nss-3.36.0-7.el7_5$>!-'sih:><h?Xd   /hl |8   (         T`;;;(P8Xd9$d:fld>@ G(HxIX`Y\`\]8^%bde!f$l&t@uv wxydTCnss3.36.07.el7_5Network Security ServicesNetwork Security Services (NSS) is a set of libraries designed to support cross-platform development of security-enabled client and server applications. Applications built with NSS can support SSL v2 and v3, TLS, PKCS #5, PKCS #7, PKCS #11, PKCS #12, S/MIME, X.509 v3 certificates, and other security standards.[x86-01.bsys.centos.org%CentOSMPLv2.0CentOS BuildSystem System Environment/Librarieshttp://www.mozilla.org/projects/security/pki/nss/linuxx86_64# If we upgrade, and the shared filename is a regular file, then we must # remove it, before we can install the alternatives symbolic link. if [ $1 -gt 1 ] ; then # when upgrading or downgrading if ! test -L /usr/lib64/libnssckbi.so; then rm -f /usr/lib64/libnssckbi.so fi fi # Install the symbolic link # FYI: Certain other packages use alternatives --set to enforce that the first # installed package is preferred. We don't do that. Highest priority wins. /usr/sbin/update-alternatives --install /usr/lib64/libnssckbi.so \ libnssckbi.so.x86_64 /usr/lib64/nss/libnssckbi.so 10 /sbin/ldconfigif [ $1 -eq 0 ] ; then # package removal /usr/sbin/update-alternatives --remove libnssckbi.so.x86_64 /usr/lib64/nss/libnssckbi.so else # upgrade or downgrade # If the new installed package uses a regular file (not a symblic link), # then cleanup the alternatives link. if ! test -L /usr/lib64/libnssckbi.so; then /usr/sbin/update-alternatives --remove libnssckbi.so.x86_64 /usr/lib64/nss/libnssckbi.so fi fi /sbin/ldconfig$@,@3QWU?A큤A큤큤큤[[\[[^[^[_[`[\[`[[[[[[[[[[[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@rootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootnss-3.36.0-7.el7_5.src.rpmconfig(nss)libnss3.so()(64bit)libnss3.so(NSS_3.10)(64bit)libnss3.so(NSS_3.10.2)(64bit)libnss3.so(NSS_3.11)(64bit)libnss3.so(NSS_3.11.1)(64bit)libnss3.so(NSS_3.11.2)(64bit)libnss3.so(NSS_3.11.7)(64bit)libnss3.so(NSS_3.11.9)(64bit)libnss3.so(NSS_3.12)(64bit)libnss3.so(NSS_3.12.1)(64bit)libnss3.so(NSS_3.12.10)(64bit)libnss3.so(NSS_3.12.3)(64bit)libnss3.so(NSS_3.12.4)(64bit)libnss3.so(NSS_3.12.5)(64bit)libnss3.so(NSS_3.12.6)(64bit)libnss3.so(NSS_3.12.7)(64bit)libnss3.so(NSS_3.12.9)(64bit)libnss3.so(NSS_3.13)(64bit)libnss3.so(NSS_3.13.2)(64bit)libnss3.so(NSS_3.14)(64bit)libnss3.so(NSS_3.14.1)(64bit)libnss3.so(NSS_3.14.3)(64bit)libnss3.so(NSS_3.15)(64bit)libnss3.so(NSS_3.15.4)(64bit)libnss3.so(NSS_3.16.1)(64bit)libnss3.so(NSS_3.16.2)(64bit)libnss3.so(NSS_3.18)(64bit)libnss3.so(NSS_3.19)(64bit)libnss3.so(NSS_3.19.1)(64bit)libnss3.so(NSS_3.2)(64bit)libnss3.so(NSS_3.2.1)(64bit)libnss3.so(NSS_3.21)(64bit)libnss3.so(NSS_3.22)(64bit)libnss3.so(NSS_3.3)(64bit)libnss3.so(NSS_3.3.1)(64bit)libnss3.so(NSS_3.30)(64bit)libnss3.so(NSS_3.31)(64bit)libnss3.so(NSS_3.33)(64bit)libnss3.so(NSS_3.34)(64bit)libnss3.so(NSS_3.4)(64bit)libnss3.so(NSS_3.5)(64bit)libnss3.so(NSS_3.6)(64bit)libnss3.so(NSS_3.7)(64bit)libnss3.so(NSS_3.7.1)(64bit)libnss3.so(NSS_3.8)(64bit)libnss3.so(NSS_3.9)(64bit)libnss3.so(NSS_3.9.2)(64bit)libnss3.so(NSS_3.9.3)(64bit)libnssckbi.so()(64bit)libnssckbi.so(NSS_3.1)(64bit)libsmime3.so()(64bit)libsmime3.so(NSS_3.10)(64bit)libsmime3.so(NSS_3.12.10)(64bit)libsmime3.so(NSS_3.12.2)(64bit)libsmime3.so(NSS_3.13)(64bit)libsmime3.so(NSS_3.15)(64bit)libsmime3.so(NSS_3.16)(64bit)libsmime3.so(NSS_3.18)(64bit)libsmime3.so(NSS_3.2)(64bit)libsmime3.so(NSS_3.2.1)(64bit)libsmime3.so(NSS_3.3)(64bit)libsmime3.so(NSS_3.4)(64bit)libsmime3.so(NSS_3.4.1)(64bit)libsmime3.so(NSS_3.6)(64bit)libsmime3.so(NSS_3.7)(64bit)libsmime3.so(NSS_3.7.2)(64bit)libsmime3.so(NSS_3.8)(64bit)libsmime3.so(NSS_3.9)(64bit)libsmime3.so(NSS_3.9.3)(64bit)libssl3.so()(64bit)libssl3.so(NSS_3.11.4)(64bit)libssl3.so(NSS_3.11.8)(64bit)libssl3.so(NSS_3.12.10)(64bit)libssl3.so(NSS_3.12.6)(64bit)libssl3.so(NSS_3.13)(64bit)libssl3.so(NSS_3.13.2)(64bit)libssl3.so(NSS_3.14)(64bit)libssl3.so(NSS_3.15)(64bit)libssl3.so(NSS_3.15.4)(64bit)libssl3.so(NSS_3.2)(64bit)libssl3.so(NSS_3.2.1)(64bit)libssl3.so(NSS_3.20)(64bit)libssl3.so(NSS_3.21)(64bit)libssl3.so(NSS_3.22)(64bit)libssl3.so(NSS_3.23)(64bit)libssl3.so(NSS_3.24)(64bit)libssl3.so(NSS_3.27)(64bit)libssl3.so(NSS_3.28)(64bit)libssl3.so(NSS_3.30)(64bit)libssl3.so(NSS_3.30.0.1)(64bit)libssl3.so(NSS_3.33)(64bit)libssl3.so(NSS_3.4)(64bit)libssl3.so(NSS_3.7.4)(64bit)nssnss(x86-64)@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@    @ /bin/sh/bin/sh/usr/sbin/update-alternatives/usr/sbin/update-alternativesconfig(nss)libc.so.6()(64bit)libc.so.6(GLIBC_2.14)(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.3)(64bit)libc.so.6(GLIBC_2.3.4)(64bit)libc.so.6(GLIBC_2.4)(64bit)libdl.so.2()(64bit)libnspr4.so()(64bit)libnss3.so()(64bit)libnss3.so(NSS_3.10)(64bit)libnss3.so(NSS_3.11)(64bit)libnss3.so(NSS_3.11.1)(64bit)libnss3.so(NSS_3.11.2)(64bit)libnss3.so(NSS_3.12)(64bit)libnss3.so(NSS_3.12.6)(64bit)libnss3.so(NSS_3.14)(64bit)libnss3.so(NSS_3.14.3)(64bit)libnss3.so(NSS_3.15)(64bit)libnss3.so(NSS_3.19.1)(64bit)libnss3.so(NSS_3.2)(64bit)libnss3.so(NSS_3.21)(64bit)libnss3.so(NSS_3.22)(64bit)libnss3.so(NSS_3.3)(64bit)libnss3.so(NSS_3.3.1)(64bit)libnss3.so(NSS_3.4)(64bit)libnss3.so(NSS_3.6)(64bit)libnss3.so(NSS_3.7)(64bit)libnss3.so(NSS_3.8)(64bit)libnss3.so(NSS_3.9)(64bit)libnssutil3.so()(64bit)libnssutil3.so(NSSUTIL_3.12)(64bit)libnssutil3.so(NSSUTIL_3.12.3)(64bit)libnssutil3.so(NSSUTIL_3.12.5)(64bit)libnssutil3.so(NSSUTIL_3.13)(64bit)libnssutil3.so(NSSUTIL_3.14)(64bit)libnssutil3.so(NSSUTIL_3.15)(64bit)libnssutil3.so(NSSUTIL_3.17.1)(64bit)libnssutil3.so(NSSUTIL_3.21)(64bit)libnssutil3.so(NSSUTIL_3.24)(64bit)libnssutil3.so(NSSUTIL_3.31)(64bit)libplc4.so()(64bit)libplds4.so()(64bit)libpthread.so.0()(64bit)libpthread.so.0(GLIBC_2.2.5)(64bit)nsprnss-pem(x86-64)nss-softokn(x86-64)nss-system-initnss-utilrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rtld(GNU_HASH)rpmlib(PayloadIsXz)3.36.0-7.el7_54.19.03.36.0-13.36.0-13.0.4-14.6.0-14.0-15.2-14.11.3[Z؄Z3@ZЛZ2@ZkZw@Z\ZOhZN@Z Y@Y|YB@Y@Y@Y@Y@YJYg`Y1S@Y i@Y i@Y @Y.Y@YXX~@X•@XO@XO@XBX@XX@XWu WrfWc@Wc@WBWo@Wo@Wo@WW WW@Vn@V@V>@V`VpV'~@U6@U6@UAU@UUUݪ@UUȒ@UU@U'U3@UUx&Ux&Uq@U?v@U8U0U-@U'@U:TTq@TTto@Td@T)IS@S@Sہ@S@SnS@RJ@RRUR۾@R۾@R@R@Rx@RΏ@RkR@R;RiR@Rz/@Rv:Rt@RrF@Ro@Ro@RnQRe@RW@RSR@QQQ@QKQ@QQW@Q'@Qq1QNQ9Q7/Q#@QQ @P!@PՠP @PqP@P@PAPXPd@Pd@PPP@PP5@PPnP;a@P(@P H@O;O;O@OiO@O@O}O~OiOYOX@OOdO&@O!@@OO@O@N>@N>@NNܲ@N`NؽNN@NuN;@Np@Nf @NA!@N*NpM@MWMc@MM@M@MMfH@M^_@MZjMS@MQ0@MQ0@MQ0@MQ0@MK@MGMF@M6@M-MM@Ls@LOLLZ@L6LdL@L*@L@LA@LL@L4Lx@Lx@Li(@Lf@L_L_LT@L0L0L K @KsKsKKCKCKCK]KMKLd@KD{@K<@K5K4@K,@K+nK*@K K@K@K@KJݦ@J - 3.36.0-7Daiki Ueno - 3.36.0-6Daiki Ueno - 3.36.0-5Daiki Ueno - 3.36.0-4Daiki Ueno - 3.36.0-3Daiki Ueno - 3.36.0-2Daiki Ueno - 3.36.0-1Daiki Ueno - 3.34.0-4Daiki Ueno - 3.34.0-3Daiki Ueno - 3.34.0-2Daiki Ueno - 3.34.0-1Daiki Ueno - 3.34.0-0.1.beta1Daiki Ueno - 3.33.0-3Daiki Ueno - 3.33.0-2Daiki Ueno - 3.33.0-1Daiki Ueno - 3.28.4-14Daiki Ueno - 3.28.4-13Daiki Ueno - 3.28.4-12Daiki Ueno - 3.28.4-11Daiki Ueno - 3.28.4-10Daiki Ueno - 3.28.4-9Kai Engert - 3.28.4-8Daiki Ueno - 3.28.4-7Daiki Ueno - 3.28.4-6Daiki Ueno - 3.28.4-5Daiki Ueno - 3.28.4-4Daiki Ueno - 3.28.4-3Daiki Ueno - 3.28.4-2Daiki Ueno - 3.28.3-5Daiki Ueno - 3.28.3-4Daiki Ueno - 3.28.3-3Daiki Ueno - 3.28.3-2Daiki Ueno - 3.28.2-3Daiki Ueno - 3.28.2-2Daiki Ueno - 3.28.2-1.1Daiki Ueno - 3.28.2-1.0Daiki Ueno - 3.21.3-1Kai Engert - 3.21.0-17Kai Engert - 3.21.0-16Kai Engert - 3.21.0-15Kai Engert - 3.21.0-14Elio Maldonado - 3.21.0-13Elio Maldonado - 3.21.0-12Elio Maldonado - 3.21.0-11Elio Maldonado - 3.21.0-10Kai Engert - 3.21.0-9Kai Engert - 3.21.0-8Elio Maldonado - 3.21.0-7Kai Engert - 3.21.0-6Kai Engert - 3.21.0-5Elio Maldonado - 3.21.0-2Elio Maldonado - 3.21.0-1Elio Maldonado - 3.19.1-19Kai Engert - 3.19.1-18Elio Maldonado - 3.19.1-17Elio Maldonado - 3.19.1-16Elio Maldonado - 3.19.1-15Elio Maldonado - 3.19.1-14Elio Maldonado - 3.19.1-13Elio Maldonado - 3.19.1-12Elio Maldonado - 3.19.1-11Elio Maldonado - 3.19.1-10Elio Maldonado - 3.19.1-9Elio Maldonado - 3.19.1-8Elio Maldonado - 3.19.1-7Elio Maldonado - 3.19.1-6Kai Engert - 3.19.1-5Elio Maldonado - 3.19.1-4Elio Maldonado - 3.19.1-3Elio Maldonado - 3.19.1-2Elio Maldonado - 3.19.1-1Kai Engert - 3.18.0-6Kai Engert - 3.18.0-5Elio Maldonado - 3.18.0-4Elio Maldonado - 3.18.0-3Elio Maldonado - 3.18.0-2Elio Maldonado - 3.18.0-1Elio Maldonado - 3.16.2.3-5Elio Maldonado - 3.16.2.3-4Elio Maldonado - 3.16.2.3-3Elio Maldonado - 3.16.2.3-2Elio Maldonado - 3.16.2-10Elio Maldonado - 3.16.2-9Elio Maldonado - 3.16.2-4Elio Maldonado 3.16.2-3Elio Maldonado - 3.16.2-2Elio Maldonado - 3.16.2-1Elio Maldonado - 3.15.4-6Elio Maldonado - 3.15.4-5Elio Maldonado - 3.15.4-4Elio Maldonado - 3.15.4-3Daniel Mach - 3.15.4-2Elio Maldonado - 3.15.3-9Elio Maldonado - 3.15.3-8Elio Maldonado - 3.15.3-7Elio Maldonado - 3.15.3-6Elio Maldonado - 3.15.3-5Elio Maldonado - 3.15.3-4Daniel Mach - 3.15.3-3Elio Maldonado - 3.15.3-2Elio Maldonado - 3.15.3-1Elio Maldonado - 3.15.2-10Elio Maldonado - 3.15.2-9Elio Maldonado - 3.15.2-8Elio Maldonado - 3.15.2-7Elio Maldonado - 3.15.2-6Elio Maldonado - 3.15.2-5Elio Maldonado - 3.15.2-4Elio Maldonado - 3.15.2-3Elio Maldonado - 3.15.2-2Elio Maldonado - 3.15.2-1Elio Maldonado - 3.15.1-4Elio Maldonado - 3.15.1-3Elio Maldonado - 3.15.1-2Elio Maldonado - 3.15.1-2Elio Maldonado - 3.15-6Elio Maldonado - 3.15-5emaldona - 3.15-4emaldona - 3.15-3Elio Maldonado - 3.15-2Elio Maldonado - 3.15-1Elio Maldonado - 3.14.3-13.0Kai Engert - 3.14.3-12.0Kai Engert - 3.14.3-11Kai Engert - 3.14.3-10Kai Engert - 3.14.3-9Elio Maldonado - 3.14.3-1Elio Maldonado - 3.14.2-2Elio Maldonado - 3.14.2-1Kai Engert - 3.14.1-3Elio Maldonado - 3.14.1-2Elio Maldonado - 3.14.1-1Elio Maldonado - 3.14-12Elio Maldonado - 3.14-11Elio Maldonado - 3.14-10Elio Maldonado - 3.14-9Elio Maldonado - 3.14-8Elio Maldonado - 3.14-7Elio Maldonado - 3.14-6Elio Maldonado - 3.14-5Elio Maldonado - 3.14-4Elio Maldonado - 3.14-3Elio Maldonado - 3.14-2Elio Maldonado - 3.14-1Elio Maldonado - 3.14-0.1.rc.1Kai Engert - 3.13.6-1Elio Maldonado - 3.13.5-8Elio Maldonado - 3.13.5-7Fedora Release Engineering - 3.13.5-6Elio Maldonado - 3.13.5-5Elio Maldonado - 3.13.5-4Elio Maldonado - 3.13.5-3Elio Maldonado - 3.13.5-2Elio Maldonado - 3.13.5-1Elio Maldonado - 3.13.4-3Elio Maldonado - 3.13.4-2Elio Maldonado - 3.13.4-1Elio Maldonado - 3.13.3-4Elio Maldonado - 3.13.3-3Elio Maldonado - 3.13.3-2Elio Maldonado - 3.13.3-1Tom Callaway - 3.13.1-13Elio Maldonado - 3.13.1-12Fedora Release Engineering - 3.13.1-11Elio Maldonado - 3.13.1-11Elio Maldonado - 3.13.1-10elio maldonado - 3.13.1-9Elio Maldonado - 3.13.1-8Elio Maldonado - 3.13.1-7Elio Maldonado - 3.13.1-6Elio Maldonado - 3.13.1-5Elio Maldonado Batiz - 3.13.1-4Elio Maldonado - 3.13.1-2Elio Maldonado - 3.13.1-1Elio Maldonado - 3.13-1Elio Maldonado - 3.13-0.1.rc0.1Elio Maldonado - 3.12.11-3Kai Engert - 3.12.11-2Elio Maldonado - 3.12.11-1Elio Maldonado - 3.12.10-6Michael Schwendt - 3.12.10-5Elio Maldonado - 3.12.10-4Dennis Gilmore - 3.12.10-3Elio Maldonado - 3.12.10-2Elio Maldonado - 3.12.10-1Elio Maldonado - 3.12.10-0.1.beta1Elio Maldonado - 3.12.9-15Elio Maldonado - 3.12.9-14Elio Maldonado - 3.12.9-13Elio Maldonado - 3.12.9-12Elio Maldonado - 3.12.9-11Elio Maldonado - 3.12.9-10Elio Maldonado - 3.12.9-9Fedora Release Engineering - 3.12.9-8Elio Maldonado - 3.12.9-7Christopher Aillon - 3.12.9-6Elio Maldonado - 3.12.9-5Elio Maldonado - 3.12.9-4Elio Maldonado - 3.12.9-3Elio Maldonado - 3.12.9-2Elio Maldonado - 3.12.9-1Elio Maldonado - 3.12.9-0.1.beta2Elio Maldonado - 3.12.8.99.2-1Elio Maldonado - 3.12.8.99.1-1Elio Maldonado - 3.12.8-9Elio Maldonado - 3.12.8-8Elio Maldonado - 3.12.8-7Elio Maldonado - 3.12.8-6Elio Maldonado - 3.12.8-5Elio Maldonado - 3.12.8-4Elio Maldonado - 3.12.8-3Elio Maldonado - 3.12.8-2Elio Maldonado - 3.12.8-1Elio Maldonado - 3.12.7.99.4-1Elio Maldonado - 3.12.7.99.3-2Elio Maldonado - 3.12.7.99.3-1Elio Maldonado - 3.12.7-3Elio Maldonado - 3.12.7-2Elio Maldonado - 3.12.7-1Elio Maldonado - 3.12.6-12Elio Maldonado - 3.12.6-11Elio Maldonado - 3.12.6-10Elio Maldonado - 3.12.6-9Dennis Gilmore - 3.12.6-8Elio Maldonado - 3.12.6-7Elio Maldonado - 3.12.6-6Elio Maldonado - 3.12.6-5Elio Maldonado - 3.12.6-4Elio Maldonado - 3.12.6-3Elio Maldonado - 3.12.6-2Elio Maldonado - 3.12.6-1.2Elio Maldonado - 3.12.6-1.1Elio Maldonado - 3.12.6-1Elio Maldonado - 3.12.5-8Elio Maldonado - 3.12.5-5Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1.13.2Elio Maldonado - 3.12.5-1.13.1Elio Maldonado - 3.12.5-1.13Elio Maldonado - 3.12.5-1.11Elio maldonado - 3.12.5-1.9Elio Maldonado - 3.12.5-2.7Elio Maldonado - 3.12.5-1.6Elio Maldonado - 3.12.5-1.5Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1Elio Maldonado - 3.12.4-14.1Elio Maldonado - 3.12.4-13.1Elio Maldonado - 3.12.4-13Elio Maldonado - 3.12.4-12Elio Maldonado - 3.12.4-11Elio Maldonado - 3.12.4-10Elio Maldonado - 3.12.4-8Elio Maldonado - 3.12.4-6Elio Maldonado - 3.12.4-5Elio Maldonado - 3.12.4-4Elio Maldonado - 3.12.4-3Elio Maldonado - 3.12.4-2Elio Maldonado - 3.12.4-1Elio Maldonado - 3.12.3.99.3-30Elio Maldonado - 3.12.3.99.3-29Elio Maldonado - 3.12.3.99.3-28Elio Maldonado - 3.12.3.99.3-27Elio Maldonado - 3.12.3.99.3-26Elio Maldonado - 3.12.3.99.3-25Warren Togami - 3.12.3.99.3-24Elio Maldonado - 3.12.3.99.3-23Elio Maldonado - 3.12.3.99.3-22Elio Maldonado - 3.12.3.99.3-21Elio Maldonado - 3.12.3.99.3-20Elio Maldonado - 3.12.3.99.3-19Elio Maldonado - 3.12.3.99.3-18Elio Maldonado - 3.12.3.99.3-16Dennis Gilmore - 3.12.3.99.3-15Dennis Gilmore - 3.12.3.99.3-14Dennis Gilmore - 3.12.3.99.3-13Dennis Gilmore - 3.12.3.99.3-12Elio Maldonado+emaldona@redhat.com - 3.12.3.99.3-11Elio Maldonado - 3.12.3.99.3-10Dennis Gilmore - 3.12.3.99.3-9Elio Maldonado - 3.12.3.99.3-7.1Fedora Release Engineering - 3.12.3.99.3-7Elio Maldonado - 3.12.3.99.3-6Elio Maldonado - 3.12.3.99.3-5Elio Maldonado - 3.12.3.99.3-4Kai Engert - 3.12.3.99.3-3Kai Engert - 3.12.3.99.3-2Kai Engert - 3.12.3-7Kai Engert - 3.12.3-4Kai Engert - 3.12.3-3Kai Engert - 3.12.3-2Kai Engert - 3.12.2.99.3-7Kai Engert - 3.12.2.99.3-6Kai Engert - 3.12.2.99.3-5Kai Engert - 3.12.2.99.3-4Kai Engert - 3.12.2.99.3-3Kai Engert - 3.12.2.99.3-2Kai Engert - 3.12.2.99.3-1Fedora Release Engineering - 3.12.2.0-4Kai Engert - 3.12.2.0-3Dennis Gilmore - 3.12.1.1-4Kai Engert - 3.12.1.1-3Kai Engert - 3.12.1.1-2Kai Engert - 3.12.1.0-2Kai Engert - 3.12.0.3-7Kai Engert - 3.12.0.3-6Kai Engert - 3.12.0.3-3Kai Engert - 3.12.0.3-2Kai Engert - 3.12.0.1-1Jesse Keating - 3.11.99.5-2Kai Engert - 3.11.99.5-1Kai Engert - 3.11.99.4-1Kai Engert - 3.11.99.3-6Kai Engert - 3.11.99.3-5Kai Engert - 3.11.99.3-4Kai Engert - 3.11.99.3-3Kai Engert - 3.11.99.3-2Kai Engert - 3.11.99.3-1Kai Engert - 3.11.99.2b-3Kai Engert - 3.11.99.2b-2Kai Engert - 3.11.99.2-2Kai Engert - 3.11.99.2-1Kai Engert - 3.11.7-10Rob Crittenden - 3.11.7-9Kai Engert - 3.11.7-8Bob Relyea - 3.11.7-7Kai Engert - 3.11.7-6Kai Engert - 3.11.7-5Kai Engert - 3.11.7-4Kai Engert - 3.11.7-3Kai Engert - 3.11.7-2Kai Engert - 3.11.5-2Kai Engert - 3.11.5-1Bob Relyea - 3.11.4-4Kai Engert - 3.11.4-1Kai Engert - 3.11.3-2Kai Engert - 3.11.3-1Kai Engert - 3.11.2-2Jesse Keating - 3.11.2-1.1Kai Engert - 3.11.2-1Kai Engert - 3.11.1-2Kai Engert - 3.11.1-1Kai Engert - 3.11-4Jesse Keating - 3.11-3.2Jesse Keating - 3.11-3.1Ray Strode 3.11-3Christopher Aillon 3.11-2Christopher Aillon 3.11-1Christopher Aillon 3.11-0.cvs.2Christopher Aillon 3.11-0.cvsKai Engert Rob Crittenden 3.10-1- Backport upstream fix for CVE-2018-12384 - Remove nss-lockcert-api-change.patch, which turned out to be a mistake (the symbol was not exported from libnss)- Exercise SSL tests which only run under non-FIPS setting- Restore CERT_LockCertTrust and CERT_UnlockCertTrust back in cert.h- Work around modutil -changepw error if the old and new passwords are both empty in FIPS mode- Decrease the iteration count of PKCS#12 for compatibility with Windows - Fix deadlock when a token is re-inserted while a client process is running- Set NSS_FORCE_FIPS=1 in %build - Revert the changes to tests assuming the default DB type- Rebase to NSS 3.36- Re-enable nss-is-token-present-race.patch- Temporarily disable nss-is-token-present-race.patch- Backport necessary changes from 3.35- Rebase to NSS 3.34- Rebase to NSS 3.34.BETA1- Disable TLS 1.3- Enable TLS 1.3- Rebase to NSS 3.33 - Disable TLS 1.3, temporarily disable failing gtests (Skip13Variants) - Temporarily disable race.patch and nss-3.16-token-init-race.patch, which causes a deadlock in newly added test cases - Remove upstreamed patches: moz-1320932.patch, nss-tstclnt-optspec.patch, nss-1334976-1336487-1345083-ca-2.14.patch, nss-alert-handler.patch, nss-tools-sha256-default.patch, nss-is-token-present-race.patch, nss-pk12util.patch, nss-ssl3gthr.patch, and nss-transcript.patch- Add backward compatibility to pk12util regarding faulty PBES2 AES encryption- Update iquote.patch to prefer nss.h from the source- Add backward compatibility to pk12util regarding password encoding- Backport patch to simplify transcript calculation for CertificateVerify - Enable TLS 1.3 and RSA-PSS - Disable some upstream tests failing due to downstream ciphersuites changes- Work around yum crash due to new NSPR symbol being used in nss-sysinit, patch by Kai Engert- Fix typo in nss-sni-c-v-fix.patch- Include CKBI 2.14 and updated CA constraints from NSS 3.28.5- Update nss-pk12util.patch to include fix from mozbz#1353724.- Update nss-alert-handler.patch with the upstream fix from mozbz#1360207.- Fix zero-length record treatment for stream ciphers and SSLv2- Correctly set policy file location when building- Reorder ChaCha20-Poly1305 cipher suites, as suggested in: https://bugzilla.redhat.com/show_bug.cgi?id=1373158#c9- Rebase to NSS 3.28.4 - Update nss-pk12util.patch with backport of mozbz#1353325- Switch default hash algorithm used by tools from SHA-1 to SHA-256 - Avoid race condition in nssSlot_IsTokenPresent() - Enable SHA-2 and AES in pk12util - Disable RSA-PSS for now- Utilize CKA_NSS_MOZILLA_CA_POLICY attribute, patch by Kai Engert - Backport changes adding SSL alert callbacks from upstream - Add nss-check-policy-file.patch from Fedora - Install policy config in /etc/pki/nss-legacy/nss-rhel7.config- Make sure 32bit nss-pem always be installed with 32bit nss in multlib environment, patch by Kamil Dudka - Enable new algorithms supported by the new nss-softokn- Rebase to NSS 3.28.3 - Bump required version of nss-softokn- Remove %nss_cycles setting, which was also mistakenly added - Re-enable BUILD_OPT, mistakenly disabled in the previous build - Prevent ABI incompatibilty of SECKEYECPublicKey - Disable TLS_ECDHE_{RSA,ECDSA}_WITH_AES_128_CBC_SHA256 by default - Enable 4 AES_256_GCM_SHA384 ciphersuites, enabled by the downstream patch in the previous release - Fix crash with tstclnt -W - Always enable gtests for supported features - Add patch to fix bash syntax error in tests/ssl.sh - Build with support for SSLKEYLOGFILE - Disable the use of RSA-PSS with SSL/TLS- Decouple nss-pem from the nss package - Resolves: #1316546- Remove mistakenly added R: nss-pem- Rebase to NSS 3.28.2 - Remove NSS_ENABLE_ECC and NSS_ECC_MORE_THAN_SUITE_B setting, which is no-op now - Enable gtests when requested - Remove nss-646045.patch and fix-nss-test-filtering.patch, which are not necessary - Remove sslauth-no-v2.patch and nss-sslstress-txt-ssl3-lower-value-in-range.patch, as SSLv2 is already disabled in upstream - Remove ssl-server-min-key-sizes.patch, as we decided to support DH key size greater than 1023 bits - Remove local patches for SHA384 cipher suites (now supported in upstream): dhe-sha384-dss-support.patch, client_auth_for_sha384_prf_support.patch, nss-fix-client-auth-init-hashes.patch, nss-map-oid-to-hashalg.patch, nss-enable-384-cipher-tests.patch, nss-fix-signature-and-hash.patch, fix-allowed-sig-alg.patch, tests-extra.patch - Remove upstreamed patches: rh1238290.patch, fix-reuse-of-session-cache-entry.patch, flexible-certverify.patch, call-restartmodules-in-nssinit.patch- Rebase to NSS 3.21.3 - Resolves: #1383887- remove additional false duplicates from sha384 downstream patches- enable ssl_gtests (without extended master secret tests), Bug 1298692 - call SECMOD_RestartModules in nss_Init, Bug 1317691- escape all percent characters in all changelog comments- Support TLS 1.2 certificate_verify hashes other than PRF, backported fix from NSS 3.25 (upstream bug 1179338).- Fix reuse of session cache entry - Resolves: Bug 1241172 - Certificate verification fails with multiple https urls- Fix a flaw in %check for nss not building on arm - Resolves: Bug 1200856- Cleanup: Remove unnecessary %posttrans script from nss.spec - Resolves: Bug 1174201- Merge fixes from the rhel-7.2 branch - Fix a bogus %changelog entry - Resolves: Bug 1297941- Rebuild to require the latest nss-util build and nss-softokn build.- Update the minimum nss-softokn build required at runtime.- Delete duplicates from one table- Fix missing support for sha384/dsa in certificate_request- Merge fixes from the rhel-7.2 branch - Fix the SigAlgs sent in certificate_request - Ensure all ssl.sh tests are executed - Update sslauth test patch to run additional tests- Fix sha384 support and testing patches- Rebase to NSS-3.21- Prevent TLS 1.2 Transcript Collision attacks against MD5 in key exchange protocol - Fix a mockbuild reported bad %if condition when using the __isa_bits macro instead of list of 64-bit architectures - Change the test to %if 0%{__isa_bits} == 64 as required for building the srpm which is noarch - Resolves: Bug 1289884- Rebuild against updated NSPR- Change the required_softokn_build_version back to -13 - Ensure we use nss-softokn-3.16.2.3-13.el7_1- Fix check for public key size of DSA certificates - Use size of prime P not the size of dsa.publicValue- Reorder the cipher suites and enable two more by default- Update the required_softokn_build_version to -14 - Add references to bugs filed upstream for new patches - Merge ocsp stapling and sslauth sni tests patches into one- Reorder the cipher suites and enable two more by default - Fix some of the ssauth sni and ocsp stapling tests- Support TLS > 1.0 by support while still allowing to connect to SSL3 only servers - Enable ECDSA cipher suites by default, a subset of the ones requested- Support TLS > 1.0 by support while still allowing to connect to SSL3 only servers- Fix to correctly report integrity mechanism for TLS_RSA_WITH_AES_256_GCM_SHA384- Fix checks to skip ssl2/export cipher suites tests to not skip needed tests - Fix libssl ssl2/export disabling patch to handle NULL cipher cases - Enable additional cipher suites by default- Add links to filed upstream bugs to better track patches in spec file- Package listsuites as part of the unsupported tools- Bump the release tag- Incremental patches to fix SSL/TLS test suite execution, fix the earlier SHA384 patch, and inform clients to use SHA384 with certificate_verify if required by NSS.- Add support for sha384 tls cipher suites - Add support for server-side hde key exchange - Add support for DSS+SHA256 ciphersuites- Reenable a patch that had been mistakenly disabled- Build against nss-softokn-3.16.2.3-9- Rebase to nss-3.19.1 - Resolves: Bug 1228913 - Rebase to nss-3.19.1 for CVE-2015-4000 [RHEL-7.1]- Backport mozbz#1155922 to support SHA512 signatures with TLS 1.2- Update to CKBI 2.4 from NSS 3.18.1 (the only change in NSS 3.18.1)- Update and reeneable nss-646045.patch on account of the rebase - Resolves: Bug 1200898 - Rebase nss to 3.18 for Firefox 38 ESR [RHEL7.1]- Fix shell syntax error on nss/tests/all.sh - Resolves: Bug 1200898 - Rebase nss to 3.18 for Firefox 38 ESR [RHEL7.1]- Replace expired PayPal test certificate that breaks the build - Resolves: Bug 1200898 - Rebase nss to 3.18 for Firefox 38 ESR [RHEL7.1]- Resolves: Bug 1200898 - Rebase nss to 3.18 for Firefox 38 ESR [RHEL7.1]- Reverse the sense of a test in patch to fix pk12util segfault - Resolves: Bug 1174527 - Segfault in pk12util when using -l option with certain .p12 files- Fix race condition - Resolves: Bug 1094468 - 389-ds-base server reported crash in stan_GetCERTCertificate - under the replication replay failure condition- Resolves: Bug 1174527 - Segfault in pk12util when using -l option with certain .p12 files- Restore patch for certutil man page - supply missing options descriptions - Resolves: Bug 1158161 - Upgrade to NSS 3.16.2.3 for Firefox 31.3- Resolves: Bug 1158161 - Upgrade to NSS 3.16.2.3 for Firefox 31.3 - Support TLS_FALLBACK_SCSV in tstclnt and ssltap- Resolves: Bug 1145434 - CVE-2014-1568 - Using a release number higher than on rhel-7.0 branch- Fix crash in stan_GetCERTCertificate - Resolves: Bug 1094468- Generic 32/64 bit platform detection (fix ppc64le build) - Resolves: Bug 1125619 - nss fails to build on arch: ppc64le (missing dependencies) - Fix contributed by Peter Robinson - Fix libssl and test patches that disable ssl2 support - Resolves: Bug 1123435 - Replace expired PayPal test certificate with current one- Rebase to nss-3.16.2 - Resolves: Bug 1103252 - Rebase RHEL 7.1 to at least NSS 3.16.1 (FF 31) - Fix test failure detection in the %check section - Move removal of unwanted source directories to the end of the %prep section - Update various patches on account of the rebase - Remove unused patches rendered obsolete by the rebase- Disallow disabling the internal module - Resolves: Bug 1056036 - nss segfaults with opencryptoki module- Pick up a fix from rhel-6 and fix an rpm conflict - Don't hold issuer cert handles in crl cache - Resolves: Bug 1034409 - deadlock in trust domain and object lock - Move nss shared db files to the main package - Resolves: Bug 1050163 - Same files in two packages create rpm conflict- Update pem sources to latest from nss-pem upstream - Pick up pem module fixes verified on RHEL and applied upstream - Remove no loger needed pem patches on acccount on this update - Add comments documenting the iquote.patch - Resolves: Bug 1054457 - CVE-2013-1740- Remove spurious man5 wildcard entry as all manpages are listed by name - Resolves: Bug 1050163 - Same files in two packages create rpm conflict- Mass rebuild 2014-01-24- Rebase to nss-3.15.4 - Resolves: Bug 1054457 - CVE-2013-1740 nss: false start PR_Recv information disclosure security issue - Remove no longer needed patches for manpages that were applied upstream - Remove no longer needed patch to disable ocsp stapling tests - Update iquote.patch on account of upstream changes - Update and rename patch to pem/rsawrapr.c on account of upstream changes - Use the pristine upstream sources for nss without repackaging - Avoid unneeded manual step which may introduce errors- Fix the spec file to apply the nss ecc list patch for bug 752980 - Resolves: Bug 752980 - Support ECDSA algorithm in the nss package via puggable ecc- Move several nss-sysinit manpages tar archives to the %files - Resolves: Bug 1050163 - Same files in two packages create rpm conflict- Fix a coverity scan compile time warning for the pem module - Resolves: Bug 1002271 - NSS pem module should not require unique base file names- Resolves: Bug 1002271 - NSS pem module should not require unique base file names- Improve pluggable ECC support for ECDSA - Resolves: Bug 752980 - [7.0 FEAT] Support ECDSA algorithm in the nss package- Mass rebuild 2013-12-27- Revoke trust in one mis-issued anssi certificate - Resolves: Bug 1040284 - nss: Mis-issued ANSSI/DCSSI certificate (MFSA 2013-117) [rhel-7.0]- Update to NSS_3_15_3_RTM - Resolves: Bug 1031463 - CVE-2013-5605 CVE-2013-5606 CVE-2013-1741- Fix path to script and remove -- from some options in nss-sysinit man page - Resolves: rhbz#982723 - man page of nss-sysinit worong path and other flaws- Fix certutil man page options names to be consistent with help - Resolves: rhbz#948495 - man page scan results for nss - Remove incorrect count argument in status description in nss-sysinit man page - Resolves: rhbz#982723 - man page of nss-sysinit incorrect option descriptions- Fix patch for disabling ssl2 in ssl to correctly set error code - Fix syntax error reported in the build.log even tough it succeeds - Add patch top ignore setpolicy result - Resolves: rhbz#1001841 - Disable SSL2 and the export cipher suites - Resolves: rhbz#1026677 - Attempt to run ipa-client-install fails- Fix bash syntax error in patch for disabling ssl2 tests - Resolves: rhbz#1001841 - Disable SSL2 and the export cipher suites- Fix errors in ssl disabling patches for both library and tests - Add s390x to the multilib_arches definition used for alt_ckbi - Resolves: rhbz#1001841 - Disable SSL2 and the export cipher suites- Fix errors in nss-sysinit manpage options descriptions - Resolves: rhbz#982723- Enable fips when system is in fips mode - Resolves: rhbz#852023 - FIPS mode detection does not work- Remove unused and obsoleted patches - Related: rhbz#1012656- Add description of the certutil's --email option to it's manpage - Resolves: rhbz#Bug 948495 - Man page scan results for nss- Rebase to nss-3.15.2 - Resolves: rhbz#1012656 - pick up NSS 3.15.2 to fix CVE-2013-1739 and disable MD5 in OCSP/CRL- Install symlink to nss-sysinit.sh without the .sh suffix - Resolves: rhbz#982723 - nss-sysinit man page has wrong path for the script- Resolves: rhbz#1001841 - Disable SSL2 and the export cipher suites- Add upstream bug URL for a patch subitted upstream and remove obsolete script- Update to NSS_3_15_1_RTM - Apply various fixes to the man pages and add new ones - Enable the iquote.patch to access newly introduced types - Add man page for pkcs11.txt configuration file and cert and key databases - Add missing option descriptions for {cert|cms|crl}util - Resolves: rhbz#948495 - Man page scan results for nss - Resolves: rhbz#982723 - Fix path to script in man page for nss-sysinit- Use the unstripped source tar ball- Install man pages for nss-tools and the nss-config and setup-nsssysinit scripts - Resolves: rhbz#606020 - nss security tools lack man pages- Build nss without softoken or util sources in the tree - Resolves: rhbz#689918- Update ssl-cbc-random-iv-by-default.patch- Fix generation of NSS_VMAJOR, NSS_VMINOR, and NSS_VPATCH for nss-config- Update to NSS_3_15_RTM- Reactivate nss-ssl-cbc-random-iv-off-by-default.patch- Add upstream patch to fix rhbz#872761- Update expired test certificates (fixed in upstream bug 852781)- Fix incorrect post/postun scripts. Fix broken links in posttrans.- Configure libnssckbi.so to use the alternatives system in order to prepare for a drop in replacement.- Update to NSS_3_14_3_RTM - sync up pem rsawrapr.c with softoken upstream changes for nss-3.14.3 - Resolves: rhbz#908257 - CVE-2013-1620 nss: TLS CBC padding timing attack - Resolves: rhbz#896651 - PEM module trashes private keys if login fails - Resolves: rhbz#909775 - specfile support for AArch64 - Resolves: rhbz#910584 - certutil -a does not produce ASCII output- Allow building nss against older system sqlite- Update to NSS_3_14_2_RTM- Update to NSS_3_14_1_WITH_CKBI_1_93_RTM- Require nspr >= 4.9.4 - Fix changelog invalid dates- Update to NSS_3_14_1_RTM- Bug 879978 - Install the nssck.api header template where mod_revocator can access it - Install nssck.api in /usr/includes/nss3/templates- Bug 879978 - Install the nssck.api header template in a place where mod_revocator can access it - Install nssck.api in /usr/includes/nss3- Bug 870864 - Add support in NSS for Secure Boot- Disable bypass code at build time and return failure on attempts to enable at runtime - Bug 806588 - Disable SSL PKCS #11 bypass at build time- Fix pk11wrap locking which fixes 'fedpkg new-sources' and 'fedpkg update' hangs - Bug 872124 - nss-3.14 breaks fedpkg new-sources - Fix should be considered preliminary since the patch may change upon upstream approval- Add a dummy source file for testing /preventing fedpkg breakage - Helps test the fedpkg new-sources and upload commands for breakage by nss updates - Related to Bug 872124 - nss 3.14 breaks fedpkg new-sources- Fix a previous unwanted merge from f18 - Update the SS_SSL_CBC_RANDOM_IV patch to match new sources while - Keeping the patch disabled while we are still in rawhide and - State in comment that patch is needed for both stable and beta branches - Update .gitignore to download only the new sources- Fix the spec file so sechash.h gets installed - Resolves: rhbz#871882 - missing header: sechash.h in nss 3.14- Update the license to MPLv2.0- Use only -f when removing unwanted headers- Add secmodt.h to the headers installed by nss-devel - nss-devel must install secmodt.h which moved from softoken to pk11wrap with nss-3.14- Update to NSS_3_14_RTM- Update to NSS_3_14_RC1 - update nss-589636.patch to apply to httpdserv - turn off ocsp tests for now - remove no longer needed patches - remove headers shipped by nss-util- Update to NSS_3_13_6_RTM- Rebase pem sources to fedora-hosted upstream to pick up two fixes from rhel-6.3 - Resolves: rhbz#847460 - Fix invalid read and free on invalid cert load - Resolves: rhbz#847462 - PEM module may attempt to free uninitialized pointer - Remove unneeded fix gcc 4.7 c++ issue in secmodt.h that actually undoes the upstream fix- Fix pluggable ecc support- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- Fix checkin comment to prevent unwanted expansions of percents- Resolves: Bug 830410 - Missing Requires %{?_isa} - Use Requires: %{name}%{?_isa} = %{version}-%{release} on tools - Drop zlib requires which rpmlint reports as error E: explicit-lib-dependency zlib - Enable sha224 portion of powerup selftest when running test suites - Require nspr 4.9.1- Resolves: rhbz#833529 - revert unwanted change to nss.pc.in- Resolves: rhbz#833529 - Remove unwanted space from the Libs: line on nss.pc.in- Update to NSS_3_13_5_RTM- Resolves: Bug 812423 - nss_Init leaks memory, fix from RHEL 6.3- Resolves: Bug 805723 - Library needs partial RELRO support added - Patch coreconf/Linux.mk as done on RHEL 6.2- Update to NSS_3_13_4_RTM - Update the nss-pem source archive to the latest version - Remove no longer needed patches - Resolves: Bug 806043 - use pem files interchangeably in a single process - Resolves: Bug 806051 - PEM various flaws detected by Coverity - Resolves: Bug 806058 - PEM pem_CreateObject leaks memory given a non-existing file name- Resolves: Bug 805723 - Library needs partial RELRO support added- Cleanup of the spec file - Add references to the upstream bugs - Fix typo in Summary for sysinit- Pick up fixes from RHEL - Resolves: rhbz#800674 - Unable to contact LDAP Server during winsync - Resolves: rhbz#800682 - Qpid AMQP daemon fails to load after nss update - Resolves: rhbz#800676 - NSS workaround for freebl bug that causes openswan to drop connections- Update to NSS_3_13_3_RTM- fix issue with gcc 4.7 in secmodt.h and C++11 user-defined literals- Resolves: Bug 784672 - nss should protect against being called before nss_Init- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- Deactivate a patch currently meant for stable branches only- Resolves: Bug 770682 - nss update breaks pidgin-sipe connectivity - NSS_SSL_CBC_RANDOM_IV set to 0 by default and changed to 1 on user request- Revert to using current nss_softokn_version - Patch to deal with lack of sha224 is no longer needed- Resolves: Bug 754771 - [PEM] an unregistered callback causes a SIGSEGV- Resolves: Bug 750376 - nss 3.13 breaks sssd TLS - Fix how pem is built so that nss-3.13.x works with nss-softokn-3.12.y - Only patch blapitest for the lack of sha224 on system freebl - Completed the patch to make pem link against system freebl- Removed unwanted /usr/include/nss3 in front of the normal cflags include path - Removed unnecessary patch dealing with CERTDB_TERMINAL_RECORD, it's visible- Statically link the pem module against system freebl found in buildroot - Disabling sha224-related powerup selftest until we update softokn - Disable sha224 and pss tests which nss-softokn 3.12.x doesn't support- Rebuild with nss-softokn from 3.12 in the buildroot - Allows the pem module to statically link against 3.12.x freebl - Required for using nss-3.13.x with nss-softokn-3.12.y for a merge inrto rhel git repo - Build will be temprarily placed on buildroot override but not pushed in bodhi- Fix broken dependencies by updating the nss-util and nss-softokn versions- Update to NSS_3_13_1_RTM - Update builtin certs to those from NSSCKBI_1_88_RTM- Update to NSS_3_13_RTM- Update to NSS_3_13_RC0- Fix attempt to free initilized pointer (#717338) - Fix leak on pem_CreateObject when given non-existing file name (#734760) - Fix pem_Initialize to return CKR_CANT_LOCK on multi-treaded calls (#736410)- Update builtins certs to those from NSSCKBI_1_87_RTM- Update to NSS_3_12_11_RTM- Indicate the provenance of stripped source tarball (#688015)- Provide virtual -static package to meet guidelines (#609612).- Enable pluggable ecc support (#712556) - Disable the nssdb write-access-on-read-only-dir tests when user is root (#646045)- make the testsuite non fatal on arm arches- Fix crmf hard-coded maximum size for wrapped private keys (#703656)- Update to NSS_3_12_10_RTM- Update to NSS_3_12_10_BETA1- Implement PEM logging using NSPR's own (#695011)- Update to NSS_3.12.9_WITH_CKBI_1_82_RTM- Short-term fix for ssl test suites hangs on ipv6 type connections (#539183)- Add a missing requires for pkcs11-devel (#675196)- Run the test suites in the check section (#677809)- Fix cms headers to not use c++ reserved words (#676036) - Reenabling Bug 499444 patches - Fix to swap internal key slot on fips mode switches- Revert patches for 499444 until all c++ reserved words are found and extirpated- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- Fix cms header to not use c++ reserved word (#676036) - Reenable patches for bug 499444- Revert patches for 499444 as they use a C++ reserved word and cause compilation of Firefox to fail- Fix the earlier infinite recursion patch (#499444) - Remove a header that now nss-softokn-freebl-devel ships- Fix infinite recursion when encoding NSS enveloped/digested data (#499444)- Update the cacert trust patch per upstream review requests (#633043)- Fix to honor the user's cert trust preferences (#633043) - Remove obsoleted patch- Update to 3.12.9- Rebuilt according to fedora pre-release package naming guidelines- Update to NSS_3_12_9_BETA2 - Fix libpnsspem crash when cacert dir contains other directories (#642433)- Update to NSS_3_12_9_BETA1- Update pem source tar with fixes for 614532 and 596674 - Remove no longer needed patches- Update PayPalEE.cert test certificate which had expired- Tell rpm not to verify md5, size, and modtime of configurations file- Fix certificates trust order (#643134) - Apply nss-sysinit-userdb-first.patch last- Move triggerpostun -n nss-sysinit script ahead of the other ones (#639248)- Fix invalid %postun scriptlet (#639248)- Replace posttrans sysinit scriptlet with a triggerpostun one (#636787) - Fix and cleanup the setup-nsssysinit.sh script (#636792, #636801)- Add posttrans scriptlet (#636787)- Update to 3.12.8 - Prevent disabling of nss-sysinit on package upgrade (#636787) - Create pkcs11.txt with correct permissions regardless of umask (#636792) - Setup-nsssysinit.sh reports whether nss-sysinit is turned on or off (#636801) - Added provides pkcs11-devel-static to comply with packaging guidelines (#609612)- NSS 3.12.8 RC0- Fix nss-util_version and nss_softokn_version required to be 3.12.7.99.3- NSS 3.12.8 Beta3 - Fix unclosed comment in renegotiate-transitional.patch- Change BuildRequries to available version of nss-util-devel- Define NSS_USE_SYSTEM_SQLITE and remove unneeded patch - Add comments regarding an unversioned provides which triggers rpmlint warning - Build requires nss-softokn-devel >= 3.12.7- Update to 3.12.7- Apply the patches to fix rhbz#614532- Removed pem sourecs as they are in the cache- Add support for PKCS#8 encoded PEM RSA private key files (#614532)- Fix nsssysinit to return userdb ahead of systemdb (#603313)- Require and BuildRequire >= the listed version not =- Require nss-softoken 3.12.6- Fix SIGSEGV within CreateObject (#596674)- Update pem source tar to pick up the following bug fixes: - PEM - Allow collect objects to search through all objects - PEM - Make CopyObject return a new shallow copy - PEM - Fix memory leak in pem_mdCryptoOperationRSAPriv- Update the test cert in the setup phase- Add sed to sysinit requires as setup-nsssysinit.sh requires it (#576071) - Update PayPalEE test cert with unexpired one (#580207)- Fix ns.spec to not require nss-softokn (#575001)- rebuilt with all tests enabled- Using SSL_RENEGOTIATE_TRANSITIONAL as default while on transition period - Disabling ssl tests suites until bug 539183 is resolved- Update to 3.12.6 - Reactivate all tests - Patch tools to validate command line options arguments- Fix curl related regression and general patch code clean up- retagging- Fix SIGSEGV on call of NSS_Initialize (#553638)- New version of patch to allow root to modify ystem database (#547860)- Temporarily disabling the ssl tests- Fix nsssysinit to allow root to modify the nss system database (#547860)- Fix an error introduced when adapting the patch for rhbz #546211- Remove left over trace statements from nsssysinit patching- Fix a misconstructed patch- Fix nsssysinit to enable apps to use system cert store, patch contributed by David Woodhouse (#546221) - Fix spec so sysinit requires coreutils for post install scriplet (#547067) - Fix segmentation fault when listing keys or certs in the database, patch contributed by Kamil Dudka (#540387)- Fix nsssysinit to set the default flags on the crypto module (#545779) - Remove redundant header from the pem module- Remove unneeded patch- Retagging to include missing patch- Update to 3.12.5 - Patch to allow ssl/tls clients to interoperate with servers that require renogiation- Retagging- Require nss-softoken of same architecture as nss (#527867) - Merge setup-nsssysinit.sh improvements from F-12 (#527051)- User no longer prompted for a password when listing keys an empty system db (#527048) - Fix setup-nsssysinit to handle more general formats (#527051)- Fix syntax error in setup-nsssysinit.sh- Fix sysinit to be under mozilla/security/nss/lib- Add nss-sysinit activation/deactivation script- Install blank databases and configuration file for system shared database - nsssysinit queries system for fips mode before relying on environment variable- Restoring nssutil and -rpath-link to nss-config for now - 522477- Add the nss-sysinit subpackage- Installing shared libraries to %{_libdir}- Retagging to pick up new sources- Update pem enabling source tar with latest fixes (509705, 51209)- PEM module implements memory management for internal objects - 509705 - PEM module doesn't crash when processing malformed key files - 512019- Remove symbolic links to shared libraries from devel - 521155 - No rpath-link in nss-softokn-config- Update to 3.12.4- Fix FORTIFY_SOURCE buffer overflows in test suite on ppc and ppc64 - bug 519766 - Fixed requires and buildrequires as per recommendations in spec file review- Restoring patches 2 and 7 as we still compile all sources - Applying the nss-nolocalsql.patch solves nss-tools sqlite dependency problems- restore require sqlite- Don't require sqlite for nss- Ensure versions in the requires match those used when creating nss.pc- Remove nss-prelink.conf as signed all shared libraries moved to nss-softokn - Add a temprary hack to nss.pc.in to unblock builds- caolan's nss.pc patch- Bump the release number for a chained build of nss-util, nss-softokn and nss- Fix nss-config not to include nssutil - Add BuildRequires on nss-softokn and nss-util since build also runs the test suite- disabling all tests while we investigate a buffer overflow bug- disabling some tests while we investigate a buffer overflow bug - 519766- remove patches that are now in nss-softokn and - remove spurious exec-permissions for nss.pc per rpmlint - single requires line in nss.pc.in- Fix BuildRequires: nss-softokn-devel release number- fix nss.pc.in to have one single requires line- cleanups for softokn- remove the softokn subpackages- don install the nss-util pkgconfig bits- remove from -devel the 3 headers that ship in nss-util-devel- kill off the nss-util nss-util-devel subpackages- split off nss-softokn and nss-util as subpackages with their own rpms - first phase of splitting nss-softokn and nss-util as their own packages- must install libnssutil3.since nss-util is untagged at the moment - preserve time stamps when installing various files- dont install libnssutil3.so since its now in nss-util- Fix spec file problems uncovered by Fedora_12_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild- removed two patch files which are no longer needed and fixed previous change log number- updated pem module incorporates various patches - fix off-by-one error when computing size to reduce memory leak. (483855) - fix data type to work on x86_64 systems. (429175) - fix various memory leaks and free internal objects on module unload. (501080) - fix to not clone internal objects in collect_objects(). (501118) - fix to not bypass initialization if module arguments are omitted. (501058) - fix numerous gcc warnings. (500815) - fix to support arbitrarily long password while loading a private key. (500180) - fix memory leak in make_key and memory leaks and return values in pem_mdSession_Login (501191)- add patch for bug 502133 upstream bug 496997- rebuild with higher release number for upgrade sanity- updated to NSS_3_12_4_FIPS1_WITH_CKBI_1_75- re-enable test suite - add patch for upstream bug 488646 and add newer paypal certs in order to make the test suite pass- add conflicts info in order to fix bug 499436- ship .chk files instead of running shlibsign at install time - include .chk file in softokn-freebl subpackage - add patch for upstream nss bug 488350- Update to NSS 3.12.3- temporarily disable the test suite because of bug 494266- fix softokn-freebl dependency for multilib (bug 494122)- introduce separate nss-softokn-freebl package- disable execstack when building freebl- add upstream patch to fix bug 483855- build nspr-less freebl library- Update to NSS_3_12_3_BETA4- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild- update to NSS_3_12_2_RC1 - use system zlib- add sparc64 to the list of 64 bit arches- bug 456847, move pkgconfig requirement to devel package- Update to NSS_3_12_1_RC2- NSS 3.12.1 RC1- fix bug bug 429175 in libpem module- bug 456847, add Requires: pkgconfig- nss package should own /etc/prelink.conf.d folder, rhbz#452062 - use upstream patch to fix test suite abort- Update to NSS_3_12_RC4- Update to NSS_3_12_RC2- Zapping old Obsoletes/Provides. No longer needed, causes multilib headache.- Update to NSS_3_12_BETA3- NSS 3.12 Beta 2 - Use /usr/lib{64} as devel libdir, create symbolic links.- Apply upstream patch for bug 417664, enable test suite on pcc.- Support concurrent runs of the test suite on a single build host.- disable test suite on ppc- disable test suite on ppc64- Build against gcc 4.3.0, use workaround for bug 432146 - Run the test suite after the build and abort on failures.* NSS 3.12 Beta 1- move .so files to /lib- NSS 3.12 alpha 2b- upstream patches to avoid calling netstat for random data- NSS 3.12 alpha 2- Add /etc/prelink.conf.d/nss-prelink.conf in order to blacklist our signed libraries and protect them from modification.- Fix off-by-one error in the PEM module- fix a C++ mode compilation error- Add 3.12 ckfw and libnsspem- Updated license tag- Ensure the workaround for mozilla bug 51429 really get's built.- Better approach to ship freebl/softokn based on 3.11.5 - Remove link time dependency on softokn- Fix unowned directories, rhbz#233890- Update to 3.11.7, but freebl/softokn remain at 3.11.5. - Use a workaround to avoid mozilla bug 51429.- Fix rhbz#230545, failure to enable FIPS mode - Fix rhbz#220542, make NSS more tolerant of resets when in the middle of prompting for a user password.- Update to 3.11.5 - This update fixes two security vulnerabilities with SSL 2 - Do not use -rpath link option - Added several unsupported tools to tools package- disable ECC, cleanout dead code- Update to 3.11.4- Revert the attempt to require latest NSPR, as it is not yet available in the build infrastructure.- Update to 3.11.3- Add /etc/pki/nssdb- rebuild- Update to 3.11.2 - Enable executable bit on shared libs, also fixes debug info.- Enable Elliptic Curve Cryptography (ECC)- Update to 3.11.1 - Include upstream patch to limit curves- add --noexecstack when compiling assembler on x86_64- bump again for double-long bug on ppc(64)- rebuilt for new gcc4.1 snapshot and glibc changes- rebuild- Update file list for the devel packages- Update to 3.11- Add patch to allow building on ppc* - Update the pkgconfig file to Require nspr- Initial import into Fedora Core, based on a CVS snapshot of the NSS_3_11_RTM tag - Fix up the pkcs11-devel subpackage to contain the proper headers - Build with RPM_OPT_FLAGS - No need to have rpath of /usr/lib in the pc file- Adressed review comments by Wan-Teh Chang, Bob Relyea, Christopher Aillon.- Initial build/bin/sh/bin/sh 3.36.0-7.el7_53.36.0-7.el7_53.36.0-7.el7_5nss-legacynss-rhel7.confignssdbcert8.dbcert9.dbkey3.dbkey4.dbpkcs11.txtsecmod.dblibnss3.solibnssckbi.solibsmime3.solibssl3.solibnssckbi.socert8.db.5.gzcert9.db.5.gzkey3.db.5.gzkey4.db.5.gzpkcs11.txt.5.gzsecmod.db.5.gz/etc/pki//etc/pki/nss-legacy//etc/pki/nssdb//usr/lib64//usr/lib64/nss//usr/share/man/man5/-O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -m64 -mtune=genericdrpmxz2x86_64-redhat-linux-gnu directoryASCII textBerkeley DB 1.85 (Hash, version 2, native byte-order)ELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=289d245dc413161931c170a1dfb9676582c84dbf, strippedemptyELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=9757eb6d93e31024c436919a89bef33ca4f1b984, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=de2fc96025f4f43aa6e48523d354581d2c5e0669, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=1ddbd5c282d8b90c6c16a52424365ed81bbe5d02, strippedtroff or preprocessor input, ASCII text (gzip compressed data, from Unix, max compression)FsF-= PPP"P#P(P)P*P+P,P-P.P/P0PPPPPPPP P P P PPPPP PPPPPPPPPPPPP P!P$P%P&P'PRRR R RR%R*R$R&R)R,R+R'R#R"R-R.R R/R RR9P;PP?P@PAPBPCPDPEP4P6P5P7P8P9P:P3RR RR#RRRRRRR R!RRRRRR R"R-R.R R/R RR9PPPQP\P]PGPHPJPIPKPLPMPNPOPRPSPTPUPVPWPXPYPZP[PFRR R RR0R%R$R+R(R#RRRRRRRR RRR!RRRRRRRR R"R-R.R R/R RR9P2P1RRR R-R.R R/R RR9?@7zXZ !#,r]"k%UJCÍv4CRK?򤜃-y Sf+J3 QK-0ioeY2 c{/}R|%C99_29E#5 w]%Jp'J]tF{kW ' S w;niE:{[Av ^1eKm!lJo@%n5K6REZli.NhHZ<>9Ox/_Y}6`&Ėf/m5uhi}gT`iAl586õVjs[']CWMux:SpFȃUהr-w2 1Eǀ[{%k3L,xF>b :kkMz58T't7ٵWhfL[?b[ꧺ8w\c5 kx{on^Ȗ\gnjHN[osԎ/"g9_.8F!Up=ATbWc*ܪ3MÇ,OSq6騯>UXzӹC\{}}wP@9d6cjAȺ6e֡lLN,B&|aΐ:W|VE-eW~Tj7{ć*W{EB\K=T[JF4U_fz`-<ֽ~F i8+;nq{G }Vb%=~⩥wYF;ڈ~J\q#hE[c!r:RW\!n 4]X8.iAfT. amXZVckaz!WLʿl)|2)6#bQm.D_ w:S軸tO<ڭSO9$"4$8 P-c kO[O6tR6wblx)U ʼnFx.R\( x 7x"ס!9&\s .Ty[BY?FjUuҫܕ_s_F3%Qbh2u4Qbs1zO/ɉK3[E'zM(9^J_[D줕ٌ!1R0$=#uޮW x.%X%~KMxwJgPoN'Z>}w0ƜAN7|}AkjE& sA*kFրׄ>Fu+'"I);[k:MhZk@H/aj ,bD^v0Z `Zp8CV+hto,8$K8~ciL=FvdSGK)X3v薊<ϋQfv7yb:Xl4ax3X_W&!VkP7xkfE͉{58>0t@F>ACpN׻GjoQGw]sj@I5D*!4 KKW-c15Ivl}c2W{;.nDЀP0F;LcdnP7ng~4qz'i%qӍTPt@Ȧ!`ksU*?цx`xJ=]֣~m͎/n J ELuz yuDSq Ax.\`5J`u CzYJW_&iP42We1?d!S lr.&^"7L|g^Xom Դ8K1^%M SopӾ:WMRkEfbCPu\$\r[xԣnXfb.zK#zbk F 8XtHfAJS441grmVQK]na$C4r5$W bHYm.中8ʛz[8WnjE׵5v!4$%<sJGpex`G@Zr+}P>xnj$%kn0o+ Ed _1D]2m l%FZ"ps\jணߡw8Hln'EޅBbi"e8_뗬8騱1 r+& r-P*۬o b6!䍍`Oh|AMe!RҵШ-Ee2_u3LUs3#\0d1@Q^mp]w,]UxW$G\f~-gb:Qc^Y5&[.h X_@abh뚐}YpH7@$9kWrh+J p_YU xU*Rr^M-. VBkp k5KbHͪPglKD;&3[Fd9 -Zs묎l:O`=#<OZ g]߄ٿgQ)<M8M| j:p7TX]&?Еo)O7]UBH[^3|̫*0n:w-3aiit:~q5]$ޮ2E^.Azxv4i68s7DžC "%4;1Î#C{bBh&Fҫm;5S[ InWAQaw2q(zcl$O2/J(0{R#Besũ u'AD®f[=^Yf\6%LHOy%={8l26 dO1ʠq"$so j`#,g ُ(< 2 ˍQ@i-Pu?2&8oO2 0D>owbN݌C~Xp0ՍGxJ"|9ү˗gr".z:b4!2dѯ-_6pCk?F=e~Gv~S7재sBƜ Vbz+`8P/k)m;衔yQPﳓ;lZNZ3/8GgK@A9۟(b1>q ^O) 7=׸ HNJT2g1(+ H[ފ)==h=xXUqQ)r#w<C,RY7䃹 ;8~;c4s( eTTj)( sG/O 10<ٷ1۰ !$vRF]F9\{;@ :!9[X豦,.8M`"{m-%B75l8?:gbIYVw$B+],XEsF~W2~Pld;uCS4/EX]ÅSy}31Y~[5A6!jkas$)p&ҩyLƻ$v_2S+d%E?)UrknY5os|4/faE_^OB!SfS칡d0ڄ`{_XVz݋W0%{Hm/qF{Wf3L#G5liz s*w0SbmA*ܳWծ! CM$ba@Й'7)9?yx`s?K6%<Ƣ m6yxxJ1Ռ &SJI󨱏ߤm.V`~BJevOxNɝ몄xnfpDhh6giH# 2L)`[.]ʀ݈هp(d5-&^ 5CH}Ug4t藯䞺7-\`?M'yaa4b6O̶~ \C8\mfʾrpIGoua.4:ao \qOu=sz@du8i-r]YtIs!ᓦOǎ›$,P.7;14(>bWƽsV lHJ0kcݻ/H[q-*![ױݼuݿTU4Z8qg)6Pa!mtH 29:H:'rFAs-:;t >ո TBar8 ԊL[> ~q"><œ4>wWzQ!qdka/钇'62|Dg[֧^>X1 X+X)ځ|״FG:'kPQP$\cϼq0Lt\f XL&=f{ͳO=m- Xc;SK[Ҭ54շ%:E'߈YB9Ůyv4 S yIJHM:k0c2R8Po Z 8ՈN5uo EAs/(̓%r»⥻Ԡ + 7S&k?xVˌKU>T Y7Nʽ-WHݥ3r!jA;}ZOnU,o4;hronz YN1ߜ_)ɩJD:X8eD C>P~o> ۱ne^FZIïU%+λ@] %͔3$- pzC ۭ ]IJZ7~C4ɫOOs$HH<[-(Z|d E3Iwxb gsWIA6Rp"3u㈄=LuRoEb&Qә@U9{9C\bd78AhZ(L|'fr ]y} Nt(Y_™Q\@~RZ9Xi@aQb}Y%iN[g?ҷw"-N Y2 `vbIu߄&+#}񈫰`Vٕw+ !*)\\x[lUJhBǩMǰ @O:-O_HM*H膺dg_.юH ٖ,17$f_-Խ:${" 2MZ/ݺX fD3ZVZ?A̙UDy+5`bi$ԋoZG[;P)fFN 8iw&Vz LtynGV$ uddxisA,*Rs))}mX}rq˔+;<9uO5@D9ye.0 "7snX{xŴ [DGPje%1= + M쨲,vRWi*XLԎ 1G,=\ =I=bL2Ez-L-Z@z-,\.э Wt (xu9 sLWK'\))%4no_B|q$tp=Av6ZD46>^18{ nNZ/D-Lj5'GZS&(P&XHb^!i =qYvzƽ#< `V?e£ef5!]yui"~.ފNAR2Gרxkt=DLW^x7:(xӎ\ M}(!ٙbITuDZd /u*4mP^?3~J)^^Z] Mg[y;8!pr)_͇HDgD0CW$W 5g=\;(Τwp7ﻳz }=y)GVZ_CCbQj^RW ;N6AT īqRLj:XJix _eh?b/KmP/eFyb]d_G.hNz8T' D ~3&y=v@BPaJ):ʩڰ6jMn%5&w"o^%lAuˇk~O]# _"D ɾU>0`WVsNрˠCpܲˉ4>:CZJ`j=nzֿsLQFpSgdo؋AC<1ܸ|[j! k5s3hds/#69#}ώ|ti.֒muqacyMp*1sׄɅ^(6?UkpWTHUu5@S$K;B bdDt}2ȱ~ ADҥJrǴs]T)9QXU5D0@6<9R\=af(*,UjdE}8`PNv^pA)#/tQux`gBYюNX+L7|ӀCz\#FGEqiKڍ`V1t ģ1ApAZ'$%MxcfQ{<@ \>T0:Yg[DkNr:v!{T nS&z0-aCnjv$k`;Sywx]~goHp0oH 0gk4 vBݚ#1>pnVyQ*J_i4 gf^jbZT$HȰlO|!f_iUn Kgf.Se ,FL\ eBiaxW;Ccε8f!͌}^-a,չ=f~cqmbLIСmܜ0e. JH (Og_ ڲRml Ф|ʓ>%ep1 ,zVg6^v',E2bJ{p&?wOuILS`B9=u', XهD@t潾C6<^sH493':ko6n2  ag&adJV\ h9ۺANOA^hSHH?z,'i>.~reXo$%se ѝǖxzZˤ}$d@eMH^%/41"|liH 3|%)&=4Q^Yg2pm3S|'qں8 KL1WFlj27nR7\컼iy,e wKgM@hr.Zݲ}{̛}c+0PX"{v. kkHayePS-qdgPm`4r-u5!9oA +jsz7 If!&)K#_WKLci7GGoq7-'V#6m yoyvL\%h do-r;Wd.>bpe1E%!Dj6?40Qv:~!Rx~ o,*f0a5G')eO"% Q}?[(`J`CC}KrUc7&ȍ ӭ+Gy%tѭs$_&g$,:/\ ,W d<\.5 5g.[n$@nWdW+7A]Mpw Z-S ]D \SOx!"Gʹ==O?ęwZ+JL_my$H> &Zз28.6Nc" ~*IT=Cet?FZ'(D Hyx@TkT5zoPA aOp6?xIcΛ;A̓!(~uِ"@T$DXXR`O\R>KEJ5]ՇC!h3r4hG߷(~S< mTZ,}G{QW$rF5vz-&xԼ›PV]Z[cԝ?s|$.bNJ PoW+N ۷g STnA5vX A!UaMLp1GyaM!PVUwϯ>('<<4'17qFkMCK5};x rGo2Qn%iBz8-}7!mhqwp-$wp&UVlgȠEG?xىIlN:>&e\q}fJ@Ao鈖%8 mtcdf5)NJ(ra@ֺ48 4#d<(Eɜ 0g]^XMRyIh;de , $X2*N( j )x2lib$2L~?W\` GOu>^M7tiwhލ=9OxA<:\]Iׁ' WeWN o{Mգ/xv}E9g` (f? ->2W"vxIT(>AAJcHGH ޅ;o~}+[Aή|ȴW Iu<ᥒ2^!3Ժ.Qa23) ' v/e򦙟IӒ=lTj¼v5$Y=wX9zwuۅ5wѸOA jIQ1&Kk<-5Ԕ8odSLN"۔xG+<*˟f@sdCy㧜a5lpGKӼgD8ILFq!_a]lN69yÙ0 +zbsO(m0 sr.,"y },2"knar,NC"e3=[W}JGֿAKU`+:d/cZ! 9ܷ2r5_",8Qpۜ:1qD˂"4/p?7 hk=Nw w q܏]9-g+cr~SL38[|o1FGhGsWq?J}U0/]HZd=} ! tVM|81QM< )}$N }DI#BAPeHEo; *b8 ~qGraUyߤ~ޤw)˘YlA17R=,g A-,xNHf>L&`D]l3X.eT's3)I~`~aPp%pr W󴒽U*f ƈҐց !@'EՌѯ:F^ 3=m* iθ_$9`K|3M*v4z>*8SS5=-^-'2: #mSvsGօ%hTek"xƪLzg+ .zu6*&r t~qQNV9t,lfR)LKإ0 `xHS ?$+ʟ>wm1l;TiGB1E $ \V(freÃf$7l\/8$B4qR̕\͎2 tp./x(Pyfq[ˠ y12nnr8䶇\qj`f\Nt0Q941l/CFnɟMTV^{(]>%9kSF }i|bH^ df`8n~/P{KSъ^Jyim$@ &:XB;<(єw!r:D; @,3*x$5z߆7]{f֯ם x.'谗#/E6A锗aO]_~TQu95]d e39 COlԈvMSsb(NDc5Ϡ+;`~2_·'~@!.Z*@ϴ ¹s]~VN %rq4*!m~$uP>ݏk22+f2iWf{RfKȪf x?&lzW 9?B,H.mѠXO/3=$ڗ-hk0p*wʅ ff> ^P`5L׽\. Iв"2-f/.fǡA_bB: s,YKuk6$WwU,JK Oz=ILe&!vGEXm"a[[%V;6HH+,/5 h~AT?uSz`P5PaO=,vBB Xib/lUH$YS+1&gudD󥋈 +g](?ulT]oblO1i jAxЂHw(ҊB}xZ-,v_{Y~Uǣ1:fa,DifOO۴|#'gɋt9㹵gj#0wUM\d[8|*1rs8 I~G8bGE3suo=tC;qSQ-h=JjKa޹ Gj( u^a /;.$屧bO64K Av(pBɑ?k4RBi x%TM* J!v#T[yc AȐҎ\Z#l[Y<@O!'ZWS(=l'BqI!h^yX[ݡS^D ՖL%g]ɴP/RZB}Xɤ;‘4Kl^P-gLU˛b!jl!)QsȡmS;F!oTf//("iʘ,rR٨[}G|w{'qDxd[Nڟ&wRp= q]®;Qװ' ˲]qHv_`c(u!,ԛ;ày1EGp[K8 d}z.CF fSY8 /j:u0MZhw|Қ3WP-jD\%-h P`\~$X5iƲo!B)˛Pqbf R> ҿ1chIܧ4Y4*N"ELC"XȦc`fZo2O+m7\b>4i4L|h;:.ynTr[99 IГW;/㔫 d!*wZhamnL*k->Z |MGHOU1_ۘ:64k:5EU]rݭroּХy2o뎇OlbN'_׽Útlbzz>-mȞ\Z FQX̀#w1F4GhH9zo7,op#>HzOL%"$; G1|(йb,E賗L?Umw4|4 f!M~TtyCxW؞aX᠎O0K^L遚ݥ~$GrFOSc'Vן0 m' EVj1n[8qiR kԡޟm tXⅅ^rX{ϤSI UYKE+Ԝ-lžȚe|9pfAc1K!*.>%<`ߊXqtaOy&\dvxF5xt4Ydlb 0rp.ha cd~7:Yd>YGϯ5Yņ'Ug *U,W9E`4!EJR VRV@L;1,*`ޝɐda)&%Hssw71vBy0f1lFkW&`)>`l7G!"PUSØ{0_w]ـ3Rx51XIO-^>A[|'ɤ^ESԟDx_sdk, 5˝"beŔ&(q'>blTt00žԟl75ApSKbw#-b1}bK/5;B.ۖ;] gP#iԝ. ޾UYC:u'ۗ\ =3K+POgW0D8'5Lb.d |_?-#,iFb4xsW Q~(ఙyCh=Xx#qEyݻjG f)!G#т)k'|CB׮fL+wLH2b(kCPh@4{Vū8҆_B/YD`QCs. )~laWOP[;8-p- ը^ 'DmJ&vptbAٳZ v%H KT–@MCb?5k\:L |/$Z/YԦ:g6FT۵b:sm|u+EG̽ZqDU{ul+)$ V—uYr&`c~1/i>&*=A~DW{^$XBacTI>k 7zi"MEhY*x}? )eg&5 mõ߰sEkL޾٭2)>`dbWJ_d?ZA)+#̛C3,L5##2LB9'z0{9$cpZEB`m# +JUkwSbzj%m9 +oX(-3_[L~۠| w 0yМz2$w_2t4!([3G:t f'=[1p͐ rqo @l+c]PM8i]G_Zn` )W^pu;Tv͎+`)}Or +c5\K6鯞{b9[$0qSv$:OmFQ*"HJFjnYrh[*Ǝolël᯵^'M`#}r"j" ɳ`:/g$Sߞڻ!YO^5Xh;brd@_s!+RU?/֢g'X!%,me8^ 焧 XDE6~ Q;`#\v'q vQiD Y穡"G8j}`Q =+(<Z:V<~Eu^q5{4➶J4OIKGMq\!8OMlCzTl~sMUbdԙ6ZdJh$g-hէ nǑKy_'{#p 7)Z/LW\A^@w⫄t4(V3m윢cOn A޺Y&S"õbQ=1^\Lg0xTd2Rb$ 5++l*Vn~Ӕ8>[6d [0TY{8:<&M)rZ!LT}ĸ\1u"?Jkz)SR(U6 .yY3y»]7mM)fT?bƈ_/m2&p >~$!g76$mi$ :lw:S.(Gh:l.]h"oQMeoلg%PG4葋in ,2(>8˫)f @xKg?h%Վ熫 R"ߌB3o1dgArZb9b hoToީ6˘92*ŗ!3-:g8#cɳ\pٔN)C~>RuD#ll 85J}n0B¨6|o9gتyK[\O$ 1~ ;D}[_!@~87 4$@k,8zԱɊ`ğts,*!-p k" OQ!; b-02a*9ןGC=ߩHg#\2T/~H3v{н鉂iT\P)1fESaY4qꚉBEGZk~KLOVxKsrq-x6Be%f|PD0}=sJ+`t2v$GPRNTVֱ*aReGBxbIQx5lJ>,g҇c?v$1}ݴYxWN%\`> |T   ynorgܟރ~6NF`b̡̎$ٵ؟2oF'nzAZH m~ D7 (0c};F8' j݄&7 .) .?[T8O98.^J Weʁ-jZZ@"җ,di3jv(E0M%¼"~_ ;&| W/8n}= $T.oۦ4*.21z: BV0b?;M 2 >hE[f]UnHcE ̋vXgw+]:ऑ^jXxĻB`/>T۹f:rZ.c(=P-ލ }ҳwV3w2)鐨2yVt-wyz!ђ*; bZ}DVL]}5\; \;7W[FokTڪ>5 2%\b14a0{I|p0/E,x\ѻIa";ذ3oL*NJ|c1 s>ۣ=זmͮ"\E뺖}Y}h?{`ց1_!b)DW!ׯ/V6F!=֞|@ (i9|N6Dŏr?VÆI-%87E֦:8]a8dg~.C41%Z&:.2k@mw\MQb_n>]D~+Id L*KsPJ(kQG[ÇEQ>P yyZ\ZVRufL dsL]@su--}Ҏo2٩Z.:* sLqx^R@'xex\EZhLJv._¼#bq@w:lʝ?ymE2 XiXp67^ǔ:g^|/᪭.NYi*  NjѣfubaJf9qPǨS󥚾Su^`{F{+}m~j޻cW7͆9S#iΙ^gM`vѳ&bFU`ޓq*$.pM^oe侣3Q59AnA0haF>#䇭kMH64'ihSS 6-)}Qo"\PP@Pph@_ޒm s qQ<ߗ:C!s* U^)D[Û(OͧiK(X_[pBxcf[%u_dS 5[]bo DR!Od/T:ߪ`a* %>Op1ZLazH݄}|TaV'yp*<QTƘMSIMvtx \D;P 4OdDbɷf:[!ͽ6Q6J<+ERK2/nI}}ЌJkNwYn>.b}Ȓ9+;# ەO |7~#{?AbpȎ^pSo3-փYbN3+-FJIG/kxa<@{ kQ#h\ElV~+9TL>\M7jb-i7ˡA]M? LKO(#=W% u]LwͨX1)_x2*9TEVׇ3r!w`kcKn cHD[*źXm :}$3-zӂ77Q/C`;1Fza;ﲍ?DPCP^3l>D!fq()T旮2=>m>)8LjX>%+)Vn`Y~NuN} 9"r6^E-*:Wt=aizQh5{1*r+]C)zYG}U;ꠀ+Dact( oMH gHq®#3%1(WDL;.̑z",b,s ^8wo0-]|Tn59[k)(r~ܠܩ!>K4YҪZy֙a :U+FvwPST#*)dTbmކ۪?O{9][YNi'HR 4R˜)Gux5xi*!kK^#7_)nSau<-))TY ^+^g8g>ifqR7 [28n_T ˀ7!b[9m;WF Y d ACЄXԱgfyF Y1@RF3WVDW>xX.e+ ,frpx *l9tt cIC#DOI>ArR R#O^"5~L }U*ǻƟj△;ZtjJ&)$8.w׌bd|Cbkv"h69Q-;t?=bTCԏXm-=)|hդAI_7]]ZbK`Zg$!ELb&@,*w SEQnUlH~i-:U"= X*޷UR}jhk.iv^~Ԟ~\HY2+-AEFe?3Q`BaF3+YuWy1VsQ؞v4)xӼ@q)[D >Hj& b(9eVJSU_ P0Z9 PC]Jy)XA1*vs`iP/07} M]fGsLO8p ̪R"SiCfaI$`_<ᅥ~ 4uD(Ox4*A{$ )i!xU0]p_}(mjuш9=2fcRjw,sjR󑩿䥳Zڥ檭9ѻG~+?JE2-wDǁȶt`Ccq#.0K>BcuK+Q/H{nv߿>$MceTA 3Li{Q@\dz3_%#OX]vQ"^8n[!jfN? J-- r7#I΂dC&<,P뷍`Hυ)euTkN%kK@^XGbe-aʊNvm>aHٚrf^E=\"@^*.&ɴP`3?2ܙs-{pܒӛ VZ] `-ScVȜP (e)m2@ਏ&+L*@vZ]}3yt; ق%jb#@3= vlm a8&` x}Q!k-.D/uk`1cSEQdUtȇD`2M~>pwєTShvÚ )t,]O ` B^6kH̤Q<\LmGcH!4/;=B0/G*4u%fw!b-$A*̵ju#z?DT{S,)[^ 1 ?A-H>,vy\:aWg'TVvPC,Wumfq!Q11!f`L U:/:ܘ15]/-@ʞ-*f1"Yj>*<:l@'ʬ [#$`KձS9qTԬ>q)muW:FP$&SEby9SZa5N uzggy8_?ZyJ#Jҡ\ۻ$ E_[sz{P:X escn75a3A`K=>(xYkݮfQ%z23c|Nc"ӽLJ $tlr(j y&=03>m| <ϰ|u٘3>>GGZ;C*Xb&޶ u9}(3S@R9Ih@Cwe6˙PRx ΋a ^cD>\HWN 2) }{{xwQ_>eSIɛ9l V>O+u/GˮY!كTDS^p!nj#VKgdٍ1TtYC':,x(;yh'JaknOmG)GΤW46e,*wǢ: bPa4gL6 ! 0R{};/c4.M,oy b֤OrEFF$&_ug+hA"\O~Wy_YP({m{}B (`cyts4$(i)/2fg2sp˾%%q.6cKk{pj,tjuPqf8;Ujum]՞TD HD3&.V NV\umE;=@'Nwi 30 ΊZZo=+Cם?c\7 4] \fZobDTY A5 Q34<5D$ ^A VCr N)|AFy7ilBϩ+qlɝ"UK &iqX@c`|?R$cH+*r iVe`+~Ze~;**jtm7]sLq6Fmm8'V __gߪU~4rՌmM3l}<3JG7hW*ü.k#i'ΝP^a +.D YϝnDȂ7#~ yCwhO ÆIUwKjZzá9/(3.ͮ<0İZHuذڮ*О]I^DE']*V(EK73l9@mx_&"ry :1YPZr$i^;p1EwX9 {W@vFDG XJn] ?۳BK|YuwI[ +>ճ5łaib$>O1O;_a}R'{$~Pex jbϗrEYnB\6(9lTGor /aqf@Ye޷\lu 1:f坞325>./Y0wRя2UFAoSIiI|~:D}U@ =;sJ;Ui.Qi鯑hjcsP46c>蟼<8Yͥ7kM_'z- /:ρч41>"\OK=-C޴5KN'^[(<*;;.5D@hGyBnWM0ӉXQ uūgkx14k_rRO6oL}\CZ7ix:zg{-f>n=.6jFe.+N}tQ+ِ#رo9n=:inEӢ=K7ub֕pJ@582 }}f*i:2mǛ߱ mo&癯HGe?"X/KZaQZRK8/7E @I*ʄe܍6&gkm2M ;` 5?ެ"DILV]\Lـ9*ϳ4*΃\+Bɚ~i{GfqK^;{-E{4kfg?p^Î}E?]vis8_XҨtNh>hyζ36.F+yהR KcEn TzyJ :̷ƈM*m߮@2C&~ _ HlXa%@<)xy$W1);z.Jܛpb4Fr@gŶȓ37 nm */{ϔxdi&yfSsG:}˗oiUNa } fW Ws (Zf΃^p(*|tuֳl4DvG\~X^/avsP9Rm<#ۅ>=^|5-D4( z nU,E4a{9&!F+%  lj!+e>(;~z>CK8s(՗@M_u~ `Ys9NG` aNBxS2&.1ݹ0&CBȋ;Ǥ|LN tY+ğm;a|4FuG(\mX‡Qv/q Gl?C(0`[v ՝f+wrN=D@d>oizDTP?mNlӮ.Lj+Ēy[zY1!Dݤê۩N+]% ;(r4I]ib 1JwCoPgxrkuZdsR)Ax-:ߞuRM1^1Eݺ FP".G٪_r#>Qg1eu8k~Ten|Aبx<-v2ef1g!]"lφ#R!sOThnx!JNrh곦 )fF \ N"tB|}FX9w3gc,2Bb<[sґFh@xYL k^EVV&6{x~Wq{i5~/ 2W+3D^+mP!lTK|GOu {]-Jv,r= 7m0ʱDd&~}>,! .VG\,A*HzNd9i aG[y[4@Q``-V_:@iT*ˇR*bLF}-->tRgpMRBROK|~=7DX=7wFd'`5r˥+L&(BiA344H޳m3k D`uE7T+MqR@KN DRJ-A!,rZ L6tC̗M%ņ8ko\?`Z~ZyR-hw> `4},fr*;ʯ(OجUwk~aF[}4塞9ZG_"~d_go=bpCڬ5d64.=:x:*wċ˪fp=)aMNp\;9Ry (H\""m)ix: +p^!*"-ݯ.PnzO90 h#J_d3;`rś%ys{e#\kPo 9\xĊ\)|F  >ZxorPlM&o^!5,]sVxKE^%;] i1fKflQr~OIr9G*>X)&8(q %toh.,ϔDNfbK Pɯ(qzW]YM25ÇDՏkslE/s-u 4SkHZh#5T-I̝XD) IDxpV,yv-I2*lӂ9RE&-V@)"VO{%QيBK;*0˨sF28X:?a0F ťPH|atoi<\l >\ιs@uH}!_[ &g#y cEPT^X"*hk,ŸvO|PV~"oo ) #+S1 hwV.1| m >ҷg[%!=ўV9?ױ>D>iײΎj n.2QULXT@۞'@Bȴ kQjR{\@F:4:Pix%I%h%2g;L4-߷-IbH*c1IL) J>Ί h Arpv\ ()QgoX.rU6a)Ң /ow@미b}YotfG)h:plBbGQax x\ʌTЪN } >|E4E,;WjDyK''H=$ \Ty$-/"8c IXSz:CcIOD[~iag 8kܱG߼,|u1zɃ0k6yMEH@L > 8|1qor`oP}x/E?67v 9 Ȕm(P~TzrRmYqGz殉xk|—(x'+69vwg3k{1 ?rQ WmUe׫9Ni͐%hf[MNxiupC]ɛ{ٟhD0\WdFnQ|}ݹ8P9P++7͔{" %w[9/u BRLRQxi<L.+g15$ JҮw*|7HNDRf>e.&| |m:7[y&jڪI b % v$E~?WF&QoAf3=HRt7"__6 .op>xa8,аr= SG4ulN`u8yڳ_& [(vt8׫,CeR+ Lnն&VgT{&jQIcA/ш+C{$K R䳲-X pv.Κ]x2.(ۤoF b pf1juJ7$iW'OJʖ0LnTաҔJQZ`' r:Di`ޠ`/ u46mZ0jhNˏoզ TȒsD>Ch^YKTϻ:rtw5:!}&^0lTTwݽ9رMzY'w|Uitr*)0Hw=yF.0n3R3 6{+2uV4җߠbl]-Ȭ(R,92 [`.;kN?:<`?.pp#B'~O8"9=`ðQscyhZ򫕍53R7Ӄf#]cdT`l4yNnM [eV9ăS]+84m's{+IlA0-c%ؘT;80*_&PED=1wSGgmqGǍ+/6Y%I7 j FٰуBaubC#  ԠR$DuVu&r(%|jm=b` $YbCeEO23=p 4,Ϡū'(G˵l`OsÈhB!lUckngS0[T/+$W v0L.3]a҉AvEQKcUsm+lj! ci"5 wp&z&݂F%\B Zj3^Ҡ/u3 G 9Wy4*xfA ~{yj$'868'ǝH`e]!"[*!~Ga!Aэ#ń1*?4|_K- 0v.n7\V]s67˽ 瞣h Qvrxr-`. wà>'HYO3&LWP8B!=0)g|9 Ϝ̀|"&67wW!*?T!ha`$r%#jM?Rv!k! z2buFx<{8c} 3#˻}uPꯢP[Du.͙rҳ\vp"sbG5B' jWrSvc+dX09(h!ʲA@1Ar={vk8b[x1dimO5^K8nɘ[9 PX&OE=0m8ӏrguUtDfFDz&NUd|ҷTOhe !6:ds` ׀9b~=_d`!kkTp$$] #,?d9wKm[?>BrD"GlتqāQ^@ I V8 ~!#'6k2[eڤz`e9šI 0,)Ư+9VտީnW"+6 EVY3WAǣ5X)4eryo˕L锨 0xcI>96ލ]89S|}`΃z[{b`~n%܀Ⱦsh-SJv?UN]oFRٶ=S&(+ȽrIԻEK]i˕,x}vtOdˇS]ΎwŨPYޓ5zWUx FIpy#ˊVsh4vQy\GqFOID2xztf1Ih*{oA9Ìb[(&] >eʡc+1ÌSӍt4Lgn& hwuڵIĴAбn>2 rj4P0άA=MF```@u(S;.۸V0D6؜ n ҡpz0\İ[غ:Jj-@?WEx[ TxN#C@8S!Iuu2NSWT", !YC{>g>rwdIO8H⥔'J gs[ 纇l}b#p}A.esH` _@paKWGW2H-2(X^&% 'b  '2xaOKe/Ոpٳk5*x]8]V\kvQA^ձreV8q> u4 oϋ@Yp ª)/uHOj9RJ^Xʪ" Ґ`HO mu/w$Ҽb&}LdԵ EʔWnUqNHD;~]x^O);U%[&7ΊwN6*\c.aP=J)vynyߴD +nңSV8жh"Eo nq|<ΘڸU8_B^M;(W$eל Yz%׺Q/$(~9T$tj5dp~P8Ii2{ R 0tgk&+E8ө 6"O5#K42h8}5g%Zf)!JV` C+2׊e4-L^!JA/H-(FY;X~Bc3UKK=';SBz %J:ND% Atb4҇q敼[4p&bp9)3=OQzA#hifBvA1_ZK\4ESW(҇¦}xΉ@HF%L8A[ކ`m shZ?&߃|HD.#S?WT:i\D[]< )WȄ":9NL<I PA]4y"/PK6cK6>0W^JKжJJZ9KzyYL+xY̘NqCfn@47sb Gd]d FFA 7f#\0)po֌q.L#bo @* \UQ'Ԩ*?y tgJpÁ@Ω}B,3ǑM 2)mb;h@A%2zFZ11E o%_๰搨QYfp>zj5)EXC.S! ] 3A$~Eh*eʇh؆8Qohp⚜=7 7V9X9ݐH<:S@..I.Ft֭%tS\G僮<r>Œh/ֱ#d׸!`m_wӏ\Rտ46oGTHs#0n|(r7O- 6D 2wyߤgQҮ!8`6%{gY/9Q彻T.:+%"QnΫR]JABM]ǝ1Z{Jep+ھVcbSrT}=7W)VOgY&cT{Jhq2H)U=݊g?ζN؉GĞ; 4F[& 9[O#q˥jLUPHDTdtnfeh ӃEmAA@Β40(kd%STq?wTݙo߻tphU_+ꫥiMyXWY#-%K/i}K$snl+&jԴW+%EzgG)|"v܈BT~&`@OYPkUK(Sҭ?Ys-5o鲐oMjLQ]uid2V4Y D!D'Q= V1_j#DXiRȸGS kY -lFՀ@>'mED c;7CvH-t{ ܕ;`kkƠ3Қ8'Hs-*ByUJⱾ,B4ze0CGE_wj.. $op9K)#KֻR;0g'! X$2bAL8#'ٲ/r>ʾZ8Ir)F٬͐>. 9i.߼]d &O~uO5Bz!ܓ5Hgi{(tj-K͚ޒ=-V&)y* /r`e@i>*١i_BVO)Ӱ "ެWyKQ~հY-ȕv"OJDz*(MaEKA46V,:&SCYiaQaVzB@n>3_EOn%D2MOǩ 1x@GLKֽ&\G}]6Xig9HyVǹ'80xpU{d\kܼw@L>:Mj%!f %<G˗h|MtZsQjQU ^,%gm, h8 ԋ89lF_~zBޙvJ ĜMT^!= xt?qhi0;ӣ)ܟa3{ {H:یEBiD"Mˊh:R;TV2cP JKl(ɯԴ:dYUNCUIڍe&;7OFX٪HK<¯w{yĉuaG,UVK%qiX[N]YC}bK0kF.]5Y0{rb%k,nkpo}9J;ȾafM]?b0O,? JXAU(e[g=O+"fa2ZvTJڞE('o黆S)[;#K;^d4m~>FԊyrږґcoZڱ +`A īguŃ*%$,`NB9MKf3*جH_{}ԋRF#hK! ٟ~CMI| #U{6U-Sg3lIȳ}C{,̸8CX G\ Uħx9F+t|_ UO!エ{VnipbTe? X ,Ak hv#%Gd)0 i(lecy7|>VԬ(DǍtL]p30^ѦfC0bmzoȥB pA2& Eh!SL9)$(*"Rdž[̪y3 u R$L 1KtSC1:`W]`twQ_AYo2@{|5dMэLI9(IGECbbgR21t+5`RakCX"1~lݢR'D/XEy^|l#CzC-O1-K`FiuE:׮r2>0  $w2`!{lȭ! |s4][8>:n9 fmpj1i1CUL>Wd."x4m]e b l(Ýb=6 !MQ"'lܧˣ]ùڦ  9VZtMǓCnIi,WyHYi)E( 6A0M-9jlU,.u‘~ᅬ# ̖ \fuDz?5~! y>{[c $Y? CZO!& u߶ ]^{D&Kf{9p kOlPʘfA7nA|$:cEz."7o'F. =ޚ~ϞGV\B .B3b㴚jU-8wT֌~$ayҧTcb Qx9Z ʕ}Rv%Ih߲-s͛o/.pѱrY_Pq ^Ӷ |3!1:yy)1[{I"G\ɪE S.ҌNlf7e)Jȑh А Fy (wvl7R w`{SSfG୚ԭ5Y扬1r.Hw(i4Dߞ9{Й#qYtl_H&ӐG~҇caðfה bLE‘ًDn5wDy_+h4^I?-&Wo]{L5=fRԿL-{@*K(7&)WBٓ3e$$'XбYlm|/UMEPZ|70P o4*H,sڽl.:ahKYfD9uAťUOӖ'~(B|I@|qE(_uG]0ߧf,k4i+MKm|0,l>3~ U @Ϳ9ۀA閩{9<I @g`iH~cS}۴1ħLE_l¥ֹG 2-xEyMJ'CxeM*+_mMy]_b.L,|s@w!-\:XRѼOt5<"*}a ,F49KiY}6I+x``dvGz=slD^nS| Iæ'QԴsc}j2ϡ`vV6JGڷP=|g>sTxz+sL3,Q_R]uվ 5/J"ogKCX4q{iquۗ՗t@mw4ʠSc&iTmE|d9Cw``ݥx?D왕ϥ:`ފ2T$ł~LDz H lsZ橹Q8I!Ō0s$ $rgC26y_`ghH[z̐X0@mq6;D(A#Àoxt/ߗIHLw$2 ۋ\Wo' 6vR{&bŒ! )k: 'Ip8\(;ћ[PMLW{Úۚ\m:%[49)$>ZR|޽8'1W?t}%v ̮o{u#3c2쳒 =>{V-@KgFeT.,?~-6rӝ;Xuӵ y˹LDY~6ܮp2n9rUe6G\맮RcVX.sv:pe`߻' A:kqG5i)~)P?hN{>0@K/~CFJ+^ :ϩjЊx>.F@ᜇ=Wov}}|x; _A q MsK3%v K r(+7VNюT-ɗSXCB2]eEzUa&:2ï=y.Rշ%tUԐ!΂QTga};K{D`OxYmKu}F;_ݑqӘ"$'䮷QFjj!N`6cO2#ء<.CA[ի@W 16V~@-ђ2hz @̒U0Y;6',iMTuBiQu=˄&nYdԸ9ޤ.җ[3U'2gI5j<ϼ QգcSW8E^/`IjQSGA)p0eȳO @P.bGg=pR8Yz*cuS.-SR?4uE^|^)%! my*oWeTv1_:o! כּfn|M@cv{X!D{f Z.Yji@tC9 zH@}G '1~+-X046"!5 HftBnwo!g9rO[ c!Nlׅ%f:On]Y3Hr-D:h($W:CJP:ӖN'@nn}h3ĎF1duq]N_W(VنUhHSCE%;YBBEVZ]d z wz`3G|dDuq6>d0 1\4I Ͽ]X2 O}"e,\[[<פGأ`GsӃI\!bQ]_BP@WQ`wft,)u]P7.DS-.*k" UB̍AtdK̘15}ClYw^ 4t@'ؐP%#ΓGyBGL. ɸ`) Z,36〩NHUE\i'/i!I X}-K,ɚ Lǚڵym7 VK1WŰci˸%YDQ=p" IzWɥWaN?A Շ;";&LuA0Ls8gwt(pë 7אhc}}vl. ѿ5mvwirq_H`J BM-^#b@dPm6Ox|o5+HK{=Z a43 لye$ICGzT.! G"9rq !ܔ&k,@Ss^=NVg*bw4̽Jl]pvzZ\1N~F`Nu{lR0sZgsV1zNMY5NMK7.xX0߮r&9oRU"`<ԅ,90L7Pw_%q*Q8d+A/ fE\lӮ?D#1ɰ3LsorSV ˁE<#t{y=.*2 U-({@c3Ο>2J:Gʏ[!~O4>6Dnh#GR0g;dH"<(eұh H{&j6'n>_4F$(ڿlOj )HBJfX {>Wm򰠸7^A厰"[[6w?` Mpl>D;{ٚKA+*7 [.̽ĶRU6\? M/%O:<0W뉩4@7(C{='onzjT쨔)n cѪP,0vV<NN|FFs!Xr{)I""q-7cNoUqy}OȵALQӥn iۥs-Epݡ*&\Ͳh>!S7A~ ۬00d\wzz\%گ,o3JOD"Q ';˲X$!"RD$g pi%̽6qt+R2p^_Jx%1_9N.,j  ޳܄ͮ'ٝ X_埮Q׬nwPkr͂v54v]vHL \!b=s *衉$ RO섁K '_PFɛ_/cC+\_ńv@K/=+Oh L@KȪT!~ 5 :3/AGv0VsK5g!=5ARl >)%"ӥ#c]014yQtG뼙|1{OU#5R쁌{xb Q~y+=kp› esd")d8+_J 8^G#ƞ4Ho-(ԙ&3~w2UhMg%qw..|R%UhrYmu$]_7BN $޿}ڬdk׳^\R@9NT( H]> ^ikK! VFJ6@_J ri;נvp@slt&/V2Zx8O/~lf ՈCnErʤͲenŒ 8Z3y.%4[r;,IMKkV;V7`ƌ6.2UˮfUnoB*1 &3n{VICҙCA(O'q=2A^l[`$SQ}T!P*™tvL/"K&' ȏ;vkCϦ^-t>(*BQ" >2RT^'<\'TQ*h$O~(p=h&\p*kiFgŲ{PBBrf@[`maמ&c<ʻ9=-\ cN =/ :`I[ߕ#O ;`NaEi*^Ex]qq=̐|eZc7nbu#qӿ:*Uh4U\)5C SNj?~ E*đQS#obke;7Kga-""x09*6ɰZO:kߙ||8cVzІ5gQibʼnBj7kĽ[At^ifl|rfT։-y˔lQ5H|6iI0>6չRT&R<iMw8g%:Y?2LsxI׸ţwR .E,Ym};A@M@ 2_ !Qq1@tAq.J2C)*'%_B[/Wڲ '^2Bl:45!h(C䛇9VJTJ㈕#kJ|_'scSLvÌ }GeX"5ZRr\@ps %-c_5uo64h*%MUCUf~/$*?#0rްtY4"=`oQHf?yJXwXDR`-o[iYM1Q+?d# նa8P*Qgf_N;ER`zJknNͩa6X)iԆ :`yF S{|I 6aV'':q'Ue&JTmМ,)݊u{BbPjT^Z%biX5hL`Cnvt|KX9Y`6^H?QoL40I\*^/Sl3 4>)^X N{I{Wh PkW $1">aFjw ,͢ HAACn9cy ;~G BK Nt!'Գe6 }#ʩ #gX20-嵜$AȁqOR,1 Ypǵ ]v̀+u{;Vzނf+@\hb p*1y/jE,ŏ YZ