redis7-7.0.8-150500.3.12.1<>,fp9|wNB|xWdDne; t+%% RjP9D|yj}uh[jr;ӒXrي7d* )ׅa-Z|1)^:\" ~ >IF<IoOec,c`_wn?'GL;k>LXme:]s'Q}/:'#Ek0h@Ss}L>Lb?bd   ;:G ]iz\  0d   \  p+P&ptz({8a9a:&a=V>V?W@W FWGW,HWIX$XXDYX\\X]Y^Zb[c\kd\e\f\l\u] v]w`Xx`yaP2zbb(b,b6b8b<bBbCredis77.0.8150500.3.12.1Persistent key-value databaseredis is an advanced key-value store. It is similar to memcached but the dataset is not volatile, and values can be strings, exactly like in memcached, but also lists, sets, and ordered sets. All this data types can be manipulated with atomic operations to push/pop elements, add/remove elements, perform server side union, intersection, difference between sets, and so forth. Redis supports different kind of sorting abilities.fibs-power9-17`'SUSE Linux Enterprise 15SUSE LLC BSD-3-Clausehttps://www.suse.com/Unspecifiedhttps://redis.iolinuxppc64le if [ -x /usr/bin/systemctl ]; then test -n "$FIRST_ARG" || FIRST_ARG="$1" [ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || : for service in redis.target redis@.service redis-sentinel.target redis-sentinel@.service ; do sysv_service=${service%.*} if [ ! -e /usr/lib/systemd/system/$service ] && [ ! -e /etc/init.d/$sysv_service ]; then mkdir -p /run/systemd/rpm/needs-preset touch /run/systemd/rpm/needs-preset/$service elif [ -e /etc/init.d/$sysv_service ] && [ ! -e /var/lib/systemd/migrated/$sysv_service ]; then /usr/sbin/systemd-sysv-convert --save $sysv_service || : mkdir -p /run/systemd/rpm/needs-sysv-convert touch /run/systemd/rpm/needs-sysv-convert/$service fi done fi /usr/sbin/sysusers2shadow %3 <<"EOF" || [ -f /.buildenv ] u redis - "User for redis key-value store" /var/lib/redis EOF [ -z "${TRANSACTIONAL_UPDATE}" -a -x /usr/bin/systemd-tmpfiles ] && /usr/bin/systemd-tmpfiles --create /usr/lib/tmpfiles.d/redis.conf || : if [ -x /usr/bin/systemctl ]; then test -n "$FIRST_ARG" || FIRST_ARG="$1" [ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || : if [ "$YAST_IS_RUNNING" != "instsys" ]; then /usr/bin/systemctl daemon-reload || : fi for service in redis.target redis@.service redis-sentinel.target redis-sentinel@.service ; do sysv_service=${service%.*} if [ -e /run/systemd/rpm/needs-preset/$service ]; then /usr/bin/systemctl preset $service || : rm "/run/systemd/rpm/needs-preset/$service" || : elif [ -e /run/systemd/rpm/needs-sysv-convert/$service ]; then /usr/sbin/systemd-sysv-convert --apply $sysv_service || : rm "/run/systemd/rpm/needs-sysv-convert/$service" || : touch /var/lib/systemd/migrated/$sysv_service || : fi done fi echo "See /usr/share/doc/packages/redis7/README.SUSE to continue" test -n "$FIRST_ARG" || FIRST_ARG="$1" if [ "$FIRST_ARG" -eq 0 -a -x /usr/bin/systemctl ]; then # Package removal, not upgrade /usr/bin/systemctl --no-reload disable redis.target redis@.service redis-sentinel.target redis-sentinel@.service || : ( test "$YAST_IS_RUNNING" = instsys && exit 0 test -f /etc/sysconfig/services -a \ -z "$DISABLE_STOP_ON_REMOVAL" && . /etc/sysconfig/services test "$DISABLE_STOP_ON_REMOVAL" = yes -o \ "$DISABLE_STOP_ON_REMOVAL" = 1 && exit 0 /usr/bin/systemctl stop redis.target redis@.service redis-sentinel.target redis-sentinel@.service ) || : fi test -n "$FIRST_ARG" || FIRST_ARG="$1" if [ $1 -eq 0 ]; then # Package removal for service in redis.target redis@.service redis-sentinel.target redis-sentinel@.service ; do sysv_service="${service%.*}" rm -f "/var/lib/systemd/migrated/$sysv_service" || : done fi if [ -x /usr/bin/systemctl ]; then /usr/bin/systemctl daemon-reload || : fi if [ "$FIRST_ARG" -ge 1 ]; then # Package upgrade, not uninstall if [ -x /usr/bin/systemctl ]; then ( test "$YAST_IS_RUNNING" = instsys && exit 0 test -f /etc/sysconfig/services -a \ -z "$DISABLE_RESTART_ON_UPDATE" && . /etc/sysconfig/services test "$DISABLE_RESTART_ON_UPDATE" = yes -o \ "$DISABLE_RESTART_ON_UPDATE" = 1 && exit 0 /usr/bin/systemctl try-restart redis.target redis@.service redis-sentinel.target redis-sentinel@.service ) || : fi fik6 Io]Vu 53 4WA聠@큤A큤A큤AAAQhXffffffffYQ[|b{YoUan^ ,`?7ffffffc~c~fc~fc~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../sbin/redis-server../sbin/redis-serverserviceredis-serverredis-serverredis-server@rootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootredisredisredisrootredisredisredisrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootredisredisredisredis7-7.0.8-150500.3.12.1.src.rpmconfig(redis7)group(redis)redisredis7redis7(ppc-64)user(redis) @@@@@@@@@@@@@@@@@@     /bin/sh/bin/sh/bin/sh/bin/shconfig(redis7)libc.so.6()(64bit)libc.so.6(GLIBC_2.17)(64bit)libc.so.6(GLIBC_2.27)(64bit)libc.so.6(GLIBC_2.28)(64bit)libcrypto.so.1.1()(64bit)libcrypto.so.1.1(OPENSSL_1_1_0)(64bit)libdl.so.2()(64bit)libdl.so.2(GLIBC_2.17)(64bit)libm.so.6()(64bit)libm.so.6(GLIBC_2.17)(64bit)libm.so.6(GLIBC_2.29)(64bit)libpthread.so.0()(64bit)libpthread.so.0(GLIBC_2.17)(64bit)libssl.so.1.1()(64bit)libssl.so.1.1(OPENSSL_1_1_0)(64bit)libssl.so.1.1(OPENSSL_1_1_1)(64bit)libsystemd.so.0()(64bit)libsystemd.so.0(LIBSYSTEMD_209)(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)sysuser-shadow7.0.8-150500.3.12.13.0.4-14.6.0-14.0-15.2-13.2redis4.14.3f@e@eod@d~cc<@c]c @cV~@c*cbK@bb@b>b@b@bzSbzSbu bi0@aKaZ`]`r``7@`~@`~@`L@`@`>(`>(`6?`6?`&m_@_ _[f_^@^ϧ^'@^@^^^@^@^^y@^r @^>^)^ ]@\@[@[h@[[[[v[E@[#@ZZJ@Z|;Zm@ZN@Y@Y@YJ_YXXX WWWWWs@Wo@V`VQ@VU|@U~@Ut2@UW1@U/@UUU:TܕTT_W@antonio.teixeira@suse.comdanilo.spinella@suse.commartin.schreiner@suse.comdanilo.spinella@suse.comdanilo.spinella@suse.comdanilo.spinella@suse.comandreas.stieger@gmx.demichael@stroeder.comandreas.stieger@gmx.dedanilo.spinella@suse.commichael@stroeder.comschubi@internmichael@stroeder.commichael@stroeder.comdanilo.spinella@suse.comschubi@suse.commichael@stroeder.commichael@stroeder.comdanilo.spinella@suse.comjsegitz@suse.comdanilo.spinella@suse.comandreas.stieger@gmx.dejsegitz@suse.commichael@stroeder.comandreas.stieger@gmx.deandreas.stieger@gmx.dejengelh@inai.demichael@stroeder.comandreas.stieger@gmx.demichael@stroeder.commichael@stroeder.comgarethmccarter@gmail.comilya@ilya.pp.uaandreas.stieger@gmx.deandreas.stieger@gmx.dejzerebecki@suse.comjzerebecki@suse.commichael@stroeder.comandreas.stieger@gmx.deandreas.stieger@gmx.deandreas.stieger@gmx.deandreas.stieger@gmx.deandreas.stieger@gmx.deandreas.stieger@gmx.deschwab@suse.demrueckert@suse.demrueckert@suse.deschwab@suse.deandreas.stieger@gmx.deandreas.stieger@gmx.dekukuk@suse.comilya@ilya.pp.uamrueckert@suse.dekukuk@suse.comkukuk@suse.comilya@ilya.pp.uamrueckert@suse.deegdfree@opensuse.orgmrueckert@suse.demrueckert@suse.demrueckert@suse.demrueckert@suse.deilya@ilya.pp.uabwiedemann@suse.commrueckert@suse.deguillaume.gardet@opensuse.orgilya@ilya.pp.uailya@ilya.pp.uailya@ilya.pp.uailya@ilya.pp.uampluskal@suse.comilya@ilya.pp.uachris@computersalat.devsistek@suse.commpluskal@suse.comrmaliska@suse.comastieger@suse.comastieger@suse.comjengelh@inai.deastieger@suse.comastieger@suse.comrmaliska@suse.commamorales@suse.comeshmarnev@suse.commpluskal@suse.commrueckert@suse.demrueckert@suse.demrueckert@suse.demrueckert@suse.deledest@gmail.commrueckert@suse.demrueckert@suse.demrueckert@suse.demrueckert@suse.delang@b1-systems.demrueckert@suse.deledest@gmail.com- Fix CVE-2024-31227, parsing issue leading to denail of service (bsc#1231266) * CVE-2024-31227.patch - Fix CVE-2024-31228, prevent unbounded recursive pattern matching (bsc#1231265) * CVE-2024-31228.patch - Fix CVE-2024-31449, integer overflow bug in Lua bit_tohex (bsc#1231264) * CVE-2024-31449.patch- Fix CVE-2023-45145, race condition during UNIX socket creation leads to permission bypass, (bsc#1216376) * CVE-2023-45145.patch- Fix bsc#1212119: redis services disabled during upgrade. Whenever a user upgrades from SP4 to SP5, the old package named 'redis' is uninstalled, the new package named 'redis7' is installed. All services names 'redis@' are disabled, since the file redis.service is no longer available, as it was removed when 'redis' is uninstalled. What this commit does is remove the "Obsoletes" line from the spec file. By doing that, the upgrade doesn't force the uninstallation of the 'redis' package, which does exist for SP5 (both 'redis' and 'redis7' are available, for SP5). Because the conflict is maintained, it's impossible to install both 'redis' and 'redis7' at the same time, exactly as it should be.- Fix CVE-2023-41053, SORT_RO may bypass ACL configuration, (bsc#1215094) * CVE-2023-41053.patch- Fix CVE-2022-24834, heap overflow in the cjson and cmsgpack libraries, bsc#1213193 * CVE-2022-24834.patch - Fix CVE-2023-28856, HINCRBYFLOAT invalid key crash (bsc#1210548 CVE-2023-28856) * CVE-2023-28856.patch - Fix CVE-2022-36021, Specially crafted SRANDMEMBER, ZRANDMEMBER, and HRANDFIELD commands can trigger an integer overflow (bsc#1208790 CVE-2022-36021) * CVE-2022-36021.patch - Fix CVE-2023-25155, Integer Overflow in RAND commands can lead to assertion (bsc#1208793 CVE-2023-25155) * CVE-2023-25155.patch - Fix CVE-2023-28425, Specially crafted MSETNX command can lead to assertion and denial-of-service * CVE-2023-28425.patch - Fix CVE-2023-36824, heap overflow in COMMAND GETKEYS and ACL evaluation, bsc#1213249 * CVE-2023-36824.patch- Change name to redis7- redis 7.0.8 * CVE-2022-35977: Integer overflow in the Redis SETRANGE and SORT/SORT_RO commands can drive Redis to OOM panic boo#1207202 * CVE-2023-22458: Integer overflow in the Redis HRANDFIELD and ZRANDMEMBER commands can lead to denial-of-service boo#1207203 * Avoid possible hang when client issues long KEYS, SRANDMEMBER, HRANDFIELD, and ZRANDMEMBER commands and gets disconnected by client output buffer limit * Make sure that fork child doesn't do incremental rehashing * Fix a bug where blocking commands with a sub-second timeout would block forever * Fix sentinel issue if replica changes IP- Update to version 7.0.7 * Fix regression from Redis 7.0.6 in distance replies of Geo commands (#11631)- Update to version 7.0.6: * RM_ResetDataset module API should not clear the functions * RM_Call module API used with the "C" flag to run scripts, would now cause the commands in the script to check ACL with the designated user * Geo commands speedups * Fix EVAL command performance regression from Redis 7.0 * Reduce EXPIRE commands performance regression from Redis 7.0 * Optimize commands returning double values, mainly affecting zset commands * Optimize Lua parsing of some command responses * Optimize client memory usage tracking operation while client eviction is disabled * Multiple bug fixes for crashes, hangs, and incorrect behavior - drop cve-2022-3647.patch now upstream- Fix CVE-2022-3647, crash in sigsegvHandler debug function (CVE-2022-3647, bsc#1204633) * cve-2022-3647.patch- Update to version 7.0.5 (boo#1203638) + Security Fixes: * (CVE-2022-35951) Executing a XAUTOCLAIM command on a stream key in a specific state, with a specially crafted COUNT argument, may cause an integer overflow, a subsequent heap overflow, and potentially lead to remote code execution. The problem affects Redis versions 7.0.0 or newer [reported by Xion (SeungHyun Lee) of KAIST GoN]. + Module API changes * Fix RM_Call execution of scripts when used with M/W/S flags to properly handle script flags (#11159) * Fix RM_SetAbsExpire and RM_GetAbsExpire API registration (#11025, #8564) + Bug Fixes * Fix a hang when eviction is combined with lazy-free and maxmemory-eviction-tenacity is set to 100 (#11237) * Fix a crash when a replica may attempt to set itself as its master as a result of a manual failover (#11263) * Fix a bug where a cluster-enabled replica node may permanently set its master's hostname to '?' (#10696) * Fix a crash when a Lua script returns a meta-table (#11032) + Fixes for issues in previous releases of Redis 7.0 * Fix redis-cli to do DNS lookup before sending CLUSTER MEET (#11151) * Fix crash when a key is lazy expired during cluster key migration (#11176) * Fix AOF rewrite to fsync the old AOF file when a new one is created (#11004) * Fix some crashes involving a list containing entries larger than 1GB (#11242) * Correctly handle scripts with a non-read-only shebang on a cluster replica (#11223) * Fix memory leak when unloading a module (#11147) * Fix bug with scripts ignoring client tracking NOLOOP (#11052) * Fix client-side tracking breaking protocol when FLUSHDB / FLUSHALL / SWAPDB is used inside MULTI-EXEC (#11038) * Fix ACL: BITFIELD with GET and also SET / INCRBY can be executed with read-only key permission (#11086) * Fix missing sections for INFO ALL when also requesting a module info section (#11291)- Migration to /usr/etc: Saving user changed configuration files in /etc and restoring them while an RPM update.- Security update to version 7.0.4 (CVE-2022-31144) A specially crafted XAUTOCLAIM command on a stream key in a specific state may result with heap overflow, and potentially remote code execution. The problem affects Redis versions 7.0.0 or newer.- Update to version 7.0.3 * Performance and resource utilization improvements - Optimize zset conversion on large ZRANGESTORE (#10789) - Optimize the performance of sending PING on large clusters (#10624) - Allow for faster restart of Redis in cluster mode (#10912) * INFO fields and introspection changes - Add missing sharded pubsub keychannel count to CLIENT LIST (#10895) - Add missing pubsubshard_channels field in INFO STATS (#10929) * Module API changes - Add RM_StringToULongLong and RM_CreateStringFromULongLong (#10889) - Add RM_SetClientNameById and RM_GetClientNameById (#10839) * Changes in CLI tools - Add missing cluster-port support to redis-cli --cluster (#10344) * Other General Improvements - Account sharded pubsub channels memory consumption (#10925) - Allow ECHO in loading and stale modes (#10853) - Cluster: Throw -TRYAGAIN instead of -ASK on migrating nodes for multi-key - commands when the node only has some of the keys (#9526) * Bug Fixes - TLS: Notify clients on connection shutdown (#10931) - Fsync directory while persisting AOF manifest, RDB file, and config file (#10737) - Script that made modification will not break with unexpected NOREPLICAS error (#10855) - Cluster: Fix a bug where nodes may not acknowledge a CLUSTER FAILOVER TAKEOVER - after a replica reboots (#10798) - Cluster: Fix crash during handshake and cluster shards call (#10942) * Fixes for issues in previous releases of Redis 7.0 - TLS: Fix issues with large replies (#10909) - Correctly report the startup warning for vm.overcommit_memory (#10841) - redis-server command line allow passing config name and value in the same argument (#10866) - Support --save command line argument with no value for backwards compatibility (#10866) - Fix CLUSTER RESET command regression requiring an argument (#10898)- Use bundled jemalloc to fix active defragmentation, fixes bsc#1200913. - Remove patch: * Add-support-for-USE_SYSTEM_JEMALLOC-flag.patch- Moved logrotate files from user specific directory /etc/logrotate.d to vendor specific directory /usr/etc/logrotate.d.- Update to version 7.0.2 * Fixed SET and BITFIELD commands being wrongly marked movablekeys (#10837) Regression in 7.0 possibly resulting in excessive roundtrip from cluster clients. * Fix crash when /proc/sys/vm/overcommit_memory is inaccessible (#10848) Regression in 7.0.1 resulting in crash on startup on some configurations.- Update to version 7.0.1 * Improvements - Add warning for suspected slow system clocksource setting Add --check-system command line option. (#10636) - Allow read-only scripts (*_RO commands, and ones with `no-writes` flag) during CLIENT PAUSE WRITE (#10744) - Add `readonly` flag in COMMAND command for EVAL_RO, EVALSHA_RO and FCALL_RO (#10728) - redis-server command line arguments now accept one string with spaces for multi-arg configs (#10660) * Potentially Breaking Changes - Omitting a config option value in command line argument no longer works (#10660) - Hide the `may_replicate` flag from the COMMAND command response (#10744) * Potentially Breaking Changes for new Redis 7.0 features - Protocol: Sharded pubsub publish emits `smessage` instead of `message` (#10792) - CLUSTER SHARDS returns slots as RESP integers, not strings (#10683) - Block PFCOUNT and PUBLISH in read-only scripts (*_RO commands, and no-writes) (#10744) - Scripts that declare the `no-writes` flag are implicitly `allow-oom` too (#10699) * Changes in CLI tools - redis-cli --bigkeys, --memkeys, --hotkeys, --scan. Finish nicely after Ctrl+C (#10736) * Platform / toolchain support related improvements - Support tcp-keepalive config interval on MacOs (#10667) - Support RSS metrics on Haiku OS (#10687) * INFO fields and introspection changes - Add isolated network metrics for replication. (#10062, #10810) * Module API changes - Add two more new checks to RM_Call script mode (#10786) - Add new RM_Call flag to let Redis automatically refuse `deny-oom` commands (#10786) - Add module API RM_MallocUsableSize (#10795) - Add missing REDISMODULE_NOTIFY_NEW (#10688) - Fix cursor type in RedisModuleScanCursor to handle more than 2^31 elements (#10698) - Fix RM_Yield bugs and RM_Call("EVAL") OOM check bug (#10786) - Fix bugs in enum configs with overlapping bit flags (#10661) * Bug Fixes - FLUSHALL correctly resets rdb_changes_since_last_save INFO field (#10691) - FLUSHDB is now propagated to replicas / AOF, even if the db is empty (#10691) - Replica fail and retry the PSYNC if the master is unresponsive (#10726) - Fix ZRANGESTORE crash when zset_max_listpack_entries is 0 (#10767)- Unbundle jemalloc, fixes bsc#199164 * Add-support-for-USE_SYSTEM_JEMALLOC-flag.patch- Add ReadWritePaths=/etc/redis to redis-sentinel@.service (bsc#1199198)- Update to version 7.0.0: https://raw.githubusercontent.com/redis/redis/7.0/00-RELEASENOTES - Remove upstreamed patch: * getMcontextEip-return-value.patch- redis 6.2.7: * CVE-2022-24736: An attacker attempting to load a specially crafted Lua script can cause NULL pointer dereference which will result with a crash of the redis-server process (boo#1198953) * CVE-2022-24735: By exploiting weaknesses in the Lua script execution environment, an attacker with access to Redis can inject Lua code that will execute with the (potentially higher) privileges of another Redis user (boo#1198952) * LPOP/RPOP with count against non-existing list return null array * LPOP/RPOP used to produce wrong replies when count is 0 * Speed optimization in command execution pipeline * Fix regression in Z[REV]RANGE commands (by-rank) introduced in Redis 6.2 * Fix OpenSSL 3.0.x related issues * Bug fixes- Added hardening to systemd service(s) (bsc#1181400). Modified: * redis-sentinel@.service * redis@.service- redis 6.2.6 with security fixes for * Security fixes: - CVE-2021-41099: Integer to heap buffer overflow handling certain string commands and network payloads, when proto-max-bulk-len is manually configured to a non-default, very large value (boo#1191299) - CVE-2021-32762: Integer to heap buffer overflow issue in redis-cli and redis-sentinel parsing large multi-bulk replies on some older and less common platforms (boo#1191300) - CVE-2021-32687: Integer to heap buffer overflow with intsets, when set-max-intset-entries is manually configured to a non-default, very large value (boo#1191302) - CVE-2021-32675: Denial Of Service when processing RESP request payloads with a large number of elements on many connections (boo#1191303) - CVE-2021-32672: Random heap reading issue with Lua Debugger (boo#1191304) - CVE-2021-32628: Integer to heap buffer overflow handling ziplist-encoded data types, when configuring a large, non-default value for hash-max-ziplist-entries, hash-max-ziplist-value, zset-max-ziplist-entries or zset-max-ziplist-value (boo#1191305) - CVE-2021-32627: Integer to heap buffer overflow issue with streams, when configuring a non-default, large value for proto-max-bulk-len and client-query-buffer-limit (boo#1191305) - CVE-2021-32626: Specially crafted Lua scripts may result with Heap buffer overflow (boo#1191306) * Bug fixes that involve behavior changes: - GEO* STORE with empty source key deletes the destination key and return 0 Previously it would have returned an empty array like the non-STORE variant. - PUBSUB NUMPAT replies with number of patterns rather than number of subscriptions This actually changed in 6.2.0 but was overlooked and omitted from the release notes. * Bug fixes that are only applicable to previous releases of Redis 6.2: - Fix CLIENT PAUSE, used an old timeout from previous PAUSE - Fix CLIENT PAUSE in a replica would mess the replication offset - Add some missing error statistics in INFO errorstats * Other bug fixes: - Fix incorrect reply of COMMAND command key positions for MIGRATE command - Fix appendfsync to always guarantee fsync before reply, on MacOS and FreeBSD (kqueue) - Fix the wrong misdetection of sync_file_range system call, affecting performance * CLI tools: - When redis-cli received ASK response, it didn't handle it * Improvements: - Add latency monitor sample when key is deleted via lazy expire - Sanitize corrupt payload improvements - Delete empty keys when loading RDB file or handling a RESTORE command- redis 6.2.5: * CVE-2021-32761: Fix integer overflow in BITFIELD on 32-bit boo#1188598 * Change reply type for ZPOPMAX/MIN with count in RESP3 to nested array * Was using a flat array like in RESP2 instead of a nested array like ZRANGE does. * Fix reply type for HRANDFIELD and ZRANDMEMBER when key is missing * Was using a null array instead of an empty array * Fix reply type for ZRANGESTORE when source key is missing * Was using an empty array like ZRANGE instead of 0 (used in the STORE variant) * redis-cli cluster import command may issue wrong MIGRATE command, sending COPY instead of REPLACE (#8945) * redis-cli --rdb fixes when using "-" to write to stdout * redis-cli support for RESP3 set type in CSV and RAW output * ad Module API for getting current command name * Fix RM_StringTruncate when newlen is 0 * Fix CLIENT UNBLOCK crashing modules without timeout callback * Further developer visible bug fixes- redis 6.2.4: * CVE-2021-32625: An integer overflow bug could be exploited by using the STRALGO LCS command to cause remote remote code execution (boo#1186722) * Fix crash after a diskless replication fork child is terminated * Fix redis-benchmark crash on unsupported configs * Fix crash in UNLINK on a stream key with deleted consumer groups * SINTERSTORE: Add missing keyspace del event when none of the sources exist * Sentinel: Fix CONFIG SET of empty string sentinel-user/sentinel-pass configs * Enforce client output buffer soft limit when no traffic * Hide AUTH passwords in MIGRATE command from slowlog- Move sysctl file to /usr/lib/sysctl.d, so that it can be overridden by an admin in /etc.- redis 6.2.3 * CVE-2021-29477: Integer overflow in STRALGO LCS command (boo#1185729) * CVE-2021-29478: Integer overflow in COPY command for large intsets (boo#1185730) * Fix memory leak in moduleDefragGlobals * Fix memory leak when doing lazy freeing client tracking table * Block abusive replicas from sending command that could assert and crash redis * Use a monotonic clock to check for Lua script timeout * redis-cli: Do not use unix socket when we got redirected in cluster mode * Fix RM_GetClusterNodeInfo() to correctly populate master id- Usage of OPENSSL_INIT_ATFORK in tls.c raises the minimum version of OpenSSL 1.1.x to 1.1.1, say so in spec- redis 6.2.2 Bug fixes for regressions in previous releases of Redis 6.2: * Fix BGSAVE, AOFRW, and replication slowdown due to child reporting CoW (#8645) * Fix short busy loop when a timer event is about to fire (#8764) * Fix default user, overwritten and reset users losing Pub/Sub channel permissions (#8723) * Fix config rewrite with an empty save config resulting in default save values (#8719) * Fix not starting on alpine/libmusl without IPv6 (#8655) * Fix issues with propagation and MULTI/EXEC in modules (#8617) * Several issues around nested calls and thread-safe contexts Bug fixes that are only applicable to previous releases of Redis 6.2: * ACL Pub/Sub channels permission handling for save/load scenario (#8794) * Fix early rejection of PUBLISH inside MULTI-EXEC transaction (#8534) * Fix missing SLOWLOG records for blocked commands (#8632) * Allow RESET command during busy scripts (#8629) * Fix some error replies that were not counted on stats (#8659) Bug fixes: * Add a timeout mechanism for replicas stuck in fullsync (#8762) * Process HELLO command even if the default user has no permissions (#8633) * Client issuing a long-running script and using a pipeline, got disconnected (#8715) * Fix script kill to work also on scripts that use pcall (#8661) * Fix list-compress-depth may compress more node than required (#8311) * Fix redis-cli handling of rediss:// URL scheme (#8705) * Cluster: Skip unnecessary check which may prevent failure detection (#8585) * Cluster: Fix hang manual failover when replica just started (#8651) * Sentinel: Fix info-refresh time field before sentinel gets a first response (#8567) * Sentinel: Fix possible crash on failed connection attempt (#8627) * Systemd: Send the readiness notification when a replica is ready to accept connections (#8409) Command behavior changes: * ZADD: fix awrong reply when INCR used with GT/LT which blocked the update (#8717) * It was responding with the incremented value rather than nil * XAUTOCLAIM: fix response to return the next available id as the cursor (#8725) * Previous behavior was returning the last one which was already scanned * XAUTOCLAIM: fix JUSTID to prevent incrementing delivery_count (#8724) New config options: * Add cluster-allow-replica-migration config option (#5285) * Add replica-announced config option (#8653) * Add support for plaintext clients in TLS cluster (#8587) * Add support for reading encrypted keyfiles (#8644) Improvements: * Fix performance regression in BRPOP on Redis 6.0 (#8689) * Avoid adding slowlog entries for config with sensitive data (#8584) * Improve redis-cli non-binary safe string handling (#8566) * Optimize CLUSTER SLOTS reply (#8541) * Handle remaining fsync errors (#8419) Info fields and introspection changes: * Strip % sign from current_fork_perc info field (#8628) * Fix RSS memory info on FreeBSD (#8620) * Fix client_recent_max_input/output_buffer in 'INFO CLIENTS' when all clients drop (#8588) * Fix invalid master_link_down_since_seconds in info replication (#8785) Platform and deployment-related changes: * Fix FreeBSD <12.x builds (#8603) Modules: * Add macros for RedisModule_log logging levels (#4246) * Add RedisModule_GetAbsExpire / RedisModule_SetAbsExpire (#8564) * Add a module type for key space notification (#8759) * Set module eviction context flag only in masters (#8631) * Fix unusable RedisModule_IsAOFClient API (#8596) * Fix missing EXEC on modules propagation after failed EVAL execution (#8654) * Fix edge-case when a module client is unblocked (#8618)- replaced /var/run with /run for all PID file paths (bsc#1185072)- redis 6.2.1 Bug fixes: * Fix sanitize-dump-payload for stream with deleted records (#8568) * Prevent client-query-buffer-limit config from being set to lower than 1mb (#8557) Improvements: * Make port, tls-port and bind config options modifiable at runtime (#8510) Platform and deployment-related changes: * Fix compilation error on non-glibc systems if jemalloc is not used (#8533) * Improved memory consumption and memory usage tracking on FreeBSD (#8545) * Fix compilation on ARM64 MacOS with jemalloc (#8458) Modules: * New Module API for getting user name of a client (#8508) * Optimize RM_Call by utilizing a shared reusable client (#8516) * Fix crash running CLIENT INFO via RM_Call (#8560) - includes changes from 6.2.0 GA: * Integer overflow on 32-bit systems (CVE-2021-21309) Bug fixes: * Avoid 32-bit overflows when proto-max-bulk-len is set high (#8522) * Fix broken protocol in client tracking tracking-redir-broken message (#8456) * Avoid unsafe field name characters in INFO commandstats, errorstats, modules (#8492) * XINFO able to access expired keys during CLIENT PAUSE WRITE (#8436) * Fix allowed length for REPLCONF ip-address, needed due to Sentinel's support for hostnames (#8517) * Fix broken protocol in redis-benchmark when used with -a or --dbnum (#8486) * XADD counts deleted records too when considering switching to a new listpack (#8390) Bug fixes that are only applicable to previous releases of Redis 6.2: * Fixes in GEOSEARCH bybox (accuracy and mismatch between width and height) (#8445) * Fix risk of OOM panic in HRANDFIELD, ZRANDMEMBER commands with huge negative count (#8429) * Fix duplicate replicas issue in Sentinel, needed due to hostname support (#8481) * Fix Sentinel configuration rewrite, an improvement of #8271 (#8480) Command behavior changes: * SRANDMEMBER uses RESP3 array type instead of set type (#8504) * EXPIRE, EXPIREAT, SETEX, GETEX: Return error when provided expire time overflows (#8287) Other behavior changes: * Remove ACL subcommand validation if fully added command exists. (#8483) Improvements: * Optimize sorting in GEORADIUS / GEOSEARCH with COUNT (#8326) * Optimize HRANDFIELD and ZRANDMEMBER case 4 when ziplist encoded (#8444) * Optimize in-place replacement of elements in HSET, HINCRBY, LSET (#8493) * Remove redundant list to store pubsub patterns (#8472) * Add --insecure option to command line tools (#8416) Info fields and introspection changes: * Add INFO fields to track progress of BGSAVE, AOFRW, replication (#8414) Modules: * RM_ZsetRem: Delete key if empty, the bug could leave empty zset keys (#8453) * RM_HashSet: Add COUNT_ALL flag and set errno (#8446) - includes changes from 6.2 RC3: New commands / args: * Add HRANDFIELD and ZRANDMEMBER commands (#8297) * Add FAILOVER command (#8315) * Add GETEX, GETDEL commands (#8327) * Add PXAT/EXAT arguments to SET command (#8327) * Add SYNC arg to FLUSHALL and FLUSHDB, and ASYNC/SYNC arg to SCRIPT FLUSH (#8258) Sentinel: * Add hostname support to Sentinel (#8282) * Prevent file descriptors from leaking into Sentinel scripts (#8242) * Fix config file line order dependency and config rewrite sequence (#8271) New configuration options: * Add set-proc-title config option to disable changes to the process title (#3623) * Add proc-title-template option to control what's shown in the process title (#8397) * Add lazyfree-lazy-user-flush config option to control FLUSHALL, FLUSHDB and SCRIPT FLUSH (#8258) Bug fixes: * AOF: recover from last write error by turning on/off appendonly config (#8030) * Exit on fsync error when the AOF fsync policy is 'always' (#8347) * Avoid assertions (on older kernels) when testing arm64 CoW bug (#8405) * CONFIG REWRITE should honor umask settings (#8371) * Fix firstkey,lastkey,step in COMMAND command for some commands (#8367) Special considerations: * Fix misleading description of the save configuration directive (#8337) Improvements: * A way to get RDB file via replication without excessive replication buffers (#8303) * Optimize performance of clusterGenNodesDescription for large clusters (#8182) Info fields and introspection changes: * SLOWLOG and LATENCY monitor include unblocking time of blocked commands (#7491) Modules: * Add modules API for streams (#8288) * Add event for fork child birth and termination (#8289) * Add RM_BlockedClientMeasureTime* etc, to track background processing in commandstats (#7491) * Fix bug in v6.2, wrong value passed to the new unlink callback (#8381) * Fix bug in v6.2, modules blocked on keys unblock on commands like LPUSH (#8356) - includes changes from 6.2 RC2: New commands / args: * Add the REV, BYLEX and BYSCORE arguments to ZRANGE, and the ZRANGESTORE command (#7844) * Add the XAUTOCLAIM command (#7973) * Add the MINID trimming strategy and the LIMIT argument to XADD and XTRIM (#8169) * Add the ANY argument to GEOSEARCH and GEORADIUS (#8259) * Add the CH, NX, XX arguments to GEOADD (#8227) * Add the COUNT argument to LPOP and RPOP (#8179) * Add the WRITE argument to CLIENT PAUSE for pausing write commands exclusively (#8170) * Change the proto-ver argument of HELLO to optional (#7377) * Add the CLIENT TRACKINGINFO subcommand (#7309) Command behavior changes: * CLIENT TRACKING yields an error when given overlapping BCAST prefixes (#8176) * SWAPDB invalidates WATCHed keys (#8239) * SORT command behaves differently when used on a writable replica (#8283) Other behavior changes: * Avoid propagating MULTI/EXEC for read-only transactions (#8216) * Remove the read-only flag from TIME, ECHO, ROLE, LASTSAVE (#8216) * Fix the command flags of PFDEBUG (#8222) * Tracking clients will no longer receive unnecessary key invalidation messages after FLUSHDB (#8039) * Sentinel: Fix missing updates to the config file after SENTINEL SET command (#8229) Bug fixes with compatibility implications (bugs introduced in Redis 6.0): * Fix RDB CRC64 checksum on big-endian systems (#8270) If you're using big-endian please consider the compatibility implications with RESTORE, replication and persistence. * Fix wrong order of key/value in Lua's map response (#8266) If your scripts use redis.setresp() or return a map (new in Redis 6.0), please consider the implications. Bug fixes that are only applicable to previous releases of Redis 6.2: * Resolve rare assertions in active defragmentation while loading (#8284, #8281) Bug fixes: * Fix the selection of a random element from large hash tables (#8133) * Fix an issue where a forked process deletes the parent's pidfile (#8231) * Fix crashes when enabling io-threads-do-reads (#8230) * Fix a crash in redis-cli after executing cluster backup (#8267) * Fix redis-benchmark to use an IP address for the first cluster node (#8154) * Fix saving of strings larger than 2GB into RDB files (#8306) Additional improvements: * Improve replication handshake time (#8214) * Release client tracking table memory asynchronously in cases where the DB is also freed asynchronously (#8039) * Avoid wasteful transient memory allocation in certain cases (#8286, #5954) * Handle binary string values by the 'requirepass' and 'masterauth' configs (#8200) Platform and deployment-related changes: * Install redis-check-rdb and redis-check-aof as symlinks to redis-server (#5745) * Add a check for an ARM64 Linux kernel bug (#8224) Due to the potential severity of this issue, Redis will refuse to run on affected platforms by default. Info fields and introspection changes: * Add the errorstats section to the INFO command (#8217) * Add the failed_calls and rejected_calls fields INFO's commandstats section (#8217) * Report child copy-on-write metrics continuously (#8264) Module API changes: * Add the RedisModule_SendChildCOWInfo API (#8264) * Add the may-replicate command flag (#8170) - includes changes from 6.2 RC1: New commands / args: * Add SMISMEMBER command that checks multiple members (#7615) * Add ZMSCORE command that returns an array of scores (#7593) * Add LMOVE and BLMOVE commands that pop and push arbitrarily (#6929) * Add RESET command that resets client connection state (#7982) * Add COPY command that copies keys (#7953) * Add ZDIFF and ZDIFFSTORE commands (#7961) * Add ZINTER and ZUNION commands (#7794) * Add GEOSEARCH/GEOSEARCHSTORE commands for bounding box spatial queries (#8094) * Add GET parameter to SET command, for more powerful GETSET (#7852) * Add exclusive range query to XPENDING (#8130) * Add exclusive range query to X[REV]RANGE (#8072) * Add GT and LT options to ZADD for conditional score updates (#7818) * Add CLIENT INFO and CLIENT LIST for specific ids (#8113) * Add IDLE argument to XPENDING command (#7972) * Add local address to CLIENT LIST, and a CLIENT KILL filter. (#7913) * Add NOMKSTREAM option to XADD command (#7910) * Add command introspection to Sentinel (#7940) * Add SENTINEL MYID subcommand (#7858) New features: * Dump payload sanitization: prevent corrupt payload causing crashes (#7807) Has flags to enable full O(N) validation (disabled by default). * ACL patterns for Pub/Sub channels (#7993) * Support ACL for Sentinel mode (#7888) * Support getting configuration from both stdin and file at the same time (#7893) Lets you avoid storing secrets on the disk. New features in CLI tools: * redis-cli RESP3 push support (#7609) * redis-cli cluster import support source and target that require auth (#7994) * redis-cli URIs able to provide user name in addition to password (#8048) * redis-cli/redis-benchmark allow specifying the prefered ciphers/ciphersuites (#8005) * redis-cli add -e option to exit with code when command execution fails (#8136) Command behavior changes: * EXISTS should not alter LRU (#8016) In Redis 5.0 and 6.0 it would have touched the LRU/LFU of the key. * OBJECT should not reveal logically expired keys (#8016) Will now behave the same TYPE or any other non-DEBUG command. * Improve db id range check for SELECT and MOVE (#8085) Changes the error message text on a wrong db index. * Modify AUTH / HELLO error message (#7648) Changes the error message text when the user isn't found or is disabled. * BITOPS length limited to proto_max_bulk_len rather than 512MB (#8096) The limit is now configurable like in SETRANGE, and APPEND. * GEORADIUS[BYMEMBER] can fail with -OOM if Redis is over the memory limit (#8107) Other behavior changes: * Optionally (default) fail to start if requested bind address is not available (#7936) If you rely on Redis starting successfully even if one of the bind addresses is not available, you'll need to tune the new config. * Limit the main db dictionaries expansion to prevent key eviction (#7954) In the past big dictionary rehashing could result in massive data eviction. Now this rehashing is delayed (up to a limit), which can result in performance loss due to hash collisions. * CONFIG REWRITE is atomic and safer, but requires write access to the config file's folder (#7824, #8051) This change was already present in 6.0.9, but was missing from the release notes. * A new incremental eviction mechanism that reduces latency on eviction spikes (#7653) In pathological cases this can cause memory to grow uncontrolled and may require specific tuning. * Not resetting "save" config when Redis is started with command line arguments. (#7092) In case you provide command line arguments without "save" and count on it being disabled, Now the defaults "save" config will kick in. * Update memory metrics for INFO during loading (#7690) * When "supervised" config is enabled, it takes precedence over "daemonize". (#8036) * Assertion and panic, print crash log without generating SIGSEGV (#7585) * Added crash log report on SIGABRT, instead of silently exiting (#8004) * Disable THP (Transparent Huge Pages) if enabled (#7381) If you deliberately enabled it, you'll need to config Redis to keep it. Bug fixes: * Handle output buffer limits for module blocked clients (#8141) Could result in a module sending reply to a blocked client to go beyond the limit. * Fix setproctitle related crashes. (#8150, #8088) Caused various crashes on startup, mainly on Apple M1 chips or under instrumentation. * A module doing RM_Call could cause replicas to get nested MULTI (#8097). * Backup/restore cluster mode keys to slots map for repl-diskless-load=swapdb (#8108) In cluster mode with repl-diskless-load, when loading failed, slot map wouldn't have been restored. * Fix oom-score-adj-values range, and bug when used in config file (#8046) Enabling setting this in the config file in a line after enabling it, would have been buggy. * Reset average ttl when empty databases (#8106) Just causing misleading metric in INFO * Disable rehash when Redis has child process (#8007) This could have caused excessive CoW during BGSAVE, replication or AOFRW. * Further improved ACL algorithm for picking categories (#7966) Output of ACL GETUSER is now more similar to the one provided by ACL SETUSER. * Fix bug with module GIL being released prematurely (#8061) Could in theory (and rarely) cause multi-threaded modules to corrupt memory. * Fix cluster redirect for module command with no firstkey. (#7539) * Reduce effect of client tracking causing feedback loop in key eviction (#8100) * Kill disk-based fork child when all replicas drop and 'save' is not enabled (#7819) * Rewritten commands (modified for propagation) are logged as their original command (#8006) * Fix cluster access to unaligned memory (SIGBUS on old ARM) #7958 * If diskless repl child is killed, make sure to reap the child pid (#7742) * Broadcast a PONG message when slot's migration is over, may reduce MOVED responses (#7571) Other improvements: * TLS Support in redis-benchmark (#7959) * Accelerate diskless master connections, and general re-connections (#6271) * Run active defrag while blocked / loading (#7726) * Performance and memory reporting improvement - sds take control of its internal fragmentation (#7875) * Speedup cluster failover. (#7948) Platform / toolchain support related improvements: * Optionally (not by default) use H/W Monotonic clock for faster time sampling (#7644) * Remove the requirements for C11 and _Atomic supporting compiler (#7707) This would allow to more easily build and use Redis on older systems and compilers again. * Fix crash log registers output on ARM. (#8020) * Raspberry build fix. (#8095) * Setting process title support for Haiku. (#8060) * DragonFlyBSD RSS memory sampling support. (#8023) New configuration options: * Enable configuring OpenSSL using the standard openssl.cnf (#8143) * oom-score-adj-values config can now take absolute values (besides relative ones) (#8046) * TLS: Add different client cert support. (#8076) * Note that a few other changes listed above added their config options. Info fields and introspection changes: * Add INFO fields to track diskless and disk-based replication progress (#7981) * Add INFO field for main thread cpu time, and scrape system time. (#8132) * Add total_forks to INFO STATS (#8155) * Add maxclients and cluster_connections to INFO CLIENTS (#7979) * Add tracking bcast flag and client redirection in client list (#7995) * Fixed INFO client_recent_max_input_buffer includes argv array (#8065, see #7874) * Note that a few other changes listed above added their info fields. Module API changes: * Add CTX_FLAGS_DENY_BLOCKING as a unified the way to know if blocking is allowed (#8025) * Add data type callbacks for lazy free effort, and unlink (#7912) * Add data type callback for COPY command (#8112) * Add callbacks for defrag support. (#8149) * Add module event for repl-diskless-load swapdb (#8153) Module related fixes: * Moved RMAPI_FUNC_SUPPORTED so that it's usable (#8037) * Improve timer accuracy (#7987) * Allow '\0' inside of result of RM_CreateStringPrintf (#6260)- Added parameter -p to all install command in spec-file. - Changed file redis.tmpfiles.d file, replaced from /var/run to /run.- redis 6.0.12: * Fix compilation error on non-glibc systems if jemalloc is not used- redis 6.0.11: * CVE-2021-21309: Avoid 32-bit overflows when proto-max-bulk-len is set high (boo#1182657) * Fix handling of threaded IO and CLIENT PAUSE (failover), could lead to data loss or a crash * Fix the selection of a random element from large hash tables * Fix broken protocol in client tracking tracking-redir-broken message * XINFO able to access expired keys on a replica * Fix broken protocol in redis-benchmark when used with -a or - -dbnum * Avoid assertions (on older kernels) when testing arm64 CoW bug * CONFIG REWRITE should honor umask settings * Fix firstkey,lastkey,step in COMMAND command for some commands * RM_ZsetRem: Delete key if empty, the bug could leave empty zset keys- Switch systemd type of the sentinel service from notify to simple. This can be reverted when updating to 6.2 which fixes https://github.com/redis/redis/issues/7284 .- Enable TLS support and add BuildRequires libopenssl-devel (bsc#1181830) - Make tests run by adding BuildRequires tcl and procps- HTTPS download link for source - redis 6.0.10: Command behavior changes: * SWAPDB invalidates WATCHed keys (#8239) * SORT command behaves differently when used on a writable replica (#8283) * EXISTS should not alter LRU (#8016) In Redis 5.0 and 6.0 it would have touched the LRU/LFU of the key. * OBJECT should not reveal logically expired keys (#8016) Will now behave the same TYPE or any other non-DEBUG command. * GEORADIUS[BYMEMBER] can fail with -OOM if Redis is over the memory limit (#8107) Other behavior changes: * Sentinel: Fix missing updates to the config file after SENTINEL SET command (#8229) * CONFIG REWRITE is atomic and safer, but requires write access to the config file's folder (#7824, #8051) This change was already present in 6.0.9, but was missing from the release notes. Bug fixes with compatibility implications (bugs introduced in Redis 6.0): * Fix RDB CRC64 checksum on big-endian systems (#8270) If you're using big-endian please consider the compatibility implications with RESTORE, replication and persistence. * Fix wrong order of key/value in Lua's map response (#8266) If your scripts use redis.setresp() or return a map (new in Redis 6.0), please consider the implications. Bug fixes: * Fix an issue where a forked process deletes the parent's pidfile (#8231) * Fix crashes when enabling io-threads-do-reads (#8230) * Fix a crash in redis-cli after executing cluster backup (#8267) * Handle output buffer limits for module blocked clients (#8141) Could result in a module sending reply to a blocked client to go beyond the limit. * Fix setproctitle related crashes. (#8150, #8088) Caused various crashes on startup, mainly on Apple M1 chips or under instrumentation. * Backup/restore cluster mode keys to slots map for repl-diskless-load=swapdb (#8108) In cluster mode with repl-diskless-load, when loading failed, slot map wouldn't have been restored. * Fix oom-score-adj-values range, and bug when used in config file (#8046) Enabling setting this in the config file in a line after enabling it, would have been buggy. * Reset average ttl when empty databases (#8106) Just causing misleading metric in INFO * Disable rehash when Redis has child process (#8007) This could have caused excessive CoW during BGSAVE, replication or AOFRW. * Further improved ACL algorithm for picking categories (#7966) Output of ACL GETUSER is now more similar to the one provided by ACL SETUSER. * Fix bug with module GIL being released prematurely (#8061) Could in theory (and rarely) cause multi-threaded modules to corrupt memory. * Reduce effect of client tracking causing feedback loop in key eviction (#8100) * Fix cluster access to unaligned memory (SIGBUS on old ARM) (#7958) * Fix saving of strings larger than 2GB into RDB files (#8306) Additional improvements: * Avoid wasteful transient memory allocation in certain cases (#8286, #5954) Platform / toolchain support related improvements: * Fix crash log registers output on ARM. (#8020) * Add a check for an ARM64 Linux kernel bug (#8224) Due to the potential severity of this issue, Redis will print log warning on startup. * Raspberry build fix. (#8095) New configuration options: * oom-score-adj-values config can now take absolute values (besides relative ones) (#8046) Module related fixes: * Moved RMAPI_FUNC_SUPPORTED so that it's usable (#8037) * Improve timer accuracy (#7987) * Allow '\0' inside of result of RM_CreateStringPrintf (#6260)- redis 6.0.9: * potential heap overflow when using a heap allocator other than jemalloc or glibc's malloc. Does not affect the openSUSE package - boo#1178205 * Memory reporting of clients argv * Add redis-cli control on raw format line delimiter * Add redis-cli support for rediss:// -u prefix * WATCH no longer ignores keys which have expired for MULTI/EXEC * Correct OBJECT ENCODING response for stream type * Allow blocked XREAD on a cluster replica * TLS: Do not require CA config if not used * multiple bug fixes * Additions to modules API- redis 6.0.8 (jsc#PM-1615, jsc#PM-1622, jsc#PM-1681, jsc#ECO-2417, jsc#ECO-2867, jsc#PM-1547, jsc#CAPS-56, jsc#SLE-11578, jsc#SLE-12821): * bug fixes when using with Sentinel * bug fixes when using CONFIG REWRITE * Remove THP warning when set to madvise * Allow EXEC with read commands on readonly replica in cluster * Add masters/replicas options to redis-cli --cluster call command - includes changes from 6.0.7: * CONFIG SET could hung the client when arrives during RDB/ROF loading * LPOS command when RANK is greater than matches responded with broken protocol * Add oom-score-adj configuration option to control Linux OOM killer * Show IO threads statistics and status in INFO output * Add optional tls verification mode (see tls-auth-clients)- redis 6.0.6: * Fix crash when enabling CLIENT TRACKING with prefix * EXEC always fails with EXECABORT and multi-state is cleared * RESTORE ABSTTL won't store expired keys into the db * redis-cli better handling of non-pritable key names * TLS: Ignore client cert when tls-auth-clients off * Tracking: fix invalidation message on flush * Notify systemd on Sentinel startup * Fix crash on a misuse of STRALGO * Few fixes in module API * Fix a few rare leaks (STRALGO error misuse, Sentinel) * Fix a possible invalid access in defrag of scripts * Add LPOS command to search in a list * Use user+pass for MIGRATE in redis-cli and redis-benchmark in cluster mode * redis-cli support TLS for --pipe, --rdb and --replica options * TLS: Session caching configuration support- redis 6.0.5: * Fix handling of speical chars in ACL LOAD * Make Redis Cluster more robust about operation errors that may lead to two clusters to mix together * Revert the sendfile() implementation of RDB transfer * Fix TLS certificate loading for chained certificates * Fix AOF rewirting of KEEPTTL SET option * Fix MULTI/EXEC behavior during -BUSY script errors- redis 6.0.4: * fix a severe replication bug introduced in Redis 6 by the "meaningful offset" feature- redis 6.0.3: * fix a crash introduced in 6.0.2 - includes changes from 6.0.2: * bug fixes * fix to client side caching when keys are evicted from the tracking table but no notifications are sent- redis-disable_integration_logging.patch: remove - redis-enable-bactrace-on-x86-ia64-and_arm32_only.patch: remove - getMcontextEip-return-value.patch: Add missing return value- add BR pkgconfig(libsystemd) for the rewritten systemd support and force building with it- Update to 6.0.1 * https://raw.githubusercontent.com/antirez/redis/6.0.1/00-RELEASENOTES * XCLAIM AOF/replicas propagation fixed. * Client side caching: new NOLOOP option to avoid getting notified about changes performed by ourselves. * ACL GENPASS now uses HMAC-SHA256 and have an optional "bits" argument. It means you can use it as a general purpose "secure random strings" primitive! * Cluster "SLOTS" subcommand memory optimization. * The LCS command is now a subcommand of STRALGO. * Meaningful offset for replicas as well. More successful partial resynchronizations. * Optimize memory usage of deferred replies. * Faster CRC64 algorithm for faster RDB loading. * XINFO STREAM FULL, a new subcommand to get the whole stream state. * CLIENT KILL USER . * MIGRATE AUTH2 option, for ACL style authentication support. * Other random bugfixes.- ppc-atomic.patch: use libatomic also on ppc- add hash file from redis-hashes and verify it during build- redis 5.0.9: * Critical fix when Streams with AOF ore replicas are used: Prevent reprocesing some entries upon restart * Speed improvement: Clients blocked on the same key are now unblocked on O(1) time- Use the tmpfiles macros instead of calling systemd-tempfiles direct and build wrong macro paths.- Refresh spec-file with spec-cleaner and manual optimizations * Remove Group tag. * Replace make by %make_build macros. - Update to 5.0.8 * https://raw.githubusercontent.com/antirez/redis/5.0.8/00-RELEASENOTES * Fix Pi building needing -latomic, backport. * Fix impl of aof-child whitelist SIGUSR1 feature. * Fix ThreadSafeContext lock/unlock function names. * XREADGROUP should propagate XCALIM/SETID in MULTI/EXEC. * Fix client flags to be int64 in module.c. * Fix small bugs related to replica and monitor ambiguity. * Fix lua related memory leak. * Simplify #6379 changes. * Free allocated sds in pfdebugCommand() to avoid memory leak. * Jump to right label on AOF parsing error. * Free fakeclient argv on AOF error. * Fix potential memory leak of rioWriteBulkStreamID(). * Fix potential memory leak of clusterLoadConfig(). * Fix bug on KEYS command where pattern starts with * followed by \x00. * Blocking XREAD[GROUP] should always reply with valid data. * XCLAIM: Create the consumer only on successful claims. * Stream: Handle streamID-related edge cases. * Fix ip and missing mode in RM_GetClusterNodeInfo(). * Inline protocol: handle empty strings well. * Mark extern definition of SDS_NOINIT in sds.h. * Fix revisit CVE-2015-8080 vulnerability. * Avoid sentinel changes promoted_slave to be its own replica.- print instance name in the from the service files- Don't install redis-trib.rb, it's only a dummy telling the user to use redis-cli instead and pulls in ruby for that.- Make redis useable in a container (drop size from 100MB to 20MB): - Change user generation from shadow to sysusers - Drop redis-initscript.patch and sudo requires, we use systemd - Drop BuildRequires for procps and tcl, they are not needed - Make logrotate recommend, it's not required for redis to work- Update to 5.0.7 * https://raw.githubusercontent.com/antirez/redis/5.0.7/00-RELEASENOTES * Test: fix implementation-dependent test after code change. * RED-31295 - redis: avoid race between dlopen and thread creation. * Cluster: fix memory leak of cached master. * Fix usage of server.stream_node_max_*. * Update mkreleasehdr.sh. * Remove additional space from comment. * Fix stream test after addition of 0-0 ID test. * AOF: fix assignment for aof_fsync_offset. * Rename var to fixed_time_expire now that is more general. * Expires & blocking: handle ready keys as call(). * XADD with ID 0-0 stores an empty key. * Fix unreported overflow in autogerenared stream IDs. * Expires: refactoring judgment about whether a key is expired. - Refresh reproducible.patch - Update to 5.0.6 * https://raw.githubusercontent.com/antirez/redis/5.0.6/00-RELEASENOTES * RDB: fix MODULE_AUX loading by continuing to next opcode. * Missing per-skiplist overheads in MEMORY USAGE. * RM_Log: add support for logging without a context or context without module. * Cluster: abort loading nodes data if vars arguments are unbalanced. * More strict checks and better comments in flushSlaveOutputBuffers(). * Improve comment in flushSlavesOutputBuffers(). * Replication: clarify why repl_put_online_on_ack exists at all. * Networking: flushSlavesOutputBuffers bugfix. * RM_ReplyWithCString was missing registration. * Fix to module aux data rdb format for backwards compatibility with old check-rdb. * Implement module api for aux data in rdb. * Redis-cli: always report server errors on read errors. * Reduce the calling stack. * Make EMBSTR case of #6261 more obvious. * Make memory usage consistent of robj with OBJ_ENCODING_INT. * HyperLogLog: fix the fix of a corruption bug. * Fix HLL corruption bug. * Extend REDISMODULE_CTX_FLAGS to indicate if redis is currently loading from either RDB or AOF. * Uses addReplyBulkCString. * Adds RedisModule_ReplyWithCString.- update to 5.0.5 Major changes from the Redis 5 series: 1. The new Stream data type. https://redis.io/topics/streams-intro 2. New Redis modules APIs: Timers, Cluster and Dictionary APIs. 3. RDB now store LFU and LRU information. 4. The cluster manager was ported from Ruby (redis-trib.rb) to C code inside redis-cli. Check `redis-cli --cluster help` for more info. 5. New sorted set commands: ZPOPMIN/MAX and blocking variants. 6. Active defragmentation version 2. 7. Improvemenets in HyperLogLog implementations. 8. Better memory reporting capabilities. 9. Many commands with sub-commands now have an HELP subcommand. 10. Better performances when clients connect and disconnect often. 11. Many bug fixes and other random improvements. 12. Jemalloc was upgraded to version 5.1 13. CLIENT UNBLOCK and CLIENT ID. 14. The LOLWUT command was added. http://antirez.com/news/123 15. We no longer use the "slave" word if not for API backward compatibility. 16. Differnet optimizations in the networking layer. 17. Lua improvements: - Better propagation of Lua scripts to replicas / AOF. - Lua scripts can now timeout and get in -BUSY state in the replica as well. 18. Dynamic HZ to balance idle CPU usage with responsiveness. 19. The Redis core was refactored and improved in many ways. However the list above really does not do justice to the changes of Redis 5 since the core was improved in many ways during the development of the new version. However certain changes were back ported into Redis 4 once they were sensed as safe, because many improvements were hard to distinguish from fixes. The most important user facing improvement is without doubts the introduction of the new general purpose data type after years: the streams. Note that we worked to improve and fix streams till a few hours ago, so while we are not aware of critical bugs in this release, surely there is to handle it with some care for the first weeks. Bug reporting will be highly appreciated and we are ready to work immediately to release 5.0.1 once there is enough important stuff to justify a new release (probably soon). People not using the streams can have probably a better production-ready experience with Redis 5, also because many internals are shared with Redis 4 so the jump is not as big as it was between 3.2 and 4 in terms of how things internally work. Well, many thanks to the Redis community and the developers that made this release possible, contributing bug reports, patches, new features, working on the clients, sometimes debugging problems for days. Also thank to everybody that adopted Redis for their use cases making things work for users worldwide. see installed /usr/share/doc/packages/redis/00-RELEASENOTES - refreshed patches to apply cleanly again: redis-conf.patch redis-enable-bactrace-on-x86-ia64-and_arm32_only.patch reproducible.patch- update systemd unit file to fix redis shutdown immedaiate after start- make sure that disabling/restarting servers works https://nordisch.org/posts/hooking-up-instantiated-services-with-rpm/- make check && true -> make check || true This was probably meant to catch an error in the test suite, but with && it would only return true if it would return true already.- added systemd unit file file redis-sentinel - the unit file uses the same multiple instance mechanism as the normal redis unit file systemctl start redis-sentinel@default will look for /etc/redis/sentinel-default.conf and expects a pid file /var/run/redis/sentinel-default.pid Please make sure your sentinel config sets the pid file. - adapted the default sentinel.conf.example to set the pid file and the log file similar to the normal redis.conf: /var/log/redis/sentinel-.log /var/run/redis/sentinel-.pid The unit file checks for the pid file so please adapt your local sentinel configs. Changed: redis-conf.patch - adapt and restructure README.SUSE - move the LimitNoFile to the service file itself so the user do not have to manually do that step for every instance - move the apache integration into its own section - add section for redis-sentinel - install sentinel example config with group write permissions to indicate that the actually config needs to be writable.- replace some duplicate binaries with symlinks similar to what the fedora package does- Refresh spec-file. - Update to 4.0.11 * https://raw.githubusercontent.com/antirez/redis/4.0.11/00-RELEASENOTES * The disconnection time between the master and slave was reset in an incorrect place, sometimes a good slave will not be able to failover because it claims it was disconnected for too much time from the master. * A replication bug, rare to trigger but non impossible, is in Redis for years. It was lately discovered at Redis Labs and fixed by Oran Agra. It may cause disconnections, desynchronizations and other issues. * RANDOMKEY may go in infinite loop on rare situations. Now fixed. * EXISTS now works in a more consistent way on slaves. * Sentinel: backport of an option to deny a potential security problem when the SENTINEL command is used to configure an arbitrary script to execute.- Add reproducible.patch to have fixed hostname and date (boo#1047218)- update to 4.0.10 (boo#1097430) CVE-2018-11218 CVE-2018-11219 https://raw.githubusercontent.com/antirez/redis/4.0.10/00-RELEASENOTES - Important security issues related to the Lua scripting engine. Please check https://github.com/antirez/redis/issues/5017 for more information. - A bug with SCAN, SSCAN, HSCAN and ZSCAN, that may not return all the elements. We also add a regression test that can trigger the issue often when present, and may in theory be able to find unrelated regressions. - A PSYNC2 bug is fixed: Redis should not expire keys when saving RDB files because otherwise it is no longer possible to use such RDB file as a base for partial resynchronization. It no longer represents the right state. - Compatibility of AOF with RDB preamble when the RDB checksum is disabled. - Sentinel bug that in some cases prevented Sentinel to detect that the master was down immediately. A delay was added to the detection. - refreshed patches to apply cleanly again redis-conf.patch redis-initscript.patch- Update redis-enable-bactrace-on-x86-and-ia64-only.patch to handle arm and rename it to redis-enable-bactrace-on-x86-ia64-and_arm32_only.patch - Add redis-disable_integration_logging.patch to disable logging test when backtrace is not enabled- Update to 4.0.9 * https://raw.githubusercontent.com/antirez/redis/4.0.9/00-RELEASENOTES * Critical upgrade for users using AOF with the fsync policy set to "always". * Latency monitor could report wrong latencies under certain conditions. * AOF rewriting could fail when a backgronud rewrite is triggered and at the same time the AOF is switched on/off. * Redis Cluster crash-recovery safety improved. * Redis Cluster has now the ability to configure certain slaves so that they'll never attempt a failover. * Keyspace notifications API in modules. * RM_Call() is now faster by reusing the same client. * Tracking of the percentage of keys already logically expired but yet not evicted.- Update to 4.0.8 * Release notes: https://raw.githubusercontent.com/antirez/redis/4.0.8/00-RELEASENOTES * Fix crash Redis Cluster instances during deletions.- Update to 4.0.7 * Release notes: https://raw.githubusercontent.com/antirez/redis/4.0.7/00-RELEASENOTES * Many 32 bit overflows were addressed in order to allow to use Redis with a very significant amount of data, memory size permitting. * MEMORY USAGE fixed for the list type. * Allow read-only scripts in Redis Cluster. * Fix AOF pipes setup in edge case. * AUTH option for MIGRATE. * HyperLogLogs are no longer converted from sparse to dense in order to be merged. * Fix AOF rewrite dead loop under edge cases. * Fix processing of large bulk strings (>= 2GB). * Added RM_UnlinkKey in modules API. * Fix Redis Cluster crashes when certain commands with a variable number of arguments are called in an improper way. * Fix memory leak in lazyfree engine. * Fix many potentially successful partial synchronizations that end doing a full SYNC, because of a bug destroying the replication backlog on the slave. So after a failover the slave was often not able to PSYNC with masters, and a full SYNC was triggered. The bug only happened after 1 hour of uptime so escaped the unit tests. * Improve anti-affinity in master/slave allocation for Redis Cluster when the cluster is created. * Improve output buffer handling for slaves, by not limiting the amount of writes a slave could receive.- Update to 4.0.6 * Release notes: https://raw.githubusercontent.com/antirez/redis/4.0.6/00-RELEASENOTES * PSYNC2: More errors in the fixes for PSYNC2 (CRITICAL). * Quicklist: change the len of quicklist to unsigned long. * Quicklist: fix the return value of quicklistCount. * Refactoring: improve luaCreateFunction() API. * Remove useless variable check from luaCreateFunction(). * Fix issue #4505, Lua RDB AUX field loading of existing scripts. * Regression test for #4505 (Lua AUX field loading). * DEBUG change-repl-id implemented. * Buffer overflows occurring reading redis.conf CVE-2017-15047 (bsc#1061967)- Update changelog with CVE reference- Drop SLE 11 support. - Refresh spec-file. - Update to 4.0.2 * Release notes: https://raw.githubusercontent.com/antirez/redis/4.0.2/00-RELEASENOTES * Different replication fixes to PSYNC2, the new 4.0 replication engine. * Modules thread safe contexts were introduced. They are an experimental API right now, but the API is considered to be stable and usable when needed. * SLOWLOG now logs the offending client name and address. Note that this is a backward compatibility breakage in case old code assumes that the slowlog entry is composed of exactly three entries. * The modules native data types RDB format changed. * The AOF check utility is now able to deal with RDB preambles. * GEORADIUS_RO and GEORADIUSBYMEMBER_RO variants, not supporting the STORE option, were added in order to allow read-only scaling of such queries. * HSET is now variadic, and HMSET is considered deprecated (but will be supported for years to come). Please use HSET in new code. * GEORADIUS huge radius (>= ~6000 km) corner cases fixed, certain elements near the edges were not returned. * DEBUG DIGEST modules API added. * HyperLogLog commands no longer crash on certain input (non HLL) strings. * Fixed SLAVEOF inside MULTI/EXEC blocks. * Many other minor bug fixes and improvements.- cleanup service file - add redis.sysctl file - update README.SUSE * add info for socket usage per service * add info for limits per service (LimitNOFILE=10240)- Update to version 3.2.9 * A few rarely harmful bugs were fixed. - Changes accumulated from 3.2.8 Two important bug fixes, the first of one is critical: * Apparently Jemalloc 4.4.0 may contain a deadlock under particular conditions. See https://github.com/antirez/redis/issues/3799. We reverted back to the previously used Jemalloc versions and plan to upgrade Jemalloc again after having more info about the cause of the bug. * MIGRATE could crash the server after a socket error. See for reference: https://github.com/antirez/redis/issues/3796.- Update to version 3.2.7 * This release fixes important security and correctness issues (boo#1064980 CVE-2016-10517)- update to redis 3.2.6 * fixes for GEORADIUS, BITFIELD and Redis Cluster minor fixes. - update 3.2.5 * This release only fixes a compilation issue due to the missing -ldl at linking time.- update to redis 3.2.4, including fixes for security issues: * CVE-2016-8339: CONFIG SET client-output-buffer-limit Code Execution Vulnerability [boo#1002351] - bug fixes: * TCP binding bug fixed when only certain addresses were available for a given port * improved crash report * Fix for Redis Cluster redis-trib displaying of info after creating a new cluster.- redis 3.2.3: * fix replication delay issue * drop CVE-2013-7458.patch, upstream- Test for user/group existence before creating them. Request shadow to be present for the scriptlet.- Fix CVE-2013-7458: unsafe permissions of command line history boo#991250, adding CVE-2013-7458.patch- redis 3.2.2 - Highlight bug fixes: * Fix Redis server and Sentinel crashes * Fix GEORADIUS errors in reported entries - New features: * slaves support the slave-announce-ip and slave-announce-port options. * RDB check utlity is now part of Redis and uses the same RDB code * redis-check-dump utility is now able to show certain information about the RDB file including creating version and date.- Update to 3.2.1 * [FIX] Cleaned up spec file. * [FIX] Critical bug in Sentinel was hopefully fixed. * [FIX] BITFIELD bugs fixed. * [FIX] GEO commands fixes on syntax errors and edge cases. * [NEW] RESOTRE now accepts dumps generated by older Redis versions. * [NEW] Jemalloc now is configured to save you memory, for a problem a change in the jemalloc configuration did not really survived when the 3.2.0 release was finalized. * [NEW] TTL and TYPE command no longer alter the last access time of a key, for LRU evictions purposes. A new TOUCH command was introduced *just* to update the access time of a key. * [FIX] A bug was fixed in redis-cli, that connected to the instance running on the port 6379 if there was one, regardless of what was specified. * [NEW] TCP keep alive is now enabled by default. This should fix most ghost connections problems without resulting in any practical change in otherwise sane deployments. * [FIX] A Sentinel crash that could happen during failovers was fixed. * [NEW] avg_ttl reporting in INFO improved. * [NEW] Sentinel: improve handling of known Sentinel instances. * [NEW] Redis Cluster address update (via gossip section) processing improved to avoid initiating inwanted handshakes. * [FIX] Critical bug fixed: There was a problem in the way a cluster instance loaded the AOF that could cause data written via scripts to be lost during reshardings. * [NEW] There is a new very powerful BITFIELD command. Check the documentation here: http://redis.io/commands/BITFIELD * [NEW] CONFIG GET is allowed during the loading of the dataset. * [NEW] The DEBUG command have new features and can show an help with DEBUG HELP. * [NEW] redis-cli show hits about the commands arguments to the right. * [NEW] GEORADIUS got a STORE / STOREDIST option to store the result into a target key (as as orted set) instead of reporting it to the user. * [NEW] Redis Cluster replicas migration now works in a slightly different way. In the past a slave could migrate only to a master that used to have slaves in the past (and if there was still trace of this information). Now instead if a new slave gets at least a slot, and at least one other master in the cluster has a slave, then the new master is considered a valid target for replica migration. So if it will be orphaned and there is a spare slave it will get one. * [NEW] CLUSTER SLOTS output now includes the node ID (in a backward compatible manner).- Fix installation example in README.SUSE- Update to 3.0.7: * [FIX] Many fixes to MIGRATE multiple keys implementation. * [FIX] A Redis Cluster node crash was fixed because of wrong handling of node->slaveof pointers. * [FIX] Fix redis-trib rebalance when nodes need to be left empty because the specified weight is zero. * [FIX] MIGRATE: Never send -ASK redirections for MIGRATE when there are * [FIX] Lua debugger crash when printing too deeply nested objects. * [FIX] Redis-cli implementation of Lua debugging now allows to use the SCRIPT DEBUG command directly, switching to debugging mode as needed. * [FIX] Redis-trib is now able to fix more errors. A new CLUSTER subcommand called BUMPEPOCH was introduced in order to support new modes for the "fix" subcommand. * [NEW] Redis proctected mode: this feature improves Redis security and makes harder to run Redis in a configuration that is unsecure because no firewalling was used in order to protect Redis from external accesses. * [NEW] Cluster/Sentinel tests now use OSX leak to perform leak detection at the end of every unit. * [NEW] Detect and show server crashes during Cluster/Sentinel tests. * [NEW] More reliable Cluster/Sentinel test becuase of timing errors and - LOADING errors. * [FIX] lua_struct.c/getnum security issue fixed. * [FIX] Redis Cluster replica migration fixed. * [FIX] Fix a race condition in processCommand() because of interactions with freeMemoryIfNeeded(). * [NEW] Backported from the upcoming Redis 3.2: MIGRATE now supports an extended multiple-keys pipelined mode, which is an order of magnitude faster. Redis Cluster now uses this mode in order to perform reshardings and rebalancings. * [NEW] Backported from the upcoming Redis 3.2: Redis Cluster has now support for rebalancing via the redis-trib rebalance command. Demo here: * [NEW] Redis Cluster redis-trib.rb new "info" subcommand. * [NEW] Redis Cluster tests improved. * [NEW] Log offending memory access address on SIGSEGV/SIGBUS- Update to 3.0.5 * [FIX] MOVE now moves the TTL as well. A bug lasting forever... finally fixed thanks to Andy Grunwald that reported it. * [FIX] Fix a false positive in HSTRLEN test. * [FIX] Fix a bug in redis-cli --pipe mode that was not able to read back replies from the server incrementally. Now a mass import will use a lot less memory, and you can use --pipe to do incremental streaming. * [FIX] Slave detection of master timeout. * [NEW] Cluster: redis-trib fix can fix an additional case for opens lots. * [NEW] Cluster: redis-trib import support for --copy and - -replace options- update to 3.0.4 Upgrade urgency: HIGH for Redis and Sentinel. However note that in order to fix certain replication bugs, the replication internals were modified in a very heavy way. So while this release is conceptually saner, it may contain regressions. For this reason, before the release, QA activities were performed by me (antirez) and Redis Labs and no evident bug was found. - [FIX] A number of bugs related to replication PSYNC and the (yet experimental) diskless replication feature were fixed. The bugs could lead to inconsistency between masters and slaves. (Salvatore Sanfilippo, Oran Agra fixed the issue found by Yuval Inbar) - [FIX] A replication bug in the context of PSYNC partial resynchonization was found and fixed. This bug happens even when diskless replication is off in the case different slaves connect at different times while the master is creating an RDB file, and later a partial resynchronization is attempted by a slave that connected not as the first one. (Salvatore Sanfilippo, Oran Agra) - [FIX] Chained replication and PSYNC interactions leading to potential stale chained slaves data set, see issue #2694. (Salvatore Sanfilippo fixed an issue reported by "GeorgeBJ" user at Github) - [FIX] redis-cli --scan iteration fixed when returned cursor overflows 32 bit signed integer. (Ofir Luzon, Yuval Inbar) - [FIX] Sentinel: fixed a bug during the master switch process, where for a failed conditional check, the new configuration is rewritten, during a small window of time, in a corrupted way where the master is also reported to be one of the slaves. This bug is rare to trigger but apparently it happens in the wild, and the effect is to see a replication loop where the master will try to replicate with itself. A detailed explanation of the bug and its effects can be found in the commit message here: https://github.com/antirez/redis/commit/c20218eb5770b2cafb12bc7092313b8358fedc0a. The bug was found by Jan-Erik Rediger using a static analyzer and fixed by Salvatore Sanfilippo. - [FIX] Sentinel lack of arity checks for certain commands. (Rogerio Goncalves, Salvatore Sanfilippo) - [NEW] Replication internals rewritten in order to be more resistant to bugs. The replication handshake in the slave side was rewritten as a non blocking state machine. (Salvatore Sanfilippo, Oran Agra) - [NEW] New "replication capabilities" feature introduced in order to signal from the master to the slave what are the features supported, so that the master can choose the kind of replication to start (diskless or not) when master and slave are of different versions. (Oran Agra, Salvatore Sanfilippo) - [NEW] Log clients details when SLAVEOF command is received. (Salvatore Sanfilippo with inputs from Nick Craver and Marc Gravell).- update to 3.0.3 * [FIX] Fix blocking operations timeout precision when HZ is at its default value (not increased) and there are thousands of clients connected at the same time. This bug affected Sidekiq users that experienced a very long delay for BLPOP and similar commands to return for timeout. Check commit b029ff1 for more info. (Salvatore Sanfilippo) * [FIX] MIGRATE "creating socket: Invalid argument" error fix. Check issues #2609 and #2612 for more info. (Salvatore Sanfilippo) * [FIX] Be able to connect to the master even when the slave is bound to just the loopback interface and has no valid public address in the network the master is reacahble. (Salvatore Sanfilippo) * [FIX] ZADD with options encoding promotion fixed. (linfangrong) * [FIX] Reset aof_delayed_fsync on CONFIG RESETSTATS. (Tom Kiemes) * [FIX] PFCOUNT key parsing in cluster fixed. (MOON_CLJ) * [FIX] Fix Solaris compilation of Redis 3.0. (Jan-Erik Rediger) * [NEW] Variadic EXISTS command. Now the command accepts multiple arguments and returns the total count of existing keys. - added missing sentinel link- also pass the bind address to the redis-cli for shutdown (boo#835815)- update to 3.0.2 * [FIX] Critical security issue fix by Ben Murphy: http://t.co/LpGTyZmfS7 * [FIX] SMOVE reply fixed when src and dst keys are the same. (Glenn Nethercutt) * [FIX] Lua cmsgpack lib updated to support str8 type. (Sebastian Waisbrot) * [NEW] ZADD support for options: NX, XX, CH. See new doc at redis.io. (Salvatore Sanfilippo) * [NEW] Senitnel: CKQUORUM and FLUSHCONFIG commands back ported. (Salvatore Sanfilippo)- update to 3.0.1 * Sentinel memory leak due to hiredis fixed. * Sentinel memory leak on duplicated instance. * Redis crash on Lua reaching output buffer limits. * Sentinel flushes config on +slave events.- update to 3.0.0 >> What's new in Redis 3.0 compared to Redis 2.8? * Redis Cluster: a distributed implementation of a subset of Redis. * New "embedded string" object encoding resulting in less cache misses. Big speed gain under certain work loads. * AOF child -> parent final data transmission to minimize latency due to "last write" during AOF rewrites. * Much improved LRU approximation algorithm for keys eviction. * WAIT command to block waiting for a write to be transmitted to the specified number of slaves. * MIGRATE connection caching. Much faster keys migraitons. * MIGARTE new options COPY and REPLACE. * CLIENT PAUSE command: stop processing client requests for a specified amount of time. * BITCOUNT performance improvements. * CONFIG SET accepts memory values in different units (for example you can use "CONFIG SET maxmemory 1gb"). * Redis log format slightly changed reporting in each line the role of the instance (master/slave) or if it's a saving child log. * INCR performance improvements. >> Refactoring changes (no new features nor bug fixes) * Blocking operations full refactoring (blocked.c) * Client output buffer memory tracking refactored. for all the details see /usr/share/doc/packages/redis/00-RELEASENOTES - refreshed redis-enable-bactrace-on-x86-and-ia64-only.patch to apply cleanly- make sure we do not daemonize- finished systemd support- update to 2.8.19 - Don't log admin commands in MONITOR. (antirez) - List of commands flagged as admin commands modified. (antirez) - Lua cmsgpack lib updated to latest version. (antirez) - Add symlink to redis-sentinel during make install (Rhommel Lamas) - SORT: Don't sort Set elements if not needed. (antirez) - Fix zero-ordering SORT when called against lists (Matt Stancliff) - Update redis_init_script.tpl (Ben Dowling) - FIXED redis-benchmark's idle mode.With idle mode shouldn't create write event (zhanghailei) - zipmap.c: update comments above (Sun He) - replaced // comments #2150 (Deepak Verma) - redis-benchmark AUTH command to be discarded after the first send #2150 (azure provisioned user) - sds.c: Correct two spelling mistakes in comments (Sun He) - sds.c/sdscatvprintf: set va_end to finish va_list cpy (Sun He) - sds.c: Correct some comments (Sun He) - Update whatisdoing.sh (Serghei Iakovlev) - Include stropts only if __sun is defined. (antirez) - Fix implicit declaration of ioctl on Solaris (Jan-Erik Rediger) - Silence _BSD_SOURCE warnings in glibc 2.20 and forward (Johan Bergström) - Mark whatisdoing.sh as deprecated in top-comment. (antirez) - getting pid fixes (Serghei Iakovlev) - sparkline.c: AddSample skip Empty label (Sun He) - sparkline.c: mov label-ini into the AddSample Function (Sun He) - Only ignore sigpipe in interactive mode (Jan-Erik Rediger) - Simplify lua_cmsgpack macro and fix build on old Linux distros. (antirez)- redis requires sudo for the systemv-init script. As of openSUSE 13.2 sudo is not implicitly included in the dependency tree.- update to 2.8.18 * [FIX] Linenoise updated to be more VT100 compatible. (Salvatore Sanfilippo) * [FIX] A number of typos fixed inside comments. (Various authors) * [FIX] redis-cli no longer quits after long timeouts. (Matt Stancliff) * [FIX] Test framework improved to detect never terminating scripts, cleanup instances on crashes. (Salvatore Sanfilippo) * [FIX] PFCOUNT can be used on slaves now. (Salvatore Sanfilippo) * [FIX] ZSCAN no longer report very small scores as 0. (Matt Stancliff, Michael Grunder, Salvatore Sanfilippo) * [FIX] Don't show the ASCII logo if syslog is enabled. Redis is now an Enterprise Grade product. (Salvatore Sanfilippo) * [NEW] EXPERIMENTAL: Diskless replication, for more info check the doc at http://redis.io/topics/replication. (Salvatore Sanfilippo). * [NEW] Transparent Huge Pages detection and reporting in logs and LATENCY DOCTOR output. (Salvatore Sanfilippo) * [NEW] Many Lua scripting enhancements: Bitops API, cjson upgrade and tests, cmsgpack upgrade. (Matt Stancliff) * [NEW] Total and instantaneous Network bandwidth tracking in INFO. * [NEW] DEBUG POPULATE two args form implemented (old form still works). The second argument is the key prefix. Default is "key:" (Salvatore Sanfilippo) * [NEW] Check that tcp-backlog is matched by /proc/sys/net/core/somaxconn, and warn about it if not. (Salvatore Sanfilippo) for the rest see /usr/share/doc/packages/redis/00-RELEASENOTES- fix bashisms in pre script/bin/sh/bin/sh/bin/sh/bin/shibs-power9-17 1728028807 7.0.8-150500.3.12.17.0.87.0.8-150500.3.12.17.0.8-150500.3.12.1 redisredisdefault.conf.examplesentinel.conf.exampleredisredis-benchmarkredis-check-aofredis-check-rdbredis-cli00-redis.confredis-sentinel.targetredis-sentinel@.serviceredis.targetredis@.serviceredis-user.confredis.confrcredisredis-check-aofredis-check-rdbredis-sentinelredis-serverredis700-RELEASENOTESBUGSREADME.SUSEREADME.mdredis7COPYINGredisdefaultredis/etc/logrotate.d//etc//etc/redis//run//usr/bin//usr/lib/sysctl.d//usr/lib/systemd/system//usr/lib/sysusers.d//usr/lib/tmpfiles.d//usr/sbin//usr/share/doc/packages//usr/share/doc/packages/redis7//usr/share/licenses//usr/share/licenses/redis7//var/lib//var/lib/redis//var/log/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:35905/SUSE_SLE-15-SP5_Update/f76c38afaaa98ecbe2135c168cce3d88-redis7.SUSE_SLE-15-SP5_Updatedrpmxz5ppc64le-suse-linuxASCII textdirectoryELF 64-bit LSB shared object, 64-bit PowerPC or cisco 7500, version 1 (SYSV), dynamically linked, interpreter /lib64/ld64.so.2, BuildID[sha1]=eb988ec1c1b4d12dfb7ffde1e84514068b79d5a1, for GNU/Linux 3.10.0, strippedELF 64-bit LSB shared object, 64-bit PowerPC or cisco 7500, version 1 (SYSV), dynamically linked, interpreter /lib64/ld64.so.2, BuildID[sha1]=f37458d373a3dfb8ce4484a7f053f8df30a7c262, for GNU/Linux 3.10.0, strippedELF 64-bit LSB shared object, 64-bit PowerPC or cisco 7500, version 1 (SYSV), dynamically linked, interpreter /lib64/ld64.so.2, BuildID[sha1]=a37b81dbd2661efc3cbb7615520aee05219ccd7e, for GNU/Linux 3.10.0, strippedUTF-8 Unicode textASCII text, with very long lines RRR RRRR RRR R RR RRRRR RRRR RRR R RR RRPPRR RRRR RRRRRR R RRR RR 2K|eu=logrotateutf-850b9166391fd697a22249665aeacc7f4e5dfb98ce9256375e62bbae6c45eb9c2?@7zXZ !t/]"k%jx ^P)֚i.z{\.ک=rƎdzņJVxt'$bz'au'l!\F \y~ǟ^cl2"\wdw 2ԻUےy͠gxeV'~lbS|r⼮uo>HjpV!rX-.G.&~z?>e?[9N*S(6iZˀJSy[95@ *Ilr>~Z#U+b<ǎfu*·\~iͦ|Y2qMNk_ V 7MhMOXA?O, +j oLUS1 ' R-j*<>#T6FQ&ڦJbz,j#L+6e|Sb>@ ΀]Du*GRQu{49(! ~͂a ɓ2655 7$\n;AFs]@Nt]ÛVȶ{}͍EƄu,m(2/፻{k&ZZ;~}~ӯZS:cNkp\ $tJ=N1K*p3U{&M*M!_t%w{%H=lƉ+j6inWBZF= Z8ldiWEKuT1{(%Jh I O{lB*w>N Z$,|vm|fW@kڥ%n^'׆aLFIsHcDtj{/)xA63/6qeÚL|;) x`o$oU*ZyQP (T(eaG \І|)o*XRupSpH^P3.aŝ-+rl|bTnY2݃'ҥ@8~ owJk~wq< 4I*tO0K+*D5@(ѿGR8g]xLS莅?, Mo\.jf8]rz%OvY5|p-Yӹ.V3 M"@'JlGy02]̧ډKGjUF0T$.*yRzOXתbn&]GmMF0,<RRqAQ*h6wa5v1YL_qM`xCFF@˥$ W.L'̈́kU~ư,I|ՠ 'hfl4-IM7r\Vr Tw?'7nD kV>P|=:Q]u_?l;PD쏋l.BEjH %5}v T4crpc'>A*5*ytz/ z } Ie=R0ez}8)quh~$5,/9{zv^`| J]hiJ}nOǥzl5xlЮC{G,KJhǠDpi5|HT_G.qM~#tNjbbLGZ>z&:jBAҚ~Xӥ0w|%T dLO-#{2oF(,lAhSY 0DxvgbWך9/ϠPb-sKƣq=hCfyGhgP:aQʡHDĮ8+,a:Q,~nڢ|!<49b@*|<T[P -#ͪ 3!8^;S@vpsz? uMXL / ک!)\͚S Iz5S) øŭ8ue*kzXzyNS@z/'4; 4X&s?Q&8Au\9sFX?wI+{!nw]2۱,+Gsy%-B8N٘Z (αT10a6m'DVҖ3_Esүm1Y淶hkcA(:vp3/;h'/= ibOZ:xRr@:\p9zC~_:KO\Z0ô6{] AӾ [cXke5$,ZZYnOu [U$u@vA>@21 % u ˍV* sHƷ~kt;RPҶIm:w!V1{dvkk|3Y;O|)@m/x 1ZyKfa=q-\D))Q7߱lLJlT$y:ɄSMqvL,>N w.qSGKHWU T&ϸ화h,m룁 q*iGb.?P:=qw{LzopHp\;W F fd;#H2nfJYWs^e34*b-GC=$_̧ѭ(iU߿UGdHh悦Ae:~k9{`>;*s%i8qfiLb\znXfI-+BwsXƄD-Zs>z>r1P ӦOįcM/Fh7^t.)%Px+5J_W6ڡbe1Ƿ{۾߫<?†G` 쁔k~|2[{%wAg wpzTdQf)C8?($Յ>8 K`Κ &h;q1:|t M6Knf:rh] -W4/cwyeؗdE6M(_CɁAp5>A~# giV:?!"u\ :IS挣d-x.W^_ZYR}LVjd[zĪBݤؠW^ȯ/wf[@)b H}<ik_W'(E-|n#Ra5=JΒv66f  @Vv)׼4N_6|]´p!Dt1Jfr!rU.u)0 m (nܹ?dUM 80TO"KFF^F!}ewm_!^a>-ԼƼxR[Tpj"} e= sɯ-]^eFN<>\@,:ysԢ;b%b߬՛\Hii Q3,,~ mڣ̄HZTADf6 )]oC6%R,fcl`B0L`dZ*mYr aW鯾h1v[NϠb5r=̏Oȝ08 sA%勻C&B#(!G}PKee%Oz6aq sEB= j1)%bAcS9Sр3 L|kwA*:S%YcW9nzh/6bnRZXuN8/ :nY'_9ĵө?E\cślgyٮ.̯ "Q'</OY9nϿmW9پ@H. `v{Z eQTz< 25mW}>a!&Wo#Ec6͟ ^;kj7Fz}v,RU^i*[b BgS³=CVWMnZcpU4鞞%w4K(T9yMUV  o{"Nt~eH{hvu4vc5xs@6c|58mӏl3m#4宭k>^yuMRͭNsuF6wL/dk\D]JGRs{.KGR4]^hB;aV͡m3:C|!̗NIql&ޏXR%7yۈRiߘ)PY+, 2Qq r;(,$EI&KbjݺHSu>jOУp9ϋBQ'f1qmV7vC(b.E=[ޏ zvr K02R-xdYVQV2')=YD@37Fv@5:'-A۔K̔yLn&N 8P:KxƇ2~_S0ݽUlcf;z#&ģ[ C߭VZN&2qiNAA$^校Zƒ8w)vf ԏ4Ln^~jVspȇ(!D}Eϴ5h9f@6 -< ?]KHR ;3^cq hnzTX$}0]g%FF@M[ds jb.˰|B\39mt潉u;XRd\.@[w^{#h c)L^3ܬ\<'l=׹^&#|,"n!C>ɻ0;VBfoćfJ8]}r_r/5ϢCA.hJ2>к8yʚ[Z@̢DKȍ%ț 9(7?RDw+oXje쌵{D=>av?n{5޶$5Pou/$7WB3(5P1YB҇c4H'H CiԿQ/p08Eg2"wd u=" Y~{hݧ,u$aev=<_8 ߜS xo(h:H5@6хLWVϼJIwĖe"r!>@;&T%hǿrsfS_m3fKt=WeO~5-Q]Im;bК SeT@gqOyuS:%4xΗۋ!3yj5SSm0M *"4(@D&rzOC~I1i$C[X޴n ;3 g;dd:_o4*{Cq*'9~`MЬBB-<Z뽃$Q_Y},W꺞CVO=7ư)hwnmuߓB˝L.F^z1:.RWMeʫžl(8N~ԶÔ )U43uHdpCWڰؑc/<ыb>^NsBkάԉ);R9$kGfCu;R(ܭYyS1f2& fZOdž}NICM%s`O[C=ۛq# IQTdaŨ4ٹv7I@Wj- Bb?(ܲ.AqhkQ=yo p:9+hd&!7ZLkB;2ym˽ -(p."؋>NomVr:*_"lewppGC-ЭFRp:<ʷm}%h$Jál,VpH0F7jQR_BLLo_C+Ǖ86 "ghneKZL.:]m؈6U~1ՠpW;ismz Knp?*BC ?X-ꉉvE#*l~mq+{!k,y@N7Љ).|9*0e;j㴵%whyu4Z?et K q(+ͪ\_E'peE'==f#|/|'2XoхwY;@ i8ex3J{]DפIDVxUDChEbvc xũ04t_W0]:I&1d2Euxf;DF?<%kfxt&>cƛL&`{΍ :ArQedGHgb·}KΤt6#G.<.om`NT"HɲB~E `m}Q(BwS.?dM6Pͅ2l>NzXSl s/jOxL+tۃbp~8lo`GPF$Y>Do!"ң?d6WfÑa:9`.\جpcU?+۞7㨅zY>ynf]GT2kN<1F9L8Αt,7|siIe;8\L(Q(} !r`=hh' sW6j󼌯Sp{ݹ\ReP[^_`O}yd}A8l Ah}6Z/m+L24̳Y?dǃn/8|7<%s!Ք@ɽ} T#ڊ2 lyAZrwD*Q~SfOsY~tDJck&SR;ȉ_IX~!({)U~{_H6 Uc;F]j|V%bBRS4=Z׺mHvO=M+K9.+fW³YoΧ9gn=иدF}]=%N8\IqQLC֒tO: @n؟NdMgRBQǴcqyPLa)=AS>G׳ei=G W)\;X.W2f'E4Вo$iFbe[O%\J*ͬPS*%K0[GΉegW\k%9xq柱nл&FJ'2#1)^~iS+\& ZA WK>B,ă 琲`WGVI`2/ k!BPerŴxc(Q;O~_vP՚Wo[!R d4=ԗ lUbXcM\>Մ5WR%-,|(r ➸/@w#  IMr]a%4/rG浞wP?e(%jE_,ʍ  C ,y3!~.iBT%5e~jjU l b`soo$/mV,`=DK71RZjġ!J{blW_J|D5^mLâ2R[.$7,jw'_r<.kvNUN ̔^>]4 z j,kf>b+i+>Dq|N]PS\v:!e jX'8-uT"~ x8Ҡabp}%yW'%b*n6j d$} ɳ)FR5ۀiim4Ჰ2ѓ)pky@.%ƑI1y[I0[ЇU@XoCQ@J:DWb&&AJK5?wzZj.ۏ&%$a#Ӕ]~1ϨU~DK:t;C=+dyGas[^)$t1 f|\.wZh-l(m-< ~"T܅M8 39ݤqPO08&_l_@ʛۤ0fn3l(:6i/TV)nkpV닽/HnR]5Wup"EJݶKȯ" 07z>uF6q0IHwƃRg 5qXN8yszM+g wthbOj CO57wEZL&DXn0|/ w2tܥժC'c'WfQ$&AAvʑ19OTvaᱩCfj[?BMR׽br«+7쎯XSƠ9Bzi=gي^哑5_=is@ąSlZ =(*l"AeqY@P w?А7ma??됂nƄ)k=ԮiqP)~Sȸ)Ck.71#S_l`;+&6ng049=RgT*X) Xu] 3Εf?_%**ʨLOKNzeNZb1?R Ho6QL1iV/oOH6;ѮptmGFbzrv̈ t~U[(Z5UR6\'n>@ڡs)М# uq?fWGlF:u+gv)HTgO\:5JAsI7=]-'9Z1rqs&1I_N45MZLPs w넷- Xdyf> U"'l0r'L9P 5Kw&g_s br]m7#+Ĝ$uhi׃4Gނъ uqyBjAnc=3o(^\1AwK =%!ʖ^cbI[20t?ʦPg~`%#Hykik |8`%SQ5w+n^d>|鯶b~ {a[Pg>/1ͤ=.5΄b#g]ON&Z逭p =q#|rj/A]nhV3 =ĥ/wTl,FG0|y1F#HR*.lz ]3lI=~L-CC `hֺif÷, yD9T; Ybi(Gg)&*>ȌFßE a;[k!, rdT.IW( ,BjIWq[P-=4`F Q%,DАQl|ϡh ()ٻV6Fs?Ao02~"XI_>-IZIgD ]6˜#ծ{i n)Lަ*F #&+ted=v+\w^F-(}T2-vz=9^ħ 3vF$x0;Ļk:Q[o;laћf2mΧ+dkѰ QכBEK! lMuS(03F$;? ǃ[cv=hE~a yn0N,'! .Rl#ZwSIH=j٠0?™<N9)y#\EOFcn@?,jDIJ }Cܨ,q{IQs~47jް2y༞#a籭똉5oNo -#OAx^npB8oRy>װo3};#@êÄ-z%dϳK{Efd<' bn15Ymo8aKfA\EXkE<9lu80h8ӥƯdOCQA=DO4ɫ;!aBFgScH\)ȥe~FߵN%*}Yrֲ˰3N!l+j}I.VZr.v(HU`7=l UZIP% woٓ1NAH* Ʈ̋&bJ?r &|*v[D۶|Ťf@oa[3 x?PX_'3il-qQk/eD΅ͅێ6@WN㭜n47O8s7SB7T-J+Tr*Kmn5"hgQ9Yk`&N8eH"L p|i3 R^B MK5wYJB٥ox b~vU2/v3}|/a{5/PYZXK:_nwa{?&`W݄^V d3ү?,"Fb ?c0%VtoK::x+ߚw aHu5Qo5+,I#S5`_*CE= C|p;o82Q| SR+1#1jLL/CXEK,07Y f14C{U󗮧86ztT6}S]u?b < 8QB=2D9B}K^.ZJ0f%R5V5ظdR{EqXhEܸ&Mbdݱf< vܲmC^+?1v'ũ"U b`J v ̤h_gkYӱf ֐eWጽXf`I-\@訚0GЫCxc+Oeڦ0_ \{|sW3+FT9Vt+Py{pGQJkq9 Èz3_))d&H4rkNC n8S&@s>na՜oݏUOP XuGT es48pXr%?Z.M` ʵ@r/4v~&@" &|񺀣joST SYonOɔR, 4's):3Pe0,|'B!;z$ !;;pleZgXUtl+N "ԪշwvP N0M>jN$S 9 r6yoU/ )bؓ+$F7݌fDEs /E| ՄggvHIQ÷c[>bfZ\²?i8'L8CS+<ɩ/njBPCww.M(!}Cf+OG!CR UXD0gA \1P&cjfV/? *ʼnF6;{m`9S!] X$hIz+:Vs/SH`e--mgņ"ůMka$%PzT+c-$nhiL͂t%pJOFE49%˧te4>+zjd\+4\&O,y͎vQ.LiZoדIc޴R ӡ}7]<(6.+!SG$&)#\Pl^f'Pۅ,L&bBY'~#kåOgU)M$7>CWBc 82o&~$I56FNaeٽKDݓ!fhM_v{- QC@ܛ Km|8Itc8WGA^&-!yZye6;*:N2Ysm;Bű}rJh#InٴI!+kkrjF5NBq-X'W{L.:!?:c5hnE&`@Ąg>wjeǮꙖJ&<4dSkq oLgo]ha?W@m_ї(fBB@tP4mI(5Fc+(sq<7\0G[aɛ&&Kdk)]d@䥠]&jk ˁ^ pLLGC0V^Ha7E2{X(F:HilfO )*d-2d4^JaUd ĤQ=52fetݿyDd\ [F0s @!ymmn8 w]Yp(qHMt<+s՟w?21; d8"M*}/;:9kTm?XG"kZ@9vkKa~1E,}lhso81JQzyөGmu]BTԩ)Vf%+50Bbݯ.Gyʢʪ?{B8o]UBkzmR& 4G&}Q,!dYxpUP9}ŜɊ֒S$s$̛J@;҇ XM;x)3ݘ-s2Q>3A̮%6ʀ;lҨ2ΣZhq{惽@'bZyl:q5vr{z"'.q''CQx5'S"FS}M 7ԫ.h&"הԆ23ɓeh]̳5T|?0[zN`ۨAwuR0 ʷOUF'1#Jz?FbSl8@ssmpwo*:3kq ŰA5)]=ц9vmr4b\UNJz-.<~\ZI%$[}UV,prG9~cD'!X7jRRVbVڷf!d|&6xO53įA>[JƣM,_., SЬ+ D f mƳauqa k,鎀\[E8dtX5 W. GF6GV !q?}YʊXM&SGu|K5[r x#rtoboI^_]32 +H*IK謨pMj/9\6[H)0G0=~#&o J_:Egn'Y!N)6N[O^I{2 zEC!X1IҾ/ήSL;IȓwDLz/̟Q 6$5a,6mwgLQjsZ,ФC,r`C*r׷o a1?*? tx:ǻ81$?vVbyz@:18 {>KL"p9|L/XG pH/_ōJZ߹cgPvsğӽ |$φgkt"Τk`&0dCė+lZ6R!X)f"*A>%րjv: -(Yp =wأԂ#WS6_"Ctr]+Fr#(u9A #ɧ#W$4PI\YH_A#q%N3Hgj?c~ fԆuW&$'K\6 b,kئo!Pa y7dG[<x/+pêp#fcCqfuF 1;gg)|F^FbJ;K~ůMQJmFI*>0R"캃f@W 1ȯN֣>L|oQ'}wzٸ6MU2#c W01A+EuƕXp O2{)rTP`g `,梶V92֞k9j68A;FwY]zg-/lAA^v 9yt IVEH1G0ViWro& E,S#h틷֣ǷsWOh{/!ւE,c5wz܌A S_e90PпҮ!S SPuvƶ0A@& JY>`W7n6,#J3LAMm;e:NyfrDcml'NUR)5i&Op6@ UlՈB,]m!^V 0!)D:s@^DnZAY8oA^u&A̱B@ޥ+'8MɁ靉*W٤{СUB#t8ƩZ$ϨoA:,[Cy%3nXgw0e|Ż7>_]7s?/M_;~eBGVѐ:/~0,icX~2͜__\OC T[;/ȁ7seYY^ꬍ %X밦{X<'La0:i#ϞcCƊvs?}YoGU[ % ~9\ځ7 @GE?2A)Yync8MpBӝؖ^pM]WF/%;})PD+؆b/@$ HLW@HkG\y< 5q&yIYA=9в:@έ< ͔7? ttD 5%E6yhqtKh4̾ui j؞(YĒN y`ZFiX Cً%o ep.У7ʻ3E%ΛlAF)y%}Rbt۬~t!J7!l#kyFZ5nVy%,hfr\N|co6-C\7_6w1!%R3AE'b<( VYG:D,x[D[]8r (V5F2 1r >*4bu$,M΃ r:⁸A` wS))2)@)sBgś` Re[tRPT5zXy;DoT!Bh . 2`\˩3(ll7_K^ / E/բ3K(yH)XLm}ե&*nUi6|s0;R*94W [Ȍň}{d>~Hh5@}ƹڃłzHCqQT4Vh?R}{yy:P ɩH2=Fӝ#è@ZmfV5W~,=#$kfrZƗ~ؐݴ?\S3ĠfNM\_1aDR5\\ -2=aRT]uq`ζVсZizoDzTELs1E]<*qx`twaHpá546e_IGP֖g> q`7jl/GHArS_JwyxxMޮ'("@XŔ/Mh?5zULh!2+/r.Z#ARC*uțHEmҍM?:hw&~7fgnR]hM?+ rzdWǯyzP?nz'_X/ un.vwr$Br|B8Dݼq!6in4&dE6KmzmgEE_ٞe"GlFVC㽟I!swQ~X^pH;Kٽ,i#PX'}-t?B,yJB\@h]k"jr~8rwr9l-Ƶ Ac5 ?Z*q v[VUF jU <hK>bj 8?"Oge.0\̯EtTz2A @)G fpewA:k q؍EXolFL:B/X~-7>|@~CƜVfCtkӐ?Su媂̙T _1)(^KN:CYf];="TT%-=J;09 o$HCăTq|.i?3jRtLc7 $xP/qs쉸Ql||T20; __2-{ZmT"}& uX=:KծT$_0^~.:8EI/D+PP,Cm>{iaYpYh[n~'hԘn`"hC ;?:UyV%ֆQyMT1887o nZĉ놲ޕT.~T\RyR3fxeb:~Ƣ/ #FZ!bO#~zGZ?uF~KU1{DX)`S8$ [ o\^T{uʐBz])3#jWs)xk ƴԱ6P޽Ѿ5 I^?>}pLPAvwnMfRR"O%щnƒlV z|EpINyBB%h,"#z(]m >kauNnrhA9H0>aOO<'' B$5Q@C>p#HYIvE;7{ ni5Dwγy" NN 8sW1IdMk|rU "/: d41F?9σ lSm@k6KDknksXf'mNK-STҭݏUy;8^"D(ExHƤjC ئx!ȟM5jl3J@}-aDy!a!3_Rv/T*uQ|v;e=%ZlU w(avDŽ6_' C,CWM,} :Dp 6%8J}/K$Ңs{c K.n%%:PB%$.eHo/ }ٍg9VpG81k)ixw:'nC.s` sፆ=?sVJ;еs >Om{KGFv\FIj3mĆc%Cd EP-|ٽDU/w&+.o]%ŷ5U u6 "L+`N>4h'Dkmk;`(*VNxnh)K5XBf!b~N-[u{2G𖟬ZźRPU0t_f}Q 5ލ{iLq:3fusJYrBP'omS5YBׯS[%t`[(W?vlc7)PppgC>?%% ,;sDžNСķnSz0ꖿJM%CꯦIpFsIv<%ыxϯ\HJptyPFF޴o]WAXTi.ҹ^=Qf(fa/,hV+nX݊/Tю7 YqFa]mG(D?+{,եWp${8QF {{VUXzI,5O18ςt^]*A^;% {p`+Y[S?iݤ_>@lO"C + b[,|uP!ttXI8mD$1wΜ<.~!4*ȹk)%LIp..#"T ^BvE#q:练lf0oWys $-F!=/UyX$qR*=luU 1M7 )&y΋O9 &DolK#Ǫt"J,) a[⏥[S"@)ſPa:Qo|) !%MR\)DQL eu~됨澋U b.D6zl3PY yz6@ MdeXzCc@"O]ffi=>.'7yDڒD?34* gvҵI~8쁐 ɮӁćx $f$Ax:&xT9ni%%hO=U>|P3[ ]ȍ6-|R'VU%ﯨAUZ@UN~ 6Y ERJ:v7_iRI:}d208@>U|&2ۑ܀ +`l\xAuҝ;/IǦm VfGF@\q{ӎxRiяhK+48 a՝ 9:Y?7hx$hW\9V({(wnx~!" j" T+oy<JY6N KnzۋabD$ ۜ Ԗƛm*%GCp܄/dmC+H_bxǖf eP @BR4eC@ Rr:f* f}ǨL|n-/.1kR+pqhOu,LY$Q9GnîE"mIMQ^F%LmHc: PMxQrox qeÍ{o1(Z(y6(`#k1~YVucK6jY\ܷOf)C (=tɱ*mӌӎᢚcs.ScQƔ4A6$ 0UGxb\먠{dޕ;jecoɞ7{5[Q @?dlnM8E@f#|]U~6j\^oWc,M/͝hu\L7}PeL!K*" Dv.$:OM#&础-sV°7Xrf "Ct6dkP;:b'r=c*R>rN ]n2S^ߊxmg-:(A2F5VE{ڰAgB[ga_\FVaCg jJ-_bsb<18ӳ{BKoS7ژxfJᕞ&HBF Mi2D_"o˺M }UjqrQ2Q04(m<ֆ9~׺Vw78tRVvd~m0f-Nq()vleϕ(]չ@Lwz賌dːdW=BEr)NũU+נa/.(uj{ƤX?twW" 7ajPh3D0ͪQ؄'H`炶ŷ=L/Ze`o١dl/cF$Uu +$AZþO[+GOEG9/l{a(uP86Ѡ,]\-d7ALݙu#]F V^"#I,l\l:5-?ڄy O}8f1?-,I*t2]-F923Ȼ3fXkt*lZS [ij'KweSJ ϧDՍ~1O[B =@%OHR'íaxJdS.)6?دκQÖzpt\Ӯ2x>ruB~yRA%n!Tl%k8aNo<@;4!N=K{l2Idmx/0` /h QED|gJAHD_ \ШQs@4YO~O/62, GO vo\o){7mIRcPuu3m"VJ;˫-ӆ®V@B0EYlGc ȸp̛-Dny_ʖq4X$kV֞DN7TAqΓZKf1wE0*QT )2Wh ;LKjָ= MXV Ty<=ь[}sCZc]NׁvA-nZr U iDs-:?If*CouOBU{r6Wb׉o-Oj;i$&?W/$ :s+2wo`Qgq0sEzĩw?g9~N?. uTd|ohq;Y|p|כֿN_BYFBF/T"~O+]qUe^mbyřzaQ.*amW  l@Mҷ9Ȇ 1h%"QNرIVF6Iſc/P[[}pIߡxL,M:}GlA߽._u dw'py*+us {av Km`rA)kX[cֳ`(Hώ%-*@d$c)S͌"a\볶ggf2kv ~8S昡ޔ3/fd5׻;#dHׅV2/|ǩoBPh`NX0}wAt+#*7 ,-VҲhŌsJgl\-E!Öd5n '9g)hl@"b}Vx`?Q7Ɠ)zӱO IIGdx;]؜J~^v&[D'B fi' j=gE§Qݥe;vN_/&4/i7]:$ti dzC*(P/G$Di=:nцM^Ļ$ r56܎=;ONtu_Z[M~'j|?GSnQb(;Lc΍KZM<ȲC5u394ފI qD!v ǦJzcCI8w!x? A|nc@N ٠[eܬ3&E#3QD<=e*m{L \i*~$$B F;͘+Di o!ǗuM :UAټi7=O/2%X),;#l!vVa=ot{!r!WaA IKllC)wڥynR.Їū0޳R]O-1/>z}Po筕h~`JZ~#q~< GC|!nX/}Nңbbz9 ZJ?w =dOD]v}HҦ 5"RNqpE1P' n'D!) (4bܫvyَ5+>H[s6%b^[J1אp!#Mtc / ylؚn7Cx';Ԉ.W|5Oسr4kLG)Ub u)~ TEeVa~CPRE `[9RBKOJ|$C:<9i5APM'4ϳQVz!{fIS0٨uK OAOHZfvPj#t@жK<ĕʑ$(즦[i/l<' [/mR%#x$<_ϞZe%ߏqƦT2SQ>![dVS!Pu J\@w1%%Ĉ*\r:ظa>5 rf)/!8ĝgZ,8)B(dw?Yz)h$BNx{y .6 >3${Lma,EOps~qRy?j-aB`?Ri:e끥[:e./kiT Ưr RL:a$;WD h`YB n pUoPZ@7m MAԟNJ#P`整UH9)eɡ_!su, ƈ/,o-8žYc3=ssfN{8Hocd)W4f֖lbRHW;n~?S9Uh*щ}N؄BS<$[&|5h7ϟf {An# o[[Šsꤙt|Ap!sZ T1JZWsU|OiQ897D<3 ^ZkQT@+FXԼkjtfBk1V 雎ZT`0<^7Sbaɓ%h˜7LyO4j4Ltr=_yhoPAC[fv5ʄN%Htxx;kS Z:X mG#vtA+~p|3" s`%](ث.1~|gj4ү\oo_̒o>ISk%[Y!qӳ*R>UH\VoA˿- dmsRӯ36"^i1K{Eh 觊r@[,& h5m]mپݻqܒ8vlC"dY; 7pkj\_quMCi2~`e> oϓD'9sSB]Jj3>Sg^ tRɼM3yW_\"{FE+IXMh9}UњBKvh< ;Gqe9oykW;e:16k V؍\)"]GY(QU.7 *6>· &An;-%׃I5wK˔61l4g4`$׉m+&Cq 쭹Jo7kKFjR ZH8U]HKVbDR_RڑS'#1tJq @ eMBab#]($:LV%m%Fg?Rx;2.ɯ5`&]y uI!'x^O -]fpf`@ }w2O>#ec xBKt6v^uI.:dW_iOcc~ך"*bG{>ƶ|H&ٶgdM4gv8@HUk)dfIҷw~N3;seCE(Kpg8*R=t=fLmi$Gb(i$-Ϳ?N_ L/ƣuoڞK1Q~X&T]6OotknTaw6v#Gq%-i~q((qU7$v${!#>g|8*AD ּnƎ,MG{yD9#Z^8%b@Mkw"I>\TBqyս)S/bq>V^ǥm4!x "x+xe!OASAfhkQHAݏI8l]FA/ɑB| JL5F36,\8$osbENbFRcuzMl+t:~}8:?Q"1څ7SBE3NT iް,R=, .IގRUKB09G\G4v"xqĪaJD#հ~%σ2=l‰1U>KaRLznb,C OC{|5%L@cG&|rF@f/gzαf/0YeWL0`~N; iyzf(NX\LyAwY)Cۯr le+84eN)ʾ7~xo#}g?d4-ʳƉlCV9LY&pSڈiL+S8/QtEvcǾ.eй6lOAm:;eNH/VhUy5Gr(@\ἿI e@BUP3`^[#G bMr\~+XjdMdr[!0M=J 7Y|<bĽ{a 9(&R+圄 &vA+22'9ڦA|bg?qa937zCxh }–m]1hkLL=˕h=;uN X8)}r5bW=JeI|5ȟuݕ (TUv 0/fk*].ЂDPZcSl GIvdxf vՌeS$Vo]w!+U ?&xeqE0/p z*R_U/f2] ؃(X4_(jz[vA^Kd+ѵ/>\p4n:QɅJ-"/zc1 r9R4:,S_T@ *<#Фzz6k? c7^,{ íKZEi->$w ]6 %<꩘@3 gK`ױDIk00G [1yHZ\aXX͌ G8PB/>ݭR#xٞ;뵌MVc_MEQwo$fZ}.o:vhFq}_c ľ[{`NW? -I:c;k` CSM6v?6~d 5@^[$NH>r9Wg(4 , 0,upyTD$Miy>jXm9$؂/nSd:36}}7͹!h2]+WKQ 0%肗 o6z8I&T/]=X52C/%6q\=YRad)pR`L1 Aw:~~Hrϻ9hM$0Eu~ƴMK@{?Yz`E$Y0&qO9Bk !X5"2t.%A2K.,1(HI/ڻJpb0FC?Db̼ېkvկT6WSk޹r_1l¶8Y _M0M<o"$+ UzQ!Ċ疒7|-VI5>96 yIoW4}dOq{H U "q矩 )2WҾD.5e$,sLdTڰ4pS_jd˃?z.bw>Dޔmgp{`IX_4fIV`NK싩Th˦ݾT1.B9. b|o)}Ah]ԴGaB-gJ5lw9*7VUr?,MpK(/2ظNdl?Ƅ\0M%Yk(ݤyh~'$wBJ$XD/1pL,A{fdZJQi󡠱ˡ/v3kI3B!7$V^e*4Md!˨6{t2{昐i6/oܒFgf4W+& ߵ  jGG+hl F4!7*|먓ik nE{~reйѭJLdB@6{{5i*ޤ~/Y>p7,jEe<тR.1xa]`?5kX`7~ɚYY[gM`=M?V_kٷ2!4A4Mg|D;יAl&qnzݹ㛢2:xJ8+ĵw1R9 QZUrc ~/JwxPow2ǾnK w΢+'K.Ju^.fOIz?NH'ҸĥQ׷^⒑Gjqva~.\'jMcIMBr=Y0F—5.\AğǪz avsVh՜FE,=d>壷ZmXTqy{-/ 57K_ 3zRN1̄%co;mR&ބR09uu Km_ԯ]wM$5:k*]{6ze\ ][2|rЁ:>YK"Ϫ9=``]5d@0K˵->ȍVW,rufoQupݰszR] DZFۣN\mx]bJdUs~3Dg@(yI@NY:'eJfMq@""~ ^pFI"|>bacTL@$ fD;ʋSt4iʸw{ ε[l5He`Tu|.Ύk-܌Aayc d3=2e&ZqhgA4Sy)A p@TiOgsYozZ,+~B3$lVCW^i7׆GnԳy_CSJ?Ԗ+g܉bk#D\Uw+UTry1>"}iƥ!TNɩ`hJ"wuZ o}Kq$s Rq6Ѝ5:TϘ́RHڙ*Q.𢋓[DmG:.H5UᛣF:B5KuP/pl|a?*(ON//-=8%)gTeƷ݈#[671~G?bUz٧tɓ>~j^ȿ&YY rZ|LV\k'#g# ߃m>PV! C_6Ӂ]j<p,+((Vn,:b7UX#$x68.x!Ald`Hmmv(b=Ce9?'G`rJ8^z:Ra"9\.!iX^;BR{5M-x;6O qw 9UP4\z=d_a|dQɵ +zYMxXгk8xc:'QL6yγkz*|ɓ 'aK NXZЇD)ڗ_},FM.2gl3\wZg4|TJ_NPlɸI,Ⱦ+W%Į`eqd'1=\5nU,Z{:_zu&;HY_u}<_@2*jd0@%8Z?3V` .Q9?2p1;GXx )XCj *8_ *Yi%w.+yol`m{v(Y7>ƈ閺?ҟAw%vª`J D/+t(u$Z73YQ|(ş ON8p2Q'ΎmGz#w΅l.U5H2sPc`r5)_ͲI !=]Cz48`nnQ+x*Xٻك %Ξo# V~\^ $p!S%_7[9H: KQ;|%:]S̮apM~E4C+de&jæabX&$ ōˋՏZaf\$Mo=`$ek,w- _'hٲԾrC; *J(T1ƋD*~t($p!Ї;\*~{^/,ח^9Ooъ#'Q!o7Y`D&_{B ſ33l.yÈ1D -Es. fAjEdD!~±țʀ*؟-H6f 9ɓMUCEbX`iɯ7P1 FWz[Hu !8BM+"E-Âa:ezx({X3ʶ_0awv_ěNPSB]KBZObKP/fMRX!AjesPJ?aPrF qpvHt/qo C`w+1D/%#tH RK9S򗞞Վhϊ9gЗ/VZCByuy%I4VFiz8@ ś S5| >7nݚ~ fow42I-?Tc XMsg '-?PW6u'˨ =} 4z]#^`0&0 ʋU7ܜϹ#C3 3G2['`)wh ,Y=IPda1!Dm`r뒉m>dqqrȞ -G탷r +G#4k\i.>dZ_B6 V| adžqS,&ʉ-6  D5/⠣#>fQ"81xX_*ۇg$ Ao3$^% m":}QNI3sqb|r+4P{* k@!Iw4hf[BB<5/aU~l/ש_xq)6Y\qsP.puWy֪b5\ڮM -odwUR=gꞨk1[ , >//j ᾢB@J;NmeTZc VqJ49Z$ɿzC#^lL C:7Jo7Lߑ-y=Cf>y7bF)(m ? +I53԰A6IoyD$bk݄coiӲC'0K ǕRI"# @X:~nrj2ۖ[Ѩ~ ]3KuA! |f7T;߅. 0RDt]/9e'I\oCΉzNFa& }䊳eQɤq 5p3 ే6W =!Ao( $ܪߏ)"B;]/q7z҆JY;gFhD(lO76Dl}ʘ{Tսaf2JufdzOӉQ| %"oVJie-8`ˆdaN#bou ـ(.7xuwcr"gW:`a{rI:*ݸ݇BqWJ9ޑbBu;r3õ-;i3"Ó=U(yPٺޣ1nK~12%\/ ?2!Ngf,u쏾>X&uzQLA~%wf^[k;6qGV܊7TPIFQ*>F=0t1. IIq;X$yzlo{83͇3}\c vtXcE|.'sx߭$:-\,1'Z-'f"1֜Os1vc> Lð\a)>q7BC eNw5=}mw+< 8jw)`c{$zR4Y38X¨QJܰk&r4DF;qQ B?Y}!7w}J\=Fehۛ'/8a: {z<6m"=.d- jLR@ ahE~#g ۷Rɡdpƹ8@{pI*Bh;,vmwA ׂ\kLK5I9שHxibaZǽy{l ՝RU\79Ջq2v~\JX~YH1z`R`Lزćb/ !Tꩣ0:H,za#TA?h".iŭkr}GQ]0['=h> %mP@gO${,={/Uv~mo 儾SiyCI3ѦݕOeI?4oL=ݜM5B9~-bFEEd%pܯ0fX~gbtUc s8w"`y{S͈9cXaŠ|h{׊}oo 053ZJ`|Kb]gx5#qa~Zئ{+l>MT9I!})A[;<0bDU?UlM!P9+8|E_45yeXRނPz;!BeVh+YZ~H#s7{Nꂚ5Gݰ#p|4jR7jQ0\iUIH# 30g.|GOoɩYHsE@R\U5O^d!FDgzhi.{ $Bw*8U鑳'ǼԄvk($;F]F61,}>;Q=X埩j;cԐ.ly-Jnv_z֎u{l~$~. bQfnAnGiPxojp)k~oV6g4o87N0>MŶ |]F~ '?rvpd]k4xJFbUr{?^V8[v,r9iPY!.sɵA|cdE0>2Va8T.)(1;vh lPrcڦjY.6J@H}lDr?֜"cbobw_#3J3ȓ%,Ü $iulh2`v98\g}ͫF:FSXPSѵ>VO!H!J댹ۈi$E1 i[/qma@|w\bK4ɾ/ͪ!HogWroGBX94F=>﬉T;U<pޮ;KGR0+ok?ٜrq7Aˊ,fH ĜG,>P\Қ +ւŹ`~yZdN1`X{~g6bIptJwi|5Y!~gQXص_p_y%q Pݍܭr⎂ll*E 5e݅L;&Zu ; 5$)y%@A I܍ \;Qn&Isu/Ś"v{imR}^yTW e~JϚHH̐>t;3 ӲVW>. ݻl>~Šýcs#‚+-k݇[h5D7gLt.`:XT%`I֟~52*9ϑ޹`i5'RcV]|HA5ώ q m,XΆcV=|+>²AM_\_hst=ސ-^yM_!iG>1m ݽi;?xyFٮmTb Hn,+ }i1WmD0*&Nn}Ma}֟eo*php1$2IyQOdPLki7z[+=|>A0 Tcuᑫ|p6nPd4h-sl{Ѭɋ Du:L$Eҟ}j<]vڟ?NX5 M[;Ni;72 Ť g5՗Qgijoo7FGv3[Jo_)W102j)Q>B7QTkB"hGVx,nkPubfvޣLf~C*Jr-҅Sfj.FV A8wbT̊`y%j*γSELVON%x=>o~±e@u2 SEtaimXX;>/Eޭ? K;c%6Q;( .6\/߈A^cP 3Y໲hRĆ-M]V˵8";t4 Ȣ@WiBu+)IMQzH j':= ? ()B5 o[D{:×@!1!_Jҗ }qX7ke}3/fbP^ y9H;i!<Iїg"mZBfO ۏ*6?f+|DO'Oj'uTۨa|#+-Z'ծ<${3` ݳ4roQ mߘ@V#?@QLDK׎8feEc`8OVQGZ:q'xhʝ%Q*_E(?BqtdOkr`Oi5l&սDYFUL`2ʞ-H!5jϋm:P|]p3rx/(Q8Ž|Ԃ !cdKaڼ)4BNE=/`< Cg-q(ޛʦh,"u`xy^ZV3xS+x[$@;yw=.WaOA]̔j QR! MJlX?e1B(#K({3 ri.LQ>nUk_Ǻ:3qT f3\䵈tlw8tS!ТR)zuJپގ q3ȷe9G^pl)xŏ 68;\%Ρ #4m߼W LAHj]ّ@rVQtV:HXI;1ij?ooD!ztad+*'-%qydW(["Y6\ow#`ךPƼx{ᙑ}5 ]ISs4 =to~ZK &X@y&f`Aӫ7BZn : 2ޮ;MY< AA=_x7e!}@~¥/c x̤^=\=DF8Ցp/ CFUd!۞4SȽܦ /dF"I1fC m!7>{u5A ؅&̐N@nvKqzg`ɽ) rNx~׊ f T҉x~rDd0wc]ZIpFc{]neE3OEҮMb$CYܕsY2ڮp+rtʊH44U4{XniL -1a`32E*ª~"Gtָ vՀ_''r9oyFBaHKS|v(G^ ID*jpQcM=݌2}oN޲qMN7q (~b߬M؃A3"ȓy x5ӭI1=v€gYtu lYK뱶W2D+ZPR6 D-8-I֢%ym:٭8PuI"oKIMZL$<xCsTY%\HO /oQ^| CقpC}S}x"0HuAe*}:h*=K(La*UQ! {bmR e.WZSSCQ&q! vm^ܽm:@ DLE> Ǖ>(xThcO|(s ^Mټ" ~Ks'N[;+;?$*t5<>vZoW mZB %eb%$+ekVf,ebY`*ػHǤzSsi[BW5N+0?:Qe{{oxf#Q} ;/zć K"BRZbZ @KN?k ]Lm-~x. ˩YqyZt m5ɬĻý[ގ8!% E u 4)E ޡ.5U A7GsOi#U]Q` uOe` VN/@i{:j7`RPZ3 a'!5 ^Q/ҸtŐq=h<* yFOd9{]rE 2Rt[+_ɩ+8桘Y{uIeƊd2Bg'C?IĥphSa3u@^bWJ.w} J ̓z"~V ˌ*d8h}|W,MUmdw%KDWzeX`av~VX (ưjgɾU>I9_>FCo "F'*ù,vrw 0YhQ=bt3@I΀ JĉY$śl8{v`{E.lϟ j22EL<.q] ΢(6Xgq6D,߫O _?=0JhٕӄgC JsԎ3csYldSSѫ9e7EzZ %~zH33h5h9o̽s92)7oB.ˠ6~t-xgֲͤ$Q\Yg{ nmR JJr0R Hr S,4tR Ոq)1U{e*ѥ+DN$b1+ݷ4Ǐr;lǾb?3p0$ܤq2sCaVBvgD1񇽪EƊyC.'vC,S<+L];~:2h#>P~@,ޕ'aw h61+j`dTK]tщF+mO+ͮ{#VQ3; ]NwvWQ VS &ȊVf<5`_BNm5Ԧ)5{^Թ;s0*h'$DtU(iTrqJuN~UqMM/yEec}99IyqsnoVYch6㴜bj'1'Uט.f_OS:;@;w*qOQ~UQxd X8ͨ tB 3MP&@;Wl'V/uf.K(y:T5޾>LA礌iU:* ኈ}⬍7!݅i9D* FsL"Bhxΰ;L fwDG ᡯ sV K3.t c^#`[ 3 ʴ/DWRc89rPl"P +! 2BEߕY(gM,!DEBki, IxDLL 5}ġ@< @wQ2FcC>bHgIYŠ]I.; 8bsRLc sCg8 ܡߢFA<ag۹/OŔ 젾.;Ko4h>kL`{'U(hWVtyC&+ Փ[-\_3)4IH7?x)%bW>#ͼћؓrF߰( `:OhYa^#HA@l$\"XЎZ5b9{[Cr OgCj7o,4o;Kw7؇m\gv&\Fz5 #[WtBuI7P ˆ,cy4<-Ȳg\9j)SlD@תWPq*`] tzFC%ĸI>ͼSDS SK)vkơëdfԮζ?E:pL?>Hٌ9͉nؼVR5:k߭CgˣȢq-kՎ 9ӯvFI|g93l(~*j@8+:1 ٚ ~ wo yQ1u͗Ҹꟻfw:$;I`ZBsxs)&VrN-B%Yh<jsCiS:WQ\GobIAce:ː"Gt]Fr' f;rH̯S1=c:@A**DI=U!` ZpAk!̆ek T|GyW[0" ІP͢!eVg{+]R=%eϜZ/]XۋW$ =0 [#ݔq+}NDxAϒ/s! :-_r0ܭѠ{:i{q,D,A yG^f[4FTP318XVVoU92,[Pi(o" `G0);0;a>DalU(dU,Ij@!]#ѝAzDC:1Rr?è'X^Obcҋ|n#!F7z"5 )!L%",vA^iB`M Ґ٧ͿZ-RG@n_ jj?F11$!ɱ5;]郬}E0ThǡkӤ1f2VCJKL`\C '\wWDaz2s7wHrPDT lD#;ys|"tD˧$F)W⵱aDn`iMݟ\զ/8+482]T=}( si8*rn$!]Pv&e5SaMDB)yڲLgsqO;ߓlUwuB'!_܈5@\dtnlT0'/s`өZi 3%S曛@Tk@)OXO e"4GT0fa0^"[ő-X2!.Vam'2Mޠ'p,|kjbK0Seżwi|Zuk7c>kϪRv]~*c!b?t*4md;Wx!mP Tb3%;.*&HD !P䡤b*Epޜ7̀ޞ5&Mӏ oCUtZkg[膷F'*>0CW#B}b󺝇:>oeɞlэQ>o\bwppla ބm.QhcؿzpIt t#GUǦ}cPo"4ձ"<-F\tAZft/2qzT 4u ֲQO ѺKk̾q@;7= #dO|̳gv#J=%.fQx0=2 " #dOȴN[St>Ȓu0{tiɧmG:K7J0G:pά1,(K_]k~ziՐWC=ؤÃQ&/`GmKP,IllTz &FЯwI>Jmʮ<j;ʭB֠*WG383d$ y2iQ3/.^ǡ-"-hOqqӒ0C*d.M=u7f=`<5 мQK`ݸo}sJ~Y@T3H% &PKd́ HNK>_hL\)wMn@Cb]i$c,0?"[1E(JiaVNFhث8V׍tf3&)>tbvS#͔gg Lӆ?~}MtZTǓrU}늂 hAvP>C¦ ˋg꤇-jXG{D$NķR6))[|w+; xun=Lf&Id?]$fg)=Xv a ٬BTD+v,naDf-&j.Hʣ*1.I7"b{ 0v5?.(R;M#юit=%}fAQ}@zؠ}–IA&>׋s SbxȖd%2/أz7c@e7vza^W<-e_Ǿu~E"}Q:UE4xlj6AbpiI;zF=K<:oWXZfAwZ߁?#ɬĠSH ܭ:{1ܤe3*(4X2Z_ F=ug6}\0ū"JT@njID,FC yWwǫBLY-hlZ:%w*豅42u}$viSJ㈈hV_hofBk5C?)).)8toU\5ik`"8Ёc8w%8hޡ]w_3&Bo"꬚F)gMn+rݧy iz7{#rOf9~{苪4N͗ՋVcI_jRgy RUĪMbNzoEP/5LB&)fjֆNE[95.v#Y۱]d}8-EP$ X=\]XA_[$.yRc\l UJ3.`Ū^(+*2ن641^2p\{a!:ULwK;!)a &7\' l%C;^8+Sl(s?\8h~Na;JXbH?-)N$F7:sw4ng`DŪ*ئMzM<6:_jiWr_c ۹d#T5#v68)Ɛ~ /6,5=?p)$Aٕt; 8NdV*HbfHvу`τ5I͸LzQ00-Vq=>ҼY3L ԋQ➼\.ަG{Gdz >aB5!`_#N0j+( %TIҪWCd`Dm!L>et2ϬŔ9e[n̖ûⱧ RDzZ`X)PƟtm* ];"=3pXdW; d:%k;_ $ ٙtISj,9AeX& /x|ؒp[kH$=XNk˩ߺd>lUfx.*%^ N&o?GH %i˥՝7>+v5['j0g t(V@h'%D8  -$gH!`drO4^sj` ZCh/N}iO.zRz =V"o9>KѤ^ PDRybd8QJ o::x{H |&37<<ҩ5jTÜ PO*z7z햫 5)K!.ImM8پ ~W6q7&BiR?UE+q "ߌbW,Ӝח-}m2D8狢}_[*a\+/L$ U6Xnt/4,ixx|)}jM캌Lq>6 =e_j2^a4Ct8Mѩ{mpLr!(pxRK'_ahe=\ޡcm'P 3qWJg #*= 'y2!9mK-rcHp"Oa3Asߏ*i_3*Xkʓ<YsPx9:duI{AN0&[9Nj41!tGzVjt]rk"#Uju%򵳄Q:F!r:Z,d쉑iK@5[*L;9:a 3XFqwѣqt;&8Ф1Dƺ($vTβ:kb_+XaTI<[Q' ν|%HԫU@XbAUӻzt Ϸ6΁ӞD%m=b)m)VR 8eI/),zr? #!#0Wjwʋ׋ErӋ8-및+? 8e܃eϑP.)dq0c]c#ޛUHK&| -塢菗phv]a#Yy_N e"0OGny6E(6 W@z$Ŭ"\+KO"BIWMJG @">keASԵq@XG?˛z]N["3kui38>LCkᘎyЎq"ZE6C2BIe/.N=c(lΚK/<# $/=dD#_8Js[jc۴FMxW̑Χ%[k3ka&38(a5!y&9dW1K`$VjF[Vɓ#M雺1f,孌BVHhh99EsTwT~87h K!klpTRr=y'+dOa1(ҫc۫W\[R W1 AM\gb~Z.@ΰPuEIe*(jr#_ȋxjAf떼>[/KI/6UNOGsڝk*Ƙzm IyϚ_oZ+4h~I"Nܘ禀 @sďM xT1S KURIPH[^w9)fyinpieRbK V"h ƦRXK?t{7G$II8v%-ʋp6S%m5jԥcO}IEV@)l z.zˀ(tlB%:ivJ+\0x_? 9JwRƒMǦk)&-lق-0lC9#g=~ަ?ctҶ[JV(Ɋk|50^,[K:1$Wrz|66 |EU&un 79BH1`ZkQB$Kd\/=ԩ2U؉$k;`IeN=^liPXcfm!S&sᯯ۰G-뎦 < ez>zzI9bDZ=`;f;z3OG7PDW?XEXTt8BR,BvM*E~>t@Қ((Ia ]D2߂k켛l2~' |ZywHaF7yr `BGgxR1r]&H^Ɖ<,ed[=t.޴bK&@1,1ΉBDqe@xmCtfKsYΐ/s y$ Y:$45bfb Iu*>ꑸLtRՋt0aW^Gyf9} 0G}퍵ȧ,HhZ̤Uj)YTɖhA<ɖdW^H"a.`aQLѪUJ< u@nѝda޳JPm~wUGѵnZLb.„FWcjXQW_|H;w#fG@S`N{9|QE' r3OHp%z\a<> ISKb_$\Ja> Vc-Yf~XfAOeR"W3&Kwen^^%\Jx#dM稣^{,qRIf IC:?ѰO"Ȁ,+\ύn|޳DgišA^aT1͠yFc3O*> IVokէ'1"_T]v+;1]I[V&T %  _qhٻ.Amڨn=Hl ;m2=r{|>u3ڋ1&`˙ESt&@ab*#ngRe0nv9n;_OތCe:5ޓu_ `y Jz@ |*β=gXkv[ڝ^~ 4,9"6AhLhW1: ei$oǏ6u'ʷDW;G zlH1l9Qq |ۚlH9wY^nTʐ>V}$d M@;ƓGL>BdxαDEU 3}b$oe%A X} Lfl $ OcLmUg}}[ÍX g h,Z?`qmíFmX̞s^$HIݕa C0'XM[ޜ 7[pK|^Gmy*]3m\ kUTaJުg˜#}cIF& Kj^pYr[r H݄sCQ\߿"yC6!|b[Si҉ /.ɩjqÁ܇3 <곹 !zݱY 7Q|fTƏ-YAAa=]Ԙ5dV)(T +pdU݂?4(,ʋж 9,3po3NGÈKEO n~x<3!< 80zYƆGq0?vrh4~@l:[^ejucMc>uEqQ(;:a܄7CR .&ňhqzz!xER5y'w~=@%2 rᒳtscMM8VƇL\Bd3tBV6o|*yil8?J"7wiFVA'.̆{Ǿ%i,@!_ovcatK$YڗגXw><#u#.9U85:G[Dol;;ݘ=20ђщ(qܦd`zmɽ—yAUNT؋\P4D7 u d[cG}H^'g]S4["$_[R PW⩼j'#(IP{;67 6y.|ZȉLx.=; %dr›j㵦Rsq7RE=O̮c]EC]hY'B`q{ۦM_ׄF/En~ߏD3غf=XbB$~Zֳo[$w/𠬎pKbXzO?\wG@%%yRAZ-T˩Q&)@wd>L5JY(mUu #bFV]d 3w`KW{~l &mbb>johҮɤh`5] E4>/=ўy&oǴ,BSe6C^3lέX7銀q*˯!({w I"IEfHf4ܠDX;Ɏy결<ԁbc|OQ"+7<$ckvNB;Lx=,Hd =H`!40ݣ,hw<̔{mY!RY}t&dm&=b\ӥ+G,mwki TeG6owu]ʱeߣ0%8٩Yi|kK1Sq݁B7z`;:-{y RmuͯIgb l [}+7q7&Jޓߤ 1/(N7o8rk6LLIMfI?S+jDsD;{vEހ*N?Hv0%?BSO6>Qcu% PAq5b3/6)S'CB̮^L8Rhջb5pqQN綍d;ۖ㊧]ćЍcQtҌx) cO~vZy@9fj(\]sKAmsKe;1oYbO)6B̚SĬv ;S&^oYq;ÙN;?["L\YYd &bR7'x_΃-1DSquP$G+ ")q!`U9P\bV"":opZ{+aYX]94| xC2jwI[_ՍG\ ˵"A2.%<NncIMo7Aүyxj2y`%ׂ/-M f!UND`]ߝd3&OW$aYkk|d#+ $u<=j,hQoQ`u .]Qz T6jF\fy.Q:`Cɪܭ1>l761F69 +!IQMeu#Az]ư1*خr;4|0GSGl3b0^*B91DcyaLբ%ip0ЫE Kiz\a 3b4dATPY$bݴ; [5?+z:i?k)[W}HxZFrz/:e;Jn-`7BAװMw2K:gwa5:8Vׯ qU{5kcϠ DdHFl1u$'XF$e/c=.V;0PP f"oZd:Jn=Η|"L893Q ýB֓aqd GdŎalJ3?^]⊜𺩮fϠ>){,2UFdSfgk|?|Tn==/i詏䦕/5^A=i]8 OK;GeYfL#kj h6zO@ дm{hO\>T(',~oETc1,xҤu[z ق sQÕ%O0zŮ`L跽&''CЮsm1${t<cIThȤ0g A*&RmSg&LDW6&+ESU~ynvl\UIA^zD F -@wRI,0wɦUr?Ɯ\KB /iIa;(%];'rrFF]$/SvxFa|!)D:FQq)8о"(~\@jKJu'k"4 q4@=C!@|p@\ͲĞEu`}HKN~?l8z5HJ8%I0g>UAu\<@FijfDyKO}6c;ߣ=?uvDΊwZ;|)/~᚞!]"cU$kD%CZ,}=[zGMBeLC™_0=@1Y:D3qO&OU2 筮;QYϛV"}a,߆Ge+Bvr4v< 5+*q@J*4Ng7|pON_I @j)X( {7D ؁_#C,o#f#H֜.? 3O7@`?Z=XWZP|RC%>֊6f(ͫ{=fؐ8k5֐n`ʐ&p;aj.7)ėb1N}n' 4xh@ae?i&za?5l51ǨcrD~EfMC{P.1' |[}.G5f)iLR6dF Gy5Cx6Hn|FdliW9!a%xJ&ӯ&j_`͖rۧZԂwx;X3H\WȢ[WDHPHWf'R1]^eK<'Fe[wκQjȧ#6*Uf mԙ["zD<7\B/0G[D@ܻhpK| cƁ,Qќ{ "Z,LzDVz&sÌT`Ζyt~[j"hV!oLzL!W `~GZZ:xqHŒ G:O6/g@v'’VYݧ Y aYplc曌硨Qеg +@(Y vatÔ:-Q zWrKoЦ΍=Jl=$kwkʼnP Dy91qf%50TȬgٿ^GMX*VwPS x3siPnkuǤdVXBuv#+|k2$'11|h IφNw!|g~xn:p0K0(LJu@o/XcuswZ/` '!>>@֬R ?ڢ|Ja?[&l{茳ʖ59ް`Ns{BzX=Xz5RⓍـYn8uV ֶ"MmsKxƞh!\'\ bpWޏf:S8#}vm: \ABX>fDtHg5Qjk #ܳs5}6!uj]{Z{ƢrSe.׉1L NM% 1YHL I&굒h2pG)%ØW <6dL,rWnPiGD^.kq"*0?ʍ s:rQbg}Dh BXєyM> җjT6) zܭsy]%ðx)xX ᖉӍ:UY1T!hWd9ˬy'^,FJdYZbZOL}&V > :S#Gn7Kg4B ѭe- AHui!fS;Z2(MIO}I-b5}񹞉h2dEpAv 0G!-(6yH cLQaQq2r-xt 4F "'Be+:JzbУ~ A!"!աӤ;E۞|>Wp)as7l&[ᇫ/`\K6s†14Ow6JT;3Xqd-8[MnFRt!°}Ptk^1o yrG#+g>]̓^YFk3eC~W2h*NU_qrp*țx?G sI!ңr6߳_}2؄[dQ*ɟ4 z^$O PdN9EfzZ/ϭ\[^ T,#p%~ݖM쇮)Pyq̣י?{>5"`@M omIUQ d12xM4ޜ CQ?wpzUSIM`7X$-I|srGp&\vzC(o?VJש+`dlx(ӚtѠ袅zf$g"u_t eT%Rmi'fܳx~O+Fq & 2⧗?ţ s}gyjOSN_oL$s\[ElSRpY6X3Z}&63qK;Ka`j}s4B6/<0eY֔]sgi#ބQ f¤C1ΚBV̈1~I1y!&7*]Okgs:HGXGe3N iMVT77O QI2S)A@ID˯S[zW8Ke!y=k*0!RݻFqO+MybToy78=bBN)\=fV\\cȌhL{EM)13d/8BUU Las)( @Jq [TCo GDj:|]B J q7ktP1|rxxU ;Ah Di#]*- ·| s;1sd+>iP*ә%=xh͟ kr㝦l_N[jmLZRoaފs'yw2rQ m S :\.JE.C_0`ya {.)X]EUbK2gE_? %o834<٨v:yܗFYq:c'nb `| ʦZ }ަjC'΁ ~O4WӆqjcfڸS,ԍC@r3LSNوp!T+q"eŪ dXuU1]!DގflUʵP{KTG&gb[i~alnu?jWrd>} QJl@z\B{)E =҇j\/uiy|RNA`:`rzLeTڝ +eoBCVuSL'ЫΞb'N)͝oWbrZMTߤ]KpDYShYPbY0q1ԣBR" =掞ɍ,KrtgErAԸwq< jT; G7>[d0gkħaß!5_p-:U휣<^ղAo''`&_&@i FӖ@茪9! }NŷМ-۷o# .zA;v5֚h@#CB X  61%O-:(*V0rKɬ9 Τ:k D(ԃ(?9P[?rh/S襉y$QV[f\ܟ  ݜAP)@> C5A(;‰#ڥ8avhHӱx"SJ!NWw;nX=<-ꅝG~OVGމdR d /J=ZX1{֥I/cLY>gE}!.ɳJjcBSa?ۊɛ118ic䙖_h-'B oCs+GDWVɂoō;"z!rjs>^wnb47P)pE&Iz ܅/[c$@@rpI)RM _(=`H魭6 ,J'``f8~sV! < rDc4!8T.v5tۦF†BE͠)0gN{ }̏{mG(i @;?Cs`e< A g @~P[7W+/!aEe֚= >agiTxm:g%,Xdãtt7ֽ|J|ck?0ZovǶF9Zq^1O ıЮ 98K2zD}XHj̕4T^n,TWvdUӡ>@pZϋ3 m:,AX2T;(hGNP e1D3!8<_<~?%Nqf:?{ ^;7BMq7?س W+ĭbN~_YfEZ LEZ e9';i^qybZTΥF)Ӊ4\^d)i"آ ee0&;pvmd^C TL"̰a*M b.`P2k{Nv6姤Qpx3G}C}`t5aRQ ^SPoJ`@JrNx|Gdq]]om4&g{Lo8_PP}\ @Vn` bP DN_mݶ0LH_n.mHpM('tf\AmqJoq/\mWPJC6.SP.Iuu6[ٞ[M)KZKzsae@ꉊus pILHʏơsE+tnTmt#Ht> )x :7eC|T*xBøS&n p8Dǔȫ[U&|@ ׁ~DQ v5L*9 S/Tj3V;TNR0aNcqY0sXP2K8%%b*-X",Fa!{V~뮄"QP\[>ȗR]UT VȠR|^5* 3ODF5fUUm1hE-G/zd786o$\Cy%3ܦyw[ẚs>5{b-jNijJt[ KRKqgab-4m֛u`J~pV) N{܏"݌_ սB)|NxLH4}kp T!WXh9A-c3U h@)AxAHM_ˆ؉wV-VRHr\4:5:zt^ڠR&t.HЯ2>w.2<|h1jS%y9Hi!|V?5-k)쩏PR<]*@ goRLwi*C]gp/^h9nP-r{D} P!"$j7owE~M'>eeh3~X|228 0ǮNf_ƘR9%P v!;Eʚj_iT#)#!"dJ.LD|3uISsyeekGtp:Y*; |}; ;(B" kmayTđUM|2bzU2j]T-ƀ}#Q`N\[7yCYGk~X+(>/hJ9ء[:TGMo^~CeT㽨R˹"zy5Ssrp83XRR8]anOBLH ,Fd^^'ΑVgUw]"_;s` y-eARCʭO}uV$v 1%ݺu)YZ{xcw;]h ɩ⺊ͣaWbaY'լ=rAÃL?XπBtuڦUeďS_Ó/LFZ̠BYo=>A jƩ d<|Q:^4x\ŷNХpּi*u; q"yJ+}0݀nVyNXӢGn&M ޲0Tdpٺ{9pgmC4rS?x}FP|~&C^!S>|rH&LUO ]2xFׇ(3":yAY .y9ߕq]?ݎASi~I+[8bҋ/"z )č<б3s[0uJLZ>PcAAۂX*y6oC,S{UWkAcc>mk4nG܎rnImB6V =;pij\yWM_gPmzsV=7o*ҌI+gc X pRZ̓bo+  i 9KH'7NַwBm.)'_7H[k_lhC7{,p)DuUyI}'Λ<%CkQkZ!,m.^Uf[V,{]̰F<ˈxe7KOPkO-'?"&*oi\ 9 -Bm y\qptEk0ݴ*̈́Q8=#M]`;4PTE});e.@9X(.$/ErIyt+6Aqn ye_FBh8uy{hfaאR6xTIY2iipkjc3N]S?8raB.B~{Ywk3S܎tJŖH"4an 3"z"Ob~t-.)ߍf;4V>Di IH6=_)h顇0Ff#|Y!MJС#C/X nX/z 8#1Y A>œ4 0 +ʔc5$ӿE8s7E(XXNj];=(Qx 6]" RH Ex䚁F#/G20xMV"ݲ}u=/e Ty*;ㄫ??fh %BTȑsBR:kS|n2=(~؝_8')q,{W "g7Ժ5Z ˕WQ}#{#'lBuoLݛ 8N %Q@ib^EXXJor7*J1e45MF52jȩDnK*@l+!"&fX;-tܙ?BDѲwkxbvL%GCF:҇v} ʍzs*W!^哾39Pg2f بR@+V1ul@udlpJ¾Z h`1 ysڭt(Z#Ef,VQRf 8F"D"V:ߔ5 FyTRk٬`!A?94}7aVwudNVؽ+5`tߩ%A?9/<Yb0YfAdϣ[PX;0;VI.-ZxǏ$݌!/C:\:̏!L*ࣗj />RFzTU8!Uk9F3JuN =T}z]I/]n$ӻBLfp1p†sTGtB=D*%T#-((8ywyx}T3Ph(3,PfdBwW@=QKbB ocIo}VaW!X%A! ؗC(?gKW1*?8\D>W?kRxϏ].?ڡ-{L7F&NEQ:ge?]9g8O[ ƒQ X]Hm 10[ܢ7 Z'5IF0d'U'4.V\cej. xo\J7O?+VP=Q%_1;M=COI^Iyx"Jty'mj;)mХ!@,0_ ʩ:,@FPJFCT^4 |n Cajhʫ4kN[\RlA* 9v+U{V4?̓(u^sF#'A˻UR޹@>|4A ; ã8t9N /ǮP h$^itm 'U$66껳[UOg_V&qt(12Ϥaw?v[,Cx][.Yƻ!.&ytFyt>DuI69@k {'-W \Xl gp ە,S5Of%ڏL Q~cvX\ubNLr},wpDKw,rCiFx}0&S7JDMEi|W[ˍvt86ҔQ%{=|X/$] x~ 5OOsV7C򦄩f]ACHL[Qvw J5DIXI;ȔQ"ȋzˬLKlVm#%-U{DU p$hs^Fh*U6osX(uu479Iы N4_;HSyYScBE֜l06}=5<-V+“+n-W\rbj+)B4ELi$ЊƀH`씚R]tly1j"Ke،^GQ%K/KJuؕa#[ ybg|(yC0OC/$ȖgaVN;/Ƃ&˂z9hvFG[{ 0xf5z;a):7y[>be2gtST cF#E x瞈uSVo},YQPDy}nP8uCyȉ]a7CEOM_d_Ϣ` )@7C' *@­9vhӮ!o4hާC8&|HzxNi| uƛ rh7n5+;z9Usvn\ev)KG+]އZ'F Fa%⣴%dms{& Uk@(US2F<.~n)V k͔lI^aPk}4^ͯx@hVB *h+ d^"/.:#!BnZI:@bWr}$W;;=Wf2A/a2GJg-3{ 69ӂʎ: -EIװ܅]?p@T)g'xez|˃t$hGX#>SS:=~5Jm*:iMD/dl,r29–C<>\!_݅!YtP\;p-,w_Σds&*/x }P2UU?B$G`sJMS(ɀe9ZN̽/ ȭHt=]O[2 oUv4Kt\@6n-0|,73RJ F_L^]x^#jazt-63BΗjE~)I&uCU_BH77QɁ?WBLʻ#s,.a7a&X-vtĵf+4 ݽH"pZs*w97L@ӿdx&DSW .%E:܂ya&%A_Т1Rؐ~`F7 o,t$'.Ғ5 #[`{#=΅o$lQ@!}{ׅMT J܂+^<3A!|x1?-vR E:Xi_b!(KO sCk\+( ]i}urrpIa}d®Xq\aǔo0NR$^]ĊyƤ,'!gd?;}7"JjàVX+mI A6z|o'{\kTQ|ż]QLTѯj{C[++"(6QË }v8W&D 4,ȍnD,Xy 0VZ\t}'5*zx?FSFY,@zP';D萄ŽT59BݕPB49OƈL"G֏n"| MmAB{.39$ԁg Xᄡ%^r2Pws|\ וNLBS6Z)T$n|:a(#Ri:c:mpkI@l .Eflcu20 0K6y lSQ1ZXkE:JQS밶};2)f̈\5 @|9!M7tEMN[!.9#Y~GCSGs'\hCT1~Fus0_GI_ScYpz9x~a  o,v$[S4$\}s l[b+h4ei]2AS[Trݱ/ Jp, X{' qS.,ҩI+&(\gӴRŖoIݵ_bGF8\?b6X`4A )g {yfj%瑣Lk`I؁ ߚU6M=~ LWVV?KXcJ~q1͔S sgf_6 Y9D[@f@E=GO?LurV3ʳ2Df]#QF'?| N3f;4au -Sވyv2HՁw4oC/qr3 ռhD_\кP.@ U:/(%2l~RejM[((kc}Nݤ te 2bWg%4wJ:KO>mst&H͠&gA\M vg GW4HyVXj%OrW{UPavI;.B;nu ⁂;@04l T/2I!;)9!>F{TZAňDVBU>;1d뤌 wσoa%ÄW<9LN Uy:):{T=6¸ɶX!] B9c#W`ܦ^, )Ƅ23WlءRNVmІb68yQՂ2Dh=zT 6@֣ք%6׃E#ıty>H7#t-U*B~إ\ٯn H^47UZf Hވs\q[VF.W\_ ¸ZIZ  Wo͸`ѷLeSji3A#amc o\ Kf±: 0PstϩHϨBЪ\GChR5!Mk vz;)/i8)X=aގ:. 8jU9PCg",jP^}4:}LyO%K)iWA”=C+WDj /LFKT~8h"rg>So3um}رoq}!vb Q þ2<`;u`ʰt~aغ GFk!mOY~e`n;m}͋X_î= դjt]ٜ mِWFrC?ZIJh ehS؋:w% 9Vl$_6xTb49MLB_\'<pL\NL[? CY'A#SY >߬grm" $߹Qw\ɱTmt^ù?`6o5_#f.Cҩb)A`]+mbnF~OqRn6fcMTk;/i\C }U84!` ˧#L^gQNO?/'/6)mZGKdؘsp1e}5z\BKĞ+gfC,#?9`\ƮΠH4ov0Uߏ 9t\qEgVtB\:U 8Wx &# 29P%424.gy4|EbL~ SP\ؗ6l656AWze/[m,=7P_a%_F;o!?Mퟡ<+vר< A`ٹ=F$)8Ήпo`:r( +݁r.\F1-FъsNtF ;l†'7{9s^UO8džفv$*'o,xl/5pf5U[eG:)^;bBH,NnQtJE]VIz iYt@'/m=xb;9II'0]{[,ֻyQ11bME |!UQpO.2]UI_<'Ma% x @4( {(KUQrSKk=0av?5s| gs!sP~/SA\~[g|!G?|_ 5 N9 h'C@.ޓ4y\g-]7n8Ȼαe^1 Q%KpN:j^KRF``L bzK{q4'Bm928amu* ^PHDSмbV.:Иoѧ8$5B}O99z:m9c,spTbOʖ-5 F70ghz ?㮘h͔sagNsr}N%]Zew]raP̄-RyO2ƹ(<8S@8ǀTZ)k:FQ;uH9]O&?wsZאԛ_dMptMp#u\=Wr(=N\3ٻ!:ZF˃5_G̻cu?-ڧlILYd_bҧ/IĽ%e7^?_b^ץ[ܵ%Y(ugAĊ(7v8xO4̤*UϥC^9 B/Y@KMr8)]E!Awm,imNKuNL-!-4_,X n9qW%wO]D) VMq1tI-F2% bkF+O!al^+vZRdU>PT|KF*͟ 7~}zjJdPչ1](PBlG'Bޓ2O#v;t;f(~{6$o?Ok?[(p%+"=|TY! [K!bmpǙ?gvb#["j?&įm3:#<¯߃G HQ:ח'L!}Mm՞u)ri|?!B5먝r]mA{Wْ@"b7%s0n, ߵo.sl eEIƂmo2ڟ"jyarXq0'&+wԩ!h Q5;|Zh(Ci 3JE?%SD5g*T&G[#O1?P*Ct&kFLWKp2 [dD:}ƤVTJPk‡nW}7W 4jZ}eGBNߗV?i.V0/pI2 } ߊˆ˷@. }4h:F?`AT+pUcot{C }"p"_H 0{/j$$~&yeWBM2O=6Ϭu *$B ^Ryn; |ĩf[rq `|dM܍0.gEɾNEòno﹐lzܩjn}I;[=*HwVLY9SmU Xs$kdƗ|ߕ1exQCLz8\vҩ(qZ0h⎐ㇹK 43zdG"|5{ a8ᏆYQ_\-,Ϣ;>0'`ŞSш跤osW#gņGgԿJWEج[?vB!mihrg. 4rD/OFy\(8SbU<`1nl m-R ۯMCIE> 7Ur_W6ƶ\aBOl`HuKmfh;_<0F-rLx֔ ;?|2m%<*A@oǚ,C-@@>+mQAS9S䋊kN`8Nj/7zd|fьhڄ3sMY;M>PS;|l:RzoU95$8rtUE\U]2_3$3*f|b[\iAI!ql^\)t\Om~$85cPES5}nE>1ƄQy^ Dw1VW8:ʱH3U1ut'T>p$&_!}=R o{="5NYjÅW 6TώʏwZ]S0I`Hٟ^3/viފWj!G Ą+'((N1 m/6Ug?/t\n4ңUHCO$p%'.7Os>]tr^ 5Б(,9RGyvFU`OdapZ5JbBz (>hq}\.uC$S?i"c 8Y1E9k,9S^`ٳrDWՂ?k4qRf,]AR,?& "+S\A 4% r\DvJֈǔQ]3%r`Bj+#KHK5^ wƀGǼJWmjHgطURm@*&`F6`h9(Ed͠\/,ۖ$%۱yoƔe#}lGH? 7 ()c44I7W.xz`g3ӀRv=>q&T3q bY[/Bcٽ/4#7 ܾe盫PN oBPp`vpXFk)K2JAgՑ=+\”\fWV#E0ĥﵟ8&R`-KȵG D2RwK}fyvv,40e,|E{g58(̹ >'.?u^ڂ Mn-l-f.U!MЈ9$@ Oѹ.gn!}=/|]| MGvWq/ִ߼ŵ':z3Rj I~/J@دdQ%w5)T2b *Qjp>|I9n7ab[;0 h~FSx Y¦ཏ;C@Css=ݒocTm;Rw~Zq֠ɛo`㫏9ٹL@B耋ƼN7^_غUP(Z<"A*jnrd %nX3ljN0cM: ogz٦KwRB_OE3Q͈fU`gQ)z8]/;7,%_, 7_P˗/H0L̡fa[t5 IfwkS_JoUj!'rr/xAUy@8 12Nm0z kzxCg"Y7J33﷑U|)xˉ)ZĊSfzɼHڤ fj-{T 2Gm;ʜ+O=Q F< LCy@^:v*gc\sH{uUAo-\;.~Qtg ?EKǾ77΢2/U굋0?bF=>mV DG3V*@Rln<(F}l(s7+ڮ#҂n~U7ڃgsO{TX|.pM{"sleŷ͑hMXE,ְhKS!s8wASZ@ƿ-JfyN;7c=0 #C <1]ZjHsԳ& z<ju73w/_/wsQϐl$|n&! G#'{YPu7M pۇc5yh9DU.wH QBF+IEWHMW'Xu=maL?m6cSynY TuO<=( bU<79[{qI5 /|̷V.ߑ6bO6;<HA-$da@dXLO1؝(!u$yB'@_;񁹎%SfU^{He ! c3BU{̷|A^tFq5ėC&\ 3ɕ/xpw3`|ozTWֺ!H ?AՌ%'½<9ΰ ).Ӹ%2^v\?VN!\ ZF1w y;q J(Sꈘc+ELG :%]|9/,5xEҏUvi,EJbh9*WҳoY%E܌"5{^aV߻p NXevq&:z+q-GH$cY.mCq"_]fVt?W]™)Z zK6_M_VњdYiLUY cGɾ%"?\~HJS%'v>`Rx?Zyw823s\; 4BFr'?qkd6[§U%tZa=$.8~mesJ_&b~ȳwY oIJCQM~]izW /8_^;5*9K9)kx5q?3ʺWqMa*e=Ľja%[keXD`H\IE%ݧJM-A3f|J*:ڵDS\ u,OKutOAV}_ZRb!JW4Q˜ʎ'q |bORoX:G9xZժj⥳H+O1$y/wl?7k-1)GPP?x'+-3 X`y6М.*\P9gG#i3z@fɡmfWm{ ȏQ ҆FB'o,&7qj;mwKt`]vW% h%P fpL秌1'"|P ա%җ~j \ ~e7hL1#&vy/r#!MQx$2lRIB?w!6.o"SkfЁu{,fN%a+>t/N;Gx~I*jpi_&`8x2d~j/Pٽe:BVm*GhCgT-d!<Ƨ*Dy5 ]ݧ]ߎf/RW&ZCpqf͹<PDχe˿j&C);uD=x,ʫmqsj~ZKn]h& ۵EyN/ w+8h"&Lp1@fm< L˱j$jJ>YnD#YݶʇJȨ<}t /_ܖDu݃CǛ&EBx r썋WJ/--*ݿ|8cKmkW^[Λ`{G&X3)53f&-(ͲRBeq͌Gt|1.[uڽgºIo=+4II8AxbZhs̱U) K.)Gc$}'r)!@e,hA,! yjvٴ&<\-!!3B^$mc9'ɱ#4>)1Ber?BCSiٍD|r`U,WMjC8' \%]Uha_"昇>nD.e!@p&zOP8hyp-a mЏΎeLcK'07wM Z!'Q74p{U.S9!½l4bR PCO#xHކ HlkڥX<4_[{, %5Lx);<$LIЭhӪYXr5.+(kd')3T4/وSp:MP%.Ex[9vrP%lA(x$];hK x[Q#Wt]ɪ˕lL2VP#%wO/U8s+*7Wqr'fI dT}9C>G[k"+ş(=m}?><^T1G]a}k䠿ªw&ʗiwԡ/QNEGB~t W-`\3+~ ( ;ؠbO(ge,>xk 5ߕlZT*]G" ɟm"EGTBA*db| RnP¡Hv84/Z 4h!*.ܓKЄg.sN'IJP8ېS@04ɨH=䳪 )V|}/ A١;_(%AQ7zdLjIJ"aA%ﲡ{R60"m!RT"G,x #1h) ДG}*QwE)4y%oṉtrԾ3.MN@ 6x'N vT 澶u<{:(';R -}!1_kW@`^Yw~ 7cf cߟ\i`O1Oc=!X߇fmCkk̝cS?^2wFKnnmn^<gŒL[u4ƻ Ѝ4\6+I blGzĽ Ȗ\?OfȣK@l Dl0nξ( Ҟ$ ɍlcW_n<Jb# 8K/.Q`u^v:dž7ȧ)jzl#9W9H -b)|0$"M,З}hY~~^tϲِ@wK`nh77䓡x`oP*'s;}^psՓ%A[2ӡ@|j[ۼ*]ϠnY/_ ]OdTN0b [h)Ƶ %J zNUc9ֱia^:lT/GM@u=0^,&^IIҤxW_BɸKtf1DB*H.!T{Ĭ:X"bz[A͡N>ϵb"Eշxge؜̾/o`,sr%%?̨^4 xMLG= ?toå"9w@4_bx2R #?md}>F=Q͸@5|OGAۀj V烥s1ڗ{?8pqFO> ͣ #M\"q}@v]2+vm%33i3DJzغO =ah<UϲIR>p$S^yM'Z8 9uɒ7B:[ XJ <1vrޒz% xc'cEMDZݱPP3U\߃Pg6aƋr% [<~. &IeSunOS6o6ljY;>JR_oq ~ xT% !VH}6ILɕ\ן gN, 5M;#t+>j8 \1+\bEޢY *$)+O5of)~ydX &rPH+xQ}BWv:O3: ^VJILuBf ښM45Ytwp֔fNa{ZO„N$vÿT+0ۯݜzv`Gg&n@MrvyZ$#Sk"HY֩.kITpXT+4f:d};ٍ_M1ͦ#{T  G82Pe;νiS43qra4Gx8Eq"1ڂl.qDCcah}Cɬ9j!'\ kU;(b C8Hvco=d 4#liO.%AbPrl2dKZe2ֆ#dWH$q_5;7.J -fm>) %!ǥ᜷^ g,3R:":1C T |V iR>@7v&-?gci݋YL_B I"Z{kYTn*/i5'm"rW0Lۓ| 2Z7:rZ45ĭ՛}G;i \68Lx1c˅XHq[l?8;R@W0kÈtZUSuf\&Ľ+)ϗN0GN2vΟDXN>:ݶe6D@%\. ?T٥n|.NG3,K|j A-93NPFGD>Bf2T 1j4ullgJ.:2Fm=c37ی-= d3W'gt6]/} K@///Υar/m:ari.=^,~ Y3=Hm4Ԫ_fΘ p xxiZ 2J0Ļƴ~]T,tb]q|#>OnnjcMHAP"Hr48T@!ʄqDq]-|#~~^eA@i3E[˦:lP/ć0i0|j5z<{ubTfՅe}ּ^uEW7`+ o%ɠX G⥳rtQ'?MBR 0تn Pw7RaOH{VEj~6 ? П͌[\a\3n-f˓$kDZSޖh;QNQp0]cEM]fA#8wra>YANҟ1AF{6<o^5x;P+xpO0?1Ξ3=bk0=gtCIu\͞$IFt mE| b]*jiy0q f:斁eK+@PS׊bL۵5@ 81zxbHY%;e'הڏ%eVwQX!Qe yj %ot=I3fw{9<'5BYnTA=kY^GN5'U+I+e/('&FPP|ڛ;+V5C/v#I.d!Y%ԛyuXs xz?ۧB7%Qz;Q|Kn3$CGta3%;,O^k7} 75vH0%(~ y)ar(D\.Z~4'%\6Q^dO=#S޶Lי<^G&l,i e-tM@^<n}2B!늫K>9٠{`6@hPK=|]<<WtWqDĀPx3/$U{'i2s9t$f-kN1w +7-#>jY`PWd,9h{7Ӆe%Pc_SwD#F;b$b:o!xvhGEb)62 7hT15VA0Fk\ȉQY>r[y!%&jc̦Ժ&;mdS>.u]}eY%#z%;!hm.;lH ¥'ɱ|kIF\ċ̓ :NE8W CR}(.%A(W>n36\ [\^'؉/,dgV6m5=bMNc*1- OΡk%sqѨ듀`%{tfC<|u%>G,a/13a i ]GH6C7vaJe]>&LpS+`]ݜ@}[p{֭Yg<ŝ`TCCP…t ՜4ܱ@hQ=X! ˊG(:5 dF|DPW?7Pպ2WE)p&o%9͵xee,b5#pN -ۋRF 6dž]NM?{ -ul Hkj(Nvpj\Dp&5듖/ Hg1p7OIqW࿶CjC^m"TneB&nơJpo=eud^_cfwtƣUN!@Q>+Ruf s X>9ebī؏?c~&M|dkٸ58!@?';5 C=p "+/%')3 rcxb rkscߑۍ'TJ| ^>ïT4dn ͒5VF2!KiHJAFp[nLZ1SΆAaйDFl_@adŸGS4D*x@ 9sC*tTt ~՜׆ؙɛ+-FL6pHN·`[vbim일@Ѕb\̣tU,3n<6=(K w<ɴTd-x *Ήm8.P\^}߁1jL[>b\XZfg,PK_@5xV³L{NtV> 'Oa~šo2,:pd c.Ŋ%q^" zX3tt=' ;]Ǡ谎c!oA[sx\=(UGV RzaX3)俎Z#858 2܈p&*u\P!ƘhKg"'8^}:k{`U%Wʵ80Cn8~.bsZ\+7x=In:@v禭Xr>XӲI-HsN+6DesUn+wrkCJ/)[͆QA};kDUς$R~k:`x+[qXN],- >}uX kaeڬD [\S5Յ UJ["'Vx!R Qj7YV A?DF2]JO"(:f]ǰte /W: ak9t~Pxvz/t%!O-4Z-_rOB_P^ x;<ϲp!kTQn3BCZ+nq"<XkAu@&(D}&:ϑa3M߈?D9K7'{Twez D' 2T1Op6 )4Ty$v'zVݐ>;'YI}@eO,Vːu02FYf&+ZMcؗ"{(8Ex`%B%7by,E{)ρ<F/%mPA0\5RF\4Nir37˥}w:/R tp tNilj,cUb7!hNv/'PgsΪr|q;z1tICY>]j_{% "e;nD]`hv#uMt˕F\T~-"FŁ:L)+>v:&w#9Zl(vDcv7 [M$f#u0Q!SGJ;7lJ.RI=A4vཷumU}ဉ_qW}g5Ԋ|2[8qLcZag9 OSϡ,H_7;FXM~ #qq1POcj٦IP0p!<;DuC[oyQ+QvBDD1K?W׵Ae~V͎1Yi@ _tRvSWhJE%牏,%)qrEӓA c4\:=p(B&Q!2{rY m,R-(v3}&$5A,Oq aP鑞wȹW0\yHpk&(TI*駶vJ\(' #7PN/d4˧J8mA~0#/do}yk8Z7GT:kk  ̈́NVW[@3*DK02==;{ @/VR'[@[f đMAx8(;KnyŤ ~rSP[(M*2Up<*:y~B<2A\ʝ'=.agE׌adATJ,RU*>4p9v!z vH b+Es G l?K*ZʳTe,2YA8|mX"IǦnH:FF:@5eT}|dod rڡѱrXSp? mo</Vc_ڗ O/CU;WF#=FEE1Drc&KQ} x:m0ReXGDJ~ovIo&)LU% h v+\YDXpJ| -_YW"5e6`dYjjj5$cBvX+;jR(|rw3˵3[IWzպ)!Lh?;b)Qo bJXC0\eOE!֜ ' mzܥS>O^*MQHӵRQ*ܐgnḂBPVDf&mF&l*y6qܑl- ׁXea0&.&)jM!ǹ5O',oy/Z$UO׮GJ2EJAk*PWpL+%n(S2m}h}~v^>d 9>4'ϥ(ג+!s,g$/RԦwd=Y1" /\ɾ- }Ic}VC d7dYpBQ(Z-R Nf=Gtw"2A֒x;n!鈁:3@d0ňAT?NἈEv?R(uRzںLU; J7 ''ʄK첚ZC qc ~׉P!"  9|(}JH,75 '/'ϠS99Br!#i<$yR3ĮdP1HȆĒx4sAH$;R8yHWTft`_3]PV[[vː);V\C23oł&=TgX sΝ?Ҽ<ӏL.ȢSl#'snfҌ9n"4 #ň1sZgVҶ5&KFA3 H ^@q=AqAkɸυ͕S^,R%2웘:蒳1wnȚ-8{';m*9%N7 N|ڡUf j/<[ G@K@fv!-`hw7A.GRf}^"ӓ"H]r>j$z^ychDd7A%@jE.n+Py^ a$v%es.uǑួ/L5 MpѼDŐ^,gVS5_ۘ ۚ߳ODn*6:&*@Dc9C;/}y<'ƶgħ orez*Xs鎮@ T!hPyYkַ4ҰrLXOO3MVStyy+w-l$/2«bd,x 2jF? '-X=aˈvݵ6sɩ 8L$ystX9 %RKYUC;IG_|6Q)&mf/T=+w\ +z|0|ISOʌ(91(Y s͙%ǘZ21#zh:w8(ɦ,zns\AÇ\̍(* / )ZQ6M,=[^ְ>=~Ŀo#Ef]P 7oSNy41w1ۉU( p.!ފÊQ^y-qVW|(8_atk)[  @.#i#d:m }xՅe eG䛠R'.@5!`v龎'`@rkW%";:ّgGO/RNĬ.Qij=Uժz|mg6ͨx*T%&"QO[]u?72?GY`ÄqRbsOD+"? uw &NHUT=mG| 6{[fԑz+[]J6өF hZl{QպiFK'I/4Ǣ:";F"VO#\(1 ~ Cwv|B!A˿ܶ6P3}Z{gjvG7ަ&w!wxR}M)>7)GO>)/sѿv,!c3n(>1ߦ\JCh+s)̫|b^. x@˞S/nDXc0#F<Q L9Ya 5O>3LN.yL({7oU-^<.O5> Qq#8l4=HQM[>U5;##o*Dm*`js͟ıZ@~ɦGUXGK>|ouBS陮2*p'6F~a`tV嵻Eqiъ-8p: ANlof =tܿR 3 GˠQf8C#-儴4ԗpd\_;7#):72sQJwrjҝ4A.T^Uº{כ=8Dx&BP=3&Պ±g M 䀶/࣒10=K?*X6+FY3:IY9ÿ)v$3l2OGP V0rz|zW6+p؎1Z9$'g4#-=Gb0s>@c*J\fX,rvosɇ- F(E|Q50 UJet29 ~بIvP2/U:_E׿e&IleS7Z۰)sTv@3_RBӽh@ԹΐUywuCЅPuCU$Vw`{a֞@̬_n} v! %+v㸒m\qr8膐/@PZoȮV)-I &bQ5I)AϛOmizb`D[`CQ2'tp6#I6(3#M1έe no֗DK+a +zȼ_WŬ %4`S5(f+|k11 it!Dv]1弹T 8Saőߘ2QğJ1.$~W4뗑g0jY~:1)\ә%ٕ*NXA>Q%\q@e!wfT#PxI1½ѡv ] BQ9X߇Q/4X)`DU؛mJéN cw [blǻ,WWh^^l-G3-V ߪL}w5!% t q*-)]A4 ٸ5  EpV5zo~*7ﶞ-i8p\Z#r$[ A  V;%suǝÇq{&4UƓrG㉶p &'kuLjt}{g6)0ZpūXy%CwF{DLNWQ=׈av$b%Y  + -TkK]*\OȜ! -p"'#Q|֧=Qa+~*rb Guz`;/v\D\@,]tmd-ON(vrh Q܌.ZNP3/cG,@U?  J˚%7(W/0]"l=rǀ'tz {1˩pFeܣ漭΋6S# Ԗ. NPJ76q'fuvKRKiA2˜bT=Q٧|U0+T)fIƸItZ:G-Do)C-uq۽AI2OQNB ~(U Vx[D:l$D[ j!!kMDk%c8P:h;2מو#GMQ(1{9!ί08Л˝Ȳ/àIk'`;|_jذb e, wҽISMѿv "-,g+Vyw_$,ĿDI*!T%TvjU52kHD5hSEN:;RPVWcmmX5_zĒlY6,S8\˻%96cǑ,'jf?}C~ڗu)Qx,{mʖ䩀@ %CG oqG+(Wxee'/z(IJsdik5^7 8cb:Y})1T1j;!(* c9Sx+w#lK٘;̶QJC'5/= (ԁ0%O#tT#sIzP&!|tD<ʘK ?> Thz&0WS > p^P<ҹh\Api;ǟ6DV4Z%>[\āK|~iRٲȒ] B7Y']6Ru$&? n]ؔI[1Cڂi`(;R('& trr10Ml$ g󌘣oR^Bn5a,Hi~hyL,E x,ُ;jV?Nx+)~JzqrIw77ryԄz;lV Afи׌/ӕ ִG[ ڬRaM5PȫzʳgFf<0`? _ŕ$ГbHU$g'6Z{ufj2Dk+lɷbQܨ3CUMn&> -INNjbi`@Ix=K cV%ǰC˂X5zlEێ4MY#j] KrO^Pf ]mӨ!BxOմu"K}}#B{WUA5њY5Կ2XV{44 /_\AiܧOsқx7Uh8Ўoh%h6& Х f)_p!dޕOX"}L:ټ{}P*upW]V6p6PގpO#! !~|LceB÷<[;4;ӤJՖG.ZW #X5*98™1狛BWMw ge_`R"KR+]MˍtBjCW*>(aIW@|iZi:\w5z 6-D!LOjC*5Ik cP*4Z:&y';]=Hy~Ar̨jԆoq#"~ !|p<,.pŝK]cN| Y~8y4]_<+\[2P'.$*e|=9M6~ΆJ2(3̦؁cSP!R(+Ki`/&YLo|EXJnk[?ϑ*xSuT(:2pʖ=-Zuje8s IN)&a&MRA*^0R1Ԇv]"lSDw >lDH"x;geWPEi7#f&I zV*6 M_2|1\`c\L~QW}WGfZŗqW|Tvn+ UpۯpJWq 3TK^c0|5Ey27fjjmԤ6,{nͽB $XK}ɵf%w8RYEit.W2FJ<Ցלh`5/^9Y+soMp>xy H0P  gt[DO!+5WC;u+D t[)q6io_ZH_vb)ew"hcO{7.g51WuNr  r mP_Y2zSwYwʝa-kߚs "w,-bǥ#e9#C jװC.uCz9eܐ!Vw 4f/M5ՏPg GmAV8pawKۃVa CD |mč/YT}N *֪͆ZݙLNX4 ( 尓VeA;KP*bڱ6L ?Ծ.Y[74ڛ̬>eQ$_L_žۀ<Y SYWje;/Z4\ӯ nFx E˩_|]tarS|g99!߃Ê  gGAʆ5J9HyûqޑTj/ j]C(]9(~Ql/h@y$YcKcUQ E`XU`zm_B.BF8LI@'2iZ8gi4PR ٩]xqF, pKҫU vGXPq`-7 ]YCwk!TR17{CYrHQm;qj@!Uk+Ȇ{7}USbs<+ Q I(TNlj7S5XT*-3=V,8Hql(""JT @¬\H9̛ |Ue0mܷ#jjЍXxӨV͕8zB5@Lz$R\LJ ءaFI2:&&S4f/vɀQU@&-@ ľGp!\ S5|%nMPӁ7X9?jL :dWry<R ; Ԇ"VK9 TY").+_9l>d([ѿzT9!K+$A p>>m(r?G@h2vbp 9Wf@^.v hYP3~rT:)k$gQ$nk_~qSLLʞ%gt{Q[{@O #c 8850.K,Djdٽݴ ROny?coҰ*Y~?)mPf Q g뾈֢!"Ԩm87ZZW~FV㪩Jם@Y~}V>%B^Lӡ3DI;W3M h4M:8<YIJщT:J^z@{| i|y{N;!yW 0w?Рjf0&%fIJ* #:@Gfc )Yb9 c)1j"Mߡt^YGM:a'5}| z}0^3Ԙhne BV{fuDj5g`ZRA+q-ؑF+bbr&g"ddfm_R;4߮: 9$IoqW%<T4^*6?z&q=ȵ}~𑭱 C C{SfͽEEɳWu^Qe ĕ%LqMV0nu QW &6rȁZ sgM& p "?c9Y4 8FMȠEȬGibdD[Qogc>oF2֙4 ":uGSZ h<'|C#Nҥϑ-z)8ЛK2jyC ʿ%P]ai{y7)91>%X)%90qVXߤ"=rp)t*_h#Wyw'|G[F{5#cw^OM Po"!:EuZma=p%!.:l RLV# u6:Z[Jً<5X(h~?U`[17o3$AdRW!YhDN95Ðʆ*~YbmˆJHf'ut yK "m~j*F QW9__1,YYn[:PV'@e3aKWƷRUuBgh+L{6?F}1`Cimeg\$?]B6o ޴:~[Ƿ`C7aR&Aվ ?jTz硯Y?W[vC|5ƘG٧Gj瓒#QtQΌ>YWrDzΙjbB~>U}-uDŽi.nb>ٔ}.XEf-=}"E{Uy˷4qat u>Uo 'd'Ii_91PhtU h]e+Zqd+d= Avbb1F~:IJ2JR-;cMM T~v?#c G)gx9}_?Atg͢$t)Nˀ;L 5N;%rmX$EҹCna}&/_Xc2?b}+*΁(6򳰧t1lu46 LlLsDX6P>pu',rY˱؞f%(4<'/8Z 0SXq 9*=;<_2?Td˛$‹XT k(O;jG2GSZ12 ;z˶*;`p$#[y+Klhr|fn3R 1|uO;SW/[rZ6\(]Mckͮڼlv4-VKhPe-@#vKhA_gw!!Q % =sIzK&pJϾM2I/T.˻ߝDW*QSǾrdouM@}NMJ.2L{smU3Nm+bh*=)9.x dC@`~X xpNj"ZSdsUZ=c7.#n6K>6>xGEd ϕ5aȺIyGwvMz3ug"+RZ·8L_+$i+ag%^wVoHZ#.9L~3ݼfc`W:RnI#%8ES+k,Zp6a%T]>eUU <5=+Q]wM%NZ\;vFy }gE[6[0"}wI@AJh|W"% `[K!.$51mp@2ih:`i[nORs3@rPߎŲZCjd́pZ'i .6-FԆY)L^ÍG]ܼGmxVj۩ey,FLDiwo #zhC3=&ixK 3c}.u`0 1qڨsٴbENAȂr"CG_rƙ/Z8@& C0YyM^6cߐ'3H B} Y,wA`,,\5}nɘ'UhCl<\J\U oes~ ?/CqNf)X S K)Qs"%B~&k0+e,w?;o̗;[Q)lM QOFN5|˟0!j{^&mTg#{v)yEu[{ۅNh,(= 3M]Xmنđ}q+<iNG)0gKO%-}5t-T&g/~>}R؉@{hc`D5+D2gXQ@ێd%ʒ(O4VZa@:'֖C!QmI8):qW\k7nq95zk ,v} ZYeerCCC=DlnWm!i_7 ݈""BW㖠:LjN]%62eV\mfC&RH'@k>8.%vf+WP+#ZoNoxr~ lf(&k2ڋ}VusƐ}O@~ig*F~C+QL')-+߭`+W΄oZTrGmc'-#T{gN# LXsV@Uj5An ^!m;uX'UWDrt)HUfn~4(AB8(2;Mzc[NAC͓{7+w׸(.kXnGN"TL6; ֳU_gi idF%M_Ml:n;b[ ~]r(mمȶ(K'1dA80.)v}i(:$>yy3$jLar6//Kag;.Cճ؝<OknzR\^r9*byiYN/YH6ayX 8)fqPl!.4ccťP0Z_=) [dzDP llݠ1f4 !T.Tˈ{Sҹ. Wg2j(\IP0X +Sרܼߋ:dh>iqz1$:PS~B!oTXNsmsJPw-12}H^]js. ,#=u|L$Wpz V^Ӭ~G!@${dg3QÚOL{l (yoR8Tp'yWw塚"cE`]nV[-Ƿl\vVA>M 9yZV;8dytNm#q гd,5J^a}ǃ&'&N]K? !<85KY "Sg|+ҧBdN Z1Cn/XYn 3gym4eRrz/baCD`Eۣ+|l;ρ~.YzlϲY׶!#=E厏Cq5pis#KoPtIt{y +pZ4Fڢ6w/SA|trye9HxUE0}sĝڭוqD/ dVjpw㫠Kj?VIp!ڦ{502ɢRlmΟ3֠\6~K/_}֓7&}BX{ĊPUK{ЏM-%%Uw8:2NC>i h6y~(@xbUa?Ryp׸k%@h:ѽ˾5oذ؇4|~R0840lѪP2u"[O>vr4f!`&TT;ܝEP[;*%.셝ϻ+p[w|o ȭT$PQ`mnQ% oIy<uqLUVx+$e~?NVsUfQ#5}y(he;MXSuɬ48Khѥ)rhb Eƞ)ֺ@ (z_J7N~C>9"LLfuIVK_o]~Bݘ@1_ 6^ w1Iv-Zur;?"ܳ: :_E*̺:T4\MD"Zl,:Zm % N֚$%4cb=E(3{ч("4l4׭O|꡸r(j:RIbL,pgs|΂tTh?w'/XC}HXwܥE G'uA!Vg <TCBk+>u~:ϴuQ8_ɫ`lva7mn=`I%yNq|NJJGU|M=uVkˀҞΜu#51-/8nT8URvLbzyE5!ȸHQ[24;L/!$xKaE`{D"fr&ىX JD%WvN4J&yъ}5(J' j(9۪Fӝk\Jl&]lJf0nxA"v *f)LkGD^e#F)oiQ,tG TK*rzJ␸8}B?&+(@iF{ǿ9Zw>ha{t亹q5@BsHW7wKdȯwWv‘e2,XwE+W 渰Œw!qUvIMc?ht' bQu: TY<~ROU'b6xHnn "@M"+r@}3 V!j|n68O9L̈ɧ|z*,Wa lw"?UjD~SYZ6?|a"n2ĨtGWn`9( eyS"AD;S"{Ý`YtzȤ6OUtн bH6rXv4c) E?#F^9Lw(jK[c.Eӟ80MW'jV]ˢߴp[!~ǤĨi4\b&3D1QB]L+neVڣ/|a0p/&Eώ oS"FпXƮǕ~q@>V1hDYJȕHWhAΑK+n s@^˹GvRssEj17%;G"]su@VvSLQkUQэf?9hOWWo'Je-p-Uq\|͋;xOs~HG7oz.z #dp% X?Urgr>@9ίgg[F?E;;E Ekݰ9kv|\NNu38'뛬4|]R 6~ {#;ukI"gJGrm p-ER}qTl°/K~uZCQ&pR$i)upe 0NVKe<]tkn4Q,X(=*PJQFޭ{kN m3b۾5X)}q> _~2n@/L~-gm?$7-AȔ 1iw98c#(w y %3(<P&0wzC dtCzaIh߀DrcR+@{c]"d;>h'X\ 7AFi[j0=qqe $NULmUj2~r(սф"}ßn8k+qfFu Cg)UW#t;9$]'kGaW1hzfއDSGTĸXduPiUΫvISĉƖfS PCT 9:bBRo[PpY z08%.aJMs f~<^9|p~Yܜ:\ls.' 0`BKĜ( USij)x yg?hrbuGRC%:0_A'ш! t2|~vqt0_zYa]-˘}]g*hF O@Cp{`Lzl Izӊ,Q $P?%w&P٨{zY*:"Х n5%pM{0;Yp}Bfĵ K#}f, r+&2DKg!|?֑ 7 /cn)\y0 }_Gc#x {SK%#1;[i΂kpm!5O&CN`F 5Eu% c˗7!B 4|0gnkM|@W\$uAޚs*\fua#F[A#ٶ]ǭ8(N68!k!,DL[e]+ʁtz ~3)Z5S~cv0qfP],H "+UG'{#1.lS0X/ O!O$O.Yu8~θ2]sFy6U~!q= ,7$'#Q(]8==`/N# @{?0!a(<<&w(4r}""GVMZTI:ҫ?~ALa>İ8a1SDOKk 72bFdgK .휴QD3pRA̵-hTkr>dеɘM!Q0_2Z5؜ ESBa(c PNeL4$9,u]BmnpR΃?<8+vh'U]FM+lv' sjb")!mUS>`z1p83Aw^z v5uOZ>d;.R+,tƇ)UpP~>䢌jA~14IL撃Y0sJ,Tvgou v4KPD!7 `!F.I5!OB~ZeQ<Q T;xK^5`LL[ӱ݋pbBhqX ұ%WYgp:bUZ=nfaFYQXHʊZ3 (eߤK\!Ʀ*YI4bKKVB[D`hl8J2$&]`y=b1 #ΒI7[b;SGbt3ցkqOh3gxB NU$ Rfds6pQ{j誈hnz>kMJǚ1M2SBr۠yv %]͋ZxNJ lh<"lty`ErjM 0;#T}y?$G u]p5կ@zpX$o8kz$\N k$kd fcs-TkÉa=@gU;GYb,zU{W{ֽ`Ǜp}7~K 1≶` hH:psB'?<堽dVAߋxSYYdnf {K85!5JB+E,""qlajj]]CǕ،ϰl6n‹g OyZQ3J!:9dx0Q^/a(^3_M o1j(`%_V{KR76l0rI&e~iS< ڲ`f-ZI;:$dP> O@Ա˼^q Baq8睳l|dnGӴjIoq1kgLm\ꝘA˗}Cp; lJ{aY`![O1$}w|u4h1 /Jx6r)_:'9̛GbIv$ASG;>l:SOǴx<Mr!|6]dW|+߮l;|?mS_])ۘ'+ܕKaޅͼs1vZI3(DgbW|q11kLw : 6ȉ0B!IK{`(^j qOS1Cх 6A= SQNXR 0mEm' \Jhɾiq{C cDsE"F \@9%+6?eʌ5ג,T7Ʀ(L2~iAdΑK` #g6R L!׺C[틝yApd~n*8bZ7 G0!se"/"I01 ]3>aQyuCUy*Ml/5vM%y6wkIm -BS!3̥)4]AOO7W ?oT]S\\0cЕftJV&s B'2>{tm>:(L+r頭 ,3K:W ubt 1iAy?q]'#4 L5&o煯OIs8O7,pl 1sDrVpV ; $ 3;-]2Ot"ANk'39 d^2\o.J6ca܅0wg~.ݢ~쨗oޠ\|s!4xcp SS, J?ӹ.Q<#o=Lq;JXyu॥AST! 2W11gA1iGNBlCx㿾j38R_P눀,yƫtHk1' i>+ό :M6 t@NJf@UAk@tHcdn4?M'- El 6Aw;Nq2&v}M)KWMjYt]c'F ,Ų?4e]gڛ7w#UH@]ON/h|6%B*mnIU7(v΁7LŢ\<_`_Jz^ĉ?(cW~,qRoY'H(N==W5N[0@ruzpOd1i8)#Cp1乫5˛ huRL1u0jO,ՆYOlrzWᨧfL4}燓;xyhH(xY_`@(oD]7vCxqLKu=B'eި\KˬueEz#ofWRj4?2;*߄O/nN:bT=7RQ-'2\Ak^]0r_VE+0E +(AS`ᣬ!nf{ 6iM@IDgI{jjyzB"LHk%1-I\7fRX)/q%@lB/;ڈ{ J*sy tyjXG3VD⭗\F*ZZ~#/b!Ɯ]AM=-e>Ip(b$ڑkjOyվMl0- !/+9}Db2q>!o[}:G`e:9ϫ0@C"j~tkLlFY+=? OM6\R.J.5䣅UJ Ietkܠ?˧ CPF|qzIW|WwM8:!&)B`h#z"AoVV~Ӟmn*Gwޭt]fܷn["4*2\g}mXQmA[DŽR&y=``xJ#ű3X1 R8^;0ο鬋)uE.mR|* fRV&t_9*P*N*}VBI>9&uڰۯX[wء+2ث $x?|c}~* ވc媭o5&gO`c%×'uYE6FA^$OPpt *ɇ 0֧Mn#bDe9H-#0B:+ WPcsQ1_.d=׷Uh4 6zƉ8LTIi ^L_Œ5RbjKFA|ʣ_5b:hU/qKba6YSHץ~/T_"jTHF}6Q%u%-B*3ϧYMhܶWSnyfxzl{j ``\5jm{RrnIPN5U/f"eY.B?OYV?޶>4Vd(1ğM݉}* 3OX>l:'$v vc~PP(_eOb`-x3uF9OìVjL۬kˠ ӿ{%O8r>ȝAuܦuK  %_l,UqMξFEpc0+yp^ԏ 5 Nca#w@̈́:oŗBGm6oqq˚;c_Zag VmK) hx?p1ߊT/dw+\Kx&((ֽ9ZeS$vbVd@x=Nqr" n.$T-B[@r:: vNOdn 77,~:.lm:¹GvY;?3Y,^mr\nw Yzk~H+6d¶~Ynu)6*+s`1(?FyFP|D*xr~x8ߴZtA'Si}%U OhF(]Doc8'2UPcT$NE@ZXD\/= z#oA9-cK a'sı+&c쾐~Q:k0װD/\#wnvy<ݒyf9O*lK#ƤZY؁e"]8n0;L*R"a Y&na^unbKI*T1ƋM6%JYް)SxV%ӌ8RYrqÛH(ۇg\p8YtLm,,*LNeH}Q`j ]]$9O tզ{UA5o=5ٵⲓ~Q'^{c Kf)3yu\&+"./Y*Y~r F̊mPH 2W#9UpE^ޮQg5X*\'{Gw ,kcte4F- xR}%Ԉ'tZ/ܱE]4Z '唅ZٜU.;XY6]׺`8zzJG2_>!(ڕ׷e@( 1Wc4mۀIw[K><.!&KP~"iH&}G[o>_T($#o%'np5I1m 9,D\^: -G |Ȳ2'][-ASO#@W2 ;Qe؞]5K-lӌ~pRoSLN'X~IA=)UsXh My4ɒU^$[6^e ĩY> J's%o9+*aׇG>4̈u)qEJ0꼙zxN?uٵ+iUJK^1!W;%BVbӟUuhWcgGN]9yaKT +,s\K(vV]6s9=/{@y-A"l PޜSMO_((4h6 A\ 2P RQJ*C }@U(b-dmyHILI:FoCW2#`B<oN#DЈ߾>iGonT/Bޓ&AD +bG}K7ߣ%@y ti`*&ԣb hm00CG,0H2cYl1Csq(+EhF(g2 t4 yr۩_K.NWqQH7!ؙT(⨷2c9a&͆HQ5lm"8R}"ozhv;EG9= F8hJ&F.A%f>m܍_ 04P= 7C$a)O/FVq0y~9/Wx &< $?z8 94]v_P8Go1V llaEKÝCO ~s+dNI 0^ЊQ]:9bjuXޡq~ye_m ™NpM{&~J)"A3 _5MrNE7[}. VXI =.t ɯ=WUL|k6ugjRբՀ]h7J'.<Dڊm܊\!-< }CGwsIW*Q-V\~RS-{ojΪ8!E/h">8zw ܮ(\~ L犾rhbߑXkp_pL4X_~r<[gXlˌJgT̅1El?HЯ*Ɂ,l|º]*g}f BF6O˧ Z@h|_{ YlV/r|4.+Mm5Ys|:|M,نI_Ck7RiLճl@$Ow>躳sK[4_gEjBSioZr9ݑ#Ʉw-~ȏLPj[ 㒓NSc57y#QC)u (Lŧ;×n ^F5 pq_jʸ.^W(wz&pCTOۜ~[Zu Ms@d?M᨜yZmҮNmsPQ4䊔<ߨϽ0;fPB j@?K@, ;NRW})6 g#]>Õh&*+ń~z OLdvBSL^׮fFq !ǰ{A3ی ,*r!1&RCToa$C9d$@.{cfZ3ٛ=sm_S&, =ۀAeqGZZ$UV 1=9tx;1R~4SLA\!L. ͈Z_y`TG'}_Ƙ~BM'jb5t/-֬0Npkwl n *=?Pzֈ_=> !j6 y}&oE"=5<?@ͥz4:ܪ:o(j!Z=/"R;^8J5&80@eJb|2I ud0|ɤ¦귔sBq9lG ܼnBj;Q~&d+~gV'b೎L%ZӳIVxkQt!vUaB^ ʩ1Q `ROqS< Z/p% DKn5 ,0DwrChdTS$O}3ȗ05PT F-=闽$![g@oN>7~ԈMޙk`- 9JIi&ؓGr\1s/roޝw^9;-ktwy ͥMڲE7qtA1c|,cS ~q/tU_< p3_ 3" 7߁IOrMK=#e2}w, yP Y~&A,51xrw(&6ۛ}hfo Djg8"f(d@@mERXCz [DMx+0Uo; aidu6eUe;z])kSԬ֝)d͖k@KjOi>%DfvKB@#?k~%)躝HY Ċ8\(/굖N]J& ŧnbv5'gef#|5q]7jm7>.\ѝۅn]57ԷfO_(R$eW4}u͗yG󵎜K)-h wuwt(sכnLMƬ,"|SG{8q*Wv] ,UmeϡȵrJ,;f#-`gMc7<(zZh¯otj#;!ՔN1{vטoMl"y!L >' wgNfOD"of4*>7=@:0W6%ppRCoXLt/󱦕!np)hm ;KVEħFСP d2+_^n%{L^%bZc$ƌ#{}:-/C (0f%Zb.*1}?16iS*Ұi&bY,J D7xK; ¹ g8_M sƠ1PTJDKM'8AGYT1C rBĉu=ڭT>Dɶ%2,8#f! kx e^kWB,kh/3[#dE Q}KXx:)wpHsjCQz%'"ڑ܃Ex8Y/F|bu!%vT\i!C0F2$fNJ9-Xf̸_ͯ$aprU{hޭLA~Оd Xp!q=Y{2; zoƔ~O A# 쎙 I4Fv/P?keioצԄm>= 'G>ԧI OHȞslHIwŽ>wХݴ6O,4膢!O]]Yn2$ZI|]̦,t,FXIFi_D{ŷ/uRNIqO¯CVj4ck+o/sw-~ ON6[%Ďs{%3~cNEL)T\7*Ǯt4]׆:O~4t #.G.'Ek(q)n?]aUl) 3uV6'۶e#z~v2GʵدZtgȡRx}ftܶoeްG|+X$̋Х i RˇZA +{Wp:,c|z.A( f"IYOTokÌ5wD^bhօh GZcV&Pu/gXn3뢷n Zmiwenי(9=Gohu]YT9%L:%5b eֻK-讋A:7V!hbKUh2RԤ!7 kNuZlcItJ|8HbT(oTOH&ND`-$}p#`/DPHTUp9yJTAl ҹ!Q}Nh˽ѕghj7*R絟Kn,C acLJ؊? EW Z2<3+XyXYߒ zh2dM(xJ  \tѳ|~ lRk6:p@܋ 4+"#i# [/=/4kdZ|𺊱M7#-f]ܱb͙];kv ?mQ]2jL/Yt?Tg_Bd7s+u;/a Frׅ=qV+'DZ'HVG ꡱ9 F?>H);p?P۹{GCՙYuh ,Zt`Ff58mKZ5biG\&֕ 6^mw (znWkT@*1"aAd; ؄ˠ: `o,Hq|6V5QCys c{FMmPP1znQfgOŪ7*Դ H0Խuv oq9.+< 2qѸgoՙV$qUIX{ / ABeÕS$ Fh,n|$[:PUb?Ke_w5h0zc##鄽iIZ &k7wC_r'v=fRx\KM |]|y_4Ah|_ӵ2u3aqj&`6.xr@-m:pc_ڊ$.7M& Ѧn; _AY`͏`FQv]4d鸺ם@mHFUdzIKieLꪧ@!~bdU eZ. \n4 /# Z8PCylؗ'xJøO7u43OB}><*qH,N-vz? d\& AB{S%.~V^(?f<g;erw^?\LW W\[Qk&6崟9/l`^ew7d3=mbg}u7QL_ "uV!|\'nBSa{w/O W9=c!_L.Ve|$jG`'C;}ųWDU4aO}'WNW~5ZB1`lNt8^Y"6~A-<0ms`|,pkgCՀ LA p[a^2 Ffo9/%Ca}k̮ "4NEͿn^GfRvx_3%Q W>;Y٪MN*`zmPHgJ{-MXhc*}-NH;dXJIEriH@\2s|@?o*q={Q#@> Ϳ 5DݑmSrIC0uhVFY&ݷWҎ_JcV( qJ{&ӛ|Ȇ@ N |˥DGkx2f01yì':I2N󐅝>ӿxšl;"yycG>QAFZh_&']PlQVUX3^ [aTg!Z,yMônN#Ȧ`Lj2=&\U-?C0KKC!Tlm`fE 0;d ՜r(g$0g@KZZoZVAqNt:0Ʊ-/ 1(sxhCp#mbn ߅C=o0F 6+q%kuR4Nhlj k#'j݅6yV*6f0OX,C=}p'PiU1GwH_'BpI=0=oݭ (Le8 \sH{S;P ,9LED y|A^\`d-L¾SQϒhx섂c̒Hs 'M_m}`&ey&bj @R2̰['YZJ=Li۫^nUImTw}6rg&~oF!xʠ8:#FNtRjX$w wڊ`픵E (1m*/+dhw?LرJͪbys_HoV"Ɇp`]vu!?YJ.] iaG4_['j&(3X('!vW)6+ǨA$7t+*d? T|j*[5RGc 2taIuD K{b =N.} r3!t݇"gxxG!Fo 1:E$:(-v !VQ,rGQ_]ScFOtb9Fy5QSMHՐO6NLNET3T-@!=FI,#4x>M(aM )BfE;;ƌ-6~4szX=%K2:b}*Zޮ-э@_5:V&L58iiSd|tGB [^Ay2<%xȅƄx+*=ԕ>,nQ FoC/J8h_ogwkJ!rZt3I{E9Qf" +@鷟M8^k`:I%-lg[?emq91 o;àNTda!WE;it G?>~-՞x7'Ȫ,ud3@n(^ :ZY-hpZ'^Ӈ|K"el40'7b.|3cy"0oSGdsvkEԘ<ꟁf,n?0Eςb3?ĬByQa&M?i$F: wL HCHD0c=8X^g!u+"LPQf'{t6cK>on~w'Go-Ty(1s9BٟXGQ.\K3J.;T*JU?BUMDUύ}?\8/3,EJT|0G`(>j&J &e@ 3ڒAS5_2vipdh։5 Ak~Ec8%Qu8Q <þ")iU_d$=V_wjcqu>D#m&Ⅿ~ $c )m PeZM\ Hw6%T"2זSMvmRytb}D[HjuS: }֪(f}s1mjfϗV@K[r/c^2gd(ҨVU(?ؤGN"~L[D={K/,r6oQSXv&pfd. CECVcK@xc+Bܲv_KJFŐt#zЀae $ 8~ IY‹_46[RG{aM<@ (]<&^mF̾Z ?}UCi@l; Z $nׅmi1B{D@uEK|>iۮكK;u=zzNÄ:0 q PNwXub{MƪM9>;(4Ɋ> >"8iaCЇ( #* `3x[;TƷ#_=+jPx4޳W=[z[.P3BWo 0C%&Zۗ9uuˤ!y[ǵ x$5Ba]CVVni;񰽸2Fb\: x. mR.( 0~*Eڪ0W`+;yjX%8)̅;:q^Ҩo ;Ԃu]&Lz;KwaE@̍KݑܹT!GtEFu@ceɖx~ O# i^1^'bWv}AY+ v(rIG  eEDsl%PÙX_-~x)ԛZ( k5Z 7)6~ӦKTJTԤe_Ԝ8[%$Q"vՍy[E H|^/}'DhtN4M 8m#쥦̶JSM wB^ɨ~dF~]VgH#9p׼'( 5lNGm#@Fվ?=tc`qiGr6ƌt%x0UZ?EI N+鵷Bݷ,Xsd'cWxg]Tx;c>6΢¹%_ C; %Tk6t5N9f9S#ۍj.;36+/хLĴcVuF>DLj^A=TE3΍eAڔh?y*YzjzvQj0T5|LrNB oVX;e@!̴bepE`KV`v"ɟcŦL]yD5e>i1ϹnCz^J̏";`&r8eZ3ƼN΀;29I9q`k# 쀶I#k]þAt[/Ya2S8}5wnyٺn u,9Br%d 3Ͷs۞ExS/,\4o1aG-"SpwȢ!7ը lA<09اqaV&W!>=]VQDX41͇>x3TѿdݑhLU 1aL5]WO9! G(26x$ܮ}\,ʤU:+DO!_l/O=^i")Ė'!Gz :xH?LJ`KI35@\EːvQj{k A`]B>nQNM^֥RzM |58{Q& ~9E$,Q"𔢼E7|xF  [كzq?u qVr$1 Tp6EN*j HU&S +883Q o[S]E) ڶǾc2Kwc`,֕Lu)mLFvtbҰi^D-5 fX,08}(%ڝh/bp& ɿX>OBN6jy+S1A#] qҕpXxvOEbjk!h@I| D AFx_e8Eĸsz %ifnujQTsQVO B'.U2Uk>J;& TIEvtoojl6%X͝ c8T25$t^l[8Il t0Eg9֪08OԝExk 1;0mpڌ$2'6?wtu2g&e6hKxR.'v-z5WxO v^2ݬD}Ĵ]; Y2^qG"UP:VU&cZ/QO6n8h0<պf.6`cggqk\=~^+^;Ƈ`_ p'U v\wф7ߗLiu&VW}F,QdDn<یx|8+G>K31Ebj8ƍ~YuAw&;G"ۀ^mT혗qxmz5Uq*B.NC-x}V؉O[dfiGi &RT7jl;nx`8Bw49  q- euNn.ԏ8޴dɨ)28W\{k}"Oƫ} 6G6l0{3*85ncy8gP@ t6mp$;cd}.:,U/y8 2J2&C]ԋ╓9;MX5`!9t_`Q\uR ExVށAatƁEnSic 5j);"EY:H&H4iM 2܀nEL93ԯ}!婿 b/L tnN.U}Ԉ1+/<Q_eᐯg-:B2F%£ls_(]TW7}L ʘ1v wGY2rfkbk2׳~h[:zVR/i}4'Eq+ޤbm@9g.E9@DsI?+k }*}ߢ;gg)FU4Yc*/s>Ggcvf뜱+ɄgD=>c_L1 [jv=_g jB2Uyǘ),C|Vm0fu" k> 15Wp[\ݸ"&BMꪧl$3S^ (`X|~$d#Py]J!s=JvZfipbYPBw csMWgz0p@:!չ*7NKpd{yߘzf"zrh}]I^#Xhї8ӬC%Y؍OpgsO+Q~Yqh,4QH  ~K vs f4ɍ"ܾ:m@W\|-` Qry"p/kff5"~k&12g"!*Jj!q.T#V-R4 Oo׋,(P^# Ր2ieA0s7o} ['['0gp_b]bNG$.beZgyg9Y8=YIZК 1N<~U2OIRGMGӪXsؠrR⊘lO[qD 6Q([ xXJ:fqc?TԚԵGQ I"b_H[7ȋbd!Uŀ$h!EujzbbEs4ԉuZq:.8cqxBךڞT62e>vXF/# Fd$}cw ;qsVycxD/kj-b'3SQ7p p`(o;d] ȵ")w&S!EpMAIѩfmA;<^~:Ըz)ٟht a4hpDew)~ ol H-_Aޤol13ܥ>XnxTFCբ0˵q4ōlǶZd#s虧DqmpOq;8ƺk72YRu=g!nݗ:V_5|~eҲ%"JVFA^S>7*=Y'ٞ{9nە>˶tnzFˣ@S 1}_z@M@n4z+xHcu4C&_J@8|GneDJ=H|/xP֡5)q"'JP,=nI۽QM)퀷[_6%+.ggzxaRgh~(ע8ة\-sqpP(KCq#K8yw*Nzm&6 ^K~?KG;hT@-зԓeU:Xe saqo;]ʛQi{N'κ7+=<NU1o`eY-[؅.DaNI``Jb^U1eňkrM0k: 4 NW۹$4bħR:Keq3 >}Ib';yd?_bGxAR-ş 22 ;}7> =4>5c+Hƃ IdvtﺛIe*-6-RHS3TM PX9hs祿.,s}I,.99sbA#އl[xfiDMM-p ۙ !4H)lsIH{y G?˅O1-޻ԩSjT4l'ΠB4T [Ս7ۤؗfxa$-xTGX:=P0L#rq6v҈$r2X˚+UE E8Imzɕw_eVXDLҍ٧OS# EkÊ(&U8Dc$sRYPT*QV ]9D1!^g`ᑇeUkPUSnUm O,؁|SϐB` %$z[[XMk%g#%T p8f)AN`F1Z픀|m1ډO7>l"g[X))_&{1Wk{-p13X)f  iܐ>1O;r[KZ-QײypJj#v HobƝq snۋģB uHF ݁-h y9\9J/ \ fm+ 6Ù$^e u=f+lgjF`b'ߚꀉC}3;^.`ZrH49aj 0_T3m;CQ[̼$|W;A80oYP@ rBeve4l؜?`[:xǘ;xZ-]EPz6j]`y@F.7RMK갩F#J;˴mmGHQ#<.)1-8ۏ CZʆ11rE, -iz+x-W-/ju Cgҟ!N8Au5!cBD[̈|#`lGPX^VWN{Vt6ٔA*rlA/ bܚݺK>WI''WoL;0\HH'6$G5E zw~e?ov*4HRevb'Dt)R^N\kIDpz.񱶆=Wqu߰nX8l&UCߕ[9b p ($ `4_,n#Jvur`V3dec-&P H<d$1+ ިI*r-}Up:>_(l@'S 5 <4;m;PU"4'K*Evpbn4rT2c,y9$PqtBʸ~l*=hUGRV3`yIѽQ.[,ʌOH5_n&'N= >