í«îÛ    samba-winbind-4.15.13+git.710.7032820fcd-150400.3.34.2                              Ž­è         <   >     ,     è            ê          ì         øÈ‰ e‚þ_p¯ž9Û|‚öK ®þ]0žnl¯Xç0‘WÐ’~öò,Ä•è‹ÒF?&jÍ{z¯‰$²–…jQ¢‚F³/›AA?å§×óÔfé,‡,Eº@*0Òî:”V/é/¨XóÅzb\­ì[\5$\o:^4ðÓŠ~@ÍœB‚{¦÷¢¿þ3Úé¶éË×Ì` ¸³R`|…b¸B]Á9PráH5RâYzQsÆ¶hÉÔÍw6æyxL5ùÒÔ¶«2Ð·ÞdºÑˆUv‰»G¥Azýš•éhšâ§1º2@3Ÿ^4?×B3:¨<š‡¨³CQ1Ráñ„êDWER7?4–ý§î¦?§ñ2÷Š£Ù1	&ã¨,.Y>«DG‚“   >   ÿÿÿÀ       Ž­è       L v”   ?    v„      d            è           é           ê      +     ì   	   9     í   	   Q     î      „     ï      ˆ     ñ      ”     ò      ˜     ó      ±     ö      Ò     ÷      ã     ø   	   ù     ü          ý     .     þ     4     ÿ     <           ò          .          1                    `     	     ‚     
     ¤          è          ù                    X          ­                    <          €          Ü   •       0   •       8g   •  (     9p     8     9x    9     =´    :     O¿    =    i$     >    i,     ?    i4     @    i<     B    iD     F    iX     G    ip     H    i´     I    iø     X    j     Y    j     Z    j˜     [    jœ     \    j¸     ]    jü     ^    kî     b    m     c    mÅ     d    nE     e    nJ     f    nM     l    nO     u    nd     v    n¨     w    r     x    r`     y    r¤   É  z    uÈ     “    uØ     ¶    uÜ     ·    v	     ¸    v(     Æ    v8     ä    v>     å    v€   C samba-winbind 4.15.13+git.710.7032820fcd 150400.3.34.2 Winbind Daemon and Tool This is the winbind-daemon and the wbinfo-tool.    e‚þ_mourvedre    läSUSE Linux Enterprise 15 SUSE LLC <https://www.suse.com/> GPL-3.0-or-later https://www.suse.com/ Productivity/Networking/Samba https://www.samba.org/ linux ppc64le # we need this group for squid (ntlmauth)
# read access to /var/lib/samba/winbindd_privileged
getent group winbind >/dev/null || groupadd -r winbind

if [ -x /usr/bin/systemctl ]; then							
	test -n "$FIRST_ARG" || FIRST_ARG="$1"						
	[ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || :	
											
	for service in winbind.service ; do							
		sysv_service=${service%.*}						
											
		if [ ! -e /usr/lib/systemd/system/$service ] &&				
		   [ ! -e /etc/init.d/$sysv_service ]; then				
			mkdir -p /run/systemd/rpm/needs-preset				
			touch /run/systemd/rpm/needs-preset/$service			
			      								
		elif [ -e /etc/init.d/$sysv_service ] &&				
		     [ ! -e /var/lib/systemd/migrated/$sysv_service ]; then		
			/usr/sbin/systemd-sysv-convert --save $sysv_service || :	
			mkdir -p /run/systemd/rpm/needs-sysv-convert			
			touch /run/systemd/rpm/needs-sysv-convert/$service		
		fi									
	done										
fi /sbin/ldconfig
if test ${1:-0} -eq 1; then
	ln -fs /etc/sysconfig/network/scripts/samba-winbindd /etc/sysconfig/network/if-down.d/55-samba-winbindd
	ln -fs /etc/sysconfig/network/scripts/samba-winbindd /etc/sysconfig/network/if-up.d/55-samba-winbindd
else
	for if_case in if-down.d if-up.d; do
		test -h /etc/sysconfig/network/${if_case}/samba-winbindd || \
			continue
		rm -f /etc/sysconfig/network/${if_case}/samba-winbindd
		ln -fs /etc/sysconfig/network/scripts/samba-winbindd /etc/sysconfig/network/${if_case}/55-samba-winbindd
	done
fi

if [ -x /usr/bin/systemctl ]; then							
	test -n "$FIRST_ARG" || FIRST_ARG="$1"						
	[ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || :	
											
	if [ "$YAST_IS_RUNNING" != "instsys" ]; then					
		/usr/bin/systemctl daemon-reload || :					
	fi										
	for service in winbind.service ; do							
		sysv_service=${service%.*}						
											
		if [ -e /run/systemd/rpm/needs-preset/$service ]; then			
			/usr/bin/systemctl preset $service || :				
			rm "/run/systemd/rpm/needs-preset/$service" || :		
			      								
		elif [ -e /run/systemd/rpm/needs-sysv-convert/$service ]; then		
			/usr/sbin/systemd-sysv-convert --apply $sysv_service || :	
			rm "/run/systemd/rpm/needs-sysv-convert/$service" || :		
			touch /var/lib/systemd/migrated/$sysv_service || :		
		fi									
	done										
fi											


[ -z "${TRANSACTIONAL_UPDATE}" -a -x /usr/bin/systemd-tmpfiles ] && 
	/usr/bin/systemd-tmpfiles --create samba.conf || : 


    PNAME=samba 
    SUBPNAME=-winbind 
    SYSC_TEMPLATE=/usr/share/fillup-templates/sysconfig.$PNAME$SUBPNAME 
    # If template not in new /usr/share/fillup-templates, fallback to old TEMPLATE_DIR 
    if [ ! -f $SYSC_TEMPLATE ] ; then 
        TEMPLATE_DIR=/var/adm/fillup-templates 
        SYSC_TEMPLATE=$TEMPLATE_DIR/sysconfig.$PNAME$SUBPNAME 
    fi 
    SD_NAME="" 
     
    
    if [ -x /bin/fillup ] ; then 
	if [ -f $SYSC_TEMPLATE ] ; then 
	    echo "Updating /etc/sysconfig/$SD_NAME$PNAME ..." 
	    mkdir -p /etc/sysconfig/$SD_NAME 
	    touch /etc/sysconfig/$SD_NAME$PNAME 
	    /bin/fillup -q /etc/sysconfig/$SD_NAME$PNAME $SYSC_TEMPLATE 
	fi 
    else 
	echo "ERROR: fillup not found. This should not happen. Please compare" 
	echo "/etc/sysconfig/$PNAME and $TEMPLATE_DIR/sysconfig.$PNAME and" 
	echo "update by hand." 
    fi 
test -n "$FIRST_ARG" || FIRST_ARG="$1"							
if [ "$FIRST_ARG" -eq 0 -a -x /usr/bin/systemctl ]; then				
	# Package removal, not upgrade							
	/usr/bin/systemctl --no-reload disable winbind.service || :				
	(
		test "$YAST_IS_RUNNING" = instsys && exit 0
		test -f /etc/sysconfig/services -a \
		     -z "$DISABLE_STOP_ON_REMOVAL" && . /etc/sysconfig/services
		test "$DISABLE_STOP_ON_REMOVAL" = yes -o \
		     "$DISABLE_STOP_ON_REMOVAL" = 1 && exit 0
		/usr/bin/systemctl stop winbind.service
	) || : 		
fi /sbin/ldconfig
if [ $1 -eq 0 ]; then
/usr/sbin/pam-config --delete --winbind
if [ -x /usr/sbin/nscd ]; then
	/usr/sbin/nscd -i passwd
	/usr/sbin/nscd -i group
fi
fi

test -n "$FIRST_ARG" || FIRST_ARG="$1"							

if [ $1 -eq 0 ]; then									
	# Package removal								
	for service in winbind.service ; do							
		sysv_service="${service%.*}"						
		rm -f "/var/lib/systemd/migrated/$sysv_service" || :			
	done										
fi											
if [ -x /usr/bin/systemctl ]; then							
	/usr/bin/systemctl daemon-reload || :						
fi											

if [ "$FIRST_ARG" -ge 1 ]; then								
	# Package upgrade, not uninstall						
	if [ -x /usr/bin/systemctl ]; then						
		(
			test "$YAST_IS_RUNNING" = instsys && exit 0
			test -f /etc/sysconfig/services -a \
			     -z "$DISABLE_RESTART_ON_UPDATE" && . /etc/sysconfig/services
			test "$DISABLE_RESTART_ON_UPDATE" = yes -o \
			     "$DISABLE_RESTART_ON_UPDATE" = 1 && exit 0
			/usr/bin/systemctl try-restart winbind.service
		) || : 	
	fi										
fi      ”  <          r X X  %    0   ¨  µ  H  š  ^        ¤¤¤¤ííí¤¡ÿí¤¤¤¤¤AøAè                                  e‚þe‚þe‚þe‚þe‚þe‚þ"e‚þ"e‚ùWe‚þe‚þ*e‚þe‚üãe‚üêe‚üêe‚þe‚ý.e‚ý.dbd95eb7e0d1e8c973d39fb53be9be46276b21bcacd8b0ae1adeeb63651f6fbe a676af835bac5e037fd6f6d9950ea49ff3f39bc693d479069190927c1c530839   93a1caa0988f1da58a965d7a954f36d791af7b63f8f4d458a49b7b48dedc7909 ecfb0412c04b870b1f57edbea0d83eb875dd58176d88dda09346c0636fb7278a 0f1e6b69423d3c86f97350380a05a1f5224b619525e72ae9851cec0989d2afdd 48c787a47c3127f9c5fdde2848eeac71a06e22cbf997c132d74ada549c086e0d  8311753b5c24861b68114f450e8a6715ee0a3882656e1807a05859fd74c26775 9a16eb3e6b8e2bf0b1ee56f8a98e8ed307633badc5f3c02d8a82a4293ea47439 7a01dc0cd964e717577dc966237e125df6b1e8803ff6a6658f7263f209d5a188 0f544daf82b203b9df0b19d581cd92e20ac18dabfb1ab0650d9e8634c7e9f903 55cd3cacd173a4c420743a44b2334749cc27b738c4c640672a3b7fd2b62be5ac c6b4b0325dd3211474ac785379683cc4e7f17e211327fb9d536c1ff9138de03e           service                     @   @                                                 root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root winbind samba-4.15.13+git.710.7032820fcd-150400.3.34.2.src.rpm ÿÿÿÿÿÿÿÿÿÿÿØÿÿÿØÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿconfig(samba-winbind) samba-client:/usr/sbin/winbindd samba-winbind samba-winbind(ppc-64)     @         	                     @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @       
  
  
  
      /bin/bash /bin/sh /bin/sh /bin/sh /bin/sh /sbin/ldconfig /sbin/ldconfig /usr/sbin/groupadd config(samba-winbind) coreutils libMESSAGING-samba4.so()(64bit) libMESSAGING-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) libads-samba4.so()(64bit) libads-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) libauth-samba4.so()(64bit) libauth-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) libauthkrb5-samba4.so()(64bit) libauthkrb5-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) libc.so.6()(64bit) libc.so.6(GLIBC_2.17)(64bit) libcli-ldap-common-samba4.so()(64bit) libcli-ldap-common-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) libcli-smb-common-samba4.so()(64bit) libcli-smb-common-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) libcliauth-samba4.so()(64bit) libcliauth-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) libcmdline-samba4.so()(64bit) libcmdline-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) libcom_err.so.2()(64bit) libcommon-auth-samba4.so()(64bit) libcommon-auth-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) libdbwrap-samba4.so()(64bit) libdbwrap-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) libdcerpc-binding.so.0()(64bit) libdcerpc-binding.so.0(DCERPC_BINDING_0.0.1)(64bit) libdcerpc-samba-samba4.so()(64bit) libdcerpc-samba-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) libdcerpc-samba4.so()(64bit) libdcerpc-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) libdcerpc-server-core.so.0()(64bit) libdcerpc-server-core.so.0(DCERPC_SERVER_CORE_0.0.1)(64bit) libflag-mapping-samba4.so()(64bit) libflag-mapping-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) libgenrand-samba4.so()(64bit) libgenrand-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) libgensec-samba4.so()(64bit) libgensec-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) libgnutls.so.30()(64bit) libgnutls.so.30(GNUTLS_3_4)(64bit) libgnutls.so.30(GNUTLS_3_6_3)(64bit) libgse-samba4.so()(64bit) libgse-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) libidmap-samba4.so()(64bit) libidmap-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) libkrb5.so.3()(64bit) libkrb5.so.3(krb5_3_MIT)(64bit) libkrb5samba-samba4.so()(64bit) libkrb5samba-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) liblibcli-lsa3-samba4.so()(64bit) liblibcli-lsa3-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) liblibcli-netlogon3-samba4.so()(64bit) liblibcli-netlogon3-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) liblibsmb-samba4.so()(64bit) liblibsmb-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) libmsrpc3-samba4.so()(64bit) libmsrpc3-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) libndr-samba-samba4.so()(64bit) libndr-samba-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) libndr-samba4.so()(64bit) libndr-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) libndr-standard.so.0()(64bit) libndr-standard.so.0(NDR_STANDARD_0.0.1)(64bit) libndr.so.2()(64bit) libndr.so.2(NDR_0.0.1)(64bit) libndr.so.2(NDR_0.0.4)(64bit) libndr.so.2(NDR_0.2.0)(64bit) libnpa-tstream-samba4.so()(64bit) libnpa-tstream-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) libnss-info-samba4.so()(64bit) libnss-info-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) libpopt.so.0()(64bit) libpopt.so.0(LIBPOPT_0)(64bit) libpthread.so.0()(64bit) libpthread.so.0(GLIBC_2.17)(64bit) libreplace-samba4.so()(64bit) libreplace-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) libsamba-credentials.so.1()(64bit) libsamba-credentials.so.1(SAMBA_CREDENTIALS_1.0.0)(64bit) libsamba-debug-samba4.so()(64bit) libsamba-debug-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) libsamba-errors.so.1()(64bit) libsamba-errors.so.1(SAMBA_ERRORS_1)(64bit) libsamba-hostconfig.so.0()(64bit) libsamba-hostconfig.so.0(SAMBA_HOSTCONFIG_0.0.1)(64bit) libsamba-modules-samba4.so()(64bit) libsamba-modules-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) libsamba-passdb.so.0()(64bit) libsamba-passdb.so.0(SAMBA_PASSDB_0.2.0)(64bit) libsamba-security-samba4.so()(64bit) libsamba-security-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) libsamba-sockets-samba4.so()(64bit) libsamba-sockets-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) libsamba-util.so.0()(64bit) libsamba-util.so.0(SAMBA_UTIL_0.0.1)(64bit) libsamba3-util-samba4.so()(64bit) libsamba3-util-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) libsamdb-common-samba4.so()(64bit) libsamdb-common-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) libsecrets3-samba4.so()(64bit) libsecrets3-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) libsmbconf.so.0()(64bit) libsmbconf.so.0(SMBCONF_0.0.1)(64bit) libsmbd-shim-samba4.so()(64bit) libsmbd-shim-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) libsocket-blocking-samba4.so()(64bit) libsocket-blocking-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) libsys-rw-samba4.so()(64bit) libsys-rw-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) libtalloc.so.2()(64bit) libtalloc.so.2(TALLOC_2.0.2)(64bit) libtdb.so.1()(64bit) libtdb.so.1(TDB_1.2.1)(64bit) libtevent-util.so.0()(64bit) libtevent-util.so.0(TEVENT_UTIL_0.0.1)(64bit) libtevent.so.0()(64bit) libtevent.so.0(TEVENT_0.9.12)(64bit) libtevent.so.0(TEVENT_0.9.14)(64bit) libtevent.so.0(TEVENT_0.9.20)(64bit) libtevent.so.0(TEVENT_0.9.21)(64bit) libtevent.so.0(TEVENT_0.9.36)(64bit) libtevent.so.0(TEVENT_0.9.37)(64bit) libtevent.so.0(TEVENT_0.9.9)(64bit) libtrusts-util-samba4.so()(64bit) libtrusts-util-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) libutil-tdb-samba4.so()(64bit) libutil-tdb-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) libwbclient.so.0()(64bit) libwbclient.so.0(WBCLIENT_0.10)(64bit) libwbclient.so.0(WBCLIENT_0.13)(64bit) libwbclient.so.0(WBCLIENT_0.9)(64bit) libwinbind-client-samba4.so()(64bit) libwinbind-client-samba4.so(SAMBA_4.15.13_GIT.710.7032820FCD150400.3.34.2_SUSE_OS15.0_PPC64LE)(64bit) pam-config rpmlib(CompressedFileNames) rpmlib(FileDigests) rpmlib(PayloadFilesHavePrefix) rpmlib(PayloadIsXz) samba-client samba-winbind-libs         4.15.13+git.710.7032820fcd-150400.3.34.2                                                                                                                                       3.0.4-1 4.6.0-1 4.0-1 5.2-1 4.15.13+git.710.7032820fcd 4.15.13+git.710.7032820fcd 4.14.3  e[J@e¥@dÒ.@dµ-@dšÏ@dJÀcü›@c½S@c¼Àc R@c„¢ÀctÐÀc5ˆÀcM@büØ@bÐ@bÈ@b°a@b‚<Àb{¥@bkÓ@bi0@bi0@bT@b0Àb%óÀb!ÿ@b!Àb
D@b	Àa÷Ï@añ7Àaê @aæ«Àaà@a³A@a–@@a‹´@afÊ@aU¦ÀaTU@aLl@aHwÀa9÷@a¤À`vÙ@`aÁ@`<×@`@_éÈÀ_ÙöÀ_²iÀ_£é@_|\@_{
À_lŠ@_iç@_d¡@_ÁÀ_ž@^ýÌ@^ÔíÀ^½2À^½2À^°À^ 1À^ŽÀ^Y À^J€@^2Å@^&çÀ^&çÀ]ü·À]ïˆÀ]äüÀ]¸)À]®ï@]©©@]˜…À]Œ¨@]nUÀ]nUÀ]iÀ]e@]_Õ@]J½@]BÔ@]
#À]:À\Ú­À\ÒÄÀ\·@\·@\³ À\£NÀ\›eÀ\›eÀ\}@\oä@\\À\\À\4À\	@[ÿÔÀ[þƒ@[ò¥À[ä%@[Öö@[Ï@[ÀŒÀ[«tÀ[ª#@[¨ÑÀ[šQ@[šQ@[–\À[†ŠÀ[ƒçÀ[{þÀ[z­@[rÄ@[@À[WÀZãÀZÍøÀZ¸àÀZ³šÀZ³šÀZª`@Z§½@Z§½@Z“öÀZ@ZÀZ}@Z'ÛÀZ¡@ZOÀZþ@Z,@Z @YíÙÀYÌä@Yºo@Yºo@Yºo@Y§ú@Y”3ÀY‰§ÀYuá@Yg`ÀYf@Y7êÀY7êÀY,@Y"ÒÀXÿ:@Xÿ:@XõÿÀXësÀXç@Xâ9@XÜó@XÜó@XÒg@XÉ,ÀXÆ‰ÀX«@XœYÀX˜e@X‰äÀXˆ“@X…ð@X€ª@XWËÀXAb@X-›ÀWéÀWâv@Wá$ÀWÙ;ÀWÅu@WÄ#ÀW±®ÀW¯ÀW­º@W~D@Wj}ÀW_ñÀWYZ@WYZ@W=ªÀW(’ÀW!û@WîÀW@Vñ3ÀVñ3ÀVÜÀVØ'@VÕ„@VÕ„@VÎìÀVÌIÀVÊø@VÄ`ÀVÀl@V½É@V˜ß@V–<@V–<@V“™@VjºÀV]‹ÀVIÅ@VG"@VG"@VG"@VG"@V(ÏÀV'~@V æÀV7@VBÀUùYÀUòÂ@Uð@UîÍÀUäAÀUÄÀU¨î@U¤ùÀU™@U–y@U€ÀUràÀUq@UhTÀU_@US<ÀUJ@U/¤@U/¤@U&iÀUŒ@UÀU	hÀU@TøE@Tòÿ@TìgÀTìgÀTÀæ@TÀæ@T¾C@T¼ñÀT¼ñÀTµÀTµÀT«Î@T…’ÀTž@T€LÀT}©ÀTxcÀT[bÀTZ@TR(@TO…@TKÀT>aÀscabrero@suse.de scabrero@suse.de scabrero@suse.de nopower@suse.com nopower@suse.com nopower@suse.com nopower@suse.com scabrero@suse.de nopower@suse.com scabrero@suse.de scabrero@suse.de nopower@suse.com nopower@suse.com scabrero@suse.de nopower@suse.com nopower@suse.com scabrero@suse.de nopower@suse.com scabrero@suse.de scabrero@suse.de scabrero@suse.de scabrero@suse.de scabrero@suse.de scabrero@suse.de scabrero@suse.de dmulder@suse.com ddiss@suse.com nopower@suse.com dmulder@suse.com dmulder@suse.com nopower@suse.com scabrero@suse.de scabrero@suse.de dimstar@opensuse.org scabrero@suse.de scabrero@suse.de scabrero@suse.de scabrero@suse.de dmulder@suse.com nopower@suse.com nopower@suse.com scabrero@suse.de scabrero@suse.de scabrero@suse.de dmulder@suse.com nopower@suse.com scabrero@suse.de scabrero@suse.de scabrero@suse.de scabrero@suse.de scabrero@suse.de scabrero@suse.de nopower@suse.com scabrero@suse.de ddiss@suse.com ddiss@suse.com ddiss@suse.com scabrero@suse.de scabrero@suse.de dmulder@suse.com nopower@suse.com scabrero@suse.de scabrero@suse.de dmulder@suse.com scabrero@suse.de scabrero@suse.de nopower@suse.com nopower@suse.com nopower@suse.com dmulder@suse.com scabrero@suse.de nopower@suse.com ddiss@suse.com nopower@suse.com nopower@suse.com jmcdonough@suse.com nopower@suse.com nopower@suse.com jmcdonough@suse.com nopower@suse.com nopower@suse.com scabrero@suse.de nopower@suse.com nopower@suse.com jmcdonough@suse.com nopower@suse.com scabrero@suse.de nopower@suse.com nopower@suse.com ddiss@suse.com ddiss@suse.com nopower@suse.com nopower@suse.com ddiss@suse.com nopower@suse.com dmulder@suse.com dmulder@suse.com ddiss@suse.com scabrero@suse.de dmulder@suse.com ddiss@suse.com nopower@suse.com jengelh@inai.de dmulder@suse.com scabrero@suse.de scabrero@suse.de scabrero@suse.de dmulder@suse.com dmulder@suse.com dmulder@suse.com jmcdonough@suse.com dmulder@suse.com scabrero@suse.de dmulder@suse.com scabrero@suse.de dmulder@suse.com dmulder@suse.com vcizek@suse.com dmulder@suse.com dmulder@suse.com nopower@suse.com scabrero@suse.de jmcdonough@suse.com scabrero@suse.de aaptel@suse.com jengelh@inai.de dimstar@opensuse.org dmulder@suse.com jmcdonough@suse.com david.mulder@suse.com jmcdonough@suse.com aaptel@suse.com dmulder@suse.com scabrero@suse.com scabrero@suse.com kukuk@suse.de david.mulder@suse.com scabrero@suse.com rbrown@suse.com dmulder@suse.com scabrero@suse.com dimstar@opensuse.org scabrero@suse.com aaptel@suse.com nopower@suse.com nopower@suse.com aaptel@suse.com ddiss@suse.com dmulder@suse.com ddiss@suse.com dmulder@suse.com ddiss@suse.com ddiss@suse.com nopower@suse.com ddiss@suse.com ddiss@suse.com ddiss@suse.com ddiss@suse.com ddiss@suse.com ddiss@suse.com ddiss@suse.com ddiss@suse.com dmulder@suse.com nopower@suse.com jmcdonough@suse.com aaptel@suse.com kukuk@suse.com kukuk@suse.de nopower@suse.com aaptel@suse.com dmulder@suse.com ddiss@suse.com dmulder@suse.com ddiss@suse.com jmcdonough@suse.com nopower@suse.com nopower@suse.com nopower@suse.com nopower@suse.com jmcdonough@suse.com jmcdonough@suse.com nopower@suse.com nopower@suse.com ddiss@suse.com jmcdonough@suse.com ddiss@suse.com jmcdonough@suse.com jmcdonough@suse.com jmcdonough@suse.com jmcdonough@suse.com jmcdonough@suse.com jmcdonough@suse.com jmcdonough@suse.com jmcdonough@suse.com jmcdonough@suse.com nopower@suse.com lmuelle@suse.com lmuelle@suse.com jmcdonough@suse.com nopower@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com nopower@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com tchvatal@suse.com lmuelle@suse.com nopower@suse.com crrodriguez@opensuse.org lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com noel.power@suse.com ddiss@suse.com ddiss@suse.com lmuelle@suse.com ddiss@suse.com lmuelle@suse.com lmuelle@suse.com nopower@suse.com ddiss@suse.com ddiss@suse.com lmuelle@suse.com lmuelle@suse.com ddiss@suse.com lmuelle@suse.com mpluskal@suse.com lmuelle@suse.com nopower@suse.de ddiss@suse.com ddiss@suse.com ddiss@suse.com lmuelle@suse.de nopower@suse.de lmuelle@suse.com nopower@suse.de ddiss@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com - Add "net offlinejoin composeodj" command; (bsc#1214076); - CVE-2023-4091: samba: Client can truncate file with read-only
  permissions; (bsc#1215904); (bso#15439).
- CVE-2023-42669: samba: rpcecho, enabled and running in AD DC,
  allows blocking sleep on request; (bso#1215905); (bso#15474).
- CVE-2023-4154: samba: dirsync allows SYSTEM access with only
  "GUID_DRS_GET_CHANGES" right, not "GUID_DRS_GET_ALL_CHANGES;
  (bsc#1215908); (bso#15424). - Move libcluster-samba4.so from samba-libs to samba-client-libs;
  (bsc#1213940); - secure channel faulty since Windows 10/11 update 07/2023;
  (bso#15418); (bsc#1213384). - CVE-2022-2127: lm_resp_len not checked properly in
  winbindd_pam_auth_crap_send; (bso#15072); (bsc#1213174).
- CVE-2023-34966: Samba Spotlight mdssvc RPC Request Infinite
  Loop Denial-of-Service Vulnerability; (bso#15340); (bsc#1213173).
- CVE-2023-34967: Samba Spotlight mdssvc RPC Request Type
  Confusion Denial-of-Service Vulnerability; (bso#15341); (bsc#1213172).
- CVE-2023-34968: Spotlight server-side Share Path Disclosure;
  (bso#15388); (bsc#1213171). - CVE-2023-0922: Samba AD DC admin tool samba-tool sends passwords
  in cleartext; (bso#15315); (bsc#1209481).
- CVE-2023-0225: Samba AD DC "dnsHostname" attribute can be
  deleted by unprivileged authenticated users; (bso#15276);
  (bsc#1209483).
- CVE-2023-0614: samba: Access controlled AD LDAP attributes can
  be discovered; (bso#15270); (bsc#1209485). - Prevent use after free of messaging_ctdb_fde_ev structs;
  (bso#15293); (bsc#1207416). - CVE-2022-38023 Additional patches for the PDC role's netlogon
  server; (bso#15240); (bsc#1206504); - CVE-2021-20251: samba: Bad password count not incremented
  atomically; (bso#14611); (bsc#1206546). - Update to 4.15.13
  * CVE-2022-37966 rc4-hmac Kerberos session keys issued to
    modern servers; (bso#15237); (bsc#1205385);
  * CVE-2022-37967 Kerberos constrained delegation ticket forgery
    possible against Samba AD DC; (bso#15231); (bsc#1205386);
  * CVE-2022-38023 RC4/HMAC-MD5 NetLogon Secure Channel is weak
    and should be avoided; (bso#15240); (bsc#1206504);
  * filter-subunit is inefficient with large numbers of
    knownfails; (bso#15258);
  * The KDC logic arround msDs-supportedEncryptionTypes differs
    from Windows; (bso#13135);
  * Windows 11 22H2 and Samba-AD 4.15 Kerberos login issue;
    (bso#15197);
- Adjust the systemd drop-in file for named service; (bsc#1201689);
  * Paths are additive so do not repeat paths from named.service
  * Prefix the samba DLZ directory with "-" to ignore this path
    if it does not exists - Install a systemd drop-in file for named service to allow
  read/write access to the DLZ directory; (bsc#1201689); - Update to 4.15.12
  * CVE-2022-42898: samba: heimdal: Samba buffer overflow
    vulnerabilities on 32-bit systems; (bso#15203); (bsc#1205126).
- Update to 4.15.11
  * Allow rebuild of Centos 8 images after move to vault for
    Samba 4.15; (bso#15193).
  * CVE-2022-3437: samba: Buffer overflow in Heimdal unwrap_des3();
    (bso#15134); (bsc#1204254) - Update to 4.15.10
  * Possible use after free of connection_struct when iterating
    smbd_server_connection->connections; (bso#15128);
    (bsc#1200102).
  * smbXsrv_connection_shutdown_send result leaked; (bso#15174).
  * Spotlight RPC service returns wrong response when Spotlight
    is disabled on a share; (bso#15086).
  * acl_xattr VFS module may unintentionally use filesystem
    permissions instead of ACL from xattr; (bso#15126).
  * Missing SMB2-GETINFO access checks from MS-SMB2 3.3.5.20.1;
    (bso#15153).
  * assert failed: !is_named_stream(smb_fname)") at
    ../../lib/util/fault.c:197; (bso#15161).
  * Missing READ_LEASE break could cause data corruption;
    (bso#15148).
  * rpcclient can crash using setuserinfo(2); (bso#15124).
  * Samba fails to build with glibc 2.36 caused by including
    <sys/mount.h> in libreplace; (bso#15132).
  * SMB1 negotiation can fail to handle connection errors;
    (bso#15152).
  * samba-tool domain join segfault when joining a samba ad
    domain; (bso#15078).
- Update to 4.15.9
  * CVE-2022-32742:SMB1 code does not correct verify SMB1write,
    SMB1write_and_close, SMB1write_and_unlock lengths; (bso#15085);
    (bsc#1201496).
  * CVE-2022-32746: samba: Use-after-free occurring in database
    audit logging; (bso#15009); (bso#15096); (bsc#1201490).
  * CVE-2022-2031: samba, ldb: AD users can bypass certain
    restrictions associated with changing passwords; (bso#15047);
    (bsc#1201495);
  * CVE-2022-32745: samba: ldb: AD users can crash the server
    process with an LDAP add or modify request; (bso#15008);
    (bso#15096); (bsc#1201492).
  * CVE-2022-2031: samba, ldb: AD users can bypass certain
    restrictions associated with changing passwords; (bso#15047);
    (bsc#1201495);
  * CVE-2022-32744: samba, ldb: AD users can forge password change
    requests for any user; (bso#15074); (bso#15047); (bsc#1201493). - CVE-2022-1615: Do not ignore errors in random number generation;
  (bso#15103); (bsc#1202976);
- CVE-2022-32743: Implement validated dnsHostName write rights;
  (bso#14833); (bsc#1202803); - Fix Use after free when iterating
  smbd_server_connection->connections after tree disconnect
  failure; (bso#15128); (bsc#1200102). - CVE-2022-32746: samba: Use-after-free occurring in database
  audit logging; (bso#15009); (bso#15096); (bsc#1201490).
- CVE-2022-32745: samba: ldb: AD users can crash the server
  process with an LDAP add or modify request; (bso#15008);
  (bso#15096); (bsc#1201492).
- CVE-2022-2031: samba, ldb: AD users can bypass certain
  restrictions associated with changing passwords; (bso#15047);
  (bsc#1201495);
- CVE-2022-32742:SMB1 code does not correct verify SMB1write,
  SMB1write_and_close, SMB1write_and_unlock lengths; (bso#15085);
  (bsc#1201496).
- CVE-2022-32744: samba, ldb: AD users can forge password change
  requests for any user; (bso#15074); (bso#15047); (bsc#1201493). - Update to 4.15.8
  * Use pathref fd instead of io fd in vfs_default_durable_cookie;
    (bso#15042);
  * Setting fruit:resource = stream in vfs_fruit causes a panic;
    (bso#15099);
  * Add support for bind 9.18; (bso#14986);
  * logging dsdb audit to specific files does not work; (bso#15076);
  * vfs_gpfs with vfs_shadowcopy2 fail to restore file if original
    file had been deleted; (bso#15069);
  * netgroups support removed; (bso#15087); (bsc#1199247);
  * net ads info shows LDAP Server: 0.0.0.0 depending on contacted
    server; (bso#14674); (bsc#1199734);
  * waf produces incorrect names for python extensions with Python
    3.11; (bso#15071);
  * smbclient commands del & deltree fail with
    NT_STATUS_OBJECT_PATH_NOT_FOUND with DFS; (bso#15100);
    (bsc#1200556);
  * vfs_gpfs recalls=no option prevents listing files; (bso#15055);
  * waf produces incorrect names for python extensions with Python
    3.11; (bso#15071);
  * Compile error in source3/utils/regedit_hexedit.c; (bso#15091);
  * ldconfig: /lib64/libsmbconf.so.0 is not a symbolic link;
    (bso#15108);
  * smbd doesn't handle UPNs for looking up names; (bso#15054);
  * Out-by-4 error in smbd read reply max_send clamp; (bso#14443);
- Move pdb backends from package samba-libs to package
  samba-client-libs and remove samba-libs requirement from
  samba-winbind; (bsc#1200964); (bsc#1198255);
- Use the canonical realm name to refresh the Kerberos tickets;
  (bsc#1196224); (bso#14979); - Fix  smbclient commands del & deltree failing with
  NT_STATUS_OBJECT_PATH_NOT_FOUND with DFS; (bso#15100);
  (bsc#1200556). - Revert NIS support removal; (bsc#1199247); - Use requires_eq macro to require the libldb2 version available at
  samba-dsdb-modules build time; (bsc#1199362); - Add missing samba-client requirement to samba-winbind package;
  (bsc#1198255); - Update to 4.15.7
  * Share and server swapped in smbget password prompt; (bso#14831);
  * Durable handles won't reconnect if the leased file is written
    to; (bso#15022);
  * rmdir silently fails if directory contains unreadable files and
    hide unreadable is yes; (bso#15023);
  * SMB2_CLOSE_FLAGS_FULL_INFORMATION fails to return information
    on renamed file handle; (bso#15038);
  * vfs_shadow_copy2 breaks "smbd async dosmode" sync fallback;
    (bso#14957);
  * shadow_copy2 fails listing snapshotted dirs with shadow:fixinodes;
    (bso#15035);
  * PAM Kerberos authentication incorrectly fails with a clock skew
    error; (bso#15046);
  * username map - samba erroneously applies unix group memberships
    to user account entries; (bso#15041);
  * NT_STATUS_ACCESS_DENIED translates into EPERM instead of EACCES
    in SMBC_server_internal; (bso#14983);
  * Simple bind doesn't work against an RODC (with non-preloaded users);
    (bso#13879);
  * Crash of winbind on RODC; (bso#14641);
  * uncached logon on RODC always fails once; (bso#14865);
  * KVNO off by 100000; (bso#14951);
  * LDAP simple binds should honour "old password allowed period";
    (bso#15001);
  * wbinfo -a doesn't work reliable with upn names; (bso#15003);
  * Simple bind doesn't work against an RODC (with non-preloaded
    users); (bso#13879);
  * Uninitialized litemask in variable in vfs_gpfs module; (bso#15027);
  * Regression: create krb5 conf = yes doesn't work with a single KDC;
    (bso#15016); - Add provides to samba-client-libs package to fix upgrades from
  previous versions; (bsc#1197995); - Add missing samba-libs requirement to samba-winbind package;
  (bsc#1198255); - Update to 4.15.6
  * Renaming file on DFS root fails with
    NT_STATUS_OBJECT_PATH_NOT_FOUND; (bso#14169);
  * Samba does not response STATUS_INVALID_PARAMETER when opening 2
    objects with same lease key; (bso#14737);
  * NT error code is not set when overwriting a file during rename
    in libsmbclient; (bso#14938);
  * Fix ldap simple bind with TLS auditing; (bso#14996);
  * net ads info shows LDAP Server: 0.0.0.0 depending on contacted
    server; (bso#14674);
  * Problem when winbind renews Kerberos; (bso#14979);
    (bsc#1196224);
  * pam_winbind will not allow gdm login if password about to
    expire; (bso#8691);
  * virusfilter_vfs_openat: Not scanned: Directory or special file;
    (bso#14971);
  * DFS fix for AIX broken; (bso#13631);
  * Solaris and AIX acl modules: wrong function arguments;
    (bso#14974);
  * Function aixacl_sys_acl_get_file not declared / coredump;
    (bso#7239);
  * Regression: Samba 4.15.2 on macOS segfaults intermittently
    during strcpy in tdbsam_getsampwnam; (bso#14900);
  * Fix a use-after-free in SMB1 server; (bso#14989);
  * smb2_signing_decrypt_pdu() may not decrypt with
    gnutls_aead_cipher_decrypt() from gnutls before 3.5.2;
    (bso#14968);
  * Changing the machine password against an RODC likely destroys
    the domain join; (bso#14984);
  * authsam_make_user_info_dc() steals memory from its struct
    ldb_message *msg argument; (bso#14993);
  * Use Heimdal 8.0 (pre) rather than an earlier snapshot;
    (bso#14995);
  * Samba autorid fails to map AD users if id rangesize fits in the
    id range only once; (bso#14967); - Fix mismatched version of libldb2; (bsc#1196788).
- Drop obsolete SuSEfirewall2 service files. - Drop obsolete Samba fsrvp v0->v1 state upgrade functionality;
  (bsc#1080338). - Fix ntlm authentications with "winbind use default domain = yes";
  (bso#13126); (bsc#1173429); (bsc#1196308). - Fix samba-ad-dc status warning notification message by disabling
  systemd notifications in bgqd; (bsc#1195896); (bso#14947). - libldb version mismatch in Samba dsdb component; (bsc#1118508); - Update to 4.15.5
  * CVE-2021-44141: UNIX extensions in SMB1 disclose whether the
    outside target of a symlink exists; (bso#14911);
    (bsc#1193690).
  * CVE-2021-44142: Out-of-Bound Read/Write on Samba vfs_fruit
    module; (bso#14914); (bsc#1194859).
  * CVE-2022-0336:  Re-adding an SPN skips subsequent SPN
    conflict checks; bso#14950); (bsc#1195048). - CVE-2021-44141: Information leak via symlinks of existance of
  files or directories outside of the exported share; (bso#14911);
  (bsc#1193690);
- CVE-2021-44142: Out-of-bounds heap read/write vulnerability
  in VFS module vfs_fruit allows code execution; (bso#14914);
  (bsc#1194859);
- CVE-2022-0336: Samba AD users with permission to write to an
  account can impersonate arbitrary services; (bso#14950);
  (bsc#1195048); - Update to 4.15.4
  * Duplicate SMB file_ids leading to Windows client cache
    poisoning; (bso#14928);
  * Failed to parse NTLMv2_RESPONSE length 95 - Buffer Size Error -
    NT_STATUS_BUFFER_TOO_SMALL; (bso#14932);
  * kill_tcp_connections does not work; (bso#14934);
  * Can't connect to Windows shares not requiring authentication
    using KDE/Gnome; (bso#14935);
  * smbclient -L doesn't set "client max protocol" to NT1 before
    calling the "Reconnecting with SMB1 for workgroup listing"
    path; (bso#14939);
  * Cross device copy of the crossrename module always fails;
    (bso#14940);
  * symlinkat function from VFS cap module always fails with an
    error; (bso#14941);
  * Fix possible fsp pointer deference; (bso#14942);
  * Missing pop_sec_ctx() in error path inside close_directory();
    (bso#14944);
  * "smbd --build-options" no longer works without an smb.conf file;
    (bso#14945); - Use pkgconfig(krb5) as dependency for the -devel package: allow
  OBS to pick the right flavor of krb5-devel (full vs mini).
- Do not require the 'krb5' symbol by samba-client-libs: this
  package has an automatic dependency due to linkage on
  libgssapi_krb5.so.2. Automatic deps are always better.
- Do not require the 'krb5' symbol from samba-libs: samba-libs
  requires samba-client-libs, which in turn requires krb5
  libraries. Samba-libs itself has no need for krb5 (but get it
  indirectly anyway). - Reorganize libs packages. Split samba-libs into samba-client-libs,
  samba-libs, samba-winbind-libs and samba-ad-dc-libs, merging samba
  public libraries depending on internal samba libraries into these
  packages as there were dependency problems everytime one of these
  public libraries changed its version (bsc#1192684). The devel
  packages are merged into samba-devel.
- Rename package samba-core-devel to samba-devel
- Add python-rpm-macros to build requirements
- Update the symlink create by samba-dsdb-modules to private samba
  ldb modules following libldb2 changes from /usr/lib64/ldb/samba to
  /usr/lib64/ldb2/modules/ldb/samba - Update to 4.15.3
  * Recursive directory delete with veto files is broken in 4.15.0;
    (bso#14878);
  * A directory containing dangling symlinks cannot be deleted by
    SMB2 alone when they are the only entry in the directory;
    (bso#14879);
  * SIGSEGV in rmdir_internals/synthetic_pathref - dirfsp is used
    uninitialized in rmdir_internals(); (bso#14892);
  * MaxQueryDuration not honoured in Samba AD DC LDAP; (bso#14694);
  * The CVE-2020-25717 username map [script] advice has undesired
    side effects for the local nt token; (bso#14901); (bsc#1192849);
  * User with multiple spaces (eg Fred<space><space>Nurk) become
    un-deletable; (bso#14902);
  * Avoid storing NTTIME_THAW (-2) as value on disk; (bso#14127);
  * smbXsrv_client_global record validation leads to crash if existing
    record points at non-existing process; (bso#14882);
  * Crash in vfs_fruit asking for fsp_get_io_fd() for an XATTR call;
    (bso#14890);
  * Samba process doesn't log to logfile; (bso#14897);
  * set_ea_dos_attribute() fallback calling get_file_handle_for_metadata()
    triggers locking.tdb assert; (bso#14907);
  * Kerberos authentication on standalone server in MIT realm broken;
    (bso#14922);
  * Segmentation fault when joining the domain; (bso#14923);
  * Support for ROLE_IPA_DC is incomplete; (bso#14903);
  * rpcclient cannot connect to ncacn_ip_tcp services anymore;
    (bso#14767);
  * winexe crashes since 4.15.0 after popt parsing; (bso#14893);
  * net ads status -P broken in a clustered environment; (bso#14908);
  * Memory leak if ioctl(FSCTL_VALIDATE_NEGOTIATE_INFO) fails before
    smbd_smb2_ioctl_send; (bso#14788);
  * winbindd doesn't start when "allow trusted domains" is off;
    (bso#14899);
  * smbclient login without password using '-N' fails with
    NT_STATUS_INVALID_PARAMETER on Samba AD DC; (bso#14883);
  * A schannel client incorrectly detects a downgrade connecting to
    an AES only server; (bso#14912);
  * Possible null pointer dereference in winbind; (bso#14921);
  * Fix -k legacy option for client tools like smbclient, rpcclient,
    net, etc.; (bso#14846);
  * Add Debian 11 CI bootstrap support; (bso#14872);
  * Crash in recycle_unlink_internal(); (bso#14888); - Fix dependency problem upgrading from libndr0 to libndr2 and
  from libsamba-credentials0 to libsamba-credentials1;
  (bsc#1192684); - Fix regression introduced by CVE-2020-25717 patches, winbindd
  does not start when 'allow trusted domains' is off; (bso#14899);
- Update to 4.15.2
  * CVE-2016-2124:  SMB1 client connections can be downgraded to
    plaintext authentication; (bso#12444); (bsc#1014440);
  * CVE-2020-25717: A user on the domain can become root on domain
    members; (bso#14556); (bsc#1192284);
  * CVE-2020-25718: Samba AD DC did not correctly sandbox Kerberos
    tickets issued by an RODC; (bso#14558); (bsc#1192246);
  * CVE-2020-25719: Samba AD DC did not always rely on the SID and
    PAC in Kerberos tickets; (bso#14561); (bsc#1192247);
  * CVE-2020-25721: Kerberos acceptors need easy access to stable
    AD identifiers (eg objectSid); (bso#14557); (bsc#1192505);
  * CVE-2020-25722: Samba AD DC did not do suffienct access and
    conformance checking of data stored; (bso#14564);
    (bsc#1192283);
  * CVE-2021-3738: Use after free in Samba AD DC RPC server;
    (bso#14468); (bsc#1192215);
  * CVE-2021-23192: Subsequent DCE/RPC fragment injection
    vulnerability; (bso#14875); (bsc#1192214);
- Update to 4.15.1
  * vfs_shadow_copy2: core dump in make_relative_path; (bso#14682);
  * Log clutter from filename_convert_internal; (bso#14685);
  * MacOSX compilation fixes; (bso#14862);
  * rodc_rwdc test flaps; (bso#14868);
  * Provide a fix for MS CVE-2020-17049 in Samba [SECURITY] 'Bronze
  bit' S4U2Proxy Constrained Delegation bypass in Samba with
  embedded Heimdal; (bso#14642);
  * Python ldb.msg_diff() memory handling failure; (bso#14836);
  * "in" operator on ldb.Message is case sensitive; (bso#14845);
  * Release LDB 2.4.1 for Samba 4.15.1; (bso#14848);
  * samldb_krbtgtnumber_available() looks for incorrect string;
  (bso#14854);
  * Fix Samba support for UF_NO_AUTH_DATA_REQUIRED; (bso#14871);
  * Allow special chars like "@" in samAccountName when generating
  the salt; (bso#14874);
  * Correctly ignore comments in CTDB public addresses file;
  (bso#14826);
  * Fix transit path validation; (bso#12998);
  * Fix that child winbindd logs to log.winbindd instead of
  log.wb-<DOMAIN>; (bso#14852);
  * SMB3 cancel requests should only include the MID together with
  AsyncID when AES-128-GMAC is used; (bso#14855);
  * Prepare to operate with MIT krb5 >= 1.20; (bso#14870);
  * Heimdal prefers RC4 over AES for machine accounts; (bso#14864); - Enable samba-tool without ad dc. -  Adjust spec to use pam macros; (bsc#1191046). - Adjust spec for size
  * allow some Recommends instead Requires to be configured
    for cifs-utils, samba-libs-python3 & samba-gpupdate;
    (bsc#1182847).
  * remove fam, undocumented and unneeded. - Add missing build dependency on bison when building with the
  embedded Heimdal Kerberos - Update to 4.15.0
  * Removed SMB development dialects SMB2_22, SMB2_24 and SMB3_10
  * VFS layer modernized.
  * Add the ability to set allow/deny lists for zone transfer clients
    in Bind DLZ plugin
  * Server multi-channel support no longer experimental
  * Improved command line user experience, unifying the options in
    different commands
  * Winbindd no longer scans trusted domains on startup and will use
    enterprise principals by default.
  * The net utility is now able to support the offline domain join feature
  * New options for 'samba-tool dns zoneoptions' for aging control
    and to mark old records as static or dynamic
  * DNS tombstones are now deleted as appropriate and use a consistent
    timestamp format
  * The 'samba-tool dns update' command validates and rejects now malformed
    IPv4 and IPv6 addresses
  * The 'samba-tool domain backup' command correctly takes out locks
    against concurrent modification during backup when using the LMDB
    backend
  * TruACL support has been removed
  * NIS support has been removed - Fix 'net rpc' authentication when using the machine account;
  (bsc#1189017); (bso#14796); - Fix dependency problem upgrading from libndr0 to libndr1;
  (bsc#1189875);
- Fix dependency problem upgrading from libsmbldap0 to libsmbldap2;
  (bsc#1189875);
- Fix wrong kvno exported to keytab after net ads changetrustpw due
  to replication delay; (bsc#1188727);
- Add Certificate Auto Enrollment Policy; (jsc#SLE-18456).
- Update to 4.13.10
  * s3: smbd: Ensure POSIX default ACL is mapped into returned
    Windows ACL for directory handles; (bso#14708);
  * Take a copy to make sure we don't reference free'd memory; (bso#14721);
  * s3: lib: Fix talloc heirarcy error in parent_smb_fname(); (bso#14722);
  * s3: smbd: Remove erroneous TALLOC_FREE(smb_fname_parent) in
    change_file_owner_to_parent() error path; (bso#14736);
  * samba-tool: Give better error information when the
    'domain backup restore' fails with a duplicate SID; (bso#14575);
  * smbd: Correctly initialize close timestamp fields; (bso#14714);
  * Spotlight RPC service doesn't work with vfs_glusterfs; (bso#14740);
  * ctdb: Fix a crash in run_proc_signal_handler(); (bso#14475);
  * gensec_krb5: Restore ipv6 support for kpasswd; (bso#14750);
  * smbXsrv_{open,session,tcon}: Protect
    smbXsrv_{open,session,tcon}_global_traverse_fn against invalid records; (bso#14752);
  * samba-tool domain backup offline doesn't work against bind DLZ
    backend; (bso#14027);
  * netcmd: Use next_free_rid() function to calculate a SID for
    restoring a backup; (bso#14669);
- Update to 4.13.9
  * s3: smbd: SMB1 SMBsplwr doesn't send a reply packet on success; (bso#14696);
  * Add documentation for dsdb_group_audit and dsdb_group_json_audit
    to "log level", synchronise "log level" in smb.conf with the code; (bso#14689);
  * Fix smbd panic when two clients open same file; (bso#14672);
  * Fix memory leak in the RPC server; (bso#14675);
  * s3: smbd: Fix deferred renames; (bso#14679);
  * s3-iremotewinspool: Set the per-request memory context; (bso#14675);
  * rpc_server3: Fix a memleak for internal pipes; (bso#14675);
  * third_party: Update socket_wrapper to version 1.3.2; (bso#11899);
  * third_party: Update socket_wrapper to version 1.3.3; (bso#14639);
  * idmap_rfc2307 and idmap_nss return wrong mapping for uid/gid
    conflict; (bso#14663);
  * Fix the build on OmniOS; (bso#14288);
- Update to 4.13.8
  * CVE-2021-20254: Fix buffer overrun in sids_to_unixids(); (bso#14571
- Update to 4.13.7
  * Release with dependency on ldb version 2.2.1. -  CVE-2021-20254 Buffer overrun in sids_to_unixids();
  (bnc#14571); (bsc#1184677). - Fix offline domain backup not possible using lmdb version >= 0.9.26;
  (bso#14676);
- Require libldb >= 2.2.1; (bsc#1183572); (bsc#1183574);
- Update to 4.13.6
  * CVE-2020-27840: samba: Unauthenticated remote heap corruption
    via bad DNs; (bso#14595); (bsc#1183572).
  * CVE-2021-20277: samba: out of bounds read in ldb_handler_fold;
    (bso#14655); (bsc#1183574).
- Update to 4.13.5
  * s3:modules:vfs_virusfilter: Recent talloc changes cause infinite
    start-up failure; (bso#14634);
  * s3: libsmb: Add missing cli_tdis() in error path if encryption setup
    failed on temp proxy connection; (bso#13992);
  * smbd: In conn_force_tdis_done() when forcing a connection closed force
    a full reload of services; (bso#14604);
  * dbcheck: Check Deleted Objects and reduce noise in reports about
    expired tombstones (bso#14593);
  * s3: Fix fcntl waf configure check; (bso#14503);
  * s3/auth: Implement "winbind:ignore domains"; (bso#14602);
  * smbd: Use fsp->conn->session_info for the initial delete-on-close
    token; (bso#14617);
  * s3: VFS: nfs4_acls. Add missing TALLOC_FREE(frame) in error path;
    (bso#14648);
  * classicupgrade: Treat old never expires value right; (bso#14624);
  * g_lock: Fix uninitalized variable reads; (bso#14636);
  * s3:pysmbd: Fix fd leak in py_smbd_create_file(); (bso#13898);
  * lib:util: Avoid free'ing our own pointer; (bso#14625);
  * HEIMDAL: krb5_storage_free(NULL) should work; (bso#12505); - Spec file fixes around systemd and requires; (bsc#1182830);
- Align systemd service unit files with upstream provided ones. - Update to 4.13.4
  * Work around special SMB2 IOCTL response behavior of NetApp Ontap
    7.3.7; (bso#14607);
  * Temporary DFS share setup doesn't set case parameters in the same
    way as a regular share definition does; (bso#14612);
  * lib: Avoid declaring zero-length VLAs in various messaging functions;
    (bso#14605);
  * Do not create an empty DB when accessing a sam.ldb; (bso#14579);
  * vfs_fruit may close wrong backend fd; (bso#14596);
  * Temporary DFS share setup doesn't set case parameters in the same way
    as a regular share definition does; (bso#14612);
  * vfs_virusfilter: Allocate separate memory for config char*; (bso#14606);
  * vfs_fruit may close wrong backend fd; (bso#14596);
  * Work around special SMB2 IOCTL response behavior of NetApp Ontap 7.3.7;
    (bso#14607);
  * The cache directory for the user gencache should be created recursively;
    (bso#14601);
  * Be more flexible with repository names in CentOS 8 test environments;
    (bso#14594); - Uninstalling samba-client: Failed to disable unit, cifs.service
  does not exists; (bsc#1180388); - Update to 4.13.3
  + libcli: smb2: Never print length if smb2_signing_key_valid() fails for
    crypto blob; (bso#14210);
  + s3: modules: gluster. Fix the error I made in preventing talloc leaks
    from a function; (bso#14486);
  + s3: smbd: Don't overwrite contents of fsp->aio_requests[0] with NULL
    via TALLOC_FREE(); (bso#14515);
  + s3: spoolss: Make parameters in call to user_ok_token() match all other
    uses; (bso#14568);
  + s3: smbd: Quiet log messages from usershares for an unknown share;
    (bso#14590);
  + samba process does not honor max log size; (bso#14248);
  + vfs_zfsacl: Add missing inherited flag on hidden "magic" everyone@ ACE;
    (bso#14587);
  + s3-libads: Pass timeout to open_socket_out in ms; (bso#13124);
  + s3-vfs_glusterfs: Always disable write-behind translator; (bso#14486);
  + smbclient: Fix recursive mget; (bso#14517);
  + clitar: Use do_list()'s recursion in clitar.c; (bso#14581);
  + manpages/vfs_glusterfs: Mention silent skipping of write-behind
    translator; (bso#14486);
  + vfs_shadow_copy2: Preserve all open flags assuming ROFS; (bso#14573);
  + interface: Fix if_index is not parsed correctly; (bso#14514); - Update to 4.13.2
  + s3: modules: vfs_glusterfs: Fix leak of char **lines onto
    mem_ctx on return; (bso#14486);
  + RN: vfs_zfsacl: Only grant DELETE_CHILD if ACL tag is special;
    (bso#14471);
  + smb.conf.5: Add clarification how configuration changes reflected
    by Samba; (bso#14538);
  + daemons: Report status to systemd even when running in foreground;
    (bso#14552);
  + DNS Resolver: Support both dnspython before and after 2.0.0;
    (bso#14553);
  + s3-vfs_glusterfs: Refuse connection when write-behind xlator is
    present; (bso#14486);
  + provision: Add support for BIND 9.16.x; (bso#14487);
  + ctdb-common: Avoid aliasing errors during code optimization;
    (bso#14537);
  + libndr: Avoid assigning duplicate versions to symbols; (bso#14541);
  + docs: Fix default value of spoolss:architecture; (bso#14522);
  + winbind: Fix a memleak; (bso#14388);
  + s4:dsdb:acl_read: Implement "List Object" mode feature; (bso#14531);
  + docs-xml/manpages: Add warning about write-behind translator for
    vfs_glusterfs; (bso#14486);
  + nsswitch/nsstest.c: Avoid nss function conflicts with glibc nss.h.
  + vfs_shadow_copy2: Avoid closing snapsdir twice; (bso#14530);
  + third_party: Update resolv_wrapper to version 1.1.7; (bso#14547);
  + examples:auth: Do not install example plugin; (bso#14550);
  + ctdb-recoverd: Drop unnecessary and broken code; (bso#14513);
  + RN: vfs_zfsacl: Only grant DELETE_CHILD if ACL tag is special;
    (bso#14471); - Adjust smbcacls '--propagate-inheritance' feature to align with
  upstream; (bsc#1178469). - Update to samba 4.13.1
  + CVE-2020-14383: An authenticated user can crash the DCE/RPC DNS with
    easily crafted records; (bsc#1177613); (bso#14472);
  + CVE-2020-14323: Unprivileged user can crash winbind; (bsc#1173994);
    (bso#14436);
  + CVE-2020-14318: Missing handle permissions check in SMB1/2/3 ChangeNotify;
    (bsc#1173902); (bso#14434);
- Adjust systemd tmpfiles.d configuration, use /run/samba instead of
  /var/run/samba; (bsc#1177355); - Fix vfs_ceph query_directory regression; (bso#14519)
- Drop liburing-devel for SLE15-SP2; (bsc#1177245) - Register CTDB recovery lock holder with ceph-mgr
- Add liburing-devel dependency - Update to samba 4.13.0
  + Require Python 3.6
  + Move wide links functionality into VFS module
  + Deprecate NT4-like 'classic' Samba domain controllers
  + Deprecate SMBv1 only protocol options
  + Remove deprecated "ldap ssl ads" option
  + Unify asynchronous DCE-RPC server; (jsc#SES-645)
  + Replay multichannel lease break requests; (bso#11897); (jsc#SES-655)
  + Drop internal byteorder.h header from util-devel package
  + Remove final code for the AD DC LDAP backend
  + Add AD DC Group Policy Scripts
  + Only use gnutls_aead_cipher_encryptv2() for GnuTLS > 3.6.14; (bso#14399)
  + Fix %U substitutions if it contains a domain name; (bso#14467)
  + Fix krb5.conf creation for 'net ads join'; (bso#14479)
  + Fix build problem if libbsd-dev is not installed; (bso#14482)
  + Toggle vfs_snapper using "--with-shared-modules"; (bso#14437)
  + Fix idmap_ad RFC4511 response handling; (bso#14465)
  + Fix panic in get_lease_type(); (bso#14428) - Update to samba 4.11.13
  + CVE-2020-1472(ZeroLogon): s3:rpc_server/netlogon: Protect
    netr_ServerPasswordSet2 against unencrypted passwords; (bsc#1176579);
    (bso#14497);
  + CVE-2020-1472(ZeroLogon): s3:rpc_server/netlogon: Support
    "server require schannel:WORKSTATION$ = no" about unsecure configurations;
    (bsc#1176579); (bso#14497);
  + CVE-2020-1472(ZeroLogon): s4 torture rpc: repeated bytes in client
    challenge; (bsc#1176579); (bso#14497);
  + CVE-2020-1472(ZeroLogon): libcli/auth: Reject weak client challenges in
    netlogon_creds_server_init() "server require schannel:WORKSTATION$ = no";
    (bsc#1176579); (bso#14497);
- Update to samba 4.11.12
  + s3: libsmb: Fix SMB2 client rename bug to a Windows server; (bso#14403);
  + dsdb: Allow "password hash userPassword schemes = CryptSHA256" to work
    on RHEL7; (bso#14424);
  + dbcheck: Allow a dangling forward link outside our known NCs; (bso#14450);
  + lib/debug: Set the correct default backend loglevel to MAX_DEBUG_LEVEL;
    (bso#14426);
  + s3:smbd: PANIC: assert failed in get_lease_type(); (bso#14428);
  + lib/util: do not install "test_util_paths"; (bso#14370);
  + lib:util: Fix smbclient -l basename dir; (bso#14345);
  + s3:smbd: PANIC: assert failed in get_lease_type(); (bso#14428);
  + util: Allow symlinks in directory_create_or_exist; (bso#14166);
  + docs: Fix documentation for require_membership_of of pam_winbind;
    (bso#14358);
  + s3:winbind:idmap_ad: Make failure to get attrnames for schema mode fatal;
    (bso#14425); - Add obsoletes to libsmbldap2 package to fix upgrades from previous
  versions; (bsc#1172810); - Fix net command unable to negotiate SMB2; (bsc#1174120); - Update to samba 4.11.11
  + CVE-2020-10730: NULL de-reference in AD DC LDAP server when ASQ
    and VLV combined; (bso#14364); (bsc#1173159]
  + CVE-2020-10745: invalid DNS or NBT queries containing dots use
    several seconds of CPU each; (bso#14378); (bsc#1173160).
  + CVE-2020-10760: Use-after-free in AD DC Global Catalog LDAP
    server with paged_result or VLV; (bso#14402); (bsc#1173161)
  + CVE-2020-14303: Endless loop from empty UDP packet sent to
    AD DC nbt_server; (bso#14417); (bsc#1173359).
- Update to samba 4.11.10
  + Fix segfault when using SMBC_opendir_ctx() routine for share
    folder that contains incorrect symbols in any file name;
    (bso#14374).
  + vfs_shadow_copy2 doesn't fail case looking in
    snapdirseverywhere mode; (bso#14350)
  + ldb_ldap: Fix off-by-one increment in lldb_add_msg_attr;
    (bso#14413).
  + Malicous SMB1 server can crash libsmbclient; (bso#14366)
  + winbindd: Fix a use-after-free when winbind clients exit;
    (bso#14382)
  + ldb: Bump version to 2.0.11, LMDB databases can grow without
    bounds. (bso#14330)
- Update to samba 4.11.9
  + nmblib: Avoid undefined behaviour in handle_name_ptrs();
    (bso#14242).
  + 'samba-tool group' commands do not handle group names with
    special chars correctly; (bso#14296).
  + smbd: avoid calling vfs_file_id_from_sbuf() if statinfo
    is not valid; (bso#14237).
  + Missing check for DMAPI offline status in async DOS
    attributes; (bso#14293).
  + smbd: Ignore set NTACL requests which contain
    S-1-5-88 NFS ACEs; (bso#14307).
  + vfs_recycle: Prevent flooding the log if we're called on
    non-existant paths; (bso#14316)
  + smbd mistakenly updates a file's write-time on close;
    (bso#14320).
  + RPC handles cannot be differentiated in source3 RPC server;
    (bso#14359).
  + librpc: Fix IDL for svcctl_ChangeServiceConfigW; (bso#14313).
  + nsswitch: Fix use-after-free causing segfault in
    _pam_delete_cred; (bso#14327).
  + Fix fruit:time machine max size on arm; (bso#13622)
  + CTDB recovery corner cases can cause record resurrection
    and node banning; (bso#14294).
  + ctdb: Fix a memleak; (bso#14348).
  + libsmb: Don't try to find posix stat info in SMBC_getatr().
  + ctdb-tcp: Move free of inbound queue to TCP restart;
    (bso#14295); (bsc#1162680).
  + s3/librpc/crypto: Fix double free with unresolved
    credential cache; (bso#14344); (bsc#1169095)
  + s3:libads: Fix ads_get_upn(); (bso#14336).
  + CTDB recovery corner cases can cause record resurrection
    and node banning; (bso#14294)
  + Starting ctdb node that was powered off hard before
    results in recovery loop; (bso#14295); (bsc#1162680).
  + ctdb-recoverd: Avoid dereferencing NULL rec->nodemap;
    (bso#14324)
- Update to samba 4.11.8
  + CVE-2020-10700: Use-after-free in Samba AD DC LDAP
    Server with ASQ; (bso#14331); (bsc#1169850);
  + CVE-2020-10704: LDAP Denial of Service (stack overflow)
    in Samba AD DC; (bso#14334); (bsc#1169851);
- Update to samba 4.11.7
  + s3: lib: nmblib. Clean up and harden nmb packet
    processing; (bso#14239).
  + s3: VFS: full_audit. Use system session_info if called
    from a temporary share definition; (bso#14283)
  + dsdb: Correctly handle memory in objectclass_attrs;
    (bso#14258).
  + ldb: version 2.0.9, Samba 4.11 and later give incorrect
    results for SCOPE_ONE searches; (bso#14270)
  + auth: Fix CIDs 1458418 and 1458420 Null pointer
    dereferences; (bso#14247).
  + smbd: Handle EINTR from open(2) properly; (bso#14285)
  + winbind member (source3) fails local SAM auth with empty
    domain name; (bso#14247)
  + winbindd: Handling missing idmap in getgrgid(); (bso#14265).
  + lib:util: Log mkdir error on correct debug levels;
    (bso#14253).
  + wafsamba: Do not use 'rU' as the 'U' is deprecated in
    Python 3.9; (bso#14266).
  + ctdb-tcp: Make error handling for outbound connection
    consistent; (bso#14274).
- Update to samba 4.11.6
  + pygpo: Use correct method flags; (bso#14209).
  + vfs_ceph_snapshots: Fix root relative path handling;
    (bso#14216); (bsc#1141320).
  + Avoiding bad call flags with python 3.8, using METH_NOARGS
    instead of zero; (bso#14209).
  + source4/utils/oLschema2ldif: Include stdint.h before
    cmocka.h; (bso#14218).
  + docs-xml/winbindnssinfo: Clarify interaction with
    idmap_ad etc; (bso#14122).
  + smbd: Fix the build with clang; (bso#14251).
  + upgradedns: Ensure lmdb lock files linked; (bso#14199).
  + s3: VFS: glusterfs: Reset nlinks for symlink entries during
    readdir; (bso#14182).
  + smbc_stat() doesn't return the correct st_mode and also
    the uid/gid is not filled (SMBv1) file; (bso#14101).
  + librpc: Fix string length checking in
    ndr_pull_charset_to_null(); (bso#14219).
  + ctdb-scripts: Strip square brackets when gathering
    connection info; (bso#14227). - Add libnetapi-devel to baselibs conf, for wine usage; (bsc#1172307); - Installing: samba - samba-ad-dc.service does not exist and unit
  not found; (bsc#1171437); - Fix samba_winbind package is installing python3-base without
  python3 package; (bsc#1169521); - Require libldb2 >= 2.0.10 after security release. - CVE-2020-10704: LDAP Denial of Service (stack overflow) in
  Samba AD DC; (bso#14334); (bsc#1169851);
- CVE-2020-10700: Use-after-free in Samba AD DC LDAP Server with
  ASQ; (bso#14331); (bsc#1169850); - Fix smbclient crash with double free (with unresolved krb5
  credential cache); (bso#14344); (bsc#1169095). - Starting ctdb node that was powered off hard before results
  in recovery loop; (bso#14295); (bsc#1162680). - CTDB doesn't retry outgoing connections on bind (and some other)
  failures; (bso#14274); (bsc#1162680). - Revert: Allow idmap_rid to have primary group other than
  "Domain Users"; (bsc#1087931). - Fix nmbstatus not reporting detailed information about workgroups;
  (bsc#1159464);
- Fix querying all names registered within broadcast area; (bso#8927); - Update to samab 4.11.5
  + CVE-2019-14902: Replication of ACLs down subtree on
    AD Directory is not automatic; (bso#12497); (bsc#1160850).
  + CVE-2019-19344: Fix  server crash with
    dns zone scavenging = yes; (bso#14050); (bsc#1160852).
  + CVE-2019-14907: server-side crash after charset conversion
    failure (eg during NTLMSSP processing); (bso#14208);
    (bsc#1160888).
- Update to samba 4.11.4
  + Ensure SMB1 cli_qpathinfo2() doesn't return an inode number;
    (bso#14161).
  + Ensure we don't call cli_RNetShareEnum() on an SMB1
    connection; (bso#14174).
  + NT_STATUS_ACCESS_DENIED becomes EINVAL when using SMB2 in
    SMBC_opendir_ctx; (bso#14176).
  + SMB2 - Ensure we use the correct session_id if encrypting
    an interim response; (bso#14189).
  + Prevent smbd crash after invalid SMB1 negprot; (bso#14205).
  + printing: Fix %J substition; (bso#13745).
  + Remove now unneeded call to cmdline_messaging_context();
    (bso#13925).
  + Fix incomplete conversion of former parametric options;
    (bso#14069).
  + Fix sync dosmode fallback in async dosmode codepath;
    (bso#14070).
  + vfs_fruit returns capped resource fork length; (bso#14171).
  + libnet_join: Add SPNs for additional-dns-hostnames entries;
    (bso#14116).
  + smbd: Increase a debug level; (bso#14211).
  + Prevent azure ad connect from reporting discovery errors
    reference-value-not-ldap-conformant; (bso#14153).
  + krb5_plugin: Fix developer build with newer heimdal system
    library; (bso#14179).
  + replace: Only link libnsl and libsocket if required;
    (bso#14168);
  + ctdb: Incoming queue can be orphaned causing communication;
    breakdown; (bso#14175).
  + ldb: Release ldb 2.0.8. Cross-compile will not take
    cross-answers or cross-execute; (bso#13846).
  + heimdal-build: Avoid hard-coded /usr/include/heimdal in
    asn1_compile-generated code; (bso#13856). - Fix Ceph snapshot root relative path handling; (bso#14216); (bsc#1141320). - Update to samba 4.11.3
  + CVE-2019-14861: DNSServer RPC server crash, an authenticated user
    can crash the DCE/RPC DNS management server by creating records
    with matching the zone name; (bso#14138); (bsc#1158108).
  + CVE-2019-14870: DelegationNotAllowed not being enforced, the
    DelegationNotAllowed Kerberos feature restriction was not being
    applied when processing protocol transition requests (S4U2Self),
    in the AD DC KDC; (bso#14187); (bsc#1158109). -  CVE-2019-14861: DNSServer RPC server crash, an authenticated user
  can crash the DCE/RPC DNS management server by creating records
  with matching the zone name; (bso#14138); (bsc#1158108).
-  CVE-2019-14870: DelegationNotAllowed not being enforced, the
  DelegationNotAllowed Kerberos feature restriction was not being
  applied when processing protocol transition requests (S4U2Self),
  in the AD DC KDC; (bso#14187); (bsc#1158109). - Update to samba 4.11.2
  + CVE-2019-10218: Client code can return filenames containing
    path separators; (bsc#1144902); (bso#14071).
  + CVE-2019-14833: Samba AD DC check password script does not
    receive the full password; (bso#12438).
  + CVE-2019-14847: User with "get changes" permission can crash
    AD DC LDAP server via dirsync; (bso#14040).
- Fixes from 4.11.1
  + Overlinking libreplace against librt and pthread against every
    binary or library causes issues; (bso#14140);
  + kpasswd fails when built with MIT Kerberos; (bso#14155);
  + Fix spnego fallback from kerberos to ntlmssp in smbd server;
    (bso#14106);
  + Stale file handle error when using mkstemp on a share; (bso#14137);
  + non-AES schannel broken; (bso#14134);
  + Joining Active Directory should not use SAMR to set the password;
    (bso#13884);
  + smbclient can blunder into the SMB1 specific cli_RNetShareEnum()
    call on an SMB2 connection; (bso#14152);
  + Deleted records can be resurrected during recovery; (bso#14147);
  + getpwnam and getpwuid need to return data for ID_TYPE_BOTH group;
    (bso#14141);
  + winbind does not list forest trusts with additional trust
    attributes; (bso#14130);
  + fault report points to outdated documentation; (bso#14139);
  + pam_winbind with krb5_auth or wbinfo -K doesn't work for users of
    trusted domains/forests; (bso#14124);
  + classicupgrade results in uncaught exception - a bytes-like object
    is required, not 'str'; (bso#14136);
  + pod2man is not longer required, stop checking at build time;
    (bso#14131);
  + Exit code of ctdb nodestatus should not be influenced by deleted
    nodes; (bso#14129);
  + username/password authentication doesn't work with CUPS and
    smbspool; (bso#14128);
  + smbc_readdirplus() is incompatible with smbc_telldir() and
    smbc_lseekdir(); (bso#14094); - CVE-2019-14847: User with "get changes" permission can
  crash AD DC LDAP server via dirsync; (bso#14040); (bsc#1154598);
- CVE-2019-10218: Client code can return filenames containing path
  separators; (bso#14071); (bsc#1144902); - CVE-2019-14833: samba: Accent with "check script password"
  Samba AD DC check password script does not receive the full
  password; (bso#12438); (bsc#1154289). - Update to samba 4.11.0
  + For details on all items see WHATSNEW.txt in samba-doc
    package
  + Python2 runtime support removed; python 3.4 or later required
  + Security improvements:
  - SMB1 disabled by default
  - lanman and plaintext authentication deprecated
  - winbind: PAM_AUTH and NTLM_AUTH events logged
  - GnuTLS 3.2 required; system FIPS mode setting honored
  + CephFS Snapshot integration, exposed as previous file
    versions
  + ctdb changes:
  - onnode -o option removed
  - ctdbd logs when using more than 90% of a CPU thread
  - CTDB_MONITOR_SWAP_USAGE variable removed
  + AD Domain controller improvements:
  - Upgrade AD databse format
  - BIND9_FLATFILE deprecated
  - default process model chagned to prefork
  - bind9 dns operation duration logging
  - Default schema updated to 2012_R2; function level is
    unchanged
  - many performance improvements
  + Configuration webserver support removed - Fix broken username/password authentication with CUPS and
  smbspool; (bsc#1152143); (bso#14128). - Fix auth problems when printing via smbspool backend with kerberos;
  (bnc#1148539); (bso#13832). - Update to samba 4.10.8
  + CVE-2019-10197: user escape from share path definition;
    (bso#14035); (bsc#1141267); - Fix build on newer systems by modifying samba.spec to use
  consistent non-relative paths for pammodules in configure line
  and specification of pam_winbind.so library to package. - Update to samba 4.10.7
  + Unable to create or rename file/directory inside shares
    configured with vfs_glusterfs_fuse module; (bso#14010).
  + build: Allow build when '--disable-gnutls' is set; (bso#13844)
  + samba-tool: Add 'import samba.drs_utils' to fsmo.py;
    (bso#13973).
  + Fix 'Error 32 determining PSOs in system' message on old DB
    with FL upgrade; (bso#14008).
  + s4/libnet: Fix joining a Windows pre-2008R2 DC; (bso#14021)
  + join: Use a specific attribute order for the DsAddEntry
    nTDSDSA object; (bso#14046).
  + vfs_catia: Pass stat info to synthetic_smb_fname();
    (bso#14015).
  + lookup_name: Allow own domain lookup when flags == 0;
    (bso#14091).
  + s4 librpc rpc pyrpc: Ensure tevent_context deleted last;
    (bso#13932).
  + DEBUGC and DEBUGADDC doesn't print into a class specific log
    file; (bso#13915).
  + Request to keep deprecated option "server schannel",
    VMWare Quickprep requires "auto"; (bso#13949).
  + dbcheck: Fallback to the default tombstoneLifetime of 180 days;
    (bso#13967).
  + dnsProperty fails to decode values from older Windows versions;
    (bso#13969).
  + samba-tool: Use only one LDAP modify for dns partition fsmo
    role transfer; (bso#13973).
  + third_party: Update waf to version 2.0.17; (bso#13960).
  + netcmd: Allow 'drs replicate --local' to create partitions;
    (bso#14051).
  + ctdb-config: Depend on /etc/ctdb/nodes file; (bso#14017). - CVE-2019-10197: user escape from share path definition;
  (bso#14035); (bsc#1141267). - Prepare for use future use of kernel keyrings, modify
  /etc/pam.d/samba to include  pam_keyinit.so; (bsc#1144059). - Update samba-winbind script to work with systemd; (bsc#1132739);
- Drop samba dhcpcd hook scripts
- Update to samba 4.10.6
  + s3: winbind: Fix crash when invoking winbind idmap scripts;
    (bso#13956).
  + smbd does not correctly parse arguments passed to dfree and quota
    scripts; (bso#13964).
  + samba-tool dns: use bytes for inet_ntop; (bso#13965).
  + samba-tool domain provision: Fix --interactive module in python3;
    (bso#13828).
  + ldb_kv: Skip @ records early in a search full scan; (bso#13893).
  + docs: Improve documentation of "lanman auth" and "ntlm auth"
    connection; (bso#13981).
  + python/ntacls: Use correct "state directory" smb.conf option instead
    of "state dir"; (bso#14002).
  + registry: Add a missing include; (bso#13840).
  + Fix SMB guest authentication; (bso#13944).
  + AppleDouble conversion breaks Resourceforks; (bso#13958).
  + vfs_fruit makes direct use of syscalls like mmap() and pread();
    (bso#13968).
  + s3:mdssvc: Fix flex compilation error; (bso#13987).
  + s3/vfs_glusterfs[_fuse]: Avoid using NAME_MAX directly; (bso#13872).
  + dsdb:samdb: schemainfo update with relax control; (bso#13799).
  + s3:util: Move static file_pload() function to lib/util; (bso#13964).
  + smbd: Fix a panic; (bso#13957).
  + ldap server: Generate correct referral schemes; (bso#12478).
  + s4 dsdb/repl_meta_data: fix use after free in dsdb_audit_add_ldb_value;
    (bso#13941).
  + s4 dsdb: Fix use after free in samldb_rename_search_base_callback;
    (bso#13942).
  + dsdb/repl: we need to replicate the whole schema before we can apply it;
    (bso#12204).
  + ldb: Release ldb 1.5.5; (bso#12478).
  + Schema replication fails if link crosses chunk boundary backwards;
    (bso#13713).
  + 'samba-tool domain schemaupgrade' uses relax control and skips the
    schemaInfo update provision; (bso#13799).
  + dsdb_audit: avoid printing "... remote host [Unknown] SID [(NULL SID)]
    ..."; (bso#13916).
  + python/ntacls: We only need security.SEC_STD_READ_CONTROL in order to
    get the ACL; (bso#13917).
  + s3:loadparm: Ensure to truncate FS Volume Label at multibyte boundary;
    (bso#13947).
  + Using Kerberos credentials to print using spoolss doesn't work;
    (bso#13939).
  + wafsamba: Use native waf timer; (bso#13998).
  + ctdb-scripts: Fix tcp_tw_recycle existence check; (bso#13984). - Update to samba-4.10.5 (including updates for 4.10.4, 4.10.3)
  + CVE-2019-12435 rpc/dns: Avoid NULL deference if zone not found
    in DnssrvOperation2; (bso#13922); (bsc#1137815).
  + CVE-2019-12436 dsdb/paged_results: Ignore successful results
    without messages; (bso#13951); (bsc#1137816).
- Update to samba-4.10.4
  + s3: SMB1: Don't allow recvfile on stream fsp's; (bso#13938).
  + py/provision: Fix for Python 2.6; (bso#13882).
  + netcmd: Fix 'passwordsettings --max-pwd-age' command;
    (bso#13873).
  + s3-libnet_join: 'net ads join' to child domain fails when
    using "-U admin@forestroot"; (bso#13861).
  + vfs_ceph: Explicitly enable libcephfs POSIX ACL support;
    (bso#13896); (bsc#1130245).
  + vfs_ceph: Fix cephwrap_flistxattr() debug message;
    (bso#13940); (bsc#1134697).
  + ctdb-common: Avoid race between fd and signal events;
    (bso#13895).
  + ctdb-common: Fix memory leak in run_proc; (bso#13943).
  + lib: Initialize getline() arguments; (bso#13892).
  + winbind: Fix overlapping id ranges; (bco#13903).
  + lib util debug: Increase format buffer to 4KiB; (bso#13902).
  + nsswitch pam_winbind: Fix Asan use after free; (bso#13927).
  + s4 lib socket: Ensure address string owned by parent struct;
    (bso#13929).
  + s3 rpc_client: Fix Asan stack use after scope; (bso#13936).
  + s3:smbd: Handle IO_REPARSE_TAG_DFS in
    SMB_FIND_FILE_FULL_DIRECTORY_INFO; (bso#10097).
  + smb2_tcon: Avoid STATUS_PENDING completely on tdis; (bso#10344).
  + smb2_sesssetup: avoid STATUS_PENDING responses for session setup;
    (bso#12845).
  + smb2_tcon: Avoid STATUS_PENDING completely on tdis; (bso#13698).
  + smb2_sesssetup: avoid STATUS_PENDING responses for session
    setup; (bso#13796).
  + dbcheck: Fix the err_empty_attribute() check; (bso#13843).
  + vfs_snapper: Drop unneeded fstat handler; (bso#13858).
  + vfs_default: Fix vfswrap_offload_write_send()
    NT_STATUS_INVALID_VIEW_SIZE check; (bso#13862).
  + smb2_server: Grant all 8192 credits to clients; (bso#13863).
  + smbd: Implement SMB_FILE_NORMALIZED_NAME_INFORMATION handling;
    (bso#13919).
  + s3/vfs_glusterfs: Dynamically determine NAME_MAX; (bso#13872).
  + s3: modules: ceph: Use current working directory instead of
    share path; (bso#13918); (bsc#1134452).
  + winbind: Use domain name from lsa query for sid_to_name cache
    entry; (bso#13831).
  + memcache: Increase size of default memcache to 512k;
    (bso#13865).
  + docs: Update smbclient manpage for "--max-protocol";
    (bso#13857).
  + s3:utils: If share is NULL in smbcacls, don't print it;
    (bso#13937).
  + s3:smbspool: Fix regression printing with Kerberos credentials;
    (bso#13939).
  + ctdb-scripts: CTDB restarts failed NFS RPC services by hand,
    which is incompatible with systemd; (bso#13860).
  + ctdb-daemon: Revert "We can not assume that just because we
    could complete a TCP handshake"; (bso#13888).
  + ctdb-daemon: Never use 0 as a client ID; (bso#13930).
  + ctdb-common: Fix memory leak; (bso#13943).
  + s3:debug: Enable logging for early startup failures;
    (bso#13904)
- Update to samba-4.10.3
  + CVE-2018-16860: Heimdal KDC: Reject PA-S4U2Self with unkeyed
    checksum; (bso#13685); (bsc#1134024). - CVE-2019-12435: zone operations can crash rpc server;
  (bso#13922); (bsc#1137815). - Fix cephwrap_flistxattr() debug message; (bso#13940); (bsc#1134697).
- Add ceph_snapshots VFS module; (jsc#SES-183). - Fix vfs_ceph realpath; (bso#13918); (bsc#1134452). - Update to samba-4.10.2:
  + CVE-2019-3870 (World writable files in
    Samba AD DC private/ dir); (bso#13834).
  + CVE-2019-3880 (Save registry file outside share as
    unprivileged user); (bso#13851).
  + py/kcc_utils: py2.6 compatibility; (bso#13837).
  + libcli: permit larger values of DataLength in
    SMB2_ENCRYPTION_CAPABILITIES of negotiate response;
    (bso#13869).
  + regfio: Improve handling of malformed registry hive files;
    (bso#13840).
  + ctdb-version: Simplify version string usage; (bso#13789).
  + lib: Make fd_load work for non-regular files; (bso#13859).
  + dbcheck: in the middle of the tombstone garbage collection
    causes replication failures,
    dbcheck: add --selftest-check-expired-tombstones cmdline
    option; (bso#13816).
  + ndr_spoolss_buf: Fix out of scope use of stack variable in
    NDR_SPOOLSS_PUSH_ENUM_OUT(); (bso#13818).
  + s4/messaging: Fix undefined reference in linking
    libMESSAGING-samba4.so; (bso#13854).
  + acl_read: Fix regression for empty lists; (bso#13836).
  + s4:dlz make b9_has_soa check dc=@ node; (bso#13841).
  + s3:client: Fix printing via smbspool backend with kerberos
    auth; (bso#13832).
  + s4:librpc: Fix installation of Samba; (bso#13847).
  + s3:lib: Fix the debug message for adding cache entries;
    (bso#13848).
  + s3:utils: Add 'smbstatus -L --resolve-uids' to show username;
    (bso#13793).
  + s3:lib: Fix the debug message for adding cache entries;
    (bso#13848).
  + s3:waf: Fix the detection of makdev() macro on Linux;
    (bso#13853).
  * ctdb-build: Drop creation of .distversion in tarball;
    (bso#13789).
  * ctdb-packaging: Test package requires tcpdump, ctdb package
    should not own system library directory;  (bso#13838).
- Update to samba-4.10.1:
  + py/kcc_utils: py2.6 compatibility; (bso#13837);
  + libcli: permit larger values of DataLength in
    SMB2_ENCRYPTION_CAPABILITIES of negotiate response; (bso#13869);
  + regfio: Improve handling of malformed registry hive files; (bso#13840);
  + ctdb-version: Simplify version string usage; (bso#13789);
  + lib: Make fd_load work for non-regular files; (bso#13859);
  + dbcheck in the middle of the tombstone garbage collection causes
    replication failures, dbcheck: add --selftest-check-expired-tombstones
    cmdline option; (bso#13816);
  + ndr_spoolss_buf: Fix out of scope use of stack variable in
    NDR_SPOOLSS_PUSH_ENUM_OUT(); (bso#13818);
  + s4/messaging: Fix undefined reference in linking
    libMESSAGING-samba4.so; (bso#13854);
  + acl_read: Fix regression for empty lists; (bso#13836);
  + s4:dlz make b9_has_soa check dc=@ node; (bso#13841);
  + s3:client: Fix printing via smbspool backend with kerberos auth; (bso#13832);
  + s4:librpc: Fix installation of Samba; (bso#13847);
  + s3:lib: Fix the debug message for adding cache entries; (bso#13848);
  + s3:utils: Add 'smbstatus -L --resolve-uids' to show username; (bso#13793);
  + s3:lib: Fix the debug message for adding cache entries; (bso#13848);
  + s3:waf: Fix the detection of makdev() macro on Linux; (bso#13853);
  + ctdb-build: Drop creation of .distversion in tarball; (bso#13789);
  + ctdb-packaging: Test package requires tcpdump, ctdb package
    should not own system library directory; (bso#13838);
- Update to samba-4.10.0:
  + s4-server: Open and close a transaction on sam.ldb at startup; (bso#13760);
  + access_check_max_allowed() doesn't process "Owner Rights" ACEs; (bso#13812);
  + s4/scripting/bin: Open unicode files with utf8 encoding and write
  + unicode string.
  + sambaundoguididx: Use the right escaped oder unescaped sam ldb
    files; (bso#13759);
  + Fix idmap cache pollution with S-1-22- IDs on winbind hickup; (bso#13813);
  + passdb: Update ABI to 0.27.2.
  + lib/winbind_util: Add winbind_xid_to_sid for --without-winbind; (bso#13813);
  + lib:util: Move debug message for mkdir failing to log level 1; (bso#13823); - MacOS credit accounting breaks with async SESSION SETUP;
  (bsc#1125601); (bso#13796).
- Mac OS X SMB2 implmenetation sees Input/output error or Resource
  temporarily unavailable and drops connection; (bso#13698) - Explicitly enable libcephfs POSIX ACL support; (bso#13896); (bsc#1130245). - CVE-2019-3880: Save registry file outside share as unprivileged
  user; (bso#13851); (bsc#1131060 ). - CVE-2019-3870 pysmbd: missing restoration of original umask after umask(0);
  (bso#13834); (bsc#1130703); - Update to samba-4.9.5
  + audit_logging: Remove debug log header and JSON Authentication:
    prefix; (bso#13714);
  + Fix upgrade from 4.7 (or earlier) to 4.9; (bso#13760);
  + s3: lib: nmbname: Ensure we limit the NetBIOS name correctly; (bso#
    CID: 1433607; (bso#11495);
  + smbd: uid: Don't crash if 'force group' is added to an existing
    share connection; (bso#13690);
  + s3: VFS: vfs_fruit. Fix the NetAtalk deny mode compatibility
    code; (bso#13770);
  + s3: SMB1 POSIX mkdir does case insensitive name lookup; (bso#13803);
  + s3:utils/smbget fix recursive download with empty source
    directories; (bso#13199);
  + samba-tool drs showrepl: Do not crash if no dnsHostName found; (bso#13716);
  + s3:libsmb: cli_smb2_list() can sometimes fail initially on a
    connection; (bso#13736);
  + join: Throw CommandError instead of Exception for simple errors; (bso#13747);
  + ldb: Avoid inefficient one-level searches; (bso#13762);
  + s3: libsmb: use smb2cli_conn_max_trans_size() in
    cli_smb2_list(); (bso#13736);
  + tldap: Avoid use after free errors; (bso#13776);
  + Fix idmap xid2sid cache churn; (bso#13802);
  + access_check_max_allowed() doesn't process "Owner Rights" ACEs; (bso#13812);
  + s3-smbd: Avoid assuming fsp is always intact after close_file
    call; (bso#13720);
  + s3-vfs-fruit: Add close call; (bso#13725);
  + s3-smbd: Use fruit:model string for mDNS registration; (bso#13746);
  + s3-vfs: add glusterfs_fuse vfs module; (bso#13774);
  + printing: Check lp_load_printers() prior to pcap cache update; (bso#13766);
  + vfs_ceph: vfs_ceph strict_allocate_ftruncate calls (local FS)
    ftruncate and fallocate; (bso#13807);
  + lib/audit_logging: Actually create talloc; (bso#13737);
  + netcmd/user: python[3]-gpgme unsupported and replaced by
    python[3]-gpg; (bso#13728);
  + dns: Changing onelevel search for wildcard to subtree; (bso#13738);
  + samba-tool: Don't print backtrace on simple DNS errors; (bso#13721);
  + sambaundoguididx: Use the right escaped oder unescaped sam ldb
    files; (bso#13759);
  + ctdb: Print locks latency in machinereadable stats; (bso#13742);
  + messages_dgm: Messaging gets stuck when pids are recycled; (bso#13786);
  + audit_logging: auth_json_audit required auth_json; (bso#13715);
  + man pages: Document prefork process model; (bso#13765);
  + CVE-2019-3824 ldb: Release ldb 1.4.6; (bso#13773);
  + s3:auth: ignore create_builtin_guests() failing without a valid
    idmap configuration; (bso#13697);
  + s3:auth_winbind: Ignore a missing winbindd as NT4 PDC/BDC
    without trusts; (bso#13722);
  + s3:auth_winbind: return NT_STATUS_NO_LOGON_SERVERS if winbindd
    is not available; (bso#13723);
  + s4:server: Add support for 'smbcontrol samba shutdown' and
    'smbcontrol <pid> debug/debuglevel'; (bso#13752);
  + Python: Ensure ldb.Dn can doesn't rencoded str with py2; (bso#13616);
  + vfs_glusterfs: Adapt to changes in libgfapi signatures; (bso#13330);
  + s3-vfs: Use ENOATTR in errno comparison for getxattr; (bso#13774);
  + notifyd: Fix SIGBUS on sparc; (bso#13704);
  + waf: Check for libnscd; (bso#13787);
  + s3:vfs: Correctly check if OFD locks should be enabled or not; (bso#13770);
  + lib/util: Count a trailing line that doesn't end in a newline; (bso#13717);
  + Recovery lock bug fixes; (bso#13800);
  + s3: net: Do not set NET_FLAGS_ANONYMOUS with -k; (bso#13726);
  + s3:libsmb: Honor disable_netbios option in smbsock_connect_send; (bso#13727);
  + vfs_fileid: Fix get_connectpath_ino; (bso#13741);
  + vfs_fileid: Fix fsname_norootdir algorithm; (bso#13744); - Fix vfs_ceph ftruncate and fallocate handling; (bso#13807); (bsc#1127153). - Fix update-apparmor-samba-profile script after apparmor switched
  to using named profiles. The change is backwards compatible;
  (bsc#1126377); - LoadParm().load_default() fails with "Unable to load default file";
  (bsc#1089758); - Abide by load_printers smb.conf parameter; (bso#13766); (bsc#1124223); - Update to samba-4.9.4
  + libcli/smb: Don't overwrite status code; (bso#9175).
  + wbinfo --group-info 'NT AUTHORITY\System' does not work; (bso#12164).
  + Session setup reauth fails to sign response; (bso#13661).
  + vfs_fruit: Validation of writes on AFP_AfpInfo stream; (bso#13677).
  + vfs_shadow_copy2: Nicely deal with attempts to open previous
    version for writing; (bso#13688).
  + Restoring previous version of stream with vfs_shadow_copy2 fails
    with NT_STATUS_OBJECT_NAME_INVALID fsp->base_fsp->fsp_name; (bso#13455).
  + CVE-2018-16853: Fix S4U2Self crash with MIT KDC build; (bso#13571).
  + s3-vfs: Prevent NULL pointer dereference in vfs_glusterfs; (bso#13708)
  + PEP8: fix E231: missing whitespace after ','.
  + winbindd: Fix crash when taking profiles;(bso#13629)
  + CVE-2018-14629 dns: Fix CNAME loop prevention using counter
    regression; (bso#13600)
  + 'samba-tool user syscpasswords' fails on a domain with many DCs; (bso#13686).
  + CVE-2018-16853: Do not segfault if client is not set; (bso#13571).
  + lib:util: Fix DEBUGCLASS pointer initializiation; (bso#13679)
  + ctdb-daemon: Exit with error if a database directory does not
    exist; (bso#13696).
  + s3:libads: Add net ads leave keep-account option; (bso#13498). - Drop more %if..%endif guards which are idempotent.
- Drop requires on ldconfig which are already auto-discovered.
- Do not ignore errors from useradd/groupadd. - Remove python2 build dependency from samba-libs; (bsc#1116900); - Update update-apparmor-samba-profile script to ignore the shares's
  paths containing substitution variables in any place, not only at the
  beginning of the path. - Update to samba-4.9.3
  + CVE-2018-14629: Unprivileged adding of CNAME record causing loop in AD
    Internal DNS server; (bso#13600); (bsc#1116319);
  + CVE-2018-16841: Double-free in Samba AD DC KDC with PKINIT; (bso#13628);
    (bsc#1116320);
  + CVE-2018-16851: NULL pointer de-reference in Samba AD DC LDAP server;
    (bso#13674); (bsc#1116322);
  + CVE-2018-16852: NULL pointer de-reference in Samba AD DC DNS servers;
    (bso#13669); (bsc#1116321);
  + CVE-2018-16853: Samba AD DC S4U2Self crash in experimental MIT Kerberos
    configuration (unsupported); (bso#13678); (bsc#1116324);
  + CVE-2018-16857: Bad password count in AD DC not always effective;
    window; (bso#13683); (bsc#1116323); - Update to samba-4.9.2
  + dsdb: Add comments explaining the limitations of our current backlink
    behaviour; (bso#13418);
  + Fix problems running domain backups (handling SMBv2, sites); (bso#13621);
  + testparm: Fix crashes with PANIC: Messaging not initialized on SLES 12 SP3;
    (bso#13465);
  + Make vfs_fruit able to cleanup AppleDouble files; (bso#13642);
  + File saving issues with vfs_fruit on samba >= 4.8.5; (bso#13646);
  + Enabling vfs_fruit looses FinderInfo; (bso#13649);
  + Cancelling of SMB2 aio reads and writes returns wrong error
    NT_STATUS_INTERNAL_ERROR; (bso#13667);
  + Fix CTDB recovery record resurrection from inactive nodes and simplify
    vacuuming; (bso#13641);
  + examples: Fix the smb2mount build; (bso#13465);
  + libtevent: Fix build due to missing open_memstream on Illiumos;
    (bso#13629);
  + winbindd_cache: Fix timeout calculation for sid<->name cache; (bso#13662);
  + dsdb encrypted_secrets: Allow "ldb:// and "mdb://" in file path;
    (bso#13653);
  + Extended DN SID component missing for member after switching group
    membership; (bso#13418);
  + Return STATUS_SESSION_EXPIRED error encrypted, if the request was
    encrypted; (bso#13624);
  + python: Allow forced signing via smb.SMB(); (bso#13621);
  + lib:socket: If returning early, set ifaces; (bso#13665);
  + ldb: Bump ldb version to 1.4.3, Python: Ensure ldb.Dn can accept utf8
    encoded unicode; (bso#13616);
  + smbd: Fix DELETE_ON_CLOSE behaviour on files with READ_ONLY attribute;
    (bso#13673);
  + waf: Add -fstack-clash-protection; (bso#13601);
  + winbind: Fix segfault if an invalid passdb backend is configured;
    (bso#13668);
  + Fix bugs in CTDB event handling; (bso#13659);
  + Misbehaving nodes are sometimes not banned; (bso#13670); - lib:socket: If returning early, set ifaces; (bso#13665); (bsc#1111373); - winbind requires latest version of libtevent-util0 to start - Backport latest gpo code from master
  + Read policy from local gpt cache
  + Offline policy application
  + Make group policy extensible via register/unregister gpext
  + gpext's run via a process_group_policy method - Enable profiling data collection - Change samba-kdc package name to samba-ad-dc
- Move samba-ad-dc.service to the samba-ad-dc package - Update to samba-4.9.1
  + s3: nmbd: Stop nmbd network announce storm; (bso#13620);
  + s3-rpcclient: Use spoolss_init_spoolss_UserLevel1 in winspool cmds;
    (bso#13597);
  + CTDB recovery lock has some race conditions; (bso#13617);
  + s3-rpc_client: Advertise Windows 7 client info; (bso#13597);
  + ctdb-doc: Remove PIDFILE option from ctdbd_wrapper man page; (bso#13610); - Tumbleweed doesn't define the sle_version macro, so we must
  include a check for suse_version also. Otherwise python3 is
  disabled on Tumbleweed. - Update to samba-4.9.0
  + samba_dnsupdate: Honor 'dns zone scavenging' option, only update if
    needed; (bso#13605);
  + wafsamba: Fix 'make -j<jobs>'; (bso#13606); - Update to samba-4.9.0rc5
  + s3: VFS: vfs_full_audit: Ensure smb_fname_str_do_log() only
    returns absolute pathnames; (bso#13565);
  + s3: util: Do not take over stderr when there is no log file; (bso#13578);
  + Durable Reconnect fails because cookie.allow_reconnect is not
    set; (bso#13549);
  + krb5-samba: Interdomain trust uses different salt principal; (bso#13539);
  + vfs_fruit: Don't unlink the main file; (bso#13441);
  + smbd: Fix a memleak in async search ask sharemode; (bso#13602);
  + Fix Samba GPO issue when Trust is enabled; (bso#11517);
  + samba-tool: Add "virtualKerberosSalt" attribute to
    'user getpassword/syncpasswords'; (bso#13539);
  + Fix CTDB configuration issues; (bso#13589);
  + ctdbd logs an error until it can successfully connect to
    eventd; (bso#13592); - Update to samba-4.9.0rc4
  + s3: smbd: Ensure get_real_filename() copes with empty
    pathnames; (bso#13585);
  + samba domain backup online/rename commands force user to specify
    password on CLI; (bso#13566);
  + wafsamba/samba_abi: Always hide ABI symbols which must be
    local; (bso#13579);
  + Fix a panic if fruit_access_check detects a locking conflict; (bso#13584);
  + Fix memory and resource leaks; (bso#13567);
  + python: Fix print in dns_invalid.py; (bso#13580);
  + Aliasing issue causes incorrect IPv6 checksum; (bso#13588);
  + Fix CTDB configuration issues; (bso#13589);
  + s3: vfs: time_audit: fix handling of token_blob in
    smb_time_audit_offload_read_recv(); (bso#13568); - Add missing zlib-devel dependency which was previously pulled in
  by libopenssl-devel - Update to samba-4.9.0rc3+git.22.3fff23ae36e
  + CVE-2018-10858: libsmb: Harden smbc_readdir_internal() against
    returns from malicious servers; (bso#13453);
  + CVE-2018-1140: ldbsearch '(distinguishedName=abc)' and DNS query
    with escapes crashes, ldb: Release LDB 1.3.5 for CVE-2018-1140; (bso#13374);
  + CVE-2018-10918: cracknames: Fix DoS (NULL pointer de-ref) when
    not servicePrincipalName is set on a user; (bso#13552);
  + CVE-2018-10919: acl_read: Fix unauthorized attribute access via
    searches; (bso#13434);
  + ctdb_mutex_ceph_rados_helper: Set SIGINT signal handler; (bso#13540);
  + CVE-2018-1139 libcli/auth: Do not allow ntlmv1 over SMB1 when it
    is disabled via "ntlm auth"; (bso#13360);
  + s3-tldap: do not install test_tldap; (bso#13529);
  + ctdb_mutex_ceph_rados_helper: Fix deadlock via lock renewals; (bso#13540);
  + CVE-2018-1140 Add NULL check for ldb_dn_get_casefold() in
    ltdb_index_dn_attr(); (bso#13374);
  + ctdb-eventd: Fix CID 1438155; (bso#13554);
  + Fix CIDs 1438243, (Unchecked return value) 1438244
    (Unsigned compared against 0), 1438245 (Dereference before null check) and
    1438246 (Unchecked return value); (bso#13553);
  + ctdb: Fix a cut&paste error; (bso#13554);
  + systemd: Only start smb when network interfaces are up; (bso#13559);
  + Fix quotas don't work with SMB2; (bso#13553);
  + s3/smbd: Ensure quota code is only called when quota support
    detected; (bso#13563);
  + s3/libsmb: Explicitly set delete_on_close token for rmdir; (bso#13204);
  + s3:waf: Install eventlogadm to /usr/sbin; (bso#13561);
  + Shorten description in vfs_linux_xfs_sgid manual; (bso#13562); - Update to samba-4.9.0rc2+git.21.a1069afb007
  + s3: smbd:  Using "sendfile = yes" with SMB2 can cause CPU spin; (bso#13537);
  + s3: smbd: Fix path check in smbd_smb2_create_durable_lease_check();
    (bso#13535);
  + samba-tool trust: Support discovery via netr_GetDcName; (bso#13538);
  + s4-dsdb: Only build dsdb Python modules for AD DC; (bso#13542);
  + Fix portability issues on freebsd; (bso#13520);
  + DNS wildcard search does not handle multiple labels correctly; (bso#13536);
  + samba-tool domain trust: Fix trust compatibility to Windows
    Server 1709 and FreeIPA; (bso#13308);
  + Fix portability issues on freebsd; (bso#13520);
  + ctdb-protocol: Fix CTDB compilation issues; (bso#13545);
  + ctdb-docs: Replace obsolete reference to CTDB_DEBUG_HUNG_SCRIPT
    option; (bso#13546);
  + ctdb-doc: Provide an example script for migrating old
    configuration; (bso#13550);
  + ctdb-event: Implement event tool "script list" command; (bso#13551); - Update to samba-4.8.4+git.37.a7a861d7982;
  + CVE-2018-1139:  Weak authentication protocol allowed;
    (bsc#1095048); (bsc#13360);
  + CVE-2018-1140:  Denial of Service Attack on DNS and LDAP server;
    (bsc#1095056); (bso#13466); (bso#13374);
  + CVE-2018-10858: Insufficient input validation on client directory
    listing in libsmbclient; (bsc#1103411); (bso#13453);
  + CVE-2018-10918: Denial of Service Attack on AD DC DRSUAPI server;
    (bsc#1103414); (bso#13552);
  + CVE-2018-10919: Confidential attribute disclosure from the AD
    LDAP server; (bsc#1095057); (bso#13434);
  + s3:winbind: winbind normalize names' doesn't work for users;
    (bso#12851);
  + winbind: Fix UPN handling in canonicalize_username(); (bso#13369);
  + s3: smbd: Fix SMB2-FLUSH against directories; (bso#13428);
  + samdb: Fix building Samba with gcc 8.1; (bso#13437);
  + s3:utils: Do not segfault on error in DoDNSUpdate();  (bso#13440);
  + smbd: Flush dfree memcache on service reload; (bso#13446);
  + ldb: Save a copy of the index result before calling the
  + lib/util: No Backtrace given by Samba's AD DC by default;
    (bso#13454).
  + s3: smbd: printing: Re-implement delete-on-close semantics for
    print files missing since 3.5.x; (bso#13457).
  + python: Fix talloc frame use in make_simple_acl(); (bso#13474).
  + krb5_wrap: Fix keep_old_entries logic for older Kerberos
    libraries;(bso#13478).
  + krb5_plugin: Add winbind localauth plugin for MIT Kerberos;
    (bso#13480). - Add missing package descriptions; (bsc#1093864);
- Fix dependency issue between samba-python and samba-kdc; (bsc#1062876);
- Call update-apparmor-samba-profile when running samba-ad-dc;
  (bsc#1092099); - Update to 4.8.2
  + After update to 4.8.0 DC failed with "Failed to find our own
    NTDS Settings objectGUID" (bso#13335).
  + fix incorrect reporting of stream dos  attributes on a
    directory (bso#13380).
  + vfs_ceph: add asynchronous fsync; fake synchronous call (bso#13412).
  + vfs_ceph: add fake async pwrite/pread send/recv hooks; (bso#13425)
  + vfs_ceph: Fix memory leak; (bso#13424).
  + libsmbclient: Fix hard-coded connection error return of
    ETIMEDOUT; (bso#13419).
  + s4-lsa: Fix use-after-free in LSA server; (bso#13420).
  + winbindd: Do re-connect if the RPC call fails in the passdb
    case; (bso#13430).
  + cleanupd: Sends MSG_SMB_UNLOCK twice to interested peers; (bso#13416).
  + cleanupd: Use MSG_SMB_BRL_VALIDATE to signal cleanupd
    unclean process shutdown; (bso#13414).
  + ctdb-client: Remove ununsed functions from old client code;
    (bso#13411).
  + printing: Return the same error code as windows does on upload
    failures; (bso#13395).
  + nsswitch: Fix memory leak in winbind_open_pipe_sock() when the
    privileged pipe is not accessable; (bso#13400).
  + s4:lsa_lookup: remove TALLOC_FREE(state) after all
    dcesrv_lsa_Lookup{Names,Sids}_base_map() calls; (bso#13420).
  + rpc_server: Fix NetSessEnum with stale sessions; (bso#13407).
  + s3:smbspool: Fix cmdline argument handling; (bso#13417). - Move libdfs-server-ad-samba4.so library from kdc to libs package, as it is
  required by some client libs; (bsc#1074135);
- Update to 4.8.1; (bsc#1091179);
  + s3: ldap: Ensure the ADS_STRUCT pointer doesn't get freed on error,
    we don't own it here; (bso#13244);
  + s3: smbd: Fix possible directory fd leak if the underlying OS doesn't
    support fdopendir(); (bso#13270);
  + Round-tripping ACL get/set through vfs_fruit will increase the number of
    ACE entries without limit; (bso#13319);
  + s3: smbd: SMB2: Add DBGC_SMB2_CREDITS class to specifically debug credit
    issues; (bso#13347);
  + s3: smbd: Files or directories can't be opened DELETE_ON_CLOSE without
    delete access; (bso#13358);
  + s3: smbd: Fix memory leak in vfswrap_getwd(); (bso#13372);
  + s3: smbd: Unix extensions attempts to change wrong field in fchown call;
    (bso#13375);
  + ms_schema/samba-tool visualize: Fix python2.6 incompatibility;
    (bso#13337);
  + Fix invocation of gnutls_aead_cipher_encrypt(); (bso#13352);
  + Windows 10 cannot logon on Samba NT4 domain; (bso#13328);
  + winbindd: Recover loss of netlogon secure channel in case the peer DC is
    rebooted; (bso#13332);
  + s3:smbd: Don't use the directory cache for SMB2/3; (bso#13363);
  + ctdb-client: Fix bugs in client code; (bso#13356);
  + ctdb-scripts: Drop "net serverid wipe" from 50.samba event script;
    (bso#13359);
  + s3: lib: messages: Don't use the result of sec_init() before calling
    sec_init(); (bso#13368);
  + libads: Fix the build '--without-ads'; (bso#13273);
  + winbind: Keep "force_reauth" in invalidate_cm_connection, add
    'smbcontrol disconnect-dc'; (bso#13332);
  + vfs_virusfilter: Fix CIDs 1428738-1428740; (bso#13343);
  + dsdb: Fix CID 1034966 Uninitialized scalar variable; (bso#13367);
  + rpc_server: Fix core dump in dfsgetinfo; (bso#13370);
  + smbclient: Fix notify; (bso#13382);
  + Fix smbd panic if the client-supplied channel sequence number wraps;
    (bso#13215);
  + Windows 10 cannot logon on Samba NT4 domain; (bso#13328);
  + lib/util: Remove unused '#include <sys/syscall.h>' from tests/tfork.c;
    (bso#13342);
  + Fix build errors with cc from developerstudio 12.5 on Solaris;
    (bso#13343);
  + Fix the picky-developer build on FreeBSD 11; (bso#13344);
  + s3:modules: Fix the build of vfs_aixacl2.c; (bso#13345);
  + s3:smbd: map nterror on smb2_flush errorpath; (bso#13338);
  + lib:replace: Fix linking when libtirpc-devel overwrites system headers;
    (bso#13341);
  + winbindd: 'wbinfo --name-to-sid' returns misleading result on invalid
    query; (bso#13312);
  + s3:passdb: Do not return OK if we don't have pinfo set up; (bso#13376);
  + Allow AESNI to be used on all processor supporting AESNI; (bso#13302); - Use new foreground execution flags for systemd samba daemons;
  (bsc#1088574); (bsc#1071090); (bsc#1065551);
  + Add %post scriptlet to clear old sysconfig flags
- Update vendor-files to commit 880b3e7.
  + Set samba sysconfig template variables to ""
  + Add required daemon flags directly to systemd unit - Specfile cleanup
  + Remove %if..%endif guards which don't affect the build
  + Remove redundant %clean section
  + Replace old $RPM_* shell vars with macros - BuildRequire pkgconfig(systemd) and pkgconfig(libsystemd) in
  place of systemd and systemd-devel: Allow OBS to optimize the
  workload by allowing the usage of the 'build-optimized' systemd
  packages. - Enable building samba with python3, and create a samba-python3 package. - Update to 4.8
  + New GUID Index mode in sam.ldb for the AD DC
  + GPO support for samba KDC
  + Time machine support with vfs_fruit
  + Encrypted secrets
  + AD Replication visualization
  + Improved trust support
  - ability to not scan global trust list
  - AD external trusts have limited support
  - verbose trusted domain listing
  + VirusFilter VFS module
  + NT4-style replication removed
  + vfs_aio_linux removed - Disable samba-pidl package, due to the removal of dependency
  perl-Parse-Yapp; (bsc#1085150); - Update to 4.7.6;
  + CVE-2018-1050: DOS vulnerability when SPOOLSS is run externally;
    (bso#11343); (bsc#1081741);
  + CVE-2018-1057: Authenticated users can change other users' password;
    (bso#13272); (bsc#1081024). - Disable python until full python3 port is done; (bsc#1082139);
  + Remove contents of package samba-python
  + Remove contents of package libsamba-policy0
  + Remove contents of package libsamba-policy-devel
  + Remove library libsamba-python-samba4.so from samba-libs package
  + Remove library libsamba-net-samba4.so from samba-libs package
  + Remove smbtorture binary and manpage from samba-test - samba fails to build with glibc2.27; (bsc#1081042); - Update to 4.7.5; (bsc#1080545);
  + smbd tries to release not leased oplock during oplock II downgrade;
    (bso#13193);
  + Fix copying file with empty FinderInfo from Windows client to Samba share
    with fruit; (bso#13181);
  + build: Deal with recent glibc sunrpc header removal; (bso#10976);
  + Make Samba work with tirpc and libnsl2; (bso#13238);
  + vfs_ceph: Add fs_capabilities hook to avoid local statvfs; (bso#13208);
    (bsc#1075206);
  + Kerberos: PKINIT: Can't decode algorithm parameters in clientPublicValue;
    (bso#12986);
  + ctdb-recovery-helper: Deregister message handler in error paths;
    (bso#13188);
  + samba: Only use async signal-safe functions in signal handler; (bso#13240);
  + Kerberos: PKINIT: Can't decode algorithm parameters in clientPublicValue;
    (bso#12986);
  + repl_meta_data: Fix linked attribute corruption on databases
    with unsorted links on expunge. dbcheck: Add functionality to fix the
    corrupt database; (bso#13228);
  + Fix smbd panic when chdir returns error during exit; (bso#13189);
  + Make Samba work with tirpc and libnsl2; (bso#13238);
  + Fix POSIX ACL support on HPUX and possibly other big-endian OSs;
    (bso#13176); - Update to 4.7.4; (bsc#1080545);
  + s3: smbclient: Implement 'volume' command over SMB2; (bso#13140);
  + s3: libsmb: Fix valgrind read-after-free error in
    cli_smb2_close_fnum_recv(); (bso#13171);
  + s3: libsmb: Fix reversing of oldname/newname paths when creating a
    reparse point symlink on Windows from smbclient; (bso#13172);
  + Build man page for vfs_zfsacl.8 with Samba; (bso#12934);
  + repl_meta_data: Allow delete of an object with dangling backlinks;
    (bso#13095);
  + s4:samba: Fix default to be running samba as a deamon; (bso#13129);
  + Performance regression in DNS server with introduction of DNS wildcard,
    ldb: Release 1.2.3; (bso#13191);
  + vfs_zfsacl: Fix compilation error; (bso#6133);
  + "smb encrypt" setting changes are not fully applied until full smbd
    restart; (bso#13051);
  + winbindd: Fix idmap_rid dependency on trusted domain list; (bso#13052);
  + vfs_fruit: Proper VFS-stackable conversion of FinderInfo; (bso#13155);
  + winbindd: Dependency on trusted-domain list in winbindd in critical auth
    codepath; (bso#13173);
  + repl_meta_data: Fix removing of backlink on deleted objects; (bso#13120);
  + ctdb: sock_daemon leaks memory; (bso#13153);
  + TCP tickles not getting synchronised on CTDB restart; (bso#13154);
  + winbindd: winbind parent and child share a ctdb connection; (bso#13150);
  + pthreadpool: Fix deadlock; (bso#13170);
  + pthreadpool: Fix starvation after fork; (bso#13179);
  + messaging: Always register the unique id; (bso#13180);
  + s4/smbd: set the process group; (bso#13129);
  + Fix broken linked attribute handling; (bso#13095);
  + The KDC on an RWDC doesn't send error replies in some situations;
    (bso#13132);
  + libnet_join: Fix 'net rpc oldjoin'; (bso#13149);
  + g_lock conflict detection broken when processing stale entries;
    (bso#13195);
  + s3:smb2_server: allow logoff, close, unlock, cancel and echo on expired
    sessions; (bso#13197);
  + s3:libads: net ads keytab list fails with "Key table name malformed";
    (bso#13166); (bsc#1067700);
  + Fix crash in pthreadpool thread after failure from pthread_create;
    (bso#13170);
  + s4:samba: Allow samba daemon to run in foreground; (bso#13129);
    (bsc#1065551);
  + third_party: Link the aesni-intel library with "-z noexecstack";
    (bso#13174);
  + vfs_glusterfs: include glusterfs/api/glfs.h without relying on "-I"
    options; (bso#13125); - Re-enable usage of libnsl (did got lost with glibc change)
- Use TI-RPC (sunrpc is deprecated and will be removed soon from
  glibc) - smbc_opendir should not return EEXIST with invalid login credentials;
  (bnc#1065868). - Update to 4.7.3; (bsc#1069666);
  + Non-smbd processes using kernel oplocks can hang smbd;
    (bso#13121);
  + python: use communicate to fix Popen deadlock; (bso#13127);
  + smbd on disk file corruption bug under heavy threaded load;
    (bso#13130);
  + tevent: version 0.9.34; (bso#13130);
  + s3: smbd: Fix delete-on-close after smb2_find; (bso#13118);
  + CVE-2017-14746: s3: smbd: Fix SMB1 use-after-free crash bug;
    (bsc#1060427);(bso#13041);
  + CVE-2017-15275: s3: smbd: Chain code can return uninitialized
    memory when talloc buffer is grown; (bsc#1063008); (bso#13077);
- Build with AD DC support only in openSUSE. - Replace references to /var/adm/fillup-templates with new
  %_fillupdir macro (boo#1069468) - samba-tool requires samba-python; (bnc#1067771). - Run all daemons in the foreground and let systemd handle it; (bsc#1065551).
- Update to 4.7.1;
  + Fix exporting subdirs with shadow_copy2; (bso#13091);
  + Currently if getwd() fails after a chdir(), we panic; (bso#13027);
  + Ensure default SMB_VFS_GETWD() call can't return a partially completed
    struct smb_filename; (bso#13068);
  + sys_getwd() can leak memory or possibly return the wrong errno on older
    systems; (bso#13069);
  + smbclient doesn't correctly canonicalize all local names before use;
    (bso#13093);
  + Fix broken linked attribute handling; (bso#13095);
  + Missing LDAP query escapes in DNS rpc server; (bso#12994);
  + Link to -lbsd when building replace.c by hand; (bso#13087);
  + Cannot delete non-ACL files on Solaris/ZFS/NFSv4 ACL filesystem;
    (bso#6133);
  + Map SYNCHRONIZE acl permission statically in zfs_acl vfs module;
    (bso#7909);
  + Samba fails to honor SEC_STD_WRITE_OWNER bit with the acl_xattr module;
    (bso#7933);
  + Missing assignment in sl_pack_float; (bso#12991);
  + Wrong Samba access checks when changing DOS attributes; (bso#12995);
  + samba_runcmd_send() leaves zombie processes on timeout; (bso#13062);
  + groupmap cleanup should not delete BUILTIN mappings; (bso#13065);
  + Enabling vfs_fruit results in loss of Finder tags and other xattrs;
    (bso#13076);
  + man pages: Properly ident lists; (bso#9613);
  + smb.conf.5: Sort parameters alphabetically; (bso#13081);
  + Fix GUID string format on GetPrinter info; (bso#12993);
  + Remote serverid check doesn't check for the unique id; (bso#13042);
  + CTDB starts consuming memory if there are dead nodes in the cluster;
    (bso#13056);
  + ctdb-common: Ignore event scripts with multiple '.'s; (bso#13070);
  + libgpo doesn't sort the GPOs in the correct order; (bso#13046);
  + Remote serverid check doesn't check for the unique id; (bso#13042);
  + vfs_catia: Fix a potential memleak; (bso#13090);
  + Fix file change notification for renames; (bso#12903);
  + Samba DNS server does not honour wildcards; (bso#12952);
  + Can't change password in samba from a Windows client if Samba runs on
    IPv6 only interface; (bso#13079);
  + vfs_fruit: Replace closedir() by SMB_VFS_CLOSEDIR; (bso#13086);
  + Apple client can't cope with SMB2 async replies when creating symlinks;
    (bso#13047);
  + s4:rpc_server:backupkey: Move variable into scope; (bso#12959);
  + Fix ntstatus_gen.h generation on 32bit; (bso#13099);
  + Fix a double free in vfs_gluster_getwd(); (bso#13100);
  + Fix resouce leaks and pointer issues; (bso#13101);
  + vfs_solarisacl: Fix build for samba 4.7 and up; (bso#13049); - Add samba-kdc to baselibs.conf.
- Do not wrap samba-kdc's package definition into if/endif: the
  package won't be generated simply based on the fact that there is
  no files section for the package. Allows the source validator to
  ensure samba-kdc is a built package. - Update to 4.7.0;
  + Whole DB read locks: Improved LDAP and replication consistency;
    (bso#12858).
  + Samba AD with MIT Kerberos
  + Dynamic RPC port range: Default range changed from "1024-1300" to
    "49152-65535".
  + Authentication and Authorization audit support: New auth_audit debug
    class.
  + Multi-process LDAP Server: The LDAP server in the AD DC now honours
    the process model used for the rest of the 'samba' process.
  + Improved Read-Only Domain Controller (RODC) Support; (bso#12977).
  + Additional password hashes stored in supplementalCredentials.
  + Improvements to DNS during Active Directory domain join.
  + Significant AD performance and replication improvements.
  + Query record for open file or directory.
  + Removal of lpcfg_register_defaults_hook().
  + Change of loadable module interface.
  + SHA256 LDAPS Certificates: The self-signed certificate generated for use
    on LDAPS will now be generated with a SHA256 self-signature, not a SHA1
    self-signature.
  + CTDB no longer allows mixed minor versions in a cluster.
  + CTDB now ignores hints from Samba about TDB flags when attaching to
    databases.
  + New configuration variable CTDB_NFS_CHECKS_DIR.
  + The CTDB_SERVICE_AUTOSTARTSTOP configuration has been removed.
  + The CTDB_SCRIPT_DEBUGLEVEL configuration variable has been removed.
  + The example NFS Ganesha call-out has been improved.
  + A new "replicated" database type is available. - CVE-2017-12163: Prevent client short SMB1 write from
  writing server memory to file; (bso#13020); (bsc#1058624). - CVE-2017-12150: Some code path don't enforce smb signing,
  when they should; (bso#12997); (bsc#1058622). - CVE-2017-12151: Keep required encryption across SMB3 dfs
  redirects; (bso#12996); (bsc#1058565). - Clean specfile assuming SUSE-only system and product >=SLE11
  + %{ul_version}, %{rhel_version}, %{mandriva_version}, %{centos_version}
    are always undefined
  + %{_vendor} is "suse" and %{suse_version} is at least 1100 - Update to 4.6.7; (bsc#1054017)
  + Joining a Huawai storage fails: empty CLDAP ping answer; (bso#11392).
  + smbcacls can fail against a directory on Windows using SMB2.; (bso#12937).
  + vfs_ceph provides inconsistent directory listings; (bso#12911).
  + Misused talloc context can cause a user to crash their smbd by chaining
    SMB1 commands.; (bso#12836).
  + Use-after free can crash libsmbclient code.; (bso#12927).
  + Server exit with active AIO can crash.; (bso#12925).
  + Ensure notifyd doesn't return from smbd_notifyd_init; (bso#12910).
  + fd leak to ctdb sub-processes leads to SELinux AVC denial in audit logs;
    (bso#12898).
  + vfs_fruit shouldn't send MS NFS ACEs to Windows clients; (bso#12897).
  + smbspool_krb5_wrapper does not tell CUPS that it requires negotiate for
    authentication; (bso#12886).
  + finder sidebar showing question mark instead of icon when using ip to
    connect with vfs_fruit; (bso#12840).
  + Winbind stops obtaining the 'unixHomeDirectory' & 'loginShell' attributes
    from AD.; (bso#12720).
  + KCC run at selftest startup can fail spuriously due to a race;
    (bso#12869).
  + winbindd changes the local password and gets NT_STATUS_WRONG_PASSWORD for
    the remote change; (bso#12782).
  + rpc_pipe_client memory leaks due to long term memory context passed to
    rpc_pipe_open_interface(); (bso#12890).
  + CVE-2017-2619 breaks accessing previous versions of directories with
    snapshots in subdirectories of the share; (bso#12885).
  + dns_name_equal doing OOB read; (bso#12813).
  + replica_sync tests flap; (bso#12753).
  + Selftest should not call 'net cache flush' and wipe important winbind
    entries; (bso#12868).
  + Old Samba versions don't support using recent ldb versions (>=1.1.30);
    (bso#12859).
  + pam_winbind fails with kerberos method = secrets and keytab; (bso#10490).
  + race starting winbindd against posixacl test; (bso#12843).
  + Crash in the reentrant smbd_smb2_create_send() if the something fails in
    the subsequent try; (bso#12832).
  + spnego.c passes the wrong argument order to gensec_update_ev() for the
    FALLBACK case; (bso#12788).
  + Clients with SMB3 support can't connect with
    "server max protocol = SMB2_02"; (bso#12772).
  + A log message of samb-tool user syncpasswords reverses string arguments in
    a debug message "Call Popen[...".; (bso#12768).
  + The smb tarmode tests kills the share dir contents; (bso#12867).
  + Fix for a bug in MacOS X Sierra NTLMv2 processing; (bso#12862).
  + CVE-2017-2619 regression with non-wide symlinks to directories; (bso#12860).
  + manpage/index.html lists links not in alphabetical order; (bso#12854).
  + smbcacls got error NT_STATUS_NETWORK_NAME_DELETED; (bso#12831).
  + If a record is locked in a database, then recovery does not complete;
    (bso#12857).
  + debug_locks.sh script does not log any information; (bso#12856).
  + SIGSEGV in cm_connect_lsa_tcp dereferencing conn->lsa_tcp_pipe->transport
    after error; (bso#12852).
  + smbclient can't parse DOMAIN+username if a different winbind separator is
    used; (bso#12849).
  + Related requests with SessionSetup fail with INTERNAL_ERROR; (bso#12845).
  + Related requests with TreeConnect fail with NETWORK_NAME_DELETED;
    (bso#12844).
  + cli->server_os not filled correctly; (bso#12779).
  + REGRESSION: smbclient doesn't print the session setup anymore;
    (bso#12824).
  + smblcient doesn't handle STATUS_NOT_SUPPORTED gracefully for
    FSCTL_VALIDATE_NEGOTIATE_INFO; (bso#12808).
  + CTDB NFS call-out failures do not cause event failures; (bso#12837).
  + net command fails due to incorrectly return code; (bso#12828).
  + Fix building Samba with GCC 7.1; (bso#12827). - Fix duplicate CTDB_LOGGING params when downgraded and upgraded again;
  (bsc#1048339). - fix cephwrap_chdir(); (bsc#1048790).
- Update to 4.6.6
  + CVE-2017-11103: Orpheus' Lyre KDC-REP service name validation;
    (bsc#1048278). - Fix ctdb logs to /var/log/log.ctdb instead of /var/log/ctdb; (bsc#1048339). - Fix inconsistent ctdb socket path; (bsc#1048352).
- Fix non-admin cephx authentication; (bsc#1048387). - Update to 4.6.5; (bsc#1040157)
  + Specifying CTDB_LOGGING=syslog:nonblocking causes ctdbd to crash at
    startup; (bso#12814).
  + vfs_expand_msdfs tries to open the remote address as a file path;
    (bso#12687).
  + PANIC (pid 1096): assert failed: lease_type_is_exclusive(e_lease_type);
    (bso#12798).
  + With clustering get update_num_read_oplocks failed and PANIC:
    num_share_modes == 1 assertion failure; (bso#11844).
  + contend_level2_oplocks_begin_default oplock optimisation doesn't carry
    over to leases; (bso#12766).
  + `ctdb nodestatus` incorrectly displays status for all nodes with wrong
    exit code; (bso#12802).
  + CTDB can spin hard on revoking readonly delegations if a node becomes
    disconnected; (bso#12697).
  + Printing a share mode entry with leases can crash in the ndr code;
    (bso#12793).
  + Fix flakey unit tests for eventd; (bso#12792).
  + CTDB daemon crashes if built with clang; (bso#12770).
  + smbcacls fails if no password is specified; (bso#12765).
  + idmap_rfc2307: Lookup of more than two SIDs fails; (bso#12757).
  + samba-tool user syncpasswords doesn't trigger the script when a user gets
    removed; (bso#12767).
  + systemd: fix detection of libsystemd; (bso#12764).
  + Notify subsystem only maps first inotify mask to Windows notify filter;
    (bso#12760).
  + Allow passing trusted domain password as plain-text to PASSDB layer;
    (bso#12751).
  + Can't case-rename files with vfs_fruit; (bso#12749).
  + wrong sid->uid mapping for SIDs residing in sIDHistory; (bso#12702).
  + vfs_acl_common should force "create mask = 0777", not 0666; (bso#12562).
  + Ordering of notify responses broken; (bso#12756). - s3: libsmb: Fix error where short name length was read as 2
  bytes, should be 1; (bso#11822); (bsc#1042419). - Revert explicit winbind %{version}-%{release} dependency.
  + The ABI has stabilized since (bsc#936909), so remove to fix cross-media
    dependencies; (bsc#1037899). - Fix CVE-2017-7494 remote code execution from a writable share;
  (bso#12780); (bsc#1038231). - Update to 4.6.3; (bsc#1036011)
  + s3:vfs:shadow_copy2: vfs_shadow_copy2 fails to list snapshots
    from shares with GlusterFS backend; (bso#12743).
  + Fix for Solaris C compiler; (bso#12559).
  + s3: locking: Update oplock optimization for the leases era; (bso#12628).
  + Make the Solaris C compiler happy; (bso#12693).
  + s3: libgpo: Allow skipping GPO objects that don't have the
    expected LDAP attributes; (bso#12695).
  + Fix buffer overflow caused by wrong use of getgroups; (bso#12747).
  + lib: debug: Avoid negative array access; (bso#12746).
  + cleanupdb: Fix a memory read error; (bso#12748).
  + streams_xattr and kernel oplocks results in
    NT_STATUS_NETWORK_BUSY; (bso#7537).
  + winbindd: idmap_autorid allocates ids for unknown SIDs from other
    backends; (bso#11961).
  + vfs_fruit: Resource fork open request with
    flags=O_CREAT|O_RDONLY; (bso#12565).
  + manpages/vfs_fruit: Document global options; (bso#12615).
  + lib/pthreadpool: Fix a memory leak; (bso#12624).
  + Lookup-domain for well-known SIDs on a DC; (bso#12727).
  + winbindd: Fix error handling in rpc_lookup_sids(); (bso#12728).
  + winbindd: Trigger possible passdb_dsdb initialisation; (bso#12729).
  + credentials_krb5: use gss_acquire_cred for client-side GSSAPI
    use case; (bso#12611).
  + lib/crypto: Implement samba.crypto Python module for RC4; (bso#12690).
  + ctdb-readonly: Avoid a tight loop waiting for revoke to
    complete; (bso#12697).
  + ctdb_event monitor command crashes if event is not specified;
    (bso#12723).
  + ctdb-docs: Fix documentation of "-n" option to 'ctdb tool'; (bso#12733).
  + smbd: Fix smb1 findfirst with DFS; (bso#12558).
  + smbd: Do an early exit on negprot failure; (bso#12610).
  + winbindd: Fix substitution for 'template homedir'; (bso#12699).
  + s4:kdc: Disable principal based autodetected referral detection;
    (bso#12554).
  + idmap_autorid: Allocate new domain range if the callers knows
    the sid is valid; (bso#12613).
  + LINKFLAGS_PYEMBED should not contain -L/some/path; (bso#12724).
  + PAM auth with WBFLAG_PAM_GET_PWD_POLICY returns wrong policy for
    trusted domain; (bso#12725).
  + rpcclient: Allow -U'OTHERDOMAIN\user' again; (bso#12731).
  + winbindd: Fix password policy for pam authentication; (bso#12725).
  + s3:gse: Correctly handle external trusts with MIT; (bso#12554).
  + auth/credentials: Always set the realm if we set the principal
    from the ccache; (bso#12611).
  + replace: Include sysmacros.h; (bso#12686).
  + s3:vfs_expand_msdfs: Do not open the remote address as a file;
    (bso#12687).
  + s3:libsmb: Only print error message if kerberos use is forced;
    (bso#12704).
  + winbindd: Child process crashes when kerberos-authenticating
    a user with wrong password; (bso#12708).
  + vfs_fruit: Office document opens as read-only on macOS due to
    CNID semantics; (bso#12715).
  + vfs_acl_xattr: Fix failure to get ACL on Linux if memory is
    fragmented; (bso#12737). - Generate and update vendor-files tarball from Git
  + SuSEfirewall2 service samba-client only setup IPv4 rule; (bsc#1034416). - Generate source tarball directly from Git using OBS tar_scm
  + use version string derived from parent Git tag and commit hash
  - remove obsolete vendor-files/tools/package-data version ID
  + explicitly generate ctdb manpages, needed without "make dist" - Update to 4.6.2
  + remove bso#12721 patches now upstream - Enable samba-ceph build for openSUSE and SLE12SP3+; (fate#321622).
  + x86-64 and aarch64 - Enable librados CTDB lock helper for samba-ceph package; (fate#321622). - Build and install the html man pages (bsc#1021907). - Fix CVE-2017-2619 regression with "follow symlinks = no";
  (bso#12721). - Update to 4.6.1
  + symlink race permits opening files outside share directory;
    CVE-2017-2619; (bso#12496); (bsc#1027147)
  + testparm checks for valid idmap parameters
  + add new krb client encryption types
  + support for printer driver upload from windows 10
  + inherit owner = 'unix only' for improved quota support
  + improved CTDB event support
  + new primary group support for idmap_ad
  + idmap_hash deprecated
  + mvxattr added to recursively rename extended attributes - Remove chkconfig requirements for systemd systems - Don't call insserv if systemd is used - Fix check if we need to require insserv - async_req: make async_connect_send() "reentrant";
  (bso#12105); (bsc#1024416). - Force usage of ncurses6-config thru NCURSES_CONFIG env var;
  (bsc#1023847). - add missing patch for libnss_wins segfault; (bsc#995730). - Fix vfs_ceph builds against recent Ceph versions; (bsc#1021933). - Document "winbind: ignore domains" parameter; (bsc#1019416). - Add base Samba dependency to samba-ceph package. - Update to 4.5.3
  + Heap-based Buffer Overflow Remote Code Execution Vulnerability;
    CVE-2016-2123; (bso#12409); (bsc#1014437).
  + Don't send delegated credentials to all servers; CVE-2016-2125;
  (bso#12445); (bsc#1014441).
  + denial of service due to a client triggered crash in the winbindd
    parent process; CVE-2016-2126; (bso#12446); (bsc#1014442).
- 4.5.1 and 4.5.2 updates
  + various streams vfs fixes
  + various printing fixes
  + ntlm_auth: do not map explicitly empty domain
  + various stability fixes in smbd
  + match file compression ReFS behavior -  Add missing ldb module directory; (bnc#1012092). - s3/client: obey 'disable netbios' smb.conf param, don't
  connect via NBT port; (bsc#1009085); (bso#12418). - Include vfstest in samba-test; (bsc#1001203). - s3/winbindd: using default domain with user@domain.com format
  fails; (bsc#997833). - Fix segfault in libnss_wins; (bso#12277); (bso#12269); (bsc#995730). - Update to 4.5.0
  + NTLM1 Authentication disabled by default
  + SMB2.1 leases enabled by default
  + Support for OFD locks
  + ctdb tool rewritten
  + Added shadow copy snapshot prefix parameter - Fix illegal memory access after memory has been deleted;
  (bso#11836); (bsc#975299). - Prevent core, make sure response->extra_data.data is always
  cleared out; (bsc#993692). - Don't package man pages for VFS modules that aren't built;
  (boo#993707). - Fix population of ctdb sysconfig after source merge; (bsc#981566). - Enable vfs_ceph builds for Factory (x86-64)
  + Package as samba-ceph to avoid Ceph dependency in base package. - Update to 4.4.5
  +  Prevent client-side SMB2 signing downgrade; CVE-2016-2119;
    (bso#11860); (bsc#986869). - Remove obsolete syslog.target; (bsc#983938). - Honor smb.conf socket options in winbind; (bsc#975131). - Don't use htons() with IP_PROTO_RAW; (bso#11705); (bsc#969522). - Update to 4.4.4
  + SMB3 multichannel: Add implementation of missing channel sequence
    number verification; (bso#11809).
  + smbd:close: Only remove kernel share modes if they had been
    taken at open; (bso#11919).
  + notifyd: Prevent NULL deref segfault in notifyd_peer_destructor;
    (bso#11930).
  + s3:rpcclient: Make '--pw-nt-hash' option work; (bso#10796).
  + Fix case sensitivity issues over SMB2 or above; (bso#11438).
  + s3:smbd: Fix anonymous authentication if signing is mandatory.
    (bso#11910)
  + Fix NTLM Authentication issue with squid; (bso#11914).
  + pdb: Fix segfault in pdb_ldap for missing gecos; (bso#11530).
  + Fix memory leak in share mode locking; (bso#11934). - Update to 4.4.3
  + Various post-badlock regressions; (bso#11841); (bso#11850);
    (bso#11858); (bso#11870); (bso#11872).
  + Only allow idmap_hash for default idmap config (bso#11786).
  + smbd: Avoid large reads beyond EOF; (bso#11878).
  + vfs_acl_common: Avoid setting POSIX ACLs if "ignore system acls"
    is set; (bso#11806).
  + libads: Record session expiry for spnego sasl binds; (bso#11852). - Fix NTLMSSP regressions caused by previous CVE fixes; (bso#11849);
  (bsc#975962); (bsc#979268), (bsc#977669). - Revert shared library packaging to comply with SLPP - Update to 4.4.2
  + A man-in-the-middle can downgrade NTLMSSP authentication;
    CVE-2016-2110; (bso#11688); (bsc#973031).
  + Domain controller netlogon member computer can be spoofed;
    CVE-2016-2111; (bso#11749); (bsc#973032).
  + LDAP conenctions vulnerable to downgrade and  MITM attack;
    CVE-2016-2112; (bso#11644); (bsc#973033).
  + TLS certificate validation missing; CVE-2016-2113; (bso#11752);
    (bsc#973034).
  + Named pipe IPC vulnerable to MITM attacks; CVE-2016-2115;
    (bso#11756); (bsc#973036).
  + "Badlock" DCERPC impersonation of authenticated account possible;
    CVE-2016-2118; (bso#11804); (bsc#971965).
  + DCERPC server and client vulnerable to DOS and MITM attacks;
    CVE-2015-5370; (bso#11344); (bsc#936862). - Fix samba.tests.messaging test and prevent potential tdb corruption
  by removing obsolete now invalid tdb_close call; (bsc#974629). - Obsolete libsmbclient from libsmbclient0 while not providing it;
  (bsc#972197). - Update to 4.4.0.
  + Read of uninitialized memory DNS TXT handling; (bso#11128); (bso#11686);
    CVE-2016-0771.
  + Getting and setting Windows ACLs on symlinks can change permissions on link
    target; (bso#11648); CVE-2015-7560.
  + Sockets with htons(IPPROTO_RAW); (bso#11705); CVE-2015-8543.
  + s3: smbd: posix_acls: Fix check for setting u:g:o entry on a filesystem
    with no ACL support; (bso#10489).
  + docs: Add example for domain logins to smbspool man page; (bso#11643).
  + smbd: Show correct disk size for different quota and dfree block sizes;
    (bso#11681).
  + docs: Add smbspool_krb5_wrapper manpage; (bso#11690).
  + winbindd: Return trust parameters when listing trusts; (bso#11691).
  + ctdb: Do not provide a useless pkgconfig file for ctdb; (bso#11696).
  + Crypto.Cipher.ARC4 is not available on some platforms, fallback to
    M2Crypto.RC4.RC4 then; (bso#11699).
  + s3:utils/smbget: Set default blocksize; (bso#11700).
  + Streamline 'smbget' options with the rest of the Samba utils; (bso#11700).
  + s3:clispnego: Fix confusing warning in spnego_gen_krb5_wrap(); (bso#11702).
  + s3: smbd: Fix timestamp rounding inside SMB2 create; (bso#11703).
  + loadparm: Fix memory leak issue; (bso#11708).
  + lib/tsocket: Work around sockets not supporting FIONREAD; (bso#11714).
  + s3:vfs:glusterfs: Fix build after quota changes; (bso#11715).
  + ctdb-scripts: Drop use of "smbcontrol winbindd ip-dropped ..."; (bso#11719).
  + lib:socket: Fix CID 1350010: Integer OVERFLOW_BEFORE_WIDEN; (bso#11723).
  + smbd: Fix CID 1351215 Improper use of negative value; (bso#11724).
  + smbd: Fix CID 1351216 Dereference null return value; (bso#11725).
  + s3:smbd:open: Skip redundant call to file_set_dosmode when creating a new
    file; (bso#11727).
  + docs: Add manpage for cifsdd; (bso#11730).
  + param: Fix str_list_v3 to accept ; again; (bso#11732).
  + lib/socket: Fix improper use of default interface speed; (bso#11734).
  + lib:socket: Fix CID 1350009: Fix illegal memory accesses
    (BUFFER_SIZE_WARNING); (bso#11735).
  + libcli: Fix debug message, print sid string for new_ace trustee;
    (bso#11738).
  + Fix installation path of Samba helper binaries; (bso#11739).
  + Fix memory leak in loadparm; (bso#11740).
  + tevent: version 0.9.28: Fix memory leak when old signal action restored;
    (bso#11742).
  + smbd: Ignore SVHDX create context; (bso#11753).
  + Fix net join; (bso#11755).
  + s3:libads: setup the msDS-SupportedEncryptionTypes attribute on ldap_add;
    (bso#11755).
  + passdb: Add linefeed to debug message; (bso#11763).
  + s3:utils/smbget: Fix option parsing; (bso#11767).
  + libnet: Make Kerberos domain join site-aware; (bso#11769).
  + Reset TCP Connections during IP failover; (bso#11770).
  + ldb: Version 1.1.26; (bso#11772).
  + s3:smbd: Add negprot remote arch detection for OSX; (bso#11773).
  + vfs_glusterfs: Fix use after free in AIO callback; (bso#11774).
  + mkdir can return ACCESS_DENIED incorrectly on create race; (bso#11780).
  + "trustdom_list_done: Got invalid trustdom response" message should be
    avoided; (bso#11782).
  + Mismatch between local and remote attribute ids lets replication fail with
    custom schema; (bso#11783).
  + Quota is not supported on Solaris 10; (bso#11788).
  + Talloc: Version 2.1.6; (bso#11789).
  + smbd: Enable multi-channel if 'server multi channel support = yes' in the
    config; (bso#11796).
  + build: Fix build when '--without-quota' specified; (bso#11798).
  + lib/socket/interfaces: Fix some uninitialied bytes; (bso#11802).
  + Access based share enum: handle permission set in configuration files;
    (bso#8093).
  + See also WHATSNEW.txt from the samba-doc package. - Update to 4.3.6.
  + Getting and setting Windows ACLs on symlinks can change permissions on link
    target; CVE-2015-7560; (bso#11648); (bsc#968222).
  + Fix Out-of-bounds read in internal DNS server; CVE-2016-0771;
    (bso#11128); (bso#11686); (bsc#968223). - Upgrade on-disk FSRVP server state to new version; (bsc#924519). - Only obsolete but do not provide gplv2/3 package names; (bsc#968973). - Relocate existing lock files to /var/lib/samba/lock; (bsc#968963). - Obsolete no longer existing samba-32bit package; (bsc#967625). - Update to 4.3.5.
  + s3:utils/smbget: Fix recursive download; (bso#6482).
  + s3: smbd: posix_acls: Fix check for setting u:g:o entry on a filesystemi
    with no ACL support; (bso#10489).
  + s3:smbd/oplock: Obey kernel oplock setting when releasing oplocks;
    (bso#11400).
  + vfs_shadow_copy2: Fix case where snapshots are outside the share;
    (bso#11580).
  + smbclient: Query disk usage relative to current directory; (bso#11662).
  + winbindd: Handle expired sessions correctly; (bso#11670).
  + smbd: Show correct disk size for different quota and dfree block sizes;
    (bso#11681).
  + smbcacls: Fix uninitialized variable; (bso#11682).
  + s3:smbd: Ignore initial allocation size for directory creation;
    (bso#11684).
  + s3-client: Add a KRB5 wrapper for smbspool; (bso#11690).
  + s3-parm: Clean up defaults when removing global parameters; (bso#11693).
  + Use M2Crypto.RC4.RC4 on platforms without Crypto.Cipher.ARC4; (bso#11699).
  + s3: smbd: Fix timestamp rounding inside SMB2 create; (bso#11703).
  + ctdb: Remove error messages after kernel security update; CVE-2015-8543;
    (bso#11705).
  + loadparm: Fix memory leak issue; (bso#11708).
  + lib/tsocket: Work around sockets not supporting FIONREAD; (bso#11714).
  + ctdb-scripts: Drop use of "smbcontrol winbindd ip-dropped ...";
    (bso#11719).
  + s3:smbd:open: Skip redundant call to file_set_dosmode when creating a new
    file; (bso#11727).
  + param: Fix str_list_v3 to accept ";" again; (bso#11732). - Shift samba-client sysconfig data into samba and samba-winbind; (bsc#947361). - Simplify shared library packaging; (bsc#966956). - Enable clustering (CTDB) support; (bsc#966271). - s3: smbd: Fix timestamp rounding inside SMB2 create; (bso#11703);
  (bsc#964023). - Add quotes around path of update-apparmor-samba-profile; (bnc#962177). - Remove autoconf build-time requirement. - Update to 4.3.4.
  + vfs_fruit: Enable POSIX directory rename semantics; (bso#11065).
  + Crash: Bad talloc magic value - access after free; (bso#11394).
  + Copying files with vfs_fruit fails when using vfs_streams_xattr without
    stream prefix and type suffix; (bso#11466).
  + samba-tool: Fix uncaught exception if no fSMORoleOwner attribute is given;
    (bso#11613).
  + Fix a typo in the smb.conf manpage, explanation of idmap config;
    (bso#11619).
  + Correctly initialize the list head when keeping a list of primary followed
    by DFS connections; (bso#11624).
  + Reduce the memory footprint of empty string options; (bso#11625).
  + lib/async_req: Do not install async_connect_send_test; (bso#11639).
  + Fix typos in man vfs_gpfs; (bso#11641).
  + Make "hide dot files" option work with "store dos attributes = yes";
    (bso#11645).
  + Fix a corner case of the symlink verification; (bso#11647);  (bnc#960249).
  + Do not disable "store dos attributes" on-the-fly; (bso#11649).
  + Update lastLogon and lastLogonTimestamp; (bso#11659). - Prevent access denied if the share path is "/"; (bso#11647); (bnc#960249). - Update to 4.3.3.
  + Malicious request can cause Samba LDAP server to hang, spinning using CPU;
    CVE-2015-3223; (bso#11325); (bnc#958581).
  + Remote read memory exploit in LDB; CVE-2015-5330; (bso#11599);
    (bnc#958586).
  + Insufficient symlink verification (file access outside the share);
    CVE-2015-5252; (bso#11395); (bnc#958582).
  + No man in the middle protection when forcing smb encryption on the client
    side; CVE-2015-5296; (bso#11536); (bnc#958584).
  + Currently the snapshot browsing is not secure thru windows previous version
    (shadow_copy2); CVE-2015-5299; (bso#11529); (bnc#958583).
  + Fix Microsoft MS15-096 to prevent machine accounts from being changed into
    user accounts; CVE-2015-8467; (bso#11552); (bnc#958585). - Update to 4.3.2.
  + vfs_gpfs: Re-enable share modes; (bso#11243).
  + dcerpc.idl: Accept invalid dcerpc_bind_nak pdus; (bso#11327).
  + s3-smbd: Fix old DOS client doing wildcard delete - gives an attribute
    type of zero; (bso#11452).
  + Add libreplace dependency to texpect, fixes a linking error on Solaris;
    (bso#11511).
  + s4: Fix linking of 'smbtorture' on Solaris; (bso#11512).
  + s4:lib/messaging: Use correct path for names.tdb; (bso#11562).
  + Fix segfault of 'net ads (join|leave) -S INVALID' with nss_wins;
    (bso#11563).
  + async_req: Fix non-blocking connect(); (bso#11564).
  + auth: gensec: Fix a memory leak; (bso#11565).
  + lib: util: Make non-critical message a warning; (bso#11566).
  + Fix winbindd crashes with samlogon for trusted domain user; (bso#11569);
    (bnc#949022).
  + smbd: Send SMB2 oplock breaks unencrypted; (bso#11570).
  + ctdb: Open the RO tracking db with perms 0600 instead of 0000; (bso#11577).
  + s3:smb2_server: Make the logic of SMB2_CANCEL DLIST_REMOVE() clearer;
    (bso#11581).
  + s3-smbd: Fix use after issue in smbd_smb2_request_dispatch(); (bso#11581).
  + manpage: Correct small typo error; (bso#11584).
  + s3: smbd: If EAs are turned off on a share don't allow an SMB2 create
    containing them; (bso#11589).
  + Backport some valgrind fixes from upstream master; (bso#11597).
  + auth: Consistent handling of well-known alias as primary gid; (bso#11608).
  + winbind: Fix crash on invalid idmap configs; (bso#11612).
  + s3: smbd: have_file_open_below() fails to enumerate open files below an
    open directory handle; (bso#11615).
  + Changing log level of two entries to DBG_NOTICE; (bso#9912). - Ensure samlogon fallback requests are rerouted after kerberos failure;
  (bnc#953382); (bnc#953972). - Ensure to link with --as-needed flag by removing SUSE_ASNEEDED=0.
- Always use the default optimization even on pre-9.2 systems. - Remove redundant configure options while adding with-relro. - Relocate the lockdir to the /var/lib/samba/lock directory. - Cleanup and enhance the pidl sub package. - Require renamed python-ldb-devel and python-talloc-devel at build-time.
- Requires python-ldb and python-talloc from the python subpackage. - Update to 4.3.1.
  + s3: smbd: Fix our access-based enumeration on "hide unreadable" to match
    Windows; (bso#10252).
  + nss_winbind: Fix hang on Solaris on big groups; (bso#10365).
  + smbd: Fix file name buflen and padding in notify repsonse; (bso#10634).
  + kerberos: Make sure we only use prompter type when available;
    winbind: Fix 100% loop; (bso#11038).
  + source3/lib/msghdr.c: Fix compiling error on Solaris; (bso#11053).
  + s3:ctdbd_conn: make sure we destroy tevent_fd before closing the socket;
    (bso#11316).
  + s3: smbd: Fix mkdir race condition; (bso#11486).
  + pam_winbind: Fix a segfault if initialization fails; (bso#11502).
  + s3: dfs: Fix a crash when the dfs targets are disabled; (bso#11509).
  + s4:lib/messaging: Use 'msg.lock' and 'msg.sock' for messaging related
    subdirs; (bso#11515).
  + s3: smbd: Fix opening/creating :stream files on the root share directory;
    (bso#11522).
  + lib/param: Fix hiding of FLAG_SYNONYM values; (bso#11526).
  + net: Fix a crash with 'net ads keytab create'; (bso#11528).
  + s3: smbd: Fix a crash in unix_convert(); (bso#11535).
  + s3: smbd: Fix NULL pointer bug introduced by previous 'raw' stream fix
    (bso#11522); (bso#11535).
  + vfs_fruit: Return value of ad_pack in vfs_fruit.c; (bso#11543).
  + vfs_commit: set the fd on open before calling SMB_VFS_FSTAT; (bso#11547).
  + s3:locking: Initialize lease pointer in share_mode_traverse_fn();
    (bso#11549).
  + s3:smbstatus: Add stream name to share_entry_forall(); (bso#11550).
  + s3:lib: Validate domain name in lookup_wellknown_name(); (bso#11555).
  + s3: lsa: lookup_name() logic for unqualified (no DOMAIN component) names
    is incorrect; (bso#11555). - Fix 100% CPU in winbindd when logging in with "user must change password on
  next logon"; (bso#11038). - Relocate the tmpfiles.d directory to the client package; (bnc#947552). - Do not provide libpdb0 from libsamba-passdb0 but add it to baselibs.conf
  instead; (bnc#942716). - Package /var/lib/samba/private/sock with 0700 permissions; (bnc#946051). - Package /var/lib/samba/msg with 0755 permissions; (bso#11515); (bnc#945502). - Require to install libfam0-gamin from samba-libs on post-12.1 and pre-13.15
  systems; (bnc#945013). - Update to 4.3.0.
  + Samba "map to guest = Bad uid" doesn't work; (bso#9862).
  + revert LDAP extended rule 1.2.840.113556.1.4.1941
    LDAP_MATCHING_RULE_IN_CHAIN changes; (bso#10493).
  + No objectClass found in replPropertyMetaData on ordinary objects
    (non-deleted); (bso#10973).
  + Stream names with colon don't work with fruit:encoding = native;
    (bso#11278).
  + NetApp joined to a Samba/ADDC cannot resolve SIDs; (bso#11291).
  + tevent_fd needs to be destroyed before closing the fd; (bso#11316).
  + "force group" with local group not working; (bso#11320).
  + strsep is not available on Solaris; (bso#11359).
  + smbtorture does not build when configured --with-system-mitkrb5;
    (bso#11411).
  + Build with GPFS support is broken; (bso#11421).
  + Build broken with --disable-python; (bso#11424).
  + net share allowedusers crashes; (bso#11426).
  + nmbd incorrectly matches netbios names as own name; (bso#11427).
  + Python bindings don't check integer types; (bso#11429).
  + Python bindings don't check array sizes; (bso#11430).
  + CTDB's eventscript error handling is broken; (bso#11431).
  + Fix crash in nested ctdb banning; (bso#11432).
  + Cannot build ctdbpmda; (bso#11434).
  + samba-tool uncaught exception error; (bso#11436).
  + Crash in notify_remove caused by change notify = no; (bso#11444).
  + Poor SMB3 encryption performance with AES-GCM; (bso#11451).
  + Poor SMB3 encryption performance with AES-GCM (part1); (bso#11451).
  + fix recursion problem in rep_strtoll in lib/replace/replace.c; (bso#11455).
  + --bundled-libraries=!ldb,!pyldb,!pyldb-util doesn't disable ldb build and
    install; (bso#11458).
  + xid2sid gives inconsistent results; (bso#11464).
  + ctdb: Fix the build on FreeBSD 10.1; (bso#11465).
  + Handling of 0 byte resource fork stream; (bso#11467).
  + AD samr GetGroupsForUser fails for users with "()" in their name;
    (bso#11488). - Configure with --bundled-libraries=NONE; (bso#11458). - Adapt net-kdc-lookup patch for post-3.3 Samba versions; (bnc#295284). - Remove libiniparser-devel build-time requirement. - Update to 4.2.3.
  + s4:lib/tls: Fix build with gnutls 3.4; (bso#8780).
  + s4.2/fsmo.py: Fixed fsmo transfer exception; (bso#10924).
  + winbindd: Sync secrets.ldb into secrets.tdb on startup; (bso#10991).
  + Logon via MS Remote Desktop hangs; (bso#11061).
  + s3: lib: util: Ensure we read a hex number as %x, not %u; (bso#11068).
  + tevent: Add a note to tevent_add_fd(); (bso#11141).
  + s3:param/loadparm: Fix 'testparm --show-all-parameters'; (bso#11170).
  + s3-unix_msg: Remove socket file after closing socket fd; (bso#11217).
  + smbd: Fix a use-after-free; (bso#11218); (bnc#919309).
  + s3-rpc_server: Fix rpc_create_tcpip_sockets() processing of interfaces;
    (bso#11245).
  + s3:smb2: Add padding to last command in compound requests; (bso#11277).
  + Add IPv6 support to ADS client side LDAP connects; (bso#11281).
  + Add IPv6 support for determining FQDN during ADS join; (bso#11282).
  + s3: IPv6 enabled DNS connections for ADS client; (bso#11283).
  + Fix invalid write in ctdb_lock_context_destructor; (bso#11293).
  + Excessive cli_resolve_path() usage can slow down transmission; (bso#11295).
  + vfs_fruit: Add option "veto_appledouble"; (bso#11305).
  + tstream: Make socketpair nonblocking; (bso#11312).
  + idmap_rfc2307: Fix wbinfo '--gid-to-sid' query; (bso#11313).
  + Group creation: Add msSFU30Name only when --nis-domain was given;
    (bso#11315).
  + tevent_fd needs to be destroyed before closing the fd; (bso#11316).
  + Build fails on Solaris 11 with "â€˜PTHREAD_MUTEX_ROBUSTâ€™ undeclared";
    (bso#11319).
  + smbd/trans2: Add a useful diagnostic for files with bad encoding;
    (bso#11323).
  + Change sharesec output back to previous format; (bso#11324).
  + Robust mutex support broken in 1.3.5; (bso#11326).
  + Kerberos auth info3 should contain resource group ids available from
    pac_logon; winbindd: winbindd_raw_kerberos_login - ensure logon_info
    exists in PAC; (bso#11328); (bnc#912457).
  + s3:smb2_setinfo: Fix memory leak in the defer_rename case; (bso#11329).
  + tevent: Fix CID 1035381 Unchecked return value; (bso#11330).
  + tdb: Fix CID 1034842 and 1034841 Resource leaks; (bso#11331).
  + s3: smbd: Use separate flag to track become_root()/unbecome_root() state;
    (bso#11339).
  + s3: smbd: Codenomicon crash in do_smb_load_module(); (bso#11342).
  + pidl: Make the compilation of PIDL producing the same results if the
    content hasn't change; (bso#11356).
  + winbindd: Disconnect child process if request is cancelled at main
    process; (bso#11358).
  + vfs_fruit: Check offset and length for AFP_AfpInfo read requests;
    (bso#11363).
  + docs: Overhaul the description of "smb encrypt" to include SMB3
    encryption; (bso#11366).
  + s3:auth_domain: Fix talloc problem in connect_to_domain_password_server();
    (bso#11367).
  + ncacn_http: Fix GNUism; (bso#11371). - Disable rpath usage; (bnc#902421). - Make the winbind package depend on the matching libwbclient version and
  vice versa; (bnc#936909). - Backport changes to use resource group sids obtained from pac logon_info;
  (bso#11328); (bnc#912457). - Order winbind.service Before and Want nss-user-lookup target. - Remove fam-devel build-time dependency for post-6 RHEL systems. - Update to 4.2.2.
  + s3:smbXsrv: refactor duplicate code into
    smbXsrv_session_clear_and_logoff(); (bso#11182).
  + gencache: don't fail gencache_stabilize if there were records to delete;
    (bso#11260).
  + s3: libsmbclient: After getting attribute server, ensure main srv pointer
    is still valid; (bso#11186).
  + s4: rpc: Refactor dcesrv_alter() function into setup and send steps;
    (bso#11236).
  + s3: smbd: Incorrect file size returned in the response of
    "FILE_SUPERSEDE Create"; (bso#11240).
  + Mangled names do not work with acl_xattr; (bso#11249).
  + nmbd rewrites browse.dat when not required; (bso#11254).
  + vfs_fruit: add option "nfs_aces" that controls the NFS ACEs stuff;
    (bso#11213).
  + s3:smbd: Add missing tevent_req_nterror; (bso#11224).
  + vfs: kernel_flock and named streams; (bso#11243).
  + vfs_gpfs: Error code path doesn't call END_PROFILE; (bso#11244).
  + s4: libcli/finddcs_cldap: continue processing CLDAP until all addresses
    are used; (bso#11284).
  + ctdb: check for talloc_asprintf() failure; (bso#11201).
  + spoolss: purge the printer name cache on name change; (bso#11210);
    (bnc#901813).
  + CTDB statd-callout does not scale; (bso#11204).
  + vfs_fruit: also map characters below 0x20; (bso#11221).
  + ctdb: Coverity fix for CID 1291643; (bso#11201).
  + Multiplexed RPC connections are not handled by DCERPC server; (bso#11225).
  + Fix terminate connection behavior for asynchronous endpoint with PUSH
    notification flavors; (bso#11226).
  + ctdb-scripts: Fix bashism in ctdbd_wrapper script; (bso#11007).
  + ctdb: Fix CIDs 1125615, 1125634, 1125613, 1288201 and 1125553; (bso#11201).
  + SMB2 should cancel pending NOTIFY calls with DELETE_PENDING if the
    directory is deleted; (bso#11257).
  + s3:winbindd: make sure we remove pending io requests before closing client
    sockets; (bso#11141); (bnc#931854).
  + Fix panic triggered by smbd_smb2_request_notify_done() ->
    smbXsrv_session_find_channel() in smbd; (bso#11182).
  + 'sharesec' output no longer matches input format; (bso#11237).
  + waf: Fix systemd detection; (bso#11200).
  + CTDB: Fix portability issues; (bso#11202).
  + CTDB: Fix some IPv6-related issues; (bso#11203).
  + CTDB statd-callout does not scale; (bso#11204).
  + 'net ads dns gethostbyname' crashes with an error in TALLOC_FREE if you
    enter invalid values; (bso#11234).
  + libads: record service ticket endtime for sealed ldap connections;
    (bso#11267).
  + lib/util: Include DEBUG macro in internal header files before samba_util.h;
    (bso#11033). - Avoid a crash inside the tevent epoll backend; (bso#11141); (bnc#931854). - Remove the independently built libraries ldb, talloc, tdn, and tevent and
  the post-10.3 renamed libsmbclient from baselibs.conf. - Drop redundant doc attribute from man pages. - Update to 4.2.1.
  + s3:winbind:grent: Don't stop group enumeration when a group has no gid;
    (bso#8905).
  + Initialize dwFlags field of DNS_RPC_NODE structure; (bso#9791).
  + s3: lib: ntlmssp: If NTLMSSP_NEGOTIATE_TARGET_INFO isn't set, cope with
    servers that don't send the 2 unused fields; (bso#10016).
  + build:wafadmin: Fix use of spaces instead of tabs; (bso#10476).
  + waf: Fix the build on openbsd; (bso#10476).
  + s3: client: "client use spnego principal = yes" code checks wrong name;
    (bso#10888).
  + spoolss: Retrieve published printer GUID if not in registry; (bso#11018).
  + s3: lib: libsmbclient: If reusing a server struct, check every cli->timout
    miliseconds if it's still valid before use; (bso#11079).
  + vfs_fruit: Enhance handling of malformed AppleDouble files; (bso#11125).
  + backupkey: Explicitly link to gnutls and gcrypt; (bso#11135).
  + replace: Remove superfluous check for gcrypt header; (bso#11135).
  + Backport subunit changes; (bso#11137).
  + libcli/auth: Match Declaration of netlogon_creds_cli_context_tmp with
    implementation; (bso#11140).
  + s3-winbind: Fix cached user group lookup of trusted domains; (bso#11143).
  + talloc: Version 2.1.2; (bso#11144).
  + Update libwbclient version to 0.12; (bso#11149).
  + brlock: Use 0 instead of empty initializer list; (bso#11153).
  + s4:auth/gensec_gssapi: Let gensec_gssapi_update() return
    NT_STATUS_LOGON_FAILURE for unknown errors; (bso#11164).
  + docs/idmap_rid: Remove deprecated base_rid from example; (bso#11169);
    (bnc#913304).
  + s3: libcli: smb1: Ensure we correctly finish a tevent req if the writev
    fails in the SMB1 case; (bso#11173).
  + backupkey: Use ndr_pull_struct_blob_all(); (bso#11174).
  + Fix lots of winbindd zombie processes on Solaris platform; (bso#11175).
  + s3: libsmbclient: Add missing talloc stackframe; (bso#11177).
  + s4-process_model: Do not close random fds while forking; (bso#11180).
  + s3-passdb: Fix 'force user' with winbind default domain; (bso#11185). - Prevent samba package updates from disabling samba kerberos printing. - Add sparse file support for samba; (fate#318424). - Purge printer name cache on spoolss SetPrinter change; (bso#11210);
  (bnc#901813). - Correctly retain errno from Btrfs snapshot ioctls; (bnc#923374). - Simplify libxslt build requirement and README.SUSE install.
- Remove no longer required cleanup steps while populating the build root. - Remove deprecated base_rid example from idmap_rid manpage; (bso#11169);
  (bnc#913304). - Update to 4.2.0.
  + smbd: Stop using vfs_Chdir after SMB_VFS_DISCONNECT; (bso#1115).
  + pam_winbind: fix warn_pwd_expire implementation; (bso#9056).
  + nsswitch: Fix soname of linux nss_*.so.2 modules; (bso#9299).
  + Make 'profiles' work again; (bso#9629).
  + s3:smb2_server: protect against integer wrap with
    "smb2 max credits = 65535"; (bso#9702).
  + Make validate_ldb of String(Generalized-Time) accept millisecond format
    ".000Z"; (bso#9810).
  + Use -R linker flag on Solaris, not -rpath; (bso#10112).
  + vfs: Add glusterfs manpage; (bso#10240).
  + Make 'smbclient' use cached creds; (bso#10279).
  + pdb: Fix build issues with shared modules; (bso#10355).
  + s4-dns: Add support for BIND 9.10; (bso#10620).
  + idmap: Return the correct id type to *id_to_sid methods; (bso#10720).
  + printing/cups: Pack requested-attributes with IPP_TAG_KEYWORD; (bso#10808).
  + Don't build vfs_snapper on FreeBSD; (bso#10834).
  + nss_winbind: Add getgroupmembership for FreeBSD; (bso#10835).
  + idmap_rfc2307: Fix a crash after connection problem to DC; (bso#10837).
  + s3: smb2cli: query info return length check was reversed; (bso#10848).
  + s3: lib, s3: modules: Fix compilation on Solaris; (bso#10849).
  + lib: uid_wrapper: Fix setgroups and syscall detection on a system without
    native uid_wrapper library; (bso#10851).
  + winbind3: Fix pwent variable substitution; (bso#10852).
  + Improve samba-regedit; (bso#10859).
  + registry: Don't leave dangling transactions; (bso#10860).
  + Fix build of socket_wrapper on systems without SO_PROTOCOL; (bso#10861).
  + build: Do not install 'texpect' binary anymore; (bso#10862).
  + Fix testparm to show hidden share defaults; (bso#10864).
  + libcli/smb: Fix smb2cli_validate_negotiate_info with min=PROTOCOL_NT1
    max=PROTOCOL_SMB2_02; (bso#10866).
  + Integrate CTDB into top-level Samba build; (bso#10892).
  + samba-tool group add: Add option '--nis-domain' and '--gid'; (bso#10895).
  + s3-nmbd: Fix netbios name truncation; (bso#10896).
  + spoolss: Fix handling of bad EnumJobs levels; (bso#10898).
  + Fix smbclient loops doing a directory listing against Mac OS X 10 server
    with a non-wildcard path; (bso#10904).
  + Fix print job enumeration; (bso#10905); (bnc#898031).
  + samba-tool: Create NIS enabled users and unixHomeDirectory attribute;
    (bso#10909).
  + Add support for SMB2 leases; (bso#10911).
  + btrfs: Don't leak opened directory handle; (bso#10918).
  + s3: nmbd: Ensure NetBIOS names are only 15 characters stored; (bso#10920).
  + s3:smbd: Fix file corruption using "write cache size != 0"; (bso#10921).
  + pdb_tdb: Fix a TALLOC/SAFE_FREE mixup; (bso#10932).
  + s3-keytab: fix keytab array NULL termination; (bso#10933).
  + s3:passdb: fix logic in pdb_set_pw_history(); (bso#10940).
  + Cleanup add_string_to_array and usage; (bso#10942).
  + dbwrap_ctdb: Pass on mutex flags to tdb_open; (bso#10942).
  + Fix RootDSE search with extended dn control; (bso#10949).
  + Fix 'samba-tool dns serverinfo <server>' for IPv6; (bso#10952).
  + libcli/smb: only force signing of smb2 session setups when binding a new
    session; (bso#10958).
  + s3-smbclient: Return success if we listed the shares; (bso#10960).
  + s3-smbstatus: Fix exit code of profile output; (bso#10961).
  + socket_wrapper: Add missing prototype check for eventfd; (bso#10965).
  + libcli: SMB2: Pure SMB2-only negprot fix to make us behave as a Windows
    client does; (bso#10966).
  + vfs_streams_xattr: Check stream type; (bso#10971).
  + s3: smbd: Fix *allocate* calls to follow POSIX error return convention;
    (bso#10982).
  + vfs_fruit: Add support for AAPL; (bso#10983).
  + Fix spoolss IDL response marshalling when returning error without clearing
    info; (bso#10984).
  + dsdb-samldb: Check for extended access rights before we allow changes to
    userAccountControl; (bso#10993); CVE-2014-8143; (boo#914279).
  + Fix IPv6 support in CTDB; (bso#10996).
  + ctdb-daemon: Use correct tdb flags when enabling robust mutex support;
    (bso#11000).
  + vfs_streams_xattr: Add missing call to SMB_VFS_NEXT_CONNECT; (bso#11005).
  + s3-util: Fix authentication with long hostnames; (bso#11008).
  + ctdb-build: Fix build without xsltproc; (bso#11014).
  + packaging: Include CTDB man pages in the tarball; (bso#11014).
  + pdb_get_trusteddom_pw() fails with non valid UTF16 random passwords;
    (bso#11016).
  + Make Sharepoint search show user documents; (bso#11022).
  + nss_wrapper: check for nss.h; (bso#11026).
  + Enable mutexes in gencache_notrans.tdb; (bso#11032).
  + tdb_wrap: Make mutexes easier to use; (bso#11032).
  + lib/util: Avoid collision which alread defined consumer DEBUG macro;
    (bso#11033).
  + winbind: Retry after SESSION_EXPIRED error in ping-dc; (bso#11034).
  + s3-libads: Fix a possible segfault in kerberos_fetch_pac(); (bso#11037).
  + vfs_fruit: Fix base_fsp name conversion; (bso#11039).
  + vfs_fruit: mmap under FreeBSD needs PROT_READ; (bso#11040).
  + Fix authentication using Kerberos (not AD); (bso#11044).
  + net: Fix sam addgroupmem; (bso#11051).
  + vfs_snapper: Correctly handles multi-byte DBus strings; (bso#11055);
    (bnc#913238).
  + cli_connect_nb_send: Don't segfault on host == NULL; (bso#11058).
  + utils: Fix 'net time' segfault; (bso#11058).
  + libsmb: Provide authinfo domain for encrypted session referrals;
    (bso#11059).
  + s3-pam_smbpass: Fix memory leak in pam_sm_authenticate(); (bso#11066).
  + vfs_glusterfs: Add comments to the pipe(2) code; (bso#11069).
  + vfs/glusterfs: Change xattr key to match gluster key; (bso#11069).
  + vfs_glusterfs: Implement AIO support; (bso#11069).
  + s3-vfs: Fix developer build of vfs_ceph module; (bso#11070).
  + s3: netlogon: Ensure we don't call talloc_free on an uninitialized pointer;
    (bso#11077); CVE-2015-0240; (bnc#917376).
  + vfs: Add a brief vfs_ceph manpage; (bso#11088).
  + s3: smbclient: Allinfo leaves the file handle open; (bso#11094).
  + Fix Win8.1 Credentials Manager issue after KB2992611 on Samba domain;
    (bso#11097).
  + debug: Set close-on-exec for the main log file FD; (bso#11100).
  + s3: smbd: leases - losen paranoia check. Stat opens can grant leases;
    (bso#11102).
  + s3: smbd: SMB2 close. If a file has delete on close, store the return info
    before deleting; (bso#11104).
  + doc:man:vfs_glusterfs: improve the configuration section; (bso#11117).
  + snprintf: Try to support %j; (bso#11119).
  + ctdb-io: Do not use sys_write to write to client sockets; (bso#11124).
  + doc-xml: Add 'sharesec' reference to 'access based share enum';
    (bso#11127). - Update to 4.2.0rc5.
  + Ensure we don't call talloc_free on an uninitialized pointer;
    CVE-2015-0240; (bso#11077); (bnc#917376). - Fix usage of freed memory on server exit; (bso#11218); (bnc#919309). - Fix tdb_store_flag_to_ntdb() gcc5 build failure. - Fix vfs_snapper DBus string handling; (bso#11055); (bnc#913238). - Update to 4.1.16.
  + dsdb-samldb: Check for extended access rights before we allow changes to
    userAccountControl; (bso#10993); CVE-2014-8143; (boo#914279). - Adjust baselibs.conf due to libpdb0 package rename to libsamba-passdb0. - Fix libsmbclient DFS referral handling.
  + Reuse connections derived from DFS referrals; (bso#10123); (fate#316512).
  + Set domain/workgroup based on authentication callback value; (bso#11059). - Update to 4.2.0rc4.
- Add libsamba-debug, libsocket-blocking, libsamba-cluster-support, and
  libhttp to the libs package; (boo#913547).
- Rename libpdb packages to libsamba-passdb.
- Drop libsmbsharemodes packages. - Enable avahi support on post-12.2 systems. - Update to 4.1.15.
  + pam_winbind: Fix warn_pwd_expire implementation; (bso#9056).
  + nsswitch: Fix soname of linux nss_*.so.2 modules; (bso#9299).
  + Fix profiles tool; (bso#9629).
  + s3-lib: Do not require a password with --use-ccache; (bso#10279).
  + s4:dsdb/rootdse: Expand extended dn values with the AS_SYSTEM control;
    (bso#10949).
  + s4-rpc: dnsserver: Fix enumeration of IPv4 and IPv6 addresses; (bso#10952).
  + s3:smb2_server: Allow reauthentication without signing; (bso#10958).
  + s3-smbclient: Return success if we listed the shares; (bso#10960).
  + s3-smbstatus: Fix exit code of profile output; (bso#10961).
  + libcli: SMB2: Pure SMB2-only negprot fix to make us behave as a Windows
    client does; (bso#10966).
  + s3: smbd/modules: Fix *allocate* calls to follow POSIX error return
    convention; (bso#10982).
  + Fix 'domain join' by adding 'drsuapi.DsBindInfoFallBack' attribute
    'supported_extensions'; (bso#11006).
  + idl:drsuapi: Manage all possible lengths of drsuapi_DsBindInfo;
    (bso#11006).
  + winbind: Retry LogonControl RPC in ping-dc after session expiration;
    (bso#11034). - yast2-samba-client should be able to specify osName and osVer on
  AD domain join; (bnc#873922). - Lookup FSRVP share snums at runtime rather than storing them persistently;
  (bnc#908627). - Specify soft dependency for network-online.target in Winbind systemd service
  file; (bnc#889175). - Fix spoolss error response marshalling; (bso#10984). - Update to 4.1.14.
  + pidl/wscript: Remove --with-perl-* options; revert buildtools/wafadmin/
    Tools/perl.py back to upstream state; (bso#10472).
  + s4-dns: Add support for BIND 9.10; (bso#10620).
  + nmbd fails to accept "--piddir" option; (bso#10711).
  + nss_winbind: Add getgroupmembership for FreeBSD; (bso#10835).
  + S3: source3/smbd/process.c::srv_send_smb() returns true on the error path;
    (bso#10880).
  + vfs_glusterfs: Remove "integer fd" code and store the glfs pointers;
    (bso#10889).
  + s3-nmbd: Fix netbios name truncation; (bso#10896).
  + spoolss: Fix handling of bad EnumJobs levels; (bso#10898).
  + s3: libsmbclient-smb2. MacOSX 10 SMB2 server doesn't set
    STATUS_NO_MORE_FILES when handed a non-wildcard path; (bso#10904).
  + spoolss: Fix jobid in level 3 EnumJobs response; (bso#10905).
  + s3: nmbd: Ensure NetBIOS names are only 15 characters stored; (bso#10920).
  + s3:smbd: Fix file corruption using "write cache size != 0"; (bso#10921).
  + pdb_tdb: Fix a TALLOC/SAFE_FREE mixup; (bso#10932).
  + s3-keytab: Fix keytab array NULL termination; (bso#10933).
  + Cleanup add_string_to_array and usage; (bso#10942). - Remove and cleanup shares and registry state associated with
  externally deleted snaphots exposed as shadow copies; (bnc#876312). - Use the upstream tar ball, as signature verification is now able to handle
  compressed archives. - Fix leak when closing file descriptor returned from dirfd; (bso#10918). - Fix spoolss EnumJobs and GetJob responses; (bso#10905); (bnc#898031).
  + Fix handling of bad EnumJobs levels; (bso#10898). - Remove dependency on gpg-offline as signature checking is implemented in the
  source validator. - Update to 4.1.13.
  + s3-libnet: Add libnet_join_get_machine_spns(); (bso#9984).
  + s3-libnet: Make sure we do not overwrite precreated SPNs; (bso#9984).
  + s3-libads: Add all machine account principals to the keytab; (bso#9985).
  + s3: winbindd: Old NT Domain code sets struct winbind_domain->alt_name to
    be NULL. Ensure this is safe with modern AD-DCs; (bso#10717).
  + Fix unstrcpy; (bso#10735).
  + pthreadpool: Slightly serialize jobs; (bso#10779).
  + s3: smbd: streams - Ensure share mode validation ignores internal opens
    (op_mid == 0); (bso#10797).
  + s3: smbd:open_file: Open logic fix; Use a more natural check; (bso#10809).
  + vfs_media_harmony: Fix a crash bug; (bso#10813).
  + docs: Mention incompatibility between kernel oplocks and streams_xattr;
    (bso#10814).
  + nmbd: Send waiting status to systemd; (bso#10816).
  + libcli: Fix a segfault calling smbXcli_req_set_pending() on NULL;
    (bso#10817).
  + nsswitch: Skip groups we were not able to map; (bso#10824).
  + s3-winbindd: Use correct realm for trusted domains in idmap child;
    (bso#10826).
  + s3: nmbd: Ensure the main nmbd process doesn't create zombies; (bso#10830).
  + s3: lib: Signal handling - ensure smbrun and change password code save and
    restore existing SIGCHLD handlers; (bso#10831).
  + idmap_rfc2307: Fix a crash after connection problem to DC; (bso#10837).
  + s3-winbindd: Do not use domain SID from LookupSids for Sids2UnixIDs call;
    (bso#10838).
  + s3: smb2cli: Query info return length check was reversed; (bso#10848).
  + registry: Don't leave dangling transactions; (bso#10860). - Update to 4.2.0rc2. /bin/sh /bin/sh /bin/sh /bin/sh samba-gplv3-winbind mourvedre 1703083615                                                                                  	   
                                                     4.15.13+git.710.7032820fcd-150400.3.34.2  4.15.13+git.710.7032820fcd-150400.3.34.2 4.15.13+git.710.7032820fcd-150400.3.34.2    4.15.13+git.710.7032820fcd                                       	   	   
         samba-winbind pam_winbind.conf 55-samba-winbindd 55-samba-winbindd samba-winbindd ntlm_auth wbinfo winbind.service rcwinbind winbindd sysconfig.samba-winbind ntlm_auth.1.gz wbinfo.1.gz winbindd.8.gz winbind.xml krb5rcache winbindd_privileged /etc/logrotate.d/ /etc/security/ /etc/sysconfig/network/if-down.d/ /etc/sysconfig/network/if-up.d/ /etc/sysconfig/network/scripts/ /usr/bin/ /usr/lib/systemd/system/ /usr/sbin/ /usr/share/fillup-templates/ /usr/share/man/man1/ /usr/share/man/man8/ /usr/share/omc/svcinfo.d/ /var/cache/ /var/lib/samba/ -fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -g obs://build.suse.de/SUSE:Maintenance:31907/SUSE_SLE-15-SP4_Update/625f171e9af34d04e78337ab8ddad37d-samba.SUSE_SLE-15-SP4_Update drpm xz 5 ppc64le-suse-linux                                                   	   
   
ASCII text empty Bourne-Again shell script, ASCII text executable ELF 64-bit LSB shared object, 64-bit PowerPC or cisco 7500, version 1 (SYSV), dynamically linked, interpreter /lib64/ld64.so.2, BuildID[sha1]=0e97114e621ba747cb020b0aec0b09ce86d86ac4, for GNU/Linux 3.10.0, stripped ELF 64-bit LSB shared object, 64-bit PowerPC or cisco 7500, version 1 (SYSV), dynamically linked, interpreter /lib64/ld64.so.2, BuildID[sha1]=e77b732cd74a683bf97a86cb94f779c6fa95cd84, for GNU/Linux 3.10.0, stripped  ELF 64-bit LSB shared object, 64-bit PowerPC or cisco 7500, version 1 (SYSV), dynamically linked, interpreter /lib64/ld64.so.2, BuildID[sha1]=fc1f3d43a13120f597c871519ed7ac18c6e9fff3, for GNU/Linux 3.10.0, stripped UTF-8 Unicode text troff or preprocessor input, ASCII text, with very long lines (gzip compressed data, max compression, from Unix) XML 1.0 document, ASCII text directory                            1           K                                                  0              ~                            R   R  mR  YR  0R  3R  QR  UR  cR  ƒR  ‹R  ,R  R  R  R  {R  oR  [R  ]R  WR  iR  wR  .R  R  R  gR  lR  R  -R  2R  TR  hR  bR  ZR  nR  zR  fR  R  VR  \R  R  XR  ˆR  +R  ŒR  vR  /R  |R  PR  R  R  YR  QR  SR  UR  ,R  R  gR  R  wR  R  ‰R  ŠR  ‹R  ˆR  R  fR  R  ŒR  TR  +R  XR  vR  PR  RR  R  *R  kR  YR  _R  OR  QR  R  R  5R  R  uR  sR  UR  MR  9R  R  R  CR  WR  1R  0R  R  ‡R  yR  ]R  R  {R   R  R  (R  [R  =R  R  ~R  }R  €R  R  ‚R  ƒR  mR  wR  AR  eR  ?R  ,R  "R  cR  iR  3R  $R  7R  R  qR  ER  KR  JR  IR  R  &R  oR  GR  ;R  SR  .R  aR  gR  …R  HR  
R  R  R  !R  R  `R  NR  TR  bR  BR  R  lR  R  8R  ZR  rR  @R  %R  'R  zR  4R  #R  fR  \R  LR  DR  <R  :R  tR  dR  R  †R  XR  R  ^R  )R  VR  nR  FR  R  >R  „R  2R  -R  +R  hR  R  jR  pR  vR  6R  R  |R  xR  RR  PR  /R  LhŒXô†^¸=ì.JŽú   /usr/sbin/nscd cron logrotate samba-gpupdate    4.15.13+git.710.7032820fcd                 utf-8 0ce9572322ce061dfa1b7aeea779ea1900f3ff2bc3053d2c6c6b9fcb6b3f13de        ?   ÿÿû@   ý7zXZ  
áû¡ !   t/å£á%ïþ] "ÌkÀ%å-2_¤fèeåÖ7B&PüvÖ™ÔxW¥óíÊíÇŒÒãhâ0w–Àày:´ÚË‡BA_æúr¥(/Ùª´CÃ½UkÏÉXM1H“¶V¹õ“QÐƒO™2)¬¯`êB4YŸ3a5ù]"TržŸvt×+¨ÐÔ»FU:·FðXÇƒû¯·Ý³¼y˜›¥^ª«ÒØ[j›•x`:m=nîþÿìOðf…£øF´N“væ Ô•ë‹;È¼°ã¤}0´^øˆËàtæ´bÊV³küråHÖÍrì9G‰íY.Ì(¹e„2JÆ^I}É0Üòn‘³—a(Å³ã-½RŒG>Þ°6ÓÅEØiò6‚«Ëc}.õ¾!rÚ+kôž2°¹®-BS$#ª6²ÿb?á¯I
sæŒ¿BÝœçYØKFð[ê!ïîôP;h?],üÄäÒä8»1Aâ;n'i÷¢è%C'Ø0´Md7ú/ó1
H†¶ÿÃ¦ôó~yÓ4æÜkM]	´¥•E·æ"ø¨
èÕOwÀWyŠ$Ñ:Î¤¬ZW[iƒñ"HîežGÌ‰ŽèQ[Ú©MÀß~¼õæF:uàØp^a‰ÈÓÑeSšauÇqYtþ…+CzäbÁâ‚ZF®+Dž@~;2“É<;$Æ‡&ö,1zlÉVÔŒh<rX²ãŠ¢vó?‹´ÎèÆ¾‹›c¢ê¯3K: _ñÂµ„ÿÍÈ.bk¦îFp!Ýjˆ€°ÊßS	o¹ƒÙÆCð®æ¸gc4ÙãÞÅ2¥Ñýiwá…ï@¡eÁ%Ûpì\ÜKÔÁü¾%_¥Ä—ã—@í€ÛñwJ¶E8Ýf#¤Ð^ÛglêÓÂ×Ámù´;M±i¥¢šB†¹’gÁ#ñQÉ¨XR¨7]Õpç'7Ñ†RA{ÝÖmæò‘õ?AG)•q™ä’iƒ˜á6µ©ZÔV Ùò†öEÎ âî£a=§=Ò£ïÝiªÝq´D@LH²Cª#‚Ô]IsKRrÂå¿]¿Ç“‡Å}Fõ¨oÀC‰å®P¼Ö—ç˜ôû.é¸«Î‚©qA‘¢íõ8_¢¦îÉ½È­Å\p†³Kð°>úŸ}ÚÉ(îí®4aÌöŸ&¶êÃ.T…-×m¯ª£0æå¡½®À¿á4àÿáa‚_õ_:þRÃLÍÞ b ð/ð¶Ù¢ƒ¤ì"]^@ô<ª;ôV®wp4AŒƒçTÞô‡1Û|ãÛÈMy“‚D?r½)rØÇ\8ë¤C_ãÍ£‰Ÿ§·ÉM`†z3ö{]¤ºQÖ’ÂÌñÓ2Í+à<%Í6Ê®më5£aä……á÷(v¸†É çHþCVjJ´ßQœFÄí˜§—Ñ†ÐcZçsÓUiüÜtÃX”Íö;U4ïêHz·mxÊ9•R˜žÖÑ¯Š(ùûÁé°ZK`îÊ¡.ÄýÅ=kK%Ï€aüáÃÐkqo˜îZÀ|•i\v v»ED‡ZÃ™Îxu7—†‰ñAŸ(!B‰‡Z»)ë~½ÌIØ×<tÁŽ(ªÁœï°5!05"$ÈDäN"þôC¦x¸6¾ƒ7pMÃ!oG¬¼ 	[wsŠŽ›jW’Â¹Ž:‡ñ\â­siçj¾*›¾Øq0Ú,€ufþôdŽÐäèðñÑGa Ü\2ñ/©Ú¬âHÚŠ»Í,wø<ðoÅˆ qáš	¥-{
Ø.‹{7Õö3.I&ìH¸B°[’oê¶jŒ!øt4añØ ª«Ï^¥š-ªÂn{N8ëÏÍü~^.CZ4~õ`ºÖäÊ‰_Yè¬‘ËpY=7õÄjþÅÀ¶“W×Ì©Z›KìËOêNÖ\Þñ£³›öÚã¦I_Ÿy¹CŠ$Í„yÉ,‡zö!ÔÐÐ¢ÿ—IFïÕ€rP´÷óo,|iŠÔå(à8€¨yb¦’GO0W¯óGÙ¥-úiˆáLeÀƒ´zòui“Ç	ÓW&gwåÒú…›÷(NXpÒž¢÷u¦;jÜ°kíò%ZÌÕÜ©¯çGØ»©mz–.\ÖŸÃ=(µÊ$)	°9µÌ´®Ô%Ýé®Ä¿çPÂñEÊžpj§ufÊýk}eV±t¿Ä@Ïç§–ú÷AFÇ£‡>ÿì áÇ‡hÒ7cV1€¥œXD‹
ÀÂ°	\±)<Ú	³¯Þ¢îéõ£·èL¯:&@‘‹ ß™Î7‡êgÅlKTûYqv:Š2µ`‚”(Qµ€“š@mgY‘DOî9Eü'à>ÙŽ#sÞÐ‚qp»¼gDðž2'H
 u¯2àßµ®y%À¶ÝÆü$Yáv‚th‰¥nXŸR{0‘2WÕstÛßÈ*ê°Ý€‰~ã¦ù¥9õ´ÚÚ¹LröˆDéû$eìÝ»êqùÉAë¯n0Ô¨ã¡ÞÒzcÉ€hÆM†ÚDçáW>¼ÌÔx”~³@49Gl^OìÿƒdUôq?nË¦È±O‰C°`E”©Þúq¬ƒ·ûüêD'T®‹lÅAˆ­æFý”‘‰€”ÝÒ©Ç¹2ï†2ø;Iz¹~5¢q…ˆec€$n¤J˜w:^¨å· ·ŸéÆ¨«‹–’t@K²Q×¥H.—-fýÍ~ºÂ)¾ªí •›*+árSŸÂ»_+v'A”ËªíÿbtÏÆÅ&äe¦Õš Ý‘0®(oáîªFêòï¢ø_Ô®|JÁX—ëã¸$ùÝ$_üêl¸L»^Ï·¶Òï‘{™GöTyôpB5ƒvw:š:/~úš×ß…H&Âïý$Éá»Ø¢ãšëZP=i:†f0ø†žF@P¸x×‚µÞÕOÏ‹^­á#V›sº3Ÿ§Ð‹SW ƒÒ¯sSÌ_hãfëTLcB‰ŽcÀÈ²|Õªïi}5U~Â6Û'ËâuÙØÕ^ìf¼KÂMµ¦^W|Ç÷¦Å¿ÇFñYFyîW]–;Ì"p¢•ðI/èE-Ú3M-íJºùlNÅ©F7ÔëØ?B€Ïj¶×	ÇÜtý›uiÊ:`a}ä]€Ç•ó¯”eâI}ã,¹:A3OWÜÿÁ‘â;ÆºNÒ-0ÝÆ¯ÙÖôíú*˜!ï4ÊûhFí×UÇhßßÄÑ~O9<S!øR£O†íGX”ÿ„g)‹¼. [aY‰ÂD_w6Þ‹Žˆå+dÍóºä”)ÇðfH4Íü–{½=ç<:*ª×j¶ç+nVcMßiÍ†0ójI”¨'P$×Þo‹q_ŸÐêÙ¸2¯)‚í‰Œfç7¨,!zCåFe5|´8äé"ë3ÁÙÒ]ý’£(âtïÎaÐ·Ó¡Ž|Æä¦l¸÷•¢tH¤2ñV?¹]JDp’’)»¬!úó¥à0¢ð¡Ûä~ØæxíÈ|A–7ƒï:¡-"\\Ktõ’Ï~•/L\6‡æž’eéHrFãN{ÿÌD÷Nö3È…f„ÖX¶F­Ç„IîÚ•C<r-Þógó"†÷ž´²îMåûÙ‚yäåbcÁöuî#
È1GÞ×âwßïìÒ›ÊK+”Zv%JÚîØ*~ºªaÎ/ËaujÆÅkO¼V<«È¶Ç™'&´Ÿ¶ËØ~ECwÇZXMÊ/]í#Ÿ»Êí"¢nÚPöeºš´N4!®fïµHW;J°Tdû˜­ªëx2InÿÚÖ#:à|Ù7|6Ýš{½ŽOü›¨Þ¾ù3Œ¸ßŸý¤Êr9tYvoë?Ÿ8¹2bW9q}¨ìº7æñÅíYhW—þt=”¹ðÏÛoÈ»a ¼˜,øs*àÄ´u–‡P;®¦Ã%å:þ6UîºìH']:ãY\5_])}™¾Ò—ší]¢P²WðÕ÷ÝáËpÆÞti¯a…jÁhÔP§µ¼ÇwÀíeã¼vÜìL  Úp¤¤VêFÆÃ_¨jhùvzfHÓ_˜ðáÒP±¢Ãöû·MÍ|kÈY†É»4´f±r4[u2Š†ÏŽÐ^¤ü’âÌfížQãnÄJqîßÉÞèK-xy·!€u¤gn)ªÆÄ»?[|K]>4s%aô¥ ¨zã/“-ë¨à'ªéÒ!4Ø8˜<ü»ÌÜ¥l=/Àž·À€KÒïÑOµî;5ˆšËÂÆâüûhæ*ý5ÎZ\ùã2¸xâÌfê\õ¸Vä(SX@èöö*c®ªrLŠ*ÉCD8ZÿŠá1Wú#Û]teDOhx§ð""ù¹Ç}·ÑœG»àK:–¤59¤‰[EÂˆúœàtV.Ôéˆ`üÒÎ6‡Úwj~wæ˜ü°+æÜùOe·`è¿i{ñ•“zà%(­¤”s%ú"ÞÎ« •tœ¬‰úUÍÎjú¨J‚©úü!Ø©jýø¾ø'aXæÛHÑÔL­MV ëaNñÝÔ´(N½”•å½þåã*ÀdD–›sIÐ‘îx¨/RˆZ¸’*o#@âTZÍdù2©¦ž-þªn]¯¥#mcbk*êu•Í*Í'ãÇÇå!á<[çhùÛÇ)/Ü­òqùj¸žùëß9ÿ±?P#*Ñ]h^ÕêŒ4`Å§‹KWoëå óÁLiÍJãH5¡P2Ë_!b(³Á¦ƒ<ÿ"§»Ãâ¼°ÔÃ{òîô%rwõ{åŽÑ–à1¶fU›¢ãÀ®¬ŒhE¢e:`–Î
Å¡wµÁ´a/FIJÛRPo™k¤kÆšÉ`È-ét#@)ìÃ‚þ&ÂI__À»twJ~úœÓ$@ª¼É«Öf,î­?©élg•&ô]êv' ÿ3,"â%òÌt·…t´Ïìëí…2Z$ÁÓgôµ»\Wô )¤ã[©Sé´ˆØDYý±Fú_z„&ê”Iÿ‚Ì;£Gêñô¼'BÊÞ.jà(¬Š˜»d–§óÍÌ3¼ÙuG¼Ì’þ>û›aüBk–¾Šìa¥8b‘7xéuªÒ6»Ü€å-B%Úì:öq5†€¥8meG
Æë'×(å
¶½Æ\ƒö,™ò÷W~àgÄ¤´
­B¸ŒÓI¢Î§¥´êœÍÚMëaÓîC7Óäª.g¦dÅñ÷ìŠñtÀŠÍŠ¢·?¼¼ ×Qï
îøÈ6SUÅiÑ9m"À™<IìOžêmû,jØ^Òø)ƒ_©¶3ßK$Ó<SØ‘Z=4ÛKVí) ‘_©§˜’të<ÞìÕ+ªÚãÀ x£§’¦Y¯§ÖF·Û—Ô¿±W\wÌw8©v@°x¯D£@ZK€7Äïª?Ë_\ž–'M‚ú¯¶0Ü“áõdÝóÆPR¯¹Ä©xv=+máX@á#¾¼ÉøôgâÌ ƒÝ3—ØCÇ-â4„¦ÄxÓ^3$ýÅj¿Ñ=L>rõÊÈT*¡ã¬®oXSçúfüK f´0ùŒ™Ír ±}‚Gë›R¦ÉÑ ßrs»UŽQvGšFÞr›Ú©Êa@aBµ¶Òojµê>èÚðYòé±¥h†a§)!E+]’S™¢æs> XÐrFv¹æ’¬6é']ò'ˆ«NÜÈ=×ƒ ùX{8Ô·¥wì6Æìy²ù6Üqè	Òybïâ’ÆZ®³»*¦Vý-5Sú’Ú¤y›hÍ§·÷{¾c!å¸ù—n‘Ñ”HŸ%3‚›ÆX'}poyÕ†”ë|ÔÀ@ ÿ’€xÜÒÖG¦La¦Øéoey¯q–±eIBaå¯0†qÑ8§!É$uzÝ¿šOàfv»¯DyüÝ4CEÄdy*§<}:=ÍJÄ F œ}Á 8Nt€ÕØL÷Ûë-ešÓÒ8´nÒGKêMÐžÃH¼çÚ¢[HÍðÊGëËz]L
IœIÅ<,cjÐïŸS€¾7Ú‚ÉeÁ¡d}¶¶×šÞÒëÉê±…0Ð×¡Ð‘<Ù™Wó¦³BéÉ…¢™ù%±ùzŽpÂ©È|¸ùî¢˜cØwé–ÙGâb–x,ÙVÿÉX¡¹UkbyÅ‚Láìú0Ú“½ÖãÁŸ¸Ì óà.„ú‚¼`dc´	+3|2§¨af<Ãg!$ß¯cbÜîÚ~B°u%7Q\‘M`¯¾§û‹Q4ÐÈE×us:bšCÀ0+ãsÒ®"«Õf¾¡÷ Ežà‹ü9±¤|R†›CµJÆæcÂ4¦cnû±O3Dykö/´_ãÇÉ˜‡~(_å±! qÕ((îáüÈ’)M´>»ŠÇb*gµºqÖÛ¢
K!òÄ²Ó ¡¯½Ñ¨zñb(’Ápk¯Ø'0Ýºµô]Ÿ©¯¤ùÑ4CÆî} ùÈëÌ,.ªp1qå'Ñ¦Í*wüõK–‡FT œØà~Æ¢Šmq!ü¦ý‘åß@Ò²€h™ÏÈSÉçç ¯â¨zý!›á¬Á†ú‘àù),Âß@^)î¹èª9"ò?Ì/:9^p˜û9w*?ÞÍ îø+éÍ¦CÈØö:ÉvlêZ°t ãL]21÷% Hbíã	]r(‹‹]hñ4²Ÿh{r›ÿµ¨T_<H)ÁáÛ{¡Wó_³}iÁOfø”~•°!â	™j‘Æªx$}<—‚ÏiÛ„f:&´Kø”îã¤‡+Kü	yYïæ%9Ò+âíí³‹Ì:Velå+Ã$;ù¾×‰éíÒÁž¢­Tcžb‹úºJ¤ÂÏãÉ«ðìT¾$*¸&yó_|á¥“L$•W‘Ø;ö=áï²¾¾k_ßj>Ý€ÌŠAÒìUš39	‹Ëi|äc\5:í˜X¸cbºXœ9TÑ¯Ñvá#$<o”Ý•åP¡N¡QæÅp¢æÚ³È*0n È«fG¨+íD3j±—ý¥[~h›Tñ·„ÎyZ×™ÇžúÞÒžð ‘Í6ÐT[½¯¤ìŸøãG;d`0OY!|¶ –!á>GˆÆ¾"ï\j3Qk÷qúXj”cP’ø‰)&Á«Î¨ªpÏú•0½ XôÁöy®Nh=`¹neùê
‹l¡?ð.ðÍÙdb£ª"V@äé0³^¾J„ðnò–8ó°[âš_pÐ‹Âz+0Ô…‚(|-Æ)¡µh\\nvy=Q Šï/óæÆÀß{%¯KuØÄV“Ùç…Ï¢B¥ ‡B"gó"&Ì¹Ÿ~ÿCC†ÞË+®œÑ‚Îë€‚:8YðO‡õ½Îè¬pœÅ§X
ý9³c§2=ù‰VÖz»»xÖž«‰È@Ñ¸,M´7iDx{çã¯‰f–Â VÍcîa%xYÊò¡-“je[K AŒðMüÇüïi|ÄTïî^çäÍZµËA¤
IaUKêúÏÂ„ÉÛÉÕDQ¦Dcžñû•uÿÙAT”hj2Ò¥L§½ô/‹ÐÌ¡ÒñÖôÏv”7t8d¢Í„<Yð­î4#€=KâŸX­ëÎLä.âŒ£<½†®¿åûÌé’«1³ êKÇÕËñ °qÎúßn;	ïžñˆO‘|®YÑy"”´N!)ÎL»&N>tlII+˜ù¶;à\ïýëÎ¬é'NM¤mˆÊõrÆÁ¢58h«Tgœ(d_m.gîBêû|í>‰×Âþ¤ª7Xq©ÚxðIÝ Ý¤[.èÂ+w ÄDïÚÌmVlhéyKÓä\H·È[›moÞ®ŽÁBu¨Et»ÿ%¹¤¦~@¥‘‘Ã‹û(‹e"}iÙOÍ–PMÞC¥òî]³x( 0@xkƒïÀ½>ýÏHŠtD—Ó^ªÐ?WûçÑÌsÆ™ P€WÖkQÅjŽîß¿°£ò(q—Ò(‚½›"“?›>2ý-Í¶\‘içÓ‹00vxLŽWÌ3ÝØ.•î€oGQ#þÔ´ñý¿î‡¾*úÅåD²^†`#ÈY2§­’”T™ð4M÷5ñ*s›»Ïf·¼k	kÜ
¸Ösš,~
B¢‡´éLßøB8P[_Òjéžñz[T–ï.}cxÀk>âŸ9ÑîÇš3&k¨¢s§$?ŸQ%3Ë~Éá§$zL«2ÎãÆ'Ž@`Ê‰T„cÁÓ
¨-!ÈŒÑTØÃHŠU¦3#Àj„IÒôŒZ{ÙR@9@ë§ûY¶xåeCÿB†‡»4]¤è _æsADüÂTÚÔ¯õ‡Ô‹IÙhã— üF‹ñAýWÈ£ºoF±d\²<SÜRÈ£L-<kƒKr|bS‰ÔS¸ä°n²ÖË×Â qÅAXA XÑÄÂVÃåŠ” §‰l5¨’(TÅfÎk{®;iLýp_¦¡dº"äúÚær+<ºs8ž`Gjß†N¶ë÷ýŸYQÇôÎ¡™hŽñMÜ´·Ï•+_d{õè}M^G¨{q;÷;X„!-òfW¥$G/d‚_,[«*Hˆòí‚ßW7´X±VïÄRÅÿ%A¹=u}_VE>†«bÊrY$h˜[¶Jˆ›’£ÚÌ¼£Bµ¿Õ¥××€3V|çiÈŸš˜frKŽAÁš.ü\¬’ý ©7I/fUº”ËÆ¡^‰Ëï$ãò:tí\¾ÍítŠs1V»Áßð½ì*6ûoÏ&$Vs=ÌÖ8ÓsÈidŒ€^pŸMoýhp¥ôb‰pðâ?=Ê4aÛ–X‘öêd¿XžGƒ«¥_N;…w48¯nÃ’Åºâ=Fã}»5r?Ãâz–7ÜI+SÂÕìHEÞxaßUWtJ-P~Æ 
1ä®MU»4Ö1]‚C0H)U˜ü–rº33€ª‘‹&l;œÀ©O—Ës}‚³þücÔ†Ä¥î_  !žFøÑ¶ü%	h<tÖ!ê$GéÓømJ\²;víc&C¶¶¥^N|y²…~‚V"
¬WXçÔ«¯Y]|Ÿ&Yz5ïwÆ¥ø“ëæ“	®ÎF„Ú¢=ñË…Ù"‚J¯:Ìhìšç€X*ÇFËQ×¤FB‹DéózY%oOñ‘k]ê©EŠÂ÷`‹ëOìÂÚìWk·ŽAÚ‘÷ÝùÍ$w„$pH%^H‚ïÆ$üùãB
ª€G˜e¢EƒÐcµ˜<õ/¿~U‚Í"œƒ¦,Ó¡5âÈ›Xf9‡ã\Z6Ä-™$W4øç{_>‰ë‚Ëb‹%Ð¬Ã•S9Z«/÷äš1ýY6z¿Ø:çò5%¶Y?=:×= ¡ŒÊzÒÛ¥$>cJ/èé	™+Å»-ö½Å ºGbÏtý+ûchä†uÆ®§$º(Rþùç¨—ThxNÉëQM>Üh½jïÑñkçÚH²‰´º ²ýF¾ÃÊE¦µ¸‘|í¦Ã|‘œxÏ¿(µ±!ç¦¦‹¸i–ï  cg{§&PE#H–Ÿ¬@’f_\KÊ#¶3‘}fŸ£/d$ÿ÷òZë"µz‰L&Y%«Ð?éS°”XÞrâ•³Ó#PdUA‰n¡Û…’ïô/}aNq¾Axæ2:LŸ¸úlõñRˆ6¤~¬íõA6~™jí` ‡pê‚!sÝ2ööq¼FÕšß_á•ØÊŠA{Û’ÛZºDtK®MI?â@!4WîM1yÓ|H4´vûÕˆC
œ—÷ñÛlÒœzß?¤þU)ºh0Sz`T†z¾Þs`àQ ˆ¸B¬öí)ŸCè1P†n4Ž®ù\€+ÈÏÃMcÎ½¤LJêc–
º@^5·÷@&f­1ÌõDªZ›â3UüfËÝ“Ù6è8ÔfgáÑŠ¿ŠuQ4µ;[â‘a? =Uåô"SšŽ|½™68M£°E˜X Ð*?ßlÜ%Ë/YBa?â1V¿%^‹6ÇP™ÝjÀ)˜ ™f›ôFV\£«èbî}cÕrQ£¸K…•ÃS¤fŒu‘°1VrÉT}BgA`áK³m›àÛæô *#?š.œéAÙ‡"Z2>-!üÿÀ×#€ËsG$GË{xÌ¶w²eüQ9jz%D?ýa>p‘xä½¡Ÿ,t‘×Ž7ùâÓo+™.¸ï®¢;(“ª¼vu«•‹âù8»·×…_µWd÷hœh¤÷J°˜w¦=ñˆö¢/~ß5²7uû¿—1…2–§QãeÅ9ˆ©ßÓ§ÅZ‰`45/&ò¡Z!†²PX¹@…•[qDTXÜvo(|;1HÀZÐ	ÏžoÇxé†££d^C‚4š–á®³V6’:m@ôxÌtû8S³÷îˆ8©à±áæ ±Ñ5Ý*C†õ.þ$(¨þíÏÝ,Šñ ,Oþ&D<ŠY—½3Q·"CCó‰XTH¦×ÅK[|`½æ0Îƒû“ÖÁó E0_=ˆ6Ý³úK!VRhÎ9¶@,ìG§æ1¦¸ÜèáIÛ*"…åª=“ù4AÓo*k›ü†›ëøHÔ'\³çÜOTß Ô¸ÕŠØêrWàa¾¼uŸ ¤`§
;ê\ÝŒ>¸c)E-–‰yý±x±ËÌà(DE)[›Ò-]Ò´™	ØƒèO`ÑípCŸó/XZ{M];àTÃcÊÿG+Ü’¢AŸ i*±åÚÜq>w/9£UÞ?÷[le¥üâ†= ¼jwq$ªÄìŒ6ÈyW-(ýÖÌð¶¤`Æ,±¤ëèÇ5‰Ün™…¾ñâ¦¾Lß —Ãçùî›‡H÷eå>‡ûTšaàáé€S»= È#ÐÛæZÊËS'É
Ý6}­âÏïÛ·63Û-ÁÒ«{²êØ”íéwŒ…[uKH¿d¦yƒ6©§3XÉÖ£³È/f1¨´_m«oš¥×ÌV·ºã9‹%ÖçïÓëæùñ¥Ô¯-(iPN2‚J©ˆ<hˆõÌy5AQ—Ù›Öf£dLÞ6¡0l]»¨“°óƒ#Ã\µ@qŒæf!Ó?)¯"7ÞÈ¨j»!A8ÙÓ‰h[d´}U»F„`ýˆ~ÈLh[ásíýä8¾­´ú5ŠÝµ×š°.[:‘gª¶{Ê¥;æ7Í¤üy¼n1ÄœfåÜÏÿ\µ›˜9ðOO¥ù™¿þø±–%!–oÛx!¾Û• ¼WA­?!Eâ ²¤Úb+X»Wúi­ƒŒÌA‚9ÃƒF}ù*_u”Ø€Ð”tÇf²a†ÜØ0·Á;ÁELê2‚lñK…²øGÅlKœ¸TÎ.z¯nñ[ZÜÖ°‹³<	røUÐÜüå¥ÎC!˜Ç´fÉµL®òv¦–Pya`¤uÚf#º‘þWd/QrÄªàÕ_Ïg¶¦*K¶Jà9R)O+÷’V£ÒvóÊ ¬ðA`ÙiGv¯'ë¨}­ÓæNW¹žsp6Ç™'™ËVÙøvŠ¦ÙLT³™ŠZk2¹Ï—^¢ŠlÛ)…öF 3YÆv¤*lák¼Ši²ì¹ŒlØ¢ Qôûñ]|”¶‹—M¾wC¯Ôƒ²oÂž|iŒñ%
qíÍhW–üs›¶ÇÇÿ.W'rjkˆ#Ðqã@d6ë[»L2;×‰>0OÝsD¿XV2û‘[ÿ[:¾àó®L§ýbìœYßÕpFÃX¢‘7èÖxc>¡Ps Î©Ç’ƒ³7Oñn|ÏF¥$”è¿ÃÌ§½¤¥ñÆ%,Q)~ß ¥³ª%btOôù³³ =-Id‘–:Sú¹Taw¦4”»‚.®_bßýé+åm8›BÒ^âDìœ@(¡‹øÒnßW’"!ýRP‚–²×ê¨h+x£ÖTlêµ‘Ôa…h	dŽéVöz´ð?A$A9UÙwñúAeÄ°yð:¼>×“E¯“z@‡	áåŠÂ‡D¼”Qå	/ˆÅ
eùµ8jÅ>†r9bd ³_ã0^ð˜.ûŠd
·ŒIpà!Zœn$).¥,ÎÉ¶«å¶“Ü=ãÜkmIqÛ­ ZSˆ™ç»Ð,Þ«n…8÷R¬iýhûp­§ ;ž	,îJ¤n¬x˜ D!ž]Ã›Y}À=¶Pành¸ººË8½úÿúj*SÔ]4ŒaÐÖ1L™`Ú+5Ú³Š_«y(Ë"ðKÆdŽ€ÌÜqæ#ðo§ƒü§ÉÐLt8æVÐ‹ËMnZÍê)£w&p_¹~„‚6ÎE)Êº¯Yâh‘Ûršû90ö,ÌÄxQUHÂSú|Ýzj/[ÕZjˆ…ä-N'b
OB„¹£°:+¼ƒŽ·m…¤ˆÆ” „ÅéZµjôbÝMä&[­ìð8Of‚ÔÏØ¥¿•©;‘Ñl&áGú|B
æˆ@S¢‘*ˆ#»-e6FˆÛxiœ'vâôºd}}´9-rzšV#ÒêC|ÝÊû9´ªÔ×T[DD?Æv›AµEÌ“Ð;bòÒ+ó»§ŸÔB0Ha¾ù“æá}liõÝzkc€ñÔ×Ú</Á—aD'tºøjT§~”?ù÷§Z²/"p 	ü¨„€W‘,ûb5?ù»ZÎ4KýÌ‹ãG½w§ê«@©Ž®ÿõ* }Ù%±‰›Œ¨Q<\øœeÜœÁ•l°i‘íCÂ<}ÍðÍb®¦½m½Ì®‹á>¹‚‚¿Î5Å”wÃyî¯"™ªH€v˜i%j}¤§s;m¤ƒOr?803…Àvh¨Õ<³øóÁí³ï"
èQbD@ÜŒdGr@vèžlœ®ü–üG¼8–a%ÑWw[ÑÓí4œD»Œd@Så™žpBñÝ¤>Àéb@v÷R©=ç¶ø¨ÇÕ¢Øi8ŠBÔ€ÎëwRÂ5ml·©ãhüï¶èÐ‡ö°ªò/z @Sjù€ à ‡áŽi½•80ÒcÄ2€2)ÙVè%Ã)·ÿ‰æá|G¨wø%ÈP#{!y–!Ù¦¿ j¬1kŒÝ<‰þšºž¥	²~¢9!Ïæ¤DÆ×…b7á­åën¤ S>bE’;¦%¦`°ÇvÝ- …þ%ck|Qâe‹!äI©òEUm¨ã¢*$žä{u¼æÑ·}sž2mDøç¡ #2aoÂ|‚ˆ¶¦Ù Þ\ùœdÎø±ð¨qÆ€QUæóHn‡æªµ‡â®#JK+ªÁwÖQkãˆž©óŸä¨4ÚÎ	­yPÑ»­›
ÃqåÔƒ•Çp?¯L{5àü–dŽÖÍ»sPWK6æjF¨=PotÑ`R¿·;r‘vNktvØ_~LwK©+	ŸôGÑ„i7>Ôÿ×:Fn`ä³œ½éäû^ï@Mô7ÙÆÐD"­Ê‰qà„oý™¬œ*´ÞåÆÇwÒ!"ÜÆÕèŽx"Ïî°ÆÚL	PS<SÇEñ)bÅð†7µÛÌŸšÉƒH³
·”Ö´ðåÞ­a¶¼a!­î¸{–O™o~€Ø<ƒ1À/·5T>X¨þu.9,A#²rÍðA½Ø³^f|6ùB4óÂ…òÍgæ¼}T!íÂqÙãu*{üÒå=äçÉ,ƒæ;â @$ðTÝE÷Öí±e¾¤OxïÑÅõwÛï#ìæ!·H:µ…6“#É\°xò|ükk»%»¿uýêQ%;L °ÉiˆlúÈt>¡Ð•Z°Þ—ƒZ=ïélûA½…åF?Úž¼×ÑªüÖž7[-¦âFn[µE_HaŠï‘»`OZ7üá-“¯}Z>4ÙpöÝxWž¼IÓÅÀ ïcüëiu4VM‰&î; ýã!-3Év¤’Ã±ÖÇV7Z²¼®IxE­í´Î râ~ûòÑÈÎÆ‰ýzØ	º’Õ–¥ FòPBæ…tK´ñÿtsAåçæ„P´¦½¢àÔG	„ÅËðÚ`¥Ÿ¢ÞŠ.BújðÃæ%ç´ä8xe  ü”îì‘õI¿’HÇGÝ¡X€´ p‚¶ÁT#OeQ£Ûú·Ê%í À”³uÒ5ewu­ã8a°
 D…’m1ŠøvO(àPªö44½]:ä]L9q.U€Ž·¢»%áêJƒÀ'¨¯Òó;1¯F®´ö¸fW1<åF[ÃÐÔ’Ùµ†g+ˆWiâŸèà+®ÀÊ|8%é/ÿ±@$˜[ÂÅœÜ[¸ áÅ.IF¡Æà]1EK+£:²Ó6Q6€ºŒ~Žðìw°aX°ÔñÅâÞ*0ooaUpãî?ãç«œð¸Ê’C"Í°3/ZQë­³ O×$õÁÚC |}—ñ¤ÛÙbÃŒ¼ü•3Ò!ÅÒZvÍI-ç¨Æ4™Å¸fÿQ@ŽxúÓ¯˜*Ö‚ÀŠÃòAxšÇÍv¿·“Äjd®ªðâ@c:3KïžÐÝ2¿xø¶qn)â…(w`l\2Žk±rÇKìé”æ¨³íö‡ö³†€Þx›4˜íM;Êèf…M±Ý˜žÿµ®M @g:ü®ã‡Èÿõˆè(vw!ô=ý¬‡m¡žr¤Næ
ù—òþ>ó«…c¦U‰.‘Tk–wþ`ø‹…=ÃÑ‘­Q!Éª(êÆqY`ù&wÀQÿù(Eá´üØùàš€‡y<³ñØ48¢š”Ö$ŠD»m©Á‹€'Ï»AZäEas»Œñjÿ¶úÍ›—” ûåÃAçò°ñªƒþ–:•æý=P¹Œ ò{1Ògk¦„ï9Sà¹(wÞHDûÍƒŠ§W’–ÁÝ ®¸ˆmmÈï2)½ØHsµ±Øú€¿RžFÙN¾ÈÊ(<_ö’ÆX­ë™ž…<;0Dþ8ç4
¦À$)±™Ï^!ÞHßJ'2-ê3%÷™â‘â“divþ+ÐÁ£å.èjYªx7ÈSÅâþ>z`ÅÁÿ? ðôE8ÄD"YÐ&ÛTœ¤œ`eeQ}ms%´Za•Ä¿cÌ×}ÞkÔÁAÝºðì‡†EV,‚]+j#BÐñíò É¶±”-V8´yµ.*<1•ÞêEä>4+¤’èç\pc;÷È±b1¢CãxW*´I-ˆ w7}_Û#ÛsqÕ‡g“’ÎQ±™x+õÝéÚÉ:~Ü1Z\´çs=·ö×Ä>È‹Å*î«N_$-~sñ<ô>íÇ–G3¹tü3èãþs_B)Û†4LC1íù×Á±qÝö½AñB	µñbÎj‡ÄûÛ¯ÎÃýa¬ÉpVw#-ÏÅÖmN¥b·^[:òÚLÊ™;ØËE3îœdîöÔp'n÷@ÿv‰Í!=F)ÌIÉ1\ã—©¯ÓYúiƒ0¬Ð÷ÜáâkïŠc±2«c@:ÜÑèžÄ]›Žqæ¿‹Lì,Ã6ùË’ŒZKîU;œB`ÍYæbSn7ŠhÎTÈ 6©Å€èÏuN1Ñ¶Aý@¿$£² ÏQÄÝ@l6†÷RHrÊŠžþ?àx‰ß¸ïvï¡Û$UzöïK,E¼(·•!a²¥&õyÉ¾è¹M©ÑuÛ!tZ†ð¤Nq-_œÇ¨kÛQØÕ˜7Óo¤QÅ¢v *žÒ@¸ «VqF)÷1O&„­Õ!!P~¾0—ñ¬Ÿî6íešMò0…Æ;ßø6ðæK¶¨:'A[œÆ„Ö‘²4æÔîð¾Ð¼ú»?¹˜Š£ˆÃõ¦„ÄgÕqLfcóÒ N‘9º?sÍ¯ÿ¬·7¹í¸ åœúp^ë€ª¸³¬ BûÀ†´ôôæzAâñÍw2aŒsˆø
‘(„£ŒNÁÂ?°Ô/Í.ñœi¯Øš®`ìÊ?`úžHú—Fa³R¥:«96ùåö°—£ôX›TÜ¬4®O6,ãõéøwj€³Ÿ†ò­ß²S7ÑÐ;Òžo…|©Sz"RŽñÎúÐ ˆbz,AN¶|ÞÐ8Û‰pûDZqWa\(²sß™W×’¨ñŽš‰¥jõÅS÷taßŽGý½¤$„g§u
&™ø@¿¤öx˜#ìÐß%ÙG?‰M‡úpÐvF/¹ô²ü¾*ž•°Ý-±xêg>$ç|öP‹U•j†»C„Gqô"Ïl³ãžÍž£§‚užú‰nTñ#`L—•&è½? ³)!’¯xá°÷gœhB¡ìOj"Õøå®æ§»yyáÃWˆh¸Ÿ©(s4:‚kãå›ý¥i‚ÖŒkúm·×õ‚%ý{žþ‰âB$~âSÄì8•æN¬ÀÖX1­ªµ°ü¢§§+ˆNˆå¿0Ä¸îjé„ZÎîkÚÐ"´¡§¦t.§E¾L6ei³þ›E—Ö"¼+ Ð‡òÁÕÜE¨s8ÂˆÅ­æù³><Hô-‰­ÿ+ýZÔ–eËZ™ØíÅ¸¹öh"Ìüõ~\d¥ª±¦ ‚A”|š†¯¹o#itaöÅsç#£*·™o-Âºx©Igé“þµ]@ëÇgGûùíXùÒÁïC>*)]ÿ¯ió<Íx×!¶±ú‘Úe„v…"³Fü-ÀÃ2%Ð#5’û*¡-×³q&§Äµ S¥¥öS¥ý@´^‚FOÙ2â"¤Æ†îW£¸óÎ—¤‘4E&ëàåu¸låB»ïà=ºò}B¤æñ e	ìÌH—ö€x˜ˆfªÄêjw4d`ÇIzF¿7ÎUåòM]QÅêu`bR”5È¡Qd,šþr‘R…Ë*õÝÀ„<uxÔ±CZÀ&$tÀÀ³\še™<s29óº˜V/_Æº RW¥ïªø!Õâ™	NV,.oÿ¶Q–Ç¶äí§Ðï4)èóáDmP6™~N‚`úÂ°ÉSÒf#-Ä9íb] V©ì:D=ìM˜?¿Êš3m»†TÏµ¬{Šì)C€EeyšGNðE,Í*´€ýÀá7,kœþ\>àå'EÕ+r¤e ±ß‘œeoUœì9Ès”¼ÏiYf3ð˜cã@ÊÏuùòÍÄ‡u’òõ²ggŠqúOy7]ßÔ1dMò¬Þ K‡<?@ü%&êÔ«M³Rhq?ægÊ ”µ)Qïe\:Ë,_uCEësMIål+W¯ˆ²wNgžDž@j;Œ$N›kUy®}¯onc$úeÈŒ’I‹«-+ø-G¢U]f«4Ô%x5õ^Íñ²•W@¸›ó@TåÓYW[À¿¢­ÓFž#™A0šô%ô£Hº×´=©‡9èç4	<ÕTddþÞ¯§u´¡T÷‘4†‰”ÿáÉ÷VWØøm1Ï¾íÜwéçÝ—kçöã³øgà›Zò‚BQ3@/“ÈÃdã:ÍkMé»{†§Ég–‰±¼•,7ë+èAÛE®2V!È’ûD+ÑØkZF£Üâ-Œ¿“Õ‰ÙõÅ‡E¼`mv'çÁÐD½PW”¥&¦'hxöør9ZD>â)E+»öh/‰29“¢?s4‘|ó)—Ä¼"ï«HûS5ö§Ï¶^¡~VÔ‘ÿÛ÷
ýcïXP³KÔ‘_Ô’õQn‘¿Ú×¹±gynäÍGWæ‘È¹¸’nÚ³,š—‚ÑZ]Qå’Á¹n³\}ê¤¼Ígô— ŠáÀ£Q’ÀžÙ7õ_&[`¥&ä«955å÷F…!•EW›3aé¥¿#öÒQÑFÊqzbWw±¤"ˆ!æ£»#BÛ¸ƒ@²ÀÀŽ~±ü¢O¹ˆ¶ÞÆYhñ§¨¾XA—Ñªk= ÊÈp¸jJ„”Ê*‹Î#}F`{?•Ë#Û×üŒä;__š”šiQ¾¢ŸcßÈÄ¼¦Jo¾Ñ ›Æ)À£Â¾(ì&µ%é½:e2ŠBÓÆå—ˆ<iµj7 u‰b¤$9ÍmNH]¨95HÑæ#}®ÃÕÓéPBdˆs¡É¦ÕŒD$ÕÉÉÍøsþúãmJW2®G¦i©0ÛýõèUz6`å”˜/?\©Tï’…ÿ•¸¢¨wmÐµüµ7[°pÒº‚žâ"¶xzÿ£ŸÎã±?:
©žvø®¥AŠpŠŸF/…¶y^¨A‰é¹¢P/A.°€B‘¥6n<”ëûQ~TÎh2qž/TÏ<Mè±Q%ß5ýÛþF†D®òSI_¢¨mä{ÓB#2émÖÿà­Í¡L(¦ïî²cµðžË‚g—¯"y¼+Ã‡¡ê/å=ÉãÇÌŸ–ÒâÈþèñ²*ô”,‰ª_<³^&Ô
Ö˜ÖyÈì6¹@o&Fÿ†˜š>1–ë³OærŸÙ[¦›QkIÒ¥ÕÉåšÈ	 ÄåÐÜ0œ™ÇÂ¹Ã,!YHet×êïßRÖÂ†1Âýšn‚ŸZµ&±dDE²w¨¼;²
­!x¾•J¹Š›CÈ2äˆOÓ¡H±’®´KÀK{•tþöù(\EP.$‡Ä[î­{FÒ,§Î›ï®‚ØVú‰[WíÇí©Éê#ô2Q3ò …£PÚY{ï<(	ëI•[1
F<¶‹»!kýŒ&O†Ù2­[×:ÅçŠódlƒHZrU­‡ì³(wdvl¶~W×³ÅÊÁE‰|ê|ƒûÊÛd×^ÊÁMmöZ¸É
Ì.EpGêÖ}@2ásQž]Ú/dñZÒ„–iEüo{0ÄÆñtÁÙ/Þüm^ÿVŠ× zV;N‰þ’©¸ çj9ÆÀÿ8-¿hpeuºÅ—GE';ò…¯¥=$bØ_tÜ TaÓ
QO5öäñb))Š¤Êfƒ£/5Áª¾6ä×þô ð˜þ”~3ç8ŽîÁ›Pø Þ Â¹<IÒc´KÖzÕwèí@¤qá¨7†«ZmëN Ü9©”[ŸLgéöû]Ê5
$-çGò¨”:e€Èèøf÷.cÂBÉÐdXT§é-BÙ7E£A¾ Ax[¹¤ÿÍsz!zÿÙxÕ/sšVãºŽf½.Ê7?/nFïçß7dZr·f¥¿‘3Éãù	¾¢+Ï³r=…fÝ]ð™m/8wDA%V”ãDôÀšñ- »¦$Øãž@<Ÿ7¨(à†¡ê…êÅØœ[~?}æí=Òi;ø³!ÉzÄ´-óíÄÖ×ËÑf0 òàÈ¯llut=ÅrUÇËpŽ”fšT¯»”rÅbèÿL(¹ï¬@Y<“KT³Õ*"#}\…¹åÊO÷ãh´$É
öCC¥]d{¸ÖNùð˜ÇÚF~ùW'*`ä:h=H-“¯õÈÛ„¢¶ŸâÏHm&% ²ŒCÑ´´R
ø|+§	¡˜dVÒH”¦1–Frø0#ðœŽG¬˜Dè¦cu#ôz ÛHÛ¢Õ[Í?¾Ï—³|u9M‹–:ÜÏÑ3a1S]m,â_žö¤N©`ÓõÎ°R¬yq«šU=ÌÆ¹¿@I7”Ëkk³1p®VÒ¢64ÿ=Ç±jÒ7Ô8càn#þ,\ð”¬–böŽº¯‡lý°ò­¯å0
Û“ðtpnÃ¸&~Ÿñµ`a?t ¯[†'Ôuø€í#Ç”q·ˆøZ*¯ãžåŒ¨@lWäc¢–´QEÃÃNˆí·'hš_õÿô@{m¬™yWvû„U¢ê½›(:Ñ¤$ f5fš~¹7ÛåÍ¡šÜ }Bá¶n‘ŽÉõ;mß@ŽUóo°‘ýÆ•q§œº=–)üÕ½VëœwÃã´"„¦B…$^kpÇ8¤æB•è¿;ÿRn2“\ ï—ÂÄ*ÏE!cÓXc?5wP½Þâ•(fs¤ÞwS@s©X/Q=Ú‡ÍSÇ3+?ÝšÆê¼sà@¢›;x>‚µjEê¯oh.Ç0y‘# -è	¿ U6ZöÍŒvi˜
Ê&‘õ—Rì`ÄÇ­cÊ´uáùYý/¢e–¸ð„h†¿‘¤aà~BóWå8Ørb€LÑ-CI}¡Z°Es>–ummÆÚq(¦Ð‹î[×»$°Y²6zêt|ašk™¿±§P¿Dq*:ãô¸PÐÙbŽ)%ÿœxÇ ý…Ž©’‡\¿SPm¯a1LÄË¿Z¡v7‘Iõ`)AÄNÝÈt3[H#ý­¬šG¦aùÔ—²%Q÷J¾„¨VãäU{ª>\od^]QtÄ•è¼Vh;Siçæã¼Ãl²0ä„1‚A—ôqêÄoúÑ-„Áu³Ä‹Á
íÀSÃ¤B:Xs²\ä@Jö<y£äèpcgó³w@í°|Í}­ãÉ‹6Å`È$ý¬ÕSÉÉ±óš;Aªg§ì zDÚoà“µÝÐØ-$ù—Å¼Bª3ÆöuÅ{LÈt1šR?ð˜yÌÆ{ý`K=ûÿßjÄ|ÿíiÞb¶9èÓ¯†#¸Þ[ ïéNÿdZ¨4@ˆ3¦õBÎ©ØÁ‚Þ,ï½R÷•°òk¡¹¾úgXF æÙ>…éiÿp/íÓeB]³ú×M$uÊ=Çg—~úçfÖ4a®µÔzfÑÜÐ[&^ËÊójî¼nœœX]ß`¯3ÌmÒyZ1²fÔ<Ö&ƒ½ëL³fÌ—\=INÐSwuzÐèî{˜;F#!¾˜‚'G-F¾—‰ÁÇÚ+¬ÙÕÖOè…­&6%õè:ÜIí'íÝ=ºSï„´Õu9'³‹ æDpî}[“ùL}@¼EdÔžPÇ*	€ˆŒm‹†›‘Æßv
Ú8Ðô¡ž¤ÿ¸0õP´²TU¬Ã*Ï6Ã¼Á³íÚé{‰ÏTaÂù.ÿÕ”LŸÂšÇ…v|i[&$·o’DÓB~Ì¸	 B³³k†:ëMBû¡Úö=ãµgËùŽ•ÂY®ÇV‘¤chúOTåÁQ–™Ü°—I;Ù_IØŒŠ&¬oMÎìð=t×â$>+ÎZpŒFÃ ºeýSDÉýÂ5Û”9Š‰—ƒ}&aÏQºrŠ)áHž‘A¸	Y?R£f«@ªG$&„ ž¸ðTô°ÆšíƒË†©ÛÑÚfn Š¡ÒäHôXˆ7»•íðheap<ºVÙ”uO2`æô^¬%žùÕ¥:ÚœÇvÚ­ÿ|N­0ÐJ€<71
ªžxMÌih'«ÙŽgÂÃ8 i›ºÀ'šÕlº/6=24ÿæ	çiufþjd×O7ÏW@®Û„2ê‚%ŽòÚ7·€0C°,LL˜éøï¼*%ž®ñm}‚óºÔ¸Â¸ÚXëæJhai[äš¹gßÑ»¡};°Î7â.çsèó+_ŒéPFÔÆ6*í"›;ôÑý‰7®,¢_¯zc}Ó©Ï˜¡6­í5:0…ú½­ÊËÛq‘]ïŒeËP$àTŠO¬ ~yyrúVT&Ÿotâû¶ã>îí 4³@ Mpà‡Ù) ‡[OÇ6àû¼HgÇf&ˆ•_^cËä}‡6Yi’`a[.ðwÍ¨º­mÝ½¥ºN&˜–9;¶¶Æ(:Q–xÆ0Ò•wó•éAˆi§ Dø½N=8ºŽwjØôÆÊÈ
ÛfÕ™/ãoÿ ÊI®•MEcHº"löâŸÐõ¸×pØõJíŽJÜ_±Yþòç¶åÕð„£ÏA–9£˜;í5çZ‹×;´{| T$ÒúKhy4‚=n)’·³„0Éý±õ›;uœtÞÞ__—ß4§•œàiè‰OšåRh
ÇsQ¼—W_uÇ6›‘©˜,(ûVk,•ÈçPf>XOd-Ç¦ ¶t‹fåDæW7›iT­ë*3ý
 Ñ$ž6VÃoaÒ!>ÓÍžù”BþßN"¼e¢KGî;fÁ‘z4á‰š£ã'«Bu‘$nŠPÕTÎë8ÚÂ†”› :ÿý¾[2——ˆF‘«Ë iÏB
6µ'ÊÕ˜³ëFƒ
!QØzN7l]ùÑãWûÿê²n û­¥.&öÀ$E9 žðÜ¹°01¸pN¹X]¦³ˆÅ?'à,·X>ÉPzš98ü¤±Œr‚ xKqš Ûß“*Z·àßxÍÛÇžOç6/JÒ•j6è-æãÊÄûb’YêwÊ§iƒ@¯ÇÈ·3 µ…+AÐBí?M7Éý …N§,6cñ3UGÒLZ-*MÒ‘Bq#ÃŽn/¤+ø”YìRPJ_ÖPÎè_ŒÆºLvÕq3¥ú|§Öµ¥i!¿Ÿ¤Û$ðö….Á:Væ@äšM ™?öÐØ
‚DÐ¨‘#·ªÜµ‰‹ë©¶Â´”û¡ù˜")¹q D³´l(…Y "â¶ÜW/©ñhÇ<NN\ëˆ_eï
¤‚³ì’_ffËÊçO:9Ò|ªµPxF•
á ŽÐ=ÇC ¢0ÄWîÁ%áoâ¸ô±äÝ@”qÌ6œx6· ðpY÷ðH7ßó/“ñ™*’Iî{ïŒ¯n‘ñ2àå€RCËlŽèX€À[o‰…eÕ…78¯«‘AÕm¬p¥ÀfAOiNAƒ]Ð,A)Í„g]ý>®¿h ?¦k¹ª¶.+ÝÑÔ%73°ž†ŽØ$²+ïû5qm	ÿr=ÈêòuLýq7ŠH¢<=:ÔAáŽB ûçÖäÑ¼*Í.I®ø¼pôž6šÄàû¸¹ð™Aµu‡áñÐ#pÄì’À@cízlTûNÁ{èÈL?qcf-öŠÛG˜kç†CGµö
Ž\¦»‡& !ç–åÐä¾Ç-º
³7ŽÜ·Ÿ¼#Ð©@,zåÆêƒªÌX‰[rRpÅþ‰h^wD9ÂÉÈÝ÷áÏvÜtª3Vqê›ZHÛ?xIq±Û°’7M5É9;82Ð;€ó[&VÔÕÉ¨0¡Ã'±®n¬Ïu	 p¯c4z™£?š©Âx¿FãSâ·ß©ä{®°o“ç[m3’ó²{þ°PìJˆÛØgjF£WVBŽ]Ñ–0ú·ï &ªš¨ŠöJì¾§Ý£ÐÕë%È_Šíj3#ÎÈ'I2qgÅ¦‘"JvL>^Cô!)”o^¢£ñÒâæ[±!=H¼EWýXµM#ì	N‡U°#	ÖGŸžD7¬F1u£dÌšu–Å`"dx _NT[YŠ'ï®£Ó{F‹·M“‚€ÏQÖËS?çeÆÕ˜ÖÅ'p?F§ë‰â³"ä/Bž6ù?Ž>ûœvÝÍw(	únFÈwµ!•Ÿ,^G~a æš¼ìz8oKh°÷¶Ô16¨ÅÁ=9B‹ªâ-‘ô
mOj›Ò†²(q3ìª ^OpLP²‚Ø=çWˆµDIýÀ‡Âô¯<ÞKçåÝ…õ²ûÀé¡÷$æ*wC	Ö$W¶`Èµhbç_þÆ“[¿WTflXí@{¬r]›MÓ¾Ð5V•F‚½”4Íßº&¢	sRaGåû86Ö6îG@ŠMóÕŒ#Þ„˜oáU«‡€nÊüï€þÎ~QÊ›¨qÜ¡á_aEýMþïec])®KPÿZ”^]Iµ³n¤™£qþz«Q–Ì°Ï>ž0³¿òkùl²S‚ír¨ÃÉ·0F:cþ¢é¤ñI®$[µöIcÌ›®ÉxÕç¦‰ÄZ}ßõ%U³‚=ã]T•I°yâ&(cVpšB ÄezVGþQ„K\ñ¬»þWáÃ¥NzSs,­kÆlÈ.æá´íÓÀ§–…[‘Õ\A€;,|yÝxç÷S~t!Q;R÷ýãk¶ÈÛ˜Ù=ÜÂ-pãQ{­lG3Ã	ùï†ã×Éþ#¬»f•z…ë^
îÕpÁsU‘àMó™¤YÈ¤‡xPì‘|3{Š¢†	ª>>òÝÿï„ çÏ6ÏMªØ¦vÍas'ŒT5«àñ(´4Z=šÁíWÏõŸr*åÐèß·û© OÆœ£ÐäÏ S5®Á,Œ@Ÿ+%¾ÝóøWýŽŽÍŽ¤³¦ðÁy‡,Ó!½óÅ'	?0ÌÍWhDjàÙz¦pÃ*¢âC[–÷?‹‰™+ði®>|9ÊH*'ÏÊ%—hœaqäÔºœÜ¡ÖQÀR½Ú ¬”²oÉRð ÍY.”Iú"“Í/üµ³Q†ºö­)Òg*~{^9ŸáuNM½§±Û
,i¸¡Ä €ù±ò†S­´\nýí³kõðÕ„s‰$}Ï9£‘çfóŠ µçxô!Ü­>Ë«_P~ê†R›á¬B(Ü¦ÏI€°}9âÿâT$ƒ6ôÀ³v©<Ð«}.ãhrÇ¢°C/ö  ÐÊ)ˆâ—€X<G’® ãv>LÑëÐÃ7raeÖ×ÝT6.T÷÷Ý[äB\XbÉ·ßÞÑc0½´jBù(-Äçž:òfjêºåÚø_`ŒoÙÈÍàU<ãƒMÎÞ¾@<_p§&!5ºaðIQÜM4.ösàOZ'‘[(GÀ†	ºMše©¤žnÇÊ%p•û-§GŽ©ûXjÈŽ¸a/›?#-']øÔ:îñ‘]õÉöÁa€Í9Û^¸5LÓ%ì`r5 Yˆ8Çç„h=•j`Â>æýÒ=Å »
ÑÎLßiŠªT‹;ùG0A¹9Œ£|ùæ½vÙwRDŠ‚®K-:­V#Fy¦áN§ÑK}O†›.B1• ßÂã¿<©F@Ä±GÃÙ+#~úy|2Œ²ŸÅVÆû‹À‰´-DëÓŽÝÕ
½`ešI¯ $0"&'öW¦4ž›ÛÙ¨ŽüAµ±å÷—Ë& 1ë@¥o#¹Æðé@~…‘…³µíºQëÊNpÍêý.œ \P?N9÷“ÏšÖì€&'Ç]&'Žçì¶m£×;sã9H¦’ [x¾œ˜ )‡D˜ÐÉ¾<.O3Ô=Ÿ‡i8ÝïÈ±·ƒ‰‡Rò)=èÜºj˜Ñ¹ÿ¬R¯Áh¦°*ôÆ—ëÐ!\ßQZŒþâ„$ÖCg¹ÚdXn4!;NŽ™c…,Q -
»üâ+Ö›Èº	ë'	²û¶¢nCEë²žA„~F¼‰™i¹»ÎI=«ž9ä™°@Ëßùk·ê¿þÓPçÚ³lñ`Ž!ÕPEÝ“îÎú3ð¹5•UË¦Â<¤õñÑÅ¹TOïN
¶¤¦Cîs+m’ä˜·ÂKÿÙp}»v…ÂÂ\7ãÕ„Ôáµ•S0Ù!ÍyÑoQì£E·íŒw-èþ&ÂbY‰h° ñ¹ä%D½<µ<‚Âh’]ûTž_GEú–~ç;aÚ^£rœøñûVæ’zÓ\•¦vÍ¬ã°Î[uFªIŽ}Â¬!´·L'T1O­2 G—G} À,©òÖµP½Qa‹¶Ob´”;c"Fâ¾ßKU°uoìQx&*Ÿ_7±ÃÖ­Ü=':Ö-’pÀiºmÚú1¯¼6ªP‰§ïÃÜ©jò	!ÎCÆöPÎÕ¿…ìÔªiÍ¼Ë8ö¬íË#7–§‹"G1”ÞE±ˆ‹ôÍLÁ6,‰b¨”ÑsJ¤éšŠ£Ci…º _+vËoXz¸²‡‹Â³K8e{PzŠá¡øœÚ	\ÖÉwš:Ò+¿€jéWÙ†÷ñS¡fGÿ€„,ŠÀÉœ¨¸ÃCjØe7Þxs™¾Ó½ç#ôŽf‚bý„û´äÒSŒl<g’gƒGªä`}Ók<j¦Yªu2b®$¡…ÒìnbÁe÷góË.þ§È7š ¶ÿ„‚hqú~s"÷èm£SÝ1o¯ÞXù|ÉêÙ¢x¾øâ—wÁ1³´Žz9OÓ÷)5¹:>3§½Ô0®ûLÈ“±µl7.xÎòŽI„¨1Ún˜î€ƒT¦7E"yÌI­û@-Ì’ÞÛÐh"æï4Û"ú3Ù`¤4?³WsYBÝ]¾'š±3Òˆô%T*•¿ÔQ«¯p€øN™OØŽ×`œÕ\¡ŽMÃñÊÑ÷>¯ü=/|^ô–š·÷Õ†ðSNãñ¯ƒJÌCò4QPÞ&¢Ì|ÒújšŠÙÇ°ÞëzúÎ‡?ŸÏNíâ&ãèïé<9.u£lµvá<!˜v.*‘¤)œB‘o:øauýöÛë
ï`zÍÑ´VlÜ˜Î=aË2à?y˜®€÷¦öúá;k{x,|É[Ëoiã[ÓKÃ`Øªpó•8òöº@‚f@c#÷¬¬ómÒÝ`2{¤âeçƒý‰ w®Têu4:óµÅ”Q["û,£å½uÊ%£2‡Ì†$i’ šsã)5Q@ùe{˜9h¼|½¦Øñ:µ¡J­£EJTd3 À¬zG!™^¿÷N‰èÒŠ‡æx¥%‰u5®<nrèÖdW«ø¸»¹Jª®Ì?¡ Á­®ÓEéjïêõh½KHR÷	˜Ù›]º}NYT”äg³œ#fÃuæÜmúóòò„âeqaú·{½@¸îÎþ*Îó‹a5¯.v4ùD‹îaÄÞl«5¯,Þ÷ÿù‚Ä+‹žàø
v >?q³›]i»^†hAâ:b|	˜Áp_QôJ®õcHt‡ÅXÂã»)~(Ó‘´=ºõzpÐo#l¿?Aé%>‡sÂ›ÅŠO,œ ï{X½=m÷@ž{øvGÕ¹’Ç_™2;ïŒµU¯|„7<È;Ì*–Å*¦mõø%	^Ýô²>D3p6Ò¾‡ŸŽr³’ÂÛÒµröyßV³æÔ™íÏ  œUÄ%~ä¦8ÞMF×ëÆ×Ó98Ów,€©¬¦b±ñÑ¨sÑ×P¿V ˜Í¾ìL4µÕb%úbµëÂ]™ñx•ÈL†­ëÜ\¼ÏD—V¥îe¨M%}9d7Â3Ä%›7.ãÝV¥¹¨§Ì—@ñ&8ÝÑÏ†¾Z43´|]/q+¢-	M9¥• XL”°Þø
:žü»^EP×Á®Œç_B@W\>ìÀ{X…Ê9þDà-ÈöÉ=ÒåÃ˜ceF,ùüííÿj‹„È é i­QŠ ›Ÿ82: 9[|ÌUmQâ¨ÉÌÅ¸)¾¤‚4«-j0ºŽ©`5;t©lˆ»ë¯íêù‘_Šð>ª"—ÎÔ™.W8õÖ†£&é·XÞAxOáh›óÞjÐmŸ«J€±4×Ý¦˜ÌNŸ¯HH©yg—Ïðz«ùHMy›Í}³Dì;O÷¶jã ´T+_˜cÏ]*ÞøÇI £RxÛ&åksÁÌ‡Ú&€g¤ÎÞX!ŽÆ0íY¿øÑcPÌ<Âž1’â6¦F?<ŸžÁû»<óñ‡ì6	°­›ÖØÑ:ŽX=³v¨Â°c¤Uˆ;ªG4§Ýà ~óÍu`]$WW‰ðÕóm¢8>“G 8'þë&\{")J›ÆÈ6"Xy°¨’âYÌ9°µiŽá›ŒÅ,Hts©M—Q#¹Vtkšãs!IñnƒÛ“æïC3$ká¶ÇºÓõ´ˆ±].=Dæ›s@ªŽ÷Ô"ÔŠ{ûÞX`";¼:æIYþòŠ£·©õ•‡¡·y‰—™Þ­Û`„›ñâ9[Qç=¸ñ5½L½âIšÒ6=n­Dïz¹ŸSuIÀ²”ˆj†	ÕA]l®éˆ\œàc(¶·ø­H´Ñ­ýœS³âú¿Š,Ÿø{þW+ªóÅµ?N6:¡““cqµäï±@ªJZ+Hq´CïQ
à[Œ}Ud$Ý±õ³vzÓWÿ¸	ØE$&msŸMÐOIšêÞÝ†Ââ<–q%»ûYŠGÃÎ¡dn“5*²P¯¾Jy­wwDÒÍ›Ë*‚ÛìønLÇ»G/jù«Æîìš9èSñ›bíñžnZæANÇ*M†Ðw!8«£Îô]á¾,WôˆÚç„ÚôBá-c¢ŽêøeùÃ©DccÔýù}²Ü%G¿`ÔxŽ`£nž=¸Êã(|ÝvÞZÐß3úÉŽœp0c¡¬kT3Y¡Ö×ââo1ÄMÀVñ¡ÆC«”{Ô‹š\ÂIÒÌ…ho­æyõuqÛ+…QÅšPY>ö‘3š•ïÏ`»í¢AUaºqokµkEsOº±)®H^³hõ,I¥Ôp}úc‘’
B¶G»Lm^&±R.éêgo@¢°´Íëµø¡XÙ_å#V¡æ•¦ýxƒƒÑ×\¢2K»éN 3ÃçRÈ!Ú›â½¡Åø7Bz„ åß09dlÛ§=up»B;ßž¬Åø!ÓúRŸ pSU‹£¹9Â>©h,¿ñcù<eüÓ÷ô'ŠiŒà>‰ÞlË’Žçƒ«}E°¦ÖGÜù ®Æ$qR‡0O‰úu»ƒÉi/ixÞª®#õb‘ÙEU¹\²ÁØD¼e¡¡\ìÿ;Ÿ‰¨€TO|Eu9ÁaÀ	“"D&ÄÓÀQMnÅò¹Œ)<`9p½Ìê•%4½Ófƒ½qÛl+M ì†9ñ
ƒ²©â••Jñsü±Féï¿ÙõÝO¼P¥öŠS€N—d¦%¾¿ÝQ¾f`V«'å§XYØŽóS…â>ßeñ2LÒ@Œ!Ž£ö˜/Ó9äóBŒèƒcæHKk…Æ_­ªÁAB\'n,µ5pk®‡oÎë¼åps¢gW#¡#%²I—›5Ô°¢Â»jØ<[Ô#j‘ý¡g×èÞÏÜ.^²«²ŒÄBZÒs¬uÒÓ¼§ôõ
ýWàPP/þ]ªµXY‘ã…Cê#Úµ·¾V‰`dóf3Wív	ÞÆªà(ÑS†\øßL°Z	v0²;‚¡¨Ò±DÏñªg6}dæY—Èn÷¥Ï×¡P´?,iÌnk)H!£ü.TëVJHüÆm@—´—)	¦ÆKZn€-X>ØcÌq¦“°(åþ´úe…Ð`G4ñ)¼€þCö–¯' /¿[b#v%üÙvêÎæ[××“ùµ´´#q–›Å<.QC|Xq³¨Ø¥¹V…²÷ë‚›RíG‰.HG‰{_\ø™7êºF ¿¥á™!õG½õä™]xnØûq9!è¹ÎþîÎxóàiPýñŠ	ígÒÍŒYÜW1´ûð”$q¦é—
ÅEÞþMË ÁXqÑÓ%	ÏºûƒŽ*ßB!‘µIŽÛÓñ	úbQ‘A-*m›îíJ"vÑ·¤gæ›SJ»¥©¤
²ëÐŸªÞÀ×yîDž¬úžnüŽW'l©HâìßéWA_ ÃIšfcÇu gC„#\±W0‡§4–}ä{óè¦6iÄy¯†±™xnmIÙ¤6Ø FÇT:U²^ðR¶¤´oÛ·äG'=ÍÝqˆéØ‚²ßÈu9K-§Jc®I±SÐ»Œ_s­D ˜ÓÉü”o¨ËàÉ©Ë1®ætˆ¦Û\}Ç°ˆ¼œRÎ5¿¡@VÅ*—PC;÷%_Š÷à°àCjKm@ŽDJIE–‚ýÝCÖÜ¸nW©¢a2Ó®ƒI9ÁñwÑï"NÁÊç¯ÒWN˜zT°sŒ¹þ‘ºõ®¸©¢éÆŠ§•ìnúÉt>ÐdI	Wm”=BƒÈð(!ô±±'NB§½Ì©¨3NÁ–ð3Ë‡‹si¶‰,Ø}èG™‹ï§®çNüËÃâ©¿´<Àc¢oŽ—Òþû×Üzqc-´›³Né©9Ž
F¸@D° R­›ÊÑÖ¯Iþ|)áÛY*‚1l™ˆ†ü´šØt=õ¦ýo™øÀ­ö—æ*ÑmÆcËQ6¬cwaŽuæ×G’÷´Zö€6Üa¶G!˜©ÄãÆ—þ²ˆÑ ‹VW‚NþN+o–í_4eêù—ôÅ9Mn:²ÐšÚÒ‰´ÛG´&¥/7\Jëv	—ú’Ût>;Þ¶nèÔK3Ý˜ª[!J[·öÕh'})À¹9ã¢&,7éò’ÑÁ•n­×¼5Kki-îhDQ¡ñ}wÃzò%~½Á7±nSÄÃûŠ\_l¤sLÆ?cÝž(½Ç-&³ßeäy•ÓuÆD‘î/;‚S3&Öó«##Gœ…2¦²lWªÂ ùv`çG/† „wö˜š£)[ðÒü÷@Z&i\”;½(ÒŠ…«²ënú¼¼ý¿ù·†Û«ïs)©•ÅºîW¼}M&.4Y}ôRÄÔbÉ^Ã;Ô)Ð¸Á9[:&&C?G®>ØÌ«@2‘mûô>ýYî¿ò…ô^¤’€1wü–ä²ïiÎÕþ¿´FE^*€míŠ‡ÏhQ³¤P÷ýYMò¼ýj3xÉKHä~5––ý…¼Ø|$–0eÞEšª÷6Ï¶KU³<Ï…‡Žô§M.eTË«È3AeËlP7º-ŒUÓÂ‚~ÏwýÉzë2"2x÷bé/’©{†MaÜ¦ìTä^DùRý¦ 8á©'Ò>aóJžUË‹ëðßs!µøÝpÊÇ˜q¡} Ò‡Ul "F‰²Û¶™X{MñæÖNö ¸l%…
jIJþ9jZ|Öªµ$§Ñ´Ì¯Rnva°èshŠ±ða§˜7(Xžÿù)†¿ÝÎ1!F¨À'Øáû¯i}Òváðòï_¾jÀ›¸Ò0Œ¬ãâ†6ŒÍ“nO8€g!Ã6Û³ZV;CkèéýM™‡¤fó¾ kœ”‹þÎ‰œcWx¾h–7íCJÇ´djjÇf›…]ÿ³Ï+øž?
!ò’¾!@I²ÙiJ/B?So÷¥n±˜5Ì«œ+õh¥^9–ó<Q‘]Yà^zûSûº9ulûü4Oõ>›aÑõ X‡sQ‚ÞÛ¾‹‘"&y]5tÃ‹»W
ÈŒ1nt*bÃŠ³…@&ÝÁO’š3Ë¦	)î`yµIÜ[kâ^^m’-ƒh\jgü0C]&rkÁÀ¥³Ó6ÜÑøÙGÈ—Bœd^ÁöN<u
M
Ðéa£U¥ð¸MØGW•Ikn¼ÐÉôÃž¬šÌSpÆâèZpôÉƒêÇxÌ–¹€%áÒ¨PÅÍà¢%	'¸„‚ßæÚ²H¯¾9l3†åP¤›ma\Y2-	îç!žn¬d<’c”aÅÄ¦àÏBReÌš¨g¾Û|÷~$ƒ\Ÿ]þOð¿±ñ¤§Ü\‘Íöÿ“dOtÏ´Nµ
Ý –s†‘£&{´ÑŠ<åeó…ìuª ØBÕæ+²cïXwX;Ö÷´<¥ˆ«Y¨ªAíÃ¯›ÚA²nÊ±MOs•mÿŸ]ë45‚4¬yz¸jIJéGcf…
Í]šDýü2‰ªâÔMAª…½Áâú[WDlÏXGÂKöî¡îÂÉDîvBšnÆŽvV‹h$]Åð´œýT2Aê…ñÅ`(}fi)G»­×¹~þ‹„wéêL²ÇØˆH·úÞÑü—{-ÿ¯9ûa¾2íéò¤g¡<lDgM¨´—©Ìåzf…l}çè+z-Ÿº£'ÔàÜmèü¼È†×•À!Íó)kæË‚­\If%õA“ýU}ÁìæÛj3®‘ÒQÂÓvri$³{çœõ¬Ïæ·Ê¹¼$-÷UÐºlrX­÷šòr×¿áÙ¢3ì–.ç¯ Äkqê+E°´2Þò#€ˆ#@eÌÙñc?òå¨¶ž`”€ôçmçÎŸ‘©Á¢¯ÃpÃ©ê}:ëKÕÙëÍäw—hÎAXÊ™Ô¿j`n’+Õ
®ŒÞB´^ØqjÚƒ§_—«H1Ø‰&¡¡Í`Eù° 
ÞzXã­W6-êüšYÔ«ríÎ£‘"fU=>ðÆœ¨%­'ÿJ(ê1£–•{!~”¥Ñx*zøUü.ÃÂ%%ByÝ
<2ý4ÒT§²n¼·‚ßˆm,\”ÛŽp«x3›K]rü–§ë×œø.AãZ Jâtþ†ƒŠ&H[—*¶§¸VÅUæöc	Ø†ìžþ£>§N¤+6]km¸„sV7ZÃ‚¿É[„vÓ•?#È%G«¿OAÂ\Oìi¹N—œƒSæTHRVùúáâ L‰^
£c¾¹òë!‡ÕµKBÁÄ†fÖä*'éx>~•9Œ[l Í$ò‹ºtxv4rCè_å8Q”î÷PèkR²ÉÊ ƒ7ö¿Ô4J–’2í<xåâÒñ&\ÑÊ1’ƒÙˆòÀÎ’ÀÖ¢¢RAezPJ—yÀpšHúóÛöÿŸR4}¿ñQz Ì@½zSè‡±Mº;ÙÞ‡ð%BüÞr‹ûèzû‹~çûÀ?C;”(?D€½½Í1°­#P¸ÉOWaíxUèÃˆ~†mJa÷nM‡Æ.Òb!{–ù­ûß4ábüÂ6ÈŸˆ³Û±ô&;“bÐËÈîËT­H]È…Ä·Í±¹àt1ÿ}šsžÎñººÏÈ"›õ‡g‡€àw ”“jßü/ÅyLGZƒT¢œ(­Ïèì™ßVëw’O¹Å2j½ð¥JF5ÿ•‹¿rE~}gÔ~¨ÿ÷‹iÜFjy·A†ÊÊôÿv§t©îEÒF…Q“Y|ùÑƒ‡Ë˜Á¨7Œ¯è–ƒ•}î³ƒ8ÐÈÄÒ±²€aŽÑŒ˜üÿ—näã‡}ß)k@3i­ úX³yòx`LôD8¡?fæôumëS
–-S-bÒ:ë!cÎiré•â.›÷Q¼pô ŠçèØ°.-Ü7ñ´ª¾­½—“§Ýô£ÂÀŠJ7Í¶³( úï¤4âÍ™2º;
©_ƒ›ÄÂÚ%à1õ-YãÿŠ†…'‚$ˆ1]¦“98|ë5`æÄå–"W‡R8´XJ–yý^–{y?A	ÓWißÿ×ûckõÐÒò­xäÞz\Uêïk÷Ö³®åü0?c e»>àr¶¥3K1—É‡1srü3I­×g2Ì2õÙt'’*Mó*P0I³T4ít±æx:¼xÌ™$å•	hÆ›ú¹~~Ðâ•„O®w˜S–í;Ýž­ŠˆÐßétÀ4—º‘–ÜÉ3@R÷É5çvqcÚJdÉ(èÏ 9z\=<Ý"ãuSô„S78d2œú-aÈiÉF çüö £Ía(þ÷0zË"½ùæ.‰4£×o<{w"dÈ	„6…Dgç&¯
Þç—–E#%á2U—ëY¢â©eYú`9wòZ!o¡¹¾áÔã"u[,y:úCõD×;4ã–È}/Ë0¹%±ae3NßÄïë‘qÏÜ 910RÈýp`xP§ñv8=ì¡qi\bôcOy’ÍÜ+ÐU–mPÍFãi*Üúl©NhåVÕ Î¶Fî›¤{Ž)0!“ }läØ(Øªíè§Ç©RÙSLÞêÂ‡ÂæÓ*}Ü[IáÉ)ò%?r@¾›žµÏËS÷O1eþ€ñÎE—é7-H×Ù*B\Ÿ‡Èo·³ƒÂ9~äjšî¤=¾=/í=*té’[”|)çéÑ„áWPÓÁ*‹ãÏ`$4¦ðUŠæ»ãCFê è©¨€ð÷d´ˆçZÛ¼jÞÁTM¹n¹ ½Ý6þÄèÃ!Z±¤Ÿ¦etÍR-hÔ÷ŽöY77:E3$K‚^'ãªR1³ü_S`þdåæŽ*ž~ýÇpÑ7Æwú3}Û=>9ª#ÃöW`²:Ä÷r]!Ÿ"V˜l”èÂßÐ”ÒíÑñÏ•Ñl™½¢8b–a0EôgùMî~Cñ>º²ÅYÐó¶¤—*|˜&P>…)¢ÉóÛVm½AÆ«Ñ\?
5NŒ	¬c˜ž°s‚>%b®Å jhË'2ÙÆœ,¸ÊLÂ*TŸ2r>¬ÓÊ˜¸ï&×R7ìiÐ"ö<g.Æû*ærèó11~“ø›ç·‰ƒø¯³î¶ã¸ÇÒÛ(¿#Æ <*’àJ7j8Û8ìf2•«ªUÕ×ŸMbïrw°gJ‡BÐueÇÃÞ°ñ`S‹]2p¦3JþØOþc'îA›l³]Û>ÔØß†Qq¾M	ŸñýB-v¥X”èBo=WTYRtuM…c!Njž[?vdRÿÄúKXùZáèß0iVrKLî\ì˜¬¦ñFWj<i«—È@ =ÊX"l×\´È´	ã´ù^¸Ø9¬n,”½ª–  i=3jœ<Û9ÓÚs´÷ó¤"â¼éÕi’ãqÎ¥^Ã$d ×¥«¹°ÊiTdjöÉ Úmc//«6)]®ƒtRÀ7kTTËOh¥Tq23ýCø`håRB(íâ~þî>—Ê%¾<&Jx:eØ5!Õ¼C-ˆ‹^î€£ ]MÉ„}ËÃ#ìõˆccºŠYù<Ìç_,7#ØOº/púÇkû8°—Œ±©—™™»	þTcö tªMŠÈzåE‚‰°
Fº)›‹÷Çºº¬c,“ÑvdaÈùîÊW²j©[<x
AQDÈoôo‹Pf®Ì½}¿°ë½=•a·’>ÇÞ¯ô2Pˆ´o(§°ÊR’Òî)ÐÁôïzgu|2
'&öLÈzy(Xžét•4.DðxÀ˜hý£Œßîª™qù±ËÖ ›èV•gßI’§MC¡¾0þZÇÉ“qB/CØ('an«cfÅŒ	›Å=qÂqlÈÖb8ùÞ3!õ~ƒ"NØQ‹±ÿ=œ ¥µ“=€h{2k‡·‹yõK¹UPWÌÏce$ùïæŒî¿kB)]è(3‹–fýruÂæOjˆ<íÇZ`
1íïs@ŒY’ïhýë[yM šáÏù¡­d!üÊUézløJ äÄÿÈ^Õ7¢+ï«¦›:{´Or’vº5Õë¦…Èµ¾GtÝãfµv¹ú{[»w“sº!‹T1)±‡1óð‰•kº°ï­Ì®Xi·áÌøœÒ{/ümÍÉ¥Ieúèi”ž.±¼¹U¥2×µúÜÓÈ)³c_PHluxÒ¨QTÙåó.7×Ég>ðî#<	ªÈàE†”àæü¼Hf0Þã!.Õ2ZÖŸ°E`2ê¿##€Z[mGÀ×,RýÁÿ‹CÂM’1!!y˜$ÌL¥%Xtd-e¯ôül©Y³ÿ÷½IÚ¾ UÅ&îØ Þ3àTõM9.O lœmðNôÝ’ZJ$vï»Ús_'$ì¹Ñö ‚ºú~×XG*¡'—É#¤ë¢(àC
Uƒð	Êj¬±1_¢ò@yâsÅ‘z
·E>ÏM8ÄÙ6±Ù@8õÔ «{xÆ¡1®;XüUÀœÔ…˜®kPS\ŒÚuc$å '0ÒjÓPëÖqsO?³íãÒ]	öÙ I5–Úk2–*4…¢š¬cP7Íµ Ã{îx-°ÏóÎÐâüã¬°ßªkµÙä<‚‡KÍqùÝiQÃ» ô£ö>7…ß ½…{‚wrŽQ ˆ£Ô
à\H¥½Rypa°ÄQôó­ZºFRãšž¶$0Ää s<ÓOš3büãÿµúd8$,‡nƒbâÆJ\¶v[ú¯Ùòù‚â,
…¶¿­âÎ©¤Ø¡$ÿ”ú•f¬h‰¥‹ˆ}ôÖ5J?Ìì#ø$—§Pâž€pÚÿÎ] 0mw†‚4Ïûd5#Ü8ç6í+‹•¬· Šr0ä0\ç0ŒÎJq™Žèr¶0ËSïŒè~V½óÂ¼2èŒbF¢ƒ“¤À-No.× 7;ˆ¤cÊ
¸ViÀoþ½çvÕY“U¦&hÖ•†aÄ=¡ÂFY-Ø»õE(!lkÍ1¨pjÙ—D-c™®‹ò ø¿1ø8í§y;Hw)Îþ8 ¿”âãHÿ(žy¶´˜wžCöYÍâ­[äoM³ÀÕqQ¨f*^ŠóAo$æ´÷øÈ.-à¢‡#(+›1päŠpšÒ[`m¸`9cÐ?é@DGSŸ‹!H³¼ñª¶IˆÔb{ù0È˜³fî–úè3@™Â\Ë¶€´²
³Ã¾¼AÇ°Úìz±Œò*¤ßq­XñA»G~¶	Ö¹ŸÆŒÖ¡þª=ÙWBÞnë³•ü‰läßå¬$IjiwU-XÝBa»\–f…óvš0 ¡a"×ÔÿÌ04i87«†)÷–²Y½í¹³ø±ÙLM=¨{ÊÂ´Õ‰äRs5½÷ô¼vÕ·7Û=~@½‰•ðUc†.Ú/IÏ­Ik ¾,Aéâ¨ÐœçÞu´½6ˆPô~ç=¨2«ÉP±è/‚É´u=}þŸƒ÷ŠXyr×^XËP6xÁ ¬5}eOž†;¤÷ìpõtÊ³/M4ægåÙ9Â OÑSÛóË£˜,¼ßÍû°D{^~@òÍ>“P~äÕ5VyMƒ/mÅ—Ûaë²‹¤ñ%µÉÏ¶P²ÁuÈÿz£/+Ã"¯ AkÂ0,˜Å…g)¬1ÕÃvó,ÆëLG Ô(Çò×£¬DÖ0òL.ójÌZ
‡Õ’¨œ†ë±-WAHûßö¡æb,Æ»PÃ÷2çà€â%Ðùäô¹YVQGÊJê@:V#¨²&ƒL},T4¾üaù¿”KSµø‰/¬þ¨põf=ÔKÞÓ8`PÇ8Héx‚õÇžTÂG…µþr
Ë×A¿ÄÕ 9…í˜
p_ÀlÃ¨¾D—æ$˜ôEmÛü|‹ÏPÂ©4¶‚)ž¦¤oúð†’zç}¨a'W¬±ºXÎnäÊuaEu
Z¡
wP‘ëÌ(NæÂxb	f€½ÞæM×eG°]³4K€Ù›ÞÎ·!šQá?-LwÄá’¦9 Ç˜Û/‹\2ˆ\µ¸
f…äÈòç+ƒ*sÓÄóû¬z§jÎª!{<ç¢ª§}5fgÅ[‡´_-	Q‚ñø¿ñWŒc¶ÇQd¼{˜Ô7)”E¤€Ì3ºèP¯H‘ˆ·Ç’.4íX„]Ð:ÞF‰¥—@ì"hó˜WçŒçn¨ÛZoä8P4Ñsê->&½Ý_þxKpm×LS‘ã¿„gº‡˜¤–Ö_šS[±Ëá”²–ÓžW™ëi÷ôl¡S¶ôÅŒâè¬.cŠtî¡¤C(^k&µÏäoþÖnp·:Ê1^2´€ú4ê”¼ÝÂgÄÍ8L
móÞ¶Fä^2Z„µN†ÿÊïÌJøt˜S~‡k&iZsMÏ=îW`[3n7–™I©´‡|^ƒ"bk Føï¹Ý­[0‡óœ¹1áâÁ“~¥z©#“Š/F¯t‘áœŠÚ™Ø³ ™îf-
áy ØÏãˆC<7|˜ôhVMlpû6¼bÙ/ï”LC–Ú^Þ©(Vá€ÇòR4W„‘Ý»ubC®éšc+MçTB¢k…f„êö5ÒÌ„°åÆ|b
o54è@Õä ]žàUÿ5ÏÆÔ§ÄKÿûÿªWÞÅ†ºs‰F·1Í_8å³xÒÈ,_¿UëHÝ1¹<KŠañ2ÊÂ=¯ªBôi2ÓíóeîeåÊîå‘,‰yÑ@U§cºŠ45žžUk¾ÞºîžØó÷¶Â9jŸhšÐ¢ªì·î½ŒúÈvµ^TÅ!vý—Ïl¦†ä¿<@˜
AÍ%’gS7jxƒéÑý|«˜µ÷ÅóŒÃÆøC'»`ÜˆÔi2ŠõwyF¯(9é<¢®Ð|—§]œÓÓ®sß@J®¦¥~.¹d);šè™i.´
ê!S½ª¹"ÿ<’%«šæ5C%â³a‚ëµëŸxaÐHI¬NÎŒ¢ò+fKPâÁBå)åˆË3Cq?LbBçá(uß2T;@Óâdõn¹ÛÁ‰M•ªZó!(ñËIÌÛ]•ÃÕ¡ÊÛö€³ËMÍ§G\»Ÿ®ŸG§â?¡Û³¹yçý$³ro×å]ÇqÔ3cú›só‹ž¶£Á1ŠHM¢Uh[Óïñ§q,)·µCZ%[7™ð$o¦(¹ù)ÇÉpò„ò Û ‹-aOC¥é‰‘ò+±«ÝCÕÕbÛG;øÒIÍý)á·0WÛ|é8i^@wû36m0Cá0C—ˆT$òRÇãŽ$h¯–]Ç4ÄÍý¬Ý˜Šô0/¨žÂŒ$ÿÿîŽî®Q$ ÄW ®pùŸX¦Ñ!v¦=0øçÏl GjÓ>øÂu+õ†ms¡½ ˆ‘»2@Axuòql¼ò¿.éÅöª¬7ü]‡ì#é¿k6à%º…‹,²t¿<Gµý}±ÌlªnÝúÅk¢Lh‘,@JßÚÉÏ®üMnû *ÛÓ'd˜JI‡Š¨² è9ñ
½’Vñ”˜ÍŠ3†Bÿó3?È;kZ–sîã>s§& lÝ:Ý;8~6ŠÑWõÂÛ¶] Ô#ç)\.Ûl>"e%nÕ
†‡pþÊÁZä¡ !²]Ð†1 !âœ©ëîÚì±ºtA®‹°ø FU;ë­æJ07Ñ§ZËß n ˆ+¥gÿÂ™ 55G¸Br6Vg 79Ð•€ %ÜcÉX,èÂÙç¨NË¹Œ8æ5.#×Ù,{>Q>âÎ‰ï„aÞÉòÆ‡£å]Í­ð7&0—+ná™Vœ»‡cC@rhk_Õ4ät6Åì+‹—AhfƒZÉØP¼V‘äÐ?&}/W‰dÑ6öƒ™;&G×¼Ñƒq†l‘T®lÙý:k³¹X òèöËþ{áåß±£žÒ•‹XAeÌóKßpM2Ïs< (—V^ÔX>œ¾®-xHMõ+ÞšYwûÞì›8¬4=·™OÚ¶1¼¡ÕÂô¾#© Æ#qÎN0AÝòf9_ ¢Ú‡©rÉ†/Q<—žWþ¥eR×l›kÃuî—¤Ä‰dãš#ïë¾~Ãç8òËÁy½PÉPnó‰ìªd8+CûÃyp*–'i«Ëã{~‚b ~†ŠŒÝQÓŠ-Zúä3^”4ƒÝþx8z2„k×ˆÀãçÄnêu`Çq¾ð”·ã¯Ïs§”y{Zh<a]P÷8ÞÈ&ÒCìº|Æ¦wD„áÜÂ‘%½]ô¥Š'ˆ÷ôñüÌ	:q&+.Œmvu Â«›“ =zÐ+ÿUŽ`¸¥€@ý¤#:0ÍYºˆ¶olJŸX9mNéî‚þ½$$HDß<;žÞÁvn:kœúÃ‰ä)JÓìIõŽUÇ	;£Ø©³Â¾ôAt4ëRÍc kapéd…\H"â5
ý+™nÉÂeb2ž	Õêþwü‘ØŠ"§[A«…`=þýmÂ35¦Ï‘mVJF•ù ^*Y;üÝÖÊfoÇá+êR;æˆ½NÂ2½O„È·ç¸Ü:7¢ÛGHºÛ)£Œ4¹ÛÄµHLMq®Nø+«6?F¿ö¶º,ˆc!yÀ-ò’Ýº¡#r¼Š)h`É
ó¡)Ú8ûGv³=¬àü ¯v{
—ÑEò¡ÇQŽ“ÚVtNßã|«U½ÁŽÏÀ¸H¾7>p^avŽÎa¤æb ›¬äÒÚ)}ýML~ÍE‘.Ûƒ-ñ=t*C2Z®éû¤UùÊZÉ˜iüMýSúTûfý|·si7"x^ò6½É”DÆwÄ£NŸvìÞTî€ÑÆ`fYŸ‡@‰ ;‡ÞÕš¬Gi~Îòê¾ƒE"Üý¦.Ò¬Ÿ¡ÖRµyfTTÑ"y<€›.ÕR‘ÂÖÏ‰ß”âæ¤¼@¶jô©=pñó•®ñ‚•v$òÀÚö6 .õ'¨?å*Ïv‡¼[ÚÌŠðU¤q…æz£(ãK€ìÄiÓKì,ü2û-H'ó]|Ÿ¤üÄšªRœ	 n <“¯fw‡"°ùH#‚œ,Ëè2oŠK&ŽCH^ŽÆoÖ
	/Ëø„`? SºÏQ§.+·ÿd¼Q‹Q !‡FÅ©ù¥í=Æ9¢Íœ¤XHú‚Úçi’bëIEùÂ>{-ùn§›däiú‚¢	‚ó¾`º¼³1¶ÕáÈÂen,"ˆd^ÕÂO`Ëjû[}1Ü–—oæ*vba\-äé*îÆ¢(UÆ®$ÅHvq'WÃm:s3GŒhªÓoó>RQd±àÂûœéYGÛwŒoF9øBÏÁ)J²äçü[©‘hEãˆ¨IeÃ Ö¸kê"¡‡W¬„åËy,Áj¯—ìûz
cRN\UØléïSÓu`V@B=XŒr‘ÒÊ¬BvÝÄÑB-ê^Uã±4< ^hwtìîU’~ê×gPy¿pmá~gAw°ËŽ;ë¼®ûEóö_Ãõ¨Ädì•Ñ@Cª©§+ Ãöñî’ˆ‰Óþâ¡B`Cyû0Ytè¿h\‹5÷rZ'½ª¡½w!žÄ•ƒwAÛ"f„‚`«¦6¾å8ã „@’a¬ÖœYpËaX¶ÀF¯—Ößí¤#´¾”§VCô{óÀÚ„E;6#'Ê×p ¨â8W¸\ã‰éïs)™®Æ¸8ÿ	å˜±ŠÔtÿ:øß­Xé*#<r5ª)q¾sÿ‹Ç8HŽ¨†uŒ=Iwa¦CÞ  ¹Òv¡ût‘;èÞEo^˜<(H Ä´2«Óõçg¢@4ìz@rýûÖ¨UryƒoQ†1Û½ï}8°0ïÅíÍR7¾’ä×-y†„ŽjI¾ÌØT`!›¡ˆòÔ0oUêŒáª8ô;ùGÆŠjË\ØÖ£“q
ÔŒ„kê¿¤Ãù›]5ÆwœÊ+çt)¨ÈÒl´bóÓ¶7Ì0T@¥±©;7;*NY>Ê€{??yê8ŽöÒmv…€‰v®øÁŠ8c
ûß>Ñ\øËn¿"*kOýÚ<Ö– jIºSÅóãcÊƒY!ŠN=K9]æzåß©BšõY#†-;.´ÙþÒw ˆvÊG¾ö€YæÑ|†œIàjýÆdAíBq-CÇ¸³ö]ÞÚevV’½ÉgÃ±,2èAêñYèÎßm/<À8ys0—§_‰2TÂLþrý­§÷ÈèÞqåÊ;äãý¥×¸{¦ÅÂ¸I'|ëúö™?ÛÇñ³õ¦_û@p¨ÉÕ
N0<Z­áõ4l…Í4m+-–ßòVÏÎî¸X	\W^½rµî>·¡§jº…ØÒIüœÞ†2²­ÏÖæ:ÊE¾2ûZ&Î{Š\¯ZwœaÅ¥>I3ÉîD™ià@g¶ÍéÜQt¢	P'E!m\÷t”¤@†š$dFêÂ«)B}cà±}w`„ŒB1Wå—ì²9BDÝ‹G¶äSXŽÉx¸«©›WÁÄB
%Š$ã^Ö'(Q36t½_)»jC°k6SŒVf÷àVÂN“s‡•/|¿•d-mÄöA¾°o>V„Âò(Ý¬0EÛ`óðVØ=‹=R£3,E°a¡œ†@XÌ#Z²YA!_ðÔ qÄ7º¡‘ÕywÀ`íàï¡Îc$öëîU¢eèÁ¦^ïÊ¹Î8Ô!ál¶„ƒL,ýj,ÙÓNVP#+Åîãæ"~‹Üè 1Û2¤‘qöGáù®šÙ*v•BÖE‹C,utßVÍß´Àýù¤c½¿\­AKü_“ûšÀpÅŸ›m>I.1dZ Nt¸µ<`´Iµ$±^€ç‰è±·á’«Ä¿¼T	¹Ùûgçë9B†ÍŠâÇSqP¿‡æ¿@Ò£×”ß¿¸òªµìAdî¬BóŸGÃ;ZúGïŒÁOì+è~”‹HÛVÌ„Íj›À¸uä€¢Fn¿ïº²pJ
WÒ’Œºj¦™ÄÁ)È¯×Î­§ —ãâÎý…´a[Æ!]þpŸcüÊñf#¨}ÁáÏÝ†;fõêïÄvŽE£`nïä‚zËÿIû¨™GW9ûÚ]_ùîaqýt?ožÒ—‘ ›ã½÷£Š}ñ:«·ÅQ%¤ivÚÌŸ¤í^Ñ4NŽ À%’µ‘nG¼÷AqÓ-Mú‡™ìø´dÕžšÆ¤+ê“Ê’6üÕm^çð;‹Ó 	¿æÉ7HøG¾*‡½ki–eÕŒ9r¬p¸:ì¢c¨¸Tá]‡ÑRÏ„Øt6‡î`/{9ýÉá¢DÅÃ’™f´†6 fDœÖu#­jÐï2$ÅrËb<ÿøyR"¬Ñ£¨´÷†Å¯ÊiÀÀìo6¥\Úùªû*[¾m?&g?+U²ÚÁ¥=<€ž$‡–!«Ô-P¥¸<b<÷KZ 2Û X`cõÀ·èI•âè=„˜¼Ï~_5©­šztl«ß1ú,\gM*ÍF³3ž`¦Cý|Ý6žùÃIßæt½Y‹íÐReÜ|GÈ„ôçŽè²-©¹[ÓFi;–ÓV´Ÿf¡Ëš^©üÒ;§È>g 4pÏèÀ¡C§F‰Ã¥–©69çƒË.œ”‹¦rG¯z†G0K*N+Žn@^¿½L%‡uÉ
x¯´†À’hF¶=ìÏzü¬ïizü¦ü8pî~x7Ž‚*·“ÒHÊ`9IroÉ=V±ÀäZ‰3] 6Ë7Kú¯/a'„¢û“6 ´"£±³¼ÑYÓùÒ-æÔÈÀtàªKèyX½CÉz ^?r—µŽÇú:1¦ÿ~ëqÎ#ò‡¡×2f¶¾Å51ù$¹×w?2¿$¥NFé‰ÍNÈËéQD@åÐcµÝ|,okš•¿Šj3ôD‚\T=Àd–NÉÅ.Z‚ò¤Ì½²Æ¤PÙ”,iF8A@@™ú¦÷m±êG€°·õrbÌ…²”ûø×ã1h¸:£ã‰Q”‚ÙyL5 ò\936mŠÌér[|oã´lo{ñßžDˆäuÝguÿA»lç¥hvô­qq»¾0B’æ‹Ø&JM¾ÌynPí‘OyÆÎð»ˆ˜Ð—`Â~ëÎ$`Ù*\”MŠÉ|Sˆ^L„Ã_R+ÈHûè¿ÎMjd:½#˜]tzä%õlW?çåÀ2œ"Xi:„&[Ž6?V—›2zøòDÁ•ZG¥¡Ž·ÊZ[—†Òº±¼áÛ«&Z,x¨ÍÆ <¿P2©<Pö69g2ò*kgM÷ìÔáˆÔÁ~¤YœOQ=Øð~ŒÊQ‚iAÒK“;?æž-%/ž1%äyJøáV(²å¼•6_fE¥5Wçi6v‹%àŽ5ìø5z°VSCÏ+ò}È³D›˜Þ¢ÜÏ|Rsi!šRkW¸"ÌÈL]­åß²åíA’Èb§¢‘€N€‹[¡`rqô.ƒ×Úƒìçdce°R©B~Æ)@ªëî¢xÌàâñs³Án¡ž¦Ô;yL‚qKŸG²#©õ¥8¢ØŒ¹„½c€—`L`£ì¶ÒŠA‹k-i€’Ÿ¾ >_hq˜Ö'åLÇÃ:dF1Z˜D¼ƒ	÷¶É¥•¾=ËÅÈé}¿P	™©ìù§Ç{¦á.‡Ô…é›`-„3ç7lSÆ/ ”vŠÕµßk*T·ö½g²Ö§Ú¶§1æ¨â”ÌíÖ?+GW<ÒïÌíRè Í&”Õöã‹QOMJ(Al
ß-ú¸¤`‚;¾)â'3±õ;'ÞVÅ
ÛåÒËÇç®£B‹¯¹+Âë³ÔãXÊ¨Sl¾‘™mÁˆIS–Ó
NÈ?§pÈç—z3·XÃçLcAj~·å×·JHø´em{½#N®}Ø8{‘·¥©Þ Qéi1eÜñ:W‹† ÑäÑT`“ûÝ ·´¥¡’lD’g‚†Gb,º5ÊÇõQì»'/@¾`öëŸG
ô0ÑûÀq‡ªáÈidÛ}Âw˜×‚?ÑÊTÇn,ÐO.t¶8Ô®W[añ]ÁL²¨zë÷èW. ±Ã¢f‚n
>(¿ÚéGaïS-(×$DÀ˜‚§™ÕÏÝ>+ŒY¬¡•?) p	JÒ9´3.…;`/9±çÑ7™5¥ôS×ö\‚œ aJ´?_Ñ-U
™©ƒ@q¸±[iNØ;&‹íL|Üy¡+çÀzRÛ‹àŒQ0†XK\ð´ZP°¦ÑxQQ{ïÐj¡ð¯Ï®  Þ,¹Ö*µÝBwXƒ{«ÎJPIRÉÁ¹÷xnöÿÍÿ"%¨Únsƒ{èÏ%4OšÜYñ–´A¿˜§'f(­PÈZp½9‰xB;ž¹bú5>æÎÔ‚áuJ±%JõÐÎ#(6‰ùû2MªÌ˜¼8ß‡¡éíg½×ŸwöQ<©ÁÄÓGÿyÔ †‰ó:¬)è5 ˜³†‹Ë³ðá/¼ñÈ'úZtÎ¬eÝs	õOê	]}¬uNmÀÕîÜÒ©DÓür+°Ë¯¹Ùv[0&úœý?\?ºÈc€R`¼ï·Ïûà]þÚz¥ZÅž%@¦:¸¸\v†Õuï?@enø‡á&¡&g·Lì@oñÙVK%’B—âë;~™¯LÙÊfDB+ù¡øÕ}Býä½’ââLaÜ=v®@Ä„å¦™.][‚uò½E/cÚ½–7|r¶rRwÀoÎ
gºâÖAb‹ë:8Q\ÿêgý‹ôš*Y:ïÐ;+Õ¢(vDIç qgi6h,äèrmæ›’XÊ¸cž ?cªÛ"sJQ¡®/ÆŸ!M¹–EyÛÚ0Þ¥ÂqþØÉO{?f4t—ŠwnCv´€Üÿä“–®Ë Ðˆ¢,[?2ÅFá¦æ“³PlÎIÓ0’(L«þçu+[*UÈa3z‚{áMNzªŸ^†>¥ãÓ*|=ÿŒú[jDXE¦[ÌÓ[½Fž¼á†°OçOF¸\¹q®CÉY¼{ºAjD¬™EÒËL&¤`¨3ÚgckxmõsÓ7¬/ÐÀpˆä°Ìé×â‚2W.s«\^á¤5ÏGyJB¤„êæ> òù+FƒE;¨ÌäÕ÷w)î³›ž•D¨R"ðéô¿/±wf“¥˜ÐÛAa†Õ‰ë¬Á_Û«Ì«@Ž¼’™„:i‘Jé†BUÊòÛwf®ÑAî‘ê„ù?)ØáSÜIï›v«¿±“ç@2J^îÛ9€æJrè}ôp¸©’˜Í!øÄ4>x§Xoan§Ï>©ÇÇ±;;7Ð‰wI{¶\}Í‚°èZzëß-&‰æ«ˆÁS¶%}âdG[ÀÒ…«×2]ôpˆ«{0Q™‚¦pIÄW+¯*Â¸ìøÓÇ<:BoÇn8Q?òáPt=+Jp› )º†[âé}¨ª] ¢i\Md¨K.* Ã"ž8ï†V°pËpÓ}U·ågË_rÔaî±ýn–“ÑÃä_¡Ll:³Ö>¹Xm^¬‚.JáL{$ÎƒÁ"÷'XÚþ¡¶~Äp…§¯H×ÿ Ç½2Êe¢EGw+h%(™
Âã•¢tÉ¡÷s!:ç¡¨¤ ôÔæ¯ˆÀÛ²5¥<Õ‡.íWÆ¤8aÌÞ½E”û¢d­:W¹ªnB‡¼=wó½>¨ÀðbÆž¬}Ÿ8ÒÛ8":>ž¢Ø»[lXöPß¨€´Ù…oz%ƒYåËUÈEAÜ?[ùz™ÀŸ•œ/sŒa§ý³¤$ïÓö ³@Ã4ÆvùLˆ>©ìTNöê¦1¥¯ÔoÍ¦Àî,·rè³£âÓj+hzyzIá;ÜûŽB<œf…Ú¢ t‡µÑ6­#Õ–aÒ|1ov{i›#œý’'Îù2„ò5< 1D;Éƒ«ýš¸—ôR°]µÐûRï÷ax´ÏïÐ›µÇSä»7ó;”úÔé´u%¢lº+¥z&Ìr™ØxCò?¦Pó¨…±âå\ç»,§Tš×‰‘¢ŽByñ(_G,+´íß ÝrÎ¸:gQàoæêLS‘¾¬3V ˜ãœ…ÎJr¿»ÌÁ{½Þ|‡¸w$WV§’rÈü{û(“Ä¢º†´ª9ßÄã{¶Ý…/×oYÂÍQÛ¼¦zŒc•¿z‡ÉähÅŽùDèd%+Ø¡>ÄñvyØãq/ÃÔ¯ß?E‰wú¶9(4p¢-§nÊåÎÆ¢@AKÍt#JÄ/ëëSôÜÍíƒ¿gLEqdÃºåvU•(Ä4ŸËµüŸùG*p#†@jÁb×ÕÏIä0´×¬ôÁË_]®ºs~Ó|»Lµ©JuúÄN¢[@˜›.gÖ¬;È.Ï{EF»QœöØB<‘Fî+ŸþZn¡ëíÛíÃ&Ã éõèfÎ¬sÀgL,Òü5§ˆ" 
cáø…ÿ¼
HÝÇÏ‰±õ–Ÿ¿91²Þb.²Gv®Ë6½m}õõX lÍ
RŸóp(¼ò¬Ö!¼í#8»pÜúhW:‡ïÄß¦ M/h	±áªÖ‘ŠKC¾=?Vr¼oËkßí¡wû‘Ž‰°ú3d¿O¬²NL²¡Åœ½Èæ ‚ùê<—€+…kAº•®Ü±¥÷j‰ô&±—Ë¥9”(é1…Âe0´V: CŽÅóqŠgÕ·CFJëàË+E#æhVûo9üS Ð F‡Y0ø}nÙ¡t~ÃfmÀ…Î	×‹S íIŽS—øL›Ir4ƒg˜‰¹slË‘¾ÉðÜR¹uš\ 2!ç~AX,î£òçü¤ñUDÏÃ-Àé†»ý‹”ûÉt>.ÔÊS³]¨O#¤£Øª)_ž(³DëÓrÒ/Õ+¤rPÒÐ”67²„#÷{”’1”²ßyÕêdÁ<üjIˆ¤V¶_Ãr9–[žbáÛÉ»Y¥éeCŽc\¾ß0X¹zL! ˜ýÙ?[‹QFÏÌmÍ­£õ7‰*£ÚtÑ8¼¬'©}„§˜LAäRyYô¡]ª‚±˜­:T ªéF¬=í5ÙIá ã“÷ÐíMËYÔÿ$²	qËãòÜGµú:S[ÑÉ¾ ¸ÝVhÀ¨*Dä"ƒ’4tÚ#n‰R‡(vÔ" ò^Â#±Çz3þ:¡MŠÐ|­rÜ|³(”mœ³“Ÿ_­|~
ûöD«l“9ß@ú‚»¦‘Ü*®“>Ôç€×y ÿ¹ãPräÅœ$¿ùï…çW‘‡{lÑ‡qHÛšVz†ôÊë½à[X0^yeM? Í2	à" 8€­jéŸ•ñïè*ƒÈ]³ÍAt0—qGoÍj«sJïÌ7 ¹9þµ[x/f®ÚínÚ<ºë«|æÌŠÁ¼núÞÿtðx•vb"?û±‹
ðªÓÌ»¬š7¯0:±óQr««k¤%=ý<»ªpZU°8h6—{_k7«eÆ™BíDìád;ÏÌ~qO\£Ð;<Ÿ§ŽV¯¢êâe“¢Öñ“³½hpQß†Ý:½OÎrÝèÓL0¡·µß/-¦£>#ú«¤ãÜZ^Ìä×—?F=øÐpÿJïÁ6TSãdé-¤¬ëü#ÒÑ4.DÆ”]l+ä–]ìîáÔYjÊR-óÜÚn·)­ËUž¤›VTRµM3\ëùD[¢pY˜³ë0ÈE®›è0#H‡RÞAœÀÊ,ûIm®É¯äQ4F:C¸g|7¦•P^DÛ`´¹£¶paI4JÐõ‘klYÖïfÑÿÀç#·µœ#ÒháØÊHÑ›5®~RQû‰Ó5A÷¶ìŽTóÊñ%©x¼çÞkÝ42ž"d“÷Ò²Ÿ]Q‹bãÎ5ŒƒÀhüR£…âqBEŠüyêó^–VÃÜ]eM8úÐttØ±
ÚúK…ÑÑñ\ÆJ<ÐSã"±
GÈìï«ÖÎ£Îj¦˜>É8KúX+î f‰$sÂ¨®Mc¨à‚ÚK#IzÔÞïÆeZÑx¸â*`ÐyÙœ!ŠìörºoÐ£¦¥@&>Ù¼Bô$í=¿_’•×¸DÜÐ9å¯5ÏåÄ(€/èDž>ÙýÄµ©2§0¶¤A2™¹HQÒìÚlÈ…a;¡ˆ¾å&ÇÉWP0­¥~qF‰lf" Îlo¤{cœ¨—|UãvT›‹Pç£<pø„S{¼ÅMK‚Œªh“6r…¯{Ö¬´9‚ŽEçó«É®Ê|ÍWVLõq¤jZãjŒk˜²(EÌžúN˜bmiDþ hŽ¦š—0p· ÙíÁÇ«¶¾ý° vµ×±ù‡÷È£]´g5Ö÷“ÙPõéë¤PÂÝ÷¥*½´?ÂÆ NTéì%~-½w4=‹
AXª²bn’0ýÓvÉ1_@n´±}U»¬3fíü#â”¢€ì¥iIŽo?ë£7:”†{§œYMÆ‰Q§8»¦¤	ªÖ’Þö²¥åFÖìÜ¬V7Ãu¶±ªj£šÙ(;
zs¼’>ªÎ©˜
‘Øû@ôšñÇ}Ð¯?&Š÷×üN1(cäœ€'d"¨}Jøï'3uÿ)J´†é¿šôv“9‰R%Ö¶÷mA¡ø¦ßC-XD‚^.±'ØòY{µûö„35©û©–DÌ†q§¥t)¯˜Cñ!Óª/à½'øçeHÄ„zêÙoM„Ã ÆC2î¾SIžµ÷ïTt!îè0¾Vˆ5§°FÜfa²¡ÿ^|þ”Šb$úàmÿYSAîš¶ok”Þw¹«ìë®Êy¸¥Á4¦äeáÄ/ö|Þž§µ[˜yçKés5­õ(†p-­»X¡Æ+q0Ûm}ôš¿qI–”L8.E¹»øÚ?rULr[ýÉKG‡OÝYAÉ:
ÕÕ¨$‹ tÖ\ýƒø{.Í{bØ¤sÚ5âÄ¼?]DÖÇB½Ý“¨½FD…Gq#ŸfrÀBâ[9Š^Vÿe=¸6‡ifm	hLWùVT”)>»Z¥§GûóoÜK¡©&Sï»Q¨5múÃÑ©h3”ê-±.¹øÄ!‰\`ç!ƒ¾‰ÔX8IfÕ™ÔAÏ¦¥"Ê³râARmD´mö#ªF<!=q˜×¾‘g+_@^îS—¢
ˆ¼²¼Úû†ë®9òœ*-}3Uu—¯Wð‡ŽM$v3*PÍY‚RpÁ	„ŠNbÎÿ¯ÚÖ›õ6+ôÜàV"¹¹¼æXëµs;MÏw¨9¨× °eõ>ë“ú [âxµ©€žëš©5ÿ³€kƒ‘o¸
«"Ú°lÇf¤ÖÇ}½mÂ„(×»æ:Òã{‰Œ—”C¥°<g#*O*£´’±amXöe¤¤5mÒëF…:(U B`]Ê8Sea(e®0›;sÍ
ÕÒ0Ò$–=M$ÉÕ[ëÃ˜@j0N<ˆ»âŽ6RŒf6ÞIèû‡twðý#Oé2–•Tç{ïcZG)Ø(ËèÐ¯OÜ×¸E¿hn‘æ“ÌU²5ùÈº°ô*HÞ}YÓf>qp¤Ì †j +y
Öë£~z*|ÝjkÕé Žûìo';i&÷ÖZÉ#¡mÖÁMÚËÔÊR­5új¹7Êï½M
ò;Ë¢~¬õ`#†Pì%¨M"³Å]¥°¶¾dæPKÓ‰`åï–¶Ò?/ªTh*æPŸA`ƒ„ÅYYžììGûî{·QÐšZéž„ç
Ú’r8?‚75:êµá–þ€’!Ü²æ#_¤Û¢£ÍÎ!oNÎí’DM6K57ÉV5ç>TÓVsÒé† í¡ÍXw³&»¯Ð;ni¹Ö0Ò¹ó}R£>)Êõk¡‚zØ´&¿oˆô‡•çùÍl¥;7\O”ùvË¿k'NQÆ0lø¹Í-\¸×åXèj'ÞN‘§ùyXß/ôŠŸ/Ã’dA^Ø·Ò=‘ò%Í!,0ÛD¿ó8º¡Ö•KLÜàš³!C¦äK6ü†qp·Zö’›àN<ÄVkH |“©2Užuô§H¢PdòI‚½"ûyªC85Ÿ˜5Äì0>€2”W+reÄUú¢<Ç-²÷2šb¶à“¤ Õ­Ãt«€öƒžŠúÇ"áø=`Õ}i}Ý¦ˆ”Ì9á~TRÐD•Hy·²Laë?¹<G¢Þ!ÏüdìzrœTÆ á¬DÃÃò)¤ž L<5šìé%ð.ë’rPvAâŒ‚§;—Dc1çMG.Ô§lº‚„Ié:™æN$€”¼ÕÌç¡óix“¬z~RXí—ÕæKº‘S¶«æùÑ§[‚
té¯4áÖ ÄV…mC@¿–Û„	VÆQ´^	þþv‡`&fvMŒ„6
&’´v·Å­X&èÂÄ™Ï9³Ýàcu~W’¶pEAÚA wF¹@¡zøâK6M«4i¬Û˜„t)@—Ú?^ò$Ìs¼Aô^Ô;:¦æ ×OŠ?½TÕ³˜è¾8ß óNÔèžÍV”É˜)ëÙE´Ë—Î‚¯Ÿ¥²ÈuAñý·Zz£YrTèQ¥;–«>¸¢nƒèö÷èËµQÇ$¿ÝæLt?&UŽ›4«˜†=e-ÛáêCzÀ]fPÎÑG¹ Áë6cˆ"Äw‘ôä<“uÀ¾ƒßã:qà£6äûð{;B$q`FÀè\ëm9ÓnzÑ $êƒËr“¹é¢<ÆX–ädjÿCs´ã4÷¹rµðÏ@Ú´®IbŸjªýuµ8ß¢ûOE«IusN4Ä5¥uåM,ÏO¯{¯T²Í¹¿ÄŸÀJš”¦¡Ó\e^òYq-êÛa–f‹/"Ÿ€Ýe_Ÿ5ÚËÄ $&nïø(TDÐ mƒ%®X°8ÁölïQ<Rœ:ªYpàö3Ÿ¬YétW©o
@îi<vœëêûßÎÒC†©²\¡ˆÜ™ªà÷Xbˆ9t"&JÚüzÛ£
PÈà;žÇv‹ÍLæ°"ˆ½7žó®W¬µ‹è}×Á¡Ùœ®P`™ðä`ÂMa×›
Ô,˜5Tëv¾**íÏJ?‡õ{]UD®ýã³Dk$ÃØSlxm³$‰Á®Ô†l¦ÌH”•¬kOt"æ–F`H—l…S$„jOc¤õL¢5ÊÿOÏr·Qéù.®£p@Ç
WQ³dµ­öx}-ëÕ0„K	8¬Ç0õ¤›µ‰¸þÌÚ±^5¨“¼èûg_°¡¿\TJ*c×°ˆæ–˜9Ä.5{³/”ûç
÷†È(ŒÅï£|&ÈZ¼7<Û; L6áT²óŽYfüØâîZdéüøiÈú9¯d%|úáu£Þõ¡ˆ#Då}¶õEÐž‡&ø'œ£ÉÍ!,¥6ÆË_UÊ+q´Ô'Ìù€µ¡&RB’ÖE ?îK©É¬a	ÈÑ¨Ru’«Ü†íBco;  Ã$8@h„\aœ“CÈlE*¬%Ì£K°|Û4­›óþ\K\|ŒÓ-„T_mº°SGÑ²`Ž@£‡éès)åKMëJËq)]ªCËyéE(öß{‰`Ž©'dúš6}ÄB¢ú?dªâFÏ‚„J½{Ä+Ï¾‡Ï£ŒšYI¾¦½Þÿåú¨Tîè´êNM~¼i(oÜ+j¿è¹Ø+ºaPÀ|H„FùE—–ÑÂI„u¢ÉÌÐPX@û ±+Ö'–Œï>pÂÄæîõf5$Õ
†*1Üêü]±f N„]€üÉ„«Ý‰YÿØxaÚL¨Ï²Q£â
Sè‘ÙÏª¹ƒ»d”fN=[;ÖÞ)•h§ZäüRÁ^ÿ“Š€ó&àé7+Œg{ÝÉ»…D”?ÚLSBF¬Hr`86“ÈôGHËFÜ"l ý–-?wÖ”å“šöy=Vbÿ&—nÆp
:ˆ\‘9º!®N ÜÎêQ#š¡1S"Wg„×p<_@¨ŽþÕ:…\ƒ4Ÿ‡´šu\ªUÙÉ¡LYWN„~/³¦¹S+±¡Êœ˜H.½‡X‘fŒ‘¤jcè\£áÓl,vŽr±!…kÆ|s¹eŠ‹B¬¥Õqux‹úÒÃ(˜ø
¦'7ÙBi3fôe×»Ä€gÒ>§ßD©—/fà5˜'…ì½çþŒïº@ÛÙrFÕWúÿönç”P†`bÞ[þF"·²uäFß—+¸}Üi“ýÚÅ¶i×t˜éJ->¹#Ò4€EÐ­‘•<uj›¡ä¸„$—>
¹eÛŽ¼;6&÷—’Áo*•¨(¾:2VkÇÉÄÄ>Þx-[i Ë.ó]XN¿÷ú5 þÔüSÏb¢~V–ç„ÐÈ7ü)ÎEüoVdúAk.¸ÕV—½úÎÁ»À<ÈK•ý•[ËC‰ºäƒoz³Lª›|}'ÒÕRåç6lŒ€”áƒâ6óµ[YzÜßõrqžQ-§œ„¤±&”³äÿNž§ŠMF—»…ÀRÖµES·ä†üo‚§C&·äqmN1Ê›ó½Üº#YØ=ÄÜ³u6gd|¤Š¾U‰þß‡cÇ|t‘J%®|Ó»ÏCF›Eó` 9šÙÔaÙç!,ãµªBAfíZÞHóÄc'ÊÑbèCÜóÃàËUáxÿádB}-q\ð6ÉÄSZž4é6-5WñpÝ	4©XÚ3hÉ„t4òiNÔ½
ñÃˆ¶½ó_šùÏrpH(4×0Wåóá!W‚Œª1‰jžF/N(ŸŸ, kPˆþá^†èUl…µ‘Öï;L4âY“÷ƒ†nM3Áeã\ëþ7Â?Á½;,é³ BKL*•?8tê³È¦…Dª™Eò¢œlæ(…×órfë½œýJ'5Ø¤1=×Ædú5&B¥7®™¹}h¢àn;6¾‘ËPb# ÍœžÀ„§'t…}¨7á *'ìµ>žäL¦jÌ•¦Y€ºZ…“a‘â»Ïh®gæ8JoCŒˆJó2BBýyµ>Öéb¡q1Ôòª©2bå2&”·´ª§|ÎZTX>Œ¤Ì½a)ˆ0¨zö7NíM®†MÈ"&u« Ž…IâGIg	S;AÚeøXˆ~Šôuþ‡ŸéPð}½g\E„ðÌ2)}ußÐN"Š«šž¡1¿rK„yÞmÍ³¨½àè¯qºö)Ü™ÞT(ØhÐL\þóDÆµ–yoÖ-5õ„Š§Ž=ÖÌªmÕ•£.~ŽÅ¿™ÃÓ^ÛbÐÆ}&8Ì¦'n¿ß5Db}½Þ¤œzÆ‹Å‡F/©:ãhHmWÒÆIéÝê9é4£x>Çiœ6õÅÖ<
óÔŠãú¶´GP‚¢…ö7$zúðÑCh„žì Öx=`uuÝ<×›Œ°†ÚÏ~“äøºFÑˆ/UQRåªé Ÿ½}–Ójï,%Ù~²n¢Æ£2ñÈ†¾¥?*³îö7áJ/Øz fæÞ«”Cè¶¢•´çeSû ¡DùONK€6¶·É¥ª~yëN¯ç¯ã¿5öÄÔüæÔc‚ÑLõR‹iæ¤ÑEŒ†7{º×pð‚hÓ¾HóÈ‡nïø:`ÇTO=lˆlˆ¬ë¾ ´HL^l»ÂJO®\‘Mm·h±Ä‘†å’·“’Ù·§%±%0BaÙÒAÄ‚›?ÅWAvÍÇiÐaù>©ø-FGÄ¢ÖƒÎ¶éÒOþß]â¼9Mù€Áxíæ *	¦NÃ£X¸`5©â ïÅ&*&¾ÔÞsEú œE2	¥	™°Aepöèêüt¶†øð×`%HÛŸ¦sŸªƒY'n¨†X;zØ8®»Ãä?Gi|Õó0YN¹ØíÜjýN¾T3”%H¸;@ŒÕø^=†w¹Ü+Ì¥±.VeyrÈúßÀ~|/ˆÈ31èØÉóÙN+¨t•‰«ärl L.‘ÆNU?ðÐ"i£ú'¸cüøZŽË°ì¨)ñ'Ã€E£’g	¶”j‹ª$TžñQ®	[Çç
z¯œè¥€ðUQŸö ¢XšqpË1¥zøCW;&‰ÈãØ´4¡¢1ùÃ°H«õ‡è¸j×<V—°ÌcšŠ‘}î¶å¥Ëôæ¡ïEì}!çÐíÅ+1VÍÿe•BSdÎØ@Ç
 ÈÓÇžÊÉÊÀoœ²ï´
ããÊâyT¶
¼e·×þ"ÍÂ¶ö^ïá]ä…&™`«Üz<ªË½ÓuÃ¦sÌ˜"m(AÏ#\Ø1`féFQ	pÇ!mpgÔ—VÇ¡gõ,hß¶³Ý2ä÷šñhÍiø>“vþ¢²Î¬ä¢hÁÈ‘ÙKD«—
f…7âüêÑ$’3£“uuŸ+Ý¹ÊáÇæq¤q×¤ƒTec¦}ÿ³§˜RU!3Pêâ(¨ýkëaWõa]åž-`ÔˆÒÚ×!>Îh©f789¹.#hgÁ^v!F¯ÎÉø‡»6 C"àÖ®«mÉ4y­Y`Hžà$%ì‰Ÿ*Ñ»yî.Tû‡g^yŒA$Å"ðnop¤…ÖùZç(•7¶’Èb~lB97ø£Ã¶Îe îJºšðzúiB>"¯8¹TŒEMŒ’å^‹÷#$]:gc§L‰ôå„GN?0ª+4¡Ÿr«4ÂÀŒüª3¶F#3´@[„†8A(Î dÚ£DeB?åQtó[.UìoQN$šÒNUí–9hkŽ™‚lÄ'ãN’Ë„¢ŠÛxìÖw$âó6„˜VµwÌÝÜ53Y[½Ý|H¹"àÅt­maÈ\4EG¿(ßMAi±ˆÃHè»§—™—,X)PjÔVÿYø`±Í.ÝtbŸ‚|<­ã«³Î‰¾Fpcs»FS^Xß3€¬Š&±×í$å³ 2¿ÏØj9‚f	!±Jô´{¿Ö’|½Y.þøÿ¢)ê²HÏoIãb¼J·lI¬§h§SœGñ6Ðï®£ B".ó$Uó‘¶²¾ðÃ‚e•ç‡oj’ý½éF¡=Š±µ^cY_Rûšu]C ð-¦#ŒŒûK „sJ¹ŸÙ\uœéqdÌ n]N·TVy[žµüÆãÖÝóŽ°P
Y^KÞ=2/ïŠùv ut~k~{:^¸¶.LuÅ‰mª
¯½“ª/ÿUÏñïPU§v8e¶:"L³h ‡±ºÅô–¾ÿë`9”û/¯Ÿ‹Nÿ5Ì0ß”´ªÉ‰PÝ8ÖÅI§—,|Í
t}ôðÀmR²•bx³ˆ®bhèÔí-,-${ôÝ#¹E*…Ï=ØÏ–ü‹_BeæWof uÖEgÀ)ƒ'ŽÄó®ó…¯%3tâ‹ö¸¾lteÖïê.š£Xž£ððhî0Q.}¥ÆX)n¤å |Oe¼Ð“®1—Ç£ÿ!/‚{<¾ªe%¡Nýff[z"ÑDkJ€*â÷ð6ÉŸõ-«Yx±¤iãa"Ú~<ULçC
qžfrÃ4åÈz<•ÄCXú€r¹…z¢±é-À¬“žJüÅHuc&ðt£©{S[õ ¡G;Ã°fìËÜ›lÔÆ¬¥¤IñïhM¯ÒÂÈm’2EEPA¥¤Xß:„™¸¤KëwÌqÅŽ˜J˜†æ×e9ªFBk¸»OÂ,Ž;Ùˆ¨qÍ.pìµ×»
'.ºÎ¨KóìêSw7mÿQS‡Ö‰´ž¢KÄT%×åÉD0îŠaÐ’µx;›ë,H¶bƒáŒM÷]Û¡e2ƒÂ±dgS]`ñF¿9fVú@	°ìÚÑ}…iÉum;$ùµ…äØ Žz§j>üÙ3WqùFúÞöH#W?*¹g°~Åô®=^cJ[)´A=ÃÎ2©!ß¬d>à<•
8_Ä~÷—op›²µCšg)Ht—!%aõ‹ÿ™PkÆÃÕ‰ÚJàÒ''iþ˜ƒ\…•`ÑGVJ˜
ÓïšCè1-Ë,€®<P.…ÓÁÿôÊ â!]ü™Ø!¡lBd×[íYLù‘ô¥\w¹œ¦d5Ó†aÊ«hmŸïá ¡zT°=ÿ„õÇµ&:aÔH*í #
š›ÛB°!2}@68hÎfwœ`Õ-R]…6-mQu@?Ó²ô&ýCÅ©Y¶¥ß­·ÈR`€¶U÷itý¥UX”iy-N¬)æŸÁÚñh? |4{û6î€×ãvQ‚>:ìÁlÈ@—ÇP­œp@ìÊcuÜü¥6ùì%kôËú|°£aZÌ‹ë ï ÑDBwÔù[Q>Ãíû]Þª`˜–ð’q)=)0D¥Æ€ïŽ8^4µ]óÍ@Â:Ý—…
@sÞÿ§ëæ¿"7ôêÞö¢ßÎ¤•™ãûhD´èÄÔð}°¶²îuuá›â¢ÂmÉ³e¼ßÏ¢àôÊ}C¦½úƒ¦ º’ 	mrÄ•>Cúå¶W	Fc já$Q¦×¨×>àGÅ0ˆ~«=NŠøpw.hÅÂ˜²î`“"Îó}¯B PÌYå‡•|Í¿1»µO‹´)${CñÆþ<Mƒº	i;y•çVÃ(kyÈ5Y˜USð‡å‹Í³#±4pGuçÊŒZ¨ŽS¤«ŸègÖ)~ßUE·MjK;H¿_°„)‡!:WïéÅö«e€i»'Š,Šh†Ï­…iCQ0oƒ¤?p–O®¦5?FŒ”Fi/U¤)­NÉ¾D	%æas¨Õtø‰> RV¾œóO|Á	ÈÔ¡´"ŒœR¥bgÕ>­$RNQ]A.×°MH¨íWh*}uÂœ’ë#>ò9{¦<ØCœw“¡†2R²ðhÍ‰¦	R6ŽnÆ¦£ÂpN÷ÀKx—Ø>>Ï3Ñ‘›b—uðx7×W}¯ù]²õ p]‡l7™ïÀW,\Þ³,š%M¨”E0ºJ)Ÿ“¥£Öv¡
>w™äÀ¸]«ÀÓqÅÈ#™ëú‰)0O9&n:~§˜Í,£¹Éðì™z „%PÝ’§ZuÚÛÆÑœ{Q›¿v ÇP-Î²3z;Míxé.ßYiï¸&?ì¦ìc—bN>°YÓŒî*žpÆû˜ºUA-í<wìÄ]ì¨4™'Ð™Ë»“î¢«ëêÐI8#|åÀ8}eïÏÁñÊŸOzÚ=Õÿi#×Š‘".å•µŽ³t”üçú÷á¡èhÍ-,ýS«È¤ ‹´T_Éú3\˜ÆâðÂ"\áèÉ$wþlSa´˜æ¥»j`ÔÄO} 2œÎa][¨âzÃ  îòd„}˜ˆ‹ó8i5$p@˜-ø/¥<‘±–»<nÀ/hˆõ©2¾¹”ª`ÈÂò¡:;Ì”qx
™Î~QÌ 2^þÞ‡¦æÈHç,å~ï²Aq.µ“>hDŸºc¶éÏ¯~!û^g©Èh²fšF˜Si:Ýƒ"écÌï¸€àCÅ]WÜïR2^ú4íM"Dhôáe¶rZ€Iz¤‹ßŠð&ÀÒnQºØ_;WˆÄ±Kã±—œÊÊPm`ã*yCÃÍˆ§é¦üŽ©œSîqbBtr‹»(IÐgÞ6&"jsbÏ•5ãj€dî»+kÎ)œ\×ßRý“ai–ª	8æØT©ÎËJcs5Iï˜&Ùv¿m½WˆB½\†îž¹}nQn@=ë9)WwÞ6)ÀPƒõûx¤§«–¥ÐGC¶ý;!èiüïCßŠ6äP4cËÞËd-HZgìø˜v•vEM&wŠrºëöØºŒ.&m©j­]Ø•ˆc	öq¢ŠAºÙä3Ÿ!Zy&ŒºíìFýÒ4?ú„‡\¯£[£˜µ(Zm47P…ewtä'«÷&Aè[¢àrT±K+ßì<^ãf]GÞßrñ×ŽËúP;%}0é+‹2O"õ±²¢2€çB„0Orÿ¾Åñû6Ue,bu«­w*Äì†Áã%Žn+Âë¤b,ª›Ÿ¾ví0T@“Ü$¦;¶u©S˜3ÜÑ_› Áô³T"°¶ùº¯™ð°<ÄU­‘ÓU˜ü{ÝÄ!Â˜ê¾ ªuH#ò¯‚LÝ¤ØÙpÛtaáFnlE›È›N>Ó×§´²@~ ßúÆŠPŽ¥Z4‘‚Ê|¿t¿‘C.çŽƒG>€u¤°ÝnËœ”ºOpwïÒš‘f4™[LF]ÎÏŸ›‚–Lâç*¶çQƒ&¯q[zÑÎ›E’N¶G­"#V¬íÿG.icû* œZ””°“©åê·šöïË…Ò²¹]ýSE.ª`­÷ù35+/R- Rß—'¼ù	WmVì¤þ¿*Ç¯MIz*k”G©ÕEõ±S£ú2‰rÊê-+á¦,ÙšóŒ‡}	|´óJéù¥:b%½ 4â2¦¯IXåV)"žÏWXö”
Â³ÜpIãÑÈwºì-Îº÷ú
òVBok]XÙËîôý°ÐËµ¸ÏýŸk'œŽ0>bªä´9,9ÙnÀ¢¥!L1\DÔÍŸ£›ÑÇ¡ Ó3çÀ(ævÊ——Uª&ÔþÒ”†o
,Leô¡žáÒûNKü„ÐÅ8»ÂaÐSÛn(È&mE|XâŠ+Œ8é>Cz¦qUÕSC>…uíyÜ°4g0:©jDÂ;Þ­³°3ê)ë	C·û˜LuÅ«1"ÍÅB»£a×.ÀæÎ(ìÆÓ"âY0•|hf´½NšdÃ¡²°ÖŸFÞ\wàM· Q »†CðÂ`„©­µ®8põt».¹@_–¾O™Ôà#QöƒšK)Ý·öØ‚w¸­UQÓÕñ=ƒÐïÊÌöi}ïå$e²}ì—§HˆÐißÒ¿s	›Ö€Õ•Uú)	‘¦¤±åñ;=²‡è”çEføšKþ!sxßœ\1)¯¨_„,õwd–äP–‡˜ý`ëðF&ÞCÏ… ~£Á¯«§ì’+ ­–zAº@QèÝíPì• pÕ1ÈŽŒ(ÈTPÄŽ¤¿ƒÒ»®2&Æœ©Ú|¹b6áä¥G’zL^å2¦o{b’¹4}­vtØ‚kÑÀî[e–oJ$—Zqç‰ÖŒÓxM×v
O¡®¿Ã?
U©Ô„¥†£Ü¸ÇkëWpv@s¶¥‰ËÝý¤/xÕ’§¯¯êEÌÀl¹“ì ÂÀúhHåØâÊ™Õ@`Ó©¿¢gû>Å+ÂtRR‹zmì;åv<‰Èð`éÉ	} æè«¸¡	¸Žá3¥Í)ìÚpªVqŸGH™«Ü[hì­RÎð‡Ë¸ÓCËHá 	ÊäØbóÙ‚N&r?u§€Úð}¡Ð¡%*au.ÁìIåŠï }Å×ÆšÓ)‹€—få£Ó¹î~ðú«“¢º³årþ0'mŒmÈƒÂ0”àNŸôy?é•dú¯ïÐÄàß"iyç§H;Ï‰$í½jl"SýÏËY¹cšO0â+¡Åõaý˜0EÖläJôÓ¢¨„À -®¢?Æéœ2GjxÑ‰6Q½í†iT;f^hß‚â.ØI]ÐÐ*§*¬Æ4×+3BVóØ­ÀÖ¦QùÂgðj¦På"ª‚£ÓƒíÕqŠýNd¡èV»‘dziCfjqUQ‚¤©]•B2ÔxÂh•¿¨ôAáÊ—9!®óÄ €Ç2Í!šäÜÀ Ír¼D©ñûìþï1–Åo¬€½ÐBõÓ‘ù‚§uéä,õ“ó“\¯Å#¡êñwRI›ÛÜH”Á9í.øtAt$¬TÁ‚[2"€% ¼d(L[n|Ÿ–Þ¶‹µµE¢¬è\¨6-íÂFÚ”¥MîÖeg¹-Š”!|P9D»Æm,~‰çtÊøÃÔž"ª6Ò>‘Ìs¥§ÏÌ¢+;èŠiÄÇÉ‡{×ö||JÿÅåš‚ß¨qÂ©¥7°¢žåÁiùá ó€ýÚÞÖdÕñA €Ð eQ^œ¼‚òÚü¢Ž“s@È{=—f‹™¤v:šgÞ¡ÒàØç@6YXX;XåŒ¤l_)ËÿsXÆÊXç{åÂ†Fn¾¹ëðw‡©n3ùRýÜEBÚ¬ -çZ¡Î¿	+~ÇWºÙqEtõ¬ŽŸ°ð¨½h4)‡âS¬oˆïÈTtE¦\ Éòö˜¤1*ÐHÝ%›šúa}M"aÍþ°	ÇRÁ«Nét@›ŠY›öfÃ!)XGåqãp±”ûk®/Á3Û‚ªeè	ÊG?_]{ßd£ÀÚr"r— ?ÀLŠè	L\°_çój€r²¦j‚‹™/ÑÉîIÆPME­0nMs:üY ‰¯é~ò#ºÏî;¦Ž_¸K‡‘‘Þœ(ÍwKŽ¡á§šÂgr¢Íb;‹0rõU¾xÙ(}ˆèB³qKÄþçÍÎMÞùÊ¤ª:Å‹œ¹kT¯)ø+úrøb7žp™ ÑH­Ó!Ý*ëÃ%Díû¢ƒ^ûá·‘A(•ü§“ßoKƒÞ¬)cBÝMNÕy¤ÔæCëôrñ°Øt•±p®Ø,`Þq¥qY¡.·Ì~;Ñ¼–¤~rœ“¶G6çË£Ô
–ÝÀ‘Æ!Ý’û™¼AàP½Q‹2¬<LIz6…( “—òètgÊÉa÷'(µ¶Ç~âÛ1‰«~Bí£r£C¸fVò,QZÕJÛë¨øÏ[1ß<'Ÿ²ùM·_÷ÃfB+„º>VŠŽË~“M€¹ÿ7†0#éæ¥jœY;féûä]E­-æqb—àÄ^Æ…Lbö0°ÇéçÚžN”£=êMä„¯ºD=ï1Çˆ{ŸÈ\í5‚ÂôkItœ `z(qŠþþ(Yq|O»¸õãàjT{”+à¾žÞäñX&HÌÀ]žÉ-Â5€Ã%¾àOÏá‚­ãòBi;m\Üë}u—tZ™cÝG}GÑÌv9œ!%¦ÉÕwñuaé«o“Qg2y[‰–M'Œð¿&GÁxØ¤ÈzúvË…Ó²;âcýÞ

ïˆæ}©Ÿ9°ÎƒZeú[½‰[±Boà!@@#v(õ¥RÈCì%…§_Ê¶KóSWà±iº'Ü€ØËúÒ8šàÄÅh³J4Øh”2ú-žÔÊy×·éëþIwŸv]……ñzLÔlíÁ>ZGAš~rFdâõeöÐ[¥;í„mïsU `þŠæMvü<Ìa´äE¯<PvðaÄ/¹t ök…ÁlYc¦ÍÙ‹°â+%ðe€È"¶V¾/µtÔ–?ž¥†gj3äd¾=—†d¾
66)´ž¬nÄ·M”]£¾Yùöt™Ç›|åx™)õHÛ@È>BÉ~ôé©"¯+´9‡¯»0lmÇ¾7#~„’¹éå_ÔrÙŠa'±UßÜš}P»²„µ£JýÊ*‚tÂ×šÊ“ÐšÊÈyÑÔ•“hIúKn`oW®š€_—:x³më+KÆYù^µ_ÄìÅgd!ªî)uã©PâÌšyD
—Úš j´ O( \È‰(¡‡•4@pg8_}¡xõ_~""§nöHþ`%Ï_$+Á"Öu£¸ÄÁÓjßÐÂ¡¦E¯Ù_¶Ú¼*w%’ÄÞ=5yM-ï•§›Q¥ÞÓ’G%>d¿hâo3k4HA7b„q@0øÄ/
ùá	Ê»¹åTâ»½”ýœº:³3(—tqKUàºý)¯Óbñ¤M8R©”ãY-¦45ná\:{#d%Cøq´ãÈÜ¶d[#oqA:ô;¥LŠ@$· Oê,×>–lX²;Áb}ë÷Æ×9huiŒÈe~q.›E¾TÄ-NŠ†½}ívÞëÆÈ|jõt5º&sC3uò,¡lžrïÊ‹×#åÒ5¤7qÀrÔÄîÝÌ½N9±Ö„7ÕQð ÑsQ§
F7äŸ+D§¹<öÐ‘NƒñE`”y_xzÌ]ý#Ž¹#·*fÐó¼æi^]¶L2oI‡ûaÎÑãRTHÉrÐ Àl%ÄE8{iÖí¡èt`„(yx}ui}áqwz lrS¬)“d$ÝåL¬™ïýµÏB±³Â4bK1c3âYè3ËNÎqãnB¢ÉðÛSï±ªoàtÇŠpç?¶ìHÂ>^Ï·_Z.&{R¼`:Þ«ÎD9.‡òdù¼·îŠTá1$\Z‘º½{}4$&	)STtyçç%!ð@Ôêd.]7Uûõe¡Ij.arâÉèHj7ÄywI—«Oæò€;±‚FËžÐêÞõN!cà3âÝ“ƒÎ†ÕÜ¶Tåƒ7S¶wÝ9‹%¹¥Œ¿Ýã	ÖyÔ'"71ýÎZ[3È"*hˆæÏ9’ë3Gn½Àz %#ÈÖw¢¤Îðž#dW o¦4s]ÿ'‡¹JlÖ¢ÁÁ´$® .uW·8ú€àÕîâ¥s;ÊT¹rga:PWGÌÊÖŽø»X×Z¼ïK×Rs®Ê Q%{Dud3;7e/âŠïY*¿Xy—vgjîÁÏo!Š)ãØè!~L“hƒëÖF-NŽ†@³"q“8®¿0+gëv«À!Šýè>«¦9¢Ã¶•^nÕõñõýKŸrîW€©=ö«2ÿþºBÙû„!˜0;ªaI>GTõ ›Ó‰N ¸coŒß)XßyPaæÓ&D8Ý[×he‘P)&Î‘[½†è4½ çÓNù	N^º¶ÓŠ¾æüö¾ðEÏ˜F Ãb¼½Fúp€1:¹	¶ãØíõÌÿôßÚŠÔP<·^ûÕ)À‰z :Th"!Åšð^‹ßP\`·°ò‘âó¥¢”ïv/Êäô/ñûòSÉaFæŽËB.˜od.cÇÕE6*äJXüü#VÑú&º…€šÙéGäÓ•§úüq÷Š`¤lï…2ÃB©…—aÓÅa§çqUÁ/ñ*E§¬ZOŠØ)Âv‰éÉà·ÔíÒåi†Ò¸:P	¬Ž¡‡ÔJr-fº!«L)ìy­ýt¿üÎM!jgý— ¹ÕÅ²ÝÇa=³Ã—•üçÃë×/""–ˆÍ
9`ýÒpòì½h»Ä±{0Bü%¯×ÝÓ¥S£­`®ƒãç&â$k4³XöËSõ/O„gMÙ5_<°÷IØô·Êy#E\ÍdÌo4Ô‰„äµs5}ª~1_(h),G`èçrœ×V@iý‹º»ð–¦ý~Ih7Ó³M/²<.}i®‰|ÿþcÄ1Ô‡{’îdœý¡4ßÌôÇðIÄ\êACy¸¯‚ÿ wˆÇXÈ{56^B1AC)©O=ÜTêÐ~¢ö»‚wŸ›6Ãõ¤<+£¼ß¿W%‹7µt«Ô2ëØðÑÓA¦h4j/Ž‡MGjNtñjþ·+/Q±
ÝW{œO$¨Ý±ë…<‚³6>×;Wªá¸é}öíyqË^)Yh/lö«.?1	Û4‡¦
’žœÊ­ÆÏfL½qÚMo@kq×Ò}{I`ïzu±nŠ¹zÉúU™óX;ÙHªæR‰®ð&Ž-‰…–Žq>`´²m8<³Ii2Ráö9™“Y¿.óªOaŸuìNô¥.±ùR,ÁAåÐ7 |×0t"®Àí_}pêÙ¤®ÄÅ¬dÕù¥•ä4fÚïÆò¥ÞtóO ïkîr*Ç|(K÷=þÀƒ†²#F@†WX%ëéÅ¬'Û{ô/|oe-¼Ð“1«˜‚N•¦pœ·~Ì’ Ð××h¹Yæ?Õä@ƒì®—ü‘ú}£ë„Ô¦"mbR|“Ý[™n{ô™ÏL4Ÿ`Ük­l :\-iî÷®«^:Öƒcîmtq°Å²x™(G%Q:SÌwÍ_$~¹+ü®›ïxiÎÕÛŠ•*0%âØŽ>_W ïçþ 'e—ÿGEÍ	%‡xžzË¤Xáù¸»ïä(Ëç(j•*µüO”ÖM™+²^˜PÚù¨üÎêÞÒ>SdÌRÙÙHðÜå€÷ì¶Õ¾N\‹ÈN‘1ž]],
H{§3nžMäË®£¥n×»Tý‘^Ï¢˜][õ
2<Md<›xjn;27“ÛRd]®Ñ—ÃÅóÛ`Û0Å×9no­èzIž),	â¹RÌæ¸ïÆQÔJj¼M)÷©ýcÀ-ôÕ„Šø¶ŽGèÒ·{-ð-ïÎ;'ØXl&Ó ÄÐÔf°Þ‹ô õcá”;¢‹œ(Û­É ‡™Ê(8¹ÍÑ{s[†0X™‹{Gó$þéXÜý(6ñ	~D¾,Š[3`OÁA$ãÏ	­Î†ñ$¡Ö¯é#”T1yôqoíÅ»ê§Ù­×P¯×ÑôæNf iú€VÎ&¦ê
Ï €§°¹wÐMRX„°‰zS§SÊ~brAú
‡ƒÑÙ¿…€ôÖüU4Aõ<Úƒ'êH6rn7™D²ÃAÐ¡Ujnpä%ÔNxGã¯cåñ$°hE;®¤»ÍÈ~{^ã<ç‚-ÝLYû»U6èƒyD ‰b@]Q¿"p-³©D³ÚvýP\¥S
Í[ÁÛ2L4~±°—ÿ‚í³ögcKåÈ’_m`†´²2+¼»¤RGòû¦um~Æ±>#“0âµ$ÀÜGˆÎ¤™A„ñÿrJùñ üúÿ•63RJDVø^±9”þ_‡\ìãÈ‹¿§$$âúúAÿ¼SÒqîN`3ù´€XxÑ%ž ¿?	&pùf•‚«~.8hÒoâæ†nÿäsÏ;8°\ñìŸÏˆM“l?eµ1Ã¶®Ë”Á>Gu¬Ã·Ñ‡aª`†á…èÇË7o”	‹AŒÍñB4Ÿ(¬4à<ê9V5Ž ‰j|tx%ikWp’‰üXá‰Zyœ¢ÙB‚«äUÞ‡•6:3¸9ƒÐ"ûUÙ×6N+ÀØ‘NcAäŸPØª#7+¤þÏý·±iCox.žú›! –Ã¨¤–;þë+žò*îâÑ¤l>ÑÉHò¡p‹ñBÌRºŠé½uó«—¨ø“ŒÊÏ™†ôww€¡Ëæ^ÌÅì'¤([­ŸGƒ’ƒW³â»€¬tk/í^"Žì°ÏØ£×o×mxa|*Ò…÷‚Ï,
sÑ)±\R·½Òê+„:Šâ3"I-8=Üè&’¾})º´®ÏÍÃª*‰rÜÒ#©G˜u´šv‹ÿ‡«zä·Ìžl´GÝÁ3#å1å\EÞ»—keRbztÍ<€Š±zˆˆÜ_–ü4¶4Äò`ïTÝº}n`i×ƒ<³²?ÜUª ½¯
‰¥×	ÍB’+á =õí /	±ö\¯òoÇ®×îS–?óëí™î‡p!Íùöiu»n‰<W…óÎñ¯Ñ}Í,‚•ª™	ÂÑ
Ú²¼æ/@øz!Œç+áÛjHàt
Ìì$’3÷ƒ %"T/W‘]1˜ÞÏ1±?°tÅÿ”Ó9h$4úöÝå1Š^gà<‘1úÌî²?«Ø”ŠÛ— ž˜íJgå¼\G4LË¶ï
bq	C‹ÙÉkcÐ…¨ç$½†Ìôn¾!†L W¼Ã*üð³Ái¦‡¨—n1éã%'1 Ös´ùí­@XqþË½WÖ“è±¼úàÅC}ž§_iåþ"*2pë5ø{o4*>*LÚd^†AÓa</Š©K^ #ËBýÖöq[Ñ¿l?ø‚Ñnö®x¡½)8I&/ãðyè•d†"ÖGW†ã1Ô´¹»×î¥ês’p“öÉ4E¾ùÂ€E›Kª6û€ŸMjÇ5ÉdCN7ýÙs©Ù´ÎVÞHÂU=IáÏ‹/ÀÈˆ~nÓPÑuAì` ìT÷„ãÆ;C`±é@Ð­h0ìÄàJ°lÕA;9?!;#l÷¤1
ðÔûª;ÿ¸Æ˜íÉtÏìbÎC¹$³j[—¹îôTWï4k9SƒŸ`¨WÏrÇÕ]°gÇd­DbMrl}0T-Úò—U>21y–h¦?‘¦A^ù5žbõþkný(§#fi[~67Y3Hoêˆ+ÇùøK,Däñ$k„Kv½Àù±k=£•Uñ„	¥qÄhÓœwðÚÇlˆAÇ*&ŒhÞ­Ú —›ËEö-Y¼ÐUP1s‘piXÆ5%´ùa—ÿS¨O¸v ‘±1€â[Xï1ù»'G?6…€èS·Ë:BÖÑ²gŸ£`7îMšÞˆ>X–THÑÏL4GÂ'ÝsÖN•³dc#êÅ\@Oß¢(ça¯¬½v^U ûeÓ4Y;m.(PÐŒ¨¤Ž"ÊÏ·ª½|ÕŠô6Õjäõi[µ<jq#­JØ‚ëwŠ33¹(÷Ì¡Séãï¥c™…Iª¸î5šfÐqk*î§=E½Tþ|œ½·o‡çöL6ÛÍ-‹Y®±q4ºS×Æ:r>¨vŸÐí]àå, ]z™ôNÖ¿múÚ¶ÂÍ“b\nü¼÷Â–“{ôìSŠÍ][-Kîèh}ù¹\ƒ}êugå–¤üéì!Q’Cõ–âÉ[šDÏ«!§ªIF3±5¢Ž–§@ãO°0·x½€QþüŒN¨_0o¼p”Ñ6ÕHRô26u´§S7íß0#ŸákÜˆ¼=ÝpöšÆüÍÐ¢ûuä"AÒ˜ýz@t¡ÕCÇ|ÀýÑöqk¦’`ç¤o›õÒ•Ÿü²‡2s½S‡œNu¦òÎv {}”‘ã4Ø”~G0/íNŒ ^1½ÏB×Ãê¾•;š‚Xl×ß‚Ôe Þ}UË×^i™ÔN‚*s½žû3P2]ªò¿c¦4TÃ×Œ}·«Òo–=ìÏµŸeH0…=ØS¨â”µþ$èúHòïû»R¢å¤íK½çaBËx¶
‡(B¢éG9‚ÕW
ájJ‚‡¹Z(Mqm&*.­Îý®¾ÇyŸU(åßã*èÐ¿R×JÁm•šGþíHé.ÔßÔ^Œ#^Õ•çvlðq`ê©œ¼k®¼ºøŽTKâïmßóÍ¶6dº<xÂÈ3n –Ú’Ÿë¨¥EgÝTµÕä£joþÍ='ÐøÅÔ“Ö#<“À†Ø“z÷zK „.¶‚1²-á.C¶êy€Êvå‡ïÀ…ÿ×¡†¾T8ûE.hÆû«ršå…¤nçJQz‹Ä’ãø7²Î¶‘©Ã/Ä-ÚXÊ3¿øÚî:b9Åé†&S1-®Ú=Ô”¶h[ÜfAôÃ£ a‘'åñŠp{ã	XÛ²f½'Û—!ò½C“ËÊÝ=ÁÂkV˜¤þr‹=hf¼ðBrð‚Y Ý¹Â‘Kr¢¯W Õ¶¬Ð& ý4¼	ô‘<~
š|A<#üþÈäé,?×r]êÎà„ìvVÜa¦l¥{H/gô[¨ÁcN˜Š¤`_Ži™Å(9¼PÇ¡œâQI©v^7¬‡qAâ±„Ù_ y`ID>±ˆöeöÐÞ™¼§zÅeËzåIåOÿ²ƒ‘Ö†yfúÎÃC¼63•vœ¡õ¢|å
î»™—Xh’Z88[ÕæYyÑ•«O„v¨»VIq).|èLû«}OµQuE‡“êi)ñÁ@÷Šãšƒgl ï°<În9/Á®5é¨ö™4–Œ@\a+b83±¼‘u!$yòÆ!sÚïµDsªÌ4€÷TÒ•wŽ2.Kw^A¼$²$pùºë…]W‹-ü–ô¨qæÌý·×,lzFðî‚Ÿ¼Ýó›-É6S"Qý4¬|‘¬!©qeGk–ÇÃ”9v‘Þ…Ý0,Qca›ŒŒ.ò4EË9Kp=®oantnÂ^Šàþ4b s1û1ÚrÄÎ²af[Ãÿºa&ª=H–õÊÝ’1{š°Yj #sÞ#'½Í/y8÷®g]ŒI~4ys;T»QqFj%Ry>Ìv4/‘i}T¡‰NýóÓ‡¶~PŒÁMµû¹ÅÿXú±kš$~“Ñs®ÀVøèà×ývA–§‹$(`+ÄHdn(G
_;¾Ž=ç#
0Êœ¯ëŠ˜•pµ=­UÌ¾kpþEèž.u´˜TÐ¼Õ¯47Žìn]hÔ1g¼ ÎË¼:ÖB/8Ô¾A»þ@S§xª1å÷âl@dðÅ®¼í÷ëä’P+äNø.Sâ¼«°¨­dX'±¾ÞWfj¶„·.$—µa÷1}çþÔƒß±Â?DŸÆÿ¨íþ HÒI÷C'îÇƒP|Æ-Ô@	I~±ËúŽòKŸÓ§åîC¶7ï¬k$l¹ÿÏÌzjŸ¼rZXÅ´A³Xyø»¬•ÅÈ­¡¬VÏà-êž©w§[¼çê]w0©u§¶ìs‡“_µ œMäc¤)qUCG'”g¢ØHçÛ<`òJ¢Xÿr;ê¿–åpÁ-(Ñ¿¨C+¬Ý‹ì&8’C…¾Ñ”%1",_í¸Ÿèƒ×ÎÐ~ŸkÕ_
4G®B1Çcé{}¬9DÊB9ÒX6*q&+}Cm,TJØsåd¶Ë9- FÉ¡µ÷Ð¶øôJ_«Ö~ +> Øé; ìl™9ÀVÜ9TÞÂ~A™•3/“±áïCªïuUGpUç&î˜Éùr]Vö[}Ç/àbß‚- <-UéÕÔB‡´jN$d%ŒÏ[ ,6
‚¬†m ›ëL\æx»ÝFÂo(íÿþ’â’xSHžëýv\5Ulë>çw#øˆ]E²Ô©Ü÷¾4²¥ª k¾û•´Læ­Rlºš÷µìœÔïHŽ…àwOÇãþ®@~ìÆW‹"ýv6´”e…ñþÔT°°Qx˜åû·˜\Ú@ªæžýÿ–È¡—!P„-0ß
Íºž®‡+ÌP·šh4øž‹# ßõ6‚ÉM]Ç/<hb¿šØ¥ %Q ¹÷ãgtI¹ÇjË²Ó@Y/GÂì¥N¸úAzv]§ä«*{ñY(¹ùÜKK:ž—Îù¥ðÿ¸Ù07œ|"<f´Gè&o­MYw…ï|o2L¤é¦D[Wƒ‘=*5\;=š¡ìj½y·382âæ$m„ì)¡çL.Ç^40¾·{—…¨›PñSÎžBï/ÿmÃjl.X"jú-ýsU'±ÕÏœˆ,¨{hÎ·èŸ1£î-_'ŠC™L ÿ¸"EÊ£–|Ã·°{6ºó+ÅÉ5IŸñf.Ë½øŒ<V»£I'TlI-!ž£5£üªÒ„óPŸ;’¤z$m'7+c&x˜“¯¹Ýo6ûHç@fEÓ-žŠÞb£$û$$ú2:Ñ2TOwÅ’±Äý‘¥Ê0mÚˆr=“ŽÈW(ÃÜì)i'pY•j—à»Aä¸;B:ÌŒ+Ÿþ¡™{æ@p9¸'©%_ºÏD3:ãÒèmvÏÄ­6:/^«' $1„„`bØáýþºr‰ILˆ¡†N
z‰Y…©ÈgI’ú?UÝõÂy°èh¶íì¢…k 0Âœ{€)¸fn«˜½›¿Œõ¿ 
®]AÚ»ýWóg~ò¸ú1“ ü•ˆœ?¾#/C_¹—AJ›]°™È‰ôkžÝ]Ž-Â'‘,ÑV+(¥ÏÙ4Õ¶ôŠ(÷è2hè£°„øðN%ZÈð¹/ùËý!D@Cþ§í±cË­VÔ%ý·(’y«Ú§y¶4ÝŽá!ž—vFˆÿ-ü §b–”Kid­/<;{vnF Ð
*“™Ávî-Š¾hìÊMÖ$/¿¡ª×ŠÑÀÐU°Šù6¥21Xš¤ÖZ&Z‰À•õá§¥ÿðj©:$P
‘I‹;ò©öˆH3J6’+·Ïìˆs	“|è„äQº
á§¯uK)šN¼©QµQgàLý¯w¥NÝÉÂ‡Å&wIÐH‹ç ÞÏýã¥êt/ØPlèz²‘HÝ:³VVÑáSÆ/ŽÕ)TÜ­Â–9CUGDf¿ÉŒ}Ô¾Ï]±¡ÉæÃÌ\`¥ç¤U9Š/Í>žäŽK‹­®¯—¿Ý.ìJÚâç$³„˜È'öëÊ§\§}JÉazöf<KW˜
+{F
aàé˜nV-iá0Å¢£ð	Š–Š³q•R}dó²V-ŸEöÚûÇ±› Ø=¤{WÌœÁ’1#ÍÔ‡—í?Y•-$áJÕ76èŸú³0NÅŠ¾ç¤÷Ï„Àe7Û§cëðJÕ;šè%ò4I—Y›³<ÔÇô"É0±f¾VL,(-A’|ÚÛQØî¹gðÍ3pØ±„o oGÜ@/m“$•Ù Î\ÎwÐL D`6¤l¼ÐÕÌ¨Ö¸·ai°¬0T·áìªÚo”þwH"Ðt•<5Rªi×#®_µ’€f¿¢—ŠŒ^ô¢ý[ö!zÈÂ;½ÒLCÑ±}Í¸»¬ìä „mtfn^…6ˆ8Þœº+TKIµñ(â¾ýò[®Å—)‘S?Mó%—µdÚ2|Û—gE|ñ`ªsËåg¹ªNTï®&”%Î³Í—Œ&urõ´gíÄ¿ÂËï£Ô—Îþ\vLøN6{üÁ>ì.RƒP$bÊL[Xx/©êûçÖûV¨”6?r<é7Mÿ_nŠ½;Ÿ‰ªbca«óŒ¤¹‰ãeöSfe2ò IÒ,‘jµð–z|>š·Ç`sÄ…°ûË³\X|F]3j4Ál"Ö†=_ÜVåL¯uY: .Wó˜úe»ˆ`¬¹{z˜àáïÍæåH|G$á÷Õþƒ—;«O“n°bÌÌ4¨)š}1û^úl‘1W@4ŒKØ[!‡]0†«ôNFo"ñ4‰JqÆg#sÊs4¤ÆEv¿ÅM…¥õ½,¨èoQ*°rÒA Ž¶Åkñ-F@˜ÉI?ÿxà))ž4_[lGt%\ãfžË›:kãòãÕ3Þ,Ü¥Ð¨wœƒ¦§1«Ê¢€÷…K†xB&‘rø!-¼Sú§¯bnF’´Õ$ôµSÃÇ9?UÈõæ´õÙ)þõJÉ¯<¦ÄƒPÕûé£^&'w«ÝjŸ2?hþÍ¢Ì«:³ª½5ý—C®Éùo6t7OU„ÎõÙ?ºMý÷˜›£bÏ_b°ßl¼Ú…Çáx‰ÕvK/—y:ø²ÑüPôç¯™b·×y$GîKšêFîJM¢¸To…¸å‚O
Ü³¥5}`•³¥ß†	B9WG´W;¦öÕ1Ñ%8å§‚äÂ±©ø>!÷qq?¬ÏÞˆ‰£®«iÈÂù¢uô!ýš@•éiMÛ }UEpåÙom•0œG³û7 Á¼ñÌN În+ þ×Â.VFnÑYºaÁ`u†û=BßéL`£a˜„Ï‚d`÷.qW#üZøŸ1ˆJlUÛÎL§®¨p¯G¤(Ò«à²~R<a3%O=äÙpØR¶*Ù•a6¼"šâÝÐþv€sáR–éÛVhXºƒïùÙuÐÏex>iŠsÜ‰Wå•5k>«Tí­lÂL
my¸¡<
KM*zAtgCˆ¡gÍ^[)VúI/¹ù™¥z#vièáôžï+Ñ1y¦Eb#ÃÃ¿»¥¥=ªçq†ù>]É¸×K¸·.>-Ê®}.ÅpÂRàÌxÇâOQ*bðÝJÕ»‡ˆ”Ïô«YHs:4žŽX¥Ú‰kM+2M¹|ßðì³1æ›ÜÚöF”uÌç4œâd!ÊY˜:XÀõ½.ô-uº“ Më€±üokí}ªÞ‡1z×~Ýô0–VÇ*²sÝP/X;#Ì¢0¼6æ&þ¶rÕ”1†’„‹Õ)õhxGØgÍk ÃôíÙª*¥´ÐËW}& ^Ú¸L¯åìÒOt±Lýsƒ}«ýmg)PVn¿¸¹Q-Çó2ÛªO-Ó•y©Ÿïhì-ùŒPÜÐÞ7"îÜ®­~‡-äOÅˆg€mçK ¸ ªU!¢{ã¸2»ÌZ.¶Õ'óÎ£¯ŸUìfÍ&e“²Âaëv­F‰#é›¤k;¾ï uÜ}°Fñó^Iá´î´Â“ÚÏû×¥ýæôðB/rßû´ŠéøÒXÈrÅšBqoÚ[bÛ9þþ3ÈÃêýÊ#AŒ6´ôUŒü®»CqÇr¼QÄÌ!ÆºÐþ”ÞJÒæ•¶¶k²î ±ñáäõÃÃF×÷ÿ
°BVð2DÔ<C‘€ ¥„#Ÿaáœ˜~îZ–HcÑë&{±	
ë­';É´?aI@;l¬e¨ÍHn›[ý[ˆ¶qr*¢ƒ‹Á‹ùõ†þ¼è¯>4Ûz1¿éEüT‹ ¼‘í®óâ')eI‰Eƒ›&Fzt L,!âÁV²£Æ«u8ã\™\÷´Ó\¸íæavmÛukïªëu5ï^”•´…Î¶MÔ§¶žqŸdW?Æ&ÆÃõ¿6žTÙ•p¬œy³ÅŸú¥·”Ú–’FÛ áT¤	ßÉoÙ“P€—ß7µsjÃ¡âïÚ¶ª¾¬L¶DóX(ò¦ E†­]7}—1Y N`E’¹G–M˜"½ÑÚ—s«—>´ïÙ¸ù‚ôÐšÿ,pli•T=[ÿZˆÚ bõ†þd|=‘^þ8G‰ÔØWÊ jR¯ï)Tg€‹àð¶Ø©S‰2E_æöšT21ŽÝñœÄkÔêÂè‰7IÆ”\´ ;~-ãù !Úo?‰{iÓÚ´´®ÄKY›.Ä_ë‹äŠõ´ë4fE$¬7è¨7Ïú|XJáZ¹aôúœáí#‡¬SWÕCnŽÑú÷CráÒÆÈ„ÜÏ½ÕÔ®º>!`Ýs­ŠM¡5?Í~ÂÊÜº„ÎÛô‹Å»ÓÕB³ŽÆý‘½H’Œ.ÍQWyTŠÃÕ‹lžŒ?â;_3üæçþE3»ú0x>2+ôÉ›Ï…S‰ïC!ìàSÞnî¨7I•(¬‡CØÛ1(Àïý¿|SóQËÝžë±Œ¬;¦f½«ËpË¸\)AÃ  Šü¡€é-[¼œ›4ì×3†a¾]2‰æ‘ ùâwàY×t9&'ÜŒÆCDüÛLéP§j>ÉÏ.&+Çx·¶4ÕÇ
ƒ¤¹¿€CfÚ‘õ3ÃôÚû+dm¹ëzC†F.Ø Q–;nØ¡Hö9+OdþM^,GçYZE£þsüT@sEN:uqæÞ×þì]Ç·Ù'÷ÿžtÃbRÆ÷Q–À:êØŠ==Œ|¸ðDÅøY’N£5IÂD•èÌ…¯Œ¾ƒîy5”œ‹½XàŸõr¤Ë&p.gªÿ`°§ÐÞùÜž[²M\›«ðÂS_»Háœò•s3ÍCnT=U¡î¢8"›
Š•“µu½mwÀ¬þ¼´?|^rHuØ?öß¹¶é,žùú—VàiœÞÎ;"(«>¼EÎˆG½¬?î×B¸kÍÎ&Õ9ú‚6Ö<¾ëº,»ÄPû—H‰`×=‡YÅ"¬Q¢µò³R°:ÉŠ…~j(o`)Eãœ²þÍÐmÇÚ¡ ºëí2Ý8BaõîµZ<~¼d"ƒ›È»dVú”ÒÛŒn5Bàj7[ä¨>0$ì@Åcñ[ÄZè1¯ëÙçë'‰ÄO\Â¥ —Ú
k²-aD¥IŠÙY}WR/›çv1"J‚9 UÇùÖÅûÄ›VäZ®·9²å¤‡huˆù¢ù±­%-¼õw÷ÔhÉé¯Çòÿ}ŒÖŸéH2À5f6*Ö)$á7SÀºX^`èe3%sžIxœ¼b¼™R¤íÖçÃQcÁ¯ì¦¿J"½<t•'šPê	5÷z½p-JWBXPÄþ û§ý,ääsÓEÁdc¨549T@›pî7ù¬\F4qzum]W¡Ò9¶Î \j,ø-üø“¿õdg€.ïWâO(‘£òqËEë…èèÊ¾0Q+/ŽJ}X”ùëqãs™Dv_Ç´if¬@«| ~¤åpÁøRyî1#Å^vž‹–?þ›¾)fçï¼¢€!ªÍ@Óq„Ÿ3LoÉ&Â4ºÓùÏ2¿»+~ŽÐ¨òz(QÆsÒµ6DP{ôì9?ýáï|—.ë•lëÛ®Ó‚õx:í‡ù¨ŠJ>ëøÛUø<~U€ãò]¼‚MÑ¥ý·T¨ÔKöv6ÄQ×2×œÏS3d¥§õ8íõ¾»õ»h<¼Ä!\S:h^©ÆlðQcõ§)øÈo—3õPJ0\ã"r«?‡Ç ÅO¹JßzE>Õm"—KîÓïé@ðMÓRsº…Q9©„¾‘fÊ÷	ñ”a>ˆ£ÿk(
ÖyrlÏ¾Õ	ðº j‡K¶¦!=§Hâ<›Lê³ûxêHßZ.0ç2÷$\§ûš>Êmê*[Íî@_†æ~o*3ŸM¼ç~¶«‡ÇWØµûZm Û?éõ,àä'²)›YgòK¹–[O^‘?{ìpíLÚ“Çh#‰·òšíqeÞ7sî.ªƒý–ÚÈQæèýzî¶…ú™WYÿû0+THœ8_€Z †•q—`-ø„ÄÛ1b,ÐšŸe£öÚž¢¤pFN!_ÛsšÎ­ïü6ÈÂ]oôÛéç¦=[ÄŸ ò\ÂfÚ\»èÕø"B®¼³ÂMúƒËá¹iž
OVV?G"ƒT÷©ÞbMžyFY­˜¿Ù.‹s¿ò'd‡{®I#	g¢ÖñµöCF5é{ŠãÖ	ÌX‰h}Ð/,LÕçàÅèþufÀH‘1®÷!ÄWÙûÅ‘!@CêìdÄgäVäÅE=ªáø[Ó­ƒ†èa6>q¦ô„t ›o5c8ÒY^zHáÅùX=êo™D	Yg]:"Ô[5E¾­Ñ¾-öŠMå 8à³\Aƒƒj)c~+¤QwyÅïÏÍEÔn}îfçÛüõògD°cÊ¯bvk&Ï5®v¯q6ë¿O¶]€FÏøl×IOe´'.3¯Ž­Ž¥kdqÉ-šÄê
Å”KÌ¿äºÙí—å’–ýÄ 9¢	ñ°Ûé¤ƒÌMîÃD¸ èÎÏ¸Ë*‡7º‡ÀgoQC¸.ö9-Í?¢EÉ .{(€Yì_yÌFîwßQPævr[óFvxàˆ®³7’4ËŒuSi‹iXUòÇ**¡¥áÓ'æ\kÍ”?CÅ5¿qÎ[Ÿ—¿›öo=)Q°o·ˆåN±Þ‡ˆ
T|O5äR®~Ë›éì	æ`$¿Ï1hÓ¯Vöðù È qÿ|/æ£þ$:OL|ßÞ4‚r{Üâ§eÈ*›¢Ÿ˜ƒ)“›Ž3´¯£‡cSG3M¹º›iÄ¦d/Šà;¿LÒßA/®¢$Âá„œ§)ôþåÜ6%ã-™Ë`0ÏÏuM©B¼B¿Qþý®:Ëé¨Þ5^È´}Ž×ÌŠÍw‘Q	†	2u˜”¯Ëüšj<}%3õ“O-'ËÌ‡¹re?ï×ŠplBÀ¼§Šäý±ã2*‘=o‰4g´ A[r8ìC¨Ò7ü&³ïÄ`‹é”M,èºU„7G¹+ÂU5*ë>Ô÷Î_¼	Êè¼RI\-Ï=<±¯ó<ERœ¼ÝLÒ-ãðh=?éÚyóþM[Êzo~ˆÞô}£ÖFŒúNè"}~èéƒ•°¤MÐN÷°Ùo‚áÀ‡Æ¾ò—Äm ƒYó‚ƒÐE©º¸¹¦™’¨Pxá»VýÛKz¬ç‚x¹©(!XÜLÓýÞQŠƒ{ìA¯¯|”{õ°º§PÁÖÎ‰ìÎÊºÐM? Kg²—fV°èP_rÚ™NEß7Óvçžb%i¨·‹‹÷L¢åy0 {É“ˆ0Ú“ˆÝ¾-¬§Ë}O`¿VÌFJ ¦ZüsÇù»ç&Ãéi©‰¾­°Ô*Œ‹h/™ÚDŸqõâ¨×Æ‚±‡W=>:;ö[¾ vÂ0¨×ÉF$fø*Z”b2±íÀ–|M¤_:ô6xÆë—\x¦W„›.­»äÛ\p#“Ó†•î‹´D tTF•ù'‡éBrïBòT"zvûÇß'v¥uy „ñ!<€×Él?f›çÿdìZo[—@…<Ò¿9©`0D›Öeç¯ß\ªR4R"Å~ßU1 «BZ£ÚŸÅ…ÎÑídÉAMñiéŽ$©¨êaVYò5ÒÑÞºNeç˜ù¡®3#[Â^ÝGT©‰¾ƒ‰i¤×ÑÓÏÑá¶xa§•£ >¢Û>¼âo$>äÜ sÐºŽ³ t)7raó¥Gqˆ||úvDØÆøF)aD¬OÕÀšoð…4.ÀêWôÃ¾|ÅbºÀS‡qK^ã–q¦¶‡½˜êå “µÂ*£f¬LIGÒ
{²ÿ…:¿w2£ìíE:˜"h¹`9Ôö“ç$[,¶;rò²|ÈÚo ™”x@öy±v˜úF«ö
Zcš‘¸Mùÿ"]š>æ´cfé8Zâ«º:Ïˆ–¿r~N2,jgC`Ô-K[ÁËˆcKp£TJ íµaÔ¬¨]AN¿T^?L„ÿ,P¶8ã>FhïdFz?ÃÙ¬¥ƒ¯Yy*ùus°F»˜ /2Ï¢+H=hÿ:Duônyú¸¾å;_ô:&±f¨šh,}Øc­“ìözDÐÐøòz•©¨­Ä8Y“.ùv5So¢–/V÷Ã‡!ôKk£Jý·yx†ë¥Òak;cžRh6°ÔŠ|ôå×Zæþ
¤Ñì"jHÒ¶ïpš¸:ënzdñ—Íª¥wO¬“\gxjŽ¶;ø¥þ/Gª7©¼ÃÉžCâó	5O_Ýø[þ8š“1H¤—ûs@„Þ ª.MüÔ†3ó4¸Ä0s%ÚµõÓ¡Þ›hf›].Ì—”èŒ3ygò.¡´&"ñk¾ãlÌ®7#èV²Æ ¡×ƒwñéi*ž+üªf{Tc´=^,ŒJ‰¼t£ó{D·Õ%4Ù4ó&>ÿ…ò^•#/„FŽuQò²;`n 2iÎjiå(ù6ø’î!ÇØn¨ƒÙÂúvšjÓöˆŒ…p09yÛN.J§^¢”·Ïr±üý…¡²„úa‘]uÜ¢îû‚žKàÎï©Åµ®í Û*RˆÀ9¢^pïP^©H‰FÍëâ¥Ê&’5OæÀá¡ÎàóíÛŠqÏàŽPMŠŠrG€“àßêzbÃ«ž{ÒÔåúÊ?s0dÎ©Dé¤s‰«wŽ…ò­ÿ&‚8ŸFÙþFFd7¹!YÏè–¡êšÐìQõµ¾mí%:¡ÇÝi‚6+$VØŽTåÊÊÞUÀ«ÔkÖ®¿VÀ8Kn!œ
8‡VøŠ6€w•xsfÈÇ"O*îÕ´®´¹O÷Ð\p<—R<²U³4IGëô	}µ:š_Ù•TPçA­o4BAiÒŸ¡;n$®}âºáçu’á `²3Ù£mèàGZ@Tü?%ì¬1(íŸ¸J—ØÁŒ"Òw·¶q=³¤'çKÇ˜˜š"ðR-Šì‚Ÿ{ûÆíŒÞöçNväô³]Ý_Âï*Tþ§	ñOuJßÈšÀ;šóT9ý¸îw»¢ê`ÊÒfRÀ[2rì†QÔ¨!è/lÝ!©G†(ÍJwkL Ñ:ì@ZÜ!“»òø^ƒ‘nl®h‡ï{EXÈw¾È¨SŒÏÞ.ˆˆZ”“	ö|œ‹Ãl×M«&‰¨•;©óÛ/è­µ#6y–N‹ÀçâŽgÔŽ÷#C|Ja‘/ç‡¾4Ò¹m@ ™Í³Ajš¢pŠlTý§$j¸Ib¬¯TïØô\ÐŒßn/ËQŒa;õÎâ=¶†ÆcWð“+µh‘õâ/å¤³Ìµô‹#¼†V”S˜þØ×îoÜ‹$£Ì9spûÞæÊpZÅùþBÜ]/_×TkñÚ¼k¶ùàèCžÏ÷§UÈrX„¿ü-r‡ô‡€àÊºFNJEnCø©óˆŠµ20Áî\Mý'ü™êþÈ¬/D‘‡‡½6÷8>(¸×Y/æ¹ÍGJäÏJÄb¦l³“ÿ(Ÿ!ú&ðˆŸgô…bnqÙÑ1¯µÁƒípüñ£ðD¯ºHæÙIÔGÄ0óÑØñ§-5?t¤ö­=î5žÏSw-‚íô3ðu³ßÈNo,¼’U?Mã½ÿÆ†Ùf×úÕNª…v,dŸšo¸PÀ1ÿ(\#~°8AÑ˜Ó¬Í=yÄØàÂ*f¥ÀTp}%½dà–ãúåb¿³î¤¹ˆ ¢Ä§ú¹‘…•µ9XÅõbRrJ3ˆ¯·¢p.Cä3G³þ|@Ê	“ ïŒ]çB‘—djº]û·‡Fu*¼ƒaoXüuâÂ’!z¸á»Z<Õ±_g-ÜH°9ˆKýMéÈ¨IÆÇ/9¤uø¿	Â®n*’WÚpÖ%EÔìSÅDlàctbÜùNNWHÎ7¸üM×…*g÷–€ ©_7uœ2#ÄÄ÷h¦RÊòæDÉ´\ZøÕ½zâïáqÔáÊø; V²‡%(=-Ò5™mÛùÁP$¸*:þ¥ÇM­ûÈH!Þ-QkL¥
Ø7®5/ìœû¶L åÄüÙÚ%Ï=¶RVp¢ÅqO¶]½‹#NQ¡ÍÕKGL‰˜OA›FŒP€™Þ“O¸Å2#ÎÇÍbº·7ôÐHÅZÔ‹Óí÷EÚ_Ø+	}Í¢á%XÞ ß1ÚøRÖ6Üõ¿¾¢Î¿Ï`¤I=2Çé……ÐÖlWI5ïB|J`/—~*uùïG€'—’_oNdCÕ·ÏÁŸPÈKqQüJ–}»· 0|?¾ÙÊª¯7rÙyËœ;1éŒPv)U~¼›¯F¼%ä.éáW¢üÜÚ³Th¢3¤¦â4,ª¼Jà±855sI¯@%üK"?V­sÿÌ	­ZáC æØÑéÐa‹>É“1k¹9ª‡´KÔ5£Ç{iúàbîJgØV*§=»˜ty“_dT•j¿_öÈœ–’K£µM\XVÄî)ÍMq	_tø:^J›‰–Ø§o>£ûiw×ÍDPnsÐ§z°¦Èá–€Ûtïhéã=ãpSGÀ´®¦e{¹Ö#-^kÑ4kŒÎ:mxT§¢úÆQb±žâµ9Ÿ º¥Ý7wg¡Frä¯t†ÖCk
üiïòá†¡,þ©Ñéd‡6"õ5úá
Ã³žYd÷Ø4÷ËÃm›7nñ/:Ý€ƒ©•õÒK¦Â[l¡!íoûbîyE¢wo„žØxiG1ªÍ=	V'ööug›_šøã‡à!¸YþxÑ~/Í,'ü ŒMy øo5p¶…³ Þ¾$·Þ¾jk#sZ2ë×
>_©ùOyR Šµ$ý¸KI>±š¦eH‡¤ë¼dšÂøJ‹¾=nñS“+DÉÂÈÉž‚¸˜ÅøY]î:
–fŒ¯×¾'Dˆ,)€äJ(eŸwÆ–O6Œ6õéÖÔd4ûÞ‡­6È(Ìç{»µÜ:d{J‡
0Ô{X3CäËÅõ4\ý—œ8‰’S×OÒÐÐîÉû¡;×¥3ÈÜìz}{µËŒŒ÷ZøeK°9ó#½*"ÖØõ”h/](¬éD­5ºÝ9‰ÔKÌ¡È^ª˜³4»hò†™Aº„-“xæ”_'wqS¹fUz[z¦j
8÷÷3>¦ÂÁÐÆ¹˜s|›ë<•Éîpp,=å°â%õË¶ctÆÄ2ÙÒa×ì<-~œh”«³È¶7Ty*Âñöp°N- ÑZEu}»:Pó¨ éËÌKøbèõr^×™¦Õ$´ãŸõ¿E}B¥VÄ€Ÿ£]”CÜç;Dð	<“ÈÖ`­^	­P"‹ÔðÏç!¦Áä xæôPòÕyº‚1=ôäý¥+}9“E‰)¤|üw¸FóB§÷àGÜ™ÌäšÃŠKî­”Ê®’Ûû•™EÐHÖˆrÝ,øh«B=¾]ÃŠô%OlÐÄ¡·éJ‚t9Êƒ¾1ð¡$Ã¥™Œª°7ÄA&ÔO15ë'ˆm—Xg“Ÿ±¿	¸î–0ôä}YCI”Kõa(ã‡BòÌWÀdÉJUÀ ùã7"¿–“×ZXéxŸ[ŸÓF¢TrBÎ“%ç´ìƒ×˜BÉi¹²þPˆÄÜU©Ô˜„Ë=.µd·Öì€b]Gs’½C#¾yZãUßØoÔ¦˜a6
›u	Â°ÛPêbIºî² Îoì†n
MrZkOšÍ­i 9ùô¬àRÄ¿š_6štïQ¤‘âCÆ[==¥UÔÝŸ—ˆ0ÉŸNÔºüYúQÂ3Èwð-Gµ‡‚ˆB›ZeÌþ8OÃg½'‡uš•ÓÒ; ýºj<¾ÉÜ{¿\·\ÓpN·ÖLú·ßtðý&Z¾ÁÀ¿ÍºÂî<Nýí·ÿRÉ[Ö8Ü¦¨êÈY¤å*ƒ„+H@ÊÌæŽi;|9ÕÏÔº¶fíxILªª ô3ýÀ «?‡¿É
öoõÎólEPè3Êù*ômyæ˜äÌKctbQ	¸d‡v{bò"ØP°-xlêý1XR`Çºç8eãcÿmçŸ´O©½…¸\×©×¾™pTŠ¢ñèÖ­–{&žÉûD-G=¨ãæÎLùõ€äd¬±1ùZKåMÜ1Ö¼5£˜/()º„-{ch±ÈWŸìÑâ-í­œg<$õÓ©Þñ+râ‚x0÷jò.ŸJÓOÛé²”g%Ówðˆw³ÃËºGM¦„ Ù­QƒrYýDó_ìN¼PwÇøq	uHÕÛ¿áÝ5&%`8Ÿ9õH£À7{ÕèI9ÊMr=+º8Ê«\Šgtç ö“77ï@á³íÚ„‘Ëñ–µg pƒÓRÒÓ:Å i­öTýƒïi÷·‡ò‰Î€½Š ªÇš¾Ù^\>¯ÂØ%¾ZhA¿Ôf=•JÕ?ko«ªÀ&ª‰e;†	­êñàs[¬
rÇcà#G¨ÂÐ#F\ÑÒ²Ÿp>xŽ©|ã)îäùŒÿ‘Ä„¡ˆßå^3É©,’$qMòÜ1g¤_jló+¤©~,G<cÍ²òøpJKQõˆ"¸§f9­¡çè	‚>a€¤¯œ[¸€ï8=	B¿!3”d9×‘2Ùg_r*èýsY¯GYTƒ±=üc•is5ÓÅÓ† ›†<NŠ*ï°ï›fÛ™¹`,_|¬Ë!­S§¸p7m×}¯fÕ¶uÜBø…(„€vZNGÿ°ˆa1¢‰\4Û÷Ò—!‹ªºÅo’Šn©9!iM$Š&|ù,%áTN@¨ðÇ£EÌƒNVK
XîùËyï¾o,©÷'ùè¤!¨@RìùWDÑ
±Œ±¯:p@”=U|Š›=KØýkPâÿ,Q
¤Ž³g¸ÙŠ•KãV~Åõ°ø¯Ì'ÐGš8¬œE4¸‹xP!§²ÂÄŠˆÅ&Ý—ýÝÆªEÂõ6Í64±.¥%{©UB¥:µ­ÁÛ3:/ƒí£þbÙ'üÅýIsz\	nµWøK?ªÁ7s‘.ž&»/Êœ€.ˆ=ÑÙ$'U¨±™vóð– awfËáª¥Êeó‡®“ö‰‘‘´õòäiÐTbÿpý`ÚNxŽ4,ŒE¦«±AÌ*v…’5¹ÍO_)®¹R¥Ru-gwq/5R@ÃöCOPM9Ò ÀÏÒ1zÞäÍØ[Á€0V[‚¤S¸%þ'EZ‰§lÁÜ\F"—¿ÖðXeV­ó?wÅSå?H5³äu*»ºmêÁHraLç  Ú3k–C­
@²Åè6æÊ`ŒVí…“6ûIz´p~”Î«9ÙgrÃs&,í}1£Ý÷«$Žr¦U=MNnâ/||£¨17”ßá™r…kí;H€Ç¡qx˜…ºÿ¢Á‘²–ÇñŸF®µÌEÞ®ŠHnE1?G°ôOhVªkª‘kþ16ƒjrÇº’ÃÇ³„ûYÂê$Œ¸²éK(Àx­»š½‹áì¿œ»¯©Ó¬>ÁÜÐ°3
‰”‘Æ—šj<8|HëÛòX¤U:8Ô8!fõ©â 4^FZQ•a™UXp5I¸Èõ{‘»³ÄÎ€²["]€fÁ—õkW7të*g±ñ)²œFqt	Û!ž3r%»Ã„81£· øVÇ…y=j¢•ŒwÙžÆ÷'TuIƒó´|Û 6Sùf5‡”ëÆ¥R­¨¸‡‹2z3¶™Y­†¤÷®F
×Óm0=³ìœ¿ô¡XÎ7õª>‚ÝéW/Òšvç˜Px~!döìÏà×\ü+Ç¢Zq”Y»ÉvK»ùŽÃ hÃ)*¹vbsi‰Ï+YlWEºÄlÚ„ Lr&I3q~=™±‹Ó¢7YbŸÜ‚Gÿá6àbšÇóûÒºÑ*=ÑÚîAæâr‰Œb´Æƒ8'ÖßÄ,©?À|ƒU cNR­|ð#oKqöwïg?¯™*âÐÄ ^L¦¤N¥¢°¢GàPŒ•¥f 6ÎêDº§¤°².'…ßFëOÑ-ÂBÅÁî½(Ýt[úÍ¨ó‹{¾Ÿ2“¦ÓLN×Ö-U]lÏô	x¿ö·U0£Ü"?€ZVÈZöšÜç•Ì0–.¤N…÷¯Y—*!,*,ªÃ¢ÀIÁoF¡ó¢ì9âàþë£liŒ=v¿0(eAÉW@aÀ¢p½@6õMØŽwšì¦’æ¨‘>=+%¨T­t]…=PiÛë&ÀÖ(n¯¤ ÃhV'm2ªä*Fšày,]Š˜•¹.×FG]¦%/Ùêž"ºjS-6NmÕ¾V†Ed"Âó®Yü†þÉ,Ú€LP¶–§;:s¢ÃI¡á,óÚš¥·Ê›5iv…ÎÕ;UèIÞ‹f?hÔ9åŸv:vIa¿äÈS
®qñPU™Çjd7‚H^Áe’n0}ñ» ¢RÀkÊxR}…­®È´bÜuÌ²Ãû»ÓðJ6su¦tR‰ý®Idé~²âh<m‰W%«€–stÏEIYí,Ë8bãR2ˆA”Q`ŸˆP•Ý)8í?®o‰ï#žš·fv^–’Í‘[Ïl¼Cxìy7È9='ÚÓ¾”–,xêTp^€T+éMå^¥Ý*"²$Öù¦¥ÅµKn¸Ü¶6”«oþû{šN®3þ¨]´Ï}XTö9¨«ñ§UÕàEÒ–¬#N‚¿°v&ÄŽÝíz\2¦»»0<¶+–Ê$^±¬°?Ý{Fol)*t¨Á3¤Ï &õ'Ä? .PA´à¦nj4ö'i­¿-ë	[HQ¤¤å±¸®˜)Ãõu”AÉü‡¾ý¯é—nƒ5	’Û ’G”~5¡¿”…€1gK]U<¢ô+@=íl¶–ìÕê‹-»c.¬wDT9¤+²Lè*­ÂçÕ:¼œÿï¶€Å#i)ÐÃ:Ž1ªƒ‚®lˆ6-4s¨©øÝxfèWá¶¦cWƒ@Tww:°›‚C1DOÛ4‡y'[&ž­ ½w#	%
ñ¿|BŸ/pí`ÈZ°ÃyXAçqóÖjÍ†ZU¾Ó'öEid­æð)ë†­÷|â½õ“†ö*ÿl™«â­õã‰Ë@ä²¯@BÕ Ñü¨íüN™cp¬kN\ ŽBë8E©B7wƒ `Çg…@xÄþôºOËyÀÝŠ”ÈÎ%D0Ÿ`3–áYéèÜ¾€ýÚ¨—Mk.ê÷EBÑ¬:ÿ…@ÄºÌú-6õXÏ8žpaCÛiá”½×BÝÜÛ]›Ú?®œ þØUÝ+h)DÙ
[¿²£ÐB6/øŠ˜³L÷jÙºjß’L-¬‘4£%"þÑ8‚Îo!,Û)	HÇSânã»Cª+ªk;Œ8s.”cIq:ªY—õËãi5(%1õ~"-rºð+ì|ß˜.ÛøM»ðÒn®gÄï3Òý’”"ƒÚìJûŽŽ£§*pç}î…D8Ñ0Æ‹OFãÕâ3¤ùÃiêÈÒÚ|)3£l†ðÊÚnšãZÌã—P•hòSÖ»uz}}–tß«²O|Ù£ÁQÄÁ³¢S5Ç=t^s(™­ânàç'Y™ˆwÚ/LBÖÉŸXN]á¦ed`k&ƒ’#E{óùÝ¥Äc¼QŒFó#ec¥¾É~- Y$þ·MS‡qÄb}Nß¸¿ë rÞ)QÖ)R\)úò¸})hº`YG8€ÂH·-W;5i×1£'ðæ7‰Þd·Gêã’ Á	­Î,ù*¬l½ûÀ¹âAçG¯¬T1%Žl(ŒPJ²€ÒñÐŽíUNp’Hu²9­™Ø¥
ìl,âùÜ
i_·«øßôK’WGµ pH½€ÙyE¯ÓØüÊ¬ç—Q5ß’Œˆ[:¾ì'»¿¦°Ñ‚#¦HS—¬_›b°NHHUK•4™¾gLrû¡ì5™j¡GËe†mÉSL¯çäÂiR4¡¹“BÖ`?ã¾|~…gœò‚]Mtp—ƒ&pû–GõòÛI-×Ó¯&ñÄzp×tì3¦™…³$Bs(âžÞö¹XH$ïäD'ì\oo­ÿÁÂå"¬´KDŸÙ‡UÒnï¨~ †ù¿
=u[¥XäéûaÁY;¿ý	r‹ÓîMšaC{§FoK|ôO´NÌÆÕ}MôTDçêüñÙ ‘Ws ?ß±¹—Üëw~´ë°šc‚»Õ®ÊÂŒOü«5cNS3â!ññr^/8£þ ,Ð#a:!,E­LÛ¹šæÜÞÒÅªWÉÍ¼Â„éÆºoÑ ~ï}Kð²üÐÞÿÀ¬ÉÕ2e–Ù&Líû²-s~rÞDä¿ªØÂ0Ó)Áh=±8 Æj+xPâúöm7îÈÉ«‚–*Á¸b4üê«Ææ1—ö•À[ÙOÏ]XÊ8ï÷\º7dü
˜uŸ#vZøI6üF‚¼tŒx6x¿b	€–¬h>õ¬
ïx6 ³cQGÒúª$E™§º¾úI¨"É¼óˆî <rùE'}€õx3ûD©  ã%vÐûÝbŠ6B–Dà6¶I\œp† „€å$“¿1ŸCœ^*Ð0¤­ºìxn¤G`.Ã×½F…J;i¦zq»X±Ë£éúÂ$S+ JÑz•ááxÔØÜ7ì¼ïtJ “ë0¥T¸“švç:'1M6ÿùÇS¦tP–P#ÛXíµ©kú"°¹u#³éÞ!R¿!=9cZÛ´tŽè
Ý{¯µÁéf¿”zK}}æVJ˜4“uûÂVkÉš­ÈßýI»ÂÌ‰RÃŽCþóvzº,~¨Žªóñzª¸\¶<87Ñ3¶5ùŸ°\7:lràBŸÀ·Ê™¨(zFh0“©µWõ0—ðkq!‡F2•ný@l£_WÞæ¢ßZdµŒñ¸ËGlYñbm8WNÓÑ¢‘xUšS/È§?“„Pÿš‚êÌÑšA3}ÝªyÙtþ¸Qºÿx«MëÔS ¤óDìåŒ˜xÐv;l†]±C;ŽÂh4½dGÄp{Ó÷M–·‡¨¨t+Ùø£“4ÄâÑ#˜ð ­zC°$‘ÇíÜš¡?©ÙãKTð€+”É3ª1F*ð1^®½!—RÎx¼D~è¢R$<&"iT‹¥’úˆIˆóBrW¿AJ.`„¡ÎR-ä¡M(e}/)ÅÛšï´U9ÊHÆîþ§ìcu< ‡ÖiˆraÃxÁ@ÃëMbí¶!Ëñƒ5ý,1.¹c¶*ïffˆD)'D½V‡À÷ÀdLÃôD^*ÔMÃVSéþm7E45¾õ9Md…
Î
eõvÝoZ¿d·E
ã¥)â˜«ä„.’úT ÎV¢eOulæùæ¯2>!û)÷èbÌ1ž8Â	N:/;Î0ÖƒÀTñ8üî÷™ˆe×@,w´ˆ°Ò˜–QÐ4œ@™cÒIIÐ+Í’ÍâkYqê;|¯´P¤$˜Ø8O’vñ¨lþzˆGªLVñQqŸô–J}	›Zø¤ªíµRùë›øX¸ƒ¤`î¨ó9·õ80€9U±a=.ÿJâÅ)•9;æÍ¶¥dþRR6(¶’®e`yðªBÌ‚úoÏD]
¤»—åê65Û—ï6¾.ÎzîÉ £pc€ïˆ²ê"w!êrž6rK5É‡È?NØUí2l‹‡õ4ÃdNÛ—°YÇÍT‹GW·Ô=Ûòðm¾ˆÒù0°ôè{²ÞôMI ôrµŠôýµF˜ËÈ…äRãŽSéŠ‚êº¿Iwã“H!v4HñLp1ÝQïBŽ³º~V H¯ƒQ'yÀ@–Zwƒìb æ³ÃÉ8ƒbÞwë­¢°ñ@‰^6Qèãé«ˆœ;á¦V‘y’ž!{éñÈ•mÖU†Í’
ÈŽñšfÍpèX>³|]@6°!F1É“ñÅC˜•nma]®y q:hÁ$å:?N”ž?ó× U£œ“=ŽÊ£bgbD÷œz_ÊšñjWå@)Ò‘X‚ZÏœö.YÑðÄjÞbÑ¤ð&Ï×¥]Ã-¶&o2‚
ð"wX”2ŸáýJ—^ž±!’Èm¬r—Ï-Çä·)éïôö0ùáã?‚ÏÚvà‰/*ÒGã—*Q:Lg¥IÏÛà/]Ø¨×¥Ôe@ñ:î„_L ÆÊZÂBÎw®‘Å g†…ƒ›opò÷"Þ ¥fÌH<ev.P3º¯<Þ÷°ân]ðL,ÿá»×ˆ8é)`9Ýf”µÔú]1µJƒ¾6jÜkÆ)º´óýuÓB,ìÉ¾`ÐÃ€J)!ÈüG¢Ì¨iT—à	ömÏ°Ô(K°Å×;—'Nƒß’ž=k«u9òßde‘dŒX(yÌ´š9oÊŠ“ž:£qKÕ{0 ¹ªo)„ûa
ÊžRÆÍñ ‡t·óOzN#$I¥;•ê¯,]C~§9uXVÉ«·è¿sËhp²dA©¥š—tü¦vJSæ»§qäŒObj‘ 0„ûõI¶_
mÉÐ¾#©•SOgqL@y‰ïÜ¹
kM’ŒªsG~àÿ¸žÂGfm¾®ó×Ä^òz<H‡Éaiièÿ0)ºo®[À4åÒ½·“J/w1Ÿv“MËŠ»oÊw†˜ü£³%?IYÉHqú’hU‰Š.Õqq\|ÂýÝîR4s¨0#Ê}‰
ºÅÞÒáÈ%G^ºtl;1Izñ¨]ß¼æÁZÒî_2Ì'jªÇŠhoçÜô´+íÒZœÏ\8™ öVÞVÅ§'õú-
–Ê^¼aðÚôÎ ¢•£ó±±(mn±‘^`Ÿþ/ŒÍ<º#w+†ùkU drÍKƒžY"hfÖìãÇêißOãüœ©äþû¤Ëºä~Œé“P†©ÃÎ,Æ
1D|›³åÊýMö6Õc„Ì$’äè‡*,l§u6‚é4 [.Å§ÀBšßƒz>f4ÿ™TZX”²h¹9àù3éã´ÿ ?G²Õ@Ê¸{êõù‚Ù8^©\2uogþWŠñ©Ðìí£„pD”’ÉÊî†PƒppZÖlŽ8«™ñ½#}
âoôØJÒ=MsÌŒ8ï´®ž“g)p¡;²Ïòã+ú¸ÌFQTžÏÒ—tÜÂ;C¥k[¨ÆÄ9dÛ2!Ï¥¬{‡þŸ7Î%ÈFb¼Se&ÄÀ3LF"Ãì‡?/9Û§²ÕLIŠ'²±¬Ø*Uªl¯²!,n‹OæÃ-ü ‰tñ*eÒŽ’’w³ŸiY·\TP®¡U£ë€ŒæûÌ{–ë¥fc{Šç¹×ôUó““HÂ›w÷=±1úHÉ´—'C­c×UWË™ÒZ:¬ìÞ‰²T‘%Gˆ0öõ‹ÀŠâšnÀ·ªÃoÖB›,PÛÞb^
Ÿ•o~ü@B÷;*$°ø¾8oãÁiå#æ hRB;xØÄHÆ§wø`+ù6/ ×X yÍ`îªñ'yÈÞìO:«D8Ý®Ë•R¿Þœ‹çß–»º˜Ào+nX8ë³¹rAoíþÀõ¤¼…ö{¾;—X`†iM´m%=wÏq¸az]cH(¥ýÚš‚úÐûÁ ³Ð°éx…z˜¤Èà†­/Á37ÊM­k8ÍŸ½^±'“º§Bæs˜áå¸#Þ—Ò=—kµÅBžØƒ°™¬XUê8ô6z>’F9ˆêµC?yè*&B\ï±£²Rq8ÏèJ¡ü’ž9l–Þxmû)…B„‘uLR
&ò“š@zß“Ê‚g©2Ä¬Üî×™Æ¡hç¢9˜øçŠ;½8ù,¸‹ÐC!çN5>­m°½Áý:l•Íóy
P·ságÉ£^,’h¬½EgïqàžsêKÃâç§ÄÄVZpV€?h_°¥m‡î;p‹Ü¡§Ò¬M9ò;è5pÞ)tƒeÄ×°ÕÙqWÅR\æpph€w;ï“Šû¶‚«†Á,Rþ'çÁÙ[®>n…7Ð¥ g3Ÿf>l®ŒHWÁÿ¥	×Ê{£Ø2R¸ÃÕ©„4~Ã­Í=A¼4%zÓP&Ø9o¿]ÛŒ|Ôb^âÍúõþÄL·3)
å).ç}o×Ù¥xFåÁ×¦pÒ>üU¦¿~Øð-£ÿ¯Ì‡€-€«yˆ#_w:bI×l{dTÇË›Œ/ÄÚ!‚|ÅTó=ø[ùÆÐÈŸ9©žeümtÕ!¥:;:œãý½Ô¯YÊ1û–X ®ˆ£û‹¿1­Ù/Où&ÂeÕd@=üJšˆ(~PúÔ´Ì˜ñû6ƒ—G¼™}^Ä×±>T‡!aƒ+ÓQï@N[‰¹?’'i-°––ŸÿOvÂtz<;ZÛ{#dœÈW§y^LžRV}Æ_<T–iòÜCfÎqù¢þö®|,	v•©ãƒ¯bê‰²D»wüÉÇL»cSØUò—š¥úôÒ·Ÿý¢LJÒ×’Ìfñ*hŽ“Mqj1%ÔÁu¸¹ßŸîë†ÂÝæ½n`¶G\†39”4dŽö’n%•c/ûÅ‘}¹9Ø#"êƒÿ(>ÒèziVáWonî!+O	œ\yø.{f«2Ï½Ž“Œì²H¿ª¿Û)RLf`D«Dqá_5ü¼Ø*ïKy“v·¹&šøÑýR#w¡Œ öb`$}j_´ÁZˆ–—c¿'+c›º4dM°¿ÔÏÚ:6ÌŒÞ~o›‡oËýªìT[o0Ã!¢rN°9‚‰ýæf/{Ä”À•^ª[ß{	ÂdýuúÊ‰Ïº­b	#Æß"¦æbH7†ð1–·³ÛÝó–qj¬˜‡a¥eú¯ZÏW¹±wâ¯zB÷Ö“z£ã
Á®[ýï–‰ÀlþÜºø LÜÇÓ°Š®Ò ävôv2ŒÚ€P+øPÌEFçùúºêÉaiýçµ!q7B¤–op—\d1*ØëÑ¹ñÔ­lßŸ5žˆ[†8tÉJhîòVVyŒ¥¸8hZD°X>ÔÛ—WÆ¿@âÔyu¡¬>ØMá)¶x’+¼lâTj~Ú]dt6fúŒÄÅj5 C0ÞÜâ\´%³“…FÚi+5F»ùiøƒK¯TqûÈàðÒPHÕÆs¹FóËäjR×«6“§K*>ùÒ.AûÒ³bW¶(PœÑã›²ö<cKªÕ2Ð~nÄÃ…é	„lÃ&·ºÍèé¤!—›i{	¢­0}£W,Ìü§#D`ùXF7aUäýÎ/‡™Ñ¸ê‡9AÌ×&VÈ´á¤ÆXx@|ís‘15ßã&Ÿ“-Xg8„	üBÄ«f³R&Þz/¾jpÁß$eS;½¯
GtR‹Óþ]_€9@ô‚é÷^—EžØ‚{äÌŽ•”³6ü›VØ!E>I‹¡³ö%›a•µô¯“ZH‰Kï”‘µ_Eµ¸Kî¥tÔ4ÚqÞSVÁ§pE®çà¸QÆ\4IŒ©¼|°®žˆŸ3†S/¦àE‹Ál(¨ÐœGI]j»àâiÙyÏw"äø<YUÐ7Z‹úˆJÒ‡â`kðxM°
í©ÒjšÕšN4o	O£Oóšü’Ú_ª¥y•*:uÍp!ýr||¬ÿõÔ;‰¿n…$/Q«ó¸?_@?§|§Ç—Y +<”o[
_/á¿v3Í£Ÿøp]÷Q¾´×tPF8¿È[(ÖºŒ´&¿
Þ×ÒpÄ}Yâ~ßÔ¡ßi)F·.øé-­LÑ 5žaÕ'ø—“‘’z%eŠŽnc€Q¤‚.JbZ	›U`æ…5¼i0“ä \År¾]Ó^aßtèæ¦Ãx®8Ùä E`7¤?áþÉ	†.$7Ì5›t£ „ò?ë›…X®ÜR¬TÞ4	¢Ó›÷õlMè®04‡l†×´úP¡¢è0¨eÌS—~SƒF˜?±"á9gÎ8–C|Å'ÚOÞÑ“C{T"f/XÔå…@©0Íd_¹d+“ùb­û 0¡m™wR«C¹û[9áë-šÌ@¥XF$mú€ŒÐ„.äõÿKÉéødÔkŸã«õ®Ò"¤ çLæ@bæ •ŠùêZ˜©îÃþ|æØÏjâƒt aÍÀóFC„öN€†£Ë±.¹&×¯”R¯Œl‚‹ãG˜îûkCö"º~#­”ì$ºB(³=ù‚ÐW8µš½|`1÷;¶ò5»¤'­šgºþ~-:P´LÜÒ˜ôQYlŒne•£âGdþôð…S-g/¬:ÒJOÓy¾ƒ&iOZZù)‡dó4æF„°¾ì=sJÙAwÁ<–Jâ 7¼³P4Ï)zâ’ô,·lL_iÃŠÊÁ‰F:ÀN¢y¤”'•U‘Ùy–îí3Ÿ¤*fÔ3¢RÊŸGMVÉ_
 ðv"Èdûº½9þ²ŒˆðÞøü`ßÿB¤Ý“¬•F/Sv“±Ó…iÿ?GD‘ÀãZ3HùÊü2?’Tg¸¦½É7~=lC›qY„×m«%
%á†·"¢÷z0kr'+ÿÚ(‰=4¾QwŽQè@Ëø9êXœ8ÒçštLihÑ•ÃÕŒ‚ð®³K˜FeH­Hß„Ç~1¤«:|€@%ì’OBe!P™Àî'r¯Yb„¿/çœó©ËÞ“ÕìY´}Xù…¢RmV}Hä>zøVC$,ð>PË¿­I75±&«ƒÚ„Šæê‡+Mt¯ÇŠ†}ðÌ2Æ„¯cÀ\×òšVíƒ<æ,ðiˆèo‹ž	)AëÞà]Þ¹e«kâñÏ~º7þ Ôþ>ïÂ^×¸7¬¡-¡¡ã}$5˜±f=Í8õj€ ñ÷•ö\
Èz’™tîzÿ‰„W‰Ôù´Ïxˆ¿Îµp)^Ù¤‡Úî°_Éâ¨ï˜§ÐuT9¤dý|Æ«ërÐ«	CÁƒË–û¹Ì‘ê6Åm}ƒÚÕdÏ.=õ*çB]å í±úxüúbÍ"y?‰†üÞ¶àlfzõPàrPðw2±åÍÐSHÿStCÏ/’ þjWã&å¹M€òw’¥{çYßÍñ°ë@l{ ­yPÐàe å¢Ö ±½aé!ëº„;R;¸Üc›™4Óù¦‡ZØ˜+aï”Ðz]rg¥|§TR”zz×äÉI"À+Ä °ÄŒkUŽ)'E÷¶22âbùÒÛb9-ù-xm¬ý©öœÜM[SÉ/!glºgÛQ•ÔÁÄ7Ò¸6í–^qÚ ‰ü2í~ Ø±ÅH`_W(o…º¥j!Aa¢?DíÂ/¥‹€	Õ-Z8ú'™ÅPUÙÍ,±½\|;xGñº§Ÿ˜®…ï5,§[,iÕÇ)üƒ¤VUàAÖöÃìXûóÆÓ7Ý²3RÝ~Uã…ÚcŠ³@šÃãÂ;,²gºà|[Å2?Ä¡×ÌˆDs3˜\!3?“3O³Ó=ÀÄZuóÆç^qà#7ÂÖÏLµ›$ì ö¦ù ëÐÀœ¤.™«W\mMûû"I\žé|Â6;\€ÅÌ•Ãßç`Ž‚.óu¥ôü_Úå–ñÚœ'ñ=„–JçJâ‰tù×jÍ£/3ƒ	Ø(¬Î[ì66ìMD¢n ð‰6E¦G’eÈÑ@¬ÕX|°ÿÿ8©’äòb6´ì]UÕ;ù4©ùWçâ÷Yv‰G ÙÔU´»?“®£VýˆŸ)v0ÓûÅÎ‚L;Ô›4ãÿxˆf`ÝN(×^8aá¨œ5‘>v}÷¹. ˆJmø‘Ÿ–Ðå§;*Â¦z	bk/2~V¡¹#8ŽCÿ‡¨úË¯wÕ‡¨UšÃå.µ´¯" ¡¥wÏ%ì^dñv÷ÖWÉk>rhñø ëø}Rõ‡EÉ¢R4ÙL}jü!	âJiHñüp5!ÕÀâªóÃ‚ÅÕÔÛîÿÌ`/[}¬5Øu2:šñ(W^X¨Iïg#¸tÆtÂ8ßqú³'(¨Cq'\H2_‚	ß}üèíÂ]â$/4¿-[S–¬'yKÉÁhœ! _°coFçâáŸ–’Ç7Èz™úÈÄˆ3ìçPZ›vÙÐßì´×ª?–lÃ¡TájOú;wï¢fò²’Y|Æà­Ã)QpÓÆæ&Óc½X»Dî'Ï´úç‚-†@)šùµ´·‚=˜ÞJìÍAmä ƒ¨vì>"9º)êigqâºÎ¼µ+’øÈl±oÕaQŠÐX’WrÓþ¡ƒ]¬®ºà	m~¥A½–!èÌq³ïZ¸FÙýXp•ÿ‘«c¯ãÞ“ló9¬ž ŠÉ¬Øñ?J±'!¬ìV‘ebCðf¶’è0 (S.®‚Mâº<`ãPÃŸ‚;Ìf>Ð%qÖ	”×„G%ùÔëœ­U%â
x;¤ðô¹lÑ¿ó[Ôrbç$yBì|°¹Âö}áè¾B‚ÊL”Øy‡†ãgÒ[ÌòæSœ¿ãRü rè¡!?½Ö~,èmZZñ‡ôcÙÂ‘è¶æ~ô4¬øÙÎÁšbFúí”C3(bˆ6t«ÚT?¦­ËÙÐŒ<±S°;Å³ÔíTR%>RÙ¾áWÂW9'Êí.¦9zR¬öy>\rå &_†”<PA¥4O!žÜ´”åvvG‡$—™Üª¢›â†M\LZíìùO*^qå0ÙÅBûÃœ„„ú!W!áé¯JT£q±®‹©ƒYLf;a5Ó^Ð:b 7þ‹¡kßÂžõåôDŽõçÅ§¼uN¾M‹M³-™ôP¥Ö—4{¤NûCÈ&¼¶B°]Z~¯Ÿ¹Ã[Øòøn45óã–5 üq$~Ï°rsu?1 ~\Õƒ!×
{"þìâtbŸžQ“¶,wÊ‰6ã&e“ÿ7\kH– êwm˜4‹8„¼ô˜'ø[;[ƒ…ÖºC“¸*æÂ‘mÐÓB1¼–»Á p¯`brÚÔÏy´Z¬ˆfÿsx¦I3$‚âgÙøu‹Ìls}dðÑ¿y>¥ ][Ÿ÷srŒy«5O˜ð`ï”3êÆ|ƒkí5›ŸñzÄÑn‘ºåDçŒOºIfX/Â‰`ïýŒxwˆd‹0¸þBÐR¹ÈjG¶E§vL\m}ñ¥AÿÎ—Ÿ«ÄD®L¥ZGç?û$Ñ4~5ÚB€~mI9u·~`·k&½5èÂ–šÎ*Æªœbhòò°Ìõ„ùQ#þŸH¤@^Ã0¿±­ê«Kb`Vlºì€,îŠæÕ—ÔïÆrôY”žKY?øPŒ)c~³4Š#We¬÷»‹ãß(ëðË^Ü
«“u2Ì0[M)¼Ü¨®zÍ`[›8ø÷`’B‡)-§0Ì‡x,Q_y+%oèoÝ„ ˆô–ÉL™Û2PGjDàýÿÞ´@Î«X:æŒ¶C=ŸB¹¬]ä¥QD‡ç,“J€Æ=ÚžÁ¢‡hP-ßÑº¡:Z¿+-wÁ ´ÒÚ3‰‹r¶·+ú h¾D› ú¹ò[ê/~,ûmÔQ*|‚ÔûVá÷"Â¢…½31õ¹ÜáF«¹Ö=ÆRÕ®¨ö•ÝF"º\w9	—Ù‰¬ì™©€o½˜Z5ö>Pºv¸ÊQ?ÑO0çR¯~ë$èSâwKfúæwgû2$ÏÇ‡a6fÊž&sÝñ÷ÛXU‘GÊÐPfÔgÈeÅF¶$½:Â<Áÿ cl3ÿÈý«(n¿+Æeµ7a—ª¸H)ƒ:•ŠŠ[©¤BŽo,- ‚ž&ÔRôÝ÷¦joí!QX•}Yî±ð&-…?a€yêBXˆ;uéN÷± 9ïqfÊ½šÌÚ
t¡¤<â?…¥q«˜)ïò+] öiÍY_¿¹ØØ°	u”g:n³ÙÛìh:-³¾ü•„°™ýçŽÚ{
vµC*?­›f‹ÝVû;y>Hpƒ×óþPÆ³›E˜î:X…ˆz¹‘cè9& s”W¿C;Ã¿£ã.ì¤VQ…åÞö ªšT’_³ÇÐKG`µm”û˜ùæ ñÄR´_ŽÇ3«HÃbNaª”·ØBÀ_LyFå'—¢Ñ-Øš¤ßÈ=š8HåZ»C(xh£Érð¢ˆ4—Ü™„ÏÕèÕYÛË¡ò÷0©²¤iÐ†S&¤ådw~&›U¾Rf(wêÇ²X÷Ø¾U9—"K	ü0	áÙLUœhÑ1§¿Áž2¥Gû#[­õÈ®hzÀCÄ4Pm˜ÜQµßÆØ¢€Žó…‹è‹´õ-&¾)«¨¡Õ\².unD KñÝµá&8ÿZ­‰^>êëËfµˆ’^ÚÑÂéþfšè‹J§¦Kû5qm¶nM¬k„im­µ.ÁÙç”¤B°Çƒ¾ð„|Ûó6A„8ªÄwØÞÜ×>ÿ‡3úUmŸ!¸‚-Ôs7x‘MXS6î¶/5­?Nq©™,*ÍË¢¬c*Ù›°4&»}ôAi"-ìL¹hÚ‘èøÂ½X]Ë^YÂT§¨¸0ŽÒI” cG mÅbV?sà¡7²\¨‚†°}Naª±öîë—€Ë=çó{†èö 4zçåÃ›¼³ÆìÇõT¿”DïdJ%˜Â’ z{óoÍè<=Ë£¯†D>ç^1ÞSZ	Æ]’z’²àóÎ{gÀò`w«"Jwúr]vd¤š¸ š¾óóÓÓ€öÞ¢H-F§¾çDÐ>8eåòU«Ÿ!ËLŽì2¨lÝÑ¦Í<Îˆ‚Ø|0°ˆ¢;›´‰¿ED»Ðc±K5<B5µ®8Ä‡žH®†@^Yõ/äP;0`€tF´Î­8Ü]ÊØ‚šáx‚¼‚¶“Ó|0jÊÏ?¥ÛU[,—>Õë}"ÂŽ± DNZ£äwù®k$y¡¢Ãy¡ô@c”åG-
NÝ: 5,Î,0+6Ÿ¢Âl¦Ã)¤&0/¶×(¢Þn8¦vh)7jd"D3áK¢[©Áþ´$vcü³‘©CéÂõ¨?èG§wŒböƒäÜøÎQÉ|B|9×Ì°Û‘z?¦Ã¬¸ÿ–í‘ÛŠãQ­3(XZ€×›ÉÕ+Å½'û¨&Á.j¨5ÄD"­0˜ð»¬£%LÎ*Â¿ÜÁ³YAß=	ó5’ëèÈ¼'†Ú	UƒE(í³7F]±·æbýhc™<Ä_9áHÈ¬LðPm¼ª/X—lUTSâ”ðØe\Ô;ÉÀðØ1ãü—2ým›2•ÀÁ{NëîsðÝnCù—9ßhÉÛc¡·¶—kL’}¯ÂÊÞŒ|Ióbj/ëÀÔìD_çÍ€Í³ÇÈÝÎì+Ë Bò–ño} ÿŒÊµ{iHñìƒA£èhJù€c¡¾=€Â3yL@À6u¾í[´‹6;(“ƒ;…ô…ÚÏ*í×à¿*C×}÷P‰¯ÔE™s)N%;ÿË¹`Šµ¹­ø-îÑGÇÃhÄvCÏ.}Er•èC2‹.÷Ï#óA[_J#ãíþä®ïI“öƒR£OW™©qH¡Ý}°lMÏ^ÏÙ÷Â)á·þ³ò’BnXFh„×çatxì”#Fm¼‡¸§ý¶nˆò8¿ËP1ùnºzë#?8Ée£€„ÛPzœ5	e¡“›…øƒþJ{‰6òÆ*±€^è¡«'±ßÕÆ8<À¹?eýqéÁ8Yò~ÁŸ7.RJÎˆ6Äá£ùã«ÁjÑÑùÜ8©”#¶‡G|ÀpÏÓHÄƒqæJcôßv:L6>Ñ-	¿>ç@Ôt"Ž"Z,ô‡Í|¹N¯ŒGMJyj*ÚM1¢B·gPf;'ýÊí×N5€éùÅ|2©n™GbÅe'qr }$ê\pÎ#Žcûñ	¾¢fÉ½ˆÏD%ƒí›;œ_¨ÇsX’·XçN¿Ë»i[jåà”G¸Öž«óº€®UÕc¨õyn¤©f©)Ì_à
ºCùïk¼1.dC nÙ¥KQS 2OÌ5Û,%'`|öÐ÷—pÈÿxüEJrP^„Cíc~(¼ÛÔ©†Ó~B›/ì34ƒBÝd;B3¾É‘D^m9h2Në°ÿ^Z·€åÕ/ì®	¯h‚èFÝo\ÝNÙtíVG5hM|:€Îþie¢‰Ùš¾+§5öúØ’„g®rí[·N ƒI*«2í ,òKçž³üìú†|~ê BÛKUßÐ¿åh£QÓ³îù‘§à‡fl~=9Ñ$Âu4¢@],Ýc0JÛ/’š¸ïƒ‹\kâ Ÿ5JÓ±#`ùR?W &3p¸ð¹ .ödÕÒ;~)¯e«¥\ÇP{Ç²µÈþút2¸j˜1¡èŽ)G6§“d†^¸5‰Ej~“œË×#Ñp¾_©Åíd\5ÚÖâQ™Î;ù4õþÀZXYNºq¶Æ¯l0„M¥íEwUUèÉ9ÇY6­õÕ5Dý*¿ZXØrV—±q~#ÉÜLOñmÜ®, "MÚ“Å"+ {ø€qè˜¦dˆ†¿¾–³†ü—wŠæêÚQsƒJeÈÁ¶Ÿzm*®­Êü—×&ÁU^§«¯þØº»NþË¤çìƒ¯,û£vQÙ’Ÿáb…k5˜­÷ˆòÎvÀ<VGaË¸½!Jfõ÷ï‹¯ÙrÎ+ìÀ CŠ¡ê­%ô¹ÂÔkx'nÀlª ,|Ñ¼°|#Š—AW’òÃöq{£eSzæí½œw…†3|³£k°Ï>»øo9Ã.˜²ƒ=ÿªà6™/Vœ÷6ú—	_ï‡dm;Û¢û 3SØ·.š–@r€Â.l‘‘SÉb˜Wq™ñ-£ÿ‘äö§¼‘öÅŒ^Î î070d?`¼¨aKUûqåánÏÞ|®>Ù±WtO,Oºw=}ê–~ÂFÉ,–þeâŠ¢ Ùs,ðkP5—,UXGz÷›Žî5íšþ©‚â±¥Ž`ßÓÖ3˜+íóÂgl"	JÅuõ€E’ZÅ}}h¸éê¨êúrjÌÍ„Íò‡hª?óîå‘â¢ÂâÌTõÀþ¬×gýPM,J–zzÀ³ªOçEtŸ2?¶GHËþ$MMoó }@>Àœý¿ P-ý6Ü—êþqª 	£`ïIÁ3ø?&à.A¬„
¢LŸv	]˜ES–"Qò&BŽ³ïüX„ú©Ù,m¥zÆÍ$Ì’[®Ø›U]–.F¨ôq(bèH„WÉº!‡çžý¥aC³ËI1Y"Ú|7rÑ¤É6£[ßgµsèøëf3>jÎ7‡©R]æ5œ#+îH­öcqÑ]¹[­5ÿEC+D>Èð%vÑ ñÂ›&Håà^:ßZ‘wc÷å^Ý&Ø—ç¥ó÷ã—¼²J©5Í¾ÄJ—•|PuÂÙvH<ÄÌ©‰®§áIŠjŠ¹&€x õŽwÍ¬¹À¯'æ«ùû-Ù$UòÙŒVÌ#²}Jù9×%p'µIç®ƒ}*›¡Å| Oì’ë¶Z€‚NWèfâ¿l3ú‘=)ü]8`—fê »s(%hž"ï†V0”>hÞ¢¨‹v…/ÿ
 ÁÔ¼HW ðê²á­Œ¬Ú¬	6ŸMê’¬.ŽWÐXŽEÛl¿>®#äŸ¯ûÇ»1Ìw0Ä4î¶rÄ ÎË]µ.Š æÒHóÀ8%’©]ü¸Lèù‡š!²#ðáã¾5ü±Ï*Ÿ-ôüèsåŠä1ŒgÓù‹=$iÖï–0ÚªE^ÒqÝÚN&U[ò©½KB“pàt<Ÿ^s(L·>!·÷êƒVÇ­\·|Â*P ÛT"ÒX˜`'››±L®/w}y"N1ßØ*è9ÅÛ"v%¦‚þƒ	™·ÞƒŸÊ8é6GFiLŠ6Â+9E(&¶óÛÖ4 ÝëâÍ¤Ô±ê©ÚG]W®ð‚rnÛ†Ç^Às2•z;˜ÖwVFMB{"AÑ6ìúÜ&àóÚµemí?ÆIÌˆÏ#ˆÄE
EG‹Pšs²ýaþÔGhdzûJÅ±v5öŠy­ÝQ?yÅõ¹À…ÕË||[ñèPx–Kæ’cqÏUÑ ”ð›·Då}Zo¡~vÕPR¡n²	ï_¼­&D¸èq Ä°¿ðZÏ@³8}Šõë‰7fÐß(%æ_‚†ü
‰ájW¼ù–x×x¤W›œüù’8u­¾î2Ô{`®ë`žÄíWB1”hå¶QùÈ…388E60k\„\€¦°7ï2()O¹`ðV»†º2u‹}Œ+ù+“šAÉÉYÊmÒ8ªæ—€2ÛÃ¹ð†¯ª&¯ÇÁÚêh:ßPïbú3þÓ'8ŸÞ\7yËÁ›÷æöÜ=¬n ô®ñìi;³1¦SìÜnX–E¾C_ºÐ•¤%Ü$ °„u–—7\•X–›¶ýú’GÛQ€ÝMÎÍnJRÌÍõ!H<h6³6“êÌwÏä ˜\þž\ý+&WC¸qýK‡-ˆfpwü;)TóR*ny4ßxjÃââôòþ#ÀrmuZ>'¾%:ÖF%…¥ä«7¾)ºÓwýW”²þÇ±Æ’l0b:¹9ºŽ×Ø=‡Šõ¯^™M­WÒí?"m;m&Ã0é¿KÎ™uXXbTg!&'ÿ×¯ÏysÞä]ÄÙèïJF.( ëuù¨.¼"Ë	Gê;Ÿ‚ú¨%Âk¿À0´Ü¸Ô/ôß»QœA·U¡çƒbeØè¡BèU†˜˜‡ñ³ÿ.õ‘ÎÔPX	ª¥vß[4€`gÔ…¹D³Ú©ÚÏ¡xA×¢žÞ®OˆÞ½žüzÝÒ„S•1B7ÿ/fª)ïî«l¹\ØcÁ—
íÃ#œ·¢ŠR"plp‹XïAÉmRQÚpùg"öÝ”ÝØˆé¹]§m=þWÍpµïõú±Åæ¦­tR¼¤`N•Rn+‚§ßr#‡r.l’¡² î4×=’âš×òP	V¯3[Eæè¹¿ØûwˆIR)’AÏ•<Ó¸~“–a—a‰1ÔŠGî	ÎW´“Ô‹PÒ­˜qËU|ðm{¤×Ä½è)üÍíi‰?UÜ ¦¹‚ÑÖùâø#kÉ;cáŠG>—¹¡LqVtB›JžÌ~656VâÎRÛ²Kê.Ê¯çbOï¾6ù2Á”ª™‹ \T¿ÄÓîr¢Õ¸XizºÙ`ï’‚÷’kÁú|‚×]q.E°$ö@ŒZÚ^¡^Ù`Ì"=Ê‚ÔµVôlY~ï+¸é;â"çr}J=³›Ù°ÁLª×Ð38´š¿™Èô Emàq‰»„ö¦ô ãðxa(k™³vW]„@k”à¾
¸ˆ9ã“á£B5ü„näLQ‹¹Sâ/«ÂÖz¥<÷aQT$Z!%k‹lÌûÎ®*kJå¶÷¼Àý#ÕŽ”N—Ïk¾g‘x©ñA’à¼›”5 W¡Þf>e¡l¦w†2‰¯´ŒwuªëJ&­dU»=¸äd©‰Kº>ŽÔ¸,¦ÕÛ¹V75ó&.¿¥	s¯7C…IìôDôI;ëFë¿W@ÔðXƒ|ë…Š§òKŠRküøÙ[¡°ò}?­™Ì’Ð13
,y¥é¥l øú¸-2]üÌ5«æñ`óÃh˜tÈ÷º-2ÌQ	¾¸åC)í€’`_îÖ²üXtÙé)HpsÕÀÀ7ETöHçËQXº›jØƒL“ÀÉöfBcåòÿ×ä+ŽPZ*D"àØKûTfbôD’€§¹ªæYïÔ±1üþå§ž“IøTåq‘š	0³æuÒÀÐ´A2°'r”ß…Š‰Ä&)ˆŠ;ŸÍÈÃ'€”ù4Ã°dOé…m·BêSlýÆËwYS<{0<­!T»œð-ïtG½¡;)VL2Êž;aT…:Ô.t¬~,Ií>¶V¬¿§"2º·£yÊ-X%š;rœ‰BÀAÇ5G`àCÈ:/1â×Û*Æ=3%ú=XçsQ¼ï?*gAM>…‚ºw¹HÒUÓ^ÈÒÉ÷Tcá·Z¤ ^‡'œ{…Hý|áÄ>‡?LHˆ|`0ûV*:í¬þìâÿCw&bóÀÅ{ëÐ…Ú²8sÈ½ñ.õ†à?ÓFíh=0Ã¥¸Í)†¬›nÜîÊw¦S„“+®Êo÷ìžÒ$±T(Ä´HØ¢%ë}¶ S_uk!¹ûUÊ\ºÑÍg;J¹Ï†Ç(!_•ëQŸ€8[ä¶ê R€}Š6M¥†h¼·¡{°»=} £ÞÌÉ˜)›–ç×¶†|ú’ÔÔ&¦Èº³Xý@+>3¢H E‰¦,àç“`²LpÂô
6)&wžrœ‚O_šá¨O±pVAš—Ùç‰¿.çdB§’âWd÷ …¨ƒr½Œ¼éï4 ©UÀ¯á,îÉßèyJ’·²”¦ÍyÂSè
KË§î•ž¼NýµŒq›­l°<js¼e#Phd¥ñ¦é¸QlyŸº–Ü¨Ÿ'3¥˜7m9€…Ý±âyÑÞ*ÔâÊY²|Ayb×_
)§µíT2ëž¾Ær_¬²R>Dž°S²eKš~@bH‚xÚÖqº“ƒÿté²r]ÅÝˆ,¿Ùî=èÝÛÌñÏYNÇ+#<ŠOü!tà¿`¶¹N1X¦vu„[E(ÁÞ›Ë§ÿrJ6ðŠæsr€Á`÷Né;j¸¢t—ç>eI\ñ–ìÙ[ G£šìé¦Ó¢¡Jž!iÇšb]rÀÛÍ·ç„VPFŒ²¹IÀ¥¬"Í/¡z ôSDü¹Š,ØÜ|ï\T-v÷ØÂCWc´àÚGªÎ+Ì?¬¬”>ÜÈè1iD”–n@ÕŒùí?w4œê¡ýVÂt!ìHéÄÂfOþÌL"qæNÈ`sÒ³Ù“Ó)S Û•-—í c‰é tÍ,Xu¢;ÿÂ7¯ýf†[ÑÀøg>æF­lˆ¨I“$óùBÄÙ/$Sç„,*Äèé‰ÑêÝqöK«_üÎå®¥ŸÅ-pÑym_hOZX,Õ¸¹é×iÒ>9àÏ±;ò˜óÐøfû êâ´²L“ŠÜ_ªtxn÷˜®X) 1þ%ìÅ‚§Fd¶Tcó
ßIÔÄ-Z®GÕ¿GhÛ]2–ôç†UtùÐˆîm5V?óþ{šl*5L³2‹$p”æ‚Þ›’”„eì^ÏVß=#úƒÓüUvï¸ð"'
NŽ_è?®äÏ0z¢’è'€ñQÕº]Âµ,ºÉü´hbŠO1ùé.°{¦1Æ¹µxDöj ’6«`Keÿc(V.¯ëá™ßMm‡ÖÒ*Bó’ËšmÜëß ž*·6Åy¿Wvä×­Ç¥ÂãVMÜä(j§Â¥ŽU32Ê)¼ÅHÕðÁûÅíîš>ªÝ;‘þRí#•·`# Ø)ý‡g`:JgôAšh>e5]…ˆo<?”†¥eÐ}9ÁVÑËxö_Ð ÉR(ï¬QéµvbÑÝ¾”,"uº`k2 fhß\j¶¼ôªqcn"¼ØÈADïNX‡ÄMÑ°ÔËkÖÇZÍA[Ý;YOÈ„ùrG\n=ÑŽK/!%ƒ”Ž'fcØ}w1ýoMwìdà®¾pjL,QdÌçÌÒÍ®«>Ð¥t‰HY×ù5AMì:†”:¿xœPd¶&þ%àØ?M´5­SÕ5ðj ¤¡Âå¯–-›Ì¤Û¤{ãŠ*Ù-¯Bº%vÂ óðwp+—G Ï6ðìž™Õ‘ËZÄ@D{§›ßv£‡ê(W~oètõ³(~Ë‡ë"²Å°I&Æ·ý:Òþbú$š»Ò˜så*6¾µÜI¨ægàÍ)uÂßÖ#nS4›=K?UR)è L/Ú9Š›Ã©x¹J£ãtaií(Ú+ˆ÷™¯à§¸nÏöÈUm}éÁ7¡öû™ZÞ³4¸¢Ü/ÆaæåÿÔ.VÜ<ïÕÙ×’-u&Q“Hè–EÚUÈÅ€cAˆ?²‘Ä
Su)Ô<l£i„X
aÁV~|ãÆ_b}Bòßt¥Jr¿>ãÊÈè5ìØdòn*°øŠvâƒuzÁñÐ"ÙyÂÃï•*«Hž—a„Åe\*û¿ÆßÂ¯Ç}áh÷Ú
“Ö„N‰sý2ñÌXëk þ–d¹ªƒÙk7ìµV¬t!ü³‚æîýÆîÏsjšþØu¤~÷+úåæ<J¦%|9¬Ï+ìQ‹Ñ¤ód"×Å¹;3.½Ñ?é[àÉ±¥ÉZFÍk´¬)(i²°FzËG¹‘2°þàw`6ÑÂX—“PÚQN¿Œ˜ÌŽÜIÁì5;ÊÝoÄoMcÈ×b7_Ï,ìŸ¸KÎV´@ÈJP~Dn]9GÜÎ•8‰c»ÇhÁº…{ú-Hçl[š¢ûRDš¿ËªÄ¯-€]k"<ì³¯HËïÎ.»Ï‚µç²ògº»åÏ6‰ùF8B9Ç]º…¥ 5£-&óíˆû²k‚ Í[—M
("-½£†{>ðœÊ±µ¶PVuŸ?ÇºÐ¦º?ö_øžÆÉÄüÔç®{DPÏ¢aA­=³ã¥§±~ìÎ-ÄMB.Ÿú®	{gÖ…è»¹b¤þþÃR¯0ö”.ó²P
®Ú_üÈbšçj rÖÕä¾4ëÐd]
Ï?ôSwä“ó†¥Ü2Föjë1tAåÿ‹(„¨{Û£MŸ^&k…BI#OäN#O0,3èö}ƒÍKNò¾»çOª×:ž‹ß´_ éEçŠòô:vÀçLH­BítÞØ3DŠ†:÷o*Tœ/Ûƒ|Bj¿¬Ý~×`A
£VÂ˜{»˜GíXÅžÆè=¬Ë”Å£Ž‡æY']Ù|ùhJ_îÐÝ4xöšÄl#áG;óI—á'=X×Y†?‰ð_&fjMzÑ’"ŸÂ"’‹åkïZœónoHùý×’ä[OU½•E6¤•©åG°Æ’ûâŸ¾³¨6[K´‰‘í9füÎ™£ò~	m¾;\Í÷—÷Lmqë~2 <ÇâN—é–;ú<šéüwwðõRëƒÙ¤w‰X³¼4ª¬HÝ­åE›u+þÑpÑàÂÌÎ÷¡	bâü+[µ>†½bÊÕùð¿¨i~ì3ELv3)ëÑ‘à^ä…[Õ:*Rk"“˜÷‹ÞÒTˆfÔ¼a\Bª¡¶!VþDŒzƒuƒâIÊ\%Ù²R/Î²âŸcpÁí.
,9)>äß7+².ØL4àv¶ Mi>9Áb¯Æ\¯Xs~œšígÈ{<€Ãœq“-_àSœãnÕâ´’=A}ˆfB¸W$U Z\æ±ä;,³eD_òÉiIÆ±µk@drz‰‰f‹Sr¡£<Eâö€Ò·vüð«/siŠJ”“ŸjL.ç§‘¾Ë:“m1bIÅ™UAž;¢ÛQ¼‘óÛ#ZTeöõuG€¤· ^u:¬öV¼Æ ×8Q:ª‰â!Ñåå§Ák˜Ú-CwŽº@ÊÅcÆçvJé…iÈUÚ)ïYÍëÍZDLÌã€¹ªûÏhA"ðŒ$ò$Uå{aE(á— þØ§4¯§Ÿq™M%C9Å‘7Âš6Öàa×Š2È±Ï»;#F|³´o!TÖöj¾«»Ï_'8X•Pþ6²a`¢&”´2ÕGv’ÃçCˆIUïç‡ùÈCaÉÄµ5rµó‰ù¿Ù¼š þ5š-C“ÐM°-Àœ 1=#˜}ÃseM<TµuèóÛyfo@	 	9àÿ}hÏ9ë&È„.zíq#‹÷±T²äÕ
Y#`eâÇê ,	€ú/¯5›4e2+¬ÞÅsCw–rôAò`Q“ KôÄ±©‘eféd¼Pï2EYg¬ªÖôC·ÅSòÆC÷]®RÕU‚Ð·ã¶6âU¯t@¶¦ÎÔôô\üfæ ñoÁmYX›Âá½kØ,á
ÿã·Sj¯¨¿©ÄÅY©:ž”býå¹hü´·½-n4ïBlÔ£q0úLX§ûH£}tÏŠŠ½…L~È>ÀXûïš‘ùúÿª1Sèxu…çq& ôôŒ‰«+;õ„ @	u=ú“w)q
Hà²õufN'£f7é˜søQ –Íè»ÉKCs\?~Ã$‡æs€¯õzî¢â«ˆ+ü¥ïaá¨ôƒ,çõætÿ8ž ‰|ÿ‚AžÖ²‡%ª«@3ÈL…Ùfc¾½]ß“ÁÈžìØIR:aEÄ¶ã°×„"ø­`¼ïŠÈ|Q¹œÂ¹%î„žC.‘¶µ³°[ObÏØæ>(
Br2t·”óÌ4cBQýàÒRÕïe!óáÖ¢¥CQÖw„Ð4¹‹Z¬ãé™÷BÊÝdÓt!ë7ÚLÝõ£Õô§ÕTârö)vÉlJç“¨›rîÀ{c²ñ>ß…uf'óÚ½Hó'UâóÏV–3Ð#µÀ&]h’/<’Y »˜Ç«ŸÔVRjëá´LKŠžŸÊ–êP…¨åËu3!Ô4ÏŠ–pz‰ŠÇ§ÍY™ƒcü ÔsgAöó_»Xž!°úflxÝBËìš!¼Ô5[T ¨¨Þ«ž%V ÿÑÚÐ005'¦ß–ý› ìjú|MþaÕ6pWÃ)Em.À9PlVÁtŸÁÝv)‹„Hq–íœ¢·Ú¹ùû	h…#µÞAoåWÈf"IxnÚÓ²_Jõ•ºøNyéæÜh'noP/¦&ú<,6¢hdt—kí•ëÇ%ñ3^ï6A5‰ëåÌ@)å,­ô)[³5‘-i½ºh ŠQØ+ð€å õ@ÁeÁï®Ð²Íæ”·˜^Y5½J]ðÅ„•jcÌ·dD=ìmN3R™ÔMLýEtiCF8‹Îˆk[fùÔŽ{¹	éÁj²M¶°ìøñRGÔ“;E÷Ý,¯¯gaÇØ°_á`ÖAæHï”b æêÎ èûoå(ˆ7\þ«x¿¥û›'øµþ>©è‹r˜žeR†_Õ¶Ë‡×è”vY¤&½¾/JøƒÑ-Vri7–‡ØkêñvóZ]4û¢ÆˆrF;»ß›kWxÃK˜×å;£y­,sÏ‹"Ø-`ó Yƒ¯l¯¨áÂ€á°0Ùö°¸#"´¨RwÓ]fÃþSµnbÙ¡¸…SßK´/£­#!þ?ùàX›5JþlŽÌ»	¶;Æµ˜Ç´ü3‘ß ßav‡óó¤¾Œd^2l­õÒáE¢úÐwä²irB´Œ%âø·ËØhvº®`}6ø`©±¹F8üs"Á ’ÎT%û1TÝÇs[þº’‚¥¥p[)÷'¼(
§‰É4§ªNß›ý"ú÷kðùÚÕ¾Ü–3zi²™äeôÍp)_â„¢œôéé%¥»·ÔJ‰™ŸÞ‘+ÔP¦	 ÎÈ±ªq>…£®|oq2‹ºñjc›“Ør»s:ƒÆFgúœÚs%„•¤¬:nidÛ˜äô
´+Uì{¿ƒ0Û!ü[Þ3ôò¶†ëáùzfš{­[ö5×WùmÕ!{Š¢éÈ0¸¾B_wäx¼Pïæß¤f¶G^1â?f¿ìÄËæé¨rÆ!4DjŽ–mF¤ÈÛn…ÎŽ¢o}Œ(šMžŠÚÎs¬¼£7Ù·Âý¥„÷‚K&r¾¢?6a'Ã¦µsø·5Ý¢é)ç¼µzÚÖGvˆ_Æ³Y*Ê¿~q ¯òe‹²+â“keãu1.²Õ'º·h–”·åõŸ\Sëf»_Ù5«ý(ZÒâôÏ¿KVá’±)Å	š½Ÿ1†¼rß·¶ür0E¢·—´a8OÐÅCä¬ÃCØ68nçB¸WÛ©¿³¼NÆƒjXí‘[æ‹‚éj;¨ýœÔ}-¯ß|è<”²›~ñÔÞª¦_…qÜ<áteÌ'Ôœ
šP£‰¨#¦šJ6n±&Âý	pQi¼}!…õŒ&ïtþ¬;û´¢
èºpE›:ósn–sv‹Ë”/²EK&Ó&c#‡ÐzF—¸TÂúÒ·¾ˆÕ}d(Klé[‹êrðH>Ö¬â[.•QbQ
ßÐÒW~+ƒ$‹ö ¹L½Þ>¤ƒ¦&P’ØX{i²‹²˜^Ñ™Mr®ÒÊåÜ¾¼y}eÕšR8Ç=‡Ù_ÃCWzj
‹ýø&2:Zq Þä·x û¥ÀYé(¬L­ùGYQ|¦¢zÜÎg¦v5°N^~Tèr“u8”®­“éMN5*q@åêµ¦
i§ŽäG Á”Ï•‹žp‰<ÍÈªÓå:Šaš‘]jûêôÌÆQë^ÿê9Ž:QÈ…tö{†Ãz¹·Í²=éaÿŸh@Rofù;ÁÄº·»Ú$ôÄrµ®9£ùœà·.™»h×´Â_é4¿å÷_ÖLÄÂg6-·•6º^^?ZÃl]
ˆÑ5)Š¾ªŒ²V¹¹M­á¥‰úí†lëŒãÀþõéÉ8ž£M©jÀƒÅÚ|Ž^¶,Í»y<Ð~OÜW›Ü'ÐÅÎt~çÂ+ç?›±ûõèU°2ã °K™|<ú‡
wCyŸ€²ä ($(É'êÈ¼XôW2ŒcÅ†&”–hª ²ˆäâûë	Œ8Ä[Ö8D¿S™{sbiy‡õÈp»Ÿ/ýÈEÇéi
°›³.+[ÊüÚ]¾ÐEP\Ö(à(f£è›'ðbú~?#!{ì‡‰Á}œ_’­:¥ k/H»€Â}•†»Jõ é@˜4¾QAÆþ¤6ñ/T
Þí£+uUƒº_4¬š+.­ÐèÆ†—!vú•H”™ñ=£Grµö©Y€Æ¥Že8ß5  í¾º´ˆwº´=³¼ h³™wx}rª2Kþreª»ó÷Jz]'áÂšz°LÇ=6“¹UA`ÄN|©B„¤Þ`ë°
³ô0ó+î„]¸âß,a˜q•’©—UYkÈJOqNå¿Í<6"¸]+ÿ‡—ÃÞÎ—ÈïÉ™ÛQN÷Ò³’ÇKWÑùV}ÁjÒa„ÅM²Ÿpu¬§šÍNíF‘Î-¬ôcï>ð.Í‘ÝNÞ®™\RµÜëVWÎ‰‚?Ñp~#ÚÜ€lVw×NEgLy©Ô¸º‰í­y2þNÙ¼2XŠ?Š!ì¿ˆŸüëE÷9¿öÉY–üWUÐAX¯¬‚.°>Ñ«þC™W£hŽaÇš.f·ˆäd‘Äk±´Ü=d¬QF©‰¸™<V`q†êÍY2L{ÄÚñö0Î£YîÅ-ø"l¬UV–‰O=™c¡Ö·M~Ÿ õF¶ÿ§ÔÚu-éVŸÇÒ?Z>±g[‹û”ü%Ìfò}k+¯©ËiCAï³|¶”S“vÁ€Ý/	2¥ »Ì¶Êš1zùE´ÈK9ý=?§ÔœòÅ·Tä¥‡ó¢s©_cUR<TÀ:n‚¼$„ˆLBÉfk“oêó!Ï¸"ù0•ÝuÚ€“P±J»˜í•íµv˜;ÕûÆ Œ|/#^Ž. kÈLïbÄžWÄ0á5J›?fPxeU”Ê?9 
Û0Fz|g=û*ëxP„û0x”¼r¡«\õÐ’hqYÙÐ è¬äR0¨šW¸~%ò‘…ºŒË²s#¤aË€Uh48QÐ&×îæ’ñ«è­°,žþH|=@¢Àé¹'kginÙbL¼98ƒ*Ç¿Žh'd³¶6cB™dë“<"¦qòv7¬“ÉX&MÇi§Ö§Y*sí‡óã?ª5V”j›±‹j¦|bÒ˜sÚ¦ÄB•°ÙÓ>_„-jƒJGh3é#Y‰©Oc‹¯açÒ5Ï”ÑKužÀ½|ÿ›Ä!î‹/	s¿—Þ˜:’)Å»ä¢B“¡>åìá™Ö¨ÙÍ”tô×xÔï{œp%’(m9g,LßÚ°|WVó”/¾/±Ø6gÍi×~ýÓû|,fÞ³¶³E~ö{ŒS9Àö$SÂ¹Åh“} ûÁ(¤yK%ÛEwp¢ò¥_¶@¸/^èþ¿ënÆ!:ÙBfÄü®«u1O˜^(¢¤SÛÄ0WoŠíN*¢ªûÔ°šXSN—M¥#²Šë@’¢®0ë{ÝJqE‘DÌ0PýÌ%HjX2ÂËM¬¹Ž¯U¬b}á:AiDUA\Q™WÓ:€‚×þ^==ÄìÜÅ\!—æàNðï>³~=Éî+n'ËŒÛ¤2xê6Çt- ÂþJµ¬bBD2U)C˜jC£rýÙÈ*›áî&ešµXûÅYN–T~M–ÿ¦hŸÓÖèÜISÑãž0Xá;yùêH[¸z™8AO³4O£aM”Þöß7ì®F™NhkšOµóæ \–¿Ó§v¨äçˆ¸=a:ºDUÞ¦w#Ú}¥Å°ðX+štUØ…U½_ôÖÐ\K>¯góHU˜µÄå—–&ÍíhÏxšÂ°­r„ƒ`ÏíÎ‚ÑÆtQ&/%§>(;ñ¸ÉÁììDÔù[¡âV{lB#úï(h¿4£†xÌl­*0î¹à­Ð]qã°q\Çù3³ª|Øâñ\ßol÷9/gò¯)`CŸ–ö—ÕvÛÛ¦ål|À>‡'T²Èà?]!ƒs¡g}üä4AŽý Û³d÷*õÕ†®oTiZ*Ø”áx–þøb™’èy_‘=6PO‘±……Ð$l¥œÝÐ6D±>a¶Çàj¢ïgÙª^­%êì}kNHZzIÐMÐ§ô²
ÁÂ:9TJ²~Ùlj&£“ÉÃ"®(`î;~åD(§`Ïv­GàØÊ¬£ÞÿÄŸ¦(º¬9ß¸S1Ð–Ã<…ÁÍeÂ¬”ò‘áªÕäÚ*ØÕHÜfcÍëZ©öK¸2÷ú;r¢“ãÖÈ‚ßá0øÚìXÑR†è|ÐN5“œ+rì¯vx`y‡iõ‚>LH±ô}Fß™0¡Û'¼ÎVYfÛ_÷·<ÊkÒÛ•ËEvŽñÌ„
:ìÇ-çÁ’#$ ²È•‰ß¥’ •‰XU—3öŸ@a[ÞÍ7¢’ÕI<ñ Ÿü_-vß.Åqëè	¶þé –Ãå¹flÃõÏs'‡}ÇahÆgð  \öcúëQ §”1|JÕíž|9}¼XYmÊØyu5ìŸZ‰Zx»ƒcìù‡pNÍ’ tõ™[¸Ì°)K[ŠðŒÇ‰À€;„ #Ø7çÖ_í_¸ÿOKÆ©òdÆ•;Ü]¨¸ÅÐW™1÷ƒ¨²æÆÀ)ÜÌ ðÂZ‘å1Iß$\ Ö;Ç›C7fì¶]£XN]66ÂÏ‰®/‰öl“ÆwìïÌjû”“_(|Æ³ÿ¡ 'A‰*T4ìGU}¦æ—\/Î¿¿øCà’ÚÓ`ØÉ¬ìâddõ.¥·×µä]Õãýzþ¦L‚
‘˜ÿáëê»öRòÄÝòêPýŸôBá—ÖK-¦Z#õÆ$Í¿o¨èPdH|Ô¿tæ#Öñ ‘< >¨~˜Âî0–¶3rFæ+ŠK¥@zbkšIÛh^•Œ8³¥rŸÍl#–lLÄ§÷:ì–…rëlø¹þö5jÚ5ŒÂ#èãÃñœtKÀi£¹<9³ï3¾o­«zFÒ"¤Z»èÿtŽ¹¦Lýu†èÆî¿ÞºI¿F’ih’ÅŽFÿ…Aµ¼õU?
“&;)9)´zû ÉêÑ¼›û2*Y˜%»n/‘ð–ú3X_c_CM˜ ¶óª¯Kò§óó]9ˆtw/:"h;ü¡b¢DÛÂy'â}ýp+ÏýKÖê6z6ÔŒ…º®S:Úz:íSç óH­DÕÖñr9Ù/–×¾œ×¸m§Œ}>ðâÑÔ2%@¶øÂåÐÕsLi«8ÕMÎ:[¸!©vÁ±{³û^pW“s¯õhõ~1’îëÁØX’ý‹Hû¯3%hšù‰ØYÝ8—“ÍµtVkNwàf±½€	Ê=ÿ×ÀÍ59‡û®:\Ä>nÖŸB{÷VÀy-£ñƒ§e’Vº3 ÁŸ Md*s×÷\ÎÃÇ:¸MÞŒOH)4I#’~$+‹þmo·¯ÉÉœ¡ûNjGÐ¦…3£ÚXJGÓJ‰>ÉÕcen%¸Šfé›£”Âo\õµ‚êS¢¶¡YQöº¾ô”ÀÙàM8~†ÿBâìºúÑ@*÷3:Ð°+ØÞ~ójÎ v. UÜ•iÍìA¿Ò0Šóî7Í+'Bû­§ŠÀ<ðæü;™2aZ\xäý´‰ ¶:¸T8}S´¥ìn˜–ØÀÌ„6~Õ‡W³MA8Õßå 2D¿† á»ìãï™
¼®ý|¦ªâŠvt'CÎÄCDC:3ù³¡ŠÚÚ([‘2b.¦|iWÄyUB…bÎåA˜S•Bêº£†™Îš`ï,3Ñjª;s”MÅE}å­ò©|q¸ƒamr_”¸Nöš*ÛQÎšþí¹ø>æþðg:BU^’hýôêñÁTWb`N4x÷ÿ=ÁN?@Ø&¤ÍýÉK_¸ÍÀoãOT0?á:ÜŠMò•Ù\Jˆþ]B×ÿd3¢€ÐÝq¢Såk‚P¼ªö¾Á]ÅmÔwu’ÜˆÃA“ÈÝ­'"jAï´Úë£­ISýÆÔû¶NÛ¬PêžrJ¡žùz$‚pw±&‹O(èLóI‰"7¤RhòÃ³zFÂòCË¶w³8<&~ÝÕ ýN94—ú(Í†þHþú:š4¢ÀÌÊÔpæ#íû´6„ÞišçZ:5m–2w#Ð¯pI«K õ‡à]iƒÅIè‰ËÁO¿ê†w¾NdÊ‹c;éžÈ÷Ýž¼fB«¨
8"UÜTì#¾2š¢ÖyæÆÑ~ŠæÀp©ýKÉÎ’g¹›¶ŸHv«.î^Ÿêix JF«Ø_itiÉ†¢¤æZÉ˜7ÊÞ`L`P:†+ÄwsßŸÉûÏŽèÓ¤­¯…¿æ\Î9.Ç6D(¬ó¹†ÜªJBrXNÙñÞ%×Ã6Î8G—ô|¿F";é#hë±	[¢#(ãÚñ’H¤Ûa`C²ë†É„#CIä×ÏX}ûó+ÞÌ%•ÔÐDTl•¥ôqKë=Ç_ÓÃqJ"ÒP«*‚¬&	#*÷¬”àÏBK-³â2O'ä‹×ôLt{ìœ9ÖáŠÐÉi´= 4}–CÆezzøs¿º’u5Ç¬ªQ¼^îB¬5gÛr2HÒ8ä‚«ùI…¥¯Oˆ*VýãB,+Å„6ÉEþá}w:/Z—Hªa4.H.6=òºcU7¡	ŸéCV©$;†½+Zý;^ÞY†b9?èÁ¤.!#œ¥ë #õ@Òýóû bý–bgRD¶TÆeëT™ÛKk9bàÁ±ÚaOlÔö¾Ñ´+‚®#µÖ.2Ðžk‚Ð©©–|ÿ½mã´­Y£dò&'c™–+¯"KeÒ”1Èú‘T†_ÐdÒÄ¡‘°!81åóÿÃ‰½ÜûNãüµªŒCQU‡ÄÀüÒ»TóxÒxœ}‚-‚Ð£<ô¯]\ùq²§YVBçŸ&d®Ÿ¯Ïdj$¯jUE mS¦šÓönãAó‚`×êJ5À4õ”¬›çc«K^•N›šïþH¼Ë…pgÿ!	$N×"O·}Ê¡‚´Üé9gpÎ$í}}3òöS=@$¢#þ'„(ùT~‹4H^Ãço%)>H²Ëö®0€·CäsÌc|Ã;™ÕQç$ïbNÿ`sàû>!‘ÏIÛÛ:›€¹•¯9­V0õññ\7TÇþ4õ¢ÐF>Z7dN˜pxâcg|”[.R‹/ù&ÞÝ+Úž•·MÅQ¹uV‹ña†c¤X'ÎÿÏª`‹ ‹ŒTÕ†{Ü‡.$ Ý%¤ô(P G„!ië3!‰g™¹²ªŠqe
æÈà=Ç#¡Ë`–) l7ÄE7YÁÕ’é¹×©Îô ªaðé¤§Ç$*”Ê˜|êÂí†¿yåj 6PQcƒýïX.9‘Þ”\§OOÉs¯ÄR4ÅB¼\€=kž]FôÚ¨¿ªn&¬ÉÀ—/jXbÈÃ)—|)Ã%™£Ë_.dPõ·…âŒÑÖtuÖ¹UIû*¤Äe!™›F.Ó;_”ÊÌ©ý²¥rc
Þp£ë¦†CWG1s>ºg0A´h÷DXL'î…æå¬i3ç•@·ð
W'@(¢Ž¬FÛØÊ7Ê)S·XH“Í4*³0ée³
nxâYy:O¬ä¨]¸•}òa]êøçËÆÇ"Rfo?Ë_ŽPï'Þ	k€D.¤ŸFðHszY200?™V'¨é»?Îùþ$ `Íò/¥é@ù÷ºtÕ#÷VZœ6%Xà„¿Í•yNµéGƒßR¼¤Y<pÙämÒA¤_¯ÔŸƒH!è+guMŒÔÐÖì#Ibm+Ê•ŠBÚ€¦:ù¾YCûËcó5ùs ªC÷šRqì~€¶)ƒüaY–¬hÖbÙÝÐ‰‚5hÈà-Ü¨SŠÌŒÂâ‘h	‚¢&Yå†÷Gð5‰ið&¢Ù0a†{¶å¶ùEÑ^ƒ‘sëú
ò’gü±ÐJâ$>ÉÂŸU 4Ñíí»¹ëQ7—êdÂÙ*`Ý‰ÉE´ƒm¶+ÔãÚ?­t¹'ƒíô7â¶ªÎ•À"´çÈù¶|k>' ÞÀ~/9ºúF<3*Ó€Õ·Éz£Ó¸Ñ	ýé557½åZ,‹·Šp<’«"Î2ta”ÆÂÇ’ "H¹y»U+)ŠÁÜtâ%dáŒØ…‘¼à!uÍÅqÚgŸÊå"ˆcKiôæweÐ³æ¦„»é‰Cf’Þqqèj*®×·ñG½à_Á³áPè³{¢]‡à,ß #Y˜ø—cFD€|½¦Lü••jyÙwBæ»­Žë¡`'?ž#ÐÏ£lîLÓ‘NÃõQ©Æ`4×=ºÏ1Ç+Wû	Î/£˜¾þmò‘§NÝ¹¡€Ìy Àþ·3ý0~·üõiûk7§'/];ãwmzsômÜÜ&`Xž`ñÈx&xµðUwÞ¨'ÑŒaÓ`wí U¼ÑŠ™}°wçÖàonö
+ }WPç4+nD&è…î7ñØ,¨¡p;Ieèqœ9k­xåZëX¶äÃ¥t'_«ì‡ Û2®B¼ÆÂBÁÕ&^syneE`.e[®·¨µQ›{³\rX™”›…Q9ÜLàåå[éŸÆèÿ˜A~ñp•½ÚÍðê’¸Á®IUxÁð7æØ°«5ãX˜\9žÅþ5ÝeýªíM[ÎàJhëü‘)ÉAòÏØ6€Ç¸HCEWI3yá÷·Ä·/	keº”ON3¥*kiœ±b†*ì(KÇr†væŠ×eÔÊ<üyUîòÞ’p÷ìRrb›ÈÊS,ú<ò©ÏGÜ.ª]íH­xxGÇ¥È\N^yÚ'T/Àk–,ýˆ—rcøQÊÿeÅ»A
-á n´S98Ÿ¯ñ°{©ü'‰gNOŽlÂã8ô‚-Hš#Å[êv¨´n²¹¡ºÜèœ¡ˆ³äFHZüdè‡;ç#Y¼ýúavIÊuî]KQ¤c££nÿ~ÝÉdnò+ZaŽ|G
+ ÊÉd¸8ìX¯½sPŠòd”!/Ýäýþ£OdõÌµ¼§¼ò=¬(Qãµ`æG½Óâ		„ÚÏQÞø-¦Ê:oàeaÈÏêŽHû=£)¾Í²qÒÊ~¾Ä•@Z	‚\µÁVó·qÂõScRÇüéƒJw–úéûJUæ6K<c(¦}X"ð›HÁÂo¯ÊõÿSõÈáHAD*>¸j3<bW·Ç³Ñen³$‚“KÓ½z­À~#åÃðéÊ”8Þ4–š¹ØX!¯UM9qA!ié=Kž/_¢B›áL`mñ:òo°ù†‰"»7Eq[£‹×²:|)³Œ»¨µxz‘óbvé&œmò(œØ`-ƒ,ê¹[š0*0Ét¢-=…ØbA$NÖ¯_ô6·ìƒ.4&ÖÆs×<¶Â„ŠÓÂyc¸0@>÷LMsôtŽ'ùã¾ßóK5LÔôã‘›x™G#¯(qE>4Þ^y‡Ëa¼l
ªûØŒþBø~
¬ê
Ë$àìj&}NÝŸGúñ¼ß2âró~Mê(‰ów7dY™¨¨=M„µà×nòÃ¤ëSV- ½ošé­A+:hhk&Måg§ü‡ŒÇWá²Ô›ýY1GÚÕŸÌ5p´ã£©Ä>S"gè)VûQfí„­0gÃœjõð\,À±{…¶gñ–\¯Ž>ÙB¬^Õƒ/?ÒžÙØ¥!É-‹ÊÐéš˜§..ëàHÅ§.C5·¾~ƒ_—ÐºOt9PPhÉ€Î÷vF¦x×«OèBç$’Zÿµãél±“ßü®˜¦HR¢®B†fDtcêÒcœ˜DüŠú‚€6æš‡lé9zP?ðw[üÇî¹“kæ(|!Jôíl‹”
éLt­jWûBÝ@òÊÞa¨‰ŽF°±¢õ©¥œ©My*×ëY°CM7ÑQ?¿=Ðˆ±ºÀÅÎ ð¿º^Ac$´ÃõLÃ­ñ©ùÙ³góTÓ¹¬  gIÂ'qw•È®Ö¢ ¥Jú1qN¬
rê`uƒ¬Â‰yúývr)Ï·0Þî«cÚ=¥Q—ƒƒè×ŠŒ˜k¶x¯?Ò¥¤™7¾t£ü†{±ŸP¡oÛÈLxeÔÜ«Dƒ6ü 1ö¡Ou:«_}¬k§'±P£Ã`~4fÆlÈ¶Æ§Ïíê»³›5‹/tß-Ø¾x»Ãw4Ì%i"½Ëò â˜põ¢“²ú:¨d¬˜‘k¿Ø@X%ÅŠDÈî)ÿ}°U¼¥>ï‘Â†” ô‘k¼
cÖ£ç³wÍè@:.‡u´iÖp_Ð¤H»á,€ñ#ä¹nœy’ÌUéJÒÄ}‡ÚÏä“u4ò
s™EÕnÆX!.¹kZktÁ¥N`âƒó³ýÍçv{-mñÒ3ÈíVSÂBì0MZt“î|U»|ôgaxçR‡n=’7<éí ø?wb±þnä7ÍGIcYnjE%˜åÒò~Ÿ˜ñïÑSQêåKÞé~|€ãnhOcÁÿo|‡AEgÁQq’CG’à@ä;ËUÂaÄp Y™´<ãñ½¸Õ(ÈVP® UõÞð’­¾
}þuM2§-C®ÚÍÃEö°¥Î02’˜øgØ@µØë"ö~h§íb)W¶ô7™<½ªè}0_`¤bQ^Æï0?:‡OÝ"@VåÑÂoÞÐë­7à$Í·†šW	Ù;¨ ¥Sb¤„±¿i€eiÜ¬Glf{ÜÎk3…+&2÷è’–*8wS±˜SjmLÕ«,¶…—V„eÅb5ÿY•€{‹ZÍ]¯Å4ñè´[ÔÕ^†bo=—àn“+ò}…TSÒú…	åÆESÌÖÉ>¦I­ãR¸6ù ³ÆÕ€çÒ×Î,äG5|IxäŸ¡ÍJ—™':Åè„XÌº¨ÓùaÁ2²Cè÷fÁËOe$CÒù«7¾‹gSƒ†ü¨!õíuI3ßiy¬E‰›K¹<øF>-oOJ|”"û©xÂ;×‰ZÏGX-‡§z•rm¸«×yR™0]
vQá±Ù.½	~ÕáãÚ6…áwßŠ(øEA À’Gùý¤«¹±a.¿2Ø©fçöA9Ö1[¾»cf™ºOd•¸ùeK/©(K¨/ä¿ÿ&È¦|€d¶M‡T~ÞY(¦NEtSïºm+å,Hh#ëÄÝg!.@ÏîÇµÉ¹‡º‚"¨)+çæ‰¶Z-P•Ç†Y=>Í"Êlÿ2,ioE$ÃšÓûDß=3jCÛV*ÜLfBI¤"$¤F22Ð<p9&¦º²l¨¶72ÒÄÒ€^y£'ãw´‘÷9¬×Å‚ÏNëüÒöÚH5è¾©Eq"këe cÿ“kÃ™¨h«+£ï5ê­Ú°Eº‹µDržó:y}…ãž`÷ê7‚b³z‘¯WèÓYökÞAC–|rý0µýD™nÓÇB¹:wG^2÷hëZ‰Ëm8k®Áåƒ>	~û•TÎ• Èy)?ÅëeË`ìøß†•ÉY«`;s[·§Ý>]˜Z¶¿ù)sÉ!×ˆeµ/…9Œ,+Wö)ì³F6¤òE–…ö”zÓ´†Ó
{.â™ƒ0—pÖý?„{´le*qÄú…w	JG”b’=ÚÜšbâŒ÷O‚IÒˆÛ15Â!£!ü>÷R.aºXÙÅ•ßL|iÍ
‹¸ºë”š
wød-Ó²à¨}î©ãJIH&–uVv>«Ïœ6Q·§A0˜$úSž$	µˆw4U¶Ùo«Ñ­ÃÙ\<bÙOÝ§‚ˆ‡ÞF,ÓÁ”) #ˆuXe`µ›}¦§±ÙãZ6›t¸€Qžq`Ãì¸Níë–øê“µ¢S™»’oÍŠm+;ä³¾O§Î-ùénÉÖx§ú·ôi¦fPvnœ(óe Vº}«›uE³8‚-#H•/µø5gZÄ	éûmI;¶Ã¿—úø@÷
ßÛºî©É­œ’$“[ëÄÐ'm*ÐßíaìÉS7/Îãè'¼_ wÁ¡Kþ/¬üÃ”©ÁìàÃëÖ²GÖ› *ã+¥ =Ðhí/ª *” Ën$rq¤4ÜMê*òSÛÛ‚y(_$°þ{M"£÷kÖaÉ½·¯Zº žZhÃïM-‹ž^kýa€ŠwÐ1cjõi’?ù‰tOPâ­5VÏsw.lÜ8Ò7¡Â¦6nR_#"[ü+NÂ‰Ç­Þ¼nºü|s·Y·sæ†$ÃÂKwër
(SåN[æÉ›\~×Ý‡÷Ð©t¤Â‹8µ¯®¢-C™¨ÝÞÑÚÙ1dp«t³S)`Íž>fÓÂü)ëÒô¾û´¢¼Ç3?ƒÎdÉÝV•¡Lß.äÎ%D6§Ç^‡úÔsJþ÷¡â8… ¡=b;_FÛ»t¥*¾]´»åW%Ò!Áù¸×WªE½~‘ºØYw¾é‚²èuNh»B}ÞƒôSc’Þ@²d3RÉ/ðï®!Jˆ{,û“†ç}sÿ,ü»ò\DJa?L
ät^òyë2!<pÁ¿)³r·tÄJf„â~šIƒ:ÒÜ:ê{îkjž¬Èü—é(ù€Æ3èqÓ¶R†&ò5øÒ<Æw’ÄßâŽ›»Î/¾ïû;@=ƒü:uþ†!â6]ÄEús×DÒŽl¶”f7QZ%×3 Ç¹s$ áãšç²¿y|eÌa®Úy1Ú¸Ã¡ºS/ö‰¹óu…J)m$®°nŽ§Ä[ªÕôºÒoR_ÚÒ2a«e?Õò—‰°(Ôâs—+ÀgâuÃ8¤ŒKÅÝýñáxþ˜ã½)/˜y=3é4ÑÉàÇo».€Å]†L@&ßp•I¤ž×äæÁF‚²›ø1‚Œ q$7†¢ªƒ|ÀX0å3Zü«Ãœö$§åÕj,lüæÑ¿Ru	È¨î§±K††UÕ5Üâ+Z;½æ–éŽ¾»ëÙZò{¶è1?À´ÞÝç§áp¢HÑ")b^ÓÖ!(Ò†Ç
-pýÊàäà¶§Ge#•“(Gù•çt²¦DïçªHßPåÅFÛÉ…!¯1-KCÆ-‚fG;* .œUg¹1ãk6è{{âØ&½-è“²|òŸ«ïŸðï$°ˆ;Žoõ;£2cM_O°?nA»BØ„p,•RR(í'fnýP·BØù@MäÚ}{ùP²´)ú­ö#F„Î¿²YÓ9>FÔ{’6úšìEAã¶ØÊ½áì3y/K€¬óÂÂ	C¹Âam¯­Íà³‡ð¯ŠSè™¹õ/º6aã9‚dhÉÎï‰¼D7ùŸjÁajtØö8–’€0MùÂ¶³ÉËÒÞ…‚ÌÍ}ñ,óOÈJþNqÎM5
sT=<ÒžJ‡Ž¤w„[žZêÖâÊ—	‚ºÌ’¥l(ªñc(k$B5Ý‚S;¢9zXTd«âoM’ã^Dö&ßŽ™u_à=P’fÔÖŽ‘@ŠÖ19žƒœ&ÂÇžð(}z}òíÓ?C'pZ~YE§ú1âÉ¿µÅ&V‰î"ô|ÿþCñ¥Hh.'Š:±x—>ªîtÜÄŽ‹—hßîGÿëZCÆ°øhê ‡m¢Û•…·Rrñ‘Þ‹Ñ9#'õ»‰§`*Œju	ÿ^k^˜”ò¨F1QPŒµÅä^Ã;,tì¼¶fõÓ™p¢?D‹‰6Ús=Å›2ö ™.Á Å/ÚY’Ë-]K¸]ÐÐ W©u+UT_g<÷LMAS÷µ¥ÍàŽ Ò™ —:DnuÄ0$ÉJwéô°\§Û&(Z)•H‰f©”éÈBOR³S!Ä—PK*d"÷W	¾]*,:ßöjuá~H
J2™Ÿ'	oÕ½Öó·…éåÏ	ÔLsÇÈOµ~ôÒ”Øë»Í¯ -^'›4K*‘Ï:ø-sÉÞÔö~ör›–Þv\¸Q90=±0eÎê´j„”±kUà#ùÝt† óT#?£2ŸL=H&dóKøàó1Ú*µé_eÊ¬¼ûm~âàß~ŸÁÍŒÒãšóÚªÚ–úP_˜“ÒÎHÅ^Ç˜;¶ô»w;Ú‹‹Äš-)£‚œ«$z*'»U`íb€PŒÆmuì¢—E3í,²)G¢+¥õâÈîË­U ñîhã`ä7ø¸¬<V*Òø`©ÄµsÔ‹é“jdÏ{V!p&jÖ‚f'?›ƒEÎ‹SÁ˜”«~7Äcèÿ\ÐðZ‚äù=|Ç9šo"‡;rfdŠujÜc;0+cd@Ñß<ŸIGi=Á
ŸC³2ÀÑÊ1]ãOU²"ÙOÙ&ÒÇ*ÓcB˜Äj„üVúég·w’‚4Ì„)Çˆ4ALgìS²ÆE®aÃ¨– Ãð»ÚæÁê3»`É0÷ô2{ø_ëÀÍª.)-¢„Ê·b¿\­á|äQ%n@•XF[ÏÂâ(èøÿcõ.Œ9¸Anñ~7(¾‰"}pn©¯Ýÿ„ùšaú_1Ã|¢ÖÅá=QG­½uËMp?O3WâŒ\>À	#ˆÅOº*ÜyëPX§~æù"³·Î"A êE² ò³Y2u„—®ÏÀJkFßR§S?”—–3GbOö
ÉÍõóÒ1æGD+…ƒW†ØÚºÍ9ï¯Øçt)”PÂ¶ÃJß&“*/BŒaª{”]ŽaC÷¾a’ÂÞw)Õ(<LCùºhoÀ'Õ¥LBÅ·ËÎ>Ÿ0“°“º–7<=¹ yÄ™B&:îêi&üS(Ò,ëtŸŠÒmBP8ð‹‰=¨¾Üœkµ‹É3ruAûj3è'pûœ;S[“£Ž —†ìÌÅu(4(Jõ%¸[$ž,Ñbqù Ü	£ýì³!’º
ˆÖ?fp~úÑš;ù¹lqlŽ®âmÙÍ"i„ Üø†ìÿ–3˜¾‘zS«`Žk!ðÌ:i{åžù{¢ÜOèã›Ä4pÎÿÚnRìXà\EÑ‹–jbë—®àÅ\½}¾ŽA~¯ëRVÂ-œ‹ÀøÕr©ýÈâ¸ZYìåS¿ÐÄ†@sµ9æÉT¸0©Øê]îä›Ff-	×ÚOì†–Úü"ib†èRò;vŒýò+Ï‹¨!/uÝ”«+¹Ýí»>¦€§ã0¹ÈùÆo¸K—îÉ†ÿ¡î¯%B¢LYE‹áqíy09GÞáÉvpÅ\©žU?\ÒPq8Ü>_¿…ç˜R·JºÛ}=øãðš—øéÑ´‚v#‘\òŠä³,õ-:…2ÅÏ´{dW-l	Ò.Å‚íÛ¡óì#¤›ôÝÐFþ¦¼©&jÄ§¿B´`µ§†yínÂŒBh&"%~íUøi(áÅoò ˜ûL‰š„Â¹Nìt>Î<ýìW“Ù(×ÔN%ŠÝB<=ŠBYœ,^õùm‡’žG•‡ß›ä2ƒkíªTÁÖ¦XŸÂÕL“XŸ¸D…S]¹¬k×ÏÞ5‚ôFÀèÇSj$ØLWÔð¦BK&t!Iäu‹”ÿ1þß-„Ã ¥é§‚o—^~
Â—“i×m•«•qôŸºþ0ÉxÃ($«§a’ÍŸº5ò¤ˆî2qÞÏË¬Y+UN2’aPh8ð7y¡íT=Ý|ñz¶0è[…![¯ÙÌrûi·.Cpy=0ˆßb1K£ì˜Æõ’ÿ«ËçL3Av¬„ÿ‡2bdRí…¢î?}@”ÖH–ã÷‡q¸Äõ¢b°ûðˆP+µ9Ð‰¼Šl%LQJxûáú‹¬ŒËC›õK©U ìx,µ„s“ï'š¹ËBŠ$qø]¿p›þýŸaàÆ¼^
é\–Uv–àWye>iæÆGÖ)Ö
Rä|sãd·“Aý²C`ÂŸ€ºÆÊžÌù4ºè9½3“§QÉ´RÒ§Z£§£Aæâ©bÔ$D#«)4«78E#žU?kM0¯5ßŽ´YVùKrV‘‹ûÔPÄÆúR3ïhó5d e´à©âôæNùlEït5ô!k0\„c`“E¤4‚v«Êþ»”ó‹vãÏÉoe¯d¢×«Õiäú¹ÑaÆÎa… ¸i2¡F©ÄúÏrñ 4CDHÖgî·Ë¦‡`mY¦ušùÁ:‡,¹í5]¿.y2Ü("*‚² fµhc{ˆÜ‹­ctûbÚèdèƒÙŠÅµ1’êÛzdáîæf]”†[iÉÿ“Ï3R³é„‰ÔËþ°z4ÎµêýÝ:=¼Rô9‘Àö	IÔ»Ñö,t)[vyo»{Þ*ð~±(šìÎ×¶}x³.¬h)RµMš˜¢Öa‚š~*Ê@˜àºÞÕDk›ýëPÎÝ´£y!W¯µ:lŽZKAo–…Ÿº h¹.·ø†\abFOkìQç´ßƒv"_p^¸ ¡$	îh©¢Ó —ÿ–å£*ª-$ÄöÜNã.ÎÞßúÎïIà’¿	(ñcC„y–³&ï•É(}flR2 qÛt–ëÀ~*žŽ­cxÇ& Œt	tùŸ9S^ÔRn“ m´š'xÈJ·IÆ.³–÷ÏßÚ4O»äµ•ZÆmB¥T&7p—úYú§†£ÅƒÐÐô]~]½‰dx÷Íé¨'	Ð;##¨¢o¨4-‰`mô˜@4j	E[7†}‹ûó—‰sº÷AGÄM7,<Ï½,VÕ¹´7\/#‘	<24öà:”ë¡•L‚dö5NoSµÝÈ¬wsŒz×Ü†zàÖ«ªÈ%€½Ÿ¼éœvnÉ¨
º‚8°â¶)ya—0G¾Å/j2z•½eŽ acøYjuˆi=’«þäKÙú.Iê^ÆsuÄŒ–!t„¯<k¯§:Û¾Ãœ”9ïrÚÜ€'ïÚgº¨}Z)mÈÔ.'`·›F´>yx´‰»]»>i)ú6cYÊHEˆß-öÕü¡0ñw>ªtÇÄü‰oÅúÕìè¡Kýãva´ÿÖ«ïŽ3¡©ùûÝý5˜¥°Äãžßì‡¢ŽÅ6ËÖtñµÌP$ûÆTõ`bÿLC‰Rí4„†Ëµ4y®îveDö°}/xº•ÏU_;õ6¢/Ò¹@¥@ÚÆ}Úv×ü£1ðÎÈÕI·õ;ÓÃÎ£ŽæL¹?f2ó(Cög´ô	žZ}H¨’û¡´©Þ¤ï§:{Pr†£fl±àwˆl	Ê0´9ÎÑk”Çy z)L ;`ÄãÁ‘3Êaÿlõ…ŽnÿQ³~=ËaVé!GŽåVþõÇÒUn²ƒçˆdV%øšq)ël^Y«ªyJëP?²¢ïgE!òÅ~=
G$	¶Œ¤Ø.ÙŠmàgcv…ŸY@_/+¶0¹Ä¨Éú‹C[ ÖA²å©z+ƒ^¢j	óÛÔJG2™Gé9{²S¾HØ8._qn2wÙoY/öœ^Ë
*óüÊEp}á´†b	µÜlïª×5!äèÃÔ))(’¥p"âä»eÁÆP7åçF)ÆrØ±=ÌÙš.µ0ï’þ—]Uý‚£}Um	¤³-–¶(|þÏ­«Bl×A²ñüU9©âR!f,ZÁT”ŠÐ€ç†ÜŠì5X!Ÿ*9~-†lßšÈj¦ÏFûžlH=n|€}©Í†³Ó½h9F5ÿŠr©[„õ·yÄÞnUêh".ÇýÐ=à„åºs·Õ÷‹@_ÐoìÞO…`[ªüš´;B[y¨£PšS˜x”àB®„šóRq@ÑPwÙ±mê[Ë]©ÏûgUÔŸXUöDìß9ž¸¦Ž÷ÛjõùvC`¡mï·d*ºPBýŒ>Qÿd×SŽINír1­nzUÀ^ìÂ>ûâ¦‹
•Òý·¸In¡jˆÁ{Y=ur–ñ½6ÝO|Æß&ô‘E!_¦»Âl’J¯vlbqåÞíœNWÓiî¯œl3a³¸§;fÜÊÄ±ïD±Q‹l½±dYÚ%Œ[S?ƒÀMyç›(W€ž’ãÇ¿Î3jý&_$B"àŸv¤è>d©˜p³žbVU2©¾ÖbÜx¼Ä˜d!.¤\Ö¡ï¦	¼ÉÝ1óå8Ó€r‰¯KÌßCÉÀM¹m³×€üÏWw´oÔ#h‹'ìÁEgœ¦n›¦erÉZ)ás¹ÝŸx¨›L;ôÞFš·¸Ôâ§Î±Qà$ÅSÌÄŒu¤vj~^ù¯uˆ';Ð–‰<Ž†\(Ëe‘3ôÿÙ	Uu¦·“a@—;q9j˜\ÑÆ$PÿeNÅcXYê<žªŠEr©9Aà_BÀ¬pBIjó½…uw)Y¬¨}ˆOëH†ì*¾R¡¼~KÔTÆlåÝgç„?V]ú5¹sbcmÕ÷NN¹nÃþ07Ã¹­êÈ_V6ß=(ànž—:­y£]?´czÐ{ýg+gç:ý&×úïc5ëiÚÏxÖy¹gV8ÔÐ‡ÕûË­4Å£\ˆîŽæÎÞ:Ùä˜:Ha]‡±|Øþéz¹åsrãesË{­«nu8æÌÇô‚ª§f4Cé«ÔŠÿ@ÓˆßVöyé-J_ï¹WYŸú/a¬ôŽðÃHI.ô«ñ³BÎµ'Wy?éóÿŸÌÌö:'@UÜVçTS6]?³TûŽ%fúïÄ Ÿˆ% ó?­_”3©¥
jIå}Ô·£³p¨=™¡îMeº…S°¤öNûj [=¨:·-šÎÿ	1AèiDTëBóz_Óp]ËRTÌì.‰ß>¶ü@ek•Üÿ\½Ëw•,€†ln„³k7Ú<D%š<Pñ>6îr|'ðÜ
7óÙ±ÑbgÒó„ÉÝ 
¥Á
÷o9ZØEu÷`mEVÎT;úd3Ÿá˜‡¶ßAW_hf°Ø7ˆú>ÎÐ—ÕOÃ”@Óƒåßv|
×8—-n	=¯ÿJi¨uÑÀÊþÿ^Ì?Ê‡˜èÚ-Â•YÂ™(þŒp+1jFí/»Ó¼”ËØIKWÛÔ€âÅ ö=Â×$QÑã|eîW´}ÕíZ.¥vMZŽ‘eÐ5 V+©Å¢²×!„ÓbySNó–Áf“ÔŒb$bŸû]£ ¬ÿO’’'·W»¹ G"½â
]£dž¥%¢ájt÷IÄörÔN;%Žî¡™ç)13gã?ÂÐ' ÙtÛ{Éìü‚Ýõq
orÂap©HËÙÁÎ<Œ+kÆæX¼›(ô*µ"þ±«ß<Þª/aOðÚ3 m H	Nß”À¤Kp(¬Ïæ6I íYú2o¯³Ásß4mëÌd·ÃÓ
)‹qƒ¢÷xª²÷¨ §ì!MœºàÔ/ëwáS~½þ¸ z§¨%:
;éò
ßyå¿"Šé‘5«9ÕÕù¼÷0Î§ªhâ†6[ÐutõéA\ÔPÇŽƒã8ÄLS‰‘Çêxù°ìŠ®mOÒ‚Õ,:ï‰Ùâ(&¶¢@Ôü³ÿò&bšN59•‹ß§Šý0…@?Ëëý,$RE~ ¿£Åîa€'„Çb.Ù.¤–V5`â–y‘pwÀ›€&œf{Jp¹4pÚf,©LLiªŽ¯º¾À
÷‡xÙ|Û…lûG(Æ–udë!X!xþóB6fõ£+Ø«é?ÇÃÞÀ˜ñØúK/Uìh}	òwýâ9LÔ'$†âü£/µ=òá`£¬9‹±ÒLMs43E7ÉÚK¿üÏU€}®¥Ð•B@‚ÃNñZ!0ðŸÖáPà
@ ±­ÑÈDq¥ëüðÌ[U©¦6v‰T9†	¸³‘¬ž°âÃ>ÐŒ3ÄS+}@†äLevÖ¿åJv÷ð¤V™£ ¶w7ýßvÁÎEß.³ÇÏ	'Š\—ù´yóÚ²_}‰+¹Ó»ŒjÝ~¢< yùíöíž7ÿsúÅ¾·«£$Ëå[Ò¹ºå|:P’nB9·båõ[†­È€+Y‰Ý¸êºÄADìh°X'“ÖÓY¨9EL)¸Y”ÇSËÛ2XS7 8í
Évµ­ÎXÝnO5ã$ÅÔÄB‹ì¹\ÚU”ï1g¦Õé¢µ` ˆeçv‘nêÅ> 3Ü¸4õ×47ÿ7¼`Ä$µ!9Q‚ùn€Íx;AÁâm+b¥£Œ%+ÌÉðúÿTCeAafó5ŽÜÓ’ØÜ¤€ÃóËá£é6è«æÀêø›)G¥ðêØ5]¢õsÈL¶ 66ÛÁ‘€&ô(ü›tâ]³R€X%`¥=îf¤qbÔýœS5œZ±²‚ÅÙQîö8Î Çè³?—Ÿ:iÙnx¸¯NwsÏ€.Ú6¾€­0®e6â±×ò¡*y	·OUe;óä‰W+|«ðwýUòô`LM±®ÏJa QM…Iª0j…Ê«ðˆë(à«©wÌßUz,—n‘qÔQë#Bð&}ŽTœçÚÑ·£««ÖËJ¸§ýãú#,Š!ÝZŸ¶;6TÐ½4iÖWy‚©ÇiçáûQß†¹•áPì
-—k¨Ôpn½h+.¿z /c&ðB¶‚ÅaÇ/ârvcrçClÆ|”MÞ%gŒÑNÒÏ¿¬!ýçÛµß}<ŒZÜ"‰·w$“_U•¹¦ÎHVÛ[ú“"vã•pÌ¨mgâˆuæ8-ú‡•a¬µeØØgW,X¯Áûæ»ÛÒ4ˆ³®WhVàá  swh„="µ*Ëîäó¶¡ˆð?ïha†UÖ½\€·Á£ŒÔ± Õ>Ùr«g?«–9sÿ[ÎýÛ>[Ü2Þc€Ë±Ô9º7N<2ÉJèÏ$@ü¥ŽDü˜u}pøiš®Õ¦´Y¾d#ÑÌäõ;Û?»aüÆPœ9nOƒ©£ˆž¸˜	 	õvÕÁ­YS¹8ÓŸ–ùDl4£ÍÔ8Õ\£·Ä¨wYÛ•
eDŸ&‹ñ2žTr—†òBfà(ï{ä³¼Â#ýÑÏ÷Ù+«: 0ì7>?¢¢/þÓ–¡=iV·dŸŽ›Ä‰u’B»úœ°“ÁAìÓR²'e¹²‡æPxr=TyÊjõïØ½ñ›q}¸Ž§Žašµz§çÏÑTŒÆ¾Æ…•Z«øÓËs0LJ&F™Ó/'ÜŸË®Ù÷\òü"Ê‡Ž£)YEò‹ÏïÄ®>!¶X~®[ÏšŽÿmÕ(ßri{ú§Su,ãZ[‡!þéccø“;ŽÁxÕÏäÀÑ.˜0¹”&v—Ú~o’‘‘¿Çº{a£Õw¼p4ÄAUSXïÑ`z~È¢£š |«ë”«~ªB~¦"0Ê‚39ï
¹±YULyaê nGj˜ªé1BÓ
v!©©âtã	O™ ‘$Æß0ÀÍÔü5×è9‚\ŽÎ¯\ Œ«8ü²†`7ï”ª¤ã/×Æ’ËøV,Mñ§
‚×q§dS‡W<„*þ• ëtÕÒªš=–Ú1¤?'RA”’AþÏù$ KŒf g¦Î>-‚jXg—[ÈE	V7qÐÃv\Ç;“(«ô_èpñ—¤¶¡Ó·œÇnrnpÊr5²wQaCÎDÝ*‚b>›EÒTJtž³‡í¯•Qºö¸“¸¯d' ûÁCZLF“¾@æ÷.©†¡Õ}v3¾I:ÉÀP)ºÏÓù ¯ª§SùY“-@êHBa% Sô°=×BF„!ˆ\ ¯‚ñ¿Œ„švç¶çÉ,°lZËF=¨jyEÙC@œ`ëOt÷kÙ'	ü©“ÑQ|à\ãx½ÎÚ/ý:'í«NtþyôÕ‚‹mCÿ4ôá“Ôk,=ž…ô=ó‚'vÊ³Ê™ú²ô2odÆì“Q˜àÂ×VwƒZ	Æ~Ê{å<¨$«jvºÑ~ìáë6^%¤WJ;µår)[¾Ð×è›ÚÖÄ’Œæa
éC¹Â*MùA¤eüAKMk¶S–œÝ|úåûßÐ¬{©P&eh¨Û¹8šŽø/96&=`AŽlÒÝ>¹¤Û(Ì?KìÛëü]5òEòw«’~‹³ —ŒŒ <ŽUÆâMˆŸ„®K`S0å^ÎiQö£¢Î° #Ï
ŸÑæ_‡:é˜ç]-ÁÇo,ëj=@—<àœãVüp¼:¥V7õ¡pÂ"šÑ¡ò•»*Q
&ÂS«ç¸‰·n„w§t{`Nk¹À‘¾FUcÍŸqmg’Í%0âYèNÓh½!!Ýtÿ˜šp7Øƒ5 ì€(ÂZ~óÓÌZ»î¾	ÖJvŒ‡œN6Pë³m)|§r›Ü2QW‚”=Óo0/.¹å<eåÍÞfZ]h—ÎÎ¬Ž¸ÚáTàxØYìÝZsÜBœŠ3ÓaÆV½f,ÝƒŽµ’O]àIFVÎqÐ˜­`´AÝWÇ¢È4Ô8Ôø)š™s“ÄnØ|=Ø-qåT^ê Ð·a¨³ô§™Ól„p„1à¤ëñ(gzƒ;œ²™ž¢Ÿ÷kø` •¨i<¡&äK/Bâ~‰EòÖ×ÜV„žˆ}¯ÌHÁ1Õ™ˆžvoçŒ„¼-˜k@Ü§U*9/ÌÊÛ*ëAÔUÛdÑ?³É™b¢c¤ì|ˆtÙD4ÎÄòå””RøHƒÁíŒÚ$Ãk—HÛ1³(›Ís(F‘XlºÅ)E¥€½Þ`‰2±B‡ÁMÏ–œ(z[FHÅQ¥Ñï6CµÔxK…m6‚âoµN¾µUø(3Ô28‡ä­½Ç>o{Ë._R8²ëÚ©ÃÃšLO¡Ñ%R%µ¾¢ÛÃš ¤‡3Ïe¾–­Ã1{Æªƒ>[Sd¥©“}ÚÿM¢v\×'úÉ™¾nŸ\…6øt+«!nøo+êþ¬÷x¤1À…ÜŸþb=‡Mýßh'/b òÓs‚ƒ™8¨Y#c¹´ø‰aŸÏïšö~S'²ÛÍá£39ÃMä>*æ   Xw±ÏÉ^ÙB¯Â6*?ä6ê=Õíx¥!Æ>hï5qç ¿ú±…9 Ÿ¶éß    
YZ