������libldap-2_4-2-2.4.46-150600.25.3.1����������������������������������������������������������������<���>�������,���������������������������������������������������0�����iXHp9|��1�#AӾ3X��m^
i�5�/#ErV+f}#([XG1w!in7w+wd"7Ͱ��Ʈ˯pJcR ��Ϥ��U3j��t0 {IlwNA.wջ�h�-(8�)#E9-[_Z�Q�4C}>:bU����.ԠÛ��(rYr?6�Bc�?Y빏hE�LˮOH�K~�!#-(7�vL�0
n�����>��������������������@��]8���?������](�������d��������������������������������������������������������������� ���%���������� ���?��������������t��������������x�������������������������������������������������������������������������������� ��������������������������������#��������������)���������������4���������������D������� �������L�������
�������T���������������d����������������������
�����������������������(���������������<���������������P���������������x���������������������������������������������$����������������������(��������������8����������C���9����������C���:������
���C���>������X�������@������X�������F������X�������G������Y��������H������Y��������I������Y$�������X������Y(�������Y������Y8�������\������Yd�������]������Yt�������^������Y�������b������Y�������c������Z{�������d������Z�������e������[��������f������[��������l������[ �������u������[��������v������[,�������w������\t�������x������\�������y������\���
���z������\�������������\�������������\�������������\�������������]$����C�libldap-2_4-2�2.4.46�150600.25.3.1�OpenLDAP Client Libraries�This package contains the OpenLDAP client libraries.�iXHibs-power9-22���� � SUSE Linux Enterprise 15�SUSE LLC �OLDAP-2.8�https://www.suse.com/�Productivity/Networking/LDAP/Clients�http://www.openldap.org�linux�ppc64le�����������h���������������iWiX7iWiX7�983271ae582b45368b65b7e68afb17e5caaad5537c2cf08a712e26d99bcc86dd��36c12b1a7982f1516edff22c80c7bf75ef0c71d121626a365702acf5693eafb4�liblber-2.4.so.2.10.9��libldap_r-2.4.so.2.10.9������������������root�root�root�root�root�root�root�root�openldap2-2.4.46-150600.25.3.1.src.rpm��liblber-2.4.so.2()(64bit)�libldap-2_4-2�libldap-2_4-2(ppc-64)�libldap_r-2.4.so.2()(64bit)�������������@���@���@���@���@���@�������@���@���@����
���
���
���
/sbin/ldconfig�/sbin/ldconfig�libc.so.6()(64bit)�libc.so.6(GLIBC_2.17)(64bit)�libc.so.6(GLIBC_2.34)(64bit)�libcrypto.so.3()(64bit)�libcrypto.so.3(OPENSSL_3.0.0)(64bit)�liblber-2.4.so.2()(64bit)�libldap-data�libsasl2.so.3()(64bit)�libssl.so.3()(64bit)�libssl.so.3(OPENSSL_3.0.0)(64bit)�rpmlib(CompressedFileNames)�rpmlib(FileDigests)�rpmlib(PayloadFilesHavePrefix)�rpmlib(PayloadIsXz)���������2.4.46-150600.25.3.1����3.0.4-1�4.6.0-1�4.0-1�5.2-1�4.14.3��idZ@du@bx@bu
bX�b;�b;�b4t@b/.@b�[@``KW`/@`+_@_�@_/@_FN_?@^�^^*@]B@\ڭ\r@[H[@[vZ�@Za@Z@ZZ.s@Z�@Y*@Y*@Y@Y@YYp@Yf�@Y7Y6@X@X7@X$a@X�Wk@WbW;�VVɦVŲ@VŲ@V@V@V@V�@Vf@V^@V\:@V�@V
@U4@T@Tuwilliam.brown@suse.com�william.brown@suse.com�william.brown@suse.com�william.brown@suse.com�william.brown@suse.com�william.brown@suse.com�william.brown@suse.com�william.brown@suse.com�william.brown@suse.com�william.brown@suse.com�william.brown@suse.com�william.brown@suse.com�william.brown@suse.com�william.brown@suse.com�william.brown@suse.com�william.brown@suse.com�william.brown@suse.com�william.brown@suse.com�william.brown@suse.com�william.brown@suse.com�william.brown@suse.com�william.brown@suse.com�william.brown@suse.com�william.brown@suse.com�william.brown@suse.com�varkoly@suse.com�varkoly@suse.com�ckowalczyk@suse.com�ckowalczyk@suse.com�zsolt.kalmar@suse.com�zsolt.kalmar@suse.com�michael@stroeder.com�fvogt@suse.com�michael@stroeder.com�rbrown@suse.com�jengelh@inai.de�mrueckert@suse.de�michael@stroeder.com�michael@stroeder.com�michael@stroeder.com�michael@stroeder.com�michael@stroeder.com�hguo@suse.com�hguo@suse.com�jengelh@inai.de�kukuk@suse.com�hguo@suse.com�hguo@suse.com�jengelh@inai.de�hguo@suse.com�hguo@suse.com�hguo@suse.com�jengelh@inai.de�hguo@suse.com�lmuelle@suse.com�hguo@suse.com�mpluskal@suse.com�michael@stroeder.com�hguo@suse.com�michael@stroeder.com�hguo@suse.com�hguo@suse.com�hguo@suse.com�hguo@suse.com�hguo@suse.com�rguenther@suse.com�jengelh@inai.de�- jsc#PED-15735 - expose ldap_log.h in -devel
* 0246-Include-ldap_log.h-in-devel.patch
- retcon .changes to satisfy source validator�- bsc#1212260 - crash in libldap when non-ldap data responds
* 0245-ITS-9803-Drop-connection-when-receiving-non-LDAP-dat.patch�- bsc#1211795 - CVE-2023-2953 - Null pointer deref in ber_memalloc_x
* 0244-ITS-9904-ldif_open_url-check-for-ber_strdup-failure.patch�- bsc#1198341 - Prevent memory reuse which may lead to instability
* 0243-Change-malloc-to-use-calloc-to-prevent-memory-reuse-.patch�- bsc#1199240 - CVE-2022-29155 - Resolve sql injection in back-sql
* 0242-ITS-9815-slapd-sql-escape-filter-values.patch�- bsc#1191157 - Correct version specification in ppolicy to allow
submission to SP3 for TLS1.3�- bsc#1191157 - allow specification of max/min TLS version with TLS1.3
* 0239-ITS-9422-Update-for-TLS-v1.3.patch
* 0240-ITS-9518-add-LDAP_OPT_X_TLS_PROTOCOL_MAX-option.patch
* 0241-TLS-set-protocol-version.patch�- bsc#1197004 - libldap was able to be out of step with openldap in
some cases which could cause incorrect installations and symbol
resolution failures. openldap2 and libldap now are locked to their
related release versions.�- jsc#PM-3288 - restore CLDAP functionality in CLI tools�- Revert jsc#PM-3288 - CLDAP ( -DLDAP_CONNECTIONLESS ) due to regression
reporting is bsc#1197004 causing SSSD to have faults.�- jsc#PM-3288 - restore CLDAP functionality in CLI tools�- bsc#1187210 - Resolve bug in the idle / connection TTL timeout
implementation in OpenLDAP.
* 0231-ITS-9468-Added-test-case-for-proxy-re-binding-anonym.patch
* 0232-ITS-9468-back-ldap-Return-disconect-if-rebind-cannot.patch
* 0233-ITS-9468-removed-accidental-unicode-characters.patch
* 0234-ITS-9468-documented-that-re-connecting-does-not-happ.patch
* 0235-ITS-9468-summarize-discussion-about-rebind-as-user.patch
* 0236-ITS-9468-fixed-typos.patch
* 0237-ITS-9468-always-init-lc_time-and-lc_create_time.patch
* 0238-ITS-9468-do-not-arm-expire-timer-for-connections-tha.patch�- bsc#1182791 - improve proxy connection timout options to correctly
prune connections.
* 0225-ITS-8625-Separate-Avlnode-and-TAvlnode-types.patch
* 0226-ITS-9197-back-ldap-added-task-that-prunes-expired-co.patch
* 0227-ITS-9197-Increase-timeouts-in-test-case-due-to-spora.patch
* 0228-ITS-9197-fix-typo-in-prev-commit.patch
* 0229-ITS-9197-Fix-test-script.patch
* 0230-ITS-9197-fix-info-msg-for-slapd-check.patch�- bsc#1182408 CVE-2020-36230 - an assertion failure in slapd in the
X.509 DN parsing in decode.c ber_next_element, resulting in denial
of service.
* 0220-ITS-9423-ldap_X509dn2bv-check-for-invalid-BER-after-.patch
- bsc#1182411 CVE-2020-36229 - ldap_X509dn2bv crash in the X.509 DN
parsing in ad_keystring, resulting in denial of service.
* 0222-ITS-9425-add-more-checks-to-ldap_X509dn2bv.patch
- bsc#1182412 CVE-2020-36228 - integer underflow leading to crash
in the Certificate List Exact Assertion processing, resulting in
denial of service.
* 0223-ITS-9427-fix-issuerAndThisUpdateCheck.patch
- bsc#1182413 CVE-2020-36227 - infinite loop in slapd with the
cancel_extop Cancel operation, resulting in denial of service.
* 0224-ITS-9428-fix-cancel-exop.patch
- bsc#1182416 CVE-2020-36225 - double free and slapd crash in the
saslAuthzTo processing, resulting in denial of service.
* 0218-ITS-9412-fix-AVA_Sort-on-invalid-RDN.patch
- bsc#1182417 CVE-2020-36224 - invalid pointer free and slapd crash
in the saslAuthzTo processing, resulting in denial of service.
* 0217-ITS-9409-saslauthz-use-slap_sl_free-in-prev-commit.patch
* 0216-ITS-9409-saslauthz-use-ch_free-on-normalized-DN.patch
- bsc#1182415 CVE-2020-36226 - memch->bv_len miscalculation and slapd
crash in the saslAuthzTo processing, resulting in denial of service.
* 0219-ITS-9413-fix-slap_parse_user.patch
- bsc#1182419 CVE-2020-36222 - assertion failure in slapd in the
saslAuthzTo validation, resulting in denial of service.
* 0213-ITS-9406-9407-remove-saslauthz-asserts.patch
* 0214-ITS-9406-fix-debug-msg.patch
- bsc#1182420 CVE-2020-36221 - slapd crashes in the Certificate Exact
Assertion processing, resulting in denial of service (schema_init.c
serialNumberAndIssuerCheck).
* 0212-ITS-9404-fix-serialNumberAndIssuerCheck.patch
* 0221-ITS-9424-fix-serialNumberAndIssuerSerialCheck.patch
- bsc#1182418 CVE-2020-36223 - slapd crash in the Values Return Filter
control handling, resulting in denial of service (double free and
out-of-bounds read).
* 0215-ITS-9408-fix-vrfilter-double-free.patch�- bsc#1182279 CVE-2021-27212 - an assertion failure in slapd can occur
in the issuerAndThisUpdateCheck function via a crafted packet,
resulting in a denial of service (daemon exit) via a short timestamp.
This is related to schema_init.c and checkTime.
* patch: 0211-ITS-9454-fix-issuerAndThisUpdateCheck.patch�- bsc#1178909 CVE-2020-25709 CVE-2020-25710 - Resolves two issues
where openldap would crash due to malformed inputs.
* patch: 0209-ITS-9383-remove-assert-in-certificateListValidate.patch
* patch: 0210-ITS-9384-remove-assert-in-obsolete-csnNormalize23.patch�- bsc#1179503 - fix proxy retry binds to a remote server
* patch: 0208-ITS-9400-back-ldap-fix-retry-binds.patch�- bsc#1178387 (CVE-2020-25692) - unauthenticated remote denial of
service due to incorrect validation of modrdn equality rules.
* patch: 0207-ITS-9370-check-for-equality-rule-on-old_rdn.patch�- bsc#1175568 CVE-2020-8027
openldap_update_modules_path.sh has a number of issues in it's
design that lead to security issues. This file has been removed,
from the package, and the %post execution of the install. The
function is replaced by /usr/sbin/slapd-ldif-update-crc and
/usr/lib/openldap/fixup-modulepath, through the addition of the
source files:
* fixup-modulepath.sh
* slapd-ldif-update-crc.sh
* update-crc.sh�- bsc#1174154 - CVE-2020-15719 - This resolves an issue with x509
SAN's falling back to CN validation in violation of rfc6125.
* 0206-openldap-tlso-use-openssl-api-to-verify-host.patch�- bsc#1172704 - Change DB_CONFIG to root:ldap permissions.
- bsc#1172698 (CVE-2020-8023) - local priv esc via start script
chown -R on olcdbdirectory path. Remove chown -R on start to
resolve.�- bsc#1170771 (CVE-2020-12243) - recursive filters may crash server
* patch: 0205-bsc-1170771-limit-depth-of-nested-filters.patch�- bsc#1158921 libldap-data should be requires, not recommends to help
prevent user confusion around configuration ownership.�- bsc#1143194 (CVE-2019-13565) - ssf memory reuse leads to incorrect
authorisation of another connection, granting excess connection rights (ssf).
* patch: 0201-ITS-9052-zero-out-sasl_ssf-in-connection_init.patch
- bsc#1143273 (CVE-2019-13057) - rootDN of a backend may proxyauth
incorrectly to another backend, violating multi-tenant isolation.
* patch: 0202-ITS-9038-restrict-rootDN-proxyauthz-to-its-own-DBs.patch
* patch: 0203-ITS-9038-Update-test028-to-test-this-is-enforced.patch
* patch: 0204-ITS-9038-Another-test028-typo.patch�- bsc#1111388 - incorrect post script call causes tmpfiles create not to
be run.�- bsc#1114845 - broken shebang line in openldap_update_modules_path.sh
- fix the script�- Emergency fix: move tmpfiles_create post from the library package
to the main package's post script, which ships the tmpfiles.d
configuration. Fixes the post script of the library (-p
/sbin/ldconfig does not allow more statements in the script).
- bsc#1111388 openldap and /var/lib/ldap/DB_CONFIG* (transactional-update)
* source: openldap2.conf
- Added a patch to let slapd return the uniqueness check filter
used before constraint violation to the client.
Fixed broken memory handling in affecting error response of slapo-unique
ITS#8866 slapo-unique to return filter used in diagnostic message
* patch: 0001-ITS-8866-slapo-unique-to-return-filter-used-in-diagn.patch
- Don't require systemd explicit, spec file can handle both cases
correct and in containers we don't have systemd.�- Fix CVE-2017-17740: when both the nops module and the memberof
overlay are enabled, attempts to free a buffer that was allocated
on the stack
* patch: 0017-Fix-segfault-in-nops.patch
(bsc#1073313)�- Fix slapd segfaults in mdb_env_reader_dest
with patch 0016-Clear-shared-key-only-in-close-function.patch
(bsc#1089640)�- bsc#1085064 Packaging issues have been discovered around the
openldap_update_modules_path.sh which has been corrected:
- the spec file was wrongly configured, therefore the script has
never been called
- the script should create the symlinks first, as slapcat is
useless on a system which is already affected.�- bsc#1085064 Add script "openldap_update_modules_path.sh" which
which removes the configuration item olcModulePath in cn=config
which is after upgrade from SLE12 to SLE15 holds inappropriate
information. If the cn=config is being used on a system, the
conflicting items in slapd.conf are ignored, despite of it, the
backend DB configuration section has been also commented out in
the default slapd.conf.
In case of correct cn=config (the olcModulePath has been already
removed), the script stops without touching anything.�- Upgrade to upstream 2.4.46 release
- removed obsolete back-port patches:
* 0013-ITS-8692-let-back-sock-generate-increment-line.patch
* 0016-ITS-8782-fix-cancel-memleak.patch
OpenLDAP 2.4.46 Release (2018/03/22)
Fixed libldap connection delete callbacks when TLS fails to start (ITS#8717)
Fixed libldap to not reuse tls_session if TLS hostname check fails (ITS#7373)
Fixed libldap cross-compiling with OpenSSL 1.1 (ITS#8687)
Fixed libldap OpenSSL 1.1.1 compatibility with BIO_method (ITS#8791)
Fixed libldap MozNSS CA certificate hash matching (ITS#7374)
Fixed libldap MozNSS with PEM certs when also using an NSS cert db (ITS#7389)
Fixed libldap MozNSS initialization (ITS#8484)
Fixed libldap GnuTLS with GNUTLS_E_AGAIN (ITS#8650)
Fixed libldap memory leak with cancel operations (ITS#8782)
Fixed slapd Eventlog registry key creation on 64-bit Windows (ITS#8705)
Fixed slapd to maintain SSF across SASL binds (ITS#8796)
Fixed slapd syncrepl deadlock when updating cookie (ITS#8752)
Fixed slapd syncrepl callback to always be last in the stack (ITS#8752)
Fixed slapd telephoneNumberNormalize when the value is spaces and hyphens (ITS#8778)
Fixed slapd CSN queue processing (ITS#8801)
Fixed slapd-ldap TLS connection timeout with high latency connections (ITS#8720)
Fixed slapd-ldap to ignore unknown schema when omit-unknown-schema is set (ITS#7520)
Fixed slapd-mdb with an optimization for long lived read transactions (ITS#8226)
Fixed slapd-meta assert when olcDbRewrite is modified (ITS#8404)
Fixed slapd-sock with LDAP_MOD_INCREMENT operations (ITS#8692)
Fixed slapo-accesslog cleanup to only occur on failed operations (ITS#8752)
Fixed slapo-dds entryTTL to actually decrease as per RFC 2589 (ITS#7100)
Fixed slapo-syncprov memory leak with delete operations (ITS#8690)
Fixed slapo-syncprov to not clear pending operation when checkpointing (ITS#8444)
Fixed slapo-syncprov to correctly record contextCSN values in the accesslog (ITS#8100)
Fixed slapo-syncprov not to log checkpoints to accesslog db (ITS#8607)
Fixed slapo-syncprov to process changes from this SID on REFRESH (ITS#8800)
Fixed slapo-syncprov session log parsing to not block other operations (ITS#8486)
Build Environment
Fixed Windows build with newer MINGW version (ITS#8697)
Fixed compiler warnings and removed unused variables (ITS#8578)
Contrib
Fixed ldapc++ Control structure (ITS#8583)
Documentation
Delete stub manpage for back-ldbm (ITS#8713)
Fixed ldap_bind(3) to mention the LDAP_SASL_SIMPLE mechanism (ITS#8121)
Fixed ldap.conf(5) to note SASL_MECH/SASL_REALM are no longer user-only (ITS#8818)
Fixed slapd-config(5) typo for olcTLSCipherSuite (ITS#8715)
Fixed slapo-syncprov(5) indexing requirements (ITS#5048)�- Use %license (boo#1082318)�- added 0016-ITS-8782-fix-cancel-memleak.patch�- Replace references to /var/adm/fillup-templates with new
%_fillupdir macro (boo#1069468)�- Add openldap-r-only.dif so that openldap2's own tools also
link against libldap_r rather than libldap.
- Make libldap equivalent to libldap_r (like Debian) to avoid
crashes in threaded programs which unknowingly get both
libraries inserted into their process image.
[rh#1370065, boo#996551]�- use existing groups instead of inventing new ones�- added 0012-ITS8051-sockdnpat.patch�- updated 0014-ITS-8714-Send-out-EXTENDED-operation-message-from-back-sock.patch�- Added OpenLDAP new feature implementing OpenLDAP ITS#8714
0014-ITS-8714-Send-out-EXTENDED-operation-message-from-back-sock.patch�- added overlay trace to package openldap2-contrib�- Upgrade to upstream 2.4.45 release
- removed obsolete 0010-Enforce-minimum-DH-size-of-1024.patch
and 0012-use-system-wide-cert-dir-by-default.patch
- added 0013-ITS-8692-let-back-sock-generate-increment-line.patch
for supporting modify increment operations with back-sock
- added overlay addpartial to package openldap2-contrib�- Remove legacy daemon control that was used to migrate from SLE 11
to 12. (bsc#1038405)�- There is no change made about the package itself, this is only
copying over some changelog texts from SLE package:
- bug#976172 owned by hguo@suse.com: openldap2 - missing
/usr/share/doc/packages/openldap2/guide/admin/guide.html
- bug#916914 owned by varkoly@suse.com: VUL-0: CVE-2015-1546:
openldap2: slapd crash in valueReturnFilter cleanup
- [fate#319300](https://fate.suse.com/319300)
- [CVE-2015-1545](http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1545)
- bug#905959 owned by hguo@suse.com: L3-Question: Are multiple
"Connection 0" in a Multi Master setup normal ?
- [CVE-2015-1546](http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1546)
- bug#916897 owned by varkoly@suse.com: VUL-0: CVE-2015-1545:
openldap2: slapd crashes on search with deref control and empty attr list�- Drop binutils requirement; the code using /usr/bin/strings has
been dropped in openSUSE:Factory/openldap2 revision 112.�- Remove superfluous insserv PreReq.�- Introduce patch 0012-use-system-wide-cert-dir-by-default.patch
to let OpenLDAP read system wide certificate directory by
default and avoid hiding the error if user specified CA location
cannot be read (bsc#1009470).�- Add more details in the comments of slapd.conf concerning
file permission and StartTLS capability.�- Test for user/group existence before trying to add them.
Summary spello update.�- Move schema files into tarball addonschema.tar.gz:
ldapns.ldif ldapns.schema rfc2307bis.ldif rfc2307bis.schema
yast.ldif yast.schema
- Package previously missing schema files in LDIF format:
amavisd-new.ldif dhcp.ldif dlz.ldif dnszone.ldif samba3.ldif
sudo.ldif suse-mailserver.ldif (bsc#984691)
- Fix a minor issue in schema2ldif script that led to missing
attribute in the generated LDIF.�- Enable build flag LDAP_USE_NON_BLOCKING_TLS to fix bsc#978408.�- Move ldap.conf into libldap-data package, per convention.�- Move ldap.conf out of shlib package again, they are not allowed
there for obvious reasons (conflict with future package).�- Build password strength enforcer as an implementation of ppolicy
password checker, introducing:
ppolicy-check-password-1.2.tar.gz
ppolicy-check-password.Makefile
ppolicy-check-password.conf
ppolicy-check-password.5
0200-Fix-incorrect-calculation-of-consecutive-number-of-c.patch
(Implements fate#319461)�- Remove redundant -n openldap2- package name prefix.�- Remove openldap2-client.spec and openldap2-client.changes
openldap2.spec now builds client utilities and libraries.
Thus pre_checkin.sh is removed.
- Move ldap.conf and its manual page from openldap2-client package
to libldap-2_4-2 package, which is more appropriate.
- Use RPM_OPT_FLAGS in build flags.
- Macros dealing with old/unsupported distributions are removed.
- Remove 0002-slapd.conf.dif and install improved slapd.conf from
new source file slapd.conf.
- Install slapd.conf.olctemplate to assist in preparing slapd.d
for OLC.
- Be explicit in sysconfig that by default openldap will use
static file configuration.
- Add the following schemas in LDIF format:
* rfc2307bis.ldif
* ldapns.ldif
* yast.ldif
- Other minor clean-ups in the spec file.�- Use optflags when building�- Upgrade to upstream 2.4.44 release with accumulated bug fixes.
- Specify source with FTP URL
- Removed obsolete 0012-openldap-re24-its8336.patch�- Relabel patch 0011-Enforce-minimum-DH-size-of-1024.patch
into 0010-Enforce-minimum-DH-size-of-1024.patch�- Upgrade to upstream 2.4.43 release with accumulated bug fixes.
- Still build on SLES12
- Loadable backend and overlay modules are now installed
into arch-specific path %{_libdir}/openldap
- All backends and overlays as modules for smaller memory footprint
on memory constrained systems
- Added extra package for back-sock
- Consequent use of %{_rundir} everywhere
- Rely on upstream ./configure script instead of any other
macro foo
- Dropped linking with libwrap
- Dropped 0004-libldap-use-gethostbyname_r.dif because this
work-around for nss_ldap is obsolete
- New sub-package openldap2-contrib with selected contrib/ overlays
- Replaced addonschema.tar.gz with separate schema sources
- Updated ldapns.schema from recent slapo-nssov source tree
- Added symbolic link to slapd executable in /usr/sbin/
- Added more complex example configuration file
/etc/openldap/slapd.conf.example
- Set OPENLDAP_START_LDAPI="yes" in /etc/sysconfig/openldap
- Set OPENLDAP_REGISTER_SLP="no" in /etc/sysconfig/openldap
- Added patch for OpenLDAP ITS#7796 to avoid excessive
"not index" logging:
0011-openldap-re24-its7796.patch
- Replaced openldap-rc.tgz with single source files
- Added soft dependency (Recommends) to cyrus-sasl
- Added soft dependency (Recommends) to cyrus-sasl-devel
to openldap2-devel
- Added patch for OpenLDAP ITS#8336 (assert in liblmdb):
0012-openldap-re24-its8336.patch
- Remove obsolete patch 0001-build-adjustments.dif�- Introduce patch 0010-Revert-Revert-ITS-8240-remove-obsolete-assert.patch
to fix CVE-2015-6908. (bsc#945582)
- Introduce patch 0011-Enforce-minimum-DH-size-of-1024.patch
to address weak DH size vulnerability (bsc#937766)�- Introduce patch 0009-Fix-ldap-host-lookup-ipv6.patch
to fix an issue with unresponsive LDAP host lookups in IPv6 environment.
(bsc#955210)�- Remove OpenLDAP 2.3 code and patches from build source.
Compatibility libraries for OpenLDAP 2.3 are built in package:
compat-libldap-2_3-0
Removed source files:
openldap-2.3.37-liblber-length-decoding.dif
openldap-2.3.37-libldap-ntlm.diff
openldap-2.3.37-libldap-ssl.dif
openldap-2.3.37-libldap-sasl-max-buff-size.dif
openldap-2.3.37-libldap-tls_chkhost-its6239.dif
openldap-2.3.37-libldap-gethostbyname_r.dif
openldap-2.3.37-libldap-suid.diff
openldap-2.3.37.dif
openldap-2.3.37-libldap-ld_defconn-ldap_free_connection.dif
openldap-2.3.37-libldap-ldapi_url.dif
openldap-2.3.37.tgz
openldap-2.3.37-libldap-utf8-ADcanonical.dif
README.update
check-build.sh�- Upgrade to upstream 2.4.42 release with accumulated bug fixes.�- Upgrade to upstream 2.4.41 release with accumulcated bug fixes and stability improvements.
* Add patch 0008-In-monitor-backend-do-not-return-Connection0-entries.patch
* Remove already applied patch 0008-ITS-7723-fix-reference-counting.patch
* Remove already applied patch 0009-gcc5.patch
(Implements fate#319301)�- Add 0009-gcc5.patch to pass -P to the preprocessor in configure checks
for Berkeley DB version�- binutils is required for "strings" utility invocation in %pre
[bnc#904028]
- Remove SLE10 definitions�/sbin/ldconfig�/sbin/ldconfig�ibs-power9-22 1772574792�����������������������������������������������������2.4.46-150600.25.3.1�2.4.46-150600.25.3.1������������������liblber-2.4.so.2�liblber-2.4.so.2.10.9�libldap_r-2.4.so.2�libldap_r-2.4.so.2.10.9�/usr/lib64/�-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -g�obs://build.suse.de/SUSE:Maintenance:43001/SUSE_SLE-15-SP6_Update/703d1ce4b578893dad664f092afc9ecd-openldap2.SUSE_SLE-15-SP6_Update�drpm�xz�5�ppc64le-suse-linux������������������ELF 64-bit LSB shared object, 64-bit PowerPC or cisco 7500, version 1 (SYSV), dynamically linked, BuildID[sha1]=cc78454cf8e2dcca800a745cb3143dfaed40e7b0, stripped�ELF 64-bit LSB shared object, 64-bit PowerPC or cisco 7500, version 1 (SYSV), dynamically linked, BuildID[sha1]=086e0d57f5be2026fefd924632ca1061d9247ec9, stripped���������������������������������
P���R���R���P���R���R���R���R���R���R�� R��
R���R���Iu%
s�Hs����utf-8�b144b3c299feb7de702c92feaaafd2a301356e21a93d942609454673c9556505���������?���������7zXZ��
���!�����t/w]�"��k%+ïn���tV��/|UCme:/BAHl>=�?z۠{:�9<(�ɩ)Uց�>z8`w*`�_┙$J+#kNlv8Z[,4cLK]hA�e�%5�s�+{�a镱�րlo*gn-i%#geda�?;l<}Qԩ.;#y+H{6qT�R�uy��ukɊJ@���ڰs;݊�s�jArj�4Isj]8̱oPN�,�i)zg�𰈌:
_y\�� �5w+
W�^lU5,:�8�2z%!/�LQ@Ė�:.J_r�8^�"�jS��.Xp�4Tn�TK%,r�ir؈;���R!Zif~WϹ]j\~U)�%R�҂ZP�1*�ee@cd쮔LAy��msE*
�g�`]�)?@!fpDIt
"]�k߶'
�Z
��qޞ!/ʾeӈ�5CИv�Nِ)9ݰASc3N�Wn<�0/т\I�~f5p�۪�U�� 6"�
&�7<سT 79u�N�L!H�A$_�<�^�O8~*�Õ�ٔ�욄ӞA\/�j-Bmr�uc֖#'+E(B8��l/8@C⸘
NT����/�Yǡ ;җxs
�nK�]���1}=�Q�]{^6:Ƥs_D�(I�cFR#/zGeV1
u]�@�N-Ri~Xϐ�#�4j�ei,.8�ؕLX�,is�cYa��[;U%53?5s[w�w�ԙd�.`]+J5(=UK�_i
�`}3`
ڀ�l{@'2bVKSqC1[;{g :w7C�j줸Zn?�=)hmt�[ ojnSMi�41zwQ�3pZ�>L L.Ew���t-YhveB"D#!M|;T>�0/ɗ6�~P�?�j�"g�Vave�6O3�\2eR�ಡ!?rs���G�ؑ)z�U[�ȯ-4�û&b � ws0f�NtӠ�hB>N
�/W۬
0T-SW#'\l3ۣ̾A��`$:DI@kj@�D?6O%�]|ql>�)�}WncvtmD6v�J��<'{�Q{H\�A��f]ASyQ+��7eM{#�rlنX�5�E�5K@̏&ߡs�O߂/Ȗ9n9aov�#�dC�Ns�� �ߋ�2#a��voF,)ݢ�+d;A�tE7�T~��|a�̛c<ȥIu�Ucנ܌O
Aw� lV�M J�)rK_pς�*MҠz�5ZU6�
seD2x&�-T/�ZF6V���iO?>}\k��_H.8@�Ų�#m�7�L���Ӡ"CJ,�@tmm�ky7cn �KW�3ikɮiuHBπ`�0��0
P�Rj5%�Vr��ba~^)py 'ɧM|=Šj
�D~3ҁR�@�w*t��oȾcWLDftLVE9ף��o�5%/s$'��z,:;'bSc9h�g`9�(��g:�.j"�4:t&�\СO ɿ.�ę;o_0lJ۩ \ye=Hf�DN'�axwپ;9EZI"�G� J*�<�(�<'��V|�Kn̍$^6Z`UIe˷Ӝd��A���9<�^%Mm��18IXn5�tK!֣j��qcd9/B�Y|�L�~��({FT�d�į�oc>5 !J-?۸�-r�%wVdttC�#Vq$9ԓք(d~:qTɾ4~7أqH�=5o27h�
i3<$,J� ds郒�H1btT#%U\�ɩd?�gaòD4e綱ʒ�c-%�U6:dTҨ
ͭ9q|4?�cz"l�l&=�F|�cʥn�sȃ-$N2L�ݠ��8��QŬA˭r�sEl&ӹJ˻�E+mلj�M
��� )��1�I]51XУ"�ģ3�.�ø�am
[7i�Ww"]f%E>aGh9R�,qfQU1@�|@z=cl�Q,
Dw _9"J�Qs��D;жLed>z+^�
�NիUIgRN�C.}%Ife6�Ti@�DeL�_Zo�ƃ*́��p{|:.^�9�qAP@d�Y&XߑhZ�t�V��ֶߤ�lKs�[Bg> z{v��-f+8˄]ǁ+JyE0'zH,}N���0u7�)}0H�;�9%�"��ץT<
$5UJ�#W'>:)y@h�@쨈vbEa��`�WTN%IZ*s��2�3Ogq_Pg��Um}m�Gx}��Lu&=T֛pk<(��\v4%0��ΰ0i ]DPZ+��v�ȭ+v�Dk�s�Cra,Ս��05ۯ�Z�O5ҡs�LИ4� nj(s?�-r73.9j���[X�����9B}�0T;�Iո�"vb!�jx{c�Yܒal_w{=ښ_,2o֬�UkqA(OQ50N�? !-RDh2�E�kk���_�sƆxI;#TxՈ5-3��a�9&q3\D�_fYBf�VV�&H}zB--4�MAab�T~u:yM4�^p�o3EL1Б$>#
r=��KoC*LqLo|>a�7V%B2^I`rk9)��Q�Ԟ [3`o؎KLgbl`W0�Y�vD�G���Z#Q7`Vve3W�.Ỵk���8^q>&$�n(
y=c�k�`4�ʿK"i'�dYVZ;yu�PДԕ� = Q2��[&e
g��ꩠo�/�.I�zB!S?��a$�]yC��h(�c8TΥ �j�\3�~N7ߓB2�\
�hȳ7��A*5EP�:A](gk�nBB$,�9l�ay�|b&%�A)jrZo.[FUSGӊ�)5Ctm�[yA;����1GH˛}N,JU�^�dOjpڌR��CǮν0,`=g\@D�į��
Vİ�n1t-@\��E�@� 4b{Y�Kt[9e#��ZJ31#K*6j�8jfb0�AFcQl¨yed |��l�.�iu�y�^p(�B�n�8~(�o�E?�&0"kg~pp?g�&y%vf*�%RA*^|�ɿK�;`Z��7�MiU
P`�\SXB*Kп�/�aYΰ0NS%$ݷ74$=49퍨8u�
11�:(\�DZ~)�*쉶X�XY_Ss� f�C�YICQ
��~|@حs)~Y/�,۽P.z=iY@q:"8#e/@h|)+67s\7��Xg"\�j JBSaU�"<�$.�S�Z_�i�TX���+AmuQ
R|��ԋ�%�k+xnZIY�a^Zv@2iŬ�)BzɆ�
ai,Ua�ICU)|э<��K(�Rhͫ2@p��4bd�i�%1/�M���sS
}D(�Ϡ�ڦ$�BZE�nb\
sFk]�qbḂ�f닉(㧽R˫$b$�5Uwj:v�TFx�<['�x5�q`�͉�x�c@M:�%eJ
}쮓�].�K+w_mI}\!c�OUy5x8'h.���Nܞ:�m�
v3!�u�9zy�ԙ�'k"�)|U�n�x_pr5`T��'�*m��d_�MJ�~[
`Ѫb)pWvmX0� ��[IQX¯��*6.��])Dg)�mN�l;�USax߹e �[T�^�P|a��(-ēk69抶9qǷBzzM٢Ln[Q{3ڵb�GN⻫=$&wÄ:[+(ۃj��QTS
Q⛄Rmb�wR�ᰭ?BC:�uZ,�c;k8�%a4G�?4_g�,serf߫DҺSEeӸmj1��3>
_#G Vq�$״a$�Dj{6je�gr��7gJӷi4�KR )+�{0 YbZ�g/�o!ƚwfLG!~s��� V]8ˋ+*P%S;':�yNv�~r~-]b�^_5:v4jx3����Q|W^_ԥ`�e��OV'Rk4�Ofj\A�2!CDV�@'#]fb�8�6kt_ѧ3�L8�
x3p}/ʼF>e�ݣb�b2GcmÏ>v^48}/:헲7�%=<[ff>:S
$E~p�cjs.�&j�$�$�0�M[N9b
OMpܥ`AL�5�ʒrPB0�0"��7�"GLd,X-�f�@/-!^��>h?�]jue^ #(B��z�)-�MO�+]�ZT�=[�foܞ�
8W�aǁ�.:37|ْ]�+yK�m7}Ez�rݭ?0�fC�_�Eٵ�V� Md��nPm.X�u'�BhY�Y_ckf̮h�ayKkqUJ�QŹbC ur;ŝ�O&�Q[[�2"g-+D3>�[]:�4�8��0�v٢#E[�yS3n~O�y-4.,/\D������ʚK2!k���&gOgB�hY�9�y�@WGd�q݄IF<6�ʹ[I
D �ZL�dp)RAQ8�FqemP��OdD$ȑ$$/Xߡ=Qǭ#S��s�u:#tM�)[ڹeåJx�Va)SA?p@T5�d3lO[%!]��)ISMdg!&bSћ"�yqzy%=5G!mB�-X5�,!4�ᄸ�0`�
ii141E)hQ0�ɈLh/c�}B_tou⸩ھQ;�s9O�#�,MZ��"ˉ-�f8�^0bA_5Mp~�aá6�~�6XcgF�wޖ00Ej8!r$��[v��g�e[��DB�.<8l0@r-^ܛa&O^?ަP#O�j�1"s�l)9��u�4TَhF|=�Ű��pvE
� %�#�7Jmi?��U~Ӎ#�= v�n<5nW��B�!#K@f]L0q6�h4DGN@.OE䞌`IהzOS1PƐۭ}twbbj�k(_jIl֡ѭSe3"�ڦ_itN?l�X�n) ErȢmAu��
87@ړ>D
ELJD�1MQ]�s�=�W!xR�{�^̵M��6`�^��v'd�$3�쯼�:(a0U9Q2Z�X~°jH�?�m#`K��Q!|l
*=t5R�z�G\:HY,-�"'[�q8H*IBt�O(I)�"Ef���J/n!?ԓb~4۞ p�_CШ��=�#gƪ�-ͯQ�iץ��k��Cl/8[�¯ցh?r=6izR�N��h�R�@�sǖ
�'X�^V)
�W�i?���q�D�$ĊM�Tu�kNl��%I:� �o�s|�}l{�9ӯu,8ᄍ{ĿL<3�,�!ɓXacҡ.Z��P˿iM�T�@O^4�G�3B!�=oکhCq�:�Gta�A-�PԚ@ 4[6*S;�6OŖp{L&9��E P�6�-wq5R� [y�!m7؞�h�RK-B�TN!˿3+lٛ>�f+:�JB
{Zjzk`jc79"�p{!u�VLJaܡ�Z�]�5���Ώ�ưs|�yG7N�+d$-�w7�iF6re�֙_Ej$yws\\p�M,�="Tn>!0q�,Xea`K+�~� )Z�lg4(ҙF�OHZ3l�4�xORe�e�cI4QMz(Ռt3k�W
(�PqXY9�Tv̪n�ۋ�A q6J
b6?|dz϶7ƖQI?P~)TiksMt.)Ga:t6UbcԳJeX�(���QM\~%�^ÿ/�-K�l�
]m&j^'�"�H|�?�!yP�j�T^}!�G HY3s"��
4r��n/(:VD�KP/9\^!WpB�r6ֶd���=�jO߆Duƈ5Fj;�ZI�T
zd��A�
jM=Kg%(~k&>W,=c]W�GvtV@ӹ�j�2'z>>f�"k&mx�� >�1�M?.5��LV{c-i�Iǭl ��d54��tSYx1x4��ٝaVBj&``�s9@Ú]x�/M&n@Y¶
5,B~t@|i?�.1Pw]\jn{
ܷƍZF-�e!O8ʃ"GXL:j�W.�؋4���+6Nnp:@/
%O ��"/'s�C,q]�2�-��7Cg��q�
|et%g�+:.~xM%�[<
8}g��ݏYэ�Jtν0��.r�9OZ�+�M�c*N䩂Y�7@!�gO�dd�lT�O+_tm5[Ңz-V1
o��뱑9�<`ʃALz�[&t#W=@+?hNF1yxa.�r6nϸC;-��A{Ltވ�Qf EƓc0rg[4�6*E,�ipIL�p<�S�@'=4-\a���WQ�"%2 IЉ2,
j
FŎw #"�!Xj��j]8��
g8*�I(RMMPlk�\F.��x*icar�v&"� Q�Up!n�tR�sψ] �,?RC��&MQ1S#p45�%��X�*3s�c8b��jāFl`<*�=ۚlǫJ�iL8�& b� ��iAkQbJbGp�j0�wPGfVB�(0f[�RY�,q_/A��S39 Ai�|(�5 H�!4a6M�[��2#xCG $o:WxqxW"�؛#s�O[3RO)�1~uBPzqLE>џl/w\#�#d
qF�rz�3\<6XK+O��F8\Al}кWٶԌ� �#ư2�H9��wʮK��O~ڕ�t���|
YT23&!"�KV|�ID�&&_ِv9w2[�x2�A`�7G�8@: tνwl6F'�cg2OG�\�9t-1݉B�AZ�"OifUArX E#b H�.j�xm�hO('�ȅWrPw9g�<&j@TbX嶾8��^���.���Bņ�\cnN1{-#;${�";�ݧixAj�F-(w[w|}ډ���9x�@�\�T\w�'5/,db^�/��qbYu4�,fˣ,��B�H֎@� tzAV�@q5|!Դsb��F;˝96pL 5F>15&@OȦwwY�YI�E;3�e�$qMJ`�x>}p�Dn+o;LJ/ptOru�5=8~b��]i80Q2Rw&<�;%X6W&:XF/i�}}X";SNWGR�at�=FrĘ69h�ϴ`b"-}��g"ڀ!v��(Mmpwwr6objo:�d|ǎ0~)KveWj?S� ���N}�-�%|8db>U02i2��>T'{+CՌjdN!m* CI2q_g&0�UD?& �K0�$ uyA��%:�\ݖmJ`E��y?8v:
.�P�@%
{Qڎ?``���:9��sb��
�0�U�:QYW�:rH
K1};>OAx�.Igag�KU���u@���J/ܵ]f$YoL=_ϐ kQg6W$%M�jz<_�ci^]v�ǐ,j+3An>,rq�y7�EU?֠jQfQ:3� ,oA*ʦ:OtE
Xk*�;�w<{1�A/V"�f}CE#�^xE[7{¾�|9r��w�;gHi��d<]-�ˉx<.{Ǟ�aCm0DvBq#xHa[N+ �(l6ծ~܋aϴ#uw�ۙ�Cv Dj�n,�NۓYq ={�v#�yrU�?8z>~x̋Z�9cs�fK\bum' p���1p��Kю� D%^;0fPK�6�ĩ�(�)�@��^>�|�#~�1۫��(&=&fo0�&|(/F3u��BoO5I�Kѹy�a-_!S8b}t�8@:^/҈-hn6d'$V:
Ö07�vub�M�4|l=X��-*c}Y(O�y.`X@V
8/vpd2>��ƦTG�|7gZѩnMj�qGS:gZ�Ǿ2�l��bs=a"T+Zd⸨�F`ٳR&�[�}Xj*BbP��@W]~�JE�½y,@z\s|j
��TxcKq� -ZwV�9aSZL&R4@ tKo
�\p0.ݲ�N�K�\+r~aȠ,aәa�Fe(8�T
�vr$DCb@ۮSL>��r
>~��[<%AH�mpìvR�e�ԯ1g4$/mFֹZ2Ox�-1T>�{uQ�d��̓:�2pᗙ{ ,61�{,#~ı&6a&n(@E�c[2%��e[Bu~?Y$//�%ܡД>TU�=
+Lt���HefG)vfV�e\ �a,�Nim#~6X�[48;�.J�]n3�,^�{�VZP}�È8`7�߁]
=:/8B
aq�JO��MtcWZv�s�f�ˌ�sܚevϪڬHa��YmK"x �TU
Hs�r<1�s6PO&߄�j�{lKqT� 4l 9P@�%Zy�-��]�}[a*�웤�?5t|g衫�&�r^pi�A�0�i��e�]�'W
DS�ES~�Q�hGGϷXYLx#p:�&�MdžÝ�zv��Cnr�>н+O!Jᰥt/hX�>P���チj�S�Dګ�?�m�=O'I(}JDA�iz
ud3�>=P�i/�97SҊ��,'2�4KD�Y���L �~ړr wÌq,7^�k~9���xB�&S��;JHqO]�"N cwkA=�g b+[cc_sm9WӍ)MqIg�/�<@n}&9KCi"cTÇD�>tZ9G��6RW}bX:ę+�&Ѳ|.ߠXflM/wg�ogx1]!.!c2H\u5ik�y 9I(�+\Q)Op=٤ŭ�XH�[+��gf}0ςj�@Xzb�Wn�S��O:˥͘�4�"�uϼ�xIlЖQi9��p%ƛ+B��Z8]'Jt� y`_R|z @s'sV�Tq{x|�P�IIŃ�+jf^ltI?@~z\1 �\Jo?lfX�n�v9>xY�rxT#,3�_RQG f&Ut7q;[p�J��Ϟn1Nh��˽%
G8Y_kn8�rppĶI�
��;ka���Cv+,)���©7�x8f�3${̵g��cja_!2b5Bb*g�y�G�[{�/.Y i�'@
�1�-H)b�v.?7��Ŗ/JPQ!�pV{r�4Gv��ٰ.=xlH_N�}�ېD,P2L$d��m�^�ΐq ���Twa�[i��)=n]_���4H����(u@^$b��tn۟|��&'qr�|x�6�ܝ�Qډk�fª[U^aY8�A|�&hTZA戛Q]]�
�;VθTbD퉴A
z~ŽJo౩�j�-o?e��. �&ox6oEF��GCCwX�~5�۪֠��k">^x9$d\�V;/垎��O>Q0��ȡ9mחi�ke88>=�_�-X�1�6s2)(Kɜ4>�t�*C*)EF�M>iF%F='�t#hۉ'Y��!n��6#mQ$=�'�'~T|8PRvsc��Z�ŗk7º�g��e�+IdB(Rm<719�$M:It*`öv�]mثVSl$ee&XAP4
p#eUJ1a[A�&�(5أ#3\�G=J%.Z�{H6;P��v��^ǝ{V�"l�;%͟`�a �ZsyE�vhӵY-Cm#�$c-���5���.8/MN#v?+k$@È9<8Q�q��f�R�ݩ:˖cBP!>7hiBo
c"i��;²e�_5zR�Ib{c�/'e*BsZx=q33[�}Aߵ9�T���*�*h$��Ʀ�0�ƽ��ℯ$Q4>�%�W0�o�)T3�R_s�w?;U)�vvT BkB
L-��(,�x�&ޝ4фr+T b٭�ȯ;�Mǘd=
g�QύMF%%B���+�4�*�*6Ճ_�S�e�Yl?�@#t�C"$<+Kj2AHn&9�V6�Kt�5Y�"nE-)!�w9P?_B&�%vy�ܺ�S�UFxءn݉Ϥ-Rxw@���a�?c�vsbnb'J-&�Gj�9$rk�7=)=M<6��qh�p{0|5d;yk
~}_֊JisaB�C!9x% U&{~rAR˘y��#)>�\'m.:
T`Fx�?kcHj@h\�AZ>9'YQ2¡�7`ŰCᓖC��32-;}0(wp8fGq�B9�oPr�`A'�Q@4M%A2кM{ɇԮ/{\9dΤZ܇HΧϵ& q#3�_�q;9z|D�%6dESE�'�;�|wnƜ0Ybhv�<`"�7�aT_�`#
Q|d(2amF
�&0#�EȣS�D*!@��}abp9{r&6[8�7rs
x.i'�f_B'u�Qy���m�b+tF�m'��iC]:m�Ͻ�sU�en�ƧOӦy�ys"�Rå�t� &Oc=s:`? ^5n P-vWj窏.3o�Vcxr i4V�mSŔAI�#��bWF�3u �oa�|TL�{#{WuCo�U6q-@Bp1<�d�|=�yyV*"e|&"b
�ijTr!:asu7<�s|A[_V�$O+xc8�5V :_�hO�p?41?�)lTY6
XmS��)pِ?�R4#Q� F��)����EKxŚ~lIy5"cw&v&�L"5oef�l�#tg'!��ĜVDxG2B>a
Ӊ`�q>�чG!�4{1(&3v77k�*#�s7K0+ӻps)C�SioIb\K�-�p�f�od쒥�'�/K@㟨t5=qV ��WxAqR UU6KTB#l�36�D5mdB<�L2�p6�4ck=v"s,��C���ij�x#PLXy�q�mBŭ{+y#%ZKJ~XOj?*�&
�x6
�(F\ʒ�q8uwk$L�7ᔳӜP4���Te2��m(I>(�M
�k_�C_/Bׁr�g�9��Wn�8,I`��&�fX4HDWa�!�?\#)lub��'еCXu�.m�GgKA�D6y�HSz4Mv�±Ɂ}?KB�xQr4nڟ/H�)utj:6�
|iHy./�9��E�x~McygfO��#_s�1h��"~(}w�`&�NSLRA�/�5dP�w��[*oy�|k�^Ǵ}�*_{>HTZ'�K=wlm(
[7�f�
8Cg�+�9_�f32wv;3\V,s9�[���f*w|���Rt�P"j[�GMʶeU�q_"
y�f
/:) !{3�s~i(W\d�S�0[_ƒ�1$�R2Ce?�Qi��csFq�ݟ"ddmiƙX�ƀz#�i��io.=F��W�K�fuR�
�*UeNӌ0�>\X�"%-5)fؚD8r�KŠڎ�q{a:/4l?yh �ޣ֔RGL~^
њ+1=?�"�}�'Y;��=V6f#��6F�_1ȿ9h#QF�~8XI�\�SE�,�tΠ+�Bq,ǂxu&�,t}�a��^$q�"�ߋދZhjBg.�+?mjܑ3V;�:Y�T^ZR|Hgg�q!3V_HߘOi9�!v>�WA)#�0�S!dD��O6�]#�@B�*�R��zXۼlS%��"bWLb2�2Y0�m��?4x|JT/�h��]v��aF%&jG�JGm9
�/My^Ug]�ؖ%c`_7П_jQ֭�:})Y5[S�"SUzgy�Oo84�m~~�|7Ďcu��Zqr^6�G
�G�A]rN(��-c���Pî sm�S_C
؆�q
UE�vO�_>+
w?t�ɵI݉iDKsZ�5YRey�9'%)�i� k?B3�-0q{0�g]g|&q�`(K��J2IȾ�%%j= ª �@/Uz'h�H!ۖ$W J�k/w����ƋPfL�;-2lZS�RA݀!ho$ᶘp�V�oiW$LRr$=ƉܘLA5P{aTYCҿp�YwpzQJcs�uLō|8coz°�gCsiE�_,Bp֎w#�J;˳Ҁ�\=4�b�~
*E]_Csg78�nۤò;�.Jri"���/1P[Hl�}�5�r�>�k�x|G|�#;�SrHEc[9G�:5�*:�<= AB$]NN]J֨G�ƛkϹ%,�h¯��ax7.s9j
�$9�Zf<4cebU|g]?I�j~�(OT
t$eѯY
FM<%uŝh�MoL
y#,
!ԗ(ّ{�R]Mj79]::Ն�fI ۭߋvɟa�T`$7�+��qдH*�*l�kDPȘ5>I
JT+PŨ�P�CA\.0W�]j���ԆBQ@��NM�5�.�;4Ɠ1s&v:�pzk<ٵ[v@ty��b�Un�LpZbG;32f���"N��#/�NL�5�M+r)rtlȐ=cأ�Y)iCy!mUVp�'#`́z^kM2Ƙp]es�� ("N���&iUd41傖ڢ�K�K�%D|H=v42l2�2Zp_m ȵ�m�Bxip7ɓ�J(ls���
�7ty]GI<�¥��lH@�D�%N2Y��v�fvխB㬞6! �^�m_1�\ᰪlE+]�m��:�X� �-ŵ?5�1&ƒþE8L�Jٛ۲zWN-B�ƚ�$*
kt���>qk�5՚Z�Jpv)x̏ivc�8t�d��6kԫ
xuĢ�8do9 jKBl_4'C{)�k�x�ݴ '\
�M%ZPsH�L-D<9tX_ (�.`)?r�cfi[_F"}H@D/�IDyڒ8pWdj�W�Y�AȒ"P+5~'KSk/z�H?vwhАN^wbh)ROt�/&�9ǎ>A�m՝X.vqIS�ւ¼4h
.ԩ:�Ța��m2_^ 2ؙS!�J��$U�l�Jf/@\F\" ǻ�=*9��վ{7/(a;�"^Oȑ jvYk<�]�=`*��E�0Ta�� ]$'�J y�FD�<�L5�N^2�B1ajZ4oo)�|�K�vFP??*�
ȼ�d+�Mq�\�)�2�=+_fQM]uum;�E�Rd{8r��fj7�47,;r��cͷ�=\OխfNi��d'�:KU�G�K.S 1(đx~bYz�C̪5z]fa<7lH�d�U-oi1>ފ$_�I"C�_�Nr5�g\��rvj#ЕTCJAh>T&,#X
m�{
9W=�j�-�!.q�[�7JJT�5Qª~IP7�#�5ry2S9kwO8mR�aJ=KX57؉|.Q��߯Daun�&}:jW�[�K�"�lIcC�*�(U�lѥ��ŀb�:K�@M�Ξ>�rT��[�p?&OaU ��A{F{2r�l�c)I��&oE.1�4*ޜF��X!'UTlV&(\N|c?t�xRyc?r�Bj|ۑ���Qd�f�+>9��M� 'ǭ
fӷ�j��ۄMz8%�lu]&QMK{;\< bĻ� OET=�YKy��{ӛ��$�7(s
+u�=CB
rlޘر��;^4K�o�w7z8o%ԥY)b�v=��P&)d˭ �">'
D%;#TX�CE #%ǝmon?=3?�Ń�\T�;H0�%]Hr(FL[~g!wO�6ܟ�âLT�C-4(�^h6a�
~jX�w�!a2�G.#&1�G㖣\eܿM�*Ⱦ4Xf@G�Yׅ�8duS;鰇6}(�=�p&trk8$4U.T [
��Ji#5|My7ADIgr;#֑MH W��.v�=�~�
�_�-8\ãR
:+v\UdV��
@vE2�v*�*�`U����BQZt+(�Z2Yh*�4<7?Ƭ2|��h&�}1�X�5�7|Sw�}\}�O!HYIh,=zcR1?)�ñ܈j�h_ECXƕ;\Dh=\Ǡ�KJIo~����vCk�I�D|M_1j]�3�9v>
~$j�2)ʧ �DW7�}4T�LXC$�}s:4F}Ӹ,³.Y;݅I_FVRPT�7c-�LnDcQ^3J�{�e:�%!!}tt/L(gYXSmΫ9�I[�FS;L7S�MƳz,16$��!Fߴy+1�A'3s#TZ=dfɴ(F]¹�<_הچp-&ND)(Gaѳ��gC�9aƼe{óS=/䞭��m_���p1Z�g! P&t��ȏ�N$%W;M3V +�R�T X#X�7eo.��"��걭$y�!4i+vm2ˀG5RYIF�B��0���F���2a�9�PmE>x�jJ1��ME5��g/ucmu�/r-!��I~uڴi'�`�*F7vەC�ʴ�#e#"Xh�Ǣȼp
Th�f{p]p�4��ͨ\S�M>�bمgw/xYcs}��m��#w!~�X8?gʄYE��EeZkd=�N. Pcȿ�y2w�:6yh�|~�75
Z��G[!K-H_6S����]?1ZKο5�NpPK��x)i�Z�lئK
̚@��:DBm:'�^Г&98Y*cԜ�>R"WUDF֠;ն]j*|�$ܶ$\o���l�c�B�=H�+FXg�e,�^'qf]$ß>>$Uw?X6M,~�s3�FǨ9){�V)up#�ѶRٗ-\�ӯ-j�n��h(3T�3ː��szSj(xB|ԹXjTOytڰ�Zf*�TJ[Y|��pK.*wهi
�DP�&ڂ��/1c��<0\Ô�vRSx��(BCyvj3bH�ҎQB�ejz.nMf��oB]O\H�U-�W�BY]W/:�N6WF,4+ԗ�"Kc=�BJd)$u\[i_���ͮctUCv�+�x<ۨ�G`�F�HO1�_��-oުI,X]V��\vH�fQ)m�&T<]9<���2v[d0�0|[p�;mbu�H^[";0N0!س'EG�m3u�T��i�
Pș��7t!�m6ypMӸSYZk/B��1�R/&Og9�qx&�ze,�f҉9Fq@N~�A?I
�܉ i_�!~bBP_��[6AR�n�+\ଁj(Jr�>(
_<�,u�+E�N]�[=�ǎjʢ�]mؚB|�`bj
!Y� f<9 �&5V+F�ws�њH/ϸxlT�ja
�.���(*I$�S�a{>tׇ)�VN@{�
5N I�Qä���;mpaX. ]-LQ�re�?�pzZΌдGȟQu�{q7>L)*uli4=_R�C֫AK��xQ5=lNIpt1kC2� ��9�/zɦj>&&|~ xr(EJ?T�W\5PDތyFѫ啽X-)
U{��^��x+ho1R#j6l^Y1V�G1�Z��I 9m��>�rO/;\!Gi/~1f"n�H,&j�^ahrh/w�+C.kP�5[7#($;I2J▿,�8Ѓ>A! BXgkǛ�e!xF{/rDZ�>=|>a1�[� t�=B{�7J#�LTM'��:�rS��uc�JUg�*+ԍub�9YW&L wV{4YN�i_���hV�ThI m�$bTOP\6P��3=�ߤn;hm�>@.jC7}�`9�^x�'hE-,Q�5�`o�*�2��1MXji�-5b�C)1ľȧ6ըOi1TI�2:i.or97뎅>r/S�m+9:wUS?4)|E
�{�
l)�6um4k5<'HN2�m��4"R>
�F �=yd:e�!rૌlu$�@e_;[K]8/�`|ƽzT0y?qR)� j��Ŭ�?\C:���wF /!$(?}�.Bl��@B%D��6=~gtF
`JxşQ�}n`'}7b/WA[j�aLnWXS�ڙD@u�|-=��/PgVd$03h3Aō�q;|oF�!���AC',a��'V�#ۉ<��5&�rx7`;�7rsO89�G�-�^�G`=�/�pIǣcA7�OISx` �n?�]�6j�mV=aQI��w�F21G8* m"e168B�ފ�]xN�2i,�^:hl�ݧ�9̠o2�UGR"
��"���-u:��9�Mg4Nۆz��2Er~7)>���b�RL�
T)@(ah2sؗ~
)#m�!@�<\�:%' ��e, �"Ps1t�Ĉ@��`D�l�[WL�Ex[S�P�[�̰X�J{{#|Rs̅XJw�+K*'Ɍ����IA6NR6-g&-�1����9RCIKz@�h�?o]@@+�X�>g~=I:INp��W;�VE�k��*Q=jRHA7=t8`51aZHO��Bv�ɼ)�UƄ�"-9S5mk4�H=1DNT'1\�%�b�!Z�L=A�X��
x<�JVp-R]9zߝyRkH6*D���>cF@n{U%/���J߷ilt3v>x]�JUM�Ys�d܂oi�)]P6]�
5툕M�U~�y>`He��2d>�r^OG1OA!rzXo�ûѐ:=�V�7c^
nXL9;��BDV�oj��:0I�CZ+lou
4�â�:�[oR(,B-|�x/^FN'�/cp�wEsm�7)Te�Op{ƤAD�,5$?R��QU=7�6m�lk��iO�[��E7
#:N,4Q��٫[�8I�ᦀƅZ\g?70q%2�Fy��8&鷵)n6?몒�D_C1ͮ���Ud�+լ`5\��:�1h6D�hmj�9Ofn;}bmo"�ME$n�}H|p- me�^Óɣ�F`
\'`��L(naQ�q�ql;�MI
՞WRS�ԮG�!�cW|,ê�� Epv(��^hP
�B+u�y���cOM��PC/f]FHy1^bp�r�j`=sXT#S=86uI=Gncᾳ_3�یS]qcxor�H8+W��UN;[ANi*>|^�Qoyp�3�SȼT?S2��ڸis,3i"D�B�m� {A&tz��={Ӌ�8^bu2�W<�lob�/)tl��
oR�in1O�J^Gҕ^2b�#zҘ#}60��]%4Q؍G(9"azD�3\6�9Oy.'Ϝ�IA�ǛQZ\\_jMS͢�tB�J4>`j<��aNHD{8?[=K5MՏ_4'YŐ!Jjǡ� :WB�3*$(P��WY r-=yo{�r)�&�kOӇ)X@�֭Adb}�K�A�5c�ڿ9�7(��J)˺~q�g1Kz�#�B�m$*w>{y^ų�#V'�Œ�GTm 7�E�sBl XAԵg3!\ɤr�ªI)C.}˾ν.Z.'m�ڢ�ll&~�)%(��#s!0؊1`rT��vn|H5:4QlN�-�a)C�[D@X�<�l�Fe��*E_|?#Ad^#�
B~D\|P
"-^{�뎀�V4~@o��KXv`|�l/�?24]�aRf&r#C�\F*�|H
H%X�L8r$�;I/9�k&!_\X#C3m!@=�˸'c$+P (b ^�C�uI~sOuZ�'�]I[�RF4���}�yH�n�[xh)a�4&mL�
SV֝`�Y�3m��P�H
x �~tV�W�#��m�zv>0zOn�\D ~as\�E�So�oA~ks��C��9��Ͻhi�A�eQUW}9pPgO�8�ߔT&
ń*_N#U˄���F�W�h\8V_��-pV����r1�Z�DƩem��̢FM�X��S+ȊO��Wϵ�;@x�@ϜzT�$"Nk6c)_poCMÎ8ΤEK.G@�-ˮ'glU �>�^��Jd;x�u72VgXG.�[r!�HZ|ƴ]#CM4�Ǫ"�gSL'_գ�� h:\ xi o�GU(os3 MDE�B\IP=q9�.(ƮW(.x
允""%]=|#w,+J�5M�]�{V8�K��w!9
��>�+l�DM\ߑ�.躖Yf?�zn��c7w
�.��J�n2Wtu: .�y�@TG*�}vЃ-dv(p55�^yh��`zMb_H#��Nj&C��'J\�e�__W:Đp;t.U�?>5%#ݭ�.\d�J\h)�dF�#�u>@yȮKb6\V�-oF. U@�K/?ʖ�_�/�֙U=nV0NrRkwGէ2PE@M!�8p**F3�_lMQdn�:(X&�!x'7Nt�F!�0KٓܦN\8�3/�ի�\Į&}n{K�x�TWo~G<:x�k�.Q~��'�jZѡi-pgxc.�OT?a+C]A3*�Gw.�qde-7���,kɳ.B\�L�A*pt~+b hCt?m
Cyn�1�s̀_�ڦ4
zfa806x��/d.�<^t%#7�#1bI�C�X�(֔+&(<2%�[$&큆PoF1I;���|f5+R<\�YY�]�XBg)���,)Q��¢��s�/X6۳��j'
0$CP�7CFY�>��D&4{Q_t+hؼ�*�},Gl1e^vD��,Dg+�.::Ǧ�H��KFp:�C2ÙeW�5Oދ�U�K�L�<
�P�ؖ'a'LC� �W8A=㜌E�y,�Iꈜ��xd2�as�j+N�Y�S!}�MSg|�>[v!<2Zަ"Q+� K �𗾆&O��npuO� �`u{��`6J�ݼU
峔<ۭML��^Ki!xU؞Uٕ0�&'d[376⬌
&ػQ(AOXO^g�n��˟h)bwxS-05
"ޠŮzVDc�;v>b(y�#>ͩqYdצ'��W(�T�;XS�H?zt\LRB�u�/�(3>*|겚Ƀ�Ö;@B@�
��=4έY�tG?&�X�YF�v9$�*%n.R�Prs++A?/$]�o&�:\�E�&'%�6zRw]IM��I0}zCM-�Lu߯3w�AC�FȊ)fY�2J�\8R
�y��pdEX�
/aJ0}�g.�,/yu'H24XX ;E>�u.,`�^:}n;X�Ϙ:� �w�o
�3�2sQyaVsz
`~���݃PbvaY*ʖX/֩T<�D78([Al���͵�3�aۥ�ɏ!J�_$B4b�c��Nw!�osjܺߺ��9gjNȯ� гK=#~��{7Fi2Et
7ͅ;N_�V#ʦ%�!�K\��r�K��ַe�@&3֑6X<ЃJp DZf�k
PĢp l7>H\�&.��I�0OC {f朅րڕ�X�tg}Y�\GEJl\"5ne@Nf�-͚s;5ned"�'�qc2-r7���/)�zKgWjC��CYq�{<1J�ɩl"�?ѻu:�E*F?:dx90IrB%��f���f�btnڶ}O�5;K,+�ލ�A�S�M|b���Xᱺۤ�3?zk�ɛzD%RR��}tu�ۨ!�!%/6*nxsF �M+�E��+Ћ ��slD`-�tq:)O�s5Y+@ρK�)>T'[@�%>�[ꎧG'DZ{[&vxf,����Jr K� ��>)oo���e�9h3B�U#3M2�؉7Xѻ- =�.t.8NOF ���M@=�mi2ӈ۸q��,I<
!J[,1��E�_�f�OT96Yts�
!/!�(u⫝J�8u��V�giY*Ԙ�k٘�uhJL]1.$A�)vU;䓑�Jrx�`ŮIo�X�sN��MF|�ٹǮy]o�'wTb=Od�NWє5͂Q�7w#ϛ���}
Q=_5�Ot
3In
~!��lBd~X��즤ѬM$0nAMw7NJɍpՓ�`V43ЛC,OϕL}y�`5z4Ym䉘S]H�$���9(ќ>�Nڬ��eh�o��!z�
�%Xg�X)�5�dU�<.?�V2 o{�u�Cm- ��Q0�h�Lb�+q�%`�4�-.nHYI1N;l?-;}OX�WDu`>n��hKn+
jRhoJOP`ZS_�SzY
�t%`�?Uç,
-c�{tXNZ���?u�et�+�U��A4yp�w�TsnhN�t�y,��eۥ��4��[7�~HZWJ�mI@ϲ�:|�!J4ӝ/0]��PЭҺb2N
8���*pQq�<�v>�mTV[`۽^Tӵ"�BDWW�rgjb50�P%QR&YI�$ҒZ�M>ME@_��:A؍䔚pd\١w5ݦ�L�r%�W2OO%�E6�b��[�ۄCY�7BV���l)84�y��mI��
P rSig|?Eö.ykƧ߭��b=�>.���ե:�:fCɇ:6A� -��A1�蛶9{t2E$VUy(3#u�Sg�%n8J|1� jjDӊne[���Try�Cv9'�?%CC [s3^$�s8.��>S ⑽DioZ�{k�ee�S�/a:ayŒF�]6eG}0+Dtv��Ba||]�F.q�3@wɶDƕrbL��p�?R|(�,M0L�Pt/Ye`wK�hE�؏q:L]D/D�δɁBFb`_A��c�ʫ#^J$zca��(%SQ7sJ��3ڝ#/֨A֛x?�ftu�`iA��?Uh\�\Ac�g]7�l�]8��Z��ڠcÚ�d�D3M`$?�hC�F&X37eؓ:~o���)k��l
D#t`�*�Xe%y�+�Ew�<�r�[pƅChl�0�E)Y��.>���8d$Wɘk�Z� U�=�~��LU��^�b��lm¨�w�hR��E;5(/nD
i��.GFؖR.��pih��/+�J''NaOci}[
dC~ܯ�ݼ2��r)�5;HC'�`u�'�v�Յͬ�x;q9:N�l]M�|r�J햪+�F@�I/ ru0��
8.�|R�o7;|�2,g3
o,-H]":!�
�8+d��3ib/iKCZfk7M$3a֠i�,;w'~;� ^�3kg3ׯ|E�]�:lݧ@1�,#`��b{�2g}L^S5M!K{mI�Ћ�[_?�иq O(\7�O$I6g� ϪxX+CxV#�zl0ut\u�5~WKȤt��Q:X�YSYȞ