login_defs-4.8.1-150400.10.12.1 >  A d *p9|='ˍ^[,x2)x^yG B `ݸ Nud>qt˷*o Qך.($U򺣈9C_!a֧sUVp(c^I_ױH~I AYsXaP,6{[)hq#2e1 Ӷ<Π~'Qn5;ҝ-"fEXDFƎ,7fo@^T@<=mRM4,k,Zb77d50d6df001986c4e6821029a29248f99eaf256174dd668dee4cca1fc1f165861c9f17dc061cc68d24220e7043ef75904d9c68q0d *p9|; 0q~u%S cw?p?A?Ad  " @ .:agn    j lt~,(8696:V6==F=G=H=I=X=Y>\><]>D^>_b>zc?#d?e?f?l?u?v?z@U@eANAXA\AbAClogin_defs4.8.1150400.10.12.1login.defs configuration fileThis package contains the default login.defs configuration file as used by util-linux, pam and shadow.d h01-ch5aCSUSE Linux Enterprise 15SUSE LLC BSD-3-Clause AND GPL-2.0-or-laterhttps://www.suse.com/System/Basehttps://github.com/shadow-maint/shadowlinuxnoarchtest -f /etc/login.defs.rpmsave && mv -v /etc/login.defs.rpmsave /etc/login.defs.rpmsave.old ||:'d d 7a6cdc2ecb8acf969dd0bb1d4d2d6c9af7ad24c79669615bda4c5bf0481be61904ad0f765fefc657cac5d4ffb41790f38aa5ed7e8b52639f70553ddc41edcb8frootrootrootrootshadow-4.8.1-150400.10.12.1.src.rpmconfig(login_defs)login_defslogin_defs-support-for-pamlogin_defs-support-for-util-linux     /bin/sh/bin/shconfig(login_defs)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)4.8.1-150400.10.12.13.0.4-14.6.0-14.0-15.2-14.14.3d dD@d d>@cwsaa`@` l_@_@__P_~@_Wr@^Ǿ^*@^%@^ P@]@](]m@]Z@]:@]9]3@]1]@\\\8\HW@[ٙ@Zz@ZZZYYY@YdYo@Yo@Y@Y9<@Y"X@X@XW;WM|WL+@W=V@UK@mvetter@suse.commvetter@suse.commvetter@suse.commvetter@suse.comfstrba@suse.comsbrabec@suse.comsbrabec@suse.comsbrabec@suse.comkukuk@suse.comfvogt@suse.comwerner@suse.dewerner@suse.dewerner@suse.desbrabec@suse.comsbrabec@suse.comfvogt@suse.commvetter@suse.commvetter@suse.commvetter@suse.commvetter@suse.comkukuk@suse.demvetter@suse.comkukuk@suse.desbrabec@suse.comkukuk@suse.desbrabec@suse.comsbrabec@suse.commvetter@suse.commpluskal@suse.comlnussel@suse.desbrabec@suse.comadam.majer@suse.devrothberg@suse.commvetter@suse.comfvogt@suse.comkbabioch@suse.commvetter@suse.comadam.majer@suse.deschwab@suse.demvetter@suse.commvetter@suse.commvetter@suse.commvetter@suse.comkukuk@suse.deadam.majer@suse.dejosef.moellers@suse.commeissner@suse.commvetter@suse.commvetter@suse.commvetter@suse.commvetter@suse.comchristian.brauner@mailbox.orgfvogt@suse.comjkeil@suse.de- bsc#1214806 (CVE-2023-4641): Fix potential password leak - Add shadow-CVE-2023-4641.patch- bsc#1213189: Change lock mechanism to file locking to prevent lock files after power interruptions - Add shadow-4.8.1-lock-mechanism.patch- bsc#1206627: Add --prefix support to passwd, chpasswd and chage Needed for YaST - Add shadow-4.8.1-add-prefix-passwd-chpasswd-chage.patch- bsc#1210507 (CVE-2023-29383): Check for control characters - Add shadow-CVE-2023-29383.patch- Added patch: * shadow-4.8.1-AUDIT_NO_ID.patch + fix bsc#1205502: useradd audit event user id field cannot be interpreted- The legacy code does not support /etc/login.defs.d used by YaST. Enable libeconf to read it (bsc#1192954).- shadow-util-linux.patch: * Add support for LOGIN_KEEP_USERNAME from util-linux >= 2.37. - Refresh shadow-login_defs-suse.patch.- Do not require libeconf-devel on products without /usr/etc.- Split login.defs configuration file into own sub-package, which allows to install util-linux or pam on small embedded/edge systems or container without the need to pull in the full shadow suite.- Amend patches/useradd-userkeleton.patch to also write into existing directories and prefer files from /etc- Add patch useradd-userkeleton.patch to extend original C code of useradd to handle /usr/etc/skel (boo#1173321) - Remove /usr/etc/skel support in useradd.local script- Change again useradd.local script to let it work even for system accounts and work together with SELinux (bsc#1178296) - Change patch useradd-script.patch to support the four arguments used by the useradd.local script (bsc#1178296)- Add support for /usr/etc/skel to useradd.local script (boo#1173321)- shadow-login_defs-check.sh: Fix the regexp to get a real variable list (boo#1164274).- login.defs: Add support for new util-linux-2.36 login variable MOTD_FIRSTONLY (shadow-util-linux.patch). - shadow-login_defs-comments.patch: Remove duplicated LASTLOG_UID_MAX. - shadow-login_defs-check.sh: Update for new build system. - shadow-util-linux.patch: Restore lost chunk: SYSLOG_SU_ENAB is not used in SUSE Linux. - Refresh shadow-login_defs-suse.patch and shadow-login_defs-comments.patch.- Use pure #!/bin/sh in: * useradd.local * userdel-post.local * userdel-pre.local- Update to 4.8.1: * selinux: include stdio * man: don't suggest making groupmems user-writeable * Makefile: bail out on error in for loops * Adding logging of SSH_ORIGINAL_COMMAND to nologin * add new HOME_MODE login.defs option * Add tty logging to useradd * Useradd: make non-executable shell check only a warning * Update Dutch translation * user_busy: Do not mistake a regular user process for a namespaced one * Revert "Honor --sbindir and --bindir for binary installation" - Remove shadow-4.8-shell-check.patch: included - Remove shadow-4.8-selinux-include.patch: upstreamed- Set 0755 for chpasswd, groupadd, groupdel, groupmod, newusers, useradd, userdel, usermod explicitly.- bsc#1160729: Make valid shell check only a warning * Add shadow-4.8-shell-check.patch- Update to 4.8: * Initial optional bcrypt support. * Make build/install of 'su' optional. * Fix for vipw not resuming correctly when suspended * Sync password field descriptions in manpages * Check for valid shell argument in useradd * Allow translation of new strings through POTFILES.in * Migrate to itstool for translations * Migrate to new SELinux api * Support --enable-vendordir * pwck: Only check homedir if set and not a system user * Support nonstandard usernames * sget{pw,gr}ent: check for data at EOL * Add YYY-MM-DD support in chage * Fix failing chmod calls for suidubins * Fix --sbindir and --bindir for binary installations * Fix LASTLOG_UID_MAX in login.defs * Fix configure error with dash - Remove because upstreamed: * libeconf.patch * shadow-usermod-variable.patch - Rebase: * shadow-login_defs-unused-by-pam.patch * chkname-regex.patch * shadow-util-linux.patch * shadow-login_defs-comments.patch - Add shadow-4.8-selinux-include.patch See https://github.com/shadow-maint/shadow/pull/200- libeconf.patch: Add support for libeconf and /usr/etc for login.defs. - Move first configuration files and pam config files to /usr/etc- bsc#1144060: Add pam_keyinit.so to /etc/pam.d configuration files to support kernel keyring feature - Update pamd.tar.bz2 with pam configuration files accordingly- encryption_method_nis.patch: drop, DES should really not be used anymore anywhere, even with NIS - shadow-login_defs-suse.patch: remove encryption NIS entry- Fix incorrect variable name in usermod (shadow-usermod-variable.patch). - shadow-login_defs-comments.patch: * Drop SHA_CRYPT_*_ROUNDS that are in the upstream login.defs. * Add missing LASTLOG_UID_MAX. * Refresh shadow-login_defs-suse.patch. - Port shadow-login_defs-check.sh to match the current spec file and login.defs.- Provide "useradd_or_adduser_dep" for sysuser-shadow- shadow-login_defs-suse.patch: Set ALWAYS_SET_PATH default to "yes" (bsc#353876#c7).- Fix comment about patch in spec file- Update to 4.7: * Spawn: don't loop forever on ECHILD * Do not fail locking if there is a stale lockfile (Tomas Mraz) * Use lckpwdf if prefix not set (Tomas Mraz) * Build: check correct DocBook version (Jan Tojnar) * Usermod: Print 'no changes' to stdout, not stderr (Serge Hallyn) * Add support for btrfs subvolumes for home (Adam Majer) * Fix chpasswd long line handling (Nathan Ruiz) * Use secure_getenv for gettime (Chris Lamb) * Make sp_lstchg reproducible (Chris Lamb) * Do not crash commonio_close if db file is not open (Tomas Mraz) * Don't flush nscd and sssd cache in read-only mode (Charlie Vuillemez) * French manpage update (Alban VIDAL) * Fix manpage defaults for SUB_UID/GID_COUNT (Tomas Mraz) * Sync po files from shadow.pot (Alban VIDAL) * Usermod: guard against unsafe chown of homedir contents (Tomas Mraz) * Add LASTLOG_UID_MAX to login.defs (Tomas Mraz) * new[ug]idmap file capabilities support (Giuseppe Scrivano and Christian Brauner) * Fix segfault in useradd (bsc#1141113, Tomas Mraz) * Coverity issues (Tomas Mraz) * Flush sssd caches (Jakub Hrozek) * Log UID in nologin (Vladimir Ivanov) * run pam_getenvlist after setup_env in su.c (Michael Vogt) * Support systems with only utmpx (A. Wilcox) * Fix unguarded ENABLE_SUBIDS code (Jan Chren (rindeal)) * Update po/zh_CN translation (Lion Yang) * Create parent dirs for useradd -m (Michael Vetter) * Prevent usermod segv * Fix usermod crash (fariouche) - Remove btrfs-subvolumes.patch (fate#316134): upstreamed: https://github.com/shadow-maint/shadow/pull/149 - Remove useradd-mkdirs.patch (bsc#865563): upstreamed https://github.com/shadow-maint/shadow/pull/112 - Remove shadow-4.6.0-fix-usermod-prefix-crash.patch upstreamed https://github.com/shadow-maint/shadow/issues/110 - Remove shadow-4.6-bsc1141113-useradd-segfault.patch (SLE15 SP3 and openSUSE Leap 15.3 only) upstreamed https://github.com/shadow-maint/shadow/issues/125 - Rebase userdel-script.patch - Rebase useradd-script.patch - Rebase shadow-util-linux.patch- Make building more verbose - Use spec-cleaner- don't specify MOTD_FILE in login.defs but fall back to built in defaults of login (boo#1133929)- Split shadow-login_defs.patch hunks to its logical components (bsc#1121197): * shadow-login_defs-unused-by-pam.patch * shadow-login_defs-comments.patch * shadow-util-linux.patch * shadow-login_defs-suse.patch * Move appropriate hunks to chkname-regex.patch and encryption_method_nis.patch * Remove GROUPADD_CMD that is not supported (bsc#1121197#c14). - Split getdef-new-defs.patch hunks to its logical components (bsc#1121197): * encryption_method_nis.patch * chkname-regex.patch * shadow-util-linux.patch Add support for login: ALWAYS_SET_PATH and LOGIN_PLAIN_PROMPT. * useradd-script.patch, userdel-script.patch * Remove duplicated definitions of MOTD_FILE and ENV_PATH. - Add shadow-login_defs-unused-check.sh to allow verification of login.defs variable usage (bsc#1121197). - Add virtual symbols for login.defs compatibility (bsc#1121197).- btrfs-subvolumes.patch: implement support for creating user home directories on btrfs subvolumes (fate#316134)- Add empty /etc/sub{u,g}id files. useradd and usermod add entries for users only when those files exist. Having those entries is a requirement to create user namespaces, for instance, when running podman as a non-root user.- Update to 4.6: * Newgrp: avoid unnecessary lookups * Make language less binary * Add error when turning off man switch * Spelling fixes * Make userdel work with -R * newgidmap: enforce setgroups=deny if self-mapping a group * Norwegian bokmål translation * pwck: prevent crash by not passing O_CREAT * WITH_TCB fixes from Mandriva * Fix pwconv and grpconv entry skips * Fix -- slurping in su * add --prefix option - Remove CVE-2018-7169.patch: upstreamed - Remove shadow-4.1.5.1-pam_group.patch: upstreamed - Update userdel-script.patch: change due to prefix - Update useradd-mkdirs.patch: change due to prefix Additionally changed in that patch (bsc#1106914): * Test for strdup() failure * Directory to 0755 instead 0777 - Add shadow-4.6.0-fix-usermod-prefix-crash.patch: Fixes crash in usermod when called with --prefix. See https://github.com/shadow-maint/shadow/issues/110- Use %license (boo#1082318)- Added CVE-2018-7169.patch: Fixed an privilege escalation in newgidmap, which allowed an unprivileged user to be placed in a user namespace where setgroups(2) is allowed. (CVE-2018-7169 bsc#1081294)- bsc#1061838: Revert: Requires: group(mail) Introduced circular dependency- Revert accidentalied prerequisites. Use PreReq for permissions- Prequire group(shadow), group(root), user(root)- bsc#1061838: Add Requires for group(mail)- boo#1048645: Set suid bit for newuidmap and newgimap- Revert the changes for bsc#1023895 back Pulls in too many deps into ring0. Next version of shadow plans to have no conditional man pages.- run spec-cleaner - bsc#1023895: man page contained invalid options because they depend on compile flags and we shipped pre built ones. New BuildRequires: docbook-xsl-stylesheets docbook_4 xml2po xsltproc- Adjust requires (we need user/group root instead of aaa_base now)- New upstream version 4.5 - Refreshed patches: * shadow-login_defs.patch * chkname-regex.patch * getdef-new-defs.patch * useradd-mkdirs.patch - Upstreamed patches: * shadow-4.1.5.1-manfix.patch * shadow-4.1.5.1-errmsg.patch * shadow-4.1.5.1-backup-mode.patch * shadow-4.1.5.1-audit-owner.patch * shadow-4.2.1-defs-chroot.patch * shadow-4.2.1-merge-group.patch * Fix-user-busy-errors-at-userdel.patch * useradd-clear-tallylog.patch - shadow-4.1.5.1-pam_group.patch dynamically added users via pam_group are not listed in groups databases but are still valid - shadow.keyring: update keyring with current maintainer's keyid only - Serge Hallyn 'F1D08DB778185BF784002DFFE9FEEA06A85E3F9D' - disable_new_audit_function.patch: Disable newer libaudit functionality for older distributions- useradd: call external program "/sbin/pam_tally2" to reset failed login counter in "/var/log/tallylog" (bsc#980486, useradd-clear-tallylog.patch)- add keyring, three public keys from https://pkg-shadow.alioth.debian.org/download.php- bsc#1002975: Use permissions according to permissions package and dont try to manipulate them in %files section.- boo#994486: Include shadow.5 manpage Previously this was provided by man-pages package in the man-pages-addons tarball which got removed later on.- Add package dependency for aaa_base, fixing bnc#899409 (was done by tbehrens@suse.com but not submitted to Factory)- shadow 4.2.1 requested by fate#320422 - bsc#979069: Dont include shadow-4.1.5.1-bug935203-manpage.patch - Dont set SUID bit yet. Once bsc#979282 is through, which will adapt the permissions package, we can enable the SUID bits. Remove the files used to circumvent the check. - Remove: * shadow-rpmlintrc * shadow-subids * shadow-subids.easy * shadow-subids.secure * shadow-subids.paranoid- Update to shadow-4.2.1: - add support for subuids/subgids via newuidmap/newgidmap - Rename chkname-regex.diff to chkname-regex.patch - Rename encryption_method_nis.diff to encryption_method_nis.patch - Rename getdef-new-defs.diff to getdef-new-defs.patch - Rename shadow-login_defs.diff to shadow-login_defs.patch - Rename userdel-scripts.diff to userdel-script.patch - Rename useradd-script.diff to useradd-script.patch - Rename useradd-default.diff to useradd-default.patch - Rename useradd-mkdirs.diff to useradd-mkdirs.patch - Add fixes from Red Hat/Fedora: - shadow-4.1.5.1-audit-owner.patch.patch: - log owner changes for home directory - shadow-4.1.5.1-userdel-helpfix.patch.patch: - give a hint about what happens when you force the removal of a user - shadow-4.2.1-defs-chroot.patch.patch: - initialize uid_t uid_min and uid_t uid_max not before we need them - shadow-4.2.1-merge-group.patch.patch: - simplify by using a single call to snprintf() - Add upstream fix - Fix-user-busy-errors-at-userdel.patch: - call sub_uid_close()- Moved call from %verifyscript into %post: * Caused call to %service_add_post shadow.service shadow.timer during rpm -qV shadow- Add systemd unit files to continuously check password & groupfile integrity * Idea from Arch Linux * pending request to systemd-presets-branding-openSUSE to enable by default/bin/shh01-ch5a 16941734554.8.1-150400.10.12.14.8.1-150400.10.12.11.3.12.37login.defslogin.defs.5.gz/etc//usr/share/man/man5/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:30601/SUSE_SLE-15-SP4_Update/577a8b9589ac138e04390ed3cb62742b-shadow.SUSE_SLE-15-SP4_Updatecpioxz5x86_64-suse-linuxAlgol 68 source, ASCII texttroff or preprocessor input, ASCII text, with very long lines (gzip compressed data, max compression, from Unix).![?Xj# rpmsave file can be created by # - change of owning package (SLE15 SP2->SP3, Leap 15.2->15.3) # - Migration to /usr/etc (after SLE15 and Leap 15) test -f /etc/login.defs.rpmsave && mv -v /etc/login.defs.rpmsave /etc/login.defs ||:/bin/shutf-8ac48f37b16257c5f450f8daf77ea5a2592c3176a55c84dc364360e35c9d45919?7zXZ !t/E7+ ] crv(vX0–K*Ӭ+գy(PI)Z8<)Y̺Ճ8(6P* 1U  C ~UC]sȺqP֧D&Q&>y]|iFtɶMfSq$"N9:9 RVDk8lU'Y̿ҜP{xvD=Վ!a fI4!ZYZ4HxyS^e>^p]ǓS|L0=TH.}^ܥBeZl՘ަ["nNTŸ!~,T$ʞJa Z*w(l6W9Aἥi<$%XޙZgX{{-9smY̒G:a *{/+s3DP~K/q<|^F$qTB_OS-o#۫mI$.(Bue] OyHâ/ BbM| SH`'kRE̎)&kγY$ 1\\w8^c@% DJIT^@[V;fnqW>2áBIAttpY-d~]Xizpt8`p* "9 FCZ֒.j½(7ժ '3X @fwCY/I3ı-5@p] ?JvJo[ ܽߵm-J em#\kR)Bx TL$g|x={{`n#ϼ'cU]w3f&`VP i^z ɮ}6}>#8-.);_.k<#{ޔmcNq1bT/Cz 1 xϚ?JA 2F**L]x7b_%(j{hThi$>ɕ J̎EBb[S_ 'XSIuir3uL9^X"am,fRs 8Q6LSq ƶȞp&nvd"Rk&1똝j>/X'@!ʶm^w%ֱӭIXm!.뼉/ x)R2h3Qʤhֳ[?r_/F&7U}7]((Onlj'E9樍8 ޥǀNOӶlQ/ Cn!aL65Y+:7a)mtBl\ƎTS^C*T)8dAߘt?T%Et14d?d*o?!Hg,UUqx1rf͔n5܎ޛ* `8q0OQvlkv8r$9%( #ӏȞj"^CSts6߼"`_??'يb^d)i;A*s)?"UCPUBr]Gt6h B(j@C ad(S}D!t5 t _g4N,Q~/$] #^oߐ]+M,1#SP;MbrA4u8с _8䊪:Lob C?һTM=ء}~@Lsms`Mp 9Ɖ}|.@Ux.d!g'> F|xbXbc-ow?2uR*l9%/Y%L>qƚ~j>oTCY_ Dծ`vCOHm.@Ui\lo㘳1pqz= -KgpAbz/V [%0pĀթȧA,Og>f?"T^f)4&G 41`LC1 gv'ߤ#"c"r2;>NzDf:y{b7\!<η1PHmhk5 W9~ژr`t:2:&nІ- `TGm# ;.1MjӨED&h(AN26dP8|2 Qor+PޓuqAjE{n֐_V+<ᆻwSwF3p!%$IBJd[s d2fQ%RNUl=`We^l{`{2/pg%}5XSTp9+ B IW+788=ԡ#8y=T[`z3,ZU]wD? &Տ…t^;pq'&tαq'3J]=F^UYm%3 AjWnTc ލzJEKE;"mچl\qI~[iUO7DԼ9B߉sINM˃O1Lsd:1sqxi˹k{gѫ/r'f (N9:QSoDm8{ԉBX57䬛@5 ަ: QG)y2&/\ X\̞~%܆jwHsXb\Xv{Kko\TboMsNH,{$uܷl @g#w-n? _/Y00 G#4Ojw|fMU-x`*5#v-r z\Lr5Ιi8yPqUZWZy˦L h˝?xIHku^O8GxD Ig o~Tc lv9)KH:ˀY>[BMdl!4@#vx=ms֗Ucĺ`{S9etz7AN,4 h* M%;kx,QDR0mO漒~wMतĐV24Pte Ӳ54^{}Hr~ˬ'-~¼OR}N݈ IT!Hfծ/sÉ=Rq/޵h*y \ۢc4ߍ\FLiU!k)"hK#aW3iS8L>"{Jz%7tCI{9%Wbzx,xjȧc|0OtdUZ :8e ҍk)Ĥpʭ)'%M5?@4Nm2`߱5Pֺ兗 J9fP(QI ij [ =iU?:,v>-bxw.kNѐ ]^y+d6ԍܑuRJ9 $*@4 3MMY#]!!X ڕ$zNnh,h_u;MfMq6ꩠe 0*Vf^ 49+!JI RcN5vm D qG  bu,wh-x=Rr2gwlFr:U|D〉 Q9JuA( D|;k=MS>5 ׆{ni"YNO*׃_:350 []-aN JH@]e~@I1t+UsLַczdÙ e N;}"6gfTC: 9+i%n-c LAj[3KwdsuߋH8 ,ZbKP-CZ6F#ŰA# E䌁2ʾx2jcC_CzMj屢((Tr e{眐*󳍚MnГ|}JcplPzٕ(nWη{WV[05^ MBeix +]貢: \S*(rk]|EGw} .>ȂEV݄pN Cqsm*4~i_]p/}\;>(n~^dp%agHXatcܼș|1^>»;%G0KB#@inX?\Pzo  EѫO+e30}Gdl8Ũ Va#e2\t\3{iYK`zPv ~cFr~m_5ۉֳ1X$2g*ԩer0xԒ ^[JaCU u u.N3p\zn1WgJ"(_fքaDE/M#x~5OL`2_ԑ~}]z"%VTbb=:J ]Jg3a~l췡"!8e7 -, :U-"G/ ֨_yCJ3WS LĉC盛 ߧQf=4YuFrT$͢aw%N[UƀN { yJzij@udF 3%\j|AܿX,1خ~]Wxyi2iwq \Mɥu-\lbxKAh0Xk5n!כd"X^߁4qM~a(Х!=( V=^bt9QXRaҮx"x79rB29"t c9Em"]rhnv<#S;dd; SZ~mB/+붩bVط9$ri=$![%E| 3=>S(c@,hۏ6X$I"S~yA~/槥XZl(sWL=S9i_*MSL'&#I0<{;Q@ݒ̽+k0@" Cc.V`*SB\΄(̻lmp}Se2"7: ̐>[|ҙ2@䌘Jku\v![X?OS/b+Y6_@E$ۣS-$@~@G Qf!/H!@p#V(5=Jې,O{)~BaYנgc ə&)t.g1#u~'XԍIuJoix:ھ6Sڒ..fz[<=7!3pɨ d7(C➮N/7a>cy+6=8 ҢEوTyFr4&Jv׬r U[N v cxji׾>p#Y?LFҷ =^Ckh.bpDY.Ԡ57;vW@o M@M|r<\ӽ̯68,T[~Hpr(፺ؕۿ9[)*ebplϫ}y(Rxܷ@Oe (:ZXH+_̆^{g~ W<,c"ntp;t[.Q7sF]YֳQت)-u,CkqcwZw *@Ȥ%I6om\T'$z?جᚬ.>.d!/jH}Je'EYJ u)&cBS1Y-Cq؅^(i',>ORg!D<6jX+|iozt]r^_KI9G) u &Vv7 %Gܜã |ttScT XG\XP^qT$ ȽE%~l5=zc+toJ0N + D.IAj7Ɍ WlKEs Dζez,fJ -TlfaQҵWlZB[qr=Lk~ @ˊSKXqCh@2XŞ#kyMrFd[PLB[X)t5t^S{ ez~2\tK&PaTfs5A2;;z[Z%ofw5%mMBIs%:nq4J$> ww44V9wE^`K]hK8)muO/7XۋG ~OKm]XpOIZ\ql͵Ix,{Dzcn?4)Oix&Mg4 U(ŷDBGAŮJW!ۥ-kwqېV 6f)xQlV;&;(*ḙB#mEoC:<$#ҺMa9(߲3+8^ˎ>$_{[vG@S߆/>pY']4u\"tK9Iw|t ;21P.ZsԆPp\ qs@=()%BEC۶BG!K1· ̝ӰHvL%+}d{#gd}YQdmbf$?Bfx !H3=n[^lxVd4Pu݇|c[zTM,ߗ{21S ɤβ<#EO[B1J %C8]apvt27-';EsVH%0ۧ4NjҚbҙ*ofu۵eߚjT=f:Ea+%!&_R M炝t+ \q0:$ӟ 3Agf`xHwvdk  t-hߛkq1`be% `nRWZrjWL߆g N2J [O  3>D2aieBWq+ `a7vj,::n561?LS(=Bi+\= [l Tyŧ v6(SNWW.r,-I|Oǃ{L4fgXv8L sC^$P zŀnSЯt\sZzbգ7^wb ;|FeՠxozXeUe~*,riG2 -3?gkrkIgZ[_ bN׭[ ;m^R%vcaBȷ*a0PE!/@EqN20MWNGdL+bT`b$fU [vNiq#?5Ak'f`ϐf @V`)CTZ栢ւ^E[[eO\6h9'gD3=[u0Hk#hI`ke˛/ɴⓛ߯=&T|EPCz*RO?ZY`CôN3m'1-FQo6=k5h&q2m晃 sO kHzLWߦ }-\tt02ǽR+Rxg6,A|mEf,bdxD&5-,6ڗ%EMkӝM^xDs)\t.!yH\+Atw=~_ܽg<Ƕdf~Kb:FPM8_٣9d`cЃZ 6.BKS˿XAY"VHg S{Q;@%ՐR~ՂE8s:y-,S~IJ<ͯ7uy9ُ̒v?+Fnp1ѥ|SS p6Ym۲ *{y-Wє*6q}ӎv)"#=DnErp*%#2_ȿBtr܀vq52[ Pcw; ׮2-UE򽊊 jAG}px( ɻ~6gx=ߘ_A2rŏrN|=NOWtʼR9)?ڊ\[W#Q햫@+9 Ar cLrӞSV|mr\aÕn$BAlzґ YJhIENp_ªǎőq>U>hIDafBO0Jp1tb&'iMsem8}:lZ]@xBKg!?ͻPo1tuc<[ 6m&8>or0 'ry] fD5hɕ h5KyGray3;܁%' œEeAZ]ww9CS`|_t6FlZ{ hڱI_fSZ${+/M|~oٙ7!Tגq_(<_ ^O%=F~n)eU8Vs|N熍,j'Ƌԥ /|Z"g#roh@P?jy$Y[C vۦVo"ﲦ^Z2T$!rZüL,xsuɕsݚTy h=Vyж YZ