nscd-2.31-150300.63.1 >  A e0p9|.x'^'wiz:<b_2u V`t+)Ʊ3U8QY CTeDKt4j_e}Ko`ݲmIf]M&4~O**`MWr,b *g@'m5qQ!Kvwpe$X[hσpI?d   4  GMS  B ?   D S pBd#d#V#(89:"q=>?@BFGHDI߀XߐYߠZ[\]^ bcd/e4f7l9uLv wxy0zCnscd2.31150300.63.1Name Service Caching DaemonNscd caches name service lookups and can dramatically improve performance with NIS, NIS+, and LDAP.es390zl37 SUSE Linux Enterprise 15SUSE LLC GPL-2.0-or-laterhttps://www.suse.com/System/Daemonshttp://www.gnu.org/software/libc/libc.htmllinuxs390xgetent group nscd >/dev/null || /usr/sbin/groupadd -r nscd getent passwd nscd >/dev/null || /usr/sbin/useradd -r -g nscd -c "User for nscd" -s /sbin/nologin -d /run/nscd nscd if [ -x /usr/bin/systemctl ]; then test -n "$FIRST_ARG" || FIRST_ARG="$1" [ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || : for service in nscd.service ; do sysv_service=${service%.*} if [ ! -e /usr/lib/systemd/system/$service ] && [ ! -e /etc/init.d/$sysv_service ]; then mkdir -p /run/systemd/rpm/needs-preset touch /run/systemd/rpm/needs-preset/$service elif [ -e /etc/init.d/$sysv_service ] && [ ! -e /var/lib/systemd/migrated/$sysv_service ]; then /usr/sbin/systemd-sysv-convert --save $sysv_service || : mkdir -p /run/systemd/rpm/needs-sysv-convert touch /run/systemd/rpm/needs-sysv-convert/$service fi done fi if [ -x /usr/bin/systemctl ]; then test -n "$FIRST_ARG" || FIRST_ARG="$1" [ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || : if [ "$YAST_IS_RUNNING" != "instsys" ]; then /usr/bin/systemctl daemon-reload || : fi for service in nscd.service ; do sysv_service=${service%.*} if [ -e /run/systemd/rpm/needs-preset/$service ]; then /usr/bin/systemctl preset $service || : rm "/run/systemd/rpm/needs-preset/$service" || : elif [ -e /run/systemd/rpm/needs-sysv-convert/$service ]; then /usr/sbin/systemd-sysv-convert --apply $sysv_service || : rm "/run/systemd/rpm/needs-sysv-convert/$service" || : touch /var/lib/systemd/migrated/$sysv_service || : fi done fi [ -z "${TRANSACTIONAL_UPDATE}" -a -x /usr/bin/systemd-tmpfiles ] && /usr/bin/systemd-tmpfiles --create /usr/lib/tmpfiles.d/nscd.conf || : # Previously we had nscd.socket, remove it test -x /usr/bin/systemctl && /usr/bin/systemctl stop nscd.socket 2>/dev/null || : test -x /usr/bin/systemctl && /usr/bin/systemctl disable nscd.socket 2>/dev/null || : # Hard removal in case the above did not work rm -f /etc/systemd/system/sockets.target.wants/nscd.socket exit 0 test -n "$FIRST_ARG" || FIRST_ARG="$1" if [ "$FIRST_ARG" -eq 0 -a -x /usr/bin/systemctl ]; then # Package removal, not upgrade /usr/bin/systemctl --no-reload disable nscd.service || : ( test "$YAST_IS_RUNNING" = instsys && exit 0 test -f /etc/sysconfig/services -a \ -z "$DISABLE_STOP_ON_REMOVAL" && . /etc/sysconfig/services test "$DISABLE_STOP_ON_REMOVAL" = yes -o \ "$DISABLE_STOP_ON_REMOVAL" = 1 && exit 0 /usr/bin/systemctl stop nscd.service ) || : fi test -n "$FIRST_ARG" || FIRST_ARG="$1" if [ $1 -eq 0 ]; then # Package removal for service in nscd.service ; do sysv_service="${service%.*}" rm -f "/var/lib/systemd/migrated/$sysv_service" || : done fi if [ -x /usr/bin/systemctl ]; then /usr/bin/systemctl daemon-reload || : fi if [ "$FIRST_ARG" -ge 1 ]; then # Package upgrade, not uninstall if [ -x /usr/bin/systemctl ]; then ( test "$YAST_IS_RUNNING" = instsys && exit 0 test -f /etc/sysconfig/services -a \ -z "$DISABLE_RESTART_ON_UPDATE" && . /etc/sysconfig/services test "$DISABLE_RESTART_ON_UPDATE" = yes -o \ "$DISABLE_RESTART_ON_UPDATE" = 1 && exit 0 /usr/bin/systemctl try-restart nscd.service ) || : fi fi exit 0 ` A큤A큤A큀eteteeeteteteweteteeeeee2cdfafd373d24fab07018d0e95dd49510ea6c992b7be2b0611ab23bbc2750b579fe74962fbce2fa9b2a4b92f693b2fd42cbc2ed331fae268de7104879a72df879c9cec5dd2414dcb76d11e75903aa6fd9b7785c897cb9f853edcb140a71b779670cce3af06816827ca34c770449d0d01d52be03294c9b78de44fc6550884cfa/sbin/service@YYYYYYYrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootglibc-2.31-150300.63.1.src.rpmconfig(nscd)glibc:/usr/sbin/nscdnscdnscd(s390-64) @@@@@@@@@@@@@@@@@@@@    /bin/sh/bin/sh/bin/sh/bin/shconfig(nscd)glibclibaudit.so.1()(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.10)(64bit)libc.so.6(GLIBC_2.17)(64bit)libc.so.6(GLIBC_2.2)(64bit)libc.so.6(GLIBC_2.2.2)(64bit)libc.so.6(GLIBC_2.2.4)(64bit)libc.so.6(GLIBC_2.3)(64bit)libc.so.6(GLIBC_2.3.2)(64bit)libc.so.6(GLIBC_2.3.4)(64bit)libc.so.6(GLIBC_2.4)(64bit)libc.so.6(GLIBC_2.7)(64bit)libc.so.6(GLIBC_2.8)(64bit)libc.so.6(GLIBC_2.9)(64bit)libcap.so.2()(64bit)libpthread.so.0()(64bit)libpthread.so.0(GLIBC_2.2)(64bit)libpthread.so.0(GLIBC_2.3.2)(64bit)libpthread.so.0(GLIBC_2.3.3)(64bit)libselinux.so.1()(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)shadowsystemdsystemdsystemdsystemd2.31-150300.63.12.313.0.4-14.6.0-14.0-15.2-14.14.3eSe;ddgd!d dq@dtd%yddccU@ccob@b@b֜b@bb no longer includes inline versions of any string functions, as this kind of optimization is better done by the compiler * The nonstandard header has been removed * The obsolete header has been removed * The obsolete signal constant SIGUNUSED is no longer defined by * The obsolete function cfree has been removed * The stack_t type no longer has the name struct sigaltstack * The ucontext_t type no longer has the name struct ucontext * On S/390 GNU/Linux, the constants defined by have been synced with the kernel * Linux kernel 3.2 or later is required at runtime, on all architectures supported by that kernel * The DNS stub resolver limits the advertised UDP buffer size to 1200 bytes, to avoid fragmentation-based spoofing attacks (CVE-2017-12132) * LD_LIBRARY_PATH is now ignored in binaries running in privileged AT_SECURE mode to guard against local privilege escalation attacks (CVE-2017-1000366) * Avoid printing a backtrace from the __stack_chk_fail function since it is called on a corrupt stack and a backtrace is unreliable on a corrupt stack (CVE-2010-3192) * A use-after-free vulnerability in clntudp_call in the Sun RPC system has been fixed (CVE-2017-12133) * fate#322258, fate#321513, fate#322453 - fts-symbol-redirect.patch, glibc-resolv-reload.diff, glibc-2.2-sunrpc.diff, i686-memchr-sse.patch, ld-hwcap-mask-suid.patch, ld-library-path-suid.patch, sunrpc-use-after-free.patch, test-math-vector-sincos-aliasing.patch, tunables-bigendian.patch: Removed- Fix RPM group- s390-elision-enable-envvar.patch: enable TLE only if GLIBC_ELISION_ENABLE=yes is defined (fate#322271)- ld-hwcap-mask-suid.patch: Ignore and remove LD_HWCAP_MASK for AT_SECURE programs (BZ #21209) - ld-library-path-suid.patch: Completely ignore LD_LIBRARY_PATH for AT_SECURE=1 programs (CVE-2017-1000366, bsc#1039357, BZ #21624)- Remove glibc-cpusetsize.diff, no longer useful- fts-symbol-redirect.patch: Fix symbol redirect for fts_set (bsc#1041123, BZ #21289)- test-math-vector-sincos-aliasing.patch: Fix test-math-vector-sincos.h aliasing- add-locales.patch: renamed from glibc-2.3.locales.diff.bz2, drop en_BE locales (bsc#1039502)- Remove glibc-testsuite.patch, no longer relevant- Use multibuild feature - Remove obsolete check-build.sh - glibc.rpmlintrc: remove obsolete entries - Use %tmpfiles_create in nscd postin- i686-memchr-sse.patch: Fix i686 memchr overflow calculation (bsc#1031021, BZ #21182) - sunrpc-use-after-free.patch: Avoid use-after-free read access in clntudp_call (BZ #21115) - Build testsuite with gdb and python-pexpect to enable more tests- tunables-bigendian.patch: Fix getting tunable values on big-endian (BZ [#21109])- Update to glibc 2.25 * The feature test macro __STDC_WANT_LIB_EXT2__, from ISO/IEC TR 24731-2:2010, is supported to enable declarations of functions from that TR. * The feature test macro __STDC_WANT_IEC_60559_BFP_EXT__, from ISO/IEC TS 18661-1:2014, is supported to enable declarations of functions and macros from that TS. * The feature test macro __STDC_WANT_IEC_60559_FUNCS_EXT__, from ISO/IEC TS 18661-4:2015, is supported to enable declarations of functions and macros from that TS. * The nonstandard feature selection macros _REENTRANT and _THREAD_SAFE are now treated as compatibility synonyms for _POSIX_C_SOURCE=199506L. * The inclusion of by is deprecated. * New features from TS 18661-1:2014 are added to libm: the fesetexcept, fetestexceptflag, fegetmode and fesetmode functions, the femode_t type and the FE_DFL_MODE and FE_SNANS_ALWAYS_SIGNAL macros. * Integer width macros from TS 18661-1:2014 are added to : CHAR_WIDTH, SCHAR_WIDTH, UCHAR_WIDTH, SHRT_WIDTH, USHRT_WIDTH, INT_WIDTH, UINT_WIDTH, LONG_WIDTH, ULONG_WIDTH, LLONG_WIDTH, ULLONG_WIDTH; and to : INT8_WIDTH, UINT8_WIDTH, INT16_WIDTH, UINT16_WIDTH, INT32_WIDTH, UINT32_WIDTH, INT64_WIDTH, UINT64_WIDTH, INT_LEAST8_WIDTH, UINT_LEAST8_WIDTH, INT_LEAST16_WIDTH, UINT_LEAST16_WIDTH, INT_LEAST32_WIDTH, UINT_LEAST32_WIDTH, INT_LEAST64_WIDTH, UINT_LEAST64_WIDTH, INT_FAST8_WIDTH, UINT_FAST8_WIDTH, INT_FAST16_WIDTH, UINT_FAST16_WIDTH, INT_FAST32_WIDTH, UINT_FAST32_WIDTH, INT_FAST64_WIDTH, UINT_FAST64_WIDTH, INTPTR_WIDTH, UINTPTR_WIDTH, INTMAX_WIDTH, UINTMAX_WIDTH, PTRDIFF_WIDTH, SIG_ATOMIC_WIDTH, SIZE_WIDTH, WCHAR_WIDTH, WINT_WIDTH. * New features are added from TS 18661-1:2014: - Signaling NaN macros: SNANF, SNAN, SNANL. - Nearest integer functions: roundeven, roundevenf, roundevenl, fromfp, fromfpf, fromfpl, ufromfp, ufromfpf, ufromfpl, fromfpx, fromfpxf, fromfpxl, ufromfpx, ufromfpxf, ufromfpxl. - llogb functions: the llogb, llogbf and llogbl functions, and the FP_LLOGB0 and FP_LLOGBNAN macros. - Max-min magnitude functions: fmaxmag, fmaxmagf, fmaxmagl, fminmag, fminmagf, fminmagl. - Comparison macros: iseqsig. - Classification macros: iscanonical, issubnormal, iszero. - Total order functions: totalorder, totalorderf, totalorderl, totalordermag, totalordermagf, totalordermagl. - Canonicalize functions: canonicalize, canonicalizef, canonicalizel. - NaN functions: getpayload, getpayloadf, getpayloadl, setpayload, setpayloadf, setpayloadl, setpayloadsig, setpayloadsigf, setpayloadsigl. * The functions strfromd, strfromf, and strfroml, from ISO/IEC TS 18661-1:2014, are added to libc. * Most of glibc can now be built with the stack smashing protector enabled. * The function explicit_bzero, from OpenBSD, has been added to libc. * On ColdFire, MicroBlaze, Nios II and SH3, the float_t type is now defined to float instead of double. * On x86_64, when compiling with -mfpmath=387 or -mfpmath=sse+387, the float_t and double_t types are now defined to long double instead of float and double. * The getentropy and getrandom functions, and the header file have been added. * The buffer size for byte-oriented stdio streams is now limited to 8192 bytes by default. * The header now includes the header. * The malloc_get_state and malloc_set_state functions have been removed. * The “ip6-dotint” and “no-ip6-dotint” resolver options, and the corresponding RES_NOIP6DOTINT flag from have been removed. * The "ip6-bytestring" resolver option and the corresponding RES_USEBSTRING flag from have been removed. * The flags RES_AAONLY, RES_PRIMARY, RES_NOCHECKNAME, RES_KEEPTSIG, RES_BLAST defined in the header file have been deprecated. * The "inet6" option in /etc/resolv.conf and the RES_USE_INET6 flag for _res.flags are deprecated. * DNSSEC-related declarations and definitions have been removed from the header file, and libresolv will no longer attempt to decode the data part of DNSSEC record types. * The resource record type classification macros ns_t_qt_p, ns_t_mrr_p, ns_t_rr_p, ns_t_udp_p, ns_t_xfr_p have been removed from the header file because the distinction between RR types and meta-RR types is not officially standardized, subject to revision, and thus not suitable for encoding in a macro. * The types res_sendhookact, res_send_qhook, re_send_rhook, and the qhook and rhook members of the res_state type in have been removed. * For multi-arch support it is recommended to use a GCC which has been built with support for GNU indirect functions. * GDB pretty printers have been added for mutex and condition variable structures in POSIX Threads. * Tunables feature added to allow tweaking of the runtime for an application program. * A new version of condition variables functions have been implemented in the NPTL implementation of POSIX Threads to provide stronger ordering guarantees. * A new version of pthread_rwlock functions have been implemented to use a more scalable algorithm primarily through not using a critical section anymore to make state changes. * On ARM EABI (32-bit), generating a backtrace for execution contexts which have been created with makecontext could fail to terminate due to a missing .cantunwind annotation. (CVE-2016-6323) * The DNS stub resolver functions would crash due to a NULL pointer dereference when processing a query with a valid DNS question type which was used internally in the implementation. (CVE-2015-5180) - Enable stack protector if part of %optflags - startcontext-cantunwind.patch: Removed - cpuid-assertion.patch: Removed- cpuid-assertion.patch: Don't assert on older Intel CPUs (BZ #20647)- glibc-2.3.3-nscd-db-path.diff: Move persistent nscd databases to /var/lib/nscd - glibc-2.3.90-langpackdir.diff: simplify- Update to glibc 2.24 * The minimum Linux kernel version that this version of the GNU C Library can be used with is 3.2 * The pap_AN locale has been deleted * The readdir_r and readdir64_r functions have been deprecated * The type `union wait' has been removed * A new NSS action is added to facilitate large distributed system administration * The deprecated __malloc_initialize_hook variable has been removed from the API * The long unused localedef --old-style option has been removed * nextupl, nextup, nextupf, nextdownl, nextdown and nextdownf are added to libm * An unnecessary stack copy in _nss_dns_getnetbyname_r was removed (CVE-2016-3075) * Previously, getaddrinfo copied large amounts of address data to the stack, even after the fix for CVE-2013-4458 has been applied, potentially resulting in a stack overflow. getaddrinfo now uses a heap allocation instead (CVE-2016-3706) * The glob function suffered from a stack-based buffer overflow when it was called with the GLOB_ALTDIRFUNC flag and encountered a long file name (CVE-2016-1234) * The Sun RPC UDP client could exhaust all available stack space when flooded with crafted ICMP and UDP messages (CVE-2016-4429) * The IPv6 name server management code in libresolv could result in a memory leak for each thread which is created, performs a failing naming lookup, and exits (CVE-2016-5417) - startcontext-cantunwind.patch: mark __startcontext as .cantunwind (bsc#974800, BZ #20435) - Removed patches: * 0001-Updated-translations-for-2.23.patch * 0002-Regenerate-libc.pot-for-2.23.patch * 0003-Regenerated-configure-scripts.patch * 0004-x86_64-Set-DL_RUNTIME_UNALIGNED_VEC_SIZE-to-8.patch * 0005-Add-fts64_-to-sysdeps-arm-nacl-libc.abilist.patch * 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch * 0007-NEWS-2.23-Fix-typo-in-bug-19048-text.patch * 0008-Update-NEWS.patch * 0009-sln-use-stat64.patch * 0010-Add-sys-auxv.h-wrapper-to-include-sys.patch * 0011-mips-terminate-the-FDE-before-the-return-trampoline-.patch * 0012-Use-HAS_ARCH_FEATURE-with-Fast_Rep_String.patch * 0013-Mention-BZ-19762-in-NEWS.patch * 0014-Define-_HAVE_STRING_ARCH_mempcpy-to-1-for-x86.patch * 0015-Or-bit_Prefer_MAP_32BIT_EXEC-in-EXTRA_LD_ENVVARS.patch * 0016-Fix-resource-leak-in-resolver-bug-19257.patch * 0017-math-don-t-clobber-old-libm.so-on-install-BZ-19822.patch * 0018-resolv-Always-set-resplen2-out-parameter-in-send_dg-.patch * 0019-S390-Save-and-restore-fprs-vrs-while-resolving-symbo.patch * 0020-S390-Extend-structs-La_s390_regs-La_s390_retval-with.patch * 0021-CVE-2016-3075-Stack-overflow-in-_nss_dns_getnetbynam.patch * 0022-configure-fix-test-usage.patch * 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch * 0024-nss_db-Propagate-ERANGE-error-if-parse_line-fails-BZ.patch * 0025-getnameinfo-Do-not-preserve-errno.patch * 0026-getnameinfo-Refactor-and-fix-memory-leak-BZ-19642.patch * 0027-getnameinfo-Reduce-line-length-and-add-missing-comme.patch * 0028-getnameinfo-Avoid-calling-strnlen-on-uninitialized-b.patch * 0029-getnameinfo-Return-EAI_OVERFLOW-in-more-cases-BZ-197.patch * 0030-hesiod-Remove-RCS-keywords.patch * 0031-hesiod-Always-use-thread-local-resolver-state-BZ-195.patch * 0032-hesiod-Avoid-heap-overflow-in-get_txt_records-BZ-200.patch * 0033-malloc-Remove-NO_THREADS.patch * 0034-Fix-malloc-threaded-tests-link-on-non-Linux.patch * 0035-malloc-Run-fork-handler-as-late-as-possible-BZ-19431.patch * 0036-malloc-Remove-malloc-hooks-from-fork-handler.patch * 0037-malloc-Add-missing-internal_function-attributes-on-f.patch * 0038-nss_dns-Fix-assertion-failure-in-_nss_dns_getcanonna.patch * 0039-nss_dns-Validate-RDATA-length-against-packet-length-.patch * 0040-resolv-nss_dns-Remove-remaining-syslog-logging-BZ-19.patch * 0041-nss_dns-Check-address-length-before-creating-addrinf.patch * 0042-nss_dns-Skip-over-non-PTR-records-in-the-netent-code.patch * 0043-resolv-Always-set-resplen2-out-parameter-in-send_vc-.patch * 0044-tst-audit4-tst-audit10-Compile-AVX-AVX-512-code-sepa.patch * 0045-Fix-tst-audit10-build-when-mavx512f-is-not-supported.patch * 0046-tst-audit10-Fix-compilation-on-compilers-without-bit.patch * 0047-strfmon_l-Use-specified-locale-for-number-formatting.patch * 0048-glob-Simplify-the-interface-for-the-GLOB_ALTDIRFUNC-.patch * 0049-CVE-2016-1234-glob-Do-not-copy-d_name-field-of-struc.patch * 0050-ldconfig-Do-not-remove-stale-symbolic-links-with-X-B.patch * 0051-Report-dlsym-dlvsym-lookup-errors-using-dlerror-BZ-1.patch * 0052-Fix-tst-dlsym-error-build.patch * 0053-Remove-trailing-newline-from-date_fmt-in-Serbian-loc.patch * 0054-Revert-Report-dlsym-dlvsym-lookup-errors-using-dlerr.patch * 0055-CVE-2016-3706-getaddrinfo-stack-overflow-in-hostent-.patch * 0056-Fix-strfmon_l-Use-specified-locale-for-number-format.patch * clntudp-call-alloca.patch * glibc-memset-nontemporal.diff * nis-initgroups-status.patch * nscd-gc-crash.patch * robust-mutex-deadlock.patch * strncat-avoid-array-bounds-warning.patch- strncat-avoid-array-bounds-warning.patch: Avoid array-bounds warning for stncat on i586 (BZ #20260) - Update glibc.keyring - Unset MALLOC_CHECK_ during testsuite run- nsswitch.conf: Add fallback to files for passwd and group to prepare for libnsl removal.- nis-initgroups-status.patch: Return proper status from _nss_nis_initgroups_dyn (bsc#984269, BZ #20262) - robust-mutex-deadlock.patch: Fix generic __lll_robust_timedlock_wait to check for timeout (bsc#985170, BZ #20263)- nscd-gc-crash.patch: Fix nscd assertion failure in gc (bsc#965699, BZ [#19755])- clntudp-call-alloca.patch: do not use alloca in clntudp_call (CVE-2016-4429, bsc#980854, BZ #20112)- Import patches from 2.23 branch 0001-Updated-translations-for-2.23.patch 0002-Regenerate-libc.pot-for-2.23.patch 0003-Regenerated-configure-scripts.patch 0004-x86_64-Set-DL_RUNTIME_UNALIGNED_VEC_SIZE-to-8.patch 0005-Add-fts64_-to-sysdeps-arm-nacl-libc.abilist.patch 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch 0007-NEWS-2.23-Fix-typo-in-bug-19048-text.patch 0008-Update-NEWS.patch 0009-sln-use-stat64.patch 0010-Add-sys-auxv.h-wrapper-to-include-sys.patch 0011-mips-terminate-the-FDE-before-the-return-trampoline-.patch 0012-Use-HAS_ARCH_FEATURE-with-Fast_Rep_String.patch 0013-Mention-BZ-19762-in-NEWS.patch 0014-Define-_HAVE_STRING_ARCH_mempcpy-to-1-for-x86.patch 0015-Or-bit_Prefer_MAP_32BIT_EXEC-in-EXTRA_LD_ENVVARS.patch 0016-Fix-resource-leak-in-resolver-bug-19257.patch 0017-math-don-t-clobber-old-libm.so-on-install-BZ-19822.patch 0018-resolv-Always-set-resplen2-out-parameter-in-send_dg-.patch 0019-S390-Save-and-restore-fprs-vrs-while-resolving-symbo.patch 0020-S390-Extend-structs-La_s390_regs-La_s390_retval-with.patch 0021-CVE-2016-3075-Stack-overflow-in-_nss_dns_getnetbynam.patch 0022-configure-fix-test-usage.patch 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch 0024-nss_db-Propagate-ERANGE-error-if-parse_line-fails-BZ.patch 0025-getnameinfo-Do-not-preserve-errno.patch 0026-getnameinfo-Refactor-and-fix-memory-leak-BZ-19642.patch 0027-getnameinfo-Reduce-line-length-and-add-missing-comme.patch 0028-getnameinfo-Avoid-calling-strnlen-on-uninitialized-b.patch 0029-getnameinfo-Return-EAI_OVERFLOW-in-more-cases-BZ-197.patch 0030-hesiod-Remove-RCS-keywords.patch 0031-hesiod-Always-use-thread-local-resolver-state-BZ-195.patch 0032-hesiod-Avoid-heap-overflow-in-get_txt_records-BZ-200.patch 0033-malloc-Remove-NO_THREADS.patch 0034-Fix-malloc-threaded-tests-link-on-non-Linux.patch 0035-malloc-Run-fork-handler-as-late-as-possible-BZ-19431.patch 0036-malloc-Remove-malloc-hooks-from-fork-handler.patch 0037-malloc-Add-missing-internal_function-attributes-on-f.patch 0038-nss_dns-Fix-assertion-failure-in-_nss_dns_getcanonna.patch 0039-nss_dns-Validate-RDATA-length-against-packet-length-.patch 0040-resolv-nss_dns-Remove-remaining-syslog-logging-BZ-19.patch 0041-nss_dns-Check-address-length-before-creating-addrinf.patch 0042-nss_dns-Skip-over-non-PTR-records-in-the-netent-code.patch 0043-resolv-Always-set-resplen2-out-parameter-in-send_vc-.patch 0044-tst-audit4-tst-audit10-Compile-AVX-AVX-512-code-sepa.patch 0045-Fix-tst-audit10-build-when-mavx512f-is-not-supported.patch 0046-tst-audit10-Fix-compilation-on-compilers-without-bit.patch 0047-strfmon_l-Use-specified-locale-for-number-formatting.patch 0048-glob-Simplify-the-interface-for-the-GLOB_ALTDIRFUNC-.patch 0049-CVE-2016-1234-glob-Do-not-copy-d_name-field-of-struc.patch 0050-ldconfig-Do-not-remove-stale-symbolic-links-with-X-B.patch 0051-Report-dlsym-dlvsym-lookup-errors-using-dlerror-BZ-1.patch 0052-Fix-tst-dlsym-error-build.patch 0053-Remove-trailing-newline-from-date_fmt-in-Serbian-loc.patch 0054-Revert-Report-dlsym-dlvsym-lookup-errors-using-dlerr.patch 0055-CVE-2016-3706-getaddrinfo-stack-overflow-in-hostent-.patch 0056-Fix-strfmon_l-Use-specified-locale-for-number-format.patch - CVE-2016-3075 CVE-2016-1234 CVE-2016-3706 bsc#973164 bsc#969727 - resolv-mem-leak.patch: renamed to 0016-Fix-resource-leak-in-resolver-bug-19257.patch - no-long-double.patch: renamed to 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch - glibc-gcc6.patch: renamed to 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch- glibc-c-utf8-locale.patch: fix bad standard in LC_IDENTIFICATION categories - glibc-2.3.locales.diff.bz2: likewise- glibc-gcc6.patch: Suppress GCC 6 warning about ambiguous 'else' with - Wparentheses- Add compatibility symlinks for LSB 3.0 (fate#318933)- powerpc-elision-enable-envvar.patch: enable TLE only if GLIBC_ELISION_ENABLE=yes is defined (bsc#967594, fate#318236)- ldd-system-interp.patch: Restore warning about execution permission, it is still needed for noexec mounts (bsc#915985)- Add C.UTF-8 locale (see https://sourceware.org/glibc/wiki/Proposals/C.UTF-8) and rh#902094 . Added with glibc-c-utf8-locale.patch. - Add glibc-disable-gettext-for-c-utf8.patch to disable gettext for C.UTF-8 same as C locale.- Move %install_info_delete to %preun - crypt_blowfish-1.3.tar.gz.sign: Remove, the sign key is no longer acceptable- no-long-double.patch: Don't use long double functions if NO_LONG_DOUBLE- Update to glibc 2.23 release. * Unicode 8.0.0 Support * sched_setaffinity, pthread_setaffinity_np no longer attempt to guess the kernel-internal CPU set size * The fts.h header can now be used with -D_FILE_OFFSET_BITS=64 * getaddrinfo now detects certain invalid responses on an internal netlink socket * A defect in the malloc implementation, present since glibc 2.15 (2012) or glibc 2.10 via --enable-experimental-malloc (2009), could result in the unnecessary serialization of memory allocation requests across threads * The obsolete header has been removed * The obsolete functions bdflush, create_module, get_kernel_syms, query_module and uselib are no longer available to newly linked binaries * Optimized string, wcsmbs and memory functions for IBM z13. * Newly linked programs that define a variable called signgam will no longer have it set by the lgamma, lgammaf and lgammal functions - Removed patches: * dont-remove-nodelete-flag.patch * openat64-readd-o-largefile.patch * mntent-blank-line.patch * opendir-o-directory-check.patch * strcoll-remove-strdiff-opt.patch * ld-pointer-guard.patch * tls-dtor-list-mangling.patch * powerpc-lock-elision-race.patch * prelink-elf-rtype-class.patch * vector-finite-math-aliases.patch * powerpc-elision-adapt-param.patch * catopen-unbound-alloca.patch * strftime-range-check.patch * hcreate-overflow-check.patch * errorcheck-mutex-no-elision.patch * refactor-nan-parsing.patch * send-dg-buffer-overflow.patch * isinf-cxx11-conflict.patch * ibm93x-redundant-shift-si.patch * iconv-reset-input-buffer.patch * tzset-tzname.patch * static-dlopen.patch- isinf-cxx11-conflict.patch: Fix isinf/isnan declaration conflict with C++11 (bsc#963700, BZ #19439)- tls-dtor-list-mangling.patch: Harden tls_dtor_list with pointer mangling (BZ #19018) - prelink-elf-rtype-class.patch: Keep only ELF_RTYPE_CLASS_{PLT|COPY} bits for prelink (BZ #19178) - vector-finite-math-aliases.patch: Better workaround for aliases of * _finite symbols in vector math library (BZ# 19058) - powerpc-elision-adapt-param.patch: powerpc: Fix usage of elision transient failure adapt param (BZ #19174) - catopen-unbound-alloca.patch: Fix unbound alloca in catopen (CVE-2015-8779, bsc#962739, BZ #17905) - strftime-range-check.patch: Add range check on time fields (CVE-2015-8776, bsc#962736, BZ #18985) - hcreate-overflow-check.patch: Handle overflow in hcreate (CVE-2015-8778, bsc#962737, BZ #18240) - errorcheck-mutex-no-elision.patch: Don't do lock elision on an error checking mutex (bsc#956716, BZ #17514) - refactor-nan-parsing.patch: Refactor strtod parsing of NaN payloads (CVE-2014-9761, bsc#962738, BZ #16962) - send-dg-buffer-overflow.patch: Fix getaddrinfo stack-based buffer overflow (CVE-2015-7547, bsc#961721, BZ #18665) - powerpc-lock-elision-race.patch: renamed from 0001-powerpc-Fix-a-race-condition-when-eliding-a-lock-20150730.patch- Add audit-devel and libcap-devel to BuildRequires, for use by nscd- reinitialize-dl_load_write_lock.patch: Reinitialize dl_load_write_lock on fork (bsc#958315, BZ #19282)- resolv-mem-leak.patch: Fix resource leak in resolver (bsc#955647, BZ #19257) - tzset-tzname.patch: Force rereading TZDEFRULES after it was used to set DST rules only (BZ #19253)- glibc-2.3.90-noversion.diff: use stat64- ld-pointer-guard.patch: Always enable pointer guard (CVE-2015-8777, bsc#950944, BZ #18928)- strcoll-remove-strdiff-opt.patch: Remove incorrect STRDIFF-based optimization (BZ #18589)- iconv-reset-input-buffer.patch: Fix iconv buffer handling with IGNORE error handler (BZ #18830)- new patch [BZ #18743] PowerPC: Fix a race condition when eliding a lock 0001-powerpc-Fix-a-race-condition-when-eliding-a-lock-20150730.patch- nss-files-long-lines-2.patch: Properly reread entry after failure in nss_files getent function (bsc#945779, BZ #18991)- fnmatch-collating-elements.patch: Fix fnmatch handling of collating elements (BZ #17396, BZ #16976)- opendir-o-directory-check.patch: Fix opendir inverted o_directory_works test - static-dlopen.patch: Static dlopen default library search path fix (bsc#937853)- mntent-blank-line.patch: Fix memory corruption w/blank lines- dont-remove-nodelete-flag.patch: Don't remove DF_1_NODELETE flag from all loaded objects on failed dlopen - openat64-readd-o-largefile.patch: Readd O_LARGEFILE flag for openat64- Update to glibc 2.22 release. * Cache information can be queried via sysconf() function on s390 * A buffer overflow in gethostbyname_r and related functions performing DNS requests has been fixed. (CVE-2015-1781) * The time zone file parser has been made more robust against crafted time zone files * A powerpc and powerpc64 optimization for TLS, similar to TLS descriptors for LD and GD on x86 and x86-64, has been implemented. * Character encoding and ctype tables were updated to Unicode 7.0.0 * Added vector math library named libmvec * A new fmemopen implementation has been added with the goal of POSIX compliance. * The header is deprecated, and will be removed in a future release. * bsc#905313 bsc#920338 bsc#927080 bsc#928723 bsc#931480 bsc#939211 bsc#940195 bsc#940332 bsc#944494 bsc#968787 - Patches from upstream removed * htm-tabort.patch * o-tmpfile.patch * memcpy-chk-non-SSE2.patch * pthread-mutexattr-gettype-kind.patch * powerpc-software-sqrt.patch * static-tls-dtv-limit.patch * threaded-trim-threshold.patch * resolv-nameserver-handling.patch * nss-separate-state-getXXent.patch * aarch64-sigstksz.patch * heap-top-corruption.patch * pthread-join-deadlock.patch- pthread-join-deadlock.patch: Use IE model for static variables in libc.so, libpthread.so and rtld (bsc#930015, BZ #18457)- glibc-nodate.patch: fix verification of timestamp- also filter out -fstack-protector-strong- getaddrinfo-ipv6-sanity.diff: Remove. It breaks services that start before IPv6 is up (bsc#931399) - glibc-2.3.locales.diff.bz2: Remove sh_YU locales, fix currency for en_BE.- Add /usr/include/gnu/lib-names-.*.h to baselibs - pthread-join-deadlock.patch: Don't require rtld lock to store static TLS offset in the DTV (bsc#930015, BZ #18457) - heap-top-corruption.patch: Do not corrupt the top of a threaded heap if top chunk is MINSIZE (BZ #18502)- threaded-trim-threshold.patch: Fix regression in threaded application malloc performance (bsc#915955, BZ #17195)- aarch64-sigstksz.patch: Increase MINSIGSTKSZ and SIGSTKSZ (BZ #16850)- powerpc-software-sqrt.patch: Fix powerpc software sqrt (BZ #17964, BZ [#17967]) - nss-separate-state-getXXent.patch: Separate internal state between getXXent and getXXbyYY NSS calls (CVE-2014-8121, bsc#918187, BZ #18007) - static-tls-dtv-limit.patch: Fix DTV race, assert, DTV_SURPLUS Static TLS limit, and nptl_db garbage (bsc#919678, BZ #17090, BZ #17620, BZ #17621, BZ #17628)- resolv-nameserver-handling.patch: Replace with simpler version with more compatibility- memcpy-chk-non-SSE2.patch: Fix __memcpy_chk on non-SSE2 CPUs (bsc#920084)- resolv-nameserver-handling.patch: Rewrite handling of nameserver configuration in resolver- htm-tabort.patch: Fix TABORT encoding for little endian- Update to glibc 2.21 release. * A new semaphore algorithm has been implemented in generic C code for all machines * Added support for TSX lock elision of pthread mutexes on powerpc32, powerpc64 and powerpc64le * Optimized strcpy, stpcpy, strchrnul and strrchr implementations for AArch64 * i386 memcpy functions optimized with SSE2 unaligned load/store * New locales: tu_IN, bh_IN, raj_IN, ce_RU * The obsolete sigvec function has been removed * CVE-2015-1472 CVE-2015-1473 CVE-2012-3406 CVE-2014-9402 CVE-2014-7817 bsc#864081 bsc#906371 bsc#909053 bsc#910599 bsc#916222 - Patches from upstream removed * ifunc-x86-slow-sse4.patch * pthread-mutex-trylock-elision.patch - o-tmpfile.patch: Fix value of O_TMPFILE for architectures with non-default O_DIRECTORY (BZ #17912)- Update to crypt_blowfish 1.3. * Add support for the $2b$ prefix. - ifunc-x86-slow-sse4.patch: Fix misdetected Slow_SSE4_2 cpu feature bit (BZ #17501)/bin/sh/bin/sh/bin/sh/bin/shunscds390zl37 1696505274 2.31-150300.63.12.31-150300.63.12.31-150300.63.1 0.48nscd.confnscdnscd.pidsocketnscd.servicetmpfiles.dnscd.confnscdrcnscdnscdgrouphostsnetgrouppasswdservices/etc//run//run/nscd//usr/lib/systemd/system//usr/lib//usr/lib/tmpfiles.d//usr/sbin//var/lib//var/lib/nscd/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:30871/SUSE_SLE-15-SP3_Update/e8a84cdf91bcc96e8c74cd0385e1c165-glibc.SUSE_SLE-15-SP3_Updatecpioxz5s390x-suse-linux ASCII textdirectorycannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.63.1.s390x/run/nscd/nscd.pid' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.63.1.s390x/run/nscd/socket' (No such file or directory)ELF 64-bit MSB shared object, IBM S/390, version 1 (SYSV), dynamically linked, interpreter /lib/ld64.so.1, BuildID[sha1]=b4946c8ef7043f9ac73fa4800ebcf49dac0d0c30, for GNU/Linux 3.2.0, strippedcannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.63.1.s390x/var/lib/nscd/group' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.63.1.s390x/var/lib/nscd/hosts' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.63.1.s390x/var/lib/nscd/netgroup' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.63.1.s390x/var/lib/nscd/passwd' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.63.1.s390x/var/lib/nscd/services' (No such file or directory)R RR RRRRR R RRR RRRRRRRRrgVg9Gp@utf-886dbefd12d0f2517979fb566db65a5304a154a94fdf257f7891361973807fb37?p7zXZ !t/C܋] crv(vX0o7檉xTҪ!hZ &{;\1&͠Ўzna$ "5YH 17@9'x4|eeѧFb<_p6o=SP]]p סKTWy+; ["|>4؋RD&zFN /EaE"¯o59M89IE0Ns 9kt -b-8& 0SSf %iΣ?KaaO= ",l3[)hws2Z(qL /fk/+]R9EuIYa1RQ,d]a&Yc+'ˏKRC~E>̌F:f9 =FT4z뿊әh1tn` *rY+2&?[Ir8} A{D떒$tTSU_} 5ufr6K#_Jr}9t}NnByFO#]2405tVZgKHXam7ϿM܏h[*E1[ MqKI+j$#.ॖ3T~ \O?'D(jWb0<>ڨɭ4_ |79?\20C'?z~cXmMׄ!=fN?vx29_DoJx :d|AY >Nlwy[E wi!A'fHY&S3#ւ4I ք'YJT_c):-;ujuSm(aZ9yy)\&HoȐ3j)ya/+o( 7mk:djq3^ '.{ K xǺ#H*A8\L pAzޝ d Vʾ!)b TRYi5RB^4zB8A8%]=`p.e<3!I0`ŧ+.uFj&|PS$Fj]჈O 7dWR2ce{fQ6^RAg{ 8Ϭ{UpݚH1kxS5蕪vY@C⌔7Q>Z?ADZU293&lYߩ[i!o~$M#fK0p'};6+}q+GmQ˻X@W6[Ƣ!$s C$.TC /BO\`M(۰dJ*fgGҜA.q=>rDk {rN_aMVqAauuto-q7C6]eUHf-$pm1p*h%Vr\iyɋ_ly b&QͳP;JܼFrLqO[t7x֑Gs3jC(Έa1[x ^n+7kKwQ[qHXXKSe=0wg\аZ>64<03?^dF! ln\Jl<:y@=U`@TrbwrK4̄9ܦˍc h4a| Lz$k4@q׋ /"PEahv˶/Q”O8 -y?czR.Dp})#s\ &Ifg[ʗ=ldAYtp5|%{b6գ ,6uy!:6B>%R%eiSDZ8do~OAEi>ZwwT1W잏 ;*a66=4е_mQ햞GY);Yhƃebu;UGU yaiWWٝWmMgļpIs;ltW&?ťsiƼ0! slޠdh1 љvo}аd'矋t_tғ'2 %D8-F7$߸Kj]ZK[2’ò"wS@I>C"e:*\dv"DytxhI"R`gXRvka7yҏ=R]Ct(HN1`w)A*<zwNSՌ6d?߂{ɝ׋3a@8lD(VN66d:%7aT<`pUq,:{wr@?K;T\׼/;{15@%sٹQ2Ւ"?m…°c]*ىtq+FZȞ2h3qR  Ptx_Ux!dJwu6)+Y)~("gB?uv `ϳ D 'ޟ>4tx.@{MdJoE ܓo=wf4qFo!D,C %'0r³nt ivh+ԍ(ĶK"_-4$tUpҮd(fp!PZzy<q b4vqϒ#\ ]Ӌf9#P̺Iî@X)G78ۢ㲌qE,Oi ᱻ%) 6Ic!`^6Migcͥ链 n Њg5! qgӭDg.O[ϕ͑kgwKtul[;s0xe"r!$oЊ!f}>6𒐈Dե{kXb}vpuO1-%$I.Z,W+ִ>3[Fjv&g]k`2-vRBD3{,j8\,6J̝EW"&olDZ"dT'OboVn0&Fi.-XKOoȨ]4Ft E?mB7oXiڝ_䛈%xGEҏ2isg~:QP+2X^K[ ̟ tgt+jek c~"K'=*?}k!e^+Ga)T\'c4O3[X-m³ )Y6҂I-ʌD9=2[Bbb=$!o,)P#_2"Pf@D2DnJs : iE XFY9R8H8*?J%)<^69ϸl*lTkZl{믊u' =B ǃ϶@ŷs<>S !a" 7gDr{]U+zNςJ^܆ClLc`?XvP6u0Fy#w l_oڐ.p-l;Q{uCFܯ))|ΰ ]GYH[2aܤb׭Pv*0v>zGm~S0cTv-L%TɣcNk?u5|qdW?ۣd s\i2di[w cz/T5DQyV5iM*\Uރ„%joKv. ci]Dv"R܌ %S*u4*hL/he2  ٱ`]Y"Qjo &:b-m4  Q&=DLnkB;cRNy5-W-TAzj;y;_w9Җ|o~};F5Oz%9}D@PKogod KF. ~ظRMbD*5rIe 8wr";wSγgt,ch$hX=t { SR#Α{y}hDU7vIoWoۙn)%Ωݓd3#E>}o{\] =|_xD1gjE#Ccxj^%ǷQi4<LVw`}t ys5芫b|(%DT~{_):Sҍe+_ãxSb%C qp|e`S ]tWZ֔l¨,rvؤ?j:T$H7e`9+!JSDzu$_€}/j]܊B<;3E8'qlB&#[ʬ)nn ?5+3P`uZn{>B k:1MrgI iSh^ݝo;к4f;2B_0,"CDOCw|0drAzsN1sޅfԀw1jj8Ha ^ʽn*G4y$9@y<6/%t)^'}^H$yDdлtoٺ{ /~tyf`A%: dW:L5BRؗzeNQšd@)sǂ~" G˧8SO4.o5(Xsb[}NH`Ÿd:E58j j S&>BFg_kEa "&T' xڥw^8b! :NuuW2^bG<{U*rZ 7N;~WƉE;c/IXLts&sg^=K IR&'beK6j3hQ+}!M\<%{8^Oy<-P{ַ@JyӷV v##Enf4p42cؑ0G'ʺJI@ʘ!H v&Bh`43?ikO:kkfO҃mPt"$Ġ˸ 2K3Iwۏ[f'Dr;L] V!W}u,H 5hMѡn[/?ė-Zukh=5Lfc#¢{o{hۏ)(|ÏG#H4.'E=~P~xt.F|_ANz{YmoFbY"Q1kvn6o^ ŧz5o Mb%3ORaI0뾟e]Ry'K1N|=D =} -îOx%Qtֆ! Yb Ƚ ʬpiϯ;QqaiXV{/g=R4*OH[}՚* SX3+-* s$x-ԫ_C9~cۣBYp{C0wR5#qPV@`qc(&YR+ x NѸп;d;ŽuԴBm._WMn-*ǐ8-B&&$TD3GYUdzG-"kU*ݿ{k!p2{a+[0 qVcR[A5Z׈4=g 4׈k! &Q-IjF<ۛ"h`\KMе-Ǭ2%zD.>bzA.Q',FX#&ZE];^A-zOS(IJp%}DǑvv~;HIM9(؉ y8\R274$a*PM 3:D$ݘڼKA~2,NmH]FE @ ҉d#v|i0\!Eǘ-)7DmB]ܟ&0AB{qFڞ#lO5>nbq|N{C?IW>xXZ:zkn򍍢G3ze~Tt}P/€4˃iv֚+;gT6Ia=JQuR+,b844rEwTxM/Si ؍ Rm)^Gv[mȼv x$1  ꓔŊ۝ mqk򪐩nZ8cm_x|$9:Y1?&ݘӭ6Kg"∰1b5޲Qi]?eh_Z^S 7J{#QOz858Zqq dF*`m7jT5L :"7X:q[H:yRo+*?\QMחo*pͅ 5PrNS5:lT]&vաGԀcCȭi d2-,:r$Sr)kP^h9uo=kpYdX܊z˕\"/~_8?m0on|cf,|i17 '}^ &pzrhx: ,>zuHh}HJaik[(^`n,l[.'e&wI$&?=ˣWr{~%dxg  CTӾ1g~.S*Nxmp·;vܳ`5G$RtsL ^V(ӤP2Y$7Si] ~s>3?] s^ >t?FU'xh( LHVIAӌ;!?ED.n!G)*XG*0r=%*B1\)E.QNdP]K@drG25!~}K;\mx%4m=GL]o-:ncW6?{[%ޭETH/ʨLAo[vdA¿<]$A>!o׏.H$35=&Qs: 4^rd\*p"dCvϬHsVq4tEwKdһV< >H:d~kjg=[Pz#&h*>*Y%l I*]6= 0Sf@x̃ɖq@OE=MHȳ`9ɯ/l5,d:09冠AXw`upYi9Plަ2lf8vLbX=$UjƁpq(|f}($AsJmjJ!w\g!h9ne&9 fӃ$^OwXo]}mME KalkïྃdZ :8>woBf[/9jӍ".HJ7EIyev~de( @H"4@Z ^5Bj#Uȼ'8@m?Ts g?qKz՘ю`Kmu߯\;YRdVF_ydJE1}YR:'?FT. F.zcZ=˝)aTQArOʩ'uߏd*s,?}sg azVpֽd^E(n2d}:؎ [uB(ဂKY u%RGjOU6Z,R4snO62hiFDѾ?VésfBVaTI?һsST@0oj9 Zd+W<1 ԅ\g䩟 ?N!?+` 0u{?|as sLmTSpwpA&F2PLs2p0@8+dimj 'xD2pDZY=D->jJMyǦS.)~ 2ZͱBB5QiB nD TZ][A;9Wpڨ(vntCf>f,XsU/G'&KFk0X6:ǻ2,-E )=DR&@Qrx6!0z;X1M"Pg=-/b1ZNH(k跕\hDӞ 4r)xs3v+irt1 c%T [1O{Q)t=2He@4aFǐF\o&frz#>Y3 5+NotVd${Z+ΆYI'Ӻ#.3a<;"7!d\M>-F%fB@z*(Fa=Ѥٞ|Cp=;#p$-Cu1WW\3@H+E1F_- rЁ.8Rp[do' $7!?*^ xeWeab5]SV9rŀxfa h ybo ]rIy,_-hZ/R=i~2ou~'C#jOI?(UY k qɎ%;~VvUbr셌)6#KUDMڅU~`*pEIwՄdOfgi,14X3jp{W֠Qj :w<0́R^T^jqݫi)(la̜,.*Ռus_P~sHCcL.{bmqp.ڋlkuw0d?h0سͮ, ,G=)7*DvUy X)y:๻0 {; {bZ:U (ۗu&yڊt0* @587T) v}Xrd ,'^\s5]븫5 Ibl 7SQТ)T9li~ḩPe?ZbA:'z$z}ҫt^  [4!$ۑI7O>EΘG"13]Kè~}8+o] >-'aXtW̡  ܂w~ %VNjgNg`ң ծɵ>:OCz`q'}[đ݃JO&${\=S^O%EONSӖ u&8Sfs$'xMܕD#Xܙ1*#s!YvW #vGf  [ DSH - XS F2S)C(ƬN^ ViU+'i:{9ytP=?j}킉987؜{r(ힷ rʉ^P͍-"{M . `nԶ6yym.P~m:UNtߜJ{51Wx=rʋ.r 1KV7{?=& @̤ڇNz٧~$@ P*- %>Ѻc:DK+ঙ`8A^~*>mLc{ R{5 -0׻ Η|Ky5F-b p(Pw9v ?uFBI;(@cLs)UPO:*ʓP}&3xH-`S?P0gZࠌkuά#q;z붴t?t+)mƐα YٻJ@Q1< JzG X<]"bWePȌM-ִ.wz81"w(\|åBY&'nt#owzJZ,ѡ /V?z 8褐Hug,;O{Fm %"1 op2!jO;NPߧ= $ţc+ܝ.jp'>x#*wYI:|J?ܛTi'.p~\N{\GPb*]kepV賚QT! {l'Zl O\cXIל DZY.'3+ь.'숦Ym!E%݉WIJEKjX"XO[pJrFPM|?.]wЙfk1Vcw&jR/;/]<;怿?$\ 3l1 8 h:2ϚZ΢eYiDhIܡ]X/3vԎ+,r54Pp6k jDB6|.,i_#'n#ijuvV4UnXVI޺~ ~9Q+߇鵨Jec`!YOڭ>Y'2I2baʴ`ZQK^ Y%*YSޭy,)IH6D]zB^3=̙W=+F?[ M @ywwa7]Y*UBYpВ ғbAӍuA٢L>/e a2Ys /((#Z-±Mf5nBbXʐŨAA;s$X{x/$٧ ̀zXLR'} Zn@hݽf@iS]TgSBk԰GnGQxt$DAo» >»8w%S?4,1Ӯé08Mʛ:WX!oIgbS.@`ZiU4L D,=5`#7nhYXJJY!+<0ڱR w[>Ѝ.]$lʃp ۆ ᨜AXM]˻bMP1:Dw@.v"1_LLA#S@uS,1V얪z*<&|aHwC02>Vpp8VeNM [MEN0hĮ̘Da4dbW 8uތ JXkx74A{]#W~C $$ǫ+|F/ӳ*@<<^PPի`-*Q,}yְt?eQ!Z]QB4֋2~[w>o4F SqY_>_#W * Ըx_"h}䨾WJ}D# ǖ23Nbq_4lk]6~ۀ%:E@Xxg9ςO  :|[[9pͥo#iRaJG`[:VydjӟQYzK#?%hZxehaJ( ['!9I]~2|^r^7D %c62-!pao<+mLP hFX ”*t_M[h-p oq Y%sig /grMM/-trcdkpX3<ˬMM9RW:BL#hҶF2 ͭZvo& >" V>≯UZݏ^s0 u_G$Kiw>DtQU=w ^u=SQHE!/ٻ2(z&OO)pxo"?ЌaKIi);q=y%~Aڙg"@0zE-d^j@؇ՑwOV-s~DXpHܖ%BufA,Tx}\۩Qe6+"`98 &Ha-Ϋu\pK}~>(0_#z-{HŒ1BHKrH'w"hӾ>L$8x"ʬ}*Yٵ([wԇprft4?bKUO-3<.ymWkwn`)LBjd$o+9AKb'|]SyI0,+sHdUFǀV9vZO{١pX/OF{A.O7nHnj;"Yµ֕D{e ² ^/aA4=^&֒fJ'0A. >6?S*K-r2ҿ0 ~7(~| zW`e8^4&a8@K_sC=\cLdY}V0kF1ׄ O+/H ȂQ`{Zu)󶤩y~%椫v7-舲c (%qIKs-TWi>o鐂Bz/[q:إ Ú^1BT`^0ۋl'ˌuEbXy ܻ^0⓴zLZ%'$-vmV4ZFPƷ28n)R4q UBNdM'r?s/90dMע8mX!3 )JWmq3m5mI(+gGkқ̳VoXP%c"rV:}-'*.itd k)!t#-Nq0?|$LOlCIMʥw:~'Zm_.90I([qE_Niv7ӼPeG! mhяzv9kLnzeۡ`+-sn~a,zQTLM<ڞyNTCFѢ>t4;$&kZfǮ8z߿k$OkK1w/>ńUYfk[Pjo^&Q}1!Wd@K4`؂0 >388DZ> cK̑5^k?mr[f6jƲ@2[ARI(7YuM k5sGoJIkȐ /緬eW'wBHv/6z]G?d9(Ixz7zpu$x\dq;_~J68&azѕqت#}uu:hMYJ*yIqN3z"Rحu!ܮ˱&M:Z t; )lO9iEjj/.=6|kR$CЀ( )7q2eMt:e!zekD/'Fݝvƥ'g;FYN蟦M6/uʲIyqc䏁qN^CMBCFZR by0}1,Bl>FUKlRLXoxˢ ! qJt@0ì;ڠ뜷Pdz ;.#DBtC5}@&: ӹ Ӟ=\h1M= }e%Ub4,crC3ZNg׿c%K~%HѨD g{oQ#$ \O|Es6er\_s/Qimr%埌>C3Y ~v/4v{VފLvj ICJW[JjBh(CAmmI6RlE T~`vbS:i@F;^^RۿQY @#sPȮXQ~-#q| U{M!-9;RrKCT2AC6'F/VSZy.B(b 8 8w{1G?}΋;!ٯ/h.bfyd^7_Jf_s]wұC'N֪ijƱlK`%]Z.B!tiZhzO`TX1XbY=Y ڪDpQb ŶY{вv4wU 5Qz8kjQ&5 ! i&T,N:bcSmry+R]7'_*'5PkH4 =!| pށ>DWy*;}@37'ow(xѽ.|jDzFW_~]gJ}D" >h=}Xi]Zks!Gt*DtF 4ޛd=N9T\*Q % ~jj,x#Yw90v g"`D+ }pHVf{u.;13DL-':<-نJ};)vBLȃiҐl}-RNSpZ뫨dֱD M XKtKg]Z3ߧa33¿X`ڼEI򅣕3y q'Xl'J┩=؞juB5v;H7Nc[̢A4]'s(Y`5jL]W "r~C 3 nJp-Nz1"z%RU0\Kvѱ35Rhs.k&_eqKo7nd?;ÒZ>GAcEY˰= ;)+j 0VE9mLWc:4aG_|&!eM]e8[ M\G7B,4._v 4P| 6XM5(Ҫ,HHS.ZCA``L?c+A5Z@82EѧwVc"0tFuǖt~# 3ʢg׹Є*T@irNkN fҧu[B׍Vg".ZwP݆2ɀjD', l֭v 'Ycte_GYX~euyiVk!l2y!)d'?t3euaw#ںutX`^(f U ݔ}а?xWрşzxCm< 9[rt99v^%5dKh(o^?`T9Ü3)س7K48D 7۴CORJఃH 7[$_^7-+BK%{x_*`|u%jxV8uCsCw^O g ,ލ)W(8uZfYj x{>n'x%VIG\ZNr|^7$`ؒ]@QLENjD~uLijQLXz櫴rQG |jύ2C2hWs,WV@A''0X@C.{}9;HiDCuJCmd_5a~b514c8s8|GiD87žÂżgHbFQl~Y ,Xgq.ug ٮjbiZkå^Ls'lwwp\\r Q˃,uqVј;ȨQa}}i!E-MSMsVjaۊ1nE|(V8bQfj{6/y2ST%)Ӟ*n=n-x݋[|5MO"/7UKʷ(q&1! iG0F$51W~ɠ~m&UYGUGSnH}х1}!?MLTs{k%1~OY,yfDCjZ} gv3,WC+O.ߤ_JƠ,-O bDU$kՈ&6\^7=OȧvPpX%9 ٮ/onggG*J A6)jҫS$#ÏbEkɎr:@f&{p3u^zqDV_/9֭}b_|5Y.tP2qb2fL(&NXQ mu[V/CZd1uK[, MRS'Ƿpq6㩜o]e&nQQM mZ1G)ORJ!=IO.v48Ko|3I~Vj!E˘X&WM7fZAfu-iQ6宨4 F&-,z&ķ6gN<09 B)MD0[&mThֶDf*z{[jД"r:$m3 1vW2WV}cBSpi%0A"~ 7HS+@JoÔ8C+gkE*Twz\G.j&穈J}DNUkT 2w3]m;εLJ;Y âccC#JWʉ*l  Кƹ`C͆OTXKWh $BKQ%2)8m(^buhɂ$W4Y=ck|(Ӡ{CJ"^w %WJ6 26//mI`R(EM"S̯V)T*[t:f M"HU37Ćiyql8l,#6$Z\j~r?@ߘU`Nv3*XWK,ۡ03j+.Hd/)aO(KiuWkEPFb=⊝r}_wUն> WxDHl̥۷Ѕ3>m *qgq/ uVK}J 3BdBTV|c╥.6aҒW($@$տm|VMY_[Fx=/lr/% :;M+;]ɋc.͕PtVO)q418{<.  C2B hU9s<6E j.g\ƤS`@oY{,{"G<&/j/CT~?rR7"?3Z(a_Q'}; @Q/ח̪@%CC4kk f}#DH)8~F_ rR7E!b`*r3osEL."Y!/[5dQ-&NhC(*[ Cv=wAN?mxXY1D~t;-Yͫ -`K#AY&ިAjsjϿ0LKr>7V7yJ0;1iTI)XlNHG%ȋb!Ū}QB3=Z4D#cʇ"6k=PxR"8| u&42#ԒyOqP4:]c\ aHyEC8H_w'#;YahOqpM;>ȳ^%-1k׸Kz|f45i_: >+AwײNj;jO(Żq]3,Y9rB0+ cCq-Tw"F|]9DKiƾ&Äi *+ 4% 7cXJ;WoBm~F ^<OZ#]JrYuOK ->OɋT&G_S)bl[mKa>~~Tj?` tF-[U]0.CdP fd!@K!TofN? Lj(# Fua DyRX; | DJerb6 J ~gH@-JwC77~K Lcx ܩ]wW.Թ(]aIzfR+sw6\ifG8\vdIҟ<:Y䪼}  4*4BU&5S! bC F,&08+=bs3BO%=vc2CP]5®ܾl/[͌mdYUÚ1Zݕ2E M[T M>;:;V[E|R4h[K$\ G? aKVvIR{;4ufwv&dIaƖ.`*ԼYߦ pw4J\~*VYIr5IfOaRޖeE߬tr{N9lX,Kpܬ%URFVfqVB:&̋MT|,Ep*_K;_<Y`H龳,HEUañ͜]{iaf1s#O%f:螑HC|}?bQd'*B~ 5><2CtK%kϐ?!:oAG㇃wINbWU\  9[_.we"o1В66ԕ ![$)NFYKaafWߡepPLq}t+^nLyހ){C^HsxN}޿`_ev9.0 K9]&J&:)9FJwQ3RpR_erCgik詰xE~\yL "vfK;("ˬ0Jzm4GՓ -oXZ@)DzkoәwDJW?9uofZ֓QdB:z@~ٞ3OQ0Tm]ݭ:ƘKCf]7='=CD n*^1Q񧖑8|n})>+d*xqCOr+OFU:f#4fgz+!7ܔU %AbM X,mtDgD&Tƹe #hDf78TR`M4*eI߼>r? W^NL믬aulݢ-*h0G}cI#.}-)Kآ zqia}Ym1|8$gJ]s^NÂEv$ 5Yh׏ H7k{vc|b,v* Xt8xKN8G4QXΆ^۠O"P)"C> = ^j *3|.ֳoPOX!;]Lp⪔ى3_K2  teE S)Fj`h!^@^#AS3d~9D*a|_kl/4R6żY dyэZg^J Rt{`ƋԞpuGJӫ€r]V=+[;ӥ/1mcZe(1p4Qsߤ5` SeŕnoFoK6; HCqɂ3 '@9P^J1YL>Gi!־Pl,MV~&wXL`3ѤP˂ mȮG:/8FOzdV/wRyW-UdwW">ܦqQI,*D =>b|0CluKP]쾥o2FK]t^{<7T_odZJ~n!],|hjT=ޔ6蘤|E:}a'Y7[.tsԭcoj3>mjhgb4]zJ*'_I4;HBQR"f;UvD!)ߵX=DmNPpOetjX܉YmF$/_JqZk}U9#qy`<]Vӓ6oޠf]GLnE@#odG@ojz^ь'D:Fy+\5Aqj{>>Uu1n3jfFlYa/=k {C*_0EsZccNm#6cK1b؆Njwjd`څt_A@o#*3B+ |(}zmHšYki\ج;uxGN)|V0Dux?^T򇒁j3Q]j X'-|;0.jMeՐxXUX lsBugԶğ&q[;z~Acۚ}(@)ګ7E,E&27cf3ة˴V7%ޞӁ&G 52|nb|U&sb!_]095BwqcrK7cWn^6b=/`\nEs,ZJG{y(u*v1;TG{~K*䮱33.RPAkՉ Q'}NEo6&A1ɴ|I2xbJ̆'pV9\$WƫЎ9"7-+ 4fhAK`̬af Li2˝ʐT#">MkfA;K(Fz # TB"°I3ѶMxO5 -n5H`f@u34la|W%3^J 8$s`aw_q l.3|_Z돁oswqjt bNІ$/r`s6樹y؅Ir\~5/f Ilxzv&cdqɕ[jdiف˳]pT@o*UrW'No߶E߼]ku0ȆۅPJҲ-V*-OU_ lHs/[: -8٥ŒP?`⚈9@yD3T^#yϸpB3|eg{' y%11SH #"!01f>ϡ =Y!'1oO^( О4qzd? _!D'y$}G@YF]{_rI S] V_8-ĪY9b/K#怢p FRAsҞ!J50 &o5$\9x2<,ClwN>~9RėYx 2}|gwu>Id7C5kZ \C_o.<4.Of?΀- xJmT ջ#I%Y 6 $56C;W*XP]8q8lyc¡779<|&Or|br"R4XRfXynw00Z1H냵tj+H:fT^jx0@_Ƞ#LR}mRg^HziZ9(GM*聎뭞RgI `Uwt,["f,g7Ę3N r TTڜH+?S<7Mhufq{˾-L1hSek4 ӵ]f_] $GmVpˠR. OWz^g偛Gni"NFO4!Gd(k.=~S OtC H2Rq Oo/M# 4faVOI ڇ&2VJNiYqwjzBp̫SfRHt DXS.b'jf "s,{ $M"5-jbO %>4b2% w:G!仌(P;rnpxc~rEepZ n%϶W])wqHָq MJ?^BQ3R8Wa.QGڅLm+k h;İ> mXe\wf94JbN$E~(s-|K- %~deIA*bG-I"w/g%_vL=M)En 2g;Br3}W!-wlÕ_BG>Nps [@ &|ذ<&'0O`?hW-FA˅]7˵6K.1t -(%cOskwg]GBjGwh=Vcܖ*7TY}.LQv0]C+,L3juI\n %6=44 $JsV_I#'焺9!#_)iIi yǽjM=E!V[^9V"MUDOyŠq~D Az9F|]xTD 7fAŚסB`_8ןRݏ2~X_2H>QH]ͦ(9XD%1ej(u9/$z `~M:A˩*7lhT%M2ǪyKzaRN+]F\1i/]ή+PߐkY?RǮwCZP?[ \;Lgsc"CKA"_sF? ػ@n-2hȧky G{K nfbSfXAk!&6\ڲS>0en N" jꄩM}Um~5gz謝Gva&W *>`uf0Q KʜyƇ1V R4mqst)^n5N ͘n9S/#X8L*aX-uc Vҗ#kr}ӢLkv"5JDJ"`,Ѩ]2e< ^G\RiϽ*ĦOU-McD!%Лe7 g~rUFؿ5IG%-" o}4qMSp'sZZy ĴggJ-dʚɡ c+[N9;'fD-I-R8f>C=f4PWԫ &&k:@P-@F |(pWrD&YPzfivGڛ2dq _`_piqjո~HAROYR /Ҵcv@X 0#S$0.I 1aYfCR$\Jàˁ˸ߓnH7!_ E[ɈReoC`gvqv9lPKo`Bֳ9!  xKw$ <2~oM^ kt4Z@6#OpO 歷mkaCةLr"&S-WtkS6ɺtʩ+Nݽ)B~9Z>3gg?b rn|>ѳ4?w0Kr,nȋ{O ?`9QؕfP[d$bM_to=8#|wM$a|SALn@˫ qDznAeYDAN0Q /E؊53VfP6:ӊ*k),"誮Xvi`eV4*+Do}xQQ2cMZ3Y 槔I UUG%Q:0cqVધ#HFkI%*%]xxs0^CA[27܀NM#9偯z/U"Q:D$ ? G JK`!` /~]qt=eQo|ZHŞmw^V>XشRiS_,Y@K3QFF<" $(]{ko(B[Ziw'r>LS_NGZsi' *4Z"y+5$D>8Qbf o8.맫 /(/u+Is?: ?\h{bLˈ={puL<-+FblN;Ӈ]-5q TX¹‚&ʶQ3 u}hI>X)Qy}a4y5}z(_dJE/YW^[Q~^Еw3#ԉEs,X?-,5~ @w2=)%)=LUU{y}p+=J9z8YV|9 0䝾B[I޻TLœ78hnK hJ2)d<7nԶ8&riI/#\p OMs ٖ s6qD~!frj 7$ѻrsHszln< =tGzcP9Ńwjqlvelۛ%{7ϰuiԃJR|d=4L -OՍe8c)*k :4}K+`$ğ5/P>z jJ( @0 2:X?Լd@v\3 HPvէcqݖk3n[RxMX<ҦutL,}S(+z|S_t3S5[ږ2V@Rx7eu҃Pr 4m7L{{<=JU6e]gDc!c,$(Z}C[n7_|U 첌8♶6);F(INZn!4TAm |w:7,8N:i'PݑArOWO3% i?mwio$5sUrZ@$fw_8?tC[qjZM6}Jŝ0:.Н$>g]Dk뀢2dLnjb3"Ԫ!3Z4-L0)l~2q808dwAMuJ Ngf]i4\21|=RaRwKdcd-1) ڄm=(;#$fxf#=ˀrxsۥPwVe4?.g {h/ϗc}O;~5lz~f_\(H:[;tykuWٶtmoq1d$={kёQ?pr98%ٞ{7 7p}'p}0nK4VS3߫To.Z*["kF\Rfш؞f+TXOd[MSnjk@+ dN$njc w9wy' "Sʵ O%_hWN30g6ך)z߼ u8ӷy49 T~rd{0'\K|;+`s P`EBVǡGm}X).~K6 k9XP#yVaT(&fЭ&-N4,Bxotq01~|NFOڌyX:Aj.zh<>#ڄa3,'ii.A67E~qUrAfd^F"LIz!k#C-<[5Z/ģ%b=fpz<\gR㷈{-62)o/fCj~+p×i 㴆t-޽nEӠ7 Hn8 t5|"-y$լo\}MF_LI*7""I$'M;|hp3^s8D\Цn ?)EV{;nb>9ʼnZ2,%:Z#UDGH-UI6<P] 2  ̓ hur8Fyjɥb2|t.?R6MK/8rwzN__.v u:\y몇SL7$̫D߀0]t>`8$hěNix- }&vT(bٓlK`剷>mgve*QnV̆vCB:4uu7#VA!XZ/h#qoW5}Rfqs^ w?$%b&2m%rGKD!S%|,%6:'"  =} Დ!>ЅP|pOIQkO}^FV_eϼ22m3S68q&@)dF(8 ̗S3 9bA(|x~yqf E&v[4ebf6:K4c.4v.Ƙz9EHm3< ,MZv٢VU0H"п@f|k'2z9:+bxVR9 z| w~[R ܨ0yMA] Il|mLڻIn"~Akj5a%j5:qN$q)ДPnľxU1E!2\fS.'\Τh)+d̨-lPՖzoףCH`ZxMhyo=9t#kύbkmX#eZE4smֿv]Jϳ[P&{eJpGND Pr U6,PkP#|h5Db0}K7!nSuҠwyd7Y1b7iVc{;gZQXA_MfV֡Wp 8U )C$:)e9ҭ1j`ِ :]H_'f|mnj$ƥ-tMН !9Vf- <Tz Y bnŃNHTkܚ`pU"a/=t\H x\d֌3 >y Oun0\!~\#$Pd'CNR 04%cx6  R#Qni|T"y4!)G1`ǩqdLk$ u1I' U$9FNͷ A+@Eك%F5[-q1xB2DSyexf7SْaafPߨᦡ0zӕn @Az9*q4e0ח.g}-LmV KDbK6SBh1 ;˘52qmX_sutS.t(~k_z@}Zij7G0+(޾vHoR˷Ee}IUvG7lҗ}}@BԻ>-@˳ϧ :vt{p̄{uBpf17[eU6oGolR#U,3sq(ԉ\gʹ fXL,We8;^d0tc--0Đk]̛oḑ`Ee&КW%ͼ0kV7<;ԡy]7K1{l5j⽻&CMҪ@1cNq 9|x+Ѹyڔ'ر # з]B`dS})r#$5 m aN$Eax,R$ˡݮ#d[}tVcqת8)y& Yt cT7iF^ -**ёC<W*)2 ϝwY*csTeUX@i']_uݪvjru1wցb\'_oڷ hu@RfAV0±J* fS4gpy-S?s|לd( >;MsxK5B1#1bs5&`@nr+o،)ql@b z.o_&='pUgKb?j|Ƣt\͹Co =Q d>}]]dgѱ)^,Leȼa^4á>0>ӟ8 ;\EvaEd䉼 Oq+ȖT.KÑeu)yW-Q&ff5Oc  ȴ.қ$5+-W!(YV]x]h%F@CDoLrޅrȅ*`q㑝fUw*`2*-k9%25j;n  E^ \gWl!73E뀖[?f_P?eU4?5ƷB(p--3ç$3Q_1LODܕB8Whdp39?."A'3YEw.:st #CbV2!'hRaIb 4o\],xZ]zZ;W2Yk"CktzglN)ZpRo!?ho"=2nM%*82g(Ks&wVt}YVMorNfa ߅Nl6,8:U M8Xh?@A)Wv,|r~1a KncX- dgF5!}dKG],><}\G 2!:m, @HU݇eR3"LP KYm3GlrMQ34Jsg==BY q,I(J2_0^@DDȘ⚄`+̆ӭ\2 H0$v7Kj%?bFlok|$.*BI"7 w%43+'Ž4V2Q˧~d(%L\%qp9?+6Lh8-cG+"?sofA-OJn+qgfk,oo 8 f=یlb'CGFw1 -PgڢU#KbcҡDZOs"B[ϑU5VrU&Ck< wAvl"J yMa*aaS!6  }j| n#b` q?9~R^,Di&*|R  L^* |Ms|c*!TթKqLWLoԷɎԲh-mez$M SEi7!h1_.JX&@x.-4t}<35uvz_#p8_DךZC͌uH6ʊz:\ݤFI4F@;Ȗ;I}[٦KOT4SnDB>\*)S?<~o2"Ȁ6.Z07VDD_4 {wPUVqp\ =c1c/aL~5KI{]A&J{ Y`}f48QJi<3F0.)%63Z%{W7}*{3 :/ɱm=O83ǀ%!օ5g'SynP _$fҾ~)Plym38oq2T-> z^QdPNa5Q~0mTh,;}wWm|-dbMtk`:Q|`brq6P-No&]ʹO $_BŌ`:3BL)Ox~O6WDUFn[ M#\bSY{P6K?(')夭)g F  hžV| SvWBY^Y^y-ffiD PgK~$M64elލvwN]#uMK^0f-d M7G~~CdOȧ;=*I'd7-f}bo Dm~)33BmŝRD7}jo&YڽF@")EE|ܒvcBwgc+2[r'u:)Ёpꝭ)ԫ, 65OKU|?V/*CL?FZN]Uq@8wpf&Sq\]S*yDw-={CF(P>Eb3n`@Ti[W~D< ]A_pWE-wt)G䪟ugyWA>x!/7asgh z`GFq:XuUQFi2\ͪe@+hLTJ |894r&⃃~)ܺf0,Ž<ŽgiC\Q Sِy3?jEݱ yaZ}t)8)nV,H^Zc n hт!*K\Nr^`@wz6Ռ 0, 0WW=U&l092߾CKFF%:f}Z+f qtGMd6e5c 039K;mu%]S '䡨DǗow4Y*A^1;~W_ڊz+L O$Za^b;3HoQ~CܮZn,C(.2E97 3@NVp4֖dvcyLÑYUl,KVS'[ZY^Sm\]r%ԎFoYgI}.YldN_¸rV-6,;2*,Fv4&-z=\5Q*c\=S;EGدe~ d[٥8}*yveԙ*c\ Y{|F(p'cx.aRB2v^>DbP%L/%Y͇u,+E1\}b̼Ň1(JC}}&d{}0 _`Do0^`/ex `ze1{csȪ*pa{&ŽM3wewSIqV ,<۽חB/{32b@lr{\mC25ٹBiB*qZ%l]H[LG9HzKc-˥ Xπcs)m%Ot6<ἧ>vV+I ` >98B)8 kxՕMC)5 /0?[s@>!QG8񿅄4y<PNM MDP"^ ZJbT7H*yh7X8^*|\97@콬n0֘ߡ뭃I{,Ny )Dx_)J"a?jT[=9)”%g2.4/ց;I9)L%ui%e U#=1[\W14Z>mx10|C|RB \ԥeU|&qFK{@pPȫ};x^'}Yl\N=%rN@HPEV6B1MZ$h]Tj4VV C3l//@IZ]-^ÓKbM|>6/ì ~c<>\A ww4q%( /n)rp l0_8u*sxENo]^7뉙%@N榸4b汜x(^G/r`zQ"f&NXOՌe{ߦ}KS4NXj2S>:KGYXw$VjTb4P~8E^e*̙͠2^ r&/p7:KȫEohcf)okf[zw!G@BOHm)! F<|}\eFK ͖7kZm*91MvF(/UթKg`'v<] t,&6-iYh=Q/2g,A h@`,77,9 0SryU "rn&<2)7MK̸UP!ITz\rPӯ6Q(GR}K/PwɘDwOFk1/}W䴭ȵܪ>uAd%S].i R9t$8T vƸ&څ! ~P_R#%8i},, N ~]Tbeodf/5V@k>zlKm<[IݵL0SwrVɷftnmn?6x:31w4&~a CVmz84a]K%7܄m?"7-{qbCYOdy&%[r)j=~-Z4%~D=?EZiɬŴDW(ϠD RZ[u|PS<h냚v"#,%{P5nu%9]lDɲgS$ڭDe LMzQJWbgHDz\ZR@uXr\~lW;_΍UrM̾Q<6LUtFw|Bq1O;L9"(*$![pr7U¨anzκhTp/r.|k.|bRHW462#j#٥#pS)AK>4.CƌB?aʦ+82*9d\ɏҔ0{7 ->cxf1id=Dz@FHPJR-HR4)jn7:ȝ?Md_\'c߆Q^Ee=YXP*}M=ȔD\Һ/3)[waǫgXJ!\(Slt{5M4^P)d.ަ-^3놕}@1BJכ+ϴvf>y*9 B#^_!mfw;Ȋydξ,%4mAPezzoG ѫ͍$L@Ek/fկŻ+&45δCo߻)c#!^")NKDDzpgm:: 벨R7C3ؐȋ;4dBM-X!(<#zL {9TH^7P=.K8K1c"gl>tN197(2h!oP>ך=4-8J uA;`s C᳚]{xh=7u/}ENVݬ;->En\EcИAU l#XP0rvn',MM;P'Tg&h;gWLVB Z:3(S]2 _2]gk`/ ꒲;܇ܦ8@ w`_ H.ku^*}qcJ7g~rM5T/SO&EI v3ѭan}@&v >0 LH\w[cqʅ쨮ϧ{-D?r-lyIx}RJ G}%K,:Intp U+e wč9 BTᓷid+#f9B8#Fś(pPݚ2UI &TQ-cXb~\Lj!H3;946Rs"׉GHk Twʦޏmzpc>aC<1e(XGww8VFUyiXtK>YhH lhr:jtqt=q E#ִ-xhJ-I&}pq~K]1.zْKjR*>3 ux?C,|gp-=-18}KD SPP1/eSGTqxKXqJx ) ~v~aqQTtiɹdE1Р%i{4ٺ5Qg &2qjH}VguY.xA::ms>18P8,?I']c 7YZ"XJs#y (T $\H^Q.{Q@8r=^qս?#ڐ(/Vv7.pDi0k~ztE~E +&v*QoM^$5vLȁr\Do(P6:mh'[r,/0bkzX\w0W64n>ݝ$b$.YmP%WS% -ܩg8CrIlv癵-Hv8P3&QQ#ݫoOݹк'[sJ bQ9Y2k"hkiȑ-gκb޼J uz"YO㤠+ѵ` ګ͇RWEob]n~wWZL(D.n4),hR9ǚtd$ŤzqqSH8+y[k* KFPzȹE%eqޔ`jZN[˹nU+Ksvk-;e # Y`>!:\4Y{64Wf5tz$@j>2u r][?=F| p>{Jo(iDzTr؏sF,ö `DƠ z3W <kx֢Ă&~cAWݠM3.ZYN@5 V*KM@C5OV(#cBbu߄]{yCeeb(1ro)6!շMtZ抎 i G֦ml'D!(NH#Lޢ= Qn!8b{7.y+vW}gnwCTJIVPɼҳhRbq |<ͺ^/pج>RS<$E_dZI*IPAA1w%_اLΣL ^#+xy/σY@Mw}*%WL$#gij~=1wDi2-ی/G "}NIqW:4Alj6"0rډt(mRdej]@ć'&Zr7lsHo8@T fεA7C("Q7;1:!saJ^-%-h@@( J ;t_ '|ضqgNN8>Ӄ6NC4Pҋ*eGڇvV0ITcZ=\28Y,tJX+etܷ?ᗏ85:82Z>|8HUƆמ%VI3Wi 0z AĴU-ߪ-H7X|vN".`U\{0 }1-V .?;F%UILfyO?R@YͿCUz&DtM>m D 3k_ uƵ־DQ%ʒv±KmWšV`b++ 71%x~TG UWh{ #M'* PkdkgH2XZr-_p3 ^ЩD\+bw&W#*i u6l?&CLߏ Î~V]S J gy?q4Lԫ(L\߆A{+L=4A,&0 WB|hN r܃w-֖ߓ)+$YuV+ j$U϶W\)D;_@"?q!c;Iڵ>Q aX`bOwxNh nP¥}Iώ%;{}r1[z )9l$K Kxj8_ BS#wRK2jKNW;u$axy p&25xūuEcںg]J_ڈŇ.ܪm5"3V :oW}Xv%E_Pf($ ^o+55ZUZ~pjP\pgN{Y*Ժs=X,fH;[z_bOɡBE)Bʨ Wvw5[*a Z4'fFd'vrK"`#~o`J~Zx$PCZ)?Z~L!ʝ5${ '0tNq%/D9o7!o%kW vkV5&V_nsx Y$Cis JiOcg$@ʸdGw T-[ՃvxkV|ӿO.-зI!y 8m~p]eeeL,sرN7*;++ 鰝 U%|NJȃkqFڞ@;ςF$?[Ў 钆9(q5|;`WCabGuHlM"DDRɬ1x@, /d <" vTNI]W7E)b{qHY [6[0q̸kuTڔ.`ttB6?1tӍր>+}-+a ~ހ{37޾p._FYAwZ;P5KEksXay dc…׌4_(1ڟAQǪD.o1s1"+5#ZjE#B=͏B6LĵNÛ'^t5cO ׶~@h2LM,s ;oiP_}e[N};g: bkhdDhOcff9efi;(a:`]\.$2Zo6:agǕ`KX$su'dXA<.v#b4Ƹl3>RM37:NE"-/˳UUx#E$KZr^0c !3O 37Yz{$|3DUcB8獘Ꝗe![)~u,ģ>jstR5h1qR=5_m:!t يDǟ!/\4mwJb;oGڲLզ2k60m!x| *Z+|D8 CṠ4H #&=;7/AbǩJVu6U+)>9@{L7Yjp] ++ Y _0.[|50 J}7fY?/Gy=o $hV![tSCٌ6F2B,oSp8' Z6D&f!V5znkdADv霿`c V)G@,iM$魮 *\f-|mrz/C[y^),L0Pz syĔ#ZM.e}m+:V^dZ/wu;[$;=Hxsbyu|:!τ=%a]OYڈncWα `X:ToAA_M0=܊QL]%S XP$oqfG^dPZs+C3- q_D{~'>\e< }ʞvko^p+ʅo!YGUxHt!H񗖋ph:D',COn@Zy-/KVV=xj@όU&6\[+aeK16| , I„~aGbH),{ ! t ]yXa+Oxix˕cO3zFtXCEBk'tϷ/8^׵i!vgo%(>gW;caQP({ӆS:-oT5MdE0@ 0 ؟bu߸!$36MN>kP>u JDia)3Ń0~ j0pBb!J+M9 䚾PH`SU >V֪˹ 4Px0 pT^6:%иcFއN= n^4 ](HؓAR\kjYCgHP<f6b]h|_al6lp$vԊ`%TѽoǃjӳQ1K>Z-4bZe^݅'o6 7I3<x F Ax,lb/B#+MF$ʃo Ň#+$CGA Wk5"Ec!Pjw}E(x|X ?ig#鱊z1v^MG? S"pRwH7uOU^fCMDcNOF;ӕ{F0uA&:DVh[E훹R<#^vؒ[[hO{f~GZ' )Q"9MN@66Js0EyS?:kRTo/Kᨨ (r X#Q"ݩ%lB\( =FBFvڵ20TT;r_KD/M9KՌQMtcDYwܴ3y\þ_~9%  6pNy>;cŸ?gliJ RqMaq9qDR/HqT<ᷧ=.ӞM-;DEWUO( S_cr@0wz}* QS/ SݝE1Ʈ0mzEk '0= &µ7۰#|KJh^Um߻a+ihǽт8T&'&?dHEiBSsho^yFBn J<@T[ 9^,'a꺚$=PR_]~ 7jaعa6&7 >eM0i' tVvTxu-.F X8:q>Yd uYp8Ԇ>>}?_R4WB)OtFJFmKH-o@tK:STӰ\ZhC%{Rf0%U( Ԡn 'Ja{jk-ڥ>ZT0u4}h⬗mAwD7 i/Pb^_s\=Pa[/E7Y9c>OrU8 nZYIG6Mp65RVP#uč>q#>WI? wo}ga[KN_+>ZUdR/?*XZWD-cHٹ'@W/tedr7QlMe%+(GޥI}y {[^h'~c^i[2ŝ}_8W&q#ddw+{=GX nwi[w2E V%gL@TQnH5ZEjsId/I5[<_z~&16isg]YzE_W1}f,sd +YjtIc0XEXRuϷ{xmeh&Y;7 O x ǡq>'ڀ^wT$j(KJJ~iwrܧ0k:]&nm#@^">h{}A8ܞ#ܡixh[-$xpbZ!bg=iC!S=L82*?bYN(7G!ܶt. 9ӺjM7yen7 EQ^~&*,Rdk\?5,ٞ Dn+N4J7]IĤ~JmVT iGQ $hUꠈ6՟ߺ#6 ^֣5s#BETry 8\&(n=/Hbm%RbnkG!M9 0 ?bzn{S @k&p Bd^qS{lRwXopE"=59R1m&6+EzIY.97(A \¥8D0liuYz2sQId ;-V}.4[8C¨c.oܷw0UN9#߽:{c@<9iVc>GJrjq6J^΀CegCŽ3M7A'Op\1^Ъ9xRN[> qxLIeg{ƇwI6anL_Dyw5 5ҟǨ9ax?'ȃï65Ýs䣓0][CT̳Nb<е2?H3`R75$S-;iVKH]U~&Ԑ`C,#͖s=70FwHaTP*# 3 7cY (PQ m2/f_7<;ȷl+=1\dV-zɥ҂NI:O`$YuwSIӁ ՙ\z8C~L g]+ q)պ"Cx"RӒb VAsF*B@`F'}Dgi.Lm{N*7g4Ģ Ͷ YZ