nscd-2.31-150300.31.2 >  A bVp9|eq6Bk[4P~V 3gHL< *NSi } nGuTEAMSl4a|nK-X@ӆCpZf(%:/ʕiQx;@=shqF/]W/e[|kBX˼]p]KD3np!V 7=np' bK,Lj06dȰ284pI@?0d   4  GMS  B ?   D S pBd#d#V#(89:!=>&?.@6B>FDGXHՔIXYZ$[(\0]l^ bVcde؄f؇l؉u؜v wxDy݀z,Cnscd2.31150300.31.2Name Service Caching DaemonNscd caches name service lookups and can dramatically improve performance with NIS, NIS+, and LDAP.bSs390zp35 SUSE Linux Enterprise 15SUSE LLC GPL-2.0-or-laterhttps://www.suse.com/System/Daemonshttp://www.gnu.org/software/libc/libc.htmllinuxs390xgetent group nscd >/dev/null || /usr/sbin/groupadd -r nscd getent passwd nscd >/dev/null || /usr/sbin/useradd -r -g nscd -c "User for nscd" -s /sbin/nologin -d /run/nscd nscd if [ -x /usr/bin/systemctl ]; then test -n "$FIRST_ARG" || FIRST_ARG="$1" [ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || : for service in nscd.service ; do sysv_service=${service%.*} if [ ! -e /usr/lib/systemd/system/$service ] && [ ! -e /etc/init.d/$sysv_service ]; then mkdir -p /run/systemd/rpm/needs-preset touch /run/systemd/rpm/needs-preset/$service elif [ -e /etc/init.d/$sysv_service ] && [ ! -e /var/lib/systemd/migrated/$sysv_service ]; then /usr/sbin/systemd-sysv-convert --save $sysv_service || : mkdir -p /run/systemd/rpm/needs-sysv-convert touch /run/systemd/rpm/needs-sysv-convert/$service fi done fi if [ -x /usr/bin/systemctl ]; then test -n "$FIRST_ARG" || FIRST_ARG="$1" [ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || : if [ "$YAST_IS_RUNNING" != "instsys" ]; then /usr/bin/systemctl daemon-reload || : fi for service in nscd.service ; do sysv_service=${service%.*} if [ -e /run/systemd/rpm/needs-preset/$service ]; then /usr/bin/systemctl preset $service || : rm "/run/systemd/rpm/needs-preset/$service" || : elif [ -e /run/systemd/rpm/needs-sysv-convert/$service ]; then /usr/sbin/systemd-sysv-convert --apply $sysv_service || : rm "/run/systemd/rpm/needs-sysv-convert/$service" || : touch /var/lib/systemd/migrated/$sysv_service || : fi done fi [ -z "${TRANSACTIONAL_UPDATE}" -a -x /usr/bin/systemd-tmpfiles ] && /usr/bin/systemd-tmpfiles --create /usr/lib/tmpfiles.d/nscd.conf || : # Previously we had nscd.socket, remove it test -x /usr/bin/systemctl && /usr/bin/systemctl stop nscd.socket 2>/dev/null || : test -x /usr/bin/systemctl && /usr/bin/systemctl disable nscd.socket 2>/dev/null || : # Hard removal in case the above did not work rm -f /etc/systemd/system/sockets.target.wants/nscd.socket exit 0 test -n "$FIRST_ARG" || FIRST_ARG="$1" if [ "$FIRST_ARG" -eq 0 -a -x /usr/bin/systemctl ]; then # Package removal, not upgrade /usr/bin/systemctl --no-reload disable nscd.service || : ( test "$YAST_IS_RUNNING" = instsys && exit 0 test -f /etc/sysconfig/services -a \ -z "$DISABLE_STOP_ON_REMOVAL" && . /etc/sysconfig/services test "$DISABLE_STOP_ON_REMOVAL" = yes -o \ "$DISABLE_STOP_ON_REMOVAL" = 1 && exit 0 /usr/bin/systemctl stop nscd.service ) || : fi test -n "$FIRST_ARG" || FIRST_ARG="$1" if [ $1 -eq 0 ]; then # Package removal for service in nscd.service ; do sysv_service="${service%.*}" rm "/var/lib/systemd/migrated/$sysv_service" || : done fi if [ -x /usr/bin/systemctl ]; then /usr/bin/systemctl daemon-reload || : fi if [ "$FIRST_ARG" -ge 1 ]; then # Package upgrade, not uninstall if [ -x /usr/bin/systemctl ]; then ( test "$YAST_IS_RUNNING" = instsys && exit 0 test -f /etc/sysconfig/services -a \ -z "$DISABLE_RESTART_ON_UPDATE" && . /etc/sysconfig/services test "$DISABLE_RESTART_ON_UPDATE" = yes -o \ "$DISABLE_RESTART_ON_UPDATE" = 1 && exit 0 /usr/bin/systemctl try-restart nscd.service ) || : fi fi exit 0 ` A큤A큤A큀bR[bR[bRbRbR[bR[bR[bRlbR[bR[bRbRbRbRbRe2cdfafd373d24fab07018d0e95dd49510ea6c992b7be2b0611ab23bbc2750b579fe74962fbce2fa9b2a4b92f693b2fd42cbc2ed331fae268de7104879a72df879c9cec5dd2414dcb76d11e75903aa6fd9b7785c897cb9f853edcb140a71b7799dbdccd2ba02985d4fed5490f46d606b8fd65d3d3c462454124c78618876d840/sbin/service@YYYYYYYrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootglibc-2.31-150300.31.2.src.rpmconfig(nscd)glibc:/usr/sbin/nscdnscdnscd(s390-64) @@@@@@@@@@@@@@@@@@@@    /bin/sh/bin/sh/bin/sh/bin/shconfig(nscd)glibclibaudit.so.1()(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.10)(64bit)libc.so.6(GLIBC_2.17)(64bit)libc.so.6(GLIBC_2.2)(64bit)libc.so.6(GLIBC_2.2.2)(64bit)libc.so.6(GLIBC_2.2.4)(64bit)libc.so.6(GLIBC_2.3)(64bit)libc.so.6(GLIBC_2.3.2)(64bit)libc.so.6(GLIBC_2.3.4)(64bit)libc.so.6(GLIBC_2.4)(64bit)libc.so.6(GLIBC_2.7)(64bit)libc.so.6(GLIBC_2.8)(64bit)libc.so.6(GLIBC_2.9)(64bit)libcap.so.2()(64bit)libpthread.so.0()(64bit)libpthread.so.0(GLIBC_2.2)(64bit)libpthread.so.0(GLIBC_2.3.2)(64bit)libpthread.so.0(GLIBC_2.3.3)(64bit)libselinux.so.1()(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)shadowsystemdsystemdsystemdsystemd2.31-150300.31.22.313.0.4-14.6.0-14.0-15.2-14.14.3b@bb no longer includes inline versions of any string functions, as this kind of optimization is better done by the compiler * The nonstandard header has been removed * The obsolete header has been removed * The obsolete signal constant SIGUNUSED is no longer defined by * The obsolete function cfree has been removed * The stack_t type no longer has the name struct sigaltstack * The ucontext_t type no longer has the name struct ucontext * On S/390 GNU/Linux, the constants defined by have been synced with the kernel * Linux kernel 3.2 or later is required at runtime, on all architectures supported by that kernel * The DNS stub resolver limits the advertised UDP buffer size to 1200 bytes, to avoid fragmentation-based spoofing attacks (CVE-2017-12132) * LD_LIBRARY_PATH is now ignored in binaries running in privileged AT_SECURE mode to guard against local privilege escalation attacks (CVE-2017-1000366) * Avoid printing a backtrace from the __stack_chk_fail function since it is called on a corrupt stack and a backtrace is unreliable on a corrupt stack (CVE-2010-3192) * A use-after-free vulnerability in clntudp_call in the Sun RPC system has been fixed (CVE-2017-12133) * fate#322258, fate#321513, fate#322453 - fts-symbol-redirect.patch, glibc-resolv-reload.diff, glibc-2.2-sunrpc.diff, i686-memchr-sse.patch, ld-hwcap-mask-suid.patch, ld-library-path-suid.patch, sunrpc-use-after-free.patch, test-math-vector-sincos-aliasing.patch, tunables-bigendian.patch: Removed- Fix RPM group- s390-elision-enable-envvar.patch: enable TLE only if GLIBC_ELISION_ENABLE=yes is defined (fate#322271)- ld-hwcap-mask-suid.patch: Ignore and remove LD_HWCAP_MASK for AT_SECURE programs (BZ #21209) - ld-library-path-suid.patch: Completely ignore LD_LIBRARY_PATH for AT_SECURE=1 programs (CVE-2017-1000366, bsc#1039357, BZ #21624)- Remove glibc-cpusetsize.diff, no longer useful- fts-symbol-redirect.patch: Fix symbol redirect for fts_set (bsc#1041123, BZ #21289)- test-math-vector-sincos-aliasing.patch: Fix test-math-vector-sincos.h aliasing- add-locales.patch: renamed from glibc-2.3.locales.diff.bz2, drop en_BE locales (bsc#1039502)- Remove glibc-testsuite.patch, no longer relevant- Use multibuild feature - Remove obsolete check-build.sh - glibc.rpmlintrc: remove obsolete entries - Use %tmpfiles_create in nscd postin- i686-memchr-sse.patch: Fix i686 memchr overflow calculation (bsc#1031021, BZ #21182) - sunrpc-use-after-free.patch: Avoid use-after-free read access in clntudp_call (BZ #21115) - Build testsuite with gdb and python-pexpect to enable more tests- tunables-bigendian.patch: Fix getting tunable values on big-endian (BZ [#21109])- Update to glibc 2.25 * The feature test macro __STDC_WANT_LIB_EXT2__, from ISO/IEC TR 24731-2:2010, is supported to enable declarations of functions from that TR. * The feature test macro __STDC_WANT_IEC_60559_BFP_EXT__, from ISO/IEC TS 18661-1:2014, is supported to enable declarations of functions and macros from that TS. * The feature test macro __STDC_WANT_IEC_60559_FUNCS_EXT__, from ISO/IEC TS 18661-4:2015, is supported to enable declarations of functions and macros from that TS. * The nonstandard feature selection macros _REENTRANT and _THREAD_SAFE are now treated as compatibility synonyms for _POSIX_C_SOURCE=199506L. * The inclusion of by is deprecated. * New features from TS 18661-1:2014 are added to libm: the fesetexcept, fetestexceptflag, fegetmode and fesetmode functions, the femode_t type and the FE_DFL_MODE and FE_SNANS_ALWAYS_SIGNAL macros. * Integer width macros from TS 18661-1:2014 are added to : CHAR_WIDTH, SCHAR_WIDTH, UCHAR_WIDTH, SHRT_WIDTH, USHRT_WIDTH, INT_WIDTH, UINT_WIDTH, LONG_WIDTH, ULONG_WIDTH, LLONG_WIDTH, ULLONG_WIDTH; and to : INT8_WIDTH, UINT8_WIDTH, INT16_WIDTH, UINT16_WIDTH, INT32_WIDTH, UINT32_WIDTH, INT64_WIDTH, UINT64_WIDTH, INT_LEAST8_WIDTH, UINT_LEAST8_WIDTH, INT_LEAST16_WIDTH, UINT_LEAST16_WIDTH, INT_LEAST32_WIDTH, UINT_LEAST32_WIDTH, INT_LEAST64_WIDTH, UINT_LEAST64_WIDTH, INT_FAST8_WIDTH, UINT_FAST8_WIDTH, INT_FAST16_WIDTH, UINT_FAST16_WIDTH, INT_FAST32_WIDTH, UINT_FAST32_WIDTH, INT_FAST64_WIDTH, UINT_FAST64_WIDTH, INTPTR_WIDTH, UINTPTR_WIDTH, INTMAX_WIDTH, UINTMAX_WIDTH, PTRDIFF_WIDTH, SIG_ATOMIC_WIDTH, SIZE_WIDTH, WCHAR_WIDTH, WINT_WIDTH. * New features are added from TS 18661-1:2014: - Signaling NaN macros: SNANF, SNAN, SNANL. - Nearest integer functions: roundeven, roundevenf, roundevenl, fromfp, fromfpf, fromfpl, ufromfp, ufromfpf, ufromfpl, fromfpx, fromfpxf, fromfpxl, ufromfpx, ufromfpxf, ufromfpxl. - llogb functions: the llogb, llogbf and llogbl functions, and the FP_LLOGB0 and FP_LLOGBNAN macros. - Max-min magnitude functions: fmaxmag, fmaxmagf, fmaxmagl, fminmag, fminmagf, fminmagl. - Comparison macros: iseqsig. - Classification macros: iscanonical, issubnormal, iszero. - Total order functions: totalorder, totalorderf, totalorderl, totalordermag, totalordermagf, totalordermagl. - Canonicalize functions: canonicalize, canonicalizef, canonicalizel. - NaN functions: getpayload, getpayloadf, getpayloadl, setpayload, setpayloadf, setpayloadl, setpayloadsig, setpayloadsigf, setpayloadsigl. * The functions strfromd, strfromf, and strfroml, from ISO/IEC TS 18661-1:2014, are added to libc. * Most of glibc can now be built with the stack smashing protector enabled. * The function explicit_bzero, from OpenBSD, has been added to libc. * On ColdFire, MicroBlaze, Nios II and SH3, the float_t type is now defined to float instead of double. * On x86_64, when compiling with -mfpmath=387 or -mfpmath=sse+387, the float_t and double_t types are now defined to long double instead of float and double. * The getentropy and getrandom functions, and the header file have been added. * The buffer size for byte-oriented stdio streams is now limited to 8192 bytes by default. * The header now includes the header. * The malloc_get_state and malloc_set_state functions have been removed. * The “ip6-dotint” and “no-ip6-dotint” resolver options, and the corresponding RES_NOIP6DOTINT flag from have been removed. * The "ip6-bytestring" resolver option and the corresponding RES_USEBSTRING flag from have been removed. * The flags RES_AAONLY, RES_PRIMARY, RES_NOCHECKNAME, RES_KEEPTSIG, RES_BLAST defined in the header file have been deprecated. * The "inet6" option in /etc/resolv.conf and the RES_USE_INET6 flag for _res.flags are deprecated. * DNSSEC-related declarations and definitions have been removed from the header file, and libresolv will no longer attempt to decode the data part of DNSSEC record types. * The resource record type classification macros ns_t_qt_p, ns_t_mrr_p, ns_t_rr_p, ns_t_udp_p, ns_t_xfr_p have been removed from the header file because the distinction between RR types and meta-RR types is not officially standardized, subject to revision, and thus not suitable for encoding in a macro. * The types res_sendhookact, res_send_qhook, re_send_rhook, and the qhook and rhook members of the res_state type in have been removed. * For multi-arch support it is recommended to use a GCC which has been built with support for GNU indirect functions. * GDB pretty printers have been added for mutex and condition variable structures in POSIX Threads. * Tunables feature added to allow tweaking of the runtime for an application program. * A new version of condition variables functions have been implemented in the NPTL implementation of POSIX Threads to provide stronger ordering guarantees. * A new version of pthread_rwlock functions have been implemented to use a more scalable algorithm primarily through not using a critical section anymore to make state changes. * On ARM EABI (32-bit), generating a backtrace for execution contexts which have been created with makecontext could fail to terminate due to a missing .cantunwind annotation. (CVE-2016-6323) * The DNS stub resolver functions would crash due to a NULL pointer dereference when processing a query with a valid DNS question type which was used internally in the implementation. (CVE-2015-5180) - Enable stack protector if part of %optflags - startcontext-cantunwind.patch: Removed - cpuid-assertion.patch: Removed- cpuid-assertion.patch: Don't assert on older Intel CPUs (BZ #20647)- glibc-2.3.3-nscd-db-path.diff: Move persistent nscd databases to /var/lib/nscd - glibc-2.3.90-langpackdir.diff: simplify- Update to glibc 2.24 * The minimum Linux kernel version that this version of the GNU C Library can be used with is 3.2 * The pap_AN locale has been deleted * The readdir_r and readdir64_r functions have been deprecated * The type `union wait' has been removed * A new NSS action is added to facilitate large distributed system administration * The deprecated __malloc_initialize_hook variable has been removed from the API * The long unused localedef --old-style option has been removed * nextupl, nextup, nextupf, nextdownl, nextdown and nextdownf are added to libm * An unnecessary stack copy in _nss_dns_getnetbyname_r was removed (CVE-2016-3075) * Previously, getaddrinfo copied large amounts of address data to the stack, even after the fix for CVE-2013-4458 has been applied, potentially resulting in a stack overflow. getaddrinfo now uses a heap allocation instead (CVE-2016-3706) * The glob function suffered from a stack-based buffer overflow when it was called with the GLOB_ALTDIRFUNC flag and encountered a long file name (CVE-2016-1234) * The Sun RPC UDP client could exhaust all available stack space when flooded with crafted ICMP and UDP messages (CVE-2016-4429) * The IPv6 name server management code in libresolv could result in a memory leak for each thread which is created, performs a failing naming lookup, and exits (CVE-2016-5417) - startcontext-cantunwind.patch: mark __startcontext as .cantunwind (bsc#974800, BZ #20435) - Removed patches: * 0001-Updated-translations-for-2.23.patch * 0002-Regenerate-libc.pot-for-2.23.patch * 0003-Regenerated-configure-scripts.patch * 0004-x86_64-Set-DL_RUNTIME_UNALIGNED_VEC_SIZE-to-8.patch * 0005-Add-fts64_-to-sysdeps-arm-nacl-libc.abilist.patch * 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch * 0007-NEWS-2.23-Fix-typo-in-bug-19048-text.patch * 0008-Update-NEWS.patch * 0009-sln-use-stat64.patch * 0010-Add-sys-auxv.h-wrapper-to-include-sys.patch * 0011-mips-terminate-the-FDE-before-the-return-trampoline-.patch * 0012-Use-HAS_ARCH_FEATURE-with-Fast_Rep_String.patch * 0013-Mention-BZ-19762-in-NEWS.patch * 0014-Define-_HAVE_STRING_ARCH_mempcpy-to-1-for-x86.patch * 0015-Or-bit_Prefer_MAP_32BIT_EXEC-in-EXTRA_LD_ENVVARS.patch * 0016-Fix-resource-leak-in-resolver-bug-19257.patch * 0017-math-don-t-clobber-old-libm.so-on-install-BZ-19822.patch * 0018-resolv-Always-set-resplen2-out-parameter-in-send_dg-.patch * 0019-S390-Save-and-restore-fprs-vrs-while-resolving-symbo.patch * 0020-S390-Extend-structs-La_s390_regs-La_s390_retval-with.patch * 0021-CVE-2016-3075-Stack-overflow-in-_nss_dns_getnetbynam.patch * 0022-configure-fix-test-usage.patch * 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch * 0024-nss_db-Propagate-ERANGE-error-if-parse_line-fails-BZ.patch * 0025-getnameinfo-Do-not-preserve-errno.patch * 0026-getnameinfo-Refactor-and-fix-memory-leak-BZ-19642.patch * 0027-getnameinfo-Reduce-line-length-and-add-missing-comme.patch * 0028-getnameinfo-Avoid-calling-strnlen-on-uninitialized-b.patch * 0029-getnameinfo-Return-EAI_OVERFLOW-in-more-cases-BZ-197.patch * 0030-hesiod-Remove-RCS-keywords.patch * 0031-hesiod-Always-use-thread-local-resolver-state-BZ-195.patch * 0032-hesiod-Avoid-heap-overflow-in-get_txt_records-BZ-200.patch * 0033-malloc-Remove-NO_THREADS.patch * 0034-Fix-malloc-threaded-tests-link-on-non-Linux.patch * 0035-malloc-Run-fork-handler-as-late-as-possible-BZ-19431.patch * 0036-malloc-Remove-malloc-hooks-from-fork-handler.patch * 0037-malloc-Add-missing-internal_function-attributes-on-f.patch * 0038-nss_dns-Fix-assertion-failure-in-_nss_dns_getcanonna.patch * 0039-nss_dns-Validate-RDATA-length-against-packet-length-.patch * 0040-resolv-nss_dns-Remove-remaining-syslog-logging-BZ-19.patch * 0041-nss_dns-Check-address-length-before-creating-addrinf.patch * 0042-nss_dns-Skip-over-non-PTR-records-in-the-netent-code.patch * 0043-resolv-Always-set-resplen2-out-parameter-in-send_vc-.patch * 0044-tst-audit4-tst-audit10-Compile-AVX-AVX-512-code-sepa.patch * 0045-Fix-tst-audit10-build-when-mavx512f-is-not-supported.patch * 0046-tst-audit10-Fix-compilation-on-compilers-without-bit.patch * 0047-strfmon_l-Use-specified-locale-for-number-formatting.patch * 0048-glob-Simplify-the-interface-for-the-GLOB_ALTDIRFUNC-.patch * 0049-CVE-2016-1234-glob-Do-not-copy-d_name-field-of-struc.patch * 0050-ldconfig-Do-not-remove-stale-symbolic-links-with-X-B.patch * 0051-Report-dlsym-dlvsym-lookup-errors-using-dlerror-BZ-1.patch * 0052-Fix-tst-dlsym-error-build.patch * 0053-Remove-trailing-newline-from-date_fmt-in-Serbian-loc.patch * 0054-Revert-Report-dlsym-dlvsym-lookup-errors-using-dlerr.patch * 0055-CVE-2016-3706-getaddrinfo-stack-overflow-in-hostent-.patch * 0056-Fix-strfmon_l-Use-specified-locale-for-number-format.patch * clntudp-call-alloca.patch * glibc-memset-nontemporal.diff * nis-initgroups-status.patch * nscd-gc-crash.patch * robust-mutex-deadlock.patch * strncat-avoid-array-bounds-warning.patch- strncat-avoid-array-bounds-warning.patch: Avoid array-bounds warning for stncat on i586 (BZ #20260) - Update glibc.keyring - Unset MALLOC_CHECK_ during testsuite run- nsswitch.conf: Add fallback to files for passwd and group to prepare for libnsl removal.- nis-initgroups-status.patch: Return proper status from _nss_nis_initgroups_dyn (bsc#984269, BZ #20262) - robust-mutex-deadlock.patch: Fix generic __lll_robust_timedlock_wait to check for timeout (bsc#985170, BZ #20263)- nscd-gc-crash.patch: Fix nscd assertion failure in gc (bsc#965699, BZ [#19755])- clntudp-call-alloca.patch: do not use alloca in clntudp_call (CVE-2016-4429, bsc#980854, BZ #20112)- Import patches from 2.23 branch 0001-Updated-translations-for-2.23.patch 0002-Regenerate-libc.pot-for-2.23.patch 0003-Regenerated-configure-scripts.patch 0004-x86_64-Set-DL_RUNTIME_UNALIGNED_VEC_SIZE-to-8.patch 0005-Add-fts64_-to-sysdeps-arm-nacl-libc.abilist.patch 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch 0007-NEWS-2.23-Fix-typo-in-bug-19048-text.patch 0008-Update-NEWS.patch 0009-sln-use-stat64.patch 0010-Add-sys-auxv.h-wrapper-to-include-sys.patch 0011-mips-terminate-the-FDE-before-the-return-trampoline-.patch 0012-Use-HAS_ARCH_FEATURE-with-Fast_Rep_String.patch 0013-Mention-BZ-19762-in-NEWS.patch 0014-Define-_HAVE_STRING_ARCH_mempcpy-to-1-for-x86.patch 0015-Or-bit_Prefer_MAP_32BIT_EXEC-in-EXTRA_LD_ENVVARS.patch 0016-Fix-resource-leak-in-resolver-bug-19257.patch 0017-math-don-t-clobber-old-libm.so-on-install-BZ-19822.patch 0018-resolv-Always-set-resplen2-out-parameter-in-send_dg-.patch 0019-S390-Save-and-restore-fprs-vrs-while-resolving-symbo.patch 0020-S390-Extend-structs-La_s390_regs-La_s390_retval-with.patch 0021-CVE-2016-3075-Stack-overflow-in-_nss_dns_getnetbynam.patch 0022-configure-fix-test-usage.patch 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch 0024-nss_db-Propagate-ERANGE-error-if-parse_line-fails-BZ.patch 0025-getnameinfo-Do-not-preserve-errno.patch 0026-getnameinfo-Refactor-and-fix-memory-leak-BZ-19642.patch 0027-getnameinfo-Reduce-line-length-and-add-missing-comme.patch 0028-getnameinfo-Avoid-calling-strnlen-on-uninitialized-b.patch 0029-getnameinfo-Return-EAI_OVERFLOW-in-more-cases-BZ-197.patch 0030-hesiod-Remove-RCS-keywords.patch 0031-hesiod-Always-use-thread-local-resolver-state-BZ-195.patch 0032-hesiod-Avoid-heap-overflow-in-get_txt_records-BZ-200.patch 0033-malloc-Remove-NO_THREADS.patch 0034-Fix-malloc-threaded-tests-link-on-non-Linux.patch 0035-malloc-Run-fork-handler-as-late-as-possible-BZ-19431.patch 0036-malloc-Remove-malloc-hooks-from-fork-handler.patch 0037-malloc-Add-missing-internal_function-attributes-on-f.patch 0038-nss_dns-Fix-assertion-failure-in-_nss_dns_getcanonna.patch 0039-nss_dns-Validate-RDATA-length-against-packet-length-.patch 0040-resolv-nss_dns-Remove-remaining-syslog-logging-BZ-19.patch 0041-nss_dns-Check-address-length-before-creating-addrinf.patch 0042-nss_dns-Skip-over-non-PTR-records-in-the-netent-code.patch 0043-resolv-Always-set-resplen2-out-parameter-in-send_vc-.patch 0044-tst-audit4-tst-audit10-Compile-AVX-AVX-512-code-sepa.patch 0045-Fix-tst-audit10-build-when-mavx512f-is-not-supported.patch 0046-tst-audit10-Fix-compilation-on-compilers-without-bit.patch 0047-strfmon_l-Use-specified-locale-for-number-formatting.patch 0048-glob-Simplify-the-interface-for-the-GLOB_ALTDIRFUNC-.patch 0049-CVE-2016-1234-glob-Do-not-copy-d_name-field-of-struc.patch 0050-ldconfig-Do-not-remove-stale-symbolic-links-with-X-B.patch 0051-Report-dlsym-dlvsym-lookup-errors-using-dlerror-BZ-1.patch 0052-Fix-tst-dlsym-error-build.patch 0053-Remove-trailing-newline-from-date_fmt-in-Serbian-loc.patch 0054-Revert-Report-dlsym-dlvsym-lookup-errors-using-dlerr.patch 0055-CVE-2016-3706-getaddrinfo-stack-overflow-in-hostent-.patch 0056-Fix-strfmon_l-Use-specified-locale-for-number-format.patch - CVE-2016-3075 CVE-2016-1234 CVE-2016-3706 bsc#973164 bsc#969727 - resolv-mem-leak.patch: renamed to 0016-Fix-resource-leak-in-resolver-bug-19257.patch - no-long-double.patch: renamed to 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch - glibc-gcc6.patch: renamed to 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch- glibc-c-utf8-locale.patch: fix bad standard in LC_IDENTIFICATION categories - glibc-2.3.locales.diff.bz2: likewise- glibc-gcc6.patch: Suppress GCC 6 warning about ambiguous 'else' with - Wparentheses- Add compatibility symlinks for LSB 3.0 (fate#318933)- powerpc-elision-enable-envvar.patch: enable TLE only if GLIBC_ELISION_ENABLE=yes is defined (bsc#967594, fate#318236)- ldd-system-interp.patch: Restore warning about execution permission, it is still needed for noexec mounts (bsc#915985)- Add C.UTF-8 locale (see https://sourceware.org/glibc/wiki/Proposals/C.UTF-8) and rh#902094 . Added with glibc-c-utf8-locale.patch. - Add glibc-disable-gettext-for-c-utf8.patch to disable gettext for C.UTF-8 same as C locale.- Move %install_info_delete to %preun - crypt_blowfish-1.3.tar.gz.sign: Remove, the sign key is no longer acceptable- no-long-double.patch: Don't use long double functions if NO_LONG_DOUBLE- Update to glibc 2.23 release. * Unicode 8.0.0 Support * sched_setaffinity, pthread_setaffinity_np no longer attempt to guess the kernel-internal CPU set size * The fts.h header can now be used with -D_FILE_OFFSET_BITS=64 * getaddrinfo now detects certain invalid responses on an internal netlink socket * A defect in the malloc implementation, present since glibc 2.15 (2012) or glibc 2.10 via --enable-experimental-malloc (2009), could result in the unnecessary serialization of memory allocation requests across threads * The obsolete header has been removed * The obsolete functions bdflush, create_module, get_kernel_syms, query_module and uselib are no longer available to newly linked binaries * Optimized string, wcsmbs and memory functions for IBM z13. * Newly linked programs that define a variable called signgam will no longer have it set by the lgamma, lgammaf and lgammal functions - Removed patches: * dont-remove-nodelete-flag.patch * openat64-readd-o-largefile.patch * mntent-blank-line.patch * opendir-o-directory-check.patch * strcoll-remove-strdiff-opt.patch * ld-pointer-guard.patch * tls-dtor-list-mangling.patch * powerpc-lock-elision-race.patch * prelink-elf-rtype-class.patch * vector-finite-math-aliases.patch * powerpc-elision-adapt-param.patch * catopen-unbound-alloca.patch * strftime-range-check.patch * hcreate-overflow-check.patch * errorcheck-mutex-no-elision.patch * refactor-nan-parsing.patch * send-dg-buffer-overflow.patch * isinf-cxx11-conflict.patch * ibm93x-redundant-shift-si.patch * iconv-reset-input-buffer.patch * tzset-tzname.patch * static-dlopen.patch- isinf-cxx11-conflict.patch: Fix isinf/isnan declaration conflict with C++11 (bsc#963700, BZ #19439)- tls-dtor-list-mangling.patch: Harden tls_dtor_list with pointer mangling (BZ #19018) - prelink-elf-rtype-class.patch: Keep only ELF_RTYPE_CLASS_{PLT|COPY} bits for prelink (BZ #19178) - vector-finite-math-aliases.patch: Better workaround for aliases of * _finite symbols in vector math library (BZ# 19058) - powerpc-elision-adapt-param.patch: powerpc: Fix usage of elision transient failure adapt param (BZ #19174) - catopen-unbound-alloca.patch: Fix unbound alloca in catopen (CVE-2015-8779, bsc#962739, BZ #17905) - strftime-range-check.patch: Add range check on time fields (CVE-2015-8776, bsc#962736, BZ #18985) - hcreate-overflow-check.patch: Handle overflow in hcreate (CVE-2015-8778, bsc#962737, BZ #18240) - errorcheck-mutex-no-elision.patch: Don't do lock elision on an error checking mutex (bsc#956716, BZ #17514) - refactor-nan-parsing.patch: Refactor strtod parsing of NaN payloads (CVE-2014-9761, bsc#962738, BZ #16962) - send-dg-buffer-overflow.patch: Fix getaddrinfo stack-based buffer overflow (CVE-2015-7547, bsc#961721, BZ #18665) - powerpc-lock-elision-race.patch: renamed from 0001-powerpc-Fix-a-race-condition-when-eliding-a-lock-20150730.patch- Add audit-devel and libcap-devel to BuildRequires, for use by nscd- reinitialize-dl_load_write_lock.patch: Reinitialize dl_load_write_lock on fork (bsc#958315, BZ #19282)- resolv-mem-leak.patch: Fix resource leak in resolver (bsc#955647, BZ #19257) - tzset-tzname.patch: Force rereading TZDEFRULES after it was used to set DST rules only (BZ #19253)- glibc-2.3.90-noversion.diff: use stat64- ld-pointer-guard.patch: Always enable pointer guard (CVE-2015-8777, bsc#950944, BZ #18928)- strcoll-remove-strdiff-opt.patch: Remove incorrect STRDIFF-based optimization (BZ #18589)- iconv-reset-input-buffer.patch: Fix iconv buffer handling with IGNORE error handler (BZ #18830)- new patch [BZ #18743] PowerPC: Fix a race condition when eliding a lock 0001-powerpc-Fix-a-race-condition-when-eliding-a-lock-20150730.patch- nss-files-long-lines-2.patch: Properly reread entry after failure in nss_files getent function (bsc#945779, BZ #18991)- fnmatch-collating-elements.patch: Fix fnmatch handling of collating elements (BZ #17396, BZ #16976)- opendir-o-directory-check.patch: Fix opendir inverted o_directory_works test - static-dlopen.patch: Static dlopen default library search path fix (bsc#937853)- mntent-blank-line.patch: Fix memory corruption w/blank lines- dont-remove-nodelete-flag.patch: Don't remove DF_1_NODELETE flag from all loaded objects on failed dlopen - openat64-readd-o-largefile.patch: Readd O_LARGEFILE flag for openat64- Update to glibc 2.22 release. * Cache information can be queried via sysconf() function on s390 * A buffer overflow in gethostbyname_r and related functions performing DNS requests has been fixed. (CVE-2015-1781) * The time zone file parser has been made more robust against crafted time zone files * A powerpc and powerpc64 optimization for TLS, similar to TLS descriptors for LD and GD on x86 and x86-64, has been implemented. * Character encoding and ctype tables were updated to Unicode 7.0.0 * Added vector math library named libmvec * A new fmemopen implementation has been added with the goal of POSIX compliance. * The header is deprecated, and will be removed in a future release. * bsc#905313 bsc#920338 bsc#927080 bsc#928723 bsc#931480 bsc#939211 bsc#940195 bsc#940332 bsc#944494 bsc#968787 - Patches from upstream removed * htm-tabort.patch * o-tmpfile.patch * memcpy-chk-non-SSE2.patch * pthread-mutexattr-gettype-kind.patch * powerpc-software-sqrt.patch * static-tls-dtv-limit.patch * threaded-trim-threshold.patch * resolv-nameserver-handling.patch * nss-separate-state-getXXent.patch * aarch64-sigstksz.patch * heap-top-corruption.patch * pthread-join-deadlock.patch- pthread-join-deadlock.patch: Use IE model for static variables in libc.so, libpthread.so and rtld (bsc#930015, BZ #18457)- glibc-nodate.patch: fix verification of timestamp- also filter out -fstack-protector-strong- getaddrinfo-ipv6-sanity.diff: Remove. It breaks services that start before IPv6 is up (bsc#931399) - glibc-2.3.locales.diff.bz2: Remove sh_YU locales, fix currency for en_BE.- Add /usr/include/gnu/lib-names-.*.h to baselibs - pthread-join-deadlock.patch: Don't require rtld lock to store static TLS offset in the DTV (bsc#930015, BZ #18457) - heap-top-corruption.patch: Do not corrupt the top of a threaded heap if top chunk is MINSIZE (BZ #18502)- threaded-trim-threshold.patch: Fix regression in threaded application malloc performance (bsc#915955, BZ #17195)- aarch64-sigstksz.patch: Increase MINSIGSTKSZ and SIGSTKSZ (BZ #16850)- powerpc-software-sqrt.patch: Fix powerpc software sqrt (BZ #17964, BZ [#17967]) - nss-separate-state-getXXent.patch: Separate internal state between getXXent and getXXbyYY NSS calls (CVE-2014-8121, bsc#918187, BZ #18007) - static-tls-dtv-limit.patch: Fix DTV race, assert, DTV_SURPLUS Static TLS limit, and nptl_db garbage (bsc#919678, BZ #17090, BZ #17620, BZ #17621, BZ #17628)- resolv-nameserver-handling.patch: Replace with simpler version with more compatibility- memcpy-chk-non-SSE2.patch: Fix __memcpy_chk on non-SSE2 CPUs (bsc#920084)- resolv-nameserver-handling.patch: Rewrite handling of nameserver configuration in resolver- htm-tabort.patch: Fix TABORT encoding for little endian- Update to glibc 2.21 release. * A new semaphore algorithm has been implemented in generic C code for all machines * Added support for TSX lock elision of pthread mutexes on powerpc32, powerpc64 and powerpc64le * Optimized strcpy, stpcpy, strchrnul and strrchr implementations for AArch64 * i386 memcpy functions optimized with SSE2 unaligned load/store * New locales: tu_IN, bh_IN, raj_IN, ce_RU * The obsolete sigvec function has been removed * CVE-2015-1472 CVE-2015-1473 CVE-2012-3406 CVE-2014-9402 CVE-2014-7817 bsc#864081 bsc#906371 bsc#909053 bsc#910599 bsc#916222 - Patches from upstream removed * ifunc-x86-slow-sse4.patch * pthread-mutex-trylock-elision.patch - o-tmpfile.patch: Fix value of O_TMPFILE for architectures with non-default O_DIRECTORY (BZ #17912)- Update to crypt_blowfish 1.3. * Add support for the $2b$ prefix. - ifunc-x86-slow-sse4.patch: Fix misdetected Slow_SSE4_2 cpu feature bit (BZ #17501)/bin/sh/bin/sh/bin/sh/bin/shunscds390zp35 1657623311 2.31-150300.31.22.31-150300.31.22.31-150300.31.2 0.48nscd.confnscdnscd.pidsocketnscd.servicetmpfiles.dnscd.confnscdrcnscdnscdgrouphostsnetgrouppasswdservices/etc//run//run/nscd//usr/lib/systemd/system//usr/lib//usr/lib/tmpfiles.d//usr/sbin//var/lib//var/lib/nscd/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:24846/SUSE_SLE-15-SP3_Update/1467cc2dc277c3be210a0e585484ff77-glibc.SUSE_SLE-15-SP3_Updatecpioxz5s390x-suse-linux ASCII textdirectorycannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.31.2.s390x/run/nscd/nscd.pid' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.31.2.s390x/run/nscd/socket' (No such file or directory)ELF 64-bit MSB shared object, IBM S/390, version 1 (SYSV), dynamically linked, interpreter /lib/ld64.so.1, BuildID[sha1]=89c5eed696e69028c1f54784058f331df0622500, for GNU/Linux 3.2.0, strippedcannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.31.2.s390x/var/lib/nscd/group' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.31.2.s390x/var/lib/nscd/hosts' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.31.2.s390x/var/lib/nscd/netgroup' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.31.2.s390x/var/lib/nscd/passwd' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.31.2.s390x/var/lib/nscd/services' (No such file or directory)R RR RRRRR R RRR RRRRRRRRcinU6 _utf-84eb34666eda92fafe2e7b2b49d1d1c2576ee51fb931d0c5c7aacf5edc23e4438?p7zXZ !t/C#] crv(vX0|GZǼ6|'/u9ZF^iodz'?] y&'hv\:5]vc0E>; ]Lmb*~< )9)V %N &m?+W˷]&rs{2p8埔-\3#fvO׃E:3fܼ*V7{Fz*Sb=܉agMRH{wle)uJt^BJ3>$UOĆg)9͘LoC5̽6@ޔ4`# gJ-}Kugpyb,|;yvuBrNLAʛm{ݒq({IyyTepV͸G/]aJ̖0BD^=3pCy38d($AzOCCL$du T;!lMDX1f Y(p)|=aagw`Ff[ILq9[7LR*e,zMhCbnJR#? eYt{;j)V b|y  .ȗ/Ƀ @6 Lz=h;:c춞=ٕITmleRTz7I3q&n,NG  NA 9Ӑl<6ܹ)5:P*X4sKrbg9EU!X|->NϤ,&^y/c- tGE̫^e.BA_ \|8TNˢ󖍴6ӺF =)ڹ=c״!)Nl:G-`x|RnэanfÆkMI3Hm0$Pd1N :hkkUCVTrIٿ0l]b-[MG;rDT+p&٥$OӐGg9;]M)KF/\ZnNkn÷vl%:j7Cٷ!O]xwn#dvER4"=Dηs=DIs]L\Rl0aK]!  &},R^>A;*jDŽɋ؂zS %@,% NB5DbߔJ){o: MyemYPzEi.h {":L~'(fׇH$P-6I4$!b2%|ldT& Z O0+_=ȫQii `3ܟr~u u#r)4 Us>8qwbE+CQ:=7q}Ƴ5_< Zcohe~EXFP.^i?CDzc'!/3s >Msr6N2qH+#  ErH]^6'үa'j񦸮>PSTmC1G$tΦ8!\A։l kC}T& fG[v`V4)EFF?bʑ$Jx?CY}ښI tMR@t9 @U {߁~DR\:)Gq`SY5y1Dm`e%H.g[3GhZR5%yQ7W9v8ěY-`9[-ˍI 6,|=&S@-*/T嘹Qlˡu}G$>):3\%8_s1N+Tۜzw 1:T̪p$uz( _]*YB(z*k;Rdxc;$*ֶ݀&sR]{|oԣrf[F/z?9C_ Gx&nim/o%忥aoX# T(,.-6>WMO!>jQxf@۸q:"伋_2e"kr2$d&<_GZr%&5E$j>Bz_|J]M 4ݑv#;v*>NBute>L\D,'BI Ӫ,9uϥ-jhGU$Ww;_EvmTeJNyN=av[qO|PX k_dK MPV]x~!80Z3]{ȼF -'TG,VLeʑP3cqa@jKrPcW'>ČgYp[ Se\z/шJ8gCŃ^r4bճ`=4}a* P>:SPX1 ґC yɌ~Ҽ g>IEUy}YVOdp=4"ikZ`(ݪc +]~)A!("VXAU4i&/#oP opGI|,\|\ޢ{*+rڠm]{t5]mjх*WG):I;( C$/spIB*5RoZ} ~-4R,HH_B } P`Eb]| =o4z7q Z',$ca?`v ))ftQWtU ~e>yO*xB_8_vS:+vNɁ3Ho-4g9W*\iU5PS: hYΡTndA(V҆[&_S/x2\R;v{:L,"v -5 N8-]ӛvwz<{;DKD\DbIqPNZ׋9~,/AGn}C趂b~e=XW?hV9zES` ;BqQH5ns($ySFؘnc!j8V 0i};4$) $^~٢oLV>),;izżiZ5fF b%"4W[=u_ctQ &G ;zp\bIB+Y ,FпD~ s:vm*@ѭIE *.Ԛ]Io|"iO`/˟h +KGѣ @z䍻.hcA"ߔP-Z)&h{vaX@46ulY˧kY@ ]N-o}mK{۟ ?:Peq}8P4h7X(_:[K2n EžԠdfn6~>qә\ gZ]Q7"6wEG{@VΕfp^EenmŴfL[cJ s~JڂexrŲ?ˎ R1#$_I&fB#~бhY08-Uy]X-5i6MMw 0nHmt#;*>k)z=ܨ|;Reð:ڞt#6R#so`[B?ڹtpcMNi*RH&x F5JYm6N}+~&q+Bi>A8JvVz@[u۹Q27h} Ǡ:=1!FN9o8@] i16˰Bߨg\Dzè}ࡼZX'<7G@~Jې):2 V0:0^IxěTk'LAUG]dH(!]Z3@7ט)ǛeW[h^psMAQDbCW붘#xZI-iEj&pi,来sWvMXыkI`p|4=VJp =Dm@-à2 lMXDgIh|eFWC{1\ Ihb傌ŒF3F*bj6sVgicL 9X.*G: {wGG IR @]a%Wߑ2؊"]/1FtFK?ZD <~aڀɞFt%%$u^ƅ|Ag/`o B될`MJ!LEEl<=˭']BZ;zDZc}Lŕ cvE/Jf T:vgd䫷YhSd䘾u`iZ2nG>QuIG( ޜ}a{˻^{o1^hm泦 \܅/:ފY|#PPk_H̾#OqYG2d۲ݿqcɇXz$.Ɍp"|(Wh9u+(n>pz 6kw 5,8eEzV."*. rSCʆUl8iʞ:ŕ"fzVGa *!]ޅ+SzpW5|K-J!f BR^Kwa nuD5IJ@*Os{԰"R<4Tn]%sU +ω [8>+ 5m>] @Mո,0'Pnzx󝎵m!Fq1s\x+֐^Jp,mUuj{`XWsʿX8PYoٞ]-96/H6XH?ř47xamh\:Py$#E(6ZyÑ)q+Z떛/+3$fs$M-K-.{FQ&5rBg@-N f􂬧 캷&j;ZkQE֒ 1˴+\ʯG4q׺wE9Hy:X9t9+ctKrM(U?B6BD*[tB(ue4$`͊wЍDiAӈLSk2cZuon$\2 &Z;+ھcM6it[]u aXfh՛&(Dgq`è(XңuXlxZ5*S9s _2Uskq!3d-fPkF_~x J704/bE~"߇apg#(yExް8W,|\s~,|̎{ns?8>!ʣ:6tXߢFBKz6R6^@Hޫ~Ys\37{G[RrK3/RGzYg8W7یˑ `H>ᮜ8 S+l@OmD͙YޘMouug~b lS*(K*2)uadNw&> }d;*kHr ᥖ_le}!waՆ s_+‰_KE=m \*X)sB6K#u a[~>F߅Y=`VXdj!V=aP {4xF~q-~IGroCuSn&ܕ1&q5S z,)cF/_?dj)#3]^ĩP\mې:?}xÙW{tqDvC+%촀q]X>SZ`,^+\pP$#N?D/jQ-q )vP6$>zAu%Eٕ_C]\e0{onpQ7nƗ*j]ٛC?iV&E|2OZ8̥IqG` 5- (y^GT+ty37u}ǥH4:I"r#*p4ݍ fSp2oH -Vbfu/l x8ۤ0ib42}>~Ō}f8 T.=lq|Xs}Vkm֐t)!OD4kN&j6 # Y.?kJ/ݝ#8LZ/32 *w=@uF\eLB8ח9w)WEU:i"a9x;wۇG~@nwۮXUfL DxF9 9F_Ǔ oق#"}DqG%7=YcA1#>ra a#U^/9swsXuD3-:3sR`_-$o9I(] E[3}P\ ݆i_](g^~~hpi3S-;]M_z۽_p+c/Ƽ7UOHUΡKCD_Li52_-GCꤨ?qK? A\r $7˩Cb.gS1SՃmJ#6w`"ʊl=BeTl" ~%QyF}1>GVP` Q]k0]0N2R誘i@j IljaY*ztz>,כ d4PcOWiK07aihL;ں\vmq`Nu-.Ĵ2}R=[CBg~Iv`73P=eeJaG܎-h.Tb|AT {`F浫:ze&zmՎw;?Vuc\)GBDn#-6e܄/ ytn&=W\b_4GƩsa[+IÁ>e["s2ܥ5 L%meˊf,O7( =PvzΧ9,d}3Kf0q$j"أaQXbC5ZY}2*JW4Ν":vX6غ@hyF1e]LlH4ۗQi(u. yeM@&K̙2㐿%9aeQ'N>A%?AP9_:ļU/LٯUadg%*Š5'qx!G"`4k8'MT،%ct|,#c|n/rv/mz㼺\MoESmMnΩI'ލ.m4CX{% ~L įh۾z"٨|VJGh` HzbkHbB2L!K$Wr|Tq)i_Ly=E0 † gsnV0/f7C 9পI?M{a΄\sh`XZv|S4z)8rC/K1Lye=e͊KaL6r Sa9貣8s7ArjwR\jk{'%*88lG]F&7 0Qzi;q7L'cz:L8jjp bYl9 baҮBk#.\:Ӝo{:7[RK,Фm;{Lj;IH]o;p&|oD$E_w9e̼7b rwn1j)je!{Q/2CHuuT &tzՠLzpqQd d<Bf7zh|-|+_Ss]+35B \C"7AԀR_2P#Q;Y5"gag}(ZƐ`]ALԻ/| "O40y:q?I@!s^K\T;tIu5h<[ꅹ|~5ըF`fVզx0tG.C"2W+n$Yuǩ2Ɗ2ZE^;"$P_1u4tz  )`wgC>z(&9X*om7=t94o T'ZX}I^JM>'(AhضoQ=&b)|?kH.1N_ l9,oZc]D1l nKLc2.:Nz> AQtQgĥ:Y!ܸ2zPkG(SL>ԝyeRDj QS%g%1/zb)rSxXE87'sŸPÛ=TZ K)f|7MB-H.kXbgFv7$.>BXq"bCP-,)9xEQX3k'|8ܽ-g=߅DP9) | -Z>o~y;v8B&u75\1OѢtDC'BBz6!ubhr>o[ۛBgz;RwzGXRͷr۰희e0f@Lc^ d~=d>|R 炒 ]eDkgÎK M;uXVV ¯cFҜ2l?&7.\G'(SFU cDu$0':m1Kٰ-l6vn~sO/FpH(E0V&Bڶ$xUJ^ՍE\@U,,KƔ,vҒqZ?zxLqE1 eb<coh 9+EUG^5zXE^CfFJsuA6՟ NpBw=cY{i`]k!xZ]OjA擣Chm>&8YĜXx=QD{5 *k7ֽg? eUfJƐ lڹ8NW)Zmũ\\J;y A @ ~H3i@H**jK`Òx1BN Z4(`A8p"3d\:d<;:h=xF_e;_׃f5MXeދ[7$`_< "OTFżSr+^_U N6E.E)~*Kq$)©(%T_+ȖB[l\rq?::3jP>MV-u_+,D JӬᓺH|QYKY|8fR:9a\u{t"b'#'[ĊJ9X | ۇ }ЧҴ@ i\ S/zZsET4B&q-[g"5|9$,#`^&@)678+h]({J[56X+F=3x[5sԖm%˚3e\UiU u{ b"p;C˟ O ZXy1*{"Dt"O~C\V&șS~!SP9I"oN|K5+tBMY-~ H$䧊e6W\?d{adi%(XC%5y}G &YhK>ݫvҩߗ :4u4tDtP`>>]+|Cn/N[Ly~vؾ2m!t_F '@:E5ԈiA$p]퇑fj_=߰e⾪S?؛LT'7HfB4{͕2 (Iyck|]ҾW0-[uGA)Oi$:Qz,êm܈0"d<1Np퇀Msʲ xVZbRr2W2o,c)TϹe*bc-/UT,/h QyZINPFT sff90ra{kD~r>,=G61l~chĺ-k|QmDv{\薺%31Ѱ6i٩Žt͈Jh>< *՘{wUVŬ܎ʠ&CS'+RTjF:/ȿ+$\z|(nv =/7I"oFh/2˿ `fK|Rh̶M7?"׾Dk!1rF9tIqYB4w\vP)2SQ#OWYJ<+!r<3+0BR{&cpY}MQ6-=XTUlx)2fɴ6`,Gi0st}Q\&\r8 QiCpU,TcIM2FW>_,+G7 * PڷȎ& W 0M+r)u-)GT Njt>3Ho !5 CBrP=x}߲>0 JM,8a(4yXo>dOS+dHoxF it;D>сU1S#a +.CcHxfB Kĝۙj޷n_*KJn{3^b,IvYa䒌$kK tsIc9{qfU,I{pf-Jr);P9h]EHi&pio@_΅;Q|#הplj|y.ʐǃqL?5&Ȣ?OMM{dNNJ7љ\bIȐX2|8o:.0aZ$t,KN´ "bL]$G _Md"Wn7>h|at"O ӓxrߔnDX,ez Ʌ?X- Ft!/Yo%Bj!nw4 =LNw[OhSBhSjh[ +w4>J{9A' L-NлJt~/ ۫DG~H/7[50IV}jr*# h PddjV!kV"Ԁ4l)Sm6\j>+wsZuū J]莲oZÁ6<Ű҉AR)ZwpQ!\0q?48fDXÝtֳr(l'@7Ka//%% &A4l< )Xu<\zYB]%ؔg-+Ga ^QS6OIN* m8okpW%;~oGӂ~P%/sMA ǔ 4̡k ȉY/]sL7 s?gtȗp+š[=mU_*>f$|8oRbm6JlurLp1'٤Ҫ$ F.i`^J up΀ݫdaRֹAB]EC%ޭ @N$*aإgCR=5e{} C傋AY݄,:uwR xFk*nJ=j Pl|4og9w<܃<-?;_߃POp h{q$‚gewGi+/hKD ј/ƁFix6w3~w^^M R4}J( oT tvn|dt2ߏr[9H\7 <lCڄpWfOɘh_Xiz{F4C%yEJ6RI'3$sbfm7T'U]wZ,X @ba<;LN uY"~t(uFk%<|ZA hE>r\C/PpB/6N֗lgSxsaG?$$ -ۚro<1 sT{Rvd]E D ~^ F3@0 yq U|!S'W>~6 3x(O{@u{Lkom8zIhGݪHK.T,֘q8)6WsߛNdO`-iʵtؕؔky K:Na0ijl5K ;VDP%j]Y%julxaXXswFl71Z5uiP-Sq$ڰ4)!C^9DYX~{(f7zzaeGd K^#*,82`7s. 4.x?B]%P1\ '(TK.}E6 f[?Uf0GoaǺe kV2A|#g#;[8%H\;R=0LαJ}R8_\qs!X2c 3ϢNI9WTO'?HmW@ms(d'aP<5q%qr%mYڵ!UJGDYa[Sn5R)X:mUK鼂b̗K2c3pd8+c警7TD'ƢrQu|rN$x[` N %@MN, NLϏQIGo~NQ ]Zl@ RҨ{"h|~QU>÷քlɅD ")m?OvDwt*\,nJ %L{r8>`MGIVr.n*n ;# DlH Ү:O 븵  5~͑IqF‘N7@|'qu^9!\LF/.kc퇓%aJk3b A: O~տ٥ F&Z{wiםlQző>iB!pcT.݁rV'>_gh=H#M~.33j#+m? 7RNc/[B_on~`DFda[;z^,);aDUkl ^κL4 j};lD^br2VMqn\G0W Qa?{sG}4 iY0Y`r#)bTE r {S;Ӭl#@՜2z=W*L@4W|ړ&ᦚ~2j`P8ZI]x"Ɛ#sSz?{cɸ !\%%kSc.0~:3ٸ- PF5Jn,bv?5jw9 [ Gg?[Fm+ јI_W i4/a܂3}!(QtH:W8cmoD+un=5+5FSM{9(:H7N0nqx6GEju/F3$E ([ {D;S#'|=.˽nn[JynQ+qI m3L5Ž J׃UY ڈ噷r ^()x4e,HOL}Q]@1ATXN]iB3 84<EYaޙB?:>MkW1rC;g~_;&J4LsfDK{.fw6L/ȖOE#RڒkO5R*.=nߙBY+m"[䴥l/bA=^MOip*V$yщߒs+D$FObI; l> ޛ(% XxL@ʼnPa cH+TbQ@ŒD`U !!/\NR^uŽ[*̫I('e &nNI<+N #Vvm(·T&𹽓ȯ2Y& ݐJO{> YѬUl#V"! iue)tU[@1)^FG 7ːH<)~w府hry {'0B%"s8_rՙ'Yy%-n@# p+.SRy'>߽5QN7S߯, i`NywBX۽=_fF)M@5%NG:Lt*c8ޜ.[][ܮ+㌃MIe8h)`WZ)UlȳT]mHWCK[)*XkQ4f1$.T`#}t<ﰢVkMc69OJAm^|Jalí3hSjD3a-ч:ghP67*ъk\Hv׮l!8a7 J$V!B 9:)uXY(D0@F˜)[na05v n,$BG&s 07kGb¾J#y͉V5ƜmwD kzhzp{BqXL$"W[gѢ' wE3Jd7LƩl /}rnҰֵ6Xy6O [a^x1/瘩[6>%ݓ0;v OԌ!ؼ iw<e]rJa/ .Hri9sim{8$_3 YIc[$#8Ji FL/h @ǘ~˗^,8!ZVyQ`>, }_̥L ±탑OŸM1 ~ңalb ATϽmTƁL61Vo(΂og4?t9o>9aOF]rqG,-bn!89L.)*)BL_SE&mx!V|Q_džK|(6[w"t`8P6XI lom[=e3#gRy@J-e0jA,XM :Zycê5_$oPVOS |smkYTKɱrMwx5Bؔ: iIx\Z Iԑ 3Bֈ)P[R쓪Fcxn%^!h$z6ihϱci3zעlRn)cɃImax2[w5ik &%||l*oD e*\ 4}Qsv f Wwo~/ue[]}xi ?4yXDb>^E49x"{RrT\t]s 7@5nxۺ *6Bv#4z^鎶ѐ#!YG埃xn 0bDCG`lIFzY-; [7!١ cVZCXEeQdkVƛc"42lTOUPE+EdY!I׶^En['BǾBh8#ૹ/ 5sa._3Jm\yt¶Zgdț|.tp_&qkbL7&"qTC lߑ%T^ǯz<EqXU?A7h IXPxpz[I0k;M^n2N7y4MĈ6Rd"͞De.javLqJO-c*-eq7 = =~G'' _o2܊zISQߊ Dc@v:sYxXd V1-Lv8r׷|Zo'}&t"<2zun"Yfyt'mkqT璑|f1@='#Rp&f8dqEz )F"#_M~q>@W!h@=ͻJ~JcgRdwXiKLtI_H,/*;5*vS}3hաvJnӸ?Q`֠(Ń_ B.BLR.D}i U;k_@ ?#zxI;bn"౾^zN6uKS:Tc oÒ/ؒ5uib)`@8U8q`Q ʚ47R?~FO.*.B|RGgHȆ9o%/OA]:H?~5Ѽb~7k-ϏJsՠSYQq 9V} de짆Vavͼcj3L1Sv Ӌný=o>qwW8}B#QLaywګOC!FY9tXP ԏiMFqکL-t')X^a2Aq$~xA[Љg:Y/.+@ì&P\؊B,OPv=CT(A͌`K9+m#7U.y{Ŀy(]S('b~S Ev%G$,c~ꇢ,cQzETSftܞX&( @}'[)/P;Hl>gw_9cl>6p6FuǭQ+a ^OFAnp6atu|2jZ*%+@  t1<^L&T!?ee:9j T Ҝٴ<$uEkd0 dV*-ͨKKlvnӃ_=]>;J#OӼ$M~sr i f?e"{á'tھPsnYʎo9ŚU]bcG܈ۖ_^ QNYN!Ov$~eįo˦BX32Q33;qrX/"{,ƪ7릂!` fjù~GVwƤ)d24>p@`nl$߾?~\b4l [&{|oZ!B?-̛h{Tw$ :(P,b[tcK+߹J$8J0Y Di- TIe5`up!ɉW"T[9FM0b 'K5y@1u?[v_ ڠ $Īj%tnHE]go=5HZ& L+]Rx,G^0P<_ZUC|!aTEMXm3uIZ=w6z XvX6hc=8}|r"w}_g4{POӁ떇**S!F:,:Ï,BɇÏNbُ]ec4:JP2}!ݛɫh̞u_yd%IGj+&d8+hAGהdP>HRq2g/bP~ϼ"H_6(veB^c#\p1 ̴^9=lq+胳|w*! 6ҡ0(ʠPO˕YPvuV\(e CWz(gxߘRe=1 eܝ"GuWX/fkR_T]Eo 0SšG1S*uU]N6)iE|!RE<`>!STKRL0.R^.PPRNhe3bcVy➂ruHG%#7m: &~=}-hX?}n*% %YQeDX䞔t/|`.s"7]bk-#w,D/weh +WCD $ub0#mT6YPCvcw̧J4RLp{5qij- i{':CGie)guiGHGH!hm j?+ƘIiY`Y:g9;.̶I٘x2Jl|`P:A $qL5k\n`5"D7kKDؔsmHD.kh1 A!j|n g7 9=PD~cIhѸNxP*<,!dWn NK/E*ivѲ܇gSlm Pt]pAҽO{cIff$HJ_H#pM:#sAa:ztոX3ĎMMdᘷS)pRӏ#َCڟޛȖ\[x5CLxb5b؃>ʚk$9feK'ր9 7?+gkݐY_9 &ԧ.8Xu7f\NNMFGFG,Ds΃F_mq"$M5:u{ӛpq|#rE4>bǞ,}MKV5  9GYo |;l8{̧kWNCUT 6ԣƅ+Ǧ oo̗ )`׿&a9ERAIP 4K.Ovb[*WMl³e޷hݰZ1/?uXyLt!1RD_&Qu {mD#Oi"Yf^/m6TÔN̈7%Zdρ9@lfMrn} EԛуG "`b.-[y9GLF8jm]t}2+pO04ƾ@p{l=Z A03tҚ >ރ6f&t]̸ 0y@=0|czYUxJ 2ڂ֮9se\( eιA%C6'jX<'3X ٰ\2ShjYbr9 |L]EJQ5eRJso?Sn`5l VKSH9Y (rlt $m\jPAlHz=oɪCD`mY[O >02[DIגO&\ j;7 !!U0N`ډs7ZO uBN2J>;=[K/"m|[󡏠uLU^e>˯JD`'sZGW/d\vRVP8R.R^4TиPғ^Mt"(&Rb$=?dljF1;O\n(TST41.4/a['|*xNɆ U8tLwMUJ `AE1@=8籧Xg*9\-V0-p4vn/ljJM.Ď')b|bcf%v=;iC/%fAZd%uZi5/VoIꚙ rY/e=lp!a_Y֌e h;FađMʸJ7s%w0F<?0]W1D?`̙kv"\- TXhef"K;$@-}1ޝ`u'bNpӀrp(%qQy[vՂh!o/6oD.XeM6l&F|ޅ5ƧYCL$!ܒAaB>h>K :rs$71\p{'Q-nSAԣ.{@ gy֙-(Rayh~|HywbzkA0BrDRtnc[~R`?e^dg Srfzv{8@y"9C~g"M IvO39H(v~H^pl fD _ Gf$abCZZ ;p m,TO^S eYt93e~d OTRXӀq$ B5,"{$&26lݵ*'9xC^APG?7ߵGo7R |,Pi[ue-cOr ^\_k˃8w|x^,nr>5S PmhڕĽa7</jL'[EzM a ;%rDFadޒgT Pmo \+]@o)KB5VG'saq XU@k*?q gq-%yZ+ %w_QGGIXKoʙNG&eo&$6\ʀܕNJt zR:ߺRHh27gO.[$4/$Im p:|lXUc[˿pyѬSƃ8kLãLٺy_21[s^2S7cб*3 mo.sEEp_tNRI .>Zoi0HbF-PmtƁ?i,)#k-@¦*K'L$ hCęOG\@2tg.3$;(X '6舆!)m'\Ԋ1 0 MșH v3QQm VjUt5H$OFo܎Ҝr̦oeְcg jԴms$Hغx.ɦ+,۵o'_ rI׃f9ފk6p,)jEᬽI:Ƨ|Ŋ3fN%. ֹJ&٫HG0ٛ[  5CD9uыx ^1PnAR_R>[^gCy { ,H xʺ}hYN&oIιDλEPtIfAql`R7NB&8u|IhQSZzN Bٍyt&뷛#TMuF ߪ**?YL,AMؙE.Gz:l"oo)sq1\`GοhlŅ3\:Pf[K/,85͢97:YΠ=MOuaH͓pD d\Be3D*@|+= |`On۫ OԦtk?GZU>;*1C`ǫ I#d'Wh4bHWuc’Y4s Zj&EF#sV!cL^eZٱF4x lJ˰5FNW_\+J>X@kUg[[! v/ӗ @W@ 4=*,|=҃Vo@YPsEdJ`A&\&n*:SN; mu ֲ^ȢJ74pgIYsXmR gZi~5yPW jee9JA c ޹)/ V~g +~!_\O_Gy U= -hFqIRE}\AP/ڄZ4~&t4">YvQ'0fce^܌i.q u%4)vy.W(~{HH<;~:Oh} "zk, vZ[?걃c4>_ M}¢ ݲ}%dӆl)|4wC䠑.r<`BvgjӦń,UnbN u8<J^3HBHTMk͸؝^mewl`Tc&j n+gg\U굫;S݅5ٲ9 W<[eCdm&61?=@xRU+s`!@|mqz`cg&s޸gʿ?PK/(\?F6(_ M\lzeX׎ٸw/>|Va%TQ(#r[iL<'ըl.Nu9 jDҼX鑩&Sřų;fԟ`/NjTZ08ƚmj^" r80e*G1\N_Z,k)JFMsWHp1Y=syq$(ѣ†ۛ _Ļh,? ad1'Qb,@v-9cW۠q5+W QRrއNic v50OVՀeP-k(*}G&edMdV0C1K 2g`IE'ŻKavi6r0/ɕ5m8rn<'8!ҢчK!1J-cIY"*bduɀY/=4gVv&ƟCٝÿbmKEsU h1hRZ⃤l&(Nh—8hjTVUɍBrJ`xlS1RKtc<FJu+1luR`x*Zw#$r~pJe'[6Z C{0Ox`f!ھF6,mĽթc/Ym ?kp} D9Jo s#, R{Hk*YVF420 SCq;эPێU8-z5ޕJӏ\n'`B H2@ݴWi=.`IAidW?lQ7$;r2j}!KP٤UFQc/H/ @dGu0I >m£%|akw޽Oм']Ek5rtRÉ"k}O2(崒gv 6, ]zόER㼫 tu VӎB&r5Xk𑧳=bI0d8|]Ɇm7(iB)l$eȬJ?\$ }0xb[By=yח @9 9ˍ #Ӧ80ӎ9)-݆|[ܟ Y+blNs֛czM,~$xtq!&b[6LF r;`Q2~bd=M47Go*uq}JY@[HlvpsXy}Ww,C_h V9k p\aov8mp;)WV0哝:0P#Ā_8_]Šq|J\#t<@م]{B5BYP dj$ש` /.ITRv[sNupz=ra|>3!qKXO5bW'!e$j.`eoYc雃|:XEMAѠ,*K/ZʍF/ՙ,/:]Gbpv&eW 䣏 +rhc4rtՆ7xBYTlq۪>LUHOHEXC!)8{1wg~ĺ4VsǬl1%1V`xVhE ¾6‰Wue;۪0@1 ɍre+Fv#g! ۘwJʶY|LY :>7ˆڣL̲i5UA}^A tϾ($9mҺ2 fc&1Cq;Yf2ڳ#&\VKMpGP3Ѷب h%6/ ?UX<=i zZ=_Wi֡ z Gv#O8䔪`U@>l Bxઉ0֖2bb^0$#)8v0 'm⠒A&|0ZxW^`?Hl'0%_6[Z6 x{R#/;=ieLbI"Mc!M_rB ŠL5ư! )O9UpJ:O b҂{HP1Ecg)[2y ?0 q;?ATXu@N(P;Z9}+*ɟ$:e ΰuti{$W<: R7$V9øv:gjǴi1tBWMVjwc`K$Fo~fCy?(,|A4Ƒc >)JhTCl?S3w &w:mCh3y>B~H%flŝw MDaXgJ*g|v3.\*U^>J&5`ڋ$"yC/}pONll| ' h $%p_=Sli U6h³?k?ED`m*hg8K%@%RL >ڦ*4l'iv1G-8?v.O/&#z\Nz /uPOV{Y=?4Z0|e Q:[FvN)-t~.TI=GJS3h-iFI ;Moz־I ^գ>0/Kc@4b4hGfgf*< |!ŅOʷmG dXm0d/z="*pxp7O/]S[gutJSe/[ҡYRV Pz-D( F~=SC4ifC D{q"Fe Wl#ΙN)#7,LbpҘYOǁIﺖ_kd'zM" /!vTPz&S22Y/q7Zn=ؓ:UO;VHn ׶`V,'\Tu= bzzOjp~ x"0h։/dsls$sE746JE%^&CNt'>dbwQ fa3eӂ\L7G<6~0#]>`tBȝF$VHpc ieFFݻ7I?L\ꆏ% :.2N$:i6ٽִ?w0sw_ݻCWP 4Տ3O)~ŀQHD^?iB`['5쳡߾ 5Ρ;w|=xvc{H>ck)ž,MpһNꩅYp;I?Oo0^1LX\4V_EIHrlFLl{lf;oWOزae9ZY'@J@, {!; _ziQi*|pàhJt}|O@Fz/(eE&7:"&ɟlL*jף34IFsu8Oܤ}ڧI/5܅f ҿ4׭d\ 2ғ -Xd0F|a(9~vâ|?Sa] Ә/da>u‰۠"DnJkGt2)&u}g*u³O vS =~af -f8$)|X!H.4p-] $,&Q]WV1ϺX]r@-!_I9%Rwzh+E;`e'"0>ił3iH'pMp}_e^ 8>+_9-a4+rG}\]7W Cl® XX ϠJFU!NXc8Bz_9q#(F9խ܇솸GJ@WEpy&kHgX4"|y0 ,(l]fB׷35>@Y*oAoGE; 32<zmeH\~yV$ɊIsq;;" i'P3Ks6"Uw܁m,X^5U]) ޷Ḧ́gW3MĬƦ udS||X[%SkRFX 娢sO VcS½]Ԓl&?WoZ2r$kX2)l(=,EyυO9Ӹ[5Cðk=gfBrƧP̊=`S (F8U>r9˧J/ b^Țʘ& 邩iVdpNo. z b]J|]6O;-s:rsUO?c_KF ѧ2t !t+kJ}͸W_x :6;U2!1gqM%U6W,5 o7N-uɦ0Y1MѱkؽÞHvJzn, <2c{W;MR@!dB*VmBb;A awEGSW٥qekdD2>D63O a Ou)HO7Kqw:^ J l‡b_qe@j(yaEnԘM6_8H6XsB);kȯ [PZO-7FBak;ژ c-uR<X&lgZadfGXP B\VHOC_hekE:Tψg9So|ok_q霻FizݕOc KNRW/GMTߌX~i?PYA7Mg̓1{0QsE;gj/q~*2rJ#Cs6{Qt@oh۹dPG>MxyLetTMŌskE=ďMMF'YG?)~F!ܮ}3 i`XgUʕpн]EJɷ$_J O `  !'hBoC`rd{^3baN7߰x@Vl(XP6/iҭiҽxXw O\'8$ߢvd'ƪ:\9}vVt{ }*n"HT[[^?;{orb9lN?'L4DXZ߁L៓D!^b 0ЇaaA!e@s?D,kgָ344F{`FQ+6up U!w,- ,@*&4k="Ē 9Bk&mzmCYl5nkNfAtr]dxRt̆$|dt5rpIg݁#>M8igcoo*dw1.¿VĺCM~<8HZ t3f B/MvNN}z&:E0E[epr|v^׫$Jغ R8*Bmo!{'5&'8-@( c3>SuC"il;BO/Z4hfXn۾D-ğ8WAa6H.QCώ}_#9PJ( 1>ts/ɘ$0~t&aƚ*EFNܥ؞F&u4oX@(@PtN} DhNclC-ZYo1si ª’.gfmIcZ&L*$e3X:<>Ϲ UYu-G v @C` {Փ3vGKT"'o$'(N3$.nH8]"8ј&l I$A/jlj 횯\.uZd~QVzԆ?)D-eAwIbn!k&O 넞f u $ ˽)(ݑtEBn }q{w|`#ryEOB~i ˺uӌ#OdGooϼ"sHk58ٜ;DjKh;J5S2r]@室4ָIt.jSa@Pڷzw<3J6YFY{݃fϪ0Pb v9341 D2>pνgFs5L 'YpOziErE[/GIck |뛋xӡ&}].r-X'f躘#" J nCҮX۱Mn0BAݯVrJU}4RVEJ0!8  椆%f*ܣ| Do. QkjZ F}DYO se ;8.CZ/_Ez 'vQj. nV% :9:Օ,4Ղ& &]nǬvY»eI}S|( Ӯc)amq?JrK+YqtOJECi3 yf <(@Os|UqF"$ܭ %Eq.zcu.[19􃇣:`;mEw$8| Zz;st[|k|y۴ Q`&,ls@}@T2 rlpJvb}GՏRPC57AKaO@(As{/_:ǁzb;XnF[DwqBsh&]6md.IH}-ڰ.cCVʊ` XT s=dCr*WlpCL /EOpɿGKB0뚋wT,k[:؂RB׼S+SgqÅTv'N8aHѮ-F[[D?#c^7 `_BʆkJyp$0r\C77Ʀ˯A 6H%[Z JPݓKhSKlDv 5Le g=+:M\+ GE_󳕙 Ͽ4J>/b:9MNւZ=xUItmM|ɯ蹊x8ݮe? #Q ES+ɰ aвL|V@52WY;Gݨ¢­[9of@|r/֏ gz4 2k1hKe~_[7%h5kw@*{o4͟?S (y("?" hnI7,0\EdfN6$HH{В>(<:(Hya UýIUBR~ ]!=-0L7/=Fdᆇn&^&!y},7.ZnY"zV=$܆!},"uRPjuufkd]"c~ŻDrfcj:[t)ȹ;`_iyލ% " ,WQ؊ DT~i6b -=򾤣xed7 mHP.jZj:Nf_%ҡ/,XTTNY.jnT_wA- UOZ0@ܒ#x#۱ +UF?:{J&c-"Zz%j 1N5Gf?,Hcp(otbI̚宷ϷOX$QJdkf;s(&)5Uq*3:n,Ey&4Ϋ=^`:tiK' obo${C xt z6 [zȴgt[g gg>Ђ=\ަ'G]J 1 dیvGGQs5nB)9N*S~/35-ϊ!ΠpT(YXlfo3ErhW,Q,˶Y^]25N)éWV}|k+.~̧ 4bpF3<Y|Dd!a ]O¸ 6!?gfMg%0x;C5 Ù&BCyP_H삘nOi/ ך};iX@<%3up(!%N̷5\Yp16_&kTO|gp*`&mѷlv>Ơ;wO7ެ]'l, : oP֬,P?r\IU#2A8EKjá]gcBnyRHU#ub.vrcH pWP=ҽ8e)PE5Hífvvm$|D]t-:ĠtAM/fNxNꛟdzD!- C磘#ع@QE*_r 7_:_J]swE i`QC<UL;lu:״yR|Ӄ" 8=l#Q |5ϚJlBn %""ch;2rX\z]DA&S`L1>q Ydgu~@PJ$hX#FaAIs!%" oga%;Z> :(3m0^A뻮17f ]W&5]|}CBh'RB"A!nЬ B#bVؘS?aFdr|4ZCy(#%"+ !jg@՘d?hRFri3[tBX q-Iʏ.;eWA:Y[:Zs= H[(Ʃ>"CfF*3ͨJ {L^<ٚhk&'Qm/mgf1`*^j5u4Ш_ܱ"Ah|N&}|1 u(jƵysO @\ cb$">>-0u{Fk-Y+[g'dOhS n=V".I:EӞ:N[ܘnR.wj ?q K}^Y?7<(<"̜ze Bݿ3+Q%O2X.7⽣Cj6r/?|#zbo)eTRlEM~>^>X7j; fZK="ρ ?Jf5UӵðgbOp2n'YFL43Iy&/)!ݭY\W釤-睨{MYcM4v#8ҫjs }Ѿ8Z  $9X0q3Ѻv̘;l9cf=*؉3odELPIwZB 4/~e7l9yN3LF>|] -0K aF[hr DΧ}JZ ?m}Νqpĺt|~ekBh$2aȌ~A4 !;qB}.ThGʅSɞuCR(j 8f\z`hY_qGYPZ~KnÇnߐPֽ?2`sf[+nF>ҝZ8]I! %,pWĕg6Af_1O]fAɝZ&<ģ~mH0Mh6d '!χM25u%#IVkȂ~6 ^x=~iU޸QǀakDmg!`?MxZRkտ>GE..즁cvЎ#edօhPX92 d\ɄdkO8 #>{Ol[Q;̧|a|M6# |Jrky3ki Ea m݄waP 2\l][]ϭW#[)dprYE PnK<& ͳLs)$W5֣P A6=vMQ `@>T6_zK_u C0KnXi!w ߃ގ!?JuܖF yc ʩǖS/=tt;@`|]#,?hH tNXoڇõZOs ^>ێcS/xCuՈXB0f9EL3q fTH*TjeeQI/6K^ N/9zw=:Ǜ=}98Q9Nh<Lp7@Kv]D=ppnz/ h:oj۹ZY>$66ir?maRָ6!;&a-EnDM'zR҆j2tgG``/^9{h"RO$Y96k YXC^mhU9iCQd".LЛIL4uUa(i-7\&& 5&RJcLЛ!||]bB 6댍e&Nˮ<z-qy.<NQnH|;iX {q]dF" ;d; ƚ*a/tf{|*i%L .8Z͠ί^g~芪T4Tjߠr'l uJ?kMqM83ZwŨC#4n/^wJE:i.+K,)Z} ֏s JC orUՉaVw*of6tϮu㗺$i [MWњ\h٫>3| 3f[_&FgU7Y`fiS U5~{!ޓU4m;9܍00j*[e9ذ])bK0Vئ2SB nH-ݗ2)DϷiygٷsDo `nΊABdxPoA-S]CQ J%-q0Bskf!]b IJYAw`'fs2́ԏጡl5iKPȽPצGKv qu{Zr$ 󆡊fQGKDn 3pЊh( h.ɋhG.۾`w SxMxhG(8'4hFTy"-U/oZHj,#F8 ]'Gfdbubn2?iLЋ PQҶJ!Df==,jaZvRw U 8ܢ{ Đ\Xf>Vs7G|I I4[鲷8 (;<r2H(84 Iq0!8URZ6P˘rQ4[>Vd!oX [DkB-{6Dd6˻#=v4LF4%`Wy|a_,*pŨs>l/B9/[3+z1W}A%wDq~-"Tܪ\S"E׼Wu.kn^>éEƼiUg;|ʮtFYCnkS!ٝئ#-ֺ_R.>k ,n1./%CpYNp|'lp|3TOWt#H !+ݽӠ9o5)m3DKQWȏKl_l-ƋZƶ'&]A70`Oc桲桱X!+ᰑ!K&V9~r\ 0&7 aq~2_0^: z$EE]G:w,\P.5f y0 _-_F M 1X/,F{WF tfQ(&2|3NA{wzt{6 ^qQ|Nm~@WSe26 ^_^JdD"q5\ rC 88ہ?BuY~*[դPs6D6Wb`mA7fL:2f0{ 9wXbai8(\Nr J᩻h}1ҼJ7`c EԃzLzBeWKgxtV<X1xMn QfZ+& !+/!  L}X p@Asjd\a|9s-M5%aMJ,c'd8V Od=KWRoT&W\%& Ѧ"1-d!_[n25 k[& R cA84izm2׼MTR  ct<"Xxns*k궶Jb]㜎{JBJѧI\{ ˿A-p$I3֮ePZΑ ݚƒ^0DomUW מ+ ´ +yg׿~o1FyZZ4zN=ɗ[;'9>EC$(3H-. j_ Sꈣe͌6J1`4ҍc1?Ds m6vw=i,@h~:uzlA,*.?b%'YoQØ1󎙝%T"y=O\ЌMV?؀è.'I4yQR%?dђo[^~" _^/gM$0Saq(*bL3T%5+o_Ž1h 8n ɾCF 7#ṈWBM 665jZΐpj?4s~gX\\<1$B#eW::LRy"p{Ȏ6{}r~[yEol* ?lii$zVy%y 1 ]S{ɱ'w̕H"r(C*3GSRy DZOn<~}FU,cG)? ]ˠLzsg7TM3ʀ`>ؘJtHoy` ;2GlV5(ۦ{pz^l w{O%)W]Wr`:n # x1I-q(]CZnA H5BNBsb8woT P`T/ TB7O`/7+IJ]‹̃zol{${4è4mri}NbJ4/o6 l) kKʨ{]z~o_|9žw"AxB- QAw^WwTV0/~B; Ã{!R@&Svo,)cĦ$؁_Bg~:IKClRP \I2oq8N;0=@r>1%}ĠoÞdNW؋|؅?EaLh!lκxjm_P='G| ᗡ.uvמB _!T$9c<.[wpm< K[ߛ.}h{;\ ilH72ҾyMlɀ+&mb\h!P3rԗQ_7/VUGqϦB<+6`촺{gҤwlV Awε'&eȇ˨em&/oN`U^(ρ#ߝ}ҿ@:fLZˣ1&'Қ˄N9K@ CUGsz̘}MphڮU[ ~x%7h} ͇Y1I@*Og~"/]AW%;Ӛ,9O!?nO 0k+Jp,)`\N\g%zC5f(?U5/y6jytXzOۀm󪵠rS1%1e-@#R 0o0=g4Iʲ֙PF[(ڙuY_[oz;9޳`Y|Q!8&tob\U05v1!Na{ޡ>b3?p\E xA+ ^,;2eblHRy~dn] Mvͼt m8iHĒV3BXE>҅ iO\;vvty,ü !x Ǝ:(!\efahudk. 0L89 q.NPڼ_^ls~LG!?dUӔ!FZe>߫F׋L $q[`-yM<=pq鹘GDnZR!cx!&yhRU˩"ﯺh _UJzӹ0tVU%?::^{mX6@zj8Fr7;.1{2(Mm0Mͧͨvuv" >4і\pM',o ^D/KG!]luBhxTL<̈T(J-e;#Ry-^.ٳ'y+"+^OL.c.>2zb>vq3>6'YVqi&~'p ?LaT_צd~v.I*fEk8]2\lny6`.c18t.4}v7tt&n @o*C b s2aJ%eJՒs*@G}rPvjO'@RMouz5grcߥU_zybUa3m+I X@=ƶ3ԉc+B{u̔\Rg2>-Dֆĸlx&8YupS3>CWϥ| crnQaH?PݖW>vp'VT'Fw. X JVRZ%^b5$ilAT_a^f~F}9 *:ϙ(ϒB:`X6$l!ي fH؊YŽ3QuFc/=ܺ,Y}L<lE!ͪ4߻XNB؊LeeI3ngY^/ @Α=%aum[MjO;yBo͸n$:"ت}qD ,1WaƮM0ØW)paQJm3(oaJ2Y#s>Y 1羌,N",qJP0u4?(C:#Ts:zʋd?C}㥚qA׾:kW?F>Tu=fE6D"( v; 8=\tiRgOBm,j33{b#P"`q`cϩaAAf%Ez@KWWP2R{W¼F1G8 ,M:}sV|!|yec&7y Wt.#v/Nl56a\, Ww 8 `kqTR4rJdO*QdFEk;\Kf{pQêwA*Ք\Rx)[W&paQZD?K\vNv 4q eX7 H| h2Y@O_E4G}h&,Yčk9󌗘w4 qs$5G4 ^ _x;HsB;1/!~ GCӤ*Jx h#,tEo]{܎Hh{6M+?W.laMH_L:g*d+hQۦ}t NvfP#Ĩåǫ2ibr"'V?>gmt42\)))`\Nݡ_}᤻q}l$P/sMjڇ-L_3PDGwߞyԸH(@j:޵b埀Ywg2,gM C`͔";Oj54( ! #*^&R㉚5ӑOw`۶YІʷWpt䈒OӿT&$GvmFn{G~ŜI "q%UP Off#?CyuC߫HRilZڋtED&{nzz\>kk`zL: f90$d$QUGTyrhttVR|:]:cFkB7A Bv0 D]_y?αY@O:W_fVjД(zhVp=k,?Գ7@ h?>ƦykyM#~:T{ _n7VTU4V`JTH3 BXV YoVtn$x汲;ˇYݻ,j/ XWdVU'FD1lPre7E" +![['Fn> eΪz _/Â.BB7KMӍ~9SUiG!$KIDI [QBp^KF$eʄ\VlFt?"j%STѷ9ڲwD[e} Pc>x_'qc71)uLwer&[~n6[ۧfqMХw$ˆ%Hs@¦0ش&ϐ<;Iؼw0|Ѡ!/Rк4z!G@56Q{+wOgWޠ({YmnMyD8S("DVtnw<ܔ~~mrpȿk/jYEEO=3} R؋[%>Оq|"\,׈]Bs%9lV[1eB!EmY k/jeCtכ~8cu<`ʼnPm$kTڪBϬOf`*N27B*CLbpg7YY&Bt&+*&/eͰ ( 7{ j_nI[flf5׸Ģ . YZ