python3-sss-2.9.1-4.el9_3> M Mv ĉJ4!!%joLne)Ip-Bm5 ']eK4^releng@rockylinux.org p-Bm5 ']׋S9l]V,A-wIEP޿C@f: !"C M{RUA܊R;Ib eXRB H$oȞ"R.kA}bX&Ɏ-_&'Nf"خY@7ގI\x$ 5<o|YG?ӜU)#QOPh\B߂,'+x)MۨmEf|Sx$IZ t{7@Lj}w !Κ !D8.Uy/n]_tojL<4)}΅n4l=[ڷ0V\n!%Vړ':%b@ֻߵ@a/1 f ok)  mfߗW _!ć:120<Q&59Vα<(#[譋` i+7UŪA j}#<0ac2d0efaff434087da0da321d49935ae9a625ee9847961f03ecdb68070d2f3cc16d0aafb839e29b6ab26c6105bcaf75740a3721s=X??VpH>@9?9d  6\` :@HX ` h x  0L\%,%%(8 9x: B4G5H5I5$X5(Y58Z5p[5x\5]5^5b6:d7e7f7l7t7u7v7w8lx8|y8!9999\9`Cpython3-sss2.9.14.el9_3Python3 bindings for sssdProvides python3 module for manipulating users, groups, and nested groups in SSSD when using id_provider = local in /etc/sssd/sssd.conf. Also provides several other useful python3 bindings: * function for retrieving list of groups user belongs to. * class for obfuscation of passwordseK.epb-368af7cc-4c48-4f09-835e-1b094002b342-b-aarch64vRocky Linux 9.3Rocky Enterprise Software FoundationLGPLv3+Rocky Linux Build System (Peridot) Unspecifiedhttps://github.com/SSSD/sssd/linuxaarch646@AAeK.eK.eK.eK.d62c32098ab03ce68f41bb59855fffa46a71e4f4c0bdd6fbff69fc463829962d../../../../usr/lib64/python3.9/site-packages/pysss.sorootrootrootrootrootrootrootrootsssd-2.9.1-4.el9_3.src.rpmpython-ssspython3-ssspython3-sss(aarch-64)python3.9-sss@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@    @ld-linux-aarch64.so.1()(64bit)ld-linux-aarch64.so.1(GLIBC_2.17)(64bit)libbasicobjects.so.0()(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.17)(64bit)libcollection.so.4()(64bit)libcrypt.so.2()(64bit)libcrypto.so.3()(64bit)libdbus-1.so.3()(64bit)libdhash.so.1()(64bit)libini_config.so.5()(64bit)libldb.so.2()(64bit)libldb.so.2(LDB_0.9.10)(64bit)libm.so.6()(64bit)libpcre2-8.so.0()(64bit)libpopt.so.0()(64bit)libpopt.so.0(LIBPOPT_0)(64bit)libref_array.so.1()(64bit)libselinux.so.1()(64bit)libsss_cert.so()(64bit)libsss_child.so()(64bit)libsss_crypt.so()(64bit)libsss_debug.so()(64bit)libsss_util.so()(64bit)libsystemd.so.0()(64bit)libtalloc.so.2()(64bit)libtalloc.so.2(TALLOC_2.0.2)(64bit)libtdb.so.1()(64bit)libtevent.so.0()(64bit)libunistring.so.2()(64bit)python(abi)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsZstd)rtld(GNU_HASH)sssd-common3.93.0.4-14.6.0-14.0-15.4.18-12.9.1-4.el9_34.16.1.3e@eRdd@ddu@doMdbc<@c]cdcc@bb'b&bI@b{@b_aZ@a@a@Eduardo Lima (Etrunko) - 2.9.1-4Eduardo Lima (Etrunko) - 2.9.1-3Alexey Tikhonov - 2.9.1-2Alexey Tikhonov - 2.9.1-1Alexey Tikhonov - 2.9.0-5Alexey Tikhonov - 2.9.0-4Alexey Tikhonov - 2.9.0-3Alexey Tikhonov - 2.9.0-1Alexey Tikhonov - 2.8.2-2Alexey Tikhonov - 2.8.2-1Alexey Tikhonov - 2.8.1-1Alexey Tikhonov - 2.7.3-4Alexey Tikhonov - 2.7.3-3Alexey Tikhonov - 2.7.3-2Alexey Tikhonov - 2.7.3-1Alexey Tikhonov - 2.7.1-2Alexey Tikhonov - 2.7.1-1Alexey Tikhonov - 2.7.0-2Alexey Tikhonov - 2.7.0-1Alexey Tikhonov - 2.6.2-2Alexey Tikhonov - 2.6.2-1Alexey Tikhonov - 2.6.1-1- Related: rhbz#2236236 - dbus and crond getting terminated with SIGBUS in sss_client code Handle all invalidations consistently Supply a valid pointer to `sss_mmap_cache_validate_or_reinit()`, not a pointer to a local var- Resolves: rhbz#2236236 - dbus and crond getting terminated with SIGBUS in sss_client code - Resolves: rhbz#2237301 - SSSD runs multiples lookup search for each NFS request (SBUS req chaining stopped working in sssd-2.7)- Resolves: rhbz#2218858 - [sssd] SSSD enters failed state after heavy load in the system- Resolves: rhbz#2167837 - Rebase SSSD for RHEL 9.3 - Resolves: rhbz#2196816 - [RHEL9] [sssd] User lookup on IPA client fails with 's2n get_fqlist request failed' - Resolves: rhbz#2162552 - sssd client caches old data after removing netgroup member on IDM - Resolves: rhbz#2189542 - [sssd] RHEL 9.3 Tier 0 Localization - Resolves: rhbz#2133854 - [RHEL9] In some cases when `sdap_add_incomplete_groups()` is called with `ignore_group_members = true`, groups should be treated as complete - Resolves: rhbz#1765354 - [RFE] - Show password expiration warning when IdM users login with SSH keys- Related: rhbz#2190415 - Rebase Samba to the latest 4.18.x release Rebuild against rebased Samba libs.- Related: rhbz#2190415 - Rebase Samba to the latest 4.18.x release Rebuild against rebased Samba libs.- Resolves: rhbz#2167837 - Rebase SSSD for RHEL 9.3- Resolves: rhbz#2167837 - Rebase SSSD for RHEL 9.3 - Resolves: rhbz#1765354 - [RFE] - Show password expiration warning when IdM users login with SSH keys - Resolves: rhbz#1913839 - filter_groups doesn't filter GID from 'id' output: AD + 'ldap_id_mapping = True' corner case - Resolves: rhbz#2100789 - [Improvement] sssctl config-check command does not show an error when we don't have id_provider in the domain section - Resolves: rhbz#2152177 - [RFE] Add support for ldapi:// URLs - Resolves: rhbz#2164852 - man page entry should make clear that a nested group needs a name - Resolves: rhbz#2166627 - Improvement: sss_client: add 'getsidbyusername()' and 'getsidbygroupname()' and corresponding python bindings - Resolves: rhbz#2166943 - kinit switches KCM away from the newly issued ticket - Resolves: rhbz#2167728 - [sssd] Auth fails if client cannot speak to forest root domain (ldap_sasl_interactive_bind_s failed)- Resolves: rhbz#2160001 - Reference to 'sssd-ldap-attributes' man page is missing in 'sssd-ldap', etc man pages - Resolves: rhbz#2143159 - automount killed by SIGSEGV- Resolves: rhbz#2127510 - Rebase SSSD for RHEL 9.2 - Resolves: rhbz#1608496 - sssd failing to register dynamic DNS addresses against an AD server due to unnecessary DNS search - Resolves: rhbz#2110091 - SSSD doesn't handle changes in 'resolv.conf' properly (when started right before network service) - Resolves: rhbz#2136791 - Lower the severity of the log message for SSSD so that it is not shown at the default debug level. - Resolves: rhbz#2139684 - [sssd] RHEL 9.2 Tier 0 Localization - Resolves: rhbz#2139837 - Analyzer: Optimize and remove duplicate messages in verbose list - Resolves: rhbz#2142794 - SSSD: `sssctl analyze` command shouldn't require 'root' privileged - Resolves: rhbz#2144893 - changing password with ldap_password_policy = shadow does not take effect immediately - Resolves: rhbz#2148737 - UPN check cannot be disabled explicitly but requires krb5_validate = false' as a work-around- Resolves: rhbz#2127510 - Rebase SSSD for RHEL 9.2 - Resolves: rhbz#1507035 - [RFE] SSSD does not support to change the user’s password when option ldap_pwd_policy equals to shadow in sssd.conf file - Resolves: rhbz#1766490 - Use negative cache better and domain checks for lookup by SIDs - Resolves: rhbz#1964121 - RFE: Add an option to sssd config to convert home directories to lowercase (or add a new template for the 'override_homedir' option) - Resolves: rhbz#2074307 - reduce debug level in case well_known_sid_to_name() fails - Resolves: rhbz#2096031 - SSSD: sdap_handle_id_collision_for_incomplete_groups debug message missing a new line - Resolves: rhbz#2103325 - Supported AD group types should be explained in the docs - Resolves: rhbz#2111388 - authenticating against external IdP services okta (native app) with OAuth client secret failed - Resolves: rhbz#2115171 - SSSD: duplicate dns_resolver_* option in man sssd.conf - Resolves: rhbz#2127492 - sssd timezone issues sudonotafter - Resolves: rhbz#2128840 - [RFE] provide dbus method to find users by attr - Resolves: rhbz#2128883 - Cannot SSH with AD user to ipa-client (`krb5_validate` and `pac_check` settings conflict) - Resolves: rhbz#2136791 - Lower the severity of the log message for SSSD so that it is not shown at the default debug level. - Resolves: rhbz#2139837 - Analyzer: Optimize and remove duplicate messages in verbose list- Related: rhbz#1978119 - [Improvement] avoid interlocking among threads that use `libsss_nss_idmap` API (or other sss_client libs)- Resolves: rhbz#2116389 - rpc.gssd crash when access a same file on krb5 nfs mount with multiple uids simultaneously since sssd-2.7.3-2.el9 - Resolves: rhbz#2119373 - sssctl analyze --logdir option requires sssd to be configured - Resolves: rhbz#2120657 - Incorrect request ID tracking from responder to backend- Resolves: rhbz#2106660 - [regression] sssd goes offline with forced ldaps configuration - Resolves: rhbz#2109451 - virsh command will hang after the host run several auto test cases - Resolves: rhbz#2098654 - cache_req_data_set_hybrid_lookup: cache_req_data should never be NULL - Resolves: rhbz#2106685 - [regression] sssctl analyze fails to parse PAM related sssd logs- Resolves: rhbz#2069376 - Rebase SSSD for RHEL 9.1 - Resolves: rhbz#1936551 - [Improvement] Provide user feedback when login fails due to blocked PIN - Resolves: rhbz#1978119 - [Improvement] avoid interlocking among threads that use `libsss_nss_idmap` API (or other sss_client libs) - Resolves: rhbz#2062665 - [sssd] RHEL 9.1 Tier 0 Localization- Resolves: rhbz#2073095 - Harden kerberos ticket validation (additional patch) - Resolves: rhbz#2061795 - Unable to lookup AD user if the AD group contains '@' symbol (additional patch)- Resolves: rhbz#2069376 - Rebase SSSD for RHEL 9.1 - Resolves: rhbz#1893192 - sdap_nested_group_deref_direct_process() triggers internal watchdog for large data sets - Resolves: rhbz#1927553 - [Improvement] add SSSD support for more than one CRL PEM file name with parameters certificate_verification and crl_file - Resolves: rhbz#2089216 - pam_sss_gss ceased to work after upgrade to 8.6 - Resolves: rhbz#2090776 - Add idp authentication indicator in man page of sssd.conf - Resolves: rhbz#1927195 - sssd runs out of proxy child slots and doesn't clear the counter for Active requests - Resolves: rhbz#2073095 - Harden kerberos ticket validation - Resolves: rhbz#2082455 - 'getent hosts' not return hosts if they have more than one CN in LDAP - Resolves: rhbz#2087581 - Regression "Missing internal domain data." when setting ad_domain to incorrect- Resolves: rhbz#2065693 - [RHEL9] Ship new sub-package called sssd-idp into sssd- Resolves: rhbz#2069376 - Rebase SSSD for RHEL 9.1 - Resolves: rhbz#2072640 - sssd_nss exiting (due to missing 'sssd' local user) making SSSD service to restart in a loop - Resolves: rhbz#2070189 - sssd error triggers backtrace : [write_krb5info_file_from_fo_server] (0x0020): [RID#73501] There is no server that can be written into kdc info file. - Resolves: rhbz#2070138 - SSSD authenticating to LDAP with obfuscated password produces Invalid authtoken type message causing sssd_be to go offline (cross inter_ference of different provider plugins options) - Resolves: rhbz#2065693 - [RHEL9] Ship new sub-package called sssd-idp into sssd - Resolves: rhbz#2065098 - Use right sdap_domain in ad_domain_info_send - Resolves: rhbz#2062716 - [Improvement] Add user and group version of sss_nss_getorigbyname() - Resolves: rhbz#2061795 - Unable to lookup AD user if the AD group contains '@' symbol - Resolves: rhbz#2056482 - [RFE] Add sssd internal krb5 plugin for authentication against external IdP via OAuth2 - Resolves: rhbz#1937895 - SSSD update prompts for smartcard pin twice - After update to 7.9 - Resolves: rhbz#1925559 - [RFE] Implement time logging for the LDAP queries and warning of high queries time - Resolves: rhbz#1915564 - sssd does not enforce smartcard auth for kde screen locker - Resolves: rhbz#1859751 - [RFE] Allow SSSD to use anonymous pkinit for FAST - Resolves: rhbz#1749279 - 2FA prompting setting ineffective - Resolves: rhbz#1661055 - sssd fails GPO-based access if AD have setup with Japanese language - Resolves: rhbz#1245367 - [RFE] Implement memory cache for SID requests to improve performance- Resolves: rhbz#2035244 - AD Domain in the AD Forest Missing after sssd latest update - Resolves: rhbz#2041560 - sssd does not use kerberos port that is set.- Resolves: rhbz#2011224 - Rebase SSSD for RHEL 9.0-GA - Resolves: rhbz#2017390 - [sssd] RHEL 9.0 GA Tier 0 Localization - Resolves: rhbz#2013263 - [RHEL9] Add ability to parse child log files - Resolves: rhbz#2013262 - [RHEL9] Add tevent chain ID logic into responders - Resolves: rhbz#1992432 - Add client certificate validation D-Bus API - Resolves: rhbz#1940517 - [RFE] Health and Support Analyzer: Add sssctl sub-command to select and display a single request from the logs- Resolves: rhbz#2011224 - Rebase SSSD for RHEL 9.0-GA - Resolves: rhbz#1966201 - sssd: incorrect checks on length values during packet decoding in unpack_authtok() - Resolves: rhbz#977803 - incorrect checks of `strto*()` string to number convertion functions - Resolves: rhbz#1992432 - Add client certificate validation D-Bus API - Resolves: rhbz#1992973 - Lookup with fully-qualified name does not work with 'cache_first = True' - Resolves: rhbz#1996151 - Add support for CKM_RSA_PKCS in smart card authentication. - Resolves: rhbz#1998459 - 2.5.x based SSSD adds more AD domains than it should based on the configuration file (not trusted and from a different forest) - Resolves: rhbz#2000476 - disabled root ad domain causes subdomains to be marked offline - Resolves: rhbz#2014249 - Consistency in defaults between OpenSSH and SSSD - Resolves: rhbz#2029419 - 'exclude_groups' option provided in SSSD for session recording (tlog) doesn't work as expectedpython-ssspython39-sss2.9.1-4.el9_32.9.1-4.el9_32.9.1-4.el9_32.9.1-4.el9_3@2.9.1-4.el9_32.9.1-4.el9_3.build-id246d293c338ae6cf03cb6de5f67aa6fecb35120fpysss.so/usr/lib//usr/lib/.build-id//usr/lib/.build-id/24//usr/lib64/python3.9/site-packages/-O2 -flto=auto -ffat-lto-objects -fexceptions -g -grecord-gcc-switches -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -fstack-protector-strong -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1 -fasynchronous-unwind-tables -fstack-clash-protectioncpiozstd19aarch64-redhat-linux-gnudirectoryELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=246d293c338ae6cf03cb6de5f67aa6fecb35120f, stripped ORRRR RRRRRRRR RRRRRRRRR RRRRR RRR RRR"utf-81f7c01f2cd398891681608fae924681872540cdf9761267050a01224b5b46889bbb808772095d7bc61e24b84104099b641cb8fe35794a706a7813a90b072e598?(/hmpOfm?Q})>N#1+ܦl%P Y|]ÇrX_Tr &;2"nȏ@D՘ua 1E`E /ZVM(x1Q`:AsH7GLARV뫁7#.Zwm B>VĥP~5Ii=> ɴֲ:ܡ} \4+3=TGʵɪQ iX Z@բ ڀ:S쏂8F |BKXX '^t%xŶC+2:ɚQ:슫[@5IQJ8uRQ0P'-NyMU_&'KtJH@@b(72@V堂(7Pih: ~2} ?Ix!8G N*7_'H Ho5=lE|Әa a`)|18[ESi2p\&:6=h >2øMQB\Z@󒚈^H痿 ˋ&&h맜έo>š]^PK)R*Ufm얒Uqɶxצ.lvK=vR޷tD}jN*t{)6[2ęk g8KV~zk*;P5J\36Frۮ=ڕڷ[V~֦jTvSVū6NBXt{R[\ZeX [ V7ԊfBj\Vj{nnmWܭXBZj)7B.^66:q{\0n2v[WԮjҲmN_[-jgPܾƽ\+0޶l늏mZPb(ث k۽ gRE]Lp{RlkzM(=R6ʸo)zvKV2JfRcP;>+ ^̳0WR 6vYgadTb\+nf}VofZ*5BT۬ijk7jw*ij P(ޕ7T-BW-Ty.~%BqOu‹IUӔXʼFgaCxiq{ox+(>.^ y; HFƀw}O_|xJ-'|c}bDA@m2//dGṼ=*x,7Av+߾GqH V" س=O} br6#{Rr<LQ+>z\$^ϵʔ1_[% +t(,l̆hˋTO,/J6/^#E '򡩁DF3Qa\=; 8F>hp]P,wz֧N;= 'E}] NÌz\"0=V!F*a`Չ'|,E9IEH|Lw_ȧG/!OsB3H/p$V 8|"m@kU3_}uM#LۧA>Vt}rWU:@3R^u#^ޤkhpb0u)]_DP | G׈rQ8 ?EJ PF*Uv1=W%/h z\?FQea~{`>fntf>9'tK@/z$t_ swԋި,0z e6D/!E r[Kb ><' ͻD"?30ܧ; b4â1BoR!?1"p$LK`/\Om 9)Vr["K: `q˟<$0|-k2,A"@(kx{]D=;]g 9z=L!$'e|_h![şVZɺ zb"DtEm$z;-mނpNO B,Wr8%_|ipzgWMq҅sAs>s_Ԙ\͢ EU{ɀ ?sjn|:_(N BՏ>VBtiMU ?m+3pJ>DbZy$yFcFx"a=V>9\fn#VBkb(3:DZUڽ%y0_嗨|ϞH!*h`= NpA =%/V2|'&f<B.&)GzI]>Ƌ%Jqψb0&C`jso^_S|X~vu iS|z1 Z}U~u{|]/o@x-,FGB3,F~pVޔyI]ϐ2w ?OO?9,`Ϸn ?=v=v1?bg4rF{/%s S P5Yc >aVfJO΁cCw=5"3zW}'-9AExn(BP7z \܇jZā!B>Y(a1PWn~F]yƅ7b_",=uIOmʾ9*\;d ,ʄ s? cgf8'h: 1HlZ!g{[+ۦJX'tn^n}ەPSkni^* :z>Szkc_UjZ.ZZzgY{{gX]N$KvӴ4Ouv̦oZ74Z,MO-}uLv۽e轼P|Y]*m8şSPlZins~Hڊ[եjuayڮs]MޮTg2}3eU-n;Bp(ťN۬r*>$U;M,-]BfBKT`uX,YZEfzv}e}uAƘN*r,뉢%|2 %R*^OOQRKkǐ:QA1U;޸Vٶ+.@DWܥ*S7IbpV^4Ӵuj:ځ}#Z/nVKR4.tb0.~K۴ *6Ni\ky])M-}Ղi5H+mWնXZZbAceZoN&+%z#iܾiOMN{EeEvoJpYz7mY;VYX]F{iN2%%:Jtwko,Nؒm+HJMVwU+Xi #c[bL%/ `N2(˹Qd>"OTT=D9 1^í vzN^s,(E~ RҤz lr p͛LƱܽQI|w_xl ?GO_ I Ò.u6t v'퀿[8jSbdyS-I$ #90U3^Uut-S0+CLk( )PPẛ NRo=Qr0U>& lL)17IA1|D歩T@31S5'jWUEMOJ7Xy ܋Ӻsx+Hѩ>"'Fj"pK ڽr5oC4Dr'^a^I$5Kx= @-Q^JoO*d(S7Hqkop@[v5Z]Zԙ.i%[4vL #g/.k„k9C~ԑ4EWR@GW%=n7Kc?4Aoq]#O,ȧP O #a/`P$ƅNjc/& dh8aQ؉k DXqWLj1 0܀ q"?&g [B2\wAN '`xB3vT64HqQǧuN1 n &I=,^:D/Z4*5 ;5#*|7lbw軑[#bU@ldQ ^k}WT;8 sv >AQcj?[-?-HHU-MyR^ PTX@XFrtBE@(YZh3zSda؂ ЅewהX <9-RhHeAk:OO1]&S$mC .0 ME+1( &))0R{a3A13'ITP[L(K23}pbHƔG vF0g ƂK%%cLҊd fBEx#fI&qGcp T!,.TXyaa,xqD H#ֲ? |\ /kaB_bƔ+P~ ZJOJ*J_u:WhyOG4Fu\ࢼp^XD|M[t~:?p*i,j.~6ip ol6-E;530IMBl9a[2\qV ;0"%Kc4g-\!̢E,$(Hs ?4cD:܊ڰ: D;.=0&-u刜DH/&pY@X<=<vpae$$γY~/Z:4q8pa -B$g!q.YOYGsv#i4MgӒKV6CQ˷"8!C(ҽ]AfKq tI,n6AO4o:Q}j+ TO;7yG*NM!Q|Op iy]C〇>7j؄f">kpګ}=3}ì[.:qFRgςDž,-AM湱ն`3@gS d]f=:7>QsedEJͲo!ҹ:Vv;=+N(%A# їQ2H MP􏂻HX~p<ܵgYVFb)'q߯P~U @֏tF$+*|#Ʒ.(c7m9ҶY<˨F̅o 4NxCP yXp;e|g@G78ޞO5Z ̫ؒxi Ys_/Am, e,f+j]'5Uzb{CukacwX dQڶ_mC]ʷ|vwA So@}?%ۆY[uD !`p+XĘ'?) -̀HE}&8&3q/9Vif%, Nk5A:S(NIŵ8 *; x9XPOO0ƕc“e P ~ o"۶.zjGs.^HqD{r_u2a0"M|?x\MC8ah_ND1\V<(u1x;Rp'p /<[0C,Z9]-} C8{1_Y`I2`55,aGmGz,Ў<"bwV"4 ]ZRxYhf&/2 Qlb \mh8uv'DhlАȷ8>箔sj-\3i&5U|.s4Flc p{LD˺3-+א?M7⒙SvZ5;SAa!ۑB[S@t 6ۢjH7U?Xk.Vq6 psjj3)nYT|& {LqIzKs2̕x׈G}OQBj)Uz|rZ}q9xr>^Wɕܕz|(?6Df56@YtWR, \GVvf%vTI蔎rÁRcq2E-r5G1 _rTzpQ(bܶcy0 CuG$ɵ0D÷q|3Lrpڭ,679)j3 <(&-~&`$z1?F|z^"ۯ[#i$dIw >5^j6/[E52)U&aE!~%1)ØŐG c5L  FXç l_v\3k(-զ?]M.D w0F8:Ne^K -`V#3Ke9*" bBt?j!'%o*[?tUk,PPE LHCQmrQ>Qi?9M},vt̞_ٜFxM{5EN}LCTWخ`D9+ǧiN<~O1o\>|n8;fbxA/3 qd98>|b8޼/@M|wog˨ĵ,s#|d.wfbc|;y@5g6jrG /~N]y^0.} &x2I#7O{9dc1/8WWqu3=6mA9_Ξ{߱l =58ti%OH} V̽"ZJ*E^UPm&3Գ2[ď3?yjj?.a k$ӗy wto>Nӯ:H0=x(Íwפsw-6f1ңwT;#> j*@q@F' uaY}T紭n7`^ (tڦ]=@{}V¿Z>=glC4Ǝ}bƿ#,\Nm&pMA50쭱cEa7)r 0~Z70Oė4,Az|3|Sb:bx bX9q&ˁ{^=oE2/u`RMKI6U'okܝوыIJ8CCgSZi*;Y4WZ"rz*uL~e@qJ{D*?q`!xTu)Gk}6{d{ m~f~SF+s/XLBjú:rL1LvS} \i/ROT^gUkPf~-jvOtwM:8[#m|SADPH..!:׮>7ae03;ﴛJ{Gvlq+Q|w@vAV.hi#/o{KxmProFڿ%gFmEk)j7tF|=VDżpcD/&NgÓwXn~_012#}ָZㅏ5&[ѱ 7˹>yO}%y:'SުQ?x埿Va I,!qۋiQKCu{ri:Gq҉n>8[?NMqH4?yzf@_DjeX F=&|/_gZaee*MZq|F:w\=g aInr }wG`g_s۴˚EJ/x][=dx{K-RDM!V<3^<(C`tйOs5ڜ "B< ,_jyvq|64ܽ{8/ئL]}\Kzj'or)Q1zBt/,ڏjh7 'ֽ:=mp\&?UT@I^,o5k!?ާPTP/țzmPGԱ=Zj A-( ;t}]pcdg:KMFb+e[%Gz|i|'^|Ztt4wEuV^,~(yCP'ȯPI>BXy0 +6ѼQJR3dc+:Mg74@ʫ6ٜ;{EUb.yid1/d#ۚ/o:q*MTwR][3/?t8|Yε#/vIL-v Kù&3%|r._?}a (OVsJ-'|Y3),ʣCVѾPʼnSg|'5gi -i4* 0p{!Z891)ߔ7:J x< Bt5}_N72@-ī Fȥ17'BI,jZJ.m!bEOկ  m߾@Z2 Վ(].RZK1S6NBFh=$& vH%X>99u{-׸^? * 5r1w7:7l?Gfub}&t ==D* R?qPn+7$~1荊Bpr&lFa) hA!wa{/Zj-3cAYHGr2TP('EE''rfK]+TBqP"72(&YAB }TA#wtQ,dqH};H@BVdjTh CtT6#yDYTEQ@.yT1Q>vS "P"b(&#n[zɟPa -'K6r߮r"yˁvw-@ ?rB؛1~CuR':*V4apg܉7#o{ s^qd[yre潾1L(Sxp I>QKVj