nss-3.28.4-15.el7_4$>_i@Q><$?d   0hl k`         \   ,[<<t<(8V9 LV:_V>ߴ@߼GHIdXx[Y[\l]^bdefltuDv wxy,Cnss3.28.415.el7_4Network Security ServicesNetwork Security Services (NSS) is a set of libraries designed to support cross-platform development of security-enabled client and server applications. Applications built with NSS can support SSL v2 and v3, TLS, PKCS #5, PKCS #7, PKCS #11, PKCS #12, S/MIME, X.509 v3 certificates, and other security standards.Yc1bm.rdu2.centos.org#]CentOSMPLv2.0CentOS BuildSystem System Environment/Librarieshttp://www.mozilla.org/projects/security/pki/nss/linuxi686# If we upgrade, and the shared filename is a regular file, then we must # remove it, before we can install the alternatives symbolic link. if [ $1 -gt 1 ] ; then # when upgrading or downgrading if ! test -L /usr/lib/libnssckbi.so; then rm -f /usr/lib/libnssckbi.so fi fi # Install the symbolic link # FYI: Certain other packages use alternatives --set to enforce that the first # installed package is preferred. We don't do that. Highest priority wins. /usr/sbin/update-alternatives --install /usr/lib/libnssckbi.so \ libnssckbi.so /usr/lib/nss/libnssckbi.so 10 /sbin/ldconfigif [ $1 -eq 0 ] ; then # package removal /usr/sbin/update-alternatives --remove libnssckbi.so /usr/lib/nss/libnssckbi.so else # upgrade or downgrade # If the new installed package uses a regular file (not a symblic link), # then cleanup the alternatives link. if ! test -L /usr/lib/libnssckbi.so; then /usr/sbin/update-alternatives --remove libnssckbi.so /usr/lib/nss/libnssckbi.so fi fi /sbin/ldconfiga$@,@!HjLVT>A큤A큤큤큤Y YDY YFYFYGYGYDYHYY YYYY Y Y Y Y Y 55462b1b14fcf5ef68ec5990b973d258c40f9ea90950764b945cc7340401f46be45105a21696a26c834cfaa3f664c42426c99546094e22fbe3a5e1dd3fbc1f336bda6ce59a46dea427681cc8a76295e34c7c2f17f4a2f265b39cfe258ab65ded6115cab6d646a05dd6b63e21c488da6bc36975f6e5ad8d6371c30a166c41cddca2fa0ba8e20d1aee355a0f45266eb3e53fb5720ace9fe4c9bcc964f6d4fdf87dc56e10dfe5ea38b882421ef0c8c2ad445274c6a4db1dc1a9a6dcdc930d2a98483790a5404f6b7edb652544eb75bfaa8f1c515f41ef14369248151d7c52cd249e7360cb5115e52422b0d1de69c1e535528585ed24e60a3b7ffe765ab247005439e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855ef24ad5627e6b6e8cbab8fac602a1d9a74d4436089b58e37048482563bfcae9b0ff93dc4af308b03cf61d94baddb9e14b6eb5a90ae063d72594f7103106b6e214469d9308989daed2e3331e0eeab4bb1e07caedc4ad1687e89e08f38009113efc39e88da359436ae054541e47d0e15f4f19aedc9481d175c59222a663326f40314415f54c787002ed48255908b1cc64e3101db6692c3c41508583ae1492b540c213d15174d19980502352873bee9be7d3bf3c86f63fc525f63196beb97e7b7634215b75645fc6e01a87b2bda2eaf2d9252e9fe9b35f31027a1f97c8d05e6c36e99482ddf66076de438a00d85ccd6e28d23c4a6e884d064b9f2129483b4e541a06f3dbe885bdecde42b0130ecd8d6dac99b499389da59b4584428c3a36195f44c@rootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootnss-3.28.4-15.el7_4.src.rpmconfig(nss)libnss3.solibnss3.so(NSS_3.10)libnss3.so(NSS_3.10.2)libnss3.so(NSS_3.11)libnss3.so(NSS_3.11.1)libnss3.so(NSS_3.11.2)libnss3.so(NSS_3.11.7)libnss3.so(NSS_3.11.9)libnss3.so(NSS_3.12)libnss3.so(NSS_3.12.1)libnss3.so(NSS_3.12.10)libnss3.so(NSS_3.12.3)libnss3.so(NSS_3.12.4)libnss3.so(NSS_3.12.5)libnss3.so(NSS_3.12.6)libnss3.so(NSS_3.12.7)libnss3.so(NSS_3.12.9)libnss3.so(NSS_3.13)libnss3.so(NSS_3.13.2)libnss3.so(NSS_3.14)libnss3.so(NSS_3.14.1)libnss3.so(NSS_3.14.3)libnss3.so(NSS_3.15)libnss3.so(NSS_3.15.4)libnss3.so(NSS_3.16.1)libnss3.so(NSS_3.16.2)libnss3.so(NSS_3.18)libnss3.so(NSS_3.19)libnss3.so(NSS_3.19.1)libnss3.so(NSS_3.2)libnss3.so(NSS_3.2.1)libnss3.so(NSS_3.21)libnss3.so(NSS_3.22)libnss3.so(NSS_3.3)libnss3.so(NSS_3.3.1)libnss3.so(NSS_3.30)libnss3.so(NSS_3.4)libnss3.so(NSS_3.5)libnss3.so(NSS_3.6)libnss3.so(NSS_3.7)libnss3.so(NSS_3.7.1)libnss3.so(NSS_3.8)libnss3.so(NSS_3.9)libnss3.so(NSS_3.9.2)libnss3.so(NSS_3.9.3)libnssckbi.solibnssckbi.so(NSS_3.1)libsmime3.solibsmime3.so(NSS_3.10)libsmime3.so(NSS_3.12.10)libsmime3.so(NSS_3.12.2)libsmime3.so(NSS_3.13)libsmime3.so(NSS_3.15)libsmime3.so(NSS_3.16)libsmime3.so(NSS_3.18)libsmime3.so(NSS_3.2)libsmime3.so(NSS_3.2.1)libsmime3.so(NSS_3.3)libsmime3.so(NSS_3.4)libsmime3.so(NSS_3.4.1)libsmime3.so(NSS_3.6)libsmime3.so(NSS_3.7)libsmime3.so(NSS_3.7.2)libsmime3.so(NSS_3.8)libsmime3.so(NSS_3.9)libsmime3.so(NSS_3.9.3)libssl3.solibssl3.so(NSS_3.11.4)libssl3.so(NSS_3.11.8)libssl3.so(NSS_3.12.10)libssl3.so(NSS_3.12.6)libssl3.so(NSS_3.13)libssl3.so(NSS_3.13.2)libssl3.so(NSS_3.14)libssl3.so(NSS_3.15)libssl3.so(NSS_3.15.4)libssl3.so(NSS_3.2)libssl3.so(NSS_3.2.1)libssl3.so(NSS_3.20)libssl3.so(NSS_3.21)libssl3.so(NSS_3.22)libssl3.so(NSS_3.23)libssl3.so(NSS_3.24)libssl3.so(NSS_3.27)libssl3.so(NSS_3.28)libssl3.so(NSS_3.30.0.1)libssl3.so(NSS_3.4)libssl3.so(NSS_3.7.4)nssnss(x86-32)@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@    @ /bin/sh/bin/sh/usr/sbin/update-alternatives/usr/sbin/update-alternativesconfig(nss)libc.so.6libc.so.6(GLIBC_2.0)libc.so.6(GLIBC_2.1)libc.so.6(GLIBC_2.1.3)libc.so.6(GLIBC_2.3)libc.so.6(GLIBC_2.3.4)libc.so.6(GLIBC_2.4)libdl.so.2libnspr4.solibnss3.solibnss3.so(NSS_3.10)libnss3.so(NSS_3.11)libnss3.so(NSS_3.11.1)libnss3.so(NSS_3.11.2)libnss3.so(NSS_3.12)libnss3.so(NSS_3.12.6)libnss3.so(NSS_3.14)libnss3.so(NSS_3.14.3)libnss3.so(NSS_3.15)libnss3.so(NSS_3.19.1)libnss3.so(NSS_3.2)libnss3.so(NSS_3.21)libnss3.so(NSS_3.22)libnss3.so(NSS_3.3)libnss3.so(NSS_3.3.1)libnss3.so(NSS_3.4)libnss3.so(NSS_3.6)libnss3.so(NSS_3.7)libnss3.so(NSS_3.8)libnss3.so(NSS_3.9)libnssutil3.solibnssutil3.so(NSSUTIL_3.12)libnssutil3.so(NSSUTIL_3.12.3)libnssutil3.so(NSSUTIL_3.12.5)libnssutil3.so(NSSUTIL_3.13)libnssutil3.so(NSSUTIL_3.14)libnssutil3.so(NSSUTIL_3.15)libnssutil3.so(NSSUTIL_3.17.1)libnssutil3.so(NSSUTIL_3.21)libnssutil3.so(NSSUTIL_3.24)libplc4.solibplds4.solibpthread.so.0libpthread.so.0(GLIBC_2.0)libz.so.1nsprnss-pem(x86-32)nss-softokn(x86-32)nss-system-initnss-utilrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rtld(GNU_HASH)rpmlib(PayloadIsXz)3.28.4-15.el7_44.13.13.28.3-43.28.4-23.0.4-14.6.0-14.0-15.2-14.11.3Y˒YéYX@YaYh@Yg`Y1S@Y i@Y i@Y @Y.Y@YXX~@X•@XO@XO@XBX@XX@XWu WrfWc@Wc@WBWo@Wo@Wo@WW WW@Vn@V@V>@V`VpV'~@U6@U6@UAU@UUUݪ@UUȒ@UU@U'U3@UUx&Ux&Uq@U?v@U8U0U-@U'@U:TTq@TTto@Td@T)IS@S@Sہ@S@SnS@RJ@RRUR۾@R۾@R@R@Rx@RΏ@RkR@R;RiR@Rz/@Rv:Rt@RrF@Ro@Ro@RnQRe@RW@RSR@QQQ@QKQ@QQW@Q'@Qq1QNQ9Q7/Q#@QQ @P!@PՠP @PqP@P@PAPXPd@Pd@PPP@PP5@PPnP;a@P(@P H@O;O;O@OiO@O@O}O~OiOYOX@OOdO&@O!@@OO@O@N>@N>@NNܲ@N`NؽNN@NuN;@Np@Nf @NA!@N*NpM@MWMc@MM@M@MMfH@M^_@MZjMS@MQ0@MQ0@MQ0@MQ0@MK@MGMF@M6@M-MM@Ls@LOLLZ@L6LdL@L*@L@LA@LL@L4Lx@Lx@Li(@Lf@L_L_LT@L0L0L K @KsKsKKCKCKCK]KMKLd@KD{@K<@K5K4@K,@K+nK*@K K@K@K@KJݦ@J - 3.28.4-15Daiki Ueno - 3.28.4-14Daiki Ueno - 3.28.4-13Daiki Ueno - 3.28.4-12Daiki Ueno - 3.28.4-11Daiki Ueno - 3.28.4-10Daiki Ueno - 3.28.4-9Kai Engert - 3.28.4-8Daiki Ueno - 3.28.4-7Daiki Ueno - 3.28.4-6Daiki Ueno - 3.28.4-5Daiki Ueno - 3.28.4-4Daiki Ueno - 3.28.4-3Daiki Ueno - 3.28.4-2Daiki Ueno - 3.28.3-5Daiki Ueno - 3.28.3-4Daiki Ueno - 3.28.3-3Daiki Ueno - 3.28.3-2Daiki Ueno - 3.28.2-3Daiki Ueno - 3.28.2-2Daiki Ueno - 3.28.2-1.1Daiki Ueno - 3.28.2-1.0Daiki Ueno - 3.21.3-1Kai Engert - 3.21.0-17Kai Engert - 3.21.0-16Kai Engert - 3.21.0-15Kai Engert - 3.21.0-14Elio Maldonado - 3.21.0-13Elio Maldonado - 3.21.0-12Elio Maldonado - 3.21.0-11Elio Maldonado - 3.21.0-10Kai Engert - 3.21.0-9Kai Engert - 3.21.0-8Elio Maldonado - 3.21.0-7Kai Engert - 3.21.0-6Kai Engert - 3.21.0-5Elio Maldonado - 3.21.0-2Elio Maldonado - 3.21.0-1Elio Maldonado - 3.19.1-19Kai Engert - 3.19.1-18Elio Maldonado - 3.19.1-17Elio Maldonado - 3.19.1-16Elio Maldonado - 3.19.1-15Elio Maldonado - 3.19.1-14Elio Maldonado - 3.19.1-13Elio Maldonado - 3.19.1-12Elio Maldonado - 3.19.1-11Elio Maldonado - 3.19.1-10Elio Maldonado - 3.19.1-9Elio Maldonado - 3.19.1-8Elio Maldonado - 3.19.1-7Elio Maldonado - 3.19.1-6Kai Engert - 3.19.1-5Elio Maldonado - 3.19.1-4Elio Maldonado - 3.19.1-3Elio Maldonado - 3.19.1-2Elio Maldonado - 3.19.1-1Kai Engert - 3.18.0-6Kai Engert - 3.18.0-5Elio Maldonado - 3.18.0-4Elio Maldonado - 3.18.0-3Elio Maldonado - 3.18.0-2Elio Maldonado - 3.18.0-1Elio Maldonado - 3.16.2.3-5Elio Maldonado - 3.16.2.3-4Elio Maldonado - 3.16.2.3-3Elio Maldonado - 3.16.2.3-2Elio Maldonado - 3.16.2-10Elio Maldonado - 3.16.2-9Elio Maldonado - 3.16.2-4Elio Maldonado 3.16.2-3Elio Maldonado - 3.16.2-2Elio Maldonado - 3.16.2-1Elio Maldonado - 3.15.4-6Elio Maldonado - 3.15.4-5Elio Maldonado - 3.15.4-4Elio Maldonado - 3.15.4-3Daniel Mach - 3.15.4-2Elio Maldonado - 3.15.3-9Elio Maldonado - 3.15.3-8Elio Maldonado - 3.15.3-7Elio Maldonado - 3.15.3-6Elio Maldonado - 3.15.3-5Elio Maldonado - 3.15.3-4Daniel Mach - 3.15.3-3Elio Maldonado - 3.15.3-2Elio Maldonado - 3.15.3-1Elio Maldonado - 3.15.2-10Elio Maldonado - 3.15.2-9Elio Maldonado - 3.15.2-8Elio Maldonado - 3.15.2-7Elio Maldonado - 3.15.2-6Elio Maldonado - 3.15.2-5Elio Maldonado - 3.15.2-4Elio Maldonado - 3.15.2-3Elio Maldonado - 3.15.2-2Elio Maldonado - 3.15.2-1Elio Maldonado - 3.15.1-4Elio Maldonado - 3.15.1-3Elio Maldonado - 3.15.1-2Elio Maldonado - 3.15.1-2Elio Maldonado - 3.15-6Elio Maldonado - 3.15-5emaldona - 3.15-4emaldona - 3.15-3Elio Maldonado - 3.15-2Elio Maldonado - 3.15-1Elio Maldonado - 3.14.3-13.0Kai Engert - 3.14.3-12.0Kai Engert - 3.14.3-11Kai Engert - 3.14.3-10Kai Engert - 3.14.3-9Elio Maldonado - 3.14.3-1Elio Maldonado - 3.14.2-2Elio Maldonado - 3.14.2-1Kai Engert - 3.14.1-3Elio Maldonado - 3.14.1-2Elio Maldonado - 3.14.1-1Elio Maldonado - 3.14-12Elio Maldonado - 3.14-11Elio Maldonado - 3.14-10Elio Maldonado - 3.14-9Elio Maldonado - 3.14-8Elio Maldonado - 3.14-7Elio Maldonado - 3.14-6Elio Maldonado - 3.14-5Elio Maldonado - 3.14-4Elio Maldonado - 3.14-3Elio Maldonado - 3.14-2Elio Maldonado - 3.14-1Elio Maldonado - 3.14-0.1.rc.1Kai Engert - 3.13.6-1Elio Maldonado - 3.13.5-8Elio Maldonado - 3.13.5-7Fedora Release Engineering - 3.13.5-6Elio Maldonado - 3.13.5-5Elio Maldonado - 3.13.5-4Elio Maldonado - 3.13.5-3Elio Maldonado - 3.13.5-2Elio Maldonado - 3.13.5-1Elio Maldonado - 3.13.4-3Elio Maldonado - 3.13.4-2Elio Maldonado - 3.13.4-1Elio Maldonado - 3.13.3-4Elio Maldonado - 3.13.3-3Elio Maldonado - 3.13.3-2Elio Maldonado - 3.13.3-1Tom Callaway - 3.13.1-13Elio Maldonado - 3.13.1-12Fedora Release Engineering - 3.13.1-11Elio Maldonado - 3.13.1-11Elio Maldonado - 3.13.1-10elio maldonado - 3.13.1-9Elio Maldonado - 3.13.1-8Elio Maldonado - 3.13.1-7Elio Maldonado - 3.13.1-6Elio Maldonado - 3.13.1-5Elio Maldonado Batiz - 3.13.1-4Elio Maldonado - 3.13.1-2Elio Maldonado - 3.13.1-1Elio Maldonado - 3.13-1Elio Maldonado - 3.13-0.1.rc0.1Elio Maldonado - 3.12.11-3Kai Engert - 3.12.11-2Elio Maldonado - 3.12.11-1Elio Maldonado - 3.12.10-6Michael Schwendt - 3.12.10-5Elio Maldonado - 3.12.10-4Dennis Gilmore - 3.12.10-3Elio Maldonado - 3.12.10-2Elio Maldonado - 3.12.10-1Elio Maldonado - 3.12.10-0.1.beta1Elio Maldonado - 3.12.9-15Elio Maldonado - 3.12.9-14Elio Maldonado - 3.12.9-13Elio Maldonado - 3.12.9-12Elio Maldonado - 3.12.9-11Elio Maldonado - 3.12.9-10Elio Maldonado - 3.12.9-9Fedora Release Engineering - 3.12.9-8Elio Maldonado - 3.12.9-7Christopher Aillon - 3.12.9-6Elio Maldonado - 3.12.9-5Elio Maldonado - 3.12.9-4Elio Maldonado - 3.12.9-3Elio Maldonado - 3.12.9-2Elio Maldonado - 3.12.9-1Elio Maldonado - 3.12.9-0.1.beta2Elio Maldonado - 3.12.8.99.2-1Elio Maldonado - 3.12.8.99.1-1Elio Maldonado - 3.12.8-9Elio Maldonado - 3.12.8-8Elio Maldonado - 3.12.8-7Elio Maldonado - 3.12.8-6Elio Maldonado - 3.12.8-5Elio Maldonado - 3.12.8-4Elio Maldonado - 3.12.8-3Elio Maldonado - 3.12.8-2Elio Maldonado - 3.12.8-1Elio Maldonado - 3.12.7.99.4-1Elio Maldonado - 3.12.7.99.3-2Elio Maldonado - 3.12.7.99.3-1Elio Maldonado - 3.12.7-3Elio Maldonado - 3.12.7-2Elio Maldonado - 3.12.7-1Elio Maldonado - 3.12.6-12Elio Maldonado - 3.12.6-11Elio Maldonado - 3.12.6-10Elio Maldonado - 3.12.6-9Dennis Gilmore - 3.12.6-8Elio Maldonado - 3.12.6-7Elio Maldonado - 3.12.6-6Elio Maldonado - 3.12.6-5Elio Maldonado - 3.12.6-4Elio Maldonado - 3.12.6-3Elio Maldonado - 3.12.6-2Elio Maldonado - 3.12.6-1.2Elio Maldonado - 3.12.6-1.1Elio Maldonado - 3.12.6-1Elio Maldonado - 3.12.5-8Elio Maldonado - 3.12.5-5Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1.13.2Elio Maldonado - 3.12.5-1.13.1Elio Maldonado - 3.12.5-1.13Elio Maldonado - 3.12.5-1.11Elio maldonado - 3.12.5-1.9Elio Maldonado - 3.12.5-2.7Elio Maldonado - 3.12.5-1.6Elio Maldonado - 3.12.5-1.5Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1Elio Maldonado - 3.12.4-14.1Elio Maldonado - 3.12.4-13.1Elio Maldonado - 3.12.4-13Elio Maldonado - 3.12.4-12Elio Maldonado - 3.12.4-11Elio Maldonado - 3.12.4-10Elio Maldonado - 3.12.4-8Elio Maldonado - 3.12.4-6Elio Maldonado - 3.12.4-5Elio Maldonado - 3.12.4-4Elio Maldonado - 3.12.4-3Elio Maldonado - 3.12.4-2Elio Maldonado - 3.12.4-1Elio Maldonado - 3.12.3.99.3-30Elio Maldonado - 3.12.3.99.3-29Elio Maldonado - 3.12.3.99.3-28Elio Maldonado - 3.12.3.99.3-27Elio Maldonado - 3.12.3.99.3-26Elio Maldonado - 3.12.3.99.3-25Warren Togami - 3.12.3.99.3-24Elio Maldonado - 3.12.3.99.3-23Elio Maldonado - 3.12.3.99.3-22Elio Maldonado - 3.12.3.99.3-21Elio Maldonado - 3.12.3.99.3-20Elio Maldonado - 3.12.3.99.3-19Elio Maldonado - 3.12.3.99.3-18Elio Maldonado - 3.12.3.99.3-16Dennis Gilmore - 3.12.3.99.3-15Dennis Gilmore - 3.12.3.99.3-14Dennis Gilmore - 3.12.3.99.3-13Dennis Gilmore - 3.12.3.99.3-12Elio Maldonado+emaldona@redhat.com - 3.12.3.99.3-11Elio Maldonado - 3.12.3.99.3-10Dennis Gilmore - 3.12.3.99.3-9Elio Maldonado - 3.12.3.99.3-7.1Fedora Release Engineering - 3.12.3.99.3-7Elio Maldonado - 3.12.3.99.3-6Elio Maldonado - 3.12.3.99.3-5Elio Maldonado - 3.12.3.99.3-4Kai Engert - 3.12.3.99.3-3Kai Engert - 3.12.3.99.3-2Kai Engert - 3.12.3-7Kai Engert - 3.12.3-4Kai Engert - 3.12.3-3Kai Engert - 3.12.3-2Kai Engert - 3.12.2.99.3-7Kai Engert - 3.12.2.99.3-6Kai Engert - 3.12.2.99.3-5Kai Engert - 3.12.2.99.3-4Kai Engert - 3.12.2.99.3-3Kai Engert - 3.12.2.99.3-2Kai Engert - 3.12.2.99.3-1Fedora Release Engineering - 3.12.2.0-4Kai Engert - 3.12.2.0-3Dennis Gilmore - 3.12.1.1-4Kai Engert - 3.12.1.1-3Kai Engert - 3.12.1.1-2Kai Engert - 3.12.1.0-2Kai Engert - 3.12.0.3-7Kai Engert - 3.12.0.3-6Kai Engert - 3.12.0.3-3Kai Engert - 3.12.0.3-2Kai Engert - 3.12.0.1-1Jesse Keating - 3.11.99.5-2Kai Engert - 3.11.99.5-1Kai Engert - 3.11.99.4-1Kai Engert - 3.11.99.3-6Kai Engert - 3.11.99.3-5Kai Engert - 3.11.99.3-4Kai Engert - 3.11.99.3-3Kai Engert - 3.11.99.3-2Kai Engert - 3.11.99.3-1Kai Engert - 3.11.99.2b-3Kai Engert - 3.11.99.2b-2Kai Engert - 3.11.99.2-2Kai Engert - 3.11.99.2-1Kai Engert - 3.11.7-10Rob Crittenden - 3.11.7-9Kai Engert - 3.11.7-8Bob Relyea - 3.11.7-7Kai Engert - 3.11.7-6Kai Engert - 3.11.7-5Kai Engert - 3.11.7-4Kai Engert - 3.11.7-3Kai Engert - 3.11.7-2Kai Engert - 3.11.5-2Kai Engert - 3.11.5-1Bob Relyea - 3.11.4-4Kai Engert - 3.11.4-1Kai Engert - 3.11.3-2Kai Engert - 3.11.3-1Kai Engert - 3.11.2-2Jesse Keating - 3.11.2-1.1Kai Engert - 3.11.2-1Kai Engert - 3.11.1-2Kai Engert - 3.11.1-1Kai Engert - 3.11-4Jesse Keating - 3.11-3.2Jesse Keating - 3.11-3.1Ray Strode 3.11-3Christopher Aillon 3.11-2Christopher Aillon 3.11-1Christopher Aillon 3.11-0.cvs.2Christopher Aillon 3.11-0.cvsKai Engert Rob Crittenden 3.10-1- Add backward compatibility to pk12util regarding faulty PBES2 AES encryption- Update iquote.patch to prefer nss.h from the source- Add backward compatibility to pk12util regarding password encoding- Backport patch to simplify transcript calculation for CertificateVerify- Rebuild to get correct release suffix (.el7 -> .el7_4)- Work around yum crash due to new NSPR symbol being used in nss-sysinit, patch by Kai Engert- Fix typo in nss-sni-c-v-fix.patch- Include CKBI 2.14 and updated CA constraints from NSS 3.28.5- Update nss-pk12util.patch to include fix from mozbz#1353724.- Update nss-alert-handler.patch with the upstream fix from mozbz#1360207.- Fix zero-length record treatment for stream ciphers and SSLv2- Correctly set policy file location when building- Reorder ChaCha20-Poly1305 cipher suites, as suggested in: https://bugzilla.redhat.com/show_bug.cgi?id=1373158#c9- Rebase to NSS 3.28.4 - Update nss-pk12util.patch with backport of mozbz#1353325- Switch default hash algorithm used by tools from SHA-1 to SHA-256 - Avoid race condition in nssSlot_IsTokenPresent() - Enable SHA-2 and AES in pk12util - Disable RSA-PSS for now- Utilize CKA_NSS_MOZILLA_CA_POLICY attribute, patch by Kai Engert - Backport changes adding SSL alert callbacks from upstream - Add nss-check-policy-file.patch from Fedora - Install policy config in /etc/pki/nss-legacy/nss-rhel7.config- Make sure 32bit nss-pem always be installed with 32bit nss in multlib environment, patch by Kamil Dudka - Enable new algorithms supported by the new nss-softokn- Rebase to NSS 3.28.3 - Bump required version of nss-softokn- Remove %nss_cycles setting, which was also mistakenly added - Re-enable BUILD_OPT, mistakenly disabled in the previous build - Prevent ABI incompatibilty of SECKEYECPublicKey - Disable TLS_ECDHE_{RSA,ECDSA}_WITH_AES_128_CBC_SHA256 by default - Enable 4 AES_256_GCM_SHA384 ciphersuites, enabled by the downstream patch in the previous release - Fix crash with tstclnt -W - Always enable gtests for supported features - Add patch to fix bash syntax error in tests/ssl.sh - Build with support for SSLKEYLOGFILE - Disable the use of RSA-PSS with SSL/TLS- Decouple nss-pem from the nss package - Resolves: #1316546- Remove mistakenly added R: nss-pem- Rebase to NSS 3.28.2 - Remove NSS_ENABLE_ECC and NSS_ECC_MORE_THAN_SUITE_B setting, which is no-op now - Enable gtests when requested - Remove nss-646045.patch and fix-nss-test-filtering.patch, which are not necessary - Remove sslauth-no-v2.patch and nss-sslstress-txt-ssl3-lower-value-in-range.patch, as SSLv2 is already disabled in upstream - Remove ssl-server-min-key-sizes.patch, as we decided to support DH key size greater than 1023 bits - Remove local patches for SHA384 cipher suites (now supported in upstream): dhe-sha384-dss-support.patch, client_auth_for_sha384_prf_support.patch, nss-fix-client-auth-init-hashes.patch, nss-map-oid-to-hashalg.patch, nss-enable-384-cipher-tests.patch, nss-fix-signature-and-hash.patch, fix-allowed-sig-alg.patch, tests-extra.patch - Remove upstreamed patches: rh1238290.patch, fix-reuse-of-session-cache-entry.patch, flexible-certverify.patch, call-restartmodules-in-nssinit.patch- Rebase to NSS 3.21.3 - Resolves: #1383887- remove additional false duplicates from sha384 downstream patches- enable ssl_gtests (without extended master secret tests), Bug 1298692 - call SECMOD_RestartModules in nss_Init, Bug 1317691- escape all percent characters in all changelog comments- Support TLS 1.2 certificate_verify hashes other than PRF, backported fix from NSS 3.25 (upstream bug 1179338).- Fix reuse of session cache entry - Resolves: Bug 1241172 - Certificate verification fails with multiple https urls- Fix a flaw in %check for nss not building on arm - Resolves: Bug 1200856- Cleanup: Remove unnecessary %posttrans script from nss.spec - Resolves: Bug 1174201- Merge fixes from the rhel-7.2 branch - Fix a bogus %changelog entry - Resolves: Bug 1297941- Rebuild to require the latest nss-util build and nss-softokn build.- Update the minimum nss-softokn build required at runtime.- Delete duplicates from one table- Fix missing support for sha384/dsa in certificate_request- Merge fixes from the rhel-7.2 branch - Fix the SigAlgs sent in certificate_request - Ensure all ssl.sh tests are executed - Update sslauth test patch to run additional tests- Fix sha384 support and testing patches- Rebase to NSS-3.21- Prevent TLS 1.2 Transcript Collision attacks against MD5 in key exchange protocol - Fix a mockbuild reported bad %if condition when using the __isa_bits macro instead of list of 64-bit architectures - Change the test to %if 0%{__isa_bits} == 64 as required for building the srpm which is noarch - Resolves: Bug 1289884- Rebuild against updated NSPR- Change the required_softokn_build_version back to -13 - Ensure we use nss-softokn-3.16.2.3-13.el7_1- Fix check for public key size of DSA certificates - Use size of prime P not the size of dsa.publicValue- Reorder the cipher suites and enable two more by default- Update the required_softokn_build_version to -14 - Add references to bugs filed upstream for new patches - Merge ocsp stapling and sslauth sni tests patches into one- Reorder the cipher suites and enable two more by default - Fix some of the ssauth sni and ocsp stapling tests- Support TLS > 1.0 by support while still allowing to connect to SSL3 only servers - Enable ECDSA cipher suites by default, a subset of the ones requested- Support TLS > 1.0 by support while still allowing to connect to SSL3 only servers- Fix to correctly report integrity mechanism for TLS_RSA_WITH_AES_256_GCM_SHA384- Fix checks to skip ssl2/export cipher suites tests to not skip needed tests - Fix libssl ssl2/export disabling patch to handle NULL cipher cases - Enable additional cipher suites by default- Add links to filed upstream bugs to better track patches in spec file- Package listsuites as part of the unsupported tools- Bump the release tag- Incremental patches to fix SSL/TLS test suite execution, fix the earlier SHA384 patch, and inform clients to use SHA384 with certificate_verify if required by NSS.- Add support for sha384 tls cipher suites - Add support for server-side hde key exchange - Add support for DSS+SHA256 ciphersuites- Reenable a patch that had been mistakenly disabled- Build against nss-softokn-3.16.2.3-9- Rebase to nss-3.19.1 - Resolves: Bug 1228913 - Rebase to nss-3.19.1 for CVE-2015-4000 [RHEL-7.1]- Backport mozbz#1155922 to support SHA512 signatures with TLS 1.2- Update to CKBI 2.4 from NSS 3.18.1 (the only change in NSS 3.18.1)- Update and reeneable nss-646045.patch on account of the rebase - Resolves: Bug 1200898 - Rebase nss to 3.18 for Firefox 38 ESR [RHEL7.1]- Fix shell syntax error on nss/tests/all.sh - Resolves: Bug 1200898 - Rebase nss to 3.18 for Firefox 38 ESR [RHEL7.1]- Replace expired PayPal test certificate that breaks the build - Resolves: Bug 1200898 - Rebase nss to 3.18 for Firefox 38 ESR [RHEL7.1]- Resolves: Bug 1200898 - Rebase nss to 3.18 for Firefox 38 ESR [RHEL7.1]- Reverse the sense of a test in patch to fix pk12util segfault - Resolves: Bug 1174527 - Segfault in pk12util when using -l option with certain .p12 files- Fix race condition - Resolves: Bug 1094468 - 389-ds-base server reported crash in stan_GetCERTCertificate - under the replication replay failure condition- Resolves: Bug 1174527 - Segfault in pk12util when using -l option with certain .p12 files- Restore patch for certutil man page - supply missing options descriptions - Resolves: Bug 1158161 - Upgrade to NSS 3.16.2.3 for Firefox 31.3- Resolves: Bug 1158161 - Upgrade to NSS 3.16.2.3 for Firefox 31.3 - Support TLS_FALLBACK_SCSV in tstclnt and ssltap- Resolves: Bug 1145434 - CVE-2014-1568 - Using a release number higher than on rhel-7.0 branch- Fix crash in stan_GetCERTCertificate - Resolves: Bug 1094468- Generic 32/64 bit platform detection (fix ppc64le build) - Resolves: Bug 1125619 - nss fails to build on arch: ppc64le (missing dependencies) - Fix contributed by Peter Robinson - Fix libssl and test patches that disable ssl2 support - Resolves: Bug 1123435 - Replace expired PayPal test certificate with current one- Rebase to nss-3.16.2 - Resolves: Bug 1103252 - Rebase RHEL 7.1 to at least NSS 3.16.1 (FF 31) - Fix test failure detection in the %check section - Move removal of unwanted source directories to the end of the %prep section - Update various patches on account of the rebase - Remove unused patches rendered obsolete by the rebase- Disallow disabling the internal module - Resolves: Bug 1056036 - nss segfaults with opencryptoki module- Pick up a fix from rhel-6 and fix an rpm conflict - Don't hold issuer cert handles in crl cache - Resolves: Bug 1034409 - deadlock in trust domain and object lock - Move nss shared db files to the main package - Resolves: Bug 1050163 - Same files in two packages create rpm conflict- Update pem sources to latest from nss-pem upstream - Pick up pem module fixes verified on RHEL and applied upstream - Remove no loger needed pem patches on acccount on this update - Add comments documenting the iquote.patch - Resolves: Bug 1054457 - CVE-2013-1740- Remove spurious man5 wildcard entry as all manpages are listed by name - Resolves: Bug 1050163 - Same files in two packages create rpm conflict- Mass rebuild 2014-01-24- Rebase to nss-3.15.4 - Resolves: Bug 1054457 - CVE-2013-1740 nss: false start PR_Recv information disclosure security issue - Remove no longer needed patches for manpages that were applied upstream - Remove no longer needed patch to disable ocsp stapling tests - Update iquote.patch on account of upstream changes - Update and rename patch to pem/rsawrapr.c on account of upstream changes - Use the pristine upstream sources for nss without repackaging - Avoid unneeded manual step which may introduce errors- Fix the spec file to apply the nss ecc list patch for bug 752980 - Resolves: Bug 752980 - Support ECDSA algorithm in the nss package via puggable ecc- Move several nss-sysinit manpages tar archives to the %files - Resolves: Bug 1050163 - Same files in two packages create rpm conflict- Fix a coverity scan compile time warning for the pem module - Resolves: Bug 1002271 - NSS pem module should not require unique base file names- Resolves: Bug 1002271 - NSS pem module should not require unique base file names- Improve pluggable ECC support for ECDSA - Resolves: Bug 752980 - [7.0 FEAT] Support ECDSA algorithm in the nss package- Mass rebuild 2013-12-27- Revoke trust in one mis-issued anssi certificate - Resolves: Bug 1040284 - nss: Mis-issued ANSSI/DCSSI certificate (MFSA 2013-117) [rhel-7.0]- Update to NSS_3_15_3_RTM - Resolves: Bug 1031463 - CVE-2013-5605 CVE-2013-5606 CVE-2013-1741- Fix path to script and remove -- from some options in nss-sysinit man page - Resolves: rhbz#982723 - man page of nss-sysinit worong path and other flaws- Fix certutil man page options names to be consistent with help - Resolves: rhbz#948495 - man page scan results for nss - Remove incorrect count argument in status description in nss-sysinit man page - Resolves: rhbz#982723 - man page of nss-sysinit incorrect option descriptions- Fix patch for disabling ssl2 in ssl to correctly set error code - Fix syntax error reported in the build.log even tough it succeeds - Add patch top ignore setpolicy result - Resolves: rhbz#1001841 - Disable SSL2 and the export cipher suites - Resolves: rhbz#1026677 - Attempt to run ipa-client-install fails- Fix bash syntax error in patch for disabling ssl2 tests - Resolves: rhbz#1001841 - Disable SSL2 and the export cipher suites- Fix errors in ssl disabling patches for both library and tests - Add s390x to the multilib_arches definition used for alt_ckbi - Resolves: rhbz#1001841 - Disable SSL2 and the export cipher suites- Fix errors in nss-sysinit manpage options descriptions - Resolves: rhbz#982723- Enable fips when system is in fips mode - Resolves: rhbz#852023 - FIPS mode detection does not work- Remove unused and obsoleted patches - Related: rhbz#1012656- Add description of the certutil's --email option to it's manpage - Resolves: rhbz#Bug 948495 - Man page scan results for nss- Rebase to nss-3.15.2 - Resolves: rhbz#1012656 - pick up NSS 3.15.2 to fix CVE-2013-1739 and disable MD5 in OCSP/CRL- Install symlink to nss-sysinit.sh without the .sh suffix - Resolves: rhbz#982723 - nss-sysinit man page has wrong path for the script- Resolves: rhbz#1001841 - Disable SSL2 and the export cipher suites- Add upstream bug URL for a patch subitted upstream and remove obsolete script- Update to NSS_3_15_1_RTM - Apply various fixes to the man pages and add new ones - Enable the iquote.patch to access newly introduced types - Add man page for pkcs11.txt configuration file and cert and key databases - Add missing option descriptions for {cert|cms|crl}util - Resolves: rhbz#948495 - Man page scan results for nss - Resolves: rhbz#982723 - Fix path to script in man page for nss-sysinit- Use the unstripped source tar ball- Install man pages for nss-tools and the nss-config and setup-nsssysinit scripts - Resolves: rhbz#606020 - nss security tools lack man pages- Build nss without softoken or util sources in the tree - Resolves: rhbz#689918- Update ssl-cbc-random-iv-by-default.patch- Fix generation of NSS_VMAJOR, NSS_VMINOR, and NSS_VPATCH for nss-config- Update to NSS_3_15_RTM- Reactivate nss-ssl-cbc-random-iv-off-by-default.patch- Add upstream patch to fix rhbz#872761- Update expired test certificates (fixed in upstream bug 852781)- Fix incorrect post/postun scripts. Fix broken links in posttrans.- Configure libnssckbi.so to use the alternatives system in order to prepare for a drop in replacement.- Update to NSS_3_14_3_RTM - sync up pem rsawrapr.c with softoken upstream changes for nss-3.14.3 - Resolves: rhbz#908257 - CVE-2013-1620 nss: TLS CBC padding timing attack - Resolves: rhbz#896651 - PEM module trashes private keys if login fails - Resolves: rhbz#909775 - specfile support for AArch64 - Resolves: rhbz#910584 - certutil -a does not produce ASCII output- Allow building nss against older system sqlite- Update to NSS_3_14_2_RTM- Update to NSS_3_14_1_WITH_CKBI_1_93_RTM- Require nspr >= 4.9.4 - Fix changelog invalid dates- Update to NSS_3_14_1_RTM- Bug 879978 - Install the nssck.api header template where mod_revocator can access it - Install nssck.api in /usr/includes/nss3/templates- Bug 879978 - Install the nssck.api header template in a place where mod_revocator can access it - Install nssck.api in /usr/includes/nss3- Bug 870864 - Add support in NSS for Secure Boot- Disable bypass code at build time and return failure on attempts to enable at runtime - Bug 806588 - Disable SSL PKCS #11 bypass at build time- Fix pk11wrap locking which fixes 'fedpkg new-sources' and 'fedpkg update' hangs - Bug 872124 - nss-3.14 breaks fedpkg new-sources - Fix should be considered preliminary since the patch may change upon upstream approval- Add a dummy source file for testing /preventing fedpkg breakage - Helps test the fedpkg new-sources and upload commands for breakage by nss updates - Related to Bug 872124 - nss 3.14 breaks fedpkg new-sources- Fix a previous unwanted merge from f18 - Update the SS_SSL_CBC_RANDOM_IV patch to match new sources while - Keeping the patch disabled while we are still in rawhide and - State in comment that patch is needed for both stable and beta branches - Update .gitignore to download only the new sources- Fix the spec file so sechash.h gets installed - Resolves: rhbz#871882 - missing header: sechash.h in nss 3.14- Update the license to MPLv2.0- Use only -f when removing unwanted headers- Add secmodt.h to the headers installed by nss-devel - nss-devel must install secmodt.h which moved from softoken to pk11wrap with nss-3.14- Update to NSS_3_14_RTM- Update to NSS_3_14_RC1 - update nss-589636.patch to apply to httpdserv - turn off ocsp tests for now - remove no longer needed patches - remove headers shipped by nss-util- Update to NSS_3_13_6_RTM- Rebase pem sources to fedora-hosted upstream to pick up two fixes from rhel-6.3 - Resolves: rhbz#847460 - Fix invalid read and free on invalid cert load - Resolves: rhbz#847462 - PEM module may attempt to free uninitialized pointer - Remove unneeded fix gcc 4.7 c++ issue in secmodt.h that actually undoes the upstream fix- Fix pluggable ecc support- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- Fix checkin comment to prevent unwanted expansions of percents- Resolves: Bug 830410 - Missing Requires %{?_isa} - Use Requires: %{name}%{?_isa} = %{version}-%{release} on tools - Drop zlib requires which rpmlint reports as error E: explicit-lib-dependency zlib - Enable sha224 portion of powerup selftest when running test suites - Require nspr 4.9.1- Resolves: rhbz#833529 - revert unwanted change to nss.pc.in- Resolves: rhbz#833529 - Remove unwanted space from the Libs: line on nss.pc.in- Update to NSS_3_13_5_RTM- Resolves: Bug 812423 - nss_Init leaks memory, fix from RHEL 6.3- Resolves: Bug 805723 - Library needs partial RELRO support added - Patch coreconf/Linux.mk as done on RHEL 6.2- Update to NSS_3_13_4_RTM - Update the nss-pem source archive to the latest version - Remove no longer needed patches - Resolves: Bug 806043 - use pem files interchangeably in a single process - Resolves: Bug 806051 - PEM various flaws detected by Coverity - Resolves: Bug 806058 - PEM pem_CreateObject leaks memory given a non-existing file name- Resolves: Bug 805723 - Library needs partial RELRO support added- Cleanup of the spec file - Add references to the upstream bugs - Fix typo in Summary for sysinit- Pick up fixes from RHEL - Resolves: rhbz#800674 - Unable to contact LDAP Server during winsync - Resolves: rhbz#800682 - Qpid AMQP daemon fails to load after nss update - Resolves: rhbz#800676 - NSS workaround for freebl bug that causes openswan to drop connections- Update to NSS_3_13_3_RTM- fix issue with gcc 4.7 in secmodt.h and C++11 user-defined literals- Resolves: Bug 784672 - nss should protect against being called before nss_Init- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- Deactivate a patch currently meant for stable branches only- Resolves: Bug 770682 - nss update breaks pidgin-sipe connectivity - NSS_SSL_CBC_RANDOM_IV set to 0 by default and changed to 1 on user request- Revert to using current nss_softokn_version - Patch to deal with lack of sha224 is no longer needed- Resolves: Bug 754771 - [PEM] an unregistered callback causes a SIGSEGV- Resolves: Bug 750376 - nss 3.13 breaks sssd TLS - Fix how pem is built so that nss-3.13.x works with nss-softokn-3.12.y - Only patch blapitest for the lack of sha224 on system freebl - Completed the patch to make pem link against system freebl- Removed unwanted /usr/include/nss3 in front of the normal cflags include path - Removed unnecessary patch dealing with CERTDB_TERMINAL_RECORD, it's visible- Statically link the pem module against system freebl found in buildroot - Disabling sha224-related powerup selftest until we update softokn - Disable sha224 and pss tests which nss-softokn 3.12.x doesn't support- Rebuild with nss-softokn from 3.12 in the buildroot - Allows the pem module to statically link against 3.12.x freebl - Required for using nss-3.13.x with nss-softokn-3.12.y for a merge inrto rhel git repo - Build will be temprarily placed on buildroot override but not pushed in bodhi- Fix broken dependencies by updating the nss-util and nss-softokn versions- Update to NSS_3_13_1_RTM - Update builtin certs to those from NSSCKBI_1_88_RTM- Update to NSS_3_13_RTM- Update to NSS_3_13_RC0- Fix attempt to free initilized pointer (#717338) - Fix leak on pem_CreateObject when given non-existing file name (#734760) - Fix pem_Initialize to return CKR_CANT_LOCK on multi-treaded calls (#736410)- Update builtins certs to those from NSSCKBI_1_87_RTM- Update to NSS_3_12_11_RTM- Indicate the provenance of stripped source tarball (#688015)- Provide virtual -static package to meet guidelines (#609612).- Enable pluggable ecc support (#712556) - Disable the nssdb write-access-on-read-only-dir tests when user is root (#646045)- make the testsuite non fatal on arm arches- Fix crmf hard-coded maximum size for wrapped private keys (#703656)- Update to NSS_3_12_10_RTM- Update to NSS_3_12_10_BETA1- Implement PEM logging using NSPR's own (#695011)- Update to NSS_3.12.9_WITH_CKBI_1_82_RTM- Short-term fix for ssl test suites hangs on ipv6 type connections (#539183)- Add a missing requires for pkcs11-devel (#675196)- Run the test suites in the check section (#677809)- Fix cms headers to not use c++ reserved words (#676036) - Reenabling Bug 499444 patches - Fix to swap internal key slot on fips mode switches- Revert patches for 499444 until all c++ reserved words are found and extirpated- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- Fix cms header to not use c++ reserved word (#676036) - Reenable patches for bug 499444- Revert patches for 499444 as they use a C++ reserved word and cause compilation of Firefox to fail- Fix the earlier infinite recursion patch (#499444) - Remove a header that now nss-softokn-freebl-devel ships- Fix infinite recursion when encoding NSS enveloped/digested data (#499444)- Update the cacert trust patch per upstream review requests (#633043)- Fix to honor the user's cert trust preferences (#633043) - Remove obsoleted patch- Update to 3.12.9- Rebuilt according to fedora pre-release package naming guidelines- Update to NSS_3_12_9_BETA2 - Fix libpnsspem crash when cacert dir contains other directories (#642433)- Update to NSS_3_12_9_BETA1- Update pem source tar with fixes for 614532 and 596674 - Remove no longer needed patches- Update PayPalEE.cert test certificate which had expired- Tell rpm not to verify md5, size, and modtime of configurations file- Fix certificates trust order (#643134) - Apply nss-sysinit-userdb-first.patch last- Move triggerpostun -n nss-sysinit script ahead of the other ones (#639248)- Fix invalid %postun scriptlet (#639248)- Replace posttrans sysinit scriptlet with a triggerpostun one (#636787) - Fix and cleanup the setup-nsssysinit.sh script (#636792, #636801)- Add posttrans scriptlet (#636787)- Update to 3.12.8 - Prevent disabling of nss-sysinit on package upgrade (#636787) - Create pkcs11.txt with correct permissions regardless of umask (#636792) - Setup-nsssysinit.sh reports whether nss-sysinit is turned on or off (#636801) - Added provides pkcs11-devel-static to comply with packaging guidelines (#609612)- NSS 3.12.8 RC0- Fix nss-util_version and nss_softokn_version required to be 3.12.7.99.3- NSS 3.12.8 Beta3 - Fix unclosed comment in renegotiate-transitional.patch- Change BuildRequries to available version of nss-util-devel- Define NSS_USE_SYSTEM_SQLITE and remove unneeded patch - Add comments regarding an unversioned provides which triggers rpmlint warning - Build requires nss-softokn-devel >= 3.12.7- Update to 3.12.7- Apply the patches to fix rhbz#614532- Removed pem sourecs as they are in the cache- Add support for PKCS#8 encoded PEM RSA private key files (#614532)- Fix nsssysinit to return userdb ahead of systemdb (#603313)- Require and BuildRequire >= the listed version not =- Require nss-softoken 3.12.6- Fix SIGSEGV within CreateObject (#596674)- Update pem source tar to pick up the following bug fixes: - PEM - Allow collect objects to search through all objects - PEM - Make CopyObject return a new shallow copy - PEM - Fix memory leak in pem_mdCryptoOperationRSAPriv- Update the test cert in the setup phase- Add sed to sysinit requires as setup-nsssysinit.sh requires it (#576071) - Update PayPalEE test cert with unexpired one (#580207)- Fix ns.spec to not require nss-softokn (#575001)- rebuilt with all tests enabled- Using SSL_RENEGOTIATE_TRANSITIONAL as default while on transition period - Disabling ssl tests suites until bug 539183 is resolved- Update to 3.12.6 - Reactivate all tests - Patch tools to validate command line options arguments- Fix curl related regression and general patch code clean up- retagging- Fix SIGSEGV on call of NSS_Initialize (#553638)- New version of patch to allow root to modify ystem database (#547860)- Temporarily disabling the ssl tests- Fix nsssysinit to allow root to modify the nss system database (#547860)- Fix an error introduced when adapting the patch for rhbz #546211- Remove left over trace statements from nsssysinit patching- Fix a misconstructed patch- Fix nsssysinit to enable apps to use system cert store, patch contributed by David Woodhouse (#546221) - Fix spec so sysinit requires coreutils for post install scriplet (#547067) - Fix segmentation fault when listing keys or certs in the database, patch contributed by Kamil Dudka (#540387)- Fix nsssysinit to set the default flags on the crypto module (#545779) - Remove redundant header from the pem module- Remove unneeded patch- Retagging to include missing patch- Update to 3.12.5 - Patch to allow ssl/tls clients to interoperate with servers that require renogiation- Retagging- Require nss-softoken of same architecture as nss (#527867) - Merge setup-nsssysinit.sh improvements from F-12 (#527051)- User no longer prompted for a password when listing keys an empty system db (#527048) - Fix setup-nsssysinit to handle more general formats (#527051)- Fix syntax error in setup-nsssysinit.sh- Fix sysinit to be under mozilla/security/nss/lib- Add nss-sysinit activation/deactivation script- Install blank databases and configuration file for system shared database - nsssysinit queries system for fips mode before relying on environment variable- Restoring nssutil and -rpath-link to nss-config for now - 522477- Add the nss-sysinit subpackage- Installing shared libraries to %{_libdir}- Retagging to pick up new sources- Update pem enabling source tar with latest fixes (509705, 51209)- PEM module implements memory management for internal objects - 509705 - PEM module doesn't crash when processing malformed key files - 512019- Remove symbolic links to shared libraries from devel - 521155 - No rpath-link in nss-softokn-config- Update to 3.12.4- Fix FORTIFY_SOURCE buffer overflows in test suite on ppc and ppc64 - bug 519766 - Fixed requires and buildrequires as per recommendations in spec file review- Restoring patches 2 and 7 as we still compile all sources - Applying the nss-nolocalsql.patch solves nss-tools sqlite dependency problems- restore require sqlite- Don't require sqlite for nss- Ensure versions in the requires match those used when creating nss.pc- Remove nss-prelink.conf as signed all shared libraries moved to nss-softokn - Add a temprary hack to nss.pc.in to unblock builds- caolan's nss.pc patch- Bump the release number for a chained build of nss-util, nss-softokn and nss- Fix nss-config not to include nssutil - Add BuildRequires on nss-softokn and nss-util since build also runs the test suite- disabling all tests while we investigate a buffer overflow bug- disabling some tests while we investigate a buffer overflow bug - 519766- remove patches that are now in nss-softokn and - remove spurious exec-permissions for nss.pc per rpmlint - single requires line in nss.pc.in- Fix BuildRequires: nss-softokn-devel release number- fix nss.pc.in to have one single requires line- cleanups for softokn- remove the softokn subpackages- don install the nss-util pkgconfig bits- remove from -devel the 3 headers that ship in nss-util-devel- kill off the nss-util nss-util-devel subpackages- split off nss-softokn and nss-util as subpackages with their own rpms - first phase of splitting nss-softokn and nss-util as their own packages- must install libnssutil3.since nss-util is untagged at the moment - preserve time stamps when installing various files- dont install libnssutil3.so since its now in nss-util- Fix spec file problems uncovered by Fedora_12_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild- removed two patch files which are no longer needed and fixed previous change log number- updated pem module incorporates various patches - fix off-by-one error when computing size to reduce memory leak. (483855) - fix data type to work on x86_64 systems. (429175) - fix various memory leaks and free internal objects on module unload. (501080) - fix to not clone internal objects in collect_objects(). (501118) - fix to not bypass initialization if module arguments are omitted. (501058) - fix numerous gcc warnings. (500815) - fix to support arbitrarily long password while loading a private key. (500180) - fix memory leak in make_key and memory leaks and return values in pem_mdSession_Login (501191)- add patch for bug 502133 upstream bug 496997- rebuild with higher release number for upgrade sanity- updated to NSS_3_12_4_FIPS1_WITH_CKBI_1_75- re-enable test suite - add patch for upstream bug 488646 and add newer paypal certs in order to make the test suite pass- add conflicts info in order to fix bug 499436- ship .chk files instead of running shlibsign at install time - include .chk file in softokn-freebl subpackage - add patch for upstream nss bug 488350- Update to NSS 3.12.3- temporarily disable the test suite because of bug 494266- fix softokn-freebl dependency for multilib (bug 494122)- introduce separate nss-softokn-freebl package- disable execstack when building freebl- add upstream patch to fix bug 483855- build nspr-less freebl library- Update to NSS_3_12_3_BETA4- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild- update to NSS_3_12_2_RC1 - use system zlib- add sparc64 to the list of 64 bit arches- bug 456847, move pkgconfig requirement to devel package- Update to NSS_3_12_1_RC2- NSS 3.12.1 RC1- fix bug bug 429175 in libpem module- bug 456847, add Requires: pkgconfig- nss package should own /etc/prelink.conf.d folder, rhbz#452062 - use upstream patch to fix test suite abort- Update to NSS_3_12_RC4- Update to NSS_3_12_RC2- Zapping old Obsoletes/Provides. No longer needed, causes multilib headache.- Update to NSS_3_12_BETA3- NSS 3.12 Beta 2 - Use /usr/lib{64} as devel libdir, create symbolic links.- Apply upstream patch for bug 417664, enable test suite on pcc.- Support concurrent runs of the test suite on a single build host.- disable test suite on ppc- disable test suite on ppc64- Build against gcc 4.3.0, use workaround for bug 432146 - Run the test suite after the build and abort on failures.* NSS 3.12 Beta 1- move .so files to /lib- NSS 3.12 alpha 2b- upstream patches to avoid calling netstat for random data- NSS 3.12 alpha 2- Add /etc/prelink.conf.d/nss-prelink.conf in order to blacklist our signed libraries and protect them from modification.- Fix off-by-one error in the PEM module- fix a C++ mode compilation error- Add 3.12 ckfw and libnsspem- Updated license tag- Ensure the workaround for mozilla bug 51429 really get's built.- Better approach to ship freebl/softokn based on 3.11.5 - Remove link time dependency on softokn- Fix unowned directories, rhbz#233890- Update to 3.11.7, but freebl/softokn remain at 3.11.5. - Use a workaround to avoid mozilla bug 51429.- Fix rhbz#230545, failure to enable FIPS mode - Fix rhbz#220542, make NSS more tolerant of resets when in the middle of prompting for a user password.- Update to 3.11.5 - This update fixes two security vulnerabilities with SSL 2 - Do not use -rpath link option - Added several unsupported tools to tools package- disable ECC, cleanout dead code- Update to 3.11.4- Revert the attempt to require latest NSPR, as it is not yet available in the build infrastructure.- Update to 3.11.3- Add /etc/pki/nssdb- rebuild- Update to 3.11.2 - Enable executable bit on shared libs, also fixes debug info.- Enable Elliptic Curve Cryptography (ECC)- Update to 3.11.1 - Include upstream patch to limit curves- add --noexecstack when compiling assembler on x86_64- bump again for double-long bug on ppc(64)- rebuilt for new gcc4.1 snapshot and glibc changes- rebuild- Update file list for the devel packages- Update to 3.11- Add patch to allow building on ppc* - Update the pkgconfig file to Require nspr- Initial import into Fedora Core, based on a CVS snapshot of the NSS_3_11_RTM tag - Fix up the pkcs11-devel subpackage to contain the proper headers - Build with RPM_OPT_FLAGS - No need to have rpath of /usr/lib in the pc file- Adressed review comments by Wan-Teh Chang, Bob Relyea, Christopher Aillon.- Initial build/bin/sh/bin/sh 3.28.4-15.el7_43.28.4-15.el7_43.28.4-15.el7_4nss-legacynss-rhel7.confignssdbcert8.dbcert9.dbkey3.dbkey4.dbpkcs11.txtsecmod.dblibnss3.solibnssckbi.solibsmime3.solibssl3.solibnssckbi.socert8.db.5.gzcert9.db.5.gzkey3.db.5.gzkey4.db.5.gzpkcs11.txt.5.gzsecmod.db.5.gz/etc/pki//etc/pki/nss-legacy//etc/pki/nssdb//usr/lib//usr/lib/nss//usr/share/man/man5/-O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -m32 -march=x86-64 -mtune=generic -mfpmath=sse -fasynchronous-unwind-tablesdrpmxz2i686-redhat-linux-gnu directoryASCII textBerkeley DB 1.85 (Hash, version 2, native byte-order)ELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=7b32cfe77f4ecafd083ac36c583a59f4bec572aa, strippedemptyELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=e9bb9caa06e81fe4b09ef6795d176901a8cbd98c, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=9b1f5ed93d7bf04eb0776d0d8592640c59f7759f, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=c55ca2599e41acdfbcbe83be40bfdb791ce815fa, strippedtroff or preprocessor input, ASCII text (gzip compressed data, from Unix, max compression)CpC-= PPP"P#P%P&P'P(P)P*P+P,P-PPPPPPPP P P P PPPPP PPPPPPPPPPPPP P!P$PR R RR RRR&R+R%R'R*R,R(R$R#R-R.R R/R RR:P8P9P:P;PP?P@PAPBP1P3P2P4P5P6P7P0RR RR$RRR RRRR!R"RRRRRRR#R-R.R R/R RR:PMPNPWPXPDPEPGPFPHPIPJPKPLPOPPPQPRPSPTPUPVPCR0R&R%R,R)R$RR RR RRRRRRRRR!RRR"RRRRRRRRR#R-R.R R/R RR1R:P/P.RR RR-R.R R/R RR:?@7zXZ !#,!F]"k%YÍv46xby{4o *>i]|+(LO$'[u],}H?;aMPՀ*lGbd 8扙: $P;D0ͻ7_]P/SxG'Pt1/sҪKܿ-w'R` p c:Ą:]Rj$d|Iai@scU\K78f 3QـQ؀&;Cd6 BF+~cbL)02ʪc?L3+缔nn|{Ko8w[ 3qLQuM υ <):cd_<vZ j೒97ɯ~p SXP>Tj)+:CTD~8vE`KIت0]&F.蒈2HF24Mr Ě!eo+dwu~@7V m'EZJgr, K[ALy=tJzafQ(,׈* r};ݽ s+m3n+eF܊ƛ@->=^5rB| |:!~,U -P9F A<{"AėkUZJ/Do3(6RqXg4,.D6 ;^ze.pkN 63DB]nnpSp(Co`^82Jz3gApׯ[hAZX2w+]2zMm) Ωu))*bUt{r!bMÝg"kGeWto A'jU l5JVl8Us(;g4W7{d{-:_q>cw(9B嵎 }o|UyΪtڈ) =`5D:: l,' *8F1熈簆tL "-}#9kY1$-+`E?%ncJ@"2udz={@ק ԰}AhCYnCy> ;MfL8 a[G26CԶB/WBdkȚ#n4v??=LEA遧=-u/=\LK BSW>\͌g}9aI8lG-I,`,}uWU>sKcz2P2ə fcEo4#cHIaRUCKB5~8)C U'@:vHl蛫Fh IW_aT8j1gt>r^xs_Llv=S. 4m l9p*#Cګ@ӧ꟥CO"ҀEpiYTD"s 7ǣ:;ۂc#=@JiҋdțfHYyJTNr 3e2}J^ j9Ys!p--# }~BI8bVx<} XhhXؤ06L.zd֠31HO\_A E%.B KB1* piq}S^_ wq*bE*>02H,_U4?›K@`vk''!orYc~ 㺰ttD5`Ǻ]!>҆xh$HKoK YW]Kq9 Y4 b8.^]-韏*#y Js4n(ŨT/sҜm_]vE(pn59 #!㊨(z-c5}a|iL3_8>V xL̼Opd 띔v>(=JMmcb/0D|Tꪨg ZVX 9pVaYU.Ff?͏p9= =tYɩܸ!~f;3L׌7eX<_LvOAYY/g F DWu~z['FMxQR@8˄:=yZ9ZЅ8*)jur>X ס-V؁xSg>z+ApܹɠP :kiU lw/$籘( =n2"U *,%lkKRۖgsc\1"!8ym@"|IdSnh`Hb8-Q[xt].L~0hטp14bMqr^'z6bXIWhe?L?ɠ&Y{@bDxY|3^!@. ;3 pq?}gIa-ۈbn<gkXen2N ïi6TP/o9YY2=zMquw`MOQ|t֜ 3;^ ^n tڋ<}҃ -StT/V(чa;$RJP&p2T|y2Vn HO|s4I BQ.ӖgfbQ&0`kNiwCB6{o ?}U땻KjWzNZfBƷ3X`Ctw/ +(No)*XDA6if` ^`hrJhuM%׫A{LA0jb{&4 y<94K(ujKfnTmR{O0f.u0/,jWJki/6r4yR CΛF0Ibs < .óW;bZ]K"P+P[/tLow+nG3o_W,1Rk,"9HJuy S 9\T_ȲEa /CdGHmQ5.CO}gW8V:#ü#X~"ֈ ==8R1xZ5|&:HN t( S!=z5l6^u@&\_}.D2[ "8wY=v{`}e,*ewx ]g;b:ݠ m 7s1~P!,Yo>=z?ۄjKa{/NcyHMgcϪ[RT O0'<ւu_,ï mfQһYnUpaҍ9"M}pXhqVZ 'o09XV,Ugp/ gۚpyg 򌟛 N"ȇ'|'Ta@TA:+Aҍ[kWN|!MHkr'跢t,eyN'AVt2N&M[%Pb4(A]2 qf~X,R=D({2amsq8WhBؘB*iȅ~)/#. /Hx.a|꘽e֭SyraK8^F]uSv&1ZzYA RyOS?CՉ1Adg =v}ȿjۋ2?r\VD pҁc~_ЬV!鳦d9ўN!?cdQvæqqmiD"W\W3*927t<;Jc%mR#{B!9c;6hYš?>μugvS+"-Q9l]Yk'xsB^]JxR  q:yfҊ؃5h\YM A#E` Ň%{eAR[Fc24=V+59iۜ;,uCm!No&JjrϺ)jzTgӑOWj*Q7M%#ҬpF*$!#(騷kTY{Wuv\dDX1n~\)ٞH|{W4aA11;ީ7*9m聧3P$J" Kn]c;_]iiҠ#ӃyxƏFbąDe"BCHwMT:POKzفNzwpyT=c \ XeJz+SM(0>*CY Օ:I?Q7m Of{wC?ИC,XUe䚘X(xz153ba#z<˅o[QjH.w~nn=%hk: s:|L(9@~@aMw1u3W1D,W _%^T7a:<`c,?j&Bq0<VMj?p6K乂uf82^OJ)?͵-;{.;%kҠ>F}|[=oV  cu=ҜdcsbD5}'E,:Yrqm2ѐ>QK$(‘ƧpZ:f1} 2`tL5CL+լ`3 $)]1N wssC֮ +8ۏHu@eKL{Ӿ]܎GnIyFW;ͬGg=]I\M6Ѷ%*)wDLȘ_nɵ+d5>$ W!x//;C:k<Qh?&Ol0Kp!7[iGqY'F}g pU~kk33[+sڜ{pffl04]!@^`@A~ݩ@ԇl3H;gzO`c_ƸVB׺XkOQplgwya%n1砉t{--gEXE#uYZY(Mǔ3B :5I d5kKNe_ jkߵ߄̜<R Y .\2/_ OQA# 9qb]/Ws|^셨'1-yW'H$%rM[Sf.g8~zBD wꁗ\׸zSf޾l܃8?w NH18uxA}Tˬb6^[.Yi ^ȮDM3˜ɄQ){ǽ]D%JhTͽl#oPq߲_9L`N4m#FƱ-eZZfFu8Ts wZ^UW.zR^nGJ+P7*!0^t똪/yGp\^2${IDpo4Hc¹' rrvE~BȄN,q̰1c0kѪ^|G ExPP*5p%28>_w ӹ)f$dAkimWnouI5n1%D$P"DP& ^P#_<(me? 4%ܩzpp}Gv:IȋAsb;M345IR%>.hb#W]2P!6'ň"ߴ^j#+߁(=!-{fte/0ɼi"gV{"QO#T%4q0MGMqSܝEN|c@[tjí\D\Z- nCAnQ=@M  CFSjh[N?VrIy7*6B`Ds2(/}ъӣT]eI'eQZ0˳:;mV܉ H`״v_ttGY 4s xNhv6 w=X^jR/wdbmRfXs lG@-i)r|a<3!Gh1-~yqܶ=)aJCh@'b]Ψ"@>|-:9 .*m+%w~VT葉CЙ~E{5ՄjlwcD&(MolK$}Ɠ+d>=l^1AJFiHTwSZXN8.1SpN0 FP.i" $&ӆC Cy#P$07NP5X+ Q\?æfRDRGVکdUJ4m wMcvKX-eGCQ)?$kkg2%!1s4QK2"PNG8'jHRhteu)ȝ쿪NYű,wS ƢD#Ro05(t`p({ 46 6HPnFӅOU*܎ ]3f%abi&i"V'V|!K*w44Vl4t oٟ,SEDZ~XKS;`]. sXrC+,Vq&g8zl`CP녵4$H"B;K|/jܞ~~M۷9>Y_6@P.vAֳp <2=,s)` (]dmԵ*u]1a'eAHc6N+fܥ;FPN<kq_ۻ8^ \]bcV}o{B1 sOrg!%"\#WhaC Upl&{3D8My,eb<ػ|MVH)8hMR7gcϦ6Q[Na8.7ÂUx`[L~:|q03bז,ixb围~T^^M1ht$uwa_9K%C;K 0A#o5F& 0(t_&#-GlП\'9$,~a9߹c-P#e0=w ~Չe<و.P=8z1A*/ uLGN qWIc8f$%_!DԊØgJĆD-?WɁ$cy!])ꢜ6{r<x>e~I~Ԝz\%kIzt>hGCD>P2;x)!n㧧]',]>V]0iJە\.ͻ3ҮSiSԭlQF(5V% ay:is{'[ʗق}Lʞ8}CGA,GdC1?GL$< 6y2`*<؎E7+Xpx-2odjA=^{cu<]^Q31Lv|ԑ{.s nϋ4@ 5c݅ |h83UYO6:.PI-y=q'D)?3נZ7,ދtH7%(ߎsbPGظPf<ݵsp$n><͇ZtB Ĥ{1$9JAgd(u$>;1 O{\:;v,K?~W,9-!"}Lr9j.*Y{9U4i*ZW{:ocӝᏠ\r_S ҢoɨNS֥H.X,b>Ҍf2c'bG=p汻fm#HǎedȋRdވwUߚ}$l?txe/b}'&Fk])o"V|[h+##WvjI Uspj\9}A\7["!=Z3/TdJI}k9J˦c`B9OꍧR)"ÝijjQE;QdU=Pia"f9#`C3ǻ9ܢ-*xqjQ=sS|bFeheAVNJ"O+P0[W3P (ЪzEwB+5X ܷKL_F0}~xP+~y:N(86ڹaRQ,;J 3Ni֟w0D(sGN-f/8F;0J:c_v*D{t&84I<넭S@E 7k4oJ1AewFDAL\͚jAI*;mdub3,ke5/g'cE+11/'b2pUrTE~*hG]Q*t(؊/uAg ߵE'[WcgQd nќt]?שThɁOPEW#_&3Oi)qK.xZP5ҖΏ둪 H˫< j}ۯIx0iN0dj~oGn2_-#"f׺Ȍse]G{5dc||C,򾊇$^s!ޭ1isSdݚt$>'pmf,4\C/Gp:Shv=)B2ĕKUv$'%XV7rݙgL˅AV(Oly;[ ?S4؉ɟ; L]R4v2>DZ6\gz/h|+u>Ub(R3kaPۃ vtJ'\ӕҟ(%oCI3&Y?c8pæ٭!Wz5%Yn3`45j>[_%cO{a=+Eqa5a:S-?Jqfsenv (ÇxI[8~qLN1 n FsYQWO+ib20\BjMAeo?۝l>Gys$kyA3D1-٥:tNYå=uk7%NQU ٨Ͻ=2,USqM?gg&t7T/mzДCG.&㬗r-18UXOUI@N,/:G50aU"NҧM?Jt2=ӉZM'L<1&[ikŗȒi2r 2qNbDs:Ӡ@ ;:`VMv8Dq_xSD[Mjb~]C>tJX,\N?Yj)VI~K7$ 1+Hw1gFd8*7q ~9"H@YhQ\YCp8j @6WӦޓ3PG*zYLjx7iUasm?0ypІӟudP-@ $67ݣ[K!WEtCBKY\Xm-</:hU0¹w|.P,!/ex>mkJBndsQ<$d^r;{rA!X.P2~n8~`:<brf/g 0|/8/Ľs\CGwNZ'qlkz'ېJ ,}}6.h.f:{M,E_mѽPRoe%洱]P{!1o^L˯ܗnjeWQ<3b; %,b@+|Q>mK=4:d3(y1achʝ1 Xp`t=+CVK7oERpV<)XX(u7Ϭvq+)H ez~#gpnZ).Z3ZڤoiP)v"PcpdR@-$BX[$o#CC"]C:4?G{ .P wt# %X?WGĩ<a '=5^&rgd NR.ľc'(Nx Jӹ4\1[kD `FYl5L OK0o C3/vXf6K;^°S;40|9lvP,6 O#1Byc9ȻIN~څAͧ~{lPLjc°|`;xŗ.ɳS-Cq[ n *=NéC@h.>H, D/-W D,oWd63 >D[3&R\&U6n}'n"oˈS!bp+8a;_V\K;RA]۲־I{ߍ3u6gKP"X޸ RӫxFK2 ՏHڄ!m&6n@_a¿(T3h b)9L}dxKVn-(.콘e{:TPCmZۯ 7tU#v幄l]=CPB@[`n|`=x1$QUv-?E` a(pzxAZh2qPt$8*ڵRf^ؘۘo8*u], W\,IX˔5Ea*}gLJιNyLb wA7۠W!2[:j H .G˔; H7Ұf'E47\ĊCR3\P@L&cr e vmBV6?A~q6~gEȳB-:/7ݖQ/dg\hgj*4-FhԋT&oЛ a kG[kTSg}:p8Juh9UYOϭ^BBUNZ+Y727lme#A%w>R\T9}d9DaC$ 6F/kV5D[ɽ}$[Y4o}Zxnrcx+DZ͔2XɅ#2‡(Iu:5ս/OCrmest3p,ѕ{SRAetY`կ3ߖw*j}XWP2Y8SV?Q0\u.(bk?(˫N5/Ku(6jǓU}wO0@,LM|0AFCS>z*OnhN_s%4 8cH sskтP|霥x)AOkڅq|'wrg rXӏwe&3ĢB,nlU`=+t!{4}sc2c$W.v('.;a*`hgD=@HBN fڽ&!* Gjue3\csVN2yWqMxths_Z t $ 6o%2<]hYgצG"Q@ E`T ;x7"Dg?Jw\F&*ͼyc[^%n!;CLU,$NV;b"p ] XzӇ/:ײ6AU֣g@>9:Rݷ)XsuK `n-*b+juwzw4T'ǁo~˙ԕM% Vrf9-3x+|/OKMt?C D d``/יD/?RvK2YC 9˧Y!OVI/&MEGi_> ]۫ jvKjOaA (X5'$#REhעhXK T\~8!xJ(+:RT|hC9!C"lgO$2< jˡ%}w& c]x2_,7@l\TcXEqFk4-<C[Rчi!BV$~Д~S/ߋ)81_ɵYvO|>gHG`je3v(!W{.9#߭>]Ő?| qja _/}d#mUt4hCIK97-ɑ ٨ԛ|Z2VDRd/㨙Zl[8BٌB~72a]@e@c4\(|W!,cBO|JZ p}DT(er8mg\il})rVCŲSWXU4hO;KËّlT+|:#aJ^Kc&!ƚ*R`li|(̠֭n b(ra t] #mj#yeL;QCv :lP x~֫!>NdA/ceFax =v5`8NmR_Aď("ӝSQ7]y3!n %j =n?Dd٢S5ruN&9h<ۏ+PD1n$9HTM%lyMl?c v. giʯeQџ$\Y)HbP0jG޸,=V3a3>hGm2ۓ) =GB9\clCL^"BY>/su cFN NӷY;bV(0ͳ6oaJ1WvSm+&rEr.ޕKuN&7y%mwãqIAiO}LUw!5,^4f;AUg tz{W_Oىx_?`~p!:G"(Q'9RnBf]ﭓ6}_ ECTF(oEjSxD"id-"4s|2qQ+Z<[Wwy6n.s`~-_*H@tlj`1]?_70aMqb͘,1#E\8mN b[ u>h> P8j\g× q82o*nGϝwOqK+]|DymCek=ey&DZO,{-Ð@?5jGW?ް>J!d5mI'8㰰yFHg4Dځq^XO^zjs 1tWH 8Ȣ܎#Oێ/U sﷹB2ti3x-EF٨LT0HRG?I.1AcСΑ1t"5D ]5!~{; ;Gl4怓&w'(xGi\n+֬gp) 0!K0=WieU<$0%T#>i{ πqvx?8~'eXlXou9e{;a|aq6ID &\zHhEI /xeaE $<Toh\$F.}/cY>ɚ9݃Qy1Lo2;ӷWQB{ޞ>|'zF9s|ZP0>̕D<*X Uۗ]HE)zO=y'6tFni&CJ,-{75}~Rayq y) ,//([ ( py"b9KxLT:H~V2bCy(цL-'AQtaD}ctX_qlUmZ}b"TLTwSϱiO)b^(q~Prl ~pY Be*w QjHf3坂ɺ96𵽬&1S'$[1p䵁z Ȯm&Jv,[NdF9ё8WH@:WE'RG ,6 EX][ʲK-݃ҴUCsjx|?N{oeZ ڪOJ>6vRӵ`C-TVe.M:4ulMpM\Vy:{FڞGg#9YjV8g ?|R U<lzA<0% V:>#73;IswZZkP0:0ǎMjW@fCq,ÌcI} F@ 7y6OVf0׮lব&r_KIٵ=^YmhX2ѫt.$-fp縘~j!>3ɬ:CG\ PGa ǞFw"P-fЧj]2P"&T_J\H_l@rdoG̠2M.r-j%Mutm*?;ymRj|;R&$ik[m j%4*VsvҔϵ.l@ y 7YNW[_ۣ*gyZAu݇ }@9r X WC`nP-! Xx(Ѧ<><hͮYݧgIԽyRLvQ ZLDlϳ:AhكZE\iN.]_=fM{'t6ۂ"[#yKAPy8M'nܪWn`uWԱ=YԴ7u,M2:4 _#+n9B|/Ui$8jhY/XSfp5{*\c/ߏ'ȃ_ !Ƥbfav~s4g蛱gNt 'hNO+DK5&_?B0632"&^U`|ʛG1K#t8%۹:ep\y*.$Zpw}78?Y(~d"ed#{yxޡ+PٚÒ}-{Dջ6o'һs#=-2SU uKԊ45T:?ətVȺ &F#`f7os{2aUxQ[d Tr%Z2$"rS!-t$5Svg<~ܡ-oA45t`7Ww6.}GfH☭9+%Dҡ{1Զb)3YT Km6SvG()^ѭV+}$aسGI%*NOg^|x#<c!ẃbL6Hb]hL ďc^ yS+dOf]z_baMq\ژF`N'C/<y 'Ke7Ql3J61zvh0%0N:̏ Ӯ/bf )p ߧ?2Bnо>9\8>O>hFܓ[#raU&N~]+̊NN,hޭ*"n o T BN(qݚ`YA -ŻnP]bakY_>92n/'jF_2~ o/$M+Ft~uD6tpЩ6&ui66[O gg:O& ;N b@.̌6M y[iD`߀rqAͥnd.,oIλ#ۉ-Jr~ 'Z]?^@lnNEvI>u*D,8%7jtnFNpjP5g5Pg[ćNB}(@q=5lF i9;GEG߮Ɲ؊}K5n'1a`m' dz'9Ҩ)|wƖ#.Jm8fqfֺqiHܟۛWnt_IRY' (g=:鎲ʾ[[.POh4X')~Jth"mQFբl@£侯Q0my( T@H)F?d ⻬h!;G4SB7rR$6&|v{)ޔ6<647\f' H8Il^bQHBEM䛫HPS?Nvқ$k3 4Iiy+?%& @2ER?x"?|yO|fQ 0T|ȲRWsf1VkrG<\Cyh\L B!E֒]O}2& ;!JƂըd+?A1w/F M[(+ 4Ҭ9 r(y| 2P2 Cqv]^'VgQuyg-aC[(#[ EAX: w4Vn_2c#ݰw/u\z($M]Po,-YDWBDKs<)v]'5Hwhx=N#X~y ͥnThw)_JsbAcwJ*iW -A'R[%x9td\Jadنs+讋D;5jxNcΰa)Avdmhv:VWv$ (@0w;E*b OKÓ~{c`4Zs,>tcq =jPX/>bHDv7%5Cѝd>&^`_$3j@nq噂]wyDQfay ?hJ4RdoG!nʇR躐]x!L \2sֱZ0B>se#$h~<=wGZw2PXݚ,Y‡-@8 qme5[~S18@BK֛(-Zb*NbG+b2 US6Z Kqs}U`A?Ϗc3}#Lrvhm{%_!Cc{2Y 7bf0 f5µ0^}__f!i} {niAQ`7k2Z"E5Rjum.(C5֪JP>M'v8ϔړuO$bIi@Qhlzs:@J?z~K2%92i0 %8F7VoA5%PsRI<^LrpFN~x)p9zMf pgXbMJ_$VpQ 1xl!位?7hAd%>GnŶQwx8Peb:Im,D 9+OsƘyc./Կ;uʾyG[w,p9! (C䰆>Z!]XWx w$%YRA.Q+]3eg܃r:Ft~'`ɑ?~Oώ'=ķN?He-`sv4#Y}mKMr%Puju ~'^ Ft}N4iS<EÅw3X(XO@%z/B?D#t*rlz;N,Nw;Zg5#O~W: ؑZV՞L`$>FtaipW°mĪM#rwܻ } ab읰06aէAze 9$n6zdޠ;M@l4?GC0 ;{4ǘyl BbCzjFz^PVǽ\EeBKO;-vsD'-= xnJD2jjye1OJ+ U?<VY!]"25ݞ3WU)hu8I1ee02=k$u~:ޡVָgG _{)]E)yXe;1z_h+RՃs|_C,+A=#GuӓkݖeIR]ϩ 4(o\EF-f5i;!<0Hϕ4lE\]ƿC6vQM0}'G*s0V{|IQ{3 sz/O'4P|ǿc5>Q?+U]`wq(ku!"jM7Mu)E>J~0 ].*͍@$6R[Gv=iY"luLކ6HHJjFqe*dwZd /sMܩ| iV\\=͒DPq<_zg'+R!t9D +%ڂHXvz4nQw , 1p15c;"ȮH'*[xo.}[)(m/mz\^+C=` aTRN5)`|5BcG0q:Jі3cyj+4i2'] _l4is0` Ne JO}V3t2Kk[.rvLh'縪\Eo!En6ǘĮm|5ڣs6Ǟkk9 #.fĭL6&:GFj#9om_ntٓ"bث#'0ơ/}|1䊒J-TdsqAbNN 48sQ[!ys7e{u"B}8EOT!wvȠA;P2 2zx,S3MCj2+]+>!N`Ja( &m)fRrq|M@c9jP%f̯&9ܒ''?{5 _*Ct 8v9eahJ'"k>E[P00R^X8LVl_.j#b/5'RGܑ7&K[WjXB簽z[N>C OTrmwNSPW*2ijjn>A"329( VnrD8:+G\ڲϗuku8bd$rlA;}gdVd!hy4RÊllkE`b3m$Y$ Al6z +p3JphGF%68}rEC[}x/ .aMvZT Aܵ悸.Pn`މ@^E+.GI1~Tw 6GkDgb&j>riFJ`:==mPoON5LX=}n]=퓄]G@KZj J>9Y 4YĿ!}Z}^;1\U;emr=}:1p` /.SeA͇KLh='H9KOz/uM k֌o~7=i͂\lMk(ġŦzpVr݁F0pp/{v ;9rJLX ==(7mtodZG *E7 TI L%Qpݲ5׭u=9 0H!>Lz/vW:f{s*mFMJfnzɔ_)ԌVIQi%k0R;׫L@u7պ "QsX&HCݜ o\Ƚ5#wiDD_a4Yu1=gc9>^LVR(ͤGAC ȕg:B9/B]sBdՆޖκ&&UK5Xs3L]^דOil_.5'.+R;x*ڞt HDt6 P35mn9I6-5oo'jcQtX=mA{6O hӡS*{tz~x?VMUK?aHFAkp`,ڗsO5lhk1 ˨`^B ŰC$F]7Iz~ib}KQQo7g7m`gAHN~lR쐡vk[Ӂ'hTxxU~1l]\a~ N=a"+`YVy;Vo]‰8!ɐ8 Bd M<7q8 ](CeFŜ .4gGVoH-m̠!|>ծǬAvqgZ;U߶Y_C{-hl2d&pfHFzU]\]L%I(,p7lAi5/Z H/omVkI<.]!8kGB4oHoP7& X!=<wNiLK .>#CE-H$N]tFaRODq[&%;sڧ$jyK>eႪ@0q|a#DQ|KuWp;1hԣg!M|_fQug@} :mT,E}X!"Oj; oR. 04}1<)auu{0qր8vR "׳-/:9<zSg _&{cp?毭idƇ6]_03tFLߔ% IEy2.ɳFàeB7wlGOAz"tJ66!P&4ԉ5E rM[]h45J#P@v50 B\"OkvPy _/Byr:˜[3[{m* :g$Fh0IkgꇋE&"eo1g8ut}vsXk}Gk{)*&ygCr$_Dڼu3vrƷkũ>lC/T6O?u4# B9|npخ4GoB@{^LO_@ x !$Afx29MGM4?I}f5m ujd^6EwsW,!g1 C(9)fؚ)[ )xow$h &LP(l#?byN`#bU*N))cnzH.%)n“NaErŎa,b+,h4-3y;Dyr 29 'O !K*ᦛi3c84KnX_E h_y8V_rMjܝ_P*=)v~W:4`-}qb({{v Drx=&H^jv Phҋķ+,=VEWC }rH,/B0_[CnڝDB@&ɣHT`ҥ BQ^vs'Q -;T) 3:3E W j:kyF~tK5* 2As^dh;3:?BcҗDo'`7Uʒ;4ϧGeL@5vr)`PJ`dϰ% ܿmgIQ;|Z˖"L~'UfᤪwcT=sƀ4B06 c~ }VX~MнGn&0p$~Tn;z8row:$s䆸{p% c?:\v_`s :NB=\G}r7aHgGEl=35bX;vy‹re_ᓹɼx^f`9Ljh}AOav\~`۔QZ-U`N,7wcPکqBQWtNቻ) ;u]߻Peaoy@u!RZYN8 'm" 0oSr%*(TL~UiL9夠lc2 °q{X^;"L&oƝ`,(4rgV(:=ْ9J(!AfBG݀#$`|+{yq@+  25:>#Vߋ]`|\?é8YOy ؑ}pZ˘ȄT4Ck_IyL}cS )R "3Y<)ڎugEPDC]U90SAHK)V_-'}3 BP}LuZ wǩ @VWj[?Τ]Z0dztPq7E?<%=WԻD6sC8%% Bdkҹ@|Bqy_즽 8kAn 뗘|'f؈SIuz|L#[j:gt"ρ!i`|Y5(0]{4z%Qi8'Qd&EfR\/Zӫ\Fwr3GL@KIvm:-e4yM7xɧoku*XvnH=u@89ܵR"l1 BCRU34XI@F]v_#חK3qx*.\j=~3KV%|(h$,LFAmOiCtCVjfjc Ѐ~h\8`7)3/HCh XKd}*]\qފ͹coơ&{~fV?p' "BLL=#JJԈrGԍVUB dEŤ<!HH' [@{6E$Œ/6K1Ƅ=! TWS8~n>f'>6'+Lquz,t2rIp=j5jW[~C`+rJ^HV :B sϡ%:GgNyȮ,{/椞.yvf~?iD!eZ9M{d!Olb߮,DU8)ρ"6!30؉_:m6$2YpvFJ.B*Q{H54) o0Mk)g~@WDa5"{{V}O@C2$^&yJ 9rf D÷0JJroI dc7@]2K*w̗k g&pTZZȏ+$: w5>1; !Av,dlI]H*/[$=kYJ8V9Ah^/'͌i#s giG, nIsVV?Y~=K>'-QjgV7}s~ x/B1K^+s 129t򻷱iv6,gT_j^UwxP ,& qHÆ 4Q-D9 S~1и(+\3 a''ۄi,X!0?V& H:O -!9 ;l;q@;ֹcOç'i4nX gXnX;SwGl1  LUBM`‹ajOw+eT y<`sۤ,[y]~ލwM׵jn<[219e)YW΂vn웚/9i1癧]]-IX+Y=V@l9d3_" ga9+~[̘KK2(NI݊{ڂV1O!哽b[+v}\jIPl&tMϫF:|+2C=~^.yfLܸFU~%Wֵgi}uDr 1:CPoHoŐg2@S+벪pmCW CܯF%Ų `"cRt-t0tY\[XS^SkY:{]E{t[?'H"~ځ&l~ u|!0}gm2ij/xe J4-6f64H5]ĹhewxzVԆuW%i!b6 ?H_+(C>WQ0#u|7!NJUD+ դFďDW(p Pc@nc;W0A/sYK<ӷ :W?) (mގ^E(t`nzM|K5I3=hwRm,HDoJ[c ?1X^|ڬ@7`)p$f=<0' + fU3Yd]"]oQ5?4Z\0يG˷A!ꉬpK t)#!L8!6G1c- N< v0%FGPuNyIֳQj*rs[p-\5_7Q.c\G38`:VN3ZвA5*etʈ\5+\c)䡩ʣYK2̔`吼k Yx`QB6Pv}XUآ0h`${O%x)%Q@9JugM2v+33#BWy7c Qmٛo{lPGЭ\(MXZg&KNn_i/UN/vu+{d?$lB2B5ˈ9wct0XڟVq N3 a珄Al>1z } }y@+e*_lu`gQ\0DZ;w@t!Zv26?!PjHJEU)| w#hu31z1iA&KWt、1%#& :zt"&*`ĞV{&?] Q#&Mͨ׷D0Թ.@Pޝ ֞/\O4WPs` 1CݪvPdy YnRBsO~b zY,|8N*$-'$)sۘyȩNk~Gg6M ZhxIzV ;p~6l*ِ1ҢSH[>:{0De= |"_,cն>1`V[i85K-_:^ &=NuD&…E1l6L ׁC6ԮXxB;Rۂ*)sI=[LLA) p,FXD'(,ԅOF'n#6YC)6eDawE }xq*13- TDax$6$KY.1|5LlsqH mQ+Jdk$nhg6Q>^"7f?Uw|gP-*4OU?ŹN*pB=|Wh)ݳ"_.QR+vJy%D5 u„\WνZ^$C0ͺxYi"Ic!&-.`~\i<~HtD~#|`TK5>v Fx)lsgj,07a*GmB$" o'E(ώ^1[Y'A[e!upeo fONA*30]dC vUޅ>eΞs|E{Gag .hWiȓS8Ƹ d,¾5k Q(vHF xu. $:oow42;$ iMnqȴ9'Æt,$U?PM ] .:c2H%f״qSw ɳU*@݂Qs<{r֛Ь\$ܐIQ90+ZkFBװ^,%m7 п{mhA<% Eq:֒sNi9QsI3*} f0ekD'$=_xvơF+ld).}:~F ;cܢR@Ȥՠj".O +nNxrv V|0ê7r A$101o[`MocI.ӀHS 't]AC$?D|=-U3fDcoh0yN8_EdE7^K-jRکP)1  JTM车L&I 5_^}*Ceh y4]?iYGAL7E+$F 3} ):d )e ,Tzk&awFbdӛ!\;]Zg{eB/\5}H -{zr!6"\w0:jMS2@C12V' AMD yksB5z5Ї꣬qɐPx*^jesA݀wOPHWx4R )PG\aNߗ8ާ&[y2>v5p7"ʘo麲u \EtS{A,<0E4<^qOzaF{x/h4rcy%_I-!F{ߚoU^:َ$mӜ^OvKEr`3N8g)k =hq륺1C/Vgj㢜HsY+ TQȿ?׽5\PW)[W>G GM$˧d9Y6zqblu酲iö,[Q,Gi82u?xP`լ"o5AK-X"2͒*;ٰ35m7}h%vC{(Oٔ, )4Ab1L&O; aQRRQY[2qj &˓i2VGC Gp4R u'r͵_bl'is$a.ux{Q*ƉyeZ='9yS>rk?.dյ6~\>bnh;|݈uަX |.I7iW]cX !~6Z ϭ\M8QsE[\:˨*BDTpv|d_iWmtz`SUo)quLFsT*EH0bm\h \KyLCn;%֮ `C퐚|2tjEg%S@.g!V]^Q6#w HDW{ (S-G "öEq2zf&B__ӟ='r['Ǎ Ϯ4LԤeZE6iCwJRr@t3U -_|gW6WةFC"lHuD{RܺZT|asV8Au(Js!Bͻ*;\zo"B(\Wy _&t%`VV埠/U`BGyɡ'E^7ޔ{ze^S"zgw YDR$M[̍=_X¯|@ g Wrf%:M.;g),? MqyLZ]e \3 /Zi7c)YC\C@w!5&؉FBq͔m>VHfW>M"Tl欋Ę4qdY19Vq{EF!?TF#ypCVi 'k8V b0܉&ӝU9}s?FOv 8z$y>q̲]cmip]h2cv(a1l6- ]2;:Ma^º;$ Lr>|2& ?2jLˡ,mm}X#"'Ք,7}W!^ކݢ5Ƣ-ne$&^I{V=)"#5Y1Zz&sBљvNq*IDW>;)_[2K#\ ] c= g#^EEU 򭇴I:9vep,OHO</\y~j{ wЏ=2*(ՠ| By36Yd ^"SgԾ"褗|^X6(3P804ǥ H‹.wfntwÆDΐp;1h.`~i|0۴ j+#*rQi.o1s#LX3-QKe޾q;&#yʴYV\JNqN{m6 ^ѫ*unQ[ jR 21Jrj/LD?͵O@$đmq/JRH{1RpgX;k촊QnLu/4${Ii"Rbm/Lp%:}{FI?4#)vPr {F\yU]u1QzZl { v$oDE$;nD7A׈gG D8zé>&\7fn[f٨"Zf:9w+fuYV<ramzP8=/ dh&lbw,Y7'f Cme@ׄ}h+VOLsS @~yﮑ%4ĈjhՕ.pƕjZ$j8c>tFk`Y؄<F?N#(jѰXY gLhođR4"OD35U}u''tNMگ|no+m2*-#R[>Н=2OT0;XV#|C4*Ϧ)TϺ G[! k9S[v"{Eߝ^.05P5τRgƕ?<]| ~-$tfdl v1jo`-&(҅g4pt?4O<.qpJ $m ⠻sw&!a}oԍTna7q&b$#3 Y4yND 3l8ƿ#~bzOqC54xd֏Nd%W' pecoO #6-eI!M[C:։&fK.+ӴgM`W%}wTf ?]ւf dMAj8AapxSP]\zh'Ζ՞SԠA-s@k/щ%u2OdxJ "y2qQ%T Ŕテ]F9> [1-!ri fp $/`R"uW`S)$݊n*aLٟi)b`,pKu2vl[I䅗*ѐ|95=̀^iiBMAfW n1\Y3$ .:{rQ.[70v*lQv>@3~g~R=W3KfT7{aw((sy ư79 PG;m: gډzMlPPCda?÷us &&E(t}n6"!C̮:\F3`ns7˵է)!-n~ hގ_%+u-{qןS܅*m-B^5%лʶCRWCé^9鄢 aJ) %f_ KF O{T= C23,%Ş9,˟mlNǯcxp=(-82x gi&l8a[=<Z$pUjis5_h4QTb4;ȵ_l$OSEe y}PNǼ(Fc?-8eSqmk%iȠR,1N-thEbNITQ\+p١D=kɷP>dt؉Γ[2|"leyN9湕;2ՀC7(ϙ ସNJ*}#0|GC8+>߆t~;Q@ 'KX}t2/߬U_15M^z2fu2P>Ln:ٔldY`ɩf-ţ1H S\H͡R/c,RbvC %Uk 2eTء39FB~bق)iFV񧹆ETЦ< `.YS+ [zŀEuT7Kz#jֈoC'I`G+8;F|NUZ;tFZ1l )5q#]oc5 lIrddBiXvxVǷ>|ڿr^+I/͵\/i.Ӓ(h^; Uav qȲ{ncTz%rK+UÓM̜^ox:J޵l`~ʗ"FT_хaHr)HsQ0]?xUlPFm@lfT.,D0c\g=4pqٌͪٽ(`]'׸_@Q9e>+8ys'![5w2W4'"N/}玀11Wd_F aN]`|֘ 7y\c.]6ʵ`q9}q;z#va<5\Y4Rɜ:ƴ,ɄnP[q:m嗈WH.W hH- -Y+raZ&.cI߻a]a7_,D!.|=ѯ`342!1'$}R%ZDsd)!l$" %rWC jwwT8MSĉC(*Oq/lh (Aj~xC-4MRPd6t/](A#{WQd1ޥ8wV?ǑX٪¶g2,EswVnSdfUԫm,lwccMCHS?9FЩ*Zx]%P~Ipn9+wj='0Kڽq7p?@|Z]%)qvZWjxwFkEAyG o"Y9BwY[65?l8HT"m΃&KH~!xӫ!dKY؍n ,Q]܅f6wlOK偣:*dYL(,6-O0oa"g1. uL7SaZ gA|9ieul%,^{:ׅ2}}mfZrL Q9?L9YN=d3cs G*P3xcGk?ˮ*&jNY*$ QL_B uO:S׾Tnq^ީq"}foU.v1 sA68J@s+NNR79 dU> i2jYȝ? ^&^#jHChr0Dkd|Ɖ;|ܷWqzrīD,6Rz}tVX -ȋu/1?aAD;?l}ku5X~I#3j :P|[ ׯ:NRNU CNJsLxgfiochO1XSd-ց9?dz$cS/ 7.hJCPipI;J+FL{5~vUF&muM "6t4 eYy˯$"[O}&7;ֶNٝ%ѯ<nAU_j,UZ~ElLkJhJI:sv;*z?NJl(ƑKoqV+c9Qj!`e9Xݿi;7c>@M_pR#LrvD"dp 5sl՝;*n$ntm k[0WFuȪAy38,L$l0(Ha9v\*'4mz/e;r r1se[!cbQINI e} {%\X6.(1jgXCGs0kG 8i.$#Nr8zͿb꼓 HujU<9|6W&J' er{LS;@\JbGGLEY 3 x ,YYT 13B[k5 NR8&.Sq.7!玭(kGYRso`3k붍9ddL^"s(qQ9l~|x:v\G^AhU|/bMټ&S̑g_K*U'aĿ3Fp]&x&DӯdAtCߌ/h/}3-kd\t\C:L{ᮎ q.k}ٙl8-JNiNHiGv,NKISHa?X&J'I|(N`Sc %9M$zD}rhBI_bDC-MКw$p÷a0>8;7v$mоWM6L)$Os 7,iXZ\;R[Fa٢8/t/F6'+?֨Q\ AM,RB}tkÄ (H_R {9Q:,e)Cj *MF/Rj\I+p0<&duiۂij!N#kSܜ7pV÷ѯ< 쬊U˧l{8}zUKACa. \9xQkTw+h0D +o:YdFGX RčJ O%+Y+ߐfGT$R/Eр&/{"]thK@wT )Z˅C,G3GA)o 6Gd_#wgyI .C˽'}.f\:`x5baCaEP 8q A/u6:Z!3EC9]8 ymtAL^x!db_7>6da|gThD<-Wx$ b|˄"wۧן MHE]zIoGv?|‰+UT-yfGԯ4"S&~lXyTDf c܈&P+cd?@9;4'!zwnCe=UD2sh%ہ)6/XbuSo5尦8`%N9"I-˸m1[&(T0ZuqZ|x^{}cXjԆ:vUE>n=]SNTdKWtWzpw"Qi!nu^>eґ@; [5΅@sr+{SwQg,]*S"Q#YRaGp_9~oQ%\SRlizL3d "N=ȵx)~T^l`gbxZ$#xaxģerceKu`-o<|.+GIZ,K- Qnrl^;fLq`uQu]{?a eGR&0t€oОX)a#Y =dXI rU(0Ө/]K)8Aڶ4G̩,bb6f NRsW+0H"/09цmh[ɚ%]aC*<6P1)ҡo zE$׊gwxi$RF*.p9c{P*IPjD3c M:p_v! fJD>RSN.gKq!O $jvMdL @F=fyzc:x oY[#Ih[f-P2_u-hu:t2P% KZIAnf|܍/{ e*OFPHN@NJ=&y~'ɉ:y%Y3򘌭 J9yII )@j4nrDh7,A*42Rp{paM*yܠU!RTkX-u4X՝SYQ&pu4"$n[*=QY8p.@VףڝY2בdw{k,b^| ӱYh[N벁PCj%dqeG d?zՏw؍\gdǻֿqZ$V[ohX<f"PܭwMNeʩZC^xq.sIGJj]DX:nE Ȕ1&(^^6Zl5SrV(yVU06ƅ+=zYL誽F._:[ |wR6 U":Kn kNkl̯q- 1ȗ)SX"taCNK13|fєͲG!,xT{(OKu3*zNsD$:<=J"a3WC'y"0:2ieߡ0E7grok;qљ J!NjYGvVpKH R\"tțj461X tN{ɢjG{"tjJ>FErc?n{]@ X rhr'Ɨ$i=ɝ>̅vJ\M M-"H1.Ȍ>SH}j$f:^{j{, C"@cdakƋ +RnMDK7r>Bzji s䔧|4Ҏ֥M ʃ k2srإӀsw-7be0_cZXE؜F~~lz~IM4B݃k 菐7_\&#% E;Iʦjk?΀uH5ʠPWnSgLhX>Q`D38s-ԘPy=rL+]1KU+m/lѰOĩڴ˾頉Yl+K`jkUFڂ YQ#( :=a,t]>D,k`&% ,kkGv#O^wx|XdɥbQvu _g11 p1jPxy)/+4^=[w)}ZTRڌsȆS%q> / TዊB{fAU5 4gfQobΔ{ARZ, ^=_ E߻NǛlu;7sq@׀ЏhyB4L}3&ր%W~F-uYOW).|]CD}ķH" ]:RVӴc>ʡiޅڕ_ΑcF;Ъ |KXQXNcyT27][Q1@~ag%S \n-v1s<3 I4"7LK@jF Ұ8:Q6tXP-dy'}Y/uiZӿg&xq%y/(.rG+^}j;s ڣsV-lw6dtb=juh;#oSqw1N_iL $Xz<3)5l& ɴɦ•&E2j&eMk.rl#G+C!˧l.|E,e1/Q_A`<MxB//*ci rE^L۶^XpE="+[dq-uiEDt?i+ a]˨HO9b=y,a9:уlqȥmv0(ѕLJX1kY""T iHQ2 h+ 1FEư8pZCCT79ns#h/`, ㍏q%-.ފ71S }OU|?yn7eԾz%5v>$&nX\!atcx@ f/5'E/1x<[oڡ%51Wx?,[XtKy0LvSvkZU՟:9xLY|Urj@v<7FnVz7]nĘBV˭3ߒOP" YEܩgj;dktMoh:'CWni׈uŴbDeRL `4kP Gx('DzI:/TR%k ?v{}c]E7xî͢>Ɏ/>cR"o?~gxDwh MBt@Tqvtdr@5Nņox}Xjpefc*Vhƽes=C)5Q!qq(=>-|\*7*.ĊlqI%rn?*kQ2COL@fCшْh0kIVheb3 /}ݖt{xsoifnCXu.>a4+?N# Q!:'RQdS]C .u^bd w oDE| TaC 2n7) OJ钑3MtO o2CpATƷƪ-|49%Vy+Ta-G׫[]!K6IfZ~(շm=jR, FEI>(,_Ze(El}E3c\'pst|~@I1f~yY bMQZJQwR/G[64=~[,~{ݻ7$׷$=MKcHR#t ej MEzg}xB ;?r=QC)v=t%X1ԉ]zh%~eA谂A=}4Vbel\5ڛ??-z'̪ SRyj:|I&LQV/PU!͊4\WF#?!O}_Nhe؉Hsd<%rLw LCb:@B?ڣ/C60m˒{wa=c*:[>:W܅,F,oFx*k+!cZ.p%E9y}RZ{ pvcKCKHOxF{(Q%:g)#Qi03oư~ĐM{dҪND;>XD1{f"^L[Y:6D~9dHZ!̃f AJg?H9nXbcXKO4_QBE_B>lN 5rqN=aD(Xަ) zz xZ MIݢ3=Kj)ZmogM~XȪs(tf:̕lij( ]r;q9IW _pIRJPCEɧ+oUH$JI`iFkv3 u"+XN:ꂔ)=wf9d.K"yD 8~џ)'u_@A K.t6"Io~Z>ܱfSwœ fy 0:)p7yJYT.yPk,3(c0b7ip?ϰ?bRǩ4nN@hptG$}Nbs+ b"-7VU|$*NQrWMًF{2^0aK^tWPN=d*QOK@N [Ul=HlVkV]<´aND7!"ᯮ[9AsSn_ڥ!щ3M(%:@ O`H8tQkQ<}bH&X_e{;hN{Spf&T BCe򜾝^E18Ed'juCOSre6[eXE6{< s,-Z Ihh"zC9&%vyꄪrr)}ٝJh#{I!EB%εB7>i@.sʬU'($lUJG/6t\k_#1լLA\605~p5 5_$PL3c{)u/5!ҽ'sJeК46^N*݃y7pV0W4SaR@ &aPlDwĠBetȇTvʹyaRsYxՙ-o<'[_X84C .T++ɟj&D|a[uPm Ϗ?`W}Bɂ5Q 7t ҫ~gj`;s&齗8hA(IrQgsk d߀S'k%i/EiPT(*w4߄A$UG fTc,q:Hy;3U<=vOpecp~4U_uW.v:8jXkؼIC@tJҎ@ii}JyeK&KןZI~V(v|jx`URTT)D!P?6)Xه}䰮{v|*C3՜JZPG :^tu ʼX WJ]!)KI6Oxe{u51|[Chy9 W::WNS׵r]7_a){u*sq.\fꣿyMSY} 3Esh2Yw/͡HGrw:ć4E=ƭtyMB5G9L1yT4-%jRD$$@w d@LU2dJk}x`7$ZGNm 2C> m.A5BmQ@.?n%R ^pNU,P]Ꜻ&Zw,2nR|*(.L!U 6xH|Sp1DU4 ுJL۪jOõق-b *b^> f<3Ԛ M{.:=65AH)R6f e.v[xeu$X \&cjϢHTÕCD)\2cEՀr>8鄼[+cGF{UId4l3/6|mW*?0^Jyax mދġh *2jq~umBhyf}@E_oøXBo5+@TbD68nOzgD&wTb`QS!_hz)X=Kr>mQLr!B[p @:N?%Iv@nI^T+7:^=GuL z/V$x4BF(`A6S]dt=EYpPCv *h ɜ[ZWœM`Rݽqv +I#373ɒdyzkBޯ np@m\f@?>WFa#TԎ'2tڛVJӽYc[jsD@3.ݪW< ΑYCo6>,OH1Yh3Z;?ƛu頴l*/a\4l,?TU2ϊ-Opd.އ3M[\,6vޕgMCu&'aA" ~UYEQ^\h$kq8hM@e|qm"ÉD_q΄"w9޼iLY >PF\s4VUi\sR<9]wi<m{@kWl'"Oô XeC%B$n{': 4N#fR-R]vwZBG@A)<933w|9K=7Y( j9^e>{aoؐg 6 W [7IĽp'(t\_2XXFY ۫BNlY:;OV $Goq4]v36a:abUV~;?˛uvU{ExNG eS Nzx}9!@40AGL_3o\| 손!A( s)TƑD. 50|B==tEn 6yEw;w=4^7t!ZdzK%zp)}ڴ&`hpM%}ʈ9VSѧ!lhN!DI f-3j 61HӗGVM Au݆~)_uDG C77u.YH4n%Z㏕*^ꀮ`ytV_ J;EeYp +}^<"p3@3Jس8h8ҧV-=ohP&#l=URׄꍪ|cH(\.IϏvcwB rly߼_ B[+s˅0nEy(i&ȴ$Ow(ꅮy ~1:56HB~}ȣ Xw Y4):\G/p6b./^`,~[Pf|Dŵo>nӡ#6\6Uòzrh~ejl%T㷝xp[eT`3yb_t\i/0pOr֘i: Kq&Ai}MI,a7jݹ7a<rNc Q/BepsaV10luҎyN=iY%Y'$tg%tN%B"lE~g|SHܩUY*UrU G]&[oWvvݮ=Dd$,o)\O4z T$/eJP,}|$jdªY:㱏݅,ڑQH0#Fo1O }/fІ@ѪUN6uV4T ̝[Btef ~ZJ|y PODTϼle*g8n' cd961m ]˗xI ]}2ᥥ%Q"ْ`4,kHFuu+?!.0R3&K#CsҌH<~S*86m\<%)2ZOUYJ I|uqDPIXZ tY:Y;.Xy:^ԁeKK[_ad$>!as3 NZVh=9+Þ|UN>c5i3g_S#C2"Y MK69Y<90w+R7(Hx1lRф#G,c(.Ga}E ˇ_ N#YG*iYD)O.].E;YEV03pj^٩@9ىhj%&W}ۨi$jz~ Z(zpN Z'G׮h4-YQ:h8XK4D§9D `7K5&Mi9rH[\.GqM{o G!Y-'=L"m* @i&&t Mo :n̽|8u `VT;cEګ'NL)yT\RpȏKN:R^GYd'X5y+$Kv;iΠJ11(H,ԏ'_:-M/~hoF AR1Ai1wӒ‰!abCpX fgB(\\Jlא( u(j:9l Rzͦ/H*^ĸQ)6C*m/Pib#gۮ%r^,|H tUb@U!obYJyJ_ʓ^Ёs`\\dwᰶڪñ+|@(fn(CA$~;ب'Gɸn 8ι70HwQcwN]PRX ip`^'rC-^?WM jjUrS] Ai dnKul~i8_`-vj8%v0*WlU]8 >= (h#dq\1M;0Y©TW HnX"D9Yc{K^Z(YjkN/:z7eL1]ܱDȪơsLlJrl[!Xbڠ)j:v4A(ix%@ 턆} H#]J ,]/ <"QFx!n=H0ʱ!pkkۦ*=EJxcL||0`yj#:>pe2fr N.b`eZ|ugȿ%;2\E0{xtM̐2 +ؗJF*!9@@lѸ'Wl%#"!3]R{1Q ZR)nOA.y7I=|W9f; {fSHK#\!/6W5iDgP{`æQwӥ˶B-u|E5L%QgW\}F&?@!,QH7mM?hO7AA5Cnǻ Th?v;]bJMzYnht/w0E <&*W 1B3H8dP 11c4'~gMXyˢ%\0 0! *W'} x94%*a$X$s`<ωF\w9ʐ[,$&$q}⡩|*-+C.v?0HPZx/ӴԬUNBaO2- y%rX6j?3iu;GN*B #,\G"k?&e2]Rrs K%j(/o8:^a5DIb6H4 ,Ѣ^~; 3^[w.|YHlgV|ju;{#5q}5;\ ``Q_||#"j'[jZBD㯽GQ.;d :e26"OGC;,JW/u  jИp]+-Wpm.K}Nfpt ӅWS625,{ieݡڨU[&mC훽^9#!uENVU2\:_@h Tڲڽ+>*{|"YRE34Uu{vRAڦPr{7:aɽnP8_ ڠm[hrSEG+G:3e db L"'+'ivǚ~qEP{k &cqQyʸ`%Gîh))-:(Q C"湮qQ hgZyJ}c?WˍO{ |ʦo7k;t,2vP3֔#&XKX+f#RmR{qJh{2<5S,$>mAـc+ ZJI[yК6jPsC跇L1t) O 5oW,Vѧ(XD+(&"`B TqLdB<N\ZАa9ߖώyT%щoZ@* @,2]Dz<'d!]Ηl2xtubiZ8~l-^O~ųg}hqpI^O(]'Z}+l#DX,ϖB 66ĭxڱ=浩dTjDPv{xsxTz9SW*0!Dǩ\mzZ- sÛdЦX<:Ad< KADx9ޚBb b+l2OE|:'5 9>4%08a<%f>ڃ[xA(ݫ$[?#vZV!S'J-|d-oP3Z ^QV >baunEP2Y 晫]Bn_sr4{ ìFz;%:!: d!u WWcQr:ӟ!リh7LȡT ;Cp)8/A!H&v30`!hx91˒3RM IAZj;i⥤Im& FrKAY w$YVmAX+o|N*tC^Kn"Zv״zv$K'Alkv.aS>(xcP؛44 AIfr> XT&HbOЯ%π k RN&_3}*5}vN1Q蔌VDn>:POS\9AnSC 'dEI:O>t|U_ʛ,%D:yθ֡&6σcX={m,$v|:0e(ciVoB60LKKDu̝j&Oߑ AL3y5*cܑr3Qϒxf6Jo."77'WEhA"?Qop4a}F}$_obg??bTɴ$~9X~f\)3hL/^"FYhv)1H(+`z]!^>1S W| 3 -ttؚyUkKPtlrtV%^WB}۶K 6SgyjIZ/'ׅK.mi22-n 쪍psX!%}a`'@\!hk lm4CڒA>8:+`&so{DE ;\4Q𛜜8'+‹lp˓xyWfʫWb)$FwtRނܱw˵%6me 'Pq9[uցN诶͟ kCŨ*N`+mBmBOj;<ͨȰZ-ޭO$ `Bۤ$__')[Tc<Z)ofж4&IV{&lŃDL"C\H |콺hYlLܬ"btzHOEz?)qKh[-qNMt!'A"{n'ÍմZ0!G bN?n5$ ͡ W Ͽėv<̶B/fy甎},iP)T*CFZ$;9o@j5GNKI}z8")Mg=?.@wpAw379o~D1:cHF| GrC|tH!=;_ AQQ i.@:t͔DAFRo:wש\&H [<6lMɡQl)2M_' t"AG>]wd:qL GWiA~l*+q$ e#O%kXS'հcK9N>-{4֣_sث}:%]YPlרּzI/^XQ—C2Hʇj7{P*Nx(s !Xx!9y{A9 ?Ri4Hj`*˚dY Xӑϥ&cy,zHGGA^2OSXWq ;b>/`LOvηK1A<]*&*_nxߧoov<(gy`z ܂Z h)%lc:5he`\ (Mi 3PR.dq\\x@v8U(s B$@#8RmFG񣩓 +d8@tF1؉JNX9$|#)||=D*q̆pD%(n/" 6`͓哬  k MG3!iO )ixԚ%y==эyͅa.Rݹ(ݝgL"HΦm&VCjV|| E]fIM(lL,V'oibԤ <MR<iXX㘶8 uk,p6w=Y #Dc%lg];_-rӶ[$ ^ '`,U II?vm0V(h򠗏,k F‍p7 J%flתk,J)muBM6`[q[ִrԞ1%*d7ȁL`(O*]2ٴFERycD@ g8`w7rI%T5nc]j [$,^W*t6X̟r0ٛj*kzN~">q/Sy XڴcʉiT$h&EDlGg PΞjƉ[|Gs\]{^s3RV[`՞^U--Rg B иx?t\MJosprtԺ+&(i_S6<-U;)KSO2UqBIJ>KlDU4:^F(pm<-&)ωg XNH0r&8ǖڟlzжXS$)_g)+~؅5Xl&Tct0t ҄wxD=OXxмО3-g5p8NCxqf ՠMS6E3!v'BY2SˍjAH}ĉ7i7dr8PhW/M5m쵑„hUzTrI~ToD4uFuc WTu gs?V1shLzƼVgT?A-s{h*6پYHa"j4=5#6qW{OMz{3Rjo==okQFLsn%!xߝ*sGv3]2`DrmO.4oƁ7B7@2?ߙ~z)if`ʅx5W;8|F7~) .|]Z1 Tx'kg.y8ZwWM=T:ѕՆgvaDry,рvo_lW.<Ӹd6^L9A FSmp32G_LĂOIᇱM6mncID h Ƙ];Fwd$ &")UI?hsT>RNiTB?9,KO쫡gRD'6T8\sK s=h2Ǡ[kP7,%T`R>FF}ac,s>y@L0[lzef ڄ08E3dyD0Ӻ.x<_T*Nq,G` we]rT%M="bENiՐ3Z~~&+DwŒ=.Sx喈'!v%'>ICQָWDZNV!أVk3o$O,P2w?;HL4p${\eUCY 0_#B\sZ`_95MjK]z ax*֘+[8t'wjN +_@ PČQz4y6W_LMֈqO0`4иOG݀9i^͡gR̈Xf{L@\?3oa\[Cm<8!=ƙ1#V?շYQap{ja8m~}/Dcɜ?̙J()UvߞCVy}5&<Dwl)e%IɈ,ypF&*!Dx Z-^9Qp.T)g"Cېq`Y5**B |v*5l4^/Y=Tʝ^TEo=+g?e#+퓆ZwdTvۉqnC!ns1]*DP}f?V%779fE{lubwM|0oIcELHn[FZС3 IĂ:)XѺ9üͥb:#2YVt In=P#2Aa)<7!aI1v|d0OwɔJ5ÎCh/@3OkYSt ۿ5/P"@o5nY?8A|k}/tt<穜r:jj0Zz<քKK+ݮDͷy148GB | O&?C6{*;_Gٳ kc5(eD[904vph'b|[ bL; 9Ҷ18G ؈:}~թ1$kuQ6®z;s lgj3zG؀ ɼx%#wEąTߟ9xk%.@,wqWLpg[yij?0iG L>Vr@"<'<"`ȣYug'يf_\IN^/o?WкP4SSZ2h|w\mA@Xl="EI(m 7|G{F")̃Ǧz9WJMGtc%eױ閔:[ʃɮnؒ;_[1A,y/Sz*a#z%ۀx<ᱪ@rֶ:@G#s pge7Ռ*sՙmp $rBȽ-x7=c