grafana-selinux-9.2.10-17.el8_10 > 6 6_6 3!pQp)Tξ7]mtZ`f? ]mtZ`75Tle4Tu,K4z\D whx| G1߮iS;"d z Cfp u\Zijh?*hC4NNLGOW Bamhk[&H+1u-kۢbqeE31a|ҦiUK@UbJ@١ 7_DR:1}d1JHr E[AVpa'3&hp*c ( Imrhw-oT( F?rjb0678f0c98482af0be6384d59b34b42411e9bd6cd6724b0c3c63fcbc9febbe56e3a5b13ad572b98c85e583c856a7fdf6617da532w3!pQp)Tξ7]mtZ`f? ]mtZ`8"1%6φf:1_W'OUesom^8}yJɻ%դĔӺt?B.[bCA As1w|>%b: ޟC$,M'|;@.ڢ毹8IQZ]3M#F ?PG ӣnG@o[Cc3 ѿ,!pEu DIqY mv |wSIlHHۗv.EA!=ھhG@I œbZ}$FZ:EPU->s0SN/cq^hM!lu L4ס'︹~6[8A[vy&ܨЌ[NJڂM2Am]X?ym}kGm픤#eIY`<1|]A~ojA<M}me?xl\>p=>?>d # Lx| 8 H X x @ Hh(x ( 8 >9 >:>>:^@:fG:pH:I:X:Y:\:];^;nb;d<e=f=l= t=$u=Dv=d===>Cgrafana-selinux9.2.1017.el8_10SELinux policy module supporting grafanaSELinux policy module supporting grafanafĪord1-prod-a64build001.svc.aws.rockylinux.orggKojiRockyAGPLv3infrastructure@rockylinux.orgUnspecifiedhttps://grafana.orglinuxaarch64for selinuxvariant in mls targeted do /usr/sbin/semodule -s ${selinuxvariant} -i \ /usr/share/selinux/${selinuxvariant}/grafana.pp &> /dev/null || : done /sbin/restorecon -RvF /usr/sbin/grafana-* &> /dev/null || : /sbin/restorecon -RvF /etc/grafana &> /dev/null || : /sbin/restorecon -RvF /var/log/grafana &> /dev/null || : /sbin/restorecon -RvF /var/lib/grafana &> /dev/null || : /sbin/restorecon -RvF /usr/libexec/grafana-pcp &> /dev/null || : /usr/sbin/semanage port -a -t grafana_port_t -p tcp 3000 &> /dev/null || :if [ $1 -eq 0 ] ; then /usr/sbin/semanage port -d -p tcp 3000 &> /dev/null || : for selinuxvariant in mls targeted do /usr/sbin/semodule -s ${selinuxvariant} -r grafana &> /dev/null || : done /sbin/restorecon -RvF /usr/sbin/grafana-* &> /dev/null || : /sbin/restorecon -RvF /etc/grafana &> /dev/null || : /sbin/restorecon -RvF /var/log/grafana &> /dev/null || : /sbin/restorecon -RvF /var/lib/grafana &> /dev/null || : /sbin/restorecon -RvF /usr/libexec/grafana-pcp &> /dev/null || : fi mш"шA큤fĄf²f²fSfSf²fSfS81f6452a794812b0896d8739344807795efe02637af50f3e69af76719c3b5d05075e9073f5af0c65487ab74702fcc38b0ab09f5f4e78f30ef3f6a511cd09bed788d20a64e49f88ab43fca5bf4a548a6a70b44c1192250cc24c799c89808683e58114f4b336b7a7896b94466b3d5c0a0f703260071f2fb737e965d744f90d8071fa6bef9582d2a6088ad6dfd474204beafccfb47994a1dc797d3695c3060016e388d20a64e49f88ab43fca5bf4a548a6a70b44c1192250cc24c799c89808683e58114f4b336b7a7896b94466b3d5c0a0f703260071f2fb737e965d744f90d8071rootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootgrafana-9.2.10-17.el8_10.src.rpmgrafana-selinuxgrafana-selinux(aarch-64)    /bin/sh/bin/sh/sbin/fixfiles/sbin/fixfiles/sbin/restorecon/sbin/restorecon/sbin/service/usr/sbin/semanage/usr/sbin/semanage/usr/sbin/semodule/usr/sbin/semodulegrafanagrafanagrafanarpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)selinux-policyselinux-policy-targeted9.2.10-17.el8_103.0.4-14.6.0-14.0-15.2-13.14.34.14.3f|fe6@e4@eids@d!ddoMdldS@c_bb@bba*@ad'@aUaS@``@`@`P@`` @_@_G@_>e_=@^3^^V]]*]p]i]A]9\Q\\\\8\O\\\|\\B@\\\o@\mA@\f\\\Z@\Yz\T4\R@\Q\5@[u[]Sam Feifer 9.2.10-17Sam Feifer 9.2.10-16Sam Feifer 9.2.10-15Sam Feifer 9.2.10-14Sam Feifer 9.2.10-12Stan Cox 9.2.10-6Stan Cox 9.2.10-5Stan Cox 9.2.10-4Stan Cox 9.2.10-3Jan Kurik 9.2.10-2Stan Cox 9.2.10-1Andreas Gerstmayr 7.5.15-4Andreas Gerstmayr 7.5.15-3Andreas Gerstmayr 7.5.15-2Andreas Gerstmayr 7.5.15-1Andreas Gerstmayr 7.5.11-2Andreas Gerstmayr 7.5.11-1Andreas Gerstmayr 7.5.10-1Andreas Gerstmayr 7.5.9-3Andreas Gerstmayr 7.5.9-2Andreas Gerstmayr 7.5.9-1Andreas Gerstmayr 7.5.8-1Andreas Gerstmayr 7.5.7-2Andreas Gerstmayr 7.5.7-1Andreas Gerstmayr 7.3.6-2Andreas Gerstmayr 7.3.6-1Andreas Gerstmayr 7.3.4-1Andreas Gerstmayr 6.7.4-3Andreas Gerstmayr 6.7.4-2Andreas Gerstmayr 6.7.4-1Andreas Gerstmayr 6.7.3-1Mark Goodwin 6.6.2-1Mark Goodwin 6.3.6-1Mark Goodwin 6.3.5-1Mark Goodwin 6.3.4-1Mark Goodwin 6.2.5-1Fedora Release Engineering - 6.2.2-2Mark Goodwin 6.2.2-1Mark Goodwin 6.2.1-1Mark Goodwin 6.2.0-1Mark Goodwin 6.1.6-2Mark Goodwin 6.1.6-1Mark Goodwin 6.1.4-1Mark Goodwin 6.1.3-1Mark Goodwin 6.1.0-1Mark Goodwin 6.0.2-1Mark Goodwin 6.0.1-3Mark Goodwin 6.0.1-2Mark Goodwin 6.0.1-1Mark Goodwin 5.4.3-11Mark Goodwin 5.4.3-10Xavier Bachelot 5.4.3-9Mark Goodwin 5.4.3-8Mark Goodwin 5.4.3-7Mark Goodwin 5.4.3-6Mark Goodwin 5.4.3-5Mark Goodwin 5.4.3-4Mark Goodwin 5.4.3-3Mark Goodwin 5.4.3-2Mark Goodwin 5.4.2-1Mark Goodwin 5.3.1-1Mark Goodwin 5.2.5-1- Allow for mssql datasource in selinux policy - Resolves RHEL-43435- Check OrdID is correct before deleting snapshot - fix CVE-2024-1313 - fix CVE-2024-1394- Resolves RHEL-23466 - Resolves RHEL-21027 - Allows for gid to be 0 - Allows for postgreSQL datasource in selinux policy- Resolves RHEL-19596 - Fixes coredump issue introduced by selinux - Patches out call to panic when trying to walk "/" directory - Fixes postgresql AVC denial- Resolves RHEL-7503 - Adds a selinux policy for grafana - Resolves RHEL-12650 - fix CVE-2023-39325 CVE-2023-44487 rapid stream resets can cause excessive work- Add /usr/share/grafana to systemd-sysusers --replace- resolve CVE-2023-3128 grafana: account takeover possible when using Azure AD OAuth- bumps exporter-toolkit to v0.7.3, sanitize-url@npm to 6.0.2, skip problematic s390 tests.- Use systemd-sysusers --replace- Use systemd-sysusers instead of sysusers_create_compat, which is not available in RHEL-8- Update to 9.2.10- resolve CVE-2022-39229 grafana: using email as a username can block other users from signing in - resolve CVE-2022-27664 golang: net/http: handle server errors after sending GOAWAY - resolve CVE-2022-41715 golang: regexp/syntax: limit memory used by parsing regexps - resolve CVE-2022-2880 golang: net/http/httputil: ReverseProxy should not forward unparseable query parameters - run integration tests in check phase - update FIPS patch with latest changes in Go packaging- resolve CVE-2022-1962 golang: go/parser: stack exhaustion in all Parse* functions - resolve CVE-2022-1705 golang: net/http: improper sanitization of Transfer-Encoding header - resolve CVE-2022-32148 golang: net/http/httputil: NewSingleHostReverseProxy - omit X-Forwarded-For not working - resolve CVE-2022-30631 golang: compress/gzip: stack exhaustion in Reader.Read - resolve CVE-2022-30630 golang: io/fs: stack exhaustion in Glob - resolve CVE-2022-30632 golang: path/filepath: stack exhaustion in Glob - resolve CVE-2022-30635 golang: encoding/gob: stack exhaustion in Decoder.Decode - resolve CVE-2022-28131 golang: encoding/xml: stack exhaustion in Decoder.Skip - resolve CVE-2022-30633 golang: encoding/xml: stack exhaustion in Unmarshal- resolve CVE-2022-31107 grafana: OAuth account takeover- update to 7.5.15 tagged upstream community sources, see CHANGELOG - resolve CVE-2022-21673 grafana: Forward OAuth Identity Token can allow users to access some data sources - resolve CVE-2022-21702 grafana: XSS vulnerability in data source handling - resolve CVE-2022-21703 grafana: CSRF vulnerability can lead to privilege escalation - resolve CVE-2022-21713 grafana: IDOR vulnerability can lead to information disclosure - resolve CVE-2021-23648 sanitize-url: XSS - resolve CVE-2022-21698 prometheus/client_golang: Denial of service using InstrumentHandlerCounter - declare Node.js dependencies of subpackages - make vendor and webpack tarballs reproducible- resolve CVE-2021-44716 golang: net/http: limit growth of header canonicalization cache - resolve CVE-2021-43813 grafana: directory traversal vulnerability for *.md files- update to 7.5.11 tagged upstream community sources, see CHANGELOG - resolve CVE-2021-39226- update to 7.5.10 tagged upstream community sources, see CHANGELOG- rebuild to resolve CVE-2021-34558- remove unused dependency property-information - always include FIPS patch in SRPM- update to 7.5.9 tagged upstream community sources, see CHANGELOG- update to 7.5.8 tagged upstream community sources, see CHANGELOG - remove unused dependencies selfsigned, http-signature and gofpdf- remove unused cryptographic implementations - use cryptographic functions from OpenSSL if FIPS mode is enabled- update to 7.5.7 tagged upstream community sources, see CHANGELOG- change working dir to $GRAFANA_HOME in grafana-cli wrapper (fixes Red Hat BZ #1916083) - add pcp-redis-datasource to allow_loading_unsigned_plugins config option- update to 7.3.6 tagged upstream community sources, see CHANGELOG - remove dependency on SAML (not supported in the open source version of Grafana)- update to 7.3.4 tagged upstream community sources, see CHANGELOG - bundle golang dependencies - optionally bundle node.js dependencies and build and test frontend as part of the specfile - merge all datasources into main grafana package - change default provisioning path to /etc/grafana/provisioning - resolve https://bugzilla.redhat.com/show_bug.cgi?id=1843170- apply patch for CVE-2020-13430 also to sources, not only to compiled webpack- security fix for CVE-2020-13430- update to 6.7.4 tagged upstream community sources, see CHANGELOG - security fix for CVE-2020-13379- update to 6.7.3 tagged upstream community sources, see CHANGELOG - add scripts to list Go dependencies and bundled npmjs dependencies - set Grafana version in Grafana UI and grafana-cli --version - declare README.md as documentation of datasource plugins - create grafana.db on first installation (fixes RH BZ #1805472) - change permissions of /var/lib/grafana to 750 (CVE-2020-12458) - change permissions of /var/lib/grafana/grafana.db to 640 and user/group grafana:grafana (CVE-2020-12458) - change permissions of grafana.ini and ldap.toml to 640 (CVE-2020-12459)- added patch0 to set the version string correctly - removed patch 004-xerrors.patch, it's now upstream - added several patches for golang vendored vrs build dep differences - added patch to move grafana-cli binary to libexec dir - update to 6.6.2 tagged upstream community sources, see CHANGELOG- add weak depenency on grafana-pcp - add patch to mute shellcheck SC1090 for grafana-cli - update to 6.3.6 upstream community sources, see CHANGELOG- drop uaparser patch now it's upstream - add xerrors patch, see https://github.com/golang/go/issues/32246 - use vendor sources on rawhide until modules are fully supported - update to latest upstream community sources, see CHANGELOG- include fix for CVE-2019-15043 - add patch for uaparser on 32bit systems - update to latest upstream community sources, see CHANGELOG- update to latest upstream community sources, see CHANGELOG- Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild- split out some datasource plugins to sub-packages - update to latest upstream community sources, see CHANGELOG- update to latest upstream community sources, see CHANGELOG- update to latest upstream community sources - drop a couple of patches- add conditional unbundle_vendor_sources macro- update to latest upstream stable release 6.1.6, see CHANGELOG - includes jQuery 3.4.0 security update- update to latest upstream stable release 6.1.4, see CHANGELOG - use gobuild and gochecks macros, eliminate arch symlinks - re-enable grafana-debugsource package - fix GRAFANA_GROUP typo - fix more modes for brp-mangle-shebangs - vendor source unbundling now done in prep after patches - remove all rhel and fedora conditional guff- update to latest upstream stable release 6.1.3, see CHANGELOG - unbundle all vendor sources, replace with BuildRequires, see the long list of blocker BZs linked to BZ#1670656 - BuildRequires go-plugin >= v1.0.0 for grpc_broker (thanks eclipseo) - tweak make_webpack to no longer use grunt, switch to prod build - add ExclusiveArch lua script (thanks quantum.analyst) - move db directory and plugins to /var/lib/grafana - split out into 6 patches, ready for upstream PRs - add check to run go tests for gating checks- update to latest upstream stable release 6.1.0, see CHANGELOG- bump to latest upstream stable release 6.0.2-1 - unbundle almost all remaining vendor code, see linked blockers in BZ#1670656- bump to latest upstream stable release 6.0.1-1- unbundle and add BuildRequires for golang-github-rainycape-unidecode-devel- update to v6.0.1 upstream sources, tweak distro config, re-do patch - simplify make_webpack.sh script (Elliott Sales de Andrade) - vendor/github.com/go-ldap is now gone, so don't unbundle it- tweak after latest feedback, bump to 5.4.3-11 (BZ 1670656) - build debuginfo package again - unbundle BuildRequires for golang-github-hashicorp-version-devel - remove some unneeded development files - remove macros from changelog and other rpmlint tweaks- tweak spec for available and unavailable (bundled) golang packages- Remove extraneous slash (cosmetic) - Create directories just before moving stuff in them - Truncate long lines - Group all golang stuff - Simplify BuildRequires/bundled Provides - Sort BuildRequires/bundled Provides - Fix bundled go packages Provides- add BuildRequires (and unbundle) vendor sources available in Fedora - declare Provides for remaining (bundled) vendor go sources - do not attempt to unbundle anything on RHEL < 7 or Fedora < 28- further refinement for spec doc section from Xavier Bachelot - disable debug_package to avoid empty debugsourcefiles.list- further refinement following review by Xavier Bachelot- further refinement following review by Xavier Bachelot- further spec updates after packaging review - reworked post-install scriplets- tweak FHS patch, update spec after packaging review- add patch to be standard FHS compliant, remove phantomjs - update to v5.4.3 upstream community sources- update to v5.4.2 upstream community sources- update to v5.3.1 upstream community sources- native RPM spec build with current tagged v5.2.5 sources/bin/sh/bin/sh9.2.10-17.el8_109.2.10-17.el8_10grafana-selinuxgrafana.fcgrafana.ifgrafana.pp.mlsgrafana.pp.targetedgrafana.tegrafana.ppgrafana.pp/usr/share/doc//usr/share/doc/grafana-selinux//usr/share/selinux/mls//usr/share/selinux/targeted/-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -fexceptions -fstack-protector-strong -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1 -fasynchronous-unwind-tables -fstack-clash-protectioncpioxz2aarch64-redhat-linux-gnudirectoryASCII textSE Linux policy interface sourceC++ source, ASCII textutf-8d762fd4be4dbb5b9d56ccae06e6b8d532599c16c2d4945c9c925509408da73c6?07zXZ !#,l[4] b2u jӫ`(y0Di.' t@%Y{Ĭ0/45y$I$ M_@> K>Fډy> }" lś/[rB[H]"Jp"߁MbȋǒyBA5*ƶw)Es(VxOMǁ۟c{}PUӤsmTMO95e]xM6qrG$G`=z5;LU^^bB^׎r_~~! RSXM.⌉pzk/i9=gg`5XߜT5<<<o7M1?gKD w7Nig6R L|Q} G$< sտD p x<bhe bVkg3pL~ܑ"@쩈Tld'>wGE$KAE*RI$5V/ڨC`(=2$wAi@ۜlREls>ƛîI $N+9UC[ /-n)X _= QJ#z4~H_4}P.K?تµ3 > D9{hvO2?WYc;2M|ū5Ef@qc+0fؙpvn썏@i QN8j'e6oP# iRm,seqk#:⮎Y_iG Vr,9]26Ϗ QĪ4d2(Q5P}+{H~D/ͱ"I? b2S=ė, ^> `J։p4c(̈́`9) }G2Ѝ) )v:zL,q1(a+f Ґu Oc;(ɢg1s\~$jV}>2m7Yt"=5@0Bxz>r`*ym'.lBKVR~s by X?P"$a*C`EJU)}Ri ͽ_23i1i^1Gd JC^=\ *t>ˎ"x $4Oԥ?%hORn_< /ZuK3cYݵ 偐[1jPC)I%~Rc)ظzW( \D.3xn;Q?0V{aCG%';PJG/֋)쾰&lPaK002Y`Rfi[?D{UaS&d"(@q>;HI+8"1ݾ A/m-2ZRfVGlzҝ-۱hVmjz>o| J&wGdUPߙ 5Aw?Jo"'l?K0y!gGP[g p*cq-Tz>`@^&X́)RCv)|hV3hdQڳg.g ݯKU&;^SGE]@Jؓ}߶f]̊bag. ]nY%PʳC6gH\~b3 lHK%\o*L4)ؤRã6RYcX*iOꌿy^# 䘊LzUZL(>zLɮgR$OͰ4;%+|2 _osz$]H?j~NP02u1&zajMЀKg"N0-zdrբag' 4p@>7UMQB/RU-ˁ^q0/Zuw$˺ CDl OؕCV$Υ2vc A5YgeFٟr@c1F͙,JuyJXMt}esʸ[Ҏ$4\ri2صo};ʅOH A3|w;mvb8l{΀e^.i_،{mmN6ɶŗ%2%5Vܳ _YR(d\ۛ ,RDc~%v$,awtJm'G.Sn߯Q1^ƺڪg-C$SĸBR [F7U-@Ň EUnJrާ+`{,{uK4p&QmY8x/!=<)(1B- #cQB]U88ݪXn ==Zi w[lXk"Seم-⃑夛b6ybwX fiH[ng3ljFm|O ج0 @KwȦ\$\J[9rWY֧񻿨>qb>e._:);LCqn6#8Cdzjc}qS_0sr-Oe( 'z7Er SkJ~P4Y*s 0Y;{7aY=K-GF ʆw'l6Jjiј Z1v]净`}(X~iM0š|g{'C JZ[@m l?e@kX|欮)q|@&p^ K:s*L 7A j_{3OV&f\qRmCEoRUmYsGpyBJdXpn=&;EA;@Z_EzN8V)OA?h S&NN9W?QWYfߪC&O9cEu=0#st-S`?cnR\\w9gd܊aɍ-lVGG@q7bH#o5d!<@Q<DSf6&6a$Aݥz_l^&4R<_Q%`$kcR6♅\cM\|+zh`'b&Fd,}{G:L z͓UZ?E~6,`H2Xi(etUI ~hy=fsGyx7)l ZNBmBv}/{)I#L\hԜK8;:y\_Q{3wf*Qu/,5;@Z>H)1 rh>q1ĝb <[|ǽ:R~^ħ٫:_== ͛+iL[DB)d0j9C-vFb4'(gJVRy0?CzYxQYKΘ oǻ$P.&u\&{TӇ3_O,~ԡm$ԹSM~PkvM^@^(KOSQpRHq x 4GA; p`UHlX <8f#X֚b "~8;Z rqñQ.ĠՆPsbbQ5b9W}K*A݇F(ay(v]whPBmgb*+(a=-֩2u<]뫑5[ψ_hdV$,G1]=XSB>#dE5hi;1eB6+I@o!|5e"6-X(߶aF TЖ\ М'BC u<~Pm UjuՋ2̬,Vmc0b~q= v+g3'#?08ͫTVlN?cy?cLKrkQG`{9A%c&fdOOdPNWluK _>@P!ԡZVZ!uS{ 3mEj^1-H;QwplBYGPH?PQK<-0SDWH:]O]xiwu y+wxf4=s1zx0ܶ{R۟L[&yL*HII>o ">x11(ƿ=% uWlpb5wqb\9zm\$2yZS"2epJ*Wugeylp>*Lx"}9fg~V_k{nJ`>f.QrG]Rk:kmtfaYIf<r)*|fL=X.)Қ nNu*Zx#OãRϪ37a)'RKqq\ERu&n13;)f>nWEZˉS Ba4]M"s KCTovNmy" NfYeU9iZF*#0ƣhF/MV'e5H$dDtƔ|kѥwX5xdXXMʆ*@80tMq7wm,9'bΛ O ;; \H]]r9*)H"ĀpT lW"q+)h:x K77^T?S`Uh<0D&YӶMʆ"t tZMPU U[r*o7A, YpRsZ=44ԁgiZ@$Fݚ0paLaڊ0K fK^ ~2 fYh$ɴ|&,rFwY*PT&G%dG·2vCm3z 7Maa4&>~t ~}ܧ@aJRK2[|ƅG̫ Zb&w}q\y?јPq,MM!tՈs]IԺ2kp4廽9L: xU{(asZ4O=ۜ,U0M-;+E |! Tm'czw4YZr]|'1WчKmA|Ĩ6,ڵT֢"Kpʣ d0RXq[r z+k> d≸ *=۳Yj)p@,;Y ws{Ķn # pNM*iȍ?6MRYcZX,|:z}dlYyTA xZA<$ 5z9+,;:%җD(`P+_QEy ]T#skXaXAf/QH7KVRJ\DUXS+l279&M}𳏑ص>~ {M)@, sevQl)^>th0/oE*6dyB1UR e[ќZu2rhDikx|"gޖYҦN#dn8"xlDa쏒#诇=-2 byQ %_2cCO۩o󩞝؂MJ!f`esM2` z#(/@FߧL@?Ɲ]&(4S+_D¿DHO 1:.!V.qF֒;<@~Q|U fq8}h%mf&ph#U8%- BL*wO4m9HqoeyPr ʢ:{Ȃʆb\qF746qw9t kKRS%KV s4rK~Wup4a>>=3RezfP37KӂY`8ę[r5<,H|4i1KE-K{3 +3T7 4sve ]㖰L<#ٖ!B{p~$;aR(NhpsZcjnf6'w|_KiO=d=@I&S,#l>;PbHYd *|'C9G*41g hIoI,6O<{0,0# YW- I?%_r*|S #WiMmhsH#R6j18N}5>G07܉UPIazHۥd! U[ݳ b~R6cD, uxܙ+*? |xB_j]J+}҂,nRA8vmSuߢsՃ7zi ~nLħߐH˂W[81 /Da0ܧS{j3h@2R&b`z91of罬)2i}@JC6,%1&8r!G(`aq.[R;&S(4B',dDYՉހ`?7vuwXGQ{ p1N=ƿ*߅FC"\*' 9|![1|u*M D6QY\K&09]~Z*Rv>: =b_ Q%x]X wFI̷Cң4݁?cG߿_uɓ9GT]/ `?X rٜsPn@hX{x#m#OV?mK[FآR}3hGY DImÖvDH&%ֽ&4RԌ>pŦ\"~y8u_lajH ; \dLe;T= T*s*dۻ;Գ HK3"r~ѫS8gq{: OW 7} eC(^J..M cT*pc*iZ" ŪsP(j hm3 <ܱ~(*x*Rd(ǎ~3֊rT՗20"t+$>(R,>똏4nmG'3iɀp̛f4'H>ŜS &wϩZ:H{yO)%{t T2N,5C ̽gV'G,Rn`9t'&L([@FӈI"4O"W.IZ0 }M0*._#kP56$~[[O6鶝 uwgʋ\(Wgr V<0iS GFb`|IAM ` #}Yu9W:DCnLoP#ɋ^Xf%JFe<1'Zhu9)\ѷ!HpTi2{T2,= ]ڕ oQhQI3q=ǥ1VFt:xg -.+ME i!E Sy?_w*XۍY˓&!i4Oa.[)$.oe)C@Ʒ{9LN}gcI_wl({&; ?DHbvqK8 .mˊ۔V񴝌y{9IWa2ccL2J c|J &(0 W+XXX4+EPI1+͗1gǜ9(^k.J4 {;7*ocsGPI0N0./;h?a$Icgh1a|wQ}}YUܺbEg06A|)%׳ 8> 7{5cJVT 'nR#D^W2tHE\JwP"8qr 2GKK (+g] /dl&\퀽Q/x @bp>7Sl}׆khbuG+h4:. 9|CŖ"~p8r%FRվCߋ/K|gYw}u0;M3%Cc (rc.@n|4$O&nEQll\ު0+4 ,;+>–Afi;MaE9|T N5\)̽y~B}"녬 1Ql; ەgUo? G0`0?_=TP| )n9ٕZHO ;qwe:z@rцz>TArG3z8 lo4LaPg; G#1,-Bh{fD'˧}l h/̸{ׇp7Ë>ia=Vu@}51cEkğSe/;JT:XᗕmxVLx6lk,Ń