libgck-modules-gnome-keyring-3.20.0-7.1<>,ωY/=„ *zmU/2b5lr<@0ӆ UCZJ&|Ǚ䣩x<%SQCL~ALH_A{{BwjUo9m໤  w윌b֭8 5r+N}M,`5PV)tP֣NR!vfq)FMʩ%J 7^LFcL1 >x6 foY[ [v>=?d& * U  3<S l}    n t$(89 :BXFwGHIXYZ[\](^bcdef!l#u8vPwxy5zClibgck-modules-gnome-keyring3.20.07.1Glib wrapper library for PKCS#11 - ModulesGCK is a wrapper based on GLib implementing the PKCS#11 (Cryptoki) interface. This package contains various PKCS#11 modules, to expose keys and certificates from different sources.Ycloud134!@openSUSE Leap 42.3openSUSEGPL-2.0+ and LGPL-2.1+http://bugs.opensuse.orgSystem/GUI/GNOMEhttp://www.gnome.org/linuxx86_64 2`AAYYYYYYac4a14e65e3c263c3568fda17af026f011a42c0f1248b2b372278e013ceb6372043c754dca9047efd8ea7fe68e5a66cdfdb865366297462b2cd7d1ed8e3f598erootrootrootrootrootrootrootrootrootrootrootrootgnome-keyring-3.20.0-7.1.src.rpmgkm-gnome2-store-standalone.so()(64bit)gkm-secret-store-standalone.so()(64bit)gkm-ssh-store-standalone.so()(64bit)gkm-xdg-store-standalone.so()(64bit)libgck-modules-gnome-keyringlibgck-modules-gnome-keyring(x86-64)@@@@@@@@@@@@@   gcklibc.so.6()(64bit)libc.so.6(GLIBC_2.14)(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.3)(64bit)libc.so.6(GLIBC_2.3.4)(64bit)libc.so.6(GLIBC_2.4)(64bit)libgcrypt.so.20()(64bit)libgcrypt.so.20(GCRYPT_1.6)(64bit)libglib-2.0.so.0()(64bit)libgmodule-2.0.so.0()(64bit)libgobject-2.0.so.0()(64bit)libpthread.so.0()(64bit)libpthread.so.0(GLIBC_2.2.5)(64bit)rpmlib(CompressedFileNames)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsLzma)3.0.4-14.0-14.4.6-14.11.2YlWSWF@W)@V(@V'@V`V%@V%@VVV@V4@V.V&,V"8@V }@U@U5@U@U%@U @U hT@T_W@T\@T!`T @TSwO@S.S&R@R_@RFR@-@R0[@RC@RQQQm=@QP<@QGQ4Q1Q1Q1Q1P6@P}L@PfPaPXb@PDP4P4P4P4O[@OpZ@Ohq@O]@OYO.o@O@N@N'@NwN=@NNNNNNi@Nx@Nu@NiNdN_sN.@N-ZM@Mc@M‘@MM@Mb@MM@M"M PMLLeLL@LL{@LH2L5L@KtKKKs@Kn@K`*KKK0K*@K*@K'z@KJJ@J@J1@J@J@J0@JiJ Jp9Jn@Jc III3I@I@dimstar@opensuse.orghpj@suse.comfezhang@suse.comhpj@suse.comzaitor@opensuse.orghpj@suse.comzaitor@opensuse.orgdimstar@opensuse.orgdimstar@opensuse.orghpj@suse.comhpj@suse.comzaitor@opensuse.orgzaitor@opensuse.orgzaitor@opensuse.orgzaitor@opensuse.orgzaitor@opensuse.orgzaitor@opensuse.orgzaitor@opensuse.orgzaitor@opensuse.orgzaitor@opensuse.orgdimstar@opensuse.orgdimstar@opensuse.orgdimstar@opensuse.orgLed rlmu@suse.comdimstar@opensuse.orgdliang@suse.comdimstar@opensuse.orgzaitor@opensuse.orgzaitor@opensuse.orgdimstar@opensuse.orgjdelvare@suse.comdimstar@opensuse.orgmeissner@suse.comdimstar@opensuse.orgdimstar@opensuse.orgdimstar@opensuse.orgdimstar@opensuse.orgdimstar@opensuse.orgdimstar@opensuse.orgdimstar@opensuse.orgdimstar@opensuse.orgdimstar@opensuse.orgdimstar@opensuse.orgdimstar@opensuse.orgdimstar@opensuse.orgdimstar@opensuse.orgdimstar@opensuse.orgdimstar@opensuse.orgdimstar@opensuse.orgdimstar@opensuse.orgdimstar@opensuse.orgdimstar@opensuse.orgdimstar@opensuse.orgdimstar@opensuse.orgdimstar@opensuse.orgdimstar@opensuse.orgsreeves@suse.comvuntz@opensuse.orgvuntz@opensuse.orgvuntz@opensuse.orgvuntz@opensuse.orgdimstar@opensuse.orgdimstar@opensuse.orgvuntz@opensuse.orgvuntz@opensuse.orgvuntz@opensuse.orgdimstar@opensuse.orgdimstar@opensuse.orgdimstar@opensuse.orgvuntz@opensuse.orggber@opensuse.orgvuntz@opensuse.orgvuntz@opensuse.orgvuntz@opensuse.orggber@opensuse.orgvuntz@opensuse.orgvuntz@opensuse.orgvuntz@opensuse.orgvuntz@opensuse.orggber@opensuse.orgvuntz@opensuse.orgvuntz@opensuse.orgdimstar@opensuse.orgvuntz@opensuse.orgfcrozat@novell.comfcrozat@novell.comvuntz@opensuse.orgfcrozat@novell.comfcrozat@novell.comgber@opensuse.orgvuntz@opensuse.orgvuntz@opensuse.orgaj@suse.devuntz@opensuse.orgvuntz@opensuse.orgvuntz@opensuse.orgvuntz@opensuse.orgvuntz@opensuse.orgvuntz@opensuse.orgdimstar@opensuse.orgvuntz@opensuse.orgdimstar@opensuse.orgvuntz@opensuse.orgdimstar@opensuse.orgvuntz@opensuse.organdrea@opensuse.organdrea@opensuse.orgcaptain.magnus@opensuse.orgvuntz@opensuse.orgjengelh@medozas.devuntz@opensuse.orgvuntz@opensuse.orgvuntz@opensuse.orgvuntz@opensuse.orgvuntz@opensuse.orgvuntz@opensuse.orgvuntz@opensuse.orgdimstar@opensuse.orgvuntz@opensuse.orgvuntz@novell.comvuntz@novell.comvuntz@novell.comlmedinas@gmail.comvuntz@novell.commboman@suse.demboman@suse.demboman@suse.demboman@suse.devuntz@novell.com- Add gnome-keyring-secret-size.patch: Ensure that generated secret occupies the same number of bytes as prime. Eliminates random errors while libsecret tries to talk to gnome-keyring (bgo#778357 bsc#1043861).- Update gnome-keyring-bsc932232-use-non-fips-md5.patch (bsc#994988). Fixes inability to decrypt private ssh keys and corruption in stored keyrings. Fix by Michal Koutny .- Merge bnc#903966-SEGV-in-gnome-keyring-daemon-caused-by-calling-free-on-static-string.patch into gnome-keyring-896818-reduce-head-msg-length.patch: bsc#903966 is just a regression caused by bsc#896818 anyway (bsc#896818, bsc#903966, bgo#770170).- Rebase gnome-keyring-bsc932232-use-non-fips-md5.patch for version 3.20.0 (bsc#932232, bsc#966229, bsc#966225). - Drop gnome-keyring-bsc961271-secmem-mismatch.patch (fixed upstream).- Update to version 3.20.0: + Updated translations.- Update gnome-keyring-bsc932232-use-non-fips-md5.patch (bsc#966229, bsc#966225). Fixes inability to decrypt private ssh keys and corruption in stored keyrings. Fix by Michal Koutny .- Update to version 3.19.90: + Accept empty passwords for --unlock (bgo#762095). + srcdir != builddir fixes. + Updated translations.- Update to version 3.19.4: + Fix up startup and initialization (bgo#756324). + Fix DBus "Type" property of org.freedesktop.Secret.Item (bgo#759399). + Build fixes (bgo#753698). + Updated translations.- boo#962480: Add mdm as valid display manager to unlock gkr.- Add gnome-keyring-bsc961271-secmem-mismatch.patch (bsc#961271). This fixes a crash caused by mixed calls to egg_secure_free() and gcry_free().- Add gnome-keyring-bsc932232-use-libgcrypt-allocators.patch and gnome-keyring-bsc932232-use-non-fips-md5.patch (bsc#932232).- Update to version 3.18.3: + Fix regression looking up secrets in non-default keyring (bgo#756865). + Fix manpage typos (bgo#756812). + Updated translations. - Drop gnome-keyring-dbus-handle-alias-paths-in-lookup_collection.patch: Fixed upstream.- Add gnome-keyring-dbus-handle-alias-paths-in-lookup_collection.patch: Fix firefox passwordmanager coupled with non-default keyring, also silence a bit of logspam (bgo#756865).- Update to version 3.18.2: + Fix regression in ported GDBus prompting (bgo#756032). + Other minor fixes.- Update to version 3.18.1: + Fix regression initializing gnome-keyring-daemon (bgo#756059). + Fix regression racing for DBus name during startup (bgo#756006). + Build and testing fixes (bgo#755873). + Updated translations.- Update to version 3.18.0: + Fix test crash (bgo#731802).- Update to version 3.17.91: + More fixes for GDBus migration (bgo#622905). + Fix a memory leak (bgo#752919).- Remove postun handling from baselibs.conf. If one uninstalls gnome-keyring-pam-32bit it has the effect that gnome-keyring-pam gets unregistered (boo#941736).- Update to version 3.17.4: + Remove temporary files on failure (bgo#746334). + Migrate DBus code to GVariant and GDBus (bgo#622905). + Remove the GnuPG agent (bgo#750514). + Updated translations. - Remove %bcond_with gpgagent and all related macros, it has been dropped upstream. - Drop pkgconfig(dbus-1) BuildRequires: No longer needed as upstream has migrated it away.- Update to version 3.16.0: + Fix build issues highlighted by GCC 5.x. + Updated translations.- Disable gpgagent integration, as gnupg 2.1 introduced code to explicitly sabotage gnome-keyring.- Update to version 3.15.92: + pam: Make sure to never block SIGCHLD (bgo#745673). + Revert "ssh-agent: Fix leak in seach_keys_like_attributes()". + Updated translations.- Update to version 3.15.90: + Fix leaks (bgo#7385080). + Refactoring. + Build fixes (bgo#740190). + Updated translations. - Remove libgcr-3-1 and libgck-1-0 references from baselibs.conf: these libs have been split off back in 2011.- fix bashism in postun script- Add bnc#903966-SEGV-in-gnome-keyring-daemon-caused-by-calling-free-on-static-string.patch Fixed SEGV in gnome-keyring-daemon caused by calling free() on static string (bnc#903966).- Update to version 3.14.0: + Remove residual GTK+ usage. + Build fixes. + Updated translations.- Add gnome-keyring-896818-reduce-head-msg-length.patch: Make the head message shorter. The patch makes sense but no need to be upstream (bnc#896818).- Update to version 3.13.91: + Initialize correctly with empty passwords during login (bgo#736085). + Don't use geteuid() to get UID for user in PAM module (bgo#733418). + Fix for libgcrypt 1.6+. + Build fixes.- Update to version 3.12.2: + Build fixes.- Update to version 3.12.0: + Build and testing fixes.- Update to version 3.11.92: + Use $XDG_RUNTIME_DIR to create keyring socket directory (bgo#725801). + Stop exporting the $GNOME_KEYRING_CONTROL env variable (bgo#725801). + Stop exposing a GNOME_KEYRING_PID variable (bgo#725801). + Pass XDG_RUNTIME_DIR to new gnome-keyring-daemon process (bgo#726196). + Fix issue with changed password not unlocking keyring (bgo#726196). + Add new --unlock option to prompt for login password (bgo#710187). + When in foreground mode, close stdout when done initializing. + Exit gnome-keyring-daemon when the DBus connection closes (bgo#708765). + Don't initialize in an idle handler, this is racy. + Don't log debug messages to syslog (bgo#711537). + Documentation fixes (bgo#711581). + License fixes (bgo#721549). + Modernize autotools setup and other build fixes. + Parallel testing and add new tests. + Updated translations. - Drop gnome-keyring-check-session.patch: no longer required; the start of the daemon is controlled by pam (OnlyIf=). - Rebase gnome-keyring-pam-auth-prompt-password.patch.- Enhance gnome-keyring-check-session.patch: Add "gnome-classic" to the list of handled desktop session types (bnc#862775).- Update to version 3.10.1: + Build fix on OpenBSD (bgo#706405). + Add manual page. + Minor error message fixes. + Updated translations. - Add gtk-doc BuildRequires: needed to build the man page.- If libp11-kit0-XXbit and gnome-keyring are installed, also suggest gnome-keyring-XXbit ... as /etc/pkcs11/modules is for both 32bit and 64bit modules (fixes a Wine 32bit issue during gnutls init).- Update to version 3.10.0: + Minor logic fix (bgo#708483).- Add dbus(org.freedesktop.secrets) and dbus(org.gnome.keyring) provides (part of bnc#828387).- Update to version 3.9.90: + Fix running gnome-keyring-daemon under test harness. + Test fixes (bgo#702367).- Introduce %bcond_without gpgagent: allow to disable gpg agent during build to easily test issues like bnc#829844.- Provide gnome-keyring-32bit (which contains pkcs#11 modules). (bnc#819246).- Update to version 3.9.1: + Fix implementation of LockService dbus method (bgo#690466). + Build fixes. + Updated translations. - Drop pkgconfig(libtasn1) BuildRequires: no longer needed.- Update to version 3.8.1: + Updated trasnlations.- Update to version 3.8.0: + Updated translations.- Update to version 3.7.92: + Update introspection data of Collection.SearchItems() (bgo#695115). + Update the Item.Created and Item.Modified properties correctly (bgo#695052). + Build fixes. + Updated translations.- Update to version 3.7.91: + Remove the roots-store module replaced by p11-kit 0.16+ trust module. + Only return one object path list from Collection.SearchItems() (bgo#695115). + Fix order of items returned from SearchItems() (bgo#693884). + Build fixes. - No longer pass --with-ca-certificates to configure: it's been obsoleted in favor of the p11-kit trust module.- Update to version 3.7.5: + Set correct type for Collection's "Locked" property. + Don't warn if the GNOME session manager is not available. + Fix crasher in armor code. + Build fixes. + Upadted translations.- Update to version 3.7.2: + Bring over DER parsing fixes from GCR library. + Fix corner case where long DER length overflows. + Fix crash when parsing invalid DER files. + Handle empty secrets correctly. + Only print debug message if no pkcs11 socket. + Other minor fixes. + More complete test coverage.- Update to version 3.7.1: + Remove dependency on GTK+. + Build fixes. - Drop pkgconfig(gtk+-3.0) BuildRequires: no longer needed.- Update to version 3.6.3: + Don't reverse the order of items returned from SearchItems(). + Updated translations.- Update to version 3.6.2: + Accept XDG_DATA_HOME environment variable during initialization + Handle empty secrets correctly.- Update to version 3.6.1: + Fix regressions with keyring master password changing + Load schema for secret items correctly, prevents storing multiple times for items stored via libsecret + Setup translations properly when daemon starts + Fix memory leak in PKCS#11 module + Updated translations.- Drop set_permission and verify_permissions scripts: gnome-keyring-daemon is not installed with special permissions and does not need special handling (bnc#781891). - Drop permissions PreReq: we don't need to handle any special permissions on files.- Update to version 3.6.0: + Updated translations.- Update to version 3.5.92: + Updated translations.- Update to version 3.5.91: + Updated translations.- Update to version 3.5.90: + Use the XDG directories for storing keys + Better handling of the --replace argument to gnome-keyring-daemon + Fix ability to store keyring files without using hardlinks + Make the GPG agent password caching options work correctly + Updated translations. - Drop gnome-keyring-bnc775235-passphrase-cache.patch: fixed upstream.- Update to version 3.5.5: + Initialize PKCS#11 correctly in gnome-keyring tool. + Rename the p11-kit module file. + Use setsid() to become a process leader when daemonizing. + Build fixes. - Changes from version 3.5.4: + Support the xdg:schema attribute on secret items. + Update to newer glib dependency and remove redundant code. + Encode passwords correctly for gpg2 in the gpg-agent. + Fix types of the DBus Created and Modified properties. + Expose the 'session' and 'login' keyrings as aliases. + Emit Secret Service signals when collections/items change. + Fix some spurious warnings. + Testing fixes.- Update to version 3.5.3: + Return correct introspect data for Secret Service + Fix the gnome2-store for gcr importer, and test + Debug and logging fixes + Build fixes + Updated translations. - Drop xz BuildRequires as it now comes for free in the build system.- Add gnome-keyring-bnc775235-passphrase-cache.patch: + Fix gnome-keyring:Passwords cached indefinitely (bnc#775235, CVE-2012-3466).- Update to version 3.4.1: + Set 'text/plain' content type on secrets returned from daemon + Use correct XDG_RUNTIME_DIR when started from PAM + License fix + More tests + Build fixes + Updated translations.- Update to version 3.4.0: + Updated translations.- Update to version 3.3.92: + Use runtime dir instead of /tmp for sockets. + Fix copyright headers. + Build fixes. + Updated translations.- Pass --with-ca-certificates=%{_sysconfdir}/ssl/ca-bundle.pem instead of --with-root-certs=%{_sysconfdir}/ssl/certs to configure: it's better to use the single ca certificates file than the directory with all certificates, as it's what upstream prefers.- Update to version 3.3.91: + Fix regression in changing a keyring master password + Set better button labels for the prompts + Fix assertion when cancelling a unlock prompt + Use a single CA certificates file by default + Updated translations.- Update to version 3.3.5: + Fix introspection data for SearchItems() + Fix regression when an invalid password used to unlock keyring + Updated translations.- Update to version 3.3.4: + Build fixes + Updated translations.- Update to version 3.3.3.1: + No message in gnome-keyring-pkcs11.so module, when no daemon running + Build fixes + Updated translations. - Drop gnome-keyring-fix-build.patch: fixed upstream.- Update to version 3.3.3: + Distribute correct desktop autostart files + Use GcrPrompt and GcrSystemPrompt for prompting + Do not crash when reading a truncated keyring file + Add test tool for dumping the keyring format + Update for GckBuilder changes in libgck + Fix for deprecations in glib 2.31.x + Fix ReadAlias() returning null when 'login' keyring exists + Build fixes, bug fixes - Add xz BuildRequires because we can't build a package for a xz-compressed tarball without explicitly specifying that... See bnc#697467 for more details. - Add gnome-keyring-fix-build.patch: add some libraries during linkage, to fix build; taken from git. - Change libgck Requires in libgck-modules-gnome-keyring to gck: this is a new Provides in libgck to help us for this Requires, so we don't have a Requires on a shared library package, whose name can change. Note that we don't version the Requires: there's no reason for this.- Fix libgck Requires in libgck-modules-gnome-keyring: as libgck got split out, we can't assume any longer that the version will always be the same as the one of the main package. For now at least we assume that we can maintain the library name.- Update to version 3.3.2: + Do not make label selectionnable in prompt dialog + Fix deadlock in the 'unsafe storage' prompt + Better locking for the old gnome2-store + Build fixes + Updated translations. - Drop gnome-keyring-remove-xfce-lxde-autostart.patch: fixed upstream.- Update to version 3.3.1.1: + Build correctly against glib 2.31 - Changes from version 3.3.1: + Return most recent secret first when searching + Split the Gcr and Gck libraries out of gnome-keyring + Build fixes + Updated translations. - Rebase gnome-keyring-remove-xfce-lxde-autostart.patch. - Remove BuildRequires that have moved to the new gcr source package: shared-mime-info, pkgconfig(p11-kit-1). - Add pkgconfig(gck-1) and pkgconfig(gcr-3) BuildRequires: newly depend on the split out library, - Drop libgcr-3-1, libgcr-devel, libgck-1-0 and libgck-devel subpackages: upstream split the libraries out. - Rename libgck-modules to libgck-modules-gnome-keyring: since libgck is split away from gnome-keyring, we cannot use a generic package name like this anymore. Add appropriate Obsoletes, but no Provides as there could be another libgck-modules package appearing in the future. - Stop calling %mime_database_post(un) in %post/%postun and stop passing --disable-update-mime to configure: the mime definition moved to the gcr source package. - Add missing calls to %desktop_database_post(un) in %post/%postun. - Use grep -F instead of deprecated fgrep in %post of pam subpackage.- Add pam-config calls in %post/%postun for gnome-keyring-pam in baselibs.conf: when pam-32bit is installed, pam-config checks if the 32bit version of the module is installed before enabling it, and if we install from scratch, this is not necessarily true when gnome-keyring-pam is installed. Fix bnc#728586.- Fixed gnome-keyring-remove-xfce-lxde-autostart.patch which was ineffective since it modified the .in rather than the .in.in files- Update to version 3.2.1: + Fix debugging output, and erroneous warnings + Updated translations.- Add explicit shared-mime-info BuildRequires since we use the %mime_database_* macros.- Update to version 3.2.0: + Don't install setuid when filesystem capabilities not available + Updated translations. - Update summary to not talk about password manager: this is really the keyring, which is more than just a password manager.- Do not start the gnome-keyring daemon for LXDE or Xfce via XDG autostart, that only works with gnome-session.- Update to version 3.1.92: + Add back the file format "documentation". + Make .desktop file match prompt process so icon and title are shown. + Fix packaging issues installing the pkcs11 module. + Return correct error code in gpg-agent for unimplemented stuff. + Fixes for parsing/viewing various (sometimes slightly invalid) PKCS#12 files. + Allow daemon to access secrets of internal PKCS#11 modules, so that we can do things like hash NTLM and Kerberos secrets in the future. + Build and documentation fixes. + Updated translations.- Update pam module and pam module configuration for the new gdm (>= 3.1.90), which uses both gdm and gdm-password pam services: + Update gnome-keyring-check-session.patch: check if the service is called gdm-password too. + Change pam-config call in %post to add gdm-password in - -gnome_keyring-only_if option. - gnome-keyring-check-session.patch: also remove support for the smeegol session, since Smeegol is dead.- Update to version 3.1.91: + gcr-viewer will now display errors when failing to load a file. + gcr-viewer can now prompt for passwords to unlock files. + Add support for getting the current data block being parsed in GcrParser. + Add debug output to various points in the GCR and GCK libraries. + When replacing another gnome-keyring-daemon, wait a moment before initializing. + Fix GCR library initialization bugs loading PKCS#11 modules. + Fine tuning of GcrParser when parsing PKCS#12 files. + Build and packaging fixes. + Updated translations.- Update to version 3.1.90: + Install better xdg-mime files for identifying crypto related file types + New gcr-viewer for viewing certificates and keys, hooked up to file types + Display tweaks for the certificate and key widgets + Don't initialize PKCS#11 modules automatically in gcr library unless needed. + Cleanup the libgck API since we're bumping the major version. + ABI fixes for the GCR library for changes in the 3.1.x release cycle + New automatic checks for symbols that have changed in the ABI + Add async PKCS#11 initialization functions to libgck + Display Certificate otherName subject-alt-name for xmppAddr and DNS SRV + Documentation, testing, translation and build fixes. - Pass --disable-update-mime to configure and add %mime_database_post/%mime_database_postun to %post/%postun scriptlets for the new gcr-crypto-types.xml MIME file. - Rename libgcr-3-0 to libgcr-3-1 after library version change. - Remove gtk-doc BuildRequires and call to libtoolize and autoreconf: there is no patch needing that.- Add LightDM support for the pam module: + Update gnome-keyring-check-session.patch: add support for LightDM. + Change pam-config call in %post to add lightdm in - -gnome_keyring-only_if option.- Update to version 3.1.4: + New GcrListSelector class for selecting multiple keys. + Add icons for key and key pair. + Gcr now has support for loading of GnuPG keys from gpg, including photos. + New gcr dependency on p11-kit for loading PKCS#11 modules. + Remove support for GTK+ 2.x. + Implement calculation of fingerprints in gcr for keys. + Fix problems in daemon if IPC lock or FS capabilities are not available. + Bug fixes and build fixes. + Code cleanup and refactoring. - Drop gnome-keyring-keep-only-ipc_lock.patch and gnome-keyring-accept-no-ipc_lock.patch: fixed upstream. - Add pkgconfig(p11-kit-1) BuildRequires, for new dependency. - Add libselinux-devel BuildRequires, to build SELinux support. - Remove --with-gtk=3.0 from configure, as GTK+ 2.x support was removed. - Rename libgck0 to libgck-1-0, following soname change. - Rename libgcr-3-1 back to libgcr-3-0, following soversion revert. - Call %icon_theme_cache_post/%icon_theme_cache_postun in libgcr-3-0 scriptlets, since the package now comes with icons.- Update baselibs.conf with package names after 3.0 update.- Update to version 3.1.1: + Add 'Export Certificate' option to right click of certificate widget. + Use file system linux capabilities for memory locking. + Set correct daemon SELinux context when started from PAM module + Fix assertions in parser. + Add GcrCollection interface to represent collections of objects + Add GcrGnupgCollection to libgcr. + Implement functionality in renderers to populate GtkTreeModel + Add a GcrSelector widget. + Cleanup unregistering from session. + Build fixes. + Updated translations. - Drop gnome-keyring-fix-parallel-build.patch and gnome-keyring-file-capabilities.patch: fixed upstream. - Rename libgcr-3-0 subpackage to libgcr-3-1 following soversion change.- Handle specific permissions for %{_bindir}/gnome-keyring-daemon: + Add permissions PreReq. + Add %set_permissions %{_bindir}/gnome-keyring-daemon to %post. + Add a %verifyscript scriptlet calling %verify_permissions. - Do not package %{_bindir}/gnome-keyring-daemon with filesystem capabilities: the security team will add what is needed via %set_permissions after a review of the code. - Drop rpmlintrc file as we don't need it anymore, since we have no setuid binary nor capabilities. - Add gnome-keyring-keep-only-ipc_lock.patch: when filesystem capabilities are used, make sure that we do have ipc_lock and keep only this one. - Add gnome-keyring-accept-no-ipc_lock.patch: accept to run without ipc_lock capability, just print a warning instead of aborting. - This is part of bnc#682244.- Add gnome-keyring-file-capabilities.patch: Use libcap-ng for file capabilities (from git, see rh#668831). - Use libcap-ng-devel BuildRequires instead of libcap-devel - Add gtk-doc BuildRequires, only needed because of the new patch. - gnome-keyring-daemon is now using cap_ipc_lock=ep instead of setuid.- Update to version 3.0.1: + Fix clicking buttons in 'unsafe storage' dialog on GTK+3. + Build with GTK+3 by default. + More tests and test fine tuning: --enable-tests=yes/no/full. + Expand path in gnome-keyring-prompt.desktop properly. + Implement debug tracing in parts of gcr library. + Complete documentation in gcr and gck libraries. + Fix assertions in gcr library during parsing of a stream. + Build fixes. - Add gnome-keyring-fix-parallel-build.patch to fix parallel build (from git). - Remove libmock-test-module.so in %install, as this is only useful for tests.- Add the rpmlintrc that was added as workaround until bnc#682244 is fixed (security review) as a source.- Update to version 3.0.0: + Updated translations.- Update to version 2.91.93: + Use full interface.Property form for CreateCollection and CreateItem in the DBus API. + Add deprecated functions for libgcr symbols lost since 2.32.x + Don't crash when the GPG agent is asked for a passhprase without a key id. - Changes from version 2.91.92: + Don't leak login name from PAM when logging error. + Also start daemon in XFCE + Fix inability to save password for other keyrings. + Build and test fixes. + Support removal of aliases via the secret service API + Fix race condition when multiple applications create the default keyring at the same time. + Add a desktop file for gnome-keyring-prompt, so the icon shows up properly in gnome-shell. + Implement HKDF for transport encryption security. - Changes from version 2.91.91: + Fix the certificate details expander when used with GTK+3 + Calculate the minimum/natural size of the certificate widget better. + Fix gnome-keyring-prompt for GTK+3 release. + Fix problems with the URIs used for trust lookup and storage. + Pass around a content-type for secrets in the DBus Secret Service API. + If DBus couldn't be initialized when starting up the daemon, try again at a later point. + Build and testing fixes. + Remove support for the pkcs11-options file, and wait for a proper configuration file setup being worked on in p11-kit. + Add support for --version argument to gnome-keyring-daemon and gnome-keyring. + Create necessary directory when storing trust assertion objects. - Changes from version 2.91.4: + gck library loads PKCS#11 modules from /usr/lib/pkcs11 + PKCS#11 config file in /etc/xdg/pkcs11.conf[.defaults] + Many ASN.1 encoding fixes. + Refactor how tests work. + Install standalone PKCS#11 modules to a consistent location. + Memory leaks and other bug fixes. + Allow enumeration of objects in specific PKCS#11 slots as well as modules. + Add GcrCertificateChain for building certificate chains. + Implementation of the initial PKCS#11 Trust Assertions spec. + Add GcrPkcs11Certificate for looking up certificates in PKCS#11 modules by issuer. + Expose gcr functionality for setting which PKCS#11 modules to use. + Find the root certificates by default. + Move to a single header model for libgcr. + Don't load *.la files when looking for PKCS#11 modules. + Fixes for GTK+3.0 + New xdg-store PKCS#11 module with support for storing trust assertions. + Rename old user-store to gnome2-store since it stores its data in old formats in the old .gnome2 location. - Replace gnome-keyring-autostart-in-xfce.patch with desktop-file-install calls. Add desktop-file-utils BuildRequires for this. - Add support for source service checkout, with %BUILD_FROM_VCS: + Add gnome-common and gtk-doc BuildRequires. + Add call to ./autogen.sh. + Enforce gtk-doc html generation by passing --enable-gtk-doc to configure.- Update gnome-keyring-check-session.patch to add support for Xfce sessions. - Add gnome-keyring-autostart-in-xfce.patch to autostart gnome-keyring in XFCE sessions.- Update to version 2.91.3: + Shutdown module timer when holding proper mutex. + Linux capabilities to overcome limits on locked memory. + Update HACKING with coding style + Build fixes. - Changes from version 2.91.2: + Add timeout if PAM startup doesn't complete shortly. + Fix login keyring password when it doesn't match unix login. + Replace gp11-0 with gck in pkgconfig file + Fix broken dispose of GcrCertificateWidget + Remove gp11 library. - Changes from version 2.91.1: + Fix build problem in gpg-agent. + Properly distribute pkgconfig file for gck library. + Better certificate widget in gcr library. + Add extra debug guard around printing of prompt io. + Rework how the gcr parser and importer work together. + More GTK+ 3.0 fixes. - Changes from version 2.91.0: + String and punctuation fixes. + Add libgck library to soon replace libgp11 + Migrate everything in gnome-keyring to libgp11 + Fix invalid memory access in PKCS#11 rpc-layer + Fix race condition in tests - Move to pkgconfig()-style BuildRequires: + Old ones: dbus-1-devel, gtk2-devel, libtasn1-devel. + New ones: dbus-1, glib-2.0, gtk+-3.0, libtasn1. - Add libcap-devel BuildRequires. - Rename libgcr0 to libgcr-3_0 after library name change. - Remove explicit glib2-devel, gtk2-devel, libgp11-devel, libtasn1-devel Requires in libgcr-devel package: they will be automatically added the pkgconfig() way. - Add libgck0, libgck-devel and libgck-modules subpackages, and remove libgp11-0, libgp11-devel, libgp11-modules. Packaging-wise, it's mostly like a renaming. Note that we have libgck-modules with a Obsoletes tag for libgp11-modules since they share the same files. - Pass --with-gtk=3.0 instead of --with-gtk=2.0 to configure. - Stop passing --libexecdir=%{_libexecdir}/gnome-keyring-1 to configure: this is really not needed.- Own /usr/share/GConf and /usr/share/GConf/gsettings to fix build.- Change lang package Requires to Recommends since it is not mandatory at runtime.- Update to version 2.32.1: + Don't offer to save password for symmetric encryption in gpg-agent. + Don't try to cache password when symmetric encryption in gpg-agent. + Check that daemon is initialized before changing password from pam. + Fix login keyring password doesn't match login. + Link correctly to gio. + Add extra debug guard around printing of prompt io. + Fix invalid memory access in rpc-layer.- Update gnome-keyring-check-session.patch to also use the gnome-keyring PAM module for the gnome3 and smeegol sessions: we want the keyring to be unlocked on login there.- Update to version 2.32.0: + Make builds silent by default.- Update to version 2.31.92: + Require glib 2.25 or later. + Require automake 1.7 or later. + Fix assertion in secure memory code. + Don't go into endless loop when GPG Agent client disconnects. + Fix double free in gp11 library. + Fix crash during keyring unlock operation. + Expand prompt details when a non-default unlock option is chosen. + Migrate to gsettings. + Use gsettings for GPG agent unlock options. + Fix library header installation directory for libgcr. + Fix some errors parsing certificates. + Rework how unlock options are loaded and handled. + Fix saving of auto-unlock passwords. + Support building with GTK+ 3.0 + No warning message when SSH unlock prompt is cancelled. + Build fix finding PAM headers. + Build fix of PAM module for Hurd. - Drop gnome-keyring-fix-pam-module-build.patch: fixed upstream. - Pass --with-gtk=2.0 to configure to make sure we build against GTK+ 2. - Handle GSettings schemas, by using the %glib2_gsettings_schema_* macros.- Update to version 2.31.91: + Fix problem with keyring names that contain foreign charaters. + Build fixes and warning fixes. + Better GPG Agent prompt strings. + More internal documentation. + Remove gconf as part of migration to gsettings. + Add --replace option to daemon. + Fix race condition in tests. + Use new DER decoding and encoding routines. + Only try to authenticate once if PKCS#11 slot has protected auth path. + Better handling of when PKCS#11 token is write protected. - Add gnome-keyring-fix-pam-module-build.patch to fix build of PAM module. - Pass --enable-pam to configure to make the build fail early if we lose the pam module. - Pass --with-root-certs=%{_sysconfdir}/ssl/certs to configure. - Remove all of the gconf packaging: + Remove gconf2-devel BuildRequires. + Remove use of %gconf macros and corresponding %pre/%preun/%posttrans. + Do not pass --disable-schemas-install to configure.- Remove gnome-common BuildRequires and call to gnome-autogen.sh. - Call %suse_update_desktop_file on gnome-keyring-gpg.desktop.- Update to version 2.31.4: + New GPG Agent built into gnome-keyring-daemon + Start building (but not using) new DER parser and writer. + Fix building of desktop and service files. + Fix problems displaying prompts with certain characters in strings. + Fix deadlock on secure memory usage. + Refactor the way prompting works for PKCS#11 components. + Refactor the way testing works and files are named. + Implement coverage testing. + Cleanup whitespace issues and rename certain modules. + Tests can now involve prompts and responses. + Fix possible threading race condition in gp11. + Fix broken startup when used with gdm and password-less login. + Fix checking of uninitialized value in prompting code. - Drop gnome-keyring-fixes-from-git.patch: fixed upstream.- Add gnome-keyring-fixes-from-git.patch to fix various issues related to gnome-keyring not working fine (with autologin, for example). - Add gnome-common BuildRequires and call to gnome-autogen.sh needed for the patch.- Update to version 2.30.1: + Build fixes for errors and distribution problems. + Fixes for building on recent GTK versions. + Remove accidental storage of user's login password in login keyring. + Fix assertion when exiting. + Updated translations.- Update to version 2.30.0: + More robust error display and handling. + Don't assert on va_list. + Don't save session keyring to disk. + Allow unlocking even when always unlock is not available. + Hide the automatically unlock check when login not usable. + Fix various issues storing and using auto unlock passwords. + Updated translations.- Update to version 2.29.92: + Fix various problems with not storing secret value properly. + Return no results when a search includes a bad collection identifier. + Don't raise error if ssh client disconnects early. + Allow running in a test environment. + Fix error when setting default keyring to NULL. + Autostart gnome-keyring-daemon in LXDE as well. + Rework the startup again, to use a singleton crontrolled via dbus, to help when no process was started by pam. + Display password and confirm prompts when creating keyring. + Allow specifying CKA_ID when creating collection. + Give translatable label to created login keyring. + When no default keyring set, use login keyring. + Fix problem initializing socket path in rpc module. + Fix endless loop in reading data. + Potential fix or sporadic crash. + Solaris build fixes. + Updated translations. Drop upstream included gnome-keyring-LXDE-autostart.patch.- Update to version 2.29.90: + Quit daemon when the dbus session is disconnected. + Don't print out warnings on SSH v1 keys. + Remove erroneous egg-dbus dependency. + Allow saving password for encryption keys. + Fix problems storing secrets in keyrings. + Expose idle and timeout lock options for keyrings in the prompt dialog. Fix remaining issues to get this to work. + Display a different message when unlocking the login keyring. + Fix problem with phantom 'xxx_1' keyrings appearing. + Load and use the default keyring properly. + Support accessing template style pkcs11 attributes. + Fix endless loop when looking for encryption key password in login keyring. + GNU Hurd build fixes. + Solaris build fixes. + Translation fixes. - Drop eggdbus-devel BuildRequires. - Tweak gnome-keyring-check-session.patch to not start the keyring if we're in a supported display manager, but DESKTOP_SESSION is not set.- Add gnome-keyring-LXDE-autostart.patch to allow to autostart keyring on LXDE session.- Update gnome-keyring-check-session.patch to also support LXDE (and lxdm).- Update to version 2.29.5: + Implement lookup collection passwords in login keyring. + Various prompting fixes. + Store PKCS#11 objects after any attribute change. + Add 'Type' property to Secret Service API DBus item interface + Various warning, and uninitialized memory fixes.- Update to version 2.29.4: + Refactor how the daemon starts up. + Allow init with already present environment variables, using - -start. + Install autostart files for each component of the daemon. + New DBus Secret Service API for accessing passwords and secrets. + Old protocol for accessing secrets is no longer present. + libgnome-keyring is now its own module, and no longer bundled with gnome-keyring. + Use normal GtkEntry when prompting for passwords. + Requires GTK+ 2.18 + Implement new more flexible control protocol for pam and startup. + Complete more of the gp11 PKCS#11 wrapper library. + Implement AES key wrapping and unwrapping in PKCS#11 components. + Implement DH key generation and derivation in PKCS#11 components. + Integrate testing of PKCS#11 components via p11-tests. + Implement PKCS#11 component for storing 'keyring' style secrets. + Don't complain if we can't set session environment variables. + When running a debug build, warnings are fatal. + Refactor testing. + Encrypted channel for password with prompting dialog. - Pass --disable-schemas-install to configure. - Add eggdbus-devel BuildRequires. - Remove libgnome-keyring0 and gnome-keyring-devel subpackages (moved to libgnome-keyring source package). - Split the remaining of gnome-keyring-devel in libgcr-devel and libgp11-devel. - Update baselibs.conf to reflect the packages shipping libraries (libgcr0 and libgp11-0).- Add baselibs.conf as a source- Fix build on openSUSE <= 11.2.- Update to version 2.28.2: + Add license to reference documentation. + Sent output of g_printerr to syslog. + No error when can't unlock login keyring. + Fix assertion when comparing attributes. + Fix freeing of unallocated memory in test. + Don't barf on certificates with unsupported algorithm. + Fix some memory leaks.- Split the libraries in their own packages, to avoid useless dependencies for packages depending on libgnome-keyring0 but that don't want the whole gnome-keyring (which pulls gtk2). This means we now have libgnome-keyring0, libgcr0, libgp11-0 and libgp11-modules subpackages. (Thanks to Debian: summaries and descriptions are inspired by the Debian ones.) - Remove .la files. - Do not self-obsolete for gnome-keyring-doc and pam_keyring. - Move the pam-confire PreReq to the pam subpackage.- Update to version 2.28.1: + Fix support for SSH RSA1 keys. + Fix a delay when the daemon quits. + Use default D-Bus timeout when finding daemon. + Make custom pkcs11 constants unsigned longs. + Use unsigned long for module handle counter. + Fix assertion when releasing secure memory block. - Drop gnome-keyring-no-logout-delay.patch: fixed upstream. - Drop gnome-keyring-fix-ssh1-agent.patch: fixed upstream. - Update gnome-keyring-check-session.patch to apply without fuzz.- Add gnome-keyring-fix-ssh1-agent.patch to make the ssh agent support rsa1 keys again. Fix bnc#540515.- Update gnome-keyring-pam-auth-prompt-password.patch to not prompt for password if use_authtok option is used.- Add gnome-keyring-no-logout-delay.patch to fix delay during logout.- Update to version 2.28.0: + Fix build problems with -as-needed. - Remove export SUSE_ASNEEDED.- Update to version 2.27.92: + Some uses of glib memory routines to explicitly allocate memory. + Fix erroneous assertion hit by gtk-doc and tests. + Revert change which bumped libtasn1 required to 1.0. + Fix logic for only_if option in PAM module. + Handle unix signals on one thread. + Better daemon startup and forking logic. + Optional use of automake silent rules when available. + No warning when a disk doesn't have a UDI identifier. - Drop gnome-keyring-pam-fix-only_if.patch: fixed upstream. - Add SUSE_ASNEEDED=0 to fix build.- Add gnome-keyring-pam-fix-only_if.patch to fix logic in pam module when using only_if.- Update to version 2.27.90: + Build fixes on Solaris and FreeBSD. + Take length of ASN.1 elements into account, when parsing.- Drop gnome-keyring-auto-start-if-compatibility.patch now that pam-config has been updated to support only_if in the pam config. - Change pam-config call in post to use "--gnome_keyring-auto_start - -gnome_keyring-only_if=gdm" instead of "--gnome_keyring-auto_start_if=gdm"" - PreReq pam-config at least 0.72 for those changes.- Update to version 2.27.5: + Add support for lifetime constrained SSH identities. + Use GtkBuilder files where glade files were used. + Write private key files with tighter file permissions. + Use gio instead of libhal for monitoring volumes. + Updated translations. - Remove hal-devel from BuildRequires not needed anymore.- Update to version 2.27.4: + Insurance in parsing keyring format for future changes. + Add 'use_authtok' option to pam module. + Test utility fix. + Add 'only_if=' option to pam module. + Make 'Password:' prompt translatable in pam module. + Use libgcrypt to generate iv/salt where needed. + Remove old cu-test style unit tests. + Code refactoring and cleanup, removed 'common' component. + Auto generated ChangeLog. + Cleanup unit tests, and make them run with 'make check' - Changes from version 2.26.3: + Build fixes. + Fix problem with RSA key sizes that are not a multiple of 8. This affected use of SSH keys in particular. + Fix crash related to secure memory. - Drop gnome-keyring-pam-auto-start-if.patch: fixed upstream. - Drop gnome-keyring-pam-translate.patch: fixed upstream. - Remove AutoReqProv: it's default now. - Add gnome-keyring-auto-start-if-compatibility.patch since pam-config does not know yet about only_if. It will be removed once pam-config will be updated.- Update to version 2.26.1: + Fix many problems with the new secure memory allocator + DBus now automatically starts the gnome-keyring service properly + When auto activating the gnome-keyring DBus service, check for an already running daemon + Don't print critical warnings when registering with DBus fails + Bump glib dependency + Add DBus method for getting the gnome-keyring environment variables + Fix crash when prompting to unlock the keyring + Initialize daemon with LOGNAME and USERNAME environment variables + Build fixes - Merge -doc into -devel as it only contains gtk-doc - Move gtk-doc from main to -devel- Modify baselibs.conf so that if pam-32bit is installed on x86_64, gnome-keyring-pam-32bit and gnome-keyring-32bit is installed as well.- Fix an issue where Requires on libtasn1-devel and gtk2-devel was added to -pam instead of -devel- Update to version 2.26.0: + Implement support for running gnome-keyring-daemon under valgrind + Checks for asn1Parser tool when configuring + Only automatically expose PKCS#11 public key objects for private keys + Have the SSH agent only log into the token when we have a private key that we want to access + Disable input method in password - Add libtasn1-devel and gtk2-devel to Requires for devel package- Update to version 2.25.92: + Fix problems when multiple processes tried to initialize the gnome-keyring-daemon at the same time, often resulting in a user session that hung on login. + Add compatibility support for loading SSH unlock passwords from previous versions of gnome-keyring. + Fix compiler warnings on 32-bit systems. + Fix uninitialized variable usage. These resulted in crashes. + Initialize PKCS#11 tokens before importing certificates or keys to them. Remove previous auto-initialize idea. + Add basic support for PKCS#11 SO logins. + Fix focus issues in the import certificate/key dialog. + When looking for PKCS#11 objects, skip tokens that have not been initialized. + Exit properly when an error occurs on importing a certificate or key. + Hash objects when storing them in PKCS#11 user-store and validate the hashes when loading them. + Build fix on Solaris + If login keyring doesn't exist when changing a PAM password, don't create it automatically. + Close stdin/stdout when not running the daemon in foreground. This fixes a regression in scripts starting gnome-keyring-daemon. - Remove -fno-strict-aliasing from CFLAGS. - Use makeinstall (install-pam is no longer useful) - Make sure fdupes is called last (since we might changes some files before).libgp11-moduleslibgck-modulescloud134 15095636523.20.0-7.13.20.0-7.13.20.03.20.0gnome-keyringdevelgkm-gnome2-store-standalone.sogkm-secret-store-standalone.sogkm-ssh-store-standalone.sogkm-xdg-store-standalone.so/usr/lib64//usr/lib64/gnome-keyring//usr/lib64/gnome-keyring/devel/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector -funwind-tables -fasynchronous-unwind-tables -gobs://build.opensuse.org/openSUSE:Maintenance:7447/openSUSE_Leap_42.3_Update/95f7b751322060c8819a3e1a0a88d590-gnome-keyring.openSUSE_Leap_42.3_Updatedrpmlzma5x86_64-suse-linuxdirectoryELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=0bd189542638e1ff5e0a3989bdf0183e0867ed82, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=595954cd345c3cca93e31f8d5678b99242631e34, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=6a9eb3203954538bbdcb258d86f081f8b31b266b, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=5c8c6a5485b5bad619275c57e7ee66ade1a0d8c4, stripped ' PRRRRRRR R RRPR RRRRRRR R R RR RPR RRRRRRR R R RR RPR RRRRRRR R R RR R]FEs7BVG?g?0]"k%KjDϴ$E?OC^% Noa_l4@zXb#2fFT4 *U ·Ub_tK耞>lPU \X:jgER (0zۘ1^_R!qu>;V< 'z%? S[]$#Y+)Y%%=+iqõ^Ͱ6.۴ |~0`p ncqqtdh Y`"θÐlḪt/Ž-Wշb̾r ,^̍60܋`\k]"QV{U- Q[G;Ô{M?}%b\gj 1+^k]ۉmA$alDd ]lbaYu!E@ͻ_Ky4K_DMr[^s6qST#53J Ι`ЪݳG _ycLOZ􆨫qK1J+Ga S|@OXIri|mA`H!?=ֽCndV@GBoķ\=)21 ]r 0.W ?r>Etne+>{e8Ɵn x8R[&N3w9.fv+)9w7:9PYͥsN3.@%^N\=T0MR qݹYCc^oqV\_YuP"w,钗[HInDnN3oEǣ"22yNnqF83epdl8^5PxF^[Eu]!ǒ{|Q/|vΨ?)HȃiQ(N_(b !}`g~y#t&Z1 O(.On!FA0oPD8{99D0yL$ݶB8!PojJ^Je P/MɼWԐ -;k9E(u"KSQQ݄*>wץ<-fܔ$WFWjfWyM"ڝ72!x٢zz c}ZЖ+MƄܿ;YGz83K6b%}xnw A]ke@N0 KP+,߱~H6;#> 纱8O.Սb^^z!?:7XL.TyD-ت0-3=ywQ JyVVckʺ "2BC340# Nalۣ͝C+N9k"b9!%HWkVCRgӻ ^ 2m%ub 煹A]@ȗ{RWmf|k4KmTsƧm|  g~s/2%],-t3^Ntzk]u%ɳ( pOi~ 'j 9(2$y aTKn8j4ޢ&MU76<AFR,F47 i{{lU:PdPD[4]߄bUa~z(_G;y3=l2K^UFbnZ[It m&նyL h9bsvl&0fW,P%VOH\YoD3ϫG 6478J39ex{;- 3ɆWw  |@QK;35>LtU[#w߮vM~5`BJq.48pC*B nJ0Q.wZe&q}A#b@+_C$wt'a؈gSpV⾂ г=gq*0/i?nÉ/Jz~i@%{Έ&Sc)&PolRby"f͡ /#˻뻹E,Zi/)Pko^B%tv1FzMH*uq 1n VC~?e b2 vnFi`^&^V܁~x,^/[Ƭ1J2[;qph0:ibOB4C&p m ;#~!.`7es3ƅ$c5K\-g0l[_۵8mm+GXP>C.Hû\uVRKY|rNׁ_w+]̮Ʈ=3`=Eng%P 4:Ild9sx F гϦmHƾр_QSdV@JjXdl 88ϱ迻ZKc"nk]ld2$Sq`JP(s9t}Ӡv̟[C; O%2죎egcb91c":c&|K7LJZjz2T]ݗA{s7{?\?+wh^+xUSǁ6#$^S*˺7q.oIfCH~ޕ&|I:]]asD[OQr~^D=8rHلAd{-Yc2#x/v?Q@n\ofPLHB%w1fIk̮e&vpF \gi'aT+x2[sT PJU>gz%rNe&طILXP \}+T>cK=ܵn+XՌ,XC0طJ՜ڲՑ"$_̄Nl> V<-o.Ya%c"W򋙶Sq\SU+(I )j>QR]tcԑ/\S?c]N*ba$ˍu1AtVnCL~Tz%Ǫ5tq3_tv(H.M^x?Y~<I]#_{*Y, 9Q8_+ @(J[K 8Pc/DnGpt+MNkC޵yQ8. 7)!:vy߄k4gImb>py ─:P`'F)V\~ bvbᨱ&B84 x=?5 (_];B n3 ylL?IY XN"f8'S:^B^'Aw8Gtoa21w&='y2Wno6 NIα‘T<>26 /s߽ʛw8c:aAOvBNy,KJG[i8L6@ 5s\UN}~I_&ۭT1+Lnq|=Ӗ!e!݉+t\*lgεgKK$g2T6ėcP+yf]e!׷g));EY n"2D=vSn !UfՏqDpTnikF\V S>K2"OJ}Rne)qx6'e[s9@͌"s뵖% RJ 띌5-XhB|fs"<;ZJB NثNYknn\nĻ^'pܬ'8kf6Yu)qLZH#W:atU /}5pqUtUCnW`h#5ŵN%;@fl7+ȳrѯX(ߦK<ͩVkJz-n\d\_v!W+ 19Q@^aI1Oj% &>OhEemix=qܭ= evN/U}èq+>4>e;l y!YNI12{g_Mn".}g+'FbwD CB٦0~վg"ٙB}1k=ʁRoe6(%Gk:[J9w]Ε=#<* W;a*Lcvg.T5}h,S9` EFqFUH2J5@KLiadjM="ɅȤPJdӍCs[{YG?rhI0C~A gr,Jzp)L;ïi! hMͽک,9;Y#);ns\5ϑW] ${Te_CLwֶ.x/XOtyX nt@ -^kV |B>i/lM Ӧm e3P'Iq03/hOZ"7o(?lE',7(ĔbL,Bp }$KX*f+7{>P'^#&7#N$p!2406!uS.=Z"B :n$©]]43^N})g ߩϋ;F!̓Q**[YsK |}ѷ=#H5m»;drHfدz'֏kwU;r XZ+>M=K0Q-%Q/a7Ԯ`4]:5ٺ G̱O1oJDL9;5bMҏ/k.|`rPq')v6mM`(۶{vUQ~6YBSF&53j)?ӏB-C!}BZ#,YciQb+2 $)ĸsN6@]jPG]V@Zec)tƈCՎȭue;楔3W-R۞;2-7w^n"J 3;p,m>Ibs;ߕ/c^nDJJ)@u$v"ÿAv{Cȵw"n߈-tXIS.m? j(=i/hN?E]2֔h# wa$E<ʡĵ]SzM86%fX3ъ _}y~?juFo>aP,gXzmxA,8z4d@Vx+@:fuNkWC/rH]S:^Ms'po j1p-5*GEY G Ŋι`;n 6wLۣnpjhL2O< t CUߜΠv.N/!I:Oxj/<,$iĥ\|CL;i۹wOlŗiY}#4:ȰrwF++ra*I\V\kIp` AV # %.ͶҜ{xT<@B+l.YY=Uw(֞ߡpMEX FTҮH'TbG#ت0_fmOw_ yx`ׂ>hW Dv qԗ4ia [LJ2Ÿbz")vӜoAXBMNR֋KODl(11ZN]qic1&F[ռPaZӝDӗ 7?}Ayy#1C/FS]*UhrQxzx"G!K-Xʰ3 R 3s ]<~;͜65p -L+ pݰyT'׵^=܂<x$s9KL!f%yb?E.4Ot&f) *cre+{fYê!O,zdrRy3:_ Q{=EQU}Miyc!yW[SE'|;K;䬿Ny hsbqiX Gx>noDw΋ไ/UĠn=h`)4J|'mvGkL:vn W{qc?J6 w-B§H\  ֎LGPQpg)ka'ıx.EKVG #^E?䪫ԐF-o0~rdA' 썫KbSТWa zkOY,xER\#e}< +BBVge^k1X \a5#ncҥr^s?P* =52OH0` >:!<62ȣ߁w@*\y!,՚p>r =w,td莟\ֺm"KhM9OZ#)̩& ]rZ-6M=DSR8?3:Q\/-? :_Q.J#LMk[I9YMJDiT6RRr3仐ٰHRN$4'm|OJxOEɿ5|,"8e~w(1Mkl ӣ)Ƒ24YcHE\Ǥ0OY.(ӕ ڧ-WkR.vlѭDꇗ&ckFl)ӱN5XҢ0{F=ϴM?4l}iv^ڰ^6NkwpS\"#[ZMh'9 6WwR?IQ:/+9% OkQ k6FV+/UNFvWRȳbwO)\N8>M ,2"ڔ%3ɟ?V/`Mvq6GJZ,q@sY̠ |CҜ-H Ӧ-q1عw:hƻdx%(C=YGXpJҺѠa݋[6ʚV1 B4)mKRs5mXpmSjmxyD[SZld LC2-ɪ5;à%x9;@9k=و I:}-vrq ,ѲYF7xTdK0/1@'>-.߹ $3,DoA C`U \OgByjhP̋ ^!vG`g]b0_ =tJƫٌ!o9@ȸT;sΙ8]g%xL|A|MMؚ_akq ĢYypq7%mj`<>V]QɤBJqv kZ;XѐuBSPG7|9sDO5^ItgCKB6n+D[8Q&>]Yd^[F&.'I!X{aa{bi}R!여܏Ok'Tq9gG2|ug-~^y揜RN7k>6ݩ +TfWWryg7u ` k|q2e'qںL'|5Rk'^V>3AKNbϋX]w[;y8/3ML\ovٯJ,<97ai -[h: G˜ߵ&4mz<衺-H#&Z3O`x#8Ua܉ËuN_^ |, Ajsx2ГRƪZ$h4_R K<ڮ$E~%V%*8E"L):|Qbg襊Iޘ !4/ooyQDy81.Fdx"Ehg"JK0H%(x&GoYl+iLV"uˉ~:EG\2{4jzWRbv{w-M*/0E& ֆ,!q-ɯ"j䥒B5l Co&o*hVa`z|~ibgo([?;Q A09ӕ$^w3hd hGAA LKX zR&yR(D*527.ъ  ܃!:rfF;j\,.P͘[6 +w*p5KTr:5&2OzwO\\;ƨ+^5:IWڵwP~:Uf0Pd#Uspd ]6$f!RxGla~L`U#s07`OL̡VN;4}c5L=ɫls]]mr4)&Jd<ۀx XcC; "k#=.x*uD*֊ݽkY܄,ƾ[LӢ6\%yә,' |=PjJQV L`=Tu|SY|A7Ɩ~Tj8pdtH%dOW+8hӚɫJ{l=UeBʊ 6+Ȝ|(` 2 .h?NةPp7gu/ERI }V-JS uHyLT!i{ңq;Keg0_OR#!U4"2OtjฑSvP-zgtIJPVFVr:uÄTT9_~Oq}#ڃ8-wYG* 3R1~Ė6ā-"/eThA'y?3l0[]CX檌ۈFQ4-[J k}e;(oRGIaw4BM5 =TMci穅YCG)Є}" Cu Պ/+[1:}Er"k6.G)/ g٘rSòJd} TUu?|N*ꗐfySz='ii.ٙE@I7m- a<HgTsdE;Z謴jL$P]ą r8J?] MB8%f'%6ZoHsD=ZRͼ c C!|D{bD)T k.jM8懍q 8Gg]/Sյrծ+} t#]7_)O0=Jt I- qN (k!lLnLLTx"5c6am/1ťS+OeK⚢M5%ɍs&S orNEü^6݊MW? :jo8Z(ITNw/WMs$7*GsUW榜`*y3-}@i)RAs0֩_S_ܙG%fZ72@쿷T(ʻ?U*n-pa@QXҧd.R. 0ڡ6#u&Aa&˼Lji0"d=!d*ֱ)6Yާ^罊4kp#>0%D~\A'(ٞt9nzqsdUqD:b] ,wɬ+m)i`c?Y}DLr Gj̈DXR5z"߂,*P1 f_0^&̓YeJ20.쳺 Dezg*a2,!ՏN{js1/4^,]xk_MvԪWE z< jŸ 6>ڕCO6~7 UR } &$hf_Pg.ċe\,+m(%ɲ ;YKV-i>-Lv=+B/A MqQL]QS6S*8RztTaSsňT3T3:㱕uGOtlhKzt[ .dI%>Ļ ^<Txx ;8nusIF kNE'kL{.O'Ua[T&zpglJ6ʆK72T_U]}2)L28%*h =zC<.)ha\f A<8շ|tJ- 9} )j^5eXb, s-b_T#EYBL4'4w I>DZϛ@W0Zru:⺋k +t\a}4mоUx=ΨwqOЭ{2~㤀i/MƮI.ڣFJ.BvFڡ[8f/b$;fԧm[%7[W6 ܮ_”DqGYNa L׉Ċ|z.r6)L\{q>GtΨt'H(qs0#:o8Pfk݌aB"O}=@C vLv8`PH5ʭ@}0Eo0z<[jS5mUj7g7qC,7 NhYxq&$umffQ+Dke[_qCwbA\ݏFX7ҝL@\O&@my*5O-\>ִM2d?$}p-fY-c#_ky O}&}#E] ǘ ^Z9" [iy`Q7+Q!{Pc{9&O!="vp͡s`>#f&6ASOLeL28cTCy>$.c#8iˠRb ;E}4]020_ؐycLRN=%FW:q0+gK>!k~eXYLllI,H1/f)˝''!giwP3\7zjcqn:]^Idc9Sf`(iUc 4SUm=tU8 ;87dVtL̴ZwRlm ݋r 䴆&BF3n6!X]2uR6f8ÚWqpbөd†5i*g%"tm/ VE38Ua)ϲ9Q OVg3΃:-qnN׸w>[6U:`k˧X ll&@v Tj>-;n9DVamuA,~}M'&-mIY%'񳨲#YAsOF-4(5Y Q\۴33N P.ſ~Gv>˜J"ק>9Ԁ*HJ#ҙ7,:b$JÚ76s2W6c!r}MI󤋽 h?OKo˺'Cŝo+eU%j.oh!+e[ND!W}{\N0wծZڞ3 (D3c;BL1o֛=Bn!RGJpkQJ ~;D4cFG}@\**zn0l†]3 mD3],Y-RS_t]=mT)=]Bؽhq%U!K1 &㢱mjմGO_f; иˀkoe0n:{i2oRq@)q|=z0pP5fu&7?281{o0N匹iH}je[>kESJx6!VzvTK$*_ PzZK'yg 㽰j}+a0L2:Y&DI:CC\X'^" J3?9 '=m7y~kafҵajp ~Uv dT(51Ĝm$ #./N`@Y>bC1m)_\2VNtbJ݆6A~:/&1+Hn^@ vb0DjFڑ[TU` h߮ 7q(/frrʙiôcN9c8/uW{Ru<v!S@q@nGu}x I;J&RG!D޶m*@e"lxww&ǜ x4">hoq '/aox{ˆĪ9|x1Nm O?,Rx 4q\,^)-39tgjVM@c@> CEjoѷN18@?aھJ-rqGHf36+r1Bkqb -Z@#`&U$%CDLoy@Q4gYTΓ1)/0ez0Q>' )NUڱL!Kv_' k$hRQ2w SJ8so00QQ uaC~&.Ȕp7wIY`&~oHzi:)e(Aq @b "^X"["R+wu0QDe^KւXOv4>Aʌti@SJFb諍 ]zpM$\5jFQ@$q; z Mz&{!0?fiZ6P? ɛ3|W]IY17ie ؇44%(G< ظ64ׇ1, )7CK GcU 0P3/+|9ajcJ9h%;_IG6"?ZKRV& xy? W}[y\8I%b Y!yY)%=@EKqj5XM5Uh^GF2b &owwMQI` 2ʱ,%YJ‡C$SUA<CH=̢2/A443/> iy|m1`_+zȵ,|*8Q#5Q(xlyUle%8-g:BQO𦙦c#F"bسBr52JQQYg8+L6 tHl}SȉGULOr{k;:-n=쑬x@omF#yէ'er<S!R,My|j!|ӫ(\jܪ YRHpboFp#mW췆tK\S" ?yN05,GM?,59ȮFzC+tf“HDDmSS#n^2ۢk*r-qq_7Qg#KҐɆ"Ǩ](+VOQLyb^L25'wRAkVUF;< 33b;`hxX.H_= B5Q+I jpk:~5:&w sKr>GmxϾĝ%_mذ<3u줮=*Ɏ~"* !-!?ۣ"; sw8.ȑNuc:PwZR@xR™zvwD/5;txj:V#npè 9oTj0H)̲bV0iߛp[W!'@{w>z^ʤ'\5ʫ1"3~Z2M][FaS툿~|\cl8F}$S>{r._3w N\(nJWFL[DHOJ6͖T0ZkU{oҧ~ɓuaWX'O{ykf.M4zYWɾ-G>@%T&QW\,i"{ǢvEPvTdW~~u7 .jX !f{hhKu $\ )dE0jT7&kTo^{$nҜyn/م?鬈97NE^98fCE4< رS3#^7=䦚>yp~*)9t$!^$֚ {Yo85<3^|}Nfm}4#lz5M;fCJDX|R 醚A .gZRtS_ƅP2rfR}X"@%Cp$;LN TVyE5^qn8wx{0mzx1~NVNA؂L(g~$Cp v?@W=_ 3t^Zl"08aT"XÓyVesp J e ߫<϶{.3xivMcT"bu0D4_QNe&SJGS=H"=Ц/MsxmQ>J4!3KOu&H~ohU4oL8k#ZauIja[Xm G3' Î;vO:>V.uY,QݸZO:뾉`Fi0~'05W7SʢI x$&CjCNhEӺ (.O{kǚURdxM2jت yOň6w~CTݜFPU8a&f'4NCzsePޏ\vڍ-s D!me6FƸx_ȧ Dh,;`K|5MtP~51%Fe\R#%6-n5fe7\FJ?. :&_ {|Ά-^d̦꺈֞߃BVEU(A?{!1*!q*<\Ҩż]S3@aH wkQqR*/dƌty[韥о \`%AȽv^ ER8`u#p3|vzTe16OTp C qقtIPR|DT#*.Ƿw \4z>߂^ jmv2˜4,&Io6рCS)dEn1:M8fz[9h>$QCuċ4TӭlK,&1ՠt\S0FHl[HA9oK1%OwIH5 4FJ|M%cN}=7r@$\5rZ@t)3 K}L&&a\c.բM{Ȑ©B ^' {:ApѫB iNe$;թsӇyӬ~lĩu1d@iF: ;f ) a0;n "WI Cۨsvr 9a ʘŬ!P?6 Tdu ՞.:!5v* ?Jl{ud#QV [)+r{_j},FX ASToXONoi="Ww6*jlgx,+ @&a9n耯~o"xBvмmX+̥n\#j^6 skN[t/qaISel7w#[+*/8PIyo'-nϭ'UuGӃG-Vեkc$JV`V fIVuDR}Qڰתcvq{\cUQc(qCv4M]uэTHQ¨#ln`*Rto9q3zn38UCepRqא3xFtP=?r|xOp*+FQ['Qs/H f^shNId5" Lԛ;uh.Z'#[!B{ Ef|”ɬSch3İap.,zj t#2g~ ,}6MR0˺[H-T*)jy](ţbh 'R1|)VGG AD5u=6%'WlbX3tFYGz<{7!|퇰3I(3SL lȥ,b#?  bPݏɣ{ S&Cf;!떡^ft\wo܃LOk7c#{2\.焝 Q4#-q?`_Pǫf5V53~aO/e|>|&JWlѝ5]udjG(b`'߸{5@4!wͱF偪C0@<+j0"ü@yxEv o λ̶m{o[ -q,z;Gbje.EbrK==&} T>n$$Lf@{ah ))*_':“ڰt>4m9 l3 z[jfn q4o/0u,NBVؾ^%GczWPa4IIaͨ2FD.u 7 G!v 2_-asj%IM»2͗lF'mh6 6ɀxbAWRWZh|ng}z^Jjuqt.)4 PF!Ўqp/^N/q'smhBP,X%S44~=;fЍ)@9=`Roܥ jgDj1:=;&=Z"S+ZIn 픁9 G+(@$@N]י(^(/׏ XqÑJGvt-,ީ qɣt<+e15q<A/Rw*%M(. `>jZ1DP S