grafana-selinux-9.2.10-16.el8_10 > 6 6_6 3!pQp)Tξ7]mtZ`fB ]mtZ`3\ޥ'S,(]kS?t Ɓ[,os[h^#Y,(\clæLH\v5r!+Ǖ^*d > }g_|VE$ӦI{z 7r)}E$-@rh8_ >Oe-qJ@>׈Resih)đ>N䍣|>uKתS3rfؚ.b 9C߮]R%bhoЇk.YpoݵI,bw &.1냀$zs99Lq֤~,v&L?w]JQզ}7B)2̷ZBs#ӎveǷh.4ЬnJ{{SLJ)],`bZ"-I&**q;@ gBH!e:BeɖL*{Us!P.2G"%GMJ.k edW+KoDj@* d(UǬP!wh~HR&0rfcNi@3?0b_-T`d sʑ8᪰k򋨐PK}TQi.rJ^;=jjIaN/xVf,% ) Q?U6l( 2pRMV -ȏJxhQ^i͵P:i@>p==?=d # Lx|  8 H X x @ Hh$t ( 8 =9 =:=>9@9G9H:I:8X:@Y:H\:l]:^:b;[d<e<f<l<t<u<v==`=d=j=Cgrafana-selinux9.2.1016.el8_10SELinux policy module supporting grafanaSELinux policy module supporting grafanaford1-prod-x86build004.svc.aws.rockylinux.orgcKojiRockyAGPLv3infrastructure@rockylinux.orgUnspecifiedhttps://grafana.orglinuxx86_64for selinuxvariant in mls targeted do /usr/sbin/semodule -s ${selinuxvariant} -i \ /usr/share/selinux/${selinuxvariant}/grafana.pp &> /dev/null || : done /sbin/restorecon -RvF /usr/sbin/grafana-* &> /dev/null || : /sbin/restorecon -RvF /etc/grafana &> /dev/null || : /sbin/restorecon -RvF /var/log/grafana &> /dev/null || : /sbin/restorecon -RvF /var/lib/grafana &> /dev/null || : /sbin/restorecon -RvF /usr/libexec/grafana-pcp &> /dev/null || : /usr/sbin/semanage port -a -t grafana_port_t -p tcp 3000 &> /dev/null || :if [ $1 -eq 0 ] ; then /usr/sbin/semanage port -d -p tcp 3000 &> /dev/null || : for selinuxvariant in mls targeted do /usr/sbin/semodule -s ${selinuxvariant} -r grafana &> /dev/null || : done /sbin/restorecon -RvF /usr/sbin/grafana-* &> /dev/null || : /sbin/restorecon -RvF /etc/grafana &> /dev/null || : /sbin/restorecon -RvF /var/log/grafana &> /dev/null || : /sbin/restorecon -RvF /var/lib/grafana &> /dev/null || : /sbin/restorecon -RvF /usr/libexec/grafana-pcp &> /dev/null || : fi m<e_=@^3^^V]]*]p]i]A]9\Q\\\\8\O\\\|\\B@\\\o@\mA@\f\\\Z@\Yz\T4\R@\Q\5@[u[]Sam Feifer 9.2.10-16Sam Feifer 9.2.10-15Sam Feifer 9.2.10-14Sam Feifer 9.2.10-12Stan Cox 9.2.10-6Stan Cox 9.2.10-5Stan Cox 9.2.10-4Stan Cox 9.2.10-3Jan Kurik 9.2.10-2Stan Cox 9.2.10-1Andreas Gerstmayr 7.5.15-4Andreas Gerstmayr 7.5.15-3Andreas Gerstmayr 7.5.15-2Andreas Gerstmayr 7.5.15-1Andreas Gerstmayr 7.5.11-2Andreas Gerstmayr 7.5.11-1Andreas Gerstmayr 7.5.10-1Andreas Gerstmayr 7.5.9-3Andreas Gerstmayr 7.5.9-2Andreas Gerstmayr 7.5.9-1Andreas Gerstmayr 7.5.8-1Andreas Gerstmayr 7.5.7-2Andreas Gerstmayr 7.5.7-1Andreas Gerstmayr 7.3.6-2Andreas Gerstmayr 7.3.6-1Andreas Gerstmayr 7.3.4-1Andreas Gerstmayr 6.7.4-3Andreas Gerstmayr 6.7.4-2Andreas Gerstmayr 6.7.4-1Andreas Gerstmayr 6.7.3-1Mark Goodwin 6.6.2-1Mark Goodwin 6.3.6-1Mark Goodwin 6.3.5-1Mark Goodwin 6.3.4-1Mark Goodwin 6.2.5-1Fedora Release Engineering - 6.2.2-2Mark Goodwin 6.2.2-1Mark Goodwin 6.2.1-1Mark Goodwin 6.2.0-1Mark Goodwin 6.1.6-2Mark Goodwin 6.1.6-1Mark Goodwin 6.1.4-1Mark Goodwin 6.1.3-1Mark Goodwin 6.1.0-1Mark Goodwin 6.0.2-1Mark Goodwin 6.0.1-3Mark Goodwin 6.0.1-2Mark Goodwin 6.0.1-1Mark Goodwin 5.4.3-11Mark Goodwin 5.4.3-10Xavier Bachelot 5.4.3-9Mark Goodwin 5.4.3-8Mark Goodwin 5.4.3-7Mark Goodwin 5.4.3-6Mark Goodwin 5.4.3-5Mark Goodwin 5.4.3-4Mark Goodwin 5.4.3-3Mark Goodwin 5.4.3-2Mark Goodwin 5.4.2-1Mark Goodwin 5.3.1-1Mark Goodwin 5.2.5-1- Check OrdID is correct before deleting snapshot - fix CVE-2024-1313 - fix CVE-2024-1394- Resolves RHEL-23466 - Resolves RHEL-21027 - Allows for gid to be 0 - Allows for postgreSQL datasource in selinux policy- Resolves RHEL-19596 - Fixes coredump issue introduced by selinux - Patches out call to panic when trying to walk "/" directory - Fixes postgresql AVC denial- Resolves RHEL-7503 - Adds a selinux policy for grafana - Resolves RHEL-12650 - fix CVE-2023-39325 CVE-2023-44487 rapid stream resets can cause excessive work- Add /usr/share/grafana to systemd-sysusers --replace- resolve CVE-2023-3128 grafana: account takeover possible when using Azure AD OAuth- bumps exporter-toolkit to v0.7.3, sanitize-url@npm to 6.0.2, skip problematic s390 tests.- Use systemd-sysusers --replace- Use systemd-sysusers instead of sysusers_create_compat, which is not available in RHEL-8- Update to 9.2.10- resolve CVE-2022-39229 grafana: using email as a username can block other users from signing in - resolve CVE-2022-27664 golang: net/http: handle server errors after sending GOAWAY - resolve CVE-2022-41715 golang: regexp/syntax: limit memory used by parsing regexps - resolve CVE-2022-2880 golang: net/http/httputil: ReverseProxy should not forward unparseable query parameters - run integration tests in check phase - update FIPS patch with latest changes in Go packaging- resolve CVE-2022-1962 golang: go/parser: stack exhaustion in all Parse* functions - resolve CVE-2022-1705 golang: net/http: improper sanitization of Transfer-Encoding header - resolve CVE-2022-32148 golang: net/http/httputil: NewSingleHostReverseProxy - omit X-Forwarded-For not working - resolve CVE-2022-30631 golang: compress/gzip: stack exhaustion in Reader.Read - resolve CVE-2022-30630 golang: io/fs: stack exhaustion in Glob - resolve CVE-2022-30632 golang: path/filepath: stack exhaustion in Glob - resolve CVE-2022-30635 golang: encoding/gob: stack exhaustion in Decoder.Decode - resolve CVE-2022-28131 golang: encoding/xml: stack exhaustion in Decoder.Skip - resolve CVE-2022-30633 golang: encoding/xml: stack exhaustion in Unmarshal- resolve CVE-2022-31107 grafana: OAuth account takeover- update to 7.5.15 tagged upstream community sources, see CHANGELOG - resolve CVE-2022-21673 grafana: Forward OAuth Identity Token can allow users to access some data sources - resolve CVE-2022-21702 grafana: XSS vulnerability in data source handling - resolve CVE-2022-21703 grafana: CSRF vulnerability can lead to privilege escalation - resolve CVE-2022-21713 grafana: IDOR vulnerability can lead to information disclosure - resolve CVE-2021-23648 sanitize-url: XSS - resolve CVE-2022-21698 prometheus/client_golang: Denial of service using InstrumentHandlerCounter - declare Node.js dependencies of subpackages - make vendor and webpack tarballs reproducible- resolve CVE-2021-44716 golang: net/http: limit growth of header canonicalization cache - resolve CVE-2021-43813 grafana: directory traversal vulnerability for *.md files- update to 7.5.11 tagged upstream community sources, see CHANGELOG - resolve CVE-2021-39226- update to 7.5.10 tagged upstream community sources, see CHANGELOG- rebuild to resolve CVE-2021-34558- remove unused dependency property-information - always include FIPS patch in SRPM- update to 7.5.9 tagged upstream community sources, see CHANGELOG- update to 7.5.8 tagged upstream community sources, see CHANGELOG - remove unused dependencies selfsigned, http-signature and gofpdf- remove unused cryptographic implementations - use cryptographic functions from OpenSSL if FIPS mode is enabled- update to 7.5.7 tagged upstream community sources, see CHANGELOG- change working dir to $GRAFANA_HOME in grafana-cli wrapper (fixes Red Hat BZ #1916083) - add pcp-redis-datasource to allow_loading_unsigned_plugins config option- update to 7.3.6 tagged upstream community sources, see CHANGELOG - remove dependency on SAML (not supported in the open source version of Grafana)- update to 7.3.4 tagged upstream community sources, see CHANGELOG - bundle golang dependencies - optionally bundle node.js dependencies and build and test frontend as part of the specfile - merge all datasources into main grafana package - change default provisioning path to /etc/grafana/provisioning - resolve https://bugzilla.redhat.com/show_bug.cgi?id=1843170- apply patch for CVE-2020-13430 also to sources, not only to compiled webpack- security fix for CVE-2020-13430- update to 6.7.4 tagged upstream community sources, see CHANGELOG - security fix for CVE-2020-13379- update to 6.7.3 tagged upstream community sources, see CHANGELOG - add scripts to list Go dependencies and bundled npmjs dependencies - set Grafana version in Grafana UI and grafana-cli --version - declare README.md as documentation of datasource plugins - create grafana.db on first installation (fixes RH BZ #1805472) - change permissions of /var/lib/grafana to 750 (CVE-2020-12458) - change permissions of /var/lib/grafana/grafana.db to 640 and user/group grafana:grafana (CVE-2020-12458) - change permissions of grafana.ini and ldap.toml to 640 (CVE-2020-12459)- added patch0 to set the version string correctly - removed patch 004-xerrors.patch, it's now upstream - added several patches for golang vendored vrs build dep differences - added patch to move grafana-cli binary to libexec dir - update to 6.6.2 tagged upstream community sources, see CHANGELOG- add weak depenency on grafana-pcp - add patch to mute shellcheck SC1090 for grafana-cli - update to 6.3.6 upstream community sources, see CHANGELOG- drop uaparser patch now it's upstream - add xerrors patch, see https://github.com/golang/go/issues/32246 - use vendor sources on rawhide until modules are fully supported - update to latest upstream community sources, see CHANGELOG- include fix for CVE-2019-15043 - add patch for uaparser on 32bit systems - update to latest upstream community sources, see CHANGELOG- update to latest upstream community sources, see CHANGELOG- Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild- split out some datasource plugins to sub-packages - update to latest upstream community sources, see CHANGELOG- update to latest upstream community sources, see CHANGELOG- update to latest upstream community sources - drop a couple of patches- add conditional unbundle_vendor_sources macro- update to latest upstream stable release 6.1.6, see CHANGELOG - includes jQuery 3.4.0 security update- update to latest upstream stable release 6.1.4, see CHANGELOG - use gobuild and gochecks macros, eliminate arch symlinks - re-enable grafana-debugsource package - fix GRAFANA_GROUP typo - fix more modes for brp-mangle-shebangs - vendor source unbundling now done in prep after patches - remove all rhel and fedora conditional guff- update to latest upstream stable release 6.1.3, see CHANGELOG - unbundle all vendor sources, replace with BuildRequires, see the long list of blocker BZs linked to BZ#1670656 - BuildRequires go-plugin >= v1.0.0 for grpc_broker (thanks eclipseo) - tweak make_webpack to no longer use grunt, switch to prod build - add ExclusiveArch lua script (thanks quantum.analyst) - move db directory and plugins to /var/lib/grafana - split out into 6 patches, ready for upstream PRs - add check to run go tests for gating checks- update to latest upstream stable release 6.1.0, see CHANGELOG- bump to latest upstream stable release 6.0.2-1 - unbundle almost all remaining vendor code, see linked blockers in BZ#1670656- bump to latest upstream stable release 6.0.1-1- unbundle and add BuildRequires for golang-github-rainycape-unidecode-devel- update to v6.0.1 upstream sources, tweak distro config, re-do patch - simplify make_webpack.sh script (Elliott Sales de Andrade) - vendor/github.com/go-ldap is now gone, so don't unbundle it- tweak after latest feedback, bump to 5.4.3-11 (BZ 1670656) - build debuginfo package again - unbundle BuildRequires for golang-github-hashicorp-version-devel - remove some unneeded development files - remove macros from changelog and other rpmlint tweaks- tweak spec for available and unavailable (bundled) golang packages- Remove extraneous slash (cosmetic) - Create directories just before moving stuff in them - Truncate long lines - Group all golang stuff - Simplify BuildRequires/bundled Provides - Sort BuildRequires/bundled Provides - Fix bundled go packages Provides- add BuildRequires (and unbundle) vendor sources available in Fedora - declare Provides for remaining (bundled) vendor go sources - do not attempt to unbundle anything on RHEL < 7 or Fedora < 28- further refinement for spec doc section from Xavier Bachelot - disable debug_package to avoid empty debugsourcefiles.list- further refinement following review by Xavier Bachelot- further refinement following review by Xavier Bachelot- further spec updates after packaging review - reworked post-install scriplets- tweak FHS patch, update spec after packaging review- add patch to be standard FHS compliant, remove phantomjs - update to v5.4.3 upstream community sources- update to v5.4.2 upstream community sources- update to v5.3.1 upstream community sources- native RPM spec build with current tagged v5.2.5 sources/bin/sh/bin/sh9.2.10-16.el8_109.2.10-16.el8_10grafana-selinuxgrafana.fcgrafana.ifgrafana.pp.mlsgrafana.pp.targetedgrafana.tegrafana.ppgrafana.pp/usr/share/doc//usr/share/doc/grafana-selinux//usr/share/selinux/mls//usr/share/selinux/targeted/-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -fexceptions -fstack-protector-strong -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1 -m64 -mtune=generic -fasynchronous-unwind-tables -fstack-clash-protection -fcf-protectioncpioxz2x86_64-redhat-linux-gnudirectoryASCII textSE Linux policy interface sourceC++ source, ASCII textutf-8dccff7ec5e52ae8e4541352bc58bcecee95c50a8f77214aac2d9cdd245094d1b?07zXZ !#,i?4] b2u jӫ`(y0AWqd6#{Lrh{* {R1o@+.zʜ0)L TgUo|bD k>̏VMQyk&cNf9ҫypY{k"9L SaJ/~> c'To\hkYõdR?T^!!O7Jw$|T).@0yώ(އX |DDAcXtQrQ}QSXUUƪp }s9K^LޜS旁O!]Bpͪl'R({oSU,) B:iYkH28jELJo i.ұEWFOcg8IƹaV>c'@e.+^ιp 8p1[uF)h!NbVGvHZ.w n5}VBۿn0<ܲ;kB}Bo^ YJ!Boh#4Jz)ipCryʠqMΜryFǴ8!P۬bO{s94s_N-c6 `sU3IԐiR8Gf"C!8EA: /詁E;T/A`3%I;pT+2f#}ȀCLw6@< E_vG%BU?mKcәPI{045{,5M]J" F_Z߻)F6(xh#=8B2Og[W'!'Q5@C5 MwPǐmaݓ+ :ϣY^Pct*+ߒp US nlTW2lr$gpZouC;$z󝺕=`MNF($]E+I| Ĉ;E(pj;:77g|>J"reiJ `F&\]8 ƬĺOk'}+ >r܉A\)'mk?i3abTJjXABԻ(wҞ.Z3K} KB-SO㌫rR$w.i.__PT2}WF&ß?k V4}FDo JC-;?,Qh/3=NyLW59#t,9nuEM1Z?lu|ua89S4p1cϵ|DjrS-yͤ1Q Ll !ˋk^KMn;ZvFjL77*vYSDE,@'V¢^܆Wv'`kOǻUY{)LǵrzID!l#e"#oYe;7cj{uQPJidRw:aA^XW&÷R5HtۻRkn!ץy7]cf1É$Op4LYe f@7"}(!}ت`Bf^^oKZ{W8*lΚb5s&=P8=`" oQHl $8MWy`EfTg85 =(kXSuӤ;w}Ʈ,@"e; ͔apV{ŮX跥 TosFX߁7Zp%nd / ӓ:MW0!HkY;:){SN-#-q $Sn(n/&zn&3*\FmR6!`)Ugq?ld)QqM>kg?!9Jh'*sFCeM6 sצUa?#1`˺&M{4h0Zxʭ. [@ Oc UCñ45p0HCS}F2+iK`WŲUj3utLys2u R?1mO%EaO2v„us]P)H.a4h_0ВX*V| ?Wn/ᏻ~^ DO ֏<Ћj˼xbh}+f-4dCsSmQ?>M2؟ $ͭ} :(P X1e?K\w oTP%WJsTk5/YmjėpfNmG +}?ݣ 7x~AKiڙ5a$p*֓%xdVE/U'BcRUP [ >i҃&nDw=nq Rږyyb(ҩ~U@hީqE+XjO-WIx )G|Y]3oa ._o9h~mˆ0BCf,*ס|?F8?o $/W97Fמ 䊴>-W="a=Vf*HhSB^:՛&1it1p}r|2)K| lNfm"WHի3X|= EE봂l`!>]Iuq'J>bsokͧpab:SDg @7nk];uhRw%LvODT=&`XNh:T9*,s&|d qY^-İ yvmy+M<81ʅܶ~.љU덮KGޠB γ|,?Î$7Ės:!8xfS~ok_෢ع CL_D:V9N"E`,Sb-Z:Zgc*XT==x!pSlXi24ÌċDi9WU̥5 0e˹p`Dn!NC]eښJ\}+N7.? >t ǘaaRQ1Bi(]0@[A,z<7?>,IYqj"OZ՜\Ij3.O^W^3'0R'+R0@Hnkٽ. Ao:! 3 kȋ&Eo^rш'GF]tٸEy}ԙz21AyۂDbc? tՠG?ʰ%ݬޯrZtW!߈g 9:w9cu2 KU})un5_b+y^$ HN,Jn:>r;:㽞Mџ}֠Ρu]Nۚ[;GH,ZQ ]>vاߋ{6TM$(=,<:oN䟉 Ui~ւ<rس5 3܀vϐlŜ*?$BX%P?lzaoNgރYR"c6d.-t`t{&Ǜ$tF~)@c`L5aAKOK#M%0M;(G r P> Tڻ4WY!AZ e{RR+K&'JG"8m9ͭ_!U~7o:hȘp~d9kHΒN!1 N>ͪlZ [ rv'%sNa+un:ևs l u{,J0JԼ"vا+yPDHB5uXV2,quÃ]Xoލ1EGYTf:bѠٕ$kOve2xb"kJ/*`{0զ]$#e'e-1m, _[ш8P6-i E>9?^{{[H+UWsI&}=0y_Ϊ<F@On._/y*TiTB2 П,$rt_cP NCqV<.RF_|7n82f86t@}2 6Dn:) DͲ 5IK3`20=~dGŘE_;I6N\(S.t{[mWˌMDj(l7$i5Yv] wHg: 2Xq=Oٰp U>[4["TsI[xsj8W[ISN?,akPD9ybN9* ҧhm?UB_OyqL ^,bQ6zXx"z;#M);R~0Hyt$SREI":LjB@;j#򀽪r}Ჱ}d@%dY,P*c((njxoVa1t29mn%e3dnB(9/y}؄CZ&0fhHig=<p}Mm5ѭ NUXFwTL{(ވY#l_lo W_G><8qeϞ#A5J.q}?i$~RVY{JQ?͢ 0.kbթ2aah)3g7?[0Jk&`+1U pCL=41u1U-Od|~Br;y&Q)q-ߦ 9dGN}rd)/cZ~*4#ʬ'LW).'7?t"'Au}s8? rLroZJ%n^LCx#ZAhѾC vS*c ז/,|#H7?Ad84Rl%?cӹk_̚VQ.S dqQxRlxC Ky8=ɅAD*4<.TN0+h-:2Ψͩ[sc ,6Ϡ*ÛsΪ#12cy'4# ɿZF{U]$;Ǚ66 @%f'w,xF|0NtBi(<:{R)|$8L_\r&Lz6 \( $OEt'dvHp da/zw+85[sfDW.]h-9L¡>SwͺP2]pvk[va !fɣY m0ŬG?Wb1!nWdWP !s}^%kbRpay"Ffϓj:*ī I cܾ.BgRO͛|&w1~Q 64fw~wBdAh?]بuI񜐞lR¾5WUL: Zq2;? :>9T n~]Wfgqk ϧ!*VYŘ ScKڅ;8ftOiYwAٕp 2UcV78W$w>@9K&EYp! OKsdR;'H[FgC| -IQ%/{S]FKĎL `&@ 8ɭEk˯5\)̷eYum87LP}׶%xFq?Yw%s<(|Mπ1p-V[ÄnS ZFx.;[#(O{KB**cH_ j跩}|N܆‚8[n6Ɛ洗gsS7H|݌xU.[CT죜4\ǘ7ѵI xAs-)qeH[Ǯ._bYoߊ*\\TS >bYfHlŴDs(^}yO/?u`>Be;P!ɃŚbL$_Lg@f{:16+1n8$Rf,]przy7w!}+ }٦?iQ)KIĤ{d1`?I~DXyN;z{n]+86b3 AjS"ح U "V?Ip2e 'r휔,m0ߺM8}kOpZ$eA*CT^jsO67̟T0$i M Tqyw?hfTġoLuyA.r[%+Fvꄕi9Elgi.q`V̟K3[P`N9BR긧/Lܷ.*4:`2[<q; nݠ2s*g]c'#vZ8w؄m߀/5njvAPڋ`+8ߔiJǟe;=LXZpffb&D;ޚ7;Vy.]\>8{_Kq`V1m[Kyцb >RcTM}Wžj4|2p\*Iv R(qiZ?s23<*:Rvͷ"A*ϰTa"x]΁2eQǕnvOkXovJ3 PhKV>+R[y4,6=<]W2GI{>:RیBmi.jx'=^ăq-]KA2X DcG+ s[5 2_t'1_xV.8^''zpU=_ 9o,igUBELd0 1Ϧ&cC[\xaa);Ol2Q] En3Q[=pBvq)P}Sfg%0دKScaU`Gb/D}cC:_C0_K++quu}Quq\A ~h8k[k(zƥ ~cF/)"tP")lP֬1 k_/ڇ!3;6zVeߺ|0hjv8{왚ޘZ j aLcԫ*^Dp;Dn$%%kBG,*׆bl03\EC!fO3am&mDܱOcdW$|ƹ*(ad9yfW%IwzdS  PmCH>.=G ):2bҪIA7~P=NFo_6h4_5z6@S:s,6303;x/ "d` [2Y  R#Pč#:'AՠSHvhlw^c1t2t$4P88 {S;9)яP#I r[Tt~2I8[5B9ThdN 0ܸ kmR@#aF]nWyF7C FD-X oo1l ^۫p`Lɉmj >9y͢O.9ж-vI3*x60S7H'梫U`쎴RJ&l&> F$,Yi7su|>r+=r$2=}ܖmuw^}x+)=硛(pT|D60{uS_Ib>r,){j6mw(*h PQlJ30H_DG'\`ktS7tOgܳz%Oe4QLOB'2uŒA)>ИJQ J?ȷԳ@pCd^( Da~R^VOّ+)V3Vu 0p@`>W?iJG;CDJƱxd~ZQ]Rv:SX fp)V| LtQo!=xZ=V'-$ެ]x@O}YS=LX`2@ˍSޚ~݀ͦ Xj.*qr;;Z~ %Ok67"rڦ:zmhJHCo?IeV[ÛZnكh2{3ū*:"Zus2!:ɜk3vb>ig]OkXU(oXN޳9o9|ۜG@j3cwA"fUNUkdP5?%lq9ҍGߧPk埆?sYݙ_F 55曺(lz,b =B`V0"fMԊ9XC;[^i=UCճx~vC_9S25?OvS0O`zʐqƵhwa{6'è(a"# ɭ2gӝ3œ^:zͫmuAu/RfKRDٷ⒯4^26ԹC{8'5=&.p˹jYMp uBrW}ç+xb=֌hk➔[rͶ٧׈NLJSJlTS7^s}o}`>ûCIS8Z4^SY9 Lk?M_'|38ipkAp' 8hO}֪{Rq&9JOL^/yfYՆFd:S1P[?DD9p+% -~ wF~ukS+VƱ aO$xpu4WJ l$p4&ʑmC h[ Ό2V֙H=2A's~`EA.nΎR!3X,ST暧sk!S<ݱY=n;>rb:2'Mࢺە#{W;$D1X\`9Ò9v̍ 66ݠ5Z#*wz'y>2R pKhY~~#.U:k|k̊lc-#TUSc%x.Xh%Cjtӕ0ky"5i Y- I(gjp UY z ?ZiB UkC[ v*.4Sa-}P йH}cܨH!ND[/̱ʹ9aF#rfsuʡګg zqǎ3DK&&vv[;2-!B>/AGphk6ϧ" b ba1ky#+cը2VK q8=;!vO0jRUԬG䩲1&Yd=E2G]ИG5N9jjA, %W#^I(ڡG3Po-3@SkvU<Ϩ&H^RYYNyD#Ҁ[/U9pSI6 (=SɎY(pC&_4AM8,w3Ƃ[U 55LZc9D=v*oWӍQ}!]S=&Nc 7w:KuIGLw2 uU~qKy.w*yV.ƦfᮝR2-F?L[c~,Ne@9߲w5J[٫,H#j.{GkJuvҀ!q{)渢\*ħX篌nAy C\bbcvjxܩ9c#[" 娴Zlog~nHࣨȠGfhP4@~\ݴ) aD|z ,Z6jZ#sXPhx靆vSWԳIl֢׆G8qTE{5pW\[5.8*(bʮtc@Np+/SkF23F;ސs <ҠV̛Vvڼ 9's CL/Ƭxϳ{,.h4e(rKZ)\י;]l1TDui9Ё9@s6ў u{㓨oB5yҜߏj_0lXvkewX_ ssZFPP⿗n_NiڥMm3,7|w $E.iVlv~x8:8J+"\i`F狜?1zYa9}5! H&NirTp!(ޮ' GZޒrwj68;J@XkTHHͶ"o `_^<.DJ:tas~w/^ Z] 'SSm'_HȠd> ߺ7uIq ϡFLtvθO])i2Xҷb- ,/?_a[0rn|۝e $ g TMQ b*{Q4ߋd݆xzAzak3=Kp֛Bt Ou4a~ĨmYwMzWjջmP gYI+G@wdacLt,aWdMWn!*?X0}E\#`WAV ­n{\F吚"Pc.q:?7Lvcl6dt:i'F YZ