mod_ldap-2.4.37-61.module_el8+563+4ebf229f >  H   d U]+h_%U4L-(ejo1[5bJxCd#7>"(hosTf9.@i V}5*V)R51_DϵEJ X*P9y1WwQ (e]IQϧ0qirMw9D#-3~<.>fK[`bPkE(x6-sG3E$巷0aT *Q1"0{F'Zs;'q^;kM3\2--O&8bܠZd/z\6gn1DY*=vxڀEJt:|8ew|*軄Ͳ>BGԻבǨZ6}fŴƥXtZW)F(T.u]kSmY෣ۋm$ ]y'yEKG 7[j$e\`ahfK?C.ܝ['v}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?d U]WZĐ l(; %rvI\_$6C:ћؕU #ㆮ#gqY~u',8+m 疋h|q)aYa4Wˌ+uB 2]rKVA!,5;}cdX\xPDbaW v`X[L\l!ƓxW_R%j9*_}VFP]W:y۸j 8Z,"<5Qnre6m0Xfx[Xz"_ډ=Pe7z!Ѱ-vWv1qhsS09g/Xcv+yiƞ{m[f'X>P=?d  - d !<V\d|    r 4d|T(89 :5GLHdI|XY\]^bd-e2f5l7tPuhvwxy,06x|Cmod_ldap2.4.3761.module_el8+563+4ebf229fLDAP authentication modules for the Apache HTTP ServerThe mod_ldap and mod_authnz_ldap modules add support for LDAP authentication to the Apache HTTP Server.d1aarch64-03.stream.rdu2.redhat.com"CentOSCentOSASL 2.0builder@centos.orgSystem Environment/Daemonshttps://httpd.apache.org/linuxaarch646/pAd1d1d1d1d1d1cbbbdd396fe056e8ab167abd7b2cb5145b42210bfea38452968ff02a03493fc83899e8beb32c3d9574c78f46f9aca2c1716ec206b701a1f3151ccd2edab174adcdae0f3246a366e1eac6a34eb0a92160e7b6604158ab50c2dd0587e6373a6a08../../../../usr/lib64/httpd/modules/mod_authnz_ldap.so../../../../usr/lib64/httpd/modules/mod_ldap.sorootrootrootrootrootrootrootrootrootrootrootroothttpd-2.4.37-61.module_el8+563+4ebf229f.src.rpmconfig(mod_ldap)mod_ldapmod_ldap(aarch-64)@@@@@@@    @apr-util-ldapconfig(mod_ldap)httpdhttpd-mmnld-linux-aarch64.so.1()(64bit)ld-linux-aarch64.so.1(GLIBC_2.17)(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.17)(64bit)liblber-2.4.so.2()(64bit)libldap_r-2.4.so.2()(64bit)libpthread.so.0()(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)rtld(GNU_HASH)2.4.37-61.module_el8+563+4ebf229f0:2.4.37-61.module_el8+563+4ebf229f20120211aarch643.0.4-14.6.0-14.0-15.2-14.14.3d!d-@d-@d-@doMdJcdcck@cck@c(Ybޅbb2@b8haNaaaawaU`:@`f@`@`@_м@__@_:_^b^(@^@^]]@]߶]҇]@]g@]-@]]@\7\Z@\Yz\T4\\U@[@[[[@[H[u[[[ā@[ā@[ā@[@[@["@[YZ@Z@Z@Yp@Y{Y@Y@YéYéYéYéYX@YYYYx@Ym@YlYf@Ycl@YV=@YGY5GY@YXۡXP@X @X@XwoX[@X[@XEVX)@X@WW~D@W~D@W~D@WKW@VVVVn@VhV.VCV@UK@U@Ua@UF@UQUQTp@T=@T@T @TT_Tk@Tk@S0S@SGS@SS/SS@SSS"@SS5d@S4S&Sz@Sz@S(S@R@RRG@R@R@RsRrF@Ri Re@RVQ@QQޞ@QQo@Q@QQV@Q@Qo@Qm=@QQQ,Q,Q']QP @P6@P6@P{@PPl(PiPiPiPiPYPQPIP3x@P3x@PPO@OO@O@OЗOЗOF@OF@OF@O]@O"O"O@O@O@O@O@O@OOOOOOleOleO_6O_6O_6OU@O8@O8@O5OKO@ONNS@N{#@NoENdNBrN)f@N&@N@N MM>MMn1@MdMRMF@M(QM$]@M$]@M# L@L@LLMxL7@K@Tomas Korbar - 2.4.37-61Tomas Korbar - 2.4.37-60Tomas Korbar - 2.4.37-59Tomas Korbar - 2.4.37-58Luboš Uhliarik - 2.4.37-57Luboš Uhliarik - 2.4.37-56.5Luboš Uhliarik - 2.4.37-56.4Luboš Uhliarik - 2.4.37-56Luboš Uhliarik - 2.4.37-55Luboš Uhliarik - 2.4.37-54Luboš Uhliarik - 2.4.37-53Tomas Korbar - 2.4.37-52Luboš Uhliarik - 2.4.37-51Luboš Uhliarik - 2.4.37-50Luboš Uhliarik - 2.4.37-49Luboš Uhliarik - 2.4.37-48Luboš Uhliarik - 2.4.37-47Luboš Uhliarik - 2.4.37-46Luboš Uhliarik - 2.4.37-45Luboš Uhliarik - 2.4.37-44Luboš Uhliarik - 2.4.37-43Luboš Uhliarik - 2.4.37-42Luboš Uhliarik - 2.4.37-41Lubos Uhliarik - 2.4.37-40Artem Egorenkov - 2.4.37-39Lubos Uhliarik - 2.4.37-38Lubos Uhliarik - 2.4.37-37Lubos Uhliarik - 2.4.37-36Lubos Uhliarik - 2.4.37-35Lubos Uhliarik - 2.4.37-33Lubos Uhliarik - 2.4.37-31Joe Orton - 2.4.37-30Lubos Uhliarik - 2.4.37-29Lubos Uhliarik - 2.4.37-28Lubos Uhliarik - 2.4.37-27Lubos Uhliarik - 2.4.37-21Lubos Uhliarik - 2.4.37-20Joe Orton - 2.4.37-19Lubos Uhliarik - 2.4.37-18Lubos Uhliarik - 2.4.37-17Lubos Uhliarik - 2.4.37-16Lubos Uhliarik - 2.4.37-15Lubos Uhliarik - 2.4.37-14Lubos Uhliarik - 2.4.37-13Lubos Uhliarik - 2.4.37-11Lubos Uhliarik - 2.4.37-10Lubos Uhliarik - 2.4.37-9Joe Orton - 2.4.37-8Joe Orton - 2.4.37-7Joe Orton - 2.4.37-6Luboš Uhliarik - 2.4.37-5Luboš Uhliarik - 2.4.37-4Luboš Uhliarik - 2.4.37-3Joe Orton - 2.4.37-2Lubos Uhliarik - 2.4.37-1Luboš Uhliarik - 2.4.35-10Lubos Uhliarik - 2.4.35-9Joe Orton - 2.4.35-7Joe Orton - 2.4.35-5Lubos Uhliarik - 2.4.35-4Lubos Uhliarik - 2.4.35-3Lubos Uhliarik - 2.4.35-2Lubos Uhliarik - 2.4.35-1Lubos Uhliarik - 2.4.33-4Joe Orton - 2.4.33-3Luboš Uhliarik - 2.4.33-2Joe Orton - 2.4.28-8Luboš Uhliarik - 2.4.28-2Luboš Uhliarik - 2.4.28-1Joe Orton - 2.4.27-14Joe Orton - 2.4.27-13Joe Orton - 2.4.27-12Stephen Gallagher - 2.4.27-11Jeroen van Meeuwen - 2.4.27-10Joe Orton - 2.4.27-9Jeroen van Meeuwen - 2.4.27-8Stephen Gallagher - 2.4.27-8.1Joe Orton - 2.4.27-8.1Joe Orton - 2.4.27-7Fedora Release Engineering - 2.4.27-6Fedora Release Engineering - 2.4.27-5Joe Orton - 2.4.27-4Joe Orton - 2.4.27-3Luboš Uhliarik - 2.4.27-2Luboš Uhliarik - 2.4.27-1Joe Orton - 2.4.26-2Luboš Uhliarik - 2.4.26-1Joe Orton - 2.4.25-10Joe Orton - 2.4.25-9Joe Orton - 2.4.25-8Luboš Uhliarik - 2.4.25-7Luboš Uhliarik - 2.4.25-6Joe Orton - 2.4.25-5Fedora Release Engineering - 2.4.25-4Joe Orton - 2.4.25-3Luboš Uhliarik - 2.4.25-2Luboš Uhliarik - 2.4.25-1Luboš Uhliarik - 2.4.23-7Joe Orton - 2.4.23-6Joe Orton - 2.4.23-5Joe Orton - 2.4.23-4Joe Orton - 2.4.23-3Joe Orton - 2.4.23-2Joe Orton - 2.4.23-1Joe Orton - 2.4.18-6Joe Orton - 2.4.18-5Joe Orton - 2.4.18-4Joe Orton - 2.4.18-3Fedora Release Engineering - 2.4.18-2Jan Kaluza - 2.4.18-1Joe Orton - 2.4.17-4Jan Kaluza - 2.4.17-3Jan Kaluza - 2.4.17-2Joe Orton - 2.4.17-1Jan Kaluza - 2.4.12-4Joe Orton - 2.4.12-3Fedora Release Engineering - 2.4.12-2Jan Kaluza - 2.4.12-1Jan Kaluza - 2.4.10-17Jan Kaluza - 2.4.10-16Jan Kaluza - 2.4.10-15Joe Orton - 2.4.10-14Jan Kaluza - 2.4.10-13Jan Kaluza - 2.4.10-12Jan Kaluza - 2.4.10-11Jan Kaluza - 2.4.10-10Joe Orton - 2.4.10-9Joe Orton - 2.4.10-8Jan Kaluza - 2.4.10-7Joe Orton - 2.4.10-6Fedora Release Engineering - 2.4.10-5Jan Kaluza - 2.4.10-4Jan Kaluza - 2.4.10-3Joe Orton - 2.4.10-2Joe Orton - 2.4.10-1Jan Kaluza - 2.4.9-8Jan Kaluza - 2.4.9-7Jan Kaluza - 2.4.9-6Joe Orton - 2.4.9-5Fedora Release Engineering - 2.4.9-4Jan Kaluza - 2.4.9-3Jan Kaluza - 2.4.9-2Jan Kaluza - 2.4.9-1Joe Orton - 2.4.7-6Stephen Gallagher 2.4.7-5Jan Kaluza - 2.4.7-4Jan Kaluza - 2.4.7-3Joe Orton - 2.4.7-2Joe Orton - 2.4.7-1Joe Orton - 2.4.6-10Joe Orton - 2.4.6-9Joe Orton - 2.4.6-8Jan Kaluza - 2.4.6-7Joe Orton - 2.4.6-6Jan kaluza - 2.4.6-5Joe Orton - 2.4.6-4Jan Kaluza - 2.4.6-3Jan Kaluza - 2.4.6-2Joe Orton - 2.4.6-1Jan Kaluza - 2.4.4-12Joe Orton - 2.4.4-11Joe Orton - 2.4.4-10Joe Orton - 2.4.4-9Jan Kaluza - 2.4.4-8Jan Kaluza - 2.4.4-7Jan Kaluza - 2.4.4-6Jan Kaluza - 2.4.4-5Jan Kaluza - 2.4.4-4Jan Kaluza - 2.4.4-3Joe Orton - 2.4.4-2Joe Orton - 2.4.4-1Joe Orton - 2.4.3-17Fedora Release Engineering - 2.4.3-16Joe Orton - 2.4.3-15Joe Orton - 2.4.3-14Joe Orton - 2.4.3-13Joe Orton - 2.4.3-12Joe Orton - 2.4.3-11Joe Orton - 2.4.3-10Joe Orton - 2.4.3-9Joe Orton - 2.4.3-8Joe Orton - 2.4.3-7Jan Kaluza - 2.4.3-6Joe Orton - 2.4.3-5Joe Orton - 2.4.3-4Jan Kaluza - 2.4.3-3Joe Orton - 2.4.3-2Joe Orton - 2.4.3-1Joe Orton - 2.4.2-23Fedora Release Engineering - 2.4.2-22Joe Orton - 2.4.2-21Joe Orton - 2.4.2-20Joe Orton - 2.4.2-19Joe Orton - 2.4.2-18Joe Orton - 2.4.2-17Joe Orton - 2.4.2-16Joe Orton - 2.4.2-15Joe Orton - 2.4.2-14Joe Orton - 2.4.2-13Joe Orton - 2.4.2-12Joe Orton - 2.4.2-11Joe Orton - 2.4.2-10Joe Orton - 2.4.2-9Joe Orton - 2.4.2-8Joe Orton - 2.4.2-7Joe Orton - 2.4.2-6Joe Orton - 2.4.2-5Joe Orton - 2.4.2-4Joe Orton - 2.4.2-3Joe Orton - 2.4.2-2Jan Kaluza - 2.4.2-1Joe Orton - 2.4.1-6Joe Orton - 2.4.1-5Joe Orton - 2.4.1-4Joe Orton - 2.4.1-3Joe Orton - 2.4.1-2Joe Orton - 2.4.1-1Joe Orton - 2.2.22-2Joe Orton - 2.2.22-1Petr Pisar - 2.2.21-8Jan Kaluza - 2.2.21-7Joe Orton - 2.2.21-6Fedora Release Engineering - 2.2.21-5Jan Kaluza - 2.2.21-4Jan Kaluza - 2.2.21-3Ville Skyttä - 2.2.21-2Joe Orton - 2.2.21-1Joe Orton - 2.2.20-1Jan Kaluza - 2.2.19-5Iain Arnell 1:2.2.19-4Jan Kaluza - 2.2.19-3Jan Kaluza - 2.2.19-2Joe Orton - 2.2.19-1Joe Orton - 2.2.17-13Joe Orton - 2.2.17-12Joe Orton - 2.2.17-11Joe Orton - 2.2.17-10Joe Orton - 2.2.17-9Fedora Release Engineering - 2.2.17-8Joe Orton - 2.2.17-7Joe Orton - 2.2.17-6Joe Orton - 2.2.17-5Joe Orton - 2.2.17-4Joe Orton - 2.2.17-3Joe Orton - 2.2.17-2Joe Orton - 2.2.17-1Joe Orton - 2.2.16-2Joe Orton - 2.2.16-1Joe Orton - 2.2.15-3Robert Scheck - 2.2.15-1- Fix issue found by covscan - Related: #2159603- Another rebuild because of mistake in workflow - Related: #2159603- Rebuild because of mistake in workflow - Related: #2159603- Resolves: #2159603 - mod_status lists BusyWorkers IdleWorkers keys twice- Resolves: #2176723 - CVE-2023-27522 httpd:2.4/httpd: mod_proxy_uwsgi HTTP response splitting- Resolves: #2190133 - mod_rewrite regression with CVE-2023-25690- Resolves: #2177748 - CVE-2023-25690 httpd:2.4/httpd: HTTP request splitting with mod_rewrite and mod_proxy- Resolves: #2162499 - CVE-2006-20001 httpd: mod_dav: out-of-bounds read/write of zero byte - Resolves: #2162485 - CVE-2022-37436 httpd: mod_proxy: HTTP response splitting - Resolves: #2162509 - CVE-2022-36760 httpd: mod_proxy_ajp: Possible request smuggling- Resolves: #2155961 - prevent sscg creating /dhparams.pem- Resolves: #2095650 - Dependency from mod_http2 on httpd broken- Resolves: #2050888 - httpd with SSL fails to start unless hostname command was installed- Add the SNI support in mod_proxy_wstunnel module for Apache httpd - Resolves: rhbz#2017543- Resolves: #2097015 - CVE-2022-28614 httpd:2.4/httpd: out-of-bounds read via ap_rwrite() - Resolves: #2097031 - CVE-2022-28615 httpd:2.4/httpd: out-of-bounds read in ap_strcmp_match() - Resolves: #2097458 - CVE-2022-30522 httpd:2.4/httpd: mod_sed: DoS vulnerability - Resolves: #2097480 - CVE-2022-30556 httpd:2.4/httpd: mod_lua: Information disclosure with websockets - Resolves: #2098247 - CVE-2022-31813 httpd:2.4/httpd: mod_proxy: X-Forwarded-For dropped by hop-by-hop mechanism - Resolves: #2097451 - CVE-2022-29404 httpd:2.4/httpd: mod_lua: DoS in r:parsebody - Resolves: #2096997 - CVE-2022-26377 httpd:2.4/httpd: mod_proxy_ajp: Possible request smuggling- Resolves: #2065237 - CVE-2022-22719 httpd:2.4/httpd: mod_lua: Use of uninitialized value of in r:parsebody - Resolves: #2065267 - CVE-2022-22721 httpd:2.4/httpd: core: Possible buffer overflow with very large or unlimited LimitXMLRequestBody - Resolves: #2065324 - CVE-2022-23943 httpd:2.4/httpd: mod_sed: Read/write beyond bounds- Resolves: #2090848 - CVE-2020-13950 httpd:2.4/httpd: mod_proxy NULL pointer dereference- Resolves: #2065249 - CVE-2022-22720 httpd:2.4/httpd: HTTP request smuggling vulnerability in Apache HTTP Server 2.4.52 and earlier- Resolves: #2035030 - CVE-2021-44224 httpd:2.4/httpd: possible NULL dereference or SSRF in forward proxy configurations- Resolves: #2035063 - CVE-2021-44790 httpd:2.4/httpd: mod_lua: possible buffer overflow when parsing multipart content- Resolves: #2007199 - CVE-2021-36160 httpd:2.4/httpd: mod_proxy_uwsgi: out-of-bounds read via a crafted request uri-path - Resolves: #1972491 - CVE-2021-33193 httpd:2.4/mod_http2: Request splitting via HTTP/2 method injection and mod_proxy- Resolves: #1968278 - CVE-2020-35452 httpd:2.4/httpd: Single zero byte stack overflow in mod_auth_digest - Resolves: #2001046 - Apache httpd OOME with mod_dav in RHEL 8 - Resolves: #2005128 (CVE-2021-34798) - CVE-2021-34798 httpd: NULL pointer dereference via malformed requests - Resolves: #1984828 - mod_proxy_hcheck piles up health checks leading to high memory consumption - Resolves: #2005119 - CVE-2021-39275 httpd: out-of-bounds write in ap_escape_quotes() via malicious input- Related: #2007236 - CVE-2021-40438 httpd:2.4/httpd: mod_proxy: SSRF via a crafted request uri-path- Resolves: #2007236 - CVE-2021-40438 httpd:2.4/httpd: mod_proxy: SSRF via a crafted request uri-path - Resolves: #1969229 - CVE-2021-26691 httpd:2.4/httpd: Heap overflow in mod_session- Resolves: #1680111 - httpd sends reply to HTTPS GET using two TLS records - Resolves: #1905613 - mod_ssl does not like valid certificate chain - Resolves: #1935742 - [RFE] backport samesite/httponly/secure flags for usertrack - Resolves: #1972500 - CVE-2021-30641 httpd:2.4/httpd: MergeSlashes regression - Resolves: #1968307 - CVE-2021-26690 httpd:2.4/httpd: mod_session NULL pointer dereference in parser - Resolves: #1934741 - Apache trademark update - new logo- Resolves: #1952557 - mod_proxy_wstunnel.html is a malformed XML - Resolves: #1937334 - SSLProtocol with based virtual hosts- prevent htcacheclean from while break when first file processed- Resolves: #1918741 - Thousands of /tmp/modproxy.tmp.* files created by apache- Resolves: #1883648 - [RFE] Update httpd directive SSLProxyMachineCertificateFile to be able to handle certs without matching private key- Resolves: #1896176 - [RFE] ProxyWebsocketIdleTimeout from httpd mod_proxy_wstunnel - Resolves: #1847585 - mod_ldap: High CPU usage at apr_ldap_rebind_remove()- Resolves: #1651376 - centralizing default index.html for httpd- Resolves: #1868608 - Intermittent Segfault in Apache httpd due to pool concurrency issues - Resolves: #1861380 - httpd/mod_proxy_http/mod_ssl aborted when sending a client cert to backend server - Resolves: #1680118 - unorderly connection close when client attempts renegotiation- Resolves: #1677590 - CVE-2018-17199 httpd:2.4/httpd: mod_session_cookie does not respect expiry time - Resolves: #1869075 - CVE-2020-11984 httpd:2.4/httpd: mod_proxy_uswgi buffer overflow - Resolves: #1872828 - httpd: typo in htpasswd, contained in httpd-tools package - Resolves: #1869576 - httpd : mod_proxy should allow to specify Proxy-Authorization in ProxyRemote directive - Resolves: #1875844 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout - Resolves: #1891829 - mod_proxy_hcheck Doesn't perform checks when in a balancer- Resolves: #1209162 - support logging to journald from CustomLog- Resolves: #1823263 (CVE-2020-1934) - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized value- Related: #1771847 - BalancerMember ping parameter for mod_proxy_http doesn't work- Resolves: #1823259 - CVE-2020-1927 httpd:2.4/httpd: mod_rewrite configurations vulnerable to open redirect - Resolves: #1747284 - CVE-2019-10098 httpd:2.4/httpd: mod_rewrite potential open redirect - Resolves: #1747281 - CVE-2019-10092 httpd:2.4/httpd: limited cross-site scripting in mod_proxy error page - Resolves: #1747291 - CVE-2019-10097 httpd:2.4/httpd: null-pointer dereference in mod_remoteip - Resolves: #1771847 - BalancerMember ping parameter for mod_proxy_http doesn't work - Resolves: #1794728 - Backport of SessionExpiryUpdateInterval directive- Resolves: #1775158 - POST request with TLS 1.3 PHA client auth fails: Re-negotiation handshake failed: Client certificate missing- Resolves: #1704317 - Add support for SSLKEYLOGFILE- mod_cgid: enable fd passing (#1633224)- Resolves: #1744121 - Unexpected OCSP in proxy SSL connection - Resolves: #1725031 - htpasswd: support SHA-x passwords for FIPS compatibility - Resolves: #1633224 - mod_cgid logging issues- remove bundled mod_md module - Related: #1747898 - add mod_md package- Resolves: #1744999 - CVE-2019-9511 httpd:2.4/mod_http2: HTTP/2: large amount of data request leads to denial of service - Resolves: #1745086 - CVE-2019-9516 httpd:2.4/mod_http2: HTTP/2: 0-length headers leads to denial of service - Resolves: #1745154 - CVE-2019-9517 httpd:2.4/mod_http2: HTTP/2: request for large response leads to denial of service- Resolves: #1730721 - absolute path used for default state and runtime dir by default- Resolves: #1724549 - httpd response contains garbage in Content-Type header- Resolves: #1696142 - CVE-2019-0217 httpd:2.4/httpd: mod_auth_digest: access control bypass due to race condition - Resolves: #1696097 - CVE-2019-0220 httpd:2.4/httpd: URL normalization inconsistency - Resolves: #1669221 - `ExtendedStatus Off` directive when using mod_systemd causes systemctl to hang - Resolves: #1673022 - httpd can not be started with mod_md enabled- Resolves: #1695432 - CVE-2019-0211 httpd: privilege escalation from modules scripts - Resolves: #1696091 - CVE-2019-0215 httpd:2.4/httpd: mod_ssl: access control bypass when using per-location client certification authentication- Resolves: #1672977 - state-dir corruption on reload- Resolves: #1670716 - Coredump when starting in FIPS mode- add security fix for CVE-2019-0190 (#1671282)- add DefaultStateDir/ap_state_dir_relative() (#1653009) - mod_dav_fs: use state dir for default DAVLockDB - mod_md: use state dir for default MDStoreDir- add httpd.conf(5) (#1611361)- Resolves: #1652966 - Missing RELEASE in http header- Resolves: #1641951 - No Documentation= line in htcacheclean.service files- Resolves: #1643713 - TLS connection allowed while all protocols are forbidden- mod_ssl: fix off-by-one causing crashes in CGI children (#1649428)- Resolves: #1644625 - httpd rebase to 2.4.37- Related: #1493510 - RFE: httpd, add IP_FREEBIND support for Listen- mod_ssl: allow sending multiple CA names which differ only in case- mod_ssl: drop SSLRandomSeed from default config (#1638730) - mod_ssl: follow OpenSSL protocol defaults if SSLProtocol is not configured (Rob Crittenden, #1638738)- mod_ssl: don't require SSLCryptoDevice to be set for PKCS#11 cert- Resolves: #1635681 - sync with Fedora 28/29 httpd - comment-out SSLProtocol, SSLProxyProtocol from ssl.conf in default configuration; now follow OpenSSL system default (#1468322) - dropped NPN support - mod_md: change hard-coded default MdStoreDir to state/md (#1563846) - don't block on service try-restart in posttrans scriptlet - build and load mod_brotli - mod_systemd: show bound ports in status and log to journal at startup - updated httpd.service.xml man page - tweak wording in privkey passphrase prompt - drop sslmultiproxy patch - apachectl: don't read /etc/sysconfig/httpd - drop irrelevant Obsoletes for devel subpackage - move instantiated httpd@.service to main httpd package- Resolves: #1602548 - various covscan fixes- apache httpd can work with TLS 1.3 (#1617997) - drop SSLv3 support patch- new version 2.4.35 (#1632754)- mod_ssl: enable SSLv3 and change behavior of "SSLProtocol All" configuration (#1622630)- mod_ssl: add PKCS#11 cert/key support (Anderson Sasaki, #1527084)- new version 2.4.33 - add mod_md subpackage; load mod_proxy_uwsgi by default- remove %ghosted /etc/sysconfig/httpd (#1572676)- Resolves: #1512563 - httpd: update welcome page branding - Resolves: #1511123 - RFE: httpd use event MPM by default - Resolves: #1493510 - RFE: httpd, add IP_FREEBIND support for Listen- new version 2.4.28- add notes on enabling httpd_graceful_shutdown boolean for prefork- drop Requires(post) for mod_ssl- better error handling in httpd-ssl-gencerts (#1494556)- Require sscg 2.2.0 for creating service and CA certificates together- Address CVE-2017-9798 by applying patch from upstream (#1490344)- use sscg defaults; append CA cert to generated cert - document httpd-init.service in httpd-init.service(8)- Address CVE-2017-9798 by applying patch from upstream (#1490344)- Generate SSL certificates on service start, not %posttrans- move httpd.service.d, httpd.socket.d dirs to -filesystem- add new content-length filter (upstream PR 61222)- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild- update mod_systemd (r1802251)- switch to event by default for Fedora 27 and later (#1471708)- Resolves: #1469959 - httpd update cleaned out /etc/sysconfig- new version 2.4.27- mod_proxy_fcgi: fix further regressions (PR 61202)- new version 2.4.26- move unit man pages to section 8, add as Documentation= in units- add httpd.service(5) and httpd.socket(5) man pages- require mod_http2, now packaged separately- Resolves: #1397243 - Backport Apache Bug 53098 - mod_proxy_ajp: patch to set worker secret passed to tomcat- Resolves: #1434916 - httpd.service: Failed with result timeout- link only httpd, not support/* against -lselinux -lsystemd- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild- mod_watchdog: restrict thread lifetime (#1410883)- Resolves: #1358875 - require nghttp2 >= 1.5.0- new version 2.4.25- Resolves: #1401530 - CVE-2016-8740 httpd: Incomplete handling of LimitRequestFields directive in mod_http2- fix build with OpenSSL 1.1 (#1392900) - fix typos in ssl.conf (josef randinger, #1379407)- no longer package /etc/sysconfig/httpd - synch ssl.conf with upstream- add security fix for CVE-2016-5387- load mod_watchdog by default (#1353582)- restore build of mod_proxy_fdpass (#1325883) - improve check tests to catch configured-but-not-built modules- update to 2.4.23 (#1325883, #1353203) - load mod_proxy_hcheck - recommend use of "systemctl edit" in httpd.service- have "apachectl graceful" start httpd if not running, per man page- use redirects for lang-specific /manual/ URLs- fix welcome page HTML validity (Ville Skyttä)- remove httpd pre script (duplicate of httpd-filesystem's) - in httpd-filesystem pre script, create group/user iff non-existent- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild- update to new version 2.4.18- re-enable mod_asis due to popular demand (#1284315)- fix crash when using -X argument (#1272234)- rebase socket activation patch to 2.4.17- update to 2.4.17 (#1271224) - build, load mod_http2 - don't build mod_asis, mod_file_cache - load mod_cache_socache, mod_proxy_wstunnel by default - check every built mod_* is configured - synch ssl.conf with upstream; disable SSLv3 by default- update to 2.4.16- mod_ssl: use "localhost" in the dummy SSL cert if len(FQDN) > 59 chars- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild- update to 2.4.12- fix compilation with lua-5.3- remove filter for auto-provides of httpd modules, it is not needed since F20- core: fix bypassing of mod_headers rules via chunked requests (CVE-2013-5704) - mod_cache: fix NULL pointer dereference on empty Content-Type (CVE-2014-3581) - mod_proxy_fcgi: fix a potential crash with long headers (CVE-2014-3583) - mod_lua: fix handling of the Require line when a LuaAuthzProvider is used in multiple Require directives with different arguments (CVE-2014-8109)- require apr-util 1.5.x- use NoDelay and DeferAcceptSec in httpd.socket- increase suexec minimum acceptable uid/gid to 1000 (#1136391)- fix hostname requirement and conflict with openssl-libs- use KillMode=mixed in httpd.service (#1135122)- set vstring based on /etc/os-release (Pat Riehecky, #1114539)- pull in httpd-filesystem as Requires(pre) (#1128328) - fix cipher selection in default ssl.conf, depend on new OpenSSL (#1134348) - require hostname for mod_ssl post script (#1135118)- mod_systemd: updated to the latest version - use -lsystemd instead of -lsystemd-daemon (#1125084) - fix possible crash in SIGINT handling (#958934)- mod_ssl: treat "SSLCipherSuite PROFILE=..." as special (#1109119) - switch default ssl.conf to use PROFILE=SYSTEM (#1109119)- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild- add /usr/bin/useradd dependency to -filesystem requires- fix creating apache user in pre script (#1128328)- enable mod_request by default for mod_auth_form - move disabled-by-default modules from 00-base.conf to 00-optional.conf- update to 2.4.10 - expand variables in docdir example configs- add support for systemd socket activation (#1111648)- remove conf.modules.d from httpd-filesystem subpackage (#1081453)- add httpd-filesystem subpackage (#1081453)- mod_ssl: don't use the default OpenSSL cipher suite in ssl.conf (#1109119)- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild- add support for SetHandler + proxy (#1078970)- move macros from /etc/rpm to macros.d (#1074277) - remove unused patches- update to 2.4.9- use 2048-bit RSA key with SHA-256 signature in dummy certificate- Create drop directory for systemd snippets- remove provides of old MMN, because it contained double-dash (#1068851)- fix graceful restart using legacy actions- conflict with pre-1.5.0 APR - fix sslsninotreq patch- update to 2.4.7 (#1034071)- switch to requiring system-logos-httpd (#1031288)- change mmnisa to drop "-" altogether- drop ambiguous invalid "-" in RHS of httpd-mmn Provide, keeping old Provide for transition- systemd: use {MAINPID} notation to ensure /bin/kill has always the second arg- mod_ssl: allow SSLEngine to override Listen-based default (r1537535)- systemd: send SIGWINCH signal without httpd -k in ExecStop- load mod_macro by default (#998452) - add README to conf.modules.d - mod_proxy_http: add possible fix for threading issues (r1534321) - core: add fix for truncated output with CGI scripts (r1530793)- require fedora-logos-httpd (#1009162)- revert fix for dumping vhosts twice- update to 2.4.6 - mod_ssl: use revised NPN API (r1487772)- mod_unique_id: replace use of hostname + pid with PRNG output (#976666) - apxs: mention -p option in manpage- add patch for aarch64 (Dennis Gilmore, #925558)- remove duplicate apxs man page from httpd-tools- remove zombie dbmmanage script- return 400 Bad Request on malformed Host header- ignore /etc/sysconfig/httpd and document systemd way of setting env variables in this file- htpasswd/htdbm: fix hash generation bug (#956344) - do not dump vhosts twice in httpd -S output (#928761) - mod_cache: fix potential crash caused by uninitialized variable (#954109)- execute systemctl reload as result of apachectl graceful - mod_ssl: ignore SNI hints unless required by config - mod_cache: forward-port CacheMaxExpire "hard" option - mod_ssl: fall back on another module's proxy hook if mod_ssl proxy is not configured.- fix service file to not send SIGTERM after ExecStop (#906321, #912288)- protect MIMEMagicFile with IfModule (#893949)- really package mod_auth_form in mod_session (#915438)- update to 2.4.4 - fix duplicate ownership of mod_session config (#914901)- add mod_session subpackage, move mod_auth_form there (#894500)- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild- add systemd service for htcacheclean- drop patch for r1344712- filter mod_*.so auto-provides (thanks to rcollet) - pull in syslog logging fix from upstream (r1344712)- rebuild to pick up new apr-util-ldap- rebuild- pull upstream patch r1392850 in addition to r1387633- define PLATFORM in os.h using vendor string- use systemd script unconditionally (#850149)- use systemd scriptlets if available (#850149) - don't run posttrans restart if /etc/sysconfig/httpd-disable-posttrans exists- use systemctl from apachectl (#842736)- fix some error log spam with graceful-stop (r1387633) - minor mod_systemd tweaks- use IncludeOptional for conf.d/*.conf inclusion- adding mod_systemd to integrate with systemd better- mod_ssl: add check for proxy keypair match (upstream r1374214)- update to 2.4.3 (#849883) - own the docroot (#848121)- add mod_proxy fixes from upstream (r1366693, r1365604)- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- drop explicit version requirement on initscripts- mod_ext_filter: fix error_log warnings- support "configtest" and "graceful" as initscripts "legacy actions"- avoid use of "core" GIF for a "core" directory (#168776) - drop use of "syslog.target" in systemd unit file- use _unitdir for systemd unit file - use /run in unit file, ssl.conf- mod_ssl: fix NPN patch merge- move tmpfiles.d fragment into /usr/lib per new guidelines - package /run/httpd not /var/run/httpd - set runtimedir to /run/httpd likewise- fix htdbm/htpasswd crash on crypt() failure (#818684)- pull fix for NPN patch from upstream (r1345599)- update suexec patch to use LOG_AUTHPRIV facility- really fix autoindex.conf (thanks to remi@)- fix autoindex.conf to allow symlink to poweredby.png- suexec: use upstream version of patch for capability bit support- suexec: use syslog rather than suexec.log, drop dac_override capability- mod_ssl: add TLS NPN support (r1332643, #809599)- add BR on APR >= 1.4.0- use systemctl from logrotate (#221073)- pull from upstream: * use TLS close_notify alert for dummy_connection (r1326980+) * cleanup symbol exports (r1327036+)- really fix restart- tweak default ssl.conf - fix restart handling (#814645) - use graceful restart by default- update to 2.4.2- fix macros- add _httpd_moddir to macros- fix symlink for poweredby.png - fix manual.conf- add mod_proxy_html subpackage (w/mod_proxy_html + mod_xml2enc) - move mod_ldap, mod_authnz_ldap to mod_ldap subpackage- clean docroot better - ship proxy, ssl directories within /var/cache/httpd - default config: * unrestricted access to (only) /var/www * remove (commented) Mutex, MaxRanges, ScriptSock * split autoindex config to conf.d/autoindex.conf - ship additional example configs in docdir- update to 2.4.1 - adopt upstream default httpd.conf (almost verbatim) - split all LoadModules to conf.modules.d/*.conf - include conf.d/*.conf at end of httpd.conf - trim %changelog- fix build against PCRE 8.30- update to 2.2.22- Rebuild against PCRE 8.30- fix #783629 - start httpd after named- complete conversion to systemd, drop init script (#770311) - fix comments in /etc/sysconfig/httpd (#771024) - enable PrivateTmp in service file (#781440) - set LANG=C in /etc/sysconfig/httpd- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- fix #751591 - start httpd after remote-fs- allow change state of BalancerMember in mod_proxy_balancer web interface- Make mmn available as %{_httpd_mmn}. - Add .svgz to AddEncoding x-gzip example in httpd.conf.- update to 2.2.21- update to 2.2.20 - fix MPM stub man page generation- fix #707917 - add httpd-ssl-pass-dialog to ask for SSL password using systemd- rebuild while rpm-4.9.1 is untagged to remove trailing slash in provided directory names- fix #716621 - suexec now works without setuid bit- fix #689091 - backported patch from 2.3 branch to support IPv6 in logresolve- update to 2.2.19 - enable dbd, authn_dbd in default config- fix path expansion in service files- add systemd service files (#684175, thanks to Jóhann B. Guðmundsson)- minor updates to httpd.conf - drop old patches- rebuild- use arch-specific mmn- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- generate dummy mod_ssl cert with CA:FALSE constraint (#667841) - add man page stubs for httpd.event, httpd.worker - drop distcache support - add STOP_TIMEOUT support to init script- update default SSLCipherSuite per upstream trunk- fix requires (#667397)- de-ghost /var/run/httpd- add tmpfiles.d configuration, ghost /var/run/httpd (#656600)- drop setuid bit, use capabilities for suexec binary- update to 2.2.17- link everything using -z relro and -z now- update to 2.2.16- default config tweaks: * harden httpd.conf w.r.t. .htaccess restriction (#591293) * load mod_substitute, mod_version by default * drop proxy_ajp.conf, load mod_proxy_ajp in httpd.conf * add commented list of shipped-but-unloaded modules * bump up worker defaults a little * drop KeepAliveTimeout to 5 secs per upstream - fix LSB compliance in init script (#522074) - bundle NOTICE in -tools - use init script in logrotate postrotate to pick up PIDFILE - drop some old Obsoletes/Conflicts- update to 2.2.15 (#572404, #579311)2.4.37-61.module_el8+563+4ebf229f2.4.37-61.module_el8+563+4ebf229f2.4.37-61.module_el8+563+4ebf229f01-ldap.conf.build-id01ef3b8d9564a25474992a5a9fecd9ba54a3cc09fb6885a8c3847d8e7222944e42a02f521918mod_authnz_ldap.somod_ldap.so/etc/httpd/conf.modules.d//usr/lib//usr/lib/.build-id/94//usr/lib/.build-id/df//usr/lib64/httpd/modules/-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -fexceptions -fstack-protector-strong -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1 -fasynchronous-unwind-tables -fstack-clash-protectioncpioxz2aarch64-redhat-linux-gnuASCII textdirectoryELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=9401ef3b8d9564a25474992a5a9fecd9ba54a3cc, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=df09fb6885a8c3847d8e7222944e42a02f521918, strippedRRR RR RRRRRR RR RRRutf-8c968f53681f1f675a1cc0086b5d59d8c1675d1d4c9c734a561433345396e4bf3httpd:2.4:820230720125714:9edba152?07zXZ !#,'W] b2u Q{LV9g+`'m&Y֞jM6nqGv#prK2< lJ?H( soU3]SqIS{ ~%g(fx _] ~߱Y 2s,XF|RLWd>^3Q` !混wo~zf`=w,"-N<2BW'zh0ri+c2K:fgxnܻp[-M<ְ5 ?ዙ-o ohQ}9Is$L_c=`HO9&a>k%G xU4܍4!: BaXA](oW-{x1i0*y@gܚy=)dciVwΘS<*rYSB}fF`'j+z< ۟ Y;ݺPH yτq2_6A'BU0azkY]iGvYB/!ZY ? Gqzu2!@Lnõb; B(,Q’)6;NT?ߠC-M w4kx#1'ׁ) M} Qulø+kژ30Mv=?I^ᨍn2% "2znkָU_*:n4YJ H- rQk-1\!=+k*3JW$dm{p Qz 4}gl7 QRFm4,vtBL(|v$vǬ\E.kNPI%6O{/ إ$0Ed|H}[!lC:y v6^wnucg'7xЀu!Y]ʪd&+Y{ C5-wj|ʿGyFqUMp!L`g^ ?)Z  /k 9}ҹK{ .(7JIBfw@x7s]7sxAUqAv" 4X>D8e|yEqD'׻}JJ^xV/ F8BE,\ԑG=*e˒%FߤP^Z"=]:Mz,Ar]AL$M lVձd9p5ۄZbm qO> _>=dj 4R)tTҩU'nTGl+4-:dPaR(<5q [_>w:<`{hR9+evA7 0|*YJ>A(9.;pvY wA @A?[# 6PW_;f7瘾 QI% 7I lNXG6`l@Td†#EFVPQavF[R(2mԎ+?f5C@2oGZSAgnLPʤc y=Lrx![5ދѝx *R_*ıAXOwtSVZi6!NѿoR$;A1Ey\Hi9 Bu{ ЃZ͙Xw6j{^~ NKyVo`ڎ6oi_АSvJP E\مJ׭0I¡2M~* xH-$|LqU>Iy'-L p㠑k vQ SPK] B߇"paz''G=UDo)ZW^*VY*Vˌ_hlTIZld`ɞBC ˑJ,kY~04}>3'8G_J߂mu#tbIgT>u1GC D5ɾ.P{􃟆>g(6 xtH-ұ{uM)r5HUZ5qN\9ء|ƵyVn;+UW]h:-9 pՎ/ϛȐ`:DQ=lkqZW(@Rᛡh&XgI 9~s.(JmȊGq z׶nnץNd_jNJE(t`F<H+,gu 1cn zoP}h1.199b z$zbۍ&^[xڥi`ԡU(NbYRk{v[iEa}^*/3I]{4`4ّ0x[ƿ3{瀍K)6-D]A5|oA}α9T^%پOy#%9=IY;)/^M.G] [v톯J"ʋBv%PB\t͛ 5yz\b1דxe$ zKl@%- .KM@ҖmƱƔ(X*涎eIl>0%97~K)8nw6WȾOWNJ xqվt3+`yW$\{Pf6:6ωkXjdܣ،#JJwI7̒hng7r3~ `5p6!Է'8.ZfZ 7S/cŒn>b9{A6]DJB-LQpX ol|t[S0ֿ޹I/^ ѳϘj[?QN#xg'1\ eJ[*,m%eL]_L)z+g*:'_A[0% >.#vqURhЋ~ȵ$m?aY䛋%lLqB;01\R/4b/d  ,ll3n+3348^ *G!Si֮% ڔn;> V-g8[ ׼!n,.-ŝ:q x]p}q8@o uy]f9 伹9~qT<[p&iO` GH+Wa\ʾ̋zKU?:skӇ$"P*3y^fo]ǔ- j[]X}kZnҋ>d\t<-WPc| w )z-O/ %I,!X3̗cG‘^y;'nhk{D6v *MjDk g5LrZ ӑⷰ|R,0\sDZNa{|0I⟀ھ8zF)m\̬7LvdD%Dҫjm7~42QlTڞn*6\ʾTGlRP,'A~wm #7oLSMuc-^A9v ٺDe I [S&^y U kϬtMl #¦|"0Ò &S剧A Yy&kYbM88Cǖ4̹ZA/b쳊{6(p!C?1zzE^Gw 1=tH8?Wtr"\B&pGqv^bQεylϣ92"/JGQ0vfvTd߇WOHPcFoFP7#8j% \DA z؈9j=O@]M:1RCYK쿣Uej ݇]󃳎4 z"/*=}Ȉ'qɟ VK eڋ Xl"OKz 0jzzqD Z'f0A_j/$XYQxc esKFz S -t7k8fER'Y=(!v>#mVPE0gfZ k{Xh-·b uE L5o,{H VN!#2#2O L:5ӱTY=9'pWšB[ȆЋ@="G{1[6Sa`Lw{R<9@*VT&Z+N|pi6 @%bFuvr %v-0dJ'BP\;t4s2Xc4uNذ¦:À?-7CC;juN^Ҭ rbb8B&.+vw-A]:w(JA;>ׅQKϚ^Gn:oFb2A6F$1^p.4"b$QIpvdm Z*3,zȻip Wzڨ|Ju [\ـ!DB0?6'p #I]-nD4$[j9/@ OW(t'v>;_{/`.qd 8sFv)+5GΤY!Mv%dT|(&M C;y' (O&jH=9&Nfd@BAHؤY;=a$|zqA9Mfr $]5#1rĕԘV2=i_4a=c}!v9 X ;t G,3XdO}\&ڕdl/8-3ҿVMo+)p/}`%+~B/8;YH@}VT~ Oz|[p'}[C* 7>S.R}0%#GלbcEWd0F;:>>Sw%#csg{.I_ ϒiS~ &N@g; 럇t&ե-!$,&LkFSd.AE@C L)2twWP; `i _&<9^ GB|Wua8D+%&1~zZ<;t7™=+fQ% M!,_O;_pUB1Fx{-,'9<%ΠPF~W8G-{k1h9T*뽎b`ɍ.L3}ĸ0`'{X;VjuYnR8dbiQ  *!uNP=,'gyO -s[>d Y4+@_-EjoQeb3o H" :O.@(-3J\h<{O's8(^? mJ)C%F&xT; 5~ti*^t7h/S:sE%]7R.5A閩Oqµ3z!IG;a ⿖-]Ӥ7)<zjfPodVT,R D=;xX8L\&J>HڏL_f wR+ Ҝ,T,q&"i9,"Z)~p<~boїS}[]}Yc(C㻔bs&x3ǎ+V\(}p4 vmG ^z_FbPO-~'W\T: 1mgKTff)x{$-*@ ӯ#ճ Eo7#'K(z8|_,z ~s,Y:% ~RqF\֦ꃈ (vfE:E\aRa[˪1㭽BP]tТbNj.G3fA"8KKL|)8/u3w0D;F~ZfA_?k9E`GOoP^zsǦb n* 8Jl~KI\(/EzZ%Kf=Rj24 8KhSPnI8fLuD_S1pV_?&q|ū?kQ#˲UT?pfKœ~ P}o ElJ#P_ĂR˧m2!:ӻ'^2\;y`W<37Bha1bd.Gm 4i8G7Y=H;|/,K$Z@5w ?/@%#\HZXS5{Cw>gp"vd*׏^\ 2sTsE1}(t|є%F,̕0;yAD3r1 S84 aVb]_eQV!עe`k-Y!# ҹ W.rA-+x_ryʩ{6vLoU|L!'_9M;oH3]9 [޷4N+rr$1l" @7˫Ԑ(ϊ%Z" f/;}rT|,ķ^GlE<ϑT( 'W:0 D}Ck^)l-oRxX/E`W"j䴄Ğ؂lVBNh\h2^-mE@mklH%@ 5 ŗ\X)oLChbq0&_MRKs<z D̊ 7Bc8~W8pn>1Z؋O#UK/xy; Ҫc7$JGba φ^7, W̯/Ob1{w6P@ Zu\9PiZ=V60zyίyY GfI3r}f0L% n uJΰup)' yJ s݉.RdoĦvpǖ>y=CdDF{mRqށqzOd71GܟwGK=F<5[. "19͖ 0yt*;7q;YBz%ڝ F-6r6i^<9 "W)e ۄr YFBA;Q" vSh򵙫'RN[?dS2fY{/ST9j>\Wf ": .Pߦ{Gkr5EA + |FXo35<QKDF+]~*j&⽿=à u6Sn0!t 6ɯ%\vB^[bGo?C)5FR-faw@(# ;uyM"0 E)Gdi0/ilW~Y@J0?n7N>$D *ԉCxx&V x;3%FFgַU DR?n5-!E3!?k;>@ `V'.Ť͹]A 3Rp\47`H&ʻSQ&CņXפ^bWu R $~5rJ'{fN0 a{g8Eϒa`=ke?$;_ӔwB06 i$5\Tx9F0 IX ?G*gj U:䌅= S)h!&,pzG Ca>AX -B[#hpMjfa8_ƞkJFyS!^yQy@_`oX6kZkCnW=~ δw)yzb>zШ$0xX7v7)Ph>>|9pm[ 00/\:8>Ed ( 䮗}Ux7)I5^.rWbD;iHG^w`kUz~͢+\j6OcتD#x̙"p:e,P=י5nxG? BqX8h_*879yT%"r2KSI= ~$v-e|as M؏%K/VZjs׵/Žf5إB3"Rw@Cen"2l6oFH?=K%:]JxuSw>ϷG-ou]5)^gn C`,NklJ_ '}"AUH$% 05mX*V<`G a, ꂽLiFߚGG/%h4yBb?wxs9dS깥ĵo޹\Ih?W-q 4V'I_:P UTxiSfqM_وp,.[,^|iZsyys{(N ]M( }),Ӣ[-,Y)bx+: }oq GW ФĀ+!d@uG^:2kW0&NO9V BIrCLtqw.LY;[ 1Bh%\ @oWɴ8A)cg基Xb<2o'CaKyH L=X[_$ɳ0}8"w4u[Lp\sv45lj vDWz2 ĞݽР!EF1*aT-Й®b 1+)tYGSoMɅRaumlFFb\^6e.Zs?u:C'C[qiތG 1 !8> _͗"o@/6lSe>pJ,r}1l>Ba/=>c&oVߒh A܄S?;'<:VI5b 5W LwS*pݷ;|R[_+MykZ7hn*8:,.˜ 0**R$N[&[f՛#5n3{wK9a O L0Qw0Kjqɛ;Yv[K4SfKT5#[#QTj1sKj7XE9aX"$0-t@hZTnkJzq;ʐǏ+#s2\ĕ7\~!{3l_yp1U/^4"ŀJO!]pZbm5ºC ,t ~HMY):dKݏ)[Z:\B;`?&UC'wZ/RrξY;5S@&<v$~{u7bQЈ:qu6>Ez" pKӵΤjmYO^,c ̹u(ܩBx7TpEswZy/#ɐ Y$liR>oyN"i ;ʑ1'N'+Poh Hn2/e6`<SII j_2z֟}}6@ݠAňAdDV/%[!0 BWO,|o#NR>6I;d.hSf+ԛְ|DL@ H_I3Oե "-Tr4n+^:sg=cH\t/]$=դTp~A&S1CJ#c _! 4i|䲏SbQe-PY:zuv.ED٧̔|=aҔ2EOKnu}}[d8JEO.+Bto$Ϝ1,D7 W bd,v%-|`/r3!]R.Ѝa\N-xuH{BQ6(7`yG-luԋ`d k{mY"ېK (ra)=39E*^oc#>z("F)h VDҢ+?WʎS\l( \_PLKyk328ٺЯ+[ bpw; /.5Q,xpȟ4rE~:@'G+@aO`%Ȼ {6HH]y^n^4rRlR)XhoČlmBkVy8\!Y\$E J;pYhXL`{4pEp<djvGl%XG  o;,A!٬>NaDPR쇻L~[ ,|Ri+YIp0tmj@jlo**#O7EYI0/KŎ!zAC`h |YYqKA[- jcS؆m~szg%+O&Hy gB19A>~m. h0OtrTm@޺ @wdl*N8cn}IbڵRsDǥ`*K 05L:*˺Y4QQzVY5f=7)KHDBӾ e-A 6Vp(>aΰ^sVz4аS| $gb^]BͽAX? ONۏ%w5ĸ c@qMl.zխ!彚lSHrԢ-Qks"{r Vu]~̕!VXd4J`𢥽w9UϑA V1QR7GQ?{&3 Wr؉~qI٫pYr* d ϿL@ gj#xoz8ps*rB a^ V9NzF" 0"Y#້x( ][s ;pѥA $G5ec{@y5Nd*|jN;(K,yYӚd Sz~q2& n3n0FKQ /ojDH(t!` Ɏ],Ɛ1wnrlaZb*_2X^k%,I~_C!x5!ьR HID!΀m8q!KXx}#KS?DI| >-ɸqzyGes 6ftpd8"Q|>*Fk !̀,Ոbl™R&=D@ xECtTkgʰ;b}fmQHO 43< 7c bmŸEw >[F/8Xrϡ@F# xUG#n^ ss8Aho+#xP!v @3Cݫ2V{eq;b5M_);mfϺ $z&ڿY軵] f/ZobyP$$%tI9p<\FPf; !:_m $B[v-國 [X@=_KtS&b^ PZ6'D{*۟ H6|8e U.LI].m,!eI%Ë~TR!|.F$H$ )D@M4X;MiUL bwl!hS\'At sM 9%7?^2[,)Pned ?I71]e>%u^U*܆0zʈHq?yԤ&cj&RSgVʀmj,#Cx\[.v5Fdyҧ+yVNI<&pXg\o!4噃Y㩭G ١" >F}48J&"7-ѢzlL^&nCK%\ gI%pԚL0Ø CFHU04gS5hSCݔ{~6F@"ce!ja&A:{6 _q9E;3Bgִ&Qw22M;o2WCT}NK\py`Bݿא)~:yJ^Ah=,g`lh{2+)11͋r+(6 o?p*V(Llke?1CWjB:=k)N Wj!OP6or ZsHG'32K1m}OȲޯ›M]\0x{` WF+LETh J Ns7ᬉpn۾լfD4~B%[=#;'LAc[6# f1f1.enڬb ɫOmKs%A>³TJNsHyޏ95& S3F.A5P4f<}MW YL),0 d2\B/vgJRHe 8[5?'F~\?MGr͢ ,όЈ r*R:hZ'\nseM쨔 {8VB+J͛xCMLjb:-aԏoHw"X%)&-@\DS쿾)Zy pEmN}+טRz0Ȕy[m+5/[ ^pß f/٩)3-SJ.t>}nm"2wr DO:¦RXwͳ -Fjn0ro3b Ϊe.Nfr_ 2;碿q|mq8͊lM!$fCÒ\) z'IETP YI/>ŠVh>3g(#-sZn'ILĮn_LOu~*:|Hkȼێ(m躒807~T¨ l]!e$$.A10,VHq5c|Hqӡ`Bb&跇~Bg=_]X^x!Irq(lW!w;_?z /5gf3neoɚWk1u4 %"H>3~b栝#Ԏd)bT-t0 ^O&ֻt0@obGUмA{<'Υ>aݓxV:@Lv?(Mիfa&&  ?q>\56mn1&l_)^gFsBw)ŠCfd+) Ģg?JO T[r~ѨsͅO wKb@_ba-##ȽX^oj'݃¦v߷:@nrmL3Ap/^]mQ43ů7EpΌj›/>xo] lf4C,pyr|kIKo"Ln,3[%׌2$ezHN^T !P@B'?tpJ9G fWR;1ivqo2[N}R-<SxpVXI7QR_Q ~J_ɐ&-ø{QB,иxXA2ԝpG:Ee-$w M@p>f /uʸ9=q} XSCX` MHOrix%]>oךjU`г#c֔ 4io`pm0#+Ka(VwNd0'ٵPs3 c2{ֲ|Sȫ9>ܺ6 FhD)7fM'J~=0FjCh IF)0E573/.ٹB)^[e#{hRI+먫n:lz=9Yu|*IREw,O<*p +VmEFڱ-?'0EqEb*BS0|/\^$%TPNnCk 1GK]GJ8qlpV k%ti/3=DvoQYu(dwݡ+p֫fl! Q*@ %][ yt^+ :( -F`q.lZB퐈O ~>-y}<صlR]B̎.oX6ɷ˥$7'JKe^$σrĮw29O(y}E٤$!V~nte'{kfCĩ2U*DQ;&[yl?%ET-URS;"WLslWTw32+2. jRƧH8?LI5l|`b:D|:2Hæ`oF(r3JRxB$ [-&)x&l"CEsFcJR?q/1ɭ\F63.=:pq9DVأZ-Y@Uff_2 Q qR8$^bWs9ܦm_aQ{uQs hQLѯE,𘤎ez0~ȋrQ0{մ.9/Zm 6 *@vؔ⩛:_1Sۯ<6z:+fAsH EɭbWл>/e.zclC'[wEd]U_d,0ˈ%xB|x¾P fY ;̕zQo4[yLE%yþwW\( jўe[( ᮋ_W2s+Kڒ¹{K5n5.U9=!KE չŝ|^E;ͽķN[s6UDKhn>D.~cwAS v0gʴ #Jlqښ gf1t6QuÑlsi4"'o͂>ĩ)bn;gsShq9q :@n q]xi*J<hu>J=`SjKލL\OhK%pHX:eAAY zXn*rm]5Z"QEso#@!-b-ZKda* x 0T"=Q݉2vl[8v1w ŭ: Ĥ ǭŰo)فrns;8lvIJ:Ui#e@/\a+;\9md-judt_S\NXػ*KXo׌eCꏝ>Yeތ+RTVȞm[GrP8j>,)(|_ic?;?P"uC{y͌anJړY N4:ym+ 0fgϯ%;y~1ڕJ`t'-қsG!`Óm(=-D$Amj;pUG(h≅ZwgHo@ y¯n;οNZo]3:;'H\Q!p[33 =Z6",. d5 4Ta⦼uRwO,2旚 g<m䄿뾦*o_dX[H'z5x/k?(Dǩ4~ "ˬYN% 7=~C<zU+NFZ7ulG3u'ɂEG(ōD~y ZyX*DX],߼u%/ʛϛX"辒E3Jfu ,;x_m 'eG"P(_bDaq_l;;T}6EF;j|3qd^' 71hq1:Q=c\ Zz ! BOuZ>H0{̼ؓ{SV5\4uFVyB3{'y:c!"ĵ_eY9p Ux"a<6%eاcOVd1Lt&PHdzn&9 y ba\v`銚vP&jQP|jos1A:Z+&KdDq'b*c4Z}!2#Lh$Ū+M-D*J1Wz$pK 218\J%IB}_R#ӝ(:T WF/~ێ>t+lJӀO73J ٌ KIRe,>~&~$0B}7axKwyWT 0!Y ] Rok@ͥv g2[jLZ/M$Է:/(סEP^6N͟ptNa ӣBM!,q6Ҁ3~_J:ٞ ]xrhGo*s켡ʏOf۷5yն.2, H48Fy|v=5OϦ$_vS[56#~OL4}Dix^'&( \WInS `ɻi}fs;F"YT׸Ja-M/Ǔn&o9aYΆFFw${昢k[.Z،5 #?*`Urqya g+U1Ym#f ' v׍F@w5Pn"U]MQ}G'lsPXR4eO!Ca-0NދHr(@ bD( [`&I:O ^_-˭jt=%FeH#a-̰P.,iͶ~ pWTv]JaˮnʦQPO&Ds޶擪˛R {(Ȏyכ5QrOUSĜqM~GŦJ\[ QzG/S>4\/hJzאHY<̞gKGԃW͝fg^7AȜ\"h>eIJ6bx1JIPzFJ+?Cٹlٳ\A\e \_u5OXM_!09[_W*R M#cF<x壐$:=?2PSK \XG/'M&?̘+uDueplZ'\TqHa81P N'9'F;-yECziզʒڝ=JhS4қT z/Eڐ7]Q͙$|Å\->Ӄ*^%ũt7K"Q>)D|q~Sr870ܵf B\)Ǧ3G~' Q ԕy#?ApjO$Iyx$r iWQߥhZG]>iuz\a?.BX ,"qYmp/ɚHAQX0ԝ0Ɍ%Яҁů)ji0u*G Uk#gCTKa= .۸;.9M^9'+ ыo%(6  A֪Xpx;"eY doNYXl1ɥ94qX~4r3v n#i }ۻ)ȳIl\ b1;{TAi bd{ r0Rj"w/\q۽tyu~CSc A),eHrCOӥB(NUjA8@Et6.TH J  yӓZ("g,i1"^zݮ8L-y!z[y l cOi儖#$j!&`Y?rzYm$F[m'N*ߩ+6B}̈́Rr$WCV)r5n9A 9xi n}1ZaՊҊ&dNZ-Ĉt2z9-]PXRbeWt"-D_#6ޝκYIG"GpTU.r\t=0؁3Ę[Y?=y<~Ml Ca"ʫK hZ\AΆ*UH39۰Y2M7c -9 툌(Xt/H.nBuY#օB;D9Iv: Fw;9Y`$a(|U _A4HzbQsH"iPjOv',N:X5 +UaV+fmADG|+go?4d-4T2soh] &YIJ("\{|T:~l`MFvrx!ۈϧ6Ri!fOCe@]f]Y@֮*K]=/ JkGJuM38`o'.z7u |n'äۀ#+#A>7K ń)t>}Є(OW~Ȩi=i>ېiP%rr37q0C;Q}6) >k;'H!QBjME>l9:5);[6ug͘ c'EȠZG'8B`RplpD/ҽeh`&v) "n;PˆٜEJ_ l[|>qO>`H+7 upX P <E1YZz)9[E˚j*ubl!w,?Xr +#Kg/5Gœ#OeȐR6BYCgƅn≜k^9V]`",]L_G6AVQpv ;`ہQ['g|3>DJTqwyFql=+3FMp=,]g9㵧 +0ŸW@p,0?'Qgv˙ %q{ "bܿRӇ#$J (fڭyd&[uery?#Pᇑ笯L5罎7;MQ=./z)`twquH0P\-VV8͟["h0Q.YY,kd;P .h{hcO"t<*8 V|*UP&&Mq{1THC 84;@6Z:@tI7d96$o50,Gib1}L #qM@;Sfsô:pxԝ͒zy,٘L1_H!EBmƫÀQ}T#W +/M%?5_83w1VkKe2ǔyx` 4GDؗ<)ZһT\3@+^Q'&: \5[٧Q_B*.d@-eϳ6s58|/0dGS4%hRRyTQU&o |>3SkN# {wܨ>7OMtB4 g ?u".tz:r-. z5]YJ Bq4`y  3 re=]@i9lKwX+W06EDyx}5B$HP +{o ç7*!χQ~PW4 '^!ԵdqzeUT<7?2r={v\eVDj, Ѐ16l\ L* 4Vd4+ԍh<S~?v abBcVXTgI9^g S?Yl: 'Jvql3)ijs"arREǴ5H>w:6FQQ̭Cwwe/`$tFђm6 0r1Ѽ_7$M ,RI~[{&H bYm7^Dݬa,5e55p杞A)M]zvj+œws(tJR~FڱW(^C9` C ]/0:V>W97MvOO+=B<DeV<hU7 HmZ`ڔ`3!)rJwbX=]O5Ojژ<!ȗXÇN\؋QzxA5J7V Lc9畖MTJ办er":OHKN{' x L\0lx$}|)Y1~=*/iMf|a>`ۛ\2^嫃b ˆ7߉L⠤#6~{RjFfzϳ~Ԇ-|9#o9x9z]Ee~'.Y}g߷NٓNIZp@;*C +*8bLD…Sx5uN ZMYPx!t'V~y?(^m5{6K犞rs\[A9:4H٠/`X*!_j.5^krUGdoAҁK72ΞW!0%ό "ԾGZNh[ 9(6PW).:WTMq"_-TqM+gkS9CQ-#omf&ߐߜ{vE5v$Y *frTo;ZjJlqP\|$2'Y7@[<}2.Q !Oӹ/@#LZ>,vFiW e&§ްAﵳd"#r;dA<k蚒!0yJcy- u*:N@U*0 >CnHTg{p˳3G,[)b \dxJ'^yy|xJ Sw'h?iO:pѝCE)Ɔw$H `m ǮD]o$]mUD'{Ŋ >` @H;ݯR=tpYHνywO8;3'*S\! 2#A&m\&-;3A!Qa'|zlcTgړ4:U|0}R^RrOsPa|%{ @m;1儐155'ɻ!(dy4bKZ7#g0!K%"f<:Qqc;}řNߣ; >Y3D5SAӕX5CKCn2ixW0=q[ >|[<>%XbوPcTpM7AϘ!6݉31D5šJ5}>Ew̡%s_`iQP~jFIaն{9"O65hPK?hA4wQn W|JSm\ .j贎n3y1]9"j!Xkoڗ"+ќB ٬Pbͱkr9ge RIوօ<&UkUbtBL IB_~ eơ_5|=ai7]jzrJEjA_;ZkҙdAH?+zQ0vqqΕ7QkmE o+ ⷆ`yQ9[!s'o_Tڲ6Fm1Tm$~@!'k y%2gdU#YӸ"pnǙv&Ljjʍ(>jCй#@PuB3e ONUc  n-|ugw6]LtJɲti8`qܹ 3>o7gZn^t\[3VAkG1&~w鲴Rؕ,e q3)U-H8OgdYXx- |ljV'8tϗ?M:NoSS`ZN{l!Ezs۩9F&,J"BE ?ukn1[E_̡^ Ru.obSj "j4j'굄UrO%H+K^$v0gZA;E ZoՌ*P[wM0o{@EI~屻GP\/Mڨ,F_zx^@C$cG|e3h13!VBIyKGY/dk/͋ gy [ؙc]Du9^2n"2.r+NV LE+Y;Ǽт) .ےx"рdA`^1فaѶU[ CwNCo2!E[6TG  _}>1Q(8&ՀGfKs) =g*YuPC\ ۡQtE"q[USE=;=S?sP(=dsNO߾s$K  s>])OzEXdɒl`֕O9|æ)Kb]?f)NjH ~}cb,ܬ!sfr56gU&*1oW϶QL^+u!gzЮ)cRu{ק &):+0AI4o{} GqkӻuzצDQ&X7?l}_ B(҅*)tT+P;Dծ:͇jR cD(Jimyw$d:H\6}iƮ+kSBA h6o/gqQǯKEXĎNK[ܲkt#h8(鼺ZNOP4.b,3klap6xe.3|Yo-KJ)]AaA|*=!]lImŒBga?KOuX12FvM3RS9) Lm~~aKbK&)~o_-brjvFS1I,1\ 0ۿX5e?Kt#SN͌gi|V-_{2 7Pc|dS ELxvڒ3wȱGߵq? 9>PiW xWM2U"% 2FZЫn$ s܋> xǽKSVKk]4.y([sգpTv +򬲢\wh^ i+ > wgR;ou( M>m{BDίۋDfSk˿:K#dIkq[SMa4QԕW9T(wv&YגXDa{Β@cʑ]$ GHk{JyAxD1BlO1(\ Ȯv 2*r$~Dl ?|1l#Aqh K]L1EUWĒ#q&/p~:2oUÄ,hyȾ@|&c(ՂJ(GX:/`Qo145]CE晃f-+!9^LO}،71VzK !eSwC,"sSr?|w; 2#JFwYUdf[q+EU. s3eQ/~,=szV^z%E7NZi`!{C-3frIepI8pE[YƂ28 U d_j&78qg UmmXljMQ,˟ m*VdXdef~g;SD!=X5.LhA1Fق] H[xr7~{zڠ uF(."+~5D N/tz2ag Y\մEK+ w>;Ě%)ie%-QE92;3|jsbׂc-oWyz(yg܁K1$E[{|zu ?e3-6/%KayCliYNg%M|_۟_N9gk?"ӜLQ(Pad~g~}cI› \@5{SvPn%zI⵼(J%[+hƸ"kFP)JyITR.GuRqм^kn,? 7K7. =̩_] ЎPǾ4KGM'6X,sxR%CdQH[+S+4uqg29J]HI/ ˑ &i?9\Uc_~+OdK+MB*P`ףC )ذ7e?{_zL{{>/"oaj w$h4" ~ fbZP M=c#./BUti-Lb~5<5s0Z p'[a )+\A)!ޣNȨ~9ʡ7L D BdNf`}ֱ: ӳC.& 4$;!Ek @f.y~~" EDt}if筸=2u[g[.ƺkwGD׳؏^K4CۢGt2;Q!" OvBE4&pWDm :C&ۗHGMA)mhmdI EZ0 YO1\XcwhfI} Gt׾gj~8\TT**%h:'%drF wՙ2#h:I7|ns0/,6^1xzIL 0 `EHV/,ڎ~Wuec=G`J*~(g:p sDZ癜{24`2eyFFq&V\յodE!jtdơnY3RkE+",ސoGP ɴ5'LY[i$~ne7G/Ek%%v G0lW2D(2pcK5 HCo' ʩPs{M';+ WvG_3In^~ӗɁ% ":A/ޘiGeh%9΁;H)T+zvK۰.?(^$B@9,?PN†)-:Hr"}'_w3?USiD|F]I]W2 GdѮq$о3!{r:%8h)QyZA[e |%Pz0+gNmP]L[R_̨9f*kR/&Gf婷mgCIۺ8ܞ:H炅(+"THeJɟF2W!PDLRs! B&pA |u~RyӢ zmic67 {֒celEKq _CYPw|n7S-Q$`ƝƜ|~ӽn G*^ ᣰZn.@$DOU`Ƥiة ˤA*n\ŊzIj}TJ #Dz;z)nf\HBnYBE+V< *[S, Q , ߱@K]eEb=C 抜&8H#bujݸC|y ۠@gʛ*FT72r鶢fzLw=<9RQΘx"c9'u[ŝ)7]T"Ί Œ @`tXV]N*,Q&X *BF@>} V٩,k\ x#2nـap=,%x >o^i͙Е!Q>! 6uiQ) tTb,@ZcoQW5|@c[Mޝ[KjZ5{yCp`v^rAՇ1;^O-G*(Fʭ* q5XWT2a0Q*IfՒo:TA%WQ{g-./|mkw(roCiomخ8ѕPZPI^'jLɌά2;I =AeCUn@X&4<> §7g-|66$ RH*,wVi%B[ghst0[CX|d,l[2PKIt/J[iwٝ=]8޻"_R?q2O:=(=jGV^.<#7sOƴbJ|FP`B~FvTgN@|%Dž&!JLoJ0jz@S{]=kإq"+(^lؠdӄܭq6C1 j `ȡ>vϼ`cż/k&F `ϋ 8UQx7C \IWN7FX kυѐ{3n L=5F%=^!&;h?n qv bEv´>]ROXz!URL12Aՙ1v_ j/$UwCmODGx DO cfZ&=:pp&lvҨ8*Kg#GxKZ'SB'+ݎ&I>ރĩ{M!ǂŴ9Ȩ YNIAXy.jrX u2hj$h\,# ?0Vb?ێ#^}A'`\] >c:'d{`f8ae[[0@F vlm~ @|za&6ۙJ6\ ~[:zu߲ő `~lQ=mEZSjI9S,rm"y {\w\"/'YP .x]dHBAU-D:;28ƟE cF?5*]ݾnsr'0?^'f^pe-6ޟF@K#Wxoœg ջI>DsJ§A1ĤęAn pg>@ӍR qlPS-jUw (^R $͌؉f9!jcz6A6Co#`IFwӍ0 qC1=&0 -a!xGfXx}g/]A CbZv|s{o[ .||hGTTLҪgѱ&!EG ! T!6씂ޕcwz~;,@ޘۆ=;?|$芋{HD$3$JW+ĸ?>cKObn%ȝx؈H< PG V$w (k47*DOS?YBrH [ z-u$S{MP-%9?-ۂ^[P%v[iCl΂2FQS)ΙwT^p:3 BbW|Qx2n,z1YЂ2]|-|uݷ 0{©^F{{1Tn?-R{Pݰ۟Ax4m-ro5mҴtWεy9(A8|2vDI75"wXty N5"73W$wS@HG!j^P Kl]Wd5U Fȇȫv_s!ޗD)W _fVQ'EPwv1M]kseQÚ2[/Sz ԨKEþ(NJ6HFo˵ N7c5C[·SA@Ppf8fP9QYv(qө̻T1LK O rW,#1ij`-h=e"5Fn1x 3VY9ZW?aQzm%T?v did`ޭ-]'b{̂V%Dpϝvp)9V$p1[$7" Tp-@k1 4{m^)t&^ rlװơ+(>KCo ‰ۺԭi<-Cs#3v7A7q%1pKZKjן#[=к 7(OM1*{>, M\`2DP Cl8LfdQ"R52o]`yКW<{A5$ TIѓ7j: }ҏjt|, $pWh@WaJ=M{?<`|~cjW:`;_)G"PKDV?Uđ;-?Q:PNH<ӒI'A}Y^=@ɤ -2CEq)b "rat"m :1UgC專  Cx?ҝ$NT~`pG⟀Sv3梜 Kpˠw5X5i⪀%_yE$q@E9am83ɶ*LӘ8}5?P׻o/X+o1D` w DUSW`Of%(0*$gfoXO#W.!ՋjWɫwa6aYrrq0]5Zs\)Wtȫ4LfjRФ~^</%?ۊG?Y(윑\7t bZ$RM1m՝Ғ+P*p Tf Gr%cpK+a`ٛ]j8O.NS?jM]J.2c8ҲQ|idkY-פS0X=*U.%(oT3xl^Ќ8lQQ^WPE7|f\{սW_ q3.Hw xH}v7\Ch[Bfl dr-ն)UhS !(K\D*Jd% nG|0!\]e-2OѝR,4@^ "Oc2`$&ɴ/H ;g^G[6803$;["JUq0fr`_GZ~7_D&.O3X߳:*4>s$[fYiG81?v]m`~$=39C!}; z-l,+"n%;oKP0l 21=7{:@܅_qY9omCUA, j֎bF#"zr 74Y=puSu)=X#c@%<4JEmSؽ |v{D7'3)}#iG !-5)<*]zϋ嘴'ĨUgܫT;k="819~}>6G|;=VQFN|aB z\HP]ew:v֐Q弉Wn5xt-Np \Y{i|*27`+oT)!=7T5*gs;6acV6ƊJc-I]nq݊e1&g]'Hi;;4-uB9T=nɴڄ:Ey9'f+"/C?"wyWf=c:*QL |&xz_Yl"|k^#"IAd~3w=e@g>)fHˊ$Zy4Ex Fz^8-vVKMZY"@bz#mô`RjʏmqP ^Ǟ Xp^Zķ@`=rGb|Az跂e1*j{mY5,uB?,H‰MG|Gu1T)[v|y ѻ;x8ܿk؈[٢`ZaUXy.q5A` Hqע.UJE! ^[Ciz-\^`+8 T6cP8ǗpÆx\} mnuzM.Bora٧5pY&e]bO