python3-apparmor-3.0.4-150400.5.9.1<>,da p9| aWjp \h^gOJ`CӱNf!\qlaW3DxJ%=-x6akd>9m&^D`MK MT-meqͣ}X!L}ABCJKezZe=f0S3V-loMÎ(@j*Uh.=I=^<֪,Sk çMݣCL-19x*ao>{1{S'%_cB[>>ʔ?ʄd & S= SpUU U DU U -U UUU*PU 4"("8#~9$~:.P~FGUH$UIxUXY\U]TU^ bcªd-e2f5l7uLUvĠ w$UxxUyVz$48>ʀCpython3-apparmor3.0.4150400.5.9.1Python 3 interface for libapparmor functionsThis package provides the python interface to AppArmor. It is used for python applications interfacing with AppArmor.da h01-ch4d SUSE Linux Enterprise 15SUSE LLC GPL-2.0-only AND LGPL-2.1-or-laterhttps://www.suse.com/Development/Libraries/Pythonhttps://launchpad.net/apparmorlinuxx86_64/S }((&_g47wJ\90QL ,b2 5,(k#)<Q>p1 @ 6<tq B;?b[&'%Ui $3)E/Px0AA큤A큤A큤A큤AA큤큤A큤d_d_d_d_d_d_b`%d_d_d_d_d_d_d_d_d_d_d_d_d_d_d_d_d_d_d_d_b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%d_b`%d_d_d_d_d_d_d_d_d_d_d_d_d_d_b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%d_d_d_d_d_d_d@d_b`%d_d_d_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-3.0.4-150400.5.9.1.src.rpmpython3-apparmorpython3-apparmor(x86-64)@@@@@@@@@@@@@@@@@@    libapparmor.so.1()(64bit)libapparmor.so.1(APPARMOR_1.0)(64bit)libapparmor.so.1(APPARMOR_1.1)(64bit)libapparmor.so.1(APPARMOR_2.10)(64bit)libapparmor.so.1(APPARMOR_2.11)(64bit)libapparmor.so.1(APPARMOR_2.9)(64bit)libapparmor.so.1(PRIVATE)(64bit)libapparmor1libc.so.6()(64bit)libc.so.6(GLIBC_2.14)(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.3.4)(64bit)libc.so.6(GLIBC_2.4)(64bit)libdl.so.2()(64bit)libm.so.6()(64bit)libpthread.so.0()(64bit)libpython3.6m.so.1.0()(64bit)libutil.so.1()(64bit)python(abi)python(abi)python3rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)3.0.43.63.63.0.4-14.6.0-14.0-15.2-14.14.3d@d@cbk@bi0@bZbV@bT@bRbBb<]@b@a7aZ@ap@aabaim@aEaaua $@`#@` @````_@`%@`!'`>` @__ǁ_ǁ_Q_h__@_~@_[f_P_-B@_@^m@^@^<@^j$@^,-]҇]o](]K@]]@\\@\ \\v{\I\ include in apache extra profile optional to avoid problems with empty profile directory (boo#1178527)- prepare usrmerge (boo#1029961) * use %_pamdir- update to AppArmor 3.0.1 - minor additions to profiles and abstractions - some bugfixes in libapparmor, apparmor_parser and the aa-* utils - see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_3.0.1 for the detailed upstream changelog - removed upstream(ed) patches: - changes-since-3.0.0.diff - extra-profiles-fix-Pux.diff - utils-fix-hotkey-conflict.diff- Use apache provided variables for the module_directry: + Use %apache_libexecdir + Add apache-rpm-macros BuildRequires- add utils-fix-hotkey-conflict.diff to fix a hotkey conflict in de, id and sv translations (and fix the test) (MR 675) - add extra-profiles-fix-Pux.diff to fix an inactive profile - prevents a crash in aa-logprof and aa-genprof when creating a new profile (MR 676)- update to AppArmor 3.0.0 - introduce feature abi declaration in profiles to enable use of new rule types (for openSUSE: dbus and unix rules) - support xattr attachment conditionals - experimental support for kill and unconfined profile modes - rewritten aa-status (in C), including support for new profile modes - rewritten aa-notify (in python), finally dropping the perl requirement at runtime - new tool aa-features-abi for extracting feature abis from the kernel - update profiles to have profile names and to use 3.0 feature abi - introduce @{etc_ro} and @{etc_rw} profile variables - new profile for php-fpm - several updates to profiles and abstractions (including boo#1166007) - fully support 'include if exists' in the aa-* tools - rewrite handling of alias, include, link and variable rules in the aa-* tools - rewrite and simplify log handling in the aa-logprof and aa-genprof - see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_3.0 for the detailed upstream changelog - patches: - add changes-since-3.0.0.diff with upstream fixes since the 3.0.0 release up to 3e18c0785abc03ee42a022a67a27a085516a7921 - drop upstreamed usr-etc-abstractions-base-nameservice.diff - drop 2.13-only libapparmor-so-number.diff - refresh apparmor-enable-profile-cache.diff - partially upstreamed - update apparmor-samba-include-permissions-for-shares.diff and apparmor-lessopen-profile.patch - switch to "include if exists" - apparmor-lessopen-profile.patch: add abi rule to lessopen profile - refresh apparmor-lessopen-nfs-workaround.diff - move away very loose apache profile that doesn't even match the apache2 binary path in openSUSE to avoid confusion (boo#872984) - move rewritten aa-status from utils to parser subpackage - add aa-features-abi to parser subpackage - replace perl and libnotify-tools requires with requiring python3-notify2 and python3-psutil (needed by the rewritten aa-notify) - drop ancient cleanup for /etc/init.d/subdomain from parser %pre - drop (never enabled) conditionals to build with python2 and to build the python-apparmor subpackage (upstream dropped python2 support) - drop setting PYTHON and PYTHON_VERSIONS env variable, no longer needed - set PYFLAKES path for utils check - add precompiled_cache build conditional to allow faster local builds without using kvm - remove duplicated BuildRequires: swig- update to AppArmor 2.13.5 - add missing permissions to several profiles and abstractions - bugfixes in parser and tools - fix two potential build failures in libapparmor - see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_2.13.5 for the detailed upstream changelog - remove upstream(ed) patches - changes-since-2.13.4.diff - abstractions-X-xauth-mr582.diff - sevdb-caps-mr589.diff - libvirt-leaseshelper.patch - cap_checkpoint_restore.diff - add libapparmor-so-number.diff to fix libapparmor so version (!658)- add CAP_CHECKPOINT_RESTORE to severity.db (MR 656, cap_checkpoint_restore.diff)- %service_del_postun_without_restart only works for Tumbleweed, keep using DISABLE_RESTART_ON_UPDATE for Leap 15.x- Make use of %service_del_postun_without_restart And stop using DISABLE_RESTART_ON_UPDATE as this interface is obsolete.- libvirt-leaseshelper.patch: add /usr/libexec as a path to the libvirt leaseshelper script (jsc#SLE-14253)- sevdb-caps-mr589.diff: add new capabilities CAP_BPF and CAP_PERFMON to severity.db (lp#1890547)- add abstractions-X-xauth-mr582.diff to allow reading the xauth file from its new sddm location (boo#1174290, boo#1174293)- add changes-since-2.13.4.diff with upstream changes and fixes since 2.13.4 up to 5f61bd4c: - add several abstractions related to xdg-open: dbus-network-manager-strict, exo-open, gio-open, gvfs-open, kde-open5, xdg-open - introduce @{run} variable - update dnsmasq and winbindd profile - update mdns, mesa and nameservice abstraction - some bugfixes in the aa-* tools, including a remote bugfix in the YaST AppArmor module (boo#1171315) - drop upstream(ed) patches (now part of changes-since-2.13.4.diff): - make-4.3-capabilities.diff - make-4.3-capabilities-vim.diff - make-4.3-fix-utils-network-test.diff - make-4.3-network.diff - abstractions-add-etc-mdns.allow-to-etc-apparmor.d-abstractions-mdns.patch - apply usr-etc-abstractions-base-nameservice.diff only for Tumbleweed, but not for Leap 15.x where it's not needed - refresh usr-etc-abstractions-base-nameservice.diff- Add abstractions-add-etc-mdns.allow-to-etc-apparmor.d-abstractions-mdns.patch (bsc#1168306)- fix build with make 4.3 by backporting some commits from upstream master (boo#1167953): - make-4.3-capabilities.diff - make-4.3-capabilities-vim.diff - make-4.3-network.diff - make-4.3-fix-utils-network-test.diff- update to AppArmor 2.13.4 - several abstraction updates (including boo#1153162) - disallow writing to fontconfig cache in abstractions/fonts - some bugfixes in the aa-* tools - fix log parsing for logs with an embedded newline - see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_2.13.4 for the detailed upstream changelog - drop upstreamed patches: - abstractions-ssl-certbot-paths.diff - apparmor-krb5-conf-d.diff - libapparmor-python3.8.diff - usr-etc-abstractions-authentification.diff - refresh usr-etc-abstractions-base-nameservice.diff- add usr-etc-abstractions-base-nameservice.diff to adjust abstractions/base and nameservice for /usr/etc/ (boo#1161756)- Properly pull in full python3 interpreter- add libapparmor-python3.8.diff to fix building the libapparmor python bindings (deb#943657)- add usr-etc-abstractions-authentification.diff to allow reading /usr/etc/pam.d/* and some other authentification-related files (boo#1153162)- add abstractions-ssl-certbot-paths.diff - add certbot paths to abstractions/ssl_certs and abstractions/ssl_keys- add apparmor-krb5-conf-d.diff for kerberos client- update to 2.13.3 - profile updates for dnsmasq, dovecot, identd, syslog-ng - new "lsb_release" profile (only used when using "Px -> lsb_release") - fix buggy syntax in tunables/share - several abstraction updates - parser: fix "Px -> foo-bar" (the "-" was rejected before) - several bugfixes in aa-genprof and aa-logprof - some fixes in cache handling - see https://gitlab.com/apparmor/apparmor/wikis/Release_Notes_2.13.3 for the detailed upstream changelog - drop upstream(ed) patches: - apparmor-nameservice-resolv-conf-link.patch - profile_filename_cornercase.diff - dnsmasq-libvirtd.diff - dnsmasq-revert-alternation.diff - usrmerge-fixes.diff - libapparmor-swig-4.diff - re-number remaining patches- add upstream libapparmor-swig-4.diff: fix libapparmor tests with swig 4.0 (boo#1135751)- Disable LTO (boo#1133091).- update lessopen.sh profile for usrMerge (bash and tar) (boo#1132350)- add usrmerge-fixes.diff: fix test failures when /bin/sh is handled by update-alternatives (boo#1127877)- add dnsmasq-revert-alternation.diff: revert path alternation in dnsmasq profile and re-add peer=/usr/sbin/libvirtd rules to avoid breaking libvirtd (boo#1127073)- add dnsmasq-libvirtd.diff: allow peer=libvirtd in the dnsmasq profile to match the newly added libvirtd profile name (boo#1118952#c3)- Use %license instead of %doc [bsc#1082318]- add apparmor-lessopen-nfs-workaround.diff: allow network access in lessopen.sh for reading files on NFS (workaround for boo#1119937 / lp#1784499)- add profile_filename_cornercase.diff: drop check that lets aa-logprof error out in a corner-case (log event for a non-existing profile while a profile file with the default filename for that non-existing profile exists) (boo#1120472)- netconfig: write resolv.conf to /run with link to /etc (fate#325872, boo#1097370) [patch apparmor-nameservice-resolv-conf-link.patch]- update to AppArmor 2.13.2 - add profile names to most profiles - update dnsmasq profile (pid file and logfile path) (boo#1111342) - add vulkan abstraction - add letsencrypt certificate path to abstractions/ssl_* - ignore *.orig and *.rej files when loading profiles - fix aa-complain etc. to handle named profiles - several bugfixes and small profile improvements - see https://gitlab.com/apparmor/apparmor/wikis/Release_Notes_2.13.2 for the detailed upstream changelog - remove upstreamed fix-syntax-error-in-rc.apparmor.functions.patch- update to 2.13.1 - add qt5 and qt5-compose-cache-write abstractions - add @{uid} and @{uids} kernel var placeholders - several profile and abstraction updates - ignore "abi" rules in parser and tools (instead of erroring out) - utils: fix overwriting of child profile flags if they differ from the main profile - several bugfixes (including boo#1100779) - see https://gitlab.com/apparmor/apparmor/wikis/Release_Notes_2.13.1 for the detailed upstream changelog - remove upstream(ed) patches: - aa-teardown-path.diff - fix-apparmor-systemd-perms.diff - logprof-skip-cache-d.diff - fix-samba-profiles.patch - make-pyflakes-happy.diff - dnsmasq-Add-permission-to-open-log-files.patch - refresh apparmor-samba-include-permissions-for-shares.diff - add fix-syntax-error-in-rc.apparmor.functions.patch- update rpmlintrc: - whitelist .features file which is part of the pre-compiled cache - comment out filters for the disabled tomcat_apparmor subpackage- Backport dnsmasq fix: 025c7dc6 - dnsmasq-Add-permission-to-open-log-files.patch (boo#1111342)- add make-pyflakes-happy.diff to fix an unused variable (SR 629206)- add fix-samba-profiles.patch - smbd loads new shared libraries. Allow winbindd to access new kerberos credential cache location (boo#1092099)- exclude the /etc/apparmor.d/cache.d/ directory from aa-logprof parsing (logprof-skip-cache-d.diff)- add fix-apparmor-systemd-perms.diff - fix permissions of /lib/apparmor/apparmor.systemd (boo#1090545)- create and package precompiled cache (/usr/share/apparmor/cache, read-only) (boo#1069906, boo#1074429) - change (writeable) cache directory to /var/cache/apparmor/ - with the new btrfs layout, the only reason for using /var/lib/apparmor/cache/ (which was "it's part of the / subvolume") is gone, and /var/cache makes more sense for the cache - adjust parser.conf (via apparmor-enable-profile-cache.diff) to use both cache locations - clear cache also in %post of abstractions package- update to AppArmor 2.13 - add support for multiple cache directories and cache overlays (boo#1069906, boo#1074429) - add support for conditional includes in policy - remove group restrictions from aa-notify (boo#1058787) - aa-complain etc.: set flags for profiles represented by a glob - aa-status: split profile from exec name - several profile and abstraction updates - see https://gitlab.com/apparmor/apparmor/wikis/Release_Notes_2.13 for the detailed upstream changelog - drop upstreamed patches and files: - aa-teardown - apparmor.service - apparmor.systemd - 32-bit-no-uid.diff - disable-cache-on-ro-fs.diff - dovecot-stats.diff - parser-write-cache-warn-only.diff - set-flags-for-profiles-represented-by-glob.patch - fix-regression-in-set-flags.patch - drop spec code that handled installing aa-teardown, apparmor.service and apparmor.systemd (now part of upstream Makefile) - simplify "make -C profiles parser-check" call (upstream Makefile bug that required to call "cd" was fixed) - add aa-teardown-path.diff - install aa-teardown in /usr/sbin/ - move 'exec' symlink to parser package (belongs to aa-exec)- Set flags for profiles represented by glob (bsc#1086154) set-flags-for-profiles-represented-by-glob.patch fix-regression-in-set-flags.patch- add dovecot-stats.diff: - add dovecot/stats profile and allow dovecot to run it (boo#1088161) - allow dovecot/auth to write /run/dovecot/old-stats-user (part of boo#1087753) - update 32-bit-no-uid.diff with upstream fix- Change of path of rpm in lessopen.sh (boo#1082956)- add disable-cache-on-ro-fs.diff - disable write cache if filesystem is read-only and don't bail out (bsc#1069906, bsc#1074429)- add parser-write-cache-warn-only.diff to make cache write failures a warning instead of an error (boo#1069906, boo#1074429) - reduce dependeny on libnotify-tools (used by aa-notify -p) to "Suggests" to avoid pulling in several Gnome packages on servers (boo#1067477)- update to AppArmor 2.12 - add support for 'owner' rules in aa-logprof and aa-genprof - add support for includes with absolute path in aa-logprof etc. (lp#1733700) - update aa-decode to also decode PROCTITLE (lp#1736841) - several profile and abstraction updates, including boo#1069470 - preserve errno across aa_*_unref() functions - see https://gitlab.com/apparmor/apparmor/wikis/Release_Notes_2.12 for the detailed upstream changelog - drop upstreamed patches: - read_inactive_profile-exactly-once.patch - utils-fix-sorted-save_profiles-regression.diff - lessopen profile: change all 'rix' rules to 'mrix' - add 32-bit-no-uid.diff to fix handling of log events without ouid on 32 bit systems - no longer package static libapparmor.a- update to AppArmor 2.11.95 aka 2.12 beta1 - add JSON interface to aa-logprof and aa-genprof (used by YaST) - drop old YaST interface code - update audio, base and nameservice abstractions - allow @{pid} to match 7-digit pids - see http://wiki.apparmor.net/index.php/ReleaseNotes_2_11_95 for the detailed upstream changelog - drop upstreamed patches - apparmor-yast-cleanup.patch - apparmor-json-support.patch - nameservice-libtirpc.diff - drop obsolete perl modules (YaST no longer needs them) - drop patches that were only needed by the obsolete perl modules: - apparmor-utils-string-split - apparmor-abstractions-no-multiline.diff - drop profiles-sockets-temporary-fix.patch - obsoleted by a fix in apparmor_parser - refresh utils-fix-sorted-save_profiles-regression.diff - add aa-teardown (new script to unload all profiles) - make ExecStop in apparmor.service a no-op (workaround for a systemd restriction, see boo#996520 and boo#853019 for details) - lessopen profile: allow capability dac_read_search and dac_override, allow groff to execute several helpers (boo#1065388)- read_inactive_profile-exactly-once.patch (bsc#1069346) Perform reading of inactive profiles exactly once.- update to AppArmor 2.11.1 - add permissions to several profiles and abstractions (including lp#1650827 and boo#1057900) - several fixes in the aa-* tools (including lp#1689667, lp#1628286, lp#1661766 and boo#1062667) - fix downgrading/converting of 'unix' rules (will be supported in kernel 4.15) to 'network unix' rules in apparmor_parser (boo#1061195) - see http://wiki.apparmor.net/index.php/ReleaseNotes_2_11_1 for upstream changelog - remove upstream(ed) patches - upstream-changes-r3616..3628.diff - upstream-changes-r3629..3648.diff - parser-tests-dbus-duplicated-conditionals.diff - apparmor-fix-podsyntax.patch - sshd-profile-drop-local-include-r3615.diff - refresh apparmor-yast-cleanup.patch - add utils-fix-sorted-save_profiles-regression.diff to fix a regression in displaying the "changed profiles" list in aa-logprof- add nameservice-libtirpc.diff to fix NIS/YP logins (boo#1062244)- profiles-sockets-temporary-fix.patch to cater to nameservices with the new sockets mediation, until unix rules are upstreamed (boo#1061195)- add apparmor-fix-podsyntax.patch from mailing list to fix compilation with perl 5.26- do not require exact X.Y version of "python3" - require also matching python(abi) which is arguably more important- don't rely on implementation details for reload in %post- add JSON support. Required for FATE#323380. (apparmor-yast-cleanup.patch, apparmor-json-support.patch)- add upstream-changes-r3629..3648.diff: - preserve unknown profiles when reloading apparmor.service (CVE-2017-6507, lp#1668892, boo#1029696) - add aa-remove-unknown utility to unload unknown profiles (lp#1668892) - update nvidia abstraction for newer nvidia drivers - don't enforce ordering of dbus rule attributes in utils (lp#1628286) - add --parser, --base and --Include option to aa-easyprof to allow non-standard paths (useful for tests) (lp#1521031) - move initialization code in apparmor.aa to init_aa(). This allows to run all utils tests even if /etc/apparmor.d/ or /sbin/apparmor_parser don't exist. - several improvements in the utils tests - drop upstreamed python3-drop-re-locale.patch - no longer delete/skip some of the utils tests (to allow this, add parser-tests-dbus-duplicated-conditionals.diff) - add var.mount dependeny to apparmor.service (boo#1016259#c34)- Cleanup spec file: - don't use insserv if we afterwards call systemd, this can have bad side effects - remove dead code - remove now obsolete 'distro' checks - Replace init.d script with new wrapper working with systemd- add python3-drop-re-locale.patch: remove deprecated re.LOCALE flag in Python UI as it was dropped from Python 3.6 (lp#1661766)- Fix RPM groups- add upstream-changes-r3616..3628.diff: - update abstractions/base, abstractions/apache2-common and dovecot profiles - merge ask_the_questions() of aa-logprof and aa-mergeprof - pass LDFLAGS when building parser, libapparmor perl bindings and pam_apparmor - adjust deleting the cache in profiles %post to the new cache location - silence errors when deleting the cache (boo#976914)- split libapparmor into separate spec to get rid of build loop involving mariadb, systemd, apparmor, libapr and mariadb again (see the discussion in SR 448871 for details) - libapparmor.spec is based on the AppArmor 2.11 apparmor.spec, but with minimum BuildRequires- update to AppArmor 2.11.0 - apparmor_parser now supports parallel compiles and loads - add full support for dbus, ptrace and signal rules and events to the utils - full rewrite of the file rule handling in the utils - lots of improvements and fixes - see http://wiki.apparmor.net/index.php/ReleaseNotes_2_11 for the detailed changelog - patches: - add sshd-profile-drop-local-include-r3615.diff to fix 'make check' - drop aa-unconfined-fix-netstat-call-2.10r3380.diff, no longer needed - refresh apparmor-abstractions-no-multiline.diff - refresh apparmor-samba-include-permissions-for-shares.diff - spec changes: - aa-unconfined switched to using ss (from iproute2), adjust Recommends: - move libapparmor to /usr/lib*/ - drop %if %suse_version checks for 12.x - change several Obsoletes from %version to < 2.9. Those package names weren't used since years, and 2.9 is still a careful choice - include apparmor.service independent of %suse_version - techdoc.pdf is now shipped in upstream tarball to reduce BuildRequires - drop latex2html, texlive-* and w3m BuildRequires - techdoc.txt and techdoc.html not included, drop them from the package - run most of utils/ make check (some tests expect /etc/apparmor.d/ and /sbin/apparmor_parser to exist, skip them) - BuildRequires python3-pyflakes (utils tests) and dejagnu (libapparmor tests) - drop sed'ing python3 into aa-* shebang (upstreamed) - build binutils - aa-exec is now written in C and lives in /usr/bin/, move it to the apparmor_parser package and create a compability symlink in /usr/sbin/ - aa-exec manpage moved to section 1 - aa-enabled is a small new tool to find out if AppArmor is enabled - package new aa_stack_profile(2) manpage- change /etc/apparmor.d/cache symlink to /var/lib/apparmor/cache/. This is part of the root partition (at least with default partitioning) and should be available earlier than /var/cache/apparmor/ (boo#1015249, boo#980081, bsc#1016259) - add dependency on var-lib.mount to apparmor.service as safety net- update to AppArmor 2.10.2 maintenance release - lots of bugfixes and profile updates (including boo#1000201, boo#1009964, boo#1014463) - see http://wiki.apparmor.net/index.php/ReleaseNotes_2_10_2 for details - add aa-unconfined-fix-netstat-call-2.10r3380.diff to fix a regression in aa-unconfined - drop upstream(ed) patches: - changes-since-2.10.1--r3326..3346.diff - changes-since-2.10.1--r3347..3353.diff - libapparmor-fix-import-path.diff (upstream fix is slightly different) - nscd-var-lib.diff - refresh apparmor-abstractions-no-multiline.diff- add nscd-var-lib.diff to allow /var/lib/nscd/ in the nscd profile and abstractions/nameservice (path changed in latest nscd in Tumbleweed)- add changes-since-2.10.1--r3347..3353.diff with upstream changes and fixes in the 2.10 branch, including - allow writing *.qf files (for disk-based buffering) in syslog-ng profile - add several permissions to the dovecot profiles (deb#835826) - add a missing path in the traceroute profile- add changes-since-2.10.1--r3326..3346.diff with upstream changes and fixes since the 2.10.1 release, including - allow dac_override in winbindd profile (boo#990006#c5) - allow mr for /usr/lib*/ldb/*.so in samba abstractions (needed since Samba 4.4.x, boo#990006) - abstractions/nameservice: also support ConnMan-managed resolv.conf - let aa-genprof ask about profiles in extra dir (again) - fix aa-logprof "add hat" endless loop (lp#1538306) - honor 'chown' file events in logparser.py - ignore log file events with a request mask of 'send' or 'receive' because they are actually network events (lp#1577051, lp#1582374) - accept hostname with dots when parsing logs (lp#1453300 comments #1 and #2) - fix python LibAppArmor import failures with swig > 3.0.8 (boo#987607) (libapparmor-fix-import-path.diff) - refresh apparmor-abstractions-no-multiline.diff - drop upstreamed profiles-ping-inet6-r3449.diff - add %check section - runs libapparmor (including swig bindings), parser and profiles tests - add BuildRequires: perl(Locale::gettext) - needed for parser tests- add profiles-ping-inet6-r3449.diff - latest ping also does IPv6 (boo#980596)- update to AppArmor 2.10.1 (2.10 branch r3326): - fix incorrect output of child profile names (apparmor_parser -N) which caused 'rcapparmor reload' to remove child profiles and hats (lp#1551950) - fix a crash in aa-logprof / logparser.py for change_hat log events (lp#1523297) and log events that look like file events, but aren't (lp#1540562, lp#1525119, lp#1466812) - write unix rules when saving a profile (lp#1522938, boo#954104#c3) - several fixes for variable handling in aa-logprof - map c (create) log events to w instead of a - add python to the "no Px rule" list in logprof.conf - let aa-logprof check for duplicate profiles - let aa-status work without the apparmor.fail python module (boo#971917, lp#1480492) - add permissions in several profiles (including boo#948584, boo#948753, boo#954959, boo#954958, boo#971790, boo#964971, boo#921098, boo#923201 and boo#921098#c15). - and many more fixes, see the full changelog at http://wiki.apparmor.net/index.php/ReleaseNotes_2_10_1 - drop upstream(ed) patches: - fix-initscript-aa_log_end_msg.diff - syslog-ng-profile-boo948584.diff - upstream-profile-updates-r3205-3241.diff - refresh patches: - apparmor-abstractions-no-multiline.diff - apparmor-samba-include-permissions-for-shares.diff - drop libapparmor autogen.sh call (broke the build) and remove libtool BR- add syslog-ng-profile-boo948584.diff - add several permissions needed by latest syslog-ng (boo#948584, boo#948753) - add upstream-profile-updates-r3205-3241.diff with several profile updates: - add /usr/share/locale-bundle/** to abstractions/base - allow dnsmask to use /bin/sh (boo#940749) and /bin/dash - allow dovecot imap to read /run/dovecot/mounts - allow avahi-daemon to write to /run/systemd/notify - allow ntpd to read $PATH directory listings (boo#945592, boo#948752) - update dhclient profile - allow skype to read @{PROC}/@{pid}/net/dev (boo#939568) - and some other small updates - drop upstreamed apparmor-winbindd-r3213.diff (included in the upstream-profile-updates patch)- netstat moved to net-tools-deprecated in Tumbleweed (boo#944904)- add apparmor-winbindd-r3213.diff - add missing k permissions for /etc/samba/smbd.tmp/msg/* in winbindd profile (boo#921098 #c15..19)- add fix-initscript-aa_log_end_msg.diff - fixes ugly initscript output (boo#862170)- update to AppArmor 2.10 (trunk r3205) - profile names can now contain variables - improved profile compile time in apparmor_parser - lots of improvements, refactoring and bugfixes in the aa-* tools - new apis for managing and loading profile caches into the kernel in libapparmor - lots of profile updates - see http://wiki.apparmor.net/index.php/ReleaseNotes_2_10 for the complete changelog with more details - add new apparmor_private.h and the aa_query_label(2), aa_features(3), aa_kernel_interface(3), aa_policy_cache(3), aa_splitcon(3) manpages to libapparmor-devel - drop apparmor-2.5.1-edirectory-profile patch - it's most probably no longer needed (see boo#621394 for details) - drop upstreamed samba-4.2-profiles.diff - refresh apparmor-samba-include-permissions-for-shares.diff- systemd-rpm-macros and %systemd_requires were at the wrong place, move them to the parser package (boo#931792)- update to AppArmor 2.9.2 (2.9 branch r2911) - lots of bugfixes in the parser and the aa-* tools (including boo#918787) - update dovecot and dnsmasq profiles and several abstractions (including boo#911001) - see http://wiki.apparmor.net/index.php/ReleaseNotes_2_9_2 for the full changelog - remove upstream(ed) patches apparmor-changes-since-2.9.1.diff and apparmor-fix-stl-ostream.diff - replace GPG key with new AppArmor GPG signing key, see https://launchpad.net/apparmor/+announcement/13404- make sure %service_del_postun doesn't call systemctl try-restart (boo#853019, bare systemd edition) - add samba-4.2-profiles.diff: update samba (winbindd and nmb) profiles for samba 4.2 (boo#921098, boo#923201)- only install apparmor.service for openSUSE > 13.2- Add a native systemd unit which *at the moment* only wraps/masks the early boot script.- add apparmor-fix-stl-ostream.diff which fixes odd uses of std::ostream which are not valid. Fixes build with GCC 5- allow lessopen.sh to run /usr/bin/unzip-plain (boo#906858)- add Requires: python3 to python3-apparmor package - readline isn't part of python3-base (boo#917577)- add apparmor-changes-since-2.9.1.diff with upstream fixes since the 2.9.1 release - update logparser.py to support changed syslog format (lp#1399027) - update usr.sbin.dovecot and usr.lib.dovecot.imap{, -login} profiles (lp#1296667) - update the mysqld profile - fix network rule description in apparmor.d(5) manpage - drop upstreamed dnsmasq-profile-fixes.patch - update expired GPG key- update to AppArmor 2.9.1 (2.9 branch r2831) - fix log parsing for 3.16 kernels and syslog-style logs (boo#905368) - several fixes and performance improvements in the aa-* utils - profile updates for dnsmasq (boo#907870), nscd (boo#904620#c14 and bnc#908856), useradd, sendmail, man and passwd - see http://wiki.apparmor.net/index.php/ReleaseNotes_2_9_1 for full release notes - refresh dnsmasq-profile-fixes.patch- Fix dnsmasq profile to allow executing bash to run the --dhcp-script argument. Also fixed /usr/lib -> /usr/{lib,lib64} to get libvirt leasehealper script to run even on x86_64. dnsmasq-profile-fixes.patch. boo#911001- rename lessopen.sh profile file to usr.bin.lessopen.sh to match the script filename- add apparmor-lessopen-profile.patch: /usr/bin/lessopen.sh needs confinement. bnc#906858- delete cache in apparmor-profiles %post (workaround for bnc#904620#c8 / lp#1392042)- No longer perform gpg validation; osc source_validator does it implicit: + Drop gpg-offline BuildRequires. + No longer execute gpg_verify.- fix bashism in post script- update to AppArmor 2.9.0 (r2759) - change aa-mergeprof to the final commandline syntax - lots of bugfixes in the aa-* tools (bnc#900163, lp#1328707 and several bugs without a formal bugreport) - small additions to gnome, freedesktop.org, ubuntu-browsers.d/java and user-mail abstractions - fix mod_apparmor to not break basic auth - update perl modules to support signal, unix and ptrace rules (bnc#900013) - don't warn about rules not supported by the kernel - fix logging of "audit capability" (lp#1378091) - add support for the "hat" keyword in apparmor.vim - build html version of apparmor.vim manpage again (lp#1366572) - see also http://wiki.apparmor.net/index.php/ReleaseNotes_2_9_0 - update apparmor-abstractions-no-multiline.diff - remove upstreamed apparmor-profiles-ntpd-pid-location.diffh01-ch4d 1694064909  !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTU3.0.4-150400.5.9.13.0.4-150400.5.9.1 apparmorapparmor-3.0.4-py3.6.egg-infoPKG-INFOSOURCES.txtdependency_links.txttop_level.txt__init__.py__pycache____init__.cpython-36.pycaa.cpython-36.pycaare.cpython-36.pyccleanprofile.cpython-36.pyccommon.cpython-36.pycconfig.cpython-36.pyceasyprof.cpython-36.pycfail.cpython-36.pyclogparser.cpython-36.pycnotify.cpython-36.pycprofile_list.cpython-36.pycprofile_storage.cpython-36.pycregex.cpython-36.pycrules.cpython-36.pycsandbox.cpython-36.pycseverity.cpython-36.pyctools.cpython-36.pyctranslations.cpython-36.pycui.cpython-36.pycaa.pyaare.pycleanprofile.pycommon.pyconfig.pyeasyprof.pyfail.pylogparser.pynotify.pyprofile_list.pyprofile_storage.pyregex.pyrule__init__.py__pycache____init__.cpython-36.pycabi.cpython-36.pycalias.cpython-36.pyccapability.cpython-36.pycchange_profile.cpython-36.pycdbus.cpython-36.pycfile.cpython-36.pycinclude.cpython-36.pycnetwork.cpython-36.pycptrace.cpython-36.pycrlimit.cpython-36.pycsignal.cpython-36.pycvariable.cpython-36.pycabi.pyalias.pycapability.pychange_profile.pydbus.pyfile.pyinclude.pynetwork.pyptrace.pyrlimit.pysignal.pyvariable.pyrules.pysandbox.pyseverity.pytools.pytranslations.pyui.pyLibAppArmorLibAppArmor-3.0.4-py3.6.egg-infoPKG-INFOSOURCES.txtdependency_links.txttop_level.txtLibAppArmor.py_LibAppArmor.cpython-36m-x86_64-linux-gnu.so__init__.py__pycache__LibAppArmor.cpython-36.pyc__init__.cpython-36.pyc/usr/lib/python3.6/site-packages//usr/lib/python3.6/site-packages/apparmor-3.0.4-py3.6.egg-info//usr/lib/python3.6/site-packages/apparmor//usr/lib/python3.6/site-packages/apparmor/__pycache__//usr/lib/python3.6/site-packages/apparmor/rule//usr/lib/python3.6/site-packages/apparmor/rule/__pycache__//usr/lib64/python3.6/site-packages//usr/lib64/python3.6/site-packages/LibAppArmor-3.0.4-py3.6.egg-info//usr/lib64/python3.6/site-packages/LibAppArmor//usr/lib64/python3.6/site-packages/LibAppArmor/__pycache__/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:30575/SUSE_SLE-15-SP4_Update/509e71de7e3059801e8af2f2d82e38e6-apparmor.SUSE_SLE-15-SP4_Updatedrpmxz5x86_64-suse-linuxdirectoryASCII textpython 3.6 byte-compiledPython script, ASCII text executable, with very long linesPython script, ASCII text executablePython script, UTF-8 Unicode text executablea /usr/bin/python3 script, UTF-8 Unicode text executableELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=344ef28ac1645276be8b658523737b9c74bcc413, stripped  !"#$%&'()*+,-./0123456789:;<=>?@ASTURRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRR R R R RRRRRRRRR RRRRRRR%Y/'ގutf-8d5b06eed0fb6d5cca56a4466137c804b1f61c5881a8c3f06a09f21112c9b57b9? 7zXZ !t/>Ÿ]"k%a D岻Nv2PP%b?ꜿBU'h*kuA皉b; vMʈu,61LVjT\ d%}LW@+L¨sOSeqNp?bh+o,z]œhAԃax5bI\bg^zٌX.sn\~Մ+6P o;<ܽTwCzc(dyen5w㜷YeHYĄ|cQX'S8TS͛OZ]aРt)Zcx/YB س$#-Og'4Sz P: sdDtm"ȥg7޶jB:&Rz!pl,0yjRXy5q{3ɑʧCdl30c7ґF,#mcq-r5nGG[!LH;r:\$T[lE6dEР/uh"Â,{-!zˢ${mv8z\|mt 5-;va1ޱB^4>~y<(!~y,К2 6 EN B|}sDДSZ," EAwX\ے$sl Eoыge5DB `7v*[10t-~סvUٲluʩbux\>^Py ́).b .f,&jw1/aЇEG6NM+@rj=?`Sr^*g]RULr tC0IW*u6BX .ɧ*dSq:X6fptL@:}VIt(5Hv|XGWY0{(gٍ1cjy'A(r_a B̅7,<}$A (T[ #z֪ȝdS -n)Sת\c@YdImja{0eud8&ޚ1;.v=y98?:|(j潗h x6C2BfKk saw&`PˣS%igyG=d{ ~@ºroLC[Bqq~-roSkdF,#e5mkaB;m8L+N=|<0=bϋ 'gu &nnGާjML'tg^ef>gk*WVn}V4${bwY6'?MվDOa ~B8Ww3-U& QV[GA:$b&3) qnn/k{,ac$ N>;fkF9)j9fowNxĝ~FQc  0?.1Xr08:VoV; f{'}=i>kg1(q;- !No+7u3*Qg4}]÷HTd$*nTNJE r`Td=*#hxadZC=A|WO@;$^fƐ~]7Z5/$d̮5ߒ9xp$W+/8c8rv2΀pY}_Rcaf䮩0}]jᱠ|M 8\Α i0.`=.ȿ+E$U9Z|*iwMXt.!=n`iϮP눤«@ޡ0JfI*m1=y<t_.W$̈́ [XzDr!aj@ڇ+χ:a02f@]|Bt*i4`9)0;M,˜z ֛˄n" ͔^* ,9t<NCCK?}qFM>u^A>c{gtRj3_5>vh.gT{FZL3*1\- 3 KRqr.k.' W @DrT?L4'Y t8OJ%EE,kJZ )}8QZ +'#RȈ_\Z'e yƾtj.v56L%ngTY /ǻ;P.; .-J`} xn6aRT,Hh+(솩R]&s&+H "SS3huTC>yNp!6zN|^N_m".=X' K݈RMx8oh^ "@oɾl*"E}yU1 sڪlsj(|l|>`gָǍUʳ`I'XL\!SR:FQ%Iˉ՜7d-6>)TJВ'Xk5 *R JNZHW^k=~E"1o(<~Դ MAۜao7O%&GZ_u_aRcT9oD>XݯgK'j_&U~dl.P3 ѝTjABcQK:pLh5W㎇Y+n*Qu !1,9Ȣh+F ,_\ְ6R}^+MU4ʠR'g6d#nV |0/. d2 Ԛ%(e@vV,;>A i|F0ct1-fى܍Q$64+KIlpe&鴫NԐI}4Qzn7E}Yʐ wn`B#O򡫼}5&sk ^}BQ75b)TDNp$y#0tA︑ No J%rx}Ev^i'r '}az>7M>.hq3dXDSi]KBN{3PJ (r  a;S ohP 3ң&OWS?:]㴸]`j9РYwa;H.y hinZ7dH$<Ҩճ"8b-NAղwz垮N{$|x/E.7"Y ֓礽YZ>)^71 !83IO7v %[zNؐ kΆ_<߉H(6?k7F?C",r Zμ0T!;O7Tf'.!wEuDg~VZѲ\ׯIJ{3mJa\Q;%v%[!X.5ΫN7QNORm֪\nXLs&\ +.9Ex͑}`Z_0?T$Η(XA24^7cHRGG6hØ 䦲zԨƋ7 'nbi9`R{="`?ۛ&9ՌQolz/tGRi+oKe=*6<'Ҷgwu2ՎDH'eWԚ@=q皈pb|*}1ȁ4EnbukwJ4ai|DaFպÖ^)5fpF-:~Myt #FR9A~io9 -] MψQWe2=4*ӘO֡JC?jw[?h~`6<@q;EBR}/|ww#me[kmNMEl{IeuIo[xN/P"N7Q'TaDyk&LN&DEyթqliZ]A U%€pѹ <] Ra#k+o{#My3lO$|c׭+%3܉;*<I/|uhC)ʊpيŊ#h/.s9 eautpDV88SeN ~]KuzUÇR(t[ ɢ a4YTU.DBJ"ho1XRsR yӍshs_K߶P [DX)wdZ{uēwOҗXj\۞887d6>o)Bm0䢒|g܀{sXNlŔkt)n[͒'[2q)(b]|mtߩA^9A_vDlQ-pL%nD[L7BDV9_E22T@ccaWf $s ̖딻⩯oiM=Yˬ(PZy5>?;C4aqš *~E~jOxSj\=_Lq9|'y)%rҊQl"툶OU<)O;jaHq'骟?i j\Dh9Z\t= >3u)/ Gi9qu.a0eQ5I6F1x$2%e. -(jPҰl.&z`@V9%FC`gD]l-ڣk\+ GGe2 tygs{gDK2r/1A,Rb[lV*ڴ~م4gJ^*$M(]62uEGvEڋq/- SQG\ frT]Pzhm#FWR9%Tw}jQ{` 3>muW(T ٿգ orU)|` }`7!Uph߆e٘r4mͶ*g75qfEml[*6BɒH~}KZ-GxD\ 6Jnm\#E'@ap b+1d? aU`Ƀ}`IH#(AG C,Nln貰3 O tp}gPI-lBbB&jmHiHrǷ{eµnAmD ~dOSTOҶG6sNT2q"亜ie/9.o>dZQ8"Ǭ3feuel't3Ry- TD¦i`aik}oC`bar+9$ W-86M+v3c54i,XIml4-OӍzP̰ ВʹV_7~ YPn cwYz/5[-Ws|hQ2-_~v6un()}#>k&=ocͣm<0H:vc8GIؔ%\I , rb'մa{VP:B?}eJ(5q$B2H:ajJ#RH qվ/4s!ãX[y"H[g{Zx('WubR=F^UknakekliN$;-* ^<3Ʃl_ ;/izo8|'s}1$lv]_ye*/,kNwW9b3V˫[6Vx|8TRftP ʴx2 ;a6)ni,i`Z8ZV癘M$pLapj^:;RJv]͜(N f-6g0oIc.a v.h"g}7ʇ>{G%ϩK@`B]b2~|{Aġ2f*ڷ#skÊM>IP,)k(!u:OݸŶ(ɳvby#8TÂ|tO4nfjt+՛.>_Ědcm40-f~kےZHg $gNAVzN( VC8q= .ӭ(MNkQ^SJͺ>>\g8=y0 7l(+25k`PՕ\A6Պ˓NCD{rj+KJP~ss|f/Kʣ\0@yryzwU@fg8pN?Wr?bu_( TX#YnϲwmB}-*pU 5Jgsg5"N)|H^U]Dp=0; ǩ5ܐ:n?H>w:'Wūd)5Gfmh`>w?lzp DuY0R\aI2B {[0*Z[Cߪ{mItTBD""Y) *CI~ Ur6_LPަaOb>9NA#x1e:EnV«6ʠ25FfVA΁{GzM*V]uCkc4hb b-\-=ڕC]JgFTO>ωߜTvH߻ C%7m k_umkfW*G=æ`-تL֏(qcvt#Zq:3ʆ}H_P\t C_%z;V35xӤꖦadb>Bj<4&f3&g;ԗE*[t\I ^A.gTu?ss8se`)P6Ꮇk%3K7aۖ\K!"Ҡg);3kU!]bIKhj⭤"'^Ĵ` b[6_nFC(ja`nnK#,WȮ_)vkTsn-rBP>z uZ`dJlTMD%@gK'9i]&"wL gSz-7)B(6<6 z.rBJ#tH";mZ B.y__D6(A~ۊ1VFֹ%6f\f$C-Tg5,xH`F;r@~{ 18a.9ݵX6W~rpbX.2ڔi~ \׭;ld^+hʸ}^P`&?>G pTBx[ʖdϫ&娦t7>ZRпĂo!+U.16˔ pNT\Ќ$ߩtO c[t:!%{0pU\tjo<\UW w oevWx}z+ X#=='Z d?Bom/qSv_a gp-EN) 0`ΫRƠ)ZIi r:;\nT$u&*d,77K_QS v#0ڒDYq߸2 x޻y@]hv062yp=0ZGjAZTV։kR@OiAGB(uNE^~}omW2y凄tGoEX"gtVC Y=}cZ7 -f'+Ke+2 z fxYp-GfXa4 xфwz+iؚwQ %bWg :ch9k1{%RWw~ށvaڰI!a0HFa}_cv-PGIސa!Q2@͇.¦stEpJ ?EPªU\AIČÚ"-D:c$I<l4ӿ2ۗ[֎@FV4 J[[lU{6aovxp/1\yI 3qa(A +ׂλB L|XP#n%shBQ (*&j%%DŘ+ZYJ>pnx'mYSd"YŸXb^ω⚊CYӓ$F廦 J=|n~Sb(waU] &v0w:܂E!_2{w|V_?yf~YPf*w$k?WXA vҜUBΨC4lcUa: @`j/GڎKƇgs ,Xc`^eeؚ4UJxU䊬qK܄?&KJQŧDMyɱx)ĬٴȊFuDPӿ Pxo/ ".9kߪ#|a4$ fSMw9' ~tQsAQ!gTD$ͤG;$kv_U|:})<-:[(O\Vȷn 8D;z^=$q(E|5Ζ,^'0XJ;?IT|:a[K7Hc) @Ev"=)P}W_:_ |рvIR"05cO3uknSy,݂-cYN2-9w*ښ?AVX;f4/=ɗ݊N>Etq9CF#xqP 搟(StC*?b5z37ܱtz8|0R`0sFr@*)liۀ8>ExQE5?KT;]gb|삼WRQSvU>][X:-n`zw^aUdWdw܉_ , v`qAqrggi"n\Ցuǜߩ#f 5z&?`Ο0㝥D6Ku95kBSv½2 i8H>>O=KǒP+ÆYʲgC -c4":D.ZFGu{nRo<3%;7hC)ڿnwܔA6WKz= Q^Cs!ѯŦ~F˖|5ƺ'Z{mE~̴,O&'xV2 vmZ^UuԶe| #A.kYG_pnn-{)6hfb;ت4W?k 'P ׍GKd]7䒥*]qv7(a]L77?(FO,[ _ ,h&Qj hĂ N*^*0%~+=s , {º @׫)-dx#W=S9#v 6W RGݺ k"''LZ9$%4%sR\v9q ¶Op4(]a@kҚ2Y!:K-SnϟUyQ,{K .T754|o^)lf# H:gQ!T]I"Tw Ֆ!j9, PDd (* (V"ʵ?48VЌ=/W͹e6x\\(&ȚR1W^˦]$h!3 }Qۦ$|>`NsFìKƿTNb|٠e=G} >nͤڦvN=wwq΂(1z6cmP(-8n  ,dS,2*Î{i][?Zv1Iew2Wb9O-WAd1(NC%aM)9mN_&u|1saZy-ODtk磬#;RH%2q@)[cl.6ݓ$4Eb#ϙ`~묌׀ICkU~ޔ۠"(!'>\P%JljO+Pɝ3vO3'b엻h!.Y? %7f:PccӶd"G|JݘI7i ʅz]ebBٸ=.l" ̆&KԕO/NZ1gT"@gۀT8YaQPj nTh5JQF+E_/Tp QcG\dHzqz\AT @PUwz2mӉF]"̩By mOu`[E檱*Pg"іzF8cf7w%>PKh'1NO7Ć(4c~: W ,!Ë`T 7!7NFlzdC{II7Ґn. `/+wIn +.K NG9,lgLPh zd` 7(τ` ܟS7TL+e69\N0 S7BdG+Aa UqOp4`]k Rkj*ɑGiIImۖZ9o%݈G Ze|1AE:kʼYyR؏}&Ym,-w`:MgY2ps`UcHMA`msoQJ/JjgѼ!=ӍNj@ s%B-umQIP߈ rgp|<_j"&+[*-S+D#ct-D |(?̀]k,TMo,?cYe9N{e/)wpGWOXS#:Z^ǵ{}WeȯKB,OP; iE.Cާ9z/!YLSk 6pMٷ;( HhfdՎ20#{C +|9OXә!~wnuyֆFr>Ru$KIԕpiD^? *) &ώ̳Y{Oe\rdZ n 5JK-?kr{YGخ75;W Yo䣱&[RhXdޖ1y@nCo1P5..g_:J4:")u"Ziׅ+kb0g ma-n^μ%\c|8hVW&|cͳn x܎+{J t2ݕJd,;FO!@m N rL!$7oW Ȅ7\f[Cq<-q5,AMoHѩƞ;XTOM?-g4'ԏp[wl+#`)$EwBrH6Cdl1 "7\76/?To 'T l(`;k[C I8"]Ģڮ6wbZtnTpUZ7%;폵 #2I4SJ3S0'&ZW{XVY ir]B20a z/4]8:%@ŮUujɗ a* ~a}QI855!VńS?^4!IQx9E\LW "AV^W?T+C|-W҈$ގU?1g[12rl+'3zl>xX=C{_uHOߴ1?Fr;bdJY^J;MnJ˗="jeYLp)%ƺ)d#'j:I+( Ak`H;]n?նLNݭ,g+Stt6)VFXgDb~ 5h!1;TCy#5 qWr)DcE(ž}ʛNW,+y7wu} t늅χ;ȢE<рxA}W*Ft6AwG}oJ*EL ֚VLSV {C;O*y8I}|31is، ƅW#١X t:)E)$M{瞗&EYvy#u ME ۴k.VZvI6Tk[).η>@s)[ t`|>U5'3MF_P (%3bhS`Jc~X,QZLG{*XP mU%ꕳ,T7bsYAy}5Q {hBFG&Q9G/loqҭ,,,TW"tUȓ9$*C9geMU,y !V߫Q Fy͜x!uAZ>;LfVh<t^Ԭq=h`eDע(d1XOv F6K.V11n ʉ_Y.ih>\<`Z_Jd-{(F׻X؟;.F8WzD Hvɯq߃ ^:=>>V`x! .L ǥSfnFǦ9,wSNn簼FP:1vpY&)kЄlum`(,āEگ>wz$] A"HSM_ctASNhi&/ȟ=49Q,HWmׄj&HQTYWW[Ƣ?v kWHPg)tۗ0ieAjk\-~(mI 08ԟ/*tdm:fй㵲K)=&ت q;L؞|UiV"'c`SH=!vO3?o miדW_Cd5!iMu=>+wc">C$ @~a"kP]Hh");7k(LL<+"ŖkcA)ֶvl!΃x`61WqOuHdBߘ)#P&ۚD։OL5tu?J ̣dmsfq\}cvx6dO9>~WɊzQK"b?̿Bd5`20 '=Q'8bBZ՞V! ܸ8nŜT餇fi^|Ίu{|iGd;f^v xs1!R&0|-YJPqTW@])B-bGnoƄ =gU̇&D@H}C8xzmsfSNX6E~fGZq` @l;l-ɛ;[Z6x|nq ]Ə|3qA/N| qW[if+B-\=zk擊o2|hҶyk:I BZpVzjޟݤVc :ia#/qcg$^V! CY^v+ 8 q@)YsԳݡ'Rs[ Вl *rMWbY?N%!83ۘIΥL8QpYHXY0ga"b֤{|T#u.N1x {l\ d\,u׭r;tOغ׉ۚQ4Hr }pYܵj"Ԍ^?s?*;y>_'zq @0`툸 ~(WMrn̰r ;*K>n6)kɵ6=n,rQOqƎ74@;0`*`zIiIUspwCk̥D->}cAdk,ϔ$gqSC'vԶi$Up:s3ٳD/ρ=oFqwYpӋEءݚR!i?=O3ѓ4 ^j+^?"PrA>Y]lbyP;AAl#O\q- ?~6wA儯5ۡp(IwOQa. ٬?LaqWȦ7bZ mv0U@K]zFQkUiGVK:p{9=,ӕ p'?N/Ql2JEՀLiߔqw%gʝyj;x;ŀJ6G-mUK]qln:_eC\tF_}6󸥚ڥn%2Wcf/ @W~XNxTvaYwH|s  وfB~otK|} 3j3~Hw~ JU{H҇4բ#F E8/OiP 4t:JWʯH/ai8?CP1 u0OA6 K{)EU;F)YއUfxVgC-d"*QjKs#䜭%T|8(iO̍U!f/:n AI gzKݔ>8kd /]%&܄ /8νEh}C/M{j^ =X35BOLEe&*8{JF@c6ЇŁ3Z*''^:Y~jqDs$}NmF;oH"I$uX<8Ն{0M䕣ȧxz`źVo0LR8u>ȴ)|iD+@žmS9=vQ +Lqms3:w\ Y"A?Y..@nQ: heZRgscyKۤz8v 4~V4ބwMg4W=fz8|9asb7Ȫ  2lO'7k('|a)dzXY(huIBoQqdUr`5app4ݷ2=r{HPѾ{}оYJn}j-s+ Fʐ 8eI ݷHܭH3h= #lNo5z0A_Hl0'?&=&N<Ƚ˃_64w&Zd_ηByl5U~% V8,k>~U V6=vZNG҂nԎlb&ٓ:Bt RBk⠔8f!!;=GPSH7u.ï^@K&)B/?bwQtZxڬ2V#gC >_ڒPjxdb!jV>GTF^Qһ%{ф8/0Vk8R[dy+ذTۄ :e1P]#r/gFj|^ V ;&uYy<#5&m 5Hl/ƽzX].kxJmз/9.: WϼB7[ ZnBGMSel /RA kzvj|O޶-=([#0x$U[&l> `yM16ƄXQ/'[]fdvh o>?T:G}K_)*uXƆ#Jϐ({|n%sVLtAu0gNr,ЗK>c IOܖ[(ލژ@Mz 䢧?LI,[,k)3-[J4VI*raJkrR2^  V;nӃoHׄ0QXU#/㜬= k2Dr~z_=1='⥚͠tgTjmg?[;kk R~@t%5oH%(AF3(F ;rXaNd%g_6j()vs1sNISF8E131l_n k 'yq셔k 9Ңۣ=WJ}rNf#|R iW-i)HWMv ,SF<(IOJ:e)ֲ\n٤.^ ok`bjyH u2gz^_uf/UECFOHN$sɾ5oD4g,xý { ,ET*_î r"DAqW \wT|Z><"Pvh,5W5!+qSGʗЌuR:Y:D6g#DZ$|Mq16v<=EC^Ségz᲏3*OUݠͯ a#+yɶ@l`ߵ"qN>M#;{\n҆&$b =XϬ*:sgOm}h\u[ qPPK]gc)aקQ7%} \5ֵwzH F2դH(Ki~:,.$c[1L130?㡻e֫vc%qu$qfFҐ~4#A%[oDImley_x2r?_PzBVʃ0BOE_tk,E"c}`Grga d ?ٔ2Y` ,Mfg ?^ 55 ȴzF׉IJ#[07'UfKwbjdX>N5=\ilc̪@aO%R.t?&zINuڎ%>>06^)V,16­9:u`i)S`1{9a_ )Yr|l=ھn@a0)ZoFaO-PuZ-OԘ~u\Ё E҂DkF#Ql+7[Xޒ$\n-Tz&qY`pC4U ;dq,xY.R"n k}(yj&巬"jC~-5 .9Tn1EޯjX\BJY5J(oCq?jQfpO!!-]G&s)9qѶE$nCSQty!Q5xܾh.1[@r,W{F#aՓku}nj~v̤hPH:sCi[%P0|&=In]ד|bUU ̫j>+DF V AoZeW W-^ CzY;|i-q^#+ܬ@߲v ZCZ פƁ[g-RAQ7ss3(3%2 AA1f^kVs_&lE7OZP.)tVcW3N -Pt !1 B+DSrggI+΢4v|dVѹx,Uھ$+ tF1jdj wcUmn&:yPjg! g횚 ~BnUIS ?M~'IMaL"Y-z)-ڧn^ځt E&@ڧIЊ[P:Ml%GX@8zc]erI6ЎX"+B; T ԓG2;]@Q/~RY|OFS8hNZ:gQn9K٫x1Dm'R <>v(,LJ==>5BR4Åػ f ]Rck.虗6D,W !:~aj'rӜ{١*Il3:LÌ5޸þ2sq=E,›=,t+ ] .RY>پ19=CxpNn+A.8ζ1/'twvU,HFubSgeCANFV/E=RB@ 4ڟZ:\/wjjoްK7u($o{H(|^Px5x=lmؒ 82n,i-B.ɺ::K$e; }1S&l,YFPvX{>Ӓ_btMkx@d䭒4;<6_ʘz4!`q<QV'xolP8dw0c +*v!ͧ_-r{ T W2+چYhn\Y8SGǰ UDz Ru%_R^%<p.7Ϊ6G*}G//0$C`VAiSAAN_Cm(mP V|a;b~Bd!X0BeQLJ>@;9%2,LTnm9|7p)zZ)Az?*2Z\ I>=WQكTJ˗Ɗk+S9L8~~I?w=vGQT:q +7z*37Ch#6薰'e =umVcM֣_7-%ݚW*TSC;饿onWYFC U:s|iAMR>&7T8arot"5 o߬l@7AJza|B0Dyϑ0g[$?7 3(XdHX´:=aԆ%NnCX8Z-فv2ڋ TKq>JJ%M~T}x\ zd*CX75㚝Hf29nΨYX`Al (6@BBD~kqX{ K@F3a 橣9v<04p[$UYM,c]]ɷCHd"-C#0VƁO-$t_?.l)ԏI-Yr/5_M{7h4^Eˁv-3r̊ʁFt-M|E%&[U[կM$ӧV68TK{@+͸0.ONmz 3F4%I߳@ B/ળs'';G1`#}'aEI\a= '|hc -st$guϣGo dAQt@{@nW5)`>ju13.t\|Hx(p퇰_?J~&&W Jz`P4,Rc,}ȴYӵ´"2 0FL\]^+ˑI0eWk)OX SXU9G<aw6[΂Mpc>^e=g{hKS`&X9qޱYVj2¨^DE(BaVin5T $Rham8]-Jl).1pGc}- \"ֶ)LpA p̚p0zw'ҎXʎӼ]A&_曞!Eseo漩SmsZӤTe`RpY%1wmONٷg24E0f ?N5#TyIig _5<)F:PH"Z5r p@"̕jd:vrxK#e \Ӈqc9K_'* +}U_#߮`ub}RElVeGp jI ,=C6kZЕT c`vܬLx&=:E*761 >Uqdbm>3$?ՑG | \\$xRO4? Wt- #j R7Lz}9xo>E J_g5hڧ!2k>\'MWEVm}NG&RxD{-=:|v!f R`ě!Zwm=] ۷V`Fm{J^b>it*Uc@U1U}UQ2lFL^"Uݏ!9?Uް2anZ]YVytOAsW}O=;:hʼ5ԝxYuх䈒2`g/Qfiwf7O͍eQ;8!E D9]:"Gq-#".t=[n#NeLgTCN46@W9_<օmyReIrS`|2]_\rumM{[O-)&g36R Z ט2,vI[Z!8VӲny &:J@ iB}`gX:}>h{,n-#GoWXʽA" 1ne{^<_ 2oO '|W^1IOpʼnh,WA% Ўʺ1ea#s˦tGd7&A'bAd6g$bu5>`UPR;fuU`kJoߏeI AQ,;Gt[FH(ߙ[{ :6>Syj!j~T"ohy#pNˮ4%iR^ 6Ւ?¬#ج81jN`g;xGR~ON>F+M `2w3ĭZ-I(E.w|sh>Joxa ŝJ"7¥q/EZʏkApi K .B+O..ӇO_\+m^9GZQ*i5 q$( gAbMPWM$v-u$tLMS(蝯 "Ki\sP'"'FճE8,֞,Mgxn$ң'kʱm$eBՃN |W)JT,QRGIiΩgH:Wkퟔ~n;D"7)&ڇAȐG:`rQJXڎNS@̓?7u")A&X1BWLsR\,'q2\9`hҢo۵u y{ZQ:cT'#U}[&tp!c0ξԔjG*GDQ2E37 ki7َחLh4嶲 F!sBl_ 0/lE*; [V$`1˶zW)PanmP_~)/Zl%@O-H z|xK|=spO B-|8lc"=vj=T'w&p^TiEWk?הu!E/&gX脚A^>9^D -@!ZSuS6* Kzeؠ60mYK?M/ޑMOH> ~ܡ9= TttqPKme<ޠ%B.v.CCb'ݦ Wݣq uwJv-l$T4rr"ǘ@(5 "OZӓѽlHi܂eg#gr޸D}7 &"A?ٰbIj }\"tGW1yHx#rtNUWÎQ-C=:c1jKt}}8dE2Was4[[P8zUa݈T *>EQ+x7k4q=O^燊  ^!Fn :5Ҩ|%\g/.ZX`EIa&Y۽ɒclӸLzMrjǫ\FPUˈc!=4cprKA١),6+ (0:fDp47]'"آ E(⇸_ >u{8,āU7~NjUk.yJ(o56PZflZ+5نERNHnA5qQ]h蒇%Z_.1]CVRQ[UgK9xucTMf \DJ&Ej†À?J<~B44uygW$lTH`;:D$hUac`2F#;r&{V,Z&;T7USΫ>;mp,||^w8 }^18糋xrM1TKq] ]#>&+|I@j8Nz *ViN!Uʎ) Z9'i_gAi9 K_DfX%!F~&[[#:/A\bXüoВ1Y &%笧 d0U휐AB+GVvLʐx}5Hܰlc_ܕhL~ƀ 'օwtp)bבZ,dQY~tH [#G60n 4,4@EV3+9WK*r] [3 X.jU]<^Vz|iD6Z׶$y7\zpCRޮ IZrZdpMiMBxzGcZ`c!рȓ-W5Qynk/wod :6NgLPBE0@q(_@cgC=FgMYKJ'V}|տK{FBD7cxL$dKkVUV7K#[_DkH5Vѧ2}WtV?VNOMaS.ٰC@9n(zQ Nz Ʉ2{&O}/L S~BbI*/,ffg3C-&A\tFYhوy!Z&ΆIYH_)Gќ>ϴ6d$ @U6П_d}^v͑t+.4QB~^eUU(]S^^~||f,ie)-j)k'!FEւ4V7H7B=y۞4&Î< nGUgbEJ)_Bq"`W|l1lheҍ.wF8ĶaBI}#2;w*kA6:p5*+>.#JL4(58SpBc|sHZV//N$ iR5GCQ O0T3^|8@P^dL?Ssq#=(cHbmLAU"%߶Pz7z;~O6Y@a? u[Wӛ;`V)25Iv众1 ~XtMw!?_lxbVo! rޒ"N%ѴֈNg)i#XD(Dj^4$SWD#MTynR)8`>3{ئe$:~MnELαpIm qMȥ?D(\ RRBK7ӣ⑱Rrkrߎg:6o5NDd[ Н\}TC`w6DTryH8OBᮡ)'EQo8bOPqw8kQ7_xM ?aۛH_uH~dh/(WPرǝoA<}Q`TP-.M˫{h-O[x8mu׼jq[E_oYy^EmlE@U,/V ,t/pYO%_j v "VbwӁ>>u3V/֙ݲWJgYzͿzE߬8UEJj1>uEܾcXR9Vl0jY8'9~<~X/'?Pbj+qjXl:ϝ+7[(uxeFl !0\) 3OTw7whZa<~@jj{8zsHȫV}Ͽhiv2(HNZp$ ~,)Hs7bQlo UkXQ,d*E]:|7? SXD/&/8jQ6('1fW` pW>! w.(5fNZt]I+>zO-ryj(q=1捻 4*ڋ5m"e5M:;(Ņ-[Mq{e&XnXW3m]]z-#Xnߠj;(5nԦ6KGSS5@e> 1-=yڠ=rEu!:ݺ*ļ|WwLC9)_ߝeLinwhtO#' %Fǚ<&u~l2wGmSpjuApQPl_~QBG#cA]% o:d^s3iK%Bɭ9+9-!!q q[zO}SlA``5Djc SVɐc8^QΪU0qkpxtU+נ1|#-55=) qH6_awrH{>]w,zGī 8ĆI=ge)'.DNJ2E_J" t|Nxt\U? 01VKOH& .SG?CDّ'=d2*T{1#|+/ϭJv;pM|azK*fGg@kTk0Tp$<n9UbYŘb|y|(AeKhhYXo)wH{PTޏIk囡ωH+⁧.nڎޚM/9s?1c^βـY %Bd>`a 50t|eV cA"rIP3,I$^QmL1~ Xh>G򾓄zCuf`c>m|xMo.}C,.8Eq V=9{䥮x3DFTeZ (Wr1O?i|E j?}>}J.399Ҩǂ,/i$f5BX2+nlFj,1GgZ&8\o%y>Ogoo}=+UY+F(5 Qi';@J0.C3xd[-,-lw&?a#.kriIraNT.lP)>o?OaCM= +aBS>BHK`Ad]yPؗ;Lcy?)r=V[>?.ےW8-b' 2IDg zls±^`ۍ2A<(?WV_H"ƇQZe0M{w&]ڌJe@ulL<8!cMV7nbvi6x-…BBaA=Ȳ=XF5`[ܼUW3R^.y>*"laOTl%lfƜteJ7Q1J׽|ב.EޙWP} ;=?C&9?aKߝԿ,Hi3ț"+@g bH0*mp 4 Og'CJIod||s4vzwg #K`띦]F NAG:[o=MWdu(VnBXXdd uL.׺<(( (\\Vh!- vwGTjCtd\zp@RXOt:cHC@T'KxZu>}c)Ԍ0F@6i\b{]pYsDY3 qԆ*\XXE6նl2W{Gξ˧פ_"ZJ/B[ԻXv◦ȘFe3ZdWT־`IPv 0A 8KV P &JN$')oJTw=@jj7:G SԴh5wC&7_$cP}흂`s0s\#I~hM(2-7f {LuFùTW v}yɢmaDqæV 6 AZìlh@(9͂`Gi,waOkGDy[)%B,Bh(#ʌ v>Heaj Z;{pL?۷x!Q $չ|lSo\Z儆i5ۊZ )}F'`jɊmlx4r7Rm]q/8i\jX%Y!4MQH wmSƍOLVї_SFhy,I M6DLZ )=SUU 꾘-K7&QLzެ:?> -T8O k !e{X XVR^wE͟ӄ'ps8CWskX؅CeJcM`3VrdJ7,[aɂv(,gЃY:s6?qpR_E2o4/ޘV@jhP ʼnyTiHL- ?Ql+3qr^5.lL24[K>{lק)4op @z'E0' 9Ep'zI'GvUdaQ0?8-iPD\=&w\ sRA@TbUo ,zXb\~JHwoif4XM87߸r/Evړy< [u"VS3(mur<ԫ=;FI;3m+HcĎAOa5QQdXA>\6E@Jэf_^x9+_;7U@t=0º!݄ 1 5W4Ȯ[+_uW'ך瞾Rsn#HS~ l8M716m8hD*rqѤ_#K`x&{v3ioz8lmr2j͇oa!8i*^~SQ.UweT:Fep.n2:kwqu\J<;^[^0qfӃ|bx܀812yi_}y굋0bwh ޠAoZFʹi>Fj0]_Lo˟*2N*tnvbl̇Eqؗ_[^%,'Sq@Q4߻9L3y4bm9p^wdGZ'C~ sEFѭc#}5 D+SO4cpҹ:݁;G.0!GPf<3e2L↨\y^١u(8r9Zr@\=b8ؗ- (u#؍ pa,q3"NjJIvMM)Sړ`J}(gC 8!XRR\YgCY, qj +?/8t+OQ:}yT$iތXe(%{"%$Eԉ9[τ?K*#?K7?u fXA08sd`~3cem;z%}IJ=|`ϢK D@z;A \̷)Sd[h1$VE5X au2GE*cb0pf(o=4)FUoFQDTH'):ӊ_ytć\YBy25g,/5GU?,hWmr&mLDmڢFM Ce^j樻caޛ܈19*EZL:1$Ҧ ⥒lÎu$\M^ xNF\x,]eŠsһ#udiged} 4U'fyȻ]ʌUИYW C,iܩkWHȪȉ6+K E M_lP%cz< W+4yۻ1 TTW?D ZFC%NX g>bm}pI"X ${ê5)+Jnע 48WRm5.\]Xa5Of&aAvTp GJD@ZةfX}GZzox$[ tJ2 Rcc+w6]$sd<4"l~x +hbq{5b6*muGwW#Aً0@ƲҎZSͯ;¶Z5<,V3H#~R7*{OOLz!uIQ|*8''IqO@Y:mB庒銆s kD,vL"j#UߦܻMZP..ߝ@cS3Z1wt03k:R\q7{ 8ǽE0Àf]g=򩆕ͰRK{2KBQstwT}9!/32>$"cٯ,M!+u‘ucPZs)E3%,%90΍TjʇJvj س@+?tӥ૸J?XH`7ͽ$S'5Nyy6Iŷw+1o)瘪ayW Lzp|E\yj+ꡚ=dTl101Je,98tOc,ah28aDM#(#VS`\71>];ptf wizJ2e7<cBqg`Z a2܋WujCrʨ3cɢJ3`=uf!3;;ܗG Қ,n1 4y[wlgp k n 83_oG}Z" Tҭ@zt-@m* ~<ZBK7.2B.$:jHYʜW,.v UK ovzIƍV<`=R7I[P|pe"I˷rs,~sr51ڽR"TiVGY™XPxPG&u[VuzP1"9:RCkB%8W^a_iT<fIYy$Sg7'eRζw9S\ґ\%W uuH&K_N8 YTMRKRirz.Sy>F1t7dY(9vY$Mے`VXGR| ,4?KMrm6YClU4kH0uFN龸9ɤ-lڛX}›j J cȌpT~}3@XT)7f.iV*_ܿf˭kX!I{E`aL;aӔ2VuI4.8̺Wf|sd̀[ћtr' cGvFͩc hly :o?Y/O<QAAXٯ⦚<w5! i^/g 2A<"1o .s^Vڑ8%`t(sBҲ`аn6&emUØSAq4[:£iKNv'x\'_] |j+ʒ_f&4/ -)pN)DY. &Ӫld@NIxuHfRNCF ëـY?w'Ĕ -P⿣Ub[?9%:wl& 6=@'ߺ Q蓛l'Lnm{)<.tjhz H:_0!6BgU7“ah1WNpkPLjGYyp$r\%+Hg2tr)6Sܘh&H}@Ŭ[\` |?_ij8m"+m DY+zxq# UrnׂRymm@TFfϰ$mМL70ɿj?sIIM]4M qz |̂L&>vWWq'%1z\(bkߧO+xE*a Vp1x6֬\#sZJ!;o0kO솒5YG=ƌzax&4 b~-E UD}o[Hф_>Y)`|<\ iD`r- XTepZκQ 6y 8hDz~F@I`h oRW)lƢ1.3#/?Lstb0Łranu"I\]ﲛd(Nb{(r8GZҼGK|8p˹QJ](Pz3 z.#90ͧJ\KJAP$!IvmNHc#2(K&%%  '6,YY(`) |>)}q@70"B%⼨E0߮B30]>y7!˿DD:F TeGa *+1K-ʋw5:*y[t'|Sn -0q:Ebp܌X=QX62b }\rh2$]xzbyﴌ|ؖ Jz)/<+ΩyQnpD|49l֝ HO h"Җ;sR$[5Au3~By6-6>]q:e瘽l̐((R2 xK][tqmXnej]x05OA[ڤwOxa>W| I&| @|/}ޕ\un!NSuh/~&&Go^y2|Ih\Y]wH!<BNL*42$۔~⦟j mt3[_1hfVSJ;YѮp2 OܼsVy;S"_,#q$meA%f_JY #:Є iun= -j_'*OH%a0wq?_H}sJ"C2,o8&` ?qu3Bߙv4i/0]*͒T>h&L" r,*"a`/mZi.BF(%îB_W[aD/Yesxp# ClkH(rfp Dѿ7DtYY }8baD91,g@aX *x]qz7IοCMB{dVۇG/j&quC'đqя?'v*# P엜n}j2_y˅mqwiK oWlA7Ty`X9f:`ώ<Ύ.瑲L &xMa(Ec&2  a{BD0x$,Y鼻؏wL"5;ۥMB`F mLg'mKT)g{k%|2G6F߷菹.~qRqHFg SGU;z4\0 oKC/rӄ:OtX{?ZiqεRmUрQ6Mq9j ~xQ[s؃|lg=T|[ +9fhn-6cI9/'! =WvyF݃*Aؽ^Z0kPh _; 'I6EgPc9luPv!Ǵ|/#T[Ƿ/sY\'YBhqJ&][ akN3u0dgY=Sw2937Vw{8%Π|J"k*K[+m0OxQ!opæn}JZ_c41qEQQ<0.ҩ7wW-D¢'`G;Λ 2b i,qz.k%Y!h$T`*r}g-<cDž0R0{G_g\^9KR yzMlT=g-!cۭ5K n嵔Wd36$-`Z[Ƥ9+fXhfX1W+nςLX_Zk9TL+ɄhX.Z̅ɽCnf l.Lq!R8;K0mɫ DڳVe tBOc>6#ƒ'}?aJ9*cGëV3Vt-ؽE1)t'MEb{]@VzO}er6`N>)c-~`7{?+ohDh>`NM ^+ u=ժ9i S;@yN;:I5ߜґjFXOB~2R(U&v&{nM?:tSE"ʵN1B ye؋oĦr33M__<>MI/ na% )tMǰȩ,;R.wgSVNݞnG愻~I_jE\GX24Zc ,@,JZ h$ið6Eq|v_=8\uU>Y(9]H[x 0*[[KW E$};WLܚBtG/$(:Ӯրn w Q"iw xsǒt(4OVOZթ`OGqjELӻ !?2=\Q)ִt=[I>xt!q),r@$I3K0\5YMƵf{ܮ} tx*ͨ[ix r_KX +>-d!oq}mHAuy0˟&9+orz y%u\}X%q8Z L㫪>>gs v?`JCS'jk6НL*.\%*uo5l( 1,ٲuY>sLj0l8=Aٮf':i=/G[]nT]&^U}0?ɖ<_#vsD~[k" pilJJy'׸o!cLZՍdlz` YZ