nscd-2.31-150300.58.1 >  A dAp9|c@YWڮ~[jlBIiXYP[gv ؽ{眇|Bu$hDBl,>DTrGxU/]W7SW&Z[Wc(Rl]~}hƆC;D G#e]=t3RQ]!3@3A.5pe8#zхVתa_,Y,jUr1X#'ݿS}ffd1982c9f02a1d3b7f8ab2caba1f25e9a483c2897e55cb7ece8b7f43b8ca2d6c1c3f1c1fa66736cc2054ef59416d0b583d3d5dbxdAp9|%ǛWYifyW1>/JZk } 6/s̹љ9_  %QKf*\|NB猯/h!\pb:CU`)3` vprg#1,[G4.~6R(DA,PыP"C[c$LPi¥@)>+$eĽ'dj}ѦH tnNYć}1ƙx {Z+SlBT+r!>pI`?Pd   4  GMU" D A    H W tFh<(68@9: =I>Q?Y@aBiFoG܈HIXY ZT[X\`]ݜ^ bކc/d߯eߴf߷l߹uv wTxy z LCnscd2.31150300.58.1Name Service Caching DaemonNscd caches name service lookups and can dramatically improve performance with NIS, NIS+, and LDAP.d h01-armsrv3SUSE Linux Enterprise 15SUSE LLC GPL-2.0-or-laterhttps://www.suse.com/System/Daemonshttp://www.gnu.org/software/libc/libc.htmllinuxaarch64getent group nscd >/dev/null || /usr/sbin/groupadd -r nscd getent passwd nscd >/dev/null || /usr/sbin/useradd -r -g nscd -c "User for nscd" -s /sbin/nologin -d /run/nscd nscd if [ -x /usr/bin/systemctl ]; then test -n "$FIRST_ARG" || FIRST_ARG="$1" [ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || : for service in nscd.service ; do sysv_service=${service%.*} if [ ! -e /usr/lib/systemd/system/$service ] && [ ! -e /etc/init.d/$sysv_service ]; then mkdir -p /run/systemd/rpm/needs-preset touch /run/systemd/rpm/needs-preset/$service elif [ -e /etc/init.d/$sysv_service ] && [ ! -e /var/lib/systemd/migrated/$sysv_service ]; then /usr/sbin/systemd-sysv-convert --save $sysv_service || : mkdir -p /run/systemd/rpm/needs-sysv-convert touch /run/systemd/rpm/needs-sysv-convert/$service fi done fi if [ -x /usr/bin/systemctl ]; then test -n "$FIRST_ARG" || FIRST_ARG="$1" [ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || : if [ "$YAST_IS_RUNNING" != "instsys" ]; then /usr/bin/systemctl daemon-reload || : fi for service in nscd.service ; do sysv_service=${service%.*} if [ -e /run/systemd/rpm/needs-preset/$service ]; then /usr/bin/systemctl preset $service || : rm "/run/systemd/rpm/needs-preset/$service" || : elif [ -e /run/systemd/rpm/needs-sysv-convert/$service ]; then /usr/sbin/systemd-sysv-convert --apply $sysv_service || : rm "/run/systemd/rpm/needs-sysv-convert/$service" || : touch /var/lib/systemd/migrated/$sysv_service || : fi done fi [ -z "${TRANSACTIONAL_UPDATE}" -a -x /usr/bin/systemd-tmpfiles ] && /usr/bin/systemd-tmpfiles --create /usr/lib/tmpfiles.d/nscd.conf || : # Previously we had nscd.socket, remove it test -x /usr/bin/systemctl && /usr/bin/systemctl stop nscd.socket 2>/dev/null || : test -x /usr/bin/systemctl && /usr/bin/systemctl disable nscd.socket 2>/dev/null || : # Hard removal in case the above did not work rm -f /etc/systemd/system/sockets.target.wants/nscd.socket exit 0 test -n "$FIRST_ARG" || FIRST_ARG="$1" if [ "$FIRST_ARG" -eq 0 -a -x /usr/bin/systemctl ]; then # Package removal, not upgrade /usr/bin/systemctl --no-reload disable nscd.service || : ( test "$YAST_IS_RUNNING" = instsys && exit 0 test -f /etc/sysconfig/services -a \ -z "$DISABLE_STOP_ON_REMOVAL" && . /etc/sysconfig/services test "$DISABLE_STOP_ON_REMOVAL" = yes -o \ "$DISABLE_STOP_ON_REMOVAL" = 1 && exit 0 /usr/bin/systemctl stop nscd.service ) || : fi test -n "$FIRST_ARG" || FIRST_ARG="$1" if [ $1 -eq 0 ]; then # Package removal for service in nscd.service ; do sysv_service="${service%.*}" rm -f "/var/lib/systemd/migrated/$sysv_service" || : done fi if [ -x /usr/bin/systemctl ]; then /usr/bin/systemctl daemon-reload || : fi if [ "$FIRST_ARG" -ge 1 ]; then # Package upgrade, not uninstall if [ -x /usr/bin/systemctl ]; then ( test "$YAST_IS_RUNNING" = instsys && exit 0 test -f /etc/sysconfig/services -a \ -z "$DISABLE_RESTART_ON_UPDATE" && . /etc/sysconfig/services test "$DISABLE_RESTART_ON_UPDATE" = yes -o \ "$DISABLE_RESTART_ON_UPDATE" = 1 && exit 0 /usr/bin/systemctl try-restart nscd.service ) || : fi fi exit 0  A큤A큤A큀ddddddddddddddde2cdfafd373d24fab07018d0e95dd49510ea6c992b7be2b0611ab23bbc2750b579fe74962fbce2fa9b2a4b92f693b2fd42cbc2ed331fae268de7104879a72df879c9cec5dd2414dcb76d11e75903aa6fd9b7785c897cb9f853edcb140a71b779ebfed00a99a17bd607bd7091654d42eb961fb985224c3be5e6efcfe3738189b3/sbin/service@YYYYYYYrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootglibc-2.31-150300.58.1.src.rpmconfig(nscd)glibc:/usr/sbin/nscdnscdnscd(aarch-64) @@@@@@@@@    /bin/sh/bin/sh/bin/sh/bin/shconfig(nscd)glibcld-linux-aarch64.so.1()(64bit)ld-linux-aarch64.so.1(GLIBC_2.17)(64bit)libaudit.so.1()(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.17)(64bit)libcap.so.2()(64bit)libpthread.so.0()(64bit)libpthread.so.0(GLIBC_2.17)(64bit)libselinux.so.1()(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)shadowsystemdsystemdsystemdsystemd2.31-150300.58.12.313.0.4-14.6.0-14.0-15.2-14.14.3ddgd!d dq@dtd%yddccU@ccob@b@b֜b@bb no longer includes inline versions of any string functions, as this kind of optimization is better done by the compiler * The nonstandard header has been removed * The obsolete header has been removed * The obsolete signal constant SIGUNUSED is no longer defined by * The obsolete function cfree has been removed * The stack_t type no longer has the name struct sigaltstack * The ucontext_t type no longer has the name struct ucontext * On S/390 GNU/Linux, the constants defined by have been synced with the kernel * Linux kernel 3.2 or later is required at runtime, on all architectures supported by that kernel * The DNS stub resolver limits the advertised UDP buffer size to 1200 bytes, to avoid fragmentation-based spoofing attacks (CVE-2017-12132) * LD_LIBRARY_PATH is now ignored in binaries running in privileged AT_SECURE mode to guard against local privilege escalation attacks (CVE-2017-1000366) * Avoid printing a backtrace from the __stack_chk_fail function since it is called on a corrupt stack and a backtrace is unreliable on a corrupt stack (CVE-2010-3192) * A use-after-free vulnerability in clntudp_call in the Sun RPC system has been fixed (CVE-2017-12133) * fate#322258, fate#321513, fate#322453 - fts-symbol-redirect.patch, glibc-resolv-reload.diff, glibc-2.2-sunrpc.diff, i686-memchr-sse.patch, ld-hwcap-mask-suid.patch, ld-library-path-suid.patch, sunrpc-use-after-free.patch, test-math-vector-sincos-aliasing.patch, tunables-bigendian.patch: Removed- Fix RPM group- s390-elision-enable-envvar.patch: enable TLE only if GLIBC_ELISION_ENABLE=yes is defined (fate#322271)- ld-hwcap-mask-suid.patch: Ignore and remove LD_HWCAP_MASK for AT_SECURE programs (BZ #21209) - ld-library-path-suid.patch: Completely ignore LD_LIBRARY_PATH for AT_SECURE=1 programs (CVE-2017-1000366, bsc#1039357, BZ #21624)- Remove glibc-cpusetsize.diff, no longer useful- fts-symbol-redirect.patch: Fix symbol redirect for fts_set (bsc#1041123, BZ #21289)- test-math-vector-sincos-aliasing.patch: Fix test-math-vector-sincos.h aliasing- add-locales.patch: renamed from glibc-2.3.locales.diff.bz2, drop en_BE locales (bsc#1039502)- Remove glibc-testsuite.patch, no longer relevant- Use multibuild feature - Remove obsolete check-build.sh - glibc.rpmlintrc: remove obsolete entries - Use %tmpfiles_create in nscd postin- i686-memchr-sse.patch: Fix i686 memchr overflow calculation (bsc#1031021, BZ #21182) - sunrpc-use-after-free.patch: Avoid use-after-free read access in clntudp_call (BZ #21115) - Build testsuite with gdb and python-pexpect to enable more tests- tunables-bigendian.patch: Fix getting tunable values on big-endian (BZ [#21109])- Update to glibc 2.25 * The feature test macro __STDC_WANT_LIB_EXT2__, from ISO/IEC TR 24731-2:2010, is supported to enable declarations of functions from that TR. * The feature test macro __STDC_WANT_IEC_60559_BFP_EXT__, from ISO/IEC TS 18661-1:2014, is supported to enable declarations of functions and macros from that TS. * The feature test macro __STDC_WANT_IEC_60559_FUNCS_EXT__, from ISO/IEC TS 18661-4:2015, is supported to enable declarations of functions and macros from that TS. * The nonstandard feature selection macros _REENTRANT and _THREAD_SAFE are now treated as compatibility synonyms for _POSIX_C_SOURCE=199506L. * The inclusion of by is deprecated. * New features from TS 18661-1:2014 are added to libm: the fesetexcept, fetestexceptflag, fegetmode and fesetmode functions, the femode_t type and the FE_DFL_MODE and FE_SNANS_ALWAYS_SIGNAL macros. * Integer width macros from TS 18661-1:2014 are added to : CHAR_WIDTH, SCHAR_WIDTH, UCHAR_WIDTH, SHRT_WIDTH, USHRT_WIDTH, INT_WIDTH, UINT_WIDTH, LONG_WIDTH, ULONG_WIDTH, LLONG_WIDTH, ULLONG_WIDTH; and to : INT8_WIDTH, UINT8_WIDTH, INT16_WIDTH, UINT16_WIDTH, INT32_WIDTH, UINT32_WIDTH, INT64_WIDTH, UINT64_WIDTH, INT_LEAST8_WIDTH, UINT_LEAST8_WIDTH, INT_LEAST16_WIDTH, UINT_LEAST16_WIDTH, INT_LEAST32_WIDTH, UINT_LEAST32_WIDTH, INT_LEAST64_WIDTH, UINT_LEAST64_WIDTH, INT_FAST8_WIDTH, UINT_FAST8_WIDTH, INT_FAST16_WIDTH, UINT_FAST16_WIDTH, INT_FAST32_WIDTH, UINT_FAST32_WIDTH, INT_FAST64_WIDTH, UINT_FAST64_WIDTH, INTPTR_WIDTH, UINTPTR_WIDTH, INTMAX_WIDTH, UINTMAX_WIDTH, PTRDIFF_WIDTH, SIG_ATOMIC_WIDTH, SIZE_WIDTH, WCHAR_WIDTH, WINT_WIDTH. * New features are added from TS 18661-1:2014: - Signaling NaN macros: SNANF, SNAN, SNANL. - Nearest integer functions: roundeven, roundevenf, roundevenl, fromfp, fromfpf, fromfpl, ufromfp, ufromfpf, ufromfpl, fromfpx, fromfpxf, fromfpxl, ufromfpx, ufromfpxf, ufromfpxl. - llogb functions: the llogb, llogbf and llogbl functions, and the FP_LLOGB0 and FP_LLOGBNAN macros. - Max-min magnitude functions: fmaxmag, fmaxmagf, fmaxmagl, fminmag, fminmagf, fminmagl. - Comparison macros: iseqsig. - Classification macros: iscanonical, issubnormal, iszero. - Total order functions: totalorder, totalorderf, totalorderl, totalordermag, totalordermagf, totalordermagl. - Canonicalize functions: canonicalize, canonicalizef, canonicalizel. - NaN functions: getpayload, getpayloadf, getpayloadl, setpayload, setpayloadf, setpayloadl, setpayloadsig, setpayloadsigf, setpayloadsigl. * The functions strfromd, strfromf, and strfroml, from ISO/IEC TS 18661-1:2014, are added to libc. * Most of glibc can now be built with the stack smashing protector enabled. * The function explicit_bzero, from OpenBSD, has been added to libc. * On ColdFire, MicroBlaze, Nios II and SH3, the float_t type is now defined to float instead of double. * On x86_64, when compiling with -mfpmath=387 or -mfpmath=sse+387, the float_t and double_t types are now defined to long double instead of float and double. * The getentropy and getrandom functions, and the header file have been added. * The buffer size for byte-oriented stdio streams is now limited to 8192 bytes by default. * The header now includes the header. * The malloc_get_state and malloc_set_state functions have been removed. * The “ip6-dotint” and “no-ip6-dotint” resolver options, and the corresponding RES_NOIP6DOTINT flag from have been removed. * The "ip6-bytestring" resolver option and the corresponding RES_USEBSTRING flag from have been removed. * The flags RES_AAONLY, RES_PRIMARY, RES_NOCHECKNAME, RES_KEEPTSIG, RES_BLAST defined in the header file have been deprecated. * The "inet6" option in /etc/resolv.conf and the RES_USE_INET6 flag for _res.flags are deprecated. * DNSSEC-related declarations and definitions have been removed from the header file, and libresolv will no longer attempt to decode the data part of DNSSEC record types. * The resource record type classification macros ns_t_qt_p, ns_t_mrr_p, ns_t_rr_p, ns_t_udp_p, ns_t_xfr_p have been removed from the header file because the distinction between RR types and meta-RR types is not officially standardized, subject to revision, and thus not suitable for encoding in a macro. * The types res_sendhookact, res_send_qhook, re_send_rhook, and the qhook and rhook members of the res_state type in have been removed. * For multi-arch support it is recommended to use a GCC which has been built with support for GNU indirect functions. * GDB pretty printers have been added for mutex and condition variable structures in POSIX Threads. * Tunables feature added to allow tweaking of the runtime for an application program. * A new version of condition variables functions have been implemented in the NPTL implementation of POSIX Threads to provide stronger ordering guarantees. * A new version of pthread_rwlock functions have been implemented to use a more scalable algorithm primarily through not using a critical section anymore to make state changes. * On ARM EABI (32-bit), generating a backtrace for execution contexts which have been created with makecontext could fail to terminate due to a missing .cantunwind annotation. (CVE-2016-6323) * The DNS stub resolver functions would crash due to a NULL pointer dereference when processing a query with a valid DNS question type which was used internally in the implementation. (CVE-2015-5180) - Enable stack protector if part of %optflags - startcontext-cantunwind.patch: Removed - cpuid-assertion.patch: Removed- cpuid-assertion.patch: Don't assert on older Intel CPUs (BZ #20647)- glibc-2.3.3-nscd-db-path.diff: Move persistent nscd databases to /var/lib/nscd - glibc-2.3.90-langpackdir.diff: simplify- Update to glibc 2.24 * The minimum Linux kernel version that this version of the GNU C Library can be used with is 3.2 * The pap_AN locale has been deleted * The readdir_r and readdir64_r functions have been deprecated * The type `union wait' has been removed * A new NSS action is added to facilitate large distributed system administration * The deprecated __malloc_initialize_hook variable has been removed from the API * The long unused localedef --old-style option has been removed * nextupl, nextup, nextupf, nextdownl, nextdown and nextdownf are added to libm * An unnecessary stack copy in _nss_dns_getnetbyname_r was removed (CVE-2016-3075) * Previously, getaddrinfo copied large amounts of address data to the stack, even after the fix for CVE-2013-4458 has been applied, potentially resulting in a stack overflow. getaddrinfo now uses a heap allocation instead (CVE-2016-3706) * The glob function suffered from a stack-based buffer overflow when it was called with the GLOB_ALTDIRFUNC flag and encountered a long file name (CVE-2016-1234) * The Sun RPC UDP client could exhaust all available stack space when flooded with crafted ICMP and UDP messages (CVE-2016-4429) * The IPv6 name server management code in libresolv could result in a memory leak for each thread which is created, performs a failing naming lookup, and exits (CVE-2016-5417) - startcontext-cantunwind.patch: mark __startcontext as .cantunwind (bsc#974800, BZ #20435) - Removed patches: * 0001-Updated-translations-for-2.23.patch * 0002-Regenerate-libc.pot-for-2.23.patch * 0003-Regenerated-configure-scripts.patch * 0004-x86_64-Set-DL_RUNTIME_UNALIGNED_VEC_SIZE-to-8.patch * 0005-Add-fts64_-to-sysdeps-arm-nacl-libc.abilist.patch * 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch * 0007-NEWS-2.23-Fix-typo-in-bug-19048-text.patch * 0008-Update-NEWS.patch * 0009-sln-use-stat64.patch * 0010-Add-sys-auxv.h-wrapper-to-include-sys.patch * 0011-mips-terminate-the-FDE-before-the-return-trampoline-.patch * 0012-Use-HAS_ARCH_FEATURE-with-Fast_Rep_String.patch * 0013-Mention-BZ-19762-in-NEWS.patch * 0014-Define-_HAVE_STRING_ARCH_mempcpy-to-1-for-x86.patch * 0015-Or-bit_Prefer_MAP_32BIT_EXEC-in-EXTRA_LD_ENVVARS.patch * 0016-Fix-resource-leak-in-resolver-bug-19257.patch * 0017-math-don-t-clobber-old-libm.so-on-install-BZ-19822.patch * 0018-resolv-Always-set-resplen2-out-parameter-in-send_dg-.patch * 0019-S390-Save-and-restore-fprs-vrs-while-resolving-symbo.patch * 0020-S390-Extend-structs-La_s390_regs-La_s390_retval-with.patch * 0021-CVE-2016-3075-Stack-overflow-in-_nss_dns_getnetbynam.patch * 0022-configure-fix-test-usage.patch * 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch * 0024-nss_db-Propagate-ERANGE-error-if-parse_line-fails-BZ.patch * 0025-getnameinfo-Do-not-preserve-errno.patch * 0026-getnameinfo-Refactor-and-fix-memory-leak-BZ-19642.patch * 0027-getnameinfo-Reduce-line-length-and-add-missing-comme.patch * 0028-getnameinfo-Avoid-calling-strnlen-on-uninitialized-b.patch * 0029-getnameinfo-Return-EAI_OVERFLOW-in-more-cases-BZ-197.patch * 0030-hesiod-Remove-RCS-keywords.patch * 0031-hesiod-Always-use-thread-local-resolver-state-BZ-195.patch * 0032-hesiod-Avoid-heap-overflow-in-get_txt_records-BZ-200.patch * 0033-malloc-Remove-NO_THREADS.patch * 0034-Fix-malloc-threaded-tests-link-on-non-Linux.patch * 0035-malloc-Run-fork-handler-as-late-as-possible-BZ-19431.patch * 0036-malloc-Remove-malloc-hooks-from-fork-handler.patch * 0037-malloc-Add-missing-internal_function-attributes-on-f.patch * 0038-nss_dns-Fix-assertion-failure-in-_nss_dns_getcanonna.patch * 0039-nss_dns-Validate-RDATA-length-against-packet-length-.patch * 0040-resolv-nss_dns-Remove-remaining-syslog-logging-BZ-19.patch * 0041-nss_dns-Check-address-length-before-creating-addrinf.patch * 0042-nss_dns-Skip-over-non-PTR-records-in-the-netent-code.patch * 0043-resolv-Always-set-resplen2-out-parameter-in-send_vc-.patch * 0044-tst-audit4-tst-audit10-Compile-AVX-AVX-512-code-sepa.patch * 0045-Fix-tst-audit10-build-when-mavx512f-is-not-supported.patch * 0046-tst-audit10-Fix-compilation-on-compilers-without-bit.patch * 0047-strfmon_l-Use-specified-locale-for-number-formatting.patch * 0048-glob-Simplify-the-interface-for-the-GLOB_ALTDIRFUNC-.patch * 0049-CVE-2016-1234-glob-Do-not-copy-d_name-field-of-struc.patch * 0050-ldconfig-Do-not-remove-stale-symbolic-links-with-X-B.patch * 0051-Report-dlsym-dlvsym-lookup-errors-using-dlerror-BZ-1.patch * 0052-Fix-tst-dlsym-error-build.patch * 0053-Remove-trailing-newline-from-date_fmt-in-Serbian-loc.patch * 0054-Revert-Report-dlsym-dlvsym-lookup-errors-using-dlerr.patch * 0055-CVE-2016-3706-getaddrinfo-stack-overflow-in-hostent-.patch * 0056-Fix-strfmon_l-Use-specified-locale-for-number-format.patch * clntudp-call-alloca.patch * glibc-memset-nontemporal.diff * nis-initgroups-status.patch * nscd-gc-crash.patch * robust-mutex-deadlock.patch * strncat-avoid-array-bounds-warning.patch- strncat-avoid-array-bounds-warning.patch: Avoid array-bounds warning for stncat on i586 (BZ #20260) - Update glibc.keyring - Unset MALLOC_CHECK_ during testsuite run- nsswitch.conf: Add fallback to files for passwd and group to prepare for libnsl removal.- nis-initgroups-status.patch: Return proper status from _nss_nis_initgroups_dyn (bsc#984269, BZ #20262) - robust-mutex-deadlock.patch: Fix generic __lll_robust_timedlock_wait to check for timeout (bsc#985170, BZ #20263)- nscd-gc-crash.patch: Fix nscd assertion failure in gc (bsc#965699, BZ [#19755])- clntudp-call-alloca.patch: do not use alloca in clntudp_call (CVE-2016-4429, bsc#980854, BZ #20112)- Import patches from 2.23 branch 0001-Updated-translations-for-2.23.patch 0002-Regenerate-libc.pot-for-2.23.patch 0003-Regenerated-configure-scripts.patch 0004-x86_64-Set-DL_RUNTIME_UNALIGNED_VEC_SIZE-to-8.patch 0005-Add-fts64_-to-sysdeps-arm-nacl-libc.abilist.patch 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch 0007-NEWS-2.23-Fix-typo-in-bug-19048-text.patch 0008-Update-NEWS.patch 0009-sln-use-stat64.patch 0010-Add-sys-auxv.h-wrapper-to-include-sys.patch 0011-mips-terminate-the-FDE-before-the-return-trampoline-.patch 0012-Use-HAS_ARCH_FEATURE-with-Fast_Rep_String.patch 0013-Mention-BZ-19762-in-NEWS.patch 0014-Define-_HAVE_STRING_ARCH_mempcpy-to-1-for-x86.patch 0015-Or-bit_Prefer_MAP_32BIT_EXEC-in-EXTRA_LD_ENVVARS.patch 0016-Fix-resource-leak-in-resolver-bug-19257.patch 0017-math-don-t-clobber-old-libm.so-on-install-BZ-19822.patch 0018-resolv-Always-set-resplen2-out-parameter-in-send_dg-.patch 0019-S390-Save-and-restore-fprs-vrs-while-resolving-symbo.patch 0020-S390-Extend-structs-La_s390_regs-La_s390_retval-with.patch 0021-CVE-2016-3075-Stack-overflow-in-_nss_dns_getnetbynam.patch 0022-configure-fix-test-usage.patch 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch 0024-nss_db-Propagate-ERANGE-error-if-parse_line-fails-BZ.patch 0025-getnameinfo-Do-not-preserve-errno.patch 0026-getnameinfo-Refactor-and-fix-memory-leak-BZ-19642.patch 0027-getnameinfo-Reduce-line-length-and-add-missing-comme.patch 0028-getnameinfo-Avoid-calling-strnlen-on-uninitialized-b.patch 0029-getnameinfo-Return-EAI_OVERFLOW-in-more-cases-BZ-197.patch 0030-hesiod-Remove-RCS-keywords.patch 0031-hesiod-Always-use-thread-local-resolver-state-BZ-195.patch 0032-hesiod-Avoid-heap-overflow-in-get_txt_records-BZ-200.patch 0033-malloc-Remove-NO_THREADS.patch 0034-Fix-malloc-threaded-tests-link-on-non-Linux.patch 0035-malloc-Run-fork-handler-as-late-as-possible-BZ-19431.patch 0036-malloc-Remove-malloc-hooks-from-fork-handler.patch 0037-malloc-Add-missing-internal_function-attributes-on-f.patch 0038-nss_dns-Fix-assertion-failure-in-_nss_dns_getcanonna.patch 0039-nss_dns-Validate-RDATA-length-against-packet-length-.patch 0040-resolv-nss_dns-Remove-remaining-syslog-logging-BZ-19.patch 0041-nss_dns-Check-address-length-before-creating-addrinf.patch 0042-nss_dns-Skip-over-non-PTR-records-in-the-netent-code.patch 0043-resolv-Always-set-resplen2-out-parameter-in-send_vc-.patch 0044-tst-audit4-tst-audit10-Compile-AVX-AVX-512-code-sepa.patch 0045-Fix-tst-audit10-build-when-mavx512f-is-not-supported.patch 0046-tst-audit10-Fix-compilation-on-compilers-without-bit.patch 0047-strfmon_l-Use-specified-locale-for-number-formatting.patch 0048-glob-Simplify-the-interface-for-the-GLOB_ALTDIRFUNC-.patch 0049-CVE-2016-1234-glob-Do-not-copy-d_name-field-of-struc.patch 0050-ldconfig-Do-not-remove-stale-symbolic-links-with-X-B.patch 0051-Report-dlsym-dlvsym-lookup-errors-using-dlerror-BZ-1.patch 0052-Fix-tst-dlsym-error-build.patch 0053-Remove-trailing-newline-from-date_fmt-in-Serbian-loc.patch 0054-Revert-Report-dlsym-dlvsym-lookup-errors-using-dlerr.patch 0055-CVE-2016-3706-getaddrinfo-stack-overflow-in-hostent-.patch 0056-Fix-strfmon_l-Use-specified-locale-for-number-format.patch - CVE-2016-3075 CVE-2016-1234 CVE-2016-3706 bsc#973164 bsc#969727 - resolv-mem-leak.patch: renamed to 0016-Fix-resource-leak-in-resolver-bug-19257.patch - no-long-double.patch: renamed to 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch - glibc-gcc6.patch: renamed to 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch- glibc-c-utf8-locale.patch: fix bad standard in LC_IDENTIFICATION categories - glibc-2.3.locales.diff.bz2: likewise- glibc-gcc6.patch: Suppress GCC 6 warning about ambiguous 'else' with - Wparentheses- Add compatibility symlinks for LSB 3.0 (fate#318933)- powerpc-elision-enable-envvar.patch: enable TLE only if GLIBC_ELISION_ENABLE=yes is defined (bsc#967594, fate#318236)- ldd-system-interp.patch: Restore warning about execution permission, it is still needed for noexec mounts (bsc#915985)- Add C.UTF-8 locale (see https://sourceware.org/glibc/wiki/Proposals/C.UTF-8) and rh#902094 . Added with glibc-c-utf8-locale.patch. - Add glibc-disable-gettext-for-c-utf8.patch to disable gettext for C.UTF-8 same as C locale.- Move %install_info_delete to %preun - crypt_blowfish-1.3.tar.gz.sign: Remove, the sign key is no longer acceptable- no-long-double.patch: Don't use long double functions if NO_LONG_DOUBLE- Update to glibc 2.23 release. * Unicode 8.0.0 Support * sched_setaffinity, pthread_setaffinity_np no longer attempt to guess the kernel-internal CPU set size * The fts.h header can now be used with -D_FILE_OFFSET_BITS=64 * getaddrinfo now detects certain invalid responses on an internal netlink socket * A defect in the malloc implementation, present since glibc 2.15 (2012) or glibc 2.10 via --enable-experimental-malloc (2009), could result in the unnecessary serialization of memory allocation requests across threads * The obsolete header has been removed * The obsolete functions bdflush, create_module, get_kernel_syms, query_module and uselib are no longer available to newly linked binaries * Optimized string, wcsmbs and memory functions for IBM z13. * Newly linked programs that define a variable called signgam will no longer have it set by the lgamma, lgammaf and lgammal functions - Removed patches: * dont-remove-nodelete-flag.patch * openat64-readd-o-largefile.patch * mntent-blank-line.patch * opendir-o-directory-check.patch * strcoll-remove-strdiff-opt.patch * ld-pointer-guard.patch * tls-dtor-list-mangling.patch * powerpc-lock-elision-race.patch * prelink-elf-rtype-class.patch * vector-finite-math-aliases.patch * powerpc-elision-adapt-param.patch * catopen-unbound-alloca.patch * strftime-range-check.patch * hcreate-overflow-check.patch * errorcheck-mutex-no-elision.patch * refactor-nan-parsing.patch * send-dg-buffer-overflow.patch * isinf-cxx11-conflict.patch * ibm93x-redundant-shift-si.patch * iconv-reset-input-buffer.patch * tzset-tzname.patch * static-dlopen.patch- isinf-cxx11-conflict.patch: Fix isinf/isnan declaration conflict with C++11 (bsc#963700, BZ #19439)- tls-dtor-list-mangling.patch: Harden tls_dtor_list with pointer mangling (BZ #19018) - prelink-elf-rtype-class.patch: Keep only ELF_RTYPE_CLASS_{PLT|COPY} bits for prelink (BZ #19178) - vector-finite-math-aliases.patch: Better workaround for aliases of * _finite symbols in vector math library (BZ# 19058) - powerpc-elision-adapt-param.patch: powerpc: Fix usage of elision transient failure adapt param (BZ #19174) - catopen-unbound-alloca.patch: Fix unbound alloca in catopen (CVE-2015-8779, bsc#962739, BZ #17905) - strftime-range-check.patch: Add range check on time fields (CVE-2015-8776, bsc#962736, BZ #18985) - hcreate-overflow-check.patch: Handle overflow in hcreate (CVE-2015-8778, bsc#962737, BZ #18240) - errorcheck-mutex-no-elision.patch: Don't do lock elision on an error checking mutex (bsc#956716, BZ #17514) - refactor-nan-parsing.patch: Refactor strtod parsing of NaN payloads (CVE-2014-9761, bsc#962738, BZ #16962) - send-dg-buffer-overflow.patch: Fix getaddrinfo stack-based buffer overflow (CVE-2015-7547, bsc#961721, BZ #18665) - powerpc-lock-elision-race.patch: renamed from 0001-powerpc-Fix-a-race-condition-when-eliding-a-lock-20150730.patch- Add audit-devel and libcap-devel to BuildRequires, for use by nscd- reinitialize-dl_load_write_lock.patch: Reinitialize dl_load_write_lock on fork (bsc#958315, BZ #19282)- resolv-mem-leak.patch: Fix resource leak in resolver (bsc#955647, BZ #19257) - tzset-tzname.patch: Force rereading TZDEFRULES after it was used to set DST rules only (BZ #19253)- glibc-2.3.90-noversion.diff: use stat64- ld-pointer-guard.patch: Always enable pointer guard (CVE-2015-8777, bsc#950944, BZ #18928)- strcoll-remove-strdiff-opt.patch: Remove incorrect STRDIFF-based optimization (BZ #18589)- iconv-reset-input-buffer.patch: Fix iconv buffer handling with IGNORE error handler (BZ #18830)- new patch [BZ #18743] PowerPC: Fix a race condition when eliding a lock 0001-powerpc-Fix-a-race-condition-when-eliding-a-lock-20150730.patch- nss-files-long-lines-2.patch: Properly reread entry after failure in nss_files getent function (bsc#945779, BZ #18991)- fnmatch-collating-elements.patch: Fix fnmatch handling of collating elements (BZ #17396, BZ #16976)- opendir-o-directory-check.patch: Fix opendir inverted o_directory_works test - static-dlopen.patch: Static dlopen default library search path fix (bsc#937853)- mntent-blank-line.patch: Fix memory corruption w/blank lines- dont-remove-nodelete-flag.patch: Don't remove DF_1_NODELETE flag from all loaded objects on failed dlopen - openat64-readd-o-largefile.patch: Readd O_LARGEFILE flag for openat64- Update to glibc 2.22 release. * Cache information can be queried via sysconf() function on s390 * A buffer overflow in gethostbyname_r and related functions performing DNS requests has been fixed. (CVE-2015-1781) * The time zone file parser has been made more robust against crafted time zone files * A powerpc and powerpc64 optimization for TLS, similar to TLS descriptors for LD and GD on x86 and x86-64, has been implemented. * Character encoding and ctype tables were updated to Unicode 7.0.0 * Added vector math library named libmvec * A new fmemopen implementation has been added with the goal of POSIX compliance. * The header is deprecated, and will be removed in a future release. * bsc#905313 bsc#920338 bsc#927080 bsc#928723 bsc#931480 bsc#939211 bsc#940195 bsc#940332 bsc#944494 bsc#968787 - Patches from upstream removed * htm-tabort.patch * o-tmpfile.patch * memcpy-chk-non-SSE2.patch * pthread-mutexattr-gettype-kind.patch * powerpc-software-sqrt.patch * static-tls-dtv-limit.patch * threaded-trim-threshold.patch * resolv-nameserver-handling.patch * nss-separate-state-getXXent.patch * aarch64-sigstksz.patch * heap-top-corruption.patch * pthread-join-deadlock.patch- pthread-join-deadlock.patch: Use IE model for static variables in libc.so, libpthread.so and rtld (bsc#930015, BZ #18457)- glibc-nodate.patch: fix verification of timestamp- also filter out -fstack-protector-strong- getaddrinfo-ipv6-sanity.diff: Remove. It breaks services that start before IPv6 is up (bsc#931399) - glibc-2.3.locales.diff.bz2: Remove sh_YU locales, fix currency for en_BE.- Add /usr/include/gnu/lib-names-.*.h to baselibs - pthread-join-deadlock.patch: Don't require rtld lock to store static TLS offset in the DTV (bsc#930015, BZ #18457) - heap-top-corruption.patch: Do not corrupt the top of a threaded heap if top chunk is MINSIZE (BZ #18502)- threaded-trim-threshold.patch: Fix regression in threaded application malloc performance (bsc#915955, BZ #17195)- aarch64-sigstksz.patch: Increase MINSIGSTKSZ and SIGSTKSZ (BZ #16850)- powerpc-software-sqrt.patch: Fix powerpc software sqrt (BZ #17964, BZ [#17967]) - nss-separate-state-getXXent.patch: Separate internal state between getXXent and getXXbyYY NSS calls (CVE-2014-8121, bsc#918187, BZ #18007) - static-tls-dtv-limit.patch: Fix DTV race, assert, DTV_SURPLUS Static TLS limit, and nptl_db garbage (bsc#919678, BZ #17090, BZ #17620, BZ #17621, BZ #17628)- resolv-nameserver-handling.patch: Replace with simpler version with more compatibility- memcpy-chk-non-SSE2.patch: Fix __memcpy_chk on non-SSE2 CPUs (bsc#920084)- resolv-nameserver-handling.patch: Rewrite handling of nameserver configuration in resolver- htm-tabort.patch: Fix TABORT encoding for little endian- Update to glibc 2.21 release. * A new semaphore algorithm has been implemented in generic C code for all machines * Added support for TSX lock elision of pthread mutexes on powerpc32, powerpc64 and powerpc64le * Optimized strcpy, stpcpy, strchrnul and strrchr implementations for AArch64 * i386 memcpy functions optimized with SSE2 unaligned load/store * New locales: tu_IN, bh_IN, raj_IN, ce_RU * The obsolete sigvec function has been removed * CVE-2015-1472 CVE-2015-1473 CVE-2012-3406 CVE-2014-9402 CVE-2014-7817 bsc#864081 bsc#906371 bsc#909053 bsc#910599 bsc#916222 - Patches from upstream removed * ifunc-x86-slow-sse4.patch * pthread-mutex-trylock-elision.patch - o-tmpfile.patch: Fix value of O_TMPFILE for architectures with non-default O_DIRECTORY (BZ #17912)- Update to crypt_blowfish 1.3. * Add support for the $2b$ prefix. - ifunc-x86-slow-sse4.patch: Fix misdetected Slow_SSE4_2 cpu feature bit (BZ #17501)/bin/sh/bin/sh/bin/sh/bin/shunscdh01-armsrv3 1693568544 2.31-150300.58.12.31-150300.58.12.31-150300.58.1 0.48nscd.confnscdnscd.pidsocketnscd.servicetmpfiles.dnscd.confnscdrcnscdnscdgrouphostsnetgrouppasswdservices/etc//run//run/nscd//usr/lib/systemd/system//usr/lib//usr/lib/tmpfiles.d//usr/sbin//var/lib//var/lib/nscd/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:29970/SUSE_SLE-15-SP3_Update/ab6e94683c42420f76f8eea275e55b52-glibc.SUSE_SLE-15-SP3_Updatecpioxz5aarch64-suse-linux ASCII textdirectorycannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.58.1.aarch64/run/nscd/nscd.pid' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.58.1.aarch64/run/nscd/socket' (No such file or directory)ELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, interpreter /lib/ld-linux-aarch64.so.1, BuildID[sha1]=52cee4351d8f43d8df14b830b0ed34ec80779449, for GNU/Linux 3.7.0, strippedcannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.58.1.aarch64/var/lib/nscd/group' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.58.1.aarch64/var/lib/nscd/hosts' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.58.1.aarch64/var/lib/nscd/netgroup' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.58.1.aarch64/var/lib/nscd/passwd' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.58.1.aarch64/var/lib/nscd/services' (No such file or directory) RR R R RRR R RK:[:,Lutf-86f567beb01f9ce3b115c147858db228bc0ebdd835e42286c4e2bb46c63e4cab8?p7zXZ !t/!] crv(vX0m'\WLx:DMmFpcտغ]OrIgWH>]O:VVv/)wedjeBSsQ^eg*ּO{.jW7Iڻ+?'3s%w d~ZW_+uee3fCpo?EI|5`Tgş@ (ƨbr8i`ւP ޼ bKSdIk}zDI(Sq!`#Α/f\^mVzMjrxo*lƳ;_\yQo)-k먟e1tIk)\E \lXD>o}'QmFM95Ť3pUrB[Y^y>?y;k׈撒̳x.` ~oǭQ*ڄ柷c7'K*-D*u g)od5ˏ-`|.ys?'Z\Y,!ƋD|bU[X U[Wjg|±J𦦱qO^kܩs|d6Gcߦ!~'&&T^ǧ{gP%c1SnM¨q*䙽y.܋CQ>=椩Uq ^}I5<[x&9U &OӠ˜s㦃6RAm1Jݲ bz2k'DJ@c&ͽj' ^Rxl.(9SeD+}gnmdAY?rc4+aIoH-߃jc~4}1ҵd2iZ::ث 02 )伬 Ft܀`Y ܹCvW)L>16BO<f5 )V T75]˦~9/_.u^߽TpekÌ!ۯp p"`qs`U`= 9DބqM3nʳL c5¼9'+6)hM)ZQKm&jG<8T5,x}$|4Oɚ":&!L']u L,FG7̐cŌlgeNYۗ3/+4GO2ć>/~%/WD{?+..S4a!VțG PK~8 Hafe_`.նZV dwњ3wl! Id?[^?Rżh֞}$ߟojϡ o;9 `v|J7f+tFƏdhڅ7"B[= $HlH^ jL#Ju1܆ 3Ƹ)VwHc_hcd~ 1_í?M*C@kn) 2,eM\U iSEcw7\"ԛ'67iJ<;uU_MH(LERvOlӮ`0D'|qG{/ݒJPE#d81 MkR˓O/J!m1߫Vee:Yq( 0ELm~~-ovlB[CF \%"c$Rԉ҈t&8+-jBX0ey6lf}R#Kv@U,  W>ES;_'^S pN[|^f׬6jWŢ .X4g+zK3N]_y~ٺ~:RB :H5bH`EN >+c@?vvTIĎB6 Z4~8`oA y mF0yzb0-$>1S4-W:b[1d[}jxu)wQ?ٖά#֛\O@ۿ:K9 ηpeUy(=M[#P\ӻ؎h|c3pH ?aYAGYCeH%E)bx2nXlPJIaR2IܔLzu$\7'<ff%hMA o `5>9('j̠DFNWMH&" IK_RJic*9NeXϔNQ% B]DnZdP>MtftN=|̱@.m" ɲ1 /v3ղH(dou6zf5WQZ]:=:xLm9ZtyUMH{_Ę,i%l?̭+10\UbNQ_DCOrx!3"smP=*DYx~/xR4U!BEjv/Hʋc;UOO`\y)_tIj;42ZuI(72B OC*2Wu5G @J֘@2ZFhe''҃9YD4#FNMR_Dn"} B1s3pB/%D^X ?T~$J2&ĥ,.7 lkr5dQHlg׬AЭ$ShM\ruiv5H!pTJsXG&DopU- 4r :w.)1{8Lb_L]NװYMn oCC{#IKzP`lc-3g6x. Qe%@w5P;ؐe |QKķiQw0;T 6]T0`\NRñX!pJҚ Ud,+Vf#5W0&}8֛y!ס(D /D)oj0*x:Fsuc#if88G-/AcμdJ ^lNY@Eׇ1wgs#; :Ee\ڈ-T;â[/9`Mg龰" JVw3_+p\$,|:֌múQ0ٔ]7xJ6a7_Ry*S Яieѳp}(*+3謆[Pb64x"7a6aedfw L;Wǝ}@WV la D̃$yo@ǽJ-u4 9\ \| qRu,\mKqym0ߥ/kŦd d̄Yo]D&8j~3Fɱ/`c$$Js9M61Ѕ.-L 4>},=D vP1mul)Thӥm %)tL~Wm?NK -|4~=23چSW *eJl%volB&yƙכU*. ׁr9%Sh{oA4Әoȏ{".GsDԥO!E<ҶC3ˠVdTp?֘/I贬=IeNfHyiK$4/,6޻} l9leb9i k*9n7لϵvǿBc+Ep %S{kJYkÜ{ ?򧐁Z} ^18#__%}CQXߵZb)WMĞ&eX4wl~y0R@-Sc:[;g\kfUE##K2Ąuy% 6o"x=N(i"2cT"Q] D9NyD${^F+ѸCbA ck?p͉s`U&^4XJ8ŹɑAmRnٷ35^LkWH];E>H+j@tk$o G}q-!0 ׃ʟi#K.y 󽶞@(_k.Τ> J>R_ظe Ģz>5/ڒW!ԧXB Ĥ ;5W~\X:ѴVܚA> %@|ߎ*vHip(?B孯aLrx6/%^Ig!Nώ.Yʕ6{9,5 Hcr%e eq|RG)BDbqk>lۡd±ԎgȮ!ɊD8׆Uɥ[;SLm7$p gT 2c]ǫ'Yk>b%&.,R>B ҕ7*r_IGJXSaT6M4c"#5O# _aTLҒK!8KjgTiJ? Ƅ k, " (Zm}RniUў bpC5߼O)w; Xib P<>`.=밈M}׭=▤ B1;7tHs^`*+a~zU7OztIv?{~q(eQ93קrEӖ=4 ZkՓ1+L(\kezR4차g&놺׺^$HJNjA=;`;iRm'wyԾC-soz//!x/u|mZ"i/˦TWc}oD>߮f6NX Oh8hBl\zzH`8ywPW@E/Spbf$8׵0!ӚH}(͟B}b,Y'"Hj ݛ,F5hgdhBȋޛ-Eߐ{\aeG`-- [wӛb8R@\W{ݝt`[Zo~4XNDDy$Ehc8dWw` 7v5Ơ (VG4X2fv$l?D$@Xcl.k=kڕd?)/=N \ v:t:Vї@KfLΏJ'wj _h76)~Ԧs-"uP2Œk%ζ> a=Z//%"@- ͒D!,Ud]f ;K MEyYmet'<T̂!q-=)n|zabcr$4MY7Z:*Y f֍h`-zR@^$ٰSQgHó@3o<%Ya~C(oYb9YڷȮr'RC@WAlbE Ok^3D!֬Ӊ:iDȸ.18 .-71Om⣇i䌻77-Zҭ["CklvGMOpRI'E?0 "%y<0oׄYxBSTs@ܒ9("QԷ=#ri`WUAtL(2Q_@,3I8sZǰ`H^%'5ޔӡ81@:m9" Jt:KJ8Wy7Nz\塪^x팈C'LM~ E|1i(eL7zsq͘1|leHޜY<*(Dɸ;!LJÄf?"z6hHra-]4VIq}<UJ^C MjǾK612ԉrma|9dHVԥ,]ק:\0^I{񊄠"b6=T.Kޤ "f ՞I]B1m^:S9aTQĐ.I JGS4 CY#gG@Wy0z-5 kXS,e2M+'^s#x3ņFǤjӲVsExg}ݯI<db`hm1YC?}DSa`4Heq˦|8W8#MTg//D.NV.(i}x"Q;@_pA$ ЪE( лQDhU8z$ܷؗrQM8ސS1گf&9Ն jۿ3f*.xncKnpiZ1 3^>#)k̝O6H_p@KmXl9p Ӱw4cy>wT caZ`r0'lql&GNƖp0!>.ߣވ,nNΤ%8W$ >ᚳ~vhd&"v `٘-SI&D@~vY 6aMԻaUi(6<؁_lHL}P`L^xה؅ ѣ+%-[:yKh FeX-Qwi/SAKѝ38kIi;̆ƕA)CK ^~["hىTl%Ry/N4V0rCDh҂hS)eWʏV. Q /цn[Úـuu ,X4> Q,rw>{{8yj O+5<LƼt5#{r-J:52qs~ʤ,Cae.w~aJ,d洙w_H!ۢvu%cј Y8K-r%wQXmB% U1e,?e݁uNL`lؠ#v/[Mp8MFXpZ߈V)҅ҳy s>1կ Q"&VU{hOЖ4L($p^Ъk֬kjJ!D+duH%߫=3x;2ODpbje gB_hr4C8YO#u[}BsnaasYDE~'nG;@4aUĿ5'7=RKf7E}yuBs;Խc#m`Y0p5DFR$w򱀱HC!| ~9 TAAWO.Fֻ_ ))y{ӌ>Xdޡ {.PLAHJg\73#\׀5\ K-~G9.aKFB贎"1~eklhӇLXUHi蟤K$LJ}k]8@}@S?0h004dB1숝a+@m+tEærk.T1LĝEW-HԋG]5=4=$)iOC#|H=kibG"bdc(Xh-xχ|2ɸ&t- U{tM!g?qY]* UZn9"d5S"cDjJ߸&'χl'!Q*ظyS֪Q;ezJwXSR\x2HXGs,+tʐv;ㅣ?Uk0s~@ 1[K&2$Dgj3m2qDy" ÂvGBGPc23q+6Vx&%*x->=1ǡX,H)%8o\jrv/G8z +nz P&K(/O:8#޸2~ (LzЇgAӻ1Pu_Z`D`AUes՝,p|*Ea~ SCW&u>< ̛wǼ=ZA`M_޿^( ЦT/%J,Z(%vWa2~̣wbfaASv+3 QNTUe&s9;Cߝ}us' {ʧ/,ɍ1JF VrɲHcc^j[0q|<$Uf9A…*M$*^c[W73:0ZOaݦv8SWŝ@Շչ:P1V+fWs }f|Baz&‡B@u{j9E%v2ganmXՎT+sL؏Bk.:ȯ_ʭywzlolc%šM$G &[џ?71_VM CxQSP&WfۻNv=Bhsy7jVBrRmlDJRЭravQ`vxcXX[ܳ+/?@icQfxҳm|H'3ѾlR96GzioImSyK!| x"ȳ"zx[IƒC1rs) d XN#0a`f!E\t/xEx=?*,)W$#D]%dӀӀ~K#ZG_#h {vP, [ȽfetCw{"*v^`>OUŭ~% iN೚iL c\Dո--@ 5L&lDr׽P:Fo'ӻI [R)leuaB}^8 d)*ۮJP[Ɋf;i>ZR mS'iRUo/H:u>H=뀫LhaTR$vp]) Pv 5hIqbk b#p\!*{& ;-CJ}9g|1ߚaW "5f30~۶AУ:xQJ'6t^u%\zXq\.Yy˷sne7:MtG[@ΖҲ՟޹XAq W˭_#ܯYG"$H {|[{"+l[ݘ G)E44̌%ԣ ܃C%ruF퉂9A/B1ܡD*[_ 8JBꦹLR cx0O)Ṍ@Λ>}P P>Fy)BI7 m31;W Ѽ\ifW]VuAud2k;%C!4?/זsa]'[kRҪ2.qH{ 6Vaz {dUm t&Tk1&z/دjR +a] 73_՞NگSn.#s^Щ^$հ?CYn67 Oa8lMFos#[x] pO՞ocH9~y4,KUvkICiڕTWJ.8Է'߉'* 9|M{w1{,#yP^opQ_OFo;|5c H {Z{{gL)-1Mvv Q)62|YzrDdm'Gvcu'/)G݀2Ώ"Y?&ՙ}S_/aeQhUx?;u_&= ~bV5kLj^uΝO$8m(>'k2~H}hlG8uS 5jPDs@ӃT(͕sp=~jXU,D+VWfILR=(3P| >ח Za[T͈p<)紶m zMvsڇyCނ71h. :j]e-r-c@H0iA*T,J+Ѣů*47rcYV|ƃwXS]<"]Yzkl3BB-}Ck;䵰)9_JOC`W*;RpCA/Z'S-ʷE"4ǃ@D׹3\1w> ˆKN()0ɬ_menPzPVXM/; /WI34}#O+gdJ7"h> W&Q-Cte[&4[FFulNheVQҠ.%z(@XP^d_d{hzvAVs^crS0(VZolSЌ jK(b%~Ѹ7 EP0~qDSua£Vلc&Nr3ӈ)T:[rhFS?:Qq N/!RKC= \t}YDЩ ~ؤDO}+w:;gNY6+_1 G7eRgQ6hy4W#k\m\ A<\U6<-A!Qq"rn;"HnwL4r_ tBE wv.8%'TQ[fM.IMQd[=ץLi2n鞋bcb91_$mhql.+1 jWS!qI@ y/Մw.ꉄ:_їT&,ֳ0t WB.Pyo->8]ttJzRn„n*:Tx[E?``f_mr1]hBZΘLa]Pj҅\<ٓA:ѫĚOZpG*LjH?~ lR}nN;߻UΆ?دx__͇܊sU09ێk?,9G=!>iBgmt^Ф,,8YjK [q/`PE-2bl=Uf0mPq<ā8ɽgzΫYn[zE=\|Y͋6Tҗ JyEb@T-ET] rn!:twdnL*-^uWPvWE4WĭV,폃wgNt%( Ό]Y7MZU37 zIse.b.tB_i ?EމjdjxEZB-ZN>N,M+ ]1 X0cQ -o<]0OKֺAi5إ|zyW҉N@{vkW^䚨8.f=<{g|?'zbFz5Uc8e~J w7Nt44.޳7o0>ƞ4 Uq AaM{w_Z)n;5EթvS3R`1&"ekl|mNJȡo92u#wLajH=:Z򍧳 &MlzWm<_\-9R*-|Zؠz;骮46>)) ّ.4EGCbS ]!bA#AC>~KtUaylK9uj0}̃,_/Y*r䀓}N<|9m͸A=~\aA%iB#l'A0%7>9uE$˼@P~ЮL6''YZhͮkL5!8FU _E8^&]4Z ~ Tb-S6z5r%6k .y1,8׬q- r;ԑU'aEp %8w soQ4C3N[\3x6pT<܇vߩ22WpS"Tn0bz&} T[{ پLE%;==msBz ~S^ ֣c`\ç,0o iW)NaScRRǓ&usivDq?uNU^rW8o(=6}D]d{pBl |BNr( x&`mQ#`>=Gl"Ѯ(x 8\NS;pĭ%boQv܌=?Ƃ1碽jsuVzFhē48Qmӆ,O+Nw!̲¦n?lQSʻPD͖(`Mq1兛51dVYK4З-Um j3_BtZـK o7zI5t^ˏz/ZV7 ziF롑W7p?Ca=%a"uvCK9:I\Up.>*!3Oןb sC\('cln"Y hDY-4s-d%;ia ֱ7~lEۋ zH:}j}zThڋNiW7Mn̶axuWA٢,q,_y]eSTR1鱃)C.o_ [*37G*7ҺcS_J H)K0ҹZVDo]4]@ G5I|",t1e阦6Uij`}B韊k?ӵm!уG§x V:}}cfiYBP;kmyr6ƍ!|8}伥lu=3M;>ShS 'bXKZ Q&h.Wfgr;>y9td TmK9(w)*="K8$ 3ꍼy?wGhz}d}N Ի,M5y Ǟ$ uӖq=|= vmM=7aVTzRvǓ~r;?}tC͚ ҚvHrʍ |mBmsaFb$}G7 a!(/ksYZR;u@bg_u7 0=xSt!5u&*(Lu3i!NV]R8^R2zkC5=ǍCSHs> %&&'e0_Ȥ&Sc]V.gmjH(8u$b}wYc_5fYE R[ZZG/V- aP oے9-r2!}nxHwG tˮr"mδɤ"0Gn;p#eN*8Q?-Z SoN#  rgtQ&W_FϪ7/~ bk}sxe+ Ryq{2Kowx<؍rr1#S]͑,rRGRpCE&6 dBP l4Isy2j-}Ax*ez$zM*QyU~SGMsNP{]oXYֺ%fÒԍĞ[~.^je,'[E_;=2zOs]/Qq|4;oI]Lc:6sm}GiC+7(PTX<)ucǞQ*&%[/F)0\R2ɈGz!j:ĜEm@C8cSMţ@6n‹A Fwe‚d#Gu˂@FQ94F%KgoEZ.6o+!񯩞x$ /ր&lZ*эy6L)_$y_Tb6pJxC(P~H\M;Φg]@tism‹=njs[/Ƀ<$H">gׂPŞ$z]mcM}wPY=!m_A*fpzo8[res#N5 Pj 9LH6`&{ahFa eUE f¢a ߗ9(ZЉﳞݳU(=,V_D $ W,Ub6˥Xx?9ӳx"ӈcyp}{V ITa5]F1~wDr3zI2 HY';ˁ@gO]UsN7Ia&j{UexRA %v]HWXkUM:QrOH"([ܨؐTo^uwX5EKjYWUvf;o;dzv7*,%o.iRtݩ_V>,taI6N3t\!boSHpn=/s) ҈dj=7&VKB &(nGQrvnyn!b >;sQ&H9yx}}X^s0;ƗGtlxk5_1u\L>b#58 9+-:z63[ ^ /c2WaһSnΌ+^juqm 'R̀rԥt9Ύ\0`-O|8ŻPzgԲ|ePɀQ!RQZ/3/9m1v~~(H&M=Tڔ=GiQK+Zo{$%jh3oRSahJr#ͅ*%{\+kp̀C/UlPɟ'&k!fϥ^c4 Otua{R 9?Ϭ]fLWDY^߱vCoPԾ?A/ 7,{m'^ȟA24Q[i&O+*`+8,Y++P\D$AJxZp~'VJ m'w?#.REt._{$C-w!.p `݂TJP=.<8FOgRr-G*ځ,O 6&WqKV{uI\ /|  ҵFoQNbSH 5_ )-b= )52K: r;yTj.MG3cVxX$__izuQh_>f!Uxl wY@bwD< E f Wx6_ ۉ˶1ăX~UR*~u_Gpz<e;>BW0MCJbx})ȥۧHހp S7#n]굷q?B|"rCo>tu0|Y@btW>:+!~щMd;W\܃o/0~GQ)_d 5o_P̴ f|7I ¸`(aP6qEoGR- IɺxJgt}Fij?X%6gj HifS싂w~c@/M߁V6$eopYHLzZ(_W< e!Gt J@J OM(IwVA=x]M@#a 0Sx[?wuBR|W=%YzZBh[ć;>"6@ȯdzջYl3YAxLV X=;eO#Ůڶ [y)G z:3lP!D!ZzI4bs""i133 yۏMl":cc*u FQa= }Yߒu*Y#㊰J:L@$xEjh&VS@>Yq Hrm+^AC~6ʙpa)^.SF_),(5G0&+[l{*0$g묷43%j.=6FyOm=/}@[§e`?V&e{7pюr&nnr<6i(֌ۭ('dw]b<UX¡Y~S~kSBɨ䘭?gXW\0>+eq-7KVeFb:}g׵ hm!ft Q8ªtΧ;;.w̝cƲ>[c B1ʌ$ob#z~FD-Givڷ-Cc;;eQ{ڏAiWx+CVkJTڄ^p"C,36#!RXA!!ZRӎt!ֺ1j߲QKb!ΥI^F,d=F Z-sf)Xs4A%\o%2C(k3̬gEw_l"h2 /a$B<胾kO٬vQ-yt;Vђ熐/O "wffCC;m.G>3mĔ<1|c,l&>-u4 /0.g>]Ch2RĶ&]Nb7cGee]'8$A'H#`Lg~uu _3`nw]od0/LLp䠠Dh7j؃/GLPC/Y?meiNo [?K׺8 S[B-T68~Lg0rƮ0S@-/Uω88֨Kå*4>%D8Cf{ "M4QyV3&G'GB^g: 3"e4WG=~&: (9q{0.pG7 n]a$=#& &(g4+A5Z@^,HeCm6/IȄNv#˚TucJʙn!؋ kҗ}O^F y.MO dģYxe)rl5Uid+b=l"VV^;t#D<ַ $ϥVZF$q:&1j_xy_!tBgmwͅ,$`x(!Y٦{GfPndO=" GbR s4ϜA~QܠUXm`(h 1xfbx(!u 7w[%ߕB1OѤK$ wGWv|a@7߮}[{U!uC&7}ífkuP.ka~ 9هЪWVd>͂:BX T@.07ש$<Ba@z?p*o5^$v,)* >W_&"9bibd,<]_)&0xy-iֶٙ !L#cn Т?JֹfDeﱄX8[Y Laɻ]`uP.;k|.Av-I p 㺂w2\{^57ER Ida(hDzb;qz{zlfN"Ju+WJØ PFZZ^ 5 ,|P-@<^B-+DX!O].=$g:V-%RNFxV4p^3jlo =jK- p#ҎRVr Z4"Jo}X@P W,{@YТJ׈#'٩&ޒ4L\y!JwZ|pufz? i7n31/Ӝp#d3͢|%H<-D+iz]>5N I&QY sVwK_ڷ/;ɴ6c8ā.M e.'IJ!!ĹK-ΆHN9M8тp}1i{էgnC1$|贕T-`-(~q@:bYWiohoED(}yN9stg o|e\r2@WE!l!~.^^)r8ۮK0HLG]q0&o'zf;DY6yc,b>%;?@|N驯ۢFlX' vY. D30,)! \*C̄[n M+/%gUZ#uH z(ȄD ;Ou'^i¿Lݖb iƙT,wsjh7˥31 #w rqn훴&W|C, =܍:P{L:Y>:ɜޯ,T:H#;";)0"Q$\Xlx[—LR=]f|^Q: 698W; B@Kgnt qcn0)Vb T~iV?hRV:"RPE7n{ag,JRAsnmI[Y[-/C+[3>Eq.LJX?9SM_ Bm+|]\Qİs-8i8u3{@5Ok+gu=hf,*ZGE .E+۪`>d 9`LJQ }V4~NFSu ].kpg7!@ì-KĽg4˶Y*) _E`K0-9\ #x K$Gk*! :FIqLV8KIv |Υ4m+vEH s0'y -!C_Mb(MLZ1BUqA,& ӡ= H/{ûB gWlv 9|[Zhih5C&z@1!$I] 6(%,IH]NIiT`ؽ4 gui>bV4vMEIc{`2-Ib^`WAQhqgd!i S7ɣDIұg @(P$;[[ICkN"PcF߰Ek >{KPJAAuTf]d3l '0PQ. t({TujXb%ܘ LuIYD×Ny뼴VixdRHiaQ3s-;o1͸^Eh녺 )x UĎJ2Ntn!>{2pי D3|nP.=erd,=0V3vEgFQi8LgHqRv+CbP5]^A5PH)jA-z5Z~i;Uv[iR&|.7Q1ƋJŒLM7G} >q=>pA$h?c)nCsi K5ˮePR dā R~ "Py9SsQ[ŋO%6?dx=}i\LDĔ@ɬD\ 7C$\p/?:뚦jW+Se ,F-4i԰ E l`Se՚%X9VߙfP)M)`|i̶#[㜾FU"}@nCS9D<<# Og-sƉ-5dѨSw)k6{h9. փΣʼ,$_!׸@bͺB ӍauAw 4nqB3o%sYBX#xk"cD+{ mF88W8ycV5=7ͳ *uJ~ ۷@&YߢaO2 TFDTgJu4F]Z]m& F+J1p"JR t^̒*"?p,J'[`:'0r8oY pUIYm5u (Qð̏Iɰd?z(ݐ:-w?[ժuwvBd_:Z)m f]pJRMuZ{pOj+8Y9QWFِvn[nQ',> / Rw/gǶf1eW.e@x*G|/8RdS爜+~M*;/v(H V<{'jηdO}UP82xmOӥ.$_Bk#C==jO@U\o Pyr%l0k('9+dّB9c]HDrc7FdHO'W/\K֠!XMk㼣}2ݛkQ{+>1 _,\TV~l#L2Yz7Vr9e qӣв@ *:v|x։ҍ22܊?-N ڦ:5gJCr#\/`$j10QYǪ"D&AL! r͕IDPt| lZjpPS"6ޕ!x_4-ᇭ;?.^QÁ%&(CL}g!c QypQ{9&xp4'-;=U@[*_+\tς 6FǗUF[;[ן_* :J&Jp4Bʘq6h)WH3P%UEdپPԄ.^VU_= ksDʹ}i$Ml.|Ʋ?bѱRRYה C2xJu1aߐ5 u_[ź^3x$avM&zA&Sܝ\C$#VobžxfQBsH˜Jځ.^-y/4 ڄkq[}`cAIUbI`Ձ>Weg j S8b=|iiI= PL[\%7gS9^">6G2^xO˃@MAm[nm*f )m {۳ UAO;^dW+T+3AGy,-dhHQהW[* CnhwVlŮ`lEvV9H٭7JNvr *,+LȞbQQZ% V+]d7zdVpXziXWoz/lhJY~O*f'܋;i?sd,N,Nh~3=7ax){ͷ8^Grz=fx$/2޿+{/m~`T)~~{^E06hΛˁXcu!Ld^f50&Eh\j{"x3$"6Su ѳ݆lR FV{ dE%/[.4㷼 z2\؂?X=uؗ_G84ƺTؘ#vsW1IEyLW "ͫL ^(#O9L/nI,6]m+Pi9)+桽 "ƅg;.k%Dyy]a!8' +q^=."3H0yD.SXyf7iHF> jX̓Sc' (M<^CUJ>Y&372t+/N('ad$ğ# ; ࣰ&7zֺ6:%kNКF;F=Y);z]wJ{+ uX Z^4ܡȻvY`GRbfK.kc-{ q@룖RQP;e]}Dm ?]#1?>i);#óhn6*?nhyG`4.eh~0E$I M lČ88;zfF,WOp25o\iv|v7jUcmx4 61ͣczY= j|hO\d&u٦R GN ]W>ޞWhf 㤙Z ,j ܠܸW#V<njUwᔊ'uDu &jfA{߳'/H<}(71?xx+avBU>ؽ-3A%*PO66QQRMqOZ_p'WNƯ%ýU/ _$ Y{T!RyjEՠC~Av@HHr5y[݇6lQ[jdAڮj72D*nۺ]MIXw5T-7 whbCʴVJw*)yIT2XnQsM e{UmW,-*S$ ^$8v6S=?2cr{  fYwzޣu4eaEʶ J$s^k#,Lh?A+'tm*f?7Rb*"xN<%x40DbM!%TkZ32Dڳ, l+OҺUX NrNx6N̔Uyv \M{ 'ր:Tgh€] EWM_8>>Dasz:*+-s3)w?HI2tYSP?k8Y%C0 캳ޫ5F.9w,T[cB+(YB/vYmrjʵA; R_TWf$":; \fJ:c3Bg1IT./ʵK{$eΞ ehЪK|GyzFAz}Ry!^qy?[W0[ *1^IiD0hoB!uW9bKӴM63G&s*l[Ja-yZהW>|"K}k(xsƹ,'VMFFyE6 Ӟ{z9ӈg]DХR3~%5M"V *L5<;[Wģ6.T5gU;X-B]*آN_Q3Go9H`S xo{-}+uQA\1SeCDrHSzTƜD'Ŀ]r7*ZS,.uD>ɾI\0yc~R41gZaD/uniZs7bqUy=6Pʯe:3.wxqsb˟Mݜ((֊Z1fn{(9V\gaXoG£ :Eqɨ)E=8%};PWٻg[Bj*z/=JAa(i37wH +5Txs*H6D~gr0ߊ%u62Quk8@jiU֑M ߖ^+~O.60N](x1IY[^ukxR_eL*lS:𺭃Z}{&@Swjl1[w'< r+ܚ/-Cb Ip2jzErx ;(hNnղe1/Zؒ$к|Um)&]b /%=3Q[}I1ܞsxt=OGZ;ZnBvpXzO5i9<FT5[d;|n9&{̗ş+ez* !8SO$"|q@7vId4;[]b7_-w{ȇmfOB lB _˜D!VF+~Sd?aId5*Ck;2  pD(bb:l@Ɯ3[[4`$y)]*BZGǯ@젪^chE(ٺ/_0BܔQӭNlHF[7ya؀'9^xes9KqC}71pΦD'OagDp4a_jur. v7pw7dֈϟC~EFlKexsȷ )tTl c#D򕎉!4]_~ՕQ"UY2(ryU&‘E^gX聭2mN^32g\!zsmK-Aэ-p @pmwvG . \)r6_!bVg<ޘUch[H'6S MSq-p3B-qk.gwɃOdCB$-޸CjVajnjv0K"}pANG~`</YrcP1Ey~BV{ I1`Lsw8nb|WvhVCfZCo`a~{,)4ƿMQ84PM秾ր.ʬt;$P"1/Г7u/jt\bB5 QAv $2~"cQϛ>M;)&1 $6߰@_ ^?7~=sf!;3r 9#|䳒n>"Q3Pu|yrwA›M _KSZNR̺v\\b7em,"Zt \ff{#AlTlpcy6"CV,9~ __~bfS+cQ^P^C i9bF_E!g`4n^&yN||ѝ0LbVqyCK0ٲ̎靰U׾\N`"?C_zqU?!݋f.ӥ_%IP/JLĪV/#4m]6!`t(F/`N֠FMa H ;R &oThB\LFX2̨ɚ ] YymW=w >9aܻ maừk3dm3чftk32֊ s7֨'.A-T]a S_"F$xEUh;I܊Ԧ Ix_خ ^t4oLsӜl6 M9أ +:#scɥ+­5~sIÑm}`&]E'g/39ױAZFQBל{i/&6R3т5Q#a߀JAjd h -ws;&1RzžOVxNIZN {oZxUT.䍎J#.=uaJɵcXeGju~|3G TkK [xbI;ԧ3>yOK j ؜s赁v1?"biNߏ[ݎ[c mJdѝߝUW q5ӕcZףRB'X _UupNC3@OP=Hq\'U[e#(,ɂw"D͒ F~wO~Zm^;FtT`ݦPvd$p0Յtik]wf&2mEOo0q@CaPX }¢x }" iY:@p凤ge[bD6pԳuH QO<20cc8.)mGfËpy=穱Bo4$XPی:tʵ#L |C?/vȋΜiF%;bJ_<*ߟ[F5[V~ݜQ3UCWqXȖdHÞaEčЯQ=G.Cq@. Ǟ3|7SƓ6WX}mmI=!Y_z)JE\ O|\^Ulb~RoJKYؿu,5"E3AiTXU8&(⼆p:eBVQdP*-sc<0S*K>k>`p3$|I *c7;8S}h>ElGއKnm]x|0Wޱ#(%%T'#.R|ސw)+n1}VnWnA(I7(ӘYljtbn˴o!^)G9{*_FHtY;3PYQ~&֬VTq|R|udSJ兀Ⱥ ;X*]c)5ΜKۜoZX\ Wx%B;rmZ #@nȰh?qO%MuǺR*\+"WBڠ`F W!(Z)b^8ІI|Ƚ`N¡K/ED,O*)(OUR7\+>*Fzĩ-r(%bWXVΒwʺSj7P{ISX跱e f!x 6W "m!i9"}:Zčy"ZUI}ZvkkA?u Ɣx]N% NHH yc T:!On'O%ԞPL,5·pT 5d8 ?p ̩n-_j\L0mtLd1PVRU)glHs2 q0Z?Ә6.g.>y_äcc!IPkTBo0Ouݞ5:9d*y Q$4x©i#PrUjV^m9;;ʕ{R&_($bucj[ml$q{xOb679W ;j/Oz_t~dax*DM1 ZÀ)%u\UŬ:t8c IWv."$3WԵP6%.z!Q$oOގhfD1Xи#=Bxw`1檏?r=7]`%< g{ljWn|{ }:v~!A"IF'{p8U뇐NcŘ9_Ϯمݘs+L0%' `Ͳ* 3㳅ۺfTuX ټ+j!`bcB(pR:\0JC8YR,xnPԢ-[Od%F9z[,laU}8ϘL๏W~c"o/'-;-|r#^6;wŲs ՕIטqzծaB`.C11(7Gm7"Jz5-z^S7䏞#<֑n~_eupjLze66#Ow:iym-EM7oN K_(ֈr˸TY7Smr=;lK<^nUv<[~ U8!LS Tj0pT8iE ' %N㰘6Y*b!Z-͝fF%+-WZ@0}fhe'xhvgz^u;Sbң|Sy%nif>)>wu&PHSJ`LLXFEs?OZ&^: \;`g39;î2e=%֟7*E=&ƼO om:~I;`jB'c9Dn nL|j/BTq4@ gGY~M&(p}o581l]'lgc^J( <7Rg#{h Vd  ,k~*李l! )SWYZI@ƣ1\F+;v1o²k ]gƧW1]˞0zV #'A'tP'\rْ)L$@:{0KaJP9HdToHh<6 =|5UZc32y.K(69lBbPxqc1u& RTO[ {wd^nqT 97Ԉ#Ӕ秷WD- &k(\f/C.=0LO}^%1*c4 D=ҝFAm(G#E)<\)*v';{ueC^jԶ# PcLޞG9Yx틦ŝ- "ߥuKiW-rQOјmQ#=]t:H+yGҫ(W* @G]كxRꖡ*L՞4 }sCDp7E! {-/+*bcUAe$ ,z`JX>bazjҜKiOP*̠y!+ 4z)e[/Ze%mfOܯ]-{ sk8 n|ÇZ`qwV'ґ6Ca$v1x}OVsYV41 G 9zzLORWJ3"{x@NhxNΥ 0ȩrOE9ݱק)n.!14S3*NBOPeJX|ZDvN0:27 t5;:-0F2&$'9L~8ԸS4gLh9H! "tp50y.-=ݏiiрpO&4Uv_x^7qKP\nV{?oX*#Pya\BR+WΘ#ب !%ȴ@Vq\=R75򝀃pɻBF^6O2ՏwUtzҏxVtq8$CsV8w{9Tm񭷇K4ȼߗZ1p~tMeY1I6< brY/AΝmgA&O(͋01ͥbpD˖Q/ 2)&|zULVu=$VfaXb+__N^oPլ*ZI4!VD4?޶0tq[more?vJaRJ`km^ӝKi?? FYdGo.}O`3Tװf]:ׄ[!͉zlnh'#δFXV,_RY{<|M+L9k{h#ZoqNe$!AKE ܊ nZusW ^Z*=+& F+`w~3^6LH`-OżYB&Ex[Tv63PI[=_#jp6J0[w-,lN^C=8{U2oER !QbpXO ila*x6,Mk 3-yJZɫb|r\ 0.y/6r+!N*2Sx]. #zZMNwU|@Вi ] ex[""R%2WjSp95(ք>+\t!jf`/2&Nܷ<~lEM2>k"nXwGj `L+g4*du:J\pWANtN$"t'IWb9xa5ЉP*nB?[n5[h]mIg'[Rq;Pzt|#׫0N!3|&܇!ȍtv.5NCg5U&ruY)g]^K"RU+q*Jlk!e} >O6XE\˙s-QfiGמD^PH'wlJu?x2tlA!q|5 ɻpoZ["v6*%w۳QڧC8+xp8: nT"e^<cs L>6פߎԑVwJ e[/D6Q{5mN2Nx?5u1; Ί5s);_̍Jof̒ ᵖ D4^'[c ZTZq=l3.wێpBa)\e CK3u{gW”L?@|b2Jggc$aPtY@}h" R)Ĉ/2VQÅ*Cdۘfyx{β#04"7ɠיU~^K˖#.\,PT*6YR͟; /}`xk=Mq| QaȮTp+J8So詒Mg#nb n^2\9e'M3cujYp_)5&ANΝGGϸݡI}K~t_T:u׺I3 2xF^"v9Wx|^"NN䵻oB2{z}+k`Dh z0 O/:&[MRt=KTe;URvU^plYڣaZR[# mpSC$i`)D9lbQ#9t0S._?KFQc*_(k:˟_MCLj+)|S99sv)>ݭ_/%ɸ7Yv}aCw 3S=n5к[gz_:jڿJqZ#Fx7B'F(!D)zaFK^[]j2/).<~GVWp(ZWFٷw}K'S@wY+Zh *c)nZFZx_QB@Ea lh{]ѝEK<>*L{H5l <;]&=2ߒ--Ye;+bhXuE[nS(`Nrsx^}aK;KXbx avl}Фj5Mi>&^s:s"6YU;u(fZ]Ixb\_N ύH[~bEp8g+ %Jt*fwu'n, ⏈^w&O9a/t5I҃AUW>&y jڦJZ!%ef_:G6'Ar/v_!Ku9vX9%ѧb2oBh{WRvavÍ7de4 ,B'-> Q9!9$t8B7l%vҨl&Ufֿ9,Kڹo"]8="؎E>{14m\RWy'14}5 |U~7e3_FPac=u>d2a 0}'85K/+v2MYc=MVÑ)Eرg UԿR*C*Pc>niaqbp~6 @G 6[vxnBRׅRX>A%Y0GVr,21i%; Z1/+mJ$$DD[[ʟYxIp>!dᴥTFtzqַ vmnE& Q<^܇"*8.#_JCn_H/RD L]B40M>&.^ͯ>vfV;r'}sK]bٜ }u{PcMZg_y:r %#>L.CIVV\o5Q[h,[&jͷj6\xɧdjp 0b(wIjy2AZ 'ea|AHC[U<4R>6J9Ho_zE%kIiE6Y(mȧ5"bL(9S6Agtŏϓ&.kDO= fݺJaY4CU`47 8\H%?35Fs(u1鎖Y`Þ=ʍ?jf x.t dJm[j:F׈BS(OtNXʄ`i^>:xq܉qrwCZhxT'L}㙣/1w&,g)5;);wsk<(>,΁ "Erwrl@WM1%$:F#'37Jߏq #z܇Cc_I;x֠Q ͸dq%S r$Jļv߁ ;?uAرh*GuxAӻ yDO0.ācmS?mq;&J3 2XCUЇ:W9-Sju4J`5؈}z;hWmA2ru k`&@> v*߯Qðm@Աhϑ`IGM,ʵfHc>}ˁ'TgАEjU]v7Nq2zPAA X8z屷Kedj%[No9GC j` `Q_G2qҾj/lō-IG;C}_C+vX G]:Jۓ #ې =2S>aN(pc~B="o$mNׂU Ynv'H vg?VO: }wgQ@_Kgv4rg̲-)'ugNԯ-s!:S<)b!?lmP@BʝU!/> ^W5n̮6'AuJBOf *;ig4z} ʞkbC; (LS뿼_^?܎ rÌ3F-doSh߮5n`UMyq!Ep#Fڛ 9sS#3d.:o)ptj*50G錙_!Ƚi]8 GB@VT+]GF= a5$]nA[7kkZP!T-;LejgMPYsH-BM#&IY⢡ #["ilӺX. k U_^쒍iׇiyD]a?7 i慮,L;wkZNX;hN-"qÇsA}AC`*m۠"Ҿ$T{3 /5Da `=_=?aBfQM"M6ۖrN*{lNj˯ɈfHZC oDW;e#<W|څZDY9 x9f/6vA_H.T }DʕҲ];昇O0]Tai~ _vQ̏DuU8Xxhs>]]ѹ A䈨hG7׏Fu9{&LHޚr|h9hCA;z/k fwUG\Wb2Uƒ+3wy1ܢѥ-f=A0}ktCwlCV u9j3`M.[͗Uϱewo(#FJhJK=Ty @ `n'M5 *pi qPj@aD& j ht/hI*OB1O1M]9CA;U̓Z`UX^gmQ*^&EsiӜY ݄VSl҂,\hlү\DG3](\"gÖO&JAJ'K>Ճ͛\r`ѕ9b.}bzzPa5t?<ܑfܽMUJ t`_1gc6DAloFk<,ܼ7<- ˿ ¾fE'OW5,FT|Q0Dάa6I e5Z\>[K߈Mʨ-1g0ki0+}-ɭ)zBO ueYཛbVXkգ79r./yَpffZoި)K^H1ãw8XK.Zh.8e-4cN@mOQP"1l/jEW7e?qᴘqb}7䨇WQ{ԕ(J>? xwI] hxk>Dw޵ʼn H+oT79':6 nτyx ^mĮWYMFD +}ba09K؃D{D͎ HsnROaNJu[+qծk'_Ԝ2*VcF2sb;pyP ,ޱ6`x]R82AQ3 %dMpAH鶫7`TwsȖM#ǯB+=($uYRjb$ِ\ ]~ap@C8GAcl(fj^QhLjՓy}h#J#7C6Χk>E-͌O2DA|;Ȯ:=ӟ{\<4>邷1sw~7g݇S!MozVb' YIcD)7NH .khbN-ǻP)YÐLS )KqAwZ4 a0A)@wX9سGX7I=6>.?*!Xx[U3mbDî4!4+}n0 ^WvȲġ;M084&>9>b="<:kK,&V1W (y 3MZ($ڿ`X0ArT!g](*RLb 9.F&bQTǰWA–I^y 6u-K(4*I5k[w3YPdF,ZK{̷˅:U \GV#g01pYq! |ؕNRnER惿1#)T l'A傒o i^#Q³ 'Ja:/ęM)7d <\Щ#HDQeRMV!y3BE,4cRs ViL)FHi [1]`fS}5M*Fq{=S9ԧ_%j_d0b"-71PO6kG,> %Q979S7*X&+MqԵL*k3Nsi n'G [rJq:kl`hLn`<8;D<ofs{pݤjlK)%tnTɞxר~,,""{&54ZAɉ7 0>u ھVsJ&Hb,v0IVM2|u"G]ws%Bmmmp4.?@̆ +=c=ߙ$jVtՉ((2]װ `#Gpq>S` #ޑ{(/vojkݩzZob[|zүhzGlӖ)ARx