mod_session-2.4.6-97.sl7_9.2> H HtxHFa ?*}},#&'Ar\"wP(š}DA;fcf4dd404904d3b34b8a470d02817de4f0dffe0b`=MQ4/Zĺ(Fa ?*}}y,+Pjw*I rn,s3P6k>3x?xd  L :SY`x    . 4LjJ(89:)GvHvIwXwYw$\wH]w`^wbxdxexfxlxxCmod_session2.4.697.sl7_9.2Session interface for the Apache HTTP ServerThe mod_session module and associated backends provide an abstract interface for storing and accessing per-user session data.asl7.fnal.govScientific LinuxScientific LinuxASL 2.0Scientific LinuxSystem Environment/Daemonshttp://httpd.apache.org/linuxx86_64m\x+\LaaZaZaZaZaZ51df0ceeb7dae9922817f4af0554f83fe01d6268025ee08260aeed69be3953d18142c1a461f47f95341884f80a1d96ef93f617a68477cd78f5fd4eb482fdabf7c10125940b828e3fc4d4fcbd352a3b4a33e1159c2e78968dc3ba8f144dfa78366bfd5eab62f7f47b50b2b67ef508bd824bb5b94d8a8331cced5e0da4af83ba92b3bf0e40800f7a863bb80b8d2b1df12c6d829d1ed2bfa191a9c82d314e05592aa69824c9eb2545275c6ceabc4d3f87add34e9967b586b428ada0b2d60837c628rootrootrootrootrootrootrootrootrootrootrootroothttpd-2.4.6-97.sl7_9.2.src.rpmmod_sessionmod_session(x86-64)   @@@@@@@ httpdhttpd-mmnapr-util-opensslrpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(CompressedFileNames)libc.so.6()(64bit)libc.so.6(GLIBC_2.14)(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.3)(64bit)libc.so.6(GLIBC_2.4)(64bit)libpthread.so.0()(64bit)rtld(GNU_HASH)rpmlib(PayloadIsXz)0:2.4.6-97.sl7_9.220120211x86644.6.0-14.0-13.0.4-15.2-14.11.3a@av@a^@_}^@^|@]z@]^]A\@\[+@[+@[+@[*A['[d@[d@ZZS]@Y@YeY@YY@YY@YdYp@Y{Y{Y*@YYw2Y@Y@Y@XXg@X,X,X@XƉX•@XCX@X@XXXXO@XO@XO@XO@XXWWW{@Wc@V͛@U@Uݪ@UoUȒ@UU@Un@UY@U.RT}Tto@TXTG@T2@T @TTS@SS@S@SuSǺS*@SSRUR@RRΏ@R@RkR1@RsRrF@Ri RM\@RC@Q@QQޞ@QQo@Q@QQ@Qo@Qm=@QQQ,Q,Q']QP @P6@P6@P{@PPl(PiPiPiPiPiPYPQPIP3x@P3x@PPO@OO@O@OЗOЗOF@OF@OF@O]@O"O"O@O@O@O@O@O@O@OOOOOOleOleO_6O_6O_6OU@O8@O8@O5OKO@ONNS@N{#@NoENdNBrN)f@N&@N@N MM>MMn1@MdMRMF@M(QM$]@M$]@M# L@L@LLMxL7@K@Scientific Linux Auto Patch Process Luboš Uhliarik - 2.4.6-97.2Luboš Uhliarik - 2.4.6-97.1Lubos Uhliarik - 2.4.6-97Lubos Uhliarik - 2.4.6-95Lubos Uhliarik - 2.4.6-94Lubos Uhliarik - 2.4.6-93Joe Orton - 2.4.6-92Lubos Uhliarik - 2.4.6-91Lubos Uhliarik - 2.4.6-90Joe Orton - 2.4.6-89Luboš Uhliarik - 2.4.6-88Luboš Uhliarik - 2.4.6-87Luboš Uhliarik - 2.4.6-86Luboš Uhliarik - 2.4.6-85Luboš Uhliarik - 2.4.6-84Luboš Uhliarik - 2.4.6-83Luboš Uhliarik - 2.4.6-82Joe Orton - 2.4.6-81Luboš Uhliarik - 2.4.6-80Luboš Uhliarik - 2.4.6-79Luboš Uhliarik - 2.4.6-78Luboš Uhliarik - 2.4.6-77Luboš Uhliarik - 2.4.6-76Luboš Uhliarik - 2.4.6-75Luboš Uhliarik - 2.4.6-74Luboš Uhliarik - 2.4.6-73Luboš Uhliarik - 2.4.6-72Luboš Uhliarik - 2.4.6-71Luboš Uhliarik - 2.4.6-70Luboš Uhliarik - 2.4.6-69Luboš Uhliarik - 2.4.6-68Luboš Uhliarik - 2.4.6-67Luboš Uhliarik - 2.4.6-66Luboš Uhliarik - 2.4.6-65Luboš Uhliarik - 2.4.6-64Luboš Uhliarik - 2.4.6-63Luboš Uhliarik - 2.4.6-62Luboš Uhliarik - 2.4.6-61Luboš Uhliarik - 2.4.6-60Luboš Uhliarik - 2.4.6-59Luboš Uhliarik - 2.4.6-58Luboš Uhliarik - 2.4.6-57Luboš Uhliarik - 2.4.6-56Luboš Uhliarik - 2.4.6-55Luboš Uhliarik - 2.4.6-54Luboš Uhliarik - 2.4.6-53Luboš Uhliarik - 2.4.6-52Luboš Uhliarik - 2.4.6-51Luboš Uhliarik - 2.4.6-50Luboš Uhliarik - 2.4.6-49Luboš Uhliarik - 2.4.6-48Joe Orton - 2.4.6-47Luboš Uhliarik - 2.4.6-46Luboš Uhliarik - 2.4.6-45Joe Orton - 2.4.6-44Joe Orton - 2.4.6-43Joe Orton - 2.4.6-42Jan Kaluza - 2.4.6-41Jan Kaluza - 2.4.6-40Jan Kaluza - 2.4.6-39Jan Kaluza - 2.4.6-38Jan Kaluza - 2.4.6-37Jan Kaluza - 2.4.6-36Jan Kaluza - 2.4.6-35Jan Kaluza - 2.4.6-34Jan Kaluza - 2.4.6-33Jan Kaluza - 2.4.6-32Jan Kaluza - 2.4.6-31Jan Kaluza - 2.4.6-30Jan Kaluza - 2.4.6-29Jan Kaluza - 2.4.6-28Jan Kaluza - 2.4.6-27Jan Kaluza - 2.4.6-26Jan Kaluza - 2.4.6-25Jan Kaluza - 2.4.6-24Jan Kaluza - 2.4.6-23Jan Kaluza - 2.4.6-22Jan Kaluza - 2.4.6-21Jan Kaluza - 2.4.6-20Jan Kaluza - 2.4.6-19Jan Kaluza - 2.4.6-18Jan Kaluza - 2.4.6-17Joe Orton - 2.4.6-16Joe Orton - 2.4.6-15Daniel Mach - 2.4.6-14Joe Orton - 2.4.6-13Joe Orton - 2.4.6-12Joe Orton - 2.4.6-11Joe Orton - 2.4.6-10Daniel Mach - 2.4.6-9Joe Orton - 2.4.6-8Jan Kaluza - 2.4.6-7Jan Kaluza - 2.4.6-6Jan Kaluza - 2.4.6-5Jan Kaluza - 2.4.6-4Jan Kaluza - 2.4.6-3Jan Kaluza - 2.4.6-2Joe Orton - 2.4.6-1Jan Kaluza - 2.4.4-12Joe Orton - 2.4.4-11Joe Orton - 2.4.4-10Joe Orton - 2.4.4-9Jan Kaluza - 2.4.4-8Jan Kaluza - 2.4.4-6Jan Kaluza - 2.4.4-5Jan Kaluza - 2.4.4-4Jan Kaluza - 2.4.4-3Joe Orton - 2.4.4-2Joe Orton - 2.4.4-1Joe Orton - 2.4.3-17Fedora Release Engineering - 2.4.3-16Joe Orton - 2.4.3-15Joe Orton - 2.4.3-14Joe Orton - 2.4.3-13Joe Orton - 2.4.3-12Joe Orton - 2.4.3-11Joe Orton - 2.4.3-10Joe Orton - 2.4.3-9.1Joe Orton - 2.4.3-9Joe Orton - 2.4.3-8Joe Orton - 2.4.3-7Jan Kaluza - 2.4.3-6Joe Orton - 2.4.3-5Joe Orton - 2.4.3-4Jan Kaluza - 2.4.3-3Joe Orton - 2.4.3-2Joe Orton - 2.4.3-1Joe Orton - 2.4.2-23Fedora Release Engineering - 2.4.2-22Joe Orton - 2.4.2-21Joe Orton - 2.4.2-20Joe Orton - 2.4.2-19Joe Orton - 2.4.2-18Joe Orton - 2.4.2-17Joe Orton - 2.4.2-16Joe Orton - 2.4.2-15Joe Orton - 2.4.2-14Joe Orton - 2.4.2-13Joe Orton - 2.4.2-12Joe Orton - 2.4.2-11Joe Orton - 2.4.2-10Joe Orton - 2.4.2-9Joe Orton - 2.4.2-8Joe Orton - 2.4.2-7Joe Orton - 2.4.2-6Joe Orton - 2.4.2-5Joe Orton - 2.4.2-4Joe Orton - 2.4.2-3.2Joe Orton - 2.4.2-3Joe Orton - 2.4.2-2Jan Kaluza - 2.4.2-1Joe Orton - 2.4.1-6Joe Orton - 2.4.1-5Joe Orton - 2.4.1-4Joe Orton - 2.4.1-3Joe Orton - 2.4.1-2Joe Orton - 2.4.1-1Joe Orton - 2.2.22-2Joe Orton - 2.2.22-1Petr Pisar - 2.2.21-8Jan Kaluza - 2.2.21-7Joe Orton - 2.2.21-6Fedora Release Engineering - 2.2.21-5Jan Kaluza - 2.2.21-4Jan Kaluza - 2.2.21-3Ville Skyttä - 2.2.21-2Joe Orton - 2.2.21-1Joe Orton - 2.2.20-1Jan Kaluza - 2.2.19-5Iain Arnell 1:2.2.19-4Jan Kaluza - 2.2.19-3Jan Kaluza - 2.2.19-2Joe Orton - 2.2.19-1Joe Orton - 2.2.17-13Joe Orton - 2.2.17-12Joe Orton - 2.2.17-11Joe Orton - 2.2.17-10Joe Orton - 2.2.17-9Fedora Release Engineering - 2.2.17-8Joe Orton - 2.2.17-7Joe Orton - 2.2.17-6Joe Orton - 2.2.17-5Joe Orton - 2.2.17-4Joe Orton - 2.2.17-3Joe Orton - 2.2.17-2Joe Orton - 2.2.17-1Joe Orton - 2.2.16-2Joe Orton - 2.2.16-1Joe Orton - 2.2.15-3Robert Scheck - 2.2.15-1- Added Source: httpd-sl_index.html.sl.patch --> This patch removes TUV branding from the default index.html - Added Source: httpd-spec_sl_index.html.sl7.patch --> The index.html file is outside of the source tarball, so we need to patch it in the install step - Added Source: httpd.ini --> Config file for automated patch script- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted request uri-path containing "unix:"- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending a client cert to backend server - Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout - Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool concurrency issues- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized value- Resolves: #1565491 - CVE-2017-15715 httpd: bypass with a trailing newline in the file name - Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect - Resolves: #1724879 - httpd terminates all SSL connections using an abortive shutdown - Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive - Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in mod_cache_socache can allow a remote attacker to cause a denial of service - Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in mod_session can allow a remote user to modify session data for CGI applications- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect expiry time- htpasswd: add SHA-2 crypt() support (#1486889)- Resolves: #1630886 - scriptlet can fail if hostname is not installed - Resolves: #1565465 - CVE-2017-15710 httpd: Out of bound write in mod_authnz_ldap when using too small Accept-Language values - Resolves: #1568298 - CVE-2018-1301 httpd: Out of bounds access after failure in reading the HTTP request - Resolves: #1673457 - Apache child process crashes because ScriptAliasMatch directive - Resolves: #1633152 - mod_session missing apr-util-openssl - Resolves: #1649470 - httpd response contains garbage in Content-Type header - Resolves: #1724034 - Unexpected OCSP in proxy SSL connection- Resolves: #1566317 - CVE-2018-1312 httpd: Weak Digest auth nonce generation in mod_auth_digest - Resolves: #1696141 - CVE-2019-0217 httpd: mod_auth_digest: access control bypass due to race condition - Resolves: #1696096 - CVE-2019-0220 httpd: URL normalization inconsistency- fix per-request leak of bucket brigade structure (#1583218)- Resolves: #1527295 - httpd with worker/event mpm segfaults after multiple SIGUSR1- Resolves: #1458364 - RMM list corruption in ldap module results in server hang- Resolves: #1493181 - RFE: mod_ssl: allow sending multiple CA names which differ only in case- Resolves: #1556761 - mod_proxy_wstunned config needs the default port number- Resolves: #1548501 - Make OCSP more configurable (like CRL)- Resolves: #1523536 - Backport Apache BZ#59230 mod_proxy_express uses db after close- Resolves: #1533793 - Use Variable with mod_authnz_ldap- don't terminate connections during graceful stop/restart (#1557785)- Related: #1288395 - httpd segfault when logrotate invoked- Resolves: #1274890 - mod_ssl config: tighten defaults- Resolves: #1506392 - Backport: SSLSessionTickets directive support- Resolves: #1440590 - Need an option to disable UTF8-conversion of certificate DN- Resolves: #1464406 - Apache consumes too much memory for CGI output- Resolves: #1448892 - Cannot override LD_LIBARY_PATH in Apache HTTPD using SetEnv or PassEnv. Needs documentation.- Resolves: #1430640 - "ProxyAddHeaders Off" does not become effective when it's defined outside setting- Resolves: #1499253 - ProxyRemote with HTTPS backend sends requests with absoluteURI instead of abs_path- Resolves: #1288395 - httpd segfault when logrotate invoked- Resolves: #1368491 - mod_authz_dbd segfaults when AuthzDBDQuery missing- Resolves: #1467402 - rotatelogs: creation of zombie processes when -p is used- Resolves: #1493065 - CVE-2017-9798 httpd: Use-after-free by limiting unregistered HTTP method- Resolves: #1463194 - CVE-2017-3167 httpd: ap_get_basic_auth_pw() authentication bypass - Resolves: #1463197 - CVE-2017-3169 httpd: mod_ssl NULL pointer dereference - Resolves: #1463207 - CVE-2017-7679 httpd: mod_mime buffer overread - Resolves: #1463205 - CVE-2017-7668 httpd: ap_find_token() buffer overread - Resolves: #1470748 - CVE-2017-9788 httpd: Uninitialized memory reflection in mod_auth_digest- Related: #1332242 - Explicitly disallow the '#' character in allow,deny directives- Related: #1332242 - Explicitly disallow the '#' character in allow,deny directives- Resolves: #1445885 - define _RH_HAS_HTTPPROTOCOLOPTIONS- Resolves: #1442872 - apache user is not created during httpd installation when apache group already exist with GID other than 48- Related: #1412976 - CVE-2016-0736 CVE-2016-2161 CVE-2016-8743 httpd: various flaws- Resolves: #1397241 - Backport Apache Bug 53098 - mod_proxy_ajp: patch to set worker secret passed to tomcat- Related: #1414258 - Crash during restart or at startup in mod_ssl, in certinfo_free() function registered by ssl_stapling_ex_init()- Resolves: #1414258 - Crash during restart or at startup in mod_ssl, in certinfo_free() function registered by ssl_stapling_ex_init()- Resolves: #1378946 - Backport of apache bug 55910: Continuation lines are broken during buffer resize- Resolves: #1364604 - Upstream Bug 56925 - ErrorDocument directive misbehaves with mod_proxy_http and mod_proxy_ajp- Resolves: #1324416 - Error 404 when switching language in HTML manual more than once- Resolves: #1353740 - Backport Apache PR58118 to fix mod_proxy_fcgi spamming non-errors: AH01075: Error dispatching request to : (passing brigade to output filters)- Resolves: #1371876 - Apache httpd returns "200 OK" for a request exceeding LimitRequestBody when enabling mod_ext_filter- Resolves: #1372692 - Apache httpd does not log status code "413" in access_log when exceeding LimitRequestBody- Resolves: #1376835 - httpd with worker/event mpm segfaults after multiple successive graceful reloads- Resolves: #1332242 - Explicitly disallow the '#' character in allow,deny directives- Resolves: #1396197 - Backport: mod_proxy_wstunnel - AH02447: err/hup on backconn- Resolves: #1348019 - mod_proxy: Fix a race condition that caused a failed worker to be retried before the retry period is over- Resolves: #1389535 - Segmentation fault in SSL_renegotiate- Resolves: #1406184 - stapling_renew_response: abort early (before apr_uri_parse) if ocspuri is empty- prefork: fix delay completing graceful restart (#1327624) - mod_ldap: fix authz regression, failing to rebind (#1415257)- Resolves: #1412976 - CVE-2016-0736 CVE-2016-2161 CVE-2016-8743 httpd: various flaws- RFE: run mod_rewrite external mapping program as non-root (#1316900)- add security fix for CVE-2016-5387- add 451 (Unavailable For Legal Reasons) response status-code (#1343582)- mod_cache: treat cache as valid with changed Expires in 304 (#1331341)- mod_cache: merge r->err_headers_out into r->headers when the response is cached for the first time (#1264989) - mod_ssl: Do not send SSL warning when SNI hostname is not found as per RFC 6066 (#1298148) - mod_proxy_fcgi: Ignore body data from backend for 304 responses (#1263038) - fix apache user creation when apache group already exists (#1299889) - fix apache user creation when USERGROUPS_ENAB is set to 'no' (#1288757) - mod_proxy: fix slow response time for reponses with error status code when using ProxyErrorOverride (#1283653) - mod_ldap: Respect LDAPConnectionPoolTTL for authn connections (#1300149) - mod_ssl: use "localhost" in the dummy SSL cert for long FQDNs (#1240495) - rotatelogs: improve support for localtime (#1244545) - ab: fix read failure when targeting SSL server (#1255331) - mod_log_debug: fix LogMessage example in documentation (#1279465) - mod_authz_dbd, mod_authn_dbd, mod_session_dbd, mod_rewrite: Fix lifetime of DB lookup entries independently of the selected DB engine (#1287844) - mod_ssl: fix hardware crypto support with custom DH parms (#1291865) - mod_proxy_fcgi: fix SCRIPT_FILENAME when a balancer is used (#1302797)- mod_dav: follow up fix for previous commit (#1263975)- mod_dav: treat dav_resource uri as escaped (#1255480)- mod_ssl: add support for User Principal Name in SSLUserName (#1242503)- core: fix chunk header parsing defect (CVE-2015-3183) - core: replace of ap_some_auth_required with ap_some_authn_required and ap_force_authn hook (CVE-2015-3185)- Revert fix for #1162152, it is not needed in RHEL7 - mod_proxy_ajp: fix settings ProxyPass parameters for AJP backends (#1242416)- mod_remoteip: correct the trusted proxy match test (#1179306) - mod_dav: send complete response when resource is created (#1235383) - apachectl: correct the apachectl status man page (#1231924)- mod_proxy_fcgi: honor Timeout / ProxyTimeout (#1222328) - do not show all vhosts twice in httpd -D DUMP_VHOSTS output (#1225820) - fix -D[efined] or [d] variables lifetime accross restarts (#1227219) - mod_ssl: do not send NPN extension with not configured (#1226015)- mod_authz_dbm: fix crash when using "Require dbm-file-group" (#1221575)- mod_authn_dbd: fix use-after-free bug with postgresql (#1188779) - mod_remoteip: correct the trusted proxy match test (#1179306) - mod_status: honor remote_ip as documented (#1169081) - mod_deflate: fix decompression of files larger than 4GB (#1170214) - core: improve error message for inaccessible DocumentRoot (#1170220) - ab: try all addresses instead of failing on first one when not available (#1125276) - mod_proxy_wstunnel: add support for SSL (#1180745) - mod_proxy_wstunnel: load this module by default (#1180745) - mod_rewrite: add support for WebSockets (#1180745) - mod_rewrite: do not search for directory if a URL will be rewritten (#1210091) - mod_ssl: Fix SSL_CLIENT_VERIFY value when optional_no_ca and SSLSessionCache are used and SSL session is resumed (#1170206) - mod_ssl: fix memory leak on httpd reloads (#1181690) - mod_ssl: use SSLCipherSuite HIGH:MEDIUM:!aNULL:!MD5:!SEED:!IDEA (#1118476) - mod_cgi: return error code 408 on timeout (#1162152) - mod_dav_fs: set default value of DAVLockDB (#1176449) - add Documentation= to the httpd.service and htcacheclean.service (#1184118) - do not display "bomb" icon for files ending with "core" (#1170215) - add missing Reason-Phrase in HTTP response headers (#1162159) - fix BuildRequires to require openssl-devel >= 1:1.0.1e-37 (#1160625) - apachectl: ignore HTTPD variable from sysconfig (#1214401) - apachectl: fix "graceful" documentation (#1214398) - apachectl: fix "graceful" behaviour when httpd is not running (#1214430)- mod_proxy_fcgi: determine if FCGI_CONN_CLOSE should be enabled instead of hardcoding it (#1168050) - mod_proxy: support Unix Domain Sockets (#1168081)- core: fix bypassing of mod_headers rules via chunked requests (CVE-2013-5704) - mod_cache: fix NULL pointer dereference on empty Content-Type (CVE-2014-3581)- rebuild against proper version of OpenSSL (#1080125)- set vstring based on /etc/os-release (#1114123)- fix the dependency on openssl-libs to match the fix for #1080125- allow 'es to be seen under virtual hosts (#1131847)- do not use hardcoded curve for ECDHE suites (#1080125)- allow reverse-proxy to be set via SetHandler (#1136290)- fix possible crash in SIGINT handling (#1131006)- ab: fix integer overflow when printing stats with lot of requests (#1092420)- add pre_htaccess so mpm-itk can be build as separate module (#1059143)- mod_ssl: prefer larger keys and support up to 8192-bit keys (#1073078)- fix build on ppc64le by using configure macro (#1125545) - compile httpd with -O3 on ppc64le (#1123490) - mod_rewrite: expose CONN_REMOTE_ADDR (#1060536)- mod_cgid: add security fix for CVE-2014-0231 (#1120608) - mod_proxy: add security fix for CVE-2014-0117 (#1120608) - mod_deflate: add security fix for CVE-2014-0118 (#1120608) - mod_status: add security fix for CVE-2014-0226 (#1120608) - mod_cache: add secutiry fix for CVE-2013-4352 (#1120608)- mod_dav: add security fix for CVE-2013-6438 (#1077907) - mod_log_config: add security fix for CVE-2014-0098 (#1077907)- mod_ssl: improve DH temp key handling (#1057687)- mod_ssl: use 2048-bit RSA key with SHA-256 signature in dummy certificate (#1071276)- Mass rebuild 2014-01-24- mod_ssl: sanity-check use of "SSLCompression" (#1036666) - mod_proxy_http: fix brigade memory usage (#1040447)- rebuild- build with -O3 on ppc64 (#1051066)- mod_dav: fix locktoken handling (#1004046)- Mass rebuild 2013-12-27- use unambiguous httpd-mmn (#1029360)- mod_ssl: allow SSLEngine to override Listen-based default (#1023168)- systemd: Use {MAINPID} notation in service file (#969972)- systemd: send SIGWINCH signal without httpd -k in ExecStop (#969972)- expand macros in macros.httpd (#1011393)- fix "LDAPReferrals off" to really disable LDAP Referrals- revert fix for dumping vhosts twice- update to 2.4.6 - mod_ssl: use revised NPN API (r1487772)- mod_unique_id: replace use of hostname + pid with PRNG output (#976666) - apxs: mention -p option in manpage- add patch for aarch64 (Dennis Gilmore, #925558)- remove duplicate apxs man page from httpd-tools- remove zombie dbmmanage script- return 400 Bad Request on malformed Host header- htpasswd/htdbm: fix hash generation bug (#956344) - do not dump vhosts twice in httpd -S output (#928761) - mod_cache: fix potential crash caused by uninitialized variable (#954109)- execute systemctl reload as result of apachectl graceful - mod_ssl: ignore SNI hints unless required by config - mod_cache: forward-port CacheMaxExpire "hard" option - mod_ssl: fall back on another module's proxy hook if mod_ssl proxy is not configured.- fix service file to not send SIGTERM after ExecStop (#906321, #912288)- protect MIMEMagicFile with IfModule (#893949)- really package mod_auth_form in mod_session (#915438)- update to 2.4.4 - fix duplicate ownership of mod_session config (#914901)- add mod_session subpackage, move mod_auth_form there (#894500)- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild- add systemd service for htcacheclean- drop patch for r1344712- filter mod_*.so auto-provides (thanks to rcollet) - pull in syslog logging fix from upstream (r1344712)- rebuild to pick up new apr-util-ldap- rebuild- pull upstream patch r1392850 in addition to r1387633- restore "ServerTokens Full-Release" support (#811714)- define PLATFORM in os.h using vendor string- use systemd script unconditionally (#850149)- use systemd scriptlets if available (#850149) - don't run posttrans restart if /etc/sysconfig/httpd-disable-posttrans exists- use systemctl from apachectl (#842736)- fix some error log spam with graceful-stop (r1387633) - minor mod_systemd tweaks- use IncludeOptional for conf.d/*.conf inclusion- adding mod_systemd to integrate with systemd better- mod_ssl: add check for proxy keypair match (upstream r1374214)- update to 2.4.3 (#849883) - own the docroot (#848121)- add mod_proxy fixes from upstream (r1366693, r1365604)- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- drop explicit version requirement on initscripts- mod_ext_filter: fix error_log warnings- support "configtest" and "graceful" as initscripts "legacy actions"- avoid use of "core" GIF for a "core" directory (#168776) - drop use of "syslog.target" in systemd unit file- use _unitdir for systemd unit file - use /run in unit file, ssl.conf- mod_ssl: fix NPN patch merge- move tmpfiles.d fragment into /usr/lib per new guidelines - package /run/httpd not /var/run/httpd - set runtimedir to /run/httpd likewise- fix htdbm/htpasswd crash on crypt() failure (#818684)- pull fix for NPN patch from upstream (r1345599)- update suexec patch to use LOG_AUTHPRIV facility- really fix autoindex.conf (thanks to remi@)- fix autoindex.conf to allow symlink to poweredby.png- suexec: use upstream version of patch for capability bit support- suexec: use syslog rather than suexec.log, drop dac_override capability- mod_ssl: add TLS NPN support (r1332643, #809599)- add BR on APR >= 1.4.0- use systemctl from logrotate (#221073)- pull from upstream: * use TLS close_notify alert for dummy_connection (r1326980+) * cleanup symbol exports (r1327036+)- rebuild- really fix restart- tweak default ssl.conf - fix restart handling (#814645) - use graceful restart by default- update to 2.4.2- fix macros- add _httpd_moddir to macros- fix symlink for poweredby.png - fix manual.conf- add mod_proxy_html subpackage (w/mod_proxy_html + mod_xml2enc) - move mod_ldap, mod_authnz_ldap to mod_ldap subpackage- clean docroot better - ship proxy, ssl directories within /var/cache/httpd - default config: * unrestricted access to (only) /var/www * remove (commented) Mutex, MaxRanges, ScriptSock * split autoindex config to conf.d/autoindex.conf - ship additional example configs in docdir- update to 2.4.1 - adopt upstream default httpd.conf (almost verbatim) - split all LoadModules to conf.modules.d/*.conf - include conf.d/*.conf at end of httpd.conf - trim %changelog- fix build against PCRE 8.30- update to 2.2.22- Rebuild against PCRE 8.30- fix #783629 - start httpd after named- complete conversion to systemd, drop init script (#770311) - fix comments in /etc/sysconfig/httpd (#771024) - enable PrivateTmp in service file (#781440) - set LANG=C in /etc/sysconfig/httpd- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- fix #751591 - start httpd after remote-fs- allow change state of BalancerMember in mod_proxy_balancer web interface- Make mmn available as %{_httpd_mmn}. - Add .svgz to AddEncoding x-gzip example in httpd.conf.- update to 2.2.21- update to 2.2.20 - fix MPM stub man page generation- fix #707917 - add httpd-ssl-pass-dialog to ask for SSL password using systemd- rebuild while rpm-4.9.1 is untagged to remove trailing slash in provided directory names- fix #716621 - suexec now works without setuid bit- fix #689091 - backported patch from 2.3 branch to support IPv6 in logresolve- update to 2.2.19 - enable dbd, authn_dbd in default config- fix path expansion in service files- add systemd service files (#684175, thanks to Jóhann B. Guðmundsson)- minor updates to httpd.conf - drop old patches- rebuild- use arch-specific mmn- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- generate dummy mod_ssl cert with CA:FALSE constraint (#667841) - add man page stubs for httpd.event, httpd.worker - drop distcache support - add STOP_TIMEOUT support to init script- update default SSLCipherSuite per upstream trunk- fix requires (#667397)- de-ghost /var/run/httpd- add tmpfiles.d configuration, ghost /var/run/httpd (#656600)- drop setuid bit, use capabilities for suexec binary- update to 2.2.17- link everything using -z relro and -z now- update to 2.2.16- default config tweaks: * harden httpd.conf w.r.t. .htaccess restriction (#591293) * load mod_substitute, mod_version by default * drop proxy_ajp.conf, load mod_proxy_ajp in httpd.conf * add commented list of shipped-but-unloaded modules * bump up worker defaults a little * drop KeepAliveTimeout to 5 secs per upstream - fix LSB compliance in init script (#522074) - bundle NOTICE in -tools - use init script in logrotate postrotate to pick up PIDFILE - drop some old Obsoletes/Conflicts- update to 2.2.15 (#572404, #579311)2.4.6-97.sl7_9.22.4.6-97.sl7_9.201-session.confmod_auth_form.somod_session.somod_session_cookie.somod_session_crypto.somod_session_dbd.so/etc/httpd/conf.modules.d//usr/lib64/httpd/modules/-O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -m64 -mtune=genericcpioxz9x86_64-redhat-linux-gnu?7zXZ !Xᢧx4] crv(vX0b6q0~cl1T:x8o)7}|}R|QNdB> ΁opTX.95I fb??|>5j$s-aB77;Rt1_aD\7YyTj F$Eȣ {H%fivJdGIܾ1eb)6 mnFAmn`ֈt%vY ͒(WGȋ]kBk"< -szyZ W=e 1ߠI#^CC5zJM2ttל3P֦3me3X?MwJ?3u$T%ǚx>L/8n6ټte2_-S+`+@qlzY,Ccp0ݽT֌T>29n39#VznXI>]w,shqn>{.&iL$I'<-eICFiij3Dr7y8ґSzlUD S˃f*KI )IVN>0γC9lطHyg u|gSh󬜉^o[y#g20!leB"@]I^B..869RAjRfd7}}& F8@Fj= kr{aqT|d qdaAq,{%{ʵ@3/|tL T~BDy?6(bp۱}'$3STZzS*jw\IvF6]&Z]zGkI!qI_տiQA:ݮ>BRo6LBE ރR >HM};+!2FaU (.-_^?RΝejۄ^'x-uf#nbQrP.9;J\k|'fai^cMTRh--޸:eG)+bԿ"_u˫DrTZ`_Noe|i5NiU]kZ8-K[&)jZ?W?R[huP{L2,OT^M:eNӴy_"e~l 6w_i9ϽG4>ReƸv.q)R(^?󦣼3gѦ='u䖸'Kīlovdݹft=!I}: GJUmù>?}FwT'xK"ѱ)%G@,t5ʙck͓L–x+F<]4Aa~󵺇sxɝA ?夲i-dM%poWD{`Hq}w'eX:Yz,l&zG_'C^da>_u)`lLc@˥80iȾɊ4p1GO@pA AD8B!aPd0Yur($2G/!C0}j4!?BqGt>`}&cfz]ـ&C݄ZZ?lO <ű $̩|ɎK|r+Y,B6ZՉ% DmJu1"ΐA ',hg^HAߡn{ !,wJG8)=0;aSD*i0}Uʶ@@ >^& ̀U4<˟نUFד0*;n,3 _(*/!pX(X;瘰rN畩7%:g,J _j6IGT.e(xK)lߞqf1u 8#gcFJlSۖӸ "eKG y(R佤.ʇRꮄ\ܹ#0,?M>:#6!zN?'GsS+@ur$6!6=G}D;m8-bR䋰JMLsþ5*)C6Z,)Za떨7#vI13&HD5S[(4GMkgXn"d&Br8qVp/㰲l–8V@vB9W}1O t[lxYT-Np5fo?w{֧=yuUHRi@U`I:H>Ju'tuj$ VZ$ɛvDa&7}:i}2O =o$(,)ތ+s $fޠ= :d8!3T}n2.J~Ysz%7G y("IJU<4CNQIp;5ZjO&-l~|s4{ǛF͝EssڞnyrLf6]3^oFfkGs\JT4v+;1U?QN00h䀃:ef vpc6=2C{q3>9qCވAL.JR s>5D#fxrHeBxnjk.݋DmooqQ%XaD)н*Z$?[%ľMHR&m ΅t@ܓ=ra9Ln+,tNJfhcT6NޭS. G =Gj겵׭V֊gf8glBZx[/ ^$;VL(ƌVn) }n r%٪\botk.eآo^a_? &_uwzv׽bĝgI\uC 'FG$7e=$sB4X)_("Er[S2ܦ7o=g$W!Wy{ Q2SRO28&sれ..9Q 0_>hA,MX[NnđzKd2$?Tl:w;O熯'2@V1IoNH于G+XSf,hVC''A]S2G,m-rW޶Lw{b!!F{e@9}k&\b%ꮐOiDvHN[oI4ĹUPPէ2랠Den awXab`+\twFȞGaqS[>eS0P"kCԓ Pd,V?k>~#8I= GH2# ! "蹒ok~g^cjk%8& fuضe9-BFLOLDN W&&N/N+ZƸJFvcnG5mÃ2H' Kcg#^EiCW17xwj3Mԟ`c1bt0Ь ܥ'wzDDc[d3ho2uw]Sbᗄ7M#9",)1c k5'=x*;ScdָLٵVTb]zȔe Icx =MT4|5,dB\a$6=8VV %,胦_F +F?W92C'4X􉻧|K~ 5V.qtrv^oDždWxAƍK ׺ GE~[ܹ¹hZBR## )Z/W~/.$T8}&X(>l}(49o9EZئY3 ̲'ˈ4sYؕ}DNw 26y1J"cAv8yY)1b=s"Qh]ؔey8o}&S⩜ +(""+#+g&/|.(p!_{w]@ͻBfܤUSF|+$t+I*%o#[$h,|lՃ:AUɸ;:hDkGO~T#A9>テI2[iz+,Mk^TeUԀXC9"kc1'UfQWJ 9>Cx93C=k++6ZsVxިI@7Į9dfx嵜#JŊ&\zzٞ!ώ; ]7w9ھ5T{JMy;ZQAk?K {vv`A' d{!o!RR|̂%RZJw࣎F_Q0,p$^uӵ9k ZECqjjN۩q?U-pyD"kf'f=tr7hiTNf[M3Vۯ2G'p҇賦+| Y/>[3ſ@3,Jr/24˹¸iFdW&aS{=G.;43م GK)bk7TTS7RK^=C7dNtٯ5EW*T_,-.F)7 6[ 12W61q׹jwJ}_Zr6 x{iseX$GgsjQ׹!ҩ@Nvxyts3Q+X(G.y H4R&5Vp)A="9 8 8b!̶E`MQO'@|np]p:oAbYʿS޷9wLE4:͌s|'o8Re.߭tV^1*luHsvʁS>??`/@jm6V@y~<,5MLR'uci+9_`n/vA)ǁ:x3n"[JYSr`N[L)[`?^95Ai'fPj<\oy:2r.|P3Nn"@Pw͎#HެHC1/!~ GJ݊Ȅs]3e*'&.ri;myEF@;3$3{_YwljDh A}{if$ H ق:h9@m4ɶR+1Ls4Z Ō6P xvJ+6_:: fᾫ:o*;RmgU۳_8Eߴ|NVmxS LH \nb@2| l} # (wLS('>, ̝)C1"rU\-kG(EL)AxVn˜]нJ4׾z琒*Z2Z-` 0C>9&"(@Ov#o^K4TNMGϠw]*ݟ@'ybYd6Uʹ]˸l*R&`ZwKk*N)M:]!-Bih3=!?X8CmVn0VOHKljv\sVTs9Xy .5"3V†vW`ɫ Wvx47[<&3'{ VQgp C~T`P5'%սdZpT08 ȒslJ]Ҏi`|HEdIet0y޹ůa#!?^9@]'o;o)3ZBK~Z>]VNRz6K+q:yFXI2\(y0ēr&t_AIGZ'1 e%Ř]JiTEw\DH}  Kf{\ͷ92P;knBV5Sn۳=syj6wśN59=y*JC.}JOZU/Π&EtDL =ʿN9]`8x޻}c*2X~eHx?N sPen~|@Ǣ8-}/GfQ݅LA9]B67l-M~gk mF&9ߛ0jrw~e-E:kZ$7d3HG'lGA:Nt8 +}+{i2?>F?TQ"?&66am9~Tܿ1wo~s2pպ҃뿌o{Ǣxrj)q.tF{u'v0]R 91)bI\SQk%3 drt҄, r$gॡjNWUza$ TCi-LrAE8C  2ϩ`KMݡR.dۛtIKcXr jtdm)'t E`C8<5!RݒAR8#'{\9*gxbDs?lspaY*ɰ6O!t] 5Z'4| >}=21::cѐTAo/<Mٕ<-]ş8f@@|e&W%rE gсBg;ؓDf,, 4mD%~'̀Mӣ#=wܺXOFKzڎͣث4F Kה<9df,G?n0"eWY3\.pQ `ﺻ+- |i3a= ?z r$BȞ˲z8 Ƣ}]4,}r`8`8ul8ÿG af۴FzH%;m0cKAHDyԎ9р o$3=?1s[E6INV\RUMWsmsBj*#p1ץC,ko4Rt}|ͤGڂ"r;7Cl3tK"D^_ 0]kf~> ŨEh;_J *JyQM)*Y$C`$.>mx1N/3Jr}% ~ Xu]VO_57bģŝ=D(j/HNC늂VDžfFyJYg%Ij6O9 [V"u6WQkd"FOέ_B7&611ԷX3O6 J>[ [g&ҋGʳ˾-K)eFx(0#>NuR/˳C͊4>·űK_$JS>Gl0W-}9Hs9!p>ݩKLxΓJ}(bKK~sx-aQ{ 4tBhrU#裀!Qb]i~@aԩe%_,Qo?f$.ɏUpj_[YtֹQF߫kFnmP aA][<ɠQo$OݳŃU㍁TȺF1XJh#:M۪O fWl[ uTu[\Ot8A\4xBv{;oY~\)>$tfw&M(& J^( "{5OZ $sPI1҈(Od^΋h4,=}:y_oy _̴6c\6doZ)Eo)\M=C>R^gufBJ-2(7߾cS\'SRO{iÚc~.Y@SWܠ}O s?:/ͩȜU#EݴNJ6QYs\q(Ɍ~'*M n+=Ge 0׌jalpD 0$?ͣcDn]Y,sS,Eu踀 qQ摏t󺅺Nx.˦K#h845Rލp eG9i6gpלfq.֌\.7[P+2T򦬌zLߪO~WA#H<  C"{J"#}k&W1>d@A~psgytЇ7C !FX[ NK~՚!O@8M3(hpoJd0K53p|P+ 7V;B5WO)EV VU>kޫBrP*\QC[y:7x#BaƨIFW>G h#'r{IKE8pƫSVϩ<-@coØZd=U%U '*Q5+ƵYt; e '06d%@&;nd@e'}=hxW64ϷJzdUTTR@f; S  1dwيKTӱvH\njbpu=v3{2Y"iz}tR&ch,\.eTr,D*7R%.zcj?(ԭzưfa_Ҕ}C$3^W'eO#^7ݧь cn R:A2^<45 MJ9Atp4ݶc >mOkU$_Iۏ 5abgxo$u,[sƚr!G,<nMu<+E?ϩq!k]1b 㨩xX,tMshhP?Qm Ock}zj)@;#;m뛹ڗ=L5X Q03Ŝh [̑lؖz¼fDI/8~v"gUm`S;d|SUrhxa(\0/_ xx [ظBrAЉt[P#35sk:աAm$/^}PkSlО–|%DԚDs j`4{?lQ~޾>? &t0kh涬QEftŵj_2>jzǖp`Tg,ig@$V9nHh8qeb霎= 4Kѿx1n΋yvç6~ڦ >Q.uWFI3c!|SJ:p{ WcG$>Y`uw @q_V[op%r)I?zߒ ̰9%g`//eLڴGC;p u7`Yd8oaT>(y1w_#ޘN20rZ DϾyt0BMC R" B ®^qͻ W;#tnW^sR$Q-tR8<^#ґ} UV|3-e)yU64E͵(WHJ3L(:~f|$\RMPe_.ߠ~nAD0"nO[>IߚB6d)akX /#D ; gBybáaFA8Z7h?lujk>Z8=A?rqw .GI.gĘv OAH-zk[NPWY? R/#]@~+qBy.D!ޅ(ί`Br{Mx! ? x=c3wέOȫ|8T n^Jnj4k;bd(J3Ui׫l/ ] Ncm4OD: =CӅδ($(܈`3bsn b2j|z'8qO**huϥ6k$MA,G^3U41ɿ]_}. atT/s3ALJ%Np5̺ѱe2Jozdy-DB{aQ"}UDh*(G·$zbI9Cwexq~Hڵ"j5IJ?ԩ` 5X#r^뱱衳mg* p(d|\h\SPwԼ4@\R^ut/Ո6`9UglmYBMy8ĸ/hgV9"kX`р/G<'L1 b %RioSK%D.)~5@GȬ|hMY^_٭fߤt Kp'C[ϥAhrK^ 8&΂9G %a{J!GHQK7b8IV i26i7 4P; ZgD_(S;ړӼK4% Qo''}ZP4z*9 > *MT6N/PoU< eB{{|ۚ8<mѬ+VgzW#o!WO@UL0qi۳mLQnO KpHGގ ugAǕҋKʴ"I{nѿecS;S^_k\,4rg'?8N \"%x+0edlAuy2{g [N#q΃8jޣ%(zWaQQm̭{y}J_U5iE`s7@`Y'1tiRÞPN 8%o΋ G~.DFA: Aqmh$cāNL6ͫѽ3!7u I"@ oS&#/_I9\eWlZ9먈9".v<4V%p&N⩞/$x Zh{Ќ7ƮNE*bmALYog2|Ah&Kͬ#-}"(KJsS̰LA[;|Vj@7}i^Հd4_@}:$56wMcƔ'APGHb{xMAir %ɏ]EOltxvk]Wq"F~>I"_ǜ WPp+gzycsȅCF(Bߛ/(& gW„mq|ӌ1$Pa²2)G8coc叢6`E/i`F;g&6 ck{y58iّ/\IH<%fE1JAݟCd]Uԫu!,x l>^q1wnė7wZ[ K%5=ߙ(_d?;)IMib8FT!3_f'@,fr0Bz^-㤰d[n=YX-o",B'-}y&sw?Ay˸o(ԤgIXy8^(g&D bn4Ӽe])߆aVY#B*!3@6V,gJ Xn6tja "3|9#[' P[ĽFf*Lm9p@$RUX[(to[]<_w F,ǒ)6דc o nݝ*=D[Q4Uf#~% cR+D4J]rq*MuQG<.le窒晰>nP$.m!ZC:q߼;d/XQ!KK sڥ\jLJr|l.O诟s0쵓w<[hr 8uu)o6N%R2 [J4eVVhgG{yu7f7.{=:u `,B2i/6]=CÏo"M(D9ŕuf! z. my`G13{ekS0%UXgmx=5DDCtǟe-oia/S†?n6 $/#\&KX5Ue-9 ^{r rs~u^T''@wMj_{G}W~#f::C稫ˁ EP2c~;  ɠ橞RMzu%R1RMh+z/~[=۹KJZG^wTeދi6Fe^oq߲ UDX7FIokNROe<"ӍtO2lrl~ )khS3__UQ7~MqOm[ pC&#\c\3/BL `5Ŗm:-qͮy°btvTͿu#qUx` E>_cP?7A# 3y]B1Hmc5JMBt\s2Tc*z.9'?jŕeGO[iD1hMh'bZzmZ.3$Ko uȈynbzf_ x],+@Rh3gXyĀm]=7lWii'޽ht[i1aw"$Q*mhw;𡤩% 7%P%oi355k}"oz1ˮ|$"J~& K!Vt`j깯w(v ׇEFUc"P@UMUu'Z 8'q5F 8Rj ~S i"vAs Pe3OiwVbв 03!4hPIB,#>Q߬rB0g 5 =Ŝ/`2VMM@AƦJSmFj >fLf@^VvvOCdX :+^9p{?KphlD_ |YBe;=3B&-aYp!pr0#9xUgފs@IXt|RxD0cJ&ĉW4 6&|L%(k ~L1f^ >Uxt-4P-F+"աc%SwڪE>i7@<,8,Y E2~D q){Wѯgۖ827:DNxt18&6 z/OiDzݮ@E[bIb_WKӔOFzĊJX۝kUd  ;@Hˇ{ſ@ړS6 :P{UxCX*rcJ (/%[ ni(]L:[g |%njl Ftb>z{K% `cTIAHqŵ /`G+[#D~dx G; m3F pOUݚrjDd Íݏ)S'3-\[GMU2n9Qe#^@ ;Nx9g' ((Ff^`1()u6=$y)qX!WWu* è~'`LP8Z1=0ydou-.Hspg|\|xRJT3QC[U纎sU4T/dϜ uGb ϙx9tѓ$̓ E1$hgCC@ (0X9Mq!@oEӂ[=?-{;2&XV ='ж3tˎUaR ,^ɫkV2 -e{2OceݱX,?.wJ:Ԧ$˱u.j0_L5tz4> V*-ɚCl_8jz@>N:a4+2^WV惝}K%7 TRV}Hç0FG&2iakJ<"7݄Sh^P9p`!G\eTp@8l^cںvlVӖ柹) PEc.i7HxcZf?SWtr?Qh{2 Ґ5*i|Б WsN KJ!8j X,W7.B`*Q,r&1'OQOS\"|u!UW9 9XaJ^[ {@'u< _$Ǻٗ8# ]ZhUrц&Gj5Z!gύhsv,6IwEūqHJIK)ǃpxxW #mŒw6T@< PkS|Wf,g9d}x؂* @Ik]Q ٻYhŶJG):# Pݟ"EC I}.8.+[!jsCHSL~*n1{RFX]=9[M wl1,X{[Ph(5gY)} bpAK_Js>|&]93mA 9X%I V|:tx]ͫb Zj̬lpp=ԢKO&@),U;I $$MTQ`3\U^wwRg5*;7 O{iRgaVͱ|R KX97*Jun ű'$j ;/^H/-+YpnOm?O^=PX>B=SYЁC~Q0$%3 ,n`8ES8*|B 16~* }' 'լ;g3쭋V0#4mq(/gPy[n'mٻy?W͢)4dxRFoD0u3ͨ|~$ڇeT<{1{q0a/35/ZtI@y, 8#pG>vG SReڼ@kʮn ;S[+{Q o#5 n̻xțCOc/$da^C|EMAwPczg̝$RnP %kC1[XLQ6XVY˕pEvLj`B!D&*KWZDp@K `\Zfۯ? zư\Oi.ytۓ 5vŒ{ƜCiKBXUR!egX^"_G6v"@ҀO<@PV:`yzxP͌(|7'hǍ˪+EFy9I"q?Vz5zx 3v^ ~sVHiQEtNhhsgƼTx&h%:*eP1 Uhs Q+P:]p|tS4iw^P/tRTTW _r=; K{~3ۃJ},9?Wa`rxEb'w UY2ҏ*c;v- t+2art@ Ų@\n9J}#O,֦JHKND%N_G¸܏YG4Xi'I ԧX 1!;G|C(yL&xCWD91~ RL:1eavC2ڵ~(#>`߿Ս'-7jZu)/qq^fRfbI_6P0cx*R41p։ =0#8uOi%Ͻ ҕN_ۧjmL~^f,Yʚh ,.lGl, +]^উ&:f``+`3¶ګ-[~gH8M}Vv_Q֌r>$8[ z*=3b;h”TwVasxupz=hJFz!_>Hɸ}k,*S+@ |KA-vv6ewϔJizRtKq<`>̾R͵io?M* !G ܟκT̆ףmg|-*.{祽t1 yt]~K5Xi]&J>FVj>k=Oؠ9C*&d :ǥе3e/gih捎2< Qc2l`hOVfۺfo[{ܜ5lF VcWP~:gpV0tz6GYVҁ[/(1\*5jvmy[kucCqf*a)h옵-`¨ m1iYT}uYx'3Ib~8LSf͖ş$~ "3h5 co:te{$LE?(cqfLkagxN  @I.~ 4=n&ODip˻sd!: 6]`jax7zUr;n~ $.]5Uztd1dA@f(,/+Qm]?DI/Bz"$zA6f%ICJ~~ &D!j)%--ʠEj7?KVȪ,Cnf\+ėϤ2k Z: .e)*S%ql5O"Sp'{;gJ-| {c}2C̒Ϣ+ Bf-wR?_i%ܦ-O] Ң(*RMC Tڐ  Rg-Я|jvnǶ < 3<'CoؒOVυaҴB?'\6* a{*.7@bbzFIYX2*gc!ц%MIˍ“+M3풽1LNMETPW2K ƧPw-VL_F/L=$sg/ˣ7hNG(a3-CrZ?3E~-lȦyjHo[)+ 2)/@J$Yt*|B}8Ëխ>Uʹ1ʲy(^ wX E|hqds:;Od$}>fĚ#BЪL ` CeЊZ)z:( 6mF@P 4Zҵ$\K*iJ+]B,G䮎,X nUa_y~`p c wK⯷_ۂ*Dmg 7 p@P&CºX"pTw*tL1' XZyp'JSR풨B4&ݪ jmL"測/xv&,pg'ullXԮz?YBqcҊx *l.ݷϖ3jm+3]{°q9w57ij2{c>E9T vF;ܔ>b' |\̺ 2Y?T$@璬nj< >Xz1/vi2浱 g]U81v^s:MeݚU㳃Ï_xlIew\T,h>'i(AvEyY͵n=HHKi@9u{ [I; `mw|wb ~Yk)H'x6y 킶+}_(`)վpT^2%NYD zu Gɥ2:"3 -UCn.a9)'H=˒(n8J춭)] kM:3s¥ŁJ`]rkʓ g VWC x{̇rFgBڭ3󪉯+^c nC?9/C>?E ifC1 ucL` M} `)  EåʛQ%2Cwk'@h4&PTέ#W,g.Lpb!$MJt!O_vH@jxtnKlc^uL *D!B06lTTJq?CE bZ̸9qi/eRۗAO"" >6Z=sW{Mjp f0DPҚH'6t6&dfY VNM@@Q[z$Mnp].A񄦰32sVyae괩3<=Ab@zl>ޑ s>`) 6` ueBOèp|f.YK }3w~ m0Aix갖2}LKU95zA vW Ts_GR]?쬯vV6g$p+3P0دR;w=~mQ]lU҉1">f8վ\TV6_>9C[O8Tʤ' ]ãebdoDFD!% ryb>t#Nh.-bzDmGwߵM2,Ӆ8SBfaO'ѽG.bp~moNKŗgCH!U߆M&nߤVi|x\:ݠOb\(x=* zVĂ ob#D+19*+PGX{H?/rNd7# $Mic[:; m\w7F 36]%}]P##JUbzȭK)gCPŅ1sK<&rWqilÿ0l;[f c.:)+[, ?q.wQg\ :a& l^jN_^ ).|lC}!%u8~'JsK5e"JOKvG_L;<0 Q7|TfPh\F#s>>iz;w@l@<=e6Μf<+Fb IXm @9W:sߒ~dgqb%v\IsߎU4m#/~b PxBij4*R޽YS8GKM{.YЏs[0X-!|G{۝[8ueb!#_>/ꂯ$HX EWmwt ʨTjO?2r9b~PM<3ltD0Uf٩fv83N> dAvѹ [5Z(s~4m6}'6yF~ono{ . /+73g' Wq @jH2]. @Y6m~JAJ1>BKɇ5VwtA%!,jrSx.!Լ_sl5'ΎNXI<.ScuoDDTWbu;MQEN_ּX*B ?q9!5RM>.OZ2"S16V>_-у-Ws,:8{R>T\_*ɱYLXjV銯VUϬڠYz gOeo@NJP~ט[Dۦ4g,i p{w\\NӀ;% \P뭋8{Ʃ\Rh>wqh~$O⁽hq,1.55| .{Qw@Юq`Tp %ĒG1tӵg\@ܸ`q ̼^Z5ECr+K(XG Hx̹-x.x{^3k ` I򂫏W F+luŔ.&4QͰ$*A iB.Y|G)u<ǯô7VMk;'=(y%-hDYC(A ²r9Up#fL%8m R&|muMXy232n1 ʗ* ]9V 際DziӋs "heGN@1{,W^ݽrAxb,-kZ!C۲,~C