nscd-2.31-150300.9.12.1 >  A adZp9|`rw/GS00MGW*퀖-,P ねp[ޜG"!x7a1 ț<+aB8QOwS0 $n{lj-lÞQ[[?',3}?&SK0x^_ۖseţTP7!%t'[LbF "#}>B} ui/usnwf:ΟP/z':\{0ş&DI@@zC}BGndݧ Z%TE /C8|d,[D>pI0? d   6  KQW$ F C    H W tFh#h#Z#(89: =>?@ BFG0HlIӨXӸYZ[\]L^ b6cd_edfgliu|vָ wx4ypzCnscd2.31150300.9.12.1Name Service Caching DaemonNscd caches name service lookups and can dramatically improve performance with NIS, NIS+, and LDAP.aas390zl33 SUSE Linux Enterprise 15SUSE LLC GPL-2.0-or-laterhttps://www.suse.com/System/Daemonshttp://www.gnu.org/software/libc/libc.htmllinuxs390xgetent group nscd >/dev/null || /usr/sbin/groupadd -r nscd getent passwd nscd >/dev/null || /usr/sbin/useradd -r -g nscd -c "User for nscd" -s /sbin/nologin -d /run/nscd nscd if [ -x /usr/bin/systemctl ]; then test -n "$FIRST_ARG" || FIRST_ARG="$1" [ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || : for service in nscd.service ; do sysv_service=${service%.*} if [ ! -e /usr/lib/systemd/system/$service ] && [ ! -e /etc/init.d/$sysv_service ]; then mkdir -p /run/systemd/rpm/needs-preset touch /run/systemd/rpm/needs-preset/$service elif [ -e /etc/init.d/$sysv_service ] && [ ! -e /var/lib/systemd/migrated/$sysv_service ]; then /usr/sbin/systemd-sysv-convert --save $sysv_service || : mkdir -p /run/systemd/rpm/needs-sysv-convert touch /run/systemd/rpm/needs-sysv-convert/$service fi done fi if [ -x /usr/bin/systemctl ]; then test -n "$FIRST_ARG" || FIRST_ARG="$1" [ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || : if [ "$YAST_IS_RUNNING" != "instsys" ]; then /usr/bin/systemctl daemon-reload || : fi for service in nscd.service ; do sysv_service=${service%.*} if [ -e /run/systemd/rpm/needs-preset/$service ]; then /usr/bin/systemctl preset $service || : rm "/run/systemd/rpm/needs-preset/$service" || : elif [ -e /run/systemd/rpm/needs-sysv-convert/$service ]; then /usr/sbin/systemd-sysv-convert --apply $sysv_service || : rm "/run/systemd/rpm/needs-sysv-convert/$service" || : touch /var/lib/systemd/migrated/$sysv_service || : fi done fi [ -z "${TRANSACTIONAL_UPDATE}" -a -x /usr/bin/systemd-tmpfiles ] && /usr/bin/systemd-tmpfiles --create /usr/lib/tmpfiles.d/nscd.conf || : # Previously we had nscd.socket, remove it test -x /usr/bin/systemctl && /usr/bin/systemctl stop nscd.socket 2>/dev/null || : test -x /usr/bin/systemctl && /usr/bin/systemctl disable nscd.socket 2>/dev/null || : # Hard removal in case the above did not work rm -f /etc/systemd/system/sockets.target.wants/nscd.socket exit 0 test -n "$FIRST_ARG" || FIRST_ARG="$1" if [ "$FIRST_ARG" -eq 0 -a -x /usr/bin/systemctl ]; then # Package removal, not upgrade /usr/bin/systemctl --no-reload disable nscd.service || : ( test "$YAST_IS_RUNNING" = instsys && exit 0 test -f /etc/sysconfig/services -a \ -z "$DISABLE_STOP_ON_REMOVAL" && . /etc/sysconfig/services test "$DISABLE_STOP_ON_REMOVAL" = yes -o \ "$DISABLE_STOP_ON_REMOVAL" = 1 && exit 0 /usr/bin/systemctl stop nscd.service ) || : fi test -n "$FIRST_ARG" || FIRST_ARG="$1" if [ $1 -eq 0 ]; then # Package removal for service in nscd.service ; do sysv_service="${service%.*}" rm "/var/lib/systemd/migrated/$sysv_service" || : done fi if [ -x /usr/bin/systemctl ]; then /usr/bin/systemctl daemon-reload || : fi if [ "$FIRST_ARG" -ge 1 ]; then # Package upgrade, not uninstall if [ -x /usr/bin/systemctl ]; then ( test "$YAST_IS_RUNNING" = instsys && exit 0 test -f /etc/sysconfig/services -a \ -z "$DISABLE_RESTART_ON_UPDATE" && . /etc/sysconfig/services test "$DISABLE_RESTART_ON_UPDATE" = yes -o \ "$DISABLE_RESTART_ON_UPDATE" = 1 && exit 0 /usr/bin/systemctl try-restart nscd.service ) || : fi fi exit 0 ` A큤A큤A큀a`]a`]a`a`a`^a`^a`^a`da`]a`]a`a`a`a`a`e2cdfafd373d24fab07018d0e95dd49510ea6c992b7be2b0611ab23bbc2750b579fe74962fbce2fa9b2a4b92f693b2fd42cbc2ed331fae268de7104879a72df879c9cec5dd2414dcb76d11e75903aa6fd9b7785c897cb9f853edcb140a71b77952e19ba13bafc325fd4a76448548553e5a6bf2bcbf706367dbc7e14d651eb2ac/sbin/service@YYYYYYYrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootglibc-2.31-150300.9.12.1.src.rpmconfig(nscd)glibc:/usr/sbin/nscdnscdnscd(s390-64) @@@@@@@@@@@@@@@@@@@@    /bin/sh/bin/sh/bin/sh/bin/shconfig(nscd)glibclibaudit.so.1()(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.10)(64bit)libc.so.6(GLIBC_2.17)(64bit)libc.so.6(GLIBC_2.2)(64bit)libc.so.6(GLIBC_2.2.2)(64bit)libc.so.6(GLIBC_2.2.4)(64bit)libc.so.6(GLIBC_2.3)(64bit)libc.so.6(GLIBC_2.3.2)(64bit)libc.so.6(GLIBC_2.3.4)(64bit)libc.so.6(GLIBC_2.4)(64bit)libc.so.6(GLIBC_2.7)(64bit)libc.so.6(GLIBC_2.8)(64bit)libc.so.6(GLIBC_2.9)(64bit)libcap.so.2()(64bit)libpthread.so.0()(64bit)libpthread.so.0(GLIBC_2.2)(64bit)libpthread.so.0(GLIBC_2.3.2)(64bit)libpthread.so.0(GLIBC_2.3.3)(64bit)libselinux.so.1()(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)shadowsystemdsystemdsystemdsystemd2.31-150300.9.12.12.313.0.4-14.6.0-14.0-15.2-14.14.3aa@aZ@a@a@a0`ݮ@`a@`H`H`?z@`@_T__/@_O@^)@^@^{G^g@^`^U @^&^]@]7@]|@]@]:\@\\]@\@\|\~d[[ͻ[$@[t[r@[qr[^[!@[@Z@ZJ@Z2@ZH@ZZ Z}@ZxG@Zp^@Zp^@Ze@ZKt@Z1@Z/Z@Y@Y@YYܶ@YdY@Y@YY@Y@Y@YW@Y@YJYYw2Yp@YJ_YA%@Y.@Y, @Y, @Y$$@Y"XۡX@XWw@W@W@Ws@Wk@Wj}WYZ@WL+@W3W0{WW V@V@V޾Vm@VIV@VŲ@V`VVV@VLh@V.V$@VVZV VUYU|@UAUȒ@UU@UU4@UUv@U%@U/@U:T@TPTgTܕTء@TO@schwab@suse.deschwab@suse.deschwab@suse.degiuliano.belinassi@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.derguenther@suse.comrguenther@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.dematz@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.dematz@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.dematz@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.dejslaby@suse.comschwab@suse.deschwab@suse.deschwab@suse.deidonmez@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.denormand@linux.vnet.ibm.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.demeissner@suse.comschwab@suse.deschwab@suse.demgorman@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.de- getcwd-erange.patch: getcwd: Set errno to ERANGE for size == 1 (CVE-2021-3999, bsc#1194640, BZ #28769)- 0001-powerpc-Optimized-strcpy-for-POWER9.patch, 0002-powerpc-Optimized-stpcpy-for-POWER9.patch, 0003-powerpc-Optimized-rawmemchr-for-POWER9.patch, 0004-powerpc64le-add-optimized-strlen-for-P9.patch, 0005-powerpc-fix-ifunc-implementation-list-for-POWER9-str.patch, 0006-powerpc-Add-optimized-strncpy-for-POWER9.patch, 0007-powerpc-Add-optimized-stpncpy-for-POWER9.patch, 0008-powerpc-Add-optimized-ilogb-for-POWER9.patch, 0009-powerpc-Add-optimized-llogb-for-POWER9.patch, 0010-powerpc-Add-optimized-strlen-for-POWER10.patch, 0011-powerpc64le-Optimized-memmove-for-POWER10.patch, 0012-powerpc64le-Optimize-memcpy-for-POWER10.patch, 0013-powerpc64le-Optimize-memset-for-POWER10.patch, 0014-powerpc64le-Fix-ifunc-selection-for-memset-memmove-b.patch, 0015-powerpc-Add-optimized-rawmemchr-for-POWER10.patch: ppc64le ifunc improvements (bsc#1194785, jsc#SLE-18195)- clnt-create-unix-overflow.patch: Buffer overflow in sunrpc clnt_create for "unix" (CVE-2022-23219, bsc#1194768, BZ #22542) - svcunix-create-overflow.patch: Buffer overflow in sunrpc svcunix_create (CVE-2022-23218, bsc#1194770, BZ #28768)- Add support for livepatches (jsc#SLE-20049). - Enable livepatching on x86_64. - Generate ipa-clones tarball artifact when livepatching is enabled.- 0001-s390x-Align-child-stack-while-clone.-BZ-27968.patch, 0002-S390-Optimize-__memcpy_z196.patch, 0003-S390-Optimize-__memset_z196.patch, 0004-S390-Sync-HWCAP-names-with-kernel-by-adding-aliases-.patch, 0005-S390-Add-new-hwcap-values.patch, 0006-S390-Add-PCI_MIO-and-SIE-HWCAPs.patch: [15sp4 FEAT] GNU2007 - GLIBC: Support for new IBM Z Hardware (bsc#1191592, jsc#IBM-869)- mq-notify-use-after-free.patch: Use __pthread_attr_copy in mq_notify (CVE-2021-33574, bsc#1186489, BZ #27896)- wordexp-param-overflow.patch: wordexp: handle overflow in positional parameter number (CVE-2021-35942, bsc#1187911, BZ #28011)- s390-memmove-ifunc-selector-arch13.patch: S390: Also check vector support in memmove ifunc-selector (bsc#1184035, BZ #27511)- Update glibc-2.31-HTM-vzeroupper.diff with a AVX-SSE transition fix.- Add glibc-2.31-HTM-vzeroupper.diff to avoid VZEROUPPER in the AVX2 accelerated string routines which cause HTM transaction aborts. Instead use EVEX or SSE. (bsc#1181403)- nscd-netgroupcache.patch: nscd: Fix double free in netgroupcache (CVE-2021-27645, bsc#1182733, BZ #27462)- gconv-assertion-iso-2022-jp.patch: gconv: Fix assertion failure in ISO-2022-JP-3 module (CVE-2021-3326, bsc#1181505, BZ #27256)- sysvipc-sem-stat-any.patch: sysvipc: Fix SEM_STAT_ANY kernel argument pass (bsc#1180557, BZ #26637)- aarch64-getauxval.patch: aarch64: Accept PLT calls to __getauxval within libc.so (bsc#1167939) - iconv-redundant-shift.patch: iconv: Accept redundant shift sequences in IBM1364 (CVE-2020-27618, bsc#1178386, BZ #26224) - iconv-ucs4-loop-bounds.patch: iconv: Fix incorrect UCS4 inner loop bounds (CVE-2020-29562, bsc#1179694, BZ #26923) - printf-long-double-non-normal.patch: x86: Harden printf against non-normal long double values (CVE-2020-29573, bsc#1179721, BZ #26649) - get-nprocs-cpu-online-parsing.patch: Fix parsing of /sys/devices/system/cpu/online (bsc#1180038, BZ #25859)- power10-support.patch: Add support for POWER10 (jsc#SLE-13520) - iconv-option-parsing.patch: Rewrite iconv option parsing (CVE-2016-10228, bsc#1027496, BZ #19519)- Update to glibc 2.31 - glibc-2.14-crypt.diff, crypt_blowfish-const.patch, crypt_blowfish-1.2-sha.diff, crypt_blowfish-gensalt.patch, crypt_blowfish-1.2-hack_around_arm.diff, glibc-nodate.patch, powerpc-elision-enable-envvar.patch, s390-elision-enable-envvar.patch, crt-nocompress-debug-sections.patch, resolv-context-leak.patch, dl-runtime-resolve-opt-avx512f.patch, libpthread-compat-wrappers.patch, math-c++-compat.patch, remove-nss-nis-compat.patch, eh-frame-zero-terminator.patch, ld-so-hwcap-x86-64.patch, assert-pedantic.patch, getaddrinfo-errno.patch, resolv-conf-oom.patch, dynarray-allocation.patch, nearbyint-inexact.patch, nss-compat.patch, nscd-libnsl.patch, malloc-tcache-leak.patch, falkor-memcpy-memmove.patch, aarch64-cpu-features.patch, nss-files-large-buffers.patch, sysconf-uio-maxiov.patch, glob-tilde-overflow.patch, dl-runtime-resolve-xsave.patch, spawni-assert.patch, x86-64-dl-platform.patch, glob64-s390.patch, tst-tlsopt-powerpc.patch, powerpc-hwcap-bits.patch, malloc-tcache-check-overflow.patch, dl-init-paths-overflow.patch, fillin-rpath-empty-tokens.patch, getcwd-absolute.patch, memalign-overflow.patch, stack-guard-size-accounting.patch, libgcc-rtld-now.patch, res-send-enomem.patch, glibc-fix-avx512-mempcpy.patch, i386-memmove-sse2-unaligned.patch, realpath-ssize-max-overflow.patch, localtime-2039.patch, math-remove-slow-path.patch, aarch64-hwcap-atomics.patch, glibc-fix-aarch64-build.diff, absolute-symbols.patch, x86-haswell-string-flags.patch, pthread-cond-broadcast-waiters-after-spinning.patch, mman-map-sync.patch, mman-linux-map-shared-validate.patch, nptl-setxid-error.patch, pthread-mutex-trylock-barrier.patch, getaddrinfo-parse-ipv4-address.patch, japanese-era-name-may-2019.patch, force-elision-race.patch, regex-read-overrun.patch, regex-parse-reg-exp.patch, 0001-S390-Add-configure-check-to-detect-z10-as-mininum-ar.patch, 0002-S390-Use-hwcap-instead-of-dl_hwcap-in-ifunc-resolver.patch, 0003-S390-Unify-31-64bit-memcpy.patch, 0004-S390-Refactor-memcpy-mempcpy-ifunc-handling.patch, 0005-S390-Remove-s390-specific-implementation-of-bcopy.patch, 0006-S390-Use-memcpy-for-forward-cases-in-memmove.patch, 0007-S390-Add-configure-check-to-detect-z13-as-mininum-ar.patch, 0008-S390-Add-z13-memmove-ifunc-variant.patch, 0009-S390-Add-z13-strstr-ifunc-variant.patch, 0010-S390-Add-z13-memmem-ifunc-variant.patch, 0011-S390-Cleanup-ifunc-resolve.h.patch, 0012-S390-Mark-vx-and-vxe-as-important-hwcap.patch, 0013-S390-Add-new-hwcap-values-for-new-cpu-architecture-a.patch, 0014-S390-Add-configure-check-to-detect-support-for-arch1.patch, 0015-S390-Add-arch13-memmove-ifunc-variant.patch, 0016-S390-Add-arch13-strstr-ifunc-variant.patch, 0017-S390-Add-arch13-memmem-ifunc-variant.patch, prefer-map-32bit-exec.patch, s390-strstr-page-boundary.patch, ppc-tle-htm-nosc.patch, posix-Add-internal-symbols-for-posix_spawn-interface.patch, glibc-2.29-posix-Use-posix_spawn-on-popen.patch, backtrace-powerpc.patch, pthread-rwlock-pwn.patch, manual-memory-protection.patch, ldbl-96-rem-pio2l.patch, dl-sort-maps.patch, dlopen-filter-object.patch, glob-use-after-free.patch, nptl-setxid-race.patch, nscd-senfile.patch, ldd-system-interp.patch, abort-no-flush.patch, fnmatch-collating-elements.patch, nss-files-long-lines-2.patch, iconv-reset-input-buffer.patch, nscd-prune.patch, syslog-locking.patch: Removed. - long-double-alias.patch, glibc-nsswitch-usr.diff, euc-kr-overrun.patch, riscv-syscall-clobber.patch, nscd-gc-cycle.patch: Added.- nscd-senfile.patch: Fix concurrent changes on nscd aware files (bsc#1171878, BZ #23178) - nscd-prune.patch: nscd: bump GC cycle during cache pruning (bsc#1171878, BZ #26130) - syslog-locking.patch: Correct locking and cancellation cleanup in syslog functions (bsc#1172085, BZ #26100)- nptl-setxid-race.patch: nptl: wait for pending setxid request also in detached thread (bsc#1162930, BZ #25942)- glob-use-after-free.patch: Fix use-after-free in glob when expanding ~user (CVE-2020-1752, bsc#1167631, BZ #25414)- dl-sort-maps.patch, dlopen-filter-object.patch: Allow dlopen of filter object to work (bsc#1166106, BZ #16272)- ldbl-96-rem-pio2l.patch: Avoid ldbl-96 stack corruption from range reduction of pseudo-zero (CVE-2020-10029, bsc#1165784, BZ #25487)- pthread-rwlock-pwn.patch: Fix rwlock stall with PREFER_WRITER_NONRECURSIVE_NP (bsc#1164505, BZ #23861) - manual-memory-protection.patch: manual: Document mprotect and introduce section on memory protection (bsc#1163184)- backtrace-powerpc.patch: Fix array overflow in backtrace on PowerPC (CVE-2020-1751, bsc#1158996, BZ #25423)- posix-Add-internal-symbols-for-posix_spawn-interface.patch, glibc-2.29-posix-Use-posix_spawn-on-popen.patch: Use posix_spawn on popen (bsc#1149332, BZ #22834)- ppc-tle-htm-nosc.patch: powerpc: Fix syscalls during early process initialization (SLE-8348, BZ #22685)- s390-strstr-page-boundary.patch: S390: Fix handling of needles crossing a page in strstr z15 ifunc-variant (bsc#1157893, BZ #25226)- prefer-map-32bit-exec.patch: rtld: Check __libc_enable_secure before honoring LD_PREFER_MAP_32BIT_EXEC (CVE-2019-19126, bsc#1157292, BZ [#25204])- GNU1815 - Hardware support in toolchain (bsc#1151582) 0001-S390-Add-configure-check-to-detect-z10-as-mininum-ar.patch 0002-S390-Use-hwcap-instead-of-dl_hwcap-in-ifunc-resolver.patch 0003-S390-Unify-31-64bit-memcpy.patch 0004-S390-Refactor-memcpy-mempcpy-ifunc-handling.patch 0005-S390-Remove-s390-specific-implementation-of-bcopy.patch 0006-S390-Use-memcpy-for-forward-cases-in-memmove.patch 0007-S390-Add-configure-check-to-detect-z13-as-mininum-ar.patch 0008-S390-Add-z13-memmove-ifunc-variant.patch 0009-S390-Add-z13-strstr-ifunc-variant.patch 0010-S390-Add-z13-memmem-ifunc-variant.patch 0011-S390-Cleanup-ifunc-resolve.h.patch 0012-S390-Mark-vx-and-vxe-as-important-hwcap.patch 0013-S390-Add-new-hwcap-values-for-new-cpu-architecture-a.patch 0014-S390-Add-configure-check-to-detect-support-for-arch1.patch 0015-S390-Add-arch13-memmove-ifunc-variant.patch 0016-S390-Add-arch13-strstr-ifunc-variant.patch 0017-S390-Add-arch13-memmem-ifunc-variant.patch- regex-parse-reg-exp.patch: ERE '0|()0|\1|0' causes regexec undefined behavior (CVE-2009-5155, bsc#1127223, BZ #18986) - regex-read-overrun.patch: regex: fix read overrun (CVE-2019-9169, bsc#1127308, BZ #24114)- crt-nocompress-debug-sections.patch: Don't compress debug sections in crt*.o files (bsc#1123710)- ldconfig-concurrency.patch: Avoid concurrency problem in ldconfig (bsc#1117993, BZ #23973)- force-elision-race.patch: Fix race in pthread_mutex_lock while promoting to PTHREAD_MUTEX_ELISION_NP (bsc#1131330, BZ #23275)- japanese-era-name-may-2019.patch: ja_JP locale: Add entry for the new Japanese era (bsc#1100396, BZ #22964)- pthread-mutex-trylock-barrier.patch: pthread_mutex_trylock does not use the correct order of instructions while maintaining the robust mutex list due to missing compiler barriers (bsc#1130045, BZ #24180) - getaddrinfo-parse-ipv4-address.patch: getaddrinfo: Fully parse IPv4 address strings (CVE-2016-10739, bsc#1122729, BZ #20018)- mman-map-sync.patch: Add MAP_SYNC from Linux 4.15 (bsc#1126590) - mman-linux-map-shared-validate.patch: Add MAP_SHARED_VALIDATE from Linux 4.15 (bsc#1126590) - nptl-setxid-error.patch: nptl: Preserve error in setxid thread broadcast in coredumps (bsc#1063675, BZ #22153)- x86-haswell-string-flags.patch: Fix Haswell CPU string flags (bsc#1114984, BZ #23709) - pthread-cond-broadcast-waiters-after-spinning.patch: Fix waiters-after-spinning case (bsc#1114993, BZ #23538)- absolute-symbols.patch: Don't relocate absolute symbols (bsc#1112570, BZ [#19818])- glibc-fix-aarch64-build.diff: Fix build on aarch64 with binutils newer than 2.30.- Add glibc-locale-base subpackage containing only C, C.UTF-8 and en_US.UTF-8 locales (fate#326551)- aarch64-hwcap-atomics.patch: aarch64: add HWCAP_ATOMICS to HWCAP_IMPORTANT (fate#325962)- math-remove-slow-path.patch: Remove slow paths from math routines (fate#325815, fate#325879, fate#325880, fate#325881, fate#325882)- localtime-2039.patch: Fix year 2039 bug for localtime with 64-bit time_t (bsc#1102526, BZ #22639)- i386-memmove-sse2-unaligned.patch: Fix SSE2 memmove issue when crossing 2GB boundary (CVE-2017-18269, bnc#1094150, BZ #22644) - realpath-ssize-max-overflow.patch: Fix overflow in path length computation (CVE-2018-11236, bsc#1094161, BZ #22786) - glibc-fix-avx512-mempcpy.patch: replace with upstream version- Use %license also for COPYING and COPYING.LIB (bsc#1082318)- Add glibc-fix-avx512-mempcpy.patch as quick fix for mempcpy buffer overwrite in memmove-avx512-no-vzeroupper.S for Knights Landing CPUs (CVE-2018-11237, bnc#1094154, bnc#1092877, BZ #23196)- Readd nis to netgroup and automount nss config (bsc#1088860)- res-send-enomem.patch: Fix crash in resolver on memory allocation failure (bsc#1086690, BZ #23005)- Use %license (bsc#1082318)- stack-guard-size-accounting.patch: Fix stack guard size accounting (bsc#1074208, BZ #22637) - libgcc-rtld-now.patch: Open libgcc.so with RTLD_NOW during pthread_cancel (bsc#1074208, BZ #22636)- Mark source0 as nosource in non-main source rpms- Add systemtap-headers to BuildRequires. - Add --enable-systemtap to configure arguments. (fate#324969, bsc#1073636)- memalign-overflow.patch: Fix integer overflows in internal memalign and malloc functions (CVE-2018-6485, CVE-2018-6551, bsc#1079036, BZ #22343, BZ #22774)- fix-locking-in-_IO_cleanup.patch: Skip locked files during exit (bsc#1070491, BZ #15142)- Avoid duplicate source rpm- getcwd-absolute.patch: make getcwd(3) fail if it cannot obtain an absolute path (CVE-2018-1000001, bsc#1074293, BZ #22679)- dl-init-paths-overflow.patch: Count components of the expanded path in _dl_init_path (CVE-2017-1000408, CVE-2017-1000409, bsc#1071319, BZ [#22607], BZ #22627) - fillin-rpath-empty-tokens.patch: Check for empty tokens before dynamic string token expansion (CVE-2017-16997, bsc#1073231, BZ #22625)- tst-tlsopt-powerpc.patch: fix tst-tlsopt-powerpc (bcn#1070419) - powerpc-hwcap-bits.patch: Update HWCAP for powerpc (bnc#1070420) - malloc-tcache-check-overflow.patch: Fix integer overflow in malloc when tcache is enabled (CVE-2017-17426, bnc#1071479, BZ #22375)- Add _multibuild- glob64-s390.patch: no compat glob64 on s390 - noversion.tar.bz2: remove unused source- x86-64-dl-platform.patch: Don't set GLRO(dl_platform) to NULL (BZ #22299)- spawni-assert.patch: Fix improper assert in Linux posix_spawn (BZ [#22273])- math-c++-compat.patch: Add more C++ compatibility (BZ #22296) - malloc-tcache-leak.patch: Fix tcache leak after thread destruction (BZ [#22111]) - falkor-memcpy-memmove.patch: Optimized implementation of memcpy/memmove for Qualcomm Falkor - aarch64-cpu-features.patch: Fix glibc.tune.cpu tunable handling - nss-files-large-buffers.patch: Avoid large buffers with many host addresses (BZ #22078) - sysconf-uio-maxiov.patch: Fix missing definition of UIO_MAXIOV (BZ [#22321]) - glob-tilde-overflow.patch: Fix buffer overflows with GLOB_TILDE (CVE-2017-15670, CVE-2017-15671, CVE-2017-15804, bsc#1064569. bsc#1064580, bsc#1064583, BZ #22320, BZ #22325, BZ #22332) - dl-runtime-resolve-xsave.patch: Use fxsave/xsave/xsavec in _dl_runtime_resolve (BZ #21265)- nscd-libnsl.patch: Remove reference to libnsl from nscd (bsc#1062244)- Drop glibc-obsolete - glibc-2.3.90-noversion.diff: remove - reinitialize-dl_load_write_lock.patch: remove- nss-compat.patch: Move nss_compat from nis to nss subdir and install it unconditionally - nsswitch.conf: switch back to compat for passwd, group, shadow- assert-pedantic.patch: Suppress pedantic warning caused by statement expression (BZ #21242, BZ #21972) - math-c++-compat.patch: Add more C++ compatibility (BZ #22235) - getaddrinfo-errno.patch: Fix errno and h_errno handling in getaddrinfo (BZ #21915, BZ #21922) - resolv-conf-oom.patch: Fix memory handling in OOM situation during resolv.conf parsing (BZ #22095, BZ #22096) - dynarray-allocation.patch: Fix initial size of dynarray allocation and set errno on overflow error - nearbyint-inexact.patch: Avoid spurious inexact in nearbyint (BZ #22225)- math-c++-compat.patch: add more C++ compatibility (BZ #22146)- Remove rpcsvc/yppasswd.* from glibc-devel - ld-so-hwcap-x86-64.patch: add x86_64 to hwcap (bsc#1056606, BZ #22093)- eh-frame-zero-terminator.patch: Properly terminate .eh_frame (BZ #22051)- Disable obsolete libnsl and NIS support - remove-nss-nis-compat.patch: remove nis and compat from default NSS configs - nsswitch.conf: Likewise- math-c++-compat.patch: Do not use __builtin_types_compatible_p in C++ mode (BZ #21930)- Add iconvconfig to baselibs.conf (bsc#1051042)- resolv-context-leak.patch: Fix leaks of resolver contexts - dl-runtime-resolve-opt-avx512f.patch: Use _dl_runtime_resolve_opt only with AVX512F (BZ #21871) - libpthread-compat-wrappers.patch: Don't use IFUNC resolver for longjmp or system in libpthread (BZ #21041)- Update to glibc 2.26 * A per-thread cache has been added to malloc * Unicode 10.0.0 Support * Improvements to the DNS stub resolver * New function reallocarray, which resizes an allocated block (like realloc) to the product of two sizes, with a guaranteed clean failure upon integer overflow in the multiplication * New wrappers for the Linux-specific system calls preadv2 and pwritev2 * posix_spawnattr_setflags now supports the flag POSIX_SPAWN_SETSID, to create a new session ID for the spawned process * errno.h is now safe to use from C-preprocessed assembly language on all supported operating systems * On ia64, powerpc64le, x86-32, and x86-64, the math library now implements 128-bit floating point as defined by ISO/IEC/IEEE 60559:2011 (IEEE 754-2008) and ISO/IEC TS 18661-3:2015 * The synchronization that pthread_spin_unlock performs has been changed to now be equivalent to a C11 atomic store with release memory order to the spin lock's memory location * The DNS stub resolver no longer performs EDNS fallback * res_mkquery and res_nmkquery no longer support the IQUERY opcode * The _res_opcodes variable has been removed from libresolv * no longer includes inline versions of any string functions, as this kind of optimization is better done by the compiler * The nonstandard header has been removed * The obsolete header has been removed * The obsolete signal constant SIGUNUSED is no longer defined by * The obsolete function cfree has been removed * The stack_t type no longer has the name struct sigaltstack * The ucontext_t type no longer has the name struct ucontext * On S/390 GNU/Linux, the constants defined by have been synced with the kernel * Linux kernel 3.2 or later is required at runtime, on all architectures supported by that kernel * The DNS stub resolver limits the advertised UDP buffer size to 1200 bytes, to avoid fragmentation-based spoofing attacks (CVE-2017-12132) * LD_LIBRARY_PATH is now ignored in binaries running in privileged AT_SECURE mode to guard against local privilege escalation attacks (CVE-2017-1000366) * Avoid printing a backtrace from the __stack_chk_fail function since it is called on a corrupt stack and a backtrace is unreliable on a corrupt stack (CVE-2010-3192) * A use-after-free vulnerability in clntudp_call in the Sun RPC system has been fixed (CVE-2017-12133) * fate#322258, fate#321513, fate#322453 - fts-symbol-redirect.patch, glibc-resolv-reload.diff, glibc-2.2-sunrpc.diff, i686-memchr-sse.patch, ld-hwcap-mask-suid.patch, ld-library-path-suid.patch, sunrpc-use-after-free.patch, test-math-vector-sincos-aliasing.patch, tunables-bigendian.patch: Removed- Fix RPM group- s390-elision-enable-envvar.patch: enable TLE only if GLIBC_ELISION_ENABLE=yes is defined (fate#322271)- ld-hwcap-mask-suid.patch: Ignore and remove LD_HWCAP_MASK for AT_SECURE programs (BZ #21209) - ld-library-path-suid.patch: Completely ignore LD_LIBRARY_PATH for AT_SECURE=1 programs (CVE-2017-1000366, bsc#1039357, BZ #21624)- Remove glibc-cpusetsize.diff, no longer useful- fts-symbol-redirect.patch: Fix symbol redirect for fts_set (bsc#1041123, BZ #21289)- test-math-vector-sincos-aliasing.patch: Fix test-math-vector-sincos.h aliasing- add-locales.patch: renamed from glibc-2.3.locales.diff.bz2, drop en_BE locales (bsc#1039502)- Remove glibc-testsuite.patch, no longer relevant- Use multibuild feature - Remove obsolete check-build.sh - glibc.rpmlintrc: remove obsolete entries - Use %tmpfiles_create in nscd postin- i686-memchr-sse.patch: Fix i686 memchr overflow calculation (bsc#1031021, BZ #21182) - sunrpc-use-after-free.patch: Avoid use-after-free read access in clntudp_call (BZ #21115) - Build testsuite with gdb and python-pexpect to enable more tests- tunables-bigendian.patch: Fix getting tunable values on big-endian (BZ [#21109])- Update to glibc 2.25 * The feature test macro __STDC_WANT_LIB_EXT2__, from ISO/IEC TR 24731-2:2010, is supported to enable declarations of functions from that TR. * The feature test macro __STDC_WANT_IEC_60559_BFP_EXT__, from ISO/IEC TS 18661-1:2014, is supported to enable declarations of functions and macros from that TS. * The feature test macro __STDC_WANT_IEC_60559_FUNCS_EXT__, from ISO/IEC TS 18661-4:2015, is supported to enable declarations of functions and macros from that TS. * The nonstandard feature selection macros _REENTRANT and _THREAD_SAFE are now treated as compatibility synonyms for _POSIX_C_SOURCE=199506L. * The inclusion of by is deprecated. * New features from TS 18661-1:2014 are added to libm: the fesetexcept, fetestexceptflag, fegetmode and fesetmode functions, the femode_t type and the FE_DFL_MODE and FE_SNANS_ALWAYS_SIGNAL macros. * Integer width macros from TS 18661-1:2014 are added to : CHAR_WIDTH, SCHAR_WIDTH, UCHAR_WIDTH, SHRT_WIDTH, USHRT_WIDTH, INT_WIDTH, UINT_WIDTH, LONG_WIDTH, ULONG_WIDTH, LLONG_WIDTH, ULLONG_WIDTH; and to : INT8_WIDTH, UINT8_WIDTH, INT16_WIDTH, UINT16_WIDTH, INT32_WIDTH, UINT32_WIDTH, INT64_WIDTH, UINT64_WIDTH, INT_LEAST8_WIDTH, UINT_LEAST8_WIDTH, INT_LEAST16_WIDTH, UINT_LEAST16_WIDTH, INT_LEAST32_WIDTH, UINT_LEAST32_WIDTH, INT_LEAST64_WIDTH, UINT_LEAST64_WIDTH, INT_FAST8_WIDTH, UINT_FAST8_WIDTH, INT_FAST16_WIDTH, UINT_FAST16_WIDTH, INT_FAST32_WIDTH, UINT_FAST32_WIDTH, INT_FAST64_WIDTH, UINT_FAST64_WIDTH, INTPTR_WIDTH, UINTPTR_WIDTH, INTMAX_WIDTH, UINTMAX_WIDTH, PTRDIFF_WIDTH, SIG_ATOMIC_WIDTH, SIZE_WIDTH, WCHAR_WIDTH, WINT_WIDTH. * New features are added from TS 18661-1:2014: - Signaling NaN macros: SNANF, SNAN, SNANL. - Nearest integer functions: roundeven, roundevenf, roundevenl, fromfp, fromfpf, fromfpl, ufromfp, ufromfpf, ufromfpl, fromfpx, fromfpxf, fromfpxl, ufromfpx, ufromfpxf, ufromfpxl. - llogb functions: the llogb, llogbf and llogbl functions, and the FP_LLOGB0 and FP_LLOGBNAN macros. - Max-min magnitude functions: fmaxmag, fmaxmagf, fmaxmagl, fminmag, fminmagf, fminmagl. - Comparison macros: iseqsig. - Classification macros: iscanonical, issubnormal, iszero. - Total order functions: totalorder, totalorderf, totalorderl, totalordermag, totalordermagf, totalordermagl. - Canonicalize functions: canonicalize, canonicalizef, canonicalizel. - NaN functions: getpayload, getpayloadf, getpayloadl, setpayload, setpayloadf, setpayloadl, setpayloadsig, setpayloadsigf, setpayloadsigl. * The functions strfromd, strfromf, and strfroml, from ISO/IEC TS 18661-1:2014, are added to libc. * Most of glibc can now be built with the stack smashing protector enabled. * The function explicit_bzero, from OpenBSD, has been added to libc. * On ColdFire, MicroBlaze, Nios II and SH3, the float_t type is now defined to float instead of double. * On x86_64, when compiling with -mfpmath=387 or -mfpmath=sse+387, the float_t and double_t types are now defined to long double instead of float and double. * The getentropy and getrandom functions, and the header file have been added. * The buffer size for byte-oriented stdio streams is now limited to 8192 bytes by default. * The header now includes the header. * The malloc_get_state and malloc_set_state functions have been removed. * The “ip6-dotint” and “no-ip6-dotint” resolver options, and the corresponding RES_NOIP6DOTINT flag from have been removed. * The "ip6-bytestring" resolver option and the corresponding RES_USEBSTRING flag from have been removed. * The flags RES_AAONLY, RES_PRIMARY, RES_NOCHECKNAME, RES_KEEPTSIG, RES_BLAST defined in the header file have been deprecated. * The "inet6" option in /etc/resolv.conf and the RES_USE_INET6 flag for _res.flags are deprecated. * DNSSEC-related declarations and definitions have been removed from the header file, and libresolv will no longer attempt to decode the data part of DNSSEC record types. * The resource record type classification macros ns_t_qt_p, ns_t_mrr_p, ns_t_rr_p, ns_t_udp_p, ns_t_xfr_p have been removed from the header file because the distinction between RR types and meta-RR types is not officially standardized, subject to revision, and thus not suitable for encoding in a macro. * The types res_sendhookact, res_send_qhook, re_send_rhook, and the qhook and rhook members of the res_state type in have been removed. * For multi-arch support it is recommended to use a GCC which has been built with support for GNU indirect functions. * GDB pretty printers have been added for mutex and condition variable structures in POSIX Threads. * Tunables feature added to allow tweaking of the runtime for an application program. * A new version of condition variables functions have been implemented in the NPTL implementation of POSIX Threads to provide stronger ordering guarantees. * A new version of pthread_rwlock functions have been implemented to use a more scalable algorithm primarily through not using a critical section anymore to make state changes. * On ARM EABI (32-bit), generating a backtrace for execution contexts which have been created with makecontext could fail to terminate due to a missing .cantunwind annotation. (CVE-2016-6323) * The DNS stub resolver functions would crash due to a NULL pointer dereference when processing a query with a valid DNS question type which was used internally in the implementation. (CVE-2015-5180) - Enable stack protector if part of %optflags - startcontext-cantunwind.patch: Removed - cpuid-assertion.patch: Removed- cpuid-assertion.patch: Don't assert on older Intel CPUs (BZ #20647)- glibc-2.3.3-nscd-db-path.diff: Move persistent nscd databases to /var/lib/nscd - glibc-2.3.90-langpackdir.diff: simplify- Update to glibc 2.24 * The minimum Linux kernel version that this version of the GNU C Library can be used with is 3.2 * The pap_AN locale has been deleted * The readdir_r and readdir64_r functions have been deprecated * The type `union wait' has been removed * A new NSS action is added to facilitate large distributed system administration * The deprecated __malloc_initialize_hook variable has been removed from the API * The long unused localedef --old-style option has been removed * nextupl, nextup, nextupf, nextdownl, nextdown and nextdownf are added to libm * An unnecessary stack copy in _nss_dns_getnetbyname_r was removed (CVE-2016-3075) * Previously, getaddrinfo copied large amounts of address data to the stack, even after the fix for CVE-2013-4458 has been applied, potentially resulting in a stack overflow. getaddrinfo now uses a heap allocation instead (CVE-2016-3706) * The glob function suffered from a stack-based buffer overflow when it was called with the GLOB_ALTDIRFUNC flag and encountered a long file name (CVE-2016-1234) * The Sun RPC UDP client could exhaust all available stack space when flooded with crafted ICMP and UDP messages (CVE-2016-4429) * The IPv6 name server management code in libresolv could result in a memory leak for each thread which is created, performs a failing naming lookup, and exits (CVE-2016-5417) - startcontext-cantunwind.patch: mark __startcontext as .cantunwind (bsc#974800, BZ #20435) - Removed patches: * 0001-Updated-translations-for-2.23.patch * 0002-Regenerate-libc.pot-for-2.23.patch * 0003-Regenerated-configure-scripts.patch * 0004-x86_64-Set-DL_RUNTIME_UNALIGNED_VEC_SIZE-to-8.patch * 0005-Add-fts64_-to-sysdeps-arm-nacl-libc.abilist.patch * 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch * 0007-NEWS-2.23-Fix-typo-in-bug-19048-text.patch * 0008-Update-NEWS.patch * 0009-sln-use-stat64.patch * 0010-Add-sys-auxv.h-wrapper-to-include-sys.patch * 0011-mips-terminate-the-FDE-before-the-return-trampoline-.patch * 0012-Use-HAS_ARCH_FEATURE-with-Fast_Rep_String.patch * 0013-Mention-BZ-19762-in-NEWS.patch * 0014-Define-_HAVE_STRING_ARCH_mempcpy-to-1-for-x86.patch * 0015-Or-bit_Prefer_MAP_32BIT_EXEC-in-EXTRA_LD_ENVVARS.patch * 0016-Fix-resource-leak-in-resolver-bug-19257.patch * 0017-math-don-t-clobber-old-libm.so-on-install-BZ-19822.patch * 0018-resolv-Always-set-resplen2-out-parameter-in-send_dg-.patch * 0019-S390-Save-and-restore-fprs-vrs-while-resolving-symbo.patch * 0020-S390-Extend-structs-La_s390_regs-La_s390_retval-with.patch * 0021-CVE-2016-3075-Stack-overflow-in-_nss_dns_getnetbynam.patch * 0022-configure-fix-test-usage.patch * 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch * 0024-nss_db-Propagate-ERANGE-error-if-parse_line-fails-BZ.patch * 0025-getnameinfo-Do-not-preserve-errno.patch * 0026-getnameinfo-Refactor-and-fix-memory-leak-BZ-19642.patch * 0027-getnameinfo-Reduce-line-length-and-add-missing-comme.patch * 0028-getnameinfo-Avoid-calling-strnlen-on-uninitialized-b.patch * 0029-getnameinfo-Return-EAI_OVERFLOW-in-more-cases-BZ-197.patch * 0030-hesiod-Remove-RCS-keywords.patch * 0031-hesiod-Always-use-thread-local-resolver-state-BZ-195.patch * 0032-hesiod-Avoid-heap-overflow-in-get_txt_records-BZ-200.patch * 0033-malloc-Remove-NO_THREADS.patch * 0034-Fix-malloc-threaded-tests-link-on-non-Linux.patch * 0035-malloc-Run-fork-handler-as-late-as-possible-BZ-19431.patch * 0036-malloc-Remove-malloc-hooks-from-fork-handler.patch * 0037-malloc-Add-missing-internal_function-attributes-on-f.patch * 0038-nss_dns-Fix-assertion-failure-in-_nss_dns_getcanonna.patch * 0039-nss_dns-Validate-RDATA-length-against-packet-length-.patch * 0040-resolv-nss_dns-Remove-remaining-syslog-logging-BZ-19.patch * 0041-nss_dns-Check-address-length-before-creating-addrinf.patch * 0042-nss_dns-Skip-over-non-PTR-records-in-the-netent-code.patch * 0043-resolv-Always-set-resplen2-out-parameter-in-send_vc-.patch * 0044-tst-audit4-tst-audit10-Compile-AVX-AVX-512-code-sepa.patch * 0045-Fix-tst-audit10-build-when-mavx512f-is-not-supported.patch * 0046-tst-audit10-Fix-compilation-on-compilers-without-bit.patch * 0047-strfmon_l-Use-specified-locale-for-number-formatting.patch * 0048-glob-Simplify-the-interface-for-the-GLOB_ALTDIRFUNC-.patch * 0049-CVE-2016-1234-glob-Do-not-copy-d_name-field-of-struc.patch * 0050-ldconfig-Do-not-remove-stale-symbolic-links-with-X-B.patch * 0051-Report-dlsym-dlvsym-lookup-errors-using-dlerror-BZ-1.patch * 0052-Fix-tst-dlsym-error-build.patch * 0053-Remove-trailing-newline-from-date_fmt-in-Serbian-loc.patch * 0054-Revert-Report-dlsym-dlvsym-lookup-errors-using-dlerr.patch * 0055-CVE-2016-3706-getaddrinfo-stack-overflow-in-hostent-.patch * 0056-Fix-strfmon_l-Use-specified-locale-for-number-format.patch * clntudp-call-alloca.patch * glibc-memset-nontemporal.diff * nis-initgroups-status.patch * nscd-gc-crash.patch * robust-mutex-deadlock.patch * strncat-avoid-array-bounds-warning.patch- strncat-avoid-array-bounds-warning.patch: Avoid array-bounds warning for stncat on i586 (BZ #20260) - Update glibc.keyring - Unset MALLOC_CHECK_ during testsuite run- nsswitch.conf: Add fallback to files for passwd and group to prepare for libnsl removal.- nis-initgroups-status.patch: Return proper status from _nss_nis_initgroups_dyn (bsc#984269, BZ #20262) - robust-mutex-deadlock.patch: Fix generic __lll_robust_timedlock_wait to check for timeout (bsc#985170, BZ #20263)- nscd-gc-crash.patch: Fix nscd assertion failure in gc (bsc#965699, BZ [#19755])- clntudp-call-alloca.patch: do not use alloca in clntudp_call (CVE-2016-4429, bsc#980854, BZ #20112)- Import patches from 2.23 branch 0001-Updated-translations-for-2.23.patch 0002-Regenerate-libc.pot-for-2.23.patch 0003-Regenerated-configure-scripts.patch 0004-x86_64-Set-DL_RUNTIME_UNALIGNED_VEC_SIZE-to-8.patch 0005-Add-fts64_-to-sysdeps-arm-nacl-libc.abilist.patch 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch 0007-NEWS-2.23-Fix-typo-in-bug-19048-text.patch 0008-Update-NEWS.patch 0009-sln-use-stat64.patch 0010-Add-sys-auxv.h-wrapper-to-include-sys.patch 0011-mips-terminate-the-FDE-before-the-return-trampoline-.patch 0012-Use-HAS_ARCH_FEATURE-with-Fast_Rep_String.patch 0013-Mention-BZ-19762-in-NEWS.patch 0014-Define-_HAVE_STRING_ARCH_mempcpy-to-1-for-x86.patch 0015-Or-bit_Prefer_MAP_32BIT_EXEC-in-EXTRA_LD_ENVVARS.patch 0016-Fix-resource-leak-in-resolver-bug-19257.patch 0017-math-don-t-clobber-old-libm.so-on-install-BZ-19822.patch 0018-resolv-Always-set-resplen2-out-parameter-in-send_dg-.patch 0019-S390-Save-and-restore-fprs-vrs-while-resolving-symbo.patch 0020-S390-Extend-structs-La_s390_regs-La_s390_retval-with.patch 0021-CVE-2016-3075-Stack-overflow-in-_nss_dns_getnetbynam.patch 0022-configure-fix-test-usage.patch 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch 0024-nss_db-Propagate-ERANGE-error-if-parse_line-fails-BZ.patch 0025-getnameinfo-Do-not-preserve-errno.patch 0026-getnameinfo-Refactor-and-fix-memory-leak-BZ-19642.patch 0027-getnameinfo-Reduce-line-length-and-add-missing-comme.patch 0028-getnameinfo-Avoid-calling-strnlen-on-uninitialized-b.patch 0029-getnameinfo-Return-EAI_OVERFLOW-in-more-cases-BZ-197.patch 0030-hesiod-Remove-RCS-keywords.patch 0031-hesiod-Always-use-thread-local-resolver-state-BZ-195.patch 0032-hesiod-Avoid-heap-overflow-in-get_txt_records-BZ-200.patch 0033-malloc-Remove-NO_THREADS.patch 0034-Fix-malloc-threaded-tests-link-on-non-Linux.patch 0035-malloc-Run-fork-handler-as-late-as-possible-BZ-19431.patch 0036-malloc-Remove-malloc-hooks-from-fork-handler.patch 0037-malloc-Add-missing-internal_function-attributes-on-f.patch 0038-nss_dns-Fix-assertion-failure-in-_nss_dns_getcanonna.patch 0039-nss_dns-Validate-RDATA-length-against-packet-length-.patch 0040-resolv-nss_dns-Remove-remaining-syslog-logging-BZ-19.patch 0041-nss_dns-Check-address-length-before-creating-addrinf.patch 0042-nss_dns-Skip-over-non-PTR-records-in-the-netent-code.patch 0043-resolv-Always-set-resplen2-out-parameter-in-send_vc-.patch 0044-tst-audit4-tst-audit10-Compile-AVX-AVX-512-code-sepa.patch 0045-Fix-tst-audit10-build-when-mavx512f-is-not-supported.patch 0046-tst-audit10-Fix-compilation-on-compilers-without-bit.patch 0047-strfmon_l-Use-specified-locale-for-number-formatting.patch 0048-glob-Simplify-the-interface-for-the-GLOB_ALTDIRFUNC-.patch 0049-CVE-2016-1234-glob-Do-not-copy-d_name-field-of-struc.patch 0050-ldconfig-Do-not-remove-stale-symbolic-links-with-X-B.patch 0051-Report-dlsym-dlvsym-lookup-errors-using-dlerror-BZ-1.patch 0052-Fix-tst-dlsym-error-build.patch 0053-Remove-trailing-newline-from-date_fmt-in-Serbian-loc.patch 0054-Revert-Report-dlsym-dlvsym-lookup-errors-using-dlerr.patch 0055-CVE-2016-3706-getaddrinfo-stack-overflow-in-hostent-.patch 0056-Fix-strfmon_l-Use-specified-locale-for-number-format.patch - CVE-2016-3075 CVE-2016-1234 CVE-2016-3706 bsc#973164 bsc#969727 - resolv-mem-leak.patch: renamed to 0016-Fix-resource-leak-in-resolver-bug-19257.patch - no-long-double.patch: renamed to 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch - glibc-gcc6.patch: renamed to 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch- glibc-c-utf8-locale.patch: fix bad standard in LC_IDENTIFICATION categories - glibc-2.3.locales.diff.bz2: likewise- glibc-gcc6.patch: Suppress GCC 6 warning about ambiguous 'else' with - Wparentheses- Add compatibility symlinks for LSB 3.0 (fate#318933)- powerpc-elision-enable-envvar.patch: enable TLE only if GLIBC_ELISION_ENABLE=yes is defined (bsc#967594, fate#318236)- ldd-system-interp.patch: Restore warning about execution permission, it is still needed for noexec mounts (bsc#915985)- Add C.UTF-8 locale (see https://sourceware.org/glibc/wiki/Proposals/C.UTF-8) and rh#902094 . Added with glibc-c-utf8-locale.patch. - Add glibc-disable-gettext-for-c-utf8.patch to disable gettext for C.UTF-8 same as C locale.- Move %install_info_delete to %preun - crypt_blowfish-1.3.tar.gz.sign: Remove, the sign key is no longer acceptable- no-long-double.patch: Don't use long double functions if NO_LONG_DOUBLE- Update to glibc 2.23 release. * Unicode 8.0.0 Support * sched_setaffinity, pthread_setaffinity_np no longer attempt to guess the kernel-internal CPU set size * The fts.h header can now be used with -D_FILE_OFFSET_BITS=64 * getaddrinfo now detects certain invalid responses on an internal netlink socket * A defect in the malloc implementation, present since glibc 2.15 (2012) or glibc 2.10 via --enable-experimental-malloc (2009), could result in the unnecessary serialization of memory allocation requests across threads * The obsolete header has been removed * The obsolete functions bdflush, create_module, get_kernel_syms, query_module and uselib are no longer available to newly linked binaries * Optimized string, wcsmbs and memory functions for IBM z13. * Newly linked programs that define a variable called signgam will no longer have it set by the lgamma, lgammaf and lgammal functions - Removed patches: * dont-remove-nodelete-flag.patch * openat64-readd-o-largefile.patch * mntent-blank-line.patch * opendir-o-directory-check.patch * strcoll-remove-strdiff-opt.patch * ld-pointer-guard.patch * tls-dtor-list-mangling.patch * powerpc-lock-elision-race.patch * prelink-elf-rtype-class.patch * vector-finite-math-aliases.patch * powerpc-elision-adapt-param.patch * catopen-unbound-alloca.patch * strftime-range-check.patch * hcreate-overflow-check.patch * errorcheck-mutex-no-elision.patch * refactor-nan-parsing.patch * send-dg-buffer-overflow.patch * isinf-cxx11-conflict.patch * ibm93x-redundant-shift-si.patch * iconv-reset-input-buffer.patch * tzset-tzname.patch * static-dlopen.patch- isinf-cxx11-conflict.patch: Fix isinf/isnan declaration conflict with C++11 (bsc#963700, BZ #19439)- tls-dtor-list-mangling.patch: Harden tls_dtor_list with pointer mangling (BZ #19018) - prelink-elf-rtype-class.patch: Keep only ELF_RTYPE_CLASS_{PLT|COPY} bits for prelink (BZ #19178) - vector-finite-math-aliases.patch: Better workaround for aliases of * _finite symbols in vector math library (BZ# 19058) - powerpc-elision-adapt-param.patch: powerpc: Fix usage of elision transient failure adapt param (BZ #19174) - catopen-unbound-alloca.patch: Fix unbound alloca in catopen (CVE-2015-8779, bsc#962739, BZ #17905) - strftime-range-check.patch: Add range check on time fields (CVE-2015-8776, bsc#962736, BZ #18985) - hcreate-overflow-check.patch: Handle overflow in hcreate (CVE-2015-8778, bsc#962737, BZ #18240) - errorcheck-mutex-no-elision.patch: Don't do lock elision on an error checking mutex (bsc#956716, BZ #17514) - refactor-nan-parsing.patch: Refactor strtod parsing of NaN payloads (CVE-2014-9761, bsc#962738, BZ #16962) - send-dg-buffer-overflow.patch: Fix getaddrinfo stack-based buffer overflow (CVE-2015-7547, bsc#961721, BZ #18665) - powerpc-lock-elision-race.patch: renamed from 0001-powerpc-Fix-a-race-condition-when-eliding-a-lock-20150730.patch- Add audit-devel and libcap-devel to BuildRequires, for use by nscd- reinitialize-dl_load_write_lock.patch: Reinitialize dl_load_write_lock on fork (bsc#958315, BZ #19282)- resolv-mem-leak.patch: Fix resource leak in resolver (bsc#955647, BZ #19257) - tzset-tzname.patch: Force rereading TZDEFRULES after it was used to set DST rules only (BZ #19253)- glibc-2.3.90-noversion.diff: use stat64- ld-pointer-guard.patch: Always enable pointer guard (CVE-2015-8777, bsc#950944, BZ #18928)- strcoll-remove-strdiff-opt.patch: Remove incorrect STRDIFF-based optimization (BZ #18589)- iconv-reset-input-buffer.patch: Fix iconv buffer handling with IGNORE error handler (BZ #18830)- new patch [BZ #18743] PowerPC: Fix a race condition when eliding a lock 0001-powerpc-Fix-a-race-condition-when-eliding-a-lock-20150730.patch- nss-files-long-lines-2.patch: Properly reread entry after failure in nss_files getent function (bsc#945779, BZ #18991)- fnmatch-collating-elements.patch: Fix fnmatch handling of collating elements (BZ #17396, BZ #16976)- opendir-o-directory-check.patch: Fix opendir inverted o_directory_works test - static-dlopen.patch: Static dlopen default library search path fix (bsc#937853)- mntent-blank-line.patch: Fix memory corruption w/blank lines- dont-remove-nodelete-flag.patch: Don't remove DF_1_NODELETE flag from all loaded objects on failed dlopen - openat64-readd-o-largefile.patch: Readd O_LARGEFILE flag for openat64- Update to glibc 2.22 release. * Cache information can be queried via sysconf() function on s390 * A buffer overflow in gethostbyname_r and related functions performing DNS requests has been fixed. (CVE-2015-1781) * The time zone file parser has been made more robust against crafted time zone files * A powerpc and powerpc64 optimization for TLS, similar to TLS descriptors for LD and GD on x86 and x86-64, has been implemented. * Character encoding and ctype tables were updated to Unicode 7.0.0 * Added vector math library named libmvec * A new fmemopen implementation has been added with the goal of POSIX compliance. * The header is deprecated, and will be removed in a future release. * bsc#905313 bsc#920338 bsc#927080 bsc#928723 bsc#931480 bsc#939211 bsc#940195 bsc#940332 bsc#944494 bsc#968787 - Patches from upstream removed * htm-tabort.patch * o-tmpfile.patch * memcpy-chk-non-SSE2.patch * pthread-mutexattr-gettype-kind.patch * powerpc-software-sqrt.patch * static-tls-dtv-limit.patch * threaded-trim-threshold.patch * resolv-nameserver-handling.patch * nss-separate-state-getXXent.patch * aarch64-sigstksz.patch * heap-top-corruption.patch * pthread-join-deadlock.patch- pthread-join-deadlock.patch: Use IE model for static variables in libc.so, libpthread.so and rtld (bsc#930015, BZ #18457)- glibc-nodate.patch: fix verification of timestamp- also filter out -fstack-protector-strong- getaddrinfo-ipv6-sanity.diff: Remove. It breaks services that start before IPv6 is up (bsc#931399) - glibc-2.3.locales.diff.bz2: Remove sh_YU locales, fix currency for en_BE.- Add /usr/include/gnu/lib-names-.*.h to baselibs - pthread-join-deadlock.patch: Don't require rtld lock to store static TLS offset in the DTV (bsc#930015, BZ #18457) - heap-top-corruption.patch: Do not corrupt the top of a threaded heap if top chunk is MINSIZE (BZ #18502)- threaded-trim-threshold.patch: Fix regression in threaded application malloc performance (bsc#915955, BZ #17195)- aarch64-sigstksz.patch: Increase MINSIGSTKSZ and SIGSTKSZ (BZ #16850)- powerpc-software-sqrt.patch: Fix powerpc software sqrt (BZ #17964, BZ [#17967]) - nss-separate-state-getXXent.patch: Separate internal state between getXXent and getXXbyYY NSS calls (CVE-2014-8121, bsc#918187, BZ #18007) - static-tls-dtv-limit.patch: Fix DTV race, assert, DTV_SURPLUS Static TLS limit, and nptl_db garbage (bsc#919678, BZ #17090, BZ #17620, BZ #17621, BZ #17628)- resolv-nameserver-handling.patch: Replace with simpler version with more compatibility- memcpy-chk-non-SSE2.patch: Fix __memcpy_chk on non-SSE2 CPUs (bsc#920084)- resolv-nameserver-handling.patch: Rewrite handling of nameserver configuration in resolver- htm-tabort.patch: Fix TABORT encoding for little endian- Update to glibc 2.21 release. * A new semaphore algorithm has been implemented in generic C code for all machines * Added support for TSX lock elision of pthread mutexes on powerpc32, powerpc64 and powerpc64le * Optimized strcpy, stpcpy, strchrnul and strrchr implementations for AArch64 * i386 memcpy functions optimized with SSE2 unaligned load/store * New locales: tu_IN, bh_IN, raj_IN, ce_RU * The obsolete sigvec function has been removed * CVE-2015-1472 CVE-2015-1473 CVE-2012-3406 CVE-2014-9402 CVE-2014-7817 bsc#864081 bsc#906371 bsc#909053 bsc#910599 bsc#916222 - Patches from upstream removed * ifunc-x86-slow-sse4.patch * pthread-mutex-trylock-elision.patch - o-tmpfile.patch: Fix value of O_TMPFILE for architectures with non-default O_DIRECTORY (BZ #17912)- Update to crypt_blowfish 1.3. * Add support for the $2b$ prefix. - ifunc-x86-slow-sse4.patch: Fix misdetected Slow_SSE4_2 cpu feature bit (BZ #17501)/bin/sh/bin/sh/bin/sh/bin/shunscds390zl33 1643274498 2.31-150300.9.12.12.31-150300.9.12.12.31-150300.9.12.1 0.48nscd.confnscdnscd.pidsocketnscd.servicetmpfiles.dnscd.confnscdrcnscdnscdgrouphostsnetgrouppasswdservices/etc//run//run/nscd//usr/lib/systemd/system//usr/lib//usr/lib/tmpfiles.d//usr/sbin//var/lib//var/lib/nscd/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:22553/SUSE_SLE-15-SP3_Update/2008ac17db825608b3b78f51563881ed-glibc.SUSE_SLE-15-SP3_Updatecpioxz5s390x-suse-linux ASCII textdirectorycannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.9.12.1.s390x/run/nscd/nscd.pid' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.9.12.1.s390x/run/nscd/socket' (No such file or directory)ELF 64-bit MSB shared object, IBM S/390, version 1 (SYSV), dynamically linked, interpreter /lib/ld64.so.1, BuildID[sha1]=bded087b704947a4ce7379d2b6704565e1ab6584, for GNU/Linux 3.2.0, strippedcannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.9.12.1.s390x/var/lib/nscd/group' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.9.12.1.s390x/var/lib/nscd/hosts' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.9.12.1.s390x/var/lib/nscd/netgroup' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.9.12.1.s390x/var/lib/nscd/passwd' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.9.12.1.s390x/var/lib/nscd/services' (No such file or directory)R RR RRRRR R RRR RRRRRRRR߭YP S BV hon+M3ZH?p"i,ǘ|9rIt1Q(`щ *wZk~$& }'y8`, RAj[ԫw֎ 8֣׬Y2P>Z 3*"yh>rvs!DSa*ti*.菋-$` ܴiNJMnQ!fJv˺}TݾٞFӧY[6!? "u!-6 LY(Ȧ@._v4Ȉ/Wp[)ӻ3A0} 1^5ݑcI3ā6a"'i)+(ySM#fhC_ \^T->+]P'k#fEVa3( 2K80 fErtղO~\XORQ+/6 w'z\rDǀ$G\!#c@hA*<ҼL8 O$.W/M[aʒ]oV9 !ɱovR¤гL=Xc./swh`Mf90 y1L[PsJy>?ůʒãK=ʕXg.'FBL # Z+E^rgvŃyKhFtg5Lg)t"u&uыP*+)k%{ Yɘv?{w:::s :Cs.Gc&o'T ݐEhyHޘ[y/TY|+\ l_O% pG 5Nwc ,ǿZ}@;*rĠ&F8+5 cu x+wϘ-ĚKj.Ր)wI1l%T־(i|((xA1ޣ MH58b d7KΌ~j]eϚ<ҔiȔ%-(WxҸN#zus/K僝ؕwaqFZXq|'˥Gxnm3XI# m$/Q ] G|damyG#UWhNnS ,ȅ ˖ YI`(@{|ǎ4},79V#+Gj2b/YAȸgZB8ᱫ~CD~ Z~Aٸe"4Xh3Ss-˦VO ϝJ$U+S9@e=)H҅2W"5!H DdF 8 s2z,\~[\?-ETK~la-.vxL ^^A\J %v0 ]5u9͈YG:>#S2><ԇ!! '`R0é}C2{y/ߊ:uKOTF!3=n \.͍t7(Qft}y;/MOή~Q=QHT(-37O1ItRpC4_Ɩ'雜ǖ)n"Kwj+qK! 4H'o&lӨ܌m7n nEWK,~ zֲ1I5.9 ;D]r? ?#hc^͕ fbhe0[#%ĕԀj泩51O*3FyNy/ݻii'k'O;xxyFJ y/x|KS]A`t<=.tVj?(Y5q K_l{c+m|f[03I(^I2hhzf!ej237^HkkuAlz\ H;-e?ٱ_RNEAc[B&395]>e79(G(,4/hvov'Xj蝻Ϣp'fVrt6o"J됹&Ҍj5MH/'l :Q@_KQ-R7:ܤK38(!dojϩFֺ=+?b]మk% ONc1[,hP{o2=PBPU'n5&zͺ_DJE,n_ 6ұ}C֡NJPn Zwsꦬƹú]ւϩ9LH|3`CS }f3bQ} "~; ?s{/oꔂ82eMjUҥ#&? 諺ĉ`[`QMJU4GS I /% 5{sK aEy9R/Da?IGŞiyLj{y!h=IC0YtU!mns=u'E/A=QzQs[.LLukt@[û2ŕ_^O qK:›٘kt u*֡9,˖0Jv_(\O[i{Og{McIȐ?X_P}!ݪ_BJRA%@v"WO=iͶh9?}~ci;w<$f \x2?0pU7TzT}Z/^y<Kİ=wagy FN΢ 3fH*f (z!3pF/0JZ%K5  P.z^e]w'p][-sKQFǜ$uffp'a|o8j\vx_|XjZ%#!=,9#Q]Dg|x D&N7'ʲ̏o}=61j$ibu4zCC*AP|$Ex~({?hͪ4&p2P R a-:,xF"/ Iɪ-jAݻkTU&?әb߶d7n$"ɚ;Yuh0&*֧&c_ *!8fIBp 5#]_+n".}t5Vqs$ຎ|<,l1]YC~,{ex/܁ NR] T2R" OD!2NGiv-\D>"2`i9U$*(`IS6j\  _)q% d#k{nO|aap׿Ϗd^;=сQ,51QX=J|R&^$q Z, `kWN ԙ*$S2qȱ3/uS|A? zInN7o}~Ehfef xmNbWK3]q_=+/GxfLN9e ﺸMI F-9ohiF3>ok' %b"bp\kB\?f(qrIyx(МĹ\8ᤆzF.\)66'v3IJfeZp3uE,ڪxBiA|Hk'KWwJ|nvTĚOPXG]x4K>m?=*ן{^ i Qt`cDԯbB8gH.xՇAK(Dps- 9˲{V37^Eqaif%Я~ ufخ6Xy?}~hp e/aew+YՕh~|N#.ԉWe),Ypݔ6-ח2ߢU;z0}-C.O8֚pʸ+NrPϓerJ\ Smú&s5cBbӜ]gFIt'Thw2K(RB88Te;T˲JR7 gz7Q6MnyPc;/aLb*. C&G#FJ&;aByo4̧0tv ,NY9T\o+e*Ё ֩0(.Heh@BVx%ERD9X \) _c tpF]ؑ3sIRہsdS(x\)asАAt?Sg\E" x. z|"QE;.8%%Ѫr,nv\byaaOjKZgb(I|#)Qhb}*l2Kp HL `[9J܂b*-D(||ˠzY(<>+Ç` ÿ#l(0crM#xp킍tX" AhpLL\};B;7Mb!aѣ~&CiFr>|5c1dO]HFXEcbAP7(pc F͜ Pe2Z[,c\D4jNYQӧ5.o\AD%fXg(YvтȮy:i 3Bw;OX!\:Bb.3cq1g6jp3\>.!U WgCL&t \ CqSYIe@j=6(:+m&G[pmw^ vr2Lf*M!>|eSi]ѡ@7|@R0ć9fRy>7A&⛜r~EQ #<C _//k|K?N_s z+ 꾙$w;P5Di~>ou3~GqUc/@{RQUe}ղ ]O]8R>r4w8R%S~$v-Wcga.7Z>9VJ@Y-0^F063)I\&kS0 "b5RJ\DH21{?MyT_E>o50[J盟Zu ю&uêKRIt?N:-t@(f4,Rwmx:Ҙ%)J=םWB4{:jaZ7l>k$2ǒb_(.ULkp:5Nx)Dj;O9"W ~4 '0:}o7<fX8񂼥|N-Erm Чw.:ڔ?A>FA-)^KU{!qcfI&kyc0GZQqr5Λ?Gƹ2k"7BnR*)? [Ox4/:HJJ-7MX j%HIHAaJ%k~9+ť0]gɘ2(LkygW_Uq>s5c聉f'a08(۝#!!.8b@+? :97M{:Ce''sO{Jԕ-pe[޿[ s_jHR`[C xQ5pxwQ)-蹟ԟ79:;Br6uM8X&} z[N LAD+E&Djs0(_VEUϝnfk,yp m 5o{n“^f)뜸k%ai{e7!o,YUWDh@) Q"1wR+ PK5ǧ#jO CZCLڝWsV#iŐ8RҠF33duϔ>5cXQ]8#\;DNVw VJ@҄H4`' ,Μm8bZater%n'5L2:^ 9k4 M}|R0!gse\}QO.hyZW؁@Ѝgr |Sȋ#Ar;\J4`+T}.T$/ofOvzBFm _n?1ts\N^2IrQlTA(+ޔ3gr6!cPn󜚞^Ӊ"Vtb9Q0",R"޸l5Հ=*Q>Ȗ!>E8 sǃpm{fFwUn.G7()S2Gz*yLܛS| L^ׯ7ڙ0w^7vP t-;y2 cHq n`Dc4O(0vYuz!y bᡫG'HuȗoA5G?W7ƈ/4`<`w4ZV o;;yަD\=8 r B=K`Nnv6*TFVex{uX'I SJm(!B'Y2Ɠu61!q%Ӟ̮hJsvɪCp q\@Dp4P l|UEWƷƥRl9e \&¢K=:-ĭ-l/ݤ-ܚo1Xt'F,p;زܵI^2F@0TIꔶUCSG`g(AetZ4Qw5~X|pSewwѥuh xR.Qʔ-OG-; q֭*|S1Ы==:fZ-V|}BXx44\֭-iUA%EH.K[ԛ?@"wK\U fhj$Қ0 ʲolW.f|u%L+~C.#bՂ}G*h<@UفgF3A9 ]'K o x) esI|[榲`?ƿG*[jz7gKnT UO`MZ -h(<gw'KdCkkAia AX9,C`fY3.r͉0,xUj'-qO+G҆KCX >XX4@f;ؔ2NB%Q eFd3BCG޳LDv%4׍MY.Gw`ji<Fq& 4?NMKb2r 1dlLz^vsކEVK1\qvD'2l>{Vy|TQ4N&?a cc@.w*hUB-~ T¢Z_nTf*3p{Mx Ɔi9:H^*HOdn#kr$ T'J[{wzQVH g%9giMub0VItqI o+cS#%h[)P{ F{])d77@G cl7t#8d$d`Ε3FO]X,UU$y;JڻJiZ'*/HŰ2UlBFLѺ:A} z8f}ERbQ~*S v*Եi6qsGx8v̢>D1Dv2'6aMV+~6<qlL EykW:2.$8W5SVDCWTk9Z#:/F. 2o^a{`g;"_,ȶaH>H$i(o({Gը:_%sq0}MW^{3<]jL(xpni'ecANCX܋Laᯏxq|u6B%Ag-ڀz/U شbG9&'ls *p*IÙ0 7a4'St SܠfNԅ&@5ކF4C_iRꝟ-׎=Եio6es}2NcYO[΋5rMP0Ca6!pּk`)&^,4_ :Cg"WE R?%vyVz0DsGRZevH1xp>[^b.4s|8N|.lFhWidC^MT?53=aoe:KɊ`+q0KMבȸbZ @ Wh 3`1pՁJA v e8R$O訃Y+;Nrk` Y+DWpފ*=@`BHKFa ^7( Ƒ 5佶 6m׺?c1VPHwJP=XZ7"Td{w{qWE*A wl;H Aȝyp*@N'd~y5ai6y+~\6MdDԓOt`L X7۳(0tjMF{pa&ђ43&Yg1 ! de{q*(zQo\ ¾iÿ$8: z4[ j/d{C+h*WuvĘw=oV9'FyI+,NLP5)AN>S]z6⁾vla,Og9äS|)PŵOFsk!aի,L =L{A]Y$J3{6΂TKוުKD$ ZړTQ>pfK݂6EtE;TnQڹ78Μp.AF% +"IL$ =QNsJ[[#U35*Q#sAx+1(O_tX>lrsjzp2o+ VIqk@|ܢebWv})niRIz]nіھH]lMUt\IQ&9$8-:? s}VR/6L7? H}).Փ< ra@34q<\}q%1ZFş. \݇~ݮɕW_@:f1EqQAt)>]{a6GZ.wuW Fp0}ȗ!Oqh!BIEa8RVj%a&;t>fIκbp Xy*Gz5v2'4 V>tsE&TA8Y<)sh>PAj;{żY;z92Cw>&!7O#+LDCȔ)/qMdwEǕ@߳'ҕylA=wb Ջ1 i۞: *n3ҁdHrmFi92 5q°{[Y Ė|33sԇ TIJҽJn5GSFLVr~tyZtV[=7>j(HPX(So&Z ,n0V M ͅwkF́-9ɨ-&Stcu/{do؎1[߻B`5zBk V ba#Wu*5289hFZo!;pM!j"JNUς׊ !iVL [VLovjl\CO\@pmNAz9.zi#n9dO\[XzNI'xVcM6f/i^,v)Dřei,:J+#tKs2d4䔟yz?AO=;8pqC'v ٩i9^6k,8\eng#ͲoV%F!x%fw.+Q" g X }w/(UC"4@O: <1'b_M[<#{ +‘onyQ1̼Uvw.>\ IAdrkw^#!p~LG+c'b|$$﮿jyH΄_(Jc0#{g%H6f$s[UGsDbj_SDVg1;2ȟ+]^bzHWBb%bw=*-5Ɔ--&.j ̖>ޑb_BqcI#6^1)ԟ*)ȈJ+~VSojBn}Fǯ+הEtĹ-.PLNq9">,'ж: ߫-3TȻeZCoJ7AA~]e|hCm>5ymxqak1p/r&x͠EZF yWIrnbXǴ֣?`7 J$s.ѱwzv'1[Mueȕ~P?)rS5 nQ,{{jG@3gnL.yMsgJ0P3i+zG-74a_'8C3;D[<-<0FͺHS.Cz,Z֎tZ .ݏ u(Iˊ 񹾜gurFlHFఁǪ5K(qQwpAyQnpoʄx~x.n;UlUg OE*EO@[ zl:b`2Lg6Do"V8-9)z/i.5k;?o8ߩa+ bM82c[)5 Cj̺:* P3L&..~$p>%gRaӬa7=$qo޶WHQA*A3|jqxmbP`Xt_H[V>q(ˀL]:= g"3O?6X=*K%bW 96Q^j7Rr>&GxV'is =Z2O'f,N>%cme˫ZC,VA>d*6sԅ(c T]%н"wʀIn'26o +\X,2"Iã+HiWD|Ks`!ٗUv<k>_%-dP]+~y#tDÐd9V%Pv}bwO;OL,-ٰʟFueDYw3N<,.RwYqXfqA5ZB?t~{[aˆ\y+Sތ-^ MwފHg?_2lwdTLjFy<"28{ȮIa E4)i vw$8eQympDM@%k8ul~CA  C=;RafJO?-!Н_qpy{~ta~{dK8ƾ<dqPS3q04B2*O=~uPהjQn!I,RIg#ˢo%&MU.YT L;⅚/z#DdJ~ w%QHSꝧ8/R>g/I4#zx@˃I >)ǓZ>B &DžBE B2\]=M'5OԮɝ|lcyVq 'ʸ*Woc J9\ĝ50-[qudÓG RS$^^Io"zD #b*6ғO')BO]sw ^@SOd5'-cK7.A4ȨsVnWyỳBɸ} A$N[7kW͈-x3!LϧxjdϨB _ ӪMh$eAZG~IzOQ11´m5tsBd)ORg/f纒H6o3TF\+6!r\ʏb\5Jd;upY? 2.K:lqz`*qRg*VXE/#j}rɒ6<&K.u|zz ab<"3nO:˫+|]k$ZUqd?OK2۽o\͠0/UUφ Fd#0bUDs-=>\2fLZ8FNgKG}E%H}b7?oؓٷRz x#(cſղ8OH9S 7zaͦLqLܰanw Y:#'L,V^$4b@Sq ؆_w)rEpE2Ȼ|9^W8©OJSw406Ӟ Tsx);`B~ 7 ~|f4fVUNAd!sүdz~@98<wTu5R{eiZh;0u`=1@B6J6WW ANc>KHx^ץyDb1Eˍb}_/$1RWX)׬'K?9~sZtbs> uFqkOwyn۽|HBl-ۘk.O#0tƈ[\oH-H5 6*W Z[9 9RQ.C0dy[}%}4{~)nT?`#ƒ,3o6 "Xc@v2`wwSnaņ1y+d]D{L?6m"Tlxz|aˮ3scжojS֜1(qv4`&$`DN~n.}- PqZ퓳# YLTg2TxL${O׎KAZdHDDPcbY;Ͱ<< #^B &&stu`vTs!4AeHro^ VRR)GSQ[#^=وڵ4;,BK[i% 9NB7AwIWmP6ÊHuᷜ*MIaK`C;|l;tWd*I4t:sOeg%؅'9} 8Api&vŊgl?h=,ˤ˖F, ִ݆Ω2eqb;ޣG%mh`5>)^LP-e@8nmk%\fٸ^=EKb ƭgԻLG.ѣNR|%KQmEW mn1-yҙkzN w~ڇ/iR]x*Ƣwin2(Sl6q y8yDdGf}ђQGF訐4HmH#(>Tڛ#aI{ 6ip(XI HΞ4>JgNcD(Fa!ra@<$I2\n](g҃{퓅$m~V$?ike)=:mzB?CvʚuetDV_\%,npu,`H,0l{{XW+p- TS+z;l_!y ʓpҌ% k q Q5aCa+E]ul.XJT}]wb M'nTD~5W[k#ĺ'b[-:alPv ㌟w}:1 y+VHj56AD!.z坡Ȟ_THe( nrF:@ bD:@"D[ σC `Qˮ6kv)CHm3g 6'w"4;mWO|B4JXW'ɤ}0Qi^Iش0ƛ<_''wIRG3LBQ6 ԋLdDn<ץx4cY7"Ⱦ!$)9H1KG?09𺌲C#߇jX1ggy^, ryڗrdbd=h$MNE&@UwB1fi*HМk#ڢ2-O"I(>Yu ^ρ+4ALwH5IT tBiAU7 oPM`DBBrʏzMeĢ }P"FvCTLPʧZb8YGǻ .z)zʺa9zpKwZsW0U@N-[2|+toE4F~g!Dn*LAj+鲇ˣj$˵BɶL|޸ܷzqhӍy2qG0G䡓K!cf*y{vU){Y-{xX%qf|`PLڍ|9lSV\?$N} @m*bXbt02琍uxh:Dkvcud:V 5) ;a_(1E(%n"*/ƄrsN[_C1ST|RU~/SF3(qp`î E1J3mʕs3u)C+9h^;O:#-700|tJcKP$ )n~o (xe,mmwVMW!C魝;l (CƧ0K0GP0+ ]8 KZA\dcac{lV4o;f[s :P,v*BeYPGPπ410w-C0ִ8v6> |}T F4R;C2ZcO>ưt[nLg>XA6Ģ;x?&\ Zf d~,Qlk]}R`E$J'`+$]:!jͤT֚u?5sN,P=)px8&+#Ƞ]/x2P)p_U/TE&k^xb.nuO}rdg&hBo%qB3dotµۙ.3\/ljc5PQH9?Ԟ e&²_%pŗa/mE ,I%IsPETٸH^.G0i_,;GD4U4 6&hJ8 _ߋE265&_fBwZգ|$>|)14/J}GK`~ 2Qio0p#P@闀FDP"13B;ZȓwNe˹:qI%{X]ԥ& p?#6*;]dug"h i+Vא2<:Ň rܽMŢcT+ℭ(txQұp  9-:b }xBų!~+?~œ#Z g=IC\țr ^A G(,m-H ϘYXf ,/WOS!\F *~y7}ZŅrbQaLo.|cIn5NMNp0 \ sÊ't4$&CJ~8@% 6CxJχ7SN}?Kwȯ+&n ]8qHLcIymn4o$ .*Sv劬s;qH27 xkRaY<(pֈDGi8a ml?cRYpYwkOk≋p:( S:K_ =!8"}'2rJ/Ʋb8Ц 1܀aeʠD\a] F%6zvZ!9.w".0|kz7Jܲ| (W)bK'g"{GYRvWJWrO'ް d32XW#76=NE&c],`L/җl~ ?I"F$mHʠ68ge}o6yɷtbqUUt6G_ 9r._'*Έft\>HO&ne?ޅV N-l9H#=н^ˋŮ"<\EC%zxc =v0f ~ &h烣oGՃ^?nrvV~Ct\1=QU‰W{@T䂾UzHt~p$j9>=W2cIR~Gr|5HА ]@*iݖSt iA!@+<^/;%HfN, ЍɸO Cpb Ձz}NAv.$5L6$E{0 Qzm>*|<1m׾z/E3S=]ʣ/W˓ Yl{T%\:2 kj_H2R.a5}nomes#~zuJc7qGm>!m^m<h'<@!T5<ʶ*u1;U.?WV^7^^@'q@j VK-%:|-憕zxf 䣸QA1%<¨~ǜK*@+п3_NqF%:0P{,w]KIǪQqaq&#UZ),t VuH5f39w bKM<ϖ,(_qC-5Oiw%Ai pvj{=cNBhpi@DH>Q;uy}int^1W<uԣ S}"r:.K/ K*Ճ1AlVצ0e;i麂vaYEmYTS{ɰez$O4sdtBo@ugɕg~~'_" vfBf. kvm;a1!5RYKT"i1Ymkʐ~'պz]!\}$V)xǨ\z0jrz aPBVw퇋J(V!JښXN$J02 Z yKt/Y[Kj2Rwm_pز꠴G-"X•G?lO~N ^Wos\P2hOHfֻqԵ#AKaB[K$'145C`E3E.I|gpBr 9OrTnqHxr9,N④*w䐎q:<;^:*oxZ ֕I=WAu $;!t|@jyTe F+޼ijIr jS,]\#gxNYGդ9_bh[OPx P16WjZ ] l (>:/O: >hӥG){)Mehɬ: L/J1!mZͦEmȾk$xH2$J"sVz Ĝ=B^44XSW!w7onWs2H<A~kbc: [{T]QK@ :Y! 4>mKh h9'DO$*X3dCnm%4HzmqSoDch%_C +qhC~~=T}u[Uݛ2=l f:a7{>\gd'f9r4Mm&XU բ4#+a! <'lyd ;YiyܞBQ(^ERCدj=޶x}+A(zK\_x4)N? X^3F$w+dcJ3}fda1\(8 K_{28Ѓf0E I ~̎hMI3RCf=FgFƧ>!9#GcWN=BR.UV8IwSf!FX/=' 6h<[kܿF9D1An IqPHlU]9~Ǔڄ` ڲTcPi>`r$$5GP~p#tO] 4# t$>n0&C=hda.%⡴I]Ӆ3at1RwrklBrؖZXz8o3o٩x'uwCAfaFZ9!hӎJ;MG?&ATtz?M9+ġ 5]\!f蟕6lyav+i[TO- ^ߪ{ۮ1KS%Fx粷1;x솿a#w>F.lYR_Z El"%?';Vd4lӊ[G"Ώ X#Ϛ /RӤRU-m]mvbf#aT0K?D}N܇B,W}]#iY?2_,Hk(91JxzjяBܜFQ)uu9`[:Uv@˸[7l U4 -G 4"ر}LNa&&*ETXӿF_o5Hy+;l:p.'r[ M#M0^dtau"]'k\w*. wa6Y晶IKW 9Z:/qpwS|!~9k*]E31 /6>+u[|Go8t{RsqW3AhbߡYV]EJdbj$B2DLX rWOX[\zWpb>ŠW}6IpSh.M31O枒CÚ|JPPԩ wiQTީeUO;򲦭hjwc6?_GlI`r5,-BPSjdXH;J_]m6.K+HM4c_/w A1R vQ$Uur |M|c(11[wevYo:q&= WR[8w +ANqgr)(G*:WͫvMUNrpL&\k( W.B//G1)@Bq ']&NW>q`Be|%RL]9Z3N :eTj{%jZO,1n"(}ݢ2~;1+oے"w#J;ΗĜuaX|l%m*=4[ "K-^.U*%Bs=t_SMo@[̸e׃M:PiqmrfbF"Xu7owrfcF񛴳N=jD&n58zkc=g{C1r'IgGWbƔ|pJ{=g-J\YMH:!HIQ4cAbD shV/P G֤b$ Fh%Fv>7v$6Q:x*(K-ō^'T F5Kw$rAYh ~a1X,ffLqBHEMHk eJacZED9|UA@NG7mR?4I&g 71 ͎>' SiS檒A^U뱕q؛O 8|hnM{uj'H5Gx{c^!F'$1\ڪ_0kܻm07ء -n 5j!Ocu&tdeg&(ɨ6 ӳV/I=8ϑk`ux#>2ٷ%gnvjSR$zEERjwcYG}Bk11Ip=z&Ee!qi(qSI0L K^xG^lVDN&+fߓ OC2S1׮PAշU?`2*@x+d6ۤ.aaT"~@(u8`(D}~/N0TτeZV$j@RV Kn.V9 3^ ^!ZfLGRT?=sTet!u7l+WRI>_!ݣ.kN٫8Q[eQvh۽%@ 贰'LaQ1?4t_/ K 8 ,歐1gy)٤tm|]D?0Ա$̓p 2t='BԷkAisׯtpؤrPtLD{ F#Vځ(bPP?cďqKt;D.B_N8퍼ꐛz 4ҡ! dɷ5_[CJuw`.G˰uَ֫2"%i#c4yAQ<-ZS{XW{ 쎤ΥK_Bgiբ䚷KBjր23;MթNε4_͓`gDrO"+0)~Ws=g ,D&f  ,m7rdqeK}.hg-#g KO}xFnZ j}Z!v}ԟ)-"ǞrșߣfhenKX.vP\Ɏ'qz84`` )5=x`Lˤ.h iԠZI0=EqWTP^{)7tt h\TyCa哞OxI!pn~+DV-Vv!EՇڸNtEǵV|+w؜ՍSw!b,_mf` `4m "M4ޔ܎qAqQ:\x.[h+ګi-#Pk)@ $_z@qpztbaP 56dvCD9=N䡪L8D]?r0#oT|%-dr`6_I0y|Jix{ +_㹯@ؿُG }ە(|? p“#JB/T0} %뀼ϧ?h)BeTm3 4=;)J0KNܳM tKʑL&9tj\!~'+]t Sf %R'm32XsS!2A:<%bR$[ţu!e rѫ9p yeQv"TŅ{8$h,Cmkbb),=nņ )SҒtiP(3,3'+x_I:d3_1>-Zv)vݐaMH mh̄2P;ϑ5($ibOrJG˷K8:֔ߠ~4 M;7\R5.sF,sF?5G*9M //[ ~Q>Wj mR.k1`[aFΩ4-^BfRt~vVB+0uk1oj]o˹|ON#U#snuG#x'}o1a_G;kp ~x{`_|m0%꯮9Wt9s513 CpS>M n/zo%4pԇ se#'3kL"uh8̙k{:pႽ= ?@ z\/Z8}S\["lt-w.M\sN=L2 ֌I;q!t[:5uT)0C/sC@閅*7Q#?䜍Tht3힒჻{)G2l-4->7̼@z? V}KDA[TU5wp5-ͣ}s:[t=^AcI83'~ ۢ-_@N $0`LI0ΘQ6f09OUX]UX Q} }F` ķofl0l"O-|ص&>_>?-/qH9,VLXUh*U`?,AsIّ{Y<|nٖhIXHRnpLFwe{ -_]O:qxu+PJ g,>Ysp qUlOp_B?xe{3lџ⑸|7z QP찎1 ,-Xk >"RpAS`Tgs7Vo ;֢$Jo>"l1:_Cx%>Ex d-bsyo}V1I }'|B=G4 0p >YژtmFVIPy/6Nf1~K<$ɔm)'[zS*h*^>ݽ^֩iamt+yX  tb$@mǢG\rdjaVlm Kd<9]3CB )'Գzb o\XI/EGUR&t^1!y'NB:Uqg0bA,p* #H"9/5 I+X8㊾IJ'Ν`!_0, ~cE `܅C:ͻ3,Ap.c+')rY^/SeL:HB{ğJ3 q5|r{:uZ|TU@*ABg ][ iAu͹KaoJ& [|B 0*W@5rtʧ #oTCT,ϴl𡫡(̧ _i#mp5 Ʒ%ӆ3C@Ey\O˱l 7Lg X9ȝqN[uNt;;sLtըe#^^E4Ƶ0өIi"*Z友˖\ZR.`A Qo/%^OQQ"3hk,8",35|KEݫ;ű=޲1rcdjp+ڑQ3C*ͧ@~` = ,ţ|ώ;Ga`"pewƲC>ZbjG X:zPY`:&9dGjtH3٬hPx:(|T4+3͏M:FG8*T#"ɼTOLLB-8q7ᄐAxmmH%28iЕvY?3%=Xxh*+eO/%h} v7h¢7JWl};Bɉ̯$>0\9ӴC=sĖ䯮$$OODG3tLTbq5mV% {:=Iťt1Tx9hi)L\Rl&ۣBm0W$FnK['1)TqwxgevPYm?Б7ePpA1eT%8I-( (jJϽd!]]tIrz;1~x)qڀSͭMpoCFl)ډeV7JOp;6nRGs7SvQ'~n}E2lя! r { <% lbY!Q敗|N!ea_uʈzi: qVh{}vnVYeR{tJkmw%t򃍂sn4 APbJe/L`E1!f<)Ny 0۾),rj11hZKwۓɒ;}]Hr#)PXXWIM6k*zȟsʽ3Z>-u`lST ztBVv7/EP[3W4:V+6@ m%e5V}!Do {-}/#!FVKEA 611`M@1ZM+=Jk6&!\vz]*Pu]v44a$Puvp;ߣ}w-94`xj p_ge"j;62!Aբi)atrDgLģ3-};~-$X DFa> 1~HYl].Wwx븴0C9EٲfIa $6wqƖy{*&ѱC~) c;rK~tuN< ]t XPw#Q萒l>fQqۿp(|¶k<ϵ򯔒 q{fv h8? iWG1G7,76$DiL~BVgpbX/Yހ(5"-4eS64"јAaG]U:ˠu78)kJ=([7Ez2*^^Vܓ8ێ^[x?>qT>:Td|pM$IjHRbNHæ]Orz]wgPوf3CL|0{T{,ļ"yvz d?L VkgJaSn@PtU%Qϫ' 2XneGCsa.*ֱWJeG~l9ӜvV +Hc*&w4K̉vFU1Sce6TbQG!逼lQ#Cr0؟haex5[9cףKz+ջ*X3 FLxZ]㞔 qEaYA4樣az#sB"UNqiB䒢k #G80!܎:7PCA&Rr3w2l#C,cD&A yal.!_ΟIa\ 0bjq15%ۏYv3yY(e,J&IO2D^| HFgK Cj$=W|>]o5[B HWN#;GvH{}YRz\ Ln5bWGkДyXn7OvE)-[5ns_{,=S'LM6/3IYU?T5C:SX8x]_vB]^ĪhX;vtU*lJ y,%/U *)SM)4HK iϣD mfjrz~TΟn{:,#}01(L*Z륙5VtSl#nGu /|5r`0bm`qIZQsC,| /?*DNpo ؈TGf@2;K- bY0{H}wEtIN;xJ{|A!rsD,^s(Cg4+Э ⺥lH*&Lى4_YwÉH%VV]K">:ġ5j3xDMVg .[q/@]3Xk0^{DN`^DNz\>ϧBN"orZDjMT׬`šՏACc'`I.K;|Ɩ)`v{O 'v@)`FI$-ݐuP];!.Պ8 }e<=gV\L8GL?\ gH/> *UU6ĮSB_Gp,"F(n(1wYn{ lޟ \- y[[ٺ.Tc!0/xJbĪFҮ4hamf4x9ϨoyFۃHhT[:Ι&>|vXx1*cwYÚ 0 .q+0|NLpPqɅ{WmzywFlnQF?yU!Qj(l-d&΁QEPF kָ4hk|dTNKK8d./JF^0=;?^`S&!AmQoDj$]urfʃ9nਫϜ|gS_qkY,hpKxPBAދgD7ŚTb!Ɠ&V! O7iCPm&1,ObF#|eyF/KR~!~>rhsUQ ,ѕϳvl[7͆)M؎]>=i ̏Z])+%ьm}ye^S[[>s ˁn8U=Z8._5k`8xBV ({ f6^d7k25W+G ~#þlg 6_k5܃T Z]j#%d-a`MKYSlVU6YSq[ڲ|v-˲e׃zH> V 5vAT dbHne:z$U󈜅*#<}WqZ9\ )Lu*ԢtQ#?<$)+ eWGCbd+ N"9nĉ9)t´C"N%"0{=\ ;oDRcujzhO܄`޸:Ng[A+q3|5z_Gﯣþ2.< g䂆rlIrgL'&˳$MҴogVtkJ7gOefrT V'GFI%S9mxiH/PʭJձ`s‚FQB"RSwi.2Vϒ>TX'Rm[`KHUSZȚZmE ݻ[ :#.r<)ڗ#j6lsm~C=ш%N!" XY W }d4y9??i ǥ=5!Sh3j m3`z +a0Dhcɠ<OOi;y_B_)3__{>/iL+~ [H3eϨWhRp+sjQL2t\쇩;h"m*.V'xP<]Wv`[WZ o\p~( +k=A>7QG~/z r./tLWu?u%Ԥ,K6Y gS>HCڥh?XsD P] ogeFpjr9Sq5P듀 ':10C0m"\;Ꝧt~VJoOF.)R\;Ք4_b1Tp8Ϛ\ڏ ZᒚJAijQS沋 bKdXnПKA;%圈EDEzD#wUjwK`l3EQ|`!U;\ZGK"5cz7vWҴ7\mcukrf H|*J'% kMz0>Ei8.~i҅U:{sظ <z7pXk5_Nm\OqzΰܝGD"}G{jKeQt( SYEc0 j2PݦѯE5L(JRۼ҂^;:!eS'@ނ~]w>8;lP ʵOH4^N,;grXm;oiJӣ O|E\5@c=ٛzxT)E(oۅGF9[oDbv-㙺 Σ$>406jqF /@=~kW|މ߭`f-sV.Xq?yZ ,+X.Hj~PNz 7otE.iWWϕEbo;~-Om/a+JJ"9q٣ FZ3C ey%5+.S#:7O)-`Ʒ~J}h^Df`_~lm%p<U2zӁ%jM',b;ߗDFv싉e{/ TDhx&嶔$.ef/]!M{8 Gip2[ z`Pw}m|H*/ߔ($cc 2?<7bOoDԳHgSњkxGn\ Ä1&Sq&f|yB r˕.qLvH1HhiFبaăA"DR*D~;ԙKO{Drh)[xs/'Aꝶ1Hrp%[)zv(/,E$QzH-}MMw65 Sxl4ӹк'8(;v4j\sX03˿&kvs;MVs.RLpZjucQmXå@h|MoWs%O;2C Lm8EfJ0L zF*Os ,x{gwwO,]ElSrZ&IÇjФG5O5qbEwFlM DxPޫⶐg$hXJɞ x(ҴF/Qɻ&<7*5ݗF¡wDS͸b[,Wٯ |qN$X|/%g_I_2Cwǿ3LlF vB ,eW,ϡM}i= q!`k>G StKigw+r-o^$A P"S]PkBהJɦˬ|RVL&!8jB>4*Nx`&6;/DB9P/zH$k]|2׬S̢6~B#}Zjx:ӭ8L/%RKE1w/lusdJmtD,G 7t5XA~DKGwuğY8t̉1 {/U PV1Jʳ)':WXPtyY\ XK7 VY#Qxhڴf{b!(#ݬ7I )UZV[ q=`ئZI ]'q_]OVN?zffI|5˅SCϴ­8l4a(ϖiyYr?C(.+d42IMXd8nH@9H> Rׇ!NhG'{7).}= Eyb#yC P9M^S&{ПI5',z1~i/-|&VMI$,w"9c13]޼wsqォ^:g [yC/B]8Kc ~ۯxta*+ooܨ;QM_AD*aRXH&MVВ>] rsqBƌ[yMU}s^KSgf'fem*z.?8\F)̎oDJㅑ~ftiBclB.%-@{ 'A:ٹzי=X,={dN%Վ+PKnz:PR편J[7w.ņE* RzBa0;s,lGaE;l8Lm._m x[AAQ淝.e!/_ IWh?lK_tJƹi'j75-}隈 6 ^LaӦܐgI[<iC7Az{QYGFZzlN>75"]݂8I@|lG!-VFwsh$SF؇VAf4Ѻ@X/wvPŋb C4/0c}P6P7*x40 '^[MF z^KF;G y~5Jw_0^IZPs('L*86Λ'Z9"ړWm$ƈ+ ]C.Sk|_ˆ6t?$VY2Ҿ(epBl,^Bz[KXPiCof#E9*V  ށ0&Iްm>:2 nAp1OR|S7W-~HŽT3t4 K ~l#~t8]yЏƟPKod/G%1G*c!~mZns xj6b$sӝ&7*ߝYp 9= EeRI~ e҉&/ҎaIs',d౗EhB]TT+$+kET-a|5`dN,.`w䶩94 ,nRЍM gٜt ꔀ4_Enjygu5894\&}" *HKQ IK Q@yuy)>nDSh͆BAB4P tabWya1o[P0ѦpFlڨ'껦%kz2!uULфtvt2 ~vQ6KivV"ohHµ L…B%P0PA أd ~{a"j-^[kX3XX.>$ֱ "Sb\1RVaXԿs!@9FgB/K⸲&@40q/:'5IրvE8v)%Puu>14hM2\[ˌ$e`)QJaB4^F:YD~c\ӭ)6Hty(xed(ǫK}:јdHx91g_4\B "^ɾуy5k2Xv:╜'FSfVŕ.QCk^EtBMgME*a E =Gg:sa2Mb.j;rE5s8 (ɫ3%MbMlQ躷z\U,h{ŲFp835\:&Qt˱05dBde ].^1"/pofG=cgn`?6)qf6w U+TE6oCe5%WsSzщaB)]LxPq=]7 :Ug^9CԐ}!81^>In{/;T+'CA/a[(sVPGT=o1ID{X>2R< N!׎DWQq3#oNU/3qt6aQTZu>=ǂ jVݺno{^=-We6+s+CI>z{bIT`FgFy.ftc z'rNK, |Fnt| lp{CJ,7 TLc C= 5KSDMk!Յ.bE_Q~j]`&5BYr{SkWve  4("x+u,-B0'U$}"ޛI%mhay._nTF6 [i@>w(VZv qV/4F55 dhR dԂVjRf6.gva/H ~Ȣ3ԑ>-;o9ĨD-3[UN3ٙBpY]r2= Վh2v^1C@͙E'a}D^_l ㅄ<+1fJ27Hc6~J$Ud?u[2`@~nz A]%ӭ4όzl?s %GJd!>¨U73-ո _`auqakvU1SS$5OIʁ($ $0{so뾨?$89c?T%.v ^t,; V. chUP,2 ԚTiPl>ƺ_'<("nԉ#UL3BgmmE(DnAU'Ȥjmu 4{7B UsQ!Fq+Y|}͗ F?@ :Xr~rfx[Є;>ވ6K6nYWzx_Jx8b̕G_pmeXGC 6A[_5Ũeא=wC=+O! C\a;q7⑰5<zViʒ'ҏ8c u ͱī$k/]Eu,99'< LեSR'|vi?~ݽ7܅6Wpl?v ToB4 S zl1zD ʙ/ZYY xS=b `V-94դT(&Y_bG+{`kp0NRCeϟr_ВI)t{At3L,IU>)*I؜v?`2%Cb(w4)<&L','(:z!cX3IE[^(Y6g iI:\/&γgJm ml"_*0߻`wV*ji;HQV jkufNq0e@?H:v^+g4Оwre|}IE 7#m7)Co|=c "~Ö,<)fTcKɃ^,3#XT]f0 Uq*M!):ůC&Q ՄGH;'֎s7bݶ,\>F]t~ fuּnYA ucʪ1͸2.dyqw)hQH /`G L@\$܁eChEBn oO {ܜA -ds8ض5S8yۭh άlN=4fEz/^ƃWwPHH7yO Od?#) ej!HX*k W`7L_Ai*5q("Ř5PXj64~3~;/N*Ng&OA,TSFVMf@lSpUևpUP=,#=36WS#R62ǒ\$Σ) 佑Vή}.RuDQP g`ۚ 5Jz[0\iV5b㢕S{M ! 6؂`8ߥba]!ºʻlMFRV~6WV׳5饦7ﭻCRD;=e"\YK&P\TK5ŅNrXuɦE Z_$B`  qkQ ;b"ef8@]`قJHRI7#$<9l890RbS* puhd}ԭ?cEi=5f1j q[4/X^F$a'.{x8w(؄_}pfWpQk =PHHx2L &Q¦݀ JRdRĨicd)id x$=|e;ˤruh~Ȫ(ϋ#R_dS;YfW;4 /ez V- '/yus5ީCM/B]2J oJ:I4\+86MA@|0ۑ#nLi <0C,=.Z>^_ YV'= A#a(NC`;{u}B~qL\5V":Gwk;L%db/VLQ؛Moj»?=Is܏+3NWFz*IGrbe|kB!t'[Z, ZT+7Tr r,*HQ^qupb5N˔Nz,1C%p"Y~f>3g'@c43='" *F vMAI Tj͘>Tߢ8C1Icin#4Y`4?0<@ [7(!|:2KqFipѥղ]Mn6Э sqwU/_+Y=Sl]Nm& L SCASܫǙ5nZ'qrF6JZq~uחS=I-,o?&o}pQ)>4hkގx)_$^a+Mm!“Գ0ŝm({}U)t3N9!&5;1Nx izz*~nGӶ6{62lKϝP(#!f;$t>OʳNK:9}]D`#`Qq?lWX!Z`#dF3 З%V>_b`by:M]?$sP|`3)^n!X(nً9&'4M"@SڪX Ndx3kvT> EM>bglspj&x$\;x{Z[ӶIS7Ry9BNe^eҼ^ݑJ{2j>#yylrtHt//t qcS24{xZxzyNIAOV̤+w?zG0-[0(X*R{H7=}*WuJYU;Gkأ8' pГAR4hj"<0㯖&Im|MGiLW5ܺ NTiNDO TLe|Pޯ_.2~ZF( Ԥ%")ܜ.goiD\Cu/[HX(V^rMGBߖL=a0spj|6"4")QFd2$\|jצm޼Ȟn!g*z4S0mޮ6a^;x .I(.2igVi `[G`}cPsLuk[ua} Te fۑ_e6+; ;] eHoǞ׿dLDPceq@&,0UBKI"EI3)䭰U Oc.F%ƣp?j3 l#)7{c4]ݨQ #X8>cnJi*(Ex 0Viy{kq 2dyY\!"oMÍIv@CgwӐ/,-Fp&@l]A#{Ԍ/= 'Šq8wp M3;`=uQq?K8xx~j>Cf*e(k N4Á”JC:Gm:wY5m4ewIxMiσQO) ]h?Ċ:N8$:Zp9gttZcxe݁f>V񊚘<Y,n[EB&g%~1iEz|{_Y`9

Cԉy^ż.{\0-ꪥc*~@W IONtY:g*kwrHQͶH`'q_$|A9Bx}7Oj]D_G3! Tq`DeG&O(s7]40@\SЃ4LctC6=x _f`"v2eebɋPQޅ_&)Qw?V[z[mB[`cnPyr_.)3J[ NU)&T(dǑܧ;1&dM(dRm]h O4M#C^ P,y W*VC@% MDf&ŭ-Ke8 UcS.<9 ނ8؜H 䃦1P>reP|"906;:ӀtmAOYT[$8Y >j>4}]fM8ԻBa#cjؓe${6_4-P$4Ǐc~,Z}Jz+l^' l te+KFFݽ崼;ejưuv:YI=YiL,̜$ㅳ96\B+kP(m=H5p.^ GJ Zi}F!CdOU_lS}P%a rK5A|_*2!bpCF'reu~( )M012z[T&Gqÿ+*CϤL%x$Dܾ8Dem!O5+d^ɤ''GT6ޖ<C9du]!c~j=7f_y]Ş 's]Olj8R-rj$U4iG/q!p<љDA=P4.Aomj5_P(F(̲5GTxH8Du,\#wf8J&,$37V͵ H\)a\Q:FI[gpvV~X !.]umfENk#;Tfo(xWxh rKPʃ s-)?|܅37v[=سF0rBpD)\4xv33'Dg"Ub"5gYͤJv?mkI`^D;uI;2z3d3ϠY8Qv|[^)1h>[tO*=N&o=! p+9۩VLBuel]B>s'_.'uI::f1YlYȐ%` Ӣ0xIlVw1u-rj&4F3b2J;7 }&kE#Z`x e>{LԐ߮z ՅFڅg]i/c)y Ku7FF|6ܐ"`t"%u%7b/C]XBiќwFjNG)U,ލV9v&px!qW\9H1,Zac>1̚s1ɩ(:):h~O)|6'%W,%R"P"nt„:9)&p Iћ3 SDŽ-ِ i0 &`TWM'.B!g?M(k9DU^"MNnmSg&tx[%HzXg$ 8f*joF-X|6'>fU 5qb(XT.=Ppqb T[9GX*8 $ U^ǬAsbŕ9(bБfd̥:ʅFF/GdTo26[J4 thId_nT8ɾʶ`% C9;h;w!eb]7\\o>9M*i7Gn`UOMI,R["/POY*"*G -E',Qcȩ/x?DB)S@itDִOժo/=%os= |>=<~L-౺W/!1ѻ +"_CV40 ) L S` 1#ڭ'豃RtCwd؊W$bQ,f.'&ĶBsD-u*|ÐR1*ڢLISU.pHH~02Yf,b*rc2^g؞zGXpwHVCj?:+9D],v툰TR'srԇD%*yIq!R3ySvxwOy:'>I{D4W1kG:7\cQÃϽ_ɰ|vk,QOޕIAsk'MNenÁAJ97`\~ 7+.p mҭd(|M7a#( w\fJ::TE/$鯛Ј7uD 0*S?NAoo 6If#@/dv _7hS.''.ZW vL53Z+3%)<A[2x V%ҩek,%,T$__ ƴꏴ`$$o I~>s\O`/[csn2 KLZY(I+at,+O#բ017QH胧~/#cl0jЛh1RZt0'ܒJ? ZmySVqO%17]ËQi{-بP%ì_k)=Y. *,j#L@kmdb۞QQBWŃpk|eLn|,Ǭ>P"8j[GߛQ(z!KJ8i * .Mj!g7V8b!9.ugv~]%W~@kp)RP]Fv^"t;ښ'pHWM1Вj{2l"x)dkCLJW'H_Vg h'YDuUUy V}q*Hk`dԦ\V9(Mv ˊe$}<xtoW2`jF vvq'7uwt`[ؤNv@!(elQ9ώ57kMXb>弰e,ZLuBUDݽ0)ՙw?A{Q^ճ]_vNA&mV tlWCENE2TOVBڸ*Iٟy#]oQ=a͉- 58G:]\Wo =n'@N61k۴cd}oF=&TOafFn-,mcc~@Sf{1&uT?<o: !(tMZ"CYCTwj6U9> (ݏ3V byk{M2Ek#ˬPh)^9{LvzJ~iXd-5I%茀q9XrR Q?oQ+w5-4bdF%:IJ62#/#DjRQt1H &tRC3̛ 9˨guXw:߂)x ,&'z(%n7&;8Mb^Iv-B lV2a{=.֞ H^i>ix'k, oRy/2_9|?͌v r4*=V~Y+Z<3"2Ё ,@q0$ͤ9GZ(.Ck֕ L:h|Հҟ6,c%p`$\N:'3U|[|mf@Ub=pцFe8B3/08s.Zub'(Abڏ -B.@0N-ޟ4fώZ-_oU o7;_L ؠy;qW%:w4F4N]6"' !tߔWZ5j緳0NX7#j"itK3U]/z-ެ f29#<HƆL-vf pX) d՟rg(_+ "vvbl4H2ő\0#7&H:"|Rc8hz(| U^A_ Q%4g\|!%C U 7= ֗܇a|/̾G6<;+T?J9s|n8v ,ͅeuLMZ+U vX$ci^ i }ƒ{OFښ$`iz/<=ܴA qC w0ʫYyVe۝T4 vtv38\*zS +:_J֫u8H8w/XN@se][(UyJ@ ԩ +=u B _vbV-Zd1c`)ּ:v=bM00NvW*E;VLtTf)νW߬\ ms͊1_GaDsҹ?\ɭYԥU[\ӆ8?Sʍ^SaqhP}K5s?A"0R`_ {;5ElN#)Fr|0c4ie|H`tN.Z% kL#'`G 0 .F L˜@qgm &S'>&pBz|U*#pKv4̷P ~0ܿnh[quIV;E) F˴{tx=!<MS@g8U5 ~@9)}YZ&M_I[\'JDr: MT!B}[_}ߗnAmXK͓{ CG$ l>L4Nѵ@7bp Uad54)-e}q*(^e_z~R0hZZeBEA*iESe湷ɭ=ӎ?!ew ?1%6N=}(6F0ތݚ!e(&Hc֘Fupϊɋ謙-w"< ؉.Q#IO'y%j/tdⅠ:j)^$(\ęAZq)s(ey2*;$=8,2gs봘e;2\w$$[#[L eM d!ZI)^sl') OdIbXbZ ي_ț^!dOn"pIJ.UhK'.J~RcM5kn+A+^h?*D0ƝE&BSZPuݚ4Pjl)>CVwetZuT\q#sH&@`[ȧБP/xM WBԹu`$}Ϧ*O}m~U$ß8iRxKǖ=Y@qN'y3&KgĆDz2i:F(s OwXVA5aƌnH{K^hYXz& \K@ʰ*=)'#բ9Ub=aޒvnZc`\ˢeKTݝy廁  bDm&5';?+iW3kc낚iz}!7j Iľx=2 YM ¤@:8ʿhF3eq Wf25EW(LWԑ0pZ@p4mbF!Q rU`~v*JčaUCCQ@Abb.pJIēĢ 4 YZ