í«îÛ    libsss_nss_idmap-devel-1.16.4-37.el7                                                Ž­è          ä   >      Ô               H        H     è      t     ì      x     í      ˆ   H  ï      Ð   ˆF  ^†<Ž 
	°´?*}}U+ Ÿw¢µ´nç~`gèDÁ{BâE\—2Þ ž10‹›oÒ’ìlíTàoÉ<´$]58f40604e44feaa10b551f156a139be04ef6ecaf     ó¬»LT*cÕü™:O?ö!$ˆF  ^†<Ž 
	°´?*}}ï5 ž9ã*ÌI`q‡7Ë}‚(Ññ0F ŸSfÿ_ÈÊÀÄGÃìvªÈƒ÷³ 3   >   ÿÿÿ       Ž­è       9    ?          d            è           é           ê            ì   	   '     í   	   U     î      Œ     ï           ñ            ò      ¤     ó      µ     ö      Æ     ÷      Î     ø   	   ß     ü      õ     ý          þ                   -       Ô   -  	     .   -  
     ˆ   -       <   -       é   -       0   -       ä   -       Å   -       ¦          Ä   -       x          È          ä          ‹     (     ·     8     À  /  9     |  /  :     ƒ  /  G    	ü   -  H    
°   -  I    d   -  X    ”     Y          \    Ä   -  ]    x   -  ^    2     b    Ó     d    ˜     e         f          l    ¢     t    ¼   -  u    p   -  v    $     w    ”   -  x    H   -  y    ü     “       C libsss_nss_idmap-devel 1.16.4 37.el7 Library for SID and certificate based lookups Utility library for SID and certificate based lookups  ^„Úüsl7.fnal.gov     sScientific Linux Scientific Linux LGPLv3+ Scientific Linux Development/Libraries https://pagure.io/SSSD/sssd/ linux x86_64    Hf      ì        ¤   “   „  	Œ  	  	Ñ  ].  Ã  §  Å   V  Å  ê  h  U   V  ê   ö   ö  “   V  „   å   å  :   V  ¤ ˜õ   ™   l   b   {  ]–  U  M   Ž   ©   ±   ¸  ‹¤¡ÿ¤AíAí¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤                                                                                          ^„ÚÖ^„ÚÒ^„ÚÖ^„Úú^„Ú­^„Ú­^„Ú­^„Ú­^„Ú­^„Ú­^„Ú­^„Ú­^„Ú­^„Ú­^„Ú­^„Ú­^„Ú­^„Ú­^„Ú­^„Ú­^„Ú­^„Ú­^„Ú­^„Ú­^„Ú­^„Ú­^„Ú­^„Ú­^„Ú­^„Ú­^„Ú­^„Ú­^„Ú­^„Ú­^„Ú­^„Ú­^„Ú­^„Ú­^„Ú­^„Ú­^„Ú­^„Ú­^„Ú­^„Ú­^„Ú­9a6265633721f54dc1145f107f1032bf2ddadb7fa91828a72ef8aec04daadcb4  14958ccfe9890efe0421e723ab4b8faaed9a7df91f71f701cb4d72b1c1dea8d8   9e7ed0ef70f99bb7f763a48ddd95d5990e103bb145eedfd0a76d19c122374be2 782b30d237bdbeddfde4aed01f007264cc116b2d4be2f398a7cb74ec7a5bc58b c98c02adc57337f58c40aae15bbac05a3ccb364e5adb1d610a16452e92f17830 737b19fe7dc833f59fcc157970598aa8bb298ece01e004104c32f8ac2df3eda1 26645bfecd7570b84de1d9825113a17ccf6ad7ced9abf95bf66a9dcf90175c92 dac9178f7c67d29d62db02e27ec151b91e9c15c8a27e3e8208be57d910cd599b 6fe0931ab7d1dbf653c841b6623ba29424a594a0399eb1da83895f569d629121 6973a2aae66bbb99f2b57f2ef160182825fa5305444511ca1eca4e1b0b38528b ba0983534deeb671b855f484d2736a7841a689645afd0908618d5fe81b8e09c8 b950080fc9f36f3b8bfd63df4c442b68d372c30f8afdc1369c9ceadd121f8d4d c747f2fd9b8f530474462a6bd9221bc4800b145b441e3720ad0ba1817740db8f 840b2b0c6ed8dba0d3db0971f00f72afeb5c98dc7c677a98f91fd632c422b29f 5cd4cb41607a30d7820cc20ea76b4a3b8f57d3d2b7d102b58c8e13ad95e83aa1 a6ca13a1c87edcfbfc91317896452c31a9d49c4768f1b4b46ac32e0907e00a73 680166339ff62595dd2d2eed3a79fb9fa0c2e8250e89539f6d678aa2e5e51e26 c747f2fd9b8f530474462a6bd9221bc4800b145b441e3720ad0ba1817740db8f 5cd4cb41607a30d7820cc20ea76b4a3b8f57d3d2b7d102b58c8e13ad95e83aa1 78feabe3c5c148145751813bd515c36ae5a63e1453778550ea17a16116afe64d 78feabe3c5c148145751813bd515c36ae5a63e1453778550ea17a16116afe64d 3260ddaa44856ba63d14621f2436ed9d3cd432214c751968a95fbfc0ba3e8995 c747f2fd9b8f530474462a6bd9221bc4800b145b441e3720ad0ba1817740db8f df6fd4e35ce1205eb3af2dafa276c6ba2b8c5279299bc2e8130c43946e8b686f fb1bd95d3ab84076623479182c8493531bb685720e25eb15d3f40bef58482e19 fb1bd95d3ab84076623479182c8493531bb685720e25eb15d3f40bef58482e19 1c555557ca84ba3598f52c281780dd7e22655db21ac383712e62d4540a1bc525 c747f2fd9b8f530474462a6bd9221bc4800b145b441e3720ad0ba1817740db8f 9e733bb5fec13b4ba0508a1eb99dedf046fc82d5064bb2f750eeb4c7fc324bfa 41be88ac0efcea8e7c62a8d2b1662b2245ebd49abf250cfab234b2a94786562b 4bdc6a72666e1b300fdfc5ecf102714c9fd57df76fdf47139f8dbf8ae5986364 6a30bdd21a49026b2a0f553e7944593d3cf015fdda29c71bb495e68c77e88ec1 b7711604d6cdeaf3cdfd661fa21fc5bf18de929671c801f00415eaecd35abda3 a04665e9dd0ef5ef2c6ddf02b4a12472984485adb027fd12ae6c60ffd203b1a4 f3a325aab18be1bf68c73e5e1519c748c86859a64b9a82c127aeaa3870e147f3 39bcba0c183ec442cc90fe27a2dbafd4e1c791aff374b5326ba16880a16d9826 9abb731904dd1f8eb00aaea66bfef72d5252931d84cc01cfabde3bea854b5b14 5ddd37bdced843340e0679b6b4e7ed2fe318fd0cef76d160543722e0c3eac11f 901ae15db25905dca7a17b81c6d51869fd12ea569fc4b072d217786b4b4d73bd e4b9bd9425bc87b33d6b1911e6398673939aa2f15ac505b9a1ab029b8452dd08 69f392daa28adc942272615ff2db16bcf084f01ec9fcc2f7f6a632b2bba8c468 9a8f6c574cb1bbf474ff6bc90f795cc992d56ba4c2340bb4ef235e09853c94b4  libsss_nss_idmap.so.0.5.0                                                                                                                                                                                         root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root sssd-1.16.4-37.el7.src.rpm    ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿlibsss_nss_idmap-devel libsss_nss_idmap-devel(x86-64) pkgconfig(sss_nss_idmap)    @      @   
  
  
  
/usr/bin/pkg-config libsss_nss_idmap libsss_nss_idmap.so.0()(64bit) rpmlib(CompressedFileNames) rpmlib(FileDigests) rpmlib(PayloadFilesHavePrefix) rpmlib(PayloadIsXz)  1.16.4-37.el7  3.0.4-1 4.6.0-1 4.0-1 5.2-1 4.11.3   ^þÀ^­@]äüÀ]Õ*À]Ä@]œÀ]œÀ]„¿@]„¿@]ƒmÀ]ƒmÀ]pøÀ]pøÀ]pøÀ]pøÀ]S÷À\úQÀ\úQÀ\í"À\í"À\í"À\â–À\â–À\´r@\´r@\´r@\¥ñÀ\¥ñÀ\¥ñÀ\žÀ\žÀ\žÀ\žÀ\žÀ\žÀ\žÀ\“|À\’+@[þƒ@[í_À[ì@[Å@[l,À[bò@[a À[Y·À[Y·À[H”@[Eñ@[6@[0Ù@[,äÀ[,äÀ[d@[ãÀ[ ÀZþÀ@ZþÀ@ZàmÀZÙÖ@Z_@Z_@ZŠ¼@Zy˜ÀZhu@Z3¹@Z2gÀZ.s@Z*~ÀZ'ÛÀZ!D@ZòÀZþ@Z
ÚÀZ	‰@Z7ÀZ NÀYüZ@Yéå@YåðÀYJ_ÀYJ_ÀYCÈ@YBvÀYBvÀY9<@Y9<@Y5GÀY5GÀY5GÀY5GÀY0ÀY0ÀY(ÀY(ÀY%uÀY%uÀY$$@Y$$@Y"ÒÀY;@YR@YR@YÀY	Æ@Y	Æ@YtÀYtÀYtÀYtÀYtÀY ‹ÀXýèÀXïh@XîÀXîÀXìÅ@XìÅ@XìÅ@XësÀXÜó@XÜó@XÜó@XÛ¡ÀXÛ¡ÀXØþÀXÓ¸ÀXÉ,ÀXÁCÀXº¬@X‘ÍÀX*ÀX lÀX lÀX lÀWá$ÀWÛÞÀWÙ;ÀWÙ;ÀWÙ;ÀWÖ˜ÀWÖ˜ÀWÐ@WÍ^@WÉiÀWÉiÀWÉiÀWÀ/@WÀ/@WÀ/@WÀ/@W¶ôÀW¶ôÀW¶ôÀW´QÀW´QÀW´QÀW³ @W³ @W³ @W¬hÀW«@W«@W¨t@W›E@W›E@W˜¢@W˜¢@WŽ@WŽ@WŒÄÀW‡~ÀW†-@W†-@W†-@W„ÛÀWƒŠ@W•ÀWu	ÀWgÚÀWDB@WDB@WDB@WBðÀW;ÀW;ÀWÌ@VþbÀVÍ›@VTQ@VCÀV	@V	@V	@VÎÀV”@VBÀVBÀVBÀVBÀVBÀUûüÀUûüÀUûüÀUå“@UÜXÀUÕÁ@UÕÁ@UÓ@UÑÌÀUÑÌÀUÑÌÀUÑÌÀUÑÌÀUÑÌÀUÑÌÀUÃL@UÃL@UÁúÀUÀ©@UÀ©@UÀ©@U·nÀU¶@U²(ÀU¨î@U¨î@U§œÀUšmÀUšmÀU“Ö@U‰J@U‡øÀU7@U7@U7@U
º@U@U@TøE@TøE@TøE@TÐ¸@TËr@TËr@TËr@TËr@TÇ}ÀTÇ}ÀTÇ}ÀTÇ}ÀTÇ}ÀTÂ7ÀTÂ7ÀT¿”ÀT¾C@T¼ñÀT¶Z@T¶Z@TµÀT”@T‘p@T‘p@TŽÍ@T{ÀTŒ*@TŒ*@T…’ÀT…’ÀT~û@T~û@TuÀÀTuÀÀTto@Tto@Tto@Tto@Tto@Tto@Tm×ÀTm×ÀTm×ÀTm×ÀTl†@Tl†@Tl†@Tl†@TcKÀTaú@T\´@TZ@TZ@TR(@TGœ@TGœ@TGœ@TGœ@TGœ@TDù@T6xÀTŽÀTëÀT	¥ÀSä»ÀSÐõ@S|•@Sr	@Sr	@Sr	@Sr	@S;ûÀS;ûÀS2Á@S2Á@S,)ÀS!ÀS L@SúÀSúÀS©@S©@SÀ@SÀ@SÀ@S×@S×@S×@S×@S×@S×@S×@S×@SùÀSùÀSùÀRûb@Rûb@Rûb@Rèí@Rèí@Rèí@Rèí@RâUÀRâUÀRâUÀRß²ÀRÝÀRÝÀRÖx@RÖx@RÖx@RÎ@RÎ@RÎ@RÍ=ÀRÍ=ÀR½kÀR²ßÀR²ßÀR²ßÀR±Ž@R±Ž@R©¥@R©¥@R©¥@Rœv@Rœv@Rœv@Rœv@Rœv@Rœv@Rœv@Rœv@Rœv@RpôÀREs@REs@R7ÀQûŸ@Qøü@Qøü@Qøü@Qøü@QçØÀQÝLÀQÚ©ÀQÒÀÀQÒÀÀQÑo@QÌ)@Q¾ú@Q½¨ÀQ¹´@Q¹´@Q¸bÀQ°yÀQŸV@Q’'@QˆìÀQƒ¦ÀQnŽÀQZÈ@Q0˜@QÑÀQÑÀQÝ@Q—@Q¢ÀQ	@Q¹ÀQh@PÀˆÀPÁ@PÁ@Pï@Pz©@Pz©@PqnÀPl(ÀPaœÀPaœÀPS@PH@PD›ÀP<²ÀP7lÀP2&ÀP.2@P$÷ÀPkÀP‚ÀPöÀP@OýjÀOýjÀOèRÀOá»@Oß@OÛ#ÀOÄº@OÄº@O¾"ÀO¬ÿ@O¢s@O‚Ï@OpZ@OiÂÀO]å@OLÁÀODØÀO;ž@O5ÀO/ÀÀO/ÀÀO))@O))@O))@On@NóÀNï'@NßU@NÔÉ@NÎ1ÀN»¼ÀN³ÓÀN§ö@N¤ÀN¡^ÀNž»ÀNj@N[@N98@N98@NüÀN¶ÀNe@Mß’@MÚL@M¾œÀMº¨@M®ÊÀM®ÊÀM®ÊÀM¬'ÀM¦áÀM¤>ÀM¤>ÀM‹2@M÷ÀMzÀMx½@Mj<ÀMbSÀMU$ÀMU$ÀMU$ÀMRÀMGõÀMA^@MA^@M,F@Mè@Lå@Lâr@LÎ«ÀL¼6ÀL¼6ÀL©ÁÀL©ÁÀL¥Í@L¡ØÀL’ÀLs´@LH2ÀL7@LT@Kúj@Kò@Kä ÀKµÜ@K´ŠÀK¨­@K Ä@K…ÀK~}@K]‡ÀKY“@KO@KKÀK/c@K+nÀK"4@K³ÀJæàÀJå@JášÀJ×ÀJÔkÀJÁöÀJÀ¥@J’€ÀJp9ÀJlE@J?r@J0ñÀJ,ý@IìcÀIìcÀIäzÀIã)@Iã)@Iã)@I¶V@I¶V@I³³@I±@I¯¾ÀI¢ÀI”@Michal Å½idek <mzidek@redhat.com> - 1.16.4-37 Michal Å½idek <mzidek@redhat.com> - 1.16.4-36 Michal Å½idek <mzidek@redhat.com> - 1.16.4-35 Michal Å½idek <mzidek@redhat.com> - 1.16.4-34 Michal Å½idek <mzidek@redhat.com> - 1.16.4-33 Michal Å½idek <mzidek@redhat.com> - 1.16.4-32 Michal Å½idek <mzidek@redhat.com> - 1.16.4-31 Michal Å½idek <mzidek@redhat.com> - 1.16.4-30 Michal Å½idek <mzidek@redhat.com> - 1.16.4-29 Michal Å½idek <mzidek@redhat.com> - 1.16.4-28 Michal Å½idek <mzidek@redhat.com> - 1.16.4-27 Michal Å½idek <mzidek@redhat.com> - 1.16.4-26 Michal Å½idek <mzidek@redhat.com> - 1.16.4-25 Michal Å½idek <mzidek@redhat.com> - 1.16.4-24 Michal Å½idek <mzidek@redhat.com> - 1.16.4-23 Michal Å½idek <mzidek@redhat.com> - 1.16.4-22 Michal Å½idek <mzidek@redhat.com> - 1.16.4-21 Michal Å½idek <mzidek@redhat.com> - 1.16.4-20 Jakub Hrozek <jhrozek@redhat.com> - 1.16.4-19 Jakub Hrozek <jhrozek@redhat.com> - 1.16.4-18 Jakub Hrozek <jhrozek@redhat.com> - 1.16.4-17 Michal Å½idek <mzidek@redhat.com> - 1.16.4-16 Jakub Hrozek <jhrozek@redhat.com> - 1.16.4-15 Michal Å½idek <mzidek@redhat.com> - 1.16.4-14 Michal Å½idek <mzidek@redhat.com> - 1.16.4-12 Michal Å½idek <mzidek@redhat.com> - 1.16.4-12 Michal Å½idek <mzidek@redhat.com> - 1.16.4-11 Michal Å½idek <mzidek@redhat.com> - 1.16.4-10 Michal Å½idek <mzidek@redhat.com> - 1.16.4-9 Michal Å½idek <mzidek@redhat.com> - 1.16.4-8 Michal Å½idek <mzidek@redhat.com> - 1.16.4-7 Michal Å½idek <mzidek@redhat.com> - 1.16.4-6 Michal Å½idek <mzidek@redhat.com> - 1.16.4-5 Michal Å½idek <mzidek@redhat.com> - 1.16.4-4 Michal Å½idek <mzidek@redhat.com> - 1.16.4-3 Michal Å½idek <mzidek@redhat.com> - 1.16.4-2 Michal Å½idek <mzidek@redhat.com> - 1.16.4-1 Jakub Hrozek <jhrozek@redhat.com> - 1.16.2-17 Michal Å½idek <mzidek@redhat.com> - 1.16.2-16 Michal Å½idek <mzidek@redhat.com> - 1.16.2-15 Michal Å½idek <mzidek@redhat.com> - 1.16.2-14 Jakub Hrozek <jhrozek@redhat.com> - 1.16.2-13 Fabiano FidÃªncio <fidencio@redhat.com> - 1.16.2-12 Jakub Hrozek <jhrozek@redhat.com> - 1.16.2-11 Jakub Hrozek <jhrozek@redhat.com> - 1.16.2-10 Jakub Hrozek <jhrozek@redhat.com> - 1.16.2-9 Jakub Hrozek <jhrozek@redhat.com> - 1.16.2-8 Fabiano FidÃªncio <fidencio@redhat.com> - 1.16.2-7 Fabiano FidÃªncio <fidencio@redhat.com> - 1.16.2-6 Fabiano FidÃªncio <fidencio@redhat.com> - 1.16.2-5 Fabiano FidÃªncio <fidencio@redhat.com> - 1.16.2-4 Fabiano FidÃªncio <fidencio@redhat.com> - 1.16.2-3 Fabiano FidÃªncio <fidencio@redhat.com> - 1.16.2-2 Fabiano FidÃªncio <fidencio@redhat.com> - 1.16.2-1 Fabiano FidÃªncio <fidencio@redhat.com> - 1.16.0-25 Fabiano FidÃªncio <fidencio@redhat.com> - 1.16.0-24 Fabiano FidÃªncio <fidencio@redhat.com> - 1.16.0-23 Fabiano FidÃªncio <fidencio@redhat.com> - 1.16.0-22 Jakub Hrozek <jhrozek@redhat.com> - 1.16.0-21 Fabiano FidÃªncio <fidencio@redhat.com> - 1.16.0-20 Fabiano FidÃªncio <fidencio@redhat.com> - 1.16.0-19 Fabiano FidÃªncio <fidencio@redhat.com> - 1.16.0-18 Fabiano FidÃªncio <fidencio@redhat.com> - 1.16.0-17 Fabiano FidÃªncio <fidencio@redhat.com> - 1.16.0-16 Fabiano FidÃªncio <fidencio@redhat.com> - 1.16.0-15 Fabiano FidÃªncio <fidencio@redhat.com> - 1.16.0-14 Fabiano FidÃªncio <fidencio@redhat.com> - 1.16.0-13 Fabiano FidÃªncio <fidencio@redhat.com> - 1.16.0-12 Fabiano FidÃªncio <fidencio@redhat.com> - 1.16.0-11 Fabiano FidÃªncio <fidencio@redhat.com> - 1.16.0-10 Fabiano FidÃªncio <fidencio@redhat.com> - 1.16.0-9 Fabiano FidÃªncio <fidencio@redhat.com> - 1.16.0-8 Fabiano FidÃªncio <fidencio@redhat.com> - 1.16.0-7 Fabiano FidÃªncio <fidencio@redhat.com> - 1.16.0-6 Fabiano FidÃªncio <fidencio@redhat.com> - 1.16.0-5 Fabiano FidÃªncio <fidencio@redhat.com> - 1.16.0-4 Fabiano FidÃªncio <fidencio@redhat.com> - 1.16.0-3 Fabiano FidÃªncio <fidencio@redhat.com> - 1.16.0-2 Fabiano FidÃªncio <fidencio@redhat.com> - 1.16.0-1 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-51 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-50 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-49 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-48 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-47 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-46 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-45 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-44 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-43 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-42 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-41 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-40 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-39 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-38 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-37 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-36 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-35 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-34 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-33 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-32 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-31 Sumit Bose <sbose@redhat.com> - 1.15.2-30 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-29 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-28 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-25 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-24 Lukas Slebodnik <lslebodn@redhat.com> - 1.15.2-23 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-22 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-21 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-20 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-19 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-18 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-17 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-16 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-15 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-14 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-13 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-12 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-11 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-10 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-9 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-8 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-7 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-6 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-5 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-4 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-3 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-2 Jakub Hrozek <jhrozek@redhat.com> - 1.15.2-1 Fabiano FidÃªncio <fidencio@redhat.com> - 1.15.1-2 Jakub Hrozek <jhrozek@redhat.com> - 1.15.1-1 Jakub Hrozek <jhrozek@redhat.com> - 1.15.0-2 Jakub Hrozek <jhrozek@redhat.com> - 1.15.0-1 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-46 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-45 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-44 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-43 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-42 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-41 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-40 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-39 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-38 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-37 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-36 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-35 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-34 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-33 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-32 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-31 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-30 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-29 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-28 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-27 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-26 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-25 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-24 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-23 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-22 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-21 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-20 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-19 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-18 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-17 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-16 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-15 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-14 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-13 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-12 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-11 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-10 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-9 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-8 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-7 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-6 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-5 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-4 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-3 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-2 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-1 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0beta1-2 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0alpha-1 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-50 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-49 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-48 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-47 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-46 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-45 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-44 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-43 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-42 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-41 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-40 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-39 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-38 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-37 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-36 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-35 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-34 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-33 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-32 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-31 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-30 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-29 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-28 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-27 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-26 Martin Kosek <mkosek@redhat.com> - 1.13.0-25 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-24 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-23 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-22 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-21 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-20 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-19 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-18 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-17 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-16 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-15 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-14 Lukas Slebodnik <lslebodn@redhat.com> - 1.13.0-13 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-12 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-11 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-10 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-9 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-8 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-7 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-6 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-5 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-4 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-3 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-2 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-1 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0.3alpha Jakub Hrozek <jhrozek@redhat.com> - 1.13.0.2alpha Jakub Hrozek <jhrozek@redhat.com> - 1.13.0.1alpha Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-61 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-60 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-59 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-58.6 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-58.5 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-58.4 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-58.3 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-58.2 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-58.1 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-57 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-56 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-55 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-54 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-53 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-52 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-51 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-50 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-49 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-48 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-47 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-46 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-45 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-44 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-43 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-42 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-41 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-40 Sumit Bose <sbose@redhat.com> - 1.12.2-39 Sumit Bose <sbose@redhat.com> - 1.12.2-38 Sumit Bose <sbose@redhat.com> - 1.12.2-37 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-35 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-35 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-34 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-33 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-32 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-31 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-30 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-29 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-28 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-27 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-26 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-25 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-24 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-23 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-22 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-21 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-20 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-19 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-18 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-17 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-16 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-15 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-14 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-13 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-12 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-11 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-10 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-9 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-8 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-7 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-6 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-5 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-4 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-3 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-2 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-1 Jakub Hrozek <jhrozek@redhat.com> - 1.12.1-2 Jakub Hrozek <jhrozek@redhat.com> - 1.12.1-1 Jakub Hrozek <jhrozek@redhat.com> - 1.12.1-1 Jakub Hrozek <jhrozek@redhat.com> - 1.12.0-3 Jakub Hrozek <jhrozek@redhat.com> - 1.12.0-2 Jakub Hrozek <jhrozek@redhat.com> - 1.12.0-1 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-70 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-69 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-68 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-67 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-66 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-65 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-64 Sumit Bose <sbose@redhat.com> - 1.11.2-63 Sumit Bose <sbose@redhat.com> - 1.11.2-62 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-61 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-60 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-59 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-58 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-57 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-56 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-55 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-54 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-53 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-52 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-51 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-50 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-49 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-48 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-47 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-46 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-45 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-44 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-43 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-42 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-41 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-40 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-39 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-38 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-37 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-36 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-35 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-34 Daniel Mach <dmach@redhat.com> - 1.11.2-33 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-32 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-31 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-30 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-29 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-28 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-27 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-26 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-25 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-24 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-23 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-22 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-21 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-20 Daniel Mach <dmach@redhat.com> - 1.11.2-19 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-18 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-17 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-16 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-15 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-14 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-13 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-12 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-11 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-10 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-9 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-8 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-7 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-6 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-5 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-4 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-3 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-2 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-1 Jakub Hrozek <jhrozek@redhat.com> - 1.11.1-2 Jakub Hrozek <jhrozek@redhat.com> - 1.11.1-1 Jakub Hrozek <jhrozek@redhat.com> - 1.11.0-1 Jakub Hrozek <jhrozek@redhat.com> - 1.11.0.1beta2 Jakub Hrozek <jhrozek@redhat.com> - 1.10.1-5 Jakub Hrozek <jhrozek@redhat.com> - 1.10.1-4 Jakub Hrozek <jhrozek@redhat.com> - 1.10.1-3 Jakub Hrozek <jhrozek@redhat.com> - 1.10.1-2 Jakub Hrozek <jhrozek@redhat.com> - 1.10.1-1 Jakub Hrozek <jhrozek@redhat.com> - 1.10.0-18 Jakub Hrozek <jhrozek@redhat.com> - 1.10.0-17 Stephen Gallagher <sgallagh@redhat.com> - 1.10.0-16 Stephen Gallagher <sgallagh@redhat.com> - 1.10.0-15 Stephen Gallagher <sgallagh@redhat.com> - 1.10.0-14 Jakub Hrozek <jhrozek@redhat.com> - 1.10.0-13 Dan HorÃ¡k <dan[at]danny.cz> - 1.10.0-12.beta2 Jakub Hrozek <jhrozek@redhat.com> - 1.10.0-11.beta2 Jakub Hrozek <jhrozek@redhat.com> - 1.10.0-10.beta2 Jakub Hrozek <jhrozek@redhat.com> - 1.10.0-9.beta2 Jakub Hrozek <jhrozek@redhat.com> - 1.10.0-8.beta2 Jakub Hrozek <jhrozek@redhat.com> - 1.10.0-7.beta1 Jakub Hrozek <jhrozek@redhat.com> - 1.10.0-6.beta1 Jakub Hrozek <jhrozek@redhat.com> - 1.10.0-5.beta1 Jakub Hrozek <jhrozek@redhat.com> - 1.10.0-4.beta1 Jakub Hrozek <jhrozek@redhat.com> - 1.10.0-3.beta1 Jakub Hrozek <jhrozek@redhat.com> - 1.10.0-2.alpha1 Jakub Hrozek <jhrozek@redhat.com> - 1.10.0-1.alpha1 Stephen Gallagher <sgallagh@redhat.com> - 1.9.4-9 Jakub Hrozek <jhrozek@redhat.com> - 1.9.4-8 Jakub Hrozek <jhrozek@redhat.com> - 1.9.4-7 Jakub Hrozek <jhrozek@redhat.com> - 1.9.4-6 Jakub Hrozek <jhrozek@redhat.com> - 1.9.4-5 Jakub Hrozek <jhrozek@redhat.com> - 1.9.4-4 Jakub Hrozek <jhrozek@redhat.com> - 1.9.4-3 Jakub Hrozek <jhrozek@redhat.com> - 1.9.4-2 Jakub Hrozek <jhrozek@redhat.com> - 1.9.4-1 Jakub Hrozek <jhrozek@redhat.com> - 1.9.3-1 Jakub Hrozek <jhrozek@redhat.com> - 1.9.2-5 Jakub Hrozek <jhrozek@redhat.com> - 1.9.2-4 Jakub Hrozek <jhrozek@redhat.com> - 1.9.2-3 Jakub Hrozek <jhrozek@redhat.com> - 1.9.2-2 Jakub Hrozek <jhrozek@redhat.com> - 1.9.2-1 Jakub Hrozek <jhrozek@redhat.com> - 1.9.1-1 Jakub Hrozek <jhrozek@redhat.com> - 1.9.0-24 Jakub Hrozek <jhrozek@redhat.com> - 1.9.0-24 Jakub Hrozek <jhrozek@redhat.com> - 1.9.0-23 Jakub Hrozek <jhrozek@redhat.com> - 1.9.0-22.rc1 Jakub Hrozek <jhrozek@redhat.com> - 1.9.0-21.beta7 Jakub Hrozek <jhrozek@redhat.com> - 1.9.0-20.beta6 Jakub Hrozek <jhrozek@redhat.com> - 1.9.0-19.beta6 Jakub Hrozek <jhrozek@redhat.com> - 1.9.0-18.beta6 Jakub Hrozek <jhrozek@redhat.com> - 1.9.0-17.beta6 Jakub Hrozek <jhrozek@redhat.com> - 1.9.0-16.beta6 Jakub Hrozek <jhrozek@redhat.com> - 1.9.0-14.beta6 Jakub Hrozek <jhrozek@redhat.com> - 1.9.0-13.beta6 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.9.0-13.beta5 Jakub Hrozek <jhrozek@redhat.com> - 1.9.0-12.beta5 Stephen Gallagher <sgallagh@redhat.com> - 1.9.0-11.beta4 Jakub Hrozek <jhrozek@redhat.com> - 1.9.0-10.beta4 Jakub Hrozek <jhrozek@redhat.com> - 1.9.0-9.beta4 Stephen Gallagher <sgallagh@redhat.com> - 1.9.0-8.beta3 Stephen Gallagher <sgallagh@redhat.com> - 1.9.0-7.beta2 Stephen Gallagher <sgallagh@redhat.com> - 1.9.0-6.beta2 Stephen Gallagher <sgallagh@redhat.com> - 1.9.0-5.beta2 Stephen Gallagher <sgallagh@redhat.com> - 1.9.0-4.beta1 Stephen Gallagher <sgallagh@redhat.com> - 1.9.0-3.beta1 Stephen Gallagher <sgallagh@redhat.com> - 1.9.0-2.beta1 Stephen Gallagher <sgallagh@redhat.com> - 1.9.0-1.beta1 Stephen Gallagher <sgallagh@redhat.com> - 1.8.3-11 Stephen Gallagher <sgallagh@redhat.com> - 1.8.2-10 Stephen Gallagher <sgallagh@redhat.com> - 1.8.1-9 Stephen Gallagher <sgallagh@redhat.com> - 1.8.1-8 Stephen Gallagher <sgallagh@redhat.com> - 1.8.1-7 Stephen Gallagher <sgallagh@redhat.com> - 1.8.0-6 Stephen Gallagher <sgallagh@redhat.com> - 1.8.0-5.beta3 Stephen Gallagher <sgallagh@redhat.com> - 1.8.0-4.beta3 Petr Pisar <ppisar@redhat.com> - 1.8.0-3.beta2 Stephen Gallagher <sgallagh@redhat.com> - 1.8.0-1.beta2 Stephen Gallagher <sgallagh@redhat.com> - 1.8.0-1.beta1 Stephen Gallagher <sgallagh@redhat.com> - 1.7.0-5 Stephen Gallagher <sgallagh@redhat.com> - 1.7.0-4 Stephen Gallagher <sgallagh@redhat.com> - 1.7.0-3 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.7.0-2 Stephen Gallagher <sgallagh@redhat.com> - 1.7.0-1 Stephen Gallagher <sgallagh@redhat.com> - 1.6.4-1 Stephen Gallagher <sgallagh@redhat.com> - 1.6.3-5 Stephen Gallagher <sgallagh@redhat.com> - 1.6.3-4 Jakub Hrozek <jhrozek@redhat.com> - 1.6.3-3 Stephen Gallagher <sgallagh@redhat.com> - 1.6.3-2 Stephen Gallagher <sgallagh@redhat.com> - 1.6.3-1 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.6.2-5 Stephen Gallagher <sgallagh@redhat.com> - 1.6.2-4 Stephen Gallagher <sgallagh@redhat.com> - 1.6.2-3 Stephen Gallagher <sgallagh@redhat.com> - 1.6.2-2 Stephen Gallagher <sgallagh@redhat.com> - 1.6.2-1 Stephen Gallagher <sgallagh@redhat.com> - 1.6.1-1 Stephen Gallagher <sgallagh@redhat.com> - 1.6.0-2 Stephen Gallagher <sgallagh@redhat.com> - 1.6.0-1 Stephen Gallagher <sgallagh@redhat.com> - 1.5.11-2 Stephen Gallagher <sgallagh@redhat.com> - 1.5.10-1 Stephen Gallagher <sgallagh@redhat.com> - 1.5.9-1 Stephen Gallagher <sgallagh@redhat.com> - 1.5.8-1 Stephen Gallagher <sgallagh@redhat.com> - 1.5.7-3 Stephen Gallagher <sgallagh@redhat.com> - 1.5.7-2 Stephen Gallagher <sgallagh@redhat.com> - 1.5.7-1 Stephen Gallagher <sgallagh@redhat.com> - 1.5.6.1-1 Stephen Gallagher <sgallagh@redhat.com> - 1.5.6-1 Stephen Gallagher <sgallagh@redhat.com> - 1.5.5-5 Stephen Gallagher <sgallagh@redhat.com> - 1.5.5-4 Stephen Gallagher <sgallagh@redhat.com> - 1.5.5-3 Stephen Gallagher <sgallagh@redhat.com> - 1.5.5-2 Stephen Gallagher <sgallagh@redhat.com> - 1.5.5-1 Stephen Gallagher <sgallagh@redhat.com> - 1.5.4-1 Stephen Gallagher <sgallagh@redhat.com> - 1.5.3-2 Stephen Gallagher <sgallagh@redhat.com> - 1.5.3-1 Stephen Gallagher <sgallagh@redhat.com> - 1.5.2-1 Simo Sorce <ssorce@redhat.com> - 1.5.1-9 Stephen Gallagher <sgallagh@redhat.com> - 1.5.1-8 Stephen Gallagher <sgallagh@redhat.com> - 1.5.1-7 Stephen Gallagher <sgallagh@redhat.com> - 1.5.1-6 Stephen Gallagher <sgallagh@redhat.com> - 1.5.1-5 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.5.1-4 Stephen Gallagher <sgallagh@redhat.com> - 1.5.1-3 Stephen Gallagher <sgallagh@redhat.com> - 1.5.1-2 Stephen Gallagher <sgallagh@redhat.com> - 1.5.1-1 Stephen Gallagher <sgallagh@redhat.com> - 1.5.0-2 Stephen Gallagher <sgallagh@redhat.com> - 1.5.0-1 Stephen Gallagher <sgallagh@redhat.com> - 1.4.1-3 Stephen Gallagher <sgallagh@redhat.com> - 1.4.1-2 Stephen Gallagher <sgallagh@redhat.com> - 1.4.1-1 Stephen Gallagher <sgallagh@redhat.com> - 1.4.0-2 Stephen Gallagher <sgallagh@redhat.com> - 1.4.0-1 Stephen Gallagher <sgallagh@redhat.com> - 1.3.0-35 Stephen Gallagher <sgallagh@redhat.com> - 1.3.0-34 Stephen Gallagher <sgallagh@redhat.com> - 1.3.0-33 Stephen Gallagher <sgallagh@redhat.com> - 1.3.0-32 Stephen Gallagher <sgallagh@redhat.com> - 1.3.0-31 Stephen Gallagher <sgallagh@redhat.com> - 1.3.0-30 David Malcolm <dmalcolm@redhat.com> - 1.2.91-21 Stephen Gallagher <sgallagh@redhat.com> - 1.2.91-20 Stephen Gallagher <sgallagh@redhat.com> - 1.2.1-15 Stephen Gallagher <sgallagh@redhat.com> - 1.2.0-12 Stephen Gallagher <sgallagh@redhat.com> - 1.1.92-11 Stephen Gallagher <sgallagh@redhat.com> - 1.1.91-10 Simo Sorce <ssorce@redhat.com> - 1.1.1-3 Stephen Gallagher <sgallagh@redhat.com> - 1.1.1-1 Stephen Gallagher <sgallagh@redhat.com> - 1.1.0-2 Stephen Gallagher <sgallagh@redhat.com> - 1.1.0-1.pre20100317git0ea7f19 Stephen Gallagehr <sgallagh@redhat.com> - 1.0.5-2 Stephen Gallagher <sgallagh@redhat.com> - 1.0.5-1 Stephen Gallagher <sgallagh@redhat.com> - 1.0.4-1 Stephen Gallagher <sgallagh@redhat.com> - 1.0.3-1 Stephen Gallagher <sgallagh@redhat.com> - 1.0.2-1 Stephen Gallagher <sgallagh@redhat.com> - 1.0.1-1 Stephen Gallagher <sgallagh@redhat.com> - 1.0.0-2 Stephen Gallagher <sgallagh@redhat.com> - 1.0.0-1 Stephen Gallagher <sgallagh@redhat.com> - 0.99.1-1 Stephen Gallagher <sgallagh@redhat.com> - 0.99.0-1 Stephen Gallagher <sgallagh@redhat.com> - 0.7.1-1 Stephen Gallagher <sgallagh@redhat.com> - 0.7.0-2 Stephen Gallagher <sgallagh@redhat.com> - 0.7.0-1 Stephen Gallagher <sgallagh@redhat.com> - 0.6.1-2 Stephen Gallagher <sgallagh@redhat.com> - 0.6.1-1 Stephen Gallagher <sgallagh@redhat.com> - 0.6.0-1 Sumit Bose <sbose@redhat.com> - 0.6.0-0 Simo Sorce <ssorce@redhat.com> - 0.5.0-0 Jakub Hrozek <jhrozek@redhat.com> - 0.4.1-4 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.4.1-3 Simo Sorce <ssorce@redhat.com> - 0.4.1-2 Simo Sorce <ssorce@redhat.com> - 0.4.1-1 Simo Sorce <ssorce@redhat.com> - 0.4.1-0 Simo Sorce <ssorce@redhat.com> - 0.3.2-2 Jakub Hrozek <jhrozek@redhat.com> - 0.3.2-1 Simo Sorce <ssorce@redhat.com> - 0.3.1-2 Simo Sorce <ssorce@redhat.com> - 0.3.1-1 Simo Sorce <ssorce@redhat.com> - 0.3.0-2 Simo Sorce <ssorce@redhat.com> - 0.3.0-1 Simo Sorce <ssorce@redhat.com> - 0.2.1-1 Simo Sorce <ssorce@redhat.com> - 0.2.0-1 Jakub Hrozek <jhrozek@redhat.com> - 0.1.0-5.20090309git691c9b3 Jakub Hrozek <jhrozek@redhat.com> - 0.1.0-4 Sumit Bose <sbose@redhat.com> - 0.1.0-3 Jakub Hrozek <jhrozek@redhat.com> - 0.1.0-2 Stephen Gallagher <sgallagh@redhat.com> - 0.1.0-1 - Resolves: rhbz#1784620 - Force LDAPS over 636 with AD Access Provider
- just bumping the version to fix generated dates in man pages - Resolves: rhbz#1784620 - Force LDAPS over 636 with AD Access Provider - Resolves: rhbz#1769755 - sssd failover leads to delayed and failed logins - Resolves: rhbz#1768404 - automount on RHEL7 gives the message
                           'lookup(sss): setautomntent: No such file or
                           directory' - Resolves: rhbz#1734056 - [sssd] RHEL 7.8 Tier 0 Localization - Resolves: rhbz#1530741 - Trusted domain user logins succeed after using ipa
                           trustdomain-disable - Resolves: rhbz#1746878 - Let IPA client read IPA objects via LDAP and not
                           a extdom plugin when resolving trusted users and
                           groups - Resolves: rhbz#1530741 - Trusted domain user logins succeed after using
                           ipa trustdomain-disable - Resolves: rhbz#1713352 - Implicit files domain gets activated when no
                           sssd.conf present and sssd is started - Resolves: rhbz#1206221 - sssd should not always read entire autofs map from
                           ldap - Resolves: rhbz#1657978 - SSSD is not refreshing cached user data for the
                           ipa sub-domain in a IPA/AD trust - Resolves: rhbz#1541172 - ad_enabled_domains does not disable old subdomain
                           after a restart until a timer removes it - Resolves: rhbz#1738674 - Paging not enabled when fetching external groups,
                           limits the number of external groups to 2000 - Resolves: rhbz#1650018 - SSSD doesn't clear cache entries for IDs
                           below min_id - Resolves: rhbz#1724088 - negative cache does not use values from
                           'filter_users' config option for known domains - Resolves: rhbz#1422618 - sssd does not failover to another IPA
                           server if just the KDC service fails 
- Just bumping the version to work around "build already exists" - Resolves: rhbz#1714952 - [sssd] RHEL 7.7 Tier 0 Localization
- Rebuild japanese gmo file explicitly - Resolves: rhbz#1714952 - [sssd] RHEL 7.7 Tier 0 Localization - Resolves: rhbz#1707959 - sssd does not properly check GSS-SPNEGO - Resolves: rhbz#1710286 - The server error message is not returned if
                           password change fails - Resolves: rhbz#1711832 - The files provider does not handle resetOffline
                           properly - Resolves: rhbz#1707759 - Error accessing files on samba share randomly - Resolves: rhbz#1685581 - Extend cached_auth_timeout to cover subdomains
                           /trusts - Resolves: rhbz#1684979 - The HBAC code requires dereference to be enabled
                           and fails otherwise - Resolves: rhbz#1576524 - RHEL STIG pointing sssd Packaging issue
                         - This was partially fixed by the rebase, but one
                           spec file change was missing. - Resolves: rhbz#1524566 - FIPS mode breaks using pysss.so (sss_obfuscate) - Resolves: rhbz#1350012 - kinit / sssd kerberos fail over
- Resolves: rhbz#720688 - [RFE] return multiple server addresses to the
                          Kerberos locator plugin - Resolves: rhbz#1402056 - [RFE] Make 2FA prompting configurable - Resolves: rhbz#1666819 - SSSD can trigger a NSS lookup when parsing the
                           filter_users/groups lists on startup, this can
                           block the startup - Resolves: rhbz#1645461 - Slow ldb search causes blocking during startup
                           which might cause the registration to time out - Resolves: rhbz#1685581 - Extend cached_auth_timeout to cover
                           subdomains / trusts - Resolves: rhbz#1671138 - User is unable to perform sudo as a user on IPA
                           Server, even though `sudo -l` shows permissions
                           to do so - Resolves: rhbz#1657806 - [RFE]: Optionally disable generating auto private
                           groups for subdomains of an AD provider - Resolves: rhbz#1641131 - [RFE] Need an option in SSSD so that it will skip
                           GPOs that have groupPolicyContainers, unreadable
                           by SSSD.
- Resolves: rhbz#1660874 - CVE-2018-16838 sssd: improper implementation of
                           GPOs due to too restrictive permissions [rhel-7] - Resolves: rhbz#1631656 - KCM: kinit: Matching credential not found while
                           getting default ccache - Resolves: rhbz#1406678 - sssd service is starting before network service
- Resolves: rhbz#1616853 - SSSD always boots in Offline mode - Resolves: rhbz#1658994 - Rebase SSSD to 1.16.x - Resolves: rhbz#1603311 - Enable generating user private groups only for
                           users with uid == gid where gid does not
                           correspond to a real LDAP group - Resolves: rhbz#1602172 - SSSD's LDAP authentication provider does not work
                           if ID provider is authenticated with GSSAPI - Resolves: rhbz#1622109 -  SSSD not fetching all sudo rules from AD - Resolves: rhbz#1619706 - sssd only sets the SELinux login context if it
                           differs from the default - Resolves: rhbz#1593756 - sssd needs to require a newer version of
                           libtalloc and libtevent to avoid an issue
                           in GPO processing - Resolves: rhbz#1610667 - sssd_ssh leaks file descriptors when more than one certificate is converted into an SSH key
- Resolves: rhbz#1583360 - The IPA selinux provider can return an error if SELinux is completely disabled - Resolves: rhbz#1602781 - Local users failed to login with same password - Resolves: rhbz#1586127 - Spurious check in the sssd nss memcache can cause the memory cache to be skipped - Resolves: rhbz#1522928 - sssd doesn't allow user with expired password - Resolves: rhbz#1607313 - When sssd is running as non-root user, the sudo pipe is created as sssd:sssd but then the private pipe ownership fails - Resolves: rhbz#1600822 - SSSD bails out saving desktop profiles in case an invalid profile is found - Resolves: rhbz#1582975 - The search filter for detecting POSIX attributes in global catalog is too broad and can cause a high load on the servers - Resolves: rhbz#1583725 - SSSD AD uses LDAP filter to detect POSIX attributes stored in AD GC also for regular AD DC queries
- Resolves: rhbz#1416528 - sssd in cross realm trust configuration should be able to use AD KDCs from a client site defined in sssd.conf or a snippet
- Resolves: rhbz#1592964 - Groups go missing with PAC enabled in sssd - Resolves: rhbz#1590603 - EMBARGOED CVE-2018-10852 sssd: information leak from the sssd-sudo responder [rhel-7]
- Resolves: rhbz#1450778 - Full information regarding priority of lookup of principal in keytab not in man page - Resolves: rhbz#1494690 - kdcinfo files are not created for subdomains of a directly joined AD client
- Resolves: rhbz#1583343 - Login with sshkeys stored in ipa not working after update to RHEL-7.5
- Resolves: rhbz#1527662 - Handle conflicting e-mail addresses more gracefully
- Resolves: rhbz#1509691 - Document how to change the regular expression for SSSD so that group names with an @-sign can be parsed - Related: rhbz#1558498 - Rebase sssd to the latests upstream release of the 1.16 branch - Resolves: rhbz#1558498 - Rebase sssd to the latests upstream release of the 1.16 branch
- Resolves: rhbz#1523019 - Reset password with two factor authentication fails
- Resolves: rhbz#1534749 - Requesting an AD user's private group and then the user itself returns an emty homedir
- Resolves: rhbz#1537272 - SSH public key authentication keeps working after keys are removed from ID view
- Resolves: rhbz#1537279 - Certificate is not removed from cache when it's removed from the override
- Resolves: rhbz#1562025 - externalUser sudo attribute must be fully-qualified
- Resolves: rhbz#1577335 - /usr/libexec/sssd/sssd_autofs SIGABRT crash daily
- Resolves: rhbz#1508530 - How should sudo behave without sudoHost attribute?
- Resolves: rhbz#1546754 - The man page of sss_ssh_authorizedkeys can be enhanced to better explain how the keys are retrieved and how X.509 certificates can be used
- Resolves: rhbz#1572790 - getgrgid/getpwuid fails in setups with multiple domains if the first domain uses mid_id/max_id
- Resolves: rhbz#1561562 - sssd not honoring dyndns_server if the DNS update process is terminated with a signal
- Resolves: rhbz#1583251 - home dir disappear in sssd cache on the IPA master for AD users
- Resolves: rhbz#1514061 - ID override GID from Default Trust View is not properly resolved in case domain resolution order is set
- Resolves: rhbz#1571466 - Utilizing domain_resolution_order in sssd.conf breaks SELinux user map
- Resolves: rhbz#1571526 - SSSD with ID provider 'ad' should give a warning in case the ldap schema is manually changed to something different than 'ad'. - Resolves: rhbz#1547782 - The SSSD IPA provider allocates information about external groups on a long lived memory context, causing memory growth of the sssd_be process - Related: rhbz#1578291 - Samba can not register sss idmap module because it's using an outdated SMB_IDMAP_INTERFACE_VERSION - Resolves: rhbz#1578291 - Samba can not register sss idmap module because it's using an outdated SMB_IDMAP_INTERFACE_VERSION - Resolves: rhbz#1516266 - Give a more detailed debug and system-log message if krb5_init_context() failed
- Resolves: rhbz#1503802 - Smartcard authentication fails if SSSD is offline and 'krb5_store_password_if_offline = True'
- Resolves: rhbz#1385665 - Incorrect error code returned from krb5_child (updated)
- Resolves: rhbz#1547234 - SSSD's GPO code ignores ad_site option
- Resolves: rhbz#1459348 - extend sss-certmap man page regarding priority processing
- Resolves: rhbz#1220767 - Group renaming issue when "id_provider = ldap" is set
- Resolves: rhbz#1538555 - crash in nss_protocol_fill_netgrent. sssd_nss[19234]: segfault at 80 ip 000055612688c2a0 sp 00007ffddf9b9cd0 error 4 in sssd_nss[55612687e000+39000] - Resolves: rhbz#1565774 - After updating to RHEL 7.5 failing to clear the sssd cache - Resolves: rhbz#1566782 - memory management issue in the sssd_nss_ex interface can cause the ns-slapd process on IPA server to crash - Related: rhbzrhbz#1544943 - sssd goes offline when renewing expired ticket - Resolves: rhbz#1543348 - sssd_be consumes more memory on RHEL 7.4 systems.
- Resolves: rhbz#1544943 - sssd goes offline when renewing expired ticket - Resolves: rhbz#1523282 - sssd used wrong search base with wrong AD
                           server - Resolves: rhbz#1538643 - SSSD crashes when retrieving a Desktop Profile
                           with no specific host/hostgroup set
- Related: rhbz#1441908 - SELINUX: Use getseuserbyname to get IPA seuser
- Related: rhbz#1327705 - [RFE] Automatic creation of user private groups
                          on RHEL clients joined to AD via sssd [RHEL 7] - Resolves: rhbz#1517971 - AD Domain goes offline immediately during
                           subdomain initialization - IPA AD Trust
- Related: rhbz#1482555 - sysdb index improvements - missing ghost
                          attribute indexing, unneeded objectclass index
                          etc..
- Related: rhbz#1327705 - [RFE] Automatic creation of user private groups
                          on RHEL clients joined to AD via sssd [RHEL 7]
- Resolves: rhbz#1527149 - AD provider - AD BUILTIN groups are cached with
                           gidNumber = 0
- Related: rhbz#1461899 - Loading enterprise principals doesn't work with
                          a primed cache
- Related: rhbz#1473571 - ipa-extdom-extop plugin can exhaust DS worker
                          threads - Resolves: rhbz#1525644 - dbus-send unable to find user by CAC cert - Resolves: rhbz#1523010 - IPA user able to authenticate with revoked cert
                           on smart card - Resolves: rhbz#1512027 - NSS by-id requests are not checked against
                           max_id/min_id ranges before triggering the
                           backend - Related: rhbz#1507614 - Improve Smartcard integration if multiple
                          certificates or multiple mapped identities are
                          available
- Resolves: rhbz#1523010 - IPA user able to authenticate with revoked
                           cert on smart card
- Resolves: rhbz#1520984 - getent output is not showing home directory
                           for IPA AD trusted user
- Related: rhbz#1473571 - ipa-extdom-extop plugin can exhaust DS worker
                          threads - Resolves: rhbz#1421194 - SSSD doesn't use AD global catalog for
                           gidnumber lookup, resulting in unacceptable
                           delay for large forests - Resolves: rhbz#1482231 - sssd_nss consumes more memory until
                           restarted or machine swaps
- Resolves: rhbz#1512508 - SSSD fails to fetch group information after
                           switching IPA client to a non-default view - Resolves: rhbz#1490120 - SSSD complaining about corrupted mmap cache
                           and logging error in /var/log/messages and
                           /var/log/sssd/sssd_nss.log - Resolves: rhbz#1272214 - [RFE] Create a local per system report about
                           who can access that IDM client (attestation)
- Resolves: rhbz#1482555 - sysdb index improvements - missing ghost
                           attribute indexing, unneeded objectclass index
                           etc..
- Resolves: rhbz#888739 -  Enumerating large number of users makes sssd_be
                           hog the cpu for a long time.
- Resolves: rhbz#1373547 - SSSD performance issue with malloc and brk
                           calls
- Resolves: rhbz#1472255 - Improve SSSD performance in the 7.5 release - Related: rhbz#1460724 - SYSLOG_IDENTIFIER is different
- Related: rhbz#1432010 - SSSD ships a drop-in configuration snippet in
                          /etc/systemd/system
- Related: rhbz#1507614 - Improve Smartcard integration if multiple
                          certificates or multiple mapped identities are
                          available - Resolves: rhbz#1507614 - Improve Smartcard integration if multiple
                           certificates or multiple mapped identities are
                           available
- Related: rhbz#1499659 - CVE-2017-12173 sssd: unsanitized input when
                          searching in local cache database [rhel-7.5]
- Resolves: rhbz#1408294 - SSSD authentication fails when two IPA
                           accounts share an email address without a
                           clear way to debug the problem
- Resolves: rhbz#1502686 - crash - /usr/libexec/sssd/sssd_nss in
                           nss_setnetgrent_timeout - Related: rhbz#1460724 - SYSLOG_IDENTIFIER is different
- Related: rhbz#1459609 - When sssd is configured with id_provider proxy
                          and auth_provider ldap, login fails if the LDAP
                          server is not allowing anonymous binds. - Resolves: rhbz#1473571 - ipa-extdom-extop plugin can exhaust DS worker
                           threads - Resolves: rhbz#1484376 - [RFE] Add a configuration option to SSSD to
                           disable the memory cache
- Resolves: rhbz#1327705 - Automatic creation of user private groups on
                           RHEL clients joined to AD via sssd [RHEL 7]
- Resolves: rhbz#1505277 - Race condition between refreshing the cr_domain
                           list and a request that is using the list can
                           cause a segfault is sssd_nss
- Resolves: rhbz#1462343 - document information on why SSSD does not use
                           host-based security filtering when processing
                           AD GPOs
- Resolves: rhbz#1498734 - sssd_be stuck in an infinite loop after
                           completing full refresh of sudo rules
- Resolves: rhbz#1400614 - [RFE] sssd should remember DNS sites from
                           first search
- Resolves: rhbz#1460724 - SYSLOG_IDENTIFIER is different
- Resolves: rhbz#1459609 - When sssd is configured with id_provider proxy
                           and auth_provider ldap, login fails if the LDAP
                           server is not allowing anonymous binds. - Resolves: rhbz#1469791 - Rebase SSSD to version 1.16+
- Resolves: rhbz#1132264 - Allow sssd to retrieve sudo rules of local
                           users whose sudo rules stored in ldap server
- Resolves: rhbz#1301740 - sssd can be marked offline if a trusted domain
                           is not reachable
- Resolves: rhbz#1399262 - Use TCP for kerberos with AD by default
- Resolves: rhbz#1416150 - RFE: Log to syslog when sssd cannot contact
                           servers, goes offline
- Resolves: rhbz#1441908 - SELINUX: Use getseuserbyname to get IPA seuser
- Resolves: rhbz#1454559 - python-sssdconfig doesn't parse hexadecimal debug
                           _level, resulting in set_option():
                           /usr/lib/python2.7/site-packages/SSSDConfig/__init__.py
                           killed by TypeError
- Resolves: rhbz#1456968 - MAN: document that attribute 'provider' is not
                           allowed in section 'secrets'
- Resolves: rhbz#1460689 - KCM/secrets: Storing many secrets in a rapid
                           succession segfaults the secrets responder
- Resolves: rhbz#1464049 - Idle nss file descriptors should be closed
- Resolves: rhbz#1468610 - sssd_be is utilizing more CPU during sudo rules
                           refresh
- Resolves: rhbz#1474711 - Querying the AD domain for external domain's ID can
                           mark the AD domain offline
- Resolves: rhbz#1479398 - samba shares with sssd authentication broken on 7.4
- Resolves: rhbz#1479983 - id root triggers an LDAP lookup
- Resolves: rhbz#1489895 - Issues with certificate mapping rules
- Resolves: rhbz#1490501 - sssd incorrectly checks 'try_inotify' thinking it is
                           the wrong section
- Resolves: rhbz#1490913 - MAN: Document that full_name_format must be set if
                           the output of trusted domains user resolution should
                           be shortnames only
- Resolves: rhbz#1499659 - CVE-2017-12173 sssd: unsanitized input when
                           searching in local cache database [rhel-7.5]
- Resolves: rhbz#1461899 - Loading enterprise principals doesn't work with a
                           primed cache
- Resolves: rhbz#1482674 - SUDO doesn't work for IPA users on IPA clients after
                           applying ID Views for them in IPA server
- Resolves: rhbz#1486053 - Accessing IdM kerberos ticket fails while id mapping
                           is applied
- Resolves: rhbz#1486786 - sssd going in offline mode due to sudo search filter.
- Resolves: rhbz#1500087 - SSSD creates bad override search filter due to AD
                           Trust object with parenthesis
- Resolves: rhbz#1502713 - SSSD can crash due to ABI changes in libldb >= 1.2.0
                           (1.1.30)
- Resolves: rhbz#1461462 - sssd_client: add mutex protected call to the PAC
                           responder
- Resolves: rhbz#1489666 - Combination sssd-ad and postfix recieve incorrect
                           mail with asterisks or spaces
- Resolves: rhbz#1525052 - sssd_krb5_localauth_plugin fails to fallback to otheri
                           localname rules - Require the 7.5 libldb version which broke ABI
- Related: rhbz#1469791 - Rebase SSSD to version 1.16+ - Resolves: rhbz#1457926 - Wrong search base used when SSSD is directly
                           connected to AD child domain - Resolves: rhbz#1450107 - SSSD doesn't handle conflicts between users
                           from trusted domains with the same name when
                           shortname user resolution is enabled - Resolves: rhbz#1459846 - krb5: properly handle 'password expired'
                           information retured by the KDC during
                           PKINIT/Smartcard authentication - Resolves: rhbz#1430415 - ldap_purge_cache_timeout in RHEL7.3 invalidate
                           most of the entries once the cleanup task kicks in - Resolves: rhbz#1455254 - Make domain available as user attribute - Resolves: rhbz#1449731 - IPA client cannot change AD Trusted User password - Resolves: rhbz#1457927 - getent failed to fetch netgroup information
                           after changing default_domain_suffix to
                           ADdomin in /etc/sssd/sssd.conf - Resolves: rhbz#1440132 - fiter_users and filter_groups stop working
                           properly in v 1.15 - Resolves: rhbz#1449728 - LDAP to IPA migration doesn't work in master - Resolves: rhbz#1445445 - Smart card login fails if same cert mapped to
                           IdM user and AD user - Resolves: rhbz#1449729 - org.freedesktop.sssd.infopipe.GetUserGroups
                           does not resolve groups into names with AD - Resolves: rhbz#1450094 - Properly support IPA's promptusername config
                           option - Resolves: rhbz#1457644 - Segfault in access_provider = krb5 is set in
                           sssd.conf due to an off-by-one error when
                           constructing the child send buffer
- Resolves: rhbz#1456531 - Option name typos are not detected with validator
                           function of sssctl config-check command in domain
                           sections - Resolves: rhbz#1428906 - sssd intermittently failing to resolve groups
                           for an AD user in IPA-AD trust environment. - Resolves: rhbz#1389796 - Smartcard authentication with UPN as logon name
                           might fail
- Fix Coverity issues in patches for rhbz#1445445 - Resolves: rhbz#1445445 - Smart card login fails if same cert mapped to
                           IdM user and AD user - Resolves: rhbz#1446302 - crash in sssd-kcm due to a race-condition
                           between two concurrent requests - Resolves: rhbz#1389796 - Smartcard authentication with UPN as logon name might fail - Resolves: rhbz#1306707 - Need better debug message when krb5_child
                           returns an unhandled error, leading to a
                           System Error PAM code - Resolves: rhbz#1446535 - Group resolution does not work in subdomain
                           without ad_server option - Resolves: rhbz#1449726 - sss_nss_getlistbycert() does not return results from
                           multiple domains
- Resolves: rhbz#1447098 - sssd unable to search dbus for ipa user by
                           certificate
- Additional patch for rhbz#1440132 - Reapply patch by Lukas Slebodnik to fix upgrade issues with libwbclient
- Resolves: rhbz#1439457 - SSSD does not start after upgrade from 7.3 to 7.4 
- Resolves: rhbz#1449107 - error: %pre(sssd-common-1.15.2-26.el7.x86_64)
                           scriptlet failed, exit status 3 - Resolves: rhbz#1440132 - fiter_users and filter_groups stop working
                           properly in v 1.15
- Also apply an additional patch for rhbz#1441545 - Resolves: rhbz#1445445 - Smart card login fails if same cert mapped to
                           IdM user and AD user - Resolves: rhbz#1434992 - Wrong pam return code for user from subdomain
                           with ad_access_filter - Resolves: rhbz#1430494 - expect sss_ssh_authorizedkeys and
                           sss_ssh_knownhostsproxy manuals to be packaged
                           into sssd-common package - Resolves: rhbz#1427749 - SSSD in server mode iterates over all domains
                           for group-by-GID requests, causing unnecessary
                           searches - Resolves: rhbz#1446139 - Infopipe method ListByCertificate does not
                           return the users with overrides - Resolves: rhbz#1441545 - With multiple subdomain sections id command
                           output for user is not displayed for both domains - Resolves: rhbz#1428866 - Using ad_enabled_domains configuration option
                           in sssd.conf causes nameservice lookups to fail. - Remove an unused variable from the sssd-secrets responder
- Related: rhbz#1398701 - [sssd-secrets] https proxy talks plain http
- Improve two DEBUG messages in the client trust code to aid troubleshooting
- Fix standalone application domains
- Related: rhbz#1425891 - Support delivering non-POSIX users and groups
                          through the IFP and PAM interfaces - Allow completely server-side unqualified name resolution if the domain order is set,
  do not require any client-side changes
- Related: rhbz#1330196 - [RFE] Short name input format with SSSD for users from
                          all domains when domain autodiscovery is used or when
                          IPA client resolves trusted AD domain users - Resolves: rhbz#1402532 - D-Bus interface of sssd is giving inappropriate
                           group information for trusted AD users - Resolves: rhbz#1431858 - Wrong principal found with ad provider and long
                           host name - Resolves: rhbz#1415167 - pam_acct_mgmt with pam_sss.so fails in
                           unprivileged container unless
                           selinux_provider = none is used - Resolves: rhbz#1438388 - [abrt] [faf] sssd: unknown function():
                           /usr/libexec/sssd/sssd_pam killed by 6 - Resolves: rhbz#1432112 - sssctl config-check does not give any error
                           when default configuration file is not present - Resolves: rhbz#1438374 - [abrt] [faf] sssd: vfprintf():
                           /usr/libexec/sssd/sssd_be killed by 11 - Resolves: rhbz#1427195 - sssd_nss consumes more memory until restarted
                           or machine swaps - Resolves: rhbz#1414023 - Create troubleshooting tool to determine if a
                           failure is in SSSD or not when using layered
                           products like RH-SSO/CFME etc - Resolves: rhbz#1398701 - [sssd-secrets] https proxy talks plain http - Fix off-by-one error in the KCM responder
- Related: rhbz#1396012 - [RFE] KCM ccache daemon in SSSD - Resolves: rhbz#1425891 - Support delivering non-POSIX users and groups
                           through the IFP and PAM interfaces - Resolves: rhbz#1434991 - Issue processing ssh keys from certificates in
                           ssh respoder - Resolves: rhbz#1330196 - [RFE] Short name input format with SSSD for
                           users from all domains when domain autodiscovery
                           is used or when IPA client resolves trusted AD
                           domain users
- Also backport some buildtime fixes for the KCM responder
- Related: rhbz#1396012 - [RFE] KCM ccache daemon in SSSD - Resolves: rhbz#1396012 - [RFE] KCM ccache daemon in SSSD - Resolves: rhbz#1340711 - [RFE] Use one smartcard and certificate for
                           authentication to distinct logon accounts - Update to upstream 1.15.2
- https://docs.pagure.org/SSSD.sssd/users/relnotes/notes_1_15_2.html
- Resolves: rhbz#1418728 - IPA - sudo does not handle associated conflict
                           entries
- Resolves: rhbz#1386748 - sssd doesn't update PTR records if A/PTR zones
                           are configured as non-secure and secure
- Resolves: rhbz#1214491 - [RFE] Make it possible to configure AD subdomain
                           in the SSSD server mode - Drop "NOUPSTREAM: Bundle http-parser" patch
  Related: rhbz#1393819 - New package: http-parser - Update to upstream 1.15.1
- https://docs.pagure.org/SSSD.sssd/users/relnotes/notes_1_15_1.html
- Resolves: rhbz#1327085 - Don't prompt for password if there is already
                           one on the stack
- Resolves: rhbz#1378722 - [RFE] Make GETSIDBYNAME and GETORIGBYNAME
                           request aware of UPNs and aliases
- Resolves: rhbz#1405075 - [RFE] Add PKINIT support to SSSD Kerberos provider
- Resolves: rhbz#1416526 - Need correction in sssd-krb5 man page
- Resolves: rhbz#1418752 - pam_sss crashes in do_pam_conversation if no
                           conversation function is provided by the
                           client app
- Resolves: rhbz#1419356 - Fails to accept any sudo rules if there are
                           two user entries in an ldap role with the same
                           sudo user
- Resolves: rhbz#1421622 - SSSD - Users/Groups are cached as mixed-case
                           resulting in users unable to sign in - Fix several packaging issues, notably the p11_child is no longer setuid
  and the libwbclient used a wrong version number in the symlink - Update to upstream 1.15.0
- Resolves: rhbz#1393824 - Rebase SSSD to version 1.15
- Resolves: rhbz#1407960 - wbcLookupSid() fails in pdomain is NULL
- Resolves: rhbz#1406437 - sssctl netgroup-show Cannot allocate memory
- Resolves: rhbz#1400422 - Use-after free in resolver in case the fd is
                           writeable and readable at the same time
- Resolves: rhbz#1393085 - bz - ldap group names don't resolve after
                           upgrading sssd to 1.14.0 if ldap_nesting_level is set to 0
- Resolves: rhbz#1392444 - sssd_be keeps crashing
- Resolves: rhbz#1392441 - sssd fails to start after upgrading to RHEL 7.3
- Resolves: rhbz#1382602 - autofs map resolution doesn't work offline
- Resolves: rhbz#1380436 - sudo: ignore case on case insensitive domains
- Resolves: rhbz#1378251 - Typo In SSSD-AD Man Page
- Resolves: rhbz#1373427 - Clock skew makes SSSD return System Error
- Resolves: rhbz#1306707 - Need better handling of "Server not found in
                           Kerberos database"
- Resolves: rhbz#1297462 - Don't include 'enable_only=sssd' in the localauth
                           plugin config - Resolves: rhbz#1382598 - IPA: Uninitialized variable during subdomain check - Resolves: rhbz#1378911 - No supplementary groups are resolved for users
                           in nested OUs when domain stanza differs from AD
                           domain - Resolves: rhbz#1372075 - AD provider: SSSD does not retrieve a domain-local
                           group with the AD provider when following AGGUDLP
                           group structure across domains - Resolves: rhbz#1376831 - sssd-common is missing dependency on sssd-sudo - Resolves: rhbz#1371631 - login using gdm calls for gdm-smartcard when
                           smartcard authentication is not enabled - Resolves: rhbz#1373420 - sss_override fails to export - Resolves: rhbz#1375299 - sss_groupshow <user> fails with error "No such
                           group in local domain. Printing groups only
                           allowed in local domain" - Resolves: rhbz#1375182 - SSSD goes offline when the LDAP server returns
                           sizelimit exceeded - Resolves: rhbz#1372753 - Access denied for user when access_provider =
                           krb5 is set in sssd.conf - Resolves: rhbz#1373444 - unable to create group in sssd cache
- Resolves: rhbz#1373577 - unable to add local user in sssd to a group in sssd - Resolves: rhbz#1369118 - Don't enable the default shadowtils domain in RHEL - Fix permissions for the private pipe directory
- Resolves: rhbz#1362716 - selinux avc denial for vsftp login as ipa user - Resolves: rhbz#1371977 - resolving IPA nested user groups is broken in 1.14 - Resolves: rhbz#1368496 - sssd is not able to authenticate with alias - Resolves: rhbz#1371152 - SSSD qualifies principal twice in IPA-AD trust
                           if the principal attribute doesn't exist on the
                           AD side - Apply forgotten patch
- Resolves: rhbz#1368496 - sssd is not able to authenticate with alias
- Resolves: rhbz#1366470 - sssd: throw away the timestamp cache if
                           re-initializing the persistent cache
- Fix deleting non-existent secret
- Related: rhbz#1311056 - Add a Secrets as a Service component - Resolves: rhbz#1362716 - selinux avc denial for vsftp login as ipa user - Resolves: rhbz#1368496 - sssd is not able to authenticate with alias - Resolves: rhbz#1364033 - sssd exits if clock is adjusted backwards
                           after boot - Resolves: rhbz#1362023 - SSSD fails to start when ldap_user_extra_attrs
                           contains mail - Resolves: rhbz#1368324 - libsss_autofs.so is packaged in two packages
                           sssd-common and libsss_autofs - Fix RPM scriptlet plumbing for the sssd-secrets responder
- Related: rhbz#1311056 - Add a Secrets as a Service component - Add socket-activation plumbing for the sssd-secrets responder
- Related: rhbz#1311056 - Add a Secrets as a Service component - Own the secrets directory
- Related: rhbz#1311056 - Add a Secrets as a Service component - Resolves: rhbz#1268874 - Add an option to disable checking for trusted
                           domains in the subdomains provider - Resolves: rhbz#1271280 - sssd stores and returns incorrect information
                           about empty netgroup (ldap-server: 389-ds) - Resolves: rhbz#1290500 - [feat] command to manually list
                           fo_add_server_to_list information - Add several small fixes related to the config API
- Related: rhbz#1072458 - [RFE] SSSD configuration file test tool (sssd_check) - Resolves: rhbz#1349900 - gpo search errors out and gpo_cache file is
                           never created - Fix regressions in the simple access provider
- Resolves: rhbz#1360806 - sssd does not start if sub-domain user is used
                           with simple access provider
- Apply a number of specfile patches to better match the upstream spefile
- Related: rhbz#1290381 - Rebase SSSD to 1.14.x in RHEL-7.3 - Cherry-pick patches from upstream that fix several regressions
- Avoid checking local users in all cases
- Resolves: rhbz#1353951 - sssd_pam leaks file descriptors - Resolves: rhbz#1364118 - [abrt] [faf] sssd: unknown function():
                           /usr/libexec/sssd/sssd_nss killed by 11
- Resolves: rhbz#1361563 - Wrong pam error code returned for password
                           change in offline mode - Resolves: rhbz#1309745 - Support multiple principals for IPA users - Resolves: rhbz#1304992 - Handle overriden name of members in the
                           memberUid attribute - handle unresolvable sites more gracefully
- Resolves: rhbz#1346011 - sssd is looking at a server in the GC of a
                           subdomain, not the root domain.
- fix compilation warnings in unit tests - fix capaths output
- Resolves: rhbz#1344940 - GSSAPI error causes failures for child domain
                           user logins across IPA - AD trust
- also fix Coverity issues in the secrets responder and suppress noisy
  debug messages when setting the timestamp cache - Resolves: rhbz#1356577 - sssctl: Time stamps without time zone information - Resolves: rhbz#1354414 - New or modified ID-View User overrides are not
                           visible unless rm -f /var/lib/sss/db/*cache* - Resolves: rhbz#1211631 - [RFE] Support of UPN for IdM trusted domains - Resolves: rhbz#1350520 - [abrt] sssd-common: ipa_dyndns_update_send():
                           sssd_be killed by SIGSEGV - Resolves: rhbz#1349882 - sssd does not work under non-root user
- Also cherry-pick a few patches from upstream to fix config schema
- Related: rhbz#1072458 - [RFE] SSSD configuration file test tool (sssd_check) - Sync a few minor patches from upstream
- Fix sssctl manpage
- Fix nss-tests unit test on big-endian machines
- Fix several issues in the config schema
- Related: rhbz#1072458 - [RFE] SSSD configuration file test tool (sssd_check) - Bundle http-parser
- Resolves: rhbz#1311056 - Add a Secrets as a Service component - Sync a few minor patches from upstream
- Fix a failover issue
- Resolves: rhbz#1334749 - sssd fails to mark a connection as bad on
                           searches that time out - Explicitly BuildRequire newer ding-libs
- Resolves: rhbz#1072458 - [RFE] SSSD configuration file test tool (sssd_check) - New upstream release 1.14.0
- Resolves: rhbz#1290381 - Rebase SSSD to 1.14.x in RHEL-7.3
- Resolves: rhbz#835492 - [RFE] SSSD admin tool request - force reload
- Resolves: rhbz#1072458 - [RFE] SSSD configuration file test tool (sssd_check)
- Resolves: rhbz#1278691 - Please fix rfc2307 autofs schema defaults
- Resolves: rhbz#1287209 - default_domain_suffix Appended to User Name
- Resolves: rhbz#1300663 - Improve sudo protocol to support configurations
                           with default_domain_suffix
- Resolves: rhbz#1312275 - Support authentication indicators from IPA - Resolves: rhbz#1290381 - Rebase SSSD to 1.14.x in RHEL-7.3
- Resolves: rhbz#790113 - [RFE] "include" directive in sssd.conf
- Resolves: rhbz#874985 - [RFE] AD provider support for automount lookups
- Resolves: rhbz#879333 - [RFE] SSSD admin tool request - status overview
- Resolves: rhbz#1140022 - [RFE]Allow sssd to add a new option that would
                           specify which server to update DNS with
- Resolves: rhbz#1290380 - RFE: Improve SSSD performance in large
                           environments
- Resolves: rhbz#883886 - sssd: incorrect checks on length values during
                          packet decoding
- Resolves: rhbz#988207 - sssd does not detail which line in configuration
                          is invalid
- Resolves: rhbz#1007969 - sssd_cache does not remove have an option to
                           remove the sssd database
- Resolves: rhbz#1103249 - PAC responder needs much time to process large
                           group lists
- Resolves: rhbz#1118257 - Users in ipa groups, added to netgroups are
                           not resovable
- Resolves: rhbz#1269018 - Too much logging from sssd_be
- Resolves: rhbz#1293695 - sssd mixup nested group from AD trusted domains
- Resolves: rhbz#1308935 - After removing certificate from user in IPA
                           and even after sss_cache, FindByCertificate
                           still finds the user
- Resolves: rhbz#1315766 - SSSD PAM module does not support multiple
                           password prompts (e.g. Password + Token) with sudo
- Resolves: rhbz#1316164 - SSSD fails to process GPO from Active Directory
- Resolves: rhbz#1322458 - sssd_be[11010]: segfault at 0 ip 00007ff889ff61bb
                           sp 00007ffc7d66a3b0 error 4 in
                           libsss_ipa.so[7ff889fcf000+5d000] - Resolves: rhbz#1290381 - Rebase SSSD to 1.14.x in RHEL-7.3
- The rebase includes fixes for the following bugzillas:
- Resolves: rhbz#789477 - [RFE] SUDO: Support the IPA schema
- Resolves: rhbz#1059972 - RFE: SSSD: Automatically assign new slices for
                           any AD domain
- Resolves: rhbz#1233200 - man sssd.conf should clarify details about
                           subdomain_inherit option.
- Resolves: rhbz#1238144 - Need better libhbac debuging added to sssd
- Resolves: rhbz#1265366 - sss_override segfaults when accidentally adding
                           --help flag to some commands
- Resolves: rhbz#1269512 - sss_override: memory violation
- Resolves: rhbz#1278566 - crash in sssd when non-Englsh locale is used
                           and pam_strerror prints non-ASCII characters
- Resolves: rhbz#1283686 - groups get deleted from the cache
- Resolves: rhbz#1290378 - Smart Cards: Certificate in the ID View
- Resolves: rhbz#1292238 - extreme memory usage in libnfsidmap sss.so
                           plug-in when resolving groups with many members
- Resolves: rhbz#1292456 - sssd_be AD segfaults on missing A record
- Resolves: rhbz#1294670 - Local users with local sudo rules causes
                           LDAP queries
- Resolves: rhbz#1296618 - Properly remove OriginalMemberOf attribute in
                           SSSD cache if user has no secondary groups anymore
- Resolves: rhbz#1299553 - Cannot retrieve users after upgrade from 1.12
                           to 1.13
- Resolves: rhbz#1302821 - Cannot start sssd after switching to non-root
- Resolves: rhbz#1310877 - [RFE] Support Automatic Renewing of Kerberos
                           Host Keytabs
- Resolves: rhbz#1313014 - sssd is not closing sockets properly
- Resolves: rhbz#1318996 - SSSD does not fail over to next GC
- Resolves: rhbz#1327270 - local overrides: issues with sub-domain users
                           and mixed case names
- Resolves: rhbz#1342547 - sssd-libwbclient: wbcSidsToUnixIds should not
                           fail on lookup errors - Build the PAC plugin with krb5-1.14
- Related: rhbz#1336688 - sssd tries to resolve global catalog servers
                          from AD forest sub-domains in AD-IPA trust setup - Resolves: rhbz#1336688 - sssd tries to resolve global catalog servers
                           from AD forest sub-domains in AD-IPA trust setup - Resolves: rhbz#1290853 - [sssd] Trusted (AD) user's info stays in sssd
                           cache for much more than expected. - Resolves: rhbz#1336706 - sssd_nss memory usage keeps growing when trying
                           to retrieve non-existing netgroups - Resolves: rhbz#1296902 - In IPA-AD trust environment access is granted
                           to AD user even if the user is disabled on AD. - Resolves: rhbz#1334159 - IPA provider crashes if a netgroup from a
                           trusted domain is requested - Resolves: rhbz#1308913 - sssd be memory leak in sssd's memberof plugin
- More patches from upstream related to the memory leak - Resolves: rhbz#1308913 - sssd be memory leak in sssd's memberof plugin - Resolves: rhbz#1300740 - [RFE] IPA: resolve external group memberships
                           of IPA groups during getgrnam and getgrgid - Resolves: rhbz#1284814  - sssd: [sysdb_add_user] (0x0400): Error: 17 - Resolves: rhbz#1270827 - local overrides: don't contact server with
                           overridden name/id - Resolves: rhbz#1267837 - sssd_be crashed in ipa_srv_ad_acct_lookup_step - Resolves: rhbz#1267176 - Memory leak / possible DoS with krb auth. - Resolves: rhbz#1267836 - PAM responder crashed if user was not set - Resolves: rhbz#1266107 - AD: Conditional jump or move depends on
                           uninitialised value - Resolves: rhbz#1250135 - Detect re-established trusts in the IPA
                           subdomain code - Fix a Coverity warning in dyndns code
- Resolves: rhbz#1261155 - nsupdate exits on first GSSAPI error instead
                           of processing other commands - Resolves: rhbz#1261155 - nsupdate exits on first GSSAPI error instead
                           of processing other commands - Resolves: rhbz#1263735 - Could not resolve AD user from root domain - Remove -d from sss_override manpage
- Related: rhbz#1259512 - sss_override : The local override user is not found - Patches required for better handling of failover with one-way trusts
- Related: rhbz#1250135 - Detect re-established trusts in the IPA subdomain
                          code - Resolves: rhbz#1263587 - sss_override --name doesn't work with RFC2307
                           and ghost users - Resolves: rhbz#1259512 - sss_override : The local override user is not found - Resolves: rhbz#1260027 - sssd_be memory leak with sssd-ad in GPO code - Resolves: rhbz#1256398 - sssd cannot resolve user names containing
                           backslash with ldap provider - Resolves: rhbz#1254189 - sss_override contains an extra parameter --debug
                           but is not listed in the man page or in
                           the arguments help - Resolves: rhbz#1254518 - Fix crash in nss responder - Support import/export for local overrides
- Support FQDNs for local overrides
- Resolves: rhbz#1254184 - sss_override does not work correctly when
                           'use_fully_qualified_names = True' - Resolves: rhbz#1244950 - Add index for 'objectSIDString' and maybe to
                           other cache attributes - Resolves: rhbz#1250415 - sssd: p11_child hardening - Related: rhbz#1250135 - Detect re-established trusts in the IPA
                          subdomain code - Resolves: rhbz#1202724 - [RFE] Add a way to lookup users based on CAC
                           identity certificates - Resolves: rhbz#1232950 - [IPA/IdM] sudoOrder not honored as expected - Fix wildcard_limit=0
- Resolves: rhbz#1206571 - [RFE] Expose D-BUS interface - Fix race condition in invalidating the memory cache
- Related: rhbz#1206575 - [RFE] The fast memory cache should cache initgroups - Resolves: rhbz#1249015 - KDC proxy not working with SSSD krb5_use_kdcinfo
                           enabled - Bump release number
- Related: rhbz#1246489 - sss_obfuscate fails with "ImportError: No module
                          named pysss" - Fix missing dependency of sssd-tools
- Resolves: rhbz#1246489 - sss_obfuscate fails with "ImportError: No module
                           named pysss" - More memory cache related fixes
- Related: rhbz#1206575 - [RFE] The fast memory cache should cache initgroups - Remove binary blob from SC patches as patch(1) can't handle those
- Related: rhbz#854396 - [RFE] Support for smart cards - Resolves: rhbz#1244949 - getgrgid for user's UID on a trust client
                           prevents getpw* - Fix memory cache integration tests
- Resolves: rhbz#1206575 - [RFE] The fast memory cache should cache initgroups
- Resolves: rhbz#854396 - [RFE] Support for smart cards - Remove OTP from PAM stack correctly
- Related: rhbz#1200873 - [RFE] Allow smart multi step prompting when
                          user logs in with password and token code from IPA
- Handle sssd-owned keytabs when sssd runs as root
- Related: rhbz#1205144 - RFE: Support one-way trusts for IPA - Resolves: rhbz#1183747 - [FEAT] UID and GID mapping on individual clients - Resolves: rhbz#1206565 - [RFE] Add dualstack and multihomed support
- Resolves: rhbz#1187146 - If v4 address exists, will not create nonexistant
                           v6 in ipa domain - Resolves: rhbz#1242942 - well-known SID check is broken for NetBIOS prefixes - Resolves: rhbz#1234722 - sssd ad provider fails to start in rhel7.2 - Add support for InfoPipe wildcard requests
- Resolves: rhbz#1206571 - [RFE] Expose D-BUS interface - Also package the initgr memcache
- Related: rhbz#1205554 - Rebase SSSD to 1.13.x - Rebase to 1.13.0 upstream
- Related: rhbz#1205554 - Rebase SSSD to 1.13.x
- Resolves: rhbz#910187 - [RFE] authenticate against cache in SSSD
- Resolves: rhbz#1206575 - [RFE] The fast memory cache should cache initgroups - Don't default to SSSD user
- Related: rhbz#1205554 - Rebase SSSD to 1.13.x - Related: rhbz#1205554 - Rebase SSSD to 1.13.x
- GPO default should be permissve - Resolves: rhbz#1205554 - Rebase SSSD to 1.13.x
- Relax the libldb requirement
- Resolves: rhbz#1221992 - sssd_be segfault at 0 ip sp error 6 in
                           libtevent.so.0.9.21
- Resolves: rhbz#1221839 - SSSD group enumeration inconsistent due to
                           binary SIDs
- Resolves: rhbz#1219285 - Unable to resolve group memberships for AD
                           users when using sssd-1.12.2-58.el7_1.6.x86_64
                           client in combination with
                           ipa-server-3.0.0-42.el6.x86_64 with AD Trust
- Resolves: rhbz#1217559 - [RFE] Support GPOs from different domain controllers
- Resolves: rhbz#1217350 - ignore_group_members doesn't work for subdomains
- Resolves: rhbz#1217127 - Override for IPA users with login does not list
                           user all groups
- Resolves: rhbz#1216285 - autofs provider fails when default_domain_suffix
                           and use_fully_qualified_names set
- Resolves: rhbz#1214719 - Group resolution is inconsistent with group
                           overrides
- Resolves: rhbz#1214718 - Overridde with --login fails trusted adusers
                           group membership resolution
- Resolves: rhbz#1214716 - idoverridegroup for ipa group with --group-name
                           does not work
- Resolves: rhbz#1214337 - Overrides with --login work in second attempt
- Resolves: rhbz#1212489 - Disable the cleanup task by default
- Resolves: rhbz#1211830 - external users do not resolve with
                           "default_domain_suffix" set in IPA server sssd.conf
- Resolves: rhbz#1210854 - Only set the selinux context if the context
                           differs from the local one
- Resolves: rhbz#1209483 - When using id_provider=proxy with
                           auth_provider=ldap, it does not work as expected
- Resolves: rhbz#1209374 - Man sssd-ad(5) lists Group Policy Management
                           Editor naming for some policies but not for all
- Resolves: rhbz#1208507 - sysdb sudo search doesn't escape special characters
- Resolves: rhbz#1206571 - [RFE] Expose D-BUS interface
- Resolves: rhbz#1206566 - SSSD does not update Dynamic DNS records if
                           the IPA domain differs from machine hostname's
                           domain
- Resolves: rhbz#1206189 - [bug] sssd always appends default_domain_suffix
                           when checking for host keys
- Resolves: rhbz#1204203 - sssd crashes intermittently
- Resolves: rhbz#1203945 - [FJ7.0 Bug]: getgrent returns error because
                           sss is written in nsswitch.conf as default
- Resolves: rhbz#1203642 - GPO access control looks for computer object
                           in user's domain only
- Resolves: rhbz#1202245 - SSSD's HBAC processing is not permissive enough
                           with broken replication entries
- Resolves: rhbz#1201271 - sssd_nss segfaults if initgroups request is by
                           UPN and doesn't find anything
- Resolves: rhbz#1200873 - [RFE] Allow smart multi step prompting when
                           user logs in with password and token code from IPA
- Resolves: rhbz#1199541 - Read and use the TTL value when resolving a
                           SRV query
- Resolves: rhbz#1199533 - [RFE] Implement background refresh for users,
                           groups or other cache objects
- Resolves: rhbz#1199445 - Does sssd-ad use the most suitable attribute
                           for group name?
- Resolves: rhbz#1198477 - ccname_file_dummy is not unlinked on error
- Resolves: rhbz#1187103 - [RFE] User's home directories are not taken
                           from AD when there is an IPA trust with AD
- Resolves: rhbz#1185536 - In ipa-ad trust, with 'default_domain_suffix' set
                           to AD domain, IPA user are not able to log unless
                           use_fully_qualified_names is set
- Resolves: rhbz#1175760 - [RFE] Have OpenLDAP lock out ssh keys when
                           account naturally expires
- Resolves: rhbz#1163806 - [RFE]ad provider dns_discovery_domain option:
                           kerberos discovery is not using this option
- Resolves: rhbz#1205160 - Complain loudly if backend doesn't start due
                           to missing or invalid keytab - Resolves: rhbz#1226119 - Properly handle AD's binary objectGUID - Filter out domain-local groups during AD initgroups operation
- Related: rhbz#1201840 - SSSD downloads too much information when fetching
                          information about groups - Resolves: rhbz#1201840 - SSSD downloads too much information when fetching
                           information about groups - Initialize variable in the views code in one success and one failure path
- Resolves: rhbz#1202170 - sssd_be segfault on IPA(when auth with AD
                           trusted domain) client at
                           src/providers/ipa/ipa_s2n_exop.c:1605 - Resolves: rhbz#1202170 - sssd_be segfault on IPA(when auth with AD
                           trusted domain) client at
                           src/providers/ipa/ipa_s2n_exop.c:1605 - Handle case where there is no default and no rules
- Resolves: rhbz#1192314 - With empty ipaselinuxusermapdefault security
                           context on client is staff_u - Set a pointer in ldap_child to NULL to avoid warnings
- Related: rhbz#1198759 - ccname_file_dummy is not unlinked on error - Resolves: rhbz#1199143 - With empty ipaselinuxusermapdefault security
                           context on client is staff_u - Resolves: rhbz#1198759 - ccname_file_dummy is not unlinked on error - Run the restart in sssd-common posttrans
- Explicitly require libwbclient
- Resolves: rhbz#1187113 - sssd deamon was not running after RHEL 7.1 upgrade - Resolves: rhbz#1187113 - sssd deamon was not running after RHEL 7.1 upgrade - Fix endianess bug in fill_id()
- Related: rhbz#1109331 - [RFE] Allow SSSD to be used with smbd shares - Resolves: rhbz#1168904 - gid is overridden by uid in default trust view - Resolves: rhbz#1187192 - IPA initgroups don't work correctly in
                           non-default view - Resolves: rhbz#1184982 - Need to set different umask in selinux_child - Bump the release number
- Related: rhbz#1184140 - Users saved throug extop don't have the
                          originalMemberOf attribute - Add a patch dependency
- Related: rhbz#1184140 - Users saved throug extop don't have the
                          originalMemberOf attribute - Process ghost members only once
- Fix processing of universal groups with members from different domains
- Related: rhbz#1168904 - gid is overridden by uid in default trust view - Related: rhbz#1184140 - Users saved throug extop don't have the
                          originalMemberOf attribute - Resolves: rhbz#1185188 - Uncached SIDs cannot be resolved - Handle GID override in MPG domains
- Handle views with mixed-case domains
- Related: rhbz#1168904 - gid is overridden by uid in default trust view - Open socket to the PAC responder in krb5_child before dropping root
- Related: rhbz#1184140 - Users saved throug extop don't have the
                          originalMemberOf attribute - Resolves: rhbz#1184140 - Users saved throug extop don't have the
                           originalMemberOf attribute - Resolves: rhbz#1182183 - pam_sss(sshd:auth): authentication failure with
                           user from AD - Resolves: rhbz#889206 - On clock skew sssd returns system error - Related: rhbz#1168904 - gid is overridden by uid in default trust view - Resolves: rhbz#1177140 - gpo_child fails if "log level" is enabled in smb.conf
- Related: rhbz#1168904 - gid is overridden by uid in default trust view - Resolves: rhbz#1175408 - SSSD should not fail authentication when only allow
                           rules are used
- Resolves: rhbz#1175705 - sssd-libwbclient conflicts with Samba's and causes
                           crash in wbinfo
                           - in addition to the patch libwbclient.so is
                             filtered out of the Provides list of the package - Resolves: rhbz#1171215 - Crash in function get_object_from_cache
- Resolves: rhbz#1171383 - getent fails for posix group with AD users after
                           login
- Resolves: rhbz#1171382 - getent of AD universal group fails after group users
                           login
- Resolves: rhbz#1170300 - Access is not rejected for disabled domain
- Resolves: rhbz#1162486 - Error processing external groups with
                           getgrnam/getgrgid in the server mode
- Resolves: rhbz#1168904 - gid is overridden by uid in default trust view - Resolves: rhbz#1169459 - sssd-ad: The man page description to enable GPO HBAC
                           Policies are unclear
- Related: rhbz#1113783 - sssd should run under unprivileged user - Rebuild to add several forgotten Patch entries
- Resolves: rhbz#1173482 - MAN: Document that only user names are checked
                           for pam_trusted_users
- Resolves: rhbz#1167324 - pam_sss domains option: User auth should fail
                           when domains=<emtpy value> - Remove Coverity warnings in krb5_child code
- Related: rhbz#1113783 - sssd should run under unprivileged user - Resolves: rhbz#1173482 - MAN: Document that only user names are checked
                           for pam_trusted_users
- Resolves: rhbz#1167324 - pam_sss domains option: User auth should fail
                           when domains=<emtpy value> - Don't error out on chpass with OTPs
- Related: rhbz#1109756 - Rebase SSSD to 1.12 - Resolves: rhbz#1124320 - [FJ7.0 Bug]: getgrent returns error because sss
                           is written in nsswitch.conf as default. - Resolves: rhbz#1169739 - selinuxusermap rule does not apply to trusted
                           AD users
- Enable running unit tests without cmocka
- Related: rhbz#1113783 - sssd should run under unprivileged user - krb5_child and ldap_child do not call Kerberos calls as root
- Related: rhbz#1113783 - sssd should run under unprivileged user - Resolves: rhbz#1168735 - The Kerberos provider is not properly views-aware - Fix typo in libwbclient-devel alternatives invocation
- Related: rhbz#1109331 - [RFE] Allow SSSD to be used with smbd shares - Resolves: rhbz#1166727 - pam_sss domains option: Untrusted users from
                           the same domain are allowed to auth. - Handle migrating clients between views
- Related: rhbz#891984 - [RFE] ID Views: Support migration from the sync
                         solution to the trust solution - Use alternatives for libwbclient
- Related: rhbz#1109331 - [RFE] Allow SSSD to be used with smbd shares - Resolves: rhbz#1165794 - sssd does not work with custom value of option
                           re_expression - Add an option that describes where to put generated krb5 files to
- Related: rhbz#1135043 - [RFE] Implement localauth plugin for MIT krb5 1.12 - Handle IPA group names returned from the extop plugin
- Related: rhbz#891984 - [RFE] ID Views: Support migration from the sync
                         solution to the trust solution - Resolves: rhbz#1165792 - automount segfaults in sss_nss_check_header - Resolves: rhbz#1163742 - "debug_timestamps = false" and "debug_microseconds
                           = true" do not work after enabling journald
                           with sssd. - Resolves: rhbz#1153593 - Manpage description of case_sensitive=preserving
                          is incomplete - Support views for IPA users
- Related: rhbz#891984 - [RFE] ID Views: Support migration from the sync
                         solution to the trust solution - Update man page to clarify TGs should be disabled with a custom search base
- Related: rhbz#1161741 - TokenGroups for LDAP provider breaks in corner cases - Use upstreamed patches for the rootless sssd
- Related: rhbz#1113783 - sssd should run under unprivileged user - Resolves: rhbz#1153603 - Proxy Provider: Fails to lookup case sensitive
                           users and groups with case_sensitive=preserving - Resolves: rhbz#1161741 - TokenGroups for LDAP provider breaks in corner cases - Resolves: rhbz#1162480 - dereferencing failure against openldap server - Move adding the user from pretrans to pre, copy adding the user to
  sssd-krb5-common and sssd-ipa as well in order to work around yum
  ordering issue
- Related: rhbz#1113783 - sssd should run under unprivileged user - Resolves: rhbz#1113783 - sssd should run under unprivileged user - Fix two regressions in the new selinux_child process
- Related: rhbz#1113783 - sssd should run under unprivileged user
- Resolves: rhbz#1132365 - Remove password from the PAM stack if OTP is used - Include the ldap_child and selinux_child patches for rootless sssd
- Related: rhbz#1113783 - sssd should run under unprivileged user - Support overriding SSH public keys with views
- Support extended attributes via the extop plugin
- Related: rhbz#1109756 - Rebase SSSD to 1.12
- Resolves: rhbz#1137010 - disable midpoint refresh for netgroups if ptask
                           refresh is enabled - Resolves: rhbz#1153518 - service lookups returned in lowercase with
                           case_sensitive=preserving
- Resolves: rhbz#1158809 - Enumeration shows only a single group multiple
                           times - Include the responder and packaging patches for rootless sssd
- Related: rhbz#1113783 - sssd should run under unprivileged user - Amend the sssd-ldap man page with info about lockout setup
- Related: rhbz#1109756 - Rebase SSSD to 1.12
- Resolves: rhbz#1137014 - Shell fallback mechanism in SSSD 
- Resolves: rhbz#790854 - 4 functions with reference leaks within sssd (src/python/pyhbac.c) - Fix regressions caused by views patches when SSSD is connected to a
  pre-4.0 IPA server
- Related: rhbz#1109756 - Rebase SSSD to 1.12 - Add the low-level server changes for running as unprivileged user
- Package the libsss_semange library needed for SELinux label changes
- Related: rhbz#1113783 - sssd should run under unprivileged user 
- Resolves: rhbz#1113784 - sssd should audit selinux user map changes - Use libsemanage for SELinux label changes
- Resolves: rhbz#1113784 - sssd should audit selinux user map changes - Rebase SSSD to 1.12.2
- Related: rhbz#1109756 - Rebase SSSD to 1.12 - Sync with upstream
- Related: rhbz#1109756 - Rebase SSSD to 1.12 - Rebuild against ding-libs with fixed SONAME
- Related: rhbz#1109756 - Rebase SSSD to 1.12 - Rebase SSSD to 1.12.1
- Related: rhbz#1109756 - Rebase SSSD to 1.12 - Require ldb 2.1.17
- Related: rhbz#1133914 - Rebase libldb to version 1.1.17 or newer - Fix fully qualified IFP lookups
- Related: rhbz#1109756 - Rebase SSSD to 1.12 - Rebase SSSD to 1.12.0
- Related: rhbz#1109756 - Rebase SSSD to 1.12 - Squash in upstream review comments about the PAC patch
- Related: rhbz#1097286 - Expanding home directory fails when the request
                          comes from the PAC responder - Backport a patch to allow krb5-utils-test to run as root
- Related: rhbz#1097286 - Expanding home directory fails when the request
                          comes from the PAC responder - Resolves: rhbz#1097286 - Expanding home directory fails when the request
                           comes from the PAC responder - Fix a DEBUG message, backport two related fixes
- Related: rhbz#1090653 - segfault in sssd_be when second domain tree
                           users are queried while joined to child domain - Resolves: rhbz#1090653 - segfault in sssd_be when second domain tree
                           users are queried while joined to child domain - Resolves: rhbz#1082191 - RHEL7 IPA selinuxusermap hbac rule not always
                           matching - Resolves: rhbz#1077328 - other subdomains are unavailable when joined
                           to a subdomain in the ad forest - Resolves: rhbz#1078877 - Valgrind: Invalid read of int while processing
                           netgroup - Resolves: rhbz#1075092 - Password change w/ OTP generates error on success - Resolves: rhbz#1078840 -  Error during password change - Resolves: rhbz#1075663 - SSSD should create the SELinux mapping file
                           with format expected by pam_selinux - Related: rhbz#1075621 - Add another Kerberos error code to trigger IPA
                          password migration - Related: rhbz#1073635 - IPA SELinux code looks for the host in the wrong
                          sysdb subdir when a trusted user logs in - Related: rhbz#1066096 - not retrieving homedirs of AD users with
                          posix attributes - Related: rhbz#1072995 -  AD group inconsistency when using AD provider
                           in sssd-1.11-40 - Resolves: rhbz#1073631 - sssd fails to handle expired passwords
                           when OTP is used - Resolves: rhbz#1072067 - SSSD Does not cache SELinux map from FreeIPA
                           correctly - Resolves: rhbz#1071903 - ipa-server-mode: Use lower-case user name
                           component in home dir path - Resolves: rhbz#1068725 - Evaluate usage of sudo LDAP provider together
                           with the AD provider - Fix idmap documentation
- Bump idmap version info
- Related: rhbz#1067361 - Check IPA idranges before saving them to the cache - Pull some follow up man page fixes from upstream
- Related: rhbz#1060389 - Document that `sssd` cache needs to be cleared
                          manually, if ID mapping configuration changes
- Related: rhbz#1064908 - MAN: Remove misleading memberof example from
                          ldap_access_filter example - Resolves: rhbz#1060389 - Document that `sssd` cache needs to be cleared
                           manually, if ID mapping configuration changes - Resolves: rhbz#1064908 - MAN: Remove misleading memberof example from
                           ldap_access_filter example - Resolves: rhbz#1068723 - Setting int option to 0 yields the default value - Resolves: rhbz#1067361 - Check IPA idranges before saving them to the cache - Resolves: rhbz#1067476 - SSSD pam module accepts usernames with leading
                           spaces - Resolves: rhbz#1033069 - Configuring two different provider types might
                           start two parallel enumeration tasks - Resolves: rhbz#1068640 - 'IPA: Don't call tevent_req_post outside _send'
                           should be added to RHEL7 - Resolves: rhbz#1063977 - SSSD needs to enable FAST by default - Resolves: rhbz#1064582 - sss_cache does not reset the SYSDB_INITGR_EXPIRE
                           attribute when expiring users - Resolves: rhbz#1033081 - Implement heuristics to detect if POSIX attributes
                           have been replicated to the Global Catalog or not - Resolves: rhbz#872177 - [RFE] subdomain homedir template should be
                          configurable/use flatname by default - Resolves: rhbz#1059753 - Warn with a user-friendly error message when
                           permissions on sssd.conf are incorrect - Resolves: rhbz#1037653 - Enabling ldap_id_mapping doesn't exclude
                           uidNumber in filter - Resolves: rhbz#1059253 - Man page states default_shell option supersedes
                           other shell options but in fact override_shell does.
- Use the right domain for AD site resolution
- Related: rhbz#743503 -  [RFE] sssd should support DNS sites - Resolves: rhbz#1028039 - AD Enumeration reads data from LDAP while
                           regular lookups connect to GC - Resolves: rhbz#877438 - sudoNotBefore/sudoNotAfter not supported by sssd
                          sudoers plugin - Mass rebuild 2014-01-24 - Resolves: rhbz#1054639 - sssd_be aborts a request if it doesn't match
                           any configured idmap domain - Resolves: rhbz#1054899 - explicitly suggest krb5_auth_timeout in a loud
                           DEBUG message in case Kerberos authentication
                           times out - Resolves: rhbz#1037653 - Enabling ldap_id_mapping doesn't exclude
                           uidNumber in filter - Resolves: rhbz#1051360 - [FJ7.0 Bug]: [REG] sssd_be crashes when
                           ldap_search_base cannot be parsed.
- Fix a typo in the man page
- Related: rhbz#1034920 - RHEL7 sssd not setting IPA AD trusted user homedir - Resolves: rhbz#1054639 - sssd_be aborts a request if it doesn't match
                           any configured idmap domain
- Fix return value when searching for AD domain flat names
- Resolves: rhbz#1048102 - Access denied for users from gc domain when
                           using format DOMAIN\user - Resolves: rhbz#1034920 - RHEL7 sssd not setting IPA AD trusted user homedir - Resolves: rhbz#1048102 - Access denied for users from gc domain when
                           using format DOMAIN\user - Resolves: rhbz#1053106 - sssd ad trusted sub domain do not inherit
                           fallbacks and overrides settings - Resolves: rhbz#1051016 - FAST does not work in SSSD 1.11.2 in Fedora 20 - Resolves: rhbz#1033133 - "System Error" when invalid ad_access_filter
                            is used - Resolves: rhbz#1032983 - sssd_be crashes when ad_access_filter uses
                           FOREST keyword.
- Fix two memory leaks in the PAC responder (Related: rhbz#991065) - Resolves: rhbz#1048184 - Group lookup does not return member with multiple
                           names after user lookup - Resolves: rhbz#1049533 - Group membership lookup issue - Mass rebuild 2013-12-27 - Resolves: rhbz#894068 - sss_cache doesn't support subdomains - Re-initialize subdomains after provider startup
- Related: rhbz#1038637 - If SSSD starts offline, subdomains list is
                          never read - The AD provider is able to resolve group memberships for groups with
  Global and Universal scope
- Related: rhbz#1033096 - tokenGroups do not work reliable with Global
                          Catalog - Resolves: rhbz#1033096 - tokenGroups do not work reliable with Global
                           Catalog
- Resolves: rhbz#1030483 - Individual group search returned multiple
                           results in GC lookups - Resolves: rhbz#1040969 - sssd_nss grows memory footprint when netgroups
                           are requested - Resolves: rhbz#1023409 - Valgrind sssd "Syscall param
                           socketcall.sendto(msg) points to uninitialised
                           byte(s)" - Resolves: rhbz#1037936 - sssd_be crashes occasionally - Resolves: rhbz#1038637 - If SSSD starts offline, subdomains list is
                           never read - Resolves: rhbz#1029631 - sssd_be crashes on manually adding a cleartext
                           password to ldap_default_authtok - Resolves: rhbz#1036758 - SSSD: Allow for custom attributes in RDN when
                           using id_provider = proxy - Resolves: rhbz#1034050 - Errors in domain log when saving user to sysdb - Resolves: rhbz#1036157 - sssd can't retrieve auto.master when using the
                           "default_domain_suffix" option in - Resolves: rhbz#1028057 - Improve detection of the right domain when
                           processing group with members from several domains - Resolves: rhbz#1033084 - sssd_be segfaults if empty grop is resolved
                           using ad_matching_rule - Resolves: rhbz#1031562 - Incorrect mention of access_filter in sssd-ad
                           manpage - Resolves: rhbz#991549 - sssd fails to retrieve netgroups with multiple
                          CN attributes - Skip netgroups that don't provide well-formed triplets
- Related: rhbz#991549 -  sssd fails to retrieve netgroups with multiple
                          CN attributes - New upstream release 1.11.2
- Remove upstreamed patches
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.11.2
- Resolves: rhbz#991065 - Resolves: rhbz#1019882 - RHEL7 ipa ad trusted user lookups failed with
                           sssd_be crash
- Resolves: rhbz#1002597 - ad: unable to resolve membership when user is
                           from different domain than group - New upstream release 1.11.1
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.11.1
- Resolves: rhbz#991065 - Rebase SSSD to 1.11.0 - New upstream release 1.11.0
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.11.0
- Resolves: rhbz#991065 - New upstream release 1.11 beta 2
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.11.0beta2
- Related: rhbz#991065 - Resolves: #906427 - Do not use %{_lib} in specfile for the nss and
                      pam libraries - Resolves: #983587 - sss_debuglevel did not increase verbosity in
                      sssd_pac.log - Resolves: #983580 - Netgroups should ignore the 'use_fully_qualified_names'
                      setting - Apply several important fixes from upstream 1.10 branch
- Related: #966757 - SSSD failover doesn't work if the first DNS server
                     in resolv.conf is unavailable - New upstream release 1.10.1
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.10.1 - Remove libcmocka dependency - sssd-tools should require sssd-common, not sssd - Move sssd_pac to the sssd-ipa and sssd-ad subpackages
- Trim out RHEL5-specific macros since we don't build on RHEL 5
- Trim out macros for Fedora older than F18
- Update libldb requirement to 1.1.16
- Trim RPM changelog down to the last year - Move sssd_pac to the sssd-krb5 subpackage - Fix Obsoletes: to account for dist tag
- Convert post and pre scripts to run on the sssd-common subpackage
- Remove old conversion from SYSV - New upstream release 1.10
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.10.0 - the cmocka toolkit exists only on selected arches - Apply a number of patches from upstream to fix issues found post-beta,
  in particular:
  -- segfault with a high DEBUG level
  -- Fix IPA password migration (upstream #1873)
  -- Fix fail over when retrying SRV resolution (upstream #1886) - Only BuildRequire libcmocka on Fedora - Fix typo in Requires that prevented an upgrade (#973916)
- Use a hardcoded version in Conflicts, not less-than-current - New upstream release 1.10 beta2
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.10.0beta2
- BuildRequire libcmocka-devel in order to run all upstream tests during build
- BuildRequire libnl3 instead of libnl1
- No longer BuildRequire initscripts, we no longer use /sbin/service
- Remove explicit krb5-libs >= 1.10 requires; this platform doensn't carry any
  older krb5-libs version - Enable hardened build for RHEL7 - Apply a couple of patches from upstream git that resolve crashes when
  ID mapping object was not initialized properly but needed later - Resolves: rhbz#961357 - Missing dyndns_update entry in sssd.conf during
                          realm join
- Resolves: rhbz#961278 - Login failure: Enterprise Principal enabled by
                          default for AD Provider
- Resolves: rhbz#961251 - sssd does not create user's krb5 ccache dir/file
                          parent directory when logging in - Explicitly Require libini_config >= 1.0.0.1 to work around a SONAME bug
  in ding-libs
- Fix SSH integration with fully-qualified domains
- Add the ability to dynamically discover the NetBIOS name - New upstream release 1.10 beta1
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.10.0beta1 - Add a patch to fix krb5 ccache creation issue with krb5 1.11 - New upstream release 1.10 alpha1
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.10.0alpha1 - Split internal helper libraries into a shared object
- Significantly reduce disk-space usage - Fix the Kerberos password expiration warning (#912223) - Do not write out dots in the domain-realm mapping file (#905650) - Include upstream patch to build with krb5-1.11 - Rebuild against new libldb - Fix build with new automake versions - Recreate Kerberos ccache directory if it's missing
- Resolves: rhbz#853558 - [sssd[krb5_child[PID]]]: Credential cache
                          directory /run/user/UID/ccdir does not exist - Fix changelog dates to make F19 rpmbuild happy - New upstream release 1.9.4 - New upstream release 1.9.3 - Resolve groups from AD correctly - Check the validity of naming context - Move the sss_cache tool to the main package - Include the 1.9.2 tarball - New upstream release 1.9.2 - New upstream release 1.9.1 - require the latest libldb - Use mcpath insted of mcachepath macro to be consistent with
  upsteam spec file - New upstream release 1.9.0 - New upstream release 1.9.0 rc1 - New upstream release 1.9.0 beta7
- obsoletes patches #1-#3 - Rebuild against libldb 1.12 - Rebuild against libldb 1.11 - Change the default ccache location to DIR:/run/user/${UID}/krb5cc
  and patch man page accordingly
- Resolves: rhbz#851304 - Rebuild against libldb 1.10 - Only create the SELinux login file if there are SELinux mappings on
  the IPA server - Don't discard HBAC rule processing result if SELinux is on
  Resolves: rhbz#846792 (CVE-2012-3462) - New upstream release 1.9.0 beta 6
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.9.0beta6
- A new option, override_shell was added. If this option is set, all users
  managed by SSSD will have their shell set to its value.
- Fixes for the support for setting default SELinux user context from FreeIPA.
- Fixed a regression introduced in beta 5 that broke LDAP SASL binds
- The SSSD supports the concept of a Primary Server and a Back Up Server in
  failover
- A new command-line tool sss_seed is available to help prime the cache with
  a user record when deploying a new machine
- SSSD is now able to discover and save the domain-realm mappings
  between an IPA server and a trusted Active Directory server.
- Packaging changes to fix ldconfig usage in subpackages (#843995)
- Rebuild against libldb 1.1.9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild - New upstream release 1.9.0 beta 5
- Obsoletes the patch for missing DP_OPTION_TERMINATOR in AD provider options
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.9.0beta5
- Many fixes for the support for setting default SELinux user context from
  FreeIPA, most notably fixed the specificity evaluation
- Fixed an incorrect default in the krb5_canonicalize option of the AD
  provider which was preventing password change operation
- The shadowLastChange attribute value is now correctly updated with the
  number of days since the Epoch, not seconds - Fix broken ARM build
- Add missing DP_OPTION_TERMINATOR in AD provider options - Own several directories create during make install (#839782) - New upstream release 1.9.0 beta 4
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.9.0beta4
- Add a new AD provider to improve integration with Active Directory 2008 R2
  or later servers
- SUDO integration was completely rewritten. The new implementation works
  with multiple domains and uses an improved refresh mechanism to download
  only the necessary rules
- The IPA authentication provider now supports subdomains
- Fixed regression for setups that were setting default_tkt_enctypes
  manually by reverting a previous workaround. - New upstream release 1.9.0 beta 3
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.9.0beta3
- Add a new PAC responder for dealing with cross-realm Kerberos trusts
- Terminate idle connections to the NSS and PAM responders - Switch unicode library from libunistring to Glib
- Drop unnecessary explicit Requires on keyutils
- Guarantee that versioned Requires include the correct architecture - Fix accidental disabling of the DIR cache support - New upstream release 1.9.0 beta 2
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.9.0beta2
- Add support for the Kerberos DIR cache for storing multiple TGTs
  automatically
- Major performance enhancement when storing large groups in the cache
- Major performance enhancement when performing initgroups() against Active
  Directory
- SSSDConfig data file default locations can now be set during configure for
  easier packaging - Fix regression in endianness patch - Rebuild SSSD against ding-libs 0.3.0beta1
- Fix endianness bug in service map protocol - Fix several regressions since 1.5.x
- Ensure that the RPM creates the /var/lib/sss/mc directory
- Add support for Netscape password warning expiration control
- Rebuild against libldb 1.1.6 - New upstream release 1.9.0 beta 1
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.9.0beta1
- Add native support for autofs to the IPA provider
- Support for ID-mapping when connecting to Active Directory
- Support for handling very large (> 1500 users) groups in Active Directory
- Support for sub-domains (will be used for dealing with trust relationships)
- Add a new fast in-memory cache to speed up lookups of cached data on
  repeated requests - New upstream release 1.8.3
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.8.3
- Numerous manpage and translation updates
- LDAP: Handle situations where the RootDSE isn't available anonymously
- LDAP: Fix regression for users using non-standard LDAP attributes for user
  information - New upstream release 1.8.2
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.8.2
- Several fixes to case-insensitive domain functions
- Fix for GSSAPI binds when the keytab contains unrelated principals
- Fixed several segfaults
- Workarounds added for LDAP servers with unreadable RootDSE
- SSH knownhostproxy will no longer enter an infinite loop preventing login
- The provided SYSV init script now starts SSSD earlier at startup and stops
  it later during shutdown
- Assorted minor fixes for issues discovered by static analysis tools - Don't duplicate libsss_autofs.so in two packages
- Set explicit package contents instead of globbing - Fix uninitialized value bug causing crashes throughout the code
- Resolves: rhbz#804783 - [abrt] Segfault during LDAP 'services' lookup - New upstream release 1.8.1
- Resolve issue where we could enter an infinite loop trying to connect to an
  auth server
- Fix serious issue with complex (3+ levels) nested groups
- Fix netgroup support for case-insensitivity and aliases
- Fix serious issue with lookup bundling resulting in requests never
  completing
- IPA provider will now check the value of nsAccountLock during pam_acct_mgmt
  in addition to pam_authenticate
- Fix several regressions in the proxy provider
- Resolves: rhbz#743133 - Performance regression with Kerberos authentication
                          against AD
- Resolves: rhbz#799031 - --debug option for sss_debuglevel doesn't work - New upstream release 1.8.0
- Support for the service map in NSS
- Support for setting default SELinux user context from FreeIPA
- Support for retrieving SSH user and host keys from LDAP (Experimental)
- Support for caching autofs LDAP requests (Experimental)
- Support for caching SUDO rules (Experimental)
- Include the IPA AutoFS provider
- Fixed several memory-corruption bugs
- Fixed a regression in group enumeration since 1.7.0
- Fixed a regression in the proxy provider
- Resolves: rhbz#741981 - Separate Cache Timeouts for SSSD
- Resolves: rhbz#797968 - sssd_be: The requested tar get is not configured is
                          logged at each login
- Resolves: rhbz#754114 - [abrt] sssd-1.6.3-1.fc16: ping_check: Process
                          /usr/sbin/sssd was killed by signal 11 (SIGSEGV)
- Resolves: rhbz#743133 - Performance regression with Kerberos authentication
                          against AD
- Resolves: rhbz#773706 - SSSD fails during autodetection of search bases for
                          new LDAP features
- Resolves: rhbz#786957 - sssd and kerberos should change the default location for create the Credential Cashes to /run/usr/USERNAME/krb5cc - Change default kerberos credential cache location to /run/user/<username> - New upstream release 1.8.0 beta 3
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.8.0beta3
- Fixed a regression in group enumeration since 1.7.0
- Fixed several memory-corruption bugs
- Finalized the ABI for the autofs support
- Fixed a regression in the proxy provider - Rebuild against PCRE 8.30 - New upstream release
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.8.0beta2
- Fix two minor manpage bugs
- Include the IPA AutoFS provider - New upstream release
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.8.0beta1
- Support for the service map in NSS
- Support for setting default SELinux user context from FreeIPA
- Support for retrieving SSH user and host keys from LDAP (Experimental)
- Support for caching autofs LDAP requests (Experimental)
- Support for caching SUDO rules (Experimental) - Resolves: rhbz#773706 - SSSD fails during autodetection of search bases for
                          new LDAP features - fix netgroups and sudo as well - Fixes a serious memory hierarchy bug causing unpredictable behavior in the
  LDAP provider. - Resolves: rhbz#773706 - SSSD fails during autodetection of search bases for
                          new LDAP features - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild - New upstream release 1.7.0
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.7.0
- Support for case-insensitive domains
- Support for multiple search bases in the LDAP provider
- Support for the native FreeIPA netgroup implementation
- Reliability improvements to the process monitor
- New DEBUG facility with more consistent log levels
- New tool to change debug log levels without restarting SSSD
- SSSD will now disconnect from LDAP server when idle
- FreeIPA HBAC rules can choose to ignore srchost options for significant
  performance gains
- Assorted performance improvements in the LDAP provider - New upstream release 1.6.4
- Rolls up previous patches applied to the 1.6.3 tarball
- Fixes a rare issue causing crashes in the failover logic
- Fixes an issue where SSSD would return the wrong PAM error code for users
  that it does not recognize. - Rebuild against libldb 1.1.4 - Resolves: rhbz#753639 - sssd_nss crashes when passed invalid UTF-8 for the
                          username in getpwnam()
- Resolves: rhbz#758425 - LDAP failover not working if server refuses
                          connections - Rebuild for libldb 1.1.3 - Resolves: rhbz#752495 - Crash when apply settings - New upstream release 1.6.3
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.6.3
- Fixes a major cache performance issue introduced in 1.6.2
- Fixes a potential infinite-loop with certain LDAP layouts - Rebuilt for glibc bug#747377 - Change selinux policy requirement to Conflicts: with the old version,
  rather than Requires: the supported version. - Add explicit requirement on selinux-policy version to address new SBUS
  symlinks. - Remove %files reference to sss_debuglevel copied from wrong upstreeam
  spec file. - Improved handling of users and groups with multi-valued name attributes
  (aliases)
- Performance enhancements
    Initgroups on RFC2307bis/FreeIPA
    HBAC rule processing
- Improved process-hang detection and restarting
- Enabled the midpoint cache refresh by default (fewer cache misses on
  commonly-used entries)
- Cleaned up the example configuration
- New tool to change debug level on the fly - New upstream release 1.6.1
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.6.1
- Fixes a serious issue with LDAP connections when the communication is
  dropped (e.g. VPN disconnection, waking from sleep)
- SSSD is now less strict when dealing with users/groups with multiple names
  when a definitive primary name cannot be determined
- The LDAP provider will no longer attempt to canonicalize by default when
  using SASL. An option to re-enable this has been provided.
- Fixes for non-standard LDAP attribute names (e.g. those used by Active
  Directory)
- Three HBAC regressions have been fixed.
- Fix for an infinite loop in the deref code - Build with _hardened_build macro - New upstream release 1.6.0
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.6.0
- Add host access control support for LDAP (similar to pam_host_attr)
- Finer-grained control on principals used with Kerberos (such as for FAST or
- validation)
- Added a new tool sss_cache to allow selective expiring of cached entries
- Added support for LDAP DEREF and ASQ controls
- Added access control features for Novell Directory Server
- FreeIPA dynamic DNS update now checks first to see if an update is needed
- Complete rewrite of the HBAC library
- New libraries: libipa_hbac and libipa_hbac-python - New upstream release 1.5.11
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.5.11
- Fix a serious regression that prevented SSSD from working with ldaps:// URIs
- IPA Provider: Fix a bug with dynamic DNS that resulted in the wrong IPv6
- address being saved to the AAAA record - New upstream release 1.5.10
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.5.10
- Fixed a regression introduced in 1.5.9 that could result in blocking calls
- to LDAP - New upstream release 1.5.9
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.5.9
- Support for overriding home directory, shell and primary GID locally
- Properly honor TTL values from SRV record lookups
- Support non-POSIX groups in nested group chains (for RFC2307bis LDAP
- servers)
- Properly escape IPv6 addresses in the failover code
- Do not crash if inotify fails (e.g. resource exhaustion)
- Don't add multiple TGT renewal callbacks (too many log messages) - New upstream release 1.5.8
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.5.8
- Support for the LDAP paging control
- Support for multiple DNS servers for name resolution
- Fixes for several group membership bugs
- Fixes for rare crash bugs - Resolves: rhbz#706740 - Orphaned links on rc0.d-rc6.d
- Make sure to properly convert to systemd if upgrading from newer
- updates for Fedora 14 - Fix segfault in TGT renewal - Resolves: rhbz#700891 - CVE-2011-1758 sssd: automatic TGT renewal overwrites
-                         cached password with predicatable filename - Re-add manpage translations - New upstream release 1.5.6
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.5.6
- Fixed a serious memory leak in the memberOf plugin
- Fixed a regression with the negative cache that caused it to be essentially
- nonfunctional
- Fixed an issue where the user's full name would sometimes be removed from
- the cache
- Fixed an issue with password changes in the kerberos provider not working
- with kpasswd - Resolves: rhbz#697057 - kpasswd fails when using sssd and
-                         kadmin server != kdc server
- Upgrades from SysV should now maintain enabled/disabled status - Fix %postun - Fix systemd conversion. Upgrades from SysV to systemd weren't properly
- enabling the systemd service.
- Fix a serious memory leak in the memberOf plugin
- Fix an issue where the user's full name would sometimes be removed
- from the cache - Install systemd unit file instead of sysv init script - New upstream release 1.5.5
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.5.5
- Fixes for several crash bugs
- LDAP group lookups will no longer abort if there is a zero-length member
- attribute
- Add automatic fallback to 'cn' if the 'gecos' attribute does not exist - New upstream release 1.5.4
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.5.4
- Fixes for Active Directory when not all users and groups have POSIX attributes
- Fixes for handling users and groups that have name aliases (aliases are ignored)
- Fix group memberships after initgroups in the IPA provider - Resolves: rhbz#683267 - sssd 1.5.1-9 breaks AD authentication - New upstream release 1.5.3
- Support for libldb >= 1.0.0 - New upstream release 1.5.2
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.5.2
- Fixes for support of FreeIPA v2
- Fixes for failover if DNS entries change
- Improved sss_obfuscate tool with better interactive mode
- Fix several crash bugs
- Don't attempt to use START_TLS over SSL. Some LDAP servers can't handle this
- Delete users from the local cache if initgroups calls return 'no such user'
- (previously only worked for getpwnam/getpwuid)
- Use new Transifex.net translations
- Better support for automatic TGT renewal (now survives restart)
- Netgroup fixes - Rebuild sssd against libldb 1.0.2 so the memberof module loads again.
- Related: rhbz#677425 - Resolves: rhbz#677768 - name service caches names, so id command shows
-                         recently deleted users - Ensure that SSSD builds against libldb-1.0.0 on F15 and later
- Remove .la for memberOf - Fix memberOf install path - Add support for libldb 1.0.0 - Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild - Fix nested group member filter sanitization for RFC2307bis
- Put translated tool manpages into the sssd-tools subpackage - Restore Requires: cyrus-sasl-gssapi as it is not auto-detected during
- rpmbuild - New upstream release 1.5.1
- Addresses CVE-2010-4341 - DoS in sssd PAM responder can prevent logins
- Vast performance improvements when enumerate = true
- All PAM actions will now perform a forced initgroups lookup instead of just
- a user information lookup
-   This guarantees that all group information is available to other
-   providers, such as the simple provider.
- For backwards-compatibility, DNS lookups will also fall back to trying the
- SSSD domain name as a DNS discovery domain.
- Support for more password expiration policies in LDAP
-    389 Directory Server
-    FreeIPA
-    ActiveDirectory
- Support for ldap_tls_{cert,key,cipher_suite} config options
-Assorted bugfixes - CVE-2010-4341 - DoS in sssd PAM responder can prevent logins - New upstream release 1.5.0
- Fixed issues with LDAP search filters that needed to be escaped
- Add Kerberos FAST support on platforms that support it
- Reduced verbosity of PAM_TEXT_INFO messages for cached credentials
- Added a Kerberos access provider to honor .k5login
- Addressed several thread-safety issues in the sss_client code
- Improved support for delayed online Kerberos auth
- Significantly reduced time between connecting to the network/VPN and
- acquiring a TGT
- Added feature for automatic Kerberos ticket renewal
- Provides the kerberos ticket for long-lived processes or cron jobs
- even when the user logs out
- Added several new features to the LDAP access provider
- Support for 'shadow' access control
- Support for authorizedService access control
- Ability to mix-and-match LDAP access control features
- Added an option for a separate password-change LDAP server for those
- platforms where LDAP referrals are not supported
- Added support for manpage translations - Solve a shutdown race-condition that sometimes left processes running
- Resolves: rhbz#606887 - SSSD stops on upgrade - Log startup errors to the syslog
- Allow cache cleanup to be disabled in sssd.conf - New upstream release 1.4.1
- Add support for netgroups to the proxy provider
- Fixes a minor bug with UIDs/GIDs >= 2^31
- Fixes a segfault in the kerberos provider
- Fixes a segfault in the NSS responder if a data provider crashes
- Correctly use sdap_netgroup_search_base - Fix incorrect tarball URL - New upstream release 1.4.0
- Added support for netgroups to the LDAP provider
- Performance improvements made to group processing of RFC2307 LDAP servers
- Fixed nested group issues with RFC2307bis LDAP servers without a memberOf plugin
- Build-system improvements to support Gentoo
- Split out several libraries into the ding-libs tarball
- Manpage reviewed and updated - Fix pre and post script requirements - Resolves: rhbz#606887 - sssd stops on upgrade - Resolves: rhbz#626205 - Unable to unlock screen - Resolves: rhbz#637955 - libini_config-devel needs libcollection-devel but
-                         doesn't require it - Resolves: rhbz#632615 - the krb5 locator plugin isn't packaged for multilib - Resolves: CVE-2010-2940 - sssd allows null password entry to authenticate
-                           against LDAP - Rebuilt for https://fedoraproject.org/wiki/Features/Python_2.7/MassRebuild - New upstream version 1.2.91 (1.3.0rc1)
- Improved LDAP failover
- Synchronous sysdb API (provides performance enhancements)
- Better online reconnection detection - New stable upstream version 1.2.1
- Resolves: rhbz#595529 - spec file should eschew %define in favor of
-                         %global
- Resolves: rhbz#593644 - Empty list of simple_allow_users causes sssd service
-                         to fail while restart.
- Resolves: rhbz#599026 - Makefile typo causes SSSD not to use the kernel
-                         keyring
- Resolves: rhbz#599724 - sssd is broken on Rawhide - New stable upstream version 1.2.0
- Support ServiceGroups for FreeIPA v2 HBAC rules
- Fix long-standing issue with auth_provider = proxy
- Better logging for TLS issues in LDAP - New LDAP access provider allows for filtering user access by LDAP attribute
- Reduced default timeout for detecting offline status with LDAP
- GSSAPI ticket lifetime made configurable
- Better offline->online transition support in Kerberos - Release new upstream version 1.1.91
- Enhancements when using SSSD with FreeIPA v2
- Support for deferred kinit
- Support for DNS SRV records for failover - Bump up release number to avoid library sub-packages version issues with
  previous releases. - New upstream release 1.1.1
- Fixed the IPA provider (which was segfaulting at start)
- Fixed a bug in the SSSDConfig API causing some options to revert to
- their defaults
- This impacted the Authconfig UI
- Ensure that SASL binds to LDAP auto-retry when interrupted by a signal - Release SSSD 1.1.0 final
- Fix two potential segfaults
- Fix memory leak in monitor
- Better error message for unusable confdb - Release candidate for SSSD 1.1
- Add simple access provider
- Create subpackages for libcollection, libini_config, libdhash and librefarray
- Support IPv6
- Support LDAP referrals
- Fix cache issues
- Better feedback from PAM when offline - Rebuild against new libtevent - Fix licenses in sources and on RPMs - Fix regression on 64-bit platforms - Fixes link error on platforms that do not do implicit linking
- Fixes double-free segfault in PAM
- Fixes double-free error in async resolver
- Fixes support for TCP-based DNS lookups in async resolver
- Fixes memory alignment issues on ARM processors
- Manpage fixes - Fixes a bug in the failover code that prevented the SSSD from detecting when it went back online
- Fixes a bug causing long (sometimes multiple-minute) waits for NSS requests
- Several segfault bugfixes - Fix CVE-2010-0014 - Patch SSSDConfig API to address
- https://bugzilla.redhat.com/show_bug.cgi?id=549482 - New upstream stable release 1.0.0 - New upstream bugfix release 0.99.1 - New upstream release 0.99.0 - Fix segfault in sssd_pam when cache_credentials was enabled
- Update the sample configuration
- Fix upgrade issues caused by data provider service removal - Fix upgrade issues from old (pre-0.5.0) releases of SSSD - New upstream release 0.7.0 - Fix missing file permissions for sssd-clients - Add SSSDConfig API
- Update polish translation for 0.6.0
- Fix long timeout on ldap operation
- Make dp requests more robust - Ensure that the configuration upgrade script always writes the config
  file with 0600 permissions
- Eliminate an infinite loop in group enumerations - New upstream release 0.6.0 - New upstream release 0.5.0 - Fix for CVE-2009-2410 - Native SSSD users with no password set could log in
  without a password. (Patch by Stephen Gallagher) - Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild - Fix a couple of segfaults that may happen on reload - add missing configure check that broke stopping the daemon
- also fix default config to add a missing required option - latest upstream release.
- also add a patch that fixes debugging output (potential segfault) - release out of the official 0.3.2 tarball - bugfix release 0.3.2
- includes previous release patches
- change permissions of the /etc/sssd/sssd.conf to 0600 - Add last minute bug fixes, found in testing the package - Version 0.3.1
- includes previous release patches - Try to fix build adding automake as an explicit BuildRequire
- Add also a couple of last minute patches from upstream - Version 0.3.0
- Provides file based configuration and lots of improvements - Version 0.2.1 - Version 0.2.0 - package git snapshot - fixed items found during review
- added initscript - added sss_client - Small cleanup and fixes in the spec file - Initial release (based on version 0.1.0 upstream code)                                                                                                                                                                    	   
                                                                      !   "   #   $   %   &   '   (   )   *   +   ,   -                                                        €1.16.4-37.el7 1.16.4-37.el7 1.16.4                                                                                                                                          sss_nss_idmap.h libsss_nss_idmap.so sss_nss_idmap.pc libsss_nss_idmap-devel-1.16.4 html bc_s.png bdwn.png closed.png dir_15d1d8776189bec23b67862ed4b14819.html dir_55cfc06b594eed938a60111774265123.html dir_7b57e1acef2108f548761e1c87505196.html doxygen.css doxygen.png dynsections.js files.html ftv2blank.png ftv2cl.png ftv2doc.png ftv2folderclosed.png ftv2folderopen.png ftv2lastnode.png ftv2link.png ftv2mlastnode.png ftv2mnode.png ftv2mo.png ftv2node.png ftv2ns.png ftv2plastnode.png ftv2pnode.png ftv2splitbar.png ftv2vertline.png index.html jquery.js nav_f.png nav_g.png nav_h.png open.png sss__nss__idmap_8h_source.html sync_off.png sync_on.png tab_a.png tab_b.png tab_h.png tab_s.png tabs.css /usr/include/ /usr/lib64/ /usr/lib64/pkgconfig/ /usr/share/doc/ /usr/share/doc/libsss_nss_idmap-devel-1.16.4/ /usr/share/doc/libsss_nss_idmap-devel-1.16.4/html/ -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1  -m64 -mtune=generic cpio xz 9 x86_64-redhat-linux-gnu                                                                                                                                                                                                                            	   
                                                                                                C source, ASCII text  pkgconfig file directory PNG image data, 8 x 30, 8-bit/color RGBA, non-interlaced PNG image data, 7 x 8, 8-bit/color RGBA, non-interlaced PNG image data, 9 x 9, 8-bit/color RGBA, non-interlaced HTML document, ASCII text HTML document, ASCII text, with very long lines assembler source, ASCII text PNG image data, 104 x 31, 8-bit/color RGBA, non-interlaced ASCII text PNG image data, 16 x 22, 8-bit/color RGBA, non-interlaced PNG image data, 24 x 22, 8-bit/color RGBA, non-interlaced PNG image data, 6 x 1024, 8-bit/color RGB, non-interlaced ASCII text, with very long lines PNG image data, 1 x 56, 8-bit/color RGB, non-interlaced PNG image data, 1 x 6, 8-bit/color RGB, non-interlaced PNG image data, 1 x 12, 8-bit/color RGB, non-interlaced PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced PNG image data, 1 x 36, 8-bit/color RGB, non-interlaced                                                                                                                                                                                                                                                                                                                                                                         R  P  R         ?   ÿÿüp   ý7zXZ  
áû¡ !   ÏXÌã3Ø—] Ýcœrv¡À(ñvX0²€EÎº%Xä’{Ö¿^XÅóý±ëƒMTÅÝÄ–¸}™'ª““~rŽ:¹/žAW…y²¥ÿdŠÌ´kmaž|ùqÐ_™-š’)æD	XŽ­ª^@
þd" mÓVŸ°ék¢@îLòr€Å ¤ZxéÆð—1^©ƒpÙGÆÞ¬‡¢-ú‹iµ:Ò/ÿÓ¼âóÞEãY4ÿtdc„§šwóð'7nøY{Âî[šª0öÆåÖ³Éç§"Ÿ 3))ÀÕ`=tÄ·IÁªT5fîFƒn§E>!}–çÅ
L.½F×Ìx™¿þôþtÍ~x’áÃ!“úB|Ow‡w@uð^bŠbGì¼ÑÈL3“¸8ˆÀ
Ï%µ<	º¹M/‹°S6æCÙËþÇºš<ŒZh'º=§8•bg™òï9¾š8>;ÿÜ¨Bbù‘Ÿj½@9®Òÿ_Ô{‰ÖHJQS“[;9‚¬ý¹ö		4­÷˜ÁJ$SìèÁ#kP¸v'Õ²V³NË®­O©5‹øÏ]Î÷½I®‰â@ÌA"Ø9+R ök‰)á!œqÝ®?ZÅO¼…ÿí“KÉO±cfÍ¹u—K³ú¶²K¡-?ãgæßâ‡„½ctÙ,bc5Ó~Íš‡6ñ<¸[54Íé8Ÿå©žõà?(ŸF~ú/·d"°£(Ø^~(ã ÿ±Ês0óÙõÎžT2¥ÐEÿœòwêzJ8Ò«83“!î‚ØØ*š ¾&„Ïe‹GtýòC½FéÌžðÎ+ËË&>4“mlpE4¦'D^•J”TñŠ¾ÁÈM'9[X2Â‰Ãf¾ãÝh‚>Î“û5þ°Õ4ÖÐ€ÂÈáá¡°t—sízh”
ó•všyN‡OmÒ€†©É˜2Ý¹÷N Œ³Á9ŠÑVJúp×—Ãù|NPoí^Öózõª…êâÈú©I†¬†è'±ûPwn&:TP%ìçè’÷ˆ„<1Pæö×ØÂÞe_ö´¼û7ç!vèh˜Æy'ÆD Õ¼×%®ÏT’lpï´b*ø–+PÙr;+ÊŒ¹Ö8^û0s„h(±Õ$H º@·¦I“Añ©UL‡šY[µµ[>/ý›Ù‹¶Å Ï<¥[7ü"Ÿ	\Þ,Á­ÌÒá¨Ùð\e«¤–È‡£¿±1‡ä;Íþür1ò}S«_¸J½é<¶lÞN…Q~’gy†ªDñÛªÞ9ELý-Ûœ¤ šÙ5Ú³Yj´“Ðuy©ÂŽiÜa¿èëÅ˜áqZÚáv^Ž_gctpÁs‡ji‹«HáÑl±×xnw.&ò#CFb?$o.¡ÊzÊ¦`ò#ö˜©³ù”½5¶+w¨ •ìÐ\L`r".=ÆÔ×Ë¥9)zë4"ôDö ½ð4UÉTn®kjÊMMIšã£tõ0ø¿¥¯?`üjÌu‚0ûáÕòH\xíty`|C³Y›}çÖÝÎTÕ36Éu>‡ˆ§1;ÄRŽ7çùÒ8}™gˆ+˜åIþ™–4µæH+:©>m«É¹Ü¾FÝEè_Fëú#Gs"Ä£ñ[Ö™Èÿÿ‡¨NWªõP‚÷ÌZ­ñÊ6Wi(ìg?­Ž™B’“CºÔß°*˜I$z1¬=˜%áxÕ|ûnaâ)(Ë¤–úŒ^øæ4ÐÚá¶Î!°HsS~<hºŸ(@»
wêAâÄyWhrÊÂ¶ê(ô® Å,Æ¤š-fè7(ÍB¥dèÑ>’Å„õ‰|¤fEÏšô†É|±+(4Ú£_©kýK ócðãjY½jƒ¾,‰gÈÜJ¯êK±}ÒævY8ï¨—îµ‘Mx‚š{¬k.^Lè“~b ÷>BÍ×ú…ÃOšr…û 	I<Šáîxâït;?\[–sz£»Ûœ,ã»ûr½õF/ÜáÁ•ÄÈÔ×òÀãËN×-%×|foë´Í!Ž‡ÖeykÏycþ©­U(lÏý;û¦¶XƒÙ‚èY:\„çVSÈo$’vC¯’aO:’­ìwxf ?Ê äøå: äz‚x©€*È¹¹ø°*‰"%"%ì:¶ŽY¤ŠBÚ¸óD5r›¯Ê7›o¶¸¯ü×‡OüPãà{ ÿ åšËÙà kÂ7ð¼éßiD%éð•_jBü**.y[$U˜”š)çU,`ßÈ ªAøÕdÂy¬üL¤&îˆ‰³e<¾7=Gi’7‰ãÕ/54£/kÙômË¤EH¤  ¾ìæäif¡Ç²¸0 \{ƒVŽÂ:oY5ãsÎ÷gš†u"&ì(àfv©š›Ýl{KŽÒnîŸ†òWTN þƒ7ïk¶üü}#Ï&Ê°Á¨²öÙ~ü‚j¤<ØâÀFë'Ì¦¾ö'¸l¤\ôÊ3úö÷÷OÅÔœÎiô†F9Ãÿ³9JÀñ]‰³wh¥9åŸâÇí‚õ(,omZ
Ýa‡‡5(L¯0#RFdk®t¯®ØÏzõè.GŠWÛ1íÜ°ÊýJì‹‚Á’'²BiUqæþF©[“ç‰=sf·µší’¬1öË÷‚SkŠOæáEìê—qkäàÜ$s²PMoØTÇÙÌ?È¯üÕywEçDÝ­§ìÆhZi„jP´bŸj	Úøc>Ö›LŒ7Mõ´{®6âHk¿&.×ñü»PzÊ¢P¼mPº™ö–~LòúOz@ýâ´ U3¤ùÓRUÔhî“ˆKeË/
Dp‚²Q¿PÌÒx5C…º
ªå=í‰JîÎXª˜šd-¼j
\À|ŽE™NÏNÛ«œ(bÑÆÂ¹õ´ŸÁPÔkÊÇ}ë'lÁƒ—(ãê5¬ ‰òn0g3!Å‚y3RÈ>I'	uÒ_‘%Ûšô]©!ÍÞEƒ³á<Ý3zméªAkÆeÍû2}Ã„Ù·W)È6éR‰!%çº@ý—›`èÎlæžGmIÙTN;lòaoŽHi{éšö˜Þa¶à(cÞE¬]*ì9æÁhOÄ4ÎÙÜGÀ…ìYÊEŸ‘ v[ÌiÄX—æ}/’}‹Ñr³VgÄ¨}î<Äöó´†cJËøŽ(Ýû¦¶ Í”è¡`wØ]&ÃëÃ1Ùî´wt<!+ú<©Åy]ÙJ—ÿ>cö1¦_Q!W•ó½/ÚÜá‰#ñÔå«[`õüy6Å¨ÞùQõf«r}°Æ!7²™&¿VuÌ0®{:\ÊSFD™¹9ó8,&¨ÌQ4q¢E­IÅ«žÆ·yëÚÞþ¼û;/j_«;W!kÝ'R™cÊaÆ°‚sdùÇ¨xÞ*Õ‚¶'[K³xùÁÇ›ýÑMà6“<ìŸóÛk¿!!‚èKêÛULùÝf`Y®dFkãO#Í¿K’•Ýÿ@1'#Ò¡› Mri6®k¥±~æŽ9P,K‰x»Ž‘°Â>&ShÎDB}´åÄ¹ —X2L°#Q¿ó­–WzmÔ{·$FR¾ÚG7d#Ÿ“«8Œ„WJ´Lú/wÃ>
	?¶UÞ“_ºÌA\ã™Ü“¦†SÑof
ñ,¤“î‹7ÞqÎÎAûÁ¥#÷×¸à),©s»tr‘[±Â{gÙèÿ\™ýÖM÷•©˜\—ÙæYê_Qµz:xŒ[
Ù\+¬ø“•Å!óUk¼sE_éõ²»ŸHÚuß©ëâ°Øvmv£cl|€ƒ÷±²¢Â5^¬ÎÀž„!7«Sìh¿mŠÀ'h7„tµ@…˜(õ¿²,Â„b59‡<—Ö–™÷E¯™×Ž17ëÁðmÿ±¾ží‹xë-ó 	õá |ßxeW”•Ä¦Õ¬¢QvÌ}ŠÝèSè’R†•×%ÈÁ©	fíöûÏ0ÝEV ãÄ((>|ª#>#q[¦V»´½˜‘1n%ñ|ª]ŒfÆ.¢ä£ñÐ–:Nx¸’ÞhQ@à'NÌºÆ¥Ÿ=Q K³í³EZ]]xª{1žˆÅêx¡öäXé˜ªÌ-µñkk½ÉD¥È¦\‚—ðõ$^^SvÆ}oðÏ1Ûœ²Ãˆ#ikt¤dLf€’÷žøt[>–Ó
{™t;Rsy¶|dëR£€$¶ÁQ<HÂžýóÑªdàj¡ÌL=Í‚»k7·ò¡—68,×‘äÄéÁb“ä^MßF;Ëõ·’to/¼# ’OŸ¨%œ‰ò"UÀÈµRŒ	Èñ&òkp­NoÞ²|—·‡A˜„ dr”äëö»VZ-ñŽ¹7G è6‰¦\¦k{ìó²Æ]îŸ'zÄŒ»";[¯&§fQ'w—EÛûå Bšúv‰´›O™`ÚX œuö¹X8Ö£eïd/Ä½âðG)w-°m÷¡ÿÁßùQ‘äp<yó€ÝL@‚°° 2Ö¯73§¡ŠÈ›ì›îŽõï’›æC¹œº°ë»lÄ¬1Ñ'ƒfKªÙJØûùkr@‰ÊÊ…ØŠâ$Nv‚¬Ë
œ†²È”áwñÁvj¾QªÓ±àZñžÚ»Ê]¨×p‘i./……«Ùk–CŠ4àU4Î] €èëÐÄ¶¹'Æ+Æàóœ.ˆºaý¸'f¼ìÊSlô¤Ö;¯õ=`qÂý
›FQÒÎ‚ètÈÜ×ju¦‚MquJ…Üœ·æ~¸­v~ƒ™ÞÅ_Œ iÊ»Þ!Ot|ñãýÉ’ñ…áW¤¿0>S4Á–y‰ï'*Èö ùJxÁ.zð$/L“¨&š	úJ×M†‹rÐÌs± ËVÒÆñ—úv˜äÞ¬Še“Z¬/ÖD®Ô™N­ê2±bdƒmâ†E·N…Ÿ¾M]³º¯þjP'¡9U,›å{ùð2b=H7žà˜0“^*à*3Ò^T^ÌœÜ}—ÂÏV5W–áuŽÅÕ™åVå@z²}·CwˆdÈ+E×#5ÛvWÃ$°•êW#|Ô*Ï¦î›’þœ›uU|–Â´ôàk°EqˆcíÎÍ8þ/†¤áŒÓfÆQýˆ;×˜ÜâJpŒ~HÛî¦úì§¡îT¿¢³Uñ	\‡’@·ò®{ß¢5ïÜÆÃ{@P·dÉ¯oQÊñ’Àá{Ö}¹é…xu”é8â/6ùþ¶Ÿñ}èÜü¸ãú>“†´Oè–	Yÿ{‡ÎFêàþ0”;‰V¶Ã(:zÂ^»î8°ÛoäT'h&º·w.©½·NlÜyñ“µƒÁ«Dh¿Ã»’í»74À¥‘ZÊÃz²7IÉÉ›¾¸û&jÂ!Q77a¼c„>àó5öSd‘î5±šÿ
H¦ æéF=f³P?éìu§ßï‡k€J Fº†ÕhrÜ‡nVxR}(çB“i$é€¼h;kwÈ5ô•ÝX‹F«¨®mbîeÿ  £ÓIX™k ÙUÏlAYÉÕhJe#ÇÓ¢tr†ÙþW»²Q°
K¼‘ð¦'Ù¬‡£&q½”KC’ïÜw9MÑÄp[ù‘l	ŸGž$g„Ö00î¼ÝNi\£>·l5öp%§q²ŽÌûÿ–=³ýÔÕø´ÂS`uã‹gFŠÈPÝ†ß¾{
IÌÒnw3Nï6Göèƒ*ÒOÓœDóêœ©G‰õ`!ÂJ9IP½bžjH1ÛõSÜ¥¢6Àí¿‡\­©$×ˆø¿0ví—Å žçS½~
AüYnÜ?©¹–è”ñš Ëµv¢‡4U&ŸPZe€KèRk˜£ÁT!ê! Î7iRÈT¢‘ùÁv•y‚²w·7"Œ~«¼ºqFÎ¸vÔC‚ÃÊïsÒ5š£KQ)oPËº£½Q:ÝäR–Ën×ëBbÀÄþyþíURlðUÊx^ç5P˜çõTÿ‘%x„lÀœê3Co|ÁT4{»c"‘™î q4ò›¶´bº¾.?uû˜wQt‘@‚kÍÃÌØw–¼õoæ@ì`×øÄSž%q6—rJ6»½W¿wqÁ|`@­½?˜;!…‹Ø—<
|±^¸Ç'P0-KZˆ#fS*Qž–|pþŒû;J“=nÚ’§ÏÈ2„­ëqéµ`âFù©QsåZÁò] ÃjÊöÓiðŸ¥NÖ&‚8vË}äPÂèMô]{ñÊÓ¢¹4{
¿Ë;5iË¾¼‡¹Òë)[ÄÞh¯ÏBÐXµúß:n¸ÞUc™…9Z½ÃžÇó‘²`KHäTe€¦[R%C’–YåZA°ÎêÜÛÓm/Ó÷‘ëm¢›É<2ÙåJˆÝSåÁ\C•k¥[·<®-9ä|áï
÷d÷wãÇG%@·{b®Þ,Änðí™5¶T3y’è¿²NåGëü NÁ‘rÂÝê1KL[áÅGý£eã»Îè¯¶Ã°å“£©áÉt‚Óò‘SÖ$Ý©ðŒXè¸BÚªÇÎL #ø²~Å}áéÅÈÛSÙbbwhq0)¹.àhò•NUú“ÞIÂª9µ¿`©£Yº¦`›U&ÏôŠŸAƒéÞ¯¬ØµRlRæ¨›ýõ¾O@%mT¤¼1]V‘ƒˆYÕ¨A
JÕí§sE0ÖýY™G ¸7˜¨«úÍØ.’ƒšf›Dêì¿³‰>¬FÝåTX ×©/ÒŒ°<íÝ eÒdªr·	²ÚaçðåòEšl;{x8¨ðÇÁae}®ÎÇ°Ì´s\…J…¡¿Ó‹Ùƒƒ EBdæõ>¤æUžŸñ0†Ž%^ÂÉ¨wø§|"Ð—Èn×2òì"üAC¹7ŒS¢Ù1ÒÁÊ#dw¨å¨OEdµ_&B•¾ŒKù¿â“cû«Lx÷©Qòöê	xÐØ€l¼ÆõÒvè!ÎúÀ)oWú±Â¦„1¹mCã_ë[³5<*'*ÃŽ5DßlRÄÎf~@ŸŸÚ&8n6VÖæ¿hxžæzÎQ?á‹ˆÏ «.
b*t’@¬MŠqôŠ0{Ó(¹ÑØjˆÛ‚e{*…¢”c”möO‚8¡›íŸVVt*¨ürŽiø„ŸIÜ*×fz]Bò?†vbÄµ Ë¬5þ-Â;µ©ÚkÅÀÛ¼H+Ú$Ò£ýù{NNiuæÛ~}D\²A ¡Ñ‘£× ?~áÂÿ(§Â(«-âël ¾Ðãx<ø¿•Ô2;a3ø-}Õ’íì8/:^¸™ÉEB_rVìê£Ÿc;Ïsf£A»xÈì(¼š%êÁWûžæŸ	þÿ2o1b“Fo
á¹ùøƒvWÏÿ"mª°~é6.PÓ 93†4ØÉ)HÉ¾×‚CÂ?MEµ,l×oÅ# òC©õäC›ºí‹'sKõN£mùÑÅ\ïì\“F‹+šƒÕSõ_]×ä8=Ž;¶C±ñq²tûzvÁÝµÍ4w_OÝí&0ìµI$åRDº¶}”ZÞÒw÷suBExE5~‹§Ê»üô}W®säcQ‡…¾É¥ù¥£'0; 9éZ x…GcëçWýÁ‡×pú¦“„@oZbãîÂúÄõu…yTãöïÁ
O1Ž‘VvÑÕã¯öšë1OºªŠIû@,Ô-SôO‹yRYÍ°’+«¿-$ oá³4ÖÅ“oŸøÒš „!¤Óœ@>CÖbtk~i²'Çß ½¡…PË4´ç™‘¾¾ÞF £YLþd(qÙ¡ÈFýÄ¡id7ç?fÀ•úÕy½M†Ä“T7’·èé8nzçÉä
>ª“ðÆÞw¦e¨‰«†7'ôø.u¸Høæ_<e½‰~5œ¥ig9G]5”¤·æ¡#ƒ@®úyº{Ã`ã0/ÚÖçš:-˜ïp|nˆYS¿è§	ŸÆpÛSÀj‹±Oá Z9ùoã,
Í»€oæ™¸v2·!Ä¡9±¼¢»þÏºUÕŒç˜÷‡™æ¥W]qŸ¸‰Ÿ,‡‚F’G°Ì ÿˆ>ÐÎÑ5‰1”ª! l'L®¡¿FÜü»™¬Ñœz<”˜ð7VG™ÜÔTìÁ¢kIÑðbÔðÚçìö9Þ.çáløl¯g!©µó±Méå&;ƒÇÄ)	ªràY©¨ì	Öóœ´\J•ÞÐŒMÖÛþ:_‚×x‚ÿ:(ØA>÷ÒìÄì£ðÂ‹ž¢>ýx·|<MÆ:ÌT&ÍÞŽáôû\7¬ñv–R ‘ƒ|ÜóÇ&)¯‹Å‰$PÀ@fuN(’ÜˆUXZõ
‘lŒx¥¾ãŽp;n@Œ¼6›TýÓøTÅ_OÉD›§ ³Dañ	"]ªñ6™uäKáAø-¡Ñ
ÁeÅlSZ~¤Q²!‚âÈŽÝ{©ð°ˆ¹h†´@'÷óeý¥Œ« ¬ÛÎÐ¢y‡5¿Ÿo˜QÂË•|”@ÔfûVTÔ^DJW’¢[ïZwªý8ŸÄºIz<÷Fë¼4uºP¸F“ÅgÙ¶XÏ%Ö-ºø¥Ûd ÞäÑý†©ÛºýÖF-çùFé¸]Z¬Û2qgpèÖíÌ&<ÀsüSsûˆñÃ¢¸(žÒ_…MÓù´î[ó`§ý[ †æ²@;5FtHâïìSÝ¸j3$\ 9~q0‡âËKåiM¬™S<o-	‰¯¸tr/Hå¼páÓ5^€ÍíÉQ®ÚølÂ•\[ÍpÈ‘çJÀJê¸Læì]ØpûÉÝ)Z‹,L žãl5@z¸WWÕç=ØþºšÎ-gô€‰½—Ñéö$_DÛ}Å¸ã§ÑŸ_¬_®~æ#¿µ,y™¦Ç·8Ø8ÝÅùÀer
àŒ	]¦G°ý¤|j´É•vS¨6yÀJ<°½íiWºÄÅORzÙ ž¬ûPMœÙB®	ôz€§…[^UEt!Ž‰1þ£ÐùÇzÇÆÒM–¤>ÄÓ¥»´í¿Jn¡•yEˆ!¹„á9f¹z6&]GJoa{ú ˆ¨$0@RåCTŠà^ª°™«HÇr`ØÈ…ðãâ„9†n;Ë`:Ù2qzMÿy£³•°êg¬€°ÿö}Ðì~þUøçg5t‚$Ðâšqh ×÷¼6È_½½µ¾2€¯ëQþ{ðBÕ­å¬Â2Iv/wÔvúêÙ!“§%ð"}?cM ¦jµWm3œY¹f@º	Õ €íœ>Ï©MÁÍ*²Uº²q\×ÀêÏóŸÔž}áŸ"µ+¢nMîÔ?_3hdØÆ|) V7oß>Ñ#Ù–œ CÝ³év6Ýºyû&×Zœ{9Ê¼°î,éÈ²ÙXôYÇƒùÐr6+T~…	Ê†³§•Ò÷´:áðÛòÚ•·åpß™qÿŠ›	Ù+DAUçà#N`êÁà’7~¯KkµÏhqÜ‘ÀíCÎ!%H¹D™šÄOøwk…ÆþMÔD¹È^¹Q×ª‚î+þˆý<À€WÐô Jn€Ž¸óž¦-–É$AÉî@)zb ÌK¯MÏÝë‰zrÇÖB¼?ÝÃvØ7âÀÓÃÑ»=õ¦®“üZç=œ–W·XZ;ùyI,o@_uÆR«ÀŽâ‹ñý9SÛfÂVC¨éh;Q…×]CC˜aãì)„« Ó×ºá=¸­˜2»¬½À‰Áˆ`!UDdH-:ÈAÜF®ä'\]¥nkäý7AI»"@YÇJÞÉ@Ã10]öóûÌi³¥|£7ñ›íÏ²ožáá!€5Ÿ«[À@OAŒÒÔó•hôo[0HÑVê…bª	0!ÏöY#t¾BäÆüÐ½|É[ÑÉ÷%žÀt…=gû"‰DbôÃu‰êºP\?k‹y;y†0K,bJ	C’ÙÇUzvMm´l	·~Ú½4«­«hôwÄ/3(à'± Ÿ:Ëx/0XÀ•+ UÚw$˜Û4æL¹3r˜[nàõ­gm}ÌXhåFÅÝt=d |ÿÅ#|E×¡“æ£A¿Y`+<n¨ßB’t‹JÃÆ“çaNø>z”œ…"P—õz.Ê¤ÏþµX”`7ÍÏ¿À0Ù!+^‘Ó7™fª°çÃqëU´¸[5›šãO¥Ä rœ˜OäÜn7&G7'çùU þªy¹aîûŸVÊWKÑën†Oc›L=F6 e÷ã ä òIÒ•v£›ÀI¤ùÔ!bW6˜G&ýëÆÓ^¬Ù¼fè¦È®pïŽOÉ]†µVÇU‰Ä¼ŸÙÖ³µ”K†ZÃ¤”!Wåî¼Óé›–9K-êÍv.ŠoÀ8•O8ÛFwf	~tP8N%`ï‡¸«!¦Ù5îÔ6W[˜ÔT}Já›Žn€ðnÓ\'Ì(©“$˜Bg«:›µâóæ5vž[9°°ÂfË.&ÌÉRƒuã\†#¯¾m‚íÒ´ž›§"OúJÆñÌ¢¥e˜JZ†/RúåZxºaws:‚j!e’ò‚ñIEß®:0Jú•nü)|[ÎŸÒ5Ue„@e`Œ^+¶ W³r‰†ùXG0ð>y'9QÏþÒTSpØh›žë0ÿU9ºû—|Âž„³×/ø$ìk½%I!`cCWÏ²HùaJ¶±ý€Œ@ãÚÞ¨*zËö¡Ã§–{á÷ŽÎ¶‰Q®Kñt–wÅO±*öÁó!¤â=ÜQA`”×KË
ŽÎµL‚ý¿[v9Ž7,$Q5ÚÈWd ñ-ç"¯c³¸¨“syî¦xÉhÚ(;Ia'ë}rW¥ÀjåAî(ûµy6BÒWÃ‘Ž1@oHÅUdtáED„ÅÊoÍ~	‰×¨ëJFƒ¡ü£ô¹<5øKþ­·7’Œ«/äÊx@ŠMÂ»¹=Iqþ¤ 7Î!ÔŠoCE-dvã_ =dÂ{b‘±US$aÐòœ€|ÊÙyØùMO¤¤¬q,£@q(öYÈ÷·°ºH<æ„o&\ríªE]j¤BD„bF¹šï	^ßxSÛæpòtrÂ/º£³S÷uO¨”]O»#}"µŠ#»K-0„¤¦ƒ•) òþ´zc2Äû}.-²^ÏÐ¸ö?EÝÈš&=cæŒ‹êáyÙ‡ž´Ëb/ßÎÞHwõÑ›4©Úo­7ÞÅLËŠþÀå%›«0Gp34ƒÉ­}QS';²7=ã?Kâ·[dc¼K›¿D0Ë„_ZÁ$žq"+œw$mdÒhŸ•5âŽÒa~PâÿNgPUB_–Úd¢gì™-le2ºØ–óQµ¦—°)f}z9R}ôÕi2#TTxr¹Ugî"i\W+§šA‘ÉTH£‚t{Ì}©(9hy¥„Ð*´ÔµÊE,Çˆw±äoƒŠ™àOBŠïB8i½¯’—äuÛ£$žeaœ¾î?ÚÌ‡‘ßÝýE0Ø"˜[t½n#”×™{(­¨G·ÛVñ2€¹E×`öÖhòÑ<š†‘ˆö¯µXz;>Ûúµ¹IFˆhüíìQ^; iú6çdv#dë_÷L)4%÷0(bÓi#_èŸ‹à’ÑÑ`~$û’gy=k÷'ªÀ§)ö·Œ•ß¶î~Tà<ÙŠE†L$ˆÉ&* U×¢.æ't»²Žèipô0L3°ûëK¹Þ.ƒÄ¯¿dúÍB«}þÔ¿æ#´Ás×áÿhö”sè{–=B£½xR—ÛÍRüÏK§@0W¨¹_ûûïcYÏú [æÏ5ÏlC;,nîT’daÞ ‡È‹C{9Ÿ·|-ÇÖ¤V÷?³*Té¸­}3âë°ª{ýý³Ž7lT6$©Mß„S°Â#‹´þòcƒÙ|¢¬ÞV¾4O6ÔeÀ­ê¡¸G_¾%BÆ|™…z¥¾Ì ø>DýQ<=c]IÚ}/ñ-z³ê¥~ˆº ”4­²Vûù›“5qäðÆztÙ5úzQÁÇ0áÇ”¬êMÆ4lª{EüàÑH&Á†Jj?®Dï—Ÿó\É äñÂØ?œÔ	ÄÉ<pð´š3j?›}ƒg“\”´OäáK‘òÿ[§Å-Œ?ÌÏEï<ÈÔ9ÃÛaø5¡¦ER|AfÓ¹Ò&Ç¥ÙF4ÝÅ71Ú w·°Y—(‹ŒyÄÆ‚Iþ)ïh±\ˆÐ2‘"SËü6I‚öÙ'ö+­‹ÑÓg‚á
 am{¬úT¹ÒþsRÑÖìæ“Á5&*7[äïmñ*Fæ9&‰æ„%‡vñ~ÇRhÀáž“PW€Ø–‚8À)NŸ
:©ñ|G=É­tÊ¢#?ˆõ5µ·¾â¸Éë×È>ZEtéK{Í2ƒ-‚]½á§»_L`ÌÕºì^ÁÐëD<ßÚ¢i–È<Ø_F£^£¶þE-åËŠJœ°x®0Ÿ‡ÁÆb÷\§Üg¡¸®BJ9]ÏIÆ1×Ý94Q·{cmÅ:‘Àñï(~
0þNÆ¼ZÙB&í@‚„½fyY»Ÿà#XÓÍÊ
"Clõ\SA+‰³‰ý#EõxOÊ€Ü¾—`C Æþvl)~2">Døš)öÍ:›ÐýS7™Îï£´¢ù–ÂHD½õå5”s¾?c%‚·d0»0=Ïpeþaçîz­ƒå!f–Û§·	ù–*¼”¾-!ZŒƒËPKž¯	½å.ƒú¬­˜•1£ J€Ñ³ü÷gGr#Ùâ tß\)	+¾Nžé*„øŠMÞÎgúl×­¯¡Ž ÿKŽ†¿2½Káåà¦jUÊŸj­öS'>¿	’þÑãMç¥-×ï=áôÒ„"¢”#{\Z¹¨	'Â£—Ð€×’É»ýZ=b‚Þ"Åó„ðaKf<«;;jSáYÉ¹R‘çÿe,T‚n]ÿýÐàÝ‘}˜5c”¹ðÒëœweê}'R[hÙ±Ø÷—Kûâ°€+™æ¾“²øï•CÈ¤B_i8>RüùA½÷Ýÿð,v<Î¦ N“Ú}áTî|þ¨ƒA<kËn"í>½àÏF»Ý¤eÇ
 êI™W¶í­MÞ“?Áegf±´ãáV‡s+ZÂþTR„3ù\ÛUtòCfZ£ 9ƒ|J»Ve { 'b.r;ï'[àé¹1Â2')|Ý/7›W÷~8Þ×óžn!L©u-¾€¡œ%ÔÈT½$¯wfQX“=Ê=oÃy	gf1¥ü8ýÒ»ÑÏgd§]×þÑ¬F:F¤9?xK?Õ:×k³`S•*7ªÆ‡Æ{ÓZ^þh“Y%‹H0÷Ø dó­ø‡rBn~šîKìï!ç´a—ç<~ðZÑM©ìT0ó‹Ëà è®¥t)×ß½´Ò%¡mQþöíòJ†²˜ }„žÄå¦{·3,{‡8 0”Á]š0îF/a…Œ¨“„=PMF¥vž'ˆä¢èšš§åü8¥n¬Óyª«ËM÷þËå(˜zž¾2wã£´ŸD–$±§íÞÔnû
VJYí’Ö¢þO©‰#ç|{Ë-n‡¤÷A%<›÷sÐcþ`GxÂÚìS[èÁðµ+n¼;ú:)r]GØØŸb¦ÆÍÿVi_?B^zƒ.´eµ#VŠzý±ê,)ãƒ ¹'¥!­ï!'ÓÆÅ²Ë}¦bDA“©¤bGùÆêtTñd µ1($«suúdÇ.ätÊé–~Ò¢?u¾¬©!è«M´b(k}ÁÝó0Ëâ•kO{Ñ|±"±[ kHGÎ‹l®@¿Ž¢dØ*¼Å9¾ŒQPØœ/YLî6‰,*…Ïá	Leáo	$Š“°A.1†D­©]UhNb„È}­’J<JtôäfÞ¯$´€3CmãbÄõÁO €ÁB<“òÅê¿5¯¤–g9¯CƒÖE¯OxŒNBõÅÒÈ¬oWLÓävPŠž?T5:!9-¼øÏéGË@ô»O	«Þ$MsT´¼ÙM}’GÜDÆÜ&­Õ*vèhÒ¯"•`¯z˜Ø¨š²g¤<I½Æ»\¶‹8! îšüDt€éÙA ˜>ë#3ùBÈô…\örô‡ÈÑ”?¨Æ~‹o›ŽŸR’%,¾;"ÿ2æï†c<#[oF ÞµïÑD´wÜoºŠòÖ¦f)c„Fq#÷ àÈ5åóz12ÛÓ
ksÎ4]¦E K£¼a›@‰È™É¡ßI”§y«Æ5Íù	Ðq† L±-[™é)Ïú(ÔNoƒÐÆ\…"ëDKJJì4ù­óË½NK0‰ŸpÝæ}"{l˜á)¥	FI·¾`R©>1vÊêd
ÎÖ‰ëe·Œâ-^ÞÐ²rÖONòým=/glhîÁ/þ1éCå¤ÆÑRø\
,‘Œ5/»hL‡³È¹ï:pWœÆ˜@úÐœèòÅüÔHXÉPA%ÔJÄ!aûbw2W¯&q9ƒU/bB&†|+36æÇ­5ò¹l‡¹ÃKøA7û?²zDÿ6ZF}·¿4dkJ$	¬õ·Ög”Œ­ññ«<ë@f¬Oƒ­ Î¹­4Z
Í‚Ž±†"¬‰çýw6a°O~2FOVÙöB‡ÎOÍÓÚvÇ~?ûëÓyßzpÎB¾¾óA$ëƒ›ì:†bKüør4ô~§¬(¦Kc|… U(Õë™`}=dVÀäž¢âHì¯Eàé/\Ã°Ýúhšk¤|ÒA@xŒCtƒÛìÎ 9ãS¹ (Õ·Ç6;ñ¤÷	–jÌ±­@ï@\}î(R-2ð†½²SÜ†Ufs˜ñgrAR¢<ÄM8µc½sñí|~g1V“íW!ÌÏˆúÄ>[úœ©jÌŒA(ûþUf{UÚ·šµ‚Êé|Ú–I’»h—úD¿ÿ4²\¹oÿjÈ”¶ÿ„Ý\s„–.{IÚZùv¡PpÖ¹ñžŒ<šÜbë\)¯ðÅ¥ ¹¸r8f—/Ic£ûÅ.ùµA4²»Ô9 ´É¤;tLfšõË.âBV‘ãœ)p¹›•©²jZ„ªÚÉ¹5½r¼Öþ e}öÿ;õXxEJä
D9\¦SDÕûX9þÁKôVP+bw‚RÑëÚ…òuö0Ö}gT«Ðü±Ž5có1[Tÿ9éÃ„ èW"ªÄ-(Î…’M¡àUNÔíM2à[:àâä;îŠg)W“k1÷W”à¶î
{½—ï¢óaAß½ðkÒrÐlåBéÐðQ°ƒûL¤ô‹ûcà6˜=nã7IÉ¶Í~Ž“¤W5Òã7Øã¨wÉ_b„ÚÇ÷Ÿ\uG`}ð=§’t§Òð…³&$×¢ñG&£a…‰?Ä1'³œYÃÁCË²p»ÓÔÀòôÐpw¡ ÷t¯³ß3Q.œ8jYÓ&™2*bÍKåàdÔ[¦å³¶©Á8¢Q‹L	Ó¿êl‰X^*"jÛþÂ-</ÒLz1—Ñµ*.øhõ®²*×F,(8¤ùŒÙQìW~ë¯„L
?ñ~e%³èx-…æŸD´Å 1°ÃÎ¿ÙÔ‚àÁÍ±ÏÍ¢tô©Í1ðçf[+]¥tvkˆ‡þx»'ça¬Çº$öŠkno,ÂÍ8_•Â0uY(±}ì}·‰0OÔó$Æo‡G°FTox3Z]È,P”ïŸ’4’ÝbÚÁÝ+oÍ(-2P8e¥@°›9ûå6°ØJ|ºtÒÆŒÆ—®J’lo ‚nÕc>‰¹_Ñ¿•§Íä ž“±
‰ŠRy¶”Eƒì‰C)7‹DVõ¿[4ÔxZjúøÃ^6Àx5€_og0†¸$p¯A¼úvïxÁóì	Þ—:ÅÇ¬y¾×÷/c®Ž‡ö*{nš·œlÕaæzÄÌ£©²Q†ðy¥ôÝ[á7÷bÎ<HdµEƒR9ë‚nw»4‡à'¦‹ÂG t¬%äGÊím2IMÈ_AÑ9Ø]È¢n*§V ã{µ‡È{p’«hn×qjz›²>wX„õG±sAÓ¿-rüÒÌ:]_ÎJwD"4ÿB5=ws¦hÝºæ°5>ÞâÜûà_‰áçšôQ­¡wOc>^òVÓeÐpqõ5¹×ËUÁŽ
@){)’B=0€J5P]¨‡òó4Ðo‘Ü+jˆcM™¹­.»j`4÷ü­5/6Í­ÌaáÐ-óf¢¸u*T9¨clX­ŠµŠ”8_‚ý£š°Ìðö“e|áÔ´–¼oô¯ïöoª¯›»L=b‰ƒ|sËI ˆ{7OÆæÅ(Z@\¢Uù1ù…»‹9…Ñ­J®0]?€¸c›€‡vè¦Ôm˜ìÇîâs¿ÅtA÷ÄÈS ³…­9Àw¬¦Ž`1¾;Tæxüœ&e{~í‘ëç&Ä“Tk°9FRo9Ö7œG+ÝÕ’TqÕ“@Õ2i®I›®#Iút¾0
#¿›Ï±Ó2lWzº;‡T—Ð>Ðâuf5;`½¶ÎÓ›!—™f+—u»ÅÇÔPW‚¡­–Èª˜|Å…È¿Ýí=1Y§á4VÏ/UWï]qt°2b>ú
“m5?ûQ,d¾¡ÙÄE²s{ß„[2ßvØž.¥KKªŠDÐ+	@+üoÐ1]‰ËN*«8ým¦0TmÈ¬Ð ¤³¦’\úƒSß1ðú¯èÅ	¤Ô··Î	JôG#.ƒ¯¹õ¼^ËjTYøÅÈ´>Ð1þSyI\ódÏÕÝù©’†Òðßˆá_€ bÏ¾‡|hQ˜/'’Z=µG±À(Ž¼ìóe4	R¬){ZhÒ†Ô£q¼•FÆåKÆ#ËÐç+ßÏªÀ¸cHn$ÚÆ*BãnÎ“nZ,q×«¥¡k‰L4ÒßRáMZõtžªVKuï[.Â‰H%ŽrÌ­îµ“G¡¥ç;Iþ«ßÝ­Îèº¢“Ý±yŽqìÅxáÔi!M™ìH&ï¸ùþ$Èl3ß)ªxª8QSUõõF§öÆÔ ¨œ]ý©=g±ezxnËÔþ —<d9F}½à[ÏâÝ½õ(›k*ôiF+Å'+„lˆÏwTÂËQÍÜoö
¤âxC]Å[àÕØÿ¢Ö‰ÚeæÊkWÛQßŒ7uxµžåÉÂ+W•‰i€ÝÏ»	äÅ[‰1ÄðëIëJ .d®ûi<‰³…¶aˆ)Àow[(·Íå zœ_Åj‘¹o,É¼
ü¾ö;bÞ[õÂîDà.ºz<í+«”¤±¬]Z#™ é¨züDv±ü‚„Zƒ+b<uÞ6¬ZÏçb
@ :~›èø¯F§=V™zMXÝSñZ"_IÆD2YCÇ´~0UgZÈ!<^ô–(‹§ ™ž™Iç2iY„È(4¯€©©‚KŒ¾¾ñ½¥`ÍÐ3Y½+|k™òß¢®#$–4ç?ä ³é2<Á:Ü­bbÒ6§ˆÅ/]b'Íw¨ã%3(Š"ì·&o:Ú5½ˆÙ0Ù0`C†BªçzƒÈ4z¿ü£¥ðÜ&°Ü>XÀ³oÐ×Zƒšln¿%î g!µŽ[\Ä>E´ÀºäÓ†½½
‹€µ¶fLlø»–ÛH6L’$vBeu?R9”†F™€È‰(´cVú-ìOy>ÉÖ?psÚ_äò!ûí@…/}'ÁŸhšÍh^@ý¥ãBÁyÂE^-Ø¿¨LÃÚ«|]Óšd~¡ÕØ•#a^ÏC2FL·+‡Š¯­ùUÜuÂ »Â|ÒLŒu¹<äØÁ®N†–Â³­+=Å˜]É.ð‹@„|ZÓŸ­Ìá¨d/ï”'y­Æ¤è÷ ~ŠröÒ]ùa:‹è'IÎæ4…wàM¨ì¯dµéáz‚PC7&ñè‚Ø¬ }¤§“!Ðð”sÓwF”Že+öú€Gÿ÷
^b¥ßÈ÷©<f÷(:Å`ÑVUjŸ’ú…îp$žq”[¯>¹Ïô£,XKƒe 6Ž"tŠÖ T_YÍ·1×r÷¶/ú"–ƒ#*6JÛ*eg<b÷))N´A|íwÒ ¡#/ŽµW¯äÂ1MuÞ6äbnc¹Ì¾óN”ÀªîÝÚ;ï?©Ô!@°¤Í¦Í%Ø5›;}§L¸µÆj$L¿Q –wœÃ*º‰…»Ü0`aŸôm@:®î9ÇôÚ.¢©7i~Ÿ}Bç¯eI¨œU¾4nRŽ_-B°ð#¨•²˜:ò¯é&‰R/û¼,š·(ÏÊý¦³0’@aŒõÏ¥˜$©€a\àÂº}ûzÉI`ÅúÇz>HØ·öƒ±%ú‹•Éfëõha¬^¨ærÁ“ŠŒö¡›èÔH>L9™9r«ÔKÖ‰’Ð")³Ýo+9ú~l>v";`Ÿ¨4§Š’¯˜îp–ùwfWŸ­œTeœÓ]IÞòÒSãòÖ'Uû’…4zQÖ²dˆÍÞÖÆ±RM™¤öä.˜—`U+:õØSP,D¯!ÜY7»™\6µûžÏþù3¢ýÝŸ'Si¹nê?Ä!)Ý,‰šR%$%¤°ønµM£µW¾yP“h“¨Ê„a>“5³ÍA_BÝ$WS¡ÂëVïÔÚiyÕ„ÛŽ‰eùÎ0-_J?Zš’eÖ´ðAT2Ì‹­ŽCñq7|%Ôm(Ç´ãŠYæ ´ôe]iñÊ°’;f¡Ž–¯ŠÏ¸ÿúð]\yªFáÛâ < 2<ev'äºKYB\¯ØqëÐú^Ny•qR¼âÛ»¥DÈ„ÞšfàaI¸ÂðHWŸG³4ê5(pƒI\ùnƒyÈõsµ¥B þx	¥”ªseœ-7*–š‚¢Û	H×<¢CÐa-“ånûÅñ¸¬|71ê¸ÄP·Óª"”›¸Fl/ƒ½åA™T·ÏB¤WO9‰›RaÜpzJLÈ-+¸¦vÏ÷ŠÎBÊ ×Ñ4¼ar·%yˆY'ùTŒ‹=‚3BMRaÝ¸ŒŸQÝè€Ü
æðæçWä©uA 3ïúñÅÉqÛE4ª<?X(§Ú÷j2NB-8gMÑ­ÈÓy¹I"ÐH­‘õÒ~1ƒ;Õÿu¾YŸ†€DÏÑfyÒÃÊ
E<>dÉ|¹#àk;éì÷(à]©%èæÒ.æß&°Ä*œœ~J	p™jv”.Aä¥ÑóG“ 	ðÇ;íój/W žö4m,zˆøOp~¥ÑƒøfR3÷Û´a¢´Ö7±ö.ÍÑ©F››¸žÕ&gÕ/;¢k¬•h3­ÑM^ûH™uøPaÈ­bmµGÉq§k™+"DÅ»GZ$Ž[C$úCTôKÃÔYwÝDÆÆÒûœ9%­pã£‹–‰=j`æˆq0b`fS1‚šh¤hÞág‹ú‘1§ ¿Æh¨ýà«-þöñª9Á?ž¼tŒ1¡öÕ¿2¢<}¼ç4Ððr&ÝµòÒ^Ýd§¾Ð¸oºôß‡W9}½SÆÑ|ê9DÔÌñ¾Ï«ª×¾£ü¯¤M}ôS&Ä„Ñ¼->æÓ®f™÷Q…^F˜\ZUŸ7S©­àÇa„ŽÛë®ï­6¹:@ÛÌtÌáJak›4áÐŸ[G.ùTN±ëGÜ<zX©"b¯øâ2¾8b!¬·¼ÿHà:"Ãh×Po¹Yž°pE	ÅxÍ¼Bë:Ìx1¥Œý8ÈÝ¼S´ëÒPÓf`:Ðp3‹òHÜ%õÌ«€›ßè-zU¯#.xØlõÉÒÿ}¦BO˜¸èCO¾§OË$¦{­ ÂÀcý¸‚öm(©¬ŠêT»ñÔûïY½R7í÷èùÆQ;”Å…‰ao%R¸Ûgô8Çl.suÆà óÔ.êco|›d³ÀÅÓ~ŸôSÿñOaIê²‹lG8¶JÈÖõÒž#Å—Âf ‹´émÀ¼ºƒ¼
B›ãš¶gÇ&Ò·]V_ýäX>ßªñÕF˜M9ßHã^eÌ³id?ó`ø]-^›ÕA	›Hñ^…¦—(_A¾í±û4N‡lZN0!xŒ°ê¬´âÿ³µÅÙ­q§3NC½·*Þ½@U†ÿñg÷_žåÓ÷¯„åiÇ²¨XÓžÅ?IÝÈ¨j¦¬qfV “B'@7(Ù¢ûì=«áE1–ý² Ã§è‚$·­Wž^‹c	î„sD¹¦ü#Çc" “­R­ü¡·Ð¬íÆ``©þ'â~/arÂ88·sgòÝn°Üˆs&ä×ØÝE¸¾€šÆÒbWÿ6Ýí_„i.3Rê{GIA_
ØY¨º‚Dá$X@:“©&M‹ðRÏC¬¸å­Bz2Þí»Ü„t¥+:56NÀ¼o×‡bÜ³à{ °k(H¼ pLÂæ=â1A,€GcHd¼ŒvÆaOˆ²IV»)kã‡Qæ¼ÚEµª“LÎ€ewsÈâæó¤¤)&ØkAÏn+9Sèôí$©ä–¡Yy“.R:eìQ´Î˜¤À‚ã‚ÙURº[')ÿ-º 'ÛàŠT²ÅâÄú2múËg„Ì3ÙOÁy™üËtŽÐ›òPùUoh?D—_¸DòæÉÁmcÆ%¼5ê½?i{ˆÎòôÐé†—ZøÇgF¨p‹±ÍßÓÝ^øŒªÙ(ý@¦Ù“­-M+‡º‘†Ö=\†¨½†£$Üy0RŒUq& HØ,ÿŸÏî5s"¢Âœ† ½œžÊ¡c¹RÛy·`¼ç,ã‡  ÆâS)Ì¯kSP9kLX(ü#f³¶µ	U~¥h0ñÓ‹—(¼*f
 8wC{`Ò;Tˆ›¦äó‚¯ÂI+Ú*Ár‹ñaC–ódÅoPC3*FNyhw9ÝIðô+„gg(ë#8(Ã»Œåö¬V4Þµ”lÇJ|$Nù»\-…Ò"ºs2!;pŒñ£°MqD1\¼üŸáÍ}^Y˜Å«õHQ÷0Fû¾‚{^¿ØœôÃ#^MsxzÒò¿¥wF?ìqVZ¨bué@Ùé4Á-Ù®Þ§ŒKµ£MÁë¿Éšv*ÇôdL‘A ±È0ÀH&Jœ)½'‚E?ñöHÊÈ¥ÑŠÑz”AúüŒmÒ™›+Š‚ä…Ê3!##›8–š¹ú¯ñ­*ÉòÎfâœ÷—CÛêó£øî/#²¤Úl×¾10üÚûq
ôÆá[¥?ÛT×¦E©8úÉƒ¼ˆÇãE²Õ¬k|"6%õÖ"¯!¼«‰†T¬ÒN.I†¢7i¤9GLkË½ERl'·Póg!´tž¢öÛ4Y—«Vc,p
Ø¯8GNF¡={ÓéEØˆ©Lpl}”Åª¥È¹­yŸî“¥¤¬º²Ë£­+èÀWemL’(ªÙ? ÒBéøªúR=TƒDSýÆ·AV°(=—xú·î:ø=’v sŠî7V?éY¢L¯rŽ© ²»wõ¼1‡¡ºÆßpž¯9ˆ¹¥Z¸JÌÔ}ŠýÙ87`ìÛÄEyLZŸþ÷ç‚’V³[Ñõ¯ ™¾„v¹²–Õî˜ßS”ÐsÆT–ºÒ£­U“Š:2Tt’{m¥ð
Ç)í˜àÃ|”Ãvrb±%Êö¯œ¥Ì¹X C«a©’¡ 3~}Za–¥‰òô‰ I0T ‹H)w÷O¥EÐQDæ×AšLjßôžD¤„Šâž5e
¸¶Zkh¥?ŸoÂdFzrX—º«Ö£ÕˆW‹`XïâüAä°{éÞÖœ&l¶ÕªœZyè:{Êf 8_ƒ™ÿÒ€7‡%O‚2âøß¿ÆZ½CÊ/ -!#”<¯üú¢OÇ—=2ýí•‚ZG@Ë[HŸB~ÿ@­y”²¹0Øæ®¡6yÕÔ¹
n}~àbæ†ÍrîZHssQüç+EÄ€N­LÑíVag¡pWlŽ&nº“^¥~X0né¸´î‚—IÝæ¾]®IM¬ˆ8»¶ÍGN™zŒÒ”ÝpÌ(Ä?áG¹F¤ù©^.ñÇfµ—^uŠ9g¥¿œ#*ÛÄj€F÷@–]©K|(¨·™ÜNÔ¶o‚ZŠOa-Ë¬š…öÐrz©;¯…8ØÌù)LÃlÌÿ (~cÖAhZ+$~&›'_qh
5RäVÞIZáªà;Ë*_²>Ñ&UÈþò9YVgªÝ©zòéåihe£?KÁøhê›),¥§Áß±v½…B$Ë0û-e„ ªk¤žÞ­Ÿ¬ NY…Ô3ý~¥Ø*t#sÁWÄ+ ¥.†…ãñ¹wud‘owµ°”»ñ$ó(Ól?´âõ°†>½b¶Þ JbØ²Dæ–¾_"‰`ZWPPbRë®üxIó9Ð€’L¬ ÄºðÙÚO¿L@óiÛ-H·Š50G2H"ªgp@hÛ_Û@Ï
ç±ÄJ(Ê'D€„vuÀ+Ÿ$°w–§l³qÖ`H»P=}ŸÑ ü’°
=%›	—s}ñˆ‰®„È
²ç»ÿ´D¡ÁAùŸýÞù
'(y°øQ›šýç”ã;ÛgeåDie7ïâ{è8ªfÁž¦ß³qùûtòzxqÂ=&€¾øZzTÀ"Œl£ºy04s´ (­Í¼`+,µÅßlþ§‰^<öSy˜™*SšÕ¡\º8„Ox`Úá¤³Û™3ÀÕVçZrVp!Dê1n» &~»i	€_½ÁeJ;Mj€Ñªù¶¾šÃ»ÿÌ2^`a¦RÁzUwÐ«?Â5.öõf|óó½œ›É™ïÖ¸Zp-ƒTrÎex-‡ÇA>Þ|8Äjš\eÅzšë HuqÍïWWow3¢ó*yF}1žOdSM3:Äí¹ŒßpÐyÓOtº¬ˆ*·Ø$$ÊâþxG¬±2ÊEuœ nœ¸WÛ†žO*®›ÚíZŠ›¨%”n2Æ¨Í…3åŽ|Å¤Ò½%wün#BÚÏ/ÃÄè¥†0T™dPª¦•³óˆ0*BúúÌ±$¾T…xâQwÉQ3}õþàJ I‹>Û¬ˆ$±ä õOw=¥ß—-ò$N;×8 J¼ùôÅŒ >ºiƒ,Í¡8îjr×g[hw/HNwWi8CÌ®Þ‡«ÔÔÞí3ÂÏ?ê>èˆú„â8¶Bßgv›÷˜ð²ó–mwÍ™©N ³,ŒÍÄ=gÏ@¡tƒG{•¥:ò/Ñi±ƒãö¦Bu5!2ê°öÉv)±ÂØœ#Ÿ$Ü¹CEV|ò‹M³¦PÊöEòs/0#^ŸOyæ”ƒ¸aþ$øÒ¿b¾+¤ª·gus¿ÏkSbƒ–à'‚…èŠ.½3ÓŠÛ€ëR@vìÒ¸H”¶$Yá÷~cŒS(}Wº)J’IÛw[49†ë ;’É×ÑïÕy>ùÁY”ç.œ7þê EœÅOSxPˆ«Ð8Dãq€1_êóeL]r‘<NV‡|VÄT6e2r²ñôó6~eè ¥läO ú©¦&õEÃQõ8fXÙ±Ç}÷¸ %O<õC2öâ­O°éÊ;F°ò£O¿åà×äð=åÜHËµpDzþ ¨©½òA¸Dåƒo_y²í*)µ¡;ÀK×Ô
"Œ‰ß¯¼@úýÓQKPÛ¯ŠCrñ-ÅÓ/>4ð_*z-€ïÉÆ‚:¨z…Á¹eÎÓðß·æó‚ÖÞèÊ·öer}©Ÿñ9¾©BÛCx=çÍÐ>~žÚ0yÿÏÚ4'…²°Ý‹òo‹§#j7P/#ä.  ™ˆY€‘ÁîÖIKðèú¹*ïK+gØgHl´õ‘B‰ÒmÊ3Þ)g dºÉØ—°6ÉG1­@³|ú"¢±ökV7mE	:´Á¥¿ˆPPä&ÏŠÒ`œÕF¢Y?›ê!uÇ[o—iàœ­foÍ¢h_eVÙ‹¥«ÄfuÒ|â1?`þU`Õ‚û<¥"Ršã£Sïî“X£Îú¬ HCuÄîŸOs$¼®6Ó»‚U —ƒC|¥MéZ½,O›¶û(ñrˆ˜öê\‰ð[»Cý¸cü_-@e à®?|;Ì]
‹x¸€±÷ž:œ ´m,Û”’ÑšíúyøñÑIö[a³ !ÓJnÝ5€¯<ŠW£jÎÜšlÊtÖÚÁ9éŸü•±/21ËnPîX[œbšë	·’L°Üý¸dÆýðE¶÷¦áb2*ú³šÁL+…ÀÞZ´:s€&×®­§¨IÀ ùŽu6Z=¹Tl_Kë_Ò )KZÉþÁ2‘æÛ$Évž‰“å;½ÿÖ\r£ð’o´Ùú;d&”ëy_¨Óþ¾pÃ
z´ÕFI,¡â¿ Û–£S¯qozSG5<}gk„¨qö>Ú¸"­b„°bÙzHÌU¸Ìfu†1-8ê»N¯«‰Ø^pî›g3ã?í[æÔº—‘{E{Üì¶±!¿CáûÊnÇÑÜÕíG™ÑÒ­"O‡èkNwÅyç›ÊÏ0Ý9\†ø<"ÑV:Ásøž‚öÐÖ½4‡ÇB[/5ˆ›èÏ›¼gÛ7 µôòõw•ÝÕú„@ž¼{ž•ê¥üy¢]TeénYCÌ¢¼ÖÀä¹àøÜÇpØ¥îÀ_ý–F/€#°Ó¥”o®	Õ öãˆNÁyµ‰˜9›>Qæ3ˆ×r®!1ñ|OùsÎÓ?é§V·¨™ â!u	&PeT“„Ì)B$Ë˜c}{;î°ð5‚
˜ºÃ±>ö’}¨ÖÁ¯'+Ýâ“aÕ¸$ÉDGVÌ¸áøDÂcì'*ZdrŒÒ¸6¿à¯  kƒ®Á¾ô@ËRðÓ­‹Ë\Ðcã">¿3ÌÍÙá¸8g"{­Å… ýâ6‘\}0O¶
ç±s?a"¹à|†œÿfw: (¾îX/a\£+QÉŠ ˆG3ƒÅÎÚlpåœ?ÌeZm½,Ö”Ñ07˜Ì{
 :B”¨]ŸzjŸ¯ Ì82¢Ð(UR@#iø–Zÿ†ä
×Úç2d<‰üÅ¹¥U~Ø]¢ƒË>À)b„TÒ˜°~ßÅ}^è²ÆÁxîTÎ„Ä6+˜7'U|”Ø‡;æ¾ø	kÚ+‡HÞÂJÃ^¿f¿Ñ	çÓÏýRÓÉä®î2XŽÌì³øïñØ÷Y§i@Š€yN%cùç¥…›Š¡Ó0 ø—F#Á—|ÑÝâÆ@X-˜Lé‘[DC"”Âð(ì¯Ýýß`Å™–Ë¥ÔqJ¦ž=-KÏa…øC:òŒ™¯éXH™bj@RÇýÛ0	ÇäÍc2r(Fãæ~±Cö½´+ØPˆØüR]¸aÂ.QRŠÎŸåQ¸x;£u¹ŠÊ9ïÕR«®•_)O$€[ö¡EŒtoÆ9 T]á0g÷È8'5}Z9Ýâ¿‹qY°Ïtbú;¦›òq“EFÓV†tîíöh]¬¸õ8SïNî*,¯$Í!Nbo\”år?¤iîg5Ò‘ÉtÑûbª´"]­$|¸dU\Î­8~Ô‡µH·ZQ-–qUSx¶HÛFjÙ	Ÿ'WX¯…·,· Z¤ò/Ê%hE©òr÷\Ôó3¯Æ¶Ì+w>IjpmÂ£ÿ³ -ˆ—W?Ä`šå„a/ö9Ö45Î'+¢¬xúÇÂÀÕ”ÇçgŒé:˜<ºù2+OØ€áå]øÛ1D¦¿+-Þ[³¦vk?¾»|õ.¾ÕÖ.HåãÉv¤,)Þú0-êm)ýª<'uXo±ÑáR*½rg¢W[ì÷Ë­Ö›™r±!e®qáé7„zø%õ  i¦RkÊ§NuÙ xhfXqû¨P¹Üüf7x
l„aÞå7/#<KžÂº.x][[^@–Üï)M­ðŸÂÏÉvø\xì’ØôÕö[}
²±88Ðk‚,²eº÷sDß};‘gÄu<é'ßÅ…BDòälâ2@•y{$¹ešÃ|?¹:]UÿHóCÂô[y¤2…’©´´Êýª1›N¤¨1ý+ÿ»üŒÒLx¾'›5R¿vûû!ZJtÂM´Í*ÒÂâ-w	ËDQÖÔwR"…"Rv,ÖÀŒ†þÚ0‚ö„B´Ï.ÛÒxª·”/%S›ËÀ¶ŒpÄ¸ª«ïÆ–‰A5{x5VÛ)ÁÅˆõ³‡…7…èæá6,¡ô{¯!·Æù^&üèã<ñÓÝß.IQ·¯nÏþgm…Lé|\ð8u’VÝ˜õ´ÉÌŒÔï‰³b6VJ7´UA¼3Ç+`køÉ¸øïWeÁµó-¨(¹7–ã)"D­r,IÚ6Ò€S1n8qCÉ?#!$šþaÇ	H}Õq›bîÈÜº*/¤EäP
vÉÄnÆœL‘Â€ÙŸ´æþ|ücÀ:Áb¾ù©³ÑÈ«Ã#›é	¸tÀÙÊ}3›X..ŸÂ­+9v~;-k}/=î Œ²>§r ÈT¿“±æÔÞã¤"lWžt£¼cEôðËs÷KÓkããSiß–äº¨h%¬i Š(*™OáP“ˆ=™ìˆ”6†ÐíÉ5$¤ñÛsWŽjÕ44ŸbÍþF2Åùôu9ÀD8O/–ñ(»º¢Ô£×o«~ü¥ºLºƒ€MPb¼ñ»X/†¬à¹´7§L7›¬ô«‚éÇ;e< ÑQäf <å=zÓªü4ŒUsc'SîðS’L®oÎãªóUúÙÖ)<öÓîšÚd‹»Î³^ ôºyön±Êí7ÌJ$n\ÛyP­|·ŠGÄ±7ÓÓïÑ44‡%mF0ý_ïŠÊè½æ$ôßN;¥"‹1jÖ~ùdÔðê$¾„JÚMŽbö‚ÉÜ£•åBòá"¸§YMþ°lè)§ã!šgÄ˜ÅÇù]a:bþAlS}þ>a §»Æ6›*æŽ™ä$÷ŽN£.¦öÌÉËª0âÊ}–Á=ÃSÈqÌ¢Vž @Ùtg_Ñé,|fà$¯î…wMðÄCE^þË]f²Q%`®nyò)ã1Ui:ÙdÚO€•É@¨.ï)±cÌ?àémîhZÍ²+­Âå¶‹>Åöu#ãŸtv7ë™êùÿ Ä™µ==.j‚cØ›{üíSŠH6Õ¶®áNq‹ü‰€6PjƒŸ&'™¿#‚Ô¡ÈF˜~f-ö\àh=0àßsÌ,+/îõŠâB.°¯tb[nIIzõ™9RëbÛHÈ1Þ\<–^iÉ™Ø|Íº>0,Û÷QzNÔ¶"-hß
ñˆçB­n÷Ú¸;>0zh…È'ª0šš)¶3™¤öþzÏ}ŸzÌ^T~ÈëÛøŒ;'Ë×%ilZj‹@Æ7ñµ)©½êìo'Á5‚þ™<Ó˜¹Xñ—2FþëªD×ÀÊVàfÜ4Î|2T§ÔÃ€Wpu~wEGê):	#÷Õ‘Y‚H¦æ t‡†våiÔIcŠû™ñaŠßÆÆà	)`ªkæ”L²–ÊÞVˆ¢¢²´tlõÒê¾vK}<naóù6qâ_¼ƒ~Ò„Më(ä]·£pë¯hi$ò3¥*ã×\å¨¢M’’¸·}·Lx€ˆ~{ˆc˜›«ˆ¥ÑØÄµ•
Íþ|í"§q$utÙŠéêþç¨èxÒ—rq¶¹
½ûmkpàçr£ôOÉï›*§düø¦]1mX>öjz€[ýoU‡±ç¸=<Jç3Xß6ìxŽ+Ñ4zåY#ëEüÿ†pCDw5šÙiû#ú©©É=±(q,ØÄ7gâúÒÓ~9Ÿ…1LwñÖkÃ³™þ¯9Ú:ä Ž‹!—õFB8*|™Q®Ð°RQrí» óžÉÝ°xI‡cŸÝ ÇÌ{9§;à÷™éÛ ¦1nC]÷‘úÁô_úƒ^Qoc¶vçðÁ; EIÒa µŒª¸V)™bwÒ¹{§,HJGÑ<1Al/É‘ÝÁ±4‰G:˜ÓÐ¼ÇûÞa3«xåÂùaÝˆÐÀMØÌ¹AE2»vq$ñmúËõÞ3ÂTì‰Ô/û¨y¸"D*v²¹ËÚðFðpAò/ZŒ@ž^$[¤2?%8¶hÐKsÍXnu(e öš$ê-V¢ÆÇþ=1“¿œþ?¹Dª§™GÌBTaÿOˆîŽN¼iÌÑgó™Ø§˜Æc:.3¦l µzøý.•Xè—ÙÙ@Œ6&¨ç5¾Æ²™…êþVÿH™Bîqæ˜|j¿sˆ¶ò4Æ§Ås­^|¬>9¾®1œ¨Jáu°.foè¿¥ÇÛlÒ-
$wÊ SéwRí0ýIqIÏŠÕWiïb”Ñ\˜{$§ˆÑsGk©šØ ?¥½Ûjß !YnEÖ§ÿÓß÷€JÆÛÓ†’ÃP¥wWã¶ðÝƒœæÜA‰ér¬˜ÆûÙæÄ‚gžÒY ­C%Œ+ILÅd½ºsÔr-.¥ð[eŒõZTØ·+q}t
d¸Ð–Ðò‰EŸYŒõ6=0˜ÈóúEã`ùŠëÝ¦ïRŒn`â‡Z©å»¾–Æ5ÈZ›ÀI^ë´?!ùcéq}¯1ä˜0¥¶ò[;™`ið:5´*òx­êû‰û–Î˜´QU]Ú¢þoàÆžKš*‘Òþ=]Á>‰4žR´é±I¡ï-”¤”xkR-KÆ®q2+¡7ãWï,U=yÇ±àÜA2…_:+0íÂ®êÕ†¶ÀëI6ô¹Ý„‰JÕ	©1<ù4Ñ	Îy¬êiF&µUå[!L
¤#ˆðŽ'AÅ3·à›ž+ï8˜XqDPÎ.0	l½ã&Žå"&Øl(ã|È|¢r>2éèM‡ÓìZ]âÕ€W†ŠªI„í6	É(f!N»NÉ‚FTü˜äJ+Më—éó”­n™c¬ Ï63
· '/â‰ð¸+(hÅÑÑÐ¬ZÓºU0!L>ÒµÑô´h»y^FfF^v<œ¶ÄÁÓlÁk8½p‹¶wŠOoÌ(`Î3µCF»'
éPŸ¹œ¸Šw4a¸ÛVÑgKÖ[7Ü§“|EeûÂ¼óGÅ± F‡–6ð†21;Ë÷®§¤…bÐ`ðìçt¯ÙÌD €Û?B·²zÔ‡ðYâº²wGP*4A Ct‹xçŠ´oÿ$ÁÞhsA³cÌF~ü5Ÿóab*¼ä`OÑ^×uk7ÝÚ‘1Íìå7N8Ç4ª…VÓéªíyä]1ºy”¿Š¶G¦±éðøtÄ×Ù‘Å¿œ‹ó¡¨ÍÙ\=¶®fI—Â6Äˆl³uÝ‘ô×òËíX+t¿lŽÂºÄ‹ä.ÔŸ ­ÅAruØ·Sñ³æÈÅN2&VLªx†ËÇ…~j‚p+nGhË`ˆÈ,f‰ûª¢é÷²0ÍkÁ?><â*÷®ñŽCXþUn‚é6?R— þEÐ_ÏÜ¡a&þÏi7cïüa{åÅuÝhÎ{ÂŽi)oÇ¥]Åu{d[-Þ’—•ºn¥Y:Áƒ-£7²uArÜØû”˜ÝK™#{3Ä­š†PlŸ!¯^V	(V_D®;ÌÚŠw{÷Šé½÷6ÚÞørêC£ç3
š0ðƒþÝÐÎ÷V©òÞºû>¾úˆ%oôÔ*aãyâ	ño@@ÄÔ†M;Ð8¦?®waÓÇ‡ ã«øVˆ$€ß—`ÄM»OÌ·vžÅÌçÏm¹[o¦­‘A”ËlèRDê¡¤Í¦Æ±¹¤¹æ½wâ‡Ç
îŒA›ãÄ‘¤ðÁìÁŠŒtÀû'côÛV¸ƒ/ƒÓ`©é«+óÔ[sñðð	¤NS–¤tDÍjsªÑ‘ñ-»—Úd^¦ùÂó¯k\=[\õ›jÒÆ¹L:¿úòÞÉuÜÊáÀ¿Ë
‘¥/{FoÃ² MºÎ6…ÜeÔ<±Ö—ÔL=U¹Å„v@´/Z	.>Nî[!4^Za¬Ô-;k·Ê.ÔåTÅúÁÔB
Š¾ ×c§RZ	ÜTÝª½dC§ž¡›Êê?¢kI@\„W´•àbJIK@Šœ‰¯‘8×Þôù[[!h6 ð…Œa5MM`ˆ'„›C 4C÷‚IæThÖaÏåØ”4Ý¡kMSú“Æc~p˜ ŠTÔÍ˜tƒ¢vvBÊŽ
øè_Á5Vi<»T‡ ƒ’öÃ7iI‹‰v;ãªU=½à4Lš/ŒaxxTâGH¶¨_÷{\¤H|Õ^_$ò'EÿÓ_§¨Höf>M(™}61¡˜ìR-øE5b<p«ê&2Áü3QåYM".üxÞþ‚S×¯ô@½$Ï€‡èÏ
?¬¨¥ˆŒzf~îó§×„pÁù*÷€Ûîl˜ÏñÚ¹èË?ëÑÅr5½×!šDÝÊèùw²hgOsw¶ª“_
ì¥£Ù,J¯-ÜÞ¢1ŒÇ˜Í…$š®rR DAÎGÒ§
ü ©)±¿…ÉÝ¶½>-jŽgo×ñdýFø5ôè|¢°›>“ð“¨{Ç­¯ýž$§_ùL!=>C­f2Q
­]¸ÂÉRï$à ÿ1Y}IOp|\Ÿ<ÄÂñ}aŠ
/rY1«â±ÞÑ÷ËAB‡2ysŽ©X}È7¿Á|¼j÷èKiaôYü¶Ù“×ãI=\ò½ÜJøI²åUè©,Ç5½zËû\Úiv³Ö9Œò¬ £ÖQSÛ©ùÉðþãk— E
IÅëÓ`yzie’hÊ)“¼.•ä:óÈ¨t+#¯Ù\2ý¡?aÒã##Ôáƒö°	@ˆ¸ÞmßŠ³¥LGßV	oBS¡ºãÔz,ú6XLxÖ½îO eÿ:¦¾t¸q«¨ã‡dž Û¥
§ëf	„P¶qÊ!]àá=¡\Å£Ð¡ÇöT]>óöB{4!Ö\¼¦G½+ÖTnË…9²)aA$åÇ¾ÉN8Ì#ù]Ôf}öLÛLÃ0ÐLÁöŒÃ©]!±ÂfË…=Ò<W<í^†öJ‚´âObpn3ˆ	°:Ìo{¨¿< eû:Fäi¬_}ÔT†Ç¨Ÿ¡¶Z·ðÍn—íþ ´Î:ór=HÄÈŠ¥<TÉl8@õ)ŠŠ›£j­^-íDnbÖV±òÑ¤2hÞ™JŽu“>ÝÐŽsdë¨ôxÓ²™]<z}Å§´,ˆ üdk–M9Íâ-¿OÆ&<s\T~Ìì8ÇÇúÖw.×iŒTYW´âk©M\†õ—uÿlš$Ï¶bëåç4Ô¢Ò‡JuB9Ñÿ”ØZñÎ	7ìJ“Êulåt´è€¨ýäœò$èü™ðï³ÞÁiŠ’ê
¬é—§gHzÇ6ÜÚ°V¢”ÈðÄ^i"Eÿlbý¨ÝÏÑ–hÁ^^ÚvhÚ”•Èð¥Œ»×%~5¾”´AUö*$ÛÈC[tÿ$ÅQ|„[‘Äe[=Û¸òöèBSé~9"x+÷†V†ÛÝº«6ä{$BBŒÚßìR¶µXß–õ[Æ&9 q4³wÉ§?`÷=ÇãŒpÓýÓYòvkÉF`üº•åeYÈy‰¤W¢j#
ÔtÒIj,»ÕÁr8¸ÃbÅüNEéZAÃÙiÌ×ÂÐAÕ"õ? Èb\Ï²ÂXâ¡8cÿ³=Á‰@æäxto4Ÿ“Ì*üCÙÌïÐ™óD6qFÇÀ§Çxå"§NÂ­ª æö‚	Â‹<4_àÝ\háùð-Q+‹]¡üØ7ËUrø¢ô¶ø$SZ`,Ÿl°¿+‡¥÷¿¯¤eÕZÄ˜@y‚®ÒaÕp]èÞo¶|ÙÏÖ®×NÛ/Ž‘p»°?žu°p·öØZ§›<x`GŸèo˜bÙòÝhñ)I{žn`ì°¥§é‹i_°‘ÂZN¨ùñ]ÓÑAâ½”ô
ÛƒGDÓ\Á½¤7’é	;é×²¼ 'Uþ,Eàj¯÷šÒK!TNÝÛM4x/êšÙÂÐÒ–L/ñÄ¥eú1É=îòÝ/8®~ÍvQ€ŸÃ”‚®D•Sq	d¦Ž0+”#§dÜµ°NÖÇnz~éça¶l¥iµ°ôIPÃ‘œ: ¨¬+|KƒNçöéàbŸù³ýã‚Àª)'*ç³ÄIfŸ4LJ‡°÷êÆsÁbùÐ¦.I	«<é“ü´—":É¿7ººÝv½Ká‚'%ç–'Ccù~ˆ©-C+ÓÓn/ß@ˆ·& qÈ)Ü'ãä3S|Jvz¢9ï·Àó±Ò7KÙçRÝzVÍé«ãB.M‚u­´ì¹#ôäút_«Õ>ì!‹ìpNzÚå ¼=Z¿=÷y-ÌE2„òwC²JNž•ÎµÂÿû€Š[ÑÈc¨Ï+ÚsÕMÿ—lÅVwqªlïÛ»¼Æ\­Àùß)†Ÿ.é#¢¥/ªoðQ¹´¸†NU¿bÃÈ¸[kdÇ{f£ã´k*¤B­”Î[„,Ðü63cöÄ`Å A­*#)þý%ÌÍöGæ6?~G³…
©¬îÍÓà(zEØ:W/¿ÒÆ}½ªÞ×.'!¿ŒÍ&iT¾Àb£–¿fì…blKßU²(§~”˜ûíï· ¿I'Aªýv$§Ù+ùÒxyÂÝ%'kj~ÎR#7B#@“	ÝÜú+€.2ˆ=#Y¨îf³Ñ÷¥ÙnmNMËîˆypCì3‘Â`à0ÕmlŽ´3,ñ¢ôè´?Vsá}5ø¨t97æØoò I’Q‚öTñXJï5.ßÙ[%¨b×bÐpmŠ-è5·6õéÒÌ‡nÆ¶Ä c¾$Eù*˜í&ƒè¯<í‰ëðñô{•Ý6kKå%{nßù™N¾{(!½˜ÉžÃˆ¼àÞâÄJÎŒ¡*5ÈaÃrýar!¿™ìß¦)Ä*¤EÜs¹MÒ—`ˆØw‡„Tˆ[hÀý”´JDæx8ÆÀÈ_ÌDáÆw%Æqq}&Œ¾ïÎ÷¹`L9'ŽÀ6¿Êª(z;ûý¬bltßÿ,vòF£ê¢P´]ÖP{!ç`ÏÑt^<Ñ“hæÊ6ôÛ­ÓümöH(éÿl”tŒ_[^Ûï2²MZÁ?ò°Ø!(iÝŒ¸ÁÀ¦ã3/oÒ©©Ý¤°«wwØNÜÇ²4*,.ÔêoX®ŸŸ"i«W$àh­“Z™tÙ†ó>·jûfhÙ•l «Ë»ðUAB¢øˆ	Ù“–îç1ö{ÇÒ‡‚ÒzIi©òèÏ
W¡¥b# DjÉjÁ˜®=ŽQVÍ€’¦Áïú×¼BÜ–¼_J+\>!‹7	$«Ö‹MÜâ\vÙÌåÊÝ3Cp0¡2ŠÞLA÷ðóº<‘ËÚ8þèË5<MBh$„à­zÓ«
vŽn½MJ›6”*!M¬˜_e`Ô¨S~$
~àðJÚqg¹"à„]S	"ª±ùtIücÞ	B2)¿áóÏ”dÁ+FéÎ½îÓÓzÙì"W,!B®yÀ-T22#(½E+\Hßèix¥¤ÿ˜¾ÔV8{`¼³Ÿ<\«+PäÓ	ÁÑdËÕŸ·sS«µƒ5°1§`dÛ¹ªnGüUÔª²ÔE&7!âš
{6ÓˆqàŽ’GÀFç}ãD¾èù"•ª­¯VÕŸÎ[íØDªÕ‰5ZìED=…^[ìŸ@)mdâ7±ªËg0ôl2ñ²ì˜ˆeo\}Zð3µ‹JN-`¥©Îò[Y¦qQ?8•p©fHÌ­Ë`ìFœû‡30Qó`9ÂøÃé.–×#Sçæ.$¬ee¥íUL4@£Þ½N7ðœ!°Ô5·ÝV‰gØÇP‹rI“Qáí}ÚEéÇ~ÑhˆÅEžœvJ#÷f0ÞÆZ’ÅÝÚHpââ÷ ßbiÒÆë¡Å-c¯)ÏÛ*Û„hÍƒªÑM»Ÿtêk;‚Œ[\¢iXD^]'¬M	ÏÓc<ÿ’µÿèÆm¬%÷Š/ó³—YòùDWÍ}Ê¢&–m©‚— áˆíhßì1¿WPInc…À€’Ò¯nè{ã™ƒç7 ].¾£õäÊ²1[X77zíH¡tæïä¾ ¾Žƒßúþ†³OOàIf£RºöÜ?õÝåî!l§±¦Æe§‡uî”›Ÿ4‡³ß¦S™ïiy†Îó—ÒLÐ¼öa$ã0³+1[ÜS.¹cgKlŠÌ\­+¬—
´pÉ,Cwêñ¦Ì&Ág8NÎ¬,É]Íkd^‘IC\ÄY€–Ä&@åÉñÎ}(NtïzC±|êl~ŒÝF	7vú{’Îÿò(fõdN©	U[wY°˜¤Í‚Wœ ÙÔLÀ_¢~7ËG;TÛõ‘M`µåB™’âÂ¤Rïöù)ºuŒRE¶‚e·IˆéªAfªuq«g·†R;ÔKñ7+˜ê•I„êœSË5§Êý› |¶ßñ3¾î3#I½doI§–¿:!ò.òÿQ÷£Ö'­Ó·+pÂ¨pöBØ)†™¡h9Ä·l',To¢ê<Î}$^Þû“ECSµQa<³ù 4²ŸXGw|J8I~¾™!Eõ°‡s¶|Äe"vÐ¢dYUôåƒ †á·/ˆ&5½[2‰¨œc52cn•ÀËŽlüsîÛ’)bC[î¿º»Œ®à#£PðÛq|EŒÁ«ñˆ~pŒÜu{›ý7àaSþ«êBµJ.ÞÒÉEÚ»­¢œ2×7'Àe	øžQûG˜,†í¶F×¾1’Åóž¾?·Ï±54s,ý¬+>6cbïÝMhòvîhõdPƒe(Rgå{û(^¦Á’²{ Â5HN¼[m­H¼[(ÏöóößZ1E*L	`$7DX,;L(Ú s‚7ÏÜ»]ÎÑ(&Š†Ä3(4ð6r$$Í§à(ªÇ?eø À'_9~–åJ'DåšìÓ³è¡N×ºëyÆ5ôhÞLò©8‰û+n(	l(PZYv:ÈÎÚ^Äß)…@¢æ·ãbv8n >!&¯3|ß1.d@,!üÅ ºh;BÌ=ŒHU«ØÜÜ†ÙèRÒÛ‡Y3^¡ÀŠL¦Úî–t'Ú‡‘‘ûÞ-Z¡ná‘p-ãN¶½q!”BE¢+6‘î»E®âÿÖpU<–ÅøçaùL…’»Ðà¦åÍg1½;ý›Ó·æ¬Fˆür˜ò¯‹|
I¸hï†3Šk[˜+³0›¬Ð¤½y§ˆ*p²b¢8€LÅ¦ˆçŽ2W›¬ZVÉH,ã|é½é.¹]ý¤‚³<!~ËyÞEám,„­ƒÝ/¼O?rã¥éºô»v¦†—í!mO›®/±|P¹ÄB1¯€­ùãwØ&–àúv[ÚýÂC¦û%´çvíÖ6qK×ù#Ÿ—üüËêw!%(–æÞEÙ¾(ãŠ^_ø² Bæ/NC}ÁæGì­Ý•ÿ–SÃ¢¡uîkíÎ;CÔôFé°vm’Át´L9ï¸-±û|2“ÖàòÍjZ¨˜ýQ+.2ç½¼ûcÙüVnR'g„Ø£Gþ¦º>MÎüëŒÇh2½·|’]ŽŠ6ìŒÙø;ÃÀ"oªŸŒƒ^èyÛ[™ËÓ,3-"M6ü» vª‡úÓK?›M†N¾äèXGèôzÄé8DhºtéôD¼ÔÍóž¼uO'èï±Xƒ½wgÄUèý„¡Ã»AeXþW²@eJâ¦f¢Î)÷pB',ôôžº-:_{žüÇqšÌ¬Î'¿°h †a„§#ØM{UÁ6)ZìŠÆÔÛ;âáÉ­Ð÷`MÄZkÂÐg[Î"¿ò3™¶ÑP/zoVù™Ð	bª×›àºô®µoÃ¤u¦,Ç@îT\8*<]`z%Þv[ cVEt8O„nÿ\ë8ÂL¶6¨ùŽ’4ªWa6øvÝÑ¦·°.s»iØmp•$šì‰‘ì‰¯0Èä¾æn×ß@QÖ5¯hÒØrÉÄÉŸ	ÄMÃr“þE„j+2J$Á“PMâ¡”yL¤Æ>ÿÖPZD£Ù	\ä÷›ö£stÕpNóè­6º8“ìÐú_§øéô®œ‹!Ñ›ÊÈTº‰ÈdLZ¡Bó öOXúôStËIæÅw+Ùã€\ƒ~‡·ôÈ¿‡È›`i¨Ûö‚ë0hÎ­S{ïRÒRƒ7Žâ«+c,0ß„Ëöl’ÏçSRrà-²EaddîbN^‘!'ì|±o$ÒMa"Ñú–;SÜòõÉÁŸÉŸ§U/zB]LCˆW¨¸Ú0&¢óÜó­eé€Ë XŸÒÁ¡:îË¬RòóÄØ³Š„Î€ú?-¯—æi¾fØt,Ïd¸¡_Ždi¥µ¼¢ãð´5I8saÈd©¦<Ï¿¬üˆ2b-Œ2X‚¢êþsžw0õ<2£ŽR†Ky¯ñuÓ¸@Af¸V|œ%ù€¼ÁEø…~ÌÌÌh%„ËF|¶Y6br{-m‚ð#´lK÷}êœ0Ü0VVAU	}ù–uÿµ6NÒ‰]”gÎˆ`gF.n[hX.Á@ù+ŒîÅn ò
7í“Ò®¬ªaÁ¤Zwã#|ê³ä¥7›$*dßð€!Kúé©·0-¬CYòULÔàÒ—Z«
äÉÃªñg*…N\åTììµtgkõ6ÞùZë9í5»×ø—Ÿn» iËF×*ÇãP×?€Ý%p¸-¤==cµ–¿Ã(Ê¼œqS‹žjM×UÍ Mj³$úZ"jzÉçÿ…¸:U ÛË…ZBÞÔovºÊg_¶‘¤W´Ü3ÖƒTBoÉ¼Ó„ ª÷Àd -«<ðŽ„ãUÈ#Üo[’æ [$AŸ*3÷c2d<z½:t˜ªÿâp(½ Îp ¶‘`	[¹Ø®Ò‹C¯LÜ¼*ÅHR1›<ÈL“©AÛ¦à‘ËÜtÖPyþ­ßí˜²Ú¹/¸ŒÉL‹uÒ|"`A{!ömuËiX9Ýç³Ä_Ú`æ¹ù!yù8Œâø‰¼žÝ7Í²qý`QŸÉ_Âî‰RÿnÒËìª*Nu¿`Üä‡Ùy¹›kx‹¿2±*àÒoèoò£Á ò “rÂÌ
WS’Q@ù?ñ{ýq1 @–(CÄX4ÅÀéç%(9 ›OD=2ÍÎ|#Õ“BYËz¸TÃ±÷ LiÝ‚6™Ý)Iï‘1táliõ“8ÁmtÆÈß¹¢¯…&›“Ì·¡Ï#Ð[ ~ÜQØu5]öí€¿ø i¥¡_‚T·tà%vƒìæQk´`ùÀ¾»Ò7“¦Õ‹ 
5®¬†Di•K¸"|4éµ¹çÍRIY®”w-,ouˆ,o•[ý€ÏvÛØZµåÌ‰zÙDåpÙþÜÚyœ£S]¹bÚ<éƒã"ñrí‹«¶!m€jK‹‹˜ÑˆëÔ@†Ýü„"uŸ“™,W\¸ó[b‚6Ž‰ÛD€Ï‹®š@Õ-fù•›dåQ rØöÜðX‰p!Ää#Ê÷l—õPÚ©ºû+8êD—%+b˜ RßÈ­Qì·è£QÈõUŠŠ¶Ç” @jRÜñ)è¨‚›Œ)8üÔs^`L€)Žî2xøzfï³ª_Õ24ìÒþƒ@¾yBëx5CáT^k¥ÜUKù.k“ž€YžÖM?þƒöÕ‡Îw®pž˜^ÊÚl/íú‰Mu²a,27éHdêFÕÛdPA“ß¹Éâøõzõ4hç²§üáª:nÿŸoûªÏwº
ú{¿®©~ ùäæÍ•µA­N­Le5@¹ÌÒ¦2MÜwÇŒ°ÿ<™B‰3<³’‚OJ˜ÏŒå±QñžJÍ<ýz1ã¨®š[Dk
žÊp)Ý ò–"]˜Wz¤æ¾œ#ÑòäªZÎ*¹ñÛÛvV0´OþB…wªÊÍècº‰e…‚åÊtñ]üº`lÞ›«jP,Ò}//§ƒ—Ü`yðîM€Nê„î›×IÈA·]ÿªÊñz€…`Åà>ÃJ°>Ð•½c9ŸºÕ%˜®Ô/SH¸±bÇ¡? '–½ü„,“FŽ£þ=×WÅ‘Ü¤R”qÏ”Ò&Œ›ˆðH„žÇ6_¦q©XíÔÉ=ªhdç“¿Ñyf9_Ù$(ùÕÛº8«˜=)¯øà`&X¨SÞõø#°íÇñ9mX”¢ÑØ h±£oÍ95’<íðŽË”áœrÑÙÇ1ž¹¯£Ìñ©±¶Ô¥Å÷á÷ø^fGã).*U;¡wÐhul›ËëZ(d­}|mHÒÚ€p
9Á½0rŠiªf¬'Œ¼ßå6«äîÕ,T~ÚàºAlŒÝ§¼)ˆÍSfØþ5!%4ÚüJ›•Îš!+‹D8Í¬™FCÝpL¦
j?Ê²öúKmg-ë&5M©Ìþ™Ì°š. 0 ç;Îv D6/h+#êßËÛnÖÜ¾w
K©2ÌUm±ñHí£‡X,ÌÙhßÉ¡OÁåTf¥Ñ‡aÖ0î?"Ó­Àõˆ]Ó(ÊWcŠ4åÇ¨×$ÖD[ú±ã¨­&éuì£'ŠÎâ\ˆÿK y‰»ƒ›ˆ|¬7(ïÙ¥˜›¶Pw¹Ç:3’’®f£ÇTÁ725ž¡xiP(æ{èêùÕ\tE1ØŽ¨”N)®ûbÉÑ…âG³zúq‹·sÓŒ‚—0!ŸDx/¯í¢ŸŽ3ÜáIõpPR¶\ZªŠK.®\]‰M|ÃbêBýîFòð¿˜Á8¾Î|NzØž85¬ÍW:ƒnömÓ¦ˆPkº€d÷YNåç¦'2 Uâ.ËÀªµ#Ã<áÉ&Í£Ô­Ù§ÔíyÖ§€Cö.¾‹]¹’¦ïÇyw\•‘HênRD1O8<ÏRxÄðP*:%ùE`@!™®*ÙÖŒcÞ ª0<rØ£<¨Sf}@­„l­üz2>V>kKjiZF·L°}KA¼›ùr–šÈ¸:G‹VIÉI‰x|9)z,Ì.×<LnXBmÃ~°ùªÙk,SV`Àh?þcO xÓqé¨‡†Üäós¡ô^]¯:.
èÛÕ¬@à’`KMU~\ìýrÞ¯ûë4¤*f?tÝ÷‰Ÿ<F|ÔæùóŸ#Úõ>:CÇÄ•cÛðSŠÄþ 2„Je´Ø…@Í*ªÔÉ”ýáþä6á%K!Õmß¶¿Ñì$5²oÀÂ³½ïmSS\ÝªïÈö°ˆ6'W¼`eÍªJG¬¨[Ç“—X/§ñßµWG”é¨ý‚¹0±ž¬¾µŸMM#.½ìjÇ¿ PóÒ½4EtÉ§ï€éˆ°¹¨²È½äuS©ˆ¢,ä
Ÿå?)åC¬ðÚ"vßÄPìÿL“{Êêæ˜ü”7svÏøˆ¶ÛæXf.ˆ¿¬ÈÊñ&ù2ÃÅNÏæ
:?ŸÕ=Î	‡ÿÐ6&¸º+¹búš$K©¡Ç§j2íŒ€sÊ¬2Çæ%Ä³êlÖ…q*X€=sTã(¼K©Š*ªQ7°ïF¬`Uëæ…ÍÌvvËciq*¦%<q|"BWäì“½l%ø'ú`L«Ë0SõÃ¼N²Á|¨C¯0^\F‹Ê(^È}âX*2ÜïrúU²—+\7$etFª}Xâ¢NŒa¸c—Ç£UK~è™lÅÏÚ[´—“9'#—ˆ0	A2«2Ä ›3\Ÿ&-Ñ‹Xçÿ3¾¹¹;¨Ýfi×+ìÄ0dˆÝr°Ø|0E°IÐÌn§JôÌy°-•³˜“\%v4\»24ŽÊ_…ïÏÅ	³„èí±máWnü°ºè4l›ï?\¦áÁoÙ'·ñõØ+ŸzpH2·Ü3TûÜ$4¤)ë+.€²Þú¸¨>j¿A}ïôÜøã`ÿmóûäú3-'?¢dt§•Ij p¤ Ý…ó""øp“>Ü>·˜V¤CHœöü¢¥¥¤§û·PÇ¹®t3JHQ]]E_‹H¿¦Ë=ÏÍ+ƒß¹%ðç €¶š>Ï‚Xµiƒ³âú?lîîà*õ|Nò#º­*Þ	`Ä²n·Ç{¬ge¾õ·7œùRŸá¥½®¯Í\i*P$‰óòzØFý™w-´*Ð%qËBXÇiëFJÄŸiÞÉ:àé,G"©Ï€9_—ŸÒ~òSW¬Ât(Xaˆ$·kãV»ü”uyÑÕì£±D:ÇM
ã+etœ¥^ëG¦Ö3B²ôÌæ°mE%‹øVÁq£X] 9yp»Ø›J’#@Ê->_š«röK«ÞHÃ™µ	šjôI9ëô•y½‘ÎÛQHvÿÌ‚¤®H§u1	L:ŒKG!H§
=­Æ¢ÒÑ’cv‹ÿášŠõu±"RVZSÃ·â ‡Èc¾µôG™ôÄ‰ÖåB8ËÞÎp°×„G3ÆÞ3RÂ¯I1«FG†-VË*š©³£vÖà	ˆìû‰‘Ê­¥#Ub&„11Ž‹¶ÇÉ°o¹¹EÕ;+^üŒI´®<)…k‰®ìi£²Auø&òxèh†wb*;öé¢c i@vþûP|Å´üõc)‘XÝæÐpö‰HnÇ/ØíbvÓ2”¼˜Ý· ó–=EÖÇ>žK¾,r³eU/ÎøæWˆßQIŸâNF0ÑìGÂýÿ.6ÒQrÃUyÄÍC5Uºj¦Ï:õ‹’*ÇÖ	‰”q¸µ.U*OÕ¢,çU^:úo†¯dŽ©©óIrÖilý&Z^Èh+œ1éìE]È ¯‘Ö÷ŒÉÙˆ”Ö½«#.óow•îî:Ÿ+ÊËðyìÊw]'LîÜˆÔŽ@¥ÞŽ=zÝž`q6¨Ñ|CÃp§¢â¦£˜TZr’É÷vç1‹¤%ç¯“”*7(ÒˆžÒÆ˜ÍF²Ë•Ÿ\ŠDŽmèZ,‚ÄÀZ¿°<ˆ¶À¢#I#pGp=Šîwa§Ð¼{.c²dµëöè¯ÒŒ`ôïÐ‡“£óSšƒ Àz®Oi¶‰ý©Û”µíPñi*™ž¼¹ÉÖÉÁá©rú¤œ…xØ,a+âOžLÈÇxy¾R—ÜU>yÐdqø-BM3í¸ä¢ÿTñ‰PéN7—¼öÿ´Nè~·¾¾ ôÈ+b¾liòÊìfÊc³p¾MQÍ=5ÒÙåq‘™ð×¡Ts–yÃ>}kÊP–—IaÞ†¬Ÿ­5;ªifï€ªÜ•ËÎCtÌmhRÝ§;«‹MáB.•=~e®Ê”ý™|gÉž38KõŒ#bä.Z’ßû¤t´r6¡ëžõBž#Z!tÂ›Q$B¹1DÒ×–<–"ñãä$á­Wu4–¡ØŸÑœò6­qÂŠMóÂ˜zÑ,ÝµªK¡4MËS4(^à®Îu8MPTÿáÒ^ ö·™uË Î…ááÔR"w¡zÄJb¹Zû>·L!Ù†ß£Pñë ‹1•rg:Ÿådé^ôø¶Ržón<#ÓDÕ×µË÷´Cñ<Q@QmÉ‘‡ÇÏ÷Ê£‘ªÊ Ò·Ì9Š:Œàlí6»à	wî¦_p‘P	¼õtÏØÎØ12¤ÔvŠ"XøWWá+ó6PˆZ1©ï{åzçãB¿RÃ˜
•E<£÷ÿ©°WïðŒ;ïy¹nZù6$} ‹šª¿¢•íiió óûÏv|‚ÕZ—Hô¼:‡³ƒôd+–üÛ¡ØAâ60ÐPwtâÊø%ïÂËvV¯¥“Üy»ÏW·-9ãžlJÐ€²#¨ùŽÀ+n.Ûv!áJ9ø´
Ð¿åšÕ }¹âPOŸâî Ô" –ë?Ž¹ßûå‰Á½HÀiÖì~3{"U¼ø\3œ þÂß“fiEVe	JÏS·N
Žp¡PÏD^õäï£°!ããt™€|tÏ®°‰h_›þ"s§O)YB×±›©òL£ó7"B(s—Û1_­vÒD¹>=ÜÔ*¡ÝBÏÒúM„1Õ¯ã­·„cÃüI›Æ‚R¿’(oBaëÌ™#b_‚Ôþûí8+
¯|I€Ýk>cÂ¥Y`óÁ5z†ˆVËHÚ½8&—TmˆÎ_tÂ¥ªqP6Óx¹1/ìÛÄÙ ”=ŸßöžŸ‰:)Ãb´;'k¤¹Û¾ƒ[ÅBuXKåãa¡øƒ÷“/°éÃlÂnl(V.”‰´¢¼ˆ?$Ã˜ŒÑ¦†
ý¤äÍNwô;êËô´  BŒ¡6- ™Tëôµ
D¯x`@ø«xº³>¢ôZ&3^½YZî»Šôìrcd´ß-ÐU<Q¼ ÁQÔ\¥³J1×èõ_ÕŠeÔr­êõ¨+UŒÝ–f	—,Ü‹Ko,Á¦ºqš1s^»p°æµÊ-ÄâÍY€Ûâ¦ø§¿6Fª*Ø›Óè—=ÂÇ}X( £À¶é¥Æß2˜Â01ŒZ‘Æ\ÛNcTöËÄ·nöÈ;jJiè‚ ü1«S“%I×[FJF¡PC~yªž õgð³LƒQÇÆ«Ó6*6‚À<XŠÊmaLk“³É€b™ëÇ{&ôÐ”B±«à&„ªÈÔMVÞa÷xxWÐ$o!?Ãz¿ö"vìN˜§-f“¢ÿ÷ûA÷~’Ý„!ÃHåðÇ—|uÿ÷ í€[¸S"üÏgp­ä7ÏC¥¢Ä Õq¼ˆ&õáótÀE¤`‘ÀŽ§@G'8.Xª˜Øß|ó…š¬’ÁˆT÷÷˜v2ƒ×Y9bÎ+×šGáV#XrÂ	CÉ
»b‡Æ¾"	=*TbÙ~qÛ–©ÿ$™0û2·ObVåÅY³Š•Êà¿¨ûœž”œ'•dGÖÃ›Í²ZI‡–²¶`ô¡_0H”½r½ýß©!LËfãÿf%yŠ)A¹¶Ð­¡=·Ïpv	2¹—àÄw7#Î:Bƒä{}‡òŠQÚæƒT¯ÇµRæ<ÍP†¦¸ÛGŒÖ?,}Yt\ìH´§Rè”ÂÃúÀžñãâûc° ŠQŽwÇiÇHCHi&òw)™<~WùÆ}ðLŠÀ_±v†3ñ ³‚|3æ¦¥Bšù,ùóV>$'R6‡þð±Ó’6s@žââ7§ù'žÌ1èë¼,{„u;fò’Ž§ü-XŸ,¼hç³åš½]“Ño#›+ó'uÄÎ&3cÝƒq­?+ÂÖ°EYpÐß—o®^Q0”o«ÃR2k˜Ûr´V’ fnº³$¤csˆºmÁçëþ"G,(É+ ïM™.”0!ü~¥¥2ùèJ1‡$Ýnp”s­Â7“†â%ºüŸPÔQ]qÖ=ô÷=ã+¿sóúfÎLp~EÐ'Õe£òëD ƒ‹U‹€m€J+Z5m4ƒ~Õ3Þƒp†Æ€g[é…tNsßV2ã¦ éPHíVö°5 ®ÿ§8VÞMï#v„'“N×%EòŒèü®ÌDŒ5ü#ñ\~älZÌ{Kh Ó[\ËÅï¡r\‹,d½G¬¥åÛJ:ˆ¸Bˆ=I¯0ìÃ84÷º0:´a²c¢¯ôÑP ^{w(òæ+è]ë"U,Ä /a^
‚¹$ál\PÎÛsûŒ6É…/Èå£H¾DµÂ¡æ¥š¸>m°˜Ô’{ŽVµCÃâ³Ä´›°H ®Cí×åJ¥®~DˆêpulftFÉv%ò½ßÆ
I>i`¶þQÃ$\—£œ2–ºñæu¨DzS¨ìäwŸ?²O«š<±nŽÝ©ŸçÆòêýóÎ>¢`„½uö½E6N2ËÖTô¢ZÐ?JšXÄTŽàB^öÙaY…O‡Rÿ-vQçH‚ÄÔ‘¢²•8&÷^¾,2XÃÂ—µtkãû0“•Lu6í@¥ZCÑ˜E)¬‡¼Å÷ò7(ÉÉùze¡*AdH3¢éAÜ´´Žˆ
tQì˜0¼M³´¥?ßªöö2©Ýi¿Ñ·vN] ð·ûŽ5¥¡›i Â²æðàÄÿ={^žÖúKh<+§iÊØÀ
\øªµ¦>dï*Òd5âûù‹^@êoº)½KûËr®¾Sèéãmµ„°‘U‡7˜që™ë"µÊ«Þ¿®xTZøóñéYë3ý›ÀÅBûšçö…³¢r7¸Í@W‹‹#/íŸp¾Óü£ŒQA¦–2àè‚‚\r"ˆÞ46–†ÑÎî'ó¨ÎôOH¢cªp|"¤nMý
L;àµÇIÚg]Ù»©Á¬ÒôI»@ßUQÍ-•8ŽRíÛ‡q{CFðšèhÐ×Ø¶»@è¬$VEÕ¼÷*GÀì.â¹¶5F) "9ý™›œ/†©'û÷~~K
ëS«Ä²ÙqDÚ®šŠ€Å›Évªñ&ltÆµfkÑ_6ˆ¾çÅã¸›žkÛz&sTÎvdÐˆsÝœ‚¦TLynI<%¸Œt‰ñzÄ¦,æëøáB.³}’Ó|Ê²Ô5e³RÊ<V‡Ù>sIc:ÎÎ­•ÿj;ú¬ß:> ÿ˜'±”/*eÙz„» Mçg*$ŠlÁ‹aU"üðkC€˜¢	Ó4Ö ~Ê¥ËócªF	‚MÛã£0Ux3.ÄWÿeÒ	+ÏåøÿâÑ+Ùmæ“Å÷˜§/ß QÕSüè±Î²9ê®rë68L(¬—|D©VÕÓÜ½k(]br\#7ÎÄÿ ¼‘þ#\ÆFògw!u!ˆžB¹ØŒF¦¢SÏéÜD§¨ß"µ	[B	PWžò—‰v1Ž-çÓƒƒÇÙTtAÇ48‡ïãƒ›¤!÷¡Qy²¿ô½ä¦úÛ˜n—í'4J´Qa-ãF¿±"Ç—1qÛŸÐ™@ógiÉ¯*/ñjæUmG€zvˆü¹e(GðZDseYVÿ‰:ïB”oÓgNü†V²Œn8ˆcÅQSÂ½\†®°`b\T.dŽÛ”ßë:[ lµ]oœu!^ —YX€¡´uP4Þâ'-Ž+á`”3Ž¸Îª.ähÆá+ÐüÑZtñ°åˆéµÆ¨3whz¡sHÐïe`:¸R`í $t3'°Ïðˆ™ÌÎ+ÃZž˜ÌCr¦„«V<X+€oz@›êi¹x ]áX†ì”n:Ÿ¸ Eò«åÕ‰ð¶BG?ŸŒ5ÙuKÌýÐ›Ë7d]íJ´¥RE¢p>i†
Öµ„i}Õ¹QžÆXwùÅàÚ«Ô¢`Šæ;üM5M|bÛµŸ0a‘ÐMýMÈcÉ4Ž3Ø¥‚`úš5þ~´bëxGÎºå|7ò;€Ç†Î¸ãï]­É)whÅ&ÉT>¤·5¬Îš^Tæv¨$éy½TTÀïÆ£`º›¦~›y:bôÃê›?}u™õ¨uql‰¼¤Ý¯ÙòòL–ø•SAøU|G7ôÐ„ê—Rz;ršÔÿ‹t¶ŸÝM¢®øFU$Â‚Ës£XK’Ò­ô	ˆ ~ÙVÏtß€3Ê= œæÄ9îþ×™~9Z î©ýñ]ÇÔ(8…¦¼àf³„ÚÒ‘-”nLŠ&ü…ñîµŽ™´R¾”ÚV*ßÃf þbñ`†h?ïÄ—išÑ‘4Í¸‡0ÑX­eÂSLæHäÝ©‚Ú·¾C´µt|½¦Îžp˜šôG\oëÌ½†oà%Ú£÷!¶Á¼…>/¿ÕšHr½¿‘þ6’b÷©8P²rõbK’.+RTœvWÛ¸ËÉ¢#:JUÙ¥mÌÍk]‘Ç±ñåqÿ¥,ö=ë†È3ÖöiMB<÷ŸÞ•Að`b8îæ:ZÐzâé»Úáã%}7ÀqbPI¼QN¿©pRDâóç$I°¶‡HHmúÅ´„ÐZmÍGŠšW¯/CÙ ”3Òì9¯~±ö¦7ì1±r¬O¹EÑÖë¬/ª9èÔb§‚®ãSÈaD˜„´p~‰©ªèÓ&—ôÎRú;¹ åKF ¨}1lÙfcW›_ô½"1’Ì>à5PPçK‡ìtoÖWë²c™åúÂfAÊ_‘çAf¬Zø&ˆLøpM”†¦±lwbX†îÈ§p«ÜÞÐÞG·­’š™dâîÎ_ùê?—é1Õµ"Š¶ÄöZ0ÙõžpÒ¦’¶î’+à ±¤„ô`ø$¬E¸Áæóµeÿ3œéF+WúSíê´o}Ç†	\½`ÀùY%)¾ZmgíxKß@˜è&
ç^{e$àïz_`(Aœë¨«Éþoã*œ,&5©ˆ6q’g—©§aÏõ¢þj–4OžvSÆ6wó„ ïú_A74ãë`Ä!ð&_6ì5‚‰º’• fñú„0C+€[ßùz	’ÎïDp™„^d*?_aê ‡wRðÂ¬š³Ê¿É‡ÉLw¡:ÿ<u:¤GVf”Û7Âû˜¼u9;FÈêº¶hoüäF¶ŒËA®ÂP—‡BMCîÚÈf…3gÉ¸b2V‹FeüaÊÕ³š«ª`Žý@Š}ýÂß
·ƒB«A†È±²µw÷hRröý7øÄ¥fÏº›/º^PX»®OÐ¶¯(QäyÎl_P½Ë73ù5Žb*+j§JO&b¨ L³N*Uj•Ÿ–hüFbˆSZœºùHQ+Òîy™ F¹(ÐÈY‡Ü9Fÿ‚EÅÃ {©Ov—ä‚,™LGí­/ØùŸ·â].XÈD*¿KõO£¸cŸjXXlCÂíí™xåRøú*4A®
îºÌH´Ãh0b£‘l{í×èàAÃKZj:àº$OÎy´é¨E|@Ly¾Ør f9‰ÏV9ð±Å£°x×h›7òÍ±nÝ@‘ |kBÔ<‡ºÀIvt{7¤âÄ‘iwü°3‚ƒ`“ªÄï/‰º·e”b3æÅMúÄÛ…³Ô*HÄ:Kú™°ñB&íTTŽÇyLb ãUç…mg“O[.ð-¶òöpLW•;ô£}Ggó55~Ä™´ûŠMMå%kˆ™möc«T¸
žIÃõ#ùÈRp*Êpf9Ób"‹=`SªåGÀ?ì‹5ðaPmS¹ÌˆRsöúè;
v–€£Š
]^ss%zí¬)À‘s¹¡;,<å3 u|ÑæÐÃ*„=Ûêûl"ÙX X—vmÞÉ‘æ•~¯N`+©¹«@c^×·v³ar6
c#]…G¦©JYÏMõÞ=€¯¿_–&êrU³N©†ãD>$ÑtÜˆ¤bÑ×ÜØÛ¹½žj{ÀºÚ†Ïv"AsTÍ-sSg9×:à£¸ÿ’*5&Àqn3W,>“ÐYØ§Œö€RŠ5tI¥$^ìËBU	¸wÜ\ËôJ>‰ªÃ’òdOÊ"Oöfé[þÔä“··%eÃYÑØJ"íìÕ¶Óœ¾Ý	¥/!{çœªŸyIí¯äfê´
ÉLUû.JðÀ¹ôØ`‚Ž«N]±Ž²àm&FUÈÞ]õrK9¿î1DàWº­."¤zÓ—=ÍÑ Ï~'«!ÍYš@jh¦½ytÊÂ¤hÇh³øó¤/vý±°½…±ÅÜPþu’¦¡SC¥«œFJ£|ÝóX)¢ù*#ò«!\¬Od¹»^©Gk{—¢c§•UÚKŠÂ#&¾vÉ, #É$j=½ ÿv=Mßâæc×|P|VI+ùz‚\œ«N>V"à]Á^c…+¹’¿ßbÑÉÉhÝ(ZñDŽ¢®§¥üY¹»Ð» 8[/ðÜ.ÚºÀœGèrËû]6Ïwaè×5á*!ò½¤ïä½éM¶µÈüæÓ•+Yá0v@UDiY:b´ôNHcjN,,+[ÈûVHV=ÂÇð,í8L9Ê={År9|<¨ç0ñþ{ÏÑ³3ÖêzÞ+. F?`5J?,ÕÎUf/Š”d|¶f´AªgIb%kY“õ}b!"1ôrånT¥Ýä[èNé‘jÇ•4¾£Øè…@_„·‘ê;m4p¸1(¤%ê¦ÆÊ¹™–#o˜<quLÕ¬‘*a4¿8Ë•-¦ôR,S"4=q¾ê7Ã
*a¨ÒhxˆÀÛñµÁAž’	œÀßF‰Ãƒâ5øÔWÅT/Ÿì‹Âñ‰=*…„šÂ]!Ø­<ëõ¥,œITö:¿ôá½ü{r)øU°æ2š–+Y7šKÓº7òâù­QÕÍ:ècê³;¨gzG&ÙŸÅXã…þèŽ!`k©ÃJÓ*Æ"v½‹ö»à®¸»‹«¼M§Z-g¨";ŽJúoõ3Ò •Trc	[á·æ9ÀówjŸ¨lÊ 42jÅš"i7ŽÛ Ö¤¸ÑÚ:ZÉë0%ÕB?¢ìÈ‘
A”ƒbN÷ 7
Œo»I,´ óvÆxÀ#oj‘NxÂš&§Ð*ƒ¥ œ‚|Ý±Ñ »CQ¥KoA1Ñ;è}ËUÆ[è‹ðÑ;Bº(XŽí1q—#ç¶¦âVcÞˆg\kîQ PÖÛRDüðA7VSf²ŒU81ÓèÎ¸udJ¾*~.š±Ö—<{ôw³øþ¯ŽO&È0e—ø<‰dugYŠªeâ÷Ów‰oÁ$ï,qŒ%ëqAîÀÝ&(¯ùðõGT{ƒÅú—ì·cœ!^²&TLíJºl
A?qä–@Ž°±ƒôâ”8ðyûïè¦¡‹Œ1¡_ÜiNÙ·f+s’0À0øñÒvç^`ªÀ˜[è¾ëVì¡Uä¬{õ>"Ìjÿ
*_K)p§ƒÁ“1 å©Ñ¤ŒŠ‚Ði¾GiŸ3®~‘4Ñ¦Ë%¹#F–Ó-{5ý¼û?O]ž<WÑ²SÄ¾QÞU ”å_CÓ«¯öø(g²ï~Z0ëf\ì§ÆbÇeoópŽü£yž3ekrÓæÚ“Ç­U[äoËs`>C û„Õ5uïõÖ¤°pZÅ_BÎgÇäéí0)fæ7‰4´.AšC¤É³]¸„8x—ýsHšªpVü×´?dTÜwlª®Ü©ž÷¬fÚ«LÀ)©U+¤m{ÃÜÈaÚ_*¡ÒÛ—k(ÊhÔ&ýáË9ª\€O£U×I„äñ©º](#†#ÜZí>r?€Ü¾$¦3x}Á ¦~hå-†Aëû$a°Ü¼W³ý|Rä°Õm•üo›e@þ€„¦Áuømôš«Ž~¢<—6	EÆE6â&ðrâ¡©Êl…êÃL›xyùyõŸ-ëœˆï—Ê
0}k7WcÉY±ºsÃö¼Q«L2Iœ¡¹É›@  púšÄ=:Æè-ñÇwßyÌ´í~ÐÌéQ6t£ØRƒbï˜uÒ<ÈÌ	˜©,µáƒê@…G2ª§õˆr×¤ý†ÓÒÏ†)‘ô™n†Œyá¯„?’ÝB˜yUßÚþ‡(àYg1¥ŸY{7«ŽÅ­ìVìé27ÜŸ‹zHÙ·&#ÔZî©3h?!ÄÁî«„ÉøŒ¼?*É(Ömü{Ñ»]×šb .Ÿ[wxú”ý³êÌýdš¼ó'D¶!Ù€Ÿ‰ÏZº®N¼Âñ°õøqsÐ‡¿QÒ£.¢³Ôb@¯jf7õfæ!ì_å'fMñ9iDâÏÆ+]?Kí¾ßžAªÂÍC;3X}ÈPê‹®FÆE¥1Q0RÖ ÇPò³}[°Ä²b¯BO¸“¦á¿ºRZòUGâ¶ØˆA[„Ýn¡eÞQƒB+¢Ü5™é7ò³NSÄÌ%dO›¦ÂõHÐ*¡ˆ'Ç¡A ,Ö0ð†çÕjWå‡ÉüÀO…¹h=¡yG-v¤°Ž¨XŠcüh_v0‹Ñc–§¢dôÑÓ¿pŽzh›•åëœ„HÌ‹nòÚ6³ðPá{¡àŒöì¬pyMæ•¸ ßIH(s…ï«&b¹LKJÑÀ"Ù¿Ýâ‹„Ø[¼uô‰	õGwÍ¼L1¢þ0*9á¹|ßOÙ¬ ð{Ð›b¯{w fšYbíJºQŠÓcÚÚ0§)2¸sþ¶¯+ÎŽo¹ª¤áª4°Ÿ¾8?îzÇšâÞÊh.ºòÁ·à=¥­m$‹8˜_X2<ê­¸0‹"í‰Ó”59•f¤+ 4Içë®H¤ªè{ß46¿Ž‰ZÞ”e§íþõç‰Ð={±íûqEa›®Ø(—ÎøÌ8œ¿ÈFB—•©¹h¸¸†Dn;	‚7[œÎ/	‰|ûZú„ªâLèRA³üQ†ã¥–¨ÿÏwº
ÐßOzÂÝ0âS8‘y’§Ô€N9EQ®!\õ(XšÛ:d¡øÙ>ž/Í]•‡dæ ß»€©]Ÿöq"ÕÏB¶E_ó©Ò6A.¹A³†ú‡ýöò;Í6Ðo²saÈ«ƒô¬Óõà&›‘&¥\iº
§È·š¥ˆ±B‘‰ZS+õNå¤Ìú­:éÜœÿ×æ†')28xzà¾ª)B¥Å_ÊráC©RÃõ–N9ˆzéIªmÚ,xHÞ×­æØ„0ÐQ=ëså¶Çºîæ{ò”Š¹åçJ®ËŽ%Ö1ù¡:<û;‘sAý>@+“¬f÷Á¯„¼Ž¼ÝÌñÄ±YÚ‰¬ùEÙ#¶hÀ¢-:bí;1+H"CÍÿâr«Iÿ•î»65ªºGªábÇÂŠÚBÿÖñ,ÞfeWÑ-‰8}É‡óÒ¬°F™·£´iDIuÎ­Þ½I^ÞÑ£+\›Ë­h¨ÇŒy.¡L?9\¶Ç×èJ<¯›vÛ’ l¥Ž—ÎXbDšÏŒÖ5©]šM%º2•ÊOæ8¨R.Nî×à–ó”-ê—ÐV{¼YºW/ñå‘a%£9Ûß¹è³ç†qŽÍ²Ê¹ðÓ¶Ê„ž•/©m¯I´eÉžtTbMÞß´ Ã˜s`hBÙûà†`Éíñ3øÕÈ5ÈY!áƒ&IáL^W^ó`³VYêC;è>õ~EÄ€ÍKA˜ÝÊøì/‘‚T|G0KjcËAîfr¥¡ûO4óž%_h|a˜D¥%6“™4vew_¿Ÿjö­þaÑÏ	w`?Yu9åÂ¹Û»+¢°lHxÉ]«öâý;]Ju]Ý_¯8¢}eó>÷eïÌþM]e`teÒQãÖ•ecj`$}	. 7Þ+¨‹q¶f©Ÿç³‹1¼Ø dIº0¿Äöâai.´«™^çgâ¦Íf‚A÷?Pºð×ÀƒÉÈà‡73¾ÇƒëbÕÍ3Eò,×Ú–ÔNèT»æì=[›iüUBÕMfØ›MŽ³‡Z–ÝÁ€t–ëT~i6}ä‚Ç)÷ŸCùÝ‘|ÃH–¶³Ž­¿Xë¶¨"“Õ£ü6Ü¡®‚Åèï‚£‹ÜÌƒt_a*òþn&H±ì™©«ïeïÔöÒr'lB•‘è<‘úixø:óOá+ùõ&ÉÆ¤t57BÐcž	É*Âõ¹49,oæg‹r!Ü\î"]WòQCëñµ»TÿéM‹€×v2
ö©í½q/Š'½pí‡N^5qCMúaÊ¶ÞÓ7jÃmÇ5@y’+â?×ÃX5‘ÝÆØÍˆLåYÖXBãÈqzP˜f‚ßØ™ÃE™ïäÀhI=Wk
ÎâksTt^é(F‚W®BÐðYž«°ããRµR¹úç4©Ú¬’hžóíóÔ 7s‰’ã_ú¥ˆ±‰{*ÊTZsÁ}A8“á„B—í$b BRY·^È\£PåöØN¨¬Þ¥­ØY?Û¨$¨ r7¦ÒøÝcØÈ¢%éÃ(t—aXPÙ&uØâwÂ_CÇ×VF|g>/º¸wÎÅ ÊOhãdÎLh b‰símcÒíIÏ=>§1EŸí,•Ã,2ÄLóµ•¾~çê…€(ø; çîŠ}¦èöïb¨ç²@˜ñ+%8j=sxá…OÚíI8‡Å®p–®îÔÎ‹b®øö|ÖË2D, _>>Á'»û  i”d°ü¡±Åe§¶>Ð?Á.'q¿2£Ä¾ÀYÁåýŒÃÓb¡ãLQ¹éXÓ´é¯ ÞÐ]Ÿª
.’©î`o?Ò+Zõ³Åä^™í€âÒ Ç~ÍÛÙ×ëü
äIÐŽjoíi†Ðo‰ÉëÌ$#ˆÄE´™£,nÙ¡xØKÄc<ãÚ0qpj]M†ý‡¬£\ßdÏØEþ’ø·NàÇ^šRbÚkûj&|;–¹ÛGy®°7€N.¦G®äÚ6%nð‘Ün€ˆÙdìþT¡àä·ü[¼g­âÍÖÄG…»Ç¥‡S—m. œš$ÛÀDnRªDÑ…ÁäHÈ«¦dÀ¢dLWÙÑ.Äš£NP¤PëzMï^šu'þñpÎ8+éÀéh’7¸’û¿8§†Ë4x®<-­1~êB„¨ýk»H=6Õì§…´ŠôW!ÏÔÆ@rô §ÓÎ)9ŸîC¼EFðýÒDBÆ#•1ÓÁ4¥Qí{({Í‹¡®tüÿ3À[f‚˜§BË2Åç™º¬ØŸ›ó€;Z3®
‘dÁ˜Ñ¬pO»o|\WìR‰é{*e™Î2¿x /Ï`¨È©v†Xn`	«±ìü@ps«àÃBoXšÐÄuëzcäÏÈjòa‹ÁW«óÆ¤½E<Â¤?4’D•½ÿhƒê,­2…uœki*k6¼^ ðòe\ÏÇVþ*MBôª_ 2ißr~Ž•þ^¸mŽÄY¶æa v7ôíPVRÓZ ùQe¼´ê_—ßð‡çñÇÖó:Ê¢º:8ÇI}LH—˜©¾3Ÿr¶ÉWØ´$tn—Îg¢…Š$)
z.Üß[^S«ÿ¥¯%¸1Ì—¤tæÚÒ,È° '[Yªôøƒl·Ž¥{Ê‹=d/´ó÷åæ¦6¨ße§FØ>V

N÷jÜ\Dl$"rv–Võ,+Þy—\è€Æ`Ù‘~ÊkÈµÉf@g™?0·“äí"ç\†hˆimËÙ¢òNz h"\õñ›.øZàÀ´¾Ç]˜ÀçÔ$¯aìîã¿‰òÚúïÊ>Úh Á{ ª>“ù¨˜M®ª[ƒ ß >wZÙïHefõô˜q¥4ê#îƒ¶®uV±ú†¤8©‘¼Ž!êÑ÷œÙõ€¬*cÎ½É®ã­–‰Y(|´‰&öZbm8ÑZC¬¹Ü£8Žéó² ýÅZêê8EÜ	e%Ü4{èšQì%“ò92ø¸oCm¦¤}Ñ£ß~9Xí%ÜKî‡MÖgnRg?NÜ:¯½tó8Qä)SI\âI6Ž]=t8V¸	µÓI…@ßN,‰GŠ)Ž=DÑ`›ñõî^hãZk²Î¹=‹[ãÈ;l@Ó¥w•Ã´{=6@~è’O²;ð¹5Qñco©D+‘"IÔv¬ËÜÂ³’#a~çaaxÁL™ zÄUn”éRîAoÅºÞ³ì‹Q«>¸ÛŠÉ†*éÒW³â[¬ÁSŸrÉ¶‡e„Wœ'´>P¯¸n;ÆÊ)N¥—ifÉA¹ó•›_°ì“wF.ËûhE‡ðúÿ6DPÚs¬Oï>zƒ "è‘ì0ÑX°Û`½õ©2­£Ê)J§±wfUÑ‚¡Ý3ýæÕBENI/cåNHlçB#J_ }]ƒÅãò˜lßyˆ‘5£Í™µHÈµ<õ 
ïA›q±ïé8ú0Ý÷ˆãö/…r¦6qK9I©}Ú`é#½;ýîÁZ·/­ÞðÎttg‰|íæ„öÀw¡‹¿kók°JÍÄFÀbã=±,.¾wn<bm8À¹Y,N™_-nÇIšËJ’qý3êþÌp–áû`ßÈÿom…YÏ!­KÑû„ WÑëÌÌ¯ÂŒ¡>YHI‡ee‰ö*)=Ñþ†Žqá‹Ê®Èšûøï…QÝÆÁïNˆ4ulù¦)5˜94Mº¥aÐÝo·lá	!§µ'¨¡1œ^çÃ¼ÄuU§C,›¯OÃ‡
ÐE@±âØŒHø…Š^ïu—xF%¯¼ÃY3D®~&I'hõAÁ!¥E0ÊIFò‘?E”[­jáO²Á¢T÷¶¥½òc07\y[>¶õæ±¡\¾Lû^7)KQ¹žŠƒ™J|TGhÚÓ´ðS¹Š[}…Çg0ŽÝsµå–¶`72eìÍSò£iÍxèÈh‹ž“ÜÚ:‚QAC£3>*®ôõù¢£[‘o²=ðßÈ
»csÓ0‚†–ø\ðÎþÿ…Dõ‚Û öœÿUÊ±0ˆ{eûM¾ŒNg Ž&¹&kèo~a6}—hã‚Y$ˆ¬ª“)[G	¨åÍìñët³µž†4ò0RÊþÿ$ÔÈGT‚{&Ã×xœŠ…Ê(6–qYþ,² •'Ó‘“ËgÃ$£Y½ºœ¼Ê­]æ"jÓçœ»™4
®×üŸc^Í´Ô–IZ=ð"¼œ[mß”®w5À;ŽùÅM.Ý-<Þ$Õ¡@2R¿>æ¹µãƒÑ;:[-×®¦GF¾PþãæÒb‹DEIÑâ=z¾ƒÄàf[»ŒL16Í®ÿiä ±Ò»-¼RF¤m¹c01Óö›¯ùcÚ¢¨õI—{©(†øæÖO^2ÑÝñ.™ˆ	R@Ñrm«Dx;å7¬çÄ ¶©¬‰;sDšYsØÍ{W+~X×Y½êµb,.üÝâå@0‚sÂdßˆnÏ~âÐ¾Ø@†FAj¨º]…Ÿó-üÛA¬DË¹‚·üò\"M/×xŒsBÿT@àä£ïHž²ó>×Î-h
ÃX™“Â?nïý* ³
-ÓB¯‹ô~*Úâô3îÎ³>Xlø‘0pÈ´67YšjÂìŸ$16…™Jaå~”r¶¢”AÐ£Ê_}ÊeE¡†r›¶Òe‰ÚzrµÓ¾‚<ŒEôGSO1"n<ˆMw@¹ÿrvOXûG"rÐðx‰lg­$&¥b›üô¥Øè´ãT‡ïÃa¤Ÿ·ÅÔÍãòWô3À!Ðˆ³IaêÅyCáˆÌ#K†4û\3Š6\
V°›à¥íÝØ>Cå³ó×`O‘Äß|KÀ‘Û<BÄQÁ©ãìRüRÝ¡¹[=Å“‡†qh”è°è&ì%Ó\ÜíI¬§Æ —ÌmË³¼	BÞäaŠOrJÀÐ…¬zµa„hÊ­tÙnÐÅšõ.‘DÕtŽšuÊ7=ÈÁ®‘îB«/ìæz¼†ÔT#J+¯|	úòÄ(ö¿{]i‡fW>¬Èñ,óžéú5ËÀæ5ñi8þÎzËÏƒR¤
|ïjU°r0¸4Þ\²ðB…É}-ÝªÄn WiÜfiw¡aé“Î$/]`¯Ðð²råz²qp¹Lƒ¸^%ð<6¬÷C-<%›ðxóÕ'!¤t@¹Y/Bº:DÈ}÷ü+éÃ‘2Ú}·qTE)3‚1cß±\H•°ÅEã”íV:ålÃ©R1¯í#ë	š @…!ðQE•WªKf›Lýõ²«=­KC·“Üä•= €òÑ6;cd{ã94ç’žC\nRêÂdÙ™¿LUÅ5W0 Ý³e+›Ë#ã>m`ÒÞ|}iŒ"A|éþ	E¦»æOl¤±ªâLÀ?9·Í>}£`@JtRòMìsok%HC*2ÁØ:sV¢NwÞ¢À÷HyïËÞD¹^Ží–‰ÜE×)…­PxUáZÂ¿^ö·ÈÈ„Tf©¨mý´	^‡1ìµ5Pø§û©[0ï’âÞl«°\þhé˜Û‘…šœ¿üeaÅÒ{Î¥ÿò¡Hõ©~²ì.]‘¤t¼•Æ„çnøî_ªºªÜ’HYJ¡oþì‘Jëù¢¾	Š—×kïä]ßYú[=åÑ°åJ¦IÙÕú
4HÇ
R¾„A‚BK1%žŸôÄûÿÒ“!ÝPy—êÓð¯šùcÔÞþÞÝŒˆ ù°:j¤»vŸÿ¹fâÞêK„#=^NØíX|è
ü–Q“ûOuKŽYmGIç»Ò±ÀLU§Á7
†è¿	_26±{XÏû$[î"¹á>ió±´V:JI×ÝôùêÑ(¥©&}pßÄðžV{å‡'B=Ž!V­Íˆ5gü†¯Ñ†UÚNEåÇCý#õ˜rÞå±,í‚¸Qì½ÒJ¦¨‡-o9õ‘p=[«`;ü`´à(÷têoWÂÿÊq4Ôà3L??Adþ¼4)Ù2WŽ8ŠØ½ŽîÃ§$<AkY¶òHRóG4Ï2\Ê-’Ìò¤[s(Ã\ÌÞGzÑt*G¬Ú ±TÆQÄYä¾J@ÐÆÙ—î¸X>UÐ?òüí&Y¡7zY\y¨J*4½ëÝ“²>Fî´ëŒøüýzÿí @‹Ö‰Ëæ¿Üâ8á±g“µ%_g¤*ŸÿôV¯í±]ÿ£cö†1·_mÃ²©pÏÍ¥áy IY…b´KÀò
­ÝÍL+\„EÌ‰‡ÒÅŒîš\ G{Å(Â•ñØG¾×þÊž§é¢¢vyS~ÈÔ—@‡h|Ä‡ögígg™ÀJôñ9Àžó»	*tHëë+áS‡žrBÎAy="5²ñ!+øðäƒ+Í€Ë™‹ÐtièU?—Nò_˜»0>`½YhÔ­¶ƒkPOô
âe–ƒl#°Iè"<­÷ß@UÍæ©âš$ûØAü™7«ÑˆTMOþMI¬ÀØ{+Ùà¿TÅ+þZGy7Ì8ÝùoOá1_lÔ+	]4\5œí¬Ë~\u†C[K÷35ôµÿrˆ°u:œÜ,:6·åÛˆI&ßh{…žÏ´ÊÎX´ˆòÌÈ¤ñOà~óP† D°m°ŒXÀ|Ž^.À_çY¸ç¾UlQŸ2ŽXÊí|Ðz€’éB¹§‘ýG»;Í¬5Áæuª&a6ÌÐíh|e/³óêÍrå·z½æ=¿Ê®Ž¸C‡á&cBQ‡Mw:øí<é¥'›<R€Ãºþ°²¢—[}¿®lP5t*«‚08µöˆbòÅSwL”„Wö¤vþZßË§žV\½Uö™x¯‚Àn_;ã]h_xë©³ Ç´Â£çöéSù”ïQÐ­£Œ–Ñ\U%Ùœ®bY±3qhù³ª«bCög–žØ¦‚¼¢‘Hâ»j* hawÏ­ŸÈdê’¬[sºùŠ:^É=pRj§6¹ z 0÷Åywz[I…¢Ò¬÷šÅmÇÖ"`¯(®ÐÏëª(Î‹øÉ‹í…r¦¿•¨dOwú³ß‹[ÁÃ‹ Á®¿µ—ÕQœÞÝw¬û£öšwˆy®Œ	þÒnD•f¹¬°‚2BC^:ªXE»)ŠÔp8,áX0w|V¤¯5•‡LvJVV]™²Am:WpÑB:Îþ²Õ>¯ÑS†`œ‘ kÐ>¡‚Ø2îc?1?6bPðÈ¶°2DÜØÝ¸m”²ÌôNTg9ìø~Ú49˜´³÷ðÎx2e°|½úVå©:ÆÁ\~hÀì¶	‡ê4\PKðøzžŠPY×ÕÔ]aiX9b|i-f/j3:6ê;X0"Ñ-ªÕ8ªyh¾|ÀþvhÄk³ß+¦P³´ÞÍ’ê‚¼‹Ë=ó2š¥ÇœÉÙp¼M$[*
øÖ’Sg©Ç¿"nˆø{'Øi÷vø8¢»ûR±—8 ”Û{#F”§l°nw"_äKÙ=-!T Œß¡¸ýz&»à7hQwmm=–ëjm1ìc…
V9g?œÖ
¶ƒD»Üˆ´KJìîÇ_
?#º¯fn-álbn
Ã­Eèrå!VH8Sú‹µøªîÍ}oÎËÎ=Åc¿™Áê½ÕÖ!næ‡Ušò3|ÔJ"wûüôf©}‹F‡GaÔ«—)½ÕïQRIhîïº®_Âx—-ô·œpµ0}háâf'ÖÅº°ýóéa”ò¥Ô†Ù>“	Å?så5¶N¥;Ñ}øç• N&
OŒ±ÓApçMÍÌ’‡îF¡Ø`ñêà0lBç8B']†ì7ìNÔà°ÔæÖiüœC{fJœwGLÉ¨Ë¾R¼|T\“-wç‰ý·ÛÑ½‡~Àgv–€jÂÔ-s`ýÕ1Ó•œƒJöƒk´ª5Ä—Hæ)àeæ{yVøÒ5ÀÝø¼j2dò‘ÔGVí4c6<	–ÀõSg–'¸v&ž®œ‘¹(Š70þW¼ãÍêrCJíA´».65»ì•¾¡ÞRÛêYîj fÝ>¤P?}õëÝ[iø ´R¨eFÁ! V¸³…¢ñyÿ^i QâBÚ£­Ûí:÷Â@6<¥‡³pÐP<ÿQ|0êßßyÝ#ÿþƒ9Ê†+†ÝË§ÐÈoÞS€ùìDQ…nÇ¶ÿ¦¬zè‹Õ’cç“vµ÷ŽD&E¤´ÝG¸¾“ÆèD§ëjz.›nikÝÞŸY^(=‘µ:Šè@™””ßÌøŸŸn†ÒùÀæ†MjWÅ÷Ò:¶ÀÍueð¢µ	–5ó¬Ró¨T|úq
#(ƒÊz ~°Áûc#žÄ^æ&!'s]”•Ì<`[ñáÖ>]§ˆÀW878ëït˜6Ä0†3œ‹Ý¯ºæý¯]á´¿*‹Ã‹jš<¬àQ¶•syS‚sÑ_ºèWá™Øûe@V|vy<šr’0'$ÍÐ]ÂZÞ2·?*Çt$ç|ƒäïŸ6#îT	/è•Ô"ÓpÄ"EÊf*ÍÚí n›ˆÏm)qN’)kndè‹0±)ì÷Õ†ß~‡çÌ‘Ï,`óæ6È'æ¸O½!°Ðµ„ª4\SáV‰°C¹‡ CöCTÄÍfS¹5Åa/	È¡ªìàÂòuØÑóÕt&’ÊÈÕÉ¡õì[‹rð'ë$ÐÆ¾âMj†dN¾N¿*|õ
õ™ô(P_§¹ô¹<ïŠêeNKAÇíúý–Ñt±0ùÊ¿©8Ñyž_½
ÇT}V´A¨vë=’D“IÈgÑýRÐÍ;FÖÚ¹\¹Œ“óy½äùrB“‘‘±šËóð›¬*i~©Áp†öÐUþä)xŠÂ_ÊÈ•|×5!B-ÛÐÞûÌÞãñÙut=Ø%§ÛNÿ1õY¶ÅrA!ZÚ•ýÒ«T®^ÍX'+j{bÎ(Ö2@ØƒMÂ_•›PÑÞ "=@:‘?ªüór”÷œ*G§e_dþå/‰+óYè–§ŒTÆª‘(ºúTç»û9‘‰¹¦Vunv
XÄ¢ {ÝÎb=ZÝ70àrªÛõ{S_SÉØï÷æ|Ãƒ2JÒaZØhŽNéû¦ „Ü{†óÆsÙsÁ­ÍO<	`TÓÑäŽqýbyiîÌÂ-¤vâ7¨æ·Þ}ó\ø{˜µlÇ„ãYU}ê5—tx4¸htÀ×ód…S º0ŸgÁ`5Ò“I	º>u‡âE€òçÔ'Ü—_dù~Úƒ~Pýªú¸ý‘¡tsçÜËƒÈ=ÁFhµ¶ 4ÁY7–ø_è…M!ègLD…ëgÀhõ°æjáÕi@¸:³‡fgÿ{0õ=3ë€®zá%Q¨ksô…¦eÞ=7©ÀW °Â«tä93¾kü.Ü‰:åU"Eÿþ­êÿ8Öæ˜*T—5;QæpîÒG2à¤#Æ›)ß“ä»ïé7±&º•Û–)á@ï˜\ÒÿO§PÜWüÊÚyPš†L4#ñêp3`²!ê)I,onMS¹VÈ$Šx<„‘NUÉ³Ãi„U¾¥»¶öThxí¹ÍÄu‹‹¥7ÔÜ¿û™÷!µî"ý–g\.ÔÂvùJý®¿hè!%#\û.2ð_6…ÎuV*xôIº‹ô+Î3êœ»©ÚiùãwfGn`ñ#w‚µ=ý³+ûùœA®!Ê±RŒD€2Ú0åjÄr‡»=ø„æÌ¶Þý2:U|áÂi™¸ÍE ñ0	.œ:T8 Ûg;v?A,q!Z~ñk’ÕÚýl^ÃfÂ(Ã…‚@åU¾{æ9¡Kâ³1Ôd¹,íÒ%÷4šZJˆÁšW‚§È¯}è!ÌÊDâÑ_v”? Ãì %â,îØ²tŒ=ÂzÖÏq[ksRÂzy°ö•þ-—ÅÏ_^`o¦ZŽo,²Æ½DÌ¹(Ar=ù5+Ö’õ©l‘|_)pgÇïdv1¡Èq©â±¼¹ò´Çæ»ÙÂSÃ-Ò-¬¨Öx†õÕ‹
–š
ÞX¼÷ŽÛÖBÇ8•l’ØgïC¾á:Èõ±£GsfN4¼ýï’I	a“úFrBö…pFïÐË!ôK%ô»JœVñ„w¤Ÿ~_#5*Sé
y_OJ’sV_*<.$CŸtš[Žw•ìÞ0€´Çfã¹±•¬üü–n†ŸÓûfÓ:Ùèh6çÎkWv>³UÆaøíÇø0‰±Ç²!ÙÄ¹t{I{<ŠëÜMnóìJ¹»øÆÊÉ@NønœåU¯@]fF-öÂÿOŒ!À_¤Yä –Ú%è
.Q,‚81=ž¬Ê¸àu%˜¬õd]Éo?é¸ÆŽÖñ)%qèó}ŠWE=¹©
³(˜cÜz´Ï¦"³Ô\¾ÑÚ|?{¨ Ýˆ½¯ð3VHGÙF:ë¨³KfÎ‹ceBnìÃÊ,W€’§m	ag_úäžë¡Ð —Ð}Ð]æ‚Eå Á¿û7øÔ%„žù¬Î^¢5¶±	}‹—ƒªŠŸrÚo¶ÓpS¹½»â Oœ_)tÕX–²Rž/× s¿ª‘	÷lŠ'·¸Jæ¶û³UÆ!°  ŽÂH¸žN˜
õG!äy•’Ì:£´[r RŒlÀ†CÂ÷\ËòW‘…x_#¯Ñãå¢bzIžÓ'·î[a˜%xÍÎTö$´/Ôý5ÌæÁS®]¡†JÌ8øb€Vžà¯‹7zã;†¼híæù¹´“~lCçD-¼û,˜üð¸G5ýBÜÎ0B…Ó3dâun‡ˆóÒÒ>,ß7JÅ–ƒ¨‹:Sµ‡ñëkQ¤ˆérÙå¾7 ¤Ï~’T§õî§{Iý™|žž‡Ì§ É@åpçp‚Çò¥¦
8g4Eåµ*j4\jwâ±ßéå“QýJP2™_ïÿd„NÒã.žä’ü®<s^æ›²©»Â‚jfìFýé5_rR\ ñŽTQ-ãÕÉÓ¾G¬ËœÖ
°—¢Kýîª7	Z‚¶n„…@´ðx}Â“10‰iUÿöúuélª°·ÆÚ?Aˆ%:Uacè³ÿA¢eˆhÉRœºÝ÷°¿/Ø‚™ƒÓ©¸nîõüDB¸(‹]b>Ü*›45 Úqã£]jëSŽ¼¤GñL`
o˜(U5èG`QîX´OÄ®JýÿnB|Ìc*Òê­dbs¯Èù†à›ùþOÖSkyû|oTe;6”Âë¹YuiÒÁPQLIŽKXûUä¦{t?}ÙOåà$þï7JßHóªGŒÙ™‹ÅƒþÝ“[˜ø¹W( ±ÒSXŒ .SñeÊØÒ"“á¨5¯Ï“‡)ÌÝŠ

©Ï«?/b„—VÈ¹iú0²d£Ö†Ü¢¡ A/=ßÙÜPÄ§‰DG†œ">²÷ÆÂ$µ]´Ìäºï•åcºOí7/J ‹ÜMà .:žâ&”ìxr½t»GõD./ÀÐ+ßöŸÛ ò¶D8Ñ8£>iw‹`qšM`xæ¡F?éHxêžìÈk°¬†c2;D	´#JÅ*Aq8‰Pd»÷Úqå…ÃK–;9zàzžwFS#›R0–£ícTeËUË9e]Nu&êRPt="ÞŸ—Ý08ú_ò‚ÛÑ· ¬l_“~§]ä¥A4t°zÀr‰¸î7`)lËóJžå'Ï„£oûµÚ¡¤ÔÐ
˜Ú±0Ñ\Ü;G7²†f¼ô?ÕiIÖ*„†ÏBEõe±Rˆp¼Õ™ãÈ¶g!HGlV“zv±ÈW;@IXÙ´µÿÂÜ¹ño^Ÿ×m)%î² L!ÙœÎ±=³=Äßs;é‰=a0Ü™“³|z~]I,.{‡DóàËrp÷³=aMëÇ¦XRý“ˆ×Ô–±ß±” 6®t²„w„ÜÒfÄP@Dk«n–¸ùìØ7¹ÎBv¥z‰Gk!¶¯"C‡dF¶ÈÂ÷{õånä¤NAÇÐÄÜ6(d‹K9Y¾;ÆEDë;÷X±¥Æb[ÝÂ*Rì‡­8 ½™[f`º%NÍ^y‹22¬¶BTnÃ’2å/ýnÏØX§è(@z2%<øO´*ðæâg:Ù%X¬º®óJOŒ¼™ú4=":nØÿÎƒF" úT8£î¼ŒÀŒ·‰#ä,\Iß—Ø…ÃÃ©ÊÔüÓYâ„ÑÎ25WìUÙxÝŠê|îâÕÑ9(8Ð÷yxÔ+>>Æk•Oç‰˜š~¾¼Ù™k‹¬Ú†úƒ–\§ÎSÖÐØ>ô|J-„Úšçå–ü’œÙÂ
B,k0aYV>G ‚³ì„›£[±ªK‡ì°u›FßÄ¯‹’Óu­mõÀJaº3L%“@R¹÷€û>Þç‘L’×‚ò¡«QÚñ^Ã7§ÍÑ+¨Rù4­fR^D?«Úï 4gÛð÷÷b•‹w€’²ó0Åû–ù,úuURå?2ëŠ€a[Ò>
ZÇ<êSä ë@œ;ø+0¿‹/=ì\Ûûº›&LÑ,5eB&ˆá(ÆÓõF®© ìû¿|»Pp/ðŸò¦%µá¯	ÝhÆÇÂW;cu›J –Ô’ üt+²É¾Æ˜ÑdrŒØBë ´¶?ÀÜuÒÆ–íÎ†>KRÁÃÏÍPxH¦IÕ‹<Àˆ	Ü ÕÒ†Q³¸Ô4^é€Û{ŸšŒ’wæ‰l:n:ˆ-ùžÚ¶ÃÅ]JSÚž,Â;Œ¾O¢rgê—ÈgšQ„Ãž}ñb_þDôÁq­RXWÞŒÑ
Úûæ5Ÿz§rJ?F±G÷ÄíÅ¾ëYÚ‹a#ãX¸X=Ž`=ŽFUxüuHß[ß}ÜN%1ªû$,Ý¶^L•™ÐQ&­Þ‡¹kŸ…]=bwÁ™ù’ ¡»‚gw0âŒ?6¯Ï3DÎ7.n.[mŒ¡‚QÙ»%¤¥ùûcÙ‘ò$ø]‡›4ôïéÁ®¾—} ¨š×_¿¹©ˆÇFI¿b3-Ûîöl5:Ó¹ãWÎšmžæ/¹ê:R4ž¾ïV+EØõœTÊ­L’œV¹ ·æÙ„ìôPÑC>~ù›i?·åõ{
òÞcÿÁë—¦ˆG}aqFoø¨€z)!”)PP²·BýnÂy5'RÕd5ÌH.÷óµunñ-õíÎ“ÂntD^Cœ|àZÕ‹³c„G¦tþÝ”%ï_ßÕ(.PVe·Žý®!SŒqr–-­ŒƒÉ÷IÛÐ_ù/Š¯ømç#ÒŽìnco—n:ØÄÄ,Á“¯	™èFFÙ(Îg5žJbŠé‹ÛÓ1®haS‡ðêGÒ&²£áü´åãóT´Œç:Yô¶#2Åë-™Nz--ê®,gaÒ:ÏÄeŸä¾ ü®1‘ç{ÒßCîÜÛÞ¯·jÐGã!>Ò-IY‹Aò¦ñ˜M“ª€Ð‚i °"e˜ôLEa&>íÌ¼ñ¾œ€tß×h©„ã¢ÜÜQ†JI¾6AAVFÑfyÙ=Ýr4é–­³‘§}Tüª¨}Î±­`õMÌ"Ã¥ó»–YªÀ2pøž¤}ÃÈ$§öÛ¶SC‡sÎ·‰þHQLÓ*€WVÇ;ÆZÝk›¼¬ûJ®r*TL£ø)™1‡½ýI-G³öq=ë"×´i3[q–ïIsÉØS˜b0"ÓV¢ÆÆ.Keó_ÃWÆ6…cVæ'‘ã»æçßFpp¡‚Éƒ¸¥¨^S´àÇ»Þˆda”kêGA%E¼ê¼±Á53ëš©`ýx:2>Ç·¯¶g}°Mx¢®ùÍÙ[™?×pƒ.®©ÂñBwó…Ž$ŒõÏØ,º¤²³VØj¨úkðÕ_4ž)9¬B¸¨¨û‡[,‚~öc:"ÚÃG<5‚érd!`Yø¡ë»DÎ”UÎ‰¡Ø ]h$l¾ýÌ@M8ç;kO®AÏ¨Ò´ÑëR3³·ôÞ]¦,Ðã;XäRéªr@±<œ§kBoêeÜ­ˆÞ[Æ~uÁ}Ù‡h«Õ˜hÊk>
Î+lîôÖCs=N¹L0ïÉbS¦`ƒz€‹QÇaö%h²‡'Ùâº:fpUµmQëßôX¹™"y¿"ªq'ŠšÅÕ\¹þ°ïcÆ¸â•”Åñ–4ŸMÇ”jèˆGK¬ßÀÐ¥&Àw¦Ýw 	q‡â&Š–™#<‹¤p«~ŽÒ'R·2ó­ùáD“ESG„'ùvlíúÉÖê Ôú¹.l«'(:¸N[¨ã‹¿é:ý.èCAÂÙ.>5TÎ¹Ó	"
Â©ŒŠm¡3Q#‚îv!ŸÔÙ‹(£(uÊ/K“³ûÞ™Ãí:½+]Þ»å[¯=×Ùøl6ÚŸmUZ™¸†îç-]¥K–5ŒÛÍÂ"M×©‘YvÁ¶q	Ò%hÔ6‘ÇX$n¤?xŒqØ³/xëæÌ„Ç¢yœF¤æ\rÝë õî5ovçÄL©MÕPhÈw,D\’]ýÀ…Ù¾¬’i‘Ÿ9“twòw>­ U|oæ{½'²ƒž¼¡RÜ*:S.äÕÿ=³sNŽŸRÑ<k>{>‰'ÙWÈ!<†Ózš
[ŸýŠ&›½´;`|äK‰öL(æR³Ô…z:Úoþ{ÈYÝ`^K,Õ«ñDrØÔÎ{â­i¾"NÀ[…Êto*§é»Jºü2¶¨½w÷¥}R#œïè›Ïk H»SRÕ?Ð}&Æ°+~3t	
lAkÃXr,­&¥2›%Þ¢g<d÷¿‘qF};|†ek¶¾tÃ—@z—•†âŒÇYvH½`3Øi5Ô«Þe7î\w'‰ªbÆÖî
šc4ˆlYƒÉvº°ýŒÓm´bzÑ€ÙËWáŠÇ)6Wða.¸…¨•ºxh¶¸Iû¥:aÔ	þé*‡ð˜Å¹úLànÊIÌ?©ñ3÷(‡‹­9a1	7Ë›UX¢/yˆ`{xÝ²:!W…ã\§c9Ð®Ip,|²H™ w|³ ŸâN|%"†üF< 7¬®/D5ºÍ^pµM©ÆôB4·?|Ú/ÍR8…¦ˆ×ìƒó„š8Î;é&°=O.2õÊ~Ô’T•Ú•r5Yà£Ð¼7ËÉL§:ŒNsã=þ9yö1o½¬ØÎñª	ŒCëË”z&JOŒ£PÈ\ëøygêÊ”’”'[ƒI}Ï\g•v.â4Of :F†lK°½Š‹g'iK+Ã ,'úC‹áÚ¾™­	Vã¼þùP´ô @V& —¾¬’BÊÔöØ5~õCÕY%y…gTYoÂÚ4!:‹ˆ©í¥Q³=ˆî,ý` |ðžQ¥f±u)Ô§}ÇUŸ;³H™sªû¡ý!{YŸ»¸x ðÆ¶+ƒe 5üIçŽþ—RÍ×Í):eCF‘;’¼ãYbQª=LÅ¡î6$žúÍáU¹˜i‰ëŽ¿¤Ùb^è=;3ñ¿n+HBˆÂeÝþV4µŸìç=þTóÒª—ó  ­[?¦„ÈŸ/ÝÍI'ô&¼Ó—)Pmvü	ýÐG@Ç–ºŠ¸ý³ €Á]¢2ð~4Ø­ÎtÔÁ¬Ç2:RQ-OÉÁvpÇµPñKºUÄ¯d©P`8ÜœÛeÇùïñŠ<´ Ì‰Œã§2¦†«R™Ú›k&˜Nc-poésyü#ãÃÒÌ×õê_5± s»‰*F¯@Ã¤.Å¼wŸ<ô÷ Fž„7Úxæ“… sZP€›-…ŠùL(¤ÏyªbÓHÀé”ÈÇíïx6½£³ìsr7ÂñîÒö/¢Ö£G¯|­pCl0qüfs¹¦0‡,a÷’TîôõhL_7:‹	ðfÆf4·ÔG4ÂÅ~§ïc¡2«B%ãQÕá[ ÅfÇØrr­=õp1W¼¸ ›|§íVïín"0ÑsîÇÌ/«	 ->zñ »#˜C˜@+ª•2±Â·»H¦Sn\Âr‹¤©›¶²£þ¥úrsÞU‘¯']í	}‰øIÉ4É:ÊeÂ»1êç¡j´Û$zŽ™ÂH­iÕöŽ³”YU.“06‹çVV†h‚ü1ä”±®«6 !¨ó
‡™wåÙEnŽÛ×¼Ü4ôsíÜL‚-\¹¤'bªBTù÷ù ·³,a·éJ\š¤^í‘6ÜgH"èu›—Ùç½iN•;bTÑ*’è±"žão¾ëIëìÆT3g®àRiÀÏSz>–—TÅÇ)m
eî–C]0)~6A¹Uš´ P#
ÆV°“
r0œXÁœ6EJÏM¶|$×7É´;à=iù.„zÝ„ó«1ØÕµ¨²"ìSÕ‡	ÒYÅE|‹ç.ú™t
ý=ð‡ š€ö£½:Óçéð^¦‹˜¼	2ÒW	ãkfeþ ­z‹Ö’Ò\µ;š²¾‚ƒ%ó¿×Rïr~1chH°“ÅÑÉ a‹ù,êÍ/ÙDU¢‡yO•Â¢†ÅUf–¯pôªèXªÏÕ¾¿¦Zò‰Üd”µ†˜SzÞ-k>N;Òq$Dú;;¡Ÿ&!³ší3JT-¤¤Æ²¼ ÛÇ	jùjpëõÆJÄ2J¦9*·íx½S«©bÉTå$«bµ;•WNí¥öØf{í”zY î>Ÿëæ #WÒ+â<(Ç¿çx~ÜxC*zø1	çÎTdÎ4 +§“p"’Æl2·g¥Ó#»‘J_WÓ«ñf¢&(¦ª=RÔ)l¨ç÷J*)vj©b¥'·ÝY{d…¸uWÐ¶¼ÌÌQ?‡VpsPÑx^ÕÅ¯ «Oû°¯Áù44œwÏ±¼§,7áX©?›†d04Àà"à‚%ÓGû^œ\¦|ên!wš@êºSd2V¿æÓ˜YÛ,3à’ËÆ(0ÃFKý­Ÿ-˜Œø¤kB#'Ô1û áˆìGCö÷ÂìÕ@;CõrÖè‰+Ã…8òâ—ƒå û´~¿yÔkK|;C´ÖÂD{ÜºZoTƒ|9ä-ž—¢ÑNô:ZH’Õ“þ,šå°ö :ýd6tB-ÇÓ»ïÏ¼UÔÂd±Ývj¼¹Wç’Ýš¨|ÌØ)Ç£5:ô¯yJèeÂ‚c.¹¨’•< úÿ€naÅyIðÕ4‘°âÆ@¼õnË{0n¤ÚæØ¡ôFõ;bL­…‰ˆÖj1e›óÒ»Qq)/qÚ½G­PÐÜL'ÍZÉâyuqoRôOú¼f+íñzØÓx2Ì:¥ã¼Þ‚ú70@ñœìšÇLz%~5“ãa“Ä,§¼jwIç³%G:	ãn«_³	ªqvo–X’Ô¹FïåLûîš³æ¶|–;ojÐªMÎ‡9L..¸{àU$¬æ:‡OÙ²á8Ú¨/EïúNÌÌzàìæ³"äp¾ÖÛ!Ì©8À·ŒF¾f( ª¿ÎžúOïpvZÐ‚ª¢p¹›MÝÍ€~Èp0@ÿHWyÜiüUETA³µ#¹Åa–™:Mã^SDµI+ÂÐÐ–ÝÂQ¦ª×æ¹=Ôæ¢Ž=ö´wZä#Ì¢ï(¥O)6‚ºý—G4¹Àæ'”fßW.N

Ó~wUÞFõ&j±4˜‚zŠïÚf?q2ÕtséÍð+”äÓÚTF×J"i"ÀÑ<£[þ¥¼Éÿ)È™v5	Ù—ìýýI¬´("©Êðe¢` 6å0îS
¦ïMÓ=>yö:ÄØH}Œìô0rS-PtõqÞ;Çôxû¤-qgr{²;«BçUZF¦2Zý(+XÈÇ$á/¦	Þ9¿‹ÿ™ëPNžÁ|ÞÂŒîð,¯€\•hðÀ%D­*ZWÛéKß½Uû»Ö÷é¤Æ¿•îýÆÒ¢‰dõªšn1[‚VŽzqÁVB‰ït-ª¢c”Wgœú:)Vœ#Zý#3ö
™œîhÛtZµ¿³tä1K…Ñ¶öX3C+ÉŸ[þ?ÎJÿ¬_7ÑpÃŠp÷P§@ÇZoyAJÕ¡ºµçÔÖ(@ÛÈsäê”=îìŽ3çÈvò´oYºF¡ò"!Ò_¶‚*K¿­–dÙvõ´3•E!¹‘–îáEb9Š`oËÁÖz÷Yy²2D£’çÕ…Í4­.”–ùÙ‰6É€)#Œ5õ$(7¶%ÒZX®•Ðìl¨/ÄôÔ{‹ŒÊ¨îcmJÙrï=:V¢|æ}Íª“$0ÑV¹7#· \
Fÿ>T©­nöO?ƒ©$ƒ°8þk|í´’ª—¥é€vFÏÛ/A†í?8T
Ø“¯ÂLH­z¸»‘eÁªœ:Rš¼ó]Êùkv±VÛbC½ÔÖœ¼û¤¸4ó1·õá )3œüÙ”¤ø`)_àB€YDfK+]‰ï€*ÂŒÿýoÚÃ0•3Ü®¨øÔ|,qÓ)“C±",’³Éˆ3õtd!‘ >°AéJà€€í¢9#|cûz^še?Dd/Xƒ¥&ŸêY­F77³ÞbîŠzè—¡‰# Ý[ôÈ–Î™ñŸ/LùÑkÓ×ŸŸO‹QS»­+>Âõ>”EôSEPÌ÷(¨'æ½-Y[öÎçÏÔfˆ=YEY†Ê8 ¦ºEá¾s÷–N÷Úh¨x™Yñ¨Í(–ûxg.hÓH"vZ¤Q
ÐºƒË„à·ÎÕ«ï%ÆÖñÉ }¿ª‡uúB/å®ê4šË|'ât0-u½¹÷Ö¨uuã4Û
)îÎ,Æ€±9Xæüè_Üz¦7×lª²þuÞ{Hx“ú}x?®h	ÑÛÝ£#"¯é%z’è0
ŒžP·³3½êY] ºüIÞ‡<$êØ_bæKGÅ4ËØæp÷ÏkºC|ü/3Òæ0¹åkhl÷œö3&L•CÏÓ$©Â@páê·žw*»›«	Ý¡h0JƒG†jÓ÷¬f¥‰&û¦|pWïíF¢¡­¢UÛ÷þ6ßŠ>cél$Kffö=¯Wz(Ô7)}+«àiÛQÉŒ’c2R–zScñágçÏ
üÑÔ;7ûî<À¤ùÀ.á8_þìûx’šáŸ%y›’NÊ¸«B=«õŽÅ
=B¿ÆToÜE M4½½€ˆùžUÈ—}iè¸ÄC3›[c_˜çV7¢¬¡
¾ ô¸A–7fæ‹nÀâ@¬`Ä÷4j»¼›‰Ò1UßÔn¯ê¢`eáÙV›széSŒ7ˆ>T©Å*Tv÷Å·¡ÊUFUeX´JƒÕ×’‰óæHÍcV0(=¸þ}3+¬&Tê»Go“ßSÐ@ªnÖoqÄ¹'KÖ{¬$sÐùŸ^ÿyÑWÕSºüÐ´ÜZ±)Kö›ÍDµƒÔÌÔA[j´ªLõQdX_Y6$D4Ï©¼
O4oVv½1«ë@ÁÏ@qèîO&{"øÞ™4:•œÑÁ5ä4B©nûB¸ú3jjÙ$){ßÿÀ8`-€óA`èX]‰çÂ©]9~Tóñ2	H;þ^Æ¹¤í~acÀ°¤58Ä^ƒ]7F¼9°j¡b2O&nbr6òßò^`Ž¥²·¢!3ˆ‰e?PFì$ÆÒßLGÎž‹­týßÐ«“Ñåç¦‰»PŒ‹‘üzKd7žzÐ³hÚúMG:‰ä½Qr*Ì0=„…ë
iæ)µ`-J'êh)ç€^ñ++ÓP®ãp3ÕD!ðÏ/w‚é–kÃÐðÖú•]ãˆÙoƒ :©KGº˜D$Ô.°3¹šSð¿¦iì+Lw@$Œ03„	¢x§¸=Aa‚ÑK¡kÒúð— ¿èKæÍzg( …ª F!þ6ìH/ @ðÅ“Ÿâäˆ9¯à‚ŽóÀÔÇ‘HøÁO•£J„Ž'o@!Ü·#RˆãF´ìÔxÚb¶ž„Wšå‘¼9…“Ô ŠvÆÑÁjæ!¤HÉA™¥å˜×–™G‚X•Áøbß™ïZþY4ÜºÅc<Ég%ÛkÓ)¾úrAD@8Z¤”÷Z™â˜0›;!n£9ÑÿRbÄ®vÖ÷=¿õàÁ½ãLF*\ÓÍg¬´®p#Z÷ý±¶ÐÒ{J]÷d’› £˜édƒ›–ù·~wÐm'HF¼öxþøÀÊæÅ‡)iÿ“Ä>%û¾ÿsƒ—zƒ'þ8bà¯ËH"ËµÙ/^ÖÇè»qÈnN§¡Ë&É²šk-‘E[…Ûz‚ü=xDBl–%e©v6šg5„|ËÊ“Ý±ïí5(»Qˆ½ª=Ãe¯™ÏËµÙyæXShM‹u¨ˆõ§Šbg˜JXIšlçDµ(õºÇŸÎ2n*
 ×sì c d¦"ð‹ ïâ{^P1hÅÿaðT}eˆ¡ÙÏã³xÌ5üg:7¹Ž	UÈ MtnJÏ•f:Á…yFˆ„]sxV×ÜvfÃ) *æ˜¤Tï#„¥Ë¼gÉ`ýýj1Û#é'u¨|}s„ŒI£×Æ¥¸ó'ýq0ýº6 •m.Óì=±J«ÛáËšµƒkãŠêðhNÿ6ï­wÐü*]2H×†¬ÎÕ¯ÂfÉÑ¯ù±ª¥ŒM"°åÞœÇ-L}œ‹Û‘lÃ¨F]•Æçm¦¸ã[Là°;w°3ò€)6Jr+³i„¤J@Ïžöm
JV^‡VýÂ‹~uI
ß#ë°hö’joÅNŒÐvåÿ2ñõ|/àœçìYÕ]tÌÖAü´&Tõ)¹z•Qç€‰“
$òÿƒ[ˆê!pÙQ.‘À>3OB„Mù>pìôjÆF¬®ÙÔ]¡þœ§1o©…œ8|Oé² >
I“`žÊ’?ù„·zñ~âäµ§8Ï±ZÍÐÝ|]ÐÅc&xv_RK=õê€nÚ·ä<"P¥xž°[–¦ÓFWxšôóãÐCD|B>ïý£Á‘±÷C¬Ù^”jzûŒwQmhQï·öð"³4õsRñ"ñY*“ÂV®è¼ƒ¼G ˆªyØ,ö>&Ä\q;ZEëQ»MÖ¡"“Œ®EÛß\;-„¨fÌû¥–²0XSçÖÞ;o·ýs”øUã|Y^"ÈhÜQq²T%.s1ó:[wãE1M¤Ô *Ýšdzz“nQZ³ÁÇL3€šHrÒH3ñŸŠ§ßgH›ûígûø¸¡ç«÷8²‰ñE&Cºiuàö©ü‡Bué7îÌHKÏÌigªÐ›}7ÊÎR£R!@XÑßÃÀµ¯MÝ$±ÁbÞQ÷èçD —•éãÁ„	ÂDŒæÏéª`7KárÙÎ‚VëZàd-XŒÊ‡NñnYX:YÁBT ø\a~Ë/Ýë9ÿÛ 5&2§&‰¿M„Ëô<\[–A*8+µ7DR¼ÉØÝRx¬n‘†.©¹“Ö¾ JÖ
‘¹Ø&ˆ°éòP¶¼SU¯Z¯nÏ…­#êÎàËÄ›<$ìÒ½kOw±!œ•GR´$89êß
±8`¹æàaY^”X­ýª°ì‡¶– ¢Î[jo0B<Z_.îòÑæŒ]j]·~ÏiJÒœ/é|U*’X³†FÇ¶ó¸`Zc™lk6XuJz>Ö&¿oõé‘vv¥µ*ÂÑa¢–Š6W d`ž0Ê¬‡ÍÇ¼÷>f£ÁSæ¶W–°‘%4o·:üZ0“ÆUºø…z¥ÉÜHòù–·DÚœÞq&h8ó‘u±í¢~LÿsCON˜#;íK!î¯ì'¡õh=D«C:–Èh‹{èï2P´+×?g~‹VÉùTäžä0Ñ$u‰î•“DA?ˆ<3j¹Úç˜ó­ƒ+Ëó‰n[¸l…ÇKjÉ5_nëK[¡‡Jž¨ñµFá¨Th²¡«Ëu¹õ¤3²šzqÑ\À47{•¢\Êãôj4“é™-×ƒœ³U¥ý,2R*É«¾±‹Ò—äõ²ŸKŒºg¦˜7Ùîô¾ÕýÞSEë.7nß˜ÀËLU–ô¥bÎŠ»š:ÚX¢ýè=¦Îy¶\OÕ.Ç¾¸õp`—5¯(Õ%Æ­0cBÜ~™gâ>xwÒO¸g;ŒÝ„f¡NÀ±:ëNXƒ,&ŒÃü3ÒJ^Õša†ëqsÒ¡å¬Mô®˜£=Lù¬›÷å!2¡™FÝÅLjërÌ:?¦sòÖËº>:w4w }Q¦9q±Xå$ïó–ÓA5EZ´>xW)×Cx¯«Wé¹·ý70ˆåG)#ÍNuVpnÎ• T u…>ÖÊ¯ C_•u°¸>YW¾`ì6ƒ‰žèBµœ?7¬y KØMJ±IbÍ‹×¯þ@TxËmÊÑÄÞœÌ]¯a‡AËºFÞv
HŒ•Ë ãq¿(­$EZ7—ÆAAíˆ×¹w¸õ–)^×wú·u–}‰¥pÈÒPt5ÄîÃÂ:‹  »éìtáäÉê®ë)ê‹KáB@“ÙWü†­‚{ÓA Ë±„æýÆ`¶éß    
YZ