mariadb-galera-10.4.20-3.9.1 >  A `Fp9|qA8=^q]o<3f<$M#3vZqxY)C_W|0.^# %2WGmqPi|5uElg2*ֺ?Q 0=|NV"zwFZ݄hJY<̨r뺩 e[z cg $0:\Ԉ{NOgz,/oK^hMXv쒪ĀV BMf73a3844dbcf9a066598b2f59792efeb0b455bcf9b08e5faa30ca25eeec217acd885319d4968d857b0abbe172b24df1723266213am`Fp9|aQ>UEٟO}z_bsyvKuBMR7]O9-OG'%3r(򐗬D\ܛN#-:ԋC1c*63z( ۭM#Cw и~B-ͨTgAdވ՟.'_M/-kGz0Z3;Ih"bL 2 xOcRMdϴ@]9*nMd0`psC28V>pA?d  Z0 Fc{    l  0 X      ( 8 E9 E:SEFνGHIhX|Yψ\ϴ]^zbcҾd@eEfHlJu\vӨwԼxyTzl|ՀՆCmariadb-galera10.4.203.9.1The configuration files and scripts for galera replicationThis package contains configuration files and scripts that are needed for running MariaDB Galera Cluster.`jgoat18JSUSE Linux Enterprise 15SUSE LLC SUSE-GPL-2.0-with-FLOSS-exceptionhttps://www.suse.com/Productivity/Databases/Toolshttps://www.mariadb.orglinuxx86_64  i]V.L@#Vb^]Rm큤A큤`~`~`~`~`~`~`~````````````~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_sst_rsyncrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootmariadb-10.4.20-3.9.1.src.rpmconfig(mariadb-galera)mariadb-galeramariadb-galera(x86-64)@@    /bin/bash/bin/shconfig(mariadb-galera)iproute2lsofmariadbrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)rsyncsocatwhich10.4.20-3.9.110.4.203.0.4-14.6.0-14.0-15.2-1 mariadbmariadb-tools10.1.2510.1.254.14.1` @_#_>e^ϧ^Ǿ^@^f/^_@^O@^9\]M@]J@]9]\v{\mA@\-@\@[@[G[[ @Z@Z@Z@ZZ@ZH@Z$ZZaZOhZKt@Z;@ZZ@Z@YeYeY@YYcl@Y-^X@X,XpXXbWXAb@X W]NW+5V@V\:@UM@U@U@U>U@UJ@U-@U-@U@U.@T@TPT7T@TT_W@danilo.spinella@suse.comkstreitova@suse.comkstreitova@suse.comkstreitova@suse.comkstreitova@suse.comkstreitova@suse.comkstreitova@suse.comkstreitova@suse.comkstreitova@suse.comkstreitova@suse.comkstreitova@suse.comkstreitova@suse.comkstreitova@suse.comkstreitova@suse.comkstreitova@suse.comkstreitova@suse.comkstreitova@suse.comkstreitova@suse.comkstreitova@suse.comkstreitova@suse.comkstreitova@suse.comkstreitova@suse.comkstreitova@suse.comkstreitova@suse.comkstreitova@suse.comro@suse.dersalevsky@suse.comkstreitova@suse.comdmueller@suse.comkstreitova@suse.comkstreitova@suse.comkstreitova@suse.comdimstar@opensuse.orgkstreitova@suse.comrhafer@suse.devcizek@suse.comkstreitova@suse.comvcizek@suse.combwiedemann@suse.comvcizek@suse.comkstreitova@suse.comfvogt@suse.comkstreitova@suse.comkstreitova@suse.comkstreitova@suse.comdimstar@opensuse.org13ilya@gmail.comkstreitova@suse.comkstreitova@suse.comkstreitova@suse.comdmueller@suse.comkstreitova@suse.comkstreitova@suse.comkstreitova@suse.comtchvatal@suse.comtchvatal@suse.comtchvatal@suse.comtchvatal@suse.comtchvatal@suse.commichal.hrusecky@opensuse.orgmichal.hrusecky@opensuse.orgdvaleev@suse.comsweet_f_a@gmx.demichal.hrusecky@opensuse.orgmgorse@suse.comxrigou@otenet.grxrigou@otenet.grmichal.hrusecky@opensuse.orgledest@gmail.com- Update to 10.4.20 [bsc#1182739] * release notes and changelog: https://mariadb.com/kb/en/library/mariadb-10420-release-notes https://mariadb.com/kb/en/library/mariadb-10420-changelog https://mariadb.com/kb/en/library/mariadb-10419-release-notes https://mariadb.com/kb/en/library/mariadb-10419-changelog https://mariadb.com/kb/en/library/mariadb-10418-release-notes https://mariadb.com/kb/en/library/mariadb-10418-changelog * fixes for the following security vulnerabilities: 10.4.20: none 10.4.19: CVE-2021-2154, bsc#1185872 CVE-2021-2166, bsc#1185870 10.4.18: CVE-2021-27928, bsc#1183770 * fixes for the following bugs: 10.4.20: none 10.4.19: none 10.4.18: bsc#1182255 - Refresh mariadb-10.1.1-mysqld_multi-features.patch- Update to 10.4.17 [bsc#1177472] and [bsc#1178428] * release notes and changelog: https://mariadb.com/kb/en/library/mariadb-10417-release-notes https://mariadb.com/kb/en/library/mariadb-10417-changelog https://mariadb.com/kb/en/library/mariadb-10416-release-notes https://mariadb.com/kb/en/library/mariadb-10416-changelog https://mariadb.com/kb/en/library/mariadb-10415-release-notes https://mariadb.com/kb/en/library/mariadb-10415-changelog * fixes for the following security vulnerabilities: 10.4.17: none 10.4.16: CVE-2020-14812, CVE-2020-14765, CVE-2020-14776, CVE-2020-14789 10.4.15: CVE-2020-15180 - refresh mariadb-10.2.19-link-and-enable-c++11-atomics.patch - update suse_skipped_tests.list- Update to 10.4.14 [bsc#1175596] * release notes and changelog: https://mariadb.com/kb/en/library/mariadb-10414-release-notes https://mariadb.com/kb/en/library/mariadb-10414-changelog * fixes for the following security vulnerabilities: none * the update fixes [bsc#1174559] and [bsc#1173516] (MariaDB crashes at db_sync from Keystone) - refresh mariadb-10.2.4-fortify-and-O.patch - fix patch sequence - tune the testsuite to avoid randomly failing tests - update suse_skipped_tests.list- Build with oqgraph by default for all codestreams [jsc#SLE-12253]- Update to 10.4.13 * release notes and changelog: https://mariadb.com/kb/en/library/mariadb-10413-release-notes https://mariadb.com/kb/en/library/mariadb-10413-changelog * fixes for the following security vulnerabilities: CVE-2020-2752, CVE-2020-2812, CVE-2020-2814, CVE-2020-2760, CVE-2020-13249 - fixes [bsc#1168380] (the same as [bsc#1166781]) MDEV-21244 mysql_upgrade creating empty global_priv table support upgrades from 5.2 privilege tables - drop specfile "hacks" as things work correctly in upstream now: * renaming tmpfiles.conf -> mariadb.conf * installing pam_user_map.so to /lib64/security for non 32bit architectures * sysusers.conf was renamed to mariadb.conf - update suse_skipped_tests.list- move mariadb-client-test from client subpackage to test subpackage so the symlink from mariadb-client-test -> mysql_client_test works [bsc#1170204]- update the list of the skipped tests- test macros: clarify who is admin and user of the database, fix build with 10.4 - modified sources % macros.mariadb-test- disable testing with rpm macros as it does not work as for 10.4, needs to be investigated - remove @VERSION@ from mariadb.service and mariadb@.service- update to 10.4.12 [jsc#SLE-8269] * Changes & Improvements https://mariadb.com/kb/en/changes-improvements-in-mariadb-104/ https://mariadb.com/kb/en/changes-improvements-in-mariadb-103/ * Fixes for the following security vulnerabilities: CVE-2020-2574 * don't let mysql_install_db set SUID bit for auth_pam_tool in rpm/deb packages CVE-2020-7221 [bsc#1160868] - pack pam_user_map.so module in the /%{_lib}/security directory and user_map.conf configuration file in the /etc/security directory - fix race condition with mysql_upgrade_info status file by moving it to the location owned by root (/var/lib/misc) CVE-2019-18901 [bsc#1160895] - move .run-mysql_upgrade file from $datadir/.run-mysql_upgrade to /var/lib/misc/.mariadb_run_upgrade so the mysql user can't use it for a symlink attack [bsc#1160912] - change -DWITH_COMMENT and -DCOMPILATION_COMMENT to be SUSE/openSUSE independent - enhance mariadb.service and mariadb@.service with various options (Documentation=, User=, Group=, KillSignal=, SendSIGKILL=, Restart=, RestartSec=, CapabilityBoundingSet=, ProtectSystem=, ProtectHome=, PermissionsStartOnly= and UMask=) [bsc#1160878] - mysql-systemd-helper: use systemd-tmpfiles instead of shell script operations for a cleaner and safer creating of /run/mysql [bsc#1160883] - pack mariadb variants of the mysql binaries (e.g. mariadb-dumpslow is a symlink to mysqldumpslow and the like) - update suse_skipped_tests.list - _constraints: increase physicalmemory value - package auth_pam_tool setuid binary properly - add cracklib-password-check subpackage but do not build it right now (cracklib-dict-full >= 2.9.0 is not available yet) - add rcmariadb compat link - add mariadb-rpmlintrc file - do not move my_safe_process to bindir but use rpmlint arch-dependent-file-in-usr-share exception for it (this file is used just for the testing and it doesn't have to be in bindir - added rpm test macros: %mysql_testserver_start, %mysql_testserver_cconf, %mysql_testserver_stop First two consuments are python-sortinghat and python-mysqlclient. - remove sql_mode from my.ini/my.cnf as NO_ENGINE_SUBSTITUTION and STRICT_TRANS_TABLES are already set by default from version 10.2.4 [bsc#1144314] - add "BuildRequires: python3" as some tests and myrocks_hotbackup script need python3. Make the PYTHON_SHEBANG value configurable [bsc#1142909] - add "Requires: python3-mysqlclient" that is needed by myrocks_hotbackup script - remove "innodb_file_format" option from my.ini (my.cnf) file that was removed in MariaDB 10.3.1. Also remove "innodb_file_per_table=ON" option that is by default ON and it's redundant now. - Use FAT LTO objects in order to provide proper static library. - refresh README.install and suse-test-run - rename libmysqld subpackage (embedded library) to libmariadbd as libmysqld.so was renamed to libmariadbd.so (MDEV-14953) - simplify removing static libs (we don't need to have .static) - add perl(Memoize) and perl(Symbol) to BuildRequires and Requires that are needed for tests - replace Requires pwdutils with shadow - build RocksDB only for x86_64 as other platforms are not supported - add the following patches * add mariadb-10.2.19-link-and-enable-c++11-atomics.patch to link against libatomic where necessary and use C++11 atomics instead of gcc built-in atomics * mariadb-10.4.12-harden_setuid.patch to harden auth_pam_tool setuid-root binary [bsc#1160285] * mariadb-10.4.12-fix-install-db.patch to improve default behaviour of mysql_install_db. This prevents performing security sensitive actions to be performed but instead only warns the caller (bsc#1160868) - refresh mariadb-10.2.4-fortify-and-O.patch - remove the following patches: * mysql-community-server-5.1.45-multi-configuration.patch as we have the same configuration in /etc/my.cnf and it doesn't make any sense to keep it twice. Moreover the patched file support-files/my-medium.cnf.sh was removed in upstream * mariadb-5.5.28-install_db-quiet.patch and add "--rpm" option to the mysql_install_db script that does basically the same [bsc#1080891] * mariadb-5.2.3-cnf.patch as all patched files were removed upstream * remove mariadb-10.1.12-deharcode-libdir.patch because it's not needed - we don't build libmariadb library in mariadb package anymore so we don't need to take care about LIBDIR and PLUGINDIR here. Moreover we shouldn't (and we don't) touch *_RPM variables as they are internal) [bsc#1080891] * mariadb-10.2.9-galera_cnf.patch as it's not clear what the correct path to galera wsrep provider is while users can use galera 3, galera 4 or galera compiled on their own- update to 10.2.29 GA * Fixes for the following security vulnerabilities: * 10.2.29: none * 10.2.28: CVE-2019-2974, CVE-2019-2938 * 10.2.27: none * 10.2.26: CVE-2019-2805, CVE-2019-2740, CVE-2019-2739, CVE-2019-2737, CVE-2019-2758 * release notes and changelog: https://mariadb.com/kb/en/library/mariadb-10229-release-notes https://mariadb.com/kb/en/library/mariadb-10229-changelog https://mariadb.com/kb/en/library/mariadb-10228-release-notes https://mariadb.com/kb/en/library/mariadb-10228-changelog https://mariadb.com/kb/en/library/mariadb-10227-release-notes https://mariadb.com/kb/en/library/mariadb-10227-changelog https://mariadb.com/kb/en/library/mariadb-10226-release-notes https://mariadb.com/kb/en/library/mariadb-10226-changelog - refresh mariadb-10.0.15-logrotate-su.patch mariadb-10.2.4-logrotate.patch - tracker bug [bsc#1156669] - update the list of the skipped tests * add main.gis_notembedded to the skipped tests (fails when latin1 is not set) * add unit.conc_connection- adjust mysql-systemd-helper ("shutdown protected MySQL" section) so it checks both ping response and the pid in a process list as it can take some time till the process is terminated. Otherwise it can lead to "found left-over process" situation when regular mariadb is started [bsc#1143215]- remove client_ed25519.so plugin because it's shipped in mariadb-connector-c package (libmariadb_plugins)- update to 10.2.25 GA * Fixes for the following security vulnerabilities: * 10.2.23: none * 10.2.24: CVE-2019-2628, CVE-2019-2627, CVE-2019-2614 * 10.2.25: none * release notes and changelog: https://mariadb.com/kb/en/library/mariadb-10223-release-notes https://mariadb.com/kb/en/library/mariadb-10223-changelog https://mariadb.com/kb/en/library/mariadb-10224-release-notes https://mariadb.com/kb/en/library/mariadb-10224-changelog https://mariadb.com/kb/en/library/mariadb-10225-release-notes https://mariadb.com/kb/en/library/mariadb-10225-changelog - remove mariadb-10.2.22-fix_path.patch that was applied upstream in mariadb 10.2.23 - remove caching_sha2_password.so because it's shipped in mariadb-connector-c package (libmariadb_plugins) - remove xtrabackup scripts as it was replaced by mariabackup (we already removed xtrabackup requires in the first phase) - fix reading options for multiple instances if my${INSTANCE}.cnf is used. Also remove "umask 077" from mysql-systemd-helper that causes that new datadirs are created with wrong permissions. Set correct permissions for files created by us (mysql_upgrade_info, .run-mysql_upgrade) [bsc#1132666] - fix build comment to not refer to openSUSE - tracker bug [bsc#1136035]- add mariadb-10.2.22-fix_path.patch to fix a path to resolveip in mysql_install_db script [bsc#1127027] MDEV-18526- update to 10.2.22 GA * notable changes: * Backport Information Schema CHECK_CONSTRAINTS Table. * MDEV-17475: Maximum value of table_definition_cache is now 2097152 * InnoDB ALTER TABLE fixes: MDEV-16499, MDEV-18186, MDEV-18237, MDEV-18222, MDEV-18256, MDEV-18016, MDEV-16849 * Mariabackup fixes: MDEV-18185, MDEV-18201, MDEV-18194 * Galera crash recovery fix: MDEV-15740 * Encryption fixes: MDEV-18129, MDEV-18183, MDEV-18279 * Fixes for the following security vulnerabilities: * CVE-2019-2510, CVE-2019-2537 * release notes and changelog: https://mariadb.com/kb/en/library/mariadb-10222-release-notes https://mariadb.com/kb/en/library/mariadb-10222-changelog - add slow_query_log example to my.cnf (my.ini) and adjust the logrotate configuration to rotate all /var/log/mysql/*.log files. This is useful when the slow query log is enabled. In that case, this log file should also be rotated (bsc#1112767) * refresh the following patches: mariadb-10.0.15-logrotate-su.patch mariadb-10.2.4-logrotate.patch mariadb-10.2.9-galera_cnf.patch - fix references path below legacy directory /var/run -> /run - remove xtrabackup requirement as MariaDB ships a build in mariabackup so xtrabackup is not needed unless a user specificaly wants to use xtrabackup as sst method (also solves [bsc#1122475]) - tracker bug [bsc#1122198]- update to 10.2.21 GA * notable changes: * MDEV-17589 - Stack-buffer-overflow with indexed varchar (utf8) field * MDEV-16987 - ALTER DATABASE possible in read-only mode (forbid ALTER DATABASE in read_only) * MDEV-17720 - slave_ddl_exec_mode=IDEMPOTENT does not handle DROP DATABASE * MDEV-6453 - Assertion `inited==NONE || (inited==RND && scan)' failed in handler::ha_rnd_init(bool) with InnoDB, joins, AND/OR conditions * MDEV-18105 - Mariabackup fails to copy encrypted InnoDB system tablespace if LSN>4G * MDEV-18041 - Database corruption after renaming a prefix-indexed column [bsc#1120041] * MDEV-17470 - Orphan temporary files after interrupted ALTER cause InnoDB: Operating system error number 17 and eventual fatal error 71 * MDEV-17833: ALTER TABLE is not enforcing prefix index size limit * MDEV-17989: InnoDB: Failing assertion: dict_tf2_is_valid(flags, flags2) * MDEV-17765: Locking bug fix for SPATIAL INDEX * MDEV-17923, MDEV-17904, MDEV-17938: Fixes for FULLTEXT INDEX * Fixes for regressions introduced in MariaDB Server 10.2.19 by the backup-safe TRUNCATE TABLE (MDEV-13564, innodb_safe_truncate=ON) and innodb_undo_log_truncate: * MDEV-17780, MDEV-17816, MDEV-17849, MDEV-17851, MDEV-17885 * Several improvements to MariaDB Server and backup for dealing with encrypted or page_compressed pages: * MDEV-12112: corruption in encrypted table may be overlooked * MDEV-17958: On little-endian systems, remove bug-compatible variant of innodb_checksum_algorithm=crc32 * MDEV-17957: Make innodb_checksum_algorithm stricter for strict_* values * MDEV-18025: Mariabackup fails to detect corrupted page_compressed=1 tables * fixes for the following security vulnerabilities: none * release notes and changelog: https://mariadb.com/kb/en/library/mariadb-10221-release-notes https://mariadb.com/kb/en/library/mariadb-10221-changelog https://mariadb.com/kb/en/library/mariadb-10220-release-notes https://mariadb.com/kb/en/library/mariadb-10220-changelog - update suse_skipped_tests.list- remove PerconaFT from the package as it has AGPL licence [bsc#1118754]- update to 10.2.19 GA [bsc#1116686] * notable changes: * innodb_safe_truncate system variable for a backup-safe TRUNCATE TABLE implementation that is based on RENAME, CREATE, DROP (MDEV-14717, MDEV-14585, MDEV-13564). Default value for this variable is ON. If you absolutely must use XtraBackup instead of Mariabackup, you can set it to OFF and restart the server * MDEV-17289: Multi-pass recovery fails to apply some redo log records * MDEV-17073: INSERT…ON DUPLICATE KEY UPDATE became more deadlock-prone * MDEV-17491: micro optimize page_id_t * MDEV-13671: InnoDB should use case-insensitive column name comparisons like the rest of the server * Fixes for indexed virtual columns: MDEV-17215, MDEV-16980 * MDEV-17433: Allow InnoDB start up with empty ib_logfile0 from mariabackup --prepare * MDEV-12547: InnoDB FULLTEXT index has too strict innodb_ft_result_cache_limit max limit * MDEV-17541: KILL QUERY during lock wait in FOREIGN KEY check causes hang * MDEV-17531: Crash in RENAME TABLE with FOREIGN KEY and FULLTEXT INDEX * MDEV-17532: Performance_schema reports wrong directory for the temporary files of ALTER TABLE…ALGORITHM=INPLACE * MDEV-17545: Predicate lock for SPATIAL INDEX should lock non-matching record * MDEV-17546: SPATIAL INDEX should not be allowed for FOREIGN KEY * MDEV-17548: Incorrect access to off-page column for indexed virtual column * MDEV-12023: Assertion failure sym_node->table != NULL on startup * MDEV-17230: encryption_key_id from alter is ignored by encryption threads * fixes for the following security vulnerabilities: CVE-2018-3282 [bsc#1112432], CVE-2016-9843 [bsc#1013882], CVE-2018-3174 [bsc#1112368], CVE-2018-3143 [bsc#1112421], CVE-2018-3156 [bsc#1112417], CVE-2018-3251 [bsc#1112397], CVE-2018-3185 [bsc#1112384], CVE-2018-3277 [bsc#1112391], CVE-2018-3162 [bsc#1112415], CVE-2018-3173 [bsc#1112386], CVE-2018-3200 [bsc#1112404], CVE-2018-3284 [bsc#1112377] * release notes and changelog: https://mariadb.com/kb/en/library/mariadb-10219-release-notes https://mariadb.com/kb/en/library/mariadb-10219-changelog - do not pack libmariadb.pc (packed in mariadb-connector-c)- update to MariaDB 10.2.18 * notable changes in 10.2.18 * MDEV-15511 - if available, stunnel can be used during Galera rsync SST * MDEV-16791 - mariabackup: Support DDL commands during backup * MDEV-13564 - Refuse MLOG_TRUNCATE in mariabackup * MDEV-16934 - add new system variable eq_range_index_dive_limit to speed up queries that new long nested IN lists. The default value, for backward compatibility, is 0 meaning "unlimited". * MDEV-13333 - errors on InnoDB lock conflict * Report all InnoDB redo log corruption * MDEV-17043 - Purge of indexed virtual columns may cause hang on table-rebuilding DDL * MDEV-16868 - corruption of InnoDB temporary tables * MDEV-16465 - Invalid (old?) table or database name or hang in ha_innobase::delete_table and log semaphore wait upon concurrent DDL with foreign keys * it fixes the following security vulnerabilities: CVE-2018-3066 [bsc#1101678], CVE-2018-3064 [bsc#1103342] CVE-2018-3063 [bsc#1101677], CVE-2018-3060 (no bsc) CVE-2018-3058 [bsc#1101676] * release notes and changelog: https://mariadb.com/kb/en/library/mariadb-10218-release-notes https://mariadb.com/kb/en/library/mariadb-10218-changelog - refresh mariadb-5.5.28-install_db-quiet.patch - refresh mariadb-10.2.4-fortify-and-O.patch - refresh mariadb-10.2.9-galera_cnf.patch - pack wsrep_sst_rsync_wan file to galera subpackage (not shipped) - add "Requires: libmariadb_plugins" to the mariadb-test subpackage in order to be able to test client plugins successfuly [bsc#1111859] - don't remove debug_key_management.so anymore [bsc#1111858]- switch to libedit as control sequences were already fixed there so we don't have to avoid it [bsc#1098683]- update to 10.2.15 GA * notable changes: * PCRE updated to 8.42 * The embedded server library now supports SSL when connecting to remote servers [bsc#1088681], [CVE-2018-2767] * MDEV-15325 - Incomplete validation of missing tablespace during recovery * MDEV-15720 - ib_buffer_pool unnecessarily includes the temporary tablespace * MDEV-15764 - InnoDB may write uninitialized garbage to redo log * MDEV-15553 - Virtual Columns: Assertion failed in dict_table_get_col_name * MDEV-14705 - slow innodb startup/shutdown can exceed systemd timeout * MDEV-15507 - Assertion failed in dict_check_sys_tables on upgrade from 5.5 * MDEV-15916 - Change buffer crash during TRUNCATE or DROP TABLE * encryption fixes - MDEV-12632, MDEV-13516, MDEV-15752, MDEV-15566, MDEV-16092 * temporary table ROLLBACK fixes - MDEV-15826, MDEV-15374 * applicable changes from 5.7.22 - MDEV-16142 * fixes for the following security vulnerabilities: CVE-2018-2786, CVE-2018-2759, CVE-2018-2777, CVE-2018-2810, CVE-2018-2782, CVE-2018-2784, CVE-2018-2787, CVE-2018-2766, CVE-2018-2755, CVE-2018-2819, CVE-2018-2817, CVE-2018-2761, CVE-2018-2781, CVE-2018-2771, CVE-2018-2813 * release notes and changelog: https://mariadb.com/kb/en/library/mariadb-10215-release-notes https://mariadb.com/kb/en/library/mariadb-10215-changelog - update suse_skipped_tests.list and add tests that are failing with GCC 8 [bsc#1092544], MDEV-16127 - do not build TokuDB as a build without jemalloc is not supported upstream- update suse_skipped_tests.list and add failing tests for s390- update to 10.2.14 GA * notable changes: * MyRocks is now Gamma (RC) * MDEV-14533 - Added the DISKS plugin, for monitoring disk space * MDEV-14611 - ALTER TABLE EXCHANGE PARTITION does not work properly when used with DATA DIRECTORY. * MDEV-15333 - MariaDB (still) slow start * MDEV-12255 - Wrong result with innodb_prefix_index_cluster_optimization * MDEV-12396 - IMPORT TABLESPACE cleanup * MDEV-14648 - Restore fix for MySQL BUG#39053 - UNINSTALL PLUGIN does not allow the storage engine to cleanup open connections * MDEV-15249 - IMPORT fixes * MDEV-14988 - innodb_read_only tries to modify files if transactions were recovered in COMMITTED state * MDEV-14773 - DROP TABLE hangs for InnoDB table with FULLTEXT index (fixing a recent regression from upstream) * MDEV-15529 - IMPORT TABLESPACE unnecessarily uses the doublewrite buffer * MDEV-15554 - InnoDB page_cleaner shutdown sometimes hangs * MDEV-14545 - Mariabackup - Backup fails due to MLOG_INDEX_LOAD record * fixes for the following security vulnerabilities: none * release notes and changelog: https://mariadb.com/kb/en/library/mariadb-10214-release-notes https://mariadb.com/kb/en/library/mariadb-10214-changelog - remove the following patches * mariadb-10.2.14-xtrabackup-v2.patch (applied upstream, MDEV-15254) * mariadb-10.2.13-aarch_compilefix.patch (applied upstream, MDEV-14318) * mariadb-10.2.10-disable_openssl_compatibility_check.patch (fixed upstream in https://github.com/MariaDB/server/pull/558) * mariadb-10.2.8-systemd-cmake.patch and DWITH_SYSTEMD=ON compile option that are no longer needed - systemd is detected correctly now (discussed in [bsc#1080891] and MDEV-8379) * mariadb-10.2.3-mysql_install_db-mariadb_dirs.patch (fixed upstream in 52516706c86f9f66c76836eabde7e2477694bac3) * remove mariadb-10.2.3-group.patch that was just a half solution of the group support (missing server part) and moreover using a group option in mysql-systemd-helper was removed few years ago as it caused troubles because MariaDB resolved it as 'group_concat_max_len option' (see https://github.com/openSUSE/mysql-packaging/issues/15) - remove jar files from the tarball (used for testing from the source) - build TokuDB without the jemalloc support for now. Jemalloc 5 is not backwards compatible which leads to the errors in the testsuite at least (MDEV-15034) - update suse_skipped_tests.list- change %{extra_provides} macro from "mariadb_102" to "mariadb-102" and use this macro in Provides/Obsoletes for mariadb, test, tools, bench and errormessages subpackages to ensure a smooth transition from SLE12 to SLE15 [fate#323756] - remove "Provides: mariadb-errormessages = 10.1.25" that shouldn't be needed anymore- fix build on aarch64: compile a few more files with -O0 from https://jira.mariadb.org/browse/MDEV-14318 add patch mariadb-10.2.13-aarch_compilefix.patch- add mariadb-10.2.14-xtrabackup-v2.patch (bsc#1083087)- update to 10.2.13 GA * notable changes * InnoDB updated to 5.7.21 * Galera wsrep library updated to 25.3.23 * MDEV-13869 - MariaDB slow start * MDEV-14611 - ALTER TABLE EXCHANGE PARTITION does not work properly when used with DATA DIRECTORY * MDEV-15249 - Crash in MVCC read after IMPORT TABLESPACE * Foreign key bugs: * MDEV-15199 - Referential integrity broken in ON DELETE CASCADE/MDEV-14222 Unnecessary 'cascade' memory allocation for every updated row * MDEV-15219 - FOREIGN KEY CASCADE or SET NULL operations will not resume after lock wait * MDEV-15042 - INSERT ON DUPLICATE KEY UPDATE produces error 1032 (Can't find record) * MDEV-13205 - InnoDB: Failing assertion: !dict_index_is_online_ddl(index) upon ALTER TABLE * MDEV-14958 - Merge new release of InnoDB MySQL 5.7.21 to 10.2 * MDEV-15165 - InnoDB purge for index on virtual column is trying to access an incomplete record * MDEV-15143 - InnoDB: Rollback of trx with id 0 completed * MDEV-11415 - Remove excessive undo logging during ALTER TABLE…ALGORITHM=COPY * MDEV-15016 - multiple page cleaner threads use a lot of CPU * MDEV-14941 - Timeouts on persistent statistics tables caused by MDEV-14511 * MDEV-14985 - innodb_undo_log_truncate may be blocked if transactions were recovered at startup * MDEV-14441 - InnoDB hangs when setting innodb_adaptive_hash_index=OFF during UPDATE * MDEV-14887 - On a 32-bit system, MariaDB 10.2 mishandles data file sizes exceeding 4GiB * fixes for the following security vulnerabilities: * CVE-2018-2562, CVE-2018-2622, CVE-2018-2640, CVE-2018-2665, CVE-2018-2668, CVE-2018-2612 * release notes and changelog: https://mariadb.com/kb/en/library/mariadb-10213-release-notes/ https://mariadb.com/kb/en/library/mariadb-10213-changelog/ * fixes [bsc#1058729] and [bsc#1068906] - refresh mariadb-10.2.10-disable_openssl_compatibility_check.patch - refresh mariadb-10.2.3-group.patch- add dependency on which for galera scripts- change owner of mysql-test directory from root to mysql. It also fixes sys_vars.secure_file_priv running under mysql user (e.g. if ít's started via suse-test-run script) that needs to be able to create a test file there during its run [bsc#1012075]- update to 10.2.12 GA * release notes and changelog: https://mariadb.com/kb/en/library/mariadb-10212-release-notes/ https://mariadb.com/kb/en/library/mariadb-10212-changelog/ - remove mysql-community-server-5.5.6-safe-process-in-bin.patch becuase this moving is done in the specfile - get rid of the archive with patches (remove mysql-patches.tar.xz and series files), handle patches in the standard way mysql-community-server-5.1.45-multi-configuration.patch mariadb-10.2.4-logrotate.patch mariadb-5.5.28-install_db-quiet.patch mariadb-10.1.1-mysqld_multi-features.patch mariadb-5.2.3-cnf.patch mariadb-10.2.3-group.patch mariadb-10.1.12-deharcode-libdir.patch mariadb-10.0.15-logrotate-su.patch mariadb-10.2.4-fortify-and-O.patch mariadb-10.2.8-systemd-cmake.patch mariadb-10.2.3-mysql_install_db-mariadb_dirs.patch mariadb-10.2.9-galera_cnf.patch mariadb-10.2.10-disable_openssl_compatibility_check.patch - add comments to the section with removing unused files (based on https://lists.launchpad.net/maria-developers/msg11028.html) - put rm statements together - install the new upstream systemd-tmpfiles configuration file 'tmpfiles.conf' and rename it to 'mariadb.conf' in order to follow the manual - remove the new upstream systemd-sysusers configuration file as we handle creating of mysql user in the specfile - mysql.service: remove calling of the wait function and let systemd to do this job. Switch from 'Type=simple' to 'Type=notify' and add TimeoutSec=300 - rename unit files from mysql to mariadb and add mysql alias for the backward compatibility [bsc#1067443] * mysql.service -> mariadb.service * mysql.target -> mariadb.target * mysql@.service -> mariadb@.service - remove configuration-tweaks.tar.xz and move configuration to my.ini/my.cnf file (omit default_plugins.cnf as all configuration here was commented out) - add a numeric prefix for galera.cnf file in order to allow users to speficy in which order the configs will be loaded within the my.cnf.d directory [bsc#1055268] - add 'bind-address = 127.0.0.1' as a default option to my.cnf file for security reasons (disable MariaDB to listen for TCP/IP connections by default) [bsc#1058374] - update my.cnf file and add a section with SSL configuration [bsc#1058374]- switch from deprecated 'net-tools' to 'iproute2' for mariadb-galera subpackage. This dependency switch is sufficient for making wsrep_sst_rsync.sh script to use 'ip' instead of 'ifconfig' command- Do not manually delete %{_localstatedir}/adm/update-messages/%{name}-%{version}-%{release}-something: The file is listed as ghost and thus properly owned by the package. - Use %tmpfiles_create which can cope with transactional updates.- update to 10.2.11 GA * release notes and changelog: * https://mariadb.com/kb/en/library/mariadb-10211-release-notes/ * https://mariadb.com/kb/en/library/mariadb-10211-changelog/ - pack additional mroonga/groonga files - change default charset to utf8mb4 for full Unicode support [fate#324329] - remove mariadb-10.2.10-wsrep_sst_common.patch as it's no longer needed- Added mariadb-10.2.10-wsrep_sst_common.patch (bsc#1069401). Upstream bug: https://jira.mariadb.org/browse/MDEV-14256- Disable openssl compatibility checking * the check uses CRYPTO_set_mem_functions() to set debugging memory allocation function. The setting only succeeds if no allocation was done before. Our fips self-tests, which are run from the library constructor, however, do allocate memory, so the subsequent call to CRYPTO_set_mem_functions causes the compatibility check to fail * add mariadb-10.2.10-disable_openssl_compatibility_check.patch- update to 10.2.10 GA * release notes and changelogs https://downloads.mariadb.org/mariadb/+releases/ * fixes for the following security vulnerabilities * 10.2.10: CVE-2017-10378, CVE-2017-10268, CVE-2017-15365 * 10.2.8: CVE-2017-3636, CVE-2017-3641, CVE-2017-3653, CVE-2017-10320, CVE-2017-10365, CVE-2017-10379, CVE-2017-10384, CVE-2017-10286, CVE-2017-3257 * 10.2.6: CVE-2017-3308, CVE-2017-3309, CVE-2017-3453, CVE-2017-3456, CVE-2017-3464 * 10.2.5: CVE-2017-3313, CVE-2017-3302 * [bsc#1042632], [bsc#1043328], [bsc#1019948], [fate#323738] - refresh and rename the following patches: * mariadb-10.1.4-group.patch to mariadb-10.2.3-group.patch * mariadb-10.1.16-systemd-cmake.patch to mariadb-10.2.8-systemd-cmake.patch * mariadb-10.1.18-mysql_install_db-mariadb_dirs.patch to mariadb-10.2.3-mysql_install_db-mariadb_dirs.patch * mariadb-10.1.12-fortify-and-O.patch to mariadb-10.2.4-fortify-and-O.patch * mysql-community-server-5.1.46-logrotate.patch to mariadb-10.2.4-logrotate.patch - add mariadb-10.2.10.tar.gz.sig signature and mariadb.keyring files - start building without client library part, use mariadb-connector-c for getting libmariadb libraries. Remove libmysclient* packages - remove baselibs.conf because we no longer build client libraries here - update %{soname} to 19 (libmysqld soname) - change '=' to '>=' in Requires:mariadb-errormessages for libmysqld%{soname}. Versioned libraries shouldn't require regular packages with '='. It also causes problems during update (Problem: libmysqld18-10.1.25-3.1.x86_64 requires mariadb-errormessages = 10.1.25, but this requirement cannot be provided). Also add "Provides: mariadb-errormessages = 10.1.25" for errormessages subpackage that solves this problem for the current update. - pack new files, remove mysql specific files - remove README.SUSE as it was outdated - package cleaning * run spec-cleaner * renumber sources * reorganize subpackages order and update summaries, descriptions and groups * tweak and add some comments to the specfile * remove warning about mysql-packaging repository that is no longer used for this package * remove checks whether we build mysql or mariadb (we build mariadb only) - add galera subpackage * add missing "Requires:" (lsof, net-tools, rsync, socat, xtrabackup) for proper wsrep scripts functionality * add mariadb-10.2.9-galera_cnf.patch that enhances galera.cnf configuration file (add wsrep_on=OFF and set the location of the wsrep library) * rename README-wsrep to README.wsrep so it corresponds with the other README names * move galera_new_cluster, galera_recovery, use_galera_new_cluster.conf, wsrep_* scripts to the galera subpackage - remove the following macros definitions: * %{_tmpfilesdir} - it's been defined in systemd macros since openSUSE 13.2 * %{preferred} - we no longer need to distinguish between preferred and not preferred version (we build mariadb only) * %{with_mandatory_lz4} - mysql specific * %{build_extras}, %{pretty_name}, %{build_readline}, %{builtin_plugins} and {libname} - they are no longer needed - add the following macros * %{run_testsuite} macro that controls the run of the regression testsuite * %{ignore_testsuite_result} macro - when set to 1 it ignores results from the regression testsuite (debug purposes) * %{with_mroonga} macro (enable mroonga build for x86_64 archs only) - rename %{with_jemalloc} to %{with_tokudb} and enable tokudb for x86_64 architectures for openSUSE and SLE15 [fate#323280]. Don't enable it for SLE12 (missing jemalloc dependency) - add the following BuildRequires: * unixODBC-devel to allow ODBC support for Connect engine [bsc#1039034] * krb5-devel to build auth_gssapi.so plugin * libarchive-devel * use libboost_headers-devel instead of boost-devel for TW. Boost package has been split up and will migrate to using multibuild. This results in packages that unnecessarily build require boost-devel to cause major bottlenecks [bsc#1062583] - do not use "BuildRequires: lzo-devel" for i586 and arm because it makes build fail - add the following Requires: * hostname - as mariadb_install_db depends on this tool [bsc#1060110] * libaio-devel for libmysqld-devel because libmysqld depends on libaio - tweak build options: * remove "DWITH_ASAN=OFF" - this option was added because of mysql and it's no longer needed * switch from "-DWITH_JEMALLOC=auto" to "-DWITH_JEMALLOC=system" * use "DCMAKE_SKIP_INSTALL_RPATH" - this allows to link with -rpath during build and fixes quite a few test suite failures. When installing the file -rpath is still disabled, so this should not have any effect on the installed binaries * add "-DWITH_LIBARCHIVE=ON" and "-DWITH_MARIABACKUP=ON" * remove -DWITH_BOOST=../boost/ as we use system boost now - enable OQGRAPH to build (openSUSE only, SLE is missing Judy requirement) - disable Cassandra storage engine build as it's no longer actively being developed (See MDEV-4695) [bsc#1055165] * Remove "BuildRequires: libthrift-devel" and %{with_cassandra} macros that are no longer needed now - disable make test (Connector/C unit tests) as it requires a running server. These tests are part of mysql-test-run now (MDEV-12470) - add suse_skipped_tests.list - the list of the tests that we want to skip (they fail correctly or the fix is in progress) * adjust mysql-test-run options to skip tests listed there [bsc#1041891] - remove mytop utility that is packaged separately - remove *.jar files from mysql-test - remove python scripts remains from tokudb upstream - remove generating of the MySQL NDB Cluster filelists - remove removing of manpages for MySQL Carrier Grade Edition - provide a symlink for the my_safe_process executable that was moved from its location to bindir - update filename in /var/adm/update-messages to match documentation and build-compare pattern - README is now README.md - fix "file listed twice" build error- Also Require: libopenssl-1_0_0-devel from the libmysqlclient-devel package- Drop INFO_BIN from package because it is not needed and differs for every build (boo#1047218)- Explicitly require libopenssl-1_0_0-devel, to successfully build once we switch openssl to 1.1 (bsc#1042632)- update to MariaDB 10.1.25 GA * notable changes * MariaDB can no longer be compiled with OpenSSL version 0.9.8 and below. The last 0.9.8 release was in December 2015, it is out of support and is no longer getting security fixes. * MariaDB Backup is now beta * release notes and changelog: * https://mariadb.com/kb/en/mariadb/mariadb-10125-release-notes * https://mariadb.com/kb/en/mariadb/mariadb-10125-changelog * refresh mariadb-10.1.12-fortify-and-O.patch * remove mariadb-10.1.22-xtradb_null_checks.patch (MDEV-12358), a fix was merged upstream * update file lists for new man-pages and tools - switch from 'Restart=on-failure' to 'Restart=on-abort' in mysql.service in order to follow the upstream- Add mariadb-10.1.22-xtradb_null_checks.patch (boo#1041525) (See also https://jira.mariadb.org/browse/MDEV-12358) - switch from '/var/run' to '/run' as /var/run is just a symlink to /run - fix permissions for /var/run/mysql that were wrongly set to 700 instead of 755 due to added umask. This prevented non-root from connecting to the database [bsc#1038740] - change permissions of the configuration dir/files to 755/644. Please note that storing the password in the /etc/my.cnf file is not safe. Use for example an option file that is accessible only by yourself [bsc#889126] - set the default umask to 077 in mysql-systemd-helper [bsc#1020976]- increase required physical memory in _constraints from 5 GB to 7 GB in order to try to fix i586 build that fails because of "Out of memory" error- update to MariaDB 10.1.22 GA * notable changes * XtraDB updated to 5.6.35-80.0 * TokuDB updated to 5.6.35-80.0 * PCRE updated to 8.40 * MDEV-12160: ed25519 authentication plugin * MDEV-11842: Fix a 10.1.21 regression with failed INSERT, BEFORE INSERT triggers, and columns with no default value * MDEV-12075: Fix a 10.1.21 regression in the InnoDB data file extension code * MDEV-11027: better InnoDB crash recovery progress reporting * MDEV-11520: improvements to how InnoDB data files are extended * Improvements to InnoDB startup/shutdown to make it more robust * MDEV-11233: fix for FULLTEXT index crash * MDEV-9734: systemd compatible bintar files now available * release notes and changelog: * https://mariadb.com/kb/en/mariadb/mariadb-10122-release-notes/ * https://mariadb.com/kb/en/mariadb/mariadb-10122-changelog/ * fixes the following CVEs: * CVE-2017-3313 [bsc#1020890], CVE-2017-3302 [bsc#1022428] - refresh mysql-community-server-5.1.46-logrotate.patch - refresh mariadb-10.1.16-systemd-cmake.patch - remove mariadb-10.1.20-incorrect_list_handling.patch that is no longer needed [bsc#1022428] [CVE-2017-3302]- update to MariaDB 10.1.21 * notable changes: * Innodb updated to 5.6.35 * Performance Schema updated to 5.6.35 * release notes and changelog: * https://mariadb.com/kb/en/mariadb/mariadb-10121-release-notes/ * https://mariadb.com/kb/en/mariadb/mariadb-10121-changelog/ * fixes the following CVEs: CVE-2017-3318 [bsc#1020896], CVE-2017-3317 [bsc#1020894], CVE-2017-3312 [bsc#1020873], CVE-2017-3291 [bsc#1020884], CVE-2017-3265 [bsc#1020885], CVE-2017-3258 [bsc#1020875], CVE-2017-3257 [bsc#1020878], CVE-2017-3244 [bsc#1020877], CVE-2017-3243 [bsc#1020891], CVE-2017-3238 [bsc#1020882], CVE-2016-6664 [bsc#1008253] - add mariadb.te file to the filelist - add mysqld_safe_helper to the filelist - refresh mariadb-10.1.4-group.patch - add mariadb-10.1.20-incorrect_list_handling.patch to fix incorrect linked list handling in mysql_prune_stmt_list() function that can cause use-after-free error [bsc#1022428]- Replace systemd and systemd-devel BuildRequires with pkgconfig(libsystemd), which matches what the build system is actually looking for.- update to MariaDB 10.1.20 * notable changes: * XtraDB updated to 5.6.34-79.1 * TokuDB updated to 5.6.34-79.1 * HeidiSQL updated to 9.4 * The limit for the table_open_cache system variable has been increased to 1024K * Galera wsrep library updated to 25.3.19 * release notes and changelog: * https://mariadb.com/kb/en/mariadb/mariadb-10120-release-notes/ * https://mariadb.com/kb/en/mariadb/mariadb-10120-changelog/- update to MariaDB 10.1.19 * notable changes: * XtraDB updated to 5.6.33-79.0 * TokuDB updated to 5.6.33-79.0 * release notes and changelog: * https://mariadb.com/kb/en/mariadb/mariadb-10119-release-notes/ * https://mariadb.com/kb/en/mariadb/mariadb-10119-changelog/ * fixes for the following security vulnerabilities: CVE-2016-7440 [bsc#1005581] CVE-2016-5584 [bsc#1005558] - add mariadb-10.1.18-mysql_install_db-mariadb_dirs.patch to fix mysql_install_db.sh script to find data files in mariadb directories when a user uses "--basedir" option [bsc#1006539] - switch to xz compression instead of bz2 for the following tarballs: * mysql-patches.tar.bz2 renamed to mysql-patches.tar.xz * configuration-tweaks.tar.bz2 renamed to configuration-tweaks.tar.xz replace occurrences of "bzip2" with "xz" in README.debug- update to 10.1.18 * Release notes: https://mariadb.com/kb/en/mariadb/mariadb-10118-release-notes/ https://mariadb.com/kb/en/mariadb/mariadb-10117-release-notes/ https://mariadb.com/kb/en/mariadb/mariadb-10116-release-notes/ https://mariadb.com/kb/en/mariadb/mariadb-10115-release-notes/ * Changelog: https://mariadb.com/kb/en/mariadb/mariadb-10118-changelog/ https://mariadb.com/kb/en/mariadb/mariadb-10117-changelog/ https://mariadb.com/kb/en/mariadb/mariadb-10116-changelog/ https://mariadb.com/kb/en/mariadb/mariadb-10115-changelog/ * fixed CVE's: CVE-2016-8283, CVE-2016-6663, CVE-2016-5629, CVE-2016-5626, CVE-2016-5624, CVE-2016-5616, CVE-2016-3492, CVE-2016-6662, CVE-2016-5440, CVE-2016-3615, CVE-2016-3521, CVE-2016-3477 * fix: [bsc#1005582], [bsc#1001367], [bsc#1005569], [bsc#1005566], [bsc#1005564], [bsc#1005562], [bsc#1005555], [bnc#998309], [bsc#989926], [bsc#989922], [bsc#989919], [bsc#989913] * refresh mariadb-10.1.4-group.patch * refresh mariadb-10.1.12-fortify-and-O.patch - requires devel packages for aio and lzo2 - remove mariadb-10.0.21-mysql-test_main_bootstrap.patch that is no longer needed [bnc#984858] - append "--ignore-db-dir=lost+found" to the mysqld options in "mysql-systemd-helper" script if "lost+found" directory is found in $datadir [bnc#986251] - remove syslog.target from *.service files [bsc#983938] - add BuildRequires: systemd-devel - make some dependecies switchable - add systemd to deps to build on leap and friends - add mariadb-10.1.16-systemd-cmake.patch to allow more (case-insensitive) values for 'WITH_SYSTEMD' variable in systemd.cmake - replace '%{_libexecdir}/systemd/system' with %{_unitdir} macro - remove useless mysql@default.service [bsc#971456] - replace all occurrences of the string "@sysconfdir@" with "/etc" in mysql-community-server-5.1.46-logrotate.patch as it wasn't expanded properly [bsc#990890]- update to 10.1.14 * What is MariadDB 10.1: https://mariadb.com/kb/en/mariadb/what-is-mariadb-101/ * CVEs fixed in 10.1.x branch CVE-2016-2047, CVE-2016-0668, CVE-2016-0651, CVE-2016-0650, CVE-2016-0649, CVE-2016-0646, CVE-2016-0644, CVE-2016-0642, CVE-2016-0641, CVE-2016-0640, CVE-2016-0616, CVE-2016-0610, CVE-2016-0609, CVE-2016-0608, CVE-2016-0606, CVE-2016-0600, CVE-2016-0598, CVE-2016-0597, CVE-2016-0596, CVE-2016-0546, CVE-2016-0505, CVE-2015-7744, CVE-2015-4913, CVE-2015-4895, CVE-2015-4879, CVE-2015-4870, CVE-2015-4866, CVE-2015-4864, CVE-2015-4861, CVE-2015-4858, CVE-2015-4836, CVE-2015-4830, CVE-2015-4826, CVE-2015-4819, CVE-2015-4816, CVE-2015-4815, CVE-2015-4807, CVE-2015-4802, CVE-2015-4792 * adjust mysql-patches.tar.bz2 archive for mariadb-101 * pack new MariaDB 10.1.x files - remove '%define _rundir' as 13.1 is out of support scope - temporarily disable OQGraph It seems to need the boost library with the version not earlier than 1.40 and not later than 1.55 (MDEV-9479) - add "BuildRequires: systemd-devel" for SLE12, openSUSE 13.2 and openSUSE Leap in order to enable systemd features during the build of mariadb-101 for these products. Otherwise we get "Performing Test HAVE_SYSTEMD - Failed" and systemd files aren't installed. - re-enable profiling support - don't remove HandlerSocket plugin [bnc#979524] - add 'log-error' and 'secure-file-priv' configuration options (added via configuration-tweaks.tar.bz2) [bsc#963810] * add '/etc/my.cnf.d/error_log.conf' that specifies 'log-error = /var/log/mysql/mysqld.log'. If no path is set, the error log is written to '/var/lib/mysql/$HOSTNAME.err', which is not picked up by logrotate. * add '/etc/my.cnf.d/secure_file_priv.conf' which specifies that 'LOAD DATA', 'SELECT ... INTO' and 'LOAD FILE()' will only work with files in the directory specified by 'secure-file-priv' option (='/var/lib/mysql-files'). - run 'usermod -g mysql mysql' only if mysql user is not in mysql group. Run 'usermod -s /bin/false/ mysql' only if mysql user doesn't have '/bin/false' shell set. - don't delete the log data when migration fails- fix constraints conditions for 32bit architectures- fix information leak via mysql-systemd-helper script [CVE-2015-5969], [bnc#957174]- update to 10.0.22 * Release notes: https://kb.askmonty.org/en/mariadb-10022-release-notes/ * Changelog: https://kb.askmonty.org/en/mariadb-10022-changelog/ * fixed CVEs: CVE-2015-4802, CVE-2015-4807, CVE-2015-4815, CVE-2015-4826 CVE-2015-4830, CVE-2015-4836, CVE-2015-4858, CVE-2015-4861 CVE-2015-4870, CVE-2015-4913, CVE-2015-4792 * remove the following patches (applied upstream) * mysql-community-server-5.6.12-srv_buf_size.patch * mariadb-10.0.16-header_files_const_warnings.patch - add mariadb-10.0.21-mysql-test_main_bootstrap.patch that fix main.bootstrap test (change default charset to utf8 in test result) [bnc#937787] - add mariadb-10.0.22-fix_build_denabled_profiling_off.patch to fix compilation with '-DENABLED_PROFILING=OFF'- update to MariaDB 10.0.21 * changes: * https://mariadb.com/kb/en/mariadb/mariadb-10021-release-notes * the following patches were processed upstream and are no longer needed: * mariadb-5.5.28-hotcopy.patch * mariadb-5.1.50-strncat-overflow.patch * mysql-community-server-5.1.51-mysql_config.patch * mariadb-5.5.32-upgrade-exit-status.patch * mariadb-5.5.41-mariadb-admincrash.patch - use syntax in mysql-systemd-helper that is accepted by both mariadb and mysql [bnc#937767] - fix spurious macro expansion in comment in specfile - install INFO_BIN and INFO_SRC, noticed in MDEV-6912 - replace readline-devel for readline5-devel (MDEV-6912) [bnc#902396] - use spec-cleaner - Tweak some cmake switches to enable more things * WITH_ASAN=OFF adress sanitization WITH_LIBWRAP=ON tcp wrappers ENABLED_PROFILING=OFF profiling disable (for mysql) ENABLE_DEBUG_SYNC=OFF debug testing sync disable (for mysql) WITH_PIC=ON by default we want pic generated binaries (for mysql) - set cmake options for MariaDB Galera Cluster - remove superfluous '--group' parameter from mysql-systemd-helper - make -devel package installable in the presence of LibreSSL - cleanup after the update-message if it was displayed - add 'exec' to mysql-systemd-helper to shutdown mysql/mariadb cleanly [bnc#943096] - remove redundant entry from %{_tmpfilesdir}/mysql.conf. Using both 'x' and 'X' options is redundant and causes a warning message. Leaving only the 'x' line fixes this problem. [bnc#942908]- Sync to git state, fixes bnc#937754 too- Sync to git state fixing few triv issues- Enable testsuite- Update to 10.0.20: https://mariadb.com/kb/en/mariadb/mariadb-10020-release-notes/ * Fixes bnc#934789 Logjam Attack using 512bit dh groups in ssl - Sync the package to git state, redoing initscripts to be more robust- Update to 10.0.19, sync to git state of repository: https://mariadb.com/kb/en/mariadb/mariadb-10019-release-notes/- fix parent directory has insecure permissions error- disable optional features for mariadb * still possible to use them from mariadb_100 package- Adjust _constraints. 11GB is not enough for ppc64 builds, increase to 13GB- fix build for openSUSE 13.2 ppc bnc#921955- Updated to the version 10.0.17 * Release notes: http://kb.askmonty.org/v/mariadb-10017-release-notes * Changelog: http://kb.askmonty.org/v/mariadb-10017-changelog - merged patches to packaging git and regenerated * few fixes mainly to upgrades- README.SuSE is now README.SUSE; fix name in some places.- Fix undefined initial status in systemd script (boo #914370)- Fix include dir in alternative cnf files (bnc #859345)- run spec cleaner on spec - update to 10.0.15 * Release notes: http://kb.askmonty.org/v/mariadb-10015-release-notes * Changelog: http://kb.askmonty.org/v/mariadb-10015-changelog - conditionally enable more storage engines - updated packaging to the latest templates- fix bashism in posttrans scriptgoat18 1627030378 10.4.20-3.9.110.4.20-3.9.110.4.20-3.9.150-galera.cnfgalera_new_clustergalera_recoverywsrep_sst_commonwsrep_sst_mariabackupwsrep_sst_mysqldumpwsrep_sst_rsyncwsrep_sst_rsync_wanmariadb-galeraREADME.wsrepgalera_new_cluster.1.gzgalera_recovery.1.gzwsrep_sst_common.1.gzwsrep_sst_mariabackup.1.gzwsrep_sst_mysqldump.1.gzwsrep_sst_rsync.1.gzwsrep_sst_rsync_wan.1.gzuse_galera_new_cluster.confwsrep_notify/etc/my.cnf.d//usr/bin//usr/share/doc/packages//usr/share/doc/packages/mariadb-galera//usr/share/man/man1//usr/share/mysql/systemd//usr/share/mysql/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:20532/SUSE_SLE-15-SP2_Update/5f515606498ac89b93f36a3716d913fe-mariadb.SUSE_SLE-15-SP2_Updatecpioxz5x86_64-suse-linuxASCII textPOSIX shell script, ASCII text executableBourne-Again shell script, ASCII text executableBourne-Again shell script, ASCII text executable, with very long linesdirectorytroff or preprocessor input, ASCII text (gzip compressed data, max compression, from Unix)RRRRRRud/? Outf-8988b09d911ce54bb295e64470ae60366d8f6e3172e757c238e61b78266b1d179?7zXZ !t/V] crv(vX0ok np . }2bpD>>!Rz,U:16[/f2_H `*mt]@|rcDc&sʻ)ylw!Gm ʲ0sDu)#|(DuxsLP, X-IT;vEYi§c#jѲ$^.L%Q@o:pAsJr x[+9o5++U1A|MS G9v(^ǕϮ-j]ϧ1 3AUa#"OC'LXmI-mtyoVb}'ɤEuDX',{ZHDfY[ޓqڋԭ@U՞s΅Kπ8%.ι@(WTL=,铤c:ު,^/ݎ 0\2 >O=e/ %$+;h£>Q|* _4-w{!8nŭqӅx2iv6 4myBa,0 WF}In 8w蝈 "$bvyGùVIxHiV7#'\NLd(IQ.]9iSF Km^h*( ͩB0t $x4"IH nDz\ r ,ɞ'([R Ty'*'fؔ!{kAnQ!{dR^OU.^I*e;@¢𕀜B:B4Ĥ~ PGμP!{ ǂ`"G(CPD-Q.2wт~D@-ب$*qaOɂ`rnS7_-E((+MH0C߇ÉKG%4*iMBu'PnQ PIGGWye6C6SZbchgǘ=bՌ.?b~oa1|?ۂpN3 $/X6ϋ>dɃݐ.f3a qQ4GDrj"^8xAqS(4Am[EKGxTt /M#$`mvr"stx׬Q( [\Еfj2TëpG Eݗ% N) Q">ԣ i?D#nTKʑCo~qtw$UR##Z[M֫U:hmN%n @J6HQ]Ԧ;}tpHQdԼzo#rWM;X!0JwÔBrp;; #}E*'WQɬ ì,‚Qx|+gn/N+[1 t碢[.y{nK5j!.R@l 9ZDkl@ ʡ?oո9eKcN#9,@eL}۱; i;I(jAw:*#dvx4KHjTgʓ"dzBUو.9|w2fg@e%G[I ݄f_ر(\%6:4~'\m:~V'O?QG?*/.\@@_+^[=}&a isR#C"cjb O.Jab=iT#DNKrQjgԣލ@,BƚZWu[7??kv;~M3un:}ه4%GNa? \SX\֞$oBA&3e6ԩpHS]{^O׋@/n2ʼn9i.+cD֒Rێ_`}0e- v̾NJ߹A-FRߧ<]$w px'@0R"ѳSePryX7/1s#Hא_߷>tt quG- [m6*u}^GbpJ ^'d*S^9y當QKLuKQ{\Tkc5VrCϮqm^jm]ݲ٤9!kI =tjP[SJII#JfEgjڭNZK6?]mUFo s Il?٧JB%e&ș9FYwd;ϿYѪ#aϳPT:+Ef\wi~90 Ehd)\gc#C7s2:H7yd-^z68Sp"DZL ;^[zܧJm=ԍv>Qkhȯ0aF| Aw:ݿ1Z`~[f6P8Hw5gˑ&iaԢ0 .P2 ҍn>| A prx㜜>`b8ogc9)YN=\?4pB"%ԍ7dPx&rͫt[*ډXDc,/PF1%wU=u׉kۍu!ᤀof26*Ը_݇?޵ >!'6pCLxDZYݸ&mDx9;yc_YivsE𔬸PN[(\C_=jJ~y`ִiLWy%V)eAo{`\ކ?s|7WIZ$QY.YٰgLR'_ pq^W7\/FhRP3kB f2c'zx3Zw62LV3q@De13 71!D yIyRE `jd V(̾oʝ8ɞDu_}7hi%,E=Vs^ ~&?[Yyts5h8÷'8Z_UOA1+.CZtLurrQJApM,߽dŬfeĢPcA?mKY9E.UC QI&1J |MF j4gpKrD~Ǻ:4ݳy2yS)lI12q''CA?N\r(!rt}+rN;fڕh]$KgS}TqߌzKjZF{gWYAsˮS_ţ>j|\̬1柵:L5o\H\bQfϱ}V~YaX'vI c3b Z??5oYWKn0p\q&[@H6LyVscD)bq#gC۷KƄgIX VI'&z/H;rx[dcVƁLlϚ^߱B~#xM}6aH4Ͻ|z&2Sl] Z}Ғ?ĥϱ EYo):spePu b1eƋ:꜏rxcC9srǏvw9F P.UģdPn6;1"e-j8MQ*օ9Ӹ]>ox%C[꾝> ;&u)LȶfKjYsгjawv6 j{} l:t!ᱍJ|'Y:@tsGQU'JDq H$URSK$ԡ#םdXKF {[2Lȕ &>vK]T~$Rl?5z^ +j<+SZњ+ 砀<:F1pzv]aug[ 2toAVنz'%mrZEv] Qߥghx8NwfIVd0(rk1l6uNͮD;߃,&+gw \3.bM/&<_ٝ;šjfzA8,M]93BoF|Gdlr.`FYOFR~C=G~ %||Ui_'z@Kul%g<ϮNE>͌f=ZڶvE$\P,8o4G 1|QUYܥyr^f .;}2 PsLWWNv$F uj>joL@԰0鎳1H~) ^։x.~ìxsaP$"&eʫM|*m&2U]f}BIqeU{͌W W:~gcI{/ft(-K#[c.(Ll"Y:%}'UT\ P~W@!GE=u}%%:R*1twRrcEBmSZvhbDkxrq(\XA~2>.:9\Ns XKm{*aÈ&Ol b 5k΅%p˦W>j[G+|YA6>/b;VX=QngB޸cNz%AxM@}L(}zuұd"0wS=V[ `ˢW$l_,ZxgB &vٕEǮ7c@(ʁ"vs8` Wl_1%aFtE@(:Moј,#JS \&4] 6JwC /1-A+) di(0u䃑%TctolF>-(eU@>d](ZCdtn/e{rjw XZqg[MP]~~2 UTYPdXA Z)V3|Wzҍ~"_xR M\=9n$ !ALz9K/xFv:f@2ڨlEgn'LoO u~<5oU>3Sbz$J}֜Y#Ҫ}`tVDxC+f>VR(>6IV s 3k\ L$HN~p.E[E`(\A%uju,/,5d{"c,EqyD+(1ţ;&!EZ4nT;tc5ҟkEufˊ.",glvyc4J_c(1$2Go6UL(|< zXdPܳw9|Y@IYFxdex'xIh{~xRJ !Jho(,mRZW-dS,(UT*s &xBq<dq1}w"T tmXmk2'!ϧ  㹻1Vcnlh5x]@rao \YCJ !Nz3 kx\@ BCCwOeAId7ٺ}}!7-,%< 2Jgm7(dD ^>y$oyKL#K~bֿ2)Iʗ..XA/ ]@:SI|^n@)B(Bb_6=~@|]Ӓ:!y8!wOHN(A/kJKlo{bI:&gvf|"}$a0 oHFx-$`;3_ q̶!(RVQJydi&;"g7@{k"$4ѬWr 5EJYX~dOY2߲?E*YpDft:,QP65ɱ^] }?Of؃5*sS`2 %Dٚ,,3`y 3U DL.+GKFԔ+Q}F3p#q}u"dYq\7>U mZF#F)3drOo]!&Z|JIꢯH bzŹP!\>ZJUꯀb: ZFwTKW m&>IfQK_Z=h*y KJ`KxA4լ&gk3y^`'Ih*hkş0E9nB:UyBjIi T.Ǐ ['Htr06!(T-SHl(;s~ \ 6 Sw?8' @XQ6ئ CeDZzT˵wZÑkRؼksevjq[|LJp1 lC@Թ'5Yϣ멃iUYpɢ-"=,%-$;sV1DQÞGƴU0Gg^[xn%&O]AXhc8 >;I!UuKǣA\F}:M2Gzj!Kdy-OB0ݽ5ʽ%~bq>>H8s\IN(Hoh}$IԯS W<279=&1K0a%(2ӧUSZ \|53ku>gv@ae݁r3Fݨg0nxL YYBnށCvkRU1UٵEEt)M"֭e(C}:RkhJyc!b xX>ndPVyaO\1U;~r[K8vRxf [_lZJ*,s+fL {%ZB*t6zt;zVBߒYH,BbpHP=e/> /CH;D>K&?~w묁ifP5 :SwA+_C:lgކd]b`OO% ǃZ:W1„4h1$ߵXUՉ(AFuRޏh ӨTEqfbDG="rCJ֫-{%8Zǃ?7>~iͩ^]H\d(RPqYEϹ HѸÖʛMڹbeb)psB`Yɤ X ɗ)9A7=-4{z.o8y0Tɪ\+"%Y U8YJVH Y˭z+:DP C[|7Yܝgƒ zi.J̘ĜKy{dj|'}$-ߤ~\WQ&9i碶D c#A>bK )BbyXѻv;KEGƳ4/,Odd.}*}? g('U_dAGa /ڤ"Dő~GJ^Hd61agy#mǿm*"m _>w0b 'Aghr,.Tϙ Tisn8  9کh*a#aDGճۮ?Rp:'ROt/iT oP njEYrʇy s;8Y; rmbxCZEV؏mM $ONj#7N-=Y&q8liqʛL~JzgK`֙'25(e`6*?}D܃cgI;n*#\mz(o##Z΄(**bJ..S}VDeQ8͊+Őy{] )k3}Q r9Yhz 6gc`h3LqQNVhѶWsQ--ηc:<j\AEQ-QǷZn 5xԅwݾT<JCOai-xi<&*})">Y߇$,/WQ,Gkj𔧎%JuvF)h][ \[ܚm-)k_geT gZR+28Dt{pRL>HFRN1AgUuj q4P=}6c4P* >MŠcai3#YrK#%qȩ ۷%1^g( ҟtvcP)ݏ24[NReŘHEN!jJ Ij plץ$},ӡL4+^D Yߵ|X5΁ ؐ =Kk bI7Au\ގPPc+Ӎ2sf Wq.yuZtY6s蝿?\:\Y(wa;D ]T0!ƒY,fdh.JuS#EjG8 X>(&?Ĥd ϼR2aaG?lEkwP0$*0OVaL\x넊M0Saf6KdW3͐%i3'ɵ R0.dO--H:lrabz# z,:/s-IUܣZѬļs$XOuDd.]aqhco#9%6鷴VC"M/ E<=nk ;@ѽ vUeo!ۧScRYl'ܦd..\'!04A;V%&#mX4 .$hFy۔U.G^rywc>V7/(Zat. ;(<ےĨFI MQZSjڻgs'M6vd?箒-B. n1APC% _oqMfs0On+^f}"<3͛@ Bl?pK`ٗ4M7<\=jeœ]m'Ï4KI{?f@*2Xf]#?ּKp4sI4htn`df{I4\اY5 $gij(k{\g _ո!&MpY~TA9)ֽ9f"ÎaA.Zes>bW{@kIvOH8bܗb >wN/b/Y$cnwy&%ސ4ors3~ݦV{')׭i('^>+VE-XhqMQD3b73Ŵ7 O颈j kKgeG*C[p1Zo?W2OC$rE{7(aO ˆ*+An~`]{WYxyPj~R.ިĉ^%6d\SȜ2oPRJ>Яu(=wc8͢V]{@\ |JLow} Lm%'4}sLBR^^Ӈb" R@oC9P[YWDi{Z%ǵ#R;rj=f' Q?l+ $s |\JeZgo$@̖h&Et MS<9'+:q4&i^tZJ[Pvh`h%ӏ ƃBkhdtȶX1jĉ}eTUc'WA{O1TK66Kj`~^ qP+RŘ~pR(yD1"œ«Z?( 6rf2gYg&"2Ji茼ˠ[/#(/M\LBԷ",i -Y?h6LP8ft.zS9 NA>EHߕ]?RRƐc[Y/Ҝ@ *FePVv,~Y^rW3 )ޚ<]on7:*/=&^&wBӨ CӖstJ&87wH: EG!$%S Iߗu̶_K{~[zGDURrWa ;ArD]*ѝ}f[ {'۫`18_g3XB_`;ue[UD|al k8FgԭۦCd \LR3F:qIim^t `M9U.zN~Z&VsDžʿ= w:^[w _GT%$$w`@)[83#|5jA۳62uOPo&fiչdL}t?"lUhF7M2c [ 7/]s]t+H6?.兙HL`Fyl=dGu|:ڡ$Ld, [A rtU/=*aĕȒ_X1jDbh{jq=?ߣ77Ȣ$"C+0/5؞)lem[waҷn. IAup['~-Hn'gQ̻C1ROu"-SPlMR1>Q#@0GI'!; !{ߖQTňLj5!J'=)xyameW)^ؠտ<ڍ"H<6YY U x}sOL9c~~;V4ԥUij 8P.Uut3aZ۰y)薮2/y@賖N:,4sn)JvuvIV\^Hcs0'=2b ddӘTѬV&pѦmeޏɩKl"]i& B>05=P(Tm7f%ۆbi ^e-2Jb9ld iM=_/]ǑeLA߀~S{c9Xc{FB)$WC/3:jQ_ݹHևrer*y>,ŎcD< WßҨ^Z:H0b:k?o9B-y(lvro):`$p\2Svx9R& TI_$mO$-xYo/ioA 3=´E]nanZ<ЖY\E̽~wDu#~34 hݳmlRm1e-r۵5n LIL-Pr?+`J* {`}cd ( ?" Hq$¤/S{ !ؕ3hlT˦xkD?=$x隸!⏦cKuK/J̿- 5lYeZioeOYT!7S/[t?g]E2v&ecO^~X* wCH6W8f2F:Dy63o'=}.F%# ɱ0~ǶqA 0tL#vTfJX M?W\G/ŏ qJ16IxŶmZFfH :Bk>KatF0a ũm#rR Rc)<j_˪w&:=5'נ8.'[, )W嶷x(W B:KLW,[?ČA4Aito#ۤ#w|TѪ/Йn4g8ȕ[֫m[rlA"L #Մ+i#PkP_Ց#E3c,Bd!ht'Š Џ:"TcY4.^.TZ˺? ypSQ3my/j{:rb(=&m,W#~b#.赵VGcTdhmb: řD/e) 'n{[Qۏ 0N+ KH~H0sY7FFWc/)Ԛ&";͒HA&ʷkY(Gʄrlxꔬ6}!SJ } Ǘsr"YƷ {eTq펆jBP1'{3lm珒ߴ G#PI7^ P/Ni_fltks(if:oSk8$<ޜVW'ŵ ό\}4@#[5ɐftv{p$7ëӥ.DGFqݺ{/pzP>$>nAa/KVs רY~}r 酧ϔgaי1a\\m y]Zh4sQMQ ѫ5 iRmwgJ:pMdR4xx z3Z繍Tݾ?ag d3*Is쟺ۭ:Kj1dqԏ'w{JtM%Sf*$_M;r @7VL |-) f&3퇼sn~7P2~,Z8Y/vblBݯLT>&.j@j#YpQ] ð < ;^c[9lE{u&}[$<IV{HI)wv]g3.Zs@7FjJJ! k7tZ> <=@9؃݅בO_"b~haH˨QqM֎O_We><6{<Λ2#{QT^"B4g F?lPՕW_:SoۣQ} ;g<E7bJ"K L(3ֱSׅ9H&r&;ZPSbg3kϣ")dk\$wWε5%%ʂgaG0,\a@qUA5tjEўIo$: jwyR~>{ _MQ=1?޲Te5aי]x^PhK$8dSH%OY ]&F2rZɔ`mŠ.jr`C >4я%xmXQ@g{Pxkz.> &:AL'D`kSJhڜ`~ q5lv(i0w"j @/YQ^6Ʋ(*A\"cWݽ\}W* KYCiC'd-ihJ=[gzTʁzwɀj Yyy#.LhoІK/:6%WV P∹2>Ts]B6!Z[ ,ҡt6".@@Pl%m1h~ r^Ek`n{Ti-5F'0}7\hWrfu>qC k/XPEA{RwQ@?eeK|j;TR~36_ef$B ~v4~7W*k//)hkTdОc#5/댶Ɗ=o=~i3ʊs,ksi.raJp!|:;pK7!t`^Q:SV6J,E-qb=FNmE61/*BːNx5"XPz5=qG>67[bzy}+ PG5q;=zvj;-׺6jUg-PGu[־vk;DZf ƌ , ŀoEzOvNîU*{ Ӣ]{fJT$K?E%kV:\ `¥;%EZ :N:B[/AK<H{V!:"xi{0MZ*qܪl #Fo$󏫴NӿYOPK@Z-i#1-myJ{;/CuEiM*180᫹D\:b_.onJkfdpQ7d]+8amp Jyp\MV!wj;W6My4N7.sZQ΍q" f# ٩dU#|h{ >KqzFzҧP"``S6Tp#TX"#Q\&1=?C$l" C/n0GߋEvr+AEMdeM534Ub7enޱɜI ;i7dT j#~NH7M[9-奌݋Zj Qv}F,שr0Q/r+}#48?4ew#\p$=iBonoz:8Nm Y+Jv*ZnT%2prژɝEݖ] KJvlR{JgcǷ+o̯>N/HEțz>iHJ3&wE5fȵX7oLa@3C}M^zN R_ES7)F#CW~Fd ႓''ĠiZ嗎C~~bm&O5:%AN7{9%r&G0FMƑQW>4s򩶼'TJ)ǖE&gi\ЇCƹ?wD&STœT_Q/׊O̮ơ)1>?;`'/^^H`kڎ㷪B D,xWpv@z~cQ=G٧s'g/(V(;eվBsɻZk |vB?r3&?p$UeG\Q>z{ȢSZrl+C&;7,%poޯnePNMt:oLŻl<\B ÖD  ֖x<<&شei6Tzly|qd&aj`yʖCB2γS@]1 xZCRjsDp"NKa̎T% _~m\5k `8 ũy3j6ϓҹfX8b1{%)^/tYqh~\Goe0U`9LYE.σTѸb0V={kf&XIͤG70đ1f ?i[{5iL8qfi sNZ#3Q0hȢM#N40ۻ{IXfxc8~,-IIT4f3-~{ic|+80 V=ZA=V$ek$qOVx{~Q㎮m_危bVmEYu8ߋe]DR-MEpCgBdr{qXgbMv6Lfb5 gt7-~'ǂ6Iĥ = $0 {VæDKt2) 'AYTnAׅHyGՅ_a8eï_g|{DZx쿨 *ʭpAAMEڗߖ@/b4#Q~A`̳Zkhm;8gF?DhYmDp@>s2qͩXsjY#ʞOʢxqQ`ҷR4u bQ)_}2783RLmȖqW-zz z3M 2tey=txӤ籬cӞ(O  (h#㑥}7N"oͱs3%mrú(-5+N"` 8W4 -кU>r;> 0Fo:ulBfEl< `NǒkX~|*VePVl}]4U A/b17أL1p噛 1oGz71@61ӸBj@N߮*Yyq@AulrF!ۥ%((XeJ)U5SQZ=,f`wORG n= v[BhDet @6_=_ԾD!ɣ:}mSU iwME`XuqɉJɭ>jTg:1k'(]3qC,Jܩ݊`bye ad)&ǘ 3npT"Kc.TF3_iӀj2@?v;zAǚ@ҺOUPkjT&.\ !-,2`穹0G5<1/؅N0H`HO'/g,EϦ@\ v{^ Q>ɧr6.7cN:+yƁ]>*h1=c?0:Pp P$|fhm:,J%;t>ƚʩL>& ;JL/FF5S@v![Վ,DQ(-~,8#A IemQYJq]9+iOշI(~q cM~;?YM/\&v|bcV@Ese 7iDpcV/.~v>h(xPxu@I;J1';,'\pT&LZ7p:2-&Yqםg.VfT#/BYe65A;4/#e*Yf59nˡD,qC{! ;^ҁ+1[`W)kQmTq⛹%V\RS".QRhG4˴¡5k\Ax/5PK/L<4O M,}vC,K%ncЗ/ IW=̊@%Qm> rd h\j*:N #bDϥ^p}2{Tdns?h a,!$ę F-WM,eEZT+sb"@'t-DOn-`vU27jiO]vcK !( x2bu=Rx緊BrR?e1㬵6}OVcTz z 54;CHDZO𬢁`Fsp =蕽KyunLVY&0BATu7JU}X\cV5|ω} =!rA1i!4hPKšFF?CFkH!suMe ]`~a ~wd$VZznx']y੒P( )7E <HȨ6"p;?1"3њ:jhjh!Cf.C 0S"KJm3U5X n=o)q Qx|\Zfxt+9)n`#sdM.gz -qc&?6'8i:g%{뿅ӡߥ^谰Zuq|Ga e/=t `;Q9%5Fl^f69# I:z<"7iR"&t`avߵ"g2T &G/$F6DdXSGxͩ,"]fem%ss)asު"Z嫔aD <&G"d* YFVaq7gd)og}DW8 q;V1kgIbqV=P|dk!i2n 7@ЦTo:Г*\ږvE}Z5|l:Df/pV_WxڈԔHluF-׷]PGfeT7B[95Ls%;x8?tOk d QD)LS rWϴ4 BU: $'hN B};-- tᗢ㳹F;j_ }s ~U(ha&dDNe%lc_0pꟚ^o֝=+/{9 N"A{zJ2aiKq `,鍲s(}|?5f /77K E# - @x8O4,3v~>ZMRIT}wSI+:(gF&Ab FRVwg8PXs=YƐ"=_Kn|YV^YC9cj&E2η iLnq eE9jJkC)VR:J;`0[fhNLE[ʿ|63n}3åLu D6]x 6RLЙވ#C<9Ejz`cLq$ElvIF<%h LWhG_Ѽzrk_z! =]%JӾ !Xq0*I=q9n:,`wj!HCP{)9RC!krGSWz:ݥ(xhcnJ46j0WqڋlA /)C0gηqO1 Eq:I"܉*s$#ɕU)pkc%^> D~b.~KMig b[Xi  &`4oh}F&`U='gNTVB8B" !qBu7\Q0y5b]f qh.O+NGtl5vIʁSݐ R9>?wRpѿhF2}MfahJe:Ll GW]Tc2(dYU(ԇ*<$|)/X92]aqN o X芆b <޹꿤Yg'g Ig񎙱f넭-sC-SW {c"3iO4 "z,"2"0fCv P~Y+) \+X>x* ݚI$A)@!g}P\o8L(T}G E =t%gkhj(t̜s% .,Z߿P=o)i?D kXn $^d C"D+ֈsU`&AX˟Q;rjМ%$%-~dϼy$i6\qxЂPY)3\X;Id P4G-lM ;u<&O2R"#gak!,8nM1$rlW0<:(F~W4d/LeBl?)U 濍2} 4*I.[LOH gNNd`rXCGTٚtNP.DT780Ҡ}m1~|% {LJ"Ku(z79y.Qss5|~3LK_! }PkJLWı'spؼ&\eTup87b5i =2Q$_k dͅFNH-4pN}P~ WT&ؼ)!oҴ>)gK;(lK|%govYJi}[ ;@c=9@j+֋ZYJ}d?A2 ϒU/O;5~"Ħ:ns]:A# <T4CxtZ juC02taOc+;,%k!Qp,v`6"]WͪV=FRw4E+C*,s R;7ǞPgl̼r*l{Ic=׺ansJ+?CKE38YB؟1cd,|Ehbj$ ~7ξedM+=g8KrBO䁣˗p]q,~!W 5q&?3$AK95y֓+yiW.7+wЯ7Cj,Ju(`u~|BnFhb(Уd pNҟq:$DQBAKKgp6Y;jk`t [)}h/3I3L4es#;=f7,1l{}"ƍU[Eօ)}^m@}Թ]5y.leڨ(97fX% 㖊!0:b:Œ:1Z9+th(O|dR3[|1"̾D75v(SV Eqhb樦KW#@շXc އS ϧˁr=ϞtBybi<o+In '><ʱ#G&nj=DaۘwpQs4um+i]VtdQ/D:T XUiy1s#f<蕣gƣf :~zs#_|<ɍ( =ǽA:Hk(v^?mkQdil nM =*{43֕@vdN&2S"xХu2\ i`4DG[b/?=9D|W"@YXGE`ҒNڱWl Cګ+4 ZSG =Iuwpy\T/ݍͱ:`+K"#e_2uIݻKȻ'Kz9Ixtqe :6"l$+LD3b.kY;L:`ɧX;w2tp6y,FnKl,L$HYjh ݕ> PZ}afscIT=a&%1uMW`E Ϸ!b5 : U` IlÅ6>!}\wќeM%/x=șB>X`=~_x|»5|Om֍[Cu[FdyƤIQтeM +; sNGrb*>kMԸ#ПoTNJόSt eW]Lx2Z ^#3ҹjЀ׀G ]?qhDDQF:IRI) ͋@a9#FH]|dt%:MtJs{R,_dbE1#E5] hpf̐KEIZt׈ ^s<-՛GۻZY@la KjTe1Q -8$ 6닫E+ޟ1 r}FI<'IL5X:++r"hG`|S#RR/v䐌PHnJf" ُ-n{x^UCT\3],% gJ+-xÝmr/pIJۯ8:F_U2sH "вu$ ?7UhT raRe3`qJaLXK2\{6A"`=AI}*~$6(_mZBʤ8[̠MdR;ܺƃn\>00^eetê+7BMGnRv\$a[5:R>UXc*0Tw8ImƯwQz~걚6s'V]]0jZH<4`DLȗވ[lNfl>Սj93wkϿ ф uC31ȓq"^(TsJUԬNoI}w^=d)jKMΟ<0J[І!ͯ?wqjnTMF\-MSBOA@MVnR1V0WA]y1q|9 Je4os dXFI;^&º )?_ɢ&$a웒{F.;M5&>tӍGF5 }̽2UfumׁZ\j#Eju8wdO&Ԏ= ś"}4<!;lœ8bR/Rks|HOdnKrAx7Q;њzTR]`=R6܉fӬV:PWdtX֨?~#Iܭ+jty"[@Z_nAe-c=D1B~ Q#s{w\R^ O̬h6!ȷլxp86+ nZE"w>C MleVuٔ, P‚JQ,v%N 8vL]3L۱/?u4(2,S.űn~]H8nQ JX˺e )ePlUn >l.0pUXߋc_: \`omr XHTq[;<^H igwNgAغp÷`3j{IWA af^`ñV} ^44{wAx_㪓--@Kl^m<9}pLBG` uH޽Rvb󍷼 FǛqޏn5KhݙLL"+HT TkW zC)H[O[ɳwen i1ӾLݗW6Or85 hE{\`.bNrv.ciB_wû/cY&`ީ`Ee nOiN1o]+wޭN>W>,I]5m%>В16!j˚"C3h>͹.oe?{f jvL GahxNs;_d1etyq3%g}rYiԏܲӴKe~b@q9cdS?} RYP;In;ע=~QO'oRYQDQ.|]g8%GZbj;>;s=;ɀ;'Og.ҤijSxWD0T I~rp{)yWVפO%mC',a@[kd76Z徣Y]v@dbl@x5vnvyMr4JeW?uuМHv5(aDYj7&̠9fbr)Plf,q+#q5BBM`5erO&ch k2KW}% FqfXOԙ;YS*Tl?,qYr^BK`yfaR*ޥf;"}]b-wNL @孞 /e!uq-}{%weTeܴ) cRj$*hZtЀVPă~.R$+Iȿ^Q;XŅzn빃SX/Mz}oZZ^|` {VY$5.u+`*2*.,ZkfK=Շ,8 @1tפg\Q^36tvf <*h6^+ߖ b%bdg.R Fe [\1N+PؔQd0o@'ae[ h2f7ò^Fe鱷ළG7x\h«n R[.r]T,#$m/a٨xU6FB4^6< jg]-(v.]dwڇ^nX^Y c:nc"nR\glu쇽6cefSFpjAv!] ,m8T>nIsnx;aܒiW/ -WeτX#wVBF!3dN.3m]Z \ƌDFJl0l8A'wC\cnϧxVo};l WhZr<A%K299#Kt&Z _L;Kge-kPKʌErR򇭫;+إX>|y9IQ3 "T;}mO6FQ)l |$BtCKDL .Oj9P/[DtG%t㝿09X6 q:2QݕirbG.~YbbxF]B e}S ]d>N!7<-z?Qn.7±H,C_~/Ʃ'97@M6Mg ,_5܆(u’].Gbcv{YL*p>sꞢlǀMwƙ{nfTZn(Ku,T%i'y@$S]?[%g&丠-e:y$ ƭƷi#ÉϩWft1~ư0q)y2bm;veGUB7YMϖϵ|M_QVńrA\yԚnr{+ yId"@&PWx*G‚WLApÒ|Xyw?&KЅpnXo%'~`8jH*.YO/szJYEe6@w %J"jԯr"aݺQi’<^cn5:wؔ8+rk LiߓGQ0#O<8Zd|$aGW}}r؀U9Za n{b:Db9y޶ȇN%ObI`F<&bLRt<5Ct,A>лc |ׁNϪXv(( 7-3_䲺Nja~~ D=95.k ={UҾӍhH= )0U *0$X$lnңNZk+![.\b \(}=?@Yj>2Lp'αBi(Szwe]Yg VDjJMidy|~;;7·d|@ S(-iYP"Gt!mQ-⁕$[qZ2~/2VUGIs"j-WdbtI,5_c> xr U1jՍJԕӕZ;oG[æ6RI{HkG&8θaXnH2؄yOc^1|F,<ԦwFam+kB+1|1?ƧQJN)5p+C 1ڽݴ]8OOOPrv35vws+rE+8Y?Ur!ϼgW*%B>\&svЉZ ;ů~p@_8yf~la}P6Waa_Ԕw`QCK*SNOa AVXfx$$HW!=;P6vm6~YY%=5BT 7J<`3Sv(ܲM^ Iz[H L+īȔ^UJm =h"sȉlł(^~,|KnVB iNحS:i}D>BCr BS8g~N0Fŗ̑lڦ㌧vWs