mod_nss-1.0.14-12.el7$>GoUq0>K>:I?Id   B48?G s   0 x   L N l  , ,,(8F90F:F>AGBHBLIBXBYB\B]C,^C bDdEIeENfEQlEStEluEvE wH,xHtyH0I|Cmod_nss1.0.1412.el7SSL/TLS module for the Apache HTTP serverThe mod_nss module provides strong cryptography for the Apache Web server via the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols using the Network Security Services (NSS) security library.Zx86-01.bsys.centos.org%CentOSASL 2.0CentOS BuildSystem System Environment/Daemonshttps://pagure.io/mod_nss/linuxx86_64umask 077 if [ "$1" -eq 1 ] ; then if [ ! -e /etc/httpd/alias/key3.db ]; then /usr/sbin/gencert /etc/httpd/alias > /etc/httpd/alias/install.log 2>&1 echo "" echo "mod_nss certificate database generated." echo "" fi # Make sure that the database ownership is setup properly. /bin/find /etc/httpd/alias -user root -name "*.db" -exec /bin/chgrp apache {} \; /bin/find /etc/httpd/alias -user root -name "*.db" -exec /bin/chmod g+r {} \; fi +ٸ='a,]A큠A큤Z~Z~Z~Z~Z~Z~Z~Z~Z~Z~Z~Z~ZW2W2Z~Z~Z~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.so/usr/libexec/nss_pcacheQQQQrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootapacherootapacherootapacherootrootrootrootrootrootrootrootrootrootrootrootmod_nss-1.0.14-12.el7.src.rpmconfig(mod_nss)libmodnss.so()(64bit)mod_nssmod_nss(x86-64)@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@    @ /bin/bash/bin/sh/usr/lib64/libnssckbi.soconfig(mod_nss)httpdhttpd-mmnlibc.so.6()(64bit)libc.so.6(GLIBC_2.14)(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.3)(64bit)libc.so.6(GLIBC_2.3.4)(64bit)libc.so.6(GLIBC_2.4)(64bit)libgcc_s.so.1()(64bit)libgcc_s.so.1(GCC_3.0)(64bit)libgcc_s.so.1(GCC_3.3.1)(64bit)libnspr4.so()(64bit)libnss3.so()(64bit)libnss3.so(NSS_3.10)(64bit)libnss3.so(NSS_3.10.2)(64bit)libnss3.so(NSS_3.11.7)(64bit)libnss3.so(NSS_3.12)(64bit)libnss3.so(NSS_3.2)(64bit)libnss3.so(NSS_3.3)(64bit)libnss3.so(NSS_3.4)(64bit)libnss3.so(NSS_3.5)(64bit)libnss3.so(NSS_3.6)(64bit)libnss3.so(NSS_3.9)(64bit)libnss3.so(NSS_3.9.2)(64bit)libplc4.so()(64bit)libplds4.so()(64bit)libsmime3.so()(64bit)libssl3.so()(64bit)libssl3.so(NSS_3.12.6)(64bit)libssl3.so(NSS_3.14)(64bit)libssl3.so(NSS_3.2)(64bit)libssl3.so(NSS_3.4)(64bit)libssl3.so(NSS_3.7.4)(64bit)nss(x86-64)nss-toolsrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rtld(GNU_HASH)rpmlib(PayloadIsXz)1.0.14-12.el720120211x86643.19.13.0.4-14.6.0-14.0-15.2-14.11.3YZ@YoIYYXWv@Wv@W@WWt@WrfWBVBU@UUU@Uyx@T|RUR@R@RkRR R@RsRi QQ@QQɆ@QP H@O@O#O/@OD@OMtMn1@MQ0@M-L*@LA@LX@L K;@KKK]JjI@I2H)HH{?HuHkmHhH@GGJF` @F*E - 1.0.14-12Rob Crittenden - 1.0.14-11Rob Crittenden - 1.0.14-10Rob Crittenden - 1.0.14-9Rob Crittenden - 1.0.14-8Rob Crittenden - 1.0.14-7Rob Crittenden - 1.0.14-6Rob Crittenden - 1.0.14-5Rob Crittenden - 1.0.14-4Rob Crittenden - 1.0.14-3Matthew Harmsen - 1.0.14-2Rob Crittenden - 1.0.14-1Rob Crittenden - 1.0.11-6Rob Crittenden - 1.0.11-5Rob Crittenden - 1.0.11-4Rob Crittenden - 1.0.11-3Matthew Harmsen - 1.0.11-2Rob Crittenden - 1.0.11-1Matthew Harmsen - 1.0.8-33Daniel Mach - 1.0.8-32Matthew Harmsen - 1.0.8-31Matthew Harmsen - 1.0.8-30Daniel Mach - 1.0.8-29Matthew Harmsen - 1.0.8-28Rob Crittenden - 1.0.8-27Joe Orton - 1.0.8-26Tomas Hoger - 1.0.8-25Matthew Harmsen - 1.0.8-24Joe Orton - 1.0.8-23Matthew Harmsen - 1.0.8-22Matthew Harmsen - 1.0.8-21.1Matthew Harmsen - 1.0.8-21Fedora Release Engineering - 1.0.8-20.1Fedora Release Engineering - 1.0.8-19.1Joe Orton - 1.0.8-18.1Rob Crittenden - 1.0.8-18Nathan Kinder - 1.0.8-17Joe Orton - 1.0.8-16Fedora Release Engineering - 1.0.8-15Rob Crittenden - 1.0.8-14Rob Crittenden - 1.0.8-13Fedora Release Engineering - 1.0.8-12Rob Crittenden - 1.0.8-11jkeating - 1.0.8-10Rob Crittenden - 1.0.8-9Rob Crittenden - 1.0.8-8Rob Crittenden - 1.0.8-7Rob Crittenden - 1.0.8-6Rob Crittenden - 1.0.8-5Rob Crittenden - 1.0.8-4Rob Crittenden - 1.0.8-3Fedora Release Engineering - 1.0.8-2Rob Crittenden - 1.0.8-1Fedora Release Engineering - 1.0.7-11Tom "spot" Callaway - 1.0.7-10Rob Crittenden - 1.0.7-9Rob Crittenden - 1.0.7-8Rob Crittenden - 1.0.7-7Rob Crittenden - 1.0.7-6Rob Crittenden - 1.0.7-5Rob Crittenden - 1.0.7-4Fedora Release Engineering - 1.0.7-3Rob Crittenden 1.0.7-2Rob Crittenden 1.0.7-1Rob Crittenden 1.0.6-2Rob Crittenden 1.0.6-1Rob Crittenden 1.0.3-4Rob Crittenden 1.0.3-3Jarod Wilson 1.0.3-2Rob Crittenden 1.0.3-1- Correct URL and Source entries to point to pagure.io (#1502362) - Remove deprecated NSSSessionCacheTimeout from default config (#1257662)- TLS session cache was not working (#1461580)- Apply the nss_pcache man page patch (#1382102)- Update nss_pcache.8 to drop directory and prefix options (#1382102) - Don't share mod_nss NSS database with nss_pcache (#1382102)- Fail start start when there are invalid Protocols defined (#1389114) - Handle group membership when testing NSS database filesystem permissions (#1395300) - Add OCSP cache tuning directives (#1392582) - Don't share mod_nss NSS database with nss_pcache (#1382102)- Add the permission patch to the repository (#1312583)- Check the NSS certificate database directory for read permissions by the Apache user. (#1312583)- Update clean semaphore patch to not free the pinList twice. (#1364560)- Update clean semaphore patch to not close pipe twice and to shutdown NSS database (#1364560)- Clean up semaphore in nss_pcache on shutdown (#1364560)- mod_nss sets r->user in fixup even if it was long ago changed by other module (#1347298)- Rebase to 1.0.14 (#1299063) - Add support for Server Name Indication (SNI) (#1053327) - Use upstream method to not execute live tests as root (#1256887) - Always call SSL_ShutdownServerSessionIDCache() in ModuleKill (#1263301, #1296685) - Don't require NSSProxyNickname (#1280287) - Make link to libnssckbi.so an absolute link (#1288471) - Fail for colons in credentials with FakeBasicAuth (#1295970) - Don't ignore NSSProtocol when NSSFIPS is enabled (#1312491) - Check filesystem permissions on NSS database at startup (#1312583) - OpenSSL ciphers stopped parsing at +, CVE-2016-3099 (#1323913) - Patch to match available ciphers so tests pass (#1299063) - Patch to fix tests in brew (#1299063)- Add the supported NSS SHA384 ciphers (#1253570) - Add kECDH, AECDH, ECDSA and aECDSA macros (#1253570) - Bump the NSS BR and Requires so the new ciphers are available - Bump the NSPR Requires to match NSS- Don't enable NULL ciphers in DEFAULT macro (#1253570) - Add OpenSSL cipher macro EECDH (#1160745) - Disable the live server testing in make check because it may run as root and fail horribly (#1160745)- Handle permanently disabled ciphers in call to SSL_CipherPrefSet (#1160745)- Fix logical and support in cipher strings CVE-2015-3277 (#1253570) - Add missing BuildRequires and small patch to use requests.urllib3 to fix make check (#1253570)- Resolves: rhbz #1066236 - Bugzilla Bug #1066236 - mod_nss: documentation formatting fixes- Resolves: rhbz #1160745 - Rebase mod_nss to 1.0.11- Resolves: rhbz #1169871 - Bugzilla Bug #1169871 - Default configuration enables SSL3- Mass rebuild 2014-01-24- Resolves: rhbz #1029360 - Bugzilla Bug #1029360 - ambiguous/invalid ENVR in httpd-mmn Provides/Requires - corrected typo on date- Resolves: rhbz #1029360 - Bugzilla Bug #1029360 - ambiguous/invalid ENVR in httpd-mmn Provides/Requires- Mass rebuild 2013-12-27- Resolves: rhbz #1030276 - [mod_nss-usecases.patch] - Bugzilla Bug #1030276 - mod_nss not working in FIPS mode- Resolves: CVE-2013-4566 - Bugzilla Bug #1024536 - mod_nss: incorrect handling of NSSVerifyClient in directory context [rhel-7.0] (rcritten) - Bugzilla Bug #1030845 - mod_nss: do not use %configure in %changelog (mharmsen)- [mod_nss-SSLEngine-off.patch] - Bugzilla Bug #1029042 - Implicit SSLEngine for 443 port breaks mod_nss configuration (jorton) - [mod_nss-unused-filter_ctx.patch] - Bugzilla Bug #1029665 - Remove unused variable 'filter_ctx' (mharmsen)- Bugzilla Bug #1025317 - mod_nss: documentation formatting fixes [rhel-7]- Add '--enable-ecc' option to %configure line under %build section of this spec file (mharmsen) - Bumped version build/runtime requirements for NSPR and NSS (mharmsen) - [mod_nss-PK11_ListCerts_2.patch] - Bugzilla Bug #1022295 - PK11_ListCerts called to retrieve all user certificates for every server (rcritten) - [mod_nss-array_overrun.patch] - Bugzilla Bug #1022298 - overrunning array when executing nss_pcache (rcritten) - [mod_nss-clientauth.patch] - Bugzilla Bug #1022921 - mod_nss: FakeBasicAuth authentication bypass [rhel-7.0] (rcritten) - [mod_nss-no_shutdown_if_not_init_2.patch] - Bugzilla Bug #1022303 - File descriptor leak after "service httpd reload" or httpd doesn't reload (rrelyea) - [mod_nss-proxyvariables.patch] - Bugzilla Bug #1022309 - mod_nss insists on Required value NSSCipherSuite not set. (mharmsen) - [mod_nss-tlsv1_1.patch] - Bugzilla Bug #1022310 - current nss support TLS 1.1 so mod_nss should pick it up (mharmsen) - [mod_nss-sslmultiproxy_2.patch] - Fixes Bugzilla Bug #1021458 - [RFE] Support ability to share mod_proxy with other SSL providers (jorton, mharmsen, nkinder, & rcritten)- add dependency on httpd-mmn- Moved 'nss_pcache' from %sbindir to %libexecdir (provided compatibility link)- Add the following explanation to the 'Dangling symlinks' textbox in rpmdiff: Symlink 'etc/httpd/alias/libnssckbi.so' is deliberate. This test does not belong in rpmdiff. This test belongs in TPS. Since the symlink points to a file in another package, e.g. a dependency or a system file, rpmdiff cannot detect this. Remember, rpmdiff does not install or even know about package dependencies. That's TPS's job. - Add the following explanation to the 'Brewtap results' textbox in rpmdiff: The '/etc/httpd/conf.d/nss.conf' file does not require a man page because its parameters are sufficiently documented within the configuration file itself. The '/etc/httpd/conf.modules.d/10-nss.conf' file does not require a man page because the file merely contains the line 'LoadModule nss_module modules/libmodnss.so' to support httpd loading of Dynamic Shared Objects ('/etc/httpd/conf/httpd.conf').- Bugzilla Bug #884115 - Package mod_nss-1.0.8-18.1.el7 failed RHEL7 RPMdiff testing - Bugzilla Bug #906082 - mod_nss requires manpages for gencert and nss_pcache - Bugzilla Bug #906089 - Fix dangling symlinks in mod_nss - Bugzilla Bug #906097 - Correct RPM Parse Warning in mod_nss.spec - Bugzilla Bug #948601 - Man page scan results for mod_nss- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- fix build for RHEL7- Actually apply the patch to use memmove in place of memcpy since the buffers can overlap (#669118)- Port mod_nss to work with httpd 2.4- packaging fixes/updates (#803072)- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- Add Requires(post) for nss-tools, gencert needs it (#652007)- Lock around the pipe to nss_pcache for retrieving the token PIN (#677701)- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- Use memmove in place of memcpy since the buffers can overlap (#669118)- Rebuilt for gcc bug 634757- Revert mod_nss-wouldblock patch - Reset NSPR error before calling PR_Read(). This should fix looping in #620856- Fix hang when handling large POST under some conditions (#620856)- Remove file Requires on libnssckbi.so (#601939)- Ignore SIGHUP in nss_pcache (#591889).- Use remote hostname set by mod_proxy to compare to CN in peer cert (#591224)- Patch to add configuration options for new NSS negotiation API (#574187) - Add (pre) for Requires on httpd so we can be sure the user and group are already available - Add file Requires on libnssckbi.so so symlink can't fail - Use _sysconfdir macro instead of /etc - Set minimum level of NSS to 3.12.6- The location of libnssckbi moved from /lib[64] to /usr/lib[64] (556744)- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild- Update to 1.0.8 - Add patch that fixes NSPR layer bug- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild- fix license tag- rebuild to bump NVR- Don't force module de-init during the configuration stage (453508)- Don't inherit the MP cache in multi-threaded mode (454701) - Don't initialize NSS in each child if SSL isn't configured- Update the patch for FIPS to include fixes for nss_pcache, enforce the security policy and properly initialize the FIPS token.- Include patch to fix NSSFIPS (446851)- Apply patch so that mod_nss calls NSS_Init() after Apache forks a child and not before. This is in response to a change in the NSS softtokn code and should have always been done this way. (444348) - The location of libnssckbi moved from /usr/lib[64] to /lib[64] - The NSS database needs to be readable by apache since we need to use it after the root priviledges are dropped.- Autorebuild for GCC 4.3- Register functions needed by mod_proxy if mod_ssl is not loaded.- Update to 1.0.7 - Remove Requires for nss and nspr since those are handled automatically by versioned libraries - Updated URL and Source to reference directory.fedoraproject.org- Patch to properly detect the Apache model and set up NSS appropriately - Patch to punt if a bad password is encountered - Patch to fix crash when password.conf is malformatted - Don't enable ECC support as NSS doesn't have it enabled (3.11.4-0.7)- Update to 1.0.6- Include LogLevel warn in nss.conf and use separate log files- Need to initialize ECC certificate and key variables- Use %ghost for db files and install.log- Initial build/bin/sh 1.0.14-12.el71.0.14-12.el71.0.14-12.el7 aliascert8.dbinstall.logkey3.dblibnssckbi.sosecmod.dbnss.conf10-nss.conflibmodnss.sonss_pcachegencertnss_pcachemod_nss-1.0.14LICENSEREADMEmod_nss.htmlgencert.8.gznss_pcache.8.gz/etc/httpd//etc/httpd/alias//etc/httpd/conf.d//etc/httpd/conf.modules.d//usr/lib64/httpd/modules//usr/libexec//usr/sbin//usr/share/doc//usr/share/doc/mod_nss-1.0.14//usr/share/man/man8/-O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -m64 -mtune=genericdrpmxz2x86_64-redhat-linux-gnudirectoryemptyASCII textELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=47b6a353ccebae1279943c8bf5098d906b260bce, strippedELF 64-bit LSB executable, x86-64, version 1 (SYSV), dynamically linked (uses shared libs), for GNU/Linux 2.6.32, BuildID[sha1]=6ba4c727ce122d241efa11dc95bbfc1ea9a83060, strippedBourne-Again shell script, ASCII text executableHTML document, ASCII text, with very long linestroff or preprocessor input, ASCII text, with very long lines (gzip compressed data, from Unix, max compression) / PR RR!R#R$R R"RRRRRRRRRRR RR R RRRRRRRR RR*R R RRRRRRRRRRRRR*R?`7zXZ !#,{vRw]"k%a)#3[-KMolo_˂XC6'KBX<$A!KBVI|KMaBlbC<˥xs%j`xb5^ ]&X1 k%Qt:G 'W,"+/En47Mn0ZbGL@cyf#`Wm1jaxF ݲփ= H"sTٌˊWb1Edo BLr+AqQmnZ߱ہ]BquY<}ίB3{Z}o䃿(B )˫'D*CzCH7;d]͈%:*i{5E)G_/NB-r(PK<'{ '(FKAt!c2OBʰu~&gΆqDvR&M!OL{9aZq)L}?,=r u 'ˊ2XL) ގ|u6URV3BvKuzIzM{g!H0_Ɣ]RԈF,UȍW%A[eI=e{̒$rTa #_RJ2YD #qxio!/ OCZa"J Gh|MmoM)Z5I{07T*M'L;X$aQI\͎cb(Dξuvf$}5e)@ 7HC^„!0~+-gHYM 򸽀vzڮEx$ZE/Rv_vϫjnҡ]µb9c^C3z| YQ2dV^8o@/{` ﱀ,^Π~ qq^w6)a7U2p舾LJ5qC뾡tfsU{ɬ}c ~wj2xC=)I{(RiG-!Q]|Q92)8 )1?J!d@P Bd)bCO@qVCkLzzDY(8xfU OQ-eѩ`L&/+86ִ>&[@gykjbt8sUq@!9d@G^J eq 77]0{ 8jTVYsOg&\">0,G*VĶ6^︋U+ERU[ y"wTryL\WTLNטȔ&fu(R*0+_:!Gȼ3oO+IG(Cft)7Bmu#X!:(@R_4OEEd>=Ͷm|bʶ Сڢ?;j5lO0j\) ^)V|d@f,zezPpSlu%dR5_H ڟ6G4(ߞ6 U$Hų.Ş[ 3*B[J7rnE}[T TԈ`_]BCb<573V6RG4= ]'=PՅNLSyŇO2^v~7#i[ xBI=!' &>jiB@1) 'bK\ZwEXpF?}> EU{]_7}87CN/ sX GV9Wޣq~mUj 頊~6()V;B>&OtAGI2sXznl: 뷟YG"nVʛ__ő`؀s QTda֬l>NK>0$M|_81K[d8bp *L }o@n*Vy7(&.{;rw^8x:Ӟ+@+;&๹)Km*65fx*1$wM{GУ?Wv4/TfLyK&!nˌj93~bTП]D0`> 7ۖ]m{ cKu&(V 68%ڂW'rLf(;SGՒVMkBƋ~_]V$pE=u" c K>r`.cr[_7pXc(BAN̖J#$*gH6Eo,`i6Wli4Ҁ,8Ϗ˘,÷ dA ɔ6dg ٞ 75WF&- z:f·h;t"Fvk{l U:~y&`dVݟJLܺfw͔Y\=2t=O+w P;9H]?%O*]>D$xZ@[} [OptB&XIGm~N31)7Fdi" }lu2Dđ6P[1nW01?_ L*KA2<~ K#qM(6gJU3p=IxXȌDץE+!3eۛF 7.9Gi)Ҋt0a2YGWaMÑ1K;43 |Z2(|Bl{3y]KImShn.jFafl{8/8N7+HDG~EL,]maI@b) S]E^7>d~)di_nfj@pUȉR>;$ngj~c-GDr]U`;h޹C A[O6R!l"'PfTF Icң {Ζ2e 7.vVW#Ma.̉x×ot/+i*+3-ȬoDՏ]l[|XNb*y?ߒ<>hj4PQ`H7ZILkUƚ$9kik_ QGb~(Ni0.dOw7;38|&7鈕 -$ye$XBXn!o +K]G/C%IKg^zRJ朑PiI/~(׃?sÍmɪa~c+ Ry2H;Lu`k|C/_On.6RCqp}#$ ܳ9@K!6 5bA;Pqw; 5@KD<1Gۣڵb&7 2.Fjં61FE@/ARmfXZۛ.G'&tsW`abCK"z%.JzzidCӺ=`**j->l p}zbdEE("1;4+2]k~w0$$|L'{DTr%V$!TCYkd *)5cÃo9 wO:%I OD%*ۇZw6GܤG7Tx-C3yo*IrVg? e(;̡:|U]B3\f~T;\!'ɾh!gf;~T7E2֝C:y7b gߗY' ۋYI7؜$`=fWSJ8'Ԥ.;ZʽL)n I[0AV90C-ya>Ͼг8sɶ45ހp$D[L~Jl6Ah1k>[ó)E\^)д/ڷn;8 lc%^҈3eh佾e2zZҧ)zDLwbɍlEdW6(\Pm5eFZ禍ဂUzz`*0LAMYCzy.6Ϭ8]eaoolQW[cIPCT^E{vA{/.Kl=tfS0!SCY,~F>Nnn#;u-Wt?`4!!Gƪ ms^Bflnc=K{u/25ן9f&kk*qYTuFCJ6Nqux '3Z|p'(3'b\lDҟ _"xSl8%sG阍E|ȵ+K96A3 ϞgG.DUf 9cyǙ>Ri$8|mʗ,B_‚6$qL\\YjnpMٷ,AoE'?\nE,O2.:NzG4d}E$H wYu;(lL mx&8^6kC%:q̽c?@ԭ}?3$+> O`ϗn\ܐXE +rfL (A.!/> qYOW)@b=Yo֢g{򑽧 a#jpmXF%D{c\Yoݶ'=bցe90^.,UJi?29ϹF=\DnlU]fח'? * @>X2r_٬["C!」OTX*Nj}X>N.:,#GY³:ɑ*w+5'IВ+ nX ˏJBbs20`f\~DCAkstPE r@ v aΔ ֎ϧig5W_pZ Ȟl)2/MRB0C($EM ZCcLJژ,.jt._+ ~Gu 909 懶|v=+X\!Ց3}+}x[6 B xv.OA }2_]th3PoqqEzFHP<2v\,![<{| ,ZZ辄LE2FzJ ">j?h%+M&xXN`M?z|:&u`}?^ˡ2&GV֮:a+W X5qL"RH T<&"-8o~*%vThvNPT좠,Vm] 1h'ypeIHVO·{plJi̓:(ܬUeEmU!ÜCpZ ]`:J;R\砇?G sgVzƊpt}X[.Gw[YƀS !p \&P!Z.:]\h|;EgƳ][k>ig5┛j Y UR/kP(j.mLsiYqR---cxPY&:1/fdtY ͨDZV&U<%KB*C86.k,AQ:~CDz:䞇%ѵ@[YQs&b\<^H_xCَûIïھzěIuj{ܝ&t'ΡLS~)Y &9 R}Rs'kDO4&k+ ƃtpU,W髽<0,ӛjXG]e\%lgV*Ҁ~xܵy]fF(+;b)(lH "N@<C&_A~4)EP?im7NiN~ bᐡ%D,ϙrZءz4E:c:͗E?R-!P =ZX%/.8fIA S@{JB=Uі YTǩ[NJJHYLKbNu,ֱ ؞X+~`i֮k|Zڈ^;aD-)2>>-/ﯘJw!T8kL06_BWú[BE43Ƨ]g#B+Džp}70C*_ r8n,2:3h!B̘'eGc+ita"rOݽKrsjةUO`x^.SD03G!AhLc?d$## QR)c0eII }n-Yd,W%Hk,T+V.oˮRn*yo@+$볆?tΓzN™꬯zpioxJ`]뙗N&ćc"1^o j o֭E5@B﮷6*.=B~K?/* kf&WЬ5/; nj1,s*CtXRm=[:4 t&ֈx{ȨΫfl/Sf9Z45>8|M$ fg;H߱%%l=w̃0&Jʖƥe]P%ؓ (0N %r6\Td6\'ftvT9w?wIrf"x }x-k'~bCK]jP9H%Вd0w3m(FȂ!5'oc7]DBs{s:+{ڰ>arBe Bbl_i\ˑqw񨤹(,HIAJsEҸ(>wA4Z Ƥ%w08jǷb& `q$Q,r9;u0la\ϰtF5Qߧސi=]_ 'IY$a<cSC$ƔLq ^IXmL [= %Cq²j:~%W|?%6 X`kw(皝gT*_ >Y|aYJ9rF_7N AwO5h(6=IQ)tO)aҋQ +VΞ𺕬N97Mb.γ-J~8B}S5\oj;nKU LVY(PPǮv1ӻ^zs%WDhv4\W?zARqSU9yC9[x^g/W>/ V0!,;r5$g" =ryh޹QT .-=PFg\AΛ;ƞc|57&旰3Xٙsvq" `iDF h45-e*ګOVJ0X4ūD{LX2CˋJz`ēduظE1oOϬEXbMtε"u8aH=  fuUtZh5ukUBg ͈Sٚ?rީ˓ a-˼`3lYN^!iRßt(_[ij=RBƑ#Xo6PWr1r[ ?=p`ۉH b 0zWgɢI qX8WT]@TXj=iry_3Mt ێ҅ރu„KgX+](?F{ޭXwOWeQ#4[;^[*-$Lbc^<ȢbS| ICVwvʖ̑,>U(Cx[F8T W'dERBO+5$Ծ'{E#s}ߧj`MTXi3r0,X\wp$M-S ,Z~AQi:=r ɺ[EDŸZ/o _lKhR;Y 1I4|4- G% D8jVt"%?˹`(cnC~YKfBeqV`?0-gD.G mۨ`0-|2 9t!:&gǾ-Vce @twar:;2DP"@pm&Uz`B/(|D$ Ǐ;21JI@1 R!?䂺"IuǪӼ:؝IaG[ 9~?/ ǽZ*B_38/#C~VDӸ?ĺpv| @[)̉[<,yllS۾~` }zXkb+P)"I-03+feg+g``Pbt7z@u+IJΖSxYl5-$P4Le>SƘL '"SA}v([Ѵ}=D#اdSqN$R=i•v2+][9FQ5!qƖeAML%.QQۚcdAnD ^"o.! O w@¡?K< J:b]3Ȥ.F .zqK7=AJ~CKy[rbۼ< 3"-y0(=;5-MBٞQPaHiz*݌ Ht+MI ^;-},74QZGm'8Wi[Fxd[ysSɫ`C;/Yl$?^0B;C_]'?lT8~K?``5HȪW4".LL\RF6`^ٌO,!j]Jd޳Jؖ[OKRz܂8fn$x>TW蓉P/;ޖĽY"qx3 UH(EnT~>kgfP[bz:Y2T8mw6?y.оq@ѠȄ I})AE}(r i )vp}#8i}5C'j{gr1ͩc?YqZoF4 R/.$+̷{BQ5J2=>}Y5m7Vn{# 1r C1cn7?߭Z<?,+vM/>,S =(A'p(j:Ғc)f!=gWK"HU, 1::p+|ޟUS%^0F,X1륞OR([*ꌀ`ZW55t4}˽QJ.](mMFZn)TdY0kvHhaw Ա*a޺auŔFWTUEYk+CY1QZ~7O8p!)àkH`W>W]zR}MU!wf}yѤd"Mw |l-=sSrQBZ~{B d2dOr0~v'#ݣHiR$0d{!)Xh,8ǞtDѦHr ^|;i`N]A ] =&િxn<ʀ#QXJ|X3nŏglgf"%tNJ}6iJA?+BEx.fd $p5F_M^_:DǑCHd:;/o:IDmG!bq~n5h!Eo<ĥw XN4FMBsťmq́Ҿ0)"IQ /m[3x$ "2` ɿ ؗRߙ4K2~wѾyE@Bo6&׫6v#Av#TCܵ.rMZL8ŵXYDSz=[( Pz*V 0so1DEui?z٭Sw珍><Ԭ6s:IoOU!+ m$ABt`6us(euew$&1جu#\13=wEY;]Niނ”4Q5 ]34 %rK;nDo:k CCe4^# Jk `30 Bmlϧn?e>!e}ȯy9ZK窵6`wݑnn]*uLA*>άԣ)GEn&#v ʓǑDL}`{^^,{}?%!CFɝ7ZZC~WLD4^*5 J4,8DPzhd(2+C`$O(0Z6nEg(ih2&{p3"}>v-ʹ[I@ ̡>,- p}$YM>.NxafͿ @ӭqV?B*=똙7wXhn"Vq 1h4uWS2?wd+9ɫv6B:y+Iu瘓9넷 w 2]b) x@ ?joea/݀37hzgqeP-&\)fm(}o5z@HGh^]ʷtD>yt{tr[Ü] :y#519=iH  }\]N2M^[S݅14MFm):%"$of;=)oW]ܚAmK1HH]-{dnz#7B:9wJ\Y3# /] a5nEm"9y6=>fSy]ksUh7=l z.(jK>| EbfT/ Y]W`1-}w:*2U 0s *s͌Ga5>[񒬴Z`~!QCʺPhtx z!GEt9 d!\ZlD*I:!>DXVLvg" b/]xtWά.\7?+Ꙡ hc/V]c r+),%H@=^)p$dHBw ȝ&HL bU_g~^d_{ӹmtXLp1Sˑ~q)һmw&t%g@bv (GN*O!< TJ$C\>e)XJ تڔ,xU$8%Hiz)Ov n4;N~' bx/W`_rჩގ'ˑdaHR s= u^> a,pke83cwTn4c{Gǝ-@iݮzWx̃~lo#@wR 621_aG8x 4'B5t~ٰ v/+n*R0GE]!^}N7| KCY d)~t`͌ $pUs37񵳷p%P3C4Y"=p%/МO`l xM`]t/Mm0p:g?S}pk5G`IZq;Y0@W$ G_~fuk&^Oчn,P#|@8z9g*%Wն>P7nT2߂td.kB2Iq7K; o_$%B k1iU~`{PE`X @mǠ9h]k+9{,.Kݿ;Fi=B׽hX䃨uGpO( *2>GhNua^T!QE|j]m'P>GR5?>P#akO8 `Ib/bo0l*@νT|=o.QR2Et5շl^QcF~)~o[ /e2EDv;<QPEVqqf(.qMl/bR\W/\h_K?FgBob}iկA I|g!B{ԁg&M'Eo9&&K3=_QV4 %tx٢_+.Y7eZY2Jqڕs 2`8/GhƦEe tkFKײ혺TU?Hmǂݪe0yM$\sċN`}q]Y~YYӌFv{aӯQd$;c߈ 9~Ʋȝ8nޮZ5+*: eAn&Q=@;U\R$mS,ie$(t<j쉲!jqv3C \Z+wϺLq ~5T"(ݏaܶB&Ѫ^Gm('⓳G%쁲T؞Z)8)٧hi.1$Ӓ llZ5C! o (pD|ᎊ1u~)#fMw^O1 n?ކ45s,oN /P}MalW 8!<CGTK=ku& Wue[sչ!BRxJGi,ّuGlWlCq#fcl6SR%YU ]O1iQ wt8לDYst‚"?̵%+i I:yI'tR+0׭Bo~65Rl_Xsr=6~rJxΊrMɵo0dK&> h`CᘻMqtłr#`; Pa_m-bQ.l:V07yi胇ú'sK`gT.fbql+ɰX}B֣&DC1`^0C9Ob!51Q5 YZ