í«îÛ    sssd-ad-1.14.0-43.el7_3.18                                                          Ž­è          $   >           è            ì          7ð„·ÿÞÖ<ÿ7,7æŸI(   >   ÿÿÿÐ       Ž­è       ; „`   ?    „P      d            è           é      
     ê           ì   	        í   	   9     î      Ì     ï      Ð     ñ      è     ó      ì     ö      ó     ÷      ú     ø   	  &     ü     :     ý     X     þ     ^          h          €     	     Œ     
     ˜          °          ö          ü                    2          P          p          ˆ          ¸   H       Ø   H       %   H       Ä          È          Í     (     Ü     8     ä  º  9     Ì  º  :     eî  º  G    ~      H    ~8     I    ~P     X    ~X     Y    ~d     \    ~Œ     ]    ~¤     ^    ~ì     b    l     d    €1     e    €6     f    €9     l    €;     t    €T     u    €l     v    €„     w    ‚È     x    ‚à     y    ‚ø   U  “    „L   C sssd-ad 1.14.0 43.el7_3.18 The AD back end of the SSSD Provides the Active Directory back end that the SSSD can utilize to fetch
identity data from and authenticate against an Active Directory server.  YTEpc1bm.rdu2.centos.org     &CentOS GPLv3+ CentOS BuildSystem <http://bugs.centos.org> Applications/System http://fedorahosted.org/sssd/ linux x86_64     È  ®`     ‰K  (Z  8YííAí¤¤¤            YTE_YTE_YTEoW~“èYTEMYTELb5940459da666c85f5f0d4a451edc6e0466543978ed21f9f9761d1431db1bc8e 14d5c5f62a97955489900af3471acd04b151b5051b9c37b8b0a073cd11f06b25  8ceb4b9ee5adedde47b31e975c1d90c73ad27b6b165a1dcd80c7c545eb65b903 34199c7170fae14acfe145597cbf22f1fe5da70cf9d04def1af63b869f23f7fc 6ea05ab82abded83b37a7733d4465521b8b7bebb732eb430cc27e16fef296d23                            root root root root root root root root root root root root sssd-1.14.0-43.el7_3.18.src.rpm ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿlibsss_ad.so()(64bit) sssd-ad sssd-ad(x86-64)         @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @      
  
  
  @            
bind-utils libbasicobjects.so.0()(64bit) libc.so.6()(64bit) libc.so.6(GLIBC_2.14)(64bit) libc.so.6(GLIBC_2.2.5)(64bit) libc.so.6(GLIBC_2.3)(64bit) libc.so.6(GLIBC_2.3.4)(64bit) libc.so.6(GLIBC_2.4)(64bit) libcollection.so.2()(64bit) libcom_err.so.2()(64bit) libdbus-1.so.3()(64bit) libdhash.so.1()(64bit) libdhash.so.1(DHASH_0.4.3)(64bit) libdl.so.2()(64bit) libglib-2.0.so.0()(64bit) libini_config.so.3()(64bit) libini_config.so.3(INI_CONFIG_1.1.0)(64bit) libk5crypto.so.3()(64bit) libkeyutils.so.1()(64bit) libkrb5.so.3()(64bit) liblber-2.4.so.2()(64bit) libldap-2.4.so.2()(64bit) libldb.so.1()(64bit) libldb.so.1(LDB_0.9.10)(64bit) libndr-krb5pac.so.0()(64bit) libndr-krb5pac.so.0(NDR_KRB5PAC_0.0.1)(64bit) libndr-nbt.so.0()(64bit) libndr-nbt.so.0(NDR_NBT_0.0.1)(64bit) libndr.so.0()(64bit) libndr.so.0(NDR_0.0.1)(64bit) libnspr4.so()(64bit) libnss3.so()(64bit) libnssutil3.so()(64bit) libpcre.so.1()(64bit) libplc4.so()(64bit) libplds4.so()(64bit) libpopt.so.0()(64bit) libpopt.so.0(LIBPOPT_0)(64bit) libpthread.so.0()(64bit) libpthread.so.0(GLIBC_2.2.5)(64bit) libref_array.so.1()(64bit) libsamba-util.so.0()(64bit) libsasl2.so.3()(64bit) libselinux.so.1()(64bit) libsmbclient.so.0()(64bit) libsmbclient.so.0(SMBCLIENT_0.1.0)(64bit) libsmime3.so()(64bit) libssl3.so()(64bit) libsss_cert.so()(64bit) libsss_child.so()(64bit) libsss_crypt.so()(64bit) libsss_debug.so()(64bit) libsss_idmap.so.0()(64bit) libsss_idmap.so.0(SSS_IDMAP_0.4)(64bit) libsss_krb5_common.so()(64bit) libsss_ldap_common.so()(64bit) libsss_util.so()(64bit) libsystemd.so.0()(64bit) libtalloc.so.2()(64bit) libtalloc.so.2(TALLOC_2.0.2)(64bit) libtdb.so.1()(64bit) libtevent.so.0()(64bit) libtevent.so.0(TEVENT_0.9.9)(64bit) libwbclient rpmlib(CompressedFileNames) rpmlib(FileDigests) rpmlib(PayloadFilesHavePrefix) rtld(GNU_HASH) sssd-common sssd-common-pac sssd-krb5-common rpmlib(PayloadIsXz)                                                                4.2.3-1 3.0.4-1 4.6.0-1 4.0-1  1.14.0-43.el7_3.18 1.14.0-43.el7_3.18 1.14.0-43.el7_3.18 5.2-1      sssd 1.10.0-8.beta2 4.11.3  Y(ÀY£ÀYtÀY ‹ÀX¤BÀX”pÀXv@XOâÀX8'ÀX6Ö@X5„ÀX5„ÀX.í@X.í@X)§@X#ÀX!¾@X lÀWá$ÀWÛÞÀWÙ;ÀWÙ;ÀWÙ;ÀWÖ˜ÀWÖ˜ÀWÐ@WÍ^@WÉiÀWÉiÀWÉiÀWÀ/@WÀ/@WÀ/@WÀ/@W¶ôÀW¶ôÀW¶ôÀW´QÀW´QÀW´QÀW³ @W³ @W³ @W¬hÀW«@W«@W¨t@W›E@W›E@W˜¢@W˜¢@WŽ@WŽ@WŒÄÀW‡~ÀW†-@W†-@W†-@W„ÛÀWƒŠ@W•ÀWu	ÀWgÚÀWDB@WDB@WDB@WBðÀW;ÀW;ÀWÌ@VþbÀVÍ›@VTQ@VCÀV	@V	@V	@VÎÀV”@VBÀVBÀVBÀVBÀVBÀUûüÀUûüÀUûüÀUå“@UÜXÀUÕÁ@UÕÁ@UÓ@UÑÌÀUÑÌÀUÑÌÀUÑÌÀUÑÌÀUÑÌÀUÑÌÀUÃL@UÃL@UÁúÀUÀ©@UÀ©@UÀ©@U·nÀU¶@U²(ÀU¨î@U¨î@U§œÀUšmÀUšmÀU“Ö@U‰J@U‡øÀU7@U7@U7@U
º@U@U@TøE@TøE@TøE@TÐ¸@TËr@TËr@TËr@TËr@TÇ}ÀTÇ}ÀTÇ}ÀTÇ}ÀTÇ}ÀTÂ7ÀTÂ7ÀT¿”ÀT¾C@T¼ñÀT¶Z@T¶Z@TµÀT”@T‘p@T‘p@TŽÍ@T{ÀTŒ*@TŒ*@T…’ÀT…’ÀT~û@T~û@TuÀÀTuÀÀTto@Tto@Tto@Tto@Tto@Tto@Tm×ÀTm×ÀTm×ÀTm×ÀTl†@Tl†@Tl†@Tl†@TcKÀTaú@T\´@TZ@TZ@TR(@TGœ@TGœ@TGœ@TGœ@TGœ@TDù@T6xÀTŽÀTëÀT	¥ÀSä»ÀSÐõ@S|•@Sr	@Sr	@Sr	@Sr	@S;ûÀS;ûÀS2Á@S2Á@S,)ÀS!ÀS L@SúÀSúÀS©@S©@SÀ@SÀ@SÀ@S×@S×@S×@S×@S×@S×@S×@S×@SùÀSùÀSùÀRûb@Rûb@Rûb@Rèí@Rèí@Rèí@Rèí@RâUÀRâUÀRâUÀRß²ÀRÝÀRÝÀRÖx@RÖx@RÖx@RÎ@RÎ@RÎ@RÍ=ÀRÍ=ÀR½kÀR²ßÀR²ßÀR²ßÀR±Ž@R±Ž@R©¥@R©¥@R©¥@Rœv@Rœv@Rœv@Rœv@Rœv@Rœv@Rœv@Rœv@Rœv@RpôÀREs@REs@R7ÀQûŸ@Qøü@Qøü@Qøü@Qøü@QçØÀQÝLÀQÚ©ÀQÒÀÀQÒÀÀQÑo@QÌ)@Q¾ú@Q½¨ÀQ¹´@Q¹´@Q¸bÀQ°yÀQŸV@Q’'@QˆìÀQƒ¦ÀQnŽÀQZÈ@Q0˜@QÑÀQÑÀQÝ@Q—@Q¢ÀQ	@Q¹ÀQh@PÀˆÀPÁ@PÁ@Pï@Pz©@Pz©@PqnÀPl(ÀPaœÀPaœÀPS@PH@PD›ÀP<²ÀP7lÀP2&ÀP.2@P$÷ÀPkÀP‚ÀPöÀP@OýjÀOýjÀOèRÀOá»@Oß@OÛ#ÀOÄº@OÄº@O¾"ÀO¬ÿ@O¢s@O‚Ï@OpZ@OiÂÀO]å@OLÁÀODØÀO;ž@O5ÀO/ÀÀO/ÀÀO))@O))@O))@On@NóÀNï'@NßU@NÔÉ@NÎ1ÀN»¼ÀN³ÓÀN§ö@N¤ÀN¡^ÀNž»ÀNj@N[@N98@N98@NüÀN¶ÀNe@Mß’@MÚL@M¾œÀMº¨@M®ÊÀM®ÊÀM®ÊÀM¬'ÀM¦áÀM¤>ÀM¤>ÀM‹2@M÷ÀMzÀMx½@Mj<ÀMbSÀMU$ÀMU$ÀMU$ÀMRÀMGõÀMA^@MA^@M,F@Mè@Lå@Lâr@LÎ«ÀL¼6ÀL¼6ÀL©ÁÀL©ÁÀL¥Í@L¡ØÀL’ÀLs´@LH2ÀL7@LT@Kúj@Kò@Kä ÀKµÜ@K´ŠÀK¨­@K Ä@K…ÀK~}@K]‡ÀKY“@KO@KKÀK/c@K+nÀK"4@K³ÀJæàÀJå@JášÀJ×ÀJÔkÀJÁöÀJÀ¥@J’€ÀJp9ÀJlE@J?r@J0ñÀJ,ý@IìcÀIìcÀIäzÀIã)@Iã)@Iã)@I¶V@I¶V@I³³@I±@I¯¾ÀI¢ÀI”@Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-43.18 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-43.17 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-43.16 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-43.15 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-43.14 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-43.13 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-43.12 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-43.11 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-43.10 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-43.9 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-43.8 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-43.7 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-43.6 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-43.5 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-43.4 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-43.3 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-43.2 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-43.1 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-43 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-42 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-41 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-40 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-39 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-38 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-37 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-36 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-35 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-34 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-33 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-32 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-31 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-30 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-29 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-28 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-27 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-26 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-25 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-24 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-23 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-22 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-21 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-20 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-19 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-18 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-17 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-16 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-15 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-14 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-13 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-12 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-11 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-10 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-9 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-8 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-7 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-6 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-5 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-4 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-3 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-2 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0-1 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0beta1-2 Jakub Hrozek <jhrozek@redhat.com> - 1.14.0alpha-1 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-50 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-49 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-48 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-47 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-46 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-45 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-44 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-43 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-42 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-41 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-40 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-39 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-38 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-37 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-36 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-35 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-34 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-33 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-32 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-31 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-30 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-29 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-28 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-27 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-26 Martin Kosek <mkosek@redhat.com> - 1.13.0-25 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-24 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-23 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-22 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-21 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-20 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-19 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-18 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-17 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-16 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-15 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-14 Lukas Slebodnik <lslebodn@redhat.com> - 1.13.0-13 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-12 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-11 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-10 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-9 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-8 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-7 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-6 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-5 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-4 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-3 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-2 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0-1 Jakub Hrozek <jhrozek@redhat.com> - 1.13.0.3alpha Jakub Hrozek <jhrozek@redhat.com> - 1.13.0.2alpha Jakub Hrozek <jhrozek@redhat.com> - 1.13.0.1alpha Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-61 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-60 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-59 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-58.6 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-58.5 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-58.4 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-58.3 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-58.2 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-58.1 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-57 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-56 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-55 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-54 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-53 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-52 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-51 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-50 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-49 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-48 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-47 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-46 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-45 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-44 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-43 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-42 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-41 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-40 Sumit Bose <sbose@redhat.com> - 1.12.2-39 Sumit Bose <sbose@redhat.com> - 1.12.2-38 Sumit Bose <sbose@redhat.com> - 1.12.2-37 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-35 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-35 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-34 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-33 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-32 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-31 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-30 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-29 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-28 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-27 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-26 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-25 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-24 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-23 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-22 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-21 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-20 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-19 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-18 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-17 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-16 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-15 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-14 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-13 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-12 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-11 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-10 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-9 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-8 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-7 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-6 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-5 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-4 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-3 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-2 Jakub Hrozek <jhrozek@redhat.com> - 1.12.2-1 Jakub Hrozek <jhrozek@redhat.com> - 1.12.1-2 Jakub Hrozek <jhrozek@redhat.com> - 1.12.1-1 Jakub Hrozek <jhrozek@redhat.com> - 1.12.1-1 Jakub Hrozek <jhrozek@redhat.com> - 1.12.0-3 Jakub Hrozek <jhrozek@redhat.com> - 1.12.0-2 Jakub Hrozek <jhrozek@redhat.com> - 1.12.0-1 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-70 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-69 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-68 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-67 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-66 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-65 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-64 Sumit Bose <sbose@redhat.com> - 1.11.2-63 Sumit Bose <sbose@redhat.com> - 1.11.2-62 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-61 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-60 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-59 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-58 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-57 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-56 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-55 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-54 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-53 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-52 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-51 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-50 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-49 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-48 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-47 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-46 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-45 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-44 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-43 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-42 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-41 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-40 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-39 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-38 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-37 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-36 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-35 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-34 Daniel Mach <dmach@redhat.com> - 1.11.2-33 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-32 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-31 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-30 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-29 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-28 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-27 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-26 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-25 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-24 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-23 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-22 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-21 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-20 Daniel Mach <dmach@redhat.com> - 1.11.2-19 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-18 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-17 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-16 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-15 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-14 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-13 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-12 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-11 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-10 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-9 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-8 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-7 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-6 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-5 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-4 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-3 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-2 Jakub Hrozek <jhrozek@redhat.com> - 1.11.2-1 Jakub Hrozek <jhrozek@redhat.com> - 1.11.1-2 Jakub Hrozek <jhrozek@redhat.com> - 1.11.1-1 Jakub Hrozek <jhrozek@redhat.com> - 1.11.0-1 Jakub Hrozek <jhrozek@redhat.com> - 1.11.0.1beta2 Jakub Hrozek <jhrozek@redhat.com> - 1.10.1-5 Jakub Hrozek <jhrozek@redhat.com> - 1.10.1-4 Jakub Hrozek <jhrozek@redhat.com> - 1.10.1-3 Jakub Hrozek <jhrozek@redhat.com> - 1.10.1-2 Jakub Hrozek <jhrozek@redhat.com> - 1.10.1-1 Jakub Hrozek <jhrozek@redhat.com> - 1.10.0-18 Jakub Hrozek <jhrozek@redhat.com> - 1.10.0-17 Stephen Gallagher <sgallagh@redhat.com> - 1.10.0-16 Stephen Gallagher <sgallagh@redhat.com> - 1.10.0-15 Stephen Gallagher <sgallagh@redhat.com> - 1.10.0-14 Jakub Hrozek <jhrozek@redhat.com> - 1.10.0-13 Dan HorÃ¡k <dan[at]danny.cz> - 1.10.0-12.beta2 Jakub Hrozek <jhrozek@redhat.com> - 1.10.0-11.beta2 Jakub Hrozek <jhrozek@redhat.com> - 1.10.0-10.beta2 Jakub Hrozek <jhrozek@redhat.com> - 1.10.0-9.beta2 Jakub Hrozek <jhrozek@redhat.com> - 1.10.0-8.beta2 Jakub Hrozek <jhrozek@redhat.com> - 1.10.0-7.beta1 Jakub Hrozek <jhrozek@redhat.com> - 1.10.0-6.beta1 Jakub Hrozek <jhrozek@redhat.com> - 1.10.0-5.beta1 Jakub Hrozek <jhrozek@redhat.com> - 1.10.0-4.beta1 Jakub Hrozek <jhrozek@redhat.com> - 1.10.0-3.beta1 Jakub Hrozek <jhrozek@redhat.com> - 1.10.0-2.alpha1 Jakub Hrozek <jhrozek@redhat.com> - 1.10.0-1.alpha1 Stephen Gallagher <sgallagh@redhat.com> - 1.9.4-9 Jakub Hrozek <jhrozek@redhat.com> - 1.9.4-8 Jakub Hrozek <jhrozek@redhat.com> - 1.9.4-7 Jakub Hrozek <jhrozek@redhat.com> - 1.9.4-6 Jakub Hrozek <jhrozek@redhat.com> - 1.9.4-5 Jakub Hrozek <jhrozek@redhat.com> - 1.9.4-4 Jakub Hrozek <jhrozek@redhat.com> - 1.9.4-3 Jakub Hrozek <jhrozek@redhat.com> - 1.9.4-2 Jakub Hrozek <jhrozek@redhat.com> - 1.9.4-1 Jakub Hrozek <jhrozek@redhat.com> - 1.9.3-1 Jakub Hrozek <jhrozek@redhat.com> - 1.9.2-5 Jakub Hrozek <jhrozek@redhat.com> - 1.9.2-4 Jakub Hrozek <jhrozek@redhat.com> - 1.9.2-3 Jakub Hrozek <jhrozek@redhat.com> - 1.9.2-2 Jakub Hrozek <jhrozek@redhat.com> - 1.9.2-1 Jakub Hrozek <jhrozek@redhat.com> - 1.9.1-1 Jakub Hrozek <jhrozek@redhat.com> - 1.9.0-24 Jakub Hrozek <jhrozek@redhat.com> - 1.9.0-24 Jakub Hrozek <jhrozek@redhat.com> - 1.9.0-23 Jakub Hrozek <jhrozek@redhat.com> - 1.9.0-22.rc1 Jakub Hrozek <jhrozek@redhat.com> - 1.9.0-21.beta7 Jakub Hrozek <jhrozek@redhat.com> - 1.9.0-20.beta6 Jakub Hrozek <jhrozek@redhat.com> - 1.9.0-19.beta6 Jakub Hrozek <jhrozek@redhat.com> - 1.9.0-18.beta6 Jakub Hrozek <jhrozek@redhat.com> - 1.9.0-17.beta6 Jakub Hrozek <jhrozek@redhat.com> - 1.9.0-16.beta6 Jakub Hrozek <jhrozek@redhat.com> - 1.9.0-14.beta6 Jakub Hrozek <jhrozek@redhat.com> - 1.9.0-13.beta6 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.9.0-13.beta5 Jakub Hrozek <jhrozek@redhat.com> - 1.9.0-12.beta5 Stephen Gallagher <sgallagh@redhat.com> - 1.9.0-11.beta4 Jakub Hrozek <jhrozek@redhat.com> - 1.9.0-10.beta4 Jakub Hrozek <jhrozek@redhat.com> - 1.9.0-9.beta4 Stephen Gallagher <sgallagh@redhat.com> - 1.9.0-8.beta3 Stephen Gallagher <sgallagh@redhat.com> - 1.9.0-7.beta2 Stephen Gallagher <sgallagh@redhat.com> - 1.9.0-6.beta2 Stephen Gallagher <sgallagh@redhat.com> - 1.9.0-5.beta2 Stephen Gallagher <sgallagh@redhat.com> - 1.9.0-4.beta1 Stephen Gallagher <sgallagh@redhat.com> - 1.9.0-3.beta1 Stephen Gallagher <sgallagh@redhat.com> - 1.9.0-2.beta1 Stephen Gallagher <sgallagh@redhat.com> - 1.9.0-1.beta1 Stephen Gallagher <sgallagh@redhat.com> - 1.8.3-11 Stephen Gallagher <sgallagh@redhat.com> - 1.8.2-10 Stephen Gallagher <sgallagh@redhat.com> - 1.8.1-9 Stephen Gallagher <sgallagh@redhat.com> - 1.8.1-8 Stephen Gallagher <sgallagh@redhat.com> - 1.8.1-7 Stephen Gallagher <sgallagh@redhat.com> - 1.8.0-6 Stephen Gallagher <sgallagh@redhat.com> - 1.8.0-5.beta3 Stephen Gallagher <sgallagh@redhat.com> - 1.8.0-4.beta3 Petr Pisar <ppisar@redhat.com> - 1.8.0-3.beta2 Stephen Gallagher <sgallagh@redhat.com> - 1.8.0-1.beta2 Stephen Gallagher <sgallagh@redhat.com> - 1.8.0-1.beta1 Stephen Gallagher <sgallagh@redhat.com> - 1.7.0-5 Stephen Gallagher <sgallagh@redhat.com> - 1.7.0-4 Stephen Gallagher <sgallagh@redhat.com> - 1.7.0-3 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.7.0-2 Stephen Gallagher <sgallagh@redhat.com> - 1.7.0-1 Stephen Gallagher <sgallagh@redhat.com> - 1.6.4-1 Stephen Gallagher <sgallagh@redhat.com> - 1.6.3-5 Stephen Gallagher <sgallagh@redhat.com> - 1.6.3-4 Jakub Hrozek <jhrozek@redhat.com> - 1.6.3-3 Stephen Gallagher <sgallagh@redhat.com> - 1.6.3-2 Stephen Gallagher <sgallagh@redhat.com> - 1.6.3-1 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.6.2-5 Stephen Gallagher <sgallagh@redhat.com> - 1.6.2-4 Stephen Gallagher <sgallagh@redhat.com> - 1.6.2-3 Stephen Gallagher <sgallagh@redhat.com> - 1.6.2-2 Stephen Gallagher <sgallagh@redhat.com> - 1.6.2-1 Stephen Gallagher <sgallagh@redhat.com> - 1.6.1-1 Stephen Gallagher <sgallagh@redhat.com> - 1.6.0-2 Stephen Gallagher <sgallagh@redhat.com> - 1.6.0-1 Stephen Gallagher <sgallagh@redhat.com> - 1.5.11-2 Stephen Gallagher <sgallagh@redhat.com> - 1.5.10-1 Stephen Gallagher <sgallagh@redhat.com> - 1.5.9-1 Stephen Gallagher <sgallagh@redhat.com> - 1.5.8-1 Stephen Gallagher <sgallagh@redhat.com> - 1.5.7-3 Stephen Gallagher <sgallagh@redhat.com> - 1.5.7-2 Stephen Gallagher <sgallagh@redhat.com> - 1.5.7-1 Stephen Gallagher <sgallagh@redhat.com> - 1.5.6.1-1 Stephen Gallagher <sgallagh@redhat.com> - 1.5.6-1 Stephen Gallagher <sgallagh@redhat.com> - 1.5.5-5 Stephen Gallagher <sgallagh@redhat.com> - 1.5.5-4 Stephen Gallagher <sgallagh@redhat.com> - 1.5.5-3 Stephen Gallagher <sgallagh@redhat.com> - 1.5.5-2 Stephen Gallagher <sgallagh@redhat.com> - 1.5.5-1 Stephen Gallagher <sgallagh@redhat.com> - 1.5.4-1 Stephen Gallagher <sgallagh@redhat.com> - 1.5.3-2 Stephen Gallagher <sgallagh@redhat.com> - 1.5.3-1 Stephen Gallagher <sgallagh@redhat.com> - 1.5.2-1 Simo Sorce <ssorce@redhat.com> - 1.5.1-9 Stephen Gallagher <sgallagh@redhat.com> - 1.5.1-8 Stephen Gallagher <sgallagh@redhat.com> - 1.5.1-7 Stephen Gallagher <sgallagh@redhat.com> - 1.5.1-6 Stephen Gallagher <sgallagh@redhat.com> - 1.5.1-5 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.5.1-4 Stephen Gallagher <sgallagh@redhat.com> - 1.5.1-3 Stephen Gallagher <sgallagh@redhat.com> - 1.5.1-2 Stephen Gallagher <sgallagh@redhat.com> - 1.5.1-1 Stephen Gallagher <sgallagh@redhat.com> - 1.5.0-2 Stephen Gallagher <sgallagh@redhat.com> - 1.5.0-1 Stephen Gallagher <sgallagh@redhat.com> - 1.4.1-3 Stephen Gallagher <sgallagh@redhat.com> - 1.4.1-2 Stephen Gallagher <sgallagh@redhat.com> - 1.4.1-1 Stephen Gallagher <sgallagh@redhat.com> - 1.4.0-2 Stephen Gallagher <sgallagh@redhat.com> - 1.4.0-1 Stephen Gallagher <sgallagh@redhat.com> - 1.3.0-35 Stephen Gallagher <sgallagh@redhat.com> - 1.3.0-34 Stephen Gallagher <sgallagh@redhat.com> - 1.3.0-33 Stephen Gallagher <sgallagh@redhat.com> - 1.3.0-32 Stephen Gallagher <sgallagh@redhat.com> - 1.3.0-31 Stephen Gallagher <sgallagh@redhat.com> - 1.3.0-30 David Malcolm <dmalcolm@redhat.com> - 1.2.91-21 Stephen Gallagher <sgallagh@redhat.com> - 1.2.91-20 Stephen Gallagher <sgallagh@redhat.com> - 1.2.1-15 Stephen Gallagher <sgallagh@redhat.com> - 1.2.0-12 Stephen Gallagher <sgallagh@redhat.com> - 1.1.92-11 Stephen Gallagher <sgallagh@redhat.com> - 1.1.91-10 Simo Sorce <ssorce@redhat.com> - 1.1.1-3 Stephen Gallagher <sgallagh@redhat.com> - 1.1.1-1 Stephen Gallagher <sgallagh@redhat.com> - 1.1.0-2 Stephen Gallagher <sgallagh@redhat.com> - 1.1.0-1.pre20100317git0ea7f19 Stephen Gallagehr <sgallagh@redhat.com> - 1.0.5-2 Stephen Gallagher <sgallagh@redhat.com> - 1.0.5-1 Stephen Gallagher <sgallagh@redhat.com> - 1.0.4-1 Stephen Gallagher <sgallagh@redhat.com> - 1.0.3-1 Stephen Gallagher <sgallagh@redhat.com> - 1.0.2-1 Stephen Gallagher <sgallagh@redhat.com> - 1.0.1-1 Stephen Gallagher <sgallagh@redhat.com> - 1.0.0-2 Stephen Gallagher <sgallagh@redhat.com> - 1.0.0-1 Stephen Gallagher <sgallagh@redhat.com> - 0.99.1-1 Stephen Gallagher <sgallagh@redhat.com> - 0.99.0-1 Stephen Gallagher <sgallagh@redhat.com> - 0.7.1-1 Stephen Gallagher <sgallagh@redhat.com> - 0.7.0-2 Stephen Gallagher <sgallagh@redhat.com> - 0.7.0-1 Stephen Gallagher <sgallagh@redhat.com> - 0.6.1-2 Stephen Gallagher <sgallagh@redhat.com> - 0.6.1-1 Stephen Gallagher <sgallagh@redhat.com> - 0.6.0-1 Sumit Bose <sbose@redhat.com> - 0.6.0-0 Simo Sorce <ssorce@redhat.com> - 0.5.0-0 Jakub Hrozek <jhrozek@redhat.com> - 0.4.1-4 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.4.1-3 Simo Sorce <ssorce@redhat.com> - 0.4.1-2 Simo Sorce <ssorce@redhat.com> - 0.4.1-1 Simo Sorce <ssorce@redhat.com> - 0.4.1-0 Simo Sorce <ssorce@redhat.com> - 0.3.2-2 Jakub Hrozek <jhrozek@redhat.com> - 0.3.2-1 Simo Sorce <ssorce@redhat.com> - 0.3.1-2 Simo Sorce <ssorce@redhat.com> - 0.3.1-1 Simo Sorce <ssorce@redhat.com> - 0.3.0-2 Simo Sorce <ssorce@redhat.com> - 0.3.0-1 Simo Sorce <ssorce@redhat.com> - 0.2.1-1 Simo Sorce <ssorce@redhat.com> - 0.2.0-1 Jakub Hrozek <jhrozek@redhat.com> - 0.1.0-5.20090309git691c9b3 Jakub Hrozek <jhrozek@redhat.com> - 0.1.0-4 Sumit Bose <sbose@redhat.com> - 0.1.0-3 Jakub Hrozek <jhrozek@redhat.com> - 0.1.0-2 Stephen Gallagher <sgallagh@redhat.com> - 0.1.0-1 - Resolves: rhbz#1456013 - sssd intermittently failing to resolve groups
                           for an AD user in IPA-AD trust environment. - Resolves: rhbz#1450125 - Wrong pam return code for user from subdomain
                           with ad_access_filter - Resolves: rhbz#1446085 - D-Bus interface of sssd is giving inappropriate
                           group information for trusted AD users - Resolves: rhbz#1445821 - sssd does not evaluate AD UPN suffixes which
                           results in failed user logins - Resolves: rhbz#1422183 - Fails to accept any sudo rules if there are
                           two user entries in an ldap role with the same
                           sudo user. - Resolves: rhbz#1418943 - If a long-running task (e.g. enumeration) blocks the
                           sssd_be process, sssd_be can deadlock
- Also Require a new-enough version of selinux-policy so that setpgid() by sssd
  is allowed - Resolves: rhbz#1405584 - SSH: default_domain_suffix is not being used
                           for users' authorized keys - Resolves: rhbz#1404340 - Use-after free in resolver in case the fd is
                           writeable and readable at the same time - Resolves: rhbz#1398673 - autofs map resolution doesn't work offline - Resolves: rhbz#1398169 - sssd fails to start after upgrading to RHEL 7.3 - Resolves: rhbz#1392946 - sudo: ignore case on case insensitive domains - Resolves: rhbz#1393730 - No supplementary groups are resolved for users
                           in nested OUs when domain stanza differs from AD
                           domain - Related: rhbz#1396486 - bz - ldap group names don't resolve after
                          upgrading sssd to 1.14.0 if ldap_nesting_level
                          is set to 0 - Related: rhbz#1396485 - sssd_be keeps crashing - Revert the fix for ignoring sudoUser case as it breaks processing
  of rules that completely lack a sudoUser attribute
- Related: rhbz#1392946 - sudo: ignore case on case insensitive domains - Resolves: rhbz#1392946 - sudo: ignore case on case insensitive domains - Resolves: rhbz#1392893 - IPA: Uninitialized variable during subdomain check - Resolves: rhbz#1392896 - AD provider: SSSD does not retrieve a domain-local
                           group with the AD provider when following AGGUDLP
                           group structure across domains - Resolves: rhbz#1376831 - sssd-common is missing dependency on sssd-sudo - Resolves: rhbz#1371631 - login using gdm calls for gdm-smartcard when
                           smartcard authentication is not enabled - Resolves: rhbz#1373420 - sss_override fails to export - Resolves: rhbz#1375299 - sss_groupshow <user> fails with error "No such
                           group in local domain. Printing groups only
                           allowed in local domain" - Resolves: rhbz#1375182 - SSSD goes offline when the LDAP server returns
                           sizelimit exceeded - Resolves: rhbz#1372753 - Access denied for user when access_provider =
                           krb5 is set in sssd.conf - Resolves: rhbz#1373444 - unable to create group in sssd cache
- Resolves: rhbz#1373577 - unable to add local user in sssd to a group in sssd - Resolves: rhbz#1369118 - Don't enable the default shadowtils domain in RHEL - Fix permissions for the private pipe directory
- Resolves: rhbz#1362716 - selinux avc denial for vsftp login as ipa user - Resolves: rhbz#1371977 - resolving IPA nested user groups is broken in 1.14 - Resolves: rhbz#1368496 - sssd is not able to authenticate with alias - Resolves: rhbz#1371152 - SSSD qualifies principal twice in IPA-AD trust
                           if the principal attribute doesn't exist on the
                           AD side - Apply forgotten patch
- Resolves: rhbz#1368496 - sssd is not able to authenticate with alias
- Resolves: rhbz#1366470 - sssd: throw away the timestamp cache if
                           re-initializing the persistent cache
- Fix deleting non-existent secret
- Related: rhbz#1311056 - Add a Secrets as a Service component - Resolves: rhbz#1362716 - selinux avc denial for vsftp login as ipa user - Resolves: rhbz#1368496 - sssd is not able to authenticate with alias - Resolves: rhbz#1364033 - sssd exits if clock is adjusted backwards
                           after boot - Resolves: rhbz#1362023 - SSSD fails to start when ldap_user_extra_attrs
                           contains mail - Resolves: rhbz#1368324 - libsss_autofs.so is packaged in two packages
                           sssd-common and libsss_autofs - Fix RPM scriptlet plumbing for the sssd-secrets responder
- Related: rhbz#1311056 - Add a Secrets as a Service component - Add socket-activation plumbing for the sssd-secrets responder
- Related: rhbz#1311056 - Add a Secrets as a Service component - Own the secrets directory
- Related: rhbz#1311056 - Add a Secrets as a Service component - Resolves: rhbz#1268874 - Add an option to disable checking for trusted
                           domains in the subdomains provider - Resolves: rhbz#1271280 - sssd stores and returns incorrect information
                           about empty netgroup (ldap-server: 389-ds) - Resolves: rhbz#1290500 - [feat] command to manually list
                           fo_add_server_to_list information - Add several small fixes related to the config API
- Related: rhbz#1072458 - [RFE] SSSD configuration file test tool (sssd_check) - Resolves: rhbz#1349900 - gpo search errors out and gpo_cache file is
                           never created - Fix regressions in the simple access provider
- Resolves: rhbz#1360806 - sssd does not start if sub-domain user is used
                           with simple access provider
- Apply a number of specfile patches to better match the upstream spefile
- Related: rhbz#1290381 - Rebase SSSD to 1.14.x in RHEL-7.3 - Cherry-pick patches from upstream that fix several regressions
- Avoid checking local users in all cases
- Resolves: rhbz#1353951 - sssd_pam leaks file descriptors - Resolves: rhbz#1364118 - [abrt] [faf] sssd: unknown function():
                           /usr/libexec/sssd/sssd_nss killed by 11
- Resolves: rhbz#1361563 - Wrong pam error code returned for password
                           change in offline mode - Resolves: rhbz#1309745 - Support multiple principals for IPA users - Resolves: rhbz#1304992 - Handle overriden name of members in the
                           memberUid attribute - handle unresolvable sites more gracefully
- Resolves: rhbz#1346011 - sssd is looking at a server in the GC of a
                           subdomain, not the root domain.
- fix compilation warnings in unit tests - fix capaths output
- Resolves: rhbz#1344940 - GSSAPI error causes failures for child domain
                           user logins across IPA - AD trust
- also fix Coverity issues in the secrets responder and suppress noisy
  debug messages when setting the timestamp cache - Resolves: rhbz#1356577 - sssctl: Time stamps without time zone information - Resolves: rhbz#1354414 - New or modified ID-View User overrides are not
                           visible unless rm -f /var/lib/sss/db/*cache* - Resolves: rhbz#1211631 - [RFE] Support of UPN for IdM trusted domains - Resolves: rhbz#1350520 - [abrt] sssd-common: ipa_dyndns_update_send():
                           sssd_be killed by SIGSEGV - Resolves: rhbz#1349882 - sssd does not work under non-root user
- Also cherry-pick a few patches from upstream to fix config schema
- Related: rhbz#1072458 - [RFE] SSSD configuration file test tool (sssd_check) - Sync a few minor patches from upstream
- Fix sssctl manpage
- Fix nss-tests unit test on big-endian machines
- Fix several issues in the config schema
- Related: rhbz#1072458 - [RFE] SSSD configuration file test tool (sssd_check) - Bundle http-parser
- Resolves: rhbz#1311056 - Add a Secrets as a Service component - Sync a few minor patches from upstream
- Fix a failover issue
- Resolves: rhbz#1334749 - sssd fails to mark a connection as bad on
                           searches that time out - Explicitly BuildRequire newer ding-libs
- Resolves: rhbz#1072458 - [RFE] SSSD configuration file test tool (sssd_check) - New upstream release 1.14.0
- Resolves: rhbz#1290381 - Rebase SSSD to 1.14.x in RHEL-7.3
- Resolves: rhbz#835492 - [RFE] SSSD admin tool request - force reload
- Resolves: rhbz#1072458 - [RFE] SSSD configuration file test tool (sssd_check)
- Resolves: rhbz#1278691 - Please fix rfc2307 autofs schema defaults
- Resolves: rhbz#1287209 - default_domain_suffix Appended to User Name
- Resolves: rhbz#1300663 - Improve sudo protocol to support configurations
                           with default_domain_suffix
- Resolves: rhbz#1312275 - Support authentication indicators from IPA - Resolves: rhbz#1290381 - Rebase SSSD to 1.14.x in RHEL-7.3
- Resolves: rhbz#790113 - [RFE] "include" directive in sssd.conf
- Resolves: rhbz#874985 - [RFE] AD provider support for automount lookups
- Resolves: rhbz#879333 - [RFE] SSSD admin tool request - status overview
- Resolves: rhbz#1140022 - [RFE]Allow sssd to add a new option that would
                           specify which server to update DNS with
- Resolves: rhbz#1290380 - RFE: Improve SSSD performance in large
                           environments
- Resolves: rhbz#883886 - sssd: incorrect checks on length values during
                          packet decoding
- Resolves: rhbz#988207 - sssd does not detail which line in configuration
                          is invalid
- Resolves: rhbz#1007969 - sssd_cache does not remove have an option to
                           remove the sssd database
- Resolves: rhbz#1103249 - PAC responder needs much time to process large
                           group lists
- Resolves: rhbz#1118257 - Users in ipa groups, added to netgroups are
                           not resovable
- Resolves: rhbz#1269018 - Too much logging from sssd_be
- Resolves: rhbz#1293695 - sssd mixup nested group from AD trusted domains
- Resolves: rhbz#1308935 - After removing certificate from user in IPA
                           and even after sss_cache, FindByCertificate
                           still finds the user
- Resolves: rhbz#1315766 - SSSD PAM module does not support multiple
                           password prompts (e.g. Password + Token) with sudo
- Resolves: rhbz#1316164 - SSSD fails to process GPO from Active Directory
- Resolves: rhbz#1322458 - sssd_be[11010]: segfault at 0 ip 00007ff889ff61bb
                           sp 00007ffc7d66a3b0 error 4 in
                           libsss_ipa.so[7ff889fcf000+5d000] - Resolves: rhbz#1290381 - Rebase SSSD to 1.14.x in RHEL-7.3
- The rebase includes fixes for the following bugzillas:
- Resolves: rhbz#789477 - [RFE] SUDO: Support the IPA schema
- Resolves: rhbz#1059972 - RFE: SSSD: Automatically assign new slices for
                           any AD domain
- Resolves: rhbz#1233200 - man sssd.conf should clarify details about
                           subdomain_inherit option.
- Resolves: rhbz#1238144 - Need better libhbac debuging added to sssd
- Resolves: rhbz#1265366 - sss_override segfaults when accidentally adding
                           --help flag to some commands
- Resolves: rhbz#1269512 - sss_override: memory violation
- Resolves: rhbz#1278566 - crash in sssd when non-Englsh locale is used
                           and pam_strerror prints non-ASCII characters
- Resolves: rhbz#1283686 - groups get deleted from the cache
- Resolves: rhbz#1290378 - Smart Cards: Certificate in the ID View
- Resolves: rhbz#1292238 - extreme memory usage in libnfsidmap sss.so
                           plug-in when resolving groups with many members
- Resolves: rhbz#1292456 - sssd_be AD segfaults on missing A record
- Resolves: rhbz#1294670 - Local users with local sudo rules causes
                           LDAP queries
- Resolves: rhbz#1296618 - Properly remove OriginalMemberOf attribute in
                           SSSD cache if user has no secondary groups anymore
- Resolves: rhbz#1299553 - Cannot retrieve users after upgrade from 1.12
                           to 1.13
- Resolves: rhbz#1302821 - Cannot start sssd after switching to non-root
- Resolves: rhbz#1310877 - [RFE] Support Automatic Renewing of Kerberos
                           Host Keytabs
- Resolves: rhbz#1313014 - sssd is not closing sockets properly
- Resolves: rhbz#1318996 - SSSD does not fail over to next GC
- Resolves: rhbz#1327270 - local overrides: issues with sub-domain users
                           and mixed case names
- Resolves: rhbz#1342547 - sssd-libwbclient: wbcSidsToUnixIds should not
                           fail on lookup errors - Build the PAC plugin with krb5-1.14
- Related: rhbz#1336688 - sssd tries to resolve global catalog servers
                          from AD forest sub-domains in AD-IPA trust setup - Resolves: rhbz#1336688 - sssd tries to resolve global catalog servers
                           from AD forest sub-domains in AD-IPA trust setup - Resolves: rhbz#1290853 - [sssd] Trusted (AD) user's info stays in sssd
                           cache for much more than expected. - Resolves: rhbz#1336706 - sssd_nss memory usage keeps growing when trying
                           to retrieve non-existing netgroups - Resolves: rhbz#1296902 - In IPA-AD trust environment access is granted
                           to AD user even if the user is disabled on AD. - Resolves: rhbz#1334159 - IPA provider crashes if a netgroup from a
                           trusted domain is requested - Resolves: rhbz#1308913 - sssd be memory leak in sssd's memberof plugin
- More patches from upstream related to the memory leak - Resolves: rhbz#1308913 - sssd be memory leak in sssd's memberof plugin - Resolves: rhbz#1300740 - [RFE] IPA: resolve external group memberships
                           of IPA groups during getgrnam and getgrgid - Resolves: rhbz#1284814  - sssd: [sysdb_add_user] (0x0400): Error: 17 - Resolves: rhbz#1270827 - local overrides: don't contact server with
                           overridden name/id - Resolves: rhbz#1267837 - sssd_be crashed in ipa_srv_ad_acct_lookup_step - Resolves: rhbz#1267176 - Memory leak / possible DoS with krb auth. - Resolves: rhbz#1267836 - PAM responder crashed if user was not set - Resolves: rhbz#1266107 - AD: Conditional jump or move depends on
                           uninitialised value - Resolves: rhbz#1250135 - Detect re-established trusts in the IPA
                           subdomain code - Fix a Coverity warning in dyndns code
- Resolves: rhbz#1261155 - nsupdate exits on first GSSAPI error instead
                           of processing other commands - Resolves: rhbz#1261155 - nsupdate exits on first GSSAPI error instead
                           of processing other commands - Resolves: rhbz#1263735 - Could not resolve AD user from root domain - Remove -d from sss_override manpage
- Related: rhbz#1259512 - sss_override : The local override user is not found - Patches required for better handling of failover with one-way trusts
- Related: rhbz#1250135 - Detect re-established trusts in the IPA subdomain
                          code - Resolves: rhbz#1263587 - sss_override --name doesn't work with RFC2307
                           and ghost users - Resolves: rhbz#1259512 - sss_override : The local override user is not found - Resolves: rhbz#1260027 - sssd_be memory leak with sssd-ad in GPO code - Resolves: rhbz#1256398 - sssd cannot resolve user names containing
                           backslash with ldap provider - Resolves: rhbz#1254189 - sss_override contains an extra parameter --debug
                           but is not listed in the man page or in
                           the arguments help - Resolves: rhbz#1254518 - Fix crash in nss responder - Support import/export for local overrides
- Support FQDNs for local overrides
- Resolves: rhbz#1254184 - sss_override does not work correctly when
                           'use_fully_qualified_names = True' - Resolves: rhbz#1244950 - Add index for 'objectSIDString' and maybe to
                           other cache attributes - Resolves: rhbz#1250415 - sssd: p11_child hardening - Related: rhbz#1250135 - Detect re-established trusts in the IPA
                          subdomain code - Resolves: rhbz#1202724 - [RFE] Add a way to lookup users based on CAC
                           identity certificates - Resolves: rhbz#1232950 - [IPA/IdM] sudoOrder not honored as expected - Fix wildcard_limit=0
- Resolves: rhbz#1206571 - [RFE] Expose D-BUS interface - Fix race condition in invalidating the memory cache
- Related: rhbz#1206575 - [RFE] The fast memory cache should cache initgroups - Resolves: rhbz#1249015 - KDC proxy not working with SSSD krb5_use_kdcinfo
                           enabled - Bump release number
- Related: rhbz#1246489 - sss_obfuscate fails with "ImportError: No module
                          named pysss" - Fix missing dependency of sssd-tools
- Resolves: rhbz#1246489 - sss_obfuscate fails with "ImportError: No module
                           named pysss" - More memory cache related fixes
- Related: rhbz#1206575 - [RFE] The fast memory cache should cache initgroups - Remove binary blob from SC patches as patch(1) can't handle those
- Related: rhbz#854396 - [RFE] Support for smart cards - Resolves: rhbz#1244949 - getgrgid for user's UID on a trust client
                           prevents getpw* - Fix memory cache integration tests
- Resolves: rhbz#1206575 - [RFE] The fast memory cache should cache initgroups
- Resolves: rhbz#854396 - [RFE] Support for smart cards - Remove OTP from PAM stack correctly
- Related: rhbz#1200873 - [RFE] Allow smart multi step prompting when
                          user logs in with password and token code from IPA
- Handle sssd-owned keytabs when sssd runs as root
- Related: rhbz#1205144 - RFE: Support one-way trusts for IPA - Resolves: rhbz#1183747 - [FEAT] UID and GID mapping on individual clients - Resolves: rhbz#1206565 - [RFE] Add dualstack and multihomed support
- Resolves: rhbz#1187146 - If v4 address exists, will not create nonexistant
                           v6 in ipa domain - Resolves: rhbz#1242942 - well-known SID check is broken for NetBIOS prefixes - Resolves: rhbz#1234722 - sssd ad provider fails to start in rhel7.2 - Add support for InfoPipe wildcard requests
- Resolves: rhbz#1206571 - [RFE] Expose D-BUS interface - Also package the initgr memcache
- Related: rhbz#1205554 - Rebase SSSD to 1.13.x - Rebase to 1.13.0 upstream
- Related: rhbz#1205554 - Rebase SSSD to 1.13.x
- Resolves: rhbz#910187 - [RFE] authenticate against cache in SSSD
- Resolves: rhbz#1206575 - [RFE] The fast memory cache should cache initgroups - Don't default to SSSD user
- Related: rhbz#1205554 - Rebase SSSD to 1.13.x - Related: rhbz#1205554 - Rebase SSSD to 1.13.x
- GPO default should be permissve - Resolves: rhbz#1205554 - Rebase SSSD to 1.13.x
- Relax the libldb requirement
- Resolves: rhbz#1221992 - sssd_be segfault at 0 ip sp error 6 in
                           libtevent.so.0.9.21
- Resolves: rhbz#1221839 - SSSD group enumeration inconsistent due to
                           binary SIDs
- Resolves: rhbz#1219285 - Unable to resolve group memberships for AD
                           users when using sssd-1.12.2-58.el7_1.6.x86_64
                           client in combination with
                           ipa-server-3.0.0-42.el6.x86_64 with AD Trust
- Resolves: rhbz#1217559 - [RFE] Support GPOs from different domain controllers
- Resolves: rhbz#1217350 - ignore_group_members doesn't work for subdomains
- Resolves: rhbz#1217127 - Override for IPA users with login does not list
                           user all groups
- Resolves: rhbz#1216285 - autofs provider fails when default_domain_suffix
                           and use_fully_qualified_names set
- Resolves: rhbz#1214719 - Group resolution is inconsistent with group
                           overrides
- Resolves: rhbz#1214718 - Overridde with --login fails trusted adusers
                           group membership resolution
- Resolves: rhbz#1214716 - idoverridegroup for ipa group with --group-name
                           does not work
- Resolves: rhbz#1214337 - Overrides with --login work in second attempt
- Resolves: rhbz#1212489 - Disable the cleanup task by default
- Resolves: rhbz#1211830 - external users do not resolve with
                           "default_domain_suffix" set in IPA server sssd.conf
- Resolves: rhbz#1210854 - Only set the selinux context if the context
                           differs from the local one
- Resolves: rhbz#1209483 - When using id_provider=proxy with
                           auth_provider=ldap, it does not work as expected
- Resolves: rhbz#1209374 - Man sssd-ad(5) lists Group Policy Management
                           Editor naming for some policies but not for all
- Resolves: rhbz#1208507 - sysdb sudo search doesn't escape special characters
- Resolves: rhbz#1206571 - [RFE] Expose D-BUS interface
- Resolves: rhbz#1206566 - SSSD does not update Dynamic DNS records if
                           the IPA domain differs from machine hostname's
                           domain
- Resolves: rhbz#1206189 - [bug] sssd always appends default_domain_suffix
                           when checking for host keys
- Resolves: rhbz#1204203 - sssd crashes intermittently
- Resolves: rhbz#1203945 - [FJ7.0 Bug]: getgrent returns error because
                           sss is written in nsswitch.conf as default
- Resolves: rhbz#1203642 - GPO access control looks for computer object
                           in user's domain only
- Resolves: rhbz#1202245 - SSSD's HBAC processing is not permissive enough
                           with broken replication entries
- Resolves: rhbz#1201271 - sssd_nss segfaults if initgroups request is by
                           UPN and doesn't find anything
- Resolves: rhbz#1200873 - [RFE] Allow smart multi step prompting when
                           user logs in with password and token code from IPA
- Resolves: rhbz#1199541 - Read and use the TTL value when resolving a
                           SRV query
- Resolves: rhbz#1199533 - [RFE] Implement background refresh for users,
                           groups or other cache objects
- Resolves: rhbz#1199445 - Does sssd-ad use the most suitable attribute
                           for group name?
- Resolves: rhbz#1198477 - ccname_file_dummy is not unlinked on error
- Resolves: rhbz#1187103 - [RFE] User's home directories are not taken
                           from AD when there is an IPA trust with AD
- Resolves: rhbz#1185536 - In ipa-ad trust, with 'default_domain_suffix' set
                           to AD domain, IPA user are not able to log unless
                           use_fully_qualified_names is set
- Resolves: rhbz#1175760 - [RFE] Have OpenLDAP lock out ssh keys when
                           account naturally expires
- Resolves: rhbz#1163806 - [RFE]ad provider dns_discovery_domain option:
                           kerberos discovery is not using this option
- Resolves: rhbz#1205160 - Complain loudly if backend doesn't start due
                           to missing or invalid keytab - Resolves: rhbz#1226119 - Properly handle AD's binary objectGUID - Filter out domain-local groups during AD initgroups operation
- Related: rhbz#1201840 - SSSD downloads too much information when fetching
                          information about groups - Resolves: rhbz#1201840 - SSSD downloads too much information when fetching
                           information about groups - Initialize variable in the views code in one success and one failure path
- Resolves: rhbz#1202170 - sssd_be segfault on IPA(when auth with AD
                           trusted domain) client at
                           src/providers/ipa/ipa_s2n_exop.c:1605 - Resolves: rhbz#1202170 - sssd_be segfault on IPA(when auth with AD
                           trusted domain) client at
                           src/providers/ipa/ipa_s2n_exop.c:1605 - Handle case where there is no default and no rules
- Resolves: rhbz#1192314 - With empty ipaselinuxusermapdefault security
                           context on client is staff_u - Set a pointer in ldap_child to NULL to avoid warnings
- Related: rhbz#1198759 - ccname_file_dummy is not unlinked on error - Resolves: rhbz#1199143 - With empty ipaselinuxusermapdefault security
                           context on client is staff_u - Resolves: rhbz#1198759 - ccname_file_dummy is not unlinked on error - Run the restart in sssd-common posttrans
- Explicitly require libwbclient
- Resolves: rhbz#1187113 - sssd deamon was not running after RHEL 7.1 upgrade - Resolves: rhbz#1187113 - sssd deamon was not running after RHEL 7.1 upgrade - Fix endianess bug in fill_id()
- Related: rhbz#1109331 - [RFE] Allow SSSD to be used with smbd shares - Resolves: rhbz#1168904 - gid is overridden by uid in default trust view - Resolves: rhbz#1187192 - IPA initgroups don't work correctly in
                           non-default view - Resolves: rhbz#1184982 - Need to set different umask in selinux_child - Bump the release number
- Related: rhbz#1184140 - Users saved throug extop don't have the
                          originalMemberOf attribute - Add a patch dependency
- Related: rhbz#1184140 - Users saved throug extop don't have the
                          originalMemberOf attribute - Process ghost members only once
- Fix processing of universal groups with members from different domains
- Related: rhbz#1168904 - gid is overridden by uid in default trust view - Related: rhbz#1184140 - Users saved throug extop don't have the
                          originalMemberOf attribute - Resolves: rhbz#1185188 - Uncached SIDs cannot be resolved - Handle GID override in MPG domains
- Handle views with mixed-case domains
- Related: rhbz#1168904 - gid is overridden by uid in default trust view - Open socket to the PAC responder in krb5_child before dropping root
- Related: rhbz#1184140 - Users saved throug extop don't have the
                          originalMemberOf attribute - Resolves: rhbz#1184140 - Users saved throug extop don't have the
                           originalMemberOf attribute - Resolves: rhbz#1182183 - pam_sss(sshd:auth): authentication failure with
                           user from AD - Resolves: rhbz#889206 - On clock skew sssd returns system error - Related: rhbz#1168904 - gid is overridden by uid in default trust view - Resolves: rhbz#1177140 - gpo_child fails if "log level" is enabled in smb.conf
- Related: rhbz#1168904 - gid is overridden by uid in default trust view - Resolves: rhbz#1175408 - SSSD should not fail authentication when only allow
                           rules are used
- Resolves: rhbz#1175705 - sssd-libwbclient conflicts with Samba's and causes
                           crash in wbinfo
                           - in addition to the patch libwbclient.so is
                             filtered out of the Provides list of the package - Resolves: rhbz#1171215 - Crash in function get_object_from_cache
- Resolves: rhbz#1171383 - getent fails for posix group with AD users after
                           login
- Resolves: rhbz#1171382 - getent of AD universal group fails after group users
                           login
- Resolves: rhbz#1170300 - Access is not rejected for disabled domain
- Resolves: rhbz#1162486 - Error processing external groups with
                           getgrnam/getgrgid in the server mode
- Resolves: rhbz#1168904 - gid is overridden by uid in default trust view - Resolves: rhbz#1169459 - sssd-ad: The man page description to enable GPO HBAC
                           Policies are unclear
- Related: rhbz#1113783 - sssd should run under unprivileged user - Rebuild to add several forgotten Patch entries
- Resolves: rhbz#1173482 - MAN: Document that only user names are checked
                           for pam_trusted_users
- Resolves: rhbz#1167324 - pam_sss domains option: User auth should fail
                           when domains=<emtpy value> - Remove Coverity warnings in krb5_child code
- Related: rhbz#1113783 - sssd should run under unprivileged user - Resolves: rhbz#1173482 - MAN: Document that only user names are checked
                           for pam_trusted_users
- Resolves: rhbz#1167324 - pam_sss domains option: User auth should fail
                           when domains=<emtpy value> - Don't error out on chpass with OTPs
- Related: rhbz#1109756 - Rebase SSSD to 1.12 - Resolves: rhbz#1124320 - [FJ7.0 Bug]: getgrent returns error because sss
                           is written in nsswitch.conf as default. - Resolves: rhbz#1169739 - selinuxusermap rule does not apply to trusted
                           AD users
- Enable running unit tests without cmocka
- Related: rhbz#1113783 - sssd should run under unprivileged user - krb5_child and ldap_child do not call Kerberos calls as root
- Related: rhbz#1113783 - sssd should run under unprivileged user - Resolves: rhbz#1168735 - The Kerberos provider is not properly views-aware - Fix typo in libwbclient-devel alternatives invocation
- Related: rhbz#1109331 - [RFE] Allow SSSD to be used with smbd shares - Resolves: rhbz#1166727 - pam_sss domains option: Untrusted users from
                           the same domain are allowed to auth. - Handle migrating clients between views
- Related: rhbz#891984 - [RFE] ID Views: Support migration from the sync
                         solution to the trust solution - Use alternatives for libwbclient
- Related: rhbz#1109331 - [RFE] Allow SSSD to be used with smbd shares - Resolves: rhbz#1165794 - sssd does not work with custom value of option
                           re_expression - Add an option that describes where to put generated krb5 files to
- Related: rhbz#1135043 - [RFE] Implement localauth plugin for MIT krb5 1.12 - Handle IPA group names returned from the extop plugin
- Related: rhbz#891984 - [RFE] ID Views: Support migration from the sync
                         solution to the trust solution - Resolves: rhbz#1165792 - automount segfaults in sss_nss_check_header - Resolves: rhbz#1163742 - "debug_timestamps = false" and "debug_microseconds
                           = true" do not work after enabling journald
                           with sssd. - Resolves: rhbz#1153593 - Manpage description of case_sensitive=preserving
                          is incomplete - Support views for IPA users
- Related: rhbz#891984 - [RFE] ID Views: Support migration from the sync
                         solution to the trust solution - Update man page to clarify TGs should be disabled with a custom search base
- Related: rhbz#1161741 - TokenGroups for LDAP provider breaks in corner cases - Use upstreamed patches for the rootless sssd
- Related: rhbz#1113783 - sssd should run under unprivileged user - Resolves: rhbz#1153603 - Proxy Provider: Fails to lookup case sensitive
                           users and groups with case_sensitive=preserving - Resolves: rhbz#1161741 - TokenGroups for LDAP provider breaks in corner cases - Resolves: rhbz#1162480 - dereferencing failure against openldap server - Move adding the user from pretrans to pre, copy adding the user to
  sssd-krb5-common and sssd-ipa as well in order to work around yum
  ordering issue
- Related: rhbz#1113783 - sssd should run under unprivileged user - Resolves: rhbz#1113783 - sssd should run under unprivileged user - Fix two regressions in the new selinux_child process
- Related: rhbz#1113783 - sssd should run under unprivileged user
- Resolves: rhbz#1132365 - Remove password from the PAM stack if OTP is used - Include the ldap_child and selinux_child patches for rootless sssd
- Related: rhbz#1113783 - sssd should run under unprivileged user - Support overriding SSH public keys with views
- Support extended attributes via the extop plugin
- Related: rhbz#1109756 - Rebase SSSD to 1.12
- Resolves: rhbz#1137010 - disable midpoint refresh for netgroups if ptask
                           refresh is enabled - Resolves: rhbz#1153518 - service lookups returned in lowercase with
                           case_sensitive=preserving
- Resolves: rhbz#1158809 - Enumeration shows only a single group multiple
                           times - Include the responder and packaging patches for rootless sssd
- Related: rhbz#1113783 - sssd should run under unprivileged user - Amend the sssd-ldap man page with info about lockout setup
- Related: rhbz#1109756 - Rebase SSSD to 1.12
- Resolves: rhbz#1137014 - Shell fallback mechanism in SSSD 
- Resolves: rhbz#790854 - 4 functions with reference leaks within sssd (src/python/pyhbac.c) - Fix regressions caused by views patches when SSSD is connected to a
  pre-4.0 IPA server
- Related: rhbz#1109756 - Rebase SSSD to 1.12 - Add the low-level server changes for running as unprivileged user
- Package the libsss_semange library needed for SELinux label changes
- Related: rhbz#1113783 - sssd should run under unprivileged user 
- Resolves: rhbz#1113784 - sssd should audit selinux user map changes - Use libsemanage for SELinux label changes
- Resolves: rhbz#1113784 - sssd should audit selinux user map changes - Rebase SSSD to 1.12.2
- Related: rhbz#1109756 - Rebase SSSD to 1.12 - Sync with upstream
- Related: rhbz#1109756 - Rebase SSSD to 1.12 - Rebuild against ding-libs with fixed SONAME
- Related: rhbz#1109756 - Rebase SSSD to 1.12 - Rebase SSSD to 1.12.1
- Related: rhbz#1109756 - Rebase SSSD to 1.12 - Require ldb 2.1.17
- Related: rhbz#1133914 - Rebase libldb to version 1.1.17 or newer - Fix fully qualified IFP lookups
- Related: rhbz#1109756 - Rebase SSSD to 1.12 - Rebase SSSD to 1.12.0
- Related: rhbz#1109756 - Rebase SSSD to 1.12 - Squash in upstream review comments about the PAC patch
- Related: rhbz#1097286 - Expanding home directory fails when the request
                          comes from the PAC responder - Backport a patch to allow krb5-utils-test to run as root
- Related: rhbz#1097286 - Expanding home directory fails when the request
                          comes from the PAC responder - Resolves: rhbz#1097286 - Expanding home directory fails when the request
                           comes from the PAC responder - Fix a DEBUG message, backport two related fixes
- Related: rhbz#1090653 - segfault in sssd_be when second domain tree
                           users are queried while joined to child domain - Resolves: rhbz#1090653 - segfault in sssd_be when second domain tree
                           users are queried while joined to child domain - Resolves: rhbz#1082191 - RHEL7 IPA selinuxusermap hbac rule not always
                           matching - Resolves: rhbz#1077328 - other subdomains are unavailable when joined
                           to a subdomain in the ad forest - Resolves: rhbz#1078877 - Valgrind: Invalid read of int while processing
                           netgroup - Resolves: rhbz#1075092 - Password change w/ OTP generates error on success - Resolves: rhbz#1078840 -  Error during password change - Resolves: rhbz#1075663 - SSSD should create the SELinux mapping file
                           with format expected by pam_selinux - Related: rhbz#1075621 - Add another Kerberos error code to trigger IPA
                          password migration - Related: rhbz#1073635 - IPA SELinux code looks for the host in the wrong
                          sysdb subdir when a trusted user logs in - Related: rhbz#1066096 - not retrieving homedirs of AD users with
                          posix attributes - Related: rhbz#1072995 -  AD group inconsistency when using AD provider
                           in sssd-1.11-40 - Resolves: rhbz#1073631 - sssd fails to handle expired passwords
                           when OTP is used - Resolves: rhbz#1072067 - SSSD Does not cache SELinux map from FreeIPA
                           correctly - Resolves: rhbz#1071903 - ipa-server-mode: Use lower-case user name
                           component in home dir path - Resolves: rhbz#1068725 - Evaluate usage of sudo LDAP provider together
                           with the AD provider - Fix idmap documentation
- Bump idmap version info
- Related: rhbz#1067361 - Check IPA idranges before saving them to the cache - Pull some follow up man page fixes from upstream
- Related: rhbz#1060389 - Document that `sssd` cache needs to be cleared
                          manually, if ID mapping configuration changes
- Related: rhbz#1064908 - MAN: Remove misleading memberof example from
                          ldap_access_filter example - Resolves: rhbz#1060389 - Document that `sssd` cache needs to be cleared
                           manually, if ID mapping configuration changes - Resolves: rhbz#1064908 - MAN: Remove misleading memberof example from
                           ldap_access_filter example - Resolves: rhbz#1068723 - Setting int option to 0 yields the default value - Resolves: rhbz#1067361 - Check IPA idranges before saving them to the cache - Resolves: rhbz#1067476 - SSSD pam module accepts usernames with leading
                           spaces - Resolves: rhbz#1033069 - Configuring two different provider types might
                           start two parallel enumeration tasks - Resolves: rhbz#1068640 - 'IPA: Don't call tevent_req_post outside _send'
                           should be added to RHEL7 - Resolves: rhbz#1063977 - SSSD needs to enable FAST by default - Resolves: rhbz#1064582 - sss_cache does not reset the SYSDB_INITGR_EXPIRE
                           attribute when expiring users - Resolves: rhbz#1033081 - Implement heuristics to detect if POSIX attributes
                           have been replicated to the Global Catalog or not - Resolves: rhbz#872177 - [RFE] subdomain homedir template should be
                          configurable/use flatname by default - Resolves: rhbz#1059753 - Warn with a user-friendly error message when
                           permissions on sssd.conf are incorrect - Resolves: rhbz#1037653 - Enabling ldap_id_mapping doesn't exclude
                           uidNumber in filter - Resolves: rhbz#1059253 - Man page states default_shell option supersedes
                           other shell options but in fact override_shell does.
- Use the right domain for AD site resolution
- Related: rhbz#743503 -  [RFE] sssd should support DNS sites - Resolves: rhbz#1028039 - AD Enumeration reads data from LDAP while
                           regular lookups connect to GC - Resolves: rhbz#877438 - sudoNotBefore/sudoNotAfter not supported by sssd
                          sudoers plugin - Mass rebuild 2014-01-24 - Resolves: rhbz#1054639 - sssd_be aborts a request if it doesn't match
                           any configured idmap domain - Resolves: rhbz#1054899 - explicitly suggest krb5_auth_timeout in a loud
                           DEBUG message in case Kerberos authentication
                           times out - Resolves: rhbz#1037653 - Enabling ldap_id_mapping doesn't exclude
                           uidNumber in filter - Resolves: rhbz#1051360 - [FJ7.0 Bug]: [REG] sssd_be crashes when
                           ldap_search_base cannot be parsed.
- Fix a typo in the man page
- Related: rhbz#1034920 - RHEL7 sssd not setting IPA AD trusted user homedir - Resolves: rhbz#1054639 - sssd_be aborts a request if it doesn't match
                           any configured idmap domain
- Fix return value when searching for AD domain flat names
- Resolves: rhbz#1048102 - Access denied for users from gc domain when
                           using format DOMAIN\user - Resolves: rhbz#1034920 - RHEL7 sssd not setting IPA AD trusted user homedir - Resolves: rhbz#1048102 - Access denied for users from gc domain when
                           using format DOMAIN\user - Resolves: rhbz#1053106 - sssd ad trusted sub domain do not inherit
                           fallbacks and overrides settings - Resolves: rhbz#1051016 - FAST does not work in SSSD 1.11.2 in Fedora 20 - Resolves: rhbz#1033133 - "System Error" when invalid ad_access_filter
                            is used - Resolves: rhbz#1032983 - sssd_be crashes when ad_access_filter uses
                           FOREST keyword.
- Fix two memory leaks in the PAC responder (Related: rhbz#991065) - Resolves: rhbz#1048184 - Group lookup does not return member with multiple
                           names after user lookup - Resolves: rhbz#1049533 - Group membership lookup issue - Mass rebuild 2013-12-27 - Resolves: rhbz#894068 - sss_cache doesn't support subdomains - Re-initialize subdomains after provider startup
- Related: rhbz#1038637 - If SSSD starts offline, subdomains list is
                          never read - The AD provider is able to resolve group memberships for groups with
  Global and Universal scope
- Related: rhbz#1033096 - tokenGroups do not work reliable with Global
                          Catalog - Resolves: rhbz#1033096 - tokenGroups do not work reliable with Global
                           Catalog
- Resolves: rhbz#1030483 - Individual group search returned multiple
                           results in GC lookups - Resolves: rhbz#1040969 - sssd_nss grows memory footprint when netgroups
                           are requested - Resolves: rhbz#1023409 - Valgrind sssd "Syscall param
                           socketcall.sendto(msg) points to uninitialised
                           byte(s)" - Resolves: rhbz#1037936 - sssd_be crashes occasionally - Resolves: rhbz#1038637 - If SSSD starts offline, subdomains list is
                           never read - Resolves: rhbz#1029631 - sssd_be crashes on manually adding a cleartext
                           password to ldap_default_authtok - Resolves: rhbz#1036758 - SSSD: Allow for custom attributes in RDN when
                           using id_provider = proxy - Resolves: rhbz#1034050 - Errors in domain log when saving user to sysdb - Resolves: rhbz#1036157 - sssd can't retrieve auto.master when using the
                           "default_domain_suffix" option in - Resolves: rhbz#1028057 - Improve detection of the right domain when
                           processing group with members from several domains - Resolves: rhbz#1033084 - sssd_be segfaults if empty grop is resolved
                           using ad_matching_rule - Resolves: rhbz#1031562 - Incorrect mention of access_filter in sssd-ad
                           manpage - Resolves: rhbz#991549 - sssd fails to retrieve netgroups with multiple
                          CN attributes - Skip netgroups that don't provide well-formed triplets
- Related: rhbz#991549 -  sssd fails to retrieve netgroups with multiple
                          CN attributes - New upstream release 1.11.2
- Remove upstreamed patches
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.11.2
- Resolves: rhbz#991065 - Resolves: rhbz#1019882 - RHEL7 ipa ad trusted user lookups failed with
                           sssd_be crash
- Resolves: rhbz#1002597 - ad: unable to resolve membership when user is
                           from different domain than group - New upstream release 1.11.1
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.11.1
- Resolves: rhbz#991065 - Rebase SSSD to 1.11.0 - New upstream release 1.11.0
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.11.0
- Resolves: rhbz#991065 - New upstream release 1.11 beta 2
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.11.0beta2
- Related: rhbz#991065 - Resolves: #906427 - Do not use lib64 in specfile for the nss and
                      pam libraries - Resolves: #983587 - sss_debuglevel did not increase verbosity in
                      sssd_pac.log - Resolves: #983580 - Netgroups should ignore the 'use_fully_qualified_names'
                      setting - Apply several important fixes from upstream 1.10 branch
- Related: #966757 - SSSD failover doesn't work if the first DNS server
                     in resolv.conf is unavailable - New upstream release 1.10.1
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.10.1 - Remove libcmocka dependency - sssd-tools should require sssd-common, not sssd - Move sssd_pac to the sssd-ipa and sssd-ad subpackages
- Trim out RHEL5-specific macros since we don't build on RHEL 5
- Trim out macros for Fedora older than F18
- Update libldb requirement to 1.1.16
- Trim RPM changelog down to the last year - Move sssd_pac to the sssd-krb5 subpackage - Fix Obsoletes: to account for dist tag
- Convert post and pre scripts to run on the sssd-common subpackage
- Remove old conversion from SYSV - New upstream release 1.10
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.10.0 - the cmocka toolkit exists only on selected arches - Apply a number of patches from upstream to fix issues found post-beta,
  in particular:
  -- segfault with a high DEBUG level
  -- Fix IPA password migration (upstream #1873)
  -- Fix fail over when retrying SRV resolution (upstream #1886) - Only BuildRequire libcmocka on Fedora - Fix typo in Requires that prevented an upgrade (#973916)
- Use a hardcoded version in Conflicts, not less-than-current - New upstream release 1.10 beta2
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.10.0beta2
- BuildRequire libcmocka-devel in order to run all upstream tests during build
- BuildRequire libnl3 instead of libnl1
- No longer BuildRequire initscripts, we no longer use /sbin/service
- Remove explicit krb5-libs >= 1.10 requires; this platform doensn't carry any
  older krb5-libs version - Enable hardened build for RHEL7 - Apply a couple of patches from upstream git that resolve crashes when
  ID mapping object was not initialized properly but needed later - Resolves: rhbz#961357 - Missing dyndns_update entry in sssd.conf during
                          realm join
- Resolves: rhbz#961278 - Login failure: Enterprise Principal enabled by
                          default for AD Provider
- Resolves: rhbz#961251 - sssd does not create user's krb5 ccache dir/file
                          parent directory when logging in - Explicitly Require libini_config >= 1.0.0.1 to work around a SONAME bug
  in ding-libs
- Fix SSH integration with fully-qualified domains
- Add the ability to dynamically discover the NetBIOS name - New upstream release 1.10 beta1
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.10.0beta1 - Add a patch to fix krb5 ccache creation issue with krb5 1.11 - New upstream release 1.10 alpha1
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.10.0alpha1 - Split internal helper libraries into a shared object
- Significantly reduce disk-space usage - Fix the Kerberos password expiration warning (#912223) - Do not write out dots in the domain-realm mapping file (#905650) - Include upstream patch to build with krb5-1.11 - Rebuild against new libldb - Fix build with new automake versions - Recreate Kerberos ccache directory if it's missing
- Resolves: rhbz#853558 - [sssd[krb5_child[PID]]]: Credential cache
                          directory /run/user/UID/ccdir does not exist - Fix changelog dates to make F19 rpmbuild happy - New upstream release 1.9.4 - New upstream release 1.9.3 - Resolve groups from AD correctly - Check the validity of naming context - Move the sss_cache tool to the main package - Include the 1.9.2 tarball - New upstream release 1.9.2 - New upstream release 1.9.1 - require the latest libldb - Use mcpath insted of mcachepath macro to be consistent with
  upsteam spec file - New upstream release 1.9.0 - New upstream release 1.9.0 rc1 - New upstream release 1.9.0 beta7
- obsoletes patches #1-#3 - Rebuild against libldb 1.12 - Rebuild against libldb 1.11 - Change the default ccache location to DIR:/run/user/${UID}/krb5cc
  and patch man page accordingly
- Resolves: rhbz#851304 - Rebuild against libldb 1.10 - Only create the SELinux login file if there are SELinux mappings on
  the IPA server - Don't discard HBAC rule processing result if SELinux is on
  Resolves: rhbz#846792 (CVE-2012-3462) - New upstream release 1.9.0 beta 6
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.9.0beta6
- A new option, override_shell was added. If this option is set, all users
  managed by SSSD will have their shell set to its value.
- Fixes for the support for setting default SELinux user context from FreeIPA.
- Fixed a regression introduced in beta 5 that broke LDAP SASL binds
- The SSSD supports the concept of a Primary Server and a Back Up Server in
  failover
- A new command-line tool sss_seed is available to help prime the cache with
  a user record when deploying a new machine
- SSSD is now able to discover and save the domain-realm mappings
  between an IPA server and a trusted Active Directory server.
- Packaging changes to fix ldconfig usage in subpackages (#843995)
- Rebuild against libldb 1.1.9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild - New upstream release 1.9.0 beta 5
- Obsoletes the patch for missing DP_OPTION_TERMINATOR in AD provider options
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.9.0beta5
- Many fixes for the support for setting default SELinux user context from
  FreeIPA, most notably fixed the specificity evaluation
- Fixed an incorrect default in the krb5_canonicalize option of the AD
  provider which was preventing password change operation
- The shadowLastChange attribute value is now correctly updated with the
  number of days since the Epoch, not seconds - Fix broken ARM build
- Add missing DP_OPTION_TERMINATOR in AD provider options - Own several directories create during make install (#839782) - New upstream release 1.9.0 beta 4
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.9.0beta4
- Add a new AD provider to improve integration with Active Directory 2008 R2
  or later servers
- SUDO integration was completely rewritten. The new implementation works
  with multiple domains and uses an improved refresh mechanism to download
  only the necessary rules
- The IPA authentication provider now supports subdomains
- Fixed regression for setups that were setting default_tkt_enctypes
  manually by reverting a previous workaround. - New upstream release 1.9.0 beta 3
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.9.0beta3
- Add a new PAC responder for dealing with cross-realm Kerberos trusts
- Terminate idle connections to the NSS and PAM responders - Switch unicode library from libunistring to Glib
- Drop unnecessary explicit Requires on keyutils
- Guarantee that versioned Requires include the correct architecture - Fix accidental disabling of the DIR cache support - New upstream release 1.9.0 beta 2
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.9.0beta2
- Add support for the Kerberos DIR cache for storing multiple TGTs
  automatically
- Major performance enhancement when storing large groups in the cache
- Major performance enhancement when performing initgroups() against Active
  Directory
- SSSDConfig data file default locations can now be set during configure for
  easier packaging - Fix regression in endianness patch - Rebuild SSSD against ding-libs 0.3.0beta1
- Fix endianness bug in service map protocol - Fix several regressions since 1.5.x
- Ensure that the RPM creates the /var/lib/sss/mc directory
- Add support for Netscape password warning expiration control
- Rebuild against libldb 1.1.6 - New upstream release 1.9.0 beta 1
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.9.0beta1
- Add native support for autofs to the IPA provider
- Support for ID-mapping when connecting to Active Directory
- Support for handling very large (> 1500 users) groups in Active Directory
- Support for sub-domains (will be used for dealing with trust relationships)
- Add a new fast in-memory cache to speed up lookups of cached data on
  repeated requests - New upstream release 1.8.3
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.8.3
- Numerous manpage and translation updates
- LDAP: Handle situations where the RootDSE isn't available anonymously
- LDAP: Fix regression for users using non-standard LDAP attributes for user
  information - New upstream release 1.8.2
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.8.2
- Several fixes to case-insensitive domain functions
- Fix for GSSAPI binds when the keytab contains unrelated principals
- Fixed several segfaults
- Workarounds added for LDAP servers with unreadable RootDSE
- SSH knownhostproxy will no longer enter an infinite loop preventing login
- The provided SYSV init script now starts SSSD earlier at startup and stops
  it later during shutdown
- Assorted minor fixes for issues discovered by static analysis tools - Don't duplicate libsss_autofs.so in two packages
- Set explicit package contents instead of globbing - Fix uninitialized value bug causing crashes throughout the code
- Resolves: rhbz#804783 - [abrt] Segfault during LDAP 'services' lookup - New upstream release 1.8.1
- Resolve issue where we could enter an infinite loop trying to connect to an
  auth server
- Fix serious issue with complex (3+ levels) nested groups
- Fix netgroup support for case-insensitivity and aliases
- Fix serious issue with lookup bundling resulting in requests never
  completing
- IPA provider will now check the value of nsAccountLock during pam_acct_mgmt
  in addition to pam_authenticate
- Fix several regressions in the proxy provider
- Resolves: rhbz#743133 - Performance regression with Kerberos authentication
                          against AD
- Resolves: rhbz#799031 - --debug option for sss_debuglevel doesn't work - New upstream release 1.8.0
- Support for the service map in NSS
- Support for setting default SELinux user context from FreeIPA
- Support for retrieving SSH user and host keys from LDAP (Experimental)
- Support for caching autofs LDAP requests (Experimental)
- Support for caching SUDO rules (Experimental)
- Include the IPA AutoFS provider
- Fixed several memory-corruption bugs
- Fixed a regression in group enumeration since 1.7.0
- Fixed a regression in the proxy provider
- Resolves: rhbz#741981 - Separate Cache Timeouts for SSSD
- Resolves: rhbz#797968 - sssd_be: The requested tar get is not configured is
                          logged at each login
- Resolves: rhbz#754114 - [abrt] sssd-1.6.3-1.fc16: ping_check: Process
                          /usr/sbin/sssd was killed by signal 11 (SIGSEGV)
- Resolves: rhbz#743133 - Performance regression with Kerberos authentication
                          against AD
- Resolves: rhbz#773706 - SSSD fails during autodetection of search bases for
                          new LDAP features
- Resolves: rhbz#786957 - sssd and kerberos should change the default location for create the Credential Cashes to /run/usr/USERNAME/krb5cc - Change default kerberos credential cache location to /run/user/<username> - New upstream release 1.8.0 beta 3
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.8.0beta3
- Fixed a regression in group enumeration since 1.7.0
- Fixed several memory-corruption bugs
- Finalized the ABI for the autofs support
- Fixed a regression in the proxy provider - Rebuild against PCRE 8.30 - New upstream release
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.8.0beta2
- Fix two minor manpage bugs
- Include the IPA AutoFS provider - New upstream release
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.8.0beta1
- Support for the service map in NSS
- Support for setting default SELinux user context from FreeIPA
- Support for retrieving SSH user and host keys from LDAP (Experimental)
- Support for caching autofs LDAP requests (Experimental)
- Support for caching SUDO rules (Experimental) - Resolves: rhbz#773706 - SSSD fails during autodetection of search bases for
                          new LDAP features - fix netgroups and sudo as well - Fixes a serious memory hierarchy bug causing unpredictable behavior in the
  LDAP provider. - Resolves: rhbz#773706 - SSSD fails during autodetection of search bases for
                          new LDAP features - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild - New upstream release 1.7.0
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.7.0
- Support for case-insensitive domains
- Support for multiple search bases in the LDAP provider
- Support for the native FreeIPA netgroup implementation
- Reliability improvements to the process monitor
- New DEBUG facility with more consistent log levels
- New tool to change debug log levels without restarting SSSD
- SSSD will now disconnect from LDAP server when idle
- FreeIPA HBAC rules can choose to ignore srchost options for significant
  performance gains
- Assorted performance improvements in the LDAP provider - New upstream release 1.6.4
- Rolls up previous patches applied to the 1.6.3 tarball
- Fixes a rare issue causing crashes in the failover logic
- Fixes an issue where SSSD would return the wrong PAM error code for users
  that it does not recognize. - Rebuild against libldb 1.1.4 - Resolves: rhbz#753639 - sssd_nss crashes when passed invalid UTF-8 for the
                          username in getpwnam()
- Resolves: rhbz#758425 - LDAP failover not working if server refuses
                          connections - Rebuild for libldb 1.1.3 - Resolves: rhbz#752495 - Crash when apply settings - New upstream release 1.6.3
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.6.3
- Fixes a major cache performance issue introduced in 1.6.2
- Fixes a potential infinite-loop with certain LDAP layouts - Rebuilt for glibc bug#747377 - Change selinux policy requirement to Conflicts: with the old version,
  rather than Requires: the supported version. - Add explicit requirement on selinux-policy version to address new SBUS
  symlinks. - Remove %files reference to sss_debuglevel copied from wrong upstreeam
  spec file. - Improved handling of users and groups with multi-valued name attributes
  (aliases)
- Performance enhancements
    Initgroups on RFC2307bis/FreeIPA
    HBAC rule processing
- Improved process-hang detection and restarting
- Enabled the midpoint cache refresh by default (fewer cache misses on
  commonly-used entries)
- Cleaned up the example configuration
- New tool to change debug level on the fly - New upstream release 1.6.1
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.6.1
- Fixes a serious issue with LDAP connections when the communication is
  dropped (e.g. VPN disconnection, waking from sleep)
- SSSD is now less strict when dealing with users/groups with multiple names
  when a definitive primary name cannot be determined
- The LDAP provider will no longer attempt to canonicalize by default when
  using SASL. An option to re-enable this has been provided.
- Fixes for non-standard LDAP attribute names (e.g. those used by Active
  Directory)
- Three HBAC regressions have been fixed.
- Fix for an infinite loop in the deref code - Build with _hardened_build macro - New upstream release 1.6.0
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.6.0
- Add host access control support for LDAP (similar to pam_host_attr)
- Finer-grained control on principals used with Kerberos (such as for FAST or
- validation)
- Added a new tool sss_cache to allow selective expiring of cached entries
- Added support for LDAP DEREF and ASQ controls
- Added access control features for Novell Directory Server
- FreeIPA dynamic DNS update now checks first to see if an update is needed
- Complete rewrite of the HBAC library
- New libraries: libipa_hbac and libipa_hbac-python - New upstream release 1.5.11
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.5.11
- Fix a serious regression that prevented SSSD from working with ldaps:// URIs
- IPA Provider: Fix a bug with dynamic DNS that resulted in the wrong IPv6
- address being saved to the AAAA record - New upstream release 1.5.10
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.5.10
- Fixed a regression introduced in 1.5.9 that could result in blocking calls
- to LDAP - New upstream release 1.5.9
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.5.9
- Support for overriding home directory, shell and primary GID locally
- Properly honor TTL values from SRV record lookups
- Support non-POSIX groups in nested group chains (for RFC2307bis LDAP
- servers)
- Properly escape IPv6 addresses in the failover code
- Do not crash if inotify fails (e.g. resource exhaustion)
- Don't add multiple TGT renewal callbacks (too many log messages) - New upstream release 1.5.8
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.5.8
- Support for the LDAP paging control
- Support for multiple DNS servers for name resolution
- Fixes for several group membership bugs
- Fixes for rare crash bugs - Resolves: rhbz#706740 - Orphaned links on rc0.d-rc6.d
- Make sure to properly convert to systemd if upgrading from newer
- updates for Fedora 14 - Fix segfault in TGT renewal - Resolves: rhbz#700891 - CVE-2011-1758 sssd: automatic TGT renewal overwrites
-                         cached password with predicatable filename - Re-add manpage translations - New upstream release 1.5.6
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.5.6
- Fixed a serious memory leak in the memberOf plugin
- Fixed a regression with the negative cache that caused it to be essentially
- nonfunctional
- Fixed an issue where the user's full name would sometimes be removed from
- the cache
- Fixed an issue with password changes in the kerberos provider not working
- with kpasswd - Resolves: rhbz#697057 - kpasswd fails when using sssd and
-                         kadmin server != kdc server
- Upgrades from SysV should now maintain enabled/disabled status - Fix %postun - Fix systemd conversion. Upgrades from SysV to systemd weren't properly
- enabling the systemd service.
- Fix a serious memory leak in the memberOf plugin
- Fix an issue where the user's full name would sometimes be removed
- from the cache - Install systemd unit file instead of sysv init script - New upstream release 1.5.5
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.5.5
- Fixes for several crash bugs
- LDAP group lookups will no longer abort if there is a zero-length member
- attribute
- Add automatic fallback to 'cn' if the 'gecos' attribute does not exist - New upstream release 1.5.4
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.5.4
- Fixes for Active Directory when not all users and groups have POSIX attributes
- Fixes for handling users and groups that have name aliases (aliases are ignored)
- Fix group memberships after initgroups in the IPA provider - Resolves: rhbz#683267 - sssd 1.5.1-9 breaks AD authentication - New upstream release 1.5.3
- Support for libldb >= 1.0.0 - New upstream release 1.5.2
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.5.2
- Fixes for support of FreeIPA v2
- Fixes for failover if DNS entries change
- Improved sss_obfuscate tool with better interactive mode
- Fix several crash bugs
- Don't attempt to use START_TLS over SSL. Some LDAP servers can't handle this
- Delete users from the local cache if initgroups calls return 'no such user'
- (previously only worked for getpwnam/getpwuid)
- Use new Transifex.net translations
- Better support for automatic TGT renewal (now survives restart)
- Netgroup fixes - Rebuild sssd against libldb 1.0.2 so the memberof module loads again.
- Related: rhbz#677425 - Resolves: rhbz#677768 - name service caches names, so id command shows
-                         recently deleted users - Ensure that SSSD builds against libldb-1.0.0 on F15 and later
- Remove .la for memberOf - Fix memberOf install path - Add support for libldb 1.0.0 - Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild - Fix nested group member filter sanitization for RFC2307bis
- Put translated tool manpages into the sssd-tools subpackage - Restore Requires: cyrus-sasl-gssapi as it is not auto-detected during
- rpmbuild - New upstream release 1.5.1
- Addresses CVE-2010-4341 - DoS in sssd PAM responder can prevent logins
- Vast performance improvements when enumerate = true
- All PAM actions will now perform a forced initgroups lookup instead of just
- a user information lookup
-   This guarantees that all group information is available to other
-   providers, such as the simple provider.
- For backwards-compatibility, DNS lookups will also fall back to trying the
- SSSD domain name as a DNS discovery domain.
- Support for more password expiration policies in LDAP
-    389 Directory Server
-    FreeIPA
-    ActiveDirectory
- Support for ldap_tls_{cert,key,cipher_suite} config options
-Assorted bugfixes - CVE-2010-4341 - DoS in sssd PAM responder can prevent logins - New upstream release 1.5.0
- Fixed issues with LDAP search filters that needed to be escaped
- Add Kerberos FAST support on platforms that support it
- Reduced verbosity of PAM_TEXT_INFO messages for cached credentials
- Added a Kerberos access provider to honor .k5login
- Addressed several thread-safety issues in the sss_client code
- Improved support for delayed online Kerberos auth
- Significantly reduced time between connecting to the network/VPN and
- acquiring a TGT
- Added feature for automatic Kerberos ticket renewal
- Provides the kerberos ticket for long-lived processes or cron jobs
- even when the user logs out
- Added several new features to the LDAP access provider
- Support for 'shadow' access control
- Support for authorizedService access control
- Ability to mix-and-match LDAP access control features
- Added an option for a separate password-change LDAP server for those
- platforms where LDAP referrals are not supported
- Added support for manpage translations - Solve a shutdown race-condition that sometimes left processes running
- Resolves: rhbz#606887 - SSSD stops on upgrade - Log startup errors to the syslog
- Allow cache cleanup to be disabled in sssd.conf - New upstream release 1.4.1
- Add support for netgroups to the proxy provider
- Fixes a minor bug with UIDs/GIDs >= 2^31
- Fixes a segfault in the kerberos provider
- Fixes a segfault in the NSS responder if a data provider crashes
- Correctly use sdap_netgroup_search_base - Fix incorrect tarball URL - New upstream release 1.4.0
- Added support for netgroups to the LDAP provider
- Performance improvements made to group processing of RFC2307 LDAP servers
- Fixed nested group issues with RFC2307bis LDAP servers without a memberOf plugin
- Build-system improvements to support Gentoo
- Split out several libraries into the ding-libs tarball
- Manpage reviewed and updated - Fix pre and post script requirements - Resolves: rhbz#606887 - sssd stops on upgrade - Resolves: rhbz#626205 - Unable to unlock screen - Resolves: rhbz#637955 - libini_config-devel needs libcollection-devel but
-                         doesn't require it - Resolves: rhbz#632615 - the krb5 locator plugin isn't packaged for multilib - Resolves: CVE-2010-2940 - sssd allows null password entry to authenticate
-                           against LDAP - Rebuilt for https://fedoraproject.org/wiki/Features/Python_2.7/MassRebuild - New upstream version 1.2.91 (1.3.0rc1)
- Improved LDAP failover
- Synchronous sysdb API (provides performance enhancements)
- Better online reconnection detection - New stable upstream version 1.2.1
- Resolves: rhbz#595529 - spec file should eschew %define in favor of
-                         %global
- Resolves: rhbz#593644 - Empty list of simple_allow_users causes sssd service
-                         to fail while restart.
- Resolves: rhbz#599026 - Makefile typo causes SSSD not to use the kernel
-                         keyring
- Resolves: rhbz#599724 - sssd is broken on Rawhide - New stable upstream version 1.2.0
- Support ServiceGroups for FreeIPA v2 HBAC rules
- Fix long-standing issue with auth_provider = proxy
- Better logging for TLS issues in LDAP - New LDAP access provider allows for filtering user access by LDAP attribute
- Reduced default timeout for detecting offline status with LDAP
- GSSAPI ticket lifetime made configurable
- Better offline->online transition support in Kerberos - Release new upstream version 1.1.91
- Enhancements when using SSSD with FreeIPA v2
- Support for deferred kinit
- Support for DNS SRV records for failover - Bump up release number to avoid library sub-packages version issues with
  previous releases. - New upstream release 1.1.1
- Fixed the IPA provider (which was segfaulting at start)
- Fixed a bug in the SSSDConfig API causing some options to revert to
- their defaults
- This impacted the Authconfig UI
- Ensure that SASL binds to LDAP auto-retry when interrupted by a signal - Release SSSD 1.1.0 final
- Fix two potential segfaults
- Fix memory leak in monitor
- Better error message for unusable confdb - Release candidate for SSSD 1.1
- Add simple access provider
- Create subpackages for libcollection, libini_config, libdhash and librefarray
- Support IPv6
- Support LDAP referrals
- Fix cache issues
- Better feedback from PAM when offline - Rebuild against new libtevent - Fix licenses in sources and on RPMs - Fix regression on 64-bit platforms - Fixes link error on platforms that do not do implicit linking
- Fixes double-free segfault in PAM
- Fixes double-free error in async resolver
- Fixes support for TCP-based DNS lookups in async resolver
- Fixes memory alignment issues on ARM processors
- Manpage fixes - Fixes a bug in the failover code that prevented the SSSD from detecting when it went back online
- Fixes a bug causing long (sometimes multiple-minute) waits for NSS requests
- Several segfault bugfixes - Fix CVE-2010-0014 - Patch SSSDConfig API to address
- https://bugzilla.redhat.com/show_bug.cgi?id=549482 - New upstream stable release 1.0.0 - New upstream bugfix release 0.99.1 - New upstream release 0.99.0 - Fix segfault in sssd_pam when cache_credentials was enabled
- Update the sample configuration
- Fix upgrade issues caused by data provider service removal - Fix upgrade issues from old (pre-0.5.0) releases of SSSD - New upstream release 0.7.0 - Fix missing file permissions for sssd-clients - Add SSSDConfig API
- Update polish translation for 0.6.0
- Fix long timeout on ldap operation
- Make dp requests more robust - Ensure that the configuration upgrade script always writes the config
  file with 0600 permissions
- Eliminate an infinite loop in group enumerations - New upstream release 0.6.0 - New upstream release 0.5.0 - Fix for CVE-2009-2410 - Native SSSD users with no password set could log in
  without a password. (Patch by Stephen Gallagher) - Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild - Fix a couple of segfaults that may happen on reload - add missing configure check that broke stopping the daemon
- also fix default config to add a missing required option - latest upstream release.
- also add a patch that fixes debugging output (potential segfault) - release out of the official 0.3.2 tarball - bugfix release 0.3.2
- includes previous release patches
- change permissions of the /etc/sssd/sssd.conf to 0600 - Add last minute bug fixes, found in testing the package - Version 0.3.1
- includes previous release patches - Try to fix build adding automake as an explicit BuildRequire
- Add also a couple of last minute patches from upstream - Version 0.3.0
- Provides file based configuration and lots of improvements - Version 0.2.1 - Version 0.2.0 - package git snapshot - fixed items found during review
- added initscript - added sss_client - Small cleanup and fixes in the spec file - Initial release (based on version 0.1.0 upstream code)                                             uk   €        1.14.0-43.el7_3.18 1.14.0-43.el7_3.18                     libsss_ad.so gpo_child sssd-ad-1.14.0 COPYING sssd-ad.5.gz sssd-ad.5.gz /usr/lib64/sssd/ /usr/libexec/sssd/ /usr/share/doc/ /usr/share/doc/sssd-ad-1.14.0/ /usr/share/man/man5/ /usr/share/man/uk/man5/ -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1  -m64 -mtune=generic drpm xz 2 x86_64-redhat-linux-gnu                                           ELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=ca4b3c1a626bc01a7879a87361b20e1e680f2107, stripped ELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked (uses shared libs), for GNU/Linux 2.6.32, BuildID[sha1]=d48297b8c3fc41b10811a3401193b534769ef495, stripped directory ASCII text troff or preprocessor input, ASCII text, with very long lines (gzip compressed data, from Unix, max compression) troff or preprocessor input, UTF-8 Unicode text, with very long lines (gzip compressed data, from Unix, max compression)          >                   >                   P   R  R  R  >R  R  R  R  R  R  R  R  R  R  ;R  'R  5R  *R  R  R  R  )R  ,R  7R  8R  $R  R  
R  !R  R  R  (R  R  R  R  +R  <R  R  1R  =R  0R  2R  /R  .R  R   R  #R  "R  R  &R  :R  3R  9R  6R  R  R  R  R  	R  4R  R  R  CR  %R  R  R  R  R  R  R  R  ;R  -R  3R  9R  :R  $R  R  R  R  (R  R  ,R  R  R  C      ?   ÿÿüP   ý7zXZ  
áû¡ !   PH6àû¯v] "ÌkÀ%w+p}§zKæŠ¯‡ÄÕ%ÚtgÙ+h(Ö>c[•—â,Éô}š¿‘­¨³ÇJEDÐ¿róMÙšÔÞqÔCu× {´P’aù9HÎV8 SÔ[¶èr™Õ™T>‘ã?£´Kµåm
T2š“ü<GùÖ“žJÌÏ1AÖZL~Z{±j¤®	?¹YÓ/èŸ\MASJÜÛ_¨¾½©(ðü {¿u¢©ZÊ6¼u/FÂ#Din
å£á\gžqrÔšQQV{Û"ÅY„2=ˆ¥2é‹`	óõ¶$ñ… p\CœŒÊPv_kƒR„/Uá#²é,½Òäƒ»ƒ;¯4hÃÿ“\ 5ø< ·iq·™ó$	-®>Ã˜„½‡RÐô_Û…tàÁ}ÌËà>ØOß{(X<“€ƒ†y¬=VÃþàN®ŠÐô­6ïŒWáèì°Å:Aû
£Þ`‹Û‘2D®k©Ô íVå±ø(mfMuûQ·áv¢Ï×_HPyIxëŒ/:´Û_]lïpðMA)Å¶jº7p1ž˜A3øßQ}Âýo?übæÌ¨ÍA<hX;"<Ùœ*&ZVÏ’M…«Öõ)r+'¥o‚†ÕŽÌ,¦çŽÃÿWónY		°Æ!¤-ŸUèÃõ|þAŸxÈ[¨e\¦à˜•q9$oÛC±˜.‘1äbuQ–h¦×5KÙUCÑŽ+L#•˜àw„–˜ToÝ
”Í‚!S!YÐ"Ri—Þm/â„¹Òç&F]ÏÉkÔV$:ÌÍ½Óä2IsP¹ðŽåÇÒ²f*âè>¹!'k¿G)Òðœ6
š!6–1;^¬Ô0ìÀS¦„’¯Â*t*z½	Ï×¦¹ë7»Í£ûà/ÿ²øžÅMT×»½™µBï±]1—°F—{­ Q‚ãxf|Ýú’Æ$|£/*µå‘a'yqHµ6_Ñ„0ËëGG)¦pjPwk½xÈžíŽr‡ Y2»-•¹ëJüº.wÇVæ÷²…zô&™
æ™à‘¶5o%ž–øÿÉh>bßÊò>“°ŽU3†´7+vZN†x¤Ê·×yp ø,)Æ¿Wdq·§LtðÈŽÄ8.ÍÙ£-rŒÆžQá‚,³š):¾§s]ïT¸%Ö¸ÇÒêÔ†@ñ«ÃŒWœÃË(ÁÿÕWuÕ.U¹¼æÙbµº&áJ¬˜d&ú»þ‡Í?yMK\–êG?ù÷²Våëœå¯mèiëR6úŠ¡33šéý£™¿öØ‚ÙmV(¨Æ²=³„—ew‡2y=ycìð-4fìWq4€éNQš¶®ôLS´Xf¨&žŒx;"}¦?nÈ$j´]5—‚ÿ×`oýî¯64]Q=ÔÑè6Å(˜–es¯uKP&¨BÔ2û×[R»Ïä”w	•2ÔUþ4ØeJè±xQ…_ëª»‚Åyä]JþC¼]®¦@]ÉZvaÿVž‹˜•ÆZ–òù—Â4@0 ¹s|Ç¹’’@eƒ.Ï2uïqÛ¤î{¦ØpÑKˆ)^d&(·Ê¥®NZ8 ÜqbÍ6_œ?	eÍ¢Ç’ðèZ´ï2‰2"Uµ–ÑŠž]àÖ“uwoÖótb¹þÀÕ;-Ø ‚c}
ä?T¼8foÔÍ`„/ñJè—¯ÔcµoM¸¬éYýßéqVƒ˜­èH·¤zi±ØŸ²3
@šcò"‹‡ÉÑLŠÛ1… Ÿ?-CÚQw3mëg•±÷ƒn2Mo0eîo ãhúÔ
ëa§Ut³Ï‡Á°w~þ‚òžù€;—2ÀÒÿ?}?d¡U¸å¼¹5(ÌÞþrÓ9fLLxï4~wÓ—Gê/ÏP'˜Ôæ˜ÕªRá×«O~_ßY}ÇVxx ?Ì¤s_61œjÊG(‰B’¶‚ù/fÞ„âAô;„ÚðÞø¯©ž·úÛq HgbUg»qÞÙaa&VÉðAÒ‘Ü³Yv¸¡ücÄ–Wö><%í6Ù¾È_0›F¼ìÆùQÌšI©<)/Ì“çFGxE×õ =Ü/EI—’Ö©zëq[úL¨0,oœV”\©öá‘zJ	Î(¤#Èù2ë—øµº<R¯Îè_SJ^„Î÷®sl0¡ ¹3›5¸±¤ö©V¯ü À‘5Òeh—fæj»Ÿy£–ŸÁô6ŸR¨:J^¨ R:7?5¡}¸"¶}‚+Gm3"%ÌN¢ÐýðüÊ]r†‚ÅT™B¨½úÌ\D¨z†YN¤àç)Þll¹ü¶ò?Ë} B!,
Œo—©J
*×6ÚuDÁAžôÄUÏâ3…ƒ'¨LÎk’±¡MÄyTÕNÙ²û%Ž©XÔ¢Ø‹m‘Bþ†!èz®ß¤ŒóÈn›äß‚¿Ù !gô}¬ #ãÆ“LdsmÌ»*iY$’r²øWç!?i…T`cëéÄ&‘§é…#:yNR9b{Û5¿¯Œ`…pAY²”^¤6
Äxßa©ŽÂîtŒÅ@º+¬Nhè<3NÊ@U4¢)dŠ|/Ð¾ÆÏd	›uqI>ÊkX(y¡	u×ÐâI´±ÃŽTà’ómµÛŒEÔM <¶aå$Úo1uèÖ@’ãW=“DÑ+=UÌwZÙ=Bh ®	Þð±¼}vƒêð]	ý+]Ÿ4ž¿ÅÁ	°sý@„¥ 0fÓŒ@÷HðRCd@1%›ÝiÀìPÉ³DZ¨ÙÔIk<í^Ï›>6qµ÷iH˜Xœ3ÍN‚ÂSªr•øu€zQP"~„ÙÌ»òîõ=™®zÎçxÿþ@îÿæ'I¦Â%é9?Îlã¤ƒÙ·Oto½z™˜âSö£ÿœrºGB—¥LÔ[ÌN²rh—Zt«CæìQmòG«ÉÚf.ÃXéÔÆ6vwù	½RäŸV¬jXa^ñq••CN~¸ƒ˜ÿê±Q
Tu—¹CÂgÐ°¹„ÖúÛnSMÞŠ	‰b×Œ°éžE'Ž&‡åpLÕuƒ÷Y[£iÎœ{QèÀKôgà_Â¦kšZÂ½Fõ”×SôÙÑ™ToÇãl0A²÷”6ì•CÝ¾ªúV^à'YëD˜~’úßõY—K†›½FJÏ€#!—klùdÔ4¸­âð
Í©”VA!sdÆ¶ˆíŸùÜóõíQžÖÓNÈa2ßõKòòÕµì &/Â‹Ëaß@ì®ízp‚p,ZjÅc<ºÏ;¡†÷¦CP¤õ¤ò“/Ú*kMv¼SAHšP:¯&+®oÔ±Ýdw»™	†lYhÆüüA¯
 TÜ«NDBíåYVï‡àh@³ÍF'ì>)›ÍÏ_£'…tÈùéƒâ^‰Czx±@ÈªOÑ#NÅ˜&DCB®k½«e=À[R9”þÍ˜ôkþvõu”6_ö
Gfyù#>~H˜&û€C)í=½}.híV
Êg“éBUÎûþM"q›¤¦aEF[Hÿ¼×/3'?*sâÒìæ_	~öóp„£Kê[þ|2“Cƒac/óÎ@Å†ÙÚÚ©¤M•Â€øªöNõ>Oó¶y"dƒ—U¯,_Ò-ÁkÁOÁ¼Um±ÒXôIò<ËqßYa¹žâ«'hcÛS àZb7––Xa˜ë£BŒtPîDq~KƒÞ_Rú¶d4£Tù-½:MÄ¢ªêZàSÜtæ}¢Ëoóã#Ú—‰Éi>Fæ/”úh+Ö/1bß@‘ŽMi8i²½’Þ(g(ü
¡;ÁÓ©¹t›èŠµMhÖõXUWã@Ü s]j3Âs+Ìï+Å5ybk¦Ù€Ñ/zëÅæ¼ÀF’'zV½Éî<µäÛEÆOÓù‚Ÿ°sD'\ydá&
t±ô79v÷\þ4íÌ:v÷“OzaÇH5`Glë ož×Ï&ÆI|Í×¹ûÔÆ#çE1¯°ä6²÷ÿÂhŠpó3#-&#¸ý´q|Ð@/òÁê_l–HUsð•æZò±èÊ°H§Ø	ÙÙq\øžÊþkMjº©÷ðõÞëób¾ÓÎ`y-¯dþíbuŒÛÊådÌ ¼hõé?C³ÈÞ¯Ðw´¾‹EŽ4Ç7Â”†D”4ˆû/Ît¨3Í´ÖSN&(¶­Zç«’MÁ·S!Å LkU¿?„FXcÿÁó´!0iz|Lš×J3a[Þòâ öÑ.>ñ§Á27#Ã8è¢¯ðÃÔ¸Wårø9Þ5ýÊ6ÓÖ‡r?ËÀ_º†ü¡ rKàå³³g:Âæ­Aq5pI„‰™ä1y¼b·FÙå! Ï'÷ø{YB2Â´3>ÑtüZ§[Þn¢<utOIÓÉùzÏØç?vÔ4jPBŸÇ¡wEW‡½¶²ƒâDþ€"À¸4ÆHk¥j‚9ìäà'ŽÐÙ¯®9ôBFï—öyTgÎ½]³a½ZÄ" ù<MÐyÿ¢6l•ÃëÙàžÂ	€%rñX,è`°	¨…b‚•²z6°üä/A¢ÁÜÍba¤9zwBnÿ,ÔVDƒº×Áè']½yâ± H#8‡@ÌØ½Åé×ÝQl…
ÀÎ¯ìÉ^ì·5çbŒö‘ý`£6v6É²?ZõGZ±¾“AþÀh©óƒ¿¨³G±}ÌgÖ[:­M<yµ¶8<úgh 8í›7¾øm¡(í·Zv,ðapdUóM`‰TÿÒC4š‰_ˆ»¬ßbùöSp‚ÛSË0‡#¸vR7OåV-uƒù˜ÿn‚°Zrè0+Jë^=f÷h¢ëžâˆ¹.ê-È™ãp$]Œ>àoÁÉ÷c››–•v'ÿk˜4ïZHºM—ükïâÍ_:óŒõpÍaÏh¢æƒ IuÕ¹Ÿ¦ÆlKèÃk‘‹H\ð3VÐ§47=hŸî›<¶”zâL}5:òä-0ÙŠ–ýsgìBÖøþ`¦½ùqÍ-‰Ð¸ï“å’À8bm± CˆuÊ8¨l[_üàü9ëW¹]ãJÐ{¥ÆÑÕml¤<7˜[aRP_íÖn˜Y4‘]t³Õ_Qvq÷VØÚ1Cm’Ã	Ö @êo€Aö…‡/•‡ö6GÇ–ï°G)•ß_ËµOé•‹~ö²LFWLsàbHÕ1>l¥D¶¥†à)vF÷‡í;žl11D1IÉÕ}¶~Úpvï¹ !z~*4‘§*úFþ}€÷_˜@ŽŽ2‘¨ ,Âb¦`[Úþ0lÙmw%†A6ÜdíØ&–;‚¥Ù™Ä[‹™|«QòÇÓÊ‰Rruõ9–båU3Ì‘/‰ˆ¿êRHæ¤t%?‰=vã%š zlSy÷¾oK0¬	XÊUEEk¥ëNð/?šóÑ'“Ã(<+ ±º³ÉW˜–YÆ[*¦-KÜ.ìu_…2E¡êÖøøÈÿWQÜ~WBny¹ÿHB€p{t<9c[Zœ_>¥Á¨Úäw]X_•n =žSv²T§Ø±œ#“FÆÃ4nä0Ÿ¥eX¬PÀ\ˆ;ÏR:ë‹ŸÄC
š¡¶u3€¨˜ñ6¿’ó‚ê«?D‚5.Ðá&ìt£‘³ÉÕ9Ý\Ä¸wrûœíEªe°n ®‹%€áqTÑÔÜ;TÂzâ.Š×ÝÐ€/‰.x¶yK‹çí»Q‘dÄˆeÃ””¤*q1x÷ÍEç=ôµ•¹3¥¡ßû(‰F ™f•ÝXeüÅLâ«™VL¸º›°Ü7D¥U»¼½ÒÖSfHõÀ¢ß.'ŸÃçÒCnß<š{g ¼ÞœïEL~|ƒ¤·V$å,™ñˆM4–ÂŽ)»©8Ÿl…`” ©…"Ng*eM{—”FBúës•£ÚÚãñ¥û\fH90ñ7áÏj "ü`:¬“¹|îwuÈÐb‹¿JçÀkœ²?r=®ÂCºS°åJZhà½†»€|0dþT³–çMíf³ÌHÇÑƒKl9²ÅÒr= JòN)EqÑGî%¡šÅtVåÍÏ?Ôœ±^³y°#óÑÂv³”"nÃy™ƒ´9Íåc£-*í¹:¤[ûk\R2*?_æ^rà
ÂÒr×ð'öqaM&Ù¶Ü*$`•!X¬k‡AtëÄè¯[C´9›Ü"—ègÐOQ7à£¾8±sbééÌ=ù1\[c^®ÏËˆÿ„¥. 'S4ëØv¡Zói	–õIž ±Œã:²ºê_Dkà°¯š—XÓó]òBÝÔ×·$fŒc_ø×21v«&8ÇQ3Õý[ÃQ*`˜ÕÍ J9ª¦º’«ð÷Xò[B¥1Uö)ÿ¡'ùåú=B·hÏy_àF·úé·¢œ÷"kt‰oÒVmâx‹‘—%'Uò{ü÷tŒ÷éa· iÁÁp J$ñ«q8©¹Ôñºìßxÿ—ÒV|‚ú÷û
ì¹á{éE‰làãð‹.Lø¶”¡ì¤T1P˜jÙfí`£‰ª„HÎ€	Ý¡Ó×)«Fâpþ*±„ûLxó}IÁ‹ÑËN¥tµS£}­Oä]Q†ÛºÙ/QÄÿ”‰õpÚ 3ŸE,üÖëûµ0ò©>XtÈþÇ‡)	ófîs×žãMÔ†§-zR….5[}Åmº0Â,¨_p9•µ×^x¿ïÊ+tüÓ:6!‹ïžÎØlfál¸rVÊw<qO|b­¨x•n–Ív®óB(ÿ«ÎÖßýNëŸ;AïKnFTk½PÔûí°”ÊöƒBþ„”WYT<%õ†äÎ.a.¹QaäÌìúûEj˜¶â¨ÑôÃ(Xxëá&™h~Ô®°c"MHZ…“âåq…lžÊ-Úm:==§ßÔ¤ïSN…¦vÍAÐ_?üó~Ÿ¬èÞ¤¢€Úp÷}@ÿ€¾›ïJOpØû„[ Mš
Èu6µH09V¿óÛ-\a»ÖÒy>OÍ)Ñ\	€ã¼Ò¬#œ0‹P¼uì¾ÊË\ÖlqVÔBÜ`rÙ!LH¨:£9ãwö.ç_‰
’‡&™‹I×„x_
³1¨<c$¥*Uá×E&Þu)E$™üë'å0¶Æ†m1Ñ/÷¾õq“âØºW´iËùrÅÝD,µ<¥¿ÖÕTªò‚Ê®$,ù~ï<)Y„¼§“1²Õ'TŒÁ';Üègq3À^Ã§ªˆ„ ÷í	 H½D&ø§%.0Z‘õÌÆ35u$€eJ^yœË%Ñqæ`*-mÏ²´ç`@Ý‹82Ø !ÂÞHUòVì:OÔµwÅQ†ixx“Òý,Ý
¹ää5ô|4óîÍ9	mtGˆLäï‹F)7‘?OÖÒcÀÐ9×Ÿí®kÎîC¤npÐ–Yu'ßò!À	3×qéqË‹Xü!„K6 Tcâæÿ4}¡ãtwHÌE—xWMDÑñ±	:n(xÛ,
J‰"§zÑy”¥r­°¥\ÈÞc~àÉbË‡Íæ¨]Œº°%eaÓ3¶ÊÉû&}×ìûç%b}ÂŒ—ì¿´W¦¡5Ó>_‰PËƒþKæ6—Ë]²²4ç„ªìXØ
E±EDC=Rð­w7·öšdæ‚Ø1Þr•ð"]ëäë£~Ì”ÀÙRÓi„ªÝ§ãÙe>ý×æº_wt„*NÀÁÚÚ¡Ñ|„çy9EÇë¬h‡.{È#€2pÎÄçÅè>&yÞ„¿°áwÞµöÐ}opR×œ"Ýå>û‰G`•þÌÃþïôë‘0Ì˜ç­ïØSiyþ¸9¼ñÞKÔ‹ð1ëŒÒïô¬O,*úì\MXg¨7˜q#³n\¢Ë.´×oüŸL(cK¹žî[*›¬‹¶Œ×‹Ã9SŒÏÁQýîËSÇ\ÿ«h 5iÚÎÞ%Éü£ö€ø$\–Fg4yµ&’aïµí&Èô¥ÏOñ¦‹g6\yÅÐ*´±Žà³ Ah·M*ÖâÑ@EéÇ™Å5Dû€YœlìõÜxx£$öj¢Pb<UU7VžrÛ73¸ÌýÖ»©¤Šã"¼³¢ß…¯;)…ˆÉç=U¶_&t™=±µ]€Ÿ_ù4>6ýŠó’< e/eZ\tŸ-#A:|ñÉ®âëŽ*ƒ,ÍÅ³røGè–F‡¥¾¾—Û"i}Ní›´o’WÒË©+"”dAS"^ß¥‡‚ó?ŠØ; Ìé|Æ]#]Š ÝŒxã~ó¬PVs¥d€?®ò?)ë!hÈ¾„ËaÞÞ¶“R‚fío:fÖÊ{´5]”i4\.ªmAà…Þ`×÷Ç¨f¡ì 9®Œ‘‡ŠîIÒ-kuTLÎuâ¾×IötÌ9 Úê%¬>ð&U4lC-Ï33á@ß†¼ƒyØ3”­à)ËýÄªáHµ=#È¶µ`\gßÞq›½áÐbHÖÔ'â$xIêÖ×±¯Jâbø^þ¦j_™Å¢9Éñv>¦D§ò™ÔD¼â–SRÁQ0‘"të˜Œ¦Ü¶„ Èa'[ñ` cS¦&Iu9]±:–DH¡tŽOWFîw¥½”Å]lÉ¿çÞ­DÓõÒCFbeAôBy.öô"¹­ÇRtšR´ª	½ú˜•íÛµ³|e«.9šˆc)«·^ï,{Ò:‹âQe¥ã	šä,ÙÁ?zºvÎþŽñ®IB»¹¾¹ü'õtÊ?à¼‹n¦€j±:ñà$ÁNÓbîˆ‡ú-YTË3?B?jNÛvÄtŠ–²ÃÚªT*¶¨JŠD¤ö b e„]ŽÀ&]Hµ¸Æó3ŠÊÞJc.÷kuÏ/^ ÿŸZüØ¨.›ëÓÏþÁG®Ž0Ä"	fN,ÊÔ§îõM4€Ã¨8‘ÛÏ§«ÅÎ¸A0’åûÛº©ÑL_M‹:LIùTËOææ°Õ™[ÍvF%¬({­ù¬—w}NæÇš‰-å“5§OÌJï`½ç]Ž5}ÿ€ ´¥ß:#Þg`ÍÂLRŒŒü¢+¯ÅEãg?%Ti.œô@tx¬3‘¾·ôªûJt\QÚ”L*ÌIÉ¯*¤˜Á™èµ%š‡QæcCiÌûÚfÞ]	œéÛÄjhk!¢.í<Že°vfÞ˜Ã‘KJ "%¯ Pá¢­ù+-Þ`õÌðÚ
AÜaoj—«£>Éaxîí9YJòT¬Ù]2™L¾cš˜êŸ8ëÙÚuÜm%,véÓ.ßÞ+‹“Ÿ%üï‡@¶–ÌËÊìéuTM³½\ƒO•º¥ˆÒ‚ÜJ 3°ìû!4H#¶ž@RYõH^½~ç˜ ôÞZß•~ÓrhÓ,-°¹ð½T†âPiO÷Ý¼„—2‘›^(¤¶g;Lpß‡dâLíÑÞ¾ÎOFÍY>ÂaWV´±µ·ß÷’OQb<ä¬`Xx5çÒq;Å?ñ´Y‚ÒÝö7€öù½¢Iú³¸¬çÎM-"B.ßÜ7Ì‹§c9ëY¬ž4i¾7'
À®z’ D°58£î[2§,WU¶ºæ4 Ì¯·nB§O÷’šÄóKðaÎÂGœžÓ`ëB©YpìÛOj_wp<¦U€{ fÛù ‰d[4ý{ÄL6ÀtñÝ¡?¾Æg#—ˆÌœÃ9ÄJdhž4“œz*hˆFk=Rœ˜Îäì˜Œb5*1l‹ üP#4'¯£®b½n	iH:s;!
§•Ã;ž¼zì¡Íëo+xÂëÈèï*öÚŽƒH× ®oCèFn˜¤F|âôC2'9ölxà]DóÂ+³\W8BnºÇ’i1Éeº\Ë‰aµèƒ‹:Ù6H¬Ÿ¦x‡Å4
BÊ%Uï«foš…®Áé]‹`¼E|Åà™â–’ZÍUê)Êè8ÑÆ,:c%–îHlìêCü®¾w6g8nléÃç©ÑÁµÖé¡äÇAÌ±LÖÞTCØŒ*é7j­,œCÞ<š'µ¶Ô„<áÓcÑwñÿ'vaúÞ}¤FUXÖÝÆ^¡Ï÷F3»\eÚŸp†…-–E=PI÷†^X67Î×/„P›SWc©§Ùâ¶&eBXäd¢zR×!ùSäªw×Ù‰­yùrá¯p­4þ"ýÉ÷0àJAøNë†#Bê9“@ôR—J¥¿%jO™ÕÏE;÷2Kqe“;­—Œº1À•<ÅhŒXPØ}\¬6@êâ%v÷ÙõŒå:ÎÏ
É
ÑÖÐ×.ú@Rz%0dy’°|<\6Cìt$ ¾„¥‡cåêKFñá"Ï¯<%ÑÜÜz<ÏÌ9AW<°ÅŒ ÂæU7\¯;‹†–þÖ¤à?Kùg Cfóž“}ÀQåVµ§Q(¹±€L9Ï¡ÆÃ–ºóøÐ†Ñ´ßÙVÝ†…K5…d
ñ‘¢ùÕyÀ–ö¤ŠoLdld%¥xÙ7åþÌïv×½é­LCW)º±Õ!Uklw×ÚÛrŠ½©-aXrTÎ•®¼º:ÐA{X(QÉ~U1ï¸#}>›Fø¤Ÿ8qŽ.ãÏ´ëŒ.s|ƒrA.”-D„1¼ÕeíÝ»:â"èæÃB*¥`T¼\ÖRúÅœaa‹¡Ì¸vþÜM"$ÿë×C÷f/gOÙ<¯¥}¸}£*þiÉÉW†(Ã%O¡<5”Ã?*sö~LûN§t@ìHªZ¢6¼°¬œrÈ=Þ°rà<
:Î,¨RûU¢1ÔÃ®)h~³É¼c¶ˆ¯h6‚/ÉL‹	n˜ÃwË¯ô|j‹ûÇb€Ú¤Ë¤`Ðˆ`ÈÝ«áà¯cùq{§„›âL‘[ð³Scu5¿WØEëÉÃ5E‚¼ŠsñÎž32¥±µUñ×©”ª“„<B´åÌïñ^ýVoùì!ìç‚ºào×lÚ[pÐ0ù^ÍI¥Ì:Eˆ31ŸKŠëBï¶Þ$Øq°²Í†>žyÞë’‘AÊàso¥"FîU.ÒæÀªäbµâÔ|6ÜÀ­Ÿ­Ó½ðëÞO¿®™í
2i*:Wa?÷('{õâß¸ shd±òÆý}ÃÏmL^µóÎ«)Ëº³_0Ñõ„Œ¬6Ü:FÉÞm&ŠÂm-vÄF–Œ­4­ÛR'/¬Kµ£–ªà3^Õ³ŸbÊô²—B@8Th'†ÐóšÏ#‹qáz»äa/šZ_å¡Z4=­º ¬B_êq™©àƒS‡ä/' ÎïòÅDrmö£#&ƒ.JôW¨Ÿ‹n1ëÛ¬Vþa„2×u;ÊïIËøøáƒêž½grÉº&n÷hY[0ëƒã"Š[øQ,<è ®7:;n<BÙ½üí,F›4`;B´ 71 	•&¡¹Åjí–¤Úƒ‹9",ýi»ÌÎ¿þŸ«òá±ÁÆ‘Ö\f¦ðe×`­(×rÿ˜ñÅ:7/K—Od6o†5MÙ6V ÆZ¿Ç@T—/ÿÝ§£xð–8UážÍŠ.!LÚ àŸÝ}AË Eô×P¹f»‡˜ð«úÖ~’NÐ­Ö|@Œ¼çWÍè%4m`€`¾•Ò4æù½ãk
™ÚÑ”â(=ìè0½å²¯BqDà9‡ØîdÒ‘Ö»°[þÃàC‡rö*R<qîŸ/€ŽÁ·ãÒâµ?ŽL-}ÄÄ™¯ª Š_>ÏbK=
$¢¨C§v_å×þR“ÝD,SäY‡ÜÁ‹=ÁÒË`Þ ›‘(#ßò´2r˜™½·”<ÄQŠº<¿­µ¾þž5ìGúö!û4ÆãIö@ñVÖÅ¼…û’Š|©±>PÎC¼¸`´
µä2¼žGâÀ?SŒÌÈ›bh€$±DáˆœÐ–;é1.jüÑ<c
Ûc.É4òÄH±rƒD¿t€’;8¸LT0®‘#"{°‡IE;–ž4ó'xC¶ òxb.+ÎÔ½Ól—¢Äƒx(ñ†…æõ0<¤Ø˜+—_Â’*(ÞÝW»æ“–j•á¨»óè´Dcê’Rè®}É$ªs× 3Ö-ø‡NÖÝynb3x§_¸¾­ÕR&,«@!
ºµBöÛhóúŽŠa¬„Ã †QmLÌžJŒÄ®ñxWò1š=Y÷WÐvj„o[‘üÂÐ0«£x5³ñÎ¿xÃœx¬¢…ûÚ(‘Sçx[(uÁ¾ÅÁ&ŸŽ#Cç~‘âÓÈZ•KáF_d<tU$ôÄ‰hrÑ‡+í¤÷böÉ‡œ	•d>ú‹ù®4Ît'cZGÕ‰ÝÕ=1‘Î8÷­Klå­ª½Á†æÏê{G%ó%SÞ%*<å–1bnÿ“px!ƒ³û¥nwÊEŠïnõô§d¹ž3p0=š.=Í2AÒ;õ\„_uÎ_EöTAq+àsÙÈ/œ¥Â„cò…½¼9%ùÄÒÐ)lïÙcü Æ"HŠkoN"›†}"
[ã:²³úmÎ©¥t8áÎ­N„Hè}aªÈ™ãéŽŽ>~?§ÝUé¹ à«…‡òæŠ+Ã´(oÞ=‚°W–<#.—JÄR…½¢ü;ù@&Œ/d†çŠŽ7þ}~*ÛÓù²AK0«P±QÇ7[¡œ(Ø$ÝðØ;Bxù7!ïPô`Ê{§–ªbf{|M¶x=¹žÅg˜Ÿú…‹[ªŠ
Ì¿á)š~q@ 7Á#lõÓ2Ý¦ÅºD³Í æÊ3Æù™¸…”PÂ°ð£+"H…¡ÅR¸—+7Í|R£”±+$ý­Ÿ©J•\Ù+¯>®xC«‡O}tXhoVe~yÔèí gr§(`÷ ŽMi!Š…´B¢"Ñ:?5D>÷ÆÛeÿŠâC«¯m=óê[öÀ;q…ÔB¼¸9ˆût¥ÐËÙÞûtVK ’g‘Ç­HeöÇrÓ^qdN<@IZò€6ìà…¦Ùàd¸ÏÅ6èi~°ëp"—*QJ–ý¸tžÍ<Ë fñÊ8ó>ë8ªØiRezUä ]’¿
W´F AË3nÂ¥Ô?‹íu™OdÆXH•÷8BàgŠ‰M?WöI	NwÙ÷BZ<ráŠçÖBÈ‹S·Y4¬%Í[û¸ÇáqÖÌf)OŸ=c)eYûßÆ¾Ìá­ÓbÔÏ1äM8^±$|~‚ƒçò€Ïw¦æ¾À ú;÷ŽFHÞ[¡ï¯'eziôO€Œˆ–Ž­NµYm´¼*L~c˜=oŸ¥#Ã8Õ¶©ñÍ#Åämè2¤ÚÌ4â\«ì%ÎùÇ0Óð^ø¬–Þ‚Ã3o²k'¼º°î<Hæž"#ñ¢Dƒ| q‰²13±ü¿ÑÜ†0ö€K¹ï£/AóŽ¤éÅkÿGN©÷Éïê^¨g:¥ ôîå·¨$AIàìðvÐ8Þ¥$+’ûrË¤…­D$îz°ÒÚ{Eo©¤O ™ƒÓ×’«±0Ôûú70¥Gù½uÐ³^ÊZ“ðm„ªîRªUÿ(ß”ž„ÒB"Äbs/íý\ÒïquªZÊy‚¤þ ÌØ±@ùþÁ¶ê^¿{™Ð(kß˜Äú?*·ñŸ®°ê«Ò?_–ŸÂNAöè¸ŽKBl-XHæifmRÞG‰¯Š"YJq]EEÅPÜ«Ñ?‰ð’ç51A„ºœ£z8£Ÿaˆ’78âäÐ™üGyOW¦çI~dGÖ÷¼ÑÉy³8½Ÿä‘­1ÆƒXâ³r[ø6©í†|é…†J{Í²QËÇà™z2=ñ(½Žæð¸²dþzë‰ŸJöñiCWL  Y¡òlÕê˜4¬¾ oá©(y$ÖPÌÞ,‹ÒNÃà' aãéª7…-•&V@Ò\=CŒò’¢xÃëå]–0Xö¤ÐH¹Ø×À^»×-hÕª§N™]$ßïº^¦2(Ä©Õ€UéoCjDÜieáùD¡Ê:Ê¸;miªØ¼¼ª-¥rYdtÇ8WÆ_G'K®=¦…'\Œ„ÁÎóž§­èóläå	¢'ÃgÅ$à8å¾¦Íç§3¬èX
aŸ ‰n²§ä¼vvôïü|Û0½ÆiünÐÆiÿÖ¼©¹ûxç5‰§¾™Åš}é–93o/º¡*¤Yü:déÇŸ`¶>@†”·m÷Âi§@°°¬OŠ!‘˜†ÿm
A.¨PÊ„WP¹dílrR‚Æ
È¢Ì£õÇC:æxvúaw@C¾çõÐÍPGdŠ ÇH<p4¹ÃOÁ`óÓ>*\š6ÐÒ'– À»55V%”ë3_Ÿþ•SË¨œ¿ˆžŸK\²VJhÜü¯Áj&È–óƒ~8DnÉ¶ µ¨&Wý,÷¬¯Ñð˜ðcsmŠ!…®V2€’Á\Ä!`µK«K:¬NÆNæe>f„±A¨‰áÀoj™‡äc’œ!Áö¸^³¬÷¼ñÆXÿØŸ*aø+«Á´¬çgs–¾,`Û‹J]ý›qæÇð„¦*ˆÁ·—,H‰X”y–dQæ¹È9å Q~ôµŠÿxâî‡Ksä{¹ŸØcÍr¹Á¡²Åä8$Tg²‹‹pÏÙï¤PâƒV`Ä±
(CŠ_%!Q•Z]k:]}
¾Í±!šÎ¹›™à˜Žºå†ä6DÄëW±®Êè…P™ß½¹šR'»x„ðó
¥É›&'Ô˜ÊqÝ$áí
Ô&®BB“ÖaæžÀ_æfd¹®¤à}—½‡òBá=”lE²‰ærñì€'¶Ò#Ó1ˆin†rÈ_wˆ=üOÈÛ†-«ÛBþObø¦OiµÌš]“ï8ÿE"I¢½.sWãú9WH}í ¸²Ýëj{®›uUQÀí„Ÿ“¢¾·}&fFRÚ€ÝÒb-F­\Ö:l~ëþRïGŠ-ÒèØ–þêöÊX» ÉO7[[VÐSÞ×¶½‹VZÎÜ3à•{NRÚ!Ü{„KQt[0ÇÇ|K~ÕN#ƒYXbýØXÉíñovUnX\‡œê·äxY6«§$Š¹ØR—ÿsüvŸ6ËŠ€žÎÌ£G3±AÂ<MÞaÎ5ÿºþW°)A×ß§ôM6º(ü‘TýpA9…}<å–JÝ.õó²ª{¨=²bÀ‡Ò¹S³þ™ñ·,ÃMc¸þß/½i·SúÝõ«É#YRäcõ¦m´õˆ„AV—{©º”*É Øª`—|Ûv‰@ÆN>•ýR~Lñ®„2qrÂN¢\4;à*lŠ†—íªrÚ¬$‘|0ZMàzG9ºD»ƒgNµìóSçñI^h`eïŒá¬µRÇÛúiÜ³àëdv%ªª	[Ï­zÿSÇ…ŠO›‹¨1}èÒ«Ì°à¤¡£AÉ«àDOXòw“šCbÄûZÈÇˆÙ"ýQâÆ»ºÛH™ÓP×ðã•]¿
P0¿¢ÆÔ#¹¿Ñým«žaÖ¶prD:Ý ÆâêÌ§»Ç&E£F{.‰>.wa¸SÞá.J'›£›CSöìÍ˜›påé ªÕŽbìk ½‚Û’zì±%‹Ä Zž¬“—æù4 rVû ¨UjõyfÀƒkÌ·ÔcòÂÀoð¶T!õŠœV*HëüšhÓŽUÐ½Šƒ-ÉF‹YñlVQsWœÂz®ÝùÍDÂ¼	ë	~32)B?nMÇÙôl	{ï‰Ü²ÊÜ	)^;D‰üœø'ò"${æX~n,4ŠbsØŠ$yñ€Æ1†£i!ñTL>çŠù.M0m’T`P<€	FÄ=ä::g3s;Z¢(ë·È#ƒÉJXÑ°¬
`ÍÇ;W#Ëñxjáè*®eOe&æ›L8óÞ':Ûîã™'RYÈ’U½T¹\U.E/ôuiê)æÈÀÃ­ wˆ—pC§Ñ(ú&D®I<bŽ[	DC4"êcùc*ÝÜY%¿;œÞö£jN.›ŠÚª_€ÉIýŠü£ÁD¿ÔiÃ#;Ž^s÷µáq»øªAúæ6s³‡žÞ*¨.N€D¤;†r–õ=b”]^Ðt-ÛµB™^-"Lå^‚r¶LP˜ ±äÑÂ,Ø´qÍ™¢a|DB:-‘ª¶EÆ›Î7ö¡ZX*¾0cxu½N´*¶1Äg} kwÂ%h ¡=ÚjH”îºVú|8IÀíŠGQw ”â Ä=zÙ«ëµY¤þ•Q‘‹š“æ\ÁÆå~ô=š8ÕLûÛ9ó;»ç8Ýì*Ä:´€—›!S;%„•ÉŸÙk¸!RyÑ°ó^ê’¹,/Ìèõû­®§¸))Ï¾Ôg‘Œt±ô…[ÙDø­8)ûÏW¬@—5Ýï¨üjYw?[k5Y?ÃØŽdX:µ$zìø8¤¾âE¤ÝI•`›gø‰tæ1ÕUd(?yÅ¤%Ínc¸ÄÕöCÚüÃé´õ.¿÷¸­Xªé?OÓA8¤;'ª¦«¥¡öàÒ=û5-¤x‹(m«ÔzMK¿aprÉ}/D2¾)—ƒwy½ºÀUú“ªo{’1¿–P‹»uHƒQGõ¹îá’¬ª·ÒŽÈüµÑfÁ¤í/[Û#ŽW®®'2g0©ª#µ˜]öH©@{×xì¼h$vI05i;ÍEÐ|$~ËŠgsÄÍû– Ù<Û ÞŽô×Ù!Oë’UˆúÍÖ>XÜmDÖr™‘s]9fFÓÞL³xb›Wq w¬Ê‹MfÄùA¼C¹Æªo<Øôé"DÊ>™%Ù9î«U¯GòÖ3}wD±T¶F†ÃšS€ê|@”ûÁK}¢0XÖQû«áL˜ç0B(,"¸²9€ÉÃÎ¶t¸Yø#7AŽ©Ãe€^,‰(…qTõÁéU«q <qPt5±7>¯Zj ¶îó”ìo¬˜ã—RtbÓÝ9 šPmÄ“®Hó¼ÞNy¼Š¾\/‰NÐò;çÿf'ŒÓ³»z‡‘*m;þ™wÇZ1šcE.ÝÊ©^gO–‘=Oï§V¥æœ6Æ@*® w´`}ì}y¿G@yÃœ^íbÅ—{œØØÅˆ¥¹UúÐE§åS‚Ïö<aýÐñ¸›cà›y13ètê`]QP€E‘ùÉ"N„‘MÈ0XÔÿQîgÞ<{ª»ÛK1á„Ž-Æˆyx—ò«ê)¢ñÈ|$Ëa}aÞç·4AgË$h2GépR¾wÛ&aNî+Nmî6 è€«ÑÀûï'• ýxùÝ¶Î«I¢~EÛÔúCª![†=p]@óX6´ -jðÁP¿ðFãÆÙqs©n
^0eê[üêÐf3S•;´-¸î´¿Ú!}„&•Àë5Yo±Fwˆ.Øû={LºjÑj¿Ô‹T¦•ÞüÇk’£€Íù—7Çr—£{en?ÑLXœës“¬tž?ÆiÕçåÉ‰ø¼ ±{ë,³ð­Óƒ›¢a§ËÿbîÕd*ñÉã‘²aï 69©ýgxü
YÐq§Î{5èÑ_å¹ŠùB·õZ"³„Š‚Æçmiªë´FÌ®¥Ä®	J~BÛGÓCnŠ©s³”^6@¾ñ²Œ.òÏÇÚ{Ú«¦ö¨4¼Eª`"/HÒÉKOK úHÌ àpzáà‘w
ýÂõ®ù ìÁM|UF'n ¹w¸ÊzÞUE†u]Û0€~µ-Ð‡‹cžÑm
V™#Mãï÷ü½7÷uâÑh4@ e¨ÙÞ¡;7¨¦Ñ€×þ(šRPè/¬(žsh(°Î‹"ËR‹ ýÉD¹ÑÄÿ¥EÕÖ’àu¾TPé9}Ì2°Š¿°y?Ÿ
L 6RÎa·úûO;‚.¾áÞß $¾tƒÎ#ƒiÑIcÁ×SuEÇìÌ2%¶€fl8&rN$gTÓ›uRFjÝ	µoQM(ƒòù'L·G|û>9æ'QôèNc'ÞÖÆwÑ1FO«?nFtËê,Gf0•l#Ä1©=vH‡%>¥eu‰ÚvÞXòª½L@½¯Ê¤F!7ƒg•6°ÇBA3ùŸÖF“ìO@Û®~Ñ¥+ã¥mœŠÁÏqjGG¬Òé	R&{6US÷r¾ß-k¦@¢x0íÎ‘¬YüÓ`âYõëµ©I@šèaùP`!ÏßÙ&©607I«µn´ÅRï,Sù‰p4»ÚÆA˜¡yñ^
UŸˆ5CêSFûÇ0?8Œ5Ó±!¡
®Yí­ç.ÅAs<¨ÏÂAˆ–ÍY§¼–¼LìPíÊÏž“úMºEûj'ýÒnU
’úqÙ&Ú[dunÎ÷ù¤ËXb-{Y7^éÜª_ï¼ŒÝÀB¼{­I¤Ñ:ŽÕó&¤t½c5æŽ\-d÷ÜÐ°Xro×u_0ÞüÒ9J|,¥ã­QÑ{à$£ÆòúúÈkU^þ§¬16Ñä’ß²*H¶ìwEâ65Â´þ·¦y^¶±; ¿Õæ‘@C2r»Ôt”½¯×§ˆMcÑSKñ}û™WIS wg‹6Ö÷ø+Ê°’—ò<É£ÑCEf¸3dû Å›‹h­J	#,TÌ•š„mYÛêKçöiØÑÝ¨T6Éškq3È˜}+á¿å,ðéTÌ=ÿ¹Î^ÖÎƒë¤‡Øú“š¨ÎT÷ØÀÈ¬Sâ(6Üµ	4òbi.1ajð°>{¤aÚçTdÛWè»'“µCyø«uf=ï ‘fjÄ3€¶… 1[•4I@Ì6ÓòXÍY–Îvûc›^`€Ñ®^¬…³|x)"4UÁU$h€q	ˆ
Y‚¨ãžŒäû³ç$,Xš‰Mn7«4|èàÿ¤žvÁ­óÂÅ!B¿@1ïTÃ0þf„(`ã_Äì^léëà nu=§ „Óâ@ÀOO`j`¼³Ó2* ±7ÐÆ­À_•÷Ø—ëâ
äÌ¹˜üµÂ]dyõzã@Šóqò'ùUØYùãtÖ¬'Þ67…ìùó0Ð–Ø&;j
Òû»-Œ]ŸYg6²‘eØQ
£G·¼§ù–Â±u¢«}Î¼¦Í#Z]…ù¿ù
Îã'×ì¯c?<íˆnå;ŸûWBölû´S˜‚ÃHP¶Ç®ôZ?~Ö¼í
Xû?BÄÊÔœÝª¡†wö¶¼Ùa[ØÏ®ZÙøÈa 3Ñ†æÎœG‰òfn1áÜªwKaÍ ,‚âJËù¹ÇWV3&áã&å‰§l@cõ¡)nfÍ.VêwrÃ1–~5¼òÞÊù	rEúe-¿+«ÂftÂö)„VÝ ç=;()L\öq%t{D.Åî¤}€+$/RHçÇÇû>wgBÜgñ[ÉnOj.,©ï6JRñiš|w&xÂAamø¢‹„«,KÓzºþ øªÊ]_âÞOx6Ø±&Ú¨B¹ŸGxl½I]¬¿R±N€8~ø–JÛô\›GŽÎ«ÌM2…¾n°ï§+Ê	r‰–ú§ùÀ_z!–Î/ž"èó#‹E™ÏåªŽAu¦)žÝ¦æ~]ñû :…3šK0–3àcWÁ‚~uŽc86Ê&&¼¢ü5û[ŸÎ\£NQgXœýtŠ"pÎ¤^Ð†ÚàPà†O5õfÀž÷Yôà XR°AE÷¿J¹É·Z©ÃTª õ”²Ë´JõOßºpðdBøu?”¯¸¥;DA[çèÔ((Eº`E‘ôXµE 0/²ÖžmJñúË¬3ô+P;e½g¼öoxKN¹X«Lƒc-ä/ïôñÖ,$¤2ß!]Iª¯]§2 ‚­¦¿‘x{Ð •—’øàjêµÅ‚ÅŸ¸Í½WGl?oŽ†W\:+·#­†÷ï1	CBÒ±èH 7¼âÐ7c¼c†k.ÈbÛU×¨´N¯Õñ2x1*²0m Ã½’}Î45OF-dC©Tð=Ý£í°UV®&®?H\´Äšÿ¯‘äe*¦›"A¯»r“(±æãÁ¥ã…éKú43&uõ¥¯$ã'¢Ó¸éE—Ð@âo+B¨Ž4îÃ•©¢Û»mPê]KBç
>êÊù¥t¥¯ÃN•ù—‘~ë[w°BúJ¢ïíÞ8UÝë,¨ý`óØ,ÐTŒÀIÔ¸´[Á\G$žYV´ÝökêÙ¬Ù®ŒÚ9]Z¸‚pÕóu†”ÛèaÐ4ºù>eB€æHÉ
8UG5·Ì´ÿ£}+M(ç’LT|a½<U¶r$*qO^O•†'õÂûÑGÇœ)IYNmîS¬–å‹‰ñ¼mU,]`Ü>„[Cù‘þøzÞH/NoðRd¼ïC!IÜ³ïóJ^´Ûy²q•Hˆ¬ÿÛ‚]>¦×ÿ¾ºse-Ê†¾$päO>Ç=œxªIÜ…Å_@úºÇ¾/q¡²‡L‹/ŒW„+Ü™owÝ¾6ì¶Ò¦;\žûÄ_}š[y<ü:¤0ÎAæ„¿‹F•X5Äm——(Å#`:w‡%duÄýn&“’Ô¬Dœë¼‡H§ãLévu‹=­énpÍË¹õa˜Öš@u°7þØw+*Ø‡–»%§—¤S•÷‹ö¡/Æ’‘ùT „œñÏd€*f^\Îj™Bž‘@6žêqjŒä…¢dËôÅ„nOÐ¥¨@?«à,£9cc ¸S§!žžÐ» {$:|GQ4úõáJº®^Ö":7T…zÕ`å%z¤gÊãÙÝÌö#÷Gä[ôð^}’¶% »Þ@“ìÚ¸““¶t/ÏXöoJ‚M’Bu!Œ’W58â­w+ÂúPÝ˜ÞÐ„CŠ>Œjš‹	nè|&ª‘æ®J^Æß¬Y ÛZ8‘Â\(“  Íž;~a:°?ëT€ü¬ÄøW¦ˆ{˜à>™g~ü¤v-lXÈ``<èÞ‡Ê’Þ<ô'e™Lƒû•\O(+ƒ%ºY!wYž8ŽHkÚü»µŒ¥çhjŸdÜMj¨!Ÿ„6\ç4¤@·sø{ôÒšU!PMUo…y–—tÛgc×b¤QJ¤>]_íÖ6_/ôL^(^c¨YŒÅ|££"çÈwOÖ>hS\3…ÓJäßüu²™ Xh{¬*­y{H¥å°JpQõEeçÆ”$3KQGÐtæ©$YäLÞ§§‚œ”ø À¤Rñ`a)‘JÅ9ê­eÄïcêG±Çöó=ÜTô£Ï‡	ãñï,Ã|ÈÜ_k 4÷ËNæ?h{öOŠé­™Ñr”c*¢zU£P‰$›…ð öÀ‡’àÝÜÙ½I¯8q<1äÓ\(Ä)›}¤oFþ²Ñ")Æö¦Ó/qºŠTæ[J¿âbùËËvÉÇÓ‹¿?À^¾ÕH…ÇS@¢»ñ;iI_ýýÕäãÇf±Í‰9ÄÞðB©l>x'!Îðãù‘vÉË¼d¤©Šÿ3ùÈc?BéÚv²	»‚«op¸‰ì½¤œÄ*n!¹íZº4Øù¥»\íñ“•†ôªf¦ÛéØ'Çˆñ!©ui‹™ž^ª¤	ß´—Mz¨½…ÌD²bCŸDÌI/ï+ÇîÔlXäªÙUzEo“t+¯É¾’F^B ¬*F	ôí\4Ð]HÊ‹QT® ÀÜB¼†Òr˜o\NÑ¥GAÈ—Æ¡6‰6£—¾‹5Ëb¶úø;¦‹·™Î¦~Ü:Ä…‡­bµjÉ ÈzïuèŠP¥Á"GŠ{%±góO§ÓúzÛ£…–s>¥ñ˜‹¿>¦€Ýï}…³ã½ßH1ÌÓBBÓçË7ÜÏ¯¹¦Ã Û¥qšHöc›{ºmúyèê+¹BÄª¹0ºdá9\j%‹(£¬`ºýêëeUí#ÇÎäÍŠPÜùÜ1XôÌVv>å¥XM+ÙÈ‡r›òždýCX‡vuÖM†ìÊ‘+î2–©bO¯¦›š–f}Ã×C¸&T›rÙÛ1M ñW¡sçÃJrõLm–§˜oKeÍJøÌ4w§ý
Â€k(ì˜³¬‹XzJ0²`’/áÀÜic
XÖvýßoy3$,O™,CÒÒ'éYI;v~yõ7Í#ÝzÕˆG³†‹]
{\„ÓgÏé;›ûµ
É¤¿*é6H¦Ý¾ƒNö¤Ñ~»+ê“œõîÎbÌ¨4}Ó—ì!Ëã‘:€ŒU³ž"Mùçüûº_xðÕÕ6øŽ6°"œo¾Ö¿=¯qú7ß^–cùðë0E,TàÏà@‡Á?7€@Ò½{u—ik$+—5¤ç`•°×Uá”õOlBÌd(:ÿ°¦‰cfäÇˆUU…Ä+£™åZãþÇÔsö,Z‚ –ìü ¦6¼˜ö¥^j·*³' ÆÍÛ?Š…]ïyªx®“ü=×N;k¢©BâcjlVA€ TiŽè^ éò®Üwj}J„:e|ù¦^Bù{ÖŠNË×‹¨Ê‘)ì˜H<9; ƒ· ¼}Àöû)’ç·l&‰Ÿ.@mz¬ŠKøU_
cî ¼¿Èðç+ßv>	ez©\ÑAƒÖŽYæ(‹A 4MùóßYäTó•»ø£Ù;yÞòÇWZíHMÇ¡ø¯yŽtäÿÝÁÊ‡šJÀûsrÄÊ!Š$¡ZsË
cWuÀ«M9L•û¬5Ö¾Oå¦.<§º3e¥ßs Ü*À™ƒ¢^#¥>Iž“‹ØØ¬D? ¤ ¹z7à©—…gžÓÏ¼Ž7¨è?~?À6=6øO[[4+Yå–‡¤€l!Ï:6kj”º×È‚Yž»¦ €ÍÐ8ÅÕËI"nE”4&±¼b´¹-u²)FËNŠ2abÏªÅ Ì±b¾+Æå©RY›VÓá/ü g ŠX‹Gåí †b™§bËõ1«
¦,(c-r11JWo
Ssl‚ÅF†Ã 9ë¥—Å#(Ž”+M7‹sÛxånû,ñ1é ÉhY¸¸W~Ô®YySïø¨ÿh¤žÊ”¨º"”È<Âpà8ÀÇöèÏŠåóædG|ž%¦,z6[ä~–ï/O°0½?Þ¹k¬\«¸>¡¢½Tž­!ŠAërk'ÃâÕ5ö·¥žµ}Y èÚÖº”ííçâÖ©½’5¥[KnÆ~0É²Ïþÿõ-ýöVÜ]×‚ØSGeb+‡þÀpbb]}uåb~ìš¯FŒè†¾†Ø‡®IISn¡Zî"êìSÉgôÒ’'RÑú¦uö¹À2J‡{ì*iw*”Y¤…¹M¿žMé,ï0Ö?T¨(iÌ÷k;´IüÝž=uæñB©–²PÍ’d‘Rds™n|Óu¹:Â‚&Wt‰Ù'¢Ëäu½¤wµå!¿nÑ~k$—}²ÛIC pK\[òôÑŸ¡Ý¥ï>“Ð”ÁCdnÕGT)Ü%§nC¤$Óët£(6Ð= ³ñ}áÃZ0¢œ¬îkfs6¢Òaý	b¼øˆF(|ªòjÂ–&!–Mv7#€çwrìbà°–Qï³H4†/ÀQ
¬¹ÜÑrBÐ	’éb™;Otrè)mˆoq È*KvÏÓÅRœ‰¯73ãuXF€U¢\#Å¸dï³h‡ö/Å&C[Áá9Ø°ë`¥hmhÇ­Œhùqü‚Hÿ5PË`'Eƒ	–‰­áÃêÃ¹äNuŸFîŒ®9²†0µÒK×ÁSñmäÂ%Š¬­ê9ò8ßdŠ£“i”&ÓÎžúžh‘ Qòêìþß¥g ÑÐ@­òq¡ý'¯ÌÊâm’Ž‹êºoe—ØÏ „gï³x2ÐáÏDÞ‹Ë Ù¸}·—t‚Ñ«¥sÞÿõm®Ý¹}š@fÇCçÎë# <´Ç	
NªÁ‚pe
5”dgJ H¯ÉêO¢NÕádšî²vçoþÞã…Boò¬J-Üß§‘šK|‘†ÿó®/½cÎõÕ¹Ü…um˜¯:0t8_6®e:Y‘FzÍó"Ì¹cÚœs) ìvð^Oþù>qŽ!rÜ¸+zc¶ÛqæV&ùükp(ƒù´§ìÉþŽ¿Eÿ$åžžeÀ8æýe:¸ä·ÇÁã\æAcN?öÛ…>°vs‘?þDùßWÅ" ]Õ§kt—­@¥•™äjƒá¤‡ë¤ÞD‡©Ó1û¹^n ˜Í}ËI_,Ù-æ­ö_Ÿ_‡3b+«§# 	K'"ög‡Ð_,•6C°o ½`tK´ØÀYp»ŽS†ÄüKS>~Ð|ø¨ŽOÃÿJ·¹·ïÔêbßñlµJ7±4yIp¹³}¢%³0n¦ª	Q$r3•<—AE+Xðýåy Ø»¸‹é¾‰jÛŽâ’!-ïKÚD3Ï{j5ñ}Ô÷Yã'»l–zgŠµ\á|”¬Û²_¾òÙ]¢Í6ŸËÉ°°ŒvP@Ö‹j‹Ë¥çMÚùØb¥2F~WG“'ëŒx÷Zg}{ôºœz"Ì…ž‡îc°ÙµAÝäs;}zAx\ÌqÓð´ìp";VáJ©ŠúVÆO|:çÄüNU('&.½Ëº…Eª–".Ó—Œþ¼Óô¶TW|ŒÚuÂƒ¦"õØýò 9kTITª¿t¦—%¯4à§ÊõË‰@?ªP¯¶6æñêyÓƒbàõ–fîÐ·pª=lÇMuèS„øWŒçÁÜ3bf˜÷Hb’˜;O#úZK:Þ1ïÚªR´¾Þåºô­J"9Ïj¨û´õR\åc`;4mâ†6×*žL^èW‹í“Ñc¤Qeº¬ˆÖÈYâ¦Yeèz‰®£¿±P„¸§Ñ×ÿl-›9"OX:6pn:ùà®ý¢Ù#eTµ°C*çòK1ÇÑôÃ!{O¤K¼`¿cõjdï€"Ž•”)o4Fµç30§kh‰Ô)ü¨NH¾Ö7¿GäÈ+Tÿ›)Šò/¶¿…ˆKÃ,L7ð­ïDÓTÃ3®h‡á»,5q*@,"¨)ƒnà÷w÷˜lÑÀÈ“”ÔÍèÚoÁò(Sîâé?RgßWh¢€¹—âÈh¶Ìö=É3˜PdCU›M±ßÙ]?.d€-¼miP¿»«›-M.¼]Õ2BµèæÂ¯ßÆÖ™]qÀaœ3Ú~åáå(Ùjab,U¼
ºõ]RÍŽÕ.ìõi[é¸¦û\ý~ùùŒð]ýÎê ój&*yÐ?_dåº/û% ¬; ß£AbòúíWÂº3C3ÉxáV¿/b¼‹1ø4§NuLÕ©&{*ŒÌ¸£ÉTU–ìÕ!`›Ž§.ê.è³-[œHn5Ì¸;WŠr™¾^c8ð=ê©Åa,cç{.NKVÛd@”4f..¾3w^íµôƒ°ê“‰0BÉƒÜ‡T¿pÇóSŸÊÚR3å³4Vg¹GvchÒ­
P1Kéñå¼r·Ê.é£¾ÑdU^õ›ê@Ófàãh{’&Q$å>bÍd{÷¶»rØbd>B ÙM~ac‘»Øï¾ã©sÔ—7<)é%‡âÀ—Y¡'†—î‰ÕÎE<'Öj]ÓR¹:%;ŠÜ°#õf¹‘ÃÔcdAë-öS =š®Ù‚M¾TÅ8ò Û­ºä»³[7ÊQü¹ä8Ì£tÚ;n´Ç­*ELû·««ÿŒá„í§wîjCJ«Æ{kÚIqv÷&è¶ôºÄÉ)•½MdÚu¡/áÕ)¶¨µƒ5/¢>V(ºŸ¾µa½m[úª´=‰sÛS[ÚšóÁy(\ƒ!M·`­Ð°^ø™Ç÷jŸL•ÛÜÊ{S“w0jÜ5,àIÐóMA²–‘–	×$dÕRBÃ:-ú£„Ðú¬Ž×	gh5™ËI”$WôßµÓ5{BÝ-‚×EÀŸf;òð·ZT{Ç«¤RÖ¬šIàÐì…åºI7§\‘-‚<FËV› 4úéú{(é%1£Ð²ái2‰Xm3ßNÿ-˜y›°ßEÛä¨U'{&sË2VûÓKœè‰ïhë>z`ó4°ˆL	F%Ï¸›d–·9Ÿf[Ž	uþ''PÈ rBzÙÖa6@shptÂd#LŽ¸üünŠ$¤½0ðç–#Šë^(ØØ-šËª¨*˜ìƒ¼IX~]z¾M4ÐVí.}eHˆÿfÈw¡¤aJRŠÐÎ`Ý¥pü?tÂPÜH+±LežÀd4ß>\}pü$Ñ„Á- §Ý‰D1Ü¤¹»ÙePËÑö]"Eâ%ÈmU]÷HªÆÅ]#1Ó½ý)$2~5H[›øó<¿ÒÑÙôô„®úÊ­€a%}ôp”nŽ–0w©’‰Ã½ga\01ˆÂ«»„•hg-H¦›úãøZ3+öjFà„NGhêzÐºÖDÆ÷ð˜7‡}Àu¿×O{2ƒuÀàÂåìòMkGQÛ‰¹³hšÂ@Ò·/|Î†Ð÷¶›Ñ4ÅÆ&s‹Œè¶äw¿/@­.’8¾6½žÒŸ-§•‡¥ãw C15Æ¶©!$I©ù³Ò‚øœrñ¦Ê™7\r´LþL6ó¾UoÌËZÌ{Üt¶Qºû@žôöT¢õƒ5Æƒ3Ñu`ˆrZ
çûTË’íJËÔü¢F®[§? dÈzè7kó×q…¡:'ÐÇK¤³é|Ú#Ô>zý„HI}cï4ò¬‰…o…Å‡ž¾‡¢þ­
¿þ`ÈëÆ®kîZ­JŸí*ì/É§™±¡JxÅ ž9H~§úŸSŒåÓ.J?ÐYÇè1÷:åGèø,3dýïÐ!ú¢2ž%ACºyaÍ–Êbî[Ã×}}ÎÛÈeM»_¡¬«k¯[.ZüïV¯ù]Ì©Ô÷€Bˆ2Hv©¾Q#ú2B«iþáŒ£j??"R5œ.î:‰ÎŸt ¸­®jMB$ë&Öo×9å¿ïûØ‘D;¡ìJÐ[¾)Ç':iAc%‡÷tÙÿ»·?  v
ÖÜlÇ´$îú`’;tµ qÎúMwÑ©)ðØñš#¶ú•Â[Ë`¢ÍÕ«±èNõ½@ÝE+[56ÍI~ÝÝ<)‘zþ˜*ËŠÿÄwã„G-ÒTã}B‡=¿õ—  < °«éipÑ M¾«BI‘7¦æÔÜSËG¬,~#"#'7Ébÿ:wd}¨Š–l{5WäS\cØQXÒ‘öˆyWù‡ò®Z§"bÅ¿J•³“ªæh3M“ü7©hÙuóÄØ®d¦xx‰/Q«ŒãœÝÓôA>×I	á›_©l$,ÅIþº¾\“©€~ÕÛ§o‹
´ß©}íbd¶»ñ˜‡ªŽÛïSê79í):\f@¢xÃÍp6™<f=k˜íØøjhS¥ó¶\^Õ„µ•…òÏˆâÀ.Íí&ÄüG±MY2»éŒŠ3XutyêE‰ÇÛÅ¡¥·¢$Pñ¥ áØˆä1V323G¿²."ÿ£?äÚ/0&Î~	O$GuQbóÝ ep'XŸ;îUC[9ÝòGT`ñÌ1x“*áM%àvÔÒ«,8ã«¹›„u
5©ŸtÑÚ“K™•á_˜eÉ£—Z®b™l¹jšÏAŠä³SíµbßØðÀ‡<„G¬½H-\àÿ|éþ“Hsxƒ/ë‡Óf»¿¦ã…z†`ì[=¼žÎySïç¸¼‹0ú '~|©ƒÙ¹h™Âœ:8.æ˜³ó¹
ÆØ(Ê{Û;—OF.*>
ÝÙp¢¥•[Às0³_u†<Ý©£*R³Ö†–'’˜5¥N…‘;´M}¡B˜,¤rð(6íqsýâ„a~“@,åê4ê?Ý½…b"tPYFåÕ3æveèÍ«7$ÔºÇñ®kF á€(Âñó¶
Ø,$³´IZ $*ÄÁKac›¿Î¤äÚ8RLfñW³¨SfÝáî<aNwBté9¹ÛÎGÑ{ûD@ó[I}ú>R!Wf5ù	žèúLÒ7ý¸Ùú Rs7q0›Cn^G¤›þ¡PGñ“MI¾Ÿ3âßå]™í¶Kÿ:ò0e‰}Ò‰¹”:º+ºF9Xèt;H›¼7¡Bó&“õ¨xì£ŸòÙ‹þå€Îzp3 ™|ÖJª`_JöÒäüÝyö±˜ÄTèŽ7A å,×›óœ‹ô]ÒË´¦5ä©@«&Lÿ7§Œ9%"õæµÒ(Ä_CÈ'”F+zî×ìD Çd‚Õêð‡æ¾ÈéD¾‡X çƒ?/SºëËÿmÜƒg‡¸­aß%k£(0Ý‘'­PžLÇ;_ Yüùm~Ë|j,v˜5Í€jq<4¥Dýe”	¸ŽÐ‹[¨5ñÏTþé	ŠpâE!‘žÏf’É˜öôyïõ¢›£÷®ëÿaR4–'›®úÙÚs´ˆWÂUp„´È0ùícâÃW_¡©(›ª#C:Úƒ–ä‘nY­¨ $ºRŠ‹ð|•üqªC›‹/²¨‹zCU]8'•Ñíþ*”[5Eï[“œ1FnøŸ—Áˆl„lPo´,"øl;°uø›	EÎçØ€~;3ê(Ý6Öè†õøx^ï‰*PrxÊ°Ëbb×/ipí–)vÊjBðPÄjIÿ {@qÄ^ùb¸§òðn¡ø½¡V¡Š3udÛEÛDª©u<=û?w‘Ò7i¥˜Ž¯%eŽäâ¿måû£«X«-mt‘ÎS0—(¯Ptz|.ÿ$¡mBG^Üm¿ÂùDË/þŸƒ+g°íŽ§âG¤€€Ùó'áèæäÊÂÈÈ^ú¥¶’3æ=GQÐåŸ•–ôEôÌíÿë\Ç:Ò¤­´¯2çN*Ãi„¯e<ÉI«¬§¼%uáAëòÏ—z‘t€È™ð1dQóû=&yÖÚÙãáÔíÄu©Í°á»Õz×µÒé»/YKØºÑHI”Â¼"a°,Ž"V5 Ê‚w;Òà¢Ê‘›zÔx{¹Z~«X|©­}¨Îi4òFï%ï/J™ îÖ'_šø%ÒJH1ûnI´K·ÔüO/÷ç)Á«¤X‹â\[»–6´RÔáøFÈ]Ž’&ûs=}@„ÕÑõRŽ½óÞþó‚XqE·- ¬·K•¼Hç ’N‰uË3(AÝÙ«1ÔÂâNšíËñTn´8è—»(ÁÀÈ?f	1Ñg.—¯U¡Ÿžðšbi¤†IdWK„‚;È¯Â%U ¯íñ7EjgëS4a³†·…˜®ý©—U#%†Šû!m—Xí‚ú&lU”7GóÛUé©«‚ådÏšj Ë9õC2éºìwe OæMÇ”Q~þSÒîLÞ•dúœùèV¯û­~Q²(0øÓƒõŒ¤š):ÖÑEž¹~¯å©a|ë/{©Ê«NdŒÒ`a¨-€ïÂûÛì°ír¡dÎ-ð+áŒ~SDëœÒ>!´Þfx*¼Md¥b aËnÖ%í5ˆ×Î%-`-í6˜¢éâÿYxXã&þ»€òéÛ‚ŽüM¤6ã5cÞ|­\ÌGælk‚ÛV?k[Úü×À`¹„2ù¸£DÍ´w!–œ“æÉ}& ›‘.¼»œ¾J!~Mú‡“%@2‚|½sWÖZˆCü›ôZ¾úÌbX"‰ÆX¥yWX÷Mí`˜Rv—vÊ:ÆÇÊ	dRM»Ýèêfft¥Ö›«3'<õÁÅ00adN¡`7:'oM3WÐ¶[î¬øŠû[i¦²nŠ·Y&­tU!wY{õ®ø)rûŠãÒ&:EÕ8Eõ¥O*ü ƒ	É^ž¢…Ä™^j3(Ì`n•ru¾þžó(ÖCŒy v•…]‰¬ZÍMï‚Ío ÀMHNÑ©l$ÑiYQýòŒe ÜWyJè02)â3#[ïQ  º—„íJƒ­ôl‰Fþ:ëÕrŒ)´ÆP#_ófrWcžs˜#˜S»ðh
î
¨õ¯ô–	ønW‡F)É2d¹R@Æk$¶ØmM ¿U hÙp.4ûý Q&šþz3ÌSÑvek<›®$‰ÿâûö¸j¦ú,¯àASZîy_¼rÝ.óQ3û@¦™6‰ß^qIÈSöbÖÝÔ/rhudOˆ¸‡åä®ÅÛkÌ«0¶>—¤]?‚­BØÎUÝ£j‚8ôÇýƒTjŠ™+US­‰i l²mþùÛAÜvJ-j7ª:C5·³Ÿ€Ý‚.òä4“NÛHZJ¤o?–C°kÎÓžófÖºLê“…•
Û¶Uºå!™{ÅE‹Å'ƒñlµf™Ð-œÌ‚±Ÿ© !q3sÉ„Üþ©åÜ‡Œ!˜Ç“kÎÊ®õbs?Ñ¦š-xæVêk‡ëuÂ\s1$®óÌ¤Óíoæó·&¡¸ÍÝ|d„Éý.Ô~6j1ô]ñƒª„c‡’ƒý²+¾ÎdvÅ€Eß6‰þÒ_eÆîó%Åž]Ad%ð†5þ3ÜU§À«ŒK
màZ5#+Øã8f”HÉŒ×ûSA.~´:¸j†DmWbx\5¯‚¡LW#£é)ÞNZÖUæ«®DÛç:œAçFsNª5½«=ícˆ2KUÄSSÁñ'=[ó$š¯¤Ç“QÇ¦ÚÅÂ¾²ù"B™ãCFØ5xs”Ê â"1ÓoA¸ýW±÷ÑëƒÒØ¼ÈEURî¸J½j¸·i©¾Šl„­nmnzÒX7Ë¶¯¸]ù´^jše§-]6¢Â–Ã–GÄ‹}{íÅòNüX×e3õ+Ìùó£0¦Þ­˜1Šä%˜>Öš&
½ÂqSÿ“^÷aÃªLM½zýPæºloP?@ÇRí§¬ŸyrSÇš´ÃœËÎu*ó]¹§œ›g@ðúlöñàD„Ê2œl=–¦Ž8zª¡¦°NòØóóf·¼rI-‰2z²]TÝLÈÖcˆ¡Ž[‘ïÔüºL\ÎMŒt1Ò›W·§¸7H½üP²!Dzú–òhý°ØÜÈ€d~±$r¾î8ÇÿùïJK’a”çÔ*ªhì²y"¨ÏS)uM˜|Q’ñ\"`ás:)`£cQ?TwWˆ´N$óÐ+ïçÜÊ¶¥äÏ[Ñ¥·¿ãzÞXR8á[«†tK;·l¹$¯˜cù&¸Ò¿ý <´ùy2+X² 5n¤!CƒyÃ›<Þ/´óÕÒ!UBÇ­æà÷ÞúDt°Ë "ÑCÒ¹x_Ü‰êöOó¥ÝÎ‚"Þú1Ì¤X•™à	©qÄZñZ1cÖ%Êøö¿Ý\XÞ{™$JFöÕ(8%RMË¶%¤[ËO#…êÈv:PÝ'XŠ2”c8o0o|û¤DÈu*Ôµzs\š–§k5û¡KqÆ ¯Y¢ðÏÔâ´#_Á„·å>LpÛÔ÷tHž5ÉÑÌ_ƒ
í9íq‘LÖCÆJBW‰£ÁGz!0yýoØŸ–lIðQrvùšñ™ˆ2Å0l8{(‡RÙ×¸°ÇVø…L	ÌG"ÒÅ[‘èâƒöE»öVŒzÀðW(ç¤T5¶µl_"¾™ÅT96p8ŒÌ((=p#ðõ»€úÉœ\ÛTI_nu…¬åÁè´ÚElÉl÷Êïq¹ânô=)ë¥jE?9AFÉm"›vÜlS°¡ ¾¶üÀ“Ÿã{öæäMyZAOå:§Öôac%XÈ3B¤šš×PÇ?°UoÊú‡²Õvû]iPˆ“WQP]W /"°$ò@r¹‘‹ði˜u?CznÔmo\L?£©BÓ‹n'uê¡Ò^ëàÕëÍÓ›ò¤Ö$cï†*sC™ÐÎ:°Ùú¤<•%æþ)=€èR¼¶ïNÓ¯R¨…*®d'ž‚'—nð2=HýÂ{‚P¨; uØ[
ª õ¤¢©VåBv”Oëhrkøx	_ðŸÒ5˜_…LoL§5p+ÿ Œð’éb\ª€§Ü%`†§G¸ç«µÄÊm~è±|ÙÊÊ½ók°p/¡Rb{ß™Ÿzzã{xHnÿ<ÚòÞÃÓzD;ù¯R±¡ï¨NlE<?È½¢÷NÉä»¾zŽËStÊšèT•ì“ÊÒÝïôríqáÁkô!gÍ/»@äâ=oDÊ–®õ4'Ž¢ò	ñ¼
Uù©S¯Š¶…qêwf
<\«Úñl&ŽA¥?Þ¯¶rœâ*‰{‚%vTH‹É¡s»«“·x“Çó Ú|D©ÊÃR'²ã(?1¦v¹å^²°]Z{²ÙÊÏiÜÉ£ò¢Í¸°!Œa	§ã"^”j^]NÌ:S2»Y8‘V„òXûñ›ÆÊc…4²%æFXÐüŒõ€N{gKbdjõÂ„¾…ƒó¥ü9ÎknðÚŠcês’%ùëõŒ(×å¯'"8.]p¸Ëy½õTßÙ:‡)‡hÍKbÄ”ÿTyr]­
Ä±ÌI  /}¯Þj¹¤–Þ¬H2	ûÆÊÎ˜Äå]ª£:§U5Å.^ÊØÅïp*wSbGh4í×q" z…"f[½SØ£ÃF·üáÍâÇóžfqyî2Ô+>´IZâap'Ozx²Ê”5•~µ²·`=¶ÚUJ?CbEbˆK"4PÅ
±TõV»ø+Z/tƒ›m4ö¢UÆ&ÒÐÈ4]û)_öLTä„ÿŒS¯ÛPt”qé:=ÀV›«LèôÊ~ j«¸)#4o‘jŸÎ2gÚ+T†Êq›}ƒïƒ™5ÚŸzjCÄ^ø‹µèQ6‰‡È+Nfÿð¥$ÜÈ¦ywØütFù+ }‚‚êPGaì&ßNzŽÉ€Î¢¢†èÆtÁ"/#¤r¼XgÐ®Yš.é––˜ÃD] Ø¦<ôd`åwSpx,^_×Ž+;®÷B‘ªmF¾ð´ÅÌÑT9IÇwG_ÙSÞFŒ»f_qì=‹ücéËÖ¨€Üè]º†PÖamý0!tìf8´o#ò-‘ÑFSÿ’<7Z¦‡†èñ‘½ ÀìÑ7wXWß’¬Ô³ñä*MªÇÃ¨@[ïý9Ú¬USŒ\õþˆ¯PÂ/L[Êé/©h'˜3¤u9šð.~‰¦Ô›v…;/ß€@çt§Ãô¬kqo¤Û´R½ÈUtv—\(ÄüoôLD!8“$r_J½²WÖ¹ö±É'õÆ³Xv²N —_$–ÙRd .ÌëìWá™õºnîQ‘&Ø Tíáâ1¯ÔO&.Ö½'™Ìg;EHõ=©•š¿?t"+ýÓ*vž½_`^½]•îy+þk}œ,™ÀLÌÑQéövÈ%y”|-lí)%+s7*ÊÍ‰+"8ag-)Æ¹’ÈÆPZÊ¸‰?Œ¦h(VÅ"šÕsÂµ	,šˆø$[—SzšL]¥ç"îp)‚)<2›@Ù©Š\š8 !êCOåª ðm?X¶ö`_4”ûó‡ð|‡Éræ?òû  ÍîNüÁÚ»Aì»†­ÕmOÃ‹ÿçôó†ÎÚbè——J‡’Ÿh©|àñ“Ñˆ(­ŽÃlßoúÁ†¾òDYEÆX<ÁÔSkÚ‡ºà.jhÎ6øåm%‡Ñm¦‹ŽFLTImûS_ö"§ì|œlŠB€
|€(Aw+`RÓ¸[©²¨-ä’†¿æ­*&Ü
€yf|û3±¼>üjÜ›b™J5È>n¿’œ˜Áºþ¾¿in97Í½ˆ0œˆJµ‡!TØ¸åÙ§¼/«i‡»{iÝß¡>%Z¥rª=ç$¾AÄ„¬µ
ÓB‰ôÒ )ÔwYAx–‚–A]Û´[Yß)KoEg¾ñÜ6+ÉÅ6ˆUK6ÊF­Ã4ÙÍ"(±ÀÈ`„ÀräÊèÈÉ×Z—2§b‰aÿH™î7Ž¾ïÂC5Ðœî\bq)á@”G€T—µÙÅ‡sò³ÅÏÊ4Á|U|µ…ÕìÀÉÀš"4HùÄÃ¢3SãóÑøyðp#Y˜ºlóoc‘tª¸¼3ÖçÅØ›æHŠS7L„©c¨cI zc¶CgÄ	Ro>Ú•žò±Æ4s	×/ƒìJo¸S„€%.~&Áh¿/¸¦ƒ<Süœ;Á´^}
u¦ˆû¸=cÝ|£82VhŒí|€ ÈÒðOäôëôÁMDˆ©lÔLl|SG¡æ‘ARú	¡e¸Idx³gìË¤Þ¾RA¬¼SPVw†ý»4|.îÜ£7eúnpå¿¡àuyÂ¿IA…yè+ŒîÅbÙpæÛèÒ…hŠPrUÇ³páû>­d¹ 	¬TÍh[æD²wsŸ9Pæy zVgsÅ¥“ŽW×ÄJ¼ÿ±®%Wö?ˆdHEœ”ÄÜœX:mË1åÉÑ©v^øeM3ñ\ôxŒy žŒUÜ÷P|Ý©[©˜K”é”DxÜÕ(¿±%+Õ‹!Ž´Ú‰Á\MÕøÌY†A÷©Î êk!8HH:ø´nì'sdŸž­$—=L/ Ágëô<¶KÍ”ª+
â$t*^/êð³^ÐÔÕRì3FôÊÛ´Íç·À[$ã4F¡øˆ0"1lÇZü"ˆ (¹|l—Ð%ôŽÍ¿è´—ôL°šûè°ÿ-æ¾¼DŒÎzxûu©MÐ(Ï‚R\=zÏ/³³w¡èÇLG;‹_Á%ªàØdcÓ+â
²yß’î ¸&½ƒ3;Ö®4Û_£á:Ô¿öŠBÅ¯01r…ý/ÞÚ-×‹YµŸaRŒ-ä8«ÐDÙã¹Ý×Ñg1¿Ý=XÛáh3“ëÜ¨Ã©U\ª½*Ü°A<Ó•nW!í†ÑCJhc¦8B"õ«CÊÀ@G784|÷®8ˆÃn!ãä…õÕ­¡À#õœd²9dvw$Ø|ŽÉ±É‡;1ÔÓ#,YCŒ“zW¯<[’Núzš;\?u(:	£ªw†GMyÂeû)Œj®Íÿ+N[œA•Ê#³é–º8å"ä+êq6,©˜áÃulEÎRâ<¡ N×+½çYÞ›)Ï«®Lsß¸ åÎ~N%öm1qÛiªå 
(ZœÑ¹¨	JwRŸýÖ.„$ñ²SÎBû–
/÷£“c“	ÓRˆ€7§1H-»¤ü±YÒÌoýÂnáÊ9†**€Ýeæ³¬ftÄDÈlÅÇAºø<WÈ×F+³gN£¾µu°O+,úËJ_5Ö»éB5Žœ¾‡çÁqNî2
¡½“ö&ö[Ë/‘ä®˜XEÌ|¸Ói±U’c–Œð$ô Qeímâ%Gõ‡eN9·CrP­•l*ŠVÐP°=àÏ-T¹ý I„Qð,f¨&Îí †K_NlÉÐÇ»~~Ñ¼üÊZ.X?0©ÁŽL~³Ë—!øY!„áï/¸XºRò J>õB@|:KY­&ù;	& É&#ÝaNCBY{ÿxIè!’C;9±ž$i6Ç}zbB8^ŠbÏ³†ÐÍÒlù¹úæ`Øus%õœÛ©³÷2WeuÕwÔµ?³/9O	ˆ¯2Ô7Æái%Ùü?[Õçå¤ ±óÖâ»éš<]ÈXï¡ÙÕxˆ¬”Hé»ÚÚfò¿C¦út²m$*îp"¾?«Ò-Ô2Õ,8ÝÝ™¡ã£eu÷Û»ÜâŠ€ÃÉî¾¢Ü!0‹ízwz@³ìÂ›-Ýì4Ü¹*çüŸ­HÊb¡hËí§6©“Ð|YamÉÞXÂëdG<×eËLñ©«?E¤ë7ÛãoŒÀ°F13qÉCŽ“²VÑ	ÚÌˆ¡±fR³¥U­±k{ßÔù&TyåŒ­ÕïÁg¡6BØ§°ÎäÈºÏ­v­Ý]ÃÆ?b]7[óNMð/ñð4¯È“ÿ¨•$7ˆT»6¯7ÞÊ¸p²œìNð¨2,q/Úß‰î‚ 5•½zÊÅèátÙÊŠýÂµðÑ_
Wmø·<iÀiæ|åãH“¹5£¿Þäµëpt&îÅhkÕƒzèŠ¹ö/'8dmÓ=¿UÞb1žrŒ­]¼Æ}ë8¡ýêpCÛ‘6:ð³íb<ã†Vû{…¯´OÜbøuw‘üf7nv)m—ü)²ŽB~¨ö’¡9ŠËîB°ùüDØ"Žœ,€Hêø€ðüPÿŽû+€w…úO%#¡t·=ù—^ïìÄŸ4Y>q—Oåì¶£æOXÍp¦£Ô€¥ÅÎ¤¶+±­û5Nô¸†1©Qå;õxé»_eðIº—àhç•pvÇˆ»ôòŸæ7ƒÃáú+­C,ý™Œò?Û€£Öëí²tlPÔ~ìÃƒÄÃhË¾úz9¨m<½ JÊÌQAÞîþ SNÝý*Ïk¼øé\uòm æF˜Ý}ŠSÙAxjÄt”Ê9•Ï/üPw'°%¨*y¯Ct+]µ„y¹eWöÅ§¸p:6±EüðX»[Ú÷·t†gŸ[u3b9‚v*3—ÿ‚¨úåXæ°¡Ì’}cRè
/_ë©,óp·€æã—ã½’DÁj˜5¤€Þv+þ\òH*|b±õ«.cÌÈÌåÕÛ`ž‚Àtä^[f¬w:G&¾/gHCÚ+³:EggÌ,ÛWa^(-6³ÊEæü'Þ×<¤ñ4B¯ìKjÄ´T6Ü‘?;ú7±¹ï
	®v#/\Dp€‹®=4”%‰cU/Füåhƒ1™7œ?ê^ý†<»žûúiEC8é1ôšZñ¦òÁ#˜lW±Ý”À·\ÝtÆÅðsðaFêàãøh4…Q¡híu“š¶…®ó‘fŽ'iš4Á3ëS}gÍ3¹Ï
wåÖíO©'ãn·Êá&òÍ”°$ƒ‡™ Ò£—Íƒ¬}-¦R|‰óøÌÄVvlXW2€€Ã?	S—ëÜç¿BKg½ö*â†÷&›íþUñ]_ýé”3ÎÙËÓþëŸ,ÓÚ†¿€‰ÕàïF>U:!²Ê$ ì=ò‘‘>E…üÿ2<zØPðG*ºF/þ‹h«ß.sÝ»ØëáÈãù·ãG¿†ª?Möù¤€¨Û ¾3ì®$eøBÓtjë²Û6Ðîë… Ï¢ýÈ‚ßÃÌ,­%U¿Ó¡¨kÿ¥F‰½'F4;³.‚b9$3Íuð=1#`åOÊÝeòáû´íÞ2]ÉË»Væ”¬DhLäª%ÀìQ”\äÛ:]ƒø38´B ½EÞBào¡µ%yåïˆ®ØóJör¼ðåð†ŠûXx–øéþ‰eêj+ˆZÏôzñUÿ›•îY²M-­ä=c^ÌÚ³W„½Y²sª_¢"­¸–’7oò±¤ç@93ƒq¬ï‹˜yçèäz:å€¹		šú¼^ÇÕE7ÇG¢]2í.U°šr ÅýÔy.<2Ösy{ƒêÈY6ÝV€<8&a–}¸;õ‡!ÙtÏGA	€¶Ö7ýx_µLXwvâ¨¡VÎ[¨0iF\KW3UÞåèÿn¾„c‘•çr@¥vàéÑ|³¶+¢PÁ`ÃÇF¼ÄHþl‹Ä/Á*…°möŸòã {t¢òÂÌƒ¢Ÿ+AÈló|dy÷¦Çn¬Þ‡ˆZ‡¡0ŸO=ÏƒNŒË:ÿÒË·¢“R\°˜!ÝÙýÚÐúzc‹z/óŽç9ýó%:lÝVþÚ`/éÊHµ¾<ÙXÂå8§ÏcÅHlŽÈ`rÕ`åS=ò#Zh$†ŒIïRÑ¥c¤dÌK‘^û¤k~gÑâô™$X¯‡ÐîR‹UÒléf ›oå~Å‚³e4MþÌ»û'_=Ö%Êº»Ž)vWäeŸÁË§}ÂÜö;›òäßDaYOã¨†qãm¢‹ì7æþªU[ƒµÔÛm¤CøÅ–þü@ƒí¢_ÝŒÉNù5lk+ÎÍÐgÉ>‰úÀ÷Î‘„ ¼Ëàl:P¯¡ÚËˆŒE|KÍ*À¶ç¤ÇU¿ÒhmÀ1ÍÉ«†¥Fåe,ßìmÉØ«H¨¢9þß€¿ŽrÜÒ=ÿÄôZ—~¡9±´¦TÑ	^ðª6›ä;´ç,uü††Ûm\äßÿ®/ã¸œ›eO”6jä¾ä£?7k9YŸ+žˆ^LÐXá„Û7JFóƒ¹dƒü[Ï¿áy.Ø†lÆê#¢šFpJžééwÒ=]Åö/MÄÇNJ*kLùžG
å Š¨6m\á¹Ó5kÁÜPJÒñ»¯xåŠ¦ç(t‘V.9³ŸÜ¢?èpàa±ò,z5D¹ïÐ…&ºøÌwœË÷÷¤ª¬†Â¥b÷ÈÅx¬RÌ^¡¸Ew½k,xÏ=0m2Ð<]ò©¶¾ÈÉ Ô1ð†Ç!ÈîkþÁÊ#öÑÝè‹&!_õ §høúüsàM‰êÍlôöˆ"kU×#h­
ÅøœjK“e€ç·ã*á§ FÜ@ÉwlSO‚¬8i&œæ
ÙpR¡Åÿ3 Œ£Keè!IÇ`Z‡±¨YHg›­¶±ðïtÂTP¥^OñÓX—kG²7C«P×êÏ÷d–ìyr‰ô]ìðTÜ_¼fT>ê?E ñÁ\¼ÞµëÔCYÃúÄÒu6£Q3"Üõ}È"û
að‚Jæ¾ÚY
æÏâ0=÷Ž¸ÙSÃäzöóúy~–´tQ* MÙîÍHDi$³Ë×PðOˆ;Fš»q·v¶B]'<O¢û¾½/qd3ÚËC¡™Il)-–]ˆ URŒ˜çX%Oñ·_aAdi\˜;?ùü^®Øt¹æöêKSU»Kâ2,8Ã}éÓ^ÄJQš©VòS£6–/)E`Ù‚¼ÆŽ²&ëÎXßçðFœÐ¨sfûøïMÔ¶Ïiº¾ïØIù…^)VCÀƒƒÊ¥uR2i­õ ²Ò7ôæÅÍNëd<†+ÔT¹5èÌ±"ÙÖ?ýÛ½PT,xmc7¾'k"ë¹|AÒ&‘™vdõí.-«ˆD²«<ÉÙ¸¿™Ôv5vîRI×Ô‡U]yBî ²ÝÅd­4ôÚ¿.é|…Õ1ÀðSnFz%>Üþ_fU¾’ 1eæ$‹.„¬ã÷‹ÓŸ°æ0hü E¬cvºNóÕJ‡–ø:`²’¾Ào³JðÉ&ÕÜ÷†rŽ³Åë…ñÏ6pÞÎõH«^LJ'61õÖ¿²‹†æ{¢©~œóx“TBræ©>Ò/-J@çŽWn¿YÝºÎ,Ls}÷ùœÐî^k’ZMNÅ<5¸ÜÀ(p}£Vq“Rv©9úä0ú©©Õ†…úÕ‘­Ä´>bø•Ö€Z‹ Œ£óEx|/;ÉIeåoRúÚ„xÌ3‚¼Lry­HS.«é³û¢cµBm¯k"LãŒ¡ÊeÕæe6Ù	ÛÌAã—äÜ|Ö¶ê‘F,ÿ¶5ïVêWbàê©™ÛÝ¤s^1{ŸRò3PüsñØMƒc–N%	S™€åéÍÍºN[,¨,?š¾Y‹¢ð—ŽH¿¢e'éÝrú¨°<QûüÀ7Ñ®ëó.|üè×ŠJÄESõÚã¤ÚûH´íYÈºLÇ™­eO@£²œtˆ¼fçzçPéëDÔ­,áÕó:è`ªÞÇ1á³
mÿÄa‰QÜ\ºL¾(6=â¯6Ä=$ Å³„FÂÅšßáàì¼ƒÖ3`K•x•Sžo_‰‰2Å®£
NÁâ¸ê}…säF?…væûiq •+ 6N×Íˆx½@Ù"ñqã¡6gôâ{ÔDû°¹¸v.cê–˜A¶Å‹CZ-$'NîÅ÷£¹¤¬öïB9ñV€*2Ý¦ªêU½æÒ’¦Yiß<"J0d•{Þ†U%?$=®7~&ø5ÁŠilZ^¼³î‡bßZ¸õ·Ã†D C˜ ]QNL&²!Í¶S80±Vß•­Ý¬d5Ú¬¨'ŠL'¢>.N%¨½9ÊQ6Ï4TÉ˜³Öí˜ ®uó¡=Îÿ	3"<»µþ¸…©ëCÈK}:Jù3©Õcô†ÛA‡rÎ¢÷p'«áv9¾ƒZ¼^nžÑÌ/p^¶káeðþOåÐ—áù;Wù\p ¯ð2i´®H,…[Ü«=o[âÝPnœ¾[þ:ÔWÄv¡^Â#åž˜í„/àKêO˜%ÇyÁßÂ«í·ÀÊVSäL—»—4´uýŒ¡8rTˆ3DîYî^ÐM·8…CË•#¶€
ÉB˜óQËûéQ`Ý4'Wí h!ÃÝ2"NFV¾<ýHÌÙ¶Ê(ÆöÂ…ßGm]êSø® cC½§Ø7¢U&ïË*¥M-[B`
ekRêôÿÃ×jé46oFLäñ—…8É¿Sî­‹
õ$€ 9Œußýó‘QÌÏŒÈHÿ’<Èöµ»gJ¹ËIé8/j"fÖŠ›\™Ì:ÁVdMãúü„Æ¼ú¦ê_mèËžs#P…>DÙ+nRrŠãj ]HÖÁvä„Å:7#B-—Bsø–nÍv%[Ô}ß&ùãÔ=„›ÿ±èÓ²ºEÒŠeÂ+ÝjŽ.T(¢ât¶xðÀŒó¹ÕH¶-ûñšn˜5Çeå·LBÒOµŽèî´{D¦"ëÂÛl¡ŽvSp–Í¯p§õw	eU'ãîQ¹Glö¨t"™¬UQËæf¤ÝÒ¤§ò¾|”æ9„xg¹5ÔA¢Ô|U´fSMmTá•^b±…kb"*rÍÿÉU‚²î6
­|åâFCÓms¨n ›hf@ÿšÂÉ'ŸJQXÅ0R*âuP¤Zã—ÌòÌTØÆÄó7ËØÄ`MjÔ£0­+PÅÍá¨Ô“»Å¿jmüÁø.Ö qÐúÍÉ¬nñ	ŽK(í\ô‘N¼7r9=VdÝ¸ØÌ¾»#Ó€ú qië®{d°O:0DLa3êssx‰`[´Q ÏQYõß±KtàGL'ÊÍÝ÷‚%ÁÅÛ)Þ¤±±^ê?ŸsA¢I¸¯ ×ÍŠÚ5ÀÚ|ÙCæ&+AÒZ„Ú`\¿«ö‹Ì],—ÙÁ©÷¶X\ú"z—^£d®ÉeqápXUú}¬¾,vŒ\¿‡ø{8eó¼o»%öú&µàu¼ëáHžžaùµ9wØ÷ÛîÂœ†®œ» Æ1‹š6BÆCBÏ 4’Ï*’5{
!ëŽ–N—S–·xû÷ëCBg{¾eoÄ¹dF…â'j3ì2€eš%j²šÛ${´W‰×ÂSrÈI„æß||¼¶Ðr	ø'×k®Í·{¶SÈ~¡tÄ?ÄÀø¡\¾“|DõþôÿÙÊËý²Ro™Õc… ê93:®î*îFRªä.¿ÉÓ½W7R„Û:sµØYYsŒöîá^2aèéþÝ¡fÞ(Šr âÒ­ñ!!ÕÈQ*nìÉ$ñGgæé+•-=¨ãQ¦þ†b¬kçP9¢Py2Í
5$”ñ"ÙûdVÙ—«wâk}U"ýø‘H.B#œ=Ö_½­é•G÷}£”u‹ßì‘Jš)û®¢çb…^¸5Å$ß!ûå%dQQ°ÿ/;ñà#8d¡õÌR	,Š´
T´Hé"—ýPäÆNdŒCÇ!¥Rgø‹ÚQÃÂTœÏ¡'àÜç‹.“^>æºÇŠhÓºËœ ÝhvnzFH*[¶ÜV‰0Ñ»ë“K‚”¶Ži¥r šaIø£¬¶"º
œüuæ¯n„/šÇòg§ôÑ"F0sªå2÷U¿ë÷ÈÝ-“§wòVSÔËZÑ‡œ‹f®¥Hñü$A‰¥¤?IiÚg s¡Ó€AAö2<‚Ý“aÂa÷!«lJJAšNÚÂÀVÝmPí‹ü" ¥ÝÐpB.à™O–Ô™¿	§?„ŸDw¡|€ñÔnƒ’ª¨ŠÖŸôÆš§Ê´ª(äxOl+Œ³½–_4õ÷ebºËà‰9ÒÌ:ðwg/øôUM·A2}Ëù®´bÇ’_‹ñPHÇým‚3ZÏ¥éL!ª1N¼àé¦N	‘îí<`Û!“£ñ&OSÚjZ,Ž¿?í¥rÚóJ#àfÎ;Ð²×a2—Uí™?¨ÞQÔ³Íyhnåö §²¬¹Ûnú÷ÅB_ÄNãíšá?º:°f<"a$‰ì!²ëŽºö9Bf5nÛH6‚kDÁîˆ;ìï;\1¾n¡Î
Ùß³ü= ´Ä}ÊûÜrŽat`Ic5ïx1¨¾¸˜çùÂ$6Èr 5N\Ö KÃŽ®¤ÏÂ7ú>•àLe(å3Kî½ñÑÌš}?5E˜°oÛÓœP½6šÁ‹ØæùlµUJävâb÷¤X£·Ç${+ã”z¶Uç ¯Ö›_Èâ<5ZŠÖïôv! š4éyYS jPÑe’Œ¿’€¤½ŠdÎ{¼úòåE¨t£–Ëì3Ž³Cáü :÷aK~ðo:˜ä]Z°”÷Œ²€çùUgù™W2!pyšYÜõWnDÉƒÀ~S³DFÅ•x|,w°ë%òxþó°¨N¿8O/Cz¹ÁÚ*ÇGMR!è6¿< ,äºÔÌº,˜J h³ä^[›BŽ{æ—¯¤•]àƒáb¹AnŠÏ*A¢·e<kpYëß@g'Éé$^ÄÁ“ZÌÊí}Î™ì;Ã"‡Cv(÷‡÷ãæá#¥[ÌŽÓÆÆÿuŽQß +´¤.†«,
®¯Òµ¤ÑQÝð÷¤:nB¿È9bTnƒÌ·Êu/F<—$qwzß¥Kf%-—­í‘n£ÅææŒ’l©ñÜl.®úÇÃfEY9â€¨–±rò\/%½#–Ý>J¼kZ01°ÂÅ›6ý—¬z!0ÿ8ŸGºc&ŸÒè$…;5Ä:Û»Ç´»›QŸb›5ÆÙ˜¹,œ‚B›Çñæø€¸nÝžüQþau_…ËÝÕ²¨È»+Çp˜)²È*I?Áv)ñhCÎ<ŒxNÄtBß’25N/WŸì£¦JÍÐå0ïö²žJhµf6ÖøïLÓiF=FÄìxñ|“ôüÕ¿h7#¨EýBJA¨ÊPQÒ*˜/¢çj!—*À’•@zb¹+§å¡—vO®¡Ž´Á¯+÷ÚKë9ßõÆB.FV85þFa ¼Ýq²qÙíÚl7Žb	&ºº£»áZa6Ì§¡[ðŠÇ8d¨Äž)kÂ`ÚÔLûIö¢Ti–<diÖ^fÆÌšYŠ×.B‰àÖru</F±gìl'¾èbgíâACíŽqöÙÉ	Ü¹CgŸ{üªüññ‹é$$â:·±(xžsÍÍ:ªõQ$•/j33íçH®Á"Ùä	Ô¸e&	9ÔEX´ZIÙ*É@<RLÄ‘–Ád3Kéölkï8”±ô´åÊÁõí C} »<ž>?x\e ˜Ô®ò,d"v°äšè’3›š¶	Þá2ˆ–ÜÇ“ˆ ,ÆköõÕd[ä<¤NOyÌWÊ#Ë®Ù×^6Èú¼zÚ××Þ†>™«êÁZžcÕ¶ÑÍ#ÚŠ4¡îü˜EAá=‚I‰Œõ…¤Pèù¯å=uO6ADb.Ì]ÒÞ¦¼uì°¾‰y¥h]ø„ºAày­þ©Øø"QÌ~¸ «¸M}–8ÖÜÜbâšt%i“]”“oNc‰Ç†T¦ó\]ù³Ï´Œ‚ûH˜¯™¤@_ÌF”_˜ô´Œ4ý1Éé¡FŒ0Q"¾ñZ×Ÿ©D›òsÙj¬Àlj“$­\>ä²"ä5^oK% 1’x‹"ž7§Z>K´T²à7£0?ÅóîìŽØ¦J«Ó]êýæ#I&i+×	­TRdÒûð¼‹3–+7â»¹ð"õ Ê>\lKW˜-%büÇ¥`ÔsÑ'7¨Ø&qu"ø"k‚l|)sðÆà› *J_([{0±\G†þN%Çó§ŽO`4¤¦ë_2WNµÏñÇ‰?·V¶Ãõ$JB×zšvø“(Sö·g?ÅÁ%\GLŒ©[¥Ùr³Á³ýÝ v†÷k _•zÄ}ßVÆ2ø!.G¹¾××x™ž¨Xq%3 éeÓ±j_½ˆË]æª©­Iís)aŸ±s`gql¨áóh­.D“W·Þû|5ÂE`§!Ò)ÔZ#d…–·-Ñü•£Û-ºøûŽCYY%o@]*
Éž÷ùŸ›e0uT-TL-ÖÖ8ªÀ$bà˜DÌáÇ4®Gçà
öjônÂuí:,wúi"=’p¿V7|wní”ÂD³eE¨ºý”	ª›Ê‚¬»Sïÿ¤á:?%‘GÌ®’åsJ¸‚Ó‘éXÞÕŽÇf€ãÜäx.Á7$üY»5F9¿B¦ÖÍW®p• ê¤Ë~Íã8Û!\V,kù¤ÍˆÚñÌ %OÏ¸˜þ~˜OA"–î§´qªúù,ÊR[½æ¢÷¬žè“U«Š´=Ë)\ðn’¨º‘*‰mÏuÏäN§å|ãNÞ>-ôÔ#:Vâôi3›¿¥Iæ­±½Né“/ÔK$ÍðŸÎ:Ö‚8r’ ëIœa?p¿BÁìÔe¯·wW¡€ó~Dú,ìçèì9¥'+î…Iw„ž\f
,bÜ8øxáªµÏ¦ý ¼~}£ò€\9®)²x¯îÈÕ ˜ê,ŒêU~)˜s/¼Æ>‚
Õ !˜ä+uÈÐÚ’KRýžÏ=©fßôQî¥h±ZHÐf¦¨9=/Îþ¿ˆhbEeû•§‹–þ_x$ÜìaÄfÀrùÌ`Ó,lH@È¬cýHÓ!`Ë]ˆîô1·úð{—‡–fC)HÜRŸïb3“gÃ@b]çdÌhËöfsóçö â ï:<"ÜŠªã¥™kÄðÅDÑyËf½jöãbDõñô“ÓF_W‹cÅOAr!_Sœë™·Vž³Ò^e`4`Š8rŸ…,‚Nûƒ·Jkþ©Èf}`:Í°ê¶ÉaÁ% "`4Y¢)}_œ
<ªö¹«˜Ü ÒQG õ|ç,
 ¿§kÏ7C™Ù;t½Þåò!f<›
É0iS¨Êƒcñ@c${¯˜E§(*Så]ç5]f‹R±ˆ§éõOqü£Òí+>ÏqA‰'(·tÜÏ‰ÆÙC®=f%Ï8c—ä^æÒêÉ.I2žõŠ’`¶M™™­¯3cÿn7˜U£7³L0ì·l¢¿ û­×«äDÆ†”Þ\‡1êÛÀ#¦ù02x­ŠÛ‹ì›wåØÈªûQoÃ‚ÿL3œ2Êë_­\ÀÀ€òëTÎÅŠ±h¹ÙgX’C:ãýo3dí±VPÈ…#+¯HiµUœîlsâæxaQô‘Úî2WøôÍÂ°ñ·dÇÚcAnqë9·ã…ÌQà`-wj^šÛŸ·ÁÀ‘¨´N¨óv‰]
þ—s¢H¹ý½óèÄƒ§.k}‰ àºÊ`bö‹7¬Æ¥/þâs–kÜë¡#Ø¹¸P¥]¨ÊB”›0Yrg3àNXåÔZ–£Ä~²ÉæÌë†RVŸLâã(­x€ Æ“d Ny»Ó0%à·v¨ò%lp5ä˜f(ÓÍjTn¨#_Uýðj®lí4¼e˜˜Ù7\h¯¦Î¡ÔG¬ú›´ýÈÚ•ùvhèô2Ò“Kµ-9Ito°¥8w¹÷‘^¦tH“Èª„u¦àÎ³'6ì8ßð`•,èÐ‚rY-àxWüõS&9mUÑÝ‚«ó¸‹cÐƒ–0Sm’an-%. €_:y6–¶‚:L¿ ßFä¥t9îÚ‹§˜†b9
Û‰^Øu¨ž€ø©æ¾“Ò§JñÞÆ#R•*/ùQYdÅy°TYµ™+¿W’z?ä%û=­÷LƒyŽÎ:kÆtze"Â	MooHg{d†ÑIÚmàÎ]ú2~qbÉwŒ	ÕµÞ‰œAwôÄ*}Çˆ ZeGœ¦Ûy³hÜÍ²Ó¼Î<"üÛTÐáI¸é´T
Ó<~xà´ª gÜDkîbî&(L£Æ¨VªbcR|îÏN“µk±óu—J0ý’—®?©Ô¢.ÎZáœ‹Ålôèë)\<‰š¥’º ’¿QoÔñÓS[sÌF½8 Ù—	÷•øS|+P üÂ1¥kç¯-å3t U¦Fhi¹Ê„¨V×~c4åØî;9{Ö¸FÙD¦W^Ì`úåˆ…aÈH•n’õ\)[ú<WHûV!}.™¾ºèzðª½1 p6A¬ tûñV^)ÞåqŸâV#iÙp£°FXÝËgYPêýƒÚæNèŽ“åÎ(¸æáŸ@Ð'+ócÃ^\¸Ä…%A÷µ½ø5r
Þë"8çµuaé*DêÑmv|þº÷#“¼¸-úk¹¸iœûòrKÐ„ˆv¯´jB×	võZo¼Sì‚ÒëBÍ¨íí’KÐ±èoÍbX@|ÏEŸ?:b-•ªÔ¤¢vYFÈÓÎ¬)5`¨"Yâhˆ¿¢¸áÿ¿ðY”ŸX!…îáð-!Ø`=:€gÿa9´×f´ÔñYÉ0b|¨€Ráo3ÀP?LplTjžù6+’hÓ¿lFÇW'Ý‰O—Òµº\´¼Ú©Dœ/mþÿ‡üh´kr² cJGÇ„™ŠdªsÈ,¹ß°ƒV A6ŒVË.ƒÞÝu«ŽÐ–ÑÅ<­³‡¿²#B­×•K/ÁÆÁ¯á!¥:¼Þº>	ÆUmµ­ öÚ	7ä‚Z¨ôôF£/GÒtÚ4á3½ËpÛ¾œWÞéô`…'ÓJ’âÃò§É'¼É LcOÀ+¾@Ü£a;JÞ!èŒºx¿3 ×Eù@¦Ö:ÓÞL;’¡‚¼4SU7²¼J$ãƒºÂVdƒdè¦ØÊQ¡Z6ªîƒXÑÁÂ‹ÚT»/½À+_QKß‘3Gâ<¾WŸþÙv Çm—FêÛ0Áµœ·uOÜuÁ®¾Kî¨r¥yB!6…"¥Ùt‚‰¶Ý4ƒ Ý«‹ZQvÞ6æ?S¶®PA‚KðœÕÆŽ<½uÞMÇ0µRÖè¯°â‘`ÛÕ¶Ý©Ð¼¶n¹r8yè?QÜ¿±Šþ°–>a!›
aZÓë/ƒ?l%hƒ÷™´lôâüünÙ]M¹Á8D»F@[–Ü	ù&¡µË˜ÒÅÚªcÄ?5\ ÆLÇKe#k7ÏÌÕOº“5O•Iy$©Ÿ,Â“ÞþójÏf_T˜¯kÙ§´ÄÿËmÂÓ’³¥ ©ÿ^ÂÝÙw°£<ÔÇ¬ŠßãÏ`ž@,ÿÀÍÍ*x÷-QÓßòýs\ó¶)ø¿ŽÕÚ»(mÙÈzŒ¥Ù$0©âõia˜^È‰øÂù×PˆÝ`ØV/ë-tåìcRS:Ó­É¦(bÍ9GÊ4ŒµÔ¹x}YcÂDFÜ•KDvfvñ•K'pä¯©ôu¾©ð7WÑÎ6PßÃ™1í	öôC±Ä:š»,ô‚ò+'üÚAK]›‹`TÔ	vIL$¼-¿³~#€œÕÑIGÜ‹ÐÃáF#½ª>d0u@úé¶?dÂâ .Þ—Þ×E{ÁBõ­×´˜/x~–ò
Pzë{ê±—0ûAZ¹øÃÂx^Ã¦l?üS¹àéZNùÕkI7©t>bXZ‘v
Õ§£ö*!:6‹È»¦ü‘¶¦Æ•Óœ•#°‹Ò2ªdxN4×à{§Ní€ØñÒÿFh‹€záÂ\‚e[Š¢”zÌ´¤O«Ž‚n¥	“´Þ:™vk¬RqzJþx'áÛ§¼VAUb³V½Hv`æ½ÞÈ•J'	3vå­_ÏyXZ¬Š-™Æ„k¶&¸ðÔUazòwÎ¥¡!Àë?„¶¥$ÁïÓévF‹p•sÇ¬S,ñ>b€h£)ÞGSÛM2ý—9¾7í™ù\ü€¹wo6w°ÔÇé)-	Y¯ÇïjÚÐ’§Á™iAr­ìÐ~,éë×&õPí‹§Ïž;4Ä‰öU9Ö+Éèøû‹aÜøß-süˆBã,0H5Ž«°…€N‰f‡˜¢î¹ý}G5Ã¡%š"q	Ð`ÒiéòWnôÅýyGDõ†ðÛ‚)Çò`A˜O9ÕÙ^¬ÅC™6›ƒÇ-Æ$2X*§¥yKBû:í¾«Æ§W-»¸0Ÿ´D›¨9T«F„šVèDûv§F+#‹RqlÅbÕG’À½ïwO³i¹ª‹_áœ^ñ®3²¹GlÀ3V}ÙJÐtçL¦,ís£œÞ1”ËÙK2Ú‰i$«ç´ÀÛ1]Ðm'?)ß„‡7Èwì‰ä(â_ÁC<Ôòœì0ÍU¿:óÑýØYÓSÊ»#+M$g:µÙãÕÊo¹wó-‚öäLºÝ…¤éæ–r 2ÝsÖ§„ÿÔ5×a‰kÛRHÿq)¼÷@4dhê(ÛÐ<­•?ÿ9+?¶/Fºó"yµšEžTÛýÜB°zËrÍ|¥uÚ«é/	iþFÉÝ#t²/RåQ•HtpõúŒXG×G˜v5h´%~d–Gfëúe¡Ôl&†œqFË–ïôÆºùóâŸdhŒcŸ±¸±îb]»íámñKýNÎ4ñI”ÛjÊÛ?|ÇæÀ¹ò?ò×`è¸p!¨¶y™e:ù6\köE«°†·Þá4š2<(9^ÞOZQ<Ûot®	 ªÖ‡_
Ñ†´¦dáaGˆi•k¸7[t@ µ<©OèÎŠC]xÉßßå<ešÊÌ=á_ñ(6kþí÷HÛŠD¡_ýqª‚²€hKAÞ€!„e¨ðãP)›*­Ô´NÐ¿AiÞ<TŒu+Õœ•
Ílèûÿ”M~a*e%Fý1·½™×AÀ›nîRÈ:2ÄBhÖ#î‹ÜÈéð]8e×%sâj¶â»v?ÏêàÇòIhd‡Êêb~LHž66Ø¦Hj½¸²ŸÅÁ@3>ð’Øæ´99\EvÚûæŠé¹Ñ‹ai%ç*1ÒÙ¬öm7$­%ÞÃË]²‡ uÚÔ<?Yš›£õ­ÖGRqOÑ°‰L‚Fi?ýÚ…LÝ`MÍ(7š}sÏÚ%zOæ…6ãˆ$¸á]µÃú~jPÃn˜øÙò»xæ¾í¨^M?~/Íg‹Œ& lÊÙÇçRAóÍäA‡FëùTŸ=5Û»w}8ƒ»((O/¨hì}ò>©=X‚ í¦†ÐùTÁûlÒ·}Z¸›-gÃYØ:	¡×¿ö•µ¬v†K[+kØNéCN\þn î3#ÈRYÖµ¬¥»·8[*_|È <ðÄÖW"ƒ­]™þ˜\JN	Üj…žL*9lÂ--²ñS¸okŒ})F*ˆÁÂû(%ŸkíQ”]±--ú;µš¤Î¨®“nâ]®&ñBÞz–R3ÂßŸÒ(g¸:õÈ~Cìö©È§+ÐvDyyÝy»8šÚjý„§•"³£Å=9¾¦:LèR]¤€oìSwoÍØ6G„ŽTN…Xræ«Q¶í“2ÚÙf¥•²uYÜæ„Jr¥]ŽºM€61 G–i@Wægï6¸»½ý’ÀQœó™ì‹Þ“/‹{ oäÁD¸A€½$²±×Ÿ5wÃ) ËãRBrS£s”»náTÇkmŸ‘(tÎî„*õÐËîYr›N|éhÂüè$Ís­?}+¤Z‹¶·ÿmu€[€Ñ{IbivÙ^
Jõedñ+XÝŠ%z©Ë*l…ÀD;ChU6Ãº"<RÀúD É×¶NßL\ÂÃV¼CÅ,oÅb**ÿê­ªË0Jf¤!uÉÝÕ2Xé6È<tŽêvŠGªºÁ³	œÏ%50 éÛº!0Œ‡Ý¿BpÓ„¤’tŒ­”¦9]Ë3åÇµžnÈq•ê›Ñ[7F‚Í]›˜ˆ¤(¨ÓðÙdœ3'[yÚ­[Ï`½‚'Í…µŽü:b8MPã]šàèµïQ…Gtf›»aÕò<ÏuFV¼6Mr–¤'<®ÊRêù{4Mr0£i¿EÍ\S¢€Á¡6®X}å=ºé¤w.ÅÖzøQ7ã÷B?_«Ç.&ð1™¡‹u]‹ÀçÖhèjµp•+É`@Ÿ’ï,âŒq[2ø3-5¯Ø"€!m p¦ØM0¥°úÂiëB<¸pÁÑ1ï¾g"àçA&#9$#Ÿty$–ïGæjþ-õ÷nŠ&K—DióÝ]rkË0¥ÇG•¯JVùTŽ·kn•ç‰!2Ëít/}£0£{:@…˜{j÷é½ã¨ÎÂ‚[`¥Sû‹‰…4P~²éÎém¨¢õ÷÷Ê©d¢â‹Š‰Ç£A·WÖ:G’ÔG¯¼Z¿Ö#;--’Ñ9±òˆAûgbÜìa–\ßD1ìeb^¿ßÀN£FuõBÂpØ”SkÜ.æ‘µ]ÜÎàVd3@Zá}Qvˆæ9º<NÖWä™óh7Øø¨3w>éÁF÷^ú&9L_“E½kÆÀíñÙ"YÌŠœ¥ÂãÇVðÛáêGAÔO}S'`éöå°¼^–†óüd‰<€[ê¥öAóèü,óª¤¦>ýÎ©mæ]ù…Ëëù|ê‹©Ñ)2õ2ÔÄú•5ØþfoÒÙ·]Èúñ‹ Ú›Éùr :©ø|óÕÉáÕØOOÄæk|ÝÁN™Wæ}e™–“ggP*0‡æCè¨7HS-ÉÓùÓÃ]¢*£–Ñ8uÌ¬1ä‚‹ŽÞ,óhwˆ–óù ŒKÐ'™åÂ«±ÈSê9½â8LÅr†4êçS_ÅÕà{	M&z3  „¦8nN-ñ²œ}?ŒË×êd,$F€yØµeÃYSîBrnÙ¡#zã~éBŽX“n eË
)_½•¶D Su¡h•wJ¶«ÆF†ÓIŠ0¸:HKd}ÛDØW?•ì‘œÜq8¥*s^]¼ŸNìü®j–¡‘
†+!ô˜'W¸–¨D'Áe2z¥|ºn ~jt}ÒdàÍ»(Ì’è¾õBŠö¡§ÅŒ›vý†@Ý‘¢ÒóíÞ‡Ÿ©s^DKŸÏ€–._rÏ´ëÇŒÂæŸ ºò3ÙwnLŽ¿ß;—2ÅdñDE€øhzª¬X]é8ó§"Õ¾ß®}HzCc ¡ñÁH¶úæ®ÀrHN4£$·Š½þ$ð'Ù8<=¹½	6A=3G²Í¸‰ÒèV}æÖÀA‰<~ì[°‹^mŠr	¨÷‚e{	°r˜Wë\±#«!Œ8ÌûðÕ=ÈMU°¯ð—oƒL]f 'ÎÆQð™^ãP˜O!»ü>\îÀóË9;éôÔ˜6{íä»5§ÞFþÂl÷mÎO±UóTÉy1Ž?ï&×Þ(â\³8ÒEhE5s¥‹Qxiè‘¸„i£æáãí#’~¸gã}¡>Ô¯ÉSÕ)´7œäyÛ?Q#qrÖFÎUaÛ¸£Ið—ˆÙùÅŠãb+ûÍOk]ˆe¸ç´è±Q)O·´áX®7a³=7z9Ð‚x¥À•ÚjºTã-úûœ[¬"°Ÿg‚xü"Eï>‹9:g6£‘ºÉû0ÉÇl;¸+|Bj.¶´k¯Õ_‰8	Õ4ÃS™Ÿ’›8Ww/$?jBuà0$Õ­‘˜™~œü	6ÃQCµ×®®ãé–ñ[3X]êG6ešyÒn¦EìÔÏ;Å Þ¤‘FR‚&/}ûÖ¦‚›šxAX¿¹,ù.U?¾7&O©A-¸ÔÌA+éãÿDŠ€Ž~ˆq_'Ý”ÅMéþT¶jÇaÂ_8-œ÷›V]-™yé¦AóeˆÚ”Ì}OžAy€ûÅjú†¼‹¬sÅ_¨>¨îIs¿^ú?g·ÇšMûOÃwüGnRs%¦ù0ZÎPZ}m~yì	ß2û1º6
‡nN ·#£=üëÜKàç8.mþI|ÿöÃgÏz™¿ÑìÐ†V	]ac“9öZWTóQz¹ ÓdÒ´­U›æd3IMy¸Z¨A^ôÑãÆ˜šHÒ¥I¦ôií]¬§Ø›ëV	­Ú³ž2º‚Ýyábéœ0ÉŠ%è>=$€f4ÅÅEÅÌ:;¡Ö¡tX$é­S&}²ü±øÔW~N¶Qõö(ùÑ¨š§—†}Q¨ªìÊÓÈ‘÷T¬*Uë
ÕýzýímnûðMoÙ[z÷X=ÒìI'×:e Šs¨È O—²?;sß5Ê%e²A£S{{€²6–¨ÞŠ,Š cSjÕCÒ#Úª‚¹]Éõ–Å¹ÿž§lmKs!âÃ&á2Qz"9}Åx¾Ž0kU}øSJbóŒQXeÀ>ôHh€f¸YÝg2*@ƒæ,«Ój+$‚Q›ã»xx¤4ZÙwÌz)mækuÃü7ùXŒ˜mÂ»ªePšÇÐéƒ ÈD WÕÄóaq”5¶=Êq@£˜Ç»?‹cÍBùúNîï’ ,ß#‹•ù|F÷
ŸëK"àäó±eý ,xxi¬ir^ê«²Ôz~l¢ú¾ ~áL¥<Ê»ìêÕ×ß‹D%,™µvbƒÆ¿ŸÚ_ÿ‚Ï,Ûpmb@Wç¡oQ<eÒÄç‰ÊÞôîT\{?­k`
Î¦—¶¢õÃæ³«ùG¤„]ÐÞÞÁ¼÷±&»oýÏØ”>zi¦½ÇBO­öŽÈ‘ð 8Ófç2¡P™Î×pMïPÈ?ùƒ®ûÁ23ç&%5z Ù@áœÍ9ù¨TNFÙƒßÐŒa°ñg%&Ã3™[b"ûU+l¹Ý³«ÒáÄ…£­óG¼ÛpÇÙ^°úÓ×¯4§{”^ƒÃ¾(džsw8¡;wWÖR¢æxïÎËÒTqÍnYÂÍZy€ìÑî,û]Å¨ ÎÿŒo3zÆ[Òúdjæ
Z`‡d·VŸ§¼+\×ÎWÿ^4f´¯Ù)
€´ Ñ:¼lÎ%º\ëÿröPÂ±"¼ëT™”­”v2õÜÁÆ¬mïÆ!§½CnC€ë¸+Tä’1”÷< ­Z˜è@ÃeÍ7œ„È´Çl£Gœ·è^­JAK`:Ì1>ñ ¢	~lú¶wÎŸª\Öü%ÂÑ0ý‰ID]ËÌ™ä Äì•uÉ"°P\”ê"±õUïY–¹j0©~Tvú’=MÇ³âŒ¬ÏÌT£5°˜Àí0Ï*|yo„¼Õvv’HÍù©ŒÙÑ„¼Ü¶…2y?ÎÄdäIr×ç!ÒÌ2,žÒ°“]ý¯ÆArýF½Å¾á6BYtaÚúÕœµŽTk
\K\[ƒ-ÑÒVEÆª­w¸pOLÌ®0`à<zmupã¹ö)Aàd¹ÅMìô’¶Ÿ÷
R°ÒÐL¯ºò›Ö1Vö¤§};{€\n¥Mèî0)ËøÇN¾¢m?A|)ë{#_Ú*¿§¢^ÞŽW'UÜG˜Àk6M„–ýnbP7±¸‘¼;p'©»Ub"1 ƒÄ/aNÅÜ‰ºàfÁé'«¶qƒfó¥7Œ¢¿ÐÕ–=‘s,¶Ûc?R—Ì0°|gø@!¥³®9-X´1ª¸õºÑ·ëÒÓmÛÆIÒŸç2kdC,Á»‚Áb£\ÃÈžIœÙG?mds¯F³ÍyÿÜºc0{a2¢¬ì¼®ö7ºÎà5Päˆg"õ)]†²1ÔìÔ%à,ƒyÙXÎqlÆ\]¿—¾HSynUÏ_¸pÓóÃdÒB%4ªÈÓqò¡ð×5ötYNTiQ'bž‰ÓU:ñÁ.-0]¡Ç†ÏO#¾+ÌZŠ‹ÉÖÈh%p´ËöSé‚~«¿ÙûZ#»0”Gk<Ô¡ œ¦öÕÿvÖÞ3oJ¤îw³)øÅÊTöJ·ïx8àÒ€{‰»”j„|©p=AÛú*im×sŽ®b$ÕFÐ2+dÞÙtT)w“­sÀø^¦~Çfó»çˆeâ7G‹Ï¹A—üZÜ°I‘·Aë)g’åWŒ„!Ñƒ…¤¯Db"˜‹§)n*l£JvHž/œÜíË¥–Œû¹þ{&•o>tÓ]=ºØ½ß%Æ¦¥	a¸È¸oBGµú>³:xÔíøn-tÇÖjÁ[‰®[¸7‰PÊ%ˆä’Náv† 2ºž±^yÕümš€©zÇYÿì>‚ÁÞ(	ÙÉ@ô‘»êüB<à&Ãß¯Å/¦‰´¤öïI”_¼0§À§—tOúÒ$DdR%»äDhp‡°äk­Í–wŠ‚)‚0K6šŒ£p€ÇßkA(m üóác…f üv±SCïóÈyiŠ£ì—ˆ“ B(:bc3M]`à¼„u-ñ6—h{o~¥ic¯sˆ…xºû€”§wP]Ñ
óÖ»ˆMŽßÃ—¡Áªe·"ä>·|€äPÎÙè†ÌAÞ·íÐ,‹5×Ö§cš‡=š3°ÅÖËŽ¶Î“Ý9ç+8Ó"†ñzéYþÄ#™¬dhËø-}¦ V[ÀoÂeK%NWÞ,¹ºO[áñ¿îWŠU“Á%$2š`cBìS(L®EŠâ·XöŠe˜™¨&n¹°ƒ¨,R‰;Ÿ(Ý	›¡KHõ|pó&¾Za³{†­mS,­vk¬zX¼[RÍá12þò|¨®g„Ý
n/jÆa!¢×`ä.Ž«¡^"ëÅ»mïŒù"dòdG&bÆêh­Íh=èwG>•”ÃÐˆh[0Q…¼ãP)AvÊíƒ£F.³î2.	,a`µŠ1Ù……«LMŽÊ/?
î}I©+©ì´œÞè^I>ªÒGœ}3Ãë>Øm`÷•P9n­i’Tç	æþÇ‚ÍJ´rH‚­åíô²Û,÷âÒÖ¾ùÑZ4;75d¥ú!Þ!)©5$Ç[Íq½‹IŸa+âü·jò aÃ»´C¶Iá{’Õ8	ìÞ/<J—i¨ù‹£!L¾G… u÷q÷ôÞfV÷nhïç´çÀi€ÈO-RQÉJŽON$°Ÿ9	½óæ×¸u_Øþ
‡`•ªW0R<¸%Õ¥/•À$ðMñ3^?úifù³lƒ®¤Yó‡®ÎA¯©Uß>ËÅÕÙƒ˜¥¼à–L5‚4±àÅv/8}ÆX‘n'æÿ¿&Â¶3—'aö"ª­ 	AŠ˜µ(ÕmHã~D–åŠaTT‘øwå|²×ó½NÜËq.'Ó€@G>Âìg€~ÓY’ôÞx¸”rÉ\
ðiÅ£Å ÑÊ÷4ÈâøËIŸ‰Tó—¸Àõ¼p´qÐÍ*%Økkè—`ûaõÆw,¡ÅÄ)Ü¼'(åg5e05a4+Œ×
»á¥ìÉä÷-öõºÕ§‰„&v#­m¾öÓ×Bß%]\TÌdþG±a‘ˆÇî|ÛÉ,â²JG+Y†í“´*J†T„’ã©^ªN3S!" ô3àõ‚À!éAÔC~WOŒå¸7ÿ6:„ÐÊÊì_¿9ísÉ"öÞ;²’Òo9àvÉDpÄ¸IÝËß_â{´æã¯´í
sélút°¯½L-"'bf#ií~úò)È¶«kYQTA¬~ÊïÐ*=y²DöUŽËý`”¡óî@j-T$psrX?1ÅeaQa[³n.8‚Y‡Ñd”2L::ñ4`’KÌÂºÄ§öÔ^¦s6F·¨F>4ge•âÕ®ÒóÑ²B®"¿¯ÞWÒ_™£»¶äL Jë¢¥Û±—V[¶P¦ÁOJ§I•>$aýeÅIQ#Å½6w·£ž4 Ð w«	­2û‹÷Ž!ç=®¥.r„y$|=­ù=šñæ¼#bõ§ÌsŸ.øþ7æ¬4jú—'OH_aÎO=.Ö*#	š¾ùS‹}òô‡êSÅæê¹; ±OŽ€b‘ú»³’tYìú4wÑCvSwéà1íðá¥ãŠí‡yš,÷Ú¥Ò.úžf=”pñ>ïsu®Aef'5Ÿž†7#c5òf*{«buÏðônîÔ4¸Ç›Lk´{Ó}'èX¡Î÷K58#ì›	’3O°ÜÚíùGŒ~mÕ»Õ#BC¾²ˆå‘Ýïbõ&ƒ±Â–WM­ÎUýŠM$ÔÍî«í!ù¿9ï½¶ªë®w£ú.@že\ê“÷JOœýÿ¼yD*Ë¨RYu;ÔÅz€åt^Ue^8Œb5€—Úd.f?”L)´÷¯GVŸ »x&™Gÿ4-¡žE-Õ!j9ÞuÒx
ŒU¨d’¢~{ ô³ùôÝ“ÖÆh¸
<x$3¦×3Æù:¶®„àq;å"q
t}QOD	GÒºù¾ÚVíg¤ýpLƒñ¾3.	œÝX“¾¹›UÐaÄÉ¤
n-¸2’ï¥3*Ê{Y“ÏFÇß†Ê+wÒ·…ÿ{Àâ%çóiÛl Ñ èCîrsÖ7€õ[®_H/¶yãns-
?ôœ2Çñx íßY$Qèš[ž<…Ä‹­ôS¢kuW$€gÛÕB8}ˆH ¬ÿTÑD}’TßšÝá¿ig—šuï,['¿.á'ã½ze¯e`¹vN‚4q˜Œ³·?H§·=F.Œ70ù0DÇ8²=±Ñ%ßû+%z°ÙBí~cþqyS¬•Šs.hŠK®ûìÃ+Dw.pß­@Ä
Ž¶‹ŸlX=êM?¹5`ö¥\9€C^Dúy_üå«d c9úµ·3¾Ž–	$†?PÐ4¼nþRu“Ú[å[0Ö[þt·Žò:¹DšB{dLÂ¬Ÿ°ß•¤wò:ÎÜzG¦Å€âGß¢g&oxÙ[¯¥\+%¾3.’¬¤-æ«n°Î eñÓ7(š4Õæu%‚}nÚ†9Ìçö¬ï*´†p•â%nÒ0ÔƒèÊßxÖ¢žS2õ‡#Œ¤2L(‹”"üé˜x‚zÖ™GÚ·LtxùSDõ4£y”7?+ê½Y,#NúÉÕý8õn‡v½9«T³Ä*d|ß;Q«õÀNåQ²¿{pž RÒ=ÅÈ@ÀÀ­	qr$ö`×1«jb–úr(Y¡½·ø± ÅÆ$ÔOü}÷,¶sÏ}±ûØÊù÷,Ÿ%µa#à*S=óÛæWõ6!&Óþ#ž6«zeovÿ¢wWQ“¬lMò×Ã_>SXÄ‰pK‡ÌÙV¦,ì
³K
ò•{ôEN‡ê(•	
«TCÇ¢ü=ÈçÿÈ´Lônœ¥ ÁWLÆ½p1£?ÛÜ6Æ–Ì¡fç^®có¾ŽÓ£yTÜÉ6Åx^ØY_ªyYî1Rk£­7  Bˆ¸[Š»õÜ#–C,C¬æS²“gcT2Î°¿Î µ+ê†:çþà43—bQ¹½3Q¡R-`E]P@bÌ6Ü·oÄØ­Ûõ#œ«“šKÜÅªL=~¾3»ð»“Y®`;Z°³·)(þGÍ¤ïçPSº¯™GAz^lydJM<ÌªãçÕµ9M£v¥Å¯¼DÁ©›ŽÂ&ø‚?•§¨\˜>Ññ×¡z‹¶'?×% 5Ÿ‘÷·J"cgG’´fÅv4}Ún,ðƒ!•š#ÐX“ôxÙí}fÇß eòáð‡ò7E¿ìŠêzúeßÎ=E”÷G1¹NÐè$‚5yä¥˜NpÂñÑFðFaÁb†SnR¸@ÀÝÊ<šŠ½ÕôvãÔYøÌ§·c0J³ƒ“!¤[j¯>Ö'°‹fª´äc¢^&,¼L¶ÇÔÐæR-SP"ÀW)UQŸùèX?sCp„Z(1;1ó[Þ^^˜S·­,+#F(6­šÛMe+ŠŽ~•¤Cˆ‘Ñ¼œp=”>E’`é0}­€7ÑU3€Ú¬ì9±û ,v•ß¥Â×3ÝXÚ8ÍÈ]¶¸îÈøcçÅåqEÄÜQ­&õ"FËj‹´šxYO¿Ñ(ðB=–É„âu §Qpmÿ‚@&jé!æ¨GÊ?©ºiO"\uÑ©f²ºáhðœœŽúV›‘ÕÀC«×€ÁYuyÎöÕ0¡¸s$ò2o<z-Šj”	âÑ.¥W—+œøä.(Oh÷pò(½2ÙÆwS~ü-¿©¿¥S‹èP7‡Ñ˜¤&g‹!¾ýÒFÀŠÐpãjáå4ô’:›Iêç>ËPÛ+XI4çÕï‡“û£¹pbJEà’ÑŠí­¥À^0hé÷¾ ö‘_¦á„:@7u¡:V—`G¼½«IUK+ÿÐ‘á-ØìÑ‡ZxY×nîá}ÕŒè)ª°Ò®oRUr}/ª„`$óvƒ^(LŠ°* I8×H­Ïª¡-6ÊõÌÅ@œze®ÄÔTÈ¾ï¡Ù€y‚t
Y¥CR;E?i‚›4ù¯ýiÛVÉ€ç¾U^	ÉõÀÈÔ¦ÓÃ|!LÆ*Ï±)†¥åF–2Z¿Ÿüf¯dg&Â]+‰™ÐÒæ™%ô1-ÆÒi9±–gEQbÎöwåë2^ŸvÉ |œÀ‡•Òý±ü´ÝXÅ9Š4"‚‡·Ð*™’gÍö
ô8o5L&O« ™,ª+Í1CðnÁgÂX¯O­ŒycNÍ|öêžÕ˜•‘”á¹ùõ’Kªmë†´.”$c¤î‘‰wòóÉt3,?¤å-ç‚x]X!cÌÃÀìdJáÒ7ÿ{nˆWkI„nªšX<àî!€Ñ¾òªü<	Õ%üt•RR¨|_Q¡ ³^ÚCEñ#EzÁî¼aìÈùdåècèQ’^"2òªÅ´©þÿ}osª¯¥äN.úéìà>TŠ±´9H®½™7_roû(Á½‰¶\hÚ¬´H§´Ø©ße<RËHð3H‹+S2Ý¤mzò¶EoÚš±‡[î 4© g¶' Ë>õ±–šáwóŸjåUu|°r§òšÑ¶¡æSÉQwwPd£mÿæÐ’UÔ^º{ªÆ2„—g2½ì   è£ÅÞÐ…ì<ÿu{2rƒÊ ñ‰vQ$›­«ÑÊ‰q-6 ªß‘÷Q2[ä¶éß    
YZ