mod_nss-1.0.14-12.el7$>@@㖿]>:I?Id   B48?G s   0 x   L N l  , ,,(8F90F:F>AGBHBLIBXBYB\B]C,^C bDdEIeENfEQlEStEluEvE wH,xHtyH0I|Cmod_nss1.0.1412.el7SSL/TLS module for the Apache HTTP serverThe mod_nss module provides strong cryptography for the Apache Web server via the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols using the Network Security Services (NSS) security library.Zx86-01.bsys.centos.org%CentOSASL 2.0CentOS BuildSystem System Environment/Daemonshttps://pagure.io/mod_nss/linuxx86_64umask 077 if [ "$1" -eq 1 ] ; then if [ ! -e /etc/httpd/alias/key3.db ]; then /usr/sbin/gencert /etc/httpd/alias > /etc/httpd/alias/install.log 2>&1 echo "" echo "mod_nss certificate database generated." echo "" fi # Make sure that the database ownership is setup properly. /bin/find /etc/httpd/alias -user root -name "*.db" -exec /bin/chgrp apache {} \; /bin/find /etc/httpd/alias -user root -name "*.db" -exec /bin/chmod g+r {} \; fi +ٸ='a,]A큠A큤Z~Z~Z~Z~Z~Z~Z~Z~Z~Z~Z~Z~ZW2W2Z~Z~Z~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.so/usr/libexec/nss_pcacheQQQQrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootapacherootapacherootapacherootrootrootrootrootrootrootrootrootrootrootrootmod_nss-1.0.14-12.el7.src.rpmconfig(mod_nss)libmodnss.so()(64bit)mod_nssmod_nss(x86-64)@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@    @ /bin/bash/bin/sh/usr/lib64/libnssckbi.soconfig(mod_nss)httpdhttpd-mmnlibc.so.6()(64bit)libc.so.6(GLIBC_2.14)(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.3)(64bit)libc.so.6(GLIBC_2.3.4)(64bit)libc.so.6(GLIBC_2.4)(64bit)libgcc_s.so.1()(64bit)libgcc_s.so.1(GCC_3.0)(64bit)libgcc_s.so.1(GCC_3.3.1)(64bit)libnspr4.so()(64bit)libnss3.so()(64bit)libnss3.so(NSS_3.10)(64bit)libnss3.so(NSS_3.10.2)(64bit)libnss3.so(NSS_3.11.7)(64bit)libnss3.so(NSS_3.12)(64bit)libnss3.so(NSS_3.2)(64bit)libnss3.so(NSS_3.3)(64bit)libnss3.so(NSS_3.4)(64bit)libnss3.so(NSS_3.5)(64bit)libnss3.so(NSS_3.6)(64bit)libnss3.so(NSS_3.9)(64bit)libnss3.so(NSS_3.9.2)(64bit)libplc4.so()(64bit)libplds4.so()(64bit)libsmime3.so()(64bit)libssl3.so()(64bit)libssl3.so(NSS_3.12.6)(64bit)libssl3.so(NSS_3.14)(64bit)libssl3.so(NSS_3.2)(64bit)libssl3.so(NSS_3.4)(64bit)libssl3.so(NSS_3.7.4)(64bit)nss(x86-64)nss-toolsrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rtld(GNU_HASH)rpmlib(PayloadIsXz)1.0.14-12.el720120211x86643.19.13.0.4-14.6.0-14.0-15.2-14.11.3YZ@YoIYYXWv@Wv@W@WWt@WrfWBVBU@UUU@Uyx@T|RUR@R@RkRR R@RsRi QQ@QQɆ@QP H@O@O#O/@OD@OMtMn1@MQ0@M-L*@LA@LX@L K;@KKK]JjI@I2H)HH{?HuHkmHhH@GGJF` @F*E - 1.0.14-12Rob Crittenden - 1.0.14-11Rob Crittenden - 1.0.14-10Rob Crittenden - 1.0.14-9Rob Crittenden - 1.0.14-8Rob Crittenden - 1.0.14-7Rob Crittenden - 1.0.14-6Rob Crittenden - 1.0.14-5Rob Crittenden - 1.0.14-4Rob Crittenden - 1.0.14-3Matthew Harmsen - 1.0.14-2Rob Crittenden - 1.0.14-1Rob Crittenden - 1.0.11-6Rob Crittenden - 1.0.11-5Rob Crittenden - 1.0.11-4Rob Crittenden - 1.0.11-3Matthew Harmsen - 1.0.11-2Rob Crittenden - 1.0.11-1Matthew Harmsen - 1.0.8-33Daniel Mach - 1.0.8-32Matthew Harmsen - 1.0.8-31Matthew Harmsen - 1.0.8-30Daniel Mach - 1.0.8-29Matthew Harmsen - 1.0.8-28Rob Crittenden - 1.0.8-27Joe Orton - 1.0.8-26Tomas Hoger - 1.0.8-25Matthew Harmsen - 1.0.8-24Joe Orton - 1.0.8-23Matthew Harmsen - 1.0.8-22Matthew Harmsen - 1.0.8-21.1Matthew Harmsen - 1.0.8-21Fedora Release Engineering - 1.0.8-20.1Fedora Release Engineering - 1.0.8-19.1Joe Orton - 1.0.8-18.1Rob Crittenden - 1.0.8-18Nathan Kinder - 1.0.8-17Joe Orton - 1.0.8-16Fedora Release Engineering - 1.0.8-15Rob Crittenden - 1.0.8-14Rob Crittenden - 1.0.8-13Fedora Release Engineering - 1.0.8-12Rob Crittenden - 1.0.8-11jkeating - 1.0.8-10Rob Crittenden - 1.0.8-9Rob Crittenden - 1.0.8-8Rob Crittenden - 1.0.8-7Rob Crittenden - 1.0.8-6Rob Crittenden - 1.0.8-5Rob Crittenden - 1.0.8-4Rob Crittenden - 1.0.8-3Fedora Release Engineering - 1.0.8-2Rob Crittenden - 1.0.8-1Fedora Release Engineering - 1.0.7-11Tom "spot" Callaway - 1.0.7-10Rob Crittenden - 1.0.7-9Rob Crittenden - 1.0.7-8Rob Crittenden - 1.0.7-7Rob Crittenden - 1.0.7-6Rob Crittenden - 1.0.7-5Rob Crittenden - 1.0.7-4Fedora Release Engineering - 1.0.7-3Rob Crittenden 1.0.7-2Rob Crittenden 1.0.7-1Rob Crittenden 1.0.6-2Rob Crittenden 1.0.6-1Rob Crittenden 1.0.3-4Rob Crittenden 1.0.3-3Jarod Wilson 1.0.3-2Rob Crittenden 1.0.3-1- Correct URL and Source entries to point to pagure.io (#1502362) - Remove deprecated NSSSessionCacheTimeout from default config (#1257662)- TLS session cache was not working (#1461580)- Apply the nss_pcache man page patch (#1382102)- Update nss_pcache.8 to drop directory and prefix options (#1382102) - Don't share mod_nss NSS database with nss_pcache (#1382102)- Fail start start when there are invalid Protocols defined (#1389114) - Handle group membership when testing NSS database filesystem permissions (#1395300) - Add OCSP cache tuning directives (#1392582) - Don't share mod_nss NSS database with nss_pcache (#1382102)- Add the permission patch to the repository (#1312583)- Check the NSS certificate database directory for read permissions by the Apache user. (#1312583)- Update clean semaphore patch to not free the pinList twice. (#1364560)- Update clean semaphore patch to not close pipe twice and to shutdown NSS database (#1364560)- Clean up semaphore in nss_pcache on shutdown (#1364560)- mod_nss sets r->user in fixup even if it was long ago changed by other module (#1347298)- Rebase to 1.0.14 (#1299063) - Add support for Server Name Indication (SNI) (#1053327) - Use upstream method to not execute live tests as root (#1256887) - Always call SSL_ShutdownServerSessionIDCache() in ModuleKill (#1263301, #1296685) - Don't require NSSProxyNickname (#1280287) - Make link to libnssckbi.so an absolute link (#1288471) - Fail for colons in credentials with FakeBasicAuth (#1295970) - Don't ignore NSSProtocol when NSSFIPS is enabled (#1312491) - Check filesystem permissions on NSS database at startup (#1312583) - OpenSSL ciphers stopped parsing at +, CVE-2016-3099 (#1323913) - Patch to match available ciphers so tests pass (#1299063) - Patch to fix tests in brew (#1299063)- Add the supported NSS SHA384 ciphers (#1253570) - Add kECDH, AECDH, ECDSA and aECDSA macros (#1253570) - Bump the NSS BR and Requires so the new ciphers are available - Bump the NSPR Requires to match NSS- Don't enable NULL ciphers in DEFAULT macro (#1253570) - Add OpenSSL cipher macro EECDH (#1160745) - Disable the live server testing in make check because it may run as root and fail horribly (#1160745)- Handle permanently disabled ciphers in call to SSL_CipherPrefSet (#1160745)- Fix logical and support in cipher strings CVE-2015-3277 (#1253570) - Add missing BuildRequires and small patch to use requests.urllib3 to fix make check (#1253570)- Resolves: rhbz #1066236 - Bugzilla Bug #1066236 - mod_nss: documentation formatting fixes- Resolves: rhbz #1160745 - Rebase mod_nss to 1.0.11- Resolves: rhbz #1169871 - Bugzilla Bug #1169871 - Default configuration enables SSL3- Mass rebuild 2014-01-24- Resolves: rhbz #1029360 - Bugzilla Bug #1029360 - ambiguous/invalid ENVR in httpd-mmn Provides/Requires - corrected typo on date- Resolves: rhbz #1029360 - Bugzilla Bug #1029360 - ambiguous/invalid ENVR in httpd-mmn Provides/Requires- Mass rebuild 2013-12-27- Resolves: rhbz #1030276 - [mod_nss-usecases.patch] - Bugzilla Bug #1030276 - mod_nss not working in FIPS mode- Resolves: CVE-2013-4566 - Bugzilla Bug #1024536 - mod_nss: incorrect handling of NSSVerifyClient in directory context [rhel-7.0] (rcritten) - Bugzilla Bug #1030845 - mod_nss: do not use %configure in %changelog (mharmsen)- [mod_nss-SSLEngine-off.patch] - Bugzilla Bug #1029042 - Implicit SSLEngine for 443 port breaks mod_nss configuration (jorton) - [mod_nss-unused-filter_ctx.patch] - Bugzilla Bug #1029665 - Remove unused variable 'filter_ctx' (mharmsen)- Bugzilla Bug #1025317 - mod_nss: documentation formatting fixes [rhel-7]- Add '--enable-ecc' option to %configure line under %build section of this spec file (mharmsen) - Bumped version build/runtime requirements for NSPR and NSS (mharmsen) - [mod_nss-PK11_ListCerts_2.patch] - Bugzilla Bug #1022295 - PK11_ListCerts called to retrieve all user certificates for every server (rcritten) - [mod_nss-array_overrun.patch] - Bugzilla Bug #1022298 - overrunning array when executing nss_pcache (rcritten) - [mod_nss-clientauth.patch] - Bugzilla Bug #1022921 - mod_nss: FakeBasicAuth authentication bypass [rhel-7.0] (rcritten) - [mod_nss-no_shutdown_if_not_init_2.patch] - Bugzilla Bug #1022303 - File descriptor leak after "service httpd reload" or httpd doesn't reload (rrelyea) - [mod_nss-proxyvariables.patch] - Bugzilla Bug #1022309 - mod_nss insists on Required value NSSCipherSuite not set. (mharmsen) - [mod_nss-tlsv1_1.patch] - Bugzilla Bug #1022310 - current nss support TLS 1.1 so mod_nss should pick it up (mharmsen) - [mod_nss-sslmultiproxy_2.patch] - Fixes Bugzilla Bug #1021458 - [RFE] Support ability to share mod_proxy with other SSL providers (jorton, mharmsen, nkinder, & rcritten)- add dependency on httpd-mmn- Moved 'nss_pcache' from %sbindir to %libexecdir (provided compatibility link)- Add the following explanation to the 'Dangling symlinks' textbox in rpmdiff: Symlink 'etc/httpd/alias/libnssckbi.so' is deliberate. This test does not belong in rpmdiff. This test belongs in TPS. Since the symlink points to a file in another package, e.g. a dependency or a system file, rpmdiff cannot detect this. Remember, rpmdiff does not install or even know about package dependencies. That's TPS's job. - Add the following explanation to the 'Brewtap results' textbox in rpmdiff: The '/etc/httpd/conf.d/nss.conf' file does not require a man page because its parameters are sufficiently documented within the configuration file itself. The '/etc/httpd/conf.modules.d/10-nss.conf' file does not require a man page because the file merely contains the line 'LoadModule nss_module modules/libmodnss.so' to support httpd loading of Dynamic Shared Objects ('/etc/httpd/conf/httpd.conf').- Bugzilla Bug #884115 - Package mod_nss-1.0.8-18.1.el7 failed RHEL7 RPMdiff testing - Bugzilla Bug #906082 - mod_nss requires manpages for gencert and nss_pcache - Bugzilla Bug #906089 - Fix dangling symlinks in mod_nss - Bugzilla Bug #906097 - Correct RPM Parse Warning in mod_nss.spec - Bugzilla Bug #948601 - Man page scan results for mod_nss- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- fix build for RHEL7- Actually apply the patch to use memmove in place of memcpy since the buffers can overlap (#669118)- Port mod_nss to work with httpd 2.4- packaging fixes/updates (#803072)- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- Add Requires(post) for nss-tools, gencert needs it (#652007)- Lock around the pipe to nss_pcache for retrieving the token PIN (#677701)- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- Use memmove in place of memcpy since the buffers can overlap (#669118)- Rebuilt for gcc bug 634757- Revert mod_nss-wouldblock patch - Reset NSPR error before calling PR_Read(). This should fix looping in #620856- Fix hang when handling large POST under some conditions (#620856)- Remove file Requires on libnssckbi.so (#601939)- Ignore SIGHUP in nss_pcache (#591889).- Use remote hostname set by mod_proxy to compare to CN in peer cert (#591224)- Patch to add configuration options for new NSS negotiation API (#574187) - Add (pre) for Requires on httpd so we can be sure the user and group are already available - Add file Requires on libnssckbi.so so symlink can't fail - Use _sysconfdir macro instead of /etc - Set minimum level of NSS to 3.12.6- The location of libnssckbi moved from /lib[64] to /usr/lib[64] (556744)- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild- Update to 1.0.8 - Add patch that fixes NSPR layer bug- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild- fix license tag- rebuild to bump NVR- Don't force module de-init during the configuration stage (453508)- Don't inherit the MP cache in multi-threaded mode (454701) - Don't initialize NSS in each child if SSL isn't configured- Update the patch for FIPS to include fixes for nss_pcache, enforce the security policy and properly initialize the FIPS token.- Include patch to fix NSSFIPS (446851)- Apply patch so that mod_nss calls NSS_Init() after Apache forks a child and not before. This is in response to a change in the NSS softtokn code and should have always been done this way. (444348) - The location of libnssckbi moved from /usr/lib[64] to /lib[64] - The NSS database needs to be readable by apache since we need to use it after the root priviledges are dropped.- Autorebuild for GCC 4.3- Register functions needed by mod_proxy if mod_ssl is not loaded.- Update to 1.0.7 - Remove Requires for nss and nspr since those are handled automatically by versioned libraries - Updated URL and Source to reference directory.fedoraproject.org- Patch to properly detect the Apache model and set up NSS appropriately - Patch to punt if a bad password is encountered - Patch to fix crash when password.conf is malformatted - Don't enable ECC support as NSS doesn't have it enabled (3.11.4-0.7)- Update to 1.0.6- Include LogLevel warn in nss.conf and use separate log files- Need to initialize ECC certificate and key variables- Use %ghost for db files and install.log- Initial build/bin/sh 1.0.14-12.el71.0.14-12.el71.0.14-12.el7 aliascert8.dbinstall.logkey3.dblibnssckbi.sosecmod.dbnss.conf10-nss.conflibmodnss.sonss_pcachegencertnss_pcachemod_nss-1.0.14LICENSEREADMEmod_nss.htmlgencert.8.gznss_pcache.8.gz/etc/httpd//etc/httpd/alias//etc/httpd/conf.d//etc/httpd/conf.modules.d//usr/lib64/httpd/modules//usr/libexec//usr/sbin//usr/share/doc//usr/share/doc/mod_nss-1.0.14//usr/share/man/man8/-O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -m64 -mtune=genericdrpmxz2x86_64-redhat-linux-gnudirectoryemptyASCII textELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=47b6a353ccebae1279943c8bf5098d906b260bce, strippedELF 64-bit LSB executable, x86-64, version 1 (SYSV), dynamically linked (uses shared libs), for GNU/Linux 2.6.32, BuildID[sha1]=6ba4c727ce122d241efa11dc95bbfc1ea9a83060, strippedBourne-Again shell script, ASCII text executableHTML document, ASCII text, with very long linestroff or preprocessor input, ASCII text, with very long lines (gzip compressed data, from Unix, max compression) / PR RR!R#R$R R"RRRRRRRRRRR RR R RRRRRRRR RR*R R RRRRRRRRRRRRR*R?`7zXZ !#,g3]"k%rq)#3[-KMolodt6~M?(>H _ͫ?RyS=[-#0`lJHNrJS(xD 5$/zwbĕkll#Pr̅:9bOJMƔ>ԍA0oXfKDcsQVƞ蜬'-K|DrAQ0YbYܩ]9Jc[zO8yD6I=#Ӑ=P{^Ol1QxbpTy"i8iHP}kcvU/q~v.Э-#KcOhyRgߎ I{S`8"{t>Ͽ)s9C I&G}}NH8ECb nܾhy ȅTja?+Xׁ.ʢ3SifYYUT[ Z͕g+{|?F`F1Vx_(tzF/dnʗRz7lz,#}g}1^v@͉"ì?+{Aic0Zz1R8@7ǑADx[hFnHn=BL[ͱfhtbWmmH[g Z+P`h,}jH(Ѻ">NO ()lXnJmtzMI_^F8Zs>= vfAۀIX|g* ۴K21,Ō+N&-d[IILJS 5DR(]?܃-P뼪Jdc' ro{ł X;Vx ,F1ᾙiXʳSlkj>bIK_&} #P1%*_w[ 솏T? hn>5 ,WY&Tn#: +TD6GCsXց iEN!m^yEd/D9q+vH dNEJqwYk6)&G+WE%ͰneJր\̥ nD#/O*Xf6 闲oov_—>l6Ұ^Q{I s4Ŕ L~PB!n5^扴tgY%MH oJQB ͆v$ZDްm8Qo٢(@VQȑgzWq$C3x!1B|Zjccc}b% tj-Ϳɽ1ar鰠 [ XhwP 8Zdٖ|挙?K!y')/[JI8.EJ|m{% *$$Af Ss 2];m^~$G8t`ũpSV5d &l!JE"gxL |9bq3Sg%Nvhmp:UPZ#Nk9ʰ$lZ‚v Z _IfnGZCn[i^7>O#,BL{rF@Kz&C7z'Cέt8C{G4yj̼~ΫgSbif˳G+'6w'Iĭ_azÈ&PFkyN^/4>Py]̧D cx]Ķo+u H܈-uڷ6]bl7P1+L}>Y!bvPvJmqOJM!9J#.w hyح_fj n+{9+$$B/߸; I?BB,6y&vVORָS<.>ovTz>d'L` ;Oׄ\O ^fDVlpAz{vknckL#/fkbL&LQN=.Zm$ܨ;;1PdJ?ۃ_fؚ}^g-_ ?Ҁ{QF,.֞ceצMq?vť;RbR2?8hxC46Dž.9#IjN9 *9Cګٍ ߝ|`VuJm-fG~R\),Wp|~kq]];ȈvaNAp"uh}hЈVuU v.Xޘ9oz(O>\)B@ɞ&&!ˏGX7H%SuqSm%@AtD( IUW],lL / -Zˋ]n2`0WjO<ܱdېL NNjEVq4Sܟb 1 )oȦPV2b!FNܡ9t+:,e`f^<0,j `Z֓p5.aU WB`Qs"Xe?ۡQ9Xro;x2]HV6Q)B_;p6ĵ]S1xc>}uAs^K>ߴԅ̔uf}hƟ} ،*n纴ހl!#$ݹ?NuB5Gy5Y@ ks묃A&h\fxik.4D)XO2(?RCy 4@ >p=稬 4̛|Օ#NØ?vQ5 uEul9^v F~IKjgݝ3jk[+,FQtVȂ$owo"f C :lGV~Kж Zg{6+K;;.(2⧮N[OgS"dj c1wvcH+x(#pwzˆKB5Y;TA)FߑWQ7PqX3~e3!]<}b8@w鈊ā9MHUE1ss[ɮӶ!1'Eu45{hj* Me?a'^YU^y`{\8 V B8@#XBB Ո4 64.gy- x!'tƨT92d5 W15Jz%-6͚ DNҧ>}h.sQMdM~/׿%/g"s漿_^#{jV4ˆnx¶~E#zd`wX-ƺ7"aǯ羊GD7=]uH{dDM(JB9ZP#m&|/!PĢKp(F ' 4ER)sZX'l/ޘqPfG)7Ui_0Hq93zyj+Y\M::yTG4֍ A Y6m1Ӎ@2&i_CykQ8Ocd上1rtVF^8B^\,HHqB*b=ɯXʏ6,uX,\5vFֈ >¥* UYbc1ZwW6f;-F%VʭJӓ>i\*i[C"eDJ9IҌ.K2Kw"sV\MRqZmp ,1IjaF;~D6~H8X')c-q(JA@?eDꥬX8B8u~K֝K2~Q78ř8ЁT-{95tzRs+n8!;̕'=K|$<1ҍA'a+ 2TspK]uxߚt< P2 +esǧW1/]oB#77GEȮI'Ws# O:iN:)*dVFUZ1!5ړMt: @bLMy֛Й9Ƴ%!5Zw;XA>P S̻ώ-+`0.|gF/њA 5S=>f/%_7n1N} ` h;-HֳRHj)*BfP^˔ܩ+Dub3$*m#jIe7Y,4Cy^\zf ZljoҪH % iU#"R};plf d],Zu@ϴU3Y+ZT9o;VyWC{}  $+rVCX.WeO=ǣs:2sqySkEnׂ SXCۛtwٳe&G]y+o<+7VAL(Ӄ|%Z;]A@fkVͨ_< Yo+^?GiPLȋesd\I/~"6*۷2_$I۷YNX3ШW4×s1L׽EKnl.ߛ%-3a?%f-GZV]AR n4A#!RFqCpX%t$gsSQPp9zQaRodueE]D' д TH\arevb 4H$շG]x,oZ(YY^r,wت5(=b\JJ&n\4EՀ2wn派KT_ڔ,VksY|cvcB0v#2ĵcV'D\L8#7B=AgqR*}xq!my?K H4gZZ=?+='wI8P:FE!Z_0яθ ><7}g}sA=50mXUk3LX &v#fJكIo謼Ħ~l Q7HFu_-5Sp|oЗ ܊YC `Kwk(3̫ mb2ѫZe߃Ƞ"yϓYiOfRQג=D34^rWڬiY9h13 Aml ||[M>x3*י=Mkƾ`dH0R? PX 5H-%Ou 2q\4i^^q|ft7[7[X3U/8G- S;e#_*Oi5Vh|HgQ\YA|HMn.~Mls/CʺWHxat2DvVkux/ztDog&iL%:A~DIܬhl*28l=_mEM-UOH;gS 41U, ~~/ݱg.1SnipvWzٿF[5yqJ7p+@d2$],L1!x@Sv*&4x+0*dhX)LMo$ΕӬ!dgIDG/Ȃ0O!bl,zщؿ8"cVbEunl tGAYYfK;j?y]xE/8Ν !,$biEIuS!v"d5j+]km'e6hڊ1"RmECV uBܕ %>l9Ugܳ_6ܶ',-6 $CGorwJ=_.fm GzTL^n+bQ{04,jIMխ2 4 ;i}{QPFEIsC">Y0}C޲Į/Fwyo6َ37-5g㟓(' <.(td Ͻ8Pۧp4Gwd`eJ!:w#wQVfN:,:Q ؜siIknBb՛mlK6 e6.t$tsk":q5?&g >+^<ú.xtPYRhx5uF\poI1IJE/97 )4hV}˧۝QL mym>W)2Wr?ho`ni \3T]SnVDYzJr5-uK͊vԥ&w!kY}~?E~+szFqUtpo VSp{sMi+_m1OO95|DzsOnm/e!qϠk&N Mr祈ǯ9nJ0mSuOs[ v:+&>~Q+O.ˍWT6uOG/Қ7 ~kk9[ ׊LH7xw"9M6^ud#_P[ucŭD=`@ag!{KW YT4h+tsQ$i$zW$"'ƪB~6lM􏞦 ޕ+=P.hhjgk@qr)R*[0̣!]uv>OdՒJ˷x1Է ,Q \:/p }A[r9;l(^V^p–.ӘDj2&Jx!\Ij'k*roOU׍vM2EXbژܘotWoCbeJ&FsܹfSL.Kbu_rZX@Yc^IKɶ `f,*h%$j<*y@dj%GB2;R:7w2љh׼˪htya2 !f/m c% lt?H:\+n;})$iM#os./iISzMbSX]TAFHTh_,%,8 bHW?ne-wfA;Mkt8Ĺ2g2juY;iӼN!UޛWuc:TfeO xTkjJ&58\ZrՖܝnڢlQb6i$'jvPq:u U!( VΧ :qto_4$ߎ~כɏ6. E\;ݵvMtKX}p쪰(`Yu^BWV|)zz7;WnJLZJ(/&pX2"r&Uā!S3Ҩ6 Sr`zAEDAfg,uXx<ݐr'j FRܔKnȻ T`a IӻFOB~U.c#q}YPw*ՂS,vG G ]8}3Oh9N( ƐJ4Ѝ3b)@pGa!nlRAb>xHd#i\6nYc-$m/v񛽃BP)O'/*a"F-3mqJϐz2gmj X~ ?n]V5EZ- }kᕜhqʾ&tRmZFt^.sr.hD=L7ku8Yu lrLwޱ_L3) ,01'fqX 8RtN-FQ[n~~c 2DLOdkuI[US\?xɂK%|6 K%T4X,Ѵ-"&Ϝk/$7) XSBVmU^9| jn3EŜuq'5)`(6vǮ1rTͱ9:}w XkŇk/탣!qyjzLȆNS'e*]hۢ0ςI񄓶<ί(ڐiDS\q(7t'FHLhT(Py:Py>xP?a^A+2NJ.yakQV)_'ޫ۠ z0S]SLIQڗZ2)?z/I5 ʾƪR//" vYː7,V^%ƥjmd;.dj, ?mk"l'-.V=󔩚MC i&!SbC3Yh$Йճb@9Q9Q'H (RڮDɯSݽt &wkc YT3t W15.Tz"o +\+OnԒ>/GSFUѐ>w}8i'܁k/AI/ȍ>sՖYfoG.d1ɽ ED&ѥԤ%\ 7NOo?FXa?sY?F**G88!)b2z",V;%H쬬ܳ5M*~E۔)'EY"q~d~i`Qh/#z"#:D}*edfW8\|'xdz*$Wxm~cCa( i& gDzpjg\j’ȔA"LJzbH:DsL:+`Sk=,rMYa;`(I\˂ F輮>>$sy"lQ ɄVe( /vצ-.Jᚾ UgUw}vYK%MTex()va$ݤd gO>+#c 5 #sQ;=݅3k[gi*Ūa~Gw `,\I߯yG;!cيfe:%U Jr kխrW`2=bmՑR FG