í«îÛ    samba-ad-dc-4.11.14+git.313.d4e302805e1-lp152.3.31.2                                Ž­è         <   >     ,     è            ê          ì         œ‰ aÄtÄ¸‹/Ô=½Â„ò¥ ¤ ¨†Ë,FZR—ºYËtŒK¤R+Åo¡»…?zcbXòvôÄ6þþ0›^pÓûlûñî(ðŸñ“#•Ô¬î¤NX=¢Ic&¢uX4`ebï6º¥k·Tš5Eœ¤¬Œ?V‹»wòJMDAÎOdÁiø¼­ãót ô…Úµ£<]Õ½M#_æ¦2ïèÎú£ÈjêˆEÚ¸â·Ÿü˜°b.tã™É¥ƒÕ”aNVq)ÈËx<! ¼ŸÕ4F¯Ï¦%÷tšmµ/¯1iJäÉa?QÄï4}˜%b¬Õ%WÙnÞ ¸ýî7&›D:HžÞQÊEy{CŠÒ¢3”žŸ—6Ø{[_²¬uu§]ê   >   ÿÿÿÀ       Ž­è       L r   ?    r€      d            è           é           ê      *     ì   	   7     í   	   k     î      ´     ï      ¸     ñ      Ä     ò      È     ó      Û     ö      ä     ÷      õ     ø   	       ü     ,     ý     C     þ     I     ÿ     Q           v          Î          	Ù          4   ›           ›  	     Ö   ›  
        ›       x   ›       9   ›       9Ð   ›       <<   ›       ?C   ›       BJ          B„   ›       Dð          G„   ¥       J   ¥       j   ¥  (     k     8     k$   à  9     n¤   à  :        à  =    -y     >    -     ?    -‰     @    -‘     B    -™     F    -£     G    -¼   ›  H    0(   ›  I    2”   ›  X    30     Y    3d     Z    3Ü     [    3à     \    3ü   ›  ]    6h   ›  ^    C     b    DÎ     c    Ew     d    F     e    F     f    F     l    F     u    F,   ›  v    H˜   )  w    [8   ›  x    ]¤   ›  y    `  m  z    qÄ     “    qÔ     ¶    qØ     ·    qü     ¸    r(     Æ    r4     ä    r:     å    r|   C samba-ad-dc 4.11.14+git.313.d4e302805e1 lp152.3.31.2 Samba Active Directory-compatible Domain Controller This package contains the Active Directory-compatible Domain Controller  aÄtÄobs-arm-11  ÷sopenSUSE Leap 15.2 openSUSE GPL-3.0-or-later http://bugs.opensuse.org Productivity/Networking/Samba https://www.samba.org/ linux aarch64 
if [ -x /usr/bin/systemctl ]; then							
	test -n "$FIRST_ARG" || FIRST_ARG="$1"						
	[ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || :	
											
	for service in samba-ad-dc.service ; do							
		sysv_service=${service%.*}						
											
		if [ ! -e /usr/lib/systemd/system/$service ] &&				
		   [ ! -e /etc/init.d/$sysv_service ]; then				
			mkdir -p /run/systemd/rpm/needs-preset				
			touch /run/systemd/rpm/needs-preset/$service			
			      								
		elif [ -e /etc/init.d/$sysv_service ] &&				
		     [ ! -e /var/lib/systemd/migrated/$sysv_service ]; then		
			/usr/sbin/systemd-sysv-convert --save $sysv_service || :	
			mkdir -p /run/systemd/rpm/needs-sysv-convert			
			touch /run/systemd/rpm/needs-sysv-convert/$service		
		fi									
	done										
fi /sbin/ldconfig

if [ -x /usr/bin/systemctl ]; then							
	test -n "$FIRST_ARG" || FIRST_ARG="$1"						
	[ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || :	
											
	if [ "$YAST_IS_RUNNING" != "instsys" ]; then					
		/usr/bin/systemctl daemon-reload || :					
	fi										
	for service in samba-ad-dc.service ; do							
		sysv_service=${service%.*}						
											
		if [ -e /run/systemd/rpm/needs-preset/$service ]; then			
			/usr/bin/systemctl preset $service || :				
			rm "/run/systemd/rpm/needs-preset/$service" || :		
			      								
		elif [ -e /run/systemd/rpm/needs-sysv-convert/$service ]; then		
			/usr/sbin/systemd-sysv-convert --apply $sysv_service || :	
			rm "/run/systemd/rpm/needs-sysv-convert/$service" || :		
			touch /var/lib/systemd/migrated/$sysv_service || :		
		fi									
	done										
fi 
test -n "$FIRST_ARG" || FIRST_ARG="$1"							
if [ "$FIRST_ARG" -eq 0 -a -x /usr/bin/systemctl ]; then				
	# Package removal, not upgrade							
	/usr/bin/systemctl --no-reload disable samba-ad-dc.service || :				
	(
		test "$YAST_IS_RUNNING" = instsys && exit 0
		test -f /etc/sysconfig/services -a \
		     -z "$DISABLE_STOP_ON_REMOVAL" && . /etc/sysconfig/services
		test "$DISABLE_STOP_ON_REMOVAL" = yes -o \
		     "$DISABLE_STOP_ON_REMOVAL" = 1 && exit 0
		/usr/bin/systemctl stop samba-ad-dc.service
	) || : 		
fi /sbin/ldconfig

test -n "$FIRST_ARG" || FIRST_ARG="$1"							

if [ $1 -eq 0 ]; then									
	# Package removal								
	for service in samba-ad-dc.service ; do							
		sysv_service="${service%.*}"						
		rm "/var/lib/systemd/migrated/$sysv_service" || :			
	done										
fi											
if [ -x /usr/bin/systemctl ]; then							
	/usr/bin/systemctl daemon-reload || :						
fi											

if [ "$FIRST_ARG" -ge 1 ]; then								
	# Package upgrade, not uninstall						
	if [ -x /usr/bin/systemctl ]; then						
		(
			test "$YAST_IS_RUNNING" = instsys && exit 0
			test -f /etc/sysconfig/services -a \
			     -z "$DISABLE_RESTART_ON_UPDATE" && . /etc/sysconfig/services
			test "$DISABLE_RESTART_ON_UPDATE" = yes -o \
			     "$DISABLE_RESTART_ON_UPDATE" = 1 && exit 0
			/usr/bin/systemctl try-restart samba-ad-dc.service
		) || : 	
	fi										
fi        ( ð    ˆ              Ð   À        ¸ ¸     ¸ ¸ ¸ À (  Ð ¸ ¸ Ø € ¸ Ð    X  ‚  j  /Â    \q    ¨  9      §     Ë` t ¹ ÏW ! Lc -  ”† k  E Z& £˜   ê          ŠÝ  F    à  ñ  … i¥   |   z  <     gÀ ø û ä \  O  zÜ  -  ë   ª   û   E  G   §  Ä  ‚  Q  ¶   y   Y   Ü   %   ö   2  „  5   d  ä   !  b   )     ø  „  ‘Z  A  2   î  s   %  æ   t  2  HD   à  (9  ø  …  <  $  ¸   ü  ˆ  ‘   Œ  [  o   ©   Ï   ä      é  &   f  5è   l  *  B   \  ˆ  —  4Ù      †  3   °   •  â    »  CŒí¤í¡ÿíAííííííAííííííAíííAíííííííííííííí¡ÿíííííí¤¤¤Aí¤Aí¤¤¤¤¤¤¤¤¤¤¤¤¤AíAí¤¤¤¤¤¤¤¤¤¤Aí¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤                                                                                                                                                                                                                                                                                                                      aÄq÷a°•6aÄt™aÄtaÄt™aÄt™aÄt™aÄt™aÄt™aÄt™aÄt™aÄt™aÄt™aÄtšaÄtšaÄtšaÄtšaÄtšaÄtšaÄtšaÄtšaÄtšaÄtšaÄtšaÄtšaÄtšaÄtšaÄtšaÄtšaÄtšaÄtšaÄtšaÄtšaÄtšaÄtaÄtšaÄq÷aÄq÷aÄq÷aÄq÷aÄq÷aÄs8aÄs8aÄs8aÄtŽa°•6aÄtŽa°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6aÄtŽaÄtŽa°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6aÄtŽa°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6a°•6aea61635925667e5722275cda958506931abda325eae561be31af4b83d543718 7c1782cb4ce5237285c381728cf3082ce59b2c2e7554b01f5517149762768ae2 acd5d0fabff345eb6c6d07fd0ef00d453f923470ef7fa91ebcf3d6c23dce53d8  e55ab4878c5d534c005f82a991464eae198d4a25c19a95b3df70c86234d22840  deacacb25cc770647992be2221ad10cf56807b93826669b2f669d716d958967b 845305b96667642a2a7a633f3196409491d25ae00e043ad7f88686093cd7a7d8 15d75f9718354d3e4758e09a9aee0ab985b63c09c40c3acffdb32175486b0dd5 54d3c79afe3000db6700477feb1b5b12ac5c914355024102ae16abc4fa44e602 9954ed8396374c7cc389463b5b67f5540632fa79bc5e62aac9893bed8906428e  d5b80659923fe31371c73ca36108e64b0c431f43f40b8ef5482dd35ae127f29a f6fba80dfc3d6235224d84d87b0314e57aa0c921543b53bf6ffe7b32155ef44e 0488472cb6b9e82e72bebfba5f061425e41bdc43951b34dc1e0336e043e34fd4 2f7358fcab94d6c1ecca963c609657d66ef35b3c672994cb05a53c2561f2fc9c 40b8ce131c1d847f80c838c9c804fcc9da69cff78d9d50fe3adb1732bc4912d3  c873d12a08ab49048eedce1c55cb9fb516decb9f48f9d40a31aba9e5cbe79eee 92beddd7260c889c45cc5d1cd6104f5288d08d6583468f0a3ac1e1549b46e64e  9a8feb28d4854fbc19bafa392b86d9a16d7a0558082def6a9ed97dfc78cd0249 71d55f0b2067b97305c24b86825ed178b4fd3cf27a3b490faf7bdcd54e8deb99 090d71b7c1327267ea61994c68efc3df663ed464a267458acae919244313807d d12fe90db00a7aa3bb633436a9088ca95eb5677ce1fd5be04f88ffff40b38228 021dbb4e5ad4d0d65b284947aa8b21691e59db0a620f618d9fdef8a2c0a1564e d0610d3d892a1c10d7fd6fafd4bbf5f3ce02602dbd7399f361462c2f8f120400 77055877c7d8bac7252ff8dd9da19016963d0cac6235ef92a3e1afb48fc24eee 2ad316af18caabfc2e59b979885ed77c84c25b2fd41f80d266e0f673afd2834d 9c1c03759d1868be797ddaf41bd865b72d5749dffc5b823f53ab41302c848089 c31ee9cf686b6e39cf287fed3c5b2149962716fe698b0e7c3a932832af13fe23 6ea9c7cf75e1b0d462004fe740f291892894df4743f6a2febc2ef49c568d443c ca320c1332be267305aa32370c6a3675e54abb58ed318fbb9669444d52e0b62d e48348d2b2b7d592de229fcce7c1c3fc17130f9faf3e5cb746decc047a38a9b6  0347225ce38d9f8138c3384189a7646f0a5bae17c0c6393eb9d510a8e891e29d 7fb0ed22f51336b0a3c9eac0407ab3c69dc43703c7cb5cdb52de1a2460eab5d2 10a04780450b23c7eeeaf3dd0b021583587c46a900fda4315aaaaef9df629e2a 2ca03396074e4671bc49196b78fbbdca8e4006c77653bc572a076b6adecbe3d8 48bec6dfcfc93bf3eb8305cf776e2c63d3a83662c5d034bf07e832aae00d3197 f7ca4a865fc6d7d91a71195e4782d501329f52e6c27e67b985d5fbb2c3b31938 7352a5dde1fe699e2aceed3af9082ff11fb11e86b5bcd6a8ebbb871baff2b7be 07ff7c3b430c0849065b91178363325e013ed61f6753562257649861d6593643 8784fb34c314a0d84ce9d1d0891e6e4edb39fdcc87eb909fcef3bca593dfefa4  aaae9ea58d7be1481df1579cf017e64d6e30f5571db7224a17b071f5b0c7ded0  4b783728434856c3b58d40496f6f08a7ff8bc5e5333933f4ee33c8e042118d5c a08786e6be8cd0070451151effd403a6cfe43302d07f3a6870e9ef2b37e55ce0 39b3f6da5b7216146b86dba5d65a0fd90a2da25b57568bc2540af4fe628017e9 37985f3964c42a5e1552050dd8cfce2b21ec22555947d35b8b01e64dbe7887ab d9b654f82ae214e9a0526685c56991d14e82a2fdd98863f1c3034bedccc58324 bae70803f88109378e10811c8fb740d2f957d02d37ac549e59a4bd27b4648fa4 70a91b82000da4bae9f5f3ec53b6668663016ff4959cd09a90ea11357e69cade 8cdaf9216eb070780b333624f0e6dd43ca69a9b77ac378ce90b526cdfaef25a1 afa5dd2e6dd1dd60c8b4874acb194953a6b481c09ff9b7621e1ef5042a50e93f 08792fab9898d3fd3cdc4309bc0248a944e15a2aceb82e97ca50f1a33e867889 05abd2c47e9dfefcf0cdeda3b8067f36f69190021072a9ef8bcb823958600080 e691a153be44691f344c3d3cc011f29a450d45d739fc4b979be88cc3dd561c3b df0baf0416ac0b6897070be2eef3572e6318454eef62a9b935492ef3f2480cae   5220e934a488698a4460f3a6828f8c0699c248e7b772705ea95f86c4f830609f f9cf944f111daeb1d71deaf851f612f7826e65d9a83c24f99383825bddba4c19 1e7a9ebb78658e920177bd9457f610f87bdd3988c682f7dbb9432d456594551b 2abd71b9157ca195167fe8b02d92b5c862f4715ec12151440c7745eac4575fc3 507c8e8ae2623c3f61c7284be077005489f80cb87bca4aa59a4e48587058986c 283f229e8ee838f144b0e821f4bbc0a6f1f7b64136de17e7fedd63dae9cf699a 4fbdfe2690d574bfe93b8916209734cbfa362a34276a446e793136de94cb6517 0dcb18c99c121628066e32d506e56ce112b0a25eb8491d3c8c9bd6addfeec67b 4cd99476ff76dd4726aa780f4a7b22cc5e83bee7f429b920c1e8bbb0b9fd6b26 7eea5d2e854774f0f912c5793819044ea2e4e34d74b3359c97205ab2854bdc90  577b55cfc9fef3b7bf71854c08e8252c9721c3a685cb1294f0ff949ce73039c0 3db7d7168b8c41fa61c836d872de309f302d8552fcc20cc2183468177e946aa1 0a1b62a64331eddd0276da466da758eedd899611de39a1a94cc252faa76184b8 bd50c2be11857268e5a257bd16b5aa43111de8c50ccbc9efd9f43ec715e6c9e1 a9e8d7b063d21094a4995911b7740e6d6c4c9ec147b9c7a9b1473c10eeaf10a1 bb48ed29e70c69f72e0b0b4e9a57c9658687b5c6d52decb4789d301c9990b12f 0556e1a6d8162126e8fc552e68cce053f368667487a7363a174d8c08c6186573 19d9124b37279db646cd2b96737f4b83395e6ec97062063fe3bf1330c97901ed c70ac3de3db508c016663aa70077f16b4476847057e7806b80378c3d27ea22a5 1bc9d4c753e45a5153ec2592ee43ebc5833f4245e0fc7d8dc043874b0678749e e51d6b9e03103415e2d97a7fd00d4177d9f6b1be73a3bf33e59214c8b86b454c 68966c682fc13e84571b1fbd77b9e51ca6ab9d588b59c5d7b70412b86788b251 094830df27a8fe0c7f3b6f601be6f8fa96465972a5ed5ecce2b8eb28a0d60b04 5a9bd5889d599f3369dc8604ea3bbcf0a0958fb97add308f03bb6b5be9e65079 c87587cbc46095bda2894b0d709faecd8bc060abc4392e5a54fe8d3467ca7b17 f83ee7c1fdbcdcc878f35176e3637ef464da14a9978cd63772178fb1f1f5f210 607529009626b605643ca986346275306517ceeb5d6c08589685e97e0dcbd216 4a10d95bc0ac55430193f2b379278e30d74bb6751ba35244d3ea058cec0713a5 ecc386265a463c55b50c30fd9a19a23846b9893fca75196eaac9e88dba240139 4962f06672cc649ef11c5e2ff44840860eeece41617831c11935511f68fa9ad3 9757b39062e98bf735539b608712cfc21dc3ef02b5e3bf67a377c170fb5f0a85 a9490a5bdb88afc5a9a26894304d852772d2c575f0e7fbfba878366ba616e6a4 7f5774dd71c15b44698c3ad625b1a871e755fd0a3f51e448ecb85a0328f59add 0db46e3086c6e0c32e783f4a142e801af3ec3918045990e3330d76feaefef5b5 917e26cbb01d7e7968de5da5e00c9aad1cfb1e887908ba51f52561d55ab3b1f7 342754b78a6f712455da074a4b3a94f9fc8aed0c82ca85fd7ed32c56b6d23228 a23a55fef4eb885bd63c6b4124fc0f81b23064b4dbb8383c52e9cf79246541e0 fe89ffcac9f125d222e55c8837667b516d979980bd193fd12cc84da5d8e53556 253d3734a87f09a53aadb9b61642a4a0cfe40c74f0d2feb486ad40b335b095e4 e0b0a1097811d5561775683c681d859f4ef094b88871250976d4873b2276465a 36da0a447b26e8647561e002b225991439c046437a66d2f9338ad2f01ba6aa9f 94e4b48e38f0e21344b50d324ff83d4e87452bfe74b5bbadc80337431083d3e9 da9edc61f270f90b2c6f926910219bdc6d9f6258588527ecf8135e399930f0aa 12162d172b226a7a06e1fc3269b9dce7d8b3a4642313483d6bfe8b03c6217b05 8aa489bb502f2a771b307a5dba24e8672f34753e9d9b55b63d6868632c3ce6d3 c6228256596cafd8216f0d1f7d58c678869e15dbd9ab473bef5ccd1ed3dd0a10 a7c81df7cf315e2bf766a2ab4f4b652b305201ec9e2ba0f2ab20f041dfd03f3d 7ba91b0da082614134c16eac31b8f527ab08c4694aa714c38eadb8735dc450ac 9188fd4fd8c2edb19a94883adb35d5b03f05335806a5cbf32836a5dc3e781351 5ee6f752e4105a82c5b9724ddf7ca6195bcc9a4672074256a79ec3575bb81511 69d4e2d1628a7a4aef41e1db85d1df1264502a321b418a0e46ed463afeb1b716 db0eba8cb07481a80027f437134e1fed1573c2c7805c658b52161359c5f7f1b0 33fef23470115634396e1f8cf3be4347517467d6c85b41685509e8510f5c5c6b fe402a7ad727063cd6cb90cfa2d509ab6b6be4270cafc11a870f19430077361f 7cc10ce03c1f18f03eeeeb057d369a03a4e5f5ff7ff6d0e2f2b8ba01a5e30001 1ed834fa05676dd646a2996494c6a7863ac10379d04a4331ad7cb9a19a1c9951 f21556a89f28baee995dabb0f78e8f4739ea1eb437012144f4e8f3da3be87430 64b89e06092f7e1857e1fec220ae5587045badefc5e898ea9c31a3f494810fab 5d15b4e60e74e58afde81ecedaa05fcaed5388dbe58c42f49d679f754cf14732 7647e003edadcd4c363ff1150689c68e36640a245f7ef98eeccac8751b70d8e9 9404d46252eeeaa37c6ec000eab21758e68e8eda9d717ae49bdf91950bb4889f fe687c448eefc12e37348b3b4b4ec233f776e4d70ee8f036234adbb3de28debe 0321573622712040d074160d0fa79fdfa00ce0e9a8c4d7debba85ce6ad13e204 1dc5240a095462689c809535eeb54623825b1c3f2b4dccb0cee55669fc5d13f5 2296c6bf64741ff41e0fbffd9b74bfc4c824c0c6f50c9c9c1076e299b509aeab 465e769fabf87b66c88bba23d734d66d01c4a40ee312f6106150c5b331093d6a 9a8ef6c17c0f2faf27c40d1000b2e178db3a05ddd85f32706426565faf6cb001 08efbe6ab01d4db2fe5ebe3d00c5ed533fe5209b4bd781ff0e90babd5278369d 1dd2220954130de1dce55092f2580b8bb0bfed109060bff24b0de90cb61b5181 692f8e2f3504c579112d60bb12850706bd1d8854823b0e576fa3e34b91b91c85 966e8859dcb6f776a0e7f996de55ace04250d68d0570b29d10c7dbe0b5d557eb fbbd178f9272a080b80eb6b851debdce25b4227c1a7c845b02eca019ca5f4057 c3f3e11062ca1bec0bd02d81bb115288bf7cefe491f45b2bbd10975a7729a545 5df951d9db597352332b364d8c112717f6a69e45457d6842b0d86ff857aea74b 8a52019ba58047d6156fe255f4015e41a629d5655072b87fee945873f5e1539d 069860229150599e7090221715182164fe9dbd0b687eeafc022bcf99ea5c3bae d36ef17cbcdca2fe61f917534f92e7e9075c18f7dd0dff80c17bc7f05bd592fe e82312a5ea7803139204f37676f2d93aad8c6527e6c719b4f0cf5cd7b40b2185 b5044d59e6287fe1516308fcf0aa261ddae2745ae377a7e1d63d1a3832685e97 b08f3206bfd152824bec5390ca9fcda62825af422b8ddfab83b45fe0643243ac 1153bd7618ed0528589d45945e31dd672320055fde6435a60b07e41eed5ef4c4 19b1fe56ee959b008f78bc7a86b36a29f2233191d599168ea2a479841daa1c27 f6eb1459db1f40e7e6fb04f590502c47354848889bd6d40587933d294e435151 b30db784aaa2baa6f44c9daa8b6d1f7ae312eb657874ea8860f15fd88c8451f7 1d9108970a90fec39ee071322a0a5f1eb135a233d258b6b6954ccf683f7b80bf 0549844d3fda8aed57898a6fe545b62b9b1d3093108abd582704b3340961238d 03202b67b75ed72750551aa43285eb5d3d39c6fe08178e6e81abadb5fcb7757f 2a511b87488eff6f4527d4dc646edb6359ddbc46c1aac3050710bf514172713c 9551ac80cb6942fd6e22a1e5007d8bbadf7e1ec4dfe1cd27cef1bbad58ff7c0a 3526f7689cfc5ead25d50b7eeb580ad5f267ad17125693a7e966199fa7ff7411 6ef86f6ecef040cf212769ebf8ec458a4c881a29d647bf0a1295b81ea8243f57 eee83a82e671e192245d7579c159f1023d6194a04be92781998d4656994f505b    libdcerpc-server.so.0.0.1                               service                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root samba-4.11.14+git.313.d4e302805e1-lp152.3.31.2.src.rpm    ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿlibdcerpc-server.so.0()(64bit) libdcerpc-server.so.0(DCERPC_SERVER_0.0.1)(64bit) libdlz-bind9-for-torture-samba4.so()(64bit) libdlz-bind9-for-torture-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libpac-samba4.so()(64bit) libpac-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libprocess-model-samba4.so()(64bit) libprocess-model-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libservice-samba4.so()(64bit) libservice-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) samba-ad-dc samba-ad-dc(aarch-64) samba-kdc            	      @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   
  
  
  
         /bin/sh /bin/sh /bin/sh /bin/sh /usr/bin/python3 ld-linux-aarch64.so.1()(64bit) ld-linux-aarch64.so.1(GLIBC_2.17)(64bit) libLIBWBCLIENT-OLD-samba4.so()(64bit) libLIBWBCLIENT-OLD-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libMESSAGING-SEND-samba4.so()(64bit) libMESSAGING-SEND-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libMESSAGING-samba4.so()(64bit) libMESSAGING-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libasn1util-samba4.so()(64bit) libasn1util-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libauth4-samba4.so()(64bit) libauth4-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libauthkrb5-samba4.so()(64bit) libauthkrb5-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libc.so.6()(64bit) libc.so.6(GLIBC_2.17)(64bit) libcli-cldap-samba4.so()(64bit) libcli-cldap-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libcli-ldap-common-samba4.so()(64bit) libcli-ldap-common-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libcli-ldap-samba4.so()(64bit) libcli-ldap-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libcli-nbt-samba4.so()(64bit) libcli-nbt-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libcliauth-samba4.so()(64bit) libcliauth-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libclidns-samba4.so()(64bit) libclidns-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libcluster-samba4.so()(64bit) libcluster-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libcom_err.so.2()(64bit) libcommon-auth-samba4.so()(64bit) libcommon-auth-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libdb-glue-samba4.so()(64bit) libdb-glue-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libdbwrap-samba4.so()(64bit) libdbwrap-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libdcerpc-binding.so.0()(64bit) libdcerpc-binding.so.0(DCERPC_BINDING_0.0.1)(64bit) libdcerpc-pkt-auth-samba4.so()(64bit) libdcerpc-pkt-auth-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libdcerpc-samba-samba4.so()(64bit) libdcerpc-samba-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libdcerpc-samba4.so()(64bit) libdcerpc-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libdcerpc-server.so.0()(64bit) libdcerpc-server.so.0(DCERPC_SERVER_0.0.1)(64bit) libdcerpc.so.0()(64bit) libdcerpc.so.0(DCERPC_0.0.1)(64bit) libdnsserver-common-samba4.so()(64bit) libdnsserver-common-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libdsdb-garbage-collect-tombstones-samba4.so()(64bit) libdsdb-garbage-collect-tombstones-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libdsdb-module-samba4.so()(64bit) libdsdb-module-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libevents-samba4.so()(64bit) libevents-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libflag-mapping-samba4.so()(64bit) libflag-mapping-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libgenrand-samba4.so()(64bit) libgenrand-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libgensec-samba4.so()(64bit) libgensec-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libgnutls.so.30()(64bit) libgnutls.so.30(GNUTLS_3_4)(64bit) libk5crypto.so.3()(64bit) libk5crypto.so.3(k5crypto_3_MIT)(64bit) libkadm5srv_mit.so.11()(64bit) libkadm5srv_mit.so.11(kadm5srv_mit_11_MIT)(64bit) libkdb5.so.9()(64bit) libkdb5.so.9(kdb5_9_MIT)(64bit) libkrb5.so.3()(64bit) libkrb5.so.3(krb5_3_MIT)(64bit) libkrb5samba-samba4.so()(64bit) libkrb5samba-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libldb.so.2()(64bit) libldb.so.2(LDB_0.9.10)(64bit) libldb.so.2(LDB_0.9.12)(64bit) libldb.so.2(LDB_0.9.15)(64bit) libldb.so.2(LDB_0.9.16)(64bit) libldb.so.2(LDB_1.5.1)(64bit) libldbsamba-samba4.so()(64bit) libldbsamba-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libmessages-dgm-samba4.so()(64bit) libmessages-dgm-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libndr-krb5pac.so.0()(64bit) libndr-krb5pac.so.0(NDR_KRB5PAC_0.0.1)(64bit) libndr-nbt.so.0()(64bit) libndr-nbt.so.0(NDR_NBT_0.0.1)(64bit) libndr-samba-samba4.so()(64bit) libndr-samba-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libndr-samba4.so()(64bit) libndr-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libndr-standard.so.0()(64bit) libndr-standard.so.0(NDR_STANDARD_0.0.1)(64bit) libndr.so.0()(64bit) libndr.so.0(NDR_0.0.1)(64bit) libndr.so.0(NDR_0.0.2)(64bit) libndr.so.0(NDR_0.0.4)(64bit) libndr.so.0(NDR_0.0.7)(64bit) libndr.so.0(NDR_0.0.8)(64bit) libndr.so.0(NDR_0.2.0)(64bit) libnetif-samba4.so()(64bit) libnetif-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libnpa-tstream-samba4.so()(64bit) libnpa-tstream-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libpac-samba4.so()(64bit) libpac-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libpopt.so.0()(64bit) libpopt.so.0(LIBPOPT_0)(64bit) libprocess-model-samba4.so()(64bit) libprocess-model-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libpthread.so.0()(64bit) libpthread.so.0(GLIBC_2.17)(64bit) libreplace-samba4.so()(64bit) libreplace-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libsamba-credentials.so.0()(64bit) libsamba-credentials.so.0(SAMBA_CREDENTIALS_0.0.1)(64bit) libsamba-debug-samba4.so()(64bit) libsamba-debug-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libsamba-errors.so.1()(64bit) libsamba-errors.so.1(SAMBA_ERRORS_1)(64bit) libsamba-hostconfig.so.0()(64bit) libsamba-hostconfig.so.0(SAMBA_HOSTCONFIG_0.0.1)(64bit) libsamba-modules-samba4.so()(64bit) libsamba-modules-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libsamba-security-samba4.so()(64bit) libsamba-security-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libsamba-sockets-samba4.so()(64bit) libsamba-sockets-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libsamba-util.so.0()(64bit) libsamba-util.so.0(SAMBA_UTIL_0.0.1)(64bit) libsamdb-common-samba4.so()(64bit) libsamdb-common-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libsamdb.so.0()(64bit) libsamdb.so.0(SAMDB_0.0.1)(64bit) libscavenge-dns-records-samba4.so()(64bit) libscavenge-dns-records-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libservice-samba4.so()(64bit) libservice-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libsocket-blocking-samba4.so()(64bit) libsocket-blocking-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) libtalloc.so.2()(64bit) libtalloc.so.2(TALLOC_2.0.2)(64bit) libtevent-util.so.0()(64bit) libtevent-util.so.0(TEVENT_UTIL_0.0.1)(64bit) libtevent.so.0()(64bit) libtevent.so.0(TEVENT_0.9.12)(64bit) libtevent.so.0(TEVENT_0.9.13)(64bit) libtevent.so.0(TEVENT_0.9.20)(64bit) libtevent.so.0(TEVENT_0.9.9)(64bit) libtime-basic-samba4.so()(64bit) libtime-basic-samba4.so(SAMBA_4.11.14_GIT.313.D4E302805E1LP152.3.31.2_SUSE_OS15.0_AARCH64)(64bit) rpmlib(CompressedFileNames) rpmlib(FileDigests) rpmlib(PayloadFilesHavePrefix) rpmlib(PayloadIsXz) samba samba-dsdb-modules samba-python3                                                                                                                                                               3.0.4-1 4.6.0-1 4.0-1 5.2-1 4.11.14+git.313.d4e302805e1 4.11.14+git.313.d4e302805e1 4.11.14+git.313.d4e302805e1 4.14.1  a–@@a(@a&0À`ŠŸÀ`vÙ@`]ÌÀ`PÀ`áÀ_£é@_…–À_d¡@_ÁÀ_ž@^ýÌ@^ÔíÀ^½2À^½2À^°À^ 1À^ŽÀ^Y À^J€@^2Å@^&çÀ^&çÀ]ü·À]ïˆÀ]äüÀ]¸)À]®ï@]©©@]˜…À]Œ¨@]nUÀ]nUÀ]iÀ]e@]_Õ@]J½@]BÔ@]
#À]:À\Ú­À\ÒÄÀ\·@\·@\³ À\£NÀ\›eÀ\›eÀ\}@\oä@\\À\\À\4À\	@[ÿÔÀ[þƒ@[ò¥À[ä%@[Öö@[Ï@[ÀŒÀ[«tÀ[ª#@[¨ÑÀ[šQ@[šQ@[–\À[†ŠÀ[ƒçÀ[{þÀ[z­@[rÄ@[@À[WÀZãÀZÍøÀZ¸àÀZ³šÀZ³šÀZª`@Z§½@Z§½@Z“öÀZ@ZÀZ}@Z'ÛÀZ¡@ZOÀZþ@Z,@Z @YíÙÀYÌä@Yºo@Yºo@Yºo@Y§ú@Y”3ÀY‰§ÀYuá@Yg`ÀYf@Y7êÀY7êÀY,@Y"ÒÀXÿ:@Xÿ:@XõÿÀXësÀXç@Xâ9@XÜó@XÜó@XÒg@XÉ,ÀXÆ‰ÀX«@XœYÀX˜e@X‰äÀXˆ“@X…ð@X€ª@XWËÀXAb@X-›ÀWéÀWâv@Wá$ÀWÙ;ÀWÅu@WÄ#ÀW±®ÀW¯ÀW­º@W~D@Wj}ÀW_ñÀWYZ@WYZ@W=ªÀW(’ÀW!û@WîÀW@Vñ3ÀVñ3ÀVÜÀVØ'@VÕ„@VÕ„@VÎìÀVÌIÀVÊø@VÄ`ÀVÀl@V½É@V˜ß@V–<@V–<@V“™@VjºÀV]‹ÀVIÅ@VG"@VG"@VG"@VG"@V(ÏÀV'~@V æÀV7@VBÀUùYÀUòÂ@Uð@UîÍÀUäAÀUÄÀU¨î@U¤ùÀU™@U–y@U€ÀUràÀUq@UhTÀU_@US<ÀUJ@U/¤@U/¤@U&iÀUŒ@UÀU	hÀU@TøE@Tòÿ@TìgÀTìgÀTÀæ@TÀæ@T¾C@T¼ñÀT¼ñÀTµÀTµÀT«Î@T…’ÀTž@T€LÀT}©ÀTxcÀT[bÀTZ@TR(@TO…@TKÀT>aÀNoel Power <nopower@suse.com> Noel Power <nopower@suse.com> Samuel Cabrero <scabrero@suse.de> Samuel Cabrero <scabrero@suse.de> Noel Power <nopower@suse.com> David Mulder <dmulder@suse.com> Noel Power <nopower@suse.com> Noel Power <nopower@suse.com> Noel Power <nopower@suse.com> Samuel Cabrero <scabrero@suse.de> Samuel Cabrero <scabrero@suse.de> Samuel Cabrero <scabrero@suse.de> David Mulder <dmulder@suse.com> Noel Power <nopower@suse.com> Samuel Cabrero <scabrero@suse.de> Samuel Cabrero <scabrero@suse.de> David Mulder <dmulder@suse.com> Samuel Cabrero <scabrero@suse.de> Samuel Cabrero <scabrero@suse.de> Noel Power <nopower@suse.com> Noel Power <nopower@suse.com> Noel Power <nopower@suse.com> David Mulder <dmulder@suse.com> Samuel Cabrero <scabrero@suse.de> Noel Power <nopower@suse.com> David Disseldorp <ddiss@suse.com> Noel Power <nopower@suse.com> Noel Power <nopower@suse.com> Jim McDonough <jmcdonough@suse.com> Noel Power <nopower@suse.com> Noel Power <nopower@suse.com> James McDonough <jmcdonough@suse.com> Noel Power <nopower@suse.com> Noel Power <nopower@suse.com> Samuel Cabrero <scabrero@suse.de> Noel Power <nopower@suse.com> Noel Power <nopower@suse.com> James McDonough <jmcdonough@suse.com> npower <nopower@suse.com> Samuel Cabrero <scabrero@suse.de> Noel Power <nopower@suse.com> npower <nopower@suse.com> David Disseldorp <ddiss@suse.com> David Disseldorp <ddiss@suse.com> npower <nopower@suse.com> npower <nopower@suse.com> David Disseldorp <ddiss@suse.com> npower <nopower@suse.com> David Mulder <dmulder@suse.com> David Mulder <dmulder@suse.com> David Disseldorp <ddiss@suse.com> Samuel Cabrero <scabrero@suse.de> David Mulder <dmulder@suse.com> ddiss@suse.com nopower@suse.com Jan Engelhardt <jengelh@inai.de> David Mulder <dmulder@suse.com> Samuel Cabrero <scabrero@suse.de> Samuel Cabrero <scabrero@suse.de> Samuel Cabrero <scabrero@suse.de> dmulder@suse.com dmulder@suse.com dmulder@suse.com jmcdonough@suse.com dmulder@suse.com Samuel Cabrero <scabrero@suse.de> dmulder@suse.com Samuel Cabrero <scabrero@suse.de> dmulder@suse.com dmulder@suse.com vcizek@suse.com dmulder@suse.com dmulder@suse.com nopower@suse.com scabrero@suse.de jmcdonough@suse.com scabrero@suse.de aaptel@suse.com jengelh@inai.de dimstar@opensuse.org dmulder@suse.com jmcdonough@suse.com david.mulder@suse.com jmcdonough@suse.com aaptel@suse.com dmulder@suse.com scabrero@suse.com scabrero@suse.com kukuk@suse.de david.mulder@suse.com scabrero@suse.com rbrown@suse.com dmulder@suse.com scabrero@suse.com dimstar@opensuse.org scabrero@suse.com aaptel@suse.com nopower@suse.com nopower@suse.com aaptel@suse.com ddiss@suse.com dmulder@suse.com ddiss@suse.com dmulder@suse.com ddiss@suse.com ddiss@suse.com nopower@suse.com ddiss@suse.com ddiss@suse.com ddiss@suse.com ddiss@suse.com ddiss@suse.com ddiss@suse.com ddiss@suse.com ddiss@suse.com dmulder@suse.com nopower@suse.com jmcdonough@suse.com aaptel@suse.com kukuk@suse.com kukuk@suse.de nopower@suse.com aaptel@suse.com dmulder@suse.com ddiss@suse.com dmulder@suse.com ddiss@suse.com jmcdonough@suse.com nopower@suse.com nopower@suse.com nopower@suse.com nopower@suse.com jmcdonough@suse.com jmcdonough@suse.com nopower@suse.com nopower@suse.com ddiss@suse.com jmcdonough@suse.com ddiss@suse.com jmcdonough@suse.com jmcdonough@suse.com jmcdonough@suse.com jmcdonough@suse.com jmcdonough@suse.com jmcdonough@suse.com jmcdonough@suse.com jmcdonough@suse.com jmcdonough@suse.com nopower@suse.com lmuelle@suse.com lmuelle@suse.com jmcdonough@suse.com nopower@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com nopower@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com tchvatal@suse.com lmuelle@suse.com nopower@suse.com crrodriguez@opensuse.org lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com noel.power@suse.com ddiss@suse.com ddiss@suse.com lmuelle@suse.com ddiss@suse.com lmuelle@suse.com lmuelle@suse.com nopower@suse.com ddiss@suse.com ddiss@suse.com lmuelle@suse.com lmuelle@suse.com ddiss@suse.com lmuelle@suse.com mpluskal@suse.com lmuelle@suse.com nopower@suse.de ddiss@suse.com ddiss@suse.com ddiss@suse.com lmuelle@suse.de nopower@suse.de lmuelle@suse.com nopower@suse.de ddiss@suse.com lmuelle@suse.com lmuelle@suse.com lmuelle@suse.com - The username map [script] advice from CVE-2020-25717 advisory
  note has undesired side effects for the local nt token. Fallback
  to a SID/UID based mapping if the name based lookup fails;
  (bsc#1192849); (bso#14901). - CVE-2016-2124: SMB1 client connections can be downgraded to
  plaintext authentication (bsc#1014440); (bso#12444);
- CVE-2020-25717: A user in an AD Domain could become root on
  domain members; (bsc#1192284); (bso#14556);
- CVE-2021-23192: Subsequent DCE/RPC fragment injection vulnerability;
  (bsc#1192214); (bso#14875); - Fix wrong kvno exported to keytab after net ads changetrustpw due
  to replication delay; (bsc#1188727); - Add msDS-AdditionalDnsHostName to the keytab; (bso#14396);
  (bsc#1185420);
- Add net-ads-join dnshostname option; (bso#14396); (bsc#1185420);
- Fix adding msDS-AdditionalDnsHostName to keytab with Windows DC;
  (bso#14406); (bsc#1185420); -  CVE-2021-20254 Buffer overrun in sids_to_unixids();
  (bnc#14571); (bsc#1184677). - s3-libads: use dns name to open a ldap session; (bso#13124);
  (bsc#1184310). - CVE-2020-27840: samba: Unauthenticated remote heap corruption
  via bad DNs; (bso#14595); (bsc#1183572).
- CVE-2021-20277: samba: out of bounds read in ldb_handler_fold;
  (bso#14655); (bsc#1183574). - Avoid free'ing our own pointer in memcache when memcache_trim
  attempts to reduce cache size; (bso#14625); (bnc#1179156). - Adjust smbcacls '--propagate-inheritance' feature to align with
  upstream; (bsc#1178469). - CVE-2020-14383: An authenticated user can crash the DCE/RPC DNS with
  easily crafted records; (bsc#1177613); (bso#14472);
- CVE-2020-14323: Unprivileged user can crash winbind; (bsc#1173994);
  (bso#14436);
- CVE-2020-14318: Missing handle permissions check in SMB1/2/3 ChangeNotify;
  (bsc#1173902); (bso#14434);
- Update to samba 4.11.14
  + lib/util: Do not install /usr/bin/test_util; (bso#14166);
  + smbd: don't log success as error; (bso#14490);
  + idmap_ad does not deal properly with a RFC4511 section 4.4.1 response;
    (bso#14465);
  + winbind: Fix a memleak; (bso#14388);
  + idmap_ad: Pass tldap debug messages on to DEBUG(); (bso#14465);
  + lib/replace: Move lib/replace/closefrom.c from ROKEN_HOSTCC_SOURCE to
    REPLACE_HOSTCC_SOURCE; (bso#14482);
  + ctdb disable/enable can fail due to race condition; (bso#14466); - Update to samba 4.11.13
  + CVE-2020-1472(ZeroLogon): s3:rpc_server/netlogon: Protect
    netr_ServerPasswordSet2 against unencrypted passwords; (bsc#1176579);
    (bso#14497);
  + CVE-2020-1472(ZeroLogon): s3:rpc_server/netlogon: Support
    "server require schannel:WORKSTATION$ = no" about unsecure configurations;
    (bsc#1176579); (bso#14497);
  + CVE-2020-1472(ZeroLogon): s4 torture rpc: repeated bytes in client
    challenge; (bsc#1176579); (bso#14497);
  + CVE-2020-1472(ZeroLogon): libcli/auth: Reject weak client challenges in
    netlogon_creds_server_init() "server require schannel:WORKSTATION$ = no";
    (bsc#1176579); (bso#14497);
- Update to samba 4.11.12
  + s3: libsmb: Fix SMB2 client rename bug to a Windows server; (bso#14403);
  + dsdb: Allow "password hash userPassword schemes = CryptSHA256" to work
    on RHEL7; (bso#14424);
  + dbcheck: Allow a dangling forward link outside our known NCs; (bso#14450);
  + lib/debug: Set the correct default backend loglevel to MAX_DEBUG_LEVEL;
    (bso#14426);
  + s3:smbd: PANIC: assert failed in get_lease_type(); (bso#14428);
  + lib/util: do not install "test_util_paths"; (bso#14370);
  + lib:util: Fix smbclient -l basename dir; (bso#14345);
  + s3:smbd: PANIC: assert failed in get_lease_type(); (bso#14428);
  + util: Allow symlinks in directory_create_or_exist; (bso#14166);
  + docs: Fix documentation for require_membership_of of pam_winbind;
    (bso#14358);
  + s3:winbind:idmap_ad: Make failure to get attrnames for schema mode fatal;
    (bso#14425); - Add obsoletes to libsmbldap2 package to fix upgrades from previous
  versions; (bsc#1172810); - Fix net command unable to negotiate SMB2; (bsc#1174120); - Update to samba 4.11.11
  + CVE-2020-10730: NULL de-reference in AD DC LDAP server when ASQ
    and VLV combined; (bso#14364); (bsc#1173159]
  + CVE-2020-10745: invalid DNS or NBT queries containing dots use
    several seconds of CPU each; (bso#14378); (bsc#1173160).
  + CVE-2020-10760: Use-after-free in AD DC Global Catalog LDAP
    server with paged_result or VLV; (bso#14402); (bsc#1173161)
  + CVE-2020-14303: Endless loop from empty UDP packet sent to
    AD DC nbt_server; (bso#14417); (bsc#1173359).
- Update to samba 4.11.10
  + Fix segfault when using SMBC_opendir_ctx() routine for share
    folder that contains incorrect symbols in any file name;
    (bso#14374).
  + vfs_shadow_copy2 doesn't fail case looking in
    snapdirseverywhere mode; (bso#14350)
  + ldb_ldap: Fix off-by-one increment in lldb_add_msg_attr;
    (bso#14413).
  + Malicous SMB1 server can crash libsmbclient; (bso#14366)
  + winbindd: Fix a use-after-free when winbind clients exit;
    (bso#14382)
  + ldb: Bump version to 2.0.11, LMDB databases can grow without
    bounds. (bso#14330)
- Update to samba 4.11.9
  + nmblib: Avoid undefined behaviour in handle_name_ptrs();
    (bso#14242).
  + 'samba-tool group' commands do not handle group names with
    special chars correctly; (bso#14296).
  + smbd: avoid calling vfs_file_id_from_sbuf() if statinfo
    is not valid; (bso#14237).
  + Missing check for DMAPI offline status in async DOS
    attributes; (bso#14293).
  + smbd: Ignore set NTACL requests which contain
    S-1-5-88 NFS ACEs; (bso#14307).
  + vfs_recycle: Prevent flooding the log if we're called on
    non-existant paths; (bso#14316)
  + smbd mistakenly updates a file's write-time on close;
    (bso#14320).
  + RPC handles cannot be differentiated in source3 RPC server;
    (bso#14359).
  + librpc: Fix IDL for svcctl_ChangeServiceConfigW; (bso#14313).
  + nsswitch: Fix use-after-free causing segfault in
    _pam_delete_cred; (bso#14327).
  + Fix fruit:time machine max size on arm; (bso#13622)
  + CTDB recovery corner cases can cause record resurrection
    and node banning; (bso#14294).
  + ctdb: Fix a memleak; (bso#14348).
  + libsmb: Don't try to find posix stat info in SMBC_getatr().
  + ctdb-tcp: Move free of inbound queue to TCP restart;
    (bso#14295); (bsc#1162680).
  + s3/librpc/crypto: Fix double free with unresolved
    credential cache; (bso#14344); (bsc#1169095)
  + s3:libads: Fix ads_get_upn(); (bso#14336).
  + CTDB recovery corner cases can cause record resurrection
    and node banning; (bso#14294)
  + Starting ctdb node that was powered off hard before
    results in recovery loop; (bso#14295); (bsc#1162680).
  + ctdb-recoverd: Avoid dereferencing NULL rec->nodemap;
    (bso#14324)
- Update to samba 4.11.8
  + CVE-2020-10700: Use-after-free in Samba AD DC LDAP
    Server with ASQ; (bso#14331); (bsc#1169850);
  + CVE-2020-10704: LDAP Denial of Service (stack overflow)
    in Samba AD DC; (bso#14334); (bsc#1169851);
- Update to samba 4.11.7
  + s3: lib: nmblib. Clean up and harden nmb packet
    processing; (bso#14239).
  + s3: VFS: full_audit. Use system session_info if called
    from a temporary share definition; (bso#14283)
  + dsdb: Correctly handle memory in objectclass_attrs;
    (bso#14258).
  + ldb: version 2.0.9, Samba 4.11 and later give incorrect
    results for SCOPE_ONE searches; (bso#14270)
  + auth: Fix CIDs 1458418 and 1458420 Null pointer
    dereferences; (bso#14247).
  + smbd: Handle EINTR from open(2) properly; (bso#14285)
  + winbind member (source3) fails local SAM auth with empty
    domain name; (bso#14247)
  + winbindd: Handling missing idmap in getgrgid(); (bso#14265).
  + lib:util: Log mkdir error on correct debug levels;
    (bso#14253).
  + wafsamba: Do not use 'rU' as the 'U' is deprecated in
    Python 3.9; (bso#14266).
  + ctdb-tcp: Make error handling for outbound connection
    consistent; (bso#14274).
- Update to samba 4.11.6
  + pygpo: Use correct method flags; (bso#14209).
  + vfs_ceph_snapshots: Fix root relative path handling;
    (bso#14216); (bsc#1141320).
  + Avoiding bad call flags with python 3.8, using METH_NOARGS
    instead of zero; (bso#14209).
  + source4/utils/oLschema2ldif: Include stdint.h before
    cmocka.h; (bso#14218).
  + docs-xml/winbindnssinfo: Clarify interaction with
    idmap_ad etc; (bso#14122).
  + smbd: Fix the build with clang; (bso#14251).
  + upgradedns: Ensure lmdb lock files linked; (bso#14199).
  + s3: VFS: glusterfs: Reset nlinks for symlink entries during
    readdir; (bso#14182).
  + smbc_stat() doesn't return the correct st_mode and also
    the uid/gid is not filled (SMBv1) file; (bso#14101).
  + librpc: Fix string length checking in
    ndr_pull_charset_to_null(); (bso#14219).
  + ctdb-scripts: Strip square brackets when gathering
    connection info; (bso#14227). - Add libnetapi-devel to baselibs conf, for wine usage; (bsc#1172307); - Installing: samba - samba-ad-dc.service does not exist and unit
  not found; (bsc#1171437); - Fix samba_winbind package is installing python3-base without
  python3 package; (bsc#1169521); - Require libldb2 >= 2.0.10 after security release. - CVE-2020-10704: LDAP Denial of Service (stack overflow) in
  Samba AD DC; (bso#14334); (bsc#1169851);
- CVE-2020-10700: Use-after-free in Samba AD DC LDAP Server with
  ASQ; (bso#14331); (bsc#1169850); - Fix smbclient crash with double free (with unresolved krb5
  credential cache); (bso#14344); (bsc#1169095). - Starting ctdb node that was powered off hard before results
  in recovery loop; (bso#14295); (bsc#1162680). - CTDB doesn't retry outgoing connections on bind (and some other)
  failures; (bso#14274); (bsc#1162680). - Revert: Allow idmap_rid to have primary group other than
  "Domain Users"; (bsc#1087931). - Fix nmbstatus not reporting detailed information about workgroups;
  (bsc#1159464);
- Fix querying all names registered within broadcast area; (bso#8927); - Update to samab 4.11.5
  + CVE-2019-14902: Replication of ACLs down subtree on
    AD Directory is not automatic; (bso#12497); (bsc#1160850).
  + CVE-2019-19344: Fix  server crash with
    dns zone scavenging = yes; (bso#14050); (bsc#1160852).
  + CVE-2019-14907: server-side crash after charset conversion
    failure (eg during NTLMSSP processing); (bso#14208);
    (bsc#1160888).
- Update to samba 4.11.4
  + Ensure SMB1 cli_qpathinfo2() doesn't return an inode number;
    (bso#14161).
  + Ensure we don't call cli_RNetShareEnum() on an SMB1
    connection; (bso#14174).
  + NT_STATUS_ACCESS_DENIED becomes EINVAL when using SMB2 in
    SMBC_opendir_ctx; (bso#14176).
  + SMB2 - Ensure we use the correct session_id if encrypting
    an interim response; (bso#14189).
  + Prevent smbd crash after invalid SMB1 negprot; (bso#14205).
  + printing: Fix %J substition; (bso#13745).
  + Remove now unneeded call to cmdline_messaging_context();
    (bso#13925).
  + Fix incomplete conversion of former parametric options;
    (bso#14069).
  + Fix sync dosmode fallback in async dosmode codepath;
    (bso#14070).
  + vfs_fruit returns capped resource fork length; (bso#14171).
  + libnet_join: Add SPNs for additional-dns-hostnames entries;
    (bso#14116).
  + smbd: Increase a debug level; (bso#14211).
  + Prevent azure ad connect from reporting discovery errors
    reference-value-not-ldap-conformant; (bso#14153).
  + krb5_plugin: Fix developer build with newer heimdal system
    library; (bso#14179).
  + replace: Only link libnsl and libsocket if required;
    (bso#14168);
  + ctdb: Incoming queue can be orphaned causing communication;
    breakdown; (bso#14175).
  + ldb: Release ldb 2.0.8. Cross-compile will not take
    cross-answers or cross-execute; (bso#13846).
  + heimdal-build: Avoid hard-coded /usr/include/heimdal in
    asn1_compile-generated code; (bso#13856). - Fix Ceph snapshot root relative path handling; (bso#14216); (bsc#1141320). - Update to samba 4.11.3
  + CVE-2019-14861: DNSServer RPC server crash, an authenticated user
    can crash the DCE/RPC DNS management server by creating records
    with matching the zone name; (bso#14138); (bsc#1158108).
  + CVE-2019-14870: DelegationNotAllowed not being enforced, the
    DelegationNotAllowed Kerberos feature restriction was not being
    applied when processing protocol transition requests (S4U2Self),
    in the AD DC KDC; (bso#14187); (bsc#1158109). -  CVE-2019-14861: DNSServer RPC server crash, an authenticated user
  can crash the DCE/RPC DNS management server by creating records
  with matching the zone name; (bso#14138); (bsc#1158108).
-  CVE-2019-14870: DelegationNotAllowed not being enforced, the
  DelegationNotAllowed Kerberos feature restriction was not being
  applied when processing protocol transition requests (S4U2Self),
  in the AD DC KDC; (bso#14187); (bsc#1158109). - Update to samba 4.11.2
  + CVE-2019-10218: Client code can return filenames containing
    path separators; (bsc#1144902); (bso#14071).
  + CVE-2019-14833: Samba AD DC check password script does not
    receive the full password; (bso#12438).
  + CVE-2019-14847: User with "get changes" permission can crash
    AD DC LDAP server via dirsync; (bso#14040).
- Fixes from 4.11.1
  + Overlinking libreplace against librt and pthread against every
    binary or library causes issues; (bso#14140);
  + kpasswd fails when built with MIT Kerberos; (bso#14155);
  + Fix spnego fallback from kerberos to ntlmssp in smbd server;
    (bso#14106);
  + Stale file handle error when using mkstemp on a share; (bso#14137);
  + non-AES schannel broken; (bso#14134);
  + Joining Active Directory should not use SAMR to set the password;
    (bso#13884);
  + smbclient can blunder into the SMB1 specific cli_RNetShareEnum()
    call on an SMB2 connection; (bso#14152);
  + Deleted records can be resurrected during recovery; (bso#14147);
  + getpwnam and getpwuid need to return data for ID_TYPE_BOTH group;
    (bso#14141);
  + winbind does not list forest trusts with additional trust
    attributes; (bso#14130);
  + fault report points to outdated documentation; (bso#14139);
  + pam_winbind with krb5_auth or wbinfo -K doesn't work for users of
    trusted domains/forests; (bso#14124);
  + classicupgrade results in uncaught exception - a bytes-like object
    is required, not 'str'; (bso#14136);
  + pod2man is not longer required, stop checking at build time;
    (bso#14131);
  + Exit code of ctdb nodestatus should not be influenced by deleted
    nodes; (bso#14129);
  + username/password authentication doesn't work with CUPS and
    smbspool; (bso#14128);
  + smbc_readdirplus() is incompatible with smbc_telldir() and
    smbc_lseekdir(); (bso#14094); - CVE-2019-14847: User with "get changes" permission can
  crash AD DC LDAP server via dirsync; (bso#14040); (bsc#1154598);
- CVE-2019-10218: Client code can return filenames containing path
  separators; (bso#14071); (bsc#1144902); - CVE-2019-14833: samba: Accent with "check script password"
  Samba AD DC check password script does not receive the full
  password; (bso#12438); (bsc#1154289). - Update to samba 4.11.0
  + For details on all items see WHATSNEW.txt in samba-doc
    package
  + Python2 runtime support removed; python 3.4 or later required
  + Security improvements:
  - SMB1 disabled by default
  - lanman and plaintext authentication deprecated
  - winbind: PAM_AUTH and NTLM_AUTH events logged
  - GnuTLS 3.2 required; system FIPS mode setting honored
  + CephFS Snapshot integration, exposed as previous file
    versions
  + ctdb changes:
  - onnode -o option removed
  - ctdbd logs when using more than 90% of a CPU thread
  - CTDB_MONITOR_SWAP_USAGE variable removed
  + AD Domain controller improvements:
  - Upgrade AD databse format
  - BIND9_FLATFILE deprecated
  - default process model chagned to prefork
  - bind9 dns operation duration logging
  - Default schema updated to 2012_R2; function level is
    unchanged
  - many performance improvements
  + Configuration webserver support removed - Fix broken username/password authentication with CUPS and
  smbspool; (bsc#1152143); (bso#14128). - Fix auth problems when printing via smbspool backend with kerberos;
  (bnc#1148539); (bso#13832). - Update to samba 4.10.8
  + CVE-2019-10197: user escape from share path definition;
    (bso#14035); (bsc#1141267); - Fix build on newer systems by modifying samba.spec to use
  consistent non-relative paths for pammodules in configure line
  and specification of pam_winbind.so library to package. - Update to samba 4.10.7
  + Unable to create or rename file/directory inside shares
    configured with vfs_glusterfs_fuse module; (bso#14010).
  + build: Allow build when '--disable-gnutls' is set; (bso#13844)
  + samba-tool: Add 'import samba.drs_utils' to fsmo.py;
    (bso#13973).
  + Fix 'Error 32 determining PSOs in system' message on old DB
    with FL upgrade; (bso#14008).
  + s4/libnet: Fix joining a Windows pre-2008R2 DC; (bso#14021)
  + join: Use a specific attribute order for the DsAddEntry
    nTDSDSA object; (bso#14046).
  + vfs_catia: Pass stat info to synthetic_smb_fname();
    (bso#14015).
  + lookup_name: Allow own domain lookup when flags == 0;
    (bso#14091).
  + s4 librpc rpc pyrpc: Ensure tevent_context deleted last;
    (bso#13932).
  + DEBUGC and DEBUGADDC doesn't print into a class specific log
    file; (bso#13915).
  + Request to keep deprecated option "server schannel",
    VMWare Quickprep requires "auto"; (bso#13949).
  + dbcheck: Fallback to the default tombstoneLifetime of 180 days;
    (bso#13967).
  + dnsProperty fails to decode values from older Windows versions;
    (bso#13969).
  + samba-tool: Use only one LDAP modify for dns partition fsmo
    role transfer; (bso#13973).
  + third_party: Update waf to version 2.0.17; (bso#13960).
  + netcmd: Allow 'drs replicate --local' to create partitions;
    (bso#14051).
  + ctdb-config: Depend on /etc/ctdb/nodes file; (bso#14017). - CVE-2019-10197: user escape from share path definition;
  (bso#14035); (bsc#1141267). - Prepare for use future use of kernel keyrings, modify
  /etc/pam.d/samba to include  pam_keyinit.so; (bsc#1144059). - Update samba-winbind script to work with systemd; (bsc#1132739);
- Drop samba dhcpcd hook scripts
- Update to samba 4.10.6
  + s3: winbind: Fix crash when invoking winbind idmap scripts;
    (bso#13956).
  + smbd does not correctly parse arguments passed to dfree and quota
    scripts; (bso#13964).
  + samba-tool dns: use bytes for inet_ntop; (bso#13965).
  + samba-tool domain provision: Fix --interactive module in python3;
    (bso#13828).
  + ldb_kv: Skip @ records early in a search full scan; (bso#13893).
  + docs: Improve documentation of "lanman auth" and "ntlm auth"
    connection; (bso#13981).
  + python/ntacls: Use correct "state directory" smb.conf option instead
    of "state dir"; (bso#14002).
  + registry: Add a missing include; (bso#13840).
  + Fix SMB guest authentication; (bso#13944).
  + AppleDouble conversion breaks Resourceforks; (bso#13958).
  + vfs_fruit makes direct use of syscalls like mmap() and pread();
    (bso#13968).
  + s3:mdssvc: Fix flex compilation error; (bso#13987).
  + s3/vfs_glusterfs[_fuse]: Avoid using NAME_MAX directly; (bso#13872).
  + dsdb:samdb: schemainfo update with relax control; (bso#13799).
  + s3:util: Move static file_pload() function to lib/util; (bso#13964).
  + smbd: Fix a panic; (bso#13957).
  + ldap server: Generate correct referral schemes; (bso#12478).
  + s4 dsdb/repl_meta_data: fix use after free in dsdb_audit_add_ldb_value;
    (bso#13941).
  + s4 dsdb: Fix use after free in samldb_rename_search_base_callback;
    (bso#13942).
  + dsdb/repl: we need to replicate the whole schema before we can apply it;
    (bso#12204).
  + ldb: Release ldb 1.5.5; (bso#12478).
  + Schema replication fails if link crosses chunk boundary backwards;
    (bso#13713).
  + 'samba-tool domain schemaupgrade' uses relax control and skips the
    schemaInfo update provision; (bso#13799).
  + dsdb_audit: avoid printing "... remote host [Unknown] SID [(NULL SID)]
    ..."; (bso#13916).
  + python/ntacls: We only need security.SEC_STD_READ_CONTROL in order to
    get the ACL; (bso#13917).
  + s3:loadparm: Ensure to truncate FS Volume Label at multibyte boundary;
    (bso#13947).
  + Using Kerberos credentials to print using spoolss doesn't work;
    (bso#13939).
  + wafsamba: Use native waf timer; (bso#13998).
  + ctdb-scripts: Fix tcp_tw_recycle existence check; (bso#13984). - Update to samba-4.10.5 (including updates for 4.10.4, 4.10.3)
  + CVE-2019-12435 rpc/dns: Avoid NULL deference if zone not found
    in DnssrvOperation2; (bso#13922); (bsc#1137815).
  + CVE-2019-12436 dsdb/paged_results: Ignore successful results
    without messages; (bso#13951); (bsc#1137816).
- Update to samba-4.10.4
  + s3: SMB1: Don't allow recvfile on stream fsp's; (bso#13938).
  + py/provision: Fix for Python 2.6; (bso#13882).
  + netcmd: Fix 'passwordsettings --max-pwd-age' command;
    (bso#13873).
  + s3-libnet_join: 'net ads join' to child domain fails when
    using "-U admin@forestroot"; (bso#13861).
  + vfs_ceph: Explicitly enable libcephfs POSIX ACL support;
    (bso#13896); (bsc#1130245).
  + vfs_ceph: Fix cephwrap_flistxattr() debug message;
    (bso#13940); (bsc#1134697).
  + ctdb-common: Avoid race between fd and signal events;
    (bso#13895).
  + ctdb-common: Fix memory leak in run_proc; (bso#13943).
  + lib: Initialize getline() arguments; (bso#13892).
  + winbind: Fix overlapping id ranges; (bco#13903).
  + lib util debug: Increase format buffer to 4KiB; (bso#13902).
  + nsswitch pam_winbind: Fix Asan use after free; (bso#13927).
  + s4 lib socket: Ensure address string owned by parent struct;
    (bso#13929).
  + s3 rpc_client: Fix Asan stack use after scope; (bso#13936).
  + s3:smbd: Handle IO_REPARSE_TAG_DFS in
    SMB_FIND_FILE_FULL_DIRECTORY_INFO; (bso#10097).
  + smb2_tcon: Avoid STATUS_PENDING completely on tdis; (bso#10344).
  + smb2_sesssetup: avoid STATUS_PENDING responses for session setup;
    (bso#12845).
  + smb2_tcon: Avoid STATUS_PENDING completely on tdis; (bso#13698).
  + smb2_sesssetup: avoid STATUS_PENDING responses for session
    setup; (bso#13796).
  + dbcheck: Fix the err_empty_attribute() check; (bso#13843).
  + vfs_snapper: Drop unneeded fstat handler; (bso#13858).
  + vfs_default: Fix vfswrap_offload_write_send()
    NT_STATUS_INVALID_VIEW_SIZE check; (bso#13862).
  + smb2_server: Grant all 8192 credits to clients; (bso#13863).
  + smbd: Implement SMB_FILE_NORMALIZED_NAME_INFORMATION handling;
    (bso#13919).
  + s3/vfs_glusterfs: Dynamically determine NAME_MAX; (bso#13872).
  + s3: modules: ceph: Use current working directory instead of
    share path; (bso#13918); (bsc#1134452).
  + winbind: Use domain name from lsa query for sid_to_name cache
    entry; (bso#13831).
  + memcache: Increase size of default memcache to 512k;
    (bso#13865).
  + docs: Update smbclient manpage for "--max-protocol";
    (bso#13857).
  + s3:utils: If share is NULL in smbcacls, don't print it;
    (bso#13937).
  + s3:smbspool: Fix regression printing with Kerberos credentials;
    (bso#13939).
  + ctdb-scripts: CTDB restarts failed NFS RPC services by hand,
    which is incompatible with systemd; (bso#13860).
  + ctdb-daemon: Revert "We can not assume that just because we
    could complete a TCP handshake"; (bso#13888).
  + ctdb-daemon: Never use 0 as a client ID; (bso#13930).
  + ctdb-common: Fix memory leak; (bso#13943).
  + s3:debug: Enable logging for early startup failures;
    (bso#13904)
- Update to samba-4.10.3
  + CVE-2018-16860: Heimdal KDC: Reject PA-S4U2Self with unkeyed
    checksum; (bso#13685); (bsc#1134024). - CVE-2019-12435: zone operations can crash rpc server;
  (bso#13922); (bsc#1137815). - Fix cephwrap_flistxattr() debug message; (bso#13940); (bsc#1134697).
- Add ceph_snapshots VFS module; (jsc#SES-183). - Fix vfs_ceph realpath; (bso#13918); (bsc#1134452). - Update to samba-4.10.2:
  + CVE-2019-3870 (World writable files in
    Samba AD DC private/ dir); (bso#13834).
  + CVE-2019-3880 (Save registry file outside share as
    unprivileged user); (bso#13851).
  + py/kcc_utils: py2.6 compatibility; (bso#13837).
  + libcli: permit larger values of DataLength in
    SMB2_ENCRYPTION_CAPABILITIES of negotiate response;
    (bso#13869).
  + regfio: Improve handling of malformed registry hive files;
    (bso#13840).
  + ctdb-version: Simplify version string usage; (bso#13789).
  + lib: Make fd_load work for non-regular files; (bso#13859).
  + dbcheck: in the middle of the tombstone garbage collection
    causes replication failures,
    dbcheck: add --selftest-check-expired-tombstones cmdline
    option; (bso#13816).
  + ndr_spoolss_buf: Fix out of scope use of stack variable in
    NDR_SPOOLSS_PUSH_ENUM_OUT(); (bso#13818).
  + s4/messaging: Fix undefined reference in linking
    libMESSAGING-samba4.so; (bso#13854).
  + acl_read: Fix regression for empty lists; (bso#13836).
  + s4:dlz make b9_has_soa check dc=@ node; (bso#13841).
  + s3:client: Fix printing via smbspool backend with kerberos
    auth; (bso#13832).
  + s4:librpc: Fix installation of Samba; (bso#13847).
  + s3:lib: Fix the debug message for adding cache entries;
    (bso#13848).
  + s3:utils: Add 'smbstatus -L --resolve-uids' to show username;
    (bso#13793).
  + s3:lib: Fix the debug message for adding cache entries;
    (bso#13848).
  + s3:waf: Fix the detection of makdev() macro on Linux;
    (bso#13853).
  * ctdb-build: Drop creation of .distversion in tarball;
    (bso#13789).
  * ctdb-packaging: Test package requires tcpdump, ctdb package
    should not own system library directory;  (bso#13838).
- Update to samba-4.10.1:
  + py/kcc_utils: py2.6 compatibility; (bso#13837);
  + libcli: permit larger values of DataLength in
    SMB2_ENCRYPTION_CAPABILITIES of negotiate response; (bso#13869);
  + regfio: Improve handling of malformed registry hive files; (bso#13840);
  + ctdb-version: Simplify version string usage; (bso#13789);
  + lib: Make fd_load work for non-regular files; (bso#13859);
  + dbcheck in the middle of the tombstone garbage collection causes
    replication failures, dbcheck: add --selftest-check-expired-tombstones
    cmdline option; (bso#13816);
  + ndr_spoolss_buf: Fix out of scope use of stack variable in
    NDR_SPOOLSS_PUSH_ENUM_OUT(); (bso#13818);
  + s4/messaging: Fix undefined reference in linking
    libMESSAGING-samba4.so; (bso#13854);
  + acl_read: Fix regression for empty lists; (bso#13836);
  + s4:dlz make b9_has_soa check dc=@ node; (bso#13841);
  + s3:client: Fix printing via smbspool backend with kerberos auth; (bso#13832);
  + s4:librpc: Fix installation of Samba; (bso#13847);
  + s3:lib: Fix the debug message for adding cache entries; (bso#13848);
  + s3:utils: Add 'smbstatus -L --resolve-uids' to show username; (bso#13793);
  + s3:lib: Fix the debug message for adding cache entries; (bso#13848);
  + s3:waf: Fix the detection of makdev() macro on Linux; (bso#13853);
  + ctdb-build: Drop creation of .distversion in tarball; (bso#13789);
  + ctdb-packaging: Test package requires tcpdump, ctdb package
    should not own system library directory; (bso#13838);
- Update to samba-4.10.0:
  + s4-server: Open and close a transaction on sam.ldb at startup; (bso#13760);
  + access_check_max_allowed() doesn't process "Owner Rights" ACEs; (bso#13812);
  + s4/scripting/bin: Open unicode files with utf8 encoding and write
  + unicode string.
  + sambaundoguididx: Use the right escaped oder unescaped sam ldb
    files; (bso#13759);
  + Fix idmap cache pollution with S-1-22- IDs on winbind hickup; (bso#13813);
  + passdb: Update ABI to 0.27.2.
  + lib/winbind_util: Add winbind_xid_to_sid for --without-winbind; (bso#13813);
  + lib:util: Move debug message for mkdir failing to log level 1; (bso#13823); - MacOS credit accounting breaks with async SESSION SETUP;
  (bsc#1125601); (bso#13796).
- Mac OS X SMB2 implmenetation sees Input/output error or Resource
  temporarily unavailable and drops connection; (bso#13698) - Explicitly enable libcephfs POSIX ACL support; (bso#13896); (bsc#1130245). - CVE-2019-3880: Save registry file outside share as unprivileged
  user; (bso#13851); (bsc#1131060 ). - CVE-2019-3870 pysmbd: missing restoration of original umask after umask(0);
  (bso#13834); (bsc#1130703); - Update to samba-4.9.5
  + audit_logging: Remove debug log header and JSON Authentication:
    prefix; (bso#13714);
  + Fix upgrade from 4.7 (or earlier) to 4.9; (bso#13760);
  + s3: lib: nmbname: Ensure we limit the NetBIOS name correctly; (bso#
    CID: 1433607; (bso#11495);
  + smbd: uid: Don't crash if 'force group' is added to an existing
    share connection; (bso#13690);
  + s3: VFS: vfs_fruit. Fix the NetAtalk deny mode compatibility
    code; (bso#13770);
  + s3: SMB1 POSIX mkdir does case insensitive name lookup; (bso#13803);
  + s3:utils/smbget fix recursive download with empty source
    directories; (bso#13199);
  + samba-tool drs showrepl: Do not crash if no dnsHostName found; (bso#13716);
  + s3:libsmb: cli_smb2_list() can sometimes fail initially on a
    connection; (bso#13736);
  + join: Throw CommandError instead of Exception for simple errors; (bso#13747);
  + ldb: Avoid inefficient one-level searches; (bso#13762);
  + s3: libsmb: use smb2cli_conn_max_trans_size() in
    cli_smb2_list(); (bso#13736);
  + tldap: Avoid use after free errors; (bso#13776);
  + Fix idmap xid2sid cache churn; (bso#13802);
  + access_check_max_allowed() doesn't process "Owner Rights" ACEs; (bso#13812);
  + s3-smbd: Avoid assuming fsp is always intact after close_file
    call; (bso#13720);
  + s3-vfs-fruit: Add close call; (bso#13725);
  + s3-smbd: Use fruit:model string for mDNS registration; (bso#13746);
  + s3-vfs: add glusterfs_fuse vfs module; (bso#13774);
  + printing: Check lp_load_printers() prior to pcap cache update; (bso#13766);
  + vfs_ceph: vfs_ceph strict_allocate_ftruncate calls (local FS)
    ftruncate and fallocate; (bso#13807);
  + lib/audit_logging: Actually create talloc; (bso#13737);
  + netcmd/user: python[3]-gpgme unsupported and replaced by
    python[3]-gpg; (bso#13728);
  + dns: Changing onelevel search for wildcard to subtree; (bso#13738);
  + samba-tool: Don't print backtrace on simple DNS errors; (bso#13721);
  + sambaundoguididx: Use the right escaped oder unescaped sam ldb
    files; (bso#13759);
  + ctdb: Print locks latency in machinereadable stats; (bso#13742);
  + messages_dgm: Messaging gets stuck when pids are recycled; (bso#13786);
  + audit_logging: auth_json_audit required auth_json; (bso#13715);
  + man pages: Document prefork process model; (bso#13765);
  + CVE-2019-3824 ldb: Release ldb 1.4.6; (bso#13773);
  + s3:auth: ignore create_builtin_guests() failing without a valid
    idmap configuration; (bso#13697);
  + s3:auth_winbind: Ignore a missing winbindd as NT4 PDC/BDC
    without trusts; (bso#13722);
  + s3:auth_winbind: return NT_STATUS_NO_LOGON_SERVERS if winbindd
    is not available; (bso#13723);
  + s4:server: Add support for 'smbcontrol samba shutdown' and
    'smbcontrol <pid> debug/debuglevel'; (bso#13752);
  + Python: Ensure ldb.Dn can doesn't rencoded str with py2; (bso#13616);
  + vfs_glusterfs: Adapt to changes in libgfapi signatures; (bso#13330);
  + s3-vfs: Use ENOATTR in errno comparison for getxattr; (bso#13774);
  + notifyd: Fix SIGBUS on sparc; (bso#13704);
  + waf: Check for libnscd; (bso#13787);
  + s3:vfs: Correctly check if OFD locks should be enabled or not; (bso#13770);
  + lib/util: Count a trailing line that doesn't end in a newline; (bso#13717);
  + Recovery lock bug fixes; (bso#13800);
  + s3: net: Do not set NET_FLAGS_ANONYMOUS with -k; (bso#13726);
  + s3:libsmb: Honor disable_netbios option in smbsock_connect_send; (bso#13727);
  + vfs_fileid: Fix get_connectpath_ino; (bso#13741);
  + vfs_fileid: Fix fsname_norootdir algorithm; (bso#13744); - Fix vfs_ceph ftruncate and fallocate handling; (bso#13807); (bsc#1127153). - Fix update-apparmor-samba-profile script after apparmor switched
  to using named profiles. The change is backwards compatible;
  (bsc#1126377); - LoadParm().load_default() fails with "Unable to load default file";
  (bsc#1089758); - Abide by load_printers smb.conf parameter; (bso#13766); (bsc#1124223); - Update to samba-4.9.4
  + libcli/smb: Don't overwrite status code; (bso#9175).
  + wbinfo --group-info 'NT AUTHORITY\System' does not work; (bso#12164).
  + Session setup reauth fails to sign response; (bso#13661).
  + vfs_fruit: Validation of writes on AFP_AfpInfo stream; (bso#13677).
  + vfs_shadow_copy2: Nicely deal with attempts to open previous
    version for writing; (bso#13688).
  + Restoring previous version of stream with vfs_shadow_copy2 fails
    with NT_STATUS_OBJECT_NAME_INVALID fsp->base_fsp->fsp_name; (bso#13455).
  + CVE-2018-16853: Fix S4U2Self crash with MIT KDC build; (bso#13571).
  + s3-vfs: Prevent NULL pointer dereference in vfs_glusterfs; (bso#13708)
  + PEP8: fix E231: missing whitespace after ','.
  + winbindd: Fix crash when taking profiles;(bso#13629)
  + CVE-2018-14629 dns: Fix CNAME loop prevention using counter
    regression; (bso#13600)
  + 'samba-tool user syscpasswords' fails on a domain with many DCs; (bso#13686).
  + CVE-2018-16853: Do not segfault if client is not set; (bso#13571).
  + lib:util: Fix DEBUGCLASS pointer initializiation; (bso#13679)
  + ctdb-daemon: Exit with error if a database directory does not
    exist; (bso#13696).
  + s3:libads: Add net ads leave keep-account option; (bso#13498). - Drop more %if..%endif guards which are idempotent.
- Drop requires on ldconfig which are already auto-discovered.
- Do not ignore errors from useradd/groupadd. - Remove python2 build dependency from samba-libs; (bsc#1116900); - Update update-apparmor-samba-profile script to ignore the shares's
  paths containing substitution variables in any place, not only at the
  beginning of the path. - Update to samba-4.9.3
  + CVE-2018-14629: Unprivileged adding of CNAME record causing loop in AD
    Internal DNS server; (bso#13600); (bsc#1116319);
  + CVE-2018-16841: Double-free in Samba AD DC KDC with PKINIT; (bso#13628);
    (bsc#1116320);
  + CVE-2018-16851: NULL pointer de-reference in Samba AD DC LDAP server;
    (bso#13674); (bsc#1116322);
  + CVE-2018-16852: NULL pointer de-reference in Samba AD DC DNS servers;
    (bso#13669); (bsc#1116321);
  + CVE-2018-16853: Samba AD DC S4U2Self crash in experimental MIT Kerberos
    configuration (unsupported); (bso#13678); (bsc#1116324);
  + CVE-2018-16857: Bad password count in AD DC not always effective;
    window; (bso#13683); (bsc#1116323); - Update to samba-4.9.2
  + dsdb: Add comments explaining the limitations of our current backlink
    behaviour; (bso#13418);
  + Fix problems running domain backups (handling SMBv2, sites); (bso#13621);
  + testparm: Fix crashes with PANIC: Messaging not initialized on SLES 12 SP3;
    (bso#13465);
  + Make vfs_fruit able to cleanup AppleDouble files; (bso#13642);
  + File saving issues with vfs_fruit on samba >= 4.8.5; (bso#13646);
  + Enabling vfs_fruit looses FinderInfo; (bso#13649);
  + Cancelling of SMB2 aio reads and writes returns wrong error
    NT_STATUS_INTERNAL_ERROR; (bso#13667);
  + Fix CTDB recovery record resurrection from inactive nodes and simplify
    vacuuming; (bso#13641);
  + examples: Fix the smb2mount build; (bso#13465);
  + libtevent: Fix build due to missing open_memstream on Illiumos;
    (bso#13629);
  + winbindd_cache: Fix timeout calculation for sid<->name cache; (bso#13662);
  + dsdb encrypted_secrets: Allow "ldb:// and "mdb://" in file path;
    (bso#13653);
  + Extended DN SID component missing for member after switching group
    membership; (bso#13418);
  + Return STATUS_SESSION_EXPIRED error encrypted, if the request was
    encrypted; (bso#13624);
  + python: Allow forced signing via smb.SMB(); (bso#13621);
  + lib:socket: If returning early, set ifaces; (bso#13665);
  + ldb: Bump ldb version to 1.4.3, Python: Ensure ldb.Dn can accept utf8
    encoded unicode; (bso#13616);
  + smbd: Fix DELETE_ON_CLOSE behaviour on files with READ_ONLY attribute;
    (bso#13673);
  + waf: Add -fstack-clash-protection; (bso#13601);
  + winbind: Fix segfault if an invalid passdb backend is configured;
    (bso#13668);
  + Fix bugs in CTDB event handling; (bso#13659);
  + Misbehaving nodes are sometimes not banned; (bso#13670); - lib:socket: If returning early, set ifaces; (bso#13665); (bsc#1111373); - winbind requires latest version of libtevent-util0 to start - Backport latest gpo code from master
  + Read policy from local gpt cache
  + Offline policy application
  + Make group policy extensible via register/unregister gpext
  + gpext's run via a process_group_policy method - Enable profiling data collection - Change samba-kdc package name to samba-ad-dc
- Move samba-ad-dc.service to the samba-ad-dc package - Update to samba-4.9.1
  + s3: nmbd: Stop nmbd network announce storm; (bso#13620);
  + s3-rpcclient: Use spoolss_init_spoolss_UserLevel1 in winspool cmds;
    (bso#13597);
  + CTDB recovery lock has some race conditions; (bso#13617);
  + s3-rpc_client: Advertise Windows 7 client info; (bso#13597);
  + ctdb-doc: Remove PIDFILE option from ctdbd_wrapper man page; (bso#13610); - Tumbleweed doesn't define the sle_version macro, so we must
  include a check for suse_version also. Otherwise python3 is
  disabled on Tumbleweed. - Update to samba-4.9.0
  + samba_dnsupdate: Honor 'dns zone scavenging' option, only update if
    needed; (bso#13605);
  + wafsamba: Fix 'make -j<jobs>'; (bso#13606); - Update to samba-4.9.0rc5
  + s3: VFS: vfs_full_audit: Ensure smb_fname_str_do_log() only
    returns absolute pathnames; (bso#13565);
  + s3: util: Do not take over stderr when there is no log file; (bso#13578);
  + Durable Reconnect fails because cookie.allow_reconnect is not
    set; (bso#13549);
  + krb5-samba: Interdomain trust uses different salt principal; (bso#13539);
  + vfs_fruit: Don't unlink the main file; (bso#13441);
  + smbd: Fix a memleak in async search ask sharemode; (bso#13602);
  + Fix Samba GPO issue when Trust is enabled; (bso#11517);
  + samba-tool: Add "virtualKerberosSalt" attribute to
    'user getpassword/syncpasswords'; (bso#13539);
  + Fix CTDB configuration issues; (bso#13589);
  + ctdbd logs an error until it can successfully connect to
    eventd; (bso#13592); - Update to samba-4.9.0rc4
  + s3: smbd: Ensure get_real_filename() copes with empty
    pathnames; (bso#13585);
  + samba domain backup online/rename commands force user to specify
    password on CLI; (bso#13566);
  + wafsamba/samba_abi: Always hide ABI symbols which must be
    local; (bso#13579);
  + Fix a panic if fruit_access_check detects a locking conflict; (bso#13584);
  + Fix memory and resource leaks; (bso#13567);
  + python: Fix print in dns_invalid.py; (bso#13580);
  + Aliasing issue causes incorrect IPv6 checksum; (bso#13588);
  + Fix CTDB configuration issues; (bso#13589);
  + s3: vfs: time_audit: fix handling of token_blob in
    smb_time_audit_offload_read_recv(); (bso#13568); - Add missing zlib-devel dependency which was previously pulled in
  by libopenssl-devel - Update to samba-4.9.0rc3+git.22.3fff23ae36e
  + CVE-2018-10858: libsmb: Harden smbc_readdir_internal() against
    returns from malicious servers; (bso#13453);
  + CVE-2018-1140: ldbsearch '(distinguishedName=abc)' and DNS query
    with escapes crashes, ldb: Release LDB 1.3.5 for CVE-2018-1140; (bso#13374);
  + CVE-2018-10918: cracknames: Fix DoS (NULL pointer de-ref) when
    not servicePrincipalName is set on a user; (bso#13552);
  + CVE-2018-10919: acl_read: Fix unauthorized attribute access via
    searches; (bso#13434);
  + ctdb_mutex_ceph_rados_helper: Set SIGINT signal handler; (bso#13540);
  + CVE-2018-1139 libcli/auth: Do not allow ntlmv1 over SMB1 when it
    is disabled via "ntlm auth"; (bso#13360);
  + s3-tldap: do not install test_tldap; (bso#13529);
  + ctdb_mutex_ceph_rados_helper: Fix deadlock via lock renewals; (bso#13540);
  + CVE-2018-1140 Add NULL check for ldb_dn_get_casefold() in
    ltdb_index_dn_attr(); (bso#13374);
  + ctdb-eventd: Fix CID 1438155; (bso#13554);
  + Fix CIDs 1438243, (Unchecked return value) 1438244
    (Unsigned compared against 0), 1438245 (Dereference before null check) and
    1438246 (Unchecked return value); (bso#13553);
  + ctdb: Fix a cut&paste error; (bso#13554);
  + systemd: Only start smb when network interfaces are up; (bso#13559);
  + Fix quotas don't work with SMB2; (bso#13553);
  + s3/smbd: Ensure quota code is only called when quota support
    detected; (bso#13563);
  + s3/libsmb: Explicitly set delete_on_close token for rmdir; (bso#13204);
  + s3:waf: Install eventlogadm to /usr/sbin; (bso#13561);
  + Shorten description in vfs_linux_xfs_sgid manual; (bso#13562); - Update to samba-4.9.0rc2+git.21.a1069afb007
  + s3: smbd:  Using "sendfile = yes" with SMB2 can cause CPU spin; (bso#13537);
  + s3: smbd: Fix path check in smbd_smb2_create_durable_lease_check();
    (bso#13535);
  + samba-tool trust: Support discovery via netr_GetDcName; (bso#13538);
  + s4-dsdb: Only build dsdb Python modules for AD DC; (bso#13542);
  + Fix portability issues on freebsd; (bso#13520);
  + DNS wildcard search does not handle multiple labels correctly; (bso#13536);
  + samba-tool domain trust: Fix trust compatibility to Windows
    Server 1709 and FreeIPA; (bso#13308);
  + Fix portability issues on freebsd; (bso#13520);
  + ctdb-protocol: Fix CTDB compilation issues; (bso#13545);
  + ctdb-docs: Replace obsolete reference to CTDB_DEBUG_HUNG_SCRIPT
    option; (bso#13546);
  + ctdb-doc: Provide an example script for migrating old
    configuration; (bso#13550);
  + ctdb-event: Implement event tool "script list" command; (bso#13551); - Update to samba-4.8.4+git.37.a7a861d7982;
  + CVE-2018-1139:  Weak authentication protocol allowed;
    (bsc#1095048); (bsc#13360);
  + CVE-2018-1140:  Denial of Service Attack on DNS and LDAP server;
    (bsc#1095056); (bso#13466); (bso#13374);
  + CVE-2018-10858: Insufficient input validation on client directory
    listing in libsmbclient; (bsc#1103411); (bso#13453);
  + CVE-2018-10918: Denial of Service Attack on AD DC DRSUAPI server;
    (bsc#1103414); (bso#13552);
  + CVE-2018-10919: Confidential attribute disclosure from the AD
    LDAP server; (bsc#1095057); (bso#13434);
  + s3:winbind: winbind normalize names' doesn't work for users;
    (bso#12851);
  + winbind: Fix UPN handling in canonicalize_username(); (bso#13369);
  + s3: smbd: Fix SMB2-FLUSH against directories; (bso#13428);
  + samdb: Fix building Samba with gcc 8.1; (bso#13437);
  + s3:utils: Do not segfault on error in DoDNSUpdate();  (bso#13440);
  + smbd: Flush dfree memcache on service reload; (bso#13446);
  + ldb: Save a copy of the index result before calling the
  + lib/util: No Backtrace given by Samba's AD DC by default;
    (bso#13454).
  + s3: smbd: printing: Re-implement delete-on-close semantics for
    print files missing since 3.5.x; (bso#13457).
  + python: Fix talloc frame use in make_simple_acl(); (bso#13474).
  + krb5_wrap: Fix keep_old_entries logic for older Kerberos
    libraries;(bso#13478).
  + krb5_plugin: Add winbind localauth plugin for MIT Kerberos;
    (bso#13480). - Add missing package descriptions; (bsc#1093864);
- Fix dependency issue between samba-python and samba-kdc; (bsc#1062876);
- Call update-apparmor-samba-profile when running samba-ad-dc;
  (bsc#1092099); - Update to 4.8.2
  + After update to 4.8.0 DC failed with "Failed to find our own
    NTDS Settings objectGUID" (bso#13335).
  + fix incorrect reporting of stream dos  attributes on a
    directory (bso#13380).
  + vfs_ceph: add asynchronous fsync; fake synchronous call (bso#13412).
  + vfs_ceph: add fake async pwrite/pread send/recv hooks; (bso#13425)
  + vfs_ceph: Fix memory leak; (bso#13424).
  + libsmbclient: Fix hard-coded connection error return of
    ETIMEDOUT; (bso#13419).
  + s4-lsa: Fix use-after-free in LSA server; (bso#13420).
  + winbindd: Do re-connect if the RPC call fails in the passdb
    case; (bso#13430).
  + cleanupd: Sends MSG_SMB_UNLOCK twice to interested peers; (bso#13416).
  + cleanupd: Use MSG_SMB_BRL_VALIDATE to signal cleanupd
    unclean process shutdown; (bso#13414).
  + ctdb-client: Remove ununsed functions from old client code;
    (bso#13411).
  + printing: Return the same error code as windows does on upload
    failures; (bso#13395).
  + nsswitch: Fix memory leak in winbind_open_pipe_sock() when the
    privileged pipe is not accessable; (bso#13400).
  + s4:lsa_lookup: remove TALLOC_FREE(state) after all
    dcesrv_lsa_Lookup{Names,Sids}_base_map() calls; (bso#13420).
  + rpc_server: Fix NetSessEnum with stale sessions; (bso#13407).
  + s3:smbspool: Fix cmdline argument handling; (bso#13417). - Move libdfs-server-ad-samba4.so library from kdc to libs package, as it is
  required by some client libs; (bsc#1074135);
- Update to 4.8.1; (bsc#1091179);
  + s3: ldap: Ensure the ADS_STRUCT pointer doesn't get freed on error,
    we don't own it here; (bso#13244);
  + s3: smbd: Fix possible directory fd leak if the underlying OS doesn't
    support fdopendir(); (bso#13270);
  + Round-tripping ACL get/set through vfs_fruit will increase the number of
    ACE entries without limit; (bso#13319);
  + s3: smbd: SMB2: Add DBGC_SMB2_CREDITS class to specifically debug credit
    issues; (bso#13347);
  + s3: smbd: Files or directories can't be opened DELETE_ON_CLOSE without
    delete access; (bso#13358);
  + s3: smbd: Fix memory leak in vfswrap_getwd(); (bso#13372);
  + s3: smbd: Unix extensions attempts to change wrong field in fchown call;
    (bso#13375);
  + ms_schema/samba-tool visualize: Fix python2.6 incompatibility;
    (bso#13337);
  + Fix invocation of gnutls_aead_cipher_encrypt(); (bso#13352);
  + Windows 10 cannot logon on Samba NT4 domain; (bso#13328);
  + winbindd: Recover loss of netlogon secure channel in case the peer DC is
    rebooted; (bso#13332);
  + s3:smbd: Don't use the directory cache for SMB2/3; (bso#13363);
  + ctdb-client: Fix bugs in client code; (bso#13356);
  + ctdb-scripts: Drop "net serverid wipe" from 50.samba event script;
    (bso#13359);
  + s3: lib: messages: Don't use the result of sec_init() before calling
    sec_init(); (bso#13368);
  + libads: Fix the build '--without-ads'; (bso#13273);
  + winbind: Keep "force_reauth" in invalidate_cm_connection, add
    'smbcontrol disconnect-dc'; (bso#13332);
  + vfs_virusfilter: Fix CIDs 1428738-1428740; (bso#13343);
  + dsdb: Fix CID 1034966 Uninitialized scalar variable; (bso#13367);
  + rpc_server: Fix core dump in dfsgetinfo; (bso#13370);
  + smbclient: Fix notify; (bso#13382);
  + Fix smbd panic if the client-supplied channel sequence number wraps;
    (bso#13215);
  + Windows 10 cannot logon on Samba NT4 domain; (bso#13328);
  + lib/util: Remove unused '#include <sys/syscall.h>' from tests/tfork.c;
    (bso#13342);
  + Fix build errors with cc from developerstudio 12.5 on Solaris;
    (bso#13343);
  + Fix the picky-developer build on FreeBSD 11; (bso#13344);
  + s3:modules: Fix the build of vfs_aixacl2.c; (bso#13345);
  + s3:smbd: map nterror on smb2_flush errorpath; (bso#13338);
  + lib:replace: Fix linking when libtirpc-devel overwrites system headers;
    (bso#13341);
  + winbindd: 'wbinfo --name-to-sid' returns misleading result on invalid
    query; (bso#13312);
  + s3:passdb: Do not return OK if we don't have pinfo set up; (bso#13376);
  + Allow AESNI to be used on all processor supporting AESNI; (bso#13302); - Use new foreground execution flags for systemd samba daemons;
  (bsc#1088574); (bsc#1071090); (bsc#1065551);
  + Add %post scriptlet to clear old sysconfig flags
- Update vendor-files to commit 880b3e7.
  + Set samba sysconfig template variables to ""
  + Add required daemon flags directly to systemd unit - Specfile cleanup
  + Remove %if..%endif guards which don't affect the build
  + Remove redundant %clean section
  + Replace old $RPM_* shell vars with macros - BuildRequire pkgconfig(systemd) and pkgconfig(libsystemd) in
  place of systemd and systemd-devel: Allow OBS to optimize the
  workload by allowing the usage of the 'build-optimized' systemd
  packages. - Enable building samba with python3, and create a samba-python3 package. - Update to 4.8
  + New GUID Index mode in sam.ldb for the AD DC
  + GPO support for samba KDC
  + Time machine support with vfs_fruit
  + Encrypted secrets
  + AD Replication visualization
  + Improved trust support
  - ability to not scan global trust list
  - AD external trusts have limited support
  - verbose trusted domain listing
  + VirusFilter VFS module
  + NT4-style replication removed
  + vfs_aio_linux removed - Disable samba-pidl package, due to the removal of dependency
  perl-Parse-Yapp; (bsc#1085150); - Update to 4.7.6;
  + CVE-2018-1050: DOS vulnerability when SPOOLSS is run externally;
    (bso#11343); (bsc#1081741);
  + CVE-2018-1057: Authenticated users can change other users' password;
    (bso#13272); (bsc#1081024). - Disable python until full python3 port is done; (bsc#1082139);
  + Remove contents of package samba-python
  + Remove contents of package libsamba-policy0
  + Remove contents of package libsamba-policy-devel
  + Remove library libsamba-python-samba4.so from samba-libs package
  + Remove library libsamba-net-samba4.so from samba-libs package
  + Remove smbtorture binary and manpage from samba-test - samba fails to build with glibc2.27; (bsc#1081042); - Update to 4.7.5; (bsc#1080545);
  + smbd tries to release not leased oplock during oplock II downgrade;
    (bso#13193);
  + Fix copying file with empty FinderInfo from Windows client to Samba share
    with fruit; (bso#13181);
  + build: Deal with recent glibc sunrpc header removal; (bso#10976);
  + Make Samba work with tirpc and libnsl2; (bso#13238);
  + vfs_ceph: Add fs_capabilities hook to avoid local statvfs; (bso#13208);
    (bsc#1075206);
  + Kerberos: PKINIT: Can't decode algorithm parameters in clientPublicValue;
    (bso#12986);
  + ctdb-recovery-helper: Deregister message handler in error paths;
    (bso#13188);
  + samba: Only use async signal-safe functions in signal handler; (bso#13240);
  + Kerberos: PKINIT: Can't decode algorithm parameters in clientPublicValue;
    (bso#12986);
  + repl_meta_data: Fix linked attribute corruption on databases
    with unsorted links on expunge. dbcheck: Add functionality to fix the
    corrupt database; (bso#13228);
  + Fix smbd panic when chdir returns error during exit; (bso#13189);
  + Make Samba work with tirpc and libnsl2; (bso#13238);
  + Fix POSIX ACL support on HPUX and possibly other big-endian OSs;
    (bso#13176); - Update to 4.7.4; (bsc#1080545);
  + s3: smbclient: Implement 'volume' command over SMB2; (bso#13140);
  + s3: libsmb: Fix valgrind read-after-free error in
    cli_smb2_close_fnum_recv(); (bso#13171);
  + s3: libsmb: Fix reversing of oldname/newname paths when creating a
    reparse point symlink on Windows from smbclient; (bso#13172);
  + Build man page for vfs_zfsacl.8 with Samba; (bso#12934);
  + repl_meta_data: Allow delete of an object with dangling backlinks;
    (bso#13095);
  + s4:samba: Fix default to be running samba as a deamon; (bso#13129);
  + Performance regression in DNS server with introduction of DNS wildcard,
    ldb: Release 1.2.3; (bso#13191);
  + vfs_zfsacl: Fix compilation error; (bso#6133);
  + "smb encrypt" setting changes are not fully applied until full smbd
    restart; (bso#13051);
  + winbindd: Fix idmap_rid dependency on trusted domain list; (bso#13052);
  + vfs_fruit: Proper VFS-stackable conversion of FinderInfo; (bso#13155);
  + winbindd: Dependency on trusted-domain list in winbindd in critical auth
    codepath; (bso#13173);
  + repl_meta_data: Fix removing of backlink on deleted objects; (bso#13120);
  + ctdb: sock_daemon leaks memory; (bso#13153);
  + TCP tickles not getting synchronised on CTDB restart; (bso#13154);
  + winbindd: winbind parent and child share a ctdb connection; (bso#13150);
  + pthreadpool: Fix deadlock; (bso#13170);
  + pthreadpool: Fix starvation after fork; (bso#13179);
  + messaging: Always register the unique id; (bso#13180);
  + s4/smbd: set the process group; (bso#13129);
  + Fix broken linked attribute handling; (bso#13095);
  + The KDC on an RWDC doesn't send error replies in some situations;
    (bso#13132);
  + libnet_join: Fix 'net rpc oldjoin'; (bso#13149);
  + g_lock conflict detection broken when processing stale entries;
    (bso#13195);
  + s3:smb2_server: allow logoff, close, unlock, cancel and echo on expired
    sessions; (bso#13197);
  + s3:libads: net ads keytab list fails with "Key table name malformed";
    (bso#13166); (bsc#1067700);
  + Fix crash in pthreadpool thread after failure from pthread_create;
    (bso#13170);
  + s4:samba: Allow samba daemon to run in foreground; (bso#13129);
    (bsc#1065551);
  + third_party: Link the aesni-intel library with "-z noexecstack";
    (bso#13174);
  + vfs_glusterfs: include glusterfs/api/glfs.h without relying on "-I"
    options; (bso#13125); - Re-enable usage of libnsl (did got lost with glibc change)
- Use TI-RPC (sunrpc is deprecated and will be removed soon from
  glibc) - smbc_opendir should not return EEXIST with invalid login credentials;
  (bnc#1065868). - Update to 4.7.3; (bsc#1069666);
  + Non-smbd processes using kernel oplocks can hang smbd;
    (bso#13121);
  + python: use communicate to fix Popen deadlock; (bso#13127);
  + smbd on disk file corruption bug under heavy threaded load;
    (bso#13130);
  + tevent: version 0.9.34; (bso#13130);
  + s3: smbd: Fix delete-on-close after smb2_find; (bso#13118);
  + CVE-2017-14746: s3: smbd: Fix SMB1 use-after-free crash bug;
    (bsc#1060427);(bso#13041);
  + CVE-2017-15275: s3: smbd: Chain code can return uninitialized
    memory when talloc buffer is grown; (bsc#1063008); (bso#13077);
- Build with AD DC support only in openSUSE. - Replace references to /var/adm/fillup-templates with new
  %_fillupdir macro (boo#1069468) - samba-tool requires samba-python; (bnc#1067771). - Run all daemons in the foreground and let systemd handle it; (bsc#1065551).
- Update to 4.7.1;
  + Fix exporting subdirs with shadow_copy2; (bso#13091);
  + Currently if getwd() fails after a chdir(), we panic; (bso#13027);
  + Ensure default SMB_VFS_GETWD() call can't return a partially completed
    struct smb_filename; (bso#13068);
  + sys_getwd() can leak memory or possibly return the wrong errno on older
    systems; (bso#13069);
  + smbclient doesn't correctly canonicalize all local names before use;
    (bso#13093);
  + Fix broken linked attribute handling; (bso#13095);
  + Missing LDAP query escapes in DNS rpc server; (bso#12994);
  + Link to -lbsd when building replace.c by hand; (bso#13087);
  + Cannot delete non-ACL files on Solaris/ZFS/NFSv4 ACL filesystem;
    (bso#6133);
  + Map SYNCHRONIZE acl permission statically in zfs_acl vfs module;
    (bso#7909);
  + Samba fails to honor SEC_STD_WRITE_OWNER bit with the acl_xattr module;
    (bso#7933);
  + Missing assignment in sl_pack_float; (bso#12991);
  + Wrong Samba access checks when changing DOS attributes; (bso#12995);
  + samba_runcmd_send() leaves zombie processes on timeout; (bso#13062);
  + groupmap cleanup should not delete BUILTIN mappings; (bso#13065);
  + Enabling vfs_fruit results in loss of Finder tags and other xattrs;
    (bso#13076);
  + man pages: Properly ident lists; (bso#9613);
  + smb.conf.5: Sort parameters alphabetically; (bso#13081);
  + Fix GUID string format on GetPrinter info; (bso#12993);
  + Remote serverid check doesn't check for the unique id; (bso#13042);
  + CTDB starts consuming memory if there are dead nodes in the cluster;
    (bso#13056);
  + ctdb-common: Ignore event scripts with multiple '.'s; (bso#13070);
  + libgpo doesn't sort the GPOs in the correct order; (bso#13046);
  + Remote serverid check doesn't check for the unique id; (bso#13042);
  + vfs_catia: Fix a potential memleak; (bso#13090);
  + Fix file change notification for renames; (bso#12903);
  + Samba DNS server does not honour wildcards; (bso#12952);
  + Can't change password in samba from a Windows client if Samba runs on
    IPv6 only interface; (bso#13079);
  + vfs_fruit: Replace closedir() by SMB_VFS_CLOSEDIR; (bso#13086);
  + Apple client can't cope with SMB2 async replies when creating symlinks;
    (bso#13047);
  + s4:rpc_server:backupkey: Move variable into scope; (bso#12959);
  + Fix ntstatus_gen.h generation on 32bit; (bso#13099);
  + Fix a double free in vfs_gluster_getwd(); (bso#13100);
  + Fix resouce leaks and pointer issues; (bso#13101);
  + vfs_solarisacl: Fix build for samba 4.7 and up; (bso#13049); - Add samba-kdc to baselibs.conf.
- Do not wrap samba-kdc's package definition into if/endif: the
  package won't be generated simply based on the fact that there is
  no files section for the package. Allows the source validator to
  ensure samba-kdc is a built package. - Update to 4.7.0;
  + Whole DB read locks: Improved LDAP and replication consistency;
    (bso#12858).
  + Samba AD with MIT Kerberos
  + Dynamic RPC port range: Default range changed from "1024-1300" to
    "49152-65535".
  + Authentication and Authorization audit support: New auth_audit debug
    class.
  + Multi-process LDAP Server: The LDAP server in the AD DC now honours
    the process model used for the rest of the 'samba' process.
  + Improved Read-Only Domain Controller (RODC) Support; (bso#12977).
  + Additional password hashes stored in supplementalCredentials.
  + Improvements to DNS during Active Directory domain join.
  + Significant AD performance and replication improvements.
  + Query record for open file or directory.
  + Removal of lpcfg_register_defaults_hook().
  + Change of loadable module interface.
  + SHA256 LDAPS Certificates: The self-signed certificate generated for use
    on LDAPS will now be generated with a SHA256 self-signature, not a SHA1
    self-signature.
  + CTDB no longer allows mixed minor versions in a cluster.
  + CTDB now ignores hints from Samba about TDB flags when attaching to
    databases.
  + New configuration variable CTDB_NFS_CHECKS_DIR.
  + The CTDB_SERVICE_AUTOSTARTSTOP configuration has been removed.
  + The CTDB_SCRIPT_DEBUGLEVEL configuration variable has been removed.
  + The example NFS Ganesha call-out has been improved.
  + A new "replicated" database type is available. - CVE-2017-12163: Prevent client short SMB1 write from
  writing server memory to file; (bso#13020); (bsc#1058624). - CVE-2017-12150: Some code path don't enforce smb signing,
  when they should; (bso#12997); (bsc#1058622). - CVE-2017-12151: Keep required encryption across SMB3 dfs
  redirects; (bso#12996); (bsc#1058565). - Clean specfile assuming SUSE-only system and product >=SLE11
  + %{ul_version}, %{rhel_version}, %{mandriva_version}, %{centos_version}
    are always undefined
  + %{_vendor} is "suse" and %{suse_version} is at least 1100 - Update to 4.6.7; (bsc#1054017)
  + Joining a Huawai storage fails: empty CLDAP ping answer; (bso#11392).
  + smbcacls can fail against a directory on Windows using SMB2.; (bso#12937).
  + vfs_ceph provides inconsistent directory listings; (bso#12911).
  + Misused talloc context can cause a user to crash their smbd by chaining
    SMB1 commands.; (bso#12836).
  + Use-after free can crash libsmbclient code.; (bso#12927).
  + Server exit with active AIO can crash.; (bso#12925).
  + Ensure notifyd doesn't return from smbd_notifyd_init; (bso#12910).
  + fd leak to ctdb sub-processes leads to SELinux AVC denial in audit logs;
    (bso#12898).
  + vfs_fruit shouldn't send MS NFS ACEs to Windows clients; (bso#12897).
  + smbspool_krb5_wrapper does not tell CUPS that it requires negotiate for
    authentication; (bso#12886).
  + finder sidebar showing question mark instead of icon when using ip to
    connect with vfs_fruit; (bso#12840).
  + Winbind stops obtaining the 'unixHomeDirectory' & 'loginShell' attributes
    from AD.; (bso#12720).
  + KCC run at selftest startup can fail spuriously due to a race;
    (bso#12869).
  + winbindd changes the local password and gets NT_STATUS_WRONG_PASSWORD for
    the remote change; (bso#12782).
  + rpc_pipe_client memory leaks due to long term memory context passed to
    rpc_pipe_open_interface(); (bso#12890).
  + CVE-2017-2619 breaks accessing previous versions of directories with
    snapshots in subdirectories of the share; (bso#12885).
  + dns_name_equal doing OOB read; (bso#12813).
  + replica_sync tests flap; (bso#12753).
  + Selftest should not call 'net cache flush' and wipe important winbind
    entries; (bso#12868).
  + Old Samba versions don't support using recent ldb versions (>=1.1.30);
    (bso#12859).
  + pam_winbind fails with kerberos method = secrets and keytab; (bso#10490).
  + race starting winbindd against posixacl test; (bso#12843).
  + Crash in the reentrant smbd_smb2_create_send() if the something fails in
    the subsequent try; (bso#12832).
  + spnego.c passes the wrong argument order to gensec_update_ev() for the
    FALLBACK case; (bso#12788).
  + Clients with SMB3 support can't connect with
    "server max protocol = SMB2_02"; (bso#12772).
  + A log message of samb-tool user syncpasswords reverses string arguments in
    a debug message "Call Popen[...".; (bso#12768).
  + The smb tarmode tests kills the share dir contents; (bso#12867).
  + Fix for a bug in MacOS X Sierra NTLMv2 processing; (bso#12862).
  + CVE-2017-2619 regression with non-wide symlinks to directories; (bso#12860).
  + manpage/index.html lists links not in alphabetical order; (bso#12854).
  + smbcacls got error NT_STATUS_NETWORK_NAME_DELETED; (bso#12831).
  + If a record is locked in a database, then recovery does not complete;
    (bso#12857).
  + debug_locks.sh script does not log any information; (bso#12856).
  + SIGSEGV in cm_connect_lsa_tcp dereferencing conn->lsa_tcp_pipe->transport
    after error; (bso#12852).
  + smbclient can't parse DOMAIN+username if a different winbind separator is
    used; (bso#12849).
  + Related requests with SessionSetup fail with INTERNAL_ERROR; (bso#12845).
  + Related requests with TreeConnect fail with NETWORK_NAME_DELETED;
    (bso#12844).
  + cli->server_os not filled correctly; (bso#12779).
  + REGRESSION: smbclient doesn't print the session setup anymore;
    (bso#12824).
  + smblcient doesn't handle STATUS_NOT_SUPPORTED gracefully for
    FSCTL_VALIDATE_NEGOTIATE_INFO; (bso#12808).
  + CTDB NFS call-out failures do not cause event failures; (bso#12837).
  + net command fails due to incorrectly return code; (bso#12828).
  + Fix building Samba with GCC 7.1; (bso#12827). - Fix duplicate CTDB_LOGGING params when downgraded and upgraded again;
  (bsc#1048339). - fix cephwrap_chdir(); (bsc#1048790).
- Update to 4.6.6
  + CVE-2017-11103: Orpheus' Lyre KDC-REP service name validation;
    (bsc#1048278). - Fix ctdb logs to /var/log/log.ctdb instead of /var/log/ctdb; (bsc#1048339). - Fix inconsistent ctdb socket path; (bsc#1048352).
- Fix non-admin cephx authentication; (bsc#1048387). - Update to 4.6.5; (bsc#1040157)
  + Specifying CTDB_LOGGING=syslog:nonblocking causes ctdbd to crash at
    startup; (bso#12814).
  + vfs_expand_msdfs tries to open the remote address as a file path;
    (bso#12687).
  + PANIC (pid 1096): assert failed: lease_type_is_exclusive(e_lease_type);
    (bso#12798).
  + With clustering get update_num_read_oplocks failed and PANIC:
    num_share_modes == 1 assertion failure; (bso#11844).
  + contend_level2_oplocks_begin_default oplock optimisation doesn't carry
    over to leases; (bso#12766).
  + `ctdb nodestatus` incorrectly displays status for all nodes with wrong
    exit code; (bso#12802).
  + CTDB can spin hard on revoking readonly delegations if a node becomes
    disconnected; (bso#12697).
  + Printing a share mode entry with leases can crash in the ndr code;
    (bso#12793).
  + Fix flakey unit tests for eventd; (bso#12792).
  + CTDB daemon crashes if built with clang; (bso#12770).
  + smbcacls fails if no password is specified; (bso#12765).
  + idmap_rfc2307: Lookup of more than two SIDs fails; (bso#12757).
  + samba-tool user syncpasswords doesn't trigger the script when a user gets
    removed; (bso#12767).
  + systemd: fix detection of libsystemd; (bso#12764).
  + Notify subsystem only maps first inotify mask to Windows notify filter;
    (bso#12760).
  + Allow passing trusted domain password as plain-text to PASSDB layer;
    (bso#12751).
  + Can't case-rename files with vfs_fruit; (bso#12749).
  + wrong sid->uid mapping for SIDs residing in sIDHistory; (bso#12702).
  + vfs_acl_common should force "create mask = 0777", not 0666; (bso#12562).
  + Ordering of notify responses broken; (bso#12756). - s3: libsmb: Fix error where short name length was read as 2
  bytes, should be 1; (bso#11822); (bsc#1042419). - Revert explicit winbind %{version}-%{release} dependency.
  + The ABI has stabilized since (bsc#936909), so remove to fix cross-media
    dependencies; (bsc#1037899). - Fix CVE-2017-7494 remote code execution from a writable share;
  (bso#12780); (bsc#1038231). - Update to 4.6.3; (bsc#1036011)
  + s3:vfs:shadow_copy2: vfs_shadow_copy2 fails to list snapshots
    from shares with GlusterFS backend; (bso#12743).
  + Fix for Solaris C compiler; (bso#12559).
  + s3: locking: Update oplock optimization for the leases era; (bso#12628).
  + Make the Solaris C compiler happy; (bso#12693).
  + s3: libgpo: Allow skipping GPO objects that don't have the
    expected LDAP attributes; (bso#12695).
  + Fix buffer overflow caused by wrong use of getgroups; (bso#12747).
  + lib: debug: Avoid negative array access; (bso#12746).
  + cleanupdb: Fix a memory read error; (bso#12748).
  + streams_xattr and kernel oplocks results in
    NT_STATUS_NETWORK_BUSY; (bso#7537).
  + winbindd: idmap_autorid allocates ids for unknown SIDs from other
    backends; (bso#11961).
  + vfs_fruit: Resource fork open request with
    flags=O_CREAT|O_RDONLY; (bso#12565).
  + manpages/vfs_fruit: Document global options; (bso#12615).
  + lib/pthreadpool: Fix a memory leak; (bso#12624).
  + Lookup-domain for well-known SIDs on a DC; (bso#12727).
  + winbindd: Fix error handling in rpc_lookup_sids(); (bso#12728).
  + winbindd: Trigger possible passdb_dsdb initialisation; (bso#12729).
  + credentials_krb5: use gss_acquire_cred for client-side GSSAPI
    use case; (bso#12611).
  + lib/crypto: Implement samba.crypto Python module for RC4; (bso#12690).
  + ctdb-readonly: Avoid a tight loop waiting for revoke to
    complete; (bso#12697).
  + ctdb_event monitor command crashes if event is not specified;
    (bso#12723).
  + ctdb-docs: Fix documentation of "-n" option to 'ctdb tool'; (bso#12733).
  + smbd: Fix smb1 findfirst with DFS; (bso#12558).
  + smbd: Do an early exit on negprot failure; (bso#12610).
  + winbindd: Fix substitution for 'template homedir'; (bso#12699).
  + s4:kdc: Disable principal based autodetected referral detection;
    (bso#12554).
  + idmap_autorid: Allocate new domain range if the callers knows
    the sid is valid; (bso#12613).
  + LINKFLAGS_PYEMBED should not contain -L/some/path; (bso#12724).
  + PAM auth with WBFLAG_PAM_GET_PWD_POLICY returns wrong policy for
    trusted domain; (bso#12725).
  + rpcclient: Allow -U'OTHERDOMAIN\user' again; (bso#12731).
  + winbindd: Fix password policy for pam authentication; (bso#12725).
  + s3:gse: Correctly handle external trusts with MIT; (bso#12554).
  + auth/credentials: Always set the realm if we set the principal
    from the ccache; (bso#12611).
  + replace: Include sysmacros.h; (bso#12686).
  + s3:vfs_expand_msdfs: Do not open the remote address as a file;
    (bso#12687).
  + s3:libsmb: Only print error message if kerberos use is forced;
    (bso#12704).
  + winbindd: Child process crashes when kerberos-authenticating
    a user with wrong password; (bso#12708).
  + vfs_fruit: Office document opens as read-only on macOS due to
    CNID semantics; (bso#12715).
  + vfs_acl_xattr: Fix failure to get ACL on Linux if memory is
    fragmented; (bso#12737). - Generate and update vendor-files tarball from Git
  + SuSEfirewall2 service samba-client only setup IPv4 rule; (bsc#1034416). - Generate source tarball directly from Git using OBS tar_scm
  + use version string derived from parent Git tag and commit hash
  - remove obsolete vendor-files/tools/package-data version ID
  + explicitly generate ctdb manpages, needed without "make dist" - Update to 4.6.2
  + remove bso#12721 patches now upstream - Enable samba-ceph build for openSUSE and SLE12SP3+; (fate#321622).
  + x86-64 and aarch64 - Enable librados CTDB lock helper for samba-ceph package; (fate#321622). - Build and install the html man pages (bsc#1021907). - Fix CVE-2017-2619 regression with "follow symlinks = no";
  (bso#12721). - Update to 4.6.1
  + symlink race permits opening files outside share directory;
    CVE-2017-2619; (bso#12496); (bsc#1027147)
  + testparm checks for valid idmap parameters
  + add new krb client encryption types
  + support for printer driver upload from windows 10
  + inherit owner = 'unix only' for improved quota support
  + improved CTDB event support
  + new primary group support for idmap_ad
  + idmap_hash deprecated
  + mvxattr added to recursively rename extended attributes - Remove chkconfig requirements for systemd systems - Don't call insserv if systemd is used - Fix check if we need to require insserv - async_req: make async_connect_send() "reentrant";
  (bso#12105); (bsc#1024416). - Force usage of ncurses6-config thru NCURSES_CONFIG env var;
  (bsc#1023847). - add missing patch for libnss_wins segfault; (bsc#995730). - Fix vfs_ceph builds against recent Ceph versions; (bsc#1021933). - Document "winbind: ignore domains" parameter; (bsc#1019416). - Add base Samba dependency to samba-ceph package. - Update to 4.5.3
  + Heap-based Buffer Overflow Remote Code Execution Vulnerability;
    CVE-2016-2123; (bso#12409); (bsc#1014437).
  + Don't send delegated credentials to all servers; CVE-2016-2125;
  (bso#12445); (bsc#1014441).
  + denial of service due to a client triggered crash in the winbindd
    parent process; CVE-2016-2126; (bso#12446); (bsc#1014442).
- 4.5.1 and 4.5.2 updates
  + various streams vfs fixes
  + various printing fixes
  + ntlm_auth: do not map explicitly empty domain
  + various stability fixes in smbd
  + match file compression ReFS behavior -  Add missing ldb module directory; (bnc#1012092). - s3/client: obey 'disable netbios' smb.conf param, don't
  connect via NBT port; (bsc#1009085); (bso#12418). - Include vfstest in samba-test; (bsc#1001203). - s3/winbindd: using default domain with user@domain.com format
  fails; (bsc#997833). - Fix segfault in libnss_wins; (bso#12277); (bso#12269); (bsc#995730). - Update to 4.5.0
  + NTLM1 Authentication disabled by default
  + SMB2.1 leases enabled by default
  + Support for OFD locks
  + ctdb tool rewritten
  + Added shadow copy snapshot prefix parameter - Fix illegal memory access after memory has been deleted;
  (bso#11836); (bsc#975299). - Prevent core, make sure response->extra_data.data is always
  cleared out; (bsc#993692). - Don't package man pages for VFS modules that aren't built;
  (boo#993707). - Fix population of ctdb sysconfig after source merge; (bsc#981566). - Enable vfs_ceph builds for Factory (x86-64)
  + Package as samba-ceph to avoid Ceph dependency in base package. - Update to 4.4.5
  +  Prevent client-side SMB2 signing downgrade; CVE-2016-2119;
    (bso#11860); (bsc#986869). - Remove obsolete syslog.target; (bsc#983938). - Honor smb.conf socket options in winbind; (bsc#975131). - Don't use htons() with IP_PROTO_RAW; (bso#11705); (bsc#969522). - Update to 4.4.4
  + SMB3 multichannel: Add implementation of missing channel sequence
    number verification; (bso#11809).
  + smbd:close: Only remove kernel share modes if they had been
    taken at open; (bso#11919).
  + notifyd: Prevent NULL deref segfault in notifyd_peer_destructor;
    (bso#11930).
  + s3:rpcclient: Make '--pw-nt-hash' option work; (bso#10796).
  + Fix case sensitivity issues over SMB2 or above; (bso#11438).
  + s3:smbd: Fix anonymous authentication if signing is mandatory.
    (bso#11910)
  + Fix NTLM Authentication issue with squid; (bso#11914).
  + pdb: Fix segfault in pdb_ldap for missing gecos; (bso#11530).
  + Fix memory leak in share mode locking; (bso#11934). - Update to 4.4.3
  + Various post-badlock regressions; (bso#11841); (bso#11850);
    (bso#11858); (bso#11870); (bso#11872).
  + Only allow idmap_hash for default idmap config (bso#11786).
  + smbd: Avoid large reads beyond EOF; (bso#11878).
  + vfs_acl_common: Avoid setting POSIX ACLs if "ignore system acls"
    is set; (bso#11806).
  + libads: Record session expiry for spnego sasl binds; (bso#11852). - Fix NTLMSSP regressions caused by previous CVE fixes; (bso#11849);
  (bsc#975962); (bsc#979268), (bsc#977669). - Revert shared library packaging to comply with SLPP - Update to 4.4.2
  + A man-in-the-middle can downgrade NTLMSSP authentication;
    CVE-2016-2110; (bso#11688); (bsc#973031).
  + Domain controller netlogon member computer can be spoofed;
    CVE-2016-2111; (bso#11749); (bsc#973032).
  + LDAP conenctions vulnerable to downgrade and  MITM attack;
    CVE-2016-2112; (bso#11644); (bsc#973033).
  + TLS certificate validation missing; CVE-2016-2113; (bso#11752);
    (bsc#973034).
  + Named pipe IPC vulnerable to MITM attacks; CVE-2016-2115;
    (bso#11756); (bsc#973036).
  + "Badlock" DCERPC impersonation of authenticated account possible;
    CVE-2016-2118; (bso#11804); (bsc#971965).
  + DCERPC server and client vulnerable to DOS and MITM attacks;
    CVE-2015-5370; (bso#11344); (bsc#936862). - Fix samba.tests.messaging test and prevent potential tdb corruption
  by removing obsolete now invalid tdb_close call; (bsc#974629). - Obsolete libsmbclient from libsmbclient0 while not providing it;
  (bsc#972197). - Update to 4.4.0.
  + Read of uninitialized memory DNS TXT handling; (bso#11128); (bso#11686);
    CVE-2016-0771.
  + Getting and setting Windows ACLs on symlinks can change permissions on link
    target; (bso#11648); CVE-2015-7560.
  + Sockets with htons(IPPROTO_RAW); (bso#11705); CVE-2015-8543.
  + s3: smbd: posix_acls: Fix check for setting u:g:o entry on a filesystem
    with no ACL support; (bso#10489).
  + docs: Add example for domain logins to smbspool man page; (bso#11643).
  + smbd: Show correct disk size for different quota and dfree block sizes;
    (bso#11681).
  + docs: Add smbspool_krb5_wrapper manpage; (bso#11690).
  + winbindd: Return trust parameters when listing trusts; (bso#11691).
  + ctdb: Do not provide a useless pkgconfig file for ctdb; (bso#11696).
  + Crypto.Cipher.ARC4 is not available on some platforms, fallback to
    M2Crypto.RC4.RC4 then; (bso#11699).
  + s3:utils/smbget: Set default blocksize; (bso#11700).
  + Streamline 'smbget' options with the rest of the Samba utils; (bso#11700).
  + s3:clispnego: Fix confusing warning in spnego_gen_krb5_wrap(); (bso#11702).
  + s3: smbd: Fix timestamp rounding inside SMB2 create; (bso#11703).
  + loadparm: Fix memory leak issue; (bso#11708).
  + lib/tsocket: Work around sockets not supporting FIONREAD; (bso#11714).
  + s3:vfs:glusterfs: Fix build after quota changes; (bso#11715).
  + ctdb-scripts: Drop use of "smbcontrol winbindd ip-dropped ..."; (bso#11719).
  + lib:socket: Fix CID 1350010: Integer OVERFLOW_BEFORE_WIDEN; (bso#11723).
  + smbd: Fix CID 1351215 Improper use of negative value; (bso#11724).
  + smbd: Fix CID 1351216 Dereference null return value; (bso#11725).
  + s3:smbd:open: Skip redundant call to file_set_dosmode when creating a new
    file; (bso#11727).
  + docs: Add manpage for cifsdd; (bso#11730).
  + param: Fix str_list_v3 to accept ; again; (bso#11732).
  + lib/socket: Fix improper use of default interface speed; (bso#11734).
  + lib:socket: Fix CID 1350009: Fix illegal memory accesses
    (BUFFER_SIZE_WARNING); (bso#11735).
  + libcli: Fix debug message, print sid string for new_ace trustee;
    (bso#11738).
  + Fix installation path of Samba helper binaries; (bso#11739).
  + Fix memory leak in loadparm; (bso#11740).
  + tevent: version 0.9.28: Fix memory leak when old signal action restored;
    (bso#11742).
  + smbd: Ignore SVHDX create context; (bso#11753).
  + Fix net join; (bso#11755).
  + s3:libads: setup the msDS-SupportedEncryptionTypes attribute on ldap_add;
    (bso#11755).
  + passdb: Add linefeed to debug message; (bso#11763).
  + s3:utils/smbget: Fix option parsing; (bso#11767).
  + libnet: Make Kerberos domain join site-aware; (bso#11769).
  + Reset TCP Connections during IP failover; (bso#11770).
  + ldb: Version 1.1.26; (bso#11772).
  + s3:smbd: Add negprot remote arch detection for OSX; (bso#11773).
  + vfs_glusterfs: Fix use after free in AIO callback; (bso#11774).
  + mkdir can return ACCESS_DENIED incorrectly on create race; (bso#11780).
  + "trustdom_list_done: Got invalid trustdom response" message should be
    avoided; (bso#11782).
  + Mismatch between local and remote attribute ids lets replication fail with
    custom schema; (bso#11783).
  + Quota is not supported on Solaris 10; (bso#11788).
  + Talloc: Version 2.1.6; (bso#11789).
  + smbd: Enable multi-channel if 'server multi channel support = yes' in the
    config; (bso#11796).
  + build: Fix build when '--without-quota' specified; (bso#11798).
  + lib/socket/interfaces: Fix some uninitialied bytes; (bso#11802).
  + Access based share enum: handle permission set in configuration files;
    (bso#8093).
  + See also WHATSNEW.txt from the samba-doc package. - Update to 4.3.6.
  + Getting and setting Windows ACLs on symlinks can change permissions on link
    target; CVE-2015-7560; (bso#11648); (bsc#968222).
  + Fix Out-of-bounds read in internal DNS server; CVE-2016-0771;
    (bso#11128); (bso#11686); (bsc#968223). - Upgrade on-disk FSRVP server state to new version; (bsc#924519). - Only obsolete but do not provide gplv2/3 package names; (bsc#968973). - Relocate existing lock files to /var/lib/samba/lock; (bsc#968963). - Obsolete no longer existing samba-32bit package; (bsc#967625). - Update to 4.3.5.
  + s3:utils/smbget: Fix recursive download; (bso#6482).
  + s3: smbd: posix_acls: Fix check for setting u:g:o entry on a filesystemi
    with no ACL support; (bso#10489).
  + s3:smbd/oplock: Obey kernel oplock setting when releasing oplocks;
    (bso#11400).
  + vfs_shadow_copy2: Fix case where snapshots are outside the share;
    (bso#11580).
  + smbclient: Query disk usage relative to current directory; (bso#11662).
  + winbindd: Handle expired sessions correctly; (bso#11670).
  + smbd: Show correct disk size for different quota and dfree block sizes;
    (bso#11681).
  + smbcacls: Fix uninitialized variable; (bso#11682).
  + s3:smbd: Ignore initial allocation size for directory creation;
    (bso#11684).
  + s3-client: Add a KRB5 wrapper for smbspool; (bso#11690).
  + s3-parm: Clean up defaults when removing global parameters; (bso#11693).
  + Use M2Crypto.RC4.RC4 on platforms without Crypto.Cipher.ARC4; (bso#11699).
  + s3: smbd: Fix timestamp rounding inside SMB2 create; (bso#11703).
  + ctdb: Remove error messages after kernel security update; CVE-2015-8543;
    (bso#11705).
  + loadparm: Fix memory leak issue; (bso#11708).
  + lib/tsocket: Work around sockets not supporting FIONREAD; (bso#11714).
  + ctdb-scripts: Drop use of "smbcontrol winbindd ip-dropped ...";
    (bso#11719).
  + s3:smbd:open: Skip redundant call to file_set_dosmode when creating a new
    file; (bso#11727).
  + param: Fix str_list_v3 to accept ";" again; (bso#11732). - Shift samba-client sysconfig data into samba and samba-winbind; (bsc#947361). - Simplify shared library packaging; (bsc#966956). - Enable clustering (CTDB) support; (bsc#966271). - s3: smbd: Fix timestamp rounding inside SMB2 create; (bso#11703);
  (bsc#964023). - Add quotes around path of update-apparmor-samba-profile; (bnc#962177). - Remove autoconf build-time requirement. - Update to 4.3.4.
  + vfs_fruit: Enable POSIX directory rename semantics; (bso#11065).
  + Crash: Bad talloc magic value - access after free; (bso#11394).
  + Copying files with vfs_fruit fails when using vfs_streams_xattr without
    stream prefix and type suffix; (bso#11466).
  + samba-tool: Fix uncaught exception if no fSMORoleOwner attribute is given;
    (bso#11613).
  + Fix a typo in the smb.conf manpage, explanation of idmap config;
    (bso#11619).
  + Correctly initialize the list head when keeping a list of primary followed
    by DFS connections; (bso#11624).
  + Reduce the memory footprint of empty string options; (bso#11625).
  + lib/async_req: Do not install async_connect_send_test; (bso#11639).
  + Fix typos in man vfs_gpfs; (bso#11641).
  + Make "hide dot files" option work with "store dos attributes = yes";
    (bso#11645).
  + Fix a corner case of the symlink verification; (bso#11647);  (bnc#960249).
  + Do not disable "store dos attributes" on-the-fly; (bso#11649).
  + Update lastLogon and lastLogonTimestamp; (bso#11659). - Prevent access denied if the share path is "/"; (bso#11647); (bnc#960249). - Update to 4.3.3.
  + Malicious request can cause Samba LDAP server to hang, spinning using CPU;
    CVE-2015-3223; (bso#11325); (bnc#958581).
  + Remote read memory exploit in LDB; CVE-2015-5330; (bso#11599);
    (bnc#958586).
  + Insufficient symlink verification (file access outside the share);
    CVE-2015-5252; (bso#11395); (bnc#958582).
  + No man in the middle protection when forcing smb encryption on the client
    side; CVE-2015-5296; (bso#11536); (bnc#958584).
  + Currently the snapshot browsing is not secure thru windows previous version
    (shadow_copy2); CVE-2015-5299; (bso#11529); (bnc#958583).
  + Fix Microsoft MS15-096 to prevent machine accounts from being changed into
    user accounts; CVE-2015-8467; (bso#11552); (bnc#958585). - Update to 4.3.2.
  + vfs_gpfs: Re-enable share modes; (bso#11243).
  + dcerpc.idl: Accept invalid dcerpc_bind_nak pdus; (bso#11327).
  + s3-smbd: Fix old DOS client doing wildcard delete - gives an attribute
    type of zero; (bso#11452).
  + Add libreplace dependency to texpect, fixes a linking error on Solaris;
    (bso#11511).
  + s4: Fix linking of 'smbtorture' on Solaris; (bso#11512).
  + s4:lib/messaging: Use correct path for names.tdb; (bso#11562).
  + Fix segfault of 'net ads (join|leave) -S INVALID' with nss_wins;
    (bso#11563).
  + async_req: Fix non-blocking connect(); (bso#11564).
  + auth: gensec: Fix a memory leak; (bso#11565).
  + lib: util: Make non-critical message a warning; (bso#11566).
  + Fix winbindd crashes with samlogon for trusted domain user; (bso#11569);
    (bnc#949022).
  + smbd: Send SMB2 oplock breaks unencrypted; (bso#11570).
  + ctdb: Open the RO tracking db with perms 0600 instead of 0000; (bso#11577).
  + s3:smb2_server: Make the logic of SMB2_CANCEL DLIST_REMOVE() clearer;
    (bso#11581).
  + s3-smbd: Fix use after issue in smbd_smb2_request_dispatch(); (bso#11581).
  + manpage: Correct small typo error; (bso#11584).
  + s3: smbd: If EAs are turned off on a share don't allow an SMB2 create
    containing them; (bso#11589).
  + Backport some valgrind fixes from upstream master; (bso#11597).
  + auth: Consistent handling of well-known alias as primary gid; (bso#11608).
  + winbind: Fix crash on invalid idmap configs; (bso#11612).
  + s3: smbd: have_file_open_below() fails to enumerate open files below an
    open directory handle; (bso#11615).
  + Changing log level of two entries to DBG_NOTICE; (bso#9912). - Ensure samlogon fallback requests are rerouted after kerberos failure;
  (bnc#953382); (bnc#953972). - Ensure to link with --as-needed flag by removing SUSE_ASNEEDED=0.
- Always use the default optimization even on pre-9.2 systems. - Remove redundant configure options while adding with-relro. - Relocate the lockdir to the /var/lib/samba/lock directory. - Cleanup and enhance the pidl sub package. - Require renamed python-ldb-devel and python-talloc-devel at build-time.
- Requires python-ldb and python-talloc from the python subpackage. - Update to 4.3.1.
  + s3: smbd: Fix our access-based enumeration on "hide unreadable" to match
    Windows; (bso#10252).
  + nss_winbind: Fix hang on Solaris on big groups; (bso#10365).
  + smbd: Fix file name buflen and padding in notify repsonse; (bso#10634).
  + kerberos: Make sure we only use prompter type when available;
    winbind: Fix 100% loop; (bso#11038).
  + source3/lib/msghdr.c: Fix compiling error on Solaris; (bso#11053).
  + s3:ctdbd_conn: make sure we destroy tevent_fd before closing the socket;
    (bso#11316).
  + s3: smbd: Fix mkdir race condition; (bso#11486).
  + pam_winbind: Fix a segfault if initialization fails; (bso#11502).
  + s3: dfs: Fix a crash when the dfs targets are disabled; (bso#11509).
  + s4:lib/messaging: Use 'msg.lock' and 'msg.sock' for messaging related
    subdirs; (bso#11515).
  + s3: smbd: Fix opening/creating :stream files on the root share directory;
    (bso#11522).
  + lib/param: Fix hiding of FLAG_SYNONYM values; (bso#11526).
  + net: Fix a crash with 'net ads keytab create'; (bso#11528).
  + s3: smbd: Fix a crash in unix_convert(); (bso#11535).
  + s3: smbd: Fix NULL pointer bug introduced by previous 'raw' stream fix
    (bso#11522); (bso#11535).
  + vfs_fruit: Return value of ad_pack in vfs_fruit.c; (bso#11543).
  + vfs_commit: set the fd on open before calling SMB_VFS_FSTAT; (bso#11547).
  + s3:locking: Initialize lease pointer in share_mode_traverse_fn();
    (bso#11549).
  + s3:smbstatus: Add stream name to share_entry_forall(); (bso#11550).
  + s3:lib: Validate domain name in lookup_wellknown_name(); (bso#11555).
  + s3: lsa: lookup_name() logic for unqualified (no DOMAIN component) names
    is incorrect; (bso#11555). - Fix 100% CPU in winbindd when logging in with "user must change password on
  next logon"; (bso#11038). - Relocate the tmpfiles.d directory to the client package; (bnc#947552). - Do not provide libpdb0 from libsamba-passdb0 but add it to baselibs.conf
  instead; (bnc#942716). - Package /var/lib/samba/private/sock with 0700 permissions; (bnc#946051). - Package /var/lib/samba/msg with 0755 permissions; (bso#11515); (bnc#945502). - Require to install libfam0-gamin from samba-libs on post-12.1 and pre-13.15
  systems; (bnc#945013). - Update to 4.3.0.
  + Samba "map to guest = Bad uid" doesn't work; (bso#9862).
  + revert LDAP extended rule 1.2.840.113556.1.4.1941
    LDAP_MATCHING_RULE_IN_CHAIN changes; (bso#10493).
  + No objectClass found in replPropertyMetaData on ordinary objects
    (non-deleted); (bso#10973).
  + Stream names with colon don't work with fruit:encoding = native;
    (bso#11278).
  + NetApp joined to a Samba/ADDC cannot resolve SIDs; (bso#11291).
  + tevent_fd needs to be destroyed before closing the fd; (bso#11316).
  + "force group" with local group not working; (bso#11320).
  + strsep is not available on Solaris; (bso#11359).
  + smbtorture does not build when configured --with-system-mitkrb5;
    (bso#11411).
  + Build with GPFS support is broken; (bso#11421).
  + Build broken with --disable-python; (bso#11424).
  + net share allowedusers crashes; (bso#11426).
  + nmbd incorrectly matches netbios names as own name; (bso#11427).
  + Python bindings don't check integer types; (bso#11429).
  + Python bindings don't check array sizes; (bso#11430).
  + CTDB's eventscript error handling is broken; (bso#11431).
  + Fix crash in nested ctdb banning; (bso#11432).
  + Cannot build ctdbpmda; (bso#11434).
  + samba-tool uncaught exception error; (bso#11436).
  + Crash in notify_remove caused by change notify = no; (bso#11444).
  + Poor SMB3 encryption performance with AES-GCM; (bso#11451).
  + Poor SMB3 encryption performance with AES-GCM (part1); (bso#11451).
  + fix recursion problem in rep_strtoll in lib/replace/replace.c; (bso#11455).
  + --bundled-libraries=!ldb,!pyldb,!pyldb-util doesn't disable ldb build and
    install; (bso#11458).
  + xid2sid gives inconsistent results; (bso#11464).
  + ctdb: Fix the build on FreeBSD 10.1; (bso#11465).
  + Handling of 0 byte resource fork stream; (bso#11467).
  + AD samr GetGroupsForUser fails for users with "()" in their name;
    (bso#11488). - Configure with --bundled-libraries=NONE; (bso#11458). - Adapt net-kdc-lookup patch for post-3.3 Samba versions; (bnc#295284). - Remove libiniparser-devel build-time requirement. - Update to 4.2.3.
  + s4:lib/tls: Fix build with gnutls 3.4; (bso#8780).
  + s4.2/fsmo.py: Fixed fsmo transfer exception; (bso#10924).
  + winbindd: Sync secrets.ldb into secrets.tdb on startup; (bso#10991).
  + Logon via MS Remote Desktop hangs; (bso#11061).
  + s3: lib: util: Ensure we read a hex number as %x, not %u; (bso#11068).
  + tevent: Add a note to tevent_add_fd(); (bso#11141).
  + s3:param/loadparm: Fix 'testparm --show-all-parameters'; (bso#11170).
  + s3-unix_msg: Remove socket file after closing socket fd; (bso#11217).
  + smbd: Fix a use-after-free; (bso#11218); (bnc#919309).
  + s3-rpc_server: Fix rpc_create_tcpip_sockets() processing of interfaces;
    (bso#11245).
  + s3:smb2: Add padding to last command in compound requests; (bso#11277).
  + Add IPv6 support to ADS client side LDAP connects; (bso#11281).
  + Add IPv6 support for determining FQDN during ADS join; (bso#11282).
  + s3: IPv6 enabled DNS connections for ADS client; (bso#11283).
  + Fix invalid write in ctdb_lock_context_destructor; (bso#11293).
  + Excessive cli_resolve_path() usage can slow down transmission; (bso#11295).
  + vfs_fruit: Add option "veto_appledouble"; (bso#11305).
  + tstream: Make socketpair nonblocking; (bso#11312).
  + idmap_rfc2307: Fix wbinfo '--gid-to-sid' query; (bso#11313).
  + Group creation: Add msSFU30Name only when --nis-domain was given;
    (bso#11315).
  + tevent_fd needs to be destroyed before closing the fd; (bso#11316).
  + Build fails on Solaris 11 with "â€˜PTHREAD_MUTEX_ROBUSTâ€™ undeclared";
    (bso#11319).
  + smbd/trans2: Add a useful diagnostic for files with bad encoding;
    (bso#11323).
  + Change sharesec output back to previous format; (bso#11324).
  + Robust mutex support broken in 1.3.5; (bso#11326).
  + Kerberos auth info3 should contain resource group ids available from
    pac_logon; winbindd: winbindd_raw_kerberos_login - ensure logon_info
    exists in PAC; (bso#11328); (bnc#912457).
  + s3:smb2_setinfo: Fix memory leak in the defer_rename case; (bso#11329).
  + tevent: Fix CID 1035381 Unchecked return value; (bso#11330).
  + tdb: Fix CID 1034842 and 1034841 Resource leaks; (bso#11331).
  + s3: smbd: Use separate flag to track become_root()/unbecome_root() state;
    (bso#11339).
  + s3: smbd: Codenomicon crash in do_smb_load_module(); (bso#11342).
  + pidl: Make the compilation of PIDL producing the same results if the
    content hasn't change; (bso#11356).
  + winbindd: Disconnect child process if request is cancelled at main
    process; (bso#11358).
  + vfs_fruit: Check offset and length for AFP_AfpInfo read requests;
    (bso#11363).
  + docs: Overhaul the description of "smb encrypt" to include SMB3
    encryption; (bso#11366).
  + s3:auth_domain: Fix talloc problem in connect_to_domain_password_server();
    (bso#11367).
  + ncacn_http: Fix GNUism; (bso#11371). - Disable rpath usage; (bnc#902421). - Make the winbind package depend on the matching libwbclient version and
  vice versa; (bnc#936909). - Backport changes to use resource group sids obtained from pac logon_info;
  (bso#11328); (bnc#912457). - Order winbind.service Before and Want nss-user-lookup target. - Remove fam-devel build-time dependency for post-6 RHEL systems. - Update to 4.2.2.
  + s3:smbXsrv: refactor duplicate code into
    smbXsrv_session_clear_and_logoff(); (bso#11182).
  + gencache: don't fail gencache_stabilize if there were records to delete;
    (bso#11260).
  + s3: libsmbclient: After getting attribute server, ensure main srv pointer
    is still valid; (bso#11186).
  + s4: rpc: Refactor dcesrv_alter() function into setup and send steps;
    (bso#11236).
  + s3: smbd: Incorrect file size returned in the response of
    "FILE_SUPERSEDE Create"; (bso#11240).
  + Mangled names do not work with acl_xattr; (bso#11249).
  + nmbd rewrites browse.dat when not required; (bso#11254).
  + vfs_fruit: add option "nfs_aces" that controls the NFS ACEs stuff;
    (bso#11213).
  + s3:smbd: Add missing tevent_req_nterror; (bso#11224).
  + vfs: kernel_flock and named streams; (bso#11243).
  + vfs_gpfs: Error code path doesn't call END_PROFILE; (bso#11244).
  + s4: libcli/finddcs_cldap: continue processing CLDAP until all addresses
    are used; (bso#11284).
  + ctdb: check for talloc_asprintf() failure; (bso#11201).
  + spoolss: purge the printer name cache on name change; (bso#11210);
    (bnc#901813).
  + CTDB statd-callout does not scale; (bso#11204).
  + vfs_fruit: also map characters below 0x20; (bso#11221).
  + ctdb: Coverity fix for CID 1291643; (bso#11201).
  + Multiplexed RPC connections are not handled by DCERPC server; (bso#11225).
  + Fix terminate connection behavior for asynchronous endpoint with PUSH
    notification flavors; (bso#11226).
  + ctdb-scripts: Fix bashism in ctdbd_wrapper script; (bso#11007).
  + ctdb: Fix CIDs 1125615, 1125634, 1125613, 1288201 and 1125553; (bso#11201).
  + SMB2 should cancel pending NOTIFY calls with DELETE_PENDING if the
    directory is deleted; (bso#11257).
  + s3:winbindd: make sure we remove pending io requests before closing client
    sockets; (bso#11141); (bnc#931854).
  + Fix panic triggered by smbd_smb2_request_notify_done() ->
    smbXsrv_session_find_channel() in smbd; (bso#11182).
  + 'sharesec' output no longer matches input format; (bso#11237).
  + waf: Fix systemd detection; (bso#11200).
  + CTDB: Fix portability issues; (bso#11202).
  + CTDB: Fix some IPv6-related issues; (bso#11203).
  + CTDB statd-callout does not scale; (bso#11204).
  + 'net ads dns gethostbyname' crashes with an error in TALLOC_FREE if you
    enter invalid values; (bso#11234).
  + libads: record service ticket endtime for sealed ldap connections;
    (bso#11267).
  + lib/util: Include DEBUG macro in internal header files before samba_util.h;
    (bso#11033). - Avoid a crash inside the tevent epoll backend; (bso#11141); (bnc#931854). - Remove the independently built libraries ldb, talloc, tdn, and tevent and
  the post-10.3 renamed libsmbclient from baselibs.conf. - Drop redundant doc attribute from man pages. - Update to 4.2.1.
  + s3:winbind:grent: Don't stop group enumeration when a group has no gid;
    (bso#8905).
  + Initialize dwFlags field of DNS_RPC_NODE structure; (bso#9791).
  + s3: lib: ntlmssp: If NTLMSSP_NEGOTIATE_TARGET_INFO isn't set, cope with
    servers that don't send the 2 unused fields; (bso#10016).
  + build:wafadmin: Fix use of spaces instead of tabs; (bso#10476).
  + waf: Fix the build on openbsd; (bso#10476).
  + s3: client: "client use spnego principal = yes" code checks wrong name;
    (bso#10888).
  + spoolss: Retrieve published printer GUID if not in registry; (bso#11018).
  + s3: lib: libsmbclient: If reusing a server struct, check every cli->timout
    miliseconds if it's still valid before use; (bso#11079).
  + vfs_fruit: Enhance handling of malformed AppleDouble files; (bso#11125).
  + backupkey: Explicitly link to gnutls and gcrypt; (bso#11135).
  + replace: Remove superfluous check for gcrypt header; (bso#11135).
  + Backport subunit changes; (bso#11137).
  + libcli/auth: Match Declaration of netlogon_creds_cli_context_tmp with
    implementation; (bso#11140).
  + s3-winbind: Fix cached user group lookup of trusted domains; (bso#11143).
  + talloc: Version 2.1.2; (bso#11144).
  + Update libwbclient version to 0.12; (bso#11149).
  + brlock: Use 0 instead of empty initializer list; (bso#11153).
  + s4:auth/gensec_gssapi: Let gensec_gssapi_update() return
    NT_STATUS_LOGON_FAILURE for unknown errors; (bso#11164).
  + docs/idmap_rid: Remove deprecated base_rid from example; (bso#11169);
    (bnc#913304).
  + s3: libcli: smb1: Ensure we correctly finish a tevent req if the writev
    fails in the SMB1 case; (bso#11173).
  + backupkey: Use ndr_pull_struct_blob_all(); (bso#11174).
  + Fix lots of winbindd zombie processes on Solaris platform; (bso#11175).
  + s3: libsmbclient: Add missing talloc stackframe; (bso#11177).
  + s4-process_model: Do not close random fds while forking; (bso#11180).
  + s3-passdb: Fix 'force user' with winbind default domain; (bso#11185). - Prevent samba package updates from disabling samba kerberos printing. - Add sparse file support for samba; (fate#318424). - Purge printer name cache on spoolss SetPrinter change; (bso#11210);
  (bnc#901813). - Correctly retain errno from Btrfs snapshot ioctls; (bnc#923374). - Simplify libxslt build requirement and README.SUSE install.
- Remove no longer required cleanup steps while populating the build root. - Remove deprecated base_rid example from idmap_rid manpage; (bso#11169);
  (bnc#913304). - Update to 4.2.0.
  + smbd: Stop using vfs_Chdir after SMB_VFS_DISCONNECT; (bso#1115).
  + pam_winbind: fix warn_pwd_expire implementation; (bso#9056).
  + nsswitch: Fix soname of linux nss_*.so.2 modules; (bso#9299).
  + Make 'profiles' work again; (bso#9629).
  + s3:smb2_server: protect against integer wrap with
    "smb2 max credits = 65535"; (bso#9702).
  + Make validate_ldb of String(Generalized-Time) accept millisecond format
    ".000Z"; (bso#9810).
  + Use -R linker flag on Solaris, not -rpath; (bso#10112).
  + vfs: Add glusterfs manpage; (bso#10240).
  + Make 'smbclient' use cached creds; (bso#10279).
  + pdb: Fix build issues with shared modules; (bso#10355).
  + s4-dns: Add support for BIND 9.10; (bso#10620).
  + idmap: Return the correct id type to *id_to_sid methods; (bso#10720).
  + printing/cups: Pack requested-attributes with IPP_TAG_KEYWORD; (bso#10808).
  + Don't build vfs_snapper on FreeBSD; (bso#10834).
  + nss_winbind: Add getgroupmembership for FreeBSD; (bso#10835).
  + idmap_rfc2307: Fix a crash after connection problem to DC; (bso#10837).
  + s3: smb2cli: query info return length check was reversed; (bso#10848).
  + s3: lib, s3: modules: Fix compilation on Solaris; (bso#10849).
  + lib: uid_wrapper: Fix setgroups and syscall detection on a system without
    native uid_wrapper library; (bso#10851).
  + winbind3: Fix pwent variable substitution; (bso#10852).
  + Improve samba-regedit; (bso#10859).
  + registry: Don't leave dangling transactions; (bso#10860).
  + Fix build of socket_wrapper on systems without SO_PROTOCOL; (bso#10861).
  + build: Do not install 'texpect' binary anymore; (bso#10862).
  + Fix testparm to show hidden share defaults; (bso#10864).
  + libcli/smb: Fix smb2cli_validate_negotiate_info with min=PROTOCOL_NT1
    max=PROTOCOL_SMB2_02; (bso#10866).
  + Integrate CTDB into top-level Samba build; (bso#10892).
  + samba-tool group add: Add option '--nis-domain' and '--gid'; (bso#10895).
  + s3-nmbd: Fix netbios name truncation; (bso#10896).
  + spoolss: Fix handling of bad EnumJobs levels; (bso#10898).
  + Fix smbclient loops doing a directory listing against Mac OS X 10 server
    with a non-wildcard path; (bso#10904).
  + Fix print job enumeration; (bso#10905); (bnc#898031).
  + samba-tool: Create NIS enabled users and unixHomeDirectory attribute;
    (bso#10909).
  + Add support for SMB2 leases; (bso#10911).
  + btrfs: Don't leak opened directory handle; (bso#10918).
  + s3: nmbd: Ensure NetBIOS names are only 15 characters stored; (bso#10920).
  + s3:smbd: Fix file corruption using "write cache size != 0"; (bso#10921).
  + pdb_tdb: Fix a TALLOC/SAFE_FREE mixup; (bso#10932).
  + s3-keytab: fix keytab array NULL termination; (bso#10933).
  + s3:passdb: fix logic in pdb_set_pw_history(); (bso#10940).
  + Cleanup add_string_to_array and usage; (bso#10942).
  + dbwrap_ctdb: Pass on mutex flags to tdb_open; (bso#10942).
  + Fix RootDSE search with extended dn control; (bso#10949).
  + Fix 'samba-tool dns serverinfo <server>' for IPv6; (bso#10952).
  + libcli/smb: only force signing of smb2 session setups when binding a new
    session; (bso#10958).
  + s3-smbclient: Return success if we listed the shares; (bso#10960).
  + s3-smbstatus: Fix exit code of profile output; (bso#10961).
  + socket_wrapper: Add missing prototype check for eventfd; (bso#10965).
  + libcli: SMB2: Pure SMB2-only negprot fix to make us behave as a Windows
    client does; (bso#10966).
  + vfs_streams_xattr: Check stream type; (bso#10971).
  + s3: smbd: Fix *allocate* calls to follow POSIX error return convention;
    (bso#10982).
  + vfs_fruit: Add support for AAPL; (bso#10983).
  + Fix spoolss IDL response marshalling when returning error without clearing
    info; (bso#10984).
  + dsdb-samldb: Check for extended access rights before we allow changes to
    userAccountControl; (bso#10993); CVE-2014-8143; (boo#914279).
  + Fix IPv6 support in CTDB; (bso#10996).
  + ctdb-daemon: Use correct tdb flags when enabling robust mutex support;
    (bso#11000).
  + vfs_streams_xattr: Add missing call to SMB_VFS_NEXT_CONNECT; (bso#11005).
  + s3-util: Fix authentication with long hostnames; (bso#11008).
  + ctdb-build: Fix build without xsltproc; (bso#11014).
  + packaging: Include CTDB man pages in the tarball; (bso#11014).
  + pdb_get_trusteddom_pw() fails with non valid UTF16 random passwords;
    (bso#11016).
  + Make Sharepoint search show user documents; (bso#11022).
  + nss_wrapper: check for nss.h; (bso#11026).
  + Enable mutexes in gencache_notrans.tdb; (bso#11032).
  + tdb_wrap: Make mutexes easier to use; (bso#11032).
  + lib/util: Avoid collision which alread defined consumer DEBUG macro;
    (bso#11033).
  + winbind: Retry after SESSION_EXPIRED error in ping-dc; (bso#11034).
  + s3-libads: Fix a possible segfault in kerberos_fetch_pac(); (bso#11037).
  + vfs_fruit: Fix base_fsp name conversion; (bso#11039).
  + vfs_fruit: mmap under FreeBSD needs PROT_READ; (bso#11040).
  + Fix authentication using Kerberos (not AD); (bso#11044).
  + net: Fix sam addgroupmem; (bso#11051).
  + vfs_snapper: Correctly handles multi-byte DBus strings; (bso#11055);
    (bnc#913238).
  + cli_connect_nb_send: Don't segfault on host == NULL; (bso#11058).
  + utils: Fix 'net time' segfault; (bso#11058).
  + libsmb: Provide authinfo domain for encrypted session referrals;
    (bso#11059).
  + s3-pam_smbpass: Fix memory leak in pam_sm_authenticate(); (bso#11066).
  + vfs_glusterfs: Add comments to the pipe(2) code; (bso#11069).
  + vfs/glusterfs: Change xattr key to match gluster key; (bso#11069).
  + vfs_glusterfs: Implement AIO support; (bso#11069).
  + s3-vfs: Fix developer build of vfs_ceph module; (bso#11070).
  + s3: netlogon: Ensure we don't call talloc_free on an uninitialized pointer;
    (bso#11077); CVE-2015-0240; (bnc#917376).
  + vfs: Add a brief vfs_ceph manpage; (bso#11088).
  + s3: smbclient: Allinfo leaves the file handle open; (bso#11094).
  + Fix Win8.1 Credentials Manager issue after KB2992611 on Samba domain;
    (bso#11097).
  + debug: Set close-on-exec for the main log file FD; (bso#11100).
  + s3: smbd: leases - losen paranoia check. Stat opens can grant leases;
    (bso#11102).
  + s3: smbd: SMB2 close. If a file has delete on close, store the return info
    before deleting; (bso#11104).
  + doc:man:vfs_glusterfs: improve the configuration section; (bso#11117).
  + snprintf: Try to support %j; (bso#11119).
  + ctdb-io: Do not use sys_write to write to client sockets; (bso#11124).
  + doc-xml: Add 'sharesec' reference to 'access based share enum';
    (bso#11127). - Update to 4.2.0rc5.
  + Ensure we don't call talloc_free on an uninitialized pointer;
    CVE-2015-0240; (bso#11077); (bnc#917376). - Fix usage of freed memory on server exit; (bso#11218); (bnc#919309). - Fix tdb_store_flag_to_ntdb() gcc5 build failure. - Fix vfs_snapper DBus string handling; (bso#11055); (bnc#913238). - Update to 4.1.16.
  + dsdb-samldb: Check for extended access rights before we allow changes to
    userAccountControl; (bso#10993); CVE-2014-8143; (boo#914279). - Adjust baselibs.conf due to libpdb0 package rename to libsamba-passdb0. - Fix libsmbclient DFS referral handling.
  + Reuse connections derived from DFS referrals; (bso#10123); (fate#316512).
  + Set domain/workgroup based on authentication callback value; (bso#11059). - Update to 4.2.0rc4.
- Add libsamba-debug, libsocket-blocking, libsamba-cluster-support, and
  libhttp to the libs package; (boo#913547).
- Rename libpdb packages to libsamba-passdb.
- Drop libsmbsharemodes packages. - Enable avahi support on post-12.2 systems. - Update to 4.1.15.
  + pam_winbind: Fix warn_pwd_expire implementation; (bso#9056).
  + nsswitch: Fix soname of linux nss_*.so.2 modules; (bso#9299).
  + Fix profiles tool; (bso#9629).
  + s3-lib: Do not require a password with --use-ccache; (bso#10279).
  + s4:dsdb/rootdse: Expand extended dn values with the AS_SYSTEM control;
    (bso#10949).
  + s4-rpc: dnsserver: Fix enumeration of IPv4 and IPv6 addresses; (bso#10952).
  + s3:smb2_server: Allow reauthentication without signing; (bso#10958).
  + s3-smbclient: Return success if we listed the shares; (bso#10960).
  + s3-smbstatus: Fix exit code of profile output; (bso#10961).
  + libcli: SMB2: Pure SMB2-only negprot fix to make us behave as a Windows
    client does; (bso#10966).
  + s3: smbd/modules: Fix *allocate* calls to follow POSIX error return
    convention; (bso#10982).
  + Fix 'domain join' by adding 'drsuapi.DsBindInfoFallBack' attribute
    'supported_extensions'; (bso#11006).
  + idl:drsuapi: Manage all possible lengths of drsuapi_DsBindInfo;
    (bso#11006).
  + winbind: Retry LogonControl RPC in ping-dc after session expiration;
    (bso#11034). - yast2-samba-client should be able to specify osName and osVer on
  AD domain join; (bnc#873922). - Lookup FSRVP share snums at runtime rather than storing them persistently;
  (bnc#908627). - Specify soft dependency for network-online.target in Winbind systemd service
  file; (bnc#889175). - Fix spoolss error response marshalling; (bso#10984). - Update to 4.1.14.
  + pidl/wscript: Remove --with-perl-* options; revert buildtools/wafadmin/
    Tools/perl.py back to upstream state; (bso#10472).
  + s4-dns: Add support for BIND 9.10; (bso#10620).
  + nmbd fails to accept "--piddir" option; (bso#10711).
  + nss_winbind: Add getgroupmembership for FreeBSD; (bso#10835).
  + S3: source3/smbd/process.c::srv_send_smb() returns true on the error path;
    (bso#10880).
  + vfs_glusterfs: Remove "integer fd" code and store the glfs pointers;
    (bso#10889).
  + s3-nmbd: Fix netbios name truncation; (bso#10896).
  + spoolss: Fix handling of bad EnumJobs levels; (bso#10898).
  + s3: libsmbclient-smb2. MacOSX 10 SMB2 server doesn't set
    STATUS_NO_MORE_FILES when handed a non-wildcard path; (bso#10904).
  + spoolss: Fix jobid in level 3 EnumJobs response; (bso#10905).
  + s3: nmbd: Ensure NetBIOS names are only 15 characters stored; (bso#10920).
  + s3:smbd: Fix file corruption using "write cache size != 0"; (bso#10921).
  + pdb_tdb: Fix a TALLOC/SAFE_FREE mixup; (bso#10932).
  + s3-keytab: Fix keytab array NULL termination; (bso#10933).
  + Cleanup add_string_to_array and usage; (bso#10942). - Remove and cleanup shares and registry state associated with
  externally deleted snaphots exposed as shadow copies; (bnc#876312). - Use the upstream tar ball, as signature verification is now able to handle
  compressed archives. - Fix leak when closing file descriptor returned from dirfd; (bso#10918). - Fix spoolss EnumJobs and GetJob responses; (bso#10905); (bnc#898031).
  + Fix handling of bad EnumJobs levels; (bso#10898). - Remove dependency on gpg-offline as signature checking is implemented in the
  source validator. - Update to 4.1.13.
  + s3-libnet: Add libnet_join_get_machine_spns(); (bso#9984).
  + s3-libnet: Make sure we do not overwrite precreated SPNs; (bso#9984).
  + s3-libads: Add all machine account principals to the keytab; (bso#9985).
  + s3: winbindd: Old NT Domain code sets struct winbind_domain->alt_name to
    be NULL. Ensure this is safe with modern AD-DCs; (bso#10717).
  + Fix unstrcpy; (bso#10735).
  + pthreadpool: Slightly serialize jobs; (bso#10779).
  + s3: smbd: streams - Ensure share mode validation ignores internal opens
    (op_mid == 0); (bso#10797).
  + s3: smbd:open_file: Open logic fix; Use a more natural check; (bso#10809).
  + vfs_media_harmony: Fix a crash bug; (bso#10813).
  + docs: Mention incompatibility between kernel oplocks and streams_xattr;
    (bso#10814).
  + nmbd: Send waiting status to systemd; (bso#10816).
  + libcli: Fix a segfault calling smbXcli_req_set_pending() on NULL;
    (bso#10817).
  + nsswitch: Skip groups we were not able to map; (bso#10824).
  + s3-winbindd: Use correct realm for trusted domains in idmap child;
    (bso#10826).
  + s3: nmbd: Ensure the main nmbd process doesn't create zombies; (bso#10830).
  + s3: lib: Signal handling - ensure smbrun and change password code save and
    restore existing SIGCHLD handlers; (bso#10831).
  + idmap_rfc2307: Fix a crash after connection problem to DC; (bso#10837).
  + s3-winbindd: Do not use domain SID from LookupSids for Sids2UnixIDs call;
    (bso#10838).
  + s3: smb2cli: Query info return length check was reversed; (bso#10848).
  + registry: Don't leave dangling transactions; (bso#10860). - Update to 4.2.0rc2. /bin/sh /bin/sh /bin/sh /bin/sh samba-kdc obs-arm-11 1640264900                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                	   
                                                                      !   "   #   $   %   &   '   (   )   *   +   ,   -   .   /   0   1   2   3   4   5   6   7   8   9   :   ;   <   =   >   ?   @   A   B   C   D   E   F   G   H   I   J   K   L   M   N   O   P   Q   R   S   T   U   V   W   X   Y   Z   [   \   ]   ^   _   `   a   b   c   d   e   f   g   h   i   j   k   l   m   n   o   p   q   r   s   t   u   v   w   x   y   z   {   |   }   ~      €      ‚   ƒ   „   …   †   ‡   ˆ   ‰   Š   ‹   Œ      Ž         ‘   ’   “   ”   •   –   —   ˜   ™   š   ›                                                                                                                                                              €   €   €   €   €   €   €   €   €   €                    4.11.14+git.313.d4e302805e1-lp152.3.31.2 4.11.14+git.313.d4e302805e1-lp152.3.31.2 4.11.14+git.313.d4e302805e1    4.11.14+git.313.d4e302805e1                                                                    	   	   	   	   	   	   	   	   	   	   	   	   	   
   
   
   
   
   
   
                                                                                                                                                                                                                                                                                                                                                      samba-tool samba-ad-dc.service samba.so libdcerpc-server.so.0 libdcerpc-server.so.0.0.1 bind9 dlz_bind9.so dlz_bind9_10.so dlz_bind9_11.so dlz_bind9_12.so dlz_bind9_9.so gensec krb5.so libdlz-bind9-for-torture-samba4.so libpac-samba4.so libprocess-model-samba4.so libservice-samba4.so process_model prefork.so standard.so service cldap.so dcerpc.so dns.so dns_update.so drepl.so kcc.so kdc.so ldap.so nbtd.so ntp_signd.so s3fs.so winbindd.so wrepl.so rcsamba-ad-dc samba samba_dnsupdate samba_downgrade_db samba_kcc samba_spnupdate samba_upgradedns samba-tool.8.gz samba.8.gz samba_downgrade_db.8.gz setup DB_CONFIG ad-schema AD_DS_Attributes__Windows_Server_2012_R2.ldf AD_DS_Attributes__Windows_Server_2016.ldf AD_DS_Classes__Windows_Server_2012_R2.ldf AD_DS_Classes__Windows_Server_2016.ldf Attributes_for_AD_DS__Windows_Server_2008_R2.ldf Attributes_for_AD_DS__Windows_Server_2012.ldf Classes_for_AD_DS__Windows_Server_2008_R2.ldf Classes_for_AD_DS__Windows_Server_2012.ldf MS-AD_Schema_2K8_Attributes.txt MS-AD_Schema_2K8_Classes.txt MS-AD_Schema_2K8_R2_Attributes.txt MS-AD_Schema_2K8_R2_Classes.txt licence.txt adprep WindowsServerDocs Forest-Wide-Updates.md Sch49.ldf.diff Sch50.ldf.diff Sch51.ldf.diff Sch57.ldf.diff Sch59.ldf.diff Schema-Updates.md fix-forest-rev.ldf aggregate_schema.ldif cn=samba.ldif display-specifiers DisplaySpecifiers-Win2k0.txt DisplaySpecifiers-Win2k3.txt DisplaySpecifiers-Win2k3R2.txt DisplaySpecifiers-Win2k8.txt DisplaySpecifiers-Win2k8R2.txt dns_update_list extended-rights.ldif fedora-ds-init.ldif fedorads-dna.ldif fedorads-index.ldif fedorads-linked-attributes.ldif fedorads-pam.ldif fedorads-partitions.ldif fedorads-refint-add.ldif fedorads-refint-delete.ldif fedorads-samba.ldif fedorads-sasl.ldif fedorads.inf idmap_init.ldif krb5.conf memberof.conf mmr_serverids.conf mmr_syncrepl.conf modules.conf named.conf named.conf.dlz named.conf.update named.txt olc_mmr.conf olc_seed.ldif olc_serverid.conf olc_syncrepl.conf olc_syncrepl_seed.conf prefixMap.txt provision.ldif provision.reg provision.zone provision_basedn.ldif provision_basedn_modify.ldif provision_basedn_options.ldif provision_basedn_references.ldif provision_computers_add.ldif provision_computers_modify.ldif provision_configuration.ldif provision_configuration_basedn.ldif provision_configuration_modify.ldif provision_configuration_references.ldif provision_dns_accounts_add.ldif provision_dns_add_samba.ldif provision_dnszones_add.ldif provision_dnszones_modify.ldif provision_dnszones_partitions.ldif provision_group_policy.ldif provision_init.ldif provision_partitions.ldif provision_privilege.ldif provision_rootdse_add.ldif provision_rootdse_modify.ldif provision_schema_basedn.ldif provision_schema_basedn_modify.ldif provision_self_join.ldif provision_self_join_config.ldif provision_self_join_modify.ldif provision_self_join_modify_config.ldif provision_self_join_modify_schema.ldif provision_users.ldif provision_users_add.ldif provision_users_modify.ldif provision_well_known_sec_princ.ldif refint.conf schema-map-fedora-ds-1.0 schema-map-openldap-2.3 schema_samba4.ldif secrets.ldif secrets_dns.ldif secrets_init.ldif secrets_sasl_ldap.ldif secrets_simple_ldap.ldif share.ldif slapd.conf spn_update_list ypServ30.ldif /usr/bin/ /usr/lib/systemd/system/ /usr/lib64/krb5/plugins/kdb/ /usr/lib64/ /usr/lib64/ /usr/lib64/samba/ /usr/lib64/samba/bind9/ /usr/lib64/samba/gensec/ /usr/lib64/samba/process_model/ /usr/lib64/samba/service/ /usr/sbin/ /usr/share/man/man8/ /usr/share/samba/ /usr/share/samba/setup/ /usr/share/samba/setup/ad-schema/ /usr/share/samba/setup/adprep/ /usr/share/samba/setup/adprep/WindowsServerDocs/ /usr/share/samba/setup/display-specifiers/ -fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -g obs://build.opensuse.org/openSUSE:Maintenance:17313/openSUSE_Leap_15.2_Update_ports/9f65dcd956be9fb53589b08a6fb8c740-samba.openSUSE_Leap_15.2_Update drpm xz 5 aarch64-suse-linux                                   	   
                                                                                                                       !   !   !   !   !   !   !   !   "   "   #   #            $   %   %   %   %   %   &               '   (   (   (   (                                                                                          $                           $                                                                                                                  Python script, ASCII text executable ASCII text ELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=ba683f3a72f239d7a0df77cbbe9541d6df09a5ad, stripped  ELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=d0196625419eb98ccfd05e372825ab8666d1be7e, stripped directory ELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=eba32c9c6b73d2bb4e4f40a06ef6a66a01e2d6ec, stripped ELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=51b38aea86cc6b2f44270ff2b2b1da6fb9f5f29a, stripped ELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=4406c2f0d77d27544e16d278cca9aea2a9ae42b0, stripped ELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=991d15c11879c3a17bb52b98814641a04d8d52ae, stripped ELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=b283852ee3c0206131f034e5239b1a3f2ddb031b, stripped ELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=2fed955c7dd6f8370e0d1041353f7308ccc7c3e9, stripped ELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=5f404913ccf478b69e26bd40930b67b7c7cb936a, stripped ELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=b0d4acf93b29c4f561cc2df32a368435fc897e88, stripped ELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=606b013e07b184728572f2bc2ab1f1e4bc5a8883, stripped ELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=f7d524de6fb63bc51de52cf67bdf4d681e0e9fe9, stripped ELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=35d72386aca518126edd88833e8d7eda96383654, stripped ELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=ac7bdf8b1d506b163d0ac6ecc3f0b9445abe9d2a, stripped ELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=44e1142cd81b47963f162746802952f9e48d121b, stripped ELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=61e1d881f85c9e97ee44d564708766b2d9eeec2d, stripped ELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=e4b746f3ed7684cef758e7ad10fd8881795ee65e, stripped ELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=7890c721e19bde651c7f93c003dc5f128ed14c7e, stripped ELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=18225582c25dc71cdc35f0df00baa00cb88a5522, stripped ELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=2bd1d6b679ebaeee3b477d1b4a530896e05040e3, stripped ELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=8700d0fbed7c8c8fc5f77d74dfaa221e3c2a6c20, stripped ELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=6ae66eea3062656ea8262d4ac9a28de5c7461432, stripped ELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=1edbcdfa04fe81ad174442093a84daa95a87c289, stripped ELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=8d30830f59fa63f379f6c61fe90168276c666a5c, stripped ELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=eb4e07ee7b07ad3750a5eaab1f8940229bf433ca, stripped ELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=22bf943a1559f41649f5520bcdf063b35d89a30f, stripped ELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=f7aa8aaa4e98a82d9d1b2309e5713fff38f9780f, stripped ELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, interpreter /lib/ld-linux-aarch64.so.1, BuildID[sha1]=a499195c589ea5f5dbc406de8cb4f92bcacac1d0, for GNU/Linux 3.7.0, stripped troff or preprocessor input, ASCII text, with very long lines (gzip compressed data, max compression, from Unix) Non-ISO extended-ASCII text, with very long lines, with CRLF line terminators UTF-8 Unicode text, with very long lines, with CRLF line terminators UTF-8 Unicode text, with very long lines ASCII text, with very long lines unified diff output, ASCII text ASCII text, with very long lines, with CRLF line terminators Non-ISO extended-ASCII text, with very long lines Non-ISO extended-ASCII text, with very long lines, with CRLF, LF line terminators                    ,       “   ´   Õ   ö        8  Y  |  ¤  ¸      à        $  B  X  ‘  ³  æ    R    ¿  é  ù  	      :  h  i  j  k  l                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  +       g       !   !   !   !   !       !   #   (      (       "   "             9   "   3   *   B   ;   2   *         1       .                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       R  R  R  „R  xR  AR  ›R  QR  ~R  OR  ŒR  R  ŠR  KR  |R  ”R  R  €R  ˆR  'R  GR  pR  MR  ƒR  ‹R  wR  oR  &R  R  {R  ‡R  R  }R  NR  ‰R  @R  LR  FR  #R  —R  “R  JR  PR  R  P  P   R  ;R  ?R  vR  –R  R  R  -R  
R  %R  lR  xR  R  7R  5R  †R  MR  1R  R  R  zR  WR  ~R  šR  ›R  ™R  /R  AR  )R  €R  ‚R  |R  ŒR  ER  R  „R  gR  jR  hR  iR  eR  R  R  aR  UR  QR  ”R  _R  cR  R  ]R  ŠR  +R  CR  ˆR  dR  :R  *R  ƒR  yR  6R  ^R  R  R  …R  •R  4R  ‡R  R  R  R  \R  kR  }R  bR  `R  BR  ‹R  wR  R  ‰R  R  VR  (R  R  0R  ,R  .R  @R  {R  $R  R  >R  	R  uR  LR  —R  “R  DR  PR  R  R  ŠR  R  =R  7R  |R  ŒR  R  rR  ~R  CR  zR  R  ”R  ˆR  UR  QR  €R  ‰R  BR  6R  R  R  {R  yR  }R  ‹R  ‡R  <R  “R  qR  PR  R  R  ŠR  R  =R  7R  |R  ŒR  R  rR  ~R  CR  zR  R  ”R  ˆR  UR  QR  €R  ‰R  BR  6R  R  R  {R  yR  }R  ‹R  ‡R  <R  “R  qR  PR  R  R  ŠR  R  =R  7R  |R  ŒR  R  rR  ~R  CR  zR  R  ”R  ˆR  UR  QR  €R  ‰R  BR  6R  R  R  {R  yR  }R  ‹R  ‡R  <R  “R  qR  PR  R  R  ŠR  R  =R  7R  |R  ŒR  R  rR  ~R  CR  zR  R  ”R  ˆR  UR  QR  €R  ‰R  BR  6R  R  R  {R  yR  }R  ‹R  ‡R  <R  “R  qR  PR  R  R  ŠR  R  =R  7R  |R  ŒR  R  rR  ~R  CR  zR  R  ”R  ˆR  UR  QR  €R  ‰R  BR  6R  R  R  {R  yR  }R  ‹R  ‡R  <R  “R  qR  PR  R  R  xR  –R  €R  R  |R  R  ›R  R  ”R  †R  zR  ˆR  R  MR  OR  CR  R  yR  BR  NR  …R  •R  wR  R  ‡R  R  {R  LR  #R  —R  “R  R  P  P  R  ŠR  R  =R  7R  |R  ŒR  R  rR  ~R  CR  zR  R  ”R  ˆR  UR  QR  €R  ‰R  BR  6R  R  R  {R  yR  }R  ‹R  ‡R  <R  “R  qR  PR  R  P  P  R  „R  R  ŠR  xR  ŒR  €R  eR  |R  QR  OR  ~R  R  R  [R  %R  ˆR  ”R  MR  GR  ƒR  $R  ‹R  wR  R  dR  R  }R  NR  ‰R  ‡R  {R  ZR  LR  FR  “R  PR  R  P  P  R  "R  ˆR  ‚R  ”R  R  †R  ~R  R  |R  R  …R  !R  ‡R  }R  {R  “R  R  P  	P  R  "R  aR  +R  ŒR  vR  tR  |R  R  ~R  €R  R  R  ›R  lR  ”R  ˆR  R  nR  †R  R  sR  R  …R  `R  R  mR  !R  ‡R  }R  ‹R  *R  kR  {R  uR  “R  —R  R  R  "R  =R  tR  R  vR  ’R  WR  R  ”R  †R  xR  ˆR  ›R  €R  ~R  R  |R  R  <R  VR  …R  sR  !R  {R  ‡R  wR  R  }R  ‘R  uR  “R  —R  R  R  "R  WR  YR  R  vR  €R  †R  ›R  |R  xR  ’R  ˆR  ~R  R  tR  ”R  R  XR  R  …R  VR  sR  !R  {R  ‡R  wR  ‘R  }R  R  uR  “R  —R  R  R  vR  €R  R  xR  R  R  QR  ”R  lR  ŒR  †R  R  ~R  |R  R  R  kR  R  wR  R  }R  …R  R  {R  ‹R  uR  “R  PR  R  R  R  ”R  3R  +R  tR  |R  R  €R  R  ˆR  R  2R  R  *R  ‡R  R  R  sR  {R  “R  R  R  R  aR  R  xR  R  –R  vR  eR  fR  |R  ŒR  ›R  €R  ˆR  R  ~R  ]R  ŠR  lR  zR  †R  R  R  QR  R  CR   R  ”R  7R  R  …R  •R  R  BR  yR  6R  R  R  R  R  wR  }R  `R  ‹R  ‡R  dR  ‰R  \R  {R  kR  R  uR  —R  “R  PR  R  R  aR  „R  R  vR  |R  ŒR  ~R  R  ›R  ”R  QR  eR  R  R  ŠR  €R  ˆR  ƒR  R  }R  ‰R  ‡R  ‹R  R  dR  R  `R  {R  uR  —R  “R  PR  R  R  aR  R  xR  CR  –R  |R  „R  ŒR  €R  R  ~R  5R  †R  ”R  R  ˆR  _R  jR  gR  eR  R  WR  SR  QR  ›R  +R  ŠR  *R  ‹R  ^R  R  dR  …R  •R  wR  ‡R  R  VR  ƒR  }R  ‰R  R  4R  `R  {R  BR  —R  “R  PR  R  R  _R  aR  9R  xR  R  |R  ŒR  ŽR  R  ~R  ›R  ”R  WR  R  ˆR  eR  R  R  QR  ŠR  €R  R  8R  `R  ‹R  ^R  wR  R  dR  ‡R  R  }R  VR  ‰R  R  R  {R  —R  “R  PR  R  R  R  KR  aR  IR  „R  xR  R  –R  eR  vR  R  [R  R  OR  |R  ~R  R  ˜R  ›R  MR  lR  ŒR  zR  R  ”R  QR  R  †R  ŠR  ˆR  'R  CR  €R  R  …R  •R  yR  ƒR  BR  ‹R  wR  &R  R  R  NR  R  R  }R  `R  ‡R  dR  ‰R  {R  ZR  kR  R  uR  HR  LR  #R  —R  “R  JR  PR  R  R  R  R  xR  R  –R  „R  |R  R  ~R  ŒR  R  ŠR  ™R  ˜R  ›R  R  R  lR  zR  †R  ”R  R  R  TR  RR  SR  QR  CR  R  %R  ˆR  €R  R  $R  BR  R  yR  ‹R  R  R  R  R  wR  ƒR  }R  …R  •R  ‡R  {R  R  kR  R  ‰R  œR  —R  “R  PR  R  R  „R  aR  eR  ŠR  R  xR  R  ;R  |R  ŒR  †R  ~R  R  €R  lR  ›R  ”R  R  ]R  R  R  WR  QR  5R  ˆR  dR  :R  VR  …R  R  \R  wR  ‡R  R  }R  ƒR  R  ‰R  R  {R  4R  `R  ‹R  kR  R  —R  “R  PR  R  R  „R  aR  ŠR  R  R  €R  eR  R  ER  |R  ŒR  ›R  ~R  R  R  †R  ”R  QR  R  R  ˆR  dR  …R  ‹R  R  }R  ‡R  R  ƒR  R  ‰R  R  R  `R  {R  R  —R  “R  DR  PR  R  R  R  ”R  ŠR  ›R  R  R  ˆR  |R  R  ‡R  {R  ‰R  “R  —R  R  R  R  ”R  ŠR  ›R  R  R  ˆR  |R  R  ‡R  {R  ‰R  “R  —R  R  R  ]R  R  xR  –R  eR  vR  R  |R  ŒR  ~R  R  aR  R  lR  ˜R  ›R  €R  ”R  R  †R  R  R  WR  QR  ˆR  dR  VR  …R  \R  •R  `R  wR  R  R  }R  ‡R  kR  R  R  {R  R  ‹R  R  uR  —R  “R  PR  R  R  ’R  aR  =R  tR  xR  R  "R  CR  vR  ›R  rR  R  QR  R  ”R  ŒR  ŠR  ‚R  |R  €R  ˆR  R  R  <R  sR  wR  R  R  BR  !R  ‡R  R  ‰R  R  ‹R  R  `R  {R  ‘R  uR  —R  “R  qR  PR  R  R  R  R  R  R  w¾ùiœtœ¿Ê£Ýû   krb5-server samba-winbind tdb-tools 1.15.1 4.11.14+git.313.d4e302805e1 1.4.2             utf-8 89ffa64da44065a760a6c5be44f4bf09d038973916449bf7fb48571d703a35c7        ?   ÿÿû@   ý7zXZ  
áû¡ !   t/å£á àïþ] "ÌkÀ%å-2_¤dÒªL¼yÅZÉ¸ÄµtºQE°¦òçwttÚæí©ç©#k]ÐÏy²Õò ¢ÓÜ­)‘ØŠ‹Zúÿ ¤Wð¿dÏ6Æò5°€jBWÝ(7~ÑÄQøBBR!`© Ùé¯ÆÄÓƒ®£.Ct O¯éx!ëÆ8Hñ	¤ÒvÆÅÑv’ï
¡q«b…ê<@¢¼ìÿ¤aµiøöS}Hé,NxèF°ýŸ2ËÁÊŒðVÝm2^XÝUÑïa¢½6TtÕ—vÇ·~…¡Ø`¿Ô}©^0×•¢}½Ö{bN¦Í8ÉÈÒRàvê(FyEö¯Ø‘­Ò6¡6î- %yÍ›Î¯˜=šážÓ71Ä†FwNhSòì_!Dve)¬\Í!‘Ž‹}XöøôE?Þ¤®tÁS}à¡O½-€+Ó*›D'ÁLÓpc=Ý¹œ¦*¶n¼æNÃŠ]2%Ýê}O ÃÒLþå‘”þa:zÓóuÓõ~ùù×=b:Ù“M§M
YA›•ñu;ûkÖáâ*æEÖåëÃ£VŠåLHgâNÀ¦½ÒÁ;r—Æ|h*Ý/jôe‰Îê¡›…k¼t³s,p¼‰~Åx!Âa¶ÁaÒD ;:|-Í&CgŠž4˜?‘1ž³jÙ;Q€,c±÷Mó?GÕæÛÚ	è:tœÜˆüìJð¡:$òïÙa¥h$øÆ~ˆ$zŸlX»TÌ °M&T§Y„-ÖV,l×]ÊX/7÷Å^ó>ja›¬q¤ŸzrxïN¾E
7áÞ,än±¾êúHñ9RýiRüCnÔÂØ=`äùýã¬ @¿Qštÿ$Ä¢Q™í&bq\Jo ÎïÎÚµópkþâ½$û ª )±9"©œ<DL‡QTÕ[#'z¤k¿µe8ß%Y³t§¡®rzÓ†ñÀpÏPð—[V]ð=8ŒÃóÿËÈÃÀñ·´3Gúäe5’hw;ÄR,G4pdbƒU—V×.QhQ<¡<1ò(±B§Yb8à—ËIÞp/p…VS‹œsß#ø9ûQÐï}[Z“9q*²ù¦]ÈÙ9f“M7ù¸mC³›Ç…{4ª! "À)Yú³jg¨fó9h ÓJäçÙÉÀ¨7²×› 8ti!ÈoA\Øg—z±l	OÖ<-¿–8‰[€3EÇ­Èdu®Š5€©#R¤E9†aÐ³­™,¶PÐ&£Á¼^ñ=þmÇK+4ú‹çxÏƒn^E”Å(Ò‡®ïŽeË•Ê±3†Ðð½,X‘´¶¯ô¸©ÿr¤ZÁÖ*«¦ËLªùkñt1D*7òsYáÛû5W~y™/‚‘|¢+-ÆlÈ®‹‹3Ñ2(ÇÜ´p¯¹wãCZÆ9]BRÕôü}¡µæ’dZCz<°YigÖ¦Ó©Ÿ ãY§–¯6%Ù;ƒÊ)Z§ãøž•Å [Eý‚2rˆO †´¿£EuFÙ&pd³>/­bÐ8 Š,?0­<!>D	†Sd˜é)}"DîÕ)*ŒÔXtÄÝï²—b‰£ÅHéÛ–<vôGÛØóö¢¯®Àÿto3õ°Ã½ë4Ç»8ß²(¢ÅW#•”mãè%§t7Iz)À _)+/j€ª¢múÐgÔùsBªgÃ{¥//Órl(âÿ[WŽQÐt¥pÑxkê…Êüÿûr@ŒWh}œHîÊLðÙ­ÂÐúÙ;PªIz·1ä‰bÑÛØm–I ü¹Ó¸¸f>µ 7ºˆ4Ìh² ÊT,ÝÀ*‡KÚF‰$Æ-›o© â°‹Û L éÿžãÂLY_x­ÿ_ÊGe%?Ë{u¥E<šn }ðO*‚ï«æöf
”Ó¹»‚nÀ»Ã´¿\
Mñjl\Ál™‰n2§ŽZÔ£¥vƒB%[¢sd``úZÀabéØ[\†X#þ$Žê>æËqdòDÇî¿4“ð¤«NjæCÒ|Æ»/2 x6ÍÂÛ×*qçÍáÃæ‘5ê<µk¦ßZ4uÇBçnË„Þlú"tòË§ñPÏÜTˆ°Ëcí<˜Ì°ýR¯<' >X£z^ŸkˆkB4˜ V6âµÄ™mfõì[¾rœïP
lz£Ž©…$—ë…ÌùÄKÿã'«ác‘QÓC¦VœÇÉÚŸ/—Q„JcçNŒWl¢æG/&¼¹
¢x‹-[TËn8PêT¨¸.7Í¹zdåÈZ@:'oŸnx»T¸	{Ÿtµ)VÎÀ„Dôè5ñpÙÙÚ·ù$ÕÏŸ¶oá¶”Ö%ö
ùü0 .IV#Cz_ç0il²iEÕš ÈÉ™ ì[Å³1H™‚ø@‚•Àß¯‰6­8B %«´2Z6Syðã$ƒj©HÜ^ç«Jýd.Æ0s¦™á+¬F‘ÏØ¤À“VÝr>I° ý†{…§ð‹„Ö s#¯¦˜–ÃAé:®Øø:vâ|»!D‰)öüŒqeåoáP‚75ÏC“)£¦i,2Ú
}ÛpÓYÃ…¾O%#êaã¿t¥	x2Uí½=¯”§†ÇN³²ôe°°™Ü3eüê¼/ÆÉX½Ÿ<*>ø½£Ÿ©¶Ø¹ƒÉv¢|öXþ8´ºVc’â N?£ÄÎ.aÁtkDå] âþ|ël9M¨ŸèfÄX0Ùq Œ·ÄhŠï±]‰øšée¸Í¶#³+œ$°ç.qqÊ¤—KŒü³õÅg?cIöÚò²,†‚sjžºŽ´Ý¼b ÂàÎ¤¹ k,Xˆ¤¤ÝÆW¢.‡šN*|±?¢iI”ñ è!Ÿ‚ãÙÔãðBˆ2ÄÈ'‹q0L]c+Õ
•bª@~ÚgÃª)JWvY ©‰¨ÞRÄ™v`';|ß~_*#¼6§kçx*Q	‹Q:Ê¹»¦“€®+ËQcò±ÎnVåÖQžƒ`é€Zr°ÑZ<ƒÏŠïÉ}Ö­‰z§~Y¹!bš.+!rG#+6†‘ì‰ýDØ$x­a~]ªÖŽÛ,í½)uÁŸtaÜò‚—ÝSú¯¨à_kVõÇã"÷‘©¡á‘ŠÑ0
ØTd‡!ï÷Éd1¶ëUŽsÜ<âš†fÎ>ûyŠ²a½á·ú/üÕ\¨J„p•ROã1xÌ¦›äÿ<J¹…Tes„s©„å7ŒFi×ËVÍ{¯dìoû˜Ñv–mA@! ýþØ2<{…ÅDË·Yp/’9¿„ù—¯ÂR’ ÷ªc¼?Ìt=d‹Á·H
ÅT[&G=–ÚZ§#$»ÇŠÔZœˆ2ÆÎðÁßðßÌuPŸ(hŽ…º…ñ(ò™ˆtã¨ÆB¬5\4üY”,ÅHÊôÙÉ²dñqi/K5í Ä0ß -Äµ©„¢ ìµŽ±hŒÔ”g·ž¬×aæ¾^´œtMI–Ún¦°Õj|™‰dÊÍÁ¬Ä æ€sóZj6¾Bº¶ùÂ„Ìû!±ÒI,Ø ;Ì.útG0|l9ärZO ˆYØšÛzÃ®ðT‚apºùgJYJÕhy³qd0„¶ò¶_<r½Ñ!|!„õ**J°÷n,!y)ÉEËÚìY‹(Ë:³îZW\YXNwxdQ=Òþ‹˜ü<ŽbG¨Yr‡»(ŠÝÍÃÝúü/´ÿ¶ã³÷(­Å¼Þì‰=®Sšj/HUåö$|èåŠƒå¢F_5§IÑ“BO:ì3G]¼SESæ¶Ï;0-:
`–lüàJ²¬».ñKV¢„­›Ô„'!zÍxF"ÂˆRèŸÎ'…ãª&¡åÈ™è·M:=“ZÕ=g‰° ]øìÃÉÂåuÇ–KŒ3¯‹4-¶RòÝÃÃ,\úˆ°Žå88þïû¦ãš,œ(‚`qz‹”¾ x\?ôÖ[A yI¢	xˆ\H\Õ0N6VêŒPŠ›ÔWˆÆ‡Ò«ÜëÀsìQ£Â Ù$êBÔj"ÎÓø7­²æ¸	ÎðIg8çcõ†úŸ¿ùuYîê·	ê—ã`O»N–éºÝ®àïl9%qK¤HbôàVw©¥†ØòÂSV–¯>mË2¾\½ŒÝ'ï,¥…y2-Ü8zzù®Ç`©œÉ¨˜ÈIS³ŒÁ:e®Êù/\ÅlîXkM¸æQÇ'vo£âP:ùÞ–·øM½Êøÿ3_»½
£³—-7ÕýÍ`Rêa&qð–ìß3çùÇDpÄ•ûZû‰8Zå´~!}3þX‰‡£„Ýr­Õ°žÎr2Ÿ¦Å 6•Õ* ž4¨QÅ·°6OþsÀ?j•1HoÑd,}ú0|»„ æ2¾ë…êÊ(FÊàFRVßiI4¯Á8.ëšžó¨²c8ØÄ»Hüôc‚ù$´œ7	]pL¸€¬inÿ¸v—ë™w¬Ryˆa|õˆçDè‘ÿô
‰›<'¶.ûšÜ®Ý/»"Ý„®ÁmZãƒÃÆÆzÀt<´0ç›n¶˜ ÷“Aï}J#c+4Dy£]NJù	pSµÝhïð3ÅT‚çß'àŠ85b2Ëò3šÅ»\2Z xgágb,ÊÞÁp½d’w”yÎöGÏòRƒe+ûgú¹‰,Ï÷þ>z½ÔN-0éäéA%œ›$rY ´m²Ý&2ÌõnÓ{ûì€«V¬’=ð ÇÄhÏ&îò>»AaÛè‘…Á¼´ä8h¼#?_2ƒs2JÂÚ’ÒúR¨ñW˜d;¾_~•UÆ…’Z“˜<ðMŠž4xÇ=,¢œ-îh(Æ…Á«%5dŠÑ÷Ò#´£ÙtŸ7b¬ù`P2K{L\!vwNŽömK¤N«™ H,ù‹QÍÄ6LÆ1pXÒÒŒdšPÊA5bŸõ_w$a(/¡¾üª¾`Ðév9÷um‹¥¬B¼'¦'ÜÙ„3vÄÊM-²ÏÈ`Œáq­ìXcE‡þÕ9ñH‡Ø£Ÿ,’K¨­­3’œÃ@^ÿ`×fÜÓmY²f×;å7
vÙAhtFH¼¸(òLH.]ºŠ\—JŠòN–2²/•p£*‡p÷t=½t†6—áÜ2Jé¡ÙÎ+\W¢×ž¬êh7=ëæŸH¶®ê Éºª‘Ñ0ÒÕœôš@t(QÝ‚Ì‹Æ²f4cœF]ÜÅ5÷è$n‚OÙ|Kh¬W!L¬'ô›bÅ ·ñù#A?<–~dôæ±t—c‡r¿ðk¬|€Õ8‚4ŠÒ)š†­Lí;Ž€’E_ˆ—äšj¾9¼´ÈZ9a±å„&°ª#F-’m¼ @i—z%ëPôB¿˜õažIžÀ¡ª¾ Të¸ìh"!ò¶1Áò¨$2­·ªŒä"%H`j¸v\í±á/ô6ï4‰Õ¤=6"O‘

l’„¹ê€³¼%zå°"½·(¥GGaÈ¬àËï*ëøSP‘PF`	I
ÆÝà}ƒdQWz¸O¼Ç6‹R?’©ZãŒ·
A?cBG¨DÓp„ä#jú“•nƒbJ©»'‰SŠÊ0š¦üëåpVZ„o^j8Hkç·&#šœ€ÚUŽ×gåô™>o«ù
¯¦ZÎ†dÞP‰rÅ¶é”‘É¢ŠPM£ó÷•*ÛÐX6@Ô-¹·-{Bä®l™þò„Ç	‡” Ê‡m°fXvPÐô7ŒÄQ¬B"JKÎHYJOÍ6«9+Y1ý\I¶Ù…O`Ré¥½cY3±òèWUÄ¨4FÞ¡°¥‚™tºÚ$¡e›ª=“5d¡Áµyÿï†ëxÒ&™%À=íôai¾ÇaøÑ¦ ¯bù<™í½ÕÆ•_ŒÄ‡XRwºçžÞ´”Ž´G.¸_£ÄÛTé€I.¸ª¥ÜÃö0Ûfhx±uÃ"eQÏ³˜4…¦,¡´Ÿ,Ð²¶ÎÒ'Pô"ÕîZ®Z5Î>ße/o²©ÆÞL[ñ?†çñ?.h´—`Ëw„®¯ñol.†N|‘Ñþƒ¯<0Râ*I['ý`Î ýhÊ‹wòËh>{½wñ ž_%Öñ'¿¼AŸ¤ú¢ýÔú™Ëò:x’¥‡³i³A
kð9ê‘Roù…nL‘ƒí&	h!£†ÛhIgmÂ.¶ŸUm¢M¶'¹xí(ÀÇÕ•Pó.…Ò*ªdJZsÜy=Që7íE”‹M°9¨fÓòé³f©æÅ¹¦Æv”0k2õëmøýÙº³v~À³á×8§pÁÂu…‡H®6C'æ¼`H_^\¨²óŠž)Ú2,…¥Ö/¨ò[%º0ú”^tËD¦5Ñðê’ÄhÏ’gÑÕK¼«¶Ç€åÊ/§Ö}„õðáiÕš«ð™Æ/Q™±2îû0HÄ÷x„œmAÏbx¦…O©Ó´rÄõ@ÑØŒ¶gœšb00²HL‡®6ú¯–ÓYíäYÃ…f£jÝ2ƒ ç-â”(íþb@þŠ·T0`0‚\ˆ±mÑŠAÂ‰?:\ÙQ6>áfƒÎ—BcˆÝŸÆ9" }JðbÊË¤87G¬žm3'£ÓÇõweÉµÏ†Š¨“æêÍ‹&ÙýGèI×@—Âg?ŸöqÛG©¦‹^÷™[cC>N–&÷&®AúüâÛ7Ž$2›7¦¸cXãfùc‰bÑ‘êiyÈÈ†D²·#“uöSägN¥¨©/ìM¢¤HÉ8É¹÷y¢“º(,:!ÃŸ»ò)MPUË“²äDÖ¨l7‹lv JÅò²0RÎöõþ	ÎT˜ŒÅÍûH$©NêFÔŠÓá¶Á!±Âp
«)Ê7jC°:Í´)Sý?\‹\øù(@m¦s	fßdbçÀI>%{`G«´Tò}°íôŠL†Å¾LbKø;‘üÃã=F‰ûÄOú¢,¹’uÈÆàÂSLšsÑ¿¥"èè²J”ä7©eBv»Z/GH^ý`P) oá|é Eõc?"Ü™ƒÕ™ËÈY+'7SÀ=‹g¦†yœ	o)ÆýD(Ó›¶³¿&`J|°tºÎ¾N–‹;ß¨ã<]yR¤1O^
	0dˆfvï‹@†C¯ÕÆçd³´?¤O·0¿Eœ¨¾–jÞàSÅ>h½O3F‰ùB…¹˜õñÔÒG¥%( U«{rG³»>ì"VŒ•f2c_‰{»Êæç¶$/{f”uÔ˜Ã
¹qô|™_V«ak²ÁÎ¦vÓØ¨¢µÒ_küÜ©¬òÂ°ŒÙ¹[ &ê†®¥øÊhœmËÖé§ÉƒL!"fðJ^P„e=½£éÇŠ­ª;ò;Á”ú”…*¬Ç^NAªó%Òä,Êssª`q˜&öyÓöP5ªç¥Îd­ªLµ•rÑ¸]´ƒ+mÙR&äÿjûôvn|4ÏiŒÂ% ¢ï‚’¸I¾·èáé%8–YbÖ¡¨Õ±g²a°[­„ãÜ@~rß.é–ü-xDšÏMó4õ—l®z"^U®ïÃø²‘<©Ov±ðU|lR©‹Ê.köÔ;œnlã¥Þ+ùYF8$§õJå0Rl<Qø”>5ûü,ðB¿ ¿{Ø²Ãì¬CvÀÉ³–BÍ0©³Dèy»Œ_”Ùæ–'Kœ&:¥[&#¥ðÒîü˜ë©7 é„(¹iR(Hý|´¦æq3SÁò®@8Ú[5/ÍS4ß¨4‹€M”½c¹ÿžêf9¸ëÿŸ¨*y?f‰±P®£{ÝŒÃ=HÀ\·AÞk¢ûž8ð4Í¾3©\*£Ó&µk€Î½±íœÿš\±ä¡•Ì²ªFVØxÑûÿTv÷)e,8lž>¹ÂîUToõ¬U
=“­mC“w2ä÷—xœÊá2Œ‘3_èù=SOëÛZÓNÂù€Ü*1Læ`:,óï¸bÏ“Œkywî(Ž% ‰‹ÍºõšÅ•¶ÁƒhOÆý¤ÒÁe¾pe;I¬¼‹ªº%õÚ‚g¢Œ—I‰*:Û³f¯gö˜.ØÚœR›šÊU’+…Ò}@Z“*'¥<ý²‹Ø–¥ª{QÔ¤‘7·²àršÿzh:æ€ke¾í©ˆèçc¢´ª[­g‡Öß¿ZþPŒ£Ég«L;O.ºåÌzá	½„¹fd²¤Wt,±™°Ú¾ð”òPÆ2õ\„©²ðÛVècwbø÷¸ºA#“›ÚÃëé…Ps#-™¡cÇ/‚0Tð2€®Ã—ýVìŸw0/
Dáï/äÔL‘C­ÙT¨¢Yç*'¶Bƒ€Ö±±QnÁ ";åt?M‘
ºÆÖ÷ôqB;vÏ{(Ôtó/F:Õ8¾tåíyþä8Ò@˜@øØp˜­{]Œ~•ó?Ñ(—ˆPøÈ=­øKÊ¤«’˜
³2è|&	R/ŠÜVaÛµnû ïÞ§YqC÷æN6W"a¡pŽò%¶hÑN™"!øë¨p¸šÕPC–¿`Â~šä»µæ¥y’‹ºñ!>Ÿ*a2ôœCâ!7ös½²ªÚhƒÏ%†å”8PäUûÝp¾Ü41åç‰ÅcSú,¶¬q„t±<RT3NT’$Õ–+•@6!n‰ÌGuz‡Êcg;³úw½ébé $2Ž"pÁSäX¬[_ÚEç/îcœì ­®? ŽÉÜ~¹\SÈGö~zLÞ½µsõ¯ów›×Oéje·ñÿ.‚‚ÞÌ¹)0’Ò“ f$¥:y—Ÿ¼O>ËyšÂÇI 9Mô7òêêPÂý§I
a†µŸªÌˆ”ýdÈõ²×aÞU1"`4¯[
GiÍ“½–EÛ´Dd_Ú(4sÙV¨h|†·ò (šhI¨é·(ÇüÑ¡'bZÜ»»d®Ê/nG«?Ø°”-K˜ôuð ˜OðžæÀLéƒÔ©E»s|¨Mâëña
#ó:5Þëf$ïº…çê§<·ƒöÖ¨:ç%Ç5 Kˆ?¶[sáï²øøŒEš½;ºmo†?³Dôåo„8áþÃ	Fðç•„ŠîÔ@ˆa8î+ÛÐô(
Û"›öÛ”/ö3*Šàg±:óm@Bö¬0g]¨èÖê¹­õ$KVÌòT~¿=Èç›zR9Gl—[Òh-×‰d½ãñ•q.ÔüWˆt49¹€›§ð•‰É¾¿±³†Î)†¸_g¥
&zqÿ=³7Ø6B¡gÈ}Ÿ@Ý˜lQ6]Ä ñƒè”îìÃ &ËD×ùVå™+ezðhö
D;Fx2™"õHð2í ÉcfïrˆÀ–“ê»³{qŠU¡Fnf-­¨]Àk‡õ·•ú&%âÓ?ÇQEÌrL”¦-ƒyyn™—|/C´WGªâmäºK€4ªÖ3šCÿIÚ,ªÞ%Ø´¨dºç©vDC;ËÎ¯]ðŒ»j7šõö²Wò
wæŸ7`­¾Fé£õùìÂq~r5þâï½Ö“[üâŠK3*¤M/´ü˜hzmâýœúx=\ˆÔ`×æè‚Y-’Ç]éS¹}»åci°¶/æ†³üVOâQ^NÀùÎ>ÇÞ"©¬¦séÂn,){„×TëË&,ÏCÏ†o¶›¦ximÈ²u_¹U†^a­õÄ>Ü¤¶è‡ôo@Ä7 Ž¹ÕƒY•£…þGyÎ
%‚!ÌI5¥}?ìÞ™ <<çõò¡bõôâjJÍàéuÄª©T÷5ÑDŸ¢oªžHÆ›¢Y1^¦0zå!P¸UŠvH  ÇÓ<³ÎF¤e'¤g¢ÒˆÚÁ+9àkxgq'rÇ´I¶P2!ñ#ÁS’„ÂŽá˜Y$bd%£²«[B×ŠcŒl±è~`z'"KÅÃ¤WY¶SæŒQ6_:hãUzïðõLwký&Éìýƒpfaéñ.–h¡XŒ¬íMë$NV5¥ééåk}ˆg¡]–a@3Õ.f¤f£ÔPMñùº§”ñJû2êXY»e;YÂºè¥ðÁìƒ„ûnÎÍÑGxM4EbÜbnÏHòS ›¿âÉ’Ú‡ÿÌÑòP‡ÈD½¼uC°ga9g\‚õðš{ Ÿ~€ä>æ
TêÒ¦÷qóŽÃI8—¿Ü.§¹B ™ŸÍƒš–<	ATjƒõªãwç,^QäÀvˆåw™œü¬wÆWj;ÛZ¤CöTg_µ,I-ºm›	Û˜*«ý$©ÑÅq¼[À8„ÄÕŠDþ< …Ú#7­ë ÌÙsÉQˆýJ3Ëß-Fÿn¿¡ºÔÏû®ƒÂê »ìEöË=‡½>ç•¾¯€2Ç†â^Á­W[P¾ÛX¶¨üÆËìµä”]ŠŽ×'×‚§ó°·ß#±‘U_]zZ¯ú©Š'Ž¡síobÎø5~à²»¹h(L½ÏxybŠq5!n×y1`x˜ 8¦ ÉHéP9#Ò‡—““7ò—nzŽt´NÜ•‚â‚Ø&[Oþ}Ô‹—ƒ.™TÝû²mZµ”];–—>÷f›Ÿžˆ}TÔ¢°“1KX{¦b¶ƒØp£Ið'×‡Y©kuÐ"x/©x˜3CE(äj8N¿¿e¹&Õ„Ý)Äæ%Eh[èÞé/º|,´/Û•œÖ™ßF<¿µûB	ÙD²“ç‰»Wùª;«º:ž>=ÁÍîÜ›‚²“#wL¥ë|²RãLy¡LT´ÔÃ?'«ñ\²ë‚ì`PZ_5_íŒ½BÍ:™×ƒ¨¨ÝŸ[Â|Ð›ñÂ}²õTŽy_×pš¡	‹r¹ßtÁUûº@•kâ¤ëóK®ôt%Ž€&ô…Çj™¼Ã VQçhµh)~f~#]Õ6q×Ê:+¤­×á•­Ç«™·­Õ1'³X9p	MÁ#0³?UqCPðÌË(—]¶[v€¼Gµ”Grc ëU3€»Á£X¶x G@IƒIêÓïqÙáëRšiG„™­‚>Tw [ÉÞ™«½"·àê‹E3¹Y[²³áÀŽ~û¯…ø_*A£¾†s«¹¨Œ[EwtíýÝÁÔßö|úGžûD»#>µ$þMf/×
ù7Àön‰Tï7qeÝY×h/)E!raü÷E?8Ó¤ \7_þò8ŸÀ´'’Gµë]OªÔ©Aº,a¬–~¸´"•C,Tss|í¼÷E2ñg8ñTt€çÛÉˆ-õ>·[ï ¶bR¾l^qràI¶y£*)¹pA=53wúN\2`’¡Ú&Ø¿X%Z·4†j˜f„F`%Åy2šUpÐ©;:3§64œJš›ƒUi}ÙO,šL-úw’r;Ÿxïë`V n¥¿x ¾‡v>™g¯æË“Ä†¡ÈöhŠ¨¿‹iý…¢gÔ³—E£ëÄ¦êš*®¯²‚å2—ð\"w-k/˜ãŠû&Ä³ïàëDðv2‰'ŸD…¿</¹\h6z}Û“÷úˆœ§ž¾ÌßÉèõÎëG
:r¬˜±çLÐ€R©bé‹ÞTT›—NwÙþ«ÌE)Wv©ëÜcò=ðšgn%µaBWEop€ÊPîoðé¹gä<>b& `<­[Rá*BEÝ*9bÔ™&cÛ,)¦P0´±`TßÏ*Ë¤ÿ¡>±â¼³8Z¥†#*jËRÚ± Ž´†Fé•ÎrÅ.Þ¾‚ðæ_Gq‡[1›ûøe¶Ð²ÚÏL~—s±Ôÿw$ˆìófÕ†à#Z[ŒBd'¶›¦S€iíñ·¬ŽñWW—Î˜©”Aøf46ôÛÜ"ö¡‰žám“‹±iŸ4¬×n5#"trJŠ"žÏè`~>„ô.¢wÎ[ýþ_l½&'‰ìR|íîû%qÄ
¢³q”zX>íÂZhû¶@`G™ßˆ?!Ú^EÉë‘»L§GkëÏEZþ¡2'Xtž¶ìGp—+„”ò«ÏiOhÐ´59YŒüâcÒÂ])ušïcÆÁ£éòZóá´tÏšxÌðj·õ(JŠ²”=Tg‚/ö*½•KQ¥ªß42ÜÒvHíÄÎžÊÄ)„ÿBHóß`‚Sv!¤C,™f-?ç¥Ó=8|¦åî?hÒBmÞüééÂc+&DÞ¼?ÐšuÑ‘O(`§LËç*kÔ?'xrßÃà¸‡[¹ðõTã	)Š›¨êd9÷ùZÌ¨×T#ÊÉÀ¤:fåbä‡b
wè³sþì¹²™É°ú…óœÜ;|Ï«<,¥N[ÙF‹ù¦ŠÆ-uä&]Äøª'˜‡Qí,«õvÙÊ©zàÝÞvÔ”b«@¼j|‘nv¯z·J--ìÔ.+áô5çáÍáÍ7`¶O/üÓÇµiÐc)í’\&Ï²ãp2‹>²íø¢&%ÿ>$ô‡Í‡*37}^C;IÞŠ›LªªùJ©m	§!ÈÝË×¾vfCV}Ñ"”ÖFZBFé„IÎêüÏÐ¶…$K´û.qª*Ð?üÁÉO/XD‰Ø9&Á&q¬œ‰©XÆtÓ¨ïE¶ø‘k}˜§iÐ¾ÄóüÃ†(·nK˜{„ëÜpúIGƒ&hY¯uœÖA‚¦þ>Dnæ4ôá„SglˆÚ{1: `'éœ`-Á%5UkyáKÓìv ‚3’ÎQY·âŸ#z
•´p…d¼í'ò`\ö†[Û~[ÏXO¿ Á`SÕxÝ¼Œ‘¯ÿ¬A]êñ¬]„vyòŠü1ù}`êYIµÑœ¥;Ãµ+.TbìÕ1¾Ïm”<¤Gù (ç·§yº›•HÔy}ñ©gæÃª€ÀEÑ…ÞW;Ç+ðâB‡ýë?c†bô®<Ïq>JIaIN{´ä2Áˆš„!áqªÊ³8$ŒÞÿ¶7ÚÂÇnb1qm{	€›#‡Óe²ë
ïKá[ÑUõà“I[~0Êézw )QÜ,¦,–½E‹0|OÑ“QfÈ?Rúï`Æï…Íµ¡ëòŽˆƒÝ5o¿žWë$¥}ìAÊÒQ·~ÓU@x¼ŸðÌ8óîxÌ ~k¤ÆWB7§¾æ(ªœ`e¡Dª,¸]¡Te÷nQèûóFÙ›±KÖ¨³	êi­ì„€qÿ$§wèL£ƒJ µåoò¦ýç…ËF¨âýí^™seD–Å„x1˜týŸ‹	ÇrW\IÅáC×3|^GHEÎ ô¥á"ªjïðß¶öÀ(9ÅÉ~Ž¨žOIoó¡i±ŠaCØ(¿¦kN¨*é0pÄªˆ@x×»&ÍpÈ“¡žßd¶[™xlÜ×`†"hQS5ŽøÏX}£•…A¸u:ÐŠbŸMJ]£?wFpòFÑàòènël¿Ç+äøEïÊGÁm£†mÓÅpaHú¡òGÊ[HµJ+4÷¼?+H}émÇ%Å¹~d:pqŸQÖ¦vý×õ^j:m˜¤óËK…ôcióUÞrè,ˆ
¹ˆŽLü¿‰)	ÿ=¸¹½xtÉÚ÷†þ¤sÚ!Il¯EÅ$ˆJñ´¶íþÑhjI“ohŽüo3Ïggý8 U)Éf/r{‡N/W‡AÉµÊ\ÅkÊ·€)qDm·Ä'¤ù‚!pV«£ÿ®¶_09Ÿ*Ÿ¨S+=-•w#Ý”®)u–@TÓ7Ø5oÆŽ
X›H
€,7Ê+6 pou¢ô1<ÍÕÐ}ñ:ØÂv‹ÇõËGÎÓÙe8î±Ô"ý¤.Á.˜ÑÁ \d°tš¶;¬?Ê%®9-È„Ú§¥%ä`{4ÊQÝ”åGÏ;“-ƒž
»ƒ½Í·èw/yk°ô»=!Û
Ù8ë@†kÆyé™bùaòÂÒZNÅRfØÙ%Øª9‚F¨Ä±Ø	8¾/·ê3ÑÈIHiò§r4ß#‡úœ-i.(V³)_alÉÊÀ¥²ö	KüòÇiÚ(³pë]Adxx¼?§Y§·ýû¶Ü1°þziÉU/‹îQï÷ý%° ìPÏ¹ø¹ÞvQ±XwT^ GÒ@;rs¹„¶é2»rñ×ðj‹ÈoƒŸùïe:æ@’—)¡ézµ­†¤1Z­¯ÁƒÄ½«Ønð®^Öïà‘uËêed¶Ÿ<…üym%¦ÐTDy>sAnü¬ó!—vï?¾fØK“ÅzÄu`®ÞP b¥”û¦·e¿	$K o£åSpkl?,'ZÃO–X!DG¥†%›þé)h9«Z1iK†túØß¼0l2fŒÙåDOÞ–lµlõXAÈÈ6ÔìGÛ—ÿé§(]÷aÎè'zÿKA8¿+Úv{ éGÅÎè»ðËÒš„a@r%€ É¹|pÞHžîT4ö‰öVPEŠ;Sø¢S-ñ*“×	»éHST‘Ìø_ôJFåý5&@ÓWØ2-ÄRrš½GG|Þ9² ²u˜!V¾;«úgLÌiö!Þæ~•{G°ï+é”™žùÏ’Otð‰yãº˜æ½Þù·;Ÿ´ØÝqï×H¢'ÑMòF7«yª†VD2ék|8E•YÕ"ê²ÌÝ‘uH2ÖçÂÆc¦Z þ‹(íœùš‚9Ï0Ù]Ì¹6ÜxîBœ?‰KI¡‡*²4ò#æF†©SÄ?tåpä¡T}â-Ž€Úo=Ý®¢òi‹¸ åÀ;ŸÿA4i*Kè*pŒ™}>ôùÚ‚Ææ·)á6þ7Þ«Ë$rËB÷ºËlñ…Ûé±<k!‹v¥â]!ªMüÚÅ›f‡äüê”Yœuì÷Ì´¬)q’‰%ÿ3‡mER.ú˜þ]n†¦~0¼øé	…8\É	Q»neA¤h=JäÂ%Ä‚Xï<º@äqº;xŽüÉI5ÜæÏSMÈø1cžŠ¹ÔÜíÚ›Õ“ÆÍáA¦Ð±E_â1*Ø‡fàÚU$¼ Ê°†Õb1*º(YäÏé!ôÞ Ò‚imv«9w™ïCigÀÂ„É!™_]‰ŠÏóOŠ@]Õ0TAZúP	R'¨ø¸GzÐÒF—ŸÔ7@Ú‰y#(*Üé+ˆ,ú™\X¶ZãÓã4„(3¦J61®‰/í™hw¢óGÃ™‡¼‚½ºßÙ0É½r—á¹ÅPi1þ‹¬Ósòe8;%N^©Ý°ÿþ@ÂÑÎ&¡Ç®´^ˆ§–±¡¼,~Q‚±·2×ª;{Qnœ£\=(*t'æK¡£€2ù"úûuÍ‡!×æäV´uhÓ?Ðª;ëº¥ÿä¥‡†¤#Õà¾Àš½ÐËíIcâÛ†S‡(Ã„Î]}hÆÖ³¡?%6«”‹/ëWºÇ§ìU~Òx·`ÅÛÏÔñ„Y¡¸Ÿ²…{¹+SäŸ[ŠÁÖn÷ÑÊ|+¶{aæ¿›«|E_14¯?Œ3Æ9a†tš™Õ–ÚÊhè]Øâ$WÌa…s	S#Xè• Y0ÛºJk]-¸$c9ÚlFJ~©Ë÷= |˜ÚfôŸ)Fç.ï´?¹íìŽ2â–ØwÛ€ùs¶‰Ÿc’5
6?Ò¢DƒƒN9>»|Ó,—¶Í&#ûŸ«¾MÇ©™mP{±‡}:ªŽZmÞ§¡¶±­á<êææ=eá`4dUáEyª=ŒÜúš&µ¸ûÝ¸SÓ-ÐJÅ‡™‰=õDˆ¦ÌC§¨~=ùw9S§mzÍª‹bqõt}³-¯„ç%N·)2½OCBÜÏl0´¯ „-Š‚ßÄ×õ¥èšŸ¹àÏÁ„ò§!UÂÃZ‚WAÚŸ­…;˜iF:’N ˜ýêKöˆè‚CŠ>d-ÚcÏ-ŒJ/N4ûÓêîA%3ê€v<'I¢Ê½½2i õæ\‘¿Y2Ó“Ä}°@ämA ×Ï5ñ‚Œþª¾°‚ ¼Œ´á+ª›Œî>H¹+q£ÀGwn?øbRh0q[†ÎßbõË”üÞ–F}ÆÆ0µä9'*$LÉxöwèf±#kYdŠ#á¬Ä+f\s¢çj3i[#'û5Líd­Å`AÆ;ž`k»‹Fòfü€©” RÁÇÁÐŽEûuCû@‹à	y/0F<C›Ø­ª$nÃ;h
Ãå÷z È’ÿÖ©ŠºuJE¶TV}Q¨Ï82®<7À¸‹)ßõöÀÑÍ‰:|5}êÍûƒÔ•¶Y „©ÄYüêKÕ#@Šx¥¶÷gÂ¹Í^=1CfÞ3“ÂªÛgœ¡ÆõGe«}.ë×ñ$ ÇÉÐ‚#ÙUúC¢²Æ-LçÏð‡öSu$ÃÚbô{éð¼t.g¤,´6âUKÍ<ÛTX~ïøþué
Ñ&˜=½gím]sƒ(6÷	@Ãýdµ@Î°dž–Ñåóy¾zU¾Hîà,$Pª\èÔ‚J¢îfíój*Uz·VÏxÙŽ*züÁxÎÃZÖT°çŽkžèmIšíÔ¹š€P*uaýVNõbrW¨ïo%`a„K"NLÜèÚ}hÉÎ™ÓbµºRÅ•„ “îFßî0»Ï½Ÿ— L ã(ë_	(TýSÜÑul$=“-Ü1ÒÞÈ[¡•×œ!¿Rì?–µè¼ÓÛ´Œ;´>©­_Vì;åø¢ÿa^sÉjáxY~‰
Ê'*A;Õ¹0N]²£">ªù‘Wý 0Æú‡-K8$Ã|ß°èÓ,±Ö(Üªïíê´îT÷We¹ÙÐ‹Ç«¿4åãX0Wö÷¦;À`GNÁ¤"Á»Y´ú$^þÃ4Ò­d‰çôŠW”ºoUnxgØŠU0%åòÅs‰t›ÿW¿ß£§˜ÀV€SƒbEgRÜ‹‚GÙÿp—b.øŽ]/K“ëµe9NSF–ªÉØ¶÷OÕœÿÐ¥Ÿ}ŽLìŒ‹cMÿúfëÎ‘|´£ßžÙæ2ˆ<£ÀQ2>~íØo'¬Î¶G´òÈÍúWv§Hìó¬ouSo–ùÚd3Lª’ÒhÊ,ã66µÉÛj%Ì¿¹nþW¼xp.µÜžÐÔÍñ±/_×gÒÎN¢;î²_yc¬/ûY@ûNN7bØš†jà ÷Ã­ýž¨¼)È¬a(Ã8WZ AÜ÷ñ	¶œ ™‘³Ð5À¦˜C€_³©·È½tëÿáØÔ%±ÍžÛ<ƒ9)Í5Íó,°„ç£Ë«3áéÿ«»UcÊÕW?nÁI¦Izš:1”–Q¥­lŸn)$‰óCƒ»´IÇt¢‰¹0½æ^-ÑJ¢¬âËOXýzÔÓ—8Jdöf7Õ 9ö F}gÕ-làÎGÃÝõ¨²X.È.— ™xw#¼'@³óý•þ»-™ÌÛw·5Í)ÐT‘àÁyENô
niP¯õX\‰”ãLÅ!°ô“ŠÐçÒ˜´r0l^r¡¼Ðý*or©Bì~¶Z"Ö\ÛnQè4¢Ð‹YÙ$Z¡²#e$å‚J7Ä5ÊË›\éòü'³•¶ë	_6ªŒÜ»^CìÔ}—9ósö#áÊìnß½îú£Ç  ½ý± ƒœ£’ÃíœÕfè›’ µ¹û%ãeBZF.Ù¿ûƒg®çãèbaébºÙ™ì-ss‘ž6ŠA…šGöÕÅV~B7èØ gYq3‹õ€Ø®ÄpEàD³á(KŒgœ~µÝß7¯4-Ð‚kyI&ÙŒN¾­yÞ§‚`y½7aÁt²òÃÀú?|ÖÃ±D²Ixwåd2Šâ7/¼«°Ä·qæ]e3ufrj+lº‡Lÿw`„äÌ°)cpë`äù†œÄá!•ºR£´Ò¼Ò.IV“T<m´vµ?¬qý>c7R{¹KS³U€¢¤¾ ,òÊ^çza•»ÖÊ˜Ï° Û8»§§i)ÿa¸~O±	º‹ðêaÉËy›YWy>9.“º0Ç=½¾’’Tozƒ"ÐáÎG2óûZGv“ëfbŽhåÒóÜ}[Ù’Ü’hCÞ\éÕáÃÝ›'nkÙ®©º%Ê¿0Û§dp `&vEhªJ¼ðæPvOv¾÷<Ý;äÚðºJããÛé®›­x[û8M|Äõx¥ü=¸ƒLs7Åno#»ØU>D—åvŠ›²rk\HÄN™àÆ¹1ªGo…x¹0»@ˆÌ AÊ±‹õóéÇ ˆ/³mƒI1Ñ©^‚–¼þøtR|&ö•µ@Žsáö5iÉ¤ƒý`³¯ºi‘‹$š í¡k†Ìð[­#j´ì­›«ç„t’ÚpÉóºƒø=UnJG%j‹JŠo°à(žûc ùßVeU¸€ß†ä¤0³Xy v>õQ³ò@øQc½#º˜‡GJ¸x/I.g_•¦ýÎèE¼1Ìsq—êôå	 =ü˜é"w{q#(ô&ÑwjìÔJ2¶€IÌØhªŠºŠfYa\7x÷ß?ŒhsþÇª{ »JñìË-V™ZgE£RHõ«®àZŠ[|0Bå’St¼A³ÿj!?Œ`9™M±<VŠØ½ÏY/Hgˆ¼ÑË
5+Ó¸ Qi}º~2JÉÜ4£cßëƒëU6ß± ò€ù«>^)
\P,tÁâŠî‚Ÿ¿]Ç° ØÒÅØóí­Œd³«ÏÈ 'Âž¯'1‘m•[xwÿbrºÆ¶ÔÄQ÷¸4ü6­ÀÂÑ‰Ð €~ qÀºú¢¯…£i´øÌíÒsùÝ¦¾íÁŒ¾ß,q»&Œ|¼æ;¹ü>Øÿëß§½ÇéÅ	Ê0T%-ÇAÔ2Öæ¼%Êþx#Ak‚E	ÓØ¹k·ú"$
@œYº>Ä|8ºFcÊfÈÞc4üfš|Œ2,÷P6!@ójËd"MX©zx qw­ŠSpé]A¿l‚o8PÒÍrüÐåµ’6ò|ÛÉNFvóÙÏêk$qT¨TÔIMLuIA>´BÓRäîÜqÅšO:Ó;¶\ÓSc‹ÈPáó’TùÃ¿#¿ÔÄðBLTåô5Ynƒ#kmiñRÚ>|ßùê§US`5›©o¸¬¦Š`Ý6ME¯w< QG¼¤Ï1s¦•Hè2üàmªÉ¸¦N¤>G•ù›%ôöf^#W	‰ò‹ÉÂöÕ-/•Ú®µç¹ã{3jAÊDñ¤\œ|‡Ub $}dÙm”wÚ„ZaX9øý?öQk9›[ºÀ½…™Å¼/µlñ›¯£ÉÚ³¯/°ZáLD(Ý§+HÌó`»êæËj•,¬_§Ga
)ðO«DÛÿw#õ%¯¾#VC¹Lâ±ÀTñáM¿-YF¦kñÄÂ÷gÐEsÁÈ÷? XÚ¯Ñp¯™ˆ–¸Åòu&’KkrG³NÆšêWn@}Õñk·(Ê²þL‡âT,ÃkáÙ¬‰5ñNÐéú"2™¸»ÔúµÃ9Ö!$CpV-^UfÝ:A\R''êò|ˆÙ>£$“¯µcl„¡}Šo¦â@]¦ žê–Ùprù|aàŒÕ½—#éÚyQô(R5fÙ.{Û›Ìz€L«Ž˜Q#P¦™hŠJ GJKw>FõÆàoú™0=»; Z—Ž£Ó¿/k ž®Ûà«Å4jL°®8LQ4,aÇ7Ü¸|ò»÷:µQ/1@Y¤Çi¡	¿”<†tØ`{+|ë³Ž†2}¤&$ŸÄÖÅx»Fó-ÊÀÄ¨áú1ÜÐÐ³™í¯íßqI`}ÃDOõBßz¼†îhSÚÿg¸Öê¼ra%’?õ£ÑJ2RÚ$up9?ƒïëO¯íÙÎî]cGIÍ‹Ÿ¨ç/&>iÝû/ü[·Ù™¹  ÆèÝ°c„Öî½ÂB«?ÅM±ÿƒ³³ŸâÞ=¿én7<¬ôˆïª¦ÛJìÕqªéëÁörø8H5EÙ‘‰IS¬aÙÇïOÅjG°Ñ'¸Ê¼È5× œŸ€e__v\¬Vy¶ü{Ê(¿À¹iI(æn¥ò>Œlóíç™¾I0«·ÍÎúØ æP©ÈYM;PPæ×Ñ¤¡ òx³èmtHð©X@«eŠ¸èí87’ñíè˜š:Gíæ6Ï¾t^aW‰=™VÚ?¥oÆ€ü‚/*N¶‡Š¤c¾Ÿ^Q(‘öéP®Ì´0—S1¼Fe>t¬;Ç¡¤7ÔzG¥W¿ð.tBãàU	¤—H¼Pª£)–ˆ
	 ƒ°#àoTT¨'6Ð‹®ê0ˆ»Ï‚DÑòµëHYÌ½;
²ô©ì#èýìß!Í9|È¥û’ôïÖ¶nóFÁ6qÅ­,û©œp¤ÈHrTÃ\>ûò|¿X€ØD{ÓPyf\VÞm5°5ÊÂ,ŠÜÅ8á`çÞüG–fN\à…ÜÌÎ qå”Ú&ªáîÒîžµëÐý$‹ £™^;@ºm¤eªVÊ~gÑ¸Ì¡2Ñ«Ì<±ÐttTÝ<r–)ÅFjVø©™²-¡J¡z´Ï„9K­F¯¢ï™<¬d¡IS×õ½JÏº¯Ž|ð”ðqå¼¤þ6Ñß“Z†Ž®ÌÅž©fAÂƒó4wµ±&À>Ñ¤5Ãü-‚nf@¸¸ýÍ†5“ÑXâN<eä®²É\Ö5m;íü<…þýÌ¿ Ý8ÖN–Ï'«•¤ŽÕ~êÃ¹ne¿>ª}x¦ÓÉ²ÕÎ·&þ¹‡BíïíE!æyÐÌ¼ûõ˜äQ¶c|œû3ºÁ®ípyR~e>²³Ù—Y'G8ÂÅÁqR#‹ãúé-.B—ñçúòö´Bñß.Ñ¯•šüªe2”Â¿_{äÛúÍRqPV½eÅÌ¶!Èä„¢GƒðpVìÍÁ„¯öð`Vgà¼z6ÎÒýÝ¾¨°È®-RÊÅ™Žgfóh—;y¦@`ï,˜´~¼ì¼ü70îÏ´vxÛ¥>¸—Ì½ìù,'1“Ófôé~ðÉp¹ãáóa>E–K¶S…Óï5ž·dbèÂ¢¥OÙK—cŸtªðõä×"Z<Äö¸—òr›ÖïÆS†;˜%êÛCëž"nÎ«V«NÁ«4Öµ ù–Xæ7«j‡#³My!Š™HÉ>öœÀ­oÏl?wõ¢´’y ŽoîÇìþHN}¯êÊáùÀŽå*pkfœô—ã‚\mž3ÈVv¦¸Yï’é*Â¯›kÁÎ/oÎ”=<–0•¸Î·¯@/øÎIº6©ÿ†Ø¨(³£,h]Š-]xEy62áy(øÚÝ‡¤Ð~²wGI¡_G£J'¤§
WÍÇXíj;p<±Õ‹W§_Œ4éj‹ç¬õså-3^fl@è¯š±…àIyýEqpòòsµß8)ZãÆÃ†¢²ÅV­]:`QÍ¢imR?eãXwè7à£à1‡¡®3û–…]èßž¬m±MxG¼mCøúµÄ9ÒÙê›bŽ¿®¨²Ù<ðð(øs¦EÐá(¯Òa©½u|ä /ÓTÊçbÏŸ±NÜÝ^e¿>½1kÈÐ¬KS‚%J\£zÊ©ÂþÆTè>ê-eA?ËBãJ„Ë~¡€ÿ:H“r¹Ä’= ø±URa¸£¿ú‘®Y68^ãÚwh9èZÞd¼€{EÝžuÞ%7'…rV§Áñ2§aò×2*óG8Á$ÆB[Ëå÷§iIàZi0”v	†Qs³EÎ}„
´àòU¼­e`ù?Ù0M>Ø¾‰õZv„™^°é3â@þ[ûb"ÿ‹ï{Í]kÌ­é!S×‡Ù—MÈþŒeZrÿ«–r6n@z}³+§qeò¥WzÎ/,"Ë¯ž]à¯
 z6ˆqii„ jQsš™ïÉ…1ô`î¬j,ÕÃAK!‘•6Ý¦¹E_•Nžà=#rNiÐ¼<q@ju“	0›\"ÐãæbÑ<¤Øá}/‹å/ïm³üÑa'þVçÛ%yCÍ‚Þß´¼ûèfÓgø¡ê¹lÐ8€§Ÿ×Yn,9‚eG 4É¿<)4Ï‹[$`@©;ÅÿÂ²€QKêãÑÅûéc¹kÉ¬ŸŠ¯Špôû˜¸)âmÈh&«hŒ¸ý$SÞwÛW*ˆânYSžÊæLà£¥D[b8_~g:‰Úî#*Œº¯Êköm7?î4¢+Mtÿ;ƒìÁg-YØŒ¢´ïxÑª¨å›þX?‚y|¡É!œY?LÏ.dâ¦´Ðí¶Ñÿ5™F×d‚Yjòã¬$U—+Çƒ¤°Ü	M½0oZâK=H¥É¦V—=n¤·`EHÄiíx6òWŸ©OJ¯‚hA=×c]ý.v{4òV¦5kŠ¯ÿ»;l¾Yç‘Íq¹U6v\3 CŽÊ„€ºÒ:#ži2…ÙùñûÝœîï?ÖNRíà$SVZ
8G±4K_.ù`u“}îÓ#Rv˜ña•KŒØÿ|Ÿ–Ú›
êÄ¯ËHf¤aE¿f2FFIŸÓNv-_âgYÅÏDBýa	Â€rOÝê¶î“Âü‹)ü¸>,3’×FË²r´ß$a¶±w«þˆiÉ›»ú¿š³rJÏ	Îj+æ˜ðc$§NÐyš|˜!ë¤Í¨*:P¹sÙF¯\ ¾eÐE oé$
È»äW<jàÕ66¾L†×zw±Ÿq/*…Ói ¤2Àš©n$’…4¾v‚å<Œ
ÿõlòúý˜Œ]*þ¼ûB`ê+7Â^Ú8ÎÆ½gä›¢ÓIL]$³bá1‘á3ö|ÒwH«ñ5äÚÚ@ç‰DÔìÙ‡ÌËhw@c‹¹J°T¥‰'ô* ºu3Q®6®":G’¯
Ö¥á.¾¡4ÀÆÐì#¤ýo{‹	Š0Ïs^(úr<…	4ý¼‹ibVZ\¨*¥gûo1‘9g’Œªu%žA €"$DqŽé:MøÑŒ©Î_‚öÀx’ »;Ð¼|"_åšÛn½hUÜÂœ†žtÇó¹±¸ULsîKu¾¨g =LÓú,Íü×oÎÑ9ŠWÇß1`Â£(…4îqÒ<Xƒ;H¶WŸÁ[ÇÝwÚ¦|».)&ÔìYº±mH|Öá6jªÅÏV+ chG)m¶À±ø’Ÿ³'¶÷éGd°$_¼›d=mT¶c,/\é;ªð¦—²@¶L­^›Â((:ÍVr­„ìæó(aIZ·zA+¤³•{4.7­¨*¥¦5”‹šU,=Ó˜Ó«UüŒÚ*¿éRNüÆ ÊA|€Í'seÌÏ§gBÐÕ<ÙA¨B¿F½P”Ç/>ƒ:Ê{u®	¥¹a™Cåü£ãR)
ßbˆDëMy>ŠM¸²¤-t±î ¤ðÉ Ø\78ù‚Ý·ä	E&DMŠnVq)žU­þ@ÿ… ’~¡%ëíéÂr—ž3’¯DWV °‚‚:˜ÏéÅ:f~Î Ãñ…pÑñ:ô /3÷¬ŠÞÜÉ¯ƒô:ä^&rØ¿&ƒqhÜv¯çZ CþNÂNnŽx‚û´šc™w‡gôÇ€%ÃïE}ãïB›_¥t´V”g~é÷˜²ƒÅ!Y ÿ>ÍÉbB.›ªÚõš»B¸}æ|k
1ÌB/kžˆ8Ý¦‡†É@ðõå©#‘Wád5’ïqŠ/ø>Ãùj?>7¦?º}ŒeqºœUËu*'RšôÜFýbÿNôÈ¯_ŠrjCnoµu˜Ë«–‰™SÜDDj•÷¿.F€ötÆM†(<ÞûK¿uºò‹m³?ŒÄ¾ïÓ6Æ:¥-:ì
l¸÷rcµ•¨ü•€Ïõ,ÚeIP–^ÅO× Ïr%ÀjkI¸ìÕ¸¥Q’¢‚nÔ0uN5ÑÂ¶>›€d)€Ú¹ §ÙAê1ˆnÇ>ð¥÷ï"0ÓÐ¹1.ýšØ>zâ(s²ûZG‹h|ò·Ø+þ7Ÿ¯N¼go™êí>D¦)¼tâaâT¾3`0Èj¥1Åyñd~Ê»Ýðb×ÂÝ	.@eâžÎ®þÆàù¨RÏŸ1k'BäA{âeï 'Ëù
ªÉÔ:œ©ÆÆ‚ŠëwÒ²8`WòýöÿL_·†_.®6ýÒ£)’&þ+tÂ•'‚•©H÷š@¿¢\ã¹¹Fny&é8t“túwÐ£.86Ñƒe	dßÖxZI:—Í\]o¨fËHã{§qO¢)'`z	ã:´6ìÞ€nh‚ŒO‰G¨õYîø:ÄS$Rh4J˜+Û§zýÁé²*ûM˜‡Ý“UþBÙ›"òÖÇÚ>‹ó3à]àwøÑÇ5 ÁP¨î·‡ö«Ï0 ¡ yÂ|ÊŒÞ½ßÝŽˆ™¯šîªGÖjù¨Ù¿IúAžÁüú"¦Â9Òu÷Uý™¾|*²xL¦õ«ðÂÞy6Ÿ(¶•îÑ@ÜêêÁö°•}®ØÝ´Ú”þõx0ÐKahÆ/ØÑÖ_¹vJ7›X)lªœJs¿“š[¶|J7\PbºgŸ„Nü»V››GÕÉÝ•ÂçÊÔNH*þsvÝÝŽ§&$Ql`íx]ƒÉ&D¢½a oÞJ	g°ú€ ŸôQjW–²V³‡„Â½ftEu4™0­á¤!Ûc,®J#ÈŠªg®i&Sú/{V„BdýÍ´Gv‹üÞKÖ¦¬‡+U‘úc`N®ã}£“ô Î*`ŽæÄ[§}ºYD¾øö-KÈdiåØ	âNm8>m]õmí/XÕEÄ…L,¼êä!÷Ãta¹bhct¿¨0~L!r¸«oBÃ!ž<§`êm (*´ÌS’ÄÈÁë²7’@¨Ë¾1"Znôô¨*ß¿1›?$W–V®nÊe¶R1’l`ÍŸ™¬Ó	ÀÒH†²-äQ™dÇÐß–Yø@šäS&tØ;ÀÐ[ÇMõ¶‚=‚r.å1ìDzJZ\C¼&ñsåÙ‹94ÔƒØüb>ˆ£ïè?8·MÊoŠ93³ bÌ¿cÒ E‘^í"wÎÔVÞØxÇóýé¾J[y ïjär‰¿—ì^.r¸ÑXt5	Î6‰Kí.Xo7¦Ý^¯'BµS0ú&¶kûµÄž^R>“­½ÿNˆ8ÏÓ)Ì—c%ú¥a1©çâØ“Ó… ¡…u:ë™…0çÌ¥RÆœmY€5O
Ù’wõÓªÏ&Ëšðœ“îf¬^Ì¸Ùœå:ØC‘š¿þ¸FºsÌ§ØÅhu~TëÞ.Æ8ÐˆM	=A˜l÷º°ž2êTQ5ÄmRÍH|–aG9ºi3†-Fl®UcäR£ÝO_ò¤”IÎºÍk‚ºŠ¬¥Žèœ^cä FçsòŸsÂTÚ÷²‹¸´Í}ù*QŸRm!©»Àã_¦:öI8ÀFw{02î%à6FfYl ýsœkü BÔïÞtržó?àB¦Ù›Ê¬‚Ì›ìw³Wr»àiðþ2hù:èC€™Á°Ú<Dòô9Ú¥¢²Ac?”%R(˜›}ß¾nƒP›ØÒêÚ…ß?|Ò3ª=¼Ïq£Æ†—ˆñpy²±G›ùu§ÜÙ¨ïcx‘)Üü@3jô‹ƒ™Ì|¾+4‡¨§X?Ú±Â•x“¸K±9jýŠZf+ûFÖY§µô—‚*ëgºs8òm¡
ÛÆhÃpõäU]ÿŽ¥
µ13<më—eÙ*ÈfbSÓ hêZF”%¢P÷16'_Ð=¸ÄíˆL,Ý–±*§ÃÊˆm•ÛBÀA^.F¢0‰>þt^TÞ‹q÷þÀ°â¥Ú©‘¡p@	 “°'¹©¶ÎÇÍ£W#,˜=7Ðv“‰em#„¡ŸÐtæg^â‹‹2»ÖLj1Ö˜v€xJ(Iß»2°ËÿÐßR°º‹ÁlÂz_ç)Àž+›×{ò¾ü–µ„O¬’¬ ÛÍÛ‚µ¡B“Nzš®ÖìN¿
äµÒîI=¦Äò²uÙ† ] $jçß»§ÒÕCY*¦jíQI“8ßÖc“<&”¯#þ-H5Û ¦5â.óûhã‡¨¥WUÑ1,Sw¾£°lâiøgÿ%²1@¬è”†Ajn4D»1ý0‘„Hn¦PpÍYb6)Y@´ë@{³òöÀáwSß
d<b<ŠLk-£9ÿ
Ó=Äµáå‘c+ˆ°¾p<`C“²Scµ5ÐjY³Šÿô¹}u4™—XÂ'ª+î±—ï!ÕîãÄ“Ú^ØÆMè©àvN‡û‚”qÉ€ý œ÷cT&JG=ètbCÅ9:ÚÛÁÂ®“úíæ’Qî—©ûÑ;¸¯yfî}ºMBÚX´ñ8Pu%tÁ—J"ž³o¿#T‹p]—9î:°"'M¦{Ï æÍtÚ
:AÀ[çëýu6¤ÁÕ|q07‹oÁýu›h³Ö¿`aUC(jˆ
/0Ž¶ åä#'…tû ®0Ïõ<ïß¢È½Ö‹¬XÛžÂ˜ÐÖŽ#ÔšÃž[sŠ–{;g²ù¯¸¬n`hÇKå€	²?ò ij¾±Ïîš'~·„ÔRÁ‘wlb	RS~º^%õ„Šué¾`¤•€4ðÚOùŠe'Š>ó=?¨G6:cã}éž5«?¹7Y·794í±òuµZxÛ‰6ŽjHÑrë_Uä '6	pŸ1åˆü«çÚò*JhHÂ
g<êé(Bì¡‹Áê¦’…©ÉÃ‚îØ©
tªBv”œLÑXã/°T?Kª·ç$§Gˆµ>µAšÐêKá ÌóøÁ§}"×›Í®Ÿ‚ó¼²éõÖ€Ü]xÎxÞ¨)c¨,ßÁ½{ÜÄ&/7Œ|…kæ%=0Z¤ðTEz³ÙÎâ†5N-åáeÆ°þ ?dTéŠŸ­ó“ûŸ95¹@&)"ð¾RÚEY³¥¯£ÖvüvñêÛÔŸn@¹(ðàý@·vPs«àé‚¥;˜%ußÝ±Ùíõ¢)%ÑÆÀäA°¸“—e›¥°aäˆäœ}È³ë"I=°8yÃ[üÎžðfA{ƒŠÃÑÙèænüD²ß™ó.5ó;j:/½0 ‰ùÈâo}ìQZâœ‘LÆž†oDí­³†G`6Q¸Ã•×‘„4{v*ÜÊ˜¢)‚8óëòñ‰?e4ôüÌ]±8'n†Þ2ÀK¡}’e‹ó43Ñ/>6zÑ}˜,EÕ—)A1yÆà)RùEv}æÇáOýÎK×[Û2Xß ©4âÒ¨ý¿‘jK7oA…‡a!‡Á»^ÊØÒýÄÖÝîª¢Swâ4‘§.+«ý“8×–L†tÐÍý´m©šGvßF«aÞ!kqßR©ê…»iú°Î`šw ½5Kæµò÷÷û}Ñôá`=èLöEb vÐÁŒtÛ'I/dàK³OºD
 IÒ†‘²èoÊøíUJ£ˆè…iŠRÕ‚3W$Ñdõ]ÿÑÆ–»„Jn s#œú—'Ù³ô%®Ž‰Y“óá<Át}­åÒ=¯¥A*ÓyRß)DEÊ)¡ú'J½`ÏQ~ñšæ®3«2@A?-Ë§¾NÂô$R¿£~cå»$c½ÇŒ‰Ì_rØmoÅM´Øn€ãt!Èª(÷¤Œ·×ñs¡“ëâ	,š•ó„[Öà®âªåŽ©õÎDô°³}3McÚÑ•óÖ•Ž#¼­e&—§÷7•¼¶ƒ²!Y@HÿEL.­‘™ËHKñE±4žëlBªù¤,‰ÆÏvxiÌm?v‰vl¬«¥Í‹DexÖùì_ÞBÔXˆËê¶@ÄˆKoÖBµpÝ<ˆôæBQ³à<&¸8‚ÈÈ@Á2LÏ›•KÔ%?œqW‚1Xrùù·\uB_2Æäw;ªµÞqU!€¼,èÿ~ˆÜ`AèP£Ë£€D:“ÿúäE"^€˜Ö*W òz]<Òî¨´M´S§˜ùƒéü£P´^JcvÛC9A¡+}SøÛqšÀðNŠÚPé}.EÙ_ëÑ\v™‡NýÇê-²!Y†Óì˜(ýößùÆ3æÂè:‚Ì§ˆ	ÁÔ¥¾3; Éµ¨ñ2Zýócà‹çºuÇ=öS‚Íe‰¼ƒ]9boÑÎ‚õéc›Ù<:q‰§7$DjhÉF
›ô;A}¾TÝ7Ñ1rûÕÄ@!©cæ;:+dë^ûœ“Hã ÙˆÌI°F;Ø¿?ñ\l} qìzˆC'qè"HRƒÇLäQØüg¿
gùTw¦z¿ ?ÂMHô4ëzˆõ8s$Li1#0%è‹5ÓßfÅÃ¡.¥ä²'6‚›l%° ãËµ~ˆ;ý]Chß}.QTiÚ~Oþ,v!‰; á~_ÏÖ¤Þ ‘ ³CuiÚß˜Ç¿·­4F7@ÓÕíV7@8´ÅÝ¬ýÔƒ5@ÀÌå”—úc?±ØšÖÜÐïåÿVÊrÆ¸Ç$PW!Q$=·Š±E>Ã")ïmù0Y¤`WžþYÈqÄüPV¯ÐMïpyA‘éËzBD¦àµ4g¹¨ð=æÍ:ÇÍï’‘|ÉBc¯dÔTˆÝ˜¿ÁA¼_èq¢ž%vX%¬Ÿ¥w¹î‘ÊlÈ·˜0dBóf€”ŒT¼†ØËõDª¿ÀìIæ´#'h½¢4/"o‡èF*9hNÈÜ(,êèí¿1œE=A'Œ¬áÙMe1TXÏ˜ß°Žç{lÍŠììOÎb—¬)?`ëý8îöÂc	PÖð¿ý!ÐüCuÑ'sÖžbÿ×ÿËÿ_ñëof]-üü_vQ¢h¾ÏéúýÑóýèB¢ žøÙ_½aÉ_ 2®+U’4B”UAÆÒï¶Ž°ïEy|jAg"ZFva'Ç8“¯Õ_ÅÇ¾8ÆaÚîS×cH…®˜MyBc[85r3Ôžl5à±ß×‹s_(Ë.%Ø ¸ä=!£@ºo~–ÚÉ±OZ¨„}D0Àœc5H?„=KáÒM"öXÎLB‹Ýw¡ü¢CÒD0j¥ÆØnÉ _ps…?Þ¿Çž*d[¼Ê^ÖÿÔD“I}±,ÕÔeÊºÒ=Ù%ƒ(!¼9Le¡EYÀ¥­ŸÏ³$ …Ì^òßö,êÔ¾ëžJã‰0	|)\gÖ|Ì	?ìçAÌB´_g¡+eØ1Jåv¼¨ú£ä% p}$¸OhíSîvòP{_8TÒaY¨„PÞY«»ßa[»÷Êt*¨Œü|ïC•`1¥ #'XæÊ]Åö#›ª,v‹áX¬¬ý«{:˜W¦lŽîq#C\Åa]‘+°Ð£Ñ vnPúUÌânº¶.íÅcYF¼1\½ôgþ@2]ª×Å:#´§6cû›…ûö½MÂ þ÷©Þ@§î RIÉaÇ;H.6cgâÓ°3•´µ0‘;K—™àhËá–ˆ%ŠÛµ5ƒáHm‹¡C*£JrºÚˆ¹ò-HTCVÒ>ãæ¸¯úåaµóùóâÂsŸ3 Ó’oCçñìñx¹Þ®3ûö†žhµõøÔøº$ç8 ŒÓ|5ä!†BÖV¢¤`e¿W‘+Ù8´Â7SÊª!#	bmçãU;¸=/å:Pj,/Ÿ}v(¡ÏMé1ò©}*=@<°EPÉêÒ5‘{xÑÕƒ~QMô»çì<,"mrÆQÌW y«8F¬N õiw³“Ì·ÕjèOÕ—hhgçÝ¨!;ÈPøÁåzÇlÃ2˜HÎ¶« ÙSd'ä9Ã³ºpS‘{á7_Ëù´‰çó
oHÏéÊ6gÃ—É›ò¾j'‘¨ƒs†-¹k×nk¬âÍ³CŠjâô5ñ¬J&Ó¤FÈžç…DËz¼{ÒñjÎUèâù:^¯ñäá |öq&€Þ~wà  &å[B˜+g>1pfY¶ãàÂ˜S|›b*ç´Ü´ÌüØf‹†FÉzúTƒÎG.?œoOvÒ%àgjáùR>A?"½ø—¿¦ø”ºù=[dGåÕ)ê‚ê—$/òîsß;gt$áXØjÅÁ’Sr/x‘Ëijµ}Jˆ‚æì³£m‚c­.‹ãy¬Ú›A@µa$2ÔÀ¿ ‹“0Ó6Oca¶p\Q§pI¸±NÓ÷Ä‘sïK~ð•>=3ŸŸïãüYåªf Ø	òlyäX¤õ«w¹¬Äc²nå.¬óøXEÓN½/Äþy¿XŸŸ¬›ˆ…p g(Öv&©Ÿ
»e¨Nk§àgrÁnã¶› ¯í›ÖHùÚŽàxI=*îÈ¦yè¹¢ íþ	!’›óv/Šê¸8UŸÔ»mjz)†¦Òvj¹Ê¥à¿àŒnµ"á¢ü?Nx#ŸÝiu–¸ N2Kÿ	•xœÚý:B¨ÒÉ×÷°ï~\ù1zH/%Õ%-éíl¸ì8OÍóè¹Õ”ª0»€U4o½’ÆæÙ÷¸æVÈŽÖ"ö­³7C.G¥;ª²O]yQÕ"(M¾Î©´JŒ!IÊªÍ ˆ¨e‰1‚	¨Œ–È¡äj^3\’£.„ƒ(æÅ&F©$è{Ù­vZ`„&Žç²‚¦{‡õ“îê™½YžFiôpA·èËûÊ{e¤ÅZj°¼djËÅ¤
oþb œßºp%jWØB1åjWœ@h¢¥kîª²v\§v¼Ä¡° w7O¼
ß©ë©Y8Ôe8ËXbÆ½aêAGWÎ¬ªÓZ¤ößŒÎ©”mÁI¬ uÉBÁLh0Ïñyém›*Hr¨"ÒUébHQ;„o°.ÑÓƒC­UØñ3—peë’1Þ¶toÄ{7î­‘R|Ãÿ…Kà.\NF]rRŠ[?d¯¹ðnnœ‘Ñ= Z7&_7!‘Ò ºdRJÊ®·ZFT[)]ŽHzíÏplAg.>Þ±_ËMŒtïÊpÖØgXœO~@ãXF©ïÌ‹Gh¹ƒŠ\è–ãÜ±óÖjWjæ¡XˆaÐÐÅ3,ôuñÊ)Âäžˆ‘fIó-nâFí)áÊl½&"ËŒÇÆ¡á"Þë|x@k%º]Iýê­,7QVÝŠ‘q¸å½·z¯;©†ëº[jH¾¯ì;½•î¢.!þ#ÚÆ¾éüÒUQ!¾ÄÈLt“^ò ÒýevC0ÜªÜÐ7|hà°—Í«ŸØ»yŽ±·^¸½û"‚	S†^~^Sp*E	1%0V*hK_Â!âÊ+*'ß¨CŸænŒ$É×ÿÖŸÚsƒÂÍd&['ØkÒ¶yCôF…iªü/õL
˜žåG¾,4¶·þuJ{eøìC^®Uý3!zvgš\6¬å¡ ™3.‚ˆ~àñÂÒ\LQxûK FÆ0;Ý5Ä¯§„\‡ÖáóR<jÞµ·E‡d[g¢ ˜[«šJÎÜ4¼’Ö‡sæÕ¶.<“ü£Ènx~}BB
¿àQ-Î¢!×G—‘IÒ|i§9VÄ@‘}ÒÖ-1pÈÚr‰%š:cv†Î]qC¦8âÔŸšyßÎßDk{
+ »ßJ1IDÜìf‡Š’®žÎñTOì <÷ÏµãbíK«—ÚÔZ':(œÈÁ‡,KüI3üC(§±e¼4ÖQÁ¾‡‰ÌU6–ãâR‘3Q¨žÀrÇ.2êp5„C‚™
W‘Æž™?5µ.ÏR9‘ýÏ=È;åÑYÿGÐ… >Ä7Z	¢oµVA{­=à¥Â;ÉŒ¼†C·ãØ›obÐ)ïó7?Z~høQø"c^j#7ÔRI;Ð‘A¿%=“&=ˆjE~…FªÁAêõœnn'äˆù?(ƒÒ—` S’èå õù	&É8±÷š­èO\Sz{Ý¹Ì(Û‘;KhLÔ"¨êÓ B²—N8RßÎtI7ç| ôt#`ë
æ5Ö­ë&kÜ?Ñ~ÊÄF‰t–^Y÷©É”W­¸à_­@v<[õöÑçºÔ¾>eB ]W®âÒð¤Ëý@RBÌa!Û¬Ää5yÍWþ#¬]ó×®
šòšðøE$`Ú4œÍqÓÅ,ªû¯Þ™Ž!e&a†pUgKo}%=Ñ“=jÊÁ?ÿ*@V{aŒ¼³@G¦:X›Ÿ€¤ýjíôeiV2¤…:l	äeyãEE_%š KøÉ«\¢eLjRHîho3&#×ä^eôïl¾&h³÷ ©¬»=hÇsÁÙž€€‘çKðL¬áð¿Ÿeëj<âÁˆw€Á½@éLW1aGîsÑ{­ØBV©âÞvFn/?!áL0óç3èä™±qÍ6!­ýí"nÊþþú‘*šcõZzRÊeŸð–ŸÌ}¦v‡¸Õà˜ÆÌnT%8Q_æT5ôñÚøyÂ[eTñìûÀ(PÊ¢ZvFuU' àõð“ëþn¯Q'“ëÿYÝ“Ôâ+*‚Â…46ˆOÁwœA¡“?êõaÂõ:âŒµ}Õ¹PÍ¶£äøÿCHùª^© ‚þ]¢æ¼‘¶ð$ñ*Œx_owØMQH3uIï@x±ÀéóRÄðÉ.òÕªS,[¼h½íú©Ã—¨íŽzg~fcŒäÏÏÃ´<×8ýÝW?ŽÐªº3òßûëõ(Zmï&¼X”å*6zSoU‘!Ÿ÷Ã‚ø›mü‚IWqÄ+^íîDí›7‰ö{ƒüòI…\üø´ŸãG 	Urö(ä
ƒ–6'"wÿWx\ù6þÚZÝaë»g`Ne‹O‰îúóžïßŽ,•Ï½=ºóæçíß‰Ë$}nàGÁYOÆõh£æs7’J‰«Zm=½ª'tl©ßº—âD¼</&a@\@±¤í;êã3ûiùm“DZH“Ô\€>Ü"`,()ãÈAS¢¢½!joYq¡_ú¨›©ª¤v'æ€få.öú¢ü¦Hµï²g³ƒÐ8·ÛHÄq»¤’Œ¹««à"ñ[RúÐ»ßªlñoÃ¼)Áó¹768œ°ß(S÷mïwßv¢0YJj6¼´u+rÐxC:„ø&.D6LöH±¹UZh“GnË‡¤Ü}+åxÕ2d™‰	”ˆÃÎP@UÖ®s5ÐéÃvÎá©27}›w«ÑKVUÈ† l~%áÔ]ºÉ½p—éÜèGÐÏÒÿRu
%´>}6c£Ž¬‘ÈùIµLºöY®Šî+™g˜iŒÓÒ¾R{÷8*à%FàG‚%ìeAÇÈ¡*¼1ûž¹KÐú^Ÿžc–È.>+\f‡7öÎ9¸±âw²yq_“Î]OkÞqwNý¯‚‡”e„î²®Dÿ™« Â$ô©KAZï‡‚*™öþ[åsCª‹šmYï’Ö36µ;ß„ƒœœH¦ M.q	3Ö¬ýdþ{w~æDÞ)N*ÝGOEà÷JVtâ I]#'­°5¤Î"j¿âÍÅ„º5Î‘é÷%eSh5ÒÐ3r(‘Ç
FãwëÈkÂjÓxž©@9,<{ÖEëÔ‹áŽ€ÑF¿'áÑe~ëùëðífi{'G½t”×>;Aµ°6c–jb%õ¬>ÏëäA6ÿ6ì(…•dÉcÆÚÀ/4‹ø±ñ?ôZ‡neZÿà“qs¼éšAh1€súÍ½ÜêÂÐ-Sp9–ÏÏëØÅìò<‘x\cÕ¸AdCÑxÉCÂœuZŠ¾2¼®Nú³ÈfˆÑ3&iR»ýVûÓ´Ep¬å0cý>FØ¿º¨õ3	QŽ«–Bò»ŸTŽnàònƒ—ÕX7žÚLöU+Å‡ù ‚•—žÂÒÄ1PM(U§â'±Û?ð4Ž„:Û¤NçB(ð]XWü½ßà‰d”>C0¦´»Ò9!Ð¤¨­…‡À|µo·¤ý<ï6®t™Ç2Ê¶#ëü|SRÁXp¢eÿÿ+_8(L CÌÆÈœ>ªË Õy˜úN>ôÚ).–a“dÐ#Í†%vÔ›·}¤–Û«íJ}9ë+Bö5uã¶XØ¯Îe®ÿ™­Ó	Ž¬ò¥­Ó˜C×¸žW&áXÑý¥óªJXî^X‡[ŠFRîQuZ6“×´¨C4ŸŒ™Üáÿ!÷Îû9{˜¥îŠR…þß4/.×¯vîÖ!òIqúvÊ<ù=í£·M“¶òhç¬x\sX+Lú[ 
 $¦¥Mñ ç³ÝÑG“MÝ“W-î© ´îÆðU	»z.a•ûµKÙ·	Í·›wò³Að«Jˆç>6¥;"ë=EõÄ‚¶æçyäÍešIÑ›ÿ–xù÷Èu@óDüªŽEgëD–FÅ%Öq6i¥…ýwÆoËuië‚Œ¿Ú$ØÐ{Ë-ÚRžÓ
9E56ŠQº²Y@¢ %RÐ¦!Õ§Eˆ-ßç˜qlgo¤XÀ1fäHšaê·©;õdû:ò·1¤[@Êåfç,hngÙùù'À¹/»o2(­÷b1Z{ªÓú³¢'ò¾§ùHÞLÂ¦fÑ	  ¯ö(Itk¿nbÙ5—=N¼ô!§ÜÀ'»AÃ•:fñPÖªÐó~ˆ§*=
ó+h1)Ji›Ò¤¼BeÁ ûÐQÍÿL#%é»¨öAÝ)zïÖÑqO5C'œøá!˜éñ^…~w®óYtpÎ0·?n¹¤aü?jÉˆDòÍUÉ0ür»v‹‘+TùñÅêpIR~ÃæÍVŽžèO=Š—=Läå°ÆCÊç/]cô¾À&cae†Èn°CäÇ™OEGWo½Lx·DC²ˆG«ŽSwÍaðñ›æ·ûò·›÷úÐÆ€åuMÃzujì›‰à‘ã5¯ûSk®“ôè‡âÆ.q‘Ü…‘E2Cg6_#-å#š Ž» ¬³š"è8¢á“RÎ$êšCO—+¾ãÂÒCž;ì¸ñó0ßãˆ¥9âÈB¥¿-ðG…ÕHÀGwáˆ9â|JÊ²-H‘òæÇ‹Y@îÜˆê.U?±!K®ï\'$70TB8ï+N§s¢Î8¿½)õˆ–×_àw2¢ÙQ«ÑV„{€l2ÊƒcßtURêá—Ú-x±kŸÒç@V€{}6+¸³ƒ–Š’e_¹Ä¼»‘Q1s×Q"•ú½þ¸îÐ¯uI3)Õ¤‡Äûø;8‡u+[kf¡ÿþçIç…ÈÎŠÿå5ŽôD ¶Í7å2„ÃØÀÅ5§ˆpŽÂŒä,a#UMeEl9ì]ß.ZÍÁŠôQª¡`h®þj0ß’ïŽÝ'çVïKûåÏW3û5fÚÀ"×ÁG3LEµI•¸õQo(ê%\Áqnyœ›O¹0ÀuÉ§vÃ÷ð|·¨3¨Z—ÁR9œ?RÞRoL’S×éÕ+å+x]â.qèYÒ x?é‹BªhG”ÜöbvB6í?1¸¾MLüÙ
Œ¿×jaÚÝ¾cŠ´zû8eÕjLÂ»wC«zbÍì¾ô"Jt_jì”)ƒw—ràíI{PÆ‡_™ð“_$[B·mö›[Øn}u•ášPëœ‘Ÿ÷ *IìMYP–­€“lN^Š1ÝG×ÁvÑà/2–~ƒ%àåõ¤D´ŒrëŒT§òuŽÄ]1(n†’}‹ß¦ì‘ên9µ-¸¡‘,k5®!ŒÌRPŒMtð›æEáúmq©…ýi½eüæ¯Ð-ï!­ô#+ö-so«´Åµ¢otuýJ/µÕ+z+¨Ô¹³©rèAŠ-|Y„ÏËz8ËDW6‹³\‰é êøQ#“0ugÜð -†<Î·&qñÁ–ÛÂ¡0K¸YÒÔDo·íz9^c7£÷¡Ü«rÐ÷«K¿ð¨ú?ùx	B%)l×›ÍN“~!wË¡Ø¸	ü’e€1r²ê>ì¯¦š©É‘O :k_ÝÇêž‚›ù¬Û9£S=þ
…ëc_Eñ8³…Ÿá…l‰¦“ÙyüÒ,x]®ç+þÔHZÔÜdøØ4ªÎmxªvìÀâòÚµº±ÎÍÑkåøöí.ÎÓ‘í‚:ƒVØÅ1¹ŸÅ*ðdÕ‘ŠCþghÿ!¬IOÖˆLõO”,Þµ=¥ý¤GqÊ ³kkò®¡ŽòÁƒŽÌiÁL9}}sO„Sï³E„"Ã
ƒëZÎ¡¸Ú'›?áî,k8-'GˆjÌ÷~üíRÏ
,•ùÀóÒ®^RElB!“§íðu¸áòž—ŸÀˆ»Ó)d#/ÝÈ7HEnôœ_Ê³ëÙþ¬è
¥†*<wEÆÛF&ƒýÕÀ™OÓÙDZÜk$:xÊaªdõú ¶)€‰Âº'ðôXFK›õ®•C’×²åW÷Â`|¯Ö_ÊÁÙ!ÂþEÔÞí÷µ4Wôbß€è.%À¦Lk±¹iñ²zhDîÂå>´ÃÕ5–Ëº_\þzÙmí0þýÄ8èCY•nVTÛ¿a…-ÅL&X3ýŸaÄæÐÐ‰Cb7y‹åHÏÄ^E”îQ°˜fÛåZ‡*òE"7Ã"
KQhÓ–1lê¼³&ü¼ýëTQ®Õ­àyOÜ¨!ætì¦+¤þ×|ÕW®ÄƒPu)_cŸY€Ò,[®¯€fšò„%Fs~0ŠXþS»3›.-=¡¢x ŽZã—$ý²—ÏSˆêt„eêlÕ¢¬ÐK2šžssÔSY©Ña¨©­©øåå_ó°“õâµÒª¤úHë£Õ“¹î˜
qÂ¡$ODsD@âyÔÃ¾\·Õ‹uâ.r2B#„¿¯ˆ¹fcË®lÞ¼§ž‡ÐJoïµ5ÍÜFH‰÷ïbóçè‹‡Wå°
¦‡©ß{6¹<ì[·Ì¼Úéìá!*¤E½Ájïú€ÙQNÔ¡w*l·ch½„–­êƒ&¸d<½l¨DÑÐ r¹4¼3¦î/5b«¼“Î'™»§›;Âe]ôH6§³Ý`ú¨o[w%‰lRÓÿ=5Ü²ñ¶Ú<ÀA²³hq˜MÁßòhà›Mƒ» ¢7»/½dDZv •‰ÍQ9˜{X@ìCSAÈºY2. ß\ø}ŽD¥Îò×Ø&ynxbŠøŽV.¬ ËZ}lÁ-§ög“2)jð%Èþ&¡!•1	ªXk6/$^õ¼9ßè¥•›ëòù"R¥åœí‚Ä`¦ô×„r¾üX1¸Õ±Å¨ÌUÍñûëöç%ö«|¤Ú3óŽpÉ¥*àœe9-›—Dö^œ…”)S#)ÎÂqtE•ÍLÝ•£¥uBÏÝëèòVH:¹­ß€Óh·1X`×ÿA®È|Œ?%Q6|Ú {µ÷á¼ÉÝ¿ÊÕ”Þ)é`yL‹×CãöðÛËYíQ íé]ñ‘Rã}ùénùå·FöŽ“/‹-._ù4Ýgt¼’òÈ&e!„¾hïÞ'•‹ò‘øè:“E$Ÿ%LxÎ½äÅ‚n/æâ+¯Jèr_4…rˆª§£Â{}‡S¢áªšñNY°WÏŒÐ„…þ­Ë¹Ÿd—<·Â±5!è$JÖX&7EvgYf¶/wÂHFÚg}˜W‚Fpúk·UÔJ4p»¿ºÇ¾ÔuÔ‰€–0}qß@Øƒê@qnAjsuÎ·E à/vt¦«ôÑ…l_˜Ø‘Á¾þŸ—g"‘äÊÌkð$ÃÛÄo4”Pa2ïðgc•¿“°Òi­ãsŒx´Žh€(dH›zŠ·*ü=(E=U© Ý<¬¶zõvBÏg1F‚P¡G ö˜eÍƒ®•¥9ä¡é¬_Ë[iÇÎÈHŸaÍG‰p/ã’ÝÿœpÁZ—?–rbç¥
ê’…XòZLf‰Ut¯?ÝxLxÛ‚ŒÉ8±ˆ‘êdç’©»,%,f$7p2æP°ñÅ°b€ÍŽÏQ‹$b†zÇN°RÃœœÁ`Ó¥ðSOY2eMÈž+¯Rž)<Æ·)mî3Å½OMe2~ÂéÌI-ÀVÅºfX¢K—’ Ç•J¹NQèW_Qj°vŒ­ iš·EíÓä~”¥ŽXÏÙ[OŒ¼Yz[Ù2\–E7<Cßt6'@MU®ukÉ=)´¤äü$ÓØ b»íEÔ6A¯N~WÿÖN¿óytúŒ¼v˜9	¨mÑ‚LÔq©ø&2èígµ$ÀŠøhõf	Û€ü…9žÃ¶×Vø¯»†±Î
xŽc–0x³QÀ:(AÜzOqfAþ‚‹pA£–Éï¢%PÏºm•(†WŠ†ÍEaÜ'Â	1)ûYa±ÿÒ‰6©Ÿ»}{1Vó]©$úóµÈXééœžxñ—í\_pÀ¿F˜³¨ë”7•§ J®2Èd7Jûq¾8ï)ö8[unS~¯_2Oª,”œhTð¯†È .W‹–·ûRf@–ùÿ™%ú"_Ç5f7=·q¤mú˜¤´,ä¯sJ°ï4›‹“8Ÿ¼Ýø
ÂOmx±Ùµ6Xs<ÀßUÁ‘ÁúÛÜ?ÙtR6æ„Mo/ÒZNî]IW¿nÛ=ÁQMO™(åpØOkÙ8±VfoSOñ$ùîXÓ¯”#’ED/º­¨ONñ{øt“	÷Ñüêl×{IïÂ¼f¤ÑÕ°Áe#¡A"ê²—ôÀ—J´œ,z‚Ýç×½‚Ñy;™Y=ÎÎ<8>z¾Ñ5S‚±ç¬µ>¸L)#ã6 BùŽô•É˜ˆ`8Q”T†¹xŠ•Qd¹mÆú¤\vÆQœ94û	A@çÜïë+jNµ2X¿ïA4Zz*>ëVmi{`¥/• L¬|’ÎÝR¦²’g*¥èk´7°¨¯iKL`4ì·šÇÁ¢RÌ$uDàÈ"…<öýNR8c¿ÆßÉ‰ÚœËžZž>¸b»}ûÏÉ•Ãã)­ÉGm
sÕ=ogé)mHw¬Û.Ú†'Ï«ÒáfT2{u»»]‹ ÔfÎc«G™AFrÃÑŒS1o*áfÀÅv—wªOÎ_ß`æÖ¶ó±/ŸlóÖ¸d¡ýŠì4EøîÕ·+íaÒžƒŸÆ¥DŸØ,ó5î¯7ÏSH8_ÙÜ«NhÍú®-m<éUäí0<•\ŽÒ½K¹,¢Í`œ£Ã4»À°ðáŠGæækF(¿|™bPAàa<4Çc'õˆô,`æK½_ë2@~Ðï›ÐÔü~ûÁ._z°Yg#Â3i±ˆ¥ìxûŠ²rQÎ&-§™I‰XÊbj!=¤É·—ùTB¢:0ñZU|«¼…ƒqÔþ9ú”m±š«ÝªÓÜcJJ‚œ‰DPÀÈ…ašèi[¢|Òªpi‘ŒÄº&.fåâ+=_ÄŠ
<ž´„ƒê:d<0ÙfV?ãN}¸ÜÙþÈŽªèŒ’ö"‚ž¡Ãk{†âD”=P=’l8ºU8›Í­J0¸dóç‹Vqxø‰ŽéØÍÄ>;Ï¨ àcõ†"¼Ø3Œþˆ†§ü“ú/ ¥ó‘)ér#Êì¾NY‘¸Ü;Úž•	¡¹RèõaùšZN®É£âÃÚ-GFŸ~-x³Ú¼‚Ö>á|õN¯E¹j ±w¹8äýë$ç.byÜ'³ê"©RŸË‡û‰}e¡h¤ñRè²°œýû>ûK¯™sÃeõŒ}.{<pXL`;ïÙÚ)µ·õ%ø\i¿ãuFœ
ù¡Þ\bÒÂ;íK_kÒ€Ï½Ä!»µc•´ÖAb»rÃÑq<åe^
+ÎÆFI¼èštËÊqÜ46ˆóªºÅ®µ°	·°q#_
fw…oþ´& x(™N1°2Âz)ö¡Œ§k2X;òçœÀÏÂ‚Öð=ÐóÖ±óMŸ«É^Œ.‘Þ˜Déí·ßð/Û“„ŸZ’&kÍOKß&ó5ì˜}à!Zþàºj¡]ñVèç]þ”û,â^— HÚhð\*×!Ë˜ñÇ€dÀ9Øî3¯Ñ2A9htî‡ü5…
ÉÖJCÒ*³OkEMè™¥“O›U$Ø@v1ÕØfRXU†ºpŽX’ˆ¸²SZSÌáñ|h;n©;ïFhZâx!b7›ã$$ö‰úxê€øúU,æ3ú3…ãoa½ÿyÂÞ/ÎOç;/Ó²„)ózM¿šV«Œ!v½w¼§»é›vÕRþ†í¤9nÊOÎMèV¾<€L,‰úø¸½¸Ø1eí[Ež‰ùý¾ôR 0¹?†eÃfÄIfLgŒaÅ«hq	ª~©ý0œìòˆí*eNáQh7ïà¨6¥ø¼x\‹-TÙIÜã œ6D‘D««Xª'îgâÆ(”ñãö8uí÷ De“þOáà6ö‹ƒ^ùòý“0Ñ8JB0'ø°åÚwQJ‚ö,HH¯òþ9¶|ß§xØîã0¤50û8DÆÿ2ã-¦‚Ä,ÜžË×HøZ±0'’µ„·~ŒNJhÍµÓ€Ä¡OõÿØ×‘oÒt¤›líÈ‡Oã¿&ì²4¾[U™ÐôZæÂÏÂ$ˆ2ÚÌåá§ù	ÈÔ1X¯ÉÉ÷ÅkÄWè/‹†oC	š3`’H£4½ô8wü›˜ÏvXÆÓLêÓæ›¿þqŠýXf/Õ7Éõ	Å0fgáŽrÇxn{J‰Hgrª—Üón`©)0ûF^1™o¶lïñ²Û.m­soÈ¼âDßP|XÃÏ.ªq¼²«n}~§Ÿ)lªä1ÀútEø¤¯(RQ•o}ÈSŒÄ ¡á;· H3ÖÉãƒ¡ºÞRÄ]¾á#Ä~Ç¹Ž(µq†jIÜWÅfØÒ—ú¬Þq]Ö“T{1I¤`“Ø{%¦ô_{íº ¸ã÷Œô)Æ¾xlBsoƒr40ïJ "›ßÒÒßˆÚÝØWç#ÿp<îýœé•¡àz+íÛ9c'zÍàpzwD´Áºzç=¼Ö(-£ð]cßþy‹4aØô5\ºòZ®T¥%Ðˆ¹ªóµ¤1CÃžÈýöãd&Î×ëLâ­Œ|D5ß7-*ô¸âz
h&4Ã¡?	º+ä¿y
(ƒo`0îEÒ?A˜«¶G¡*ÕŸG(4:„>l#'_VUL_åoÐg‚yCÚ×#` –ÏÁ«y§¶2ôM0è‚‡â„,JÁ@Ræx¾ðªô’8MpŸlh†àïdŸHÐ:¸Ê“ÆUeÁiÙ	™OótÍSŒâp>A\ÂçuŠ~‹lÈåŽò–EG#'¾›×ßŽîÅ•-é	{Â0^iV¨Îý À±LÆH¦öéE+›À¶ö\Œ¼¥Sšþƒ
TŠó¯•b5Õ›!¿«5Pâ2Þ¼Xäf¢:=Èý[M=XøpÓ²éºBþÍ`ž¾`ëx]ÂWt×€“ž~c.}(e_î9]<Šcþ8ŽÍu\õòÓÀXVPosK`ò[þæ>?y>èO]x¾øWNžÙ¸&€Ã^öxS¾˜¦ëg [ÝÃ¥XB[M'&!^Pj,	{v¾6/ßÅ0bN”{¯ÖÐ%¾¡ü­WsÛ/uñi¯æ·S‚ÛãOEH×€»¾3ÕþÞÂ=Á'Ìµ(@jœ‘K£G÷º|¸_z£ÖfvKix-àÃR^£LWlŒ²5âeWù"ˆñ®`ª`v›ï0AM¼hCü›}<µ*ÉïWû¯íî"VÃÜ\—¢þùó£ôaúPu:,Š·^Ü ÅÝ8M£ƒš)Þ%Íÿ*B€éên£RÃE`ˆ}`µã¼kWŸìä˜¾V°[{è»Ù(VÙ.ã	†J5	šÉÚ‹e™˜¥i‹hn{ÔÍcç~­¡Sô?¸ül±‰éSsDH.Ruv®š‘î”×}…¼Ü<è•	ªLH0cê«\Š™w¯ï<6"«ùßÛX{ñÄ—ÎþšP}wâlŽ†hïE˜o9s¡™D%3dv^KÃa2,Žþ’<XwoÔ`qþ¢û^§Ì·híi­a¥?¿ëK$7Ù®?	\/R‹äÏ®KÁ«_ý<ÇÓúùSYo‚y<ÃÃª¼©¤ÄÉÚCà‰^SÖŒÉÐÁV™^û‡ñ©Â§¹^õ}`\OÜvU— ’ŒvCXLß@Ýç=É`åë­ã´fq°òÄÔÓÿœî9‚0_¸Ã·þ€rh^Ûˆ`ªÓçôÂ‹ËÞG#ñ!:g~ñ”X&ƒ-þ™·” ×¬÷VéÉ³AŽêè>t½l¤X•ØÏí(QûKtÒç_ß#]ÐøT"‰*¶¸hÙ‹âr@™3^ê«ãÕì×¡ 0!QYnhâ	 ›ú\1ën:€s8<XÅ¶b"¾4ÓNfW;‘æ®	¸}09€z—ÿ„|q!M—ÁÒcm;h_:3×#¶’úQœ7y‹0vÉ#þìÍm+¯,§q¯€iÔîØkŸ…lööÈëuë¯Ðæˆ:|þLŸúmt oƒ¬M‚W‘î‹/ÀÎÁ·Xÿ®ÅÁuSM\5ŸµÛ„æL»¹8ñ&½"Ž¢Å`­þlØnÿbòxäï«¶#f/0ðIxÀ›Â¨£ÎCÙ•‹)ˆI¿g8´¡€ŸÒ!1FÓ7Šˆn<7ŽÈO!%2ûmàüøÝ²­{{BsïÎŽO3Ø6¿7$ðO2èÜ;m³¯]å5möùÙOì«ï4¼È˜«|ê#°2{ô#V§Õýud‹wU.q•Ôèo9,-É?‹´Œ×cmã­A÷¾éàäÉXÍòüS:†4‰È^¢¥¥ï£Æ%ÈA):—q_M|$ Á¥C_“ƒ+ß‘™C3ÒÎËÎˆ÷ÂÇ…"
ÇÔ› bqüýkÚÎ ë)ŸöÓ¸Xq ~!àv¦Âî¨lì¼Ðü›5Ïé§•Ë}]akx*1;ç÷sŸ.W…–³:¡7GWªyØZü‹TûÝšMe¹©UßŽ¬8äËÁ4´_¼1Ï±Ì·Nï+î³âaâçC>ýù.àª‚-ðÍ®²†Ë ü÷wû²Ø´¢#„ÿZ.
×¦‡-þdè8ƒ"ñJg½Òöf¥ hM;¢Øu%dŸöÆ½;Òä|½!Œç’ëRDú[H[P¥ºîéðŸÇŽõÐe¢”³\äÆ êš}@V gÿyðwxhAoì9+¥ÐšrpäâÒ­ûÈƒ@Ò÷aI:ŽKP¶¹/ÕõèTêãÂì­lïäþG¡Ë˜uy;ßþt!_mcßúÚäÌ™ERÅä¼•ó§ÂŒ»L;ð?wËi,°Ï¦4Z&Ð‚eô4¥}hñÝÜ35AdüŸ$nùD1,4MçÔàÕbIHÄÎ­‹Ÿ…që‚ÆšÀÝ¸h&PQ\•OL›Ç1­©¢IŽ8ºãÀÆãð±•Æ¦È$Ø 	åŒƒÐ˜‹ö‹ïóó–¬¹¯{Hýÿä ;À_5ÆšCƒ7Ö4q¤çÞ[Û¦ /­-®¦ìîˆµ÷úK‹äÖxèVEÄ	b(Xð|¬Ð+„Ã“ã4§m"=ï¥§ìHp‚>­y ç„åQÖô5@›»áÚí…¸³8l—,©˜‚£Ô¦Š.“×÷"¨sêG•U|ŽTûŽ4û_‘:ªõeU¼BÝšE.¢Nù~ë%ÚˆŠùÒÁ°}!ùX²5*Ê½¼i<ãôÀs1U!¥Êià»Œ1¸Ã0k·+öb'æysä0¡#ï‡Mi\”ûÎÌÅìÄï’zeÐYá*ÅÍkRDUp4D¹{Å\ÀÎj®Å-¼³¦qPpíß*3µ£tjGª½9¶ÕáOxçJUã'×Šå¿àrwZBÉ\p»S9’A¬I€ŠaµžªõU å§™g8°é_©¤M âÒ[ûà°h2P?þY0êŠ5ÌÝ'èCçL-¼âº29ïIîÁ)‡xœ`¸ü¹ž¤¢}"š!/7¿deýGT{t—èPÃ]¾ hÜ#¢(Q€¤¥×ÿJBŒ)¸
ÑôfÐ?ò|J˜åœ~ø^¨Ôg…ÍüÊb‹E1(üE3MÎ}h «ð"óÎNœcDV›goªJe¢¸aQ°BK¶*‘Œo%­Ãwzº‘5Õ)™Z¨šžGE4c [í¨vlba(¿­ØØ¶EpHÅa€ç ‹þtÊxx-ÒêÙGÙÛOÚDŒÓî>_¼®L6úÏg_ÍÈ ÀªRR&›þ:ø 7mZÅË§F3xÐß¯œ‘¯0¯«R¹Œ¤ò›Hl(`ÿLVÁÔò\±%Ée~m=—ý×2¤LÇwT¶¬±—æ`¶T“ÝÌ¹:n“·U	@(øWêÒqÝíÐ8¿³%Î¡È	H«*ÔõR¿Þ™Ë`6“
@9BúyâýrŸMÅVDýö‡í†–R²ÜA!š:˜	^˜¢7¾bê÷_þú¯E`^ta„¯2ž ðü©eySÒO›pù’´ŽFFÖU½'ÓBŒ»Â•7Ëõ7­f{c°'‘Kˆïža˜0©ÍÐ—R èÊü#™È\!{lÃjÅšðÿŸÁŽm , XŒ”2Õ=µzo¦
„ê™ŒÌ¢û’ý;ùB¥{•Ð5@Ãœ£'¨é´…ž¿˜«Ú#Ç¬…nŽ v»Ò´Š ‚êšævÄé¾°9ôYØ0˜-J-ø›ÖÅ Y˜]´¿“7þ™™‰ã€9€\ËÔÂGš‚ß0x¢Æ„`¡ðØþ˜GDÜÚóJ8îMàÖ¾ÂÚ:åƒ›Yüv 5Iº(ÆCÖtá„ø †Jgñlq²<®ò/_h›c‹«³6Ú·x
4N’ð™Æ™‰Ñ¼;¼˜ôºœ-ÎR”X¾ÌjÆ!,yÑë)YêyA2Î¶/]TkŸGcåRï'ki>Å.JŽ•” lpúûò¯üTåüÕ«ð"™‹–E¬y°¦¸
	c¢ûdO¾_éEc³‡afíÊÂ²]s²Ù1ï?ÍL„æn˜ŒÄ«îœ}sõßd6ãµ1ÃÔ@2áh>…ÕV’½æ¨ˆš`kà¾ÂK6p¨dcôA£¢'ŽÑÐÉ,mÓDÃ÷fŸbxÕ¼ÌûÚ],ŸZšœYzÈNOÖ•aßµÈDâw.´G/ÖªÓÌreùG?ØmMÍÜ:z†ÕÇéª@]S3Ý*q/ûnŒÍŒvÖ!/M’Áß} I‰
äÞœÛ †Ï•ÑçA˜žÁêk‹GõTl^Ã¡"³T
IN/:‹f)É
J»)SÃý¦YƒŠÞøß®_1Š5„VWø…s„@Ï˜žDW [+{	ÑHt8Cºa4'‚½“o2¤øH8íé• âŒ+OJÖßA)›‰ÌÆˆÔ±E“5&Î9¶+#Tw!ZŸÔ¥°§.–5>­[ƒ|˜ï*/#[{²,ÕhÐ9zÆºÃðÃ@^–{,  	x¤Áj®_zó\ýÃ‰0É9_8ŠåE—Êõ’OÂ¶UÓ{uztÄqôØÖ/¹E ã…¿Å™KâŽSg™Cª££—ù'¯³JL`e2÷ï±ñDó»n"1U­©ï,¬^Û÷Ëx«|2ŒÌ­çú 6Zóq)Þ„j~ûo úÎS*³ÑR‰çòûž.¬ÊyÚ^[ž@Cþ§¢v)ÚÌ'TÑ²±Y^FA†#d´·nqÅ‘F9PŸˆv&Ë¦¯Cœç(r’aŠR_ƒZðBþƒÀódØŽF %øm;ÁÓ‹¼8¥¬IoÑ(‰` ê½‚­C‹Ì€y6d›ÈÌÒo‹ZX«Q(øÀòHØ&Oß¹Je'ÆÁ³=µÛÖÿ @óÀ0êmˆŒ»¹ï§¦ã%EéÒÃ2üò,˜Ÿ@··”7Ìƒ¹YPÃµ	×å!«LÛDjïýo|êúnð'E z›šrÁ}h˜¿0…#“mˆ†š'©Y}lŠ*€~mÚ†™Ý¼ªv3 ÇTé3öf’çÎ`v3î«qCÅ&J	p IKœ/?Ø fÚâ$®.É‰rÃ[[š—÷Àó[;°£„~-¼ØHŒ>¶¶9~ÒF,Žõ±la« iv²3ÄH@cÝ"ÙÐäJBû\öƒ·=P›\QW­Ýw;ÛèŽÿ¬áˆÒPžèu¬%á¤6˜u÷¯PQ7Añ@3„g÷¬¡&]R®f3Â›Šá£‡"6Ð<{aI©sï]HÓ@ö:kÂ	då_ƒÌmS¶“T*v*Qê@‰ÎOüÉ‡¶N¹ÔQÞ‰áVÌŸ¼ƒ ôÍ’B»ø´üÌmŠâÎñ@;tÏT‘Ü×~&šà,ýë«šFFàrþÕ·µÃ3oŸê.=©+ÔåÔÐqÊ­£‡N-_
§€-BÄÉ“ƒ¢êl
ÞÀ‘¾¦£.ÕÍšY‚:äö¼Š'|4_%S$@ñ¾ÉÜS"MÏMd6¶	ƒeJ|P´5«éc¸='ôUôMòk³‚¡T€m¸·`¦A§‘e.‘`aŠ¨f§‘î]•¦ÌeËû4y5ÎQÐoì”=»ë™ŒÒØ–ÑˆŸ}Ð •‘¢„RÌ=Ñ,Ð³¦ÁtÌÂ…©áW«¼­­"Îª(õÇ¹ _W_$/’½kÉ6 ‚)Á·ö¦©q0=M}”o¿WÉt<‘#Uù5?s§¿®n}á‚ñsg¶ƒw=Ð%9iÀém	N¡:ÛDkq3 ršõC»FÅz`[Íç Iã°`½v“D]+ì8Qméô²ë–p8±_µÍ¸·'*õ5ã!««ß…fj¹âN½†¼uióUð [†åÜÔ‘,ž{3»ÉUwùÞþº¢‡Ïí'â¨rênê¤§„¡Gøð–KÕÕ xøSfëŸÇfêk4Ê-[VVêF/,­V‹;ë¸WËƒ<ê‡“ýMdägº§ªãhK)½=UOÞú?ž®½¯)©ùî[bÜOdwät3Kïâ~»9±ëTw~¯gàv|Ã…¢€ÐæÕë¥ç¶4	Ðî‘$f´4å§O5}ÝØÖvðNöYûÄ;Ù—}šZ…“1Ð/²À”é?­_²»>R}(0ÝÑK|Ù7wÞbGÙËq\Á"z’¡“¦ø»yåŒÁš
û‹S *Ò¤ÕÌŒÖ–Èà5Öâ8
²oºVc/d”ßL³Ííê¶nù´·ë"„@}ÔVyÍHN!Dæ±A™%ì4!i¢²3Ñ'p‘ˆôÙ‚ÍROæeäCQ"@ñÈ£ËlP–®j~àªp“¢”ôÖRiŽ/X.Ë¢uãTª`0ÌF3leØ=NŒÁ–y3%aJÌ 3Ù™™½Ž¸Ìvé›)ƒ>ùfèš{ø§õß‰Þ»†çÌÖfe íµÒ«€ðø57@s`(ùWøD+øØè¶E¿jt4•£yö_ôX*8¬]ufŸuñ[œ›¯¥Õí»Åz„û±Ú˜‹w¬DÇ	PÇwbŸèJv¾[>xz<±„ùžƒ\G9c¯|ñpE¯Î£ƒ`,#”Ÿ²rß™¿=;,{»—­~ƒHˆE@‹Ð‹eNµFo6Œ5WÆ‚&¹Ëjßv®B‘çÃR.8Öm°|‚?àÚZR&Ù0_]$ó°(n½ô«‡ôõUù< ®ÄöY pOhûüJ.vlØ×îƒÆ‡ÿ´'ãbC*æuã¡?é
4'ÖPåÄq™‹$YNT™äa 8ö`]ÝðuéÊ;ðPù•s]WØÏ´C~÷¾¦¢U$ç©[áÖTe²Eò…Q«à>»³»“‹,è2L›ßÃû™ê:Î9uâ5Ð¼†TQ¸ò •Ÿ‘#¢Å7‚fÑY9Sš½µÅÙë5ªºOœ(?>†Àà¡û¥²F°^%@:c°×á…äªÚHönO½Ó-D8³dËìym¬q!qí¡bÄÅ]S¤P¨âîq¥ÆDgÏ5±"d†=^˜â†´ÞnK×/÷Í›K®´ˆ šnuáòÅlFo¤QKüƒUÎYÍù~° ± î±¶"ä‰íã„qÂZ “jûÇ/Ò¦Z"~7¤vep} ìKÒ;áÎLžukh ï#ôÔkn¿8‹ÿ]}Ó´’•ìŠ_1èÑ]m’bÉ¾i|÷AÝâ¦\µR¨Úˆ!¤Iƒq/iÁUÛnÄÊo¤Ì½øxqôX	®¯B0c
~¨	“ZVƒÇVBsKúÁˆ|
eI7ç&}IÎšbP]àràå‡¸œ–ç.<:-ÂÃò¾	LŒÍÄ‰–e¯ÀÖ³Ø½"v>Ë(®«¥·½6çoi0´ToÓúPÓ€æ®`J?ˆØ¤Öæ­ÜÂñ7î×8ytêÓ	r‹jIï$Ñ/cÉj’ùÞá›*ìì¤Q¸õG1 ®âÞé%@E¼²J‚Æb]š7¦ß+â#¶Íì	²ëzzqšÒ›× µßE„æÎïËòA:Ú]ÑIó&˜Y!ìÑX
¯À+2YôÐ›Ñ=¬:„H
~ÀÂ³ìƒiXÇAe\—¾_¬ËÃ3Q:è„ªñšo„¨.äÞŽ’€˜·’ßÂ²3lp¹7JgÐ-´žè’¼Ç~Ik»\¨×.¹tRŠúÃC¸Ö)› &sÿ“H;Ÿ/6[C¤AOk]uŒ•³1íp»–d-R€' ëpý7»í+wh@Ž¸ZG	ûw@”¡‰QÏpNÇìŸˆ¸ElÉƒ»Å*yÖìO	ã«q'ýæÜC¯)†frU˜t+Q±Àé¼¦‰®ûµö}Õ­zl9¹¸Wààé:šâ3¯×ËËÿ}ÆX&ÃÁOF&.¢$NQ‡½C4Våü_wHaFn»|ÐÛêûìMÔas	`5˜¬	‚ÑÃ’äà€791ËøVtúé™…µÂ6;(-ÕåmuP‡«†arlsÀ“~Â«[† ^êüF o±6Ü^²ó3(´Äî4ñÌ¡—,¾ë’¦¾Ç½?­ã}¼OäûÌ*R¥±~‹„È™‡ƒ·Í ‡0ôýÞ¡ §K”ÌµÞ~.¬q<¤.«î¼ò:[+ÞQ
H#q02bÌkÿp‡lM_žZ]VÿQ§ì+_ð|Ú=¥MCKè×~#BUSlp«ç~ÑîÄM'–•éQâ½¿¡-óq&ŒZÃIr9i6&%ªÙˆ‚±ƒñvCÂZ‹Œ¸\Gë˜f•:‚È÷vhÃÆá¶}ðÖî/Áñëþ4–…³wo¸¿JÍ)ØLj„hÇžJyŸ€e®Féf÷:x.®ßFw¢(b¢–÷å€”$À"ÝgÉÕÙQz|w´‹ýLŸ/¡õùKKä{ÃNÇŽ,–h~:¢b|ƒéÙï?wËò‹A€•(gá—#àD%ÿ,é’üà¨ý{ò<îL¸I^X¨0ðët³í/¼¬y|W$HrƒšOø¥üBïåøaCC¾wŒž™4iìA@Ñ¯˜„Úl„nLæ ç²7þÅéÐ‚ê?âÃà¬âQ¸wàKît>Mç‘ûð¾3$;“¶Í`Võp]¸¢$3Š0.C@*¨•W"Þ‡)§°#Ði0+ç¡¿Á¬·’ I¸Cmw¾Zç’À?&ßHšE,ÊO²©_y.Üu@ªÕ‹Oô†5`§‘H…ŸÍ7G‰C'3c´œà:ûkàÁÓƒuNf¥µ“„éSˆmPv!gz•wJbAÎM‰áæ_Y]î„áŽW)XÒ„ ^*°â%!	9Ý²E8*úÔñjƒšS‘Kðùa—ÄÒ@Â2'#‹ðz"’ÓÈh§°Ø£„iž+Ý{ºßäÛãímÛ9ÚûfÍæŽPÑ=ør‹Ö^±ô_={0kú÷M¨R²Öô‘YA•µ©8B8ëjâm>ÛŸùPëe†yW™ný¥2­ ej£ºõb»›Èò2ùgáx–c5QÜ‚XÜjo··üMz\¾õ˜;ZqC8@€üÿÐÌt‘¥ågf ð?ÛÎë¨·Ò/MÞ=wÚÌ-Ã­yù+jÐNéqÖ|Úü¡ ·ŒÇ·6ÙyZxÂÉ>×sme0%«ñ$ÕñùœÇG··¯{ëA×@Ú5€1¥rÏKÙ¼”«8Òåb7¥uA"Zo²VyJ}UãFJEMšœ6Ì)àÚõ.z$'W6…N`‰n¤Î
åXÖ;Æ· â•FuÞ![Ïåç¥C‹’6‘š!,…nÃÌäÊ48Ñ¾G:àDó8~ó`
áâËÝÂ¹» å‡©—•ïà†Íp$C¶Ág›˜hçÑÁŠ|'œ…—ÿÅ³‰1,‚<TÖì›ñòø—%úVE­[ ?èåüòâUÎ8VuÖ±Ópo©Sj9¸Öã€4“±(´$•àlyš™ÂÞCf^÷ ò<‘ŒQ¢ž}z¾³ç„Y¯PhU"¯Ï E6?)ëkúýF,~©ÄJÍq¾pØF5í`Â#å,pfa!oëFT !á)È¬î„ÏÈG·ä¯S¶½¨Ðömžè|ÉlƒÖG#ö_\ãý	= å‹Æn>sÎ9¹1KÄ	5‘»òióhÝ8ÙQXGÿ‰“ž“›u(Ï Y½¾ö$I5ŒÃTqœ»2)GÖ+À„`ò- Þ„†M¢‚]Ku—Èns/Ëš^hE5ZZ¿á™&ù•bb!Îgw7whg	@;€¨.¨—é¦œ?§ûÐ$]Í)ƒ,el¼xX{õöŽ/ª fÒh¤üÇjŽQâMš Ò J’P£€»Ó¿eÖAáT½–	iA×Å?	µ¥Í/èr•SÂëÒoùìHŒ"0­sÜI.EÁ)³_kŒÑž¿9°—šÔÜ³ßTéeèªÀ÷‹¸˜¯ê³€1íeÙ~Ñ<œ½Q¤jžÊZŽU¨•ýâéëò»ºíðF—L2tÓùÓ?»F%üm‚
àªCä$\cœwL¦p¤ƒj"Û×VêmÀîu–»Õ£¹/˜àÚ·á©~¦:“"7·¾_¾ÇÙyš¯dåµÇÃ_wÍ;hHÒ^ü|
Q›G9Zì¯º±GÛkÏËî¹Lçû~†DË<6N´‚å‚±â£L˜‰Vû~ŒÄöIŠ¨Æ>%šžÃ™¼¶¬ƒí½M¦F­†AUBä(DÏÏ!qdu]¨[‡|‰®î\„\±ÉÚÑCÐÕ„PüjTËv.eêrÚ}z×Ü¤bÝí$€\£>K[ÃjþYÆÆÔL Ý}¨Õð†Ûo!ÉÅ3mõ±¬è¤¶f{‹Wàªh|–dÏF¥p×.]œOÏ¶«:qã©Ðfœ¹$0mý.¶‡éç¡yÀ•æî†‰“é¬«ØãC~–ñÔ>½sÆ»Éh'„ŽÝ˜9&*Ëu6‘NàÁr
§¨X¶]†NËPœW8`/øÏ.ÔRÎ£šòR|°µ–()}Ü`ùJC4yÕŸåðéJÖ,£l~`/R–@ %ÓæB¿RíÄã
9òs¸½ÉËæ÷!ìoã{è¦„ë€,øãTrÇáèzºâsÃã³C“8…¦l‘Ô8n¥IGbµ Yì~Î³‰âL>ë¹	Ÿ˜¶*I|Ö»L‡‹á$i"¦…GÝ}ØnUk¨rÛùsJ¨qa
cÛ>Uµfï6î
ö™TÆ^¹Ô¥37KjoZ'U(o@ ß>€µv½èößÚ"¯=õ'=ˆà¹ß¥’uõ›ÃI2Ë~st/ËËNâèmå©¿,ÅÛŸÄ‡}Ú.§y|<Æâ4FFÓù³9Yä5]„”¶„¾!¤.ê	ö<<¥ß÷¯ù´¸“¾Ž’`1ñ^5'T`•*­r’Ò×¿àôŸc³ù9˜ØTÑ•R
+Œçñù¹Ô?Ÿ¼U&nŒÚlõ×tj;/#þ‰iÿqåF!ßmÅqª\cÍel[ô-•bÅ˜àioAØÆnH“®ÅÚð³©ÜF2`\÷ñY”ó¤@Š©L	‡F²Á6±Zv·iaÂ´M‚ià¶WXJõW¨Åýã5€5º¢ `qçPFŽ[§Á÷~¼~äOfñ¥[‹Ðþ´Í²Õ5/HöûEd'e•Vzß3”%†^¾#mòlAðŒ¾g·Ð)ØLRc´_]ôNlÄG*éX£V‚àåßå:sX;bûl&µl{Ÿqòä“˜§Y¡=»Õì0…?¿ºiöjÃ©÷½¯„¥Ê–Ã>ê¼ð
/¸ï¦§¾H{Êèô{2ÏÑ”B2‡ÏÃ¨´Ì311g§‚~k¹g†€$±«¹ÚÏ; p äÂàŸÆßìÉØ›>HgžýèÏ°,]^ïÙçÖXð1¢æèÛ4¯¨ˆ	Ê>kOeDH^€}H(îú”»ˆ17£¾'ð>­ÝEj()ÃN’¿Ñ!ÙQ¼ÈBQ!S2i³†S°×¶Ê“™i¨i}¹QGtÊÄhû²ËJÑÏMƒÚï‰4¾'úkáyÙ×ATÞ®ÙlâÛ;â·?¡’wbÎì„åc*(<¬˜ª  85'dR›ÍVÞ•÷>QN­z'!Ê-º›ôÏ›~ßS¦öY³ÐSpD.¢Êb›ÐÍÁ9›*2J.FOÊî\¾Píòá¤NœÝN<Á?(Ž1Ä5ã	ÍÅˆó2A&>ÐÝÏ‰¯x/U½Æ°Yä £paÏ(U!O©\d)ÒÝ9r†ÉµëY£§·Û÷¿N”_Â–ß
Ï˜×¶Hcüíb–r?‡#N»£•-<@¿)»•PëíÄÜkv‡‹ß£ý~H°aïñìÑ)Í«Pv÷
Ù…R?}	R¸gäÿ6 èã@äO%UÍ@ÎvÁ bRÏ0Ê¿r[÷‘&¦»ÏÜ±]Âýª¢µ†ßþÌÑÜ…‹•›[žªøà áÛ¤óàÊßÿ†âÆr9û*éHTþGƒú@â)°Å^4Ù |À°Lq®Þ«Ì”ü'{õ›‹@Ûÿ_óÌhø«Y'Ù*|dÁmaÑVè¤ðþz·‰mIm¬hèÑ'Ë´i"kvàøÐ]p©[õõÇÛ«ê=µ­jþ²oGÜw³Ê™îlî™àåVow~©È³©ƒ6>!•·¡QkMzÃÈìé&sDÝ-äÀx±Ÿ=G‚çÙH•V…lÏ0æXÙÍ…ÒÆÇ3ýa|âuß•·÷ö°¼ÅÄvÅŒ=·³|ªV™ìö’Òd..þ1Á?9sHpçKåÑ +‰¶‘5fªXùmhßpŸ “ßØÙŒÕý³Ú‡;dŸ-o'WÂÞiRFRÍ}Žõ»2º(?B‹Ù‡7.Ì',=òÅn ú·ØÎææCkèj$Xãx?°=''§µ®g£ÞÂàM€é+ C÷gÉ§MŒG9ÔÁ·zßÿØhÛÅi¢5Ç	iÜI²ë±Z£¬Ì%98Üém„¤ ï4D4‹êOˆ«I)Cñ´Ã¦!#™ñ0á<R$ÁQÿ·çí­>›Ìc„X}æÇ¢JX©Hzä9ç3§3nÚ-†€ˆVÇD`ÓùxP²gNøãzƒ¾¹³â•š´æË%Þ 6Ê¨ÝS4HO†iËGÔødîa„©)ÃÓ)Õœ÷kBvþ<Íb ¨uùÂaqß{ùiOUs7ôqs†÷GË8°%‘ |šFúºVNÇï	~iYj¾ïðÏåÏü	ŒVýß"‘ò¤´H³ªªf ÿ…• +¦ËòJj(¦QtÀæþ6†·xTóH5‡€Ê=ŒÓéË¯˜‡\Ýí…y]%tï¸€^EO¶'‘ªOq‡Ý ç|>•RÃ>c-ç×$lb•9”WëŒ•ëÍE‘§P”¡É?„4ýJ"7’q™ÝSi)dSñ²â›.O©±´ZìW?úãXüÕèywu|÷Ó**í}ã}³†d¦ÜKþ¦72îp÷²+;¡ÑÑ`ÁÔœ@8<m‘&Bj/´3»DP__¶‚­ÿä‹^¥ÜZ:ã4Ó/ðqé7¬¯Ét0*ªqPÎ@[Â=²sÍæôãqå÷h=K3ròN»Ó×D¡šKp·òÿˆ|C&ø©lrƒ£{J&öY‚®4ÔÑf;BUçû¢Ñ”avØÑ±ªÝ öpvqvhÒ12éùQ¬‘Pú2mŠ8Awƒô)œ$»æU+X`ãql‹	œ0:áÐî)¯¾7¼õqºg±Bæíb¡îNMUil²GA2AÂn†&ö¯ÔM!e´%#	ÖQÐþ1:””Ç6‘ä“=N
×¯KX´.ºhâ¤Ý¸Q¹ž§Wâ³Ê‡¼F	gOP{ZÉî6ÖuÃ”ËÁJø·TÞ%?|†Ï_³B[s×7ÀŸJç…ó¯vOsÅ§¥é§¨ˆÉ´ÿ\-m<1Iîêæ“dšÉE©]'€¼W¶1D‡?Š®X†nŸÀ$1ÕÇ·Kt.Y‰}Œ+ç~¢œ°a¾ëa•4¥ƒµQšáªE»9«jÝö¸‰ ¡Ð±.‡/™IÖ’îcûÌK<6]Ô(•ŸÔb#‡ìUÔ“›]oí³æƒ*GC®È,W«²¿tÿzí:™†pïÅ—*ÊõRiC•ýâ!¨ý%dku@äª[;ŠÉ×Š¸	Å0s0"•ç»5ð»Á{©µ‹.6';­UA ø—ÜïÊ®n:">®hmìü‹¦Á9ÏPþÐfèäÕî:Ìï(ÁáÒWÏÓ¿cØ™l0ôI°0ÖÝÉ{è<šíÕ•µÐÑ¸Á%s:±”møØ/ùá‚MuµÌ›Å „tPJ8ÈŒxR%ÄB.S‹VØiBŒ›î”’Óö¹º¢›3›•ù©™Y?aºlÑK‘¾Uö‘7C¸$°K—ðAœÔ§;vXìº.B‚SH¿ôê¶éUÿo'îõ¸~ŠÆæ…$ýÜÖ	H1‚z§·f8¥ì­,æ‘žaæ+ë4Ê{„´| CsÿXƒ3ÁézP .’ÿJò™f>Á^ÄìnIS%ÚràL©Ÿõ“GG?"’, ÙòE’“~•wèòÛu(=Ö¶ìF÷Ô)0»rWe,IÚÓW%Ä‹c5È’Z¼fŒiJx¤¼ º¯«NXž•Äí¨#EÕb%û/¯hx9YAÄªU@Œ’ »š…Æ)9 g˜éöç¶ÚºT#„3c]¹ù­w1®ÀD©öÛ›X†¢‚ñ˜çR"TnÂ¦{òÜòÃë;ˆär’’‘é×‚uº2Ëv¢§Ý8X½­æí³Éríñèù¼"èBRUuN>ú=qEô:¸Mñ
ù¹Ö]Ò-ï_«ÃÖ¢O©à§fÕ ÉWVkowr×Ü5ÕïMAa¢6†¸\Ê¨ƒ¢ø±;Úxå/ß†7]Ü³aÑGH7Þ¶ö3zBÛÿ¢ÅO î‘8%Ä,£„ýqÉv»ã2”µddZñ>™ÄœˆD¢)§ÅÃÎcúšç©Ù¿íëÿ¼‰ùÂ†§‚;‰•F´G?›Ûà†’?°ªka #†ß!*¨ZÐÍ¸7Ì ìHå±´_‹ûa•<Ä:pÄm®ü¨¾¯ŽD|Êêô(ä÷|;Ú€—Ï¦Í”4Ÿßâd4¾ðËÈÍ“mòÜÛ=Š©d¼ÂíI¬ôüaÓgÀìlý¦˜„FHíÆ/¡…ƒ=î?îÄú;z’Æ7B–ÇãEŽ)RÛ‚{@=“yÏUu½¤Ãç™Ýåñî’áóJE¶ómƒùP=ÅÝJ-¢!ÊFÓa~í‹BT%*OÎ"Éì
ÜÍô
~¿lÍñvüoÃdcæïƒˆH§MÎ¹ê­ôv÷zã-|ðÍºõù%[ã—®´Âa†Æï`ýs ü“$4žÍÙ!èõî8·´vYð™æ‹¤Q;™ÄKµN<pÝ†â`­~ ½ª„s„ûb—1èöæÿâ"ñgmhÞÖêÞWYøê…[ZŸ}_?Ùx°•†Ÿ§§cÀ¹ñ™’t ¤™ßPÏÊ|Ø½r½2îFR}rÄ_[þ\3É§•¬ê—:Õ•%¿¨èÊ@uŸ-£¥Ûíµ©F×@]_´± ðòyd(A™=v×PRôÀäû®×þ:{|NõÔ™(Æ¿¥“? qc—…Gû2½ÈúÊGä…†ñ¸Ïæx6‹VÜþÚ<ªH³@ïÓn!çé™ÂÅ_¼•`=6 .S!Œõe¤Çµû¤¦1½Oô¸À™…WËóÕ7žµBÂ¶9Š\ÐÏCžL÷šG±å6(i ›ú¾Ýx¦ÒÈÕAêv Ñ—¡Q›(2€)QB»bö6r)¼‡?ñ$e-‡>N¥Ÿè›ôÜÝÍü€žvøZ6Gƒ[ 1Ñ	Øa7xS M
]ùr0ÈÔ’hˆ¼Óø¡žÈçFÊ1¤˜à4¿?ˆ?N:±¬´)yÊ5 â7‚¶Ïõ6.1bº"póVç—’Áß¿cðÉÌ0f ÊÈv#Ú(ßW¹p5@K¿,." ›7d„±¸m4®EX½•Ø[äX¥1ÛÙå–ëÀ ¥ûñF~òö´7õ8V†Ì_>Ëÿš‰:
ÎÅc+¼NwÜyu–@(ô„|òP›Äõ¦¡ƒÿîG´Ù²®-†¸ŠèÏW-×Al@cšPÅnù—¯4ÀÏø”Ž5Mº¦“„YÞ³)	Fƒë"žÌ¬LG-¼‡Æ7ÿž'>Þóæä(Žu}º¼çE)Ñp[8Ñ ŠÇBXBÉ@0è;ÏTpi:€™¬€·sqòÃÐLÉYuÞ¹¾]ô„“Õ^Ö6×Ò¤1“lÒNL$÷@ð‰ÿG“˜.Ï©¨;p{~6q6xÖÞ2Ÿ«ð¿™JìlXAa0Èôc51ÿéü—tV16KÍ…œ‡v$u=×QÂ°¿'KG$@BÇ.pßøFÉÙZÝXëvv
;é°Zð¹‰Sœþ6 ~|=›{œäŽµ£•‘Ñ¯ÉË¯þK­ßRyûËÁ
TZ®Æ_
¾kµaø¦¹€Ršæ«¬!S|Õ,Ê·ÂžÂ»ï…EŸSðoêNÎ¸Ÿ’ÉîV`q	˜ÝŸH=ßÔ“zÑ~˜Å’f«LóS5{¿7Ÿtì¸;ÿ¼ôÏLß‡ØªEÐ•¡â~ð=Â¼–G<K„Ü"ÇqûîÐ^7cû€ç<UÐøTÏ‹|/,èHª.ƒ^ú=€Ó _VÙÿ½Ô òà×íów‰2ß‚/ê§ÍèåÃªh^o³yfP“™IºGÝ;Æ£Qm¬öB”mãŒÒ),"Ë@C“Oê E?EÿÒ7ãÕ+‘Ü•ÚÓtKQãè?™’W¦cèz)=Áëß¯ ¤ü™…[yß2Þ„é¹ëÓæ²Gû<ÃÊfîÉœh£Ç	þW~Nä3ÖôŸ9
ÁÃäæŽW¥¯Ê¤’üòä¡•™p¾à¨ÁÐ Å‚ÅV•h¡áÞ†üÄªü…Åxw¼—™‡î£îÃ;`ÇÎ]UôöÈFœŠÎËl`L'O­ë`Öˆ©§xÚSÚ…%4¤ehà£kïT *¬È;m7Šv‘ø›Ùø™)9g<˜:Åj’|œ¿iKÆs£+¸Fžrö¤øØ¾óÏîºcoBÉ@Ó$S¦Á¼9%/ÆB!b83<’ZDÛ‰ùÖŒ6ª—yW™!HÆÎ€†Ñ¦îe>–ü~‰ò½ˆT3\Öù…¯ÇÀHj®]ÊWM¸º,ÿ-¡ÎòQÓÊîýp[ÊìÝ®áM ‚bó|@t¸¨lâLÉ®[#ˆê:ˆ(ÌÓ£Ë_à’}_Uª=®ÝíØä6 K`s³G\Ì=¡0+|Öt”ÍhŠ nü“1sŸ E'àýŸb|S.aÄ(&|¡8Ën#e€j–WˆÓ|ýdpø‡œlxƒ•È¾ßò‡n(&#ýCÀ5.Ã3a#p­nÇGvsšÑq;ZðÌ9+zUFn™8ÔÑú6 åé×z®¦ÖSþ_qvy‚LD¡ÁêµõT%dp€jTVgCpCD¸ï”=˜÷>1îÂžIÇ¾µ¿ûàÖÂý§j)½³$ÿ×¹W]ó¬[ºÛànÀuz1%1¢N±^ÇJÀœ<ê?UîI …ÈC¥ âpZxÕï 7Y@[¦’>ËŠ”¶bä`˜ú¤\"PL61ªÞÕY€9B?Îc³¿@(æÑŽq´XÂ±GfÉbv	ˆä{xÌË¡Ab`ºqëJŽÿKˆyþ%à£K\"áÅ•»«gì7—·¥þùaW|7Œâ—n¤2c“æ®v¦|åf3Ü¼¡¡Òš§K`gpö,Ûˆ¾É¶aÇÅ‘óWó,ê|‡'ƒ†µ4«»¡´QŒôÓ®øÈ,šCÿŒZ%³jHå)lÀÌ°&æ6±)g(àZ^¼‡Âíúúd'â¾óGæl0ÏiD4˜ ®uÙeQN¶ã®‰´¿Þ˜%Üã·ÈC99,PgW!c;áH&íÁ·„–©Ä>ˆÃ%v]Œ²P×Có­ÀÛœiŠ((zV—r£”°_ïÃE•/æcªØègÅ ­ä€_¬i@?ÇÑŒÅ â³	|ÿg˜‚ _>x
’œùQÃsø™fž›#©ýBüoqp-ÚsŒÎó‰—…TNL±MJS¦ZóðØz~
-*1˜U$ìÀA?¿2‡¢óÕ…”ûe;º_»«	Ôé0‘ÅÈÇydÆ,Ýî·èfeóò
¶}°µ²¾¸I†XŒ½§þO`Hp@ÐÊïõK`TŒåOýÚ¨êpÍ~i»Ó¥ÚŠ&`€ú”c¢3 „œûƒHà(zJÁ†æé£bSè/~’þš,Î©#2Ò‰ˆ’–N\îµEµ~ß~$’§ã¼pÍÂ-	’P8öVfµÜïQlŠþ1&Áð]r×@°-OS
ˆùkp(Xº÷N÷ý0pekäB·¥| :ê~öDcÊB¨Ë½`,è“
:jóy)„~–F2ÔÆ¼Pd—{1xà;¼^Âðâ”Øÿ¡ú'÷>Dà›6íàéŸ›@ÔÁ°Ådæº‡ºtv†Àiû]Â3%Ámß¬ˆá¾FÞ1p_,¥Ã¹æüÍdY™ëÎô»%ªd—Ö"{L€Ok
ÖÈ²=ú3¤öý·%Ê®µ•T:BªÎ8²¥ùYýœC^§pbÝßgO£³ÒG#àgªÊ•?^78Îï¤·-QÒH+PL°Ûâ:½œ%¶øäüŒéñM«DûÚAãxôáW íé}iZ•² „ZE^.Ð(¬Ö‚\™rÿ(’É_7c™]¾Ê¿µj¬ŠÝ«)…»î6	ã¹	Œµ9×lC©@X˜®ì‰Ê/¨?LD9*ëmÄMn1íŒ{(™è—|†Mo³–óŠ/3­Ó2HÇEä@Æøsïtš²ž—Çùœ;Áì<9D¦ÀœŽD4OXJ1ñä@’ˆö†¤Œùy
âùrC’ªéþ•¥IñG‰Qp¿¶áñ‘q†©K8”íº\‘„•	ã” ì\–%Y0pœ`xz|lÖÂKƒ‚Ô–´åâ	T—×v±6„/Ó†çdLÃY#¬)ì -ÍýS5Q	TOï‡Ï23K°T#ðBÀ‹oþÉ
†l"
ê‡+nÚ¢ç”r Sï0~pîÎ<y¿ÛwÍñ
þÔÔ9ã˜Þ±‹H2ÀAfè{Àa.™øê /e;æBª|…J¡³L]ö)ù¹MäÎ#›)m4 ÂeH6º{®ñO½Ü¤G¾j}lÿ™éhæ±åDÅ½\‡¦wXo±vìNÛ2Ò^lü¼6$laé TÛÖÆ/ItÝæÆã¥€5´ÛüuÎ–â_R¯¿ìŸsÒ«.0ûü¨'t=;Ë„Z©ØÂxùÙ:¦…UŠŠaçÛ‘p¬ØÆ¨tÁ¼ä%ŒŽÙµ[Ímf‹ŠŸ½wFYqJ7ýmÊ€X:½÷û™Ôs©ohgØw5|‡E¼bM·8lÚç’ž¬e¸K¨÷#3Ó
‰Ü\dïó bxK÷S9ÊÊî=¼¯›Õ‰ß»\\x­aÊ¸ÚÌ,6ÚôØÏÝô	Z7/˜¤’„ÌDÒtÈþ/×À¯IÖîòÓÐ 
©ž|¡(9"ªð´ª‘Ï	„Yžê7À"Yºûd+ †¼—ƒ¢M£šXÄ—éNêÖwç™,Ô¡Ir~ÀU¿––´"ÇÒrwÿDËO¦f¦…Nèìû8@hÊÓgÉÚ± rýØ7T öcl¤#F!ŒÙ'†K‚ðŸgNJÙæe^¾œì»¯Ò%!‹(WÁ
¶: 	¡žé‡UþÔZš.i§ÅfEX”òQÑ·ÈF|ž‰X¦Áó,l4ŸÔÉÈ©U'Ÿç#o*êºðücA”œ-C…Ìk×é»×kJ«µ%ÁŸˆ¶ß[è:È[oíøn_Žwyr†p“J×žbKlj/}Nõ—œîî#…¦±¤²˜ÍÅúâå±Å<òó‡þ…:¨ (ë‰$¸8ð[4:íS¡:³Åêm¹â‰ã§ìÈ8
€YÞx ¿€™q:ŠnHâˆsËdkÛOVE*&(×qÕ7 8UÖ9µÄZÅ®Òé	&Ùðä#Áî¿e®“™&
ß”Çà¹XÿFÔRŸYDËÈŸà~üÝ£»Á„7­†
“3±àLõÉ‡#!Ì¨3Ó=Û„Ê±s Úá‘âH8îf9=ò¹£öº>‘+l£™ÈÒ·–f¿`ð[=6EÚÈRÖÜº€Û¡³7·ÿn­§ó­œùì’õdv(Þsjÿa2ë’î3,¸Qþ†–¹[îáñ%S…´GF‡Uß=^f¶Áum=R;\ÐnoÙ6ãÝƒô¡ô_}è{ì)î½áY¯Þ"›™ò"òuù6mýò;¶°¸? °ÌzÐyƒØ`žÕ¼øºý3ß¬í˜mh]{¨Ì\ø"éíHë¢}Ë¼½[T ,Õ‹­c#SÍÊ1â¯Ÿ»¦èü«/aÅãtüàC°MMkJÌýDORN£µ-¶¨wád Þ)•r¬•¿-{»i5žžå–jÈ¿íu¸95V91.P§Ê'¡›.â°˜¸`?³ ÏX¹éîÊCùJ8}1Ï¡øòØ²¶r%ÝÈ¬Às¥sÛt¨TE¨jí&yŽs4P^ªì­ÖºpdÓöÌRÔfgü¦
‚¡ºd½Š•GÞê:ä¢‘õÉªøÓÃ="õ2VÃU¾D!$ªÅ]ƒ†Z¾xãåÈÀê¼ºuÏ` ‹> Öt83	é~0mŠô¬åÜÍÉÂ,Í–PÞë-Nº7Ó©aixIœÄ®ÞC•j&Bô!ÒWîÛÕÇÙPå>žÜ]µSÝ³ÂZ_cjþ¶oÖauË¾BÌ¼ÑyŠ27†©P>*ÀrÀ j®ó {65õ_†YrBÙQ“°ŠœýMj8ž´ÌëÃWaöä—ƒKÎž^ª*2~ÝF2YoÍøm‚*HÇ\ù¼Ê…ãP§»PÇMˆ‰NÖ\©+ZBEŒ˜¸™<¸Î{=@É,Ñe8ñ}#\y*ú€Ùêã²9â)wAÜ@7¹Ì ØÌ¯1‚‹®–€BpªåÔÉÜ6‰m°inx“oÂQ%ßnO¾è£ŒÓƒiIg{'^bJ‚ÐÊve¶ª­¢lèžñMº¿E÷ªÐL‰ì®»V¬„U÷ð5nÖ™ÚHz|w;C	ò° ‹ŠÈ‹Xãþ_'Ó\Ä?Áí°
;\Ý×p/2«ak%w¥Vµq,®ÎÍâ8|5hÍV‘öH®v‘Ç/É£¾ÛVÆ|¸üdÛ¼#ÿI²8e,L8wÎ	&‹ÉU–Ð,	‰K÷æ…/¢«æX$-ÜŸDIr´p¤Ì Üœ(y¨¢½ ?¡Z‡ðs•ls	Œ›?N˜ÚÔ4Ba§ˆþ©Ü²žœ€§ vwt¥©t5¯&ï"ò†ˆˆZ„d¸‚”ßCH…¹Œ;Ñø–’·²ÑÆ™³j8<î6Ñ™€=ÿ1w	¸ß¡Ëî+ ®hÄB¢7¡wrvºvK“±-ˆûÒNN$Œ|ØcÓÚ•Üý)FiN¢7ùÍ¿¶¦¤Ê‚´Äh³6@§xa£=]›'ís2½1£ÓÆÚ(¬±ÑJ&€êÝk<¬\§`?!²¾T€KÝëfltì9_ûœ8:ñdoJdÉÌ?r¡ vïöm»pÚE‰çQ±/†¶ìÎï=!‡sQË­<Ý.mÖWÙvÐ¥]…Î§ ËØK•GiºíŽÞ¨â¢uÌY¼VáñÀIîÌÌìR©3ËN¬ç><zÀ¹ô –yvoˆ0Q©SðÿûÀ1µ…™&~†+¼+Åàÿµr8<M€ßS}!/ü¤¥‚ÈÒ@ã¿uØ_ß[º q.×Å‡‘Óý¼Y~…j+M¤E„gýz÷§E~ð IÍÑ6ÜÉºõ6vUÈf¢“áu‰mk.?L¤¤Šµ<Pq/;d“¶o-´6® w§ø…¼þe$™+ãônä\
Qœ“Ú2„wzMz_“·{4ùšÍùtÇºÂY Ž	|±;7±G'œäªV•úÑ†’Ÿ
KÇ•ÊPˆà	™U(>ŒI $Ë:}¬Ê÷:ÓÔÐû5ýì,*û°b¯‡ùÔ­VPóÔ€1‹/I-”ì_OÙB÷Ýh{q@aÿfº—r('‚‡ úƒüz+ðM±š£§¯ÍJš]×‘áø)/º£•Æá£
½CýŠz°¦£ÆÓÆÅXñG³u”ßûòi\.r|O†Ôp0PþÙ¶è˜Ø5ëzbNE³Õ5“Ì£è©î†J‰i@À´ÒXy?O©CÖL¨—ãI(¬ÿoj!ÇÇHß,òJ¢îRIzJ«çOû=ÇîÁ,¶J\¾
‹´u•õÎ»¿ò.^rŽJ3n¤Éó×©þºE’ß°âwÑ^V}„õ–{+°ñ‹×ãèÛ}oÒ×Qé‡!ü%#	¸l8cm°oü£í˜ÊíNLo´ò»C$BµTVü—KT9g}Ëòçÿ÷¯	!å¡YÐ©jA¶°Cj£dÂÛu&ó)HC`%ùºÛLÃ–~½8›…Ô“¥<ÎºwÞ/¶f˜	{¦d¡?M9~^*"8’~ê*YÀ/»ˆxàWÓ(<ë¦„ã5<½Ïz½‹?€z–`ëç—°ŠüZ‡a5V…ÂQhE/Ÿ€AÏÅxåÍ¯@KñMµæL…xwÆø»N<ÂØƒÚ}®³&é¬¸¸ÏÍM•8Q,º<ƒz+«®Ñ©¤^²Bq„—ýâ™˜ýk€k9ÜX;X˜ß¥ëv¼ÝìmIzæ¯(!u¨P—Ç2‡N•<ŽWéÚcgå%˜J!VjFÜžqãGžðÒôp;`¦þ+	rS¶..–Tm‹ÁÀ¨Ob\™sÃ‰cdÆÉ¯&üy™ƒ>“ª¤ÖŒëÚL 'æ’±ûj$öÓ7ŸD®‹Fåd1¦Ëf½íëºÿÏáÔ\æÍ^W¥­ãJ¡Ò-¾»É»ï#{žEÊÝ¬üüÄ°•®ÇÎÆ´FŽËplG|ùÖÅRMþR‰€ªø¯‚Œhn"¹I¥K4ñûNï9¹uj0ôá`V’“O´²3âÂ·åuøhè³‘*'·ÏÁ×GÆné$Ë!T†.<“Ô¾2q2›¥V\A¬÷
M+Æë¯BÂ„³ŸæÓkFõ®«1•æë¿5yà=Ä,ÕÀ^î“Ài?°¤k~èšÞR”ÍX.z¯´ (•uß’¡•39ÄØüÏ¯r²AD^´3+HkÖI—¨DíÍ5oW»ñÒ7bnë5\hŽã·‘œë7´¡nÄ¼Õ—ÛtŸ)¿s@ŽGh¢íSFâš?AîÌáÒe_ñÛŽhŠ”2‰[¯K,°DMÌ^QV)6‘öqrüç“oïF½µ¹vK—†5À^eïëLÆ9‰ÕšF6f(6‘¸•Ññâ{$µŒR<]˜ˆž=È’ê‹wãqmN’”Ý¬	x·¦†Î[ {Õ’×á¦àÃxzî»Ô™¹N—ûÒo'Ž¢0ºKâjçO™Ž™…{“ÀÆ½úZØÎxVÂDb#² œ9ì,Ö)0‚#ù$Ôð¯Zœ.ôC0&ÊqpŸÄ÷˜Ç•™z@—Äè´€”²ìšè…)Ø0ÜF¥ŸC}Ý„DûËBvj¼ºÒÉc¹ •ê^mG×G0Ñn£ÉzÉîþWÖÜ½•ÖÚaeôÃáØ¾UÁ ì¶ÌhóMð­N•¶#V®=h/€šœž!#!2+‡ ¬eÚ*!?u_Ç4Ó÷À‘ú¡èâ©ôÞ“gG›öë¢@¾Ô ¾_œV?Úž1x:UÄÁïÕËå7,õIàoÎÆ_ž*0âÁx:÷2¦$î{ù4Dö9$Ìü¦é/Úu¦¶k|´ŠñÉK™mÕ	¨ð+ÂÊ` ¹ó+ª÷7Ü©¨3_+	Ø.®]Fª	8†Zštvðv=˜.òiº·R[2&!5zïÈ
3³1}æc´¡ëY¦K„&)¡p³"À;p~‡IÀå‚õð¶ Í¾°b«(%¤^,oˆøM‘©Ðó´ûdðXý£ùv?Ó…µËsWlë¶ØàÕ¥¡(™‹‹x¼_G4¯“–é×N·K‰ÛE>µ_l³a'kþRõúä°ZÄ$:CÿQ¿^Të¡Éî+/ o´ÓûFÁò»°<G{±¨ÈøôË@ããÅS•Ü0î“ë¼Èÿsz¿¦„žáVï¼¾Q—·¢’–­ÿ%›ùå¡’Ù#&ö†CR‡J¬ˆiŒ  V¨,|2'XvìV»”›ÁÒi·æ‡©‹îÕÁÆ* d…wÈ&˜"¸QÁØ<V- õM·2P§Ú1¸7lã‚š–ó¸‘à .8`ª‰
ÕÄ2=»
ŠvŒ83cMLužÏ©R(2k^]/iÚrßä5e‘À*Øö5´sí4Á­sÁTÿ§µ·4ŽK»>ãh{+2W†AÓBÁÙûä[&°žï¯]âÑ6P–õµ“Ð:Í&{ŸÊÙ…NåW?ÙŽÓº¼	uñ°íJG‹áÒ¶í§ª12‘c;(º¹Æ]ÊSÏ|s×}E{ôR½Þ?ºq_úéÂ>Í.ãû$Ž¦;Ç!BQœ„T	’IwýÉãâû oýrY8ëŽ­â‹(«T¡²½M¦¯lfžÁ§þPØâë™ „úÿ$Æ_ÜK=ë:SÙá
P¨­ìÚ%)á©–æSïáÄ¨Æ% ©cY=U"‰–î­Ç!‚CŠ_•·^ôX&K2¡†ËúCùå”à·É_0¬Ê-‚‡Šš\Ï æ†jçVVz3¹.þ,²1Ðµîˆ¨<²˜ê°Q¨¶?§R—ð_E§¤?”|ãØ¡ÚœY}¸ÓÁ9ÝÉé¾eÞ=év«ã`D´‚#6t¦šè)tmÛ¤öŽÒ~q/…f3“ˆñ¨ë3:ãœ¥fKÕs“xÌŽÏ½þ¹÷ô4¼*/„oÆW…Ç`_3+Jc’juPê÷·áb–4¹¾¢:wÄH¶]œnï5¡àQž†§¥ffCÝUB×Ü,cMáÁÁŠkp´	ßs±‘#Ë¢a6=›Èês>Ký‹Œ#o»»ã<ï
Â†Ã›³‹û"Îý¡ç0‘.9Š-hò¢ÅJ/¼ÉCwG2s@ý¾ƒìkwùð¶š‚SKChã¬¬´æ¨±ÌÝî«/ëœÈ‘/¿õ%	h7 ÂÞ·EŠ¢4`Xû}ã~BEÔØF'þÌ¨³MÎ™ÔÃöRW\_í‹bcvUÍ>úÁ'Ú@àÊü¤Ý ¼ç.×ÿ©O2…m_óDÊF03K·ƒa¯ãq¿ìßõÔ›\q™]ìDcô9ñc»z\Ü§¾1™`Æ’Uèÿ÷ö³=œw†ž¸CR×ªª\Ü.ÃŽ%­öñkùó‡0q^-o'ôE]ŒhO(ˆ¼fY9?0)~ÿáI5NdwÖOs%™Ò)·œË,Ñè²<!Ò˜nââ‡½6&=™`7ÔxpŸÝ†©6ñ­‰-,¹@(sÚ|,XÄüDË)/=­Øª‰=;‘å®ÆcK"•+ø<úrÝ¡V4_úS³~x"Ž^ŸqäÎµU—œá75ýD})	h)ÕÅ~Ùuœþî
y~v¸Ê×Æ/•‹]áÚfh¯xöÜøMSÉ’^D¦ð‰—ƒ¾ ¥‰£Ô:=/c—Í¬€øÇñ<-­«æù¤Þ`jzT€'!ÂÃŠÉ®»ÙŸ#Ái¬.BGÃö¬ÏÔNì¬d‡;09Á3ámèŠ™ûw_1èÀòœU9:SâÝ£”ö—Ø9jï±—ù$¨ž#{àì¹–¦â¨y÷˜ë÷?·~g»p
0!*è¼îÌ\yQ¶ZÓïf÷!Î;dqw½nÃñcüScZ© H&Smofm¸Ó#Äæ3¤ÏAâ99‘¥h„÷Kt[Dd.·Ef†RSÆèº£•ÒX_­…6¢øïßÌ')ÖsC+5wh¥L™Á´?R°~žL-“:Cw$%X‰Mø\ÈÏ¾ž9Å–HïúÃ5óèöQïQzÖbè@žýC]½1Ü||‡yÏkê”)¾”]\Uäfkÿãã¿ÒõðÉßÝ.ø^˜ˆ8HkÚ§šüðl†?úaó×—R7W¢R=V³)2¿|Û¼Œl=÷ö	>Kž#ÏC»>.#±-†¡r§ 9ó…¬OéŽ(@o?Nð¼õÐ*a¶'¢
š†€!_~_m„:Œ¬fo)$ã¤Í$9Ó®°¦½I@ˆ+1ë³aúpèQ¡þËÁæ¾;„9Å¤óuM½ªº3Íåôð7ÆÔîâÕ$hûõ²ï“û¬¡qÜðì~ä:e× ßxz,ˆÊ…÷•¹ñÖ¤šå¼ãï½.bÄ.•š&oM£aÀâŽ$Œ‡œEæŠ~‹'¤„Ò8è"ð¿JåÅ¼”Œžd'¯7võð/„JÇ´C$ÃŒ`ùiŸb'nõmM8$UÕ2ÓT÷_BF]ÖU);²Ã=µcðˆ÷¦Ì1ŒÈèþIì5IkÍL3¨ŠÖ¤ÉÖûéâƒA÷ªyOæÕ.!r‚ð_ÏhöÇ¼#é¬©>Æ®j³’´òMê(úd1bÁÖ-Bž(Vf‚cý¼;¨ž<Mó0cÏ¿ï±³nÆÚ$Ã†¦¨`§Ts+
>=®h‡þ†qÝVêä¶ÝàYPy˜›‡ZOþÜêB!Û·W ÿA‚ìM®æ:VÊ¾Æ8QrÒ¶®¥ƒ$–³™wÑÁ¬z‡¼p+VfÔ§Œæk8ø c)õ¼ü‰, Ãô“Xõ˜EÓg×N:×òM…«Å;ÏÄß=úÙa1ÃÏøÊ(ÝÐ±œÙOI¾ú—N^R®Ýrmä7¶„ñÏFÜÇŽ5øOÀæR
8:g*T£VkR“G&)÷‹[	A M8eî…4Q÷1F~›¸uªC´Î/eÐ¾æz\ªÃ­¢[kX\Ojœ/}Nä¯·ªVlRA¸û+K$+¢&ú˜º÷ýÒW¨nÈHEÂq µ÷=µDùØM½ÃÍù}ÓIXÞKQ~3"’ª÷a* EáY-ûx¬J«ôj|ƒ¦¡ü@=äµÓê<-ÿ‰laù™äc™˜"9ÂëÃö6°ÍöH°œÈnL5Vsm>ÌÝç¼§œÛd™ñiÎÌ»Óq•…Ä,%šŠ8Ð<bx¬êÄ°h3#Ñ«TS?Æ £!i»ðM|ÚSŽV-7^³³ùdzV8ˆFàrÃç;Cìž„y‰XÛYˆt/ÞÄ›ò¹¼ÂjÿD^&8<úHDñ¿„‚~ks _'µg)“À€àŒ}7l›îäÐÝ¦=å±¹‡àbêKÜÔˆ¬“Ç×Š4nûª­´ýQW‘ÖÚdfGlAŒNÄ•JŸÏÝ‡·²Šj§×FÓv,þ›{õÜCúO ñÈúW‰±üºÞ€Iœñ}LéAâŽxëp¹Eá½ñ- ‹Âù²çP~¦»]Fü2e„cI^¬1ØÒñº»‡ ¼o[öî¨Káªæ@ÿ± ÖËÛ}P/Â±HÑ*zì/MEù¥{ƒŸG©äJCîdù|ŠÚ§Ž{¦ Ü8.¹$†?”¬~®/{Õb3ªŸÿPDÑ¦¾ÍxÍ‘àGc‚Fq™Ð{Ý4·µLš°_{lŒù@íÌ¿x¼ƒWýÛƒ\=Ìœë 95õäkFì1ÆY–‚íHÊ5i.Ÿi„z"æn=Á…ÒìcøÜ,"DÄ¥ÇÇ‘Z@Nò=ÀüYª·\æ€/ÂýŒ3~Û
ªç°XC4˜re—·ïa¸yw;|Ç±¯rmòî¥'3ñ=ñR°sì©m|èÙà/ÿÃñÍ½†®¸3)'ä\%ê8ÏGŸÝf=Iƒó4–ME?xtôlÃG5–p&Þ0or”í¨ShÃ ¸¢¨‘y.Æ=ÈÃ!î¡¶éPrªó“"Šxß°9~››å˜±DIi’˜´èï¦MxVõãšøZÆM¹6r")¢..¬X¦åPUÛÈé¹&ƒâýÂ|]otø|ÿÉ‰5A1£1÷˜§xüDö#œ!îåìåµ®gWÁÍ¥­…u¾fççF®›ŠÆ5›Ÿflêlãè~jgÒ™‰È4õ{x—³(ª£»„
'ÿôï(*üºóüœ¼FãPú«ì¯Ga$å&EJ=õ–N»ŠAÂ~Ì ¿îfÝ²Ui	á¯~G™½œA-T	å¿®êq¡èB_B”ÔgÑDvëÐ	cNHgWˆúU3<«É†2éÞvÐà·0Â>UÔ§îlÑé‡÷¿ÿÿùÅž42Š	bÐŒ)‰Øÿ<EÕ¼ô+_b_ÝMŠ¼W¸h'Ï$\”TÍ3ÏW-=Ñ{œà3’bS±Œ(ƒé¸úmCD©ÿ¬ç"—ÆÍ*D–. ém
Ãð<r§þ¯üI`¯Š@
ñQ‰á@<” ¤µ~$ÂéÇŽ£kç´Uâ˜aBa=nÎÌZÝÂB°<õ5JŸ)Ø°êEÒp]t7V5-ðÕ*9Nl?¥*óá»c÷ü/Ù^??½hÉ°QÁÁ‹;,Ò‚?qz<®¡þ}·pó0O;Ð•€_IHë¥gXD ™NŸžTÎI:É—-·Ùóf~‡UªÚò8CÐ
ºïk=*A É—’¯.éæXÄRx†=•Ciacú×[SµÚ\Ê–˜ê-ÞHr²™ëRo¢÷¸Í û¡8>œ€Òït¯.T­"4íöcG}ÄJ¯Óp2ÔndÝ¾ðeîö×Ø#/öWV@‚`ñÍ
f4‡ý 9]¬\ªôg#KÙ©(Õï`úgJ
(þXŒP  €ÊS8F-—'pþ×%kÜUÉDkm©É$kâ¤²ƒo¥fzJ¦xWÍPòÑ9¬{áÝŽPàÿÞ‡Å#×ðÕA@WøËëÖiëu5£’9œËÊ˜PR÷KÔO]Öí\1‡:a®’À*_Ë¨ºOö7{Výêž$™2ŸDp:3ÙÛoT‘µ,*ú1û«”y©Ç|$6ÓàØl­l6B?ÿ]Í´Í;,4ó}aÔ BSaÒ/°iUÜ–|O?÷Ö,`9Ââí¡ZYiÆùÙ!q%e!}-Ã°fŒÌ€ÆYo\þ¥žØâ9`¤LX(¬mAŠ°ppîº10¸£½’%ßî6J!£eµ}o‡aµá‰< #&SICõ€êÎ‡Í±Æ<Gxœ«2R¡>{X ÒåÝKã˜·Ü¬Ì%_bî¹vZre¶ÜY»Né®b‡Ç,[U5‡àêÑlj™	ú§ý¸}ˆ[[¤©„<™}dð	»= Ë.y_[W8ÜkYú+¥ôÈßƒOÁœûhjŸ×&žqNý;ËVŽu;yŽ»^²|jI)ÿ˜8i¼iç"MðÎÙŠ·ÓÀƒr˜Ð·vûâ\‹$†Ã|ÅU÷Ð‘îFSubÖ×úÐRq~±1³:ØÁt2¤¯°úÅX&ß»ï©L…«B>“46²}˜ñ†Ãvžƒóßž`
ŸPb§„üRh•7Œ§Z½!­/ en‘Îæ.­(¶Œ„Ì©j¦ÅlcýoØd_ ÃmåÍˆ€¦Hå£žTÌBø´N'½pªciÙ^k–75ž-*¹M,-6½S¦gaò*[»Ãü†Qß/mµØ¢'#l‘qµ¶üøËy©-?"›äï¬˜ã<|ndžÂ1†%ãÆ	–óô›óuÓ£GÔ|„ŽöÑ>ÅSÇ ¾ÇE Uø×i7—›cC"’ô™È0TW:\CEï&"{/j{ëè"”z¬Yë·¸ÉtÞÕ×öCRwjˆÎWBž…™R9µÎ&`­ýq`ÏÚX2à@ä¹Çó64Æ|ä©h½6>pS|Bmq¿[–Ó\Š J¬{2$®ðãEžåV–îO¸x•dŸÅvÍÜ;({ñØ¼‘—'šú/)FdªSä½¦wy+j+«ÙpéÕMGžx;>ˆÏ¥ :ž·AÌvƒÞçœ¢g·ýaRq“‹ˆÛnÕ½úÜOÙuï…`œUî!_ænz~ö~¹·7vìí-™¿ga7V;[VXuçÂñh†¶dÑùå»nÙf˜?òS!SÅ¼Qšsû¯à³œ_-%XC½ïLìu0iÃ["ì§—ØË+_!“…q3!b3ÈžÝ¢öøž]Ë)HcÝ×i[× “žŠqÉËêš¤*ï£âuä¬Ö˜Od§Ñ¨ÜÁó;Çùê%I“ëZ×U(Ü³rÚrÅ’ÌLÓž'÷&£íå~ã—‰Ð,@w%ìß3ÇBál}šÑûžCœ)¾Â×ÔtŠ!hJ
­*$q„9ŒNü°áè˜š0ôk…§Ý}8ÄÏW7â<fm?ÉËÐ4Ø<>ïŒ“KŒñ”C…¡(=9A˜šµ™)õ®‚ÆÇNùçª/“ÈÏ¯d(i<í]g^Rá’º~¶TJKƒà9PdÄÁFG´)°R››\‡„Š¸å’?J™'¹z3ŸÛë»{	…òªÙk¿#¬¡_#ÕöRÍÇë?îªì¬ø?i³Iöð‘0ŠÈÝ‰‹Ä5×Ðª°²AÒt³ü¯ÜËzØÇ3beL¥í|Š*ÌUÝXJÎâÇeži½‹–HbÙ7'l°™q+ŠÜs¢!ßm=ÈNyôES6Ÿ^¿?"ZãT)Ž˜E¡}1·§ip‰IgØhÉ<”±ÅÀ¢T÷®åÃ½[«ãQo¥;åX[nGW—'â@ÇÀ…€i/+c	¨ùÛÁïùç¹ùÉN©¤õ(N=‡,äfX9¼¾ë„~…GëZ@©Âð¿=¡“¼C
{ç«ö‡Mo0_Áƒ>Ûœ<D¾×¼Ã¥P¢ÔãH;7K)ËSš»”¹7ó–s§öUq7 ó¾!½Ø|¤\lJ}'zN’Z×Òò:Ì¡Ï‘Àº‹žd†ÓõW!5ÃwÚÌ±ö7WÁUŒk½EENIðÌðd‹—.óš)J4XDa3®9äà^ëÚüTÊb†Zô‘
eß\âEc÷¥gY¤\áÊÑ†Z÷tï˜Kcþiá½‹úy›Óæ^ºˆ+™Í®«Ý{.À»¦Ó“uµ+ü²tË?]Q.z(•øÃdŸ´Jýj:2.2Ù¢ZçJrŒ†L	[Çš•Ô²´³¿†q½c@­ëë˜žë®±iÍKÌt^xåðDÜ~%¢†ƒ|¤±ølhÖÈ×5ôH	yM©	ÉþäúL×Äº8€J/Ç„Z“f½ð9
Ý2v	ùÍ$ñ±/
P_º{à¥2!p­ae­ö²Á0Q
HúxðóETI/M´[­s8ÑbËÞ»Ü×YRð¸N¯U<È”«YšM¦‘ýíê±ë|Šî:= j÷3•þ7R‰Z†Ð;l´C{bÖuÞá»V|Ötí ¿¥.wÒ®©ÿ£=aç¯ŒP7FR+]NÎ	™f.ƒGÂMvx&Ÿ¢€Š¢îøCÀ/Vé˜Èg·ƒÉ±_]ìïI†…1Y>ÝŽs›ß­9¶#ts%l#1Ã(Øß¶Zg¡Ï:$R 2ÑÑøÂ+´ZÞt#Î­¹XÞê4/Î0\ikñ¯U¢©È
‰F(¿$Œ©aÕbôÌi£ý/çäGÄÈŠ”ìzl|ˆË ¥ÑZZ/X:šTï7%F?x)øùˆqÏÉ8i¼ªU£_“[93O–Ä©E	²)`‰e(Og¢ÃÎ/U¡¾­nÏ;ìM¾fcÃ+ø%ÅH]5)|ÔÁ4bÖ)LEVò×j³mX÷% ÌäV›öhUçmßj_ì_Gâi·JËá}-arŸ	PuŸ"ÃÊ8ÍyêÙSç¡Z­3¦“1!$ûÙK>Ù3úÈ,©; }D}>Š#_-}ÅÙ2ãŒT©¢Þ–eéšOø¼Í¥ßä'‰xï EgªÉÜ{¯xxít“W3•å0T1)_$Ç­^@(G_òñšÍèû¥Þ¦	+0î¿6ÁÔ{A^¡ÈØh4õ«D„ÜB‹²Ù¬ˆÎ½°}ãrY€WEyšGôgQ$ÈŠÚX^¥ïˆúIðå8 ™a›è—=?èœo?Xë&íJåÝD„ÜÓGö–×ŸªöÎŒÀ‘EÓÞVƒ¤Ëøª|ái }SgðQV¨/É?†(9œ»úï%\RKn&P…QŸDÁŠ½‘nàg¯wiä6D+Ë»µ_I²PâlË­c¡šˆ/	NzîßhFg£WA¸–/A|íÐýsºáºêèw±bIïUJÆBhrXí§Â7­™h)~…5£mg%Á‚ï%.†Ø‡Ç±­x%õæH›,ÆKõn]r(¢êu°,*\Üu,ÀG•Ré&¶SÖ÷H—ï’%\-jGwÌÝñ±ž˜yçðb®¡ª>úïŽf(@<I|ûiÁ¦ÓQ-ö„WÝk^#›“¡ö)ÔØÝÙÂ^“!ø	drò¿Œèù6ërD£œ;2Î7‘í‹ü’gCòçØÊ “Wš·Ž_hž*³5êfÜÄÉí‚£ NCÍ!µ®^Áàä2ŸÊqp€Ô`WSý£~ÑHOXTÝå;¾6…}§”Ðù‘æ	aÐµ÷,D!?Î‡mõ­ š½èéeŽúæJM„y,ÑSe7D‡÷ß†³á(Ý˜[NÂâ©²+;ß(,Ú$BNÙÄŒ&¨­—7`QgD‡ÐÏø,…”2RÌsR$¢¦voÌ7HLèº¿„O’a)é'>A†áÍ5bõ4F¸û™´®»±Eu„Ð=éJ}&ÊuÍ‹âØ÷¥å’ðÄ’	ÒiˆÍÕz$›+ãpo#éÊQ™+™&” pxö(¯Ob¬…<‹3¸½ÎhœºÕ\¦	r+9£òìâ2,BcPrT@5ÙÑ±:ò‘ÉåJ1¸aö&¡Õ#¸.Ô¬<UUßÛºŠ+á»0+í–Ä„’óüªì†|³Hv“‡*É³ýLVÒ‡q–3æ_²Gä1ÑˆKÒºÓøéÝT¯aPåËÜÇÆzÕnT\%Ún´~q»¤µî÷/‹0ûáDÀÄ¸yûMR®À)Ô·ÇYíÆ0€™?Ž|M*¡æ}1…â’>ë&ð¦‰2„GG‡Æ1L}ÆJgÙ,b‘Òî” := ¨v]yÇŠÔ¿kH›$K¹Ì®óN(C$*²ìÕ‚¸³`$ú×€y¢
J»±›?’æ¤-dÍþ¨ Ìy‚6—|×®7½m­>Þ¼Ç~Ú Ó„@X¾bBi9'¸JðÍÓ\#·Ó'¿²Ò?/hxÄÍzš(évE˜SÕ¹2s<4‹¯Î9›dŽÊ×|øÞÞF&Ž¥ÜÜr·”rû§@Ž>ò±uciPîaóaº”1_²plÕ	`Ï½IJüäMXõ#×F‚`ÇÑa˜	óø=#zäï÷q÷‡C[šQ›ýÊ5ÿšÓÄs;ÜêhÜìºðA®f,(mÎÄ/4¡xx,zÕ¸Mb8`6vn”XÃ±d[»DÒŠäÏîô“º¤,#+—Ð-­kHlöÕŸ·ºêŒ”x‰ÜG¾?ünÄaÙÇYî¹ .- %Ó¡£A‘´ÅLÖÈÔ<Tˆ75®°?»³àÆƒ,ù†b£h—ÀOM›á=IMêSK&oP6?ì¼A‘¿„Èµ©ëVx†-æIkY@Ú¯åyS>Rjô°@„4«CÂ¶	hKü³”jœô%ìX hœœáU5Žhí…™‡)Ê7iH\Ã°(bÓ©×Ú	Ê¨ƒ]Ü›!$ó“Q†Z£ã &F hšrD\dªaêÿÝuÏ†¯­†´‰¼¬’„¼à×ºìcŠ^È¤†äK%£)ÍÅ!ü½/¾´?k3ÂYeïµiÁyÕ¡Âqí‹ZÈ°Ud€R¾µÓK†·yŠóœ’Êr†IW‹×j,Z‡UÏÁ¢u±¥˜Ö&˜ŽA÷‡›ÖzÔ÷Õk8²Èú¼?›­fžŸ<²0ÓÞ\‰ŠÑ¨,VÛŒ³Ü[ÞÛòI€T/ôÉY­dfÑ(çbÁˆ§à3i«tÈQãLw‰ptƒ‡Hd9ˆ’Ñ zöLÓÐ«û}Q”ðy)@çï	þ˜™"ÐŸÉTRÕV½Ÿ[ˆ?ó)Ó”oQ­ðèø¢†ïÃ‡ÈÕÔ~ìŸ<É4…¿Ž‚‘ßDe›h¤[×5u—ÅµGõLÛTžÙ.Klãö›î§ƒ«úmÕ£Th9Xâ]¤®L°ÙÙÅ~ç FìÔ~ÕÈ0±„™XM0í?¢îûq;È§9ú]²ôØ×(ƒLxPò˜8ò¦zS†ð…L$§fcÌø;‰šjt˜;Cn'hÁÿ:Žª+•í‘’¹3Êúc(h"SñK¡ô!AýXML¡KQ½l\ð)k‚VÚ¥·(ã·]½£ÄÕw/À4—yØdÉDûô=¹uÑ®'œ÷ç’¤Èý—´¹)Fß¨Bù6v4ÑÁ…·F„2÷t=à8zÍÒ’/Ç4o¨UbJª…šÌ‹a&Û	bV£qœOÅ'a±?KÙüÐÜQ­Nf™d±¨&†cæŽcAíªÊ€æclú‡LÁSµ9óìÜ4˜úOSÁnÍ@œß,×.Îë¶‡@ˆ _ÊÏ…QXþóË¼º	FXänöFdjÀ®i®Ï‹Geþ_à½æ 2ˆ`W­ý
£Æ‰Ã$4GcxI[¡ ¼>†¹ÊW~1P•:h´øé	›· 3&Ÿàv›dð6ÍÎéb°¿¸ÈÎRKæ¤ø?°ðgÀmhPŒ£X›ùh¬À’ýP7u¢{£ö©à­¨ÄøNFœ‡aÊ#\¬gz½¯ÁíìûI¤Wv|n*b¦d¦¹“£½£AURWC7
x”B­Û°-5ôOZJ¡¸¿BÛ
§hpÕ9_w
Q¥ú ¯ÐE¹É,OË10ÕR 6ÒP€Ìí2Ô/(?·Ûy|ßæÊZ‹”çßŠqcÈ]W“,§éÅ?ÌtÆ¤©Ý Êž"Èbî÷åUÜ<œ##ÞP	ø¡£§dšƒµ¤5è)ž†¬º‚ß¤ÕpˆuˆÚ=®2¨ºg?«âfö+é%ëÖf·ðwÖúdMŽªûÇÎtÇ#ÉW”ê¶X­MML†»™Ž•f©BÝ©À˜?¼ô‡A$$Šs ÅZËì44˜d—ÊF­%ò\;’ lêPAÿXZCõÒ8~cH ßRw1 ¬à»3ejÜ`NÏ2L/Íöºë`@EX´¢—@ÈA[à{*R`üìãèÔ¼áÆxâæ·{ßT]©÷Ð~.È·æ¶$Nævý~&åhÉà{íUW;ß‹É|Ÿ"Y0JfýÎ]	„§Œ5– Þ,Õö2úö8Æ÷%ë„ÒK
´ø,>[xK=¦6+§,>˜¸ËÐšIÙÃSäŸÀV…zäû;r¾Û:>†g¾J8Œäy2þ„ßíó;
“‰’	ûoÈ–ìbNd°¢$~^Ì^ìÍJ²oc6”p†YRS9@;ÌYs<­b-méKR	<ñGÍkØ’uwÎÏFëøe“:ÄGF†%½NÃ×y˜z»sê*.=Ówæiyr„*WžRÚr_cÙtcÚØ½)_$—â!Þ{TŸ§rXuœO‡Åöòõç
©ìIÎ–m›NJMàø’4˜…¸ôÃ:µ†H]Ñ}
‘Dæ×LBjñþ¿´å¿‚¿u±#	aKb:ÑQƒEQæÑ½x‘‡f½Ù’ôÜ/S[äwÅÎdºíUex®BÕ²àFâV]i`b+˜¹l²®¬´kõ®ìÊà0Ù×5ßÐ06žŸX ¤ë[dìî6&¤E¾ôÛàX”2J´ëT”xR¹Ê=ÐËÉ·u÷G¼’ÎŸÇF¼¹H:e2» kkI~$/‚û'»L¨;™d–/dÏmyvÏ›7  9¿^Îõ'Ëc½k~zGCÄˆwWc®³iˆxJžµÌ¡µºé!Ubµï&k·ÿëèPz€,i†kt(ËøýuT6-Xü5Èêx®\%›Áè¢LQç‡h½XßÀþºíBÈb%+Á7vz”º:jIinÆV/ºh…Þº\Ù/Ï{ˆXF§æÅê[†"š¹2ÑD­»alð¡YWˆ¶2>î.ä$•QÂê—¨»L…8É±•3`Y[ëoLL[b«Çú­ŽÄ±©BKBÜ@ñ¤pz»ixŽÅH˜GBÀföhÙYæd7!.Õ‘O÷`}ýSÌF§!Œh|
lÇv. |Ûýxcd¶þíñeâá³á
ûSŸ öì§É¯y×åLr½4½¨òw²ÝFMû…(ö?AÆ»îÆ±½…jÃW-’‘¢^®vPÏžùÝ•ÎËÚDS%4²å¥âþx«.iýC‚ïE[ÃæÉ”rL=MžKvú½|àM’›,`ænµ•M„{sƒöržîÁ»È˜„´¹ló.j›8w¿¡//eµ`6ù!ðRÇ¯¾Ñìy°j–¼Œ…õþðelü‰`‘ÝHNfˆêq®héuømjJ©B¯žA\­ð•ÛZŽ5D£ÿ+àÀL^ï€½X‘Û©hÐ2^|y6™Þ \ã=~\¶i—o8Ýï0ÖcßÒ*Çcn¤
ð
0ý0E²üÚõ_! tík»ÆËWRãWU.”}ZxÎªò0E_Æõ?ÌB~•gT…
J˜J²URßVm,Y'‚ëÖííÕŒ%¸Ú,LXMä·Û/-‡.SÁp z—>1Ö`-£›_cMX#jÛˆ¢5
™õ^„Œãj¦ßltÔhÕDmöþNcO¹=d9æÝ,g°˜…ÔI0X©æÊÞQUFfù;#¨u^üguÝÔd»–¶¼²È¬Z÷)K«^LÔ•àîpA-]~eÍÔLS†¢J²rÆtrÞäÀ·÷¢üpáž©:-ÿ‘ðÎSh )v›øø ‘f²CQJ®UdÉù˜R l¥¿gÊfô\Ž_u|*A¸ÄÐÏ®€ž?1˜MðÜ±íÁTH¡ÆÕ=ø×
4Š¿¾º+« ðvt}}…™9Rlóbàõ)'zÑK"}ü#ý‡jêŸ%Jqb(2fÀZI(“ÓRTm Ëåð (¼òÜ«ªæüQ@ù¾ž~ûíwF÷²¢"4;!–]ªÎÀ4È´w§¿¯îõ£7R#uªer¼¶T@rMYÇÏ°ÄâÍÉ{oÅ¬1¦ú^xMµÀ¿—›ÂeWlÁ/ˆÑÞiU»“_SDmD¡ÕS%#¹}›~Ö\ìªWˆÂ•«·îÂ'Ž¥6°rßy›27Ä…ÍðªDë‘t¶aU[ÛÎJ]Š¤èQ	‰@î÷—ÇW+Ó
·•K¥PzIðêÞ^Y(ë9õó‚ŒyÓ·8¥‚Omâ6ó+u>MdLêt1=}½æ²q5Ýn~ú@ Yåï»,‚$8sœRû¼YŠÒ0ÑzÐFÇ‚ÌÀùxÛ6VFlº>3É=¤Y/À§â½k^‘äp<ä±JÛJ³òÎÄýôoeu–õ/BýÊ)eù:Ôú¦ËÒyøtR[J™w’¸Âhôppì¨B5‡X8•0ÒÀlUîŠveºù®ZKÄ;lpOþ)›©öXD´=š\*Ü”BÉ^AÄ‘â†è¹±]UîºáùÐ.÷àºPÇˆm3õÓs	Š"RôóE[Ž_‹Í¸¶µ•Ãà°@’®Ml;vèãŸ‰rÐnæT2¤E-vŸ»·*Á×‚®ÆH_Ò:>Æy}P6é»ÛGæ8ó—#àÿúù¦ò-Î¼KK]•~ÆÙï›¶ºÚ¤§'n*?ŠK}ÞÈ²uH2â™‹Žò©Ñ²ÏºBÛî®èÇÄ€û o¯µ\6ã jÜñKÒÌ–Ü4ÀÊçUD(ÓXëOTö}•ØT-HÞœAŠ½Ks	Æöp9Tlç…‚µè,‡’“‰¤
uÖb‚:ñP1Pù11P:>hrz´¦<öª¿CÄ¯¯wŽ~rf^þ÷_»¿iqoYþÓÚšæ›©âh_G†@Œ|Ï6²7“Ä”«ê#\¥Únuzó5ù~¯·¨|ò0óM]ŠG¢Y W²M$ò«DÆá2Qi§ oªïmTWd-<Ûq‰¬q1ªæ¬Œü<Ðä0Ã¢ÌÞóU­’‰·å6ûêAxf–äë3£@XpNq±KÚJÃD”@Ú”ee]‹Ô¾¶ÀÕüõQÂÎd‘ÃónêÜñ‚´?IbwZÕÔ'²ð"óaUëtr]“¦x ¸Úz é¥çÒ‹<Ç«êvâ*ý9 ãÜ¾côŒêÅWWíÊ©V.S§«ßG°kà#'o™Rð.bhE&Õ:Ö69ã“ xŒ%ÞßÇ}•ðÿ|Ç¸ZŸ‘ã§Í¶¢'Îû_^Äh(sèJ4Å÷¿÷UË¹&	›IZ.î0÷G±áðeÌ©ëµäT¦±Y³;‚=Ï{ äŸÙe6z×Ó8Ždó[};tÔ=˜(ÌÕ$êš‡·KK¢”%LZy|?åöp–hr‘9Ÿx;>ø¯Ÿ)Õº«›Ÿ.¿7Ô•…åÜðaädÌßý5µGAÉ=@‡¶6¼ÑºC=×)TÝšùßí5ø´ÿY|Ù¡ú8–ýv‰é™£!_á¼‰Wš.—â°Ãª444ÎM+«E§7ëò=Åû,¬_3(dô©ÇøƒÁY2…§ð%”Íšg=w·sÆy€³Xº¤€'ä½lb}©Îq—å9‚'êÑŽ²îš ¡Ž:NY(úêÖF|Öœ‰Ö!]vÏ›OK|Ô;8z²7™YóŽQW{ô-_"[w•¹—Ñ9KêuJKxÎ=my¹— òÛƒÂ°Oašþˆ¯bÐ’=N½a(´«àpŽöÝœz'ÔŸâk!_*¶±Èåì
Õ×›Âådß§@ÚÕêÔw¹'2%¢ƒGWQr·1$b«deÄŸ&ŸO¤dÁFr;wÅÍxò‚
¡çCsßxÈ¼ón|•¢Õã;9Ý-Ò5ró\ZMèE_óÍ˜kj•¯F9/„?~åö¤§Lòíßfz wk—C`_Qgnùn¥Œ¼‹y)Êh‡:LF8‘"¥°#tîÞÚÞŽ¨€dÙ-´O>%Ø6w…`«)e@jÓßoI±[ÌGÓ!Ý>a‘ØúZ²w&ï>Œû™{%IÐ¼!6ûÁUíœíçW^ÞÉ¹-é¡zË%óÆ;w/ÈÝeÇe!,
ò¢›xƒ™#Ôµ
¦ôüz11È‚DzÄ)[à ¢ò<eÇîd¿fyàæž*ó×ê¹*‘‘ûú¤ˆqÉ–½´×–æ]{WàÆö£Ì¢Ã‚¹tÈ¿BF%<h“vå÷%c…MÄô]1Ü¸´§ƒCä¬û°él¨23F‘Ú1íŸL°œ«~Ue|®Ê?û’ÇfÐq" ñzÊYùEß>6ß-æxb<-P›Ì<XÀSK hbÍ'±"êé¸(¦± =WîmÆ4^IYÅÞñ”âôñö´]\ÅÇu¯L„¼Ânîã·TéµZyÆHˆ¢BûÉ/&õ+†£ðÁ<¤k¤ü3¬…aZ·íùý¡xgZ›¨÷Cš-(†q6 $<Í´1(¨‡X]‡}'´n—ê]G¢øR8cýà3˜ùžÉu[¡ l>~žù’&a6ç>sêÿé(¯·ƒ…h•[jŽ‡”ŽŽÉÅýúÏ*9œ}¥ŠS ®!	nÓ¬:iw ö%÷ä,ñ[kôÀÎ<—_uƒ%åÃû~ÇÅÉ¶§ã¢5V`mÇðjÌ´[Æëõ=‘îÜãïñûÈ°}àÎ•°³;ëæÒ]¼»¨=šECb½±•l“Bà ßH«»
øÚ\²jæpïN²iÇé`¤z{ÁlµoÚb€½v´ˆP;ÃrT“@sXœ_qGëÔÅ¬ó÷¸îÍë†]÷]¡Sôl’j’yÃp8Í7Cs£œvnôÔ\äÁå{)2@7¬8&=QÕ´)OŸíê‡´¸špçt"­Jxì“ØWy®Ý„Ô$´{+Ú*ö  Æƒ¼ÒX¬ìœo~AÇóšÃ†ßFâ¸]ìs;Ò²œïMí$ÎhŸ~4¯Ñ|æÁ|ÁÀÓÚ]ÿ­Ý¿@·,I}é£}eBÃó·ùþè£Ó1cŸ!8ù[›³“ðlïFq¬]Ç
	js……oLâE× å-lU_„Ô–¤g²ñKx<vÃ˜Ay1›. ¶0_˜Z´÷•Äê^¹òû|Û?™$ ê1;íp·êƒA·3ÎwÄ.°— ¨„Êá”rëêSMå£ùúk¨^‚–æ¡åô»èå¯t­Îá(oAÓH¼£	²+mzt;œF%ßÃ2ç/°Ö‹¿PYE9aî”Øë,€uƒFëº¾€>6ÒÚäxT‡Û^8r‰U”+c_Óå‘ÔÊæªŠÙ_¾õíéÆ™=~Â“(µÜr$îç­(½]©Úzœ¥Éœõv>œv/MÈ6ŒGNÿ7ã}E¥(¦‹áhJ}¹z"æn3âÐ*Ë»0ˆ5oÏu!{;¨â·y—Ró‹—yo‚üÅÍ=]îù¥[§Tùbµ^˜mÈr©¨—+Xg/ß$4{Û8ÇhWB¨ïÉêƒGÔx÷Úa[ÛË¯¿†Y}-»>Ç“ÝîöÑí™Va-DD^û½îË¾O½å‡ak6ƒYº;2Ü(#0Roy\'îRŸ¬µ{îåâu?oò–” Z(wt-ºlt‡»Ù<À*³Dù}ò/Ÿ‚šã_/Ô?ŸÃ;½+‰-, ÆmˆIŸÕðkzÌìSíÍV(A°
©cm/¥²ì¾Óß‚­NÜÍŸ 6‰Ý¥„“_
Ü@1'žµN%é ŽhŒ^X2Ê‡+§›ƒ	þnvÞª[ìtJéÇÒ]˜D~3öHßÚÖûA	ê&§€5Æq#0|»O2ÁÅ¥Í'`—YeõhÈ. ÙhV°°Ì2©¢ômÀõ”¤æ™ò˜Ço-X·Í¸¯`fn²ûÆ™™ý—3sð|¼bª²ešAåÀ£í5“i`]:i7~àAÎŒñ!ÈjñÁÈäÁVÜ&ƒúˆ¶ÜîP±Â„qžÔ!Ð6—f§¦Q+'f|I*úT	|rßýiÒvÂM¡ÝHòtx-ºK¤kûÙ’SÏv;Ø×½4µ	4ZÁDü‚ØO¤çVBï²ƒyk„I¡9¦»Ê!Ø¶VW€ñ¸œöé _¾ïïû$íI¢)k÷¶a*ˆ7G««“
WL!½¬-’°%½qŸ?h:‡ÖÉS±—nš4s˜õcttSè>*y;x«ÁááŸáó+‡ØÒÝO€
GíZÔÌdÿÊuçwÔþõÌ™Úb\ÿ‰–Sh	‰žTùÁþiUÀöOÌ‡|±¢IzR}orüòàšòËì¨Þhm¸9TEW›ÿ~äÎxx\†¢-¿ü<þAŽô«»šž¸a zß_õÒ®¨zí	µmAµzÝ ‰ÅÉîÒ_ß™7ãY;`«ªR{á#c{<öØ3Ï/É›ê¸et(»Û‹µ± ò¤“¡§5Á)ç´©¬§©µãèi÷Ùç›èpÀ)
”µøx/½’8_–Ué(«Ê¥'Zæ>¹uncä	1¥NmKvQì…œQ:ÁÄiyÅ²–ypä ËˆU^V`·ºEœªn©uJ€)¬\[áH<•–õ¡²b«3\¦Q;Þ¿-ûœ§6éj;Oe&G´;J*ˆ,%qÂlxÿ×3o".œ¾¦aáø::,íp
8q/¶"¨<aÒ†Ozþ¬žTÕß'@Ù˜<­ž¿›NúüCÔVÿ(BmŠ4,ât´ÒnKš)QÛjë"†ÞtÕõŠn8YôM[Ò<ñ”‰…¸“i.ái»&™VÉg¤z…Í±.¼ó‚ø»=ÄŸþ®PŽ™p.[,~ä´YTË›p ~*ÁOï¤¥±\\!Úg2—¡36†LöãÁà>§Þ'©r$vƒS‡(˜„L^úÇV8<HËàEQsio{}•×Ô1ÔÝ"û×·—1ž™+@-¼ïÇ8ã$ª'‘S¨UœÛRû]jâù´üYâVçY;í'#döŽŸ\•~õ·eëº­=‚ Êîº¼½ïfÇE{¹ñ
Pß=3±"‘"¡å&Ã…h¡^àTÜ¥À}ÇØ!1g¾MöM]€™
<·4o¤U÷Ñ‘A™v88ªù‘m;È€øÂ¶ö´1á‰™{è k†»ûêñà7Æè;%BMmm9bu˜d°²ÓÒÅôúéüýÉ—ìüCv~qry¼åNzÑtïú¥'K›ýMóÀ;¤ñávO¦%‘ýX
_»jÐRþó'Þ4
ð²À¡íÎï»ÂO	¶>cLA.;¢ìñ»Ù
K)Ÿø¼ÓËã‹3&0È ¯W1…°
ÛèþõŽ{ÿNÃÞ(Tçän7a	'¼yµÃ‡Ñô*ô4°™ž²M¬ÊŸ vQLÛ;†Ð-¦:±2~ã¸öª,ÖÅRg&¼Ýeú=×0UÎ+‹Œˆ\ÈTžØšP]è$õwÆPGÉ¡Ñ˜-[1Îeal¬x(Õí©o`º~4ŸIáš¢qáñ€4Çžza.Pª¸€éú÷ó}Ïˆ&E’J0rëš$¦zýÌŽßÝ”îˆË…«Bºƒá4÷Îccœõyõ€86;åì|› ;*jUD`â”£ž®t¥¬v†’Úì+lGÑÑ"É.l“s
9ùv²ˆ}Æˆ¢¨ŸŸ74aó¦˜IŒÈ#¡!4ÇUgÖeC–.çšÔÆ"©£]žL¿6úJïÉ£jŽ“í4j<yª[/y­8€-|çäßYöêëÉå—”»œæO¨dâV[llx€^Ü§¾¦°ó]¾›ôãÍ5>ïpï;Ðÿ¯¯Ã'Â’Q¼IJ‹®Ÿ»°%fÈZ‡‡›Û~Íú“![aA>ôh¼fç H<K»eGözÕ•4†*ð;‰ð^¯ Ù‡r÷ªÈkŒeÇ F§·à# ¾¬KfSãZçòîÇÒ›ì9l*Ù«pnÜ/ãg60“øœ €-3vÀ•¹jÚl¥©”Ü-·úBRñnvÿö}ïIêcÆ¤6–c«ÕOïü½£ûqØg¦7‚Oü³’&Ï™æÙšûÅYe¶…zÎ~ÑB0³¬?{·z{}ÛgZDFùÚùFäBqƒ;çEôº(>²Ÿƒ˜}*ôV£ÙÎy©·…a/¶Æ”ÏÇã¸ˆÖ°s¤7£\˜ñ«š6ç™NÇÓ§ã“ÉÉÔ_¹äyÅÓç,Øk#26‹3™Kmàdà„™¢Hµß•Š€H€Ò°³Ñt:šžiF§ÓÓQ|&N''O'OÄ4-§ONF§°<:ï‚Å°¦OF“!ç*Ú~wf	^ð<©xy’J½ÅåÞhõ–õƒÙåëYŸõŸÂ¿†eøáŽÁáøqâùð8á†/‹Ñ§c‡õQù†ÍÅFæ‚é"¬,”ák™J³gÚT›ÍW<éßõQqî±®=ŠÅZò|T¨düdòýwßŸ¶w€Œ%yE×Ñ\òNŒ·&KÇ‰*60ÄäÙpr2Ît2™LÀîxíkq*ó£QÂF±f³O,<âŸz#‘Zö«¿ª!µ0,^¥†m
•qcdž|Å#b©ù:l»/·"'‡ìòmçÚo•6r##ë®G<ÆfÄgø(X*6†e\%2gEžî{#³ô«ªár¶¼bç×W«ÅÕŠ«Ùí*`o·öÍ×:&€À¾š].ú=‚CY ÔP(b©Š;6›3žÇ,¸|=>_þ€uÔŒ„Æ=Q*En´¥üýêú&XÕooX¸{²Ç•£üK8œÀOIŸ—!{‘±H_ÑÏp˜ñÏ2«²p¨ªÜÈL¼|È[ä±¶ÖnÛV¤¥ûZi *ú1ˆ *	Á,wM»6Ô&JÑš†@u#“ÊÂPÈ62þ†¢Ä58:[ÿŠÛ~-¹âÙ«—/îxZ¹])H8*–
rC¡öþîTðÀ¿@è9°7UšÒ…÷¬Âæ‹àüvy³Z^_Înnz«­Ô¨÷Žeø•+ÃŠ¦¤^¸yMª7·Gß÷t% ”¥ûl2ƒ0wikÁ˜‹qvË7%„*d³;Áæž÷É¯·\A€‘™Kø†ÑvÈÌp[5'ÔT‰FÉ#AjÅ"Á*Ä‘Op(vT(†NuŒÄL)‘(àºbJ¤!ãú’fºŠ¶Œk6?_ŒooÎìb>»¡;~j-T¡½FÎÝqº*Qù@EæQZ;_çKŒ(ÈN£	â›_ö“Ìãb§iá§B}l­JÝ¬?{2~öt|¹hV®VÍwÀàÉøçÄâÓ»Æ'6Ÿ½_¹KR½¯‘Üè=èBæÕgÏó,g€."×h"Ðk¤$9¤ó€–:Ñ¦-SG<¯£œ ûs—¶dx"…ŽÃ…Žÿ“épÉ¨"M½e o•\WŽ¢£Ý:üj$rÆl=BZèOŽ­kÀáõy;™¦,/Œ“d-:2Ð·{€H¶†+,Ó¼U+€.¸.Á£ˆ€‡Ü³i¥÷Ú»`>áDQ+HÁ½ðOË$'(Ït•Âª@feêÐ´¡RXÒÖ\>ø:òö2*Ò¬¨PïUiÌ@D%®bð6Nšˆ9Å<FÒkFhªHZÙI³KiÃÓÔJƒØpM°X\ ðübº7ºØYo¹a¨LÄË6á•0ä•< ‹R–9îðÁÚ´%Á$ex´…;¥Ñ"Ý@3Ú»ÓšGyŒÐ!R’B‰O•Ðh g¾D Á³0ú8®éð®íÚœ0_ E–‰µ¸ãû–ÑÌ¡#ÛÛuÝX†Ê…•¤×hPuðØjÿ«ýUƒ	 Tà×ºÊ(6žŠÏà.ˆN2d‰¥Xhgl/Ò”¬v»p¶’d+8&¼mvÏJx¾7!jÿ Õ@zÖoQK÷ýVKy&(æ7í{ÿÿø©ý¿a16Ž'2è%Öb˜ÁÙ*(âq£ŠìÁ!¨«Mžj(›Š„‚‚C_•)+3@Y¤ËsÃ ×¿åWpZWÏ—¤g*#œ†W÷ƒ Ç Æt(©zo<
B­I†´oÛAÈpCí1R4l‹U¥àUÑaÀéâTÄx×ìŽË”*ÈÎÚ' çÈko¤KÇ3VØ9ÿöÂíãáäìqx´®àë·“ÓÇa•Þ¿¨ÜÆpB›¸„ê
61hèèz¸YbVM`Qž¬Ú¾¬†m´Ä0¬ÐNÏ\-'üEŸjGl‹+j»‰C×¦øÚ‚8Ï¨E©ÕF€¤Æq& §ºBZ¸¶y®“²%\%€aväL˜î©voªˆ«ÅêâúÍõÕ1è);´ Ã3Õ9wX'@ÝävR@z¾ßBú*$˜4Ý;tÞqFá7G³Oµœøƒ€ÎÊ²[~§T%ÃJ8ewÔZOÐPW­Ü&_y'WBÓ,€!RØj_Té<)4+` *ƒ:	Cÿçÿ7“–
óÞGoQ¬ ]wGñÒ6ð00Lÿ{Qv@ÝÖ£ÎZ”ô[¤þ{@WÔ~`üq~~ìKß‡Z£Ã‚ –Ñ˜úm´ûœ!™[Ÿ-}"#ž0øKˆÂNgmpaëýƒðuÒñ:±y÷C^yjå•„±åŠ@{Ðá¢§†Ö^˜ý²†žèìñÄ£­LcP#ì…«$XÐ™š`ÿ¬ëb‹˜h]è|òs[˜ÛÑ.Œ±˜Áª’W¦°Èm]À>G¯›DÖ”D øwð½	Üq7T.ÈÜÎ_C²¢$`Ãï0]‚®3udæR—)÷ZI±at…eÀ$üÿ¶N»Z^p™µ¬æ‹ÛÛû··{Mw÷"§<„Åe1ÜÀìuô°»iþˆŒmY»ÄpåÏPŒ¯e£æü%}:š ô¡+°œÐ+[R11Ai-ôµ@ƒQ7nË…ûÕEQSQi6iÄV&ØWÒmDd`[$¬±ð´¥Žà
•ÄV¸~Ù&×9¹XŒI#}“ÔêGØÌØI›l†È`.``ÚBi‚Ø.‹
Ó‚ÂêVß;é\‘)U§ØEèÂÁÇØù>š[ƒ}ÝÂ„CDµÄN«‘i¦3Ž1‘AáN…‡~m{´ˆ+…êƒe¯=b„¤‡\2µœzúˆêoE¬Ù3H'¨5è€¸EQW[‘:|QFµ£Ìï eb›Ža„²Z~ì)!t“ÐÍ9\ÇßÜÃØ‹RXíÖÜ½}÷fq˜«¬Ð¤‹ST-%2AöÚCëyñ›ÄëjÈ…2u›¤`¢PâÉÞÝ![e®í®z ·p$nÝ­Iï)’°í‘uH(e«
?6rúwIh"a9<àå‹‡Ó€Wu-íš§&ž0Ep™ës>šZA©êÒŠ	¤×v;YÚá‘¯}ãœÚC£Î-~ü³³]ˆñÒ€@g >b'ÐÕu{‚B†ÇøÃ1ŠÔ­±§m‰º&#¬hñt›LWr°1kwP"àÆ¬$Æ!u”’‘pÆ8\s-ðö—ð««9û¼ÆiG3k£SCØ:¶ƒË3è&Kà9à‰}XEÁ›ú¾z s·µÿ2•àÍÈÈ£¨Á–>ƒf!†®Ó`ŒØ¿uäÑ’ YÜÑ$/+î§°”îg?}E¦ê™k+ù.Iì]¬ooë£m~è;
ý/6¦¶ññÑª½IbìÝ›²…æ‘Î‹pÓ&wßÖ]‘þö»Ywj
@ã
øP4Úè6äe·ÿë	ý°¼X¸áÑŒ4V‘# ‚áCf‘9d%žÊ¸ð¢pÁžêRûÐ®²5+àòÐô­3ÁA|Ä‚²*­Ø¶ƒ@a³©ƒLõí)‘»ˆBmœGÍ´²5ãs!q|7“•¬ÝInó;`S=;=›¸Í^†uj¶ Ä,K*f6(lhÕ1 YÌZ@JçÇ4Xp©Ÿhmœž>;v³'7Ü6û²CÊDåqG¸J«1”V<ÓDbœÊõ¸A­1‡—yàÁ›ZÃâ‘â‡Å‡¼–]ÓÄ½ÁÃš6‰Aû!eKq-¿9±©èjs¥)È<!? Ö‡ ú:gü#œ\XºÏ&‚C“é/Áv+óåìÍÕu°Zž»ˆ¹ÄÂ –<Éá‹ŒP×ººŸÓ¨qe¢¬ÔyÒà@ô© Ùz/Ø±xÆ©DrÈ‹üÐøÎÏ½[^‚v§RÔµh4DøzTk3…­'©${·—­)‚+Íô€ÑÞ¿ŒqjÝ](¬Ì:•³g—tëËöÎu]‹ŒÒMÐEø8	éM’^%Á‡i¡›ÄwDnzS?ª¤§Ä‹›]×îÉÆæõÑ¿òˆÆ‘6dñÀ-¹ÊÖžº5<aˆ/“´¡6iýÌ»?w2{Æ´4=®Ÿñ°%ŽØÛÙíçvD×S›h:™ ¬æ³¸Ÿ'ö'ÅÄ}lME$èùø¢ŒPàÎÁåëcëeÛõ(wB,ljŠŸÄšŒÔÃ—?ôóñx·ÛaµEO~Ñ øøp\«Ó½¨TCA¡d"s^Ï‹Ù¡{Ðƒ÷@µ2øbv®;?U…ÐŸå±;¶ØIüs¢C½õ®n²jœ°WWNü5À‹{-	áâ7ôi-3XyïÅa'þO?ÙGTzjdG…û<cbÄµ%    ©–„ôO»OÊ·¥Ä½X‡:	Mù¥´S¨Œÿì/£T •Á±ýDDº¶éß    
YZ