nscd-2.31-9.6.1 >  A aOp9|u/KXTxab:Φw{Sn oN4逗 zdb/"vh\U!Q -h0Ƽ*C}8%|Soedۢ|mer;Ds~֭hs՜SK0og6L, bKQ-򏢾46(|Cư->(w Ce5 *Wv_:D~}pա<>pI?d   .  CIO > ;   @ O l>X#X#J#(89: Z=>?$@,B4F:GPH͌IXYZ [\]T^ b>cdgelfolquЄv wxy@zՐՠդժCnscd2.319.6.1Name Service Caching DaemonNscd caches name service lookups and can dramatically improve performance with NIS, NIS+, and LDAP.aK9s390zp38SUSE Linux Enterprise 15SUSE LLC GPL-2.0-or-laterhttps://www.suse.com/System/Daemonshttp://www.gnu.org/software/libc/libc.htmllinuxs390xgetent group nscd >/dev/null || /usr/sbin/groupadd -r nscd getent passwd nscd >/dev/null || /usr/sbin/useradd -r -g nscd -c "User for nscd" -s /sbin/nologin -d /run/nscd nscd if [ -x /usr/bin/systemctl ]; then test -n "$FIRST_ARG" || FIRST_ARG="$1" [ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || : for service in nscd.service ; do sysv_service=${service%.*} if [ ! -e /usr/lib/systemd/system/$service ] && [ ! -e /etc/init.d/$sysv_service ]; then mkdir -p /run/systemd/rpm/needs-preset touch /run/systemd/rpm/needs-preset/$service elif [ -e /etc/init.d/$sysv_service ] && [ ! -e /var/lib/systemd/migrated/$sysv_service ]; then /usr/sbin/systemd-sysv-convert --save $sysv_service || : mkdir -p /run/systemd/rpm/needs-sysv-convert touch /run/systemd/rpm/needs-sysv-convert/$service fi done fi if [ -x /usr/bin/systemctl ]; then test -n "$FIRST_ARG" || FIRST_ARG="$1" [ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || : if [ "$YAST_IS_RUNNING" != "instsys" ]; then /usr/bin/systemctl daemon-reload || : fi for service in nscd.service ; do sysv_service=${service%.*} if [ -e /run/systemd/rpm/needs-preset/$service ]; then /usr/bin/systemctl preset $service || : rm "/run/systemd/rpm/needs-preset/$service" || : elif [ -e /run/systemd/rpm/needs-sysv-convert/$service ]; then /usr/sbin/systemd-sysv-convert --apply $sysv_service || : rm "/run/systemd/rpm/needs-sysv-convert/$service" || : touch /var/lib/systemd/migrated/$sysv_service || : fi done fi [ -z "${TRANSACTIONAL_UPDATE}" -a -x /usr/bin/systemd-tmpfiles ] && /usr/bin/systemd-tmpfiles --create /usr/lib/tmpfiles.d/nscd.conf || : # Previously we had nscd.socket, remove it test -x /usr/bin/systemctl && /usr/bin/systemctl stop nscd.socket 2>/dev/null || : test -x /usr/bin/systemctl && /usr/bin/systemctl disable nscd.socket 2>/dev/null || : # Hard removal in case the above did not work rm -f /etc/systemd/system/sockets.target.wants/nscd.socket exit 0 test -n "$FIRST_ARG" || FIRST_ARG="$1" if [ "$FIRST_ARG" -eq 0 -a -x /usr/bin/systemctl ]; then # Package removal, not upgrade /usr/bin/systemctl --no-reload disable nscd.service || : ( test "$YAST_IS_RUNNING" = instsys && exit 0 test -f /etc/sysconfig/services -a \ -z "$DISABLE_STOP_ON_REMOVAL" && . /etc/sysconfig/services test "$DISABLE_STOP_ON_REMOVAL" = yes -o \ "$DISABLE_STOP_ON_REMOVAL" = 1 && exit 0 /usr/bin/systemctl stop nscd.service ) || : fi test -n "$FIRST_ARG" || FIRST_ARG="$1" if [ $1 -eq 0 ]; then # Package removal for service in nscd.service ; do sysv_service="${service%.*}" rm "/var/lib/systemd/migrated/$sysv_service" || : done fi if [ -x /usr/bin/systemctl ]; then /usr/bin/systemctl daemon-reload || : fi if [ "$FIRST_ARG" -ge 1 ]; then # Package upgrade, not uninstall if [ -x /usr/bin/systemctl ]; then ( test "$YAST_IS_RUNNING" = instsys && exit 0 test -f /etc/sysconfig/services -a \ -z "$DISABLE_RESTART_ON_UPDATE" && . /etc/sysconfig/services test "$DISABLE_RESTART_ON_UPDATE" = yes -o \ "$DISABLE_RESTART_ON_UPDATE" = 1 && exit 0 /usr/bin/systemctl try-restart nscd.service ) || : fi fi exit 0 X A큤A큤A큀aJvaJvaK(aK(aJvaJvaJvaJaJvaJvaK(aK(aK(aK(aK(e2cdfafd373d24fab07018d0e95dd49510ea6c992b7be2b0611ab23bbc2750b579fe74962fbce2fa9b2a4b92f693b2fd42cbc2ed331fae268de7104879a72df879c9cec5dd2414dcb76d11e75903aa6fd9b7785c897cb9f853edcb140a71b7790bf07bb22d03b9fbe5dd8718a2a71858c834211aaf72ac8f5bdc4994ad9345fb/sbin/service@YYYYYYYrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootglibc-2.31-9.6.1.src.rpmconfig(nscd)glibc:/usr/sbin/nscdnscdnscd(s390-64) @@@@@@@@@@@@@@@@@@@@    /bin/sh/bin/sh/bin/sh/bin/shconfig(nscd)glibclibaudit.so.1()(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.10)(64bit)libc.so.6(GLIBC_2.17)(64bit)libc.so.6(GLIBC_2.2)(64bit)libc.so.6(GLIBC_2.2.2)(64bit)libc.so.6(GLIBC_2.2.4)(64bit)libc.so.6(GLIBC_2.3)(64bit)libc.so.6(GLIBC_2.3.2)(64bit)libc.so.6(GLIBC_2.3.4)(64bit)libc.so.6(GLIBC_2.4)(64bit)libc.so.6(GLIBC_2.7)(64bit)libc.so.6(GLIBC_2.8)(64bit)libc.so.6(GLIBC_2.9)(64bit)libcap.so.2()(64bit)libpthread.so.0()(64bit)libpthread.so.0(GLIBC_2.2)(64bit)libpthread.so.0(GLIBC_2.3.2)(64bit)libpthread.so.0(GLIBC_2.3.3)(64bit)libselinux.so.1()(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)shadowsystemdsystemdsystemdsystemd2.31-9.6.12.313.0.4-14.6.0-14.0-15.2-14.14.3a@a0`ݮ@`a@`H`H`?z@`@_T__/@_O@^)@^@^{G^g@^`^U @^&^]@]7@]|@]@]:\@\\]@\@\|\~d[[ͻ[$@[t[r@[qr[^[!@[@Z@ZJ@Z2@ZH@ZZ Z}@ZxG@Zp^@Zp^@Ze@ZKt@Z1@Z/Z@Y@Y@YYܶ@YdY@Y@YY@Y@Y@YW@Y@YJYYw2Yp@YJ_YA%@Y.@Y, @Y, @Y$$@Y"XۡX@XWw@W@W@Ws@Wk@Wj}WYZ@WL+@W3W0{WW V@V@V޾Vm@VIV@VŲ@V`VVV@VLh@V.V$@VVZV VUYU|@UAUȒ@UU@UU4@UUv@U%@U/@U:T@TPTgTܕTء@TO@schwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.derguenther@suse.comrguenther@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.dematz@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.dematz@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.dematz@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.dejslaby@suse.comschwab@suse.deschwab@suse.deschwab@suse.deidonmez@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.denormand@linux.vnet.ibm.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.demeissner@suse.comschwab@suse.deschwab@suse.demgorman@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.de- 0001-s390x-Align-child-stack-while-clone.-BZ-27968.patch, 0002-S390-Optimize-__memcpy_z196.patch, 0003-S390-Optimize-__memset_z196.patch, 0004-S390-Sync-HWCAP-names-with-kernel-by-adding-aliases-.patch, 0005-S390-Add-new-hwcap-values.patch, 0006-S390-Add-PCI_MIO-and-SIE-HWCAPs.patch: [15sp4 FEAT] GNU2007 - GLIBC: Support for new IBM Z Hardware (bsc#1191592, jsc#IBM-869)- mq-notify-use-after-free.patch: Use __pthread_attr_copy in mq_notify (CVE-2021-33574, bsc#1186489, BZ #27896)- wordexp-param-overflow.patch: wordexp: handle overflow in positional parameter number (CVE-2021-35942, bsc#1187911, BZ #28011)- s390-memmove-ifunc-selector-arch13.patch: S390: Also check vector support in memmove ifunc-selector (bsc#1184035, BZ #27511)- Update glibc-2.31-HTM-vzeroupper.diff with a AVX-SSE transition fix.- Add glibc-2.31-HTM-vzeroupper.diff to avoid VZEROUPPER in the AVX2 accelerated string routines which cause HTM transaction aborts. Instead use EVEX or SSE. (bsc#1181403)- nscd-netgroupcache.patch: nscd: Fix double free in netgroupcache (CVE-2021-27645, bsc#1182733, BZ #27462)- gconv-assertion-iso-2022-jp.patch: gconv: Fix assertion failure in ISO-2022-JP-3 module (CVE-2021-3326, bsc#1181505, BZ #27256)- sysvipc-sem-stat-any.patch: sysvipc: Fix SEM_STAT_ANY kernel argument pass (bsc#1180557, BZ #26637)- aarch64-getauxval.patch: aarch64: Accept PLT calls to __getauxval within libc.so (bsc#1167939) - iconv-redundant-shift.patch: iconv: Accept redundant shift sequences in IBM1364 (CVE-2020-27618, bsc#1178386, BZ #26224) - iconv-ucs4-loop-bounds.patch: iconv: Fix incorrect UCS4 inner loop bounds (CVE-2020-29562, bsc#1179694, BZ #26923) - printf-long-double-non-normal.patch: x86: Harden printf against non-normal long double values (CVE-2020-29573, bsc#1179721, BZ #26649) - get-nprocs-cpu-online-parsing.patch: Fix parsing of /sys/devices/system/cpu/online (bsc#1180038, BZ #25859)- power10-support.patch: Add support for POWER10 (jsc#SLE-13520) - iconv-option-parsing.patch: Rewrite iconv option parsing (CVE-2016-10228, bsc#1027496, BZ #19519)- Update to glibc 2.31 - glibc-2.14-crypt.diff, crypt_blowfish-const.patch, crypt_blowfish-1.2-sha.diff, crypt_blowfish-gensalt.patch, crypt_blowfish-1.2-hack_around_arm.diff, glibc-nodate.patch, powerpc-elision-enable-envvar.patch, s390-elision-enable-envvar.patch, crt-nocompress-debug-sections.patch, resolv-context-leak.patch, dl-runtime-resolve-opt-avx512f.patch, libpthread-compat-wrappers.patch, math-c++-compat.patch, remove-nss-nis-compat.patch, eh-frame-zero-terminator.patch, ld-so-hwcap-x86-64.patch, assert-pedantic.patch, getaddrinfo-errno.patch, resolv-conf-oom.patch, dynarray-allocation.patch, nearbyint-inexact.patch, nss-compat.patch, nscd-libnsl.patch, malloc-tcache-leak.patch, falkor-memcpy-memmove.patch, aarch64-cpu-features.patch, nss-files-large-buffers.patch, sysconf-uio-maxiov.patch, glob-tilde-overflow.patch, dl-runtime-resolve-xsave.patch, spawni-assert.patch, x86-64-dl-platform.patch, glob64-s390.patch, tst-tlsopt-powerpc.patch, powerpc-hwcap-bits.patch, malloc-tcache-check-overflow.patch, dl-init-paths-overflow.patch, fillin-rpath-empty-tokens.patch, getcwd-absolute.patch, memalign-overflow.patch, stack-guard-size-accounting.patch, libgcc-rtld-now.patch, res-send-enomem.patch, glibc-fix-avx512-mempcpy.patch, i386-memmove-sse2-unaligned.patch, realpath-ssize-max-overflow.patch, localtime-2039.patch, math-remove-slow-path.patch, aarch64-hwcap-atomics.patch, glibc-fix-aarch64-build.diff, absolute-symbols.patch, x86-haswell-string-flags.patch, pthread-cond-broadcast-waiters-after-spinning.patch, mman-map-sync.patch, mman-linux-map-shared-validate.patch, nptl-setxid-error.patch, pthread-mutex-trylock-barrier.patch, getaddrinfo-parse-ipv4-address.patch, japanese-era-name-may-2019.patch, force-elision-race.patch, regex-read-overrun.patch, regex-parse-reg-exp.patch, 0001-S390-Add-configure-check-to-detect-z10-as-mininum-ar.patch, 0002-S390-Use-hwcap-instead-of-dl_hwcap-in-ifunc-resolver.patch, 0003-S390-Unify-31-64bit-memcpy.patch, 0004-S390-Refactor-memcpy-mempcpy-ifunc-handling.patch, 0005-S390-Remove-s390-specific-implementation-of-bcopy.patch, 0006-S390-Use-memcpy-for-forward-cases-in-memmove.patch, 0007-S390-Add-configure-check-to-detect-z13-as-mininum-ar.patch, 0008-S390-Add-z13-memmove-ifunc-variant.patch, 0009-S390-Add-z13-strstr-ifunc-variant.patch, 0010-S390-Add-z13-memmem-ifunc-variant.patch, 0011-S390-Cleanup-ifunc-resolve.h.patch, 0012-S390-Mark-vx-and-vxe-as-important-hwcap.patch, 0013-S390-Add-new-hwcap-values-for-new-cpu-architecture-a.patch, 0014-S390-Add-configure-check-to-detect-support-for-arch1.patch, 0015-S390-Add-arch13-memmove-ifunc-variant.patch, 0016-S390-Add-arch13-strstr-ifunc-variant.patch, 0017-S390-Add-arch13-memmem-ifunc-variant.patch, prefer-map-32bit-exec.patch, s390-strstr-page-boundary.patch, ppc-tle-htm-nosc.patch, posix-Add-internal-symbols-for-posix_spawn-interface.patch, glibc-2.29-posix-Use-posix_spawn-on-popen.patch, backtrace-powerpc.patch, pthread-rwlock-pwn.patch, manual-memory-protection.patch, ldbl-96-rem-pio2l.patch, dl-sort-maps.patch, dlopen-filter-object.patch, glob-use-after-free.patch, nptl-setxid-race.patch, nscd-senfile.patch, ldd-system-interp.patch, abort-no-flush.patch, fnmatch-collating-elements.patch, nss-files-long-lines-2.patch, iconv-reset-input-buffer.patch, nscd-prune.patch, syslog-locking.patch: Removed. - long-double-alias.patch, glibc-nsswitch-usr.diff, euc-kr-overrun.patch, riscv-syscall-clobber.patch, nscd-gc-cycle.patch: Added.- nscd-senfile.patch: Fix concurrent changes on nscd aware files (bsc#1171878, BZ #23178) - nscd-prune.patch: nscd: bump GC cycle during cache pruning (bsc#1171878, BZ #26130) - syslog-locking.patch: Correct locking and cancellation cleanup in syslog functions (bsc#1172085, BZ #26100)- nptl-setxid-race.patch: nptl: wait for pending setxid request also in detached thread (bsc#1162930, BZ #25942)- glob-use-after-free.patch: Fix use-after-free in glob when expanding ~user (CVE-2020-1752, bsc#1167631, BZ #25414)- dl-sort-maps.patch, dlopen-filter-object.patch: Allow dlopen of filter object to work (bsc#1166106, BZ #16272)- ldbl-96-rem-pio2l.patch: Avoid ldbl-96 stack corruption from range reduction of pseudo-zero (CVE-2020-10029, bsc#1165784, BZ #25487)- pthread-rwlock-pwn.patch: Fix rwlock stall with PREFER_WRITER_NONRECURSIVE_NP (bsc#1164505, BZ #23861) - manual-memory-protection.patch: manual: Document mprotect and introduce section on memory protection (bsc#1163184)- backtrace-powerpc.patch: Fix array overflow in backtrace on PowerPC (CVE-2020-1751, bsc#1158996, BZ #25423)- posix-Add-internal-symbols-for-posix_spawn-interface.patch, glibc-2.29-posix-Use-posix_spawn-on-popen.patch: Use posix_spawn on popen (bsc#1149332, BZ #22834)- ppc-tle-htm-nosc.patch: powerpc: Fix syscalls during early process initialization (SLE-8348, BZ #22685)- s390-strstr-page-boundary.patch: S390: Fix handling of needles crossing a page in strstr z15 ifunc-variant (bsc#1157893, BZ #25226)- prefer-map-32bit-exec.patch: rtld: Check __libc_enable_secure before honoring LD_PREFER_MAP_32BIT_EXEC (CVE-2019-19126, bsc#1157292, BZ [#25204])- GNU1815 - Hardware support in toolchain (bsc#1151582) 0001-S390-Add-configure-check-to-detect-z10-as-mininum-ar.patch 0002-S390-Use-hwcap-instead-of-dl_hwcap-in-ifunc-resolver.patch 0003-S390-Unify-31-64bit-memcpy.patch 0004-S390-Refactor-memcpy-mempcpy-ifunc-handling.patch 0005-S390-Remove-s390-specific-implementation-of-bcopy.patch 0006-S390-Use-memcpy-for-forward-cases-in-memmove.patch 0007-S390-Add-configure-check-to-detect-z13-as-mininum-ar.patch 0008-S390-Add-z13-memmove-ifunc-variant.patch 0009-S390-Add-z13-strstr-ifunc-variant.patch 0010-S390-Add-z13-memmem-ifunc-variant.patch 0011-S390-Cleanup-ifunc-resolve.h.patch 0012-S390-Mark-vx-and-vxe-as-important-hwcap.patch 0013-S390-Add-new-hwcap-values-for-new-cpu-architecture-a.patch 0014-S390-Add-configure-check-to-detect-support-for-arch1.patch 0015-S390-Add-arch13-memmove-ifunc-variant.patch 0016-S390-Add-arch13-strstr-ifunc-variant.patch 0017-S390-Add-arch13-memmem-ifunc-variant.patch- regex-parse-reg-exp.patch: ERE '0|()0|\1|0' causes regexec undefined behavior (CVE-2009-5155, bsc#1127223, BZ #18986) - regex-read-overrun.patch: regex: fix read overrun (CVE-2019-9169, bsc#1127308, BZ #24114)- crt-nocompress-debug-sections.patch: Don't compress debug sections in crt*.o files (bsc#1123710)- ldconfig-concurrency.patch: Avoid concurrency problem in ldconfig (bsc#1117993, BZ #23973)- force-elision-race.patch: Fix race in pthread_mutex_lock while promoting to PTHREAD_MUTEX_ELISION_NP (bsc#1131330, BZ #23275)- japanese-era-name-may-2019.patch: ja_JP locale: Add entry for the new Japanese era (bsc#1100396, BZ #22964)- pthread-mutex-trylock-barrier.patch: pthread_mutex_trylock does not use the correct order of instructions while maintaining the robust mutex list due to missing compiler barriers (bsc#1130045, BZ #24180) - getaddrinfo-parse-ipv4-address.patch: getaddrinfo: Fully parse IPv4 address strings (CVE-2016-10739, bsc#1122729, BZ #20018)- mman-map-sync.patch: Add MAP_SYNC from Linux 4.15 (bsc#1126590) - mman-linux-map-shared-validate.patch: Add MAP_SHARED_VALIDATE from Linux 4.15 (bsc#1126590) - nptl-setxid-error.patch: nptl: Preserve error in setxid thread broadcast in coredumps (bsc#1063675, BZ #22153)- x86-haswell-string-flags.patch: Fix Haswell CPU string flags (bsc#1114984, BZ #23709) - pthread-cond-broadcast-waiters-after-spinning.patch: Fix waiters-after-spinning case (bsc#1114993, BZ #23538)- absolute-symbols.patch: Don't relocate absolute symbols (bsc#1112570, BZ [#19818])- glibc-fix-aarch64-build.diff: Fix build on aarch64 with binutils newer than 2.30.- Add glibc-locale-base subpackage containing only C, C.UTF-8 and en_US.UTF-8 locales (fate#326551)- aarch64-hwcap-atomics.patch: aarch64: add HWCAP_ATOMICS to HWCAP_IMPORTANT (fate#325962)- math-remove-slow-path.patch: Remove slow paths from math routines (fate#325815, fate#325879, fate#325880, fate#325881, fate#325882)- localtime-2039.patch: Fix year 2039 bug for localtime with 64-bit time_t (bsc#1102526, BZ #22639)- i386-memmove-sse2-unaligned.patch: Fix SSE2 memmove issue when crossing 2GB boundary (CVE-2017-18269, bnc#1094150, BZ #22644) - realpath-ssize-max-overflow.patch: Fix overflow in path length computation (CVE-2018-11236, bsc#1094161, BZ #22786) - glibc-fix-avx512-mempcpy.patch: replace with upstream version- Use %license also for COPYING and COPYING.LIB (bsc#1082318)- Add glibc-fix-avx512-mempcpy.patch as quick fix for mempcpy buffer overwrite in memmove-avx512-no-vzeroupper.S for Knights Landing CPUs (CVE-2018-11237, bnc#1094154, bnc#1092877, BZ #23196)- Readd nis to netgroup and automount nss config (bsc#1088860)- res-send-enomem.patch: Fix crash in resolver on memory allocation failure (bsc#1086690, BZ #23005)- Use %license (bsc#1082318)- stack-guard-size-accounting.patch: Fix stack guard size accounting (bsc#1074208, BZ #22637) - libgcc-rtld-now.patch: Open libgcc.so with RTLD_NOW during pthread_cancel (bsc#1074208, BZ #22636)- Mark source0 as nosource in non-main source rpms- Add systemtap-headers to BuildRequires. - Add --enable-systemtap to configure arguments. (fate#324969, bsc#1073636)- memalign-overflow.patch: Fix integer overflows in internal memalign and malloc functions (CVE-2018-6485, CVE-2018-6551, bsc#1079036, BZ #22343, BZ #22774)- fix-locking-in-_IO_cleanup.patch: Skip locked files during exit (bsc#1070491, BZ #15142)- Avoid duplicate source rpm- getcwd-absolute.patch: make getcwd(3) fail if it cannot obtain an absolute path (CVE-2018-1000001, bsc#1074293, BZ #22679)- dl-init-paths-overflow.patch: Count components of the expanded path in _dl_init_path (CVE-2017-1000408, CVE-2017-1000409, bsc#1071319, BZ [#22607], BZ #22627) - fillin-rpath-empty-tokens.patch: Check for empty tokens before dynamic string token expansion (CVE-2017-16997, bsc#1073231, BZ #22625)- tst-tlsopt-powerpc.patch: fix tst-tlsopt-powerpc (bcn#1070419) - powerpc-hwcap-bits.patch: Update HWCAP for powerpc (bnc#1070420) - malloc-tcache-check-overflow.patch: Fix integer overflow in malloc when tcache is enabled (CVE-2017-17426, bnc#1071479, BZ #22375)- Add _multibuild- glob64-s390.patch: no compat glob64 on s390 - noversion.tar.bz2: remove unused source- x86-64-dl-platform.patch: Don't set GLRO(dl_platform) to NULL (BZ #22299)- spawni-assert.patch: Fix improper assert in Linux posix_spawn (BZ [#22273])- math-c++-compat.patch: Add more C++ compatibility (BZ #22296) - malloc-tcache-leak.patch: Fix tcache leak after thread destruction (BZ [#22111]) - falkor-memcpy-memmove.patch: Optimized implementation of memcpy/memmove for Qualcomm Falkor - aarch64-cpu-features.patch: Fix glibc.tune.cpu tunable handling - nss-files-large-buffers.patch: Avoid large buffers with many host addresses (BZ #22078) - sysconf-uio-maxiov.patch: Fix missing definition of UIO_MAXIOV (BZ [#22321]) - glob-tilde-overflow.patch: Fix buffer overflows with GLOB_TILDE (CVE-2017-15670, CVE-2017-15671, CVE-2017-15804, bsc#1064569. bsc#1064580, bsc#1064583, BZ #22320, BZ #22325, BZ #22332) - dl-runtime-resolve-xsave.patch: Use fxsave/xsave/xsavec in _dl_runtime_resolve (BZ #21265)- nscd-libnsl.patch: Remove reference to libnsl from nscd (bsc#1062244)- Drop glibc-obsolete - glibc-2.3.90-noversion.diff: remove - reinitialize-dl_load_write_lock.patch: remove- nss-compat.patch: Move nss_compat from nis to nss subdir and install it unconditionally - nsswitch.conf: switch back to compat for passwd, group, shadow- assert-pedantic.patch: Suppress pedantic warning caused by statement expression (BZ #21242, BZ #21972) - math-c++-compat.patch: Add more C++ compatibility (BZ #22235) - getaddrinfo-errno.patch: Fix errno and h_errno handling in getaddrinfo (BZ #21915, BZ #21922) - resolv-conf-oom.patch: Fix memory handling in OOM situation during resolv.conf parsing (BZ #22095, BZ #22096) - dynarray-allocation.patch: Fix initial size of dynarray allocation and set errno on overflow error - nearbyint-inexact.patch: Avoid spurious inexact in nearbyint (BZ #22225)- math-c++-compat.patch: add more C++ compatibility (BZ #22146)- Remove rpcsvc/yppasswd.* from glibc-devel - ld-so-hwcap-x86-64.patch: add x86_64 to hwcap (bsc#1056606, BZ #22093)- eh-frame-zero-terminator.patch: Properly terminate .eh_frame (BZ #22051)- Disable obsolete libnsl and NIS support - remove-nss-nis-compat.patch: remove nis and compat from default NSS configs - nsswitch.conf: Likewise- math-c++-compat.patch: Do not use __builtin_types_compatible_p in C++ mode (BZ #21930)- Add iconvconfig to baselibs.conf (bsc#1051042)- resolv-context-leak.patch: Fix leaks of resolver contexts - dl-runtime-resolve-opt-avx512f.patch: Use _dl_runtime_resolve_opt only with AVX512F (BZ #21871) - libpthread-compat-wrappers.patch: Don't use IFUNC resolver for longjmp or system in libpthread (BZ #21041)- Update to glibc 2.26 * A per-thread cache has been added to malloc * Unicode 10.0.0 Support * Improvements to the DNS stub resolver * New function reallocarray, which resizes an allocated block (like realloc) to the product of two sizes, with a guaranteed clean failure upon integer overflow in the multiplication * New wrappers for the Linux-specific system calls preadv2 and pwritev2 * posix_spawnattr_setflags now supports the flag POSIX_SPAWN_SETSID, to create a new session ID for the spawned process * errno.h is now safe to use from C-preprocessed assembly language on all supported operating systems * On ia64, powerpc64le, x86-32, and x86-64, the math library now implements 128-bit floating point as defined by ISO/IEC/IEEE 60559:2011 (IEEE 754-2008) and ISO/IEC TS 18661-3:2015 * The synchronization that pthread_spin_unlock performs has been changed to now be equivalent to a C11 atomic store with release memory order to the spin lock's memory location * The DNS stub resolver no longer performs EDNS fallback * res_mkquery and res_nmkquery no longer support the IQUERY opcode * The _res_opcodes variable has been removed from libresolv * no longer includes inline versions of any string functions, as this kind of optimization is better done by the compiler * The nonstandard header has been removed * The obsolete header has been removed * The obsolete signal constant SIGUNUSED is no longer defined by * The obsolete function cfree has been removed * The stack_t type no longer has the name struct sigaltstack * The ucontext_t type no longer has the name struct ucontext * On S/390 GNU/Linux, the constants defined by have been synced with the kernel * Linux kernel 3.2 or later is required at runtime, on all architectures supported by that kernel * The DNS stub resolver limits the advertised UDP buffer size to 1200 bytes, to avoid fragmentation-based spoofing attacks (CVE-2017-12132) * LD_LIBRARY_PATH is now ignored in binaries running in privileged AT_SECURE mode to guard against local privilege escalation attacks (CVE-2017-1000366) * Avoid printing a backtrace from the __stack_chk_fail function since it is called on a corrupt stack and a backtrace is unreliable on a corrupt stack (CVE-2010-3192) * A use-after-free vulnerability in clntudp_call in the Sun RPC system has been fixed (CVE-2017-12133) * fate#322258, fate#321513, fate#322453 - fts-symbol-redirect.patch, glibc-resolv-reload.diff, glibc-2.2-sunrpc.diff, i686-memchr-sse.patch, ld-hwcap-mask-suid.patch, ld-library-path-suid.patch, sunrpc-use-after-free.patch, test-math-vector-sincos-aliasing.patch, tunables-bigendian.patch: Removed- Fix RPM group- s390-elision-enable-envvar.patch: enable TLE only if GLIBC_ELISION_ENABLE=yes is defined (fate#322271)- ld-hwcap-mask-suid.patch: Ignore and remove LD_HWCAP_MASK for AT_SECURE programs (BZ #21209) - ld-library-path-suid.patch: Completely ignore LD_LIBRARY_PATH for AT_SECURE=1 programs (CVE-2017-1000366, bsc#1039357, BZ #21624)- Remove glibc-cpusetsize.diff, no longer useful- fts-symbol-redirect.patch: Fix symbol redirect for fts_set (bsc#1041123, BZ #21289)- test-math-vector-sincos-aliasing.patch: Fix test-math-vector-sincos.h aliasing- add-locales.patch: renamed from glibc-2.3.locales.diff.bz2, drop en_BE locales (bsc#1039502)- Remove glibc-testsuite.patch, no longer relevant- Use multibuild feature - Remove obsolete check-build.sh - glibc.rpmlintrc: remove obsolete entries - Use %tmpfiles_create in nscd postin- i686-memchr-sse.patch: Fix i686 memchr overflow calculation (bsc#1031021, BZ #21182) - sunrpc-use-after-free.patch: Avoid use-after-free read access in clntudp_call (BZ #21115) - Build testsuite with gdb and python-pexpect to enable more tests- tunables-bigendian.patch: Fix getting tunable values on big-endian (BZ [#21109])- Update to glibc 2.25 * The feature test macro __STDC_WANT_LIB_EXT2__, from ISO/IEC TR 24731-2:2010, is supported to enable declarations of functions from that TR. * The feature test macro __STDC_WANT_IEC_60559_BFP_EXT__, from ISO/IEC TS 18661-1:2014, is supported to enable declarations of functions and macros from that TS. * The feature test macro __STDC_WANT_IEC_60559_FUNCS_EXT__, from ISO/IEC TS 18661-4:2015, is supported to enable declarations of functions and macros from that TS. * The nonstandard feature selection macros _REENTRANT and _THREAD_SAFE are now treated as compatibility synonyms for _POSIX_C_SOURCE=199506L. * The inclusion of by is deprecated. * New features from TS 18661-1:2014 are added to libm: the fesetexcept, fetestexceptflag, fegetmode and fesetmode functions, the femode_t type and the FE_DFL_MODE and FE_SNANS_ALWAYS_SIGNAL macros. * Integer width macros from TS 18661-1:2014 are added to : CHAR_WIDTH, SCHAR_WIDTH, UCHAR_WIDTH, SHRT_WIDTH, USHRT_WIDTH, INT_WIDTH, UINT_WIDTH, LONG_WIDTH, ULONG_WIDTH, LLONG_WIDTH, ULLONG_WIDTH; and to : INT8_WIDTH, UINT8_WIDTH, INT16_WIDTH, UINT16_WIDTH, INT32_WIDTH, UINT32_WIDTH, INT64_WIDTH, UINT64_WIDTH, INT_LEAST8_WIDTH, UINT_LEAST8_WIDTH, INT_LEAST16_WIDTH, UINT_LEAST16_WIDTH, INT_LEAST32_WIDTH, UINT_LEAST32_WIDTH, INT_LEAST64_WIDTH, UINT_LEAST64_WIDTH, INT_FAST8_WIDTH, UINT_FAST8_WIDTH, INT_FAST16_WIDTH, UINT_FAST16_WIDTH, INT_FAST32_WIDTH, UINT_FAST32_WIDTH, INT_FAST64_WIDTH, UINT_FAST64_WIDTH, INTPTR_WIDTH, UINTPTR_WIDTH, INTMAX_WIDTH, UINTMAX_WIDTH, PTRDIFF_WIDTH, SIG_ATOMIC_WIDTH, SIZE_WIDTH, WCHAR_WIDTH, WINT_WIDTH. * New features are added from TS 18661-1:2014: - Signaling NaN macros: SNANF, SNAN, SNANL. - Nearest integer functions: roundeven, roundevenf, roundevenl, fromfp, fromfpf, fromfpl, ufromfp, ufromfpf, ufromfpl, fromfpx, fromfpxf, fromfpxl, ufromfpx, ufromfpxf, ufromfpxl. - llogb functions: the llogb, llogbf and llogbl functions, and the FP_LLOGB0 and FP_LLOGBNAN macros. - Max-min magnitude functions: fmaxmag, fmaxmagf, fmaxmagl, fminmag, fminmagf, fminmagl. - Comparison macros: iseqsig. - Classification macros: iscanonical, issubnormal, iszero. - Total order functions: totalorder, totalorderf, totalorderl, totalordermag, totalordermagf, totalordermagl. - Canonicalize functions: canonicalize, canonicalizef, canonicalizel. - NaN functions: getpayload, getpayloadf, getpayloadl, setpayload, setpayloadf, setpayloadl, setpayloadsig, setpayloadsigf, setpayloadsigl. * The functions strfromd, strfromf, and strfroml, from ISO/IEC TS 18661-1:2014, are added to libc. * Most of glibc can now be built with the stack smashing protector enabled. * The function explicit_bzero, from OpenBSD, has been added to libc. * On ColdFire, MicroBlaze, Nios II and SH3, the float_t type is now defined to float instead of double. * On x86_64, when compiling with -mfpmath=387 or -mfpmath=sse+387, the float_t and double_t types are now defined to long double instead of float and double. * The getentropy and getrandom functions, and the header file have been added. * The buffer size for byte-oriented stdio streams is now limited to 8192 bytes by default. * The header now includes the header. * The malloc_get_state and malloc_set_state functions have been removed. * The “ip6-dotint” and “no-ip6-dotint” resolver options, and the corresponding RES_NOIP6DOTINT flag from have been removed. * The "ip6-bytestring" resolver option and the corresponding RES_USEBSTRING flag from have been removed. * The flags RES_AAONLY, RES_PRIMARY, RES_NOCHECKNAME, RES_KEEPTSIG, RES_BLAST defined in the header file have been deprecated. * The "inet6" option in /etc/resolv.conf and the RES_USE_INET6 flag for _res.flags are deprecated. * DNSSEC-related declarations and definitions have been removed from the header file, and libresolv will no longer attempt to decode the data part of DNSSEC record types. * The resource record type classification macros ns_t_qt_p, ns_t_mrr_p, ns_t_rr_p, ns_t_udp_p, ns_t_xfr_p have been removed from the header file because the distinction between RR types and meta-RR types is not officially standardized, subject to revision, and thus not suitable for encoding in a macro. * The types res_sendhookact, res_send_qhook, re_send_rhook, and the qhook and rhook members of the res_state type in have been removed. * For multi-arch support it is recommended to use a GCC which has been built with support for GNU indirect functions. * GDB pretty printers have been added for mutex and condition variable structures in POSIX Threads. * Tunables feature added to allow tweaking of the runtime for an application program. * A new version of condition variables functions have been implemented in the NPTL implementation of POSIX Threads to provide stronger ordering guarantees. * A new version of pthread_rwlock functions have been implemented to use a more scalable algorithm primarily through not using a critical section anymore to make state changes. * On ARM EABI (32-bit), generating a backtrace for execution contexts which have been created with makecontext could fail to terminate due to a missing .cantunwind annotation. (CVE-2016-6323) * The DNS stub resolver functions would crash due to a NULL pointer dereference when processing a query with a valid DNS question type which was used internally in the implementation. (CVE-2015-5180) - Enable stack protector if part of %optflags - startcontext-cantunwind.patch: Removed - cpuid-assertion.patch: Removed- cpuid-assertion.patch: Don't assert on older Intel CPUs (BZ #20647)- glibc-2.3.3-nscd-db-path.diff: Move persistent nscd databases to /var/lib/nscd - glibc-2.3.90-langpackdir.diff: simplify- Update to glibc 2.24 * The minimum Linux kernel version that this version of the GNU C Library can be used with is 3.2 * The pap_AN locale has been deleted * The readdir_r and readdir64_r functions have been deprecated * The type `union wait' has been removed * A new NSS action is added to facilitate large distributed system administration * The deprecated __malloc_initialize_hook variable has been removed from the API * The long unused localedef --old-style option has been removed * nextupl, nextup, nextupf, nextdownl, nextdown and nextdownf are added to libm * An unnecessary stack copy in _nss_dns_getnetbyname_r was removed (CVE-2016-3075) * Previously, getaddrinfo copied large amounts of address data to the stack, even after the fix for CVE-2013-4458 has been applied, potentially resulting in a stack overflow. getaddrinfo now uses a heap allocation instead (CVE-2016-3706) * The glob function suffered from a stack-based buffer overflow when it was called with the GLOB_ALTDIRFUNC flag and encountered a long file name (CVE-2016-1234) * The Sun RPC UDP client could exhaust all available stack space when flooded with crafted ICMP and UDP messages (CVE-2016-4429) * The IPv6 name server management code in libresolv could result in a memory leak for each thread which is created, performs a failing naming lookup, and exits (CVE-2016-5417) - startcontext-cantunwind.patch: mark __startcontext as .cantunwind (bsc#974800, BZ #20435) - Removed patches: * 0001-Updated-translations-for-2.23.patch * 0002-Regenerate-libc.pot-for-2.23.patch * 0003-Regenerated-configure-scripts.patch * 0004-x86_64-Set-DL_RUNTIME_UNALIGNED_VEC_SIZE-to-8.patch * 0005-Add-fts64_-to-sysdeps-arm-nacl-libc.abilist.patch * 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch * 0007-NEWS-2.23-Fix-typo-in-bug-19048-text.patch * 0008-Update-NEWS.patch * 0009-sln-use-stat64.patch * 0010-Add-sys-auxv.h-wrapper-to-include-sys.patch * 0011-mips-terminate-the-FDE-before-the-return-trampoline-.patch * 0012-Use-HAS_ARCH_FEATURE-with-Fast_Rep_String.patch * 0013-Mention-BZ-19762-in-NEWS.patch * 0014-Define-_HAVE_STRING_ARCH_mempcpy-to-1-for-x86.patch * 0015-Or-bit_Prefer_MAP_32BIT_EXEC-in-EXTRA_LD_ENVVARS.patch * 0016-Fix-resource-leak-in-resolver-bug-19257.patch * 0017-math-don-t-clobber-old-libm.so-on-install-BZ-19822.patch * 0018-resolv-Always-set-resplen2-out-parameter-in-send_dg-.patch * 0019-S390-Save-and-restore-fprs-vrs-while-resolving-symbo.patch * 0020-S390-Extend-structs-La_s390_regs-La_s390_retval-with.patch * 0021-CVE-2016-3075-Stack-overflow-in-_nss_dns_getnetbynam.patch * 0022-configure-fix-test-usage.patch * 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch * 0024-nss_db-Propagate-ERANGE-error-if-parse_line-fails-BZ.patch * 0025-getnameinfo-Do-not-preserve-errno.patch * 0026-getnameinfo-Refactor-and-fix-memory-leak-BZ-19642.patch * 0027-getnameinfo-Reduce-line-length-and-add-missing-comme.patch * 0028-getnameinfo-Avoid-calling-strnlen-on-uninitialized-b.patch * 0029-getnameinfo-Return-EAI_OVERFLOW-in-more-cases-BZ-197.patch * 0030-hesiod-Remove-RCS-keywords.patch * 0031-hesiod-Always-use-thread-local-resolver-state-BZ-195.patch * 0032-hesiod-Avoid-heap-overflow-in-get_txt_records-BZ-200.patch * 0033-malloc-Remove-NO_THREADS.patch * 0034-Fix-malloc-threaded-tests-link-on-non-Linux.patch * 0035-malloc-Run-fork-handler-as-late-as-possible-BZ-19431.patch * 0036-malloc-Remove-malloc-hooks-from-fork-handler.patch * 0037-malloc-Add-missing-internal_function-attributes-on-f.patch * 0038-nss_dns-Fix-assertion-failure-in-_nss_dns_getcanonna.patch * 0039-nss_dns-Validate-RDATA-length-against-packet-length-.patch * 0040-resolv-nss_dns-Remove-remaining-syslog-logging-BZ-19.patch * 0041-nss_dns-Check-address-length-before-creating-addrinf.patch * 0042-nss_dns-Skip-over-non-PTR-records-in-the-netent-code.patch * 0043-resolv-Always-set-resplen2-out-parameter-in-send_vc-.patch * 0044-tst-audit4-tst-audit10-Compile-AVX-AVX-512-code-sepa.patch * 0045-Fix-tst-audit10-build-when-mavx512f-is-not-supported.patch * 0046-tst-audit10-Fix-compilation-on-compilers-without-bit.patch * 0047-strfmon_l-Use-specified-locale-for-number-formatting.patch * 0048-glob-Simplify-the-interface-for-the-GLOB_ALTDIRFUNC-.patch * 0049-CVE-2016-1234-glob-Do-not-copy-d_name-field-of-struc.patch * 0050-ldconfig-Do-not-remove-stale-symbolic-links-with-X-B.patch * 0051-Report-dlsym-dlvsym-lookup-errors-using-dlerror-BZ-1.patch * 0052-Fix-tst-dlsym-error-build.patch * 0053-Remove-trailing-newline-from-date_fmt-in-Serbian-loc.patch * 0054-Revert-Report-dlsym-dlvsym-lookup-errors-using-dlerr.patch * 0055-CVE-2016-3706-getaddrinfo-stack-overflow-in-hostent-.patch * 0056-Fix-strfmon_l-Use-specified-locale-for-number-format.patch * clntudp-call-alloca.patch * glibc-memset-nontemporal.diff * nis-initgroups-status.patch * nscd-gc-crash.patch * robust-mutex-deadlock.patch * strncat-avoid-array-bounds-warning.patch- strncat-avoid-array-bounds-warning.patch: Avoid array-bounds warning for stncat on i586 (BZ #20260) - Update glibc.keyring - Unset MALLOC_CHECK_ during testsuite run- nsswitch.conf: Add fallback to files for passwd and group to prepare for libnsl removal.- nis-initgroups-status.patch: Return proper status from _nss_nis_initgroups_dyn (bsc#984269, BZ #20262) - robust-mutex-deadlock.patch: Fix generic __lll_robust_timedlock_wait to check for timeout (bsc#985170, BZ #20263)- nscd-gc-crash.patch: Fix nscd assertion failure in gc (bsc#965699, BZ [#19755])- clntudp-call-alloca.patch: do not use alloca in clntudp_call (CVE-2016-4429, bsc#980854, BZ #20112)- Import patches from 2.23 branch 0001-Updated-translations-for-2.23.patch 0002-Regenerate-libc.pot-for-2.23.patch 0003-Regenerated-configure-scripts.patch 0004-x86_64-Set-DL_RUNTIME_UNALIGNED_VEC_SIZE-to-8.patch 0005-Add-fts64_-to-sysdeps-arm-nacl-libc.abilist.patch 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch 0007-NEWS-2.23-Fix-typo-in-bug-19048-text.patch 0008-Update-NEWS.patch 0009-sln-use-stat64.patch 0010-Add-sys-auxv.h-wrapper-to-include-sys.patch 0011-mips-terminate-the-FDE-before-the-return-trampoline-.patch 0012-Use-HAS_ARCH_FEATURE-with-Fast_Rep_String.patch 0013-Mention-BZ-19762-in-NEWS.patch 0014-Define-_HAVE_STRING_ARCH_mempcpy-to-1-for-x86.patch 0015-Or-bit_Prefer_MAP_32BIT_EXEC-in-EXTRA_LD_ENVVARS.patch 0016-Fix-resource-leak-in-resolver-bug-19257.patch 0017-math-don-t-clobber-old-libm.so-on-install-BZ-19822.patch 0018-resolv-Always-set-resplen2-out-parameter-in-send_dg-.patch 0019-S390-Save-and-restore-fprs-vrs-while-resolving-symbo.patch 0020-S390-Extend-structs-La_s390_regs-La_s390_retval-with.patch 0021-CVE-2016-3075-Stack-overflow-in-_nss_dns_getnetbynam.patch 0022-configure-fix-test-usage.patch 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch 0024-nss_db-Propagate-ERANGE-error-if-parse_line-fails-BZ.patch 0025-getnameinfo-Do-not-preserve-errno.patch 0026-getnameinfo-Refactor-and-fix-memory-leak-BZ-19642.patch 0027-getnameinfo-Reduce-line-length-and-add-missing-comme.patch 0028-getnameinfo-Avoid-calling-strnlen-on-uninitialized-b.patch 0029-getnameinfo-Return-EAI_OVERFLOW-in-more-cases-BZ-197.patch 0030-hesiod-Remove-RCS-keywords.patch 0031-hesiod-Always-use-thread-local-resolver-state-BZ-195.patch 0032-hesiod-Avoid-heap-overflow-in-get_txt_records-BZ-200.patch 0033-malloc-Remove-NO_THREADS.patch 0034-Fix-malloc-threaded-tests-link-on-non-Linux.patch 0035-malloc-Run-fork-handler-as-late-as-possible-BZ-19431.patch 0036-malloc-Remove-malloc-hooks-from-fork-handler.patch 0037-malloc-Add-missing-internal_function-attributes-on-f.patch 0038-nss_dns-Fix-assertion-failure-in-_nss_dns_getcanonna.patch 0039-nss_dns-Validate-RDATA-length-against-packet-length-.patch 0040-resolv-nss_dns-Remove-remaining-syslog-logging-BZ-19.patch 0041-nss_dns-Check-address-length-before-creating-addrinf.patch 0042-nss_dns-Skip-over-non-PTR-records-in-the-netent-code.patch 0043-resolv-Always-set-resplen2-out-parameter-in-send_vc-.patch 0044-tst-audit4-tst-audit10-Compile-AVX-AVX-512-code-sepa.patch 0045-Fix-tst-audit10-build-when-mavx512f-is-not-supported.patch 0046-tst-audit10-Fix-compilation-on-compilers-without-bit.patch 0047-strfmon_l-Use-specified-locale-for-number-formatting.patch 0048-glob-Simplify-the-interface-for-the-GLOB_ALTDIRFUNC-.patch 0049-CVE-2016-1234-glob-Do-not-copy-d_name-field-of-struc.patch 0050-ldconfig-Do-not-remove-stale-symbolic-links-with-X-B.patch 0051-Report-dlsym-dlvsym-lookup-errors-using-dlerror-BZ-1.patch 0052-Fix-tst-dlsym-error-build.patch 0053-Remove-trailing-newline-from-date_fmt-in-Serbian-loc.patch 0054-Revert-Report-dlsym-dlvsym-lookup-errors-using-dlerr.patch 0055-CVE-2016-3706-getaddrinfo-stack-overflow-in-hostent-.patch 0056-Fix-strfmon_l-Use-specified-locale-for-number-format.patch - CVE-2016-3075 CVE-2016-1234 CVE-2016-3706 bsc#973164 bsc#969727 - resolv-mem-leak.patch: renamed to 0016-Fix-resource-leak-in-resolver-bug-19257.patch - no-long-double.patch: renamed to 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch - glibc-gcc6.patch: renamed to 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch- glibc-c-utf8-locale.patch: fix bad standard in LC_IDENTIFICATION categories - glibc-2.3.locales.diff.bz2: likewise- glibc-gcc6.patch: Suppress GCC 6 warning about ambiguous 'else' with - Wparentheses- Add compatibility symlinks for LSB 3.0 (fate#318933)- powerpc-elision-enable-envvar.patch: enable TLE only if GLIBC_ELISION_ENABLE=yes is defined (bsc#967594, fate#318236)- ldd-system-interp.patch: Restore warning about execution permission, it is still needed for noexec mounts (bsc#915985)- Add C.UTF-8 locale (see https://sourceware.org/glibc/wiki/Proposals/C.UTF-8) and rh#902094 . Added with glibc-c-utf8-locale.patch. - Add glibc-disable-gettext-for-c-utf8.patch to disable gettext for C.UTF-8 same as C locale.- Move %install_info_delete to %preun - crypt_blowfish-1.3.tar.gz.sign: Remove, the sign key is no longer acceptable- no-long-double.patch: Don't use long double functions if NO_LONG_DOUBLE- Update to glibc 2.23 release. * Unicode 8.0.0 Support * sched_setaffinity, pthread_setaffinity_np no longer attempt to guess the kernel-internal CPU set size * The fts.h header can now be used with -D_FILE_OFFSET_BITS=64 * getaddrinfo now detects certain invalid responses on an internal netlink socket * A defect in the malloc implementation, present since glibc 2.15 (2012) or glibc 2.10 via --enable-experimental-malloc (2009), could result in the unnecessary serialization of memory allocation requests across threads * The obsolete header has been removed * The obsolete functions bdflush, create_module, get_kernel_syms, query_module and uselib are no longer available to newly linked binaries * Optimized string, wcsmbs and memory functions for IBM z13. * Newly linked programs that define a variable called signgam will no longer have it set by the lgamma, lgammaf and lgammal functions - Removed patches: * dont-remove-nodelete-flag.patch * openat64-readd-o-largefile.patch * mntent-blank-line.patch * opendir-o-directory-check.patch * strcoll-remove-strdiff-opt.patch * ld-pointer-guard.patch * tls-dtor-list-mangling.patch * powerpc-lock-elision-race.patch * prelink-elf-rtype-class.patch * vector-finite-math-aliases.patch * powerpc-elision-adapt-param.patch * catopen-unbound-alloca.patch * strftime-range-check.patch * hcreate-overflow-check.patch * errorcheck-mutex-no-elision.patch * refactor-nan-parsing.patch * send-dg-buffer-overflow.patch * isinf-cxx11-conflict.patch * ibm93x-redundant-shift-si.patch * iconv-reset-input-buffer.patch * tzset-tzname.patch * static-dlopen.patch- isinf-cxx11-conflict.patch: Fix isinf/isnan declaration conflict with C++11 (bsc#963700, BZ #19439)- tls-dtor-list-mangling.patch: Harden tls_dtor_list with pointer mangling (BZ #19018) - prelink-elf-rtype-class.patch: Keep only ELF_RTYPE_CLASS_{PLT|COPY} bits for prelink (BZ #19178) - vector-finite-math-aliases.patch: Better workaround for aliases of * _finite symbols in vector math library (BZ# 19058) - powerpc-elision-adapt-param.patch: powerpc: Fix usage of elision transient failure adapt param (BZ #19174) - catopen-unbound-alloca.patch: Fix unbound alloca in catopen (CVE-2015-8779, bsc#962739, BZ #17905) - strftime-range-check.patch: Add range check on time fields (CVE-2015-8776, bsc#962736, BZ #18985) - hcreate-overflow-check.patch: Handle overflow in hcreate (CVE-2015-8778, bsc#962737, BZ #18240) - errorcheck-mutex-no-elision.patch: Don't do lock elision on an error checking mutex (bsc#956716, BZ #17514) - refactor-nan-parsing.patch: Refactor strtod parsing of NaN payloads (CVE-2014-9761, bsc#962738, BZ #16962) - send-dg-buffer-overflow.patch: Fix getaddrinfo stack-based buffer overflow (CVE-2015-7547, bsc#961721, BZ #18665) - powerpc-lock-elision-race.patch: renamed from 0001-powerpc-Fix-a-race-condition-when-eliding-a-lock-20150730.patch- Add audit-devel and libcap-devel to BuildRequires, for use by nscd- reinitialize-dl_load_write_lock.patch: Reinitialize dl_load_write_lock on fork (bsc#958315, BZ #19282)- resolv-mem-leak.patch: Fix resource leak in resolver (bsc#955647, BZ #19257) - tzset-tzname.patch: Force rereading TZDEFRULES after it was used to set DST rules only (BZ #19253)- glibc-2.3.90-noversion.diff: use stat64- ld-pointer-guard.patch: Always enable pointer guard (CVE-2015-8777, bsc#950944, BZ #18928)- strcoll-remove-strdiff-opt.patch: Remove incorrect STRDIFF-based optimization (BZ #18589)- iconv-reset-input-buffer.patch: Fix iconv buffer handling with IGNORE error handler (BZ #18830)- new patch [BZ #18743] PowerPC: Fix a race condition when eliding a lock 0001-powerpc-Fix-a-race-condition-when-eliding-a-lock-20150730.patch- nss-files-long-lines-2.patch: Properly reread entry after failure in nss_files getent function (bsc#945779, BZ #18991)- fnmatch-collating-elements.patch: Fix fnmatch handling of collating elements (BZ #17396, BZ #16976)- opendir-o-directory-check.patch: Fix opendir inverted o_directory_works test - static-dlopen.patch: Static dlopen default library search path fix (bsc#937853)- mntent-blank-line.patch: Fix memory corruption w/blank lines- dont-remove-nodelete-flag.patch: Don't remove DF_1_NODELETE flag from all loaded objects on failed dlopen - openat64-readd-o-largefile.patch: Readd O_LARGEFILE flag for openat64- Update to glibc 2.22 release. * Cache information can be queried via sysconf() function on s390 * A buffer overflow in gethostbyname_r and related functions performing DNS requests has been fixed. (CVE-2015-1781) * The time zone file parser has been made more robust against crafted time zone files * A powerpc and powerpc64 optimization for TLS, similar to TLS descriptors for LD and GD on x86 and x86-64, has been implemented. * Character encoding and ctype tables were updated to Unicode 7.0.0 * Added vector math library named libmvec * A new fmemopen implementation has been added with the goal of POSIX compliance. * The header is deprecated, and will be removed in a future release. * bsc#905313 bsc#920338 bsc#927080 bsc#928723 bsc#931480 bsc#939211 bsc#940195 bsc#940332 bsc#944494 bsc#968787 - Patches from upstream removed * htm-tabort.patch * o-tmpfile.patch * memcpy-chk-non-SSE2.patch * pthread-mutexattr-gettype-kind.patch * powerpc-software-sqrt.patch * static-tls-dtv-limit.patch * threaded-trim-threshold.patch * resolv-nameserver-handling.patch * nss-separate-state-getXXent.patch * aarch64-sigstksz.patch * heap-top-corruption.patch * pthread-join-deadlock.patch- pthread-join-deadlock.patch: Use IE model for static variables in libc.so, libpthread.so and rtld (bsc#930015, BZ #18457)- glibc-nodate.patch: fix verification of timestamp- also filter out -fstack-protector-strong- getaddrinfo-ipv6-sanity.diff: Remove. It breaks services that start before IPv6 is up (bsc#931399) - glibc-2.3.locales.diff.bz2: Remove sh_YU locales, fix currency for en_BE.- Add /usr/include/gnu/lib-names-.*.h to baselibs - pthread-join-deadlock.patch: Don't require rtld lock to store static TLS offset in the DTV (bsc#930015, BZ #18457) - heap-top-corruption.patch: Do not corrupt the top of a threaded heap if top chunk is MINSIZE (BZ #18502)- threaded-trim-threshold.patch: Fix regression in threaded application malloc performance (bsc#915955, BZ #17195)- aarch64-sigstksz.patch: Increase MINSIGSTKSZ and SIGSTKSZ (BZ #16850)- powerpc-software-sqrt.patch: Fix powerpc software sqrt (BZ #17964, BZ [#17967]) - nss-separate-state-getXXent.patch: Separate internal state between getXXent and getXXbyYY NSS calls (CVE-2014-8121, bsc#918187, BZ #18007) - static-tls-dtv-limit.patch: Fix DTV race, assert, DTV_SURPLUS Static TLS limit, and nptl_db garbage (bsc#919678, BZ #17090, BZ #17620, BZ #17621, BZ #17628)- resolv-nameserver-handling.patch: Replace with simpler version with more compatibility- memcpy-chk-non-SSE2.patch: Fix __memcpy_chk on non-SSE2 CPUs (bsc#920084)- resolv-nameserver-handling.patch: Rewrite handling of nameserver configuration in resolver- htm-tabort.patch: Fix TABORT encoding for little endian- Update to glibc 2.21 release. * A new semaphore algorithm has been implemented in generic C code for all machines * Added support for TSX lock elision of pthread mutexes on powerpc32, powerpc64 and powerpc64le * Optimized strcpy, stpcpy, strchrnul and strrchr implementations for AArch64 * i386 memcpy functions optimized with SSE2 unaligned load/store * New locales: tu_IN, bh_IN, raj_IN, ce_RU * The obsolete sigvec function has been removed * CVE-2015-1472 CVE-2015-1473 CVE-2012-3406 CVE-2014-9402 CVE-2014-7817 bsc#864081 bsc#906371 bsc#909053 bsc#910599 bsc#916222 - Patches from upstream removed * ifunc-x86-slow-sse4.patch * pthread-mutex-trylock-elision.patch - o-tmpfile.patch: Fix value of O_TMPFILE for architectures with non-default O_DIRECTORY (BZ #17912)- Update to crypt_blowfish 1.3. * Add support for the $2b$ prefix. - ifunc-x86-slow-sse4.patch: Fix misdetected Slow_SSE4_2 cpu feature bit (BZ #17501)/bin/sh/bin/sh/bin/sh/bin/shunscds390zp38 1637763897 2.31-9.6.12.31-9.6.12.31-9.6.1 0.48nscd.confnscdnscd.pidsocketnscd.servicetmpfiles.dnscd.confnscdrcnscdnscdgrouphostsnetgrouppasswdservices/etc//run//run/nscd//usr/lib/systemd/system//usr/lib//usr/lib/tmpfiles.d//usr/sbin//var/lib//var/lib/nscd/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:21967/SUSE_SLE-15-SP3_Update/8b7b83afff41d6148c6167000a006f33-glibc.SUSE_SLE-15-SP3_Updatecpioxz5s390x-suse-linux ASCII textdirectorycannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-9.6.1.s390x/run/nscd/nscd.pid' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-9.6.1.s390x/run/nscd/socket' (No such file or directory)ELF 64-bit MSB shared object, IBM S/390, version 1 (SYSV), dynamically linked, interpreter /lib/ld64.so.1, BuildID[sha1]=a25b11d30f975b77e4c5e75afa1a623dddb13dcf, for GNU/Linux 3.2.0, strippedcannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-9.6.1.s390x/var/lib/nscd/group' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-9.6.1.s390x/var/lib/nscd/hosts' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-9.6.1.s390x/var/lib/nscd/netgroup' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-9.6.1.s390x/var/lib/nscd/passwd' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-9.6.1.s390x/var/lib/nscd/services' (No such file or directory)R RR RRRRR R RRR RRRRRRRRO ,Jmje=dJutf-84ccd4e03adbcb6504be2bd2c587cf17d79b322bfeffc014ec2dce484cc928030?p7zXZ !t/;] crv(vX0Cwx~} ԌWVEµ5ʰjQ*qX ]C棻iɩЁ";؂2vBjn%o$)0v=Nn$*v5FOW T$|97/^+W8Md,}߲25/nxi!sMw D۵` MzzPj?P|ї #{Ŭ8'c k횀X.S7`?6,< 4Y*ykWqto%9"eH;e HEVg[s`}iH }h!>\4YbOM 13(Ls`24cg?5>Ġd7fʔ|K =U/o?ZJ4bp;-n03 p[c?`n֢W=e0t*k2[WS- ؓGM]h_gqL ɶ'xt g~> x/8>x\^-ŗ1jيԇ[M0u(ЊB"} d5EUSݗr{_aZR PyAEW-LpppQ>/;:k+_b} #LC̚]vggaXˍq|?͑E5}'Hr)I($C9>&ǯ;w٤L,95?f.0#\.+QEh50` ]&,Los فc;2$3 ,BJ7QU( wKwq-"FIv sB oH8ZKM3`qm5+ :v*$o3mkLߝkt qӆw 0 -NF$6:=:,8wKqT?Mna+;MNO'Q&(&*a˖Hk$M*Do_ֲ=`"!'\ báeW\m賍f͍\eOfR 2T~F3|XTK"nESp %{!nB .wֳ Ֆ;z3a{4a%Vjn1(Bf@c;z{4R}-Fr9T#W[.%HMЖ+(e> hxm7zf66730o y{-B&|YKQ(K'A:݉.TU21wa w FwD '٭֛DU,8t_ l hYgN黶T5:r~adѻ\|cz-eRN4{dYΧіqo5sm݅[K;ft ٌy6._>%ij鬨%gj/*HGւD8C:JT)$ bTh$TybX9K,sئ'N_?u &7IҠłxHےr` oe~<ĸ:;їL{52v: +Ȥ,-QR1l؈3!7 7WVR Ѩ>^S2DF 30HU{r-4붅bNz*Hl&oϣu֣(*r@n((YZ'jD\koa$G)i0ǜb_oa4ɂӪ< <_+ebŠ`?wkz}aR$G JA{|1‰syW<2p'!UF A݈m3{=݊Ćy&FV$R6u{;5?ax:IJ=:SJ kƋ"zllq(k+:M{YW]I)͔dn'R?a4V4[J2f8\$gG\9pg|e#0 { =K㓱7t{m cLNaԆuWǴǺ[XDj%/8닫#JӔMm6z ~ul(+1 =rK2dJӄ=KAZ !)&@.a9&u̍FӃ_J TZ a *O@uG.YrYAvx?mEYtѐHXBC,~Dנd_1(k爢zv\6+Mhu0E!tZKŬKѕ*, _蝛f--'AԽF;GY=HnσH ā? 7TY:kպ=1%BGf,&YEpli3{zJ 0IB1(L9DЈ,cGc߅90u`VjsMZ&0oF[:p_dGK:\+T_$E4Ĥ)eD늝-!eF\y=QyY &R(~ "fFnv<Fqu$>hPq zC55cC 1_B{5"Vpad*i@o~`Pm_y_sN9'EtSNd0م*`i6V|w}ڃqPXW7r_mޔ$r^>r)HXD͛>ue*/\^+ޡɚEWVޫctBC^7\)(eQƈ.wtU2.m:2j6'Ie+P#?M3&9KO*- 5jA]D6Uڇ MHGUHC~|+Ḧ3\)נ,əsB }C@?$¢ꅐeA>fޢ 1nGUV>cj< EFs8_zCgPUB\!qc:m$ 6Tُsw25HSC1-iU?ZZ~>J+,\Fyǀ??=1[ogUnʰ:~`1Cؘ1CSϫu{\yR!PmQ9d+?I|V 49pvD;ЙkC{Jݒyrm ƭ oqBI 7&r/ZpwuU 2{Ǚ#F0 EOuI9#]oN/[}#_OrLU^>D,XT4h ({UXs&2v-Nri8HĬJl}4; I'*7x l/C@&4KgjI:2vet9 BrN}Gr'~VWxB%ozk|oP$Dw+QY?W8 yr8E1v,M8Λ YH!l*=->j8CPnoAVx"`ܙ Тv=r:S|XSv(*+SAg5d # ^o ^J;" xw) %1t3 yRYXeo~(@4';^Zr4%F[H; %13ÈȞ3+G1g!T@An]ARG4^ )za*Nxw߰MNྕm&SW Zkx'CUʶs$Ja;qbF6I04Õ_ yYkL#„QPJR.or/]Afʖ,6$|x͔}bHdZ{ݚדa,99L3f:T u.~S~X,X) \ԑLj5ETX26(E]TfXW[oLiD,A$(6kw`wӎAPMKw=R` Lù]HXe.9Y>O7a3%j)֨/( 7ԭXU[Uw~puLZ[/̉Z>EHt;aARX/њq/EX?E~'_U0dUnq|fOw_ص:qz.edzIy&Eةn&.D=m~+dP"шaRg|3.WBSe',7q/D:݃c?tHo#wNbbKkdt-'O\}~Jjn 2|ZZD I\u# K<؄71S4z(^iz@$#;՟`?kQE>-F8}>vbh%Sѭ lʛ&Xda%xHW]yQ(,2BAݙS"sbO e͘* J})3l 1ocRH.9f#LydzkUVewLtXՂkpW gNFϰZ^b YG?jW?P{{ADכ4H..M>ByD 0b4Ӽ~*H(g뻝@@A0X~)R"Q>)DQo}\PB,?[j*wZ*p`vpO*VPΥjÆ VwЋeS2VuW ,BZeN{nU)Pe2f6Hvh_/Npz!?mx7w-xd:٬PK\xA G? FH,lVO|15M#N:Y=[RzP &WӫA7DT*+y {i3YP(3/a{CUK;Ez R1%qP hs0CP|NHh{FlJЙyPA)V@ɪ9; %&>k.޵sF 'eşFBW1Vj`Pj7cjiA -mʝoeIU^m'  5FNȬD(Od6 R'%ڶ <"b s# ;fHzsuwuְyi[n)up7Zhf|KjD-.xkD6EuYDDD`/*NͨeǬvjGdוۏsr+W+<LIp?TҶ< !vN;<~Om^I(ʠc沰)U %o1O"T{G>kDǣ~yveᑫqMҵbT6δ{;E r25ˬ_'(z%9YK@X^|y.`AKqNa]^,V czse~X!jY &+V;Z9 s/w_Ή9wA~+3$*+w*{Rѕ;@;ɭ>]$ճm_T&{,ZLzID^hFDw vf- kwH.3]?ƦݽVMczL #/*cSd`a8is^He BcRQ9&݊L%f*}}etPK 0DiJOdQTܓ<$3ߏf y@$Sp{cݢ~!4;%V޽Ǝ69ë%<+K/[=ZJytG !-'pRXi+QrO,"a2y[<T"nNq|%+f)88*Se[qAXѽ"=1L%ňf,i/k6]"(04qo~t#d pq~[Ӓ{eH ym=E=2J\8馀TLK9˜M_1@6e:+Xow dw(C/4ݪ!)' ȴT&5h2GΒb[w 5#+ɻ1]lsBa NO:qaSѸ軍o*ͼ}Z185T"l6. tcx4jz MZ^9rZcم6hxks^eK.BjqO1q NrzD],~>/ ;U -'Dܹ$0xnt97l* 3e$#Ux[=]c0D!Anl90]KxXv)$#]= 11MՍ>"oד?~0wA/K5w ܓڑ{H^spqķb(ޓi|uH3neV jטItuŀ*fA$>Dr &A ;KE5M&~@s]0tvx* ~qUo~D^:d˺ dyHXv{4kѓ8tɀb[dMu*̡۱ku3v*D cYVCwyqC)B[wp (䃅:.`H8.wXam$ii U OUs쏤`t[ P8[jhɯxkq2yG[V`y<*מQ&Xo&pZ4u &jHk-ԠkBx-'d.\ o`a=LZ4Xam u#EigcU;yQD;V+O3#2s3rާ3`0JK؉ρ>( \ MrĒC٘G#\8qw6 Al{`N㮒-eժR~"<+Olv+BY3j< %(Ў$* i,-"/V%w[L5v"Ty6`|Z(7Z,KZG`vH :`,yaD'CgA(>dե'n)SI܏d,|\G@>\pb,0ɗ#{! =qS勌sy՜4E vTbmdZ%Uј\fC6}~Z}Z4tqCbi \xWb_Nϫ*svq?R+ GIlA CyU:'G7բ \)yO(Q*V"+<ɓ]w~XOynm.L-Py$xnGXQs}]cgpYK*M >3'Ԯ=q$`҃ZaZ1Q1&+OdE`Eq't7~w>3!'_7y'M&,P rRZH \LK^TΗL7 òUJID ~)fQZqF3\OCߐN)cjsȆ"`L\*`L}_~G@)bf e.Cl~2u`Dʟ9,!0ܘs 夯@[L,Lo;M.:Ҧtwk&xtBptP)2 "@q!a&E$ki^Wٶgh)Q7$!>yzov9{Ƈ2wt~$WaMz(IP5ƠYkqaP+@!{%l0O:%iz:$Em nCkr|ž0g ^ĸ bB(5ZnD98TVzPp M^#ѺD?Va$e%/mxaڱ^ @X(N+?o{j}sp1|ٶrXi;"X~& < Q~9ў=p?m0С|G B*K7'# D_8`N\MbiԀ0Q^GKMN;YK_7&LJt/d(MP_l ;W {@ wIJZ:F6cLlYA]T)C =iGyza' \^&aV_/Jq\ ijAA.d4~"pdOYMep+L-`Sb:.*tl7^>j)p}f@qYO+l1c:6$}=/#`1w'mNIs]9oLOIڗA LpT)4D4,G!=fcT>J>)tkD\z{XK'W 2FUչ睙]LUU|BFk/3S56apMQBKuO1%Q6|1xfZu폭 ZN,.y+x5޸!0mԕT [JJ^}b2zȊ;O)X܊BjO ,L- xl]u@拕? o`Pj~nkpx gU{@Ul󴑎/D]s8I5i0a\ʹU~ZQh`6N2lS&*QvgS(FkqyӇInc~/aT?=4? Vo{ >чg&:N Mm45vdp5"Kx\[T{&샤8"%yn3>2JM j_֋,S1e4$*p3gbL]}@:u`ݩ}Obxf\`ϧ:aZ,$1T vlȃ\#SQ Wwxטʗ/ \[AGU`uGI@t i9# gYL a8,C_Qvʔ\D )kjml8=H1L&fZ*nZfIĘ>l̲"6(cY^^&]umciűA,2A;ٝL't33g{a Lv^V-Os_H}͊T'/*6?pLOϐjI0pYO,mXH&gY VԳӒ[Ph [ *Cl=xDlݮ'ZG<1K/OU3o}rc{űg*4iWs}6Ɍ@Wfy$YcٻVH8qw6 o" T7Nɭ[/Ij}8ߖf Cn #]]UNx!ljq>y3ZJ3 躰W|sG2 Yf/?_K[T=W`!EYLEU8ۤ`edD4G]L(wUm~/k+T]JX q,p@)O |Pc'I*v:' PJx4d|׈?iWDJW!! ~։&8XǑgL}qv‚Js"Y=eX1$㞕c/HYٻD&z a+1ZC)7 ԩҐ4zisEo882?@gWP!g-iPMZ=WQk>K%2v4cs Q> kžV I|;cC⛑$Tf=׏?xئ+Sm k?+wsTֹx܅IG r#v7ݒH LBU v)MD󈦋RtsL6/ccBN)$5Y:0&ƫJaLYzmD/&*>QNxT2:0|I3 dnx?3G+͛( q$f uaSK'^h}"}J͚Ɨw& ^A'ɑlYqˠBasy־8\mڰfEF-sHQAFdN2rPE["ًzc ɰRyZeOZ. V7:Xht'NS;=eƬl\e(Uǧl(DPgKb-WQ^[ RQn֢*5DNyJG @#;kN#ض]6,EO,?d 6(;>|U0{N@A.=. W s7z e`X$rG^P@24?tWBǍ,5+Ȇ+03Skȯmհ~Ĥ9ږ8&rCN.XHc JBb\EJ.b^~%CiHRCqVQ$dUBz9~S Aƃ0i7zP=pbjm ؒB4w֞KtMA0Fj)uʸ}LJG^N\X  Tw ,_"˞~97F  `+ Nf OIDGفrVF`,T/:B,5Z~<kA%ձT16)X8"ASj YnbG!*a{\Gq[h ɭݫd{rNKv'bA+B>f %tjSL\lB:|' -KԷīa`xWf ",I9%7l!=݊ Ԏ{STsjvŃM샆<NQnz G upҢuؑZ`׿ -_k~ERh[x˸.,RCb'74T`ZY!Ub=E`l},utxvj<5sMר >a+&6WzRYFOb |"t#0>&S|!"=˥=MV1ƆjP@w !D':5:;9KMۚ ))/[w,HN[;*A e}4\SY:>;֒h@f-'q~ēfпc`G$^bdH C!̯ʅrg*l~FMba9@ }c94Ow O{oޫ3GjB௶E1Waܦ)L˹oV:P8cCFhX"GtbbPcd{>Lr=wxdwƘtQ75e>Ϥj@[%BRG`!""jQjMu^YL7=!}EzļN)]ش|ۯ=Z {1.P)f**oUPfzITBn-[x;T2=wS ne{瑧=ٳ,DoS/1f[[Ra3}Ek_k${lei()ѐTVRMbbk9b[쟠@ B|fTNNQK#F|0gXrERw#|/ۼ' &t7L`ۣ"=щc1 |k;璃"1qfݍЄA]Hka2ݵYwwH[Aq-Z޸Gw! ky6?v"H]~ +'gv:5+^ܡsg[lb^]/y] >S2YKU*V_X`9ťnK^-#:ڤNjx} u <#iū$ỶAt0o+ifj IhU/[PiI`{KN=R. %Xt3#΢h'+jk`$o't侱o';x wqS&o~/`kw'h{+w@%Nst>k E"xtXcCd~Zy.:4.U\T?)~g(HPyhTR`aPԯ8յOʳj)G} |FY.lk&hs ;#D45oIM 98FJP r4݆c*,a!ax#Daΐ.l4 2pWBاkKqLa|P(}'$:oLVKYA1l?Ŵ Mܐ p4Hys^X NE`X9-GO)AZ,֑uOJPI @m|Fo=2Eϥϋm)J>Z r{J#h2RO}b'Ctjţ9rΫnW QSnA>ʆd잽 +1lhTwnosKPVrΤ{vbUU),`b~RW"n8O s܅ꡁW$VyⅫ֍//}#{@/׋ϭDEq<㶃3O-Ye^': VUZ+a9T(V,qBaij"QļuFW@ VGqPDZ8 W°LQaRWR,8T()IJw {1:#tOK2wߤTY4FfBS\y&2óLږԘ,A'.IOټ@/Ԟ_"s3 E2o؍wb%6~:B3Nh]om1$oay͓UԖUj\R3}UTԦ*p8 Wզ ]*I7M9"!N CkAR(ʝkM,>:6KQp:ӗ0|vt; (Zì~2Rx\R"T(yw٘LJєr&f8aݺɷx! /+K{ a!l`'6x0xKup/1⍫W{jU_4yJY/e3{<9kzJެ<ڌTrT➦ >W¶8/g%T0xَAʹOo'dcRm/C=A2Jrt/|SL K7ºS͞'/_ʓ#l( 1$uo}<]?>-UhN/ JA׻z-Y:3fiHQCQoӈ=ye=o_zyVeEl. }IY(t-q XF)EOhbŚ &ŲիR:)o6Vsckz,u!pO%5msy>sNhA d!hMCh!8eUVhi PuHΛEX%ʗ]&վT7[TX|F :+nyd&9-2c-*;32$yS ކp1c.w0O-OoOSϞyPHUC_iU  &ZE/UCvM͋2]:D:#9͍G# e{}ݞbA Ҷژ6( oZqi#%cf-BD\\TN-׏A*lGwh1$(TqTwˎ=|]Dr!뾈?(6Z+rWB%7׀$",GsCDltғnEwcn Ţj;1#sQ1vjuu h&F>9s +͔.{*P; wθ5w(HATJ?{3 0aG7+WXeauJ"&+lec)niwzvkA91@$&&ؙ`a.;`sd$ Y]UҺ\4 Gbu3lfB#QiEIvo/B&tjۜm2TK42AB'ch S[jCw(߸ȧi40,Qo/_$QO]=Q.nˇ#G| 6UV[. nm9UŇ=[WK> OatwfLdĊ_Sv>gNt^hť'^evECoČA@R͘ 7&"&S"Qu d>A }3\aMj 1>H̶xJ$^J/ƖEM_+G\a?l#A-p=^&`4|- 9Dn;`r)_TH6wk;Lya[pȩ¼ gڽ錇 {dk(q<~l lan󽅖Z|!&Ai!8¾i6o-2n9K}_|-A/:)Q>ܧx(*bg/P=˹ a<09}m).eM,yoZؒY,`IV}R43-r\ UHϹYF+@% 7:-{8[ش <AM9.6[(L) V(늹96;%\l7qC'_DǜfplŽߞsV,Zcp~e@q`EbЎ X)^p]2)@*'^j]s\a//>4;ϏoRi~R8F_OIS| m)^>r%V%Nj: b‹S_:{4iHRzi ]q98/bD/*ZYEކrZTHfd( oA:. CQÅ ;䴼g6#>o: =9;YSCO %.xEY|n>Q-|rPz5NNNȍFCixw`͖߬J};*GV~&!:CyC(ײQo&_oOK i֋Q~Cowf>W'mfawag@')dT6s  q5A" Aw1!;&êUvMz$4Z"Gu:^ky0=K+)rea1r UTUa.\]i?s;C]SE.x܊A7MmaY !7ǵ!yǣ8@?½4()vn_VQ(ɦ;Z0% ;È&?JEM:O-=QG9L6?"MSYnWdl˞/HZl6p}HiI\"B!.6@|10|Md3<8ŵdU"#"3U/exC#lCg@QkJ0?0h* ( DbdG<Oyx}<#YAҵc@NITGb šSc_ "9b&*倭DzHc\bJQ^FUtby'uϐ$ &}$CE 3euNT"^dLWjLo-\ *oZʭT6,4,+kF_܀(=$}_ uBewXuǙc>j(^aX6n&}Zof(|7p4Y뷛ӑOi,WЇ p$ET3RŎp`-(#)4"+Vy?6nQS&G6Ψhv^7Ks 67wx \W^^ TN+I!WkF<;>xv2œt>^#n*6Fw 2 ܕJ4iG`= .v 7ȆVG=uf2DҴ7{(=gުB)Kx VޯlBzL!մNt3Sc $1H, ѢVFlX6,۪zad*Y 4gpN1VhϺ?DAq ݹC#ZCx7bΉ@ŽM D͌:.a!>l4qM5:}*|tǼa\blYARSFӭvWCɢA\Ҁ48#?YZ`Lbs/:^HH?5zэYR9)hs]K]k:{6WGjE " b$@~\w42)N~"~vųڝګe,}j'ؚHb( ϵe~y,̡#8i.k1Xe9 .\3@^yѼ"!Hj̱t]}\fyFES>*:i~LPNSfba M&3Tk saCinZFN(llCeA[N[׋'CZ_ I{쯌▜Vk@S36b$ Z}2gB 707(vV,"-[ bcP/\fͼ[UuX]!%#z \:@0遲GeDoT' *7[m(]kzM\Afq&o_5;nMK6wh"rdƸrY9 )IaZ &_џ]sҿ^ Vp#vo|Ý'仁 (wŁu7,n`'gBƱEI,wRZh7SW~&Eܐp+ÇZuuRt\C-YA382g:E$`E$U՚F<[˜q+w̼;ƯgD?F27RHmUGִscb FkoA@NjR^bI̩Ke1Yju>'kc5E 7auOsU*žDkH$+WJ4;`iEَy`q >v, M뚠=(M@'E'OnU1cO}lj}M%;N| V_8]kCr/;/:l,[`ȕCsԓN[)"|/8.o 5w>hp,3.)dߕbk}K9P&ڑE*ap9 {^/8t  %~Q#r18*/Uo1b HsC"~e9[|dZ|wE++Gj.W[j}p{~A (02ouֈ َ;kԞjNRΤA>o=b54H\tYpoK 6h J4x/Zz!'L)x-~4v&m+~(s|?t_-Zy@}s EPҷh֠=;Ff;cr|jaJc~ku &"(88K倱Dg 9Wt(3#"l_9>h`UXX${"4ۚzJ ɰmXז0-& ve ,/7@Ʒ0ݛV~S桻ɴR8*DG`C}"@k'='R YAQ`)z9} fչwm^7).few%Ϸ2k "wq˰2jҞ$jAҥiDE 0/=EBq 7nxD֟tSUd'Szg%|-*gUaUKI=;&N= Ŷ Tp=>vfȩsrT7@֩;E//&j$x2d eV1WS/cMhԽTV hj/a7/b_KD>2EAOze"UZ_g+ CTn?v~U ;,n"}7GZ H=/!n]o^壼kfxRe@N]zMުM{&2 SI qۇϫhךwTQ-ʕA}ue2uc_ktຖDck1sO֢~iʤ^:L"UAToJ.#~eʌ(ѴEW<eQ,%e!\oLBH=/HI!gA'la77^H>hQ {0YM2ut%-l.Rcn 9Ew2:DyUMHV| >[9C6ƌV_XbVft/ Fom-PBM囇cALr*D!yt $Pn#_4f !|C?p'b[Ԗ˨AK}41PFREG/82-RseUH.tɷYDc0nW;=A̍}FlRZ>fФ,.Uϻ2kqNZ'.;ڬyIjW|dxB|3q} !-ؖ^1 c|: Kn~dj,A޽ ~fN[Q=*\1Ĕ9|ʭsӯvg(kKfQ\|t.*%8WcU/IYns]I[cL [jx[μ9Oe5%B`5e/3s öJmxeO[G;oS6a~{1s.: k\_Wf?8rw4E״>؜} *ZMgϟ@ Eki=漨9jsM) {Jd>A#O;Nr)~j+~c (EJYUIO2[&4\p7$ z~~f^ѧ-4PT[80Mf@l$f |)m#/3:n2F~VžY&Xmn5 5r͍YѮZAy!@|+璉-:đօ{R]v/\}k{L&_5B105̀uYHp[FKS8.w q`ӳ]IrMg]O$bvg?^ ԑůg7 `3ϜCod^[oÆOn ngfF^\+]jJ$^  s:4y6U?1\en5?W&' 2U"4.eBdҚK)u;,QBzR*Iw%dQ'n+murqԫ}*VNm 1kH`/[N`{|rPHTzbzF[g!?cu=[A|%3tH?0"DEbڀ'//(v2Ppے2 Xrz/d 2Póœꋷ5g\C3fn}X4t`yۨ\2d0U6hp{*\^BAE DlwiZr6| joSMڄB?r0:ɢ8`Oě'O_q=n+7[hj5z>hA÷|ZUk,uiİo%n@]=>[UMd-C9oLVI q?”qoKPv[C@hHl”,qP6EQSv7s~-(A*s͎E2LƢrmԯ߿d:U~,7<ҿJ?O̊0!BTw’Cn&<ыDŽ`0bNu%@U7`3c+ݧ5,nZ-9۞GV㶒dsx TXXVyhّЛclAt HA'mliR%:ә"Mցp~iM>a+4(Ø[pɍ4$tśw4";PN=;.z2CV1{fňvH2m@+T*^<[*٣nP(ܬ݃B Nv&;|5@:B_^lDK-X Hеip@^E!%C7c]w{n ޝ?ˑZS 9 Q/m戠<_ee8CҴD22d`G+8r{O)wݒ>XDQᛂ 5tx)yf{/ N=ܯ3t&ֽ.UԹr34k* .4ͳ~o "ٚ>q.onpt!%XUV<0ӱ>'R_jBcJ\a%T&*'Y+F6 脙2`{ @m{#&6o Jtd`&}fs?kEpߞc;K"61T]* ,THAVcq8$g@[?80,k3b6K)K>Sy hU#qd$T10\'5\GPD e箱Hcu9%",49o /wyijT<&T~cJe?Ms~/xakC(=,Q&^ۃցĴ C5cĎl!i}] sS7AQR4يwO%7D2Ee&wQg/4PSeYOo ػwH8~Ʒ]؅b_!{vvlK[DF"5 Mz-4wWɆ(\{ b >(>/fMvw=nx#=xuݵJ}e^n9BhmosqT_mfb)K{2I Xᩏ!\FTIzˆ|hRŶT0=<<ٱB5z*]%DSfQi!SCɺ$ fʵ{*EJѳhM~1f4(UBAn&(ۮ7;v$XŲ?rgJ̉/}qorvժ$uTG]^2yP7iK+MN]x?GbeiE|JwGgqN}T#[EGɞ1-%>}'mC;̴״=RGV[i)[Gv^͊~%gX8fovO ae@Qb?BqĀ*`gGs:Gq%94l"p"+YkVw׳-O[7 CTb1@#-ʰ$zT)Ga*ƒ[{<߭$PʽՂ!} uYC`8ރ`*N\n|>*S(1(dﯴ(lN (zcFfSƑnԇ6 ƞHɚs*CuPo(lQeJ}E_i!2|Kb% tgUq~*+HP`n0x?!9`}kj˜LTGi8Rc^\qm)Qj9 ! O(! r1H &%dQ1Bnَ>>4% Q67mպܡ"r*@zʼ&x͏SaWp0g[ʥxSeYZGpUB)蚋}~**/hʪ^G3, ^yR㵭kd*[)7nu߶G= 3mX5g?k]Y6 *#;j.ft`~go#]W0EVZɝ'5|6+[X 6(tdZ(L1@68uzևr1۸-YEG!SMj1S( a-E<VrdqHSz?M2H*|«V./4J=>uŝa8g:eHl OσK3bђe@s}i¬>L$W4z7ߣ*&QLT"Qνs}`K9pll Gpn6=~SfY2 p&hNE̾%P T2;^"Zm#1ۏtaإ{\'ƻ%<1%9OЙD\7ze L.y J죠v65Z?"Q3NY4oEXf)}67,Z3>]+2eǤ5Z wn5-qS*WzQ$;ןL6o J R_(~)jp!Ho[Ljpw P0PLz4%tL,U~p+Nr&)U\lYXG pqC ^$k?ye#PkG+mRDUs{ V`0:m@a;ĕ*xist(vHtKlEb&!YEXh>{y)(yTl: ;?{KvÏmz7u򧠗 )hf9whZ5l VA8B-uȧ>?牔vNjaW{+/[cRF ׯYZ D.>8;@>ks)m~s\o"#EzXD C d|`W\{XkF8ڢ( Un޳Kܯ;>&;N=(!ŋ1ك^o|l-A0E"5*&7mTZ@ckǪyI*M2=ITyˌcҌTNtT~jU,(}#VavRq0sb]Y@ֲ bq1Kӡ\p1NjNi?͑󪦵U%_xf4m°n85ggue Xf?eF(I/xpr4ಂ7nt;ȱ7D.Ʌq.U@2[ *Y".ʦON8i=mXչ4"cr6gu"'9fxŽ?#s%L*m`?yl!z&g%HmX"ɨw\bE1ЧiVnJ\o_ćMyꥴHM\$s waÎhp*5Yim!=&,!!#ak 6Ф©k&sz"~R=q J}{aj؟r 9 ΑD҇fb 4SڜTLihiL(VvTF|+QUc!ugM1 hOd@g3|?y׫*U}v?F&i9TF6Z2O|,}-^vv :ۚISd/CH0d|T'&cK?aNFANBS/IEa,>x6v,ZSWWU]Dg%:߂nQg#f[\SΏC>B{}z9DҾv)*oĀrXPbˌ 9FM $'a6K[Ad.;nĬxٻb!cFgHc^h͐s> YCBBDǘE|/rlwh%Y֋'/cG / x|SGP ⱐL_R E_jFW,Y&r"R`0Q2q+6u6~Q^"kCA1 Zn>z~r蒎dsʌ~`G1͛+ita.ݵgEOh_{'*J c$w e;<V )>sK_T qTCg^% -/ÿ@<<#ԇ[TGO)_{EJU>jx K0^l`բm0PM8,O^9]]`+ݍc5-/m3P|ʯDbc>ujl)[2٬|Ҙ Ǡ^}bS/`oc]Fz@u_*l=}| Q5bTU'lmmJtWlKS b|L֑3e tW$#zFPsMsbDOy)F_E| "hfzlЉ=4NNl~Q2;>~~j/&=:^+ kT>:18!_vB\b& @ zY×$K"ɵJ[2 P@XfpJEpO=a/6P n %*GIW1vo:l+,.G"nCG29JK L%M&$̈́YB6 CeUL0dY\gX ]xl0嘅4쏂b1WclD}TehN3n? しdFLPEy4Wl*ac:wб¢Qo`ja>K %Ԣ,᬴- Б;kB7\gLqzOG_4ȰܡZ \>ɧ6x( 1ě g#0n\ndڵooYY| D/h}CYKB6Gi~iI]> Z3 h֡b,w2CdQ⼿IEjMŅ:耼(D)ʲ\`Kf{g+ui:[!+9G#ŲimR(&l pPa]*|?D.*ŝi=qóNb D@g=EHn?!SC!4㍪ ޚOې,mOK^ˡeP$S(hQg6QOivna:V˪qjjlT@AjjND29b?nIحwswvV06Z]־J{3itr퍨 l+&3]V_8f@ Vܰ LKa&N6 ZѺBS"iRT1>m?R.Tz$>]c4vwkQq=biH DY#XB_(00oVc1g(If(q5&|rCV 16)o@u妋j)8ؠe*׏)^Dh(C[ڧAr+M=E3k1|uy+U?Ό7E.x.9^x!bdKwFi'KsvD݅L{2݂6F{/Ll:a!dxbMd*fkwɼ q782{oW薳 Ͽ |Lid ^[|@&|\{뮎`:Fi~; AtQQؗl%n 6>(hpdcpI$xh+uz#\k+ hnE7{Z9.;]P_9Q{ijN7.L'y78op@kdj4A.BHjBچupnjWQYwuzQ#ٙퟃӂY_?2}봀t" RO:Eɐ΄,vng:)۔$a 4ɽ6q!y@/K"#E.G@%+!G-Sb@8?X4+7B& z' Ahg Ip2_Wk<~FjAd\.>.S8\֏1ƹH<(m{^%HnZS3dQ*hȚlyh{{ O)7ueƄՒTYXmdS9`#(}@;h|4֙`8!-L=|^x>6w scZ6ȃfoe'raѮxv movKETbfk q9c0e257 $?PlLfj`W]*oH;T}Vꂚ3WD/P}oD^9j}d5rg= `ENGo4C"E[Z?Fjrvnm`S)g C"ɻp G<˝Xjw6xy NLk[Ð٧z $Ɋ֎{GIe_]k@@lI N5|1Q'&Z45\?'q0Y۩ajc#A)'5$/Ӯ1_(Êe*{U00`NS哙b;(!4P;@Q}Ή^[K9h#NM('k#-Y)I,LHsN<#"w#X@;pfF{$3&gLty)aph 'TF1 CF!a~5^(.)Gw%6=gO]ӛk&{g`LꤟK!8opʧ17wlȥHxBbTZӬĬw1 ݣ&eW.z%5k„M?t>g }isMLrU~r)w0&f27 7Qjcó_244EZ! CqLB&mh 7 _%lЉ[ָRgoD=a~G݈I¨8.N5 7B[k[C ma3)ZAe+?,dĤz"<\޺r!oFJE"ϗVy贻ݸ`4y(CȬb+ 1G& {*ғ#H4ӈ] /Ō\lJyVPLT;9_]"Gyh?6Z}BӁ)<9 rvq n.3R:/&嫜&:,(;uKG7w9-WnxWYr +݈|k:gެƼJHe<{ņ=$3Mբ Kn0xz7nJ1 ΀0}kKҨ$w7$BЌQi Čõt-4? .~;B [v xH3 )O:C} Ł,b BDŽnjT 􄯁儕CLGk CrҋU13tK, PѬLrC*\7אH¼dt۾Q . Dƾ=+97- J8uG︚N2>x&x*!7Fs)`䵊}Uj>]0.JPn@p;W>.&%C4GSW#"{>+d.VHծr[X@Hz3/'Szvʼng\s_ />G')jr⾼5'"kF`-:1/w:^N8A?u擾D[t94v,v)wB<0^?8p=8?6GvS1{I; 5  чSĀ*Ahޮ-Vfv ׆A46=ƚ)%5|#a"gہ߻ ۏ)G {_stX;uڜ z'Nkf˯< :iȓR )$A(azx$G lzr|sN&_\H Ӫ]ƅ7%~-")fUe.{#py_$&PEz"G.hv[a,$zPa#lin˻݉KmA!A1LiZ#AfVIfeɺ*H"'=25H0P,%>"/:{C׆GnsS%&zdƺ>6ZO#T%242uT.Gn~*׈EtT#-叹}Up$#L%vBI"Ҩdmhh jrc^tWb\$W2/eUEtp1x !>h!k4j,KHIE좳H霝WrIĠYiT!c>@]֚:"9(RodL<}k2P:Vw+cۈKtK.ݡ`Ńp: 5pNߒrQSؖH.4j=K;,Ƒ*֊~NJu\F{erqT]3иrfk Qu >(O7 WMT8ߚjUHyE1}6j6p皘&'h'r|GTV eE:JCCFON, ,Öą73$spgݐ";APh}A'aiCbT^ܫ+7F ^9SZ(^y~TY ȳp9ZNYt_kv{ѵ2JZ)AWOnZeMU3BU}s=p3p~yQ*rl``kOyAc4絝 Qp*}e"en*W8ĞÐ߁`QٜÒ$|FfiZŊ(g{2$Qf3>FU'-Fqݲ.q5slNZ,:p1S^:АyV`rzSLHcP.:W+D!ND ͏ ъ;_=z+HS$_sxsiW\[ӽ"9+ U>}GoE:7u/?"Fy `.y:l"̨]z:WDXMM b,`k^G~D k*'C>/09u )68^]?&-lM`" ޷RDr YlYd%ñ4 C-Bٻ.WҫV(~lw?(#}ˠ<̖YPB4 6{ 'ˢGJjn 3tVH1o,=@H;ړ;)p6Pjy8zl_"1DRB@MьP{d7j;Rg?v6y1M7J8d9V#h;Ξqa0qF7}\ڪINKTF-I{`bjf\<u"q4Os@iF&ݜf p_a0> 9V#谎>h{X|jvzO [jvX5lI'U9Fo^/jŕp_حk}v ž/Tb<=̩t CD QK%/m/'s.㽭wAp};;Rø|UrUne;V8w%K%G iѵ3]h/Ӎ6 \mS?pޮ#7a侯m1iOàǽd^Z.iЏ4.IB1E %@R$}s(A{ZXQ Nj).Z&c7E4FU mF=F C 5>3$B^O$X(RL$& (ś(E\G#es7e="yH^FED*V\UBI. &8y3 @1Ot$$ t4`G Wৎc#[ t-#sjC)ڒ.0oطܔ򜜡(7h*+ZXi(lJ~mbO?3_=f.7d ~v(\^mȳ4T0IOmH_5h%dzЏ@vl:pYaGVfuWީ]!2nZseTBGEЎpec]dN@ IIz(Yn~'Jc nJ=u-E&6p9ʼn Lr#lzT!.צ*uٍ \tMBTSw -9-m n5é^ 5)ON|3ap~?J]%q30z!6(r2/D-6>=#~bXFנ oZZgJL֎b8F ʄ-,5 ^v# ㄂pAoJ?;5TW/v[.X%W =W1$!C)/?>^fup@>,.Ʒqh"n%\FIibr#oJ VwM]VL''Y ]*H$+Z,W |T_\ &#כ6('G18nyXrU!%z8lOH8j6yS;Kq^[W:a|(/Zia5V$ӊP6(l7=gn'c8fڣ| gD5P5sPN ةMDlS0[kGz.&> \Zu(X>9pZhzm2pO""c:q)ur~-xAJ\o8j* B!"KYЛ }~_*Yaa1]en. ܚ^!ɽ`rWXN+F6y@釩=S#bCBߪ6b1(u =a يs w&#4vhzEV5F/LeV=]u)G[S/OBgo'Xng8!NJƛUAInOS>d@`$aƊ 0x>ɏXҒQ ^HzCvF)H%^u e v!]ͅ~lHb۲f$Ib *ĪvKqR\ =V9Ժb.5$q Q{0-[yE }9H\EОhhJYabsFŌcMO&@mw&V&kmB ih*QVVZ%~-Jw0"ˬ=#m3A073MqL4Łp./fJ%^!8+0, lW'xuy:?Q~S(IkpXZX?jgAadD5RJcIOpS ~ݑl޵9FC@꼘,ģ3c?`p?pjݘG2ѨH5QHy@\]G#HMMqDD٠n`z 4Wqp[ZFH2d{ e\"R9lêxfɄK)dbY!0S1z^ JXGtQ,d( Pʋ:4~eSz')=F DOb*n5V^1RI?mc/)17*׻UԈzt ,%']'73pW;W>/(T y"'K̐'8k%*dbɥ/.bjέ/zφGQNu#4eۢ fN,UmCz$K YQ1,IMAWHVT,f{4}kCWKhWg%xw=K^?f'xP+9M}hY/ \oZ .-K?4ܼLϧjWcGn90T*I,=hàFZs7L=r*Ӄd &VWiøj(߇5JS}NנI*f&6En$ޡlT7gBa|WП-ƦI+Ijz-z,846wtݫȬcI~gAHĎ ]VBnZǴ T U4U/$ʼn$z*8TzWnl}Y,q[9Тrp xN704 R ܝO"/E,V- ($j!`t9GUMxOsYDS|qZVoce"/r񼁧A ,y*q]?XDUC#"P]cQHBӲ?rI~I2nG(3= بXY[;lǥ*i$5!w )E I,g.9:W&4o,6$_-}`5E;5&*vzj==<~("#ͳ)]+ZbǦ]|eq>k[:I;z7CfN ?7+n5~Ьu"X^4 Udݩ&1o6\ Y<t#y[Hւ&y iZy̅(+YG8n^8a9w{0"`&W9HńɡR}ڝ!|mY0\0U<mhl-5qz/p4J$xa&Yh-;Lisͱm->}.?qCF#X|NrD2\:lT/d,n9HRuه;TS2V(ܝܤbFPTUQ 7:oV`r|s%J!+K |NS*/>ܡX[%U8|Sp-V=~K/#)ro PO~xցˊORVpZk$z% Ь Ç*7/^\*q1iNFsf Lj 8^ )5wP*DS7Us#pҞ'U6 o%dx5|qA*Z]ՙRѡt͔,ka9okm @:;a6HR*#=}b)5,愿]xGa6X-*~@ҳ5h-b6LYYPy30&o`3-zP᫹&C4 FKҮL#.7uk^+_<길sGNR$i"-Έkӡ Ü]wOr[Ȧ kTt 1ZgϝEՕ5ݙepgDڥ=*q ZMpnZ2v / :Z?q%c̶nVʝoC|z\2?oɱNFCoSmN $t. e w')>m`]rz^0;tjًbˣ|GR?[>gPIX;72K+&d!D r*, 5LC2UyÄ`"S~cWI5=+̲:/G6 `J{%w S0iL(S+)iIDF%jAj gCך~C hH^?e YSf<nyCݲ\!jDI{\W|XS؝ V5ًP kLWqsҸPhSx%2giEj₁KHyH%[aqY8z:tb@2[qB̑In섅,ֵ' gG|~o"'X?`+ݜM~pͳM>/me {NNçnD4ss-==hjTH4Ej dxWLSƊO,HC۬ğغ PeLmtHLR'hX\qHHwڰ_Qq玩" KJĐspkG$/'G dsDLEN%攨dO!x?@&+*1EZd G@RӈzS)RyE?Mq|xa~j۞mLjXl| x z]!6"I#;ό`W)]֒V{ĽS~~K~ظ9ZmŒwO)'R"q[ViQ?EzJ#ĸ5*@`Q;ҤmFi\ƲSUCm~/7,K ?S<¯S;ϫ\68lyVRj'b*/v3$v(w$ <:6hAK%W;)bJ?G |ud"EG~-BB&w,ޚKiá&ªPŘ|ȃ/ӕ!$jdj@1|Rd$.f5NA>cu)jS:䏅yuAyl;jɛ9T& hY&gYMI5{V"ʦ0]|Q;U#gV*?ex:UEwq#Pң\TXk`N?Ŧ&; srjj?*!ˎ2˔;PhFgƚ+]hY[dr[h͓@jNK7_u]bQm/b_ÄQ;+.$.2JʭNsxe/zT%P8Et}h1#LTfײ蹂0Y\ %D,JcsΧfׅ#{J}/+)bmP`~hih_TӀWo㟒,-<~'&+grUԑC?4İ.xki6>M*BPDi :O52ݞz:N޷ozpu j1ly1nYmw'o_ u˂ P0#)b>AgHuĢX}-"k"G)E!I7a&'eޟ0ypBCBJ?쪘Q{+Pd} Du P2J3t(),m/{~OЕfUUj؜Ot6HgA'W1^E-VV;%dāk$A:@b!Y(B99veP5V#/?$^qMP~G-8J?{hjlNOM~d;![nϴVٕ=W>.ê~:+b;` .t@Jn?Y^5%;?_`=q-F⬃ϽߟaZNymBR~21־; h!0Prk;ޝEJ \I!sqAYq@͞%5WBQX 1I>wPy.Ehv&edCyxJ*w6 J h[2O(e.]ΙN T6݅XVQl, ubJ&-E-_1 J2IgOq=qiϩ($9b ^7OEo|4N]Y_A+M;*tr[Y {@pMзQSĴӈ4mtf> IPc?KUfU|+yt('m ӹA dAǰ'һ| A#WNJFe3콟jkh1ͯZw 4}i[8-z8$eB ;)m8&0w#C>-U :y5q;*4LN]gw/5V_')HM7*ųGM*7PUvDy/JdŒWM=KHqߟ(ÇnrJ dGD;}/fEhy>a%Ea>3 EvML>_!#㳅^Z:tĻƛY=#5Zlj\yzſUD#\\7|8!e7 }ֲa gEX|Uy˯|qd fHsJܙѐr)Kǻ` F4H!5 Sf+5v)ƇybF8kidG¨ alL|W\;YC *,6͍7<$.ArnLMz)'S"iv}UE tԗ$%M*Y"EθC/֪ J a]L8 ~Ѣz-B|lҪ9 T|"q<(J {; na0#m\ 4ʙ#-QHiWyhL(׼i{)ԵUjɷ9Wm Tc-Y$G}Pm?_-I|Ml"=gh$އmϵ"Q[NwSw_G42lt!SVXqP zkK|' z),s',Hw RK&G4#"dTwR9ˊV99$1Fz$*hl3̌-Ǩl탖( Wj %ձ QjEȣ%2xQڍܞ?֜}ZC,ėie#vjik:-OLT-p=oLVRF5l묱'l#L.{vKA!UM6 0ڴZt-Rl&PE BDT5;VnN#SS{dâ\|Sx(B)\7{Gq 2 DNe gX$N2 J)rw`6hNeE?኿l97s.MОT 4B E@N6g"pP,v[QS7ÞٿԿ.S =ǖHYc`8K OǶ YZ