\@\\]@\@\|\~d[[ͻ[$@[t[r@[qr[^[!@[@Z@ZJ@Z2@ZH@ZZ Z}@ZxG@Zp^@Zp^@Ze@ZKt@Z1@Z/Z@Y@Y@YYܶ@YdY@Y@YY@Y@Y@YW@Y@YJYYw2Yp@YJ_YA%@Y.@Y, @Y, @Y$$@Y"XۡX@XWw@W@W@Ws@Wk@Wj}WYZ@WL+@W3W0{WW V@V@V޾Vm@VIV@VŲ@V`VVV@VLh@V.V$@VVZV VUYU|@UAUȒ@UU@UU4@UUv@U%@U/@U:T@TPTgTܕTء@TO@giuliano.belinassi@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.derguenther@suse.comrguenther@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.dematz@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.dematz@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.dematz@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.dejslaby@suse.comschwab@suse.deschwab@suse.deschwab@suse.deidonmez@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.denormand@linux.vnet.ibm.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.demeissner@suse.comschwab@suse.deschwab@suse.demgorman@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.de- Add support for livepatches (jsc#SLE-20049). - Enable livepatching on x86_64. - Generate ipa-clones tarball artifact when livepatching is enabled.- 0001-s390x-Align-child-stack-while-clone.-BZ-27968.patch, 0002-S390-Optimize-__memcpy_z196.patch, 0003-S390-Optimize-__memset_z196.patch, 0004-S390-Sync-HWCAP-names-with-kernel-by-adding-aliases-.patch, 0005-S390-Add-new-hwcap-values.patch, 0006-S390-Add-PCI_MIO-and-SIE-HWCAPs.patch: [15sp4 FEAT] GNU2007 - GLIBC: Support for new IBM Z Hardware (bsc#1191592, jsc#IBM-869)- mq-notify-use-after-free.patch: Use __pthread_attr_copy in mq_notify (CVE-2021-33574, bsc#1186489, BZ #27896)- wordexp-param-overflow.patch: wordexp: handle overflow in positional parameter number (CVE-2021-35942, bsc#1187911, BZ #28011)- s390-memmove-ifunc-selector-arch13.patch: S390: Also check vector support in memmove ifunc-selector (bsc#1184035, BZ #27511)- Update glibc-2.31-HTM-vzeroupper.diff with a AVX-SSE transition fix.- Add glibc-2.31-HTM-vzeroupper.diff to avoid VZEROUPPER in the AVX2 accelerated string routines which cause HTM transaction aborts. Instead use EVEX or SSE. (bsc#1181403)- nscd-netgroupcache.patch: nscd: Fix double free in netgroupcache (CVE-2021-27645, bsc#1182733, BZ #27462)- gconv-assertion-iso-2022-jp.patch: gconv: Fix assertion failure in ISO-2022-JP-3 module (CVE-2021-3326, bsc#1181505, BZ #27256)- sysvipc-sem-stat-any.patch: sysvipc: Fix SEM_STAT_ANY kernel argument pass (bsc#1180557, BZ #26637)- aarch64-getauxval.patch: aarch64: Accept PLT calls to __getauxval within libc.so (bsc#1167939) - iconv-redundant-shift.patch: iconv: Accept redundant shift sequences in IBM1364 (CVE-2020-27618, bsc#1178386, BZ #26224) - iconv-ucs4-loop-bounds.patch: iconv: Fix incorrect UCS4 inner loop bounds (CVE-2020-29562, bsc#1179694, BZ #26923) - printf-long-double-non-normal.patch: x86: Harden printf against non-normal long double values (CVE-2020-29573, bsc#1179721, BZ #26649) - get-nprocs-cpu-online-parsing.patch: Fix parsing of /sys/devices/system/cpu/online (bsc#1180038, BZ #25859)- power10-support.patch: Add support for POWER10 (jsc#SLE-13520) - iconv-option-parsing.patch: Rewrite iconv option parsing (CVE-2016-10228, bsc#1027496, BZ #19519)- Update to glibc 2.31 - glibc-2.14-crypt.diff, crypt_blowfish-const.patch, crypt_blowfish-1.2-sha.diff, crypt_blowfish-gensalt.patch, crypt_blowfish-1.2-hack_around_arm.diff, glibc-nodate.patch, powerpc-elision-enable-envvar.patch, s390-elision-enable-envvar.patch, crt-nocompress-debug-sections.patch, resolv-context-leak.patch, dl-runtime-resolve-opt-avx512f.patch, libpthread-compat-wrappers.patch, math-c++-compat.patch, remove-nss-nis-compat.patch, eh-frame-zero-terminator.patch, ld-so-hwcap-x86-64.patch, assert-pedantic.patch, getaddrinfo-errno.patch, resolv-conf-oom.patch, dynarray-allocation.patch, nearbyint-inexact.patch, nss-compat.patch, nscd-libnsl.patch, malloc-tcache-leak.patch, falkor-memcpy-memmove.patch, aarch64-cpu-features.patch, nss-files-large-buffers.patch, sysconf-uio-maxiov.patch, glob-tilde-overflow.patch, dl-runtime-resolve-xsave.patch, spawni-assert.patch, x86-64-dl-platform.patch, glob64-s390.patch, tst-tlsopt-powerpc.patch, powerpc-hwcap-bits.patch, malloc-tcache-check-overflow.patch, dl-init-paths-overflow.patch, fillin-rpath-empty-tokens.patch, getcwd-absolute.patch, memalign-overflow.patch, stack-guard-size-accounting.patch, libgcc-rtld-now.patch, res-send-enomem.patch, glibc-fix-avx512-mempcpy.patch, i386-memmove-sse2-unaligned.patch, realpath-ssize-max-overflow.patch, localtime-2039.patch, math-remove-slow-path.patch, aarch64-hwcap-atomics.patch, glibc-fix-aarch64-build.diff, absolute-symbols.patch, x86-haswell-string-flags.patch, pthread-cond-broadcast-waiters-after-spinning.patch, mman-map-sync.patch, mman-linux-map-shared-validate.patch, nptl-setxid-error.patch, pthread-mutex-trylock-barrier.patch, getaddrinfo-parse-ipv4-address.patch, japanese-era-name-may-2019.patch, force-elision-race.patch, regex-read-overrun.patch, regex-parse-reg-exp.patch, 0001-S390-Add-configure-check-to-detect-z10-as-mininum-ar.patch, 0002-S390-Use-hwcap-instead-of-dl_hwcap-in-ifunc-resolver.patch, 0003-S390-Unify-31-64bit-memcpy.patch, 0004-S390-Refactor-memcpy-mempcpy-ifunc-handling.patch, 0005-S390-Remove-s390-specific-implementation-of-bcopy.patch, 0006-S390-Use-memcpy-for-forward-cases-in-memmove.patch, 0007-S390-Add-configure-check-to-detect-z13-as-mininum-ar.patch, 0008-S390-Add-z13-memmove-ifunc-variant.patch, 0009-S390-Add-z13-strstr-ifunc-variant.patch, 0010-S390-Add-z13-memmem-ifunc-variant.patch, 0011-S390-Cleanup-ifunc-resolve.h.patch, 0012-S390-Mark-vx-and-vxe-as-important-hwcap.patch, 0013-S390-Add-new-hwcap-values-for-new-cpu-architecture-a.patch, 0014-S390-Add-configure-check-to-detect-support-for-arch1.patch, 0015-S390-Add-arch13-memmove-ifunc-variant.patch, 0016-S390-Add-arch13-strstr-ifunc-variant.patch, 0017-S390-Add-arch13-memmem-ifunc-variant.patch, prefer-map-32bit-exec.patch, s390-strstr-page-boundary.patch, ppc-tle-htm-nosc.patch, posix-Add-internal-symbols-for-posix_spawn-interface.patch, glibc-2.29-posix-Use-posix_spawn-on-popen.patch, backtrace-powerpc.patch, pthread-rwlock-pwn.patch, manual-memory-protection.patch, ldbl-96-rem-pio2l.patch, dl-sort-maps.patch, dlopen-filter-object.patch, glob-use-after-free.patch, nptl-setxid-race.patch, nscd-senfile.patch, ldd-system-interp.patch, abort-no-flush.patch, fnmatch-collating-elements.patch, nss-files-long-lines-2.patch, iconv-reset-input-buffer.patch, nscd-prune.patch, syslog-locking.patch: Removed. - long-double-alias.patch, glibc-nsswitch-usr.diff, euc-kr-overrun.patch, riscv-syscall-clobber.patch, nscd-gc-cycle.patch: Added.- nscd-senfile.patch: Fix concurrent changes on nscd aware files (bsc#1171878, BZ #23178) - nscd-prune.patch: nscd: bump GC cycle during cache pruning (bsc#1171878, BZ #26130) - syslog-locking.patch: Correct locking and cancellation cleanup in syslog functions (bsc#1172085, BZ #26100)- nptl-setxid-race.patch: nptl: wait for pending setxid request also in detached thread (bsc#1162930, BZ #25942)- glob-use-after-free.patch: Fix use-after-free in glob when expanding ~user (CVE-2020-1752, bsc#1167631, BZ #25414)- dl-sort-maps.patch, dlopen-filter-object.patch: Allow dlopen of filter object to work (bsc#1166106, BZ #16272)- ldbl-96-rem-pio2l.patch: Avoid ldbl-96 stack corruption from range reduction of pseudo-zero (CVE-2020-10029, bsc#1165784, BZ #25487)- pthread-rwlock-pwn.patch: Fix rwlock stall with PREFER_WRITER_NONRECURSIVE_NP (bsc#1164505, BZ #23861) - manual-memory-protection.patch: manual: Document mprotect and introduce section on memory protection (bsc#1163184)- backtrace-powerpc.patch: Fix array overflow in backtrace on PowerPC (CVE-2020-1751, bsc#1158996, BZ #25423)- posix-Add-internal-symbols-for-posix_spawn-interface.patch, glibc-2.29-posix-Use-posix_spawn-on-popen.patch: Use posix_spawn on popen (bsc#1149332, BZ #22834)- ppc-tle-htm-nosc.patch: powerpc: Fix syscalls during early process initialization (SLE-8348, BZ #22685)- s390-strstr-page-boundary.patch: S390: Fix handling of needles crossing a page in strstr z15 ifunc-variant (bsc#1157893, BZ #25226)- prefer-map-32bit-exec.patch: rtld: Check __libc_enable_secure before honoring LD_PREFER_MAP_32BIT_EXEC (CVE-2019-19126, bsc#1157292, BZ [#25204])- GNU1815 - Hardware support in toolchain (bsc#1151582) 0001-S390-Add-configure-check-to-detect-z10-as-mininum-ar.patch 0002-S390-Use-hwcap-instead-of-dl_hwcap-in-ifunc-resolver.patch 0003-S390-Unify-31-64bit-memcpy.patch 0004-S390-Refactor-memcpy-mempcpy-ifunc-handling.patch 0005-S390-Remove-s390-specific-implementation-of-bcopy.patch 0006-S390-Use-memcpy-for-forward-cases-in-memmove.patch 0007-S390-Add-configure-check-to-detect-z13-as-mininum-ar.patch 0008-S390-Add-z13-memmove-ifunc-variant.patch 0009-S390-Add-z13-strstr-ifunc-variant.patch 0010-S390-Add-z13-memmem-ifunc-variant.patch 0011-S390-Cleanup-ifunc-resolve.h.patch 0012-S390-Mark-vx-and-vxe-as-important-hwcap.patch 0013-S390-Add-new-hwcap-values-for-new-cpu-architecture-a.patch 0014-S390-Add-configure-check-to-detect-support-for-arch1.patch 0015-S390-Add-arch13-memmove-ifunc-variant.patch 0016-S390-Add-arch13-strstr-ifunc-variant.patch 0017-S390-Add-arch13-memmem-ifunc-variant.patch- regex-parse-reg-exp.patch: ERE '0|()0|\1|0' causes regexec undefined behavior (CVE-2009-5155, bsc#1127223, BZ #18986) - regex-read-overrun.patch: regex: fix read overrun (CVE-2019-9169, bsc#1127308, BZ #24114)- crt-nocompress-debug-sections.patch: Don't compress debug sections in crt*.o files (bsc#1123710)- ldconfig-concurrency.patch: Avoid concurrency problem in ldconfig (bsc#1117993, BZ #23973)- force-elision-race.patch: Fix race in pthread_mutex_lock while promoting to PTHREAD_MUTEX_ELISION_NP (bsc#1131330, BZ #23275)- japanese-era-name-may-2019.patch: ja_JP locale: Add entry for the new Japanese era (bsc#1100396, BZ #22964)- pthread-mutex-trylock-barrier.patch: pthread_mutex_trylock does not use the correct order of instructions while maintaining the robust mutex list due to missing compiler barriers (bsc#1130045, BZ #24180) - getaddrinfo-parse-ipv4-address.patch: getaddrinfo: Fully parse IPv4 address strings (CVE-2016-10739, bsc#1122729, BZ #20018)- mman-map-sync.patch: Add MAP_SYNC from Linux 4.15 (bsc#1126590) - mman-linux-map-shared-validate.patch: Add MAP_SHARED_VALIDATE from Linux 4.15 (bsc#1126590) - nptl-setxid-error.patch: nptl: Preserve error in setxid thread broadcast in coredumps (bsc#1063675, BZ #22153)- x86-haswell-string-flags.patch: Fix Haswell CPU string flags (bsc#1114984, BZ #23709) - pthread-cond-broadcast-waiters-after-spinning.patch: Fix waiters-after-spinning case (bsc#1114993, BZ #23538)- absolute-symbols.patch: Don't relocate absolute symbols (bsc#1112570, BZ [#19818])- glibc-fix-aarch64-build.diff: Fix build on aarch64 with binutils newer than 2.30.- Add glibc-locale-base subpackage containing only C, C.UTF-8 and en_US.UTF-8 locales (fate#326551)- aarch64-hwcap-atomics.patch: aarch64: add HWCAP_ATOMICS to HWCAP_IMPORTANT (fate#325962)- math-remove-slow-path.patch: Remove slow paths from math routines (fate#325815, fate#325879, fate#325880, fate#325881, fate#325882)- localtime-2039.patch: Fix year 2039 bug for localtime with 64-bit time_t (bsc#1102526, BZ #22639)- i386-memmove-sse2-unaligned.patch: Fix SSE2 memmove issue when crossing 2GB boundary (CVE-2017-18269, bnc#1094150, BZ #22644) - realpath-ssize-max-overflow.patch: Fix overflow in path length computation (CVE-2018-11236, bsc#1094161, BZ #22786) - glibc-fix-avx512-mempcpy.patch: replace with upstream version- Use %license also for COPYING and COPYING.LIB (bsc#1082318)- Add glibc-fix-avx512-mempcpy.patch as quick fix for mempcpy buffer overwrite in memmove-avx512-no-vzeroupper.S for Knights Landing CPUs (CVE-2018-11237, bnc#1094154, bnc#1092877, BZ #23196)- Readd nis to netgroup and automount nss config (bsc#1088860)- res-send-enomem.patch: Fix crash in resolver on memory allocation failure (bsc#1086690, BZ #23005)- Use %license (bsc#1082318)- stack-guard-size-accounting.patch: Fix stack guard size accounting (bsc#1074208, BZ #22637) - libgcc-rtld-now.patch: Open libgcc.so with RTLD_NOW during pthread_cancel (bsc#1074208, BZ #22636)- Mark source0 as nosource in non-main source rpms- Add systemtap-headers to BuildRequires. - Add --enable-systemtap to configure arguments. (fate#324969, bsc#1073636)- memalign-overflow.patch: Fix integer overflows in internal memalign and malloc functions (CVE-2018-6485, CVE-2018-6551, bsc#1079036, BZ #22343, BZ #22774)- fix-locking-in-_IO_cleanup.patch: Skip locked files during exit (bsc#1070491, BZ #15142)- Avoid duplicate source rpm- getcwd-absolute.patch: make getcwd(3) fail if it cannot obtain an absolute path (CVE-2018-1000001, bsc#1074293, BZ #22679)- dl-init-paths-overflow.patch: Count components of the expanded path in _dl_init_path (CVE-2017-1000408, CVE-2017-1000409, bsc#1071319, BZ [#22607], BZ #22627) - fillin-rpath-empty-tokens.patch: Check for empty tokens before dynamic string token expansion (CVE-2017-16997, bsc#1073231, BZ #22625)- tst-tlsopt-powerpc.patch: fix tst-tlsopt-powerpc (bcn#1070419) - powerpc-hwcap-bits.patch: Update HWCAP for powerpc (bnc#1070420) - malloc-tcache-check-overflow.patch: Fix integer overflow in malloc when tcache is enabled (CVE-2017-17426, bnc#1071479, BZ #22375)- Add _multibuild- glob64-s390.patch: no compat glob64 on s390 - noversion.tar.bz2: remove unused source- x86-64-dl-platform.patch: Don't set GLRO(dl_platform) to NULL (BZ #22299)- spawni-assert.patch: Fix improper assert in Linux posix_spawn (BZ [#22273])- math-c++-compat.patch: Add more C++ compatibility (BZ #22296) - malloc-tcache-leak.patch: Fix tcache leak after thread destruction (BZ [#22111]) - falkor-memcpy-memmove.patch: Optimized implementation of memcpy/memmove for Qualcomm Falkor - aarch64-cpu-features.patch: Fix glibc.tune.cpu tunable handling - nss-files-large-buffers.patch: Avoid large buffers with many host addresses (BZ #22078) - sysconf-uio-maxiov.patch: Fix missing definition of UIO_MAXIOV (BZ [#22321]) - glob-tilde-overflow.patch: Fix buffer overflows with GLOB_TILDE (CVE-2017-15670, CVE-2017-15671, CVE-2017-15804, bsc#1064569. bsc#1064580, bsc#1064583, BZ #22320, BZ #22325, BZ #22332) - dl-runtime-resolve-xsave.patch: Use fxsave/xsave/xsavec in _dl_runtime_resolve (BZ #21265)- nscd-libnsl.patch: Remove reference to libnsl from nscd (bsc#1062244)- Drop glibc-obsolete - glibc-2.3.90-noversion.diff: remove - reinitialize-dl_load_write_lock.patch: remove- nss-compat.patch: Move nss_compat from nis to nss subdir and install it unconditionally - nsswitch.conf: switch back to compat for passwd, group, shadow- assert-pedantic.patch: Suppress pedantic warning caused by statement expression (BZ #21242, BZ #21972) - math-c++-compat.patch: Add more C++ compatibility (BZ #22235) - getaddrinfo-errno.patch: Fix errno and h_errno handling in getaddrinfo (BZ #21915, BZ #21922) - resolv-conf-oom.patch: Fix memory handling in OOM situation during resolv.conf parsing (BZ #22095, BZ #22096) - dynarray-allocation.patch: Fix initial size of dynarray allocation and set errno on overflow error - nearbyint-inexact.patch: Avoid spurious inexact in nearbyint (BZ #22225)- math-c++-compat.patch: add more C++ compatibility (BZ #22146)- Remove rpcsvc/yppasswd.* from glibc-devel - ld-so-hwcap-x86-64.patch: add x86_64 to hwcap (bsc#1056606, BZ #22093)- eh-frame-zero-terminator.patch: Properly terminate .eh_frame (BZ #22051)- Disable obsolete libnsl and NIS support - remove-nss-nis-compat.patch: remove nis and compat from default NSS configs - nsswitch.conf: Likewise- math-c++-compat.patch: Do not use __builtin_types_compatible_p in C++ mode (BZ #21930)- Add iconvconfig to baselibs.conf (bsc#1051042)- resolv-context-leak.patch: Fix leaks of resolver contexts - dl-runtime-resolve-opt-avx512f.patch: Use _dl_runtime_resolve_opt only with AVX512F (BZ #21871) - libpthread-compat-wrappers.patch: Don't use IFUNC resolver for longjmp or system in libpthread (BZ #21041)- Update to glibc 2.26 * A per-thread cache has been added to malloc * Unicode 10.0.0 Support * Improvements to the DNS stub resolver * New function reallocarray, which resizes an allocated block (like realloc) to the product of two sizes, with a guaranteed clean failure upon integer overflow in the multiplication * New wrappers for the Linux-specific system calls preadv2 and pwritev2 * posix_spawnattr_setflags now supports the flag POSIX_SPAWN_SETSID, to create a new session ID for the spawned process * errno.h is now safe to use from C-preprocessed assembly language on all supported operating systems * On ia64, powerpc64le, x86-32, and x86-64, the math library now implements 128-bit floating point as defined by ISO/IEC/IEEE 60559:2011 (IEEE 754-2008) and ISO/IEC TS 18661-3:2015 * The synchronization that pthread_spin_unlock performs has been changed to now be equivalent to a C11 atomic store with release memory order to the spin lock's memory location * The DNS stub resolver no longer performs EDNS fallback * res_mkquery and res_nmkquery no longer support the IQUERY opcode * The _res_opcodes variable has been removed from libresolv * no longer includes inline versions of any string functions, as this kind of optimization is better done by the compiler * The nonstandard header has been removed * The obsolete header has been removed * The obsolete signal constant SIGUNUSED is no longer defined by * The obsolete function cfree has been removed * The stack_t type no longer has the name struct sigaltstack * The ucontext_t type no longer has the name struct ucontext * On S/390 GNU/Linux, the constants defined by have been synced with the kernel * Linux kernel 3.2 or later is required at runtime, on all architectures supported by that kernel * The DNS stub resolver limits the advertised UDP buffer size to 1200 bytes, to avoid fragmentation-based spoofing attacks (CVE-2017-12132) * LD_LIBRARY_PATH is now ignored in binaries running in privileged AT_SECURE mode to guard against local privilege escalation attacks (CVE-2017-1000366) * Avoid printing a backtrace from the __stack_chk_fail function since it is called on a corrupt stack and a backtrace is unreliable on a corrupt stack (CVE-2010-3192) * A use-after-free vulnerability in clntudp_call in the Sun RPC system has been fixed (CVE-2017-12133) * fate#322258, fate#321513, fate#322453 - fts-symbol-redirect.patch, glibc-resolv-reload.diff, glibc-2.2-sunrpc.diff, i686-memchr-sse.patch, ld-hwcap-mask-suid.patch, ld-library-path-suid.patch, sunrpc-use-after-free.patch, test-math-vector-sincos-aliasing.patch, tunables-bigendian.patch: Removed- Fix RPM group- s390-elision-enable-envvar.patch: enable TLE only if GLIBC_ELISION_ENABLE=yes is defined (fate#322271)- ld-hwcap-mask-suid.patch: Ignore and remove LD_HWCAP_MASK for AT_SECURE programs (BZ #21209) - ld-library-path-suid.patch: Completely ignore LD_LIBRARY_PATH for AT_SECURE=1 programs (CVE-2017-1000366, bsc#1039357, BZ #21624)- Remove glibc-cpusetsize.diff, no longer useful- fts-symbol-redirect.patch: Fix symbol redirect for fts_set (bsc#1041123, BZ #21289)- test-math-vector-sincos-aliasing.patch: Fix test-math-vector-sincos.h aliasing- add-locales.patch: renamed from glibc-2.3.locales.diff.bz2, drop en_BE locales (bsc#1039502)- Remove glibc-testsuite.patch, no longer relevant- Use multibuild feature - Remove obsolete check-build.sh - glibc.rpmlintrc: remove obsolete entries - Use %tmpfiles_create in nscd postin- i686-memchr-sse.patch: Fix i686 memchr overflow calculation (bsc#1031021, BZ #21182) - sunrpc-use-after-free.patch: Avoid use-after-free read access in clntudp_call (BZ #21115) - Build testsuite with gdb and python-pexpect to enable more tests- tunables-bigendian.patch: Fix getting tunable values on big-endian (BZ [#21109])- Update to glibc 2.25 * The feature test macro __STDC_WANT_LIB_EXT2__, from ISO/IEC TR 24731-2:2010, is supported to enable declarations of functions from that TR. * The feature test macro __STDC_WANT_IEC_60559_BFP_EXT__, from ISO/IEC TS 18661-1:2014, is supported to enable declarations of functions and macros from that TS. * The feature test macro __STDC_WANT_IEC_60559_FUNCS_EXT__, from ISO/IEC TS 18661-4:2015, is supported to enable declarations of functions and macros from that TS. * The nonstandard feature selection macros _REENTRANT and _THREAD_SAFE are now treated as compatibility synonyms for _POSIX_C_SOURCE=199506L. * The inclusion of by is deprecated. * New features from TS 18661-1:2014 are added to libm: the fesetexcept, fetestexceptflag, fegetmode and fesetmode functions, the femode_t type and the FE_DFL_MODE and FE_SNANS_ALWAYS_SIGNAL macros. * Integer width macros from TS 18661-1:2014 are added to : CHAR_WIDTH, SCHAR_WIDTH, UCHAR_WIDTH, SHRT_WIDTH, USHRT_WIDTH, INT_WIDTH, UINT_WIDTH, LONG_WIDTH, ULONG_WIDTH, LLONG_WIDTH, ULLONG_WIDTH; and to : INT8_WIDTH, UINT8_WIDTH, INT16_WIDTH, UINT16_WIDTH, INT32_WIDTH, UINT32_WIDTH, INT64_WIDTH, UINT64_WIDTH, INT_LEAST8_WIDTH, UINT_LEAST8_WIDTH, INT_LEAST16_WIDTH, UINT_LEAST16_WIDTH, INT_LEAST32_WIDTH, UINT_LEAST32_WIDTH, INT_LEAST64_WIDTH, UINT_LEAST64_WIDTH, INT_FAST8_WIDTH, UINT_FAST8_WIDTH, INT_FAST16_WIDTH, UINT_FAST16_WIDTH, INT_FAST32_WIDTH, UINT_FAST32_WIDTH, INT_FAST64_WIDTH, UINT_FAST64_WIDTH, INTPTR_WIDTH, UINTPTR_WIDTH, INTMAX_WIDTH, UINTMAX_WIDTH, PTRDIFF_WIDTH, SIG_ATOMIC_WIDTH, SIZE_WIDTH, WCHAR_WIDTH, WINT_WIDTH. * New features are added from TS 18661-1:2014: - Signaling NaN macros: SNANF, SNAN, SNANL. - Nearest integer functions: roundeven, roundevenf, roundevenl, fromfp, fromfpf, fromfpl, ufromfp, ufromfpf, ufromfpl, fromfpx, fromfpxf, fromfpxl, ufromfpx, ufromfpxf, ufromfpxl. - llogb functions: the llogb, llogbf and llogbl functions, and the FP_LLOGB0 and FP_LLOGBNAN macros. - Max-min magnitude functions: fmaxmag, fmaxmagf, fmaxmagl, fminmag, fminmagf, fminmagl. - Comparison macros: iseqsig. - Classification macros: iscanonical, issubnormal, iszero. - Total order functions: totalorder, totalorderf, totalorderl, totalordermag, totalordermagf, totalordermagl. - Canonicalize functions: canonicalize, canonicalizef, canonicalizel. - NaN functions: getpayload, getpayloadf, getpayloadl, setpayload, setpayloadf, setpayloadl, setpayloadsig, setpayloadsigf, setpayloadsigl. * The functions strfromd, strfromf, and strfroml, from ISO/IEC TS 18661-1:2014, are added to libc. * Most of glibc can now be built with the stack smashing protector enabled. * The function explicit_bzero, from OpenBSD, has been added to libc. * On ColdFire, MicroBlaze, Nios II and SH3, the float_t type is now defined to float instead of double. * On x86_64, when compiling with -mfpmath=387 or -mfpmath=sse+387, the float_t and double_t types are now defined to long double instead of float and double. * The getentropy and getrandom functions, and the header file have been added. * The buffer size for byte-oriented stdio streams is now limited to 8192 bytes by default. * The header now includes the header. * The malloc_get_state and malloc_set_state functions have been removed. * The “ip6-dotint” and “no-ip6-dotint” resolver options, and the corresponding RES_NOIP6DOTINT flag from have been removed. * The "ip6-bytestring" resolver option and the corresponding RES_USEBSTRING flag from have been removed. * The flags RES_AAONLY, RES_PRIMARY, RES_NOCHECKNAME, RES_KEEPTSIG, RES_BLAST defined in the header file have been deprecated. * The "inet6" option in /etc/resolv.conf and the RES_USE_INET6 flag for _res.flags are deprecated. * DNSSEC-related declarations and definitions have been removed from the header file, and libresolv will no longer attempt to decode the data part of DNSSEC record types. * The resource record type classification macros ns_t_qt_p, ns_t_mrr_p, ns_t_rr_p, ns_t_udp_p, ns_t_xfr_p have been removed from the header file because the distinction between RR types and meta-RR types is not officially standardized, subject to revision, and thus not suitable for encoding in a macro. * The types res_sendhookact, res_send_qhook, re_send_rhook, and the qhook and rhook members of the res_state type in have been removed. * For multi-arch support it is recommended to use a GCC which has been built with support for GNU indirect functions. * GDB pretty printers have been added for mutex and condition variable structures in POSIX Threads. * Tunables feature added to allow tweaking of the runtime for an application program. * A new version of condition variables functions have been implemented in the NPTL implementation of POSIX Threads to provide stronger ordering guarantees. * A new version of pthread_rwlock functions have been implemented to use a more scalable algorithm primarily through not using a critical section anymore to make state changes. * On ARM EABI (32-bit), generating a backtrace for execution contexts which have been created with makecontext could fail to terminate due to a missing .cantunwind annotation. (CVE-2016-6323) * The DNS stub resolver functions would crash due to a NULL pointer dereference when processing a query with a valid DNS question type which was used internally in the implementation. (CVE-2015-5180) - Enable stack protector if part of %optflags - startcontext-cantunwind.patch: Removed - cpuid-assertion.patch: Removed- cpuid-assertion.patch: Don't assert on older Intel CPUs (BZ #20647)- glibc-2.3.3-nscd-db-path.diff: Move persistent nscd databases to /var/lib/nscd - glibc-2.3.90-langpackdir.diff: simplify- Update to glibc 2.24 * The minimum Linux kernel version that this version of the GNU C Library can be used with is 3.2 * The pap_AN locale has been deleted * The readdir_r and readdir64_r functions have been deprecated * The type `union wait' has been removed * A new NSS action is added to facilitate large distributed system administration * The deprecated __malloc_initialize_hook variable has been removed from the API * The long unused localedef --old-style option has been removed * nextupl, nextup, nextupf, nextdownl, nextdown and nextdownf are added to libm * An unnecessary stack copy in _nss_dns_getnetbyname_r was removed (CVE-2016-3075) * Previously, getaddrinfo copied large amounts of address data to the stack, even after the fix for CVE-2013-4458 has been applied, potentially resulting in a stack overflow. getaddrinfo now uses a heap allocation instead (CVE-2016-3706) * The glob function suffered from a stack-based buffer overflow when it was called with the GLOB_ALTDIRFUNC flag and encountered a long file name (CVE-2016-1234) * The Sun RPC UDP client could exhaust all available stack space when flooded with crafted ICMP and UDP messages (CVE-2016-4429) * The IPv6 name server management code in libresolv could result in a memory leak for each thread which is created, performs a failing naming lookup, and exits (CVE-2016-5417) - startcontext-cantunwind.patch: mark __startcontext as .cantunwind (bsc#974800, BZ #20435) - Removed patches: * 0001-Updated-translations-for-2.23.patch * 0002-Regenerate-libc.pot-for-2.23.patch * 0003-Regenerated-configure-scripts.patch * 0004-x86_64-Set-DL_RUNTIME_UNALIGNED_VEC_SIZE-to-8.patch * 0005-Add-fts64_-to-sysdeps-arm-nacl-libc.abilist.patch * 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch * 0007-NEWS-2.23-Fix-typo-in-bug-19048-text.patch * 0008-Update-NEWS.patch * 0009-sln-use-stat64.patch * 0010-Add-sys-auxv.h-wrapper-to-include-sys.patch * 0011-mips-terminate-the-FDE-before-the-return-trampoline-.patch * 0012-Use-HAS_ARCH_FEATURE-with-Fast_Rep_String.patch * 0013-Mention-BZ-19762-in-NEWS.patch * 0014-Define-_HAVE_STRING_ARCH_mempcpy-to-1-for-x86.patch * 0015-Or-bit_Prefer_MAP_32BIT_EXEC-in-EXTRA_LD_ENVVARS.patch * 0016-Fix-resource-leak-in-resolver-bug-19257.patch * 0017-math-don-t-clobber-old-libm.so-on-install-BZ-19822.patch * 0018-resolv-Always-set-resplen2-out-parameter-in-send_dg-.patch * 0019-S390-Save-and-restore-fprs-vrs-while-resolving-symbo.patch * 0020-S390-Extend-structs-La_s390_regs-La_s390_retval-with.patch * 0021-CVE-2016-3075-Stack-overflow-in-_nss_dns_getnetbynam.patch * 0022-configure-fix-test-usage.patch * 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch * 0024-nss_db-Propagate-ERANGE-error-if-parse_line-fails-BZ.patch * 0025-getnameinfo-Do-not-preserve-errno.patch * 0026-getnameinfo-Refactor-and-fix-memory-leak-BZ-19642.patch * 0027-getnameinfo-Reduce-line-length-and-add-missing-comme.patch * 0028-getnameinfo-Avoid-calling-strnlen-on-uninitialized-b.patch * 0029-getnameinfo-Return-EAI_OVERFLOW-in-more-cases-BZ-197.patch * 0030-hesiod-Remove-RCS-keywords.patch * 0031-hesiod-Always-use-thread-local-resolver-state-BZ-195.patch * 0032-hesiod-Avoid-heap-overflow-in-get_txt_records-BZ-200.patch * 0033-malloc-Remove-NO_THREADS.patch * 0034-Fix-malloc-threaded-tests-link-on-non-Linux.patch * 0035-malloc-Run-fork-handler-as-late-as-possible-BZ-19431.patch * 0036-malloc-Remove-malloc-hooks-from-fork-handler.patch * 0037-malloc-Add-missing-internal_function-attributes-on-f.patch * 0038-nss_dns-Fix-assertion-failure-in-_nss_dns_getcanonna.patch * 0039-nss_dns-Validate-RDATA-length-against-packet-length-.patch * 0040-resolv-nss_dns-Remove-remaining-syslog-logging-BZ-19.patch * 0041-nss_dns-Check-address-length-before-creating-addrinf.patch * 0042-nss_dns-Skip-over-non-PTR-records-in-the-netent-code.patch * 0043-resolv-Always-set-resplen2-out-parameter-in-send_vc-.patch * 0044-tst-audit4-tst-audit10-Compile-AVX-AVX-512-code-sepa.patch * 0045-Fix-tst-audit10-build-when-mavx512f-is-not-supported.patch * 0046-tst-audit10-Fix-compilation-on-compilers-without-bit.patch * 0047-strfmon_l-Use-specified-locale-for-number-formatting.patch * 0048-glob-Simplify-the-interface-for-the-GLOB_ALTDIRFUNC-.patch * 0049-CVE-2016-1234-glob-Do-not-copy-d_name-field-of-struc.patch * 0050-ldconfig-Do-not-remove-stale-symbolic-links-with-X-B.patch * 0051-Report-dlsym-dlvsym-lookup-errors-using-dlerror-BZ-1.patch * 0052-Fix-tst-dlsym-error-build.patch * 0053-Remove-trailing-newline-from-date_fmt-in-Serbian-loc.patch * 0054-Revert-Report-dlsym-dlvsym-lookup-errors-using-dlerr.patch * 0055-CVE-2016-3706-getaddrinfo-stack-overflow-in-hostent-.patch * 0056-Fix-strfmon_l-Use-specified-locale-for-number-format.patch * clntudp-call-alloca.patch * glibc-memset-nontemporal.diff * nis-initgroups-status.patch * nscd-gc-crash.patch * robust-mutex-deadlock.patch * strncat-avoid-array-bounds-warning.patch- strncat-avoid-array-bounds-warning.patch: Avoid array-bounds warning for stncat on i586 (BZ #20260) - Update glibc.keyring - Unset MALLOC_CHECK_ during testsuite run- nsswitch.conf: Add fallback to files for passwd and group to prepare for libnsl removal.- nis-initgroups-status.patch: Return proper status from _nss_nis_initgroups_dyn (bsc#984269, BZ #20262) - robust-mutex-deadlock.patch: Fix generic __lll_robust_timedlock_wait to check for timeout (bsc#985170, BZ #20263)- nscd-gc-crash.patch: Fix nscd assertion failure in gc (bsc#965699, BZ [#19755])- clntudp-call-alloca.patch: do not use alloca in clntudp_call (CVE-2016-4429, bsc#980854, BZ #20112)- Import patches from 2.23 branch 0001-Updated-translations-for-2.23.patch 0002-Regenerate-libc.pot-for-2.23.patch 0003-Regenerated-configure-scripts.patch 0004-x86_64-Set-DL_RUNTIME_UNALIGNED_VEC_SIZE-to-8.patch 0005-Add-fts64_-to-sysdeps-arm-nacl-libc.abilist.patch 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch 0007-NEWS-2.23-Fix-typo-in-bug-19048-text.patch 0008-Update-NEWS.patch 0009-sln-use-stat64.patch 0010-Add-sys-auxv.h-wrapper-to-include-sys.patch 0011-mips-terminate-the-FDE-before-the-return-trampoline-.patch 0012-Use-HAS_ARCH_FEATURE-with-Fast_Rep_String.patch 0013-Mention-BZ-19762-in-NEWS.patch 0014-Define-_HAVE_STRING_ARCH_mempcpy-to-1-for-x86.patch 0015-Or-bit_Prefer_MAP_32BIT_EXEC-in-EXTRA_LD_ENVVARS.patch 0016-Fix-resource-leak-in-resolver-bug-19257.patch 0017-math-don-t-clobber-old-libm.so-on-install-BZ-19822.patch 0018-resolv-Always-set-resplen2-out-parameter-in-send_dg-.patch 0019-S390-Save-and-restore-fprs-vrs-while-resolving-symbo.patch 0020-S390-Extend-structs-La_s390_regs-La_s390_retval-with.patch 0021-CVE-2016-3075-Stack-overflow-in-_nss_dns_getnetbynam.patch 0022-configure-fix-test-usage.patch 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch 0024-nss_db-Propagate-ERANGE-error-if-parse_line-fails-BZ.patch 0025-getnameinfo-Do-not-preserve-errno.patch 0026-getnameinfo-Refactor-and-fix-memory-leak-BZ-19642.patch 0027-getnameinfo-Reduce-line-length-and-add-missing-comme.patch 0028-getnameinfo-Avoid-calling-strnlen-on-uninitialized-b.patch 0029-getnameinfo-Return-EAI_OVERFLOW-in-more-cases-BZ-197.patch 0030-hesiod-Remove-RCS-keywords.patch 0031-hesiod-Always-use-thread-local-resolver-state-BZ-195.patch 0032-hesiod-Avoid-heap-overflow-in-get_txt_records-BZ-200.patch 0033-malloc-Remove-NO_THREADS.patch 0034-Fix-malloc-threaded-tests-link-on-non-Linux.patch 0035-malloc-Run-fork-handler-as-late-as-possible-BZ-19431.patch 0036-malloc-Remove-malloc-hooks-from-fork-handler.patch 0037-malloc-Add-missing-internal_function-attributes-on-f.patch 0038-nss_dns-Fix-assertion-failure-in-_nss_dns_getcanonna.patch 0039-nss_dns-Validate-RDATA-length-against-packet-length-.patch 0040-resolv-nss_dns-Remove-remaining-syslog-logging-BZ-19.patch 0041-nss_dns-Check-address-length-before-creating-addrinf.patch 0042-nss_dns-Skip-over-non-PTR-records-in-the-netent-code.patch 0043-resolv-Always-set-resplen2-out-parameter-in-send_vc-.patch 0044-tst-audit4-tst-audit10-Compile-AVX-AVX-512-code-sepa.patch 0045-Fix-tst-audit10-build-when-mavx512f-is-not-supported.patch 0046-tst-audit10-Fix-compilation-on-compilers-without-bit.patch 0047-strfmon_l-Use-specified-locale-for-number-formatting.patch 0048-glob-Simplify-the-interface-for-the-GLOB_ALTDIRFUNC-.patch 0049-CVE-2016-1234-glob-Do-not-copy-d_name-field-of-struc.patch 0050-ldconfig-Do-not-remove-stale-symbolic-links-with-X-B.patch 0051-Report-dlsym-dlvsym-lookup-errors-using-dlerror-BZ-1.patch 0052-Fix-tst-dlsym-error-build.patch 0053-Remove-trailing-newline-from-date_fmt-in-Serbian-loc.patch 0054-Revert-Report-dlsym-dlvsym-lookup-errors-using-dlerr.patch 0055-CVE-2016-3706-getaddrinfo-stack-overflow-in-hostent-.patch 0056-Fix-strfmon_l-Use-specified-locale-for-number-format.patch - CVE-2016-3075 CVE-2016-1234 CVE-2016-3706 bsc#973164 bsc#969727 - resolv-mem-leak.patch: renamed to 0016-Fix-resource-leak-in-resolver-bug-19257.patch - no-long-double.patch: renamed to 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch - glibc-gcc6.patch: renamed to 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch- glibc-c-utf8-locale.patch: fix bad standard in LC_IDENTIFICATION categories - glibc-2.3.locales.diff.bz2: likewise- glibc-gcc6.patch: Suppress GCC 6 warning about ambiguous 'else' with - Wparentheses- Add compatibility symlinks for LSB 3.0 (fate#318933)- powerpc-elision-enable-envvar.patch: enable TLE only if GLIBC_ELISION_ENABLE=yes is defined (bsc#967594, fate#318236)- ldd-system-interp.patch: Restore warning about execution permission, it is still needed for noexec mounts (bsc#915985)- Add C.UTF-8 locale (see https://sourceware.org/glibc/wiki/Proposals/C.UTF-8) and rh#902094 . Added with glibc-c-utf8-locale.patch. - Add glibc-disable-gettext-for-c-utf8.patch to disable gettext for C.UTF-8 same as C locale.- Move %install_info_delete to %preun - crypt_blowfish-1.3.tar.gz.sign: Remove, the sign key is no longer acceptable- no-long-double.patch: Don't use long double functions if NO_LONG_DOUBLE- Update to glibc 2.23 release. * Unicode 8.0.0 Support * sched_setaffinity, pthread_setaffinity_np no longer attempt to guess the kernel-internal CPU set size * The fts.h header can now be used with -D_FILE_OFFSET_BITS=64 * getaddrinfo now detects certain invalid responses on an internal netlink socket * A defect in the malloc implementation, present since glibc 2.15 (2012) or glibc 2.10 via --enable-experimental-malloc (2009), could result in the unnecessary serialization of memory allocation requests across threads * The obsolete header has been removed * The obsolete functions bdflush, create_module, get_kernel_syms, query_module and uselib are no longer available to newly linked binaries * Optimized string, wcsmbs and memory functions for IBM z13. * Newly linked programs that define a variable called signgam will no longer have it set by the lgamma, lgammaf and lgammal functions - Removed patches: * dont-remove-nodelete-flag.patch * openat64-readd-o-largefile.patch * mntent-blank-line.patch * opendir-o-directory-check.patch * strcoll-remove-strdiff-opt.patch * ld-pointer-guard.patch * tls-dtor-list-mangling.patch * powerpc-lock-elision-race.patch * prelink-elf-rtype-class.patch * vector-finite-math-aliases.patch * powerpc-elision-adapt-param.patch * catopen-unbound-alloca.patch * strftime-range-check.patch * hcreate-overflow-check.patch * errorcheck-mutex-no-elision.patch * refactor-nan-parsing.patch * send-dg-buffer-overflow.patch * isinf-cxx11-conflict.patch * ibm93x-redundant-shift-si.patch * iconv-reset-input-buffer.patch * tzset-tzname.patch * static-dlopen.patch- isinf-cxx11-conflict.patch: Fix isinf/isnan declaration conflict with C++11 (bsc#963700, BZ #19439)- tls-dtor-list-mangling.patch: Harden tls_dtor_list with pointer mangling (BZ #19018) - prelink-elf-rtype-class.patch: Keep only ELF_RTYPE_CLASS_{PLT|COPY} bits for prelink (BZ #19178) - vector-finite-math-aliases.patch: Better workaround for aliases of * _finite symbols in vector math library (BZ# 19058) - powerpc-elision-adapt-param.patch: powerpc: Fix usage of elision transient failure adapt param (BZ #19174) - catopen-unbound-alloca.patch: Fix unbound alloca in catopen (CVE-2015-8779, bsc#962739, BZ #17905) - strftime-range-check.patch: Add range check on time fields (CVE-2015-8776, bsc#962736, BZ #18985) - hcreate-overflow-check.patch: Handle overflow in hcreate (CVE-2015-8778, bsc#962737, BZ #18240) - errorcheck-mutex-no-elision.patch: Don't do lock elision on an error checking mutex (bsc#956716, BZ #17514) - refactor-nan-parsing.patch: Refactor strtod parsing of NaN payloads (CVE-2014-9761, bsc#962738, BZ #16962) - send-dg-buffer-overflow.patch: Fix getaddrinfo stack-based buffer overflow (CVE-2015-7547, bsc#961721, BZ #18665) - powerpc-lock-elision-race.patch: renamed from 0001-powerpc-Fix-a-race-condition-when-eliding-a-lock-20150730.patch- Add audit-devel and libcap-devel to BuildRequires, for use by nscd- reinitialize-dl_load_write_lock.patch: Reinitialize dl_load_write_lock on fork (bsc#958315, BZ #19282)- resolv-mem-leak.patch: Fix resource leak in resolver (bsc#955647, BZ #19257) - tzset-tzname.patch: Force rereading TZDEFRULES after it was used to set DST rules only (BZ #19253)- glibc-2.3.90-noversion.diff: use stat64- ld-pointer-guard.patch: Always enable pointer guard (CVE-2015-8777, bsc#950944, BZ #18928)- strcoll-remove-strdiff-opt.patch: Remove incorrect STRDIFF-based optimization (BZ #18589)- iconv-reset-input-buffer.patch: Fix iconv buffer handling with IGNORE error handler (BZ #18830)- new patch [BZ #18743] PowerPC: Fix a race condition when eliding a lock 0001-powerpc-Fix-a-race-condition-when-eliding-a-lock-20150730.patch- nss-files-long-lines-2.patch: Properly reread entry after failure in nss_files getent function (bsc#945779, BZ #18991)- fnmatch-collating-elements.patch: Fix fnmatch handling of collating elements (BZ #17396, BZ #16976)- opendir-o-directory-check.patch: Fix opendir inverted o_directory_works test - static-dlopen.patch: Static dlopen default library search path fix (bsc#937853)- mntent-blank-line.patch: Fix memory corruption w/blank lines- dont-remove-nodelete-flag.patch: Don't remove DF_1_NODELETE flag from all loaded objects on failed dlopen - openat64-readd-o-largefile.patch: Readd O_LARGEFILE flag for openat64- Update to glibc 2.22 release. * Cache information can be queried via sysconf() function on s390 * A buffer overflow in gethostbyname_r and related functions performing DNS requests has been fixed. (CVE-2015-1781) * The time zone file parser has been made more robust against crafted time zone files * A powerpc and powerpc64 optimization for TLS, similar to TLS descriptors for LD and GD on x86 and x86-64, has been implemented. * Character encoding and ctype tables were updated to Unicode 7.0.0 * Added vector math library named libmvec * A new fmemopen implementation has been added with the goal of POSIX compliance. * The header is deprecated, and will be removed in a future release. * bsc#905313 bsc#920338 bsc#927080 bsc#928723 bsc#931480 bsc#939211 bsc#940195 bsc#940332 bsc#944494 bsc#968787 - Patches from upstream removed * htm-tabort.patch * o-tmpfile.patch * memcpy-chk-non-SSE2.patch * pthread-mutexattr-gettype-kind.patch * powerpc-software-sqrt.patch * static-tls-dtv-limit.patch * threaded-trim-threshold.patch * resolv-nameserver-handling.patch * nss-separate-state-getXXent.patch * aarch64-sigstksz.patch * heap-top-corruption.patch * pthread-join-deadlock.patch- pthread-join-deadlock.patch: Use IE model for static variables in libc.so, libpthread.so and rtld (bsc#930015, BZ #18457)- glibc-nodate.patch: fix verification of timestamp- also filter out -fstack-protector-strong- getaddrinfo-ipv6-sanity.diff: Remove. It breaks services that start before IPv6 is up (bsc#931399) - glibc-2.3.locales.diff.bz2: Remove sh_YU locales, fix currency for en_BE.- Add /usr/include/gnu/lib-names-.*.h to baselibs - pthread-join-deadlock.patch: Don't require rtld lock to store static TLS offset in the DTV (bsc#930015, BZ #18457) - heap-top-corruption.patch: Do not corrupt the top of a threaded heap if top chunk is MINSIZE (BZ #18502)- threaded-trim-threshold.patch: Fix regression in threaded application malloc performance (bsc#915955, BZ #17195)- aarch64-sigstksz.patch: Increase MINSIGSTKSZ and SIGSTKSZ (BZ #16850)- powerpc-software-sqrt.patch: Fix powerpc software sqrt (BZ #17964, BZ [#17967]) - nss-separate-state-getXXent.patch: Separate internal state between getXXent and getXXbyYY NSS calls (CVE-2014-8121, bsc#918187, BZ #18007) - static-tls-dtv-limit.patch: Fix DTV race, assert, DTV_SURPLUS Static TLS limit, and nptl_db garbage (bsc#919678, BZ #17090, BZ #17620, BZ #17621, BZ #17628)- resolv-nameserver-handling.patch: Replace with simpler version with more compatibility- memcpy-chk-non-SSE2.patch: Fix __memcpy_chk on non-SSE2 CPUs (bsc#920084)- resolv-nameserver-handling.patch: Rewrite handling of nameserver configuration in resolver- htm-tabort.patch: Fix TABORT encoding for little endian- Update to glibc 2.21 release. * A new semaphore algorithm has been implemented in generic C code for all machines * Added support for TSX lock elision of pthread mutexes on powerpc32, powerpc64 and powerpc64le * Optimized strcpy, stpcpy, strchrnul and strrchr implementations for AArch64 * i386 memcpy functions optimized with SSE2 unaligned load/store * New locales: tu_IN, bh_IN, raj_IN, ce_RU * The obsolete sigvec function has been removed * CVE-2015-1472 CVE-2015-1473 CVE-2012-3406 CVE-2014-9402 CVE-2014-7817 bsc#864081 bsc#906371 bsc#909053 bsc#910599 bsc#916222 - Patches from upstream removed * ifunc-x86-slow-sse4.patch * pthread-mutex-trylock-elision.patch - o-tmpfile.patch: Fix value of O_TMPFILE for architectures with non-default O_DIRECTORY (BZ #17912)- Update to crypt_blowfish 1.3. * Add support for the $2b$ prefix. - ifunc-x86-slow-sse4.patch: Fix misdetected Slow_SSE4_2 cpu feature bit (BZ #17501)/bin/sh/bin/sh/bin/sh/bin/shunscdibs-power9-12 1641905015 2.31-9.9.12.31-9.9.12.31-9.9.1 0.48nscd.confnscdnscd.pidsocketnscd.servicetmpfiles.dnscd.confnscdrcnscdnscdgrouphostsnetgrouppasswdservices/etc//run//run/nscd//usr/lib/systemd/system//usr/lib//usr/lib/tmpfiles.d//usr/sbin//var/lib//var/lib/nscd/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:22352/SUSE_SLE-15-SP3_Update/6d0ba0570fc507ac3b10ac375b133b0b-glibc.SUSE_SLE-15-SP3_Updatecpioxz5ppc64le-suse-linux ASCII textdirectorycannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-9.9.1.ppc64le/run/nscd/nscd.pid' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-9.9.1.ppc64le/run/nscd/socket' (No such file or directory)ELF 64-bit LSB shared object, 64-bit PowerPC or cisco 7500, version 1 (SYSV), dynamically linked, interpreter /lib64/ld64.so.2, BuildID[sha1]=ea7bc6b9485c0392c245ddd76549224a4a2a0b69, for GNU/Linux 3.10.0, strippedcannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-9.9.1.ppc64le/var/lib/nscd/group' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-9.9.1.ppc64le/var/lib/nscd/hosts' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-9.9.1.ppc64le/var/lib/nscd/netgroup' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-9.9.1.ppc64le/var/lib/nscd/passwd' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-9.9.1.ppc64le/var/lib/nscd/services' (No such file or directory)R RR R RR RΈpbr,)Uutf-8f9ec3b3d29f4de36b422e2d5faeaf8f4e06969b834f4f20c92cf93c5dfe2d27b?p7zXZ !t/] crv(vX0V: sl.iS-dw k w8S E!K\j2M"I\,2\#|ԝ'iX :ҭ2.5!:GW{8٭`>xK4]BkTKeq܎鏼5A@;FY^CJxO8ի }՚ϦQc?o|LԂv]C9#O Op ^ETS4o g +aq!3bQ7U& XW5#%Fa *7v?ˉ/4>I:jL,VnSa4-;DM}1^8iADž\(aQXt+B2bb1 r}7l+c/etX?]=-8m6:xVkF9KFs)#k^[`uD$v\JTdUe1ɜ Tϑ6 RR+/JjT*Й•q]*9ˋoc17j\TpPC#J9xFܽV_g)*-E@ol*UB|uuL0Q:ϳ".J~˖^Kj"SXz5= ~Ke,$<: Ѯis” lX4ݽ aVUBlO@ l̷RSJD+.ЬVO+)۪_@88Ȼ{>mTm>Hs&!+p} <:[唫T_*:*fޑq-w?=^hgJeWҫWR[VU {thaʸØN2ܿjc$CB }.݌!|ʓB3.4Nߞ Ɲjک1dpScM T{B`&8x;U]Xקr!pZw<~ޢ#&Q0M] 9 c65 b!1#{@^H% %A&␃2 #Z W)Dr&uvn=it@x?IIV}gɉ0wv搘^6*F^y0gJK ^V;n0ɹ򑧉Xq-k!eA/&Q@SLoxї>aw $hbް6*˱%pb颱~&.Z,I{Z;!g8 򲥲e~yemwϢ4/G?RÜV}W`ev E3Os “aOm楼߇JY(v]LMCf^eY"ͭWknϜ8A/v].+AÐ۰Hm0Q&9x;ٰ\=9pPϲgxpǚwQJ3^;7 6 FBVk!;Ew+G(W泏`L͌RXl%ggy3_\fb &!c+;j]CQA W3gf=#IӠP|Nw7LǹQd'|JwdC7A5ibD[՗>T*fz K396,܀ϼ !@1̕8q'Q ΋Re F˴n,=V]ն%d$2KoCYt #2%jJYvYrV!Hy@nΩ֡dP#B@ûl+k ^h|SL0496,vPDʩVUniJzLT-:PPѐl* _֜rX9DF(\Sv;;Cgm0_3Ltr ۇ2_;hovזFpSw8u{"^WM8oGSݤam+wWxSS.E>7ϒ `#|#L%N84GX/)ۅ>.t7H5ćFpDXr]&[Vt(w Qʠ<ٳVlr0հ69?CO*gHWf0}\Ԫe=(j8t|񲽧Ed1TYypt263SΛy ~eÈr} TD(dл @,qOC!uNSS?..Ex&qS{ :L.%Dؓ!؆tˁ3>-mؓ6quߧF{ \(ƏĪWκy}^ȆF9ܮw3]89b oLS-Q5=Ҵ箮)f&fk0}؈]=@Wf.TȘJ\5NC ͣGVl^~2|tqRGPD۵NZ%CX9J&'*K0wLRS}à,zS䉿AɼYdE(qkDz+#h&&W$V@s3Ka?6J"E2ϝa.zrZ|t-ܧ 2-Ƕm9B!@b20}C[=e"q2B10|`c(!3r.a&tϬ3~ޣm? !Jih+s^|1#"i>xz/ /QU攲5q?]|⇠@1s V:ϟWvΓL_YD[Z>2}Dغ1Ug= yI ]Tnon{|fީ{3 pl(fyDdDM+K lX:K: 6G,mA'6A qs,òRשSjs[E=hk\":Oe$bQz͛wŎayXa)NyO'˖j12qL{XJz '#c ~+jWWIu^1drrqVMC֝`rl} ď-<wd:P T(2epэ,aM*6=#?M _7%0j.i eml=uRUcæ4szNo>?;O8.׿":[YW|!M g8dx77*9pۮ9ߜ^KȻm>I|#r3Cx20xTȶ/z 3bA#xe]x%*A`'t4]g D{ې3f|Z D)xezۘD)F-՘%Rbh1e)qIж$V5I},cc ?CΨortjOSQ ^o$jD_tBE<mTHHƾa@a3w .iDd.?;;bPI̓bx> %&8%lg8PW[?ކjiH_'Q?l;YuÆ IJ9"H9O~ Zo aÌ`ahnTn>g0Ԟ\2WHhaC_ G\" M)oE,(X'R7I;ke>a3Wg$.? + ^bvr4顖kG3+sׁ;"A6nU_?4'}6ۯ{ s!͜RbkƇt n=B1*$ K -$eσ^ˬ"[>}T|0V|m1̞&ߒp՛6™z|#9@ӽs!L?CApr_lk ~6ҊoA!sn"g{1LKnۮ{,^ TWiBϲq(O&>0ZXT1 ObԊ~-̴H"Gu\ժd19)^ldƇOY_2lnqyr()*ܣ9pv ~Y¤`?7F)Z%73io\(\v_|Y :iṯW..˅0Hr}*i^-rb{j Iۢh4ԧg2Su0ֱ G-':D]Ep Wƀu=nfDc5#ف|32Dl#sszW2#-[|^HD+UY:DQhvѐLn{mōm_?e;CWBRP8aJN7É^HH~ wst4UKoOȨ=nЩ _9(➰Uv 漛j8/DӡvX1NiڳOn,8ANxɢ*)в i$a8~晷QhkVuPd؞TE$0GVlCLE䜫m)Wӄ*tTV.^x[wɆ)/=tRX C.`HhK3 ݧ~\h\^DiM6mLo+eF#jk<5dJC!jag\{ck0NX7TMEW·jAfYX= ʧB*OvExn`=\'-5r'>ٙx@׮Z~Dh4TPNq:D+pSOH|$ }Lްaü A_rqw06_1D_ˆwp&wzn. .V^xJd%eJM 24`Я{%t-n$$Wjgi jVju@]c^NSq.nv*v%XhsTU?Hhs0~+Ag=6C?]faۈOΆhM-#w"GSNggǵUQܻH!a5e"C܄f\Zt"mPxXlƪHcb6UmCŸe{$nRFwf^ZZxU;i~4gҐ ʊ{Kخ mqAb xjco pԃ\Ke|Ӯe&V;f4$A ]щ~ǧ?-SsM]EӝmL%1 t-3[dym(:ތDp/>X߮j}E9hp JFmm9j~fL $L߄8pږUr(c.>x6O[2E7{y3WN΃:..]ViU7'9w%`w!yz3Twzفý́y (6ɭ &ع |E%~KML@ID+ݫDXyqsGMםaUgJHV5+[`6k#gh/#z 73&viNn*4d\IDa  0 #5lh39ӆQcq泯sx|V^!&D'JLpXHQΤ}ts>vMޓEm~U2e§*ų}$\ {b%pw7wIfpD;j">%41foTHy2LkqCwQ}:2 d7<},s`?ʽ E5ג~mx.D\tbeoJim4&8]Бi@j+rI  e6G=ԎݜU9Cg˓`Mԅ>=|o r]m]TҾΜKK h (3f0-|n@og }~V`u~A=,SO i6sl-y`Rt6,f~} ٿu/rߺk%-ޢT _l.T:j,"j=b HΖޯ.0p,Kn9ѧPll\Tpp7wX9mA5Q~ވI5H3' /zO@N[*'IYΥ#'7srVE+M* ?/J✖jDS γ,!x B7kCP[Mǯd+3܉(biǾ(bE# 1# fc3/P\jxU#t#ü>ʲxXg66O pPkUcx!G ``''`̒D֋I[r~]hF.OTՒ{]ryΖk_oP߬sH@~Fg=k *q}#& 7@f7˥ߛq2xKGq7y b]^LNp {erl>SQpWj^d,Pnc S/(Z9v}xz!0 vie~R6S]kyQ 8H_mKEo~85_~'1h=4dSQt>`u5(|-B;<`zAkimmh]#5I%}Jhi8f +:NafKRV$@]!Wb^bck]wkky^ ebeUIh:!~ 4d0fJ8kM$vEܤ%İYWV`P,۶k68ڢ#:}wJ-@06{1<)|34}x+bhN8lf~1wݐTH)uY^]jc܋MZ \GڌM!f;8;ˏji viԥqذ'ǫ5y$`8<ܯ{?o5Fe1'kkusX^rjڟ~27}u_o0`?Fn gH!Q#-'oW'RX* ?ᜄEe!)v4T<|Hk6#ݩMe1&Aذֱ×Jq5~3H/U@/Ӌ{uPUPWy[ ꞕޥZfsTy*O7b]=!yx@#jYeq7,u0xZr-4@TyNq9 <%n9܂]ZXNΫ?/ .&&҃Gp%iX-x%px`a w8R3-Jd>RW ׸9I7Wޢq^0J~.xj㬍UX 'M]0+eM]|C*k1G]<1LYS:%N いIdhAO14KeKD>TFNv52#TZX{;WscS˚GNɾ~q[< r j.WNLXS*cChvh*cK1/&>o3N#ҿ:LH*mb_}tz+a]=#z؞"N̖R5l?8UGφ݉UaH\H=\U <&\oTBo?_3ds9y}[}U@JiTGI񝔴÷ ^M {+v_TNu5N8o5R|q JIg $B@Y6`h6d'2k;¾7 Yl3O#ϾNrfx ɳ/^T !"lUNpB֔HÖ9W(_lȊX%x#7_ȋ5jk7\!)_xcE ^~pOCj0{k5.0uH|$9\H!|UK6ۚkB<-߽iBLvYڄHE-̲_}I{܆W;⟦E}r N)>e ,˞հRL>(-%/'v2u{n6gњ-w/`\~ `xXsqAߛa.Y18(vˢDp4H!4?$#ѲBa8aL)͢y23f͕FGL.Yy hrL_PdR6^4(5:OM4MvHYn,ǺA h܆*BI9tcr?6 I & Q-m-i<,1yisn_X MV˕e}.:/a Xa`0Ô 'N' =qR I|z5 ~Ntp`# 9g(# i!Kа^y}a\jr-wUCw+&/ĹS~wTq"XoF,gӭ KYʸ) s;b.ZC1 %s8 w @ {6WT{vz}$Ƴ1}^f ωM]olYMJnj0UD4~q ɀgU e!fF!Eo퐱g.GKQg[gq)$cy$| 4UtU5r6]'n&m蛶,}yv7} ph)}h07/A' %ddːNh aS^w |jrlU,.oD$)WE|]u`E;ƒ%d(S0}ųYZ' bJYƗ>q%ޟۢ*oqyփ j*%Ak/>*3Lv$6ZW *RQۼ1Ŵg 5dk(Umt\#bu,CfFN_5 Z PLk b 5a\_G=/69XtaއYd. rYkf~`((09`H7JpOob2(V}&6ÉBD,S/9`,|*j8G/o iֲb5y3q,e'ؔ@k28a3&h#6}f&l35!LWf_k(Ѷ+u¢'_*%f?\9#|hhGd;ꡃ+0`գyBn j<r1F;MD=( "pi Ǐ͡?h\}`p@y%q9gh+p"d9G6^3+l;WܽN'S 1:ӭSѥ"냉f1ĸ0qSlV!j֕Hyo>\y>K+,0sIU! 0}{ղ&yՒfYKT*J_u`;ƶ#^|& b3N94tP_ B5&2/"{r\';r|,$ɶXpclBo> !ÍuVC6a8)m,{?3.ՂZ*wYk6kY%woCE/C(n8v 0 2cXO s*GKWRjA!l j.4ns\OEW.*p-&6SIÄ g 'p[[-(Lľ Oh!ڣL(:f,s3cմA/5z^F 713HYz8ʉ~5O RDc <^Y;ৢنoҠS`r,,&MTPgFk=:11UXz|P9mUjHJ\d\VŌ|O©䂚%hyF/JkN\0}D<5 _pXiVHNxwp!pP~x5qdWh%?< JЬc;XE5 W(1(0ޡ0&')]$M VVaj"yA|v}Ui4Z8:lUGrZGnVus!L_&Yd"4Q/-҇N;"۾~g mes9fF'[_E otOY.$k]ϰ(E11+ڭ,j-CCQs%3z+%BVdr4Ҽ=RsN$B6 W tB=QٕƵ1S1N8 ݟe?}C\͗n~y*3p.ԤQ౯I Zs'?X("e_TW=$Y!uZ2;yRJs#J|@.NQn3>&5c1mkBy'akN[X-NvqݛnGzi *"pu'%0qifs<&FM\e礯N&taC|^j ?q,^ͼ/Ac#WB1Ǽ98N{:pE: "jXη7Ө&6H@W~C?}R`F)lǿի 3,6(1MoH~Rf1_Eo _ϟs!?W?ڀ8|EC/, }m*WB?aL'?O%"ʁaAsD|CeT^ҕҢeR1>-Pw .abU/* >oeCŤ=b쀷 *y^Kt1\+dlZt:txz ]da>D1N"(eGzc^}O $% jJ͒,m8{6?z wj9,݈]%Y.J@+>Mo'+ݟnn9fATf(-ÇQuwi{Ʀtmun&/(:S%Yy cQ?De]c~;&77M?p SWăژu*:fW!bƫ[N˺&ӊ۽b!~|Z?pUY{(X&Y3hmM3r3|x7CK'ITJX;Q\7L0`.;{z_FCIO&d3mzX.w: jx4OQ_\&*--_ ϫQ&`o1= .P {[L`_Zw4ݧhYcho՛)b^f`9;0ew_ONR}p15m1.ۮ7stU,~毩.:K.@gWQ1dKDd{Ekgy`T>m5{mp#U{2H m5WuSiL?Es9BT4ذcwvHH3V ] M1}?׳ypk9a7D?1j]h=;CRXgC+k]T{!eSr?f5ʇyVƸDcXc #g*=z,ФKhss@=7x]?k壵p!7YD\ݺRT]\OMr ֗2(hwٴ+ ްb$la=߻ռҦKmRj ˰J >%|Ç“k(΁70ucab kXq#ա3q I+<}Ϩߡac QbvϦH0QlKD~̼[UdL!Zn3a,BxzBϟXR V,Z,/IAY'V ~7Α a@tbYvazcڴ:^@Zbαž9(t;rbJ,Mfx.2(.eESQ̷ ]{#b;#rg1R:<%8H"LTEti7LXD`}=(H6pܸlkNX)aOi}t"x 7+`jaSXd}5~ln%Sox[|EwS Uq%a#j`)M~`k<&qWK4X(ëL:S)j -}`zS&D]K#" #st0F4;} L"Vϙ+GAVkCnv:UoLTVf䝘+"N fs)\R =SȄaAfz:G ZpYşMk e+}mn%FЙ Rh9O16k# \sh6%hLdXtbDQ+ =!s ͧ|^7-)/I" j8bI*MC 2co>_?@hgJ8~RD}n_XWq{v$/;8 77 ,πE6Z`7eǾ*c0=̿O=R`rjz'cb2%IhIMHB AŹ ez]#]k7Zir{,5BM"v=N4X:`<{"ln NuD+@J7B.8QhuASdG4@D_Mh8ԀNT8K\gt_Bs6ԗ-yYon۽E>C䭢M+g>q{_=S 꾙bHܹ{c^ENnhN@ؽւA@GvŒlidylqE9Trl9:Yd寺8C{{-/l^JO@@9#L|  Zݗrɡ̭,*3{eQwd-\riZPrjdh0ߍ8`${z|}&2 \=yiH435 OU2,Sl9+^45 +,gZMV2BCZqMjeH[ICCk*o =g>I('09z"^"lLPOm줜l(n9݉E󀁐s_:0cXu*W(J/ (MD*OdmG . \_~=kΓ-QO7.i,E$ADGQƈv%Z|c2 gF7^7_ ׬Evf.穒`TF;_8Dr25mPceMOdI'~DLy{2;Yʪ5liwQR6ܜfT_r>7;ο^ᚷ/)aG8@PhQtJ<]۸,"_dI-ss6<:&n9qnw/M)(  z/|M;Ce*j岦yĭRp01&N*؀5lܡj1v[UV"@uf|"zLj[]:Yƾdfmv2C6/3UIJz5`7V/+\+pp EIm3 U$C&YW(m?=vxN@($ʮVK^۾Nw>:NKO06k,t$V+d;D^jx 'Ӄ3Pzj#rj׺+~! vӯp.(,0u46ء̅`ݙ E KۏYa,6*fֿ#iiϲ$hGm#cx2+$D+ uwpđpe-VEE _ŲtX1MF8cѕQB50>$ P<,&l~&|D7:Djhc,`95Ԃ'vWa&Q1nr/oh.'ȀzxA*8(z2@&ʋت~H-*rBZZD רg I(n:dzsiCY MzwIyTx4D )ܾi&Eb+³db$P9jU\f 0Eވ4"Wtܲq >'Z|]T4Z{܈IhLE3#a) )X-V8Hă6Ottޔ\yMK--ʑ̚ g)iY? ;mm0-7Jvr.yD#se5Ve)*[ˮ6x\*S-NiIhK\2R]OFVÝMX/0ZexH nzD&7Ü>=Gk91eY#=?(AZB/n%)6H;g:$k`wȟQܛ0=o-yo~Z SٷbΆkѱ;!DfGP&mEl^1uhjVfp:NO9f}"}U ]3 23Ak1`R"ξлg,MD(T+ڋҋe0fӎ6)s+RE-Q4qz<DQ!؞Ʈ$uGZ""T5YEb0G]0R#D$/Djz ai9[%}>*UIl]tWY)-q)6 T</w\9Flǖ_NrXk)!OԽlKL pFmx4h |d,Qv!qk|Z\τ@t0>8l㥅IJY+IńzwUL "?3V )/׍玭 /zv] I6rI<>-k).ʰr@a/E;C>+k?Q|"ӄ)(T֒r8%bCA–%+" >=n5ZPlJE JЗbWzc>v<ںk ]O9wj?nphIŚq1 {:xțgD>3h&k:vQ/Gnֆh8ֲivC&ʳ큃wSoU(OMnZO)Y4PTZ,>1X˽# ]焊UגϛSG9AAڊm _йK.YÔF=P#&5}}E>PB(65fA25@or5X 1.(셗I#QPw봟~nx 翫Jtߙ:N Veїz75)В2O9R +(q+0'Sls~y8=O{t}.L*#hA[ƻ$yVxgb0!\w6$rMmA,O-7/Q$RLF|T8[|2{?sf$ɥ+(|0AB)ʞ=P}ϤbCQ2|&=BOOh?=Ϊ9 S"@}:fscx'ʾUty' BIޮß jj`gV3ZepO4Kx渒CCߒSط4ѱ&Z7%I>}ubGoq('dn-DS%pRLOHIخڻ rEr1V%־Q߸hJ~hkn^!7HUW̌R|TvzξB-fׅ3R \$c T`P~Nq8#"&17v5)|˾%h!6 ׼oo^VS|5u#Qr/QlljvTU瀩+ruaA٦ڑ s`-P.a=*!s_UnZf69 ׁџ+|Dfvsz\6&)S~*ۘɈ j6WvJbo @0.D{w\)*g+[ˆsW d@ twlBW37Ћ4KoT8^āmܙ0l'B un2\Ae:C/ۙh4"Q>Oԉ q Y&8$KHۯ, |3Ђ=SE?[xsFh.|ry/H-@S}-[4-XKЭvp-$$iM I3e&:kT?\sT]47joǝ"գ "S<&V-$:+~E%C e5_ ^Nņ ܗK}6d5hߧ g8 VzX"aMĹNăxC(LtL%R#$1Yry=x;F9u/]|jǿ;ߜs ޽IcS^]2d+\D-S a=i];GM<T-gB)9(!y"uKk]6MVJ$4yeY[IYRFRl=3C^k R QNY G5ꗟra`IIv'cIl@LޟBA5N w :q0;:JµzYst|ۇSgtşX<K.?nc=ɏ ]o1EJHA1h Z6&Z" >b)d4H!ر8H9r$K] tJ9V 4}/ˊcabpg΍r \} ظVM-qɺE1W (GB7}Q+Km%wK}0t6)|n=uk !> e}ttlˮ$NY R舱 &|$㸔FӸHQ+$/y"*AMRH &\;&Ժ>Wi#`s|ɶFZr /XhdM>_6w"X;a8dl16T.Y3ΔUMZ`8h wd/\&ET^ 6թvB&(_RXefnt*4ckqR.RDq3%Z!Cn% 8hݕd֬z_¬/fCYX=Ad(@4"Nj9g[I@'9 k1Ɍva% z ?SO}Wn-Gy}SJkfQ._k~Xl'Oik b–y(c4 _j +3Mcu)@l tuqqșT rW/pb"h"ġjUPd2lI !R!~%1Cܩn;)#ʤF?UG p;VD.t "[9yo|y"|qd!sQԟ6s!W|¹73ސxpCԷ0NB/o:-D(9JzNڸbz@2SpenXm\1?UE"0-KI1ĥ&xʔKz*u/{'H2>}b&8v7]^^"O%eA!-}}&2R%[*m敽%5UTa9Gf2B4D)| MS{ %P9!LP٠ݎ\毭缇:\9 FN.Wd;fgE@uAUUy\t&?rDvڌE7:ԳVvmOw4`WՕ7L gv3 x]Fh[da 1)O?܆#xwE Njt7[:j481m>WdW0 34zv6$`(W+ W7jB==gFt8,FQyM$CR&*|Rc zo-VThȸ՘$x;8!n!VJaf{ZH>.>:Xk%@L(6=ޕ~XkQ]va.0(@>7v7}D7ST@{3y{MpYBB8H nr͓]4tUmlrfQSN(((H,fN'U#f[h:WɞY*a}:Ug T:;BK:\뎤 4!>3. Dʆ/@* F?2X Z@<&?Ԫeg^f.a{ t,MM7#b|Ϣ4@-!]9 y#'a,l>607G޾HKPtg}zjO$5ܜIr5~4p!kL3Ys>bտh/1\CIZ w[:׆asM8OYSZsVBʕu!UEnsT~[޴: ۋ+ ݙ `aaܠ8rO<7Oc;wv7:2:/fFRyQpesEeJ2} ːK6_d$ ij:4; d ;dGd2ʬ[NP Y5mOL^nr<0zI򟏋۷V>6e[\ Yˤ^KGڻ@iה3֖#MGr3bhnEV1`GI +`"lJ 74~NԎ%݈;lմ˴a\K4}mjꘔpV|=m,QK8C 9CtO?"lIXBSh(!Ƥ':/o@,[]Z,E+D! I92^WgTjZ6ݷ9jS=4LZ3Y֡P*NId:uB×ѣAr Gܖ(hb5:Ǟ-SYeo?Dg[o(1Jc00 LB0uN\EE 'O(er*dxڽ8K=RL>R4`fAMB$ X‚5{ -7-[KXņKe:(!@94ӟ@At r'iaBhHl,=Fu3szķo>k-A@.~TWZk/0_k|V^>-_cH* :0hay%*$N!Uo"4)|%4w4#/Hm5:!WʣGjx@<~ qy somZ~Em\:dx)~q|AQE5ȾSy,]5 ; vfj}!\@HFv>?~I ܳj,mVO0]y{|OLYj״OlO!L_#OO1Ҳnh5a%vmY0JxYa&-,JzZOv)B6P؝MQO~V/g/G9'22iEqʹQJ@!FbZ,zΑZ 7c5XDY|6=K^o?"J7ykWVx ӺhhWEDkw#tPK+ @?n4h]Xj<'bCpiA '/(GBbupYҳ 2$IZdgcnͶsY`f]/BVRɁg6\Bi>)p#;̸#=OdRxV$L}huٜ0O67ښT>iX=K.VZZ\s5B3}8A-66/oj<o6+$QiCG$@K:Yo9KwSVMׇqw!93 iĶ'/ު\& z"xChڦzdW,!Y5%xPoF sxKw.* .̤=J築 ԞJ,d!t"hH'|WΩFhyJu*O#dxPdZqrgH.D?5ϑbh_nYgK^ikW}fP=1ٜ_Pk(VIYv">oʿlp7`ҦQ'bekv߾Jdlt  Ϳ2&'EI׆0~/gJ(gY"۪1'{DO.3yK2[lp]OҎ{WB6)pD?Jvv3)U+eT&íyU_tomE3-PمHNߵܖ{2W<-,`A}ɕǞ#JltRŸDVdh6]٢ӧA"r -{+$t{LFw]s=f֡ʏOyˁ>ا4u3AsW!ךI#5<8e)Wk3-3?dI;}b޷C(j'qn" ̢Z?:*ʧFJ|(V,"+'t;,)}7e=K,ǓO+0/ЦsS1[gkdZK 7 ο(p/hRN=<<lر +#.4YOu mc6ż!.Ė36Ιp5xʊyb(ɚXyG"tSk\d:3ʄ yLPkg9 Qf|xOR,jyb^s,,uXŗ҆iW(v />2QdW8*'v"0|׷:pi2R$ЇBP?fs^n}>_0?;esz1Uq0}qIMdZ'}T{D>|`wV"Yc,Ds}nl5k:+ =wBLA1hG2Ip!Zݍ]j6?= kG(5H2@LuAPq9T]/73OCy`FerR <G+ˇ>{5ldBjR C4WޒP Lȫ 1hSj<$cPWfE4( 7P*g' +%3.3޶*,_B HcE$JÌQR1דwQ|[W"(eXlR Bi_h2+=<~cد-f]D;ʜo{,܂:TRX9AAICr@g=_ꎚt!O܊Ϸ~X*m+ L:m Nl`<9nA~z] iIP]oJ]]3h_04ta39]s!x,>BsOlJ4ݗx}`:z+SKS{bH>5npBj"<&jeH/.^),nfTsKNI/^C4bdOi0_~C~8go~yay;-vQ/-EMM'aj_Jfrv%r/=_,u#@n Iz82ila$4+,`,ibwceC眾+.Uݨ1o^*DgXہR+4ty9'=܆^ϚejS/ɇTDN:,!부J i;7OkbR.UJ QQc!{I|PI'u +-j%wzj Łgo`IzlKډgiIe^8 EbΓl49( u>O@<"\,9X2;-i3y<5Yzf~ 4ZsAN*g1JލmvLܝl;aa54 ,SF=`1萐ABLZ >tQԷ6VʊPB}kyq_CKH; NBPb7{DIR1wDlk(ԃvy-pvTѦH9"W[E0J(o—!S 퀼`*Gdd~ bv38h s͌(}^ Av ɇwn2H Ю ^"dZخfOy& ^Zr o 8^IO= ܰ 6ިean5X'W{2S@{_ ]W"LI am_h3 sT <\wG 7kܨ>2TK^- 9&sNelāj3n.ej5fڪ hxa[):[z7fPͿ.H|/*tw4I@X?Bxa$!~,QH +tSY61M; \vw6YdF"4K.-f ݴf~cFp7١T:.^K9T*~i?DRK^I^/- H@iPae #\FSna0풍xE>].DŽ$+JOAudRljD>zHL9-ML#yE[OV6MlcBH1e wO*FٱH Y-&&wuihMQ@DkB7b+;Ǔȟ;J9qAVwlقx!Ї'Rb\|,[vim\`gXEY=0 R=s4z+3)D\P]>4ae5y+bEZ9 _֕A)Ak^ٳZ}Do~`WrEiYpYw>օ f!m[(Gz!ɝb+]klXE(-_ctE–Ed~Ifhtӄ~*8-ư݄vQdZV;\>y`(2c"Nr!.l{']{1ꞁnõ#Z UzKxfyC fTհ pm[ yn~r$02ߠ0CmF dI<J޽, Y}zCݣю7B-ձA+!ӷ$2/RK˅BXhS+ms5" _K (f3bo$^^m%=:VeEa 7m[I%;5+p [\KQma_X|hox#bQ[C}S纐 wzڠG~Q7,;mzQ|>7Ȯsz,~7K:0am>reŽϒYlSlcAk)Y틉y}}BFF-{q*_jNX_p?k%ߖ jھfε9q'V؂!J&٣N2+ r6̸k6trMKmR#_u[VvO$zUMCĉM/^SxiYgk(qU.Ds1Թ6c?Űa\C,c ۖfʢ7{bEB.8=6\B1uCI5&V"eE`>`(+.1㕡qH# -lAIzm`u`&XXv߈(Dcx)y@N]C5;/&^D"$B">W^8S̚~Euz]=˵ aV \fwy6G|XxtG5[FN: hQJ/xt`7&rA3j,{~(MoiG7ڶr/D }y!M!ʑfvҠ%jwFMbs\E"5ՙo FJSr=e=!mmɛfh()[O^M*(́-A;OCe|5R`cT!&%9]vXD:c3ʑƪљ's d' +,KHz *1:v@$<ȰEFՙ] " ڍ9a2}mg+He >q2hֶHܕKrURC*fTɔqw,?. v0JDcs_ԧNˡ.V'"ow=~lX-:dddBhʮ rdL @뽓:4ȩ7aK`dt#qw6j$娶,˸PIozvH&Ay1ؠTv.~AW8=FED\II/;f.^FY9hnL1xxALjO-y yyI:M-u ̓V]&qu5N*W\4oٖ*L L,#][A=NEǵS̲-眜aTٱ^ضwiWZ W!+xp7K z?%l4EfDwl#4&jK1[B"﷍DY&6Fq,$b[\Mk-dy)6W<TZh-VPb&)ܛPUsx{rd0NO`ր  qK`f Sۇz7fiZCCYA !&,k>:cr@pʆJ]o s<{* RCo/ -HOhB 6ibZε9 Qolz]gc7d}!.i&k2"^̕ckD s &fDf2f'HI&XwG~_ eEɲSw д%Y\׀!<ݔPҼFto2wE5^td?}ͼFB J Ƞ gMiMmx| XȉX-8SgH~3V@/)OċS}|Hrq^cd%M7԰8M%/ܯCMyFUviԥihm|= eU{iBcNd֐@g-oîR[b[$" SCt+Vf,'x)0e fZ&3fף\mzX:H vrtw_5+*2>hB 2dI،ʵ) 0}xp/DVyuK&- 5$t+gڟpNZ`C\=!WkK Uq54kCϝK Nfu y.VWYݸ{cfPvPpQ u}h_ ;&\92.TwS2!{-7 ½ zؘOя[,~c_=Ϳ@dyJJ1qBZ6Ό{LV7OEI1ƵnV4J MK)ܲ(%'!3ɈFf\D 8N)0(J>p~3\DpKvxl^bPHJ=j)DtȬiDT`07ZL٪_Wz "V)Ub&h7Ÿl1ғ5zhMm= 7~zcs^-!-t;4vrV;"J#߉Αa!hHM#WO49bǡ10fRJ]˃'#橎b_Qv;sݞos@ώT}X|WHfJؠRCs _):D܎ XҝuYX@CfG(_6EjrN"BѸ['ɇ|M_ }EG$CUfٞ'! 8AݏKsC]'d'U-7a1aLxZMʌ#dP(`*ܸ:1,5rhf40ͬfsgn̠7w Mgm԰(c)Ce[tS`ͮ^a*Ũzf+NAs!y6_zɬ8܎tzRP&ip*b="5ǁ8 ͯۇC#w2[gKe 9:;P{QtOlg[xl~ҭo˩j[%]v {^vlJ 4xQUny`Z$~S|TOSe aJ# -&N*wmT\2I-`8 (448ꌷ|+9! X6w Pj0iS`H|-{1ENh[Y{jc-]g(f}0i\Жb?8״d0l3إn^ߕ5az^(Py2mYѥYS ٓ%>Fo\Lʼn>jBzxQ:ti[^::e=]> bײ~<}=7@x>q 䕝*ByGE6Ɋ(?#v]{iyIh&Pӌ -eW]0A1Y]@+ڨ >%>]g>0Gr%Mh0CĹp2ĉ4[!+!ŧ'/XO J!7=A{'K}hӚԝ[.paY^ .n-`#QH r_2*`s&#p F]\p(*[&C5{m*?u3WUj?ce= oj 56֑> hsVf*%l9rlJ_$hƠS)KJe]GK45tKMGUKZc!:Rt\Xq^r:ԙ{3@pt@ ,@Hn7`%Y#bOe;({, ,.WsIWLDۏ4YWw\hgCJ"PdN ȃH72n,-Ľ4}asYB$ahT2x'rt `}-֧ 2A"cDnR9q\ (3K \V@=$R~"y=cP=]tqق2ɜy@Jc4M}G!ޯsqFXYLN6?6:WtU'[^(Yu$:9$cWCtNjQTpmN`9)_5H\c};8D5 H%S3;\XA$aCĤhpRۇO5]/R0Du]KmxwUHQncⓛ@ z0nˤ%l@k^LY͸e;$iWBE"ld S_>L50b'ծ{hO4j[X .F0ٔ땍&}^^ST -`hm~IFy@EZcb䘞+Lߒ\)lnN(ŅJN\]p;Q0@ƣu}f`CDzVq&RȠEƿC0!"]D'%\8D'})^B7Ԙق(ߑ.y@8Av @P48QM#cxl P gP{/}r6^ A,!MDgc8_[$Bv/eW٦rt;66NTp 7hVF3]> R$~A0~̢^ģ=>txnM`r3./T>/ۙDAe8Zs9\#3S1T@A# M5 Π |wGE:Sou u74}l>xJjbk*1cJXܰۛD/'z. f{LocF3y-![VBC*BB_nV1(c/fxO1=m=mJM߳Ym|c҉kf9!oxd|b_:[&{/CCWCPD E1GPpOÐ;ܯkVD">VZČZ\,$8 (G/WKǪ7mZS(f]S{:f͋z*__|0 Mx>%H7x !p9 <;{i!OX:%:-PU=)Ś_=<0@ sf-ygFNf%mrvhyѾrۀսqgR WŔB_8ߍ\!TĊ_XA %f CoYD f0{( R3X8f~(8[:%+AktNm~H WMSgxk>(]xkρi`uPRǏb{h|"eX1&\[FK4EA<WQts u-̰ZudG70iGr# Q1N!{O/@߬R߸lOd~ansTL)%JnC\7̂-5K}`ZR1ȷ*k!z|,<,NΥtFWbĹ唃]:Ď1##ju. VS"q)_y!+ mLKgm/†)U1Hua "#sHNTcb6H [;5I2tћT >nanZS+(ӾS+pލ =Q DSɇ1nwȫ}KF*㒌#w3s9 !ۯ?Ĉ6@&6CTŭ;7J:H$h4O@Ft9ҩ]%@H_Dr#L WhŒhm#3N.ohOT`F 4ݷdHGfQpIarT*E;os9zh&5>\GnV YEmsF$DQ>Nm9B!| uw.} ot2 k߿OңVgS%`%,>< z2bL OV⼑iXe=(*׽FJBxLou{#9rJ1[77x0kH=9z1{m̃^LQ3oHJOw2]N\yWI~7\_gb#84,9hߘH-S1llG WPi.Foep@Z}؇VJ4<ՁG(=>-םmɺ>ZP gk hg]סzQ5`#6S6A'Ǧ&HQ&Vw<KO%ywiCI=`^ m,PS&DXaRD8&pha,[ZP&@$fZ\gkKEA S9/l:{emE|U" ʦ5E.Lyu "*unY$ WJ8( }7jb=KKf.?^$\ڏa^^duCLϋ5_)Q*:( /kߘ35Қ[c7B?W9hlowDb,7b5bVYTq3I 3c__ߤTKO,&\k0QX'wh)&l6{it'f0lC5O𓚆T$u%Z_Tŵ**(R0+9kĨbFU?,^, +.D mVB6ĄhEqeJPX#?cb8p9]7Z!?I.fPCWŹ:ğP~!p $t:(B8NtMW.q7W>&2 kwV:eG1 .3'GaQq,[:ޗrcm3yÐ3>18Hx5hq]呬4WtW=pPϕ'Tu Q{\I?sSk]Z6O5c&ZM4\4K ";MW3m3Ǩa]ϙ8S\ꠟfHlqau;1 @ƈ;?.%6LC1xWLɴ툻v 9zf'=w׊G tM<=mI2F\B.v{2<.Mk5Ox̬U 0*G0?Uu`̛O_MWdh!Nz< r훝/n7|alGDj ]ؿ]M93-^EvA}YPw['p n#gr^r)&J8/x^\֥\@t* lj|O$e{iJj5#IiIe34'됏yt}*ETZ@[ }'8rOɴ4'dNeglS*Q;ٻ+j(V6 ҍvg neWx>$+'w%P"PQʚ9/z0q"IOBh2ÙRNOصZBiYPb߃fx: o{[LuN'A gL`N DЙir]ۏ1"n}U JT&/X TƳ#\X{peӝ*j[b*@S c3ŒJ//9Qڛ7OnqsB(_MHYZGDž~ݍWSRZj6>6RT~Tw:wk1Rc6_pf?m=uAi07pWc23-a>뱁8J푈<ȸtFI?xD]̬bM .<%DcJkJ> -: GFS讣Wki/>~b 1O bZA1fY8p>H;٨ $h@c9&- 5 /|:_T }n;F~ Xb[ #NʬެE=#Qu]TIAw261 W! ؝vpd$"Oc'F< U E,jUC`qhx]XmEcəLZܛ^EЙpw3^.*5ni"˸c <Fɻ1]◊?] )(YsX9!䃏\Bc?ԾHhCczxU~Ty ݘu)#1Xt}bkDVMNlL#tZ_6dgw#%©?E&nwNjt^k|EmJT1l H!oYU6 3ܾ b^x]/ ery M Fd/2>(qF,N2XyT;ӯ@O9w4%q} fɦx,F;{Ңy;TIg`c'Dֶ^)j[.(]K{BWaْ= )Ebq1v7b7pu *E cC΅23.mkn:е Z)Mf8d5'5mPvOe;S18g,̮^4 q43@lY_x?iyd&2s7}~8A?܈,Ѭ䚉A*[ϬPi?XWFB0NsTeb1OwŞ~XEtU۪=rsZ7n )Q&U\։=/wʻ|$`h1LZwkqvg!2YO_0}vcsTyמF!O 70[跈&aP{ #@ܘ~ Um+vE\M~1b"'X%,+؟e. +a»L-J8[]a, äPmW3YV.ON‰fQDKIND3G8.7>c7*66շ dkgJ}0M!פl3@Yާ, sC۩+ftfdQjUtN79 rQS Fn.c6o#c)_p7|[\L-Cc @`'W\)nz0"P+3O`:]#Irn=c }VA9AGM[2Y \An@9h֦? Cm2% 'Xk- @SMWۘ2N7GFSLB9a<?ȧbQfk ZFB_4 H&*EQw6.؜rA#`*\+\X4s+ߣU<Х9{1:)||,PYQQk V>ؕH6MB*|l@͙y*}"Ŵe(x6XGi =v Ȱw3 36rK`(f2g98p,5U'cy\=cXPpN%I#q'-ζsd/!E6:.jd'thx)40=s4h`Wϔf4ilehgn 4-v򆚪auw]n=e_5Ie?c⼴SsGZe1N_O}y'x˓cLUJcCɴ?D;n{i#;\$\< xXwrጙT~e$qP=.S(va졐hb? c͟[8]b/}=})! ~K8)@2ZҨ Is^>7yU^O0pOO YDv&m a27tfih_N^ CEtWyJhuGx >泄9Mq-wngOxޮ ^ssAwv~.j)`Sg`TI;?y1Pm` co,"}I7zSCcu+8 d ߍ\v]O %Je@'qL01yU_mErۑASv]3s&8'NFA ³F[٧H܄!d?GLCaGeJ%ש!BE_ĀvUyCg۸b 7 -ޝ^X;Dz6NHNyn)|oAe9ft3)=Do`OM@=ᄄ2V4+uZ($:GM iuތg*CHIV~D61 m4w7bNY*kFVё 5%oH[?,\])󛵅U*Z5:F/A7#αs٪е6`MEU}n6' V"t_h o5 g☾ /,jZԡV//aUmy 0@l"R= (9qNY .^WgeJ"3Xhn(ՃGOg{E ,ik6͟Jܢcdֶ:SP|'7;K#I'zw je{ȁx""b8P=>|՜ ՏPPKd* L."_f#lڝy@>{o;[l @Q=$h[EXXIYqt o.#Ğs%>d~:{Į~,K4yk[/Dg }X]R7uVvc4džm긯ߥ*QC/o© gxZC&BB-,!=' @MՔUUQ6)} ͪDY D:B1D/=;ē7QP4 <@@^%_Bֵk[ 2u7Q B='! K ǰL/DL JpN}203|ᕊw$ЂgŬE9;Ul7!z8E.w6 _w5UdﯱylkkW:}!fCA[Y:de']7L,W] r*)S61oU `Kwt*5(P=T|D+r V=h d x18upl|OU/oXzg8d7K8s5)RdY0LD~+? -OF $l ]wUs]HhH Wn]-w$8p]hn'3u2:]> mub$:A;6k۫q@u%gG]Yq<^N>UxǓ\F"XuCS}f"Jg$"{~JvQxF~ 碇ND}>bLbώ@%lN702_XNOT2 EK~䃸ϒgkS66LA^(A9v`P?kn_ri%ee/+\]Ug.0*At ~gw6:!7!M_}Gˆ7}br>49sYXqX ]G5xbs7VxZMHU*wp ٿ4fVNQ5Wjmw;@.'ٟIsEnU FBJ<ؑ:)ĉbVHpWNrSf.j'G`)7ќ͞FI80߀7Bq1.d}XR`Vl/MY4PW1n D:L!c e-7R$rXF^Pm`$R rb @c+?W;f t^ %y7%|nPYF;xiXJͮ^uf!ck0#6d`)"1(> ٟGVzҏvh6O:0ia%⹚y|f̆Xcjn򺿹?]qE7RIj(IDRhd$~ ء].חɑFr0K!Exmg"mG =2xw"&wYݪ-.F!4Etz5$ddvvmA^$k;`ΎLA~yK<|q>Jw*ۑ;N32a%M *\ܷ|طNjƄ˨S¹tjAmKLwzm"8q$ trHKhS94zܹ)Th7wjx2/vqm8o]\m$!؃Eb)L^B nظiҌ\8^0Gr /VeZJdi[vP^hjVQ\Lg:َ[Đpu=܆9m3aHF;B@(;^ ] FmvsYO*9WAHMvR@hk <)_TC|L{h`OKYOBĻ6.Z$߈-;}%0KӍմ9J;T (ὓP^'4PT7n w]@۾'$G-z/䑏ip>cKBCRFW^U^uMD]'3xBfE;FW91c-Rќ}>4I2|O⍭,swXѮZ.FcLb>ֵUpW) vlEdxKHv# P.J١ UQ!#,Ē4۽ ͅ3{{C7%a U#f}3) ׮VR~I$]w|ؽUYA%ᗫ;^%...+sß6R\FwGhT 0SQ{"$w uIH?8$#LJ餧*l'p0D08ݭm4 ~_m8?NE8xD c<ީB%N*کFЋ{ ]͌-^Xbaut2@p7Fn|R[DANhhz9usvи``ѕ6 ~[5;|Y~ϝ>)XN%b蜪ۖMm{oy`߫/vZ dh`oZmV~.Ur"Me0J5o)\0 N;#0 >ifD;Ñ 쌖e84Vj*fٰ[?&QWtNDܨz՘4lLHXH`$S}"̩:\eafN;pyYXpHǯ #>PqW_D$r{R%R1ʯMR!}yNo2b -;pD'`jN3{kS1؞Cf|*c0*a Z iƁ h 9%(3 cRXLZ%?lƼZb m[ G & Gy[Q;IU'AJV#D",oyv$eiM'q'nn1Q5uJχɐ=74,JJB04=Dj95į~&6K~p e#{Y{2vy'.upɥ͵pDP${etq&lեwƁ9KPU 8; Ofi!;U} QUY`u'*aܻ;0wIdϦєi軜1fĩJ 빁6tGPA [kRA9ޝVa)J8TUtPH$n_ ?Ǯ8V\%_ȘW[ o3Ǘb%A#+ L $s5V+h1@YC[5+&='%O  <1/H"͝`1KbE}VԶ(^|$ [sl'TQ̥z|*0J=o!RͯJ'|7l%2-}3S"\NS@*(2xv|naI8]<rgH3O8X4kR^XUWMIW~^.\cH^\[uԙMCR9~ HhiNm[Fe.iybK/t|NVcxz?^VId W|6N)ŽfLTª*-%!%I%a=hXދCEFwP#A9ј;@lFF.eť^ʣfLmZREKC+'SszÛiAEYX>؇i0ɜQh)fX70:$ ,pNv Kߧ9*m:/G{3>ah+h¬S}ND㡞nrY_jާccԶoqS [%tv So"'BP'18o6XA]8:bsYenS$ 8&nŶ-TqɒP^m4޾ DQ)?V8'@.wC7IdIgBp4b.SH uO3$?4J0PfL;am?t%OdIw[8Pxx NxZ /IVo^ @4}*7,EWj k i0FotMu %o'^מO1O㧯Ҁx_hX c>(1h߻GxIx}GJiN0荻{MA1NlP& %_!Io9%i-i\tveow{'1;O$&Qb7̩evZ_X5 #PDAx"WεjN.U(IJn[qمi"Q'B7Еӂ!+Bƀ&6AY@xe~~B4ᨋyC]$m_r{쮼 <)}ʷVLJi;ƚȫ8KjIK|rZ5&=}' )PFFc+ &̓%h[8P+Nt}dߜOݚ- nJYvk٩-CM !/=<ΆnV1q[=I ̀U̗_E=iFI.LSPbAExK%$># %fE5Z N+%H1Tc1{@i0)c$ bœ4tj 8 ؓH#Q xlxZ1э^rDF!fOQ7)V;_>$T.BoV!T`9osϷ1.G-Q{_ax(z @ L;[Њ+xmn/6iu`_"R'"? 7-D:r ^Uj 3 1d mB8%oV@ { o8$1e֋~ejymy_Tj*ɒ7: l[֥&ik_Nr 7E_:.Gv*շ0 3(ǰ /4E(|6bR'0-K2n N|{9/8 e%T>0'8)%og*\OD̤x\Tӽyjg_W } t 7 GXu%6n }2Oh`k("X2 |BSL6txB|e)9gl)izl҆Mw!]4C()$|'f5Nb1dW N`=֧$MzqEp&WnJ5 hNE_|oulh,crD887"n{Sj;< S׶c3bp^X ٹ@YDUzx!sߑؚ#S_@ߒ*؃hŕ"vTzG fWYiOa?Dp<2b$GK]Ubp.YKM?K7Z3QIn33$ z x1 iOdFhR2 %LUۗU?ȝSw|[߂4*@l>9'q\j#$L#0cs_ֵŪVeR${m!8?6P⡔N#H]dUȳw¹LQ< KܴkBEkk[?(v@7hV1 /_]/*ua799q{l<ԓ)4o:ޤ, 6?]&O|37/䴟C:QoKz"U1La"ڋCLܫ`۳ۋ8| 7+X|2Q 졍ݑ$ѝhĒ;).H=H颴ٜ⸿Rџ3t+gsCzS,Gk$Te`J.cwIyRNmNu38inQ2k/nx!e0.6*IoP.B0c0i 8+T_ǃ1cT՟eo;Dl%s5GRJ0,'MM342gouA9J}]#,ۇSz;%G 2;ç/BHj<0qοêQ2W=8]͋*x)槌dtq"e4Q댎u'&m"$ ~jjh1;FK$\!v!Otio#2⬫{Y( 3وRr$Z䬪{0#'-&=g]"c'?.ؗEhdҾ&5M qVCHJ3EF`T0σ)g%@mb;(l6{X&1yiS";;VX4&ȫZd_> Ɇv@#WɕvyifL]m`;;L07.ϝ3w)S@pa Y(zy=%| *Y CmGCEO~xa\^T(}^~l lJ3A'n U1"?IٟE5hJF}C%[0}\eT]$W@|靃:?aIw x|W4 RՁ&w# ++*!Aw Z?̪fnB&uV<<f$b<[TZΌ>iՙo ocBd 6vkSq rzNr^72 T oR1_4bMNQm.3Pjr  Gb£EEpċH,ZI230%\_,SIVT6賋 'wBs[Y=x绖鳭}kV 0xMjtxTvPÝ]C"4]Wo>#V!uEԘkQEXFGU%I ϸiGrRv1uˊrlM7ɩ/5Z%wc+cĎe\Ӛ|ˌlo*t v-e/ d>ɮ4>M<6uK>XF.G1$1 K&*)$,SfRKnsqb̢Y*<%>8aJ98Ng!ggs`w/:;>Iic]ctRbo1vsy[{ !A2*5,#IB/v//B3 g8qoEP՜ gvJ'sj?L]ʠϊKc\z-o[N6H;,2MvC0s{"tutJA\J,zK)gŶP FKHB*/kܢ0g)Nw-*ٳ P4P;Rar "BlY&/ƵJ;:/dW^ r]jDh8n^vEk|2]I#oe/Ysك^:#EB9{T0J&kǴvSgwV1(mZsvNqf $uVZ# 3O5:Њa2g"Aﴯg5>BZB!/i2' eRgB:2 ^;="Ź IJB 8x.XKiz~LW pͽTa .Z+Z' ^'N^t0qQ \q^i9(=[U!AZz|P92wRsHr=5+>s2*˗VJye -u瞘Mzfbdx0`poNv:cB}%&()dcD4B .bAln,dk?YFnNBBtJY$ ٦Λ*DbG1iMl2eG5$-#S`\)A0XĆڑE1ćP/4l:Jmg;`Cg){sV`û^6@ }>O@ntfa" PbCe$Eq4M jx#7u,dMCh_lM+).k F/=}1`*>%:-({VHCxɃ>gJ28X!̞wLoe(gu8OM=&{G&Bkxp'&܊sܨæ14L;S?H,Ꞧ%#RhjXk+X4(THӦ4Xե1oE/Jȯ2:'d-~5`!|K{9afAA阶:u`C`^Q{M\ LOR+5 Ʒg-y1fR7_sAsb$Ewg.œs0NI%kZytiOLAC"έ cߡUBg Tq\'PjՕ)3CMDX7*i->P0,;^aceQѸGh{[N?  Es!C<1I3?x`Y˲ft%OjYm%@:Mwev,P.ƝkΡQo7%ԧpEg@ [@FX]0L3ء/dY1vFMh>~S-5ߧ= b%thmen\^1=Jz^qɴ=RyOv@6 ?Zs O?TEQ6VL3m kȂoc\ҞK0u,bgvGCn'0_|L^_\]E&ߋ ^wsP*\)jn]hDmKPpyK O b>2UqW^`c$5`<|d3+x|vNq Cٜyel.R~J;> @`]Q5u $K?[ϑp.S)4\/p4Vp#Gd h" ~ l %[]sfC҈'xE"!'$L`y͉WTCSֆUf⑿RBbV8 7|;KG6٨Tx팯wGZWqCRRفJ>5g_`͜ޟ_Va76v7vV>jVnwQIz'RwGBfł  ׈k"()(p耱=(phWGJ_D18D1|IrȾG:33?x-yfյ^/ʁ 9WӑUNANXsT{u{\exz<[kcE[&>"B77_6bGwNJD?sH_0]˺!=VB o"áO!)"+8I5u]BCGwجr:K8ԨQ20Umh,@0 pIϕqn.2EķAw0úY[2Ym+ 5.~d?X: Kf 8v@jyR;!E)XsCX"ʙʈq3~80Z_=m: Pge)ܼw m iZqŝX/C($ENۨ i&Y)5Zo)(;> ?,yɍG5OyAD "<3d *n wZ̜~նǭrqAcv] ǟNU7t [᮴+9CgQKʝoBqd=DggAʉv=8aȚJ=/.9F_61AʩY~h;Vc4SHn"#+ DDjyOv#Os2DJ'ZuQ8Dlv}ggi9|ro=(*8o݀&;~4' gYwh) ,оオd0v#QGfEGhl uz#~)ed\N'p3 Xa g_J #kwW@_{ucթp'UaZ35XqA"6.+jO}k~]!vmw>MגڴӨ`J=^ vƼIpCL wB+/lOptN:M U18 m>.xYƀY_w#n|xN,sB!.E3P?xHO>bٱݟ@ν:&!Cu];,u2Wj4efU6:o ?Ur,0햠4ApM]BaAm ݇RMZ:DJI=6~S Bud-9twEnF 쌆-lޖN䝖>(l6nyvʻTԹ8k ڮΟ 6@ߖ]̍m ѶW̞4r鋟AM_0'˗dž(#dRWb~X!eb˧u.~&* twiuGiKt懁0dR \ޕWw L\DP^R!,b:6NUR B9.F6핁Bm7*+m- tiF߼pJ=Az^t N)qkV1EJ %6pNj moǒ M|h5Z& R7;H_Pmy28׎nOADʯ~" ?aԴQ̘ y& /tAWX4]"(3<{cewG39:4~Gǩ7HIv]%͛^N+2f~M+#l]{Ilp~a}00w5dj'Qս扴@_$QDPQn>!D0,~FH;8d;&'v/bZ4]O,|9߃"0,?wQmTh:+$&Sn"54ʋ$Pj<$͙w1֯/`b B|9k.YZΝ* ^]Ț!ϳ E\/oZaO.YrMNׇ+ҋL~T6ITZ%"2_~5T iqD ,)ﯖ/SH@%_=a0]J}O7:4ads!.}My `im>UXH'6*`_: $U][ͩ>$D9״,Y2 :`&es :Z4 vzif0zYv}`jueɮH[m皢u iTȥ[:oedSP+q̀d $q$S׎I[<.95&@U/9/:G,=`C >@GD~p÷|P 7cn3'GhzzyԮEb $Cu6KNZ[nWߟ Y #$GZuRaM,PhTCuVPr>Vb-Vqvk4NT~eINa^9\9L֨ILۄY?]$ /ȡ7(v o.*ii!4EGsA+s =-ipg}V#Ÿcɀ1_Pl 6g+1iG4+.y!x⋢ |v"ٝ..l<8$pi?԰!8ܖ?p4W)7,2+?\Px%UqnXD}?+qsWh庆q?lEXbny si)`-0D&HNT3DnZS԰G eFϦ3prʃэW6UU0ne )b`;({&2|F~ױ/TZ "`_xH gm \<轎l5׈ ;Lgcq R|SYFiG~^?t8T!V?%F2/.sjƲ^ ˖0w칶i w#RYУR,jT.n UB|V &X_2<%ؤ~=&$zK)H1e bhdη=R!ZܨJl۪,9Xby(2zS7ɧ 1F%Fʰ{ᕻSWْEA+Fȭi4bWē k^*=ƪ8(ds@CY4ce0?򡑬KW7g Yf!^%_ 8dT XYeWUTxfMYȨ:ߖjRqS=3 ШCs<}sBzoI=C"N&{*W1۽Tͮ692YE8Z4 АsjfImp_n % _N=n+w. -|NoԔX(lJ H!r-IߩQ"k!(!ڐ']x)Xb sA—`˭@aKxK|A^*j\c0 i#ި-9 w$/$1y%W9S.&C<Un|'= >uo%Ӻb./inFiH OFD,@AЌ'!Ue۾"Wpc -AY*mKʊ/sݽ' ǞsWjof4/ӷ/)Z.$#EԒ)fzhlK<&mi|/3mBTBdE_5[ı;0 5B, 6}"LK;v5c;rܕ)~8MXyEP.a'ᕗt;/C2k>D"8!'oulB$_Xp!`Yd`bPy(ڕZH <zlKl.E1ٷ~ PHq u Tz:O!%g/Jkէ`H4P7>hm om2rjE.iMTO~g|{=ūl[ L-9iQ}+|j{X;OyK7kOGpu?C ľFA|O^3ߪ>1oД!=ju7:>Q? P河(%j;7Tn%3s5'fL/#`Pv%vrTvPR][nO byc U*Dо7ed'n:+UyCY{gRYS8O ɩd/Mx;ʖć:[)%8+=䩱ʒˆ`c}ޢ+wGy{PO>[!8n[YBc"Np ˇR=T ].,4HO˾:qbV ]xc,X3O Zn.@r&G]0F_y.7+a3,'oH3|j/FJ,b tȭjSk"a#,sG]v>y\?9$wcQRɁ/3