dhcp-devel-4.3.3-11.9.1<>,]/=„KN݀+~Rd^>ߡ{uaqI:{ P2&hzpՓWg79'34aQI]cN?,EF:`op[ ^utfZ-c~EX3P{1ǂWSߧH5`DTA?Xywwc P|@RF["hmP3AT8"A7}D*t_1(կ[9?d   E /8E ^~    | !x "4%$(,|,///0(0*804N91lN:5<NFIG\HLI<XY\] ^ޝ b߷cYdefluvwxzCdhcp-devel4.3.311.9.1Header Files and Libraries for dhcpctl APIThis package contains all of the libraries and headers for developing with the Internet Software Consortium (ISC) dhcpctl API. Authors: -------- Internet Systems Consortium, Inc. ]lamb07!openSUSE Leap 42.3openSUSEBSD-3-Clausehttp://bugs.opensuse.orgDevelopment/Libraries/C and C++http://www.isc.org/software/dhcplinuxx86_64eHP zQvP=<+_.'d&,KE != UE OOcgG] C)@:!" ,"A ["N2u_u 7v _ do0*s  ~YV $O {'U _ Q/% :q$ R "nM'5pj  "N ";  DC(]]TX!,JA.25  _#Q<p dz):f- AAA큤A큤A큤A큤AA큤A큤A큤A큤]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]]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-4.3.3-11.9.1.src.rpmdhcp-develdhcp-devel(x86-64)   dhcprpmlib(CompressedFileNames)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsLzma)4.3.33.0.4-14.0-14.4.6-14.11.2Z%Z]@ZWQZ@Yg`XƉWbW V_V@UT5TmT@S @S@S|@S5d@S&R@RR@REs@R/ Qzl@QZ@QT0QR@Q?Q3;@PP[@POiOr@OgON@N@Nf @N^"@N[@N&@N&@Mc@MM(M@M@M@MlMlMbSM^_@MIG@M L!L@LL@L*@LYV@LN@L-LK@KFKKtK,KEK&(J`@JkJJJp9Jp9max@suse.comndas@suse.dendas@suse.dendas@suse.dendas@suse.dendas@suse.dendas@suse.dendas@suse.denirmoy.das@suse.commt@suse.demt@suse.demt@suse.demt@suse.dero@suse.demt@suse.demt@suse.dejsegitz@novell.commt@suse.demt@suse.commt@suse.commt@suse.commt@suse.commt@suse.commt@suse.commmeister@suse.commt@suse.commt@suse.commt@suse.commt@suse.comschwab@suse.demt@suse.commt@suse.commt@suse.commt@suse.commt@suse.commt@suse.commt@suse.commt@suse.comcoolo@suse.commt@suse.commt@suse.commt@suse.decrrodriguez@opensuse.orgcrrodriguez@opensuse.orgcrrodriguez@opensuse.orgmt@suse.demt@suse.demt@suse.demt@suse.demt@suse.demt@suse.demt@suse.demt@suse.demt@suse.demt@suse.demt@suse.demt@suse.demt@suse.demt@suse.demt@suse.demt@suse.demt@suse.demt@suse.demt@suse.demt@suse.demt@suse.demt@suse.demt@suse.demt@suse.demt@suse.dejengelh@medozas.demt@suse.demt@suse.demt@suse.demt@suse.demt@suse.demt@suse.demt@suse.de- Integrate dhclient-script-handle-static-route-updates.patch into dhclient-script. We don't need to patch our own files. - CVE-2018-5733, bsc#1083303: reference count overflow in dhcpd. - CVE-2018-5732, bsc#1083302: buffer overflow in dhclient. - Added: dhcp-CVE-2018-5732-CVE-2018-5733.patch - Removed: dhclient-script-handle-static-route-updates.patch- Plugs a socket descriptor leak in OMAPI(bsc#1076119, CVE-2017-3144) [+ 0027-master-Plugs-a-socket-descriptor-leak-in-OMAPI.patch]- Optimized if and when DNS client context and ports are initted (bsc#1073935) [+ 0026-Optimized-if-and-when-DNS-client-context-and-.patch]- Only use 12-bit value from VLAN TCI for VID(bsc#1059061) [+0025-master-LPF-now-only-uses-12-bit-value-from-VLAN-TCI-.patch] - fixed os error "Ambiguous tags: source12, source13, source14, source15"- Modify dhclient-script to handle static route updates (bsc#1023415). [+dhclient-script-handle-static-route-updates.patch]- Relax permission of dhclient-script for libguestfs(bsc#987170) - Enable patch23 whcih was disabled by mistake before- Add patch to limit the value of an fd we accept for a connection(bsc#969820).- renamed freeaddrinfo,getaddrinfo,getnameinfo in the internal libirs library that does not consider /etc/hosts and /etc/nsswitch.conf to use irs_ prefix to not cause name conflicts and override standard glibc functions used in libldap(bsc#972907). [+ 0022-dhcp-4.x.x-apply-bind-changes.patch, + 0023-bind-9.9.7-Hide-IRS-resolver-function.patch]- adjusted interval check. [*0019-dhcp-4.2.4-P1-interval.patch] - Fixed improper lease duration checking. Also added fixes for integer overflows in the date and time handling code(bsc#936923, bsc#880984). [+0021-dhcp-4.x.x-fixed-improper-lease-duration-checking.patch] - fixed service files to start dhcpd after slapd (bsc#956159) - dhclient-script: complain in the log about conflicts, added a see log messages to the dhclient log message (bsc#960506) [* 0018-client-fail-on-script-pre-init-error-bsc-912098.patch] - applied upstream security patch fixing (bsc#961305,CVE-2015-8605) [+0020-dhcp-4.3.3-P1-CVE-2015-8605-udp-payload-length-ckeck.patch]- Applied a patch by Jiri Popelka catching dhcp server aborts with "Unable to set up timer: out of range" on very long or infinite timer intervals / lease lifetimes (bsc#947780, bsc#880984) [+ 0019-dhcp-4.2.4-P1-interval.patch] - Corrected patch references in and a missed (bsc#919959) patch description in previous changelog entry.- Update to dhcp-4.3.3 (fate#319067) provinding many bug fixes, features and obsoletes several patches we were using before. For complete changelog, please read the RELNOTES file shipped along with this package or online at: https://kb.isc.org/article/AA-01297/82/DHCP-4.3.3-Release-Notes.html - Replaced hostname patch with a dhcpv6 and fqdn aware variant: [- 0006-dhcp-4.2.5-dhclient-send-hostname-rml.patch, + 0006-dhcp-4.3.2-dhclient-send-hostname-or-fqdn.patch] - Removed obsolete patches included upstream now: [- 0007-dhcp-4.2.6-ldap-mt01.patch, - 0009-dhcp-4.2.6-xen-checksum.patch, - 0013-dhcp-4.2.3-P1-dhclient-log-pid.patch, - 0015-Ignore-SIGPIPE-to-not-die-in-socket-code.patch, - 0016-server-log-DHCPv6-addresses-assigned-to-clients.patch, - 0019-dhcp-4.2.x-ldap-debug-write.bnc835818.patch, - 0021-dhcp-4.2.4-P2-bnc878846-conf-to-ldap.patch, - 0022-dhcp-4.2.x-contrib-conf-to-ldap-reorder.886094.patch, - 0023-dhcp-4.2.x-ddns-tsig-hmac-sha-support.890731.patch, - 0025-dhcp-4.2.x-dhcpv6-retransmission-until-MRD.872609.patch, - 0026-dhcp-4.2.x-disable-unused-ddns-port-in-server.891655.patch] - Adjusted patch numbers in the spec file: [- 0008-dhcp-4.1.1-P1-lpf-bind-msg-fix.patch, - 0010-dhcp-4.2.2-dhclient-option-checks.patch, - 0011-dhcp-4.2.6-close-on-exec.patch, - 0012-dhcp-4.2.2-quiet-dhclient.patch, - 0014-Fixed-linux-interface-discovery-using-getifaddrs.patch, - 0020-dhcp-4.2.x-chown-server-leases.bnc868253.patch, - 0024-dhcp-4.2.x-dhcpv6-decline-on-DAD-failure.872609.patch, + 0007-dhcp-4.1.1-P1-lpf-bind-msg-fix.patch, + 0008-dhcp-4.2.2-dhclient-option-checks.patch, + 0009-dhcp-4.2.6-close-on-exec.patch, + 0010-dhcp-4.2.2-quiet-dhclient.patch, + 0011-Fixed-linux-interface-discovery-using-getifaddrs.patch, + 0012-dhcp-4.2.x-chown-server-leases.bnc868253.patch, + 0013-dhcp-4.2.x-dhcpv6-decline-on-DAD-failure.872609.patch] - Fixed to not pass DHCPv6 address lifetimes a positive (unsigned 32bit) integers to scripts and properly format timestamps as long to not break them on 64bit architectures (bsc#926159). [+ 0014-dhclient6-unsigned-lifetimes-for-script-bsc-926159.patch] - dhclient: expose next-server DHCPv4 option to script (bsc#928390) [+ 0015-Expose-next-server-DHCPv4-option-to-dhclient-script.patch] - Replaced infiniband support patch with fixed variant (bsc#910984): [- 0017-dhcp-4.2.6-lpf-ip-over-ib-support.patch, - 0018-dhcp-4.2.6-improved-xid.patch, - 0027-dhcp-4.2.x-handle-ifa_addr-NULL.909189.patch, + 0016-infiniband-support.patch] - Moved dhcp-devel package include files and static libraries to /usr/include/dhcp and /usr/lib/dhcp subdirectories. DHCP requires a specific bind library version and conflicts with the files shipped by bind-devel package, which is not source and binary compatible (bsc#910686). - Corrected changes to provide complete patch file references. - Fixed server to not report success before send (bsc#919959) [+ 0017-server-no-success-report-before-send.919959.patch] - Fixed dhclient to check pre-init results reported by dhclient-script and fail if pre-init fails for a requested interface (bsc#912098). [+ 0018-client-fail-on-script-pre-init-error-bsc-912098.patch] - do not check scripts not in the src.rpm - fix bashisms in dhcprelay script - Disabled /sbin/service legacy-action hooks on openSUSE <= 13.1, which does not support it and causes build failure (bnc#891961). - Removed gpg validation implicitly done by osc source_validator and gpg-offline dependency (blocks rebuilds).- Applied fix by Jiri Slaby to not crash in interface discovery when the interface address is NULL, which has been introduced by the infiniband support patch (bsc#909189,bsc#870535). [+ 0027-dhcp-4.2.x-handle-ifa_addr-NULL.909189.patch]- Applied contrib/ldap/dhcpd-conf-to-ldap patch by Ales Novak to reorder config to add all global options or option declarations to the dhcpService object instead to create new service object (bsc#886094,ISC-Bugs#37876). [+ dhcp-4.2.x-contrib-conf-to-ldap-reorder.886094.patch] - Applied an upstream patch by Thomas Markwalder adding missed mapping of SHA TSIG algorithm names to their constants to enable hmac-sha1, hmac_sha224, hmac_sha256, hmac_sha384 and hmac_sha512 authenticated dynamic DNS updates (bsc#890731, ISC-Bugs#36947). [+ dhcp-4.2.x-ddns-tsig-hmac-sha-support.890731.patch] - Decline IPv6 addresses on Duplicate Address Detection failure and stop client message exchanges on reached MRD rather than at some point after it. Applied fedora patches by Jiri Popelka and added DAD reporting via exit 3 to the dhclient-script and a fix to use correct address variables in the DEPREF6 action (bsc#872609,ISC-Bugs#26735,ISC-Bugs#21238). [+ dhcp-4.2.x-dhcpv6-decline-on-DAD-failure.872609.patch, + dhcp-4.2.x-dhcpv6-retransmission-until-MRD.872609.patch] - Applied backport patch by William Preston avoiding to bind ddns socket in the server when ddns-update-style is none (bsc#891655). [+ dhcp-4.2.x-disable-unused-ddns-port-in-server.891655.patch] - Applied patch for the contrib/ldap/dhcpd-conf-to-ldap script fixing subclass statement handling (bnc#878846,[ISC-Bugs #36409]) [+ dhcp-4.2.4-P2-bnc878846-conf-to-ldap.patch] - Updated licence statement and FSF address in our scripts. - Added missed service_add_pre macro calls for dhcrelay services- sanitize release line in specfile- Fixed to require iproute2 in dhcp-client package (bnc#885399) - Disarmed dhclient-script when wicked is the network service, as wicked is using an another dhcp client (runtime conflict), NetworkManager an own script and sysconfig-network is gone on sles12 and opensuse > 13.1, so it is obsolete and unsupported.- Fixed /etc/sysconfig/dhcpd fillup in dhcp server post-install. - Fixed dhcp server start script to use correct libdir (bnc#868250) - Fixed dhcp server to chown leases to run user at start (bnc#868253) [+ 0020-dhcp-4.2.x-chown-server-leases.bnc868253.patch] - Fixed to write missed dhcp-ldap debug level messages (bnc#835818) [+ 0019-dhcp-4.2.x-ldap-debug-write.bnc835818.patch] - Fixed unsupported dhclient-script used by sysconfig ifup to provide a function to calculate netmask. NetworkManager provides an own one.- added necessary macros for systemd files- Applied fixes for DHCP over IPoIB by Mellanox (bnc#870535) [+ 0017-dhcp-4.2.6-lpf-ip-over-ib-support.patch, + 0018-dhcp-4.2.6-improved-xid.patch]- Added support for custom for rcdhcpd[6] check-syntax,check-lease and syntax-check actions (bnc#868713).- Initially switched to use systemd service files under systemd and enabled Restart=on-abort (fate#315133). - Update to ISC dhcp-4.2.6 release. See RELNOTES file for the complete list of changes -- digest of fixes not in dhcp-4.2.5: - Tidy up receive packet processing. Thanks to Brad Plank of GTA for reporting the issue and suggesting a possible patch. [ISC-Bugs #34447] - Fix the socket handling for DHCPv6 clients to allow multiple instances of a client on a single machine to work properly. Previously only one client would receive the packets. Thanks to Jiri Popelka at Red Hat for the bug report and a potential patch. [ISC-Bugs #34784] - Added support for gentle shutdown after signal is received. [ISC-Bugs #32692] [ISC-Bugs 34945] - Enhance the DHCPv6 server logging to include the addresses that are assigned to the clients. This can be enabled by defining LOG_V6_ADDRESSES in site.h. [ISC-Bugs #26377] - Fix an operation in the DDNS code to be a bitwise instead of logical or. [ISC-Bugs #35138] - Merged patches for dhcp-4.2.6 version to apply without fuzzy, prepended patch number prefixes to match spec file patch nr, added patch markup tags / bug numbers to the spec file. - Applied contrib-lease-path pach to contrib.tar.gz [- contrib-lease-path.diff] - Changed to require automake and use its config.sub and guess files instead of maintaining a patch. [- config-guess-sub-update.patch] - Enabled to log DHCPv6 addresses assigned by server to clients [+ 0016-server-log-DHCPv6-addresses-assigned-to-clients.patch] - Cleaned up documentation, rpmlint adjustments.- Test if /etc/sysconfig/network/scripts/functions exists before sourcing it (fate#316768,bnc#856591).- Fixed path to systemctl in dhclient-script (bnc#847778).- Added /etc/bindresvport.blacklist to dhcp server chroot file lists as it seems to block its start in some cases (bnc#842360).- Fixed to reload syslog on hostname changes using systemctl as there is no /etc/init.d/syslog script since syslog-service-2.0 (bnc#830467).- Added autoreconf -i option to fix build for the new automake- Install missed bind include files and libraries in dhcp-devel; conflicts to bind-devel providing different versions (bnc#805162).- Use manual patch command for config-guess-sub-update.patch again as patch macro does not work on older distributions.- Update to ISC dhcp-4.2.5-P1 release, which contains updated bind-9.8.4-P2 sources with removed regex.h check in configure (bnc#811934, CVE-2013-2266). - Changed spec make the bind export library build output visible.- Added dhcp6-server service template for SuSEfirewall2 (bnc#783002)- config-guess-sub-update.patch: Update config.guess/sub for aarch64- Update to ISC dhcp-4.2.5 release. See RELNOTES file for the complete list of changes -- digest of fixes not in dhcp-4.2.4-P2: - Correct code to calculate rebind timing values in client [ISC-Bugs #29062] - Fix some issues in the code for parsing and printing options. [ISC-Bugs #22625,#27289,#27296,#27314] - Update the memory leakage debug code to work with v6. [ISC-Bugs #30297] - Relax the requirements for deleting an A or AAAA record. This relaxation was codified in RFC 4703. [ISC-Bugs #30734] - Modify the failover code to handle incorrect peer names better. [ISC-Bugs #30320] - Fix a set of issues that were discovered via a code inspection tool. [ISC-Bugs #23833] - Parsing unquoted base64 strings improved. [ISC-Bugs #23048] - The client now passes information about the options it requested from the server to the script code via environment variables. These variables are of the form requested_=1 with the option name being the same as used in the new_* and old_* variables. [ISC-Bugs #29068] - Check the status value when trying to read from a connection to see if it may have been closed. If it appears closed don't try to read from it again. This avoids a potential busy-wait like loop when the peer names are mismatched. [ISC-Bugs #31231] - Remove an unused variable to keep compilers happy. [ISC-Bugs #31983] - Removed obsolete parsing and printing option patch [dhcp-4.2.4-parsing-and-printing-options.patch] - Merged dhcp-4.2.2-dhclient-send-hostname-rml.diff [dhcp-4.2.5-dhclient-send-hostname-rml.patch] - Fixed discovery of interfaces, which have only addresses with a label assigned (linux 2.0 "alias interfaces" compatibility) by switching to use the getifaddrs() as on BSD (bnc#791289, reported upstream as [ISC-Bugs #31992]). [dhcp-4.2.4-interface-discovery-using-getifaddrs.patch] - Applied a patch to ignore SIGPIPE instead to die in socket code before the errno==EPIPE checks are reached (bnc#794578, upstream report [ISC-Bugs #32222]) [dhcp-4.2.4-P2-do-not-die-on-sigpipe.patch] - Updated ldap patch to 4.2.5-ldap-mt01 providing following fixes: - Fixed parse buffer handling code to not avoid truncation of config > ~8k from bigger ldap objects. Fixed to free the ldap config buffer passed to the config parser and append new config, while the parser is in saved state (bnc#788787). - Fixed subclass name-ref and data quoting/escaping (bnc#788787). - Fixed memory leaks on ldap_read_config errors (bnc#788787). - Fixed a memleak while subnet range processing, fixed to reset bufix variable in ldap_read_function to 0 and to set buflen to the complete length (do not discard last character, usually \n). This caused a parsing error at further run of the function, e.g. while processing the second dhcpService container that the dhcpServer object may refer to (bnc#784640). [dhcp-4.2.5-ldap-mt01.patch.bz2] - Fixed dhclient-script to discard MTU lower-equal 576 rather than lower-than (bnc#791280). - Verify GPG source archive signatures.- Update to ISC dhcp-4.2.4-P2 release, providing a security fix for an issue with the use of lease times was found and fixed. Making certain changes to the end time of an IPv6 lease could cause the server to abort. Thanks to Glen Eustace of Massey University, New Zealand for finding this issue. ([ISC-Bugs #30281], CVE: CVE-2012-3955, bnc#780167)- Update to ISC dhcp-4.2.4-P1 release, providing following security fixes (bnc#772924): - Previously the server code was relaxed to allow packets with zero length client ids to be processed. Under some situations use of zero length client ids can cause the server to go into an infinite loop. As such ids are not valid according to RFC 2132 section 9.14 the server no longer accepts them. Client ids with a length of 1 are also invalid but the server still accepts them in order to minimize disruption. The restriction will likely be tightened in the future to disallow ids with a length of 1. Thanks to Markus Hietava of Codenomicon CROSS project for the finding this issue and CERT-FI for vulnerability coordination. [ISC-Bugs #29851] CVE: CVE-2012-3571 - When attempting to convert a DUID from a client id option into a hardware address handle unexpected client ids properly. Thanks to Markus Hietava of Codenomicon CROSS project for the finding this issue and CERT-FI for vulnerability coordination. [ISC-Bugs #29852] CVE: CVE-2012-3570 - A pair of memory leaks were found and fixed. Thanks to Glen Eustace of Massey University, New Zealand for finding this issue. [ISC-Bugs #30024] CVE: CVE-2012-3954 - Moved lease file check to a separate action so it is not used in restart -- it can fail when the daemon rewrites the lease causing a restart failure then (bnc#762108 regression). - Request dhcp6.sntp-servers in /etc/dhclient6.conf and forward to netconfig for processing (bnc#770236). - Removed RFC 4833 TZ options from client requests [unused].- Update to ISC dhcp-4.2.4 release, fixing a dhcpv6 server assert crash while accessing lease on heap (bnc#767661) and providing the following fixes: - Rotate the lease file when running in v6 mode. Thanks to Christoph Moench-Tegeder at Astaro for the report and the first version of the patch. [ISC-Bugs #24887] - Fixed the code that checks if an address the server is planning to hand out is in a reserved range. This would appear as the server being out of addresses in pools with particular ranges. [ISC-Bugs #26498] - In the DDNS code handle error conditions more gracefully and add more logging code. The major change is to handle unexpected cancel events from the DNS client code. [ISC-Bugs #26287] - Tidy up the receive calls and eliminate the need for found_pkt. [ISC-Bugs #25066] - Add support for Infiniband over sockets to the server and relay code. We've tested this on Solaris and hope to expand support for Infiniband in the future. This patch also corrects some issues we found in the socket code. [ISC-Bugs #24245] - Add a compile time check for the presence of the noreturn attribute and use it for log_fatal if it's available. This will help code checking programs to eliminate false positives. [ISC-Bugs #27539] - Fixed many compilation problems ("set, but not used" warnings) for gcc 4.6 that may affect Ubuntu 11.10 users. [ISC-Bugs #27588] - Modify the code that determines if an outstanding DDNS request should be cancelled. This patch results in cancelling the outstanding request less often. It fixes the problem caused by a client doing a release where the TXT and PTR records weren't removed from the DNS. [ISC-BUGS #27858] - Use offsetof() instead of sizeof() to get the sizes for dhcpv6_relay_packet and dhcpv6_packet in several more places. Thanks to a report from Bruno Verstuyft and Vincent Demaertelaere of Excentis. [ISC-Bugs #27941] - Remove outdated note in the description of the bootp keyword about the option not satisfying the requirement of failover peers for denying dynamic bootp clients. [ISC-bugs #28574] - Multiple items to clean up IPv6 address processing. When processing an IA that we've seen check to see if the addresses are usable (not in use by somebody else) before handing it out. When reading in leases from the file discard expired addresses. When picking an address for a client include the IA ID in addition to the client ID to generally pick different addresses for different IAs. [ISC-Bugs #23138] [ISC-Bugs #27945] [ISC-Bugs #25586] [ISC-Bugs #27684] - Remove unnecessary checks in the lease query code and clean up several compiler issues (some dereferences of NULL and treating an int as a boolean). [ISC-Bugs #26203] - Fix the NA and PD allocation code to handle the case where a client provides a preference and the server doesn't have any addresses or prefixes available. Previoulsy the server ignored the request with this patch it replies with a NoAddrsAvail or NoPrefixAvail response. By default the code performs according to the errata of August 2010 for RFC 3315 section 17.2.2; to enable the previous style see the section on RFC3315_PRE_ERRATA_2010_08 in includes/site.h. This option may be removed in the future. Thanks to Jiri Popelka at Red Hat for the patch. [ISC-Bugs #22676] - Fix up some issues found by static analysis. A potential memory leak and NULL dereference in omapi. The use of a boolean test instead of a bitwise test in dst. [ISC-Bugs #28941] - Replaced our patches with a complete and upstream verified patch: - Fix some issues in the code for parsing and printing options. [ISC-Bugs #27314] - properly parse a zero length option from a lease file. [ISC-Bugs #22796] - properly determine if we parsed a 16 or 32 bit value in evaluate_numeric_expression (extract-int). [ISC-Bugs #22625] - properly print options that have several fields followed by an array of something for example "fIa" [ISC-Bugs #27289] - properly parse options in declarations that have several fields followed by an array of something for example "fIa" This patch obsoletes the following (bnc#739696) patches: - dhclient: parse_option_param: Bad format a - zero-length option lease parse error in dhclient6 - Merged ldap and options check patches for the new version - Fixed dhcp-server init script to check syntax and fail while force-reload and restart to avoid stopping of running daemon followed by start failure (bnc#762108). Added libgcc_s.so to chroot, so the server can report assert/crash line.- Added RFC 4833 TimeZone PosixString and Name declarations to server and client configs [not used yet].- dhcp-server: fixed to escape all values used in constructed ldap filters as a DN may contain e.g. asterisks (bnc#721829, [ISC-Bugs #28545]).- Updated to ISC dhcp-4.2.3-P2 release, providing a DDNS security fix: Modify the DDNS handling code. In a previous patch we added logging code to the DDNS handling. This code included a bug that caused it to attempt to dereference a NULL pointer and eventually segfault. While reviewing the code as we addressed this problem, we determined that some of the updates to the lease structures would not work as planned since the structures being updated were in the process of being freed: these updates were removed. In addition we removed an incorrect call to the DDNS removal function that could cause a failure during the removal of DDNS information from the DNS server. Thanks to Jasper Jongmans for reporting this issue. ([ISC-Bugs #27078], CVE: CVE-2011-4868, bnc#741239) - Fixed close-on-exec patch to not set it on stderr (bnc#732910) - Fixed incorrect "a" array type option parsing causing to discard e.g. classless static routes from lease file [reported as ISC-Bug 27289] and zero-length option parsing such as dhcp6.rapid-commit in dhclient6 [reported as ISC-Bug 27314] (bnc#739696). - Fixed dhclient to include its pid number in syslog messages. - Fixed to use P2 in the spec version, not in the release tag.- Updated to ISC dhcp-4.2.3-P1 release, providing security fix for a DoS due to processing certain regular expressions (bnc#735610) and several important DDNS related fixes: * Add a check for a null pointer before calling the regexec function. Without out this check we could, under some circumstances, pass a null pointer to the regexec function causing it to segfault. Thanks to a report from BlueCat Networks. [ISC-Bugs #26704] CVE-2011-4539. * Fix the code that checks for an existing DDNS transaction to cancel when removing DDNS information, so that we will continue with the processing if we have a lease even if it doesn't have an outstanding transaction. [ISC-Bugs #24682] * Add AM_MAINTAINER_MODE to configure.ac to avoid rebuilding configuration files. [ISC-Bugs #24107] * Add support for passing DDNS information to a DNS server over an IPv6 address. [ISC-Bugs #22647] * Enhanced patch for 23595 to handle IPv4 fixed addresses more cleanly. [ISC-Bugs #23595] - Refreshed ldap patch- add libtool as buildrequire to make the spec file more reliable- Commented out all configuration examples in /etc/dhcpd.conf and dhcp6.conf (bnc#715473). - Enabled dhcp6.rapid-commit in /etc/dhclient6.conf config file. - Removed useless provides/obsoletes from spec file.- Set the DHCPD_CONF_INCLUDE_FILES and the DHCPD6_CONF_INCLUDE_FILES variables to /etc/dhcpd.d and /etc/dhcpd6.d by default, so there are well-defined directories expected to contain additional config files (bnc#690585).- Updated to ISC dhcp-4.2.2 release, providing two security fixes (CVE-2011-2748,CVE-2011-2749,[ISC-Bugs #24960],bnc#712653), that allowed remote attackers to cause a denial of service (a daemon exit) via crafted BOOTP packets. Further also DNS update fix to detect overlapping pools or misconfigured fixed-address entries, that caused a server crash during DNS update and other fixes. For a complete list, please see the RELNOTES file provided in the package and also available online at http://www.isc.org/. - Merged/adopted dhclient option-checks, send-hostname-rml, ldap patch, xen-checksum, close-on-exec patches and removed obsolete in6_pktinfo-prototype and relay-no-ip-on-interface patches. - Moved server pid files into chroot directory even chroot is not used and create a link in /var/run, so it can write one when started as user without chroot and avoid stop problems when the chroot sysconfig setting changed (bnc#712438). - Disabled log-info level messages in dhclient(6) quiet mode to avoid excessive logging of non-critical messages (bnc#711420). - Fixed dhclient-script to not remove alias IP when it didn't changed to not wipe out iptables connmark when renewing the lease (bnc#700771). Thanks to James Carter for the patch. - Fixed DDNS-howto.txt reference in the config file; it has been moved to the dhcp-doc package (bnc#697279). - Removed GPL licensed files (bind-*/contrib/dbus) from bind.tgz to ensure, they're not used to build non-GPL dhcp (bnc#714004). - Changed to apply strict-aliasing/RELRO for >= 12.x only- Correct previous change.- THis is a long running network daemon, link with full RELRO security enhancements. - remove -fno-strict-aliasing from CFLAGS, no longer needed.- Import redhat's patch to open all needed FDs with O_CLOEXEC so they dont leak.- Removed obsolete sles8 compatibility dependencies, fixed to avoid non-functional sles_version conditionals.- Fixed to not introduce separate dhcp-doc package on sles, use versioned provides/obsoletes, improved conditionals.- Fixed dhclient-script typo causing ISC DHCPv6 client to execute ifup pre-down scripts also while renew, when the ipv6 address did not changed (bnc#690859).- Implemented optional ldap connect retry loop during the initial startup of the dhcp server in cases where the ldap server is not yet started. Set the ldap-init-retry option in dhcpd.conf to enable it (bnc#627617). Merged in the actual ldap patch. - Cleaned up init script error reporting, no -TERM for killproc.- Updated to ISC dhcp-4.2.1-P1 release, that provides most of the dhclient pretty escape and string option checks. Merged to use relaxed domain-name option check causing a regression, when the server is misusing it to provide a domain list (compatibility to attic clients) and does not provide it via domain-search option; pretty escape semicolon as well (bnc#675052, CVE-2011-0997).- Discard string options such as host and domain names containing disallowed characters or beeing too long. This proctive patch limits root-path to a-zA-Z0-9, #%+-_:.,@~/\[]= and a space (bnc#675052, CVE-2011-0997).- Updated to ISC DHCP 4.2.1 release (bnc#680298), that provides following fixes (digest): * Several fixes to OMAPI, cleanup of dereferenced pointers in the omapi handle, handling of pipe failures and status code in omapi signal handler that may cause connect failure and 100% CPU use. * Handle some DDNS corner cases better * Several fixes to lease input and output * Corrected side effect of printing all data strings as hex. * Host record references leaks causing applying config to all innocent clients. * Memory leak when parsing a domain name * Fixes to configuration parsing including infinite loop. * Fixed for unexpected abort caused by a DHCPv6 decline. For the complete list see the RELNOTES file, that is available also online at http://ftp.isc.org/isc/dhcp/dhcp-4.2.1-RELNOTES. - Removed obsolete optional-value-infinite-loop, no-libcrypto and CVE-2011-0413.bnc667655 patches. - Merged the dhclient-send-hostname and ldap patches.- dhclient-script: fixed typo causing that only global settings to set hostname and default route were applied for primary and never per interface settings (bnc#673792).- Added dhcp-4.2.0-xen-checksum.patch by David Cantrell to handle xen partial UDP checksums (bnc#668194).- Applied security fix for unexpected abort caused by a DHCPv6 decline message (CVE-2011-0413, VU#686084, bnc#667655). - Fixed dhclient.conf to request the domain-search option.- Updated to ISC DHCP 4.2.0-P2, a security release fixing the handling of connection requests on the failover port. Previously a connection request from a source that wasn't listed as a failover peer would cause the server to become non-responsive. ([ISC-Bugs #22679] CERT: VU#159528 CVE: CVE-2010-3616, bnc#659059).- Enable ldap CASA support on SLE only.- Fixed to use same/correct dhcrelay6 interface variables in the sysconfig file and in the dhcrelay6 init script.- Updated to ISC DHCP 4.2.0-P1 release, providing a security fix to handle a relay forward message with an unspecified address in the link address field. Previously such a message would cause the server to crash. Thanks to a report from John Gibbons. [ISC-Bugs #21992] CERT: VU#102047 CVE: CVE-2010-3611 (bnc#650902) The 4.2.0 version is a feature release, implementing asynchronous DDNS processing and includes "The LDAP Patch". For a complete list of changes from any previous release, please consult the RELNOTES file within the source distribution or on the ISC website: http://www.isc.org/software/dhcp/420 - Fixed compilation to avoid segfaults as soon as ldap is enabled, merged our ldap patches from 4.1.x branch.- Fixed a dhcrelay segfault while receiving packets on interfaces without any IPv4 address assigned (bnc#631305, reported upsteam as [ISC-Bugs #22409]). - Fixed a common infinite loop while parsing options with optional parts in the value such as in slp-service-scope option (bnc#643845, reported upsteam as [ISC-Bugs #22410]). - Fixed init scripts to report correct LSB codes in status action, when the config file or the binary do not exists (bnc#640336). - Fixed syntax of a check in the rcdhcrelay[6] (bnc#648580) - Avoid pid check error message in the rcdhcpd[6] (bnc#646875)- Fixed server lease file path in contrib/listlease and leasestate changed to extract contrib and examples using setup macro.- Renamed rfc3442-classless-static-routes_raw in /etc/dhclient.conf to rfc3442-classless-static-routes for compatibility with the NetworkManager making use of /etc/dhclient.conf now and adopted /sbin/dhclient-script (bnc#625770).- Fixed ldap option number conflicting with new options (bnc#625358)- Added a fix for an lpf bind error messages making it easier to localize problems (bnc#617795)- Updated to ISC DHCP 4.1.1-P1 patch release, which contains a pair of bug fixes including one for a security related bug (bnc#612546, CVE-2010-2156): * A bug was fixed that could cause the DHCPv6 server to advertise/assign a previously allocated (active) lease to a client that has changed subnets, despite being on different shared networks. Dynamic prefixes specifically allocated in shared networks also now are not offered if the client has moved. [ISC-Bugs #21152] * Accept a client id of length 0 while hashing. Previously the server would exit if it attempted to hash a zero length client id, providing attackers with a simple denial of service attack. [ISC-Bugs #21253]- Added rc.dhcrelay6 as source in the spec file- Fixed dhcprelay scripts to source sysconfig file correctly - Fixed spec file typo in arping path require, enabled ldap - Fixed a dhclient option name and new/old ip address check- Updated to ISC DHCP 4.1.1, the current 4.x series production release, providing DHCPv6 client/server/relay implementation. The programs act in DHCPv6 mode, when the -6 start option is set. We install separate init scripts with a 6 at the end to handle them, that is /etc/init.d/dhcpd6 and dhrelay6. Further, there is also a link to the binaries with a 6 at the end, e.g. dhclient6, making it visible, that the installed version supports DHCPv6. - Moved additional documentation to a separate dhcp-doc package. - Changed to provide config files and scripts as source files instead of patches to the ISC scripts. - Adopted spec file and config/scripts, merged in all patches. - Implemented RFC 3442 classless static routes support in the dhclient-script (bnc#555870).- Updated to ISC DHCP 3.1-ESV, an extended support version release which includes a small number of bug fixes (bnc#592178) over the 3.1.3 version: * Modified the handling of a connection to avoid releasing the omapi io object for the connection while it is still in use. One symptom from this error was a segfault when a failover secondary attempted to connect to the failover primary if their clocks were not synchronized. * Fix test in dhcp_interface_signal_handler to check that the inner handler has a signal_handler before calling it. * When using 'ignore client-updates;', the FQDN returned to the client is no longer truncated to one octet. * Clean up some compiler warnings - ticket 19054. - Fixed vlan interface check in dhcpd-restart-hook if-up.d script (bnc#599702) - Touch dhclient.leases in post-install script instead to provide an empty file, versioned provides/obsoletes (rpmlint warnings).- Fixed dhclient-script to call ifup -o dhcp and signal "complete" to ifup when all configuration is done (bnc#585380,bnc#518219).- Enable parallel building - Use large PIE model on all SPARC flavors- Fixed dhclient-script to use correct sysconfig run dir path to not to break the defaultroute/hostname setup (bnc#555095). - Don't request any specific lease-time by default (bnc#516459).- Fixed dhclient-script to forward new_domain_search as DNSSEARCH to netconfig.- Updated to dhcp-3.1.3 maintenance release fixing several issues (a digest, see RELNOTES for the complete list): * Remove infinite loop in token_print_indent_concat(). * A parser bug was fixed that segfaulted if site-option-space was tried to be used interchangeably with vendor-option-space. * Two uninitialized stack structures are now memset to zero, thanks to patch from David Cantrell at Red Hat. * Memory leak in the load_balance_mine() function is fixed. This would leak ~20-30 octets per DHCPDISCOVER packet while failover was in use and in normal state. * Fixed setting hostname in Linux hosts that require hostname argument to be double-quoted. Also allow server-provided hostname to override hostnames 'localhost' and '(none)'. * Added client support for setting interface MTU and metric, thanks to Roy "UberLord" Marples . * Fixed failover reconnection retry code to continue to retry to reconnect rather than restarting the listener. * Fixed a bug where an OMAPI socket disconnection message would not result in scheduling a failover reconnection, if the link had not negotiated a failover connect yet (e.g.: connection refused, asynch socket connect() timeouts). * Versions 3.0.x syntax with multiple name->code option definitions is now supported. Note that, similarly to 3.0.x, for by-code lookups only the last option definition is used. * Fixed a fenceposting bug when a client had two host records configured, one using 'uid' and the other using 'hardware ethernet'. CVE-2009-1892 - Updated to dhcp-3.1.3-ldap-patch-mt-01 including previous fixes. - Merged dhclient script, removed obsolete CVE-2009-1892 fix.- Replaced mt-02 ldap patch from old git repository with equivalent one (dhcp-3.1.2p1-ldap-patch-mt-02) from a new repository with fixed patch history (http://www.suse.de/~mt/git/dhcp-ldap.git/).- Added dhcpd-restart-hook if-up.d script that restarts dhcp server while network restart when a virtual interfaces as bridge, bond or vlan goes up again (bnc#517810).- Applied fix for a dhcp client id DoS (CVE-2009-1892, bnc#519413).- Updated to dhcp-3.1.2p1 maintenance release fixing following issues: * A stack overflow vulnerability was fixed in dhclient that could allow remote attackers to execute arbitrary commands as root on the system, or simply terminate the client, by providing an over-long subnet-mask option. * A double-dereference in dhclient transmission of DHCPDECLINEs was repaired. * Fix handling of -A and -a flags in dhcrelay; it was failing to expand packet size as needed to add relay agent options. * Corrected list of failover state values in dhcpd man page. * Fixed a bug that caused some request types to be logged incorrectly. * Fixed a coredump when adding a class via OMAPI. * Clients that sent a parameter request list containing the routers option before the subnet mask option were receiving only the latter. Fixed. * The server wasn't always sending the FQDN option when it should. * A partner-down failover server no longer emits 'peer holds all free leases' if it is able to newly-allocate one of the peer's leases. * A cosmetic bug in DHCPDECLINE processing was fixed which caused all successful DHCPDECLINEs to be logged as "not found" rather than "abandoned". * Some failover debugging #defines have been better defined and some high frequency messages moved to a deeper debugging symbol. * The CLTT parameter in failover is now only updated by client activity, and not by failover binding updates. * Failover BNDUPD messages are now discarded if they conflict with an update that has been trasnmitted, but not acknowledged. * A bug cleaning up unknown-xxx temporary option definitions was fixed. - Removed obsolete dhclient-no-dereference-twice patch - Improved dhclient-script to apply global dhcp settings, when there is no interface config (bnc#480922). - Enabled casa support in dhcp-ldap for >= sles 10 and => 11.1. - Updated dhcp-3.1.2p1-ldap-patch-mt.11.2-02 merging all patches flying around -- see http://www.suse.de/~mt/git/dhcp-ldap.git and the git changelog at the begin of the patch.lamb07 1561629833  !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqrstuvwxyz{|}~4.3.3-11.9.14.3.3-11.9.1 dhcpdhcpctldhcpctl.hdnsacl.hadb.hbyaddr.hcache.hcallbacks.hcert.hclient.hcompress.hdb.hdbiterator.hdiff.hdispatch.hdlz.hdnssec.hds.hecdb.henumclass.henumtype.hevents.hfixedname.hforward.hiptable.hkeytable.hkeyvalues.hlib.hlog.hmaster.hmasterdump.hmessage.hname.hncache.hnsec.hnsec3.hpeer.hportlist.hrbt.hrcode.hrdata.hrdataclass.hrdatalist.hrdataset.hrdatasetiter.hrdataslab.hrdatastruct.hrdatatype.hrequest.hresolver.hresult.hsecalg.hsecproto.hsoa.hstats.htcpmsg.htime.htsec.htsig.httl.htypes.hvalidator.hversion.hview.hdstdst.hgssapi.hlib.hresult.hirscontext.hdnsconf.hnetdb.hplatform.hresconf.htypes.hversion.hiscisc-dhcpdst.happ.hassertions.hatomic.hbase64.hbind9.hbitstring.hboolean.hbuffer.hbufferlist.hcommandline.hcondition.hdir.hentropy.herror.hevent.heventclass.hfile.hformatcheck.hfsaccess.hhash.hheap.hhex.hhmacmd5.hhttpd.hint.hinterfaceiter.hiterated_hash.hlang.hlex.hlfsr.hlib.hlist.hlog.hmagic.hmd5.hmem.hmsgcat.hmsgs.hmutex.hmutexblock.hnamespace.hnet.hnetaddr.hnetdb.hoffset.honce.hondestroy.hos.hparseint.hplatform.hprint.hquota.hradix.hrandom.hratelimiter.hrefcount.hregex.hregion.hresource.hresult.hresultclass.hrwlock.hserial.hsha1.hsha2.hsockaddr.hsocket.hstdio.hstdlib.hstdtime.hstring.hsymtab.hsyslog.htask.htaskpool.hthread.htime.htimer.htypes.hutil.hversion.hxml.hisccfgcfg.hdnsconf.hgrammar.hlog.hversion.homapipalloc.hbuffer.hconvert.hhash.hisclib.homapip.homapip_p.hresult.htrace.hdhcplibdhcpctl.alibdns.alibirs.alibisc.alibisccfg.alibomapi.adhcpctl.3.gzomapi.3.gz/usr/include//usr/include/dhcp//usr/include/dhcp/dhcpctl//usr/include/dhcp/dns//usr/include/dhcp/dst//usr/include/dhcp/irs//usr/include/dhcp/isc-dhcp//usr/include/dhcp/isc//usr/include/dhcp/isccfg//usr/include/dhcp/omapip//usr/lib64//usr/lib64/dhcp//usr/share/man/man3/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.opensuse.org/openSUSE:Maintenance:10531/openSUSE_Leap_42.3_Update/3aabafda3c2bf4e567cde83b0799562c-dhcp.openSUSE_Leap_42.3_Updatedrpmlzma5x86_64-suse-linuxdirectoryC source, ASCII textASCII textLaTeX document, ASCII textcurrent ar archivetroff or preprocessor input, ASCII text (gzip compressed data, max compression, from Unix))nY[եCk(?p]"k%aNa8k-*7(e6͚E}|g-f"K4l,vz/-"f%O nL$M71 o>QGO00VEOF8L2eXnJ凲D@߻IIO&D<m lz7W {(kV6@8E"`4ж Ͼ/1*01! .ɸ8丵|#ʢ6VFY8!YD&o^`mxO_; ǯ>M|8*[2fTF}%*BR)ve֭*,тjpӎ=_&OLUٚ! 935G_ڞa&<l #;2d{0U} xL: $]O/jNA`rqf*NGO}VMZtawZ>k'Z<2Yu}|%Mq׉U!+O 2xwƏv*U0?ZN'~YşࢵRKPܾ9qMK{?vq, k};O.$B z[Ɂsؽ`(R~ZK "ZbI 2 ;^:*XdÍ3x+<6{`YnVMW dkhhO10$*3Lzb}mf8}]Âӧ_ ?޶0*eyHlwߖPFL/zGbpDtf' ey"!g_fbP[,pf5mCFE\#眧0HAeUP{FcpXqs&.LK$2㨻\4dS I`Z®DU+BPO|tYs^ho W4B!ຐnD8Ň:XAWf-n6~m|7 ;یAkL,E1p_U!yg77vᆅBp,h=:rԜ" 7{g`} Ku \E;2Ԟ,tA0Ay`bK˿c1Oumު@U, -=?E&<'< jRݓXլT/x EBW3o-BIEI %s;0Ezi;FZiHwT@G֞"zjd}'ь͔ 8hrɻsX[TKb6QJξNc5Po{7^.hc `i;-M''LnwL됁Tf ?gqw|Sv! ,R^/PD\Js{D[xv4_h{ģ@vf^pcuaKstmpშ燓id08V<R\]H0|5NMɌ&RG6ՏTBj4Bx} c'NlZ|^ {X+L3%>xEƇд{Ѫ}"fո}" q#Xª5x' oBZ)|E}X_1R m^^o?*SR5i7}63< OMk̇;'mٙ!F"Fm MFws?go"Vז҄n ٘Z !T%qQ5ޒ^ TL8F^=4ezp ^ * 'ؚ^gcي>w,Y8Y[avVKE 27LcP:OABjO< pAFAJa 3p68HkP~=QUGp!;G8n{I+=?g'Vg3,ixNy.ˀD6=c}*@8_ XO4H|wu -P2DۇנSKcx 5"a)yy_GH S5[7` >Jz9sjIchg2tfAnXAڄ|j&m*5DlumۢΫz40oǢ҂8x^%AH;:3RfJ7DrЛ̃wɏ}'V 5C;%H[8]% 0~kr''gb}:S2lTpb 9rL[Ϯ8˧`M>?$Zr8, O-7FI>f 5O #?]쳤wIQmtă :ο_1bʇVh 5j |?Ad|਺,ZR5DKZ%Ei[ VahEaԋހ>0,Ut+~*@(<dkc%[\t?Z]e&`]J1]M ALC} 63\t)6nmPv/HŠ4>KSp|r^XڽZh(L ε>^RccL%ITQ\'jKycR(#V )A8#c2DRog]J!|l$OҘcHqҋN!P6o*\_lS<./(.m?Nn2n6^6jPۺ b@Gi'!5ϓ%U@$p5* %v=IN;D 0>;Y,0FMԶ"BBK aT "e1ˆ@*=DT>-{PwY!L¾ol@SoE'J|&,6v!Xr 5\!YIGMnFx> '( A3#d lzr #pK%oqH21yviǶ,L$\-؞W7L tq!Պz}pro]=vp}O4R IH2{) \ӣ ^~PvktTT <4ZaSyEe BSLB_mڹG(&gض:qW?ҙ5Ԏ&Aar6> l/yI._ntw<}6:!{vf0an0\tC>pZRUv7c#EZfU Q gJaA!ykKi/\j.%$+ Rģ3]q/%}!c;k 8Apt _4݂}tmzV$Z`D\r~iY fCkEtsR9@&Cb:Ȟ݉>__&sB>k] ]Sձ#ZRÃgy6Icw4Mqʃ͞c(phfa9apX:s:铇;NSR,&*mx m1bA|sÁϰbÖޮN~#ECEA7>,?F9@8G {CjH#9Ry6q6*f+b^J Aqv@~[AmT؊wrry\]tϷe*5k} _4R ~e;ZCx ٷhup|AlNK#x*S̉"0a%i3{1VzZw"-P`w~*KZ.Pxq+!#7yTv( 06W> 0sJb`¯@tZݔ!`#^Z7Z;:;;0A (%3mr#K[ 92V7Dp(rTR_Nb"+>.*\"~]K\u%Cc&ˑᠣS |ոA_#=D2|%b˞3% r1ɩ^X$bYROSX\NmH`sE49Ŭ:kYS'2EU%Imj CkHO?Z}bXF jx.L>]"E[ᑷTX1oN_7^*)D Rx 1r0mLZ *,۬>յ竱#MTP]sq#Od$ꉵss#Gɳvo@F@jpcߝO@xvb܏mH;ދjAo R@6vQ|sؙh=\_:,+ɳd{.5ܘ*2/|& KV;eɶPAJa)2Zwm4QY+ႁ@~@ǒ2x΀b$WON*/z@|\߬[o.ί|_ʨyvZlT%A*g 42'^WA =)5*rxOe.xtꆡs&N Xzw5vO ݔM\#+sH]^4}_p4g+JR8fߛF?\>e^}x$4݅i`73>#X2pTm^Xwn7owL,Ơ5=2EW;`NŢ$c'{ruuAzr`L`7}'}!.Ӏh y4ި;ad6C samEwGJ X0\%bI_$|(hlE 1@@N1ieߨ.͘u]/ď"z' [ϳU厀G(ꫥt[2)Xyдb SG~&t r)MJYZsxj 7Oc$,UW89rN u-9"ҶZGdV)شڂ2.1t[QR;TJ1ԙ/4Zh]LN+k/[/׸_j()e͑iTP~AB`۳)"J>yبz3ݦcm i*ͽd&FIE3q솟qP7<*΃~LBW:;3y -ͼu%L$͋H v7M9(V\mFaB扸B 5cuL>TCS1R25 Wr#<ǭAx\m:=rHfОғ!XL|nT3N) ^znQ"j|}7ՠI톽QЉiVVKzV1s]=p*|_ 7a5HM K x>; ̗}KMp5NI|T`n~΅ XҜ~bcNfڟC"=l~Va8@5˜BxVD1{Ci4yiX]['߇Kqό3lvt+5_&*'/̐V(v@O]H3]5ıl9|/(sv 99dl:b\ = C$pڥ\na `{_\" InX+Ak*ʶn޵ }Q:&W/ҧpE 4)1q b,ن6b| Q=B>%@BR9*k,XbaЈM%wۀNi }A?3ȌjOh X=#P*)~Q\5ʇԗ9;`Gi\m&>F&|sk:#UE86Ѕ3h@)t,@e`C;ca=mY9!^#>e$\?%"1BHκ$E ݫs~NdW/˽1mߝAhm{cYϵ7C*9\Bp1`f%B2 [^pYN6]b%8~˘k<5Op.S? V&C_X 'g p PAw6Gi !bUrg F=zk8ezP}K"_'5+>Ly/߈./[=<-TFev;<*T8#č\o\B3W"Bб[Od[uLcwQ5* ^KQv!f)v| &=ԇ +!$ݔP(cI§$#H[rԳ3^[ѼUiחk* ډcEp®%N(k ( gi:zk+4VQC@h9q18бv1ox cS,6b:,в.OzN!d".яSՒi~rς&``IJo QWeHP ]*(= Xm)s4[EPS#Gp9Ild <~!v|/atW#iiIKW릛P[ bY8T EFp^P 4IGx5sXpfеgJ22}cdNo˙j)ʅƭry.QwfqN:( ty)Lb|H\5Brr,̵Ў HxKp_$}߅@_*pukŋ|ŝR|\He(Np*.?חT"Z5'zOfv~$_}½wR|zI"/$-a\ʳd\z}fQ8%"Eacϻu*cRT2 4MԿ|tWtΛ8)S gjJ W!~f0oPGqs^c@t%Kt=&yspԚ`V^$+˔ࢳ)|Y):Ke1tvb1ՙ:wx$ԋ2!SU?&5\$? {@-yuN}-Vn[ {VQnYC^ud¯?k=0AԽhE܊+DюCꄹb󢹱Tk }JHrnA5Lp!Qr%0sV$/D4Y[Bu i+R6lbqcD\s4cm qZB2gN Ubߴ! yfiUvV;NEM˰3$:I^TTrl^g#&W$J>&W 2H#gIB}Da-0F4A-;j}Ȋ/+"uw}%c޳G*u ~~ SocL~Wq~E ],GT8*rW,ɮ=ΝJhοJ!cGٱ]οhcY8nhh+lb$DNmrgL38ܣ3kP4˿!jQKљﻉ~0=t_#9DT[ sfMh;&*F!ufH|McӰ*Dzd|1+9GGi%Q}2kZ誰. qM-GީE6w;?{#w5 mN.AZ96.ҾdGCn50>JnBÜE.+mhx>li`@5'зoDRhtn@S%'ӒCOngɷ/ǩҏU_be6|Ų݆\(ל(WX.*l7c9[օv!k#dpgu~+D&o4ѭDUj%:qsgcj!#qpѐU3w0 iP+BϦ{#,˻._UzPiW709C|۩YJ]\(Xw%Er2WHbV^ NNBpP(g<֓Ge!v-J@ wbu B;YZ92kk#:֑(ܐބ(7m^ /ǵx1 hb<`O*1v P|22]ӛwvGI=.4zL'aNMƝBLhqza yoiP``D'1w7r 1?Q)Lګ$x0KF:ř 5 bנ4eXވL ,$sM | ;& nl\}]K8TV=ݦ мK9(|pf(l0d?tӣD臵B8M"VT ?MOu"c=Km,0uF:q\njB|gT1[KC-p;ͲCIOk Wot!|Eoburjƶ|ψ((v 3Ċ u㌛j\\ҙ։M ;-T;䮦Ui˯z ds~|8TZ\)Wvj:>Lo=]eH= yswlڱقq@'yB B|%YnqRtxFYkTSv]gX={H..O~b}/*ө dT@RBNu*8E찳#ݖ / ?6aމE&%xf0ՏF|a%,ysC$WZJCD:W ϭ)ٔ=)q[] ;.0<_=bm gY2RZѓ@17% |~E .~l 4+^0U$82^7G>)ٟtrAjbatիsʼrP+5i+>33)t UvM|L,lz~[~V nb/'Q"njmKocv;2-Oh O+1S ..Jė9wMvz.XgםV0CQ21F҇Q?(d^Rq BFHdi"|?Nښ' 3lT.+n1S \xvL闚K&݌9dR4DHvcwdU=*ZlgF'^=Svü9wyD!2{NkdUNs,/GG~Ef-V6{'}OaO[%r.": a% :Rf13M*\5€2E%NsC E\1|i7<pKCqe>+O"iOZee`l,Vdc2"چFLLځWsңήQTH"wubm(=_wf<:-=6ֹI*ْI@VـݼZ;K)qړM4#>H5׼r ܋W xY44#PDT~3yFxE!o\\Px 6U Qw@i ҊƩۘ1v[yO0(:UjVL/Ws>0+3v_ݦ(@ ػ'aMh4? #NᨖPTm\W | r1t3#1w:Qk#i`FME^³K8ύZ`H^V_e)$O\ErㅞM<)._hBsќSoZ"1 ѸLH3!EtXiGIbU:ẅe˨jP9S}ƉYv 8ȸe*L |DH UCP'B#?nx_7. kbf툱K6]pDrDE~fH;,,6)V,FB4ܚ}QSy]{ըceqT2qyl]abZn6~x7x5r_ނ~^{ W*>/g;r zi ڀ…Ĝ42ŗtZ(>@ TeRr%u,D ؞χ37w:m yF-NlI_LHWyTF7({n&× _bVKg/`L)ZeOFK'08)N6# Ƨ#[(:OUm(_lc㧦HК'~3(=e= ּ9cjN9;pg 1bs&Y׿sXnxbW:p;Sy/>`L8Q\i5acQ#l7;vӏuqss0@f=̷Ѡ:Ɇ})C4j?fv%]?PĔP] 5>pLpȞqĔa.:<>X׳m#&=dI)s0#SgP|K-#(+vZ7qٸfM+c8.VKW*\$ k(_(0* /z< ɯL;]ݽta+8DTY#%ݡ% c}poZ'D0إȠ>'$e $ʱSM,I)lȦ!W|Agx^<#_e7kb( ܘONX`8oR8H ?oBPA>UjF.ʣ%f7 قf2 zgK;;ý&juhxMWjsk2xvYA$@*yןH'ʼDmRESEa%T&ETs8Q ;V !́T9 P)bE,ك%ӆ˽úxPѱ;lA,, ?:7.%u z p^cyc3>0[%7X ht=ow/PmJf"p3@MX`fuxtG`4VN;-JNԊWa1ߋA49[@\r JL1*w-JPD3l@8b_C;!3Ps`妕;z z\EƜ /QYiEQ'ϯZ9MK@sv&qcg({6)_~,wYI~ 7?_ vnbfe:8d!{!:Nqޗ>gȐaV&['Mye/ȧ */稽 wXS }X!2i3d:U0#hy |ͬ Kھ]Ԥ`F/I)7#ig'@@U([PnL -b 7,GJ1oOי N=E$h<>2}:YCߐ$-K!)+~G0HN\_jpIz(yWP #I%dY+<5k-DٌsKp%HqXnzs^&WL#`r,9 BA"]UgzQ li+, 2~-9+F<3<+BvCXQU+ň6í2m\w>?J^VX3úTxy ƽ5 <]h#ˉ U&˼(!8uLًd4I !IJL}K#du1ՇMU "y,] ˢ=]W8o{%mK!|ɥflB*^5,ӞfT5˖[hzS>ZUVT?̀]*9ŻkGV(%0&0,5rg|jd>r0 zqZae6z~ɐDEnAb`V}qrt"?(Nnx# &Gsk^u]}n/)fZB D[vʴ-N(e)o9J@obeHP3ƽO/NQ6,HJf]qTIՁ,Q=D.[ZӔP[@[;鐄Aaj DH~UΒ6DGf(/xR 4L]{mb= c[Ў~IcTFytwc쿔ꎬ D2V(4ɣژ̶{N:!L5h`" ļsKZDq g-aB Ǵ,MoV0@j$՟Om7fYm[IoP7'K 67Q1TgjH.<9L6-E%d]ʵ~8p(^LRG)="O!vM vWNz2G h#ChYE 5E= NXhYR^=Sܑ욁8 d%YtA~ueNz?in[_^UڵbxMA9 t DT`XUZ Y7i q5eOz w8ǜrpV܎rsˀs5ގj q l脎 gtP} u;~X mrƋaVП՝7,I)XߤM2JyT1k 8,v4d %(L)7!mS/]y 1I:U_yRڰλ)_yHU(>rF|IKWռT)]`?!H^wO}NXJ[=`H=7z 2a7wbM0i,r Nzq[z1QuA p'ܶ;}wX/-ixfdړXp:Ӧŧ_Aȡe(@m\XieS6^Duf d'W(h!( / ôs$ E'B#[(ɌC9G0Nx5q|後8ͼ(Vo)6d e]EQnq.ie|oݵOP %]J W@]kw LpXv2l&:q#hp$]$ dKo'F"___a}2+Ҁ$P샙%AHew;Y'b< ypxO=ͮXbY|i<'KbaY7.x5Wy@G6^w9rL3v[wĄs9BV6gbAFB^GwO婾#8'gX}:IU|`' FJӜ9+h}{D@NB? z j7o[*0B$opsJ~<\"PZ2u'$02IF]uS'%vwnF7{b aԱ bXpܙƃ'$hwIqk$c9lmqj)V>^Nb)SwcFnԡ)=Po*uK2`G:LV5[ fmҘfPoɎA]G Vq6u?ԞF0eKYx٢c, % x:LOI{맩;i%Nl~[jV_w ԾE![rP9s]?3n.lx&1nݽgd bOC{QT>DӮmef#ρBI2a-s[.]uWk٠ARgki(YcsB-e% 18; 'PdKX.CM7EC)~p:fȾtx,\呫V[~!,>2.7q*%9NE=};a)r^Y#[΂hH/ZAA#[nFC&ZFYk/|O5ёeZaծ?EQC3ѐ|?-uqf{#-Iv8`X+M33mPhũx'(6pJ{ OS@Is/No^xpY}1pڒĹCgIx4T_o{/epǃ(?+"b]R] Z![1,$-:/ZF/3 OeB$to 3a)F O uo?y1+IMĊ()` o!t9l/ÿU*K5Sv&jSe РIuh9\xi2J#W+Rrbu5ՙH'N%Fهl*rN.6 s.yg#ix"H2%lkլ!Ia̋bXIH0!BFGف hRja2iTGߖsa"1^,Yig.kS@C \:1yaf²ro^Ncϡ$9if+ugR#֔WyţG A ۉK q)C8Rֺb?fh%h,԰Fc:a}ԓP&}9c8z>Kĺ;6u6$uYj9Y.3H F3vjS b/ J6[5s|vV8y0Q(3?.F:Zt"Eo{^y 1]@>fak.y0J/X#Y%hzK[{d":3 |  WDu\_b ]VC:U ;[YDtV?drV]8}ݛddR^5fVHݟiC; .Љ98j^Tw֌FC9^H<TH:<~ݸ /0a0w` !zjh5q{+]ޤr,jY8'3ւX,]2ncPQ1.} B0M|{?~e[Z޴Wsi ˀ[RFD.*Pr$s"ĭQ4F\lMW8ǹeg^NVNOKB<+i.QKn)x3h3zU)sE.&&>kam B)nB _^rms9S`Q 푩 QTU36dI0A}`hJ~ Uo LNϕOP5! 0 :IX(g(B4c#m8z|DZ)켦CLI>T7 0c GU{sZkwwD; Unɓ(h!S<SU5KOS4SNK^OF 6|փl?SςOۙu q-BtGF&*匵pVՈO*=88I&G '# ;>nȮH>  j}YܛHk= ;'K[e/쥘cup݅d0-7C$) q84µқX%n6xJp^M'qHظpM{v;vM.剈jV.||8U>Jy!21^:HZ<С ӪO#ty֏6h>G7d,|+>wtz]VYo( tp/KxcI<ub;(zTH0Rz"n3`jva-^&J]\B;d@{o&.u3Z% =[ZrbS 3zyn-٫2^ S~ )ߋҐ:_1x14^EXc6Y@5KYlnZY}3I]oUc* ͣ7!l#j+o虂aٰ/c˲ VElzo['< NխX(R)s-zhX2SXS=΄dW~ X~6U$7ߌm#s?D`hZ퀈u<2C^jl3K7[ S2F GO ]>5kGCx cBo;3/{ 4+"+^cyFq8M}k[~W2D%B)#=\)>X ~`)F:ӡb mF>PaqQ@_Q^T!/Z[PKtw=dvz# V>7n ږ b4'NWd DC6a3#LI@p+#@EBٲF' G`u1iK^3$M5\)拭)I#, ~Q 55!6맮'?,.[5>y!w"ղr+T7o.k >8,Dk oWV=j!UH3pZ'x+g8R>PAqT|XwZ,yUNaS-Wx@Y;+;o{̬d yg0Cnx,KdQV¥Πi|J~/sޔ#yYfKVt2BKrxx[śq:9$NK쿎yգ$݊N5f57,}Dk.vi<>Tc-_uGA:Env ̫=|[йV?G _7Q>ÕRQDQɍѴx<^ZTxP m+5 on`9 3(_%foˉ9ZQ7lCn7lUO)1VEz rAM'k'U6 .]z i #eQ 4HFR)p]{P ZkRpT塆`-@]P^WuZ ߓ=x3%)l 7Dùz= $Y,Ƕq̒.8Űp5:jˇt!!9pdiiD} ^}LYNb3.b~,Ŏ7 >_9<:[gEk_nӦ9L Kefio/5G'BoG r9֣\ b-|hcT~\xޙmoϺd|UJg']XG:Y{1Ez`yooZ bhІA Г$5BŇc_b& 0`Fq(v%Ӷ<˒,) :z1)".Vnu byL[g+t8QRXƾ%Idt}\RIZܕ}XVoϧ,sHFLY\vQy@.Qgcwj`9
Bs-}ja}K/iZĀhO#߂)(3;jT+h\% r0ea`0kUjcS3* A;V:7~'3<0mD'IMR=pPi`K);P knj̀Rޤbd0 JxC)]3{:δ~ETNNg {-<GEnVlu[G>:I`_dԹ(PzD 5I[qiݝm '|:ª=m/÷A6ſK-~ޠ_CthcDzP9`q.T[P O$Dn Ys}L?3 dѕb#i+|ð4 "*}e xAfS )K:M7O{N"'Ršp k@Bes}< 3'<ff^,Q67_?bƉ9~%ahv mN"=d[3,Zs蹺`4&UU:p!PYx68"̘C&,܈S #Jmq,Q@Gڔ̬+#!Y#5$Ӂ(+#(sŧ](=,ŊƒŪ5O2XdC @nқgy'XZ3X&U"6YMX<Ӡ1Ol@]>|H 4Z᨜gxcc1AH[ge+ |4 P{]iCua%r+V=|qTV^͔fUygpl:Z%*D[c(EFx!WGA=#E}Xw D]*gP=o+Fn/)2sIrmE2 0*}(e@1ьIyza=JrrX+BDش~wr.^$NKU.@hGLꓱgិ * 0-X;姌,z8B?d/V':Í?%r7\te,>=W &AYCWS Fj%f|q\tpm#sdVHı<hn 5kцۤ_ԇ4L(͇bPUe#Q[aQomYc@ Z5zryw|R JvNFY)uR*Ŋr&}hʣzLۖ{_Ƌɔ`-o|#tRGP;oc:Z6Tr&a%?B 8Ȕe}*<@9<2bnK 4m&MRقПc6\ۈH\/Pv-/a1rLT֟j]{ggy N)h _*tn& _,m&-H `ʡ`:Bfǚ7K(s,0Dy#LF'KMxǀpǎ.+p.!R&gə^OLt"n=EB`{C31ZȤOXdCEip,?rI'ؿqPP' L#k "sR^)EPYr .Ko@uބ4&C[f[ѨWz2\ހJ!}O.pᛮ5q=!½z!W[LhWaGBƐ烹 z|;n([<.6LĩSQlyK'Wp8:  (h=SiB6V 1,֞5\PIVM]ۖDdL;DZ!,"d 4>w$ky8 ҸeMyP Qt¬YStf‘-ǹ)wI+[003e՞B_A7v&}C@4RD"y ]'kwÐO{;HV\T oi=kˤl&'*OЊ̓.\7'!&ml,ƦBh|x]]V[|!rԬ~R9%:D<3OCSD45޾1] IaeyNn4_i%.A 6 sf#dX'd^Vr(U'ec|.&-^ JE^=EY>SVO30I󄓾/ fsVO;cƜA5st&C3|hh!CT%,g.em'g\4k_?Lŝ:exnk <0Ճ 5_esO c_]]0 X0yR6rL2Igb7w{ jy3Xtp9ꭘ?YţBCێzPj"ϒ~黹S{];7gCCxb?u cidvR/*ɻD2kl݌|s׎tLjMJYD"qun_z'ʺhx$È' } boM-=|5`7ҹd f#h^spFɡ/u7a&ۉhc}u‘$KW[K-^9E X+4_oB`^.m@nZ؊ZY׍5PwdA2a_߼/ 1W5 @T &qdc8 5܅wrnW҂LqU Xx-aҐQJnIk4 fo3@.8û5'la|1(R[wW v=eRstS4nx9-p$kRY#8!+B$cᢃz!".Q֭uu:dVNзV-vn~"z~=$[sCLK*D鯣qR}O8 ጧŽOD5A iBf\3{gљ$xV^bB$uXbXbHS!Q0:bjnEqPʁQB4xQf0ܹj$j!7hأKDQ%Xsw+iF.@3)Su Us/cmtE;(((kQxZ6Pfv $XtgókA9%ͷʔf$(@F rFxg a]VEW+CTAٱ鑬^ ݢOE,L~i~K0`z*T7KB9TweՃ.nlBAJ ~N n[s[;:dft". 4 <@݇I;x>>]8/7Oq}Wߛ-XU!*./EfَV@ISu쩇qYv,[{ة/ػƷZs}ϳcym)PpxdI2B5LM0\/i6vL0Tv O'&zf OJI[{vxG(W.tsuV.l5mX43ΒҤ.kY\hFlDszᡔ~$CmN05lI1AZXRs5NkK*}1B$iߑsÕ+QfP/ 0N\i m^!'9XRɏb*94qezX`SuϷijr]hYrUbuxȓ0@C̔сL(^W<[uYq#8TufX;SQq927 |08 qk!Cƾmvo<勒=*y>͍ҦI/@5 E6g񏘝y T wt n|AIL2A%T'8io>/mw&_g'7*_24(Jbzg k#Q !mD8gGNTD,GUOp.bJ!(ud @)BM=SwUԕw:H8(]=e4(_^)= }Oj-l;4 z!- a?2Pp@.h DlVL*:wn}NQJGh^̲Ό=KlAq)km8 noTBn=bcH _7. RFWn=Lwt$5K e=ZfNush~0jS˱}XxS{ܦCD巼h){1,HD ˡ6L؃iA[ITk{xjO]?(T#7YXJG} 2 e 2? ˭ET_yg +. =ඵEoޟWp3 (@' ^3K8v؈1-Qz".yr7Bu #NqE+?aAǜeoL;_uGOX^x~(7xGĹ_uq*ܺZB_5!"`BPHȼ:x tؚ-6m,Hm 6ѫ-\%q2D ,]~o׼(c\ ٤v)kxJ;8kDT[z`? sd<'fC9SP9'lg3ORUH-SH>Ad=Z2ЍǨ*xm1̇;;#eiCI؉EU9uY$fn9]& s2)PiHeBCJQ>9I'f\xy-!湀\}vs$W[h )^  ]˨Mq_ btb(63w:߈| FBd; ujDI2@vi.4ܟǜwa8h hH֜CvHچ: $k;<JGx1#ċИr.f0ثW^zXk^'- (g@>[" ogy9 /݁<T, ^k Wh8)cr&c"0ۨ{ZҝV\Aj+]ls9W.fg#6^+/%{1ސWX lMd7)5$ۀIbzU*Mꥢ և}"9-Rcp:lRQ,Fya40?jO\JKGm4eѽ d6\2t:-'WVc%M$HlrdMHlNCkh ˠ7(mB6Vh(b\2==tB~B8[|٩q3 %Jh#q=U&H@(^U"|g%ši۝z$Qgyk/4z!ogWs6k[,-@[f'xI25"5ь=gEsk9[_T>hEGyʓH}r|kgz>֨@6w6? N"#>m,^؂IJvS% 1Dh:'TkLvf T첰FHpD|<Ȗ:PTV|l:}+S=,b85I AF#W\kj> ~cs0G#tC!}]TNP<>&yHj`]cԹfj\?e&`*1\)Mr.v`i7fx}ly2: oWJO vF8V>ȓ0$HZl}n44;f)äJ<W-PS6?u<'߲յIÛIlkEB夢2:^]Z:<]`99$0eԟu.$rnJzpcmT Q*$zp3kӥv%yA *kfOPP %dg59+C#HJ6/sLn>\yH!Rwi9K_IEjP5,k*x> \jy=$[];2ckdU$1r\ca\H9pfp[EMʭ/A0@ysyfOX*6 p$nKLP=.̹ψC$ -RIzv*@@p =Tf(SIU@,jtV-0%iTI4V+.4Zm~|҇BphY2i6g餞 ^|F3H+o؍Sx\` dua tW^iNea=s.hER-|KT|? sMJ?M u@d?Z;E*?egęTL,8Q HAN:s$+UN 78 "H˧D|5>t{?`h"*6|(Y[Us(ocjЙHTJTmҠqa+-_% r<YF7 1*w(Lk:hD` ,'ω7EH0F̄&?~ep[pX`L-P`=!25" Ӣ>!'\yupE_ ڴB A^܊M#H~i L *[3 kb&pf&QeA#ڌ9{0HR`ml婲s 1 C{xuW/6z9@|xq`'ӭSҫw~V Ù8IN$U*01s:)|`wnwLm~aHDL3Ws-UU+3.?>n }?q{nm|,djC ) Փ!WiH)8𷜓< n?e?s4 19о:} Fp;Vζ 8OR~,˃.~DI}tH h)͖ Tacuc3U:`AcZz!7Py.p/V8/!wpE&_H_j ."yh'|{纤 _\ 26*sIպ0GmB{gPuШhxNF}"aį`9_[a]{@vS @(+VˉwΔv ɕ[֌νBw]*W"j s-V2=xSb\U)6=:>Rl@ֶ Ғvěz^{=;s(;qYvW<6Xee/r dLa)t*4IMCdc-"tpOt4 _#gwMc)_ġ MmAe%+eڑ ~Ÿ{Nx,TUSorp)c,P8.;ƚm4q-:4qXyJOxj+AnzJ\q_畷o _ 4!>55Xef3de׌1#{YC-0G\_IVGG:'}y 4b~,}A|m2+a)6w!_ Yl`{CѸ)27xmpJx 'z1>7)GjXU!"qiv o})~3shBZJb7ԅ<Bڢ&k"ߓ17jzlǹ 'v)l.rf_7L`r{yu|-EꬔK]AF|K{E47HpoR݀L pDS)YP{^S"1E58xf%Hrb~ݵ30"<ׁn4eGG݌;t g/2_Ӫ\煘2>@Ko YU_'/4XB|t8HM!1|3AgWS/ѓB nݭrɋ/Hiz]z|!ڙ4dT"DfS6g7i)wʝ{@_1kRPcb(Zy[E`uxK(!]̇9,K7m}/1'>U1#AS5&WUsǤc8X̷ a2BFn _7hW As84U|e(zB?w$6#ڹͰ֍wC#^.Q]!-I0qƢ%wDP "JpCd:ϊĂLw]} e+[U}R(1 Rl.u]=G*`L,ijNc(Jxs~\µU.!m,H=?/TN5l`:N{s Z']jftcȷ}~/n@!?eS!E$1" 0%aW #dfkelaۼT3Tw.̤aG7%)I2[KG,wTlpzc Y';(Ǒ闽 ry֥. GZVr:$`mf2(40-:ӥ3 PNJeX%Gm5ˆW%!Qڵ !ApA$`^F;X]sĤ:Uwm'^=*{ݑ><>ΣC.b_YBڦ6PMvh3xjRX 鴣_0\=$oFTzJԃYx3q=5 mRSvc YwIMVMq)b 򁃿o >=B^} ]a\qW#rnẆgΰ %H?hui GHGwBŵ3 z> }"}0֛*YL"o 9+NQ׼4-5T@?7N[=$L EXZ޹!X&Ve&{ަT5U(]'Ǝ2r.i"eߦ)?]~\xuu˷5HJWggP`R?Ļ TGexyAVL[|2-aft?Aczy; AmyLLEm+>Ǯ{~$]q*ex jY]?C [cR݋5|L:a^ηSon!!t*H6Jr/RR$ ׫WGxe'TUUR&>= Gy,YLߙh/b;uvjCHl"R9 W P൱p$oZq^چ5pp9d4*>_tUm;T0 A<؏s~-cDrg%$0#_W>c@rں'C_3"R,I|o BU.vРp)O4vv4)?5i.eyYD -' zwkBd pdu痹߂OQaHEtHbwHH)\gL.,"yyw:}}ZYj;2#lA- dpE74t<@DP(2_JLHk7Rg`H'ŅM)N,<j^z Gq#$g7i&\S;UDBpsݤY)cdUF˨dq#_ v Vv(m=OibG%Iw^Wn' E )P!Ȼ_Y@ bZe'EySQe[nGmF*eikD_׿M{k`tFqz{?,s8rt^1ԫOc;W$φu} sJ:U'zػ^$tqB[g:;4ZDx|Sʾ\\S M9뾀de( Z#.1)^,@IK_9Zchf)#J?oVayN(c[ ĽLIP߲Xa!7~B]H_A $ jl`('eٱs6qTiRPe3B~Ֆo,qgX,`|xl2A@WB #־ Of gYȽvkrNr#:׈o~,ҭ&_Yeٮa' o^M״8gh $²f.U@9dmDӀ;ˎ$*VK+q0yKSCrtq+ w&88!S0*26{ac1OaH~,"z.Mo7*9| ;N9̏%b kҽI0jVj "O6T1:tsD^̠7m ml8Upf;N5rJ( 4j>qZְ&c<;19'+p#zZ!^vY6tNxɐ8ӡOnqȺ H#_O~UCAЦ*%xɷg-.d~-u<\!a@jG[HҘGN\}i9Cw>OϊZr O ٗ⼜k3~J*٬H"3fXU ܘX&1V7I!S,>k[Il?_d"e/DrnW/h ZsJ49}TM0DnL2R7pI>'LiЉaiL>| a; ZHy 31ߋq2fMg!9o3K?| 7hKnQ“A vbkT]lz3iv>x{c] L~c,r\= SCмoZhLb4{3~"ǜZ4@-Q<٦{KaK_*B0A9- *]trV(Sw#U1"쎀a'.V1 g kХyZ&px~A):gmF G v+lXiFl}ee[Aj h>_pgp2Ľ<*AOhJV؍\gӐR$ZʆfC3 b#Qۛ$\/х}@@36k㶟SPe,ݫW , WQ!@5?JbAJf/ȋ..e{\ cf,_WA#s[i!PItFif?2/Oٲ? %HXGT(*J`2bOZy~0;kIV?y[zK +moF:O(o+9F<<70H}eMkdsD4B/Pѓeb9~Tj(*S$ /I@8]K`%xE-Ӈ{J!vɉr>[(}]pīVܪ@SkfF}e6$6cmNO8 '{9Q{JLY-\t ?ljknXM %b.%ylWcB[>%h"ԍ#?!/UKr>@V\izխXtHk)֌R|V$* g^-Ѝ#]j&L5rxm6*˅ >q3R*6+ #=[]c"ig=|EA .a (.__rj<tH';SY(#YWGO_\|z,c2Vggԩ\=[蕷g3^#\4Kyt@/$-$U,ͪ N ݂,Apg[ʼn8B}J%6Y_Ɓh')`HNgϬY(_I4pƺ kB*r+"Գ USU/2b y*X_u66 oS1"uSvyGVy{1x_EHdVE;G2c'_M f`*kwzȅRkbN[m$2U-NG_~'T4߃c r@B/MC5uJ֪ }.w-歹9},'od$[p**U+e!S.g#ӌ4R^I16)%[֑(ԫ%YUl֔uz*x^D9c+w ұ (.R=;0h]tُwlXEv;j9Ѹc^}. a3;4-ϨKI~m!@pCKZD=ҽWp gObUzp9$eI/|UkC_pNR"1lg 9BOP#|THΜd],#iz0 I.CHjSUٟ]wCx˹{OͮW^fܪI ( H5SGʹI@{\^êZzj Y$E-OοM)@Fۯ6VTFw UΡ{WZLHI\\9}M[_z@=y7]K$TYI~yC5[Aњc^L8CW$߶YCKNu)E3DωJ3,Ź﹤|i-\oiP6H@S4HtSDwm@:%[3ѝiO"K+V.aӚGl7إ?#[ ΅JCȏNiUgjribm~1f,GԡY5-.'RmGͼ濌a^pTI!cO;02v Nb"CDOFw ەCݧY:#&5`Kd_ӛ=4q{ģ)8P45C&ɞZƕ>酑׸lKk*`\y<*,}OϮP>-+_ PC5WUPC"p{|rʫ(ll!Jjf`gl*FE-@&`3:t~L2'JdBc0?9 6]\:~#~nu+A'84LP6IxVA祚%*3Х«@LEt4Xy+NqԹ/rxjVlG]QHz&Clnt wk(A *-7ӮdrՋvoEMƩU mk_Ar H,V*)_:ǩp0l=_i|v+Յm%(=bLF<7^C%&#^,,sI>4)yּ["SC3!eEKzkxK'|'"?Y3wDQIuxf kh@fgȧ]g$E)9OQ^*HP,| h[>+y,r2Nz{WS;\zo3\s1|s4D w+4`qyJ꒦l}94ܤu@孽߾n'?4Qw͑\N'<"OgNr-S@֨alAE #] 锘f]#.F14,R̀@a\D4FgxOֈξiƣR'oJ huft{htܱImPb@NgRA{<$եitp:`@W<3CcG+a}v U&=9 4Zq)Q31̞uSB~xnA^a`5. eoK6<*^QlC׀5;T@70ӪvP$+PH0@`}Q+H{z^T _\%& ͪDh C> ջخ̄kwWY f826hhΗlˬe8seZ0txf꓋d=+΍G+`Ʉ="6LxD$S$ S{t6_yh~]{ ͸"؏ Yy)/^V,iInmUɘzbg@dI* $2&FvpD2Ԑ\="ys^ u_4dƣо8hpD<YĠ)Sb b ؈E@ve +$p۟} p\x"5 u< nC{rrL׼֘ wE2/`uCu2i$ ~Lg֛łȼy?rs@(?~dԱF1 fI<ԣO ׿BdE Fhgz]JΔד#V:}ohD9mp$@5AG^ (mf2?S'$~ p?WyrOj4}P7+- q x~$Z W/c;-2 B5A{]esT9cuhRq!lXϼՂhJN`}Y`* MZv[(j)\ACvfNK5K:)!}hZiOtҞD")Lv$aZ5v^AIӿeyMzpPf 1zQcaK`"Gv[p% ;7M}TO w+v9)1LK]nu| ^J}j[p`,ʱ$cկqoEfX?_ Vox+r7SKhSrst(Utãe[GN?^;{](ge69]H$I(m<eZk w֝8ꕷay HW˩0M QO$P=C^JKCC2 ]}vuWF)6?ny?> i?DEloT H0T!ya0;hY=xTHĤ F~DCpArzj%(; Kr'C}0BfnEIZhf t }ՃٛF26A[F(J(W4N)k528p {*ϗr*rs*HU);PL1=O#Tz϶KDX-cFڪn>a5S=ߺal,cȠ+F2PTo?9`rCz^Ñ7܎U_ۚ_n9Zm=W'7yK WfYתnhMu`#3^2zD.Hx 0P $eE=mz8`&.nᣫܝ D8mF01OͮPu M!6<! 8(m! (n2ЂoW*bՠ|}W s$Ib~~f5Z},9 nwBBmjj@~L}[j"4>΃g C o!n2oR\Vc*GT_RC"l$rI6@@7ȿeF掹ݯEt%#ܷϜMHa3f H匸k%>_U`1ƫ,+R {!z$O6Brn{I0mЯ HX"䉪exnBH1nct ?N<]Iq[(@l\٣DlAuy}kͣU`a?ʔs1Bu~Pv@{l&/ vPJṫ)c,ِ'5fc?{HA\Dy4b|zXpu\:f7G*ͨN)kw[)^vS޽N[G~V)"CyO,-n֑e_Nd"J:}d)` ibCXTgQ`섷LXɟM^C1}>qT55_t4,9 q댽$TbYvP z=V~QJ(aHK5IE|A7jPae|ϟ280BJ㇎kšzP3psu"dyKp&1rj!}8H*w\- S.JEZ>p#0FE J[M ]VT[X&=۩ZSkW,LOꤶQtH߿?YŌ4egi#FjI1W)dƙ&ChI,YF ˑ'_ T=9̲/k4JJW61b\^PaQd\;G9*Id5B0ٔbίyi=g?F2y+ຜ˭wu8Ӫ,-ꢸ~ kΈrLϕM.txyߘ0r p=sA`,I:.lWFYmNP5r}s1qD]ݕm{]]Uֻv.," F1UŏtBblm'兲T 'q3Ϗ:a A/ -:_ju jd! S#,d(p~pqTan8CI!payr)@ ̮4% c@9=oi~ڔ”8'ȕ"@n_IY)bT!>f큍; pDwY(;>ry6q$t^>~-sa3vU Qp 0wT>e&bB]G;nh^e훏MϏ)c +I/:x7ybZtt{3w@RA9MW}Rm4;C6 ?SUlbepiD8e%UghƠDNAAb)o:|XpѮ<20>fF!k}xˠ5;XrUIx񟪓q0Am13͖(-dh!5"'>w|s*UΪ"JFn̑ jy'L҂*avx!9NjZp-WnsWy*qD3u @%NFdɃ.n7\[VD'Е|)=+J._M.%\uk4Ȍ&Vm2Hl^JnZJ%W?~잳wY֛Vus2.ތ.ˮy#:4\|H1fp8F{59HgTbP?lylA]Lf=`1@v=YnA O)oq B_ ef\\*:wK{baYB5XN2D'jAa(dM UD:92ĉ/"{(5[ K`#U^]eqd̒w I1BR倿<淋4c/nSdB4ߝ#tvT}OQ/*h6&I`!Щ "s/Mp΍D̢iNYN' 7[1^F E3qdl9Y2um1X"9i'ulKcL6j I5_&F QPN;7aꇓtZk˟)U;Ľ LxiW $33q3k>lx{ؿFg3HY jh/–YG?А8(?[̳]7oIJ(lRq$3 s8%^ F@~~M1PO)_s?v]g> LѸ@FQ55^!:q* Gs/S[=DJMq ԙcqHfps&KFEڐ\nYj2*Drqѯ,)Nj9 Q7I*ܯ^@m: ErO2-rfɞn=,RWHBa^C%k];ںX3 pfIty={OD7`#?8Uiq˥|$xeKNGG&QO G^P7&Io']vgĴ`,<q-ʀD9?,{ΖT8qhzߚ)0,@˥w܄c6´䇖W3œ\{ڒID>Kx .}!.)E[f #%TQj&kd FScr1mXI\qW׺`CĐ 7ԬI n?rE\DC5z%; ?_HrC!1X嘺/&i9*XAƛc>ܦCy)f JoA| wEѫCWj\8g rc:҃RO+.~`{(5: Ɇ-C{H%S̆xi'|8NpɴQoYqZ\<&s\(zo Ƽ8+S|(Fa~]]칋 "C{A s Gβ7B䧗#6 To7dB.uMT,oQrDNo[Pvk4_f% .q [A/Ƒbi(ٙ]Ff?Mve(zB N(j*5lT/. `ؗ9tݞE- O@(NBY!?2]_.38CN%Gۦ;[(EETN!GHL*Wĺ~w&|6!K=bE):Ӯ)`M)pW%\vG9ޭNlnp\qcv=WB*E˫8h 6'APK:pHwoh _0r'XޗGȦ^v9lnEYf=gg4)$@>~ r\d$k pt"7Y(Wfm<4GMd.n$_"$=(t0ƈ>P':Xp"m 8o]a=p=\p}u#{Ǹ ydl5Jfm?nAװڳ:|b-L#ÉvEKfF ,G=Vږ\}. sn/pvU,n_P%ko`rLI6hG$U=g'xKȺY7Dizd¯%Mi3p !"o ;:䤴(+s#-Qnz7ϷYR+h/H0| *$o)n` $a $K59߲ۏj} ZsΑU&GH3z췦3,TFN ;e;Y=c/nfڠFTXfBɡ"V#)( Ȁ:A) jQ;ljLgxu\v}[9I;ry^Lr #mTN(,'TfNtw^]E'݆Y\2]-t< FbT:fnm텅-Om362nXI-H\M)*53`b)@/ |PDV:E'[/+?:5>2~Fe3 [J$:7kHcV9?!29k3U2j&d }%"';vdӵXK~N県ۨT"/u$5 #dKb)m\\kSu.Ԓ獥7X'/kpZ'D;L\˨|ĺc(;Z!mL>J%#]솏==* TVA1#==6,9 >+@z٨#d>nqITC_`D#(csiHŦf}0/j26 Ԕus6BоS,7/e!Pv1Q7ᔢnJ\~՛9mקg{vNB"].Y\39ÓV2Vib]|9Cm8%NX6V( mw GLH{;_-l`<AAfn_q eXܦs7%N<;+z lO Pm]RȡL". )aIwǀ?ؾiTi1cĵrY%aNv$#}JJ)ܿďePccYegq=ԡ&E=нˠ/`>/ͷe \NݪVW1e^ ~޺̋,ՙ띟MhW,C}wt=<3َC $-ιم'L+6 s&ӒZ!6yNv7׊bkQcƤlRMd/:Ձd_U9cs4w0'O֖wzcn-,<>v S'#s!"Uoj/ȱ*nmnC]lC]Z<]n6-a;㠊5AE:.8pr Mξ-SIx+4S}؏P/da{{OEH"#H3#u 7M>SwrQ8fxPyRȗcJi t,d#WL=, |+uTP5)UD o:+,Q 0Ѷ]qЕD#4Um6 7aT Az!T k&ٔ@?eI ͢8'gDk+N ɾӞN"wz:jmoQ b'(Jf'Qd-Xm'BU~(˦wyWݝ8AD&+Qֳ5sUHZ: U^d^|1EB"> fC0kƃ'_FG2*NGZƒprǠfC O8JYNޚ+s* Pj<ƫ:s+UZczXuli…&ۯ?;yQnsIO< +a@KaK :E34B8=9<¯Zʎ oǥy^ʩsg1Z  3=S}.~<K/!3mts`n;a"d6kzA#RvI#֝Lr#"22HŬšpiChza+]įo03N67ӚlQ= Lɧ*K12o쿒O'66.1ei tmiL핲u 9Wk]GS_zQK`teZW79cJ$xj <`hO'-Nn<&IJl p=וƵ;Xˢ. u(Gxݿ~m EL}UAq䴒` X=IKv-C7MZv@LJ(]¥Q&gEO>ȹIɮk+;N#ɏlb&Ν}`zDӌ]\Տ8ȥxq&R5O#GPcW,>/NmлB$ U85SjA/=y̠D 9Q(*Rg4ŒuMbJFٌ^a.8pSL-/+86>Q(z$=ݔ/i\"g٨c֮zC1_i[ n,WwiOGQ@+ @6IFxH>BxǏRk}& 5I2ǁ-BjkRlҝ&g󢾆+'d~Y˔ҡ@2s>s8xޗɗ.ae\&6<cr&;T#Iiof:m8j=lAZS>E~M=J˅ *j!3˷ik~8^[[wpKٝSiQ'">-6Ag7=rE#*X뗥i=KCD`/oE WUVB`W~#~ DUdXnQkd675j$Y} ,HŤfv)|0+;;۷#A@\Jnd +l1ìl\H>?&s4}3^\:ޔw\lZev p&tϸZʆ߅TC< LTW=?*3s[ܞ _3Mp+Us@I`0+ lBZ 5jZW弞\D/!޶q.Ҽ zE Ć"L CeS X1&fX'Y>֪2J0靤[Dc ;i:Q@1 uV`9np 3Hhșk$y#52-"M yl0t LwH;F#Z2ry,قN--2C?\˟>J3~j0g\2krT)ΛER 5S A<#rN\yLخsH+Ax|8ѵUuEТF"6 +2V|#3[ ^l?a/(tb{]6g_٣)2hC|zb:uߪ-` $yh!%}#!sṟjWK:Q;HG,iqA̰Sxo)ą_:j!4Mg1lVCZJARfzYRuk$߉鄓+ٱc^eꞦk[b)"1ćZ8+g LPP킁R|T}SeBk/r!мGEa}4>(ع.?e[뻹M>׬a`Ͼ+ơ JB70$Tyev6`%qǃdPe U@n^Vp߭vFBV8th ,w/f$j 4j4WSFFHX[L+&BZ_k`u:@>\{ۡ*8qVt]˜+`f9uQn DIB)՝e]Hf?ST+J&r߆ Mgw2s;oi1mєG2!m2x |F /; _k|&(m7g?7`t!g!P9r)4Xbxk" T&>3~]qhks6j$g&"OjӾk?"w+ޙSߙ\c:"0F͍tjyu՜h%V&xZU%.Nm9G ]f!B u XF;?'dcvx0,@g25s q)BhEjg زhca%Gma@l~oY?lR+R&*|VW3hj`>~#I)K/b8{;JE84D7*#ީk }%aK/򓸾wɮh.i@/ JgQ9w/^hZR 5ƧrL)e{n}B&Je-Z4i##8_b2S1YId_ \,P1FSUa5 )&&UF1I8thzO?lW$ӑlovPN7#m Ar3/RL\Q';e:Du_DIvu咬͸J-N X_82fJ \,]wU@KȪ|I`T)"uCgeuq@+R<0ׂOW"ʵ3&װ%R.$ι"y2ɔͩ:b$bJڛJ&=H{WXY}Qw^{%M%?HM(JBqC޳0A'Pw!q&6TZrs8_ }KgP1.Bz/v%%|#l%Cp=5vޑ /G`{iq̫>EGB^]wK |}!FD3L@}w1 JguNHk 0J <__J֍ dE|F= ~1Dw8SШ3mK_4M/mK: |< TBej4ѦXE8\Y 'DidxH@L9DDT4^r i\Rk79 8EUf-Kf⨠Y_SXҠV^ac*/Nr9,.){Y5sa˗GT\`j+E&Ȅ^vyPezTԙiF-v+jnJ'h;d3nE$ YQ򾇭H1! ɏ̊҉). 84gM*h[y֫EZi}1S#>|ӧ)@f"]N-4#[)8y!(ֱMthus+{-o=_Tݰ1zTI+fj&c;(N_E2,LAg'tsd%\/cCD搡b!!5nʺD5Ǽ~nL7+x!!ζtMFG)ɀZ;B* @=E&[ *l4;`Tp&+cԎp;I|o<7ֽd~ # Lx!♑mZڪ=ʀgik#A)t876#΁}DX4z*)8V9*Mune/8_l:a|VֲoM9>hJ_N5)4z`0 >k ˢo0w,8ۭȗiݭ餹 8'/X%nZ|ZvD^](U.)a:GnDGba8[PpIzwW ]GATLe_$#Qz?yJ7]gx%㒎ϲOMy\rSz+UKع+1\ YmGK)6㸃^{p,`_%6 ( 8v9;!WݚNc#(`hЪa ̵tRH hOIB+c8^Iկ'2,k+&>osŤzzRpԦ 3]MElNuhZlE sio4S~!PQhЌ7z/~7 FM2$E.䨾cבsOA/`DiJxTOXVi]Qs0dp]'JbvP[Q56}E ZhYm15{e;#pWR͖-fEûǚysl4^~_S_T.W#m |˨\Hu{wKnMU珃{g7& NIЌ?xEW}F+'(3pREG J/bkGZT.xU.'Nv :CNM.8#AшhPix}[Z& W}GiJpiv 9E,$&Dun%KX1eoK_%^{W=|Vv]Z):IT+0JC25xϬ/bh#trIصZ9 f7lR?u8d#]h&+su'nz' W+ȹ6_'PJƳ*AE^{TSRwț/rNՋ¡@hNV^ Q:^cx YDR0,5X-l^QeDœsl-^,`cIS9qqӺ{Y-~97B 9 ]m{bUު-x-sGO3+!) ;tY}SaYOc٣^@x-Z[ܺPvCt])>SoIPyZS&j-g))U7WģyBe ^`WHoFIerj-`5^&ILؑ@W3J烸gBœؾI 3fYE cMN$J?v++vBrM461M-#ؑ7h Aa`t/^qh k§ѷ{*g5 %tJ !T ORb%U.}[k9Ƿ*=GZ`0&ƺqmLnI?J2OҪ-SWJ}m%H #Y~MC&n ȗ2X+\k/1軖$ebFD=UYP>:-5Fs>4DC<%\Sb(14o pnsrdCp6c.`;d yy{edѠV{ 4* D+FL * m# _x#T%"=M#em8AQ0dqTHǯʃٲT[mٌ^gt!jVfЮ7a]5 -oq1:՚-gGB-ϓUq {P,GK5NGH\dKL-kܞz&G t8V:M6ўs$6p8JH/bf~V[A8l3yX**lw#mQ$:0Wlg5HFt ƥc9-ҥ\cA4?B-s%;J, )TryDφ]a~@=!U13^,uX\ٯL6kYjDA@~\\g Q:df/}*fDTH;,¹[FF$kD CaII@}.Iʢl]a<}o@sSWvk2+b94<`U.p㳂]5Z1un;ĚMu1!3ݓ WVbW6SMSL3,f110W$*$Bv}X5͵tqV >ۅ'y_1B5$SL',a"s Oy`'ɭfz,84\NY3Üypg7c,7f#vprk_>+DI猅'w`ے}#ZznӲ ˤ%40Seݏ_}F #D&018no9Sv6iGmClZkJSKX{Ϛ=/4q҆YwN~@"N%%I6 CgLox:e"6w<(,Nn0n;M 4J Ut+Z )PUE Sنh 253!*RK0z0ѷ[& */A[6pjmtpQG/M5qdd*f5T00/b1S'V ,!q7iBcT.+-a'f¯WWb x!hb#=O#-v%iRNcnɗIȻ>*xY^ޫЍQ_" kK9K3xR9̍֫QԦCՎD BGN3F{bUO呁C@aS°w!v%#XDMCegs ,-N1jBZ1%sL],.,upD7*2W4zbRb^&#7\ۅJ0X 7) _bU}<\d6E1_6;Aj="Iܢ$gα g Yg'νݖQo8gc7Ԙ4z! -\+u`r'Jж]fC'qpJ TZh= |Ǧmzl?h