nss-pkcs11-devel-3.36.0-5.el7_5>t  DH`pZ$ƨ3SWuwmxEJXdqٜ%"aʌ4m Ӝ(>PPVL"ao`&;8­tiS528 on6HW ܁U v9oQ&5ux-xṞ ~{ اZ1λ#48x ysithKo `ςknկy?ᗛ 6*e)QHQBRipl+dHF7TSE-t|"Ptl [ұ֐wmQ;mntWyƮ']Py7 9?L4^ݑ!*/HU@!Pl0 A˯UٽRx.[ nEN8{p|TG\Ƴ'v 烚*QjG]=Z`'zʟÂƑҋL' 6JuOYL,+O85bae6fa0f3df4f8706024ae923fbfb2a598e4b8Z$ƨnBI[ܞ9a1̩&vT5RUci1m=<7 B|쩤P $?&)?C|N wӾ[_OˑT06bbph~^@moPq57 ;No!F͑( 2β Wd,qEd(i! :oqhQѕɻc3JH)E~GF̕Ֆ@ͫN߾{ T3<#+'v3?/̎"Ɣ͢pŃ /:bvE7M9E_{} P֕ՈP~R"`2p;ToGG^=OW/[5, >'; U 1%+_=O.DNN$P悪wFB/T^iS06(sL8a/3!LLg7v#b?=V1vf"="a-)9nDpKT=l4@kȯV *}wv" RL>7x?hd " Z OU\         E  T    ( \>(p8xb9 b:N2bG H8 Il X|Yӈ\Ӹ ] ^tb԰dGeLfOlQtl uՠ vw x0 dCnss-pkcs11-devel3.36.05.el7_5Development libraries for PKCS #11 (Cryptoki) using NSSLibrary files for developing PKCS #11 modules using basic NSS low level services.ZLsc1bm.rdu2.centos.orgJCentOSMPLv2.0CentOS BuildSystem Development/Librarieshttp://www.mozilla.org/projects/security/pki/nss/linuxx86_64 n@GCB:n *Zi(Zi(Zi(Zi(Zi(Zi(Zi(Zi(Zi(Zi(ZL?ZLJZLJa35ece673d12028eb93987be84491b4a5978b26acbed9391ea7c623d892114892314809e560ccd8db3aa7c73a76761c6dfdc9970766418eda2ccf5d82d7c8c87d17c98658d22e1d43bebb72e5c2fa70d38b4813cc365664cb7e012c1c205945a44468d9015bc778365581b64aa8389d29b1253027c339f0db50c4fa4041b182610323e003c49ea719ba9d58bcc8cd25e0cb04b9ef477e86532dd49ce5aab7de426ea03608b467e5d895ef62414d18e48c7eef62075092710067aa35ab7da79c77a0eecf6f3406b0ac94bde7ea8963f1ed4bdc05c48bade64adbbe3f942607a58424de03c781dc5f6985867d3c8905ef675f7f2bef4bc52abc6e523484afb4882dc8e6a0a79dc11903d89226d4fd9a1a2e6d15433c2f77b7176b727c3d2980b1b616dd39c3520cedf4a0b72c67baa0de3103d894baa8631e24020c157d21a2473f5ee187ae698bfebcb2b4df6e21edbc3d95b5ec709756e1cd6a1c3d83fca1c44bff2ca5569987813ee067e92ee226905d61897060325c6bd640f9ab1d385ed425d2c06028fd4c50cd92c42f8a0f5b1712f81ac8500761ba9b1f638c679696193rootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootnss-3.36.0-5.el7_5.src.rpmnss-pkcs11-develnss-pkcs11-devel(x86-64)nss-pkcs11-devel-static     nss-develnss-softokn-freebl-develrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)3.36.0-5.el7_53.36.03.0.4-14.6.0-14.0-15.2-14.11.3Z3@ZЛZ2@ZkZw@Z\ZOhZN@Z Y@Y|YB@Y@Y@Y@Y@YJYg`Y1S@Y i@Y i@Y @Y.Y@YXX~@X•@XO@XO@XBX@XX@XWu WrfWc@Wc@WBWo@Wo@Wo@WW WW@Vn@V@V>@V`VpV'~@U6@U6@UAU@UUUݪ@UUȒ@UU@U'U3@UUx&Ux&Uq@U?v@U8U0U-@U'@U:TTq@TTto@Td@T)IS@S@Sہ@S@SnS@RJ@RRUR۾@R۾@R@R@Rx@RΏ@RkR@R;RiR@Rz/@Rv:Rt@RrF@Ro@Ro@RnQRe@RW@RSR@QQQ@QKQ@QQW@Q'@Qq1QNQ9Q7/Q#@QQ @P!@PՠP @PqP@P@PAPXPd@Pd@PPP@PP5@PPnP;a@P(@P H@O;O;O@OiO@O@O}O~OiOYOX@OOdO&@O!@@OO@O@N>@N>@NNܲ@N`NؽNN@NuN;@Np@Nf @NA!@N*NpM@MWMc@MM@M@MMfH@M^_@MZjMS@MQ0@MQ0@MQ0@MQ0@MK@MGMF@M6@M-MM@Ls@LOLLZ@L6LdL@L*@L@LA@LL@L4Lx@Lx@Li(@Lf@L_L_LT@L0L0L K @KsKsKKCKCKCK]KMKLd@KD{@K<@K5K4@K,@K+nK*@K K@K@K@KJݦ@J - 3.36.0-5Daiki Ueno - 3.36.0-4Daiki Ueno - 3.36.0-3Daiki Ueno - 3.36.0-2Daiki Ueno - 3.36.0-1Daiki Ueno - 3.34.0-4Daiki Ueno - 3.34.0-3Daiki Ueno - 3.34.0-2Daiki Ueno - 3.34.0-1Daiki Ueno - 3.34.0-0.1.beta1Daiki Ueno - 3.33.0-3Daiki Ueno - 3.33.0-2Daiki Ueno - 3.33.0-1Daiki Ueno - 3.28.4-14Daiki Ueno - 3.28.4-13Daiki Ueno - 3.28.4-12Daiki Ueno - 3.28.4-11Daiki Ueno - 3.28.4-10Daiki Ueno - 3.28.4-9Kai Engert - 3.28.4-8Daiki Ueno - 3.28.4-7Daiki Ueno - 3.28.4-6Daiki Ueno - 3.28.4-5Daiki Ueno - 3.28.4-4Daiki Ueno - 3.28.4-3Daiki Ueno - 3.28.4-2Daiki Ueno - 3.28.3-5Daiki Ueno - 3.28.3-4Daiki Ueno - 3.28.3-3Daiki Ueno - 3.28.3-2Daiki Ueno - 3.28.2-3Daiki Ueno - 3.28.2-2Daiki Ueno - 3.28.2-1.1Daiki Ueno - 3.28.2-1.0Daiki Ueno - 3.21.3-1Kai Engert - 3.21.0-17Kai Engert - 3.21.0-16Kai Engert - 3.21.0-15Kai Engert - 3.21.0-14Elio Maldonado - 3.21.0-13Elio Maldonado - 3.21.0-12Elio Maldonado - 3.21.0-11Elio Maldonado - 3.21.0-10Kai Engert - 3.21.0-9Kai Engert - 3.21.0-8Elio Maldonado - 3.21.0-7Kai Engert - 3.21.0-6Kai Engert - 3.21.0-5Elio Maldonado - 3.21.0-2Elio Maldonado - 3.21.0-1Elio Maldonado - 3.19.1-19Kai Engert - 3.19.1-18Elio Maldonado - 3.19.1-17Elio Maldonado - 3.19.1-16Elio Maldonado - 3.19.1-15Elio Maldonado - 3.19.1-14Elio Maldonado - 3.19.1-13Elio Maldonado - 3.19.1-12Elio Maldonado - 3.19.1-11Elio Maldonado - 3.19.1-10Elio Maldonado - 3.19.1-9Elio Maldonado - 3.19.1-8Elio Maldonado - 3.19.1-7Elio Maldonado - 3.19.1-6Kai Engert - 3.19.1-5Elio Maldonado - 3.19.1-4Elio Maldonado - 3.19.1-3Elio Maldonado - 3.19.1-2Elio Maldonado - 3.19.1-1Kai Engert - 3.18.0-6Kai Engert - 3.18.0-5Elio Maldonado - 3.18.0-4Elio Maldonado - 3.18.0-3Elio Maldonado - 3.18.0-2Elio Maldonado - 3.18.0-1Elio Maldonado - 3.16.2.3-5Elio Maldonado - 3.16.2.3-4Elio Maldonado - 3.16.2.3-3Elio Maldonado - 3.16.2.3-2Elio Maldonado - 3.16.2-10Elio Maldonado - 3.16.2-9Elio Maldonado - 3.16.2-4Elio Maldonado 3.16.2-3Elio Maldonado - 3.16.2-2Elio Maldonado - 3.16.2-1Elio Maldonado - 3.15.4-6Elio Maldonado - 3.15.4-5Elio Maldonado - 3.15.4-4Elio Maldonado - 3.15.4-3Daniel Mach - 3.15.4-2Elio Maldonado - 3.15.3-9Elio Maldonado - 3.15.3-8Elio Maldonado - 3.15.3-7Elio Maldonado - 3.15.3-6Elio Maldonado - 3.15.3-5Elio Maldonado - 3.15.3-4Daniel Mach - 3.15.3-3Elio Maldonado - 3.15.3-2Elio Maldonado - 3.15.3-1Elio Maldonado - 3.15.2-10Elio Maldonado - 3.15.2-9Elio Maldonado - 3.15.2-8Elio Maldonado - 3.15.2-7Elio Maldonado - 3.15.2-6Elio Maldonado - 3.15.2-5Elio Maldonado - 3.15.2-4Elio Maldonado - 3.15.2-3Elio Maldonado - 3.15.2-2Elio Maldonado - 3.15.2-1Elio Maldonado - 3.15.1-4Elio Maldonado - 3.15.1-3Elio Maldonado - 3.15.1-2Elio Maldonado - 3.15.1-2Elio Maldonado - 3.15-6Elio Maldonado - 3.15-5emaldona - 3.15-4emaldona - 3.15-3Elio Maldonado - 3.15-2Elio Maldonado - 3.15-1Elio Maldonado - 3.14.3-13.0Kai Engert - 3.14.3-12.0Kai Engert - 3.14.3-11Kai Engert - 3.14.3-10Kai Engert - 3.14.3-9Elio Maldonado - 3.14.3-1Elio Maldonado - 3.14.2-2Elio Maldonado - 3.14.2-1Kai Engert - 3.14.1-3Elio Maldonado - 3.14.1-2Elio Maldonado - 3.14.1-1Elio Maldonado - 3.14-12Elio Maldonado - 3.14-11Elio Maldonado - 3.14-10Elio Maldonado - 3.14-9Elio Maldonado - 3.14-8Elio Maldonado - 3.14-7Elio Maldonado - 3.14-6Elio Maldonado - 3.14-5Elio Maldonado - 3.14-4Elio Maldonado - 3.14-3Elio Maldonado - 3.14-2Elio Maldonado - 3.14-1Elio Maldonado - 3.14-0.1.rc.1Kai Engert - 3.13.6-1Elio Maldonado - 3.13.5-8Elio Maldonado - 3.13.5-7Fedora Release Engineering - 3.13.5-6Elio Maldonado - 3.13.5-5Elio Maldonado - 3.13.5-4Elio Maldonado - 3.13.5-3Elio Maldonado - 3.13.5-2Elio Maldonado - 3.13.5-1Elio Maldonado - 3.13.4-3Elio Maldonado - 3.13.4-2Elio Maldonado - 3.13.4-1Elio Maldonado - 3.13.3-4Elio Maldonado - 3.13.3-3Elio Maldonado - 3.13.3-2Elio Maldonado - 3.13.3-1Tom Callaway - 3.13.1-13Elio Maldonado - 3.13.1-12Fedora Release Engineering - 3.13.1-11Elio Maldonado - 3.13.1-11Elio Maldonado - 3.13.1-10elio maldonado - 3.13.1-9Elio Maldonado - 3.13.1-8Elio Maldonado - 3.13.1-7Elio Maldonado - 3.13.1-6Elio Maldonado - 3.13.1-5Elio Maldonado Batiz - 3.13.1-4Elio Maldonado - 3.13.1-2Elio Maldonado - 3.13.1-1Elio Maldonado - 3.13-1Elio Maldonado - 3.13-0.1.rc0.1Elio Maldonado - 3.12.11-3Kai Engert - 3.12.11-2Elio Maldonado - 3.12.11-1Elio Maldonado - 3.12.10-6Michael Schwendt - 3.12.10-5Elio Maldonado - 3.12.10-4Dennis Gilmore - 3.12.10-3Elio Maldonado - 3.12.10-2Elio Maldonado - 3.12.10-1Elio Maldonado - 3.12.10-0.1.beta1Elio Maldonado - 3.12.9-15Elio Maldonado - 3.12.9-14Elio Maldonado - 3.12.9-13Elio Maldonado - 3.12.9-12Elio Maldonado - 3.12.9-11Elio Maldonado - 3.12.9-10Elio Maldonado - 3.12.9-9Fedora Release Engineering - 3.12.9-8Elio Maldonado - 3.12.9-7Christopher Aillon - 3.12.9-6Elio Maldonado - 3.12.9-5Elio Maldonado - 3.12.9-4Elio Maldonado - 3.12.9-3Elio Maldonado - 3.12.9-2Elio Maldonado - 3.12.9-1Elio Maldonado - 3.12.9-0.1.beta2Elio Maldonado - 3.12.8.99.2-1Elio Maldonado - 3.12.8.99.1-1Elio Maldonado - 3.12.8-9Elio Maldonado - 3.12.8-8Elio Maldonado - 3.12.8-7Elio Maldonado - 3.12.8-6Elio Maldonado - 3.12.8-5Elio Maldonado - 3.12.8-4Elio Maldonado - 3.12.8-3Elio Maldonado - 3.12.8-2Elio Maldonado - 3.12.8-1Elio Maldonado - 3.12.7.99.4-1Elio Maldonado - 3.12.7.99.3-2Elio Maldonado - 3.12.7.99.3-1Elio Maldonado - 3.12.7-3Elio Maldonado - 3.12.7-2Elio Maldonado - 3.12.7-1Elio Maldonado - 3.12.6-12Elio Maldonado - 3.12.6-11Elio Maldonado - 3.12.6-10Elio Maldonado - 3.12.6-9Dennis Gilmore - 3.12.6-8Elio Maldonado - 3.12.6-7Elio Maldonado - 3.12.6-6Elio Maldonado - 3.12.6-5Elio Maldonado - 3.12.6-4Elio Maldonado - 3.12.6-3Elio Maldonado - 3.12.6-2Elio Maldonado - 3.12.6-1.2Elio Maldonado - 3.12.6-1.1Elio Maldonado - 3.12.6-1Elio Maldonado - 3.12.5-8Elio Maldonado - 3.12.5-5Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1.13.2Elio Maldonado - 3.12.5-1.13.1Elio Maldonado - 3.12.5-1.13Elio Maldonado - 3.12.5-1.11Elio maldonado - 3.12.5-1.9Elio Maldonado - 3.12.5-2.7Elio Maldonado - 3.12.5-1.6Elio Maldonado - 3.12.5-1.5Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1Elio Maldonado - 3.12.4-14.1Elio Maldonado - 3.12.4-13.1Elio Maldonado - 3.12.4-13Elio Maldonado - 3.12.4-12Elio Maldonado - 3.12.4-11Elio Maldonado - 3.12.4-10Elio Maldonado - 3.12.4-8Elio Maldonado - 3.12.4-6Elio Maldonado - 3.12.4-5Elio Maldonado - 3.12.4-4Elio Maldonado - 3.12.4-3Elio Maldonado - 3.12.4-2Elio Maldonado - 3.12.4-1Elio Maldonado - 3.12.3.99.3-30Elio Maldonado - 3.12.3.99.3-29Elio Maldonado - 3.12.3.99.3-28Elio Maldonado - 3.12.3.99.3-27Elio Maldonado - 3.12.3.99.3-26Elio Maldonado - 3.12.3.99.3-25Warren Togami - 3.12.3.99.3-24Elio Maldonado - 3.12.3.99.3-23Elio Maldonado - 3.12.3.99.3-22Elio Maldonado - 3.12.3.99.3-21Elio Maldonado - 3.12.3.99.3-20Elio Maldonado - 3.12.3.99.3-19Elio Maldonado - 3.12.3.99.3-18Elio Maldonado - 3.12.3.99.3-16Dennis Gilmore - 3.12.3.99.3-15Dennis Gilmore - 3.12.3.99.3-14Dennis Gilmore - 3.12.3.99.3-13Dennis Gilmore - 3.12.3.99.3-12Elio Maldonado+emaldona@redhat.com - 3.12.3.99.3-11Elio Maldonado - 3.12.3.99.3-10Dennis Gilmore - 3.12.3.99.3-9Elio Maldonado - 3.12.3.99.3-7.1Fedora Release Engineering - 3.12.3.99.3-7Elio Maldonado - 3.12.3.99.3-6Elio Maldonado - 3.12.3.99.3-5Elio Maldonado - 3.12.3.99.3-4Kai Engert - 3.12.3.99.3-3Kai Engert - 3.12.3.99.3-2Kai Engert - 3.12.3-7Kai Engert - 3.12.3-4Kai Engert - 3.12.3-3Kai Engert - 3.12.3-2Kai Engert - 3.12.2.99.3-7Kai Engert - 3.12.2.99.3-6Kai Engert - 3.12.2.99.3-5Kai Engert - 3.12.2.99.3-4Kai Engert - 3.12.2.99.3-3Kai Engert - 3.12.2.99.3-2Kai Engert - 3.12.2.99.3-1Fedora Release Engineering - 3.12.2.0-4Kai Engert - 3.12.2.0-3Dennis Gilmore - 3.12.1.1-4Kai Engert - 3.12.1.1-3Kai Engert - 3.12.1.1-2Kai Engert - 3.12.1.0-2Kai Engert - 3.12.0.3-7Kai Engert - 3.12.0.3-6Kai Engert - 3.12.0.3-3Kai Engert - 3.12.0.3-2Kai Engert - 3.12.0.1-1Jesse Keating - 3.11.99.5-2Kai Engert - 3.11.99.5-1Kai Engert - 3.11.99.4-1Kai Engert - 3.11.99.3-6Kai Engert - 3.11.99.3-5Kai Engert - 3.11.99.3-4Kai Engert - 3.11.99.3-3Kai Engert - 3.11.99.3-2Kai Engert - 3.11.99.3-1Kai Engert - 3.11.99.2b-3Kai Engert - 3.11.99.2b-2Kai Engert - 3.11.99.2-2Kai Engert - 3.11.99.2-1Kai Engert - 3.11.7-10Rob Crittenden - 3.11.7-9Kai Engert - 3.11.7-8Bob Relyea - 3.11.7-7Kai Engert - 3.11.7-6Kai Engert - 3.11.7-5Kai Engert - 3.11.7-4Kai Engert - 3.11.7-3Kai Engert - 3.11.7-2Kai Engert - 3.11.5-2Kai Engert - 3.11.5-1Bob Relyea - 3.11.4-4Kai Engert - 3.11.4-1Kai Engert - 3.11.3-2Kai Engert - 3.11.3-1Kai Engert - 3.11.2-2Jesse Keating - 3.11.2-1.1Kai Engert - 3.11.2-1Kai Engert - 3.11.1-2Kai Engert - 3.11.1-1Kai Engert - 3.11-4Jesse Keating - 3.11-3.2Jesse Keating - 3.11-3.1Ray Strode 3.11-3Christopher Aillon 3.11-2Christopher Aillon 3.11-1Christopher Aillon 3.11-0.cvs.2Christopher Aillon 3.11-0.cvsKai Engert Rob Crittenden 3.10-1- Restore CERT_LockCertTrust and CERT_UnlockCertTrust back in cert.h- Work around modutil -changepw error if the old and new passwords are both empty in FIPS mode- Decrease the iteration count of PKCS#12 for compatibility with Windows - Fix deadlock when a token is re-inserted while a client process is running- Set NSS_FORCE_FIPS=1 in %build - Revert the changes to tests assuming the default DB type- Rebase to NSS 3.36- Re-enable nss-is-token-present-race.patch- Temporarily disable nss-is-token-present-race.patch- Backport necessary changes from 3.35- Rebase to NSS 3.34- Rebase to NSS 3.34.BETA1- Disable TLS 1.3- Enable TLS 1.3- Rebase to NSS 3.33 - Disable TLS 1.3, temporarily disable failing gtests (Skip13Variants) - Temporarily disable race.patch and nss-3.16-token-init-race.patch, which causes a deadlock in newly added test cases - Remove upstreamed patches: moz-1320932.patch, nss-tstclnt-optspec.patch, nss-1334976-1336487-1345083-ca-2.14.patch, nss-alert-handler.patch, nss-tools-sha256-default.patch, nss-is-token-present-race.patch, nss-pk12util.patch, nss-ssl3gthr.patch, and nss-transcript.patch- Add backward compatibility to pk12util regarding faulty PBES2 AES encryption- Update iquote.patch to prefer nss.h from the source- Add backward compatibility to pk12util regarding password encoding- Backport patch to simplify transcript calculation for CertificateVerify - Enable TLS 1.3 and RSA-PSS - Disable some upstream tests failing due to downstream ciphersuites changes- Work around yum crash due to new NSPR symbol being used in nss-sysinit, patch by Kai Engert- Fix typo in nss-sni-c-v-fix.patch- Include CKBI 2.14 and updated CA constraints from NSS 3.28.5- Update nss-pk12util.patch to include fix from mozbz#1353724.- Update nss-alert-handler.patch with the upstream fix from mozbz#1360207.- Fix zero-length record treatment for stream ciphers and SSLv2- Correctly set policy file location when building- Reorder ChaCha20-Poly1305 cipher suites, as suggested in: https://bugzilla.redhat.com/show_bug.cgi?id=1373158#c9- Rebase to NSS 3.28.4 - Update nss-pk12util.patch with backport of mozbz#1353325- Switch default hash algorithm used by tools from SHA-1 to SHA-256 - Avoid race condition in nssSlot_IsTokenPresent() - Enable SHA-2 and AES in pk12util - Disable RSA-PSS for now- Utilize CKA_NSS_MOZILLA_CA_POLICY attribute, patch by Kai Engert - Backport changes adding SSL alert callbacks from upstream - Add nss-check-policy-file.patch from Fedora - Install policy config in /etc/pki/nss-legacy/nss-rhel7.config- Make sure 32bit nss-pem always be installed with 32bit nss in multlib environment, patch by Kamil Dudka - Enable new algorithms supported by the new nss-softokn- Rebase to NSS 3.28.3 - Bump required version of nss-softokn- Remove %nss_cycles setting, which was also mistakenly added - Re-enable BUILD_OPT, mistakenly disabled in the previous build - Prevent ABI incompatibilty of SECKEYECPublicKey - Disable TLS_ECDHE_{RSA,ECDSA}_WITH_AES_128_CBC_SHA256 by default - Enable 4 AES_256_GCM_SHA384 ciphersuites, enabled by the downstream patch in the previous release - Fix crash with tstclnt -W - Always enable gtests for supported features - Add patch to fix bash syntax error in tests/ssl.sh - Build with support for SSLKEYLOGFILE - Disable the use of RSA-PSS with SSL/TLS- Decouple nss-pem from the nss package - Resolves: #1316546- Remove mistakenly added R: nss-pem- Rebase to NSS 3.28.2 - Remove NSS_ENABLE_ECC and NSS_ECC_MORE_THAN_SUITE_B setting, which is no-op now - Enable gtests when requested - Remove nss-646045.patch and fix-nss-test-filtering.patch, which are not necessary - Remove sslauth-no-v2.patch and nss-sslstress-txt-ssl3-lower-value-in-range.patch, as SSLv2 is already disabled in upstream - Remove ssl-server-min-key-sizes.patch, as we decided to support DH key size greater than 1023 bits - Remove local patches for SHA384 cipher suites (now supported in upstream): dhe-sha384-dss-support.patch, client_auth_for_sha384_prf_support.patch, nss-fix-client-auth-init-hashes.patch, nss-map-oid-to-hashalg.patch, nss-enable-384-cipher-tests.patch, nss-fix-signature-and-hash.patch, fix-allowed-sig-alg.patch, tests-extra.patch - Remove upstreamed patches: rh1238290.patch, fix-reuse-of-session-cache-entry.patch, flexible-certverify.patch, call-restartmodules-in-nssinit.patch- Rebase to NSS 3.21.3 - Resolves: #1383887- remove additional false duplicates from sha384 downstream patches- enable ssl_gtests (without extended master secret tests), Bug 1298692 - call SECMOD_RestartModules in nss_Init, Bug 1317691- escape all percent characters in all changelog comments- Support TLS 1.2 certificate_verify hashes other than PRF, backported fix from NSS 3.25 (upstream bug 1179338).- Fix reuse of session cache entry - Resolves: Bug 1241172 - Certificate verification fails with multiple https urls- Fix a flaw in %check for nss not building on arm - Resolves: Bug 1200856- Cleanup: Remove unnecessary %posttrans script from nss.spec - Resolves: Bug 1174201- Merge fixes from the rhel-7.2 branch - Fix a bogus %changelog entry - Resolves: Bug 1297941- Rebuild to require the latest nss-util build and nss-softokn build.- Update the minimum nss-softokn build required at runtime.- Delete duplicates from one table- Fix missing support for sha384/dsa in certificate_request- Merge fixes from the rhel-7.2 branch - Fix the SigAlgs sent in certificate_request - Ensure all ssl.sh tests are executed - Update sslauth test patch to run additional tests- Fix sha384 support and testing patches- Rebase to NSS-3.21- Prevent TLS 1.2 Transcript Collision attacks against MD5 in key exchange protocol - Fix a mockbuild reported bad %if condition when using the __isa_bits macro instead of list of 64-bit architectures - Change the test to %if 0%{__isa_bits} == 64 as required for building the srpm which is noarch - Resolves: Bug 1289884- Rebuild against updated NSPR- Change the required_softokn_build_version back to -13 - Ensure we use nss-softokn-3.16.2.3-13.el7_1- Fix check for public key size of DSA certificates - Use size of prime P not the size of dsa.publicValue- Reorder the cipher suites and enable two more by default- Update the required_softokn_build_version to -14 - Add references to bugs filed upstream for new patches - Merge ocsp stapling and sslauth sni tests patches into one- Reorder the cipher suites and enable two more by default - Fix some of the ssauth sni and ocsp stapling tests- Support TLS > 1.0 by support while still allowing to connect to SSL3 only servers - Enable ECDSA cipher suites by default, a subset of the ones requested- Support TLS > 1.0 by support while still allowing to connect to SSL3 only servers- Fix to correctly report integrity mechanism for TLS_RSA_WITH_AES_256_GCM_SHA384- Fix checks to skip ssl2/export cipher suites tests to not skip needed tests - Fix libssl ssl2/export disabling patch to handle NULL cipher cases - Enable additional cipher suites by default- Add links to filed upstream bugs to better track patches in spec file- Package listsuites as part of the unsupported tools- Bump the release tag- Incremental patches to fix SSL/TLS test suite execution, fix the earlier SHA384 patch, and inform clients to use SHA384 with certificate_verify if required by NSS.- Add support for sha384 tls cipher suites - Add support for server-side hde key exchange - Add support for DSS+SHA256 ciphersuites- Reenable a patch that had been mistakenly disabled- Build against nss-softokn-3.16.2.3-9- Rebase to nss-3.19.1 - Resolves: Bug 1228913 - Rebase to nss-3.19.1 for CVE-2015-4000 [RHEL-7.1]- Backport mozbz#1155922 to support SHA512 signatures with TLS 1.2- Update to CKBI 2.4 from NSS 3.18.1 (the only change in NSS 3.18.1)- Update and reeneable nss-646045.patch on account of the rebase - Resolves: Bug 1200898 - Rebase nss to 3.18 for Firefox 38 ESR [RHEL7.1]- Fix shell syntax error on nss/tests/all.sh - Resolves: Bug 1200898 - Rebase nss to 3.18 for Firefox 38 ESR [RHEL7.1]- Replace expired PayPal test certificate that breaks the build - Resolves: Bug 1200898 - Rebase nss to 3.18 for Firefox 38 ESR [RHEL7.1]- Resolves: Bug 1200898 - Rebase nss to 3.18 for Firefox 38 ESR [RHEL7.1]- Reverse the sense of a test in patch to fix pk12util segfault - Resolves: Bug 1174527 - Segfault in pk12util when using -l option with certain .p12 files- Fix race condition - Resolves: Bug 1094468 - 389-ds-base server reported crash in stan_GetCERTCertificate - under the replication replay failure condition- Resolves: Bug 1174527 - Segfault in pk12util when using -l option with certain .p12 files- Restore patch for certutil man page - supply missing options descriptions - Resolves: Bug 1158161 - Upgrade to NSS 3.16.2.3 for Firefox 31.3- Resolves: Bug 1158161 - Upgrade to NSS 3.16.2.3 for Firefox 31.3 - Support TLS_FALLBACK_SCSV in tstclnt and ssltap- Resolves: Bug 1145434 - CVE-2014-1568 - Using a release number higher than on rhel-7.0 branch- Fix crash in stan_GetCERTCertificate - Resolves: Bug 1094468- Generic 32/64 bit platform detection (fix ppc64le build) - Resolves: Bug 1125619 - nss fails to build on arch: ppc64le (missing dependencies) - Fix contributed by Peter Robinson - Fix libssl and test patches that disable ssl2 support - Resolves: Bug 1123435 - Replace expired PayPal test certificate with current one- Rebase to nss-3.16.2 - Resolves: Bug 1103252 - Rebase RHEL 7.1 to at least NSS 3.16.1 (FF 31) - Fix test failure detection in the %check section - Move removal of unwanted source directories to the end of the %prep section - Update various patches on account of the rebase - Remove unused patches rendered obsolete by the rebase- Disallow disabling the internal module - Resolves: Bug 1056036 - nss segfaults with opencryptoki module- Pick up a fix from rhel-6 and fix an rpm conflict - Don't hold issuer cert handles in crl cache - Resolves: Bug 1034409 - deadlock in trust domain and object lock - Move nss shared db files to the main package - Resolves: Bug 1050163 - Same files in two packages create rpm conflict- Update pem sources to latest from nss-pem upstream - Pick up pem module fixes verified on RHEL and applied upstream - Remove no loger needed pem patches on acccount on this update - Add comments documenting the iquote.patch - Resolves: Bug 1054457 - CVE-2013-1740- Remove spurious man5 wildcard entry as all manpages are listed by name - Resolves: Bug 1050163 - Same files in two packages create rpm conflict- Mass rebuild 2014-01-24- Rebase to nss-3.15.4 - Resolves: Bug 1054457 - CVE-2013-1740 nss: false start PR_Recv information disclosure security issue - Remove no longer needed patches for manpages that were applied upstream - Remove no longer needed patch to disable ocsp stapling tests - Update iquote.patch on account of upstream changes - Update and rename patch to pem/rsawrapr.c on account of upstream changes - Use the pristine upstream sources for nss without repackaging - Avoid unneeded manual step which may introduce errors- Fix the spec file to apply the nss ecc list patch for bug 752980 - Resolves: Bug 752980 - Support ECDSA algorithm in the nss package via puggable ecc- Move several nss-sysinit manpages tar archives to the %files - Resolves: Bug 1050163 - Same files in two packages create rpm conflict- Fix a coverity scan compile time warning for the pem module - Resolves: Bug 1002271 - NSS pem module should not require unique base file names- Resolves: Bug 1002271 - NSS pem module should not require unique base file names- Improve pluggable ECC support for ECDSA - Resolves: Bug 752980 - [7.0 FEAT] Support ECDSA algorithm in the nss package- Mass rebuild 2013-12-27- Revoke trust in one mis-issued anssi certificate - Resolves: Bug 1040284 - nss: Mis-issued ANSSI/DCSSI certificate (MFSA 2013-117) [rhel-7.0]- Update to NSS_3_15_3_RTM - Resolves: Bug 1031463 - CVE-2013-5605 CVE-2013-5606 CVE-2013-1741- Fix path to script and remove -- from some options in nss-sysinit man page - Resolves: rhbz#982723 - man page of nss-sysinit worong path and other flaws- Fix certutil man page options names to be consistent with help - Resolves: rhbz#948495 - man page scan results for nss - Remove incorrect count argument in status description in nss-sysinit man page - Resolves: rhbz#982723 - man page of nss-sysinit incorrect option descriptions- Fix patch for disabling ssl2 in ssl to correctly set error code - Fix syntax error reported in the build.log even tough it succeeds - Add patch top ignore setpolicy result - Resolves: rhbz#1001841 - Disable SSL2 and the export cipher suites - Resolves: rhbz#1026677 - Attempt to run ipa-client-install fails- Fix bash syntax error in patch for disabling ssl2 tests - Resolves: rhbz#1001841 - Disable SSL2 and the export cipher suites- Fix errors in ssl disabling patches for both library and tests - Add s390x to the multilib_arches definition used for alt_ckbi - Resolves: rhbz#1001841 - Disable SSL2 and the export cipher suites- Fix errors in nss-sysinit manpage options descriptions - Resolves: rhbz#982723- Enable fips when system is in fips mode - Resolves: rhbz#852023 - FIPS mode detection does not work- Remove unused and obsoleted patches - Related: rhbz#1012656- Add description of the certutil's --email option to it's manpage - Resolves: rhbz#Bug 948495 - Man page scan results for nss- Rebase to nss-3.15.2 - Resolves: rhbz#1012656 - pick up NSS 3.15.2 to fix CVE-2013-1739 and disable MD5 in OCSP/CRL- Install symlink to nss-sysinit.sh without the .sh suffix - Resolves: rhbz#982723 - nss-sysinit man page has wrong path for the script- Resolves: rhbz#1001841 - Disable SSL2 and the export cipher suites- Add upstream bug URL for a patch subitted upstream and remove obsolete script- Update to NSS_3_15_1_RTM - Apply various fixes to the man pages and add new ones - Enable the iquote.patch to access newly introduced types - Add man page for pkcs11.txt configuration file and cert and key databases - Add missing option descriptions for {cert|cms|crl}util - Resolves: rhbz#948495 - Man page scan results for nss - Resolves: rhbz#982723 - Fix path to script in man page for nss-sysinit- Use the unstripped source tar ball- Install man pages for nss-tools and the nss-config and setup-nsssysinit scripts - Resolves: rhbz#606020 - nss security tools lack man pages- Build nss without softoken or util sources in the tree - Resolves: rhbz#689918- Update ssl-cbc-random-iv-by-default.patch- Fix generation of NSS_VMAJOR, NSS_VMINOR, and NSS_VPATCH for nss-config- Update to NSS_3_15_RTM- Reactivate nss-ssl-cbc-random-iv-off-by-default.patch- Add upstream patch to fix rhbz#872761- Update expired test certificates (fixed in upstream bug 852781)- Fix incorrect post/postun scripts. Fix broken links in posttrans.- Configure libnssckbi.so to use the alternatives system in order to prepare for a drop in replacement.- Update to NSS_3_14_3_RTM - sync up pem rsawrapr.c with softoken upstream changes for nss-3.14.3 - Resolves: rhbz#908257 - CVE-2013-1620 nss: TLS CBC padding timing attack - Resolves: rhbz#896651 - PEM module trashes private keys if login fails - Resolves: rhbz#909775 - specfile support for AArch64 - Resolves: rhbz#910584 - certutil -a does not produce ASCII output- Allow building nss against older system sqlite- Update to NSS_3_14_2_RTM- Update to NSS_3_14_1_WITH_CKBI_1_93_RTM- Require nspr >= 4.9.4 - Fix changelog invalid dates- Update to NSS_3_14_1_RTM- Bug 879978 - Install the nssck.api header template where mod_revocator can access it - Install nssck.api in /usr/includes/nss3/templates- Bug 879978 - Install the nssck.api header template in a place where mod_revocator can access it - Install nssck.api in /usr/includes/nss3- Bug 870864 - Add support in NSS for Secure Boot- Disable bypass code at build time and return failure on attempts to enable at runtime - Bug 806588 - Disable SSL PKCS #11 bypass at build time- Fix pk11wrap locking which fixes 'fedpkg new-sources' and 'fedpkg update' hangs - Bug 872124 - nss-3.14 breaks fedpkg new-sources - Fix should be considered preliminary since the patch may change upon upstream approval- Add a dummy source file for testing /preventing fedpkg breakage - Helps test the fedpkg new-sources and upload commands for breakage by nss updates - Related to Bug 872124 - nss 3.14 breaks fedpkg new-sources- Fix a previous unwanted merge from f18 - Update the SS_SSL_CBC_RANDOM_IV patch to match new sources while - Keeping the patch disabled while we are still in rawhide and - State in comment that patch is needed for both stable and beta branches - Update .gitignore to download only the new sources- Fix the spec file so sechash.h gets installed - Resolves: rhbz#871882 - missing header: sechash.h in nss 3.14- Update the license to MPLv2.0- Use only -f when removing unwanted headers- Add secmodt.h to the headers installed by nss-devel - nss-devel must install secmodt.h which moved from softoken to pk11wrap with nss-3.14- Update to NSS_3_14_RTM- Update to NSS_3_14_RC1 - update nss-589636.patch to apply to httpdserv - turn off ocsp tests for now - remove no longer needed patches - remove headers shipped by nss-util- Update to NSS_3_13_6_RTM- Rebase pem sources to fedora-hosted upstream to pick up two fixes from rhel-6.3 - Resolves: rhbz#847460 - Fix invalid read and free on invalid cert load - Resolves: rhbz#847462 - PEM module may attempt to free uninitialized pointer - Remove unneeded fix gcc 4.7 c++ issue in secmodt.h that actually undoes the upstream fix- Fix pluggable ecc support- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- Fix checkin comment to prevent unwanted expansions of percents- Resolves: Bug 830410 - Missing Requires %{?_isa} - Use Requires: %{name}%{?_isa} = %{version}-%{release} on tools - Drop zlib requires which rpmlint reports as error E: explicit-lib-dependency zlib - Enable sha224 portion of powerup selftest when running test suites - Require nspr 4.9.1- Resolves: rhbz#833529 - revert unwanted change to nss.pc.in- Resolves: rhbz#833529 - Remove unwanted space from the Libs: line on nss.pc.in- Update to NSS_3_13_5_RTM- Resolves: Bug 812423 - nss_Init leaks memory, fix from RHEL 6.3- Resolves: Bug 805723 - Library needs partial RELRO support added - Patch coreconf/Linux.mk as done on RHEL 6.2- Update to NSS_3_13_4_RTM - Update the nss-pem source archive to the latest version - Remove no longer needed patches - Resolves: Bug 806043 - use pem files interchangeably in a single process - Resolves: Bug 806051 - PEM various flaws detected by Coverity - Resolves: Bug 806058 - PEM pem_CreateObject leaks memory given a non-existing file name- Resolves: Bug 805723 - Library needs partial RELRO support added- Cleanup of the spec file - Add references to the upstream bugs - Fix typo in Summary for sysinit- Pick up fixes from RHEL - Resolves: rhbz#800674 - Unable to contact LDAP Server during winsync - Resolves: rhbz#800682 - Qpid AMQP daemon fails to load after nss update - Resolves: rhbz#800676 - NSS workaround for freebl bug that causes openswan to drop connections- Update to NSS_3_13_3_RTM- fix issue with gcc 4.7 in secmodt.h and C++11 user-defined literals- Resolves: Bug 784672 - nss should protect against being called before nss_Init- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- Deactivate a patch currently meant for stable branches only- Resolves: Bug 770682 - nss update breaks pidgin-sipe connectivity - NSS_SSL_CBC_RANDOM_IV set to 0 by default and changed to 1 on user request- Revert to using current nss_softokn_version - Patch to deal with lack of sha224 is no longer needed- Resolves: Bug 754771 - [PEM] an unregistered callback causes a SIGSEGV- Resolves: Bug 750376 - nss 3.13 breaks sssd TLS - Fix how pem is built so that nss-3.13.x works with nss-softokn-3.12.y - Only patch blapitest for the lack of sha224 on system freebl - Completed the patch to make pem link against system freebl- Removed unwanted /usr/include/nss3 in front of the normal cflags include path - Removed unnecessary patch dealing with CERTDB_TERMINAL_RECORD, it's visible- Statically link the pem module against system freebl found in buildroot - Disabling sha224-related powerup selftest until we update softokn - Disable sha224 and pss tests which nss-softokn 3.12.x doesn't support- Rebuild with nss-softokn from 3.12 in the buildroot - Allows the pem module to statically link against 3.12.x freebl - Required for using nss-3.13.x with nss-softokn-3.12.y for a merge inrto rhel git repo - Build will be temprarily placed on buildroot override but not pushed in bodhi- Fix broken dependencies by updating the nss-util and nss-softokn versions- Update to NSS_3_13_1_RTM - Update builtin certs to those from NSSCKBI_1_88_RTM- Update to NSS_3_13_RTM- Update to NSS_3_13_RC0- Fix attempt to free initilized pointer (#717338) - Fix leak on pem_CreateObject when given non-existing file name (#734760) - Fix pem_Initialize to return CKR_CANT_LOCK on multi-treaded calls (#736410)- Update builtins certs to those from NSSCKBI_1_87_RTM- Update to NSS_3_12_11_RTM- Indicate the provenance of stripped source tarball (#688015)- Provide virtual -static package to meet guidelines (#609612).- Enable pluggable ecc support (#712556) - Disable the nssdb write-access-on-read-only-dir tests when user is root (#646045)- make the testsuite non fatal on arm arches- Fix crmf hard-coded maximum size for wrapped private keys (#703656)- Update to NSS_3_12_10_RTM- Update to NSS_3_12_10_BETA1- Implement PEM logging using NSPR's own (#695011)- Update to NSS_3.12.9_WITH_CKBI_1_82_RTM- Short-term fix for ssl test suites hangs on ipv6 type connections (#539183)- Add a missing requires for pkcs11-devel (#675196)- Run the test suites in the check section (#677809)- Fix cms headers to not use c++ reserved words (#676036) - Reenabling Bug 499444 patches - Fix to swap internal key slot on fips mode switches- Revert patches for 499444 until all c++ reserved words are found and extirpated- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- Fix cms header to not use c++ reserved word (#676036) - Reenable patches for bug 499444- Revert patches for 499444 as they use a C++ reserved word and cause compilation of Firefox to fail- Fix the earlier infinite recursion patch (#499444) - Remove a header that now nss-softokn-freebl-devel ships- Fix infinite recursion when encoding NSS enveloped/digested data (#499444)- Update the cacert trust patch per upstream review requests (#633043)- Fix to honor the user's cert trust preferences (#633043) - Remove obsoleted patch- Update to 3.12.9- Rebuilt according to fedora pre-release package naming guidelines- Update to NSS_3_12_9_BETA2 - Fix libpnsspem crash when cacert dir contains other directories (#642433)- Update to NSS_3_12_9_BETA1- Update pem source tar with fixes for 614532 and 596674 - Remove no longer needed patches- Update PayPalEE.cert test certificate which had expired- Tell rpm not to verify md5, size, and modtime of configurations file- Fix certificates trust order (#643134) - Apply nss-sysinit-userdb-first.patch last- Move triggerpostun -n nss-sysinit script ahead of the other ones (#639248)- Fix invalid %postun scriptlet (#639248)- Replace posttrans sysinit scriptlet with a triggerpostun one (#636787) - Fix and cleanup the setup-nsssysinit.sh script (#636792, #636801)- Add posttrans scriptlet (#636787)- Update to 3.12.8 - Prevent disabling of nss-sysinit on package upgrade (#636787) - Create pkcs11.txt with correct permissions regardless of umask (#636792) - Setup-nsssysinit.sh reports whether nss-sysinit is turned on or off (#636801) - Added provides pkcs11-devel-static to comply with packaging guidelines (#609612)- NSS 3.12.8 RC0- Fix nss-util_version and nss_softokn_version required to be 3.12.7.99.3- NSS 3.12.8 Beta3 - Fix unclosed comment in renegotiate-transitional.patch- Change BuildRequries to available version of nss-util-devel- Define NSS_USE_SYSTEM_SQLITE and remove unneeded patch - Add comments regarding an unversioned provides which triggers rpmlint warning - Build requires nss-softokn-devel >= 3.12.7- Update to 3.12.7- Apply the patches to fix rhbz#614532- Removed pem sourecs as they are in the cache- Add support for PKCS#8 encoded PEM RSA private key files (#614532)- Fix nsssysinit to return userdb ahead of systemdb (#603313)- Require and BuildRequire >= the listed version not =- Require nss-softoken 3.12.6- Fix SIGSEGV within CreateObject (#596674)- Update pem source tar to pick up the following bug fixes: - PEM - Allow collect objects to search through all objects - PEM - Make CopyObject return a new shallow copy - PEM - Fix memory leak in pem_mdCryptoOperationRSAPriv- Update the test cert in the setup phase- Add sed to sysinit requires as setup-nsssysinit.sh requires it (#576071) - Update PayPalEE test cert with unexpired one (#580207)- Fix ns.spec to not require nss-softokn (#575001)- rebuilt with all tests enabled- Using SSL_RENEGOTIATE_TRANSITIONAL as default while on transition period - Disabling ssl tests suites until bug 539183 is resolved- Update to 3.12.6 - Reactivate all tests - Patch tools to validate command line options arguments- Fix curl related regression and general patch code clean up- retagging- Fix SIGSEGV on call of NSS_Initialize (#553638)- New version of patch to allow root to modify ystem database (#547860)- Temporarily disabling the ssl tests- Fix nsssysinit to allow root to modify the nss system database (#547860)- Fix an error introduced when adapting the patch for rhbz #546211- Remove left over trace statements from nsssysinit patching- Fix a misconstructed patch- Fix nsssysinit to enable apps to use system cert store, patch contributed by David Woodhouse (#546221) - Fix spec so sysinit requires coreutils for post install scriplet (#547067) - Fix segmentation fault when listing keys or certs in the database, patch contributed by Kamil Dudka (#540387)- Fix nsssysinit to set the default flags on the crypto module (#545779) - Remove redundant header from the pem module- Remove unneeded patch- Retagging to include missing patch- Update to 3.12.5 - Patch to allow ssl/tls clients to interoperate with servers that require renogiation- Retagging- Require nss-softoken of same architecture as nss (#527867) - Merge setup-nsssysinit.sh improvements from F-12 (#527051)- User no longer prompted for a password when listing keys an empty system db (#527048) - Fix setup-nsssysinit to handle more general formats (#527051)- Fix syntax error in setup-nsssysinit.sh- Fix sysinit to be under mozilla/security/nss/lib- Add nss-sysinit activation/deactivation script- Install blank databases and configuration file for system shared database - nsssysinit queries system for fips mode before relying on environment variable- Restoring nssutil and -rpath-link to nss-config for now - 522477- Add the nss-sysinit subpackage- Installing shared libraries to %{_libdir}- Retagging to pick up new sources- Update pem enabling source tar with latest fixes (509705, 51209)- PEM module implements memory management for internal objects - 509705 - PEM module doesn't crash when processing malformed key files - 512019- Remove symbolic links to shared libraries from devel - 521155 - No rpath-link in nss-softokn-config- Update to 3.12.4- Fix FORTIFY_SOURCE buffer overflows in test suite on ppc and ppc64 - bug 519766 - Fixed requires and buildrequires as per recommendations in spec file review- Restoring patches 2 and 7 as we still compile all sources - Applying the nss-nolocalsql.patch solves nss-tools sqlite dependency problems- restore require sqlite- Don't require sqlite for nss- Ensure versions in the requires match those used when creating nss.pc- Remove nss-prelink.conf as signed all shared libraries moved to nss-softokn - Add a temprary hack to nss.pc.in to unblock builds- caolan's nss.pc patch- Bump the release number for a chained build of nss-util, nss-softokn and nss- Fix nss-config not to include nssutil - Add BuildRequires on nss-softokn and nss-util since build also runs the test suite- disabling all tests while we investigate a buffer overflow bug- disabling some tests while we investigate a buffer overflow bug - 519766- remove patches that are now in nss-softokn and - remove spurious exec-permissions for nss.pc per rpmlint - single requires line in nss.pc.in- Fix BuildRequires: nss-softokn-devel release number- fix nss.pc.in to have one single requires line- cleanups for softokn- remove the softokn subpackages- don install the nss-util pkgconfig bits- remove from -devel the 3 headers that ship in nss-util-devel- kill off the nss-util nss-util-devel subpackages- split off nss-softokn and nss-util as subpackages with their own rpms - first phase of splitting nss-softokn and nss-util as their own packages- must install libnssutil3.since nss-util is untagged at the moment - preserve time stamps when installing various files- dont install libnssutil3.so since its now in nss-util- Fix spec file problems uncovered by Fedora_12_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild- removed two patch files which are no longer needed and fixed previous change log number- updated pem module incorporates various patches - fix off-by-one error when computing size to reduce memory leak. (483855) - fix data type to work on x86_64 systems. (429175) - fix various memory leaks and free internal objects on module unload. (501080) - fix to not clone internal objects in collect_objects(). (501118) - fix to not bypass initialization if module arguments are omitted. (501058) - fix numerous gcc warnings. (500815) - fix to support arbitrarily long password while loading a private key. (500180) - fix memory leak in make_key and memory leaks and return values in pem_mdSession_Login (501191)- add patch for bug 502133 upstream bug 496997- rebuild with higher release number for upgrade sanity- updated to NSS_3_12_4_FIPS1_WITH_CKBI_1_75- re-enable test suite - add patch for upstream bug 488646 and add newer paypal certs in order to make the test suite pass- add conflicts info in order to fix bug 499436- ship .chk files instead of running shlibsign at install time - include .chk file in softokn-freebl subpackage - add patch for upstream nss bug 488350- Update to NSS 3.12.3- temporarily disable the test suite because of bug 494266- fix softokn-freebl dependency for multilib (bug 494122)- introduce separate nss-softokn-freebl package- disable execstack when building freebl- add upstream patch to fix bug 483855- build nspr-less freebl library- Update to NSS_3_12_3_BETA4- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild- update to NSS_3_12_2_RC1 - use system zlib- add sparc64 to the list of 64 bit arches- bug 456847, move pkgconfig requirement to devel package- Update to NSS_3_12_1_RC2- NSS 3.12.1 RC1- fix bug bug 429175 in libpem module- bug 456847, add Requires: pkgconfig- nss package should own /etc/prelink.conf.d folder, rhbz#452062 - use upstream patch to fix test suite abort- Update to NSS_3_12_RC4- Update to NSS_3_12_RC2- Zapping old Obsoletes/Provides. No longer needed, causes multilib headache.- Update to NSS_3_12_BETA3- NSS 3.12 Beta 2 - Use /usr/lib{64} as devel libdir, create symbolic links.- Apply upstream patch for bug 417664, enable test suite on pcc.- Support concurrent runs of the test suite on a single build host.- disable test suite on ppc- disable test suite on ppc64- Build against gcc 4.3.0, use workaround for bug 432146 - Run the test suite after the build and abort on failures.* NSS 3.12 Beta 1- move .so files to /lib- NSS 3.12 alpha 2b- upstream patches to avoid calling netstat for random data- NSS 3.12 alpha 2- Add /etc/prelink.conf.d/nss-prelink.conf in order to blacklist our signed libraries and protect them from modification.- Fix off-by-one error in the PEM module- fix a C++ mode compilation error- Add 3.12 ckfw and libnsspem- Updated license tag- Ensure the workaround for mozilla bug 51429 really get's built.- Better approach to ship freebl/softokn based on 3.11.5 - Remove link time dependency on softokn- Fix unowned directories, rhbz#233890- Update to 3.11.7, but freebl/softokn remain at 3.11.5. - Use a workaround to avoid mozilla bug 51429.- Fix rhbz#230545, failure to enable FIPS mode - Fix rhbz#220542, make NSS more tolerant of resets when in the middle of prompting for a user password.- Update to 3.11.5 - This update fixes two security vulnerabilities with SSL 2 - Do not use -rpath link option - Added several unsupported tools to tools package- disable ECC, cleanout dead code- Update to 3.11.4- Revert the attempt to require latest NSPR, as it is not yet available in the build infrastructure.- Update to 3.11.3- Add /etc/pki/nssdb- rebuild- Update to 3.11.2 - Enable executable bit on shared libs, also fixes debug info.- Enable Elliptic Curve Cryptography (ECC)- Update to 3.11.1 - Include upstream patch to limit curves- add --noexecstack when compiling assembler on x86_64- bump again for double-long bug on ppc(64)- rebuilt for new gcc4.1 snapshot and glibc changes- rebuild- Update file list for the devel packages- Update to 3.11- Add patch to allow building on ppc* - Update the pkgconfig file to Require nspr- Initial import into Fedora Core, based on a CVS snapshot of the NSS_3_11_RTM tag - Fix up the pkcs11-devel subpackage to contain the proper headers - Build with RPM_OPT_FLAGS - No need to have rpath of /usr/lib in the pc file- Adressed review comments by Wan-Teh Chang, Bob Relyea, Christopher Aillon.- Initial build 3.36.0-5.el7_53.36.0-5.el7_53.36.0-5.el7_5nssbase.hnssbaset.hnssckepv.hnssckft.hnssckfw.hnssckfwc.hnssckfwt.hnssckg.hnssckmdt.hnssckt.hnssck.apilibnssb.alibnssckfw.a/usr/include/nss3//usr/include/nss3/templates//usr/lib64/-O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -m64 -mtune=genericcpioxz2x86_64-redhat-linux-gnuC source, ASCII textcurrent ar archive?7zXZ !#,] b2u Q{Kpڰr]Lgq 33=~|sq?G\6xw*CpeR_q\x%V2|Êw*6Us%ǦT/, }3^DQ *-D1X5xM()5\j1(Y I36g:WiZQDu7D:Gs9n-yIpAd.SڬB Ys4ӝjżOطtqH5|# |[Ү+Y Jcbg=ڲ[t3m % Ҵ4Jv98(G6EDQES ;ogge쮎 z)jO$6V+f|bb>r~E:FS`ֻ* ^YgVv*' fD^`g^0D$SՐzPGl"ǺPc3۲̊{0_ ZM{뗨 |pġcԛl#*=e*EpUI=vv7nB¥6dإm:<}(4(U͇He6,JioFIDL5@Ϻƫ)ޮTE>2x[x$~ ɑ==y^NR[ٹɼ1z嶧8cهÑh8jY.Nk$#WOI# QZwl{k+vZ:DMP2`SQd)kTMƱRH|2C?=RqG@þ|NcdjakN0lV$P6%->&b6ճp3:26\Q~@V)I,ct,x\|׮}얊 z鮸# F m%Z,?s ;O8r#&\`OԻy{jLA`˨>cO;~Fb/-2xH/zeqą:j],z\S[$1l {8dAc-H-"ۓBN/bz ȯ)u⾸mL7s%_ʀg/=܉pNrf`S mom2'FF%ZU}@BX8zdb`LVmsҶ(Όx K(-^oy4ZYկtbekzXn^YÓE ]B)GE8u?)V$6iZKfp$6n/-duDEI`)'ُ3v+`gjP<)WN#^SXqÏt&G(EQ}S~y,iQN|C:e%$\ȼLᔶl`\&tB]\&b%y=9*Un.kmƈAx&{l(x_˖$ AQ~!t5?Nb 1ycOFx\VT{e1~2T!1''~Tbub+#Q95aֲ_^1H4j߫?aLSd 7%UX1~̷eS|Lp>ut}O(ȶL8 f*~HݱqXNDh$e푆_wK"+wY-OY '@bd,PP ^- F z>Q48Ğ{Qquj l٣b30 Q^w[1:R;Hʒ'g:m8=a33Aw0H&TIO>1ǍFLlAwi/"V5M4i}Mk i.BssI,#vzuͪbѢǼ p`IN923yuʲ3!:$UP`շv10\zw!A!v{XzR"6tT IqTH-HIHv_;-<*jSDp9 ]Mj!U'a4FC&oCzYpL8$pk{SހNԏ[k\OwRGAL/6G;;"5CiM}wpe=WTȎ}}wCV:%8F/!EI 0 `~,DDC|t49kp:Ђ M g \Y,(xkeIHUT>p`AQ̾/QPjAi (>Y*@Ls7 p {ǝ &r5\5 O৏u/Ջ\K2Z:V}L/F 7GR]w9Bu~@_;X Ì+OP%{sq%PH*y2="J26P"-FW! ,ynjXź_?_75c8UUqV!9N1\s~dh\*@҅Q_W4Rbܰw(U`9[ם8 a7^4 7+ޙIӌi1Aw@{`ymUl3V @nuO!l1ARf'ʔzpo z0I+搤1ySkH/T¦;q5pzs9lux0oغ6jrٵN)Ŋq"@Km`ܮ#DrtF.lJspqQV?w"`'["-jo=d vGcC& σ dɲ9AD\ v&WۮYJHfzTdXzxeԈIsX@P˞lUvnc{_12>޷pI?>FL1+v"/1ܙm4nEj]!s IÃ5o,M1\l>j=dL+MIƖD{?I32~3_j8[>z vFU3tG !$lmE; )XC4d>)ȉzAJ=Ti IEXHƦ%;xbT9&Ena!V薑RDG HWr,T]S] Y؂ %ĒVL8UׇdSm&zmLџe~IW[|) 4mlXH $11^ScŋhS>q="2:&V|87F~l?DY?ePͩJõ~=uQj&ȥo?8RSmsuUnh k{P|B݃o\)|.ϖۇCq׼;j7⻥'(Sx?JwJ CE#p=s)k]荛سCz ^WnS0>O<|zgVOYN3{v_a5ݟƙmal< y.}9wU0K$o+⼉ "A|Ӹy&#$l5*4%^xtܼ)2YOIb@ȿv%&c?xS9aiBu|Q/* j|ijӾP9w 7G?^۴W(o'uvgvo\@8ň~>edxHw.e"fPc>FbT6=)³kRcD{{K" =njS{&еr~E+z* K$v'^B+`Nǣ]tz =0m,U'8x.Ǎ`lgPғ!=M(t w1L AaEtvFSPNf,6?"`sC/~F-] _&̍ y#g ~h |_X0X"˖D#o0zu!pJRο4WAmľ뻬UȺr6s!<<͆QϐE0tW53#_1Ū:5dvqQF1Ԫ6S'ulag"ajC ?/5$xzH<&yB}~ӯSn:? 7ÉWF;er `5U9#Ŧ v` kzQc~vN]ZsO HU)L]%(8}Z2} V_F"y.>PZ!Y*SXW9G'>*-Oɹ31S}&{g2C3GM!ITX1ew&bܔykV(7XV{ם}RFEb_NVRdCh˦ .#滧p3 3u6KS0]1$l-Dd'}+Yd'.J MV`!IxgOq[8ue&jΰJg ?8bHC7l/꒎c)FmXSa%}:LDN6b+Y,$Sced})^鐽}-€Qպ҅7ۭ j̾x1yܩyRRHW0Dɗ(@)mf 7]V7lVҔ{:s@ s|t!j*' ’w8~y])m}"~a.;Y%,=[WUR)P ՃYlHH^#ڝ\!E'B+DIiLuKe3^l0 bw-KQso8@#?s?[̄ p)\?>6*O# —E*O4_n`ifVb8_Vj4Gb@0c.ҥ`#o*?86h60>md\#SHhO8b#jWǴ濵cxGRVr7O09TΙi>p8 8\{^U=aHnLޑ ME`4z7becj=GAQDMxr?d.!N[Ц7TW`Qgrj mV>M ەemlҬVR4ݣPZ0I+r5Y-xu*%!E(Mk ԉC` /rnwlO/`-_@X{,dGaƛQ]Pz*;wۦCu{P4Zo|XEV ş.ez2k4…)v z7 j!~QZNp3cb]mPc"cC,2 ;yyip"t 0>xK}Å9}Dݦb$v];P2~h-]|xř58&j4_jM;đ'Ђ@qߜ_@!&'Lu죘SID_!ͫp 2nds%( <=cG;W"LFErߐ 6ITX##E(tul[P0OFX&}rek\\LV&}V@b v{eCq92kβJ=1@c.A[1TEhLQ^!EZ#rp4Eji1SH*AUMVb$f>`$RC. '߳Q#$.8ϺĉK(ɡz&&* C[{baTE[ƪ{0?sZWsx /kLZe({o8%C|# !םv0 1i@#͙ \"R~*+09 )|g`vIBsfdΊE;::қ:^kOd%(9 OƪZtKEC欟nnN"]ݷ %8MHLh6hk6YކwΤ\Ox_3#|[{}fa.\L% 7 N4,"z6 T#) A#8b!s|w~&2 潷,pRX,\k&lҒy]nGbtD*:lI0iQg(e D+Wzcl mvq`"߉]Rۋ0cNA5xc,E1Cʉԥ;Ȝ 7E؂'C[:VЫ __2(5W-0OhX!:W /;/+$'=b+df(wd+I!{2~hI3Ѩ`GYGM+'( `$*4 Xc--oW xڸ;k5N_.AXeYs&dR0wDbCDZNkTO͒z/7y# D*C -ǺƇSЯ~orI[h/•/pX,㲸 `ڶ1&w$;fq&wn, +WK+d :~uAk5C0z~^:s)p7\ء<7LVAݓ5I`x`{MeӅ9jY]>rjyT6}aP{i7/ӡvFoHm7YK8Uqk8@ѽtd2Џc*A <.RԒa )PgW`74(5[`0vP*9<-D0˟2p2 .ߴJX, tQهUpL҃|-ȅ)(H]Fob+я*כʫ>'u#T/ 28P.g脲mdq:[40X$os6i &(LrAgGoAH8#A@S)RH#"RQ)a,8ꕤӤrb wSMxPsm/T6;:N羔QKCmb;sV=b[<`X~ ϭWY*%=CF֠~{3SVN1"P9Rn0T7?@PY3'We8 Lզydc['҂ 6qhwb.Zwv816MD||<:egïDچgEWsBd`7rrAԾd8Tmĥ&\fDIEpruI8N< oMjq͡Y-AuUamH;JQ&m"Gr%żd zUtɭ`j[&nhe뛊_͙|#OXOf~pQ_ÙUq&OAxUJӟh%|7./#2gS/~WV:8YkGm}EX{w.]W6bBZ4DzS*tΑx׊V2`dWzA `ԆVe㓐W.3#՝ZIysjB{ 6'Sgm" /„>4Ar QDdl#ʫ78N蹼>f#1ClE2'ca0#R"dSjIZ>vA1ΗEĮX˅GgMmZ"W7u-|cZaL빅&BQoÒYgl vҥpZb y7.jJ{"dY[<PVc\3%1޳~M,'t;A-LjᇤJIk<IX#)fjt3qhjtElb{yȆ/FIAvֲb -4ah~hC$*ʨW|)o jOvA{^.U!7KHZ;yc:1$lPv٣)td>oc0,0Jo2l{TlYvr/l]Qx,eB;8t7Ѯx%7&B!EEٓ ABҢ繟.̇h̋O1rL=o~*9@q{5mhZ%?bxbQ5Y3毶UEjAFO9$ps?фMz60:@y6IkW.ސ ] Ƶ6CzXr :G4CK|Os>Uٙٳ YI6JgQvŇ;u_nvfL;/lo}gYjk:,)i_}OEW>xhˎ?$ɔK:Zjڬ؜4__~J-fb LXQ'me6A/ Fyg=Ehw PPi` I{Ps*0BЏKjͬKC!"YCdרs76u2bt;[<v|>MR_ֿ >[2|UO1·b!wX1 =w!vvbaOľ!% =tSFP0#^zF;ӣY2珠\Y8HʖII-y*9G2%(`~\UMW4Gh7*.ˏ,zFZK`l9lzļ%hjb5ͧͩ1w5r2Hs?fjqPܥF.G ~Tjo#oWN>eRԒ( ؁.yy>b5 P}T%%P`R jp]в/Ni*KLPz p^X0;?d0x6jK~Og̖%{Ys'ʞadg/dCTU*=PJ(<:/ Z#P)My0p< rzJ(S%ZhAPZe".6vU3|GP ?TM,"hr×aY@i3JEty"ˀ%GQ߅S ai##gD{~a2|kѣ+σR1CijdcA@?mXsɉ~6јPjF$f%l^~ FV7B zȍ3aKuQ;csu[nGJATGڙ&џxDtn߬* @Xߖ+5Xb^V뵕 'T& A> JG#pA>fкt !aPcEJEvpT 9`;j림]zڍ'LZ0@ʲIq,~&gQed]q?'W2 Fy~ K(8 x"R65iƷ2GJan;xՌB/0i)By;+t]h2G<֒(^r[YLU_lP&`_j5C뫨4d(LBi ^hU g& bëamux&m\(I \Ao|JGNOڜp0LR߭y.V"'h:q< C n1s-TT" k U-nE^\\f\𱚄XUqWlm⮎Z>V'3ݡQ/ވas4K:2vtcR;'Pp(k>D."RUwvk)Uwf[hur6s>C ] 9jבZX5 ~σJ&j!@ )`>)NYծQs?DN V*mqgj}Vx6l-OӼ'Hk_fo4Q|)v9hKNEj|8WpXx!SNk[~w e:uk1[#*ppI , ƥԻGOO<=}+%G|tCs‡fM2cw9Ԡ1q#]Kǟۭ]!Cgke,zCYRaȌ͸D274~57/6k} ܼ,4?\C6x;%;)Ze% 6FVe3+.p.zY ϴ'Q2uޝ.}SM x'o0;7=5b\KDHℤG=dCаt/qCϪc +/6l<vx!Ҕ#R"WX*ݿ 8t\B"Z,}N<Ђ&̊Lx`6Aձ4,Bvq_OPRw}te9k-,"|?]{wKisV9O|:|L#ӂ3?`qlEr gtk|gAtewO"цN9·m4K Dtgz<2Y]|xKxgH߅ %"۷͔*qĹ-^\eVjB_@K# F˹ E+Sb 2]*.u1 'Ifri?~&[k(L󸥌(Ŷ > ># 1wj0x 4iAB[,;M)75vKZKnqAZn }#Ůڈ=N,NN٪os<VDi`"n#ŎڨDJ[LXEL}vsPQGEPyeΉ62%H=K(wp$2׸HrSk^>+Ty'ٲCT0h[% Wߴ4^cr~ǝQ3zHBݯ#h‚qe+a [gVS?ƾv_(OsFy 낏=~[ 媒)BhCwbmr"FѥxOŅv"pMǙF%iԃXca7uW*)hK+F ^M1XbeZBsMlFz O(޷n>/&sb+$'o;XEtjyܗ!">|nA޹ia)zO_' {\Z5+ʈzj>5\<::f@E{M:#]R?e9 te<#eߐw=O>XC;^# TnF\b \G'9@UvkdtLO}X9QVŇ^v1$ң^In cPC}"J2ޠ\ԋaE[fˮHǔM% W ٙB &T3*'X9Tyz y)%iNB*6xߓ,*L5s>J~[(G47xBjqsODDhyp:2iN*+U:2Ρw2/W؈憠&D MOmerrD8JXg2/Fag 1ItY`K=ӺZ[>C 'ă%Nl7$p-%codξJTedpSX,EwgIXIW+SG*yU9~Bz˻"X.W2>2 WƔiUze᣽ Du`?op~+ѝ˜cOS\^2"97*Tikw U joaW'6HnC2]u9yl)I&qfЉr[qy8\{E^?NmS;?~:EZH>z<j~:+ȱhO W ڛeo'ʭCøوc7LpxjeƫA[O.Am䐞T|=]m]rQ }tرՅ1w,Hv8: !- d R YV7Jzwbo\{7aIlԜ2:L[:FאPkT6g;5HahZy 񓋁ߞ8Į~ 1zB~!{8A+|ņN%G.⺽S4<m[>L24f6/ZVxh&2.kRuP_ډd{r0XBk*Twɜ}2Y3B_m1֥aFdV19& \kj"6s,YSPaVWU>_k٥?"YꚈ~8|ˑQD5+ӔPۃd5 NGtw*&qLiA UHOL^6+rԨEB{&,~2 OdS?l nM߃ J lZ\PD~x k0{K 755 ͹Q0J%.1)|Kf)/kk^rzs6>}f|N(7{pAg2' eʭO5 _ 9=Y2KD5Φ {|ܽV\E+_^Nb*wIУ~7gzB{74[C#޿ջIy3Q=Ԡ9Sjio؞̿o6ꌝaEm>ewF4Wh>Pa om+yyy(v#;j`T^B 4osډl0Rd/Nڧ AҔDļL^=.^n)/> bf4Y2 ɐS3w}Z%8GɳI^ٶ\Kf!Ãykd+{U9ĥ7R調s[-CCsU~"rZUT|FcZ+D<: wy׿ ;î@,>EN5ҟA՛Hr j p0-X 1o&%?79nr]m3ʨ/\Kj#iDt0ؒK6ìp2HYppk﹕> J;ߌ+%ڕb?3# 5fI}!s})H)67J {['K+U6tɃBOT O&p2خ0xzWu^5ʋuKPevHl[mr$># NBŃ0%s;ܾiR&?3cw3b$}!fW59Yu=Bs90#AI'|ܿLC!hGY̌+L4.q\"d|*otU5 |rRmzR1&uJr-$3(yʣH{j4kcvy0%2rq+nC똺ȚPidP6"40oqU_Du1lyոF=":#媨('ZºMn0AU /6ŮK#8}UٙhS7zٰ-j!VCݿs&)?V. ˍ.9O=L OҐ:Hz|᧣ qKТX[-% C,s<]](< V(R٨̭,QϒZzqo4e^bW:JPa E_.$c6atT&ؤ썅B]rW}|b-@&`X+mg}Zr6/^d6 c1Q=:XO42`} fE2sXLL@pp=\E GZꦻ򩟰VqՇ~ D|Eeaz:Z$ْM06bUA3U`\)f/vbf,cAʕ]䅱^ⱼ` rITߗeo!~sTXT#HDT!/IJv'BYBEpP]N'.XIBQ"K 0'RzgZįz67!YMa HPHGI6GP}asPZUwR:i]&|x?863afXǞھW%0c{ rr/X$/,C&oTvYF sX*ls^oT4k:pc6K,0)ºk:X[iaЧφ;_)+P  H*msm9񵽡]tBnܡT5_% j{f*QІlufLC1 f6GQ}VZֳsailc0IyƸZbDkJ?ֻN10)@c"PxH6o=5N1u041j>i)ȸ!b}af]տ#l>.&"{DrZDɣsJ$FЇ^nJ0 b5.AK|$2k&zyonJLij*Q:qp)2IN ]++B`Gic6,5Csͱ|)/#:Oc4dc(<}o9ufVbBQ u%0(6(]RN^#Ik5۽a8=\? /z ~ REDqo=pES90wM,*9GjGD+5WB~pJ⊲J+y>^?cܙ7T'6WHffbZ7GdhPD[{$؆hn`qQ}X{?hM'vK>ɽ50Q?r(:;L1q87Jd0-RV2&`k9i+Ў~u0IZ٫טe {&', "Z$gIwK uvkZgڎ9쑹Z7 cE޽gկ:uS_tc(G;╘d[y&GmL,҄=U$ R&ҿ"3 xɧ5]b[TA_PX!Ec.HL*IyVl:9/q(ozA.!|wAϲwsݻ E~ԫhǿ7r\zi\[+Lq\|5 c'!*ܚ.c2`ҁ<9 W#suU4 Y|r?) kYB]-0>yᚹ-i~57UجE=9Z{]<[$'Ʉ)w25Y|gm}=#sz[ߘ;>YB~Wjܹ'A?N<'% :Wz$s٭~hmn.pfpXRUMVzME_5Z30\|m¤r}^Ajس7|F<^ń@f cþKF@9V3_<{{&<0qmqfaȊ~D]hٸ$ -DP*PP>r&_jU#r,Д A3{u_ ȳXi`qTgӳ. rDBr~O|w̸Ɉ˨D(rᄎ=Wxq ҒBVs* Fh\Ѱ6"mP/mT*([fX|(AsN^xo8%ӛ:㚭:1C7RO}IbAf ]x}𷌘GMC`YDJtJ"VwjЄI`!Tb@n;ȅ}H_7XbSDR Hfa7 X2z kX8h 5;楝wޯghDs?Ĩ*X6ʒ6]կa<,z%_M 9mES6ot EU%taR0c8yDfm]ZV(u;H74yGuʷ)9?ܭҨBY/hc[ i1—w(κW x9X0cmD&fɌ5AA ,SvpI$>\1] L6%gp ҇ &SV Ρ70͕s!؆|y1 ~,H~h{A,B+Ȝ/)Z_v=?ȭ@*C}_1oA1j.*N8 7iQc>Ծ˄[wgߡm(x5DP _.8]ŢBo@_ f(?#5j8Q:ol}pҁaYIW?S 4
^DE'`!1bB\J, %9t E0}waFa,m$擵p 16f$_1B6:ǁ'mL5PECFGX,uwML۲Ks*U)9D U(ُ2K=>d@su{4۳&ktjiZEB~nKm4{K leJ}n@Pi5I 29RrI)h@Ikt`X-ҳLH\}.HT>`t>@/$_%7=!$RG '(LT JȵupmxlnhC.xETXYЮf߯NSX5>mj2vN,OWÅ d lgy,KEU4)n)ΜAs\,Hԉo XR,*WAt6W N)vP S|9ԥ߶!?3Wfskx r4vj?w=3FbE#D'aȰC=* 7S. S*X@?V6Jy/d!r+AiWFU{z}<|kKNt2e`qd6r(9NgYi10=.6nLa+{\#⍰" ]$I) (Qn#d'juIş+j-"-ŨRwtZK ԢbRGCtIlv]E欍Qblr=٥eox% .C 5XPU^~T\ MAu#?#C ʯo kɺ΁&4SƆe, 6,TaVD +r>k4h"FPwojsֵ\O[P*ٯ@Lf~A:v).C-.ZWۢ=&k@ڽoȻJ[׿~6WS[[Ko2p ydj{mG:}wwWxi{ѫKT T͠J1ƤTRr0w)Fpi{~أHMy\mLo+~Zk\RZ_2b9 Ӗ=4-؄R̊\h5TG SFeL5֌:EN0ln 'n8Ɗ&e0`D#Zlk5Y ǫĪw0#XXvDTܭ8[Bz2hRG<;Ih>_־ ;7 ?X{b^8VePs$ N[_C'*aGM{V]$Rl :U2l$N1<\8^i~բs{-bֽHV{^{(o;l _vu2" |`Ie*T4w⩏BDx3lԥx^|H$ "g<:VqX g|ZDK\sB>7}ؚ/;7AuvtuB2^nE 4dgpxk _MGX rHF!J jOu4=v‘z6ȶҟBSq>.'#}'fu 7J]e,H j _괽.n nl#!kA3xohM Z[.~ˈAgL5@e-l`q䟎m˿wzU\OFlu㞄@f^|re+gp 'J)KYy}&E=B2`]Ouͣ!z7qjex<Ueo%.TUY[ܜ ss2׏W1bx\Zf/jJ-Awzǯ-,لSz6{WiKTɞxP=NxC6mq}xnZ!LO0U1!6V1'tLd\>}kFg$jk.9c6'X?Xs(HAHgLKtΫpe,6VQ 0)s ԞmL=&L{N/V'-UkV`i9k k\Q\g# ~xI54c$1> h&sW6? d$xliug&J'yH UH]LZUn$ ws9y3ȏ{ϼŐ}slWplcQ\N6W<dV3R㱑 !6_])\A|߀nf-3 'dXkRB/ S\>"TmMŦ l̈́H8\ՕNV !{ YK1oBCǃ['BRk; ~4hAYcLe_:LM9/naTR4`VIFոM}F֯$+ښF2~`mah?:v&˿7Fs5\ kqeTik 7ڣeܡ3/2wSeeWX)R]?{i9tBixYR2S ͉Wa8s0y> ^ZmX5Z|= \F!븘->3lڜeQ1 i οȨ}kB;82گ2(_Z}sGYs!%u!uU!( 7τIJ/V,XƎ2l }/}rWFl "kTeA# @ /nJ4irDO͆&^-LxK.p^8FISiUGMp) FaVo@hZ!Xнd?ZG]ίl?B8>$W,!k;Rk=rKT41-HY9UU}7(0BL_#`OxM5kdMS&oWoOvc_1[hѺMɮn3d݇%Y](1Qtx)B^JT*r%e)YI4~܋1=xJb/C~LGdthe`4pU'вpkL.6*Gl8 .ԾJ/ zYۄnJWGnPUO@ Rz}Lj'OLBB|(6Qrs=kiu}LH\IVSu+N -!ቲūfw:$'%?B] w2-íV+bOԃ#I̢E# i2Yf7dU8 H@G8 O Q@(H.{ȲvMI3eM⩜AD[bLy\\'>)74 Qo2/I!n(J7 4pwD0~C1P%LLk1e;uT#lE_&>kI93SbST+-I `!/̮8Y'|cb.{͸f@!*<=ּ }@ JTSɚZf isUh`5)ʹbjuZ:Y$>>zvW';ܣ$ًKE3 g~?y?D<a<=M}گaHLw6m~Ɖ9}Hozu'tAOqx D7VI]S4[*m#.nN銇gy= MxR lsVx}H=JbW:u5V *<5kyX:OMud;9еqEQ`p'E;eKW\ AŒ+ӣtSoP{(:Kkuf-oTe1SoTSf1{]4?ղ0~znz աH<‹f݀D+(SNVMEۯ!J912^^KȬ(Y35P'1?03&|34].duor U,}%RX tvO2:1mՂ &N߅.}iuϬ"WlJqk$.Ji,Ka}~K?US֎{b= B3Eε{%Qiu(w'< n.Drw~I0xͤU?7+8C_ųA'Ճp 0RYhy 3Cp PuщO0&Zku;\<=5 Y|Q Ζ3`VvMj)QoAҼ*"4!T'Y|5G_Es'G/gF]YX'rN5win]"T2pc砡YC#1gpGSʝۿ n Qw2j"^8ޔc%"1&##50\jxD"RD?2zv^/V C bW Ɏ #<1jD 3i1"s+dL7E>2iq`\![_{9ȭ#R?Np  8׀@IbmNew2BwCxl\{:$ ;5c|y8HJIdTII!-6.\ɜg_sܯZi4B*K)AF1? : pEFmFun>n݀'l! 8C3JPSV1EY_?gk`6PAIL 3ɼ|*>Pb]'\2hrUJh:<>979f 7 hkr0:}K[u!#rfUʚ9G RgWGQD~θI(K}l^I^q230~5FdU_MO NG kѸɁԁ!(k-HL5<;X#\ 7X6—$/4~$R,zhy^9eYna}ϘK5M"t\ ]֖L߸k*ꚤӰ`఼;Q B&" -H2ue1Ak j i7 4wYkcS~ fj([<v'sfȒGo:A,s 12u5nf } 1٫(T:'K+A<0uס:ؚ'ԤD*?q1w }_ vf|7 efdc UؖJ_魼~sxɻ_Ӭ3'q隥0 CaL[LjJ-m=j)Q0#($(VOa#`f9" zeHx-չW6fq 78iQ_ f= #hx;ΜuŮ*mLq$-A woXŭ![|~"M\<'~ T -c`GT/S#e)xb3-#)TZ4yJYMo\^Q|lO}>:f|$ޞqw'26᥸*t غ(FU.d%h4uXcJ ^ܝ(8&_gr8Iו_kNJxomm0Wڬiũ_{ 1}cXHߑ^hޔWGPUe '6Bv\ ̭N,=%Q7T0>!;듨YY X2i,QZĿ /~`b _9wrh¥[T+<Wm^'DkxUO01%krma@otG&.,t^K mQ&#^_N{[ raNA̵f~Jxc%Ǹy?gp1 $#,rӞY3Άp]sk/|֊ӿ{+F<`Ce1()%m&.Ec`U!z>Ur:MN_ !wi` h6q\i˳1dF>37ٶeM722?#a\2ӲDTYx/uz[+ I²-Y xP 7CZGgiX#ZUqdT3mKKig#$ρCxq>=Ҿle,pЎk,#DhG>~~3䏂 .~Y; BY{ mVhbѕ);Bh!SKLU6"@?^L_x[R {y(g[$U=ƽE[~rgR21J+ӣ2 +Zog<˴U*+y. 6a7 (=P"d SI?vNUWQ@q_Wr18+qM2D&5+$tD3fWxbC=fK;}GAW豩i";a 6Gu[e WDsIqz4ci < هG[(wűCg^g .W /5e242&U5)N`RVHuwd)B.}>.ev SF>DXc;%aeT]lzܣX ?sy*iK3ga2fG>i)Τ,/Qp&{AEF ompH[yU^ V A6, =Ldy4E͛pFpPl+ )XZ>Ex#n=?X >\ JYbf$-:G+Rl9LwР>UHb&(^.9au'F.͖ tuF&C7 (`w(jDq0g{t9Oy]Kf9<Hm) ?b3V22m5= yS~0l1XwEDOᶵw6ˊm`, 0nQd"˼t`k| ܮmE0kaaQk.|"$CAHt/04)C1h9u5>mjMJ (HQOrz+Rp\5a qY8H0':,4,'&#`xuL!UWcMv:IdMzjmEdӏ2 =ъp6E"T"ma8T#o6.ACtRA80kKZ@ bڞa=[*[9$XY]E(jrdǣ wm9U϶ߦS^}ЍrD_}:tƻeB029Y_!g8ΰ۽)QYQ&N( {"!`zX_&5h B$Æڨ-lu6G, +m+㵤(Ucj\w} ϨFGu$wv@olO6l(hj$ļ~}bO aL:hE *Wd,;ի}i)&{pC ߳ ދl%)^ѳE@"]bRPpS]]::N~g %ܸ#NbЌ#RxQhR=8tS}^A4dlaH3$LMA/r(Ο,>I\$Ii#>^ pzWX6#͕BT 1M fhۋ(;^TvŒ_V٢]WPAV[;,~_8I*J|D oquܟi \FQS3q]9HhA,p@m " Vd"OnʕGu'9vޮnt ng!)<e%KwG+܅cdGDWaUϘZWe9Wx#JJ~EvNQ\.^ <k1]֛u(\qIo dOIvF; jfwkTUж9+#n"d;Xb u,?*25Qgn*1rW ܜoC7**RB Jz Z?dϠ6l?#/y$%|O&Y-#j qPva}[Il2F lBL|o$U=ug} vѤb:y=GGh!=IJe>cj%Ԭ ?F]npFnz/ ( ~z^p9w'ߋ su3zw*M-6n~i量5 W7WxIU$)|ȭ}-JHDVE'ՠJD=5NZ| _6eonA-Èѿf "1aP'b4 [##8=o?u!o+W(Y]#>L%]۔}$<EI `[qz/uSB]2gWW#QC^_]|gɓ_s @(a/ +bX>Ͷ&[ڿcЖ0{l@D}h;rD&Zу0rey˱.Z1(ͯ3 IkanX.2PuaH8y$(s蚞Zۢ_,8Cct׿q{h+\1) &;%ڴ3Ef'ˉQ2}XokqMU6~ c0UP\DFd)6J}f@2]?P%Oխ!/fM2sψ!gUT6_BjJՒ \)g95Ȏr0F)b ȚDXEo!(reއnI9W7\zY˥R1I4We^nøLH(J vqN$8k/*C5ڈ%yG>BUo~W#rwno$PL%Kc.dişa Tf![`:^qEv|fe5>U$Rd f/Gk;6F~ӥy>vBFh,\*93InZo}Mx)Pxab@.8:T@?B?n okD(N+z̅׀\+Ԅuj>]料}o13{w*dMrDTO I!pCdV|et~V+߅#Cq!IWJ( nz)k:Fӣ~)sF?{O~{q xeW滞 Ǚgin{$VD}_PwtGg'g@zʍUҩ©&r`"f$R %OeNm%:M[w9Ӊ'rs&chJBw)PD&>YW9ȻHE<-HԸ(W6&ǍJNm@38jjAV74ymt[̠#&S۸ѣ }G4tw|I&;B00|±$Cm⨶Qָ7$kҋ.'Hτ2ёES3xD|=~f:$iWOmYrqlQ[}AG=r3wW1YO8:[8>|ZK5Qz(z;Mu)ԖJ[m ?<-%r +OJ^gv]lK}kuڥw}?YHmsiʽE}N)f.pI\^!CX_.,gEd#- CEX =^2MK  K\U=6Ѵ1S9/RLMw 2I`XH"2R_~F+^ \gXpl3"03Pǀ4zeX}hǢ ٥fyf&d]{R)gs@."U.ҥsݙ56qe0hw 1ǃr6̽Eu J9֯RG}vpJvyp.Xk΅"w8.1suHIqB)f)d}JG$x) Ajcz*f뻹'6DruX?# [,c kqȖ*j"(GYIkpN9HtKY+~;r]fNgǃc' Bymߌ`vb$8RFa!Sc>ء"= }/c/9sF|* q3>-y^.GVz>t=3s cv}30 '%`ӫٍ(ye0Ly("w-c>se34ڿk%>;28#6ς40PLe$ű@.k9'XcꖛO)rಐKcT Vu[kv"gZ8.?t#-]EnM}P˒%RUv_L+z7p>G q*Y~Xr#N1ܾ}4#p}Bpjs$4 q?PNJ!DQ,y+ ж'Wو?_ HkDڟen` 궷Pu(V<?ᗵmYܮyOsQkSpPJP߆rÍ&a-eI~ wEzfH5 "l   q(,釶gfN | ھ$[}4qo%r4Ų^TΩ/1 zx`OҶ4x> z~X=&t 뗏ͫ$?ϑ 4s;b$nLGˮﻹEޠ.dn>TO#_6!Fk: ,KҸKp?lz^B֙]R~$0a|{u؀EG?s a:_ h# &Me̓`"}. ! v׋ILtOGx>5ףC)0b%f!K'l̪$~siKB o MdUmq| >. RV~c1ϛ lwx`ȠY@HEޓK0s71؍xiD*"/? F侸ʉFԭ0_:dk"B ՏT0*ͮY%EOZf+ Bene&,sgU6=KC;uIp#X}EzC[A/Z `) j^:i,`xV6A|ewͮc~s5S%[jMlA4+:lL"_ԝ]a%.`&E,pjхTMx7|'*$˖d0-'ۑx}h( ϫumbfYm3 FN`RRb W&M-o$#,~ٍ>9fTNH)PĪudJ[KOϊCCq1.8ˑƎTwR+kfi&?Y^>Nc*TqYgDF?j2y5"k1?98a/#0_x#1duK*wВ$ed{d¢J U_o#<|>*%|#O)V" :x]X]>d`PHJ)P1CGogSחA)ыPiS[M.bt{[lahYXG?d@ 25ox-kƪړ-tmuqfF{|4De%0}/&m_aMei`=%"<WZNt).cS"-_F{/RA/"[-{[A7#U_DRˏ_ɯ3|Ul"&; Lo(Q{ UTmRd rfw6{|G^uo>H5s O*$fUiDh3>&!\I1?$[LJbz@),42TMRaٗ7ax-_\dp9IYE\쑫_Qƥ)%H1 5gOC^G͚ADdٗ!D 0)bͷvM&5$ -L߃slhd-M(=2B/[tߚJ½#tZ쑽Q^X0"[`sß~eC\4TTkG1Z!> ؏-{'jܰxߪsbkoNr_%ӽFm= SdRu"'-#*;Ô)x rHӵQ)K^ZÒ"Vt@-Ӻu@mav_ AjθyEXFc(6¦;Bů7^u+wI3dMPQS\];̓{axg}C Hܪ]bj޸*zd=-P^vТ6 _NsdSWB]-YuMtǍt.Vs}%T"Tb `1-h])HlZ`^hnZ(͑q9Jfa+mr>&z ep-3jjACP|*%|.0Y<=",hef:jEo)ٲki讐)˲ S$Y<dq1,=FD&s;cUhħgw8들EQa ttYsotH.Ws|/ 4 >5 ÅGfbn^CsNjTh\{yaE"~xUML {,I小I2{Sa,VQ d'^~=V򽄲k,&I&WUk hD&A4e2[#;˃"YNbɺf-t`aKNk]6]:?S{HlmK28r#HIVxi AmeH_@E4J8 $f"IyH'ӻ֭-\NT^R/` mWFwƓ4QR*23^* O8+wEl9qY./fkUwG<\h ĥP/{<5[(15 Ӧ첻Ptu&V)8& ?f6D/y$0p  =I 1e`A o}2"u%<6t;ysrG$N>Ϥ]"9{6?d߃5;b6̥2ݢdxpFы.1/ZA2i2:F́t`Eą@`bXӘk66E&O5~  ((/).isi-tqP7*ZzsG.^}eٵ$ܜs_i61YDsE,QxaNuKfATE&43m%+H)ֹODL]nRqjIZ栩}=o ?Fxr«ą l' h[TJ*zk=Lv:'Fu^lR'7MCd* @_}r莃z:36{BDŽ0׳wƲ{>2~ 1q[M\z{  8M#{@k&)4 l_ VcP&V ʮ{He8%RͦN_N,ͅ;~:Z&ĺ'۔hEj/9}CFZW Nڜ Sv閼%ɟ5,XԿ_4o9 ] + ѯ\a3NluJSD^=Y3Q'.IqB*oP+il7 ?py]!?eϭ7iii쭮,MG3uH*td5A^ WpQ*ݴlyI+A1)W7Q(@mHU_*mN5c)~AD, #hgFKnPqTG6] v^AA %듵S[ 6v! ]\LarufKR뛚~HgKu]:Aߪ'*A5 \q-1o+ЪF9Qiz+~P'Ec%ꞝ08a*.em 2՜|M3@jf:P }JgE_o8:P(K+Hcϧog_zE02]wޖ0x %{(7viɔ<Ń[FwZo.R/>ƥ?t!d&Tj8(9E8>Ý-)3[.w\5%٫'$ipy\QO@w~(Ċ%T0JN#tqQ-Qf7U$9aw{wr|Tc7VXkMul33jù#@U;S6!C7I$ ߏ&l7~ !P[0e=݂j)Rݒr6ro6NJX*:)5''h:m$-J\ظ4a W]HeV}}ܷeʬh-VP_X9=G^jDύAH:Cr 2w-j3`QǴftPgΎmHl]Uez䯋8f=eKv#we$jJN*|F6@k5g].Gx޻z[^ ~BzUlOٍG'˩mD:`jda(q)%9wuAc rƀZZ}7ѿE˿0Df>:@'GFUGFI7kK<{޵ mvQ6." SQPc|m4wۛ7bVU_:j) Űu]3[Jt9 3h5~yBsgnX #DeJ-$ES1FYҞU?BQGNP ?@Ѝ=* %snE!`|SXV^kjpR:8Qm sX)Mo!8n˔sQcvI~V ("G5O4x:sEml>g:K% @/T"N3ْ!t0Ia1fIi;iwq dUϳ֛eUPlP"ddwZ )ֈH` a7:9i_#i4ΟkzJIrZ"Kqxqw:::GC*}l=P=}S`t}[[)wܡW="EyL͆)(]"Wpk*dƹ92+ޔEŐ wnVWGC&'_mPspˆ!߰Ow,b}WP+.y5?~:E/k敄ѾAzaUno:S{U8R ![ZoR㻙̰-ڗK֯01>zKҩ9 QG v/og#\< OFڿ8 8) =lյs6 1Γg)JYEs+/52D4ב3yS}gW9VOv4|!Bo F9ל|&-rK3 vݳhi*Sm W/A:6SYFJ%<إK.zVnylգ*n 6Y+B 32)adF( A&ύ_k洴՘^q+Y}aI;eukQDރZ=kL .cֿ_KQ9aZ@ñJM&d~ZAM [TqSQƤF",*V'\*A'LbZ瞫VunKqZ!9A1Fu_"׹or]* X_ bZ5ڌ*#J,a8^0l4ؙٔ&|0p: " 'BرUGh,)y)@xWTӡ;̛H}d;C ~İa30(Ql rkRvv䇷Eq;(y*@$$EVƴer.tm-ѥP$ZoK\=U+=T  k O/Hr*AB y0 Q펆rM6^#%TV N~Gjƣfo-HqH6~Qt]0-&SuFBF-W>k, j7!╦:8g *w3Kӛ:K(#.L^UxݘTmmRb\Kk'4mݷ8H`X54C/?i zҸ1(CD]XW\ąwS9_d;qЦTZ̳Ł>\pv<* .$nG}B+BLDUu1>h46Sz':xBGX ;.xnKX&rNZr1(RiݕbN{bi#)4yvwEߜ@vqu\[#=͜;K$֜S /qAUo)P]}T=穻1&+s|췯!쾰t/D·؄Y=h"2F"3 [-]R<5@dVI/e,+ȭ\w&V R9FU5YYKN`>r CftKPI*Ƞu E2I`LLU[o%F/  X283@" O)HafE*Y'ލ/QcW $7 6Z 3-ۯ0G-wl 0y5T %Zwm+Sd9z5М|}[F_6,+Z4 [y^];kZD$^i&LHs#Ҹcʸe-# RWB.8R"}N?6&\Ӽ'ʏӵ,(S4qefc1㰹=Vo kT3`]iY-~ [\*тTb c\"n!±Ƙ8Œ݋}GO}T|y{6{C[:0rw- +e!7v9+tIJlrs3nd5Lyxvگ kB f_dʭac&0iFL:p^~d83+3{&Oel,Oҵ TlJ3 '?WPB8q5us0U\J#+qD4y+a%kh[LEpq1% %zy Ԝ R.K܂z .o%dOm3Oa@bL'юu:EWJ|7[0I+%o"dאR/r%*iyH'7MTXSSoWNcyН,7vTh&6q1ΔUG^ 2P2Rux%| /*J:)PʎiԌww1cu Z)IS۪k;/bS@,gs1mhrg|4M8$f;gq=Zi+[[5RDP^P ~d<sq&}MS)tEXn]6@]LT-^b@0~ax,졢,@=Ps“r5֚+aR迁=`F'1 'g{{rnAE)!u!R R(cX!DT[K\ooixԷ]9? .z~jk>zNper&`8amߤ>ЕǪM4B^YAAs6P ?o"tN(n_'JXC@щ(pZ3-,ӛ¦Jr/@ƃYPGC<ke'Z?V%IץL^*\VhNIuB<=& Q~ 5( Y# 鳮ʜ `6l&Z>wy~C@"BMv`aӷ8򫍱tăo~"0w.q´+sӲs-ڑ*=1u,fbTJe"tCO K2_~]1ٯv4*oY\)J+f ; ܄]啜Qnj{)ӡÉY"+=ռ#Bw0>f V>\7|kO?#iwЁ$l͆2[ċ+dIߨ`L)Z7RN͗yLjUSц/|$7*]c/KiQ>bէ&KoSG  - 7nVTx a_IδѰ@oxϱAg&Q:pSX M'`<*~SY 6Ck9E& חYhJI7߰j{EQ Tb|'FD@x y L4b*`>?:UAg94cd{j0rYs"YZ-}vUxKBHre?_ZxUѝ3 v+gޣ-֚ Ym4Ӽ(¿_kct[oC>|>tk"xD9͇I*!j=< J;b4r!'0#y0)ڒ`) :ј?-WGmO:W0nghx;5[״53)H-S^MsOÇ MҀib|iliC ol}]A{p lxN*I7\C)R2Nh7ʤnKvrg(1<); sgk[3')=TY Z:P:TMM.2Wڪ#Xl@5oo|R\]n?q07ne:h_yM4ƍǀAJΙȥгJz/1&~E0"1,НYl=#obOcMYL. bMn +Nx/߆!!Aaȼ/ e(\%Y$S2Cze; {N1di]XvyV$`ǿ0mOfbܫH s[Ҧ܏f,aӺ^)j>4x$j7¬Zx~2K:W<f%!JYQ /[Sf.`vQc@2*RNV7͏ f1޹P@ vNd6ݫ$n>, X+ !{'_}bP}Mō5hm9yP+4g"`yD#C-ۃ'r$@9>A^:4qi:{Y ̊GO-G29_PKݿvEœ_2XN$ྻ9* ȣP=Ͳ.m{&|i@4+omƖgd6 ` wC%h1ywb \ uE5|c z>첾Ƿ!>\Uqw*nsm`X !l/uAFlM9H#~]eDҶ8s ǒ29*1QU̇E}CLix,:ri$ ]k;-uD5(\kqv-0VclSǵNVJ|Vj}gDWD$">`ae>CT5}Klm 4\XB:^y,U0=-l.,^"^@ysnn {љX8'ލ1EbOjeFkoF4 Նp ;xHs}/&xU(-u= STw\;G]bCxuiMM>0iT@6*q0FHOet-5;m͏b@#IF?3wϏ*2Qeh*8 aU.$4CB>W ~ذ7\ad@^}^-,}܋ZZ;1lV{C}a6kgȫ@HS;3#]}X{}j}ŀ9ARC]J \BD7L ^KJ`T4έi"VMxYJ(Z1P/I>jhY}01_#P$B+݁K 1v*XIfuv+B郫#0%NӂIe|w.~Hs'̚=@ w|үS#P(5jAg tߘAGABAGB7(Hpi%V1AeZtoqi0k ǁ^Fe ;PA509OKR%M{{GF{jttON]YbFO{GWO!<(̵`wy)/=VAGAρObc@GA([d"9)syZ~|/7*BgTwF֋Wg;=Ӹ 2E)]& hKdn _Es, dCkw5@u/Lɝh~hr (> o7[`w6* &tԔce93AYg9%cV9+Lԃ=o&oƖ!%FR-"Hȴ:mG -%\j" 9B!r%3Ziu K؉[kނVbiL=XƄ)nS Hx7ɉr $zkrX@N^U\U? nM5@zu ֘z{1H (شϓ` _xM2^[ d Mg1yۨ2{:*i)}[iĭL+{!'S̷x]^buS^c܈ΜQ<۶"~[sS%=iVmEDO⇲,蓦⭺ԟi=h߷Ħ~—uIkhP%EOaCj<)Jb>&f]7L]D6mw&1]A&~Ksu#W:J_1 mϷEȯIv;\%ĆZĎ;Y4Q+Ϡ eQ펜*B :Dh2m,`݉;!-`f5BG 2 x1mMr\įŮix|hmmt{SZe3@!~, 9 Ǫ7$PSf Cp2=xT^/;CgaS:d124%^n:"Fm1e[vC{KJ>)^zK9$./0ڌr%[EdKpZV 9I;[̎K?FG),#JwU[u}jJ-m =L)4$'J[ NHsۋ;>Y:1?Q{6=)XI)fxTe4~x>L/eџ3 )z-.SzspQP01A&{uxj̰|7\ۼJ~qQ <(s`X0@|pUk)گH*SoCn+C$5,~]-3!Ke?L鏟pT~*LϷ·wфJٜ9$ ' ]6r\ܥ~`ah#OK62+ X5D;g8ϠQ@^|HJQmzi"euBpWOY2mO߭|2cX0vGkD,n7؏2m 'Jfryi "GMW.b\ KJwcN'v~|iVBaA8 op Lt~ s"xy*V:fرv RWr)󼀖@ nO+t$ * f]4wį Rb$?)]8),"i#,(@zsOzb 40U.%M܇*&O٩ Vɂ#3{:!päLkp,/J=rZMPaB{h,5|Rtы̕27uKAt􋓖R=!3O)Ce>7xQ4;SkPTW8®$QCs#TP~3oy/jaS_̏d詐%J <6GRm}6) xX!4ĪT5U"w9F'8tΣְq |ɘ>ދA`W~\oihz#} lE2oښӖ%Ɉ +(JFj|a#ѭY2`kNieƌuҩOjoʹ'8!>.HK ǿ'kH1 ^^CQ>j\b+N`R@J` 2{jT&㑇ygmw RG XQ-ªZ˝VW=m(|;X!אFsE%{MVZĵ*|'nhF35 Y~pЏ Y۞YBrU^wm̜#-|@x6*TasoO? i!IO6&pC3VC4Vp)WuN{Cdy\eE7UEĺ LғaոI v=[Z}1V_K{i C&)4bxFUaۿ{=ULF̛ {ovKzW~mH./]?uQ'CwbU*ߖQX;80vQ%=K\b'\Sn/f;Hw2?];_oq%[X(f[R補_;)o:3F#ѿጧ|Y̒V -w"ռ"p/z"Av G'06mR;vT0;p &ƆY[VzIcX1D=i!-h>EPPW#5%ɷbE(M,vTo!|J~Xk~kw1t%W-^xM% 5fGo-]4 >M~Y҉#3>կ@WGJClDZ+轒^x'R@"26VmhTr5ffH<ҥ}u_bU;A!_pX.`%iVYPOg+e4= (|R M]p:A7wUG9g A0譆L]C/'=˲džǩEkP]Jč@6˶qj| &47&Nj"xOA[>0Mt\[5ׄ#s»RF}iVCe쇂;w[F}\9PDFaF.?N5m|&t^h,G^Y[ { xi L,p%뱏"҅P;;!t h ss  \T%0e;8R7OGո<[,6ԍw9釤̩~FdQCs c(>mf`E0_嗁QuicY#} ^ŢFOӅc+ #8u{ E: q옭>O@Co}_xZCs6 ')N@a ##CJFV,?0['pfg-|R>ٚ\R >,`z(0ͦLU3D6^Y,>DE[Y^zd脃)Jv߽ym3݋8^}LP; n4^ xQHwEʠUj.An+v\S H>Otr7l1@X5QlhCZNd n4ή2뚺)J_U( \*'t/ %j鐜\0bg)b,V')S!O&BTte%A8 BV` ؐX UkjeWv-V]rRs (˺FjR1T3 +Uc~zR]$)q9_炥AqO@w6b7G-9J,򖇍k)FcjF260_ 彙l dM)J3P-__&5~PۤmJ/W1;fCsS]8wO*'2;x^Pq=m΅7(Ch%\Jv %\yi>yZטYmd5Q)"(`-9mҧw&bLu204AF9 "3J}u`40?9LW̋MN]_Ӳ Nrӿ5yIFp4)РB<]t'?C~f) y‘ztCcd$צ9u2!]V'/aVrJϻ5_^áiO(|z+ `>w'$l8Nld2#hN?F@9{KYP^@?vq=yZ>$zZ\@Ӯ]v }7):"1G b~t0B80ފ lkY0iK[O}]-@qݖT9K4b*)2ҕ*p 7qrNѕ$IC^M~@k$UZK[q2lycSEj ܚ͋]/v7n-BnEi ,u㜸='|-1)DX@B؏ZT–C^v$m@`0|*n2qfZ|us]&>݈6+5&AN]$x@(TbH"lx@Xo,sjv;d_9/ #F?e{O<8b3D8, ܚнS44 Z4Bx)@KR6͢y#rn Sec^=MRDrcb֟4#Kgpljov䇂)[c暴[t!n_+ɮWASoPx 0`|@k^| N@T':Aʃo?2|RŌk=r',[uݘ#53Ѓ)Ÿ8өjdB?ܸHl6`]ב,vȬ_,+0 oz:P3r%G6מM}>p NTC|8T;-g]5[iw%l/dEFt/[TcgѝQ4boA {d nܭp%z+`9}AؓӪ^!\+-<~RauMծ8I0g"*ﺁF/R{ UW%?[^7Bpda d-#"Boox$h^4T'vӂ,lώbۇS9SL_߇u* cj_S<'!̇L}BeZإa)Nq+M M0IZ3%D(#3=fJ~Xa|RɰN{D_%}m"2 L-ZG+trD:*TN$ \ w@ɀI lF_U<'wuc#k_`'܄wZZI,][{8#V+Ҋw{ p9\CK_Fm NU^OdzG×Sq_%^(Ͷwxu8]%›Ȗ ܾwI|}?/e h)SѪeY}g}6»9Pnf`zAE2c|q3ssGN't0U5 t3tm6 "ߗLDwj7O?~ FRSKsUU$ /^Ow0nKÂ0* 2*:XC)aq*{t-?EޱG$9_63e! !hEZ};+c+-9C/!*߅o~ڶ1YQѰcMzO{{$cq0Zqpu&Ks6fm ..DyrWgJN}oT|br2@8?zRW!#Mv/ŭY/+(U@kX7Xym0jSFBJO6!Ao+BޖU2~q g!c@%X8\kY]^걝I`r4Ij()D}P¹>$y4eu'ٲr, =!T|jTcD{dv '0. \ڃma3Z)/S NNQט\ڬ>ZYӃZW[^ oYLu׬.{@!,_깒TK"rm$rV>(r@I/6Ĺ"[@2Q4f Gn#xha bʡNp'[`{,6ĝmKi(_͝Dwy|r6uB /gr$ ;jW<_=o) g}*k/\ѽ9mw!.' qinBxٝ! Wݝ.ΥG\띵& 8r{<#J`瀝geª<CuJղ|1/T~*.{^yyjOo憌 #z4z]lcWLV$TO=NC w{ɒfD#fw\Ģ Z/Bh*cxupˈq'8(RaYЀ8zPƏ}tBg-`~ujk0B*Z]`.8Ϩ}/xpJ_d5F[L>nIy,MM q{:et,J땺9!=$A'o!۽T ˁΛnKvw@H1ŭ](?\ۈ˯;+XT1{0U)&45%][:@"Mtw#5d?-XW(G W'l=7{!ٽQϕ1׹+[Ŀ;.l pݜ0bj1Q:*3 [z 0/u]b'z#=^}ΗFنLr0ߺ " s7 { Y}+:Hg⫲".e=UIIAGנk'y)  Z ]~;!<:D?|e'Vc񑻩E~1aCeZy]·gD 1!fwH?crNhȍVPDNee?^#yg%'Zsdڭ]Zz鸉F-8%/;fTLzRMbI(d&ͅ.@+EkYm!AU%2Z(}9_҂#|"1|(T)#aK-@6!NY I}u;5<)B `m5>HbE|C 8s"0s. tdjqG%nv5^~MqEфՉ?f;*oB۝QGiHR [jNKz""Lx6&xߝEHfuaӶ4=Vz9P=J$jiA|m+,U2AXc!>s#'O|W䅨y!S[ -8cqJeI^e J1Lu4ELܪ(,":@嚘L h[H~ 7v萗۲.>%Z]vk e?)QG³AK0 a/5Wo59 ],DT`AHгp=z*(~Jw̤I  YZ