python3-apparmor-3.0.4-150500.11.9.1<>,e$p9|ڃT$/naJ4yᛔ@L/o sK93_2ոʦ.CH{Cyċhc9`['3yJWռD`%mWkw]fJ4:ħ>{O3Gc@~ͯIc%`-$*iT1ڕ/J䙸v1Izr*\{ܶa%3qwpbZ4/ Dd9lz'[L - H=ks1UXeZ#>N|cG+tehf+eceϜl>>$?d ' TA WtUU U LU U 5U UUU2XU 0"_("8"9$:.F9GTUHUIUXTY\\U]U^ bŠc3döeûfþluUv( wUxUyhSzʴCpython3-apparmor3.0.4150500.11.9.1Python 3 interface for libapparmor functionsThis package provides the python interface to AppArmor. It is used for python applications interfacing with AppArmor.e$ibs-power9-11 fSUSE Linux Enterprise 15SUSE LLC GPL-2.0-only AND LGPL-2.1-or-laterhttps://www.suse.com/Development/Libraries/Pythonhttps://launchpad.net/apparmorlinuxppc64le/S }((&_g47wJ\90QL ,b2 5,(k#)<Q>p1 @ 6<tq B;?b[&'%Ui $3)E/Px0AA큤A큤A큤A큤AA큤큤A큤eeeeeeb`%eeeeeeeeeeeeeeeeeeeeb`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%eb`%eeeeeeeeeeeeeeb`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%eeeeeeev@eb`%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-3.0.4-150500.11.9.1.src.rpmpython3-apparmorpython3-apparmor(ppc-64)@@@@@@@@@@@@@@@    libapparmor.so.1()(64bit)libapparmor.so.1(APPARMOR_1.0)(64bit)libapparmor.so.1(APPARMOR_1.1)(64bit)libapparmor.so.1(APPARMOR_2.10)(64bit)libapparmor.so.1(APPARMOR_2.11)(64bit)libapparmor.so.1(APPARMOR_2.9)(64bit)libapparmor.so.1(PRIVATE)(64bit)libapparmor1libc.so.6()(64bit)libc.so.6(GLIBC_2.17)(64bit)libdl.so.2()(64bit)libm.so.6()(64bit)libpthread.so.0()(64bit)libpython3.6m.so.1.0()(64bit)libutil.so.1()(64bit)python(abi)python(abi)python3rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)3.0.43.63.63.0.4-14.6.0-14.0-15.2-14.14.3ev@d@d@c@cbk@bi0@bZbV@bT@bRbBb<]@b@a7aZ@ap@aabaim@aEaaua $@`#@` @````_@`%@`!'`>` @__ǁ_ǁ_Q_h__@_~@_[f_P_-B@_@^m@^@^<@^j$@^,-]҇]o](]K@]]@\\@\ \\v{\I\ include in apache extra profile optional to avoid problems with empty profile directory (boo#1178527)- prepare usrmerge (boo#1029961) * use %_pamdir- update to AppArmor 3.0.1 - minor additions to profiles and abstractions - some bugfixes in libapparmor, apparmor_parser and the aa-* utils - see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_3.0.1 for the detailed upstream changelog - removed upstream(ed) patches: - changes-since-3.0.0.diff - extra-profiles-fix-Pux.diff - utils-fix-hotkey-conflict.diff- Use apache provided variables for the module_directry: + Use %apache_libexecdir + Add apache-rpm-macros BuildRequires- add utils-fix-hotkey-conflict.diff to fix a hotkey conflict in de, id and sv translations (and fix the test) (MR 675) - add extra-profiles-fix-Pux.diff to fix an inactive profile - prevents a crash in aa-logprof and aa-genprof when creating a new profile (MR 676)- update to AppArmor 3.0.0 - introduce feature abi declaration in profiles to enable use of new rule types (for openSUSE: dbus and unix rules) - support xattr attachment conditionals - experimental support for kill and unconfined profile modes - rewritten aa-status (in C), including support for new profile modes - rewritten aa-notify (in python), finally dropping the perl requirement at runtime - new tool aa-features-abi for extracting feature abis from the kernel - update profiles to have profile names and to use 3.0 feature abi - introduce @{etc_ro} and @{etc_rw} profile variables - new profile for php-fpm - several updates to profiles and abstractions (including boo#1166007) - fully support 'include if exists' in the aa-* tools - rewrite handling of alias, include, link and variable rules in the aa-* tools - rewrite and simplify log handling in the aa-logprof and aa-genprof - see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_3.0 for the detailed upstream changelog - patches: - add changes-since-3.0.0.diff with upstream fixes since the 3.0.0 release up to 3e18c0785abc03ee42a022a67a27a085516a7921 - drop upstreamed usr-etc-abstractions-base-nameservice.diff - drop 2.13-only libapparmor-so-number.diff - refresh apparmor-enable-profile-cache.diff - partially upstreamed - update apparmor-samba-include-permissions-for-shares.diff and apparmor-lessopen-profile.patch - switch to "include if exists" - apparmor-lessopen-profile.patch: add abi rule to lessopen profile - refresh apparmor-lessopen-nfs-workaround.diff - move away very loose apache profile that doesn't even match the apache2 binary path in openSUSE to avoid confusion (boo#872984) - move rewritten aa-status from utils to parser subpackage - add aa-features-abi to parser subpackage - replace perl and libnotify-tools requires with requiring python3-notify2 and python3-psutil (needed by the rewritten aa-notify) - drop ancient cleanup for /etc/init.d/subdomain from parser %pre - drop (never enabled) conditionals to build with python2 and to build the python-apparmor subpackage (upstream dropped python2 support) - drop setting PYTHON and PYTHON_VERSIONS env variable, no longer needed - set PYFLAKES path for utils check - add precompiled_cache build conditional to allow faster local builds without using kvm - remove duplicated BuildRequires: swig- update to AppArmor 2.13.5 - add missing permissions to several profiles and abstractions - bugfixes in parser and tools - fix two potential build failures in libapparmor - see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_2.13.5 for the detailed upstream changelog - remove upstream(ed) patches - changes-since-2.13.4.diff - abstractions-X-xauth-mr582.diff - sevdb-caps-mr589.diff - libvirt-leaseshelper.patch - cap_checkpoint_restore.diff - add libapparmor-so-number.diff to fix libapparmor so version (!658)- add CAP_CHECKPOINT_RESTORE to severity.db (MR 656, cap_checkpoint_restore.diff)- %service_del_postun_without_restart only works for Tumbleweed, keep using DISABLE_RESTART_ON_UPDATE for Leap 15.x- Make use of %service_del_postun_without_restart And stop using DISABLE_RESTART_ON_UPDATE as this interface is obsolete.- libvirt-leaseshelper.patch: add /usr/libexec as a path to the libvirt leaseshelper script (jsc#SLE-14253)- sevdb-caps-mr589.diff: add new capabilities CAP_BPF and CAP_PERFMON to severity.db (lp#1890547)- add abstractions-X-xauth-mr582.diff to allow reading the xauth file from its new sddm location (boo#1174290, boo#1174293)- add changes-since-2.13.4.diff with upstream changes and fixes since 2.13.4 up to 5f61bd4c: - add several abstractions related to xdg-open: dbus-network-manager-strict, exo-open, gio-open, gvfs-open, kde-open5, xdg-open - introduce @{run} variable - update dnsmasq and winbindd profile - update mdns, mesa and nameservice abstraction - some bugfixes in the aa-* tools, including a remote bugfix in the YaST AppArmor module (boo#1171315) - drop upstream(ed) patches (now part of changes-since-2.13.4.diff): - make-4.3-capabilities.diff - make-4.3-capabilities-vim.diff - make-4.3-fix-utils-network-test.diff - make-4.3-network.diff - abstractions-add-etc-mdns.allow-to-etc-apparmor.d-abstractions-mdns.patch - apply usr-etc-abstractions-base-nameservice.diff only for Tumbleweed, but not for Leap 15.x where it's not needed - refresh usr-etc-abstractions-base-nameservice.diff- Add abstractions-add-etc-mdns.allow-to-etc-apparmor.d-abstractions-mdns.patch (bsc#1168306)- fix build with make 4.3 by backporting some commits from upstream master (boo#1167953): - make-4.3-capabilities.diff - make-4.3-capabilities-vim.diff - make-4.3-network.diff - make-4.3-fix-utils-network-test.diff- update to AppArmor 2.13.4 - several abstraction updates (including boo#1153162) - disallow writing to fontconfig cache in abstractions/fonts - some bugfixes in the aa-* tools - fix log parsing for logs with an embedded newline - see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_2.13.4 for the detailed upstream changelog - drop upstreamed patches: - abstractions-ssl-certbot-paths.diff - apparmor-krb5-conf-d.diff - libapparmor-python3.8.diff - usr-etc-abstractions-authentification.diff - refresh usr-etc-abstractions-base-nameservice.diff- add usr-etc-abstractions-base-nameservice.diff to adjust abstractions/base and nameservice for /usr/etc/ (boo#1161756)- Properly pull in full python3 interpreter- add libapparmor-python3.8.diff to fix building the libapparmor python bindings (deb#943657)- add usr-etc-abstractions-authentification.diff to allow reading /usr/etc/pam.d/* and some other authentification-related files (boo#1153162)- add abstractions-ssl-certbot-paths.diff - add certbot paths to abstractions/ssl_certs and abstractions/ssl_keys- add apparmor-krb5-conf-d.diff for kerberos client- update to 2.13.3 - profile updates for dnsmasq, dovecot, identd, syslog-ng - new "lsb_release" profile (only used when using "Px -> lsb_release") - fix buggy syntax in tunables/share - several abstraction updates - parser: fix "Px -> foo-bar" (the "-" was rejected before) - several bugfixes in aa-genprof and aa-logprof - some fixes in cache handling - see https://gitlab.com/apparmor/apparmor/wikis/Release_Notes_2.13.3 for the detailed upstream changelog - drop upstream(ed) patches: - apparmor-nameservice-resolv-conf-link.patch - profile_filename_cornercase.diff - dnsmasq-libvirtd.diff - dnsmasq-revert-alternation.diff - usrmerge-fixes.diff - libapparmor-swig-4.diff - re-number remaining patches- add upstream libapparmor-swig-4.diff: fix libapparmor tests with swig 4.0 (boo#1135751)- Disable LTO (boo#1133091).- update lessopen.sh profile for usrMerge (bash and tar) (boo#1132350)- add usrmerge-fixes.diff: fix test failures when /bin/sh is handled by update-alternatives (boo#1127877)- add dnsmasq-revert-alternation.diff: revert path alternation in dnsmasq profile and re-add peer=/usr/sbin/libvirtd rules to avoid breaking libvirtd (boo#1127073)- add dnsmasq-libvirtd.diff: allow peer=libvirtd in the dnsmasq profile to match the newly added libvirtd profile name (boo#1118952#c3)- Use %license instead of %doc [bsc#1082318]- add apparmor-lessopen-nfs-workaround.diff: allow network access in lessopen.sh for reading files on NFS (workaround for boo#1119937 / lp#1784499)- add profile_filename_cornercase.diff: drop check that lets aa-logprof error out in a corner-case (log event for a non-existing profile while a profile file with the default filename for that non-existing profile exists) (boo#1120472)- netconfig: write resolv.conf to /run with link to /etc (fate#325872, boo#1097370) [patch apparmor-nameservice-resolv-conf-link.patch]- update to AppArmor 2.13.2 - add profile names to most profiles - update dnsmasq profile (pid file and logfile path) (boo#1111342) - add vulkan abstraction - add letsencrypt certificate path to abstractions/ssl_* - ignore *.orig and *.rej files when loading profiles - fix aa-complain etc. to handle named profiles - several bugfixes and small profile improvements - see https://gitlab.com/apparmor/apparmor/wikis/Release_Notes_2.13.2 for the detailed upstream changelog - remove upstreamed fix-syntax-error-in-rc.apparmor.functions.patch- update to 2.13.1 - add qt5 and qt5-compose-cache-write abstractions - add @{uid} and @{uids} kernel var placeholders - several profile and abstraction updates - ignore "abi" rules in parser and tools (instead of erroring out) - utils: fix overwriting of child profile flags if they differ from the main profile - several bugfixes (including boo#1100779) - see https://gitlab.com/apparmor/apparmor/wikis/Release_Notes_2.13.1 for the detailed upstream changelog - remove upstream(ed) patches: - aa-teardown-path.diff - fix-apparmor-systemd-perms.diff - logprof-skip-cache-d.diff - fix-samba-profiles.patch - make-pyflakes-happy.diff - dnsmasq-Add-permission-to-open-log-files.patch - refresh apparmor-samba-include-permissions-for-shares.diff - add fix-syntax-error-in-rc.apparmor.functions.patch- update rpmlintrc: - whitelist .features file which is part of the pre-compiled cache - comment out filters for the disabled tomcat_apparmor subpackage- Backport dnsmasq fix: 025c7dc6 - dnsmasq-Add-permission-to-open-log-files.patch (boo#1111342)- add make-pyflakes-happy.diff to fix an unused variable (SR 629206)- add fix-samba-profiles.patch - smbd loads new shared libraries. Allow winbindd to access new kerberos credential cache location (boo#1092099)- exclude the /etc/apparmor.d/cache.d/ directory from aa-logprof parsing (logprof-skip-cache-d.diff)- add fix-apparmor-systemd-perms.diff - fix permissions of /lib/apparmor/apparmor.systemd (boo#1090545)- create and package precompiled cache (/usr/share/apparmor/cache, read-only) (boo#1069906, boo#1074429) - change (writeable) cache directory to /var/cache/apparmor/ - with the new btrfs layout, the only reason for using /var/lib/apparmor/cache/ (which was "it's part of the / subvolume") is gone, and /var/cache makes more sense for the cache - adjust parser.conf (via apparmor-enable-profile-cache.diff) to use both cache locations - clear cache also in %post of abstractions package- update to AppArmor 2.13 - add support for multiple cache directories and cache overlays (boo#1069906, boo#1074429) - add support for conditional includes in policy - remove group restrictions from aa-notify (boo#1058787) - aa-complain etc.: set flags for profiles represented by a glob - aa-status: split profile from exec name - several profile and abstraction updates - see https://gitlab.com/apparmor/apparmor/wikis/Release_Notes_2.13 for the detailed upstream changelog - drop upstreamed patches and files: - aa-teardown - apparmor.service - apparmor.systemd - 32-bit-no-uid.diff - disable-cache-on-ro-fs.diff - dovecot-stats.diff - parser-write-cache-warn-only.diff - set-flags-for-profiles-represented-by-glob.patch - fix-regression-in-set-flags.patch - drop spec code that handled installing aa-teardown, apparmor.service and apparmor.systemd (now part of upstream Makefile) - simplify "make -C profiles parser-check" call (upstream Makefile bug that required to call "cd" was fixed) - add aa-teardown-path.diff - install aa-teardown in /usr/sbin/ - move 'exec' symlink to parser package (belongs to aa-exec)- Set flags for profiles represented by glob (bsc#1086154) set-flags-for-profiles-represented-by-glob.patch fix-regression-in-set-flags.patch- add dovecot-stats.diff: - add dovecot/stats profile and allow dovecot to run it (boo#1088161) - allow dovecot/auth to write /run/dovecot/old-stats-user (part of boo#1087753) - update 32-bit-no-uid.diff with upstream fix- Change of path of rpm in lessopen.sh (boo#1082956)- add disable-cache-on-ro-fs.diff - disable write cache if filesystem is read-only and don't bail out (bsc#1069906, bsc#1074429)- add parser-write-cache-warn-only.diff to make cache write failures a warning instead of an error (boo#1069906, boo#1074429) - reduce dependeny on libnotify-tools (used by aa-notify -p) to "Suggests" to avoid pulling in several Gnome packages on servers (boo#1067477)- update to AppArmor 2.12 - add support for 'owner' rules in aa-logprof and aa-genprof - add support for includes with absolute path in aa-logprof etc. (lp#1733700) - update aa-decode to also decode PROCTITLE (lp#1736841) - several profile and abstraction updates, including boo#1069470 - preserve errno across aa_*_unref() functions - see https://gitlab.com/apparmor/apparmor/wikis/Release_Notes_2.12 for the detailed upstream changelog - drop upstreamed patches: - read_inactive_profile-exactly-once.patch - utils-fix-sorted-save_profiles-regression.diff - lessopen profile: change all 'rix' rules to 'mrix' - add 32-bit-no-uid.diff to fix handling of log events without ouid on 32 bit systems - no longer package static libapparmor.a- update to AppArmor 2.11.95 aka 2.12 beta1 - add JSON interface to aa-logprof and aa-genprof (used by YaST) - drop old YaST interface code - update audio, base and nameservice abstractions - allow @{pid} to match 7-digit pids - see http://wiki.apparmor.net/index.php/ReleaseNotes_2_11_95 for the detailed upstream changelog - drop upstreamed patches - apparmor-yast-cleanup.patch - apparmor-json-support.patch - nameservice-libtirpc.diff - drop obsolete perl modules (YaST no longer needs them) - drop patches that were only needed by the obsolete perl modules: - apparmor-utils-string-split - apparmor-abstractions-no-multiline.diff - drop profiles-sockets-temporary-fix.patch - obsoleted by a fix in apparmor_parser - refresh utils-fix-sorted-save_profiles-regression.diff - add aa-teardown (new script to unload all profiles) - make ExecStop in apparmor.service a no-op (workaround for a systemd restriction, see boo#996520 and boo#853019 for details) - lessopen profile: allow capability dac_read_search and dac_override, allow groff to execute several helpers (boo#1065388)- read_inactive_profile-exactly-once.patch (bsc#1069346) Perform reading of inactive profiles exactly once.- update to AppArmor 2.11.1 - add permissions to several profiles and abstractions (including lp#1650827 and boo#1057900) - several fixes in the aa-* tools (including lp#1689667, lp#1628286, lp#1661766 and boo#1062667) - fix downgrading/converting of 'unix' rules (will be supported in kernel 4.15) to 'network unix' rules in apparmor_parser (boo#1061195) - see http://wiki.apparmor.net/index.php/ReleaseNotes_2_11_1 for upstream changelog - remove upstream(ed) patches - upstream-changes-r3616..3628.diff - upstream-changes-r3629..3648.diff - parser-tests-dbus-duplicated-conditionals.diff - apparmor-fix-podsyntax.patch - sshd-profile-drop-local-include-r3615.diff - refresh apparmor-yast-cleanup.patch - add utils-fix-sorted-save_profiles-regression.diff to fix a regression in displaying the "changed profiles" list in aa-logprof- add nameservice-libtirpc.diff to fix NIS/YP logins (boo#1062244)- profiles-sockets-temporary-fix.patch to cater to nameservices with the new sockets mediation, until unix rules are upstreamed (boo#1061195)- add apparmor-fix-podsyntax.patch from mailing list to fix compilation with perl 5.26- do not require exact X.Y version of "python3" - require also matching python(abi) which is arguably more important- don't rely on implementation details for reload in %post- add JSON support. Required for FATE#323380. (apparmor-yast-cleanup.patch, apparmor-json-support.patch)- add upstream-changes-r3629..3648.diff: - preserve unknown profiles when reloading apparmor.service (CVE-2017-6507, lp#1668892, boo#1029696) - add aa-remove-unknown utility to unload unknown profiles (lp#1668892) - update nvidia abstraction for newer nvidia drivers - don't enforce ordering of dbus rule attributes in utils (lp#1628286) - add --parser, --base and --Include option to aa-easyprof to allow non-standard paths (useful for tests) (lp#1521031) - move initialization code in apparmor.aa to init_aa(). This allows to run all utils tests even if /etc/apparmor.d/ or /sbin/apparmor_parser don't exist. - several improvements in the utils tests - drop upstreamed python3-drop-re-locale.patch - no longer delete/skip some of the utils tests (to allow this, add parser-tests-dbus-duplicated-conditionals.diff) - add var.mount dependeny to apparmor.service (boo#1016259#c34)- Cleanup spec file: - don't use insserv if we afterwards call systemd, this can have bad side effects - remove dead code - remove now obsolete 'distro' checks - Replace init.d script with new wrapper working with systemd- add python3-drop-re-locale.patch: remove deprecated re.LOCALE flag in Python UI as it was dropped from Python 3.6 (lp#1661766)- Fix RPM groups- add upstream-changes-r3616..3628.diff: - update abstractions/base, abstractions/apache2-common and dovecot profiles - merge ask_the_questions() of aa-logprof and aa-mergeprof - pass LDFLAGS when building parser, libapparmor perl bindings and pam_apparmor - adjust deleting the cache in profiles %post to the new cache location - silence errors when deleting the cache (boo#976914)- split libapparmor into separate spec to get rid of build loop involving mariadb, systemd, apparmor, libapr and mariadb again (see the discussion in SR 448871 for details) - libapparmor.spec is based on the AppArmor 2.11 apparmor.spec, but with minimum BuildRequires- update to AppArmor 2.11.0 - apparmor_parser now supports parallel compiles and loads - add full support for dbus, ptrace and signal rules and events to the utils - full rewrite of the file rule handling in the utils - lots of improvements and fixes - see http://wiki.apparmor.net/index.php/ReleaseNotes_2_11 for the detailed changelog - patches: - add sshd-profile-drop-local-include-r3615.diff to fix 'make check' - drop aa-unconfined-fix-netstat-call-2.10r3380.diff, no longer needed - refresh apparmor-abstractions-no-multiline.diff - refresh apparmor-samba-include-permissions-for-shares.diff - spec changes: - aa-unconfined switched to using ss (from iproute2), adjust Recommends: - move libapparmor to /usr/lib*/ - drop %if %suse_version checks for 12.x - change several Obsoletes from %version to < 2.9. Those package names weren't used since years, and 2.9 is still a careful choice - include apparmor.service independent of %suse_version - techdoc.pdf is now shipped in upstream tarball to reduce BuildRequires - drop latex2html, texlive-* and w3m BuildRequires - techdoc.txt and techdoc.html not included, drop them from the package - run most of utils/ make check (some tests expect /etc/apparmor.d/ and /sbin/apparmor_parser to exist, skip them) - BuildRequires python3-pyflakes (utils tests) and dejagnu (libapparmor tests) - drop sed'ing python3 into aa-* shebang (upstreamed) - build binutils - aa-exec is now written in C and lives in /usr/bin/, move it to the apparmor_parser package and create a compability symlink in /usr/sbin/ - aa-exec manpage moved to section 1 - aa-enabled is a small new tool to find out if AppArmor is enabled - package new aa_stack_profile(2) manpage- change /etc/apparmor.d/cache symlink to /var/lib/apparmor/cache/. This is part of the root partition (at least with default partitioning) and should be available earlier than /var/cache/apparmor/ (boo#1015249, boo#980081, bsc#1016259) - add dependency on var-lib.mount to apparmor.service as safety net- update to AppArmor 2.10.2 maintenance release - lots of bugfixes and profile updates (including boo#1000201, boo#1009964, boo#1014463) - see http://wiki.apparmor.net/index.php/ReleaseNotes_2_10_2 for details - add aa-unconfined-fix-netstat-call-2.10r3380.diff to fix a regression in aa-unconfined - drop upstream(ed) patches: - changes-since-2.10.1--r3326..3346.diff - changes-since-2.10.1--r3347..3353.diff - libapparmor-fix-import-path.diff (upstream fix is slightly different) - nscd-var-lib.diff - refresh apparmor-abstractions-no-multiline.diff- add nscd-var-lib.diff to allow /var/lib/nscd/ in the nscd profile and abstractions/nameservice (path changed in latest nscd in Tumbleweed)- add changes-since-2.10.1--r3347..3353.diff with upstream changes and fixes in the 2.10 branch, including - allow writing *.qf files (for disk-based buffering) in syslog-ng profile - add several permissions to the dovecot profiles (deb#835826) - add a missing path in the traceroute profile- add changes-since-2.10.1--r3326..3346.diff with upstream changes and fixes since the 2.10.1 release, including - allow dac_override in winbindd profile (boo#990006#c5) - allow mr for /usr/lib*/ldb/*.so in samba abstractions (needed since Samba 4.4.x, boo#990006) - abstractions/nameservice: also support ConnMan-managed resolv.conf - let aa-genprof ask about profiles in extra dir (again) - fix aa-logprof "add hat" endless loop (lp#1538306) - honor 'chown' file events in logparser.py - ignore log file events with a request mask of 'send' or 'receive' because they are actually network events (lp#1577051, lp#1582374) - accept hostname with dots when parsing logs (lp#1453300 comments #1 and #2) - fix python LibAppArmor import failures with swig > 3.0.8 (boo#987607) (libapparmor-fix-import-path.diff) - refresh apparmor-abstractions-no-multiline.diff - drop upstreamed profiles-ping-inet6-r3449.diff - add %check section - runs libapparmor (including swig bindings), parser and profiles tests - add BuildRequires: perl(Locale::gettext) - needed for parser tests- add profiles-ping-inet6-r3449.diff - latest ping also does IPv6 (boo#980596)- update to AppArmor 2.10.1 (2.10 branch r3326): - fix incorrect output of child profile names (apparmor_parser -N) which caused 'rcapparmor reload' to remove child profiles and hats (lp#1551950) - fix a crash in aa-logprof / logparser.py for change_hat log events (lp#1523297) and log events that look like file events, but aren't (lp#1540562, lp#1525119, lp#1466812) - write unix rules when saving a profile (lp#1522938, boo#954104#c3) - several fixes for variable handling in aa-logprof - map c (create) log events to w instead of a - add python to the "no Px rule" list in logprof.conf - let aa-logprof check for duplicate profiles - let aa-status work without the apparmor.fail python module (boo#971917, lp#1480492) - add permissions in several profiles (including boo#948584, boo#948753, boo#954959, boo#954958, boo#971790, boo#964971, boo#921098, boo#923201 and boo#921098#c15). - and many more fixes, see the full changelog at http://wiki.apparmor.net/index.php/ReleaseNotes_2_10_1 - drop upstream(ed) patches: - fix-initscript-aa_log_end_msg.diff - syslog-ng-profile-boo948584.diff - upstream-profile-updates-r3205-3241.diff - refresh patches: - apparmor-abstractions-no-multiline.diff - apparmor-samba-include-permissions-for-shares.diff - drop libapparmor autogen.sh call (broke the build) and remove libtool BR- add syslog-ng-profile-boo948584.diff - add several permissions needed by latest syslog-ng (boo#948584, boo#948753) - add upstream-profile-updates-r3205-3241.diff with several profile updates: - add /usr/share/locale-bundle/** to abstractions/base - allow dnsmask to use /bin/sh (boo#940749) and /bin/dash - allow dovecot imap to read /run/dovecot/mounts - allow avahi-daemon to write to /run/systemd/notify - allow ntpd to read $PATH directory listings (boo#945592, boo#948752) - update dhclient profile - allow skype to read @{PROC}/@{pid}/net/dev (boo#939568) - and some other small updates - drop upstreamed apparmor-winbindd-r3213.diff (included in the upstream-profile-updates patch)- netstat moved to net-tools-deprecated in Tumbleweed (boo#944904)- add apparmor-winbindd-r3213.diff - add missing k permissions for /etc/samba/smbd.tmp/msg/* in winbindd profile (boo#921098 #c15..19)- add fix-initscript-aa_log_end_msg.diff - fixes ugly initscript output (boo#862170)- update to AppArmor 2.10 (trunk r3205) - profile names can now contain variables - improved profile compile time in apparmor_parser - lots of improvements, refactoring and bugfixes in the aa-* tools - new apis for managing and loading profile caches into the kernel in libapparmor - lots of profile updates - see http://wiki.apparmor.net/index.php/ReleaseNotes_2_10 for the complete changelog with more details - add new apparmor_private.h and the aa_query_label(2), aa_features(3), aa_kernel_interface(3), aa_policy_cache(3), aa_splitcon(3) manpages to libapparmor-devel - drop apparmor-2.5.1-edirectory-profile patch - it's most probably no longer needed (see boo#621394 for details) - drop upstreamed samba-4.2-profiles.diff - refresh apparmor-samba-include-permissions-for-shares.diff- systemd-rpm-macros and %systemd_requires were at the wrong place, move them to the parser package (boo#931792)- update to AppArmor 2.9.2 (2.9 branch r2911) - lots of bugfixes in the parser and the aa-* tools (including boo#918787) - update dovecot and dnsmasq profiles and several abstractions (including boo#911001) - see http://wiki.apparmor.net/index.php/ReleaseNotes_2_9_2 for the full changelog - remove upstream(ed) patches apparmor-changes-since-2.9.1.diff and apparmor-fix-stl-ostream.diff - replace GPG key with new AppArmor GPG signing key, see https://launchpad.net/apparmor/+announcement/13404- make sure %service_del_postun doesn't call systemctl try-restart (boo#853019, bare systemd edition) - add samba-4.2-profiles.diff: update samba (winbindd and nmb) profiles for samba 4.2 (boo#921098, boo#923201)- only install apparmor.service for openSUSE > 13.2- Add a native systemd unit which *at the moment* only wraps/masks the early boot script.- add apparmor-fix-stl-ostream.diff which fixes odd uses of std::ostream which are not valid. Fixes build with GCC 5- allow lessopen.sh to run /usr/bin/unzip-plain (boo#906858)- add Requires: python3 to python3-apparmor package - readline isn't part of python3-base (boo#917577)- add apparmor-changes-since-2.9.1.diff with upstream fixes since the 2.9.1 release - update logparser.py to support changed syslog format (lp#1399027) - update usr.sbin.dovecot and usr.lib.dovecot.imap{, -login} profiles (lp#1296667) - update the mysqld profile - fix network rule description in apparmor.d(5) manpage - drop upstreamed dnsmasq-profile-fixes.patch - update expired GPG key- update to AppArmor 2.9.1 (2.9 branch r2831) - fix log parsing for 3.16 kernels and syslog-style logs (boo#905368) - several fixes and performance improvements in the aa-* utils - profile updates for dnsmasq (boo#907870), nscd (boo#904620#c14 and bnc#908856), useradd, sendmail, man and passwd - see http://wiki.apparmor.net/index.php/ReleaseNotes_2_9_1 for full release notes - refresh dnsmasq-profile-fixes.patch- Fix dnsmasq profile to allow executing bash to run the --dhcp-script argument. Also fixed /usr/lib -> /usr/{lib,lib64} to get libvirt leasehealper script to run even on x86_64. dnsmasq-profile-fixes.patch. boo#911001- rename lessopen.sh profile file to usr.bin.lessopen.sh to match the script filename- add apparmor-lessopen-profile.patch: /usr/bin/lessopen.sh needs confinement. bnc#906858- delete cache in apparmor-profiles %post (workaround for bnc#904620#c8 / lp#1392042)- No longer perform gpg validation; osc source_validator does it implicit: + Drop gpg-offline BuildRequires. + No longer execute gpg_verify.- fix bashism in post script- update to AppArmor 2.9.0 (r2759) - change aa-mergeprof to the final commandline syntax - lots of bugfixes in the aa-* tools (bnc#900163, lp#1328707 and several bugs without a formal bugreport) - small additions to gnome, freedesktop.org, ubuntu-browsers.d/java and user-mail abstractions - fix mod_apparmor to not break basic auth - update perl modules to support signal, unix and ptrace rules (bnc#900013) - don't warn about rules not supported by the kernel - fix logging of "audit capability" (lp#1378091) - add support for the "hat" keyword in apparmor.vim - build html version of apparmor.vim manpage again (lp#1366572) - see also http://wiki.apparmor.net/index.php/ReleaseNotes_2_9_0 - update apparmor-abstractions-no-multiline.diff - remove upstreamed apparmor-profiles-ntpd-pid-location.diffibs-power9-11 1696248612  !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTU3.0.4-150500.11.9.13.0.4-150500.11.9.1 apparmorapparmor-3.0.4-py3.6.egg-infoPKG-INFOSOURCES.txtdependency_links.txttop_level.txt__init__.py__pycache____init__.cpython-36.pycaa.cpython-36.pycaare.cpython-36.pyccleanprofile.cpython-36.pyccommon.cpython-36.pycconfig.cpython-36.pyceasyprof.cpython-36.pycfail.cpython-36.pyclogparser.cpython-36.pycnotify.cpython-36.pycprofile_list.cpython-36.pycprofile_storage.cpython-36.pycregex.cpython-36.pycrules.cpython-36.pycsandbox.cpython-36.pycseverity.cpython-36.pyctools.cpython-36.pyctranslations.cpython-36.pycui.cpython-36.pycaa.pyaare.pycleanprofile.pycommon.pyconfig.pyeasyprof.pyfail.pylogparser.pynotify.pyprofile_list.pyprofile_storage.pyregex.pyrule__init__.py__pycache____init__.cpython-36.pycabi.cpython-36.pycalias.cpython-36.pyccapability.cpython-36.pycchange_profile.cpython-36.pycdbus.cpython-36.pycfile.cpython-36.pycinclude.cpython-36.pycnetwork.cpython-36.pycptrace.cpython-36.pycrlimit.cpython-36.pycsignal.cpython-36.pycvariable.cpython-36.pycabi.pyalias.pycapability.pychange_profile.pydbus.pyfile.pyinclude.pynetwork.pyptrace.pyrlimit.pysignal.pyvariable.pyrules.pysandbox.pyseverity.pytools.pytranslations.pyui.pyLibAppArmorLibAppArmor-3.0.4-py3.6.egg-infoPKG-INFOSOURCES.txtdependency_links.txttop_level.txtLibAppArmor.py_LibAppArmor.cpython-36m-powerpc64le-linux-gnu.so__init__.py__pycache__LibAppArmor.cpython-36.pyc__init__.cpython-36.pyc/usr/lib/python3.6/site-packages//usr/lib/python3.6/site-packages/apparmor-3.0.4-py3.6.egg-info//usr/lib/python3.6/site-packages/apparmor//usr/lib/python3.6/site-packages/apparmor/__pycache__//usr/lib/python3.6/site-packages/apparmor/rule//usr/lib/python3.6/site-packages/apparmor/rule/__pycache__//usr/lib64/python3.6/site-packages//usr/lib64/python3.6/site-packages/LibAppArmor-3.0.4-py3.6.egg-info//usr/lib64/python3.6/site-packages/LibAppArmor//usr/lib64/python3.6/site-packages/LibAppArmor/__pycache__/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:30900/SUSE_SLE-15-SP5_Update/bf7fc34cc3d034d75e6790157f5ae668-apparmor.SUSE_SLE-15-SP5_Updatedrpmxz5ppc64le-suse-linuxdirectoryASCII textpython 3.6 byte-compiledPython script, ASCII text executable, with very long linesPython script, ASCII text executablePython script, UTF-8 Unicode text executablea /usr/bin/python3 script, UTF-8 Unicode text executableELF 64-bit LSB shared object, 64-bit PowerPC or cisco 7500, version 1 (SYSV), dynamically linked, BuildID[sha1]=6e5b61a7955b463d41bd9efa99c015f9dd0cd20a, stripped  !"#$%&'()*+,-./0123456789:;<=>?@APQRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRR RRRRRRR R R RR RRRRRFG3+iWutf-8d3fe3471df83511aa0e9caa2d510ed759ecc59686d461c7e75672cffb466b8ac? 7zXZ !t/|]"k%a D岻N91nHG-ŖEޠ*1w"\u /M\(E4Vִ(ظFo.Dԙo:r~\}閽cek!C0lmQSΪ|ƶ :2lXB3l.bC~VIѥʔ|J~e{i2ۀ*+\$UJ)5nJNti;ۀ/<duI/BG)֔>F*տ>iug7ؽm5S[jRaك" UDG n󬘍¶w -பdW6͌$'3D EGnmU8KPP`d4mcE̫X q#vW%HhnG>JmRer8]pd̝JZ}k* tvd]AWJ3wSTd qD WΣJl6S:ǝv$dGm"VJAͧ&]52k=%WInKhȀ|iOaY&Owy塭!Q|nε Va&w:0}& *N>W%멡n)#\"ٿWΪ3|u9cʧeZ.S)q㠘ya1훣܈b&rDkT +;Xt<]4j8k 9άZf %ik~o `DO&d%6l f:It:/4kA9P~҈,م! #h:Kxs7R(yU heu|E,J({o5͚/~uL ,]c ?52z]/+*Y66֓8C} 8ܿw!e[6q<=& g Sb4& L__ 3VdZnOpS ~k{LOuCj~ .O=pRa  ]t(5ҹcNsbWtrv+!9󕃃X-B,nPӏ5?b]DR.OMh6vDn6<;ˮ7vL<8hq,OA䆑8l&p .B)*OCnh1maj{^(ل~1}끫&x'l;v&,(a4Y',K]́P͖}^ś*^rUO*U@mt-6{N4YxUA9VwCҿ͏Usiĉ/ +u7^t>1W]zCҭrTǚDKHS೩i/cdΗxUWP.`3=ەKNVB^a.Ycwwq]FX5 Sȿ{FVc[VVVE^(9q$tS\,Rߩ?PpSctY"㺜Q[!T"(REPƑrAfPߗ oY>:@0%:Nys1$^:{XB(O.U@ߟ9`f&H2_)Yf[H/qY&.ZŸ͘PMӫEbu.aDzPk;gcbj>EK5;{;x9AF5] !辘ؘV`"ViRu#L ZKprgbHQlv+ZHՊTkİܢW=.> uR/'sH/+ 6>mSNY=av3&rU'?H>:Om݊Ӧx7 g 5@[-зd$N B6x.-4?,Z6aD>K̠6 /yz@98*EPkj1IS?* * ~'C" p8Z@ C hqc4{$YB}gu3$FrP¼]5gTIH= ֟ģszGdFH|ZmGW}NIC1X6?++ou S'c| ex5tlx,ӼE?V}vVǪyޓ =Rѥ.{[^}KLT#h_ן=o٥YD7 "ڹy"uolRx 54":)|TP..Wɠ[B@/ĥFvBr'62CGGY]H>" +:qU!4Vfу7ev)3bP \t0R1u!a!K-v&E7eVqHU3a멗cET\OP}vÀ-+l RgЁeUǕר@Vȼ2Mۍ=gm3Iۦv"7jE54cgI&:ivl:4C,4Xj^6_ߋ>0tVi^K@}m\K._X*GZRlgߡ6UWfOe>U], Eh@ g4+ߘF [V, t$\i^CTsTVb~tF\\t 9H$L_M#>,m@M-*QIlޚ\c_DP ̯NDu!ue 0,--,8/3:TAPSi^=zTna)Dsޚ#XHGyK+ Z([r$+GeZku3IœEC&27>e$'e@@^ o#5jaiIzs8{Sf?vk3RSP74j'uu+nc3?xa#J'w9v)Ncu Kvd ,[:j61՞c=S\iԃ"_4LvzaQ׿s~MysJ6"D=$2gYor&X2/WȘv黁LqT9~XhXMߥY D櫐bj`B5߈oVb %!ˠ~U_q_yɂ37RgxRIPJ6~pPCxQU<8 3tH群bb`E*M{JH !o_Zp>LABC.Jq›"4N?Ekj\ʆ tB*Wl*;"LLpgY'Ьy&d}W_?&tYV$kK^,LL˟xDnvbw3.s7# ćĩ nR_=}kgKǾstZ_+ K2"|.`PO++x= dqB7W 8҃xo eȲ}Z[lFf:-m8o ^hUj3L$jvZ]ր'"l|f].pœB%,jN N]_xmg]Y:f\JjRrt5YUS!&ВHt~Y{!jfPVӢI6Aw&1a/V㤡Vws-.H aff`TkoUm8a3;rLE&0Hܘe4x OlvRs{s?V$۱ߢI@'ůAZҘ _|nz12u,h=.Y4Ƿ{HRfx,\}P\ `p|ߔZLaGĻ xb1e9r2UYi4;Oǣ0D$#C激0USVeM8l2YVpFJsJKsgjŠ Xy1*Vo$Ѯ'u{O|hsC' 2L* 4 iC@8/ gUxގI}N{=JR:1j $Oۏq4`7$a5l)x-)%cߥNHK@9<-V[Z 3`GcU7-Mdy$"''K m\bָlawnМ"QK4w.7Ć16' y`oJ咓rk< ۬6R}j|5 g+y\ENQu#GsLȀ>1qq29T-!d ǽֵYLj TXoB6?川@wec3 L/a?;dఢF(jm4Yx H~h&C=Q(S8r;5aʟdryeth\O45 "Gwy +zC*Z|@8 "l ~7pF!{2Okat~oexNpOH7c ً^1Toa');+Dָ tj* C;m#N*2U_b2 wك#p8Xj mp`JuԖ  >Uv[A{ @55Jª@r);}} <)anZx*@ AmLrpV| Ɩ'!_L5Sf fPW]`G*H@\R{i07`NC!GY-K{Woջle69pwA\LܡyUΎhQ;^(:v2^[XNo9~Sw%ׅ:>FxeTܳ>gQ3-U p< "z;wb]7"8Z*ZZ|5N31CM!w#8{{ȶ"m!}s;T㐖NdfiNz"$% Sieug* tCd4q+TԩR|za4 SY1L=1D+nKD!0Y3QN:z%L|l Z?4& 5 TR)uq>5^f&|8 %r|S\ ld#^yȁum1r3^:'^+؂XNP-5G3t0bS"Xf}w[:ЛW԰})}TIH6j7btW%ӟ|¥D GSHWdKB;gS$2_R,Ė/!ql C>ȡۈx*:" ȓXI~bMVB0 ,.e nU:+yyG!Ղ#MQLVI0a\-u򚑆'ZQiUNO7C6v#؁XWu˝0,/* ˪wz+})gQѶ$RaEA 8jkU > g0rYJw1]hW۰m 9 `F+]5⍧'D^mWsi(%_qG>boQQӅ$ώGrS`^^/PY~c쳏"ng4- [`{B=6Es^U%ʎpL9=EN$1}hu 0JWuUX3R}|q~A>ZPȌZd8:-GfhaDI\3QoͥdDK k {=Zם)Q^+J%1<:tJ7ě&tv{m8e;pEiG+WW=wϙRRE֠mH4#ߖ}DTa :}G/Ldz[P_z(wGbI=T4`|LU7š&Y AfXeDŽGH#"1bRŒHW yD⽥*96`'\nnS*>3ކEK;Czd|oqo)pͼJF*nG/vVCcX*Γ`SWDZ)" 3hs<|ߢM?8f<nϼ3KX.]R+pRWX,w/3[*>{&"q*?&Ba"X#ФsH pFiuIw㌥GPQڹuJu/&lasӂRXrf ګbMT@G]m%0J68ģ)U7 ~+ öʹyKb+i<_}U27'\PCX93q\RijWʳ:j!i^1ia7"eiS#chNl}jw`$:%UPZeg%Rč{+;ʲ*lHf𡸷ՀXjk_~x-\0/.fp8,/29Q=]ó)ER(ҧ"x]:m{3\Sk@5A!, R-hZjPN3AzW dId05OݥG>6;UpaK@Yy2d}9鑘LW09 yT5 _PB瞛>o8L[n5m Z|zͧP>M,n=T~btC+@šp{ў֠2׮cVG4,ß?ԍqŠzٹ54sa@N2|bqؙa@Go*(Q ./;%i0 Ipsin7 4D] gC/y&26O Rx"f`V;K^Âvw #ml1NIw)b)xZ=8 >GPȼ?k>Pf6REC5#4v6:#׽O4yM\C#zzCXx wެ` k3b}ڱ'%QnR+V:+η]#*1'YU^GZF~N jaDM[FYś6)I.ݽYζ |*5d2ՙK)g') 4O {i4"ē1l'N@ P+;w`Xy7rlg `@JB-9HW7sj΋ %3(:䒳A5C}#0EuH!I*Pϫٗ@[}ܪGzƟ#]4ڔ͛n4L &z,3e^=PItjs\pnFKDE KJ]d0MqL\;I톮窀A/RǮ1]{>jc)Ibaw{rcof4MdZw )Y%۶32zFlu=ڹ2@I'<(l D*,uSJ(+r8UaX0|/?4 2|j )U^ 0P !\/R6LQgD;=8Șa+&D9უU"}O^SkxV !J(t PZ2(cܻ1e}r25Rb(NǬs1 (vp̥?1yk ]H.qы&O߱cw0Pa<Ǥz*|&XԦy[9 Mc,F> 6 )v.:2mO>DgGNJI6^/^PqJVpDyGē(5P}HLb&!P&džnc Q`Bq[1(end{2nw39=?x.LܩLkw!iXx)GAMS.d49ZzJ83Rk:G hve| [ /JKþEgNO5 2UQ|h_<9e$+Pr[޶u^Cg{yIQ$KA#P4}D+v$v{JB1%a~/hI24,9FrIlyJCo71|cz+Ϡ%#F 91tP)y:П{2sp"RsvO;F,Td5D@B[H7 bܨyr`vB YvxS|w-2|9Y-GH)yMo,mto9}.8. L^tZhnC vUxik\qoE.D.2R=&d hnߪ7J3f-oX- dj} x恁@5lC8&a@G5#-DYץ߾c@J9t8Esҟ|4تo](]Uٞ/|Y"R4 pA\ȍu^g+ UYxm& "'š?mi}ӓi2j-rNQemEvϚ0~q3M_ZT%GBzX_/[6#e`:tŽ1eL3S\Z fj-$3Fr]'͌uw얓 bӍ!SUD -,g{1y{Ǿ)Ɵ.,}wGP\ ^H7\<ɷ?n;-*L~g̎pj}Z&($J{LK+jv~$WJ32s m4:;a j) @уh֓Zy (c`AZ}S)'n!禫AYpbC,{WJ(S>$ɸ^^!PdWA%_|R,EQc.P < z{z֪ )d15jW>uPw[PppLC/i\=~㉒ ":M"X,Q!{('¤]z1&>5ؼkwh>1{'nu{@{s4%S)'.Ԭ (uҁLv ]r3ZG;Jw0 |[_VSל7 'EJRyY8 ac-bX1s'Z EHMXkEl_eP1bN[QkѬb ".#zBCɏ5&gG{aY\QmB ºzN{qb+[@߼IxiQ9 [ذ{l40QP{;t?*æoiurϛ""ۖEޚ_E핮E@#^w\;$I(JX?RϬu\xվ=W6dl$i ik04}cHbOrLӊ."I Ka_,NY-u(jN̉3=#`~~PUn"ed T.`D@< ih4f# ۡշ,@[ ą:"NRvÁq$۰k]YM!:-qnC>]}2(ȼl=q" /4 8xE6K)|[*!#nKS.ǟR2"DzG:&W/_b&p~A*SgȍGwzԍ ]Vp&*ꩳ KZa;@|%-|:{40ۭpEhZTa W!ٗL8Vy'8kUaTTف_3K7 Ymp8MF~>_QjwubvfH ȑͦwTf 0p{ a/~JDA't $!o:+sƭ6dBnCWqZfɱHx'7{@ q]O'GIrQfIkYZk餧a8$t49MݒKZNAożcۚ21JShcI)Qhiԯ$wH,ZUFx3ㅟxbY삺0F3ed[?bmWBH|w8~DCa}M?Swq>>mz35V"4_G[hfBm-8Ksr*9Lwpہylf9C.GwcZ dB&1r{{ͅkO9$*.S~\Pbp0KI+q1HXZ#I,iK1˚)-w3bV+Wk-wX!Jf?Zj>>7Uԯkom/ gTN])[A l7+z 7h ,2c4Z13zmxܬ<2J+O,QCnVa=6ĠH8%a] !7#~.k CC|]C k9pwnI%7B_\C9VX9s k^fQ51XwzonD?hb7- ~JKڴ>+5<8)ZmV=(k;u^ # K8RS`~!} /@6@uqUrh$"n'FbymFj{e>kڕ7>+!<\ g/8w2]v]AQJZ߳YcW2Od8Di\ @a_C̹xO8̟l|>0q%Xgnu&á~]W!CevMc*Yۂ'mTVթ¡6=Z.!r bZήE /D0"\6!$)uFqT*18oM<|w_>Ylի[AdhU)W9K'30J)\Lgn`MoC^Rms,PAd?Ta{o)[-qd25<|}-N{oޑ&EwSơًr vl 3腘LA[(1 J{]V_ vWC %צ7fuDy HNmZ |Ho6X#C@t'#HL.wb"UuHy)@)iaݣbjɪ70-*BM`Y 52 QNW=™ItGMF eJ ffcbP[Q 3 `.okwݎ,sY[ٛN$AۄtihF4{~ 0VtsgJm8_[\ ]+ B0WǺBaq7}r|3ʑR@~GnǵU,+3W9*¡@ʮ˚`ƅ )tŀ+6;)_L31е\K0s :I@d~/|hݪwrb6Y&sJ1hWF\@a 7C{M.S"AH{$؝"zDV'$TDZYjBBhxq4]t$ j@@:M]VN)`!|U߽cS;p>^[#cAq0ywUIߥKͺqH %ee6LLڡ%>]jF ~0A8COeJ >TeZEƛ./PfНIfC߷lN@^Xa }\3LU+'Yn}H*́?X >i=dSIm4X,n"Hq}EzbZ{8 ,*^.HZ=0Lϳ VpL;: G8_NpD@eu`xl _ ̎ϩ&7@~h *Uskil% %P/&;eF_.FgPn/NP;e8s ƝHBij7!3FI '@[(ߣ y} )?\jQ07(M ^eM8~93?A2Ռ 0S'72`f1]ơy K lAeR̭3_LՆokH<|_0?P~2@ӂ2C)!Wau7_z*' K ;X8ja)LշdH!ә En'{@kw5WA[P,/ROW@O]N#;#<<}B!ԍ{. *sMNbJ(9F- X>cN)#2MM 58D|MoqҹDtH+]T.h*);S}N-~XIqby@28Ϗsa?_xun#%>u`w0H]U^Y ̮N$)A艜qNbыY*Y*tǝF, Hr2u;.pSٶq o+\/8wNYtE&#zO^ EO^r13h*RhNVsiAQhg8NSaƻRDd7&D2F?Rv, 6/Fq -|Yfڜ[pK@C v\&KTwۨ@nS?S<}lPT,%uqѷrUvW pTQ2o`⯕3ީ,_ľ+cಭ v'C4;q"XCv2?baE<:/ǂI {-(qsJB-nۼb&0mM}FsvQ,:jCsj)$5]ޘ3<{  XZ VOT>{j!z8mi{Kn!>!6omK{\Pybׯ ĿK! }QÂnukqE13,loK )^(U`/ž͞ DIh0e "BqHGV= bR:@=-cN }j̠Rw,SN?v;Ŋ=$Q\țIQf;yo4 .U GKwۑB*t6M3k2~B5[֬ fYuP/FBI[NŘvGPB;7R !޲`-M+chR hYVVWjrʼnaj=QUBM&ρ5Gqd~ h3x:` TYǘ&pf堹'e8sq_`3_t3=W ʙ{nIbpkZǛL~؞*m95dIc'iDxI.t,3!xuz{yS8R=d]87/Ki${ K!݄jeȦR1P39Ă|/|D1- ZP+T`ԠOiSH [땧{!; [`LX~e^؝;dz_Dguc'l!g9/_yc{|xy9h} O(6 r-안/dBd3G7|I^I0J~ma6<"(p`{;3EnEVV\a2Q~ cIw@^fj%` mhr-8^Úg8 \0fO'4,x:!@.6݋lq]VZ l,89 pֶ5.\m #r |(ZOfG+PR۟pKY;q?O$ϔśAuQY7C~ǝyiiN-dͤkߍAT:*ݦϜAo|Z'KVc$yLݛtR#LL)[S]_YolȩBLhP.1 x)h;zu]TYiØH=m,W A6G"t.q<LyאQk8Śا zAz.<+ vFvGf֚JZly1WN|85S̬ o_ƍ:Ґg漚hzT+`_*EVƝ-tGk Cv4tf7a-0蕎|El~.^Ƙ&lz|Dع<5cP6]IYnu8xxFpEu=$I ȋjcy3K0 7Aiөwkp 6by 5o׵qvxq 6wQ4) zSRI8_GIy2KE_~P9]\֨tafkQC_I@?=5PA3V3FRM%Zc.A%95W)Xǐ'gC=`t`Æ:c2r1Bց^qxQcD3w,)&:bk_'OW˓fC|o)ٓ˩^k`{lq1IH3f,&({m.y%0]4 ^.SҔ` l)7d޹ Kl/&˱r\|3v\Ix Wuq-Ym=|8𿬿YȝƂp`#^d\td8 6Z Ejh" P9!_>HjS9sGtgpׇl 0M;Ez;Cr%EN irp y9 Yx3KOm/A?,n›7xxۗ2۱pǎ?P4{1,d55޽ρq\YG&fs7F} 6i|ɯ lt\wzyA|m1Rc.aҬ֚뮙+oА/I_V2q@w)`L n=ڶkH 0Gt\P"jp&7F 0} J|70<ȮZCrw>h7k>rW\}GoiI΀5dz~Hm=MMe]%(,I (tu+@W>a0p4 l8i6jв+l6p@ ?ʤ"w !&g XriRG,fI+h Y :.6ǭ@V@S.r&N RTB.{15!y^I+TB[kHG.7ΨCbf_:RHX6\&NR & @5-ٍW_l0k*qe]9Dk2%a48!TE!N0Nfh&CݴK;~$_'N8N[[M{KT}nLF[ra@\FSMجIAl;7ԫ.19WB(8Ճ72n\!O(\eF)ٔL+:ʣvNK,I14>0>K$ZC8.qo?$jא[byiSle0X2KY`yJ's`Z޹DPZxZuz=:IsX[!iR{?_zNVpA{\T<}Kr)ds;BlA-wIR4.y 3XzNESgKQ,_=^}-ۋI E?HgcPc;t='_;4>9.APjru龽trT%fo ڷ(H-̈́-MDQ(@)Y_t^AEq݋Bb|6aZJ,i |tTsY6xfQIԹ47.q4472%2iֶJy$z&19PI7}_ei7L Zj3,Sr㰉Q}J)2 S7|UVZ@dG۸u1%PP CᬓƱI|DG+ڔ`g{*25UC{Xm54n LA7k(ZM)+hLCл]O S4j47T"sCKrAlbP+2\^!]Z˭x~MY;PCYEck<٦_?fL$(ieDF^2;@iȠ.2`1S#ӡigȶ8XTo|.-=j &m+:Z/{3~~H?"ue&'+m Df/h?cn\IQ:G =i'{nQIw lζVGq}U.0ciTd)3S V<L}'K'~^*8 "?&mBbavrSeBj˝2%&L-XPKۻ .%K;H:XfC b^0rilR{X,1ur|a&\mشw8 dh==^5x6σc ai0ZfˌRVC(Tϒݥ61A Z: mM)Cra{|c'dG]'sUέ8kl"*pV\Bmv4ʬ]N4gftA -舕[`?R(-LNս z1cz*X`".Ƽ9_M Vt_0#t3%~.|qX4NPRhsBmD=Z9 H h 262?Mk;?dki.J%lt&W0<փblj:"Xwޏ[:SÂb} T)G|BQ/`x0LFJPf8wU}__GOeaZp Xr@mmCQ}XAŭ=Jv`$mg-`2e(ݗP@v,{-oVyAZ [* 0 xd\c nnSz=6]kkukX}uhRnڋݨ.%ЏU[(]ntĞ&8Ia8>hН`ܹ2D!.&dl:Ӷ|:s|;Q\|9 b#|Xkbt?pfȬ47=7f8ϳϳB$ƀ|:7Yf6'rTic%aURZ,5[Ņ+aoQXۋgQA'C&ZTm(.$+ vv2Tg4*:@(POT}yE6dyEZGM wbžØ'Ű:>|=[Y/@'Lz"\H29@P-6ra׸ Vc ZB2[={GSNS5EsQ\OoW=2Gݤlmr<\LY'*|~=>a$L02NA/CbmG:XMYz*F&rpg툇5ћP.vkN_eۙb>5 ~ƾd_Z+.ȃdf"/=0s%{ n#Z0)݈j]`zjܜٛ(3Y#3\_ iΟTL͐8J_ ӻ[734a4 Z޵s!a8|E0GG )z{:l6HALre6aڴ{gL06{UA俇wH}ϭ#P-GhzpH=)ꉙޡi h;}C>"v:"RZͦZM}D4|m^[O g b5J*_"c W-j.27n^ MV4R\pTDN7HF"4U!>T)W&Cs=q-SC#P~; O5ia<"+C(C߾*5C.5^J=_ޱYo.bʐ$}n%;Rq@0H ƃ?ƕt:և/;F9xY嵩fAlw]i^ށx"޼1%ÈIeyo}:(p_k[д|-͉XKrF5蘔bDGV/ۛڤUx|Ywj5'rVMgWq[s 0Q廷 mM Pf\ö| wSO|jUy74íZ&@:(%w]Ys{ Aarл $ms/||qx 6u8ifq)?>Ŭ/))ix} vl0g1J +7$XS^Z퇁\ou":,V{)UusRk+ϲ 4dV VPW€ ]~,y̫*`hD-ʜq@)W(::/OwU B&jmA  ֌c86m`;i)U\MN/\FR*[ld$G^3'|~0tn!+KݶojohtڟJ*0sAɉ G0ߚ+4'r9{.[B]W6-d3ސe{ IVR )!=EܐiL(#jy(m3*cwYF"̤+Mu8^d!h>WiF=VY__;N,GtHE6_=r%U|/{L`U[ր}^y;eYt.全?2Uj)fp5Sf4M̹ eHUO쉂M@F(Ϋ\ vW@/hȝLLu ;Yx{v1ߡuu+Bi vM45*8W9U =nvG/: Iot6 4Щ:XLR!j9\j7\{, 6& B *\_"܃p8׶70& X, ؤ|͈Ɇ~?`gI#YD:s%aeöPn _KQ.r`iN e{ k>1P9p17b$aK%zﶹϪLT!ikiE G TԘ!zj>N؄37~jTە@ ]j8Bᒎ=Vr[ac>@k% v|{ l ϶qdm!hkf:-2!A"w0DZ_x\+zOoxd مua)Ҁb\&$$C-Oa jQ8A** &;&dJ|,~B]XG&2)Rz3(S`gX3jN\u_+Nf+-&U)2׋_Y <3 3if?i&i]H0l 'I-邔%8+5' ,?{^AtA ۡ}`,*iC T;flҡ `HD@؊) 7%uO#OXU ,!K\]Y O?M[N׆A7V ͳo!X(2"j&/ǒ98e=*Lhσw|{ؓiԩ(& @~{Ѓ]v &ꃵ|!>pf9l^MfڢׄGHL. 7Uua2q۟:fĊH ?  `{\))M[ LתD!~wѨ޼b [9Cʋ檴 )rL[״c^ ?Iݻ'w?)9Fm`yaX@L*Y!"{76 [_y>)loUZMN>Ͼ>#A=h?|dY͎AC!ikgLT:U~PG+B6E{\cZzC_oPa9Muș?2۩0j1hY>GӜlv>.΀cu}Zq9oC44]_xL#Ύ]r+ErRv{F2f'@IWƋo< XmcM!e:5nWưL̓> Ь3ie݆''&@ӵե6M)6:|@Iq. %yTPz;^'a9Ak_>H`\ Y`Y]܋1:@*aXÞ㒤$Bi-ٓdd5˥ēB:? rQW$Вzwu([O*P2O[i`tvt1yo. TRx_2 b˾3*=W!:lNG j} Z`C4KCNF=56jܭ_ݿ懙Rհk?:PF)f7 /:-\ޘ l@JcZu%51D2Yg}l-tvW [`{ȴ|{(B_Λ3:dprmX3J*W (sx( ?#~{׹X +åԎ$7 ͘z,G_JÖ`UjjR-|⫿,&jB[ti &[4Х҆x̣ӵv֡D!fF]dwmdytQ#񗬏hV7=_2՜%$~!VʩAmby8sp 'c7hZ8Juo -9aE,a4qfăhäGޚ-c71AHS',*6LMM|[vI|0J^# Id$MmۋkM6J-SJ{.:2VX`2$ڷ_JuaND:GGs)azu.OǐAi"Nwr|g?|s 4+y`09H*9T]p6z^g%up}Q:TܡWZ,I\Wn@ri:هE% /NV2\ԖU%$4\J5}:߁&U91A djʏ n0ayEX4/|3ggT|U|u#uBHˊ眞*F _Ӱy5/yD?Fgmm\8 d,^p{1왮7f?gNJ&$$q@=o+~̯W-k޳'`6D[5BT2<-vG*\Jb|FtoZD(gqX5?2.v!.?wv$'" dΠР@mXOȍw> $a:Txt܍Cv1My\¯ʟUH~2%>WaOG)D:! 1LTU2f)8/q~h5yP# ÔCKb2\MbfMD%[S'r'J>߄!x uniR&;əke1daTq9mYBa-;Go1&G7w[BO7KrfLg8DJ{cD@EM"NT+֤lQiۭk `rV4P<>gWPrN8]ix{|% @=9Ӏ3`3ܛJZD-FD,L^=nTK^Nߌ /+WcLPJx 68x\})H,Ttz?QX+Z5qvØW1~C$9ad=IXZ'Ob]鰌*BxZ ފ?c1? 4Q'Mk[0eUN1HGm'Tnf1 pm̛wM 6$j湾/#"i{~ NQXh޽c;pav1"t;g=~iǯM41yqV^-qEsdzSSj3q0~l!c:m6ޤf1pqm*i 6XkMҖh]ecqE2_B]6) $s0E&M{J"z+r4=lWlnRO' yzNKְX^v^ ֡S" R20{ӒnY)yJ+y՚Zyd5 fu s˼Z|Pu+D/,2䦭]D2~hqG^Qw~A2D FX|7pii݈ORHm>)̀0*k\raFMqCZUK'zP_@3QD# yLɡoz{Xβ^w'1x $T*_ 4YD0mMe$@fr7lcصaX{rO2m{#?'Cuu %ض ȢؖP!a9œBNaǓq@$eA[70Oik٠H WӘ& ?yL~R EZ(ޙ乜W#;\ڟ+o`$ǀR熠-#)>r['C5/:^Q3*uVO8H "2,/ `;,4="ۮ&M{[I޷s I^-0qhϽGTWنhnrlHXuZhu d YIBUV4=`M+oNJ g$vuKR xWtx PE̡xk.۽QN.4grv>輀Lg Ii"lc0d)IF+شlSROШUvfxQݞbz:І,47܊<^4o1饾QK7YSHݚzr rk*yTR*9yGؿjqUKx]g/B?)x)AkeVm.Gx7) ʹZ6!hd z V) 21znH|$E8KB~: KwF$Nz&yPFWDQͤΰn:^ҧHZ,G! ` ;>>Y^|4HqwƵѺ0V3Lx"UJ7SM:Σe"NEc \и.q*,_ 5!$mzΔ1y̖LT > _a$Ȫu -Q)G컼{h#mI5ix4՘  ,kg5}X rntH9hqZ\ 'V}İ!3<'2KMm Qܴ1C:OoQō_YB?Ư\Mڭ"(ߍZ(c?Y[ |F-smR ˚H^9? 󾟈c>쌺ui-E(nY1O(ݭ͸5[|N27sn"S.whsu:s!=eBא~ n CHG|P7n}6[Zԇ*kG(^롊nUnU|,w}Fʋ4o)/cqjC`njKhq"Rn:T@9I**G ,݇جd83ўhYi@=>euz gFR 7yESؚ=(cpb|^|z*tZϹOVu r_!SockA|;RE5*3H(eV4p9F-7x~In"UR[4 5G{{nN-Xãet#Zț#&`u7i+2nԮ˭V¨rś}w9=K* [O˶[8iFQk{G+wY N~(Cz4Vi m! ޯEc&~˛3ՆπmQ =B؃CG!RzXY:b# @.|H7}Yxrf`?445v#cUMEp `Rb}!U)Ϛ:8ʇ&B !k9xjKy3F8#׿l',7{3@@-I&U$ X8?-C#ŽrZL.>\1%KV._oE~[m;ļ |B%?WT4yZD)8xÞV~ٻ8&p1ŷ״C8٥`ܑ;(Щe}iinǹ\D݋rŷw'd_FĂM ybup$,P:CejDj(F|_f%#|ccQ{{V8eѥM+ i}?pEM]-{C!3JOx:Q_ +G 2[lXPbe"PpW5i~&܆& d*j("+Zz,ZtEz:Bo,U{hUGXܧj`5Hk)HL5sYkA9Q/c? =6+5P PWhNP$; GU4C850N2«jU;gM{~M M,C٢'IUwxlFzrVv8qw/v_DXylI*L4S30JSRo/Յ%UӸdI+F $7=EcӢq] ]Aę2 5ώ,zՏ޸4s4ۻ5fr=:fq*j]F`72mb@EMB$@>J ɩ EL]_O6UZiORkR)15v rEaU2Qi"ֆG9-@C+ >޶`ρTk<} $rk4)iE_}kk.+E喍oʹ5!WkTʮkɄJK6eT6 i%"5LX3bS]Q$P *_LK<ٯY N S[L$U%/!QM(10*@N~uW݌j>G$cDxfZ(;  CnEoc7= EiB+<} `D/vS6m1 cIt4cv8*QMY۹t*hXs|ot&y/c$5,DHǰ/跾Q26ZF2,[v+3xKPrkL؜xF]k-$HYEf @H dհtAt6"1MR-/ Ѥͤ>ȉ(Q qnh^JP=NW?FN !흪))Z;wʨE(\IןIs"Pa2ԖT%o83Ԛ̱Vq(M_TPdNqrƃ&o-HEaG:b迵ݎPxQ6}l 8]VkIv ݷZ@p|?0xs}\cwxk@ @s_i5ȼ2x>W۰hxɟ>4Q (Vk()r -młBo?CyrXsҏxz|G3 ާUdv`ax,&GhB V.1x9l<J "\= KRI5։Eq6#ɪs^xW)Q&gvm4f16,Ȑ|lOzj?ٶ>Nu{Sy{xn~{S̫uж^P#Yf0ހHXG؅ժųr81Ip`=)c1Z(܈²Z^&W vM? 3KҍM2eZ\!gI0}wjB2rOӋH&l0 uFtM*zr{hVJ;,yP˿]6v-;L=!H} Z{xN,PCieAfm̌iSf߫ysf?;-?dV}e(7&`CQhsQ}p!'|Xꋎ;>܌{n=T$&$n%kkCD?' l1{<Ӕ_# j(WxIZ`?0)@C}O$ڭIFoO Mkn쫤z9Chjrn͠ V2 aGOL}jW< ͦ.̽E-¿?Ojo*En"O\-U6b1^ *4ƶAF@\WgPˆsyi=ɟ]ѝBmv]N3qZFZW/~JzI(G_JOk.\qkA~QP;9y_x > J].UFDO84,#K SDY; 55RV!.I]ZJdnViہɴ׻E0:[|rF[fm&ݨM2Ԣ2?I8kCzۅT ,H\A6KuZg>}TҐdT"Ieh0z*W-lT ' TD?!(\\f(ERq畴(V^i֜WSw͢TR7\P3 U:89\bZn^9S51TNRq3Ԇ+%APb[H V6'CnA2p zF1vDK{|hǿ26 69 tO!re%*K[rʴXBLB]ZRйfb@kS.NL_ѓnmG*TI%GF`4CBPjt*Iw7Aݗd6.;bQzG`-0A3UcP{t;z)?6~4&b=^AUv =1n[xC'r>\Eq~*N$h%YU9?vgfO%g}H2S11ao&/IX#sfHG3"#7)B58o28ߝQ8[پe&y&@iJ˝J&Зˡ+y|+i0\ZZ> `ÿ,;KA ׎L?L;{Zb0+SclEW-)uQRo1T-SߙGu|3LxKO9]%*PLYJ?qpS?]b;|bIN33{ݼKBdwKϺ ~9FHB F%bps>+03bn ̀GFbۂ( /B :apU(h] 81-N2LRe a 2)X3cD"*Q̛șr_ppXmEN&/d3Ddwۖ}e8zi!bn#߂45^iyag,$j: Fv`t$!A'}7sm^'<:P:E[i 8)k>q!P@dB?mo:h3(-dYG$(y^sYJ!KXdbytPv\+:TASA^xbb4FϼH>◄C]{XqYAFi~'OqYAF4W9>|̧%`e"-_UOt2h;%"+Qf+3_դ u l (aOq v!eޑ65$cm;V&$X3cCk=ϼ{ۄ>@a(}k<{R_:JaY͸yKB(E:o0yt.ȩO64g:51+L1HăϿOOμb146?BPTpN ?kk&ĶR(6aQ, "6xs 7DT&dfE XQ+߹sCY$6VpkȣNt2o$嫌[nQOV={cXEh7^"S@r4 u3kƂ:G7k N*HNust2ת1-mlPfwju¾gez2t4lJR72Ցs'Cc0NSs:ơC;09 /@yG6cA d֗K1 +NjM(P @q z /_#KP}~|&Vh'<^荿o&eQ5Ŧ\͡نܳugx5'|񶒂j*}ԡWoj' c˜R t\KNz:IJ"lgیSb̳16Dٟ[e" 8H/1$!) ";70nCf(&Ba C~8aaΕ>{)`s!" 1^b-ˎ^)KO F@G+n 7~tѦzǝk@'$[ԝu`[B\R(nZPSwEDl>8wM,H -M][UZT9;xg_R2M jۏ6 XRc`=;f^D2/lV՛dVIƼ0vLY0[lbVvuDGu/F5%84|hqv3‘(,Ü)oCQa >*=:NlR׫txSԔR'mHD5CuR k;Y``cVHK~Ѽ5' j5!X> !1ὠw[d#kop$hߒ\"8N);0}82$YFr.Io);z#,ls ^aa$E@oﲭZݱWysP +wri!r2T4!hC+ ~ x/͵Y|sRJң8gpS_jV&_FPߒ"%*HӸVY;U`SsVyG*.[)lbEڐPۙih@G!7&3v'9H;hqT ĹW]x.' r2 S&bԞ,.dd''?l8?qGF*X1k|iB$=:uȀ N&YfWYM*PX܉TsS36;D65RBlJR80pA<1apqq3qN鼝 @2L:&R mq0RA HV)ԓ!NV ⭠Kʵs/qCRɁ=c`Ur\ћK&ǂ.ɂSӪC֜w?z:Wҫh v'6'Ol;A{ rT ʁ xI)ڙqƎ{U[eH<.MW~l_o9Eɛk| 5j@-\COk{W7SUNio|4[b0njިV"}J*>ZGUX ?:QM9$5;ksucM`Lp( JSSm"Sĸy9)ֽ\IyËlj/ﳨV^lDh20GAw}=5jQ-=)^8 Lm1RmXs}9ʏ ~|@cW@RUoHxdA~cRKҐNQaXIׯx/F,*'Xqzpӡz^WDY>ί[ڽ| *]Rz  m IE'+VґfcEߚNeTX=H[ KjL5}!o5y~FgBME/ ]tڰŀ,t5~gst عeаZ|CWrc?4eɃ`m u8^RU}/裭keT`!G5سNϔ 89;<̫a6]l+։9G۵GePIdF"c FUAo7,l;lv4%K6'|rF'j94w\J;(~17c-lvbk2jHa7Kw!3"00]Q7)?,N$pH\ Iڔ/O)$(DritK[?N&-1VtL03SD} T\j?Y.\29Ȕ SKޏ C9?P=Ut PC`ЇyL֔u^0jP`ʪrSn;讨*SՓ( egwH5ژk*BQP|9:)z_Y=R|}`  XcptZUk3gըK5\WO"3oSqH5 V%bO- u4ÇݧʢFʰk 40* c@r Oc˻c͖ׅ5 RXXGDU) _qR(uT2Os6wGğ|q05EAd%;n* 6rNz9EUJ)r3cܯhofVL/a-BMkpmOq[Ev-v(nG wO%[Lmt/$(5dձr)Uvۆ\"qCڭTW)zpήWouep8mXU`ٍYTE;@'fg1U7Q~Z{v8Ji#X}7sɍRHcᷯN Eׯ$v A[oO7)jқα(?T}4E+ǻ#HY!w/t-%6̤U`!z1Ce7p#S H|L*.ȷp_aN(k4^X'QM1hxw9HTCXGm܉͌Q!'s͗Ds[ I& >7M=4~SQ;4ve#HAWx6`=U ".ҸT -%?;Ib#"vNn{__&2nQ4pyLίB^hZ]ϓe<*y%iNr 7d*$MsjȾg W8=G^ wv)mJpկ}K8"ħv(00#M lAGGlj`傀WV3?RoW-(]vA! um.:@YA&^ΎHdZ}>OzeYrplPS8O@1t%>VgU3AGA[X; `i1W|ޠ1ln ?O^*JPGY)w̷X7^~L~kt#SZ C%0+.F)9$L2? `Sh7d]@`M#N rEll6 H K~rïNlqOkv/%s$wDf8_>{i LwY\Dx@ *0ć[(5l]v ?lo2~]=g lb/Կ-hCީџPy%-Gۮ@j\&J%zR^p0Mhߩi/uߔ^t)[auUہt}=GC2lSJ6IML/eanzA QS5l#l4NUR{y yiU,+c5h9bkPKB@!DZf:Ud7t`#jK&9a0껓 nv/u4A ) w?+f|9組wWD-995g"g;3@3ɁӀ{dw}=ȌG> {&赪ӆ^}Pw?n)T3O0d!=o(Tku铔PKB[0bX0?V(d\;I6x؁"}ڽw7]C [2/޷s痄F][+o2{ky JXݳ8CvK}nc͗H)lB M\NgIJYX8F?{_9~ ߲uUJ:u-HuղJco$D-d1Vb/HQ~J6SfU&;ROut:;ɂg68@9ĒVVR_ 5Ο/`$ `JWV@,JRO w"-ڷ9m7n#zr3Q2y~`x&HAݍ͌ތ"N@+Η7FVGyR5>8V;-PI Hs'V7nKb36({KVPHPF8տqk4 %_܏ϑx[-ūnjk ^K 17[`4 Ocbw5tYvl[H6жLl"Z&_.!-`W> Ze[B|d>IJzvu"U,O/1z,K|Pjrq="EOVȻç߯oD>üEI*awiROU@@!̇X5Q<槁Ԣyդ / mh%%&؋hWPO{' 9u)dQn$[؟b]~)Suy1@W) h'ޅAg+Ċ/Z̷w,WމsnmqNȲKQĢ MFBV۴ WDV:iNxR,?,V+5{s6<4u|ީu9ոQEDy#yu Áhg 6CەCYu!z) #_]Ω+L=ˆeϔ+Zw=A6x4&͖+r\=GgRA`PZU;ٌh; ՓnSڷ<%,>|oRbKs f/km`|ލ\ Ԋ"^3cK -M(AJ~荾H7?H5:X9®,N;`c'jdV[1ZR]iKKq3ceu,iv3w%=$iUfd!3[к[:(7O !n;ͯWCVy#2$jjt|Wc>tOaA`+`*" G[e [ȃsm\-viyf Ug`8 ZK,R 2VXL -^x򓵥rɝ[+Mji$ҧ:Oz84},%Č*dIk{@ >x9A JK$:lbÿ&x%6tsYWHdua7c#M>6+ _q~.J3h'nTP;!@XE9k.j|Y VA 3X7X #.u^3G3tŖԧ <4.e@/]3&{ ;DKSq'n[l>p7Qn"^QjA v\^=+㡡Sourʶ漊&8Uv"5|+'!@SxY˖eg)(+-HNq8uEHC6LEHrdgYFᖝ?.-}44roHJѭ BCB wy!gR,!FfK 5~#;-MrU"G0^G^"ʸ.j0V(E8\7VzG52~)p9җ׫M4h8^Qe2\ZV:5QBǭm Ap'$bBG+"M d-@N*8HCn/m%j&/<)a*_?J&ނ&ZsP/[zb:bPMB8ad!4l Lħ?hݥ W}TFb r{Z'*T0lˁzj(ZQ+>h9eۇf y(9ɒ%; G:y2QZ}Z˶\ ^! y\ J^5Ęs#qS)DDtk(oc/'z^1$"1편#%r u䰪=wIzhVe<`AU%ey ?*0mcLowF9&d#cci4Lg}B+s4Ƚڂ.u*9{m0mN ީ#Q&N#>ޱ0(ו<|(4 w\Uv|a"UZ ,jt3􂾓xbÅeV6^Y΀i ^P&"$ܬpo+K)*!+pkp9XT/.G" -9t TU{ShMH-Q(SuVI{/#ȡ:W8cgX‹Ї 1FT~4l.s[vĜvAhvC* cRlA@gܳW= OCZ*$f 0/wA M{ ?rzn_"t;<{7l<*Ž{Tz %;dUznD=ٿ}{YhQK traIo8vWFjyBU>{ QnlT()J̪gt_+:ec*ir[3%4Cڶ YZ