python3-apparmor-3.0.4-150400.5.9.1<>,tdckp9|SY߬82&4&B Gf';i%A\q{ި}Â~՘5_A!%I^s05g 6g{jM\H[+ JB 3>h E?\VJd(\^r]VI14>u} \_=.Nw/9<mZ,rc Dd{noWGG*Z Rd5l෨h)\A 1lѷH G>>@?0d & S= SpUU U HU U 1U UUU.TU ,"[("8"~9$~:-~FXGpUHUIUXpYx\U]U^ bcOdefluUvD wUx0UyȄSz,Cpython3-apparmor3.0.4150400.5.9.1Python 3 interface for libapparmor functionsThis package provides the python interface to AppArmor. It is used for python applications interfacing with AppArmor.dckmourvedre ixSUSE Linux Enterprise 15SUSE LLC GPL-2.0-only AND LGPL-2.1-or-laterhttps://www.suse.com/Development/Libraries/Pythonhttps://launchpad.net/apparmorlinuxppc64le/S }((&_g47wJ\90QL ,b2 5,(k#)<Q>p1 @ 6<tq B;?b[&'%Ui $3)E/Px0AA큤A큤A큤A큤AA큤큤A큤d` d` d` d` d` d` b`%d` d` d` d` d` d` d` d` d` d` d` d` d` d` d` d` d` d` d` d` b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%d` b`%d` d` d` d` d` d` d` d` d` d` d` d` d` d` b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%d`d` d` d` d` d` d@d`b`%d` d` d` 103aaf985b7ee6570e8410caefeb8c900d5c46626cac08e13bec6476a4661e2044b2a8c30469873aebfe44bd3909bddbfc178df5078fa7a2a81a1d913c5b569e01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b2cc671fcc9d1ec75313b7eda5bcfb6024a389a90a86027d6a60afc0a06a20e766b7a19cacb0807dedd0ad9b166df085e2d323058172289ba401a19560dd4c64943278942f1939ac5492e15e846b019661e35c62a54411c80857420b6e0053c3fe2014fa7be316b8660de8253e2a37f33b26d131d89dc5cb3c60a96b72f87f09479c99ee85443030093ea9bb6344262746a82f5744dbb27fff8ab94acf4d6559cef9f47cc7c171c4a9b4909c702edb17fef4615041bbe94345448d993fc7a505f95e7e2006197af3c8660f9afa84426b0b9f6201bb59041b48524e0b0884a7e487eff10e4b1d26e36c2f9491794fce4d3c3effd54b11ebe1c247928a34ebf89006293e6b1e3116c6c9a6748f3d348af4308316ce8b8bf35d1a2d2f8653463ce02778cef18bb1206ce11366e37a9199a30d6454a52f52ca38c13067921348b73ad06c37642e6fcec6bf9f73444345b04463fb1908f52295a9fe3e59db866787a82817127f4102f3b08becc2a3269d8885f247c6a9b99f663482008929652f78df04e2a84f789fb7d889933792666836ccf3721ae4e0677e07ebf0b3e2a01b24f24ca5ccde44a784714cdf4fa33d20883335d22c002682f44876a653a5eb333ec9b131d47338b97093a2945a3c79c2aad86022282fa9b7eb76fb7c2bf494ae34d50dff215fb0bbbf5a8438945bb4f1aae8dc8a6c104382fc22841f9da106c658c4f0a7dfe77a1b05bee05eca7d4d2c7076ff3aff6148c41803797b9af21bfca77b390538551a7c3c46a8f1200402b94eaa7195a42d57f45d572880d075271e2d1bbd3418bab341905c0ba825add5cd1a4c009525befbe1fd4871afc04a186a10bfa40de1422ce69a7d59905a7ef3f9fa9cd474e1df5aa858fa99c9a8c181a8ad94b91ec320bb6f29456273036379e6ba0538d2f0d40a9957b93af9262faf020fab6026e7f316b7602597992eda5443ef6838e11dc790065a037ede90b97f49a39d9e87fa4fdae84740fd8c33710c616c9f119e230b57b48e19596d7764a79452afa07768616c2507877627ae91ad58dd98ef1c75598bfa23ed3cb7b52520feda84b1f8511e7aa8329c0343faa417d6f49d11fb2480f56b9d93587d494e73154a7d63443caaea741b1ad32459a870850c37e24b54f2a5cd1d1db195a6186954511155cea99a231b3c8a28382f6d33e4ea8a82253a3720e71e755fdf47a265b0f81a6e48ef1f72d06410e37225968640b28cfceb343074d895a6fa54684173e5b6abc8fd00305283cf4a6b8c3f24214fb6bcd8e3abb985a2544df3c59ba3bb3bf92d98987f49062ec5e62b2e91f36d014f9e2c0663c771b61b730fdbca9fcc6e61a72302bf49f902be3b31381234f7fd7537112dbcf58c669dbc42fa17afdf3720d9b0a0075fd343f00ee9fcc7b7fae09f8f281e808c8f5a050e89759957399a1ed7b0c8bf56e440a4aa90a83677f5285096e97458874fe9c3bdaeb4d2ae40cf502c721203a91f18f498f5ad91ead044f7556942446060726421d7bc3586516ae19f4847069e6d43ed07ff533f4b2259f590d75a5a4b2185efac3cc04d118b60f11a988d7b6032e8f4549737a25ce5b4c3d13d28faecb3d88cf1184908b0c378b3a80beb18dd18ae69aea286f2647ff2c4a74c2eafa270f3ee952bd057b2d3db84624efd350da354948af26e8d7aa73147867e02f53c35d81252500601912473c8e8c47fdc5fefe08e945af99883ee269416abe471aa36c4b650f8d078389f1228e1873154338182919a0e4142575a16a438abda2f8d492701efba4ac1129e8e3259e5863be25bd3db945cf65d7aeec18b43b2b54089eb0a0367c6d30f5d002153f935874779a8d2b84e1d582cbbe163349216193a4fe2722effae7fa54d06d7f95120817bba02a54ade1d6a15da5d8b3f5c75327fdd2a80c6c078f0f78263596c7dce8ce4077b456eb35e64cd6eed5c262028b54af5d16f85faffb43bc428ea1fc4a021ae37487b885ca4c8983bd6bdf5d6f2e00a60c3f08306c9076832b7966ce51e0c4eddcf554959459b23e0a8e2c352b5565da25a908f321eb9e141bc77fbce7cebbecfd995eb39012a844c06c1f26e904de9ea3a0a382383050bbe78341677c525cbb9294840b1807f8fced7657494f0356f2a74423373317256d103d29ed441f65109168e07526aa85d23e56cd76de93f1ac36e7d86e9e05f771f29d1bb4b14ea6f288ac8125172ae1a3e1b74b407957f702dad5e5480df705a785c1aa1592b90cc2182376954585c70aa8bae67f7814e09537c848de84a7c4cfe0566113dab77c29741187249bbff3930127122aa8a9694cd2ad2ad254c2bed67840f837ea51953e6c05d3a104d7e2263adc6296f679dac88e52631c9cf8f86eda441b1f54ad8d16fd0183d6921b50eb58b41610bed9168734bb105c03b4357bb56e9e1d77e9f0d4f5a562ab934418a01c902d327970cb6edcf17c58c94117247cd463d5b4aca05006a3a4fc32599fe6dc4f47d2a668cabe7f9b8b6ae409900c922e8d217840ad79040864987b7523111128252163e639e1eb932ddf161c4c56caecbdbdb922f7815f2f65b80c739f0518dee431ab029e119546ab2af5053b743b3bb4edc383e1eb201c5d5553ebe3b50c91a7d8015e0e48bc30c30e68fb1d7bb9393985eb5be0f096af15dadcf19e4499ae6c2d59d0ded25464e56241c75baf5b94cab456ebd49ac8c240526456014b084005cd7da7f8edea9e7edfa11701b399487623773ab7221a9a936d42d3e1e0061c5057f2a33f95754934a7ce2265b2cb0b16b451085bfbfec18866efde61dfad50c4016b136852dc8b4a4fc1b182a02a3e47d0d951d36561949259c10848b14f2a69e3f9475c1bac12c6f31d9749ce0a81e5a04e2d306b3b115ff3111e4fc204d55bb2b9ed73160684b1d9581350c4984b9c8b3482cf9ebaeb6bc5e77a9d572fb928dba6d4c5db21a47fd6172f7ef698f4a05b18a9475fe3a701c50bfdd4ba5f491ccae4a8c395d56c2f97549930aead3488505701ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546baac39bb57b937e104c1375b745d15e0609ebfb00dbbd14546119699d511cf68056386fa2f5e2de5845ae5e81d7de1f92c452d70ed17dc7c5bed1901d341d618122fcba356ec59eff5abdfccc8905c4c6f2ac5089d117046dbe3d7abbb20e38249f50c49cf90b7050a3c75116ce5e903af13823f0fb7a8e07803af337e4be04c052d64dc0a4a269651edbb90ffe4ce78e7557a3d446a43c31af274c4d6649f8118fd7ed51da6f34bcb0454bcf123e77211818431d4aa9f10faf4e1fd63642c1d0rootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootapparmor-3.0.4-150400.5.9.1.src.rpmpython3-apparmorpython3-apparmor(ppc-64)@@@@@@@@@@@@@@@    libapparmor.so.1()(64bit)libapparmor.so.1(APPARMOR_1.0)(64bit)libapparmor.so.1(APPARMOR_1.1)(64bit)libapparmor.so.1(APPARMOR_2.10)(64bit)libapparmor.so.1(APPARMOR_2.11)(64bit)libapparmor.so.1(APPARMOR_2.9)(64bit)libapparmor.so.1(PRIVATE)(64bit)libapparmor1libc.so.6()(64bit)libc.so.6(GLIBC_2.17)(64bit)libdl.so.2()(64bit)libm.so.6()(64bit)libpthread.so.0()(64bit)libpython3.6m.so.1.0()(64bit)libutil.so.1()(64bit)python(abi)python(abi)python3rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)3.0.43.63.63.0.4-14.6.0-14.0-15.2-14.14.3d@d@cbk@bi0@bZbV@bT@bRbBb<]@b@a7aZ@ap@aabaim@aEaaua $@`#@` @````_@`%@`!'`>` @__ǁ_ǁ_Q_h__@_~@_[f_P_-B@_@^m@^@^<@^j$@^,-]҇]o](]K@]]@\\@\ \\v{\I\ include in apache extra profile optional to avoid problems with empty profile directory (boo#1178527)- prepare usrmerge (boo#1029961) * use %_pamdir- update to AppArmor 3.0.1 - minor additions to profiles and abstractions - some bugfixes in libapparmor, apparmor_parser and the aa-* utils - see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_3.0.1 for the detailed upstream changelog - removed upstream(ed) patches: - changes-since-3.0.0.diff - extra-profiles-fix-Pux.diff - utils-fix-hotkey-conflict.diff- Use apache provided variables for the module_directry: + Use %apache_libexecdir + Add apache-rpm-macros BuildRequires- add utils-fix-hotkey-conflict.diff to fix a hotkey conflict in de, id and sv translations (and fix the test) (MR 675) - add extra-profiles-fix-Pux.diff to fix an inactive profile - prevents a crash in aa-logprof and aa-genprof when creating a new profile (MR 676)- update to AppArmor 3.0.0 - introduce feature abi declaration in profiles to enable use of new rule types (for openSUSE: dbus and unix rules) - support xattr attachment conditionals - experimental support for kill and unconfined profile modes - rewritten aa-status (in C), including support for new profile modes - rewritten aa-notify (in python), finally dropping the perl requirement at runtime - new tool aa-features-abi for extracting feature abis from the kernel - update profiles to have profile names and to use 3.0 feature abi - introduce @{etc_ro} and @{etc_rw} profile variables - new profile for php-fpm - several updates to profiles and abstractions (including boo#1166007) - fully support 'include if exists' in the aa-* tools - rewrite handling of alias, include, link and variable rules in the aa-* tools - rewrite and simplify log handling in the aa-logprof and aa-genprof - see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_3.0 for the detailed upstream changelog - patches: - add changes-since-3.0.0.diff with upstream fixes since the 3.0.0 release up to 3e18c0785abc03ee42a022a67a27a085516a7921 - drop upstreamed usr-etc-abstractions-base-nameservice.diff - drop 2.13-only libapparmor-so-number.diff - refresh apparmor-enable-profile-cache.diff - partially upstreamed - update apparmor-samba-include-permissions-for-shares.diff and apparmor-lessopen-profile.patch - switch to "include if exists" - apparmor-lessopen-profile.patch: add abi rule to lessopen profile - refresh apparmor-lessopen-nfs-workaround.diff - move away very loose apache profile that doesn't even match the apache2 binary path in openSUSE to avoid confusion (boo#872984) - move rewritten aa-status from utils to parser subpackage - add aa-features-abi to parser subpackage - replace perl and libnotify-tools requires with requiring python3-notify2 and python3-psutil (needed by the rewritten aa-notify) - drop ancient cleanup for /etc/init.d/subdomain from parser %pre - drop (never enabled) conditionals to build with python2 and to build the python-apparmor subpackage (upstream dropped python2 support) - drop setting PYTHON and PYTHON_VERSIONS env variable, no longer needed - set PYFLAKES path for utils check - add precompiled_cache build conditional to allow faster local builds without using kvm - remove duplicated BuildRequires: swig- update to AppArmor 2.13.5 - add missing permissions to several profiles and abstractions - bugfixes in parser and tools - fix two potential build failures in libapparmor - see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_2.13.5 for the detailed upstream changelog - remove upstream(ed) patches - changes-since-2.13.4.diff - abstractions-X-xauth-mr582.diff - sevdb-caps-mr589.diff - libvirt-leaseshelper.patch - cap_checkpoint_restore.diff - add libapparmor-so-number.diff to fix libapparmor so version (!658)- add CAP_CHECKPOINT_RESTORE to severity.db (MR 656, cap_checkpoint_restore.diff)- %service_del_postun_without_restart only works for Tumbleweed, keep using DISABLE_RESTART_ON_UPDATE for Leap 15.x- Make use of %service_del_postun_without_restart And stop using DISABLE_RESTART_ON_UPDATE as this interface is obsolete.- libvirt-leaseshelper.patch: add /usr/libexec as a path to the libvirt leaseshelper script (jsc#SLE-14253)- sevdb-caps-mr589.diff: add new capabilities CAP_BPF and CAP_PERFMON to severity.db (lp#1890547)- add abstractions-X-xauth-mr582.diff to allow reading the xauth file from its new sddm location (boo#1174290, boo#1174293)- add changes-since-2.13.4.diff with upstream changes and fixes since 2.13.4 up to 5f61bd4c: - add several abstractions related to xdg-open: dbus-network-manager-strict, exo-open, gio-open, gvfs-open, kde-open5, xdg-open - introduce @{run} variable - update dnsmasq and winbindd profile - update mdns, mesa and nameservice abstraction - some bugfixes in the aa-* tools, including a remote bugfix in the YaST AppArmor module (boo#1171315) - drop upstream(ed) patches (now part of changes-since-2.13.4.diff): - make-4.3-capabilities.diff - make-4.3-capabilities-vim.diff - make-4.3-fix-utils-network-test.diff - make-4.3-network.diff - abstractions-add-etc-mdns.allow-to-etc-apparmor.d-abstractions-mdns.patch - apply usr-etc-abstractions-base-nameservice.diff only for Tumbleweed, but not for Leap 15.x where it's not needed - refresh usr-etc-abstractions-base-nameservice.diff- Add abstractions-add-etc-mdns.allow-to-etc-apparmor.d-abstractions-mdns.patch (bsc#1168306)- fix build with make 4.3 by backporting some commits from upstream master (boo#1167953): - make-4.3-capabilities.diff - make-4.3-capabilities-vim.diff - make-4.3-network.diff - make-4.3-fix-utils-network-test.diff- update to AppArmor 2.13.4 - several abstraction updates (including boo#1153162) - disallow writing to fontconfig cache in abstractions/fonts - some bugfixes in the aa-* tools - fix log parsing for logs with an embedded newline - see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_2.13.4 for the detailed upstream changelog - drop upstreamed patches: - abstractions-ssl-certbot-paths.diff - apparmor-krb5-conf-d.diff - libapparmor-python3.8.diff - usr-etc-abstractions-authentification.diff - refresh usr-etc-abstractions-base-nameservice.diff- add usr-etc-abstractions-base-nameservice.diff to adjust abstractions/base and nameservice for /usr/etc/ (boo#1161756)- Properly pull in full python3 interpreter- add libapparmor-python3.8.diff to fix building the libapparmor python bindings (deb#943657)- add usr-etc-abstractions-authentification.diff to allow reading /usr/etc/pam.d/* and some other authentification-related files (boo#1153162)- add abstractions-ssl-certbot-paths.diff - add certbot paths to abstractions/ssl_certs and abstractions/ssl_keys- add apparmor-krb5-conf-d.diff for kerberos client- update to 2.13.3 - profile updates for dnsmasq, dovecot, identd, syslog-ng - new "lsb_release" profile (only used when using "Px -> lsb_release") - fix buggy syntax in tunables/share - several abstraction updates - parser: fix "Px -> foo-bar" (the "-" was rejected before) - several bugfixes in aa-genprof and aa-logprof - some fixes in cache handling - see https://gitlab.com/apparmor/apparmor/wikis/Release_Notes_2.13.3 for the detailed upstream changelog - drop upstream(ed) patches: - apparmor-nameservice-resolv-conf-link.patch - profile_filename_cornercase.diff - dnsmasq-libvirtd.diff - dnsmasq-revert-alternation.diff - usrmerge-fixes.diff - libapparmor-swig-4.diff - re-number remaining patches- add upstream libapparmor-swig-4.diff: fix libapparmor tests with swig 4.0 (boo#1135751)- Disable LTO (boo#1133091).- update lessopen.sh profile for usrMerge (bash and tar) (boo#1132350)- add usrmerge-fixes.diff: fix test failures when /bin/sh is handled by update-alternatives (boo#1127877)- add dnsmasq-revert-alternation.diff: revert path alternation in dnsmasq profile and re-add peer=/usr/sbin/libvirtd rules to avoid breaking libvirtd (boo#1127073)- add dnsmasq-libvirtd.diff: allow peer=libvirtd in the dnsmasq profile to match the newly added libvirtd profile name (boo#1118952#c3)- Use %license instead of %doc [bsc#1082318]- add apparmor-lessopen-nfs-workaround.diff: allow network access in lessopen.sh for reading files on NFS (workaround for boo#1119937 / lp#1784499)- add profile_filename_cornercase.diff: drop check that lets aa-logprof error out in a corner-case (log event for a non-existing profile while a profile file with the default filename for that non-existing profile exists) (boo#1120472)- netconfig: write resolv.conf to /run with link to /etc (fate#325872, boo#1097370) [patch apparmor-nameservice-resolv-conf-link.patch]- update to AppArmor 2.13.2 - add profile names to most profiles - update dnsmasq profile (pid file and logfile path) (boo#1111342) - add vulkan abstraction - add letsencrypt certificate path to abstractions/ssl_* - ignore *.orig and *.rej files when loading profiles - fix aa-complain etc. to handle named profiles - several bugfixes and small profile improvements - see https://gitlab.com/apparmor/apparmor/wikis/Release_Notes_2.13.2 for the detailed upstream changelog - remove upstreamed fix-syntax-error-in-rc.apparmor.functions.patch- update to 2.13.1 - add qt5 and qt5-compose-cache-write abstractions - add @{uid} and @{uids} kernel var placeholders - several profile and abstraction updates - ignore "abi" rules in parser and tools (instead of erroring out) - utils: fix overwriting of child profile flags if they differ from the main profile - several bugfixes (including boo#1100779) - see https://gitlab.com/apparmor/apparmor/wikis/Release_Notes_2.13.1 for the detailed upstream changelog - remove upstream(ed) patches: - aa-teardown-path.diff - fix-apparmor-systemd-perms.diff - logprof-skip-cache-d.diff - fix-samba-profiles.patch - make-pyflakes-happy.diff - dnsmasq-Add-permission-to-open-log-files.patch - refresh apparmor-samba-include-permissions-for-shares.diff - add fix-syntax-error-in-rc.apparmor.functions.patch- update rpmlintrc: - whitelist .features file which is part of the pre-compiled cache - comment out filters for the disabled tomcat_apparmor subpackage- Backport dnsmasq fix: 025c7dc6 - dnsmasq-Add-permission-to-open-log-files.patch (boo#1111342)- add make-pyflakes-happy.diff to fix an unused variable (SR 629206)- add fix-samba-profiles.patch - smbd loads new shared libraries. Allow winbindd to access new kerberos credential cache location (boo#1092099)- exclude the /etc/apparmor.d/cache.d/ directory from aa-logprof parsing (logprof-skip-cache-d.diff)- add fix-apparmor-systemd-perms.diff - fix permissions of /lib/apparmor/apparmor.systemd (boo#1090545)- create and package precompiled cache (/usr/share/apparmor/cache, read-only) (boo#1069906, boo#1074429) - change (writeable) cache directory to /var/cache/apparmor/ - with the new btrfs layout, the only reason for using /var/lib/apparmor/cache/ (which was "it's part of the / subvolume") is gone, and /var/cache makes more sense for the cache - adjust parser.conf (via apparmor-enable-profile-cache.diff) to use both cache locations - clear cache also in %post of abstractions package- update to AppArmor 2.13 - add support for multiple cache directories and cache overlays (boo#1069906, boo#1074429) - add support for conditional includes in policy - remove group restrictions from aa-notify (boo#1058787) - aa-complain etc.: set flags for profiles represented by a glob - aa-status: split profile from exec name - several profile and abstraction updates - see https://gitlab.com/apparmor/apparmor/wikis/Release_Notes_2.13 for the detailed upstream changelog - drop upstreamed patches and files: - aa-teardown - apparmor.service - apparmor.systemd - 32-bit-no-uid.diff - disable-cache-on-ro-fs.diff - dovecot-stats.diff - parser-write-cache-warn-only.diff - set-flags-for-profiles-represented-by-glob.patch - fix-regression-in-set-flags.patch - drop spec code that handled installing aa-teardown, apparmor.service and apparmor.systemd (now part of upstream Makefile) - simplify "make -C profiles parser-check" call (upstream Makefile bug that required to call "cd" was fixed) - add aa-teardown-path.diff - install aa-teardown in /usr/sbin/ - move 'exec' symlink to parser package (belongs to aa-exec)- Set flags for profiles represented by glob (bsc#1086154) set-flags-for-profiles-represented-by-glob.patch fix-regression-in-set-flags.patch- add dovecot-stats.diff: - add dovecot/stats profile and allow dovecot to run it (boo#1088161) - allow dovecot/auth to write /run/dovecot/old-stats-user (part of boo#1087753) - update 32-bit-no-uid.diff with upstream fix- Change of path of rpm in lessopen.sh (boo#1082956)- add disable-cache-on-ro-fs.diff - disable write cache if filesystem is read-only and don't bail out (bsc#1069906, bsc#1074429)- add parser-write-cache-warn-only.diff to make cache write failures a warning instead of an error (boo#1069906, boo#1074429) - reduce dependeny on libnotify-tools (used by aa-notify -p) to "Suggests" to avoid pulling in several Gnome packages on servers (boo#1067477)- update to AppArmor 2.12 - add support for 'owner' rules in aa-logprof and aa-genprof - add support for includes with absolute path in aa-logprof etc. (lp#1733700) - update aa-decode to also decode PROCTITLE (lp#1736841) - several profile and abstraction updates, including boo#1069470 - preserve errno across aa_*_unref() functions - see https://gitlab.com/apparmor/apparmor/wikis/Release_Notes_2.12 for the detailed upstream changelog - drop upstreamed patches: - read_inactive_profile-exactly-once.patch - utils-fix-sorted-save_profiles-regression.diff - lessopen profile: change all 'rix' rules to 'mrix' - add 32-bit-no-uid.diff to fix handling of log events without ouid on 32 bit systems - no longer package static libapparmor.a- update to AppArmor 2.11.95 aka 2.12 beta1 - add JSON interface to aa-logprof and aa-genprof (used by YaST) - drop old YaST interface code - update audio, base and nameservice abstractions - allow @{pid} to match 7-digit pids - see http://wiki.apparmor.net/index.php/ReleaseNotes_2_11_95 for the detailed upstream changelog - drop upstreamed patches - apparmor-yast-cleanup.patch - apparmor-json-support.patch - nameservice-libtirpc.diff - drop obsolete perl modules (YaST no longer needs them) - drop patches that were only needed by the obsolete perl modules: - apparmor-utils-string-split - apparmor-abstractions-no-multiline.diff - drop profiles-sockets-temporary-fix.patch - obsoleted by a fix in apparmor_parser - refresh utils-fix-sorted-save_profiles-regression.diff - add aa-teardown (new script to unload all profiles) - make ExecStop in apparmor.service a no-op (workaround for a systemd restriction, see boo#996520 and boo#853019 for details) - lessopen profile: allow capability dac_read_search and dac_override, allow groff to execute several helpers (boo#1065388)- read_inactive_profile-exactly-once.patch (bsc#1069346) Perform reading of inactive profiles exactly once.- update to AppArmor 2.11.1 - add permissions to several profiles and abstractions (including lp#1650827 and boo#1057900) - several fixes in the aa-* tools (including lp#1689667, lp#1628286, lp#1661766 and boo#1062667) - fix downgrading/converting of 'unix' rules (will be supported in kernel 4.15) to 'network unix' rules in apparmor_parser (boo#1061195) - see http://wiki.apparmor.net/index.php/ReleaseNotes_2_11_1 for upstream changelog - remove upstream(ed) patches - upstream-changes-r3616..3628.diff - upstream-changes-r3629..3648.diff - parser-tests-dbus-duplicated-conditionals.diff - apparmor-fix-podsyntax.patch - sshd-profile-drop-local-include-r3615.diff - refresh apparmor-yast-cleanup.patch - add utils-fix-sorted-save_profiles-regression.diff to fix a regression in displaying the "changed profiles" list in aa-logprof- add nameservice-libtirpc.diff to fix NIS/YP logins (boo#1062244)- profiles-sockets-temporary-fix.patch to cater to nameservices with the new sockets mediation, until unix rules are upstreamed (boo#1061195)- add apparmor-fix-podsyntax.patch from mailing list to fix compilation with perl 5.26- do not require exact X.Y version of "python3" - require also matching python(abi) which is arguably more important- don't rely on implementation details for reload in %post- add JSON support. Required for FATE#323380. (apparmor-yast-cleanup.patch, apparmor-json-support.patch)- add upstream-changes-r3629..3648.diff: - preserve unknown profiles when reloading apparmor.service (CVE-2017-6507, lp#1668892, boo#1029696) - add aa-remove-unknown utility to unload unknown profiles (lp#1668892) - update nvidia abstraction for newer nvidia drivers - don't enforce ordering of dbus rule attributes in utils (lp#1628286) - add --parser, --base and --Include option to aa-easyprof to allow non-standard paths (useful for tests) (lp#1521031) - move initialization code in apparmor.aa to init_aa(). This allows to run all utils tests even if /etc/apparmor.d/ or /sbin/apparmor_parser don't exist. - several improvements in the utils tests - drop upstreamed python3-drop-re-locale.patch - no longer delete/skip some of the utils tests (to allow this, add parser-tests-dbus-duplicated-conditionals.diff) - add var.mount dependeny to apparmor.service (boo#1016259#c34)- Cleanup spec file: - don't use insserv if we afterwards call systemd, this can have bad side effects - remove dead code - remove now obsolete 'distro' checks - Replace init.d script with new wrapper working with systemd- add python3-drop-re-locale.patch: remove deprecated re.LOCALE flag in Python UI as it was dropped from Python 3.6 (lp#1661766)- Fix RPM groups- add upstream-changes-r3616..3628.diff: - update abstractions/base, abstractions/apache2-common and dovecot profiles - merge ask_the_questions() of aa-logprof and aa-mergeprof - pass LDFLAGS when building parser, libapparmor perl bindings and pam_apparmor - adjust deleting the cache in profiles %post to the new cache location - silence errors when deleting the cache (boo#976914)- split libapparmor into separate spec to get rid of build loop involving mariadb, systemd, apparmor, libapr and mariadb again (see the discussion in SR 448871 for details) - libapparmor.spec is based on the AppArmor 2.11 apparmor.spec, but with minimum BuildRequires- update to AppArmor 2.11.0 - apparmor_parser now supports parallel compiles and loads - add full support for dbus, ptrace and signal rules and events to the utils - full rewrite of the file rule handling in the utils - lots of improvements and fixes - see http://wiki.apparmor.net/index.php/ReleaseNotes_2_11 for the detailed changelog - patches: - add sshd-profile-drop-local-include-r3615.diff to fix 'make check' - drop aa-unconfined-fix-netstat-call-2.10r3380.diff, no longer needed - refresh apparmor-abstractions-no-multiline.diff - refresh apparmor-samba-include-permissions-for-shares.diff - spec changes: - aa-unconfined switched to using ss (from iproute2), adjust Recommends: - move libapparmor to /usr/lib*/ - drop %if %suse_version checks for 12.x - change several Obsoletes from %version to < 2.9. Those package names weren't used since years, and 2.9 is still a careful choice - include apparmor.service independent of %suse_version - techdoc.pdf is now shipped in upstream tarball to reduce BuildRequires - drop latex2html, texlive-* and w3m BuildRequires - techdoc.txt and techdoc.html not included, drop them from the package - run most of utils/ make check (some tests expect /etc/apparmor.d/ and /sbin/apparmor_parser to exist, skip them) - BuildRequires python3-pyflakes (utils tests) and dejagnu (libapparmor tests) - drop sed'ing python3 into aa-* shebang (upstreamed) - build binutils - aa-exec is now written in C and lives in /usr/bin/, move it to the apparmor_parser package and create a compability symlink in /usr/sbin/ - aa-exec manpage moved to section 1 - aa-enabled is a small new tool to find out if AppArmor is enabled - package new aa_stack_profile(2) manpage- change /etc/apparmor.d/cache symlink to /var/lib/apparmor/cache/. This is part of the root partition (at least with default partitioning) and should be available earlier than /var/cache/apparmor/ (boo#1015249, boo#980081, bsc#1016259) - add dependency on var-lib.mount to apparmor.service as safety net- update to AppArmor 2.10.2 maintenance release - lots of bugfixes and profile updates (including boo#1000201, boo#1009964, boo#1014463) - see http://wiki.apparmor.net/index.php/ReleaseNotes_2_10_2 for details - add aa-unconfined-fix-netstat-call-2.10r3380.diff to fix a regression in aa-unconfined - drop upstream(ed) patches: - changes-since-2.10.1--r3326..3346.diff - changes-since-2.10.1--r3347..3353.diff - libapparmor-fix-import-path.diff (upstream fix is slightly different) - nscd-var-lib.diff - refresh apparmor-abstractions-no-multiline.diff- add nscd-var-lib.diff to allow /var/lib/nscd/ in the nscd profile and abstractions/nameservice (path changed in latest nscd in Tumbleweed)- add changes-since-2.10.1--r3347..3353.diff with upstream changes and fixes in the 2.10 branch, including - allow writing *.qf files (for disk-based buffering) in syslog-ng profile - add several permissions to the dovecot profiles (deb#835826) - add a missing path in the traceroute profile- add changes-since-2.10.1--r3326..3346.diff with upstream changes and fixes since the 2.10.1 release, including - allow dac_override in winbindd profile (boo#990006#c5) - allow mr for /usr/lib*/ldb/*.so in samba abstractions (needed since Samba 4.4.x, boo#990006) - abstractions/nameservice: also support ConnMan-managed resolv.conf - let aa-genprof ask about profiles in extra dir (again) - fix aa-logprof "add hat" endless loop (lp#1538306) - honor 'chown' file events in logparser.py - ignore log file events with a request mask of 'send' or 'receive' because they are actually network events (lp#1577051, lp#1582374) - accept hostname with dots when parsing logs (lp#1453300 comments #1 and #2) - fix python LibAppArmor import failures with swig > 3.0.8 (boo#987607) (libapparmor-fix-import-path.diff) - refresh apparmor-abstractions-no-multiline.diff - drop upstreamed profiles-ping-inet6-r3449.diff - add %check section - runs libapparmor (including swig bindings), parser and profiles tests - add BuildRequires: perl(Locale::gettext) - needed for parser tests- add profiles-ping-inet6-r3449.diff - latest ping also does IPv6 (boo#980596)- update to AppArmor 2.10.1 (2.10 branch r3326): - fix incorrect output of child profile names (apparmor_parser -N) which caused 'rcapparmor reload' to remove child profiles and hats (lp#1551950) - fix a crash in aa-logprof / logparser.py for change_hat log events (lp#1523297) and log events that look like file events, but aren't (lp#1540562, lp#1525119, lp#1466812) - write unix rules when saving a profile (lp#1522938, boo#954104#c3) - several fixes for variable handling in aa-logprof - map c (create) log events to w instead of a - add python to the "no Px rule" list in logprof.conf - let aa-logprof check for duplicate profiles - let aa-status work without the apparmor.fail python module (boo#971917, lp#1480492) - add permissions in several profiles (including boo#948584, boo#948753, boo#954959, boo#954958, boo#971790, boo#964971, boo#921098, boo#923201 and boo#921098#c15). - and many more fixes, see the full changelog at http://wiki.apparmor.net/index.php/ReleaseNotes_2_10_1 - drop upstream(ed) patches: - fix-initscript-aa_log_end_msg.diff - syslog-ng-profile-boo948584.diff - upstream-profile-updates-r3205-3241.diff - refresh patches: - apparmor-abstractions-no-multiline.diff - apparmor-samba-include-permissions-for-shares.diff - drop libapparmor autogen.sh call (broke the build) and remove libtool BR- add syslog-ng-profile-boo948584.diff - add several permissions needed by latest syslog-ng (boo#948584, boo#948753) - add upstream-profile-updates-r3205-3241.diff with several profile updates: - add /usr/share/locale-bundle/** to abstractions/base - allow dnsmask to use /bin/sh (boo#940749) and /bin/dash - allow dovecot imap to read /run/dovecot/mounts - allow avahi-daemon to write to /run/systemd/notify - allow ntpd to read $PATH directory listings (boo#945592, boo#948752) - update dhclient profile - allow skype to read @{PROC}/@{pid}/net/dev (boo#939568) - and some other small updates - drop upstreamed apparmor-winbindd-r3213.diff (included in the upstream-profile-updates patch)- netstat moved to net-tools-deprecated in Tumbleweed (boo#944904)- add apparmor-winbindd-r3213.diff - add missing k permissions for /etc/samba/smbd.tmp/msg/* in winbindd profile (boo#921098 #c15..19)- add fix-initscript-aa_log_end_msg.diff - fixes ugly initscript output (boo#862170)- update to AppArmor 2.10 (trunk r3205) - profile names can now contain variables - improved profile compile time in apparmor_parser - lots of improvements, refactoring and bugfixes in the aa-* tools - new apis for managing and loading profile caches into the kernel in libapparmor - lots of profile updates - see http://wiki.apparmor.net/index.php/ReleaseNotes_2_10 for the complete changelog with more details - add new apparmor_private.h and the aa_query_label(2), aa_features(3), aa_kernel_interface(3), aa_policy_cache(3), aa_splitcon(3) manpages to libapparmor-devel - drop apparmor-2.5.1-edirectory-profile patch - it's most probably no longer needed (see boo#621394 for details) - drop upstreamed samba-4.2-profiles.diff - refresh apparmor-samba-include-permissions-for-shares.diff- systemd-rpm-macros and %systemd_requires were at the wrong place, move them to the parser package (boo#931792)- update to AppArmor 2.9.2 (2.9 branch r2911) - lots of bugfixes in the parser and the aa-* tools (including boo#918787) - update dovecot and dnsmasq profiles and several abstractions (including boo#911001) - see http://wiki.apparmor.net/index.php/ReleaseNotes_2_9_2 for the full changelog - remove upstream(ed) patches apparmor-changes-since-2.9.1.diff and apparmor-fix-stl-ostream.diff - replace GPG key with new AppArmor GPG signing key, see https://launchpad.net/apparmor/+announcement/13404- make sure %service_del_postun doesn't call systemctl try-restart (boo#853019, bare systemd edition) - add samba-4.2-profiles.diff: update samba (winbindd and nmb) profiles for samba 4.2 (boo#921098, boo#923201)- only install apparmor.service for openSUSE > 13.2- Add a native systemd unit which *at the moment* only wraps/masks the early boot script.- add apparmor-fix-stl-ostream.diff which fixes odd uses of std::ostream which are not valid. Fixes build with GCC 5- allow lessopen.sh to run /usr/bin/unzip-plain (boo#906858)- add Requires: python3 to python3-apparmor package - readline isn't part of python3-base (boo#917577)- add apparmor-changes-since-2.9.1.diff with upstream fixes since the 2.9.1 release - update logparser.py to support changed syslog format (lp#1399027) - update usr.sbin.dovecot and usr.lib.dovecot.imap{, -login} profiles (lp#1296667) - update the mysqld profile - fix network rule description in apparmor.d(5) manpage - drop upstreamed dnsmasq-profile-fixes.patch - update expired GPG key- update to AppArmor 2.9.1 (2.9 branch r2831) - fix log parsing for 3.16 kernels and syslog-style logs (boo#905368) - several fixes and performance improvements in the aa-* utils - profile updates for dnsmasq (boo#907870), nscd (boo#904620#c14 and bnc#908856), useradd, sendmail, man and passwd - see http://wiki.apparmor.net/index.php/ReleaseNotes_2_9_1 for full release notes - refresh dnsmasq-profile-fixes.patch- Fix dnsmasq profile to allow executing bash to run the --dhcp-script argument. Also fixed /usr/lib -> /usr/{lib,lib64} to get libvirt leasehealper script to run even on x86_64. dnsmasq-profile-fixes.patch. boo#911001- rename lessopen.sh profile file to usr.bin.lessopen.sh to match the script filename- add apparmor-lessopen-profile.patch: /usr/bin/lessopen.sh needs confinement. bnc#906858- delete cache in apparmor-profiles %post (workaround for bnc#904620#c8 / lp#1392042)- No longer perform gpg validation; osc source_validator does it implicit: + Drop gpg-offline BuildRequires. + No longer execute gpg_verify.- fix bashism in post script- update to AppArmor 2.9.0 (r2759) - change aa-mergeprof to the final commandline syntax - lots of bugfixes in the aa-* tools (bnc#900163, lp#1328707 and several bugs without a formal bugreport) - small additions to gnome, freedesktop.org, ubuntu-browsers.d/java and user-mail abstractions - fix mod_apparmor to not break basic auth - update perl modules to support signal, unix and ptrace rules (bnc#900013) - don't warn about rules not supported by the kernel - fix logging of "audit capability" (lp#1378091) - add support for the "hat" keyword in apparmor.vim - build html version of apparmor.vim manpage again (lp#1366572) - see also http://wiki.apparmor.net/index.php/ReleaseNotes_2_9_0 - update apparmor-abstractions-no-multiline.diff - remove upstreamed apparmor-profiles-ntpd-pid-location.diffmourvedre 1694065515  !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTU3.0.4-150400.5.9.13.0.4-150400.5.9.1 apparmorapparmor-3.0.4-py3.6.egg-infoPKG-INFOSOURCES.txtdependency_links.txttop_level.txt__init__.py__pycache____init__.cpython-36.pycaa.cpython-36.pycaare.cpython-36.pyccleanprofile.cpython-36.pyccommon.cpython-36.pycconfig.cpython-36.pyceasyprof.cpython-36.pycfail.cpython-36.pyclogparser.cpython-36.pycnotify.cpython-36.pycprofile_list.cpython-36.pycprofile_storage.cpython-36.pycregex.cpython-36.pycrules.cpython-36.pycsandbox.cpython-36.pycseverity.cpython-36.pyctools.cpython-36.pyctranslations.cpython-36.pycui.cpython-36.pycaa.pyaare.pycleanprofile.pycommon.pyconfig.pyeasyprof.pyfail.pylogparser.pynotify.pyprofile_list.pyprofile_storage.pyregex.pyrule__init__.py__pycache____init__.cpython-36.pycabi.cpython-36.pycalias.cpython-36.pyccapability.cpython-36.pycchange_profile.cpython-36.pycdbus.cpython-36.pycfile.cpython-36.pycinclude.cpython-36.pycnetwork.cpython-36.pycptrace.cpython-36.pycrlimit.cpython-36.pycsignal.cpython-36.pycvariable.cpython-36.pycabi.pyalias.pycapability.pychange_profile.pydbus.pyfile.pyinclude.pynetwork.pyptrace.pyrlimit.pysignal.pyvariable.pyrules.pysandbox.pyseverity.pytools.pytranslations.pyui.pyLibAppArmorLibAppArmor-3.0.4-py3.6.egg-infoPKG-INFOSOURCES.txtdependency_links.txttop_level.txtLibAppArmor.py_LibAppArmor.cpython-36m-powerpc64le-linux-gnu.so__init__.py__pycache__LibAppArmor.cpython-36.pyc__init__.cpython-36.pyc/usr/lib/python3.6/site-packages//usr/lib/python3.6/site-packages/apparmor-3.0.4-py3.6.egg-info//usr/lib/python3.6/site-packages/apparmor//usr/lib/python3.6/site-packages/apparmor/__pycache__//usr/lib/python3.6/site-packages/apparmor/rule//usr/lib/python3.6/site-packages/apparmor/rule/__pycache__//usr/lib64/python3.6/site-packages//usr/lib64/python3.6/site-packages/LibAppArmor-3.0.4-py3.6.egg-info//usr/lib64/python3.6/site-packages/LibAppArmor//usr/lib64/python3.6/site-packages/LibAppArmor/__pycache__/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:30575/SUSE_SLE-15-SP4_Update/509e71de7e3059801e8af2f2d82e38e6-apparmor.SUSE_SLE-15-SP4_Updatedrpmxz5ppc64le-suse-linuxdirectoryASCII textpython 3.6 byte-compiledPython script, ASCII text executable, with very long linesPython script, ASCII text executablePython script, UTF-8 Unicode text executablea /usr/bin/python3 script, UTF-8 Unicode text executableELF 64-bit LSB shared object, 64-bit PowerPC or cisco 7500, version 1 (SYSV), dynamically linked, BuildID[sha1]=50625c72d320638fb2d1772ceab91344e8ed3343, stripped  !"#$%&'()*+,-./0123456789:;<=>?@APQRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRR RRRRRRR R R RR RRRRRBwȅæ=\utf-8495a4cd3bacfe106e6641ee1667011f4e5db813e71232801d6873b4c09fea3c7? 7zXZ !t/T]"k%%) `=l.Xt`-MϨ`u)Squ ȶ$.b+ܛ7"= 8 Ov;T/ ~ }cr}kU"}qF-j?ڀoAcir,?8i?iBS1~]Z\p1ͼSo0*.@pnkd=ŻktwZ2a!l΄N5>\b<.9a6 &kt$-ۅ=)6!7IR~XDj}'ס^|ُZpnT.ם<9O7E.*2I j>S1ؕ($ ,+yrY28Tj 鳷t3e.ԅט ÎWkD ]a 5A8{dHo+*4#*ډy7\r7,aL-ܱ8'KFދ>4x9K g8Hk/ZZ& L9L ¦p!YY~ 3>蛂U{͹ϩ.S25[ߝM^W}fW7+ضa_ ^bb.׿^M uâs ןt8\P Y {0ŮZU]/f,s%X<E5CS.@t-ݸj47 >P'ѵ Ay?ٴ(1J{zD'}nx9CrH۫/Y4qX>Ed=S>o6tW w$C R?ơT6TٛWZW= t'4`"WDɹTz*k]D⚛w1YJMMT,KjFLԱYK0l)# vس7y1B/,)& u+Rs=PP.4 ˞e.}>6f,@j?^P|9!&ĒX*u/uȩBсTsu!b/!]W/sz/1L_1EWK".pIZwgjyך7g-*Iϗ߶X ޗ81 +6h3s-=r'8T\BF|!h=߇o{j+n9Ϋ|35Ѵ ȱ.:Z7H~us~mxex ( HN59sΛ> UcwW!gР}y_q@n "!g|{ҥtgF ]Ħ7E7?wm}S7?Ah j=f*xjp&l8q 7Hzˁ vNh頓ģ\ƿ)&ܻra%.zK}mc{. vQ|̇X&aEČ_\mM $>,k %v|* ;b!S"K.ȼM @%JZ8\U@I]}kI 񺰫M{.Q'"Ґ5N:2W_M9n 5E}#kg,|x7bCB9s ƽ9*9%T!*Y. ]iv4dJJ(y kw@D` c m"1[78dy"в9PP5:錑05X/jg^6:Y٦_y9UoU_E/,YmC@.V.yf1bˌA  xv2M)RmH,c1?^ع~'@.iV#"6XA  H4/bT|D]Po?##]Su%SX"J j&L.`O[@HOb汽r1'\} hd(Fuۯ.6!kNhU)El9i1^[8S>ӐK!B3+Gj%*ԈxTӊq3y@_V35"QJ_.g?[7.hNCиn9()_d{h7%ܽՇ/S s,%?G*B| 0Kx8dӡ$-J$T1dLoVn%%UT@E 3v_G\d:f}2GՎ^zPE<|03R UUOGiL) !5iJ2N+ǔ~* z24 yCe| d]Q~6*R &vzWTYHGڵ(<k&ʘ͔9 s4NnL13bY^D*$5QP.*v˛Z;̼9VtE&tZ~pv:w 1 䗖VHHZjFs!Q*B TN.9Uvy.2]+ wfhtTH~l tu[3Ph -$݋JxÕ 4=` U$dc=tQAGJMIq.ڀ?0nqux7Vqγ_B~@5giMkU[p|b+T. )+<CN&91pVso*pI)c`|!6r^_bxkUr:q!49A0u8>9 N0Zk-pEδв+to[`?YW:hZNuO5="O@i-BD̽0#9ic#~S /HBo(+DIj.*'&8 WBbb#OkIfpg5}ZF76PKDžŰp@/< % uʞ÷W³ 63ݳPR#.0 _'`un[-3ГңKfu"̧Ѱv5e b6%\Y`K|vy`Hz>7nn1 ƠvStzkL56"s h,dd6`} f%%jT9A3%/0bVÍCc&)HHXݹӞ^YTE_5e᡼/, kVHv &&Oz<p DHN[u}Pp2\3`KNYdB}gFDË@[ЗA:[p.BG|Hv/8Nf峗j$e )fI+X?l獃bnh,Gon S>eISsNC"_ `-?IcٴQ~jKwAsw#^AA?0˱n.|"|OZ Bx:* $'5?KWݱ<G{O UR)g\_<*:T|>+ŷ\{6Yp Ab rږip1Rj뫞G(|_@3;Qqmٯ\bU_^$қ0bUgGLAǗ>)ҍ5ޕyĀfkh M(9{ kfgb&u,kKEx32@찫w0t* 0+o^ *{@h<{iGl2/*`mN W45jPBi!z`ض)Nv╻2 @ʌ|%}ޟ?c9 YF:㡦驀{9uFՋCxY*|h"۴ h#1N+},Jt`DĜCX/4B7: }qM+ |pJ$T"SoSN2ceYSH4B+ 4s(c22ͪN#tl^bcIY{w>,ZjNZd^ 6yn3KYuT&ΐR)dwC<,:?Bxdpn1y..=WT#PCL?LH(z]sl FEɱĊn7EjDcR;Ƨ8t!V^4p9J/_x8G7KkH{8iv$ lp57I Ͼ-2flnV`B _z홋!7?؜DFlazL8cQ^Dv%`m! u`pn%zWPst<],)Z6K&  Ju43ZF.Ohߔ9Hǥ^DίOy%źe&$YT9~S_銒OH Eib>If'0?A.,DvF + y_\S9'#Ӗ'y\qT霥m+ }1U&zFG|s;~@[0Ayeg\L6p!*̊ėɪDH)HɲK 9Bĕ2e˶7!z[2Hq-77i:PKMD"P,TڒoU?o0 qF+*2Y,S]Xr*Jx9Ũgߒeh ^&v(X0١~Ⲍ**(Aɦh6Fف]*5B$'$Pػ?_ Ǣ#q5uYVkR>ebuC(kFaZ# *ue͹yvC]#aI/HWGSC"QQLsڊPL唡Rf~.:zc:l<*ތ8giC1INYB{#VPmN ԏ")0Dfrbۿʿw؋>C y7v:dzYjʹRf$ڱDMVmmu6#&Ү> Xlͱ%??˫Cư0Gz*Բ^f& Ûn^xΕ)H*\NpFɪ%o@PeqWd)*g.PhW\ٲEkЭqy K縢e~^!+b+݊Uѣ Ice>_6 ڧP.9'Iduqȹ >KOB}shYqd /bwSXQ2x37Ov,E,, KK # ΝY\y #/Y N&tb :^6jWk9Bg~ҶVֱu H^Dn+u7DkE 'ɆHؿ8T?pGgwxq+4v-:jۄF K&4" 'F7S¬cah\HGB|Ó *sӷ inQi3M vűTE-B$s>օyQN}:0'SI{=9L`YeV7;}f#KYi>':\AgxM.}"VIN/_\}o0&څA5>'i96W˱:=G -j9^0"VwȲ/2b~G*`65vV{1qZ?_7"uP]>ñ B^pB8hß4!4ozY _X6roxV*3qQOƞm$*^ EYwV/i[L`/z0eHwt@X#˝ ) oe|?FG b:HJKm^/@cX͵QtC.')$4clIHD.c'~Wnlk6i"Ğ(K oqVr9AG`5=xsnNTzP? PrZ=<=q2L ur%~wJ vpn?YVsbm`2#zM/-JeDd4m;9$}XfiZtǕwۣgD.ۨy, 1B4`G=ʧNkaml \ZӇ$7{ zbXw7Rx>8BZasw:΁ů:Bnh㖥y;/#7fB*놩l%-.Srhڍe!DS4d }lxǻNR(\Eт#SBP.op_F1h_Nso!qHɦxR@`\8hvU(_%MT?ɼ;n{,Tef*Unяp}y8"χaGEˀ^"!LzuGmCbdmU:pVY.nӐgw/fj &?ln0 ]=N,0jP$ Hc)VQ2^ ='af'eN4\m8el;R=ŗg麶Mw7.4Ċ>D> ]qPQJ^ #&˦|\9Eݷm@ vcmI3ظ%ɞg^C1[nWҹ d&Ǿ7juūj(]KٙukiD'rj|tbGb~z@!$]$Ck($pPm/"{}!3zAYSKجy¦ˆ3JO~Z&5uCeOx!B)!H1_O(hyʽ@٥,NdSWe@y Nn9>")M\w Qi+DaCc^!F9Ou/@jJ˕.>J0ϣNK3CZf9u:˔1Uf}Ϊiyn}'bZu>ZF@&|u2UͷO&8rqigt2B-7LۜJ-mkIwxOTM *O0'M -YL%sN}0qcI鉯jm!Sʛ\kںP۬H&8=v8s2eCjR>_{^ &^zBGsonͤzx,LtݣAL,dA߮li SBpGqfȯ&֛}e}&"n/lX/p`CkXgL/>_?VGzj\>K;3V.* cz6q:t9/I1]z %|LaZs1:nl]$zbc.2EL8JQ(4SJ% >6āj{3H2)GL\6Cr.2+ޒS"cÓ6m沋 Rm'O6گ+QކD$O;:3"a=A }͕sKc*Z|G(؈i<9@1Pn DԂrn^{5&{ 6O9K0ǶS^icY=|OKpZkZE8Ј+5 2lYH/l5I"CF |ci EXp5 W<ʝ3w8w7<}$(+S 6PnYkݽl ǸČ'F|j/gGnd:"oE^gNǚDĜj oWQahTsQlLxt!jDR%ねG?b'x8x= yBz*$wƗzb~EȄUa+ U54U3/N'-i_AѸ:Tm53ψ?~~`eA@ 'VDʼ*9[>Mys8oDQ!ߥo7K_2БMPFg`կQ=@Kn BNGb;[p"Fo9Kӧ3cO\t "yV"4++2:[ Y͍5䬫Fw| wwOݫL/==jr~%_T3h́4呿O \ Hn%}. zрfx?q3nd)RB{wPA?4Æ (Ɣ|S5]UB_sp Wj> e %Z_KT "ƌh.Bhؒ1+*z$xsJfm999yPA$;M="hXNl*^`t%aX\50dhc4AMPRAaKcc2= s|o$G.s8=~Ќ\a$:IV冺q+BtM4|k;NW43owY0qAYɱi!@TA?f<=ͨ yixϠ#¦V\:{qr}U{dqDb%9wS`3sU, OKcl{ E$̻q4NsFBŁy?O fv96Ĥw<|KjmePن`7{ǂBÇ5̳@`hqd!&?N2q U"9w_*+@϶OOAKsmL;h칸? [^boiB+Q UCp像ީqHIAb;LoجK[E˨-ZMX A-Q0h# U6 ~ )9sb!2_HG>A؆l_BN\OH6/^i&ړ='UAayhӟ~D]އZU5h $To7e!V ;QnY96 &;9- g*·/!&x5ȶk$%:{Z}o^p wM#J\> 2SӘ>4hbniQ%TrH(`3d9uj|j㈄Om ǝ2[vALXt}t{_|O#QSWz{<~8o:7Xb $RQ{UI 6K?SwԘ9X3X6s権 DS!RB|TjE>Z iU0jhOw|8b$7 Ycsؖ~BLOb3@DYe!mKO%сӯCuaT"cy:FxxU?65V5~ 9gT_rWT*PA(m3=YH7؟9Kk:Jq+ZE}Y$m͖H,r >J)bF~mlK\X" 2]Rf lpɽeja1+}RT#q׌˚-5ľ7YLz4[\@54|葉m$Mq"V꘩pJ}0/3.("]@82DB9hi %cxCX-%(Zk Q٭*_m8{JODɀGMSw,,Dy>A6a>Hx g0`:܂oZc5zෑ Óe|(ȐP eWՑ/PEg4ʼnW;IP6c&msեG{J#b bGJV2)ŪOEVDGFQX|IUHPJ>jUC-?#‰v9_3l|>IrH0PkSi_[ (~qK!v6r9uQ%U&AvIdٻ>X#j)@y4ZLW- 7]R^s8'Kw;*J3 t+JLbl1o]vfx[.@ nE'o=ELA(.A۶vR#j,\'Z0COFvQ2 `RWyXJpe.I^bm'3WlCˑ8Ƭ sg؎}R~IMw\l͍治TuHZ(d?FblqAr``ֳ/L}C2.V¨RL|gS>RYy;n)I.` `択!|B܉ܰQ~d"Jx9>KyޑD;=dO@JΥn縿¸ A$e}8\_I$= ,:pRO}:x_ɥ1:[_ېh5=o9Iv]w)a>籉밺DDVUꇪP]OG=LUvl~)3*e]DKw[?4ӂČ b߂_~Kq|7)XOD !@ΐ< _;}I4,Ƴ-3PWiBmz04yBH-OG(Li0⺸M`  Ytj+s6)? ;Fpu8ze8B+bIـ\Dm_|zz:GVY/JXHk %3G6|+o-`ĸC: C$D9*km ,W}%[],٨O;rۃ&ǠHPܥMPq{lN|`a:̫\@ABLE."AbyPaT & H%;{ b*qoEYG)&T DW(uxSJC:\Mq]qo峮߿w~}Xiô ^m+UxO84?! \*`^ F|;]m.$ȱi-~~4&w>U!T<Âw26g/w-Ͳhbk\Vdf|bmBlČM ~5]BkE]ĩO1KZ(m龴"/D4%=Wz/h[ϫn`t"l[@=^ceYmSn]A~Kj;s3pYƯ6=P;bz; 0 n4)&Gm?!u}16 ꮶtүX}Rq˳˄,NjPI\ 4 F?z4kcxe]&ҵGrQ YS źFyHa1)2z^ 9q)N>4 Jq6/j9Nfc):̫&KK/4D:^ǥECGZtX=R%6Cj@AlrH7JT6x)o'iS"c౓#S hX|uowJŌC'7;||#Q/XJ2u%ϔV\I5(Fjtc0T0@0nt\mB7o";ʨ@ZZIA9ftǖ֘,x@H8sgx#7WLG58TZ9abr䤡IW+JA ,ĵuhsidۿ!4X%lk-N2`a|>d/:tƲ:Gs UrͿ@/.denY"EBeF6Snl!~DTֱ3@vZrO.OF_[STaX5& D^VsM0X݇-{qEh+oYoV^/W5 !c&tN5+8>tUvCz'+1];d)2DA.xB/ xyPڞG%Њ 0ǂ&C݆&5eEq;pgfäm`v uM㟸$YpHd򽗞hG#!!u}De6]oӤB.uέr/Kp`?,!(i%%6 "i[%N\0L 4b 0dxl.m~_tBڡ5s_g<*[ ܷn? ^^N@Y*in)ݫ}m/VuHyMd Mg}|q||_24"A99hb{["ߔw }y0O Gu_)G% ?ޔ9;R0pC+@0޼EP eSBþ8ē %j#58-taA$>UL%+,na*YN7U3B>L:rжV?z{Tg)':)[`鲒WL??F99K}isO,+UMo=-bݢmH5LK4}E92 ezGܛ1ol>+@rc>"j 2ڕ]ah!>[q9&mdkLˢZX2ud8 OT; yPS#G%_)r~D]նjrŢ?os:;TNXE;./ oڱRr2lan7 6[щA^8 : ۦ9aUoOV:L9R0,CKu:F8/59jx6Rϒ*dw;4ckA##X5hT]6WߚS LedQo s_{'C01iuղZqm) tb>8<a'>\s+ .[duE[@i o۬ M7>k324 Am0,bf@sFQR#H{` [ƷVlE#ae|Ίlo8'4oCs8NjUSz}q2yrFO[$c'm.o|CuZQ9Ckge 9&tR:YqXr%eRZx[@m"͝ۻ$YT!pwZ5;/K;HYdJDAZڹ7}6!( Wũ%rdZ%ؑ=rˋ.=[ah %vuvͺZ@k@p\fR=Yy1٭8 u[D/C96K $0@2gyݒ!.Ɲ}5T.}U ~L` ѵsyiD_ad̚!6l!O)ƻLa*{4ڎI YN?+$mOmzP:.CDiQ||:'VN|j/N7 CS[⹵I Q7!W`S If%o$+!sxJwYۘX)R/'0|VV#yvٽx["bG:׺Ge>!]+7*rqBz,O6Uu[!V`& nyU@]ɵg;Ӌ <&Q4-s#߮$RT۠ay$PɈb18mSj._:xhc *YX)A4@f [SWj#a~mVX0pvyd_UE1E:P&i{ZnO_"ju,*IL1[h"BL1iR~e96j_z,va \h#?[ty 3a11s΢\QƖ_v%H%5oS3b;yݾ@i1ZB_!"c6ԩO3 G9b%,9e϶uQ7;woL`)bb%HOٗ?$\okA s [/V0OH&KH[ $R98Uf!)Ș6=>OJS誈>b"VVz oCҮ9`Va] }wrШ 67xB-y&6VlM (M-lJ w7@S+Vx8,0:!糢DUCeʔ&#mA,u %e#"yM?;_q{]xWѩ/~d=ըR)Ȓ/J_?):H"u )B9'"~&NXe p&D~E)sNQSzIk9Mz_n,_KI@8>.оMP-WjScJSUVRbF[ &oS:csu[ektܧP6hk˛P! go'@hδˡ~{ yR0ۤtV /Ui~إ ]1ζ&R^#썂nWfPU9ԑjxIOP a.B 榗poQ_J+OpA t)({~ k YPo&'cl KK#ۋ:TrI\heR LKy- ڮІ&Qy#y?5^Gum6T#,UQ^R/koų;>0ȏyEā|WM&\eC<ʙ2[܏^7 (UZ~X٪ ^BWNytoAI+@ޏ?+pW>vuE/t7֤!ѯ'CM^_p#}jQqf_>}6:i~7lJ; +.ϓ9̘iK{Xs-*tֲ8ͪ!ɼB6J^X)^TFŽt"/М{+@GBOq`\ӳFBsׄ(s`m[J$|,^ӎ1e U:h;#M+P`dR :y9:) ~nnnURS0.#+_Vg'cb\8s$1$~r1J}3*^Qv@EcwFŽFp;$ѐh t4vDD>puOʿ&_i=穽\v۲ľJQ4sU[ 4a^p0L緞 \{Fdۛ&'ypE$YMWiFe/v_K脬o]Y PºQIuO ScWPG^j."َRJ8h|Uj h43_aBbIa-j}mf(TqykmE=}UxŇ@.hvG%u*K0JEYоaMf~7s?1?O:Y>JUu(a,h|8#1u<~X.Y>o(-Y+$x~OM8QnH`FnK Ȩ4=B\k:!IA3cTE^'WؕMÙ r|:w0aj29&O/?ek}".ު2 aט2$:NY0l1dȴ>\Lɕ` yMŴwKZ| w`:E}j%n"7aN53,BG+Tt,R4e.OS!dA;3cwO9nL؛ ݱW{m7?W沰 l?Oe~ʘ;$s%V Urb AR N֞A3G.jA$BDcɲ^PmLr|5N}BD-ԂD~vLi &Xƀ!$ԒL(HZK.$᜕֑}+rl1QOA6"p~ &U>"ڶ5@I3^}xnGT0ihSqa+޿ߙ 5 N0Iww/(~xXc.]A@c`~ޥmZ]m܈Z$ "IvȌ " HVBOvAvW'xudGo*ӖfCKTD ^$w}&/uLrܳVϪD]}ɵAA>\$:4G܉M.r淰4;l/K_RmH!AS]밯Kw9g%W[HriȆb#f[^=dq`A ]SWj㴲-i66onWy͙u&zns+-_UP8 qX&>Kd;*ZDW5{rVxIa4K]=1'u.Qc)2ICmZ{3Yֹ{uZ㝾}>/SP dlrUjPd*ZXN0#OB6v&l$o9L}B!n'~y>m#x<{MWM0& !c9sM9Znqvo.8/_&mRaeHE~*q7UFck xQJ\-fקSOKwrtt?œMUdK~;M( `~u̱81 .F=L:g?\\xA#)@HJ|U^uF %O@t.6Qzi#W)qHlTP&:(gS Hi4Uqj:o0 D]'Ny*fF 2,o`Ns]cnąu=bZ8{p.6 *xFܤg*|1f-őFvs3GVJu~mo0jGDIzTo:d֕fBv>d8?ﯼѣזўS sqk$$Oecԟp@F6kTqz1;E/!V2*/i1m#LYTZ+#2oQJ̔aʥL4v>** q:OS1Z/zsA)+(4j2PPK7 dm` +XTsm!+ sдF֊_7|Y=*zqO ߕnLpx`1awTWX jflPڵS.B`N$w.?ʎ}&^<}2էCQmT7{}EyRa00kR&a!ؒ 'Ng9NrճA|b lJDg@QDKd iZUڦ̨4OLWoe9ݞ&EyRȺs.n GF٣T312DQjq\,S_ln+uc ?q3۵%)AҷUnS*0!i{5c:Өc2`=LSS< 7 eP1G:X}(,h D\(%%]T:ըlf\~ّFxzm@6sCx.#G0;w&>Jr#,3[^\h08NL8ک0p_G_]x@@n [rG'QyvD Z0/% ␞΍ tjZFb:[>bqC]kdqy˴Y*)!x-F D+lh狂"tob"bxC&DS#鍀( ϬOfMqY;H/VL۝X 9|[ C w`HIA²S͓1h3U.uOuD:77#6X=v;<@3 0 )Jzbib:! =\I(\cuߤH9SvXoLUغH JA'"8?t]ML}gt^xRL\BSJ}`6̖Ap~N KJ]p_=\n ,>%Kd.`/3`;Md sF'{NS*!Tg39`ߕI,%}l60Wƣ(A @g/IOv>Υ 4:O<A NkPޔG2 Q4VXQjfqr|2[+񙯩^7;zbOTC#cD)b!I:/pG;C{jK`'َCB1$s _NG6yAEc,Ц3 ]=8N謫B GI)=( AY /C!WYM> CAu5d.bQ "z9VFtqn$y~œLlBC'g:Sh4O荁FNNh6c>~ `6u;ޒM0$NşbIS̹u߷y|wvВ>oiLd_r՛N/[\7.;gz+zBJ3k'4^}^9송vNݍ7Vy &rYɶ1tC@ %4gIYBuBi+x]#7g&I8b0=%=c5ǡqaRR( ~썑>sY[d'94(P:<6jeܫ]Du* T=a U12%-o!(U24ϋ1V-(㢍fe,>M * %{3&)p{TK6 CngTueFG;%lM- ȑ/^.,7n8}⤣TTʕuA,2w)_)71Uи?tN<$%A!-B΃jVޑMP|Ỵ4PђD"~WxK?(]a=RwC+Z;nP+ĘlB趣5`>pXo$mRh2/"w@SX{zs$`.m ]QNJ2W8Du;IO jOL#f}d8'gA`IbuCrzP4lC=ڱG vho@#,"FjL͉{cKR]<#.᭛%"Hc +_N4ڦMk4Ps)Db 1B{iaQ3|OK0v_IB'r%POlq=~n8C*@ >-k:k7s)R1h7a| Fpw{Y=msD)7ѻU=,т[?a,U^I;R~d ,|ͧd[Y f+pH##\*ѫ4ýԛZ aܹMm$gnV_"[fO (\5F>̲y^$JTf 6:Dh\i|HQRtB9fԄNי53L,D|S1Ap6GA`%f՛+}R'ļ%nOP'[-md8&NXi=G#wRC{dU =4=+Oo\tLJoQm!%duFzN4WJ6\KB*ŀ dHg~3Oe(#M<~ ~%j8'~(+G ebXw2g=)GCQh= @cz'FcrE|>J$a ^P𡒊0&[tOv!EecկzW0"4 ே=`Fa rA]%&MϛcFZ{1^PH>\=grːJ7-&Hz]/xxKYQURУI9WK| @$M]ixP@ke( Ѐ 71d ; f2<I Hvk~z3 RNڄb ĺ<{c- s oʨ5-5lG~B/>l-]Dzz$ؼcYY5݉}0cRavzh\&,?^oUZ[i;B6E+(PeOerߓWh[Jv>nc-d1TXydFBI8[ɉ̠WZ/wK,Pz)-h둅 ]y&! OtƙO{Ǜ#1}5J7Gh?L (fM6} csf]u>FTo1hH PFX"i_zfPcqY)(hg-zy53 z4/3_;hxssDM*I1nHKQE>C\#ʜͻFt4˖Tjtg!AABU+k3 |֛ p& ;dK9`kƱ &͌bz=SX<@Pƨ^H /@u*pqhsHa `0XѢA,.9İV,F 74&u$)!@E#*9E2H~7BپDqbc!T5`跶WqeܢD93dR7UR@5U0se (Npyд4xzĬyf:G&eP?E~6YVxgҨ<&HD x[XkM4WD/f6-gbmwJMyNwj`Q3r,:lJ'.1p:$3L2@G$vĜ!Eոzɠ_C3#HQղ1Mi gXoAX֫ BP1$ap?= vZlJdׯ_ mql%JJuL0q]C$03jftk] 3h[[.lo!8+4-#*ml$0oϗ]jY sNц:-lsR()iZx|a$fM~p,c-(wc|2 'b)bր"ϛa~FJp$@ͻ_> Pi ] tk;z*R!aVJ,[c9(Ǩ(?E;?[bv;T1̈́A2KP>] ^!WXmG:h< V׆Lwmo;eX,Lebz0cl~ Ut$ C67a`~$m$EG ~neQ%yOiH.$wϤCFAW5V& by ݡg\#$cJ&TVm/g7Rt{5'P?0%0QkE&YvTb5QW߇YDUBH<=Cpͪf黲1Ebs @16U Pd&msǝZ4?ZXƿEt3:\LS驫Zfxa7I=M]fD&aJqZODXż^&'Wz'<#Ѡs׉0 g6dksu|L nwh-rZE|țZ݅Pcn g$U?ʴODzfc#lb h#yˢX>rSt>\nm‡GFp]̙6Ew97MU(;Jc}~|{ ~Ȕvw>/,[Nnq$@L^N4G|r>Y*xWj H-y0w$iJ=%p7u[miGc7lIpI=\gKXE15١ث?qIҎp&ڹU=3xp1O'g'Ir "!.x}^Y0C- ٮK@di,̮}!GCb9T#5)I5m.c)0Qeo_֓JE #εWiӏr28bkM#"NhDq:%È~n !EGa$wT"I j`xF|7iB?@ljڰGܯF11P-\!g3BZ{JCqgmܵ(+TnpǚfHu|LAbЛ is{K|\ d8Vrh~g;>4ɷ`l=3Z丅mjimzKQb&mm#\2^DPŽ-E3gTt]8N(ŬK:wqjl.h0C@:}ƒh*OU*A7 4l`Y#falPڡ߫Xg$x^<+R5x&}9\95C.E[#{$†lYb4½; nJމQoHR-M?~$4Ю7W݄%'Lf̈0T5&o1بcuX0TW;cOdFCs}]stqUJc:yJ_j9! o#NrQ, .^ZAKfS?ht9i,ۂ1}bC2@"(a5[XHG1Kxϭl^(s]dɂ("S'э-[0G5jJ@"py@ NTO?vg'^)C`5FXN3\eُOʫe``|Ht~;|v9Uq +fs<KU[xI/z+$ IIQnhNnʹ\ `1o1%]/uDfZRzkZjg&|g^(&Ԫ8̚1%N!t5gdQ Nc}s'Zn"]%c:_[O!{vs&ey7 t"W% T2?k´Tsr<'cWGerX.(!wB$i9CZ6nM$~,tYc]v1"T$[-)v ϘVob(-d2W 05<0ĭ W(2 Fnf/V )dQp}gz 3";1>(>S]1HJ(?$S}($E-<*gSi깡nւ#',.2dxCXزV ɄM41u/<|`q0!b( 1&d&E$V\N7Ic6}T/ òjK H!ak'h "đd)Ve֩ MQ$4lײ< w3"*`{ G$}'2ǝ 3ݶLi6Bz9=)tas>[ʿF,">b-- 00hmz1\W#M,d460E:s(3(rڗЇ!@!QQFv5I2)py4wSDx*1GIbQ𗽤 !!f)?8٫u"wMadìCBPSݯu?mcmq<47i (l#ޙ")?t>fQmgûV\oEF|c^[Y:&.]1 B~۝r5g"F 'thw 5t\@׳;l)-](i5Y!G2yFxt};U0A\/Ut_>sάC;:U :y0kZCݹ&"<\):oaW}S=Ӂ4u]"evZX iK(7q?sKDH}`> G/:"m9F -5sj]^ܥzȷz|A|gJ_iݧ:uQTWkaޜ hÔFY"*xy)h}f( " ފa⾻M.7п y=K*;CjːU*&.q:0QHS67$[ dغƽvsw gq n̴ǣFʟG SŌ G"tC8v;~w}ISoh9D{Op"O(j G}YZWܿLlb_-/9]JiU$C(/^e$#Yu)SwUatB]wQ v^쮴R~&P-4`Y;IGW@hކ)o?߅|%xO7Z-KcL k zۻj^aᓈX OJ.?Hy>q/?% -.pP[re|VaC 20GiU/;F1_^1BTI?RR#\]4GВu΍o9qx}Ogvt}wA9z5cPl>Leou8=Bw=vXA,|l/=1Z~ "3K;xxn<lմk"VDBXN0^J<BѼwYX(‘q}Ćk0J D:ڎ 02r | Z ' pY}s-6̨7]]C[*2Kzud0#KVt!`ǁ=\ ?(Z2gqc*iWMMvBy5j پG1#}QJpS`&7Xdžs ܯ9a/2mYJCnN3Qx ِe¡:˭L+t0TitFW)Mjє pY;LF m^Ί6ǾOkq/mAxLf,,K]?yg6`fۀ6(k{Qc+IKgn@7ƒvBzöD x/&B4}:ˢg.cDZZ?ASYs;/58Zg*2#[o>G|E#|s8leOVmkW{,:Cs<8%;u\A,Q."34f%^$Wy9ҜvI7'tpְ V?T`QLV e1.zG8<;7o?Bjn+~+)|c`Dm4{IZK^ CƤLn$G܃;@6f'l|tsw>X:WNUzDk[TMŻ66`IC9A3ra窪⦁uS8| R l\0|)?K%Ͼ+ $hܼKCώxB[' x$ *Aՙ 4ӳf !P+>g+ZI?C-]B[Ɩ[rl}# ןW@h´E )%Lx?HE ѧꓤ'|DTٕȵD^m7=SUAEB`EW9~>vp5Q_$7O)~,L eyuIH/v~tyZڄ=X+V:$鰀vҸYN{ێbqH/ky0Ɣoچxi\DZs|ЂA͢۝nӳiRRSTQE@>,̋,msRĽ/C5d<߈'-MfBs4k{"~49Df(cx&mR@?%z Sj;z5#L?p;;YН_V95]`l/|+;>i FuYFɳ. \,C#g.D*ƃ`|6ahl~fqxs-?]qjBkZQ0w'_{(MX&Ӷ(?B% 7LuL41{nLT)TkaE?b}w΅(VsTM": 4?pg^GGP%S")ohڃ҆/hULPW5$0{[:4ñolЗ`IK8W4#Ɗ9mA0&l`"e6?r׷E [/bYvvyCL^44ΙƮ=<(˯ u@zA֡K?:$c8c! A9S#mE9#zOLmWp4%/DR _piqd6"({h$H~ (2 !oꊼ|%YFuueqؤu^#`ֲ {C`ߴbK{41s8'NE4PUg<<ѧ!xscOِ@V>LZK܄ dggfAѥ7_fn8#:e&}aPE34LuǓ0ho,h=Jd-ZOIϘܾN$F]h%Q j".j]۷@_JFW-,[E?s@r&f퐑^eeAq= k*@$&nX)Y.A~VGP\) MOըoPӂj6z':.d0<:vˣ8Xz#uqY⟏uZsEGCFgvs 'dc)^=#f-0J2f, kRH]E[s5)[[T PՈTDu8g(rܩGcDQߟ$Ν~㊺V?߻ץ99Ʉ,c5 -ԍdlAf8*rjv7 G܂x!&CCwE͵Z>ޣM5~R*Ny@^j}O.?ij QEbC JI-ҭ`,2·5͖M'FO* \Fw}6C Ub6SI%&"~{ҹ:Ir^7z^ojcj;s ]J"]|k˶,VUɮV1Ƨ무.뢼F6C(kOk|'ðNnŦf05!:uXY ?5_#(A+ m>}va wcr}y︰bᶝ|v1W;ٔHcgoJje$ȴ#P{DW #bɷN)c$|V7 TSrC|PB˻IĬRV .̊NU5CHALΑIE&(tG$hoB\Q}cX_J{ \ _gK&}vj{PR6, n\7j|0\_A;_,;_Iuͳ +RQ~>ȀY~?CO|X+Ƴ.Qc(`qG$t'~FkdkDrnDkl~@|aDWYV ctX֍7OJa@/'7MH_>EYqל;DmVVUZ(/1i4oCc4r T[-t|BNy&le&~!HY`t FP#cڇL'^GUBy>yAVŝ ێ9׮4]9e)VΚSsL\;,.ٮc SǙhz2f~/sd쒠~D/r(fc7x32fel+ج)2F֤{U_j3lmd|0 hyRU-#?8<l`T\oZ(6H5Mo tSE˥۞6ک^)y5UM}݌WQŜ[3ZW n|(duJD≖>>nB\֨j=q23f^թӪ_*|&U+9bӑ/u  L{jvĥTF.Wn 0o43>BW9P=hGbЈ5EE(W\ݔݦ骒~n q*jN"v.ݮ9?3g!?] . #}~뽕=tgK_Gi>s pݕ̃ M6LuuY^G\w(Oձœ9՛p&Ƀ. _S,)^o]AHMjѰ$N3=Yu<ѧy lcEݢ#VV,oCӳ"hW%SODHf95 א!o|cYpy@оv)?>5J2<;0dudSa+*$ƾk -7:w"*h dT9y s4 17Y4v_[)/F xD9}(O.4CymEOoqJ< ?)~7!-3E0.s~[%V ]RG5/yWq5NuvfzW1}6)+%rOLθfxes{G5.MZm>5ѹb"ݖH/v xS0մ"|j\X\ޫx!,brEwszgE\-sv|NjcļdC.<` Nx%B{HޅLdcCfCg-kWt&Fy/ZF#BU3->X SDG?~⫕T(MsĬ܏zcv!o7rɺfL=U"\v܊͎YB͛z ]rUJY'_7X?`htڡI.9?Jِ:)/POJ)7#(GUf~jL{xR,݆83*{k&yR\ %A6Sߔqnվ -ْ%U\Qq2jb(v"me&aǮ%!r ="¿Ij2ceSYQـx&ٮgC +F^r=RrU9MxR$ f%Aꢠ*@#V8VL S!XtyD\XǭmCgR#ϗ(BNrR@ȼhfX=5P醳$MUH: gP>?O8H C7NhTDjȳm<=Ե,|r2\ٸ'd;;Opue)H/:`ms:͎TzAꏤw~vwQ l43䘡Z\!RmM3*=}\=k #vXAIL@ SVVsIb\:\0 WE: 6x^,_X'Vа-D'_O_{*q!yYIUjv믋7>Yn?9Cjۼo]EHU21IFbm|q|DHwcY;S͙-ni'T܌}̻6s?BM`"I#3.썄m6p$əEA9Pw"k(75gڃhjwf:XfOæ\oC?7Wfz~L#P> >."6=E=0wS]6 ?B'];l'd`3;-b.#O\W9S_=>4".;V\Js<4xZKV;#{*A?iNO*_]uViiBSpLJ 6𡏫/`?3cRhj5 "3_6T|qFgou8hQz/%ym7lŔwVBTR}Hi3խUޜ9ۑ~8ns;ov}fלSӞ30 f$nfn\Yָ"7X x̆ƷǙ%rTKxEmw13nBqw+6W/ioZմ ݃#%7#S|_B+ކ (9qCFJ%4/&8gh)JINB}w|siJs_M+Γ2" ά]?Cy@ 1/|(8lXΜbV B$ɗ~dcCGYYL1%%g ۟dY|GO}R-$Ôq shq]#ה=dEO%.%L H\7@| ΕQrpp-ﵩ v7a܍7(zOMv˷ )a4l:`+r<"<3sBYDZa s|%Dhr<6,~N >{a=[!_:qmzW}[˅66*֔~~DH8rUb0LY)-_6٣Mv\>OwлJ/z1Fv,Uձ:lDQ坲3UU1.!ycLȮk؀n]ROki3r[VMn\{"+/ S&7Föɓm~{àW({Vmr;|5wO^]%f$GR7^P9w}l9ﭠv+\Hra:nLLIiOeQ U39 VMо Wހ=p4 [ٰH|3F98mXGSx %ѧTmG"LO؄l76D54"cM:7+ tQ8S(&)R)_6etueJ0[r .H1$[<k[:e<͢rFS <&[̈2DGڇtd?̦dmvND }R{+fA%LTŰ3yg\]F 8A;h# bUX7'Ϗc{rE-.K.WF}YVSmmKp{q8L4V,zTlUfw cذzdLsmɺe]&/zB)2U^)g_}|6{JF)7d bM[QP o3WERY* ԉ%:8E.q+:'19M^`ͼЫ-\#wو ٭h ( HYI֬&/L6WPcow}ⰙZ#*~ćHn^@g: x\f<Pl+eݍ9)$sb@b~ӽXu53M 0mYƗǥ~2ǎG~g7UlQ]o`+u !ǁ/KKׁ .]:ntdP4*)ջj#RunV5=^{-& /ѻ }&EnZ*:Brh0`|Pdz<ʰ\\,mYbKc89㢨%No5 P1j0..nclÎ>g`_y;2;U oіe晕EYΩA% R]l@^zSށ1mq2t""GZ}z,ȺȀ?Ib;=C$7Z9yc ڭHl Wt$~(8P9=>"?57| 5%0o?LRT\Ι~#6, ~ 5I9|J6𤗫O}KHLt ?'l cc FԇgNy+T6˱>67(]I-G iAibxA&HaS=5baS9y-4@O4g';My1+է)ΣAJhI2a2\s |G~(S!#}C)H 2m\FJS`4?(aѤ qCATT=Ө61v8pxqbuI<d:VyFIhj &Lr5@]zrY#כfAu~fΥ|S:?aCZo?P r?Q}X8g{:wBͺ$'"W E;e/.ےBZ( Y7cKzz#1I:%3w- 'yRk%-v5iԱ~U2gjLҜHuStHio GCJAqb 1 =m)vRWxW!ո%p{9VZ*ALaY̐:TE|v3iLwm,\Xz Ux9RX^0s l~> ~+##%0\/(I"UqC"#50ٚBH- \AYnKLGBzhΙj:.sWْ3X"ĥlWV}^0gka5HiLP_pnE5rӟP(ZwB ~mUMST;a!!B1OE F]W:s)yq Am>[WXNPY HLJ;D͡Qc/+FDV!iѝݽf"ixeK l jp~ _A>v /v _$6l$gvUzI Hnu:T=IjNO/.Sw K5idi_ܴGp!Ys%-Vd+Wq }h)ѡFp@_~h{vk-mMLɲc PKzs-,2R߰MJhтc]g>Wcxg9Ɉ}D4DDODѿ*5k5(Yz)D`yv>\,S\ ? N!h3 W&TIUH%*- I<͜tW X')=~iUIjZ,׈,{q\<'hLK֚ j)T%YޤW(( Odϛ~ɘ{ G0q|;W4hLDqgF?iW0^AuyyhR8ϒ^?5`;Ͳ <)YF'"q$)%x[QŘVa8|UhUu%p8??^r~WƦ^e`,$ 0͢0̂.O/+چ]lKpA~_=h9 S8+F貉鹍Q[+v 3*V&ȵyQT)2a*K-!_Yzh%U;O[ b {ʹh]=-׬jLnڈ;<ѝykDL #=<g"%7Kj"?v%5*Xh!㌳zY 8 i({7_b (l:`ʣVg+!4_:ٳIp#f$؟6ֱAJ5Ѣ0kmA({VCx:I=4!?c33Ҽj/8avdKu\R.ASo@EIo%["(noгĖ[_3mb3'Z1X^ˡ,;ߑnoۤ{'3pԷX^PĞa7Ig5lhǧW8ެ57R~!̫P lBnCD ],0;qk~RNP?@tuIXP*+#;uv"Ba:5-{Mb8kp\XpҳY[JI~U/yk]3%N$OvH|iwxg9QگȃJAЁ,5_gVAdݒRhR/R$Wx:vK>>E2lKӯQք{ޖmڎxSzklkaLb5}EǪ%j;;tj$6lrWU^-&GuHg|#C$r.Ś1jφzp/oyK6M[?x4^cu ]ʊir$g KdaH)5eEލjU.q`p']F8}y \lhY:@=&,l-Y~Yl(ҧC fخ7 !J׏Ha1\bkuO]2eyP=pw9rꞷJ iR؎ZܹsPZ#1 mlvwlAbRNLrEKdP<Տ1P/ FVN+ gRY'hp"q.Aˍ3TҵP>24-!ѭfŇ:^ҫ绗Ճ%^z;r^L}Jq Vm;)[M6gge LsOj}{eHy@[zL b7ii'F !Mo9wfʂ`W'.#&;nE tڲϐo#5P0*(X(AS2v;+!_vQT-FBnW[uao(S;բBAkL ltV좦Vl Jq:쀋%tAAy+?'ҢW-7 pBA >2ی`Xm |]V2IݲэcfH< oX "ZXbNPjQڠDU4:^F_hLg&Sq\_>b9il<tی@Q8ң?BcݙcB ^R\Ռa=LA̎<~o.S~[`<R2PEX= ,cؾ; &;{{˔W4 rzÎe1K!?k Å<1d_D*c4䖖׏a1" V(F MJ&y|7z4ϰ ax*6:Y<6zU$o%ϻ 8VLoɶR%d~Di  oL.ic)S[weݩ♼I_U,6:<^mS4J4:8tii3#d!xyeey@3'S3Tr$>y< T?xdP $5:eɊN4̰r nSV$;Rqղ@Ѷ YZ