audit-devel-3.0.6-150400.4.13.1<>,dގp9|T7!_YRf Do+JMmp|ƪ}>9`!e4 "{bd׻^B5'Ox9:e$Vq[ç$o`}mg"^bVxJogpF(z(X "6~ n'03ʔ |tOcѭhN_E>4+,AGh)F-zpA`~&l1`nOE2TVttBuf{MtN(]ؗ]J,8!K;s^>>P?@d " <$ :Zaa a a a a Daa!a##a%8%|%&%(&N8&X9&:(HFl,GlDaHmaIoLaXoYo\oa]qxa^zb{kc|d|e|f|l|u|av~8 waxLayz<Caudit-devel3.0.6150400.4.13.1Header files for libauditThe audit-devel package contains the header files needed for developing applications that need to use the audit framework libraries.dގsangiovesee}SUSE Linux Enterprise 15SUSE LLC LGPL-2.1-or-laterhttps://www.suse.com/Development/Libraries/C and C++https://people.redhat.com/sgrubb/audit/linuxppc64le}zjq}ZUXooco:##lv*Vm}]]fO@6>_lDaLH`T#g;fs6-ÁAA큤dވdވdވdއdވdއdވdވdލaW9aW9aW9aW9dވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވdވ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.so.1.0.0libauparse.so.0.0.0rootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootaudit-3.0.6-150400.4.13.1.src.rpmaudit-develaudit-devel(ppc-64)pkgconfig(audit)pkgconfig(auparse)@    /usr/bin/pkg-configlibaudit1libauparse0rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)3.0.63.0.63.0.4-14.6.0-14.0-15.2-14.14.3dJbT@aaC1a`D_ǁ^^[\|[.6@[&M@ZZz@YYu@Ym@V@VbV^@UTsematsumiya@suse.dejengelh@inai.degmbr3@opensuse.orgematsumiya@suse.comematsumiya@suse.comematsumiya@suse.comabergmann@suse.comematsumiya@suse.comtonyj@suse.comjengelh@inai.deantoine.belvire@opensuse.organtoine.belvire@opensuse.orgtonyj@suse.comtchvatal@suse.comaavindraa@gmail.comjengelh@inai.detonyj@suse.comtchvatal@suse.comtchvatal@suse.comp.drouand@gmail.comtonyj@suse.commq@suse.cz- Enable livepatching on main library on x86_64.- Modernize specfile constructs.- Update to version 3.0.6: * fixes a segfault on some SELINUX_ERR records * makes IPX packet interpretation dependent on the ipx header file existing * adds b32/b64 support to ausyscall * adds support for armv8l * fixes auditctl list of syscalls on PPC * auditd.service now restarts auditd under some conditions- Update to version 3.0.5: * In auditd, flush uid/gid caches when user/group added/deleted/modified * Fixed various issues when dealing with corrupted logs * In auditd, check if log_file is valid before closing handle - Include fixed from 3.0.4: * Apply performance speedups to auparse library * Optimize rule loading in auditctl * Fix an auparse memory leak caused by glibc-2.33 by replacing realpath * Update syscall table to the 5.14 kernel * Fixed various issues when dealing with corrupted logs- Update to version 3.0.3: * Dont interpret audit netlink groups unless AUDIT_NLGRP_MAX is defined * Add support for AUDIT_RESP_ORIGIN_UNBLOCK_TIMED to ids * Change auparse_feed_has_data in auparse to include incomplete events * Auditd, stop linking against -lrt * Add ProtectHome and RestrictRealtime to auditd.service * In auditd, read up to 3 netlink packets in a row * In auditd, do not validate path to plugin unless active * In auparse, only emit config errors when AUPARSE_DEBUG env variable exists - use https source urls- Adjust audit.spec and audit-secondary.spec to support new version - Include fix for libev * add libev-werror.patch - Update to version 3.0.2 - In audispd-statsd pluging, use struct sockaddr_storage (Ville Heikkinen) - Optionally interpret auid in auditctl -l - Update some syscall argument interpretations - In auditd, do not allow spaces in the hostname name format - Big documentation cleanup (MIZUTA Takeshi) - Update syscall table to the 5.12 kernel - Update the auparse normalizer for new event types - Fix compiler warnings in ids subsystem - Block a couple signals from flush & reconfigure threads - In auditd, don't wait on flush thread when exiting - Output error message if the path of input files are too long ausearch/report Included fixes from 3.0.1 - Update syscall table to the 5.11 kernel - Add new --eoe-timeout option to ausearch and aureport (Burn Alting) - Only enable periodic timers when listening on the network - Upgrade libev to 4.33 - Add auparse_new_buffer function to auparse library - Use the select libev backend unless aggregating events - Add sudoers to some base audit rules - Update the auparse normalizer for some new syscalls and event types Included fixes from 3.0 - Generate checkpoint file even when no results are returned (Burn Alting) - Fix log file creation when file logging is disabled entirely (Vlad Glagolev) - Convert auparse_test to run with python3 (Tomáš Chvátal) - Drop support for prelude - Adjust backlog_wait_time in rules to the kernel default (#1482848) - Remove ids key syntax checking of rules in auditctl - Use SIGCONT to dump auditd internal state (#1504251) - Fix parsing of virtual timestamp fields in ausearch_expression (#1515903) - Fix parsing of uid & success for ausearch - Add support for not equal operator in audit by executable (Ondrej Mosnacek) - Hide lru symbols in auparse - Add systemd process protections - Fix aureport summary time range reporting - Allow unlimited retries on startup for remote logging - Add queue_depth to remote logging stats and increase default queue_depth size - Fix segfault on shutdown - Merge auditd and audispd code - Close on execute init_pipe fd (#1587995) - Breakout audisp syslog plugin to be standalone program - Create a common internal library to reduce code - Move all audispd config files under /etc/audit/ - Move audispd.conf settings into auditd.conf - Add queue depth statistics to internal state dump report - Add network statistics to internal state dump report - SIGUSR now also restarts queue processing if its suspended - Update lookup tables for the 4.18 kernel - Add auparse_normalizer support for SOFTWARE_UPDATE event - Add 30-ospp-v42.rules to meet new Common Criteria requirements - Deprecate enable_krb and replace with transport config opt for remote logging - Mark netlabel events as simple events so that get processed quicker - When auditd is reconfiguring, only SIGHUP plugins with valid pid (#1614833) - In aureport, fix segfault in file report - Add auparse_normalizer support for labeled networking events - Fix memory leak in audisp-remote plugin when using krb5 transport. (#1622194) - In ausearch/auparse, event aging is off by a second - In ausearch/auparse, correct event ordering to process oldest first - Migrate auparse python test to python3 - auparse_reset was not clearing everything it should - Add support for AUDIT_MAC_CALIPSO_ADD, AUDIT_MAC_CALIPSO_DEL events - In ausearch/report, lightly parse selinux portion of USER_AVC events - Add bpf syscall command argument interpretation to auparse - In ausearch/report, limit record size when malformed - Port af_unix plugin to libev - In auditd, fix extract_type function for network originating events - In auditd, calculate right size and location for network originating events - Make legacy script wait for auditd to terminate (#1643567) - Treat all network originating events as VER2 so dispatcher doesn't format it - If an event has a node name make it VER2 so dispatcher doesnt format it - In audisp-remote do an initial connection attempt (#1625156) - In auditd, allow expression of space left as a percentage (#1650670) - On PPC64LE systems, only allow 64 bit rules (#1462178) - Make some parts of auditd state report optional based on config - Update to libev-4.25 - Fix ausearch when checkpointing a single file (Burn Alting) - Fix scripting in 31-privileged.rules wrt filecap (#1662516) - In ausearch, do not checkpt if stdin is input source - In libev, remove __cold__ attribute for functions to allow proper hardening - Add tests to configure.ac for openldap support - Make systemd support files use /run rather than /var/run (Christian Hesse) - Fix minor memory leak in auditd kerberos credentials code - Allow exclude and user filter by executable name (Ondrej Mosnacek) - Fix auditd regression where keep_logs is limited by rotate_logs 2 file test - In ausearch/report fix --end to use midnight time instead of now (#1671338) - Add substitue functions for strndupa & rawmemchr - Fix memleak in auparse caused by corrected event ordering - Fix legacy reload script to reload audit rules when daemon is reloaded - Support for unescaping in trusted messages (Dmitry Voronin) - In auditd, use standard template for DEAMON events (Richard Guy Briggs) - In aureport, fix segfault for malformed USER_CMD events - Add exe field to audit_log_user_command in libaudit - In auditctl support filter on socket address families (Richard Guy Briggs) - Deprecate support for Alpha & IA64 processors - If space_left_action is rotate, allow it every time (#1718444) - In auparse, drop standalone EOE events - Add milliseconds column for ausearch extra time csv format - Fix aureport first event reporting when no start given - In audisp-remote, add new config item for startup connection errors - Remove dependency on chkconfig - Install rules to /usr/share/audit/sample-rules/ - Split up ospp rules to make SCAP scanning easier (#1746018) - In audisp-syslog, support interpreting records (#1497279) - Audit USER events now sends msg as name value pair - Add support for AUDIT_BPF event - Auditd should not process AUDIT_REPLACE events - Update syscall tables to the 5.5 kernel - Improve personality interpretation by using PERS_MASK - Speedup ausearch/report parsing RAW logging format by caching uid/name lookup - Change auparse python bindings to shared object (Issue #121) - Add error messages for watch permissions - If audit rules file doesn't exist log error message instead of info message - Revise error message for unmatched options in auditctl - In audisp-remote, fixup remote endpoint disappearin in ascii format - Add backlog_wait_time_actual reporting / resetting to auditctl (Max Englander) - In auditctl, add support for sending a signal to auditd - Remove audit-fno-common.patch: fixed in upstream - Remove audit-python3.patch: fixed in upstream- Enable Aarch64 processor support. (bsc#1179515 bsc#1179806)- Fix specfile to require libauparse0 and libaudit1 after splitting audit-libs (bsc#1172295)- Update to version 2.8.5: * Fix segfault on shutdown * Fix hang on startup (#1587995) * Add sleep to script to dump state so file is ready when needed * Add auparse_normalizer support for SOFTWARE_UPDATE event * Mark netlabel events as simple events so that get processed quicker * When audispd is reconfiguring, only SIGHUP plugins with valid pid (#1614833) * Add 30-ospp-v42.rules to meet new Common Criteria requirements * Update lookup tables for the 4.18 kernel * In aureport, fix segfault in file report * Add auparse_normalizer support for labeled networking events * Fix memory leak in audisp-remote plugin when using krb5 transport. (#1622194) * Event aging is off by a second * In ausearch/auparse, correct event ordering to process oldest first * auparse_reset was not clearing everything it should * Add support for AUDIT_MAC_CALIPSO_ADD, AUDIT_MAC_CALIPSO_DEL events * In ausearch/report, lightly parse selinux portion of USER_AVC events * In ausearch/report, limit record size when malformed * In auditd, fix extract_type function for network originating events * In auditd, calculate right size and location for network originating events * Treat all network originating events as VER2 so dispatcher doesn't format it * In audisp-remote do an initial connection attempt (#1625156) * In auditd, allow expression of space left as a percentage (#1650670) * On PPC64LE systems, only allow 64 bit rules (#1462178) * Make some parts of auditd state report optional based on config * Fix ausearch when checkpointing a single file (Burn Alting) * Fix scripting in 31-privileged.rules wrt filecap (#1662516) * In ausearch, do not checkpt if stdin is input source * In libev, remove __cold__ attribute for functions to allow proper hardening * Add tests to configure.ac for openldap support * Make systemd support files use /run rather than /var/run (Christian Hesse) * Fix minor memory leak in auditd kerberos credentials code * Fix auditd regression where keep_logs is limited by rotate_logs 2 file test * In ausearch/report fix --end to use midnight time instead of now (#1671338) - Remote zos building is now a configurable option. It should be disabled in audit (and left enabled in audit-secondary).- Make use of some %make_install.- Update to version 2.8.4: * Generate checkpoint file even when not results are returned (Burn Alting). * Fix log file creation when file logging is disabled entirely (Vlad Glagolev). * Use SIGCONT to dump auditd internal state (rh#1504251). * Fix parsing of virtual timestamp fields in ausearch_expression (rh#1515903). * Fix parsing of uid & success for ausearch. * Hide lru symbols in auparse. * Fix aureport summary time range reporting. * Allow unlimited retries on startup for remote logging. * Add queue_depth to remote logging stats and increase default queue_depth size.- Update to version 2.8.3: * Correct msg function name in lru debug code. * Fix a segfault in auditd when dns resolution isn't available. * Make a reload legacy service for auditd. * In auparse python bindings, expose some new types that were missing. * In normalizer, pickup subject kind for user_login events. * Fix interpretation of unknown ioctcmds (rh#1540507). * Add ANOM_LOGIN_SERVICE, RESP_ORIGIN_BLOCK, & RESP_ORIGIN_BLOCK_TIMED events. * In auparse_normalize for USER_LOGIN events, map acct for subj_kind. * Fix logging of IPv6 addresses in DAEMON_ACCEPT events (rh#1534748). * Do not rotate auditd logs when num_logs < 2 (brozs).- Update header in audit-python3.patch - Update patch guidelines in README-BEFORE-ADDING-PATCHES- Add patch to fix test run without python2 interpreter: * audit-python3.patch - Update to 2.8.2 release: * Update tables for 4.14 kernel * Fixup ipv6 server side binding * AVC report from aureport was missing result column header (#1511606) * Add SOFTWARE_UPDATE event * In ausearch/report pickup any path and new-disk fields as a file * Fix value returned by auditctl --reset-lost (Richard Guy Briggs) * In auparse, fix expr_create_timestamp_comparison_ex to be numeric field * Fix building on old systems without linux/fanotify.h * Fix shell portability issues reported by shellcheck * Auditd validate_email should not use gethostbyname- Update to version 2.8.1 release (includes 2.8 and 2.7.8 changes) * many features added to auparse_normalize * cli option added to auditd and audispd for setting config dir * in auditd, restore the umask after creating a log file * option added to auditd for skipping email verification - Full changelog: http://people.redhat.com/sgrubb/audit/ChangeLog- Rectify RPM groups, diversify descriptions. - Remove mentions of static libraries because they are not built.- Update to version 2.7.7 release Changelog: https://people.redhat.com/sgrubb/audit/ChangeLog- Create folder for the m4 file from previous commit to avoid install failure- Version update to 2.5 release - Refresh two patches and README to contain SUSE and not SuSE * audit-allow-manual-stop.patch * audit-plugins-path.patch - Cleanup with spec-cleaner and do not use subshells but rather use - C parameter of make - Install m4 file to the devel package- Do not depend on insserv nor fillup; the package provides neither sysconfig nor sysvinit files- Update to version 2.4.4 (bsc#941922, CVE-2015-5186) - Remove patch 'audit-no_m4_dir.patch' (added Fri Apr 26 11:14:39 UTC 2013 by mmeister@suse.com) No idea what earlier 'automake' build error this was trying to fix but it broke the handling of "--without-libcap-ng". Anyways, no build error occurs now and m4 path is also needed in v2.4.4 to find ax_prog_cc_for_build - Require pkgconfig for build Changelog 2.4.4 - Fix linked list correctness in ausearch/report - Add more cross compile fixups (Clayton Shotwell) - Update auparse python bindings - Update libev to 4.20 - Fix CVE-2015-5186 Audit: log terminal emulator escape sequences handling Changelog 2.4.3 - Add python3 support for libaudit - Cleanup automake warnings - Add AuParser_search_add_timestamp_item_ex to python bindings - Add AuParser_get_type_name to python bindings - Correct processing of obj_gid in auditctl (Aleksander Zdyb) - Make plugin config file parsing more robust for long lines (#1235457) - Make auditctl status print lost field as unsigned number - Add interpretation mode for auditctl -s - Add python3 support to auparse library - Make --enable-zos-remote a build time configuration option (Clayton Shotwell) - Updates for cross compiling (Clayton Shotwell) - Add MAC_CHECK audit event type - Add libauparse pkgconfig file (Aleksander Zdyb) Changelog 2.4.2 - Ausearch should parse exe field in SECCOMP events - Improve output for short mode interpretations in auparse - Add CRYPTO_IKE_SA and CRYPTO_IPSEC_SA events - If auditctl is reading rules from a file, send messages to syslog (#1144252) - Correct lookup of ppc64le when determining machine type - Increase time buffer for wide character numbers in ausearch/report (#1200314) - In aureport, add USER_TTY events to tty report - In audispd, limit reporting of queue full messages (#1203810) - In auditctl, don't segfault when invalid options passed (#1206516) - In autrace, remove some older unimplemented syscalls for aarch64 (#1185892) - In auditctl, correct lookup of aarch64 in arch field (#1186313) - Update lookup tables for 4.1 kernel- Update to version 2.4.1 Changelog 2.4.1 - Make python3 support easier - Add support for ppc64le (Tony Jones) - Add some translations for a1 of ioctl system calls - Add command & virtualization reports to aureport - Update aureport config report for new events - Add account modification summary report to aureport - Add GRP_MGMT and GRP_CHAUTHTOK event types - Correct aureport account change reports - Add integrity event report to aureport - Add config change summary report to aureport - Adjust some syslogging level settings in audispd - Improve parsing performance in everything - When ausearch outputs a line, use the previously parsed values (Burn Alting) - Improve searching and interpreting groups in events - Fully interpret the proctitle field in auparse - Correct libaudit and auditctl support for kernel features - Add support for backlog_time_wait setting via auditctl - Update syscall tables for the 3.18 kernel - Ignore DNS failure for email validation in auditd (#1138674) - Allow rotate as action for space_left and disk_full in auditd.conf - Correct login summary report of aureport - Auditctl syscalls can be comma separated list now - Update rules for new subsystems and capabilities - Drop patch audit-add-ppc64le-mach-support.patch (already upstream)sangiovese 1692262030  !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`a3.0.6-150400.4.13.13.0.6-150400.4.13.13.0.63.0.6auparse-defs.hauparse.hlibaudit.hlibaudit.solibauparse.soaudit.pcauparse.pcaudit.m4audit-develpluginMakefileaudisp-example.caudisp-example.confaudit_add_rule_data.3.gzaudit_add_watch.3.gzaudit_close.3.gzaudit_delete_rule_data.3.gzaudit_detect_machine.3.gzaudit_encode_nv_string.3.gzaudit_encode_value.3.gzaudit_get_reply.3.gzaudit_get_session.3.gzaudit_getloginuid.3.gzaudit_is_enabled.3.gzaudit_log_acct_message.3.gzaudit_log_semanage_message.3.gzaudit_log_user_avc_message.3.gzaudit_log_user_comm_message.3.gzaudit_log_user_command.3.gzaudit_log_user_message.3.gzaudit_open.3.gzaudit_request_rules_list_data.3.gzaudit_request_signal_info.3.gzaudit_request_status.3.gzaudit_set_backlog_limit.3.gzaudit_set_backlog_wait_time.3.gzaudit_set_enabled.3.gzaudit_set_failure.3.gzaudit_set_pid.3.gzaudit_set_rate_limit.3.gzaudit_setloginuid.3.gzaudit_update_watch_perms.3.gzaudit_value_needs_encoding.3.gzauparse_add_callback.3.gzauparse_destroy.3.gzauparse_feed.3.gzauparse_feed_age_events.3.gzauparse_feed_has_data.3.gzauparse_find_field.3.gzauparse_find_field_next.3.gzauparse_first_field.3.gzauparse_first_record.3.gzauparse_flush_feed.3.gzauparse_get_field_int.3.gzauparse_get_field_name.3.gzauparse_get_field_num.3.gzauparse_get_field_str.3.gzauparse_get_field_type.3.gzauparse_get_filename.3.gzauparse_get_line_number.3.gzauparse_get_milli.3.gzauparse_get_node.3.gzauparse_get_num_fields.3.gzauparse_get_num_records.3.gzauparse_get_record_num.3.gzauparse_get_record_text.3.gzauparse_get_serial.3.gzauparse_get_time.3.gzauparse_get_timestamp.3.gzauparse_get_type.3.gzauparse_get_type_name.3.gzauparse_goto_field_num.3.gzauparse_goto_record_num.3.gzauparse_init.3.gzauparse_interpret_field.3.gzauparse_new_buffer.3.gzauparse_next_event.3.gzauparse_next_field.3.gzauparse_next_record.3.gzauparse_node_compare.3.gzauparse_normalize.3.gzauparse_normalize_functions.3.gzauparse_reset.3.gzauparse_set_eoe_timeout.3.gzauparse_set_escape_mode.3.gzauparse_timestamp_compare.3.gzausearch_add_expression.3.gzausearch_add_interpreted_item.3.gzausearch_add_item.3.gzausearch_add_regex.3.gzausearch_add_timestamp_item.3.gzausearch_add_timestamp_item_ex.3.gzausearch_clear.3.gzausearch_next_event.3.gzausearch_set_stop.3.gzget_auditfail_action.3.gzset_aumessage_mode.3.gz/usr/include//usr/lib64//usr/lib64/pkgconfig//usr/share/aclocal//usr/share/doc/packages//usr/share/doc/packages/audit-devel//usr/share/doc/packages/audit-devel/plugin//usr/share/man/man3/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:30277/SUSE_SLE-15-SP4_Update/59e50b157ec10b21bb5d240d8aa2f3c9-audit.SUSE_SLE-15-SP4_Updatedrpmxz5ppc64le-suse-linux  C source, ASCII textpkgconfig fileM4 macro processor script, ASCII textdirectorymakefile script, ASCII textASCII texttroff or preprocessor input, ASCII text (gzip compressed data, max compression, from Unix)troff or preprocessor input, ASCII text, with very long lines (gzip compressed data, max compression, from Unix)C source, ASCII text (gzip compressed data, max compression, from Unix)PRPR^ו !d=Qutf-8cd503ef5b57814865960bd54d8efc1053b91ddbc47bb365f2cb1502a334f0e25? 7zXZ !t/V\]"k%*lZ¿ K@5Ik/m`rx(UL#p 0U=R99Fs2=tk5iڡ\3c=)i)䰣})-͸RxwB,lC% ! c0gWpMSuA8Q/?!g yCWk,́HzZ: R$o4q~;f#dB;0.c 1ydwՋ2:탤LND@èPn/1#P­=AGQz~:x5>i$A'/\lSK_3&9|Tκ+K5Mn^%>2"8V]"@,S;\o`]Û-yZN;śTNI:Rk,it8fq}^|YRULL̤զi崐k~WA%nM{:1;u%aɦ\NkS5uI$ː+w`G w=0F7DdoIEשU5@1(R6emՔ4#B*JY(Od.c96v/;ߢ#,d$#)&:Y96;Ehp49n^u[G^QZ$ٻy$Ör-wW!Ò?!KѬC$gމeUrIA[z4{cd9j 3OCD7'}2P[SFlT'U4`3 ښi 3^aT}2PB QEZFՓ093-lF-rݩrABƯTP!ȵr"gy#l"Q% ]D69j:"oxޠVSEM<<m'K ,ÖuW9HBr60]gs5lgY!x X',4I&ѧ^G&f:7favj:@fEo9` ČAF%N4@}069$`a귁hmw_¦i)/2 } n=owϲa7FX7QnZNmP[%/̘ MF0vqaWDJ4EGAV@2hX1,Q9:k/4m|j ;}Tҿ}Aȉ- ɖ*GєiNEh[!x uo{Й T:ޮ@zɎ,E 04REo6s' ,+7# YZ