nss-3.36.0-7.1.el7_6$>,\n`i'ڜ><?d   1lp #<   ,     $    \`;;;(\8de9$e:fe>@GHITXh`Y`\x]^bdefltu vp wTxyCnss3.36.07.1.el7_6Network Security ServicesNetwork Security Services (NSS) is a set of libraries designed to support cross-platform development of security-enabled client and server applications. Applications built with NSS can support SSL v2 and v3, TLS, PKCS #5, PKCS #7, PKCS #11, PKCS #12, S/MIME, X.509 v3 certificates, and other security standards.\Svx86-01.bsys.centos.org%CentOSMPLv2.0CentOS BuildSystem System Environment/Librarieshttp://www.mozilla.org/projects/security/pki/nss/linuxx86_64# If we upgrade, and the shared filename is a regular file, then we must # remove it, before we can install the alternatives symbolic link. if [ $1 -gt 1 ] ; then # when upgrading or downgrading if ! test -L /usr/lib64/libnssckbi.so; then rm -f /usr/lib64/libnssckbi.so fi fi # Install the symbolic link # FYI: Certain other packages use alternatives --set to enforce that the first # installed package is preferred. We don't do that. Highest priority wins. /usr/sbin/update-alternatives --install /usr/lib64/libnssckbi.so \ libnssckbi.so.x86_64 /usr/lib64/nss/libnssckbi.so 10 /sbin/ldconfigif [ $1 -eq 0 ] ; then # package removal /usr/sbin/update-alternatives --remove libnssckbi.so.x86_64 /usr/lib64/nss/libnssckbi.so else # upgrade or downgrade # If the new installed package uses a regular file (not a symblic link), # then cleanup the alternatives link. if ! test -L /usr/lib64/libnssckbi.so; then /usr/sbin/update-alternatives --remove libnssckbi.so.x86_64 /usr/lib64/nss/libnssckbi.so fi fi /sbin/ldconfig$@,@(3QUS=A큤A큤큤큤\Si\P\Si\P\P\P\P\P\P\Si\Si\Si\Si\Si\Si\Si\Si\Si\Si\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@rootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootnss-3.36.0-7.1.el7_6.src.rpmconfig(nss)libnss3.so()(64bit)libnss3.so(NSS_3.10)(64bit)libnss3.so(NSS_3.10.2)(64bit)libnss3.so(NSS_3.11)(64bit)libnss3.so(NSS_3.11.1)(64bit)libnss3.so(NSS_3.11.2)(64bit)libnss3.so(NSS_3.11.7)(64bit)libnss3.so(NSS_3.11.9)(64bit)libnss3.so(NSS_3.12)(64bit)libnss3.so(NSS_3.12.1)(64bit)libnss3.so(NSS_3.12.10)(64bit)libnss3.so(NSS_3.12.3)(64bit)libnss3.so(NSS_3.12.4)(64bit)libnss3.so(NSS_3.12.5)(64bit)libnss3.so(NSS_3.12.6)(64bit)libnss3.so(NSS_3.12.7)(64bit)libnss3.so(NSS_3.12.9)(64bit)libnss3.so(NSS_3.13)(64bit)libnss3.so(NSS_3.13.2)(64bit)libnss3.so(NSS_3.14)(64bit)libnss3.so(NSS_3.14.1)(64bit)libnss3.so(NSS_3.14.3)(64bit)libnss3.so(NSS_3.15)(64bit)libnss3.so(NSS_3.15.4)(64bit)libnss3.so(NSS_3.16.1)(64bit)libnss3.so(NSS_3.16.2)(64bit)libnss3.so(NSS_3.18)(64bit)libnss3.so(NSS_3.19)(64bit)libnss3.so(NSS_3.19.1)(64bit)libnss3.so(NSS_3.2)(64bit)libnss3.so(NSS_3.2.1)(64bit)libnss3.so(NSS_3.21)(64bit)libnss3.so(NSS_3.22)(64bit)libnss3.so(NSS_3.3)(64bit)libnss3.so(NSS_3.3.1)(64bit)libnss3.so(NSS_3.30)(64bit)libnss3.so(NSS_3.31)(64bit)libnss3.so(NSS_3.33)(64bit)libnss3.so(NSS_3.34)(64bit)libnss3.so(NSS_3.4)(64bit)libnss3.so(NSS_3.5)(64bit)libnss3.so(NSS_3.6)(64bit)libnss3.so(NSS_3.7)(64bit)libnss3.so(NSS_3.7.1)(64bit)libnss3.so(NSS_3.8)(64bit)libnss3.so(NSS_3.9)(64bit)libnss3.so(NSS_3.9.2)(64bit)libnss3.so(NSS_3.9.3)(64bit)libnssckbi.so()(64bit)libnssckbi.so(NSS_3.1)(64bit)libsmime3.so()(64bit)libsmime3.so(NSS_3.10)(64bit)libsmime3.so(NSS_3.12.10)(64bit)libsmime3.so(NSS_3.12.2)(64bit)libsmime3.so(NSS_3.13)(64bit)libsmime3.so(NSS_3.15)(64bit)libsmime3.so(NSS_3.16)(64bit)libsmime3.so(NSS_3.18)(64bit)libsmime3.so(NSS_3.2)(64bit)libsmime3.so(NSS_3.2.1)(64bit)libsmime3.so(NSS_3.3)(64bit)libsmime3.so(NSS_3.4)(64bit)libsmime3.so(NSS_3.4.1)(64bit)libsmime3.so(NSS_3.6)(64bit)libsmime3.so(NSS_3.7)(64bit)libsmime3.so(NSS_3.7.2)(64bit)libsmime3.so(NSS_3.8)(64bit)libsmime3.so(NSS_3.9)(64bit)libsmime3.so(NSS_3.9.3)(64bit)libssl3.so()(64bit)libssl3.so(NSS_3.11.4)(64bit)libssl3.so(NSS_3.11.8)(64bit)libssl3.so(NSS_3.12.10)(64bit)libssl3.so(NSS_3.12.6)(64bit)libssl3.so(NSS_3.13)(64bit)libssl3.so(NSS_3.13.2)(64bit)libssl3.so(NSS_3.14)(64bit)libssl3.so(NSS_3.15)(64bit)libssl3.so(NSS_3.15.4)(64bit)libssl3.so(NSS_3.2)(64bit)libssl3.so(NSS_3.2.1)(64bit)libssl3.so(NSS_3.20)(64bit)libssl3.so(NSS_3.21)(64bit)libssl3.so(NSS_3.22)(64bit)libssl3.so(NSS_3.23)(64bit)libssl3.so(NSS_3.24)(64bit)libssl3.so(NSS_3.27)(64bit)libssl3.so(NSS_3.28)(64bit)libssl3.so(NSS_3.30)(64bit)libssl3.so(NSS_3.30.0.1)(64bit)libssl3.so(NSS_3.33)(64bit)libssl3.so(NSS_3.4)(64bit)libssl3.so(NSS_3.7.4)(64bit)nssnss(x86-64)@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@    @ /bin/sh/bin/sh/usr/sbin/update-alternatives/usr/sbin/update-alternativesconfig(nss)libc.so.6()(64bit)libc.so.6(GLIBC_2.14)(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.3)(64bit)libc.so.6(GLIBC_2.3.4)(64bit)libc.so.6(GLIBC_2.4)(64bit)libdl.so.2()(64bit)libnspr4.so()(64bit)libnss3.so()(64bit)libnss3.so(NSS_3.10)(64bit)libnss3.so(NSS_3.11)(64bit)libnss3.so(NSS_3.11.1)(64bit)libnss3.so(NSS_3.11.2)(64bit)libnss3.so(NSS_3.12)(64bit)libnss3.so(NSS_3.12.6)(64bit)libnss3.so(NSS_3.14)(64bit)libnss3.so(NSS_3.14.3)(64bit)libnss3.so(NSS_3.15)(64bit)libnss3.so(NSS_3.19.1)(64bit)libnss3.so(NSS_3.2)(64bit)libnss3.so(NSS_3.21)(64bit)libnss3.so(NSS_3.22)(64bit)libnss3.so(NSS_3.3)(64bit)libnss3.so(NSS_3.3.1)(64bit)libnss3.so(NSS_3.4)(64bit)libnss3.so(NSS_3.6)(64bit)libnss3.so(NSS_3.7)(64bit)libnss3.so(NSS_3.8)(64bit)libnss3.so(NSS_3.9)(64bit)libnssutil3.so()(64bit)libnssutil3.so(NSSUTIL_3.12)(64bit)libnssutil3.so(NSSUTIL_3.12.3)(64bit)libnssutil3.so(NSSUTIL_3.12.5)(64bit)libnssutil3.so(NSSUTIL_3.13)(64bit)libnssutil3.so(NSSUTIL_3.14)(64bit)libnssutil3.so(NSSUTIL_3.15)(64bit)libnssutil3.so(NSSUTIL_3.17.1)(64bit)libnssutil3.so(NSSUTIL_3.21)(64bit)libnssutil3.so(NSSUTIL_3.24)(64bit)libnssutil3.so(NSSUTIL_3.31)(64bit)libplc4.so()(64bit)libplds4.so()(64bit)libpthread.so.0()(64bit)libpthread.so.0(GLIBC_2.2.5)(64bit)nsprnss-pem(x86-64)nss-softokn(x86-64)nss-system-initnss-utilrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rtld(GNU_HASH)rpmlib(PayloadIsXz)3.36.0-7.1.el7_64.19.03.36.0-13.36.0-1.13.0.4-14.6.0-14.0-15.2-14.11.3[k@[Z؄Z3@ZЛZ2@ZkZw@Z\ZOhZN@Z Y@Y|YB@Y@Y@Y@Y@YJYg`Y1S@Y i@Y i@Y @Y.Y@YXX~@X•@XO@XO@XBX@XX@XWu WrfWc@Wc@WBWo@Wo@Wo@WW WW@Vn@V@V>@V`VpV'~@U6@U6@UAU@UUUݪ@UUȒ@UU@U'U3@UUx&Ux&Uq@U?v@U8U0U-@U'@U:TTq@TTto@Td@T)IS@S@Sہ@S@SnS@RJ@RRUR۾@R۾@R@R@Rx@RΏ@RkR@R;RiR@Rz/@Rv:Rt@RrF@Ro@Ro@RnQRe@RW@RSR@QQQ@QKQ@QQW@Q'@Qq1QNQ9Q7/Q#@QQ @P!@PՠP @PqP@P@PAPXPd@Pd@PPP@PP5@PPnP;a@P(@P H@O;O;O@OiO@O@O}O~OiOYOX@OOdO&@O!@@OO@O@N>@N>@NNܲ@N`NؽNN@NuN;@Np@Nf @NA!@N*NpM@MWMc@MM@M@MMfH@M^_@MZjMS@MQ0@MQ0@MQ0@MQ0@MK@MGMF@M6@M-MM@Ls@LOLLZ@L6LdL@L*@L@LA@LL@L4Lx@Lx@Li(@Lf@L_L_LT@L0L0L K @KsKsKKCKCKCK]KMKLd@KD{@K<@K5K4@K,@K+nK*@K K@K@K@KJݦ@J - 3.36.0-7.1Daiki Ueno - 3.36.0-7Daiki Ueno - 3.36.0-6Daiki Ueno - 3.36.0-5Daiki Ueno - 3.36.0-4Daiki Ueno - 3.36.0-3Daiki Ueno - 3.36.0-2Daiki Ueno - 3.36.0-1Daiki Ueno - 3.34.0-4Daiki Ueno - 3.34.0-3Daiki Ueno - 3.34.0-2Daiki Ueno - 3.34.0-1Daiki Ueno - 3.34.0-0.1.beta1Daiki Ueno - 3.33.0-3Daiki Ueno - 3.33.0-2Daiki Ueno - 3.33.0-1Daiki Ueno - 3.28.4-14Daiki Ueno - 3.28.4-13Daiki Ueno - 3.28.4-12Daiki Ueno - 3.28.4-11Daiki Ueno - 3.28.4-10Daiki Ueno - 3.28.4-9Kai Engert - 3.28.4-8Daiki Ueno - 3.28.4-7Daiki Ueno - 3.28.4-6Daiki Ueno - 3.28.4-5Daiki Ueno - 3.28.4-4Daiki Ueno - 3.28.4-3Daiki Ueno - 3.28.4-2Daiki Ueno - 3.28.3-5Daiki Ueno - 3.28.3-4Daiki Ueno - 3.28.3-3Daiki Ueno - 3.28.3-2Daiki Ueno - 3.28.2-3Daiki Ueno - 3.28.2-2Daiki Ueno - 3.28.2-1.1Daiki Ueno - 3.28.2-1.0Daiki Ueno - 3.21.3-1Kai Engert - 3.21.0-17Kai Engert - 3.21.0-16Kai Engert - 3.21.0-15Kai Engert - 3.21.0-14Elio Maldonado - 3.21.0-13Elio Maldonado - 3.21.0-12Elio Maldonado - 3.21.0-11Elio Maldonado - 3.21.0-10Kai Engert - 3.21.0-9Kai Engert - 3.21.0-8Elio Maldonado - 3.21.0-7Kai Engert - 3.21.0-6Kai Engert - 3.21.0-5Elio Maldonado - 3.21.0-2Elio Maldonado - 3.21.0-1Elio Maldonado - 3.19.1-19Kai Engert - 3.19.1-18Elio Maldonado - 3.19.1-17Elio Maldonado - 3.19.1-16Elio Maldonado - 3.19.1-15Elio Maldonado - 3.19.1-14Elio Maldonado - 3.19.1-13Elio Maldonado - 3.19.1-12Elio Maldonado - 3.19.1-11Elio Maldonado - 3.19.1-10Elio Maldonado - 3.19.1-9Elio Maldonado - 3.19.1-8Elio Maldonado - 3.19.1-7Elio Maldonado - 3.19.1-6Kai Engert - 3.19.1-5Elio Maldonado - 3.19.1-4Elio Maldonado - 3.19.1-3Elio Maldonado - 3.19.1-2Elio Maldonado - 3.19.1-1Kai Engert - 3.18.0-6Kai Engert - 3.18.0-5Elio Maldonado - 3.18.0-4Elio Maldonado - 3.18.0-3Elio Maldonado - 3.18.0-2Elio Maldonado - 3.18.0-1Elio Maldonado - 3.16.2.3-5Elio Maldonado - 3.16.2.3-4Elio Maldonado - 3.16.2.3-3Elio Maldonado - 3.16.2.3-2Elio Maldonado - 3.16.2-10Elio Maldonado - 3.16.2-9Elio Maldonado - 3.16.2-4Elio Maldonado 3.16.2-3Elio Maldonado - 3.16.2-2Elio Maldonado - 3.16.2-1Elio Maldonado - 3.15.4-6Elio Maldonado - 3.15.4-5Elio Maldonado - 3.15.4-4Elio Maldonado - 3.15.4-3Daniel Mach - 3.15.4-2Elio Maldonado - 3.15.3-9Elio Maldonado - 3.15.3-8Elio Maldonado - 3.15.3-7Elio Maldonado - 3.15.3-6Elio Maldonado - 3.15.3-5Elio Maldonado - 3.15.3-4Daniel Mach - 3.15.3-3Elio Maldonado - 3.15.3-2Elio Maldonado - 3.15.3-1Elio Maldonado - 3.15.2-10Elio Maldonado - 3.15.2-9Elio Maldonado - 3.15.2-8Elio Maldonado - 3.15.2-7Elio Maldonado - 3.15.2-6Elio Maldonado - 3.15.2-5Elio Maldonado - 3.15.2-4Elio Maldonado - 3.15.2-3Elio Maldonado - 3.15.2-2Elio Maldonado - 3.15.2-1Elio Maldonado - 3.15.1-4Elio Maldonado - 3.15.1-3Elio Maldonado - 3.15.1-2Elio Maldonado - 3.15.1-2Elio Maldonado - 3.15-6Elio Maldonado - 3.15-5emaldona - 3.15-4emaldona - 3.15-3Elio Maldonado - 3.15-2Elio Maldonado - 3.15-1Elio Maldonado - 3.14.3-13.0Kai Engert - 3.14.3-12.0Kai Engert - 3.14.3-11Kai Engert - 3.14.3-10Kai Engert - 3.14.3-9Elio Maldonado - 3.14.3-1Elio Maldonado - 3.14.2-2Elio Maldonado - 3.14.2-1Kai Engert - 3.14.1-3Elio Maldonado - 3.14.1-2Elio Maldonado - 3.14.1-1Elio Maldonado - 3.14-12Elio Maldonado - 3.14-11Elio Maldonado - 3.14-10Elio Maldonado - 3.14-9Elio Maldonado - 3.14-8Elio Maldonado - 3.14-7Elio Maldonado - 3.14-6Elio Maldonado - 3.14-5Elio Maldonado - 3.14-4Elio Maldonado - 3.14-3Elio Maldonado - 3.14-2Elio Maldonado - 3.14-1Elio Maldonado - 3.14-0.1.rc.1Kai Engert - 3.13.6-1Elio Maldonado - 3.13.5-8Elio Maldonado - 3.13.5-7Fedora Release Engineering - 3.13.5-6Elio Maldonado - 3.13.5-5Elio Maldonado - 3.13.5-4Elio Maldonado - 3.13.5-3Elio Maldonado - 3.13.5-2Elio Maldonado - 3.13.5-1Elio Maldonado - 3.13.4-3Elio Maldonado - 3.13.4-2Elio Maldonado - 3.13.4-1Elio Maldonado - 3.13.3-4Elio Maldonado - 3.13.3-3Elio Maldonado - 3.13.3-2Elio Maldonado - 3.13.3-1Tom Callaway - 3.13.1-13Elio Maldonado - 3.13.1-12Fedora Release Engineering - 3.13.1-11Elio Maldonado - 3.13.1-11Elio Maldonado - 3.13.1-10elio maldonado - 3.13.1-9Elio Maldonado - 3.13.1-8Elio Maldonado - 3.13.1-7Elio Maldonado - 3.13.1-6Elio Maldonado - 3.13.1-5Elio Maldonado Batiz - 3.13.1-4Elio Maldonado - 3.13.1-2Elio Maldonado - 3.13.1-1Elio Maldonado - 3.13-1Elio Maldonado - 3.13-0.1.rc0.1Elio Maldonado - 3.12.11-3Kai Engert - 3.12.11-2Elio Maldonado - 3.12.11-1Elio Maldonado - 3.12.10-6Michael Schwendt - 3.12.10-5Elio Maldonado - 3.12.10-4Dennis Gilmore - 3.12.10-3Elio Maldonado - 3.12.10-2Elio Maldonado - 3.12.10-1Elio Maldonado - 3.12.10-0.1.beta1Elio Maldonado - 3.12.9-15Elio Maldonado - 3.12.9-14Elio Maldonado - 3.12.9-13Elio Maldonado - 3.12.9-12Elio Maldonado - 3.12.9-11Elio Maldonado - 3.12.9-10Elio Maldonado - 3.12.9-9Fedora Release Engineering - 3.12.9-8Elio Maldonado - 3.12.9-7Christopher Aillon - 3.12.9-6Elio Maldonado - 3.12.9-5Elio Maldonado - 3.12.9-4Elio Maldonado - 3.12.9-3Elio Maldonado - 3.12.9-2Elio Maldonado - 3.12.9-1Elio Maldonado - 3.12.9-0.1.beta2Elio Maldonado - 3.12.8.99.2-1Elio Maldonado - 3.12.8.99.1-1Elio Maldonado - 3.12.8-9Elio Maldonado - 3.12.8-8Elio Maldonado - 3.12.8-7Elio Maldonado - 3.12.8-6Elio Maldonado - 3.12.8-5Elio Maldonado - 3.12.8-4Elio Maldonado - 3.12.8-3Elio Maldonado - 3.12.8-2Elio Maldonado - 3.12.8-1Elio Maldonado - 3.12.7.99.4-1Elio Maldonado - 3.12.7.99.3-2Elio Maldonado - 3.12.7.99.3-1Elio Maldonado - 3.12.7-3Elio Maldonado - 3.12.7-2Elio Maldonado - 3.12.7-1Elio Maldonado - 3.12.6-12Elio Maldonado - 3.12.6-11Elio Maldonado - 3.12.6-10Elio Maldonado - 3.12.6-9Dennis Gilmore - 3.12.6-8Elio Maldonado - 3.12.6-7Elio Maldonado - 3.12.6-6Elio Maldonado - 3.12.6-5Elio Maldonado - 3.12.6-4Elio Maldonado - 3.12.6-3Elio Maldonado - 3.12.6-2Elio Maldonado - 3.12.6-1.2Elio Maldonado - 3.12.6-1.1Elio Maldonado - 3.12.6-1Elio Maldonado - 3.12.5-8Elio Maldonado - 3.12.5-5Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1.13.2Elio Maldonado - 3.12.5-1.13.1Elio Maldonado - 3.12.5-1.13Elio Maldonado - 3.12.5-1.11Elio maldonado - 3.12.5-1.9Elio Maldonado - 3.12.5-2.7Elio Maldonado - 3.12.5-1.6Elio Maldonado - 3.12.5-1.5Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1Elio Maldonado - 3.12.4-14.1Elio Maldonado - 3.12.4-13.1Elio Maldonado - 3.12.4-13Elio Maldonado - 3.12.4-12Elio Maldonado - 3.12.4-11Elio Maldonado - 3.12.4-10Elio Maldonado - 3.12.4-8Elio Maldonado - 3.12.4-6Elio Maldonado - 3.12.4-5Elio Maldonado - 3.12.4-4Elio Maldonado - 3.12.4-3Elio Maldonado - 3.12.4-2Elio Maldonado - 3.12.4-1Elio Maldonado - 3.12.3.99.3-30Elio Maldonado - 3.12.3.99.3-29Elio Maldonado - 3.12.3.99.3-28Elio Maldonado - 3.12.3.99.3-27Elio Maldonado - 3.12.3.99.3-26Elio Maldonado - 3.12.3.99.3-25Warren Togami - 3.12.3.99.3-24Elio Maldonado - 3.12.3.99.3-23Elio Maldonado - 3.12.3.99.3-22Elio Maldonado - 3.12.3.99.3-21Elio Maldonado - 3.12.3.99.3-20Elio Maldonado - 3.12.3.99.3-19Elio Maldonado - 3.12.3.99.3-18Elio Maldonado - 3.12.3.99.3-16Dennis Gilmore - 3.12.3.99.3-15Dennis Gilmore - 3.12.3.99.3-14Dennis Gilmore - 3.12.3.99.3-13Dennis Gilmore - 3.12.3.99.3-12Elio Maldonado+emaldona@redhat.com - 3.12.3.99.3-11Elio Maldonado - 3.12.3.99.3-10Dennis Gilmore - 3.12.3.99.3-9Elio Maldonado - 3.12.3.99.3-7.1Fedora Release Engineering - 3.12.3.99.3-7Elio Maldonado - 3.12.3.99.3-6Elio Maldonado - 3.12.3.99.3-5Elio Maldonado - 3.12.3.99.3-4Kai Engert - 3.12.3.99.3-3Kai Engert - 3.12.3.99.3-2Kai Engert - 3.12.3-7Kai Engert - 3.12.3-4Kai Engert - 3.12.3-3Kai Engert - 3.12.3-2Kai Engert - 3.12.2.99.3-7Kai Engert - 3.12.2.99.3-6Kai Engert - 3.12.2.99.3-5Kai Engert - 3.12.2.99.3-4Kai Engert - 3.12.2.99.3-3Kai Engert - 3.12.2.99.3-2Kai Engert - 3.12.2.99.3-1Fedora Release Engineering - 3.12.2.0-4Kai Engert - 3.12.2.0-3Dennis Gilmore - 3.12.1.1-4Kai Engert - 3.12.1.1-3Kai Engert - 3.12.1.1-2Kai Engert - 3.12.1.0-2Kai Engert - 3.12.0.3-7Kai Engert - 3.12.0.3-6Kai Engert - 3.12.0.3-3Kai Engert - 3.12.0.3-2Kai Engert - 3.12.0.1-1Jesse Keating - 3.11.99.5-2Kai Engert - 3.11.99.5-1Kai Engert - 3.11.99.4-1Kai Engert - 3.11.99.3-6Kai Engert - 3.11.99.3-5Kai Engert - 3.11.99.3-4Kai Engert - 3.11.99.3-3Kai Engert - 3.11.99.3-2Kai Engert - 3.11.99.3-1Kai Engert - 3.11.99.2b-3Kai Engert - 3.11.99.2b-2Kai Engert - 3.11.99.2-2Kai Engert - 3.11.99.2-1Kai Engert - 3.11.7-10Rob Crittenden - 3.11.7-9Kai Engert - 3.11.7-8Bob Relyea - 3.11.7-7Kai Engert - 3.11.7-6Kai Engert - 3.11.7-5Kai Engert - 3.11.7-4Kai Engert - 3.11.7-3Kai Engert - 3.11.7-2Kai Engert - 3.11.5-2Kai Engert - 3.11.5-1Bob Relyea - 3.11.4-4Kai Engert - 3.11.4-1Kai Engert - 3.11.3-2Kai Engert - 3.11.3-1Kai Engert - 3.11.2-2Jesse Keating - 3.11.2-1.1Kai Engert - 3.11.2-1Kai Engert - 3.11.1-2Kai Engert - 3.11.1-1Kai Engert - 3.11-4Jesse Keating - 3.11-3.2Jesse Keating - 3.11-3.1Ray Strode 3.11-3Christopher Aillon 3.11-2Christopher Aillon 3.11-1Christopher Aillon 3.11-0.cvs.2Christopher Aillon 3.11-0.cvsKai Engert Rob Crittenden 3.10-1- Update the cert verify code to allow a new ipsec usage and follow RFC 4945- Backport upstream fix for CVE-2018-12384 - Remove nss-lockcert-api-change.patch, which turned out to be a mistake (the symbol was not exported from libnss)- Exercise SSL tests which only run under non-FIPS setting- Restore CERT_LockCertTrust and CERT_UnlockCertTrust back in cert.h- Work around modutil -changepw error if the old and new passwords are both empty in FIPS mode- Decrease the iteration count of PKCS#12 for compatibility with Windows - Fix deadlock when a token is re-inserted while a client process is running- Set NSS_FORCE_FIPS=1 in %build - Revert the changes to tests assuming the default DB type- Rebase to NSS 3.36- Re-enable nss-is-token-present-race.patch- Temporarily disable nss-is-token-present-race.patch- Backport necessary changes from 3.35- Rebase to NSS 3.34- Rebase to NSS 3.34.BETA1- Disable TLS 1.3- Enable TLS 1.3- Rebase to NSS 3.33 - Disable TLS 1.3, temporarily disable failing gtests (Skip13Variants) - Temporarily disable race.patch and nss-3.16-token-init-race.patch, which causes a deadlock in newly added test cases - Remove upstreamed patches: moz-1320932.patch, nss-tstclnt-optspec.patch, nss-1334976-1336487-1345083-ca-2.14.patch, nss-alert-handler.patch, nss-tools-sha256-default.patch, nss-is-token-present-race.patch, nss-pk12util.patch, nss-ssl3gthr.patch, and nss-transcript.patch- Add backward compatibility to pk12util regarding faulty PBES2 AES encryption- Update iquote.patch to prefer nss.h from the source- Add backward compatibility to pk12util regarding password encoding- Backport patch to simplify transcript calculation for CertificateVerify - Enable TLS 1.3 and RSA-PSS - Disable some upstream tests failing due to downstream ciphersuites changes- Work around yum crash due to new NSPR symbol being used in nss-sysinit, patch by Kai Engert- Fix typo in nss-sni-c-v-fix.patch- Include CKBI 2.14 and updated CA constraints from NSS 3.28.5- Update nss-pk12util.patch to include fix from mozbz#1353724.- Update nss-alert-handler.patch with the upstream fix from mozbz#1360207.- Fix zero-length record treatment for stream ciphers and SSLv2- Correctly set policy file location when building- Reorder ChaCha20-Poly1305 cipher suites, as suggested in: https://bugzilla.redhat.com/show_bug.cgi?id=1373158#c9- Rebase to NSS 3.28.4 - Update nss-pk12util.patch with backport of mozbz#1353325- Switch default hash algorithm used by tools from SHA-1 to SHA-256 - Avoid race condition in nssSlot_IsTokenPresent() - Enable SHA-2 and AES in pk12util - Disable RSA-PSS for now- Utilize CKA_NSS_MOZILLA_CA_POLICY attribute, patch by Kai Engert - Backport changes adding SSL alert callbacks from upstream - Add nss-check-policy-file.patch from Fedora - Install policy config in /etc/pki/nss-legacy/nss-rhel7.config- Make sure 32bit nss-pem always be installed with 32bit nss in multlib environment, patch by Kamil Dudka - Enable new algorithms supported by the new nss-softokn- Rebase to NSS 3.28.3 - Bump required version of nss-softokn- Remove %nss_cycles setting, which was also mistakenly added - Re-enable BUILD_OPT, mistakenly disabled in the previous build - Prevent ABI incompatibilty of SECKEYECPublicKey - Disable TLS_ECDHE_{RSA,ECDSA}_WITH_AES_128_CBC_SHA256 by default - Enable 4 AES_256_GCM_SHA384 ciphersuites, enabled by the downstream patch in the previous release - Fix crash with tstclnt -W - Always enable gtests for supported features - Add patch to fix bash syntax error in tests/ssl.sh - Build with support for SSLKEYLOGFILE - Disable the use of RSA-PSS with SSL/TLS- Decouple nss-pem from the nss package - Resolves: #1316546- Remove mistakenly added R: nss-pem- Rebase to NSS 3.28.2 - Remove NSS_ENABLE_ECC and NSS_ECC_MORE_THAN_SUITE_B setting, which is no-op now - Enable gtests when requested - Remove nss-646045.patch and fix-nss-test-filtering.patch, which are not necessary - Remove sslauth-no-v2.patch and nss-sslstress-txt-ssl3-lower-value-in-range.patch, as SSLv2 is already disabled in upstream - Remove ssl-server-min-key-sizes.patch, as we decided to support DH key size greater than 1023 bits - Remove local patches for SHA384 cipher suites (now supported in upstream): dhe-sha384-dss-support.patch, client_auth_for_sha384_prf_support.patch, nss-fix-client-auth-init-hashes.patch, nss-map-oid-to-hashalg.patch, nss-enable-384-cipher-tests.patch, nss-fix-signature-and-hash.patch, fix-allowed-sig-alg.patch, tests-extra.patch - Remove upstreamed patches: rh1238290.patch, fix-reuse-of-session-cache-entry.patch, flexible-certverify.patch, call-restartmodules-in-nssinit.patch- Rebase to NSS 3.21.3 - Resolves: #1383887- remove additional false duplicates from sha384 downstream patches- enable ssl_gtests (without extended master secret tests), Bug 1298692 - call SECMOD_RestartModules in nss_Init, Bug 1317691- escape all percent characters in all changelog comments- Support TLS 1.2 certificate_verify hashes other than PRF, backported fix from NSS 3.25 (upstream bug 1179338).- Fix reuse of session cache entry - Resolves: Bug 1241172 - Certificate verification fails with multiple https urls- Fix a flaw in %check for nss not building on arm - Resolves: Bug 1200856- Cleanup: Remove unnecessary %posttrans script from nss.spec - Resolves: Bug 1174201- Merge fixes from the rhel-7.2 branch - Fix a bogus %changelog entry - Resolves: Bug 1297941- Rebuild to require the latest nss-util build and nss-softokn build.- Update the minimum nss-softokn build required at runtime.- Delete duplicates from one table- Fix missing support for sha384/dsa in certificate_request- Merge fixes from the rhel-7.2 branch - Fix the SigAlgs sent in certificate_request - Ensure all ssl.sh tests are executed - Update sslauth test patch to run additional tests- Fix sha384 support and testing patches- Rebase to NSS-3.21- Prevent TLS 1.2 Transcript Collision attacks against MD5 in key exchange protocol - Fix a mockbuild reported bad %if condition when using the __isa_bits macro instead of list of 64-bit architectures - Change the test to %if 0%{__isa_bits} == 64 as required for building the srpm which is noarch - Resolves: Bug 1289884- Rebuild against updated NSPR- Change the required_softokn_build_version back to -13 - Ensure we use nss-softokn-3.16.2.3-13.el7_1- Fix check for public key size of DSA certificates - Use size of prime P not the size of dsa.publicValue- Reorder the cipher suites and enable two more by default- Update the required_softokn_build_version to -14 - Add references to bugs filed upstream for new patches - Merge ocsp stapling and sslauth sni tests patches into one- Reorder the cipher suites and enable two more by default - Fix some of the ssauth sni and ocsp stapling tests- Support TLS > 1.0 by support while still allowing to connect to SSL3 only servers - Enable ECDSA cipher suites by default, a subset of the ones requested- Support TLS > 1.0 by support while still allowing to connect to SSL3 only servers- Fix to correctly report integrity mechanism for TLS_RSA_WITH_AES_256_GCM_SHA384- Fix checks to skip ssl2/export cipher suites tests to not skip needed tests - Fix libssl ssl2/export disabling patch to handle NULL cipher cases - Enable additional cipher suites by default- Add links to filed upstream bugs to better track patches in spec file- Package listsuites as part of the unsupported tools- Bump the release tag- Incremental patches to fix SSL/TLS test suite execution, fix the earlier SHA384 patch, and inform clients to use SHA384 with certificate_verify if required by NSS.- Add support for sha384 tls cipher suites - Add support for server-side hde key exchange - Add support for DSS+SHA256 ciphersuites- Reenable a patch that had been mistakenly disabled- Build against nss-softokn-3.16.2.3-9- Rebase to nss-3.19.1 - Resolves: Bug 1228913 - Rebase to nss-3.19.1 for CVE-2015-4000 [RHEL-7.1]- Backport mozbz#1155922 to support SHA512 signatures with TLS 1.2- Update to CKBI 2.4 from NSS 3.18.1 (the only change in NSS 3.18.1)- Update and reeneable nss-646045.patch on account of the rebase - Resolves: Bug 1200898 - Rebase nss to 3.18 for Firefox 38 ESR [RHEL7.1]- Fix shell syntax error on nss/tests/all.sh - Resolves: Bug 1200898 - Rebase nss to 3.18 for Firefox 38 ESR [RHEL7.1]- Replace expired PayPal test certificate that breaks the build - Resolves: Bug 1200898 - Rebase nss to 3.18 for Firefox 38 ESR [RHEL7.1]- Resolves: Bug 1200898 - Rebase nss to 3.18 for Firefox 38 ESR [RHEL7.1]- Reverse the sense of a test in patch to fix pk12util segfault - Resolves: Bug 1174527 - Segfault in pk12util when using -l option with certain .p12 files- Fix race condition - Resolves: Bug 1094468 - 389-ds-base server reported crash in stan_GetCERTCertificate - under the replication replay failure condition- Resolves: Bug 1174527 - Segfault in pk12util when using -l option with certain .p12 files- Restore patch for certutil man page - supply missing options descriptions - Resolves: Bug 1158161 - Upgrade to NSS 3.16.2.3 for Firefox 31.3- Resolves: Bug 1158161 - Upgrade to NSS 3.16.2.3 for Firefox 31.3 - Support TLS_FALLBACK_SCSV in tstclnt and ssltap- Resolves: Bug 1145434 - CVE-2014-1568 - Using a release number higher than on rhel-7.0 branch- Fix crash in stan_GetCERTCertificate - Resolves: Bug 1094468- Generic 32/64 bit platform detection (fix ppc64le build) - Resolves: Bug 1125619 - nss fails to build on arch: ppc64le (missing dependencies) - Fix contributed by Peter Robinson - Fix libssl and test patches that disable ssl2 support - Resolves: Bug 1123435 - Replace expired PayPal test certificate with current one- Rebase to nss-3.16.2 - Resolves: Bug 1103252 - Rebase RHEL 7.1 to at least NSS 3.16.1 (FF 31) - Fix test failure detection in the %check section - Move removal of unwanted source directories to the end of the %prep section - Update various patches on account of the rebase - Remove unused patches rendered obsolete by the rebase- Disallow disabling the internal module - Resolves: Bug 1056036 - nss segfaults with opencryptoki module- Pick up a fix from rhel-6 and fix an rpm conflict - Don't hold issuer cert handles in crl cache - Resolves: Bug 1034409 - deadlock in trust domain and object lock - Move nss shared db files to the main package - Resolves: Bug 1050163 - Same files in two packages create rpm conflict- Update pem sources to latest from nss-pem upstream - Pick up pem module fixes verified on RHEL and applied upstream - Remove no loger needed pem patches on acccount on this update - Add comments documenting the iquote.patch - Resolves: Bug 1054457 - CVE-2013-1740- Remove spurious man5 wildcard entry as all manpages are listed by name - Resolves: Bug 1050163 - Same files in two packages create rpm conflict- Mass rebuild 2014-01-24- Rebase to nss-3.15.4 - Resolves: Bug 1054457 - CVE-2013-1740 nss: false start PR_Recv information disclosure security issue - Remove no longer needed patches for manpages that were applied upstream - Remove no longer needed patch to disable ocsp stapling tests - Update iquote.patch on account of upstream changes - Update and rename patch to pem/rsawrapr.c on account of upstream changes - Use the pristine upstream sources for nss without repackaging - Avoid unneeded manual step which may introduce errors- Fix the spec file to apply the nss ecc list patch for bug 752980 - Resolves: Bug 752980 - Support ECDSA algorithm in the nss package via puggable ecc- Move several nss-sysinit manpages tar archives to the %files - Resolves: Bug 1050163 - Same files in two packages create rpm conflict- Fix a coverity scan compile time warning for the pem module - Resolves: Bug 1002271 - NSS pem module should not require unique base file names- Resolves: Bug 1002271 - NSS pem module should not require unique base file names- Improve pluggable ECC support for ECDSA - Resolves: Bug 752980 - [7.0 FEAT] Support ECDSA algorithm in the nss package- Mass rebuild 2013-12-27- Revoke trust in one mis-issued anssi certificate - Resolves: Bug 1040284 - nss: Mis-issued ANSSI/DCSSI certificate (MFSA 2013-117) [rhel-7.0]- Update to NSS_3_15_3_RTM - Resolves: Bug 1031463 - CVE-2013-5605 CVE-2013-5606 CVE-2013-1741- Fix path to script and remove -- from some options in nss-sysinit man page - Resolves: rhbz#982723 - man page of nss-sysinit worong path and other flaws- Fix certutil man page options names to be consistent with help - Resolves: rhbz#948495 - man page scan results for nss - Remove incorrect count argument in status description in nss-sysinit man page - Resolves: rhbz#982723 - man page of nss-sysinit incorrect option descriptions- Fix patch for disabling ssl2 in ssl to correctly set error code - Fix syntax error reported in the build.log even tough it succeeds - Add patch top ignore setpolicy result - Resolves: rhbz#1001841 - Disable SSL2 and the export cipher suites - Resolves: rhbz#1026677 - Attempt to run ipa-client-install fails- Fix bash syntax error in patch for disabling ssl2 tests - Resolves: rhbz#1001841 - Disable SSL2 and the export cipher suites- Fix errors in ssl disabling patches for both library and tests - Add s390x to the multilib_arches definition used for alt_ckbi - Resolves: rhbz#1001841 - Disable SSL2 and the export cipher suites- Fix errors in nss-sysinit manpage options descriptions - Resolves: rhbz#982723- Enable fips when system is in fips mode - Resolves: rhbz#852023 - FIPS mode detection does not work- Remove unused and obsoleted patches - Related: rhbz#1012656- Add description of the certutil's --email option to it's manpage - Resolves: rhbz#Bug 948495 - Man page scan results for nss- Rebase to nss-3.15.2 - Resolves: rhbz#1012656 - pick up NSS 3.15.2 to fix CVE-2013-1739 and disable MD5 in OCSP/CRL- Install symlink to nss-sysinit.sh without the .sh suffix - Resolves: rhbz#982723 - nss-sysinit man page has wrong path for the script- Resolves: rhbz#1001841 - Disable SSL2 and the export cipher suites- Add upstream bug URL for a patch subitted upstream and remove obsolete script- Update to NSS_3_15_1_RTM - Apply various fixes to the man pages and add new ones - Enable the iquote.patch to access newly introduced types - Add man page for pkcs11.txt configuration file and cert and key databases - Add missing option descriptions for {cert|cms|crl}util - Resolves: rhbz#948495 - Man page scan results for nss - Resolves: rhbz#982723 - Fix path to script in man page for nss-sysinit- Use the unstripped source tar ball- Install man pages for nss-tools and the nss-config and setup-nsssysinit scripts - Resolves: rhbz#606020 - nss security tools lack man pages- Build nss without softoken or util sources in the tree - Resolves: rhbz#689918- Update ssl-cbc-random-iv-by-default.patch- Fix generation of NSS_VMAJOR, NSS_VMINOR, and NSS_VPATCH for nss-config- Update to NSS_3_15_RTM- Reactivate nss-ssl-cbc-random-iv-off-by-default.patch- Add upstream patch to fix rhbz#872761- Update expired test certificates (fixed in upstream bug 852781)- Fix incorrect post/postun scripts. Fix broken links in posttrans.- Configure libnssckbi.so to use the alternatives system in order to prepare for a drop in replacement.- Update to NSS_3_14_3_RTM - sync up pem rsawrapr.c with softoken upstream changes for nss-3.14.3 - Resolves: rhbz#908257 - CVE-2013-1620 nss: TLS CBC padding timing attack - Resolves: rhbz#896651 - PEM module trashes private keys if login fails - Resolves: rhbz#909775 - specfile support for AArch64 - Resolves: rhbz#910584 - certutil -a does not produce ASCII output- Allow building nss against older system sqlite- Update to NSS_3_14_2_RTM- Update to NSS_3_14_1_WITH_CKBI_1_93_RTM- Require nspr >= 4.9.4 - Fix changelog invalid dates- Update to NSS_3_14_1_RTM- Bug 879978 - Install the nssck.api header template where mod_revocator can access it - Install nssck.api in /usr/includes/nss3/templates- Bug 879978 - Install the nssck.api header template in a place where mod_revocator can access it - Install nssck.api in /usr/includes/nss3- Bug 870864 - Add support in NSS for Secure Boot- Disable bypass code at build time and return failure on attempts to enable at runtime - Bug 806588 - Disable SSL PKCS #11 bypass at build time- Fix pk11wrap locking which fixes 'fedpkg new-sources' and 'fedpkg update' hangs - Bug 872124 - nss-3.14 breaks fedpkg new-sources - Fix should be considered preliminary since the patch may change upon upstream approval- Add a dummy source file for testing /preventing fedpkg breakage - Helps test the fedpkg new-sources and upload commands for breakage by nss updates - Related to Bug 872124 - nss 3.14 breaks fedpkg new-sources- Fix a previous unwanted merge from f18 - Update the SS_SSL_CBC_RANDOM_IV patch to match new sources while - Keeping the patch disabled while we are still in rawhide and - State in comment that patch is needed for both stable and beta branches - Update .gitignore to download only the new sources- Fix the spec file so sechash.h gets installed - Resolves: rhbz#871882 - missing header: sechash.h in nss 3.14- Update the license to MPLv2.0- Use only -f when removing unwanted headers- Add secmodt.h to the headers installed by nss-devel - nss-devel must install secmodt.h which moved from softoken to pk11wrap with nss-3.14- Update to NSS_3_14_RTM- Update to NSS_3_14_RC1 - update nss-589636.patch to apply to httpdserv - turn off ocsp tests for now - remove no longer needed patches - remove headers shipped by nss-util- Update to NSS_3_13_6_RTM- Rebase pem sources to fedora-hosted upstream to pick up two fixes from rhel-6.3 - Resolves: rhbz#847460 - Fix invalid read and free on invalid cert load - Resolves: rhbz#847462 - PEM module may attempt to free uninitialized pointer - Remove unneeded fix gcc 4.7 c++ issue in secmodt.h that actually undoes the upstream fix- Fix pluggable ecc support- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- Fix checkin comment to prevent unwanted expansions of percents- Resolves: Bug 830410 - Missing Requires %{?_isa} - Use Requires: %{name}%{?_isa} = %{version}-%{release} on tools - Drop zlib requires which rpmlint reports as error E: explicit-lib-dependency zlib - Enable sha224 portion of powerup selftest when running test suites - Require nspr 4.9.1- Resolves: rhbz#833529 - revert unwanted change to nss.pc.in- Resolves: rhbz#833529 - Remove unwanted space from the Libs: line on nss.pc.in- Update to NSS_3_13_5_RTM- Resolves: Bug 812423 - nss_Init leaks memory, fix from RHEL 6.3- Resolves: Bug 805723 - Library needs partial RELRO support added - Patch coreconf/Linux.mk as done on RHEL 6.2- Update to NSS_3_13_4_RTM - Update the nss-pem source archive to the latest version - Remove no longer needed patches - Resolves: Bug 806043 - use pem files interchangeably in a single process - Resolves: Bug 806051 - PEM various flaws detected by Coverity - Resolves: Bug 806058 - PEM pem_CreateObject leaks memory given a non-existing file name- Resolves: Bug 805723 - Library needs partial RELRO support added- Cleanup of the spec file - Add references to the upstream bugs - Fix typo in Summary for sysinit- Pick up fixes from RHEL - Resolves: rhbz#800674 - Unable to contact LDAP Server during winsync - Resolves: rhbz#800682 - Qpid AMQP daemon fails to load after nss update - Resolves: rhbz#800676 - NSS workaround for freebl bug that causes openswan to drop connections- Update to NSS_3_13_3_RTM- fix issue with gcc 4.7 in secmodt.h and C++11 user-defined literals- Resolves: Bug 784672 - nss should protect against being called before nss_Init- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- Deactivate a patch currently meant for stable branches only- Resolves: Bug 770682 - nss update breaks pidgin-sipe connectivity - NSS_SSL_CBC_RANDOM_IV set to 0 by default and changed to 1 on user request- Revert to using current nss_softokn_version - Patch to deal with lack of sha224 is no longer needed- Resolves: Bug 754771 - [PEM] an unregistered callback causes a SIGSEGV- Resolves: Bug 750376 - nss 3.13 breaks sssd TLS - Fix how pem is built so that nss-3.13.x works with nss-softokn-3.12.y - Only patch blapitest for the lack of sha224 on system freebl - Completed the patch to make pem link against system freebl- Removed unwanted /usr/include/nss3 in front of the normal cflags include path - Removed unnecessary patch dealing with CERTDB_TERMINAL_RECORD, it's visible- Statically link the pem module against system freebl found in buildroot - Disabling sha224-related powerup selftest until we update softokn - Disable sha224 and pss tests which nss-softokn 3.12.x doesn't support- Rebuild with nss-softokn from 3.12 in the buildroot - Allows the pem module to statically link against 3.12.x freebl - Required for using nss-3.13.x with nss-softokn-3.12.y for a merge inrto rhel git repo - Build will be temprarily placed on buildroot override but not pushed in bodhi- Fix broken dependencies by updating the nss-util and nss-softokn versions- Update to NSS_3_13_1_RTM - Update builtin certs to those from NSSCKBI_1_88_RTM- Update to NSS_3_13_RTM- Update to NSS_3_13_RC0- Fix attempt to free initilized pointer (#717338) - Fix leak on pem_CreateObject when given non-existing file name (#734760) - Fix pem_Initialize to return CKR_CANT_LOCK on multi-treaded calls (#736410)- Update builtins certs to those from NSSCKBI_1_87_RTM- Update to NSS_3_12_11_RTM- Indicate the provenance of stripped source tarball (#688015)- Provide virtual -static package to meet guidelines (#609612).- Enable pluggable ecc support (#712556) - Disable the nssdb write-access-on-read-only-dir tests when user is root (#646045)- make the testsuite non fatal on arm arches- Fix crmf hard-coded maximum size for wrapped private keys (#703656)- Update to NSS_3_12_10_RTM- Update to NSS_3_12_10_BETA1- Implement PEM logging using NSPR's own (#695011)- Update to NSS_3.12.9_WITH_CKBI_1_82_RTM- Short-term fix for ssl test suites hangs on ipv6 type connections (#539183)- Add a missing requires for pkcs11-devel (#675196)- Run the test suites in the check section (#677809)- Fix cms headers to not use c++ reserved words (#676036) - Reenabling Bug 499444 patches - Fix to swap internal key slot on fips mode switches- Revert patches for 499444 until all c++ reserved words are found and extirpated- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- Fix cms header to not use c++ reserved word (#676036) - Reenable patches for bug 499444- Revert patches for 499444 as they use a C++ reserved word and cause compilation of Firefox to fail- Fix the earlier infinite recursion patch (#499444) - Remove a header that now nss-softokn-freebl-devel ships- Fix infinite recursion when encoding NSS enveloped/digested data (#499444)- Update the cacert trust patch per upstream review requests (#633043)- Fix to honor the user's cert trust preferences (#633043) - Remove obsoleted patch- Update to 3.12.9- Rebuilt according to fedora pre-release package naming guidelines- Update to NSS_3_12_9_BETA2 - Fix libpnsspem crash when cacert dir contains other directories (#642433)- Update to NSS_3_12_9_BETA1- Update pem source tar with fixes for 614532 and 596674 - Remove no longer needed patches- Update PayPalEE.cert test certificate which had expired- Tell rpm not to verify md5, size, and modtime of configurations file- Fix certificates trust order (#643134) - Apply nss-sysinit-userdb-first.patch last- Move triggerpostun -n nss-sysinit script ahead of the other ones (#639248)- Fix invalid %postun scriptlet (#639248)- Replace posttrans sysinit scriptlet with a triggerpostun one (#636787) - Fix and cleanup the setup-nsssysinit.sh script (#636792, #636801)- Add posttrans scriptlet (#636787)- Update to 3.12.8 - Prevent disabling of nss-sysinit on package upgrade (#636787) - Create pkcs11.txt with correct permissions regardless of umask (#636792) - Setup-nsssysinit.sh reports whether nss-sysinit is turned on or off (#636801) - Added provides pkcs11-devel-static to comply with packaging guidelines (#609612)- NSS 3.12.8 RC0- Fix nss-util_version and nss_softokn_version required to be 3.12.7.99.3- NSS 3.12.8 Beta3 - Fix unclosed comment in renegotiate-transitional.patch- Change BuildRequries to available version of nss-util-devel- Define NSS_USE_SYSTEM_SQLITE and remove unneeded patch - Add comments regarding an unversioned provides which triggers rpmlint warning - Build requires nss-softokn-devel >= 3.12.7- Update to 3.12.7- Apply the patches to fix rhbz#614532- Removed pem sourecs as they are in the cache- Add support for PKCS#8 encoded PEM RSA private key files (#614532)- Fix nsssysinit to return userdb ahead of systemdb (#603313)- Require and BuildRequire >= the listed version not =- Require nss-softoken 3.12.6- Fix SIGSEGV within CreateObject (#596674)- Update pem source tar to pick up the following bug fixes: - PEM - Allow collect objects to search through all objects - PEM - Make CopyObject return a new shallow copy - PEM - Fix memory leak in pem_mdCryptoOperationRSAPriv- Update the test cert in the setup phase- Add sed to sysinit requires as setup-nsssysinit.sh requires it (#576071) - Update PayPalEE test cert with unexpired one (#580207)- Fix ns.spec to not require nss-softokn (#575001)- rebuilt with all tests enabled- Using SSL_RENEGOTIATE_TRANSITIONAL as default while on transition period - Disabling ssl tests suites until bug 539183 is resolved- Update to 3.12.6 - Reactivate all tests - Patch tools to validate command line options arguments- Fix curl related regression and general patch code clean up- retagging- Fix SIGSEGV on call of NSS_Initialize (#553638)- New version of patch to allow root to modify ystem database (#547860)- Temporarily disabling the ssl tests- Fix nsssysinit to allow root to modify the nss system database (#547860)- Fix an error introduced when adapting the patch for rhbz #546211- Remove left over trace statements from nsssysinit patching- Fix a misconstructed patch- Fix nsssysinit to enable apps to use system cert store, patch contributed by David Woodhouse (#546221) - Fix spec so sysinit requires coreutils for post install scriplet (#547067) - Fix segmentation fault when listing keys or certs in the database, patch contributed by Kamil Dudka (#540387)- Fix nsssysinit to set the default flags on the crypto module (#545779) - Remove redundant header from the pem module- Remove unneeded patch- Retagging to include missing patch- Update to 3.12.5 - Patch to allow ssl/tls clients to interoperate with servers that require renogiation- Retagging- Require nss-softoken of same architecture as nss (#527867) - Merge setup-nsssysinit.sh improvements from F-12 (#527051)- User no longer prompted for a password when listing keys an empty system db (#527048) - Fix setup-nsssysinit to handle more general formats (#527051)- Fix syntax error in setup-nsssysinit.sh- Fix sysinit to be under mozilla/security/nss/lib- Add nss-sysinit activation/deactivation script- Install blank databases and configuration file for system shared database - nsssysinit queries system for fips mode before relying on environment variable- Restoring nssutil and -rpath-link to nss-config for now - 522477- Add the nss-sysinit subpackage- Installing shared libraries to %{_libdir}- Retagging to pick up new sources- Update pem enabling source tar with latest fixes (509705, 51209)- PEM module implements memory management for internal objects - 509705 - PEM module doesn't crash when processing malformed key files - 512019- Remove symbolic links to shared libraries from devel - 521155 - No rpath-link in nss-softokn-config- Update to 3.12.4- Fix FORTIFY_SOURCE buffer overflows in test suite on ppc and ppc64 - bug 519766 - Fixed requires and buildrequires as per recommendations in spec file review- Restoring patches 2 and 7 as we still compile all sources - Applying the nss-nolocalsql.patch solves nss-tools sqlite dependency problems- restore require sqlite- Don't require sqlite for nss- Ensure versions in the requires match those used when creating nss.pc- Remove nss-prelink.conf as signed all shared libraries moved to nss-softokn - Add a temprary hack to nss.pc.in to unblock builds- caolan's nss.pc patch- Bump the release number for a chained build of nss-util, nss-softokn and nss- Fix nss-config not to include nssutil - Add BuildRequires on nss-softokn and nss-util since build also runs the test suite- disabling all tests while we investigate a buffer overflow bug- disabling some tests while we investigate a buffer overflow bug - 519766- remove patches that are now in nss-softokn and - remove spurious exec-permissions for nss.pc per rpmlint - single requires line in nss.pc.in- Fix BuildRequires: nss-softokn-devel release number- fix nss.pc.in to have one single requires line- cleanups for softokn- remove the softokn subpackages- don install the nss-util pkgconfig bits- remove from -devel the 3 headers that ship in nss-util-devel- kill off the nss-util nss-util-devel subpackages- split off nss-softokn and nss-util as subpackages with their own rpms - first phase of splitting nss-softokn and nss-util as their own packages- must install libnssutil3.since nss-util is untagged at the moment - preserve time stamps when installing various files- dont install libnssutil3.so since its now in nss-util- Fix spec file problems uncovered by Fedora_12_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild- removed two patch files which are no longer needed and fixed previous change log number- updated pem module incorporates various patches - fix off-by-one error when computing size to reduce memory leak. (483855) - fix data type to work on x86_64 systems. (429175) - fix various memory leaks and free internal objects on module unload. (501080) - fix to not clone internal objects in collect_objects(). (501118) - fix to not bypass initialization if module arguments are omitted. (501058) - fix numerous gcc warnings. (500815) - fix to support arbitrarily long password while loading a private key. (500180) - fix memory leak in make_key and memory leaks and return values in pem_mdSession_Login (501191)- add patch for bug 502133 upstream bug 496997- rebuild with higher release number for upgrade sanity- updated to NSS_3_12_4_FIPS1_WITH_CKBI_1_75- re-enable test suite - add patch for upstream bug 488646 and add newer paypal certs in order to make the test suite pass- add conflicts info in order to fix bug 499436- ship .chk files instead of running shlibsign at install time - include .chk file in softokn-freebl subpackage - add patch for upstream nss bug 488350- Update to NSS 3.12.3- temporarily disable the test suite because of bug 494266- fix softokn-freebl dependency for multilib (bug 494122)- introduce separate nss-softokn-freebl package- disable execstack when building freebl- add upstream patch to fix bug 483855- build nspr-less freebl library- Update to NSS_3_12_3_BETA4- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild- update to NSS_3_12_2_RC1 - use system zlib- add sparc64 to the list of 64 bit arches- bug 456847, move pkgconfig requirement to devel package- Update to NSS_3_12_1_RC2- NSS 3.12.1 RC1- fix bug bug 429175 in libpem module- bug 456847, add Requires: pkgconfig- nss package should own /etc/prelink.conf.d folder, rhbz#452062 - use upstream patch to fix test suite abort- Update to NSS_3_12_RC4- Update to NSS_3_12_RC2- Zapping old Obsoletes/Provides. No longer needed, causes multilib headache.- Update to NSS_3_12_BETA3- NSS 3.12 Beta 2 - Use /usr/lib{64} as devel libdir, create symbolic links.- Apply upstream patch for bug 417664, enable test suite on pcc.- Support concurrent runs of the test suite on a single build host.- disable test suite on ppc- disable test suite on ppc64- Build against gcc 4.3.0, use workaround for bug 432146 - Run the test suite after the build and abort on failures.* NSS 3.12 Beta 1- move .so files to /lib- NSS 3.12 alpha 2b- upstream patches to avoid calling netstat for random data- NSS 3.12 alpha 2- Add /etc/prelink.conf.d/nss-prelink.conf in order to blacklist our signed libraries and protect them from modification.- Fix off-by-one error in the PEM module- fix a C++ mode compilation error- Add 3.12 ckfw and libnsspem- Updated license tag- Ensure the workaround for mozilla bug 51429 really get's built.- Better approach to ship freebl/softokn based on 3.11.5 - Remove link time dependency on softokn- Fix unowned directories, rhbz#233890- Update to 3.11.7, but freebl/softokn remain at 3.11.5. - Use a workaround to avoid mozilla bug 51429.- Fix rhbz#230545, failure to enable FIPS mode - Fix rhbz#220542, make NSS more tolerant of resets when in the middle of prompting for a user password.- Update to 3.11.5 - This update fixes two security vulnerabilities with SSL 2 - Do not use -rpath link option - Added several unsupported tools to tools package- disable ECC, cleanout dead code- Update to 3.11.4- Revert the attempt to require latest NSPR, as it is not yet available in the build infrastructure.- Update to 3.11.3- Add /etc/pki/nssdb- rebuild- Update to 3.11.2 - Enable executable bit on shared libs, also fixes debug info.- Enable Elliptic Curve Cryptography (ECC)- Update to 3.11.1 - Include upstream patch to limit curves- add --noexecstack when compiling assembler on x86_64- bump again for double-long bug on ppc(64)- rebuilt for new gcc4.1 snapshot and glibc changes- rebuild- Update file list for the devel packages- Update to 3.11- Add patch to allow building on ppc* - Update the pkgconfig file to Require nspr- Initial import into Fedora Core, based on a CVS snapshot of the NSS_3_11_RTM tag - Fix up the pkcs11-devel subpackage to contain the proper headers - Build with RPM_OPT_FLAGS - No need to have rpath of /usr/lib in the pc file- Adressed review comments by Wan-Teh Chang, Bob Relyea, Christopher Aillon.- Initial build/bin/sh/bin/sh 3.36.0-7.1.el7_63.36.0-7.1.el7_63.36.0-7.1.el7_6nss-legacynss-rhel7.confignssdbcert8.dbcert9.dbkey3.dbkey4.dbpkcs11.txtsecmod.dblibnss3.solibnssckbi.solibsmime3.solibssl3.solibnssckbi.socert8.db.5.gzcert9.db.5.gzkey3.db.5.gzkey4.db.5.gzpkcs11.txt.5.gzsecmod.db.5.gz/etc/pki//etc/pki/nss-legacy//etc/pki/nssdb//usr/lib64//usr/lib64/nss//usr/share/man/man5/-O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -m64 -mtune=genericdrpmxz2x86_64-redhat-linux-gnu directoryASCII textBerkeley DB 1.85 (Hash, version 2, native byte-order)ELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=f5a64bb37fa3972e545ef459a51310f0ab56fa56, strippedemptyELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=8d0b4010959c321022df9ce239277a9d7b34a76a, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=2e28f6a705f2ecea8460d4716d5d1c24b5dda5e4, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=81a4a101310962b2cedc3e9ed26365d7058c7cb4, strippedtroff or preprocessor input, ASCII text (gzip compressed data, from Unix, max compression)FsF-= PPP"P#P(P)P*P+P,P-P.P/P0PPPPPPPP P P P PPPPP PPPPPPPPPPPPP P!P$P%P&P'PRRR R RR%R*R$R&R)R,R+R'R#R"R-R.R R/R RR9P;PP?P@PAPBPCPDPEP4P6P5P7P8P9P:P3RR RR#RRRRRRR R!RRRRRR R"R-R.R R/R RR9PPPQP\P]PGPHPJPIPKPLPMPNPOPRPSPTPUPVPWPXPYPZP[PFRR R RR0R%R$R+R(R#RRRRRRRR RRR!RRRRRRRR R"R-R.R R/R RR9P2P1RRR R-R.R R/R RR9?@7zXZ !#,)]"k%UJCÍv4Cfx.Ф`v7a'N Fy,JM#դP ȶ]YR| Oi\qw%FxU,йlPnFjC {S.(tO[y~/!?rɰ +ǠL@ֻ3K{3PD" ^Ez-q" NՈ`iQ_c*"[ДGd#A8-QU)Ca=2> V+y2pɱKhڮ/8#3m kYbFNH7Β[ #Lk9pLa}:Lb6҃ 7#Z??DwM|'^GY;zxcا%rYz ^ӄ.l˾wF P$rݠI&eY쯶()]ɴ̮GB˿XSyX9NYӫ&;t1O^= ʷ_6a)*͐v .g 9tޚ", bBQd Y$7e˖u7Eӗ@DueWF)Vmc_?OwsD2-y 6#"9e;Nwxd]܁7KJaG XO#[v Fٚ IUqGWx8cm{}&ќN;zە YH+SphJS6)˺ @ d."i_¾5\Yhβ9160^z֩8> QWm,d} Kx ^"cFN"rI(uiЏ!$HKZx9Z4 " {, ^r5gLXptb|cmȳTaEiWut6XSϛ,'X}TngXp.#y'oOO<HZS!4P[,nu !"SQIat{\~R_lu*j T!50_IOI=Vx }(gy21v0[Pal]ݫB&!ŦwR H|2X~TuYM`aeo5nX;t\+ 45OI$Z._*viy7 P%"EzzpRc~2acI|Jn.~؁E,_|-Da|(Z>|tK%B.&{˝yi YMv PE<^Aoq]^unآm1ro]ͯb]UE* 8qK#*y5 -є26 n$#0y|PYNlxI4/<~yEbQ I4DϏ\y}F;@ zI_^&+lO@Mv|f ،aoy\/' ;^*\Q\ى Zq)h 8W*Rv# Y@8Ӡ7KpřU*r [dڱB3?ejRZ׺Dmjyh1ФewWq XOW))+ Q;G?wK6`7QFχAu )~ŚF~<ɷzd/=wf0X:.|e#M<>rlCRʂ<9{K OeTnNy1uVO1+c3FXlL[?K_݂G%2Pl/4S?PTYpݝRl6@z܊wp_pNy}şou/#/7{??F@܄-q>QFU8Kfe%QjͰ$Rb+hTe~!1UDR-@ g<d2g,"\ H/]D_< ~AqP&JBr [Rgg<41`4r (iwHu8ʌU=`mb 8mOX+;ޯKz$!л .*,ҹ-H^e]hf W(26a&U52 PZIU4]JrTsa6{ߋ@;z C)wfEOΠau3Xf![fN{R5 !umt=٫D_ r6rM"InMS+HB+nFz BAx6«h+t +l3zG_7Hҏ#qc #=ˋ?}kkr{Õ<"}knƞN$.A/m"ROKL'DPq]qyהblxr U'vKvr+̣ $ Jׄ/ՉWR| }SK&ύƮcpZ^~bFzHE42hֆL8!`_`7AZaQRʎH;m-¶G>@] guNHB!]dϕ/>oLwgU)4LzO>Q @\_^b~ɋTS Y;ӗZ1:ߞ`,C" 7 oJ6LY;<᪘ȊrF }`c/D7W4i{*M#ǟiJL{-[6 %T쎜v)'Z`9mn `g-'<v̏*U2C'i/zcLMTv2k닒zL~9<ޕ޺.guh_ Kp~ySDd@@+/?*i'uu('fU]|cC&'47dĝYwTMiby1&_ *\^P@j!/u[˖\X6xPDSjn!G?ӁX&Z5ϟ_ʉ1_ <;9-HZU* =eKu\RF&j>Iڃ ZK_ ѩwI̎7td%ߴջ&4!$!XVo,Msi(# '5WnTzJd#F%s -0W0 {Np'jޮ2zpOEd 랟l]wyi%y~_ܼ57S6W/qflOb;6?8:QD\O,ˮڙ/2oYbŢ yvT{,`H1w'&t. }sm֍z]iU%GGgW wcN; mR^K%?u m&svv84Ѩq|(X~BazoΓb=5(wu)1Cɕbl]Kw޶_쑡hT|Uy Ƴ5!o]}HTZvUӆ3 bpyဣA̲ѿxFu;MMP:4l,@xl9P<լ묋;-+MBQ)h7ߍ~LtSko![_9OOXp.A%PE> ?(+^ӹN]^_ݏ>A߭IKdJt.宍b&?[ɍfX|AyPu !1_ß47'j#?+RIq,Nleq\{3X}i);%@(^mJiF_$ћ 2-zWTBu] ߬›,,dxQ#)l}MuvD:U*5_Ctބ0fҴRv AַmD* ~dDۣATHuJ tk{e8BW]L^,h[f u"6qܛ|OyFr# Uݒ8R(xtv{6vem0~C}U5>0)3jK(ufT#<͒%4G `~zF3`4t[}U%dG=-&Hk3*TvH75.U4k5>jP(w[EQ8hEéqI8{CO$1ءNZ2)[KOR!!äS MCMd"$ H*39Z/2~{oE{-O5 Sg~@uvwBvPGvV8.=eƢ)'{bQwDGFCirҰ*Wf0BLVá%Qƕn:ɲ+f#Irs"lq~ Q!vace$JmB˲KpLM.J1ӹ"?|DUwNȠA:R]<xu˦ny!ydT.g]hy:WAmB\s q);,)0IvQ}AK*yO8 6T#p'AEE>$h$5s%(ѦV֭ᛠNB_j;:( ?*,e%}k̩x rV#\Z0!kP xL R;~(Y8q8QMS\a?Nq'/O\"p\aKrMeU(2 @Pbn Y5 &vZH, #)]{xG.]Jpi`VaEBʼn__ͱ҆Z3L7b7RL/6'U9͉ͤT]uqA +25䜝8 +Rju33॥>5bHdn2߰de$Ӗ*[a!-LoZt+k{q /PKW$B4-$w[&W`|W,FVE3!Kt-ۂt9"6qf'OHOaґaڌ-@Fz G2y'|=nT{Ҩ㦡0y1BjR08L T)7LPw#~LLyt2 X|AE2ґ"yuyF ~2C`IeʳJu׌F%: ߈̙5+QDBHU<`Q=nFtO +CKW着F(iYo)M9DZ?=nܿ(U+8|k>Y@" }&ӽ$}[ja._QxB'yW]Cmvh% [*X?w!tj ԑXu$-9| :@"Zb. ,@^qxC&?%`b- haf'Q5oɒyug5o/r1;uX(Uf;bo"Ɋҡ/r3⥓@[醦l3.J#]T":Zd1e X;0yhløv#ۉk*W&9?6wMFsEJy1{t嘭`8 gs#z%d?>BfVZx÷݉6EE fd.1N;;/-`vOP24@ bOn n ,#c[؎ zl6ĭ7{"¿g3}9u nWG5v纟֚S~ׇo&yT"1x(Hu^!6]a-# x3ǒ-Tfc0knS0iǬN,˿ [Wohu1?Uf9XAR3`O*3چ&u1 epZ+oo!uCQAIL_J Sc)VRI άFєvgxA&U?́L<͈}[t$^~p|iD?.% L:6}}to]y 6%-Eh09o\AXj+[88"HWMjȹN>l[ TqMt jսpGpq d~VZYٚj>1 sߊ?]ICILn9ljAQ$#)tpF(b"%9 "%'LY6Ҥk!/x/b''UVsyd-P99Ů e1 7T~;[9C Q+Zu=(,WkK85.b+34&3? 4Hrq=RCѻt{}u¶¤ +rPp45PchKG1VSTMৌ&?XaU/Ka q./e  4~R!HIb\'X>ϯwqٰW󋍌n6΄q#~v:hT? -vt/u4u^o{vdjӵL~[ 1*ƒߜ;]Iv焂I{D{۠MܧUG{h̞ky`~5^@a~ Ņ$*#P ؔ2EǛ22JߦK҅DYR>ӗ0 0(PPh(lT1 AUhV[tG)hJ۪9[xI |;C s8@K ĥe p:!31_AGD,Z/B) i]Ƥ>TDQԐ yCumy]`؊ IٜG N#5B "!SrFB.O8M: pe.g, =Ε!a8[/jI$KbT0^*X`~5B62fLcSp)ܓ"blXh& ";qMp^m9 gZ ۥ j~}(?! [{_ ς!AmtPi&y:79/Cd0ۈkWKBS(m~?"͘/ʨ'3 6H[|(JU0[Mߠh bƻ؊e+)7,]lcfՐ+G||ߒ6_QR(PuޟjGֿ;jvQz];P~i?ȉc$]hsn{TY}`ur š rX놘o0#SEL8$P{a^ˊe@e]%ZGǡ +z/bG_/0J5 =nXq`7"]]բɃ5df25v|rȱމ¥)*pWM^jT)yd)(gت; (uJYi1uD 9J99ޫtK_6 D4?7 G,LO2toɯ.>^H!A\IOg5 (C,Ef_vGﵓ察c=0 k8_N`ۋ T&N S1L8$ӀuSW!KZFM? fRTfRDN)253w~7+RgwSLF*u/ /}_Y*"U_ώ5ǧJ%t"F2Eφ,7#|"goա`+ڜD"/V J0=P*F]|[7j itO߃ K?ǾiN=ЩwznZv*GG* ^ veHo^$@lN_Ϭ&q;wP/ ihA]sT{h#  SH$,+dP|`e͝YDWH/WK_3N 0~vMtP*SOBի)l I.*8|*_p.dvt6.&$8[oWpf; h!G)x@^#g=mEwӲXY)QԆ fd̞27".bN>g"dIW b:v5m '56]1W18*}2HpFYR)q-kNsZ-ĻTTnxv0j_zp(ĪZ]yrj9>0v 6.V3 T,` k72MXtbHgv~(jt2$ʞ!FoTDGHk$d'#RwoC֣Oy>eՀAϻC*`/zmc84'r F0'>_)7r@2Q!^ rP;Cвb~Pn>};A) XNG2.}.OYͬ7{-jer(}=lC ai|==$I)"#Z1@6Y*|E~Wnmc/I` .ZUZ2~(W9ËX/=C֜ZyW lBnS8L=(i30R pĩr|vɕGGlXh3?jw֋nWtm[4~ڸY.@ÐJ; oDQsqu.1@N%Ts(^#Lm$GŲ2k6QH&`_"jnx0sPk1 p乥S$G2/Q0;y~}~4*t/=jMAN[z5ngiFܞu jc \8:XH!Qv 'DY : /yerT'8)d j@ᶘ@[Xrf.X3"^d}llH7EI[ a/goKuj ;Pqʏ ݼc,ui<}vgҒ[u4$OjOkMpwyGC}ݺ Xm9\9KhlŘk2npnr GΣk0V"=e!10dB<;ک*t1j2{իu?.A1.3kB,w]V+3HՀt9=EŒΝXԡpמ<|tu" @9@~BEm)*JQtPbEdԉ(81{6k#/ ׃jc}tpǙcHtbeojij֍q776n ] rnq:|]g?"! $G;ErX-dJIl<+A"iRk).V+sRm]v!` p4ޱ5͵FaHCI$bdBNx?Wy{o>IdRF(j]1{i|ZӲ$CYI>/ypUT&:n#YpZ@:V9x}ۇΚ)_,5^e?N|@{fZ8H`FtWvk‘'h8eOb̍ ?U]W\T,NyH6Χ$5BQ!, M; cwpx7w"X#d݆XɑSl&F'Z?kuQ600& j!Snqmy@X"gL葴+ ὌMd 'O!%T $)j,]J, Jr2&ـŔ6P7G؛}2k 3Akff6okB2g<9;\-H T@ZO KI< ןӟSL{G??;gʯsCPY9ZH|P~]!1mk;'Z\H6N5)"N3[ڂWɪvHNd'U zxgmDd{{H'O6 UAɟyM!ގ3$t;NJ9bZAˠ c֔hۑF1BsK@;$6zCYPx}N_S18޳#=Mnm14ѺI_FUƯMKI>r :+m^c]tLjw':ޮy󓈋 %K(Wd6{/! .q_s$n^vBn~Z{^̗&y2y X~;}bnC KFg4~:1~{awph-4R١Vr KFEuۖ|*"M%p+Ҏѫ. OZ3x1{"{[Gfffx 𐟦✓$q/ƽ8`w٫ aKkcTx" ]y,>Q6&};$Z`e"1H!+i,sLe]B3io%0ҫlvX+DNp2.܇vowET!~S$P@`b/~=۾j *j#:˺@lQ iylN4`Bo;igV ^. q)'^&<ڑq_xm Og۷I-pLeTp X}.Fi#O8\RSE~ҭz]}U1׺DnjWRx6ȓ}zu1*?aB ,C63pKtЗGnnV 8}Ν9{eKailSHX`Ꙛ䌹gwƸ/[1zاX]dʎѳ!fϫƿqwܞ? ^KAcArTqOy j+dF`FbaU & :%u/EUb3>):qB>i?4(6'4A z^wM:A {nN \1cq^{!Pd x j?WN#bS;89@U{JfUXR 7WZ_b_6Fʐ!Z@’5#o=s@҉z븡;Y _dE,(|#tB*oÛq% !$H]ۭVG,%qIΚK:9 ɒ?4g>X>ן}+'=}<@U{m`'tcp\sy|c%:z8:&rvH,,N_0{V;uw #]Xr0*C;kR 8Qy7yc]C('rViK'5GCU')Œ41zs!$! }̅h7ecn ̚#ί’ i.nS9S-u qVu rP3& f$ '  GGA-o}{5C͊Oo 9(v/&J-|E=/Ιk[X5Par6f_NdGj}xyn˫/4::DTgq 5V Ҿ_zp=o~XP2.mZKaS60P$H]!ZKQ8N+N]SzIZOX&u  /cY -!Lĵ,>Xam8ը#j,AH[L>GDL!i5Ts'AN"@ɬ\KLLPK,ֈhÊʊKY|]zr-^G 3m4A= ÉUϞbs6tf#IgSc.6|N,?Nȹ9U|܈E P̖#уY>)FM;N F x.]eH"r+F'8KA.E.Š|UGxF>wFLi)9kDڟү;AZ~{M[;Q9r-]Re==A3V)rZ=Gh1NF/ա{݊_}.H>uѭ vEE'7oKY*nr@[MK?-_",#*ݑ1G& t,^Ds kcEƻ]ϜYf|6)b(YBftaGJX/*G)tmAʽ$V~ҟ܁&]9y򋉧 fk=<X|_ba[{b!Ύ"7'>O'~SMB95vrGDPIyq~-? Yƴ55-,n_H7֜NI?Mz2!.jG53%:q:Jv[ v,]nD .6z}2dlbL„l/8kӠʽ,W&z͹>6-'r:9d0ӫt?X#TA 45zBEޥ9 ]I(w>cYP(a\)&c7K"=PeE%_vV+܆jK1KjjU/N~"—THvzUbi㗩Y"C*'+{=]Ȇ sSY .pDsνK1 2xn?n͍V1߇٥k8B9z8U1gC95hoM@l1)P+E2X!L37dʀ¿h{dWI.(˷Vqʿ;gyg{cBBlM'th.]ɰFdƲy$7I` /Son^#]|r4dH \R^VDvps> Ծ/8GF^׈@ƞs fDbuw ꞔj[wN{eLqa;Y,b^Z2GT̗(=.@S=tMֆȼƛcVErhPhyPBjunTP]ީC[¼^UL裁ygX%mH./㻳eAA|3$55ؤ"_:ivl̬VkUQmoGaLJO 0?*UF|nb&ZLVt)O).!4ư%=ⓞdgX+HU`UgXT>Hzw5g̿o/O>/9bv܅%;.nY iнgeUj- 1^]vDF QBqǬV`oԣ`N @8U,w`۵0JpQ$<?FH|Ʈȯo]OT4L? dY=Pĩ_n`cɉکRLYcA &Bd^s 8}fj!I.Wė9A܁qUd\|7@Yf\Mi8vp8Q~ eו?DŠ 9[ bӑ v%'` Y|$[T4ѩ~6Fi4P2&<.V*R. dTX H%5vS@:Z^`inV 팇7[>hެ5Oge4a``W'1'nVnS^V" ȿ zz ('7MxnwsDyEIrĂQ;\e ZJ'9`,MԀp90{'\n쑹f|4T4)%\B# sfF+.c6 9%"-/";IQ1#a@мTq)rc&.5GH9@zAQKوʳuewcs 4)yiiUY0\^|ŞMUqpȘO-S#s Xcs%?h[Բ7|b$-6'ӳ80/  B͂\fguf[{"idOzoZ{noce>e\Qԛ;`tIޘj}gbNg*D9+H8S?$,Ȣ4`:̒%wR"W|;GJJFϕ [o"S g:u^Ӹ(&*~_R!(&$344Cvt` ;t5j 8^?koxC?!hiiXl@<+_뿲 m+eťBj8w D9+/LiH&5Xէ+-Ϯ9ҋj="|hY%̏ufjT% {V{"YGshlMCQ"K1!}O$;~S3"%"FP47UŰ"Q|L?{Gx I^u NI_qN,h1B0-'#)>8cR:[/`VJA ?ׂj1rW@ N $ESMf5 57#ڨ6푝N+6&Ȯގ]L, p}t5gyX8hT/Iʢ+\-3,GcIҏ+:#{p;8:宍?$X裗j@6( cQXuf%\t5-o1I09`tpp0[?͕6g0C4 &R*`gkz&^u)j䗪kDImz8 } 'V"0`2]%,~ xVpldf7,QwrX Bg.ªty8I&C`/ۻLʇ=iJݩٸ37=ό{jSiHh;ٚ;9u9J ,|$%};+N +Ƨ5宴.{Rx k:5}_)T2aQ)+~ڦ;3E]*˞pȐ4AY:c% >m lG ++45b He1r_rG kuOHb n\r0#>>M5ה8{$"LړBtPfWM7ICyW".Q[>X)Qu}}wv%#}ݝulxWZIRYTbt sP"զ|d57G."q R2׺)EL!UPv!-Ó( 'AK8͢tiB܄vs FVvV-GlC,SYv^^5&!MWWȮ)l}o>QRB%[7Oqc5QXY9bXo*ZZܜbZz:pB#2c B "{}0h>@E7_̅88],lӄ%kKK1үXKKK30#T ,nhƊQ.x))B.tJڲ.G(]JZMf&Da}5BФ% KLdxYls db!A5:f|Ww-(VJ{(=8==⼌oHOR/?:#]ԆJj9i DOfg% "-g{xi;洩AɌ^hyT$}@k*3۱F_Z/u7*Mf` yr@ q!SQ!~Hvg*K,DklG|N4ߏ#cxLK4_`8 T JXhPGG[znaә02,6s`4*! %q_66&hgQ, yﲧ#F- Ћó:yrHp|Kf8<(-}5EE4W@wJR624w mS^u!'U~ԝ2P{W8rTC!-巴]l*pƶpL@sDi/PKd*$aTu6ZGCf7$~Do-J^P"SĈjm }Ef'~|튊v[_>z6Wjj:-`JDdy55wcX=?.ŷl:QxWv'Z+#/5LPHtLv5:Jvag_orPaNem>W^6p%. !bK, O̧4Q>|6{Sq8&p܇sANi6㔟xk݋޻fV2>`VE&5~ `e}HsOR"2m7W8n":q @v{KKW|oC5f!iG&wZKO`@u3»ڰ_)QBդ';)8s[A20Wrj\Cedþ>3HV{?TRA0"v=Nw/Sw;1xt6j[/|-s6'Eg7EM]4ojQ Y {S4 :u-)sJwfҜYVUj'Ag(DdD"=!1͓|e>H2|&M Fq&1UOHϨ TNwO24$mD=x=|tӇ 69_(C'3@`2a]`ȝy4NA覯WȖSiD"Vh0JDK!]FɌOzr&,s[Ө¹W |1K~@2nAk+WtJ@1{市q_}` ߽w#8K$uHmַ$gJl7d*{?02.Gg:kSZS M[]bU[s7?xЉ]dfyTHt=Wͳq9.*^L7?vNuPAn,1d☉ΟKs..>6vi.vvP],%H08S /|8p ǀnu'Zm#l;G\ 6JFy `#?Xp uBBҕ?E=I3RP,xCrk`)(TNJ]B3̷I8N@{յRv?t=\TLFN"H۾ܚCݹgq8?OL1 5h7ڛȤڃذ$O|/D[skxƬΈ=PCk_l tsi I@J` Cn᥽xNN"87Ґ5U HMy1bƌ[;''<Ґ`[،&`#{=*`Йìo'+͑1^F ٣kPȄW,.&2PdR7'.8tN(퉅_, ,[&K+3u㋝qL-ȿ}UÉsU*.d1)\ɂ^H(mn>nDe"CyQw`\PM5`"0G)Inxhw pWX?¾bɭY='|}g`e!kHSp] w%píWG"gwfy=3篚l6 R0X|&O,H`騅\UHbs6+̅-b <[Ͳ}Uw8l/j( \V'HI?T Ze`Mߠ}_ߓc Ԅc`A{|]u Lwӻ;|e mlɻw,CVc#uaBڷҺU`SƏ=4Rz?]#&n6+ObZ%+ F!d$8(ǣ$k7iHwcs -yufF$̚M, <,UyF%r,-x8!r{‰(pG3( :Ocͤ@بl)t_d`&mL1S2>[{Q?-U,nZD0^hC#gג[s5Z8a{pKH̢6#Q[q"=Oll=wLe+ )˴?`*#಴AUߞl pKI%ޚ*D|nLviWAם* "ղ1'_>G4+8K%4`]iP(xfgYMlOCraKn\/Z5] ΰEpHV~ي7[d`D{9{}6:?08Ѱ$p_)S=&ײ 1/Q )Ba3ʨXH*ȧto=yuw?u&$2Y[~"B+ۇ]B6 dr 1aڄd%Q^=3)PWHg#~'feGe෈DH .*,y8";wԡ̴K㓁mpXW MLq>AZ75WA> EzOBj`:ln=|i$m_X_Sp̵nU_9jF.ۇܲك>]jsbd ݚ>=}^wx ۄLiH&̑FCݝx|]ybJ@@07/)Cb+y8܇@cA/dh_7U<=!(,b]?~RsV?7 b#S zMy`JlKf,MEp[8PGHFo S'3TiI۔̅*(43{T9~)"&Au˕ uYB}A;E $(zٝBDq]k?W̮ ENAM88h+@<8\L Z)x*6}BqFG4+&"CvJ ppBedaD3zj5p-% Z?msƑP-ͷtO яU-Q5S"${tS-ᴌ&!Go_DzT쳘xwRӱdU ]Dl ETBDk)W(ikSȟ9:ͧ؟c^;q5;!!+,) $%äXXVw#xl_)݊<'爻{%|=t?<]9 vUBPEO/0@}rZK=<=W\ёÚ%tbi;ymPY}p"*Ag .҂LiS)),{ߺ.dٲRTul"u;˚sp@ >˂t}Dhfc.AE@2Pkr4Ș$n, !JexkӟS in1:|E&Ew7#NUi"b,꿿,2A>7i Rf+k'%=I_X'Dh 649IJ*f{־So67\ݞuʗ2Q wd0*');ئY!!6.Reh ]'`go14|̤ +VS]`>4{o4a[)=@l+|MěZyPd]9.Ujnbj!D43E:8pćVM_A|}3tviG2[修w0F2a0gx~[SzH ;>eWʥ -33iَ_z!f}&u>e35f]jil>x p^Y3@SJKK^uS"ѮN"Ŀ Vo4A DŽ=c 1IەT7X" Կ&ȋ5"4"L1ǐROE _d}c5@žsg]tE?L&i!2=퍕u1092Z20/agf+ŽUXϳŅLNBLu {yqMW:L,bq뫟Mr6Lj=6\r_J-۰ .#@T끪KGbvd/pGQF+-r|H+]Sn' 9(UݢoJ)~aRL'﫟~%?I]1jm:)b&p:[{#,@P!Vm [0(vɪ.+*=Q6蜙`1?])4A+=Ŀȴgo%SbȕB܈ AYB䓏H]42kTjN[)h3+Lcdk  @ؕ=6ԔEp#XT`o*fp.j)hS?96c#ɣAx+e- ݬB9ވS4cU{I&X'1/6\.fa>_/X흍ձ]xqe#5- zh%MӮmQY@Q*42{|{^m))\מF Oҿu.#Ή9kIN] SȳD3>m H$|EytV z.4INU[I9A8E'm IE4z'cqKGYq]M5&-)9tzdٞ6 N>OH x.<]'pQB9i )H!bq.ù!CXAPt\+eBvbXP_s5R4π 330F iV^ XQa2Ơ{<tG޽5:P25/9xJmrρ4`8“s "`8N|c?i$'i$`m(v9b ~_f/l"z*V6Jz;xh<(h|j~oQ]O6J){tҗZ7;! գ8 tKơՙS6ԭMdҦ^`E|3qeՔЌZNeg zX+mN 18 (-q|B>sÎƧ-wX'AhWXD\5nrVEt8^$_ܨfJTxwvs&E3}j'ƭpTPF66_Ҽ]_GP]QsW{) 5'9+=NKmBI1 ɜs2Eqĩ;ƙ)@E_!{N#EHڤpn 4O"h!Cx 0c %;hh.zEϸVZj2DZiR2~2lc)nD686$ՔP@hl&ai.lijfXlUF\wF֚A2僸ExܷDAo7HE$uؒ|fo]q.g.09w5կ͍jC8y}tN(lO聬8ט y a01ֳNT5዆*trDfS|,(dQtY]m*Jxor,Uڰ)W.UYdY;af~9'M9!)r=ڻX&×jo{GkpV1m"uUK{h`ԠK 5HL9K~}o39m0@!" zc"gVl`݄,ү%c+b?~H}38n4DO,g:C&U]WEE_ӵv~W d.-Pa: <0m?{_s˾<9[9!$2-ĻZLN2)Zt3f#}WE= KFޕ=kߗTJ.Ox+mS#@ Sa[F24dNoNMJaKUa_ьJt܏ mwKe (ȣZFHdk L Bo0O WLo[L=HJ>csV& +bA:- 2YW'fp.{;rL | xV-gPfs PQl>+ӷ`lfPPhb<;tjdmEr!BS1M5ze-v܋zE*&m V٣*F4> |!=Ӹ*IY Dfqr0w1dj]\"5UU3dP}o%蛱\n1JBw/E4[:):()%u1EHA4`yX}91ԧaX܎dC++tw{_ !!אۋR4e.2*b.m],tԘ_zUs9ڢɧKpddN3Hd^> ER1pEfuύød(IcKYcƢ rif3¨{ҧbfݎ0 LgiBws+(ٺW/o߫ϫv@rfxLjXY5riu6_=NƯ3VbOdr $q$ɲh#2)Оg!NMzp ᢟ e/Մ]+GK(p87c{K2.!R;v;Z*` byy32*l{ };S(-0u >td"zfbdq-ȒHmg/3׷RR?U񉉚soGOY7]W@ R~ 5dQj?tŠ&/hpVF]NU4m!["twZ%H/^*s01L>>?V1oiRx\k;ցHlpu9++i<ȕ溥E:.fUi )4o3OKHmYaT8G\ʐ6Hkޡ]EcґW_w*^o_^Jw?/AJiN.ɨ*0$ ^4a07Bd/C`  PąED.Tm5UU/yyi &0ٻFQ`4C<y7BQ +I,ySW[[_`}f*7T3A%,ͷ,@NNi>؀ƂcBғ~2!P3}wFDjCZ)[:t>ÂYc$Oup,XhOs$pUd `q2Y=c6:\b(ڻMPz|^G}UFl=e?ԁJ9݀ .2\#0f"!$DA~E=]C[7-GtAxxKBZ2>aʍmaeֻFEd`3s0  "ctǍ@;o ƻ!q9m&׿DdE/:cBB8;t74 j2.H/hHJJ6Ei@;[4[D&$#I}B+yjl2rS*:WKt[|3hWP`b=ɍu,Y:EDjnDJ ?ҭ-LzR,))ӈwQ@~gҖjxp dr+hM-]6pC!7?)b(8$$z,6c@ ߧE(D_Vf%k OmXʃS\Aڥprr4Jp #M`ZnƉS Ԧ'Sɿ,KQYd*rZ±?ȤDqM_"ga K=r:7|gC߈z P KBB}=($Y78 >(k0.FJbT3NΕ-:ە<ɴ=En/veZ/pʋꦅ*-+UU2oY9΢u2-lW%9 ;/03K~l~F]ϕ>S lq몭xs:R~)Y (+A g(ܓUͯ~V ]|)rB~'wd7析V]QRAs9HU6+v 3'>rht2 'Q'SHLER D16R,NC 0UGdUN㹃җP4l'2yЕGzl?Xmh APZ;c/0J\-B4ck}T\Z~5(FZ7B(7! a#-mKw/4{/ZƳ b˜˔['_ ZG黗27..,BTU9|ZПڎYJ:dN"00hwX<Ļ:u5cK+5۷Swӯ6t7h6Ceg2B\Fш+%yA\meL>G(RZ}l}EݗFShV&oA~*\Yfwqc3mjJN᣿fWwo|Ox`D/3鷍]X ğ,hJcݪS_jo!q^,52Rމ tFvbXJKj!?RX,Fi[UEYDF`ܟ-"J1fk2glݱ^x<=rV T@mQ":Sv \7T ;4ŝh2 E/F^ uT% ̣++a.or*QJCsBC=DJ=@"["Ì y^Ϛ=׾R2+ZBֺfN#jݝ{ݽ% ]zP{f|t|#4nPFگF[e9nq[ zz2]:^Kq~d\IT2>jMA݄Z7XƱ5j_IvԡPLҔ~hB흵V#I?#\&ޡH׊6ȷ2!({?ˆ0|r1t\̧N~P12RkX%=-w$ؓ!!C; ]l2/@t<:IG?7;O%II_oGEwo Ogk6r/ 4NxQ #gR z=n?ksiɇR;~`&n φFrw4i dvIW 6?N*x-f:M,P/i/$etrNq]גX_"ぃD/eԒ|Z:g#Mm慄2Еs[<)]__s^ˬتzaֈ#"̼=*ip7a!uZ֪$wQq2-ԏ Jċ57QYXI_lд2yT|pP-g;9V;x_#7b_KKcsjYTc@Ѫfenzg^vˊn7.9v Һ{='{o.f2.qd¿*OВ1\ C.u[yTw+ %"Khʘ50.,F6d 6SSOha,ǤrA6=ک<`vJFbF4vnܔSv@P5PFۘ[h|~V%{M|G$$ݲEY zrz֮ `2vT+ʘטjUSn1< E tt/3 qgiSz*5 C+te?P֡:H Q#jF+Ѝ(\[sq0fDBns@--rD(ZVhFkÙ[Zm@ -EY:ocCTcyqڨ,fKi=p*y[lKlGA^exh*Dpa[*fA9 % } kK׏j&dhxԣ:-[d&Um fP6p b>P^c\T%w'cK,`q&-뒥:x$*&3%_oO)*|~YȪf9cNɥ:kt;|{ ӸDUL+^{]h 'b^\Ͽ&0[Du/*m$Vu-Lv<lU&.NEy 5zp('NO,gtuf\WMؗ##1lUY%{z7EEjtJʸF4@Zg*CB|WFŴD4ǚ{-"[td IHeX ~dyg|tT@@5 `Q|",e&'/qн'[PDj)m[<Cយk%!Q-JT=HD(* J q.)A2ta>pP> |Q(v.}b` %Hd1U鈲Joi6鐟(&3 xG%h|J{K@EǭͯkAS!g#Դ^y]a\i;UՊN, cg^NAKylDtՒ( fIxs<ԴXBR%m}"籰 e^jN΁.W[ lV_[x2Ձ+=J!9iPf!@@/@fj V|^~w84L0T_vС8jD`@`g[8Z!!)B#: WjdjC' ,f-%6͓2+{7]\@W*7CJ dMw:o 3S Wӕg4H1X xyv{}3q/ Up|ϱk٣ (Gx5jh<ơ/D[1n4;< ܯZVnLJviL(|u7lyhCbz Wȅ2^\ hkwpuČiO`(w؍۶tܻ3 fU@1'+pkoҺ֩BZ灹uQe2lp׷xx^!r ݂7V Y\~x1W ogGlֺ]ƵJ3%`ؗt}2of縐i/7>7ݑUZ9qCz?o}{cYF-y;,Mt)+Nާ~G2;# =y_,Žex֠щ%oRaR[<<ĈS) r4첊5| 4T[l||!Ma9c%_hƼd3t`Mk;_8Aқ"*nxcx_AZ-@L8 Wಮлgv:yw4 ݼT=)N%S,G ѸK>P&Cw'$ x!e\Bz"K'M-Ĩ BqH1Ƨ4DW69 ԧ쫆PjN4QGCBg!G@_J,ĶvϗC?>A{mg%?* Nk;;-G2zu0ۦƐtXisv;$RpȶX' +7FTj:z!%d^' NnUIW%;e0=!ih_|4 ZYcPW/+ 'tvW~I:gA9\hH׶ix! dfIȪj̠f,PW*@ݦrF]dС6?JKMx,tcPKV47εf 'w1uZ'ةj&r=8CK ikqN߭jZ -XQQ0#<|uF1]4 7D UhJdCh>ܤ1Nad/⽎7 XSxPA`&?F"`UT6;f2ic܁TCI;a睉K Dڠ]LAILJ$mfUdh։rqz'3U^=D-沴mS/ͯb0T#2OK?InLT嵵L0k藘/‰135 qn 1:2 Oss ,X{#{rkx+uyBaX߸׍l\JFx%}W(Pe %n)g9(-"*&M` 㦻I1uwF&fxxQ6؁>ך"xlŀa5ªBPI|E_vVgZ S6oꪚ(-ՐQ9l6>mVqVu,OOX2r`Fp!OOؚ%$-Z)F7A)‹l?L"j3$Ujt}u6j}A:|\PsiB|mrVA8ߩbI9$)#xHar`Bp#XՄbٍ@K9猓+[-ʖ G% A<;m$oπ7$@{Ȫ\02@SJ؊7wVp6á2~xn͒051;q00`tcGUKE5.<@jKpп?C`46+hKsv>B"sMb yRN ؈5 ~w~7s-VE"pJr^)MR̂ixpQ}ٙmHDA4d>γHExpV2+5s&ͩ!{ԩrByV/hn,/6'I2 >X!|Sg>q{+Ue<P% n:5GyU# 2lMYl2O̡gk#tL,| N2 G*vt"&5MQXXQ-eU7IJx O_؝Y 柫2gl4=E \mZ LD*锯WQטaZ\Q}>O\f٣\L+S0͋+2 D~V\(J[g&f(Fy{x|M[gz}nO,0paȓxnf`l$TFxd> o/HWN]v`#tD[ȳO,SX58OE'Oq|"}@Y(M2r?FVҼ0F%WVw)9NwV!lțַ  JB{=Zu+&hI7sZc]?5B<񷔉>{̡IC.w.mԷkpA'5") ğ9(=9^Ğנ 5~sd.A]x?5-3t*r}A22GlЄ L.wA%S͠u|د@U=4y 䊣F2p$aO) ʶ@hgw DYQU:EhKY[:@(dxm}[<#6Q:Fev-[`4Ț$hikv47/20 _ʙQ T  -Oh_sJTk?ր)}~1_=~ՁS}Tv'.{>!0$!B`=M :D('oG Ę {&1uY mڧx+*E'AO(S`8t(idH4 %*}EԷ&]Hs0Ϋx)+`L=}J1ri{֫#/^=N}guwz`%6q[Jvi)-zՓ g zL'I9/5P儛6X;M埨(dåN:0?61-ӎ =5:*`K^nڠ5TaIԺV}1j?#=M+M8Na gQ3l]?I3XNOJn)5l[,!C.|CdVC"ΈsaEl>%BKNNv:.9/;*>0'WZRx]5–S\]U4(&00zR " $MՓ#n"v|,o{%|VjX!R3zw>3svO@A#ِ~PaL1*=xm0*Ea9 ,;! >Od큻ĴVd_SNݳ-;uWB vpœlPe̔٩p %}vwZ]ttg,\D79*'@B(GnXa$džڇ6Z6 0`vF΂.}2RuBBblSjAB;Kw]E1S_>{͈{}9Z{/ FbKW#6j9!*:mdBso GHS7*]G~H߃?x9cu 9麷ǟp*$7 Hm`!4_-oƳ kVk1nwA,΂pÔwҷmV,YoD-f]U˯Nӄ- p@V5(lvRyc-z;"v(‹q. [bp~zJj_ti6@c8;Z` !&Jۨߨ)eR- \}!}0`骁;M9Aў}MF;('GF֗׹)"¡3#z˛^|eFwsb[:w:pթFOh ~4ŝ9,ANWu*BuÀ}5""iZD8ӱ"P:c ,4= Қgӯ`lNf`_/&.٨^zIpYlhҸ X8L>&KfĴ>vnXj[l+V˝YAaxӐe8Ő)=\+'caHIRq![^${VI=7' Ƭ%Bks˞ʔ`Q뵊^LR _7#lDeRؒl72|MylME0N!T^"K#ZwMmp3<:CG\\*mlj6E$tJSt-rk;Ti:T-vK; pEaP+ 1>"Y#%Pu/{|[5_|Tc:f4*^tˏߺ- TXD=?"N"FI ]ۻW j!hmfvXwLF[X_#P@^æ9bXj%p6 P8,ɝȚ\:fB{/]-SR 3̂iC#'^QƄlQ7&G n/7 {~ӠDDXW4VX9_Dw4g@2tͰ YHTVkv[ًuvCQ\iv7p6CcaC kb(#n%(eBcYRB 䓰g1ۦAo}7b0MY}4* D ͤMZ^zcN-P^DU=Xҵ ey*wr\܌}WA 7XS8@ ?gA)m]M؂i@X񑻱s{ Li!11ct?qf_Q]֫4s֒r Qa'-&F3sVE&l탸ќ4L$P}J_St<k|s;@|\UV/2u2TqyJ'DB~F6PJpdxScrY-HƜӔޟ;)2{bsr&x|̹j]LD\C$BGD 6 ș7;Si3D"nDGr2 j0 Buo0 n[/5ƒ٤U˿\XeL䱡'e-%un&.;K2_3B"MqSNLV-Pr6Hb^8]#f {9Bky0Wj>Se 1QF*2<8 V͹;M*D͌Qy=)OԒضϣ5R_K B}BK`|ɥTNqI["*N,.4 65gvI $h`CFkJN!߬+q_* 6>2Wct{/̈́n.^1(}b='M~ZҌh59ࢴCQO>oڋoIa^HquQoj 7-`bu@_;"Ϳu_q9ye.Q(Fԝ%c%*OGsa&PKh?N%/ֈo{[UJD#.QC1{ ԜEPQY=Ci/ ec/ FЂ HY'Ӌ;.FF<}`A@kEbД.ְbi#[8Bz&c54|ӝ6"~@\fcq+&}*!g/J/B'%T$;K|PqbK3 $& $K+eZ im+EpT=fY }Ty"}Y|)Bw[w)}P<hKқJB$#`%KVF;.c"ƪ2?Yӫ#j@niy%_lS~߭+Q} Wd|N6Y!#?|7ZLټ%y`8ʃ=<\֜~6׶,a:V 5x 0qzr ;{uT~j&㨆V4R -*If`[.`=o *9n; z *Lz ^)ݦ7~w/q% $3 8xaQ~M&CW1S>PDMge؇!+| q`ϊPF(|V'#DrFYw,LĖ QNMTrR9EQmMN.g~mY9;x4pJYQ57ʢ\2nk/t ' ~m|&KH5q D7gKd,b뙢aElRyātp F͢׉h! \ME}t .n V[-Ӽo-4۟.3, ^@B {x+0V0 "`Z,e72y\yq0fw9%LDKzGkǟ*tI᱃n vks'F%]./kA n/R*ܝۗyޥ# l<+8KW[SB] La/}8#-6{2aFӇ'3ljt0C(?2=*w@佢 FA*-` ni{)V&!Io ؍Rw-0~//$ͭz& UEK /—mb 3DgI|HNCX]NhiȰp΁}zMtΤ@ɣKs%K)LyunK-95:h6l*W @ #T&p(L cO<]߅UCEGF'9¯Kp}6HpHȺ7"7)+:ݩg*(¦"Tjl6:ɵg>J1ILT^CFo?Wqa0:[k-!WHc?ܳ Ck򯫼U6de4;c^lEt=]OMIB_^ڑKpmNa@ #ۭ&c8|iX\vE3UH#RS-a@dVKh/M&5R<ًAJεRiua{θa]!wK"(?>[DTeH13yL\A,0]J \y-M =Rom/|=ӒEAa7ym!.it3=hqb*C?ok<žW4Լk_bpI uwԷ|x+:y^j~fP7re*sHZh}tXm\w4.ԑQuNd=}X-D#1#NɛRrڑrB%V{T3xEOm5ql2]?/$K%g"ٷvL{6yX$]Lڥ;^20FdTmXg}K*XwPlC.nI#v,\?mس2i:9G$S\o k%OnM #y>N%ಜKA % X$ B'>^qNzuLiVIԵN38'`h7ʢoհf6[alƽ Ulж ڴEd 6fDD'(w@ Jõ_3#]>k 5ؼ;?cuqXU tY kki7SR og"Y@^O hf@fqwtl-QsCeǒ[rR5;s2p=(%"gd̅:WWϺ5 .g7~[Fyux5M8<QBZyM*X]EXnR+#%%f\ܰ5kpL=9wzEjМJQK%Ht\QCE zpz@5ϒ06OIEq\+ޏ8(!fȺj T#;=m p5L?Mv6~ovSڶh" l| .]1M_xP}MV˄k7L58}L# u8ssՊ^_Gs 94u@erWׁ&9 i78~ %lѡ7bQثGizɣ"W pveW/FAے͇D6Dg { mA GjӄmjqRPK޳Ib#q.DL b'+NKh=b>Lސ͖[]ac'−7Zoʓ.#4b26QaAdS%— 9LY#I?8b&Z풛GX~"aiwx9fjo}% AoT/h1x0Y%/Tt(_([zG~~A%7JaҪ 5^ 4z2T Im O!)X{j?d }Z۱`cOeg&%z/-V031vspX$w` ^8c֡ ",'^o,(]Ns*f1Ҽ%a~䞻:(&zgDnrEz5ӵYv羯=gO-y DjƏ,we/e|]K¢ 6sP<9snTQ<پ0w M"=;rRLuUvC!y5BrMZ&@^іFDJ/822q>baۛDYWi!92&MR|I?1d(YgrNc{b ;}+L&fNH=6i+IGtL%?Ut%jg1Xc^-`WU jHa-_P*݉,3ѡc:ng u>oqA>rD}ƹ[^ ZK&jrH_K.p,> 1V`*ƄwaPU>WXj~Fur`;:?NPn(Ȥ>`)/e'l9ck@:us_ ڿSuw:ޗ0*ҤUkeKU^{^$qnM,1o Ԗ+Hw!fkL4bb )9NPb ͢K}qu-ms. `UOG]0,氁+EWf`&/.33)mdJ&*%JlB'&D(^!6qR2Y2Q?Zك{Xo̢1'9IW5側IP( 'رE;>QRwLΎ'9#|Ke2#]A w6 -&Hf@JȆʷB%t.7 4\5cF3@iۛJU\fX^#'eەYaBN\ g`Z՘_cR(`@]>0f6O$D\V-aUaWѥș ܯw^:M$BJ , 1r!Gti\!Gå UXB|,m^f 7LzQPfag' G+O}c9֨:&9Р|Ryh :}Lha@V>iX}z鹭ek4 t}͖>틶KJfpJτ(/xwp01q0B`Rߑݔ 2"@=LI ~) w?JmGDɐ0ד{ ?C̺4TtCKv?l lefej5]=." 1H s-O Y\2Ow)]-ks؆ Dę[7z9*7-[ w.#hs.<2'ă*!F`#8FӎI~_ rSߤTS]匹_W1lSf>e x{KPp/1$ DoI>T xfH/ci.d] rve$.Υzb؇6}NvVᤡB,<6#Lg.6Dqҋ{/K~/IJ>wDdȌOof8:NSqS.MGVMgEƤEQJؽ=} c$KؼGrPFJ/ Iiie|X~mMDjt`yyrT!~,=_%Q?ǭ/U慇1yl \,V! 0y[^1i _fD.+Є^k~0[(|*mpY c򧦭Xj{'BsF;OMJ^7ʋAC</ f"-~&ɣM! d': mGBʧq̹S:"F̒9} V2w%N MQ9 Od㭭FI^avI]Y;;<`8kߘ#V q&^`O~dM1E[x,|nYl։i5=U5%-]`ipQeG]meXT,ekʥD_C[Sr"s6)mԉejU} CCOvסΟJhcϱOl"I+5NLی;HӘ47ƀњ5#io.| 63RN,g8u7•򪖑ɺ!#dt1:E+FvU+=E5gji%~3.,^wl>Iq*aC:ꀤ B) «!Uw'w;ki{UPī>EoA#SOR=ᣩB .y1{bj7qu_X_=h0۷:= I W=dmN Un!Mʃm@W[S,Ʋ4~c3G2s^,_dX=݌hVB5i@N;ڨy(5H9}"|܇qiRc]_+E̚BUIΈx=YP֧h5&srD\E]Mi[&W@ ֥E<UC+J6suokDc$ѧo_y1\t.Q3¯J*^ѧ}?Lo&F]XПOhH,?k+=FwǾk ~SyQ=u_ż*zvg T];Q})S'2ʕ9AWXM*С2 a~լtvnY{[&HfgGTC q]\Xm&PSegMSY SL(%p)y].Aʗ!Ϸ%_Y?>R\gK*=RY_ a+&* i;y%&4A P N~-./_* ęݢ^^͏TJ堛jEdТq!pd+KU)3YzY>QΝ>׆Gs<1҉*=dIpB.zz.1 9Hr_1ܕj%EEM65'WnRQ` QP%`\.BW _{LOJDG>tA5xCC|=Eh_ޝФ .!KDAJ6,]ݙ?^a: }pE!!g:/cM!&:B*u%)of :TY,!q6#QvJb3 WZ"oJ(,3Ԃ}f6PnS.E1?:ݓ.P@>b_zľX;((aifpNLD\ RA9\#@mV+L^aք<9sL̎6VKZ?ʡ#y6yL8҇τztDdq̧ґܻҔϥA*tzv'P-GS1 }NfRR.WQ|9\ݴ'p'۽ T,BɐH}Q2hzԂ=/2x6r즩QƠ"E`2ĘA307"(HƸ`&+tY"MAFS>J^h(0A+qEg͏=7x\SqYƮsYu.]"+6PmP(E d?w^$ֈ<{,KboO7ކ5OEuOsq(t\B~D ˜`#ꜗ>_5ߒEGoc2mToP[zEznTv}XR;w.;uw>*lv!$ r07ceG>fޯ(+& :3=lW y%w3\TT Yi)>ߒU84LH!\gߛP!~d3K;5[`MV;K$/pC=h+1V_kYD1 Pyy8#ØWp1XxWQ<{nm4$}%Tѯ$Gщ_SOf/.chDt KչͫW0."W//QNK$'-oNap9KPMĀ|g"A_8o=>sQgdҾX:_s} I:%1yq_kvxo~ £bw8 +M?hp?u-֐حXC/XMc.6ÐxGLVyقʑ^ҩ$ vIѢ>;qݢR;RÐ2d]7 CJPjMqJ݀$t!X^H~ZdPHF-Z_o^'WZ6~yXW$ھBL/)PX3Z" H_Ӱ3%|;8ڌ[b|A/]#쯽Lzja‰WslXmѯ|uϞ:D뤙l<` sA73[,-vt4Xvy^=䑧-D vl"=lkN|CZ؛z:#ߋ2<:Cl^X\As젊aN7?O[; :@<S~IK.9gקxO}Ve]zHRm Џ975aڲwA(WV4Z}5X :C} S`ė IFW [`'̸Q*-gvjQ~/*5eڙ%(7P *ĵމ8/#54ϩ+PdcƝsa ̓|ºq4+UK|pD0Mגrb9DtǴpk)j:e0ڈ-Sй<~.Q7kV츆6)`lEnfKȂ]]bdLC8b[mit_L> & N H:~.2 <3$j,Y^GxR'W^0ֺa0)] 'Q19,)~!jmD'wp5'^F~.d&BVdSiG/8 H?: ߠOep0^Z^{;ԋ$P˪l:N]Ü48a'Ƥ fr/GR$u6v_uC0q5YDkȣ?R͆d= SWz r?!+?o턺F o ܤzh}p{ 8)Cws"䖀H 02&{njԜ)IVWղT\?_d8NMRȒNIۇůdP! oAl'e "4ZCAޏ 7 Fp;,;̴#^YsH ÄW %*r^'[U6\Wx§Dî; λb 'i?~Z6+,Ʊ` ",Q0-O0-H,䟇%m>B?M> |´lBܢ28KwRt1+n1*K3W/TaL 1\;áb@w~b##?v Nzpd\KUO,,x hV#WU3C).)l!0 ԓ"owHߝVX#W\ϯ`MsWn0UPjBj.V.ND-Qҷ%TfAzSZCz38qTWr+BRJk-ZSr/;r v~Ht<[e'+D {@Q1۞^R{\=ЇN'(tԙV6ob-tqNû[dKzbfeGrZtDLo俑y-ϳ0̜V"UKPk  n8B&Xl5*g1&Ǒ R?fD3EqלW)M_:+邞yprroc -B]pV5&tI v/7!>rg[ =xʓh(sM!~ϮU;臻ƒҥ,ϓd?f"SuX0LVQ|1Խ 5v#k ʵ30ud#P|W@`Nυ)_xOZf.ProG"ub̂esez檶P&cG_MRo_ٖlĕA/ٯ_ZjAi_D,2a-X> 5ZrQ\Z܎z:)n.3$Z |<>e޴i;Rpi%|5|y 90`/ѰC&,up5d@A0f  zļʖlHLYkbzt--ZZ>;4 !+&#m\O_8Ϝ>i 5cF8]+5/a1͕DYPr)nH6`Q#(s8x]c7gPTNw<Vka]bIfwKQ42Q 28=QhX,̻Z}}?a#.S ?z*p'V]ˣPF(jl;#_zY´A^ȷij{9 lXk0x{CB@;V[VG1IE(̡Vg%xOsf| }NBF OH854,uKk$5:4cJ&Rroi fJ.[t\<xJLԼs$mm7ߐW~ےrd|R:tWRɄYMke}eeǧ8XtC"*IӼc5--Sd.sA//oOky63[F1V\3^ѡb kntX:U~cjzBfr;磰BsX$J#v<rSkGKAYqWZF L ACsG Kr2 *+G0*'<oM5\u )Qm{ϒBl ,E5uYx=줛k꫌uӽZB#8#?)Z"hY׀+OKP u6RP\9=7~>1Hw࿧ke#*2^G5u1A:6,- `3qۻǣCO4daK a:Қ%Ǯ9\$,xhY}{D?h@ߓzeXqoD*ԭ~9DޚdԹJ@ւh"'ͯ$g$\rg '=%G $Y)gsDhV+Ns{ʩE'RDiEz!H~TX3r\D`w䐾~Y#FNo;:pu.⌁B[xPUf%VEzk61C ]PC08)OwfYg9[O *wY$f3'j1*bjqCݺMU]5^0Jm7S[eqqɘU!͆Ds3 Rwuf˹.`a4+wKY`kP I\>2>EҴZQ1x\I?Bc  @h4xY-·ikؗ91)E?mjauPQ2b0zi5+-r@&Mɯ{_]Mc@RDt3KXSrV &x@f+wbֳ@!ϥgێ&TY8F<+TpWx-(B Rܒկ-Gm{2\M4ͅzN(~}!d͙".α&:"NࡶۘOLIȌ4n'mn4i(5G8K.n J?.k J(ՉHu]>$4Y؇jiz֯#At$|X%I$8Ueb_%bG DiBЈr0]3]-cͪLK1c9n+vn,y(m\ ڬ!*t 8[n%6ûW'-bYl{ZFu g%ξi=pi!rD7Cֶ1$UEclVj''$$1U"#m{ɡM{5uʅ)}yຩNJlx]kf!RI1݂ ڎ蔼s q] aFu'Vd Ze[k/!q`ED*jFtևbޤdZw[_ܩԂdf^;lqVpf.iu^PN&buSK9Ь,+X 71cgCm}ǃԭ ejג GIجA 8F!u4V+׎um-AGLSO=wQ|Ts~0 w 2?)Qd. MmQ ^"w9%lpL~#y~ݎlz+j 0)NSuv~Q pA(BQ2u]S(jń- Yr݆]FΩ\?@8"|Y$j