nss-util-3.90.0-7.el8_10 > 6 6_6 3!pQp)Tξ7]mtZ`fO ]mtZ`&ih9i[]yO`XZ<]=u[~6MbV;TQd LB\pfs-17)f0@Ov}ץإw[;m}*3ΙNild9ȫogfUEudYB{[qv'lD^`5sh_; UmU.< JYĠ0 }Gmrɭh7{[CgqQ Db/R?`t8ѩQ-zfPNlEl`a ~E(=k"cuLY2@fwص Ɓ v9 R&3ysi MtJδ:RZM;'3>ŻJ/"faiʱ ڗ]jp >y :R֢:ܫ+FPr@4?lt' :0g[w(4Ft%ۏk9X>9q@ X+,ҝH} b7d7f21227464c95ea5e5c6352846b2dd12a7869ffe9f0af09a80c7ad68d6be1c341aa43bb542ec45958a2ded2fe5a65d874f2cd 3!pQp)Tξ7]mtZ`fO ]mtZ`omI>v?*Kɦ,zE ~j>OerWGwvtzaBxX_I ]Bv(kB8ocN+Lj/"$J4&' .VD9=L L-UdM u4.TLFT?4-"]/v'khȓ=+۷f',>E o k4gv }.(A%TbݥAx6R|̘Į+pzX/z_Ja8 KnD+kT*''," 4 INgU3g< +(}!w[<* Npy,TEHͰ`:K͜Dή/p(AIl~S#.eBNfq*+ІQxCހmP;kr &rxR[w}\t+qb>p<?d   G /5@X d p   8PnA(q8x9h:_GHIX Yt\]^bdefltuvwxyX\bCnss-util3.90.07.el8_10Network Security Services Utilities LibraryUtilities for Network Security Services and the Softoken modulefNord1-prod-a64build002.svc.aws.rockylinux.org^KojiRockyMPLv2.0infrastructure@rockylinux.orgUnspecifiedhttp://www.mozilla.org/projects/security/pki/nss/linuxaarch64$FAAA큤fN|fN|fN|fNxfN|d|Nd0576c6b8bed18ca35be99bb8e19fafae70bd94dc2af41edc62c53894ecd07fca20c1a32d1f8102432360b42e932869f7c11c7cdbacf9cac554c422132af47f4../../../../usr/lib64/libnssutil3.sorootrootrootrootrootrootrootrootrootrootrootrootnss-3.90.0-7.el8_10.src.rpmlibnssutil3.so()(64bit)libnssutil3.so(NSSUTIL_3.12)(64bit)libnssutil3.so(NSSUTIL_3.12.3)(64bit)libnssutil3.so(NSSUTIL_3.12.5)(64bit)libnssutil3.so(NSSUTIL_3.12.7)(64bit)libnssutil3.so(NSSUTIL_3.13)(64bit)libnssutil3.so(NSSUTIL_3.14)(64bit)libnssutil3.so(NSSUTIL_3.15)(64bit)libnssutil3.so(NSSUTIL_3.17.1)(64bit)libnssutil3.so(NSSUTIL_3.21)(64bit)libnssutil3.so(NSSUTIL_3.24)(64bit)libnssutil3.so(NSSUTIL_3.25)(64bit)libnssutil3.so(NSSUTIL_3.31)(64bit)libnssutil3.so(NSSUTIL_3.33)(64bit)libnssutil3.so(NSSUTIL_3.38)(64bit)libnssutil3.so(NSSUTIL_3.39)(64bit)libnssutil3.so(NSSUTIL_3.59)(64bit)libnssutil3.so(NSSUTIL_3.82)(64bit)libnssutil3.so(NSSUTIL_3.90)(64bit)nss-utilnss-util(aarch-64)@@@@@@@@@@     @ld-linux-aarch64.so.1()(64bit)ld-linux-aarch64.so.1(GLIBC_2.17)(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.17)(64bit)libdl.so.2()(64bit)libnspr4.so()(64bit)libplc4.so()(64bit)libplds4.so()(64bit)libpthread.so.0()(64bit)libpthread.so.0(GLIBC_2.17)(64bit)nsprrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)rtld(GNU_HASH)4.35.0-13.0.4-14.6.0-14.0-15.2-14.14.3f@e@e@epb@e\d˖d\@d\@dxb@b@bγby@bba@blbbb@a@@`E`ݮ@` @`ٹ`̊`9@`Ȗ@`D`r_@_^@___@__"@_"@_"@_!d_@_ L_ _@^^@@^@^ۅ@^4]N@]]߶]e@]M@]µ]L]]^@\F@\Q\\\\\\@\I\I\U@\ `\l@[[[u[#@[[W[O+[M@[ZZw@Z|;Zo Zo Zg#Z ZZZ@Y+@Y{YY@Yn@YV@Y@YyYm@Yg`YJ_Y1S@XX@XX @XXYX@X@XX~@Xx@XoX>@X*X@WW@Wt@W~Wv[@WrfWoWm WbWQq@WPWJWDB@W4p@W@Wo@W@VV޾V޾V@VяVIVɦV@V@V=@V@V@VO @VHsVEV3[V UYU@UU@U@U>Ua@Ug@U[%UUU @T@Ts@TTء@T@TÉ@TT@T@T?@T:m@T"@S@S<@S@S@S @SSSSpShS(5@S@SRy@RJ@R@RR@RSRR@Rm@Rg@RD!R@RRR|Q@Q*@QQ@QKQ@QQW@Qw@Q]k@QNQ9Q7/Q#@QQ @P!@PՠP @PqP@P@PAPXPd@Pd@PPP@PP5@PPnP;a@P(@P H@O;O;O@OiO@O@O}O~OiOYOX@OOdO&@O!@@OO@O@N>@N>@NNܲ@N`NؽNN@NuN;@Np@Nf @NA!@N*NpM@MWMc@MM@M@MMfH@M^_@MZjMS@MQ0@MQ0@MQ0@MQ0@MK@MGMF@M6@M-MM@Ls@LOLLZ@L6LdL@L*@L@LA@LL@L4Lx@Lx@Li(@Lf@L_L_LT@L0L0L K @KsKsKKCKCKCK]KMKLd@KD{@K<@K5K4@K,@K+nK*@K K@K@K@KJݦ@J - 3.90.0-7Bob Relyea - 3.90.0-6Bob Relyea - 3.90.0-5Bob Relyea - 3.90.0-4Bob Relyea - 3.90.0-3.1Bob Relyea - 3.90.0-3Bob Relyea - 3.90.0-2Bob Relyea - 3.90.0-1Bob Relyea - 3.79.0-11Bob Relyea - 3.79.0-10Bob Relyea - 3.79.0-9Bob Relyea - 3.79.0-8Bob Relyea - 3.79.0-7Bob Relyea - 3.79.0-6Bob Relyea - 3.79.0-5Bob Relyea - 3.79.0-4Bob Relyea - 3.79.0-3Bob Relyea - 3.79.0-2Bob Relyea - 3.79.0-1Bob Relyea - 3.67.0-7Bob Relyea - 3.67.0-6Bob Relyea - 3.67.0-5Bob Relyea - 3.67.0-4Bob Relyea - 3.67.0-3Bob Relyea - 3.67.0-2Bob Relyea - 3.67.0-1Bob Relyea - 3.66.0-2Bob Relyea - 3.66.0-1.1Bob Relyea - 3.66.0-1Bob Relyea - 3.53.1-17Bob Relyea - 3.53.1-16Bob Relyea - 3.53.1-15Bob Relyea - 3.53.1-14Bob Relyea - 3.53.1-13Bob Relyea - 3.53.1-12Bob Relyea - 3.53.1-11Bob Relyea - 3.53.1-10Daiki Ueno - 3.53.1-9Daiki Ueno - 3.53.1-8Bob Relyea - 3.53.1-7Daiki Ueno - 3.53.1-6Bob Relyea - 3.53.1-5Bob Relyea - 3.53.1-4Daiki Ueno - 3.53.1-3Daiki Ueno - 3.53.1-2Daiki Ueno - 3.53.1-1Daiki Ueno - 3.53.0-1Bob Relyea - 3.44.0-15Bob Relyea - 3.44.0-14Bob Relyea - 3.44.0-13Daiki Ueno - 3.44.0-12Bob Relyea - 3.44.0-11Daiki Ueno - 3.44.0-10Bob Relyea - 3.44.0-9Bob Relyea - 3.44.0-8Daiki Ueno - 3.44.0-7Daiki Ueno - 3.44.0-6Daiki Ueno - 3.44.0-5Bob Relyea - 3.44.0-4.1Bob Relyea - 3.44.0-4Daiki Ueno - 3.44.0-3Bob Relyea - 3.44.0-2Daiki Ueno - 3.44.0-1Daiki Ueno - 3.41.0-5Bob Relyea - 3.41.0-4Daiki Ueno - 3.41.0-3Daiki Ueno - 3.41.0-2Daiki Ueno - 3.41.0-1Daiki Ueno - 3.39.0-1.5Bob Relyea - 3.39.0-1.4Daiki Ueno - 3.39.0-1.3Daiki Ueno - 3.39.0-1.2Daiki Ueno - 3.39.0-1.1Daiki Ueno - 3.39.0-1.0Daiki Ueno - 3.38.0-1.2Daiki Ueno - 3.38.0-1.1Daiki Ueno - 3.38.0-1.0Kai Engert - 3.36.1-1.2Daiki Ueno - 3.36.1-1.1Daiki Ueno - 3.36.1-1.0Daiki Ueno - 3.36.0-1.0Fedora Release Engineering - 3.35.0-5Kai Engert - 3.35.0-4Kai Engert - 3.35.0-3Daiki Ueno - 3.35.0-2Daiki Ueno - 3.34.0-2Daiki Ueno - 3.33.0-6Kai Engert - 3.33.0-5Kai Engert - 3.33.0-4Kai Engert - 3.33.0-3Daiki Ueno - 3.33.0-2Daiki Ueno - 3.32.1-2Daiki Ueno - 3.32.0-4Kai Engert - 3.32.0-3Daiki Ueno - 3.32.0-2Fedora Release Engineering - 3.31.0-6Fedora Release Engineering - 3.31.0-5Daiki Ueno - 3.31.0-4Daiki Ueno - 3.31.0-3Daiki Ueno - 3.31.0-2Daiki Ueno - 3.30.2-3Daiki Ueno - 3.30.2-2Kai Engert - 3.30.0-3Daiki Ueno - 3.30.0-2Kai Engert - 3.29.1-3Daiki Ueno - 3.29.1-2Daiki Ueno - 3.29.0-3Daiki Ueno - 3.29.0-2Daiki Ueno - 3.28.1-6Daiki Ueno - 3.28.1-5Daiki Ueno - 3.28.1-4Daiki Ueno - 3.28.1-3Daiki Ueno - 3.28.1-2Daiki Ueno - 3.27.2-2Daiki Ueno - 3.27.0-5Kai Engert - 3.27.0-4Daiki Ueno - 3.27.0-3Daiki Ueno - 3.27.0-2Daiki Ueno - 3.26.0-2Elio Maldonado - 3.25.0-6Elio Maldonado - 3.25.0-5Elio Maldonado - 3.25.0-4Elio Maldonado - 3.25.0-3Elio Maldonado - 3.25.0-2Kamil Dudka - 3.24.0-3Elio Maldonado - 3.24.0-2.3Elio Maldonado - 3.24.0-2.2Elio Maldonado - 3.24.0-2.1Elio Maldonado - 3.24.0-2.0Elio Maldonado - 3.23.0-9Elio Maldonado - 3.23.0-8Elio Maldonado - 3.23.0-7Elio Maldonado - 3.23.0-6Elio Maldonado - 3.23.0-5Elio Maldonado - 3.23.0-4Elio Maldonado - 3.23.0-3Elio Maldonado - 3.23.0-2Elio Maldonado - 3.22.2-2Elio Maldonado - 3.22.1-3Elio Maldonado - 3.22.1-1Elio Maldonado - 3.22.0-3Elio Maldonado - 3.22.0-2Fedora Release Engineering - 3.21.0-7Elio Maldonado - 3.21.0-6Michal Toman - 3.21.0-5Elio Maldonado - 3.21.0-4Elio Maldonado - 3.21.0-3Elio Maldonado Batiz - 3.21.1-2Elio Maldonado - 3.20.1-2Elio Maldonado - 3.20.0-6Elio Maldonado - 3.20.0-5Elio Maldonado - 3.20.0-4Elio Maldonado - 3.20.0-3Elio Maldonado - 3.20.0-2Elio Maldonado - 3.19.3-2Elio Maldonado - 3.19.2-3Kai Engert - 3.19.2-2Kai Engert - 3.19.1-2Kai Engert - 3.19.0-2Kai Engert - 3.18.0-2Elio Maldonado - 3.18.0-1Elio Maldonado - 3.17.4-5Till Maas - 3.17.4-4Elio Maldonado - 3.17.4-3Elio Maldonado - 3.17.4-2Elio Maldonado - 3.17.4-1Ville Skyttä - 3.17.3-4Elio Maldonado - 3.17.3-3Elio Maldonado - 3.17.3-2Elio Maldonado - 3.17.3-1Elio Maldonado - 3.17.2-2Elio Maldonado - 3.17.2-1Kai Engert - 3.17.1-1Kevin Fenzi - 3.17.0-2Elio Maldonado - 3.17.0-1Fedora Release Engineering - 3.16.2-4Elio Maldonado - 3.16.2-3Tom Callaway - 3.16.2-2Elio Maldonado - 3.16.2-1Elio Maldonado - 3.16.1-4Fedora Release Engineering - 3.16.1-3Jaromir Capik - 3.16.1-2Elio Maldonado - 3.16.1-1Elio Maldonado - 3.16.0-1Elio Maldonado - 3.15.5-2Elio Maldonado - 3.15.5-1Elio Maldonado - 3.15.4-5Elio Maldonado - 3.15.4-4Elio Maldonado - 3.15.4-3Peter Robinson 3.15.4-2Elio Maldonado - 3.15.4-1Elio Maldonado - 3.15.3.1-1Elio Maldonado - 3.15.3-2Elio Maldonado - 3.15.3-1Elio Maldonado - 3.15.2-3Elio Maldonado - 3.15.2-2Elio Maldonado - 3.15.2-1Elio Maldonado - 3.15.1-7Elio Maldonado - 3.15.1-6Elio Maldonado - 3.15.1-5Elio Maldonado - 3.15.1-4Elio Maldonado - 3.15.1-3Elio Maldonado - 3.15.1-2Elio Maldonado - 3.15.1-1Elio Maldonado - 3.15-5emaldona - 3.15-4emaldona - 3.15-3Elio Maldonado - 3.15-2Elio Maldonado - 3.15-1Elio Maldonado - 3.15-0.1.beta1.2Elio Maldonado - 3.15-0.1.beta1.1Kai Engert - 3.14.3-12Kai Engert - 3.14.3-10Kai Engert - 3.14.3-9Elio Maldonado - 3.14.3-1Elio Maldonado - 3.14.2-2Elio Maldonado - 3.14.2-1Kai Engert - 3.14.1-3Elio Maldonado - 3.14.1-2Elio Maldonado - 3.14.1-1Elio Maldonado - 3.14-12Elio Maldonado - 3.14-11Elio Maldonado - 3.14-10Elio Maldonado - 3.14-9Elio Maldonado - 3.14-8Elio Maldonado - 3.14-7Elio Maldonado - 3.14-6Elio Maldonado - 3.14-5Elio Maldonado - 3.14-4Elio Maldonado - 3.14-3Elio Maldonado - 3.14-2Elio Maldonado - 3.14-1Elio Maldonado - 3.14-0.1.rc.1Kai Engert - 3.13.6-1Elio Maldonado - 3.13.5-8Elio Maldonado - 3.13.5-7Fedora Release Engineering - 3.13.5-6Elio Maldonado - 3.13.5-5Elio Maldonado - 3.13.5-4Elio Maldonado - 3.13.5-3Elio Maldonado - 3.13.5-2Elio Maldonado - 3.13.5-1Elio Maldonado - 3.13.4-3Elio Maldonado - 3.13.4-2Elio Maldonado - 3.13.4-1Elio Maldonado - 3.13.3-4Elio Maldonado - 3.13.3-3Elio Maldonado - 3.13.3-2Elio Maldonado - 3.13.3-1Tom Callaway - 3.13.1-13Elio Maldonado - 3.13.1-12Fedora Release Engineering - 3.13.1-11Elio Maldonado - 3.13.1-11Elio Maldonado - 3.13.1-10elio maldonado - 3.13.1-9Elio Maldonado - 3.13.1-8Elio Maldonado - 3.13.1-7Elio Maldonado - 3.13.1-6Elio Maldonado - 3.13.1-5Elio Maldonado Batiz - 3.13.1-4Elio Maldonado - 3.13.1-2Elio Maldonado - 3.13.1-1Elio Maldonado - 3.13-1Elio Maldonado - 3.13-0.1.rc0.1Elio Maldonado - 3.12.11-3Kai Engert - 3.12.11-2Elio Maldonado - 3.12.11-1Elio Maldonado - 3.12.10-6Michael Schwendt - 3.12.10-5Elio Maldonado - 3.12.10-4Dennis Gilmore - 3.12.10-3Elio Maldonado - 3.12.10-2Elio Maldonado - 3.12.10-1Elio Maldonado - 3.12.10-0.1.beta1Elio Maldonado - 3.12.9-15Elio Maldonado - 3.12.9-14Elio Maldonado - 3.12.9-13Elio Maldonado - 3.12.9-12Elio Maldonado - 3.12.9-11Elio Maldonado - 3.12.9-10Elio Maldonado - 3.12.9-9Fedora Release Engineering - 3.12.9-8Elio Maldonado - 3.12.9-7Christopher Aillon - 3.12.9-6Elio Maldonado - 3.12.9-5Elio Maldonado - 3.12.9-4Elio Maldonado - 3.12.9-3Elio Maldonado - 3.12.9-2Elio Maldonado - 3.12.9-1Elio Maldonado - 3.12.9-0.1.beta2Elio Maldonado - 3.12.8.99.2-1Elio Maldonado - 3.12.8.99.1-1Elio Maldonado - 3.12.8-9Elio Maldonado - 3.12.8-8Elio Maldonado - 3.12.8-7Elio Maldonado - 3.12.8-6Elio Maldonado - 3.12.8-5Elio Maldonado - 3.12.8-4Elio Maldonado - 3.12.8-3Elio Maldonado - 3.12.8-2Elio Maldonado - 3.12.8-1Elio Maldonado - 3.12.7.99.4-1Elio Maldonado - 3.12.7.99.3-2Elio Maldonado - 3.12.7.99.3-1Elio Maldonado - 3.12.7-3Elio Maldonado - 3.12.7-2Elio Maldonado - 3.12.7-1Elio Maldonado - 3.12.6-12Elio Maldonado - 3.12.6-11Elio Maldonado - 3.12.6-10Elio Maldonado - 3.12.6-9Dennis Gilmore - 3.12.6-8Elio Maldonado - 3.12.6-7Elio Maldonado - 3.12.6-6Elio Maldonado - 3.12.6-5Elio Maldonado - 3.12.6-4Elio Maldonado - 3.12.6-3Elio Maldonado - 3.12.6-2Elio Maldonado - 3.12.6-1.2Elio Maldonado - 3.12.6-1.1Elio Maldonado - 3.12.6-1Elio Maldonado - 3.12.5-8Elio Maldonado - 3.12.5-5Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1.13.2Elio Maldonado - 3.12.5-1.13.1Elio Maldonado - 3.12.5-1.13Elio Maldonado - 3.12.5-1.11Elio maldonado - 3.12.5-1.9Elio Maldonado - 3.12.5-2.7Elio Maldonado - 3.12.5-1.6Elio Maldonado - 3.12.5-1.5Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1.1Elio Maldonado - 3.12.5-1Elio Maldonado - 3.12.4-14.1Elio Maldonado - 3.12.4-13.1Elio Maldonado - 3.12.4-13Elio Maldonado - 3.12.4-12Elio Maldonado - 3.12.4-11Elio Maldonado - 3.12.4-10Elio Maldonado - 3.12.4-8Elio Maldonado - 3.12.4-6Elio Maldonado - 3.12.4-5Elio Maldonado - 3.12.4-4Elio Maldonado - 3.12.4-3Elio Maldonado - 3.12.4-2Elio Maldonado - 3.12.4-1Elio Maldonado - 3.12.3.99.3-30Elio Maldonado - 3.12.3.99.3-29Elio Maldonado - 3.12.3.99.3-28Elio Maldonado - 3.12.3.99.3-27Elio Maldonado - 3.12.3.99.3-26Elio Maldonado - 3.12.3.99.3-25Warren Togami - 3.12.3.99.3-24Elio Maldonado - 3.12.3.99.3-23Elio Maldonado - 3.12.3.99.3-22Elio Maldonado - 3.12.3.99.3-21Elio Maldonado - 3.12.3.99.3-20Elio Maldonado - 3.12.3.99.3-19Elio Maldonado - 3.12.3.99.3-18Elio Maldonado - 3.12.3.99.3-16Dennis Gilmore - 3.12.3.99.3-15Dennis Gilmore - 3.12.3.99.3-14Dennis Gilmore - 3.12.3.99.3-13Dennis Gilmore - 3.12.3.99.3-12Elio Maldonado+emaldona@redhat.com - 3.12.3.99.3-11Elio Maldonado - 3.12.3.99.3-10Dennis Gilmore - 3.12.3.99.3-9Elio Maldonado - 3.12.3.99.3-7.1Fedora Release Engineering - 3.12.3.99.3-7Elio Maldonado - 3.12.3.99.3-6Elio Maldonado - 3.12.3.99.3-5Elio Maldonado - 3.12.3.99.3-4Kai Engert - 3.12.3.99.3-3Kai Engert - 3.12.3.99.3-2Kai Engert - 3.12.3-7Kai Engert - 3.12.3-4Kai Engert - 3.12.3-3Kai Engert - 3.12.3-2Kai Engert - 3.12.2.99.3-7Kai Engert - 3.12.2.99.3-6Kai Engert - 3.12.2.99.3-5Kai Engert - 3.12.2.99.3-4Kai Engert - 3.12.2.99.3-3Kai Engert - 3.12.2.99.3-2Kai Engert - 3.12.2.99.3-1Fedora Release Engineering - 3.12.2.0-4Kai Engert - 3.12.2.0-3Dennis Gilmore - 3.12.1.1-4Kai Engert - 3.12.1.1-3Kai Engert - 3.12.1.1-2Kai Engert - 3.12.1.0-2Kai Engert - 3.12.0.3-7Kai Engert - 3.12.0.3-6Kai Engert - 3.12.0.3-3Kai Engert - 3.12.0.3-2Kai Engert - 3.12.0.1-1Jesse Keating - 3.11.99.5-2Kai Engert - 3.11.99.5-1Kai Engert - 3.11.99.4-1Kai Engert - 3.11.99.3-6Kai Engert - 3.11.99.3-5Kai Engert - 3.11.99.3-4Kai Engert - 3.11.99.3-3Kai Engert - 3.11.99.3-2Kai Engert - 3.11.99.3-1Kai Engert - 3.11.99.2b-3Kai Engert - 3.11.99.2b-2Kai Engert - 3.11.99.2-2Kai Engert - 3.11.99.2-1Kai Engert - 3.11.7-10Rob Crittenden - 3.11.7-9Kai Engert - 3.11.7-8Bob Relyea - 3.11.7-7Kai Engert - 3.11.7-6Kai Engert - 3.11.7-5Kai Engert - 3.11.7-4Kai Engert - 3.11.7-3Kai Engert - 3.11.7-2Kai Engert - 3.11.5-2Kai Engert - 3.11.5-1Bob Relyea - 3.11.4-4Kai Engert - 3.11.4-1Kai Engert - 3.11.3-2Kai Engert - 3.11.3-1Kai Engert - 3.11.2-2Jesse Keating - 3.11.2-1.1Kai Engert - 3.11.2-1Kai Engert - 3.11.1-2Kai Engert - 3.11.1-1Kai Engert - 3.11-4Jesse Keating - 3.11-3.2Jesse Keating - 3.11-3.1Ray Strode 3.11-3Christopher Aillon 3.11-2Christopher Aillon 3.11-1Christopher Aillon 3.11-0.cvs.2Christopher Aillon 3.11-0.cvsKai Engert Rob Crittenden 3.10-1- Allow for shorter ecdsa signatures by padding them to full length- Fix ecc DER wrapping.- Pick up validated constant time implementations of p256, p384, and p521 from upsream - More Fips indicator changes- FIPS review changes - add PORT_SafeZero to avoid compiler optimizing a way zeroing memory. - update the indicators for this release - allow hashing of longer than int32 values in a single PKCS #11 call.- Fix expired certs in tests - Fix CVE-2023-5388- add indicators for pbkdf2 - add camellia to pkcs12 doc files - fix ems policy bug - disable ech- fix the change log- rebase to NSS 3.90- Fix CVE-2023-0767- Fix QA found failures: - remove extra '+' from sslpolicy.txt file causing test error values - only use GRND_RANDOM if the kernel is in FIPS mode.- FIPS 140-3 changes- Update fips default for pk12util to AES rather than TDES - Fix bug in pkcs12 files with null passwords- Better fix for test regressions- fix nss.spec so it works in a rhel-8.1.0 buildroot- FIPS 140-3 changes - Reject Small RSA keys, 1024 bit keys are marked as FIP OK when verifying, reject signature keys by policy - Allow applications to retrigger selftests on demand.- Fix pkgconfig output- NSR Coverity fix changed selfserv from passive to active, change it back- Fix regressions found in test suites.- Rebase to NSS 3.79 - Set FIPS Module ID - skip attribute verification on attributes with default values - don't export trust objects if they are default trust objects from dbm - add dbtool to nss-tools- Fix CVE 2021 43527- Fix ssl alert issue- Fix issue with reading databases that were updated using unpatched versions of nss- Better fix for the sdb timeout. The issue wasn't a race, it was the sqlite timeout waiting to begin a transaction under heavy thread usage.- Fix sdb race condition- Fix coverity issues- Rebase to NSS 3.67- Restore old pkcs12 defaults.- build nss for older nspr so we can pass gating with the new nspr in the build root- Rebase to NSS 3.66- Fix various corner cases with ike v1 app b support.- Fix the following CVE - CVE-2020-12403 chacha-poly issues - CVE-2020-12400 constant time ECC. - CVE-2020-6829 constant time ECC.- Revert some policy changes the generate ABI runtime issues.- Add support for enable/disable in policy. Now if your policy file has disallow=x enable=y it will act just like our other libraries.- Add OAEP interface so applications can wrap keys with RSA-OAEP rather than RSA-PKCS-1.- fips need to reject small primes even if they are approved - code to autodetect whether or not to use the cache needs to do so in a way that doesn't mess with filesystem negative file caching. - add kdf selftests- Fix issue with upgradedb where upgradedb expects standard to generate dbm databases, not sql databases (default in RHEL8)- Disable dh timing test because it's unreliable on s390- Explicitly enable upgradedb/sharedb test cycles- Disable Delegated Credentials for TLS- Fix attribute decryption issue where the private key components integrity check on private attributes where not being checked.- Update nss-rsa-pkcs1-sigalgs.patch to the upstream version- Include required checks for dh and ecdh key generation in FIPS mode.- Add better checks for dh derive operations in FIPS mode.- Disable NSS_HASH_ALG_SUPPORT as well for MD5 (#1849938) - Adjust for update-crypto-policies packaging change (#1848649) - Fix compilation with -Werror=strict-prototypes (#1843417)- Fix regression in MD5 disablement (#1849938) - Include rsa_pkcs1_* in signature_algorithms extension (#1847945)- Update to NSS 3.53.1- Update to NSS 3.53- Fix swapped CMAC PKCS #11 values. - Fix data alignment crash in CMAC.- Fix coverify scan issue- Fix endian problem in SP-800 108 code.- Install cmac.h required by blapi.h (#1764513) - Fix out-of-bounds write in NSC_EncryptUpdate (#1775913)- Add SP-800 108 Generalized kdf- Check policy against hash algorithms used for ServerKeyExchange (#1730039)- Add CMAC- CKM_NSS_IKE1_APP_B_PRF_DERIVE was missing from the mechanism list, preventing PK11_Derive*() from using it. Add gtests for the PK11_Derive interface for all the CKM_NSS_IKE*_DERIVE mechanism.- Backport fixes from 3.44.1- Add continuous RNG test required by FIPS - fipstest: use CKM_TLS12_MASTER_KEY_DERIVE instead of vendor specific mechanism- Rebuild with the correct build target- rebuild to try to retrigger CI tests- Fix certutil man page - Fix extracting a public key from a private key for dh, ec, and dsa- Disable TLS 1.3 under FIPS mode - Disable RSASSA-PKCS1-v1_5 in TLS 1.3 - Fix post-handshake auth transcript calculation if SSL_ENABLE_SESSION_TICKETS is set - Revert the change to use XDG basedirs (mozilla#818686)- Add ike mechanisms in softokn - Add FIPS checks in softoken- Update to NSS 3.44 - Define NSS_SEED_ONLY_DEV_URANDOM=1 to exclusively use getentropy - Use %autosetup - Clean up manual pages generation - Clean up %check - Remove prelink dependency, which is not available in RHEL-8 - Remove upstreamed patches- Update manual pages to reflect recent changes in commands- Make sure corresponding public keys are created when importing private keys.- Fix the last change - Add --no-reload option to update-crypto-policies to avoid unnecessary restart of daemons- Restore LDFLAGS injection when linking DSO- Update to NSS 3.41 - Consolidate nss-util, nss-softokn, and nss into a single source package- Fix the last commit- Support for IKE/IPsec typical PKIX usage so libreswan can use nss without rejecting certs based on EKU- Backport upstream fixes for rhbz#1649026, rhbz#1608895, rhbz#1644854 - Document PKCS #11 URI - Add warning when adding module with modutil while p11-kit is enabled- Update nss-dsa.patch to not advertise DSA signature algorithm - Update PayPal test certs for testing- Backport "DSA" keyword in crypto-policies- Update to NSS 3.39- Fix LDFLAGS injection when linking DSO- Install crypto-policies configuration file for https://fedoraproject.org/wiki/Changes/NSSLoadP11KitModules - Port enable-fips-when-system-is-in-fips-mode.patch from RHEL-7 - Use %ldconfig_scriptlets - Remove needless use of %defattr, by Jason Tibbitts- Update to NSS 3.38- Backport upstream addition of nss-policy-check utility, rhbz#1428746, includes required fixes for mozbz#1296263 and mozbz#1474875- Switch the default DB type to SQL - Enable SSLKEYLOGFILE- Update to NSS 3.36.1 - Remove nss-3.14.0.0-disble-ocsp-test.patch - Fix partial injection of LDFLAGS - Remove NSS_NO_PKCS11_BYPASS, which is no-op in upstream- Update to NSS 3.36.0 - Add gcc-c++ to BuildRequires (C++ is needed for gtests) - Make test failure detection robuster- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild- Fix a compiler error with gcc 8, mozbz#1434070 - Set NSS_FORCE_FIPS=1 at %build time, and remove from %check.- Stop pulling in nss-pem automatically, packages that need it should depend on it, rhbz#1539401- Update to NSS 3.35.0- Update to NSS 3.34.0- Make sure 32bit nss-pem always be installed with 32bit nss in multlib environment, patch by Kamil Dudka- Fix test script- Update tests to be compatible with default NSS DB changed to sql (the default was changed in the nss-util package).- rhbz#1505487, backport upstream fixes required for rhbz#1496560- Update to NSS 3.33.0- Update to NSS 3.32.1- Update iquote.patch to really prefer in-tree headers over system headers- NSS libnssckbi.so has already been obsoleted by p11-kit-trust, rhbz#1484449- Update to NSS 3.32.0- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild- Backport mozbz#1381784 to avoid deadlock in dnf- Move signtool to %_libdir/nss/unsupported-tools, for: https://fedoraproject.org/wiki/Changes/NSSSigntoolDeprecation- Rebase to NSS 3.31.0- Enable gtests- Rebase to NSS 3.30.2 - Enable TLS 1.3- Backport upstream mozbz#1328318 to support crypto policy FUTURE.- Rebase to NSS 3.30.0 - Remove upstreamed patches- Backport mozbz#1334976 and mozbz#1336487.- Rebase to NSS 3.29.1- Disable TLS 1.3, following the upstream change- Rebase to NSS 3.29.0 - Suppress -Werror=int-in-bool-context warnings with GCC7- Work around pkgconfig -> pkgconf transition issue (releng#6597)- Disable TLS 1.3 - Add "Conflicts" with packages using older Mozilla codebase, which is not compatible with NSS 3.28.1 - Remove NSS_ECC_MORE_THAN_SUITE_B setting, as it was removed in upstream- Add "Conflicts" with older firefox packages which don't have support for smaller curves added in NSS 3.28.1- Fix incorrect version specification in %nss_{util,softokn}_version, pointed by Elio Maldonado- Rebase to NSS 3.28.1 - Remove upstreamed patch for disabling RSA-PSS - Re-enable TLS 1.3- Rebase to NSS 3.27.2- Revert the previous fix for RSA-PSS and use the upstream fix instead- Disable the use of RSA-PSS with SSL/TLS. #1383809- Disable TLS 1.3 for now, to avoid reported regression with TLS to version intolerant servers- Rebase to NSS 3.27.0 - Remove upstreamed ectest patch- Rebase to NSS 3.26.0 - Update check policy file patch to better match what was upstreamed - Remove conditionally ignore system policy patch as it has been upstreamed - Skip ectest as well as ecperf, which are built as part of nss-softokn - Fix rpmlint error regarding %define usage- Incorporate some changes requested in upstream review and commited upstream (#1157720)- Add support for conditionally ignoring the system policy (#1157720) - Remove unneeded test scripts patches in order to run more tests - Remove unneeded test data modifications from the spec file- Remove obsolete patch and spurious lines from the spec file (#1347336)- Cleanup spec file and patches and add references to bugs filed upstream- Rebase to nss 3.25- decouple nss-pem from the nss package (#1347336)- Apply the patch that was last introduced - Renumber and reorder some of the patches - Resolves: Bug 1342158- Allow application requests to disable SSL v2 to succeed - Resolves: Bug 1342158 - nss-3.24 does no longer support ssl V2, installation of IPA fails because nss init fails- Rebase to NSS 3.24.0 - Restore setting the policy file location - Make ssl tests scripts aware of policy - Ajust tests data expected result for policy- Bootstrap build to rebase to NSS 3.24.0 - Temporarily not setting the policy file location- Change POLICY_FILE to "nss.config"- Change POLICY_FILE to "nss.cfg"- Change the POLICY_PATH to "/etc/crypto-policies/back-ends" - Regenerate the check policy patch with hg to provide more context- Fix typo in the last %changelog entry- Load policy file if /etc/pki/nssdb/policy.cfg exists - Resolves: Bug 1157720 - NSS should enforce the system-wide crypto policy- Remove unused patch rendered obsolete by pem update- Update pem sources to latest from nss-pem upstream - Resolves: Bug 1300652 - [PEM] insufficient input validity checking while loading a private key- Rebase to NSS 3.23- Rebase to NSS 3.22.2- Fix ssl2/exp test disabling to run all the required tests- Rebase to NSS 3.22.1- Update .gitignore as part of updating to nss 3.22- Update to NSS 3.22- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild- Resolves: Bug 1299040 - Enable ssl_gtests upstream test suite - Remove 'export NSS_DISABLE_GTESTS=1' go ssl_gtests are built - Use %define when specifying the nss_tests to run- Add 64-bit MIPS to multilib arches- Update %{nss_util_version} and %{nss_softokn_version} to 3.21.0 - Resolves: Bug 1284095 - all https fails with sec_error_no_token- Add references to bugs filed upstream- Update to NSS 3.21 - Package listsuites as part of the unsupported tools set - Resolves: Bug 1279912 - nss-3.21 is available - Resolves: Bug 1258425 - Use __isa_bits macro instead of list of 64-bit - Resolves: Bug 1280032 - Package listsuites as part of the nss unsupported tools set- Update to NSS 3.20.1- Enable ECC cipher-suites by default [hrbz#1185708] - Split the enabling patch in two for easier maintenance - Remove unused patches rendered obsolete by prior rebase- Enable ECC cipher-suites by default [hrbz#1185708] - Implement corrections requested in code review- Enable ECC cipher-suites by default [hrbz#1185708]- Fix patches that disable ssl2 and export cipher suites support - Fix libssl patch that disable ssl2 & export cipher suites to not disable RSA_WITH_NULL ciphers - Fix syntax errors in patch to skip ssl2 and export cipher suite tests - Turn ssl2 off by default in the tstclnt tool - Disable ssl stress tests containing TLS RC4 128 with MD5- Update to NSS 3.20- Update to NSS 3.19.3- Create on the fly versions of sslcov.txt and sslstress.txt that disable tests for SSL2 and EXPORT ciphers- Update to NSS 3.19.2- Update to NSS 3.19.1- Update to NSS 3.19- Replace expired test certificates, upstream bug 1151037- Update to nss-3.18.0 - Resolves: Bug 1203689 - nss-3.18 is available- Disable export suites and SSL2 support at build time - Fix syntax errors in various shell scripts - Resolves: Bug 1189952 - Disable SSL2 and the export cipher suites- Rebuilt for Fedora 23 Change https://fedoraproject.org/wiki/Changes/Harden_all_packages_with_position-independent_code- Commented out the export NSS_NO_SSL2=1 line to not disable ssl2 - Backing out from disabling ssl2 until the patches are fixed- Disable SSL2 support at build time - Fix syntax errors in various shell scripts - Resolves: Bug 1189952 - Disable SSL2 and the export cipher suites- Update to nss-3.17.4- Own the %{_datadir}/doc/nss-tools dir- Resolves: Bug 987189 - nss-tools RPM conflicts with perl-PAR-Packer - Install pp man page in %{_datadir}/doc/nss-tools/pp.1 - Use %{_mandir} instead of /usr/share/man as more generic- Install pp man page in alternative location - Resolves: Bug 987189 - nss-tools RPM conflicts with perl-PAR-Packer- Update to nss-3.17.3 - Resolves: Bug 1171012 - nss-3.17.3 is available- Resolves: Bug 994599 - Enable TLS 1.2 by default- Update to nss-3.17.2- Update to nss-3.17.1 - Add a mechanism to skip test suite execution during development work- Rebuild for rpm bug 1131960- Update to nss-3.17.0- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild- Replace expired PayPal test cert with current one to prevent build failure- fix license handling- Update to nss-3.16.2- Remove unwanted source directories at end of %prep so it truly does it - Skip the cipher suite already run as part of the nss-softokn build- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild- Replacing ppc64 and ppc64le with the power64 macro - Related: Bug 1052545 - Trivial change for ppc64le in nss spec- Update to nss-3.16.1 - Update the iquote patch on account of the rebase - Improve error detection in the %section - Resolves: Bug 1094702 - nss-3.16.1 is available- Update to nss-3.16.0 - Cleanup the copying of the tools man pages - Update the iquote.patch on account of the rebase- Restore requiring nss_softokn_version >= 3.15.5- Update to nss-3.15.5 - Temporarily requiring only nss_softokn_version >= 3.15.4 - Fix location of sharedb files and their manpages - Move cert9.db, key4.db, and pkcs11.txt to the main package - Move nss-sysinit manpages tar archives to the main package - Resolves: Bug 1066877 - nss-3.15.5 is available - Resolves: Bug 1067091 - Move sharedb files to the %files section- Revert previous change that moved some sysinit manpages - Restore nss-sysinit manpages tar archives to %files sysinit - Removing spurious wildcard entry was the only change needed- Add explanatory comments for iquote.patch as was done on f20- Update pem sources to latest from nss-pem upstream - Pick up pem fixes verified on RHEL and applied upstream - Fix a problem where same files in two rpms created rpm conflict - Move some nss-sysinit manpages tar archives to the %files the - All man pages are listed by name so there shouldn't be wildcard inclusion - Add support for ppc64le, Resolves: Bug 1052545- ARM tests pass so remove ARM conditional- Update to nss-3.15.4 (hg tag NSS_3_15_4_RTM) - Resolves: Bug 1049229 - nss-3.15.4 is available - Update pem sources to latest from the interim upstream for pem - Remove no longer needed patches - Update pem/rsawrapr.c patch on account of upstream changes to freebl/softoken - Update iquote.patch on account of upstream changes- Update to nss-3.15.3.1 (hg tag NSS_3_15_3_1_RTM) - Resolves: Bug 1040282 - nss: Mis-issued ANSSI/DCSSI certificate (MFSA 2013-117) - Resolves: Bug 1040192 - nss-3.15.3.1 is available- Bump the release tag- Update to NSS_3_15_3_RTM - Resolves: Bug 1031897 - CVE-2013-5605 CVE-2013-5606 CVE-2013-1741 nss: various flaws - Fix option descriptions for setup-nsssysinit manpage - Fix man page of nss-sysinit wrong path and other flaws - Document email option for certutil manpage - Remove unused patches- Revert one change from last commit to preserve full nss pluggable ecc supprt [1019245]- Use the full sources from upstream - Bug 1019245 - ECDHE in openssl available -> NSS needs too for Firefox/Thunderbird- Update to NSS_3_15_2_RTM - Update iquote.patch on account of modified prototype on cert.h installed by nss-devel- Update pem sources to pick up a patch applied upstream which a faulty merge had missed - The pem module should not require unique file basenames- Update pem sources to the latest from interim upstream- Resolves: rhbz#996639 - Minor bugs in nss man pages - Fix some typos and improve description and see also sections- Cleanup spec file to address most rpmlint errors and warnings - Using double percent symbols to fix macro-in-comment warnings - Ignore unversioned-explicit-provides nss-system-init per spec comments - Ignore invalid-url Source0 as it comes from the git lookaside cache - Ignore invalid-url Source12 as it comes from the git lookaside cache- Add man page for pkcs11.txt configuration file and cert and key databases - Resolves: rhbz#985114 - Provide man pages for the nss configuration files- Fix errors in the man pages - Resolves: rhbz#984106 - Add missing option descriptions to man pages for {cert|cms|crl}util - Resolves: rhbz#982856 - Fix path to script in man page for nss-sysinit- Update to NSS_3_15_1_RTM - Enable the iquote.patch to access newly introduced types- Install man pages for nss-tools and the nss-config and setup-nsssysinit scripts - Resolves: rhbz#606020 - nss security tools lack man pages- Build nss without softoken or util sources in the tree - Resolves: rhbz#689918- Update ssl-cbc-random-iv-by-default.patch- Fix generation of NSS_VMAJOR, NSS_VMINOR, and NSS_VPATCH for nss-config- Update to NSS_3_15_RTM- Fix incorrect path that hid failed test from view - Add ocsp to the test suites to run but ... - Temporarily disable the ocsp stapling tests - Do not treat failed attempts at ssl pkcs11 bypass as fatal errors- Update to NSS_3_15_BETA1 - Update spec file, patches, and helper scripts on account of a shallower source tree- Update expired test certificates (fixed in upstream bug 852781)- Fix incorrect post/postun scripts. Fix broken links in posttrans.- Configure libnssckbi.so to use the alternatives system in order to prepare for a drop in replacement.- Update to NSS_3_14_3_RTM - sync up pem rsawrapr.c with softoken upstream changes for nss-3.14.3 - Resolves: rhbz#908257 - CVE-2013-1620 nss: TLS CBC padding timing attack - Resolves: rhbz#896651 - PEM module trashes private keys if login fails - Resolves: rhbz#909775 - specfile support for AArch64 - Resolves: rhbz#910584 - certutil -a does not produce ASCII output- Allow building nss against older system sqlite- Update to NSS_3_14_2_RTM- Update to NSS_3_14_1_WITH_CKBI_1_93_RTM- Require nspr >= 4.9.4 - Fix changelog invalid dates- Update to NSS_3_14_1_RTM- Bug 879978 - Install the nssck.api header template where mod_revocator can access it - Install nssck.api in /usr/includes/nss3/templates- Bug 879978 - Install the nssck.api header template in a place where mod_revocator can access it - Install nssck.api in /usr/includes/nss3- Bug 870864 - Add support in NSS for Secure Boot- Disable bypass code at build time and return failure on attempts to enable at runtime - Bug 806588 - Disable SSL PKCS #11 bypass at build time- Fix pk11wrap locking which fixes 'fedpkg new-sources' and 'fedpkg update' hangs - Bug 872124 - nss-3.14 breaks fedpkg new-sources - Fix should be considered preliminary since the patch may change upon upstream approval- Add a dummy source file for testing /preventing fedpkg breakage - Helps test the fedpkg new-sources and upload commands for breakage by nss updates - Related to Bug 872124 - nss 3.14 breaks fedpkg new-sources- Fix a previous unwanted merge from f18 - Update the SS_SSL_CBC_RANDOM_IV patch to match new sources while - Keeping the patch disabled while we are still in rawhide and - State in comment that patch is needed for both stable and beta branches - Update .gitignore to download only the new sources- Fix the spec file so sechash.h gets installed - Resolves: rhbz#871882 - missing header: sechash.h in nss 3.14- Update the license to MPLv2.0- Use only -f when removing unwanted headers- Add secmodt.h to the headers installed by nss-devel - nss-devel must install secmodt.h which moved from softoken to pk11wrap with nss-3.14- Update to NSS_3_14_RTM- Update to NSS_3_14_RC1 - update nss-589636.patch to apply to httpdserv - turn off ocsp tests for now - remove no longer needed patches - remove headers shipped by nss-util- Update to NSS_3_13_6_RTM- Rebase pem sources to fedora-hosted upstream to pick up two fixes from rhel-6.3 - Resolves: rhbz#847460 - Fix invalid read and free on invalid cert load - Resolves: rhbz#847462 - PEM module may attempt to free uninitialized pointer - Remove unneeded fix gcc 4.7 c++ issue in secmodt.h that actually undoes the upstream fix- Fix pluggable ecc support- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- Fix checkin comment to prevent unwanted expansions of percents- Resolves: Bug 830410 - Missing Requires %{?_isa} - Use Requires: %{name}%{?_isa} = %{version}-%{release} on tools - Drop zlib requires which rpmlint reports as error E: explicit-lib-dependency zlib - Enable sha224 portion of powerup selftest when running test suites - Require nspr 4.9.1- Resolves: rhbz#833529 - revert unwanted change to nss.pc.in- Resolves: rhbz#833529 - Remove unwanted space from the Libs: line on nss.pc.in- Update to NSS_3_13_5_RTM- Resolves: Bug 812423 - nss_Init leaks memory, fix from RHEL 6.3- Resolves: Bug 805723 - Library needs partial RELRO support added - Patch coreconf/Linux.mk as done on RHEL 6.2- Update to NSS_3_13_4_RTM - Update the nss-pem source archive to the latest version - Remove no longer needed patches - Resolves: Bug 806043 - use pem files interchangeably in a single process - Resolves: Bug 806051 - PEM various flaws detected by Coverity - Resolves: Bug 806058 - PEM pem_CreateObject leaks memory given a non-existing file name- Resolves: Bug 805723 - Library needs partial RELRO support added- Cleanup of the spec file - Add references to the upstream bugs - Fix typo in Summary for sysinit- Pick up fixes from RHEL - Resolves: rhbz#800674 - Unable to contact LDAP Server during winsync - Resolves: rhbz#800682 - Qpid AMQP daemon fails to load after nss update - Resolves: rhbz#800676 - NSS workaround for freebl bug that causes openswan to drop connections- Update to NSS_3_13_3_RTM- fix issue with gcc 4.7 in secmodt.h and C++11 user-defined literals- Resolves: Bug 784672 - nss should protect against being called before nss_Init- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- Deactivate a patch currently meant for stable branches only- Resolves: Bug 770682 - nss update breaks pidgin-sipe connectivity - NSS_SSL_CBC_RANDOM_IV set to 0 by default and changed to 1 on user request- Revert to using current nss_softokn_version - Patch to deal with lack of sha224 is no longer needed- Resolves: Bug 754771 - [PEM] an unregistered callback causes a SIGSEGV- Resolves: Bug 750376 - nss 3.13 breaks sssd TLS - Fix how pem is built so that nss-3.13.x works with nss-softokn-3.12.y - Only patch blapitest for the lack of sha224 on system freebl - Completed the patch to make pem link against system freebl- Removed unwanted /usr/include/nss3 in front of the normal cflags include path - Removed unnecessary patch dealing with CERTDB_TERMINAL_RECORD, it's visible- Statically link the pem module against system freebl found in buildroot - Disabling sha224-related powerup selftest until we update softokn - Disable sha224 and pss tests which nss-softokn 3.12.x doesn't support- Rebuild with nss-softokn from 3.12 in the buildroot - Allows the pem module to statically link against 3.12.x freebl - Required for using nss-3.13.x with nss-softokn-3.12.y for a merge inrto rhel git repo - Build will be temprarily placed on buildroot override but not pushed in bodhi- Fix broken dependencies by updating the nss-util and nss-softokn versions- Update to NSS_3_13_1_RTM - Update builtin certs to those from NSSCKBI_1_88_RTM- Update to NSS_3_13_RTM- Update to NSS_3_13_RC0- Fix attempt to free initilized pointer (#717338) - Fix leak on pem_CreateObject when given non-existing file name (#734760) - Fix pem_Initialize to return CKR_CANT_LOCK on multi-treaded calls (#736410)- Update builtins certs to those from NSSCKBI_1_87_RTM- Update to NSS_3_12_11_RTM- Indicate the provenance of stripped source tarball (#688015)- Provide virtual -static package to meet guidelines (#609612).- Enable pluggable ecc support (#712556) - Disable the nssdb write-access-on-read-only-dir tests when user is root (#646045)- make the testsuite non fatal on arm arches- Fix crmf hard-coded maximum size for wrapped private keys (#703656)- Update to NSS_3_12_10_RTM- Update to NSS_3_12_10_BETA1- Implement PEM logging using NSPR's own (#695011)- Update to NSS_3.12.9_WITH_CKBI_1_82_RTM- Short-term fix for ssl test suites hangs on ipv6 type connections (#539183)- Add a missing requires for pkcs11-devel (#675196)- Run the test suites in the check section (#677809)- Fix cms headers to not use c++ reserved words (#676036) - Reenabling Bug 499444 patches - Fix to swap internal key slot on fips mode switches- Revert patches for 499444 until all c++ reserved words are found and extirpated- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- Fix cms header to not use c++ reserved word (#676036) - Reenable patches for bug 499444- Revert patches for 499444 as they use a C++ reserved word and cause compilation of Firefox to fail- Fix the earlier infinite recursion patch (#499444) - Remove a header that now nss-softokn-freebl-devel ships- Fix infinite recursion when encoding NSS enveloped/digested data (#499444)- Update the cacert trust patch per upstream review requests (#633043)- Fix to honor the user's cert trust preferences (#633043) - Remove obsoleted patch- Update to 3.12.9- Rebuilt according to fedora pre-release package naming guidelines- Update to NSS_3_12_9_BETA2 - Fix libpnsspem crash when cacert dir contains other directories (#642433)- Update to NSS_3_12_9_BETA1- Update pem source tar with fixes for 614532 and 596674 - Remove no longer needed patches- Update PayPalEE.cert test certificate which had expired- Tell rpm not to verify md5, size, and modtime of configurations file- Fix certificates trust order (#643134) - Apply nss-sysinit-userdb-first.patch last- Move triggerpostun -n nss-sysinit script ahead of the other ones (#639248)- Fix invalid %postun scriptlet (#639248)- Replace posttrans sysinit scriptlet with a triggerpostun one (#636787) - Fix and cleanup the setup-nsssysinit.sh script (#636792, #636801)- Add posttrans scriptlet (#636787)- Update to 3.12.8 - Prevent disabling of nss-sysinit on package upgrade (#636787) - Create pkcs11.txt with correct permissions regardless of umask (#636792) - Setup-nsssysinit.sh reports whether nss-sysinit is turned on or off (#636801) - Added provides pkcs11-devel-static to comply with packaging guidelines (#609612)- NSS 3.12.8 RC0- Fix nss-util_version and nss_softokn_version required to be 3.12.7.99.3- NSS 3.12.8 Beta3 - Fix unclosed comment in renegotiate-transitional.patch- Change BuildRequries to available version of nss-util-devel- Define NSS_USE_SYSTEM_SQLITE and remove unneeded patch - Add comments regarding an unversioned provides which triggers rpmlint warning - Build requires nss-softokn-devel >= 3.12.7- Update to 3.12.7- Apply the patches to fix rhbz#614532- Removed pem sourecs as they are in the cache- Add support for PKCS#8 encoded PEM RSA private key files (#614532)- Fix nsssysinit to return userdb ahead of systemdb (#603313)- Require and BuildRequire >= the listed version not =- Require nss-softoken 3.12.6- Fix SIGSEGV within CreateObject (#596674)- Update pem source tar to pick up the following bug fixes: - PEM - Allow collect objects to search through all objects - PEM - Make CopyObject return a new shallow copy - PEM - Fix memory leak in pem_mdCryptoOperationRSAPriv- Update the test cert in the setup phase- Add sed to sysinit requires as setup-nsssysinit.sh requires it (#576071) - Update PayPalEE test cert with unexpired one (#580207)- Fix ns.spec to not require nss-softokn (#575001)- rebuilt with all tests enabled- Using SSL_RENEGOTIATE_TRANSITIONAL as default while on transition period - Disabling ssl tests suites until bug 539183 is resolved- Update to 3.12.6 - Reactivate all tests - Patch tools to validate command line options arguments- Fix curl related regression and general patch code clean up- retagging- Fix SIGSEGV on call of NSS_Initialize (#553638)- New version of patch to allow root to modify ystem database (#547860)- Temporarily disabling the ssl tests- Fix nsssysinit to allow root to modify the nss system database (#547860)- Fix an error introduced when adapting the patch for rhbz #546211- Remove left over trace statements from nsssysinit patching- Fix a misconstructed patch- Fix nsssysinit to enable apps to use system cert store, patch contributed by David Woodhouse (#546221) - Fix spec so sysinit requires coreutils for post install scriplet (#547067) - Fix segmentation fault when listing keys or certs in the database, patch contributed by Kamil Dudka (#540387)- Fix nsssysinit to set the default flags on the crypto module (#545779) - Remove redundant header from the pem module- Remove unneeded patch- Retagging to include missing patch- Update to 3.12.5 - Patch to allow ssl/tls clients to interoperate with servers that require renogiation- Retagging- Require nss-softoken of same architecture as nss (#527867) - Merge setup-nsssysinit.sh improvements from F-12 (#527051)- User no longer prompted for a password when listing keys an empty system db (#527048) - Fix setup-nsssysinit to handle more general formats (#527051)- Fix syntax error in setup-nsssysinit.sh- Fix sysinit to be under mozilla/security/nss/lib- Add nss-sysinit activation/deactivation script- Install blank databases and configuration file for system shared database - nsssysinit queries system for fips mode before relying on environment variable- Restoring nssutil and -rpath-link to nss-config for now - 522477- Add the nss-sysinit subpackage- Installing shared libraries to %{_libdir}- Retagging to pick up new sources- Update pem enabling source tar with latest fixes (509705, 51209)- PEM module implements memory management for internal objects - 509705 - PEM module doesn't crash when processing malformed key files - 512019- Remove symbolic links to shared libraries from devel - 521155 - No rpath-link in nss-softokn-config- Update to 3.12.4- Fix FORTIFY_SOURCE buffer overflows in test suite on ppc and ppc64 - bug 519766 - Fixed requires and buildrequires as per recommendations in spec file review- Restoring patches 2 and 7 as we still compile all sources - Applying the nss-nolocalsql.patch solves nss-tools sqlite dependency problems- restore require sqlite- Don't require sqlite for nss- Ensure versions in the requires match those used when creating nss.pc- Remove nss-prelink.conf as signed all shared libraries moved to nss-softokn - Add a temprary hack to nss.pc.in to unblock builds- caolan's nss.pc patch- Bump the release number for a chained build of nss-util, nss-softokn and nss- Fix nss-config not to include nssutil - Add BuildRequires on nss-softokn and nss-util since build also runs the test suite- disabling all tests while we investigate a buffer overflow bug- disabling some tests while we investigate a buffer overflow bug - 519766- remove patches that are now in nss-softokn and - remove spurious exec-permissions for nss.pc per rpmlint - single requires line in nss.pc.in- Fix BuildRequires: nss-softokn-devel release number- fix nss.pc.in to have one single requires line- cleanups for softokn- remove the softokn subpackages- don install the nss-util pkgconfig bits- remove from -devel the 3 headers that ship in nss-util-devel- kill off the nss-util nss-util-devel subpackages- split off nss-softokn and nss-util as subpackages with their own rpms - first phase of splitting nss-softokn and nss-util as their own packages- must install libnssutil3.since nss-util is untagged at the moment - preserve time stamps when installing various files- dont install libnssutil3.so since its now in nss-util- Fix spec file problems uncovered by Fedora_12_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild- removed two patch files which are no longer needed and fixed previous change log number- updated pem module incorporates various patches - fix off-by-one error when computing size to reduce memory leak. (483855) - fix data type to work on x86_64 systems. (429175) - fix various memory leaks and free internal objects on module unload. (501080) - fix to not clone internal objects in collect_objects(). (501118) - fix to not bypass initialization if module arguments are omitted. (501058) - fix numerous gcc warnings. (500815) - fix to support arbitrarily long password while loading a private key. (500180) - fix memory leak in make_key and memory leaks and return values in pem_mdSession_Login (501191)- add patch for bug 502133 upstream bug 496997- rebuild with higher release number for upgrade sanity- updated to NSS_3_12_4_FIPS1_WITH_CKBI_1_75- re-enable test suite - add patch for upstream bug 488646 and add newer paypal certs in order to make the test suite pass- add conflicts info in order to fix bug 499436- ship .chk files instead of running shlibsign at install time - include .chk file in softokn-freebl subpackage - add patch for upstream nss bug 488350- Update to NSS 3.12.3- temporarily disable the test suite because of bug 494266- fix softokn-freebl dependency for multilib (bug 494122)- introduce separate nss-softokn-freebl package- disable execstack when building freebl- add upstream patch to fix bug 483855- build nspr-less freebl library- Update to NSS_3_12_3_BETA4- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild- update to NSS_3_12_2_RC1 - use system zlib- add sparc64 to the list of 64 bit arches- bug 456847, move pkgconfig requirement to devel package- Update to NSS_3_12_1_RC2- NSS 3.12.1 RC1- fix bug bug 429175 in libpem module- bug 456847, add Requires: pkgconfig- nss package should own /etc/prelink.conf.d folder, rhbz#452062 - use upstream patch to fix test suite abort- Update to NSS_3_12_RC4- Update to NSS_3_12_RC2- Zapping old Obsoletes/Provides. No longer needed, causes multilib headache.- Update to NSS_3_12_BETA3- NSS 3.12 Beta 2 - Use /usr/lib{64} as devel libdir, create symbolic links.- Apply upstream patch for bug 417664, enable test suite on pcc.- Support concurrent runs of the test suite on a single build host.- disable test suite on ppc- disable test suite on ppc64- Build against gcc 4.3.0, use workaround for bug 432146 - Run the test suite after the build and abort on failures.* NSS 3.12 Beta 1- move .so files to /lib- NSS 3.12 alpha 2b- upstream patches to avoid calling netstat for random data- NSS 3.12 alpha 2- Add /etc/prelink.conf.d/nss-prelink.conf in order to blacklist our signed libraries and protect them from modification.- Fix off-by-one error in the PEM module- fix a C++ mode compilation error- Add 3.12 ckfw and libnsspem- Updated license tag- Ensure the workaround for mozilla bug 51429 really get's built.- Better approach to ship freebl/softokn based on 3.11.5 - Remove link time dependency on softokn- Fix unowned directories, rhbz#233890- Update to 3.11.7, but freebl/softokn remain at 3.11.5. - Use a workaround to avoid mozilla bug 51429.- Fix rhbz#230545, failure to enable FIPS mode - Fix rhbz#220542, make NSS more tolerant of resets when in the middle of prompting for a user password.- Update to 3.11.5 - This update fixes two security vulnerabilities with SSL 2 - Do not use -rpath link option - Added several unsupported tools to tools package- disable ECC, cleanout dead code- Update to 3.11.4- Revert the attempt to require latest NSPR, as it is not yet available in the build infrastructure.- Update to 3.11.3- Add /etc/pki/nssdb- rebuild- Update to 3.11.2 - Enable executable bit on shared libs, also fixes debug info.- Enable Elliptic Curve Cryptography (ECC)- Update to 3.11.1 - Include upstream patch to limit curves- add --noexecstack when compiling assembler on x86_64- bump again for double-long bug on ppc(64)- rebuilt for new gcc4.1 snapshot and glibc changes- rebuild- Update file list for the devel packages- Update to 3.11- Add patch to allow building on ppc* - Update the pkgconfig file to Require nspr- Initial import into Fedora Core, based on a CVS snapshot of the NSS_3_11_RTM tag - Fix up the pkcs11-devel subpackage to contain the proper headers - Build with RPM_OPT_FLAGS - No need to have rpath of /usr/lib in the pc file- Adressed review comments by Wan-Teh Chang, Bob Relyea, Christopher Aillon.- Initial build3.90.0-7.el8_103.90.0-7.el8_10.build-id85cad019c00a0897617492ac05f95536ba107cb3libnssutil3.sonss-utilCOPYING/usr/lib//usr/lib/.build-id//usr/lib/.build-id/85//usr/lib64//usr/share/licenses//usr/share/licenses/nss-util/-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -fexceptions -fstack-protector-strong -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1 -fasynchronous-unwind-tables -fstack-clash-protectioncpioxz2aarch64-redhat-linux-gnudirectoryELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=85cad019c00a0897617492ac05f95536ba107cb3, strippedASCII textPPPPPPPPP P P P P PPPPPPRR RRRRRRRRRutf-8121c16509d896ce84c0a5775877534ade06ee5147a07392b54aecf5578b50454?@7zXZ !#, ] b2u jӫ`(y0Rx8A}m3-ZUu37˓5[QRQKr9k)vw8Q{K܉R,;tI;˛_k̓qqD.yh w*迠GZ)mThpOzЃ4˜xﭺ 91 B$Ęhnߺu׸tZL ݁7o )5Wy3JBTŠK#%LM )c/γpwI cgqwJڴuʁ-Fwg0`مBr@.2k\'Avi˭^#/Rp{7=qgUԨEu3l^xRMtYX,ivF+׬HU)%J5'u YgQcr;u@ poRo XPCU?F?H@8~9eu v*Ditl.A6ז~%iPSu,N @܂dG^OpIgw[g%^u@1b"xJ7 ?2>] CI 1Fb6]E*Z)jm1i&1ߓbHɓNZfh:莌SV6nrcC3Z,)L_X> .JoR(eQ."@ٟ6`CX> 8ܢ™0]-.h$SZAh, HW¼+t!qi?TcX#OjJqN,,uf#ӘdXe!fqU8@9aFQ0PuC3㣛]~9_~e) !YlnEQ2d7жT$ݞ`: {u\qƒ⍈ր:^IV/7%Bo@lϼVY}٤"qG8")# aOa˘o&7I!i&e !A7|"}"8m'w"$0Y$)CU?U gOS5ŇH()bV6ҶSGtX[)*R|r#2\6YKO4O!-3fDDx?=3:K\4VL*LZjg ?Hd!!/pB2z>Z|nd{Yx0Q#->P$;x-}e{԰Tj_xYdx9}H?ͥˈ.p!AĞg^{m;yxt3!nLKծUcp3M5Wh*wmQ.9Y}W,4uBcFAꙸJA<ԁ˖o׍mUgQ 3Q؛J}_jV?LRA|S9EqP`S[ |u}}S?z>C7MQBݎ Ji0 #$ǰF!QQ)2+6= [ OAbVϖlIսjV_N1xsYwФ!\|)!2^jrЈvY &$/zvh9ޢ zAn`gY@Rڗ3j ϷOToEaw~oo2]{S+|;{WzJ3,_ާlfخb]>2 Vd. ϧOK!Vo+ 9$ t8EC}MyNbH3|> j}fy8k)OUL.j9ІX%QiL=3Sь2} #sO(7>`liy%CF 褝VLF{$~)(e8-*xN (JFGKa/Z•$^ o`cTƔumRuh+O\/%qgcζr{}+c` %H+IIK.w҉OZ]X2tS?=ZFy+q.gJYoG cB Ƌ 09fGneU]1vQG|euSj"K1VOiW?lT^vtDE5uUZskT)e/=5a+]|wR#G!T:GuhƋԦN^t 5%:5bȘ>!z6mI:$:"Sq3J0g vF:/\ƑDa)M72C Bkz|Ŷd~)]q0`͇\BeǶ+3.88usej6< 4;{ ֣=iPwO`vU{b6\*RW/GHԢJ^8ɶth&2,G'ԩr24Q\~&Ȇ] $MDI]K>cO:.0eVDDzcƛ(CƸ!jW9?k%F7"~Ƃ`N-RYWknYG!SMB&4ܜK Vkw5RvXl}9z"ϰQ0iN0~ZMh T(|;Kug.@t6p72 EQ%Ag^\3*K#`/b;;z 놌ez&EiwIdM`,^>"ng-ٵoI sZ=ݍ1[=W4# .7RZT^M Y>£"A)O^fAR_/Rk.PUAM~rĈ|@dQLq/{,ecqf!e#bYM%  \ˏsmx_Z{GEU{kiml&R[X;]YH%?sbL/'bkfVV5*nߥ? gfKNQI3c\c˓sVUȷߚ}g\74wJְ嬍l]GDvP)#I#huɾD6Q QQvڌ=McBPaX{_1ո(!7W}Z,(BȮG1NSv~tbO=>D4Mb/;f]w73<V/u1U^eRSʲ\\[ G6 ~&h)CWcJ\v&}s '<R3-&CSJ6́HN-\ '&!k,9g ]t.pPu>'1 RAlqfl cY?XN8[i6ߐth%HzJU=6axRq~{"33vsHa3a?>HTI 9b@6JFb⍍nn<Yjd Pam094X 3yNe;[pIIC% +|PMWSWYPK_]e{FғAdPjYJQ~k2K.Z)I=?O˻oD#V!wkRG먲Ɗ@5E)ZBmda^9v o;+s*HMJ(GRIb[| SO:v|ܼ\c)HhTiп谠|]نZhOV@ `]}s SFig.Ƚ Ob1^Ā_UaׄlU럣d=~*gF k*3]uheUI8W8;¦+v{#)4bJb4*|gP!z 2(5e ]5.<9ϗ66糨,Ƌ'$/{t{&-jWBy1$2,,[Nnz|Ҫouq{7TjDmwn6'ϼ^Ev2i](JDGtU@B&fOf_g߄]ꫮcБhn^L'+rw ȉ>ů(a$d4Ҥ琦N GP0V!NVaG8;OE /l.X"cZWYUᩅͿҜz&\kBki};M?x{J:G RLZ{uw=pSԤ*vyA}NȨj$,c{/ 86Z"GO踠m]~2_TXV7͏Da"㐡֪AYO * ~3^\\+I-K;v;w<8#eSuFgeF)z"4[GCY6"=?p!zt/|:qϵ\&ܝց4rr܆KGN7R%\CfF=Yً\>F-qO0`N0@Ac3LVهtYQ2ځMƐ['\ $w_;Igs2EUh\AK=B*kH>#nMDmsU!j!3[c G t:6[DC)037\ސ5a#f/ĊAyͼ]5+n,Av 5- !\A J{936dE13ul#C DU)d:2w2!tF٫RF#;Pk8Nc %P̮\+b?%DN | y,Te) x$cL))}hZOk+Xpa1Ԫ6eCgK9jbz!űș;K!W]I>S^,reJg9Y\]?2w#td+I;䠔FR0qGQOJ6&rd*c#t'O :8-1za'n|ד=ݢ bI3X!1ߣ8SĒ]dS%08;WZL oXĔ!4~UQ6ߑ2n9HSf0EG(kߓX2q[eEa@stDX$g$=egU 2,oB1 т ` ښzTau{96TMky]jsI\TΪawZSX@ߥDDwXkzއ]Z~ Z&HLV-4GRA1HlE:P8l؞Z~\PR0+$c9zV#eWPq.u$l1|1CQ`"d.4 zUAk^]'ېm<ԉ8v; 8K-%YUqHUgp~ yjlbYf%'G, j㟺Ό&qG1x?r[^Eh-^ :mA`uY}Ym%' ߬- ^8^JSpr־Wv2ܨ?~+G"iIJXT3EK(AYj~|漫\K(uGӁJM,_Ua ; #1đ$5ͭ;uV,V2~d[N{K9[cQ <Բ!{&3ר ߓY]PZi,fBS"GɁ(.w*X&;:vqn(bQMg40f8g@~NwV"NNW{2:~g65Il"X1]m5"` ?5b4>E-t!5B5S01Ú' 9TÏ;릥Вl+sQ8t_{&DQrG^ORpp#GTMB)#vFwʪ. =d`>)ӻʬ3VW_';,9sp;v}YH Ct!tTm%E0"Ь@y ༶@g*s >D^ /z5 61Ii7Ԯ*Un.? 2wkSI_\)']l0xȿxO͖N6HXgET5ߋt3(pR# E`0/ӬVPeEwo0: !6-kb[8$rSa gRV,\L'\՞z2ipc׫R/o CGVYwa/V| A󓿺݌w\fy5MuS#ENLj,@^Vⲭ Nhi]hGC-H^OV^YwٓL@񉱏S$\gWʭMAF3:/ <@k4xJ^ts+rR`lmE}@wvuY {n} Z(l ̿Hjٹ i eo)U?5QHf/+oA2֢@.E7>+v,Xrer`&~5t^rxa )5ea!=vPRey~@Op>r]f:VӥsֱmSPJ`h yJ>R_W;)Y$j{!WIŀ&AL4;G_]]a3'5+ls3vn6M.^z`b5eI>w7?9:--Gp AF!a\uo gmJF晵W;Ɣ8V7y+>_:ա_zct>J&ȡj+CaYk.)\U9"0 F o>ID:!umA#%4.7aۃvhKRǵ*EwX#`olT'^F^*)ST7wj]:dHϓ-FLf}Q3I?tݫbW/r35`EkقSΆ 葷%jӶէꤦl@ُ\!cb&+q M) lP 0_D#l^^&n? AKV쐈p Gn).lXVjWV~5|N Dvc>E6TP0#u+ lfG vx4΄{G*h/sOu}.CHgZysZ ؙXBfyn:] v]_S>M_zX׃A[(q}vD򜜰63]Ӽz8}O0DXQqM_43 J6:Oz:g˦>\j f=);յ]_+QHOIv4O6] '2%%>~"+/PB[h_Y!. ?W5l;F%j.G]>‚t h(mu&AxqmMuT=8 _]3&Җ'țnRwp:<FRNc[m+kBMӏe')LN:GR.*7 d6]Q|1tW/HH<1˺ 6c2FFh_]1Vj8Z"Nhޜ+dZ3A҄MK1ܺP|-G%g}fH8˘myB~{J7ݵ$">9lf\2O-s kNKKRvC ]5zqŀ1r=ΥbttTlٹvL "Np G>jE7 U׉*rn:,/o2gO8 7 lydȌ̿O^,շyWWz# W18WM Lڸ6D: W|k3uCYZ}m_@\[YJbل-ycn,*Χ%fu)NkV V)ˑH)ⶭuN[%$GǪ^u6Xfj/!ѵ离~bגR7g f ") $~zVͳx̏qޓ_Ǻwlї2)I; ,mږλE,m| E3Jt%:-JV9P["  +rWR*4 ΢o[>(|)_,t@ީ;* v5`fw2[C6-őpo#N\Q2'==Q|hC;}'r"rz;[C{ea'iDGoVmAycUR }y%-s$ ز3 Q 3L2t4ljQRϨ_1 F|Wespxb3\Pgt%=$`d?)Iy? \ؿ|[{B42u6TL< nB9+]?%lzEe\%#KjwՀSމL.m~:uڒpVS)}:dzd%#K#~Wba(Mi'ogD!kvS!¸i >sj- f рtkv[ \,|yf >[s!XW5g.D q'$PhƴCBM 27D汑 3VM+iQkrnk5Heyќ wŅD#m~wYș o毙ԂdHX7ap4puldp} 6܊, fLHԫ3`ye'@"19'~jň’`=w>E [xQyI`/mV2fЖ(NA2ePmAo ^I60* u7/'!S6),M6?vZr#wT>F̿xvJ!g3whr D{#*orF 4$@6>NM/f!z3#ʶũ@( 1tUf]^qfȊe`84vH7ku:~ F/l, W~YLUҢ Abt.SŃS߈NdfC%(ҦQN^mc}݅JK/_!q굄P=tƒ_R+| W*Ԃ%TVT͢0KCȿw$j#AsލE ^ƫ'I ~p%A%ʇ^%PU8Z>V˞p;%g/L[`k31f`cL⥰\(RuؑL)<*zmlLT-^@$,2Q3pH= JB}:͚gece䞒շ"zj !i.mp2LLlG^eHR(ĆٻHpe#K5dwGaw]0z7P2p}'1f\R8dB+3㵾\wr &d@ޜ-{lI7z:!{U..j6|j+w cVE|i3zsR'?{?k0-*WG>n{*ҍ$\P׶FHdHQ [p9sEV&B4}znV/=n68hOcCltƈz?d]n1g?> 9Rϖi,Ь0xe|%G$q0Ks\G.;T. ;vqJt;i`ocfEa3>HBe㰠 ˈ値0G}$ԮZUW1R;i 뺭[U῜Ob$]zp'ig{Ql' znyogٸ@aKByD$ zC8pw,_ʁ̈-D:_.>\h8A$#ǞL9{&z%K~.hY_mGf";- ?,2 (~Ҙps9#pcv^(]疚M1󣟝47 !]Ζ$w*Gn\/hp$5|dI r=Lj8j\R~\0]7}\(KPw s0xɘ1{U7,szH` <F+8Hg.?!"v`ͨPyv 1C>.BgՑ93d'*Jx@E /VXo"mt.TRzD. vnKCާOYg ,|6Q6m;NҳNuJJ_uGuR[+8% HÝMI }FZ]$ez-̛96oa^Ym%Gf^o\|#Ce A1p؏)e 5 uM'c 0 Ly榇Q\exG&S$A[yjǍ<%2unH 2<^o5^A1LRޮr͡ݝp¯}_SnheJ1Pk'P$ܸhQpm:[MTp^Wd>hC*i8p ZV E>Cl S\.n'~'XI HXV~ff[ЬO`x/B&3P꤆#7Hl̀[_Ow=#aSlW#5n ֥ i ŽXn р ~L4깬!ɹhn-\"E_ Sy`q$Rdi,g=mJoaPN\EB^ `sJ3HC9b>u#v `еX<`/!ssGUڻVUקQr& Z>C)+r 3|Yf΢HQ8`iIcoi"Ͳ. #_e.tsmbUˣMac{K1bGf 6>[,Lf.`$<~#[uf,2Q6!ٝ5_(FX0'DGAq$L8ǗmT]Fr]xcard Fe1 (.lޕlmdԼ"f՜|gzхxk>%i|I5mx Pew_~̀HvIP3eɫ,ƒU#8-0K.OKMQFX\U2 ) \Gkv44JJ/_:'DBqhxz/f$ Wvg|l"'yz+36Oy~wX=蚌{&aWUAq#/IOh4Tx,d.-^Q"5Az[d^JfUC9آ3aq)g)$+gmR_Ud.kRz!#lV5F6K6ںEmx /hM.H|0Ҹl-gn3zg[ fu w W剜{p"~[_e%AV}28BXNr\)LpL]<{hoZ=?i>v !Iԧ5ç@,jLœ˸`G'4co*KukيsAnt@>[hfWkj#˚`G?};^0$+VojyZwݔRn:salYMs/CtIwLMq둇CUSeLj~FᆼԀ_Ct Mf1-r:e ˱Lj3 B 9iL3r%s4][2&s,Ƞ(f~B\ >ROF@Gs`6ۓVk<"&1MTk5iuY{ \R9 ,T[Zӵh_jM#~k'%1~! wf9S̖OJ*">6۔"\(syp+|]feϞr^[OLj(_N<ഄL]2LH=nL <9kUW2w3#Wƨ";oow7|(A v+,&w *l׼ftF|J  佀@~ z7ߞ'U.dtGBB>t(]rا0p͵@$5#Nd&5'P7 "- k\\~-ˌ|v7gCM'fgm{!7#pQ[ sܘʬQ?G[ӴVL_o gX^,:W=A *2JXnZNO%ޗ‚z6~7^jR4"O<A 5>'GC[:nb+ ~K:K[J )u< +$LFkB٣r2L}+pb>bNG]8B9dʥ.{u"٭Fȱ#ϳHg`iW RG3eЏ|!qT*#|'(;Og/'i4TShW -O Hvy"|XF0̆I*־ F>b3iE^ Hb[w/@yak#m6p."MG>f+[IN .Gw,Fx_|)N%;ĺKpi˵D )b>?@F3gޥߟТ}%'QKL\#;J& ._K1r("m5k)Fٶ"^{h}tѠզJd :AR,m<,?UeJ =1m6Lv3&o#ʃK/E[N<fK uܱ:yRGjSAf]]$:RVcWo$jz~pG3e)쐗@!V؟C{[\b$>:[X2W թyFC7+%dCF<>7x\ 0%ڍ<ՀDY]2 )cMd!?I Zw*]l6Qץ;7jGT*}|@Y*֧8^s`䙊xo|1P]" OGm07XiAo g+;Z|zAUc6u:*-\J  Jl;U0`.҆ G %F1!ޒ[޳ҋ #D}OC'"2q2hDLW%C/kK?qY(bS hb[*Kt|}g/i%bwtHE}t:,J@]1p>Ao2Kmbt2ʲ;fhX eWy!5,.e ͣu=dq~:7mhzlX!KY6dh"VFHpmˑH+mbHbqi'GWg+JO,i. bcY)3C`G<ؿ ; 7Fq8$̒NҼbdk vQSCT־ R I U[GОq@0ؽ#ODД^&#dNr  h뗅m;GZ/,7e+%2cHYGv*ukga<͚Lh(?6 ;_ۄN|g$p\}q( o5M;mS'E&bg͑jՑE#l9}r=f )=m5:% ёeIGpZIkPռ,8AEN,Xy݄Zv;XFi& )wAWNp+p+B#{,/r I.fQpÕozVҝWTbM ͘^1$H5K!~UWK T4qeL_Gf $q(%fZn͏PZLMi "#Tp"_MJMuʀ(((w6GaDNQg9g8GuA~ZpGwjd/PNAѵ2M8lքV>tVu/Dz0Y3Lwxs7:qe=vUVK PКIS>xJ0>&Jfk-*_%Ň+"yE3J~gT1Y j죓+7iJ,jь;@/"c'CۊPq /ǘ{mLw#(|Ѷsbc/QgC=s ^p}̤ij=;655|{v4f!YKYrqm㳃ڋ8>2a:K 'Ի"U;OlV7葺4FE$L3$e/KnԻKHzV|TT,(oGV6URG$֢2mmSAlGp(~^!;o078J0b  S +Ojh хS_~89jzC`T ?_Mq ږ@a,G$D>@ gRF|EnŝDD*Ї !L&G̱oh1,qE@:$R"lY[dN&TLz Om$d;pųc6`Fdj38 zx4NŪ.))l}r*LL\, If&c~|.ڽqeEm@D^HԐ3bRZ}4\[xeYf8X30gw 4<״+`G5%y,ɞG?=v]t](/CF/+1v=FnJIXnGqzS͠KQˈ:."5 %ަS-7? caOܦE}@ڭuEVIƜ8@36Z 4Q,_qh Ozah-;S#Q wC`f䑤V@ʕ+=6UV1i2h .@5ΞenR{GjDD.γe(gL[kq(JН?zNeLsVYYV직Hr up\`ST6?',M\@5K4ݷx:`{b+պ&[޲B ʗZϒտr=p/|.4SR~:ƅr5x7v~mah?*H<@gmJ޷9e&ƀQ:fMzkv3n-l vZ7:+cmcNz "՞GRjPH70#ug[,0mUۭ^i3PCRy{,S8` n < HU}SO: NY8$+H _o`fˉ5욈\Q:K[d%Z+D`W@̐_rXoshE: (;d1j7h"L0)*t D牛ĕS{B c7[h# !(pYӗd,xòGvN hF!_ZmX$+^a(z@̓%B@MrԔLVujBOPHUju@6%+Xr~ˋo~b$W ANF7I*FV~1[XOeˮԪGA茮Q=x3E] !'[ƟufYIɹ>/.d5l=ԍ3[>RLnWOfZy7R,ڗju =$I{½~˲7CRz&ޓ E%1qOzl4$>>>4F6>ǜ`K:\7͌$Di# n$XuZ\7/5!y~a[֬ps5F~{?BQ 'jG78dmA`^"j虬#c wx6`@ ژThYϵ跇}Q"3a~׬D(g^sR8pŠYn5Pi˜ЂPiw ݃3l'@fKgӖ%V֎(Sˌ2(>w758b ͛I *q0eÉ'{!{&N.$Iz ǎI2dEЏ6䞽(L" sX:*#S\vښQc,VU8 ЀF^קZ$i0 ]}}H~KLկB0aPC) {s*w> cF7Kd8)o|7z$n''ܺv`M==c}Uye5\hI1N8[k=A+o\Dbk]xrrpݰPpNɎ&, O_9<T[e8OTZ:{]D~ZE By/G)DuwEtZƙ򤆁j{#UHgsfIF @>H:m.)t>^b'ʨ (k3=%Iv =FN0`a苇c^l"i=Χ:;}E3K*O*yVC+`i\HIՑ2@ 3HxHe3 ^=ȆI2JK EkK_kvRӣM54NN[Ol4/2!n@4sLغ+L?Be:Yt&r&\]vR@iR#?1ygXnVicrLqM!s1!l8 W8se$ȸUC xy0(EҗZ@Y"ش)wY^d?4ND;C$Wf%P*q\Q+FS)K48 *ЉC2;u8 n%nMSkᱞnerË| Ê[D5׹CR˖@ڌA9<z!$Or:ތ` a0HΜ!o-ocMf=Vl<}|_Ԙ¬fWphJ!K~ %+5{YBqXu&)ݘ;1Sd"hƱaVzy>MDا+~D9+DIkۭt4i $rz`V#ZA>ntEg. buy X"(x[0*X P/2bHůúxt*!tq1c@z&/eccTL?9|UxMfG% d^AmrU$w$PRXϗMe޺P6 ":,ڃv0ES|8|ׅ]שڝvR,Ƌlw\ Ӄ+psv3 o&_:|P+:nH9puEKs#vt" >6u~GoML,v;e5-2AIdI!PsYϜ]Uǰ:Mt&cztM_;NbF$SLuWL x7^Ӏ~a1o1+;,A{XANDf]r] ُO>XΓyp?fK)ڷBiq1#wS).2Fdޙ㼓H`ْ͢ ' W%Hd9kCI ݣ͔~fF<#YrFnmSLZR5lv\5 .u-yYʂK"(C|+.BAcX7K 0\E@CA=twQ2n%۾ӱ- †|xœ:h?V"b58@nw&)\dp]˂Eҏ[&‰J /!s#G]aqmSeށC;W>F׌3--=Zx"ƪ -a4ϊ~("$8ToZ^TwwҜ ss9Hiе^p2yAmcTu K=e)pÞ<'fMy)RCׅ|#,|B\j50a-*GRdIr|p ҡzξx^OFQe^uN7됚țF2hrt D"6//_LHn"j ׹HVbht$#}N0Om`zrp?$4=Z닂C (D 4}n K? ǖ>S}P? <֥=]߱U]cdg[ {G1^kffYd>eTbrO-Ur׉@Tzh!O+qЛUYfć]wQs/OiV:#zx:+E QA?E2jURLdB*C۟]"L٩`$yD2zཨ>8*9Z5b61;{7涜~ο%%mw<4D(N,)̾_XlM顉s56s2t  쌦 G q_By4(Ʀ(lX֍Y:dߌ iBѳ:r͹c4!V0V,׉ ̄^f k(rZE6pCpjT ~1@OU_wFe7P]X}8J@ "N)Oc&4gZi:dݿ8(s9"`aW;c.1zvh~ǁ:%mNZ*뢉3NJR`c !؃#<\&Gu.Z`vA=P`"(D7<ڡChƦԁ5g]>)h|pte֤)~l:yn8wgmDH@"h±csJ۔@|NfYAj|9`-u2 unZ&/m)?ϧw ?2Js2;癣n\ً?8>}AZiE~*o 5=h荋, 1ex:Q@\6uKD\P= ?=+Y$D [?ߋIy=䓢i-0ogC8D2n͗*b{ݯem}2Y.nƑ %ϨyTQ2D .R+f?w;+vFSݡg#WHW)'-[]+v@(qTAinsqĹN: ˜p̙FRYQRX5E|CVTtkҬʓx\T=@=.GykUCО߅L?L8ѼJ1k~cyY.u`=eM+R$ &H#h4)cn&qox҅y{; d*Hi %1jUnZW\`B5-[Q[#p# ZEbs֙tt'>L0pt1QݪWSޅh^H~>A%_}h{bjfČxG [/Y݃ͬr Tr d6)^ < u6 z%cu hrk&T@gA*J+%]`o<-j_`"%Ou[B,OW6 ' &јhxJHYOcmuE Mzqq~hxS2{[F k{Ί͎g_XpYiVq&md#՘vCrIF8BRsձ qq*i{me``#7.Ⱥ~.b`zDAaAu2&re=ӫ.cPa9{,dl| 3A>w&/Ɲc̢d?(I:N8%:҂ۆH0qCBf/;f%+waF'=b5k!fVi<`N>RnpL2p~\[#p8z蓾u? Ю$=$VԚJӣVqV*XۙNjlgJ\S.IޠD= 3#?7b6X_fIZHityxs>s$?9_uU ޼q@MI*h4Y@tw ʩu&.^VݎS1Nׄ+qg*YR.!8Z bJ^ 0B &KSS9љӖMUT!|,sQSb>PA࿇Tr^BwS3W]d]dI94{xO#{H1"k-ԑ3! DEŸMbq`^-f+QE Wiq|5$WQ#H}k!],$1і8LK;%8K55[XҶu8#cov[ѓ݅M90iWyKV^s;NZCv# ub+P n8-jt/YϿʢ'5Dš*cZM3Z a߇IpXeSn'v!}?ޘ2,"wFwŁv #,GMLߴ.G&\)XnwxlC "3ASИ~NYUX6JhV;O2Ÿs}6I; j쯼C`AdNoh^0w֌QwLdk2=L$l}b%F7!(JZuM.&PLӕJ)L`h)@p`OНP}|"ǩ=F [D'A;>qb̻y g#wbtBLŰnb3AS\E<*_ǫiZx)ĢIyHX* ^e(cWlpɉo䥯kAo$uQo5f;+qz6VH):wO4а% ZpY,BR E^|y|!^r^Sqg]-~opEՇna N;Bj&&!xLwݒ:HC vKE10!\ rwFTZSe2~y8|RH˥3jGێMfv(bYMVЊ!E_[AaFIQ)xq]L;:- p xphR=eϊCK[xe]҅iQ빷·h~RJ <@gV|ݞx߂4WK\!Sxh6;]((X)@ IP<7E75'tUBMgYӦzV r#cx@A%d.~e3dxcd\.O燆FR^,7b}wbH5nd;pJq wPNȠgNĪ|q{Ve5WDK?".εlleyX` VDb!Kx8vc\ $ׂ͎,ͺdUy/e[>S_9tTSjԅ xIc;|yDik$FzNU259*.@-g%@4AdiP=w$.O&E+ _u_HUnqCV EDxTSIB۹2Szq_niwRJjpWXoTeK]!AC%28G6ԇYղ@WM9AM5i:NAkӻk'@gi1>/q6]`/Ou>y:ީRݬ=[~`-({MoFnt0؛QUR'GR1;˸@ovA ~&O~@{* nع+,.g.Ù*Q ׼leDE^Pi`U "Il(LR]bf>gVYp_c2 $1]2H9|ʃ;?j> zz1&{^^a 25{0?ix%Od6ng'fQ6 Sp!h޺Xy^dXp(tH,fz Ti!<1hgtߜPn9?~3kl:`RbZ`] Kf}m}.n%RjU9 #:/>,y"}IT!qכ޶4hq%ATݱvS#) bm+n~u>? ?CcQ0$ڞ]4SόA ?PC}tY.䃿Z fVeArm.W1-x7N;j VJ~y՗gZ"% /(N1h?Eph^a]-՟9={&vs1?4FFk6.w >׻JC4wi5 )n6KCg2C:e\/9S8T1A ŜpGL‰1RL)B4rCƅcNoh+oȎn h- Ò-iA{5aY$ M-$pq4 }; =![ 2,O`0)y@U`Rf㫺dE HoGVH {d<6#]XM?RZQjw=(5t"z0Ղӄ'[vǷ!)I^Zg`{uS6ιbb?sv-41C“h5T\l4ٹ~ǟoD$D{WC2LR$@2 o8 5s&wڑ$5 ϹZ~WP4Ca*4g_yK ך$YV$~q*v,D/xA|y[F${Q>=kINFVW=qJ8[]\FL/'zT;f_ۡ5QZ﵊UH}4{E0yi77#e jŧ|>Z>;|}CTg.Fr d~yH\OqnEw"#%X<+mbsEk)CzeYe㖰8V;gEZ5\.~%OA0CM1ܗq `兵=t$8L0!I.|%ҪWf ylu/qZʀ-.p' ^?``6Otv X+hdۼ: aG\sM^ajp 8\X맒[9iZ<&$ j( %e ԭ:@C5:k ~e&4\;!1Se$yuC }LN^??:ɞ`wQAҳA5+<ŭ''X<.21zҥw=-JdKL#GY 0ƈ*pT_ <]v[,c06yzʊskDIǮֈ?_sfajۊK;ي$⽺;l 'mcJxGp\&>y@-7_X WVկA; (fTL Ϲ+zz -h(G XAOOB8PyNr|CchbhX$xΕP*;`H$fX'*6xD9\j;˜ps,+b]|%QjLy T],aL:FMkX:j/WE.-0z8gXҁ apC3쾹PŲgE~O(ZĬ< iwwF~ 7d4:N  t}ԾOw0^"Lm)wsƎZ5BSMz+|f<wޛ?(׶!DK'w]Xb=+=uso32xfu@5/MfU-ްhfgJ!鳃Y]R$r"+NwĒ~gd_D&ܗ!*ձ\b׾@ָSd'@oIXtvkks|k:q]6yZnp6M8ܦlj%pkh$q r1K"c@\؍%Ai6?ktCbQ!9GsIJ+Y9nئ)6΍h!|EMSz({`=~TI$;׍}@Rɜ E~ H%}Fa7 i/1'y0qoU'fgԮM,,'ᄩbkeW> EŻ0L{Fe% 'W(Ƃ^V0n' 4;O=}_>7ʼnbo)THZkcĠ-Jk5*#GSHR '_$:.woK)ˤ]ӆD#BZ.`NO8"gzܚ4в2E%"]uJ^d;t*H%|RV1iUuZxVZHB 5:͉W`@KcPJlPdlK7C"lMUD++:6F$RZ$F^\4 a M!z_U9Wp>ssi n *e7*cFt[t"]pހ- @׻TWsq:B!,g ׂN> vKc٤Y qH7 ʆH P":VrŃ(n,IAQ&HRgRc$#NMt-:&Oʑ&?c1@g4e$۬"qAB oP0fjоCo7g){hW$$ M(L>AS~Ξ+PFK*51v{d^%;99.(l۔9˵x.ϬV̒K'*[}е uyMLCsv;zғMQs夹|6'l|H΄rj5L C 8[^}72sk̇jm̹Y "}ɇrahdS DQ/P5AsJhEw wWpx,WGnS.w?Wa4| RFGZU] CeQĠ(c)~Yϛ#LgM_d ؍CWl[l']Է!_7 ]#VeZ)։uY̹i%=6N26h q@Ba;>CypeެJ'2d oD|A9;uu*vJ37~i[l?fs Q a F a< K&=LY{8 tYo&w^<huuR$8 ds N{`tfHajrWe3 Ng[*i/5?Dp]u;р.򅮊EO}d;Qtꅒ9ءd+NmsW'F9Y=?% "pꢘ]@qFx.7tzSҊ>CZKN!-1aduF x{L,L>J)[;`*`"G&GB^ԄyZi$t+!G[LC  -4k`gy!V>l36oclAԪ},̹fZ/|GK,Qg&> h@oC^0 pڌѪ}O}?cH3dA>,k.quh$g؜S|D;DmP7,~9-EdhJڵ +m (a!OsIw :j~#R!k>W G{aϤƣcp#5V٪t ȐsAG*%蛒;~t"h^̋5(>ZC0#)`^dzH*6wJ&nyOj=i3.ʚ=Џo=A8eVec]Z|<p6}!Z9WZeiOQ޳*E887N?S+I)<(;<>f坴p~QtInֶpK^#JeR J & G6m銞Bı}a)u m 0.{%P7 ӏRP1|H=BE6xySa"sJ-@b#H36rgtٸ2,vLz'i6p.%7gl[ɪlu0{ ܊!{%HؔYl),m-×WUհE1u% wF]=DKf$H@X$(A~[S`JnGƻ帤7$=c`EbLHo&9 vbL;QPLp+ =^8pE9Sޔ~HS@YaM.ˍ :(bk/}Fb[_٧9ukz,C3F/<;% %Q@0Ux wq99qKH"mq2Bѯ]]_ [7CzʥA'FyE'Pw5 Y-]e2C0gWM]xoYkgR%BgXRdʃ'PR'+[L WA҅x l4V>EmjR%~9#}D,d1-z P,\dmm+% WBfǼ|bAV'埇Z. HZ ubRQs #QXa%-wi k|Up_6 ;nUơ2 el{S8>>_FT!uʝx[rV3^[bMcL*F zrNPUg&?卐}1+ ݻ$o*&-brU" h F9ņY $o- p"2c(j? _  {wM fzdرߨsR-|S-tcwYم?]CUἏ>J7:r$4h:Qg|(=*|ᨸHFt:g“5Hjb.¨K^Bf>&؊ES*a"xN>!M[ѢgsryV YN;qR`Jn8fn(7W;yGWǷ=\DcsQm, !.{'n3$尧*ǀZ!{U .mhF|w6r+ b<3Gδۛ 7q7]2ٸ8ڌyVTVlUs+'̠Pzfo779(YGv+=8ǂe;59/)`$,u$^Fq&{ssSJ?T,d)vB tߑc@Yu1v'b[Xb1Ľ8XvZ֜+719w(#;WvBr;`2!!bnY^[鬶iVQ}g}^>/UH]me3|w#Tm-q&z&x(ԇ?f4x̳PswPIE8ˎxQ},--8yOw@lWwVHkn7B7Uwr/mo^j aY7aZHJ,fse烟5&HUxswп(02Tk&(Ԇ}rO)b 'E[>un>?Ⱦ'71'VoT0ݓʔ&.TxQW/p yLv²v/Jxaw2gv?7a*Ru1^{)D^,CZmD?zQ~A $Cd MnG`FÖ_^8ĻOb U0qtd4Vx\.r?涖h|XJooFΪfxܯ$#N'e,{ٰu,o&Ӯ٢13VK:(^ F]XB愽m = l'0#N~ qL8?g tثG2}jin۬aC.q.+̬~/A掊)dAŠ)ڰU G4|eJfu|ߟr̞e omGO{n@]yj׏<]9ۉUniM~uswtMjS/wYsmx)Ԡ [Ȟm }T EJeGu .]"]fONEԼ- #x &ܷqVʶ|;:S^Ã"uL!JҘ&8R@h}B$|BPO^X#w*rL&y6``^ߤQ7:d{#v *&7ǵJ l-}XrorCGJkTX9CƼ&H'ANc*u t6؏r5 *\7~Bu&[y48qp"ogЀx8YGj<()MEp ex'R$͚|ɽbcc3dN}&FHB b 8Kez-Ɇ%^Pay"-+4N-+xwl0wy`,`OɃAjqK6;c=Va$q&yG ͒?T! |ò d* .}=n Akgp=$p[ɞ7lːE cbbcYYa1`"k`^إ|걋GH4As:6 _tTsSz,,n5EˀdL ᇀA8]ac{ 2P5!dg~qcw̲Ů{ .R5s}TBe R Ȧ6snFj"%>=,̹qhzpV4QZvHHSYJUAW%vr&AE^GG8LO1ew9M,+o,'{jl5fNO'ݚ'z(q~yBg"%kovvMuI"n/ %>mtaY>s#.ʧ sCiEI,e INqSbv=XQp-kөdE@xPWJU[wAdk ~J:D^ &#^z93^'#Xx&`Vvn^1ڵRH_R[e4X7Z:MnSB#CN"Xx Y|g DFk)EbQ3`EsY;Qpv&ba$q>o[0#c/IG5Tr䥦߬CDWZ6S' W줹_?Y-'j pXƋЋ*?=sdE1ڌ;ȃuq7P)hHz|N. cNd,J9-pvϔozUfgy:~ڴhhᡧDKҷq'lP֍H |10 Fr]?,e !PiDJ/3C Ei0<ŭ )g!D^TFe-z*z.P--KyPO/UtTey4ĆTwux0[R$\YJn8m[ /jp)Jy Fm\YD躨*i91~`Á|2UqWwE:n]~(b)5Vfǂ3",Ejޖ4IϵS> k> ,u젎2y,[(FpNϘZ8p#z0`=W <%խ_/凥x仃-2Iѫ1=A4KRnӂx#(iE]&H*G+,i,E.* ?SZWWaq LyM.r&fte59;!S+m@^kQh2CrwK|N64wI('f~EKD`1UصO.OcbT _eM3e ImSu?$Xm/),΢I!}pya>K; ΢LM(SL6 z1;ԫxxzu2&+| 'cxuM=_aciVLm A޺#KSs|Q8}Fv i.nWs*Cqc˻h-><8-f:5_>Wc*0;xH"(&Ҩ@oSG\{( < :u{4QsRk"kDT[՟A5RY,ȯA ȁ˥K<ۃYp͚9>[ԫU;]SBW.ءzАL M|i~D [ZyY\N.@# $d _Kc$5}lRL׏spo:}p oa-c< O4n8Gǵ%$(([龦=̱[w`pEA'"o;MNfcqˤ]:KO56L KG΋ g 6?fMNp(K`襜:c&Ju7 wD,79d$/I=QR%$ Q8p,&:D?ˬ.5f'E<›Mh?stD1*k KdFtiVܵ^3HTTIUO=Г?ujN2^b]ʉj6quW>#tu,2+옐NڱG<Ǻh S*mh韟b]IK()~$r@R>{NC;[dl®%?ų@ܡ.(t(FnaxHÒBbnNnl( =SP:MфZA3xvioLYLBq&5% luy%jRVT<ա$A+J;eVG4 `P#/ihV(Z˛j"+h[ڸvWwo̊ jOI?̈́wثTE'-. iϣ5?, H>EH+*$j}Xp8PJSo6DUVNL~gFkW;!TD&> iFѲQYA<ŁGs )MAdwÈKJ` 6(XF4X#NN+Ozs[6FY z^mfC)ɋXaG=GS]ˋ#,0C+"\Yc,/WV.$j!l4qW"7s '8HZ?q>mƯ@4@vkkԎk3lzΌ\$,Ν=IGc r'"I[ Ie8X^U@?& ujy=W*&u}&&qk!wB6%o\w[?! 4-|IR&낺C 8!xUL#xlZd:Eln޸e[7dcf7= :EQ)QzzIRm#?ƈ;lzQ>n10W6ޕj-c;3 RBeL[Iׁ:[_pKKTmv2qIi8ytvdvJN\1w\5S?e6uJ h ̺ 5an980b ǔwQ@s (j#7QzGXPrj1 ֊ dePD?RȰSi+8%[ g "Гm!A|=٢B}gi|Cָ[M!rGW\'y^ᶹen'q,Ig2@OZ{XmO/ƍ&6L'O$I(fV͜$aNt(BYX B<* f"O LtKfˋ̆uz=BQؿz} cfPqhhqfBٶ!Whi~wנ;1$DjgY[z2)~pNZāD!SM7gB5 XZ2DHg/3Kaz-쌪7᭞s#6!򒬀ڙ[?S!v ոf3ƏbR-m@ʢd7q:E3*aԚ<;(+wƿ7`Ļf`'"GFf=ժ[ M:wW`<#.;3T lqg1>пӗSg?ɸ˦KnA$.iGq]~# <IfKxn E ˶-xBrzLTXPx&44h,ngJ~S|8 (?evxIXW$bNe)?g%n( n^0,7yMN i1ՙ_hǺP8G%lЊ#-%>6EhȦ#WFi>6Jŀ.]*}Jdm 謇N+HHc$0$s (pA#,൙K5.U"N><1;R{va-Fk('FL΂!E?xmS]U*DA6hBMEy|SSeOb-U }͍3`!G!5FgM a\J.? !5 qM`16h\X)J5`M.=7<1n gTC@Af*O3$197IG% WN8~Q}ޔ?B[=r %k}SHkX$)0+oUoKpb2=LƓ?jd\E}T 䑊֮ qE]3M3X$aWk;,@sLЀY^^[ՃnqDe<3~EPȁ1L.5jL%rusb ,!ġKL%_T LG%gal*Z֕r`*>t*֚Бo=B`%tsƍִŗ%n hcF74pӄX*98e˯񻦎L~RMiU2ߴT]yLJ'$$wfّE<ۙt2fJ\[a"h X@qp"}8ZR.(``숩oU"=΁jAyїޓȵˊʵb FgR jw⃔` 0 x6Q*anԷUYR,^+ԩ"6 R>[_|򸬯iG92*%A{x_+ÂQG }z]tڨչoHaюi_vrTF%wSGkڋ=~]M!D[*yLP/2" Ό[Ͳ E2Klѝ߷ʓ0 q1N]ڨ wN`n^.>_M۹eKt,uh4V'͂2]D,<] ABwf)wo(*7XXi CeW`-Ả ]5uT>WA60v(CZ,ǞW~J:nZMoHhВ >%ՍmzO-%-|^ LtR'm fG5k[ɑ۬mi͸ ]X$YXR\eA6蔎'  |+E,&x. [ <-v  0izՆL{w )coE(~MPO-cq$ՂŢ wNݔ UV!\^2Ӄf7:iʴ8Sk$:1y}rEOOƺDjbx?EK59깆pt+I n ԊY:,DѪH9Yϗt7kWM"a3ν$GS`R'.e҅v4WNj pQ̭pl+o=ep,(ʑ[tmoYO8D!t47]?Fijߢ|MAcX2TjAgb'cԸ71LpD&b,2*HJ#$c}3&Smjq, XH@b_m+@C~K]3*gGQ6J<_J 6Xq> Z4$M:y+(Ρite+]r3C{J'cML|"2EP%_s2f\ljsþlX5NIo\~)y)|}91uϷ:b3̫oeKkUI$>Eۨ.բ%n{E|/Ǵ9N(m3h܇~c~ڸ&*R9y{N_=0'Ss8qFc_gE$ oJ6s=6@vXEf\b^)>jةx o/jkKKpaM!1< Fl 4L;2FQ۠X JwbgޠF4C/'*x 7 mX?ń]3ŲXAV9+c[FEDsf4!nLvX5x_p)-~NLCu1KS8gFEo?\v:)dմM*(L?,-;HRRa;9^qqٍ,[w?t~8ԆnC#Ɗm3cj>uYZKIjAv;=?XE.L$:bo|?27p53MҨvʧLkFɕ zӵBaD=LBd:0LsEb,p9p] [zW[B;ƭW EI=Mʫ 2~i::{1nNԟ9I!#]ƒAJ-}^[(YD:]{rxK20 FI8S pn&g=棡suF#mY-cXQa/2ў2nWz뫸 %ك6XnTB Qc$Sp&tN7gYkdCg~=s F'){&3N!0/w+J`Cة-ʗ>E8Yc/]t 8>(&U3 tٱe$w-j0jՁb4Fø w3>qɘ=qIg9-<sw"]OlɁ}' oBԊ;e'iUܬkZ,0tmA=`yƼ_Qپj1J( dcä4K>UΞO*Uqpdf.G%T)*ydxA 6 Ͼ 2m2' XS  Dj_A4⚡9 u=d`6jrVjy\Fuӆq0I"UuMs9bEuֹLH>~ |3%٪yt9`|@vޯ^8'DKĚ8&S{9nCh vwIER'^ ZT|¼ Z+!+ łHvpȂVn3,pO`8ڣdo6a|\ {^1Q5yoܪTĴmxG kF 9¡A@xttW+F:n3eraz:FgP#֓y_}Ze,L˦0F;ö фvMS = Ud RlBM6Z7YެK]K}Vsք`V|k$W\{aޯ Y jgI A} T.C00a,YĽPG1q°q[ MNjPEt$Qev2~حM:B.:;MGqϲ8b_n\6ܚoKetf12<[=:3n}"Vz,sڋ,6%UVNQǮ5$<xE^0csۏW'JC,^!3,YcڙϛhLo-i%2~xvQ#dIyhv%D,gf EV:DuR!$KArIoeBAI7WʞlD${PF.d?0j;6c>X>A7;e`6jҙ0,q-cs>PE [OTt"1-v u5/ @@ yWѵ?eD9dE*YػU!U"X4 ^}㾖++z< /m`|wL好uw E>uR[G;ވ>6 [pJ ^pBb2uűcwLވiFh-ilLBtI c3g&Ϣ%r=Qh|j32 婊DȓXLZL3 *Gג5g=l¨z7ؚ%n +gfcdvLe',('":b"w*݈dvx]븄HcBӦ|9!Qv^%Oi_W#zdy2^LlRiqnm^P( ゟ'ಈCH!Bf3YIɷ!s(NMCetKarGZJ啔hU$)Nx8y{Z䊼> pxr0=rC;֍H"}PD-U ?>gf7 Vb.C ^'g5~E,A!dX;.FmEO>1^ph}a+$ʥITjGSj ŗQ+Z|}sS$j.y̔+wT:SA#80܆Eb 5cF(TgrB} `UYIJqGnaIm%QX!c jpȟτ=:qVUAM}nylPҖ`wF\ W>j FRX tp>ۅ.l%䲳'MmlDgk f9Fh+'Xp$dRzIoiqx"LKo(њ9?%06ܗUq5hNLL JNVK0fe[ۇ{R}߂ UsSާJ U {s6VM͑ J(6eb +^W:8W\#_xI`S2 FRu02,n>J@V3(Oי^Y3'K3/G2ՙHA=!;͋Ymvh(HdH|UI!fͱ5&mW1Ck~Lؐ>f#`-8S'W @nL&2G9H^m GN%3]fR'2R=y`,52ilry-g-NĠ%(i~ mDE_Q5JAPcƮͷX/I4 Uc7&o1TJ")MyIۦq#@|wXu;(8)FL-WfIĉ.Ydu?y$cۻ549ޞf/F1%,#Q,InJQ!.L-0;G SF͝CmGwL~+ͣ4uuGB֫0$VDn%'JfVQϪzޝ{4 M=o_r^Ǝ t ]Pc,V2.7ͥ\gG4 0a'`Slsn^ߎbqḞ 8:*z{&Jcr'y:6y\֍ejؗ\$wы/Em&M<8~!·̇ucBx3OX}? T5:'MG{b(Ay2%Cew:zۗOKTszACuoHGCvYs`ަ[MMCoƳeoC6 L xx0HP/!E"8٤*4Ή1bżLDO\{=S ;OeefRPo5`V}d3Js7xOy5,j3;NfIOG^e[a st7)}|N?6^J=X0K4hdň5ѢJ*Xq5\oĴ;oܚ"_H%`%uqyJЖ> be3 ,vBia;,2Aq8oƀ!eeyNlT8 L;mS/hb%ïف\xQü.S[Kdn[70j~d\Q~%g L)sΠڨӼW{"b/+Gg%_W J c.W.= jb ڰn~6KiJ!FrV 4U2{nvqݍ:v?4MyOd8w/[:љŽ/LA߼hi1qxՏ#^V"X 1<KRb/̠hT{bs=ZrV'ԕ>(dVZ8Y P]BJ|{7|h_*d  (C;mΩ@0M_,نP܏`nIX7QYL!tNjI̥; yx<䰔Z{v<ⳬͿ`U&PXe)X«.IRTjE *<ó0sx : *hRx2Hmb_"]Ѓl8"E|M2Rf!8].Tqh5ML׶+IǥRt 1$D;AϱD c: J p eq]K{\Qf+GZ7:, 6i.+'?uMXO~dV炞v2H:ˡ{ RV+1 K}HYhmk; Tt),$ǷW}sBQ3rg EH[1į[ Iyɸj!7 OP,rEpTs.yz }pQ!kc$H8z<B$&B92a 6`y4d5]2cs0$:@EKvT:8G5y7wGEވRbœzqq.aP[b.?t,C6EL-m]OjkĤDTӯwjs \Hg>@ _ɫAr^m @j S h֘gܩ6;Aǧke)ZN6ech}S`"R<ߌaÎUk0e2}e'%hzΓ.[ԸM";3tR; ~࿭4uC|֎s$?RC[D3r^j3vdP몑29e1eӻp*`¡SL;LԌbԖ,ُ8*}KN5p]᠇SKU~ha!e,)St÷o)xOPPZηR>ւzs@p"h$k(S:tBTFqVE/_a:7/qVf71S1#GjP:6kG!.Js' Mn}, SxڣH$Xf.ed_cXd8B(e(1Bwk-:3D{ Nr)`X1Q/.:|x<@&4% SrNOoP>|O"* esP٘[x"2zٯ,=jӜ¡օ<`xy}+B3]%D+sGj6/E9K $yïC@ŋYd6L<ъI;+Pq᧍Iu+ԙ ;ɭjlYd͈*/i0cZE=fi"кhKnr^M!V,%8#b&R m }JaCbuB2ԐnZ0yPI:_Դ8\WܤFQ _lQ4:// x\ . 'M 8م^.&0QirL ȦeJA}EMj^MG(b}S,r0ᚦ? û0ih^AϘtDw]fm39뙟.$߹ k1}eLKJǗb7UyJ}z:G3 'Lhs@ 6zOHZd1b]x?53fV7NeY(u.Bmi'?mp HM1cD5pV)|7ӐYC:Y?h.'Xe+~цKŚӰd%B7'UdPb%OvVLx)[hq}w7'QDARȕ .yi7יWU.SL\T|?VR"4ji_ӝ ʽ LM7O{}V[5c#vZEF3LIZlTc̩ԪLL^ *PS  tW d^捃{ōC2: 2t"WkEHm>/mY4/H3ǙGzДO@mRQJoq@$(۸-NA:5@+ |L)oR;2g2J;3q-Mm F)KR%o!5OW=߈7ЛX>7VW,炏-+QyEN ± H-5Փ/,$3y~BCﺅ_ 6hP npW/ yE]10na)Jze!+aDE܋Ԃҷ,ܜ' 9Q~^]){[Kb|x1ӗLPՆc6|* hH jKZ {."^7[)qPw}40=Q=<)27|a ˔@Zkpue֩+ poD.?X]~sH3gɷBr.E$ACn`D|%g]0K 4CJVծ*'}i=hMےv#bsW̾ 7SrW6T(( nk AמbS3M̜ExLRfgٟLj u&"T!v"¡Rᔬ?P׏.6tz~6ݞ(*ڳy9Yve~ eYo6qGtlYc{3"43{;R nZ!ޮT|r\i>  < ~{DB eaBP{W4 _mymqE0#4Z0bUZ=\r;&kUEU\Y KBF,xp l= B}sHE}D!F”)72QΗv;ȅlFD>{G+7ڍg2lP)5S&©\Mkx jl\y1AC jk6-`Soaqs>?g'?B/P@v.$c!4zK.'2P-GZJO~?.bQPZmn5 57+rr| ]8铜1CGlz% a/1fS0B4:Tdkvɠ#z˔4YnNͯmDrg$ >އ*(R5#䒵&B w fs(dK@Fn@VtwzF71-K zeKRiq.!l<VL`tW9/ky8ȅ S`˫?+Jj͐!F 4V(߹p)O{x bpTR^=&w ~ԿW -?^dQK( YrA5- 2R(DqxpY cˀI y GIܸU=~O m58aK-4$ҥM-QV6]-4O?࿞5+OkmM NNzLA3uW-[x )СUc Z [+ʍK+LabeGY Ҏn$Xe'kc?a7j"f>! zdЄB 6RP*6bz>?URɊi\ۜ$`GSqR[1'' 8dKeII@~Nlc{FS'@nu+nYLJyFE#7\=ruCU #UOiq2Pin} =wGcԓO`,hi|_.:zݐ'm)q7EF*0 6C~xaP5Ԃj'] \m|jL͟o7(CWS87 T? þQxُ 6JZ*B }"ZY3'9+v\)`^ .1=dh`)il QgH2>*=U-L"6#qL̀ipV^ShBij;r.K0 KuL!gR^M^#KOC ]jdJt?ulmb;2©M&pr28*_"4,M ˨Sߛo#J3e=>zEM}%Tk"z5~dy %7I%Q#GR_Bbn9R[ NHvٜ` ِ"[nmiYȳ.j^H$(h}=fN%:;erz2M441ϭ;`A! !2ڸV.eb TD>FTpoaGсC=ĵyE8Pа~/30չ&>jhT φ|5b{|\ b1G[E~2V x͠k濤*dF:=[n}?L>d4PBA6Lާ'B!r2N=gv2@Fή[rV,'"IH/Pnp[SQaʋĝbZݎ&,"HgZ 220wh+ bK`x~/U F"cՏ㲂"m/P@-*edP`P$A4(pzUNPa%yf,j_>Կ)8J?'* ?ߊ,#q/4d;i?HtOtcE:T"oq͈'Klv `xlW:]9ݫZկQ(+\0 +:1{Ic`w` LoD?9û= (Y^>9_1'P ˹kJCezUfL}Ey iYJSpoG7f0'U}KSIc 0/%s.  Tw7i9)r=lQnFDmT ^~NlL)=~<=ɰTPGԥWR8~}nt)3j޲INyCBBjL XՊu|^Qe8v8iMdU*[y0'G2ڔÏ349-I_ਘe՜e\_rޔYqQ)M0\֊ |gc|pײ &T\$HzJ[)?m8z\kRtP8 s`0mA;{՟1+\$)Qֹ^PwddCQnl9ujЅYgKAT7./˩z$ˎE#:Ojb1޴M|Ɯ^yT?ur\# +Mm3#U4{p:M y/%9F:K$><8ZO?skPϚ!5{xd@F4oذJ_[Pc+2皨SmL+zIQH+Ǻ쨶JhqO3S(57iN睫GK Г.):eE;{y8p' 1y0ߴOu r[3uǟ}$b`ϥ8n(ե+UK]D' zQgo>,X$GzZ $zF1(Ck#]a &&0oP`wkoIH|: FjFR )# {~\GC7K}FQj3Q0 "ni/p;|LzyjMBJC!P=d169l*X9{T|zZ0@-5/N|@j)%jlЯ=ڛ 7O-8r[8& 6u9#uoBL<|W RNRfdB_P Ǩ̯R܋kr?}q=ɬ^ڝkZ IlucEooWEx,m[W|D^S+U#dQL]bavϙf34$LkС,_iC߹I{}ć{ YD!N$7x(9RJy9Nc9*XaVu tj*z C ŁN9a\Q唷'H|-(| qjJ8~Atls-(SFDq%U=E{Kg̞*Vo~j6Sq,ʌ%UX}U]cQq:g Dr\2-EKdW੠xZ`5& ]#h6oN /;&'ltA _ks0^>}E0H kbV?-qwQ[8 [J%68Ⱦ;;lkyyvj3y[%@1P$Dž8mSUwMh>wvVd+ÀoNIT M!Pdx+;&m6 !\ _ҕz}-R_}E/ HI+ic"ԵHi[7i f-F1[{o5ܡ&%"7\Mr~C5y|nz' O"s0Pv*dopuXa4qHaYJ]l*9oNn\6UCߊ Öe}Xvq0J#j^{ zV OVT}zv$ ľT#XtCr7b0q5xԿ`QaW[\arve 9 d Hyk*Qƴ[UL;%1rLFo|Yh1Yb(6%<5sMWAݥM4K~M0KM=0H![B#s67dLDO5} sn19m9ƺ|FZw#ĿO9yyB5(N17[ =e:b4*oK\'#50K1V;&HQCUbnOrpe>͹Ixzנ%{ⷁ5Ҿu&@&'ˁ;#5Q m'F2[ WRBȸ选\ln ȳ4P$ w>qH ԌQ*b?:ՠnfKhi3;MYTF 5..ÝٶiB'\ _ݐןV_d DhMGC:\ Qr- ɓ@dE-G3zR jR (13OjݚWrZ19nv\Lk&Ba$V‰3:}T0ioV fsy̞Js$%ζ5nY$0MO .YщNlbuAM3e~y6vL=Ux[TG?J0wkhW;$z/ـl\P2}knN<_j'33ٺu(!$I*5kYah"OM-n3,/nQ3Œ}G<߮AM4ƒqijGmw}h/q64=οEWK8Ts!sX14§}0LNEgMCl,W8@XQ@HGc異= m^ל;k~\"o@[A>E@*}^ӾaH'mlAg2ٍ2:fݖY|||5Wv}] fuv/_b_][ :8CVFwm]Q2^8f;fkM+ӸKH;ADGC;_5[K ''wj{TtdS`I4N0:s~`o{ƫaln=/i) !r.|10EVip4-\Nn6M&M@ͧANZAG)-Ι^6?RѾ&^qN >oo :zkY*K.la:TWI>{-DZ-HQ_WI0aԘBNg< Pj{u*3'Xt9Pύ5(g 6` UpKZKGV<:8A1]Z)cZo]đڧSy}aqRCs!IqcY3%2sa 0i ҵbca斵їL: Y5X8S`Ĕr#q Dk1[P-T}YPſkA-]oFwK:&A:,D\ͯuW )vP`Z5Hd.S3h;wvyW R!FHDmm,y>H #:z*ZSM. 73(g/.j5I< ǀJ'PhT,I ᣻ MCL~,656)#\#NA7LWg%g;Hb4[+J qU[5{cfp54O\h?>eYf G|Τ6ް{Q4AjkxKYKh eʨ {K~N|薇NFuu*Gd>jt%o1cu to]>t;:3I.M HļӨQ(r Zu9FZ,؆Od:[2?rw@"*0V46Z\:ôs PHC@CFBI %})g}lEy |e"ӥ:Qv#\YD{ wN@kِǙ d[DBɞ |b FoߨBJuU3Ou+oYN&( CQ3!ſ4d;eOR7F!d21K᭓ְp{R0Hu9qW,q]0n?F\[cfJC<' מ#~JAeΘ-RȬ?&kmTAi&,C} άre@O q0K&dKI0YL ]q;Gu`rw<|?9IuA lkl|ojGBLF=/W1h(,LqJnP)]-VF2'TUUpU0]c8Ba9drc6L66f\完zURB&$g0Ia#-uS1RBqî䫲ZY:=bEG|ˮU++BM0ܢ6Mj}X43 N>3͗VvlPqis* 1?Îa80sP +^e,ɖUw4&yXKf_qiϵ/7G&׏FiнG}cE%*,p}>gwɃ3 9\6#}% =ʘ-L: Vk#ޮxd_ѓCZ FC9sSWɁCސGyO;ªP"de.),# ߏbILA"ij2qNM.1o|ssj΃~$'\ngWaֈKI5 lL2H*5Vc!*:4SVơX]$U|-BBD|첬Ǫ D@|])wpX{N74X^$yX!.ˤ,6+K()O 5 ƚ[Ҟhmt wiPSV;+y+ab*%,g XO8t( [ֹ @, YZ