nscd-2.31-150300.9.12.1 >  A acp9|WfDimL^o7,\jwQ0)P,Z"<=P_PIH$.@Hpμ[_"+I+ev tWԫx[C,l22shcn,1H)/ghh0/Uh/MqL53300563cf1abcd34ac7e04a2df4c657aafe4c41639dc3268087ecae80990002a1671a02242f315fdf83e318965d2e164207b921acp9|Q);/qN% | [d&#»ͷ<9ncY<` Ajkqr=8'I5+ q99l=x\urW wx5'#s>hc٥,B, hDDR(ޣ5g$<+T!['HX`8QR,L|K? pI?d   6  GMT! C @   D S pBd"\"3"(89: =>?@BFGHDIӀXӐYӠZ[\]$^ԛ bcշd7e<f?lAuTv֐ wxyXzۤ۴۸۾Cnscd2.31150300.9.12.1Name Service Caching DaemonNscd caches name service lookups and can dramatically improve performance with NIS, NIS+, and LDAP.a`sheep20SUSE Linux Enterprise 15SUSE LLC GPL-2.0-or-laterhttps://www.suse.com/System/Daemonshttp://www.gnu.org/software/libc/libc.htmllinuxx86_64getent group nscd >/dev/null || /usr/sbin/groupadd -r nscd getent passwd nscd >/dev/null || /usr/sbin/useradd -r -g nscd -c "User for nscd" -s /sbin/nologin -d /run/nscd nscd if [ -x /usr/bin/systemctl ]; then test -n "$FIRST_ARG" || FIRST_ARG="$1" [ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || : for service in nscd.service ; do sysv_service=${service%.*} if [ ! -e /usr/lib/systemd/system/$service ] && [ ! -e /etc/init.d/$sysv_service ]; then mkdir -p /run/systemd/rpm/needs-preset touch /run/systemd/rpm/needs-preset/$service elif [ -e /etc/init.d/$sysv_service ] && [ ! -e /var/lib/systemd/migrated/$sysv_service ]; then /usr/sbin/systemd-sysv-convert --save $sysv_service || : mkdir -p /run/systemd/rpm/needs-sysv-convert touch /run/systemd/rpm/needs-sysv-convert/$service fi done fi if [ -x /usr/bin/systemctl ]; then test -n "$FIRST_ARG" || FIRST_ARG="$1" [ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || : if [ "$YAST_IS_RUNNING" != "instsys" ]; then /usr/bin/systemctl daemon-reload || : fi for service in nscd.service ; do sysv_service=${service%.*} if [ -e /run/systemd/rpm/needs-preset/$service ]; then /usr/bin/systemctl preset $service || : rm "/run/systemd/rpm/needs-preset/$service" || : elif [ -e /run/systemd/rpm/needs-sysv-convert/$service ]; then /usr/sbin/systemd-sysv-convert --apply $sysv_service || : rm "/run/systemd/rpm/needs-sysv-convert/$service" || : touch /var/lib/systemd/migrated/$sysv_service || : fi done fi [ -z "${TRANSACTIONAL_UPDATE}" -a -x /usr/bin/systemd-tmpfiles ] && /usr/bin/systemd-tmpfiles --create /usr/lib/tmpfiles.d/nscd.conf || : # Previously we had nscd.socket, remove it test -x /usr/bin/systemctl && /usr/bin/systemctl stop nscd.socket 2>/dev/null || : test -x /usr/bin/systemctl && /usr/bin/systemctl disable nscd.socket 2>/dev/null || : # Hard removal in case the above did not work rm -f /etc/systemd/system/sockets.target.wants/nscd.socket exit 0 test -n "$FIRST_ARG" || FIRST_ARG="$1" if [ "$FIRST_ARG" -eq 0 -a -x /usr/bin/systemctl ]; then # Package removal, not upgrade /usr/bin/systemctl --no-reload disable nscd.service || : ( test "$YAST_IS_RUNNING" = instsys && exit 0 test -f /etc/sysconfig/services -a \ -z "$DISABLE_STOP_ON_REMOVAL" && . /etc/sysconfig/services test "$DISABLE_STOP_ON_REMOVAL" = yes -o \ "$DISABLE_STOP_ON_REMOVAL" = 1 && exit 0 /usr/bin/systemctl stop nscd.service ) || : fi test -n "$FIRST_ARG" || FIRST_ARG="$1" if [ $1 -eq 0 ]; then # Package removal for service in nscd.service ; do sysv_service="${service%.*}" rm "/var/lib/systemd/migrated/$sysv_service" || : done fi if [ -x /usr/bin/systemctl ]; then /usr/bin/systemctl daemon-reload || : fi if [ "$FIRST_ARG" -ge 1 ]; then # Package upgrade, not uninstall if [ -x /usr/bin/systemctl ]; then ( test "$YAST_IS_RUNNING" = instsys && exit 0 test -f /etc/sysconfig/services -a \ -z "$DISABLE_RESTART_ON_UPDATE" && . /etc/sysconfig/services test "$DISABLE_RESTART_ON_UPDATE" = yes -o \ "$DISABLE_RESTART_ON_UPDATE" = 1 && exit 0 /usr/bin/systemctl try-restart nscd.service ) || : fi fi exit 0 uX A큤A큤A큀a`ka`ka`a`a`ka`ka`ka`ta`ka`ka`a`a`a`a`e2cdfafd373d24fab07018d0e95dd49510ea6c992b7be2b0611ab23bbc2750b579fe74962fbce2fa9b2a4b92f693b2fd42cbc2ed331fae268de7104879a72df879c9cec5dd2414dcb76d11e75903aa6fd9b7785c897cb9f853edcb140a71b779d6422bf93cd500fbaa185f8c72716a162159dcfcbfb4d9669a9583f48d3a2ddb/sbin/service@YYYYYYYrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootglibc-2.31-150300.9.12.1.src.rpmconfig(nscd)glibc:/usr/sbin/nscdnscdnscd(x86-64) @@@@@@@@@@@@@@@@@@@    /bin/sh/bin/sh/bin/sh/bin/shconfig(nscd)glibclibaudit.so.1()(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.10)(64bit)libc.so.6(GLIBC_2.14)(64bit)libc.so.6(GLIBC_2.17)(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.3)(64bit)libc.so.6(GLIBC_2.3.2)(64bit)libc.so.6(GLIBC_2.3.4)(64bit)libc.so.6(GLIBC_2.4)(64bit)libc.so.6(GLIBC_2.7)(64bit)libc.so.6(GLIBC_2.8)(64bit)libc.so.6(GLIBC_2.9)(64bit)libcap.so.2()(64bit)libpthread.so.0()(64bit)libpthread.so.0(GLIBC_2.2.5)(64bit)libpthread.so.0(GLIBC_2.3.2)(64bit)libpthread.so.0(GLIBC_2.3.3)(64bit)libselinux.so.1()(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)shadowsystemdsystemdsystemdsystemd2.31-150300.9.12.12.313.0.4-14.6.0-14.0-15.2-14.14.3aa@aZ@a@a@a0`ݮ@`a@`H`H`?z@`@_T__/@_O@^)@^@^{G^g@^`^U @^&^]@]7@]|@]@]:\@\\]@\@\|\~d[[ͻ[$@[t[r@[qr[^[!@[@Z@ZJ@Z2@ZH@ZZ Z}@ZxG@Zp^@Zp^@Ze@ZKt@Z1@Z/Z@Y@Y@YYܶ@YdY@Y@YY@Y@Y@YW@Y@YJYYw2Yp@YJ_YA%@Y.@Y, @Y, @Y$$@Y"XۡX@XWw@W@W@Ws@Wk@Wj}WYZ@WL+@W3W0{WW V@V@V޾Vm@VIV@VŲ@V`VVV@VLh@V.V$@VVZV VUYU|@UAUȒ@UU@UU4@UUv@U%@U/@U:T@TPTgTܕTء@TO@schwab@suse.deschwab@suse.deschwab@suse.degiuliano.belinassi@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.derguenther@suse.comrguenther@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.dematz@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.dematz@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.dematz@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.dejslaby@suse.comschwab@suse.deschwab@suse.deschwab@suse.deidonmez@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.denormand@linux.vnet.ibm.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.demeissner@suse.comschwab@suse.deschwab@suse.demgorman@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.de- getcwd-erange.patch: getcwd: Set errno to ERANGE for size == 1 (CVE-2021-3999, bsc#1194640, BZ #28769)- 0001-powerpc-Optimized-strcpy-for-POWER9.patch, 0002-powerpc-Optimized-stpcpy-for-POWER9.patch, 0003-powerpc-Optimized-rawmemchr-for-POWER9.patch, 0004-powerpc64le-add-optimized-strlen-for-P9.patch, 0005-powerpc-fix-ifunc-implementation-list-for-POWER9-str.patch, 0006-powerpc-Add-optimized-strncpy-for-POWER9.patch, 0007-powerpc-Add-optimized-stpncpy-for-POWER9.patch, 0008-powerpc-Add-optimized-ilogb-for-POWER9.patch, 0009-powerpc-Add-optimized-llogb-for-POWER9.patch, 0010-powerpc-Add-optimized-strlen-for-POWER10.patch, 0011-powerpc64le-Optimized-memmove-for-POWER10.patch, 0012-powerpc64le-Optimize-memcpy-for-POWER10.patch, 0013-powerpc64le-Optimize-memset-for-POWER10.patch, 0014-powerpc64le-Fix-ifunc-selection-for-memset-memmove-b.patch, 0015-powerpc-Add-optimized-rawmemchr-for-POWER10.patch: ppc64le ifunc improvements (bsc#1194785, jsc#SLE-18195)- clnt-create-unix-overflow.patch: Buffer overflow in sunrpc clnt_create for "unix" (CVE-2022-23219, bsc#1194768, BZ #22542) - svcunix-create-overflow.patch: Buffer overflow in sunrpc svcunix_create (CVE-2022-23218, bsc#1194770, BZ #28768)- Add support for livepatches (jsc#SLE-20049). - Enable livepatching on x86_64. - Generate ipa-clones tarball artifact when livepatching is enabled.- 0001-s390x-Align-child-stack-while-clone.-BZ-27968.patch, 0002-S390-Optimize-__memcpy_z196.patch, 0003-S390-Optimize-__memset_z196.patch, 0004-S390-Sync-HWCAP-names-with-kernel-by-adding-aliases-.patch, 0005-S390-Add-new-hwcap-values.patch, 0006-S390-Add-PCI_MIO-and-SIE-HWCAPs.patch: [15sp4 FEAT] GNU2007 - GLIBC: Support for new IBM Z Hardware (bsc#1191592, jsc#IBM-869)- mq-notify-use-after-free.patch: Use __pthread_attr_copy in mq_notify (CVE-2021-33574, bsc#1186489, BZ #27896)- wordexp-param-overflow.patch: wordexp: handle overflow in positional parameter number (CVE-2021-35942, bsc#1187911, BZ #28011)- s390-memmove-ifunc-selector-arch13.patch: S390: Also check vector support in memmove ifunc-selector (bsc#1184035, BZ #27511)- Update glibc-2.31-HTM-vzeroupper.diff with a AVX-SSE transition fix.- Add glibc-2.31-HTM-vzeroupper.diff to avoid VZEROUPPER in the AVX2 accelerated string routines which cause HTM transaction aborts. Instead use EVEX or SSE. (bsc#1181403)- nscd-netgroupcache.patch: nscd: Fix double free in netgroupcache (CVE-2021-27645, bsc#1182733, BZ #27462)- gconv-assertion-iso-2022-jp.patch: gconv: Fix assertion failure in ISO-2022-JP-3 module (CVE-2021-3326, bsc#1181505, BZ #27256)- sysvipc-sem-stat-any.patch: sysvipc: Fix SEM_STAT_ANY kernel argument pass (bsc#1180557, BZ #26637)- aarch64-getauxval.patch: aarch64: Accept PLT calls to __getauxval within libc.so (bsc#1167939) - iconv-redundant-shift.patch: iconv: Accept redundant shift sequences in IBM1364 (CVE-2020-27618, bsc#1178386, BZ #26224) - iconv-ucs4-loop-bounds.patch: iconv: Fix incorrect UCS4 inner loop bounds (CVE-2020-29562, bsc#1179694, BZ #26923) - printf-long-double-non-normal.patch: x86: Harden printf against non-normal long double values (CVE-2020-29573, bsc#1179721, BZ #26649) - get-nprocs-cpu-online-parsing.patch: Fix parsing of /sys/devices/system/cpu/online (bsc#1180038, BZ #25859)- power10-support.patch: Add support for POWER10 (jsc#SLE-13520) - iconv-option-parsing.patch: Rewrite iconv option parsing (CVE-2016-10228, bsc#1027496, BZ #19519)- Update to glibc 2.31 - glibc-2.14-crypt.diff, crypt_blowfish-const.patch, crypt_blowfish-1.2-sha.diff, crypt_blowfish-gensalt.patch, crypt_blowfish-1.2-hack_around_arm.diff, glibc-nodate.patch, powerpc-elision-enable-envvar.patch, s390-elision-enable-envvar.patch, crt-nocompress-debug-sections.patch, resolv-context-leak.patch, dl-runtime-resolve-opt-avx512f.patch, libpthread-compat-wrappers.patch, math-c++-compat.patch, remove-nss-nis-compat.patch, eh-frame-zero-terminator.patch, ld-so-hwcap-x86-64.patch, assert-pedantic.patch, getaddrinfo-errno.patch, resolv-conf-oom.patch, dynarray-allocation.patch, nearbyint-inexact.patch, nss-compat.patch, nscd-libnsl.patch, malloc-tcache-leak.patch, falkor-memcpy-memmove.patch, aarch64-cpu-features.patch, nss-files-large-buffers.patch, sysconf-uio-maxiov.patch, glob-tilde-overflow.patch, dl-runtime-resolve-xsave.patch, spawni-assert.patch, x86-64-dl-platform.patch, glob64-s390.patch, tst-tlsopt-powerpc.patch, powerpc-hwcap-bits.patch, malloc-tcache-check-overflow.patch, dl-init-paths-overflow.patch, fillin-rpath-empty-tokens.patch, getcwd-absolute.patch, memalign-overflow.patch, stack-guard-size-accounting.patch, libgcc-rtld-now.patch, res-send-enomem.patch, glibc-fix-avx512-mempcpy.patch, i386-memmove-sse2-unaligned.patch, realpath-ssize-max-overflow.patch, localtime-2039.patch, math-remove-slow-path.patch, aarch64-hwcap-atomics.patch, glibc-fix-aarch64-build.diff, absolute-symbols.patch, x86-haswell-string-flags.patch, pthread-cond-broadcast-waiters-after-spinning.patch, mman-map-sync.patch, mman-linux-map-shared-validate.patch, nptl-setxid-error.patch, pthread-mutex-trylock-barrier.patch, getaddrinfo-parse-ipv4-address.patch, japanese-era-name-may-2019.patch, force-elision-race.patch, regex-read-overrun.patch, regex-parse-reg-exp.patch, 0001-S390-Add-configure-check-to-detect-z10-as-mininum-ar.patch, 0002-S390-Use-hwcap-instead-of-dl_hwcap-in-ifunc-resolver.patch, 0003-S390-Unify-31-64bit-memcpy.patch, 0004-S390-Refactor-memcpy-mempcpy-ifunc-handling.patch, 0005-S390-Remove-s390-specific-implementation-of-bcopy.patch, 0006-S390-Use-memcpy-for-forward-cases-in-memmove.patch, 0007-S390-Add-configure-check-to-detect-z13-as-mininum-ar.patch, 0008-S390-Add-z13-memmove-ifunc-variant.patch, 0009-S390-Add-z13-strstr-ifunc-variant.patch, 0010-S390-Add-z13-memmem-ifunc-variant.patch, 0011-S390-Cleanup-ifunc-resolve.h.patch, 0012-S390-Mark-vx-and-vxe-as-important-hwcap.patch, 0013-S390-Add-new-hwcap-values-for-new-cpu-architecture-a.patch, 0014-S390-Add-configure-check-to-detect-support-for-arch1.patch, 0015-S390-Add-arch13-memmove-ifunc-variant.patch, 0016-S390-Add-arch13-strstr-ifunc-variant.patch, 0017-S390-Add-arch13-memmem-ifunc-variant.patch, prefer-map-32bit-exec.patch, s390-strstr-page-boundary.patch, ppc-tle-htm-nosc.patch, posix-Add-internal-symbols-for-posix_spawn-interface.patch, glibc-2.29-posix-Use-posix_spawn-on-popen.patch, backtrace-powerpc.patch, pthread-rwlock-pwn.patch, manual-memory-protection.patch, ldbl-96-rem-pio2l.patch, dl-sort-maps.patch, dlopen-filter-object.patch, glob-use-after-free.patch, nptl-setxid-race.patch, nscd-senfile.patch, ldd-system-interp.patch, abort-no-flush.patch, fnmatch-collating-elements.patch, nss-files-long-lines-2.patch, iconv-reset-input-buffer.patch, nscd-prune.patch, syslog-locking.patch: Removed. - long-double-alias.patch, glibc-nsswitch-usr.diff, euc-kr-overrun.patch, riscv-syscall-clobber.patch, nscd-gc-cycle.patch: Added.- nscd-senfile.patch: Fix concurrent changes on nscd aware files (bsc#1171878, BZ #23178) - nscd-prune.patch: nscd: bump GC cycle during cache pruning (bsc#1171878, BZ #26130) - syslog-locking.patch: Correct locking and cancellation cleanup in syslog functions (bsc#1172085, BZ #26100)- nptl-setxid-race.patch: nptl: wait for pending setxid request also in detached thread (bsc#1162930, BZ #25942)- glob-use-after-free.patch: Fix use-after-free in glob when expanding ~user (CVE-2020-1752, bsc#1167631, BZ #25414)- dl-sort-maps.patch, dlopen-filter-object.patch: Allow dlopen of filter object to work (bsc#1166106, BZ #16272)- ldbl-96-rem-pio2l.patch: Avoid ldbl-96 stack corruption from range reduction of pseudo-zero (CVE-2020-10029, bsc#1165784, BZ #25487)- pthread-rwlock-pwn.patch: Fix rwlock stall with PREFER_WRITER_NONRECURSIVE_NP (bsc#1164505, BZ #23861) - manual-memory-protection.patch: manual: Document mprotect and introduce section on memory protection (bsc#1163184)- backtrace-powerpc.patch: Fix array overflow in backtrace on PowerPC (CVE-2020-1751, bsc#1158996, BZ #25423)- posix-Add-internal-symbols-for-posix_spawn-interface.patch, glibc-2.29-posix-Use-posix_spawn-on-popen.patch: Use posix_spawn on popen (bsc#1149332, BZ #22834)- ppc-tle-htm-nosc.patch: powerpc: Fix syscalls during early process initialization (SLE-8348, BZ #22685)- s390-strstr-page-boundary.patch: S390: Fix handling of needles crossing a page in strstr z15 ifunc-variant (bsc#1157893, BZ #25226)- prefer-map-32bit-exec.patch: rtld: Check __libc_enable_secure before honoring LD_PREFER_MAP_32BIT_EXEC (CVE-2019-19126, bsc#1157292, BZ [#25204])- GNU1815 - Hardware support in toolchain (bsc#1151582) 0001-S390-Add-configure-check-to-detect-z10-as-mininum-ar.patch 0002-S390-Use-hwcap-instead-of-dl_hwcap-in-ifunc-resolver.patch 0003-S390-Unify-31-64bit-memcpy.patch 0004-S390-Refactor-memcpy-mempcpy-ifunc-handling.patch 0005-S390-Remove-s390-specific-implementation-of-bcopy.patch 0006-S390-Use-memcpy-for-forward-cases-in-memmove.patch 0007-S390-Add-configure-check-to-detect-z13-as-mininum-ar.patch 0008-S390-Add-z13-memmove-ifunc-variant.patch 0009-S390-Add-z13-strstr-ifunc-variant.patch 0010-S390-Add-z13-memmem-ifunc-variant.patch 0011-S390-Cleanup-ifunc-resolve.h.patch 0012-S390-Mark-vx-and-vxe-as-important-hwcap.patch 0013-S390-Add-new-hwcap-values-for-new-cpu-architecture-a.patch 0014-S390-Add-configure-check-to-detect-support-for-arch1.patch 0015-S390-Add-arch13-memmove-ifunc-variant.patch 0016-S390-Add-arch13-strstr-ifunc-variant.patch 0017-S390-Add-arch13-memmem-ifunc-variant.patch- regex-parse-reg-exp.patch: ERE '0|()0|\1|0' causes regexec undefined behavior (CVE-2009-5155, bsc#1127223, BZ #18986) - regex-read-overrun.patch: regex: fix read overrun (CVE-2019-9169, bsc#1127308, BZ #24114)- crt-nocompress-debug-sections.patch: Don't compress debug sections in crt*.o files (bsc#1123710)- ldconfig-concurrency.patch: Avoid concurrency problem in ldconfig (bsc#1117993, BZ #23973)- force-elision-race.patch: Fix race in pthread_mutex_lock while promoting to PTHREAD_MUTEX_ELISION_NP (bsc#1131330, BZ #23275)- japanese-era-name-may-2019.patch: ja_JP locale: Add entry for the new Japanese era (bsc#1100396, BZ #22964)- pthread-mutex-trylock-barrier.patch: pthread_mutex_trylock does not use the correct order of instructions while maintaining the robust mutex list due to missing compiler barriers (bsc#1130045, BZ #24180) - getaddrinfo-parse-ipv4-address.patch: getaddrinfo: Fully parse IPv4 address strings (CVE-2016-10739, bsc#1122729, BZ #20018)- mman-map-sync.patch: Add MAP_SYNC from Linux 4.15 (bsc#1126590) - mman-linux-map-shared-validate.patch: Add MAP_SHARED_VALIDATE from Linux 4.15 (bsc#1126590) - nptl-setxid-error.patch: nptl: Preserve error in setxid thread broadcast in coredumps (bsc#1063675, BZ #22153)- x86-haswell-string-flags.patch: Fix Haswell CPU string flags (bsc#1114984, BZ #23709) - pthread-cond-broadcast-waiters-after-spinning.patch: Fix waiters-after-spinning case (bsc#1114993, BZ #23538)- absolute-symbols.patch: Don't relocate absolute symbols (bsc#1112570, BZ [#19818])- glibc-fix-aarch64-build.diff: Fix build on aarch64 with binutils newer than 2.30.- Add glibc-locale-base subpackage containing only C, C.UTF-8 and en_US.UTF-8 locales (fate#326551)- aarch64-hwcap-atomics.patch: aarch64: add HWCAP_ATOMICS to HWCAP_IMPORTANT (fate#325962)- math-remove-slow-path.patch: Remove slow paths from math routines (fate#325815, fate#325879, fate#325880, fate#325881, fate#325882)- localtime-2039.patch: Fix year 2039 bug for localtime with 64-bit time_t (bsc#1102526, BZ #22639)- i386-memmove-sse2-unaligned.patch: Fix SSE2 memmove issue when crossing 2GB boundary (CVE-2017-18269, bnc#1094150, BZ #22644) - realpath-ssize-max-overflow.patch: Fix overflow in path length computation (CVE-2018-11236, bsc#1094161, BZ #22786) - glibc-fix-avx512-mempcpy.patch: replace with upstream version- Use %license also for COPYING and COPYING.LIB (bsc#1082318)- Add glibc-fix-avx512-mempcpy.patch as quick fix for mempcpy buffer overwrite in memmove-avx512-no-vzeroupper.S for Knights Landing CPUs (CVE-2018-11237, bnc#1094154, bnc#1092877, BZ #23196)- Readd nis to netgroup and automount nss config (bsc#1088860)- res-send-enomem.patch: Fix crash in resolver on memory allocation failure (bsc#1086690, BZ #23005)- Use %license (bsc#1082318)- stack-guard-size-accounting.patch: Fix stack guard size accounting (bsc#1074208, BZ #22637) - libgcc-rtld-now.patch: Open libgcc.so with RTLD_NOW during pthread_cancel (bsc#1074208, BZ #22636)- Mark source0 as nosource in non-main source rpms- Add systemtap-headers to BuildRequires. - Add --enable-systemtap to configure arguments. (fate#324969, bsc#1073636)- memalign-overflow.patch: Fix integer overflows in internal memalign and malloc functions (CVE-2018-6485, CVE-2018-6551, bsc#1079036, BZ #22343, BZ #22774)- fix-locking-in-_IO_cleanup.patch: Skip locked files during exit (bsc#1070491, BZ #15142)- Avoid duplicate source rpm- getcwd-absolute.patch: make getcwd(3) fail if it cannot obtain an absolute path (CVE-2018-1000001, bsc#1074293, BZ #22679)- dl-init-paths-overflow.patch: Count components of the expanded path in _dl_init_path (CVE-2017-1000408, CVE-2017-1000409, bsc#1071319, BZ [#22607], BZ #22627) - fillin-rpath-empty-tokens.patch: Check for empty tokens before dynamic string token expansion (CVE-2017-16997, bsc#1073231, BZ #22625)- tst-tlsopt-powerpc.patch: fix tst-tlsopt-powerpc (bcn#1070419) - powerpc-hwcap-bits.patch: Update HWCAP for powerpc (bnc#1070420) - malloc-tcache-check-overflow.patch: Fix integer overflow in malloc when tcache is enabled (CVE-2017-17426, bnc#1071479, BZ #22375)- Add _multibuild- glob64-s390.patch: no compat glob64 on s390 - noversion.tar.bz2: remove unused source- x86-64-dl-platform.patch: Don't set GLRO(dl_platform) to NULL (BZ #22299)- spawni-assert.patch: Fix improper assert in Linux posix_spawn (BZ [#22273])- math-c++-compat.patch: Add more C++ compatibility (BZ #22296) - malloc-tcache-leak.patch: Fix tcache leak after thread destruction (BZ [#22111]) - falkor-memcpy-memmove.patch: Optimized implementation of memcpy/memmove for Qualcomm Falkor - aarch64-cpu-features.patch: Fix glibc.tune.cpu tunable handling - nss-files-large-buffers.patch: Avoid large buffers with many host addresses (BZ #22078) - sysconf-uio-maxiov.patch: Fix missing definition of UIO_MAXIOV (BZ [#22321]) - glob-tilde-overflow.patch: Fix buffer overflows with GLOB_TILDE (CVE-2017-15670, CVE-2017-15671, CVE-2017-15804, bsc#1064569. bsc#1064580, bsc#1064583, BZ #22320, BZ #22325, BZ #22332) - dl-runtime-resolve-xsave.patch: Use fxsave/xsave/xsavec in _dl_runtime_resolve (BZ #21265)- nscd-libnsl.patch: Remove reference to libnsl from nscd (bsc#1062244)- Drop glibc-obsolete - glibc-2.3.90-noversion.diff: remove - reinitialize-dl_load_write_lock.patch: remove- nss-compat.patch: Move nss_compat from nis to nss subdir and install it unconditionally - nsswitch.conf: switch back to compat for passwd, group, shadow- assert-pedantic.patch: Suppress pedantic warning caused by statement expression (BZ #21242, BZ #21972) - math-c++-compat.patch: Add more C++ compatibility (BZ #22235) - getaddrinfo-errno.patch: Fix errno and h_errno handling in getaddrinfo (BZ #21915, BZ #21922) - resolv-conf-oom.patch: Fix memory handling in OOM situation during resolv.conf parsing (BZ #22095, BZ #22096) - dynarray-allocation.patch: Fix initial size of dynarray allocation and set errno on overflow error - nearbyint-inexact.patch: Avoid spurious inexact in nearbyint (BZ #22225)- math-c++-compat.patch: add more C++ compatibility (BZ #22146)- Remove rpcsvc/yppasswd.* from glibc-devel - ld-so-hwcap-x86-64.patch: add x86_64 to hwcap (bsc#1056606, BZ #22093)- eh-frame-zero-terminator.patch: Properly terminate .eh_frame (BZ #22051)- Disable obsolete libnsl and NIS support - remove-nss-nis-compat.patch: remove nis and compat from default NSS configs - nsswitch.conf: Likewise- math-c++-compat.patch: Do not use __builtin_types_compatible_p in C++ mode (BZ #21930)- Add iconvconfig to baselibs.conf (bsc#1051042)- resolv-context-leak.patch: Fix leaks of resolver contexts - dl-runtime-resolve-opt-avx512f.patch: Use _dl_runtime_resolve_opt only with AVX512F (BZ #21871) - libpthread-compat-wrappers.patch: Don't use IFUNC resolver for longjmp or system in libpthread (BZ #21041)- Update to glibc 2.26 * A per-thread cache has been added to malloc * Unicode 10.0.0 Support * Improvements to the DNS stub resolver * New function reallocarray, which resizes an allocated block (like realloc) to the product of two sizes, with a guaranteed clean failure upon integer overflow in the multiplication * New wrappers for the Linux-specific system calls preadv2 and pwritev2 * posix_spawnattr_setflags now supports the flag POSIX_SPAWN_SETSID, to create a new session ID for the spawned process * errno.h is now safe to use from C-preprocessed assembly language on all supported operating systems * On ia64, powerpc64le, x86-32, and x86-64, the math library now implements 128-bit floating point as defined by ISO/IEC/IEEE 60559:2011 (IEEE 754-2008) and ISO/IEC TS 18661-3:2015 * The synchronization that pthread_spin_unlock performs has been changed to now be equivalent to a C11 atomic store with release memory order to the spin lock's memory location * The DNS stub resolver no longer performs EDNS fallback * res_mkquery and res_nmkquery no longer support the IQUERY opcode * The _res_opcodes variable has been removed from libresolv * no longer includes inline versions of any string functions, as this kind of optimization is better done by the compiler * The nonstandard header has been removed * The obsolete header has been removed * The obsolete signal constant SIGUNUSED is no longer defined by * The obsolete function cfree has been removed * The stack_t type no longer has the name struct sigaltstack * The ucontext_t type no longer has the name struct ucontext * On S/390 GNU/Linux, the constants defined by have been synced with the kernel * Linux kernel 3.2 or later is required at runtime, on all architectures supported by that kernel * The DNS stub resolver limits the advertised UDP buffer size to 1200 bytes, to avoid fragmentation-based spoofing attacks (CVE-2017-12132) * LD_LIBRARY_PATH is now ignored in binaries running in privileged AT_SECURE mode to guard against local privilege escalation attacks (CVE-2017-1000366) * Avoid printing a backtrace from the __stack_chk_fail function since it is called on a corrupt stack and a backtrace is unreliable on a corrupt stack (CVE-2010-3192) * A use-after-free vulnerability in clntudp_call in the Sun RPC system has been fixed (CVE-2017-12133) * fate#322258, fate#321513, fate#322453 - fts-symbol-redirect.patch, glibc-resolv-reload.diff, glibc-2.2-sunrpc.diff, i686-memchr-sse.patch, ld-hwcap-mask-suid.patch, ld-library-path-suid.patch, sunrpc-use-after-free.patch, test-math-vector-sincos-aliasing.patch, tunables-bigendian.patch: Removed- Fix RPM group- s390-elision-enable-envvar.patch: enable TLE only if GLIBC_ELISION_ENABLE=yes is defined (fate#322271)- ld-hwcap-mask-suid.patch: Ignore and remove LD_HWCAP_MASK for AT_SECURE programs (BZ #21209) - ld-library-path-suid.patch: Completely ignore LD_LIBRARY_PATH for AT_SECURE=1 programs (CVE-2017-1000366, bsc#1039357, BZ #21624)- Remove glibc-cpusetsize.diff, no longer useful- fts-symbol-redirect.patch: Fix symbol redirect for fts_set (bsc#1041123, BZ #21289)- test-math-vector-sincos-aliasing.patch: Fix test-math-vector-sincos.h aliasing- add-locales.patch: renamed from glibc-2.3.locales.diff.bz2, drop en_BE locales (bsc#1039502)- Remove glibc-testsuite.patch, no longer relevant- Use multibuild feature - Remove obsolete check-build.sh - glibc.rpmlintrc: remove obsolete entries - Use %tmpfiles_create in nscd postin- i686-memchr-sse.patch: Fix i686 memchr overflow calculation (bsc#1031021, BZ #21182) - sunrpc-use-after-free.patch: Avoid use-after-free read access in clntudp_call (BZ #21115) - Build testsuite with gdb and python-pexpect to enable more tests- tunables-bigendian.patch: Fix getting tunable values on big-endian (BZ [#21109])- Update to glibc 2.25 * The feature test macro __STDC_WANT_LIB_EXT2__, from ISO/IEC TR 24731-2:2010, is supported to enable declarations of functions from that TR. * The feature test macro __STDC_WANT_IEC_60559_BFP_EXT__, from ISO/IEC TS 18661-1:2014, is supported to enable declarations of functions and macros from that TS. * The feature test macro __STDC_WANT_IEC_60559_FUNCS_EXT__, from ISO/IEC TS 18661-4:2015, is supported to enable declarations of functions and macros from that TS. * The nonstandard feature selection macros _REENTRANT and _THREAD_SAFE are now treated as compatibility synonyms for _POSIX_C_SOURCE=199506L. * The inclusion of by is deprecated. * New features from TS 18661-1:2014 are added to libm: the fesetexcept, fetestexceptflag, fegetmode and fesetmode functions, the femode_t type and the FE_DFL_MODE and FE_SNANS_ALWAYS_SIGNAL macros. * Integer width macros from TS 18661-1:2014 are added to : CHAR_WIDTH, SCHAR_WIDTH, UCHAR_WIDTH, SHRT_WIDTH, USHRT_WIDTH, INT_WIDTH, UINT_WIDTH, LONG_WIDTH, ULONG_WIDTH, LLONG_WIDTH, ULLONG_WIDTH; and to : INT8_WIDTH, UINT8_WIDTH, INT16_WIDTH, UINT16_WIDTH, INT32_WIDTH, UINT32_WIDTH, INT64_WIDTH, UINT64_WIDTH, INT_LEAST8_WIDTH, UINT_LEAST8_WIDTH, INT_LEAST16_WIDTH, UINT_LEAST16_WIDTH, INT_LEAST32_WIDTH, UINT_LEAST32_WIDTH, INT_LEAST64_WIDTH, UINT_LEAST64_WIDTH, INT_FAST8_WIDTH, UINT_FAST8_WIDTH, INT_FAST16_WIDTH, UINT_FAST16_WIDTH, INT_FAST32_WIDTH, UINT_FAST32_WIDTH, INT_FAST64_WIDTH, UINT_FAST64_WIDTH, INTPTR_WIDTH, UINTPTR_WIDTH, INTMAX_WIDTH, UINTMAX_WIDTH, PTRDIFF_WIDTH, SIG_ATOMIC_WIDTH, SIZE_WIDTH, WCHAR_WIDTH, WINT_WIDTH. * New features are added from TS 18661-1:2014: - Signaling NaN macros: SNANF, SNAN, SNANL. - Nearest integer functions: roundeven, roundevenf, roundevenl, fromfp, fromfpf, fromfpl, ufromfp, ufromfpf, ufromfpl, fromfpx, fromfpxf, fromfpxl, ufromfpx, ufromfpxf, ufromfpxl. - llogb functions: the llogb, llogbf and llogbl functions, and the FP_LLOGB0 and FP_LLOGBNAN macros. - Max-min magnitude functions: fmaxmag, fmaxmagf, fmaxmagl, fminmag, fminmagf, fminmagl. - Comparison macros: iseqsig. - Classification macros: iscanonical, issubnormal, iszero. - Total order functions: totalorder, totalorderf, totalorderl, totalordermag, totalordermagf, totalordermagl. - Canonicalize functions: canonicalize, canonicalizef, canonicalizel. - NaN functions: getpayload, getpayloadf, getpayloadl, setpayload, setpayloadf, setpayloadl, setpayloadsig, setpayloadsigf, setpayloadsigl. * The functions strfromd, strfromf, and strfroml, from ISO/IEC TS 18661-1:2014, are added to libc. * Most of glibc can now be built with the stack smashing protector enabled. * The function explicit_bzero, from OpenBSD, has been added to libc. * On ColdFire, MicroBlaze, Nios II and SH3, the float_t type is now defined to float instead of double. * On x86_64, when compiling with -mfpmath=387 or -mfpmath=sse+387, the float_t and double_t types are now defined to long double instead of float and double. * The getentropy and getrandom functions, and the header file have been added. * The buffer size for byte-oriented stdio streams is now limited to 8192 bytes by default. * The header now includes the header. * The malloc_get_state and malloc_set_state functions have been removed. * The “ip6-dotint” and “no-ip6-dotint” resolver options, and the corresponding RES_NOIP6DOTINT flag from have been removed. * The "ip6-bytestring" resolver option and the corresponding RES_USEBSTRING flag from have been removed. * The flags RES_AAONLY, RES_PRIMARY, RES_NOCHECKNAME, RES_KEEPTSIG, RES_BLAST defined in the header file have been deprecated. * The "inet6" option in /etc/resolv.conf and the RES_USE_INET6 flag for _res.flags are deprecated. * DNSSEC-related declarations and definitions have been removed from the header file, and libresolv will no longer attempt to decode the data part of DNSSEC record types. * The resource record type classification macros ns_t_qt_p, ns_t_mrr_p, ns_t_rr_p, ns_t_udp_p, ns_t_xfr_p have been removed from the header file because the distinction between RR types and meta-RR types is not officially standardized, subject to revision, and thus not suitable for encoding in a macro. * The types res_sendhookact, res_send_qhook, re_send_rhook, and the qhook and rhook members of the res_state type in have been removed. * For multi-arch support it is recommended to use a GCC which has been built with support for GNU indirect functions. * GDB pretty printers have been added for mutex and condition variable structures in POSIX Threads. * Tunables feature added to allow tweaking of the runtime for an application program. * A new version of condition variables functions have been implemented in the NPTL implementation of POSIX Threads to provide stronger ordering guarantees. * A new version of pthread_rwlock functions have been implemented to use a more scalable algorithm primarily through not using a critical section anymore to make state changes. * On ARM EABI (32-bit), generating a backtrace for execution contexts which have been created with makecontext could fail to terminate due to a missing .cantunwind annotation. (CVE-2016-6323) * The DNS stub resolver functions would crash due to a NULL pointer dereference when processing a query with a valid DNS question type which was used internally in the implementation. (CVE-2015-5180) - Enable stack protector if part of %optflags - startcontext-cantunwind.patch: Removed - cpuid-assertion.patch: Removed- cpuid-assertion.patch: Don't assert on older Intel CPUs (BZ #20647)- glibc-2.3.3-nscd-db-path.diff: Move persistent nscd databases to /var/lib/nscd - glibc-2.3.90-langpackdir.diff: simplify- Update to glibc 2.24 * The minimum Linux kernel version that this version of the GNU C Library can be used with is 3.2 * The pap_AN locale has been deleted * The readdir_r and readdir64_r functions have been deprecated * The type `union wait' has been removed * A new NSS action is added to facilitate large distributed system administration * The deprecated __malloc_initialize_hook variable has been removed from the API * The long unused localedef --old-style option has been removed * nextupl, nextup, nextupf, nextdownl, nextdown and nextdownf are added to libm * An unnecessary stack copy in _nss_dns_getnetbyname_r was removed (CVE-2016-3075) * Previously, getaddrinfo copied large amounts of address data to the stack, even after the fix for CVE-2013-4458 has been applied, potentially resulting in a stack overflow. getaddrinfo now uses a heap allocation instead (CVE-2016-3706) * The glob function suffered from a stack-based buffer overflow when it was called with the GLOB_ALTDIRFUNC flag and encountered a long file name (CVE-2016-1234) * The Sun RPC UDP client could exhaust all available stack space when flooded with crafted ICMP and UDP messages (CVE-2016-4429) * The IPv6 name server management code in libresolv could result in a memory leak for each thread which is created, performs a failing naming lookup, and exits (CVE-2016-5417) - startcontext-cantunwind.patch: mark __startcontext as .cantunwind (bsc#974800, BZ #20435) - Removed patches: * 0001-Updated-translations-for-2.23.patch * 0002-Regenerate-libc.pot-for-2.23.patch * 0003-Regenerated-configure-scripts.patch * 0004-x86_64-Set-DL_RUNTIME_UNALIGNED_VEC_SIZE-to-8.patch * 0005-Add-fts64_-to-sysdeps-arm-nacl-libc.abilist.patch * 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch * 0007-NEWS-2.23-Fix-typo-in-bug-19048-text.patch * 0008-Update-NEWS.patch * 0009-sln-use-stat64.patch * 0010-Add-sys-auxv.h-wrapper-to-include-sys.patch * 0011-mips-terminate-the-FDE-before-the-return-trampoline-.patch * 0012-Use-HAS_ARCH_FEATURE-with-Fast_Rep_String.patch * 0013-Mention-BZ-19762-in-NEWS.patch * 0014-Define-_HAVE_STRING_ARCH_mempcpy-to-1-for-x86.patch * 0015-Or-bit_Prefer_MAP_32BIT_EXEC-in-EXTRA_LD_ENVVARS.patch * 0016-Fix-resource-leak-in-resolver-bug-19257.patch * 0017-math-don-t-clobber-old-libm.so-on-install-BZ-19822.patch * 0018-resolv-Always-set-resplen2-out-parameter-in-send_dg-.patch * 0019-S390-Save-and-restore-fprs-vrs-while-resolving-symbo.patch * 0020-S390-Extend-structs-La_s390_regs-La_s390_retval-with.patch * 0021-CVE-2016-3075-Stack-overflow-in-_nss_dns_getnetbynam.patch * 0022-configure-fix-test-usage.patch * 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch * 0024-nss_db-Propagate-ERANGE-error-if-parse_line-fails-BZ.patch * 0025-getnameinfo-Do-not-preserve-errno.patch * 0026-getnameinfo-Refactor-and-fix-memory-leak-BZ-19642.patch * 0027-getnameinfo-Reduce-line-length-and-add-missing-comme.patch * 0028-getnameinfo-Avoid-calling-strnlen-on-uninitialized-b.patch * 0029-getnameinfo-Return-EAI_OVERFLOW-in-more-cases-BZ-197.patch * 0030-hesiod-Remove-RCS-keywords.patch * 0031-hesiod-Always-use-thread-local-resolver-state-BZ-195.patch * 0032-hesiod-Avoid-heap-overflow-in-get_txt_records-BZ-200.patch * 0033-malloc-Remove-NO_THREADS.patch * 0034-Fix-malloc-threaded-tests-link-on-non-Linux.patch * 0035-malloc-Run-fork-handler-as-late-as-possible-BZ-19431.patch * 0036-malloc-Remove-malloc-hooks-from-fork-handler.patch * 0037-malloc-Add-missing-internal_function-attributes-on-f.patch * 0038-nss_dns-Fix-assertion-failure-in-_nss_dns_getcanonna.patch * 0039-nss_dns-Validate-RDATA-length-against-packet-length-.patch * 0040-resolv-nss_dns-Remove-remaining-syslog-logging-BZ-19.patch * 0041-nss_dns-Check-address-length-before-creating-addrinf.patch * 0042-nss_dns-Skip-over-non-PTR-records-in-the-netent-code.patch * 0043-resolv-Always-set-resplen2-out-parameter-in-send_vc-.patch * 0044-tst-audit4-tst-audit10-Compile-AVX-AVX-512-code-sepa.patch * 0045-Fix-tst-audit10-build-when-mavx512f-is-not-supported.patch * 0046-tst-audit10-Fix-compilation-on-compilers-without-bit.patch * 0047-strfmon_l-Use-specified-locale-for-number-formatting.patch * 0048-glob-Simplify-the-interface-for-the-GLOB_ALTDIRFUNC-.patch * 0049-CVE-2016-1234-glob-Do-not-copy-d_name-field-of-struc.patch * 0050-ldconfig-Do-not-remove-stale-symbolic-links-with-X-B.patch * 0051-Report-dlsym-dlvsym-lookup-errors-using-dlerror-BZ-1.patch * 0052-Fix-tst-dlsym-error-build.patch * 0053-Remove-trailing-newline-from-date_fmt-in-Serbian-loc.patch * 0054-Revert-Report-dlsym-dlvsym-lookup-errors-using-dlerr.patch * 0055-CVE-2016-3706-getaddrinfo-stack-overflow-in-hostent-.patch * 0056-Fix-strfmon_l-Use-specified-locale-for-number-format.patch * clntudp-call-alloca.patch * glibc-memset-nontemporal.diff * nis-initgroups-status.patch * nscd-gc-crash.patch * robust-mutex-deadlock.patch * strncat-avoid-array-bounds-warning.patch- strncat-avoid-array-bounds-warning.patch: Avoid array-bounds warning for stncat on i586 (BZ #20260) - Update glibc.keyring - Unset MALLOC_CHECK_ during testsuite run- nsswitch.conf: Add fallback to files for passwd and group to prepare for libnsl removal.- nis-initgroups-status.patch: Return proper status from _nss_nis_initgroups_dyn (bsc#984269, BZ #20262) - robust-mutex-deadlock.patch: Fix generic __lll_robust_timedlock_wait to check for timeout (bsc#985170, BZ #20263)- nscd-gc-crash.patch: Fix nscd assertion failure in gc (bsc#965699, BZ [#19755])- clntudp-call-alloca.patch: do not use alloca in clntudp_call (CVE-2016-4429, bsc#980854, BZ #20112)- Import patches from 2.23 branch 0001-Updated-translations-for-2.23.patch 0002-Regenerate-libc.pot-for-2.23.patch 0003-Regenerated-configure-scripts.patch 0004-x86_64-Set-DL_RUNTIME_UNALIGNED_VEC_SIZE-to-8.patch 0005-Add-fts64_-to-sysdeps-arm-nacl-libc.abilist.patch 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch 0007-NEWS-2.23-Fix-typo-in-bug-19048-text.patch 0008-Update-NEWS.patch 0009-sln-use-stat64.patch 0010-Add-sys-auxv.h-wrapper-to-include-sys.patch 0011-mips-terminate-the-FDE-before-the-return-trampoline-.patch 0012-Use-HAS_ARCH_FEATURE-with-Fast_Rep_String.patch 0013-Mention-BZ-19762-in-NEWS.patch 0014-Define-_HAVE_STRING_ARCH_mempcpy-to-1-for-x86.patch 0015-Or-bit_Prefer_MAP_32BIT_EXEC-in-EXTRA_LD_ENVVARS.patch 0016-Fix-resource-leak-in-resolver-bug-19257.patch 0017-math-don-t-clobber-old-libm.so-on-install-BZ-19822.patch 0018-resolv-Always-set-resplen2-out-parameter-in-send_dg-.patch 0019-S390-Save-and-restore-fprs-vrs-while-resolving-symbo.patch 0020-S390-Extend-structs-La_s390_regs-La_s390_retval-with.patch 0021-CVE-2016-3075-Stack-overflow-in-_nss_dns_getnetbynam.patch 0022-configure-fix-test-usage.patch 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch 0024-nss_db-Propagate-ERANGE-error-if-parse_line-fails-BZ.patch 0025-getnameinfo-Do-not-preserve-errno.patch 0026-getnameinfo-Refactor-and-fix-memory-leak-BZ-19642.patch 0027-getnameinfo-Reduce-line-length-and-add-missing-comme.patch 0028-getnameinfo-Avoid-calling-strnlen-on-uninitialized-b.patch 0029-getnameinfo-Return-EAI_OVERFLOW-in-more-cases-BZ-197.patch 0030-hesiod-Remove-RCS-keywords.patch 0031-hesiod-Always-use-thread-local-resolver-state-BZ-195.patch 0032-hesiod-Avoid-heap-overflow-in-get_txt_records-BZ-200.patch 0033-malloc-Remove-NO_THREADS.patch 0034-Fix-malloc-threaded-tests-link-on-non-Linux.patch 0035-malloc-Run-fork-handler-as-late-as-possible-BZ-19431.patch 0036-malloc-Remove-malloc-hooks-from-fork-handler.patch 0037-malloc-Add-missing-internal_function-attributes-on-f.patch 0038-nss_dns-Fix-assertion-failure-in-_nss_dns_getcanonna.patch 0039-nss_dns-Validate-RDATA-length-against-packet-length-.patch 0040-resolv-nss_dns-Remove-remaining-syslog-logging-BZ-19.patch 0041-nss_dns-Check-address-length-before-creating-addrinf.patch 0042-nss_dns-Skip-over-non-PTR-records-in-the-netent-code.patch 0043-resolv-Always-set-resplen2-out-parameter-in-send_vc-.patch 0044-tst-audit4-tst-audit10-Compile-AVX-AVX-512-code-sepa.patch 0045-Fix-tst-audit10-build-when-mavx512f-is-not-supported.patch 0046-tst-audit10-Fix-compilation-on-compilers-without-bit.patch 0047-strfmon_l-Use-specified-locale-for-number-formatting.patch 0048-glob-Simplify-the-interface-for-the-GLOB_ALTDIRFUNC-.patch 0049-CVE-2016-1234-glob-Do-not-copy-d_name-field-of-struc.patch 0050-ldconfig-Do-not-remove-stale-symbolic-links-with-X-B.patch 0051-Report-dlsym-dlvsym-lookup-errors-using-dlerror-BZ-1.patch 0052-Fix-tst-dlsym-error-build.patch 0053-Remove-trailing-newline-from-date_fmt-in-Serbian-loc.patch 0054-Revert-Report-dlsym-dlvsym-lookup-errors-using-dlerr.patch 0055-CVE-2016-3706-getaddrinfo-stack-overflow-in-hostent-.patch 0056-Fix-strfmon_l-Use-specified-locale-for-number-format.patch - CVE-2016-3075 CVE-2016-1234 CVE-2016-3706 bsc#973164 bsc#969727 - resolv-mem-leak.patch: renamed to 0016-Fix-resource-leak-in-resolver-bug-19257.patch - no-long-double.patch: renamed to 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch - glibc-gcc6.patch: renamed to 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch- glibc-c-utf8-locale.patch: fix bad standard in LC_IDENTIFICATION categories - glibc-2.3.locales.diff.bz2: likewise- glibc-gcc6.patch: Suppress GCC 6 warning about ambiguous 'else' with - Wparentheses- Add compatibility symlinks for LSB 3.0 (fate#318933)- powerpc-elision-enable-envvar.patch: enable TLE only if GLIBC_ELISION_ENABLE=yes is defined (bsc#967594, fate#318236)- ldd-system-interp.patch: Restore warning about execution permission, it is still needed for noexec mounts (bsc#915985)- Add C.UTF-8 locale (see https://sourceware.org/glibc/wiki/Proposals/C.UTF-8) and rh#902094 . Added with glibc-c-utf8-locale.patch. - Add glibc-disable-gettext-for-c-utf8.patch to disable gettext for C.UTF-8 same as C locale.- Move %install_info_delete to %preun - crypt_blowfish-1.3.tar.gz.sign: Remove, the sign key is no longer acceptable- no-long-double.patch: Don't use long double functions if NO_LONG_DOUBLE- Update to glibc 2.23 release. * Unicode 8.0.0 Support * sched_setaffinity, pthread_setaffinity_np no longer attempt to guess the kernel-internal CPU set size * The fts.h header can now be used with -D_FILE_OFFSET_BITS=64 * getaddrinfo now detects certain invalid responses on an internal netlink socket * A defect in the malloc implementation, present since glibc 2.15 (2012) or glibc 2.10 via --enable-experimental-malloc (2009), could result in the unnecessary serialization of memory allocation requests across threads * The obsolete header has been removed * The obsolete functions bdflush, create_module, get_kernel_syms, query_module and uselib are no longer available to newly linked binaries * Optimized string, wcsmbs and memory functions for IBM z13. * Newly linked programs that define a variable called signgam will no longer have it set by the lgamma, lgammaf and lgammal functions - Removed patches: * dont-remove-nodelete-flag.patch * openat64-readd-o-largefile.patch * mntent-blank-line.patch * opendir-o-directory-check.patch * strcoll-remove-strdiff-opt.patch * ld-pointer-guard.patch * tls-dtor-list-mangling.patch * powerpc-lock-elision-race.patch * prelink-elf-rtype-class.patch * vector-finite-math-aliases.patch * powerpc-elision-adapt-param.patch * catopen-unbound-alloca.patch * strftime-range-check.patch * hcreate-overflow-check.patch * errorcheck-mutex-no-elision.patch * refactor-nan-parsing.patch * send-dg-buffer-overflow.patch * isinf-cxx11-conflict.patch * ibm93x-redundant-shift-si.patch * iconv-reset-input-buffer.patch * tzset-tzname.patch * static-dlopen.patch- isinf-cxx11-conflict.patch: Fix isinf/isnan declaration conflict with C++11 (bsc#963700, BZ #19439)- tls-dtor-list-mangling.patch: Harden tls_dtor_list with pointer mangling (BZ #19018) - prelink-elf-rtype-class.patch: Keep only ELF_RTYPE_CLASS_{PLT|COPY} bits for prelink (BZ #19178) - vector-finite-math-aliases.patch: Better workaround for aliases of * _finite symbols in vector math library (BZ# 19058) - powerpc-elision-adapt-param.patch: powerpc: Fix usage of elision transient failure adapt param (BZ #19174) - catopen-unbound-alloca.patch: Fix unbound alloca in catopen (CVE-2015-8779, bsc#962739, BZ #17905) - strftime-range-check.patch: Add range check on time fields (CVE-2015-8776, bsc#962736, BZ #18985) - hcreate-overflow-check.patch: Handle overflow in hcreate (CVE-2015-8778, bsc#962737, BZ #18240) - errorcheck-mutex-no-elision.patch: Don't do lock elision on an error checking mutex (bsc#956716, BZ #17514) - refactor-nan-parsing.patch: Refactor strtod parsing of NaN payloads (CVE-2014-9761, bsc#962738, BZ #16962) - send-dg-buffer-overflow.patch: Fix getaddrinfo stack-based buffer overflow (CVE-2015-7547, bsc#961721, BZ #18665) - powerpc-lock-elision-race.patch: renamed from 0001-powerpc-Fix-a-race-condition-when-eliding-a-lock-20150730.patch- Add audit-devel and libcap-devel to BuildRequires, for use by nscd- reinitialize-dl_load_write_lock.patch: Reinitialize dl_load_write_lock on fork (bsc#958315, BZ #19282)- resolv-mem-leak.patch: Fix resource leak in resolver (bsc#955647, BZ #19257) - tzset-tzname.patch: Force rereading TZDEFRULES after it was used to set DST rules only (BZ #19253)- glibc-2.3.90-noversion.diff: use stat64- ld-pointer-guard.patch: Always enable pointer guard (CVE-2015-8777, bsc#950944, BZ #18928)- strcoll-remove-strdiff-opt.patch: Remove incorrect STRDIFF-based optimization (BZ #18589)- iconv-reset-input-buffer.patch: Fix iconv buffer handling with IGNORE error handler (BZ #18830)- new patch [BZ #18743] PowerPC: Fix a race condition when eliding a lock 0001-powerpc-Fix-a-race-condition-when-eliding-a-lock-20150730.patch- nss-files-long-lines-2.patch: Properly reread entry after failure in nss_files getent function (bsc#945779, BZ #18991)- fnmatch-collating-elements.patch: Fix fnmatch handling of collating elements (BZ #17396, BZ #16976)- opendir-o-directory-check.patch: Fix opendir inverted o_directory_works test - static-dlopen.patch: Static dlopen default library search path fix (bsc#937853)- mntent-blank-line.patch: Fix memory corruption w/blank lines- dont-remove-nodelete-flag.patch: Don't remove DF_1_NODELETE flag from all loaded objects on failed dlopen - openat64-readd-o-largefile.patch: Readd O_LARGEFILE flag for openat64- Update to glibc 2.22 release. * Cache information can be queried via sysconf() function on s390 * A buffer overflow in gethostbyname_r and related functions performing DNS requests has been fixed. (CVE-2015-1781) * The time zone file parser has been made more robust against crafted time zone files * A powerpc and powerpc64 optimization for TLS, similar to TLS descriptors for LD and GD on x86 and x86-64, has been implemented. * Character encoding and ctype tables were updated to Unicode 7.0.0 * Added vector math library named libmvec * A new fmemopen implementation has been added with the goal of POSIX compliance. * The header is deprecated, and will be removed in a future release. * bsc#905313 bsc#920338 bsc#927080 bsc#928723 bsc#931480 bsc#939211 bsc#940195 bsc#940332 bsc#944494 bsc#968787 - Patches from upstream removed * htm-tabort.patch * o-tmpfile.patch * memcpy-chk-non-SSE2.patch * pthread-mutexattr-gettype-kind.patch * powerpc-software-sqrt.patch * static-tls-dtv-limit.patch * threaded-trim-threshold.patch * resolv-nameserver-handling.patch * nss-separate-state-getXXent.patch * aarch64-sigstksz.patch * heap-top-corruption.patch * pthread-join-deadlock.patch- pthread-join-deadlock.patch: Use IE model for static variables in libc.so, libpthread.so and rtld (bsc#930015, BZ #18457)- glibc-nodate.patch: fix verification of timestamp- also filter out -fstack-protector-strong- getaddrinfo-ipv6-sanity.diff: Remove. It breaks services that start before IPv6 is up (bsc#931399) - glibc-2.3.locales.diff.bz2: Remove sh_YU locales, fix currency for en_BE.- Add /usr/include/gnu/lib-names-.*.h to baselibs - pthread-join-deadlock.patch: Don't require rtld lock to store static TLS offset in the DTV (bsc#930015, BZ #18457) - heap-top-corruption.patch: Do not corrupt the top of a threaded heap if top chunk is MINSIZE (BZ #18502)- threaded-trim-threshold.patch: Fix regression in threaded application malloc performance (bsc#915955, BZ #17195)- aarch64-sigstksz.patch: Increase MINSIGSTKSZ and SIGSTKSZ (BZ #16850)- powerpc-software-sqrt.patch: Fix powerpc software sqrt (BZ #17964, BZ [#17967]) - nss-separate-state-getXXent.patch: Separate internal state between getXXent and getXXbyYY NSS calls (CVE-2014-8121, bsc#918187, BZ #18007) - static-tls-dtv-limit.patch: Fix DTV race, assert, DTV_SURPLUS Static TLS limit, and nptl_db garbage (bsc#919678, BZ #17090, BZ #17620, BZ #17621, BZ #17628)- resolv-nameserver-handling.patch: Replace with simpler version with more compatibility- memcpy-chk-non-SSE2.patch: Fix __memcpy_chk on non-SSE2 CPUs (bsc#920084)- resolv-nameserver-handling.patch: Rewrite handling of nameserver configuration in resolver- htm-tabort.patch: Fix TABORT encoding for little endian- Update to glibc 2.21 release. * A new semaphore algorithm has been implemented in generic C code for all machines * Added support for TSX lock elision of pthread mutexes on powerpc32, powerpc64 and powerpc64le * Optimized strcpy, stpcpy, strchrnul and strrchr implementations for AArch64 * i386 memcpy functions optimized with SSE2 unaligned load/store * New locales: tu_IN, bh_IN, raj_IN, ce_RU * The obsolete sigvec function has been removed * CVE-2015-1472 CVE-2015-1473 CVE-2012-3406 CVE-2014-9402 CVE-2014-7817 bsc#864081 bsc#906371 bsc#909053 bsc#910599 bsc#916222 - Patches from upstream removed * ifunc-x86-slow-sse4.patch * pthread-mutex-trylock-elision.patch - o-tmpfile.patch: Fix value of O_TMPFILE for architectures with non-default O_DIRECTORY (BZ #17912)- Update to crypt_blowfish 1.3. * Add support for the $2b$ prefix. - ifunc-x86-slow-sse4.patch: Fix misdetected Slow_SSE4_2 cpu feature bit (BZ #17501)/bin/sh/bin/sh/bin/sh/bin/shunscdsheep20 1643274482 2.31-150300.9.12.12.31-150300.9.12.12.31-150300.9.12.1 0.48nscd.confnscdnscd.pidsocketnscd.servicetmpfiles.dnscd.confnscdrcnscdnscdgrouphostsnetgrouppasswdservices/etc//run//run/nscd//usr/lib/systemd/system//usr/lib//usr/lib/tmpfiles.d//usr/sbin//var/lib//var/lib/nscd/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:22553/SUSE_SLE-15-SP3_Update/2008ac17db825608b3b78f51563881ed-glibc.SUSE_SLE-15-SP3_Updatecpioxz5x86_64-suse-linux ASCII textdirectorycannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.9.12.1.x86_64/run/nscd/nscd.pid' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.9.12.1.x86_64/run/nscd/socket' (No such file or directory)ELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter /lib64/ld-linux-x86-64.so.2, BuildID[sha1]=48eb8dfdd3284a12974c50168513b5ec63b0df65, for GNU/Linux 3.2.0, strippedcannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.9.12.1.x86_64/var/lib/nscd/group' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.9.12.1.x86_64/var/lib/nscd/hosts' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.9.12.1.x86_64/var/lib/nscd/netgroup' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.9.12.1.x86_64/var/lib/nscd/passwd' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.9.12.1.x86_64/var/lib/nscd/services' (No such file or directory)RRRR RR RR RR RRRR RRRRR&rKOV+l xutf-816203708d289f4dabaab3f6a76ca67e6ebded565df210c3136c4db66bae4d6d6?p7zXZ !t/{] crv(vX0dt߾ o.* ATdAYޖꤝYגUgY{JCrtb/Z4 \Vd87t7}<6HE.MtkizqN%5328n|_lJ O s"C[w@&4>[H\K6/٪nv-BӥQIfCkK|~v_l$[T ރ;,ԪO؍OyDnxS ڞUqDAN $ nm` /έ̩q+4~\;n1FTєV!ŸiWUΆrAdĺ"3QPwn3CA \{qD){mȰ r5:HYkә}07 'dv8AD:g(? rȈ\[ GbX"R,RKG5r}H*pIxt\$\~.z6_J"໗8e8ogH磇|(avw Nhh^Rr?~/W0V&lUm]8 ]&c$\r'o1zg]bn$1[ |rGۺ\9Df0`\G->lYpXM1(< |1Zaμ)58Mv<8:kp)2{j!w}Di -Üx7ϕyAo,y2+mO ]u*qUİ:p ONL*s2nn@+/$NjJwEPGJff>VW{Hk۟rDF\<*Xe]%=Gkc]BepkgVmXbeH2&N+xaj hIf@yŀ<9R^;ԇxlӵ_(IY*B+9VBId\&6Iy"ZԚMy3]` OPM<X&Z~](W6"02V䍸R\#2$%Wk.7$rF0OWfz15EB>=Y 1*IQ넺ZC7kvG8(=F}cwE}}!loX*)ݙO1h!XeX0)ZM[p] Ǥ(JG<- 8ϛ`!ۿ H/GbI#T+r49 X_1uql |G'M=XH%"#d4WswZTYR(g\N^|s3@]\\wzm7peJ&xDL !Ȥ1hpu Mʲ2_VPX4 R 2f.@KX:RƧaPl,-|" ٓmCZδ[>':޾З\ƈߋI~8a,@9vtC&RAtX˨e/L.ACd]P/?kBV5>RRn+K -z.&6Tg?pi,0SyrRX[X?Jp7RKn*>|y6 {1IE67ށ䇂4:j՝E WPUCznv}TCu'j~'|sՋGHjHT{qo;.ҩnd" qDmO&'QHϿ +1MID鼘#| X bd;# d)כϪ7)}d>grDk$ậex-ydZ Hy!|"W@ '2)*~Iw%$bcH>* 4_"лAh\l-eWAסA.M<#x<ЙO["%Sk%J:= ޅdTq ϨUcp×-Н٦<53a. ]iۍ[;jHej*VM|ެ3'o%ryuQz{L?,3P?K|;'Cŕt)ڙfhꓽcǝ\v׍$>|&oŲck?ck ӱv\MOc0i9JPqg-X Ɛ8~yDaN6AnLOȸHZP[@҂CmtM W&NKNgz<7o8?PA9L<#ߊPj|Ee;ˎ#tc[mZrsp˶U}aJQWYlN9hL[GCNd;%`{-W'nmc3>7ۙЊz~,iRA 4Fdi>(Q&9z|yb}٫JX4Oh".#T/$Nh5^[ު6Ky.js -5 ۶ty$ -1.m:bԊSF$-]z32Mt( Jjݷ8f!Bo؇ K#3ãB[vqifyg=y93|9<ө2q-9O6 $7~AB &!7"|pg3 ߊcL]\N uym1^NǔMῴ"ʝ({n++5. 'O{ 2'޼lt7-'t# Bf5QBp(?e1m9p|sug7ҢaeE6 _4:3C4HXGG\?)[5*tDODPU=uԤً.L=MB>I1kdt~/'|'o7vyό:IT5b_|&KQjjp l'/P2b4A\fOZՅ/j|ٟF)7^%i0I HdK3 GYlIY^I(#R&q$YF7 _ďBYxG*;ڝkrg$fUkw~"׫[Q|C=Gq v>!'r`b%A+DZ#y<#Ƴ8Hb&'MCJnTEʭ!6 uMlo1& }cQ)]2V%f3ޔ'I]gbaҬؖ"6m}`IWIphr֛4H%|Jʳ :$ ׇ!^+FTÀο0HMPjKEk88$,Pot xe˭/,çi8[>6x?/MW?͸جW9-6~ay>ˢ0z尴eq86Ɠz ]חXclѪj'TP &A'e P|5ɪk$k;J=x@42)vVY_6Rv8ms#[tdvw%f%FT~oJ.6֓E?H4F^P'OR[Ll A 2b'8Yr~)5 Qc\SKfݫUt˪Mlu0/pi:&y7rDŦl1vc N,m dL$R ƼҼHhR9|`僉OlQJb8?h-: EXSK'yOػa'}p%eI'= jΏ5л<`J5Y݌ِjJj4U 5nt>]0ɶ585x%_$O{T'ayq OGePG_By^;RYb?ڧ? }3gQ) ^Rn2)@Mjj acHJ]{PCHE6ʈQVS#E 1%ARPϓ(v;xU: t[,1uV[5@9 _}D'i@"96v((L*{¤p1fhDAI$ޥ-[9$8/mX}9Gu\bH5Д)ҹvq!ш2p8AŌ].m h'D<"ͳUv@2ԧ].ѳ@J 8&h8֐"_|⪟1X!J Q+R?k2n&ngȱ3mN⩯Qdt#4FqNnHZXO ~,M`[}!ԝNml<݁3ɶ|]s=<к7i=zK٣!&<=rG ' l]NE{Ϛ/'=Yu]gm\eP ⑅7jf*֌Tfwo u0JE*2&ٓ6Nͥ#-5/?g45WQ'0LSU sIV |OUN(QApZ*)oTߍs'13/Q]735_D\JK gZTOdEiJac-z2yBn̍=<!9K` ~Fڋz-lp7W:fMJ>gõ-tuMyW>c|xEʾONLCAm?RQ>BLqt+vMRt TMsL@q5=Db+MfT ɀZ+uJZJVX#76of=1KrH΢ν(9< m G\N +r澕qG(zҲ|ֶPj,jZ[-Yg+тWNls@^/F Xt V/!pV;;4u% ?B-x` zYxb&>kgyR(LoT:u0;8P6qLmfGam;5iR.Rѹm +-A|]8TQa2ۅSq]l=SE-DԴ7d<-魔bd󪃕g%Ծ4BֿZUHhGƔ/Ơ 683]@̱"rqh#RÏ2 #, `+AO+*y;q39׍(DۄF NukxC`9D` ]˦hk_%6[jů빑ԋAt0)FgOu? #gpm'wgn[0bl!}i7#m0oWyZ#ŐPr Ɩ2N0Flj0Ӱۅk{ 8p *tI&Э. n{!/0Uznq#ݹb.\/w끁|5hyN7D_%1l635KMc ǭ/6՗}Ib֖|e23'Z7q4 GBK!$rfIWNv,g|[q@ĺJ#1Z]UmɠfsQuĦ8\ ޢzTU`pѴ[OefB=AG=@Et9.ͧeb}:Mp1*|I34[j1 !Daϼ>S/H~Yz"Y o)_0j:-]ejQZBP=ع &9?߿JXV԰"So*ĵ#eT3s trdV(Y9{$9+C[T wGby^o7g͊Op[%n;~`±P"cd-2^E0o$g~W;3V4@- _ВWӢ`TJqQ@&rܴ )>Y=3NP%@ZU^VR;~ftpǹ̬\ WXj!%9B=ߤs@"\_[Wɲ5Mѯx&Ζ)I浨ɞ TS?S:>f409 ?G?_г~pZ%%B*`4ӁY%%{>+sIK^֯#[D˱,eatWhVWW$okp@7_ZPt Wy5AWJՐNC:1' 5}SbU!c =yNҩ)sſ L7# Q[]%NWui;6}?۔V/awJ>\Wwj!YƲ/wFX7Lɪb{zJd+ 8ZM\39%~5N/_!'e-Å69,^*1Ն8JeM;u*]̚/^=lI\׿oT˵]L57mERwcXO-$LyW-X;L䙡/Qs)fеK.!|=h?O&ZTihMlɵ$gĊ+ ؖITQo^8qg6HB+Ze檁&3S䧁nY# ?Lh*U,f-=`\\|WfZBa=uj]ȵ'pA*U<5K-ne2,[  \t`lh2Y6_n]Ĝ.湈[7{"GK*fcG*Ջ,t94݂cE 㱶^f|f{֫z:tsD9bG狻]o5Q~;[1 { x|qŏ`w߂ Qg"%Um0~ww.~([ExYqbX(XqvnDU.rW@H.R9Vv'4"A^~GfJ&vpJW޿;n x#ږ]0f~xSWFЉ~+@FabTF *Rv\f7 -Y"gl`Oq>]5F5Cc#5HwP"VɾT_qRW q['b`7|Ң(!j7}+^CxSt1ukj>ggfZyqxp"$)$Tķ[8 k/i9c%+4B/0kW.3tpC55LBP2Ti 5S?H{3= Eϐ3Gm=3A#[] ASs o4P8#;=nB'Vl:PGWXCfs=܀P4A92&%=o#/-s(?gcQ~,&}gj}fft-~z7S3w˝vKp u}^!Sֆ])!oۏd]ZZ>_td9Εyz:LLҡB|DQ|"^XXX-f &1 M nn98`@0Bc-C4ZEȪODq]Bג􍳍sRn\.UQc>ʰRF?ZM]ºoȳr<%٬:^^ؚLiu"c_hW@f,~V`ى1-媪Y@p2\2^wЛEgØ(l t3CNӟOM= cǎ> _6ۉUT3=bӊjԢ"Xs ؠ$@79YOj>H= &Ć"c6e1<؍زa_׳n?Iz݅bE#i5#S:1_$s?P9ioݞfu ?,]rCOA5Pq < p/UVۤ1'O0Jmݗ߲b7g{InfuBX>7f!o-j'2X%!wS}Ǒ`C.~0Mf 'L|vG+|3=i8\a*r ȃr)tŇDWlBe]XV: rR+G89H"Fw70ouJ4tU<\nʺQ<>cw0ebi1w[9 n_A@,PpG r'eyG<5"NlMg}+٭g\B\egf0s^ŕ_F,2V5ayⶔnVFMi`Q1'@>me6;e;54`Ѻ$],;Z'qj>V\Ǟ!ʡ]:*7~a!$Q4 *j!U4x١rdE׏h\8,C2F(ZingCf},t!׵9~XKtڥRY1#e9؟2$"FZNƃt)KDa>"Ժ-Ht1Lg=,AX nR: lBruŴ.9Mim mPuhoXu8[}鄬TK/aqo^mfo2zVVTz@{F&sE'RYD~k)$묶ddPޑlAG{/Ek#f/ k].c%V3 r/8rzHX!ݵT(ryRB Q_Ud2gJgr[ :\,B/"j 6;H'񻧞d;!^ ["cu̾gZ'L_0aIwr3>@CKSBj/ehX<8:IGNp7hc‹*` *=QO\-:2u k[ڥ=/~ЫjDXDZK~ *Z<?+u)Z]N>C4_%y}? .J7Q=}\(Y&Mz>4"H!5{:Ey==83SpWt[ @ol wm`N&3\YKIa0P'31*}^Mp{'~Է<1Qa;P x} %*r,'|VjEa+貃G!XQYi9c| QOU 0b脈8.M8B9ϊHjkdtp ]?51m# .?C\V#\8.p*z ;IW+DdzpӣP= D|oiOS=N=g MeѰWc7 #7KRg}|Ir0Nɰ3&iBK߲YUMF?m;@T Y %On_ⁿ" [ڋFj^t%A{SU&7Ĵd'MlQSX8fe=&j:ix/m\|I;Le}$. `)(^+RSJk?q 89H\FNg8̞}jO_@I UE B} pĸgI< 룵1 .}=X\9%!YrZ= 3m5O{w"|{LW38M A\7Gŋ5&[yҖmtTh\Hďܗe!7] 9 ;Y g~i8It_QPr~@I2N^{?5@ndV߈բ=vps)`#g"fY)UQA3`!7ⵑоj3rkDa_QXP%?9&t.@-BВRd˶MrtV汫A'lr_a  uQY[a75(AVk%qB m]}gW$ƺ~ڊDv R:;w͓(]m%[ݏlAPUIȞ Z' >1!g'[E qe;G7E (BNм4Lf|2иtj璢˂Z;ze11{)%cMX y >'zqB/$zoQd&׍P.Ji`xMPNcLUi17=zj\F[%@i0Ax ma+K%SYpR!C=i cFGPp&EJLB+NK%glL!D$~-߯f TAݳ8X ~/U1=ozG&mz+=8n_ţ|2!2c߬@ K2KBQcɰyQZj (6>rta1ʼng~N.t?&ZtzoS|6ʡܼDYl'Q W٬Z"O82FSdd:4&el*Mj.ulA O6oy&R}UfCEcg!Ӛ) kgo_;߷ajy/li}bTbqY<-:+jrU#kP}4I3>Qs{7h^g\aR{s63 F|!^o/m&^2 0(",]`jN[|V57zrEHwbi Ed<+4V< G 14JslqEt}C!fgE!Dݴ,=UGw6H\ګj?k-q}5anYLv*})e%m<\Y G&(=kЙ=LА˕Fk񖼺]ZsVÒh*b}*J ='g[8^Ep25mubeLq ̆]4qIExq@+ZTqǯ &NTl+L*oA}xRhc h؜Z9@Cw/bJ%?>M-b%#l?y_ŹHmc8 9z,*Pe#J){.y0D2i/(1gu=iSK售WrT;8E ׋թ|GƹĺIDSUDwg nQy+,(}ɑ2emMƒL<bD0w ak`׬I`\2ĪÀ]FHR9`_%( >,,GcQ^c4lnI j " vXlL)$$v\;@>#ϦQZ?Y!,1c All%X|s}ɏk#/ϭ͂akz 4 [X"5},g%yPfcCVT=$kKkQmMi `[_9Wt3P:YȆEulk z<=rO(/;-IW3>W¹% D֊4*]aiGc쯮IJȝ>.$u j4~|MuH EX6J4cdn]!N"MmWN!|\|Dn}"7'J1uZFxtq>.yƅU(qo{TM@"Y RCi$]il+_6rqr@eV,'N(*auK.\YZȧͺ!fT7x0s@+_ Q'8 ~w+.T R!|$|j owgL\rJ٧[9Uy,%rzj{/3~I@%\*S5V  kE r&˄_ݠuD2c@7MڴتjEkSmp@tRIlptxiVTAaMJgˉ {I C9ґ+TPq,D.vSPUf 'T[럑KjI5@[KB;o(GOct@ &lqVhK+jXX+@?J{##tevzo)`i*B.:tlDħv5o2eFiGL|_U~iG]^"lUfg x5_y9?;Z41i9O?͘`j)AhĀX?9ul ~#Hr76.YIl6'J=@_B'XqEB߇$ߒH= قe~&`(dG·(-ү5g @]vWkQ{1g^Q.fzX ZlVGUV=jsOZ/"DؽLb551l%="~uy/:S.K2`x鈽pE"W$~8^Hv#b(]]0qOWDQ-qwYRjy(ZD3*DP/ _/!. 6Tyw1WgMV ѯXOSʸcjj鐒L0;Yc P[KВ;55digBҗ%jx8.*]Z;@U,sWV"#X~YCp1N71{Éh?p\1ԍ=ten-^>+)A Ot;^5ޭn®$/uldF1't|CtѤ&(Əb!,[{i h5&HV%T pX!0OMС>|Tn}5ۯ̋')`3?{d~ 7ߴC!D''ZQQ^ i4U6)N'A~ JH`**D W bm&ZO <=/^5l*b73l_"BfxdM@Φ,|4噬SjDdRxUCZ]<"*:'tOM}^sKž#hpRic. ƣ໐:7'Q'3HB>H]C,ő+XQc#s}8y[]_Җj֜rI=0*k8_)zx(6Y-xm3Cd.t.D ε s*'سP`K7 w3"d#LIϫ]ƱK{R_BT[ å3iҪU?>gk/&7n@%r Թ h$ø2 Kĥ3OW5U>i;I ҄ŁK¦i7Qf=ߣOC׹ 5bPUSY>mT#s"ѹ;w2$w⩌VxfNjT"p0TX8ciAѺY,(CMsVXO)4A1% Q'Bl"8z*vG\쮇%!g=SHRO)3ӏ 6H,=q< _ݗlpr¯t$sR.k`*˱s1`%aR{>Jƪc~cm\URc)ucZBI;jKⶫ3 ;S_Duq!*(ݸctM`CѬ}1eiqajǼvA(5nJgF%)M]`q$_c>L?Р3p*:9uܖh!0o7ۑ9zQ\Z.O\C}Jf6t|TKiC'@(%ds]Sq^GWk#7*CO6|[%$1U(@:$@+A]:TY:^ze3FM+*tDK @?|n;޻AA]`1u+em\*vĢ=?#;?yK;B"r7~(~+=8=ήX!u֣@"&Ĕ>>(ݎ"+ώa@r1W1_i=WChe4ӥaRe᫨D1獇NzKztqm/RK'Ytk }M̨} Am%'PH9 b<$Rd `%Djz9nG4n-I% vuT`#:_/)V,uxȶnљX%G6<G☤}FZ]ګDˬ c3{wcZ|]1]/P1@f7p@ިu%ħ0UkFgcH2'nsw-\kf}fi .lWI+6 |9]nwAy^@15Vl<:X\70VK0h,KP#g\̾Qp7illT?3~DN&% 30Fa6y:~e5`\i i6rw( Ɨ3Ұf|<̖xDER'*^Y52QV4Vxؓm`rm;x*4<(p](V4ik[&Јy@?~VNeHiX/\mq~J)u 1 i[jLR^,>wֆ A GNMYpּt]\= CUqq\#WhHsimQ5 H'l$h{|JTi]-xV/HcdXGN\,82ޣ;ј>WSg*ug*0;ʐI·h9}c+AZ]砃 7mcYHm0?\àBؤ1gQKeKWB#tT`}R2bX}<Rz֝,F*`[gt^̞,>44ZP VywG x#|:Œ(h<0ʭjU-+*glI%D$8sZezVnR:qNN2qn("2p%D!s |d1je_`Vd%L~](C"<,)4Ho*jz=q>@-/%G:oL2e*P]]TPQ>=~ݫ[n^o_'K|jiS)qjϖbꓛ{[9ʏیnZHέ ףq#͖rQCӾsJhcgoccSHʡ,90nSR'"ִJzH5S|#@}د)PtIl(8$ 2+ kPG 13/{jYC௟p5x? !)3V nd7E$QAglp'>4|]s Q3PIX s3AUiTgHd`q_:׈GDArXM,o4^;,mڬDC#q.`exhKj)-#֓ǃ3zq[D1ª!չdlq50tj)ny^CX1%) >n,&3F*PU4a=ۢ㝇D>WmDLL)CA/wqS)xKX6č1/Xuyg] i_ j 枇˿ N[r? +VH,cTvur|\cA541<t[[z~]h!L}!{EZ65Ƅ&)5.ɜP)\R ٰpŷN]qcՒGoOeB?>D< 4Em-9pe$};l_rqG@#TS//kz =HRO0"Teu";);2}]Wq4⽘ÁU? ’8Ƨ1 orCϱg^(*UudB:K] >x[Xq?a}vg[N"u2 ɺѼÏǛ5/_4lSQ&3ױo H}%Ns3H Uv q S#|WlWUgF6]&uhCK+S;6IY*"Rmz6Ctw ~.7ryDtC11$#XB#'|:Dsڳ2'\ƛP_OX/Yk(8@LЏO !$˯#}(AK!lY^5b(ɒ6P ~{+ґ{PK[Tܡ8EP\ri褢ǔv0M~ޕlW'3c'M;o1q\S 9B'Hc/TB}4j!ր? h>EZWHqY3ХڴY.)6f_Nes qyQ.~ b Z:p5;ߩm厭P0hcvU@}݀^nTY>OgW 42j%~oڞG5M+B+k !AtbGU5fl-`:cUj^ PDh$iTA j~ˆh%]bჅ}~E$pc0H0هށUIxy:Q\âRl0x د Qqnklw'ƪ ӛci_QsuM}f7Зmy-ݜw=3HP+mkɋr @ĵ tqamodj ]P I޲KU]\SF%bI<){$R"Չyxcc|(Il=q3 cG?٣0t=hpϩ6k0\8zO#-B!$eZdhSU&|ac]=bGX}0$6t1ž&E'>1JWΧrqF@0~jyeN$7Y%偪K1qT "  mݰQ x^NshoL% caKvD*͠ |-.3|.P^$4Er$o |@Jy ޥ,?4g~ 7d6~jQ Y RV> 9je2S0}<$ +Pq"Yt$%;ȶФm.b| 12)`/q0u$ZbW9Zv={6 XҘ}9X_(Ԍ 7i)n g!t?5RBdK<^ |v'ݏ4A `k# 1tƱ$9'6IV/훲z4D%u,#ֶ݆+N/ouȧz{,H[qG/hvY׆E2>a>}6{섚o¾޺,=Zpxp)ٹkf?.YTsHZJ{C}Hүl[fYSZ[aC"R23x/Ԧp-}rf2eGa2I63'ߡ3A;B$(B/vf ϊ< ddb& f[G⊙k 셒5P f '%IBܭ\Y5;1Q]iN8O }QjFd:A" s9˔Fj"nas9[+)ƴ焸)^.V+ [JHJYpՐ@+`/ӹґ2 V)YڨK&':~fj)Խy]P%ƛ]R+t ϑQk>\P}I^:Ts;MЯfB&Y] {ZxG   W Bc*!o^txwrWd;K4-|؊:5 {|]LY_#3((QM3kQ}1]#MuLaW*؂7># wF :7M3eӝo&m,싯>stV#< G~73GPi=JTA[̔޲ ^V>p2yɛ4&Җ ,s͑"& P!rSx Od,YLHY -#sܓ3g1vIr;0HJn($㳒6\4.o_[fY=:*ك%j+?+C=.]4qJ'`).o; ~EZfe.?dy4\ r+'ܪ{rSQ^I,°=̃o!|Ċ?`LDK?b5:Hþ75#DS2=d,ǡ)U"igk^P_p2=>j1G!zz-°d8x'qJpgaq32"e}PTљC5Y>8T8zۢYkn< f#-`:ٔ\ |uuB1db#uWMccy9,/F=6*'dCPRAI'D3qiFȾ|䋝Z-(7MK)"?|>%&-W7(P`.]c(O[0-;2bp MM,>.Ocd@kR`"<%7N]`R}<Ӟfp~/QEw1m x{ ?FUD1,KMB1 (TGY2Qḅmmm="C _9+-nRWj ͞H..+n)/7.cCb qQX-:^TȖ#tSHN8n$DU!5  xsMfŨaqWO.YW@>Z,؟ȭx/-}X&mLs}}?&2 wuꤘDrsٖTfX+ML]El,;r+9%sng7MKo ٧g@1)\nuZ,S}p*)-")z-0{E:KU:>mZ]_T^}>ua&L)mįLiPݒx/z"(O49ɑ -/%K0j))GIdQx.7#VL>rI`,+6y}w`%t5g,K!tkފ `O:=3}n*8;MH VG$ߍ2\)"d )3@sJD|%U- (UHa7:Jle>*Mh Â; ŅgHN&) D`dA_ECǶ{ Cf0;k"%EH j#z, Ë8 ̺Hi.FSȶO뚁JHkwh ol3l,/>پ]rNscj@F{ng1ĐH?onY2hXU.%VW]ΨFġ<@6dTKoESL_kOB#SƳ>Wku?DFUbcJ{{ۀh,xAHGbA@z:O9;G:ndjO]8)$?l ] LqijSf&(ir`4" @ V3PLg; <努9g=dYjTHQ˜XklNoRD}.ݤ)-Za FX鰌)P(*q0HڍY5dFs==C; Ui1'N'c`{m󫉘YwKԎȸr AF&ꋏ,}BSkYNJjITD6ZM?f9/q40y<$@T?ԧqXoh T nYzFϟ"(d` ̚:?5ȳLez|G$|h,"n/+ 4E~ezREጮ2?rw}YcI!J#2T'ڊ.x \I-!E]^"%Ja#>؝)Pھ@#$>”2@$ZFq@ر"~C<:CxpXT"\Ӛ.U&O 3%GK78oΐ,u@H)f 'PŽk&(5v1w/-v>3R|sWCB) w#_zMp[XuSƤ],7j@]o`/1s +UL6`M̶>oW3|,4oL mXiph x4x.1gT5I3J˥)<ԼR\mtxM\'WlOX2.PN7x6DEp N3B9!}iYtX"8GႢr_qD@7Sg)ꙗ5hB,(q}HR |czKy53@@XZm- 08}楤Ѯ Y ` _ix4*~ `"A\"`+qAY*г/bF}CYLhS+Hb"hfo \5gsoQk V3Wfz7[I|:zɼ.3df T=EdX.A[gra's^A;Fʄ6^8L#9CޥN)":N IƖRYU|vZ4J];tpM*kn:A6m`T]e/Iڜ&Oj? J jB ;mǚd`CJfC=n~pDŖ+V*ˆKI|m)[gX/-⛼a%6H7هH@|#Fӷ΄XWBW*rx'8Z Ωi=}Xj1WWl,~4QK!Qkk+p~r:rsufȺD";/o ڝCp8w7Ucv[6\6: ԯa|6mO/Úȟ*j>?\N5ݢ*l7T#@:/$7R7wC&5; g0` 5}}z0 npB=>`kUWq^ܒ-*7U?ߡ x>\^7ѿ+dM{V9WG)x:v/ ʙ ^;Me >ǫ}JD1_.PA(1}m&[|:vLUa?}mFoDH"ǭB[W0~a: R'-mhM~=#oǤF =e8`GТɜMCεsޔ(vSaM,Ir ;ykTVsc+z oax?vH|0|;z놮j)62HǝߋVaHXyu)q=]D`J}wX9ۢ,~iG/4܏iiKu8:fʕߞZNc-{POڦi>5ru$}$IMt)iMU|$bEE /_gOi,,s *Ji$.3{Y6Ä`&maHְ=huG\ ƣb.̘bYX]԰OB4̟IYw]Q+dKi?(ƴ9&Z0]81_1Pr]\<+RyV6c36r1wEh$\/x 5(E+(xq*"'Ci zy6KUzCB#h9&0:'#`]3/lޖYˀQn"q`u1 RފNqv=?$(L_6F^3#{vRn4.C9g9u&6pCky@5"uǗܥGҖFՉ᣾C4|}˻56+XЯ~Z&Dӆ|}sOe]9yR5_xtxs=j+8sTJ";2v@u[%;4yEl UCHJ ~RLK3•# kBLu+BN9?RCO[ \>{īY_JB=+Ԭ~8joznCԪpֵh sC-,C%-57TW^)ׯ㱼y'{/}q 8o uLM1S&$Nf&ﶒJɘ!ve 6yP{S͵WW> ǽp^^4w5@ckG!R=F]i{`P*}3.(aF*A >_qX 7 ~QȉvfZS>w4%)S.`1Y¸ j[Ǘ.hn(@ܛo*7:s,~6x4mqR)VMoaUp5#|)}O(aTammaG| < w)?Cs)$9[/y]]NX;6$Be5L#4*8TyvfvnG5,HVݛ\2mlNz;@4o6hB(ԾĄ6O01Pȡ`m2M0<N,O73,^4}U-nRf 6ܚKLBf0"Dx .Fm ״3^<yēXx >exFJ!2r#7?y*-9 Ai?ksDANIBW:RJ] QRVʃpL#{5bjY}QP cyʭOOz#2=BKF͠ܟe62 $ `Y˃DxE5b#XE.&ߠ[r=醈 :͡UI(D6| XQ뜄Hn{+.[f4]*6k- _kWI8&o\ Y#q|˲bd&mqLL։r*@3YtyZ7Hn=eV]h~@dd UkQ{֧ernVWEz<6 fy ̯(V%)(soRviC7(\??*Ä]&[ N3kVDvCYJCs˧N%|\aq!HDltlKƣ NN5⶷( W=G ylnkU t 3嚊[p x-{SjGC֠M,_3*1%GeH.`NG!~^y?[nR3ɧL?D届Mx{ch" ux{{j8sZNdz(]iIʿ!G)rKIT})vx!.j9Һ[]e +"zhc\q31tTnb|r{H-S4JN~IQƘ'&PGN/3@XS `u5Ɲ#lWMb+Wp?}EU7w!˱}b* B/K%0 7AËr@OdnQ&@WPg *eoTڏ Z':Wv+Wx[ O c D?r6W1v׾!zW?KHzNBN&Y4;7=Re%i%7 wÓHRM܆3~RBkn i hQ8mnBe72M_lYpv@†yN!^ ^ n)jtroih;dht|BpifX(#YӇM]2As,UҠдϭCmg%ױPEjEAXT/R;u\=Y;ֵHUq ű iфt(Ѥ nI3jDNp6u8 ù,bcXZc { 3K&9ۯ&q_GPѻDx ,Ti#%E] J4X";D @`im?=xӊDػwq\9 9ƪiܗ[ՕNdjW XlFąH/œhMdJ,3W6o*֫J)qӎ8*oC8hu vؔ 7!>o؉d)PQknv38#5.[)"^%@Q>%W.9!G ,h0 %#9DSz͓gG:zf2HGnz`y9٦{gfHF?o";.~H`h(_#wBXӴNW/s{MtB&l-H0ɋ\ x@F@a<^Φn,B 9.3Бϭ"n({]q/ h'a+n"xn\Aw$ҽ|*VkҘ+V,i~,.(J};8X/<[H(I{="ǣu}xzrc#L?Uoub {”NFk!GW_>Gw4 ?ltU;NK >鰤~бkLJ4bW~hMAW*Nۨ$A9W"2\@;Ϳ[yM>RaΪ}5{b8ɰ i<΢#:d ?`u^οq,^(фrp8)@ǿt5h[e;^^5fV1AaC'ǣN9("B<{^Jƛ'"R!%4Mߝu$mw $ځ? BYs$o~粜fK)Lj**]QЈjH^./hGMs/!:T(rY;E-ٌUg+!_xQCq1|b ajkz2{E7FG]qz/$:){Bh"WYγ߁Oπ@Pσ4O(%  Xz - %$S%f m@IqxlȁL,KТ}0st^Tl tH_H 뀖]O3rK'b#(|,79^z;Oi n29T'2LlA`˂s#opU[v&}0q0/']"oe>_b>JD6@@!V~21yX%j 1Bd޺Œt"͐Iީc6 Quu xD9+#-A>pe7@EcaȰv38=>v#/Ύ=|,4Հ{dܙM-!+F t"-_j$/}CwdQ^Yx`#h$]3.nbEV/&'?{4dKJM^+d(Z.q {}KaFՋ;\Eh࠮9t? "/G>kfD,w(gSA]U++0{:af'JS% >&6'!鏐P kVϴÀMT^@"'0m?>[\SUzT |2%bx~1P^>޽dWVő>>NFq9[]- u>`ŕ RmU YDi2JT٥ͅ~SsC$,BxK_$Uc>D~޼e,YF O*_ H !nR~iX{ #M7|7=|Ek[G_`U{3"c7DL]k;L>۟ߢU'~ .>oI3̈́clRvȡwBMjdn0o˰TJ1,E t(,[n !I!I.s|Ґ40}Bp[2g!pk ԁR"236laygTSaVikYmG ͻ.HAӬ3Tڗ3 >u'YOkJjv.*em_It>6߲Jσb!lJO*ҭ8|Vn$"vӐaAN1w? $u!g{"q`DbT#/A *Ua,BOkU]֗S.rM6;:3?峰;cÄ](WEн-4m}@" %ǀҹ֗['z©gV5on~=%Ol^qsi$.i|;T>)adX9di19y^PHS+@Lyf;?g/8q)ڀ* NJOˈ+J/;X,ZlA.z`-!`uiykEAp@k0(Tɏ  Tq*7Lg\$Y~Av9)eW0;k*4S ĕEou޺ ssð|%2M<"d殳_/@ .@ga]|%`ʍ]w]w֜v{؍/!W_r~RNכpUUa<$LPZ"gnߜ o˟? xMށ>+7i' -QzF̋y[6IM.ZAӛB ..ċmZfeav>YLJI9۠3ߕqxr71*;@0DAJ:=p|pҍ+"7l_ɒ} [gnq!>M;ԞQdw>$BCl㺭\\^ ynd laq 0.ʶh{\m$p69(zGz3C~ݑϘ}~!Oɴ%e|V]0_@icl=5ѯpZ3n*Y7aEњLhД*:͟ՔOt@{RyEz&\P/v,X@(_.ڹpHbEe1m MFC |g%->TVjzI1gZ/ ~ж<ަ4٣͒=MW25D.mBPf?6 QmY,zD(`?܅cep+ G|i_.ھl=1TpHZ7hq+u>^#\(z߸iޏÝ/3'{Bviw"\jKɧ5Aw)Mg#@CN?J ۫}prԋC5 љ0t D#$Qn5;%oYZ &8aD(PsB %R760Q,tU3yu[߄lCXPMzw-Tsb'`%D|Fl!h3Y=RX,qY"Rń-͕[ub)_LUAǔ^1M+A_2W5 **Ui tS hߪITQD4;1l H\&Q)ķ-=]L{'Ap'17QA%I܋Ljˀ-x>-w N rZgW U?'ʞcXQ's.Իv S3;E9~b zw䇲瞑Tg]AfE9\>w%K51ڜlv,BخFwA%4zk=VŮgnUҲ"#ݴF1)%qt cTS6vyT'J5?"\mFMI,l`9R57ފV(tQpZDh,"&A_#LPJWFCI&EKJ)1}#LHXTia [oڐYFPÏ:*k ra{k[V2]a?9ES"N[Ng #Sh>?ˁU ܾ顚Åh͋sač}"I>;1:O9W:)lD}' OWSf1r#VF= xƊ 7Ku&L;mˇe_z`IH>7R[Y=V9ȏr_.-f*Me ͺ)ءV#Zӕ} w%5ib$oGtT\0D =51@*. 6 ڟd>Yk04ClrSsۚ5kμxbO߬, ލE{m-Q"x͇`I; {YΛg=kպ*Z>_Aۧ=٣;GiauHfRTt ?*{ٻ;&xDB N44|mA:+sYaϤ4/km)lB21VjK gl W崯K4V<Ym n9X|[x/1}<$~n]3l5724uPIɨ0M޾f\^ MM,ҙ5BuU0h8n= |v1vv >4z2 B'mP; 'S6dAs7 U\2 ^Dfhp P /`4(.[YM6UߘF1j!@71᳞Zkb]HАR {%21ϲms%3!Wd 4qd_H*:AW~bѯr˄ %ĨW%t>G_K%΃>969{Vߵ{L_bg׏! $Y݋OfpY>XVu0gpݧ.YHp@D ;f. %f3+e["%$f&t8"¬ )SZ("HL\%%S*54s-\>{p.^C=%+}a,FQty-N` <5hteB?+<$x)1`G/°rhXSH\pie4X×&֣kR#6(XutyH͒qc~p8ZB!I A0 Pjdpl I+4q,zvAƙszWXkD )W9ZWGGG Kh0N_.|Y^c>(k'hn[#ަ_5;$ub/:7/oϿCn<ھul$rQ21W Q1,+jP="..QBBg'B?)~߃v'd1D;-YɁeX8 *O[* t*1MFu#~Ķu:ީV4EQ59`{hq p+d!ҁW//%/ɫDMb<\(`"u;B H7 lϘQmr"P7/L[RkϊM/5KF"nA&=Cɵ y7Ĺ1r?Eا{@iz7YgC2x}3yw5fluS4>qeg *_'#FlfxVQ즤<tbwYz/;9ty|ouN[bNn8/PPjL,`|ClPUA0Gas,ơ^14.-[X܀&ZNa!ؕRŨ@wc\u3fI?/ $nK/˝E +6qL뱢4A}md#c^~},j,v0dSj$6ϽJi='}]&m-.ĝ JO8! (D1wIEREk+)ܐğ%))=T>;6yƎmw@xYϝ*~ɥIk<v4n29~>cكLbeT Y="<·*?6-H%/v.3jcۺ.__2n{q.Qz*o p]k29{3mR6WtW#0g߲󤓱< ]N f5Ԁ[1t LtbO,~V:VP2&,+J scsY8ViFF'1 i{Xv9UׇZ#^/Wx[qnC֕*`9ۧ;)+q87Iz,%Nm #9Këk4/|.cgn|g:v=,{?{8}sWVdmK"e(bXХ pQyJ@_3Y:f= aO<{N3#^ GU.x%ps6=ΝE<ƀ꧱x ) 0o>Oa^37W%dnE6VOIp Xp!C/1d] bVyEv ?vldߦ쨈p679'5\{Ft\%^NxCqx*X%*J!;5| _U H! M .T)@o6bpnT>9 k1OOBoc颢1?K0k-!4Xo@ߌsK EaiXb=缳EoƯrܾ(b$]rܥ1&A$rg:usNN<4Y@ 5I ڈSځG7]EPy f\RFݳ6 ;)̄hvl8iڙ0OY8&[/@3YUԋΘ;2UŗFy,2V~^\KW0ۯc'+y[zАf Q8>]]6L=688%遂`3.5xI'G* EDZsH_K%]uhTXn|>tZAR7rY+-RCCwK,Kζ& Yjf.ot}:?q41 dgGck)"b0z)/a#V-D֩?2%k˫@{q'<(g8;,t 1ƀmȭ4.r_uJyUخn;zuÑKM((⸔]W50<B"a3n{|y0? 6b=&R#QPʼnLpAY c]dSFc^7!zaͬyZ}J(㥚ŏ ^)S /DӬQީiZ!*_/μ"埜ĜFiEA[?SO)lz]+P-6Z/0Q!}9=o8U3W5?UgLp+;G dÀ׬oӘgP͞9Nd50 kӜ05βl֗wJ|W.{RdN'Y`tRA/5S=2gGrw)Gs>!IчJ¨#K]u Jj$"|kn7ɔƂތE4= v4OQɣvtfA0`kz$)RscE[cN$L=]d>r"ޝ>a[f_Kh!= $t13{Ȕ]XXVjz-#%aÕɕ*p%e'6mf0sD]^c[k"RА j"n++FL.+g_4ȌoU"P >ݴMoƈ:ɝ'qPa& . LuJD7`* p="LOCJHnM{ĶL ޭ,!燙 ETEP厼dޣcZijm@%$m)m@mc\|IZ-.CvSc%i˳o'HF@0q{ׇw|y aJv/-o ɀ5?#eMUĚ鈗aG]h*4jƠhCo䊦dB`tI4%B>KX&22ԇöQu)9Zb=o\~&ч@}9|OgsSCL׭-׹nG;gAt?][ haRb I` HqfK?/~onZIݚ~ARgTuJЊ쒡s;?yO(8Υ;{^e4,ϰo(8.__DIu "c/=ƺO`bQN|bѩhcvӆBNnW!l2]iSQEo(y{{ek1 ȓ+>3qt>0Ty@lxULi g:P ~"/XD^vu>Ceȓ +w'gZh'_"~ BH5x9((]d-]l`"S&O{b< .ҹ'XHY)# Cٲk:HK4AX/oM—x`X66xGQ$Kx*G{Y%lPb徲t^*S\!Ii2WM5qaZbR@?fB;(Y kezႣg}2Pr.C5vMI! G)Ne1S !{LŜkIT%1=V=\{[rkѧ gyrCnaVm0x Q]VAڇ) <>;m]{6CdMv}<>N.ѯvGMyS|hJmmχ5{RYaCH4G:D i7~\o װ-):yu-y[pvzw<:X610ut q mKHЀnlnNpǛaex]Bbs+QC8orv`]hgDZ &7"(e#BP?REI`\FbZvwE֦+~V8هWpZn4,:&Q(w?FQ;Q vh#lP.N"2\-Y(h,|cPI8ECpoH3gv\19%0s# tfBIŸ sO9|t[\ :sg.$׷tL*|$<ޭp$<*TyTS 4ŭbaO;}(  ٙx]u׽7u֋*3i8Azj摸 |A1^@üj544L8oJR**@Fak3j ]WȾw)dP6@zTRG[SUrrF8_di_ _tc.s4yֈz@BUR ~mR*Gwk"{5\f H# $'8;%;~ف(J3I9}!#s$gs>ɲW޵`ctJ帅Pvb*AhM*|="799hد\Q%7<E0hƱ: >Wk$g7W_q [ nҁoS!Vcwv~Á0#Xixq?@CC;vʹ(lf*ҷO/=z_uo%sWNCL4m먂ų< ]IMQPqIɷtVꨱ9G ) U,ND"&}IT bCnh]*ޗ1; $ZP~XT%˪ >Y̴ k{Ze7S5(<SӾ)VAL Q`&6jB\]^ދD'J(s "PM(QXbZ7Hmʙç~Q%0m\]d̨<.|ǒjDI2,eid6#Qjyt$B7hh^xe eq?`L&7+n^-= Ԣ/N~F%># xUA[H2Gۛ5gQ+`߫ҢN2u((]hZřtSiDH!Ꞌ_uv+wFPu6ol CpV (agaO ڊXNVNu 6ƥfƃQ"Mɼ`afzj{יVaM9aWiE?wI3Vu\d}>Nդ"ѵN(D\CQ0Z҉+K8/Aϑz5dat/͌;'I;d48w2iR`B:ikiE W3!ubXⳉYFTcb. -v8f4,P%>|@M.áA ar.BNouz8hu/UHr3YY- izQ'eHOAq%(կOgOv z9;b9N>v lV|C`onπ=$/1s.Nρ ;wHi'UP8b]i(,1Q{Fi (rYN m`!@Y$=OʆYf NB. @`cgu2w(i MLVbB cJǫ!^Q8 0 hF !Njj y'*.G 2;pY׃Z >xR,exXh3hbV*jP-Hh-{y w˚"}\ݦ}A)2 !zasZƧJ'PhqwsjvK >$xtX~a ]x lJzuDDiHd`7=@DUʞn죤5;ozƴxp^S5 {( A)Yw y5OuRBT]VO#)CqQEϧ0JNd|NTOUyhPK63ouW Z' J#nC/A @g0y'E صK+y2!T55#ϲ~]G"aNL&HC#YMB0 |BuDяSʪ djHR3ڱ7 Ӭ)zi'CGTKk&|$8IO^tg YriT TF!i}Z*0Kmv/BP3ַS4޲JNLJ?D:9<=)n5 A n֩|'G$*`3(F`Vl0W 􅹡2! a<Y8͟!RzY w=#0ZfU+B7uL1 Se}|mtJ A׋i~B7Zּ=:Φ? 3Dr,(ƘJ}V9ftm|u?KBBVk)I]tVJ]u\̲e,_N?At0i=jdQ8Ki%#_c홻[Xpk }c?OS׎4g$1è]7N|62Q-:E![Ū:w)5yZG~_!+jIЧ56gpxB(o'fH1ӂa' Ⴉ.^Em3{C}%^H%Dy'¦rK 4ثLPMDׅe%_h.cY'+' T(FU~Ƃk 뺾Jb7(3xQ'5D͟^uFЭ  $;u'P N. Ly* km⩨6/6*WQPRL:c7x`,3;RVR/7, aY}5 gQ5#&xƅP 酤7ɿW uFhhqiTh;&Rc zMu#[I$< $RdZ\*gKWixk NE/c [=YVj6-Y+3u`JzB"/؞"fos0)o GÕc :ࣘRA0,u>YV26ׯsx$eC$9%hh7ũPㅥ ʒ޾AqOhDذ, ˸"lF߾@\]N4 ,R2ߢ{bkd'3Dow [ʷsh̉ xLN9^95 D h3`!, ^O:32meK c;tCyA^9^FoA9ZyP?Č Ƿ􋞉(*! 7i0Icas1D LF>i#UΡ#V9-ryŴ E:QKRuYR+nUT,*S/ǖ0B7L ʳۨ '{'x&=URy1Sl$# P.uueKL~al FH?FÌ.x}~7vf먃ѵV^]<* WAsEHzi4Bm7eQiGGiF7R~ nF$U I [iRvl%QW><%\+NF&(V`I$~yKF̴T"cS{R &}΂kU%e.cagOG*g@O$~+ӕH*Ї2Qx#}U֪k{;lX%.>.eQظ\z<Dc\#Ӗij qVSBQ@8/X`$[I GQHY#=J~(xn45,fM"CS$d@DN!b ؓ(fW.ͺy|.~E5էR%?'1Wf+Hc//8]?_D{}!yx;+-M=YTҚaisatw*"|_u/hU =*a9ԃws{y8-ˆ&?RmD?9V0oL`t2EEq`"p*5<򱿮YgAlk:o) Hg$l]{ܿ6bP!XG Jr ~tac$ZpkGW2C \Ig`Q)9bu*8(|o!j15ڕg|[h9}d͡F P?0Mvuf-%(6ΥmE4b.& PO'+5;K,Wǒ졦M{,k =U §uMNO!C4ov~z`GhGww~RiCt HA@B~zS-H*;_XˑeO=236OW6b},Ky@ IMPY|lsWZHFΰ hlH rA<$/]B%& %=HB{$]!3I( Թs'm%F4ʃ'g}_/UܴSFEè:!Vx,/嫛X@kY6MԲ4%,O.WmUo92j*@*p-;?[%WGāO1@_\)O/han=SA0őBP mo?4F~\BE}( ߔ\J{),5joݣrZm|.* A"g_vjT d(d/N -{ef7cL4߄{Mpгa^7I/m3S6H%(7#NFWa=mbヘik=Y_eZJOye\ Sn Ov8mSÕw?-f e+h5fk=*~)v"Ȁ%z;վיOсH|Zec7 ~7J_ ޳ 8M4FI!Eg1MiD*wjL&~9cɭ5֞)jm2@6zMyM8Ma%r@qy]ecq&lydj44u6Idkϓ,9V̷zr#UM&V+6P81r<"CՐI|*w/ حY3Dd(=gdbV_e#j*+_c@2=AtCsM߄Z 7fܢ]S{U[#l n䉾`rEY=p\CP>Db0 [{~JAˮYs vpo?|PGl2giϐT̛ax:g ;iuNj$IaX+}?99O"T0<GޯϔRGl_z=2U$ғOtlN.Ǯ 2$*,[l"W<짪k/ٌƂlF_MIC~ wc~ߕ:5ټ̔8щ,aW}>z`!C:^v𬛄 6@ rm%O_%elm}FjQt3Z6NXj{HT4t"?,F Гewà +] N>-O:p#wz=:rcT6v: V|6Zl5;I֓ӏJ_voxg@%@R  t[@,m, -|`)%v.UK4XZ$X\l݃(⹼ o.G.{佐b@ߗx<$Pe)aѴ"b1iomA0͆.!`ɏ"Uoj={, P},ak.$±o@D'\O@!d=qzBV *!Z'+4Z=}Գ+p@ZJ$91' OD QeA8z] kd*{Wo/H}vwDQtFQ"`vG7.{qzIr vƔ`Gif/I><wf 0 2 };,w_kZvɂ A~6@WR]8yiCz;%oW-$;TC` gphc%pñh:Xf߽vn$h-l _'Ωw-"_}ָ[t}Mkt$ɼ(mAkB3./5I.C=§CC˙~OLH4m}zvH=* V Kϵ`JIBǂQ^:_g Iɀ<3Qp}EKlrokTLc|c_,f/МX9ց| t5{kZa۰.W"}i0 9&',BI(ɨ- /v55DlA6w%=jpůDLXhl:d  _IPGV͖z|*ɧ#5~϶F-ô[CDsDG  $,J1:\_ZJ^gɕ x0T !71ƦbpXWKeGT(A勵ʤq_g;#PsYuM|^6Z+&T%dWenӼ~xjb5C>QO?@xd g5׎7Y>csG\Q7QZ <IC]َey\@HeAKi&[@ټŘu%Bi xv։8MM6EAxF86ɾT0ov!qr7\@c\*ؾTP&f3RyWzZj qy2F_u짺L U\gNJU p˔jͯp3OK“60'_haCuTX^ѫ ùo h zzÕz2 W&A"bԇtGhӖG Ĵg9?7libxx9MQCּΥ6gF6 RCOZ݄#Ճ4R7κ&%^6v|a^v(r5h:O 'H}x{TI"Fzql,g)YH9=.f^9dEU@аA"ҙ 7|cǥCcҰt)['ܧ{IYx~ hfD`&Wu6ۘxe\:v Eܩ,iv{D+^sp95,xy۴5M]&)4<_8~kYvKr栱jbIـ,L }8B]r}< E$5i l+ݔNoFK0D97yI/hcQVR0Q|$0 ""h ؁vJs5h_  Ƴk0!~050'.#4$l4m&_cNd*wkp:o)&AT\ T zS0\*jB'j_nC>;y: xs1hFtƻ+[齦(arpO41JyJV.x1;\D#hԯ䰄a!G;oc`=Ru[A +34Xq;4KZ##&IU o7!1ЙfI[ [+`0 ]]q3ʮKg7yI. ;KB Q鷦NkZn%i|2tmd\ȻyYgl-TZ~J/RnE@x,EцJ%4!}1/adrL ^̇VLqrU[}ZF˗? bb*|So᭓1/wv0n \ߍF\ZKWnːB>򟃁[UY2iNDB nhsR & 196[8E n7>+6فi4ß @|߱(o{( 4 ڔkc)wUJKn&\P,nA %#~c$ CDo5دVHrck6_}SU&H+ SD?8[D$f c".O@j_f +7ME0777-S6L zhG$ MxKoϩ{tZK HTcK귨n;ԺRv9!JCO2gkHL&u#GQ`pؠ+}]CîMP^-X$ cAC)"^&g8'9[(q~@;1&:e/T) fz @Ɛ{_G>{5/恝X8\PЌ@NYv6he~G_NZN2bZb mG <7[ϐ{EհLɡ\}ux|?6È Wj-*Rfqƥ5fS23I ;7$KmY\} n뿒wa1 2)0YM&E7gl 6-a!ŒǻJ;X[S MHtno#\| (bߗ,, bsIT^֪эc;=kޱq;ecr c)""ccW%}YGWؿh+g6ԮB5u^ l Ȗ!(J%^q("Do ϑB}<l~`P hwp1Ep< |@'&0Z b樒/sk+]o6;1QCHrX"lYYsz"s.#ݍoyAX+Dq(-W$2gW,YEwv]__O9~2,k_'iUhi )|}>_.0d;Gۦz,D-#$L{R_9_Զ0_Ԃp퍧ٶ]1ŵ'ƕc" ElW)WX < W@\f0S~.{bmR):` ް3l|/-w3dfH&eV%v_ݛ8M^4g@A"Q̘xNϘ|?{~m+_<9E68D$|8︈#bDwT;쑓G1MoKέ mwYAH f#bngm`iP~C1X ]m,$\DIՃΨrp2 ҫ½:jE V/c3zޠ a -K$f A`(΍z}X8Df*3:켳RlG?MR@k"Տ\O\~M \m $jk!@ؓkZٷb{\IOϞw┲ Ntbe)Dx P8SeCe*h%Oe2.76"G@iavCUo1>4Hs/2kQ \<8]$țB'ӃH-kgUmP~3; F"$q&e?3G?y@' #3B/F>.(k\ 'k#iJ6j^ -pLL`iMȜKןhΡV#xOBȇLxUmoXnE3[7 VDy w\/k/7-s PUL!fq40MXG%Yh/O~jpf n{yUӓ}JiFJdFqdX|#iPݣ"cl:KW^۔i,$B}`^-p? n" B͉%)h+][ |\0_,P!7Zd/")fm5xo;ljeUj` }+(5$(UD` T"zHt :Y_ YZ