nscd-2.31-150300.52.2 >  A dp9|n2.죿:GM)DKVT.hݬ鉵 /r* m%ώU1Wf|Wb\_juyH-Kv V$[3pI? d   4  GMS  B ?   D S pBd#d#V#(89:!=>?@BFG4HpI۬XۼYZ[\ ]H^ܿ b2cd[e`fcleuxv޴ wx y\zCnscd2.31150300.52.2Name Service Caching DaemonNscd caches name service lookups and can dramatically improve performance with NIS, NIS+, and LDAP.ds390zp35 SUSE Linux Enterprise 15SUSE LLC GPL-2.0-or-laterhttps://www.suse.com/System/Daemonshttp://www.gnu.org/software/libc/libc.htmllinuxs390xgetent group nscd >/dev/null || /usr/sbin/groupadd -r nscd getent passwd nscd >/dev/null || /usr/sbin/useradd -r -g nscd -c "User for nscd" -s /sbin/nologin -d /run/nscd nscd if [ -x /usr/bin/systemctl ]; then test -n "$FIRST_ARG" || FIRST_ARG="$1" [ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || : for service in nscd.service ; do sysv_service=${service%.*} if [ ! -e /usr/lib/systemd/system/$service ] && [ ! -e /etc/init.d/$sysv_service ]; then mkdir -p /run/systemd/rpm/needs-preset touch /run/systemd/rpm/needs-preset/$service elif [ -e /etc/init.d/$sysv_service ] && [ ! -e /var/lib/systemd/migrated/$sysv_service ]; then /usr/sbin/systemd-sysv-convert --save $sysv_service || : mkdir -p /run/systemd/rpm/needs-sysv-convert touch /run/systemd/rpm/needs-sysv-convert/$service fi done fi if [ -x /usr/bin/systemctl ]; then test -n "$FIRST_ARG" || FIRST_ARG="$1" [ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || : if [ "$YAST_IS_RUNNING" != "instsys" ]; then /usr/bin/systemctl daemon-reload || : fi for service in nscd.service ; do sysv_service=${service%.*} if [ -e /run/systemd/rpm/needs-preset/$service ]; then /usr/bin/systemctl preset $service || : rm "/run/systemd/rpm/needs-preset/$service" || : elif [ -e /run/systemd/rpm/needs-sysv-convert/$service ]; then /usr/sbin/systemd-sysv-convert --apply $sysv_service || : rm "/run/systemd/rpm/needs-sysv-convert/$service" || : touch /var/lib/systemd/migrated/$sysv_service || : fi done fi [ -z "${TRANSACTIONAL_UPDATE}" -a -x /usr/bin/systemd-tmpfiles ] && /usr/bin/systemd-tmpfiles --create /usr/lib/tmpfiles.d/nscd.conf || : # Previously we had nscd.socket, remove it test -x /usr/bin/systemctl && /usr/bin/systemctl stop nscd.socket 2>/dev/null || : test -x /usr/bin/systemctl && /usr/bin/systemctl disable nscd.socket 2>/dev/null || : # Hard removal in case the above did not work rm -f /etc/systemd/system/sockets.target.wants/nscd.socket exit 0 test -n "$FIRST_ARG" || FIRST_ARG="$1" if [ "$FIRST_ARG" -eq 0 -a -x /usr/bin/systemctl ]; then # Package removal, not upgrade /usr/bin/systemctl --no-reload disable nscd.service || : ( test "$YAST_IS_RUNNING" = instsys && exit 0 test -f /etc/sysconfig/services -a \ -z "$DISABLE_STOP_ON_REMOVAL" && . /etc/sysconfig/services test "$DISABLE_STOP_ON_REMOVAL" = yes -o \ "$DISABLE_STOP_ON_REMOVAL" = 1 && exit 0 /usr/bin/systemctl stop nscd.service ) || : fi test -n "$FIRST_ARG" || FIRST_ARG="$1" if [ $1 -eq 0 ]; then # Package removal for service in nscd.service ; do sysv_service="${service%.*}" rm -f "/var/lib/systemd/migrated/$sysv_service" || : done fi if [ -x /usr/bin/systemctl ]; then /usr/bin/systemctl daemon-reload || : fi if [ "$FIRST_ARG" -ge 1 ]; then # Package upgrade, not uninstall if [ -x /usr/bin/systemctl ]; then ( test "$YAST_IS_RUNNING" = instsys && exit 0 test -f /etc/sysconfig/services -a \ -z "$DISABLE_RESTART_ON_UPDATE" && . /etc/sysconfig/services test "$DISABLE_RESTART_ON_UPDATE" = yes -o \ "$DISABLE_RESTART_ON_UPDATE" = 1 && exit 0 /usr/bin/systemctl try-restart nscd.service ) || : fi fi exit 0 ` A큤A큤A큀d4d4ddd4d4d4dCd4d4ddddde2cdfafd373d24fab07018d0e95dd49510ea6c992b7be2b0611ab23bbc2750b579fe74962fbce2fa9b2a4b92f693b2fd42cbc2ed331fae268de7104879a72df879c9cec5dd2414dcb76d11e75903aa6fd9b7785c897cb9f853edcb140a71b77950221768e9f88c929437b206b46bdb9cdccbd970bad573375357abff99cc8b6f/sbin/service@YYYYYYYrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootglibc-2.31-150300.52.2.src.rpmconfig(nscd)glibc:/usr/sbin/nscdnscdnscd(s390-64) @@@@@@@@@@@@@@@@@@@@    /bin/sh/bin/sh/bin/sh/bin/shconfig(nscd)glibclibaudit.so.1()(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.10)(64bit)libc.so.6(GLIBC_2.17)(64bit)libc.so.6(GLIBC_2.2)(64bit)libc.so.6(GLIBC_2.2.2)(64bit)libc.so.6(GLIBC_2.2.4)(64bit)libc.so.6(GLIBC_2.3)(64bit)libc.so.6(GLIBC_2.3.2)(64bit)libc.so.6(GLIBC_2.3.4)(64bit)libc.so.6(GLIBC_2.4)(64bit)libc.so.6(GLIBC_2.7)(64bit)libc.so.6(GLIBC_2.8)(64bit)libc.so.6(GLIBC_2.9)(64bit)libcap.so.2()(64bit)libpthread.so.0()(64bit)libpthread.so.0(GLIBC_2.2)(64bit)libpthread.so.0(GLIBC_2.3.2)(64bit)libpthread.so.0(GLIBC_2.3.3)(64bit)libselinux.so.1()(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)shadowsystemdsystemdsystemdsystemd2.31-150300.52.22.313.0.4-14.6.0-14.0-15.2-14.14.3dq@dtd%yddccU@ccob@b@b֜b@bb no longer includes inline versions of any string functions, as this kind of optimization is better done by the compiler * The nonstandard header has been removed * The obsolete header has been removed * The obsolete signal constant SIGUNUSED is no longer defined by * The obsolete function cfree has been removed * The stack_t type no longer has the name struct sigaltstack * The ucontext_t type no longer has the name struct ucontext * On S/390 GNU/Linux, the constants defined by have been synced with the kernel * Linux kernel 3.2 or later is required at runtime, on all architectures supported by that kernel * The DNS stub resolver limits the advertised UDP buffer size to 1200 bytes, to avoid fragmentation-based spoofing attacks (CVE-2017-12132) * LD_LIBRARY_PATH is now ignored in binaries running in privileged AT_SECURE mode to guard against local privilege escalation attacks (CVE-2017-1000366) * Avoid printing a backtrace from the __stack_chk_fail function since it is called on a corrupt stack and a backtrace is unreliable on a corrupt stack (CVE-2010-3192) * A use-after-free vulnerability in clntudp_call in the Sun RPC system has been fixed (CVE-2017-12133) * fate#322258, fate#321513, fate#322453 - fts-symbol-redirect.patch, glibc-resolv-reload.diff, glibc-2.2-sunrpc.diff, i686-memchr-sse.patch, ld-hwcap-mask-suid.patch, ld-library-path-suid.patch, sunrpc-use-after-free.patch, test-math-vector-sincos-aliasing.patch, tunables-bigendian.patch: Removed- Fix RPM group- s390-elision-enable-envvar.patch: enable TLE only if GLIBC_ELISION_ENABLE=yes is defined (fate#322271)- ld-hwcap-mask-suid.patch: Ignore and remove LD_HWCAP_MASK for AT_SECURE programs (BZ #21209) - ld-library-path-suid.patch: Completely ignore LD_LIBRARY_PATH for AT_SECURE=1 programs (CVE-2017-1000366, bsc#1039357, BZ #21624)- Remove glibc-cpusetsize.diff, no longer useful- fts-symbol-redirect.patch: Fix symbol redirect for fts_set (bsc#1041123, BZ #21289)- test-math-vector-sincos-aliasing.patch: Fix test-math-vector-sincos.h aliasing- add-locales.patch: renamed from glibc-2.3.locales.diff.bz2, drop en_BE locales (bsc#1039502)- Remove glibc-testsuite.patch, no longer relevant- Use multibuild feature - Remove obsolete check-build.sh - glibc.rpmlintrc: remove obsolete entries - Use %tmpfiles_create in nscd postin- i686-memchr-sse.patch: Fix i686 memchr overflow calculation (bsc#1031021, BZ #21182) - sunrpc-use-after-free.patch: Avoid use-after-free read access in clntudp_call (BZ #21115) - Build testsuite with gdb and python-pexpect to enable more tests- tunables-bigendian.patch: Fix getting tunable values on big-endian (BZ [#21109])- Update to glibc 2.25 * The feature test macro __STDC_WANT_LIB_EXT2__, from ISO/IEC TR 24731-2:2010, is supported to enable declarations of functions from that TR. * The feature test macro __STDC_WANT_IEC_60559_BFP_EXT__, from ISO/IEC TS 18661-1:2014, is supported to enable declarations of functions and macros from that TS. * The feature test macro __STDC_WANT_IEC_60559_FUNCS_EXT__, from ISO/IEC TS 18661-4:2015, is supported to enable declarations of functions and macros from that TS. * The nonstandard feature selection macros _REENTRANT and _THREAD_SAFE are now treated as compatibility synonyms for _POSIX_C_SOURCE=199506L. * The inclusion of by is deprecated. * New features from TS 18661-1:2014 are added to libm: the fesetexcept, fetestexceptflag, fegetmode and fesetmode functions, the femode_t type and the FE_DFL_MODE and FE_SNANS_ALWAYS_SIGNAL macros. * Integer width macros from TS 18661-1:2014 are added to : CHAR_WIDTH, SCHAR_WIDTH, UCHAR_WIDTH, SHRT_WIDTH, USHRT_WIDTH, INT_WIDTH, UINT_WIDTH, LONG_WIDTH, ULONG_WIDTH, LLONG_WIDTH, ULLONG_WIDTH; and to : INT8_WIDTH, UINT8_WIDTH, INT16_WIDTH, UINT16_WIDTH, INT32_WIDTH, UINT32_WIDTH, INT64_WIDTH, UINT64_WIDTH, INT_LEAST8_WIDTH, UINT_LEAST8_WIDTH, INT_LEAST16_WIDTH, UINT_LEAST16_WIDTH, INT_LEAST32_WIDTH, UINT_LEAST32_WIDTH, INT_LEAST64_WIDTH, UINT_LEAST64_WIDTH, INT_FAST8_WIDTH, UINT_FAST8_WIDTH, INT_FAST16_WIDTH, UINT_FAST16_WIDTH, INT_FAST32_WIDTH, UINT_FAST32_WIDTH, INT_FAST64_WIDTH, UINT_FAST64_WIDTH, INTPTR_WIDTH, UINTPTR_WIDTH, INTMAX_WIDTH, UINTMAX_WIDTH, PTRDIFF_WIDTH, SIG_ATOMIC_WIDTH, SIZE_WIDTH, WCHAR_WIDTH, WINT_WIDTH. * New features are added from TS 18661-1:2014: - Signaling NaN macros: SNANF, SNAN, SNANL. - Nearest integer functions: roundeven, roundevenf, roundevenl, fromfp, fromfpf, fromfpl, ufromfp, ufromfpf, ufromfpl, fromfpx, fromfpxf, fromfpxl, ufromfpx, ufromfpxf, ufromfpxl. - llogb functions: the llogb, llogbf and llogbl functions, and the FP_LLOGB0 and FP_LLOGBNAN macros. - Max-min magnitude functions: fmaxmag, fmaxmagf, fmaxmagl, fminmag, fminmagf, fminmagl. - Comparison macros: iseqsig. - Classification macros: iscanonical, issubnormal, iszero. - Total order functions: totalorder, totalorderf, totalorderl, totalordermag, totalordermagf, totalordermagl. - Canonicalize functions: canonicalize, canonicalizef, canonicalizel. - NaN functions: getpayload, getpayloadf, getpayloadl, setpayload, setpayloadf, setpayloadl, setpayloadsig, setpayloadsigf, setpayloadsigl. * The functions strfromd, strfromf, and strfroml, from ISO/IEC TS 18661-1:2014, are added to libc. * Most of glibc can now be built with the stack smashing protector enabled. * The function explicit_bzero, from OpenBSD, has been added to libc. * On ColdFire, MicroBlaze, Nios II and SH3, the float_t type is now defined to float instead of double. * On x86_64, when compiling with -mfpmath=387 or -mfpmath=sse+387, the float_t and double_t types are now defined to long double instead of float and double. * The getentropy and getrandom functions, and the header file have been added. * The buffer size for byte-oriented stdio streams is now limited to 8192 bytes by default. * The header now includes the header. * The malloc_get_state and malloc_set_state functions have been removed. * The “ip6-dotint” and “no-ip6-dotint” resolver options, and the corresponding RES_NOIP6DOTINT flag from have been removed. * The "ip6-bytestring" resolver option and the corresponding RES_USEBSTRING flag from have been removed. * The flags RES_AAONLY, RES_PRIMARY, RES_NOCHECKNAME, RES_KEEPTSIG, RES_BLAST defined in the header file have been deprecated. * The "inet6" option in /etc/resolv.conf and the RES_USE_INET6 flag for _res.flags are deprecated. * DNSSEC-related declarations and definitions have been removed from the header file, and libresolv will no longer attempt to decode the data part of DNSSEC record types. * The resource record type classification macros ns_t_qt_p, ns_t_mrr_p, ns_t_rr_p, ns_t_udp_p, ns_t_xfr_p have been removed from the header file because the distinction between RR types and meta-RR types is not officially standardized, subject to revision, and thus not suitable for encoding in a macro. * The types res_sendhookact, res_send_qhook, re_send_rhook, and the qhook and rhook members of the res_state type in have been removed. * For multi-arch support it is recommended to use a GCC which has been built with support for GNU indirect functions. * GDB pretty printers have been added for mutex and condition variable structures in POSIX Threads. * Tunables feature added to allow tweaking of the runtime for an application program. * A new version of condition variables functions have been implemented in the NPTL implementation of POSIX Threads to provide stronger ordering guarantees. * A new version of pthread_rwlock functions have been implemented to use a more scalable algorithm primarily through not using a critical section anymore to make state changes. * On ARM EABI (32-bit), generating a backtrace for execution contexts which have been created with makecontext could fail to terminate due to a missing .cantunwind annotation. (CVE-2016-6323) * The DNS stub resolver functions would crash due to a NULL pointer dereference when processing a query with a valid DNS question type which was used internally in the implementation. (CVE-2015-5180) - Enable stack protector if part of %optflags - startcontext-cantunwind.patch: Removed - cpuid-assertion.patch: Removed- cpuid-assertion.patch: Don't assert on older Intel CPUs (BZ #20647)- glibc-2.3.3-nscd-db-path.diff: Move persistent nscd databases to /var/lib/nscd - glibc-2.3.90-langpackdir.diff: simplify- Update to glibc 2.24 * The minimum Linux kernel version that this version of the GNU C Library can be used with is 3.2 * The pap_AN locale has been deleted * The readdir_r and readdir64_r functions have been deprecated * The type `union wait' has been removed * A new NSS action is added to facilitate large distributed system administration * The deprecated __malloc_initialize_hook variable has been removed from the API * The long unused localedef --old-style option has been removed * nextupl, nextup, nextupf, nextdownl, nextdown and nextdownf are added to libm * An unnecessary stack copy in _nss_dns_getnetbyname_r was removed (CVE-2016-3075) * Previously, getaddrinfo copied large amounts of address data to the stack, even after the fix for CVE-2013-4458 has been applied, potentially resulting in a stack overflow. getaddrinfo now uses a heap allocation instead (CVE-2016-3706) * The glob function suffered from a stack-based buffer overflow when it was called with the GLOB_ALTDIRFUNC flag and encountered a long file name (CVE-2016-1234) * The Sun RPC UDP client could exhaust all available stack space when flooded with crafted ICMP and UDP messages (CVE-2016-4429) * The IPv6 name server management code in libresolv could result in a memory leak for each thread which is created, performs a failing naming lookup, and exits (CVE-2016-5417) - startcontext-cantunwind.patch: mark __startcontext as .cantunwind (bsc#974800, BZ #20435) - Removed patches: * 0001-Updated-translations-for-2.23.patch * 0002-Regenerate-libc.pot-for-2.23.patch * 0003-Regenerated-configure-scripts.patch * 0004-x86_64-Set-DL_RUNTIME_UNALIGNED_VEC_SIZE-to-8.patch * 0005-Add-fts64_-to-sysdeps-arm-nacl-libc.abilist.patch * 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch * 0007-NEWS-2.23-Fix-typo-in-bug-19048-text.patch * 0008-Update-NEWS.patch * 0009-sln-use-stat64.patch * 0010-Add-sys-auxv.h-wrapper-to-include-sys.patch * 0011-mips-terminate-the-FDE-before-the-return-trampoline-.patch * 0012-Use-HAS_ARCH_FEATURE-with-Fast_Rep_String.patch * 0013-Mention-BZ-19762-in-NEWS.patch * 0014-Define-_HAVE_STRING_ARCH_mempcpy-to-1-for-x86.patch * 0015-Or-bit_Prefer_MAP_32BIT_EXEC-in-EXTRA_LD_ENVVARS.patch * 0016-Fix-resource-leak-in-resolver-bug-19257.patch * 0017-math-don-t-clobber-old-libm.so-on-install-BZ-19822.patch * 0018-resolv-Always-set-resplen2-out-parameter-in-send_dg-.patch * 0019-S390-Save-and-restore-fprs-vrs-while-resolving-symbo.patch * 0020-S390-Extend-structs-La_s390_regs-La_s390_retval-with.patch * 0021-CVE-2016-3075-Stack-overflow-in-_nss_dns_getnetbynam.patch * 0022-configure-fix-test-usage.patch * 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch * 0024-nss_db-Propagate-ERANGE-error-if-parse_line-fails-BZ.patch * 0025-getnameinfo-Do-not-preserve-errno.patch * 0026-getnameinfo-Refactor-and-fix-memory-leak-BZ-19642.patch * 0027-getnameinfo-Reduce-line-length-and-add-missing-comme.patch * 0028-getnameinfo-Avoid-calling-strnlen-on-uninitialized-b.patch * 0029-getnameinfo-Return-EAI_OVERFLOW-in-more-cases-BZ-197.patch * 0030-hesiod-Remove-RCS-keywords.patch * 0031-hesiod-Always-use-thread-local-resolver-state-BZ-195.patch * 0032-hesiod-Avoid-heap-overflow-in-get_txt_records-BZ-200.patch * 0033-malloc-Remove-NO_THREADS.patch * 0034-Fix-malloc-threaded-tests-link-on-non-Linux.patch * 0035-malloc-Run-fork-handler-as-late-as-possible-BZ-19431.patch * 0036-malloc-Remove-malloc-hooks-from-fork-handler.patch * 0037-malloc-Add-missing-internal_function-attributes-on-f.patch * 0038-nss_dns-Fix-assertion-failure-in-_nss_dns_getcanonna.patch * 0039-nss_dns-Validate-RDATA-length-against-packet-length-.patch * 0040-resolv-nss_dns-Remove-remaining-syslog-logging-BZ-19.patch * 0041-nss_dns-Check-address-length-before-creating-addrinf.patch * 0042-nss_dns-Skip-over-non-PTR-records-in-the-netent-code.patch * 0043-resolv-Always-set-resplen2-out-parameter-in-send_vc-.patch * 0044-tst-audit4-tst-audit10-Compile-AVX-AVX-512-code-sepa.patch * 0045-Fix-tst-audit10-build-when-mavx512f-is-not-supported.patch * 0046-tst-audit10-Fix-compilation-on-compilers-without-bit.patch * 0047-strfmon_l-Use-specified-locale-for-number-formatting.patch * 0048-glob-Simplify-the-interface-for-the-GLOB_ALTDIRFUNC-.patch * 0049-CVE-2016-1234-glob-Do-not-copy-d_name-field-of-struc.patch * 0050-ldconfig-Do-not-remove-stale-symbolic-links-with-X-B.patch * 0051-Report-dlsym-dlvsym-lookup-errors-using-dlerror-BZ-1.patch * 0052-Fix-tst-dlsym-error-build.patch * 0053-Remove-trailing-newline-from-date_fmt-in-Serbian-loc.patch * 0054-Revert-Report-dlsym-dlvsym-lookup-errors-using-dlerr.patch * 0055-CVE-2016-3706-getaddrinfo-stack-overflow-in-hostent-.patch * 0056-Fix-strfmon_l-Use-specified-locale-for-number-format.patch * clntudp-call-alloca.patch * glibc-memset-nontemporal.diff * nis-initgroups-status.patch * nscd-gc-crash.patch * robust-mutex-deadlock.patch * strncat-avoid-array-bounds-warning.patch- strncat-avoid-array-bounds-warning.patch: Avoid array-bounds warning for stncat on i586 (BZ #20260) - Update glibc.keyring - Unset MALLOC_CHECK_ during testsuite run- nsswitch.conf: Add fallback to files for passwd and group to prepare for libnsl removal.- nis-initgroups-status.patch: Return proper status from _nss_nis_initgroups_dyn (bsc#984269, BZ #20262) - robust-mutex-deadlock.patch: Fix generic __lll_robust_timedlock_wait to check for timeout (bsc#985170, BZ #20263)- nscd-gc-crash.patch: Fix nscd assertion failure in gc (bsc#965699, BZ [#19755])- clntudp-call-alloca.patch: do not use alloca in clntudp_call (CVE-2016-4429, bsc#980854, BZ #20112)- Import patches from 2.23 branch 0001-Updated-translations-for-2.23.patch 0002-Regenerate-libc.pot-for-2.23.patch 0003-Regenerated-configure-scripts.patch 0004-x86_64-Set-DL_RUNTIME_UNALIGNED_VEC_SIZE-to-8.patch 0005-Add-fts64_-to-sysdeps-arm-nacl-libc.abilist.patch 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch 0007-NEWS-2.23-Fix-typo-in-bug-19048-text.patch 0008-Update-NEWS.patch 0009-sln-use-stat64.patch 0010-Add-sys-auxv.h-wrapper-to-include-sys.patch 0011-mips-terminate-the-FDE-before-the-return-trampoline-.patch 0012-Use-HAS_ARCH_FEATURE-with-Fast_Rep_String.patch 0013-Mention-BZ-19762-in-NEWS.patch 0014-Define-_HAVE_STRING_ARCH_mempcpy-to-1-for-x86.patch 0015-Or-bit_Prefer_MAP_32BIT_EXEC-in-EXTRA_LD_ENVVARS.patch 0016-Fix-resource-leak-in-resolver-bug-19257.patch 0017-math-don-t-clobber-old-libm.so-on-install-BZ-19822.patch 0018-resolv-Always-set-resplen2-out-parameter-in-send_dg-.patch 0019-S390-Save-and-restore-fprs-vrs-while-resolving-symbo.patch 0020-S390-Extend-structs-La_s390_regs-La_s390_retval-with.patch 0021-CVE-2016-3075-Stack-overflow-in-_nss_dns_getnetbynam.patch 0022-configure-fix-test-usage.patch 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch 0024-nss_db-Propagate-ERANGE-error-if-parse_line-fails-BZ.patch 0025-getnameinfo-Do-not-preserve-errno.patch 0026-getnameinfo-Refactor-and-fix-memory-leak-BZ-19642.patch 0027-getnameinfo-Reduce-line-length-and-add-missing-comme.patch 0028-getnameinfo-Avoid-calling-strnlen-on-uninitialized-b.patch 0029-getnameinfo-Return-EAI_OVERFLOW-in-more-cases-BZ-197.patch 0030-hesiod-Remove-RCS-keywords.patch 0031-hesiod-Always-use-thread-local-resolver-state-BZ-195.patch 0032-hesiod-Avoid-heap-overflow-in-get_txt_records-BZ-200.patch 0033-malloc-Remove-NO_THREADS.patch 0034-Fix-malloc-threaded-tests-link-on-non-Linux.patch 0035-malloc-Run-fork-handler-as-late-as-possible-BZ-19431.patch 0036-malloc-Remove-malloc-hooks-from-fork-handler.patch 0037-malloc-Add-missing-internal_function-attributes-on-f.patch 0038-nss_dns-Fix-assertion-failure-in-_nss_dns_getcanonna.patch 0039-nss_dns-Validate-RDATA-length-against-packet-length-.patch 0040-resolv-nss_dns-Remove-remaining-syslog-logging-BZ-19.patch 0041-nss_dns-Check-address-length-before-creating-addrinf.patch 0042-nss_dns-Skip-over-non-PTR-records-in-the-netent-code.patch 0043-resolv-Always-set-resplen2-out-parameter-in-send_vc-.patch 0044-tst-audit4-tst-audit10-Compile-AVX-AVX-512-code-sepa.patch 0045-Fix-tst-audit10-build-when-mavx512f-is-not-supported.patch 0046-tst-audit10-Fix-compilation-on-compilers-without-bit.patch 0047-strfmon_l-Use-specified-locale-for-number-formatting.patch 0048-glob-Simplify-the-interface-for-the-GLOB_ALTDIRFUNC-.patch 0049-CVE-2016-1234-glob-Do-not-copy-d_name-field-of-struc.patch 0050-ldconfig-Do-not-remove-stale-symbolic-links-with-X-B.patch 0051-Report-dlsym-dlvsym-lookup-errors-using-dlerror-BZ-1.patch 0052-Fix-tst-dlsym-error-build.patch 0053-Remove-trailing-newline-from-date_fmt-in-Serbian-loc.patch 0054-Revert-Report-dlsym-dlvsym-lookup-errors-using-dlerr.patch 0055-CVE-2016-3706-getaddrinfo-stack-overflow-in-hostent-.patch 0056-Fix-strfmon_l-Use-specified-locale-for-number-format.patch - CVE-2016-3075 CVE-2016-1234 CVE-2016-3706 bsc#973164 bsc#969727 - resolv-mem-leak.patch: renamed to 0016-Fix-resource-leak-in-resolver-bug-19257.patch - no-long-double.patch: renamed to 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch - glibc-gcc6.patch: renamed to 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch- glibc-c-utf8-locale.patch: fix bad standard in LC_IDENTIFICATION categories - glibc-2.3.locales.diff.bz2: likewise- glibc-gcc6.patch: Suppress GCC 6 warning about ambiguous 'else' with - Wparentheses- Add compatibility symlinks for LSB 3.0 (fate#318933)- powerpc-elision-enable-envvar.patch: enable TLE only if GLIBC_ELISION_ENABLE=yes is defined (bsc#967594, fate#318236)- ldd-system-interp.patch: Restore warning about execution permission, it is still needed for noexec mounts (bsc#915985)- Add C.UTF-8 locale (see https://sourceware.org/glibc/wiki/Proposals/C.UTF-8) and rh#902094 . Added with glibc-c-utf8-locale.patch. - Add glibc-disable-gettext-for-c-utf8.patch to disable gettext for C.UTF-8 same as C locale.- Move %install_info_delete to %preun - crypt_blowfish-1.3.tar.gz.sign: Remove, the sign key is no longer acceptable- no-long-double.patch: Don't use long double functions if NO_LONG_DOUBLE- Update to glibc 2.23 release. * Unicode 8.0.0 Support * sched_setaffinity, pthread_setaffinity_np no longer attempt to guess the kernel-internal CPU set size * The fts.h header can now be used with -D_FILE_OFFSET_BITS=64 * getaddrinfo now detects certain invalid responses on an internal netlink socket * A defect in the malloc implementation, present since glibc 2.15 (2012) or glibc 2.10 via --enable-experimental-malloc (2009), could result in the unnecessary serialization of memory allocation requests across threads * The obsolete header has been removed * The obsolete functions bdflush, create_module, get_kernel_syms, query_module and uselib are no longer available to newly linked binaries * Optimized string, wcsmbs and memory functions for IBM z13. * Newly linked programs that define a variable called signgam will no longer have it set by the lgamma, lgammaf and lgammal functions - Removed patches: * dont-remove-nodelete-flag.patch * openat64-readd-o-largefile.patch * mntent-blank-line.patch * opendir-o-directory-check.patch * strcoll-remove-strdiff-opt.patch * ld-pointer-guard.patch * tls-dtor-list-mangling.patch * powerpc-lock-elision-race.patch * prelink-elf-rtype-class.patch * vector-finite-math-aliases.patch * powerpc-elision-adapt-param.patch * catopen-unbound-alloca.patch * strftime-range-check.patch * hcreate-overflow-check.patch * errorcheck-mutex-no-elision.patch * refactor-nan-parsing.patch * send-dg-buffer-overflow.patch * isinf-cxx11-conflict.patch * ibm93x-redundant-shift-si.patch * iconv-reset-input-buffer.patch * tzset-tzname.patch * static-dlopen.patch- isinf-cxx11-conflict.patch: Fix isinf/isnan declaration conflict with C++11 (bsc#963700, BZ #19439)- tls-dtor-list-mangling.patch: Harden tls_dtor_list with pointer mangling (BZ #19018) - prelink-elf-rtype-class.patch: Keep only ELF_RTYPE_CLASS_{PLT|COPY} bits for prelink (BZ #19178) - vector-finite-math-aliases.patch: Better workaround for aliases of * _finite symbols in vector math library (BZ# 19058) - powerpc-elision-adapt-param.patch: powerpc: Fix usage of elision transient failure adapt param (BZ #19174) - catopen-unbound-alloca.patch: Fix unbound alloca in catopen (CVE-2015-8779, bsc#962739, BZ #17905) - strftime-range-check.patch: Add range check on time fields (CVE-2015-8776, bsc#962736, BZ #18985) - hcreate-overflow-check.patch: Handle overflow in hcreate (CVE-2015-8778, bsc#962737, BZ #18240) - errorcheck-mutex-no-elision.patch: Don't do lock elision on an error checking mutex (bsc#956716, BZ #17514) - refactor-nan-parsing.patch: Refactor strtod parsing of NaN payloads (CVE-2014-9761, bsc#962738, BZ #16962) - send-dg-buffer-overflow.patch: Fix getaddrinfo stack-based buffer overflow (CVE-2015-7547, bsc#961721, BZ #18665) - powerpc-lock-elision-race.patch: renamed from 0001-powerpc-Fix-a-race-condition-when-eliding-a-lock-20150730.patch- Add audit-devel and libcap-devel to BuildRequires, for use by nscd- reinitialize-dl_load_write_lock.patch: Reinitialize dl_load_write_lock on fork (bsc#958315, BZ #19282)- resolv-mem-leak.patch: Fix resource leak in resolver (bsc#955647, BZ #19257) - tzset-tzname.patch: Force rereading TZDEFRULES after it was used to set DST rules only (BZ #19253)- glibc-2.3.90-noversion.diff: use stat64- ld-pointer-guard.patch: Always enable pointer guard (CVE-2015-8777, bsc#950944, BZ #18928)- strcoll-remove-strdiff-opt.patch: Remove incorrect STRDIFF-based optimization (BZ #18589)- iconv-reset-input-buffer.patch: Fix iconv buffer handling with IGNORE error handler (BZ #18830)- new patch [BZ #18743] PowerPC: Fix a race condition when eliding a lock 0001-powerpc-Fix-a-race-condition-when-eliding-a-lock-20150730.patch- nss-files-long-lines-2.patch: Properly reread entry after failure in nss_files getent function (bsc#945779, BZ #18991)- fnmatch-collating-elements.patch: Fix fnmatch handling of collating elements (BZ #17396, BZ #16976)- opendir-o-directory-check.patch: Fix opendir inverted o_directory_works test - static-dlopen.patch: Static dlopen default library search path fix (bsc#937853)- mntent-blank-line.patch: Fix memory corruption w/blank lines- dont-remove-nodelete-flag.patch: Don't remove DF_1_NODELETE flag from all loaded objects on failed dlopen - openat64-readd-o-largefile.patch: Readd O_LARGEFILE flag for openat64- Update to glibc 2.22 release. * Cache information can be queried via sysconf() function on s390 * A buffer overflow in gethostbyname_r and related functions performing DNS requests has been fixed. (CVE-2015-1781) * The time zone file parser has been made more robust against crafted time zone files * A powerpc and powerpc64 optimization for TLS, similar to TLS descriptors for LD and GD on x86 and x86-64, has been implemented. * Character encoding and ctype tables were updated to Unicode 7.0.0 * Added vector math library named libmvec * A new fmemopen implementation has been added with the goal of POSIX compliance. * The header is deprecated, and will be removed in a future release. * bsc#905313 bsc#920338 bsc#927080 bsc#928723 bsc#931480 bsc#939211 bsc#940195 bsc#940332 bsc#944494 bsc#968787 - Patches from upstream removed * htm-tabort.patch * o-tmpfile.patch * memcpy-chk-non-SSE2.patch * pthread-mutexattr-gettype-kind.patch * powerpc-software-sqrt.patch * static-tls-dtv-limit.patch * threaded-trim-threshold.patch * resolv-nameserver-handling.patch * nss-separate-state-getXXent.patch * aarch64-sigstksz.patch * heap-top-corruption.patch * pthread-join-deadlock.patch- pthread-join-deadlock.patch: Use IE model for static variables in libc.so, libpthread.so and rtld (bsc#930015, BZ #18457)- glibc-nodate.patch: fix verification of timestamp- also filter out -fstack-protector-strong- getaddrinfo-ipv6-sanity.diff: Remove. It breaks services that start before IPv6 is up (bsc#931399) - glibc-2.3.locales.diff.bz2: Remove sh_YU locales, fix currency for en_BE.- Add /usr/include/gnu/lib-names-.*.h to baselibs - pthread-join-deadlock.patch: Don't require rtld lock to store static TLS offset in the DTV (bsc#930015, BZ #18457) - heap-top-corruption.patch: Do not corrupt the top of a threaded heap if top chunk is MINSIZE (BZ #18502)- threaded-trim-threshold.patch: Fix regression in threaded application malloc performance (bsc#915955, BZ #17195)- aarch64-sigstksz.patch: Increase MINSIGSTKSZ and SIGSTKSZ (BZ #16850)- powerpc-software-sqrt.patch: Fix powerpc software sqrt (BZ #17964, BZ [#17967]) - nss-separate-state-getXXent.patch: Separate internal state between getXXent and getXXbyYY NSS calls (CVE-2014-8121, bsc#918187, BZ #18007) - static-tls-dtv-limit.patch: Fix DTV race, assert, DTV_SURPLUS Static TLS limit, and nptl_db garbage (bsc#919678, BZ #17090, BZ #17620, BZ #17621, BZ #17628)- resolv-nameserver-handling.patch: Replace with simpler version with more compatibility- memcpy-chk-non-SSE2.patch: Fix __memcpy_chk on non-SSE2 CPUs (bsc#920084)- resolv-nameserver-handling.patch: Rewrite handling of nameserver configuration in resolver- htm-tabort.patch: Fix TABORT encoding for little endian- Update to glibc 2.21 release. * A new semaphore algorithm has been implemented in generic C code for all machines * Added support for TSX lock elision of pthread mutexes on powerpc32, powerpc64 and powerpc64le * Optimized strcpy, stpcpy, strchrnul and strrchr implementations for AArch64 * i386 memcpy functions optimized with SSE2 unaligned load/store * New locales: tu_IN, bh_IN, raj_IN, ce_RU * The obsolete sigvec function has been removed * CVE-2015-1472 CVE-2015-1473 CVE-2012-3406 CVE-2014-9402 CVE-2014-7817 bsc#864081 bsc#906371 bsc#909053 bsc#910599 bsc#916222 - Patches from upstream removed * ifunc-x86-slow-sse4.patch * pthread-mutex-trylock-elision.patch - o-tmpfile.patch: Fix value of O_TMPFILE for architectures with non-default O_DIRECTORY (BZ #17912)- Update to crypt_blowfish 1.3. * Add support for the $2b$ prefix. - ifunc-x86-slow-sse4.patch: Fix misdetected Slow_SSE4_2 cpu feature bit (BZ #17501)/bin/sh/bin/sh/bin/sh/bin/shunscds390zp35 1686812381 2.31-150300.52.22.31-150300.52.22.31-150300.52.2 0.48nscd.confnscdnscd.pidsocketnscd.servicetmpfiles.dnscd.confnscdrcnscdnscdgrouphostsnetgrouppasswdservices/etc//run//run/nscd//usr/lib/systemd/system//usr/lib//usr/lib/tmpfiles.d//usr/sbin//var/lib//var/lib/nscd/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:29151/SUSE_SLE-15-SP3_Update/df3cd010a3b8a7b3a8ec7b518ee48b98-glibc.SUSE_SLE-15-SP3_Updatecpioxz5s390x-suse-linux ASCII textdirectorycannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.52.2.s390x/run/nscd/nscd.pid' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.52.2.s390x/run/nscd/socket' (No such file or directory)ELF 64-bit MSB shared object, IBM S/390, version 1 (SYSV), dynamically linked, interpreter /lib/ld64.so.1, BuildID[sha1]=b57c249f5cec572dc4ff25e133d842f2ee5fb683, for GNU/Linux 3.2.0, strippedcannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.52.2.s390x/var/lib/nscd/group' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.52.2.s390x/var/lib/nscd/hosts' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.52.2.s390x/var/lib/nscd/netgroup' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.52.2.s390x/var/lib/nscd/passwd' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.52.2.s390x/var/lib/nscd/services' (No such file or directory)R RR RRRRR R RRR RRRRRRRRmb3=$xskҲ>$~cׇEyףo*n#Ϙ^I\`w&)F`# ST}3ɴ`2txEpo_Fw$+<:C̊YfQ0]UCљk~4(Mxvͳ \1j[qٕy,{kK e)0\ԯ.Q5CuJ MϸuA5K@UV2_cTYyCwK-T_f9AWnKpy7},(G cgKR>o2bέTL ̱iPlLݸ!]m6"K߁_fHtEOe&r W j r!RT amqUrFqр7v2[_G7#wA)uz`7s{҅D[f5&NogYN=J P0h2bzx*L,5XϖA?4%ғ i]V@!e̟^3N+01pueĿ2q*Fh=e Mhhi`w+^ DS p vJuѯC +ϟ&pW/UƗo> =R 8xBݎ%G5Tq=O伡ԥ1. ޶6Ul(C `O¡ߧHJǢnĮv!s7nIMxj S)`ۊlWό)"}!_aΊc\>lTbV<='FFBly vQc+ZI:pʒqR.Ѿ<^n=]*퉆{>Eƍ4UhŊEkv7`~w;N8" F?j'h{jǸH{GϏYttBkzZ}Fq*7BjʗF}([<Ĭ5qzM)bd2L8KTz'z6 v܃#п/]f /;M0n*sE`'44l~%LԠEx+/صvNH{V} y OϽbsbY3Bl,y\*=w9Z]hT4`=^v@`g乡_4ݏm] a&;6e3_@C:jzf )j`*M yFSX?f|d񽖼>˥]4 W/Xe .w孑}Kѡi(,/`Z h(\5Q{p2RJ35m<嚅O N8]΀F bI57ܭp"gSHdg";9LRfsKA$ cS(b m.{ F1AuR,9EcӤcF9Hsj<2͹)Hi[|jE^9is>, fZSn-K& 8` Prţ? 2=QRb5͑}tb^fjD2 ̓S͹z o^] ~zGul䃔!ĚQ/i4 ?olwT傋<3Ai!ad{htbZ5n^U\q,Ͳ)G}Q ();Q#kG3Jѡn5qVbߺVn"xgM0!f9T?G^YSC :Qj6Z i `R 0"gyO4Hp5w%G7ԁ1XGI\1T0N~to&ZAYk HdXݙ&ENX& N)__om 6C{B@L,R[s=S:o7™mMpƮ ɬGކCDǹU^2llY7(5TЀ'3q0xķKƱ؆hDFՅڟ\"-?pXKh~խoս-c &KM_d_L*uPCvwGB\?( S:b L R.y^\z@b^̯A}*!;I=M]`'Xlk-5y+tT~̌AI}Y^ivo\-6Ȑƌܿ4aΰ@Y"/E˓ _r"Xו@@fI(۠۰KV >;4B,_4Cg|n#V5͛Xe{19tug7ʘtFNwSJBwV :(*ê*~> ]0γ0UEˉ?yl4#<9O5 C7>Y䟏*1'oy])<0<#p0s_RJ u*G&N˖l& %t .mg;CkϷ5F QvO%s}~]H2*15b˅zQ aHsc`R#=V\Yߟ vp. HkUCkpM_JZZe)"tBؾn躥Mst=M&w\S2%h8T=g3߼ه໛9ͲU#{R'D|%g #,W%裳 xx $(hůKد3~kM*E|nPWP"]v%hb5ژ/ 5ZR+?ia\덣g+dS4r|x[}6!"ZH*IcmĎEӂ|ZVȀܗ\fd&3pQЛ7:uź >~3<]T7RY*Ɂ%VݐjJ8HX|㏢ހAK-RG̺(AaW+7LnÞ)A)7$}*_,ҝ}t}fY\pGpNЦS-.O=jSff j );}pAa(cwk4T5#0ޓ{geu v RO?AfMg);fu0Y[c#dî۷tkN=3%֖]ݧԏH枊HhYQU`,ә`H[W P~x2>*7UCDBb^C NhJjSKr-&|8ImuR /yk޳};?E0MB2mgn [=?0mR hu>"]dXsnݛ0{{|qL,e;]st?'3% SO/*IPoƉyߝ֘FuL1wX5*Q#Qs#/hO@yN󸖸cZ6TitSJ}\=̅Ɇƃ Fƈy KYc @QJ5l|,59]HMd?Qa-۸SK,\`f^PP[\K5Ȧze`E I@S@TrW5Wq]"5b,9,bFNJE+[s&f)ԛ.b? @\dzxiye/badiPq] mп'vSݽprjwkPȥ)'zF["#IUWh!1bZ0̛S'ȟLh)'#rrK槑g1Z?bhYof(cm/X'a~oqC5Ӣ,|Gג6VDwDf3c<,b&RF"kMǯ/ {vRB-Na:\)ט Tʹ 6xݥUuzw sɶS:1\,J+mo:7鯴p4$Wާx0D `b%F2Lk\7 cYU |oQYW)lj,GܣyNuh3K)vt$cۏܓN'߸F2 T|ځUaV$Y;'{%F`@R,HRx]RnOלq|fP-uyT #w lwQù4Gcq,e;D^$)Wب慊pi[L5!WJIsM{Ngk8wi~ۗ}~EU?d}r=?!h=/;'րQhT:wh1䶚FIX @˜3NtQ FE>=UJBN !kʜSH"Jhڑ, ?uai}Bm(Pٶ Hռ>\fNS F@\r16ӼD9 "f.27P&ܭ\S2l;0|y}.´%/G )j(iACnKeۙ%>OB2~`MV/N0=n <(QM08D~tUB?qsP%.90}̱IZ (r;N5JM!Cv FMK^ ߐzQ8910$)ť&;zWT.t' LX)_kX?IFKzj{JpI e?#x†üRC1›Rzu㡺a[1}S@Eii?V[jdj3Dc# juPKYO\Ö{\)h<@xMI Ŝ8۽ܛN3 npsj8*( رAJ'Wz #: ,U2S?!Y\L|^хGCJ̬TUXYXjĴ_Y[W(`?%Vf<5@?ը?Xh4-Ёcj-0ۛ5uZ-Ľ@ 1rk= 7Tős1L`*Zm?#YkGٓݚ(#gi_*&G;6C|Z]_}p-&O7,x-SRm43`W\<8OE{lql#ˆdjO(*ڬhJ|e'1E)cf C{¸IMSN[TN/x==YK‰){ym&ؕbЍxGG.ӕk?6ǦH́1hؓ@=pfڱGil/hbvc\T]Jo{e{3k" A!-+^cKAI]gx5YͫOӢ9/>Ch3@No|e}%?P~&egpsD,[[?n?k HT1>t- @jkhДF;cMVEoϞuJVL6bʆa,B3>:aSKagRP7S40ExG2(O][\ȉ&n'j45Ev F 3,Qn!9/EYX{mgZnL"\=]K|ŝuimYu}>,?(ӿQ*Uy?NƼgMga75 PP^4 hiK8ApS߸X|򨐖G'gpǦ"4|K~\ؗ.l~(bbw GOG{ :kbUŠZuudžP*aN`y1 U']eTtN}+$YЃ49l9Pa$ql.q`BHy@V7Zݖ٢r.T?$=Y&q9gZZt kfyߝ+)aDM,s/;ZT+n{ Yبɦ,Z5,Ir!WԏY$ŮtN\.(>t݅ `d0\?@@ hX`&J#%w6 _ԬWV| WFxY4pdLE"~Acc2`rjhM1d5 *:AX(B @Y ӂ.Ns~'wN`bhkJT3$3ڹX_DY uʯdX^%jRԻ&ԋL>thLbͺZ?Ri1Ǎ Y`7f6Ҕ?<S\-O5ߵVݹ8Sh|-?7 E70 ӣox#"uܡ;BAfH4G-3S_h[갽.įqǓ0<1[ \~Vqkq  6׳x8 1F]^tmEߜ#Xݛ/IXJ.:Z5uzT^0!hv>īʐHrB;L퐑 FfŚj/P 9r؋lGYTs~si֌ 0Ԗ&kCYalow릷*!pbG1kqu;UBQ]J[/\W= Q LwD wj>~O{)wI9.h '̺`؎'mФ̱H*݆v(Ug4>zj'Y T*t3y/(.4<>/|WX> 7As]!"ȅZ='+$, js-e嬽 _`'Ťh< 3ŏF Dހ}jW4|9ņv/p{PK3'0vAG~(,AFLi3Ua6ZL"ExR^<RGMIl`r4Hɾ? lF;(P} [NڃZ{#Ht-5m-%i`1z-0 PDb+gҝL}p#qw~:FAӡfm_9 *x(g&d>s^Wl DŽ/ zRf"1"U*܎Ze,d$j0'ng^X;G?^`rNW!}G:E0NěMJSw,\qOrf!ʍY5P2{mVQý@ Za)tW0vn D$+L[OY?B%b5-ʿ@=`@^oŒ) $UJNrPK&fl }~b!:FU)p<"'ĨԿ-km4^8Wک uc`r[D )s)tu| Va Z\(WgZF~yXb|=豞(+A9OsKH"VΦ%\r'>62gT%>yI׍&;DH~s@g&ձ8iz>]y%P?49F{tCa lJLR xr͞][}<0ذQUR؄hZ0Q]Bf*#OWNxo:״l2og4 c]hRB.ewA DGJPsU7̿fg ,VtE[_MXrY*`(ѲKnƪC;޿/bɼ|$uР* BXvwLER˭1qT]@..Uڬ,X\~&M.Awg4 6.jKmxM 7BI(2|#By2+ &"@{VE]HY1po[Ht= 1)za`= ?"ݕngJAMi|\ 5]ӕ-u&p㒬xrpLhՏ#'͕kܾm2d>chFەΔ-.8r"F,h~_{cU.Wa2epņՕVvy6MamRug < H==A$ *an4AHt9 S!R+q,87d!obH߳EKQP !@]ل}_<&іP}V4 ^['_NP5 d=+ GX4& Qt'Qi $8\SiAQ~Bv["C4̃#cxUth"+ -&_!\|ur .HV3>aߒV0nȾ8`/H W{j& EE~nTg, ~~RNƃ|xY5UA:C$9ןgrS"c֡k 9MR6`U2p؀їb4U8M =dٍG1"{Gb֝]h)F ]Ol@Ҭ<٪zs^+z_NhtBp@(DǚHB `'Zm 3B!HlOLGY7 B0nqPmNhE5ײ`jLyGLR*\dh#n=Oq3G.SS̨AF" iy8tT,%Z/CHz碓)\,ܖEy*A>{SQn/V'!foU ),[So_ pN:/A/0QF~B8h9 F@a[5v[-h='_~|MC&"Gx v)0@YQ z--)$Ӯ%aƎOK=]sh7*_!)qOŊ8 |0'%4\- a#mj xn,!GJ"[xSD! ]^|_xӎ{4Gv) "TC͉aqU)$ }dMUn_RuY1(rw:crx(!A^/{|g6 ) D[H`dy6b7¶F@1gl$J3 N4J2<q~,iH$˄xE!V0^X>"ibQ1X; -0TĚ{Q7~.N9(&'Ǘ0.VVb8no}E橯j|Lnc1P&@\^#j,GeYəZ!z _x2Qz;08EҢ0/}f՗ w)\\25>vK`c3 5=0kf4T]?8}x_qƝ$@П2b ͯdDk0l.Ɂ9f0'$vK o W@',pJq+ ڋ}B׳5IqF$I0C- qMQvoflL:5 CBfՠbygpYlp lv իғPߚ J'A@?2CR\I;[;Wϩ.N ؊}q.ƨh'WB] &Cqk,Q@40 TL4 mQ:#Ps_#pl  SlRN4jߑØ=,]vsе0W3 |&xJ/[37ffCOf0MVt`Gp0gdBRVLnE GS:aխ$3 8=K6;ߌ+btx3 Q)?i߽?ɘ2Q فD)7:KQ3>tvnG *#B*+_N-y>Jac @VRJ%3F%j(6_٠uc7~do3s|*C՛r4?z(ʟ*rzQJGD-B߽)}VA,ɞ(  K!a-P/ѵEF5; C%Ja-_p5Un"A7OasCX5#\g] -q!CxUZivkY[fPvZX.N\a3L^ֵ֊ Kh Ľ~Ο4D aH|N5u"Zt'?B1Ssczkyf&UЋ~+qG{k_";[O7z:8<NLղX<>qkZ١:JNӶ_m^9k/&G 5RfX ԩIJѼ fX [7'psv:4u/g˝l̦C_bcɓh/7@礣FqJl?y2bRRA?;pNa(&c!_wbY {0+ @g_BnjIhԅ9(+Fw QAT}[ gG,W1 h;@MmVz2{a1{"aا[qQ5aU F!׿̼rnӾ{[a쯈-VbXț|҈d6&@]!h<]~: ޖÉwLb5*Ze EUA=tQ#uDoyt-fDo&p$ڸ]]"@"4\6V={F0a7!fл09FS*G ntlD򣳆EcB2 PaDǹ<7uzhk\e _{AX"sSvDXkXՏ6b!H%Dz .C"OvK3^pQke?\*IuLxާ Ʌ?Tvb5>v"ظv{RPo(X#i<ӊ/XW|tp3\@zf )_!@n猄(ⅣtXY猚_H>j3SQ3IT5 rUؿ3:m goۥ~[ [)lh/nxbhp8ICyQ' |8ZOŘ2nkm1a BPz]`:}L0: g}kE: P%pu&hZR=NM̊,xK4% K##)8 n9(6{!z|amOz6W+h WYç^P`sGmYAKb:"eT@UB-7#dG~U^=k@jL_k@z|^^Iƴ_ r:8) a\wchd˖ ^7%{⫻=.:k+'(S=-u ވC RBr5DmEӼ! nDrzABRKe2fSZO-<-Wmo F#|s62_s)yvrw3!IvF*QZZIe%lj"b67bXW4S><-rto!"w[>}(zqtP8q(F )np.DKvnֳA6?q$K b<Y4 cO3'K`#.7A3#:U/8LA 'V}n}sMa@yΙd4NGY $auێfk'&iL~%ڴٰO+"c=`He`,,tSKqO#fS.uflгYe>:}@:a x~ ;skGP i I4lk[M״o@c A="Ub" h'h/]֑풊0|8Dh+wH1"]`EJ\?q|S6+ҫUZ-GI]ωl0Fƙ?Ex:=aۀQ/6R^ P G-$ZF\PT/#n/@' vJ=JN i&ש:0#ޟ)xed%ϘieHj{Na^eW\W8N~.HMR$a+dV*x)sp;+*kK:N/}ѐ*_ђs$5m)h/>J4ۼmIj\ v1s"IbL<"eN?L4r%c+ !RdU+Qοd{=cX5϶>2 J n4`BO[rґœtiZ^;!K&;*xXrp\Y.~ar$p@!e{&wM" {MhO5֟ 62נ󬣌ܫ0W~ < [nAkU,9qMdP)] x`"JbY~Qy/xO5=}'KYJ 4% KaMiͦ^v+칩Ƿl ҙ4pيmȃw̟N! h1[:L0>okyL8#& bE9Ux%`w{?FJ_Q 8߿!֋Y`Efj=t [Afg1=az@a*Lb1cL 渹3| qtrD1הzç;?:Q%'Y2SRXq 4agxyZX80\ +׀1 gGPN*po+f h"5S+Ci%ExlD.Rb55hyyh8>bӂc8l8τԴ,z/QHRCTېsz=W#C*O}j@/JpfT'p.8RP3A^To.AT^agQX(բ͑I7(PJ w9"iel8`Bi{$ u Züm|dLܾ}3`?'rQXG\ IQGHV8ZuÇ ٫4GEHDlK&s N' 'OPwJ.RYG7`HreίUrBm\i"ɱH}ր>&)q{@Ta` ж×]<4Nb$&c(8yҶ2Gs.3@KyiTQ⩆(>vcQ8 dn1 dw+ǻ<1.Y1 SP5:]yFŻ16 p}D5?'sar57;xK\f>%,^RrY_(5_QQ-Wr1"U3o s8_Qy&il+(jhlLc~"9$"?@j䴓xv~*,j"@XON1QXM6]XHZwj!ve+FSn&#Ᏸ&;nkb?R)&otqHJ~).)iUp'ëEiJV\^Paۇ.;g8eZQ?;:c^L_ m!qfm`rCC;(wr`ne*Ә?A^8B@I%{oގȒHxbB8%П/ծDBq<Ztn`R~m@#4~j 1j|78kDJ-yP ~htK'Enf0Z2P*D4A>iznnh{ZПIuFA"?C3G;OEh&g'Ԙ`z sӬyj: njħ3c^0TjV*$utpIx2'1=dgGo~h' D cУm?f<]sh@?јmYg~VI#S|A> G%C v O|xZ΍Ց,+ zx]Ͻ Ol>ԡpi`_r5P8)VSR*7$YP}|u h1Tv&T!#YoWQ 12T8#$܄a+1ntz%{q-moop bus>޷bHseC8(zɕ3h Ƣ-p[ <BִcxU&28WB2Y]6q My,AtAKͣT5Hk` %&Y4/{亵LtmAj\:]F/ "7מ6=N:KEe;)Ê*:P$0'Is($bDZgjH@?ăW]EaY x%RɆN wu_wHQ7 \  l)Ce,N%c|J~KVqs-=ZVGK&Ӱۂ<:) ,-~Qk& 9zIڥ%謀DyP*UiGX5 >c7R;/ bWUjAqknsI.AP!58FΚTCoBZ$(~='K"]|JEڲE D8Sl&EK|<_S;/g} En&R˞n"u[*2#J(cN \$YD@8N"Wi>{(0g$ޗ~ @:/ĦoQexNL/ՇKE(j.)Q w-\Xoegݙ2.V=i<#ϙaL.;m_\{ڂɼ֦:mY_҂ſO=lV1 "(zc8 (K \G`$y^l m%6A0In%Mpi~K&PN/REz,kԒu& |r!2GAQtwp?D`0}!yI1dž _(i8n+qX3'43Ӑf^yjR8N3KXC΢r;T]<.FQݳShK+fŁ-K/]{VWX(v)0{0tMS˹%O%/ߛC١w+Qog\ RkP7B~G`G@fssgB\Vqڂ)s3;L!p5SoӤVD◒uG Ohȑiz^quLmm{g?Τ5XʤO>mKpJ;O0E`l(f.YFu:SY1Ğrd*qHEf͒ ʄ_|1˞{BPI1 .LooǬtSfy<_vXcrRf:\ u Dp5Z4Bņ6@ hM{j ctە< hAmEbj uH$ϝݯP]̂1v&lhU!,,,cl.N5i㤶&^k5ONmYtDKj핖@.⨊V =Tܥƛ6ؕ}O2ogelIqa i<+;;ݞvX֛lSC\M5fp;$-O7өZkzż`Ykbmے+m_!1] mkM$GRfIE(}27 $i [AI>Twwy8NuH9SOy4'c_6] 1dJV B[ I36ʭNoMO'u9a=& _q.I?{M"Rςpl,"&,qAL,⏝;\o^It ^ۅ lޒ!ze9C\YOZ5Gύ~x~sxՇkjPg6zڋ_s BFͪayN,u#ySB|B pF$Ҫ86`ߤC fi'}Ӕ bkGreUF_'V.s`-Rf+v(ĥto0&#o: 㴮ZUDKU(aNya}#RMEi71rw zƄ],@8|c U؉a$ ȱ? 0,ְ+\}$ࢎb(,,V$tsIhd4>)]#Y*%k̎F\qCX(ZE6Ϙ.evÌpg_/eD9@ |ԇcm\:YM{s'kXUZ@liE'rZ<S_PAk0 APyla:88 &Y#o؅T.U^!W:FO;Ck]iilYps`c')b +q ?a|U~?&]‘chu$Fn%]?zEfN>@ ;w41e|1Ik>_(` 5(7e+,2Z]lx=U*"ŸLfrVd xV = T c7lgp8;mZO8^ᜥY`?rw,OذEXboƌXzѱwgqf4 5$ ?98l#nK9KQ3\Z[dd~*5ntPcAa ی "4}A{^8yRhcRX<7!(M)$w)GK{ $vAn9+tIT+Ӱ*ob*#A #+Ԕp;;QJi~{ߣi$3)>i7l<_coA_QI3L/ 6Nti^ʛڀ@=?0aT6Z WmMfO /퀚,|S6ŀHŨAe~^Z^XufSK`:2 coLhY,hiN]AZi}Nĕ]1/õ|t(-ݫ}ӳ2Idyl05b"$N/Z0S[0ieb+cYtIO8b( \=}4{!)  u';ɛpk@}seU.57$rgC\!qjC\m& ̆ ɫDD0>Vo oۏqfpO+v Y?6M0jrDk `fh'˯/#p~+41P50w*e?rb_4¬)n&w= *7nJ ɣkAx?d1Zدms*ڑFq7Az|ńb_+%}K0Kٴ~>JQݗؘ[nsx-ispD'2'4mkId3f2JVّD}{D5KE|p[;\]a 2-`~:B %™U5gmb@ح-tWw'.T8TMJ,g'+LOמP(͙,T#BLd;cx+r0Z5LQ5,4YTVӵ"چN崘3Ql^lZIb%0W%4_. p[Ág#e 3i/II~ Gva/k2ҔM-x)~VP@7J#@gqG| V!S c*}ᝫN8?*x[J]oءzimt_-<; sP/(H+D%vqVׯTj 4~OXb,.XP?[iP bwQch[#~ _s:P=G:7.R`H% a!~ )ru;ȱOVhn`(=S&P-IIO et^FM<"2eHߔ}xIܩ۞6 !u w`DϤ]yjXQxsq2M^Sn Rr^Ɖ/ԫAo~[k_KMPyr֔.k!dtƏ i^]@~0>.5M>+(Rf]5[?{{5|"e*ƞY.TD .sdF䋼" ,t PMY.ž9;LƨM`V8={&tY`t)d9(?C9j1Ju/p;fմ<+>QUgzU0 'YsU9`E|úp}8*,~z3/=){4џgE o2eP?7w;q+]]E TKm 4`fU5$*ͯZUokGD󹺪lEZʤ R;-mW wMׄGmrϷϙ;J&;ƫj u_l<D?$:q!U3HpӖ`ECN84{jf&2i5ez˿kx߄:ª.¯%%j8h"-Ji+rYif(_&J&>1@Xruz+#6bm=o>X9^a/\ϦN) ] \npsQ9[n7P'Ŀ^B*!"?aL>'Oal2RGxGd0)q/Ӗ0A> GFZƑ 1L\Rhaz'Gh+!t} ]a ?]##k-:΂PUt`slşIUZD]#bU#WXԹKI蓊z(IOCr>)&06*rT3p +AF\o"Y(@12@MmJQs;t2pv{$]ט<X!  ^eZ}sSbrC}a!(an=Obez0gRSeAw"@q.R*vXͤ6SrP43ѥzwG*Pv3PhLi|%{qbdCuuyh YFg8hlgj8ގ[&kLM3m> w~Fu#n_ SeDRS>dhuNk!I^,D@17k-qӾoUHX" ~KȆEYSD9;t0sJ5(G^Ԣ_H?oNP!BџW ɗl+r;ލ[PB_ma2oOz"iϧ*{ ~HBYgQm ?DGg׳^~0:1^C4;V,cb¤hFߴ7!{&\! q \0Q)_fH)߈g^(i۩=b(e x`lKUZkw!@Ŀ?k<Ӊ#:]Jw_ٲh} P*$qtaͿ J܃Gލ!;uY +2ԘxGiDP~ J*Fr35WX?.?2,NfQo^Drwcq~YѴv uNQ^kL9YnCE {#ϟ}n>=D]P͉Jt H1?jaQy=V,Ok7*Zbit׃D1j$kqΜӕպ^:_Di{I'I l5 DOeqph(NL縫"`yC#y ތᐾ!ax ^}b|jh2esJuB.=6 0ټ%@wݎܭ)"[R|\*}* i73"6L) #~`2Id`h煳Է)>kQ#p\"BQ_xXQv|Cq?ezkϧfҼQl4`([baiFC9qP u;q%JFSm>X6Bt"vGua2!!}QK|Q[|sQ]<iq}:up$rZQu;_`&ZQ bC_+Ғaѕt|Whl`@j"eP,?s0c,}pA lKZ@*ØA.VPiKΪkJc>Q@s1\7x?R$ pqn %Sjܬh!>}%B~a:5v>Ê[ U h.Ć(F6!=Hw8dv^F$ WSV>4,F jL얻yΑ:*CXeZ52&GlxgW$WyM"N{G "Qޙ 𬂎}^0T2YSGW5ַԕqbds;Z,ԗ|ތ:KKU-BƿL AIGo&怤, shmP㚇\QYEnǼFfIq49ذ &Qp܃{YϠB|2IU(>`@xBޯP UxJśl!n\AVI*|8bqzv#nGF QCϺG.6T, _0W7S߇E" 0 dS;lvY^@2y(3}r8ptİI'Z۝fS C4ay;&4U{fBx~E6d8~\")Eݪ<# HC4$_+nm`5]heb$@ %bd+GꏦoJFqdI4u|F9d}X9_z mQ lAuFjGr _I|f[/8s1)M[ WijH/sWq8;n"x8˚@~p;~40/틼@Zh' x+!XOSean|I/Kz]߹?}W]1 Bڗs4:hwDxٗ7%'}o3hB[d9F!~hhI;琡.QwYz>-ɚ3BӬ+ ҳVC֬AA@HJWs[Q:$vQ bDDX:YUq8 :0CG TɁ9KP}1?FubEKECPUuMo~?z_Ĭ❇R+Ă[5̊e+}̡u(4s4g4;b*X<I[7^$?*`}_$2m(Xŷ-b~? L `e[1a)FD~꧕ܣ+l?#X m56 Hs%pNev];zQe@1c>Jwn:f:rCͯضV6Y88->`㍎~h[>԰BVTzlA2N~/"`8Rbl? 4EN}cwr!cWVR~ C,A0ןkٌ;(~r-"!a47؝`4_Ā|M0m{ B 8Yz]i:^!b1["V`ѴĞzwF}&hؔkB"W5tm}߷NV%SءcxQ^RIu.-eVT6rfA>,Z4 mT˟ܣm2в!wIr\3[PAL I_,*H,y+lVD1h:T<%qJ6,#/T .Sox"881ϋ LKf̠oy\FԶג?C&G&k9􋀅agS1ƶÖ>|ʋ+j~/{Z1,a9R̹yt{|i;]W7)iҦGz{ ig&@H2ogŦЍP˄4bʠ#l >gq.kxe?|xw>6 ̱a}{xׂ[P䲊 pы,W~αSՎ$:N;϶q9jx~~Bܔ'1͋bXԶ0fRz!ď\)r1#xq^9Pq)bU|L^en؃zb勣Dq6O mW7l|XVKTFlPDz˟Ȧ/C+CSh2ɿm#"QR_EI_yOM7PX-:?mDzKsHՀOտ?qQkD`Y*bɒep ]݊4w@QIJ_%WQhbyyJNlHI,89٠xt@yBU㍰%@/K/W @x ڜ3"GlŁO_&Qd1bb%oYcQ:`k_ۨQ<f_<Օr';xLDt| d*LN~kJ/2hR#Bt'A$$֋_An˅ZMu 6qAPƹ2P|zAqn%&&XǍY>gm!?gs Q6b!n'2C$84ݚ:וH4 oںs7>g4'`Q^qj/W7meeѣ*;6)wiV4nEEÕ !!Ď U E?.xL;XWOs(RU>S ՘xA0PRG?%tgYU18mc$zLIjbUZ0|Aˈ5&Fھ͊hu:Q, sw1b׃y0߇H}r7@Nk4STm '.L9LњA,ZixV.iO/μ.YU\V@N2i8\@$s\F).k9s?4g){, 3/Q2F'x Zuuؐ_AܰHH2zs(9jfaź$+K'qI[)+\MUߟ2#jR ݽN|?mzSր7j1+Y%p^DLm8*Qq5_T %;nq'pw v LeuJ4_~*;N>6fP /ld;'MhL (Jgot} [n277 =7XՌ&_+T؅vB): T 52Iiw{#LE\{{! Oar8 !usS@پʗwj'8cXU,Ry؊5 \Web "Nւ{)P0ZBȎO:x$Y!DZӂE_.“8 ArFO@.W[PZ#A^ťVx4J#El9g7V-1P)9ϵ[Jŭ6|QN[ɿy*reeJk4kp4 n)R,͈>AL .[o9&vqk\@raxB{ qe}ޤ&qv0*|Gܹ s"yuque[:Ej-ͥ}PV(d dW2o#Y|x'HyG7b_Ђ4,I ^MܖFܹ \-6:1dD"ErNK ;*y\gOC)mŗ%z\>jCH s EWx3$>Fra3z#5 a73PW^@!C΂|lTX"& ÉXH:%<6DBAz|esu/r?RA~bjyQmgB   YZZMr& vlz"Ȓ*m-ZqvաuYzY2rc!OA Θ{5}:Mu~1Q5yxu E\%B:16LX8і?t#=E^#*5Q[βOJa6gEwej?_zyJS] i`wƩ /c6 Jx_# ߢpgҨ!YCh oFXA}a4`1V8nXY&7Yޣ㺸H8x}z &٥ n( O'ؖzo_ýzX;g\iuc|B-Jfo1o z>ehPH?/ԃG>znZ_CDew91O7$Uy6{{ dwUw5u)ª'o'% &3 xM=djfuQzIm')Y < Xt\lxBu#IB(tODWW!!tXF7]+%N KE !g_J5Dg5\Ŝ檗u/2?;4E1r~R՘DBKV-|P_1j8_ @Vwms+t(_OjeI`W)q(#( {2hZ w @d$)qYrS&(%5y8Tߔji=~gVqHZؗ,fze^`L7?b' !pxRJL-!wJu"Kռq" E(lBF-"Ts B>7~MFU/#wTBMi5RSٳwQ5Ű62 P^LC4~T=O_KEj*$#tk4 `H7.Sx>'nyDBfDe+$rya7D#̂d!8[=>E3ad9J@8^0im7\FW(:z~w zRypSԨUy GKT `q17Ϊ/9AzWa,%(a$j IE_튽>~} ݚP'OC.!trv<蔷0uĥT:l ;H #^)D!?7"*Fg &b4VU;2&cnWs٥`-6̪+ ')]r7] s4\^UQ=SF|@ LBZAkKy㙶Emx0qL4-Sf޷A]r%|t4vAi; *;xIO!Źׇʫ%KTWbV9~ZTwhC|Kb:n[Bw8|q8Q/:.}=P۰-Շd;Z5 ))jnp]xR|;zOyz=4FV-C9$:&fl9Sx}ͭ꒖s܌L!er W|5k$Z9<='Иx ?JϫX og:QY'kqUaTEeLi9*hZzJT(w+]7Ϸ*qυD;.-ŘES(ªtv44ҕObwy K"1crTˌƋ:NɉJ13Ĵ4^+_Z]~G宏8̶1e@lhafRoĖ,pvARqPaA eh1$ aYD5 Ҫ04 r R!YlO텳w>7O& t[ W!;\+I?z:B"$Xڍ |(pSLmV+rE )퟿IOY:ƸSqF_y=B?[(w_l$eXGoxo2cB8as>lqYb >`01qV8/n R*seP5=nDqE@8_,C[<ϓ!5eczPG`E)RUE+OQ@vız1fpBUFÙIܷʾ)jz_j.VB -sr=FUSm3:ڡ7 aa2 #L͘AZ]mԿb д.ر~&Mvd1Z1y*0DӤ mH?ԞE=$kT=Ȕ/Ok270+֤: ILiً$ PeX5q{,CflaLB\4!-QZws+Eҟ/Ez5uj52* F}DVmo6pz_"qRwމB1ټ tWU3 Qw1 /I-ӑbKsT?,h,.W]rƑ"N<÷R%89y~SH,p b0}A/M{cɴ7 maN-ow #*j]_52Bg3!bvVN6h3gZo s,x3':˺NCΤ.;EYcd9NX>4zA\:A/"A_Gډ)t2FsOf")g)2(4S %f>m n~A$F_zn:|o`ȹX5Ljj-\~K *Bg'ɶJfUo{А~'}1Uq~~zEV5Bb_fiLQAum-lVG#d O& `,r : 5DLt+M5UPpp=*7+  #2*W9 B_Ӎv7#Jպ|d*&N3&֑WGȊ N`ESR-YE)TN8ך7{0q.F=G=s"~O".v"r}P I\]xCIu n2MDK 4 ×-#נ3IyXSt;&iԢRa0оttF@@%*Y lb 16TthrKg~XY"_2Xw +)C+BDR u`$xy L3F`;п-Yf(ZɒbSX瞴:{YBs{7č~ާ^:D]!/K3fqe=H [Dm;ʷw1\6ȠV=)kz.!Ov=:<}Y,!j۲rDh,j^b )0$;yT_ZXP(T: X>S]mLxw==ִ$_Sm|I#`B 'Qb%wR&ە|aX.wJՏiڇԶ6;'+?KIk[W K&ж{O:2Y·6i%F< f@0ʼZ/(yu/gXsۥ4V8gwQ|NJ#^<]U\Y HH F#V\nЛZf#O16qCR xdKA2Itœ7i=|iVXXWTd3\vyTVo XF-~pDiID^ *pŹG[+ՀfD  2i\> a .LPO )ޛ6c0X Y6^5v>6x{{)\11LvJ; ;, :G T8|qEA: H@ƨ3"yO/5<9ik'khP\MAS@llr==Dm97oZN~YUd哦R2M{m:eW3g2>ȇ'^4 |jB4W 7j}fJ3|>SLX3lN+LZ_ʮf;|o w7?mxj'g\CwϛwtĘXj5!l bw?"X_;2F`tYv&KJC<[c怵BQǫӰ*,Lű qix41@ЬYE%닲.C|GO*\CzhyIg9vΛ%I8eՉy~>(B2v<2@4)HWai-쵿zZ(J+ d'&Q0$m1Y /[3cH]*G jUDLt mV[%l 7َ[ 0(Gn}]]4ti8"BZgHrϰk`lSIjXXϔ\nw])V6@01 FLW9>o9.ratQAGAʵ cDVǣ-!yFYr?z Ջ_eJo1i?j9.*MC7N-ƒ{Rs`0E9ȫz'.I564OmPn b,~Qjc#C8Ec@JKDHTr{l4،K>Km˛ )_SUe߼ }] C X} ]En!g^& jP%cˈCU'팡y?4zs[n GUuqHj'gщ{A0Prm.*7C^ [f߁%0㮽ARv\7A夆.HZd'xUlRJfpU \%B[!Qj6nfj&acA)֕qfzؘ}Ugۦ7?]Ɨ𖧂J5zb̰]:M]C-X|6aᬡ{c˾Wej'`8=| TTnUV"D^K2],/;=rClyɋ0i#gTzSw"VGeL1٠cJ.\-6`0Btv@w|*tqAg~3D!Ѷfon1 U:ji D&?kt[Ⱟ*WѲNhO*nn>VTlӏ*z<Jo 2bJD^^jrK?ߡ1q3=&ȌM d k |jg9~Wx;v Ԫ?V .jord ~?vqgvəE{hf-R9Cr z& 3F"]]݊Ny_"c^[o~HTѐpvtŻ6öxz+dݙTҚ% x RR?0jo$̍³(CM~V.(/riƼDd-MpUڦbf!ADM@ϫ\ZWJ&Y t̴q |;#jk{Wփ\Tl1(<KhCt9 d=r"lZNm2л )X?Lv$m>B t{+Uǥ}X;\LU#fS4x1b]e"`l~V(&YQbG{o5L 2ڊT puBiCḷ}n̞]~]Y)Б"dP@wc fKPN0xO{Ֆ`ni+ Kaڦ(QY(;&*aͯhOCd1ta=3N1V~"˛pPf]}a[".B$OŵO9U)"k#Huz'.3Ru4)h>`m"$QqTؽ`s@4~ɦ$b&zS,ڟ 5H h *!-ÛI/xmfmY3ҸouG";ols".]<O#g% MqF>Ѻj7`'kqXwu@ O:ν(g;&mj!إm |-kUo0} H~:je#.qÀsS5Sڥ4Үf@ͅJwjȧ.s_&hs AQw*cy=1YdMa|ײߪaK]%ü T #6 ~WM!le58B[h [LY\M"\An \NGNON78Ik`K#cY_aZc#O)"*(}vq4`$-b_r-w[wr6q_P~FhZ`5U \#Jィ"%0[i|?o;6,,oVQ%5WYzk_EՊKa8)3l\UB;z0b]n̦aEPpgI6P|FG(iԽ/rscKlğw|Arfoρn洬$2fuF80,2d#21JKۈ{| BďL+Ic7E.wr3H#TDz[Nd/7&U CM^~/Ԯ6{,䜢uuu]TEv 7=A[z 9۔ ^n2Ȣ86 "st^ "Qfk['ˀ e7Ȗni= V:Rߑ5{/\|ꭖ.JY4 (;d6-5!泌0~1֎e=^ogDGM3ΏZdhf5n7J𨣉j|V']nɫ'Ϡdm9,4TsGȎs'᝹2XcC2)nWs򸆖Deq6.OL(Ck}z)$c<襦HJ s%V SQl8-x$J%6TUXV{H&TVw'־(y8xW{xlC]")㨣:qԑ Pxz"Pd,4g69v&CeuT|U-Ȫ \p"YC%L8:VQ˗"hsz.}(HHq"wO*eFՁݮn8-8yHIF=/՝89=`6ɋ^$k[]0~^e')jYzV~zT6(_$W/>tU/ĨC)1ּ;M1 ^nS4O<@}iG) m0jGa|VS+Ojtx:XsqahME \Pc;3&)亣ョR `ǺA%9! Qjw`M[XdD3?%s!hdM:Ա_RD6!)l u |:au7_ٟx 9%Ͽhbya$\?}Yhnt|P-Q   L7 ^HKTm)ԇvY}IIa1QnP]I~68iwAjZYm_݇KmÜO҄\YE H]^5YЩ{- 9ZT3haY ??nl4 V7Q&|%B G}{3QֵJ ;yBӺOrz-;nӋ[;v@3;"w|O\V8Ӄ,tf= v숒H":bwɯ:?+{^D^ L_Z5KU+|*<gEAoR̤;KPZoK<9mJ,1894i[vbsTl#DS<3"2r-,CE.ŀsZ:T }\ykn J6"J|CϵLM'mI>f9rw98cp|gcY9АQ!_4j-e׿F>JL$Dw友t‡~3CCCܟ]4W1VaHg$Og yO~6q@j#DI-kpq!g ū)t3;tAM)2J kZ#:qPH_JSVܛO^J8&u<䡠7Z(/yn?}*I .hZa ԋyfsΉWR\n+0FNec~z[Ⱥ"T I;ZhUf˓s*L. rTr3=u:aX;ٱ8fUF@?,wXهdJ1ƥAyk`p!:wZcYSvEҖIe86oU n"BN PnqFzyۓUЄi.w$?5@eLQ TRlH[q~{,E3L߉!IL؅o<$F-f,kBP䨸{EUc_N-<甧p<ת 㵂6;u7@wwQ%e sDYٷ똃-㹆M]&TS6^/пVíBľ.%J?VEoqLAK-l 0I' RɩC;7bXmc\5WE32ҩk']Y 7N*@c?  GedouᆟF;X$#A~$+&z-xAaa˒I햄gM9u;/d<`:T-}Nasga5"Æ>w*bfxQDe/طc/IAx!]q9qQZ x{: wl>uA(msd{-A@ļa>s5廕CF>x|aN|N(:1D{ʹG=uLHZM9DKMJ偊l؈*F&gET g=o|a^ IN]FrQq0.$l챵ƟC+跋ܨ2qvoUH@~1^J2NJš*mE":i2`W /~80UlB ?@#MT[(WA TH80b+^i~5IJ\!i)Eߪt1E!0qR@9+kq-f=]wuTK|IĄ=kZ~{Zys~rL8&UFn t,G%~şd4ǟHaU5B\t2 C\>kԚ1vTTje_(.b63kXprLQW>3#HxVG `sǺ}yEzV\9:7cD-|(w\uFBD2B6x@{ʿ߿Dfɮ)A8TϜ#54"Ū =1IU@Ć[ȕxL*X%=v[GrmKb\̞t)j%!1\we-o\ "u|=3ElpIZqjrJm_v 7G` QV6Zٞ.sSˣ=3-L;nȓJy Hk=Ef k}:(&BO8/s i&9#nZjh.PߛcGҗdHw.qy'8=jHlkIȩmRA+Ւ!OYs TCa}}YI^6MGl5 Kˢ>gxIv>dDjɈB߉ZqLXh.+Ge\yv0O؈f["-3#yP.gNG%#]Fn_|ՈwZv7AIԽ UDDd1黌G58Ayx;9j_31—5$"x4C(;Bh7jjB =鉏3]\s%**yhE}7Y"_wA9]5)HcxeF xt؂ϱxwx;DCep#3j*RXEAݔRg{a G@$mmBDUA$%fpO &bBf+Q~l!l3 |G[4djqSh%CO< 뮔IOAM/7P :hbB'gNC3ʃ]) ^73n;VRIojFdu6I~_2^<c?牌}0 rb{̽d5a] zc ;)uiQ>m+Qf~@/yƁpjZ>+-[rJp[x4$%VU!֟.2a%y* UFNWCmMP$knxJƨ XfNz&{=.L\vGLeBl|iᕈ}h@)8c3o{/e-o My?eb&$ii!}P^R/EXJ_"ކ! ǬM F&6t2! Xi8-U]ǮIMS~zNjScKSkMI^UE)/d^Im-I*G6)^$ffRU( V-){rMci?9ӢwM;/0M2llZ$cC1>[m:Ag.0b^#A"U(̕?t=,Aj Ig_qSxL~n+r&\e}F\[ևǖ{je04'"DqyoL<< : 3䒼r0QaʹȴuB*1XдFIԾsȫVIN)ڣ$⩛z ؿKM:Ū'w%{ݽ+ P_d1?HCvC!@ðwD@j-֔Kѝ6֣9utoVDsvNht)@ǃ̚>#XE%+0`F?)׉=`* |_dL F*;b U3GS4BWX)3UнӇ%˼3V+N@¤t:w9oY|.uKE:@0<^[ ;ʖJ[