nss-3.28.4-15.el7_4$>0pup`Č7+A7><$?d   0hl k`         \   ,[<<t<(8V9 LV:_V>ߴ@߼GHIdXx[Y[\l]^bdefltuDv wxy,Cnss3.28.415.el7_4Network Security ServicesNetwork Security Services (NSS) is a set of libraries designed to support cross-platform development of security-enabled client and server applications. Applications built with NSS can support SSL v2 and v3, TLS, PKCS #5, PKCS #7, PKCS #11, PKCS #12, S/MIME, X.509 v3 certificates, and other security standards.Yc1bm.rdu2.centos.org#]CentOSMPLv2.0CentOS BuildSystem System Environment/Librarieshttp://www.mozilla.org/projects/security/pki/nss/linuxi686# If we upgrade, and the shared filename is a regular file, then we must # remove it, before we can install the alternatives symbolic link. if [ $1 -gt 1 ] ; then # when upgrading or downgrading if ! test -L /usr/lib/libnssckbi.so; then rm -f /usr/lib/libnssckbi.so fi fi # Install the symbolic link # FYI: Certain other packages use alternatives --set to enforce that the first # installed package is preferred. We don't do that. Highest priority wins. /usr/sbin/update-alternatives --install /usr/lib/libnssckbi.so \ libnssckbi.so /usr/lib/nss/libnssckbi.so 10 /sbin/ldconfigif [ $1 -eq 0 ] ; then # package removal /usr/sbin/update-alternatives --remove libnssckbi.so /usr/lib/nss/libnssckbi.so else # upgrade or downgrade # If the new installed package uses a regular file (not a symblic link), # then cleanup the alternatives link. if ! test -L /usr/lib/libnssckbi.so; then /usr/sbin/update-alternatives --remove libnssckbi.so /usr/lib/nss/libnssckbi.so fi fi /sbin/ldconfiga$@,@!HjLVT>A큤A큤큤큤Y YDY YFYFYGYGYDYHYY YYYY Y Y Y Y Y 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@rootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootnss-3.28.4-15.el7_4.src.rpmconfig(nss)libnss3.solibnss3.so(NSS_3.10)libnss3.so(NSS_3.10.2)libnss3.so(NSS_3.11)libnss3.so(NSS_3.11.1)libnss3.so(NSS_3.11.2)libnss3.so(NSS_3.11.7)libnss3.so(NSS_3.11.9)libnss3.so(NSS_3.12)libnss3.so(NSS_3.12.1)libnss3.so(NSS_3.12.10)libnss3.so(NSS_3.12.3)libnss3.so(NSS_3.12.4)libnss3.so(NSS_3.12.5)libnss3.so(NSS_3.12.6)libnss3.so(NSS_3.12.7)libnss3.so(NSS_3.12.9)libnss3.so(NSS_3.13)libnss3.so(NSS_3.13.2)libnss3.so(NSS_3.14)libnss3.so(NSS_3.14.1)libnss3.so(NSS_3.14.3)libnss3.so(NSS_3.15)libnss3.so(NSS_3.15.4)libnss3.so(NSS_3.16.1)libnss3.so(NSS_3.16.2)libnss3.so(NSS_3.18)libnss3.so(NSS_3.19)libnss3.so(NSS_3.19.1)libnss3.so(NSS_3.2)libnss3.so(NSS_3.2.1)libnss3.so(NSS_3.21)libnss3.so(NSS_3.22)libnss3.so(NSS_3.3)libnss3.so(NSS_3.3.1)libnss3.so(NSS_3.30)libnss3.so(NSS_3.4)libnss3.so(NSS_3.5)libnss3.so(NSS_3.6)libnss3.so(NSS_3.7)libnss3.so(NSS_3.7.1)libnss3.so(NSS_3.8)libnss3.so(NSS_3.9)libnss3.so(NSS_3.9.2)libnss3.so(NSS_3.9.3)libnssckbi.solibnssckbi.so(NSS_3.1)libsmime3.solibsmime3.so(NSS_3.10)libsmime3.so(NSS_3.12.10)libsmime3.so(NSS_3.12.2)libsmime3.so(NSS_3.13)libsmime3.so(NSS_3.15)libsmime3.so(NSS_3.16)libsmime3.so(NSS_3.18)libsmime3.so(NSS_3.2)libsmime3.so(NSS_3.2.1)libsmime3.so(NSS_3.3)libsmime3.so(NSS_3.4)libsmime3.so(NSS_3.4.1)libsmime3.so(NSS_3.6)libsmime3.so(NSS_3.7)libsmime3.so(NSS_3.7.2)libsmime3.so(NSS_3.8)libsmime3.so(NSS_3.9)libsmime3.so(NSS_3.9.3)libssl3.solibssl3.so(NSS_3.11.4)libssl3.so(NSS_3.11.8)libssl3.so(NSS_3.12.10)libssl3.so(NSS_3.12.6)libssl3.so(NSS_3.13)libssl3.so(NSS_3.13.2)libssl3.so(NSS_3.14)libssl3.so(NSS_3.15)libssl3.so(NSS_3.15.4)libssl3.so(NSS_3.2)libssl3.so(NSS_3.2.1)libssl3.so(NSS_3.20)libssl3.so(NSS_3.21)libssl3.so(NSS_3.22)libssl3.so(NSS_3.23)libssl3.so(NSS_3.24)libssl3.so(NSS_3.27)libssl3.so(NSS_3.28)libssl3.so(NSS_3.30.0.1)libssl3.so(NSS_3.4)libssl3.so(NSS_3.7.4)nssnss(x86-32)@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@    @ /bin/sh/bin/sh/usr/sbin/update-alternatives/usr/sbin/update-alternativesconfig(nss)libc.so.6libc.so.6(GLIBC_2.0)libc.so.6(GLIBC_2.1)libc.so.6(GLIBC_2.1.3)libc.so.6(GLIBC_2.3)libc.so.6(GLIBC_2.3.4)libc.so.6(GLIBC_2.4)libdl.so.2libnspr4.solibnss3.solibnss3.so(NSS_3.10)libnss3.so(NSS_3.11)libnss3.so(NSS_3.11.1)libnss3.so(NSS_3.11.2)libnss3.so(NSS_3.12)libnss3.so(NSS_3.12.6)libnss3.so(NSS_3.14)libnss3.so(NSS_3.14.3)libnss3.so(NSS_3.15)libnss3.so(NSS_3.19.1)libnss3.so(NSS_3.2)libnss3.so(NSS_3.21)libnss3.so(NSS_3.22)libnss3.so(NSS_3.3)libnss3.so(NSS_3.3.1)libnss3.so(NSS_3.4)libnss3.so(NSS_3.6)libnss3.so(NSS_3.7)libnss3.so(NSS_3.8)libnss3.so(NSS_3.9)libnssutil3.solibnssutil3.so(NSSUTIL_3.12)libnssutil3.so(NSSUTIL_3.12.3)libnssutil3.so(NSSUTIL_3.12.5)libnssutil3.so(NSSUTIL_3.13)libnssutil3.so(NSSUTIL_3.14)libnssutil3.so(NSSUTIL_3.15)libnssutil3.so(NSSUTIL_3.17.1)libnssutil3.so(NSSUTIL_3.21)libnssutil3.so(NSSUTIL_3.24)libplc4.solibplds4.solibpthread.so.0libpthread.so.0(GLIBC_2.0)libz.so.1nsprnss-pem(x86-32)nss-softokn(x86-32)nss-system-initnss-utilrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rtld(GNU_HASH)rpmlib(PayloadIsXz)3.28.4-15.el7_44.13.13.28.3-43.28.4-23.0.4-14.6.0-14.0-15.2-14.11.3Y˒YéYX@YaYh@Yg`Y1S@Y i@Y i@Y @Y.Y@YXX~@X•@XO@XO@XBX@XX@XWu WrfWc@Wc@WBWo@Wo@Wo@WW WW@Vn@V@V>@V`VpV'~@U6@U6@UAU@UUUݪ@UUȒ@UU@U'U3@UUx&Ux&Uq@U?v@U8U0U-@U'@U:TTq@TTto@Td@T)IS@S@Sہ@S@SnS@RJ@RRUR۾@R۾@R@R@Rx@RΏ@RkR@R;RiR@Rz/@Rv:Rt@RrF@Ro@Ro@RnQRe@RW@RSR@QQQ@QKQ@QQW@Q'@Qq1QNQ9Q7/Q#@QQ @P!@PՠP @PqP@P@PAPXPd@Pd@PPP@PP5@PPnP;a@P(@P H@O;O;O@OiO@O@O}O~OiOYOX@OOdO&@O!@@OO@O@N>@N>@NNܲ@N`NؽNN@NuN;@Np@Nf @NA!@N*NpM@MWMc@MM@M@MMfH@M^_@MZjMS@MQ0@MQ0@MQ0@MQ0@MK@MGMF@M6@M-MM@Ls@LOLLZ@L6LdL@L*@L@LA@LL@L4Lx@Lx@Li(@Lf@L_L_LT@L0L0L K @KsKsKKCKCKCK]KMKLd@KD{@K<@K5K4@K,@K+nK*@K K@K@K@KJݦ@J - 3.28.4-15Daiki Ueno - 3.28.4-14Daiki Ueno - 3.28.4-13Daiki Ueno - 3.28.4-12Daiki Ueno - 3.28.4-11Daiki Ueno - 3.28.4-10Daiki Ueno - 3.28.4-9Kai Engert - 3.28.4-8Daiki Ueno - 3.28.4-7Daiki Ueno - 3.28.4-6Daiki Ueno - 3.28.4-5Daiki Ueno - 3.28.4-4Daiki Ueno - 3.28.4-3Daiki Ueno - 3.28.4-2Daiki Ueno - 3.28.3-5Daiki Ueno - 3.28.3-4Daiki Ueno - 3.28.3-3Daiki Ueno - 3.28.3-2Daiki Ueno - 3.28.2-3Daiki Ueno - 3.28.2-2Daiki Ueno - 3.28.2-1.1Daiki Ueno - 3.28.2-1.0Daiki Ueno - 3.21.3-1Kai Engert - 3.21.0-17Kai Engert - 3.21.0-16Kai Engert - 3.21.0-15Kai Engert - 3.21.0-14Elio Maldonado - 3.21.0-13Elio Maldonado - 3.21.0-12Elio Maldonado - 3.21.0-11Elio Maldonado - 3.21.0-10Kai Engert - 3.21.0-9Kai Engert - 3.21.0-8Elio Maldonado - 3.21.0-7Kai Engert - 3.21.0-6Kai Engert - 3.21.0-5Elio Maldonado - 3.21.0-2Elio Maldonado - 3.21.0-1Elio Maldonado - 3.19.1-19Kai Engert - 3.19.1-18Elio Maldonado - 3.19.1-17Elio Maldonado - 3.19.1-16Elio Maldonado - 3.19.1-15Elio Maldonado - 3.19.1-14Elio Maldonado - 3.19.1-13Elio Maldonado - 3.19.1-12Elio Maldonado - 3.19.1-11Elio Maldonado - 3.19.1-10Elio Maldonado - 3.19.1-9Elio Maldonado - 3.19.1-8Elio Maldonado - 3.19.1-7Elio Maldonado - 3.19.1-6Kai Engert - 3.19.1-5Elio Maldonado - 3.19.1-4Elio Maldonado - 3.19.1-3Elio Maldonado - 3.19.1-2Elio Maldonado - 3.19.1-1Kai Engert - 3.18.0-6Kai Engert - 3.18.0-5Elio Maldonado - 3.18.0-4Elio Maldonado - 3.18.0-3Elio Maldonado - 3.18.0-2Elio Maldonado - 3.18.0-1Elio Maldonado - 3.16.2.3-5Elio Maldonado - 3.16.2.3-4Elio Maldonado - 3.16.2.3-3Elio Maldonado - 3.16.2.3-2Elio Maldonado - 3.16.2-10Elio Maldonado - 3.16.2-9Elio Maldonado - 3.16.2-4Elio Maldonado 3.16.2-3Elio Maldonado - 3.16.2-2Elio Maldonado - 3.16.2-1Elio Maldonado - 3.15.4-6Elio Maldonado - 3.15.4-5Elio Maldonado - 3.15.4-4Elio Maldonado - 3.15.4-3Daniel Mach - 3.15.4-2Elio Maldonado - 3.15.3-9Elio Maldonado - 3.15.3-8Elio Maldonado - 3.15.3-7Elio Maldonado - 3.15.3-6Elio Maldonado - 3.15.3-5Elio Maldonado - 3.15.3-4Daniel Mach - 3.15.3-3Elio Maldonado - 3.15.3-2Elio Maldonado - 3.15.3-1Elio Maldonado - 3.15.2-10Elio Maldonado - 3.15.2-9Elio Maldonado - 3.15.2-8Elio Maldonado - 3.15.2-7Elio Maldonado - 3.15.2-6Elio Maldonado - 3.15.2-5Elio Maldonado - 3.15.2-4Elio Maldonado - 3.15.2-3Elio Maldonado - 3.15.2-2Elio Maldonado - 3.15.2-1Elio Maldonado - 3.15.1-4Elio Maldonado - 3.15.1-3Elio Maldonado - 3.15.1-2Elio Maldonado - 3.15.1-2Elio Maldonado - 3.15-6Elio Maldonado - 3.15-5emaldona - 3.15-4emaldona - 3.15-3Elio Maldonado - 3.15-2Elio Maldonado - 3.15-1Elio Maldonado - 3.14.3-13.0Kai Engert - 3.14.3-12.0Kai Engert - 3.14.3-11Kai Engert - 3.14.3-10Kai Engert - 3.14.3-9Elio Maldonado - 3.14.3-1Elio Maldonado - 3.14.2-2Elio Maldonado - 3.14.2-1Kai Engert - 3.14.1-3Elio Maldonado - 3.14.1-2Elio Maldonado - 3.14.1-1Elio Maldonado - 3.14-12Elio Maldonado - 3.14-11Elio Maldonado - 3.14-10Elio Maldonado - 3.14-9Elio Maldonado - 3.14-8Elio Maldonado - 3.14-7Elio Maldonado - 3.14-6Elio Maldonado - 3.14-5Elio Maldonado - 3.14-4Elio Maldonado - 3.14-3Elio Maldonado - 3.14-2Elio Maldonado - 3.14-1Elio Maldonado - 3.14-0.1.rc.1Kai Engert - 3.13.6-1Elio Maldonado - 3.13.5-8Elio Maldonado - 3.13.5-7Fedora Release Engineering - 3.13.5-6Elio Maldonado - 3.13.5-5Elio Maldonado - 3.13.5-4Elio Maldonado - 3.13.5-3Elio Maldonado - 3.13.5-2Elio Maldonado - 3.13.5-1Elio Maldonado - 3.13.4-3Elio Maldonado - 3.13.4-2Elio Maldonado - 3.13.4-1Elio Maldonado - 3.13.3-4Elio Maldonado - 3.13.3-3Elio Maldonado - 3.13.3-2Elio Maldonado - 3.13.3-1Tom Callaway - 3.13.1-13Elio Maldonado - 3.13.1-12Fedora Release Engineering - 3.13.1-11Elio Maldonado - 3.13.1-11Elio Maldonado - 3.13.1-10elio maldonado - 3.13.1-9Elio Maldonado - 3.13.1-8Elio Maldonado - 3.13.1-7Elio Maldonado - 3.13.1-6Elio Maldonado - 3.13.1-5Elio Maldonado Batiz - 3.13.1-4Elio Maldonado - 3.13.1-2Elio Maldonado - 3.13.1-1Elio Maldonado - 3.13-1Elio Maldonado - 3.13-0.1.rc0.1Elio Maldonado - 3.12.11-3Kai Engert - 3.12.11-2Elio Maldonado - 3.12.11-1Elio Maldonado - 3.12.10-6Michael Schwendt - 3.12.10-5Elio Maldonado - 3.12.10-4Dennis Gilmore - 3.12.10-3Elio Maldonado - 3.12.10-2Elio Maldonado - 3.12.10-1Elio Maldonado - 3.12.10-0.1.beta1Elio Maldonado - 3.12.9-15Elio Maldonado - 3.12.9-14Elio Maldonado - 3.12.9-13Elio Maldonado - 3.12.9-12Elio Maldonado - 3.12.9-11Elio Maldonado - 3.12.9-10Elio Maldonado - 3.12.9-9Fedora Release Engineering - 3.12.9-8Elio Maldonado - 3.12.9-7Christopher Aillon - 3.12.9-6Elio Maldonado - 3.12.9-5Elio Maldonado - 3.12.9-4Elio Maldonado - 3.12.9-3Elio Maldonado - 3.12.9-2Elio Maldonado - 3.12.9-1Elio Maldonado - 3.12.9-0.1.beta2Elio Maldonado - 3.12.8.99.2-1Elio Maldonado - 3.12.8.99.1-1Elio Maldonado - 3.12.8-9Elio Maldonado - 3.12.8-8Elio Maldonado - 3.12.8-7Elio Maldonado - 3.12.8-6Elio Maldonado - 3.12.8-5Elio Maldonado - 3.12.8-4Elio Maldonado - 3.12.8-3Elio Maldonado - 3.12.8-2Elio Maldonado - 3.12.8-1Elio Maldonado - 3.12.7.99.4-1Elio Maldonado - 3.12.7.99.3-2Elio Maldonado - 3.12.7.99.3-1Elio Maldonado - 3.12.7-3Elio Maldonado - 3.12.7-2Elio Maldonado - 3.12.7-1Elio Maldonado - 3.12.6-12Elio Maldonado - 3.12.6-11Elio Maldonado - 3.12.6-10Elio Maldonado - 3.12.6-9Dennis Gilmore - 3.12.6-8Elio Maldonado - 3.12.6-7Elio Maldonado - 3.12.6-6Elio Maldonado - 3.12.6-5Elio Maldonado - 3.12.6-4Elio Maldonado - 3.12.6-3Elio Maldonado - 3.12.6-2Elio Maldonado - 3.12.6-1.2Elio Maldonado - 3.12.6-1.1Elio Maldonado - 3.12.6-1Elio Maldonado - 3.12.5-8Elio Maldonado - 3.12.5-5Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1.13.2Elio Maldonado - 3.12.5-1.13.1Elio Maldonado - 3.12.5-1.13Elio Maldonado - 3.12.5-1.11Elio maldonado - 3.12.5-1.9Elio Maldonado - 3.12.5-2.7Elio Maldonado - 3.12.5-1.6Elio Maldonado - 3.12.5-1.5Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1Elio Maldonado - 3.12.4-14.1Elio Maldonado - 3.12.4-13.1Elio Maldonado - 3.12.4-13Elio Maldonado - 3.12.4-12Elio Maldonado - 3.12.4-11Elio Maldonado - 3.12.4-10Elio Maldonado - 3.12.4-8Elio Maldonado - 3.12.4-6Elio Maldonado - 3.12.4-5Elio Maldonado - 3.12.4-4Elio Maldonado - 3.12.4-3Elio Maldonado - 3.12.4-2Elio Maldonado - 3.12.4-1Elio Maldonado - 3.12.3.99.3-30Elio Maldonado - 3.12.3.99.3-29Elio Maldonado - 3.12.3.99.3-28Elio Maldonado - 3.12.3.99.3-27Elio Maldonado - 3.12.3.99.3-26Elio Maldonado - 3.12.3.99.3-25Warren Togami - 3.12.3.99.3-24Elio Maldonado - 3.12.3.99.3-23Elio Maldonado - 3.12.3.99.3-22Elio Maldonado - 3.12.3.99.3-21Elio Maldonado - 3.12.3.99.3-20Elio Maldonado - 3.12.3.99.3-19Elio Maldonado - 3.12.3.99.3-18Elio Maldonado - 3.12.3.99.3-16Dennis Gilmore - 3.12.3.99.3-15Dennis Gilmore - 3.12.3.99.3-14Dennis Gilmore - 3.12.3.99.3-13Dennis Gilmore - 3.12.3.99.3-12Elio Maldonado+emaldona@redhat.com - 3.12.3.99.3-11Elio Maldonado - 3.12.3.99.3-10Dennis Gilmore - 3.12.3.99.3-9Elio Maldonado - 3.12.3.99.3-7.1Fedora Release Engineering - 3.12.3.99.3-7Elio Maldonado - 3.12.3.99.3-6Elio Maldonado - 3.12.3.99.3-5Elio Maldonado - 3.12.3.99.3-4Kai Engert - 3.12.3.99.3-3Kai Engert - 3.12.3.99.3-2Kai Engert - 3.12.3-7Kai Engert - 3.12.3-4Kai Engert - 3.12.3-3Kai Engert - 3.12.3-2Kai Engert - 3.12.2.99.3-7Kai Engert - 3.12.2.99.3-6Kai Engert - 3.12.2.99.3-5Kai Engert - 3.12.2.99.3-4Kai Engert - 3.12.2.99.3-3Kai Engert - 3.12.2.99.3-2Kai Engert - 3.12.2.99.3-1Fedora Release Engineering - 3.12.2.0-4Kai Engert - 3.12.2.0-3Dennis Gilmore - 3.12.1.1-4Kai Engert - 3.12.1.1-3Kai Engert - 3.12.1.1-2Kai Engert - 3.12.1.0-2Kai Engert - 3.12.0.3-7Kai Engert - 3.12.0.3-6Kai Engert - 3.12.0.3-3Kai Engert - 3.12.0.3-2Kai Engert - 3.12.0.1-1Jesse Keating - 3.11.99.5-2Kai Engert - 3.11.99.5-1Kai Engert - 3.11.99.4-1Kai Engert - 3.11.99.3-6Kai Engert - 3.11.99.3-5Kai Engert - 3.11.99.3-4Kai Engert - 3.11.99.3-3Kai Engert - 3.11.99.3-2Kai Engert - 3.11.99.3-1Kai Engert - 3.11.99.2b-3Kai Engert - 3.11.99.2b-2Kai Engert - 3.11.99.2-2Kai Engert - 3.11.99.2-1Kai Engert - 3.11.7-10Rob Crittenden - 3.11.7-9Kai Engert - 3.11.7-8Bob Relyea - 3.11.7-7Kai Engert - 3.11.7-6Kai Engert - 3.11.7-5Kai Engert - 3.11.7-4Kai Engert - 3.11.7-3Kai Engert - 3.11.7-2Kai Engert - 3.11.5-2Kai Engert - 3.11.5-1Bob Relyea - 3.11.4-4Kai Engert - 3.11.4-1Kai Engert - 3.11.3-2Kai Engert - 3.11.3-1Kai Engert - 3.11.2-2Jesse Keating - 3.11.2-1.1Kai Engert - 3.11.2-1Kai Engert - 3.11.1-2Kai Engert - 3.11.1-1Kai Engert - 3.11-4Jesse Keating - 3.11-3.2Jesse Keating - 3.11-3.1Ray Strode 3.11-3Christopher Aillon 3.11-2Christopher Aillon 3.11-1Christopher Aillon 3.11-0.cvs.2Christopher Aillon 3.11-0.cvsKai Engert Rob Crittenden 3.10-1- Add backward compatibility to pk12util regarding faulty PBES2 AES encryption- Update iquote.patch to prefer nss.h from the source- Add backward compatibility to pk12util regarding password encoding- Backport patch to simplify transcript calculation for CertificateVerify- Rebuild to get correct release suffix (.el7 -> .el7_4)- Work around yum crash due to new NSPR symbol being used in nss-sysinit, patch by Kai Engert- Fix typo in nss-sni-c-v-fix.patch- Include CKBI 2.14 and updated CA constraints from NSS 3.28.5- Update nss-pk12util.patch to include fix from mozbz#1353724.- Update nss-alert-handler.patch with the upstream fix from mozbz#1360207.- Fix zero-length record treatment for stream ciphers and SSLv2- Correctly set policy file location when building- Reorder ChaCha20-Poly1305 cipher suites, as suggested in: https://bugzilla.redhat.com/show_bug.cgi?id=1373158#c9- Rebase to NSS 3.28.4 - Update nss-pk12util.patch with backport of mozbz#1353325- Switch default hash algorithm used by tools from SHA-1 to SHA-256 - Avoid race condition in nssSlot_IsTokenPresent() - Enable SHA-2 and AES in pk12util - Disable RSA-PSS for now- Utilize CKA_NSS_MOZILLA_CA_POLICY attribute, patch by Kai Engert - Backport changes adding SSL alert callbacks from upstream - Add nss-check-policy-file.patch from Fedora - Install policy config in /etc/pki/nss-legacy/nss-rhel7.config- Make sure 32bit nss-pem always be installed with 32bit nss in multlib environment, patch by Kamil Dudka - Enable new algorithms supported by the new nss-softokn- Rebase to NSS 3.28.3 - Bump required version of nss-softokn- Remove %nss_cycles setting, which was also mistakenly added - Re-enable BUILD_OPT, mistakenly disabled in the previous build - Prevent ABI incompatibilty of SECKEYECPublicKey - Disable TLS_ECDHE_{RSA,ECDSA}_WITH_AES_128_CBC_SHA256 by default - Enable 4 AES_256_GCM_SHA384 ciphersuites, enabled by the downstream patch in the previous release - Fix crash with tstclnt -W - Always enable gtests for supported features - Add patch to fix bash syntax error in tests/ssl.sh - Build with support for SSLKEYLOGFILE - Disable the use of RSA-PSS with SSL/TLS- Decouple nss-pem from the nss package - Resolves: #1316546- Remove mistakenly added R: nss-pem- Rebase to NSS 3.28.2 - Remove NSS_ENABLE_ECC and NSS_ECC_MORE_THAN_SUITE_B setting, which is no-op now - Enable gtests when requested - Remove nss-646045.patch and fix-nss-test-filtering.patch, which are not necessary - Remove sslauth-no-v2.patch and nss-sslstress-txt-ssl3-lower-value-in-range.patch, as SSLv2 is already disabled in upstream - Remove ssl-server-min-key-sizes.patch, as we decided to support DH key size greater than 1023 bits - Remove local patches for SHA384 cipher suites (now supported in upstream): dhe-sha384-dss-support.patch, client_auth_for_sha384_prf_support.patch, nss-fix-client-auth-init-hashes.patch, nss-map-oid-to-hashalg.patch, nss-enable-384-cipher-tests.patch, nss-fix-signature-and-hash.patch, fix-allowed-sig-alg.patch, tests-extra.patch - Remove upstreamed patches: rh1238290.patch, fix-reuse-of-session-cache-entry.patch, flexible-certverify.patch, call-restartmodules-in-nssinit.patch- Rebase to NSS 3.21.3 - Resolves: #1383887- remove additional false duplicates from sha384 downstream patches- enable ssl_gtests (without extended master secret tests), Bug 1298692 - call SECMOD_RestartModules in nss_Init, Bug 1317691- escape all percent characters in all changelog comments- Support TLS 1.2 certificate_verify hashes other than PRF, backported fix from NSS 3.25 (upstream bug 1179338).- Fix reuse of session cache entry - Resolves: Bug 1241172 - Certificate verification fails with multiple https urls- Fix a flaw in %check for nss not building on arm - Resolves: Bug 1200856- Cleanup: Remove unnecessary %posttrans script from nss.spec - Resolves: Bug 1174201- Merge fixes from the rhel-7.2 branch - Fix a bogus %changelog entry - Resolves: Bug 1297941- Rebuild to require the latest nss-util build and nss-softokn build.- Update the minimum nss-softokn build required at runtime.- Delete duplicates from one table- Fix missing support for sha384/dsa in certificate_request- Merge fixes from the rhel-7.2 branch - Fix the SigAlgs sent in certificate_request - Ensure all ssl.sh tests are executed - Update sslauth test patch to run additional tests- Fix sha384 support and testing patches- Rebase to NSS-3.21- Prevent TLS 1.2 Transcript Collision attacks against MD5 in key exchange protocol - Fix a mockbuild reported bad %if condition when using the __isa_bits macro instead of list of 64-bit architectures - Change the test to %if 0%{__isa_bits} == 64 as required for building the srpm which is noarch - Resolves: Bug 1289884- Rebuild against updated NSPR- Change the required_softokn_build_version back to -13 - Ensure we use nss-softokn-3.16.2.3-13.el7_1- Fix check for public key size of DSA certificates - Use size of prime P not the size of dsa.publicValue- Reorder the cipher suites and enable two more by default- Update the required_softokn_build_version to -14 - Add references to bugs filed upstream for new patches - Merge ocsp stapling and sslauth sni tests patches into one- Reorder the cipher suites and enable two more by default - Fix some of the ssauth sni and ocsp stapling tests- Support TLS > 1.0 by support while still allowing to connect to SSL3 only servers - Enable ECDSA cipher suites by default, a subset of the ones requested- Support TLS > 1.0 by support while still allowing to connect to SSL3 only servers- Fix to correctly report integrity mechanism for TLS_RSA_WITH_AES_256_GCM_SHA384- Fix checks to skip ssl2/export cipher suites tests to not skip needed tests - Fix libssl ssl2/export disabling patch to handle NULL cipher cases - Enable additional cipher suites by default- Add links to filed upstream bugs to better track patches in spec file- Package listsuites as part of the unsupported tools- Bump the release tag- Incremental patches to fix SSL/TLS test suite execution, fix the earlier SHA384 patch, and inform clients to use SHA384 with certificate_verify if required by NSS.- Add support for sha384 tls cipher suites - Add support for server-side hde key exchange - Add support for DSS+SHA256 ciphersuites- Reenable a patch that had been mistakenly disabled- Build against nss-softokn-3.16.2.3-9- Rebase to nss-3.19.1 - Resolves: Bug 1228913 - Rebase to nss-3.19.1 for CVE-2015-4000 [RHEL-7.1]- Backport mozbz#1155922 to support SHA512 signatures with TLS 1.2- Update to CKBI 2.4 from NSS 3.18.1 (the only change in NSS 3.18.1)- Update and reeneable nss-646045.patch on account of the rebase - Resolves: Bug 1200898 - Rebase nss to 3.18 for Firefox 38 ESR [RHEL7.1]- Fix shell syntax error on nss/tests/all.sh - Resolves: Bug 1200898 - Rebase nss to 3.18 for Firefox 38 ESR [RHEL7.1]- Replace expired PayPal test certificate that breaks the build - Resolves: Bug 1200898 - Rebase nss to 3.18 for Firefox 38 ESR [RHEL7.1]- Resolves: Bug 1200898 - Rebase nss to 3.18 for Firefox 38 ESR [RHEL7.1]- Reverse the sense of a test in patch to fix pk12util segfault - Resolves: Bug 1174527 - Segfault in pk12util when using -l option with certain .p12 files- Fix race condition - Resolves: Bug 1094468 - 389-ds-base server reported crash in stan_GetCERTCertificate - under the replication replay failure condition- Resolves: Bug 1174527 - Segfault in pk12util when using -l option with certain .p12 files- Restore patch for certutil man page - supply missing options descriptions - Resolves: Bug 1158161 - Upgrade to NSS 3.16.2.3 for Firefox 31.3- Resolves: Bug 1158161 - Upgrade to NSS 3.16.2.3 for Firefox 31.3 - Support TLS_FALLBACK_SCSV in tstclnt and ssltap- Resolves: Bug 1145434 - CVE-2014-1568 - Using a release number higher than on rhel-7.0 branch- Fix crash in stan_GetCERTCertificate - Resolves: Bug 1094468- Generic 32/64 bit platform detection (fix ppc64le build) - Resolves: Bug 1125619 - nss fails to build on arch: ppc64le (missing dependencies) - Fix contributed by Peter Robinson - Fix libssl and test patches that disable ssl2 support - Resolves: Bug 1123435 - Replace expired PayPal test certificate with current one- Rebase to nss-3.16.2 - Resolves: Bug 1103252 - Rebase RHEL 7.1 to at least NSS 3.16.1 (FF 31) - Fix test failure detection in the %check section - Move removal of unwanted source directories to the end of the %prep section - Update various patches on account of the rebase - Remove unused patches rendered obsolete by the rebase- Disallow disabling the internal module - Resolves: Bug 1056036 - nss segfaults with opencryptoki module- Pick up a fix from rhel-6 and fix an rpm conflict - Don't hold issuer cert handles in crl cache - Resolves: Bug 1034409 - deadlock in trust domain and object lock - Move nss shared db files to the main package - Resolves: Bug 1050163 - Same files in two packages create rpm conflict- Update pem sources to latest from nss-pem upstream - Pick up pem module fixes verified on RHEL and applied upstream - Remove no loger needed pem patches on acccount on this update - Add comments documenting the iquote.patch - Resolves: Bug 1054457 - CVE-2013-1740- Remove spurious man5 wildcard entry as all manpages are listed by name - Resolves: Bug 1050163 - Same files in two packages create rpm conflict- Mass rebuild 2014-01-24- Rebase to nss-3.15.4 - Resolves: Bug 1054457 - CVE-2013-1740 nss: false start PR_Recv information disclosure security issue - Remove no longer needed patches for manpages that were applied upstream - Remove no longer needed patch to disable ocsp stapling tests - Update iquote.patch on account of upstream changes - Update and rename patch to pem/rsawrapr.c on account of upstream changes - Use the pristine upstream sources for nss without repackaging - Avoid unneeded manual step which may introduce errors- Fix the spec file to apply the nss ecc list patch for bug 752980 - Resolves: Bug 752980 - Support ECDSA algorithm in the nss package via puggable ecc- Move several nss-sysinit manpages tar archives to the %files - Resolves: Bug 1050163 - Same files in two packages create rpm conflict- Fix a coverity scan compile time warning for the pem module - Resolves: Bug 1002271 - NSS pem module should not require unique base file names- Resolves: Bug 1002271 - NSS pem module should not require unique base file names- Improve pluggable ECC support for ECDSA - Resolves: Bug 752980 - [7.0 FEAT] Support ECDSA algorithm in the nss package- Mass rebuild 2013-12-27- Revoke trust in one mis-issued anssi certificate - Resolves: Bug 1040284 - nss: Mis-issued ANSSI/DCSSI certificate (MFSA 2013-117) [rhel-7.0]- Update to NSS_3_15_3_RTM - Resolves: Bug 1031463 - CVE-2013-5605 CVE-2013-5606 CVE-2013-1741- Fix path to script and remove -- from some options in nss-sysinit man page - Resolves: rhbz#982723 - man page of nss-sysinit worong path and other flaws- Fix certutil man page options names to be consistent with help - Resolves: rhbz#948495 - man page scan results for nss - Remove incorrect count argument in status description in nss-sysinit man page - Resolves: rhbz#982723 - man page of nss-sysinit incorrect option descriptions- Fix patch for disabling ssl2 in ssl to correctly set error code - Fix syntax error reported in the build.log even tough it succeeds - Add patch top ignore setpolicy result - Resolves: rhbz#1001841 - Disable SSL2 and the export cipher suites - Resolves: rhbz#1026677 - Attempt to run ipa-client-install fails- Fix bash syntax error in patch for disabling ssl2 tests - Resolves: rhbz#1001841 - Disable SSL2 and the export cipher suites- Fix errors in ssl disabling patches for both library and tests - Add s390x to the multilib_arches definition used for alt_ckbi - Resolves: rhbz#1001841 - Disable SSL2 and the export cipher suites- Fix errors in nss-sysinit manpage options descriptions - Resolves: rhbz#982723- Enable fips when system is in fips mode - Resolves: rhbz#852023 - FIPS mode detection does not work- Remove unused and obsoleted patches - Related: rhbz#1012656- Add description of the certutil's --email option to it's manpage - Resolves: rhbz#Bug 948495 - Man page scan results for nss- Rebase to nss-3.15.2 - Resolves: rhbz#1012656 - pick up NSS 3.15.2 to fix CVE-2013-1739 and disable MD5 in OCSP/CRL- Install symlink to nss-sysinit.sh without the .sh suffix - Resolves: rhbz#982723 - nss-sysinit man page has wrong path for the script- Resolves: rhbz#1001841 - Disable SSL2 and the export cipher suites- Add upstream bug URL for a patch subitted upstream and remove obsolete script- Update to NSS_3_15_1_RTM - Apply various fixes to the man pages and add new ones - Enable the iquote.patch to access newly introduced types - Add man page for pkcs11.txt configuration file and cert and key databases - Add missing option descriptions for {cert|cms|crl}util - Resolves: rhbz#948495 - Man page scan results for nss - Resolves: rhbz#982723 - Fix path to script in man page for nss-sysinit- Use the unstripped source tar ball- Install man pages for nss-tools and the nss-config and setup-nsssysinit scripts - Resolves: rhbz#606020 - nss security tools lack man pages- Build nss without softoken or util sources in the tree - Resolves: rhbz#689918- Update ssl-cbc-random-iv-by-default.patch- Fix generation of NSS_VMAJOR, NSS_VMINOR, and NSS_VPATCH for nss-config- Update to NSS_3_15_RTM- Reactivate nss-ssl-cbc-random-iv-off-by-default.patch- Add upstream patch to fix rhbz#872761- Update expired test certificates (fixed in upstream bug 852781)- Fix incorrect post/postun scripts. Fix broken links in posttrans.- Configure libnssckbi.so to use the alternatives system in order to prepare for a drop in replacement.- Update to NSS_3_14_3_RTM - sync up pem rsawrapr.c with softoken upstream changes for nss-3.14.3 - Resolves: rhbz#908257 - CVE-2013-1620 nss: TLS CBC padding timing attack - Resolves: rhbz#896651 - PEM module trashes private keys if login fails - Resolves: rhbz#909775 - specfile support for AArch64 - Resolves: rhbz#910584 - certutil -a does not produce ASCII output- Allow building nss against older system sqlite- Update to NSS_3_14_2_RTM- Update to NSS_3_14_1_WITH_CKBI_1_93_RTM- Require nspr >= 4.9.4 - Fix changelog invalid dates- Update to NSS_3_14_1_RTM- Bug 879978 - Install the nssck.api header template where mod_revocator can access it - Install nssck.api in /usr/includes/nss3/templates- Bug 879978 - Install the nssck.api header template in a place where mod_revocator can access it - Install nssck.api in /usr/includes/nss3- Bug 870864 - Add support in NSS for Secure Boot- Disable bypass code at build time and return failure on attempts to enable at runtime - Bug 806588 - Disable SSL PKCS #11 bypass at build time- Fix pk11wrap locking which fixes 'fedpkg new-sources' and 'fedpkg update' hangs - Bug 872124 - nss-3.14 breaks fedpkg new-sources - Fix should be considered preliminary since the patch may change upon upstream approval- Add a dummy source file for testing /preventing fedpkg breakage - Helps test the fedpkg new-sources and upload commands for breakage by nss updates - Related to Bug 872124 - nss 3.14 breaks fedpkg new-sources- Fix a previous unwanted merge from f18 - Update the SS_SSL_CBC_RANDOM_IV patch to match new sources while - Keeping the patch disabled while we are still in rawhide and - State in comment that patch is needed for both stable and beta branches - Update .gitignore to download only the new sources- Fix the spec file so sechash.h gets installed - Resolves: rhbz#871882 - missing header: sechash.h in nss 3.14- Update the license to MPLv2.0- Use only -f when removing unwanted headers- Add secmodt.h to the headers installed by nss-devel - nss-devel must install secmodt.h which moved from softoken to pk11wrap with nss-3.14- Update to NSS_3_14_RTM- Update to NSS_3_14_RC1 - update nss-589636.patch to apply to httpdserv - turn off ocsp tests for now - remove no longer needed patches - remove headers shipped by nss-util- Update to NSS_3_13_6_RTM- Rebase pem sources to fedora-hosted upstream to pick up two fixes from rhel-6.3 - Resolves: rhbz#847460 - Fix invalid read and free on invalid cert load - Resolves: rhbz#847462 - PEM module may attempt to free uninitialized pointer - Remove unneeded fix gcc 4.7 c++ issue in secmodt.h that actually undoes the upstream fix- Fix pluggable ecc support- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- Fix checkin comment to prevent unwanted expansions of percents- Resolves: Bug 830410 - Missing Requires %{?_isa} - Use Requires: %{name}%{?_isa} = %{version}-%{release} on tools - Drop zlib requires which rpmlint reports as error E: explicit-lib-dependency zlib - Enable sha224 portion of powerup selftest when running test suites - Require nspr 4.9.1- Resolves: rhbz#833529 - revert unwanted change to nss.pc.in- Resolves: rhbz#833529 - Remove unwanted space from the Libs: line on nss.pc.in- Update to NSS_3_13_5_RTM- Resolves: Bug 812423 - nss_Init leaks memory, fix from RHEL 6.3- Resolves: Bug 805723 - Library needs partial RELRO support added - Patch coreconf/Linux.mk as done on RHEL 6.2- Update to NSS_3_13_4_RTM - Update the nss-pem source archive to the latest version - Remove no longer needed patches - Resolves: Bug 806043 - use pem files interchangeably in a single process - Resolves: Bug 806051 - PEM various flaws detected by Coverity - Resolves: Bug 806058 - PEM pem_CreateObject leaks memory given a non-existing file name- Resolves: Bug 805723 - Library needs partial RELRO support added- Cleanup of the spec file - Add references to the upstream bugs - Fix typo in Summary for sysinit- Pick up fixes from RHEL - Resolves: rhbz#800674 - Unable to contact LDAP Server during winsync - Resolves: rhbz#800682 - Qpid AMQP daemon fails to load after nss update - Resolves: rhbz#800676 - NSS workaround for freebl bug that causes openswan to drop connections- Update to NSS_3_13_3_RTM- fix issue with gcc 4.7 in secmodt.h and C++11 user-defined literals- Resolves: Bug 784672 - nss should protect against being called before nss_Init- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- Deactivate a patch currently meant for stable branches only- Resolves: Bug 770682 - nss update breaks pidgin-sipe connectivity - NSS_SSL_CBC_RANDOM_IV set to 0 by default and changed to 1 on user request- Revert to using current nss_softokn_version - Patch to deal with lack of sha224 is no longer needed- Resolves: Bug 754771 - [PEM] an unregistered callback causes a SIGSEGV- Resolves: Bug 750376 - nss 3.13 breaks sssd TLS - Fix how pem is built so that nss-3.13.x works with nss-softokn-3.12.y - Only patch blapitest for the lack of sha224 on system freebl - Completed the patch to make pem link against system freebl- Removed unwanted /usr/include/nss3 in front of the normal cflags include path - Removed unnecessary patch dealing with CERTDB_TERMINAL_RECORD, it's visible- Statically link the pem module against system freebl found in buildroot - Disabling sha224-related powerup selftest until we update softokn - Disable sha224 and pss tests which nss-softokn 3.12.x doesn't support- Rebuild with nss-softokn from 3.12 in the buildroot - Allows the pem module to statically link against 3.12.x freebl - Required for using nss-3.13.x with nss-softokn-3.12.y for a merge inrto rhel git repo - Build will be temprarily placed on buildroot override but not pushed in bodhi- Fix broken dependencies by updating the nss-util and nss-softokn versions- Update to NSS_3_13_1_RTM - Update builtin certs to those from NSSCKBI_1_88_RTM- Update to NSS_3_13_RTM- Update to NSS_3_13_RC0- Fix attempt to free initilized pointer (#717338) - Fix leak on pem_CreateObject when given non-existing file name (#734760) - Fix pem_Initialize to return CKR_CANT_LOCK on multi-treaded calls (#736410)- Update builtins certs to those from NSSCKBI_1_87_RTM- Update to NSS_3_12_11_RTM- Indicate the provenance of stripped source tarball (#688015)- Provide virtual -static package to meet guidelines (#609612).- Enable pluggable ecc support (#712556) - Disable the nssdb write-access-on-read-only-dir tests when user is root (#646045)- make the testsuite non fatal on arm arches- Fix crmf hard-coded maximum size for wrapped private keys (#703656)- Update to NSS_3_12_10_RTM- Update to NSS_3_12_10_BETA1- Implement PEM logging using NSPR's own (#695011)- Update to NSS_3.12.9_WITH_CKBI_1_82_RTM- Short-term fix for ssl test suites hangs on ipv6 type connections (#539183)- Add a missing requires for pkcs11-devel (#675196)- Run the test suites in the check section (#677809)- Fix cms headers to not use c++ reserved words (#676036) - Reenabling Bug 499444 patches - Fix to swap internal key slot on fips mode switches- Revert patches for 499444 until all c++ reserved words are found and extirpated- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- Fix cms header to not use c++ reserved word (#676036) - Reenable patches for bug 499444- Revert patches for 499444 as they use a C++ reserved word and cause compilation of Firefox to fail- Fix the earlier infinite recursion patch (#499444) - Remove a header that now nss-softokn-freebl-devel ships- Fix infinite recursion when encoding NSS enveloped/digested data (#499444)- Update the cacert trust patch per upstream review requests (#633043)- Fix to honor the user's cert trust preferences (#633043) - Remove obsoleted patch- Update to 3.12.9- Rebuilt according to fedora pre-release package naming guidelines- Update to NSS_3_12_9_BETA2 - Fix libpnsspem crash when cacert dir contains other directories (#642433)- Update to NSS_3_12_9_BETA1- Update pem source tar with fixes for 614532 and 596674 - Remove no longer needed patches- Update PayPalEE.cert test certificate which had expired- Tell rpm not to verify md5, size, and modtime of configurations file- Fix certificates trust order (#643134) - Apply nss-sysinit-userdb-first.patch last- Move triggerpostun -n nss-sysinit script ahead of the other ones (#639248)- Fix invalid %postun scriptlet (#639248)- Replace posttrans sysinit scriptlet with a triggerpostun one (#636787) - Fix and cleanup the setup-nsssysinit.sh script (#636792, #636801)- Add posttrans scriptlet (#636787)- Update to 3.12.8 - Prevent disabling of nss-sysinit on package upgrade (#636787) - Create pkcs11.txt with correct permissions regardless of umask (#636792) - Setup-nsssysinit.sh reports whether nss-sysinit is turned on or off (#636801) - Added provides pkcs11-devel-static to comply with packaging guidelines (#609612)- NSS 3.12.8 RC0- Fix nss-util_version and nss_softokn_version required to be 3.12.7.99.3- NSS 3.12.8 Beta3 - Fix unclosed comment in renegotiate-transitional.patch- Change BuildRequries to available version of nss-util-devel- Define NSS_USE_SYSTEM_SQLITE and remove unneeded patch - Add comments regarding an unversioned provides which triggers rpmlint warning - Build requires nss-softokn-devel >= 3.12.7- Update to 3.12.7- Apply the patches to fix rhbz#614532- Removed pem sourecs as they are in the cache- Add support for PKCS#8 encoded PEM RSA private key files (#614532)- Fix nsssysinit to return userdb ahead of systemdb (#603313)- Require and BuildRequire >= the listed version not =- Require nss-softoken 3.12.6- Fix SIGSEGV within CreateObject (#596674)- Update pem source tar to pick up the following bug fixes: - PEM - Allow collect objects to search through all objects - PEM - Make CopyObject return a new shallow copy - PEM - Fix memory leak in pem_mdCryptoOperationRSAPriv- Update the test cert in the setup phase- Add sed to sysinit requires as setup-nsssysinit.sh requires it (#576071) - Update PayPalEE test cert with unexpired one (#580207)- Fix ns.spec to not require nss-softokn (#575001)- rebuilt with all tests enabled- Using SSL_RENEGOTIATE_TRANSITIONAL as default while on transition period - Disabling ssl tests suites until bug 539183 is resolved- Update to 3.12.6 - Reactivate all tests - Patch tools to validate command line options arguments- Fix curl related regression and general patch code clean up- retagging- Fix SIGSEGV on call of NSS_Initialize (#553638)- New version of patch to allow root to modify ystem database (#547860)- Temporarily disabling the ssl tests- Fix nsssysinit to allow root to modify the nss system database (#547860)- Fix an error introduced when adapting the patch for rhbz #546211- Remove left over trace statements from nsssysinit patching- Fix a misconstructed patch- Fix nsssysinit to enable apps to use system cert store, patch contributed by David Woodhouse (#546221) - Fix spec so sysinit requires coreutils for post install scriplet (#547067) - Fix segmentation fault when listing keys or certs in the database, patch contributed by Kamil Dudka (#540387)- Fix nsssysinit to set the default flags on the crypto module (#545779) - Remove redundant header from the pem module- Remove unneeded patch- Retagging to include missing patch- Update to 3.12.5 - Patch to allow ssl/tls clients to interoperate with servers that require renogiation- Retagging- Require nss-softoken of same architecture as nss (#527867) - Merge setup-nsssysinit.sh improvements from F-12 (#527051)- User no longer prompted for a password when listing keys an empty system db (#527048) - Fix setup-nsssysinit to handle more general formats (#527051)- Fix syntax error in setup-nsssysinit.sh- Fix sysinit to be under mozilla/security/nss/lib- Add nss-sysinit activation/deactivation script- Install blank databases and configuration file for system shared database - nsssysinit queries system for fips mode before relying on environment variable- Restoring nssutil and -rpath-link to nss-config for now - 522477- Add the nss-sysinit subpackage- Installing shared libraries to %{_libdir}- Retagging to pick up new sources- Update pem enabling source tar with latest fixes (509705, 51209)- PEM module implements memory management for internal objects - 509705 - PEM module doesn't crash when processing malformed key files - 512019- Remove symbolic links to shared libraries from devel - 521155 - No rpath-link in nss-softokn-config- Update to 3.12.4- Fix FORTIFY_SOURCE buffer overflows in test suite on ppc and ppc64 - bug 519766 - Fixed requires and buildrequires as per recommendations in spec file review- Restoring patches 2 and 7 as we still compile all sources - Applying the nss-nolocalsql.patch solves nss-tools sqlite dependency problems- restore require sqlite- Don't require sqlite for nss- Ensure versions in the requires match those used when creating nss.pc- Remove nss-prelink.conf as signed all shared libraries moved to nss-softokn - Add a temprary hack to nss.pc.in to unblock builds- caolan's nss.pc patch- Bump the release number for a chained build of nss-util, nss-softokn and nss- Fix nss-config not to include nssutil - Add BuildRequires on nss-softokn and nss-util since build also runs the test suite- disabling all tests while we investigate a buffer overflow bug- disabling some tests while we investigate a buffer overflow bug - 519766- remove patches that are now in nss-softokn and - remove spurious exec-permissions for nss.pc per rpmlint - single requires line in nss.pc.in- Fix BuildRequires: nss-softokn-devel release number- fix nss.pc.in to have one single requires line- cleanups for softokn- remove the softokn subpackages- don install the nss-util pkgconfig bits- remove from -devel the 3 headers that ship in nss-util-devel- kill off the nss-util nss-util-devel subpackages- split off nss-softokn and nss-util as subpackages with their own rpms - first phase of splitting nss-softokn and nss-util as their own packages- must install libnssutil3.since nss-util is untagged at the moment - preserve time stamps when installing various files- dont install libnssutil3.so since its now in nss-util- Fix spec file problems uncovered by Fedora_12_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild- removed two patch files which are no longer needed and fixed previous change log number- updated pem module incorporates various patches - fix off-by-one error when computing size to reduce memory leak. (483855) - fix data type to work on x86_64 systems. (429175) - fix various memory leaks and free internal objects on module unload. (501080) - fix to not clone internal objects in collect_objects(). (501118) - fix to not bypass initialization if module arguments are omitted. (501058) - fix numerous gcc warnings. (500815) - fix to support arbitrarily long password while loading a private key. (500180) - fix memory leak in make_key and memory leaks and return values in pem_mdSession_Login (501191)- add patch for bug 502133 upstream bug 496997- rebuild with higher release number for upgrade sanity- updated to NSS_3_12_4_FIPS1_WITH_CKBI_1_75- re-enable test suite - add patch for upstream bug 488646 and add newer paypal certs in order to make the test suite pass- add conflicts info in order to fix bug 499436- ship .chk files instead of running shlibsign at install time - include .chk file in softokn-freebl subpackage - add patch for upstream nss bug 488350- Update to NSS 3.12.3- temporarily disable the test suite because of bug 494266- fix softokn-freebl dependency for multilib (bug 494122)- introduce separate nss-softokn-freebl package- disable execstack when building freebl- add upstream patch to fix bug 483855- build nspr-less freebl library- Update to NSS_3_12_3_BETA4- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild- update to NSS_3_12_2_RC1 - use system zlib- add sparc64 to the list of 64 bit arches- bug 456847, move pkgconfig requirement to devel package- Update to NSS_3_12_1_RC2- NSS 3.12.1 RC1- fix bug bug 429175 in libpem module- bug 456847, add Requires: pkgconfig- nss package should own /etc/prelink.conf.d folder, rhbz#452062 - use upstream patch to fix test suite abort- Update to NSS_3_12_RC4- Update to NSS_3_12_RC2- Zapping old Obsoletes/Provides. No longer needed, causes multilib headache.- Update to NSS_3_12_BETA3- NSS 3.12 Beta 2 - Use /usr/lib{64} as devel libdir, create symbolic links.- Apply upstream patch for bug 417664, enable test suite on pcc.- Support concurrent runs of the test suite on a single build host.- disable test suite on ppc- disable test suite on ppc64- Build against gcc 4.3.0, use workaround for bug 432146 - Run the test suite after the build and abort on failures.* NSS 3.12 Beta 1- move .so files to /lib- NSS 3.12 alpha 2b- upstream patches to avoid calling netstat for random data- NSS 3.12 alpha 2- Add /etc/prelink.conf.d/nss-prelink.conf in order to blacklist our signed libraries and protect them from modification.- Fix off-by-one error in the PEM module- fix a C++ mode compilation error- Add 3.12 ckfw and libnsspem- Updated license tag- Ensure the workaround for mozilla bug 51429 really get's built.- Better approach to ship freebl/softokn based on 3.11.5 - Remove link time dependency on softokn- Fix unowned directories, rhbz#233890- Update to 3.11.7, but freebl/softokn remain at 3.11.5. - Use a workaround to avoid mozilla bug 51429.- Fix rhbz#230545, failure to enable FIPS mode - Fix rhbz#220542, make NSS more tolerant of resets when in the middle of prompting for a user password.- Update to 3.11.5 - This update fixes two security vulnerabilities with SSL 2 - Do not use -rpath link option - Added several unsupported tools to tools package- disable ECC, cleanout dead code- Update to 3.11.4- Revert the attempt to require latest NSPR, as it is not yet available in the build infrastructure.- Update to 3.11.3- Add /etc/pki/nssdb- rebuild- Update to 3.11.2 - Enable executable bit on shared libs, also fixes debug info.- Enable Elliptic Curve Cryptography (ECC)- Update to 3.11.1 - Include upstream patch to limit curves- add --noexecstack when compiling assembler on x86_64- bump again for double-long bug on ppc(64)- rebuilt for new gcc4.1 snapshot and glibc changes- rebuild- Update file list for the devel packages- Update to 3.11- Add patch to allow building on ppc* - Update the pkgconfig file to Require nspr- Initial import into Fedora Core, based on a CVS snapshot of the NSS_3_11_RTM tag - Fix up the pkcs11-devel subpackage to contain the proper headers - Build with RPM_OPT_FLAGS - No need to have rpath of /usr/lib in the pc file- Adressed review comments by Wan-Teh Chang, Bob Relyea, Christopher Aillon.- Initial build/bin/sh/bin/sh 3.28.4-15.el7_43.28.4-15.el7_43.28.4-15.el7_4nss-legacynss-rhel7.confignssdbcert8.dbcert9.dbkey3.dbkey4.dbpkcs11.txtsecmod.dblibnss3.solibnssckbi.solibsmime3.solibssl3.solibnssckbi.socert8.db.5.gzcert9.db.5.gzkey3.db.5.gzkey4.db.5.gzpkcs11.txt.5.gzsecmod.db.5.gz/etc/pki//etc/pki/nss-legacy//etc/pki/nssdb//usr/lib//usr/lib/nss//usr/share/man/man5/-O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -m32 -march=x86-64 -mtune=generic -mfpmath=sse -fasynchronous-unwind-tablesdrpmxz2i686-redhat-linux-gnu directoryASCII textBerkeley DB 1.85 (Hash, version 2, native byte-order)ELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=7b32cfe77f4ecafd083ac36c583a59f4bec572aa, strippedemptyELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=e9bb9caa06e81fe4b09ef6795d176901a8cbd98c, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=9b1f5ed93d7bf04eb0776d0d8592640c59f7759f, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=c55ca2599e41acdfbcbe83be40bfdb791ce815fa, strippedtroff or preprocessor input, ASCII text (gzip compressed data, from Unix, max compression)CpC-= PPP"P#P%P&P'P(P)P*P+P,P-PPPPPPPP P P P PPPPP PPPPPPPPPPPPP P!P$PR R RR RRR&R+R%R'R*R,R(R$R#R-R.R R/R RR:P8P9P:P;PP?P@PAPBP1P3P2P4P5P6P7P0RR RR$RRR RRRR!R"RRRRRRR#R-R.R R/R RR:PMPNPWPXPDPEPGPFPHPIPJPKPLPOPPPQPRPSPTPUPVPCR0R&R%R,R)R$RR RR RRRRRRRRR!RRR"RRRRRRRRR#R-R.R R/R RR1R:P/P.RR RR-R.R R/R RR:?@7zXZ !#,!g]"k%YÍv46nj Pfͭlĩ!"}#v+spIa 5mdwe-'Kmy0[ G5c:e]U?=ǹ;Ue1us0Rw FJӱmBG@@&Eʾl$OOw[]>%dDD ԝ2 C<f'ed7i- 4RV'((IĞaZLNu!]'嗢e2 wOaS O1yxKQbƅ`v\?9h ~anUo?0fȦ^~NwUuD$kǏ"o׍ Cf%ف:.d9g>RRht4=~`Тۤo.WE!.ړzJ\$淛$l/-(z)~KLWonAF ^\*:K8:DQ`}TW5{FSH|΍>?V F-YN5-(oR{gR'a^!"}2wP]Ru-J_>w̆z;EV/bQ_̩(~p6*qUj>zDe#r}-Yw!-5 I^&/e0¡;ehXͷ)wMc,tE#3dnG@ EY u )b;|.P%z.ǬX;+׾]ԏb{qhR6!'Ufؚr)dy}Z֫HJ/^mo"x*_*+ 7 OԮ! !\uA'﻽.642ᓠY37HJ|$*-%ƍ*iD.X2u6"}OA!$m!Cd@&7E/O(x֜g‚tJ8 j`l[r &"DPvezrω^^shQ@x* 3RkZF\?CuaeWNWrp[ʣ{ @Ȍ zY, G`bG0(FI9U\d‰ S|<h-9ϸ F௩9kjtK(G.H4IMF9AYh̫ !_p*/OlZ^]y˜^t^ˆ^0ez =s3-z}J*1Cp3׫O3p@k*$H`y-i`wju 5xM׮_ǐ6Z>*U'5gH5$rEI?)&Uq)]9Y~&B`GbsEWm!y7tQ~f؈;X@QF/W1Vewj6VKV^J|rY 27϶|Su\*D˱\+ ;8ӼkTOeģY Ц6-$[8VȿͫK4 n&+0ož;A }:yO`?rBGaD}uЮq;b%T!M=>pf]_zm{I6Z!Xz wRNqT_N i)@ŸD$Gd=|8:SP*FJH]FK*P~Wɫ ]T}6ގ޲؈K# gLdpWVʃ pc\_5'oxΕ55妏KduiY+%׉SԎߏZO2&<'/6`7ѥs{ML oMbݮ5x|11nk_ 5/<'nGKLDHĦH:%,b|!Ӥ$s#u!L̬|bhmFJCYc@"sߍ *K@V}HX̞][)Z$o,9 9V9Wl@]s}zıRL҂-pS I`G&Q:Y/e~Bcl 3|}lc9a\ Zmݟ@MT=}9F_:e7N SNX1Ld "P !? N"ZvB{\#uZR?ݬSD{]\Rp۞ꄺ=MYj8z _WxA/KFBmcm}PRgQ*GaL~xɑF8Վ,kO,.6~njQ^{7!l6bGI`| ~"!5Sa^//BlDa- UiuE ӕJzP3ą {3/]SBn-@NS\>"=L>#Z0P|kq> |7{ߟUE9MʽOnf; ݲ} <ᾤtpɰ]H WF㹀eEΩi~Bwo[?x CwH_69NL6[M_<=Xk-1\ z. H9O.d'%¹HeQJԐ@Fϐ<\寅#X>1\f?"x"KQl&t1 lRn̙g lNM@  l.:qg J9eE|5 c>qP:h(# ^6@F-#H᥅'[N.ocp$^Sܨ~*'ȵ|p7)ry&kst~ XA͜>= zIufaFMάgnq|GkzKO`+E.,\e/?*qD>ZfskJNSKsC!;5t#t_VNEkm<gfXkWMyDYĶU?eiqif 7z:i&K[<-oo++zp/FR=k ~p AKq⯮uv9#\'~y -!`o9kazp(~ȸpixlWyoxO8OdR&*u; e:UCA{4b}̄b{>HVӚGu]vWsHv'ycT`HN>b=-q-&oKl5́7s~]W"$ PZ2 OAOM,O*qr?F8@`CµBmWG*;ݸnQ JX $!Cxo|N&`{c"3I-héVƩ6W=~E+al/ \c!fL(3H^Z vwY _twQ$dt f*ۑ7ԷZY O'ACφM15.G"d< NڵήHMe ޷FgA(mg{ܮV">]LZF/>8^KHV/+3B]my&?$,'A2tPwC$=fq\>Ьd fD .nP{?ti!îCHBadq4˒NYR'#`_RnR*k* g{lx!RǦDs11+h>zG7MVHH΁ w J2;\t^ASt$ldőFJTTc3e;z՚oϭj~i >&y-!\[o𱯴U1`9viscKj*\͡ϺAkC^}rô骋iy%5G edWA40‰QvRx=gf W._vI"AD&FH DY3Q S>yc˝:p g G]\{re~Ev]猣t {]=dॴZ/Ư 2l\t-0CbWFtro~P =+@U?-*9"eKi 3&9U\6iY%)ίDPȀPm=L)vU9r_+Qs鼡 żh6MJXYΓq+n U1 s͓'ꧠGQSy媿Os\YwHˍQ\}"&-%|l;X>:ܐAQsE K΋ WXY ,LZ@MP/ W N=U7Wl`߅`#A(f**dPfxӔ/"D]dC ĸLLH՗84 ).1;=7GW3StOcE;ץ5>䣪A&6(Nk*q@NSWeru b0y ?&r R6▴ȿ`)4CIo6"F|%'OLj `C˾50}U\eq{c0mtz fWM|^*N|o0.cyb_A)U䣤54)]:9P4$uC Zu%U2=rW\Bp!muw +(w6p 7y=.[DuR:x U\ G)mBDIr039@_i(>HG8}V%V xbtL͊n@넨.%T >WrOnz_Ю?xY.Kdn1 RoAZ%藬B ]3c"aG!$^!<|TaݱAf6crPvñ'XPxh~\rڦQܘ>.km-WGד `rZ<']4Nuǩ˻af C2E8׉PGcGd{ha "]$;(TRP~HrI!kR;~jJY /jMeR8%1[!RPo!V#h3a]:` vjYr;PC> a/0^ztg$?|pGBXgvF=VM {wӾFSڝjH=UwCcOt*U?K6QXTw!@gAViv#&zO H;q'zV-)2=8>xkp2Xƒˑ:dV"N hx/vu9OHZ˯Da+vu0c2d׌͂nz:3), \荺.p|bd4ĴEL5mk0@PY?vyGq;d7SH7U0afb&Y+YaKLQn9+53SGc."w_bxko*̓G=x^MoZ)hGX".6iӃFn_ v3ڴN9su[QbRU~| nآtgͫɒD=-_K)-yqW0,?ڞz,N> EzǷwW#A&>:? |{-ɷoVc((6x_pdqUpHEl و /t>;V5JE8+HM쪜\K4ŢHKsf/AK,‚ ̃_*p4e~o&}?g3K N:fb_!ƅ:@}%̃A\gW3JEŻmV֍̠fL_d9;2,6FbRNL'@n{3|o~T )oHݫlu|Z>ҷ5+tE)^WI<iyI3BWV@\{%,cME#ε$Sb^lDt2/+o`سS",$FeFTXAF ԰N6Z5'U ᾢpNouMxPg :.c_`-.xEJU.ߟ;'$nA>#3#V"RJ`8On[^>` 9Xe3TϷRc-H PUOpW$,A ӆj>EvAu{n >~GrpʒC*rvug/%]Uċ7& LM;<@ů.i-t[Ux1yEwo] ;G.ɴͩQXp^9r%A5qzm}ѧk5JКa=o AڭKMfjpDX^s HH!)'Ѯ|."S05{omIDZ: U(Kwဒ'! s"۴T[=,JJ1χNj1ULt: 7)'s)jѬoJ1( I[ vaX@".) jZ71F"5 oJHn؉D"Nn/|ꎭpViVt\A(sw:A|Bն]qv$KJϒlGY(J=m[.?Y[`d!(mXI.gk3(>Ke,UêP]Fݾdhd̳|g<˪L@P @4G;Ne_Jƈy]*Saәߞ r0ݽfx$Q>`fbEK||.fKE.Ҕ[ρN5]pZXS#6[ּU6|xx;+29f<^Ξ>۔ڝy7Kb.j/o!q΂Cj]mLuKGM>;z F6O -3@18ܤi-,vX9\|As=^T8zk2U[kDScO'ȫlr џS?dw:0SG_N1)?qƹ5_Mkw{餥ŞKS;4u?f@+Y$jI!@ɂ9;ǹZ8fgk Bj!%4yф쳆LՐqvlM[/omoaC^Ⱥ6sB.AZD l#@|`!ɠiFo|v 1agUtPXvLYZmM#٤"DXQ}MjYwdvK|%݄ߗđ5{ (Ug\~իdU.>dLL@3ko`T,A2)4zHト ӪȮUf\[D|IA?ٖtl48oh>Sά5@{XH>=Ȩm @I.<@2L2AFo$x*@̝H>VO4sXT/;lGFE]-`9 Z(./w&㮌4} PŸ*;15#:yg !\hD adg蜭e͂B4lW3 t#ޞ+tm?ZaLvrr<llVjϊ,wZ,"y}0(ZebL0p*RR2mG+˟T85W?Í)tmb=+W}NևՎ.9"iOx]җj4[jG tN$cгelik WEtm R Z館[Qج44rW +c?rOq;#FUҐBEpLW9l%iX[O&forq|Yw.SYs\U|mƞ a)9v2?)1ҜmQϥhҨȤCIspI5r0Q3G< y4HP7h1P#':MY(Yv`QA̙3mk:yoeJd@f2E`#RURx_M)F*h53lg/-$\qg/! :EOmR<)۪չ@ G pSȦz11o8͢ OfOU਑ %x&oD p̊Pͷƶgvns;8i >FU790k@Ez%[Y[iN1]-Q i{[K4cD0̆}n{$wr0 }I ."^ (PXLt -._ ٿoVxF\K5K-#d&,^zQ hPaRf@vl[z>]DUL$5kBQ3h.c*D~1ER4g>\L, 8_J9B6Di"_4C($99Ynlt6ZT6~ވPh;zx\=M9WW*N, g:RGԳQ_j F3 2rf6R2ZЈƪ)3rj{ޒh/N/яg}bgu4%?~rcG)V)BmTBw`/K7:Q Z =DO]@ I29\ YT݌xZbh`V#L{ 4agxnGegAEbUV)=gDLd4ܚaE~ogF5=P3Ԇb0'o2Y-i{\n*]$`]WTC) qmQhR;۠.~xGK؀ߤfeh5)A~lF)r@t[tu!Inj7֕xh!iWat&6Il}VЯp C{zL/W*,]/Ź!;k޴ǵ@ =ϨgEc[|ΠR8NXCjGyAE,;|I%Z#P.B;E]d"'oZ|$ds։-uV-ajc=l( ^׳WhQM8 Ѐ*.}B 9GeyF|м G\+3qyu9ǮH-ޕFHVc˸۱Bpk3+ oQ,GA҈(&ۈ=td`v,Qouq/ny#<$DZt"T %.E,3пO&[ax}* T7cx}#b/\[TA[!~;?_[O/2/Å{;tݫ}!toXz9aDA.W_&LFPۍ6<ߎs@G4Ԡqg[vfTy貕reeRĶvlR5?%ﳰmJ& EUn`\I{y QmeQtnp|(0EykoFqd,P3?w{d@ٸڮTGngۮ6\Jdad 9~K7dQהJ>$gKaB.IкooH.A|ߤIVxr9@t[aƝ[q]_ylD9i}+İc8F|Nڨb1 h /Xq!f;M: lA=PG+\crԃY'%5I~q 4Ɠ(:fu6OSQq|:ݸj ~APK23:[@fюI( bSu3'A7,IJpo3s9&Mlٶm΀2+k15,@MsXw=E|5eK Yw FllLJTE)5Lm&2׸Usu f#BW!ZV( C K1Q)Q .&<#lP &m)~6y$"LDGse?(<3^'IV;Q;.?I5nGrGL&1Ĉ+Ͳ1G7ln^zUp N+@ ęm^" z{œ<MRC=nuˬT/3ezտ2Ye>[I~rzyt \cJm;َu{st9IŽEA|<0nWZ}]Lf9~04 zf i.+[ZMp%6=Ls  2kKצ_p*Ӵ|S褒_DXkL\!\V#ȃXzf "(鯃pJلMToA +@ sL1rS&k27Zwo Zg|gfuioZh*$ " j "QFE.h TQir ,1"^f1ui^SC՛┲:iey+"R8٢Kq=.ڗ`W_˧3ۦϧӅ|\e4[Π3|rDy %)dˏ^>d(iej>L:f[g ~VˍQ l ,ODwYS<!8nkFw/{D8.r}Xk\RĢLQBotiD4 GYMD0 dj-#$Ѡк-Q(ߡu// |ZŘMm\fO 4mۊⵤU3Q^Rm?2o}ᰌ`ᯇ)-OIIC弒v_ IJr"GM(.Ah lh?3CM<$ꉼwt'z!헞e!GinDz={o` o JGڽL%xҎcLxa)? VZt}fg[8N\2aVZ{]#%[%8?TӞmȀ.ܒ0\!ڻB[[OB](-u63-%Tx5oЌuՍ PE`as3/p OMޫ9EA1.6S]{}PE%r!`IO $(,#t2eM-dd'saxWox%eoSR~E½Aƻɾ;%IVmOI1B_0~۰ &Gz$I "QQY1P:whʼ*Bg(abh G[ڸ! JЂaTd>Mi p1zk\PkBeX͛P8ÖIW+eAZ}kF'\5.<»ӴRWn6!Ud2j7{qD=ES[QɏrjK;s5 hݾ@񌻟hB# P CxA*Zr Bu]_r]$>(={ʮ{;[8trR6ہ6k>BU"hr2RInb}X,VeBV.!WUCSeKd#-QzRu PÅ.Kc{5tB&RE ?B#McW+/-E{f=ft'W \G^7cV]*ɀp;^!V:¥V{uӓR5 >_\+'֩|^}rqgY9ͤo=a9s[ҎԒCcS5 ":=+!f10k7t1uԌWա_:D(:r0uV%=Uǭ>DZ6d# XITuv/f3Z\7?|ӣ-HseBv.O^[su}[6o Yfz !x1@~ K οJ.!m7._a22U1ثbƲ r4Ba*jCr"Lݱ7v%6$KNmG̈M$!cQ֍.xuq&4MoLQGP^dEn14z,KU7dE2ܵĝ>%D6{ O|bT8˶h+ՆӌYJ;qz5irNYn[pE մ3N=H]HOfJ+T|-;֗hal pK+rmo,Gyp>LLPe6w|*[3kEOs:B~sMiqD}1i05qI#f-&fZ=4|2@;'yo7o_%7Vq̩7{ njs N;-lhq:'9N~!\&K<'t;{T naLFyj:l'7-6omwX"wNW$*I3lr*ύ5Y[z/) C,:4 !Ð[)OQh5۸R< ܛ4ՖkϐA$urײz{Vv<$t n5 :)Xucmru5LEBNz-=QW1r'g2y!X{@(n _樬c0 (Cx ?4xtH-;\HR\-񛣮5Jrœ䑀ҋ_ EzѴ÷ \HsW -faoűH.4@r4vCӝ^FOڪ9TB!P´v\bl";K}Yg]pJ,G}Қzȕx_)"76ƜƧGSq쟸{1fmfjU¼ 'Y~dTdt:RBQH?.L'gnN೷RB;GSyîw\$@5L\ Z:Zh<(U?|>0C!lN9\?{iUb!hM7x7w Śn{#FFii5SoܻV]td "?J`NJSy[2 EHj}V5694"S8S: .!T:U=u8 :fG2ՅEF̀[!|Št_Q[LޮhH>T 0 ;EPfEQa P/"F,ؾo%4GԞ- ]A^i[:2_ f}1wIė`x"{`-V5LՅ\]+C2k H~bqJ[,U6Sy_4~XVJUگ,gڽyʹWL %{R@bML@ur(xg6ڐcq.`P쿂 %2ȧ+`Ep>"0 'Z:OX+W:a0=0 5培|LASYc0Pѧ~ |&OwcAV6V2i3TTJEEhNeְ3U".ѹ5,}WxSF]yı_X !K.%a\fS2(Rޡ\]§oGCX.kO ui, >›YE5Fvyq.ttJ5d!ƅ1O\Brn& ">\W\u?VJ"Rl>  JU!3e>s%="=3s9Kx[~pJ7zVsj!45쒥B`z{#@ĭmȡ\4U5s/а wYgpa2dEc;PԪ6t27xK;b>tݵн~/1y^ 9JVƷ#qII!A᳸/^owP1P>Ηciw<%lBobIM$HYW FNH5zҠm KSءZ\,$CuE \>7Ϧ$FO :Ty:J6()O_ɓ*O+SZM;Sm|smUb+=`TD_(֐p2rM~o7OcJfU#Ӛ9 OK?ӛS8MOH /qc@h A)H:{:x~ίӥ h'!_rq0}2/#/ 9sm|_V|~mH[ )b;;L?Ŷ5ȕG}_xì%Z @d:.jhAD`e3u:9-Yg/~tTlx}Sn>{qXwvoZ,pe\Dc)$׌ ʲزLQdaT%JV(/ Ƣ M|++aRb|ųP?k)[72V} ɀIR`7:Ԕӝ1Foėk s@m y4cUWP߂{J9uFݺ ! \.jQ&u~ FQc_$|e]NA0Y W%a/qy~i~,giƆǿKڦ;_JZVJvۅl2wÓ$/41u &p3JC!p8md]Ir\k[^ߖU|LE1IEU/ҌKS(p?1Z*>4aY9+zԘ'ю:c 3hEko榤Z¾H@K.Eh00𾁠hH St gZyN\k`R &-k˭SMcI}L͊nn i%ܷ!oX.d}<5(#>3[8 zYCvK8^pm&{<-:D/ۮLhoO( ṟ`/m]B]mh0}wM2qT6<<9*ӏa̴-qq$zhF9ŃP2)l%DyJ*2m/}hc0=)N T9G~Hpq8Y΋ho1-ޝE04Ha a'@ yp8k 84evPO(h9wv\09Gb01*a$y=#{_Κv| ~n8¤{g6]ЍH090[ $i؂jĝsշy܄o1lYIh&_ƀ&߽y0mcU, Jo5 CO/kt[Kejṙ^̎ŕ;MOaqlqͥQ^lss7 x-h^[Y]g4=,WsW^8ɕ=$aZ_HV#Ǝ^*וx/RhM.@t?o577q`DLiZ؋gl0[s+72-MOĎ. su%?b,<e},Ȉs6PuI;dy)؝-kb6U6KᬜDSktXګd;ijdu?ʖm.CWq{gQr>S]ɫ? 9SQRCtWQ۬unF>kd50UoW~YE4pj(ɒ7,ng khql~^T{ E [D7|N͐sӨm}.A JqjA,03ALekox >sd=dԬYzRB Y€2bȑHr,L2s% @Xn_-jo+/P8@E}_LlvئZXTZOϤR< Ǚ12Fv0]* B;rٸ-Jt *Hg%oάlo8g\T򣧵sO, G/ Pik!ǂ4eՙ0r^& }ȈkT`Ch'*`I&P1zOd塹Q_.'J~vEڝ/h- z*0 \j/~)"8:zF)117"0f44Uח ג.U0GpW9r. 8|>)_ Ɣ!@5/Y%^x [/(YdZa C#"JR!iu\I9%VQ´߻f<#X,?4 k"-Z2!v/bx vbIXS8e3E0 DZ㙷Ϻҟ6SVū_Rj.aN[5z zKlV](m^iz#S1CICi 4SrGG,>ǁ}prOs;)))Y <.U@˗r.rS 5*xaR֞RO֝ͷp |%Fx4Q2$݄B!^t+£]}P'R_zul!oAu{hy]p_{e[@KwMS&=݀}V3֗gϛ_QG IfphzaFgVj#A$@>٭o4! meybArʋ:ݕX06vB1dB:_sjuܿ[C˱a,& 5 5 j~ iYi+zevCƼd\°OZNfDvipy $ *3((f [R?hb oD M0w0h\8sm/i:DڏO4oB2?#e%һY{ w:?FTTgJS9zO83N򦓱}f"v+*Fx,ab[ಃ߈" OS^|i!;Hq΁;Mz3ta-|WxlT /ha0w/8.\}CIR,=`!tx|40s?YI&GnB"XG.F\#^Z9hްhJm~oT ˙@jۼ;|tA(KkjTz펍7;4G6f\b(UIjG}q K'B~H_|M!]-*x1=<{ (-$P# sjqļ|a|_P WvBtoEt?o5I먼3Bk_;U2'i&{f>d-}S] HRyn6~T^(lhqF;~j9`}hU2dGFpanyO=%0# KM݋+jE˩,(^V@]S@2V}8MH+eFB9Ѕmr`+)%ʊgyfTflS u=COŖv!BRrN bPGtrⵞ^NƶС8xI{Vpdď8Llә|&?WY[*^0nџi*kR ha#:5]zGOWwz7Zvr?78OQz"`5}La$I0ZǼ.i:&<3y+2~:P0ϟ@S᩵x.E1 ѵm KK+5qWC朠eЧ&XN7'؏Gӣpն !zH3-Q> 'a]w:AlK>=m.gK,9=W_Ý5a:jB臸֘X虻>0ojO}雍ĬX s!^a-LXu`ǩ\Ԗ3L yLàfw _YA2@ KlS:IS"5 ӳ.=muD/rz2R{ q?gp]wwhBjlp[wL- @Wh<OP$H Hk=<>2sR>UBX{.TqNs wS|5Z.w>HفRZ {u,aLD>EE_ %ܻ302A\8_G8d]6[l,:E2|)NOR?2.}vBÂ`b/rT@k<u]_='hz>G{;+O_ւ¶4HF; aB)Ę8YUTOG:ԣ\ ǡgMV W#ߔm5QFaN.t\#%3R:3 ke88ڭ;J Fɓ/r;,:F3Dܝ5H"Ea,WB[N2zUL(Uѱg3/~e zi;DN鈽]_Օ͋F:n# $PٸRΙ\D4Qo&[=L:EjBXBu%/q=. ~xSK#-O +Z80(Zm6oM殂Yh;ģ3}h63[D܊Gv]YpmgwC$P5l[GTDolg2O~F^Zsy a0mAJRd]99$яǓ>[6Vuo0:`hMAg&6(V?>,3@[Wb,ǗZhҰ3Z}8s}zor>Wwa桀_Sw,0r-)3I?YabOT/bt}1mOa9/7΅pb0r*J*^K"%ev[WF-pSLG'"R=Iи>͑SI+~Q WzXד33w5<Eydv(2F\nxۍcȀ<@sؗO[ &+~tt;b.N&_3*>P`"Tc(wm83BiSXX㡲+`}egM@=>!Q@ ڜcjKP+8&kU*ah%K˕t"e#KX1_lák.Tt7댧yU,]p47]%(§-BڝTflY%{(J V(5y) 5,AAN #fF4 s3 j(VI[ K6HU 6]j}?/,\2V aůSH;8)gBEe+v>́|(,%eJ{ݹN:x`M(dB=EEy`81Kt>LI%I8qI [[UQ*V7L*]Ѫ+Όu`Uf}0A +>vRa`LgٖMm"·^c1Tv,d|^7M3y9^ ,*>\`R3J$vZk.渣HJt; )(x:,|vTѿʄ ur95ldȞQgmT!xBHw]$@zbR' Ǿ!)Q*| s] _/ lxqu>;v a*zǎ %igA7Q t&x7P_kC^趤ҳ䫝&;nXt c(ۚz#p]*>}Ԩ%C![y!I(7،8;7iB$ư^@Glt;I " v\t9b|,9a]CMiTR4%F$˜jʑC-G`dDm$ xS?y:?9F~UP+F986A\!Ծ=q"Le?W`vw\b}vBA٭j&xZjO ܃a"_J*=<:1mYK^e EI^pe2B=3Y@-0#!9^90[6\l% )3-Z{tik.`EB#dQ/ y4E zh Bu2O+Hahwo)teMCMΒo}1&oybh?[i#98>LsɆ9N62M}cB0py5J: 2$ZL1ľ(63uQLKemhQJMi(PEn9Um+:B^#-W 0d1EI8 G8k.JĽZA1wny?JHnJn)_}2VM^e"斨㏃Y݇R2icOu/=:P6Q}p95(œ)e.^γJw'EEW7#LotT.BQz5{J3xn* ׵ kÐ?f [[8aX"tt&4mt@D~E&Ȅ(τA M& )޶P@.~YdP*+9ϲ4'ӍّK=(b8rM!!?5j6V@Ґm4L ѽik'q30 iPT%@Z@?oV0!junF-":X部%=AV jr-$_"*|<~$G8g"جXz2?i xoM`W-Mti T=q&wB3"x:)|>Smɒdʍ4_tٶspR"`e-y#Í3*rc 9 s_$xh|(^POCQJ|ի-Pbd oK= ׀K4ökf8t5b 3>&֏p t']#S9zgN׽,۽ ei]ehOM|!U;&پΤMz"-"4d3MQ.7-_;?vf@c䲱0⥬rfMYr6=*J𹷼Ky~2F!€`&iRJHrмEvw 1T^"$v!z،;c7Vs՘(<4AM .)ԣNw&f5raz֮pd&(kC6٧-rLч-`Rf;6- <!!zdm /-+uuYT@(˷tI9² S,8bHSa9^{_jl&.qƏeJ&С;5%%hzQP v] Vjn}@oW G:0g. JJ"Y}+Sgy䖸e;_?Edoq#~̦P`fir b, kgߌ :M8R, лJg"}W_*;}ZZ~W"48.iҨ=Z4zfKOs@,Co<$i$`bf6Pm2Y\E8N+~l<=OAMlyհD|#[Wt&fCe$,[rQ ԏJ~YbuSb%\wx:ܮ\bC ~f-. z6ɜ ZΪq:x\3V ,$*0RNSoq`dYj0INJ[M7̒;2p) Gzu8 ~3j=gW蘦y"޻yxׅ>zt6GPݧۏz#~Ư #Gw]>ܯi;6~{Ҷ:G=b~ipt=C ~;n)reƍ)V.J zuIA-~K@{xqG{Y5R\mTv@ W ,MWmm־16,PI+8>*;R.sj1?\2.MB@1;5p] mO6ɒ:yHY T1H;S$HK *qj֏I (.;!QOLY?I]%pmS~P emOwyY-U',hB1u(#m8:A}.IFUs wEx6X7rI?rf޺;lvJPlL%iPA$ ܕI"uAeQ3潾0G. OA4AT\XuHM1,#%goCC\b}_\FO\£8M-6,^gd>],9:S+/WhoԽֲ̩")hrt$f2c{T1,ZcXd*MS&vf9 g8 aq(A6Ԫ:3;}އw-!Qȴ'ׁ%%JJ]w9?7tt"}vT&oI"x §h=-R;V]vzБUC-YFf8r7(T atDڜc/б;eQ!krBKTÝ]DdޱU d!ҳd\YF|C)"+1jJIt}-4+Z͏xwU'\P/sDzDŽ~'RQ$K҃<5&lyNMjz@.[k0_?;}V3c -:]Ҍ}2KEOH$$rxбm~CLGX!8|-Rr.[@ˏ~ˆ>U o]Q% C@zCh޺-fyj{U:ўױzFڍ寬5h6۝u!jq-ARf2(Eez.Bb[5lH":풴]1B B*_nQmغt-6|$Mև B+D1X6PFJ ^X1î,+nFS>m)SdVMƨAGbѦk<(pA h憝Y>碑?T@@7\Uoo櫂[È&vRV]s !Td2`-uFpVQ^|~R()R  5e}r,4ʼnT^3Å6X!jF_ʢ ! .Sk `48}<2 nOwbH+j5pZLY lᢢL]:$\II:y¸x r"!wKGRҵ #[NʻBH!!S 23]$64E^OD(S^Z(fo1jRov+I<,oVk)R)>ߔZ&֣jw.|Һ\m p'bsP6q;k.2u(a΂/֌1u,5 }UgyꝌ - !'B\Iꨁ6Aexsyp#a{k+?"(=W+ԅ|M6V7jft #.Nɸ, Y :A7p.ro'D6-zP<߆O6s/Xm!2ЛD8zST,"qR'Lu哬֧v \{5 [{n&\#:M<*Иf_8u3_E\ejlZrc\1N e`¾gb!ҴxP­[yhy͂b%H _0Y@AO//(Oqb/t`UI<sMJW^,c&ѵL/w+ *D)r_\{b aB{jbA PEgnU z+>vT`bl% yPU5,]vcr0z3nE&J~ڪXB(#9&FܭMQ T}e>]zy_=gIc_o-Zkoydvq EbfhL[J ) K*"5^uHeZAc֮!`)* zU+-%( sydj-_̍(5:[xArHa)P@PXJ䋮:ip^X$wHPV]G}nlVpSkΟ/ ~]ؑ*@-~ &B¦h.#MkuAt%k!;8}Pdg+y؂uDZ  Nkgyo̅趪&ym'Au{fo4<%I)Ԇ:ɿBYRh neIɝjuCK/; !?!Dn~"}d_hC1`Y`_J5Kl;{[_Y7@Ūf:?{M x.U/4ȧ_C1Pv?/r`zU) B!aA ywdc'bn,9ISֈ_96suZ+ZaҮ˨C #u[\ռUKpZ wxYT@̷@&߾[8Qdd=dqxËfk>M]hj{ٟWu=03W|(s P,W]p.j6%>TG$ 0"j+,HGLH74?1wWVQH{>^5EVs"v`/G4#`K3;bW^-/1eJpNsm/x'oe1o+%ìȺU $GR4ABɠ Z߸ J7`p oX9!kbX^v9tW^;5Jn,H 'V֮ANP |TaFK ϓgTm@xo DYnzZŖ}10[Uh[)N*6Lz;'ɎQȘ /\ןK.)Iqэײy 4RH 𓴿eTK n hxPQ8 qw@M&+$cVuP >7jtunխfkPOR@rv WOik@s';PҤKD@Y 4txĥvrb;𜄌r%ݕ ~na/ԨĻu4X=oV4FrO˟-28"-AH(k{Eu;b7&Cl+>ɜJrf0"`n$.R3d46z˄Ns>Bk 9\%w=&![OhцtFy=t 74MOySoMuuYTӖf4qv!yw7I5- 9{iXԘmᦼ!R|cj[1BVjYL.GcukC!AH>P7(4tT. Yzǚ*}D.oxҧy.Gȱ1Ю`k*ڀHM4VήwL JUu%o8.1øA'C_0o,[`CKa7/ۂ4s3I &Aן*EMmL`7@ǘy/?ܝ(&ARnTRI _l][@bhviN1-,4 DzxrX)Q5q`0ͪz't 3~{N:Vul垆^PCx3Mxˌ~=[p)Or8C1HgiP H'*fƻ֞[ n-ʩ v$ BVl3Tl+ -?Їow:&FXS](NL&kIR$ely0sPG%\PC`. ZzD f*K26hK.\qhB,Ѥ߄cxFAvu5<ذ&lIi1>nVxHĢ]2x)SeJ>PSs+ v@fWHe1\[]CPծB2؁]P {tɄɠ v@]>)} $KW}e~p{)@ su{frU c5uG-낛c&+'Hb(X&ȯ!zCG@$I&.;TQhح|aHfL5U/93; j?`hcϗKoFyD\Q08arAV\CN0^lXyNU6"3CdJ= |B u.* VXSM{JQޒMSb] zwqp'79è1H8¨{h9LD͞_1HQX8 &GcMu fA 0 IΚeJruΞIǏV=&Xl5*0YDZ߭vW$lA"f[Ɣ*gڻB| $1((OPZ!775䎜C8'*_t&NvWuR.FʆȄVfi+wV];]d*D4J:zVHQl z`cOƃ]*SV잯~6U9%tKǦ $+"P[m$:9'W8kcR5!|FBY9\GP?_h%:H*yhs;sI i +L>f 5˗xLֻkA~ ~o*eؾB!b^lݗ8Ƞ ]5NkIS3F,ǡsU9OC]4o06|Μs+ݤm;[ֺ\;i8dٮz ֌< yrwlN+jqqd+l[<lћ.$wl+0i R1.z'ՁDQ[ a9vqzX9Er*Df{LM "m5oP?X7fׂku9oWo^BZObYF^L(W {@JdE{:YeI2vJ*%܁05ykG_EI(>E^}@$$֞m[:*o0 N˛KD6Q؇D?6;Xf':jՃʌYJT  ×B8D'<`- Ԟ; . Fxh6MO"x7ZmWlHXeoFRϞ^@տІEmMřktC^ae':'a)P,p'_|ɶ~ux;6{w\L7B.΀^UR5ݧv.>@VXКrXx#f%N4'_t(NU +ZZ~_Ad&(gv ]z3 >Jz=Y6ĺ!5-eQKNJy1gRMϯ=L:02: le,|׽=ln?6㫘e77cp/Mk: Vtl,+f m|~L6L .HlCpM9;CT` 5 .:*'DX=2Zb%QrٜZL: >{:$~#?үuXĠoUe!"#Q_B t/@sn ~S(OBȟ9!= rbjwrAx ( ZsKktA!,|[Fvot c&hjG?/ {–ܚMb) Kz%*S+*ALGTs̜.$yz G$Wnh䐧c˾!== X|B]'8[ iDlg:xF L)\x;9ݺޖ)no\h$a.0S7u}ih65zYEwLhv|qc +fp} *tb(?\8$ L [`;YV.:hiXB[.V Dq赪uh T`~HCYşLRlTEcAH)7^Șde2qvV|bAo&xUa)]R2.V g&N7ڀ EIWVnٗdzE B }@DlJٽ'wt['y00IY6'`u-YxGwtbq6 je\9ro(|I$[xMc)E5&4R h4/Q(2N9GocRsŀ\R@vi7[ɗþ2d sT sCj]2zɤC_t3 Î34݈Gh1H)\e~EqeԷBXV/YC&mum<庡9w'*|en[~oAKA@DˮMr 3OK2k&e_Atjs !sz;Pj@E1Zt7e*3mڨT >]#IQqr">u q!6[Ď}-i,ƖόMk׀YAe}jc|!Rӷn˳g{12ׂd 19øӛ)8*xn:@K^aIʲ]}R=rKhZ xɌFl_47Kf}^;n R(g#jM]!(r}n8rU)=qt&P߮M62s\nq Ɖ:$LZBbV~Sr д**6?CA#x~9t̿nnĹd {Y`ET;yXe!{+kɰ7E4Uf1S\BX!Ts`[V(jQ@va_\(_3ƲR@ >J( zG-^ 7v]xʆis^|¨%wLT^X0@{5nt<<)'aͣtm"07&~ ZB+ Ap&4mZ|K G?1tͺU}\ҹEiޤ]FSg70PgW =-SIY L.wcՃߕ_@PD5{97躼ZQXA(nD(χGI%AgB!.JI}{lE~|%`[Ov't3H]sZm<^PUMa$%dC$fэM&YkCvQ)W6n@x+p0A+E ix6.6 nu:h#qq-T@'lw@5r'5_r[xACx9GpkYS<[j ]hQ8foBFi+V$!j;c3煋TG_!"?!/UkHJz)wX_6X+ cYJ7Q"sݓlpX R"]rmo mx\>`js?$VwXLOޤ!"찄ٳWRrޫJ$Mjw| U2f7ク?7NlRF k|Sa|Ve,/pY/Q+@?vDv"?/—}-u:g3eƚ64HJFi!@CR!7=Ά_9 ohYYpE~T+OBDMuW8)ArCn 1cp`P,"6c)\'~<7_hu\䟈#gۤ0@ɓVp#vP3QȋLYy}rS:O- XF 7q}c]}ryalV价&uX] |D튏~ ai#~d'J,F%Ojf+C[-ܩ&?M* %Ef /4%%*sIhvAqs(p@zSK1c䣩 S'٢MOlI\QiM6[;Kakd}Uq_>ĭZ gym0_"[ʈbYY{?5FcwY_"267JTÉN!rR4OYqKQzbB*&bqAȴOT}㱚I`ފm 9MXogX-(Oȫre7rS*@nV.81U:9c-_YR/Tcmf GۥIno>*\,%Û^հfxWf GN#9fAk?{$b?b$&S 槻!/.xW(?nKvU@JhX0p*K|RhT$`2L^H&!z^Cfg%r&NX#8 3eɖdshvY}[To6Λ%_ d&>}s#-{ڲ:V` &czQ4vp<h#[1N£3B=^8xcLu+N_cb EdU9%JHܚ&g$JYȝ+NtQX{KcGE'ܕLv3 CtyfiFl_c%WfKJTR=]G 1phI17#{*)Hծn+ á㡲 BYκm1>[49$'fܐy "ө !_NԂӫ(U{J/ 0Q\"cXֺзWt2HHBxBW<ݝb/LUJ~Ս3 \q6ISs6ћ>GzZ? _@(><g/v{ףͥndpeJ9ޜ喬py=C 5؝M ;Uej5`iP|܋+ A r]vU!pA?z|cӠm*w)2CFgEa}|i Is sk^KzԈ1m&_ w&+'gyPy3GRPL6丅w7kX/H%v]gwGWl#P܋H>`ȣ#F)`o IHp9O>vܕs 2IJKSbr8 STDKraUR N&lwWGׂhvIZeNkEج2mQufN%kG 3 ]EĎ ;o¬+edT7`b%7].$Use4O&QQ@sxaOy#]83&ʦc\}wdɽ&W14 C߷q%3r"oV~%{0 ,.oe}qԌѕ釼Lr6q́ D"^)t2@uw1u^Kvpྣ"$7L֒mo`Y6fW˜xw/3Sr/֥u}8 ^/uM/婁zCJRf]IQZ0t)$tĭ-Xݑ5t+/ͺQ%_ZiXbV~hڇ[ʞ0sJ<Fd;sc3Pcʉl2c]/]F욡ιvϖޕgCf7%0TƆS E9d{80{}Nw,t' M7ʭV̎-$@Ҳ"eu$5 =+QM@z=37?7~BY9$Xs}s wSz B}ׄs]e!+6uXߋ8,6AdHʦܪ {t# ܸUL! P(X FR8tt)590n|ޗYN(k٦˞ܙ2偱T_4|7L,&˓/Ώָd5'Rz.`. EqoTmaFǻ28Ӯ$au_$q C)dLFF9Ǽ\h͈hxN%TR|H..8\T%wLzj'B*}\m=q_!]>fk t{<%O,F0+jW e)3>qQ6GbW9nyiy0ɬ# Hz f4mOeˮ Q^? I_Aby0V^ W0l bN՝)VUhF;j4tW~`8{Ӓ`\kgeYV?wd )T VZEm)fHH_HLTN]\ްriRXL"Q#h^K. 80ѳfg2Y{^pqqѩӲ:#*X 6eN8%$R .7P=jՆϳD畻YEgs#EHKEҤ1 I>T*†Ҝt8wtBuC iuXK?ɛfǷN'߅Wm38B;W͖t&7ʶX9$kl0 6Jy!Dm@$2$NiI@& t5C ;Gvl5sjE{ipqfQs퓝],jzu"Cp&/I 2 ŗ76~HN[7_E䡌"SiQey뵁]WٴYX!Up|sUn!fXܠлZDSoZIˢ4Rf BwĠRg6n8a5ywUj@΂N-`fA\Y&sT{nq?D=xmdV@Sݭ/26KBzh/Uk;k~NIҭ1y>D<:+=I8{,_RNy+0ԙ&$eI4%bPI꫅eMщ~ntpqϧe!.s6(y`7Fߋ5.8,(#]97PAۮa5LG/Œ_lt_EڜinO %x).QYjL@,k"/0by5*3<m l:S}]_?I/VA+HeSnA?sq+$ҕ4,RjemY Nq,oyEz%z&7Z U/݉X! I ;To8[@- /Q*@FY׀2.=%WOz/bQpYEGm9c.4=㡇ȚockDpL%/Dqw/"j, j0-toW qbꃦ.M>8gƾ%)#h Po)iA@Tfzƒ&\fR4x6fيb{/Z/FH]LNd!q!Q*u|BkoI_,!aMT(=/ e$n&3 .@1߼K lCca@_?{c~,(sl2Z4{^xǵ7B*`53G0sR-cK@柊#?]aIwhm ![uJ7Li{`^5S,a?&6IgUNoY]7 Ʒ])@+Yl] z3募yӎ-M!1#tһ9di3c b xצ $ jX .S=kMUX.<;v=CN,qO?qO(rc+[@AaL2:/ lb5ȊMBe"1> X2 iH*MUwhvG6 ޅL 11K1 ;ܚ98nOH]kpms5N{jdu[,f'"Hf, 8AMN! u '0|fm-z,~.V.uiן @w}V6k֛<ن:m cT@N{l źҺ(p*{sh\/ZEr*3bV8Ua%S(i%eq埊 ZIsgVvL": IDϽ3`䙋p)j#B…X ^9M`Yd+>(猵[zm(Šha (ah ޭ+a5ӒZd^m<(g,Ÿl0P1,đsǖ}- $"M842L)U!T+x\B􎶱Vi;qׅ3Ψ3<*C;Xtsġ«J\"B 9Fot>O?_olJ\I93AߝSq[p$kVm^f]rԋxf2z_BکhXOWzGnn:/ c 6Qɾ8<|L}\eܓ*MB+(ZyCTPhA16ACh蔻|e{ۏʼnDgĤFk\5('}5I`05- e).Ԭ AR f7FYrCϕhśi8m`aweTc?B\ƴk@ iA ݗi#nv--d\*fK Xks =r—?>i˶=|%V!y+lWBrrt+[iq_L#o[*0(A/wgM1U'@^Đ2q4{P0CT_Oʋg@ׅgB[7j#A2j;bf͝aA0p8~Jt%Q(_"ѓ}u]`<;8~Όe-D'; @VYŜ d&M[SۥfRQnh;AEQ(adzTun}L%63t*|S|~"G}G\%w4#YcIm=ӎIQr8Ďu)5|]@j{$X@Ȼ=[1ŠHuT6>[!`Ǘ5di2a3@01 73ޘc1v٬6)GAGZNs#2 zC/|- DC]lkP$@B p=iA!VM x|M<5݊O-,3BOZX sd4|f]{*x(PXjs(Qb /t䫒,MrF1tc5B<W0t\#CqJTAAjZΐ` .ׂղDޑ6xCQ Gˣ }+7J5,Ii( 좮Qa],gv;M''c6_qvnsY77Wh@Ǯ_`NJO=qKB c''c*!bfxB&$= Ŵ{Ȳ)~/#QVG"Iܲ?koo|ZR# ]y7 EF Cc7|Q~;W;J/gĄ FK@,_}҄B5Ufeh˄zB N4% 9RzKѮ[]-5 Zt?뜆*> GQ=Y/E4\bT껳-vs2̫uzҍWI Lu\+ֲh8 0U^pbGxM u#3|D1jjqI"iÂl3s@(urܭ4?kZ±@xo M8ֽsft2\kLƏ vp.ZP_LXa}j\ZEffmeA/END..@|nOMMUchގI#=ph 13uCG1)xcb;9vDax{uRg6I:2ñ]";ƫdvcx";"s) x߻M`ѥTeܟ&TN%*hQT}*`n<$*&3ܙ% (+[WMW&!utKT ' "m o^/ Ԁb7p7k<3LuV#V[i"==>Y;xcH&4-H aOVl14S gSJD@Y7'w"5B40A Z+}0#\rʢY+ݨ^bZ5I0T '#̈2g^M LO9IS䃂bӭV\!3F}ʖXe]}d˜>m)`wZ`3hUF5o\/qEBGZۏD9J-;CXb]l4R<IG += HUdn>"zJɿܘUo&*\OK?׺:%hÙS 6 *>U2K ס'D5.#==p 0"*!5"yZgZ*>e\T#qޢ!~ȿL@`/K~tW* 1 @^H F>_/b$ k8@R# HFi^nė\b%ZO# \PQ&g`YgjhckY&ÝBdVL\'_קd_ND%XYwke],},T%/iYknÑ&' φ  2' CQ8*b9?wD=>އJu_/ hW rΏ{ζhw#rG*nH@>4'?`k 1B.J6iH6϶ p+ѫb3dG7əSmv}dpDȓ7Nz`Dc9| ZVyo[u\jڍn:\L35p Tĭyְʽ䬒pG`zS`Ra-6YH(Շ6b}\!$yAu,yHfvd3jZxuOul[qV;B'ٯťsBlج5C 2MD W k ]g6pTLdHsk$14o_Sb#Xv3eu^]tt2=e æֱy og>tL{ԋTHB=Wf<( whsL;K0b\5i^wD]ddvD)(~)DA[ å>NqD|=$y$sk);6W\݇a {1鷃\ѣvz^ `tp u"o˿ cmc~qpn:ݟ>;; 8̊Ɉ[EcTS!:B0^*{S9i>F`m&q[RhDn^L&l5E2e$~Б˘mVTS>Yn/}'G.1 0VnK 'JP.!Z!OdvIiHj`*%?rJ`x[k\wc kŒ<>0 7W 78 )d~X5}%{9Bg| `KZsTwQ/?gW0g2jhSxBs$ZJyC>֋ Mh#r5mӮO<"쬚/([ӪSQՍN:=GrDDApԗ\GMηZ,JG]V4Sc)h;81REBz\P'l(J_1JfCK)DmJgЖLiqcD nۻysXuw?m`nw4T9ᬑN+Z Knc|u=nuf2CBHf>,eHN͢)3%٬x|wɨ/C*iHB<Zh1p败bN+,EyE ͍Fz7H,sU &t08#/4yp݄{ .Oϣ[pP*a0)x,{9k%=A@2UV&XJ)NN&@i: b;SΘsmq븚xL8g syPO8_mR3ymX\c$ h.&p0E XEikxA\+Vmb\X@-TO z R*D.#8bYX.®WqI6|"/9iUDkYb|b͌ e"EA0"Jӱ^dk݊!Pt F3UGdv.HaZ@cEnhWr:ꀦ) *S *{7k t=w'\oX p4MTIr45d׮HɈٚ0q nแcrq9_íDoӲ'ՆPe>(虀:xY2'`[, wς.6ם衻TJC\8#H{L@daF_ɺQcmPN`1K<1,f\sPU_$#65p0:XAlJF*≳;<]*s>vWw)p,DKqI:0 &q̟Kjf~&: 6D*Vڛ_r VxW6i}mMǙ.T(D(0[W3UCXlKf%:6> 8 [bHʩq$_ N +MžT8,ՙFgu$GU;m$4{e)HPg/H1 }N'i5f-nOYR0a7BɏB]+u*ϾڃS_̓*IYF?]vH`P>7%pbќՏtBu%IGKG%WRUɓs> ;Hۼ!2W͓D|ByPJZ9N܂[>rIhlˊ.DljƘz:T}zvj(sxEj)^3K:&aP׶[q!JבcGi {n*bӭJ6TB6_ 1æll~n$6h1bPɍ,\o0s\!)por $M5b0aR: R  _k~s{X=Ѩftb$'C_t0M 7fuGJg鞈0vL[50(S?>1)Wg%g2w rĄt~4,`ݗ?=)y|r)`I=Xx$CPUKx9kv(AQQ? |3q~@Ѭ[]@ʒtAbdsDYuՆK?)ɸ Uo682W~3pdS(GiirՌ=4\*yW LVJB:>3p$2Z@ 0}1;te}ٌ:5dRsYyYbNLʮ C>BBudnRSn&SVLյMɾu@o z_Ox i6E"oܸ m] [D-@z3C,g1+It;F 0:rfF-S |LӴΆ(RS6-}..C-"F%E}]r(56kNb^D땥1zBf J Izs;뿚tsZp--Jt{ȝ10.~pPEw0n\usE?p]>H j->uQ "[ g"V|nlVo9ɷ(vFI#RQyiFD2)םGa5av=#HSl.?rWL˪GV4~RW+pzgua")Ew6˱[7u@]yMb<KaT\cpD| v Oǰ\biRd+xZA PjjRݚq=77]O +F\UR5ýysAG'oxlا2ݖ1l}z;ŋ N[0Q*iwMC-/ei3JG}c˻/ҍ/KDl'vv4N+Weg*SEȦnƖYIWNA?jwy AKQ{/[ 5N +3$YOgzL]!G/ }E$Cg\6SHTbq$.C FI71$&]^$o4y Ki?$-}g#5u&Z9:Q]zC|q4~N. NøEg*8$W}I=?ugLQDwč(7Id0\xʋ(OEQCe7l '/an8S# 5Q(Ӳ4Myk;RP9aŐ xXzgn>MZJS^=tfn7{bǽuF3pOȇx˫ԦD1ꦋhg- hZP#q+>j1"VHS5=+ZsɛXn=,4ĕ;2!m vRIT_M$tNޤ4|è6A>\Z0b1'ZOt݈4S, 4)eN8"moj}[= viugB o{w0H\Sv["ҫD&Mҝo]hS/THqo\V/|Ӱߊ WQH="E72 x'Mag8LtkcK9֗WL<&r&=@tʗV>;Jn×NwXJ \OQ-E O0vòŎN XQ+LNI3 Q."#-HBK]'\3 D|l8W(\t VE\vo_[iou=ب&c ݧd)6p넞KVT,_~.ǜ|hZ`>iFDާO#){N` @aDKQrpSVWO+ZF>ۄr$Ě bIo+/d}עW5N`.A;M%dOϼ3)L?{#f>RH8Ix4Iʑ>r voݑt9!=6H\tEZoFWk*""q~pKN*(aR~F^4[]-@!$PW^R]=Hqb\IӉ}u>^efFyu 7eВh-{DxzvX{d:P|lADRCz {u򓩍[PK[ߨnBb2 dc3a!BDA!R A+NO#j] V z/@S 'Dc2R_` (MZ=ΨrA; !s)-ke~gȅHw4pϘ EB}va\5W%:zppOX{֓Zm% ^LprbKYYQg]<g94^-,2~747j-X 2 &. DOE8k9a̖"#3qO(OȅFrXoxc slS9Ai?DSْޞo@&!/ (H$6/kЕVft̻R6jf`$ߙx:vR>XfV/F@lL:93/0 $rlmۇ*k gӳ*噲 $4ӈ0Y/P˒z'KJ W('*KFEn|UJlNC\\'_$#|d"rq) 'kWTRMSIE>~.]²AfP_v{U +ef"UJfͿ[mh4~<&dm+Cxhj#Ru`ߛܯxy~ rK6c H 19RL9܎JP<4T*jgbeΣEXiAg']V~W͢ܐ)3>&zmyG_M0#AB`\5?k PJ|q8holҊVy :9~QX !qx }FGo{;oIҤ\bHK'u~Ms^ƁYmq6awDǤÔm䏁h.} O/ Lz/'ulQZSlTy*Z&ڬc׊\ˢ 1!}NA@ڿF )N _z#|+ҍgKwkOT%!WæW?Hӿ4tn̏K=K}ڶ:!\,S2~F)(*-Iuy5}a& "NH_X#c]yHiX= 4/6LRy2ڱ`zKt.7K'V4LI'-~岻sSO;M ;sdaݍ90N 0J7WKŌ0Rg8=Z5+>fIaITQ;9+H:E`{EbBS؏1ZhJD'm85j_:!TQ]__/H%a0 5$RN[u&$5ҹЧKN|BWT6lYF >_dq!yk  0p 2Xc Gf^;c|clhlw +zR(=Q`pwY,n tp)~f[\_k,;Y(:6?z*NR+˛5R0ԕY&X"X5Ua2nEn1{dwpHOM0W_ޭr^S ^sTJ/k~vnTaP8?:⒥5֍)Ϝ9@#HY-QwjG逮){bFS@㌤AP-H~1Aaji7tNCl%j2÷{mҊu;$gn`e\@*Fl8 nj K'[ev~`%f?)P)ʆzN^X؊IPW,5?Ter 9Mv"U,?!̛+ĸ!^gܹ@ ^_`ߙ4t 61b'0 <+ᤍ_9: &̉fߔ"nN"w|m)84`¥U HM <EJ`1iӰ[:tEkЌzX(Ols9THp)fUH<3h$~R Ϋ^OKʼne{_ Ϣq6v cB琪6r/LJNCp6 7a*=ҷ3@/wxrX $"! fHdtHakw)y|0A~c~DA*U,Qtx B8J63u[2H)];6BSHsNSU{U(uo7^0YFwlT!(e0Y n>;B`'HTt}Jpv _C&=ɓHިWTh +} :f 엃 "6v 'X.v/# =GXciPbQ1@ZpESjU 7f:?lN˳XB1± q7' O*j4VR ZJI>lP!.Pbl;> Qຳ5T t{>=^L]Kҭl}U[ȷkDZSqClLs54i>1^+.")TŒR8]ޭM#0i!jn4n[[BHGFt o%ǏO܄9K<6 tZ>6ddk *EQALdV6k=;\#7:8pPZh]xHgF(y̌>׷C-~p~c I(ctF@Q*}.tW8 .L!_ʵZ\0۷`2L~F&Z-O_:)(6Z#59?OFB($=Q Z9w_د"Ӿtusܒ 7+6R._ŔM)$sMB \Y^QOzZ?ӵ H]_3XGV+YZ/ok`xٔ7Fy/ÔM =VQ?]9[DnKp{rP;yh?/>tn/E CZ&$O?[9͸9UY4ι*rd^{&)@q yqk%F&6ykip i4o:yru|ࢲ" t$R+O܎ !-{)neV# C,V?NKػ4 ʘ[3 Pclhv[j.RUA zfJDS%[6ReM&LubE{(<j^&eXS;-yv5ʌx;ZL`qDjϝVbûkt}wMr)BtLս'.tUxB:;\]V^Cbɚ'DoWbsia Gڗ,`44~+칣Цo!z}vL O}m+9hJRȯH:Zmr1K8jL {!\Ǜ18,Խ 5WV芯'3wNxF:}L1LԷ _ZN^ # '8j6K4I~pA5 3T+DGBb1AfFnZṞck9,VK݆_Gu4,,wX_ι䪦*p4@5Si{u˲ r wިT_JTj\Lb0|?nu+怆'4{Xp~-,zP !Ubiz`7Ł [:hF*)'|pG- [QaM,la"-?F?maY|Ug4,co8tjD"Lxܕڿ?y$<̕gOa+|龙L$`5 Q[܋Z".+y\=ay'#Ep3Xp˻n,2#hG=Au٧zÆ5EϮQBo|K{+m G>_GpY̬ʔrk򔂱HچUVz[ Q~uPyIb3m{X[4f-ף5ݰN1( )`bI;Po""LU>迤 E-$5x'SH )E\ESDE!F}=e00rGl[7ɘh xzA|qZhfJ9o⩩ǿ$>W'IٵCZ:-S,lrp xE s:*|'C=h,5!K_ X N9Z^>9 &l)0KāI[nB1MB_W^5;KoVPF+zKQ6aL*@\^e}ckNRBzw&o[ )*[&{uˤ 9zcUK U,_vz]/3uB)MplzTPU_ȭwЕtsO@ V\f%F~6T:^,x/"].ЖÇr.ӷq;0$NKx֕}\8] h=ؑ-R確 (xj6;zV!zGm2_BΚp&`./qn~j\FK-q\m#>2 2:/[MQ⎱LM|Q?"Jf?P/HT7 A%ϬqqreTFZtG7W .|;9uU>p(y>n$(ր&Ѭ~Ku m ]e0U #4LbE(]?xm3}'ٔ7څ R;~56U.(.m0N5{*^`x9l$ Qf71uVH,xj gk+2F{.$N%8`!V4@vl,θ9ت4 6<hא0#qˆ"PpWgd}*\_}x +AKx˾/pi`Bd4^!Y/~i*< O-(kjvϭ@Chc`< 2W1CN {okXo-viּ5 G4^sH "=TRœR藱1hی Rnղ,#zi@g:$3:.>ӃCwj'ا}1L Y ̀toUBWSL%^ņoW$,fDC=LY/uj7UPP+6ќVi3^o $خd_TB=ėE1ϣE&L'3f޻S#fd׀-,Me@h^r,] ;rw[PBPЪeO5ˎ,ؔ3#rL %B|| r~tPK5сs6;FgɈۏp/(4.bS\v@=Q2OWǰkM1* P3L =g@*.Y?o_rG҂$ 0T30Ҧ\ 2wo;w4[[&tsAt¡}eވD5Rkˤi$)*O-NcTܨE@ mf70cDϘDAh+%rs-2 D,-c$ia䞬1kmMg COT~颟ۋ-FwcD\$UE:[q$lX0]= 0^- YG gʑ OKPh+RL]L !)ߚ$fo`'+LyLiJJ83ei1p- ~3F%f$j7t rY%{fB;`ݽ ,Լ{)IL*]mL`nό|6 YzSbwc؎E|)q1h+ C~0}H:db .2 ڬ`1:_rS+,,cq.gxOmlF N *Db .LZ) ŗ]ɮߔ v;Ckܻ^=YcW=]{/wH@W7咡NTW~{ZY%|%xFF#݋*䪌m]Lidƶ"TZ .lDG9y%//:le0 ǣҡm̍YQ-b!S `Y;-? 6ȬW=.n[#Й8䷁t@y5e16P܂?Wxq6`w$NQ<,kf ոzVvybb<@BaGL?A]2}@O/ay TFK/׶P!M~I 4/1GR=kB SHtamCHq$&^%u_#cFRF hO ^x#ӆWvkhZQ*iJUŃ(kO3nc>;]O7 -t82CHq9v[gYfOkVq! ;_mմCH?ndA,au2ƧI-byx&g(@r 숻uM27֗v[ i5F\~StWhɣtYfAVqnT-X`f;Mgw0BL70 ɯPye9n&V_X.)A/S~lS2˜ jHXyL58i˙TfgaIOB;"_%dq#GHq:Ua֎j H\- jDΝcAamC6HE:s[;|@[M_<@^6 FvM_1Gc3wO' p@ YZ