nscd-2.31-150300.20.7 >  A b+p9|/m78u8Wc9EGpǦ DPM|r_oj@eix,B<#ʓ'J>sIg]&>ⱆ'E#vS[pI?d   4  GMS  B ?   D S pBd#d#V#(89: =>?@B FG(HdIӠXӰYZ[\]<^Գ b&cdOeTfWlYulv֨ wxyPz۠۰۴ۺCnscd2.31150300.20.7Name Service Caching DaemonNscd caches name service lookups and can dramatically improve performance with NIS, NIS+, and LDAP.b+]s390zl34 SUSE Linux Enterprise 15SUSE LLC GPL-2.0-or-laterhttps://www.suse.com/System/Daemonshttp://www.gnu.org/software/libc/libc.htmllinuxs390xgetent group nscd >/dev/null || /usr/sbin/groupadd -r nscd getent passwd nscd >/dev/null || /usr/sbin/useradd -r -g nscd -c "User for nscd" -s /sbin/nologin -d /run/nscd nscd if [ -x /usr/bin/systemctl ]; then test -n "$FIRST_ARG" || FIRST_ARG="$1" [ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || : for service in nscd.service ; do sysv_service=${service%.*} if [ ! -e /usr/lib/systemd/system/$service ] && [ ! -e /etc/init.d/$sysv_service ]; then mkdir -p /run/systemd/rpm/needs-preset touch /run/systemd/rpm/needs-preset/$service elif [ -e /etc/init.d/$sysv_service ] && [ ! -e /var/lib/systemd/migrated/$sysv_service ]; then /usr/sbin/systemd-sysv-convert --save $sysv_service || : mkdir -p /run/systemd/rpm/needs-sysv-convert touch /run/systemd/rpm/needs-sysv-convert/$service fi done fi if [ -x /usr/bin/systemctl ]; then test -n "$FIRST_ARG" || FIRST_ARG="$1" [ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || : if [ "$YAST_IS_RUNNING" != "instsys" ]; then /usr/bin/systemctl daemon-reload || : fi for service in nscd.service ; do sysv_service=${service%.*} if [ -e /run/systemd/rpm/needs-preset/$service ]; then /usr/bin/systemctl preset $service || : rm "/run/systemd/rpm/needs-preset/$service" || : elif [ -e /run/systemd/rpm/needs-sysv-convert/$service ]; then /usr/sbin/systemd-sysv-convert --apply $sysv_service || : rm "/run/systemd/rpm/needs-sysv-convert/$service" || : touch /var/lib/systemd/migrated/$sysv_service || : fi done fi [ -z "${TRANSACTIONAL_UPDATE}" -a -x /usr/bin/systemd-tmpfiles ] && /usr/bin/systemd-tmpfiles --create /usr/lib/tmpfiles.d/nscd.conf || : # Previously we had nscd.socket, remove it test -x /usr/bin/systemctl && /usr/bin/systemctl stop nscd.socket 2>/dev/null || : test -x /usr/bin/systemctl && /usr/bin/systemctl disable nscd.socket 2>/dev/null || : # Hard removal in case the above did not work rm -f /etc/systemd/system/sockets.target.wants/nscd.socket exit 0 test -n "$FIRST_ARG" || FIRST_ARG="$1" if [ "$FIRST_ARG" -eq 0 -a -x /usr/bin/systemctl ]; then # Package removal, not upgrade /usr/bin/systemctl --no-reload disable nscd.service || : ( test "$YAST_IS_RUNNING" = instsys && exit 0 test -f /etc/sysconfig/services -a \ -z "$DISABLE_STOP_ON_REMOVAL" && . /etc/sysconfig/services test "$DISABLE_STOP_ON_REMOVAL" = yes -o \ "$DISABLE_STOP_ON_REMOVAL" = 1 && exit 0 /usr/bin/systemctl stop nscd.service ) || : fi test -n "$FIRST_ARG" || FIRST_ARG="$1" if [ $1 -eq 0 ]; then # Package removal for service in nscd.service ; do sysv_service="${service%.*}" rm "/var/lib/systemd/migrated/$sysv_service" || : done fi if [ -x /usr/bin/systemctl ]; then /usr/bin/systemctl daemon-reload || : fi if [ "$FIRST_ARG" -ge 1 ]; then # Package upgrade, not uninstall if [ -x /usr/bin/systemctl ]; then ( test "$YAST_IS_RUNNING" = instsys && exit 0 test -f /etc/sysconfig/services -a \ -z "$DISABLE_RESTART_ON_UPDATE" && . /etc/sysconfig/services test "$DISABLE_RESTART_ON_UPDATE" = yes -o \ "$DISABLE_RESTART_ON_UPDATE" = 1 && exit 0 /usr/bin/systemctl try-restart nscd.service ) || : fi fi exit 0 ` A큤A큤A큀b+b+b+Tb+Tb+b+b+b+b+b+b+Tb+Tb+Tb+Tb+Te2cdfafd373d24fab07018d0e95dd49510ea6c992b7be2b0611ab23bbc2750b579fe74962fbce2fa9b2a4b92f693b2fd42cbc2ed331fae268de7104879a72df879c9cec5dd2414dcb76d11e75903aa6fd9b7785c897cb9f853edcb140a71b77955e58edc0a83ae08d80a3c5231eb1a2702ff388022d00c140b8cfb46df525f1a/sbin/service@YYYYYYYrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootglibc-2.31-150300.20.7.src.rpmconfig(nscd)glibc:/usr/sbin/nscdnscdnscd(s390-64) @@@@@@@@@@@@@@@@@@@@    /bin/sh/bin/sh/bin/sh/bin/shconfig(nscd)glibclibaudit.so.1()(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.10)(64bit)libc.so.6(GLIBC_2.17)(64bit)libc.so.6(GLIBC_2.2)(64bit)libc.so.6(GLIBC_2.2.2)(64bit)libc.so.6(GLIBC_2.2.4)(64bit)libc.so.6(GLIBC_2.3)(64bit)libc.so.6(GLIBC_2.3.2)(64bit)libc.so.6(GLIBC_2.3.4)(64bit)libc.so.6(GLIBC_2.4)(64bit)libc.so.6(GLIBC_2.7)(64bit)libc.so.6(GLIBC_2.8)(64bit)libc.so.6(GLIBC_2.9)(64bit)libcap.so.2()(64bit)libpthread.so.0()(64bit)libpthread.so.0(GLIBC_2.2)(64bit)libpthread.so.0(GLIBC_2.3.2)(64bit)libpthread.so.0(GLIBC_2.3.3)(64bit)libselinux.so.1()(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)shadowsystemdsystemdsystemdsystemd2.31-150300.20.72.313.0.4-14.6.0-14.0-15.2-14.14.3aa@aZ@a@a@a0`ݮ@`a@`H`H`?z@`@_T__/@_O@^)@^@^{G^g@^`^U @^&^]@]7@]|@]@]:\@\\]@\@\|\~d[[ͻ[$@[t[r@[qr[^[!@[@Z@ZJ@Z2@ZH@ZZ Z}@ZxG@Zp^@Zp^@Ze@ZKt@Z1@Z/Z@Y@Y@YYܶ@YdY@Y@YY@Y@Y@YW@Y@YJYYw2Yp@YJ_YA%@Y.@Y, @Y, @Y$$@Y"XۡX@XWw@W@W@Ws@Wk@Wj}WYZ@WL+@W3W0{WW V@V@V޾Vm@VIV@VŲ@V`VVV@VLh@V.V$@VVZV VUYU|@UAUȒ@UU@UU4@UUv@U%@U/@U:T@TPTgTܕTء@TO@schwab@suse.deschwab@suse.deschwab@suse.degiuliano.belinassi@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.derguenther@suse.comrguenther@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.dematz@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.dematz@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.dematz@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.dejslaby@suse.comschwab@suse.deschwab@suse.deschwab@suse.deidonmez@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.denormand@linux.vnet.ibm.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.demeissner@suse.comschwab@suse.deschwab@suse.demgorman@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.de- getcwd-erange.patch: getcwd: Set errno to ERANGE for size == 1 (CVE-2021-3999, bsc#1194640, BZ #28769)- 0001-powerpc-Optimized-strcpy-for-POWER9.patch, 0002-powerpc-Optimized-stpcpy-for-POWER9.patch, 0003-powerpc-Optimized-rawmemchr-for-POWER9.patch, 0004-powerpc64le-add-optimized-strlen-for-P9.patch, 0005-powerpc-fix-ifunc-implementation-list-for-POWER9-str.patch, 0006-powerpc-Add-optimized-strncpy-for-POWER9.patch, 0007-powerpc-Add-optimized-stpncpy-for-POWER9.patch, 0008-powerpc-Add-optimized-ilogb-for-POWER9.patch, 0009-powerpc-Add-optimized-llogb-for-POWER9.patch, 0010-powerpc-Add-optimized-strlen-for-POWER10.patch, 0011-powerpc64le-Optimized-memmove-for-POWER10.patch, 0012-powerpc64le-Optimize-memcpy-for-POWER10.patch, 0013-powerpc64le-Optimize-memset-for-POWER10.patch, 0014-powerpc64le-Fix-ifunc-selection-for-memset-memmove-b.patch, 0015-powerpc-Add-optimized-rawmemchr-for-POWER10.patch: ppc64le ifunc improvements (bsc#1194785, jsc#SLE-18195)- clnt-create-unix-overflow.patch: Buffer overflow in sunrpc clnt_create for "unix" (CVE-2022-23219, bsc#1194768, BZ #22542) - svcunix-create-overflow.patch: Buffer overflow in sunrpc svcunix_create (CVE-2022-23218, bsc#1194770, BZ #28768)- Add support for livepatches (jsc#SLE-20049). - Enable livepatching on x86_64. - Generate ipa-clones tarball artifact when livepatching is enabled.- 0001-s390x-Align-child-stack-while-clone.-BZ-27968.patch, 0002-S390-Optimize-__memcpy_z196.patch, 0003-S390-Optimize-__memset_z196.patch, 0004-S390-Sync-HWCAP-names-with-kernel-by-adding-aliases-.patch, 0005-S390-Add-new-hwcap-values.patch, 0006-S390-Add-PCI_MIO-and-SIE-HWCAPs.patch: [15sp4 FEAT] GNU2007 - GLIBC: Support for new IBM Z Hardware (bsc#1191592, jsc#IBM-869)- mq-notify-use-after-free.patch: Use __pthread_attr_copy in mq_notify (CVE-2021-33574, bsc#1186489, BZ #27896)- wordexp-param-overflow.patch: wordexp: handle overflow in positional parameter number (CVE-2021-35942, bsc#1187911, BZ #28011)- s390-memmove-ifunc-selector-arch13.patch: S390: Also check vector support in memmove ifunc-selector (bsc#1184035, BZ #27511)- Update glibc-2.31-HTM-vzeroupper.diff with a AVX-SSE transition fix.- Add glibc-2.31-HTM-vzeroupper.diff to avoid VZEROUPPER in the AVX2 accelerated string routines which cause HTM transaction aborts. Instead use EVEX or SSE. (bsc#1181403)- nscd-netgroupcache.patch: nscd: Fix double free in netgroupcache (CVE-2021-27645, bsc#1182733, BZ #27462)- gconv-assertion-iso-2022-jp.patch: gconv: Fix assertion failure in ISO-2022-JP-3 module (CVE-2021-3326, bsc#1181505, BZ #27256)- sysvipc-sem-stat-any.patch: sysvipc: Fix SEM_STAT_ANY kernel argument pass (bsc#1180557, BZ #26637)- aarch64-getauxval.patch: aarch64: Accept PLT calls to __getauxval within libc.so (bsc#1167939) - iconv-redundant-shift.patch: iconv: Accept redundant shift sequences in IBM1364 (CVE-2020-27618, bsc#1178386, BZ #26224) - iconv-ucs4-loop-bounds.patch: iconv: Fix incorrect UCS4 inner loop bounds (CVE-2020-29562, bsc#1179694, BZ #26923) - printf-long-double-non-normal.patch: x86: Harden printf against non-normal long double values (CVE-2020-29573, bsc#1179721, BZ #26649) - get-nprocs-cpu-online-parsing.patch: Fix parsing of /sys/devices/system/cpu/online (bsc#1180038, BZ #25859)- power10-support.patch: Add support for POWER10 (jsc#SLE-13520) - iconv-option-parsing.patch: Rewrite iconv option parsing (CVE-2016-10228, bsc#1027496, BZ #19519)- Update to glibc 2.31 - glibc-2.14-crypt.diff, crypt_blowfish-const.patch, crypt_blowfish-1.2-sha.diff, crypt_blowfish-gensalt.patch, crypt_blowfish-1.2-hack_around_arm.diff, glibc-nodate.patch, powerpc-elision-enable-envvar.patch, s390-elision-enable-envvar.patch, crt-nocompress-debug-sections.patch, resolv-context-leak.patch, dl-runtime-resolve-opt-avx512f.patch, libpthread-compat-wrappers.patch, math-c++-compat.patch, remove-nss-nis-compat.patch, eh-frame-zero-terminator.patch, ld-so-hwcap-x86-64.patch, assert-pedantic.patch, getaddrinfo-errno.patch, resolv-conf-oom.patch, dynarray-allocation.patch, nearbyint-inexact.patch, nss-compat.patch, nscd-libnsl.patch, malloc-tcache-leak.patch, falkor-memcpy-memmove.patch, aarch64-cpu-features.patch, nss-files-large-buffers.patch, sysconf-uio-maxiov.patch, glob-tilde-overflow.patch, dl-runtime-resolve-xsave.patch, spawni-assert.patch, x86-64-dl-platform.patch, glob64-s390.patch, tst-tlsopt-powerpc.patch, powerpc-hwcap-bits.patch, malloc-tcache-check-overflow.patch, dl-init-paths-overflow.patch, fillin-rpath-empty-tokens.patch, getcwd-absolute.patch, memalign-overflow.patch, stack-guard-size-accounting.patch, libgcc-rtld-now.patch, res-send-enomem.patch, glibc-fix-avx512-mempcpy.patch, i386-memmove-sse2-unaligned.patch, realpath-ssize-max-overflow.patch, localtime-2039.patch, math-remove-slow-path.patch, aarch64-hwcap-atomics.patch, glibc-fix-aarch64-build.diff, absolute-symbols.patch, x86-haswell-string-flags.patch, pthread-cond-broadcast-waiters-after-spinning.patch, mman-map-sync.patch, mman-linux-map-shared-validate.patch, nptl-setxid-error.patch, pthread-mutex-trylock-barrier.patch, getaddrinfo-parse-ipv4-address.patch, japanese-era-name-may-2019.patch, force-elision-race.patch, regex-read-overrun.patch, regex-parse-reg-exp.patch, 0001-S390-Add-configure-check-to-detect-z10-as-mininum-ar.patch, 0002-S390-Use-hwcap-instead-of-dl_hwcap-in-ifunc-resolver.patch, 0003-S390-Unify-31-64bit-memcpy.patch, 0004-S390-Refactor-memcpy-mempcpy-ifunc-handling.patch, 0005-S390-Remove-s390-specific-implementation-of-bcopy.patch, 0006-S390-Use-memcpy-for-forward-cases-in-memmove.patch, 0007-S390-Add-configure-check-to-detect-z13-as-mininum-ar.patch, 0008-S390-Add-z13-memmove-ifunc-variant.patch, 0009-S390-Add-z13-strstr-ifunc-variant.patch, 0010-S390-Add-z13-memmem-ifunc-variant.patch, 0011-S390-Cleanup-ifunc-resolve.h.patch, 0012-S390-Mark-vx-and-vxe-as-important-hwcap.patch, 0013-S390-Add-new-hwcap-values-for-new-cpu-architecture-a.patch, 0014-S390-Add-configure-check-to-detect-support-for-arch1.patch, 0015-S390-Add-arch13-memmove-ifunc-variant.patch, 0016-S390-Add-arch13-strstr-ifunc-variant.patch, 0017-S390-Add-arch13-memmem-ifunc-variant.patch, prefer-map-32bit-exec.patch, s390-strstr-page-boundary.patch, ppc-tle-htm-nosc.patch, posix-Add-internal-symbols-for-posix_spawn-interface.patch, glibc-2.29-posix-Use-posix_spawn-on-popen.patch, backtrace-powerpc.patch, pthread-rwlock-pwn.patch, manual-memory-protection.patch, ldbl-96-rem-pio2l.patch, dl-sort-maps.patch, dlopen-filter-object.patch, glob-use-after-free.patch, nptl-setxid-race.patch, nscd-senfile.patch, ldd-system-interp.patch, abort-no-flush.patch, fnmatch-collating-elements.patch, nss-files-long-lines-2.patch, iconv-reset-input-buffer.patch, nscd-prune.patch, syslog-locking.patch: Removed. - long-double-alias.patch, glibc-nsswitch-usr.diff, euc-kr-overrun.patch, riscv-syscall-clobber.patch, nscd-gc-cycle.patch: Added.- nscd-senfile.patch: Fix concurrent changes on nscd aware files (bsc#1171878, BZ #23178) - nscd-prune.patch: nscd: bump GC cycle during cache pruning (bsc#1171878, BZ #26130) - syslog-locking.patch: Correct locking and cancellation cleanup in syslog functions (bsc#1172085, BZ #26100)- nptl-setxid-race.patch: nptl: wait for pending setxid request also in detached thread (bsc#1162930, BZ #25942)- glob-use-after-free.patch: Fix use-after-free in glob when expanding ~user (CVE-2020-1752, bsc#1167631, BZ #25414)- dl-sort-maps.patch, dlopen-filter-object.patch: Allow dlopen of filter object to work (bsc#1166106, BZ #16272)- ldbl-96-rem-pio2l.patch: Avoid ldbl-96 stack corruption from range reduction of pseudo-zero (CVE-2020-10029, bsc#1165784, BZ #25487)- pthread-rwlock-pwn.patch: Fix rwlock stall with PREFER_WRITER_NONRECURSIVE_NP (bsc#1164505, BZ #23861) - manual-memory-protection.patch: manual: Document mprotect and introduce section on memory protection (bsc#1163184)- backtrace-powerpc.patch: Fix array overflow in backtrace on PowerPC (CVE-2020-1751, bsc#1158996, BZ #25423)- posix-Add-internal-symbols-for-posix_spawn-interface.patch, glibc-2.29-posix-Use-posix_spawn-on-popen.patch: Use posix_spawn on popen (bsc#1149332, BZ #22834)- ppc-tle-htm-nosc.patch: powerpc: Fix syscalls during early process initialization (SLE-8348, BZ #22685)- s390-strstr-page-boundary.patch: S390: Fix handling of needles crossing a page in strstr z15 ifunc-variant (bsc#1157893, BZ #25226)- prefer-map-32bit-exec.patch: rtld: Check __libc_enable_secure before honoring LD_PREFER_MAP_32BIT_EXEC (CVE-2019-19126, bsc#1157292, BZ [#25204])- GNU1815 - Hardware support in toolchain (bsc#1151582) 0001-S390-Add-configure-check-to-detect-z10-as-mininum-ar.patch 0002-S390-Use-hwcap-instead-of-dl_hwcap-in-ifunc-resolver.patch 0003-S390-Unify-31-64bit-memcpy.patch 0004-S390-Refactor-memcpy-mempcpy-ifunc-handling.patch 0005-S390-Remove-s390-specific-implementation-of-bcopy.patch 0006-S390-Use-memcpy-for-forward-cases-in-memmove.patch 0007-S390-Add-configure-check-to-detect-z13-as-mininum-ar.patch 0008-S390-Add-z13-memmove-ifunc-variant.patch 0009-S390-Add-z13-strstr-ifunc-variant.patch 0010-S390-Add-z13-memmem-ifunc-variant.patch 0011-S390-Cleanup-ifunc-resolve.h.patch 0012-S390-Mark-vx-and-vxe-as-important-hwcap.patch 0013-S390-Add-new-hwcap-values-for-new-cpu-architecture-a.patch 0014-S390-Add-configure-check-to-detect-support-for-arch1.patch 0015-S390-Add-arch13-memmove-ifunc-variant.patch 0016-S390-Add-arch13-strstr-ifunc-variant.patch 0017-S390-Add-arch13-memmem-ifunc-variant.patch- regex-parse-reg-exp.patch: ERE '0|()0|\1|0' causes regexec undefined behavior (CVE-2009-5155, bsc#1127223, BZ #18986) - regex-read-overrun.patch: regex: fix read overrun (CVE-2019-9169, bsc#1127308, BZ #24114)- crt-nocompress-debug-sections.patch: Don't compress debug sections in crt*.o files (bsc#1123710)- ldconfig-concurrency.patch: Avoid concurrency problem in ldconfig (bsc#1117993, BZ #23973)- force-elision-race.patch: Fix race in pthread_mutex_lock while promoting to PTHREAD_MUTEX_ELISION_NP (bsc#1131330, BZ #23275)- japanese-era-name-may-2019.patch: ja_JP locale: Add entry for the new Japanese era (bsc#1100396, BZ #22964)- pthread-mutex-trylock-barrier.patch: pthread_mutex_trylock does not use the correct order of instructions while maintaining the robust mutex list due to missing compiler barriers (bsc#1130045, BZ #24180) - getaddrinfo-parse-ipv4-address.patch: getaddrinfo: Fully parse IPv4 address strings (CVE-2016-10739, bsc#1122729, BZ #20018)- mman-map-sync.patch: Add MAP_SYNC from Linux 4.15 (bsc#1126590) - mman-linux-map-shared-validate.patch: Add MAP_SHARED_VALIDATE from Linux 4.15 (bsc#1126590) - nptl-setxid-error.patch: nptl: Preserve error in setxid thread broadcast in coredumps (bsc#1063675, BZ #22153)- x86-haswell-string-flags.patch: Fix Haswell CPU string flags (bsc#1114984, BZ #23709) - pthread-cond-broadcast-waiters-after-spinning.patch: Fix waiters-after-spinning case (bsc#1114993, BZ #23538)- absolute-symbols.patch: Don't relocate absolute symbols (bsc#1112570, BZ [#19818])- glibc-fix-aarch64-build.diff: Fix build on aarch64 with binutils newer than 2.30.- Add glibc-locale-base subpackage containing only C, C.UTF-8 and en_US.UTF-8 locales (fate#326551)- aarch64-hwcap-atomics.patch: aarch64: add HWCAP_ATOMICS to HWCAP_IMPORTANT (fate#325962)- math-remove-slow-path.patch: Remove slow paths from math routines (fate#325815, fate#325879, fate#325880, fate#325881, fate#325882)- localtime-2039.patch: Fix year 2039 bug for localtime with 64-bit time_t (bsc#1102526, BZ #22639)- i386-memmove-sse2-unaligned.patch: Fix SSE2 memmove issue when crossing 2GB boundary (CVE-2017-18269, bnc#1094150, BZ #22644) - realpath-ssize-max-overflow.patch: Fix overflow in path length computation (CVE-2018-11236, bsc#1094161, BZ #22786) - glibc-fix-avx512-mempcpy.patch: replace with upstream version- Use %license also for COPYING and COPYING.LIB (bsc#1082318)- Add glibc-fix-avx512-mempcpy.patch as quick fix for mempcpy buffer overwrite in memmove-avx512-no-vzeroupper.S for Knights Landing CPUs (CVE-2018-11237, bnc#1094154, bnc#1092877, BZ #23196)- Readd nis to netgroup and automount nss config (bsc#1088860)- res-send-enomem.patch: Fix crash in resolver on memory allocation failure (bsc#1086690, BZ #23005)- Use %license (bsc#1082318)- stack-guard-size-accounting.patch: Fix stack guard size accounting (bsc#1074208, BZ #22637) - libgcc-rtld-now.patch: Open libgcc.so with RTLD_NOW during pthread_cancel (bsc#1074208, BZ #22636)- Mark source0 as nosource in non-main source rpms- Add systemtap-headers to BuildRequires. - Add --enable-systemtap to configure arguments. (fate#324969, bsc#1073636)- memalign-overflow.patch: Fix integer overflows in internal memalign and malloc functions (CVE-2018-6485, CVE-2018-6551, bsc#1079036, BZ #22343, BZ #22774)- fix-locking-in-_IO_cleanup.patch: Skip locked files during exit (bsc#1070491, BZ #15142)- Avoid duplicate source rpm- getcwd-absolute.patch: make getcwd(3) fail if it cannot obtain an absolute path (CVE-2018-1000001, bsc#1074293, BZ #22679)- dl-init-paths-overflow.patch: Count components of the expanded path in _dl_init_path (CVE-2017-1000408, CVE-2017-1000409, bsc#1071319, BZ [#22607], BZ #22627) - fillin-rpath-empty-tokens.patch: Check for empty tokens before dynamic string token expansion (CVE-2017-16997, bsc#1073231, BZ #22625)- tst-tlsopt-powerpc.patch: fix tst-tlsopt-powerpc (bcn#1070419) - powerpc-hwcap-bits.patch: Update HWCAP for powerpc (bnc#1070420) - malloc-tcache-check-overflow.patch: Fix integer overflow in malloc when tcache is enabled (CVE-2017-17426, bnc#1071479, BZ #22375)- Add _multibuild- glob64-s390.patch: no compat glob64 on s390 - noversion.tar.bz2: remove unused source- x86-64-dl-platform.patch: Don't set GLRO(dl_platform) to NULL (BZ #22299)- spawni-assert.patch: Fix improper assert in Linux posix_spawn (BZ [#22273])- math-c++-compat.patch: Add more C++ compatibility (BZ #22296) - malloc-tcache-leak.patch: Fix tcache leak after thread destruction (BZ [#22111]) - falkor-memcpy-memmove.patch: Optimized implementation of memcpy/memmove for Qualcomm Falkor - aarch64-cpu-features.patch: Fix glibc.tune.cpu tunable handling - nss-files-large-buffers.patch: Avoid large buffers with many host addresses (BZ #22078) - sysconf-uio-maxiov.patch: Fix missing definition of UIO_MAXIOV (BZ [#22321]) - glob-tilde-overflow.patch: Fix buffer overflows with GLOB_TILDE (CVE-2017-15670, CVE-2017-15671, CVE-2017-15804, bsc#1064569. bsc#1064580, bsc#1064583, BZ #22320, BZ #22325, BZ #22332) - dl-runtime-resolve-xsave.patch: Use fxsave/xsave/xsavec in _dl_runtime_resolve (BZ #21265)- nscd-libnsl.patch: Remove reference to libnsl from nscd (bsc#1062244)- Drop glibc-obsolete - glibc-2.3.90-noversion.diff: remove - reinitialize-dl_load_write_lock.patch: remove- nss-compat.patch: Move nss_compat from nis to nss subdir and install it unconditionally - nsswitch.conf: switch back to compat for passwd, group, shadow- assert-pedantic.patch: Suppress pedantic warning caused by statement expression (BZ #21242, BZ #21972) - math-c++-compat.patch: Add more C++ compatibility (BZ #22235) - getaddrinfo-errno.patch: Fix errno and h_errno handling in getaddrinfo (BZ #21915, BZ #21922) - resolv-conf-oom.patch: Fix memory handling in OOM situation during resolv.conf parsing (BZ #22095, BZ #22096) - dynarray-allocation.patch: Fix initial size of dynarray allocation and set errno on overflow error - nearbyint-inexact.patch: Avoid spurious inexact in nearbyint (BZ #22225)- math-c++-compat.patch: add more C++ compatibility (BZ #22146)- Remove rpcsvc/yppasswd.* from glibc-devel - ld-so-hwcap-x86-64.patch: add x86_64 to hwcap (bsc#1056606, BZ #22093)- eh-frame-zero-terminator.patch: Properly terminate .eh_frame (BZ #22051)- Disable obsolete libnsl and NIS support - remove-nss-nis-compat.patch: remove nis and compat from default NSS configs - nsswitch.conf: Likewise- math-c++-compat.patch: Do not use __builtin_types_compatible_p in C++ mode (BZ #21930)- Add iconvconfig to baselibs.conf (bsc#1051042)- resolv-context-leak.patch: Fix leaks of resolver contexts - dl-runtime-resolve-opt-avx512f.patch: Use _dl_runtime_resolve_opt only with AVX512F (BZ #21871) - libpthread-compat-wrappers.patch: Don't use IFUNC resolver for longjmp or system in libpthread (BZ #21041)- Update to glibc 2.26 * A per-thread cache has been added to malloc * Unicode 10.0.0 Support * Improvements to the DNS stub resolver * New function reallocarray, which resizes an allocated block (like realloc) to the product of two sizes, with a guaranteed clean failure upon integer overflow in the multiplication * New wrappers for the Linux-specific system calls preadv2 and pwritev2 * posix_spawnattr_setflags now supports the flag POSIX_SPAWN_SETSID, to create a new session ID for the spawned process * errno.h is now safe to use from C-preprocessed assembly language on all supported operating systems * On ia64, powerpc64le, x86-32, and x86-64, the math library now implements 128-bit floating point as defined by ISO/IEC/IEEE 60559:2011 (IEEE 754-2008) and ISO/IEC TS 18661-3:2015 * The synchronization that pthread_spin_unlock performs has been changed to now be equivalent to a C11 atomic store with release memory order to the spin lock's memory location * The DNS stub resolver no longer performs EDNS fallback * res_mkquery and res_nmkquery no longer support the IQUERY opcode * The _res_opcodes variable has been removed from libresolv * no longer includes inline versions of any string functions, as this kind of optimization is better done by the compiler * The nonstandard header has been removed * The obsolete header has been removed * The obsolete signal constant SIGUNUSED is no longer defined by * The obsolete function cfree has been removed * The stack_t type no longer has the name struct sigaltstack * The ucontext_t type no longer has the name struct ucontext * On S/390 GNU/Linux, the constants defined by have been synced with the kernel * Linux kernel 3.2 or later is required at runtime, on all architectures supported by that kernel * The DNS stub resolver limits the advertised UDP buffer size to 1200 bytes, to avoid fragmentation-based spoofing attacks (CVE-2017-12132) * LD_LIBRARY_PATH is now ignored in binaries running in privileged AT_SECURE mode to guard against local privilege escalation attacks (CVE-2017-1000366) * Avoid printing a backtrace from the __stack_chk_fail function since it is called on a corrupt stack and a backtrace is unreliable on a corrupt stack (CVE-2010-3192) * A use-after-free vulnerability in clntudp_call in the Sun RPC system has been fixed (CVE-2017-12133) * fate#322258, fate#321513, fate#322453 - fts-symbol-redirect.patch, glibc-resolv-reload.diff, glibc-2.2-sunrpc.diff, i686-memchr-sse.patch, ld-hwcap-mask-suid.patch, ld-library-path-suid.patch, sunrpc-use-after-free.patch, test-math-vector-sincos-aliasing.patch, tunables-bigendian.patch: Removed- Fix RPM group- s390-elision-enable-envvar.patch: enable TLE only if GLIBC_ELISION_ENABLE=yes is defined (fate#322271)- ld-hwcap-mask-suid.patch: Ignore and remove LD_HWCAP_MASK for AT_SECURE programs (BZ #21209) - ld-library-path-suid.patch: Completely ignore LD_LIBRARY_PATH for AT_SECURE=1 programs (CVE-2017-1000366, bsc#1039357, BZ #21624)- Remove glibc-cpusetsize.diff, no longer useful- fts-symbol-redirect.patch: Fix symbol redirect for fts_set (bsc#1041123, BZ #21289)- test-math-vector-sincos-aliasing.patch: Fix test-math-vector-sincos.h aliasing- add-locales.patch: renamed from glibc-2.3.locales.diff.bz2, drop en_BE locales (bsc#1039502)- Remove glibc-testsuite.patch, no longer relevant- Use multibuild feature - Remove obsolete check-build.sh - glibc.rpmlintrc: remove obsolete entries - Use %tmpfiles_create in nscd postin- i686-memchr-sse.patch: Fix i686 memchr overflow calculation (bsc#1031021, BZ #21182) - sunrpc-use-after-free.patch: Avoid use-after-free read access in clntudp_call (BZ #21115) - Build testsuite with gdb and python-pexpect to enable more tests- tunables-bigendian.patch: Fix getting tunable values on big-endian (BZ [#21109])- Update to glibc 2.25 * The feature test macro __STDC_WANT_LIB_EXT2__, from ISO/IEC TR 24731-2:2010, is supported to enable declarations of functions from that TR. * The feature test macro __STDC_WANT_IEC_60559_BFP_EXT__, from ISO/IEC TS 18661-1:2014, is supported to enable declarations of functions and macros from that TS. * The feature test macro __STDC_WANT_IEC_60559_FUNCS_EXT__, from ISO/IEC TS 18661-4:2015, is supported to enable declarations of functions and macros from that TS. * The nonstandard feature selection macros _REENTRANT and _THREAD_SAFE are now treated as compatibility synonyms for _POSIX_C_SOURCE=199506L. * The inclusion of by is deprecated. * New features from TS 18661-1:2014 are added to libm: the fesetexcept, fetestexceptflag, fegetmode and fesetmode functions, the femode_t type and the FE_DFL_MODE and FE_SNANS_ALWAYS_SIGNAL macros. * Integer width macros from TS 18661-1:2014 are added to : CHAR_WIDTH, SCHAR_WIDTH, UCHAR_WIDTH, SHRT_WIDTH, USHRT_WIDTH, INT_WIDTH, UINT_WIDTH, LONG_WIDTH, ULONG_WIDTH, LLONG_WIDTH, ULLONG_WIDTH; and to : INT8_WIDTH, UINT8_WIDTH, INT16_WIDTH, UINT16_WIDTH, INT32_WIDTH, UINT32_WIDTH, INT64_WIDTH, UINT64_WIDTH, INT_LEAST8_WIDTH, UINT_LEAST8_WIDTH, INT_LEAST16_WIDTH, UINT_LEAST16_WIDTH, INT_LEAST32_WIDTH, UINT_LEAST32_WIDTH, INT_LEAST64_WIDTH, UINT_LEAST64_WIDTH, INT_FAST8_WIDTH, UINT_FAST8_WIDTH, INT_FAST16_WIDTH, UINT_FAST16_WIDTH, INT_FAST32_WIDTH, UINT_FAST32_WIDTH, INT_FAST64_WIDTH, UINT_FAST64_WIDTH, INTPTR_WIDTH, UINTPTR_WIDTH, INTMAX_WIDTH, UINTMAX_WIDTH, PTRDIFF_WIDTH, SIG_ATOMIC_WIDTH, SIZE_WIDTH, WCHAR_WIDTH, WINT_WIDTH. * New features are added from TS 18661-1:2014: - Signaling NaN macros: SNANF, SNAN, SNANL. - Nearest integer functions: roundeven, roundevenf, roundevenl, fromfp, fromfpf, fromfpl, ufromfp, ufromfpf, ufromfpl, fromfpx, fromfpxf, fromfpxl, ufromfpx, ufromfpxf, ufromfpxl. - llogb functions: the llogb, llogbf and llogbl functions, and the FP_LLOGB0 and FP_LLOGBNAN macros. - Max-min magnitude functions: fmaxmag, fmaxmagf, fmaxmagl, fminmag, fminmagf, fminmagl. - Comparison macros: iseqsig. - Classification macros: iscanonical, issubnormal, iszero. - Total order functions: totalorder, totalorderf, totalorderl, totalordermag, totalordermagf, totalordermagl. - Canonicalize functions: canonicalize, canonicalizef, canonicalizel. - NaN functions: getpayload, getpayloadf, getpayloadl, setpayload, setpayloadf, setpayloadl, setpayloadsig, setpayloadsigf, setpayloadsigl. * The functions strfromd, strfromf, and strfroml, from ISO/IEC TS 18661-1:2014, are added to libc. * Most of glibc can now be built with the stack smashing protector enabled. * The function explicit_bzero, from OpenBSD, has been added to libc. * On ColdFire, MicroBlaze, Nios II and SH3, the float_t type is now defined to float instead of double. * On x86_64, when compiling with -mfpmath=387 or -mfpmath=sse+387, the float_t and double_t types are now defined to long double instead of float and double. * The getentropy and getrandom functions, and the header file have been added. * The buffer size for byte-oriented stdio streams is now limited to 8192 bytes by default. * The header now includes the header. * The malloc_get_state and malloc_set_state functions have been removed. * The “ip6-dotint” and “no-ip6-dotint” resolver options, and the corresponding RES_NOIP6DOTINT flag from have been removed. * The "ip6-bytestring" resolver option and the corresponding RES_USEBSTRING flag from have been removed. * The flags RES_AAONLY, RES_PRIMARY, RES_NOCHECKNAME, RES_KEEPTSIG, RES_BLAST defined in the header file have been deprecated. * The "inet6" option in /etc/resolv.conf and the RES_USE_INET6 flag for _res.flags are deprecated. * DNSSEC-related declarations and definitions have been removed from the header file, and libresolv will no longer attempt to decode the data part of DNSSEC record types. * The resource record type classification macros ns_t_qt_p, ns_t_mrr_p, ns_t_rr_p, ns_t_udp_p, ns_t_xfr_p have been removed from the header file because the distinction between RR types and meta-RR types is not officially standardized, subject to revision, and thus not suitable for encoding in a macro. * The types res_sendhookact, res_send_qhook, re_send_rhook, and the qhook and rhook members of the res_state type in have been removed. * For multi-arch support it is recommended to use a GCC which has been built with support for GNU indirect functions. * GDB pretty printers have been added for mutex and condition variable structures in POSIX Threads. * Tunables feature added to allow tweaking of the runtime for an application program. * A new version of condition variables functions have been implemented in the NPTL implementation of POSIX Threads to provide stronger ordering guarantees. * A new version of pthread_rwlock functions have been implemented to use a more scalable algorithm primarily through not using a critical section anymore to make state changes. * On ARM EABI (32-bit), generating a backtrace for execution contexts which have been created with makecontext could fail to terminate due to a missing .cantunwind annotation. (CVE-2016-6323) * The DNS stub resolver functions would crash due to a NULL pointer dereference when processing a query with a valid DNS question type which was used internally in the implementation. (CVE-2015-5180) - Enable stack protector if part of %optflags - startcontext-cantunwind.patch: Removed - cpuid-assertion.patch: Removed- cpuid-assertion.patch: Don't assert on older Intel CPUs (BZ #20647)- glibc-2.3.3-nscd-db-path.diff: Move persistent nscd databases to /var/lib/nscd - glibc-2.3.90-langpackdir.diff: simplify- Update to glibc 2.24 * The minimum Linux kernel version that this version of the GNU C Library can be used with is 3.2 * The pap_AN locale has been deleted * The readdir_r and readdir64_r functions have been deprecated * The type `union wait' has been removed * A new NSS action is added to facilitate large distributed system administration * The deprecated __malloc_initialize_hook variable has been removed from the API * The long unused localedef --old-style option has been removed * nextupl, nextup, nextupf, nextdownl, nextdown and nextdownf are added to libm * An unnecessary stack copy in _nss_dns_getnetbyname_r was removed (CVE-2016-3075) * Previously, getaddrinfo copied large amounts of address data to the stack, even after the fix for CVE-2013-4458 has been applied, potentially resulting in a stack overflow. getaddrinfo now uses a heap allocation instead (CVE-2016-3706) * The glob function suffered from a stack-based buffer overflow when it was called with the GLOB_ALTDIRFUNC flag and encountered a long file name (CVE-2016-1234) * The Sun RPC UDP client could exhaust all available stack space when flooded with crafted ICMP and UDP messages (CVE-2016-4429) * The IPv6 name server management code in libresolv could result in a memory leak for each thread which is created, performs a failing naming lookup, and exits (CVE-2016-5417) - startcontext-cantunwind.patch: mark __startcontext as .cantunwind (bsc#974800, BZ #20435) - Removed patches: * 0001-Updated-translations-for-2.23.patch * 0002-Regenerate-libc.pot-for-2.23.patch * 0003-Regenerated-configure-scripts.patch * 0004-x86_64-Set-DL_RUNTIME_UNALIGNED_VEC_SIZE-to-8.patch * 0005-Add-fts64_-to-sysdeps-arm-nacl-libc.abilist.patch * 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch * 0007-NEWS-2.23-Fix-typo-in-bug-19048-text.patch * 0008-Update-NEWS.patch * 0009-sln-use-stat64.patch * 0010-Add-sys-auxv.h-wrapper-to-include-sys.patch * 0011-mips-terminate-the-FDE-before-the-return-trampoline-.patch * 0012-Use-HAS_ARCH_FEATURE-with-Fast_Rep_String.patch * 0013-Mention-BZ-19762-in-NEWS.patch * 0014-Define-_HAVE_STRING_ARCH_mempcpy-to-1-for-x86.patch * 0015-Or-bit_Prefer_MAP_32BIT_EXEC-in-EXTRA_LD_ENVVARS.patch * 0016-Fix-resource-leak-in-resolver-bug-19257.patch * 0017-math-don-t-clobber-old-libm.so-on-install-BZ-19822.patch * 0018-resolv-Always-set-resplen2-out-parameter-in-send_dg-.patch * 0019-S390-Save-and-restore-fprs-vrs-while-resolving-symbo.patch * 0020-S390-Extend-structs-La_s390_regs-La_s390_retval-with.patch * 0021-CVE-2016-3075-Stack-overflow-in-_nss_dns_getnetbynam.patch * 0022-configure-fix-test-usage.patch * 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch * 0024-nss_db-Propagate-ERANGE-error-if-parse_line-fails-BZ.patch * 0025-getnameinfo-Do-not-preserve-errno.patch * 0026-getnameinfo-Refactor-and-fix-memory-leak-BZ-19642.patch * 0027-getnameinfo-Reduce-line-length-and-add-missing-comme.patch * 0028-getnameinfo-Avoid-calling-strnlen-on-uninitialized-b.patch * 0029-getnameinfo-Return-EAI_OVERFLOW-in-more-cases-BZ-197.patch * 0030-hesiod-Remove-RCS-keywords.patch * 0031-hesiod-Always-use-thread-local-resolver-state-BZ-195.patch * 0032-hesiod-Avoid-heap-overflow-in-get_txt_records-BZ-200.patch * 0033-malloc-Remove-NO_THREADS.patch * 0034-Fix-malloc-threaded-tests-link-on-non-Linux.patch * 0035-malloc-Run-fork-handler-as-late-as-possible-BZ-19431.patch * 0036-malloc-Remove-malloc-hooks-from-fork-handler.patch * 0037-malloc-Add-missing-internal_function-attributes-on-f.patch * 0038-nss_dns-Fix-assertion-failure-in-_nss_dns_getcanonna.patch * 0039-nss_dns-Validate-RDATA-length-against-packet-length-.patch * 0040-resolv-nss_dns-Remove-remaining-syslog-logging-BZ-19.patch * 0041-nss_dns-Check-address-length-before-creating-addrinf.patch * 0042-nss_dns-Skip-over-non-PTR-records-in-the-netent-code.patch * 0043-resolv-Always-set-resplen2-out-parameter-in-send_vc-.patch * 0044-tst-audit4-tst-audit10-Compile-AVX-AVX-512-code-sepa.patch * 0045-Fix-tst-audit10-build-when-mavx512f-is-not-supported.patch * 0046-tst-audit10-Fix-compilation-on-compilers-without-bit.patch * 0047-strfmon_l-Use-specified-locale-for-number-formatting.patch * 0048-glob-Simplify-the-interface-for-the-GLOB_ALTDIRFUNC-.patch * 0049-CVE-2016-1234-glob-Do-not-copy-d_name-field-of-struc.patch * 0050-ldconfig-Do-not-remove-stale-symbolic-links-with-X-B.patch * 0051-Report-dlsym-dlvsym-lookup-errors-using-dlerror-BZ-1.patch * 0052-Fix-tst-dlsym-error-build.patch * 0053-Remove-trailing-newline-from-date_fmt-in-Serbian-loc.patch * 0054-Revert-Report-dlsym-dlvsym-lookup-errors-using-dlerr.patch * 0055-CVE-2016-3706-getaddrinfo-stack-overflow-in-hostent-.patch * 0056-Fix-strfmon_l-Use-specified-locale-for-number-format.patch * clntudp-call-alloca.patch * glibc-memset-nontemporal.diff * nis-initgroups-status.patch * nscd-gc-crash.patch * robust-mutex-deadlock.patch * strncat-avoid-array-bounds-warning.patch- strncat-avoid-array-bounds-warning.patch: Avoid array-bounds warning for stncat on i586 (BZ #20260) - Update glibc.keyring - Unset MALLOC_CHECK_ during testsuite run- nsswitch.conf: Add fallback to files for passwd and group to prepare for libnsl removal.- nis-initgroups-status.patch: Return proper status from _nss_nis_initgroups_dyn (bsc#984269, BZ #20262) - robust-mutex-deadlock.patch: Fix generic __lll_robust_timedlock_wait to check for timeout (bsc#985170, BZ #20263)- nscd-gc-crash.patch: Fix nscd assertion failure in gc (bsc#965699, BZ [#19755])- clntudp-call-alloca.patch: do not use alloca in clntudp_call (CVE-2016-4429, bsc#980854, BZ #20112)- Import patches from 2.23 branch 0001-Updated-translations-for-2.23.patch 0002-Regenerate-libc.pot-for-2.23.patch 0003-Regenerated-configure-scripts.patch 0004-x86_64-Set-DL_RUNTIME_UNALIGNED_VEC_SIZE-to-8.patch 0005-Add-fts64_-to-sysdeps-arm-nacl-libc.abilist.patch 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch 0007-NEWS-2.23-Fix-typo-in-bug-19048-text.patch 0008-Update-NEWS.patch 0009-sln-use-stat64.patch 0010-Add-sys-auxv.h-wrapper-to-include-sys.patch 0011-mips-terminate-the-FDE-before-the-return-trampoline-.patch 0012-Use-HAS_ARCH_FEATURE-with-Fast_Rep_String.patch 0013-Mention-BZ-19762-in-NEWS.patch 0014-Define-_HAVE_STRING_ARCH_mempcpy-to-1-for-x86.patch 0015-Or-bit_Prefer_MAP_32BIT_EXEC-in-EXTRA_LD_ENVVARS.patch 0016-Fix-resource-leak-in-resolver-bug-19257.patch 0017-math-don-t-clobber-old-libm.so-on-install-BZ-19822.patch 0018-resolv-Always-set-resplen2-out-parameter-in-send_dg-.patch 0019-S390-Save-and-restore-fprs-vrs-while-resolving-symbo.patch 0020-S390-Extend-structs-La_s390_regs-La_s390_retval-with.patch 0021-CVE-2016-3075-Stack-overflow-in-_nss_dns_getnetbynam.patch 0022-configure-fix-test-usage.patch 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch 0024-nss_db-Propagate-ERANGE-error-if-parse_line-fails-BZ.patch 0025-getnameinfo-Do-not-preserve-errno.patch 0026-getnameinfo-Refactor-and-fix-memory-leak-BZ-19642.patch 0027-getnameinfo-Reduce-line-length-and-add-missing-comme.patch 0028-getnameinfo-Avoid-calling-strnlen-on-uninitialized-b.patch 0029-getnameinfo-Return-EAI_OVERFLOW-in-more-cases-BZ-197.patch 0030-hesiod-Remove-RCS-keywords.patch 0031-hesiod-Always-use-thread-local-resolver-state-BZ-195.patch 0032-hesiod-Avoid-heap-overflow-in-get_txt_records-BZ-200.patch 0033-malloc-Remove-NO_THREADS.patch 0034-Fix-malloc-threaded-tests-link-on-non-Linux.patch 0035-malloc-Run-fork-handler-as-late-as-possible-BZ-19431.patch 0036-malloc-Remove-malloc-hooks-from-fork-handler.patch 0037-malloc-Add-missing-internal_function-attributes-on-f.patch 0038-nss_dns-Fix-assertion-failure-in-_nss_dns_getcanonna.patch 0039-nss_dns-Validate-RDATA-length-against-packet-length-.patch 0040-resolv-nss_dns-Remove-remaining-syslog-logging-BZ-19.patch 0041-nss_dns-Check-address-length-before-creating-addrinf.patch 0042-nss_dns-Skip-over-non-PTR-records-in-the-netent-code.patch 0043-resolv-Always-set-resplen2-out-parameter-in-send_vc-.patch 0044-tst-audit4-tst-audit10-Compile-AVX-AVX-512-code-sepa.patch 0045-Fix-tst-audit10-build-when-mavx512f-is-not-supported.patch 0046-tst-audit10-Fix-compilation-on-compilers-without-bit.patch 0047-strfmon_l-Use-specified-locale-for-number-formatting.patch 0048-glob-Simplify-the-interface-for-the-GLOB_ALTDIRFUNC-.patch 0049-CVE-2016-1234-glob-Do-not-copy-d_name-field-of-struc.patch 0050-ldconfig-Do-not-remove-stale-symbolic-links-with-X-B.patch 0051-Report-dlsym-dlvsym-lookup-errors-using-dlerror-BZ-1.patch 0052-Fix-tst-dlsym-error-build.patch 0053-Remove-trailing-newline-from-date_fmt-in-Serbian-loc.patch 0054-Revert-Report-dlsym-dlvsym-lookup-errors-using-dlerr.patch 0055-CVE-2016-3706-getaddrinfo-stack-overflow-in-hostent-.patch 0056-Fix-strfmon_l-Use-specified-locale-for-number-format.patch - CVE-2016-3075 CVE-2016-1234 CVE-2016-3706 bsc#973164 bsc#969727 - resolv-mem-leak.patch: renamed to 0016-Fix-resource-leak-in-resolver-bug-19257.patch - no-long-double.patch: renamed to 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch - glibc-gcc6.patch: renamed to 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch- glibc-c-utf8-locale.patch: fix bad standard in LC_IDENTIFICATION categories - glibc-2.3.locales.diff.bz2: likewise- glibc-gcc6.patch: Suppress GCC 6 warning about ambiguous 'else' with - Wparentheses- Add compatibility symlinks for LSB 3.0 (fate#318933)- powerpc-elision-enable-envvar.patch: enable TLE only if GLIBC_ELISION_ENABLE=yes is defined (bsc#967594, fate#318236)- ldd-system-interp.patch: Restore warning about execution permission, it is still needed for noexec mounts (bsc#915985)- Add C.UTF-8 locale (see https://sourceware.org/glibc/wiki/Proposals/C.UTF-8) and rh#902094 . Added with glibc-c-utf8-locale.patch. - Add glibc-disable-gettext-for-c-utf8.patch to disable gettext for C.UTF-8 same as C locale.- Move %install_info_delete to %preun - crypt_blowfish-1.3.tar.gz.sign: Remove, the sign key is no longer acceptable- no-long-double.patch: Don't use long double functions if NO_LONG_DOUBLE- Update to glibc 2.23 release. * Unicode 8.0.0 Support * sched_setaffinity, pthread_setaffinity_np no longer attempt to guess the kernel-internal CPU set size * The fts.h header can now be used with -D_FILE_OFFSET_BITS=64 * getaddrinfo now detects certain invalid responses on an internal netlink socket * A defect in the malloc implementation, present since glibc 2.15 (2012) or glibc 2.10 via --enable-experimental-malloc (2009), could result in the unnecessary serialization of memory allocation requests across threads * The obsolete header has been removed * The obsolete functions bdflush, create_module, get_kernel_syms, query_module and uselib are no longer available to newly linked binaries * Optimized string, wcsmbs and memory functions for IBM z13. * Newly linked programs that define a variable called signgam will no longer have it set by the lgamma, lgammaf and lgammal functions - Removed patches: * dont-remove-nodelete-flag.patch * openat64-readd-o-largefile.patch * mntent-blank-line.patch * opendir-o-directory-check.patch * strcoll-remove-strdiff-opt.patch * ld-pointer-guard.patch * tls-dtor-list-mangling.patch * powerpc-lock-elision-race.patch * prelink-elf-rtype-class.patch * vector-finite-math-aliases.patch * powerpc-elision-adapt-param.patch * catopen-unbound-alloca.patch * strftime-range-check.patch * hcreate-overflow-check.patch * errorcheck-mutex-no-elision.patch * refactor-nan-parsing.patch * send-dg-buffer-overflow.patch * isinf-cxx11-conflict.patch * ibm93x-redundant-shift-si.patch * iconv-reset-input-buffer.patch * tzset-tzname.patch * static-dlopen.patch- isinf-cxx11-conflict.patch: Fix isinf/isnan declaration conflict with C++11 (bsc#963700, BZ #19439)- tls-dtor-list-mangling.patch: Harden tls_dtor_list with pointer mangling (BZ #19018) - prelink-elf-rtype-class.patch: Keep only ELF_RTYPE_CLASS_{PLT|COPY} bits for prelink (BZ #19178) - vector-finite-math-aliases.patch: Better workaround for aliases of * _finite symbols in vector math library (BZ# 19058) - powerpc-elision-adapt-param.patch: powerpc: Fix usage of elision transient failure adapt param (BZ #19174) - catopen-unbound-alloca.patch: Fix unbound alloca in catopen (CVE-2015-8779, bsc#962739, BZ #17905) - strftime-range-check.patch: Add range check on time fields (CVE-2015-8776, bsc#962736, BZ #18985) - hcreate-overflow-check.patch: Handle overflow in hcreate (CVE-2015-8778, bsc#962737, BZ #18240) - errorcheck-mutex-no-elision.patch: Don't do lock elision on an error checking mutex (bsc#956716, BZ #17514) - refactor-nan-parsing.patch: Refactor strtod parsing of NaN payloads (CVE-2014-9761, bsc#962738, BZ #16962) - send-dg-buffer-overflow.patch: Fix getaddrinfo stack-based buffer overflow (CVE-2015-7547, bsc#961721, BZ #18665) - powerpc-lock-elision-race.patch: renamed from 0001-powerpc-Fix-a-race-condition-when-eliding-a-lock-20150730.patch- Add audit-devel and libcap-devel to BuildRequires, for use by nscd- reinitialize-dl_load_write_lock.patch: Reinitialize dl_load_write_lock on fork (bsc#958315, BZ #19282)- resolv-mem-leak.patch: Fix resource leak in resolver (bsc#955647, BZ #19257) - tzset-tzname.patch: Force rereading TZDEFRULES after it was used to set DST rules only (BZ #19253)- glibc-2.3.90-noversion.diff: use stat64- ld-pointer-guard.patch: Always enable pointer guard (CVE-2015-8777, bsc#950944, BZ #18928)- strcoll-remove-strdiff-opt.patch: Remove incorrect STRDIFF-based optimization (BZ #18589)- iconv-reset-input-buffer.patch: Fix iconv buffer handling with IGNORE error handler (BZ #18830)- new patch [BZ #18743] PowerPC: Fix a race condition when eliding a lock 0001-powerpc-Fix-a-race-condition-when-eliding-a-lock-20150730.patch- nss-files-long-lines-2.patch: Properly reread entry after failure in nss_files getent function (bsc#945779, BZ #18991)- fnmatch-collating-elements.patch: Fix fnmatch handling of collating elements (BZ #17396, BZ #16976)- opendir-o-directory-check.patch: Fix opendir inverted o_directory_works test - static-dlopen.patch: Static dlopen default library search path fix (bsc#937853)- mntent-blank-line.patch: Fix memory corruption w/blank lines- dont-remove-nodelete-flag.patch: Don't remove DF_1_NODELETE flag from all loaded objects on failed dlopen - openat64-readd-o-largefile.patch: Readd O_LARGEFILE flag for openat64- Update to glibc 2.22 release. * Cache information can be queried via sysconf() function on s390 * A buffer overflow in gethostbyname_r and related functions performing DNS requests has been fixed. (CVE-2015-1781) * The time zone file parser has been made more robust against crafted time zone files * A powerpc and powerpc64 optimization for TLS, similar to TLS descriptors for LD and GD on x86 and x86-64, has been implemented. * Character encoding and ctype tables were updated to Unicode 7.0.0 * Added vector math library named libmvec * A new fmemopen implementation has been added with the goal of POSIX compliance. * The header is deprecated, and will be removed in a future release. * bsc#905313 bsc#920338 bsc#927080 bsc#928723 bsc#931480 bsc#939211 bsc#940195 bsc#940332 bsc#944494 bsc#968787 - Patches from upstream removed * htm-tabort.patch * o-tmpfile.patch * memcpy-chk-non-SSE2.patch * pthread-mutexattr-gettype-kind.patch * powerpc-software-sqrt.patch * static-tls-dtv-limit.patch * threaded-trim-threshold.patch * resolv-nameserver-handling.patch * nss-separate-state-getXXent.patch * aarch64-sigstksz.patch * heap-top-corruption.patch * pthread-join-deadlock.patch- pthread-join-deadlock.patch: Use IE model for static variables in libc.so, libpthread.so and rtld (bsc#930015, BZ #18457)- glibc-nodate.patch: fix verification of timestamp- also filter out -fstack-protector-strong- getaddrinfo-ipv6-sanity.diff: Remove. It breaks services that start before IPv6 is up (bsc#931399) - glibc-2.3.locales.diff.bz2: Remove sh_YU locales, fix currency for en_BE.- Add /usr/include/gnu/lib-names-.*.h to baselibs - pthread-join-deadlock.patch: Don't require rtld lock to store static TLS offset in the DTV (bsc#930015, BZ #18457) - heap-top-corruption.patch: Do not corrupt the top of a threaded heap if top chunk is MINSIZE (BZ #18502)- threaded-trim-threshold.patch: Fix regression in threaded application malloc performance (bsc#915955, BZ #17195)- aarch64-sigstksz.patch: Increase MINSIGSTKSZ and SIGSTKSZ (BZ #16850)- powerpc-software-sqrt.patch: Fix powerpc software sqrt (BZ #17964, BZ [#17967]) - nss-separate-state-getXXent.patch: Separate internal state between getXXent and getXXbyYY NSS calls (CVE-2014-8121, bsc#918187, BZ #18007) - static-tls-dtv-limit.patch: Fix DTV race, assert, DTV_SURPLUS Static TLS limit, and nptl_db garbage (bsc#919678, BZ #17090, BZ #17620, BZ #17621, BZ #17628)- resolv-nameserver-handling.patch: Replace with simpler version with more compatibility- memcpy-chk-non-SSE2.patch: Fix __memcpy_chk on non-SSE2 CPUs (bsc#920084)- resolv-nameserver-handling.patch: Rewrite handling of nameserver configuration in resolver- htm-tabort.patch: Fix TABORT encoding for little endian- Update to glibc 2.21 release. * A new semaphore algorithm has been implemented in generic C code for all machines * Added support for TSX lock elision of pthread mutexes on powerpc32, powerpc64 and powerpc64le * Optimized strcpy, stpcpy, strchrnul and strrchr implementations for AArch64 * i386 memcpy functions optimized with SSE2 unaligned load/store * New locales: tu_IN, bh_IN, raj_IN, ce_RU * The obsolete sigvec function has been removed * CVE-2015-1472 CVE-2015-1473 CVE-2012-3406 CVE-2014-9402 CVE-2014-7817 bsc#864081 bsc#906371 bsc#909053 bsc#910599 bsc#916222 - Patches from upstream removed * ifunc-x86-slow-sse4.patch * pthread-mutex-trylock-elision.patch - o-tmpfile.patch: Fix value of O_TMPFILE for architectures with non-default O_DIRECTORY (BZ #17912)- Update to crypt_blowfish 1.3. * Add support for the $2b$ prefix. - ifunc-x86-slow-sse4.patch: Fix misdetected Slow_SSE4_2 cpu feature bit (BZ #17501)/bin/sh/bin/sh/bin/sh/bin/shunscds390zl34 1646990429 2.31-150300.20.72.31-150300.20.72.31-150300.20.7 0.48nscd.confnscdnscd.pidsocketnscd.servicetmpfiles.dnscd.confnscdrcnscdnscdgrouphostsnetgrouppasswdservices/etc//run//run/nscd//usr/lib/systemd/system//usr/lib//usr/lib/tmpfiles.d//usr/sbin//var/lib//var/lib/nscd/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:23165/SUSE_SLE-15-SP3_Update/abcdb2b52b9e2c5dca0320527f5f154a-glibc.SUSE_SLE-15-SP3_Updatecpioxz5s390x-suse-linux ASCII textdirectorycannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.20.7.s390x/run/nscd/nscd.pid' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.20.7.s390x/run/nscd/socket' (No such file or directory)ELF 64-bit MSB shared object, IBM S/390, version 1 (SYSV), dynamically linked, interpreter /lib/ld64.so.1, BuildID[sha1]=ed6b38bd9fa12ff17da87b7728fd0dfa9a131a5b, for GNU/Linux 3.2.0, strippedcannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.20.7.s390x/var/lib/nscd/group' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.20.7.s390x/var/lib/nscd/hosts' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.20.7.s390x/var/lib/nscd/netgroup' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.20.7.s390x/var/lib/nscd/passwd' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.20.7.s390x/var/lib/nscd/services' (No such file or directory)R RR RRRRR R RRR RRRRRRRRK3.m$4?Oiutf-87f717fc6414991ea13a6994086d0a89aa32c480f4aa959e3a82c253495882e22?p7zXZ !t/CV] crv(vX0 )t5VtN ! ^Pz&HqOoN N`/jd䋚͘P wO1Jƫ"$>I5x\UB:DtHGb^N$'g5b948*_![ 0:c">1D*Hg@"LeCEle,#1h:!ymDYW&2LTU¨Pî\T@޲/@LB8NaAw!)|QOdZSaW?홱*qlz'tN''G\O-yaP0*͢EH"@^A_{CNPkygzu0Ȃ0^9MBG/萂m5w_s4Z Ѫ̥ =Ϲ ӱDslJr𖇽+b ur(YqO0[]&lbLS8ijK 3#e]: SV,4 =n<*6 Mp-Ҏ't.1x(|W]N翶o#yϩ+ 2h(Va31L b䚄蟨ku^R#9bZ?_SDw+G;5V±d.İ`je'}*fXS1p=|V9"O*)'L{|<1-cGň:51؞<@Y6(н}Os7l/~3ǰӡҏB*KsDfW4*#sl_{ut%d*:+/2pN$礸q#2g|nW A&3]mӶbܯp,HUk ˙zʀ#yB|f/k07U %bH?B" gtkYq҆'{DzRj|OĀkУ0X0WYQP:T7Yjry:?]fZeC tD!V㮜ONH4 w8O|P=NЗBhj9q 9#3Γ+Vd~٥3M#cՙ.OWG%qs:¼? 3[*!g83 'AgbC} 6"GGX|qEJ{ڑԀAr1GwN,٤nz/J{| V_{ .J(U|j]䣔0e{(Xz#bEO?Q?Iǻ`|И< ᅖ~zv=`U),"zXʯH8/sPC%}ϹOm@ 1_e XISȇ3ng/RA^GX9p(5 bY 7n0"vi+}%sǹ;IRܽ->@M>l另JŤRIү>k8Djg҂$ӽ qB >㬺 \yԷ2{z`M|!wz0w>MkZHX\vzfU_ 3n8{w,)#m^#n/hE!(@P1VB3j'+wes}/{GVyZR$#b$rç ,gy2_й=袕(k\˛W./U!ƃUV뮫A ֬!d"Sė,n@4qCV]䊹Н۴Zۂ@?n7Mms85AAxuY`%9yO %\?h&Xs4(k"y (ܾ@. [{<&N[9qfݣ =%=jN.tM}PlH$bu\PѲǝ({ 2&ZQ-BŲ̓ ua|lu:@Mjq<~-WZ/v/MH"umM|f@K}4wuLf.,<fHz Y?=]VgrCI@BÃipiom=F|j {jLIɀDuLp sP]*R9Kʕ`e!P(17D7x!DZȹ%)dzEf\vȄi^Ti}/n-0 S3@kK#O3ڽE@(8N[%Klnp;zT(F2~0VΧ|!{CZvZkM}ζ55 isZCBϴX9NjIR_7 |r#"+^N)|jͦ>fQɐgtCq 2;+;-aWȞvwېk-Tβn΍kvd0S-O&$Ej]wA!Rr"5K¢IĐm3 T/Tu 9 TGO 8fB:mX!3LY:aY`Ҵs2HYџ: +xP6Se١4߽T{TYxFokͽsaD_+#3L Å F (yMt5-3c*I0p["0M" -V6uK-f%NAz~KVq,7 Y`ZWWwC7lqܴY8_FGdHN&0xξf؄1oCb+„Z l2gUKJij,® mww}i]e3.*Hi{]le]kMqJ;-|B|ENrI?ҫ"(Ug|YhQ0:ZFn5dڱ+,E`XzycT՘Sp4Qh-n] i9:?ASm1UVUn :VГzChe"bkdw!Xʌ\(рqjCXv6LI@ k_ː,2i%;4I0hG|;y^),br#NDޠ [4fa^].὞Z0IAP5j fIkx#!+ᣍ_U-oH~#B~?]_eS @$=-סZ.7~T_%WiX=H& O(<ϚY[$ PŹ%J*J lX}j\+ԉxw^ˈ.9`<2WsI9R"zCf-2/ {:f!fۡW|cL[ڗv# .^h,IWg.1[DyAc#؉+_EFL flG6{.GL`JtdP)#zUV83 Rke@ae8c/1&sH:@vw6}=l)?{\6Y.w6xuSolEakx6c#U<^K-AZ}ߖ-*>6)HM2ZQ aLTagRj"e\)eB:b{Z>KH?q J}@3"&BɚԎ" s,1ؙz%0q0 =okn8(-1\L h-?3YP^$$uQ)Q+j7sGw&5 Tu>s$:i1Vɑ,Ti[1 9vPSjn Xո`G(|b6OC'm )]5b%cIsimvmB c~qC>hShM:-ڼ ipX\Z’K}cB?sIytT]N呹Ő^nhcnPcqkjiB\7JtE_WJH@&XE3>-=v ,*$XjA%RНJ2p,(f ]lb"Ty{zpg;<ۣ=106^^i":H ovjB[vf#]ۘ?|~cSX'^Z+Ç4J( /J?F_PT[ |h5^@tu<7@oĢ ½n+rʮ7s%b[}~?vRςkW$n0$MW-9y uAQcYh{|#"<'Pʯ>:+-H6D9~Skc(aGZSoggʛU6wչSbæWD i6@n˟0)PxbAҗHrNV"۟rź+ Qv n=HTtŹ0lwq5ɫb}T!:۔I_>x1La+,7q,0H>~px6NHTe%g+I'q!! ҧ=S6OWD&0=RXcAoy,q^CL*#dCUOoׄ~Aa He(Xz Yr5e'dOX /QTxrJ# eD`:C{KI͋ !Fpu4{RN/n2dx[ܺ}h u`^@.v;S߷+&U4I;!̒GWeiX87F*'tW}b%I&EwAu=ʂv48hh$i |`sV>J,dg Qp-5<ڥT8r(Ԟ&><|j D=$P  l]'?՗8xg$4/siC=mŌ${0"" +H9' TF6H2s+2**n|PR;; !]Z CEס+i${fW|⫝Ufxq_U/ܸ%SD@c ;K]S\kH{F3H\$| @RoԔ?p:;[cqQ걷dA{Θ8<қ]57tQ=9s9*6;67%%! ȣG4OJF/vWO[ܪ)'֐j]z7m(OB[s7vn-ҾeƠ#G;yw 7 7f88a1ݱ66*$[x|.(d&J'F9p xI ( 4r pQ9`򕊾B;%L)My R@([ܧE4s~SrG7OU@ovn!YeyS {-+g2{Zᕥ Dr]^NGQ42ޘ^5N<@l Vx }9C F_>,j@w_N0ius=;Jj(aGDxWqo_?c4m)a`o{P(]R6QhOeH}&2!:A,W H`~LK\sc DSY+ d^!Wi ôR&-jUeSY*w=ÊEc!#s'JOg7f~`DdzH$BA@AefiPf9a:1?4c4TDm7\4UA|L|l)2{si34'sZ};D/Pxa\KEH>ԏ#HO]ڈO+:Zt n&%^u9yA!dZop-gDJV[/ڵ)<'v(YnvޫznYnp~9"Dt9VҔY4G}a$G$$ڄA)ůڻ tXI>!4UY@&B vZ Lo|3kC󓯅;3#'Y.VoYCW~a2փ\0&.;6npӹ y<҆Iu#J%KzYA1pτ1g8u)cB #*sTwzWp*4="sUѭeTAHPo 1\$?COERIג:\}uUe9z"˴PO|j_rg @a o/QO8~q1Qٺ) ^3=I{,-\nd#w H wA軄:(ۃC @ -DmDY(RiGށ͞GU1!&s$}72y/W !x-ah"6g{s癃o'y ƃ}XoZKu\~ߖӳIL_G[F {v$.nbUm鳹/i.bX~ bBdДhJx\bI,o8(b awdJ0*n Dq+~i42\R=>@ݽ>@y3+^V[2 Tf=iH`* V.\W )eN(]Ug"AR=('WzBr>gN F&> @P\ґl\\ '`_;&Ȅgj2ņբ әk+Ѧ$`ާO%8+8 @(B]Czg@lDX ?KC$'fYJxLk9H%TԨ9gdzQ?wac[P: I.j`>$W6MhdJsCo ]_ǀʗSRsבImI̐4 ƉfH6l'Kqic $GW:jnHgxn $鐮qt+Ⓠ21q2EI4U#C׌xz>1f6F$i~fuyb烾c!>Z*Na'1䴞Owo}NEmtTީnWYj%AGeLx"u bq]A~6,:XrV\ONkDNnօV/78| _0cꊫ+R5!3E=3 Unb}>bpԪuOHo'*I9&Ҩo ^eniBc uDD ŋy\!rΆx4E$[?48($,qN:+<Ճ] #B>Q9A? TNcpEơ/39*r()#ɲ ]Ҡ7Ku2=w #ɲ=LØW2ܱw QnWquuff'&ðVVaӎOPNTu|?fp!Lo{s@04aV}[ Tk< Rdօ]`˲sS !a\ FOL?bQx2Q_aJ,hMgT#BvKt|vBM/ؿ~5Γ?* 0 5XQ^ऒuhS `>gca0M?W }){XguS^9x.jQQ\3d8dzRq .t%3yj%wP?p^{3\8L(׽Q0GP&piښ&+>讓*/ -^{_G6":a߭cRs];W[ϊ18Ω (d󴠔I,lo5滻Xc[.Mp^}ŞL5fΔ3.[ni^ݾڑ:[R3;: $G-!-I`^q=,WKONMq=R6DU"GxlkhDwBsAW&gO l:6ߙ z #-ǕRb)Wqw$ DRj]!zGnICh"Gi*{ոDu)"-2|o>­D΅4nb y vj$Iq '9ӋL4~3smU6A?4c xcN~NۢcCME!J rMjDUۊ8tЪjXPˌ?fڀSQi8t3Ӫ v )ꆗȆZ]Z߃*S .qYHeA}tnA%+Z|YQ0Og;P}y+>۴kk/ A\SKmj n( 3ej]nifg dCqSPrHt@ xoRlD1giq&-AۍO'L"̎f{jO1"G]_񌆣ԯM4_ߠ7\hכD;fM)eR:7<&a#pp+^`u W- ƃj $Kɉ`R+MҚo:"POmU $wllN'wOO :,?IyXVj(89wJZmo;Bu4*A#f-dߵV5R,Xp{ ~5cD< ѫ5I }&Z▢WP6LBZa.r Y}>C&s\ "7+".} C;Q̇D|X"#[wv|ԇ'Xռfq׺Nͽh=/+$\kDC5'0I3 PaTFC,0p8vjF8:9Uqh-11> YR~ǐrH HbYu$DqeyXXsq5-^l(WF{ Փo"!s7-gÑHLїD[^bB)kW<~<-r:(;X`x-Ox/[42έĨnPr56޷{s׵Uv/wN%lY>܀-[PgyFs1W}{ALO _˃˩BqG%% e2hDԇpPqkYZA[6`0#aMQ]u<>,8%B)nNhfU!{M|O^{2V[|D˝g6:c`BdUT_L!bTSח'w ҧHRR EQXp/l&X^ =$=(ޕsj8T f R1 iU81e=F ,Z#r h:T|W]{} X6z~ 1J,CgBiѶe \NbҳK;0`P nf3|⛹G-)VE6GPd.O-=pX zz =R:n_io^= TP! 0kyİ "dn71$FƸ8BW; )D)9Zwޭ/V244# CK&zT 6TƟ"F,~MBǀv0b? ) ^ )梨n}*xE 4-; D@ZX̸@\ /CKnGXOV>gan B!nmˏF2Ny_/)[ 2[$bly \}Af$M(vL(x'@:ť@wo&iP౴{}ʮRwdPbS9sM> KM:H^>zNB0.+[ٳAZ`Ukv2e㦏1T7JN`G@ZD EQh쭓KeBѼSI0nuX[oi}TEn0{fC$[fچJt;ZDr Ge !4FĮf6^0Y 1i$c=,7HFkED?ڄX( mf:V%.tVu|\6Kօ<-G^/ ~V@Sr{jU9m27MSt:TN=cf`tЛ R=M@е;|i,''^@F6F,yby +R(~>MayG;+]@;$3c'5J;_xը3[|dDI333߄9]J(p1=iן.-+=D;sjy*gJ{%iv.wuv`h׃,=+Pwg( IdxY_ 0۽h:xP!]/NDǯ5JAPF.bӌ + !Ura+Đ_zXQ(K imhO)"yuKpB\o]%/#|ȳMfp},Mٰč͍$tGpޘE S9SX>tyt0!Gg%3 fe~gNVwk/r0p:6N`LȜo#LMw)a: I}9Y yYvY>RnOSVm,,"Qfb رqy[hմ~yP ܄ ~o2tSG)H8bU#VUvd& q-XUٙ- Rt+ˣŮ:PQ#N,1$swioJs~|{Կ *St~ Mw|AsGIWFdvǧwN<_u;ĚM"7ϊ- j {8,Cw2w@2 B2F1`\T ٢пgQ3I89崮~㬌0YM]nPU0a6Uw[XvGЋ2j콢;nVrP\WׇDLn$j23 A5g"fG' Sㆱ+ڌ\)X> H:ͽMH~VRe`ӣ FI"dXkhu.D.MF2]D HoXU$@iKkqX7a_i` ahkGOP>DRP}~~䮙55V$i6­[xӑ Q]Y")qޠX7R_DZ$ >њ{ڟXNgf:D.SК"=A>pQP@qc+0keZӾsc`MZ"V@PLODt:V-Oٔ4K'>+&Q8oS4l? ` +܄>&M?}wq˖>?6)ÿhi60$۵?DR$`wG&Tkc_0x['қq5-K5~c9pOv4'|.ꕔ>I"{uV78}n~-ho*hE7/JO,;|y40'Tמ򙥉Y"MDLS;==B.pf]/$_ovZgu}S1a0'#L"Ղ~IAC6ll }  *gIص_~SR}PyPeąȔGR\σy%ʇ 8lA"|.'"4M&us} (DN)~z]ӂoګ$S i^'ыFrً "QGu:aֳ%v~Ń -zBw@4ǦmWVQ̖ǬfNDYh"ՈSA! v RONt4{ԛch!3 ,#NcS)U:Db/o}x_qι2"eA{>C)Jv>RT~5r/ilr zdic>1v_XSi-ICKXM7_HNТl ąIv>.\4olR>>MsX1/ jW / +hX7t^9^э?" FtgeqҢt`E ԽFQ.Ƀ ,MH:%~Š`0 b,">c ]#rUP+00f13iJ< ćZ(X AѴV|v45AU-ִ]\|Ms]".E--̛v.^SN \<ł~Ƽ E:;^$@O7`XfOqH-鼎Kg>yj|XωXUx} Pg(EF杞V+_,Ri>dH+DB/a;%KoL08M&rĤ5ul1IiyM`df 6~4}yZfUVTÔBq~Gaġǔ\g g4v厪ZJ,ZT$O"Pc#rm-ҷR"z:[RS#ߣ?}S!p {XX s A_66U ƞO]7EF+ k@f<딇!N39x9VdڨVl&݈6x(&~z*L?,TN VCn[$>(,X[8+K""}E1 ΋vnc\L]|ж8q@ٱnpSPvoן4RA !Q^$ȳ:oIҏ"B̭6XP7uump@A"3A8ܪ*LoÙ1xNQJ M5$qYvVI? zh-&f_Daul&.(Ilnz z}_A9{Tij*N8<5ҴG֊Q+GHNu:}B+ʬTbL]"-GT^vr",%W *u+Yj# tSQX--šfcDCH̏P[5ic?bsRXhby7_+~}+17VNCtR0.Fook\# pzjxm}ҏ*{K: Gwx 3C (y-)kEx( I%Pl`cIcgaPGP\ 0~PT+f>}u[ckO❁_R~{QtD!Q81F߅TsӱB#~qBvϞIzJW*ȸy{dێUF[@%LI-B_$'k#tw^މ{SK > ђd13Pf oQ̋krrl{p$7wo_w$6\S}C27)o8%3{&1aR^ʀ}9C *+1klo#Э;jc#O|e:AV="(Tf2O%&ۜH_i?퍉Ck3^'xf"_Bmp(оð~ξc3UT ^6y}/敀\pR(UcYF=D?Q}Eh'oo5V&O9Q70A+M`iW*.~/dr! NK~!F6ZG4x`~/<~L#t+XPͩ{\dI6 m_ L+zM2ϖ1%di1+2c|0.Č88g0 J΢B:0vsZsX؟uXk hSzFAxִ۴Q5\ U<$(XJ;e ,\Ýfc*YFd`gbUԪR"9Πh$)}s|gxwT4l ~ dFt Lq/eݥ/X /h7:4d9.늙~3ЩE3͊l" deLJt4+nF5YpZ^#Xxo%I8S$mA4%8e2:SnYl^7faE8"Hrz<>ٹx1/e2'L%Ej;ppUR빢җߐB#Ip7!>!˳ 6i? |zIĥGިDk_]3SL=ֲuY$Qc;*iXh87DO]&xo7[6F7r nA% s(L&Eqd\~Mv3䳩-Pa ̕"!ǣ< У٘/ :17 ?z/qhagXN5'_6ǛEzj/Dx ؕ(>}@1$Px PckyW}/?- 9 sK lif=nEb[.iPY{_oGQb> |"*]4$ԥl6!76pPˇBmhʦ7cuOx+1z"d0&J+!䈸IzBz U1C-@̻ԃՄi왷T<-ՙ|*s=xⷈ=^"'~}V(X1)b| e$&оa.=zu௕F0͟fo!6*^htcŵ=B nQzψUh0z!w)c~=U$A92Vu|p+W.(EՁyfR <.V(B[U${~b[Ƨ#j 6*u_N)M‹IM/L{R D#X1;kDUj{!a}40 o14r\[Hj==eYHռZ 6ۗZ~ òe_R{p/]ZRZ~{-@p+H$J B`/>js:sM &B/z݆fHQ-h"c^6ђȁG=Yc cPFThr$k3sEO׍]y/_ߍm(Èm6$7ޢZ,t'j'\-nu $ԋxy<2]/{k^2Y8EzQG r͖v3A;ǐm2ڸJekr ||i@av/6*qEDzʸwCiq` G KژLe$ kz (UFj "D8~oJwf ^ XɤC͒F"ư>.**F塚P8-%>LmK5Ck}ARÎX%v S|$õ,0E$ژjS%Qlm&ȣnFG/˩ 1X VTŚ~~8~d5s\`uNWn꽏>J&gT\vtU\12O_^CV9owUQlE X:u5u\>Ӵ!@އOG H.<p$VJr9N(" 5|*s6jќ𯜙;xp,=/_hTpdA%jL>'^XKYbw̙x:Xu#p4B?gI6g;8Kns]3 uL*gTg["U9+z % '9R\Ղ75fX2ʝVu߮ ic@;Qp-m$f֗29ՐQ6cb*Sy nZޭ57r#1Xgz*HKE2Ub;EfՅ4a T:# @QYNI7tzw eBih%#5 D<җqȣġTBeUjjR]38r]`uꙸqahPm=iad(qG z !Dnߩ21SFq.㕊]29%7絕P~HUQ85%/V`-[Jb CG83~aPVCtgKcJ1[Bq[9uo!>*s~դ m\9| W|N]xU.Cj(1Jgs_o$MCgdH%W_[GbfU[^6d|1EDyĮvMpqpu <-dGr+51=VP֣Q j<(U(=U }ϲ}?0,Jl9Y秣/mt͟6`!"?j81eYo +R}i(4#O.Be he~t̃b` q5r}^O1g&BxXPG^mW>rwj}!e%źkN r@bi2Av *P(BC`*WkfeK=3Ǧo[-Rk6zgݬbZdW-ީ+?) 4e Q |zםP'32P^3.XD22ۊU È-;gpǹyմUSڳ Ej=}pR'1IQ$I%zܻo eol)Ig2*C3U7dAIUUpYNL$<2IekqP[R|sQZd E6x(r*LdFN.xXa\%v!|[$I0;B6c+q)vCDmĀ8M1fθe]G*´u ؛ΜC[fb9<:( SAl?J2DA+jUFMl7PX3+w"e|45gU1/򧌥OUטC2 LUkJGzu!- Ԁl )bo ;!4xO9H3^ٞp|\2_6z?G\5Ҩ7{QR&4鷋 ܿ.ɃD$^baBܕxG B[ތc#)ۉ>)(WIC#H\;[*&l KF,tGw+Ed]1gWw١P P_C-壿BBA3j+LЅc 57J uEW@tzX.+G/ év'ۂLM$X`Ӎw7`96nڧ3jfao-\Bxo|[uCEŜ.ua%Ne}ϕu}Ztvã 7#;,yd  do)&nlpɐD;pX4* .YQ֢?9m!{l,2cr|nKxBLj$ UOb+)51SJ՗SN,BW4AXv{K }-*@jA :%Q'K)+ Ε ef9+݅ˤ9hfVu[гZej 2 n8O7AЧQILr:\OrCz34%| (Y{i1u@ j<+~튝&"J4#B@-l i2FZ8$%TmfP.5!2w!hhҞzlD|wY.wS-Oői<,VΈV/uXg*qlVj,,%?U-8įu4[r\2-ω>%?dl象cͬomcO3/q;M_JN,3l?u3;59A/nzVEDm9?|>npXNsJ0p򔭕`yñH.W$D8Q3#teIpl ۪h)Ѐ4ӕcWfcT{j |K+#O"TuKg&K5}Il$PYdb8M1Ԛ[8;5o?H(ZB!)~Aro/:mwѹ츳z>@%{ ތ.BA/f& 6+3NF &FNyőwi~=dUB<1 kw,C-FE,Lv;םÕw,~-t8ۭLEa \\VfC .z9?eﬨ%S|VK<ɚPjrXq@6 ?u'V|"eD5ي{G3B:z&Jb^{<"7;Դi^Zu|E84*r~e cFuguum[,悅QNT`v1Z8Yl(F&(12X9ձ\QQ3/'h`+ 8IF'-@ ld@a]T"J 0@nvڳ/Mq>#RC_XaW.Q-?<şEl%3w9<)?C)JN\W2cW(mf 9M ;{7W뵝! JaS+(|aMҷgS 'l\'EjWbOl&L?#{ ~<)jB"e`ҤS燪މ:FN>߿cRrnBסEjgVd DvDfyfT=C:(u'(36[E} {M͊;n:<}/t|^a:`yԠ նԷ|K]YƽHY#|Q~26vh6D@jf w.q] (T.(O*pB H,1ti3;D҈ sXf"4ms$Cx*?@#p? n`>0 cP]uGU{kDzq($e %É7C+mu, 1a*.jBɯ8=)݅U~JNh-E=S 07Aw?`XwYIr P=ٰ7AWQ-(Jx79emruu'*SRJ9dDj.7 ipK v>? u2X7Z·Q8Nvh99WfQNrpP&YMb0&*. E|$Դ+~=J*j;HƊ u](ϼeUd?ԯ1}'FΩee$ag̩Dd^̖sgKWoCHVYIqe>4\sѼ[\Rhz"P9 2 [k`=w4@<~:uDrӜ ]2 o233ք, hWGF%iVDPB3L}}։Dy<݌,+A 䅹މ 7UXuZY|QeF#2ȑjOXaq)%vccP"%ߤO4Q QcB{ccjly|3< 7:/AV }_'NYauv6~+,ijpx\gہ -KE~zS~D,HBTam%¤X:wEc!u \n0OԺzs*~i!j/¦K3A(*~o?>a h/}|۴y۬a6& ?yp끇H陝6]@1I6}?(Ъ!>w9|pYiepq6hJh)l1a~ˌ9xeP^-ف-z}JNH|urv@4p ]~Up+yKZpq)QՃD<%Ҁ^a_7wDL{T\zTEqqe, gAIqsû\z}d@DM}p=&qsS6i֩*@mzeK\VϛY9!բUS積/P-ڼ=> |Ey7#i6_iZGb.Z :rSZ K![;KUb,n^F_.0{՚fuCQ܋0)2Ι}CoQ{iY1݈C+mάTyiWr&DEc+{S4ZIܒ'GScOrP Np׳ZM<畈|$B7gK'R6/:]Fq_j^j/Z$bjoX%6E7l5h! { 켲4AnRYEvs"Vk,)r6zXr/cn?DE3hFoI?=AŌ43`#f+HW=RԾdOm[`XMqS''S_A 7=qU5as?F\[I93gY(-"H\~Gc.A̔pՉp޶PlZ"/v@Bm9XyDSlf=%5b}MjFy%pyS4ݽ˳+QT n=1d-}^/DEx@ݎ} b5:ʦ5H"[h.~bϡ}V- q-8r^:JKugwL rFTRTM 3ִ\.RF36# r+LD):Y],neV 'ԟ'>ī7KYč189F}QQi?)(eÐU}#\L+ |F{oCP o+U(4xIoktC8,U&. -> Ӣ,DƾSD|­f37"Kr2.n*H#1 (i}_"IΑa|2FݬW| %mi1һ;؏Gp!#lͪ7Ul2e@η`[J|s5 6VnTIp}w GGxd-vmA oe VAk~?iHtQBਉ06\yǝg^%)<F,8lm,y)S46 ]¦QaㅒCŗSLeu[șl幭Yy|/ tR F[%F nO(U.8󾒔*T;~KE*yp [}%,Nf\~w.g!l(b340A!X 1F\V:aR bѣK',SMD eB="SB!`*|Fi !`]V?zCm󰐹_Q2Ο+"9-p,G^,Sc<ؖᓺpm咉4~M&חx6BwG>aW!IP%#rcC 0eԋm5T1MxL7܆w'6H_}|>K@Q8fT2!g+]s;P'|˵a^WRN!h-gO/ nf '#h}F݀YW0tIrV rNj^#$P 8MDrum\ N!>iS#o ABnF۷ۤ~b!&uwLn %'\qv\=]qBv5֨;6F$U-HʣaUe1p4xhsKDum>6gU3m@am\%DaX,W?KbTigytj_,;É,%_`\OZ;Pпc:kb \f4՝~fއEYHKK|*h VXg v whɿrS2jY'<0~àH~qY\kRLP3a'Qq nëGHJm} E h)17dI]u,lM:,&c| B6w%G~x8YG $m ^F k#7>ț/d"X?"Sү8w_"|!fqk; e{̸y#Z a*^EKGm 6| yVk`ƨj1ܟj[u{%VT}p _SDXxPEJҹ4Sa7 ,:-F++sυ&TȣC+|Ȕ>ڒ/,/4)y>kkPJëc!X B^W?'ϔ K‹᡹neaH9Ra@2ヮ/9uQ_ փt7t&9ap&TON>8C:P/y+ shԅE{UZe8^Oo+o| ٚ?t1lYхqCfb1]- ^o_F*B iD#2O[ZWҼ̐ǯ~׋P7'ARu)I$m6cKWM'~U/Y9  2!m@@7M'LfIdfs^䫪q[Nd";x\ldp :9 Ӻ*%zec;y˵ h %;'^x@vbW'f%c ]"#;i12M&B?6 <8* tb/J3hE*!xɮwaq#H,;&r'Z"TND6n =q)O!{TE8lV/Q9`N*$ Ĝ-R8I<#kݻKAd-\ef yY8 aA\RtYEխBpQأH{T>cZ9B^m!ja9 l'ڈKs>_vֶ# F9SqhnVﴲT9<-8ٯxdy*H2_t%mEc֍`[El YO=bʐ@T@P\m44` 9}%`1k=%Ϭ&|1nL%P* !ƍ6=anTfmc.bQ^n_l3 lEy_'$șѹQ)/ ?ajϛPΑGj p ުYloPSu},d9v.dJjm%c3]OFÕHr(A|Zt " ߺPKդe[qYlC3/ b7i ;o++ϴ7IfRDZw9BP{IoQϓ*`aE*Z.8Wa7iqi8y.#ޟnK:E' &ao_:_|7,m,^RLJgU}beM f!Ҳ}~h%r&8f}1Ȝ-x1hH<-Rق q o fskR)ooH_s2P MP}higz(db{ۋU,UĺʀCZ=b0zh!/.o[W –`G鬟_zOQY^~ME(] C 7 Y(d tq瑼(ͱF@x.-j76/;(4" l.VVC3["FoJF*t/Vp{Ki~ iI-p)Fg.AN /27dw߹*c2'nlvBk3;TdYxu$4gRݿUdS ,1;Oʌ@Ԝ!`gV0E6܆axG 5!t uq_U A d"&r]!{n#~3-9k >lWoƈLjpKF¶5)"89 _SN>w@=9)~ĠlTFݱn5 Rߚno^5؄sE qjJRt\FJ"l)1}K=Up bHih;) L鈣b)? 6+CV^!,0߆'1fAjEs~K_΅V>){A۶nIiVZȯ`uj[adP# FXΫcVES JhG~푦Q#Pth+{I>RiQNRij\ΊYښcm5>KWR' ȾBkM,=cV$P[pBtr?π͓. *4TNJ vbsᱣ)X JJb~1?_,Kv#.J6(r.!\E3|q֚o޺lF0&kxIݲݤ>+PdخH1$Ͽr]A)1}o=BMCt:y `l,A- y~v[f4dGj?_$vڂokHl]%#dXx~Pu1EF/-Au`-yZld[zR-|8sǓ[Ũtn<AVKc].1h8:2/aB`lµpT+oȌ<87{i/!)~؞e L}Q|L۱@ u~oLꅓې'~qQF+Nh)R̝U .8LQ9^%fC9ÿŞc*K ›MΆ]5íHk{o 5tًV7ZUtMmy~euKQNz߹rF`+ğ9}g#Gϝ%씺n:LG @z^ߟ{7F^7cNaPnS4c:e8?mPj֎5}~f l x3@+|`nbq,珄Vn hɹi +7,6cD`\N!M6Zu@a(Uʭ= ]6m3{b4@DJ@++G +Q;/egOAۘ—MT"qH1w4Il''ԀZ=@$04Dեu;e7K=8 RKȅNړfh-ۺRn@UY( w}=:]ddʤi-WBA.C0LpB~8F} Ortzu#??*MX B/ ZZtN3b;䒦w¸L?.Fל:1#/x`51"_,/So@m '=;.XS 3cQ+lli%HV6GB9*ozp\c4mycϵF٤Thr[JVMvh]o1@AyᡛCmaQ+`|nO+IҺE7Xlf[3(-u =B? -uNNkLmG$asOlCkG$ޓпG(5}S5o볧3"Mvj8q j}asP6p,F[soV H^C1KΧK`WDA* (H" H-P<\, '/4(J|R5`藚 byfH8ѹvT2 ey$I WH:|9"tu{4tHolp^e-G7 bF?W>ox!5}F j|Pu\c"Ǥe?:Me5Yفz-/Ϫ;3+~˷a%>k0<#*>n[/ >H i"Tn0 >fWڀj$^ᓂBs |NRQSr"./ ȡ' p#foZ~n 7+Jw_Z)Z$;^{Ty[EG":T Lb܁?%7F4[Z j#e\ b)jmHԬ  Vxo(xͣ4+26rX~$0K&{ n^Q 3}t?6nH1~, Jp7T±y]ijxȚG ~zXTȓggmP * NkЎ[1TJadQ"r vW* 72{)k5D1$L'EbF2ȅZ'U#X0'=Td(7OgҼ/ 3?4VMn$C0M%fE<,J 4@UwJ$@Z%b18v8~ zkDJY$nCGeRB05tNl4o⯮KG<68BzԄkOĭFWneT `zY|i\MzTD#w\s*+N])s7I\]mpި\M!4fc R#:&ٛ>F!1$Pdn#RiyI6G]n]5կo8P}ה&CL8kp>5^m(ii6ơ1$]&$SDJѱw7DŽbsol/F*7Kl00ZFD0 W {a*V 1EĹ©e0TEC6+Bo lK sێ׈>q+wl r}FRcv Z>o`fLbQ8{]>sQ 62^G4#݀ En5O5Qݦr/n<5 x+{s>NoT,-湫DDHTDj7$z hʡːz<чx30<;RJ¥!Xʅ|ᐾmXcSuoHA V/oT@BNais1vM>qRhHRPlﲇ ? #zڅ-~R- yPrsE|P|phgxQ3yÛ^D؄Tw&C;%2C>V$HceӢ{9H10'D@q'- WdMu܄OguG盤FDHC:G vUX.開{S $DxA42}xѝ-W?tj_3MP%.Hoӄ~@}Il Xc+Hwt 4R+ M}K"g7;%vL j| 0gګæA&7lyD43c/OCjrV2/As,(~yaĢGO"t)5.@GB軯sr s8A`}pQ JhJAIk!*UIthϺe4Ƀi}ua] ]15wͨzgo'dO]>EOR 61%cF{1oȐ{Gti)2M's' ㏅M_Tnȏvn^;'Rl:y)^PRߙtZl4 IHH~?uSfa+Ҕ]1hZ{5 qكm4ռ%»Er\yxN^7ݿ>/iܿĚ䟚<U9} 0~4JObZ$^lHȟ"xHv-<)3P&iQ߈_bGurkqBv 5P.-IO'FPC2~9"5q6[H\7͟Sll!Hzn 3l<0DT=!n]y_\_hݍ{9N_rL̶m {6Vɻk8D?:MPn~! UJZC t lk11O caQ_]̫GfG)үZ>iRYd8~p4:20V$3,}W_IS˜ vۚΙ[ 귍oč_C1st[c/ ו68"(5MR*sܕƥ~_?)FF͝1MwytAe8FL&#iC?H+_X'rRH}\cĠ3:M9I4~Kpa1U5O'=JpI]G˜ !:s෧aca$JNBr%̧Z7Q}ZvWQ{SΞb=p)VU^F՗0yVS]IM?+a%jZH#|'6 Di}ŮQ |@byޏ%'JjN?}FHc _Xf8'p])(t] `MmY!ՇSRNTEw({H:^M @ uV릅ng^7:!1uۆZZ0" ObE;&ij+Xjњp$#e,A+rn EBz sdr!lXv[# J8֜nb&8~Coz'Z}>|-ۊ] T}#m>i`٘dNk^(r|.D .2mCv8Ҵs:g! 6J6Nv.49XbKeWȶmF>sCG |] M6Z. t*5-|KxlJPwBV wzm _^On|P;;`'ywmDX'V>@k) L|ϞKFf70ͩIjGHvD\EC6n\.A9/)~w̃^1(cI@(fZSӺȬŔB@~Zw*y!ukUNmwbh3ፚ/ m.O{,PTq#ڥcd)-7OOiNz{bY1O;6Q~{Ro."(`h#*! }*\LL&2҂P9Y7r|eN`=.슲tܴ$gŚ Zbl5L?Q6;36EA/"ݕ#Q)Kb:"h7zX԰pc.'xJ2V<fX$VDY"7 4^ԷuA)/[d.(z !5\Qe*s?d S Giѓ`T˳cyʰ?6l2$ (DGe'ۦ(ٔ$}c1~IX `7iO\j$i$fMv+鯫h}6QA&SHgEI׽>ϴ/D$n҈-yTm4|h.!eX@g6{xpNJ`2YCcUDdz}茸_rWZY"Jkv++~^=˥ 'S5w)w|p,RI6@&־dhħE*7G!<#Q!;0fyf<ѓ*}~uNkA$"V \w_]nk[l.f[vkɿy YͽYg8*U?<;5z_0ZC3#TO]|l{yeW׬b8]{Pxl4὘ Voє3P”EYd?7lܢϬZɭ1j%c%^F&u`SF{ȹ;e|Xeu-dFuѳoX8"4̠<6W`r15D.F"cEN- Rѐ^~wuK "P٪mF:/]z90l͂9~U,;u^ecrΚ_#C7z/` h~NJ|TǮ\Om&uԁY?a/ғQ%NW(6vg`gc? #*qGrVK6Abft y`i1*ްϣ<'S>ԧ31hPmn#v >ώr3A.| 37?Rh"+€P0$yaR-7n|O8G]8atw B:|(|GZro*e lq.4r6G5|'m$&>h ÓɟaΓB2 g@f -]wo ҕZ*>h\G8Ej;ӑwW/U Va+% Ewc!ZpȩpG3($U~k i'P+ndwKsmY'%n!p+ 拈H'S- k['yfLXbem8:KQky12yEh#0N}E/N#)bkxT^*M+B_e$u+{֞DnA3]c]䚫(ξ"(QlL*MB~I 3Mk }+ &Էhn'o~N$3Oo< GO]4 j(1;!}XٝpVxw0Qd)(+KDfƐA_g&w͂ͷVڸ&(86z8 &=:?@]ib[PlTs~ԝL`UiR-VoƅX_Zk!ogBXrj@2)羿S #|B9rO+neNR'P_? @!lu8s7Fρ`bvBx7qQ SUi,~yҪdXnjõ!Zv K!'=>4PiV,F/ϟo636[S^Eo ZȾ V;Ij\WJ+Û\H$ELpfiXe_,I+usRJJ%u* w+BQW&ux r2imiqA'<9ot& E@*/?~W*s5 "LG3f[尐[c#{ZjƲ5& c=8U\dѹhw;V(kj`5ϯj]0nz$J4܀w{d(p" e*,dL(eӳw`SQ/j$ʍZ0]3TP+WɤYugmEMn]`w59'X ~dg@'Qj*:[ܦKyΘ.la~vbM|lBef,Q!r[ic9Tl b#3jzM e2}+o8ce= Q iTxba0(p#;.Щ4Rzqψ @7*i&MylhX('?N/Z/:m+% F0]>1;|jWuU$lp;j@fD2K`:oI$rH+Wܤ7]-WPeaF\Z &P", n0zC^ 1yA;f/q+: ~Uh<C{S2Χ5BpψkFgSf ~^@/U rڤYQQf+`R:osw>AcqPrӃg垹7;2z %Yz*_ZCk[wLg4N|+:IA/{Rǧ~]߄n|.|;)"Q6g_f =2i*` uGOq_if-![|)z,pqj|ձ#)JASV:V 4ڬMSZKѵUl_FV(jx`LZN4 't)\dUrϹgx4I+ V@4 BC2Ȗ,f)2XRiƥl ˟p*O&]Q(O۫: ӔZZM배u3M3.ԿՕf2Vxu@N!jAW]‹%#ث]!^;&iBMLij kof^^_{|іfԪÈ^6l~+/9a"5`ZNM}o)!!ËWQ1.F&!c'퓲q+'+v^cs7 wC/L=]CGT&/-D//'4I JʸZ 3߫f1"n#~;:d $~z[zE/W}g֟ynXG b>[KsۋC,hjpzgHm0@b4 / ? f PwtV+ -dQ򯍩*ƓCNm3tF H?߼iW!us;%rz6Uչqcpjl[6- !m1LWyR%eJ6sC:EZzS/Byz]?Q_ݏvDV $?#^m PXCUmA=x;T[ؽh A&LO2Zﴦnh.:{LVu 睌y̳GtF:X`il֜GCD ;/}u r.N[YSQ<MSй(yW="^6խ?pX"7&M2EQ^Pʤ9tz/;>, +4i-+u/  8{:q?qW ɊͼlI٭^M`Rz S#뗟ǓMc&~a{y&k]}Q1TOd_byt a3o^ sP(l=I#O<+Ũ80H(Н/Yo=Sk= b\7Z +*2{mp{w0Q[C,DͫCqQ" ؐ9uZ pYJI˾H>jUVk65; h_LxhKrr(뤸l'zC 7#־ԋMNtWboKTtpJ;B΁ZO^^ zRL>hU2q? bל Th9 bʮJRÅZ/$) T.*kr[w)ei׹G WXh DtPD%8bECL|CᨓJ3 _+欯 4+ vT #ZPeYz 6u; ,&X_ߔVY4i' VG<VT,(է_QPQ=ex$tǼPn}Ȑ:9{M*Mu1|@tԩQf"Nӎ$Sd ún+WS \g1bІY*e䎕]Bb9M\UуDj]A9%@s?4%ѰvkQ[WQpN̙$3~#T#( ߤ70 xW?,YLX%O&b¸lB 20ٌ^9}+ډXB)E$0wuɩb%QM5`/Ww f/F;Z%*"D.btܻxhrЄ"%Dt"OMBuu*{8b!˭FsP 9kX_v@hik78V-4#i-XCvuD#,JZ^EirIgk'JO,3Ie6gb5 L M+tUwv<Ќ&*IGX뱂;V}O *l6Zcܭ70ݧ5C"C$N%:8jFMIY[-FCf`5U c&y9,֗ {YibjC-Xkx't,SJO|/[񷏥V)|3Nw]$jFZT, 7ŸgED- .2Iմ ,5Q[{CrhMysh,o2SS#sE!jlRZ:?=RϚ.ifD&>7ygQ8>*ow*1ohdujDI:܎))4iW;G[JF2;ec1dbcK\rjfGoʍ ˊ9 Y}~25u0HLA-ܺ]Ӝ}T[M_f>8sR"CUsH#V|QF?!Gr UJmَ*߸|/u(dgĉ+Ӳ>(Y Ɋ.Z~wp#'|w*uE~3W8_|فI"6^ cm]OK]OI &|{Ä7jI[~m\{.xN80LSRrǀt@؂YIiѾƪg{N[R+>An:~ À'Ww{ Z~)s*oχi'xk%kI[NY`G'1CpӦУ ND-gM{nS7&zie13dQ.|a.y|ܪ%MX}a'/)Y?97U5z+ӀX#T*moo[i4Xuk5gɁ4iڞ:o= sz.d2*"=>ú`D|@ǜ_ Rw!DYP2פu Agث/ײĩݧnʒpHVs8\A"bP5˽[^>n̏fD14t2HF}'Nr zH߼k5oW!@شI_}6z{r--m~ɣ&J?\G!yD[tuIlD"_eP4:;G4B,R*|=Jh^҃2U,Rn*밵gFFek Mezd%"ihQl⍡a𧞋61Y7V?rGk`;+{$YGա۞E[!9p&ND.0ϴ&|wjDZP29J辊[v\Ŗ1KWu^pZ"w\V!<7i6xS}] {(U uQ Ax5[W}8½(eN,Y>T-I9t6s=С]W}v},w}uGE;s^(n!O3>=HvRnhOi\Qtg֏9ٵ\֝m]Oj+fkxs Xz>'1R71*붉w,@.b(Ӛ4A^~V$@ԻIY^cTݘΛ&/)kb6XJ8$;xV;DZ ؑn Y؅x,۹b"\5n5X{du("bB($vv\&a'G2 q[&!NNJ]t9ՊL$~HeSz lqYE <=n\GG|U`ƝSfy;g֜ /ё;VBdĶ0aPvdvưnPTDlÌ%T)Aˑî?a{ǡatm06"շ-bڥ cAp x*x# jÉC]\WY*1y,+"ũ$I0DUXAak@"ݼca.g0Ye L87 64 km:j3=4fgaPm /\@7Rukh1%%i:*[3DWxTk2#C|in3 :'ZAj߻pr'9%76kbjA*㨯F@۝ 1 _}"iɶ0,!9BWiy"u\/|0]9bLY\Lݿ˧M"e^K7k!S~A7bha<'>v|3o)Ef&3hY">[!a8G#X4`hO׳'H4RƇCd3UDY;BEq:Z9+/֢#}~:`!Bձ)4du&T.=g@7nj,Ɨ;7ߧR[ [-DhLcLcW/G@U0zίid_&*?CliZJTPb@=vȼXhGXR\ϑ$xʽ,)qWzw!ZD[}Ԃ^?gq A3ukN5s(,\K%޷:RX&2D9o8<}&YJN1 9(\M'pQ%ua ?.`ת`WtF˲]N{M-sPߨ;ЙKamg5W$%td@Pk? E"L*05e7F~u2~` R?ǽtؾv> ĪȨoEO*g|'#px*`w{j==jgq@QBArc!.JLl'|$ q̛{r~¿9-VQYr ^|?ֶP@*v66 N0*?U)vƀ+YB~"+#R5бgA\!IyrkwW]zּt8Ѐ@}: AUUahߧoP묣n`Y/~k|qFߪTV1~ nˀP[&nN!#z5xU/r_8#s>ylſpd78^bcG4#29|6 ʈ'": րK G0- F]% {O182h `?F4Gr1kMaAMQ2q_@frM(3.ԏ3s\K9SufxV  %^R Pq:#1oo\P꓾(U۳DO/Nc2ᾙtv^w|7-|dHT֥2M5p=`?Sɯy!<jSsQ>=.&H>@`?M钷GziHE+c묭7B޸| ;J"-U/UQ3K~GLOo)s#?N`PETs2<_ށ }R}|||SSY'S"3z,kg-q!bW ^ުxD 5vvMUm/i+m5l*(HbMp45z6 HJ,IMPDv5ka|ՖHlPWd i6ksu=9ǩ {o!zёxR’׃`|WkSz)]M hդ>bd2Ҝbz >jX5n5/vC8(:Xo J5`|oMq~t@ZQwaM?cT%3&WлR(ʢN]}̊/hƃVlA86țʗp0G6]k̛8dtWl;лQ@$hiKn}XP$RxɌ)6jo:/|OĢ /^ YZ