apparmor-profiles-2.13.6-150300.3.15.1<>,p؉bp9|ؖQ9v{|cPێ3$a_ }:(O4hGi1r\Ss/R<<i%/,/;۴ޘ7012d1fM/M2՛J{^?nȱ<d#8-ȢbS>l(D7 Z4,:?УK[1If? ؤRfѕf uҴHӔGKJ>S;G='@?d ) k  #9X^e@     x G HLdPUjUY,YlYZC(Z}8Z_9\_:c_>QBYFlG̀HIԸXՠYլZ[\]ل^rb;cdgelfolquv zCapparmor-profiles2.13.6150300.3.15.1AppArmor profiles that are loaded into the apparmor kernel moduleBase profiles. AppArmor is a file and network mandatory access control mechanism. AppArmor confines processes to the resources allowed by the systems administrator and can constrain the scope of potential security vulnerabilities. This package is part of a suite of tools that used to be named SubDomain.bgoat04SUSE Linux Enterprise 15SUSE LLC GPL-2.0-only AND LGPL-2.1-or-laterhttps://www.suse.com/Productivity/Securityhttps://launchpad.net/apparmorlinuxnoarch# workaround for bnc#904620#c8 / lp#1392042 # old cache location up to 2.12 rm -f /var/lib/apparmor/cache/* 2>/dev/null # cache location starting with 2.13 rm -f /var/cache/apparmor/* 2>/dev/null #restart_on_update apparmor - but non-broken (bnc#853019) systemctl is-active -q apparmor && systemctl reload apparmor ||:IW7:>99=;BRDCEFCKJCICBJPCIKID?D??>=<<<<ZGB@! 8E;p %]s<G  =6:w!R9|S @)1=9xzA~~ L};AN1wIvzy@;iywIvQ{1}I' ?JF+%kV DIY ef  yx/  y 2&=J##f7,] Wp,& fA큤AAA큤A큤bbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbb722c30651e49dc1744f6603dca09439cea2a801e9fbec3e691282060818c470298bf3ba6305d59bcd3c19d71b84c1f6bddfd94bdb02d6e2beaa3d3279774707f0cf5504e1560596a442c26e953442849c6cd17e17bf70528f0714078c588fd67ab7f52de2a49c322ca22deaff676af8ebb909a0efd83b6d5e27579897a4c1c5d2f579e0bd229638c353f722be5d569088f55b297ee02cf32fae8226c1865aa04b845a39f39b6dd89fd194798b6e256f06cf57246796ecd525322851748748c1f33b4b1aeeb0e6f34197add8e90d04a7b51b3f800e146e1001b5a79ad37b9f2b581107f79fbb30188f8cef12435b9e584a686c26415c874b634f6fbbb5dac1a8c9713a9701599cf6cf610dc6fbaa85e6ccc7fdfa7261a25d3d213996aeae2757ba7d679d783bcaa5363764c16869f9ba995b36f0986db0b9d064025916e79ae86c1ab19fa9edb110815e8afb1c90319ca5b468739300300adc013a121ee29da187d4a3e61eeefdee2874ca322e04da0619f8dfd09bf3282161785ad218b97b64311a5461ef85490aae0379a3723288539c21a200072453e1230511b0fc1a518a593dab4a141a620b249b52bea5ac8eebd27408df7ca56e67a1b5716adbc1d90ba7706b520236a3653e795b5b1762ff2c633719ec920734063fbb64ddff9c9e57cb514c5e90ef1727523ef832079ec02c8817f3b852ac8953ea05fa6b2601f2e3b676067207d5f4d60777308fd7e88ddc912b9d1e9562077c6438a23d925a31a075a7fb8cbefda399fb3fd255417615c3fa1c026cfa7eed06fd7ba58c3b5cb0bc6478e6e27f75774172214494235ca00fc058966387c2824f9eaff8ea60ed7888be8ac96d5ed6d93eb94ca995979b604dd8813bc6b8d0a01d031fc4162766b75079cb034a0cb660a8448e7cbfaa59ceb8fd72a6a50167edcac82906a9f01e62d67347db7d402c98e4471548a029b8d424fc31cfc4083f0ed342b72eab2accc2c655c95272813199f06a2f7db93a231375902860e4306e561ee09896fcf381c76cd4af8b2f08bb90dc0f5ee2b1aee758841a2496c7c0055416cc85ea95377d139965eac9fc58403f411d821c6a95456bad8fe07226de1edb128f5a85fe7a7774a193e97afe6d695bee2568226c3b19d7e103a201cc9f29a52c6e2a2cdcb7ce6a6a2c640cce70ae04999ed60b0a976026a416e2856961882e06bc68abc16d4037cebf7e02d233b9c252fe3ac767418bc35c95495954e2b36360b6de78ad77b7087ea38bb71ce0001c53644edcdc9afa09bf30260e4f7138525b1b8f65346e4b08c563b54759c0de72e4d112d07d3c65d36bb7bcd4ea9e8dedc811ac6e210efaeaf8c60eed8037dd30e6f6369ef74ba934438af33bb871e90584b9414f96f40e2b256b44710f72406f551fd9d86871d8f1c1b5c233b8356803b1768faae8e283a1c13698e8fdda52b1010a543290090131c2bf4ea878c446001285f5e53b98b355fcf78948c03e657e5d7334a929a1f3446fe1e3bf8dbf56e3b9e9ecab57c19a61ad31c12c8281a0fc2ecf3d49ef6dd542dc59849b5516988e7cac473dcbcbc4628940aff93a667d8e2fc0450279e04715f9977ddf0e4e0c53328159da9746a43ae08c12d6436bcafa4ab95794a993d0d8ca24cf1d334d4c9fce0a84854e0474de26c7cfa3a1e67cff4bf1034b7503fb8df38e5ace76607c853cb8dfc4d9d129bb262946919381c08d32151ce4a403c73ad22dcd5f9bca21be455587383e756a0343384c88f267a8aed928ddac0a62daa61229a0ec7b8e3fd91c5abf6e20c7c2093172b061126a386642e3e87a53366807829b3fbcca0df3efc6a70b6fe61c398e31e7df09c62a842da2aca7ab3049602aa4bbab8e95d7fdf25fccc3850f632b1cd0e4dd334507ac60d2e082c748d020a3c74dcc8f3f59da612eb93f1a811525eb2a9d8b58ab063a16077d5287f1ab8991cf18cae17ec149579e45f958c0724a1fb4a59c9330dbdd379d89312504660ecc2ef9e290339e3c0b3ba12127cae291b6ec16c7a7dad6900a13f5978b9635ba0f9e2661ec931621c20fb0142cc6b6bb590aaca2cdd0f604e7b98b1410fe2188bb4791743aa28fc811920295cbf71a4793f537d8700d588d942cf8122c2d9d042edd1e550726e251b9dedbdec1a024aebe3eac8606f6abd4785cd8b5ff898b76dd9294f2d7e6d77d19ba0d24ed0d8944b3abad234cc6087b0374bcccb0f20438c6c9330c96962f02fef2abd15734b4da6c3d2bf694a28bf66309710a39957ed4641bcc8fb6db589fc81fa56dd4566027cdfd9c9182bb632f84ecb86bda23d1ccda4c36cb72279f754c68884ea48d43002824212cd9495fdbed29960d7474184d9a173bf13ae91b1d5867449148fef049805741fef5ea6e143103b6f248ca4019b599fab06a5693aa152616cda85a7fdb740f1152f7b688988e2c85a9029a3b82b024480996c95d3585a653dcc45676b090ee33fa3aaab7e84d5744934c73a7bf9d3dacee2c0558cc099b388cf2bef8379ee194779105b31dd57c61b1c417ff7d524f0584a7ddf3b1361714f461331f49b78d7a14077c6f7e988db6dc2b9173b112e9b8aa64bf4e1ee8a8d57637bfe8a925e2dbb4e27024952855be844f4960e13852446574a2900bceeaafe5c3905a1575ab8e2eefbbf403461ac3f9e1a7531e6e48e1cd1563b4426bd18f8a5ec03c76fe3e36eb6a53a970f4b6a803151e1e6d78128770b7c87fac706c1b5b695b1ff91e60dba186eaeb0592dc2918bf5c66263729a5b7d95557e2b3360f8b78a180cf689c31ed8cdf46118c9b0a27aa4f1f962f2f222a3c07f9ae78fb39d8715bcb354d0b9d0427b124b1ed04b14a8326ae13f1eb2d1f8274a88a3b6dd8a6a27f1f0bfa7fcfb41f9fa5e747039ed48e221d40a5058e2ce820f7da0dcb3bb8b517331f5bd972d3e5f21f181b1d8a70ebf56fd6e98c2cb322a6c870ebdc46ff9e44bcc27ec2cf02178d1930c5d61619609545c719ccba203db0dd4a9d8c31eeddf6508297d27d5df2acffec6201a1b98313d150ba51ddbd09f277e0b1c7d511a8eddd4c6b99cf0cd1b5c850657770c94de7234eac7cb9dd95d04410e350f39e1cd4c5ce402d39c637c29378cefc04eba5dd582706d1ee81bf87872804a7a67bbfb4068bc1bebb48a9ffc0138fc579f4d5ca6bb3e63017816689f650871524af25c9a816e5007954a12f3a5456c0394e30882317b1f19b0c7a714f43706496c2d28f5ba7ca0e3fdec3428ae6568b226e60248b08fe69ca9e507dc0e0b747b27d42ec5c3e8995f2db871e6394cc7fbe6228d3fdef47d1d7a890a24810f2ff97d4af29fa4626379b5c396c98911180ca6cf6ee3e844f781bad556f354f65a9baecb953d3dced3390d9078a2ab3e83a24b51f2197e025728be11c35bf4b7308e496eb8a6c4dd3736eb70db1810c90e1cacad096ac624903ac192a32813f57c66371385341b40758092d2eb913c0e2e908e9891b05793a08187fd335c4c5aecca5677b260d059dc692eb00864bc521796c9144014439546d4b884b4c0794aad14c4afc3482ed9d1a4d36e4fdf32240a30af06c716a995e6d16bfb6ba244439281a7a421e14fbe9cbd425b73f8ef22543e30cf0f74f44a2d64c49673e8d3f86daaf0f48ac908c6fffd5a3457044240cb54b335843010c4ce6692e5e3df6c848cb351bde71cd0f291159aae4e6b22be5b803d243c987a842dfbd22aeac68df8d85e7222e870b44e74a8bd98dc56ebe1ea9ad6ed8f14eaac445c0f65a0342caeabf8f3dafd56ddbec5b498ed0c8fc31ec5da8ef239328d178bf8d80c84694326426ffe4e8633ff288acfaee60560beb445597bde55320731f23ca24246272ed517f8d526f9750114d2101fef22abff56bb248e9db005b932cc71606ac7ded2ddd8ee0aa88e2348556c92fc580423c8b5181722685f3e556bf4addcf61730ea71d06cee5ab74908d29dd1b629e07c582589f390551683691435d8c4f9828a24ac76c24a24a6c6e91ef6af219b15db054bdbb7407de819cfbfa3bc5804e138fc8c00916020d760d1f8d0bf15ea9546e6c90258956663274a58de0a112fd4fdf0f8c6e336ad612884fb52fb17c433d6d1c40d185ad36ca6a03025ce6881f1a906bf2dc24fcd4ab6d35608392cf3e76c08530181eb90c358099857f50144419f8199b2437677efa4e725b9e22ff4b3db1b05cc7e5bda1f0c2409acb63d346e0ea16d438141e4af369e90dacf4487dd63239799e1fb69cd2b2df61be6feb5769a1d148c7795bb2aed252006cc1ad541e99a4033be787db7ad2388f66644ba1d575da09aa0dc8754e32fece5d278950e8c344b12455ca864fa702a4823fe9d2431f73b5c4f8201c7ef98a07e18ba8697b97730915b2bc14f76588c60b90e88b90d43f8fc0fb7eb0a91ac366285f5fbd5e579561f80d0e83f3ff3665c85b52619a36eb58a29696b42e65c9cf4cf5af2963658d6306887bc49d75ab6a753768bedfe6ddb3d621b2dc81d8a71fdd44ff07503bc44004751cc4c380d15bdc39109b4a39d34f6e55d4a7aca1d893224b12bc729b0a2064cc2047f6ce86e0a840ed78b413bafa7d47d688f8a1b19d6a3b55cf674ade253b22131e040444dc95a6f85b87e89191aff9c955c333a9153fc387f37c2efb1e46d58cb4eb0730008dbb208e694e1149d05caf552b49fe186c9830aba464776e900c1cae6947f0d2ee9d898eae450e93d23c3c8d04d5a9a1c19b254ba89eec189ce1a67c9411e82ea966648babcded23b2f85b6def586ae986290a2e3ee85bd710641d67045d315e2cce2bb8e9acdf54550b96bc77204deb17feb2c6f08aee67661f2d70dc0b7cfcd625125b5622f7b74f6ec388d01a6182e476a74f02242068cc042a0c1e0c631eda3a6e9c66fd49d565236d30f1f7fb25f79d5928740f28bc8630816e6afddf8732d04aba0bf0ddecb77767ce8466e9115c237e568a741f11ed62e0facf8c2324037ffbe4293d0d67db5ebc1dc6f0dfc0e325430e9cf527757dcea33656e453ae481596f925ee3ae0076c099e75524ed7ad6289c8766167b9bdde5100219563b5c0855f2aae8163abd5ca25073936d8415fc8a4bca049f05b1bee98a40d2008e2751af042c3ba882aa0a55f5cbb58583f1d5d7f75720a5f0b3c9449dcae724c8ec1a14db7440fde727089e37a42d0168d3e309a07c959f309c128f84251b88616f4fc1039650c7252f07794135f90dc4db9b8dd5fff616a317adf1af671dea70ab2efe4b5be5727a6c60e260b6fcd4b06d67e056ef990bdfcccfab60d26ce9eb087938f0010e85a6e00bf9b6fee1b1e54269d69918068cff46c2e4937b0ca0132d0b038ee5a751444c7670be0904b90a06db832fceb981b32c5f27268bd33be4388baae7ddfeefe49470dd300ed257a8a907d49fa89a5a41e9bdb6bb64a1bbe67013f3a707401c9cb2c06f1c42c466cd6655094d02494195018229b21b5aa33fe22a6d69cd51ab77e19b0e758d957c41c8d6a28ab0543eea5b3de1a8fe179a322ebaf880a57d3d598ce1505c7348d92bc5740ea0f1d8f42b699adba5314e9aa38af46bcd38eefd9b8ed5f3a43c4d285e53f190744b12378f77cab4eeeafb8baaca74f9d4f2ab3d8e9d800de1ad086f58937bc285464068fd18b779a56d10ce5ba65bb86034bbbe0665df0ef2bf28f307bfd2e363749c41ad99baa1d3701c94d447de7c14d071acf7597b38be43fc9058601694062d3ee19630dbeccb821ee63ccbe774c7dd7d2b13549408f87e570868bfe92ba40b2048056271d5257511e68d622200020f42b0a332c0e81ce788505ee814c95fc6e78e3e7bc9fa0f8da620dbdff89aa78244df4f2681a2d87b0ad3451074e79cc54da200ff7283b6717d7beedee9ef7dad8fdddfeafdc5124a529fd429947b44f41d39d16559185fe55a07b64485182e3372411172ec69c32e61d905d6e1a394f9782047dfc7de7bd5664c4edc7c25bc7e880fd623142d87f56053b1cb9336ef4491c3eae9e7c5750e3a49224e0dccedfee34fc86ecaef23443587c81e1815fbe7c27bcd978928a4c415d81525499f1519f77e52951de55dfff44b74f31083971766bfb7b8d08d61267d69e32c8ceaa749183a5e5eca4b6e5b0c2ac247b8b5933cc8103f02a3c69bb63089132739fb4263ca6f7f8f197fe864e4eb55c14cc906ddf2a55897250edbaa83d902dabe5e2edef37578194d1b85b975f7ce4e29500b7a34fdfba54d3dab3f0a348af539b9e0039fe26ffd09bbd10ce1f2eb1cd27aeb49a69a0659dbb66d19b52fd0285a60e07b457101fe3b7a3540970f3b35df16dccf1e931fb42f452482875fe830a2d4942b443995685f29aa8f176e1fd98050051ddfb58edfe3499e69fc1e1f9fac8dd542e83e09c080f02d6fe64059f3ab4aa122aec94477cef067e77eb38d99c6196c248d8ec1484ac254f1c3d81a80b77fdfb41a3d9d464d42c07a0414229d0135e7aa3ae70865c23ae12486f3216d2c329c5ba7bc56298e657983d952b11ae12cc3016b1469c8f71098d045d46263617a74a43c5793eca19a59c37586609bbf5aec8402e798d10f308b2ad4f8e6018f28ca954f0aed3fdfb82e7a463e9273fc1879154cb1b8e7350099c0202de5ebaa3d6c7baf46f37054bb8a855ce8213c25fb90786d5a403f6a7d923a2ccf1487e6087562b94c8fd0b30a90e32715c08e1fe004f1181b3beaa86beea1e5c2e93edf4f4c7d740c5e51f060c60afb0c04c46635ee68243f7c0a1ef2e18e7518fd19d1bd5b2b3e3469075cf1249ac776a3ea0e2deef883a386ade801cc5b23bda5602fdf5429a873eab3dc461eb3cebc06fe218c322a11c0cea0c519628d063d9aa3c39ce2a4f2b48b7866aeca21ef682539dc6584463da3929fb9eb9330e5507f74c4ce731a5adf494d0f74bab5e534a3ddb36a0f937ef531c853a1ee1777877875529f662bed67cb94ba29483d8b7388623a442034e7a1ebbf651cad25d2fc2d354cc04224be4193b87a59e4fab83029fed8d476d86b968550abfcb13d379c68649e6d8dda9c6b3a0a188af915f4d3ae9e7c9ee301a311d843c78b7c2e7c0d55edf0a5da19509c2308dbcff422dca3e3d56569c5094b30665c43cd65765091b19448a55a7aac7f237c862e307f6006342e6e061add7c939dc2ae9f48e25366b5e6712b702c8a87f7d221d9656703a5eed93373d199ee2c53ac0adb084a21288a999b505245d4a646a47b811dbd59fc35d6b1334e8e4c3e87a0399ba4b1c168eae59d3efac58f91b164b0ecc42f3e555ac861e86f0f2d9d18d59aa11a52afb991ea6e9c755bb6b0fe76f2fbbf8a1bbc006ad6114eb411ddc1b8a5c8f78f51ed3e574b31909538d007e8a56689e2a6ddfc9a7c4601e17779b84197ea2cf867cfda0a460da83b3a1a3e9097333390fc7383d40d1054ae460f15f189061bea715c779f03b00040e21232c7ae862920eaf8d9bc0a1b7b0dfe7674bf177d34315de53f49f8146f14ceb92e7b070d7e7868f53f89298cea91b2814b4d360ecc0140d145628a64336022b06cfbfb5abac153be83771025374cd9a2f8223ad0ad253451526658e7ce670d0f7ede85198115eaeddecebd4f51855b42215e76ce5753efc9277859a5b7007e8466023d7bb4df76885eaa71c79492baf2b7bb8cd45f1a21f5205151cb430b10357e2ad3bab97e92e1222a0de1b48701a5f226ea3e6b09f26dbccaca00f5bb18c08120eba4399cd118c3457571c6f4e10739dedfcac91be52f9c876d6b29aaf0f7910042a88643f3e5ed4c1cdde03d660a9720b48196e9741f510e31c0bf5d2b965a5bd4a72f2584da3f0d71c96214063b5bb143c294a1ea162c5a1becd5c08e29f374948f8541855d82a4000c965ababd8fca2a5cfe1417c27d44a3f61b68641ec1497d34159d0422b102a2c595d818191ffe6a38de85c622a166958ace3f3edb51b1356dc11875adb5800ed2830cf7edeea1fedb5a730cbde0f5946b56ea24481cec7f55fe8a08cea25bed997a18c24b829813f358ad69f03a72a605e35b4038652d85558a68dfdaf5d7f3f90f3a2a3180929504ef37db523e623b6c15f3a4bcec90e2b7d02b6148aa93973a28adb953516c0071bbe99b5dc45bc1fe340e957fbc341998248fc228c6c6b5d8c20d6131af55ca6f5b5bdde414a4299c9767fcc720ed135820426f446c6a5f94223b966373a7e22416b509b5b4f57c3e9c71b07e6f9eac20f10152b9ffba3efe6b078d8c9c54e19b7a8b7e71dfb6203bddbebf3a7d3987606eb69e814c33c8ba7fa1129c3008a1e72a16369155ca00c1d6dc0b7cd72377fe7359990ed74c8b56b724470078f5d5097a518147602de800afc0881fd6d449fc6f45cb5aab9d5f10af6af25dff6b9c2b3e3937224c4b5fd416ad86ca44df6a0b1b2a77e3f0046d9087a309abddd7a59869f0c2970bee2643f6207c6c570c3eb1b76865c9eae6947e8f614d63b81fa1b236e03eec74c1969b30bbb539779d54dee5012410260a617873064d3b5eff6df84d28c68735de1975471b888f3ba0a57cff538adce00724bad5bcddb38c44f8c82f3ada5f2a6fb3cd8e3d6353efafaea966fe07c1af398a8abfe2954fdd48c851886d064d295088d042c3aadff8aad09ac0566431f9c8862d556095e0d642cddf199d9e5afbf48968cd1da7a2d74db2a19df386e8334f37362057d32eb7359296ec2dac1e3704038afe1855fb9317f92e964901a18db48cb6a60e13e4c89795c7c62b6ded42bbed6427000894fdeec15e8e107def074bf7e1f051d93b4aafacd023de262f04127a8f93c7f6449cf8892f88753e755dc0e0e251813d5488e150428abf37e6b068f901f33a110af7cc43636c504b3ff3b5a75fd69267e4496201106e1c3e42bd7b9f67c16ac02698f4be52a0f7dfed5eb7925dab74b318ecb697fd85d18a893219de1eec5f45e31dabcdce35434edd7021f3d6a2c74c4bfbb7eb6c4e5ae9a1208c1f7c04415929ca902701e1ba64e3acc4c09f21abaad88a55d7840bffa91a0c22901fc6a9c8189cfe48a1320206f3ee9b85b912b9ed1078a7c389f4b52c26382d1bfe7dc198735421393e0d63726a44fabffdba9a37431d375a545e8337eefaedcc43d0b3b2d05c29a64764d3d8c089221c337e858a71cd85dab86106ab9ca6131e866771622376dbba6a25cf94975c920d5185c76b7fe1d9f081e9bd0e27690c93eb475abe26a981d12206423fb1354b5820ad8c8d3f10ab217e32353bb21b9aac30eb3c324cbfb9bad50cf632cc4ab5b0081dd9945b3d31d8d55dba716d73b70d9f5191e68faf8460749a2c18329627d7a1d11c86a3ae8072ae76b42fa81df445d1a63b01dc807f67b84d96df8d7c16439716ffe31dcb84c582a7841762fedbc80d367975877041d82373b7545914a396d60f76b6c2eb0e667afa6a7b96e0334a53a4cb9d3c0fb3790e72f958cba339daaa41f6369aa69821ee3bb7c34fe249fd61e4de56d111b8d8206881696239f59dcbfa571f9653c8511ced2006a161275ed1afada3b0a638eb2608a2759765b69ea0de429c9ee08485090baf5b6cfe97c7391028f611e0a732513e2558a014911c4d0b45ffb1b3478f4f676b1760b9da3aa3233672062427e3d3a44ec64ec974d3fc48ce465822da1dbeea4f7ddd59dab5062d63b72c0a01b907fbb55b98ddfed244370a3e6d039e10aaecc0ffdf93227fc94b5f45491aafb245d37560e1955f8bc1fb011f77eef074fb3d37e76f68bbd85bedab9bba78f476a2fc925b7f55d263559faac13a7594e59334e72aff49cfde50bcc8a1307a1e5afd3241b4245f67d9cb226d553bafdc8dea99ab6a2ad730b75a722865ccb3b4fdfbaeeed104f9b186de2eef2b435d0b240a482dd49490ea942a178ce7dbfdadba776d5e945fb756cfb8300964ab6ef7d90c98a3315cc3bafda63099fd22065116ccd5efa5c6a7eb4c3f6ce09b0905f3587f749a4fce2e4925217cfa7ccadff437748223b5cd2fd128877331cc59d5552540c9e226b79e8bf2dd814536847827e2e3f8871811145cd00796e21e37254963b1ce094b4944b587e673f2426a000c21860372d15f0fe44aa96919f17e08c1f37b3d504239c1e98bb4ca364ad839212c260d66550d3916362b2cbb64cea267322c828da13523539774be01ec92f22162ff8f968c15e3f96b3bb9d3e3debe3a554b0e0f71a55f1d76rootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootapparmor-2.13.6-150300.3.15.1.src.rpmapparmor-profilesconfig(apparmor-profiles)subdomain-profiles     /bin/shapparmor-abstractionsapparmor-parser(CAP_SYSLOG)config(apparmor-profiles)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)2.13.62.13.6-150300.3.15.13.0.4-14.6.0-14.0-15.2-14.14.3bBaZ@aՈ@a@aim@aex_м@__@_~@_[f_P_-B@_@^m@^@^<@^j$@^,-]҇]o](]K@]]@\\@\ \\v{\I\ lsb_release") - fix buggy syntax in tunables/share - several abstraction updates - parser: fix "Px -> foo-bar" (the "-" was rejected before) - several bugfixes in aa-genprof and aa-logprof - see https://gitlab.com/apparmor/apparmor/wikis/Release_Notes_2.13.3 for the detailed upstream changelog - drop upstream(ed) patches: - apparmor-nameservice-resolv-conf-link.patch - profile_filename_cornercase.diff - dnsmasq-libvirtd.diff - dnsmasq-revert-alternation.diff - usrmerge-fixes.diff - libapparmor-swig-4.diff - re-number remaining patches- add upstream libapparmor-swig-4.diff: fix libapparmor tests with swig 4.0 (boo#1135751)- Disable LTO (boo#1133091).- update lessopen.sh profile for usrMerge (bash and tar) (boo#1132350)- add usrmerge-fixes.diff: fix test failures when /bin/sh is handled by update-alternatives (boo#1127877)- add dnsmasq-revert-alternation.diff: revert path alternation in dnsmasq profile and re-add peer=/usr/sbin/libvirtd rules to avoid breaking libvirtd (boo#1127073)- add dnsmasq-libvirtd.diff: allow peer=libvirtd in the dnsmasq profile to match the newly added libvirtd profile name (boo#1118952#c3)- Use %license instead of %doc [bsc#1082318]- add apparmor-lessopen-nfs-workaround.diff: allow network access in lessopen.sh for reading files on NFS (workaround for boo#1119937 / lp#1784499)- add profile_filename_cornercase.diff: drop check that lets aa-logprof error out in a corner-case (log event for a non-existing profile while a profile file with the default filename for that non-existing profile exists) (boo#1120472)- netconfig: write resolv.conf to /run with link to /etc (fate#325872, boo#1097370) [patch apparmor-nameservice-resolv-conf-link.patch]- update to AppArmor 2.13.2 - add profile names to most profiles - update dnsmasq profile (pid file and logfile path) (boo#1111342) - add vulkan abstraction - add letsencrypt certificate path to abstractions/ssl_* - ignore *.orig and *.rej files when loading profiles - fix aa-complain etc. to handle named profiles - several bugfixes and small profile improvements - see https://gitlab.com/apparmor/apparmor/wikis/Release_Notes_2.13.2 for the detailed upstream changelog - remove upstreamed fix-syntax-error-in-rc.apparmor.functions.patch- update to 2.13.1 - add qt5 and qt5-compose-cache-write abstractions - add @{uid} and @{uids} kernel var placeholders - several profile and abstraction updates - ignore "abi" rules in parser and tools (instead of erroring out) - utils: fix overwriting of child profile flags if they differ from the main profile - several bugfixes (including boo#1100779) - see https://gitlab.com/apparmor/apparmor/wikis/Release_Notes_2.13.1 for the detailed upstream changelog - remove upstream(ed) patches: - aa-teardown-path.diff - fix-apparmor-systemd-perms.diff - logprof-skip-cache-d.diff - fix-samba-profiles.patch - make-pyflakes-happy.diff - dnsmasq-Add-permission-to-open-log-files.patch - refresh apparmor-samba-include-permissions-for-shares.diff - add fix-syntax-error-in-rc.apparmor.functions.patch- update rpmlintrc: - whitelist .features file which is part of the pre-compiled cache - comment out filters for the disabled tomcat_apparmor subpackage- Backport dnsmasq fix: 025c7dc6 - dnsmasq-Add-permission-to-open-log-files.patch (boo#1111342)- add make-pyflakes-happy.diff to fix an unused variable (SR 629206)- add fix-samba-profiles.patch - smbd loads new shared libraries. Allow winbindd to access new kerberos credential cache location (boo#1092099)- exclude the /etc/apparmor.d/cache.d/ directory from aa-logprof parsing (logprof-skip-cache-d.diff)- add fix-apparmor-systemd-perms.diff - fix permissions of /lib/apparmor/apparmor.systemd (boo#1090545)- create and package precompiled cache (/usr/share/apparmor/cache, read-only) (boo#1069906, boo#1074429) - change (writeable) cache directory to /var/cache/apparmor/ - with the new btrfs layout, the only reason for using /var/lib/apparmor/cache/ (which was "it's part of the / subvolume") is gone, and /var/cache makes more sense for the cache - adjust parser.conf (via apparmor-enable-profile-cache.diff) to use both cache locations - clear cache also in %post of abstractions package- update to AppArmor 2.13 - add support for multiple cache directories and cache overlays (boo#1069906, boo#1074429) - add support for conditional includes in policy - remove group restrictions from aa-notify (boo#1058787) - aa-complain etc.: set flags for profiles represented by a glob - aa-status: split profile from exec name - several profile and abstraction updates - see https://gitlab.com/apparmor/apparmor/wikis/Release_Notes_2.13 for the detailed upstream changelog - drop upstreamed patches and files: - aa-teardown - apparmor.service - apparmor.systemd - 32-bit-no-uid.diff - disable-cache-on-ro-fs.diff - dovecot-stats.diff - parser-write-cache-warn-only.diff - set-flags-for-profiles-represented-by-glob.patch - fix-regression-in-set-flags.patch - drop spec code that handled installing aa-teardown, apparmor.service and apparmor.systemd (now part of upstream Makefile) - simplify "make -C profiles parser-check" call (upstream Makefile bug that required to call "cd" was fixed) - add aa-teardown-path.diff - install aa-teardown in /usr/sbin/ - move 'exec' symlink to parser package (belongs to aa-exec)- Set flags for profiles represented by glob (bsc#1086154) set-flags-for-profiles-represented-by-glob.patch fix-regression-in-set-flags.patch- add dovecot-stats.diff: - add dovecot/stats profile and allow dovecot to run it (boo#1088161) - allow dovecot/auth to write /run/dovecot/old-stats-user (part of boo#1087753) - update 32-bit-no-uid.diff with upstream fix- Change of path of rpm in lessopen.sh (boo#1082956)- add disable-cache-on-ro-fs.diff - disable write cache if filesystem is read-only and don't bail out (bsc#1069906, bsc#1074429)- add parser-write-cache-warn-only.diff to make cache write failures a warning instead of an error (boo#1069906, boo#1074429) - reduce dependeny on libnotify-tools (used by aa-notify -p) to "Suggests" to avoid pulling in several Gnome packages on servers (boo#1067477)- update to AppArmor 2.12 - add support for 'owner' rules in aa-logprof and aa-genprof - add support for includes with absolute path in aa-logprof etc. (lp#1733700) - update aa-decode to also decode PROCTITLE (lp#1736841) - several profile and abstraction updates, including boo#1069470 - see https://gitlab.com/apparmor/apparmor/wikis/Release_Notes_2.12 for the detailed upstream changelog - drop upstreamed patches: - read_inactive_profile-exactly-once.patch - utils-fix-sorted-save_profiles-regression.diff - lessopen profile: change all 'rix' rules to 'mrix' - add 32-bit-no-uid.diff to fix handling of log events without ouid on 32 bit systems- update to AppArmor 2.11.95 aka 2.12 beta1 - add JSON interface to aa-logprof and aa-genprof (used by YaST) - drop old YaST interface code - update audio, base and nameservice abstractions - allow @{pid} to match 7-digit pids - see http://wiki.apparmor.net/index.php/ReleaseNotes_2_11_95 for the detailed upstream changelog - drop upstreamed patches - apparmor-yast-cleanup.patch - apparmor-json-support.patch - nameservice-libtirpc.diff - drop obsolete perl modules (YaST no longer needs them) - drop patches that were only needed by the obsolete perl modules: - apparmor-utils-string-split - apparmor-abstractions-no-multiline.diff - drop profiles-sockets-temporary-fix.patch - obsoleted by a fix in apparmor_parser - refresh utils-fix-sorted-save_profiles-regression.diff - add aa-teardown (new script to unload all profiles) - make ExecStop in apparmor.service a no-op (workaround for a systemd restriction, see boo#996520 and boo#853019 for details) - lessopen profile: allow capability dac_read_search and dac_override, allow groff to execute several helpers (boo#1065388)- read_inactive_profile-exactly-once.patch (bsc#1069346) Perform reading of inactive profiles exactly once.- update to AppArmor 2.11.1 - add permissions to several profiles and abstractions (including lp#1650827 and boo#1057900) - several fixes in the aa-* tools (including lp#1689667, lp#1628286, lp#1661766 and boo#1062667) - fix downgrading/converting of 'unix' rules (will be supported in kernel 4.15) to 'network unix' rules in apparmor_parser (boo#1061195) - see http://wiki.apparmor.net/index.php/ReleaseNotes_2_11_1 for upstream changelog - remove upstream(ed) patches - upstream-changes-r3616..3628.diff - upstream-changes-r3629..3648.diff - parser-tests-dbus-duplicated-conditionals.diff - apparmor-fix-podsyntax.patch - sshd-profile-drop-local-include-r3615.diff - refresh apparmor-yast-cleanup.patch - add utils-fix-sorted-save_profiles-regression.diff to fix a regression in displaying the "changed profiles" list in aa-logprof- add nameservice-libtirpc.diff to fix NIS/YP logins (boo#1062244)- profiles-sockets-temporary-fix.patch to cater to nameservices with the new sockets mediation, until unix rules are upstreamed (boo#1061195)- add apparmor-fix-podsyntax.patch from mailing list to fix compilation with perl 5.26- do not require exact X.Y version of "python3" - require also matching python(abi) which is arguably more important- don't rely on implementation details for reload in %post- add JSON support. Required for FATE#323380. (apparmor-yast-cleanup.patch, apparmor-json-support.patch)- add upstream-changes-r3629..3648.diff: - preserve unknown profiles when reloading apparmor.service (CVE-2017-6507, lp#1668892, boo#1029696) - add aa-remove-unknown utility to unload unknown profiles (lp#1668892) - update nvidia abstraction for newer nvidia drivers - don't enforce ordering of dbus rule attributes in utils (lp#1628286) - add --parser, --base and --Include option to aa-easyprof to allow non-standard paths (useful for tests) (lp#1521031) - move initialization code in apparmor.aa to init_aa(). This allows to run all utils tests even if /etc/apparmor.d/ or /sbin/apparmor_parser don't exist. - several improvements in the utils tests - drop upstreamed python3-drop-re-locale.patch - no longer delete/skip some of the utils tests (to allow this, add parser-tests-dbus-duplicated-conditionals.diff) - add var.mount dependeny to apparmor.service (boo#1016259#c34)- Cleanup spec file: - don't use insserv if we afterwards call systemd, this can have bad side effects - remove dead code - remove now obsolete 'distro' checks - Replace init.d script with new wrapper working with systemd- add python3-drop-re-locale.patch: remove deprecated re.LOCALE flag in Python UI as it was dropped from Python 3.6 (lp#1661766)- add upstream-changes-r3616..3628.diff: - update abstractions/base, abstractions/apache2-common and dovecot profiles - merge ask_the_questions() of aa-logprof and aa-mergeprof - pass LDFLAGS when building parser, libapparmor perl bindings and pam_apparmor - adjust deleting the cache in profiles %post to the new cache location - silence errors when deleting the cache (boo#976914)- split libapparmor into separate spec to get rid of build loop involving mariadb, systemd, apparmor, libapr and mariadb again (see the discussion in SR 448871 for details)- update to AppArmor 2.11.0 - apparmor_parser now supports parallel compiles and loads - add full support for dbus, ptrace and signal rules and events to the utils - full rewrite of the file rule handling in the utils - lots of improvements and fixes - see http://wiki.apparmor.net/index.php/ReleaseNotes_2_11 for the detailed changelog - patches: - add sshd-profile-drop-local-include-r3615.diff to fix 'make check' - drop aa-unconfined-fix-netstat-call-2.10r3380.diff, no longer needed - refresh apparmor-abstractions-no-multiline.diff - refresh apparmor-samba-include-permissions-for-shares.diff - spec changes: - aa-unconfined switched to using ss (from iproute2), adjust Recommends: - move libapparmor to /usr/lib*/ - drop %if %suse_version checks for 12.x - change several Obsoletes from %version to < 2.9. Those package names weren't used since years, and 2.9 is still a careful choice - include apparmor.service independent of %suse_version - techdoc.pdf is now shipped in upstream tarball to reduce BuildRequires - drop latex2html, texlive-* and w3m BuildRequires - techdoc.txt and techdoc.html not included, drop them from the package - run most of utils/ make check (some tests expect /etc/apparmor.d/ and /sbin/apparmor_parser to exist, skip them) - BuildRequires python3-pyflakes (utils tests) and dejagnu (libapparmor tests) - drop sed'ing python3 into aa-* shebang (upstreamed) - build binutils - aa-exec is now written in C and lives in /usr/bin/, move it to the apparmor_parser package and create a compability symlink in /usr/sbin/ - aa-exec manpage moved to section 1 - aa-enabled is a small new tool to find out if AppArmor is enabled - package new aa_stack_profile(2) manpage- change /etc/apparmor.d/cache symlink to /var/lib/apparmor/cache/. This is part of the root partition (at least with default partitioning) and should be available earlier than /var/cache/apparmor/ (boo#1015249, boo#980081, bsc#1016259) - add dependency on var-lib.mount to apparmor.service as safety net- update to AppArmor 2.10.2 maintenance release - lots of bugfixes and profile updates (including boo#1000201, boo#1009964, boo#1014463) - see http://wiki.apparmor.net/index.php/ReleaseNotes_2_10_2 for details - add aa-unconfined-fix-netstat-call-2.10r3380.diff to fix a regression in aa-unconfined - drop upstream(ed) patches: - changes-since-2.10.1--r3326..3346.diff - changes-since-2.10.1--r3347..3353.diff - libapparmor-fix-import-path.diff (upstream fix is slightly different) - nscd-var-lib.diff - refresh apparmor-abstractions-no-multiline.diff- add nscd-var-lib.diff to allow /var/lib/nscd/ in the nscd profile and abstractions/nameservice (path changed in latest nscd in Tumbleweed)- add changes-since-2.10.1--r3347..3353.diff with upstream changes and fixes in the 2.10 branch, including - allow writing *.qf files (for disk-based buffering) in syslog-ng profile - add several permissions to the dovecot profiles (deb#835826) - add a missing path in the traceroute profile- add changes-since-2.10.1--r3326..3346.diff with upstream changes and fixes since the 2.10.1 release, including - allow dac_override in winbindd profile (boo#990006#c5) - allow mr for /usr/lib*/ldb/*.so in samba abstractions (needed since Samba 4.4.x, boo#990006) - abstractions/nameservice: also support ConnMan-managed resolv.conf - let aa-genprof ask about profiles in extra dir (again) - fix aa-logprof "add hat" endless loop (lp#1538306) - honor 'chown' file events in logparser.py - ignore log file events with a request mask of 'send' or 'receive' because they are actually network events (lp#1577051, lp#1582374) - accept hostname with dots when parsing logs (lp#1453300 comments #1 and #2) - fix python LibAppArmor import failures with swig > 3.0.8 (boo#987607) (libapparmor-fix-import-path.diff) - refresh apparmor-abstractions-no-multiline.diff - drop upstreamed profiles-ping-inet6-r3449.diff - add %check section - runs libapparmor (including swig bindings), parser and profiles tests - add BuildRequires: perl(Locale::gettext) - needed for parser tests- add profiles-ping-inet6-r3449.diff - latest ping also does IPv6 (boo#980596)- update to AppArmor 2.10.1 (2.10 branch r3326): - fix incorrect output of child profile names (apparmor_parser -N) which caused 'rcapparmor reload' to remove child profiles and hats (lp#1551950) - fix a crash in aa-logprof / logparser.py for change_hat log events (lp#1523297) and log events that look like file events, but aren't (lp#1540562, lp#1525119, lp#1466812) - write unix rules when saving a profile (lp#1522938, boo#954104#c3) - several fixes for variable handling in aa-logprof - map c (create) log events to w instead of a - add python to the "no Px rule" list in logprof.conf - let aa-logprof check for duplicate profiles - let aa-status work without the apparmor.fail python module (boo#971917, lp#1480492) - add permissions in several profiles (including boo#948584, boo#948753, boo#954959, boo#954958, boo#971790, boo#964971, boo#921098, boo#923201 and boo#921098#c15). - and many more fixes, see the full changelog at http://wiki.apparmor.net/index.php/ReleaseNotes_2_10_1 - drop upstream(ed) patches: - fix-initscript-aa_log_end_msg.diff - syslog-ng-profile-boo948584.diff - upstream-profile-updates-r3205-3241.diff - refresh patches: - apparmor-abstractions-no-multiline.diff - apparmor-samba-include-permissions-for-shares.diff - drop libapparmor autogen.sh call (broke the build) and remove libtool BR- add syslog-ng-profile-boo948584.diff - add several permissions needed by latest syslog-ng (boo#948584, boo#948753) - add upstream-profile-updates-r3205-3241.diff with several profile updates: - add /usr/share/locale-bundle/** to abstractions/base - allow dnsmask to use /bin/sh (boo#940749) and /bin/dash - allow dovecot imap to read /run/dovecot/mounts - allow avahi-daemon to write to /run/systemd/notify - allow ntpd to read $PATH directory listings (boo#945592, boo#948752) - update dhclient profile - allow skype to read @{PROC}/@{pid}/net/dev (boo#939568) - and some other small updates - drop upstreamed apparmor-winbindd-r3213.diff (included in the upstream-profile-updates patch)- netstat moved to net-tools-deprecated in Tumbleweed (boo#944904)- add apparmor-winbindd-r3213.diff - add missing k permissions for /etc/samba/smbd.tmp/msg/* in winbindd profile (boo#921098 #c15..19)- add fix-initscript-aa_log_end_msg.diff - fixes ugly initscript output (boo#862170)- update to AppArmor 2.10 (trunk r3205) - profile names can now contain variables - improved profile compile time in apparmor_parser - lots of improvements, refactoring and bugfixes in the aa-* tools - new apis for managing and loading profile caches into the kernel in libapparmor - lots of profile updates - see http://wiki.apparmor.net/index.php/ReleaseNotes_2_10 for the complete changelog with more details - add new apparmor_private.h and the aa_query_label(2), aa_features(3), aa_kernel_interface(3), aa_policy_cache(3), aa_splitcon(3) manpages to libapparmor-devel - drop apparmor-2.5.1-edirectory-profile patch - it's most probably no longer needed (see boo#621394 for details) - drop upstreamed samba-4.2-profiles.diff - refresh apparmor-samba-include-permissions-for-shares.diff- systemd-rpm-macros and %systemd_requires were at the wrong place, move them to the parser package (boo#931792)- update to AppArmor 2.9.2 (2.9 branch r2911) - lots of bugfixes in the parser and the aa-* tools (including boo#918787) - update dovecot and dnsmasq profiles and several abstractions (including boo#911001) - see http://wiki.apparmor.net/index.php/ReleaseNotes_2_9_2 for the full changelog - remove upstream(ed) patches apparmor-changes-since-2.9.1.diff and apparmor-fix-stl-ostream.diff - replace GPG key with new AppArmor GPG signing key, see https://launchpad.net/apparmor/+announcement/13404- make sure %service_del_postun doesn't call systemctl try-restart (boo#853019, bare systemd edition) - add samba-4.2-profiles.diff: update samba (winbindd and nmb) profiles for samba 4.2 (boo#921098, boo#923201)- only install apparmor.service for openSUSE > 13.2- Add a native systemd unit which *at the moment* only wraps/masks the early boot script.- add apparmor-fix-stl-ostream.diff which fixes odd uses of std::ostream which are not valid. Fixes build with GCC 5- allow lessopen.sh to run /usr/bin/unzip-plain (boo#906858)- add Requires: python3 to python3-apparmor package - readline isn't part of python3-base (boo#917577)- add apparmor-changes-since-2.9.1.diff with upstream fixes since the 2.9.1 release - update logparser.py to support changed syslog format (lp#1399027) - update usr.sbin.dovecot and usr.lib.dovecot.imap{, -login} profiles (lp#1296667) - update the mysqld profile - fix network rule description in apparmor.d(5) manpage - drop upstreamed dnsmasq-profile-fixes.patch - update expired GPG key- update to AppArmor 2.9.1 (2.9 branch r2831) - fix log parsing for 3.16 kernels and syslog-style logs (boo#905368) - several fixes and performance improvements in the aa-* utils - profile updates for dnsmasq (boo#907870), nscd (boo#904620#c14 and bnc#908856), useradd, sendmail, man and passwd - see http://wiki.apparmor.net/index.php/ReleaseNotes_2_9_1 for full release notes - refresh dnsmasq-profile-fixes.patch- Fix dnsmasq profile to allow executing bash to run the --dhcp-script argument. Also fixed /usr/lib -> /usr/{lib,lib64} to get libvirt leasehealper script to run even on x86_64. dnsmasq-profile-fixes.patch. boo#911001- rename lessopen.sh profile file to usr.bin.lessopen.sh to match the script filename- add apparmor-lessopen-profile.patch: /usr/bin/lessopen.sh needs confinement. bnc#906858- delete cache in apparmor-profiles %post (workaround for bnc#904620#c8 / lp#1392042)- No longer perform gpg validation; osc source_validator does it implicit: + Drop gpg-offline BuildRequires. + No longer execute gpg_verify.- fix bashism in post script- update to AppArmor 2.9.0 (r2759) - change aa-mergeprof to the final commandline syntax - lots of bugfixes in the aa-* tools (bnc#900163, lp#1328707 and several bugs without a formal bugreport) - small additions to gnome, freedesktop.org, ubuntu-browsers.d/java and user-mail abstractions - fix mod_apparmor to not break basic auth - update perl modules to support signal, unix and ptrace rules (bnc#900013) - don't warn about rules not supported by the kernel - fix logging of "audit capability" (lp#1378091) - add support for the "hat" keyword in apparmor.vim - build html version of apparmor.vim manpage again (lp#1366572) - see also http://wiki.apparmor.net/index.php/ReleaseNotes_2_9_0 - update apparmor-abstractions-no-multiline.diff - remove upstreamed apparmor-profiles-ntpd-pid-location.diff/bin/shsubdomain-profilesgoat04 1657079435  !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqrstuvwxyz{|}~2.13.6-150300.3.15.12.13.6-150300.3.15.12.13.62.9apache2.dphpsysinfobin.pingREADMEbin.pinglsb_releasenvidia_modprobesamba-bgqdsbin.klogdsbin.syslog-ngsbin.syslogdusr.bin.lessopen.shusr.lib.apache2.mpm-prefork.apache2usr.lib.dovecot.anvilusr.lib.dovecot.authusr.lib.dovecot.configusr.lib.dovecot.deliverusr.lib.dovecot.dictusr.lib.dovecot.dovecot-authusr.lib.dovecot.dovecot-ldausr.lib.dovecot.imapusr.lib.dovecot.imap-loginusr.lib.dovecot.lmtpusr.lib.dovecot.logusr.lib.dovecot.managesieveusr.lib.dovecot.managesieve-loginusr.lib.dovecot.pop3usr.lib.dovecot.pop3-loginusr.lib.dovecot.script-loginusr.lib.dovecot.ssl-paramsusr.lib.dovecot.statsusr.sbin.apache2usr.sbin.avahi-daemonusr.sbin.dnsmasqusr.sbin.dovecotusr.sbin.identdusr.sbin.mdnsdusr.sbin.nmbdusr.sbin.nscdusr.sbin.ntpdusr.sbin.smbdusr.sbin.smbd-sharesusr.sbin.smbldap-useraddusr.sbin.tracerouteusr.sbin.winbinddlsb_releasenvidia_modprobesamba-bgqdsbin.klogdsbin.syslog-ngsbin.syslogdusr.bin.lessopen.shusr.lib.apache2.mpm-prefork.apache2usr.lib.dovecot.anvilusr.lib.dovecot.authusr.lib.dovecot.configusr.lib.dovecot.deliverusr.lib.dovecot.dictusr.lib.dovecot.dovecot-authusr.lib.dovecot.dovecot-ldausr.lib.dovecot.imapusr.lib.dovecot.imap-loginusr.lib.dovecot.lmtpusr.lib.dovecot.logusr.lib.dovecot.managesieveusr.lib.dovecot.managesieve-loginusr.lib.dovecot.pop3usr.lib.dovecot.pop3-loginusr.lib.dovecot.script-loginusr.lib.dovecot.ssl-paramsusr.lib.dovecot.statsusr.sbin.apache2usr.sbin.avahi-daemonusr.sbin.dnsmasqusr.sbin.dovecotusr.sbin.identdusr.sbin.mdnsdusr.sbin.nmbdusr.sbin.nscdusr.sbin.ntpdusr.sbin.smbdusr.sbin.smbldap-useraddusr.sbin.tracerouteusr.sbin.winbinddapparmorcacheac58ebd9.0.featuresbin.pinglsb_releasenvidia_modprobesamba-bgqdsbin.klogdsbin.syslog-ngsbin.syslogdusr.bin.lessopen.shusr.lib.apache2.mpm-prefork.apache2usr.lib.dovecot.anvilusr.lib.dovecot.authusr.lib.dovecot.configusr.lib.dovecot.deliverusr.lib.dovecot.dictusr.lib.dovecot.dovecot-authusr.lib.dovecot.dovecot-ldausr.lib.dovecot.imapusr.lib.dovecot.imap-loginusr.lib.dovecot.lmtpusr.lib.dovecot.logusr.lib.dovecot.managesieveusr.lib.dovecot.managesieve-loginusr.lib.dovecot.pop3usr.lib.dovecot.pop3-loginusr.lib.dovecot.script-loginusr.lib.dovecot.ssl-paramsusr.lib.dovecot.statsusr.sbin.apache2usr.sbin.avahi-daemonusr.sbin.dnsmasqusr.sbin.dovecotusr.sbin.identdusr.sbin.mdnsdusr.sbin.nmbdusr.sbin.nscdusr.sbin.ntpdusr.sbin.smbdusr.sbin.smbldap-useraddusr.sbin.tracerouteusr.sbin.winbinddextra-profilesREADMEbin.netstatetc.cron.daily.logrotateetc.cron.daily.slocate.cronetc.cron.daily.tmpwatchsbin.dhclientsbin.dhclient-scriptsbin.dhcpcdsbin.portmapsbin.resmgrdsbin.rpc.lockdsbin.rpc.statdusr.NX.bin.nxclientusr.bin.acroreadusr.bin.aproposusr.bin.evolution-2.10usr.bin.famusr.bin.freshclamusr.bin.gaimusr.bin.manusr.bin.mlmmj-bounceusr.bin.mlmmj-maintdusr.bin.mlmmj-make-ml.shusr.bin.mlmmj-processusr.bin.mlmmj-receiveusr.bin.mlmmj-recieveusr.bin.mlmmj-sendusr.bin.mlmmj-subusr.bin.mlmmj-unsubusr.bin.operausr.bin.passwdusr.bin.procmailusr.bin.skypeusr.bin.spamcusr.bin.svnserveusr.bin.wiresharkusr.bin.xfsusr.lib.GConf.2.gconfd-2usr.lib.RealPlayer10.realplayusr.lib.bonobo.bonobo-activation-serverusr.lib.evolution-data-server.evolution-data-server-1.10usr.lib.firefox.firefoxusr.lib.firefox.firefox.shusr.lib.firefox.mozilla-xremote-clientusr.lib.man-db.manusr.lib.postfix.anvilusr.lib.postfix.bounceusr.lib.postfix.cleanupusr.lib.postfix.discardusr.lib.postfix.dnsblogusr.lib.postfix.errorusr.lib.postfix.flushusr.lib.postfix.lmtpusr.lib.postfix.localusr.lib.postfix.masterusr.lib.postfix.nqmgrusr.lib.postfix.oqmgrusr.lib.postfix.pickupusr.lib.postfix.pipeusr.lib.postfix.postscreenusr.lib.postfix.proxymapusr.lib.postfix.qmgrusr.lib.postfix.qmqpdusr.lib.postfix.scacheusr.lib.postfix.showqusr.lib.postfix.smtpusr.lib.postfix.smtpdusr.lib.postfix.spawnusr.lib.postfix.tlsmgrusr.lib.postfix.trivial-rewriteusr.lib.postfix.verifyusr.lib.postfix.virtualusr.lib64.GConf.2.gconfd-2usr.sbin.cupsdusr.sbin.dhcpdusr.sbin.httpd2-preforkusr.sbin.imapdusr.sbin.in.fingerdusr.sbin.in.ftpdusr.sbin.in.ntalkdusr.sbin.ipop2dusr.sbin.ipop3dusr.sbin.lighttpdusr.sbin.mysqldusr.sbin.nmbdusr.sbin.oidentdusr.sbin.popperusr.sbin.postaliasusr.sbin.postdropusr.sbin.postmapusr.sbin.postqueueusr.sbin.sendmailusr.sbin.sendmail.postfixusr.sbin.sendmail.sendmailusr.sbin.smbdusr.sbin.spamdusr.sbin.squidusr.sbin.sshdusr.sbin.useraddusr.sbin.userdelusr.sbin.vsftpdusr.sbin.xinetd/etc/apparmor.d//etc/apparmor.d/apache2.d//etc/apparmor.d/local//usr/share//usr/share/apparmor//usr/share/apparmor/cache//usr/share/apparmor/cache/ac58ebd9.0//usr/share/apparmor/extra-profiles/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:24912/SUSE_SLE-15-SP3_Update/dc7934d2ca5d37f1ee18b50c372c7b79-apparmor.SUSE_SLE-15-SP3_Updatedrpmxz5x86_64-suse-linuxdirectoryASCII textC source, ASCII textASCII text, with very long linesC source, UTF-8 Unicode textwNaWautf-8e62061add1ccc12bf4091d10ec1efa2bf6a3447e57f5c6c5fda696e29a2f600b?7zXZ !t/zs]"k%vR~S4)N^A ;:8m`-NWJG=Q ,+'g̟$Nj/f?Mo6*/Fל=○A Lހ6p8й+K3m E,޶$׼=jbksoq"dXwPͮƽGJbG۳FߴExCKzv>кVs@ԓĈޘm~m(\Ŵt4Ćɠ'zrJ=XLHhzI{l)78|X9+b\OƚhQ׳}gړh5DNNf2π{N'^NpbsO WL(SSc!hEtQO `Eς:0sT*5!z p+Uis*ao beI#:ʒH K}=!Q˫f;'3GEMk| /݊P?Sc_Tq)s]L5_M5[HQz'}zZXuIq7lF.M *{ˑ4qN||-h]AL`j%~8U>\+_ Ԣ+ӳX^jYsj>R qjƏ%hhq}){P G^d`6v)|Nߜz<^1a#kJ%d!׶axe#,٣=!5^lE="^ k9kQ-X]`ד>D%.(xjWN`nW7{K[rq> 7ICz,J)cTQ\lв:v(kL ncd;?аZ0Hm˃NtDo E9)C7 (;[pM Pο0x>>3 iĪ.NY V5kE(5 gv|#'mjXh!^#YM5[^Ɵ;J}~W[,!`kQxyw&֨F֛TQ@0$2oњ.Ёp%K>@``3vya!2|svDiW}7^j5?W(X%jqhknpԂ8, *a׶t3^۷swX4E+@j)Xц$tHb{|kڂ|5rj$0̃jqD&w3ҋGf: -y{t'۶8Ժ@h"%&TAiZмU(ivZe%P%BAWs:f`8)vJӄgHأӻHjʎz臝K3>BИffBNz_ 7de/fcgHA'Sr(pB:R(PVk[uq F/Wѻu]Dfw'}jb8Vh;5ziu7r&zh d^ uŨv +)k k`3iknYY,wjRl W_!Sl `0.*@WD ])]BkV$B8GzD{1 1 hXE @Mu~4y! 2їC8Vkٯh4d1"d.q (F|l u\4bG'QN %s [7Mw7]EP_LC*A<[r6uł4E0#"䟬L˲s ]V\@ex'/:z2t{J6rPU~?˪_S^A^ Elx*~{0?k!#<Dt)™ēnsaʠpk(XJyAub[zSE~,d`}`EʘbVYBW6R^_BA,3HN(SN) fSacX6K8)lLR᠔yjkZ[e3 ϯpy\[IUH>jy/eTWd ,oBinG9sM[(Ac0-<<OIX~F%2. ׏ǘ-D|pA8%.]*SC:džXK'W~~_VQG1>&(j~FM=ǿ߆jm{]wI~?eaa!|} ,Vx*ᠢl(oDө`ͳ%p "\bh[l;A~o$! iܱ+0ESs1'ʥ<M/q5# HIFtĴ%'}:!KսC7uH| v1L=KŠ^GҒs؊P5ٿH-6LmF)tmYa LTYd2hodO7ڄvMyjGJ  ThMӦ>ҡ!i3#`{݇:bahX`ς;</]w~4E2"i[n@a "5\^esV Xǒ(\1 ؆xou9Ku?#o1H9܏=lyt6< Ɖar n"|A<޻ 7 %nMnWֱ% GjQUd| [D+Ƃk,I3/-xNeӐCu2m_KVAN@3\oJǍ^J_rݹ#P=SiiwG v8PIŀJIEMOsm͖'\V#ƺ" 2{T& Tv(+`GH(őe8MOZz&;JklX*CJILLp)Y谜MCk uq߲`"~$f%hld̶iW=@"5vy0we ((&n/%#ʬ:ȝ6wLZ?Wb|]K٩5f~qtqw w<)!r*=E ڽg݋6I7r1U>M95A R\ (9\3J׮f,C8ozo:/N&(8f–%"3zPA5͊1|@eDޡJ1D9 C)Pezc ݚM"N~}ZpVF! -)E[3kl?h~_/B#䩠9$56]a-^737A RC_+_TE@L 򑋨о3 G<cWg qWCH2J/6ȱv<=C\LZ)mTl1(_~1沗\mlKrbRO9bÙDUOP5-P"Ru`E]9h$eEy褓$UA֤ܧƉP%섪›ѠJ,D'~7S3º`\z;ׇʭZ%bqa-Ȅ4=!S;>ApPvjw1R[ W o?Cho㮇W#MdhKk-)~?Q\(W\ MDHfHs۽Bi?z(X+jgI1Fmg;<Ѩ-%)/˧9S>vL3#[:Ycb#|{Hu8 /P KMmPTvaDũYpt$!\MCtbA3HSR:%!AH|ށƽ6k:::3SX*JUCyre]pܝ{|ǥA\p"\gyk/01+P"QG=8֏? ÜE<ӦN3z-^4@Ɵ[3T+sKMp3Rd]&ڋހ/]ejmOFF)KN{[|<`17 f[ۊe^`b߱S<S<G ZJGcmVthV# ACAP-}G1-A|g0;Իwg41 {]&zkr "\?k>BOta Q^[DΘAy^! 9N~C+L kDDt)tC@='>>-yk6̡k^2 ~3o)S $g$0ɍ7ky.QaRvZVpkrlP:K$T-( qxl$5K'iOΥ.B541Mhp9呱{.37+i UQgL.* |2 ߝFVyf[ZM`+$Ѩ3K%_w4 * B#2t#ˊOө/(}NbAfPL/0-o 1ߛICP֡LcBoR_đBBmqmڋItWoIME3;GA6b o֍+ۍuVH\5% 4[!`׸N@(w&IPIA?>{\]O9n AnCzMI@ H <'_{]Y'Djgۄذ rPDn%Xa![Cgi*GͫTC} -0&Z\HW0E[Y!gZ… Uh+saYwd+7~ AСe9lcQ~k\1d.nVL7e6 fujUgc(i_l/~:IuaDZ%2of>_~3A~1LϯWMO?6gmV\):J'4JJ&`hJ Ao‹bIX7厼,i^aLY^I`sf6.Է,ȧ0F[tB. #$zEi*c2ekQWQK_" va!&E/; 3P`xC!e~^KFPh~f~ 9o7=Mig͞|8:T1p$u,wKbD &ڃ@y"ꉵ_aOA`v1^ < ^bUJlV`#raȨ% IBr % wn6^DѺ59WGnTLW>vZHQYG߆ֈn,#ԑjۊGtsF'ISXoHlm$jeD۽%;):$-N'XQIM9%WMe2v:3"ԨD*(Mla؉IBMezgwsȑWDlO.2rWJT+$c`oI$N|6'i\$*OKOP=1< /!>xo14Vl=jzq1Ge+ɆJ.JBה_aa0\W #fbV /uݙF:5ҿf=f_ Lg^MmO|="6g2;yΠ(y@SiŠv h{1807 &i:A] [⽝ KD1wpjzD|@ *Y S}@-UHe/*kFi<亂=(8C=H "s59%7x-@U ήc;t# ~As^mbKIً!Py}9EErq:gJ% x浦ב(;PO S6f8D=6{j\h~3o^dndrT oIp$LsL(QqeSj"Gd]VсHu~*xP9 c5maoVY X` hNQv2Qt A3=b1)-/%[KK$MR>`klǢi[wF DCkij]:]բ K[T]Zـ^95%>4j UQ9;XĔst4e"~Ϳ"83{96p|%fQO ݸ>WT7oY^T\g?yqN;7CRM-m^f3*6჆50lpDt U-k}`Ue,.~$ \ +BD9I*r |RU9]:aBdAtN[ h@5-K o.&zy<:h0΁0߅fi4t`KH@Ru74ʐnR ـu:MDhM:R$Qy!n~ʸT³65 83~gz)oU076 _MeGE|\ W5njބboPgnp(2$'4asq4U5rC]N9<}#d(ײ,`4aEǧщvRsfŚ[8B'mӎ.x<7B XCi(J(cw绷|(8B_ij,p]|f[ Hd.be f}(wO1N=}q&F"O^aؘ hEIMMH-WWA3~@ʛVt *W*ȷ>@V baހZ?2jx6vm>Hh/fe[ TjQPEP 3kl(1ah,\ N€#t=U G#y> ErzSί.Lm8vX>l $9S)qldsn>:\Ka4yo}7 <(OYASQSh"6QлJf\,6PI[V5*utMydڻfR%0A?}ADeﹱ&1bJT!$492[gTc`tōը\. ujlk,iԱyn'&J/F(Lr(JOICLw%MŖF%:Qu|d>hKv ݁ۑȩD|O%,Am .p0_DȲ!ߛ-wQ9w\T6lDD9+H6)_B]8@C仑K( ,lވ>VN nѲ`mVnh1p=DBWl"O+;F]?iS> g".kVd>ӏ^Z[ LۑY2J"] :VHPu#!V؈p/"y|vh$Q#fKSu)A ωs؈F(:.EϚ<K(LnD{\|vdeͳW9h ̎j`7kl!y:sH#9BEriQT9 G;|#^Tqd(GhRQ kX2Abĭ3HrPg3 y+v2IKowj•ޒU]R?QOWկ^kFJb~vә}4Gjq-lyQǿBƅsWK<ߙ;V v1es5ᔾ%~ Y]Ҏp#4  Uoq3AşEێaݣ$/kH/yJXIh6C/uo3vkpaNmAL 薝 pP35cF^WPܶU2HD⥗b1`ն,h"_Q A,$}PENhf8tE}m0lqPkbŬ-!@ri|GP8t7~zn{^rTJ{}f(fD9?$./?_ XOԏ_jI4]]HS ((v m><J?e$\"KL32clR^9+` 3ᠫ,c;I hpNh2 HRw=.BspDo G|30g$!v(;.sj@{L]3 j$2ӎ* b&YpZ?a@ (Rr\/A _:? t$nMnG,(Ǣb/IZ4W=Y i~t@ h8[SCC/e,4,#o` /{`d۱(.զj:bPla|Q~HwW SPIVfOI6?2|%7̵=v(Yڽ!Sܷ\wA=i!ʗ2wfG9] S" |B.R o鼛R I 0ggG/a ~CKLGlI@p{L]@S&(27cgok`| = #eLJBa'&c9Yxڙ_R$OIDO!W ^܍1窉y]숽e,@I_Ge炾,Qg- 8tAy՚,3L9]XA^Ww@_, ?zbHj>h30ż\`G[u /,|Zj #8pq̀LK v dTtW60K# LegjL'zQH(nm-.gpNRv0g?rѺlh=[WFb4MZ sgZp;~˛lH&V|BL+>9|ۀBQ> ݌^v3ZJ0\z>E_@>'T 8U55,2"<^"mt 0eq)8:sD喿Mӟ'AFY욪PwN cT#ЮHS'S:1nצ{3ƴ8>W8 zѨy¨2DȡȨCnlu }뷩J%g#_C% !F1}{ j<=)h!R^QRu&/ZH_P#l.0oH3[Oy~a5ߴ>8؋^j1 m a>cADR$S!7>[Nzµݟu隸"#(BS&!}>qo; ҆*4Uo+62D1x^oy-ԳM Cq@2JPYY)0GcGn1zuu =AQMPϫg P٦SuO UD#}|d_ EӌMY]? YU^vr @v7a_n YZv_`}|$KKZ],U/;#k*LjIvLJѱ!_Fro7zqT~ %c#.9OwSY.*Gt*AÓ rgB@JbGRawHYyDҍ8>`aZWp~@Х7ɯ'z!ʛd_^ߣ4JD2nrss(WI((]~ 9!M' "=RI_ӦvμI2ɋ~F}d|s+ bƻ00}}*>-V;3o7`NB8_|7A;j_I6/u %-U=y\& p\pF7T*W"64 b[H BdcgQ݃o7gkcfAyT$J=qC$j?y@k5Ou)Xx65 A'T/錵~~Ruۣ#%'$Q]תӆjKl E gy2R~.cJeV,(%&jlōtCdiuPd R@OF/Dv_8 窗sëi']b_ X%2;\]\IQ_my-ȑQ=ٴCBW0Y4 @''(c>]Ykb1k& 񝫆l3wfҤ$`U]t Wg%oJ}UVG ^ & KLDĈ,  8)JVzrlmSݎaBIjH1Ť}<IZSy&)UBS(betja|o5L0T67ÔWF'WV4Q9ež{Fڦ.;YrK?mv"nH|{D[bgSѐ9vݿ= /KTئ7ཌ@xtQ-Мs n lˁ_&Zx;{3Ζ([>7Yx 6LPk:-~H Z]ihJ#Ht0&3?A_wUJj}Uf|OhgĚ= ]B]yD7vvv!n` Z rDcS^5ϔK`IdψʄO%ll!% L#+#1@#i(lvf\wk0HJ/zXlӔ儫Jh 5<1lZv@F"AaYJvO亳 q,1=&¨"_Ѽ4Ix{ }!u921-^Rl\,T#DJL}!B{fBߏ/s<4` $6۝?Q.C 9^tz!w =RcZ$.8RGc"آ/HEWlrNERL3{gnl!RI UcF7KkAj}PL[MJkc v,3rKf"9:4tuB1HT:ٻR2oA҅zƦβ# _Efā" t8D9 :ss&=}kXV(Y>sZ!I-LΟ c=2[u/0ׁз5̪q~6G\}R{G1Q"UpٚN9ъT?Ȁ*6C,flۆ@cYf@/!զ>orVzޱX4g3b xrlC_CN׀7uT@aVj ? q{a,Nj74C]+0E -z%m^\kx(XD#,+J:hd +Oǝ*\VƮ&_Q 묬Ǚ+ !?ȡNU@ʆs%&*?|a!ϯ?c RK͝ok5xdr<NI(XX*zu٩QEZbکjDWƣRH({@h$쿑e'^"+ ( {gTqHTn ]GAR˲б^6r(} onlH Y.@R]uOI-״5|XJ> Ì5&4fk@_3rW6NsB@ͽP`L% oit!< B;R/tbJR bo#{E)U\W8s#eΆ Ǽ=3\}'Y6MXP-~ui8UǗ+U>i;!uVwD Ibh.MB:#nyx^p4'[qhO+|/?"{ s1G,a]iE/ha.↤kFuEr ƣd _4-W;G $Aƴ}E C?[ӱ40y^Ɛ~\AzxԪɌ8Hy;bV7YFD˵ Өq#%ie=0`ҝ1踞i^tO`MrgDcpQ 1?)왤au=3i pqO g؈4HwKmn;9=z}R{p0*'5hPASD'2WYtmtupo[p(aJ7ۅ<5XLLrI\1HK6ULbTTh'NuE$ЂEU}vcbG0GtŏwibOpS(`NiDS2~HGq*׶hɓ(8A_}o {(,y+U=/#=B'9>aβ۪EJ8 je' <-+',x#c|0,#⌼/hZ[G0yGQRӷ'CUZ#)ȤY[4ޘ[=xLDIԫ0X8]Wr,1cxV0u+9߂Eֻ*ALDa}S,ܪ\^{"9Q|zETiqiRV Yf xږ1j4㒧Aj/8{.bm ʋ}- K1X'd$?讁9q4KI "E`dsC^II*;C_->].!e%mQfj)  ?fimuag'xޟrZyp_=!FhsIژB6 V8ugU5]߶iҦzC,./[ܑ?6YlYV@l!cYH9OtTځ2I@^-Asy X*"Ӯh ʈ.ONi-c ^;_ }-֢"P׷n0,^ ܔ+"A>t jl%m>&l;w\o6 j2= }@QvMTPyp$K TR5F P ˒2:)Gt q*{(Wn[A=[R=wU7qx#OTtvrlڏ{PGiV̓(rqΰzӸ$^]M0'$= B$+dXT1EtȀۼ"-Ng8$qnNTMh|Wc\;qLXg+q߼C^6a|zNC\~l`j@ I`'8Q#:d [D-&hu鰪Q*3ܶў(ryWSm]&Bx!I5yuK.+`2  S($rt'(RQא9ڡUSv!meIj͟(Fؾ.u*<{RޝUjtqOj$OVMiQgL0]{܈v78-~N1_q\M}hl 1UBUC5}wEz,O*Rח9v:'_/Eyb9BC 3 IvI#ZmɝLẗ́CS&qKĽ,o{FK>YdKlUx/iǚ}XIWP3!)~Q"wo6 |x8 n^ I=8tahceV /6&W7S- {w HHFk6앹:_聵ϠZʘQvd GD6ZFv0|f1ìl]μTJ]t?}\|&\/hțexF77"_Vs( o-^vK߃MmFj}XNWR5X9=)~#P.б=tC`ۧuu!R0RM;.bI[W)-լZ w9/ 9&9Aq450S0X@oP%*ڴx'AսR.5t=-O)Qn-nG$ 5nO~99Or 8K!!._OL\<ޥ)iHArF!e? м6'3Cq[Jcy'!qHn_X{K٦v2{Ս0Mw% Գ'Vͭ q`2gXh12`=ͭ*"jiDgUu浞YƼ'0j&,\{ӵ2c@-[eDɰaq ෠;t%Gv|m 8k9IE]]7p֩zP&<{yKNb3eTM[8K_Ez;0Y?[Yۥd'{/hf<4SmF҇77`(ֶbLk4zѹ2A/s^擪?HG'&{f+.kL!U ϕֲd07]D‰`xz F=i>;#)^/?uۖ-6C%jX jm%j7T(V[$ Lgi }zQc K7 ْhE5a~FTD;ijOYd[x' ǽirʰq;pE9 ꬰVҞQpXx.8S М U`n#'~utj#{Z֭i8{{0w^㶣'aHCZxÇ(@zh-e7mx2, L&ҿ,%PEVIX]ǜ(P-KR\.]+=Oܝ/MFXx8 =>fL }iAxP*; u$"Ly@p qLݓazPN ItOc]M7^ tn־ ;"}N~|T:bœʦ$IFX7 6.A{8a"aᗖo ]o7:%G^osg~Dn)䳢~s.gf핮:oKijV53^:[]1ۢG=6׋ծHb?6uՌu^y$Sh{X( *$oVwF!"hx{Y%H7Y7:4hq%'OOUR(r(3䄵;` a~cyL(6첺1SΨb%9>bsT 5 pkmu|iZM<Ε\}mZ{ A0L$>-u47ҎSr pXi?-l5R;y]U uti>qKU**MݙdA$8ib/;`eT)z@h٬vHh*olN÷#r0m*9|qD GQ\:\|u -#$S 'f)mh߇Z a֘ft ZupRnUX Qh1X?B`H:~NP*N7ɩwm0Ne.`9KdF>)ǪR,R-JΗh:uD2y?fxQ=NxlRk49Դ/]s@D(+pqOkg;[Ҟ7(Gh@xqA~k@dWJStQ2ΦiRyXTLSpRip6+Լ&Fa$E`l)5B#I`WƋPGW ,^*RwHx)笥&t 5.vk@4lBԶ־m|4I@XI?l?V{N<`I̳"O쑫S@zק\,lH \faD|ˇk.77v}-}&Qq+Q#ʸU/>ܿz6krG0Q#Vs Dhaן87s\ly*#T*-m!NKXjHP{_k059)ZsdYn޸s3bxc ?+;,[D{j`2*dM mop|ęa gnemV<D}~Fos\I%ғgS2\UXH~W-{Ӄf\oF3 RVˆ3 YNX2y Zgbf){yf?&k&oA nf Ð 76 8;UeCrMU;s72+\DI/SrE6yI$@CmGV(@ZG ,.oviC1s2^Ca]f4} Gy2< Xx; qM͒tnSovv%)P $ ƈP%26G ,(LBa !4j6/5ٜ_a:Xe;`ֵ.@RܾB ?7nEt\v0LWA!:KwQJHO4$Cؔall\:zAʢ]P-V>/>{RF.hV(ri3,U)X➌stD,zr9h;g#:z&j(hl](~ҟ 샌!0@13WIr wB22+ɠ=ɱZ²"MݨTػR乣RN;׎+d;ʣκM؝!5! 7:B0,d{syR8PVpT1 ȶkMe(K8o$7uC䂟Or+3m4ae'exEۦ 35?T1=ekV &U#50<^d14SڮA~):g`Y?wvJrJ,|qgH~0O`MцB|::EX-(/×f' _x ڛTPPCq<,P>3$Tx У(b8W,XgKy G36 !{1ϋ ]A;4$ek&Ҏo8a^nN`>Ic*@Tr+gYҜxa`/ᐰw']sdWKG~w@2CޚM^/WMV\qhg|Q Fdޓu-kާ@aY/\u0t>apt SՌKmA}+2iV4p^<u0s3^ 33U9_; #ND|ٙ&۲ (`#we]?ȇ jdkp?b&<_-M'oL"pXIe5F4JrP8>V}} j@b\%c@ɧ/"ӺKbM㊧~)Lh[-{UGMV捬ѭ^C78gU %byK*hT80V]$efUSrAx ;w\ ~B Hlj-Ko</W7Yòw{ 8]Iu K;G 4o>dہWimbP #JM*ڀ&e_.#B6G ;OD g֣svS&!ÿ|wPrO ?kowAUiDF% )AJg T)8YF`q=r=W}d>y C\B Z C}kn1\R,&vVgb$-+\3RC D?[ Md s1KRtI; QܫׇrIywT)rgYUx(n8@`F9\賧UcM(ݴ-}8>J2->ֽNņ'"i2-2@TK []0C»Y;rk>IN셄S\gtuA/SoB#rg 3f퇐'BO5Ckj˕ǷFJ,rs ֕Ke1'%I!RF/u=,2#oo"B_av}Q-JG[y{~7&:Cr: c2ėB_iuӨp v5=Fco LIgo&rA] 1I)g}OIyϜg"`;bˁ';{LJ )q!bOcv_ƕ TÛYO&:UKx`| 5Q:<( 6?Y59-!O=s"aнP JR?D>2i$"ݖuZⴜ }]n{*{0@'j.s0ve0'[zGz$Rۅ ~8}4`Ύ_\ˑ:Z㩩vo(G넥Qc -si"E=q}Eev9 BnKJ<-l[r6P6tNd4F:?>ޠ,M; Lyy7m5^Bޫ8*/u]iW.\AGdkqNX  5Xœ"H!:Wa# ?*StR!4[\~R@ Ͼكer[$ 1iqܜ9=b-ᠨ|0DT\Χ>֎d;VU]ďmJWĒ-0&G/rhxh6) {k%\SdZK|HiR#AK~,g 87㙨<ó aE`8l11M^[.!&n~[_֊~Vͽ';o8Ͱ NP6ko|Zt^ozjфr"Sycr=;bo6hԩ:y~450GÞx-CvH.r؍&+Nx cM[ЌrNc4l32ue3 zESba͂n)ӑy3'[v736Ŭ)&rdIZJ^ Ҷg.umVoC\&JBF!gC!DU4ʮpY=+b^}h"ͺ)ND*|y[k&3c?7DVF,iӥVxI% b'r7vZ, kw;09Ar 49:s,4tOrW&QvC2pAgʓPFb1K[(ogڞ/I4[D7"vH%sl=nڤn"%pΣ ]~J^D36K?7<>blFr;) NoF dK4Gv&9$Г% Žk!bsV/Z ;gDR`߰C?<9( Y&2}qkM}ifd~9[:w3Jt*lQaN\ myi}4[?w̲7k.gnsio^[M-0=%7opQҬ%,w,_ꦱ('%X=O10danɯ%zN}cs`*/菳%tO#?N;qHdP7\+|L.`̽عB v FߙV~ 4a²Y9})UoJ^Z:۾5< W$lV+0TIMtWw .dipafz:dwV^cy\M5~ dw#IS)@Hetf_ u :nzP2l~ rLf -TW-$,c,Mv$eV g] 0L(v hEh12ϊ-,rx,~./S}BB .}~ny ʘZӮr"W׸! A&?ϠmTDEϑxB(#imw~⮗@SW͛,eXNB HJPda#PV'19N%"Ftuxco4[\,DDYqWlwow;(dVe'1z@3v]:(;d@MTuO]x<v4 tƂEφL8h#h?SV(%Bw@j" @;ulkr>f878d۴YCNX=qUaxrotMYR*F9G eupwyZ cR H_ զJϯ%u 5)%99;~VwĦJ>̟ziJS( 5QFsLV"Z԰܁ԣ7ц8 jJ+>f8<9ѫ ORdޮq( QFFI vfImO{&|'`b?0)Cب#e1*TeŰjx8ND~cYb"7pd9]$2!?%t9U7";|mq6]ِMݗpkg/[F˽$ƻ.GJ tKE9jX{XAj玙=2Z<ƓODLRZ<'jdMB?-Cύ&q ^RR?\̺0Kp0tqAm@UƬ(^|O΃.)+kp0fK4?!z4H,,Ɗ2!}L9F]BHQAmYZe[4(BswzުuꂀJo.c 1PmĤInLh@&^H dMU᠊Ve"]LS z׼"ڇ]|UB޺j;~-j{H2(MI_Hx+,!IH"+9 $T EL^ThM0G@hڦ ]>fxQn$qd1i{<яO_Wkgn\'Ϻ|%^ k3qAkSik k?3; Ͼ s?!DP4-F@@J8r%F*օa$ ./vF"1 ZT: ;}͜\>G-(M۰q\79*w&lA{E &CD'6_տtDv#"^a|9J;)'eH# _8]Nֈ ;rpmÄCW}Հ`r/iSV4"l'.)پtR-ǭDYp 8_~(DhFl%M_ YZ