nscd-2.31-150300.52.2 >  A dHp9|z V<"iЖE:?n%gd̰ܮ$>b$.UOcGCZWq,!&TNgHN})S<pI?d   4  GMU" D A    H W tFh<(68@9: =ٌ>ٔ?ٜ@٤B٬FٲGHI@XPY`Zڔ[ژ\ڠ]^S bcodeflu vH wxy z0@DJCnscd2.31150300.52.2Name Service Caching DaemonNscd caches name service lookups and can dramatically improve performance with NIS, NIS+, and LDAP.dhibs-arm-3SUSE Linux Enterprise 15SUSE LLC GPL-2.0-or-laterhttps://www.suse.com/System/Daemonshttp://www.gnu.org/software/libc/libc.htmllinuxaarch64getent group nscd >/dev/null || /usr/sbin/groupadd -r nscd getent passwd nscd >/dev/null || /usr/sbin/useradd -r -g nscd -c "User for nscd" -s /sbin/nologin -d /run/nscd nscd if [ -x /usr/bin/systemctl ]; then test -n "$FIRST_ARG" || FIRST_ARG="$1" [ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || : for service in nscd.service ; do sysv_service=${service%.*} if [ ! -e /usr/lib/systemd/system/$service ] && [ ! -e /etc/init.d/$sysv_service ]; then mkdir -p /run/systemd/rpm/needs-preset touch /run/systemd/rpm/needs-preset/$service elif [ -e /etc/init.d/$sysv_service ] && [ ! -e /var/lib/systemd/migrated/$sysv_service ]; then /usr/sbin/systemd-sysv-convert --save $sysv_service || : mkdir -p /run/systemd/rpm/needs-sysv-convert touch /run/systemd/rpm/needs-sysv-convert/$service fi done fi if [ -x /usr/bin/systemctl ]; then test -n "$FIRST_ARG" || FIRST_ARG="$1" [ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || : if [ "$YAST_IS_RUNNING" != "instsys" ]; then /usr/bin/systemctl daemon-reload || : fi for service in nscd.service ; do sysv_service=${service%.*} if [ -e /run/systemd/rpm/needs-preset/$service ]; then /usr/bin/systemctl preset $service || : rm "/run/systemd/rpm/needs-preset/$service" || : elif [ -e /run/systemd/rpm/needs-sysv-convert/$service ]; then /usr/sbin/systemd-sysv-convert --apply $sysv_service || : rm "/run/systemd/rpm/needs-sysv-convert/$service" || : touch /var/lib/systemd/migrated/$sysv_service || : fi done fi [ -z "${TRANSACTIONAL_UPDATE}" -a -x /usr/bin/systemd-tmpfiles ] && /usr/bin/systemd-tmpfiles --create /usr/lib/tmpfiles.d/nscd.conf || : # Previously we had nscd.socket, remove it test -x /usr/bin/systemctl && /usr/bin/systemctl stop nscd.socket 2>/dev/null || : test -x /usr/bin/systemctl && /usr/bin/systemctl disable nscd.socket 2>/dev/null || : # Hard removal in case the above did not work rm -f /etc/systemd/system/sockets.target.wants/nscd.socket exit 0 test -n "$FIRST_ARG" || FIRST_ARG="$1" if [ "$FIRST_ARG" -eq 0 -a -x /usr/bin/systemctl ]; then # Package removal, not upgrade /usr/bin/systemctl --no-reload disable nscd.service || : ( test "$YAST_IS_RUNNING" = instsys && exit 0 test -f /etc/sysconfig/services -a \ -z "$DISABLE_STOP_ON_REMOVAL" && . /etc/sysconfig/services test "$DISABLE_STOP_ON_REMOVAL" = yes -o \ "$DISABLE_STOP_ON_REMOVAL" = 1 && exit 0 /usr/bin/systemctl stop nscd.service ) || : fi test -n "$FIRST_ARG" || FIRST_ARG="$1" if [ $1 -eq 0 ]; then # Package removal for service in nscd.service ; do sysv_service="${service%.*}" rm -f "/var/lib/systemd/migrated/$sysv_service" || : done fi if [ -x /usr/bin/systemctl ]; then /usr/bin/systemctl daemon-reload || : fi if [ "$FIRST_ARG" -ge 1 ]; then # Package upgrade, not uninstall if [ -x /usr/bin/systemctl ]; then ( test "$YAST_IS_RUNNING" = instsys && exit 0 test -f /etc/sysconfig/services -a \ -z "$DISABLE_RESTART_ON_UPDATE" && . /etc/sysconfig/services test "$DISABLE_RESTART_ON_UPDATE" = yes -o \ "$DISABLE_RESTART_ON_UPDATE" = 1 && exit 0 /usr/bin/systemctl try-restart nscd.service ) || : fi fi exit 0  A큤A큤A큀ddd[d[ddddddd[d[d[d[d[e2cdfafd373d24fab07018d0e95dd49510ea6c992b7be2b0611ab23bbc2750b579fe74962fbce2fa9b2a4b92f693b2fd42cbc2ed331fae268de7104879a72df879c9cec5dd2414dcb76d11e75903aa6fd9b7785c897cb9f853edcb140a71b779132a2935858e32c2e2844b9499458d0fc1d796d23b4666339768dd73a14564cb/sbin/service@YYYYYYYrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootglibc-2.31-150300.52.2.src.rpmconfig(nscd)glibc:/usr/sbin/nscdnscdnscd(aarch-64) @@@@@@@@@    /bin/sh/bin/sh/bin/sh/bin/shconfig(nscd)glibcld-linux-aarch64.so.1()(64bit)ld-linux-aarch64.so.1(GLIBC_2.17)(64bit)libaudit.so.1()(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.17)(64bit)libcap.so.2()(64bit)libpthread.so.0()(64bit)libpthread.so.0(GLIBC_2.17)(64bit)libselinux.so.1()(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)shadowsystemdsystemdsystemdsystemd2.31-150300.52.22.313.0.4-14.6.0-14.0-15.2-14.14.3dq@dtd%yddccU@ccob@b@b֜b@bb no longer includes inline versions of any string functions, as this kind of optimization is better done by the compiler * The nonstandard header has been removed * The obsolete header has been removed * The obsolete signal constant SIGUNUSED is no longer defined by * The obsolete function cfree has been removed * The stack_t type no longer has the name struct sigaltstack * The ucontext_t type no longer has the name struct ucontext * On S/390 GNU/Linux, the constants defined by have been synced with the kernel * Linux kernel 3.2 or later is required at runtime, on all architectures supported by that kernel * The DNS stub resolver limits the advertised UDP buffer size to 1200 bytes, to avoid fragmentation-based spoofing attacks (CVE-2017-12132) * LD_LIBRARY_PATH is now ignored in binaries running in privileged AT_SECURE mode to guard against local privilege escalation attacks (CVE-2017-1000366) * Avoid printing a backtrace from the __stack_chk_fail function since it is called on a corrupt stack and a backtrace is unreliable on a corrupt stack (CVE-2010-3192) * A use-after-free vulnerability in clntudp_call in the Sun RPC system has been fixed (CVE-2017-12133) * fate#322258, fate#321513, fate#322453 - fts-symbol-redirect.patch, glibc-resolv-reload.diff, glibc-2.2-sunrpc.diff, i686-memchr-sse.patch, ld-hwcap-mask-suid.patch, ld-library-path-suid.patch, sunrpc-use-after-free.patch, test-math-vector-sincos-aliasing.patch, tunables-bigendian.patch: Removed- Fix RPM group- s390-elision-enable-envvar.patch: enable TLE only if GLIBC_ELISION_ENABLE=yes is defined (fate#322271)- ld-hwcap-mask-suid.patch: Ignore and remove LD_HWCAP_MASK for AT_SECURE programs (BZ #21209) - ld-library-path-suid.patch: Completely ignore LD_LIBRARY_PATH for AT_SECURE=1 programs (CVE-2017-1000366, bsc#1039357, BZ #21624)- Remove glibc-cpusetsize.diff, no longer useful- fts-symbol-redirect.patch: Fix symbol redirect for fts_set (bsc#1041123, BZ #21289)- test-math-vector-sincos-aliasing.patch: Fix test-math-vector-sincos.h aliasing- add-locales.patch: renamed from glibc-2.3.locales.diff.bz2, drop en_BE locales (bsc#1039502)- Remove glibc-testsuite.patch, no longer relevant- Use multibuild feature - Remove obsolete check-build.sh - glibc.rpmlintrc: remove obsolete entries - Use %tmpfiles_create in nscd postin- i686-memchr-sse.patch: Fix i686 memchr overflow calculation (bsc#1031021, BZ #21182) - sunrpc-use-after-free.patch: Avoid use-after-free read access in clntudp_call (BZ #21115) - Build testsuite with gdb and python-pexpect to enable more tests- tunables-bigendian.patch: Fix getting tunable values on big-endian (BZ [#21109])- Update to glibc 2.25 * The feature test macro __STDC_WANT_LIB_EXT2__, from ISO/IEC TR 24731-2:2010, is supported to enable declarations of functions from that TR. * The feature test macro __STDC_WANT_IEC_60559_BFP_EXT__, from ISO/IEC TS 18661-1:2014, is supported to enable declarations of functions and macros from that TS. * The feature test macro __STDC_WANT_IEC_60559_FUNCS_EXT__, from ISO/IEC TS 18661-4:2015, is supported to enable declarations of functions and macros from that TS. * The nonstandard feature selection macros _REENTRANT and _THREAD_SAFE are now treated as compatibility synonyms for _POSIX_C_SOURCE=199506L. * The inclusion of by is deprecated. * New features from TS 18661-1:2014 are added to libm: the fesetexcept, fetestexceptflag, fegetmode and fesetmode functions, the femode_t type and the FE_DFL_MODE and FE_SNANS_ALWAYS_SIGNAL macros. * Integer width macros from TS 18661-1:2014 are added to : CHAR_WIDTH, SCHAR_WIDTH, UCHAR_WIDTH, SHRT_WIDTH, USHRT_WIDTH, INT_WIDTH, UINT_WIDTH, LONG_WIDTH, ULONG_WIDTH, LLONG_WIDTH, ULLONG_WIDTH; and to : INT8_WIDTH, UINT8_WIDTH, INT16_WIDTH, UINT16_WIDTH, INT32_WIDTH, UINT32_WIDTH, INT64_WIDTH, UINT64_WIDTH, INT_LEAST8_WIDTH, UINT_LEAST8_WIDTH, INT_LEAST16_WIDTH, UINT_LEAST16_WIDTH, INT_LEAST32_WIDTH, UINT_LEAST32_WIDTH, INT_LEAST64_WIDTH, UINT_LEAST64_WIDTH, INT_FAST8_WIDTH, UINT_FAST8_WIDTH, INT_FAST16_WIDTH, UINT_FAST16_WIDTH, INT_FAST32_WIDTH, UINT_FAST32_WIDTH, INT_FAST64_WIDTH, UINT_FAST64_WIDTH, INTPTR_WIDTH, UINTPTR_WIDTH, INTMAX_WIDTH, UINTMAX_WIDTH, PTRDIFF_WIDTH, SIG_ATOMIC_WIDTH, SIZE_WIDTH, WCHAR_WIDTH, WINT_WIDTH. * New features are added from TS 18661-1:2014: - Signaling NaN macros: SNANF, SNAN, SNANL. - Nearest integer functions: roundeven, roundevenf, roundevenl, fromfp, fromfpf, fromfpl, ufromfp, ufromfpf, ufromfpl, fromfpx, fromfpxf, fromfpxl, ufromfpx, ufromfpxf, ufromfpxl. - llogb functions: the llogb, llogbf and llogbl functions, and the FP_LLOGB0 and FP_LLOGBNAN macros. - Max-min magnitude functions: fmaxmag, fmaxmagf, fmaxmagl, fminmag, fminmagf, fminmagl. - Comparison macros: iseqsig. - Classification macros: iscanonical, issubnormal, iszero. - Total order functions: totalorder, totalorderf, totalorderl, totalordermag, totalordermagf, totalordermagl. - Canonicalize functions: canonicalize, canonicalizef, canonicalizel. - NaN functions: getpayload, getpayloadf, getpayloadl, setpayload, setpayloadf, setpayloadl, setpayloadsig, setpayloadsigf, setpayloadsigl. * The functions strfromd, strfromf, and strfroml, from ISO/IEC TS 18661-1:2014, are added to libc. * Most of glibc can now be built with the stack smashing protector enabled. * The function explicit_bzero, from OpenBSD, has been added to libc. * On ColdFire, MicroBlaze, Nios II and SH3, the float_t type is now defined to float instead of double. * On x86_64, when compiling with -mfpmath=387 or -mfpmath=sse+387, the float_t and double_t types are now defined to long double instead of float and double. * The getentropy and getrandom functions, and the header file have been added. * The buffer size for byte-oriented stdio streams is now limited to 8192 bytes by default. * The header now includes the header. * The malloc_get_state and malloc_set_state functions have been removed. * The “ip6-dotint” and “no-ip6-dotint” resolver options, and the corresponding RES_NOIP6DOTINT flag from have been removed. * The "ip6-bytestring" resolver option and the corresponding RES_USEBSTRING flag from have been removed. * The flags RES_AAONLY, RES_PRIMARY, RES_NOCHECKNAME, RES_KEEPTSIG, RES_BLAST defined in the header file have been deprecated. * The "inet6" option in /etc/resolv.conf and the RES_USE_INET6 flag for _res.flags are deprecated. * DNSSEC-related declarations and definitions have been removed from the header file, and libresolv will no longer attempt to decode the data part of DNSSEC record types. * The resource record type classification macros ns_t_qt_p, ns_t_mrr_p, ns_t_rr_p, ns_t_udp_p, ns_t_xfr_p have been removed from the header file because the distinction between RR types and meta-RR types is not officially standardized, subject to revision, and thus not suitable for encoding in a macro. * The types res_sendhookact, res_send_qhook, re_send_rhook, and the qhook and rhook members of the res_state type in have been removed. * For multi-arch support it is recommended to use a GCC which has been built with support for GNU indirect functions. * GDB pretty printers have been added for mutex and condition variable structures in POSIX Threads. * Tunables feature added to allow tweaking of the runtime for an application program. * A new version of condition variables functions have been implemented in the NPTL implementation of POSIX Threads to provide stronger ordering guarantees. * A new version of pthread_rwlock functions have been implemented to use a more scalable algorithm primarily through not using a critical section anymore to make state changes. * On ARM EABI (32-bit), generating a backtrace for execution contexts which have been created with makecontext could fail to terminate due to a missing .cantunwind annotation. (CVE-2016-6323) * The DNS stub resolver functions would crash due to a NULL pointer dereference when processing a query with a valid DNS question type which was used internally in the implementation. (CVE-2015-5180) - Enable stack protector if part of %optflags - startcontext-cantunwind.patch: Removed - cpuid-assertion.patch: Removed- cpuid-assertion.patch: Don't assert on older Intel CPUs (BZ #20647)- glibc-2.3.3-nscd-db-path.diff: Move persistent nscd databases to /var/lib/nscd - glibc-2.3.90-langpackdir.diff: simplify- Update to glibc 2.24 * The minimum Linux kernel version that this version of the GNU C Library can be used with is 3.2 * The pap_AN locale has been deleted * The readdir_r and readdir64_r functions have been deprecated * The type `union wait' has been removed * A new NSS action is added to facilitate large distributed system administration * The deprecated __malloc_initialize_hook variable has been removed from the API * The long unused localedef --old-style option has been removed * nextupl, nextup, nextupf, nextdownl, nextdown and nextdownf are added to libm * An unnecessary stack copy in _nss_dns_getnetbyname_r was removed (CVE-2016-3075) * Previously, getaddrinfo copied large amounts of address data to the stack, even after the fix for CVE-2013-4458 has been applied, potentially resulting in a stack overflow. getaddrinfo now uses a heap allocation instead (CVE-2016-3706) * The glob function suffered from a stack-based buffer overflow when it was called with the GLOB_ALTDIRFUNC flag and encountered a long file name (CVE-2016-1234) * The Sun RPC UDP client could exhaust all available stack space when flooded with crafted ICMP and UDP messages (CVE-2016-4429) * The IPv6 name server management code in libresolv could result in a memory leak for each thread which is created, performs a failing naming lookup, and exits (CVE-2016-5417) - startcontext-cantunwind.patch: mark __startcontext as .cantunwind (bsc#974800, BZ #20435) - Removed patches: * 0001-Updated-translations-for-2.23.patch * 0002-Regenerate-libc.pot-for-2.23.patch * 0003-Regenerated-configure-scripts.patch * 0004-x86_64-Set-DL_RUNTIME_UNALIGNED_VEC_SIZE-to-8.patch * 0005-Add-fts64_-to-sysdeps-arm-nacl-libc.abilist.patch * 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch * 0007-NEWS-2.23-Fix-typo-in-bug-19048-text.patch * 0008-Update-NEWS.patch * 0009-sln-use-stat64.patch * 0010-Add-sys-auxv.h-wrapper-to-include-sys.patch * 0011-mips-terminate-the-FDE-before-the-return-trampoline-.patch * 0012-Use-HAS_ARCH_FEATURE-with-Fast_Rep_String.patch * 0013-Mention-BZ-19762-in-NEWS.patch * 0014-Define-_HAVE_STRING_ARCH_mempcpy-to-1-for-x86.patch * 0015-Or-bit_Prefer_MAP_32BIT_EXEC-in-EXTRA_LD_ENVVARS.patch * 0016-Fix-resource-leak-in-resolver-bug-19257.patch * 0017-math-don-t-clobber-old-libm.so-on-install-BZ-19822.patch * 0018-resolv-Always-set-resplen2-out-parameter-in-send_dg-.patch * 0019-S390-Save-and-restore-fprs-vrs-while-resolving-symbo.patch * 0020-S390-Extend-structs-La_s390_regs-La_s390_retval-with.patch * 0021-CVE-2016-3075-Stack-overflow-in-_nss_dns_getnetbynam.patch * 0022-configure-fix-test-usage.patch * 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch * 0024-nss_db-Propagate-ERANGE-error-if-parse_line-fails-BZ.patch * 0025-getnameinfo-Do-not-preserve-errno.patch * 0026-getnameinfo-Refactor-and-fix-memory-leak-BZ-19642.patch * 0027-getnameinfo-Reduce-line-length-and-add-missing-comme.patch * 0028-getnameinfo-Avoid-calling-strnlen-on-uninitialized-b.patch * 0029-getnameinfo-Return-EAI_OVERFLOW-in-more-cases-BZ-197.patch * 0030-hesiod-Remove-RCS-keywords.patch * 0031-hesiod-Always-use-thread-local-resolver-state-BZ-195.patch * 0032-hesiod-Avoid-heap-overflow-in-get_txt_records-BZ-200.patch * 0033-malloc-Remove-NO_THREADS.patch * 0034-Fix-malloc-threaded-tests-link-on-non-Linux.patch * 0035-malloc-Run-fork-handler-as-late-as-possible-BZ-19431.patch * 0036-malloc-Remove-malloc-hooks-from-fork-handler.patch * 0037-malloc-Add-missing-internal_function-attributes-on-f.patch * 0038-nss_dns-Fix-assertion-failure-in-_nss_dns_getcanonna.patch * 0039-nss_dns-Validate-RDATA-length-against-packet-length-.patch * 0040-resolv-nss_dns-Remove-remaining-syslog-logging-BZ-19.patch * 0041-nss_dns-Check-address-length-before-creating-addrinf.patch * 0042-nss_dns-Skip-over-non-PTR-records-in-the-netent-code.patch * 0043-resolv-Always-set-resplen2-out-parameter-in-send_vc-.patch * 0044-tst-audit4-tst-audit10-Compile-AVX-AVX-512-code-sepa.patch * 0045-Fix-tst-audit10-build-when-mavx512f-is-not-supported.patch * 0046-tst-audit10-Fix-compilation-on-compilers-without-bit.patch * 0047-strfmon_l-Use-specified-locale-for-number-formatting.patch * 0048-glob-Simplify-the-interface-for-the-GLOB_ALTDIRFUNC-.patch * 0049-CVE-2016-1234-glob-Do-not-copy-d_name-field-of-struc.patch * 0050-ldconfig-Do-not-remove-stale-symbolic-links-with-X-B.patch * 0051-Report-dlsym-dlvsym-lookup-errors-using-dlerror-BZ-1.patch * 0052-Fix-tst-dlsym-error-build.patch * 0053-Remove-trailing-newline-from-date_fmt-in-Serbian-loc.patch * 0054-Revert-Report-dlsym-dlvsym-lookup-errors-using-dlerr.patch * 0055-CVE-2016-3706-getaddrinfo-stack-overflow-in-hostent-.patch * 0056-Fix-strfmon_l-Use-specified-locale-for-number-format.patch * clntudp-call-alloca.patch * glibc-memset-nontemporal.diff * nis-initgroups-status.patch * nscd-gc-crash.patch * robust-mutex-deadlock.patch * strncat-avoid-array-bounds-warning.patch- strncat-avoid-array-bounds-warning.patch: Avoid array-bounds warning for stncat on i586 (BZ #20260) - Update glibc.keyring - Unset MALLOC_CHECK_ during testsuite run- nsswitch.conf: Add fallback to files for passwd and group to prepare for libnsl removal.- nis-initgroups-status.patch: Return proper status from _nss_nis_initgroups_dyn (bsc#984269, BZ #20262) - robust-mutex-deadlock.patch: Fix generic __lll_robust_timedlock_wait to check for timeout (bsc#985170, BZ #20263)- nscd-gc-crash.patch: Fix nscd assertion failure in gc (bsc#965699, BZ [#19755])- clntudp-call-alloca.patch: do not use alloca in clntudp_call (CVE-2016-4429, bsc#980854, BZ #20112)- Import patches from 2.23 branch 0001-Updated-translations-for-2.23.patch 0002-Regenerate-libc.pot-for-2.23.patch 0003-Regenerated-configure-scripts.patch 0004-x86_64-Set-DL_RUNTIME_UNALIGNED_VEC_SIZE-to-8.patch 0005-Add-fts64_-to-sysdeps-arm-nacl-libc.abilist.patch 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch 0007-NEWS-2.23-Fix-typo-in-bug-19048-text.patch 0008-Update-NEWS.patch 0009-sln-use-stat64.patch 0010-Add-sys-auxv.h-wrapper-to-include-sys.patch 0011-mips-terminate-the-FDE-before-the-return-trampoline-.patch 0012-Use-HAS_ARCH_FEATURE-with-Fast_Rep_String.patch 0013-Mention-BZ-19762-in-NEWS.patch 0014-Define-_HAVE_STRING_ARCH_mempcpy-to-1-for-x86.patch 0015-Or-bit_Prefer_MAP_32BIT_EXEC-in-EXTRA_LD_ENVVARS.patch 0016-Fix-resource-leak-in-resolver-bug-19257.patch 0017-math-don-t-clobber-old-libm.so-on-install-BZ-19822.patch 0018-resolv-Always-set-resplen2-out-parameter-in-send_dg-.patch 0019-S390-Save-and-restore-fprs-vrs-while-resolving-symbo.patch 0020-S390-Extend-structs-La_s390_regs-La_s390_retval-with.patch 0021-CVE-2016-3075-Stack-overflow-in-_nss_dns_getnetbynam.patch 0022-configure-fix-test-usage.patch 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch 0024-nss_db-Propagate-ERANGE-error-if-parse_line-fails-BZ.patch 0025-getnameinfo-Do-not-preserve-errno.patch 0026-getnameinfo-Refactor-and-fix-memory-leak-BZ-19642.patch 0027-getnameinfo-Reduce-line-length-and-add-missing-comme.patch 0028-getnameinfo-Avoid-calling-strnlen-on-uninitialized-b.patch 0029-getnameinfo-Return-EAI_OVERFLOW-in-more-cases-BZ-197.patch 0030-hesiod-Remove-RCS-keywords.patch 0031-hesiod-Always-use-thread-local-resolver-state-BZ-195.patch 0032-hesiod-Avoid-heap-overflow-in-get_txt_records-BZ-200.patch 0033-malloc-Remove-NO_THREADS.patch 0034-Fix-malloc-threaded-tests-link-on-non-Linux.patch 0035-malloc-Run-fork-handler-as-late-as-possible-BZ-19431.patch 0036-malloc-Remove-malloc-hooks-from-fork-handler.patch 0037-malloc-Add-missing-internal_function-attributes-on-f.patch 0038-nss_dns-Fix-assertion-failure-in-_nss_dns_getcanonna.patch 0039-nss_dns-Validate-RDATA-length-against-packet-length-.patch 0040-resolv-nss_dns-Remove-remaining-syslog-logging-BZ-19.patch 0041-nss_dns-Check-address-length-before-creating-addrinf.patch 0042-nss_dns-Skip-over-non-PTR-records-in-the-netent-code.patch 0043-resolv-Always-set-resplen2-out-parameter-in-send_vc-.patch 0044-tst-audit4-tst-audit10-Compile-AVX-AVX-512-code-sepa.patch 0045-Fix-tst-audit10-build-when-mavx512f-is-not-supported.patch 0046-tst-audit10-Fix-compilation-on-compilers-without-bit.patch 0047-strfmon_l-Use-specified-locale-for-number-formatting.patch 0048-glob-Simplify-the-interface-for-the-GLOB_ALTDIRFUNC-.patch 0049-CVE-2016-1234-glob-Do-not-copy-d_name-field-of-struc.patch 0050-ldconfig-Do-not-remove-stale-symbolic-links-with-X-B.patch 0051-Report-dlsym-dlvsym-lookup-errors-using-dlerror-BZ-1.patch 0052-Fix-tst-dlsym-error-build.patch 0053-Remove-trailing-newline-from-date_fmt-in-Serbian-loc.patch 0054-Revert-Report-dlsym-dlvsym-lookup-errors-using-dlerr.patch 0055-CVE-2016-3706-getaddrinfo-stack-overflow-in-hostent-.patch 0056-Fix-strfmon_l-Use-specified-locale-for-number-format.patch - CVE-2016-3075 CVE-2016-1234 CVE-2016-3706 bsc#973164 bsc#969727 - resolv-mem-leak.patch: renamed to 0016-Fix-resource-leak-in-resolver-bug-19257.patch - no-long-double.patch: renamed to 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch - glibc-gcc6.patch: renamed to 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch- glibc-c-utf8-locale.patch: fix bad standard in LC_IDENTIFICATION categories - glibc-2.3.locales.diff.bz2: likewise- glibc-gcc6.patch: Suppress GCC 6 warning about ambiguous 'else' with - Wparentheses- Add compatibility symlinks for LSB 3.0 (fate#318933)- powerpc-elision-enable-envvar.patch: enable TLE only if GLIBC_ELISION_ENABLE=yes is defined (bsc#967594, fate#318236)- ldd-system-interp.patch: Restore warning about execution permission, it is still needed for noexec mounts (bsc#915985)- Add C.UTF-8 locale (see https://sourceware.org/glibc/wiki/Proposals/C.UTF-8) and rh#902094 . Added with glibc-c-utf8-locale.patch. - Add glibc-disable-gettext-for-c-utf8.patch to disable gettext for C.UTF-8 same as C locale.- Move %install_info_delete to %preun - crypt_blowfish-1.3.tar.gz.sign: Remove, the sign key is no longer acceptable- no-long-double.patch: Don't use long double functions if NO_LONG_DOUBLE- Update to glibc 2.23 release. * Unicode 8.0.0 Support * sched_setaffinity, pthread_setaffinity_np no longer attempt to guess the kernel-internal CPU set size * The fts.h header can now be used with -D_FILE_OFFSET_BITS=64 * getaddrinfo now detects certain invalid responses on an internal netlink socket * A defect in the malloc implementation, present since glibc 2.15 (2012) or glibc 2.10 via --enable-experimental-malloc (2009), could result in the unnecessary serialization of memory allocation requests across threads * The obsolete header has been removed * The obsolete functions bdflush, create_module, get_kernel_syms, query_module and uselib are no longer available to newly linked binaries * Optimized string, wcsmbs and memory functions for IBM z13. * Newly linked programs that define a variable called signgam will no longer have it set by the lgamma, lgammaf and lgammal functions - Removed patches: * dont-remove-nodelete-flag.patch * openat64-readd-o-largefile.patch * mntent-blank-line.patch * opendir-o-directory-check.patch * strcoll-remove-strdiff-opt.patch * ld-pointer-guard.patch * tls-dtor-list-mangling.patch * powerpc-lock-elision-race.patch * prelink-elf-rtype-class.patch * vector-finite-math-aliases.patch * powerpc-elision-adapt-param.patch * catopen-unbound-alloca.patch * strftime-range-check.patch * hcreate-overflow-check.patch * errorcheck-mutex-no-elision.patch * refactor-nan-parsing.patch * send-dg-buffer-overflow.patch * isinf-cxx11-conflict.patch * ibm93x-redundant-shift-si.patch * iconv-reset-input-buffer.patch * tzset-tzname.patch * static-dlopen.patch- isinf-cxx11-conflict.patch: Fix isinf/isnan declaration conflict with C++11 (bsc#963700, BZ #19439)- tls-dtor-list-mangling.patch: Harden tls_dtor_list with pointer mangling (BZ #19018) - prelink-elf-rtype-class.patch: Keep only ELF_RTYPE_CLASS_{PLT|COPY} bits for prelink (BZ #19178) - vector-finite-math-aliases.patch: Better workaround for aliases of * _finite symbols in vector math library (BZ# 19058) - powerpc-elision-adapt-param.patch: powerpc: Fix usage of elision transient failure adapt param (BZ #19174) - catopen-unbound-alloca.patch: Fix unbound alloca in catopen (CVE-2015-8779, bsc#962739, BZ #17905) - strftime-range-check.patch: Add range check on time fields (CVE-2015-8776, bsc#962736, BZ #18985) - hcreate-overflow-check.patch: Handle overflow in hcreate (CVE-2015-8778, bsc#962737, BZ #18240) - errorcheck-mutex-no-elision.patch: Don't do lock elision on an error checking mutex (bsc#956716, BZ #17514) - refactor-nan-parsing.patch: Refactor strtod parsing of NaN payloads (CVE-2014-9761, bsc#962738, BZ #16962) - send-dg-buffer-overflow.patch: Fix getaddrinfo stack-based buffer overflow (CVE-2015-7547, bsc#961721, BZ #18665) - powerpc-lock-elision-race.patch: renamed from 0001-powerpc-Fix-a-race-condition-when-eliding-a-lock-20150730.patch- Add audit-devel and libcap-devel to BuildRequires, for use by nscd- reinitialize-dl_load_write_lock.patch: Reinitialize dl_load_write_lock on fork (bsc#958315, BZ #19282)- resolv-mem-leak.patch: Fix resource leak in resolver (bsc#955647, BZ #19257) - tzset-tzname.patch: Force rereading TZDEFRULES after it was used to set DST rules only (BZ #19253)- glibc-2.3.90-noversion.diff: use stat64- ld-pointer-guard.patch: Always enable pointer guard (CVE-2015-8777, bsc#950944, BZ #18928)- strcoll-remove-strdiff-opt.patch: Remove incorrect STRDIFF-based optimization (BZ #18589)- iconv-reset-input-buffer.patch: Fix iconv buffer handling with IGNORE error handler (BZ #18830)- new patch [BZ #18743] PowerPC: Fix a race condition when eliding a lock 0001-powerpc-Fix-a-race-condition-when-eliding-a-lock-20150730.patch- nss-files-long-lines-2.patch: Properly reread entry after failure in nss_files getent function (bsc#945779, BZ #18991)- fnmatch-collating-elements.patch: Fix fnmatch handling of collating elements (BZ #17396, BZ #16976)- opendir-o-directory-check.patch: Fix opendir inverted o_directory_works test - static-dlopen.patch: Static dlopen default library search path fix (bsc#937853)- mntent-blank-line.patch: Fix memory corruption w/blank lines- dont-remove-nodelete-flag.patch: Don't remove DF_1_NODELETE flag from all loaded objects on failed dlopen - openat64-readd-o-largefile.patch: Readd O_LARGEFILE flag for openat64- Update to glibc 2.22 release. * Cache information can be queried via sysconf() function on s390 * A buffer overflow in gethostbyname_r and related functions performing DNS requests has been fixed. (CVE-2015-1781) * The time zone file parser has been made more robust against crafted time zone files * A powerpc and powerpc64 optimization for TLS, similar to TLS descriptors for LD and GD on x86 and x86-64, has been implemented. * Character encoding and ctype tables were updated to Unicode 7.0.0 * Added vector math library named libmvec * A new fmemopen implementation has been added with the goal of POSIX compliance. * The header is deprecated, and will be removed in a future release. * bsc#905313 bsc#920338 bsc#927080 bsc#928723 bsc#931480 bsc#939211 bsc#940195 bsc#940332 bsc#944494 bsc#968787 - Patches from upstream removed * htm-tabort.patch * o-tmpfile.patch * memcpy-chk-non-SSE2.patch * pthread-mutexattr-gettype-kind.patch * powerpc-software-sqrt.patch * static-tls-dtv-limit.patch * threaded-trim-threshold.patch * resolv-nameserver-handling.patch * nss-separate-state-getXXent.patch * aarch64-sigstksz.patch * heap-top-corruption.patch * pthread-join-deadlock.patch- pthread-join-deadlock.patch: Use IE model for static variables in libc.so, libpthread.so and rtld (bsc#930015, BZ #18457)- glibc-nodate.patch: fix verification of timestamp- also filter out -fstack-protector-strong- getaddrinfo-ipv6-sanity.diff: Remove. It breaks services that start before IPv6 is up (bsc#931399) - glibc-2.3.locales.diff.bz2: Remove sh_YU locales, fix currency for en_BE.- Add /usr/include/gnu/lib-names-.*.h to baselibs - pthread-join-deadlock.patch: Don't require rtld lock to store static TLS offset in the DTV (bsc#930015, BZ #18457) - heap-top-corruption.patch: Do not corrupt the top of a threaded heap if top chunk is MINSIZE (BZ #18502)- threaded-trim-threshold.patch: Fix regression in threaded application malloc performance (bsc#915955, BZ #17195)- aarch64-sigstksz.patch: Increase MINSIGSTKSZ and SIGSTKSZ (BZ #16850)- powerpc-software-sqrt.patch: Fix powerpc software sqrt (BZ #17964, BZ [#17967]) - nss-separate-state-getXXent.patch: Separate internal state between getXXent and getXXbyYY NSS calls (CVE-2014-8121, bsc#918187, BZ #18007) - static-tls-dtv-limit.patch: Fix DTV race, assert, DTV_SURPLUS Static TLS limit, and nptl_db garbage (bsc#919678, BZ #17090, BZ #17620, BZ #17621, BZ #17628)- resolv-nameserver-handling.patch: Replace with simpler version with more compatibility- memcpy-chk-non-SSE2.patch: Fix __memcpy_chk on non-SSE2 CPUs (bsc#920084)- resolv-nameserver-handling.patch: Rewrite handling of nameserver configuration in resolver- htm-tabort.patch: Fix TABORT encoding for little endian- Update to glibc 2.21 release. * A new semaphore algorithm has been implemented in generic C code for all machines * Added support for TSX lock elision of pthread mutexes on powerpc32, powerpc64 and powerpc64le * Optimized strcpy, stpcpy, strchrnul and strrchr implementations for AArch64 * i386 memcpy functions optimized with SSE2 unaligned load/store * New locales: tu_IN, bh_IN, raj_IN, ce_RU * The obsolete sigvec function has been removed * CVE-2015-1472 CVE-2015-1473 CVE-2012-3406 CVE-2014-9402 CVE-2014-7817 bsc#864081 bsc#906371 bsc#909053 bsc#910599 bsc#916222 - Patches from upstream removed * ifunc-x86-slow-sse4.patch * pthread-mutex-trylock-elision.patch - o-tmpfile.patch: Fix value of O_TMPFILE for architectures with non-default O_DIRECTORY (BZ #17912)- Update to crypt_blowfish 1.3. * Add support for the $2b$ prefix. - ifunc-x86-slow-sse4.patch: Fix misdetected Slow_SSE4_2 cpu feature bit (BZ #17501)/bin/sh/bin/sh/bin/sh/bin/shunscdibs-arm-3 1686813800 2.31-150300.52.22.31-150300.52.22.31-150300.52.2 0.48nscd.confnscdnscd.pidsocketnscd.servicetmpfiles.dnscd.confnscdrcnscdnscdgrouphostsnetgrouppasswdservices/etc//run//run/nscd//usr/lib/systemd/system//usr/lib//usr/lib/tmpfiles.d//usr/sbin//var/lib//var/lib/nscd/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:29151/SUSE_SLE-15-SP3_Update/df3cd010a3b8a7b3a8ec7b518ee48b98-glibc.SUSE_SLE-15-SP3_Updatecpioxz5aarch64-suse-linux ASCII textdirectorycannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.52.2.aarch64/run/nscd/nscd.pid' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.52.2.aarch64/run/nscd/socket' (No such file or directory)ELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, interpreter /lib/ld-linux-aarch64.so.1, BuildID[sha1]=2c4cde12a6894e780bb5f8c61f0d5bffb105db9b, for GNU/Linux 3.7.0, strippedcannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.52.2.aarch64/var/lib/nscd/group' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.52.2.aarch64/var/lib/nscd/hosts' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.52.2.aarch64/var/lib/nscd/netgroup' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.52.2.aarch64/var/lib/nscd/passwd' (No such file or directory)cannot open `/home/abuild/rpmbuild/BUILDROOT/glibc-2.31-150300.52.2.aarch64/var/lib/nscd/services' (No such file or directory) RR R R RRR R R;%Z(3ViOutf-8a41c92250a60d089af71a459710fdef104ba00e77d3a202ef3c6ac54fb48b976?p7zXZ !t/!)] crv(vX0Q,jܶJ}A" ==Ie5X F !J4+;0550EC:zb%lAZǝ nn cᷲHWS .Z_iA k M' sKGla~>p E_! FG*~Rt>;d԰̘pǐd#|#vgc )IIEIv uK3Df\<20E2=q'>RkΡ3*Tr Rްe5 8H&c!W<-Lu}`ߍ!JxRBۏaX5xiQ^${0@B|@l 7jF~Ĕz@pwPs YR u!MԎ 0 v_ }AwlG3%ٯč@ ؓ`&[A'?qKؕ#AR+A+5>H*^ryA|9;M/E̞_aJcdx! ԉ 6[Mzc*s]n.bl)8l; c QnضrXhߧ@KI55Y?-2XD562T~ٻ@7F]M* WKXܘI͙h/((m]1bՂ+r|y}a!Lm:;'Y) "zG>_CT7$;56w6^},T t^6WOG/-+t3–\`wK'WE b !VmOl9hs- ~qa^n.}ch`ڿ'PBvТ8*-[z^ga'ŋw$X yL7` [~{8NjyWV!H |$IRgr~L!QEXLAI^@_Lh~h_ź:pnk*@$S0; FQɔb P v}, {e@ŒhϽ2@Վ|@yW8Kͳ}o=,#$Dex@Ch$xP#^Cikp.*"Va }z뱁h'?.#K^/aŤA `6r; _ sLV7\g2 S?*Ă8FޢͶDԃ?2wAv ysA#>Ei|7g?TuGks>;nqcНL08:/X4a:D=O_+0'K}La=O @4k8xK7e !@e[U}\[+{Zku:phJ+ֶ`PiN߁s?[anoe lW1\#5,{8an)tlJMӢ-H<65\8C-=ЖT;aǝ9n嚮qPGN@oZH)T7o5'޶.)vPh*R W$^&dCwp506Naj@ șўw[WБ0B?q_)uD|j 鰩7]5[rkڧ[06{ Z]QM /6Q?zuをK<izնd`rL3T ?AHY]Xg"?Ph:|'p 1(\hkK̂-խIE+>@oŕzNWUtNRԌvcÏ/98I*-e2H#~vb_BʮDCh_gNB^IfʊP4 f.[=mT`@Rs01UJ dOw Kiۿbjl|5|LFi\ʠYь%~ʵ\5#EMĐCSn_бu$SRh_#I\*,$2;)N0ߟRs/[q J _biCJ&:i]h\Rd4oTy6AZp|eD3_*q- 2Ϭ2ˡx+xz/㭣!Lψr&βh$"_'dW Aʂv*랧wêgj>6]o~ũ.X׉ 2Mlh]̈́\`PG=E{_K3n'JZDj;Z+S)G떑 ^Bx߯uä y!ANT%z*v8%WU(»q&81]jĚBh/Sr|XI4+p7 beؾ~EЅYzѰlUg2<]b;NVnC`NOG,IVL2^.|"ExK=)KAAIM.2eJUxkS Fs %[>!7R/3͎&"Pؗ@" yY;(q2 ;}.ɮ6DO #x]ݵ9dpUz+ lxC=s!1?1|6k5TMIUa F0pq]sӷY<5$ѽ{`g BV7|_R&,.dh>4h(DȎH OfxD'W]v;c2aHK$Ha3紝 |{m!ZÚqzC>tji"IרϹOj``!Z+ U@h8bًXt}(L}v$Z'tdYil'ԛaNOfiڳ]Do3mELnyŶAjt% 9 !D'9.\qƯ W_*ݓ#b֪Bme1T|Wi4n'/9)@'Ӌ~/`@A`.B*8~K|IWsq+&XǪtlMjk\HC\q)?W|@ƜM?! (hCPYI~!6<9"Xbr@79[2ռ _^9Ls<0}/3'?i8:}x$]b wx4L{*ci# AK6e@nB+Xk~n7!.Op;VUYm~MSBIVg:DƄNC¥B D;_0K)cY(Ό4o}{Ymm\e952[rk~Z4@hd[P)_káRe7 $!{*>o tcoPO7:C|zw1+(/+,V/ er\F4啨 ~ķ\n۔Fxz}jV !Tyjfh\U;M C%i쾳uOLC P! ֶfOe3@XDzڲ |eL]~ Y{rqIBx a|Cؐ0}]Ҟb;!$0@@X4"E[}$z6Aylk/ Izp4++nj4>bHȩzBݭ61,m)!`Js\<,4&'@h*Pf31d- 90CRSsgyOCԼpGEܘi/yHQfjw6o'^ ^8E %J<8vB<e" up; uҞ˻z;O \@r*S"*7^A {yϊJt*Febs Iq[}8N •f aQETuB<6K7q%]k4Xl!"Z7}ђ^;)"$IYJ]r}*KkՁX05 ,x"+|cn>a\yGVp""&/A^dgxhaօMK?,TV&Ut׽ʤgNƮNf[Bީrs%ʈѼ,58~8a8K6vMǿ :T7Dq WMULQ/^C+D,. )*_0Kޱ. LJ46,l@ v[rm݅[>QW|_=?]O'~dJkc9F=Dj2`V^#U܅¬▿OTԁOho.wx R'!vb. iB`/SMp YU'/E/{NʠӤ?65P0*;YCꃛbu^5,sƷ FhjW~4כ$zՑ{M4}պ tl~%EOA`KUMQd+Yܪw0V]de;.6hDz lg*ES2:K/:Up o nGQDg)fzX]F3 ڬ>_B1IYU`W|t'CLᚋDspaϲ@1аl̫Օh]WJtJS? $hҌNk8Ė#BlDaIA6\$xA"=jzR^kx< Α  "M|󮙧 0ib7PxDYWue0|oJAP0zYe{Sޥ{~=\-%Cl;&dx=̦PhyQ]bdLMxg@BűF]NZK#rH'g=Y, Y\X`ǷS6\1hge]"j|o3ue/z$FiKuDi퀻p3egVz7f& 9<ٚLa⩨ *;_X,ol+|Fx OCmj@8r/*[WD@͓2Ǜؕ7DO [9S괗ۜ{0m9&WGd5~K:Ix\ϻbGȷ,NU[`+S 9m*u=fF+͓?mug (hUUGG;[? iѮHkALdwϸ0;sr q?5[LˋMXڕ%R6Fj)NrC!>A/<~й)nc5!N3!Fz4nNم>D~MfGCNI_s&r|4K*C=+ybw~'ڛ62psv0Bqf ⇣fo0D/?^(ygѿxzt۲:dr.1d"ՐͿ+̰`4Sӷ;$ 7(D$ER`|1M]p)9;l3%d[i1C)d:&c綘ݡy%ߠd͐+zͤNM'A@ұBCLPȤ7N9ۥʢ8 Xln:ͳS`d.dRO#S 3*qxLSY[pH kNh:T/Ɓsd')zvf)̈Sq9jZ&1ZV\+ϊ="4r9q% #(*U7 )Sn}+*/;lN6M`/;Vlm*2DT1y`LGYˏ0 a<) ?+G>IbxR'  aS"3i̓'*}ˊK_iPmX?ou+h%pAMMq ㊷mk>|B@uX,,@a![V30.A fv@F~"TyWXgk&9'0{ZOPιUwt$[k.Í,1vҍU#9$P&?$i[m(deZ~\֩chk '~L5O1AϦA ?&вO5{W (b0Yt; Mwߡ% ޖ F'YOٱJD=MnJN+Nj3<~No2,8 z_= Z e{v@wu@sDmU|X pPq!1G,Șk\G ;KGi@ d4ہnrʼnY /`e) o|d+QZRʜ/{qlT>ۯgth\=s:GXڣ92oͻ=[!9NnVFfO! ;Mw#O.ʢnnd+#,(3oTDiv|bCNX)b\g~͵9 '|ɦV $,cf] ~P0B$Э{>PĮYɕ&G+2V.7 Sn9%9}  |eo NnYmIw*y'zbTsJQ_xv1V72\5m{û‰֤/!qXߔV!j,hOlxG׳ *&"'1¿abikC.L4RŘgeSb CZޏ Ǘz9m9xjtpxIvcvf)<Χa%<䔩1"!2[,UHWy4hUGQVu

[@"9ö́b+> +Z9ISޫ0"| _|B#0?lqr`DSi^.Bϑ%-uc>qh_,TZFh(8f#2 ɽ& Lx)sKIÅy}t>Ц,!_$vO.%9|R2˘$J"LM0ǽ;|%owhJgl6`9 !2ȹC]Tv LVm@sO# _SζZ)?A(tz/Qͽ[+]KBF+s^ٽPW% J>%r Z7KM0{+㶷eؑ M$ *D#qiuѬ*{MW~\6+Hm*駬ceTɉB 2DN2pc#+][N"5kyw{S+~QAJؙ2g[dǵC0~iL@S'j]Ɏ')=aJUCAj5D 刄K}"RH4 Ə| Ofv}DU1LVb,hqgc|r0-)E_ Mk$aG4>G ji6Uabc_Pl+tՌ5E|ѽ^FV;z x5R!kH> EHLtib>^W 8醁D ݘ:E7ɻ3Z Բڇ_$o6.d=!9OO1c6[F(2mj UWuɕ3\yZh{IGm{XptAc◘ڜЀnz}<>Ǿ-3>y}ʎ`%-_s2PxKb݇ZӨSGl(?H2<4H2 39J8~IBvMMeza/k+s%ZCAMK) P[:+*s'F91xE;8iUjյ huٶ!6&W( u>zA gznw{Q_V9r`,ŴйZ۩v]A;uTMp:KcYC23$ p/",t}6/xy}gU(?j!zoK{У$A/v8VDzقB h/{H7qqdiŮ'6f/N0>RғpGmFzGnlv/`"5t$DT5ϕ`c|?Cr1:ӔAka`qÚHBLU); vO$E/B-D;(=p.95mBבLaܲ"NwhqO0^ 5x%wLǹu1$j[xM Cn|#M-]xD@o0ekMx=R5BʕF%<*W:R["W_moUu{H'<ą'qM?"d0)yWȮNsO6nr?|bǙQ\+Xw ߲1ƵMҊ=~6O%@ޘ1Qٙ ܩF76 "ضx7Bx:!^,52ҥ2߀ҵ\Jf{<"<ܖVhPK>%i50[I<c8HHUZ!tRN,]IMAZR%ZnҔTX $j#ϲUXPlsVC S+KLW2h*{X!6>,gsvggp{5L&=cc 탖 rAEs/HupЋI0}? /6'/hN&PӿyG @Id_$XCPy1!ؐȮ ^PS  ($P,fQrqwC1ml!OR-6S;g)1M%`a"xX#nN=׋NԀbN '~A"hJNtkngl}dTEna14k(|oE F@nc3z:e#ךE'_GКU!ّo=+W>,ogmѱ -LcuYyc'"-]eG@(9I@ Me?x'Ͷ# ~_$gD _&)}Cl.B2 #>c S1ff(.Ak?F-m#Y>zQP~ K63Jܑ>jb4pӑg+jcqw"|iwY vn,2BÆEB^/ \(+!M8bJ?stKQse.[}M$-]C'4I@[?.Uh~k_dV{TRs 0*EKr;KD *qjxB~ƊiO,`U;z|k* bE eeB]`6ԠWxRg]e sv^m,H6A-s@25]TOh^ zTBuajWYFhXPzqYQ]"ZepEY;́ ;~ķcTLE8 .?%Rw D[`NQS{E@?o{FaMnH։_aIǒ4'>[ܑ:Wб'ly;cvQ =i gJt=?j|𗱊&qI"<$ʅtjM88^+D}ӗPs(FDՓn[$ۢkP:l4 Mh!#(BaW0cXA \$3E)ƹyT}Qpf!7ee&ܱ,q \&fag* DJsAB#&?ɴTqK / V# 武;E nB>GJzL62~{{Y{9NKp}!5ά"_H \ 6PO2c0{Ph׿0C2Yi} 3:5G^u7+(w9I$gd&nD"TR5lD DzO?y?F- )3k0f(k-uа5: ^]Z0c`63YĕOS۽wL'CAȭw!176j&ssv8xCݟ!26"jY_r0wL/O졨HQI.DZ{@Y6?i앆uI{m5C[stx;yd}Ӆ]ڐ5Vv>kƉ+%ڄ3b@2tCqxQ9^LrORyrŬTu7ro_~!ӕju)J5A4n'Zk:ptIȥ^vsRO"g ]RCE?{"0 D$86WK/[~V4g3t/-cYHuPx҆hTusFAnϔSAh-PBmRfط3PMDt, /EgR&-UDg\{`?(m&;ozZk{~X?$0\Szvv7r|gՍUMglKo~Y@ N s{ȱ$jx-=݀b$+k%3n 6͖T})?Tu>^%&<ŠNͱnřjFhٴh[`WzX~wV6`79Ld4G6FL8+eYJ8s&"2l+L3 H-u9 ލ*_NbmC;g05vf "z+ndGop4Io;5JdQ$ϧz7N@& `3~G_IxjRxr5<"n} G_>s*.J{|: ?@FPÁ2ӕٹ8Km (LjG\=eE0ٳ 2v$\J4ҶQ`FvQOV.VBg.񛴜& #3,Gvr*080R \ddq 9-'`uͪSd$KDlmw I[O9_T0XI: Bbbn E v(tȨ8!J8H'#;Y_J-/7J- {H(vveYՁ|ZF}1oͬ+ݿP]Ϯf8Ol%\'"ˍy vt=cKzUy=jmeVnXѯ6)_b 6vT[&Rmmz7k8+OnZU c4q\3S !$Oq6?1VMKy"gKfYͭg2f a]zQ ިgͬT)nպ$lNz|"e o1b@$VT~SZ9fᮯФ;Ü3zRip@Ez1;hZ! RcH$0)܎ `Dv–UTR۷_xcg+(O7_ lχ28Y eL֚ 2ų>zZ0:4e[p4v[ͽlWP" `ŁRjrQo}Y5$ B^YJ; DYiFNkڼә]ޡGs cם4;UiVs;t%)zZd<$ib+m1E3["UH2՘6$ 3{}Cv/;Yc%!ԕ 5>P#hJ1lsΈNdφD7tw:S,AAIU't5?$%3[)glmg .ڇT:\4(c ҦMN ?1ɗ/϶ʄkMƎ + &rVRX:j:zA#}b}^y굸8e_@hhm@,3T+`? YڕͨaǦ^@FXJIRR;kC=Fj>.{ЄӎmZ^c•{W#Blu=kW4|MدCە:>5>Q;TZwӪ+W4Q_Q4!b4Yy,(l"@Nf(B)*tqӘc0hmBYKm:[|~~2̯` b1BTt 8ūsJӜPV^57 6PPWj)=֒^IcEŽFFiQ TeD,Xԉյ%'dJa9-bϛjXo~Gm)/2^!sQC=o32{~E͆\oAn?߬/G2M;]3RT\zQt;>>o j NxM8}mdrY%BkPꗢV[uoyƇQoAxʂ8k*XS6\?vI%.!"|o=֙~h4U.z63V)Á6b{~eB" "7.6_U}k *CBVGYyfMM!9 [dZۡ)M -w;7Zǚѣt1fH߸ _CF`9[Z;J.X-}5!DXvCC{~ Bj"z*+X8.]DT4RoE)gDm/+5J\|H: :ؘ.sВʆ}nqV7NU7z]}FÙQTSqz@9#sU1O9WRkxV CFX3IYT\Xþzs'F u} }Ąc@TA6\">`K;O8cQJ9L4Tϼg_D- xK"HJGWۓId5-I[gEo$ޫʗwd4塥՘YO\'/)yVZG13tf҃\ >5tE5;)Fhh=7 ((Zp*R;PD6vAA>I:\UGDžMY}ZTL-qRwanړy]%K!LqwFe 'nz`^ba;,bu!Y(Ġ!+s{߃OkCk3}J\øQ!Z̎Ť`F~0#yend+@B dֻKm 8{xxq:v r#V ZQb)nTHmM#D^sK|ܧVq iZym[eXl$~8I 3O7+0'TçM=^KqYL@J<\)%0q!aYĥP<ʧQj2dFY87j,yWv/W7 >kyFgA0,s;L ĭ18 lv$%LzN CH -t`!o[eWNQ 9l N^%353@7]! C>ȞCw4 };dk8p"UE5^X30CٲdkU-V;?I*}Fv-~D#Q*j0֟͸bx3UarM{9hS>MvϯU?B9k-$Iʒl)_ǎ~1dD jɫ.̜MX6+X&SoDW-NⰐu8:˅%!e:}~;@(9VN<k?.WahMfLը՜)9"E~FXJ Zl&yN}:7y$zD}wQm 1GFnw! !S Z2FK*qԑMLB{ Gm.$WI>ٍrrƛGkt|5# g!yepFAXDlv{@lۂ$Yo z hH *=\چ-nHm[3IeUlXV鳳-wGcGH>%~abl]EPNT Iŭ3;t D?fNk楦sVQ"`Hlg;::NihvIP_;ZpZ^zC MLK6͊4'7q u d'=X#ʁx1-߀pf[`!al͎ᳱ5S6~a7Go #_. R4*[2rX1|(X2c0 / i,h *lw!A{CaG9O|fV|m@0^\a!䯕@hoO*ndEV)$EjO٫+=?R[.:f;ewovȯ;)! =. 5eՋ!MXv(8̔!,%GDrj3|nKȿ(aۯ3'W}"0矿B2HߙM`qBa .ZO"q `Y0R |lƛVc۬3c(nIoMt-5*jHxY3[wFEj+!!1w dA chqJ+lZ&cGyR&X 8NxS7kc` 1n5GGJ:5ԮN'ITѦ~FTp0 z\ @kf3UH4IRṕ߂Զ<) ~r /}n#x49sWqpL_$b5y]LTQB t@Hr4^bSqx?})QhZɊzPY po{%r"5f5|TWcYu+6UBG<ӥ`}DP J=鱮Nywh{fiyiۺOU2 KwHV>wg-8` vӱͅ'cMkE7SFp)7cmrk8IB%@x+_Kea5>B}2Ae'=89r VFzETj-ĸ:[0\v5x@~ڻ\7@]s)gD_Ӡ5RltX;Hf'L0k>eT@ixch +վlxu,MW&f&Ԧof,IvV2 k9wJ%ɹj+~r2b_ łɨԃs"dY^I8x*H8b976CEf"y6(w]$ovb%m;\SLBHdf'_rLnɝn05._Q?M@3r^lҡMs+0D'd:I+D4qMؾ4O4KURѭK?brCtш2SgTΆ bw7kO cO 4=T]vSء3gXwd֑l,,^+[+.Wg^-Ũ߀oc1QvZ`(񆽞2PA?M@g&]2$t[OݱSCs3е9upqț#g6#bw묔Rrw?lKX_-ҷ2٨?")-B>(mݚ2:TS;ZpC^OSXPvq'trHovzĩXɱ;f+9_(a9(e}\o(х'IPGJI OɎK#F4 ?'mo{_-x[&f0͐IX[ڜ0pĀo-kӇ`,g! s0Ramt[8C{ )G l`0XZ;& ݾ>DmTo[tr` !E/ wS!u8YRs}ּFi۔ o)C0W J! JL٬c(2*ѸsֵxHdgmB;QGR1+P˗TXBWօ腰qJl)쫚3jn䬱0YhJxL}Kܺwjdj/8&X MZR/)*laK4wڎ2OE9*$#5, V/$/qL&uqe3Ca=<;?'YiRRPh ғ2;( ٫=>S!/EB 2 ~%sQA3\:˶6Gqۏ?o~HB?."%k|g+J؂Auܗ 00AcmPΫ_31iMoB_pQ: oЬ[i*k}mW G~G6y2;^h@l.mlb"GMhA9(8y 2pĶ@  Qy9f rH/^ڀkZ:Q]y'٧ tx'~NU Ҁr.4.ufPbDkձVDZ&@&_:20]Vh݂+eU~VdH:ԺbFuN=eӷU!lД[Q;Mu6{HHL'^"[1c6I͘p7p xlrh ZH8,߾ wXSS7mOL1`.zs]e۠z8 NJO_#]|nr&Hrqd% 3)Q1V)kTn]Z-jIdžgPgc]yc8yFT g.#8p{Y&4%AÓNͲ6fǧ 7/誁ƏB؇7z}Cąp`30`.JxMmvR?36k(76oAy. oI&[N'!/}o|uH 8V D{ [<A8z2R?Γ 52^.1XHgj #aMZ _O9uP}.bbe8*gxԵrl?,5}. (!写ɰc*ULt5: H_9#~bॶ K_JW9VFe ]HX TrZ1\eAо!$Q%)T!|`2SrUX]JLPZnKLŒ0ba@kҼgRWp>cf#FK3GN^hϴKwGP=JX2K y@s=WEoX1%|_Cv>+4s#wdNW,d;a\%3]pW/܌CkNZrl-m8E8(X¬ToϹ+Gsy4Z%8@ # QZAVgq8SPp.ԗNÅLdQmA"3hMWIgڄTP }r/!A%֊,,Nj JtahRC~V}덶x_^SVIvѦhMYFP$ši;}+t;M4W%pZ[-]M1 a/IГHdxH$O i8 Iu]bP<%YpBz"[`C֑~OD<5uv[|\ԬX7G:,N!D%qPz[F T\9%LjS%`dtDqWAK<*{7)~fWEwvDl|9Rs&[zSRz+$KO^SϰKic) }kKcǨțÌL<d&X,F>De&Kj d۝`g#nqкrinW<-k֮_cӣV!U|Wؿi[ DZFS+:$jWÃʒRY/~ Θںcmp$LӊtBt(/y5 bIЊC?\nlL"P}K}B3dO"h5d䎥)3kg<$p,{6Kb+T>LdM;K"Yiom@ߵ[dcH*42- J&8Ltd‡"LTE-Od~nJ?*m9ڭWV2Y0 Mi}t5 K>jKE=~v=y;j'֜b3;㿺e4$O4msM1,bp+-L2T4>JlR:[Q^̶~ z+|/9!s nHK1O -.cR݇oԷ)?!5yY8LvzL BI|\'jϒ5*M $*.i2mZjIYH&4{ s^.nd6{*,ܱLJL&3)>%l2Cpp{ܭ=jw\0_UාnnH+R%lwM+`2$mGJ* XĂ/iU'}y"n( ZeՁ%B] &񺱛$^I0 {,Փ4i!tS;%"q8`wYk/+R O17J5ܸ?;#{ u f߆3 7,Cv!l}FBo@Tu : 3? z-ؑK>[:5bEMOt+?<P&|}:<1 \5ɦݐKh0 b;œʓvp^=),icaVu}uN{Sd~%YV7`bJm㲘lH pMpiT-j#d&9b Ft&nHrwtyhg1k|+ O'OWŰ$"| ScU?gg;:+!446_B @~ШXu U4E4Hx" {6TvQ1%IxF0bG t >%U#IwGnX~BWo}ַl^% ƄЧi0ngaLyny֊sϨnO/$ZHU4// ,JCX_|!fd"$8/Sdef1Ŷ;PEvY U e]zᬋ),<|SX#&r@$,BuWWZxڏ @Qdq9y= 0ſ"^4M \3?Һ< D*g,/Պ9yf˔x2VERf0r%6?q\CXn\EavAF8{S|?hҰ;-,>g*|֎-IP.٬Fй1BHN)}fr1N+ґjeAALiC=-k] *X 72A svmR<7@5˭FX>`dlFj:l`;=W1 3{D4pk*\瀣BYNUlF5 "r[(I<l r`Y5̘~s "O-5t_Xx}twCxvyz!y[3fCyp DZٺud߹)'%C m+ 0$ rc%2&I ض` Qn=/o\̉ŞrJ)zP:($/m:9$(Gvb Y3mpj߰Q)`.XSZXASl]'dJ;]Ɗʑ.>s!t2(? tR'aˌИLD"9 ňvGu9k)khGs{Їz$Vn N..DSqI%~eSy_Ns`74sK?z1)̍JmI-2U`fi԰)ad6EI50N\Vq)+fXF/zS:LqU_=NO Cr j,|kl)#/ =>>Y3pY8^ @2а@Ŧ.Vt=Ul;rv)T c?M߅Sb[U\TFn:6%?wXs ccۨr XNdZ`fCn_38ɼ_ϵ؛oQl.owS :j2|bQKL׃:y8؇-+Pi3izInUDFVMz?30Ù)4a}n:#΢xϙUI<%֦'S,Z3QdS^.EYgKd+qytzۥ!-ѥa 6?թ!X.۵N݋A)Ma=ߔ6tU8"<. ʓ_kOxM|9-Ω [U(tJx:0JW1O w~F=WGGlRS3!h\8HZj3ix7e0Wp7?=#s nLK;&g<-ɥaqj263Yui"607-.K⡫2=1 l~7I%àlx/"VV]3XQNSxQHwzT~Jۃ@Өр[R!~F`0;"w8E1R UAU)27n,MtY$];M9C-4Q4mNɲ/;7[ B^4Tp],Jpus{0e^!Ys:SӜW"o5^5y3=`jYosI6,4VCRdƋ}s1(@&_)Sل}qR4S}O4mZ%Ŵ`i74$H@+$?+2%a!d o0bޒG.PN7?k|0V#]^CfM?el#LAjjPdx>=nါ㓭ӥݒmncV"~W 5B xc5snL "2TYb׺?Ks4+z}%%ՏNcIM&lߕU3 d~C6.»`buNgxk|pCB*Xg =Q!#caݖsl[eqM.YjO$QK=`h,8Lȗ)eXB6]J!*Q&U jqCO:]nKj*M4/+NFE xB\_70A:-ZT5WM hC(2I@Iy%;D[j K:Arl~yG@ D3>TIh\}`HFQe2 X[! tGy7ɸ`hpm"S,y(8a0n\yI#`Fgu{]_\8e0㴷6`#Wt,# B\{itiS`Q#52IFyeO6J}[ͺC,ⶲwֳ!n:/ Fd;u (hf;ّ9y~c_)! A w4#jJM{hhE0гU1j!F\ n^ c֎4}vQ~kOC1Ptmss&\ =`'0I LkMÓs)Z4+`?lg3l.}5~&"ޔ'C攢FmYeCۆ.%z$tyjXg|E9ܾ[O-. %O6g2 ߞj\p)%#*7ZҞ8R*tznkC"hJk4Sw\ b~|cWr KDd75 ^ݴjmjfBay7o\&KT>]_twZ tt!FGdy_?CcԈ]T>j)RMvI$eE&pQ #|]/p쬭3ES'>18~zq;9j y2E[մ͟52]]?OIf"H>M2]Dqr֎uQ  @iN,o$kg?GkCE: p>Žwώ޶q0BɅ5*NXDU9uA/t/˷r&V+'( {gR5kZ3#"fҙ?:֔ї0b_)s.ZJ@\P#pξGeT rC3}c٩AG|sBXQF:ξt\iC!:x[@#+iӥ\FrOʉfk'V&;VY: `{fP%ld .-ktr3@7w0-)rf?Iu2(=s[G)KLj椰xtlzUւuF-2vHHҖ(0>Ew7~MUDžV̽rm*ðmSGjtkWŗ ئYb:srt,B\+Q4Vi-Mn.BJp_S#%{5}=UCyclrr^\ڵ^;6ႂ;Q @QfPLHN&$0sQ;KƴRxqyb* DŽ&G.k;LYgk[oHsZƳݏ~V˔GE?_IwhmHqƧM=D4EUwm-[(iĠE%}9Q@Y@%鏙'QVtD<2BO/1kˇxL-iӮ}mL}qw悴ڒDsMYisZxQO KEvB(E= w'ez:8z㺶l{l{1>3fm@f| Ǻc"4$Qv<թN_tG'j_@&prs_+S:ϘqIIW+~&Nm4Չq2NȂÐ>%Z2I{/bhYɦ,Axq0phϒ `H dEnZE,袀l"&Ԋۿ5LdG&ֵ{%sL1$6p!5P ԛ9-JF?{hC"n|KKئ>p!Sk+Mfxhcl "so֟h iqF|N`ўP1 MCpl;4FXJr5 t̥T.揨{ˁ#HB7|(2n)X&+mv8RXG]$R";єóW _OZ?^~8_g{d#1cX} S\ǭtufA̔.iZvT7l`0η缪h,Jg>ǣ*IԿ8 7cGZ3fD Ϙ9!}4 |>GD8T^i`XZ׽O*vvtJb#ч$~.zp#C&cPhh"!u-Xmq41o͖xANؐo$mʞ5+#U顉kL_3epK*:ʱLCwj^'O@titkR2$?c տցr_aW7 ;l+2?XY|T˦z}~W:95UtTmQ3H7Uy0#v xl,i[53K #brM-]t+VG3cG&!2Ūv^ERd_O,X,x3$FGjQ7Tͤ!M"a˶l]#FWP+dwvqfYU=cz#qdy0BR2aSO7x|U]|Yܜ^7 B2]}# zި`cHONj(E4ל(bfbֱM·d2G}?Mm66q)qx%>-ma⭙ꭔW srg8HlމP5ؒB^ek(<]ߦ6- |zV".; "v9|Nl[}`/倌Ӏ(ggGof0҄Q%n(8;BRvl:]yUZ`kPkPȺBbx-s.lT#Gйnj 2T3+Ʋ5Üu3M` ~MgVJg$ߎd"9-nAu>$6>cw֡d8)Th3 } ٧iR0#[ƖY \(aJ=!7W.Nw'8n^BG? )l=_c%U´Eި G[\#{wԗ%x(>n7pB96^I5j3B%e}~J a(uzCC^w'q;Ɋ!SJ!Kz1ԇhnEbHRa܋kݗxщp+jvJONDZIGh+㹒G=ߑOmL$,t}K(oII՜f%bSA$0iZS-ŧ36sI[,Q拚QA-cLH7Οɰקkʕ VF6(y!(.˴a1QuVw#V{VeAn?Cy= ɠ9;3+4UF`ݾYB:uy-"Ao ?,= Ҫ1rt~R-ubP/Y@jir̀ԉS|6hLtKuX0YH8(J+kv ] 'ɛ r=)+7-ƛхҋֶ> (պ7Q؁Ea6RZXi |v.VZ/)6ZoFehp+v1jG$@{%6":<Ұ=jI' ?$AuzAemtd!:saFw,Ȏ6ͭg\bMZeY\:Oxŷ*':)c@K+4Uo|{PzI| CfS8PmioJ[KԀv"ccqP>j\KWU%rĬ^itݐ=Z۷k ,}^YOyx%D1֒o)c@#'ĔNT1+BfqBGqMN[]c] S7Eҙt(Pk߶6* ((JhW DpWO*n9geHY'pzƤ&Vãm<ɟIl#ل2 / PH^ާ:)t,JXB)%Cms/دsZqK2T>hvgrP@qo9 HʶzG*D+\ޛ;ɐi &s!{mj7)J^' 8uȢec=+$/0W7 "–Y8jOmhbbPZ-{BG Kq1TA7'^(F.@28h]Vq$q5z>+R2LlYYֈvn9KmmvN/mPnXpcU[ɉwb|"[ tikU8X ЄԂT,56Z(IGENj NfruELi=W4mia_y$^'-GUhUᠪT˸Qx_uwUL^,M;h]J j{7ό taϋBR>V"{1-yΥ˝ 7.N:Tup6T9\eL7 eXy]ڵ8(LɠsNcjlXnoJwgx6=puO~};W|X;C"~8muOL>M<_c/Q POn! N@rlDh&.fgb2Qxbc"_)Eڲ τc W/r/tsH6X#Nˀ9IWѻ14prGWo*v.%j2ctܗ9BFC6|J=[fA0jګq`\uyԲZ^Tmvޡ_>FLs |֫E΃_Jbo&yk1ZVtI+qĹ:3v XX;F!\{ޡB{lNWe4޸$oFę^+s|s꽞>X'F11b6qu`?s\=·RyP1|\ъ$D Zb /xL(cj>e'+{^؛o A.lY >FE{oWJYN+j`_rD[K`W:.# -=<D`$=qZ[U3gckS\-8WܐkN[ԅ(vvWͨn=`}lgn}jycK$[wrUdAvDQHsI_ 2ss/O7PUwㅠф'@- XY.E oHݱ։"}ϴqR4' kK91]_zgܱ]fw5v-.E&8wuy[\7G{~όwhm̪4s6?0Czٷbyj+GA$% O`NBHE4oVWWE~ Eͩ(lc7c/!,N)YsFxzr6us HɠXѶ5,{4=&P@};j8Ej}*ajq p'~;('fTpoI T_P?&ݍm[ H6bq9w%yVX֑jHUdC=!βܓńtZ !WUY{uHY~Y0V(+U;+C*#{""AmeK&f_ ,nV5*/(U]XpOƕZdk/U SMB*:J.&E_l0%0Ŏ{t#OXO-|wkN2VhqA~ŵ>x%FdĄf`غ2$Ox>w}bj&oL/ӧU۴<8qwM>D]cnQŠS3 iɢ|A-Iux5yT#њPCg#?9OTX֭lVSuTQ^ٜoxwu$Bɷs3M4 +qf5EitO( ["9[rck8{, wX&PV`/6*xSY,$rAH Bnx] aaeå=.2w_wU~(|h;C5<{Ϯs&{ߕ"729֚ח[0e"^>ѓB@!AmdF8h@ >LY`B Nͽ:| #`óѹ0qພ|z$\&M \߱=:&¦S!!R! CC _GV\+#"ټm0IHI5p¹)f]f Uu:/q!0I!Lvla,7=~~h"2L<?lB)1+C #i"챞;<  ,gFt<$}]]b>I&Q^6o-)n[ҿp +j<!`:便(!!&meN9C NIvq^]йcV>g2VL?o=@n{;K8_eRHgɏRwFNqHO1PVܮ嗈?CsbY. C<9leĔ_x1gept^.qsӌ0R][ڞ&¥o; kN<وb('h][Fu7X/XU%|;{Fќx-G鑦AjE9fSX=V-S[7#4{ۤ^oW8WJ&CIWĵi9 lV3}kΝ9yBօ|3/ł$jݐ#4pڰ"d PZEłޟ4&C+4JX Qb^H}&5;$E{wcY]|BT{w%Kh]Vtpv`ԢmN.!yz\6 ?zBDqx] . ʸ2'_JI㿼gi;`kI Quily5-m[My4?oE]MOXu;aH]!),{! M`7wz 1m2LD4&|qz5yV e:{Av=(tz('""Q=|BUH^S0dў2C@MG$[k=HV#B+?u02 @E< ZNr䏓UlaxHw6ޝ3Y5A5nZY<ґL?.F{ tkGwBkXmhᐓyVr4D|b5V̈E5RԸR3A]H= 96;b_ h [k}' ֒M,KҰrxOO5Pefo -9=8߁6D XEx[$ es?V?yJ#.g8;Nwڗ_g%SO{'|]J$>72!'Z; 3(Ƒ Կ jse+z%%Bh$vLNEj7"@~Ȕ3&%2PCI~R^udo<"k:tCw ,AG]lf|~#xTZq7"!k}`'jT4_{s3 2 Ñ}b{ZU|A@EF2O82̊-G,--;:gr/JI  !!*(5)Q<9@aޖ";JRi֜I;ohuA_u gO|jmӗc y\/ ]9J_M6h Q$q@9(6aI$ycXs=63PS_Ulc5v=8ħ#ǦD]`15/a0\6?XDV.5`~&DW-(0zٻ ( mW^֓㨁 L;jf=dF;zYQqw0VV&Ybͯ;2PDh_6=9?G5.! >Sh"o,8+?Ӓw9esr*eN7 _ b{7[WDEy)j `~W~|i+˄xy%}br?&6q,8A`Q @ m8$b*~0JYf,*%SF\+g}*Vz^)r9Bm{,6yTzџOmB6Y[-j['N6*T?/ Caa&u l^E`V#.G3U@/D07&a/RmkB ǀkJҲN0mpa3JA\O˵ϷMkH/5p|@xuLDOu4t* =MW>4Ƅ>N_:VaV| A.?h2nEZ9KJXxJdZfJj+kH^9:KB@\gmJrܽ:g'mIo VfXx+[jÅ;2P0F7?s#+3?j9߿1I[B?`3c޺;.:Z3Z#,丱hH̙Ep勤>AhGZڽ[%9~yyLN,6dy8/:{2[[7ċnl4I]MU޾jYotr4 TYK4]V*QR ?Ql/hW8tRyE_}% S x@A>T7Q@BmDrX.'SṌʝ®8oQkA%z姧[(qeʚ?GWl*֜\Jɬ6Rfak-6qM&4`DD~/?@B0}y~JPegt@@*^OȘ,^:Ҍ۰@ggxn |(m0K}&!~ NLJdێS.ufr={8xt#ftOQV>&˦I0ń  僟BDVw{'QҀX(ny(pF[(w/Sv>9X7'R6n~=Ӓ.x_}PVmJO$Ma-xJ.K pjS0 |G\zfC+| o"O 1dA橎a+ְ6 >/3cA&qt7 RȻZEY? wxձ٧ Ϗ 'WfCnu$xМz6a ęr=i(]W]ng8I3C`+;Xid^]Kiy5Ӂp_i[sx-'E:lߤ̟vVߡKkz]ϽB%`jVKTxDp jc-ƿ}%.j5%$f5Ϸc?!y.DS~-)I! JQC8FZ̔MfhԡRN_nʿo#oqS(᥏cFLy2h|aa%9dYJv3]W[ŁjcAzFBWJfʸ(B 14s{?^LH™O/nc@WӳsK<ޫ}w~$5nSČ^Qɵ66Idݰ J YZ