nss-util-devel-3.79.0-11.el8 (>(  A)&&&((d+U]Yg4󊤫E CFY|Z ) ߜIf TV&P(h4bG$B@ %_8}D PVj0-mU-<3BS \<~}ibs 8ˌq_"PZ?}kx9,~d|.@aJ^މEPΌؠcn֛.#XB*I^)|)^3Bb-gj* Յ"76# njGJj4uBȰ`HaAW>tE dDDo\=ᭂ5c'48uMXEЬ6]6ڵR/4ߗ"Oi 3>A`)]Y2|JtÁ\1{D߻pɆ:_HDZ_ǜjv.]{:}xF.jXi'Vm;h|+ q&U;M֢$x.[U y o>`<?td  ]  ;AH)) >) ) 4)  ])  ),)))   (89:hhG`)H)I)XY\)])^Obdeflt )u)vhw)xp)y$(.pCnss-util-devel3.79.011.el8Development libraries for Network Security Services UtilitiesHeader and library files for doing development with Network Security Services.d x86-06.stream.rdu2.redhat.comǐCentOSCentOSMPLv2.0builder@centos.orgUnspecifiedhttp://www.mozilla.org/projects/security/pki/nss/linuxx86_64  #?|V}ZheZ} F 3*s )n,L[9IR `"HA큤d jd jbNYbNYbNYbNYbNYbNYbNYbNYbNYbNYbNYbNYbNYbNYd ebNYbNYbNYbNYbNYbNYbNYbNYbNYbNYbNYbNYbNYbNYbNYbNYbNYbNYbNYbNYbNYbNYbNYd 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-3.79.0-11.el8.src.rpmnss-util-develnss-util-devel(x86-64)pkgconfig(nss-util)@@ @     /bin/sh/usr/bin/pkg-confignspr-develnss-util(x86-64)pkgconfigpkgconfig(nspr)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)4.34.0-33.79.0-11.el84.34.03.0.4-14.6.0-14.0-15.2-14.14.3dxb@b@bγby@bba@blbbb@a@@`E`ݮ@` @`ٹ`̊`9@`Ȗ@`D`r_@_^@___@__"@_"@_"@_!d_@_ L_ _@^^@@^@^ۅ@^4]N@]]߶]e@]M@]µ]L]]^@\F@\Q\\\\\\@\I\I\U@\ `\l@[[[u[#@[[W[O+[M@[ZZw@Z|;Zo Zo Zg#Z ZZZ@Y+@Y{YY@Yn@YV@Y@YyYm@Yg`YJ_Y1S@XX@XX @XXYX@X@XX~@Xx@XoX>@X*X@WW@Wt@W~Wv[@WrfWoWm WbWQq@WPWJWDB@W4p@W@Wo@W@VV޾V޾V@VяVIVɦV@V@V=@V@V@VO @VHsVEV3[V UYU@UU@U@U>Ua@Ug@U[%UUU @T@Ts@TTء@T@TÉ@TT@T@T?@T:m@T"@S@S<@S@S@S @SSSSpShS(5@S@SRy@RJ@R@RR@RSRR@Rm@Rg@RD!R@RRR|Q@Q*@QQ@QKQ@QQW@Qw@Q]k@QNQ9Q7/Q#@QQ @P!@PՠP @PqP@P@PAPXPd@Pd@PPP@PP5@PPnP;a@P(@P H@O;O;O@OiO@O@O}O~OiOYOX@OOdO&@O!@@OO@O@N>@N>@NNܲ@N`NؽNN@NuN;@Np@Nf @NA!@N*NpM@MWMc@MM@M@MMfH@M^_@MZjMS@MQ0@MQ0@MQ0@MQ0@MK@MGMF@M6@M-MM@Ls@LOLLZ@L6LdL@L*@L@LA@LL@L4Lx@Lx@Li(@Lf@L_L_LT@L0L0L K @KsKsKKCKCKCK]KMKLd@KD{@K<@K5K4@K,@K+nK*@K K@K@K@KJݦ@J - 3.79.0-11Bob Relyea - 3.79.0-10Bob Relyea - 3.79.0-9Bob Relyea - 3.79.0-8Bob Relyea - 3.79.0-7Bob Relyea - 3.79.0-6Bob Relyea - 3.79.0-5Bob Relyea - 3.79.0-4Bob Relyea - 3.79.0-3Bob Relyea - 3.79.0-2Bob Relyea - 3.79.0-1Bob Relyea - 3.67.0-7Bob Relyea - 3.67.0-6Bob Relyea - 3.67.0-5Bob Relyea - 3.67.0-4Bob Relyea - 3.67.0-3Bob Relyea - 3.67.0-2Bob Relyea - 3.67.0-1Bob Relyea - 3.66.0-2Bob Relyea - 3.66.0-1.1Bob Relyea - 3.66.0-1Bob Relyea - 3.53.1-17Bob Relyea - 3.53.1-16Bob Relyea - 3.53.1-15Bob Relyea - 3.53.1-14Bob Relyea - 3.53.1-13Bob Relyea - 3.53.1-12Bob Relyea - 3.53.1-11Bob Relyea - 3.53.1-10Daiki Ueno - 3.53.1-9Daiki Ueno - 3.53.1-8Bob Relyea - 3.53.1-7Daiki Ueno - 3.53.1-6Bob Relyea - 3.53.1-5Bob Relyea - 3.53.1-4Daiki Ueno - 3.53.1-3Daiki Ueno - 3.53.1-2Daiki Ueno - 3.53.1-1Daiki Ueno - 3.53.0-1Bob Relyea - 3.44.0-15Bob Relyea - 3.44.0-14Bob Relyea - 3.44.0-13Daiki Ueno - 3.44.0-12Bob Relyea - 3.44.0-11Daiki Ueno - 3.44.0-10Bob Relyea - 3.44.0-9Bob Relyea - 3.44.0-8Daiki Ueno - 3.44.0-7Daiki Ueno - 3.44.0-6Daiki Ueno - 3.44.0-5Bob Relyea - 3.44.0-4.1Bob Relyea - 3.44.0-4Daiki Ueno - 3.44.0-3Bob Relyea - 3.44.0-2Daiki Ueno - 3.44.0-1Daiki Ueno - 3.41.0-5Bob Relyea - 3.41.0-4Daiki Ueno - 3.41.0-3Daiki Ueno - 3.41.0-2Daiki Ueno - 3.41.0-1Daiki Ueno - 3.39.0-1.5Bob Relyea - 3.39.0-1.4Daiki Ueno - 3.39.0-1.3Daiki Ueno - 3.39.0-1.2Daiki Ueno - 3.39.0-1.1Daiki Ueno - 3.39.0-1.0Daiki Ueno - 3.38.0-1.2Daiki Ueno - 3.38.0-1.1Daiki Ueno - 3.38.0-1.0Kai Engert - 3.36.1-1.2Daiki Ueno - 3.36.1-1.1Daiki Ueno - 3.36.1-1.0Daiki Ueno - 3.36.0-1.0Fedora Release Engineering - 3.35.0-5Kai Engert - 3.35.0-4Kai Engert - 3.35.0-3Daiki Ueno - 3.35.0-2Daiki Ueno - 3.34.0-2Daiki Ueno - 3.33.0-6Kai Engert - 3.33.0-5Kai Engert - 3.33.0-4Kai Engert - 3.33.0-3Daiki Ueno - 3.33.0-2Daiki Ueno - 3.32.1-2Daiki Ueno - 3.32.0-4Kai Engert - 3.32.0-3Daiki Ueno - 3.32.0-2Fedora Release Engineering - 3.31.0-6Fedora Release Engineering - 3.31.0-5Daiki Ueno - 3.31.0-4Daiki Ueno - 3.31.0-3Daiki Ueno - 3.31.0-2Daiki Ueno - 3.30.2-3Daiki Ueno - 3.30.2-2Kai Engert - 3.30.0-3Daiki Ueno - 3.30.0-2Kai Engert - 3.29.1-3Daiki Ueno - 3.29.1-2Daiki Ueno - 3.29.0-3Daiki Ueno - 3.29.0-2Daiki Ueno - 3.28.1-6Daiki Ueno - 3.28.1-5Daiki Ueno - 3.28.1-4Daiki Ueno - 3.28.1-3Daiki Ueno - 3.28.1-2Daiki Ueno - 3.27.2-2Daiki Ueno - 3.27.0-5Kai Engert - 3.27.0-4Daiki Ueno - 3.27.0-3Daiki Ueno - 3.27.0-2Daiki Ueno - 3.26.0-2Elio Maldonado - 3.25.0-6Elio Maldonado - 3.25.0-5Elio Maldonado - 3.25.0-4Elio Maldonado - 3.25.0-3Elio Maldonado - 3.25.0-2Kamil Dudka - 3.24.0-3Elio Maldonado - 3.24.0-2.3Elio Maldonado - 3.24.0-2.2Elio Maldonado - 3.24.0-2.1Elio Maldonado - 3.24.0-2.0Elio Maldonado - 3.23.0-9Elio Maldonado - 3.23.0-8Elio Maldonado - 3.23.0-7Elio Maldonado - 3.23.0-6Elio Maldonado - 3.23.0-5Elio Maldonado - 3.23.0-4Elio Maldonado - 3.23.0-3Elio Maldonado - 3.23.0-2Elio Maldonado - 3.22.2-2Elio Maldonado - 3.22.1-3Elio Maldonado - 3.22.1-1Elio Maldonado - 3.22.0-3Elio Maldonado - 3.22.0-2Fedora Release Engineering - 3.21.0-7Elio Maldonado - 3.21.0-6Michal Toman - 3.21.0-5Elio Maldonado - 3.21.0-4Elio Maldonado - 3.21.0-3Elio Maldonado Batiz - 3.21.1-2Elio Maldonado - 3.20.1-2Elio Maldonado - 3.20.0-6Elio Maldonado - 3.20.0-5Elio Maldonado - 3.20.0-4Elio Maldonado - 3.20.0-3Elio Maldonado - 3.20.0-2Elio Maldonado - 3.19.3-2Elio Maldonado - 3.19.2-3Kai Engert - 3.19.2-2Kai Engert - 3.19.1-2Kai Engert - 3.19.0-2Kai Engert - 3.18.0-2Elio Maldonado - 3.18.0-1Elio Maldonado - 3.17.4-5Till Maas - 3.17.4-4Elio Maldonado - 3.17.4-3Elio Maldonado - 3.17.4-2Elio Maldonado - 3.17.4-1Ville Skyttä - 3.17.3-4Elio Maldonado - 3.17.3-3Elio Maldonado - 3.17.3-2Elio Maldonado - 3.17.3-1Elio Maldonado - 3.17.2-2Elio Maldonado - 3.17.2-1Kai Engert - 3.17.1-1Kevin Fenzi - 3.17.0-2Elio Maldonado - 3.17.0-1Fedora Release Engineering - 3.16.2-4Elio Maldonado - 3.16.2-3Tom Callaway - 3.16.2-2Elio Maldonado - 3.16.2-1Elio Maldonado - 3.16.1-4Fedora Release Engineering - 3.16.1-3Jaromir Capik - 3.16.1-2Elio Maldonado - 3.16.1-1Elio Maldonado - 3.16.0-1Elio Maldonado - 3.15.5-2Elio Maldonado - 3.15.5-1Elio Maldonado - 3.15.4-5Elio Maldonado - 3.15.4-4Elio Maldonado - 3.15.4-3Peter Robinson 3.15.4-2Elio Maldonado - 3.15.4-1Elio Maldonado - 3.15.3.1-1Elio Maldonado - 3.15.3-2Elio Maldonado - 3.15.3-1Elio Maldonado - 3.15.2-3Elio Maldonado - 3.15.2-2Elio Maldonado - 3.15.2-1Elio Maldonado - 3.15.1-7Elio Maldonado - 3.15.1-6Elio Maldonado - 3.15.1-5Elio Maldonado - 3.15.1-4Elio Maldonado - 3.15.1-3Elio Maldonado - 3.15.1-2Elio Maldonado - 3.15.1-1Elio Maldonado - 3.15-5emaldona - 3.15-4emaldona - 3.15-3Elio Maldonado - 3.15-2Elio Maldonado - 3.15-1Elio Maldonado - 3.15-0.1.beta1.2Elio Maldonado - 3.15-0.1.beta1.1Kai Engert - 3.14.3-12Kai Engert - 3.14.3-10Kai Engert - 3.14.3-9Elio Maldonado - 3.14.3-1Elio Maldonado - 3.14.2-2Elio Maldonado - 3.14.2-1Kai Engert - 3.14.1-3Elio Maldonado - 3.14.1-2Elio Maldonado - 3.14.1-1Elio Maldonado - 3.14-12Elio Maldonado - 3.14-11Elio Maldonado - 3.14-10Elio Maldonado - 3.14-9Elio Maldonado - 3.14-8Elio Maldonado - 3.14-7Elio Maldonado - 3.14-6Elio Maldonado - 3.14-5Elio Maldonado - 3.14-4Elio Maldonado - 3.14-3Elio Maldonado - 3.14-2Elio Maldonado - 3.14-1Elio Maldonado - 3.14-0.1.rc.1Kai Engert - 3.13.6-1Elio Maldonado - 3.13.5-8Elio Maldonado - 3.13.5-7Fedora Release Engineering - 3.13.5-6Elio Maldonado - 3.13.5-5Elio Maldonado - 3.13.5-4Elio Maldonado - 3.13.5-3Elio Maldonado - 3.13.5-2Elio Maldonado - 3.13.5-1Elio Maldonado - 3.13.4-3Elio Maldonado - 3.13.4-2Elio Maldonado - 3.13.4-1Elio Maldonado - 3.13.3-4Elio Maldonado - 3.13.3-3Elio Maldonado - 3.13.3-2Elio Maldonado - 3.13.3-1Tom Callaway - 3.13.1-13Elio Maldonado - 3.13.1-12Fedora Release Engineering - 3.13.1-11Elio Maldonado - 3.13.1-11Elio Maldonado - 3.13.1-10elio maldonado - 3.13.1-9Elio Maldonado - 3.13.1-8Elio Maldonado - 3.13.1-7Elio Maldonado - 3.13.1-6Elio Maldonado - 3.13.1-5Elio Maldonado Batiz - 3.13.1-4Elio Maldonado - 3.13.1-2Elio Maldonado - 3.13.1-1Elio Maldonado - 3.13-1Elio Maldonado - 3.13-0.1.rc0.1Elio Maldonado - 3.12.11-3Kai Engert - 3.12.11-2Elio Maldonado - 3.12.11-1Elio Maldonado - 3.12.10-6Michael Schwendt - 3.12.10-5Elio Maldonado - 3.12.10-4Dennis Gilmore - 3.12.10-3Elio Maldonado - 3.12.10-2Elio Maldonado - 3.12.10-1Elio Maldonado - 3.12.10-0.1.beta1Elio Maldonado - 3.12.9-15Elio Maldonado - 3.12.9-14Elio Maldonado - 3.12.9-13Elio Maldonado - 3.12.9-12Elio Maldonado - 3.12.9-11Elio Maldonado - 3.12.9-10Elio Maldonado - 3.12.9-9Fedora Release Engineering - 3.12.9-8Elio Maldonado - 3.12.9-7Christopher Aillon - 3.12.9-6Elio Maldonado - 3.12.9-5Elio Maldonado - 3.12.9-4Elio Maldonado - 3.12.9-3Elio Maldonado - 3.12.9-2Elio Maldonado - 3.12.9-1Elio Maldonado - 3.12.9-0.1.beta2Elio Maldonado - 3.12.8.99.2-1Elio Maldonado - 3.12.8.99.1-1Elio Maldonado - 3.12.8-9Elio Maldonado - 3.12.8-8Elio Maldonado - 3.12.8-7Elio Maldonado - 3.12.8-6Elio Maldonado - 3.12.8-5Elio Maldonado - 3.12.8-4Elio Maldonado - 3.12.8-3Elio Maldonado - 3.12.8-2Elio Maldonado - 3.12.8-1Elio Maldonado - 3.12.7.99.4-1Elio Maldonado - 3.12.7.99.3-2Elio Maldonado - 3.12.7.99.3-1Elio Maldonado - 3.12.7-3Elio Maldonado - 3.12.7-2Elio Maldonado - 3.12.7-1Elio Maldonado - 3.12.6-12Elio Maldonado - 3.12.6-11Elio Maldonado - 3.12.6-10Elio Maldonado - 3.12.6-9Dennis Gilmore - 3.12.6-8Elio Maldonado - 3.12.6-7Elio Maldonado - 3.12.6-6Elio Maldonado - 3.12.6-5Elio Maldonado - 3.12.6-4Elio Maldonado - 3.12.6-3Elio Maldonado - 3.12.6-2Elio Maldonado - 3.12.6-1.2Elio Maldonado - 3.12.6-1.1Elio Maldonado - 3.12.6-1Elio Maldonado - 3.12.5-8Elio Maldonado - 3.12.5-5Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1.13.2Elio Maldonado - 3.12.5-1.13.1Elio Maldonado - 3.12.5-1.13Elio Maldonado - 3.12.5-1.11Elio maldonado - 3.12.5-1.9Elio Maldonado - 3.12.5-2.7Elio Maldonado - 3.12.5-1.6Elio Maldonado - 3.12.5-1.5Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1Elio Maldonado - 3.12.4-14.1Elio Maldonado - 3.12.4-13.1Elio Maldonado - 3.12.4-13Elio Maldonado - 3.12.4-12Elio Maldonado - 3.12.4-11Elio Maldonado - 3.12.4-10Elio Maldonado - 3.12.4-8Elio Maldonado - 3.12.4-6Elio Maldonado - 3.12.4-5Elio Maldonado - 3.12.4-4Elio Maldonado - 3.12.4-3Elio Maldonado - 3.12.4-2Elio Maldonado - 3.12.4-1Elio Maldonado - 3.12.3.99.3-30Elio Maldonado - 3.12.3.99.3-29Elio Maldonado - 3.12.3.99.3-28Elio Maldonado - 3.12.3.99.3-27Elio Maldonado - 3.12.3.99.3-26Elio Maldonado - 3.12.3.99.3-25Warren Togami - 3.12.3.99.3-24Elio Maldonado - 3.12.3.99.3-23Elio Maldonado - 3.12.3.99.3-22Elio Maldonado - 3.12.3.99.3-21Elio Maldonado - 3.12.3.99.3-20Elio Maldonado - 3.12.3.99.3-19Elio Maldonado - 3.12.3.99.3-18Elio Maldonado - 3.12.3.99.3-16Dennis Gilmore - 3.12.3.99.3-15Dennis Gilmore - 3.12.3.99.3-14Dennis Gilmore - 3.12.3.99.3-13Dennis Gilmore - 3.12.3.99.3-12Elio Maldonado+emaldona@redhat.com - 3.12.3.99.3-11Elio Maldonado - 3.12.3.99.3-10Dennis Gilmore - 3.12.3.99.3-9Elio Maldonado - 3.12.3.99.3-7.1Fedora Release Engineering - 3.12.3.99.3-7Elio Maldonado - 3.12.3.99.3-6Elio Maldonado - 3.12.3.99.3-5Elio Maldonado - 3.12.3.99.3-4Kai Engert - 3.12.3.99.3-3Kai Engert - 3.12.3.99.3-2Kai Engert - 3.12.3-7Kai Engert - 3.12.3-4Kai Engert - 3.12.3-3Kai Engert - 3.12.3-2Kai Engert - 3.12.2.99.3-7Kai Engert - 3.12.2.99.3-6Kai Engert - 3.12.2.99.3-5Kai Engert - 3.12.2.99.3-4Kai Engert - 3.12.2.99.3-3Kai Engert - 3.12.2.99.3-2Kai Engert - 3.12.2.99.3-1Fedora Release Engineering - 3.12.2.0-4Kai Engert - 3.12.2.0-3Dennis Gilmore - 3.12.1.1-4Kai Engert - 3.12.1.1-3Kai Engert - 3.12.1.1-2Kai Engert - 3.12.1.0-2Kai Engert - 3.12.0.3-7Kai Engert - 3.12.0.3-6Kai Engert - 3.12.0.3-3Kai Engert - 3.12.0.3-2Kai Engert - 3.12.0.1-1Jesse Keating - 3.11.99.5-2Kai Engert - 3.11.99.5-1Kai Engert - 3.11.99.4-1Kai Engert - 3.11.99.3-6Kai Engert - 3.11.99.3-5Kai Engert - 3.11.99.3-4Kai Engert - 3.11.99.3-3Kai Engert - 3.11.99.3-2Kai Engert - 3.11.99.3-1Kai Engert - 3.11.99.2b-3Kai Engert - 3.11.99.2b-2Kai Engert - 3.11.99.2-2Kai Engert - 3.11.99.2-1Kai Engert - 3.11.7-10Rob Crittenden - 3.11.7-9Kai Engert - 3.11.7-8Bob Relyea - 3.11.7-7Kai Engert - 3.11.7-6Kai Engert - 3.11.7-5Kai Engert - 3.11.7-4Kai Engert - 3.11.7-3Kai Engert - 3.11.7-2Kai Engert - 3.11.5-2Kai Engert - 3.11.5-1Bob Relyea - 3.11.4-4Kai Engert - 3.11.4-1Kai Engert - 3.11.3-2Kai Engert - 3.11.3-1Kai Engert - 3.11.2-2Jesse Keating - 3.11.2-1.1Kai Engert - 3.11.2-1Kai Engert - 3.11.1-2Kai Engert - 3.11.1-1Kai Engert - 3.11-4Jesse Keating - 3.11-3.2Jesse Keating - 3.11-3.1Ray Strode 3.11-3Christopher Aillon 3.11-2Christopher Aillon 3.11-1Christopher Aillon 3.11-0.cvs.2Christopher Aillon 3.11-0.cvsKai Engert Rob Crittenden 3.10-1- Fix CVE-2023-0767- Fix QA found failures: - remove extra '+' from sslpolicy.txt file causing test error values - only use GRND_RANDOM if the kernel is in FIPS mode.- FIPS 140-3 changes- Update fips default for pk12util to AES rather than TDES - Fix bug in pkcs12 files with null passwords- Better fix for test regressions- fix nss.spec so it works in a rhel-8.1.0 buildroot- FIPS 140-3 changes - Reject Small RSA keys, 1024 bit keys are marked as FIP OK when verifying, reject signature keys by policy - Allow applications to retrigger selftests on demand.- Fix pkgconfig output- NSR Coverity fix changed selfserv from passive to active, change it back- Fix regressions found in test suites.- Rebase to NSS 3.79 - Set FIPS Module ID - skip attribute verification on attributes with default values - don't export trust objects if they are default trust objects from dbm - add dbtool to nss-tools- Fix CVE 2021 43527- Fix ssl alert issue- Fix issue with reading databases that were updated using unpatched versions of nss- Better fix for the sdb timeout. The issue wasn't a race, it was the sqlite timeout waiting to begin a transaction under heavy thread usage.- Fix sdb race condition- Fix coverity issues- Rebase to NSS 3.67- Restore old pkcs12 defaults.- build nss for older nspr so we can pass gating with the new nspr in the build root- Rebase to NSS 3.66- Fix various corner cases with ike v1 app b support.- Fix the following CVE - CVE-2020-12403 chacha-poly issues - CVE-2020-12400 constant time ECC. - CVE-2020-6829 constant time ECC.- Revert some policy changes the generate ABI runtime issues.- Add support for enable/disable in policy. Now if your policy file has disallow=x enable=y it will act just like our other libraries.- Add OAEP interface so applications can wrap keys with RSA-OAEP rather than RSA-PKCS-1.- fips need to reject small primes even if they are approved - code to autodetect whether or not to use the cache needs to do so in a way that doesn't mess with filesystem negative file caching. - add kdf selftests- Fix issue with upgradedb where upgradedb expects standard to generate dbm databases, not sql databases (default in RHEL8)- Disable dh timing test because it's unreliable on s390- Explicitly enable upgradedb/sharedb test cycles- Disable Delegated Credentials for TLS- Fix attribute decryption issue where the private key components integrity check on private attributes where not being checked.- Update nss-rsa-pkcs1-sigalgs.patch to the upstream version- Include required checks for dh and ecdh key generation in FIPS mode.- Add better checks for dh derive operations in FIPS mode.- Disable NSS_HASH_ALG_SUPPORT as well for MD5 (#1849938) - Adjust for update-crypto-policies packaging change (#1848649) - Fix compilation with -Werror=strict-prototypes (#1843417)- Fix regression in MD5 disablement (#1849938) - Include rsa_pkcs1_* in signature_algorithms extension (#1847945)- Update to NSS 3.53.1- Update to NSS 3.53- Fix swapped CMAC PKCS #11 values. - Fix data alignment crash in CMAC.- Fix coverify scan issue- Fix endian problem in SP-800 108 code.- Install cmac.h required by blapi.h (#1764513) - Fix out-of-bounds write in NSC_EncryptUpdate (#1775913)- Add SP-800 108 Generalized kdf- Check policy against hash algorithms used for ServerKeyExchange (#1730039)- Add CMAC- CKM_NSS_IKE1_APP_B_PRF_DERIVE was missing from the mechanism list, preventing PK11_Derive*() from using it. Add gtests for the PK11_Derive interface for all the CKM_NSS_IKE*_DERIVE mechanism.- Backport fixes from 3.44.1- Add continuous RNG test required by FIPS - fipstest: use CKM_TLS12_MASTER_KEY_DERIVE instead of vendor specific mechanism- Rebuild with the correct build target- rebuild to try to retrigger CI tests- Fix certutil man page - Fix extracting a public key from a private key for dh, ec, and dsa- Disable TLS 1.3 under FIPS mode - Disable RSASSA-PKCS1-v1_5 in TLS 1.3 - Fix post-handshake auth transcript calculation if SSL_ENABLE_SESSION_TICKETS is set - Revert the change to use XDG basedirs (mozilla#818686)- Add ike mechanisms in softokn - Add FIPS checks in softoken- Update to NSS 3.44 - Define NSS_SEED_ONLY_DEV_URANDOM=1 to exclusively use getentropy - Use %autosetup - Clean up manual pages generation - Clean up %check - Remove prelink dependency, which is not available in RHEL-8 - Remove upstreamed patches- Update manual pages to reflect recent changes in commands- Make sure corresponding public keys are created when importing private keys.- Fix the last change - Add --no-reload option to update-crypto-policies to avoid unnecessary restart of daemons- Restore LDFLAGS injection when linking DSO- Update to NSS 3.41 - Consolidate nss-util, nss-softokn, and nss into a single source package- Fix the last commit- Support for IKE/IPsec typical PKIX usage so libreswan can use nss without rejecting certs based on EKU- Backport upstream fixes for rhbz#1649026, rhbz#1608895, rhbz#1644854 - Document PKCS #11 URI - Add warning when adding module with modutil while p11-kit is enabled- Update nss-dsa.patch to not advertise DSA signature algorithm - Update PayPal test certs for testing- Backport "DSA" keyword in crypto-policies- Update to NSS 3.39- Fix LDFLAGS injection when linking DSO- Install crypto-policies configuration file for https://fedoraproject.org/wiki/Changes/NSSLoadP11KitModules - Port enable-fips-when-system-is-in-fips-mode.patch from RHEL-7 - Use %ldconfig_scriptlets - Remove needless use of %defattr, by Jason Tibbitts- Update to NSS 3.38- Backport upstream addition of nss-policy-check utility, rhbz#1428746, includes required fixes for mozbz#1296263 and mozbz#1474875- Switch the default DB type to SQL - Enable SSLKEYLOGFILE- Update to NSS 3.36.1 - Remove nss-3.14.0.0-disble-ocsp-test.patch - Fix partial injection of LDFLAGS - Remove NSS_NO_PKCS11_BYPASS, which is no-op in upstream- Update to NSS 3.36.0 - Add gcc-c++ to BuildRequires (C++ is needed for gtests) - Make test failure detection robuster- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild- Fix a compiler error with gcc 8, mozbz#1434070 - Set NSS_FORCE_FIPS=1 at %build time, and remove from %check.- Stop pulling in nss-pem automatically, packages that need it should depend on it, rhbz#1539401- Update to NSS 3.35.0- Update to NSS 3.34.0- Make sure 32bit nss-pem always be installed with 32bit nss in multlib environment, patch by Kamil Dudka- Fix test script- Update tests to be compatible with default NSS DB changed to sql (the default was changed in the nss-util package).- rhbz#1505487, backport upstream fixes required for rhbz#1496560- Update to NSS 3.33.0- Update to NSS 3.32.1- Update iquote.patch to really prefer in-tree headers over system headers- NSS libnssckbi.so has already been obsoleted by p11-kit-trust, rhbz#1484449- Update to NSS 3.32.0- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild- Backport mozbz#1381784 to avoid deadlock in dnf- Move signtool to %_libdir/nss/unsupported-tools, for: https://fedoraproject.org/wiki/Changes/NSSSigntoolDeprecation- Rebase to NSS 3.31.0- Enable gtests- Rebase to NSS 3.30.2 - Enable TLS 1.3- Backport upstream mozbz#1328318 to support crypto policy FUTURE.- Rebase to NSS 3.30.0 - Remove upstreamed patches- Backport mozbz#1334976 and mozbz#1336487.- Rebase to NSS 3.29.1- Disable TLS 1.3, following the upstream change- Rebase to NSS 3.29.0 - Suppress -Werror=int-in-bool-context warnings with GCC7- Work around pkgconfig -> pkgconf transition issue (releng#6597)- Disable TLS 1.3 - Add "Conflicts" with packages using older Mozilla codebase, which is not compatible with NSS 3.28.1 - Remove NSS_ECC_MORE_THAN_SUITE_B setting, as it was removed in upstream- Add "Conflicts" with older firefox packages which don't have support for smaller curves added in NSS 3.28.1- Fix incorrect version specification in %nss_{util,softokn}_version, pointed by Elio Maldonado- Rebase to NSS 3.28.1 - Remove upstreamed patch for disabling RSA-PSS - Re-enable TLS 1.3- Rebase to NSS 3.27.2- Revert the previous fix for RSA-PSS and use the upstream fix instead- Disable the use of RSA-PSS with SSL/TLS. #1383809- Disable TLS 1.3 for now, to avoid reported regression with TLS to version intolerant servers- Rebase to NSS 3.27.0 - Remove upstreamed ectest patch- Rebase to NSS 3.26.0 - Update check policy file patch to better match what was upstreamed - Remove conditionally ignore system policy patch as it has been upstreamed - Skip ectest as well as ecperf, which are built as part of nss-softokn - Fix rpmlint error regarding %define usage- Incorporate some changes requested in upstream review and commited upstream (#1157720)- Add support for conditionally ignoring the system policy (#1157720) - Remove unneeded test scripts patches in order to run more tests - Remove unneeded test data modifications from the spec file- Remove obsolete patch and spurious lines from the spec file (#1347336)- Cleanup spec file and patches and add references to bugs filed upstream- Rebase to nss 3.25- decouple nss-pem from the nss package (#1347336)- Apply the patch that was last introduced - Renumber and reorder some of the patches - Resolves: Bug 1342158- Allow application requests to disable SSL v2 to succeed - Resolves: Bug 1342158 - nss-3.24 does no longer support ssl V2, installation of IPA fails because nss init fails- Rebase to NSS 3.24.0 - Restore setting the policy file location - Make ssl tests scripts aware of policy - Ajust tests data expected result for policy- Bootstrap build to rebase to NSS 3.24.0 - Temporarily not setting the policy file location- Change POLICY_FILE to "nss.config"- Change POLICY_FILE to "nss.cfg"- Change the POLICY_PATH to "/etc/crypto-policies/back-ends" - Regenerate the check policy patch with hg to provide more context- Fix typo in the last %changelog entry- Load policy file if /etc/pki/nssdb/policy.cfg exists - Resolves: Bug 1157720 - NSS should enforce the system-wide crypto policy- Remove unused patch rendered obsolete by pem update- Update pem sources to latest from nss-pem upstream - Resolves: Bug 1300652 - [PEM] insufficient input validity checking while loading a private key- Rebase to NSS 3.23- Rebase to NSS 3.22.2- Fix ssl2/exp test disabling to run all the required tests- Rebase to NSS 3.22.1- Update .gitignore as part of updating to nss 3.22- Update to NSS 3.22- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild- Resolves: Bug 1299040 - Enable ssl_gtests upstream test suite - Remove 'export NSS_DISABLE_GTESTS=1' go ssl_gtests are built - Use %define when specifying the nss_tests to run- Add 64-bit MIPS to multilib arches- Update %{nss_util_version} and %{nss_softokn_version} to 3.21.0 - Resolves: Bug 1284095 - all https fails with sec_error_no_token- Add references to bugs filed upstream- Update to NSS 3.21 - Package listsuites as part of the unsupported tools set - Resolves: Bug 1279912 - nss-3.21 is available - Resolves: Bug 1258425 - Use __isa_bits macro instead of list of 64-bit - Resolves: Bug 1280032 - Package listsuites as part of the nss unsupported tools set- Update to NSS 3.20.1- Enable ECC cipher-suites by default [hrbz#1185708] - Split the enabling patch in two for easier maintenance - Remove unused patches rendered obsolete by prior rebase- Enable ECC cipher-suites by default [hrbz#1185708] - Implement corrections requested in code review- Enable ECC cipher-suites by default [hrbz#1185708]- Fix patches that disable ssl2 and export cipher suites support - Fix libssl patch that disable ssl2 & export cipher suites to not disable RSA_WITH_NULL ciphers - Fix syntax errors in patch to skip ssl2 and export cipher suite tests - Turn ssl2 off by default in the tstclnt tool - Disable ssl stress tests containing TLS RC4 128 with MD5- Update to NSS 3.20- Update to NSS 3.19.3- Create on the fly versions of sslcov.txt and sslstress.txt that disable tests for SSL2 and EXPORT ciphers- Update to NSS 3.19.2- Update to NSS 3.19.1- Update to NSS 3.19- Replace expired test certificates, upstream bug 1151037- Update to nss-3.18.0 - Resolves: Bug 1203689 - nss-3.18 is available- Disable export suites and SSL2 support at build time - Fix syntax errors in various shell scripts - Resolves: Bug 1189952 - Disable SSL2 and the export cipher suites- Rebuilt for Fedora 23 Change https://fedoraproject.org/wiki/Changes/Harden_all_packages_with_position-independent_code- Commented out the export NSS_NO_SSL2=1 line to not disable ssl2 - Backing out from disabling ssl2 until the patches are fixed- Disable SSL2 support at build time - Fix syntax errors in various shell scripts - Resolves: Bug 1189952 - Disable SSL2 and the export cipher suites- Update to nss-3.17.4- Own the %{_datadir}/doc/nss-tools dir- Resolves: Bug 987189 - nss-tools RPM conflicts with perl-PAR-Packer - Install pp man page in %{_datadir}/doc/nss-tools/pp.1 - Use %{_mandir} instead of /usr/share/man as more generic- Install pp man page in alternative location - Resolves: Bug 987189 - nss-tools RPM conflicts with perl-PAR-Packer- Update to nss-3.17.3 - Resolves: Bug 1171012 - nss-3.17.3 is available- Resolves: Bug 994599 - Enable TLS 1.2 by default- Update to nss-3.17.2- Update to nss-3.17.1 - Add a mechanism to skip test suite execution during development work- Rebuild for rpm bug 1131960- Update to nss-3.17.0- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild- Replace expired PayPal test cert with current one to prevent build failure- fix license handling- Update to nss-3.16.2- Remove unwanted source directories at end of %prep so it truly does it - Skip the cipher suite already run as part of the nss-softokn build- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild- Replacing ppc64 and ppc64le with the power64 macro - Related: Bug 1052545 - Trivial change for ppc64le in nss spec- Update to nss-3.16.1 - Update the iquote patch on account of the rebase - Improve error detection in the %section - Resolves: Bug 1094702 - nss-3.16.1 is available- Update to nss-3.16.0 - Cleanup the copying of the tools man pages - Update the iquote.patch on account of the rebase- Restore requiring nss_softokn_version >= 3.15.5- Update to nss-3.15.5 - Temporarily requiring only nss_softokn_version >= 3.15.4 - Fix location of sharedb files and their manpages - Move cert9.db, key4.db, and pkcs11.txt to the main package - Move nss-sysinit manpages tar archives to the main package - Resolves: Bug 1066877 - nss-3.15.5 is available - Resolves: Bug 1067091 - Move sharedb files to the %files section- Revert previous change that moved some sysinit manpages - Restore nss-sysinit manpages tar archives to %files sysinit - Removing spurious wildcard entry was the only change needed- Add explanatory comments for iquote.patch as was done on f20- Update pem sources to latest from nss-pem upstream - Pick up pem fixes verified on RHEL and applied upstream - Fix a problem where same files in two rpms created rpm conflict - Move some nss-sysinit manpages tar archives to the %files the - All man pages are listed by name so there shouldn't be wildcard inclusion - Add support for ppc64le, Resolves: Bug 1052545- ARM tests pass so remove ARM conditional- Update to nss-3.15.4 (hg tag NSS_3_15_4_RTM) - Resolves: Bug 1049229 - nss-3.15.4 is available - Update pem sources to latest from the interim upstream for pem - Remove no longer needed patches - Update pem/rsawrapr.c patch on account of upstream changes to freebl/softoken - Update iquote.patch on account of upstream changes- Update to nss-3.15.3.1 (hg tag NSS_3_15_3_1_RTM) - Resolves: Bug 1040282 - nss: Mis-issued ANSSI/DCSSI certificate (MFSA 2013-117) - Resolves: Bug 1040192 - nss-3.15.3.1 is available- Bump the release tag- Update to NSS_3_15_3_RTM - Resolves: Bug 1031897 - CVE-2013-5605 CVE-2013-5606 CVE-2013-1741 nss: various flaws - Fix option descriptions for setup-nsssysinit manpage - Fix man page of nss-sysinit wrong path and other flaws - Document email option for certutil manpage - Remove unused patches- Revert one change from last commit to preserve full nss pluggable ecc supprt [1019245]- Use the full sources from upstream - Bug 1019245 - ECDHE in openssl available -> NSS needs too for Firefox/Thunderbird- Update to NSS_3_15_2_RTM - Update iquote.patch on account of modified prototype on cert.h installed by nss-devel- Update pem sources to pick up a patch applied upstream which a faulty merge had missed - The pem module should not require unique file basenames- Update pem sources to the latest from interim upstream- Resolves: rhbz#996639 - Minor bugs in nss man pages - Fix some typos and improve description and see also sections- Cleanup spec file to address most rpmlint errors and warnings - Using double percent symbols to fix macro-in-comment warnings - Ignore unversioned-explicit-provides nss-system-init per spec comments - Ignore invalid-url Source0 as it comes from the git lookaside cache - Ignore invalid-url Source12 as it comes from the git lookaside cache- Add man page for pkcs11.txt configuration file and cert and key databases - Resolves: rhbz#985114 - Provide man pages for the nss configuration files- Fix errors in the man pages - Resolves: rhbz#984106 - Add missing option descriptions to man pages for {cert|cms|crl}util - Resolves: rhbz#982856 - Fix path to script in man page for nss-sysinit- Update to NSS_3_15_1_RTM - Enable the iquote.patch to access newly introduced types- Install man pages for nss-tools and the nss-config and setup-nsssysinit scripts - Resolves: rhbz#606020 - nss security tools lack man pages- Build nss without softoken or util sources in the tree - Resolves: rhbz#689918- Update ssl-cbc-random-iv-by-default.patch- Fix generation of NSS_VMAJOR, NSS_VMINOR, and NSS_VPATCH for nss-config- Update to NSS_3_15_RTM- Fix incorrect path that hid failed test from view - Add ocsp to the test suites to run but ... - Temporarily disable the ocsp stapling tests - Do not treat failed attempts at ssl pkcs11 bypass as fatal errors- Update to NSS_3_15_BETA1 - Update spec file, patches, and helper scripts on account of a shallower source tree- Update expired test certificates (fixed in upstream bug 852781)- Fix incorrect post/postun scripts. Fix broken links in posttrans.- Configure libnssckbi.so to use the alternatives system in order to prepare for a drop in replacement.- Update to NSS_3_14_3_RTM - sync up pem rsawrapr.c with softoken upstream changes for nss-3.14.3 - Resolves: rhbz#908257 - CVE-2013-1620 nss: TLS CBC padding timing attack - Resolves: rhbz#896651 - PEM module trashes private keys if login fails - Resolves: rhbz#909775 - specfile support for AArch64 - Resolves: rhbz#910584 - certutil -a does not produce ASCII output- Allow building nss against older system sqlite- Update to NSS_3_14_2_RTM- Update to NSS_3_14_1_WITH_CKBI_1_93_RTM- Require nspr >= 4.9.4 - Fix changelog invalid dates- Update to NSS_3_14_1_RTM- Bug 879978 - Install the nssck.api header template where mod_revocator can access it - Install nssck.api in /usr/includes/nss3/templates- Bug 879978 - Install the nssck.api header template in a place where mod_revocator can access it - Install nssck.api in /usr/includes/nss3- Bug 870864 - Add support in NSS for Secure Boot- Disable bypass code at build time and return failure on attempts to enable at runtime - Bug 806588 - Disable SSL PKCS #11 bypass at build time- Fix pk11wrap locking which fixes 'fedpkg new-sources' and 'fedpkg update' hangs - Bug 872124 - nss-3.14 breaks fedpkg new-sources - Fix should be considered preliminary since the patch may change upon upstream approval- Add a dummy source file for testing /preventing fedpkg breakage - Helps test the fedpkg new-sources and upload commands for breakage by nss updates - Related to Bug 872124 - nss 3.14 breaks fedpkg new-sources- Fix a previous unwanted merge from f18 - Update the SS_SSL_CBC_RANDOM_IV patch to match new sources while - Keeping the patch disabled while we are still in rawhide and - State in comment that patch is needed for both stable and beta branches - Update .gitignore to download only the new sources- Fix the spec file so sechash.h gets installed - Resolves: rhbz#871882 - missing header: sechash.h in nss 3.14- Update the license to MPLv2.0- Use only -f when removing unwanted headers- Add secmodt.h to the headers installed by nss-devel - nss-devel must install secmodt.h which moved from softoken to pk11wrap with nss-3.14- Update to NSS_3_14_RTM- Update to NSS_3_14_RC1 - update nss-589636.patch to apply to httpdserv - turn off ocsp tests for now - remove no longer needed patches - remove headers shipped by nss-util- Update to NSS_3_13_6_RTM- Rebase pem sources to fedora-hosted upstream to pick up two fixes from rhel-6.3 - Resolves: rhbz#847460 - Fix invalid read and free on invalid cert load - Resolves: rhbz#847462 - PEM module may attempt to free uninitialized pointer - Remove unneeded fix gcc 4.7 c++ issue in secmodt.h that actually undoes the upstream fix- Fix pluggable ecc support- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- Fix checkin comment to prevent unwanted expansions of percents- Resolves: Bug 830410 - Missing Requires %{?_isa} - Use Requires: %{name}%{?_isa} = %{version}-%{release} on tools - Drop zlib requires which rpmlint reports as error E: explicit-lib-dependency zlib - Enable sha224 portion of powerup selftest when running test suites - Require nspr 4.9.1- Resolves: rhbz#833529 - revert unwanted change to nss.pc.in- Resolves: rhbz#833529 - Remove unwanted space from the Libs: line on nss.pc.in- Update to NSS_3_13_5_RTM- Resolves: Bug 812423 - nss_Init leaks memory, fix from RHEL 6.3- Resolves: Bug 805723 - Library needs partial RELRO support added - Patch coreconf/Linux.mk as done on RHEL 6.2- Update to NSS_3_13_4_RTM - Update the nss-pem source archive to the latest version - Remove no longer needed patches - Resolves: Bug 806043 - use pem files interchangeably in a single process - Resolves: Bug 806051 - PEM various flaws detected by Coverity - Resolves: Bug 806058 - PEM pem_CreateObject leaks memory given a non-existing file name- Resolves: Bug 805723 - Library needs partial RELRO support added- Cleanup of the spec file - Add references to the upstream bugs - Fix typo in Summary for sysinit- Pick up fixes from RHEL - Resolves: rhbz#800674 - Unable to contact LDAP Server during winsync - Resolves: rhbz#800682 - Qpid AMQP daemon fails to load after nss update - Resolves: rhbz#800676 - NSS workaround for freebl bug that causes openswan to drop connections- Update to NSS_3_13_3_RTM- fix issue with gcc 4.7 in secmodt.h and C++11 user-defined literals- Resolves: Bug 784672 - nss should protect against being called before nss_Init- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- Deactivate a patch currently meant for stable branches only- Resolves: Bug 770682 - nss update breaks pidgin-sipe connectivity - NSS_SSL_CBC_RANDOM_IV set to 0 by default and changed to 1 on user request- Revert to using current nss_softokn_version - Patch to deal with lack of sha224 is no longer needed- Resolves: Bug 754771 - [PEM] an unregistered callback causes a SIGSEGV- Resolves: Bug 750376 - nss 3.13 breaks sssd TLS - Fix how pem is built so that nss-3.13.x works with nss-softokn-3.12.y - Only patch blapitest for the lack of sha224 on system freebl - Completed the patch to make pem link against system freebl- Removed unwanted /usr/include/nss3 in front of the normal cflags include path - Removed unnecessary patch dealing with CERTDB_TERMINAL_RECORD, it's visible- Statically link the pem module against system freebl found in buildroot - Disabling sha224-related powerup selftest until we update softokn - Disable sha224 and pss tests which nss-softokn 3.12.x doesn't support- Rebuild with nss-softokn from 3.12 in the buildroot - Allows the pem module to statically link against 3.12.x freebl - Required for using nss-3.13.x with nss-softokn-3.12.y for a merge inrto rhel git repo - Build will be temprarily placed on buildroot override but not pushed in bodhi- Fix broken dependencies by updating the nss-util and nss-softokn versions- Update to NSS_3_13_1_RTM - Update builtin certs to those from NSSCKBI_1_88_RTM- Update to NSS_3_13_RTM- Update to NSS_3_13_RC0- Fix attempt to free initilized pointer (#717338) - Fix leak on pem_CreateObject when given non-existing file name (#734760) - Fix pem_Initialize to return CKR_CANT_LOCK on multi-treaded calls (#736410)- Update builtins certs to those from NSSCKBI_1_87_RTM- Update to NSS_3_12_11_RTM- Indicate the provenance of stripped source tarball (#688015)- Provide virtual -static package to meet guidelines (#609612).- Enable pluggable ecc support (#712556) - Disable the nssdb write-access-on-read-only-dir tests when user is root (#646045)- make the testsuite non fatal on arm arches- Fix crmf hard-coded maximum size for wrapped private keys (#703656)- Update to NSS_3_12_10_RTM- Update to NSS_3_12_10_BETA1- Implement PEM logging using NSPR's own (#695011)- Update to NSS_3.12.9_WITH_CKBI_1_82_RTM- Short-term fix for ssl test suites hangs on ipv6 type connections (#539183)- Add a missing requires for pkcs11-devel (#675196)- Run the test suites in the check section (#677809)- Fix cms headers to not use c++ reserved words (#676036) - Reenabling Bug 499444 patches - Fix to swap internal key slot on fips mode switches- Revert patches for 499444 until all c++ reserved words are found and extirpated- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- Fix cms header to not use c++ reserved word (#676036) - Reenable patches for bug 499444- Revert patches for 499444 as they use a C++ reserved word and cause compilation of Firefox to fail- Fix the earlier infinite recursion patch (#499444) - Remove a header that now nss-softokn-freebl-devel ships- Fix infinite recursion when encoding NSS enveloped/digested data (#499444)- Update the cacert trust patch per upstream review requests (#633043)- Fix to honor the user's cert trust preferences (#633043) - Remove obsoleted patch- Update to 3.12.9- Rebuilt according to fedora pre-release package naming guidelines- Update to NSS_3_12_9_BETA2 - Fix libpnsspem crash when cacert dir contains other directories (#642433)- Update to NSS_3_12_9_BETA1- Update pem source tar with fixes for 614532 and 596674 - Remove no longer needed patches- Update PayPalEE.cert test certificate which had expired- Tell rpm not to verify md5, size, and modtime of configurations file- Fix certificates trust order (#643134) - Apply nss-sysinit-userdb-first.patch last- Move triggerpostun -n nss-sysinit script ahead of the other ones (#639248)- Fix invalid %postun scriptlet (#639248)- Replace posttrans sysinit scriptlet with a triggerpostun one (#636787) - Fix and cleanup the setup-nsssysinit.sh script (#636792, #636801)- Add posttrans scriptlet (#636787)- Update to 3.12.8 - Prevent disabling of nss-sysinit on package upgrade (#636787) - Create pkcs11.txt with correct permissions regardless of umask (#636792) - Setup-nsssysinit.sh reports whether nss-sysinit is turned on or off (#636801) - Added provides pkcs11-devel-static to comply with packaging guidelines (#609612)- NSS 3.12.8 RC0- Fix nss-util_version and nss_softokn_version required to be 3.12.7.99.3- NSS 3.12.8 Beta3 - Fix unclosed comment in renegotiate-transitional.patch- Change BuildRequries to available version of nss-util-devel- Define NSS_USE_SYSTEM_SQLITE and remove unneeded patch - Add comments regarding an unversioned provides which triggers rpmlint warning - Build requires nss-softokn-devel >= 3.12.7- Update to 3.12.7- Apply the patches to fix rhbz#614532- Removed pem sourecs as they are in the cache- Add support for PKCS#8 encoded PEM RSA private key files (#614532)- Fix nsssysinit to return userdb ahead of systemdb (#603313)- Require and BuildRequire >= the listed version not =- Require nss-softoken 3.12.6- Fix SIGSEGV within CreateObject (#596674)- Update pem source tar to pick up the following bug fixes: - PEM - Allow collect objects to search through all objects - PEM - Make CopyObject return a new shallow copy - PEM - Fix memory leak in pem_mdCryptoOperationRSAPriv- Update the test cert in the setup phase- Add sed to sysinit requires as setup-nsssysinit.sh requires it (#576071) - Update PayPalEE test cert with unexpired one (#580207)- Fix ns.spec to not require nss-softokn (#575001)- rebuilt with all tests enabled- Using SSL_RENEGOTIATE_TRANSITIONAL as default while on transition period - Disabling ssl tests suites until bug 539183 is resolved- Update to 3.12.6 - Reactivate all tests - Patch tools to validate command line options arguments- Fix curl related regression and general patch code clean up- retagging- Fix SIGSEGV on call of NSS_Initialize (#553638)- New version of patch to allow root to modify ystem database (#547860)- Temporarily disabling the ssl tests- Fix nsssysinit to allow root to modify the nss system database (#547860)- Fix an error introduced when adapting the patch for rhbz #546211- Remove left over trace statements from nsssysinit patching- Fix a misconstructed patch- Fix nsssysinit to enable apps to use system cert store, patch contributed by David Woodhouse (#546221) - Fix spec so sysinit requires coreutils for post install scriplet (#547067) - Fix segmentation fault when listing keys or certs in the database, patch contributed by Kamil Dudka (#540387)- Fix nsssysinit to set the default flags on the crypto module (#545779) - Remove redundant header from the pem module- Remove unneeded patch- Retagging to include missing patch- Update to 3.12.5 - Patch to allow ssl/tls clients to interoperate with servers that require renogiation- Retagging- Require nss-softoken of same architecture as nss (#527867) - Merge setup-nsssysinit.sh improvements from F-12 (#527051)- User no longer prompted for a password when listing keys an empty system db (#527048) - Fix setup-nsssysinit to handle more general formats (#527051)- Fix syntax error in setup-nsssysinit.sh- Fix sysinit to be under mozilla/security/nss/lib- Add nss-sysinit activation/deactivation script- Install blank databases and configuration file for system shared database - nsssysinit queries system for fips mode before relying on environment variable- Restoring nssutil and -rpath-link to nss-config for now - 522477- Add the nss-sysinit subpackage- Installing shared libraries to %{_libdir}- Retagging to pick up new sources- Update pem enabling source tar with latest fixes (509705, 51209)- PEM module implements memory management for internal objects - 509705 - PEM module doesn't crash when processing malformed key files - 512019- Remove symbolic links to shared libraries from devel - 521155 - No rpath-link in nss-softokn-config- Update to 3.12.4- Fix FORTIFY_SOURCE buffer overflows in test suite on ppc and ppc64 - bug 519766 - Fixed requires and buildrequires as per recommendations in spec file review- Restoring patches 2 and 7 as we still compile all sources - Applying the nss-nolocalsql.patch solves nss-tools sqlite dependency problems- restore require sqlite- Don't require sqlite for nss- Ensure versions in the requires match those used when creating nss.pc- Remove nss-prelink.conf as signed all shared libraries moved to nss-softokn - Add a temprary hack to nss.pc.in to unblock builds- caolan's nss.pc patch- Bump the release number for a chained build of nss-util, nss-softokn and nss- Fix nss-config not to include nssutil - Add BuildRequires on nss-softokn and nss-util since build also runs the test suite- disabling all tests while we investigate a buffer overflow bug- disabling some tests while we investigate a buffer overflow bug - 519766- remove patches that are now in nss-softokn and - remove spurious exec-permissions for nss.pc per rpmlint - single requires line in nss.pc.in- Fix BuildRequires: nss-softokn-devel release number- fix nss.pc.in to have one single requires line- cleanups for softokn- remove the softokn subpackages- don install the nss-util pkgconfig bits- remove from -devel the 3 headers that ship in nss-util-devel- kill off the nss-util nss-util-devel subpackages- split off nss-softokn and nss-util as subpackages with their own rpms - first phase of splitting nss-softokn and nss-util as their own packages- must install libnssutil3.since nss-util is untagged at the moment - preserve time stamps when installing various files- dont install libnssutil3.so since its now in nss-util- Fix spec file problems uncovered by Fedora_12_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild- removed two patch files which are no longer needed and fixed previous change log number- updated pem module incorporates various patches - fix off-by-one error when computing size to reduce memory leak. (483855) - fix data type to work on x86_64 systems. (429175) - fix various memory leaks and free internal objects on module unload. (501080) - fix to not clone internal objects in collect_objects(). (501118) - fix to not bypass initialization if module arguments are omitted. (501058) - fix numerous gcc warnings. (500815) - fix to support arbitrarily long password while loading a private key. (500180) - fix memory leak in make_key and memory leaks and return values in pem_mdSession_Login (501191)- add patch for bug 502133 upstream bug 496997- rebuild with higher release number for upgrade sanity- updated to NSS_3_12_4_FIPS1_WITH_CKBI_1_75- re-enable test suite - add patch for upstream bug 488646 and add newer paypal certs in order to make the test suite pass- add conflicts info in order to fix bug 499436- ship .chk files instead of running shlibsign at install time - include .chk file in softokn-freebl subpackage - add patch for upstream nss bug 488350- Update to NSS 3.12.3- temporarily disable the test suite because of bug 494266- fix softokn-freebl dependency for multilib (bug 494122)- introduce separate nss-softokn-freebl package- disable execstack when building freebl- add upstream patch to fix bug 483855- build nspr-less freebl library- Update to NSS_3_12_3_BETA4- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild- update to NSS_3_12_2_RC1 - use system zlib- add sparc64 to the list of 64 bit arches- bug 456847, move pkgconfig requirement to devel package- Update to NSS_3_12_1_RC2- NSS 3.12.1 RC1- fix bug bug 429175 in libpem module- bug 456847, add Requires: pkgconfig- nss package should own /etc/prelink.conf.d folder, rhbz#452062 - use upstream patch to fix test suite abort- Update to NSS_3_12_RC4- Update to NSS_3_12_RC2- Zapping old Obsoletes/Provides. No longer needed, causes multilib headache.- Update to NSS_3_12_BETA3- NSS 3.12 Beta 2 - Use /usr/lib{64} as devel libdir, create symbolic links.- Apply upstream patch for bug 417664, enable test suite on pcc.- Support concurrent runs of the test suite on a single build host.- disable test suite on ppc- disable test suite on ppc64- Build against gcc 4.3.0, use workaround for bug 432146 - Run the test suite after the build and abort on failures.* NSS 3.12 Beta 1- move .so files to /lib- NSS 3.12 alpha 2b- upstream patches to avoid calling netstat for random data- NSS 3.12 alpha 2- Add /etc/prelink.conf.d/nss-prelink.conf in order to blacklist our signed libraries and protect them from modification.- Fix off-by-one error in the PEM module- fix a C++ mode compilation error- Add 3.12 ckfw and libnsspem- Updated license tag- Ensure the workaround for mozilla bug 51429 really get's built.- Better approach to ship freebl/softokn based on 3.11.5 - Remove link time dependency on softokn- Fix unowned directories, rhbz#233890- Update to 3.11.7, but freebl/softokn remain at 3.11.5. - Use a workaround to avoid mozilla bug 51429.- Fix rhbz#230545, failure to enable FIPS mode - Fix rhbz#220542, make NSS more tolerant of resets when in the middle of prompting for a user password.- Update to 3.11.5 - This update fixes two security vulnerabilities with SSL 2 - Do not use -rpath link option - Added several unsupported tools to tools package- disable ECC, cleanout dead code- Update to 3.11.4- Revert the attempt to require latest NSPR, as it is not yet available in the build infrastructure.- Update to 3.11.3- Add /etc/pki/nssdb- rebuild- Update to 3.11.2 - Enable executable bit on shared libs, also fixes debug info.- Enable Elliptic Curve Cryptography (ECC)- Update to 3.11.1 - Include upstream patch to limit curves- add --noexecstack when compiling assembler on x86_64- bump again for double-long bug on ppc(64)- rebuilt for new gcc4.1 snapshot and glibc changes- rebuild- Update file list for the devel packages- Update to 3.11- Add patch to allow building on ppc* - Update the pkgconfig file to Require nspr- Initial import into Fedora Core, based on a CVS snapshot of the NSS_3_11_RTM tag - Fix up the pkcs11-devel subpackage to contain the proper headers - Build with RPM_OPT_FLAGS - No need to have rpath of /usr/lib in the pc file- Adressed review comments by Wan-Teh Chang, Bob Relyea, Christopher Aillon.- Initial build  !"#$%&'()3.79.0-11.el83.79.0-11.el83.79.0nss-util-confignss3base64.hciferfam.heccutil.hhasht.hnssb64.hnssb64t.hnssilckt.hnssilock.hnsslocks.hnssrwlk.hnssrwlkt.hnssutil.hpkcs11.hpkcs11f.hpkcs11n.hpkcs11p.hpkcs11t.hpkcs11u.hpkcs11uri.hpkcs1sig.hportreg.hsecasn1.hsecasn1t.hseccomon.hsecder.hsecdert.hsecdig.hsecdigt.hsecerr.hsecitem.hsecoid.hsecoidt.hsecport.htemplates.cutilmodt.hutilpars.hutilparst.hutilrename.hnss-util.pc/usr/bin//usr/include//usr/include/nss3//usr/include/nss3/templates//usr/lib64/pkgconfig/-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -fexceptions -fstack-protector-strong -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1 -m64 -mtune=generic -fasynchronous-unwind-tables -fstack-clash-protection -fcf-protectioncpioxz2x86_64-redhat-linux-gnuPOSIX shell script, ASCII text executabledirectoryC source, ASCII textASCII textpkgconfig fileRPRRutf-88e4dbce9b4756074d9ec6e0715f3f3784e8bf0c8286237c99c46f2bae1d3f97e?@7zXZ !#,$] b2u y-iSqk BJի+2TiX|s<`Q~ @J TB賭ֿWȳ0!Y%t9E+%'9Q6^xh-R[a>3{:'G1W9TV`jےuoSLK"as;HfKqYGObs,|aNJ?H^WakP%9u9r9py8|epbOMr`d։ g " [BC@W UQK2BRq_X }i^bP6&>T`(+Kc?'q_-y)T 4RQI|sCNڶ坈^/a4IOwQ Y1;nhȻZXNW((n"f\qXNnQK_A7^jއ$]ɜ<+ʁ 'b5ؘgZo؍/C-vAqʸ7 (B@cv :.aJs"X:e8h=O"oӏ.#A0)NdmnMj-{#ăKtie̴rFn }HsnzB?ܝ ] U=ת.h߳#!W"ȏ\Ѻr6<+a}!?SWxWV`rXcBɍLkb {l{q):l+#@eU BMr>;{s{T xMtR)j &<//+@W$e WŻ}PIJ;U*WLZ%2L"ME#: H;6E "@P(\'lUFu?'wfͤ،d3F5mx/-P*$[c/d']ՋEKU)lwY/IU}hE$"lV`*Gၜߙ=0-IpK尿ȁcKf!g)sJWKe'獎2[,K#w( SI{-fG9oN}Y;-{[Ta);3l/"PБD`۝OFrڣ#+rf!n6ӈlXXz.[4QVb),!UF2s¼,2fŭ?OI>>%90?8bVUs@@u^qT;PAd[U7(.K4'B-gWJB+7K,s_-L]h`3;YћNz<ԍ2J>[3wZƗ° g8eQci+֩m]'}VmÒ Q+))b8xȥzD oueKIU*!9W,(cj+i#$hYgZ 譯OTIj/әS6?i7a~ouTСS|Qq\Ors?(>qw*gI"V.Xƫ KX-b2ƋIWTη#󇢑9Qq35 |YsQP"i+ch.?k6{41@ć ޽sKM^ ?ymwA |SP0Lkc^k3Mjn7d HE#qS)`yOL4Xx-Ů̦PS܌Uz1+d E rf:YcG=T A}>G*7]J?S_cXYWb .-D@l6XU}Tjcyb-ĩ .bHEt,rfI_;FTYʆ!T'fj0EoCDr o#RxVV)בT{NSk7vߋJTZ̝" EQ*@xɵ=)SOںUZ% M@l>ko{~˂2Hz 쩘ajPS 4z@+*^!֠ GL9Br°Ieg!?(Mu 7]ڌ$DnFp 'vߌǮWƻ)hGYVdJe`M݀&XtG|D3w. >+^o=9 Ve;-!_=a8K1IrqH5齊ƛjGDqe>zi@f#0¼ ~ͺLN] /0qc>d0t9MP(e7ݕT4q?yY\(+5J[_YU6tIðŦWBB=Vwчvbt?NJ' gF,$Rԟ!zPR>~Mš(vDS(ގ ˡ[6Hz]P/-\Vjԍ>'`pXxSƚȜR`G z0| $5 W$!uD˥z`%[B=\ 6!g|ab+Ж, rog? (Ʀ#eF'˻58y g{.0{t!1= ,+Ri#-ԆGE-9EIdJ?}=ZAO蒚Sm7m/1כhPF sZ [NJ1c4xɋj:ζA)kUK ^1=/ zدwŠr{Ktz4bV nI*C3+]/TX:䌨\?M#ymp@F(}LA;nsˏܠ':8]=c@$ܲ-l%f=S.KBLkXvMH:'K&3&~U[1CW=,o鹶1Ų [{8Q撏 uh5ƁUq.%%^U#K|eR\ w,k}ra{H u^'ַ;hGCk]E2`2LNko$ZЯ 30$(W{P}zW9"Yհ٘9M`D7: B7K8 XkZFEئ\m!)`Yzn4 soiKDWVip07M0Ȯ H-<yZMrKc+ӗU"$W ?'CF,$h_#%.»YWΓeh0Mszm> l55J(O>b|*dj0gRٶ;-MυN" b%lW!^VhL0kWlB!fӃD W,}_|2oueהt* Dit I&9NMG]s|TB=Vv03lӭ,LӧUY<)]aa?x3"2I(?us$Nʖ2-Cִ?f|x:EaӑIGr:<;(9v #n׸&%A>B L%; 'M(;$e>K>|,G{RcOj#9Tv㡺e~L<Z ]K߀z XfaIQXA:6I=5I-v@L,wż/ i.g5#pu'd8gO$q*nʮ~_lxuE[;]Pp8IS2Päh،d=C#u ../.zش7h_ȔxVzDd|E\*}:U{dž io@6ށ0y*ꣁ,Im.M.yh[.%q-gJM8v_ x,SZ"%5>iοݫQ\j2+lEbaEUʹ_68WF!RWD\tDI M!x,kn7!rF| o@j͕`ƈt w(} jFp%}7x;lx5x\ '-FeG$&vO@T%|hsb$Skծ) KkAljGҍq&OTutaS|V[޶wNc6e_KqwD>JAc eġ!< _+j_ks$pi1Gs'$LEC%67_GT?/ TlWUn"s阹hBhoP`xu/ ]OZMF|:/Ġȷf:-zYv ֱ<߫.:*DsiSsoExWm0{2ÓysMAnf5ī^#1{,wNBǶ5( C.Y׮N_y#CA1?p{%־pٛ1zݓWD>qn r=MK 0*)YEW"PZ9 3T˄US2Yh:!ZжPו$2{ǠG\Yz來g9KGq(úg h&SAO䦾rq=5OBuwj’XNT԰`׎Dm5'ZZ]T8޶zސN\cTbZxUxRX7V;Qmj:<+_^,J&-* oW'T=зU{9su:yɮÇ\աZX.#ܴݳ p)'!*-Q oƎl75aYl EFgi3KzQu)̕4-F\$kiĚ_a(dĶgXcE>fPvMWg+wqqJ[q| :򽕪dn 9d1?z\ ˶2S>C9_m)1,4ޱpPԴmuYV8NoA|D&7&]N7%`>j# 7ѕHؚPo>)b&H$8qGxdNbA|-B4X&Z|Wȫ{J J~GɊߔZ)wuv:/=鹧e>uNW++>&LC(ݭ5r^I ,O Әcdȯ-#78=e,a ~O8{)NJ#enغa}$k2QDgG޿ Cd=zwbsJ쵯d4%4{0ߩ]s~ ?dqXR%OO1Zޢ:뛦?K21JQ@Ym]E 0:>ܓ%cM&dB$ju$ȥdM61x}e9C"ʊc(sG|wɆK>XACrKNfi ݚfa~㩬;;2Ԝ$œkQ޸F =<*&_R)𚫞?;ԼG?5ۄ7m -w|!{ &aI.B Cc kIY`⯛"tdɂS2[W& 26ށ`M")?ЖwQs NSxFnZ Uo31 d,ظmV8R@$ůރT53gx])f _+Xn#QOz$f|Pd@F})YYqqf]퐣/@XM3"f"S«vdB̓*yhokPQከ#=T{H,|eKA72w?ǭ9dacD@3X4O0!ZM2o9a-"Ӎx ű ېK#x *%Mz{J2E2;h ;!ZljKA.SKak#oZYs e:dH.x~q'>_Pfjjwna$+Hǃq Q_=6 !ևxm*MOt,mxo,[M^qb$l{K=ͤ(٩26m`t Fնj."p cTfm+^K A !*ܷș"aݿeOn⨉iZH: }\OiRP2sˮT ׈P38MaঘJANC4$,U1rAXT6A@)?2G:$ 7=՘)wo?Dr;խMU,nJ*D'ulSH^Bc|r~$cwDI264Ȃ}smw[7X4=s^\ac2V=Cj3'[#^v-B`8)o,(%,ҺLYF:/wJ}z c9q}Tr`!*x</~ f`r%NglB>[b*W !Q^#E}cQ8@;}l&ހ @AX(V@6-goTe7Gq|O砱) ZQu"${}< F@ C $^.K9[`H p .fIA  °UO/F7{aL9*Xƶ&׆(TppFd)!lнw,lO1Ȁ hz2?&Მy%k#"\ո dKHbܕ':v.ؗ_`箉jdh^1,!L}ݡ`T޼ 81Ġ7 BDJ9.#<;mF<聣`H}>z: Q/aٛ'̭d"T#ByA$x/$^\*-ģcUE7x6L!kCLRDByLcZY?0yյ?r&wͅ?na^H8,-Fdc-5 u1(čl|gz ~$ 8*7Ղ ٨w H5Ѽ z%o1)XSE&)%돑|b_Z7 ӿG:pٕNdYi3* @žVr,g?HtÑB NM; Dz2Ha /tqop*˰(~)58rFp2ñ vZZݝ7¥j-mqbf]!%E3ɾNI%: jjk=W*S\4%Ǧ J߱=b"Qh@s߇Ww:#O84.\RyA YqWB8zR0*?4ЌQ L~~ D[&XI,BU߳C\!]XjX|WB ࢈qa~elfA]s k 7;".AWEīW ّ~0Pߣ-r37M:l!Ck_0iJ*L/8 6FCl"Dij ͺ-ް2D> o\kSNvNѼo@R[e oM;5SX;{ ٲdE< Vy)\WɕߤsmNjxᨳ]DRG8^' JuQK\>$ԛ++ $3.V]6& jp8_3b_Phz,6:HK`\[NjqyO_Zb5 lj1sSju@rJ&&wH޼Ǻp,Qx.c0DMrcHX֞(R-r* ERPGOyWe=&,@sy4gkdo36Y9gxl/uP.2Fb3$xs_הl$Q@f>X]LHI@j ŭ̀ԕQBޘ*/L4hQ eɰJR;6'8Y pI)(vT_vޑvds~B[  ly[ #?ɟxdJ$!hG}fC p B(zܜOhG|:@~.> <*|8q}M]u<@(6mwCQx Z!HZe-](cԃ7۲>J81ɓ8m~FZD_<^OPLZERۙT^+:NO}K1>tvg}aLS)8("pUBx9pN_^pNMpDӧ-B֘:;jTO=:xTm޷[r%- ?-/ȩa+|g$O”oBP:qdDZXgLHuIˆT eYg4"nx9{~MvyAcm %E:xDYh[ pW! 1qp=Ewr: X~SAZɉAT^@o#22ax`DF7hYה>xG;瓇po.׃զ6~vQɣ/䜒i>rNs9HPTgwvxi1i iMʣ1G e53-pf "{XF@swè_{JLܑy&ցN} zst * cA]~/.I3(3tFv[֍/=!_qެӺ^-zgC} e KE3o1 jg ]|ghf)MzmI86K mZΆ;4[ W;fų4 J+KYu 8>*dTqma('#h1^`#ݜ ,gz Pq%?DLVJ\PAh3G%q2=.@H}$3b110xxrjoTnXfUYA5eZkg)`!muwQ`Aɲ2CzlMĕ}&ᇑLxP[ Ã=&܌ߨ׍RCڄ̕(9_&X\눞HNTWoޫ_pZ0v4"d@,(Bʗ{Pv!qJ>r eҙ!27r= }ٌtoYsF;L#.:m&>YBK?8x݊X/iҡ)k?Yv 7op"D:pF;KMAqrLQ+Z&I_FSC&;*QHTR2=Ͻ%y()"\@,clv4P5*.aAq V[[PpEOuWklxsu9i:|t7^"3>QaF7mpjM=.a!@(b"T.NnjtK 2ܨO}o&auH%2{\o&L/^r}Skmܺc1اN>b RAhxw)|=ؠmN `5ugIAj! B&=z&jT*f-Tm?2j^%g꼆:\ ֘ WKq:TDg+}eO݇#䋋(uwgAJgK#EJ8ћbj(zԛĶ)mۓ5֙M$e'0OV+`|iħH.jZQ%K$ Ί^惣k=_;#^"XL5**l =Z!И 3:+J/!ķ'Z tk 7r5N Q0֎3uف5tߵڐՁ씤cS5drVڵN} 6^ITu-u"CE8y-]X6mi%zBȌEת+mHU4ۃQ @6K(Di~·3!ܽ0Ag^|oT)ՀnL{+b]$9@鶫R K9bufO[Փ>6qfAl`\>OA\7?glW )rf7qlmKh(5[8NBڱTǃ iPy$噡-R_!4n./t3zO)LX3x\" Io/|g(P[{g6MZ7kFF5 &{Su:Rɛָq,\i@ͽ[Ig ,M樂W 6}b%2n-EbTvJ/>[sbB/,Njwv(Ӿlh8Boyق8*$GI}h!)S&-ޘ^ZXӸ6b^_62Cӭm nXDШ_ X6uFfng SxW$\,НMغEe,0(ALH+K,NF:g9ۆ#"gEkwU9?JZk!y҂6s!"9 j[`16.:S)㚞kCosJٞUjR2h-ԸD^6v1| 1-kSVX ʳ-4 Mf 3YmLPSKa@0$])91 O6Ǿ?>9&j"0&oux̌ ~/L4ݏ!<\˚n :z$~T=B,jw^ςSٹu.8jwf8-^ӏk"' @w:&{ 9ޢy@YBՀ~6*Ymqlwj) ХC@Oo_H㿹u99/3,ؽ_UX|YZ^Qc4L E<ԓ$ h͹ <#«?ѓ0|F `qX%[~ 7^6K!mZC,c^W$a/~I'3T^{C#~,XEQg@UDVluZ&(BUHV oT ' r9BN5$_2_K >!37Iq\yULtdž[75X$h;ek. DŽ14YN^rԴ—5<)ftk'#DoyPVisP n:44hÉe_Es8Я퀟?NѮ}/BI.`%hf~o$ODUWkqCipQwmayZiA$-Z /pJRV3G/dnMBD60M6=Кx/\Tzg ȿ#И5K"RE7 (L1~_9zZmr#!7@8a00dz^CBlV`Xks2ݫE&!B|.]֯]F 2dUdՀh]nsx}ˏ;EC^ipP: Q>œY@<|mg7~K?~1SYQO[ z10(f)FԐ[JOȯSYYMfQxR/#E zQF3 L:~k|3asAZ6+yF3m*[IXn5Dݜ^wUv.K'XAw;$i o/̣i1y1n :R֨C7mˤ`"i/5bh/'8.8ٍńd65JsOUM4W.^&4_Jm mO9GX4v!_I0d$NU^3[h 1Gr=~bB4!VBDP: $zANY\emCȆ y<_J6I2Ǯd>}MˈӸ{r!xVʥR*p@!Ŀar*wauW^^~5n3EsQ]%N-(mUY._hOƋ}AW0%&L[1Nk;yr^D,)9iD 0?uفTD  4\?hcCFszV|oxٔeՀ5!G۝/yC Q@(Z D{@B]+?L䰚|soP߶2lb̙ͻvn[&E0&{.hݳHR,hDȴfx'28~zhTEG[$PV;1ԉ5D UBV*2QԢdY Rd qHIC'bҍd?ֿ,\ M9{HQsEE+ ;DVt<׬fj(7؁!:/X7cZu'Ӆu&&yk?rM-!]v*UCdK֞X6՗RS¸4R< Tݽ]׭`iNYe9_jIelBBJw|WWk $ SiM%|R*=}?L @^ÂyHdd^kxj:ejʴ(Y rʿM:;YC+4ygӃ^ue&k&;Kl5~}9[nc;¼ SU]g"H6&9uŬhh!@yA͇}A_ךZ.lS[6X5=dos¶&WcQy")zE;1i&ٵ_βu+g/PM?:^sU0|GJ$YYIYN@Ro)3[2l|1t>JE8_2,fהzmV]9g@t0_G{Geh1D=[NPl6{د9-_YR[eϽHruE^pE.,'8 S@`vkmRlR~yA+m"_ka.Ǡ42gBa߾dIOBFnZ{(@L#CNإ ޅCKnLDtQПaᣱ[Y슺K#􏈧 g@g4s@9Gx.;n`}8dHjD* WuYyZtQZ|1E^H#en2sh_ȃHfY6wzpt`~@&_NsjvBķiJ% ?Ġo=눋gZHɹ跏a}e DO`8|7|"|,Qd"/,*$A F`?Rt dsą֟3M ;nǼS 86L&uJF,СtWá^ )-|aF@Üi (JyzaALYCV"?3`]8pHb^͚Kg7{ct$ Yrksx|#,V.x|n|개ku:YVĥ-5Ђ#o?!J` <2 Plbl 5 4qbdG6 YVe `R >|⒭8dp~؃,yzX>اWX tvf G}Ћ)x/fs +k꽥Ø8n|K}w.ݨE}F:3 rSRceצFv Wb'dzU_Yv-ŝAAKeQaddxEg}Gd`\BQ0V* d w9DshJrRuX(aP(@9zrbʐT}qVZXp+:j5@Dd2 Ccv,1I==RIppi K~X(i*_ϓM㣻nW!afs76Py%ze·";-![ L/9?V׎-Ёywo saZL]J4zSAI'aflK"ZZiPHw.۪wWZs}_ow!=zB[\qCOۻWxYWy`͋QN"d}͡0tD oٞ&(l13S8)Q98[[Ϋ;OiRkQe=Iɭf0{+,b_mE\Tú'r;Ov\ wӀA N^gJK+}`% JRUY'tDX9V \P$UCd gDymGMQWaDL'&PzD +fX;4>=L)pg5Fd`}"j AS. Hc%]leؼ&+&Dӝ3 R5y3llm*+*'Rwo!?t\ٰseIP'5h@hfzMq yǰnp<҆ܵqf|n8w"u1yE,UY~bD;cX%[i! cyݡfGz:/T.2韰 34%;y4Z R<WU-TKJ⏈c_ MJ.=e9.xӷM-KEUY_ſӶ  #\bT^qAFWf鸁s7J.y hsʔsu̓4x d$WeR5?v傺U;n;Hwn mQn <67k*YTa%Q*Yw} yWy C]9GGH__ ͬ+/ OL)6MHTYħѣ;iiĹgސN;1L_U[?(+8\QMK(,mC2㒞RU"o>)p r$H]'LKQBn&n_0*+#,I"!=oQ.~s|3.3?/ɀ+p61D16TTݛsZ޳12S2'A [9IL@fY0Qpt!Rd)}1dNu{n4 ׬XKm-֯HrroLY{7]^H"v&̂TYGb[߱~NyL^z#yާ;h8+ehrgU޼DN0 hlDzvG 3i3Q OT$ك*[㲣ym77 l.f% ]< : wq[݁B!VD)N,EBOBM;l crI͵epXL|f{Iq{7L0^':53 5" ZU D>2?kxUd O԰m Ž+[\a UȐnox mʙvj Ie+Y}~B.E_*o}wQV 6\gLun2c u3f{T |=xvAdRA]=1^;:A\˽ 2 9(%o'[4vtK\PBGHf]‡vt7|̧;U35t9LwEܕK0=^KS0@r5S:H>fqٕ;-xQNj'044_vn-B,t`UjGкԼi>BDU>Hz 2@O| P?};`0: __gluxQeW4}fc~S29wL_k4.kI 1tF{jI%Ǎ! jCz7j3;3T$ZܦnnNuM6rOI{N"@xn-U.@N{Rěv42SLIV{A@[ EAh̞.r2I7/u~H0C$s |FdIkzX))M9؏3ʻKEd}1+4RP0U墍ppJTKԁ~ɦ@jUsyZP9@#kHѣS38{`˅Ļc㱀 A K1] U[-Ο\\<~g~~[() J+߆6NÅZ0v2e"ZSB j15ǻsA9|-.D<*~uMC(s-z{e#:} "#0u48D/1 0CէQ@LWWSbYN^y >^7>`\5]4ęڀL%q*a|9M.3ɺQ \ɸ.x"Q]osHu70BR =b$h̃a/,TE/jcJq;B-fERf)VԴ?k-z֍502SKk{>1$zVF*9n cpD؏zTtaJztblÎAU]l<K]Y|+z5.z Opr7M (LY)Q 26`O6%&)3Bs%tʦP$:ENcYoa'K:&֪ Zji,R>0c"75FJv00!',{?DҬeeR=_aFmJy߶°GN t+UKEVønCBa#{%5]1:9%#흡:A3 Ju<￝vFWY1@6D!P7oB_( EUR$B1rDVonv/c[oZ % 5|׶k@|Z~vBvl١N'=EmV!,`WOsݷ¬'`P3XfplnGMBȪ_VQzV!~%J,ؤ(?kRe:^$I2}[{BϧI^2ح1s=5اK-;BZâz) - 8{^MĪZ澎HWjo.WYCr]pZiRuظ$;r. *Љ۱8ٚݲH?+6 C-\VS2w+M%Sq ]fXNDȤ%z` ԂO3&>rZZ;J‹HFg.NKb6h`=SyGmW.Sۄpm3ӇcK,OțZHX)!Cy]Ys Pp .@=\"n\;R>\kS ʄDWQb (T cވdޒB9P;mY1}MyU !ް({q@SQS.Uө4L,e1)fqrQm?qD]ngu|OK9KK{&ʆf+ (T5L1m" :kҾ%kPE)B|;S| t.E`^HTA:"Rv(i~io献1'Lo-0#@()ץ3JU67Wnv5B"' h%Cyy6H\u<ܾdǧZgbl ~)39R9&^eM8B "N \`-,@V~r*Dz$/A`ŕ:KH۝ <^i,h00PFY!V/X@C (z&D"b[1.}FH+ y<ɷ[ @[r2I62{QNe'\ǯAv]y]MapnF7\57AErL6-cgn|4)| 0,# 3eD5P=<.Y'FjIt X뎓 ~z]Bϋd)C†/>$8mq}Mmrj7;pKy-207`;OBFǩpҏw]~ؘ y;Ɏ7 p85s=~eC-XtWWo@0Gݢ dujcse=( GOw뛒jO: &U^_88Оk5a֥24@% b=(UO(>D4y`MHS,@FSf:zDmAP2%hQK#(҃Xl~𦹑e*g;S~ ER6[X ?fi:-U*q}Y%,%iXqyX] H$}n04 62O_(Fh Lwɐ{C񋸄{`D]rhS {Nѿ&DO\E,bKIrGE}ΊDCzq6Z` 3g@ZM(gƬ őp:KD}rw8ŏX;;O)z{Bi# 9T8C>_5ñNztrp:Su${?~qȄyeMRڠ\zЅOFި 45…gКmq;Wp$L:a]?`D- ݛiFwm.q't>{Gimi+>$iJ{Q W !cø}@7TK%ia@Zd_ S0G%WGk1B-"P$l؀d KOبzBWI]gZZN<#_T;ɌNGqvy!AYZ`e3JJt^j2k&cF]tQt|%((7(b:E`t@PMa<ߞY^ʹ)ǒPXP,nXSF]sa)ެƝyť1:J5f 2,~~ }%`ﶁ OY_QD uoF0 Ps2fMFC^G\^Bp":A9tTJO1бDDYaOUf{6i.e/mJ4+׿춅hPi͟S% `^f)j"+ =Ŧ_)&)?l9'MMe Ac<)xkbJm2ːzo2eоOq>A$AO-w)\LbQ45bqB:7deHl(B42hF+:40lHy=zOq#jG k1>RsM$^A|A6w~.̅t7Ŀ}ʯ3~{⫻g2R NB1udhJLrt& nSØ@ D^}=!IΓclIpb:ܞ!;to9ncք^ppC4Y-}(}ދhKq. \bBisQ BҊQsc!Y4LhV>5Dj][pEY_GL1Ro}S7M83]TNtFYhe͹Px 3vwaVk[`N4V}3>iA ȓױ!M7 5JCfe;?Lo.J)Om1̋EDZ/ O|;舳3ݶڤC#pd+?N 97ٰX'nN0'G | 9{ǼRC5cù~v!3g{/gHu]nbuf hxTeTy]Dѻ=AOfϹDViEl(tp]AB'K)h??{ whQw`(ghoHQ?UH֎!ߋKBJOkrm]b&{aaԷe U\y5KqC4-\RMɁ}ff dwK=n߰1F(tv t|ea}/Ky_C 샯7,( !Q/'A1Y3%.B6Tvγ cOJf!+ Wn!y6`i]w&6]}A:SAtXU 'X!`9/Q`tSgiG" ;v x)% ɿܜ!tr: UmAߖbrOkfgŒ@0"F}:y1.{ ]O eDq#qUnCF ެi˞m;{P|edr>.3Se8s{tV3ɲL|hׄb/ÃM*HEoѲ~\+D2OYOW/2zP^l*$ҫ.4IΟKM`S?<ksnld пfyp)>et_K(!=-~40XtI0R dv][%&HҙxB` :*vpS")[?qY9Qq `aas)Uj 6h2sV.O-3ߐW<ǃ2CWfYftʉRpE4CcnHqL:g2&=^4 UI ŌҥT9d4;/zهnoLhQ\[zBQ>٬+`OVè]]&yE29Lͻ郇\=6vC+M' \$V@[suW]# #"ajһY5ǜC< =r0ǔKׅv5*jUO#ӛ73/ "%!hM'aRtj*Sיul~=dw3V(z_]:=>fS=wwsAc' U\2ķl~C^OdWP Ц;=7<\>۬9d$bv ă!@xm.thG篍njƷ6<1fY JcTU69!b'PO'-W.dL )c[c\rO t@mEAϾqA>iEf$kj8<\٩!'\@h_Gk }|^L|#t.gbxaUm4hJ-"I&=u\@gqXr*KϾ@Ĺ"5a!=xfyeɺ{p9cw L"C#kt U%*Dh:\g^ٱT~d g䢨<8}N6}Z@bO*F`v4Xltܩ3 @f 8~}iv?7KlZdK`#G1͐ 8Ӕ VL69L>lFW_ek?Z^2ҰS8Icǣ‚l`,Frm$K(0BKdŽ=NM3Tbu LD˙~Yl?oBmH"OnF!# c #SqkD4{H̟y>Py-Wɳ"[u0ց;gzo)!8̍b[ k_B|w_~iZyn,\S7ÿ++Dcq.x֤H#o?u\Y/#(ԠDRoH?mKWQđp"?g2\K^ e+k%r)y mUtҧcqsW}4u'T~Q>Ekhh[`r1L/RѐO_YN ?A2Ĩ񖣮>3?\7=a!qC΋ mA9*TPʝw[Lɗx#$S#:],#gG Nüi+d<[fi4EV8!%N3_^j@o,2]̟/+m]Q4PV|zaa* iE( ꙴщ;zsA%s_=P-Gm][-" %Vr6Ĥ11yΈxPwnj&Aܓ&44@ WbK%jgqԖJ!mFbm x)f˜{xzn؆ ~CsG^^VsC1N`e +mg F|6X=vͨ ʸ|,~hʊ`qNN>rgsA+ېχsc?IzJhqTY$\)BDZ|[_oo9{U(;%,S9òWCC} }ύ,Ein4ynY5Fctc)}" C)&%0Q  W;d1iI,(YnTE ~dtYF"?cdo`thgߟ$C-o؇#2wޢf5}wQ¿ .iwD0kpnzZQT.A+g#%M| PF|:B۰:{qO_* |k\ڋ(Y=)A.%ʅA.HN|^Ϝ mW5 CbY`;Pm;*Q#1/&.#ꃬ\F/"#+b~M7*fE"xHN:iu\@vkRަ]y7.";!-w4#tqt> RY3_\4=s,gѾ[!ђq>䔱#NDuk+(_Ke+|n)Qe)kY7"vϕ| ][SGXupU *4hf>kMH&\H-h[Ri'[ׂ+㙙>S!|Aw=@ xόyC%冁Oߖ˄pתcJY+԰,2D0 -pZ"XT30;~Xo:Y&Lu8+'R?M=Ԣ_tUH"V6uC:#ʛ<"DF/0VDZI[<,ieÑDǺ~WhoHϱ2Z^\|`ED/%(.[JdGȾX0;Ne&׳*2uj^۬F&ŔqL(p$E~$X >k߅AZ:Z'ԟ >IqXT MLf^dLHJ FEw]*SXb8apju>V"/iC] Q(C܀ %{Sk qFV6Wf+r -F= j:ǒqJ-0ԋyvzZg*i굘s=sKe"# ĿIi'cniwXojl0rR ϴo妅cQ& o ?_2 3[עןHk2bLezdBn`T l#c鰙߼՚w*ц(NIk`Op 1ErrK~txeIdDf|8[y)_e:Y](Ȁf҇!EX(AS~[(P')Fr  D A$D,sx8(< 䶛9cPKT8(sCv i! S`D|7ž7Nt^g&_ᑦ⋑FLrys%ו&Go:㨟>de-Շca2y=gή vÑT M1ȇѮ`dQ:7P{t/L}G)=s9v[F<}.ꔂ)AWv.ϕDXr,0R#)޸;7p.2֝^H\1di~lV`r;8|yG)k C y@Wԏu+ω1/EOl7`b(HɅ1Λx^^v˩T!q^.Kƒ9Y]Rdv?pB;%w>{GgG +nRp4XOS@{ހ:Dbet\@0Q igEd2lR26 ^>Ԝi77Nߕ[uE&m=[#"u1dEVD/n&u>h7sifOt**\ :cS@ɉxGN_OIWUklFf*{ﻮY5 6 hbjA"nLMDˡe"Ӛ˂Ey!Hi&h8$~,N:uvCxكР7}k8rjIʛ~6O&M ڤIQ*LR:!_Xy xEpӄ*JQ쪜X[4jN7A@R|%3&9&=Vy'ź&C;yĀs,"Rz einnKQS9G-ef#D; "c̤QF_Qtw~ґI ~Azttq;Tm_L3ܣ.9k|h"8?!Q'>I=J @CPt~ΚOp;1q45]c},LNy0qXGl>n%'Zjk͘Iv\ ab*١Ty]owd"(&'^hvZ},B\)p ݍ~Va]#x[5esFGe[꒛$\HGj^ѮޗOވc{ͧ;XK@#6Yt+X}G<-e,([p6U^n$QUtr8WC?\JX6anz˫uz65uavz($eƈ>o2E<-ZZ`礤a]FX[HT;lR2ܢQD%)d94*Ep[lv.*/7-aJS&!˔<a5kA)Sic Cwɦf.*K@O/cTy;DL]oJ7OK#QFP3+9'IAaOM}*+G̀Mg 5 |xV-|Su5T[k{a]f5GaV6Oz}dAHP"*3*06(vQ̦&NA>V:*i~麝AOetzJR7mKm-^iNO }tX4yARL0 9𙛊=Һ>; cnբ2o|$vI/QE6|dB[Mpø$B~cJː+)3#炼m5kSkL"`WZ;*0HfŸIߟ>'-KleauX`վ~'A>5!n+c |-= єh+ ?&) U98"7IM2?8{@YOPog'x ksS#vs詰f3yýj޵Ёd}?I&u  ~;'?n4 8*uyUl@#Wr@+ vy# - ki|(u4CX bjT!|X硥LBX燤*2cFkuM 52pb-[\#g)p+ @4MQbN}A (Ž 1aCS"pžsh`̛ݾBO`D\u:{.vߙOCظfO D8v_7\+>['X,} +ME3Y?D K)w=9\@m<$MѾ x"72fIo7Ů4 ]#vo }#uEud,LƒVD@#s=eG\;hQ@^2U ZC+Aue /_UYngk.o |'pD 8 q*XyNմoc2.24U+uaEV Rqcx#U 6QǞ}S9j( Ҥebخ"3+@T<:PL N6@k\ ]:6!ىu&>]A?ͲrպωvH-X ʱW9NDm7a_Q%n@#!܂>)~9\@GGMG+dA_O;V<[5GF{Er,T4t -4iF O,;j'G /f㺰THNTHfr'jBED`p88C(CՀ@ڐ±^Vp,d8ֶ3fhga5mܴD yM!tbt?-Q,<+8ѣihόK8+ r3i-&f^4oK|sJ@{ AZTQt 5veGd> |&y`Z٤rT!EJ*?i\Xym8OЉk? Kp׋R,Ϫ[Uqsśs,t39j?)&?\F̃C@*tl}`Қg~nG dQ[b"< qOW7 K[2\߭_ˎ5payK#^ z"jY 4OFz,D[ec!( _d^PC_:3y{JEkk̈́;^C*keѿk)ྈq*o{7Ѵ:Ec9된Qs?-vEW6M Ouz>ݠ=CʊӋp^uVТ;gFʩ&r{#.6peoP~@E0ܖsZHg4V%k8(3B@xkd5񣭫~Ur,S \ų(3%u5nͺѴQ9U9$⥀K^V8y`+ + 2>|~ՎH@V k;^kL}[pjj@? Nv EM5~hL(>~3%G f>ӣ4[t˅ Ղ.y􄇹ldvn?KƏ&d /f!):oz+` 7R\o2mʃ>!R]> ulPקX_ y4F&˰df&r(bAm?nwJhoY&1V%:37th#SyŪlGS0?D }=i6. ;4Q$S;IBvS,"!mNl^F[ފ>PǓW6Go1dґM m])KTa^;.{.;YkSvFyCVR-laT?{v F#f}DJ\Νx,>)Xp e v"~s>[c<EYiJ+vp EiSwuP4PB< WL퉽Gʕ׹?2R(Ğ9GއX. w2n"6 Glb;jUs<+p7m[0u:4G?N1Uf^&\C! {†<ǝ!Z~ł FZׄB'T[+vj1`520˲ Qf$μPGvDI)IK:6$]1]c #\R]hx4n6mY vW[7 FKY'lvB,AmRIݫlp,èFV2`ѬzRWΌƒ͜2KscFZo1 Z-#mbc7J !g4(~ލ2X}w-}2 3u 6[g44ʄ9~*n`W).3Tr _ G VwP%=HIwۖa{];!-%qHz }?\6w5Kw@.(#M0<=n2 C">4dq.^Y{tKuƜ5Z+0^ɡ|}ݹ&͵Աdg{B 1`m/0?;ؚO/+\}`Q} {J̷$ !6H4"~cgF_퐮.D;E AX:- )881\{ھ,'Rz<Y{i) wY 9*O.V&VCi|E{;k&?'( &Y]# USsF˺P?ߎzXH/T[ovIPAvJg 0 Opɍ!9z U5b)Yζ_k.peR1y*zize6QE ێmuH#et>MD H2b3; +M_Twk [@֏՝ i2QكX$G}`+M_:3n %/ eETT1R~E+ $[װ6z7 ]{\$2#cibxޙ\h[c[GlxԹH=Dm|om ``%}V9;f~%-5qy˥;#2)Kp9=*LڀCz Tݝ~J<,62&[w^s5\x!%UfHVQ)RjUv{j#R?XMSs9}gkk~DRs/+gKOjۡ:{@;  0PR7#$IDV|lƭf4hO)\kFi7x]Azv+9(۠W_:;Y}bn]o}v3FP%cq3$? R(4Xۡ=?zHEOϬEⱦ|~L4̢#D a.v)&sM _u |*czӈ3C\8BO)`ݮ{_HNUAI3Z0[\Qi$kv|em,ɸJ0"w%fwP(6(Tu $v~9Whp@T.mkEJU+,:_<Z~F X2k-k'M%mׂE|= [Z^R8*YGCK6(ghcwXb X*kKXiDm!{a}i-9To|6_bb R"XK'#6\B5*k}bqgzn|4$Sa,2uE q -ژKn=ފ[5jB̐ܨ|,49̉چ6.2ǙVpv$W^>+)" |gb.[gI5G3=>/xjHd<*^|S-~cL66*_PC1/z6iA BoCg ^ZU}{:kk>b}9~"s96] &6C~A)#힚vOE%cd`Bӑ͒ GR2Ճ072B<=XBS~\ʊ'jA\SA+[EBӏ]\Z&V[:ds}y`N (a{&"fT5TޟylMdM9 {jY`;\eAmȁUxIa2(<=o?& Qm?p?\O[41Sh{p ٸ(zllQ)]=u@EQ\`9#iԞ7hD$'H .E yI+jZ}3-eFq % A3 >e]<f{QZX.?hv|h8BQ 0T |қ]7XeIAHY=Z$`ؼG Q5 V;wfHH;Suwro^P*gyb#p`P>~Jֶjju-\ z @-< TK r8^'U0b;I{MnOFw`P= ѳ%&;C_QRR¼#ѷZHWsີ`!Em"$h)L+>2sN&CN& PˏB%!a[c#ReLЄH$8XL:.[5Is60^b-˚kR6Gșx_;sݏ8r7Euv;ragH7tFy.UW`Q0XY -_9o('+-[gH?y*ZE֊PJ~HutX & +5'k], "n̰h€b8ii7 cihD6lSrnKZEY@%04MZ1(+ \VM1.]ht{[\Y+\)< e8) INGp>ȴ>Dn`[t&OW~ozATJ.5vL:eY&oAwNcU@H“sw.C|~A`` %ۢ5E=;iO"OZo:"^/pQC?M(~c%M#2kLooKٞ#6dsӓ8UL${FnK~΁dt4 Q#>(7HN^Kܯ2JV`h^#grWB,kaƵF?I  .$Ph!{ /   xi{*M\ d`kƙB,=GCPcA6e$O]m#،^6ώցa OtÎ}5|$;ءTȯG$F<M^J ikR?h92T`G:y;;kp}T.;h#?#&b"r^ԷAw35udŶtѮX=@j(E@I#7H)P_a ="*á >a!L7DrsyѾո5L+=mUΝ+$ .Y92^S~ONk*OlFs1-nIu/U&6"t7R;ܮtqҺXS4 cG?oiCw_U3+p߸(uG9jL 4 @_錿aM ][ySW3ux"܏kVh# *nV >W?&R$&>i@Eh~Tb4 qBBfI*踻ۛv)XرMո^-*Bp/; "޿ @-ȫA8j%46s1!קf$8UjtNۃhe^R}EXW`] 3PZcLJ Eo3R} [b Ր:{{qb݇ڍJ|=  5U\ZF ̃]s3Eo6ӂ i[- V7/M,N#;ط3Nĝʪc-]?F{YHL?CM VGs"Pv*_Q 3-o  ڇb .m76Nz ]TMq9]ju`: @U!hD9*&۾,8Z.>r',-ݍ8yks)AV3Iz'z0UCK'3Wb FN|N׉R,|cX;aft~Sl}kI]s\F F(]NlO) g`]3쮋ij.à}c^;Qcjf 1Gn{FO` ([l|#XH|+"+&f"%)DB"7 %l,הWSʦ{^Gӏn ,0'դo|?"b,%`Hc W,P_\ Ɂu|A&9{qS0=mϊ|^[[7śFSEJ|9l3}waAEbuwT#ѿCkF}EW\ rTdo-& f-o 1“OyO Oaćז8VԦy~<)xj5Ij- OvL&P<15 fM4=^ٛh씤~E'}嬢X R @f]4*v#wFC=8f|paȀ `\磆QoDC ^aF(VA_`+YoY5T.UI5sx8Þn {.LAHIgb&o-reQj|OxvڙbCK~uvZ<!{P6Q< /i}h?fdL;9;Cc'x=gGI`]sx}3:"Ē\*;aӌsnߝtdL$w^+ү0V IޑHnsc`~B D|On./œC^ld>^WY=p׆d3I6G:((:"φ?_!];t'Y~c~sr5 @ϳ: V`,t)a- y)TzՃYbt\&e{7.N6@/R6ax8.>﯉`ҫ=bq$#Xq^;<#m$Rǵ6DҢSWX6QAIޓbӌx420^ڝ3%p;_e'_!)0P\Xjܤ`Vz*QBnjZkoep%|ȫ&~$TYQGƴym=w(k<͉ D-2R9m*ȳkep(6OU(Ԅ&s@cכ_ F$ê n /-̯AB)/&6EьwN01d.IS%sG/USA[>B .°1tG$nxjBx-$UU dJveEtrFOmSPp&|]8yk51>e$B4EbDZt=RoK}k(4b'%"PALc.u(Dؐ\:_GjMl4L90Sg,}+*[BuQ:Bضp*qT7B>"$wF:agQxO>R2G .d(\m#> O39#k ŃyZ uoq+DcD)u^vSPǜ)ća5x+8V~>Sj+p7.>N֔<ζ"#Fo1U$a۬= -$P9IDkfp.vS"=Pbjx\KwښtkP9γٌqPw>auh*7mV-mY dz =gxׁ5&{iTA[}o+V)HB`C@(BX/#'FHr\.:Nf2fYoMwݫg+\jk]xP($dga*oոP}t/Gd;NL]0t bWv>KF]#)@ӕw~/JJҙR0{ KݝsJ=h)+q',1%)v_'7դ1˨Y\(F+a( 4!_ ]".)=!PHŨ/瘡$X}mN剾diq&Qα '^M.n |=s5Yid?_R*:kWn3(6x-½{42GP.+ʮv6EPPfsUPo+*IK?-zӏ҃Wb"S)BK"'8H"DQH}ǩF PnuAaI:u Q]3ȴ2sE}'r%؃k!5{(r Wdq(wm&F3j#{KC(t%auԏJ-IJäKE+vuz7PU*eݍkfzu@plQ$MhHz3^f?M>2bX^h7h? ,FcՑ(DzYj6{->> 'ޕQ02ɑN$gj>v2 &PŦ ߻ F¼09JE/˭5.Hr320 qv|1RgVҰ7>y6 #o:G@Rf4xGDT>p&hWPOpGa&ՙl+^qtY%+Is- ] 4` %ishX@kxokn$:r2C`r[Zuo` 2NDC#X4DMW82"@qȈ׆XF{y [ݧE^C㝦J_2og+qQϳFap/X znþz:&)}Q 4Ih ^ս;o2#qʨ-2m'N(d]Q,G%Pk25'w,Ah N:S1#)zvk c($lF$oSʩy]Kjo($P~ӱJo1: |uv9N#ݫ#q܀>9#LocAr'qsw z eMmVĩ}gઽ׊PS`_ELݧگG cx9Tq|qE9p@^K2%(= PzXU'jnHKtz$*3DD`۬CP]1q΅/R,E  ̴G(!'П#%LIN 3zt-S/SlY,qk[=AexhSʥӝEk!Zn35Rӱjߔ).ѧ&Vs'D7X7 }|]0˧3=ԝm,oGӤQo;rX:NEbb,Hp$004mgk Fh7I\(4ÐDn+>Ņ4jkd*Bڮ\vxKZb.i@{@X^yL1y1BeJ];fzr (6پPp_ۛ= \&2ɢ2]=ֳ,ÃjW`L_"y]׮rj8/ i!ynM{J<1y?) ^1pcGeұ@YdccHـ;Eo^WF/W+cneʴVDq5'. )]2qLLt&M=e^ls @{J2R&!& -OO.1AZ6HGឩTmgQ-_~ӷژyW{: *V-SrZ#,}[X'\_uo 2X+\.I˒5udMj}_:A9ct^TJMNr J X67ėN!!7e,Q|[xX?gzw0T.V+c.^帻î%L1/>R|ʪT+]k5ޑ<iŹlC\H.pȉFUՕ\kV4qIȇab?LH=ĘZ%iQa~c+ Gـw@oB:ٝ;_Ш-E'tT}/tǙ**jZH@mDea@sAvKҐ i=&vx'*w-5mqOVH=ݵq}ƗH"\D|i=kMZ$@*nhbBHUA {=0D"[kBO o}` --)$d1/ NY4$oqO搲_* ,u8u~?ƑHrMX^)<()c;JKgtzb c#C5ѣU?|5\#*f.G5z*Ik1Nϡr†Pj#3n+YO!2p6a(csv yFúFG EI^B ۃTvTc$M{tYٮ:̓O"E8h4&=O `cJ/:5s%+"IJPMw+EZ'M]WFb`- 7fd pN/CJU'65jL 2¼V[ Íք b+qoH*%i-*l7R;4*Y`8oz^t|>e%@B>{R}43+S0(VnR vۈbxW̄?nI{ݹ:ZE:/Lz߉ãxe6/U>h@<Ù%t LĖ>t>-_nݛuT_}J~Zjk2%!^ Kݜ/usp-kǷ=ѕ=Cyd^7$`V9B?'3 ^&@Tсk\6Ϝ> @א} 5dzZ@cKjP׃Y}70~cQp ]`jmmCC5;o7u2(}!>x~m"GǸx4N(uL8X)u S6s@y4u1N'8[F\W/ᄏiOD) p(Т֨.H ypȨY6TEҫܷk2)W^k?&D L$ʏpk[? c>ߕaaT3L W(o`IYY~X)ӣ|AX| 0Ō){׌XlnZT*`Maщ`K+WiiVb9OA_|(ƞC6j2cR;0]X0}*Ѕ|F+%6M1,dr>@4Rm`'6&'Uz`qitcj`Zt]|WD\QީU2 RC_MWnXѓMh ='G\Z94H0,l}=e 盍uȿpZ(ƕxũd.zBEPY( و(:>TDks,`mVlu8ĥ&kĄAiЦ.}7{ d}a+%:ݜ"!?#u˖ȫ ",cFwCM/VH|xZ^kӺ+»`-ym%Jf^մ5czeH=w A鯡ge3w󞷛Z?ƗHN 򢓙wPǤ,{Ďc fc |$QvOL<>rRUn6Qg@UiHB"igdÒyw%A}q4ʸCʗUHx=[Y+:-U=U(2^-4~B*}'Ɖ PGϨIf_ޟP"psZǣygB4f ^zwMWd9K_XbK! MհpgVJ" KF+O0)܍2|W-^w i/fޛWg/OiO4ȋ{ mr)v UQ$1.lx}/Sʇ< VDbK/? wq0;Q{wb[7ˈA$ x}hN.a Gy-rVsөjZ\d _OŒ`= \wHTv`5{7lAs E:`d)(%He8$}(z5b.eMC 9L"l@!cCP<n8HBvJTO >cRLLi't1`暵np>PF"DJKsID;3^0yRz.FsF?۬OJ=Sos7rOG|&Dxl~$h9P+:֐Vn- c-QFW8@P.v+EH DE%d$-E/ #tEMܸ=AЫ҇Wf>3+؞Ÿ*|T1Y9ÿ~VR076=UеEc.c!:='|Oz.e@(Q(8 >KXxĸڭ4 i>S(.-tJz'L6gfR Pk-LW~VV4 ؽ`r]nd'Jd㈒?ig% Wk)/1be&7 9sKpڎuG簬Ş >J ΣQHoevmJcH4_U- $BV&)ӸE$`˨Wztr<1BU9ۏIZiQq}L`%:$P1<ȂPa8V ;* &cW_: OjYCbFF?ͱ6/jC1}r#J(rJ1V<]㣏t  1{Q6Z>=먿q Y~PO;PwBjMEBYW夲laVCBIv3E̒{KKexG댩Q9KzfjA{u ۋOH\2:)'wEXޟ<$z;kI s+OvhJG>2lmQ'v9$ʠ?e68-[^3˨n])Fu#:p DvzDɝeKc]4Z?ã"I߹9 [)Χ Ѐ0`0Z>91H: '.b#\˒DUu⡂twWQ/{3)E -7@ky/_.0T=/Rz?!Xةa?°u0x6VzG*9ok4z_W Gf\"z+{csFLD2\05 <xk|Zr֍w6i~iBgWeeL'٤ʦ"€qszS;VOe ?ڙe!Z\qHQ+L Qޠ@;Zv#c$֛:AT 4߾C+[Rެ Z`k u{3xD[8ɵ魏;"r_]cЇ'4b||cq#裎[t8#/5 >A Ҭ;j+q}NGL.`#n5.$(?-FU}ȣȄuqOym%#F{M#2is*5K(f*׊+)H o^"vWXwrb3@1s 2P7XW[.݄K|񗞵9q/MyqU{q$!3Ca6~z^ IRz8lPXZD+(1F0ي"meI78'[~$[ )xhY/M~%{C=#NzZk 164*w?zq?L3O:~||7ݏ;='.?Mf'Db2' nlNT;,s)Gr -H1i!3"oqRܐY}]9~ 0qYx\z:aC# ܙPK# -B_uZV1*Di#\ifc[#RS#LHxb]B)>G\I>UKJ+zh*.0W,}fގMA}o9ghA81IǼTTR 0Gw\ZN; xA{#s(a"/N+ y} AgĪ>WǶ;9x^23/S_Ijyh _<(ӯ-Zeu(69f3Pl4eg\U8xӛQuw1 D2#8Tmk1Z~oaW22l-t> (_= x(d9{ejdT-z| ̨ÀdzE4X _q9T8eDa Q0]nҀt5Bc7Oq]UdOJ<}D1Dn Q"3ͳ9+k.B ЌƋq(^aѢ`X| ĞoRu}mnw=|0C^W[0}qHd*Սs3F HB>aR/%|C%ǵAXJ1",h6p B]S1srɰ^7bB`wԳfϚj7LWǧհ9erp?Y`V1/l/d;;g"xq2ވAdWtD 5km$/A ?(d9CAajt"Sik6 lӅ>ʵZB`nUV0@r2+![Nt&>VirY _^3I#RJ0vFf^ ;8}rymv?F`!ub "D$v!^O|5^wM헀QNY`NGI2+␒FjfDR>w.8,hʨuhIlT0@Jֵl٣8U,f0<1K*Η7/*>7Aş'i0z&>Kb` BVRxk O[=T㇯$8!yb?\I)C mi2aaק&re:ԋqO.%Muj}75M1Qb2K{U2l:}5X GS][e#uJm^H|>V<)8(㸧/>4.J\B!{)n?4nɹV"0 [Ulx4r*4-nСzpz+告5&))*Nw=nxO2pbFq18Ƨi5h3Pb=xj=a sIBQM!F4n?IHO0FT ,?iusg˅7i 0NۛgRMμ 9fG7{-Sib,8?f *V+ǣ7g_9nTz c@c^ + NQmw; h[ԮϸkAD5"),P\Tx## O<=OojUv q8됿0z}m-c0 3b 5y#zLW5y lD`‘؏6Yyۉ.p !;6A`NX5 Qf>4p Zro|[*hcrOK&e5u|JH{wP.l g\΢e6b7Ĭ܎mg.#NBt@3\iqSBA.W̎N{3@Be5~ K`W4U΂0;%,@ 𪰺~C*NfoOl0k12B1E&sy]Cy?I}E|y7eE98Ú"NJdJ`8m`$YӘ<L µM"unn=TP9<) xQMхLu@%;m7MU& LB>N{sT@pߨ`zīW(MƤ 5RBBÈK `\_h=q)\d@s>!șjddB4 Od pxNl6y.b I>WȽz$ؼ YZ