mod_ldap-2.4.6-97.sl7_9.4> H HtxHFaƟ ?*}}9hG=M 7~<瑍ucOeEsVu@s1c2f05cce175758fbc154b3c1d88db2ae16c94ecm iHu CU'&FaƟ ?*}} Iv@Nr?,":Aj&m`t@%U6[>3y8?y(d   S *CIP\ b h t 7 <HWf4(z89:(GwHwIwXwYw\w]x^x4bxidyeyfyly y$Cmod_ldap2.4.697.sl7_9.4LDAP authentication modules for the Apache HTTP ServerThe mod_ldap and mod_authnz_ldap modules add support for LDAP authentication to the Apache HTTP Server.aMsl7.fnal.govScientific LinuxScientific LinuxASL 2.0Scientific LinuxSystem Environment/Daemonshttp://httpd.apache.org/linuxx86_64(-aIaMpaMpcbbbdd396fe056e8ab167abd7b2cb5145b42210bfea38452968ff02a03493fc848981521da5771d0de7bac22a225a8bb0b254d18ca508c69c2f46ad43ea135463e5362ce33c648a783698e3e1d5e475edf46046ff7bd933fea09ff29f3a8d1farootrootrootrootrootroothttpd-2.4.6-97.sl7_9.4.src.rpmmod_ldapmod_ldap(x86-64)   @@@@@@@@ httpdhttpd-mmnapr-util-ldaprpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(CompressedFileNames)libc.so.6()(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.3)(64bit)libc.so.6(GLIBC_2.4)(64bit)liblber-2.4.so.2()(64bit)libldap_r-2.4.so.2()(64bit)libpthread.so.0()(64bit)rtld(GNU_HASH)rpmlib(PayloadIsXz)0:2.4.6-97.sl7_9.420120211x86644.6.0-14.0-13.0.4-15.2-14.11.3aZ@aaav@a^@_}^@^|@]z@]^]A\@\[+@[+@[+@[*A['[d@[d@ZZS]@Y@YeY@YY@YY@YdYp@Y{Y{Y*@YYw2Y@Y@Y@XXg@X,X,X@XƉX•@XCX@X@XXXXO@XO@XO@XO@XXWWW{@Wc@V͛@U@Uݪ@UoUȒ@UU@Un@UY@U.RT}Tto@TXTG@T2@T @TTS@SS@S@SuSǺS*@SSRUR@RRΏ@R@RkR1@RsRrF@Ri RM\@RC@Q@QQޞ@QQo@Q@QQ@Qo@Qm=@QQQ,Q,Q']QP @P6@P6@P{@PPl(PiPiPiPiPiPYPQPIP3x@P3x@PPO@OO@O@OЗOЗOF@OF@OF@O]@O"O"O@O@O@O@O@O@O@OOOOOOleOleO_6O_6O_6OU@O8@O8@O5OKO@ONNS@N{#@NoENdNBrN)f@N&@N@N MM>MMn1@MdMRMF@M(QM$]@M$]@M# L@L@LLMxL7@K@Scientific Linux Auto Patch Process Luboš Uhliarik Luboš Uhliarik - 2.4.6-97.3Luboš Uhliarik - 2.4.6-97.2Luboš Uhliarik - 2.4.6-97.1Lubos Uhliarik - 2.4.6-97Lubos Uhliarik - 2.4.6-95Lubos Uhliarik - 2.4.6-94Lubos Uhliarik - 2.4.6-93Joe Orton - 2.4.6-92Lubos Uhliarik - 2.4.6-91Lubos Uhliarik - 2.4.6-90Joe Orton - 2.4.6-89Luboš Uhliarik - 2.4.6-88Luboš Uhliarik - 2.4.6-87Luboš Uhliarik - 2.4.6-86Luboš Uhliarik - 2.4.6-85Luboš Uhliarik - 2.4.6-84Luboš Uhliarik - 2.4.6-83Luboš Uhliarik - 2.4.6-82Joe Orton - 2.4.6-81Luboš Uhliarik - 2.4.6-80Luboš Uhliarik - 2.4.6-79Luboš Uhliarik - 2.4.6-78Luboš Uhliarik - 2.4.6-77Luboš Uhliarik - 2.4.6-76Luboš Uhliarik - 2.4.6-75Luboš Uhliarik - 2.4.6-74Luboš Uhliarik - 2.4.6-73Luboš Uhliarik - 2.4.6-72Luboš Uhliarik - 2.4.6-71Luboš Uhliarik - 2.4.6-70Luboš Uhliarik - 2.4.6-69Luboš Uhliarik - 2.4.6-68Luboš Uhliarik - 2.4.6-67Luboš Uhliarik - 2.4.6-66Luboš Uhliarik - 2.4.6-65Luboš Uhliarik - 2.4.6-64Luboš Uhliarik - 2.4.6-63Luboš Uhliarik - 2.4.6-62Luboš Uhliarik - 2.4.6-61Luboš Uhliarik - 2.4.6-60Luboš Uhliarik - 2.4.6-59Luboš Uhliarik - 2.4.6-58Luboš Uhliarik - 2.4.6-57Luboš Uhliarik - 2.4.6-56Luboš Uhliarik - 2.4.6-55Luboš Uhliarik - 2.4.6-54Luboš Uhliarik - 2.4.6-53Luboš Uhliarik - 2.4.6-52Luboš Uhliarik - 2.4.6-51Luboš Uhliarik - 2.4.6-50Luboš Uhliarik - 2.4.6-49Luboš Uhliarik - 2.4.6-48Joe Orton - 2.4.6-47Luboš Uhliarik - 2.4.6-46Luboš Uhliarik - 2.4.6-45Joe Orton - 2.4.6-44Joe Orton - 2.4.6-43Joe Orton - 2.4.6-42Jan Kaluza - 2.4.6-41Jan Kaluza - 2.4.6-40Jan Kaluza - 2.4.6-39Jan Kaluza - 2.4.6-38Jan Kaluza - 2.4.6-37Jan Kaluza - 2.4.6-36Jan Kaluza - 2.4.6-35Jan Kaluza - 2.4.6-34Jan Kaluza - 2.4.6-33Jan Kaluza - 2.4.6-32Jan Kaluza - 2.4.6-31Jan Kaluza - 2.4.6-30Jan Kaluza - 2.4.6-29Jan Kaluza - 2.4.6-28Jan Kaluza - 2.4.6-27Jan Kaluza - 2.4.6-26Jan Kaluza - 2.4.6-25Jan Kaluza - 2.4.6-24Jan Kaluza - 2.4.6-23Jan Kaluza - 2.4.6-22Jan Kaluza - 2.4.6-21Jan Kaluza - 2.4.6-20Jan Kaluza - 2.4.6-19Jan Kaluza - 2.4.6-18Jan Kaluza - 2.4.6-17Joe Orton - 2.4.6-16Joe Orton - 2.4.6-15Daniel Mach - 2.4.6-14Joe Orton - 2.4.6-13Joe Orton - 2.4.6-12Joe Orton - 2.4.6-11Joe Orton - 2.4.6-10Daniel Mach - 2.4.6-9Joe Orton - 2.4.6-8Jan Kaluza - 2.4.6-7Jan Kaluza - 2.4.6-6Jan Kaluza - 2.4.6-5Jan Kaluza - 2.4.6-4Jan Kaluza - 2.4.6-3Jan Kaluza - 2.4.6-2Joe Orton - 2.4.6-1Jan Kaluza - 2.4.4-12Joe Orton - 2.4.4-11Joe Orton - 2.4.4-10Joe Orton - 2.4.4-9Jan Kaluza - 2.4.4-8Jan Kaluza - 2.4.4-6Jan Kaluza - 2.4.4-5Jan Kaluza - 2.4.4-4Jan Kaluza - 2.4.4-3Joe Orton - 2.4.4-2Joe Orton - 2.4.4-1Joe Orton - 2.4.3-17Fedora Release Engineering - 2.4.3-16Joe Orton - 2.4.3-15Joe Orton - 2.4.3-14Joe Orton - 2.4.3-13Joe Orton - 2.4.3-12Joe Orton - 2.4.3-11Joe Orton - 2.4.3-10Joe Orton - 2.4.3-9.1Joe Orton - 2.4.3-9Joe Orton - 2.4.3-8Joe Orton - 2.4.3-7Jan Kaluza - 2.4.3-6Joe Orton - 2.4.3-5Joe Orton - 2.4.3-4Jan Kaluza - 2.4.3-3Joe Orton - 2.4.3-2Joe Orton - 2.4.3-1Joe Orton - 2.4.2-23Fedora Release Engineering - 2.4.2-22Joe Orton - 2.4.2-21Joe Orton - 2.4.2-20Joe Orton - 2.4.2-19Joe Orton - 2.4.2-18Joe Orton - 2.4.2-17Joe Orton - 2.4.2-16Joe Orton - 2.4.2-15Joe Orton - 2.4.2-14Joe Orton - 2.4.2-13Joe Orton - 2.4.2-12Joe Orton - 2.4.2-11Joe Orton - 2.4.2-10Joe Orton - 2.4.2-9Joe Orton - 2.4.2-8Joe Orton - 2.4.2-7Joe Orton - 2.4.2-6Joe Orton - 2.4.2-5Joe Orton - 2.4.2-4Joe Orton - 2.4.2-3.2Joe Orton - 2.4.2-3Joe Orton - 2.4.2-2Jan Kaluza - 2.4.2-1Joe Orton - 2.4.1-6Joe Orton - 2.4.1-5Joe Orton - 2.4.1-4Joe Orton - 2.4.1-3Joe Orton - 2.4.1-2Joe Orton - 2.4.1-1Joe Orton - 2.2.22-2Joe Orton - 2.2.22-1Petr Pisar - 2.2.21-8Jan Kaluza - 2.2.21-7Joe Orton - 2.2.21-6Fedora Release Engineering - 2.2.21-5Jan Kaluza - 2.2.21-4Jan Kaluza - 2.2.21-3Ville Skyttä - 2.2.21-2Joe Orton - 2.2.21-1Joe Orton - 2.2.20-1Jan Kaluza - 2.2.19-5Iain Arnell 1:2.2.19-4Jan Kaluza - 2.2.19-3Jan Kaluza - 2.2.19-2Joe Orton - 2.2.19-1Joe Orton - 2.2.17-13Joe Orton - 2.2.17-12Joe Orton - 2.2.17-11Joe Orton - 2.2.17-10Joe Orton - 2.2.17-9Fedora Release Engineering - 2.2.17-8Joe Orton - 2.2.17-7Joe Orton - 2.2.17-6Joe Orton - 2.2.17-5Joe Orton - 2.2.17-4Joe Orton - 2.2.17-3Joe Orton - 2.2.17-2Joe Orton - 2.2.17-1Joe Orton - 2.2.16-2Joe Orton - 2.2.16-1Joe Orton - 2.2.15-3Robert Scheck - 2.2.15-1- Added Source: httpd-sl_index.html.sl.patch --> This patch removes TUV branding from the default index.html - Added Source: httpd-spec_sl_index.html.sl7.patch --> The index.html file is outside of the source tarball, so we need to patch it in the install step - Added Source: httpd.ini --> Config file for automated patch script- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via malformed requests - Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in ap_escape_quotes() via malicious input - Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow when parsing multipart content- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted request uri-path containing "unix:"- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending a client cert to backend server - Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout - Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool concurrency issues- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized value- Resolves: #1565491 - CVE-2017-15715 httpd: bypass with a trailing newline in the file name - Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect - Resolves: #1724879 - httpd terminates all SSL connections using an abortive shutdown - Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive - Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in mod_cache_socache can allow a remote attacker to cause a denial of service - Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in mod_session can allow a remote user to modify session data for CGI applications- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect expiry time- htpasswd: add SHA-2 crypt() support (#1486889)- Resolves: #1630886 - scriptlet can fail if hostname is not installed - Resolves: #1565465 - CVE-2017-15710 httpd: Out of bound write in mod_authnz_ldap when using too small Accept-Language values - Resolves: #1568298 - CVE-2018-1301 httpd: Out of bounds access after failure in reading the HTTP request - Resolves: #1673457 - Apache child process crashes because ScriptAliasMatch directive - Resolves: #1633152 - mod_session missing apr-util-openssl - Resolves: #1649470 - httpd response contains garbage in Content-Type header - Resolves: #1724034 - Unexpected OCSP in proxy SSL connection- Resolves: #1566317 - CVE-2018-1312 httpd: Weak Digest auth nonce generation in mod_auth_digest - Resolves: #1696141 - CVE-2019-0217 httpd: mod_auth_digest: access control bypass due to race condition - Resolves: #1696096 - CVE-2019-0220 httpd: URL normalization inconsistency- fix per-request leak of bucket brigade structure (#1583218)- Resolves: #1527295 - httpd with worker/event mpm segfaults after multiple SIGUSR1- Resolves: #1458364 - RMM list corruption in ldap module results in server hang- Resolves: #1493181 - RFE: mod_ssl: allow sending multiple CA names which differ only in case- Resolves: #1556761 - mod_proxy_wstunned config needs the default port number- Resolves: #1548501 - Make OCSP more configurable (like CRL)- Resolves: #1523536 - Backport Apache BZ#59230 mod_proxy_express uses db after close- Resolves: #1533793 - Use Variable with mod_authnz_ldap- don't terminate connections during graceful stop/restart (#1557785)- Related: #1288395 - httpd segfault when logrotate invoked- Resolves: #1274890 - mod_ssl config: tighten defaults- Resolves: #1506392 - Backport: SSLSessionTickets directive support- Resolves: #1440590 - Need an option to disable UTF8-conversion of certificate DN- Resolves: #1464406 - Apache consumes too much memory for CGI output- Resolves: #1448892 - Cannot override LD_LIBARY_PATH in Apache HTTPD using SetEnv or PassEnv. Needs documentation.- Resolves: #1430640 - "ProxyAddHeaders Off" does not become effective when it's defined outside setting- Resolves: #1499253 - ProxyRemote with HTTPS backend sends requests with absoluteURI instead of abs_path- Resolves: #1288395 - httpd segfault when logrotate invoked- Resolves: #1368491 - mod_authz_dbd segfaults when AuthzDBDQuery missing- Resolves: #1467402 - rotatelogs: creation of zombie processes when -p is used- Resolves: #1493065 - CVE-2017-9798 httpd: Use-after-free by limiting unregistered HTTP method- Resolves: #1463194 - CVE-2017-3167 httpd: ap_get_basic_auth_pw() authentication bypass - Resolves: #1463197 - CVE-2017-3169 httpd: mod_ssl NULL pointer dereference - Resolves: #1463207 - CVE-2017-7679 httpd: mod_mime buffer overread - Resolves: #1463205 - CVE-2017-7668 httpd: ap_find_token() buffer overread - Resolves: #1470748 - CVE-2017-9788 httpd: Uninitialized memory reflection in mod_auth_digest- Related: #1332242 - Explicitly disallow the '#' character in allow,deny directives- Related: #1332242 - Explicitly disallow the '#' character in allow,deny directives- Resolves: #1445885 - define _RH_HAS_HTTPPROTOCOLOPTIONS- Resolves: #1442872 - apache user is not created during httpd installation when apache group already exist with GID other than 48- Related: #1412976 - CVE-2016-0736 CVE-2016-2161 CVE-2016-8743 httpd: various flaws- Resolves: #1397241 - Backport Apache Bug 53098 - mod_proxy_ajp: patch to set worker secret passed to tomcat- Related: #1414258 - Crash during restart or at startup in mod_ssl, in certinfo_free() function registered by ssl_stapling_ex_init()- Resolves: #1414258 - Crash during restart or at startup in mod_ssl, in certinfo_free() function registered by ssl_stapling_ex_init()- Resolves: #1378946 - Backport of apache bug 55910: Continuation lines are broken during buffer resize- Resolves: #1364604 - Upstream Bug 56925 - ErrorDocument directive misbehaves with mod_proxy_http and mod_proxy_ajp- Resolves: #1324416 - Error 404 when switching language in HTML manual more than once- Resolves: #1353740 - Backport Apache PR58118 to fix mod_proxy_fcgi spamming non-errors: AH01075: Error dispatching request to : (passing brigade to output filters)- Resolves: #1371876 - Apache httpd returns "200 OK" for a request exceeding LimitRequestBody when enabling mod_ext_filter- Resolves: #1372692 - Apache httpd does not log status code "413" in access_log when exceeding LimitRequestBody- Resolves: #1376835 - httpd with worker/event mpm segfaults after multiple successive graceful reloads- Resolves: #1332242 - Explicitly disallow the '#' character in allow,deny directives- Resolves: #1396197 - Backport: mod_proxy_wstunnel - AH02447: err/hup on backconn- Resolves: #1348019 - mod_proxy: Fix a race condition that caused a failed worker to be retried before the retry period is over- Resolves: #1389535 - Segmentation fault in SSL_renegotiate- Resolves: #1406184 - stapling_renew_response: abort early (before apr_uri_parse) if ocspuri is empty- prefork: fix delay completing graceful restart (#1327624) - mod_ldap: fix authz regression, failing to rebind (#1415257)- Resolves: #1412976 - CVE-2016-0736 CVE-2016-2161 CVE-2016-8743 httpd: various flaws- RFE: run mod_rewrite external mapping program as non-root (#1316900)- add security fix for CVE-2016-5387- add 451 (Unavailable For Legal Reasons) response status-code (#1343582)- mod_cache: treat cache as valid with changed Expires in 304 (#1331341)- mod_cache: merge r->err_headers_out into r->headers when the response is cached for the first time (#1264989) - mod_ssl: Do not send SSL warning when SNI hostname is not found as per RFC 6066 (#1298148) - mod_proxy_fcgi: Ignore body data from backend for 304 responses (#1263038) - fix apache user creation when apache group already exists (#1299889) - fix apache user creation when USERGROUPS_ENAB is set to 'no' (#1288757) - mod_proxy: fix slow response time for reponses with error status code when using ProxyErrorOverride (#1283653) - mod_ldap: Respect LDAPConnectionPoolTTL for authn connections (#1300149) - mod_ssl: use "localhost" in the dummy SSL cert for long FQDNs (#1240495) - rotatelogs: improve support for localtime (#1244545) - ab: fix read failure when targeting SSL server (#1255331) - mod_log_debug: fix LogMessage example in documentation (#1279465) - mod_authz_dbd, mod_authn_dbd, mod_session_dbd, mod_rewrite: Fix lifetime of DB lookup entries independently of the selected DB engine (#1287844) - mod_ssl: fix hardware crypto support with custom DH parms (#1291865) - mod_proxy_fcgi: fix SCRIPT_FILENAME when a balancer is used (#1302797)- mod_dav: follow up fix for previous commit (#1263975)- mod_dav: treat dav_resource uri as escaped (#1255480)- mod_ssl: add support for User Principal Name in SSLUserName (#1242503)- core: fix chunk header parsing defect (CVE-2015-3183) - core: replace of ap_some_auth_required with ap_some_authn_required and ap_force_authn hook (CVE-2015-3185)- Revert fix for #1162152, it is not needed in RHEL7 - mod_proxy_ajp: fix settings ProxyPass parameters for AJP backends (#1242416)- mod_remoteip: correct the trusted proxy match test (#1179306) - mod_dav: send complete response when resource is created (#1235383) - apachectl: correct the apachectl status man page (#1231924)- mod_proxy_fcgi: honor Timeout / ProxyTimeout (#1222328) - do not show all vhosts twice in httpd -D DUMP_VHOSTS output (#1225820) - fix -D[efined] or [d] variables lifetime accross restarts (#1227219) - mod_ssl: do not send NPN extension with not configured (#1226015)- mod_authz_dbm: fix crash when using "Require dbm-file-group" (#1221575)- mod_authn_dbd: fix use-after-free bug with postgresql (#1188779) - mod_remoteip: correct the trusted proxy match test (#1179306) - mod_status: honor remote_ip as documented (#1169081) - mod_deflate: fix decompression of files larger than 4GB (#1170214) - core: improve error message for inaccessible DocumentRoot (#1170220) - ab: try all addresses instead of failing on first one when not available (#1125276) - mod_proxy_wstunnel: add support for SSL (#1180745) - mod_proxy_wstunnel: load this module by default (#1180745) - mod_rewrite: add support for WebSockets (#1180745) - mod_rewrite: do not search for directory if a URL will be rewritten (#1210091) - mod_ssl: Fix SSL_CLIENT_VERIFY value when optional_no_ca and SSLSessionCache are used and SSL session is resumed (#1170206) - mod_ssl: fix memory leak on httpd reloads (#1181690) - mod_ssl: use SSLCipherSuite HIGH:MEDIUM:!aNULL:!MD5:!SEED:!IDEA (#1118476) - mod_cgi: return error code 408 on timeout (#1162152) - mod_dav_fs: set default value of DAVLockDB (#1176449) - add Documentation= to the httpd.service and htcacheclean.service (#1184118) - do not display "bomb" icon for files ending with "core" (#1170215) - add missing Reason-Phrase in HTTP response headers (#1162159) - fix BuildRequires to require openssl-devel >= 1:1.0.1e-37 (#1160625) - apachectl: ignore HTTPD variable from sysconfig (#1214401) - apachectl: fix "graceful" documentation (#1214398) - apachectl: fix "graceful" behaviour when httpd is not running (#1214430)- mod_proxy_fcgi: determine if FCGI_CONN_CLOSE should be enabled instead of hardcoding it (#1168050) - mod_proxy: support Unix Domain Sockets (#1168081)- core: fix bypassing of mod_headers rules via chunked requests (CVE-2013-5704) - mod_cache: fix NULL pointer dereference on empty Content-Type (CVE-2014-3581)- rebuild against proper version of OpenSSL (#1080125)- set vstring based on /etc/os-release (#1114123)- fix the dependency on openssl-libs to match the fix for #1080125- allow 'es to be seen under virtual hosts (#1131847)- do not use hardcoded curve for ECDHE suites (#1080125)- allow reverse-proxy to be set via SetHandler (#1136290)- fix possible crash in SIGINT handling (#1131006)- ab: fix integer overflow when printing stats with lot of requests (#1092420)- add pre_htaccess so mpm-itk can be build as separate module (#1059143)- mod_ssl: prefer larger keys and support up to 8192-bit keys (#1073078)- fix build on ppc64le by using configure macro (#1125545) - compile httpd with -O3 on ppc64le (#1123490) - mod_rewrite: expose CONN_REMOTE_ADDR (#1060536)- mod_cgid: add security fix for CVE-2014-0231 (#1120608) - mod_proxy: add security fix for CVE-2014-0117 (#1120608) - mod_deflate: add security fix for CVE-2014-0118 (#1120608) - mod_status: add security fix for CVE-2014-0226 (#1120608) - mod_cache: add secutiry fix for CVE-2013-4352 (#1120608)- mod_dav: add security fix for CVE-2013-6438 (#1077907) - mod_log_config: add security fix for CVE-2014-0098 (#1077907)- mod_ssl: improve DH temp key handling (#1057687)- mod_ssl: use 2048-bit RSA key with SHA-256 signature in dummy certificate (#1071276)- Mass rebuild 2014-01-24- mod_ssl: sanity-check use of "SSLCompression" (#1036666) - mod_proxy_http: fix brigade memory usage (#1040447)- rebuild- build with -O3 on ppc64 (#1051066)- mod_dav: fix locktoken handling (#1004046)- Mass rebuild 2013-12-27- use unambiguous httpd-mmn (#1029360)- mod_ssl: allow SSLEngine to override Listen-based default (#1023168)- systemd: Use {MAINPID} notation in service file (#969972)- systemd: send SIGWINCH signal without httpd -k in ExecStop (#969972)- expand macros in macros.httpd (#1011393)- fix "LDAPReferrals off" to really disable LDAP Referrals- revert fix for dumping vhosts twice- update to 2.4.6 - mod_ssl: use revised NPN API (r1487772)- mod_unique_id: replace use of hostname + pid with PRNG output (#976666) - apxs: mention -p option in manpage- add patch for aarch64 (Dennis Gilmore, #925558)- remove duplicate apxs man page from httpd-tools- remove zombie dbmmanage script- return 400 Bad Request on malformed Host header- htpasswd/htdbm: fix hash generation bug (#956344) - do not dump vhosts twice in httpd -S output (#928761) - mod_cache: fix potential crash caused by uninitialized variable (#954109)- execute systemctl reload as result of apachectl graceful - mod_ssl: ignore SNI hints unless required by config - mod_cache: forward-port CacheMaxExpire "hard" option - mod_ssl: fall back on another module's proxy hook if mod_ssl proxy is not configured.- fix service file to not send SIGTERM after ExecStop (#906321, #912288)- protect MIMEMagicFile with IfModule (#893949)- really package mod_auth_form in mod_session (#915438)- update to 2.4.4 - fix duplicate ownership of mod_session config (#914901)- add mod_session subpackage, move mod_auth_form there (#894500)- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild- add systemd service for htcacheclean- drop patch for r1344712- filter mod_*.so auto-provides (thanks to rcollet) - pull in syslog logging fix from upstream (r1344712)- rebuild to pick up new apr-util-ldap- rebuild- pull upstream patch r1392850 in addition to r1387633- restore "ServerTokens Full-Release" support (#811714)- define PLATFORM in os.h using vendor string- use systemd script unconditionally (#850149)- use systemd scriptlets if available (#850149) - don't run posttrans restart if /etc/sysconfig/httpd-disable-posttrans exists- use systemctl from apachectl (#842736)- fix some error log spam with graceful-stop (r1387633) - minor mod_systemd tweaks- use IncludeOptional for conf.d/*.conf inclusion- adding mod_systemd to integrate with systemd better- mod_ssl: add check for proxy keypair match (upstream r1374214)- update to 2.4.3 (#849883) - own the docroot (#848121)- add mod_proxy fixes from upstream (r1366693, r1365604)- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- drop explicit version requirement on initscripts- mod_ext_filter: fix error_log warnings- support "configtest" and "graceful" as initscripts "legacy actions"- avoid use of "core" GIF for a "core" directory (#168776) - drop use of "syslog.target" in systemd unit file- use _unitdir for systemd unit file - use /run in unit file, ssl.conf- mod_ssl: fix NPN patch merge- move tmpfiles.d fragment into /usr/lib per new guidelines - package /run/httpd not /var/run/httpd - set runtimedir to /run/httpd likewise- fix htdbm/htpasswd crash on crypt() failure (#818684)- pull fix for NPN patch from upstream (r1345599)- update suexec patch to use LOG_AUTHPRIV facility- really fix autoindex.conf (thanks to remi@)- fix autoindex.conf to allow symlink to poweredby.png- suexec: use upstream version of patch for capability bit support- suexec: use syslog rather than suexec.log, drop dac_override capability- mod_ssl: add TLS NPN support (r1332643, #809599)- add BR on APR >= 1.4.0- use systemctl from logrotate (#221073)- pull from upstream: * use TLS close_notify alert for dummy_connection (r1326980+) * cleanup symbol exports (r1327036+)- rebuild- really fix restart- tweak default ssl.conf - fix restart handling (#814645) - use graceful restart by default- update to 2.4.2- fix macros- add _httpd_moddir to macros- fix symlink for poweredby.png - fix manual.conf- add mod_proxy_html subpackage (w/mod_proxy_html + mod_xml2enc) - move mod_ldap, mod_authnz_ldap to mod_ldap subpackage- clean docroot better - ship proxy, ssl directories within /var/cache/httpd - default config: * unrestricted access to (only) /var/www * remove (commented) Mutex, MaxRanges, ScriptSock * split autoindex config to conf.d/autoindex.conf - ship additional example configs in docdir- update to 2.4.1 - adopt upstream default httpd.conf (almost verbatim) - split all LoadModules to conf.modules.d/*.conf - include conf.d/*.conf at end of httpd.conf - trim %changelog- fix build against PCRE 8.30- update to 2.2.22- Rebuild against PCRE 8.30- fix #783629 - start httpd after named- complete conversion to systemd, drop init script (#770311) - fix comments in /etc/sysconfig/httpd (#771024) - enable PrivateTmp in service file (#781440) - set LANG=C in /etc/sysconfig/httpd- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- fix #751591 - start httpd after remote-fs- allow change state of BalancerMember in mod_proxy_balancer web interface- Make mmn available as %{_httpd_mmn}. - Add .svgz to AddEncoding x-gzip example in httpd.conf.- update to 2.2.21- update to 2.2.20 - fix MPM stub man page generation- fix #707917 - add httpd-ssl-pass-dialog to ask for SSL password using systemd- rebuild while rpm-4.9.1 is untagged to remove trailing slash in provided directory names- fix #716621 - suexec now works without setuid bit- fix #689091 - backported patch from 2.3 branch to support IPv6 in logresolve- update to 2.2.19 - enable dbd, authn_dbd in default config- fix path expansion in service files- add systemd service files (#684175, thanks to Jóhann B. Guðmundsson)- minor updates to httpd.conf - drop old patches- rebuild- use arch-specific mmn- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- generate dummy mod_ssl cert with CA:FALSE constraint (#667841) - add man page stubs for httpd.event, httpd.worker - drop distcache support - add STOP_TIMEOUT support to init script- update default SSLCipherSuite per upstream trunk- fix requires (#667397)- de-ghost /var/run/httpd- add tmpfiles.d configuration, ghost /var/run/httpd (#656600)- drop setuid bit, use capabilities for suexec binary- update to 2.2.17- link everything using -z relro and -z now- update to 2.2.16- default config tweaks: * harden httpd.conf w.r.t. .htaccess restriction (#591293) * load mod_substitute, mod_version by default * drop proxy_ajp.conf, load mod_proxy_ajp in httpd.conf * add commented list of shipped-but-unloaded modules * bump up worker defaults a little * drop KeepAliveTimeout to 5 secs per upstream - fix LSB compliance in init script (#522074) - bundle NOTICE in -tools - use init script in logrotate postrotate to pick up PIDFILE - drop some old Obsoletes/Conflicts- update to 2.2.15 (#572404, #579311)2.4.6-97.sl7_9.42.4.6-97.sl7_9.401-ldap.confmod_authnz_ldap.somod_ldap.so/etc/httpd/conf.modules.d//usr/lib64/httpd/modules/-O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -m64 -mtune=genericcpioxz9x86_64-redhat-linux-gnu?7zXZ !XۢI] crv(vX0+x9A~eܾtK5v Xy4YǸД YuLZ\FpSĞ%0 2˛Kb*֊;2 T9^=)n AXy,XkYgZۡ[+Bb4&)I[s:wP!628}FȢs6ףK)dr l:}:92kENچ༕3 KGH|ig<=oɽtm>3Ks{NCW[ T1%޹f[01Rc =r +tDW~amJ <.O8D&,0YkHʹ.5M0 /v 4R% @5 M͟(.bz_0E_ճPT-3g9ĵH%87P/,ZTlQ6q[gȓ}qhH8j@r4pw9XC؞iGʒalH/ T>{$ +/OVm:}rjD|3)p @j&A? RCLOTko".@ۼ*((7PlxbW |f*Yө0`KDC-C|%2whF'F'E [k OZsTfٸ SL닟$\Zk1!0oɀLnЖdXrbn@{P{>@]DU9R5Ջ*H#;~ӶWMTc06jG'81\,[r M*6]u o|M1o!c|SJzb J' W Ö^K6 B@@InN|0 HI 1#В MJM}Jb'}tS܂+AE{-\e8Q尝'@X)w[cZSx\逜j O3ڟ%%#?iIOc`2cIXqpՕK Go9Nu)+Ԙ~+l knܺ."dcԝ/믕5|>BDp7njlL,+ 8UKb%Jݽ+H;'sY׬v|44Dޝ5V,D}\*DJKMǩ"fl?\OΠ>;)8^KS a-AIu" ׶% !jTyOj1Y\ Jր[$،YPߞi:du=6r!RݵL|aL䵯NG)hJcf+r!:9v=w]!}o_. s4ԉFiޡďRorKvbϽAA@Y0Y6>)yQTHL@HhpxZYN&Z9s58ʼg_kl% !YH羳? Ek嶢C=a:LHGjFNkOcyk^-1~+|:ڪqaK.*m|uvd+Q|KtHiN &]|QkY&0)ŭyN'nI/B1?PĐ7dTdQ2 -"wu;! ̚[_zCOz9: N%h_ +f 7դ[6ywx\<3HչOx̋ ;&b^"P%zhx` 7mozSc \(2ezW7=M )DsZ񯝈<8+}7IOm.ڂ˝ i<,z55q?~xa>p!{0JC^ k%[noDz6xRy&G x؝aW?B}CTW6]6 S3ڟt3y__L#>mOAZ@!bu !R/ ,9zxCHocPpVI*5Dvrj)foja(<$#(=ֱC,湾^g3!s@PHzcCɈm%2_2L! EBo$ydV vzbׂf^ԶaDl;XMģմ>etUj~;ܒM޳9<ӞI)8=|:`ɺmnqzkLIGΑ$T !G8 FNolVy~_Wž y+5D<Qa'nRSyȮndDjk@厩褦ՈTģe9qZ3 S8'S,QX-OTBM٥:N˘kB\Kؗ*r>m4|㲬4 זp&Xš,ٰX#'7jp$HXmRTjv ֈE%%ˎH㺅 (BFBԴ)Z:V2!v=6$9K FE|16n<\$ih4tY ʔA4%j#v1YdU w^μtܾ?ŏL .D6j(ZkjZ 7Nm~rf9p-F(:%kQ7>BSw@ey4kZcC_@59C\vB3\WZq9z~`1KSL^9Ҥ<z*ʬ1iB).2O (I<[7'Ju|nN$G!zJ^piWc52|E=3EDp.iQ$/,$DNw캧dzv{1&R}GYqTm* w@AX6N6YEZ ,=+bB[r2orFv׌bR':2|a]aA2Qt ]YY+g++܋x]*0sMr*#J{N*lta:J:8|y`. TwQ({Ļs4ۓH%7Fj}+ݙgwXVE K lP 6oS@ӷdu_cCHB` 7/iZ&`#M+^dXK:1ݴ';5C\Ht dY]5FZ'HMLl;q*ԇp}D4&e>RH TGXon?AY^ u4?J9$'1ST~y4|]߶*0{"_5eJmDC$k[l`\ ^9 BXh;e(=:7,$U]sd\]J,8N/_kO| {+2LM3>^ ?2 (Ѭ1P :n>+kmq0l bqir=3NU1|qSGdqR@/R3 VJ%>k[dXSb螮ƂXa1oW6떡+ w©6%91MU{пPo1pI' s\xCa#x)܎XrKKv.<pI5"hYX –>x" e* {l6R1%!PJn@zjEa:FlMI=DdFb@ͯeryF~G ƧH7Wxs79eG0{_I[q,֞b7j~0NHw^9JOLJEAdGKX|[F]- iB>BFmQu3F!9]\"YD Zbc V]dqrE{yՇ0qodʡNX u#Q:a99p6P\PO`%k)ץk]7X,A- [riA,y9']kΐ^ N#'R%NzDđ"i2 zW+PеCI)͊fWhH?V FF4G ХLl,o=h>ls ۻLygfv`e o[UW0%EA|yD V?\-i@O"hA(W2Tp?A6 ND_9f[`ϏPqW'-;ܺ:\ "7RȜģ1J(,7%G`p)HSw'MQ8ιa@K?H>ˣKU/*_3&f^BgwKg4 RWߜL;M4 H7w*DrVr0 +]9^%+~_Vac[IZ 2Wuk)t|r/=K$ÈlYԝ´W>W\H!v{LlYa׃pP&})BWSH㇃u{^CZzRJ%wFr蝇3M)< :UԩNE y?tC'#&!]} PkRQ8D#Qsl&a}vB2-z +*q+B$`|v@V薷L9٪i'k *q$W@$*~tFJ+m߯W[_"z-,x$jX|V,ؓ@D];Pe+o=bYQ~emDMGT+AžWbt)R⮡tG_"F21c3<əP}]|9`v,jɣ9KEc'$HF(WrRnTc(ɒEO䜬қ\ kי`ulB|m H:}5H_,nuV] ހa/ߵc0,Z`ƨ">b]iCU] UP@MdMR/jy1u>0Ā8tJ9Q1oAF c-_Ot4kud-̜X٤,8Jp1JKn4A+n*,X#"c $^.]nyX~n! $n@cr=,ZOW\2@yVd>$?ulvLKVܿ)v/ U#Yx6 鎒IifdBnlE[y )*}I)7:5"xP \8q{>=xNE v=fhIgRWޟaiPvTw,2K*Jvz5UhOkrwY[eTYcKQXbxYW9 ɽ\ HK9^\Uf|v8blC/\3㔻8ł}%G\+Z (SzJr2Y0Yxp ZLx`-&s*Y3vOA U;Z ͢Χu,YIȅS-w/Jiz%˲C*>:>X{etŚ)4VGVOe"-Vq"u4e7i6~2ȸkfu(!Dq urnHL+Gh&3=qvVy4‰p~IJDAS8 ήĊmBb!qh?D&Ԏ.wЈ Em >)WÄzޜDpf,.&V82}XunjSdUC~`U&QAW" ")#nv{;XHhEeˊՋ·ӷ+7cCObH]\:i7R)C^lB@RHHZJTf %Ak92g^ &*-z*aR9шŸ-Pԗ4$_)#DsoqWjm mkTEjEr]mGR48\z8P+t58IMj ed 9+Vho)V4oH{hIM'?2yH6%/w-HHEb35Z yv ? $3,"}OA8ը~FvflmkQ )gLOY8 C`cE}4guZ |O~uݖ &P Tq/[НmH\|E[<٠f< !Edff5 IJ} .>!mDN?lz,&] Z`irD7'0*3S}YkPp$q_UT`ntA| /E蚠'?y}j :e㡌\;)?XRkhm ?Fw(竘NШDVr ?n{kL&*|Qf:^\)2D1 #l>"ᒂPw Tӟ(y7ћLWJ^6!=Ka0闇"M@{^`W7D& TSuy%;k :7cW]TPD+EŰ+} Wɳ;#C'My[ et @?,io9Y8X8fVgU B'vVv|}$^\ ӗ)Yxry[*3f`Qg.bġ^avs/nJ"+(=xâ`c fPU s r?뵂GEDO9h_e;mggy )fɧ0Om%LJQ21f>yLW3NfxZ9rO*.ø't@no 3q`2!׸vq6.s_:D{sb6~f <Њ3?ivi8 RY߽*v(D mxLGwe.aݤ(YOʶވ-f|M.A/he[ `\'B6\FʮmdՃ%R.O?V!`'njy~}6 `J\j tU ILonv 0%cXDp8Eb\&yⶂb3jrsN,U\[UWO+4yhvO"dP*9&;=S7}$f uҟh-9 yTu)-%HHB7s74oЕpoy?ld s d N> TO+-Eox2oG/S׉2s4~{ƻYmw!٧l,D.tg,98[?d0s!~m:Hk*\x@JL1j!pMFXK9 J|s$)\m~*(RG:_<* q&ZrQ\&I=9y)8~e %jL 6f:&@胴&2YcUؗaRzXByUˠ_$(c4i]qy`>I:#ٰyMTZ{:?ȃ#6HjW(1ug՛-Cn({ۯCKćݡM~T*ídžqnXe}Sb_(˪ Se!$+ aLw |ޖF.HATxnMk~SE?DhKB;A]'Z'QɲI|RB&8ƶM!R<;yyiU)\̊ `ԘMn^5ጩ?rAE64)5 TRׂO6 p_$iR:lA*bO^bt7p]ܗ; 0Qv۸v J_HD sdD`Cw[rz~TW 1w|:S[`ڑ3-P}Q+ry(e\<3y1F^QqӖS뱚.=ΫVRN_:gQ͕;؍گ5F\΃9i`"P ['%B)أs-"#b^LY!s0soOeqIqxq3D -K܀Hat(N63D디utZDrwiʠLBkr)T<)m)Pu!'1a*dlSNC&~nEeOc~6\ 6w)Fgr+e\0>ؠ*2 LCXh( C_,HK2P %KD*8= L}ޱ.sj$0«&2JUN.AMNԔcy,M* qB$|A=G#9&]1=(u YuY KS\ ?ZeeC.ma md yǏ$GdAН%Qqߡdx]!+>{ڙmCI gm 2Xtʧy#fNm"yo8 }uƄt dMX֖G4y| 1L 0Rf=]2Q;9 MMڧdTuNYN ;o ?*yCsa$i@Rih LR֏&ҵx oU+_KIZ\lpʪr*Ƈ>֐JgvYoՊ7Ba@^0GsnF0=6s/{Tx08EADuݡJʚ׏Doſ۱@Q;Wp2%"C=ztA:50sģqcJ 0s"@$W`;T,zQ!T 0dawG1Do3ݧYmd÷](Num<a^%4w Xt$]KAb`hm8JlH]꽧vd^x sqbt9 RyYIYQ?|[b9'f5&Y$hmIc˒y8T&~Ѩcy rw4Oӊ>3$(Tt*WRnQBL,` PY~(OR)v9q&rmZk:XG h),vH.4 ՟y/yj 02_[42tӀj2j8.6=-)")|8c>A0` !) MEq@kV%>c*C "34%}NM)ϦAѼ  lxa DuGG&:lo2t~}%"\el ZWԶ[V5Y`j>6^CH #cxw {! l_dkn* 0_&).t֚Q-U*iM;e@%+؋sؙrK ^L2of%7.ĎK$6JB`$I^Ҷ`ghW: .{8c>*/G@},উ1.0G K(`ύpWusU3/fGDv, ZG!zP87Dθ ;-xuFgbQۜrZK ڍC=L QXlS< cPhLttg"MX8 ߕ:&ZE,6zDzAS=@ f'Pʠi%Wg $0v`!y},s'yպ? $FR]$Q[_\SJQ hQ]\pTWu~X,v`&[]u2 <@R,?fNF H ^M&&dV! XRvoq<@_+t>WSV؂#UNg??LD(nN]c!UyMl(kΧ3U# C")0E#&xL:ydGb'ZyD'0 RCײE_Ya^c&z 6Oh,k$7 K7X<5|ni'3 B_8[*-gnVQv(vph↬H;n}My(a[A V:p?1SM28HØGt]90(Eޏ!,s1l-꿑_pxkSrfW>nf gQm'uiRĖӺ39JL!b+7LuXc$;h[Q; }4NLMuB-vɶ8SH>&,s0Hȼ= ZR\Ț] ӧ1T@OaS[a77V8\0hW.&A~~E>EXzxdZt;S- lytm筯Լ*_g͓ND^uZu*VߵLZ 4ϼtN2tDžSfځ5@;tM"1}3&] OvojLHDN!dZ (q0?Y~Xʹ5lb=KHK=5@A;+5 ` ʖqlqPGD>Yٷ8(BT Z7u. < R3Eu=ۏPLGё )ct f)uaXckjgTF'vQHBLO}GLqia%b|苋.>0/dZG$切a=dC\`W\B*80ykgݏ8SqVWG ?J eӎxew`OA} B|}ewSK K9xѱ=5[ysa[uLf!ojW&;0箆l<5cW{/|&8 ˺1Y]<" ݈&,"yv bciNCk;{| guDpkHqiNe5b&pP5Yy؊OJ}J=PC6*B/E= ` xuKxlZX3l9|sx&:)Ƹ=O]^ *R h9%ݛmReEj޸'!Zr1^K&s"`p%Zi Fjô ]Nk1j4=(JAU1Q6( L!#0g)'ļbA)SoݳPv5Y*cjN15Z{:% AWd޿{-Kɒ>P=voؠ(ְ!kTC an@~(g( 7{D,w|1PV֭S&{h'|>qdTT)4}Z r =i'!TP55E" Lc+$.ݠQ.hOأ;VD3MP R6$KFϔ7:~$ȷ|mmQoL O rkLH[>[[62 YPJ'vrFv^?݌ނbuVaܷ X;XrF "FRAӫ'ػ/ckՋBX\/Wm}EE1ctcusE3溧Q1"7sOT˦r.}ڿ:{7 Qna8p[}yS7*u?؝nˢ= &5Oc]#CeQoq^$$uaα&1O((2II* rb,CAD{6`SME]}f,Rq\)mZT'!NKUi'<ݧ ױhTu廉^2 bxtяQLeMnzߩ}U\y0 %DdO@`[9P{\`<< $[-$N,tCϕƃ3G6 [AJ?N#| lZSM}wjɫ 0p=Ǘn(Ɨvw`Q<(7?B;rtMu+h$2Hī%lʚzAyۃ;d*)ЈC>D^f*rrUZ41U|OtQ/ŁRe;~hR2tC|>h #ʞ!Y,޺DzFr7}a-xU4QOKzȳ A=,r\1M ; |Wl>q0d+  %4e]Pl'#cz>zke] ]wNPbod'J mlaGy>mhS)9'rikT `q=] u=ÑY@B _jtSU Ҥ /3,,I:C{A\¥`) rn|k$@{տo`PV}_^U_1yAu z?rq_ZJ=]Ub f^WdՌY!n'$Ldeذb I:نZtƹ3^|pJ[)WL$$n"x~\>듗#~E9rƇ0̕\w_tbce8pj`%,Lo?ݪ_ÀKjqrrdϴ7_f?'?J)G?B0'tz Bbo(/ [8e':(+Tnd9u{ÖkdeuJ .ϙ2p>nW,# = a㨴f/>S(()e뾣;oK)[EW1CCW37r8-"?& 蜤 Ń Z`%}$d 8~2FĂXIRs{^r.:~qKОGْVa^c= Tѯ+ga.Rx |j/{B K)9K-iH!h ͵L9w}j]ݭ+^jm*p,6>%XF[a$AJi1ɴ/1} s7e㋇2QM0 bq@̽وyp&jl٣)i$.e݅Io/qb&v,@댶0/uČ?$RjH>̂.Df;=/_^`KBCVKxR<i~|&| JxLl  GnB5Y_;u%ivfṖ ChWlcc~s̠Sqd'ct&9)d~%(nf!! Oz0G5ʚ{r&,s!TkG͑ASLpRY8QJOh)AG-8| S*{M't dkoX~)B˨1-[L7`:Q|Y,>^H"ƪb0 ķZW;[a/\>@y@c JXe`)6za>/Ex?0LȈNIV!=/ցٍ0?nH\k&=֪AX#nc,gp6q!lJ ^#!0'Ro>jCJ Bllq[(ӄV 3]RL8lv=-/7_X+_h ' giF,Fg{RgSLMMvªhU^"ɳ϶`sNL!{8`n?up8Zp؛kANB}W}xU".Nq{{2 p\yU6& m*<,F8A4 k ᷠ|*f-IXaCQ2ؼuzuC`g֗s6t,DllPBqdU#iqQγ)C+F?xf0lG=Ys·k KH-n`G}`jh:Q2 YWph[;Ы`.^,N?Ww _p@^`%V064vK?4Ȥ$y|P6t^n{|x4h?/H)q]4Oj_z.F邝ڟ*LX_.!ƨM*?uc@k%ѕ듃|;D Nԓ&-W@GA#vk{wѠ=<]gG(KVd:<2m}PeIY!JʞIMNV?GSoմUNpIf2냧(BP m/ޕ05Lܚ4qS#!D3%fIJ4j)P{Z1H@1&oƯ.f3`g&{(8'S|ĎRNd?2od 8P`y1rVt G>wrE8t!5ƊF㱰 а@1'3L&'dU#JNS8rٖfrr {2vU96 zP!q`?V b𵩌A-I2zF*+ W3= iGaS[*wuʶMeڳEW\.AH;X 3Zݩ̊hm@U Xt Fb2xLU1/6NM%ɎJJ QƲ:A8B Z:3R%"*|OK,/yy'og8ѱ?rWE݋ wH4ѰD6cunjڅ}99iW9#x=.j!hrWjcXaQ ~L+kLUIy8^q`W҄Z5kh0$LSyN_A:ii],:yoPHZN0T Ki},婱PlOO lNF96]7?Ƃ9\s|sK_[~4M (J^qBʔڻJΪM*&BͱfsS_Bc*\x~QE _( wǢrzAaqٲ\Ze%[RO(&AiUJ>۔_`ٚ BNo+O~E?B7Jt7}gҋud zֲ;x/ W_HwQ2tۺ4d4yY0~2Da>郚{c\&}}'R5ҁzc%QWN8Yiha|)]!ne|O QC l',J/w)bh"aQ@màQm(QcL+$1iG* |a ڂ(o۟IXqd`wALb~s ]։w7_J̇}GTHNG, {.h)ղ$м+#Ӂ,t> Uq=fLsWe[F53Q(B݈+׾R hj-;fÍ3 fdV㍿0o4)5j!jZ60xEU3)E h*lB]tyzC[Cb϶u ީ4Jf"0qOViPZJ^b~Xv~L\:jewH8iQt)$mFü_jVzMYepegzGcDNmŨ.YL(?cv9\/2Ϗm쉸<πFkG -o_q<}zpg)#1>L2JR.Q0)\Z߄g-}pDjr.w~M읰V޵缅";MwzpB_#Q "`؅RO>9}YS~./Wҕ0.p~;fU4Hꙍ`]ۜbn}-NoV/L_cS48ck3K j3U} 0^ˣx``cziﯯ/'vl9bӳkX^uƾqς_9b`\c:"+OTWM*kN:`M)K6ǿs $o~~Ad8_M̊eNq䉳 ȶsN)NJ%vWǏ׮0`[yՈX2h 2D$|ޛ !@]kO2MM39zza*,%f( e!ka RWVâʅz7YtL 4^O 82Mg <|TV}p*?Ë8XMM47ҫFa8Y&RBVdP2\p(9AĜ Nb+,ք/'$ndɫz$NO(;ŕbci6*91"ͲgȷD,B MҏW| `EoAz>]q)ZOVTr Ǽ&&Էw=N2.W".iwf{ݶbO8vy6x>#Ž57~$6٢aCv"gٺc?necP!fj$#ڙ^#.t4 t\W{*m,W v/3a6rB,Ssx(<:-Yhےh?mK. Q M1rD `LڗZoc= 80Bp;KYf2}f)&@taX7Ū=nwDLSvl0)׼㷞vC椃|x"j k.!,M"$:p륛+{N4伶ll=ND"0zA."?{H<68oґ<b``< Sxm ,I/Zj6ny90C٩]gc{8/^!V䡥i"1l"h,9:QPfx%䏷! Yb*M.ح`uYF<LJgD6'ZR9 ޺ۀg#& >o6, F `p(",U[!kOU=l]eK,b}Q1zoƟqܸ*Mn1+8-=&L7Ӯ= уtO:Y^[t?,V FLqK;a K E-9η9ibCA~ %)ˍ\;{dc'0H6^?0V" ZȣW8'[`Y#q"LXxM\$aQ79yU};PP5-'vEO撜 nf桨 sȖG`m}_7X#M+Y, j,!gTȱzRs/d&u:)G,kƩwr vɢ)%@+ |g }%BB tƘ8ށT1\ (06 JJ:+s,T@?3yI^1WtzOL("/"WzdR7YaނHRWє..rtͤ<+"0^*Hc*yMYG)go!-꾡a Q3~+a(:(G'Up'nf Q0Ʉ6K~--|GGjH[(x*aǁSҲ<~d)kЖa5՚S>֒G LuӋLH-{l`.#=qjhq!u Yh!Bc3~"qE=4WYG/wyӓx%XsrjMᬐWWYչGQ?*ÀcxVpy5tJEJ(UכQI_ ⊩8k c!fSR:W3пū9 Xaҟ\J'@!yUȟ$h_E +Wz#!]sܑlOmuڲ8ӆ>}[%h;V ^']-~ wZ\RMst֎a6NeJ\P]ەhSsrH{#$ϥDUMg]ð\XӖvѳ &d^"rd+Ќ|3=j(NL%OXj/%)D?@C.! &/\9H5IMXQRg12pf}ٕ1> 06tihAcYv.Q |hAΕe_ Art)K{Ǖ|;.izZ՞Ȳ~ʥ6x۸|I~s4b?,I3_/dGaI΃9cu>d47/_-H뮄9캶/AQ UN/D. ALYxmȿfH9Dy$WUt^d>ODTQG:J_d B6oi{͸44*b#xAC?Z3ՠF0ˊptj45v־+z +(imB X4̓Q#\A]**Pǰdvqj9.pvԐ&p0#2 zX8^a[yok Vj=m-Q'βǜ3g W0 q-FBN>^j: ߬2ѫ<P+,X?&F˧ -_cd"4nޫ4?"zB.7Gգu5+ j } s =Y>ݴOS"<(6^HW\3YObtN?ϥ"Dd,M 8{ PM8vT vs^Hg}c-þDX=^^(xŜK &,OyۄI*ct("-ə;٨}M+`ݥFc-Z{U)٧RX^VufA3,hxRptϡB: CD醑g; $GFx|yqHl(=,R׸;M\,M{UWhճMT.X?&`vg" p |k-~6֖/ζQa:nQ'"cnS _"+O LR!Y73:E˔ajMcoj^dʲ!7":-MzhhtHɖX^ 2X" @*`'(*}0%$Dv#KZG~g8'Ј!e)d4khRhRu?%p $M'I4Kw#@t-̊7e z=Sр7qN%1kGc%InUE }@6yfvz$07CHp%x6 Gyl0'e4LWhZ4K_2@H?#,ܝk1gn*3mhi?ykyT=ZJO(&2v;7KoWXmh~%:&F.otE!F(+vYx]${E.Z@wa`3`؄Fcxy=|?X}$q3K0== sAWqKryFVvd*Ht1=؀Y'DZyD'UI X&qM̸[8D$FPv4.6D_ }lxK8@aC3%漯p309'UCHI n<-w~K\DچKY׹OP2if0_s;'u}o, @[_y*bS)|9$R 1҆sLќ~=bi .ȧdɛu'@ SNU@5ќ&ڣe\~)IA8ȂrF/@ddÍ-3O3O Yu ]THt-]9x Kbd]lJa B%&s_0;Ԧe^=#>9p9SGgM.5 )i5V2ԣ41R1WPnĄs mH薸h5⋕=MK!ĭ==p9Fn>حt{V>yّxּ=$mJKYf%kfyb4ˮd`ǫ_?^SjNQxe0) S**;'aۡ-`[@^V2`M0OR1|uM_t!+`&e-(IzHt5nhS+T𪭚f|`봣>."p<[98IOp}7OvU^CziC"];+ӏ X?fqÜ-/0h^<3G=7Lth9Jaڜ~8xgm,aỌRahpgUT@5ˈ/MBaCʨ|sZe9zMqboRVӘ-O풭6fzJ/j޼*U/Π}aEB_ V_0P/MJR.{P,5WlO[\&ѽ'o _HQ-zag1h?[럟Lfws.X-"ɻP^t}z6e?=y Qbc " y#nϪ1J"&o@4Q::nfߙRPdÀK{JSז`Bq-Y4%e|Q͊ o#>]>M"wbbU" 7zP&z\8UpH>Lh:8ds8 Jt+c7F QGĘcY p:AБ@Ұ#TF/xA@c4/l?av>J&>Z:1& lI+$bMXVA[%N3cOVwy˯ p_=r[풊[$gUAvS3a7\/4e+Q޾储2hɘ{Dn30z[ƥ|:iN9ȍ%d.e _Xÿ ߖi w~`>BGe[RNLA $^ۑzbdת*}:q9DZQjk`5k*fj958YްR8HlT\ H<n2 ȩOĠg G+]JGX0= )i^*jszn<*xm`49-~K+DZV*aܧ/I]3Gj=]ЙwJ ݥo.DnA .ieVmu|$*fkox'zvzx/ϥA} 1/{'\.`u7'F3`/.4{N eS;UBzk`6KÊqpYhhb ÙDbiՋc'uÉm(|sA}}zp6oNI2堕93a';(T9N W;9ݽ c^Obw//P%Wǿoҁ `q-\ _1n}MEz'hSJ<(zW ` F;T٘@X\x1]u#J2`Ӊ2Fa32#ndt &]9_ "夝Y.0sSeif|]4 -icR 8d =[d0_ė:9Pm`3Qiu-eߎ5<HFJ#~zv; 5N;o }ic0l!oONjD}z<]dwϒ h'AxkL6iyYx$ @{s[B*x%B'bO=/ .#qas֧W;Gڤgm׆hPpJ,[M=k^dJs)WȐQ+Ɍ*E|EGRl,;–xPT< YIg<.g[ cm+=LMfHNS}x~-H{Yy: 51 \LᛸҊu]`њzVDZD.˜*SˢV*AAÈn.Vv2x+-o^}b#8.|֧ #?gye ~DU+`c7CW\/YJ1@jwCCe ߣ(~7ͺgrݗ2k1f%KV+9R?mD l8 27Be Wu_Vxb2CMȋ鯗P~Diz*K{F H| *οkFa3Iֶg/j.Ht.2B3gb,H$䩶J fo!!!W=ήTh~$ոVmWmLd²|6Gc~\Wԃ]JP1w2][D2i7l+ ^ʺWo2L&1emP,{^i:~XFG}7iUǛP"7 qŽ <δ(I*-?3|v\9Sz}@S D~VWw*%b|nվ H:nƈP^ensa_B2%ws/K-nFLڋ`~B͎6e| e t)́?̖Yd{fxdEAr"aeVZcc4udЗ +E̱'ʠ&vLϮA-i Y|Oq1Mx=4NHo~Qbص45Ne!k=dS\'ۇ@3 mMKΤd<')#*Β_v/a8̢֧|Tc%fB}@{2-ao[T2J4Q&ߊe"WSf-AXQ+(] '!_+_R[-RCj>T"42"sQ)cjʴӿDӃ<8-7qf.Dd,U.ul>"1C5m<<(+E@SzfYFfGVmc6(I]Pp; &@MrywFT< 4M}be@7a77 ?Q)aY~WN&FU~*b~Q]ZVcm-)MٹҦ#̜ ;~/\nFOy(ݣA(! 6>G{1rUڔEiLm3"مިx{+(u YbyA|U%H42@ɬp$PU{k¾KWO8HƻԪQ9| w5#A8ڕ&gy]hB  8dfCj6O#_$ 9ЫA]'5SiOY`qqIr(w&|39e2Զ,} +V" g=fѲlEct+<7[O,/@LF!ÌRycR_ry-.(!ϭ>dGA,Xn/C|T!h`1mPũ-瑶@ѹ7) ,Maikd}KEJ%|080Lu SD6i `q"dMܵs&}<8: zՠl,%pdT H~TL!oq =M$?]2Tw*c0n[b`W\;g ?dK>5$qC[[db !5\$oDdܛ$da)xA~+cFsgHM}ۦ_}aWPSM%s [ԢU]=J2cJHQ¢.7} &e;L>kLwEg;Բ ݝ K- QhGAufoW lTVb>n hyJ`Ep0*Q)>:ɐ̤[d+H`SK㎭cdmP(;|"ơ5laVp抩Iڈ?#&ʜơ9#+/"ky6+mQ؉ޮRO7XLJVz ~ŹC.- ,84Ӑl:ZxyɚLp<$m ,_`($\bIDVKk犺QQs =9JKlAd2V37d(-[6us YPj+tVG4FE+tL7/n#3Z-0>C+ kK&Ґhvw&9(`aO4e5vcɬ$=蕬Um%՟':JC n#~QqAR 9@ɰ3Y*,ؒՍ'b栦Ѕ`OLEw44fO>]1Q;XC{L4,PKza꫷&v W[छsͣ7\§qGH-/Ay{TPSa.uMi@X%uHɻa4IhZ"SxƩyEL#$" yT!ܥdPzCwI$^+*8eo?3Pi;ap3HP-V}5 s ‹bo kGˎtJE?4B%A$N0*.@gO\Z\Dfو[K,|73umfdenNn]4Irr_ 8p.0,uuNWkaj Sm(AzfEĠ{D Nޛ -i#ǯ⻆{pD\ /i=q9QQO ":=i{nc)p24?K F?/Ml$6 9*kVڧZOu ilB9Sxtcmk p}l/3xiRbɓtX[fW+𡿂2rfv 3w g|ձnfg# no2x),1:gH}l] 'LS!~`+B[paCeC 77KHFT37P†WJ+fi-^qŔx;gKCM.e 2l/+ӽ8~wOwt:;-mU [ D%ypNj#oHǶQ' OƬo +D1\ "e}#3QoT5ZV"vtM1vk(svLZ}9^U4oGĆ !!{ö\+0K~0tdhY4"Z+vaօdzȗ* y`Rm-> T-bDȚ@gD iAj%CEܰ)R"(e5N0tlpxv/Ι|&+պv ac_.FoB\t0Y+B Gpa{QYDӼL S߄|B~ C]!0j.~٩n tNo_$٬x ~yH3׉y̫fͅ-=M k9[$WOK-^c8D*p_ )^{.Я_@v9K"%*UP1L%WlN  pUBY$B1Zk@stFWr~.yuɕy[2tKꮜZ.u Eת]M?ZglF[>,k`UmN.zu߭]=sJ\O!rUZ챔 #Gak/X !˿Ȝ4b)m- "ӣzv.H9$ZV͎zJI@5JEXAXloӄx91׀ WL/c3ɻ& "yB@LuPs ˤϩu2xNrRJDM f* ݎۤ@) J_w\OP=ӼQ]寳W)|_ʨ`*xQ@|>4NjXdq?Fh0llE\БGږ{&FpID{/ب_٪ u P)%|waҖ{,yad1qOCQ~rAIQ.>N)s/ L)0XCInR᝗)M 1J("rI;G=m`U=Zm@D8 ?eOs#|T/WVedV5/ʀGFrdf}ze+5)9:t6C"&I@hB` e0