nss-pkcs11-devel-3.36.0-7.el7_5> H HtxGF[ ?*}}] sƜ +⸰z:o Zn԰Cy!Id2378148b2a417db836597fbe7ecd68382b101cff;G@AҲ陈E[ ?*}}8,QfBAK@[NChިІ+RL>8פ?הd " Z GMT         =  L    T6(h8pd9 d:NdG0 Hd IԘ XԨYԴ\ ] ^ՠbdsexf{l}t֘ u vw( x\ אCnss-pkcs11-devel3.36.07.el7_5Development libraries for PKCS #11 (Cryptoki) using NSSLibrary files for developing PKCS #11 modules using basic NSS low level services.[sl7.fnal.govJScientific LinuxScientific LinuxMPLv2.0Scientific LinuxDevelopment/Librarieshttp://www.mozilla.org/projects/security/pki/nss/linuxx86_64 n@GCB:n *Zi(Zi(Zi(Zi(Zi(Zi(Zi(Zi(Zi(Zi([![0[0a35ece673d12028eb93987be84491b4a5978b26acbed9391ea7c623d892114892314809e560ccd8db3aa7c73a76761c6dfdc9970766418eda2ccf5d82d7c8c87d17c98658d22e1d43bebb72e5c2fa70d38b4813cc365664cb7e012c1c205945a44468d9015bc778365581b64aa8389d29b1253027c339f0db50c4fa4041b182610323e003c49ea719ba9d58bcc8cd25e0cb04b9ef477e86532dd49ce5aab7de426ea03608b467e5d895ef62414d18e48c7eef62075092710067aa35ab7da79c77a0eecf6f3406b0ac94bde7ea8963f1ed4bdc05c48bade64adbbe3f942607a58424de03c781dc5f6985867d3c8905ef675f7f2bef4bc52abc6e523484afb4882dc8e6a0a79dc11903d89226d4fd9a1a2e6d15433c2f77b7176b727c3d2980b1b616dd39c3520cedf4a0b72c67baa0de3103d894baa8631e24020c157d21a2473f5ee187ae698bfebcb2b4df6e21edbc3d95b5ec709756e1cd6a1c3d83fca1c441ceaa3fb4091d2ad7a946b9f47bbf98d810ef7a5ac03be282dc53e4a0dae338f31182ecce2cd9ff05212dba7c2b0c36c251145eba68c926d9b075711acf1e0b8rootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootnss-3.36.0-7.el7_5.src.rpmnss-pkcs11-develnss-pkcs11-devel(x86-64)nss-pkcs11-devel-static     nss-develnss-softokn-freebl-develrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)3.36.0-7.el7_53.36.03.0.4-14.6.0-14.0-15.2-14.11.3[Z؄Z3@ZЛZ2@ZkZw@Z\ZOhZN@Z Y@Y|YB@Y@Y@Y@Y@YJYg`Y1S@Y i@Y i@Y @Y.Y@YXX~@X•@XO@XO@XBX@XX@XWu WrfWc@Wc@WBWo@Wo@Wo@WW WW@Vn@V@V>@V`VpV'~@U6@U6@UAU@UUUݪ@UUȒ@UU@U'U3@UUx&Ux&Uq@U?v@U8U0U-@U'@U:TTq@TTto@Td@T)IS@S@Sہ@S@SnS@RJ@RRUR۾@R۾@R@R@Rx@RΏ@RkR@R;RiR@Rz/@Rv:Rt@RrF@Ro@Ro@RnQRe@RW@RSR@QQQ@QKQ@QQW@Q'@Qq1QNQ9Q7/Q#@QQ @P!@PՠP @PqP@P@PAPXPd@Pd@PPP@PP5@PPnP;a@P(@P H@O;O;O@OiO@O@O}O~OiOYOX@OOdO&@O!@@OO@O@N>@N>@NNܲ@N`NؽNN@NuN;@Np@Nf @NA!@N*NpM@MWMc@MM@M@MMfH@M^_@MZjMS@MQ0@MQ0@MQ0@MQ0@MK@MGMF@M6@M-MM@Ls@LOLLZ@L6LdL@L*@L@LA@LL@L4Lx@Lx@Li(@Lf@L_L_LT@L0L0L K @KsKsKKCKCKCK]KMKLd@KD{@K<@K5K4@K,@K+nK*@K K@K@K@KJݦ@J - 3.36.0-7Daiki Ueno - 3.36.0-6Daiki Ueno - 3.36.0-5Daiki Ueno - 3.36.0-4Daiki Ueno - 3.36.0-3Daiki Ueno - 3.36.0-2Daiki Ueno - 3.36.0-1Daiki Ueno - 3.34.0-4Daiki Ueno - 3.34.0-3Daiki Ueno - 3.34.0-2Daiki Ueno - 3.34.0-1Daiki Ueno - 3.34.0-0.1.beta1Daiki Ueno - 3.33.0-3Daiki Ueno - 3.33.0-2Daiki Ueno - 3.33.0-1Daiki Ueno - 3.28.4-14Daiki Ueno - 3.28.4-13Daiki Ueno - 3.28.4-12Daiki Ueno - 3.28.4-11Daiki Ueno - 3.28.4-10Daiki Ueno - 3.28.4-9Kai Engert - 3.28.4-8Daiki Ueno - 3.28.4-7Daiki Ueno - 3.28.4-6Daiki Ueno - 3.28.4-5Daiki Ueno - 3.28.4-4Daiki Ueno - 3.28.4-3Daiki Ueno - 3.28.4-2Daiki Ueno - 3.28.3-5Daiki Ueno - 3.28.3-4Daiki Ueno - 3.28.3-3Daiki Ueno - 3.28.3-2Daiki Ueno - 3.28.2-3Daiki Ueno - 3.28.2-2Daiki Ueno - 3.28.2-1.1Daiki Ueno - 3.28.2-1.0Daiki Ueno - 3.21.3-1Kai Engert - 3.21.0-17Kai Engert - 3.21.0-16Kai Engert - 3.21.0-15Kai Engert - 3.21.0-14Elio Maldonado - 3.21.0-13Elio Maldonado - 3.21.0-12Elio Maldonado - 3.21.0-11Elio Maldonado - 3.21.0-10Kai Engert - 3.21.0-9Kai Engert - 3.21.0-8Elio Maldonado - 3.21.0-7Kai Engert - 3.21.0-6Kai Engert - 3.21.0-5Elio Maldonado - 3.21.0-2Elio Maldonado - 3.21.0-1Elio Maldonado - 3.19.1-19Kai Engert - 3.19.1-18Elio Maldonado - 3.19.1-17Elio Maldonado - 3.19.1-16Elio Maldonado - 3.19.1-15Elio Maldonado - 3.19.1-14Elio Maldonado - 3.19.1-13Elio Maldonado - 3.19.1-12Elio Maldonado - 3.19.1-11Elio Maldonado - 3.19.1-10Elio Maldonado - 3.19.1-9Elio Maldonado - 3.19.1-8Elio Maldonado - 3.19.1-7Elio Maldonado - 3.19.1-6Kai Engert - 3.19.1-5Elio Maldonado - 3.19.1-4Elio Maldonado - 3.19.1-3Elio Maldonado - 3.19.1-2Elio Maldonado - 3.19.1-1Kai Engert - 3.18.0-6Kai Engert - 3.18.0-5Elio Maldonado - 3.18.0-4Elio Maldonado - 3.18.0-3Elio Maldonado - 3.18.0-2Elio Maldonado - 3.18.0-1Elio Maldonado - 3.16.2.3-5Elio Maldonado - 3.16.2.3-4Elio Maldonado - 3.16.2.3-3Elio Maldonado - 3.16.2.3-2Elio Maldonado - 3.16.2-10Elio Maldonado - 3.16.2-9Elio Maldonado - 3.16.2-4Elio Maldonado 3.16.2-3Elio Maldonado - 3.16.2-2Elio Maldonado - 3.16.2-1Elio Maldonado - 3.15.4-6Elio Maldonado - 3.15.4-5Elio Maldonado - 3.15.4-4Elio Maldonado - 3.15.4-3Daniel Mach - 3.15.4-2Elio Maldonado - 3.15.3-9Elio Maldonado - 3.15.3-8Elio Maldonado - 3.15.3-7Elio Maldonado - 3.15.3-6Elio Maldonado - 3.15.3-5Elio Maldonado - 3.15.3-4Daniel Mach - 3.15.3-3Elio Maldonado - 3.15.3-2Elio Maldonado - 3.15.3-1Elio Maldonado - 3.15.2-10Elio Maldonado - 3.15.2-9Elio Maldonado - 3.15.2-8Elio Maldonado - 3.15.2-7Elio Maldonado - 3.15.2-6Elio Maldonado - 3.15.2-5Elio Maldonado - 3.15.2-4Elio Maldonado - 3.15.2-3Elio Maldonado - 3.15.2-2Elio Maldonado - 3.15.2-1Elio Maldonado - 3.15.1-4Elio Maldonado - 3.15.1-3Elio Maldonado - 3.15.1-2Elio Maldonado - 3.15.1-2Elio Maldonado - 3.15-6Elio Maldonado - 3.15-5emaldona - 3.15-4emaldona - 3.15-3Elio Maldonado - 3.15-2Elio Maldonado - 3.15-1Elio Maldonado - 3.14.3-13.0Kai Engert - 3.14.3-12.0Kai Engert - 3.14.3-11Kai Engert - 3.14.3-10Kai Engert - 3.14.3-9Elio Maldonado - 3.14.3-1Elio Maldonado - 3.14.2-2Elio Maldonado - 3.14.2-1Kai Engert - 3.14.1-3Elio Maldonado - 3.14.1-2Elio Maldonado - 3.14.1-1Elio Maldonado - 3.14-12Elio Maldonado - 3.14-11Elio Maldonado - 3.14-10Elio Maldonado - 3.14-9Elio Maldonado - 3.14-8Elio Maldonado - 3.14-7Elio Maldonado - 3.14-6Elio Maldonado - 3.14-5Elio Maldonado - 3.14-4Elio Maldonado - 3.14-3Elio Maldonado - 3.14-2Elio Maldonado - 3.14-1Elio Maldonado - 3.14-0.1.rc.1Kai Engert - 3.13.6-1Elio Maldonado - 3.13.5-8Elio Maldonado - 3.13.5-7Fedora Release Engineering - 3.13.5-6Elio Maldonado - 3.13.5-5Elio Maldonado - 3.13.5-4Elio Maldonado - 3.13.5-3Elio Maldonado - 3.13.5-2Elio Maldonado - 3.13.5-1Elio Maldonado - 3.13.4-3Elio Maldonado - 3.13.4-2Elio Maldonado - 3.13.4-1Elio Maldonado - 3.13.3-4Elio Maldonado - 3.13.3-3Elio Maldonado - 3.13.3-2Elio Maldonado - 3.13.3-1Tom Callaway - 3.13.1-13Elio Maldonado - 3.13.1-12Fedora Release Engineering - 3.13.1-11Elio Maldonado - 3.13.1-11Elio Maldonado - 3.13.1-10elio maldonado - 3.13.1-9Elio Maldonado - 3.13.1-8Elio Maldonado - 3.13.1-7Elio Maldonado - 3.13.1-6Elio Maldonado - 3.13.1-5Elio Maldonado Batiz - 3.13.1-4Elio Maldonado - 3.13.1-2Elio Maldonado - 3.13.1-1Elio Maldonado - 3.13-1Elio Maldonado - 3.13-0.1.rc0.1Elio Maldonado - 3.12.11-3Kai Engert - 3.12.11-2Elio Maldonado - 3.12.11-1Elio Maldonado - 3.12.10-6Michael Schwendt - 3.12.10-5Elio Maldonado - 3.12.10-4Dennis Gilmore - 3.12.10-3Elio Maldonado - 3.12.10-2Elio Maldonado - 3.12.10-1Elio Maldonado - 3.12.10-0.1.beta1Elio Maldonado - 3.12.9-15Elio Maldonado - 3.12.9-14Elio Maldonado - 3.12.9-13Elio Maldonado - 3.12.9-12Elio Maldonado - 3.12.9-11Elio Maldonado - 3.12.9-10Elio Maldonado - 3.12.9-9Fedora Release Engineering - 3.12.9-8Elio Maldonado - 3.12.9-7Christopher Aillon - 3.12.9-6Elio Maldonado - 3.12.9-5Elio Maldonado - 3.12.9-4Elio Maldonado - 3.12.9-3Elio Maldonado - 3.12.9-2Elio Maldonado - 3.12.9-1Elio Maldonado - 3.12.9-0.1.beta2Elio Maldonado - 3.12.8.99.2-1Elio Maldonado - 3.12.8.99.1-1Elio Maldonado - 3.12.8-9Elio Maldonado - 3.12.8-8Elio Maldonado - 3.12.8-7Elio Maldonado - 3.12.8-6Elio Maldonado - 3.12.8-5Elio Maldonado - 3.12.8-4Elio Maldonado - 3.12.8-3Elio Maldonado - 3.12.8-2Elio Maldonado - 3.12.8-1Elio Maldonado - 3.12.7.99.4-1Elio Maldonado - 3.12.7.99.3-2Elio Maldonado - 3.12.7.99.3-1Elio Maldonado - 3.12.7-3Elio Maldonado - 3.12.7-2Elio Maldonado - 3.12.7-1Elio Maldonado - 3.12.6-12Elio Maldonado - 3.12.6-11Elio Maldonado - 3.12.6-10Elio Maldonado - 3.12.6-9Dennis Gilmore - 3.12.6-8Elio Maldonado - 3.12.6-7Elio Maldonado - 3.12.6-6Elio Maldonado - 3.12.6-5Elio Maldonado - 3.12.6-4Elio Maldonado - 3.12.6-3Elio Maldonado - 3.12.6-2Elio Maldonado - 3.12.6-1.2Elio Maldonado - 3.12.6-1.1Elio Maldonado - 3.12.6-1Elio Maldonado - 3.12.5-8Elio Maldonado - 3.12.5-5Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1.13.2Elio Maldonado - 3.12.5-1.13.1Elio Maldonado - 3.12.5-1.13Elio Maldonado - 3.12.5-1.11Elio maldonado - 3.12.5-1.9Elio Maldonado - 3.12.5-2.7Elio Maldonado - 3.12.5-1.6Elio Maldonado - 3.12.5-1.5Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1Elio Maldonado - 3.12.4-14.1Elio Maldonado - 3.12.4-13.1Elio Maldonado - 3.12.4-13Elio Maldonado - 3.12.4-12Elio Maldonado - 3.12.4-11Elio Maldonado - 3.12.4-10Elio Maldonado - 3.12.4-8Elio Maldonado - 3.12.4-6Elio Maldonado - 3.12.4-5Elio Maldonado - 3.12.4-4Elio Maldonado - 3.12.4-3Elio Maldonado - 3.12.4-2Elio Maldonado - 3.12.4-1Elio Maldonado - 3.12.3.99.3-30Elio Maldonado - 3.12.3.99.3-29Elio Maldonado - 3.12.3.99.3-28Elio Maldonado - 3.12.3.99.3-27Elio Maldonado - 3.12.3.99.3-26Elio Maldonado - 3.12.3.99.3-25Warren Togami - 3.12.3.99.3-24Elio Maldonado - 3.12.3.99.3-23Elio Maldonado - 3.12.3.99.3-22Elio Maldonado - 3.12.3.99.3-21Elio Maldonado - 3.12.3.99.3-20Elio Maldonado - 3.12.3.99.3-19Elio Maldonado - 3.12.3.99.3-18Elio Maldonado - 3.12.3.99.3-16Dennis Gilmore - 3.12.3.99.3-15Dennis Gilmore - 3.12.3.99.3-14Dennis Gilmore - 3.12.3.99.3-13Dennis Gilmore - 3.12.3.99.3-12Elio Maldonado+emaldona@redhat.com - 3.12.3.99.3-11Elio Maldonado - 3.12.3.99.3-10Dennis Gilmore - 3.12.3.99.3-9Elio Maldonado - 3.12.3.99.3-7.1Fedora Release Engineering - 3.12.3.99.3-7Elio Maldonado - 3.12.3.99.3-6Elio Maldonado - 3.12.3.99.3-5Elio Maldonado - 3.12.3.99.3-4Kai Engert - 3.12.3.99.3-3Kai Engert - 3.12.3.99.3-2Kai Engert - 3.12.3-7Kai Engert - 3.12.3-4Kai Engert - 3.12.3-3Kai Engert - 3.12.3-2Kai Engert - 3.12.2.99.3-7Kai Engert - 3.12.2.99.3-6Kai Engert - 3.12.2.99.3-5Kai Engert - 3.12.2.99.3-4Kai Engert - 3.12.2.99.3-3Kai Engert - 3.12.2.99.3-2Kai Engert - 3.12.2.99.3-1Fedora Release Engineering - 3.12.2.0-4Kai Engert - 3.12.2.0-3Dennis Gilmore - 3.12.1.1-4Kai Engert - 3.12.1.1-3Kai Engert - 3.12.1.1-2Kai Engert - 3.12.1.0-2Kai Engert - 3.12.0.3-7Kai Engert - 3.12.0.3-6Kai Engert - 3.12.0.3-3Kai Engert - 3.12.0.3-2Kai Engert - 3.12.0.1-1Jesse Keating - 3.11.99.5-2Kai Engert - 3.11.99.5-1Kai Engert - 3.11.99.4-1Kai Engert - 3.11.99.3-6Kai Engert - 3.11.99.3-5Kai Engert - 3.11.99.3-4Kai Engert - 3.11.99.3-3Kai Engert - 3.11.99.3-2Kai Engert - 3.11.99.3-1Kai Engert - 3.11.99.2b-3Kai Engert - 3.11.99.2b-2Kai Engert - 3.11.99.2-2Kai Engert - 3.11.99.2-1Kai Engert - 3.11.7-10Rob Crittenden - 3.11.7-9Kai Engert - 3.11.7-8Bob Relyea - 3.11.7-7Kai Engert - 3.11.7-6Kai Engert - 3.11.7-5Kai Engert - 3.11.7-4Kai Engert - 3.11.7-3Kai Engert - 3.11.7-2Kai Engert - 3.11.5-2Kai Engert - 3.11.5-1Bob Relyea - 3.11.4-4Kai Engert - 3.11.4-1Kai Engert - 3.11.3-2Kai Engert - 3.11.3-1Kai Engert - 3.11.2-2Jesse Keating - 3.11.2-1.1Kai Engert - 3.11.2-1Kai Engert - 3.11.1-2Kai Engert - 3.11.1-1Kai Engert - 3.11-4Jesse Keating - 3.11-3.2Jesse Keating - 3.11-3.1Ray Strode 3.11-3Christopher Aillon 3.11-2Christopher Aillon 3.11-1Christopher Aillon 3.11-0.cvs.2Christopher Aillon 3.11-0.cvsKai Engert Rob Crittenden 3.10-1- Backport upstream fix for CVE-2018-12384 - Remove nss-lockcert-api-change.patch, which turned out to be a mistake (the symbol was not exported from libnss)- Exercise SSL tests which only run under non-FIPS setting- Restore CERT_LockCertTrust and CERT_UnlockCertTrust back in cert.h- Work around modutil -changepw error if the old and new passwords are both empty in FIPS mode- Decrease the iteration count of PKCS#12 for compatibility with Windows - Fix deadlock when a token is re-inserted while a client process is running- Set NSS_FORCE_FIPS=1 in %build - Revert the changes to tests assuming the default DB type- Rebase to NSS 3.36- Re-enable nss-is-token-present-race.patch- Temporarily disable nss-is-token-present-race.patch- Backport necessary changes from 3.35- Rebase to NSS 3.34- Rebase to NSS 3.34.BETA1- Disable TLS 1.3- Enable TLS 1.3- Rebase to NSS 3.33 - Disable TLS 1.3, temporarily disable failing gtests (Skip13Variants) - Temporarily disable race.patch and nss-3.16-token-init-race.patch, which causes a deadlock in newly added test cases - Remove upstreamed patches: moz-1320932.patch, nss-tstclnt-optspec.patch, nss-1334976-1336487-1345083-ca-2.14.patch, nss-alert-handler.patch, nss-tools-sha256-default.patch, nss-is-token-present-race.patch, nss-pk12util.patch, nss-ssl3gthr.patch, and nss-transcript.patch- Add backward compatibility to pk12util regarding faulty PBES2 AES encryption- Update iquote.patch to prefer nss.h from the source- Add backward compatibility to pk12util regarding password encoding- Backport patch to simplify transcript calculation for CertificateVerify - Enable TLS 1.3 and RSA-PSS - Disable some upstream tests failing due to downstream ciphersuites changes- Work around yum crash due to new NSPR symbol being used in nss-sysinit, patch by Kai Engert- Fix typo in nss-sni-c-v-fix.patch- Include CKBI 2.14 and updated CA constraints from NSS 3.28.5- Update nss-pk12util.patch to include fix from mozbz#1353724.- Update nss-alert-handler.patch with the upstream fix from mozbz#1360207.- Fix zero-length record treatment for stream ciphers and SSLv2- Correctly set policy file location when building- Reorder ChaCha20-Poly1305 cipher suites, as suggested in: https://bugzilla.redhat.com/show_bug.cgi?id=1373158#c9- Rebase to NSS 3.28.4 - Update nss-pk12util.patch with backport of mozbz#1353325- Switch default hash algorithm used by tools from SHA-1 to SHA-256 - Avoid race condition in nssSlot_IsTokenPresent() - Enable SHA-2 and AES in pk12util - Disable RSA-PSS for now- Utilize CKA_NSS_MOZILLA_CA_POLICY attribute, patch by Kai Engert - Backport changes adding SSL alert callbacks from upstream - Add nss-check-policy-file.patch from Fedora - Install policy config in /etc/pki/nss-legacy/nss-rhel7.config- Make sure 32bit nss-pem always be installed with 32bit nss in multlib environment, patch by Kamil Dudka - Enable new algorithms supported by the new nss-softokn- Rebase to NSS 3.28.3 - Bump required version of nss-softokn- Remove %nss_cycles setting, which was also mistakenly added - Re-enable BUILD_OPT, mistakenly disabled in the previous build - Prevent ABI incompatibilty of SECKEYECPublicKey - Disable TLS_ECDHE_{RSA,ECDSA}_WITH_AES_128_CBC_SHA256 by default - Enable 4 AES_256_GCM_SHA384 ciphersuites, enabled by the downstream patch in the previous release - Fix crash with tstclnt -W - Always enable gtests for supported features - Add patch to fix bash syntax error in tests/ssl.sh - Build with support for SSLKEYLOGFILE - Disable the use of RSA-PSS with SSL/TLS- Decouple nss-pem from the nss package - Resolves: #1316546- Remove mistakenly added R: nss-pem- Rebase to NSS 3.28.2 - Remove NSS_ENABLE_ECC and NSS_ECC_MORE_THAN_SUITE_B setting, which is no-op now - Enable gtests when requested - Remove nss-646045.patch and fix-nss-test-filtering.patch, which are not necessary - Remove sslauth-no-v2.patch and nss-sslstress-txt-ssl3-lower-value-in-range.patch, as SSLv2 is already disabled in upstream - Remove ssl-server-min-key-sizes.patch, as we decided to support DH key size greater than 1023 bits - Remove local patches for SHA384 cipher suites (now supported in upstream): dhe-sha384-dss-support.patch, client_auth_for_sha384_prf_support.patch, nss-fix-client-auth-init-hashes.patch, nss-map-oid-to-hashalg.patch, nss-enable-384-cipher-tests.patch, nss-fix-signature-and-hash.patch, fix-allowed-sig-alg.patch, tests-extra.patch - Remove upstreamed patches: rh1238290.patch, fix-reuse-of-session-cache-entry.patch, flexible-certverify.patch, call-restartmodules-in-nssinit.patch- Rebase to NSS 3.21.3 - Resolves: #1383887- remove additional false duplicates from sha384 downstream patches- enable ssl_gtests (without extended master secret tests), Bug 1298692 - call SECMOD_RestartModules in nss_Init, Bug 1317691- escape all percent characters in all changelog comments- Support TLS 1.2 certificate_verify hashes other than PRF, backported fix from NSS 3.25 (upstream bug 1179338).- Fix reuse of session cache entry - Resolves: Bug 1241172 - Certificate verification fails with multiple https urls- Fix a flaw in %check for nss not building on arm - Resolves: Bug 1200856- Cleanup: Remove unnecessary %posttrans script from nss.spec - Resolves: Bug 1174201- Merge fixes from the rhel-7.2 branch - Fix a bogus %changelog entry - Resolves: Bug 1297941- Rebuild to require the latest nss-util build and nss-softokn build.- Update the minimum nss-softokn build required at runtime.- Delete duplicates from one table- Fix missing support for sha384/dsa in certificate_request- Merge fixes from the rhel-7.2 branch - Fix the SigAlgs sent in certificate_request - Ensure all ssl.sh tests are executed - Update sslauth test patch to run additional tests- Fix sha384 support and testing patches- Rebase to NSS-3.21- Prevent TLS 1.2 Transcript Collision attacks against MD5 in key exchange protocol - Fix a mockbuild reported bad %if condition when using the __isa_bits macro instead of list of 64-bit architectures - Change the test to %if 0%{__isa_bits} == 64 as required for building the srpm which is noarch - Resolves: Bug 1289884- Rebuild against updated NSPR- Change the required_softokn_build_version back to -13 - Ensure we use nss-softokn-3.16.2.3-13.el7_1- Fix check for public key size of DSA certificates - Use size of prime P not the size of dsa.publicValue- Reorder the cipher suites and enable two more by default- Update the required_softokn_build_version to -14 - Add references to bugs filed upstream for new patches - Merge ocsp stapling and sslauth sni tests patches into one- Reorder the cipher suites and enable two more by default - Fix some of the ssauth sni and ocsp stapling tests- Support TLS > 1.0 by support while still allowing to connect to SSL3 only servers - Enable ECDSA cipher suites by default, a subset of the ones requested- Support TLS > 1.0 by support while still allowing to connect to SSL3 only servers- Fix to correctly report integrity mechanism for TLS_RSA_WITH_AES_256_GCM_SHA384- Fix checks to skip ssl2/export cipher suites tests to not skip needed tests - Fix libssl ssl2/export disabling patch to handle NULL cipher cases - Enable additional cipher suites by default- Add links to filed upstream bugs to better track patches in spec file- Package listsuites as part of the unsupported tools- Bump the release tag- Incremental patches to fix SSL/TLS test suite execution, fix the earlier SHA384 patch, and inform clients to use SHA384 with certificate_verify if required by NSS.- Add support for sha384 tls cipher suites - Add support for server-side hde key exchange - Add support for DSS+SHA256 ciphersuites- Reenable a patch that had been mistakenly disabled- Build against nss-softokn-3.16.2.3-9- Rebase to nss-3.19.1 - Resolves: Bug 1228913 - Rebase to nss-3.19.1 for CVE-2015-4000 [RHEL-7.1]- Backport mozbz#1155922 to support SHA512 signatures with TLS 1.2- Update to CKBI 2.4 from NSS 3.18.1 (the only change in NSS 3.18.1)- Update and reeneable nss-646045.patch on account of the rebase - Resolves: Bug 1200898 - Rebase nss to 3.18 for Firefox 38 ESR [RHEL7.1]- Fix shell syntax error on nss/tests/all.sh - Resolves: Bug 1200898 - Rebase nss to 3.18 for Firefox 38 ESR [RHEL7.1]- Replace expired PayPal test certificate that breaks the build - Resolves: Bug 1200898 - Rebase nss to 3.18 for Firefox 38 ESR [RHEL7.1]- Resolves: Bug 1200898 - Rebase nss to 3.18 for Firefox 38 ESR [RHEL7.1]- Reverse the sense of a test in patch to fix pk12util segfault - Resolves: Bug 1174527 - Segfault in pk12util when using -l option with certain .p12 files- Fix race condition - Resolves: Bug 1094468 - 389-ds-base server reported crash in stan_GetCERTCertificate - under the replication replay failure condition- Resolves: Bug 1174527 - Segfault in pk12util when using -l option with certain .p12 files- Restore patch for certutil man page - supply missing options descriptions - Resolves: Bug 1158161 - Upgrade to NSS 3.16.2.3 for Firefox 31.3- Resolves: Bug 1158161 - Upgrade to NSS 3.16.2.3 for Firefox 31.3 - Support TLS_FALLBACK_SCSV in tstclnt and ssltap- Resolves: Bug 1145434 - CVE-2014-1568 - Using a release number higher than on rhel-7.0 branch- Fix crash in stan_GetCERTCertificate - Resolves: Bug 1094468- Generic 32/64 bit platform detection (fix ppc64le build) - Resolves: Bug 1125619 - nss fails to build on arch: ppc64le (missing dependencies) - Fix contributed by Peter Robinson - Fix libssl and test patches that disable ssl2 support - Resolves: Bug 1123435 - Replace expired PayPal test certificate with current one- Rebase to nss-3.16.2 - Resolves: Bug 1103252 - Rebase RHEL 7.1 to at least NSS 3.16.1 (FF 31) - Fix test failure detection in the %check section - Move removal of unwanted source directories to the end of the %prep section - Update various patches on account of the rebase - Remove unused patches rendered obsolete by the rebase- Disallow disabling the internal module - Resolves: Bug 1056036 - nss segfaults with opencryptoki module- Pick up a fix from rhel-6 and fix an rpm conflict - Don't hold issuer cert handles in crl cache - Resolves: Bug 1034409 - deadlock in trust domain and object lock - Move nss shared db files to the main package - Resolves: Bug 1050163 - Same files in two packages create rpm conflict- Update pem sources to latest from nss-pem upstream - Pick up pem module fixes verified on RHEL and applied upstream - Remove no loger needed pem patches on acccount on this update - Add comments documenting the iquote.patch - Resolves: Bug 1054457 - CVE-2013-1740- Remove spurious man5 wildcard entry as all manpages are listed by name - Resolves: Bug 1050163 - Same files in two packages create rpm conflict- Mass rebuild 2014-01-24- Rebase to nss-3.15.4 - Resolves: Bug 1054457 - CVE-2013-1740 nss: false start PR_Recv information disclosure security issue - Remove no longer needed patches for manpages that were applied upstream - Remove no longer needed patch to disable ocsp stapling tests - Update iquote.patch on account of upstream changes - Update and rename patch to pem/rsawrapr.c on account of upstream changes - Use the pristine upstream sources for nss without repackaging - Avoid unneeded manual step which may introduce errors- Fix the spec file to apply the nss ecc list patch for bug 752980 - Resolves: Bug 752980 - Support ECDSA algorithm in the nss package via puggable ecc- Move several nss-sysinit manpages tar archives to the %files - Resolves: Bug 1050163 - Same files in two packages create rpm conflict- Fix a coverity scan compile time warning for the pem module - Resolves: Bug 1002271 - NSS pem module should not require unique base file names- Resolves: Bug 1002271 - NSS pem module should not require unique base file names- Improve pluggable ECC support for ECDSA - Resolves: Bug 752980 - [7.0 FEAT] Support ECDSA algorithm in the nss package- Mass rebuild 2013-12-27- Revoke trust in one mis-issued anssi certificate - Resolves: Bug 1040284 - nss: Mis-issued ANSSI/DCSSI certificate (MFSA 2013-117) [rhel-7.0]- Update to NSS_3_15_3_RTM - Resolves: Bug 1031463 - CVE-2013-5605 CVE-2013-5606 CVE-2013-1741- Fix path to script and remove -- from some options in nss-sysinit man page - Resolves: rhbz#982723 - man page of nss-sysinit worong path and other flaws- Fix certutil man page options names to be consistent with help - Resolves: rhbz#948495 - man page scan results for nss - Remove incorrect count argument in status description in nss-sysinit man page - Resolves: rhbz#982723 - man page of nss-sysinit incorrect option descriptions- Fix patch for disabling ssl2 in ssl to correctly set error code - Fix syntax error reported in the build.log even tough it succeeds - Add patch top ignore setpolicy result - Resolves: rhbz#1001841 - Disable SSL2 and the export cipher suites - Resolves: rhbz#1026677 - Attempt to run ipa-client-install fails- Fix bash syntax error in patch for disabling ssl2 tests - Resolves: rhbz#1001841 - Disable SSL2 and the export cipher suites- Fix errors in ssl disabling patches for both library and tests - Add s390x to the multilib_arches definition used for alt_ckbi - Resolves: rhbz#1001841 - Disable SSL2 and the export cipher suites- Fix errors in nss-sysinit manpage options descriptions - Resolves: rhbz#982723- Enable fips when system is in fips mode - Resolves: rhbz#852023 - FIPS mode detection does not work- Remove unused and obsoleted patches - Related: rhbz#1012656- Add description of the certutil's --email option to it's manpage - Resolves: rhbz#Bug 948495 - Man page scan results for nss- Rebase to nss-3.15.2 - Resolves: rhbz#1012656 - pick up NSS 3.15.2 to fix CVE-2013-1739 and disable MD5 in OCSP/CRL- Install symlink to nss-sysinit.sh without the .sh suffix - Resolves: rhbz#982723 - nss-sysinit man page has wrong path for the script- Resolves: rhbz#1001841 - Disable SSL2 and the export cipher suites- Add upstream bug URL for a patch subitted upstream and remove obsolete script- Update to NSS_3_15_1_RTM - Apply various fixes to the man pages and add new ones - Enable the iquote.patch to access newly introduced types - Add man page for pkcs11.txt configuration file and cert and key databases - Add missing option descriptions for {cert|cms|crl}util - Resolves: rhbz#948495 - Man page scan results for nss - Resolves: rhbz#982723 - Fix path to script in man page for nss-sysinit- Use the unstripped source tar ball- Install man pages for nss-tools and the nss-config and setup-nsssysinit scripts - Resolves: rhbz#606020 - nss security tools lack man pages- Build nss without softoken or util sources in the tree - Resolves: rhbz#689918- Update ssl-cbc-random-iv-by-default.patch- Fix generation of NSS_VMAJOR, NSS_VMINOR, and NSS_VPATCH for nss-config- Update to NSS_3_15_RTM- Reactivate nss-ssl-cbc-random-iv-off-by-default.patch- Add upstream patch to fix rhbz#872761- Update expired test certificates (fixed in upstream bug 852781)- Fix incorrect post/postun scripts. Fix broken links in posttrans.- Configure libnssckbi.so to use the alternatives system in order to prepare for a drop in replacement.- Update to NSS_3_14_3_RTM - sync up pem rsawrapr.c with softoken upstream changes for nss-3.14.3 - Resolves: rhbz#908257 - CVE-2013-1620 nss: TLS CBC padding timing attack - Resolves: rhbz#896651 - PEM module trashes private keys if login fails - Resolves: rhbz#909775 - specfile support for AArch64 - Resolves: rhbz#910584 - certutil -a does not produce ASCII output- Allow building nss against older system sqlite- Update to NSS_3_14_2_RTM- Update to NSS_3_14_1_WITH_CKBI_1_93_RTM- Require nspr >= 4.9.4 - Fix changelog invalid dates- Update to NSS_3_14_1_RTM- Bug 879978 - Install the nssck.api header template where mod_revocator can access it - Install nssck.api in /usr/includes/nss3/templates- Bug 879978 - Install the nssck.api header template in a place where mod_revocator can access it - Install nssck.api in /usr/includes/nss3- Bug 870864 - Add support in NSS for Secure Boot- Disable bypass code at build time and return failure on attempts to enable at runtime - Bug 806588 - Disable SSL PKCS #11 bypass at build time- Fix pk11wrap locking which fixes 'fedpkg new-sources' and 'fedpkg update' hangs - Bug 872124 - nss-3.14 breaks fedpkg new-sources - Fix should be considered preliminary since the patch may change upon upstream approval- Add a dummy source file for testing /preventing fedpkg breakage - Helps test the fedpkg new-sources and upload commands for breakage by nss updates - Related to Bug 872124 - nss 3.14 breaks fedpkg new-sources- Fix a previous unwanted merge from f18 - Update the SS_SSL_CBC_RANDOM_IV patch to match new sources while - Keeping the patch disabled while we are still in rawhide and - State in comment that patch is needed for both stable and beta branches - Update .gitignore to download only the new sources- Fix the spec file so sechash.h gets installed - Resolves: rhbz#871882 - missing header: sechash.h in nss 3.14- Update the license to MPLv2.0- Use only -f when removing unwanted headers- Add secmodt.h to the headers installed by nss-devel - nss-devel must install secmodt.h which moved from softoken to pk11wrap with nss-3.14- Update to NSS_3_14_RTM- Update to NSS_3_14_RC1 - update nss-589636.patch to apply to httpdserv - turn off ocsp tests for now - remove no longer needed patches - remove headers shipped by nss-util- Update to NSS_3_13_6_RTM- Rebase pem sources to fedora-hosted upstream to pick up two fixes from rhel-6.3 - Resolves: rhbz#847460 - Fix invalid read and free on invalid cert load - Resolves: rhbz#847462 - PEM module may attempt to free uninitialized pointer - Remove unneeded fix gcc 4.7 c++ issue in secmodt.h that actually undoes the upstream fix- Fix pluggable ecc support- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- Fix checkin comment to prevent unwanted expansions of percents- Resolves: Bug 830410 - Missing Requires %{?_isa} - Use Requires: %{name}%{?_isa} = %{version}-%{release} on tools - Drop zlib requires which rpmlint reports as error E: explicit-lib-dependency zlib - Enable sha224 portion of powerup selftest when running test suites - Require nspr 4.9.1- Resolves: rhbz#833529 - revert unwanted change to nss.pc.in- Resolves: rhbz#833529 - Remove unwanted space from the Libs: line on nss.pc.in- Update to NSS_3_13_5_RTM- Resolves: Bug 812423 - nss_Init leaks memory, fix from RHEL 6.3- Resolves: Bug 805723 - Library needs partial RELRO support added - Patch coreconf/Linux.mk as done on RHEL 6.2- Update to NSS_3_13_4_RTM - Update the nss-pem source archive to the latest version - Remove no longer needed patches - Resolves: Bug 806043 - use pem files interchangeably in a single process - Resolves: Bug 806051 - PEM various flaws detected by Coverity - Resolves: Bug 806058 - PEM pem_CreateObject leaks memory given a non-existing file name- Resolves: Bug 805723 - Library needs partial RELRO support added- Cleanup of the spec file - Add references to the upstream bugs - Fix typo in Summary for sysinit- Pick up fixes from RHEL - Resolves: rhbz#800674 - Unable to contact LDAP Server during winsync - Resolves: rhbz#800682 - Qpid AMQP daemon fails to load after nss update - Resolves: rhbz#800676 - NSS workaround for freebl bug that causes openswan to drop connections- Update to NSS_3_13_3_RTM- fix issue with gcc 4.7 in secmodt.h and C++11 user-defined literals- Resolves: Bug 784672 - nss should protect against being called before nss_Init- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- Deactivate a patch currently meant for stable branches only- Resolves: Bug 770682 - nss update breaks pidgin-sipe connectivity - NSS_SSL_CBC_RANDOM_IV set to 0 by default and changed to 1 on user request- Revert to using current nss_softokn_version - Patch to deal with lack of sha224 is no longer needed- Resolves: Bug 754771 - [PEM] an unregistered callback causes a SIGSEGV- Resolves: Bug 750376 - nss 3.13 breaks sssd TLS - Fix how pem is built so that nss-3.13.x works with nss-softokn-3.12.y - Only patch blapitest for the lack of sha224 on system freebl - Completed the patch to make pem link against system freebl- Removed unwanted /usr/include/nss3 in front of the normal cflags include path - Removed unnecessary patch dealing with CERTDB_TERMINAL_RECORD, it's visible- Statically link the pem module against system freebl found in buildroot - Disabling sha224-related powerup selftest until we update softokn - Disable sha224 and pss tests which nss-softokn 3.12.x doesn't support- Rebuild with nss-softokn from 3.12 in the buildroot - Allows the pem module to statically link against 3.12.x freebl - Required for using nss-3.13.x with nss-softokn-3.12.y for a merge inrto rhel git repo - Build will be temprarily placed on buildroot override but not pushed in bodhi- Fix broken dependencies by updating the nss-util and nss-softokn versions- Update to NSS_3_13_1_RTM - Update builtin certs to those from NSSCKBI_1_88_RTM- Update to NSS_3_13_RTM- Update to NSS_3_13_RC0- Fix attempt to free initilized pointer (#717338) - Fix leak on pem_CreateObject when given non-existing file name (#734760) - Fix pem_Initialize to return CKR_CANT_LOCK on multi-treaded calls (#736410)- Update builtins certs to those from NSSCKBI_1_87_RTM- Update to NSS_3_12_11_RTM- Indicate the provenance of stripped source tarball (#688015)- Provide virtual -static package to meet guidelines (#609612).- Enable pluggable ecc support (#712556) - Disable the nssdb write-access-on-read-only-dir tests when user is root (#646045)- make the testsuite non fatal on arm arches- Fix crmf hard-coded maximum size for wrapped private keys (#703656)- Update to NSS_3_12_10_RTM- Update to NSS_3_12_10_BETA1- Implement PEM logging using NSPR's own (#695011)- Update to NSS_3.12.9_WITH_CKBI_1_82_RTM- Short-term fix for ssl test suites hangs on ipv6 type connections (#539183)- Add a missing requires for pkcs11-devel (#675196)- Run the test suites in the check section (#677809)- Fix cms headers to not use c++ reserved words (#676036) - Reenabling Bug 499444 patches - Fix to swap internal key slot on fips mode switches- Revert patches for 499444 until all c++ reserved words are found and extirpated- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- Fix cms header to not use c++ reserved word (#676036) - Reenable patches for bug 499444- Revert patches for 499444 as they use a C++ reserved word and cause compilation of Firefox to fail- Fix the earlier infinite recursion patch (#499444) - Remove a header that now nss-softokn-freebl-devel ships- Fix infinite recursion when encoding NSS enveloped/digested data (#499444)- Update the cacert trust patch per upstream review requests (#633043)- Fix to honor the user's cert trust preferences (#633043) - Remove obsoleted patch- Update to 3.12.9- Rebuilt according to fedora pre-release package naming guidelines- Update to NSS_3_12_9_BETA2 - Fix libpnsspem crash when cacert dir contains other directories (#642433)- Update to NSS_3_12_9_BETA1- Update pem source tar with fixes for 614532 and 596674 - Remove no longer needed patches- Update PayPalEE.cert test certificate which had expired- Tell rpm not to verify md5, size, and modtime of configurations file- Fix certificates trust order (#643134) - Apply nss-sysinit-userdb-first.patch last- Move triggerpostun -n nss-sysinit script ahead of the other ones (#639248)- Fix invalid %postun scriptlet (#639248)- Replace posttrans sysinit scriptlet with a triggerpostun one (#636787) - Fix and cleanup the setup-nsssysinit.sh script (#636792, #636801)- Add posttrans scriptlet (#636787)- Update to 3.12.8 - Prevent disabling of nss-sysinit on package upgrade (#636787) - Create pkcs11.txt with correct permissions regardless of umask (#636792) - Setup-nsssysinit.sh reports whether nss-sysinit is turned on or off (#636801) - Added provides pkcs11-devel-static to comply with packaging guidelines (#609612)- NSS 3.12.8 RC0- Fix nss-util_version and nss_softokn_version required to be 3.12.7.99.3- NSS 3.12.8 Beta3 - Fix unclosed comment in renegotiate-transitional.patch- Change BuildRequries to available version of nss-util-devel- Define NSS_USE_SYSTEM_SQLITE and remove unneeded patch - Add comments regarding an unversioned provides which triggers rpmlint warning - Build requires nss-softokn-devel >= 3.12.7- Update to 3.12.7- Apply the patches to fix rhbz#614532- Removed pem sourecs as they are in the cache- Add support for PKCS#8 encoded PEM RSA private key files (#614532)- Fix nsssysinit to return userdb ahead of systemdb (#603313)- Require and BuildRequire >= the listed version not =- Require nss-softoken 3.12.6- Fix SIGSEGV within CreateObject (#596674)- Update pem source tar to pick up the following bug fixes: - PEM - Allow collect objects to search through all objects - PEM - Make CopyObject return a new shallow copy - PEM - Fix memory leak in pem_mdCryptoOperationRSAPriv- Update the test cert in the setup phase- Add sed to sysinit requires as setup-nsssysinit.sh requires it (#576071) - Update PayPalEE test cert with unexpired one (#580207)- Fix ns.spec to not require nss-softokn (#575001)- rebuilt with all tests enabled- Using SSL_RENEGOTIATE_TRANSITIONAL as default while on transition period - Disabling ssl tests suites until bug 539183 is resolved- Update to 3.12.6 - Reactivate all tests - Patch tools to validate command line options arguments- Fix curl related regression and general patch code clean up- retagging- Fix SIGSEGV on call of NSS_Initialize (#553638)- New version of patch to allow root to modify ystem database (#547860)- Temporarily disabling the ssl tests- Fix nsssysinit to allow root to modify the nss system database (#547860)- Fix an error introduced when adapting the patch for rhbz #546211- Remove left over trace statements from nsssysinit patching- Fix a misconstructed patch- Fix nsssysinit to enable apps to use system cert store, patch contributed by David Woodhouse (#546221) - Fix spec so sysinit requires coreutils for post install scriplet (#547067) - Fix segmentation fault when listing keys or certs in the database, patch contributed by Kamil Dudka (#540387)- Fix nsssysinit to set the default flags on the crypto module (#545779) - Remove redundant header from the pem module- Remove unneeded patch- Retagging to include missing patch- Update to 3.12.5 - Patch to allow ssl/tls clients to interoperate with servers that require renogiation- Retagging- Require nss-softoken of same architecture as nss (#527867) - Merge setup-nsssysinit.sh improvements from F-12 (#527051)- User no longer prompted for a password when listing keys an empty system db (#527048) - Fix setup-nsssysinit to handle more general formats (#527051)- Fix syntax error in setup-nsssysinit.sh- Fix sysinit to be under mozilla/security/nss/lib- Add nss-sysinit activation/deactivation script- Install blank databases and configuration file for system shared database - nsssysinit queries system for fips mode before relying on environment variable- Restoring nssutil and -rpath-link to nss-config for now - 522477- Add the nss-sysinit subpackage- Installing shared libraries to %{_libdir}- Retagging to pick up new sources- Update pem enabling source tar with latest fixes (509705, 51209)- PEM module implements memory management for internal objects - 509705 - PEM module doesn't crash when processing malformed key files - 512019- Remove symbolic links to shared libraries from devel - 521155 - No rpath-link in nss-softokn-config- Update to 3.12.4- Fix FORTIFY_SOURCE buffer overflows in test suite on ppc and ppc64 - bug 519766 - Fixed requires and buildrequires as per recommendations in spec file review- Restoring patches 2 and 7 as we still compile all sources - Applying the nss-nolocalsql.patch solves nss-tools sqlite dependency problems- restore require sqlite- Don't require sqlite for nss- Ensure versions in the requires match those used when creating nss.pc- Remove nss-prelink.conf as signed all shared libraries moved to nss-softokn - Add a temprary hack to nss.pc.in to unblock builds- caolan's nss.pc patch- Bump the release number for a chained build of nss-util, nss-softokn and nss- Fix nss-config not to include nssutil - Add BuildRequires on nss-softokn and nss-util since build also runs the test suite- disabling all tests while we investigate a buffer overflow bug- disabling some tests while we investigate a buffer overflow bug - 519766- remove patches that are now in nss-softokn and - remove spurious exec-permissions for nss.pc per rpmlint - single requires line in nss.pc.in- Fix BuildRequires: nss-softokn-devel release number- fix nss.pc.in to have one single requires line- cleanups for softokn- remove the softokn subpackages- don install the nss-util pkgconfig bits- remove from -devel the 3 headers that ship in nss-util-devel- kill off the nss-util nss-util-devel subpackages- split off nss-softokn and nss-util as subpackages with their own rpms - first phase of splitting nss-softokn and nss-util as their own packages- must install libnssutil3.since nss-util is untagged at the moment - preserve time stamps when installing various files- dont install libnssutil3.so since its now in nss-util- Fix spec file problems uncovered by Fedora_12_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild- removed two patch files which are no longer needed and fixed previous change log number- updated pem module incorporates various patches - fix off-by-one error when computing size to reduce memory leak. (483855) - fix data type to work on x86_64 systems. (429175) - fix various memory leaks and free internal objects on module unload. (501080) - fix to not clone internal objects in collect_objects(). (501118) - fix to not bypass initialization if module arguments are omitted. (501058) - fix numerous gcc warnings. (500815) - fix to support arbitrarily long password while loading a private key. (500180) - fix memory leak in make_key and memory leaks and return values in pem_mdSession_Login (501191)- add patch for bug 502133 upstream bug 496997- rebuild with higher release number for upgrade sanity- updated to NSS_3_12_4_FIPS1_WITH_CKBI_1_75- re-enable test suite - add patch for upstream bug 488646 and add newer paypal certs in order to make the test suite pass- add conflicts info in order to fix bug 499436- ship .chk files instead of running shlibsign at install time - include .chk file in softokn-freebl subpackage - add patch for upstream nss bug 488350- Update to NSS 3.12.3- temporarily disable the test suite because of bug 494266- fix softokn-freebl dependency for multilib (bug 494122)- introduce separate nss-softokn-freebl package- disable execstack when building freebl- add upstream patch to fix bug 483855- build nspr-less freebl library- Update to NSS_3_12_3_BETA4- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild- update to NSS_3_12_2_RC1 - use system zlib- add sparc64 to the list of 64 bit arches- bug 456847, move pkgconfig requirement to devel package- Update to NSS_3_12_1_RC2- NSS 3.12.1 RC1- fix bug bug 429175 in libpem module- bug 456847, add Requires: pkgconfig- nss package should own /etc/prelink.conf.d folder, rhbz#452062 - use upstream patch to fix test suite abort- Update to NSS_3_12_RC4- Update to NSS_3_12_RC2- Zapping old Obsoletes/Provides. No longer needed, causes multilib headache.- Update to NSS_3_12_BETA3- NSS 3.12 Beta 2 - Use /usr/lib{64} as devel libdir, create symbolic links.- Apply upstream patch for bug 417664, enable test suite on pcc.- Support concurrent runs of the test suite on a single build host.- disable test suite on ppc- disable test suite on ppc64- Build against gcc 4.3.0, use workaround for bug 432146 - Run the test suite after the build and abort on failures.* NSS 3.12 Beta 1- move .so files to /lib- NSS 3.12 alpha 2b- upstream patches to avoid calling netstat for random data- NSS 3.12 alpha 2- Add /etc/prelink.conf.d/nss-prelink.conf in order to blacklist our signed libraries and protect them from modification.- Fix off-by-one error in the PEM module- fix a C++ mode compilation error- Add 3.12 ckfw and libnsspem- Updated license tag- Ensure the workaround for mozilla bug 51429 really get's built.- Better approach to ship freebl/softokn based on 3.11.5 - Remove link time dependency on softokn- Fix unowned directories, rhbz#233890- Update to 3.11.7, but freebl/softokn remain at 3.11.5. - Use a workaround to avoid mozilla bug 51429.- Fix rhbz#230545, failure to enable FIPS mode - Fix rhbz#220542, make NSS more tolerant of resets when in the middle of prompting for a user password.- Update to 3.11.5 - This update fixes two security vulnerabilities with SSL 2 - Do not use -rpath link option - Added several unsupported tools to tools package- disable ECC, cleanout dead code- Update to 3.11.4- Revert the attempt to require latest NSPR, as it is not yet available in the build infrastructure.- Update to 3.11.3- Add /etc/pki/nssdb- rebuild- Update to 3.11.2 - Enable executable bit on shared libs, also fixes debug info.- Enable Elliptic Curve Cryptography (ECC)- Update to 3.11.1 - Include upstream patch to limit curves- add --noexecstack when compiling assembler on x86_64- bump again for double-long bug on ppc(64)- rebuilt for new gcc4.1 snapshot and glibc changes- rebuild- Update file list for the devel packages- Update to 3.11- Add patch to allow building on ppc* - Update the pkgconfig file to Require nspr- Initial import into Fedora Core, based on a CVS snapshot of the NSS_3_11_RTM tag - Fix up the pkcs11-devel subpackage to contain the proper headers - Build with RPM_OPT_FLAGS - No need to have rpath of /usr/lib in the pc file- Adressed review comments by Wan-Teh Chang, Bob Relyea, Christopher Aillon.- Initial build 3.36.0-7.el7_53.36.0-7.el7_53.36.0-7.el7_5nssbase.hnssbaset.hnssckepv.hnssckft.hnssckfw.hnssckfwc.hnssckfwt.hnssckg.hnssckmdt.hnssckt.hnssck.apilibnssb.alibnssckfw.a/usr/include/nss3//usr/include/nss3/templates//usr/lib64/-O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -m64 -mtune=genericcpioxz9x86_64-redhat-linux-gnuC source, ASCII textcurrent ar archive?7zXZ !XRKf] crv(vX0zeRvFO-c%_@Ѫxg-B~Z f(w`R=a\>VfP[Z<>$*+)yO4|hg*e 8fHU6~0}co!a˽zSW_܂\?|Yט _dDw I$^yN`|5JY'u^ceD=r ax’=-J =Z[\2tʊ?:+# ׆ 5 GQYHqB:X#et@`2xd$ {hI7Zgɺp̒ xQJ6k+~*!?'Yab2ZfZKK k#dUUI@mU`"H*Ld%f6"Y~_TxvJ=;FZ\ 9"{dj +'$ZlwxթO_Cfڍw>oGc7}P[\nD~M|&v x !KQ6Wgz "С Dg!"~CJ{ų ܜ kOp|\X!ϤXm眿;E KWZRl{uM^C_l4ޮo /ȑ1DeDu/!DB- vH3uݨޜYଦw3|-T&OFKD>N)8|sd`s)ϣ|/&+$yQAຆ#Z0ZRW1Fzޭ_^̌SHv28 b׬0Ԁlt 92%"skBUj՝ b: 27il0Zcvr]&fА<,g'!!fLi#n EypޟN\prnw aL)UCF̅x ;yE8FDR[kA/Cp O,<:|=b? S Ϭwap邠$Qwg҉I9`bDpfx&O V^̶ ufOEV`6^Y&gjca+Q\ [L$xxkl1%kTvWyVmȥ :R`2?}#P1WjV|/qy BővGYuFx3xٗNc۶%^EGU;|o^-+Qg֡.y 5=k]!)AܨC5#IqT\%Б/= ={wcBW[* /k&ZVrPW Kʟ{8񞅖~UD#ܹWXIƐ< d 6E\RF!1F%X)0wZ|10!sgg (`E3 ojo @{*՘l#_S0]ڛ\ EM0n-2%XiuΓ.Ǝ c܈1I?~PJڊՂh,NC`k{KR~8tm>=]KYNt@X-RǑ;ZӸsy7|}+{;RrO"BRj6+w*f,nyoB'e-Xp/&= "9$2[cXH9 !R1qwA>̵~/Z]YMAh5^-]lB|ooAODoߪjƜw(.u0I`ǫ idolm(`uTTj:%GP5et;Iӊ\o5j4 r䳭 c>74zwZ؉KVMv&RwB{eՎjY.H}(VT:&I~3+0} #`=QKu\ICmR2m" OI^Ouq\3PBφ}g?م1z{')Yp*IvъQ!x1\>2kfɈG%Wp\X`ީ؆_~ciLE, M0m\K I=TLK5Ⱦ:ﳻ<l]}pd}O6^!HY 'YL@ud]SC60H\w=N2z8ܧul@D\;' ;a{ϟK|?DbZF)\5oPSzL7]23^#:A[醌F{ρ͐wق>oo#HAG7{ !ow5H, UAHxk D!Wj {)tݸC߃MC_u[}|. b[_t HwK>'t,1-+#.U}@s ^XK—C 埭ok H_?E:oi} 7`3xh8mg Jw.>-}싓Gԝ!Rw760bdvmγ5*y3@MF-՘|-OkU5%;!a+Ɵ}N~GQ 'CWM>N &|u pn&dh}:p*r[kA84 9ɼs{崮8?? f3a tbߕ0i $tb,YʈhzYG1)۟7Sԟx^@- [늀ˆs]xz83 Hl˥ᩒvU{+ .qlzTG ~:KPhA_X+< 9BO߁6sd| ISiX=buPZ8Z g6ϲ M[[}`ur_UC<~ۣ'9L Sbl䝦4Gtw˴^b; K D I9U;7|b/yVkm=[9( O)k;c Ǩ3dXnzw򩝘mVpl&^H}n*k>'9\)ܓO'Sa r~rHBg:~*e{P"e,:{FP4OQ^zL'dFcse XWo{J_<n Se<~(tjp X㵖 2YL^!Ɉsn'H>?>\3-4 K"e[с4S}: I,D,fZKFJcLou4leq%1Sa`K'7`$ &I=,] 25v6 #p?%oHqdyL%2iic`HxWģFZ)Cg' >00)\3ؑ<.$*ʗ>VKhޥ&tN|}"ccX.mfwmA,eK`Tg?H-EouԀ6責 ua+do]LzN j6i؝3ISJqEwu_ b#sB!l%: x-UiCJ~e ;bD7AL|V:o 94> ]r%M֗c @{K[7M{M+.Cė n $KQ B)[A\a ke@q8jˣ:O K8ͣڣsx@D| n/VL 7Mͽ@ʴSbYc+#"twҡ[<6€)/˃_Zu(KCL~ a8e:.B];9('>kfO y1΋B5bLktVutm^p4%R |C}㻆%{Sd$EbQ5Y玔&mIf[0/ӒORaŁVq 2R W+E7MnEv>ܴߨ]s e܃`%^V/>`"48y_:p&09['#4IJд.@-l Y ]Ӝo@:9p^]a,uJ`o ޶6qzU3wנ[|'Gr LA踵ߝ/*,%hR%wa?^FDoRTy<*XZQN^%r$(ʼnEJ e{MpuklAX>/;8,B6s5hYJUwm@˵HսL?na4,dz]qeUoȚF %&B){ K3_~XNӮ%)mثr ^m-/F"ӰhO#l">]0:%@2V>L ^y|=200g*(F֫^Ҥ'7*TQJ~aQ~ܭ۷γz'hA}9񧫮KDV%F-}N>Cl $ Tr$mt㰹 _s65+7" . ,Y1}23`WtevT6/+u$Oԑ[2Hc)ا,a=wK΁m0']os)ɒ9 zɅ<=]q> d[@40WAË u. GcGLNK̡1G9m·ŗMȹH&KlUvlu)<)Y]=NEnPO UnRV\.Tj51~!o=e{%rț!K{!MU;N(!o7^A@9w>#2-lh)O}I,}D=87^%_ʪ+u T}4K:|")6y ڶ%66}cR+L68NCxg$P{!cuпeiAjimIaвx$ Kn`b2gT vne:OVO_qIPd6اx4R6`ȹWo&0[1ʡzReTjތVO e\W֗$+.g Qx]d`Zփ9G*{<릾bm{ƧkLꓼ 03 -Ƨ8`.yNWhkXYoܥ71 kPf3%S]V5nڛ BcQdۦfAK.RJXi7st~8.b6 6-4OKED*EJ2i6X.r ix?%iEh@x]GAӺ` ([19)x]O(=d/.eĽz݄BV7"y*ވt 榙sĹ؇_]3_7VsԱ%b_T٦ܴܣ$ͻ#r]8d']aºG lmyE'kv@\VK4d2i>|y66]lE-uTJܤ}H[ZͩdJIm3.E9 7ֵ }Uٗ7Aԏح +jλP,PRUkԔ} JB/@b$!>y*Rw٭O$s {r<`ę)%.UQcϞ7$:󋭒=h<@|6耐<ߞÚ">/E+̑!?#LOE$z2[ZzuKXLA@DwߧEe\B9;r=3 ~`OslFuUB0NfkW?k-(EȾayN_|ۙ%C0nLػ>vmH$| x6K2g,οr2G6+MA{뻵n40 so=a'} J;7UM&Od!Zr0T@c -+דٿ0Vdi"_p'`1 qSxoWX_f]w3 8a-V΍ь6[Egb?crq >Is(=_x\D-EğQrNvdc،BMѽb CXJ|xzS<;,@h9 |mmr(uhs+H{$`- .CSH1iG" D&Z?*DV8z)dÒh*d<|R3RLv3*Q/j֥Mv!:y$4':E1OFNcI8~!eb4f{H.`ۤ ti(9ѩ.4X}UgKTΩ;I_$Kqڅ_#rJc/UmJ_ ;aFTܜd`L~ ˌӴ4"oаҳ/=`(m?VE7=0F8"7 ZسAF{"}[ !(?$?]l =Ĥir ǹ ҡQh0g(/ܿTxZuTͶo};02(цv/U0dˌE1`4ȞPܐ+I./YˈB ;&t/3ߵi)V/soch7{HlbnXO7r\/5N]Au@SC),w+0 Ƶu戟YyU7O`oeZJ5a+i^ZV&v󆌫[Z0.؁:aoaz].[įW$|*gRvK,)a^0FK:HJ7<d IuM+,튵L̴HɈjMVh%Q]T0*h9T uWdrZ!aݹ ӳuA] O0q@dfE%?DlhCH4\apNX-X=W Viq _8 B[){VX1Lk( %W2O.)Yk&LBv wDlGWoo A(,3 gB8hLt*m~ksY_A|Re3_8;O023c\mzN5p8@>)ք%3wՇsɑ!iD~͒qMyv=VQfq/j; XEd7V 09[tn*;} ?|߁Y0ګ*W "j #dg-_ eHwDïbSͱD]:;žsX֍LBYK!);?'M +4̮ؗ}gȖ`aY-N2|?R_Ds3qp֖,zY%y]XHηIdUW+/Ӝ.4]ax*6pđ/{?XW&?tӞA0{7tW C8?jk|f|TgkE\͇m,kt9MYMZJ*߶t >qP_V_!x.3.#^WQKe]A)_UM)yT]Lp(Ӷ ӇhuAcpy+VY|i[YO=QGM H%RjĶ!:CWb:Oݘ{O *+)#-|Rhai<)jXN*6P hj e ^vr'2>4-VI`O||r:NA4W5VdACȠ%硤(@nF]iޤ+-z.G.Y*+JavaZiï55\U2ɳcјaBo1b%JFt{o䞹y]{,b\܉QEX>s‰sЁ*O+̊DeEV0ժn᪸?jr@JF6ANqk@s}2p`XO>/t)xe'QRJL,@ Ze7!goSleNdϬe+>v-K<+8kAgԾ"˓£Џ"ӹ#Yv*vF2;P]yeQƄ=l↜2i5];rko b*n څ;,$E*{)H^:׃&QdQ$\s ǂy HK @IvW4 ^^ AbkKrIb[|՛<ř7=Y3ϲlJ`}n-{l~g%r=eۗ3\CY'&=魫y8\dCԁmi.}Cx{EޘϺpz3z]ϲK[BdU4)v{@[FO!AAht:Tb<њA kb aVEEQ/yfŌ;N(e)(1MHue!vGxl[$xH]>VPℶw4FE 2Z8nc_ n;7dP݅t^Ux* iQY%=5CrQ%i[oV> ܭ_Dn, 34N4gaf*OAHz5lm+Ot;q.2>ڮ$\owru YlXye[-zsU<"YĎkjq޳FfdB sK7RakB׻\_6&FyG{Wp|\c; -2 9U{x@x$@FT5qGzYdd68?_?== 6OϻTu4@- O96Ģ_oibYETIѣ%F<ٝ*2r3H%)< Y;ߜ~kۜޛl70Y,]bNS2΁J\44GDj|dXeBU):$iܴЕQ) ROs]آr&`R.BۖteCergDrEj{/X,A6@\3H VcZʆcܐaRdXpsm$(H!ɍUtY踨~Eb3+*Ҹo~qp*}@נN`_B=1^sM zht(yP6r [| $ +"LHٲ1([Q. xsWZSNV蠬>W3w[0~m0}1SۏYP,! dm}._G>삾cdlA : ~, "eT:t@f2u dQNގDrZJF,(& dcp +-R]NTE|OX-_fyb&MzStW.C5f/$dx?)@ǔrP,Pu{ˑT/\ 1TN|LNCn;uN)Z3 qOSYXߕH}jNDV KrZoFWgwt.PɫH3 YޫQvU!Bj峡H鋵ٳc{ʦ3~]3Es7-Nŗ]fiB {7OƁeU܍݃i͘>Mڟ? J6vZ;d΢]L+ %JQG)HK I=frxS!i/ ) JC۬ L c\ɛS$(@#,ڵ!gD~N;<^0Zy^ Q2sxx=eJdZLp'xxk.8 ~>GfDH: ciЩYsK(.5Oh d#tNX% e5d=u::v.Ws4jއU'3N0@Š"@ >XJu[(8]QȦ3C1/G5sTMc? Ci$Bʠh'H1ԤWd0ơV;{Dt¹ VτJgL[@ztiNNv.. >< `4~h]Ied#v\ATwL[U6@L0LԤ;L 6tݤ}S%0PfuAY|t|Jp{O$خHxpxSe$ڋ 4*oèLrF-vZ=Tϧk`mqON&)8n>J~$&PsUFg4q L7ٸ 4r@SDu Elpl&є CׂƵV1w4XJi<{oAWK0qed-kZ wOkejh!ąQ-|txƬ?F?"_Є䵠k_{h1".Em_hmmjt .AQHe!ա]#bh$/$}/ױGwmRjfᥜlt)BAU-9E%x;bxF5B-b~T\͐LF+U;a{ftzU-18KFe */󙾌gnx9'/*V$h!8[Ǘ=A+TuUh3b+ g~(ϛgFSz[#+ÛO[T\܁.aժyWd^ <#RͲd3oTŐ}v#sU%DYU =5m[!۝+w2$jEZdj{:R_?޳>rEbšoFTj;OӬ&~gZg[T/E*׹j9r}xIY& NF49S#UTVk +fF7:(_uܿnp_ʰq+]v/X{ţЊ#僻4lgnѵihwJEp8j2}HwfEUܼ\:kƒ> `! S; @O[22Tn^UqEDZ]у?Z/gF_yzq_1LJ'rwwqPj;S7wa&@^!9oY@¸(mjr nB%'BYsyˏ;p]vK?.hXX\_2'6Cr]D GmlTL(4ʘFҔwJG-R)Ȗ^QiR螲QR5@—p"e}*d-;2-%o~/{d7セ띂FX`lg{-;tl}}^ixseUFN.> ZXu.5^W>{=|,.awQ dW;YF\h0L^~w'' q.Gs Bf&-[0a`-864h5#Bcي-ZFBaЯEJuVoNކ&| X|%ukFV4Q0=uS-D/2/_>Ƿ,O}ҫFezx8'vҨCN d^9+@n{Wd61eU7Ѽ6`\H]NN41̖ygJ1Sw47"'EXċL6>+ZYp /$3ggZ\e3rd JsǢGEf)W3`Ȱjl/nʄ-!=Ag!*gMj(B!]HGϟ>TY712-Pܦ`+#o49Zڷ*=WxJ) l~著\w9ֿwArDjy2[;+>N7>&z #?K%5zSʁR*Q)$Zo,6S6Cq {kj+>'bCh׃53% $_fb W@L`{ma/yU :uBWM7W2;7tMuZG*xxdN U{c5>8Vsޠma\1;5ul@ncU(rZT൫%}vm3귘 ()5pןe #Y"iJ%D[õf;Z'$W_`9:"$ɘ:북r OϖԵW / pʂŝqHNp@F NM>űxRDO Q +7!vTZBvh䟤]7&&ж'lSQZ@\CkOYFCn^"e}Ew Arr-] QQMq"M8)9\*9-vXC1p ;# Den/)>Yũ'ɪ\u⵼XYx}w36zceW'{ w>%iNRToگTML=q[I-IukMɊlP=%S8L 6QwЕc5 _poԒeшʍi(ҋnKLi22]KP\D7,>H+PCdNо_;ayU2s# *kfrm\6)Bv>\:L$X={&Jt5fĕjґD{@#[ՂF,#% M 8Vj 胙ѫs2:GV %_=ECMvbP3*$ÊNl'rlrѝ4d  _IU;-| 2_DhNM &al9V\+Qѭֹ&jso>%{Hx1&vu^ $"gu}4v$øB湍=9Zaĩwx8{H©1>8֝X'IZ;lerU0F~]?+ Cl2O^AY@K_*r/tœ4gŀ̅E^+XBv.;э"+Cd(ZGJJO Z/0@DxvuB.0Wb:e}A{LtG\-$al3)T2KZ$X~tpRcsj50>GuQh&ۙ3Ih@ śqKWN樔 (K ; ڰ.ض)sKW*`9Ʀ(i #ɻxqD;\{<A՟CqM]F.iC`aԶzX⢕]6wiUbXH$RXpR0.أv~AJQr1!yF!8b6R\v;x*VkʥxDԡ ]HTԤ< NxK1а9V['w8N(#4ciW.ɘ챂0˯\+j_ͩsABwm 9U_'xF|W^5-Oh/_8Mk'uG)%ilz^xS:Cۦv&/n}rn~7P/K9("yv-CVNxv-InQs 2;_6_ɧb->ژCt`3 uOiLTܜAMć_3L-{S\o>A:)A =iM}JFBdbW)rW"WZ>`fzuh͓vFĔLn}$}EQhBwNf!7Җ鷦\ޚhػ UxK`8'q32*11QSaAol"ѽ3+uQI ɱeHk3$5L^ԠG]7qI7OZ*Ѓʓ.\⛤:t&^6h)?wL歗jI2pwPb?lm}4TufW}fRۺv6HHSAf97lh'iZo+M6VK )'ԉk* Tz^?(}go-_yYc Qf*O@uv^\$:8-P=X4Ы̿ ͰK$+%>3Ε̆BEn|Hl.&s!X#K{r~!mwakOyjxlz@IdBXC0s ?s >(&lCӗI##,B$<ͯ!Ze@+V* 6d8%$Vc x[@2SPu/k?;aK\0P[/kk 2h; k ,뽰t4δ5Ti '1.be*%<3:`{fTlcðIE}F)),cl˥q 535dXk>qћ!v%f<:C\^:TG>uSdy'yIpELkt拌_p^Tj2w8t˛W^kX r8 /7b-P H8(Q٤7!).ӯu&1?ҒϦy.~fm$VIN'Un 2F[j3= &cY8TKQ8ML,t֡!{ݟʮBҋWT?ߓL&fE>21"Q 0phQC9|wW"S5{]iL@:Yϭ?:OEU87K9q\gjo#tg(`qnY ۣl#lɩ?3'K}']Y\-b~Jh(E?qv rԦZ5e-Td:ovc= 45driU3;(Y cn$SvL&Megb<kAẈjaSB/y=$>hW1 Q<7L<ۢcb+ix*)dgPЏ+8ԱRA,95(ggOddYkiXCN$O}Zz0Z hk;6A# =/zX lMl:zI/s8.Ńm~Τ{[jF^h=jde[E1wk[gSQ"Wql*ޒ@B *t+Ϟ *l =[;Wt=%'T;jv5SBܤ|Z}]$WEA~>7ˌ*L Q ``>m32Kϲj $D?.YzBH—#b-WB((rHQ!l)_1l-韷^^Vi~/Ŀ;OmTzoC2aZe?{(>9׺5,.΋xR\NBtyD%KM T۴<t2[3ń̦cfMQ=W ?Zzw<^u!Mz;Y÷צuj:3K i#_o%=7/ 4"V$6*Gb}KZ>}J wc3_t uK%?_BWoS覷 P ZE9n.B$Ez.HTXgձoc(V iaОJXXϢ>WI`dfL]\݌-#]~Tl5C'}[P6,z<0(f/ArUKyv4ne "W]'M~!‡]N'x:MGU~)3qs+\$ SD~nNy.ltFln+각Z$ߜD%IqdbC}ì.ǹ._2;elBb}4}>%oh&] VHZ(g8g/$߽ў;rdxdCc}f jZo^5mɆsӨ9oEjA\g}>RI 1bO௕} ʨ+'}%0#)A\KJ塓&wp@ȇƪL+)'@#Zȼn.[lT2om0:?be(OhGkF<DQmPr)T+=eL%y"źe ,`lBމ밨e)l-D}eH&#b~ջ}K?ЯlQmټ^* FVU834c?Ɛӑ4ןC(p0S'/xY9^MVLZZ䱧1dp]ZwRomfWAߦ =<' q-^|B`AbICL`TTF,.lQDuX6c?g:0|p !s4xlszim Myrb u,UƲ>?UOK`"a j<DUlS*C c9\7ׯC#X^ Ym s&5I^B.x|-bBfN&jyζɜ eP|ZyM/f4JF5 (nM)h{P5}_Ѝ0[Mi`Am[ixҊ5`ֈ4C)zdž"eIq*] &= 9zq/e[MN1Q Lvʎ~lpCk&SlbN ȮkN`ΥBe-xa3V2 4s3fnCZ A{3/(֔ƝޞY^.y$do"D}U+&4bZ!RT<~}fpw핎/cFV#wy_2LY{A|G>1a֜WiɝR&%D9E"bS& @5{亥夝0_LՎVob ls^vs?;n񖓟wjO#Уˑ =t*<Վ@bڕ|z)68u{0+^}P3"t;u ?>45,5k1l#'KOAۉcgyy%VV$[71V@ `h/A_0%ityNFw(M^bWbALi>}Y^ZS2/%ӿ-ߜcByy>)'s?{,s)I~Yj1ӣ\=_\ƥ!b__c*Y`K2?;:l %Zk!X'J%\k8!~ʆa_rSH5.;) xү$8Dr+ Ţ஗X]52BuRls^DZP|H*ݳ7n8j0D#S ĝB8NXn:[O[vn=Kiqƌs_lEf;Y O8a(j|)1|m*`"`ꆞ [ Kˉ%)ߝ"?&Hd3]˝'z򀡜㽴/{a 0HЌ,;vU~bcmunYM ][wތßm^h6ۡځC]& _c)a4j4.kWpToΟ}xJyaJgĘn֣y-hgW}zeia})xwgo6|SMx9ϙ!v Q50jkBh {D^{"Ez%pNr`]M%DaE}OIPNJ^5KRVLZIxgAvDm]{ xeXO?sr#9O,뎛? azw%Ico W1S#9!S7@)EP9NN@ (\e)vkN<ߛc_O^4EƣK1jV׹WP0ЏL(·8iyбq`H\Cz&qHuݛx{v,*J)H$eyմUx@`\~t;x0/FU<VlѺ:'-ňnu 6^k*>Eef[P "xi ǔP%f^ ju>XAZ9"Fh$ *3V":j, dD ]Kēg\)ٙ|e!uDR:Mb̙ퟀ+dUw˅vB'~gU]6Y@q.IyO8h*M9 6E!5j㬼_8߄6L@ $nh5vŸHCF4ڙ7xbiK֢g< 0T5= 5Ii-y Euuxyq RLJ.v(ʃ8&t:sxZ*U&J.;Hⶃ uG.3c,J\*&pS>`8 8Du 6ԅ8ǩp݈hDJ'˘3If %p;$.U1ֻ?@_X ')*.u+wӳ?hbK: b {R9sevjj#uS읱ɢR".Eg]tvu*ՠPdiFBZ@wP.Cm/3bRVXs6^4왍HOj'h: S?׫ B[L\Q6۬.sV&k9B"0/~D87Ӳ/8R2Z Z-,y;ճФf$2-ϻO~#sFF)#xy-;v P`:=cyc jD*[KnAt-:k*{89WE!y'+"vO=!旈 ~9#=Jc ?Tp^j@"2?L}}8opV([i[e-w3bԭci~< j>j es=Ǥ7 ԻwSsX52qC'y "m^ 靰<\oe7^VǓ|^Q1/r=7ݼԓrW~"(XL-ͯ V@n >Â4WGMG2HHaRɩG͉(T8哒y]J!pGy(5U$Czs܈z <|G̷7Z(IA/Vtro*U{YM So3!肬#Y$uY` Tt Y~(n&?2cT⌗yRVzX昞D$׬1j%r« }N)Wu eO%3^C qˈ7UV)mHW{`@K9\(l2S)wѷOj56?&Sid5 |խ|ԖÄ-N4WqltH; D24Uj-sݬND" Sq)h1syortf' Tݦq2k$\2ek|tu1 mx$1Wa @9|o8=:of.CE]uCotk,GƷx!ݚaڎ?xy'Ϝ L,I-a_)OsvF;BZyO0sa-OdGN̘JqV0%#*=VAYeG%)F>.CR[j0vöMkmnռ?y=^ー8ra`-* _-<2 !Y (ZTZ"H?y b$j7 ,ShF;FNH~~Ux@!$m]r"FHbYd|ӎT_kk`R D<tH\N'zmpĨep_MzS2L'S%GB<|KW Saqc"g1w$eGl!`aԗGwype2xol jO.xVW{xM|#ۄ#e? Tr}1ۙ4pjedo +pm~0bfC+$;L2 J?vX UgQ#<$s}",:3*(S1`cW)*-qݓ+67r;*Lƫo(qK,(Km}S} l/.ҳ eAC{FJ+y/%BaS69Ɔv$ݷгrN*T׮ v֫+(AKn @47 i[db_(U3 yg#ڒhkaK 3ych'I)R`k $.]ˣP[YZBy2'PSs54#35BzӤ5'p4cmx< I̤JoiKHx@8¾RH7!,+tab7RU $I=[<tm08v9knD\ aSn*Yk4f%wIig6sQnfYeux4֔ YCT!o"#kTZj #J}΁S)K4מ^Hïevr6m;ŹJs!T^1U#%פ3% (=1Fđ@R`9yB%p QDm]t{M0&aRԡ _ G b"ڢr283 l5PiצQ1ei0dxES=c'U˔`87f9;]gBUl@$]U/hk Xc?/((C9a K2a8Z|苊ܗB-,$ECi Û? nf6{--hX%Wb?k7[NZa%؈QQf0SJvwb.'݁2OQ[tw=ݍ骘waO9BG&YD\}1AEYDHݧU u.}H-0ȳHY/!A`Ti3j梑/EͯarM͝< 0uA-i\8D&B|g(ȍk󷭏aA&p`Ua5#ѩW >,u?zaljPHFy-E~3|O^}ς6qޜ֛3EG]stnx98Z4ˌ;%xi҄ݗ`r(ŋ[AuH-k`ĞzMy r/#ӘEHf-V;)T0oq'cAI,X%sHUy!&$qD(d988jWوhfܣ̦nl3tᠴ٘%\g?AC:Μ}3pa5 d bC?c]I]r<>VƙLzFףN=%wt}+# 'gcB܉$}:F:n|@eWy\ 9/r׍3m>2+yṔE \cDtR) $98S#Lc[ƘB+[Zc9D=g ]u=+X_^p pPq[`k烡pM|F8#`6bA_hQz6gsFXݲ%#Սb+i G?m6l5=T 8hn/C!9-$FpZXU=̵c$â2/?Ec|wE:d;*.{"҈(f$m ۦ>"9}* e7on'/+Ť=G|-JV9fE BvƆ6٪[դZ3C`p9>%=}`u5Csqo+6{yqM#wr?w|q(rIg${0p) ˝i&ğUl?m*>b[t^a3nܔt=LTHYW4+ 牶CU@Y?NS:DGZ"Z Q=髬IL; #nc:0f%HxzDL0@zݐ-V3[wLB\g놞2'-@sBV^X\8l&D8s쩖f֪T@/鋹 N gPahp,|}ܽNagS4P$дo Vf*S 0PĮ3-"v<-2{(ى/oRpܲS4,-R=s.#4ǣ^EzɷGZ7 ,}4^<ܛS8f'~V 3[iL+CR H ۭ!JfDwV࿪W1;S+kN 啢jz4nE8z]UfuB4n4Fq kf/ fbfe`tv\Ze?YE#<#/(7ZML؃ &9injb\Y.fZ|UL敁B@N4`#~f~Xoh fq|#3LL0Uܒ|8MfZCb)?u1 iWZ41E];`!8 ^KCy1;v:$26ͭFl_Bw*HGN|jxKYf2E3G"%tW&sσŵ"(b^F%OCZ9B́w&rWlM ccC@.gơq+^Twb9u%i;%j!$Ȁbjnޔv 8ҥ*8KkX}m뇨<D> +NO2k18^8Y7óq!VCS&j BWxQKRO,~,˩: ǦBd}&Y:>N m[h~U5koqRifC_򗔻G@f&SqF㐳rū9, yVPM$c ]ӽW kPw,m\AűB"N?^]SPG R4–V{ M4Ø3fNrL48$1)E Fno=xU*˛zuj7ҡm!ghujaBI ҍ]4h'eۨ!y֛<s)=D4DwۼZ"}0(:61za UcT>C8Ko[5j"fU0<4wԒשm< 4P CM;Plm!`x(眨  d.fDh |&ꃕfgMQ0 //wԏX? Co Ұd\JcI3&֤ ye#YF# RMZ擨/ł֛5u&'bfMX1rC*aӘ0ַ|6&qUbG& # 1Dw>`6D-;Zmdq1$j!EpJ:36KkC@x4)5B39<7h`"V&y*>{f\^_&wSM{:u W(`ڽ>yG?\[RɤyVEadr:MtJ}2G0yO~=ҼKRVa~Ar*̋cC%uB"6B+#J:bԩ2͵oϑѲ;~.": c e<Լp$q SSrК"QVmԄQt^P i넛:421A @dNQ+]P|>IM~*姿sF :7k?.ûjd)&e]pO LN2@fux 3X h7;MCb~l>U/շyr! N=\٠ZH0\19rqp #~!Bꬱh ~`j}g,q諡{#*=: _|z\lB_QP= eӳR@MEF T XNqCF?ٽmK0&x 쒐aژ6AsZ_l>XJ8kdm}w7,;6a87>wR-'9ڔMrqPG=6{)/J^()&RQXX+fִHQ'AV{0]t@^Nsڏuc|Rk۲>LezD qZ>hG?o}iN?f;fnnҵ!FvA9`io[R*U^ ^r vT?i5(OT NɱP/AM\( ցtVWFߙX,_Ez@seXl0~@UMOXގ<,og-O% *5ȵX2Cyq/)S. *ၶL2IFF?N0@T%\d6R cz{| ak;c+\ zTOleNP@/'Zvq&d*# Mc0EuQ@g%ѥR[!ZЃ A>4vP-yd/7٢?Mgʦeo\!ǫ=+2HѤ< U :Q Ռѣ +y_޴g/ 8zd=:(΋N{y^\AokfV ]hrs밶TXT絸D:WxiNWCpjj`D ol۴K9ܗ u0CRȰeZ?.3 q䖦TjYF3չm%#v'? >Ҕ>'9'g wR72ʶW`hYMd?f}!Rk1R"OG8l Еӕ~wƚj]  #t\Uf",CVfjM^Î*+و\0̓?3j4J`;2}2"J [jW†dг4V[5k/*t8%<,NgO϶c3`M<&3I,m_ORo  )wI-,v$dk'l5Mj(Lc0eZÕ"_֣9㭋OZ^IK/4D0#,@WxL+>&3Cs:r@/F+ưabi֋8la] 6 Y"piT%/.r`&Bpځ. (+%C5X;`gJWJ]$ a:9= d!nYcOtOL?oJ-AzP1RPvds!"Aav+x-!V%g. nv׊{k,z2teM hn+<1~ߪ7d ( )0Y eJh!X鉶$b=%:E%м|3W)$wxꝘ:8 0Y}vlZ=W5sZIonH,}0Ssh,Y?",Z'D&'ɾP`[khsZ'G0[. Sgdk#厂rYz>pT:lN~kSS's |`[6,J@è X"%BO֐,x<,;"x]e#?lv `]x< ؞̈?s?K.`y>O)*' ,ODg̈E,7S(?Yep6qOL^-5 MXׁ;&?>2*E.NG[(9ߟΊ|[oZ@M7Ǔ^nK%85zQlFxn+TV`c<}lS&x8RѨ uQOrJei)ZG[ #EѣwdS޳B@jH# ۚpd=q= ;@|!Cz6=gs8S*CY`hSPeqcMƤ4U55mxgǦ/b(~}>ĹCܰ.#|StptKc&## (wD{i8ҙ~D!KԻY}dAVsP|õSn#`R0ms*ooBW} n_J^}G5r5>Gzڻt_{v4ocV҇Nsv T%Z #rYkrYۘ.hɰT7^9t5wU8Lj7/Q"q{(\ɾya/}0ոm'ūpVvJoƚR^Z=JI"%8c(" Ltҁ$F6h `\S %s<3 f+v>(w$|R*+ &ta9Folƹۂu!jb#fhZ.'}M9-"V}; k Mko:FSTu wdPҦOuJ Br] *Ң2m+:ZHdkя_;Oէ9Qu8q.H˲Pc+U1.u!+W0p=g&;ƾKlqՠշkUv/NQ^@9(ϟe.-=TIt6z㐄KjRM8v`Ѓ*6LZ,} e 8r \6=Td- J2`M9,& ,b]]qԀ[6@@4 *. f2t@7!L!<B~ _s evm2 ;ZQ ,FH9cOlLÂ>r]T1Q 70E暪k%Ǻ\k@wrzMhv=U~1$ #:} TFP[`@}09KfAF*a&LN3KFROh ][8d᳋IF(# .4]D狯ҀapN$w1)(jB#vi4]{јw+m|pSqĬgEDWZ{Ue.;> Q3zfHl ,zZd Y{x+QijQ" GPj6@ L`,O:d ,Xժ&*0C%JAV$] Vm)&Jin's)7K۾³"Xfue\]o{1,¸!U` IS-ӂo MXc*dЈA'@ԤR ˶M$;I¾#^s"4iȻg y*?XT'_ %:$/+uΕMU̧w2 !- y~փ`nv0|rW/R[]yYgfMwX$Kk?Ю܆-%+n~ZGK]KI'wX9,S#ε ib/S`X P@nbA >KO7:g ziA(cD{G率RXɝ)e0NV*SXJkAr^Mw<Id>n|nI\$ s`zI~x<? w0<ѢW$!].)ƚZb$-,ۨstYP^Bc&rp-A2\o﷢g7#(jE'r@fƖ,wϸ- $تz74ƏbsiJRG2;6G@?H yoAAu !=~UL,>_o%#,p3Wqk=/Bp;S `KבBCK!8I 1_> OE-NYUDː̝~VkUx~XP8$C ^C;&fBjm>Sc \>s!{ /k~KwZ:s Y )#f^aQܷ̂]J%v۫ɂ%͑?: KXi%Ɛi2 UF.(GkMD6fo7aSEZsxl5GSWO)9dgsdzq/B󎣋Tېm!3,38͌B3fƠ@DJ2> hbϙY-יw-~l=/1,HTg{$(}&U>tpVN潣$vR[ ɣ5(8` gx&|ܫÂHr?-W8@-Y||aDNׇ3B H)XҕEԴ~L/(efAma=wK-o3-rsu3aC⃽@\>3]A. W8H£9HAve^v5咐SYQzW _ֱ|4e5-s'q ΃.(]GT#MdbYM1Q0,j.`}dg n*APurd,}/D 8Pd*bä\Mm'rB4~&pVqu9-ɪOU,P6J9OynmuTpG :}W?ܖ,ף"Z~S;<3 L~[t - vrq ~-ˮ/ṼDܫ: 986׼k_Ool$Ie@\TQф鵘:# ʠ?TJ U[J2d^NHP^,=wР#:p5 -Ù=1$=6vGX (J}%H^f'2vkdA~ QYSG}5) [VNu*zNXȽ G4a~5y8ү =l0m*Y1/bY|~. !*MbyF"%9h.,熎\Q: fubWqp`G!@:2 ]]T*yC_a&WHc2`oG؊fm0+@|wJQ9v̪<-Ng/yME^[-jƛM"2a%%>+ce)(Bx9DHfX!UNVdLy׉*?W|2q3%®`!,,Yޯ'̂-{2+ՠUʇ*:?n;1$eaإ;m CSb#xK؀4Ma/\BjIRl#.0dg< $H(3$ M[CXww"W'bYB>7?Pk'3YRXuCKYSՂ%jf%5UZy2+Q9ErjUvGLo$,1g`v0 w #=w[1@ڃBAz.)Gl~Kߧl&7h 6WyoQYm^n/ sIeT{G RYQ,f^ Y?3wޢTp?dk|A*L c;Pcdjf^Y:[?_Kx',QVsӵ7hЫ:+ hub_S^w/@q8aP; 9˜ zw-:42$ǀ2I&Skpmk } ]FQ> P/nMmh.DUEҞ@e87[t"kadw^|1JJ簯;Whgl35 >Wn;cG}=?Ch(Q Dfq1 kAn$IuFH23.wbyu=.L厳9Zٗm5W=ve0\v(6׶3X#y [god[" 9*a<aNw*o{j$CtIov^ձS;*6߷ޝj? ~6 UŸW3#(r#7>p:Yu"^ҳ=6y79(ے*;4d-=5Ţ2>joˉ>9aLsy1Jlit?D%[N[jkF-VōgD*,N' 'O[6 2.+>f4vb$}2ލvI rr-rRPn ȞHC qjʾ :3Hp*ZH :Gkf0ѡ$bQv=SԿO1SZI2"y\;+Cb9tE1/-!: J5)8?ċPvh2 :JT+#ZZ1j7WfT|mIۓU\Jv[?~O" Ǒ xJ?ux7bMkrLDn\wdK &q&1 -7?JUN;#hJi7| d%'sK0vEJ<0\_ ^58AFY%WIgVoꓶwr;_t.̚r2;NNʴCZOxh? \ֆ[Lx؅ AV 'D sꡦ˛cm'-]_3_v+hDE}G"OEcd%wzQbw!mN]P; e|{J !`]cL.a.U[:q,'t:LS2oSx "b)tzZm7E;<c~R;,Ԡs4Tqq`G̤D:9r␊\_\Qӄa{E6eG~y\MEг8iuHg5A&ZÊhE4У-DvǡEdЋe؆4-|J1hK$b_.yLo'ܲҿ%gGwJ%3wܜarKFܘ*:ؖD%׍g#=Kג8nqG*-)!谣{C +T dNrng`j@RhdL[N=ʞ թO//B%ۈC͛a}mƂJEV9d nX5af6Z*hsד)<.R`VI/+QcAs5jP=}Td3 1*pD{52ҢM(Q ,u:/h4#w ޔ@j{A9u;l䷵w¹PݝUY?,Inr"s.8riLnm~8%LT*qm.oT~}2 Ⲁr˅KC7O[Ubs~Pxէ&Ψ և,Hʺ%Cڶ޼.QWN .Ͱ6FJwzM7 9gO }p\'z3REeh%.LPwkG3}B405x򶤻WժQJ G^lݬgdH xp8@nu1r-V+'O* uN2Bq鍝.[ǫ,E=>Ox㙛\gfyao|pK"V?2QeȼwUҳ΋j3`#f$kHW_T}{a"+&p]C</PT zByJt;Du Y.(l@4Dzɑ d>Pxdu[HD^&K!p+q%zeC­h]-1#Y:kpre酡qn~Uܼ_oţs!lp_ڤ djuGqk x̃Obe-)ks~l4>;MibX w3Ӡx|vZ90Q-t{bxsTd| Tʛz6ӊ_jBУk(.zbA)pv7eG ѯBAXVfh{AEt&# β k+aNVRhȻjk<Zժ7xя#2ky= Cyt2a@aaͱ˾" F_@Xx0OX'ƥш)C1"7VoYO~hhhzk uD"[a+"l'?h) IHltGuWrFNSHzrum 7L*D G-Vznb@`c 9kTh0?Ԅ4iQ;pXZi: [2Oᰂ wr ڃ2`Y/\f j`G,;3e[ic1wcj 31biX-fof端Dl1X3qu(P>h2?NE!)C+/= =]~ADD>I;ѺHկ_ғ9?܇Tg߼GwA|yTz r }FbcK7 CPѱL;/1XdUIf[}_k„Do|?@uVnVI=Rf4Y"$k,ϹتPGõ˕m!&}$B羨;!ue 9 K`ĴJӁ$*<L;t{c{><gZTUT  4Hyk8K}N9$lڻ !_U.1,N$aoVn%&(4""!2->/e켳ɀƶ ;(WsW Eq2¦Dd,um~$\v@v/G  栨ɜ9xᡵa2$36^7!}fpGۉ?{u5֝4-P>uCX 2AD* uoYPlDܵZ #OBQeԁU2b/gP`QE0h8.[%x6[Ҕ)zD%-sz'ZʻFT!l9t0O+\,JSmArUH4i0]szު2H^LB652' 7o0=8T$ʪL1:̮i v_zιlh _Z|}ř%SVW n]"@SNQ|h > {b[VcPE>7 U='9> ?aO#V<뼴:# G;5ax l3_Fwy~{,7JY,ILaYc:6|;Du6$*B.4{p_7ϟ ˉ]MZ˔EI^6J!s {~%nSPx$v,mFS{$I!3d]] w 14uZtnuUE._kL rb@* )4lѡqH!ĵr1P&F#0\Ω*H[!_Ӻyj}FCԻ 35}eOWɉшeX\햝 s^pt^bHN oh^[W1}'SQ+]Ja2 K9RY؁mb.]rk,_1ڧKwS$7 TQ$. |MK{lwS4`nT76d%ޗ'`/7b=1\tKr,tE0\šWfPm,@}pDN67kG0 fIٱԹ ?;o `yUIo:٨BG#U9O>[ TW݋.8&nmUpK/+$ #/(hCjNަ)xxUMVNt@-ߖ)DX ٖ\Ydm̑ыgB+ w:`ok _凬ՕmѢ~~7hT}"̖^ ) 1Bݛj+6DU\&N$ǭV@* ea.Z;]*'ƞ!>ݤ9c0+%WpxLyTL)-I6aRnߡ%7PEK3Yvc㉱\>U_ڇYCzQS]J˞[M#(a;*epxU֚fjrߎ㗳sg)|#%StK.17D\0sq[ȋ_DԻ%-z Wp5tu&# /yZ>P&@?tWRo/_?8y;rZi]'Џ>߼Y}#oM )7U.EFblW>zY= !RځǙYyk|6L L.n;F}kGOg0puL~?:v"@tkg#QEȓ5ؠ$;"ڴ^=e_> x'4IZ.iIҟKb yzc*\[deyŗMLJK#+ʰTɗ_vƂU'mُÅX3Q>OTWV[ Xs*kK|a#=~+.8?}Wb7<3 !m.2ax9W3#Wq~]*YjzUsiiH61: v mo)] ozeZ}q֧HY޽}xK?6>i)}C>LׁupFEAlLVP$%WC98%<8}?rʹ|BMWLD6mc(뗌C #YipwZWegrw/mMNn 5w2VI&s ” 6SRxȘրGt=vm545=^4gHUV'TEZifֶ,Bh6.@aDw})tMig1T kRU2#{%sHO12@ Y%2.6uG2X6.ؖm rȸ"Sf^GܑPև)W\gP@n ;`s7(1,eMg\BģD2-^TDD\ 7mxroqn/pt>j7^ d#R-0i1qsOqHepvTݺY ݥŀ(;YaL: sj[hk8h[m']拚U|-:4g[?( 5{A ?+lN2+|W**h-T&X!"b jڭuP8Us- &HAu 䥕hw/*:TH<Aj|ͥy09YR \YU dbB` zլKM!hگBݎMa9$-{,Il62ڏoPFjm@mC+2ؒF78 z=Iւ[9r$} 6[LD0 U!n6d2ʵGZ( 9 e*{v7V0rs|py !D_E`s+Y10ǻq"(dƳ Z{t6VVlFgk;,Imox/5#  a;{6Le1]n#ƴf) |Ȍ ȬDCU$9&`a\L2$[һ`b kj1 {:)H┮0&P=z閺3 xbO|h=v;!6"l!աN)kW<1xXl♨Nl$C'fGp[6:5LKo(T_;A{B/ ~2E^hΓ H581|zj>jsAO $XfIqRF1VlFc#b{.D fH󑒍2ӽ'ɍR(ƨ4PHOǽ 0>NCt4Xt>Xz~Hʈ,쀤\Uŀm?Ņ!pʩ) QEhǡ黏.œSx> 2ʺ2!t𥪚g̥Sy⧂7wO!$ hνm #-ɦm! 7no??Be<89f 9paw>rBCbt?"4`%538e7/HzٛL:yLY+a g}`3ԀoH.Do,2޵L_[.rC=9߻ ݈Ry^?{Sup3滺QӾq:_]L}q ;~@n<lߌk-bI5 8Fb֪$4F@$O4KV0i\-O#WPI)}fY}O.S NchfH)mreIZ;WiӔYwGn}k/#kL$ 7 k7nF5>O/4 1pH?QkQ7 Hf,™9ȬϚ*< N͓jRJK ~c4LV&Aw/ w}&٬RPekE&IRO8oԴ%Kx"rQk:{ͩdYqP-8Δts_6?( qͫٗ8BP;`ໂ .VێMxfϋ)wU Ɓ Y׈B-`(y ǖ@ۍ@ә'ISrHN6%wD/[' utJrFP*PG'Swxȗa9IFMӪx8}@tF7Gsse`dEِA^ P(ڣN yv ȩUU+EC 2{vw_'g69wrZB]=Ks~mtGg t 't7ݦTGO{YZ?}b}.,ZSpߚ>zgBBT[+Vic2Qo;)Į_]ZpK\ە9Ȧ jnƪue I=&kr҃k'A :棛ˬxvc/]:*}X޼ +`NLh gKU'0 Xi)e/bG',xK7{p4;ڿ %~/@ސ(NJ" U_k#CB`>vbK⽞wM< BRyg @8) e P^Zs_-{ )tBiQv-YԌ&Φ~?GQP/(Ԝ]$X5^-ąW?qa;s\0o/9 SiÚDI##;" 'eȈ| Hّӹgek>RQ\ryPY4!z?V,S44c0&S?k!c8NSC q&erFYK~6#hԠf@ *܀O?htFQ`9& b`V_o2MkTBV#'ޑqH/*Gw}U'%0,w>M2cD굛wb}}2W=vn#ꨂ2{y P&p$a ]5֑B;k$ۘTo)v;&pga*"f6}})YjYW?BW?!)A_@b]a OD %tH Ρ&ճFv"h L$i )n%Wf6 }F,Sy?|M?!I[iƜ3&}'I a~e^6V6J6%xp]D"]b6Oe?_ԠIw`ټR˫(-D)+nÌUR}V4@s Oىw33e.}|o@2ٵA$ C(i-+'>9aw''3Ԉ4Fni͇|oAj%$4/ otվfj.sP_,2pD{`kAP?Q%dvH|z(+홮?W`q! +bn` ,0|y6 lˮsҽ)#yKimVuQÒuKt˄_tf`34L*Tp8mչ>G[鷓ApN5w-Pל C1e8&/ %"42ލ umC;4:43Tn/8V pܚ@nj~cș>*fzDQr Ny_Pr%oHn!+ Z+nZ 7.iU`+_ǧ 㞪 99 XЯ yPk:ZD\-AgapW.OWd4.?HI^<9+](UϾ_MDa jFg{+}gׯЬA 4DO7#鎄 3(Lb)&'{  Iū_txbLtܜ9١ K a%3LB8u}?69 _F,PN{)L;+ζ!h1flT0I8Gm$QLmkQ1#PB:XYfY .ac@xb\OD %$C?k1WH4Q}3e61a!ڿ']#R,- +`ayihyŠ \[ gsۈn}܋kCRBO߆r-ILi+8/)r _lU }#"`Uf3 _g6YsQ_]L Ё+rŸ1HX!XM.6 1-h'=\rN[B*5Q8h0+s0 WtZ->3b=oR+$Gat秤Jn ՄZtrˮ0&xq;D.m˚L:-.Cg+PA,~1I2nDTHg)/chOG6 L ^D2>O:›GY &yodU(l̎ݾvt/kuY~qhi"XK>ېxMV۶翯$m8>Ll\$x"=聴H]YI2R R< ;cSAcY.vdMDqtɽN%!S辎5/G,^7n1ȱ 5E&7Oi~ j0#1E Y%< F::vG(E~]=N2gJ7־W{MkG?"8+Xsx"rCkE>a&L3ˑ iEM| Wޖғ#!lԏOs#X몍|P%/1&|mܐs(TU;G9րEesٺĥ 0vf .Yi QNZGU)]+CqɪB>U",̤u-J YZ