grafana-selinux-9.2.10-20.el8_10 > 6 6_6 3!pQp)Tξ7]mtZ`g8 ]mtZ`76G#-*YrqayUX(Mټ;eFn AK_oI)eYthWO0Ddj( 3Gx%O'VR_uv&]ڕE@bV|4ja=0= UX+C4(|3іi nBj*.rKb>YXlk0{np =FN.;8 ]MrW@QσP{34|-gbe7lXF<|^)8PB h5:p֕dqjFA0*t`%9ld,uC7nKR{"\ý {8 ZG(&‰C5]9@j.wN.nx1#&h(nצD) r^Mg0E!l0eOo r?U 4RRUxJ[$E.cE7băHcd88b0bac52adcf11f2fe26e42e530c262749603cdcfb07e5e644a79dcf1f905f0249f14e5daf08690895295f30922bb099013adx$3!pQp)Tξ7]mtZ`g8 ]mtZ`3'Mǣ(D41Ӥ%KX#ځY K<:I^uXysy?f409>.(GK3kzę7]#+n֪Z+Eë,-R uc`! I'IA.^SW 4|Lm[x d}EH}tG1WKQ{{#W)@w\lVnn@Q3w.Cq;X#jaׂ9MY5gGJY3jzKp=?$??d # Lx|  8 H X x @ Hh$t ( 8 A9 A:~A>;J@;RG;\H;|I;X;Y;\;];^e>f>l>t>4u>Tv>t>>>?Cgrafana-selinux9.2.1020.el8_10SELinux policy module supporting grafanaSELinux policy module supporting grafanagord1-prod-x86build002.svc.aws.rockylinux.orggKojiRockyAGPLv3infrastructure@rockylinux.orgUnspecifiedhttps://grafana.orglinuxx86_64for selinuxvariant in mls targeted do /usr/sbin/semodule -s ${selinuxvariant} -i \ /usr/share/selinux/${selinuxvariant}/grafana.pp &> /dev/null || : done /sbin/restorecon -RvF /usr/sbin/grafana-* &> /dev/null || : /sbin/restorecon -RvF /etc/grafana &> /dev/null || : /sbin/restorecon -RvF /var/log/grafana &> /dev/null || : /sbin/restorecon -RvF /var/lib/grafana &> /dev/null || : /sbin/restorecon -RvF /usr/libexec/grafana-pcp &> /dev/null || : /usr/sbin/semanage port -a -t grafana_port_t -p tcp 3000 &> /dev/null || :if [ $1 -eq 0 ] ; then /usr/sbin/semanage port -d -p tcp 3000 &> /dev/null || : for selinuxvariant in mls targeted do /usr/sbin/semodule -s ${selinuxvariant} -r grafana &> /dev/null || : done /sbin/restorecon -RvF /usr/sbin/grafana-* &> /dev/null || : /sbin/restorecon -RvF /etc/grafana &> /dev/null || : /sbin/restorecon -RvF /var/log/grafana &> /dev/null || : /sbin/restorecon -RvF /var/lib/grafana &> /dev/null || : /sbin/restorecon -RvF /usr/libexec/grafana-pcp &> /dev/null || : fi mш"шA큤gggg{g{gg{g{81f6452a794812b0896d8739344807795efe02637af50f3e69af76719c3b5d05075e9073f5af0c65487ab74702fcc38b0ab09f5f4e78f30ef3f6a511cd09bed788d20a64e49f88ab43fca5bf4a548a6a70b44c1192250cc24c799c89808683e58114f4b336b7a7896b94466b3d5c0a0f703260071f2fb737e965d744f90d8071fa6bef9582d2a6088ad6dfd474204beafccfb47994a1dc797d3695c3060016e388d20a64e49f88ab43fca5bf4a548a6a70b44c1192250cc24c799c89808683e58114f4b336b7a7896b94466b3d5c0a0f703260071f2fb737e965d744f90d8071rootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootgrafana-9.2.10-20.el8_10.src.rpmgrafana-selinuxgrafana-selinux(x86-64)    /bin/sh/bin/sh/sbin/fixfiles/sbin/fixfiles/sbin/restorecon/sbin/restorecon/sbin/service/usr/sbin/semanage/usr/sbin/semanage/usr/sbin/semodule/usr/sbin/semodulegrafanagrafanagrafanarpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)selinux-policyselinux-policy-targeted9.2.10-20.el8_103.0.4-14.6.0-14.0-15.2-13.14.34.14.3g@gfIf|fe6@e4@eids@d!ddoMdldS@c_bb@bba*@ad'@aUaS@``@`@`P@`` @_@_G@_>e_=@^3^^V]]*]p]i]A]9\Q\\\\8\O\\\|\\B@\\\o@\mA@\f\\\Z@\Yz\T4\R@\Q\5@[u[]Sam Feifer 9.2.10-20Sam Feifer 9.2.10-19Lauren Chilton 9.2.10-18Sam Feifer 9.2.10-17Sam Feifer 9.2.10-16Sam Feifer 9.2.10-15Sam Feifer 9.2.10-14Sam Feifer 9.2.10-12Stan Cox 9.2.10-6Stan Cox 9.2.10-5Stan Cox 9.2.10-4Stan Cox 9.2.10-3Jan Kurik 9.2.10-2Stan Cox 9.2.10-1Andreas Gerstmayr 7.5.15-4Andreas Gerstmayr 7.5.15-3Andreas Gerstmayr 7.5.15-2Andreas Gerstmayr 7.5.15-1Andreas Gerstmayr 7.5.11-2Andreas Gerstmayr 7.5.11-1Andreas Gerstmayr 7.5.10-1Andreas Gerstmayr 7.5.9-3Andreas Gerstmayr 7.5.9-2Andreas Gerstmayr 7.5.9-1Andreas Gerstmayr 7.5.8-1Andreas Gerstmayr 7.5.7-2Andreas Gerstmayr 7.5.7-1Andreas Gerstmayr 7.3.6-2Andreas Gerstmayr 7.3.6-1Andreas Gerstmayr 7.3.4-1Andreas Gerstmayr 6.7.4-3Andreas Gerstmayr 6.7.4-2Andreas Gerstmayr 6.7.4-1Andreas Gerstmayr 6.7.3-1Mark Goodwin 6.6.2-1Mark Goodwin 6.3.6-1Mark Goodwin 6.3.5-1Mark Goodwin 6.3.4-1Mark Goodwin 6.2.5-1Fedora Release Engineering - 6.2.2-2Mark Goodwin 6.2.2-1Mark Goodwin 6.2.1-1Mark Goodwin 6.2.0-1Mark Goodwin 6.1.6-2Mark Goodwin 6.1.6-1Mark Goodwin 6.1.4-1Mark Goodwin 6.1.3-1Mark Goodwin 6.1.0-1Mark Goodwin 6.0.2-1Mark Goodwin 6.0.1-3Mark Goodwin 6.0.1-2Mark Goodwin 6.0.1-1Mark Goodwin 5.4.3-11Mark Goodwin 5.4.3-10Xavier Bachelot 5.4.3-9Mark Goodwin 5.4.3-8Mark Goodwin 5.4.3-7Mark Goodwin 5.4.3-6Mark Goodwin 5.4.3-5Mark Goodwin 5.4.3-4Mark Goodwin 5.4.3-3Mark Goodwin 5.4.3-2Mark Goodwin 5.4.2-1Mark Goodwin 5.3.1-1Mark Goodwin 5.2.5-1- Resolves RHEL-62307: CVE-2024-47875- Resolves RHEL-61779: CVE-2024-9355- Resolves RHEL-47191- Allow for mssql datasource in selinux policy - Resolves RHEL-43435- Check OrdID is correct before deleting snapshot - fix CVE-2024-1313 - fix CVE-2024-1394- Resolves RHEL-23466 - Resolves RHEL-21027 - Allows for gid to be 0 - Allows for postgreSQL datasource in selinux policy- Resolves RHEL-19596 - Fixes coredump issue introduced by selinux - Patches out call to panic when trying to walk "/" directory - Fixes postgresql AVC denial- Resolves RHEL-7503 - Adds a selinux policy for grafana - Resolves RHEL-12650 - fix CVE-2023-39325 CVE-2023-44487 rapid stream resets can cause excessive work- Add /usr/share/grafana to systemd-sysusers --replace- resolve CVE-2023-3128 grafana: account takeover possible when using Azure AD OAuth- bumps exporter-toolkit to v0.7.3, sanitize-url@npm to 6.0.2, skip problematic s390 tests.- Use systemd-sysusers --replace- Use systemd-sysusers instead of sysusers_create_compat, which is not available in RHEL-8- Update to 9.2.10- resolve CVE-2022-39229 grafana: using email as a username can block other users from signing in - resolve CVE-2022-27664 golang: net/http: handle server errors after sending GOAWAY - resolve CVE-2022-41715 golang: regexp/syntax: limit memory used by parsing regexps - resolve CVE-2022-2880 golang: net/http/httputil: ReverseProxy should not forward unparseable query parameters - run integration tests in check phase - update FIPS patch with latest changes in Go packaging- resolve CVE-2022-1962 golang: go/parser: stack exhaustion in all Parse* functions - resolve CVE-2022-1705 golang: net/http: improper sanitization of Transfer-Encoding header - resolve CVE-2022-32148 golang: net/http/httputil: NewSingleHostReverseProxy - omit X-Forwarded-For not working - resolve CVE-2022-30631 golang: compress/gzip: stack exhaustion in Reader.Read - resolve CVE-2022-30630 golang: io/fs: stack exhaustion in Glob - resolve CVE-2022-30632 golang: path/filepath: stack exhaustion in Glob - resolve CVE-2022-30635 golang: encoding/gob: stack exhaustion in Decoder.Decode - resolve CVE-2022-28131 golang: encoding/xml: stack exhaustion in Decoder.Skip - resolve CVE-2022-30633 golang: encoding/xml: stack exhaustion in Unmarshal- resolve CVE-2022-31107 grafana: OAuth account takeover- update to 7.5.15 tagged upstream community sources, see CHANGELOG - resolve CVE-2022-21673 grafana: Forward OAuth Identity Token can allow users to access some data sources - resolve CVE-2022-21702 grafana: XSS vulnerability in data source handling - resolve CVE-2022-21703 grafana: CSRF vulnerability can lead to privilege escalation - resolve CVE-2022-21713 grafana: IDOR vulnerability can lead to information disclosure - resolve CVE-2021-23648 sanitize-url: XSS - resolve CVE-2022-21698 prometheus/client_golang: Denial of service using InstrumentHandlerCounter - declare Node.js dependencies of subpackages - make vendor and webpack tarballs reproducible- resolve CVE-2021-44716 golang: net/http: limit growth of header canonicalization cache - resolve CVE-2021-43813 grafana: directory traversal vulnerability for *.md files- update to 7.5.11 tagged upstream community sources, see CHANGELOG - resolve CVE-2021-39226- update to 7.5.10 tagged upstream community sources, see CHANGELOG- rebuild to resolve CVE-2021-34558- remove unused dependency property-information - always include FIPS patch in SRPM- update to 7.5.9 tagged upstream community sources, see CHANGELOG- update to 7.5.8 tagged upstream community sources, see CHANGELOG - remove unused dependencies selfsigned, http-signature and gofpdf- remove unused cryptographic implementations - use cryptographic functions from OpenSSL if FIPS mode is enabled- update to 7.5.7 tagged upstream community sources, see CHANGELOG- change working dir to $GRAFANA_HOME in grafana-cli wrapper (fixes Red Hat BZ #1916083) - add pcp-redis-datasource to allow_loading_unsigned_plugins config option- update to 7.3.6 tagged upstream community sources, see CHANGELOG - remove dependency on SAML (not supported in the open source version of Grafana)- update to 7.3.4 tagged upstream community sources, see CHANGELOG - bundle golang dependencies - optionally bundle node.js dependencies and build and test frontend as part of the specfile - merge all datasources into main grafana package - change default provisioning path to /etc/grafana/provisioning - resolve https://bugzilla.redhat.com/show_bug.cgi?id=1843170- apply patch for CVE-2020-13430 also to sources, not only to compiled webpack- security fix for CVE-2020-13430- update to 6.7.4 tagged upstream community sources, see CHANGELOG - security fix for CVE-2020-13379- update to 6.7.3 tagged upstream community sources, see CHANGELOG - add scripts to list Go dependencies and bundled npmjs dependencies - set Grafana version in Grafana UI and grafana-cli --version - declare README.md as documentation of datasource plugins - create grafana.db on first installation (fixes RH BZ #1805472) - change permissions of /var/lib/grafana to 750 (CVE-2020-12458) - change permissions of /var/lib/grafana/grafana.db to 640 and user/group grafana:grafana (CVE-2020-12458) - change permissions of grafana.ini and ldap.toml to 640 (CVE-2020-12459)- added patch0 to set the version string correctly - removed patch 004-xerrors.patch, it's now upstream - added several patches for golang vendored vrs build dep differences - added patch to move grafana-cli binary to libexec dir - update to 6.6.2 tagged upstream community sources, see CHANGELOG- add weak depenency on grafana-pcp - add patch to mute shellcheck SC1090 for grafana-cli - update to 6.3.6 upstream community sources, see CHANGELOG- drop uaparser patch now it's upstream - add xerrors patch, see https://github.com/golang/go/issues/32246 - use vendor sources on rawhide until modules are fully supported - update to latest upstream community sources, see CHANGELOG- include fix for CVE-2019-15043 - add patch for uaparser on 32bit systems - update to latest upstream community sources, see CHANGELOG- update to latest upstream community sources, see CHANGELOG- Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild- split out some datasource plugins to sub-packages - update to latest upstream community sources, see CHANGELOG- update to latest upstream community sources, see CHANGELOG- update to latest upstream community sources - drop a couple of patches- add conditional unbundle_vendor_sources macro- update to latest upstream stable release 6.1.6, see CHANGELOG - includes jQuery 3.4.0 security update- update to latest upstream stable release 6.1.4, see CHANGELOG - use gobuild and gochecks macros, eliminate arch symlinks - re-enable grafana-debugsource package - fix GRAFANA_GROUP typo - fix more modes for brp-mangle-shebangs - vendor source unbundling now done in prep after patches - remove all rhel and fedora conditional guff- update to latest upstream stable release 6.1.3, see CHANGELOG - unbundle all vendor sources, replace with BuildRequires, see the long list of blocker BZs linked to BZ#1670656 - BuildRequires go-plugin >= v1.0.0 for grpc_broker (thanks eclipseo) - tweak make_webpack to no longer use grunt, switch to prod build - add ExclusiveArch lua script (thanks quantum.analyst) - move db directory and plugins to /var/lib/grafana - split out into 6 patches, ready for upstream PRs - add check to run go tests for gating checks- update to latest upstream stable release 6.1.0, see CHANGELOG- bump to latest upstream stable release 6.0.2-1 - unbundle almost all remaining vendor code, see linked blockers in BZ#1670656- bump to latest upstream stable release 6.0.1-1- unbundle and add BuildRequires for golang-github-rainycape-unidecode-devel- update to v6.0.1 upstream sources, tweak distro config, re-do patch - simplify make_webpack.sh script (Elliott Sales de Andrade) - vendor/github.com/go-ldap is now gone, so don't unbundle it- tweak after latest feedback, bump to 5.4.3-11 (BZ 1670656) - build debuginfo package again - unbundle BuildRequires for golang-github-hashicorp-version-devel - remove some unneeded development files - remove macros from changelog and other rpmlint tweaks- tweak spec for available and unavailable (bundled) golang packages- Remove extraneous slash (cosmetic) - Create directories just before moving stuff in them - Truncate long lines - Group all golang stuff - Simplify BuildRequires/bundled Provides - Sort BuildRequires/bundled Provides - Fix bundled go packages Provides- add BuildRequires (and unbundle) vendor sources available in Fedora - declare Provides for remaining (bundled) vendor go sources - do not attempt to unbundle anything on RHEL < 7 or Fedora < 28- further refinement for spec doc section from Xavier Bachelot - disable debug_package to avoid empty debugsourcefiles.list- further refinement following review by Xavier Bachelot- further refinement following review by Xavier Bachelot- further spec updates after packaging review - reworked post-install scriplets- tweak FHS patch, update spec after packaging review- add patch to be standard FHS compliant, remove phantomjs - update to v5.4.3 upstream community sources- update to v5.4.2 upstream community sources- update to v5.3.1 upstream community sources- native RPM spec build with current tagged v5.2.5 sources/bin/sh/bin/sh9.2.10-20.el8_109.2.10-20.el8_10grafana-selinuxgrafana.fcgrafana.ifgrafana.pp.mlsgrafana.pp.targetedgrafana.tegrafana.ppgrafana.pp/usr/share/doc//usr/share/doc/grafana-selinux//usr/share/selinux/mls//usr/share/selinux/targeted/-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -fexceptions -fstack-protector-strong -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1 -m64 -mtune=generic -fasynchronous-unwind-tables -fstack-clash-protection -fcf-protectioncpioxz2x86_64-redhat-linux-gnudirectoryASCII textSE Linux policy interface sourceC++ source, ASCII textutf-8f900e4b907b673ece509c07cf7ecd81e8b69b1d7036b580d14be90516f1292ce?07zXZ !#,l[4] b2u jӫ`(y19v筩XqNI=l#Eq(<S_* d{*$Nd_=b!ѡ[2OT $?!*xnѢ6An/YpP?5j0ՓfwBhZ pYoىD,l L; ĭG_`SX ?茙;`B~CEf˒>D~VB2LgG} 4yT.!@``@|մt@ݕhybo~vmוֹ0;e۰WLx9g:f0ʽnt}w7Eef.[J1&:c"0yȏ87#VoUu︒^69%#p\YR1"Oe0Z,lB2u;vWXjAQ?;x9E7!aJpk^eh:ă% 7/jQB56NXO;Pd;=wAM{=Tfèi{/k.Ѓ c|5d䲢橋߾.@`:8h͎S bt.][t2•,B:ZωJMD6gɖܽrण؇kj<)~Y<+ GmC.v. Fn7W8KNm`, |} iiڤ^C;?i*[^$ˀbͦ& jYZrO̚haurZ} 0R=j BWOMAMt3R &Ǘ0*@㵳9!V}lwG_gU؋zG&pH}̺L ;3Jm PQl-0A: *ގazD)"u/>2}?yp ugyۼ6ֆNlwj=t"K| 'FfЛCyqR;„<- ## R]Ld__aj4! Ǡdf 0ܥuii`Tׅ{O厄13 I`$#Qr}Iߐ +}t}٥4&|<#/i|\j f"t`el},FC!Q*XqC]*JwuO5r)Gthys* lK?3.,H=O^.j NOI!@ t䦼d`CL/ݹo_?;{) qRisVZ}1Xe6Vap)j,'$rۇ5X&uYzv֦Aː]Z:-*_\F%H[9l\1rfyRg& a=^Nakb-j, Ф.jf࣭ ;ĉ ,,nqJXL=e6G"6?Q5 xVX)FKCAh|^F(Jg*2ASA5Jڞ%O$!)Vt0'75&R+"4 AGjuiAQkU&j^\rWKm]FHyz {Io' bu^`p1@sp5\U*y{{_tBzN)IODV_3ゕKq@' ^zmr۔$ :E`"7t Szi SfB\'b![)Sp IrPZI< [J]u;JȥOhi{a>s!wVY3ј%^ Pqy#T,XF-Z/w`*52K*u9}9IyLPr͖76 ֽ-(i5ލGo:Z mӐ}3>K bu!y|䫧T-STh4Op@.\OɮXOc\~P /R"j2Y=,ЊtN?,w5Idi}guWc)JʋF@#jrx^=˽d! ޡJk\dL-/3N=:++sL'{Ejz>?Ix~$wo6wy?騥2]Wh["j&׺m]4*"lQ? lT2 4t)%fvF֖?p#4VA&z: M#A ±2齷:qSZ}1c2nqJbQNRjn ^n@u-vBDIݨ 6c8?}Æ9뙔}9Z6Wۂ^`O8L+/qAwzۂi?w5FXt`a.a{\ݓ5Zt@{X[kZ_l-ebBQzk$x0gQې(TqDn' e9kWi;a$2q&d}@Ĝ@''3ѬkI.Fk+Ftfal8Բu,;ER}t6Uvb:>SqMLs xSq`B=aqyfG₍;>ޯM~tυAe:iMɦ0)uxwK-ldb\m׌8ݠU -Uƃik35Wg+Cø5FIܗЊΎw~84DdWv48KWTNR!pXV+Kq`sH^e`xM Ny!YfJPœ [ 4"ޡ)'$z}5d7V2 2T<]j&c;Z5/ɒqԆoa"'ǓBB}H M0%[w7[My&zXy)?[RZU~ z ܑԨ+~>rJư=ln*^Eۂtu^ؐ,w0־cXW#˩^1^JգjIQh3ؐ[پOmŶq1T(gZ;TV(d43s%Q2$!V,yXf3q!\*:{~N={ E擰Yp"BV@Ybb;sX-fs)e:=>|Dž| k[] @xK:"3 TFXiN$ >?u@'m`'ZIbZ^}dc6믨cmeaJ>t3~%6:.)@29"#4Q^|BEQW-C0 J;(@3 F.bgTr+@}PKESG=EC+:A)UMaϲ\Iζe*&ԛ0.t(Cv:=R@AQh[˛0nsөM/=!?=Ŵ'f ͗f9CrjAFXM%fI/ 98'}?S,ıD"M |D 'pg #=-d,YzoL*5XQZe5} qTdӲif1^V6 fԾ6Fߚz} a)Q D 8Ck+unK pao2U 늦䕮:ahU 6i4 Ⱦ0B:pDȚ sH9~V<4ʉsy nqo=E!2{W:j`"a%*XMXum }pHsi k9\8kunasFHS&pI;移G՛K_-y) | bcfũ~Qs|2ĒxpOtCPW0%* u/=D/śC pZcwgu#BʰK4J^*$?{#CFG1!%%ʶo65zUQDGaWiFoxB֑ZWqV7&k`msrݘ"hxHĹrj@9D#7Ek.tV vу8A:GJba% K#?QQ4ae@G 㮱‰K$/GՀW՝vT*勇0OvC^LQ{&H\;88h9Jmv%TVe;B;hgJɃ\Mj:&Пrc5NI[Zf @D=ocN$Gbt-I ܊ JI 911kȹީ@6?1QH{fv}Y2;W'ƾ,S^S9jKIu>`\txyjL0{+uauLbM]mgY6zk~|[$W'">(u61l=8ah9(+܊OFOM!Sx<H\ƻ?AS|}5;4/DA8r>>&%IDxЭQ/QDc4#@HѮ;)_D^y4M\anKxQe"t.ӷiY ]Si)q"$Q,xyv`;6<ۈj=/;eQE9<(9 XJ1%P$4t  5Nٶ8Řk(U;fs} :դ\i_q ŘNNݐl<^J P%49h~V'HZ ItjXt7_/ܬ.79õ[ѧf 5*ƢJ\G@#cD02R" ܑ6Ossn󣽨?u4^X$mD8ҡC4EVN>M=-}F ?P3P~ \2ZZra/-]ܱJ{K嗎q1\%4#ޱ#I ̊өUH٭H frdI8#_D$"mòd5Km'"~ xŷpV!Iǫjַ8Gs!mQŘnkbNS`9tFLotܳdZ@]?$H9m "s/>:gb'\V0{P"R4(7Z̩t5tLpl.2%8jҐk9k'l{>:j̭  7O9уC{,W(RI*qeMi`IrkQF#'?qWL]qa9d4ny)ewBjn0۔$*.jkAܐl: ʌ\837X4S`ߨ7[v!);š 8RŴ= =闑o7܇wiؚVAp;~ZAh-l,T ,IG[9*rT^P2 ɈC]' 0GFձ$; 0wG(7hMA+DaC"yaDzIo& I7l68mtK 3"RAs u*72bIHy*^̙Z|y& +˅WPذ]u^0FǸ +zd\kQݳ/POo,>I~O%?D0ll$$K;uNIK-#&h;(rV2<"05bӊBh~ϚJjvN~4T&uaُ3f -< o6o]s_ZՄ43]q;Q!\>*&lIKF/\{{u&qcFt(,NH();ДaxTK]^`<䪬F4DӁV=UV㧙42DXA]ٍ2`AY+yQU}E,ƥ WV{9I6xpiX|m nC>B{|]r 9bz.TҬ[ 7a ^su~I$('_U:i߰yS@$¡PvL,G^~}j ~茫řno s͍:`xF \GWPѭ ŏ"bmjx^:Hif:(w{ӗ3 24f:W5H#G>\qx(8Wq.$*i|8=|P[6FpisYT.$_'߹XWL06 ʟTB.t IrJGeV6W">|uP䚙>z b"q3OɅ8@fR-ΟYv9/c'X>Irlu*w$x'k:;y;[)"̽RU eS /={Az01.ϯrh>.ۨbg&0g)>mria kqypK,r A{*셨.NxKlU(@]!_fz`+[PHE#n[PP0N[115QU(3F=d.X-M>:@pVrTpy,=S8d@ OՇ{&>\g}?ݻ,}E?'x^1%x]$kA;Uh{qBkhoUT {!a2ʇOk-g~}WULlepæ"U>V$}b$ GI(h-)N6&"m'JݓՅh`+4@nERPG;|UaN"~E3BZ Z*Z9|oEwP#R_'I_"ႎ߷uhbj Ng)-9fPqo8|c)ϤW\J3,2y]>\`GUp^xH;+{|MdFb8O V=t_,wG8Jj(f$VΨHDlGDVCwgc>4iNj-eK^6`fY#?7w;[.ڝQxcBalp22􎠧xJǯn8PoW(ᨻ/c>pth!HFIdd+:p"wt$q 6x-\PVLX{:$l+^C1ҕz%bULK*L ^+w#jr (5VFp& I ٘`v/~7+aT-85zGix\+:n!)خ gS"LkpoUbڛ_ pƛkUiK^MJ7e!X$[˿FՠI\¼eX1yJGilEiЀX45:żQG_K"L9Weg2@iO0Cғ63A*4^%Hw:XG>&~̻3\^a0"&zY7 W.;3&Kʀj˃޴ wG= syKW΅=Υ6/1(Fߊ (u,זвw$$$d}n"ʒa$ 3cFӫSqxhpLsF DWM~kvZj'Wa=vVfA{XMl`Ta=רM>Qg#3k=棇M^͐rZT'v}kBv.Ҍ~{HL:0\WJ-αE`VdncHru:QANH=iVl ȽlIL*ի**+Am0~ʁNVLjOD^G\zGWӧ~û  eP=K JôA}^ 27z4vJAL`;bB!)Z1\2߈Fb+{Z~%ޭ?ˍh냉6C-BFp`O[~.hY'Ke" CT}s;PRbx62IT>} {wm'IlZCuwlxg|ZDh䃁Y_; :DwѰCN>:gF L7Mg&~u^fW;_FtKFdGUnI_H=?`rwI>|d:P1 hȃfQ/)HΈlaEOÞdm}h֋庙%dwx0" q&=CgIR`e# GخZ<|Ŀ)a+S;z}7д ^Z앣يdҸ9B=CT|_Z],/$?GeT5^H~~a#;% 66 OzN3,tHnxmNf~AFdX)OZBfD n/gp}aTIo 79iR?G֐&--<9>x}P@N,0.V<rL'*b@t!W&K]