python3-apparmor-3.0.4-150400.5.9.1<>,da p9|lL6!T~"m C(]P;Y !,G*B\ȨlzRT !.˅zgoYC,R=7CR`/kY̑Pw=^־7i< (Lוdln7.TEZ{Q(م֓0}x(o7'\ *ZS<1anϜI,QOV.bDpyІ>>ʔ?ʄd & S= SpUU U DU U -U UUU*PU 4"("8#~9$~:.P~FGUH$UIxUXY\U]TU^ bcªd-e2f5l7uLUvĠ w$UxxUyVz$48>ʀCpython3-apparmor3.0.4150400.5.9.1Python 3 interface for libapparmor functionsThis package provides the python interface to AppArmor. It is used for python applications interfacing with AppArmor.da h01-ch4d SUSE Linux Enterprise 15SUSE LLC GPL-2.0-only AND LGPL-2.1-or-laterhttps://www.suse.com/Development/Libraries/Pythonhttps://launchpad.net/apparmorlinuxx86_64/S }((&_g47wJ\90QL ,b2 5,(k#)<Q>p1 @ 6<tq B;?b[&'%Ui $3)E/Px0AA큤A큤A큤A큤AA큤큤A큤d_d_d_d_d_d_b`%d_d_d_d_d_d_d_d_d_d_d_d_d_d_d_d_d_d_d_d_b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%d_b`%d_d_d_d_d_d_d_d_d_d_d_d_d_d_b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%b`%d_d_d_d_d_d_d@d_b`%d_d_d_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-3.0.4-150400.5.9.1.src.rpmpython3-apparmorpython3-apparmor(x86-64)@@@@@@@@@@@@@@@@@@    libapparmor.so.1()(64bit)libapparmor.so.1(APPARMOR_1.0)(64bit)libapparmor.so.1(APPARMOR_1.1)(64bit)libapparmor.so.1(APPARMOR_2.10)(64bit)libapparmor.so.1(APPARMOR_2.11)(64bit)libapparmor.so.1(APPARMOR_2.9)(64bit)libapparmor.so.1(PRIVATE)(64bit)libapparmor1libc.so.6()(64bit)libc.so.6(GLIBC_2.14)(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.3.4)(64bit)libc.so.6(GLIBC_2.4)(64bit)libdl.so.2()(64bit)libm.so.6()(64bit)libpthread.so.0()(64bit)libpython3.6m.so.1.0()(64bit)libutil.so.1()(64bit)python(abi)python(abi)python3rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)3.0.43.63.63.0.4-14.6.0-14.0-15.2-14.14.3d@d@cbk@bi0@bZbV@bT@bRbBb<]@b@a7aZ@ap@aabaim@aEaaua $@`#@` @````_@`%@`!'`>` @__ǁ_ǁ_Q_h__@_~@_[f_P_-B@_@^m@^@^<@^j$@^,-]҇]o](]K@]]@\\@\ \\v{\I\ include in apache extra profile optional to avoid problems with empty profile directory (boo#1178527)- prepare usrmerge (boo#1029961) * use %_pamdir- update to AppArmor 3.0.1 - minor additions to profiles and abstractions - some bugfixes in libapparmor, apparmor_parser and the aa-* utils - see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_3.0.1 for the detailed upstream changelog - removed upstream(ed) patches: - changes-since-3.0.0.diff - extra-profiles-fix-Pux.diff - utils-fix-hotkey-conflict.diff- Use apache provided variables for the module_directry: + Use %apache_libexecdir + Add apache-rpm-macros BuildRequires- add utils-fix-hotkey-conflict.diff to fix a hotkey conflict in de, id and sv translations (and fix the test) (MR 675) - add extra-profiles-fix-Pux.diff to fix an inactive profile - prevents a crash in aa-logprof and aa-genprof when creating a new profile (MR 676)- update to AppArmor 3.0.0 - introduce feature abi declaration in profiles to enable use of new rule types (for openSUSE: dbus and unix rules) - support xattr attachment conditionals - experimental support for kill and unconfined profile modes - rewritten aa-status (in C), including support for new profile modes - rewritten aa-notify (in python), finally dropping the perl requirement at runtime - new tool aa-features-abi for extracting feature abis from the kernel - update profiles to have profile names and to use 3.0 feature abi - introduce @{etc_ro} and @{etc_rw} profile variables - new profile for php-fpm - several updates to profiles and abstractions (including boo#1166007) - fully support 'include if exists' in the aa-* tools - rewrite handling of alias, include, link and variable rules in the aa-* tools - rewrite and simplify log handling in the aa-logprof and aa-genprof - see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_3.0 for the detailed upstream changelog - patches: - add changes-since-3.0.0.diff with upstream fixes since the 3.0.0 release up to 3e18c0785abc03ee42a022a67a27a085516a7921 - drop upstreamed usr-etc-abstractions-base-nameservice.diff - drop 2.13-only libapparmor-so-number.diff - refresh apparmor-enable-profile-cache.diff - partially upstreamed - update apparmor-samba-include-permissions-for-shares.diff and apparmor-lessopen-profile.patch - switch to "include if exists" - apparmor-lessopen-profile.patch: add abi rule to lessopen profile - refresh apparmor-lessopen-nfs-workaround.diff - move away very loose apache profile that doesn't even match the apache2 binary path in openSUSE to avoid confusion (boo#872984) - move rewritten aa-status from utils to parser subpackage - add aa-features-abi to parser subpackage - replace perl and libnotify-tools requires with requiring python3-notify2 and python3-psutil (needed by the rewritten aa-notify) - drop ancient cleanup for /etc/init.d/subdomain from parser %pre - drop (never enabled) conditionals to build with python2 and to build the python-apparmor subpackage (upstream dropped python2 support) - drop setting PYTHON and PYTHON_VERSIONS env variable, no longer needed - set PYFLAKES path for utils check - add precompiled_cache build conditional to allow faster local builds without using kvm - remove duplicated BuildRequires: swig- update to AppArmor 2.13.5 - add missing permissions to several profiles and abstractions - bugfixes in parser and tools - fix two potential build failures in libapparmor - see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_2.13.5 for the detailed upstream changelog - remove upstream(ed) patches - changes-since-2.13.4.diff - abstractions-X-xauth-mr582.diff - sevdb-caps-mr589.diff - libvirt-leaseshelper.patch - cap_checkpoint_restore.diff - add libapparmor-so-number.diff to fix libapparmor so version (!658)- add CAP_CHECKPOINT_RESTORE to severity.db (MR 656, cap_checkpoint_restore.diff)- %service_del_postun_without_restart only works for Tumbleweed, keep using DISABLE_RESTART_ON_UPDATE for Leap 15.x- Make use of %service_del_postun_without_restart And stop using DISABLE_RESTART_ON_UPDATE as this interface is obsolete.- libvirt-leaseshelper.patch: add /usr/libexec as a path to the libvirt leaseshelper script (jsc#SLE-14253)- sevdb-caps-mr589.diff: add new capabilities CAP_BPF and CAP_PERFMON to severity.db (lp#1890547)- add abstractions-X-xauth-mr582.diff to allow reading the xauth file from its new sddm location (boo#1174290, boo#1174293)- add changes-since-2.13.4.diff with upstream changes and fixes since 2.13.4 up to 5f61bd4c: - add several abstractions related to xdg-open: dbus-network-manager-strict, exo-open, gio-open, gvfs-open, kde-open5, xdg-open - introduce @{run} variable - update dnsmasq and winbindd profile - update mdns, mesa and nameservice abstraction - some bugfixes in the aa-* tools, including a remote bugfix in the YaST AppArmor module (boo#1171315) - drop upstream(ed) patches (now part of changes-since-2.13.4.diff): - make-4.3-capabilities.diff - make-4.3-capabilities-vim.diff - make-4.3-fix-utils-network-test.diff - make-4.3-network.diff - abstractions-add-etc-mdns.allow-to-etc-apparmor.d-abstractions-mdns.patch - apply usr-etc-abstractions-base-nameservice.diff only for Tumbleweed, but not for Leap 15.x where it's not needed - refresh usr-etc-abstractions-base-nameservice.diff- Add abstractions-add-etc-mdns.allow-to-etc-apparmor.d-abstractions-mdns.patch (bsc#1168306)- fix build with make 4.3 by backporting some commits from upstream master (boo#1167953): - make-4.3-capabilities.diff - make-4.3-capabilities-vim.diff - make-4.3-network.diff - make-4.3-fix-utils-network-test.diff- update to AppArmor 2.13.4 - several abstraction updates (including boo#1153162) - disallow writing to fontconfig cache in abstractions/fonts - some bugfixes in the aa-* tools - fix log parsing for logs with an embedded newline - see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_2.13.4 for the detailed upstream changelog - drop upstreamed patches: - abstractions-ssl-certbot-paths.diff - apparmor-krb5-conf-d.diff - libapparmor-python3.8.diff - usr-etc-abstractions-authentification.diff - refresh usr-etc-abstractions-base-nameservice.diff- add usr-etc-abstractions-base-nameservice.diff to adjust abstractions/base and nameservice for /usr/etc/ (boo#1161756)- Properly pull in full python3 interpreter- add libapparmor-python3.8.diff to fix building the libapparmor python bindings (deb#943657)- add usr-etc-abstractions-authentification.diff to allow reading /usr/etc/pam.d/* and some other authentification-related files (boo#1153162)- add abstractions-ssl-certbot-paths.diff - add certbot paths to abstractions/ssl_certs and abstractions/ssl_keys- add apparmor-krb5-conf-d.diff for kerberos client- update to 2.13.3 - profile updates for dnsmasq, dovecot, identd, syslog-ng - new "lsb_release" profile (only used when using "Px -> lsb_release") - fix buggy syntax in tunables/share - several abstraction updates - parser: fix "Px -> foo-bar" (the "-" was rejected before) - several bugfixes in aa-genprof and aa-logprof - some fixes in cache handling - see https://gitlab.com/apparmor/apparmor/wikis/Release_Notes_2.13.3 for the detailed upstream changelog - drop upstream(ed) patches: - apparmor-nameservice-resolv-conf-link.patch - profile_filename_cornercase.diff - dnsmasq-libvirtd.diff - dnsmasq-revert-alternation.diff - usrmerge-fixes.diff - libapparmor-swig-4.diff - re-number remaining patches- add upstream libapparmor-swig-4.diff: fix libapparmor tests with swig 4.0 (boo#1135751)- Disable LTO (boo#1133091).- update lessopen.sh profile for usrMerge (bash and tar) (boo#1132350)- add usrmerge-fixes.diff: fix test failures when /bin/sh is handled by update-alternatives (boo#1127877)- add dnsmasq-revert-alternation.diff: revert path alternation in dnsmasq profile and re-add peer=/usr/sbin/libvirtd rules to avoid breaking libvirtd (boo#1127073)- add dnsmasq-libvirtd.diff: allow peer=libvirtd in the dnsmasq profile to match the newly added libvirtd profile name (boo#1118952#c3)- Use %license instead of %doc [bsc#1082318]- add apparmor-lessopen-nfs-workaround.diff: allow network access in lessopen.sh for reading files on NFS (workaround for boo#1119937 / lp#1784499)- add profile_filename_cornercase.diff: drop check that lets aa-logprof error out in a corner-case (log event for a non-existing profile while a profile file with the default filename for that non-existing profile exists) (boo#1120472)- netconfig: write resolv.conf to /run with link to /etc (fate#325872, boo#1097370) [patch apparmor-nameservice-resolv-conf-link.patch]- update to AppArmor 2.13.2 - add profile names to most profiles - update dnsmasq profile (pid file and logfile path) (boo#1111342) - add vulkan abstraction - add letsencrypt certificate path to abstractions/ssl_* - ignore *.orig and *.rej files when loading profiles - fix aa-complain etc. to handle named profiles - several bugfixes and small profile improvements - see https://gitlab.com/apparmor/apparmor/wikis/Release_Notes_2.13.2 for the detailed upstream changelog - remove upstreamed fix-syntax-error-in-rc.apparmor.functions.patch- update to 2.13.1 - add qt5 and qt5-compose-cache-write abstractions - add @{uid} and @{uids} kernel var placeholders - several profile and abstraction updates - ignore "abi" rules in parser and tools (instead of erroring out) - utils: fix overwriting of child profile flags if they differ from the main profile - several bugfixes (including boo#1100779) - see https://gitlab.com/apparmor/apparmor/wikis/Release_Notes_2.13.1 for the detailed upstream changelog - remove upstream(ed) patches: - aa-teardown-path.diff - fix-apparmor-systemd-perms.diff - logprof-skip-cache-d.diff - fix-samba-profiles.patch - make-pyflakes-happy.diff - dnsmasq-Add-permission-to-open-log-files.patch - refresh apparmor-samba-include-permissions-for-shares.diff - add fix-syntax-error-in-rc.apparmor.functions.patch- update rpmlintrc: - whitelist .features file which is part of the pre-compiled cache - comment out filters for the disabled tomcat_apparmor subpackage- Backport dnsmasq fix: 025c7dc6 - dnsmasq-Add-permission-to-open-log-files.patch (boo#1111342)- add make-pyflakes-happy.diff to fix an unused variable (SR 629206)- add fix-samba-profiles.patch - smbd loads new shared libraries. Allow winbindd to access new kerberos credential cache location (boo#1092099)- exclude the /etc/apparmor.d/cache.d/ directory from aa-logprof parsing (logprof-skip-cache-d.diff)- add fix-apparmor-systemd-perms.diff - fix permissions of /lib/apparmor/apparmor.systemd (boo#1090545)- create and package precompiled cache (/usr/share/apparmor/cache, read-only) (boo#1069906, boo#1074429) - change (writeable) cache directory to /var/cache/apparmor/ - with the new btrfs layout, the only reason for using /var/lib/apparmor/cache/ (which was "it's part of the / subvolume") is gone, and /var/cache makes more sense for the cache - adjust parser.conf (via apparmor-enable-profile-cache.diff) to use both cache locations - clear cache also in %post of abstractions package- update to AppArmor 2.13 - add support for multiple cache directories and cache overlays (boo#1069906, boo#1074429) - add support for conditional includes in policy - remove group restrictions from aa-notify (boo#1058787) - aa-complain etc.: set flags for profiles represented by a glob - aa-status: split profile from exec name - several profile and abstraction updates - see https://gitlab.com/apparmor/apparmor/wikis/Release_Notes_2.13 for the detailed upstream changelog - drop upstreamed patches and files: - aa-teardown - apparmor.service - apparmor.systemd - 32-bit-no-uid.diff - disable-cache-on-ro-fs.diff - dovecot-stats.diff - parser-write-cache-warn-only.diff - set-flags-for-profiles-represented-by-glob.patch - fix-regression-in-set-flags.patch - drop spec code that handled installing aa-teardown, apparmor.service and apparmor.systemd (now part of upstream Makefile) - simplify "make -C profiles parser-check" call (upstream Makefile bug that required to call "cd" was fixed) - add aa-teardown-path.diff - install aa-teardown in /usr/sbin/ - move 'exec' symlink to parser package (belongs to aa-exec)- Set flags for profiles represented by glob (bsc#1086154) set-flags-for-profiles-represented-by-glob.patch fix-regression-in-set-flags.patch- add dovecot-stats.diff: - add dovecot/stats profile and allow dovecot to run it (boo#1088161) - allow dovecot/auth to write /run/dovecot/old-stats-user (part of boo#1087753) - update 32-bit-no-uid.diff with upstream fix- Change of path of rpm in lessopen.sh (boo#1082956)- add disable-cache-on-ro-fs.diff - disable write cache if filesystem is read-only and don't bail out (bsc#1069906, bsc#1074429)- add parser-write-cache-warn-only.diff to make cache write failures a warning instead of an error (boo#1069906, boo#1074429) - reduce dependeny on libnotify-tools (used by aa-notify -p) to "Suggests" to avoid pulling in several Gnome packages on servers (boo#1067477)- update to AppArmor 2.12 - add support for 'owner' rules in aa-logprof and aa-genprof - add support for includes with absolute path in aa-logprof etc. (lp#1733700) - update aa-decode to also decode PROCTITLE (lp#1736841) - several profile and abstraction updates, including boo#1069470 - preserve errno across aa_*_unref() functions - see https://gitlab.com/apparmor/apparmor/wikis/Release_Notes_2.12 for the detailed upstream changelog - drop upstreamed patches: - read_inactive_profile-exactly-once.patch - utils-fix-sorted-save_profiles-regression.diff - lessopen profile: change all 'rix' rules to 'mrix' - add 32-bit-no-uid.diff to fix handling of log events without ouid on 32 bit systems - no longer package static libapparmor.a- update to AppArmor 2.11.95 aka 2.12 beta1 - add JSON interface to aa-logprof and aa-genprof (used by YaST) - drop old YaST interface code - update audio, base and nameservice abstractions - allow @{pid} to match 7-digit pids - see http://wiki.apparmor.net/index.php/ReleaseNotes_2_11_95 for the detailed upstream changelog - drop upstreamed patches - apparmor-yast-cleanup.patch - apparmor-json-support.patch - nameservice-libtirpc.diff - drop obsolete perl modules (YaST no longer needs them) - drop patches that were only needed by the obsolete perl modules: - apparmor-utils-string-split - apparmor-abstractions-no-multiline.diff - drop profiles-sockets-temporary-fix.patch - obsoleted by a fix in apparmor_parser - refresh utils-fix-sorted-save_profiles-regression.diff - add aa-teardown (new script to unload all profiles) - make ExecStop in apparmor.service a no-op (workaround for a systemd restriction, see boo#996520 and boo#853019 for details) - lessopen profile: allow capability dac_read_search and dac_override, allow groff to execute several helpers (boo#1065388)- read_inactive_profile-exactly-once.patch (bsc#1069346) Perform reading of inactive profiles exactly once.- update to AppArmor 2.11.1 - add permissions to several profiles and abstractions (including lp#1650827 and boo#1057900) - several fixes in the aa-* tools (including lp#1689667, lp#1628286, lp#1661766 and boo#1062667) - fix downgrading/converting of 'unix' rules (will be supported in kernel 4.15) to 'network unix' rules in apparmor_parser (boo#1061195) - see http://wiki.apparmor.net/index.php/ReleaseNotes_2_11_1 for upstream changelog - remove upstream(ed) patches - upstream-changes-r3616..3628.diff - upstream-changes-r3629..3648.diff - parser-tests-dbus-duplicated-conditionals.diff - apparmor-fix-podsyntax.patch - sshd-profile-drop-local-include-r3615.diff - refresh apparmor-yast-cleanup.patch - add utils-fix-sorted-save_profiles-regression.diff to fix a regression in displaying the "changed profiles" list in aa-logprof- add nameservice-libtirpc.diff to fix NIS/YP logins (boo#1062244)- profiles-sockets-temporary-fix.patch to cater to nameservices with the new sockets mediation, until unix rules are upstreamed (boo#1061195)- add apparmor-fix-podsyntax.patch from mailing list to fix compilation with perl 5.26- do not require exact X.Y version of "python3" - require also matching python(abi) which is arguably more important- don't rely on implementation details for reload in %post- add JSON support. Required for FATE#323380. (apparmor-yast-cleanup.patch, apparmor-json-support.patch)- add upstream-changes-r3629..3648.diff: - preserve unknown profiles when reloading apparmor.service (CVE-2017-6507, lp#1668892, boo#1029696) - add aa-remove-unknown utility to unload unknown profiles (lp#1668892) - update nvidia abstraction for newer nvidia drivers - don't enforce ordering of dbus rule attributes in utils (lp#1628286) - add --parser, --base and --Include option to aa-easyprof to allow non-standard paths (useful for tests) (lp#1521031) - move initialization code in apparmor.aa to init_aa(). This allows to run all utils tests even if /etc/apparmor.d/ or /sbin/apparmor_parser don't exist. - several improvements in the utils tests - drop upstreamed python3-drop-re-locale.patch - no longer delete/skip some of the utils tests (to allow this, add parser-tests-dbus-duplicated-conditionals.diff) - add var.mount dependeny to apparmor.service (boo#1016259#c34)- Cleanup spec file: - don't use insserv if we afterwards call systemd, this can have bad side effects - remove dead code - remove now obsolete 'distro' checks - Replace init.d script with new wrapper working with systemd- add python3-drop-re-locale.patch: remove deprecated re.LOCALE flag in Python UI as it was dropped from Python 3.6 (lp#1661766)- Fix RPM groups- add upstream-changes-r3616..3628.diff: - update abstractions/base, abstractions/apache2-common and dovecot profiles - merge ask_the_questions() of aa-logprof and aa-mergeprof - pass LDFLAGS when building parser, libapparmor perl bindings and pam_apparmor - adjust deleting the cache in profiles %post to the new cache location - silence errors when deleting the cache (boo#976914)- split libapparmor into separate spec to get rid of build loop involving mariadb, systemd, apparmor, libapr and mariadb again (see the discussion in SR 448871 for details) - libapparmor.spec is based on the AppArmor 2.11 apparmor.spec, but with minimum BuildRequires- update to AppArmor 2.11.0 - apparmor_parser now supports parallel compiles and loads - add full support for dbus, ptrace and signal rules and events to the utils - full rewrite of the file rule handling in the utils - lots of improvements and fixes - see http://wiki.apparmor.net/index.php/ReleaseNotes_2_11 for the detailed changelog - patches: - add sshd-profile-drop-local-include-r3615.diff to fix 'make check' - drop aa-unconfined-fix-netstat-call-2.10r3380.diff, no longer needed - refresh apparmor-abstractions-no-multiline.diff - refresh apparmor-samba-include-permissions-for-shares.diff - spec changes: - aa-unconfined switched to using ss (from iproute2), adjust Recommends: - move libapparmor to /usr/lib*/ - drop %if %suse_version checks for 12.x - change several Obsoletes from %version to < 2.9. Those package names weren't used since years, and 2.9 is still a careful choice - include apparmor.service independent of %suse_version - techdoc.pdf is now shipped in upstream tarball to reduce BuildRequires - drop latex2html, texlive-* and w3m BuildRequires - techdoc.txt and techdoc.html not included, drop them from the package - run most of utils/ make check (some tests expect /etc/apparmor.d/ and /sbin/apparmor_parser to exist, skip them) - BuildRequires python3-pyflakes (utils tests) and dejagnu (libapparmor tests) - drop sed'ing python3 into aa-* shebang (upstreamed) - build binutils - aa-exec is now written in C and lives in /usr/bin/, move it to the apparmor_parser package and create a compability symlink in /usr/sbin/ - aa-exec manpage moved to section 1 - aa-enabled is a small new tool to find out if AppArmor is enabled - package new aa_stack_profile(2) manpage- change /etc/apparmor.d/cache symlink to /var/lib/apparmor/cache/. This is part of the root partition (at least with default partitioning) and should be available earlier than /var/cache/apparmor/ (boo#1015249, boo#980081, bsc#1016259) - add dependency on var-lib.mount to apparmor.service as safety net- update to AppArmor 2.10.2 maintenance release - lots of bugfixes and profile updates (including boo#1000201, boo#1009964, boo#1014463) - see http://wiki.apparmor.net/index.php/ReleaseNotes_2_10_2 for details - add aa-unconfined-fix-netstat-call-2.10r3380.diff to fix a regression in aa-unconfined - drop upstream(ed) patches: - changes-since-2.10.1--r3326..3346.diff - changes-since-2.10.1--r3347..3353.diff - libapparmor-fix-import-path.diff (upstream fix is slightly different) - nscd-var-lib.diff - refresh apparmor-abstractions-no-multiline.diff- add nscd-var-lib.diff to allow /var/lib/nscd/ in the nscd profile and abstractions/nameservice (path changed in latest nscd in Tumbleweed)- add changes-since-2.10.1--r3347..3353.diff with upstream changes and fixes in the 2.10 branch, including - allow writing *.qf files (for disk-based buffering) in syslog-ng profile - add several permissions to the dovecot profiles (deb#835826) - add a missing path in the traceroute profile- add changes-since-2.10.1--r3326..3346.diff with upstream changes and fixes since the 2.10.1 release, including - allow dac_override in winbindd profile (boo#990006#c5) - allow mr for /usr/lib*/ldb/*.so in samba abstractions (needed since Samba 4.4.x, boo#990006) - abstractions/nameservice: also support ConnMan-managed resolv.conf - let aa-genprof ask about profiles in extra dir (again) - fix aa-logprof "add hat" endless loop (lp#1538306) - honor 'chown' file events in logparser.py - ignore log file events with a request mask of 'send' or 'receive' because they are actually network events (lp#1577051, lp#1582374) - accept hostname with dots when parsing logs (lp#1453300 comments #1 and #2) - fix python LibAppArmor import failures with swig > 3.0.8 (boo#987607) (libapparmor-fix-import-path.diff) - refresh apparmor-abstractions-no-multiline.diff - drop upstreamed profiles-ping-inet6-r3449.diff - add %check section - runs libapparmor (including swig bindings), parser and profiles tests - add BuildRequires: perl(Locale::gettext) - needed for parser tests- add profiles-ping-inet6-r3449.diff - latest ping also does IPv6 (boo#980596)- update to AppArmor 2.10.1 (2.10 branch r3326): - fix incorrect output of child profile names (apparmor_parser -N) which caused 'rcapparmor reload' to remove child profiles and hats (lp#1551950) - fix a crash in aa-logprof / logparser.py for change_hat log events (lp#1523297) and log events that look like file events, but aren't (lp#1540562, lp#1525119, lp#1466812) - write unix rules when saving a profile (lp#1522938, boo#954104#c3) - several fixes for variable handling in aa-logprof - map c (create) log events to w instead of a - add python to the "no Px rule" list in logprof.conf - let aa-logprof check for duplicate profiles - let aa-status work without the apparmor.fail python module (boo#971917, lp#1480492) - add permissions in several profiles (including boo#948584, boo#948753, boo#954959, boo#954958, boo#971790, boo#964971, boo#921098, boo#923201 and boo#921098#c15). - and many more fixes, see the full changelog at http://wiki.apparmor.net/index.php/ReleaseNotes_2_10_1 - drop upstream(ed) patches: - fix-initscript-aa_log_end_msg.diff - syslog-ng-profile-boo948584.diff - upstream-profile-updates-r3205-3241.diff - refresh patches: - apparmor-abstractions-no-multiline.diff - apparmor-samba-include-permissions-for-shares.diff - drop libapparmor autogen.sh call (broke the build) and remove libtool BR- add syslog-ng-profile-boo948584.diff - add several permissions needed by latest syslog-ng (boo#948584, boo#948753) - add upstream-profile-updates-r3205-3241.diff with several profile updates: - add /usr/share/locale-bundle/** to abstractions/base - allow dnsmask to use /bin/sh (boo#940749) and /bin/dash - allow dovecot imap to read /run/dovecot/mounts - allow avahi-daemon to write to /run/systemd/notify - allow ntpd to read $PATH directory listings (boo#945592, boo#948752) - update dhclient profile - allow skype to read @{PROC}/@{pid}/net/dev (boo#939568) - and some other small updates - drop upstreamed apparmor-winbindd-r3213.diff (included in the upstream-profile-updates patch)- netstat moved to net-tools-deprecated in Tumbleweed (boo#944904)- add apparmor-winbindd-r3213.diff - add missing k permissions for /etc/samba/smbd.tmp/msg/* in winbindd profile (boo#921098 #c15..19)- add fix-initscript-aa_log_end_msg.diff - fixes ugly initscript output (boo#862170)- update to AppArmor 2.10 (trunk r3205) - profile names can now contain variables - improved profile compile time in apparmor_parser - lots of improvements, refactoring and bugfixes in the aa-* tools - new apis for managing and loading profile caches into the kernel in libapparmor - lots of profile updates - see http://wiki.apparmor.net/index.php/ReleaseNotes_2_10 for the complete changelog with more details - add new apparmor_private.h and the aa_query_label(2), aa_features(3), aa_kernel_interface(3), aa_policy_cache(3), aa_splitcon(3) manpages to libapparmor-devel - drop apparmor-2.5.1-edirectory-profile patch - it's most probably no longer needed (see boo#621394 for details) - drop upstreamed samba-4.2-profiles.diff - refresh apparmor-samba-include-permissions-for-shares.diff- systemd-rpm-macros and %systemd_requires were at the wrong place, move them to the parser package (boo#931792)- update to AppArmor 2.9.2 (2.9 branch r2911) - lots of bugfixes in the parser and the aa-* tools (including boo#918787) - update dovecot and dnsmasq profiles and several abstractions (including boo#911001) - see http://wiki.apparmor.net/index.php/ReleaseNotes_2_9_2 for the full changelog - remove upstream(ed) patches apparmor-changes-since-2.9.1.diff and apparmor-fix-stl-ostream.diff - replace GPG key with new AppArmor GPG signing key, see https://launchpad.net/apparmor/+announcement/13404- make sure %service_del_postun doesn't call systemctl try-restart (boo#853019, bare systemd edition) - add samba-4.2-profiles.diff: update samba (winbindd and nmb) profiles for samba 4.2 (boo#921098, boo#923201)- only install apparmor.service for openSUSE > 13.2- Add a native systemd unit which *at the moment* only wraps/masks the early boot script.- add apparmor-fix-stl-ostream.diff which fixes odd uses of std::ostream which are not valid. Fixes build with GCC 5- allow lessopen.sh to run /usr/bin/unzip-plain (boo#906858)- add Requires: python3 to python3-apparmor package - readline isn't part of python3-base (boo#917577)- add apparmor-changes-since-2.9.1.diff with upstream fixes since the 2.9.1 release - update logparser.py to support changed syslog format (lp#1399027) - update usr.sbin.dovecot and usr.lib.dovecot.imap{, -login} profiles (lp#1296667) - update the mysqld profile - fix network rule description in apparmor.d(5) manpage - drop upstreamed dnsmasq-profile-fixes.patch - update expired GPG key- update to AppArmor 2.9.1 (2.9 branch r2831) - fix log parsing for 3.16 kernels and syslog-style logs (boo#905368) - several fixes and performance improvements in the aa-* utils - profile updates for dnsmasq (boo#907870), nscd (boo#904620#c14 and bnc#908856), useradd, sendmail, man and passwd - see http://wiki.apparmor.net/index.php/ReleaseNotes_2_9_1 for full release notes - refresh dnsmasq-profile-fixes.patch- Fix dnsmasq profile to allow executing bash to run the --dhcp-script argument. Also fixed /usr/lib -> /usr/{lib,lib64} to get libvirt leasehealper script to run even on x86_64. dnsmasq-profile-fixes.patch. boo#911001- rename lessopen.sh profile file to usr.bin.lessopen.sh to match the script filename- add apparmor-lessopen-profile.patch: /usr/bin/lessopen.sh needs confinement. bnc#906858- delete cache in apparmor-profiles %post (workaround for bnc#904620#c8 / lp#1392042)- No longer perform gpg validation; osc source_validator does it implicit: + Drop gpg-offline BuildRequires. + No longer execute gpg_verify.- fix bashism in post script- update to AppArmor 2.9.0 (r2759) - change aa-mergeprof to the final commandline syntax - lots of bugfixes in the aa-* tools (bnc#900163, lp#1328707 and several bugs without a formal bugreport) - small additions to gnome, freedesktop.org, ubuntu-browsers.d/java and user-mail abstractions - fix mod_apparmor to not break basic auth - update perl modules to support signal, unix and ptrace rules (bnc#900013) - don't warn about rules not supported by the kernel - fix logging of "audit capability" (lp#1378091) - add support for the "hat" keyword in apparmor.vim - build html version of apparmor.vim manpage again (lp#1366572) - see also http://wiki.apparmor.net/index.php/ReleaseNotes_2_9_0 - update apparmor-abstractions-no-multiline.diff - remove upstreamed apparmor-profiles-ntpd-pid-location.diffh01-ch4d 1694064909  !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTU3.0.4-150400.5.9.13.0.4-150400.5.9.1 apparmorapparmor-3.0.4-py3.6.egg-infoPKG-INFOSOURCES.txtdependency_links.txttop_level.txt__init__.py__pycache____init__.cpython-36.pycaa.cpython-36.pycaare.cpython-36.pyccleanprofile.cpython-36.pyccommon.cpython-36.pycconfig.cpython-36.pyceasyprof.cpython-36.pycfail.cpython-36.pyclogparser.cpython-36.pycnotify.cpython-36.pycprofile_list.cpython-36.pycprofile_storage.cpython-36.pycregex.cpython-36.pycrules.cpython-36.pycsandbox.cpython-36.pycseverity.cpython-36.pyctools.cpython-36.pyctranslations.cpython-36.pycui.cpython-36.pycaa.pyaare.pycleanprofile.pycommon.pyconfig.pyeasyprof.pyfail.pylogparser.pynotify.pyprofile_list.pyprofile_storage.pyregex.pyrule__init__.py__pycache____init__.cpython-36.pycabi.cpython-36.pycalias.cpython-36.pyccapability.cpython-36.pycchange_profile.cpython-36.pycdbus.cpython-36.pycfile.cpython-36.pycinclude.cpython-36.pycnetwork.cpython-36.pycptrace.cpython-36.pycrlimit.cpython-36.pycsignal.cpython-36.pycvariable.cpython-36.pycabi.pyalias.pycapability.pychange_profile.pydbus.pyfile.pyinclude.pynetwork.pyptrace.pyrlimit.pysignal.pyvariable.pyrules.pysandbox.pyseverity.pytools.pytranslations.pyui.pyLibAppArmorLibAppArmor-3.0.4-py3.6.egg-infoPKG-INFOSOURCES.txtdependency_links.txttop_level.txtLibAppArmor.py_LibAppArmor.cpython-36m-x86_64-linux-gnu.so__init__.py__pycache__LibAppArmor.cpython-36.pyc__init__.cpython-36.pyc/usr/lib/python3.6/site-packages//usr/lib/python3.6/site-packages/apparmor-3.0.4-py3.6.egg-info//usr/lib/python3.6/site-packages/apparmor//usr/lib/python3.6/site-packages/apparmor/__pycache__//usr/lib/python3.6/site-packages/apparmor/rule//usr/lib/python3.6/site-packages/apparmor/rule/__pycache__//usr/lib64/python3.6/site-packages//usr/lib64/python3.6/site-packages/LibAppArmor-3.0.4-py3.6.egg-info//usr/lib64/python3.6/site-packages/LibAppArmor//usr/lib64/python3.6/site-packages/LibAppArmor/__pycache__/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:30575/SUSE_SLE-15-SP4_Update/509e71de7e3059801e8af2f2d82e38e6-apparmor.SUSE_SLE-15-SP4_Updatedrpmxz5x86_64-suse-linuxdirectoryASCII textpython 3.6 byte-compiledPython script, ASCII text executable, with very long linesPython script, ASCII text executablePython script, UTF-8 Unicode text executablea /usr/bin/python3 script, UTF-8 Unicode text executableELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=344ef28ac1645276be8b658523737b9c74bcc413, stripped  !"#$%&'()*+,-./0123456789:;<=>?@ASTURRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRR R R R RRRRRRRRR RRRRRRR%Y/'ގutf-8d5b06eed0fb6d5cca56a4466137c804b1f61c5881a8c3f06a09f21112c9b57b9? 7zXZ !t/2]"k%%) `=l.Xt`-MůC\_J0.wSS5E\÷J>NI,z@Jal*᳓APp%Wu ً?.F{~ f 3=UK 6o$ L),m ? APu\KٕF &Onl8C->osPyn'\Sפ<ǦAY6~M?@0T'Yg&|5y.QI&z'},[ F;;d*{wJ4S]_h,iK.pcn%UbB`0]Xn3lAƻ$ZFFS4.JG&+V ?]ie#1&L7/~z:"hSΓ)RC_Z#:<ɞ*oQ庛zx{+_)l8.08Wiv~uѸ՘Ԑ9,X`a&*c3kWbq mP,J, ]aEm3{z#rnts7$"1L#>|0+<`< >38K|ys:4Rr)*h eW6Not.}ഏh~O-g4*)&aځ& ot{'i{J:/8ie=}#:C(j؎F^wZcپnY=GaodIVYYuu~=<UF@nnbzo;Ey w?mkA~d:b@~25xoDs=|"nF@n1rF>HnYAG6l(W* oP]RԔq{yz؂.V֔Y]3ty0pyZ&u61 cic+zla,5] 0=c0YP"t .ʨK׏5=*Yñ&D,9U 3/9?m-$c\#0K(.E0 cYzm03v&~:Ž: +n ZbFq0E>TIeR2n]VZo{uRB3|i3Gɾ_ɇ)[+_X9ʇ&2~$ORaP!nfĠdOC!tw3>* Z9fB] gm_|a*+V%!6/ jWΑ%uVg< 2p,B\|I(\HDm~(퍡NIe@jQ- _Ս[%X G2(U]#b[cƬ^j*[q-՗nۿVn%Lphl+BSÍh*'!Tw (pQPj{,HOծڸb[٣F:`R}O):YS!ã2s3*"Bq;/F4$ jP!bgx!%fב4~4m Fa}%Z}J^2~ 2D6,­egױ)_iˁS,Ql Nf>yEuAqh@ˉ&,FGHCN7=3]xLxI#x rt7'0h:VBZzx%g/ D|5߷ZxDUbJYVdRa#&_OFB6Ke͍/ 4xdz﷖s%L9sUÓY]sD=|=335rw1D#P1|lX_?tS4ʱNG˔S% l~$s'%LPos^U z*-(DlJc҅}&B41},C>ZO[/G`LAטz{9{~h>ZL"ۤ'Y|N=Kz3fAt!iVt!9!6/QfLGY9yN{ۡ~KL:{ [X2kXx?sgZ"sX}W+gM sa*P<30 [yL(4-36N(pgΧ%Q]9cBev%l&RVd-A[9E#|]CӢt"e~+ckI! ߧ.8D",4F$zn"6K?Bl+&q@. 9CB1A{ :q W05\e(3g>0kFZ@3;z/51.C#DvGUȵdMI WIힴ;d._F0|U]gƗ7k hsp gt1<-B'q߂E3B Ks-qi;JP0kW`)j~ż5I@]4\-6x8bf[2K iSD4=̱=9ѠHfĻK[V, ޤi(U.gE4Ϻj],aB~DҌRxgW3un;%}74&!: jP7ޝ\i-7E+.-cyߗ& MortV#9 m d{l^Ghߒ:s*HZ_b- xGQ39d:AƞYtϔSzum1falk{vNhBdT:[am[nIw~okyfԑ$z*5[tCf3(`y &쑫zG?p)/S4߆Bء`?*Akx O'$Aξ0#(Ok%u9F| -G""F$%b g0A;^ Ax\a4Ba5!HO\*RUqOp&/PS}η%|ޡ6L4T?|+c$aِF(MzwKbƠ eqN{J觓L0bwIs81ZߣL_`"@ ߛqV9*T|f}D:Ό-BbH8rj_GBzL/TYnd"D6.Wi\P"8niItT;ZL@9ݯ_ެ|e48-Qu1j|5:bT(TyЎd FYA",& cӷgo >d$%VFEA*ƞ,`/=T:KѲpѼXHu$cA=_|P(Uцo0 0=\i_6 NZ_,hR3@\aec+@l,^4Z`W>4i1ޒ!Zx[P ޴Uי[2P^dJ-菸a @rbU]P5+03luc1Z_t"rnQB]K_\OO<-WƲKA؈ߚbÚ/>Qm9Z1G"Q/G$ORMYVCzy1S#͑ލr*^ 8\iq4PTY.n?q9FǖQ`5j=s_K;j9K(ӆpzuݒF`yuc7k5uM18뵯ޥ½'InX5J͋|?,&1CכXَ'ܣ3 Pq(u2QUvgR4$~edc!/ԡ}2^ y0xZ2TC:?w_{>P4N%%!aAF]3?mر@RU >Q] /+qwlEu(b/ǹFi>5bH^2끶x7+ e{:&ۇke c|{rps^Zp.H*?̜⯍6- Vq55.!R' D< Hngv j&=w䜭3Ђ) 5z{z* VBnX)(iI!6vM:7,mɔhn`M H[P~<ʈOcz$aQhE+*|ho7'I@v֒\2>-9l( Mך\XE`v8 RJclen8Qt,6IIHc{$R"aA~7:.shk)5 А vXy$!%+Hy>) ȯHL | C*}<BǨxυ縓:#MUόߡ(+A|>υt2 3x,Z\,!R< ShBn,.MGPBNBJ'ަWAe}rQ&gHq霦~7[38Sv>m3jBjOT8>!h֐ף:VQޘ9< cWwYAs "\= pM*r+d0*F 9p z!IA쁅Qj'j5p (l4*AY w?`7S莤*#W %l&W\@af~*r]-8Ȃv#+d~uM'jK6 1Pq9Z[Hfq2~B tlHjTs`++K’/9ST~#) iE=DԠ Zw ,̦)[)H뚠Lf9%?v%ژjl@p@"eRNTv]IQ@/f!#t`̄@?zʐ`KT OMext(V ƺj 67!H& `#O0m_ y;{f8`&cA2^~rd||X)^TPk(󵘣t?nޗr p'$!+n=7)y\<* faof1vzQv|  =΅' Dd'hGޕW8qx!~Ln$1hXviTsAMtyM3m"9N(y.0na"Ͽ5lS4U?( { Z ]RqK7*{2vW:m+ZBXtAً5:\y~uuĭ]#`(^$.bc>Tn+v}l#NʏU {~yr iվ2 <֋zz[E.D>2iXPMn%77j%ynY.hjXv=^<.CY/hќMDi"i ~&lb\Jk7ah/ѶrkEO^v{7vzov!KjI/IGٶYjv mbKE1}k$j0;K 6m_-I\ژ>嫈XU]*F@[o {Ng8!9g>콑MrχAȬ)i5,~_zӝ>'0:#. .}G_?> a&iFbN_<m';YE~luE7Epw7~pߜSba'bX ^"sWLڧJf6&=fw8Үm w99옂 x{g RK?O|:bGd7^8 lTru CL d##WVi{flCp0WR#@)8 sP!tf%kj. mjeF(c9RԦXp9SŠsJ VXDdb[,윔u!yG-;wz!y6ؿkgajB$Ex۵YnVXe߉%o@EW<88ы <W&\w6 z v ݺ$`Jz¦dE kC{hz-)^N=fs 烬U7aE:ÊgQ*!#~jh$ &X,]W .ujG4N,-d/G4[3Yp VB(@̯4 ku+/ -聃ꠝ, *5 փ6`T n9."aU3ޗ61l91rK>*Rvj֖0br*n 9 w2I/QJ WP/0Xl|)IwL&;onk11tۺ6VǶ7<2Ñjj"$aO"r- W"`DX0 ^p^]f6s#連K7V!jo@`C/Md_idiLZ!xeLࢹqm8z=0CɱrZ<{'ȣ UDSkϳT7"nZCAeZ;ܠ VBlZY0 5p9bCZ_.I [\Ok F)Swɭo&QS(x ,"+: QS&_-~B?΅YRe z tt15(͕9(FˑX)([זG~b>\5nJ ty%eFŊDWjm4e Q"J4< }"@B#9qsQ=AחސP5tյ:i)Sg>ή0}Q "+sf:c\~6 ՜hH9&D<4.G>%hǑiN1:gG,Kf\KUm$AEQht&_Y?$$\$,.8~J,d5= _N##b ܚ(d:lj^r coڥUO:)x5HnXS5GlP55-y[#4A}u 6,Y>:ug1USMρ/e}޺3#Ucc D-_7HБ٣q[QArXZ/<Ldmk+2ťP,ȉ)F̟k+h3}`?7!\)p$C7zeK&hr< nf(>B>Rb28p; *(#-ev- 'I+NcĆ^;`y<: ͩWyÞ] h(#us8"\ԩ:MLQ*|57ⓅF Ix9vΨX*~ >Ȋ s_:Ū_Z]͌(%u{,?cZzHH*TdO0TCϹ%ɫeeV)v$::#Yȩm1K9 -r9o?3Kg/P"x|{D\0+^TGbB8v 9s#cKċjKNWA1AvGXmY2 /hLh?p U/x+ď~NE0R*I7;M$*&`,=7)݆QuE5PDJi}N^>^.繁<2hڴa+c\M{#n<9( gv^C&)xQؘ{0)x[f9c2B}2f28{rW:Zx_e[6B.i)<C !SR/b 1P@0fe>ZEyilbDZ&f}uve(ep| s!R{Nitvi&Ys/sO0i\VjPie,XnyAoC9!GH—yJJR#w-;q=no4SAn;;̼d֯🺧n/: xB{~(CHS6b{e4VFdm ]퓤]ġAཷ{a]l`R"v f S"=]H}m߿UhK=S5*sd5$+_/9:yyXX E̶H4!2w9*~ܘ@y@Hs9n̶bpW}ᠿȭ " hF8Zݵldjں$:FUK=3̡61~71zrZ %h떮=hN“QϪ73E:c}~w%|̓Vs1sK}DTˍ>/SNkO=ztVV7>ju_[XPz"wqFPu=ѲSKn<}uwJ=,5v9_l_'bNnnL )/ml~ >4{ { L;W[lT5ujg xA H 5-L#GRTԖme#/*`qx5xݲ$MYxKDT<Ž#1RQ}DfbӢ ܊,,[{ d/oCu;O쯣\$mD0gCNE$ 1qu\6 Ev pa[*)znaHh63[0rH>UVRQU8$ 0 >.86Ğc0{(yFBރ4w-5룗Lk:[l:0-"pN,0#̪ٱkIѥQH}Qe?`jP`ItVKP~&LWJbrRboa I}D"r;evڒ kU ]r$)\)/)O`,EA]gB5ҼVLЌ{Vdц@L~F&="MR|489e1O }%5?'+u4C(>ol%оrܭg 9]S&PŃ]e٢`\G!8͞(Һ=!3UߚtJ8~f_\\N|м[J_ &O{.Hn|1'-CKϑ&j׌CD )sJC54{vqp_Vܸ5 iDmpi߷-Zkdzbw{"c(r.7X\^6NAl@E +0GHE)CF&rԱ.8;"3 V15cG#Ts9к<:}ZJoK.dQ Im>dȴ |x\3fΔE%kȾo2qRB[Ա!LSSݣpt,lSnQΜKNiv)o5o~'a wD F=DncL\YvD# ѝrjaߺ.)@'zn 3^Htf]퐅\ 1ϐᄞ eM+Esy7-}0r/} E[4QCcHM(fRt%^v>Xh,23K(l8.*$e ϟNFPlY-b-2W~P#s>>q6גzUkODfqrL.Gn_w:>ddVʕsȺ\ضʷ"qš~ %N:c_2;QCe6[7S/xF.3wܘ.,R 6gw,2Df5%e5i0*KϳL*.|s[(.qjaAM(Ue˩Hb#3Yi z+ή&?f'w:j*f[&}GUuc+UjE6tzǙ8Ne$ rl%s ,pT 93^4Yot U(j 03,DnI$AlV~/̤^eU:u ~|3jK]B-ŎO8ZRn}"w@G{Gv'p`jc{XRj&v$R⪷謈ZGi' +N!6;8vFKhYt ĺQPƼaZg M,(* Jf/}*erK.~Hюw9^NPDx?g+9C7iR;_' BNګx|7@b+c$+Vb\_&ز3s{v '"J\YUH_ j990`Oƨ|P'/g8@3n"lU+9X7*u5dpK<>dS^7Ioh HL/l$JQ`_x9+J{$h!GI057[e_! )NEcI Y> $#A/ П7Jp ֶF&j9aPHo.( LR 1~|9{ beЀon3;5YiZ%*؊^8;ƩO\P)B&u\X0g."Eo -i粒_UFWC vrDLq<ƒ!n&S|pZw%B A^:tK@v/-YR ztvwpZhUIrt F/^>\F#Jwj_ʱu5hdGIy fV{#a^,e.JRVFQچKg!H$ \ =+BNf^ gjR1+`iߕ KKҒ{0(^hloZn vs™yX1Tʑv}NdRJLEsyd W<{Mi(;^ >}1= ͩɎF`L3o*粯J0BAƈ d~ɿCRkM?"ucyvlA*OƋ3п|Q2wI~[H04Iyikcw) w;d>S ٝ>*_TZQ&˷tu^* >ozc_5@й;2atU@3֊adq®'h9F ve{ec:1 I}wh[o8;C~wӃ7 5О2fwk4, X @?; )D(=j{)-Jc4( {fL9|qQ: (JHxFBvX{gI# ɻY:^3M^+WD#N]j̑`QvJ#vt&Ԓ>+.\;So0{3DZ>QDr0KP 4Ȟv ߓyL/n_H#x}G՞.,PI*ku5vbT!̨U]OIc-wyN?)կD*3,*'|^xș Ҷw4thL4 o _~JYBM0eRv U#z=0d~X}ϩ&z2]Ml*iM%kړxV9V83E*v(<l(4U'F!Xꔌ !W>[1TZ͌Oy #}{_@%baYk=A/`7S?Xeue'ao֭-+',qIK7 IVW(݄3ޞd.ЇuE0;x&B}֙2Bgikys>D~`A=mTFJ]>7&^UIrݼauSTgl͚8UϟZ`o0jC] ⵡUA Z>$);m̟G]8"+ hc̲?b@pgFODcrv٥iTtݷ;OP1JSLGl8F1"~w' iT2J:(ɄVf?Н #̑O,M ([w ybsڬes1S:G'K|eɮsfh/=v۷\ZQuX .f6L>j~/V$EǜUɶ=g|z'L<{Ƞ/]gnƧg) ƿ8gMdl-$(6>(@J,uFʛvCQC0 8~u&h`ipA'cwp:c^(`|ZMtW֋Qc*Yp($84COa}n8{b]F/B`c[TAPJܹnW7k_ь Nģi||y-`\ eTI:ҪC.!e-$TGװ84 HL#]0~f=fztw08?j?nf!LbrHh<{cVk u.lBN%d/s|Hu,^yXcGUF_'@E/IŅ8(buX^ OK+hj|ZFQB}|տvdiPuniIFyNS;Krb3 kY7XkcJlT1-(s7m !!% 'AEDCr9d5~d iCN^'D83dzY)GJBBSC|c}}5xzjLq]H+M PmESܑeh@>u$bv9̜5jkƢOM 7۫'n*?$ކ $j[iW?y'яe\&YD ,d;5nA&ýʓկ<Wւ6I.A:tLLfaƪf;qZW 3u`k2kN41xBv?{ac+6%EnfuX0TR,X'Oo~wя`2໒)&H TqkXGĶ_4GKV|V ɖk#cSj{ ?c<ѯhm5c=t%#:?=@Yzۧ~'99FَLzr,oG>`{@@MZ jZEXK9;:f߄^??K|.uVr|4V1S$xRt/w95Pd1}fK/=#EGTcHN 2.?TA I>إ`╖̀OְΗ0z/t" ǦWHdu c$/aUoIbBO?Р[,POEk/KnlWro|t6X Ғw`6g89zۤGyɊ?lINPU=5%VH砱>T7|T:DRd\K2d^P)YGp^@=P\\5I8{77RR'dN! Jil~ bZkq* ,_Lֽl@*@ e ̴9.h|fgVz'feV\8!>)y $EѻT G(HlhV)Sby mx;x(&NkiJRNHR3AĻl8o\>flfk:!Vu^ԧ*PDW՛լ\"U=$v%d߆/ljStQJ h'՞hFzEwh c\cML+ז!TP[cmIWIuV5-ПeIYLViFY>O(5 \@7 \a9@i5frMu)eCBI]/ P2@NMUЭEl.Fp #]ǠXO*ӛ8lB j"dh^6m~(mؖ?I|tgމf/O"֝^jUt V&M IFsZW 6"u]ou𹳮wl-W ܹ0uEXAAJ wءj)WHoRSQ˼jrÈL_#լi'ܢ~S\Ye4`USPH!i[r]nӉSS, tv3hk*N13Hn-V4j}nt%uvKV H_lvM*U}>YC5$i少ǚ}bs^˧sOmTP P(gbQ6@68㩔#c.欿}*\°}r 1Pt,'M2"L|if6Ч8 E?^jʫZ6J^91Lkeaˆ '>FIg[9_*Υ{#O$t`U3 My) xfFUqkk}(0l^]1uy8H`&8K@d%vAȱ5wz\Φ I!Vh9u"OyJeΦuWtOf4AʢBɚW51'fs*q=NRG딉=8Mf3rhnJBfĉZz 3z0M]mh }?BU/G[B #X$7#vi2,Ң#dTH]k$ām(3k_}kcB1ή |&8x=j(eIGm?n $">-t5H$}ܜv)k bO{2l5oi_rf/]/ k WS&";*x$kYrMd0'ԶsHoa&l)|;lޛ4TVw٣9Ɵ41wjπxU^7dJr} L~sh[Gx)E/ O}Kс W#*c^0o /a2e*M;JՖ!ЛT׭4dV1jGB&A &+3,T1)הϥ?O^p}4AĖs }}}.U> rF cSJ4y.C?N < =ͳߖL>T?lu V8H/ @%:E={N(:}judǫ`'WT?U=9&qG<U/y\λ<n.-&m| ܬȴqӁF/$#¢LuM˭m"aFK3@[W{CɣpNQ(ⶓ1Y7<$q(_%9i3e"k(_߰StHmSLDp`ڵK.赪$-1JfE~:$ rґx-o/nk1wZm.LTpN^ 62E*\fV6 N,acv9R9w$Z @ۊFE^( wXEJ(>]W-l&~z͖297>Org+^(:]7YoR吆Q3fi/qNwTEAjhWR@.b:_-yk|Gh;<9)p-|;"J1]QlS%EW=ma˖fhV#<b=Gd ǭJnԥJ(e-92~CiͦU yfFdsf PUαTE\NL Amgz2d6IJ *4[F1<b85h*=喀 ޶7mے(8Cg`DQ[*FǦ[(^:nQ LEO4אRՌ8_طΦoz~[vM¥&< [e溻ïHP "8+q!\RaW>[eY@Qr WΒÿ{&M}K?Bm_ 4 -)hRcY ! 75衊~2` ч h #v`t"d׏÷8V. \͂.螰/ckgNm/R8*6F;ӱzrm҆ajSㆂ¾<V#I@G=lUARA21j5޳`xvTD-E5I00li(d@bgJ P"h4x*,˵fg;Tfk(QDHEo*/P>ͨрzc_b+EL3]v 56J1irJJ8䴼z"15!\Ho볊 K;Z垦"RciG`Xl7܇_Z* t' Km"e5 S|.lv'RU3/K~Pz*GO\ x/{>^h7U3Dc@@Uy0_`khjl c6Whn_s`!cV_*g'@DؓS"9d+]`H3i[-6+]b60/0W:#ޝ)UxIpQi2T2d)Br?wwZ9:Xm9=# Ꜯɰi6;AҔח~M.g>#U,\+zON= ATTL󼷾]wY 2? -u$ xǘLObgn,'\3~匸阆/EOL([ 'sHu %0;]˴DKmwd80~̜Xy̾J]zTUhԻzGp׆s[=@$!>Fa4w:_=pS"[ϕFN&ti6 <+R890ud7YaGS\ dߵ+*;kڌ|']z"KܲE29QSgĬ仳PimB҄G}5Pk| eFfa:l-u6in._`ҘLJE;$y&C2 m"$jIz:t 0QկхLF$&uL!{_~p>R7Aos;,6,U0;qo.L"A\)k]kv?@RX3J1J#Oip&I8sf-4Jܻ0nEq(+u6"j FrlZ^'ܿ.?h8'eN3 Kb UÉ+raK =5,bc-hUX7LFlX?[T5;=8 HxhBRcoO2^'SޙG^:r8Yh6i^ &PyoW;_S3DRX^dYZ2(P/H&뵔_ ucvKa^AB8'vr;s'O$EzBD$G/JL!k^7H( O Qbqn˗R1'Oڽzd5t͟+铟4۶&sd]c,,ǪDA[8u ILwc&BFYJP P4Ҷ}Ʊzִscb(͈$L0x%-l9:@&LH  Y-wD$yClϸd`ޅ1*jԠLEC:C~﨓 i%OyvH'VtO-3%-?gTBt$#)Mdkjnؗ]n!OJm8t 8wJAsV)kX/ۮgFC  a@'=Z]\Κ?{\}p_-Г:3Gb=>-"V|¸!޼L .q*!^孖W€pOg4 L@ܼe>'xhنL1nFwWkU}0ɀ'2KQ -INSEyĈM~e@~HEtpn鶅_()..%1]"v]PbF6(gj'+8XMjHzr"^W@:5/n!ľi Q,F+}QG~Wz+I>71;gmyDs~ְ&ew*wyY|,jA?Iui(]Olݧt Ku7N :[4tU%?p TÈ[۾Y`_m)q_ tg^7 d˛G[I [:(/#(50V`c[gA|aVt̫lnyoR{Jx47zZyGXOɦ " @I0Y @kGM$ _g*G.KPnW>/[i>\vG xhlsPqɝ+Z-1UO "MW&Q fp+PYxT|sQ\;-+̡ne ²joa&Ly/{JDн4iItK' L`%Cdlb!%㰏k׬h:/Z?pz@ ׋oq(|#in͔}t! R< iU ē؛Ǒ;hY$.F;I< R:^7:/?a>..r[6uK ʘHHt ͌/!֝\+MCE0S"%cKY!eȔȳp\qkxuGzDq)㜓(q4e1M9A0Tk[,Ve(qzI0AaEl", aq!, SAAK]ތlQ-vbt83uG` C QH-I\VC-I7*R,W_$^$S.l/oxwNa#Ͳ{|~"TaD8|bϔ,T!˲!x_YK,%t˱hIJG;Eݝp@IsqM Ix [Jax{|8ՔO991\uj:,M hw3eN}KhXڐ<>zΡ;_Q" cH;%,/9A< @0b'\wa1 tz-H]NW9+uD(Ix%x7AxZb#Lb)R N.?(t3/-sCP.P8N2Xjʖ"Jt=USc#%~SV 5w\Ev?,m<1 $0'O&|C@%Sy1~B͑oi%`Gil b"LB 'H.nM qY [c@UnjZd4&m[i+.?4dcTRgّCM XE=(˪a%!|ml=GU7]kLc3w!^ICJ͊"ږ3.Qc51Hʒ::gG)כ8xzbYO%^q(=4^ |;oqN OJ^ʲJ?+ĺ_0qkEbC+BHYY&WP z-D!$%l1Πu~ӧIzaΡl+v M70>[既/zGsŊ`oOlt:f`/XL L#k5dEiakMEiy2'B_2&#ެ̍4$.C b[8bx;(SV=;WRƼpٰ`g2t l<]nQGa)}_L:$vA~D.dLLR'\|:-H]5P)A3:)߷ Te@fOUڻ>qs85=Q2)YI)Q3xl37D 5KH|m}z HܩqJg\9zdz#Àc8 Gz-_+E6hRy!ySu0nОL։0֩ o¬VU8Tώ8,| QMQ[4vtPY xjR *Z'MHT{6:!T sw9)SLB7!k E߻PSvkޮ&\p:E*+เ"2=>ot~"Qj?l#s{:Iw;01σWPvEא>G|ZD̕FhAx'x^͝+L9Q3bQɂ3q4Dmx 0k2'58*(=LgN O UxpաىhWS,)XHt!2>F1Ƅ,7!*2n74nL@pحQ#; GAf O߇okR2-AaE~v"S_?!.'BӗW?Uoz5P`kzo#]MM.Ys'MǾX72v OOTE8恡Myw>n>pm9T=xaUZ{`ewR阸 zImm>R49<@?-ϗIj% n|x,_}K]m0t[n  0l~IOW$25c[Β N jG\xG?Y 6dU4jk:9x}uny| -*BlM%4`r|RZϹ܍wmMsqcD/͒+Sa2$jY#n v׼`䰂U-!ތFC^2"~:w2>_3ܵp@Ź0Nye/ $" _r}Njq O`ʪ }lYfsv7Mi0!/JCzGAAa +fȽ?6QhE)$4Z)J#kFU9Hgϰ%@T_^0Ͱ縄άk:[|(nwzf\q9]g@'թyB~/5.' )0]1s&#y6hfk!V^l RY7.j2(6iES_ A.-"6%$'/ ࠷3tR\\CNōn y{BIɣiq|dҩfMjnƞ~V~FlZͬH~Vam[lCSn$E)=X=m֤DX#_o]`+9|NT|L'9Z[h.yІPϋ,TCL ZOnyw:~Ml184p,;T?Un\z&Ae,8!LKD9v} Ę?ҠHݯGct:p4v\Hͧ5`\-W N&%tS!"qTmYb!Lr@w/=@0}XRZ?xZM\rW7[8B,bLP~\:FU ktd`qY):I@kLR~\bBT'G s}# ds)6~UK a!JuZʀrqYspl\>@1ōurrn hO3٣'&b]E)vCهҍEe|.ܫ}9eCdM2NgDDbm\LmM*+%=fCԆk307LsʘPCw71a81 z v,9yZ2%ӷnk2UDq=Tilk+! sF}-? >MB!bKXM\4%<+lt%3W)*C$ryL,:R.z Z䴯)W ^$y/JcU9VxsuW#/ Ю]90bYY`}'"3 㯬/c90TqP/߄d"p3Q OxNF8~\;TWe4B:%A |`~H%i&J$oFKެ0μ'?4tcʡIˌx˺Xi\q0k";pei NK1H07Сُ?cKpxt0w&MoY1= E/x` [7N; vQݞq4oS%k %'4d uʀ-h}t%vsD<R'%GW=E m{5)$-׶;6J@pĉؽV9]zN"_SH~Sr("H;YCBx>ímwoޱ|z,20m(FZ@0.+%z<+6'@Sv 6g~ok1ԝp汕Qx "C {iU)$Fч xqLb\ @jn $f3 ^a: bu ]"aaDNVҾW-QЉ|n/tq_TE<5yQebk9Wh>;|LSU#$`)1S( >8/ ojhRT|HO=µ4hy\-V$*8J`m8okli[St^u=1܊q8Zb q -9p;!I+GgNK4ȣj+]KEB9¸ r83~yӟ܎XP֜X;$͂t.:REQH}]޵K& ;99O #A\H|Ǟ`E.ci)UPG}\CB3+#Dg5= ),%H+;n*]JЧVvDRUhw1%z.Uj¦A+1ShÂ`WKJc{,&ӺۤWR% P#6S9F/nvԾv9^{C1_y=aYӝBFC =oVz><BnA0N_kNb5׶|XBi:ȘWQ0!v;AHQ5đ5P %O6q4hqw.fO7?&Yg%͙0w5+]ZT_m'_[p5q)` 5^i_lv`-ĥJ? 1@@d) uhŖ.N ]vw;?ƞe!4)s2gwd鎣mMX(+1HY|qQ"Tv8`yBvl.ܴ1H 6zBA|[ön<Ƭ]3a,?x8;ӓm=W{_Rhc7 n™5Ż2x+[(33?P4HU|> |=E\Ai9C15Uxzfk_ofםYi$xjĬ`TGj;:ǎ/e:v!K`[^u[ĩr#"(VD\fj_ l+# c Eo, MD~idT-e%NpieVa%r݂hvip2}/T!/`Q|4-9cߔWgZ&^/DQjzl% [SY,@$ʘ'on?"KTYV& :kG4-_!י&yB)h~e |QSqnv=,VB0^mMeލ*Pq Bh. D͸{gչ"+IUsڪ@q}aA9>0Fz VN()wZ 3*C95-mM2RP rzNXx1>5SlDe>e%9M`364ȗ˾44á|bKt?-BYoۄ.%؋Ĉi%_ɑE.ψ0Zs*޲P@kW)Z%zk @ֽm|@Nyt|Ytd޹^48uKKzϪTlp-b(}1٢יb!^)=PQ=-b-1]7f$ri7%NIm/AGYc-uvzxva0N0.:-BONl,.2UEo&[} 7G6w2"w0vj&(yFIN^.-Km݊Jako0}C>X]F1viÅ+b.2,U^kTXMꍔN4cҢ񇿮KY헏dolE):A-28/k xzʩda^SGyp ^HX.W'꿫\+Nu.Sk-xxGEᕱ|pnE]=#rjY}XU%ڜPnEgy}kkcZ@}\`1CUǚ]JCbI~sӿqv1uCX6EtA<[\Ol? `-K'̀{?IB t+&L+h:>t!P'NaӫevgS<=vH+8 )ЯsD_OX@Nqv7O ;a/1#7RHerΝضYkE~QM<&ldlze%}Kkc/фAtnT&ّ(HF@ =/ ̻QRRs%tvl>B'sc}榇I=3PiCfj(J:2.[ɬh??j)Wgk(N֋FaR+~T8eQݗCjYZ0aX %7Wqi]c֡sQ$ĥ+03sZiPAժ3㝄cV&)~ ݸrc$ȕtmkM2*Q*”>[83/{%u&;~rM 7ftn9Vc2s/whȮxXo-a)Sfo[.}{=co]Wfʄ 9Iv[ sL)T^d)Q/;ru As-FޜF1)a>7i)L %G;k5]twRlNQREt}oW G_΍%'!Mun5,d\5[yS@vr*f\F\3^R ovwX%k;Q滆JzINd]9$}J5pЗ%"\G'o@u37-ҝAOkS7 Uy}א4$dH3Ho f/eIB'hxVguA!@-C% L8{b=Sg_ܖU˱ćKeY ӳ:zl )5dVFkhAĽC!MЦʝ_4r QYc&|4c=`sNm,S  L#NO r=ILTe~: 5C$P=עm>i)߇0ݘDT `<4E Y7&it:SF~fl;p8vR CGxjln#xHb-JH43{dօ,ڂp8G!QFo #m6o %`#dKFJRyQjN9\aheb s$+h4HQtRIhC,T,GB+_0pajmQ*NAG4rz3sX]`i n\\#Ɓ aݔb5v >|s(FHUxP3(!5)#B"Ѹ M Bϔ>1oNk@uk&Yr_t2N35  <e5_|NfҽD"Xbk 57@P(Xw@pN_O -;^BE=N[y,9| X]SNcbjVm&1@=t9?$#J},gIN%|1u஬Q)N n'OIar#Y>&mWv;5E;CȦm.8k :V.7޺ly]F*IQYtfHE`{^h KR2GBi6q5 ,%鵈 FDjڥAVrAJ ^Ѧ&}md= oli(d! p_u1Q.Й-hIk)P_ Pi WX\JgUV#ԆS@1&A1c3T}y3$5O*@8,$+\f[pq:3˴+z\`ԷRs(? aD>5H q ^Rkwfg W2fm=%P09Op?/6oxW"&s g_L ce+eX[Y "T :&,L[X~Ɠ ǚ>7Nj'm, oF[?Ʀ.e@gϚ;NYM 3hFk'upr<#J%7|fP)Ƨ >bG:b$db_O`sB@a5qб{`=5>+A.tH(9W7|g$6 G6s?bBso`Fr,(bl8v0e{kS}INa%Ge"y: ^$ & #ZI$sa@epM$U # RA>Fn'ߟ\\՜|R 6ޗ'0$vGڦ?#œ$M*:r6˾ZO#?M)_j>:Xκb_SmѷG޹I3"M8vǹ^8a3;PWgw a3yӔIs5{M/1CX*tv#/dw3^sH6dA/'k 5ܠ.mNVe ^SI?M9쏴OMAO"|[fħGp> '[|^a!R.aDfT' +ZjA>KM#^JQޠL63'!!< ;Ҋ-!n%'c>y6c:yb|r#bbj-W4WڔeңLm=b𛔫SM.$’3!=lv: `_R`bcjdm?erJvV"sp1ez}? 6n.~0Mߖh"j[^el@F=?tQ//qS2_mnjKK{L+VzԁÅu<;j1-~(v7)0; ,ezEQ@ ^lRZ3~y$a-do4#N_KzrjRiZ1ee v qϤ2Μ&roJhދxWu۵gdLriY8-!AæN=̋>w@im/moy&*[\aHRߛd!=őAza2d`Ng(+X|~_98.;t.%kc0 Zsda9VҿR(|56}61lx{w[tql.LExBN \GKOuЇ*c-i!Pkvr|ipW˱F*up?R,!뛇FNEW&XpXIP~C@`WC9,_7tY:)yO~ =: h @X7G.*fڨ醮sSPwGk +ZB:_Qϼ 'wr ҮZmb9ȁSz O 0\ɝ,,;_kq/Sdρ >ؾL ~^3 ˤ\cARHiÐ:àֽK6HڳRxRb+k|u4%\+V"#@l5b ^ї2[ Fl1eHH<@mIS9Q kⱦ^j庠;r| W"eps=^%`&ʖ7Kr˦>_Y Wv_{k-.)QK/~~nĤFY5}#2{8iU:n}g)Ɓob&&~=M([m֑銷/RDw$Cr aQsa^{MR&L?+w^fǚ^FEHm`gaIOnAop[St_^Ջ]ƿ;Y-9́mFC0(J}%숟ҭG^q@yUO,+*g(fa%K 4C}}–?d}{*LE(tƜBHkxs槖xhb EHa_9gڤϳtOdKVX$E}ZBR7|hD(f`Tr,4\^;P_H1l-Uϛ !yi=VSE\R',M~M&HlKkR'ļ9OȾAR|۔U>lu{V% e1ɜb HL: E2*#WjNdReLNy>?XFd[nIW d)j UIT>t=6lngKUVbm#W0>Am.y hvΚThrE审ΩQkCs] ZtB#%>X4~8+m[(= z>Bx .1"k`:<^ 3An5(x/w]ܶMzS}+ɀ/(igpj5&A`0Pn{RE*|uQ.x~ץN|e'j?DʄQ/ f/*:vs )e?"ql B+ް(?|x3uʲC&uο͢ z}ENfyZu;NMCA!qEr|Zay}W"1JXE7+ߞ\m?*6V|)+smim ^]\Fxbё1wګjp+Z2Ocb?:rx/aGy9]$>=(4(VH@>} Nw3+4zeP$hR,,S;>X[w9^Bkf 6-ΆKJ!oV,?38]ML[p 1[>^4j\Yf xJ ?òZ)zEJ*cMۚQ8D48EV FZ IQa? +ѥ Yc=YcגN-31}X>;j |Dm0hH.O7A+ mVDx o){<'FZ/QD0ND7B{벣7"",UMeuVZ=o;,C*7R-;O99# u i0ɷ!NnsV8A[SlF CXDNҝAD$ŏ _7w Y,g{A%e3c1BPk͒gY6yr#z}}"H"?BͮR1){լdC6[<`qCWeO+jüfs[Gg"}7oġi|59.+|wz33HhP94BT/㑔 `9m^c!t۱6"ߙugK· {ɛxQo3ar.8W+*1s`8e1Tv{cBlj;6n=ԣ"O7\Ձ985Ե |1ywI^ YLs^1 Kcu9bU1?+~=4tܤU W9] Ƚxi]Y.a5/KkNLn ~JL1K"]p^zRGV2lK/Ӧ_sNuۊMq"X-*ILV|َh&xդdJ?^YM (gJ{;XKdd9D6u&鑌vȲLr/.\RyH]r?CtZwu" t|Ό0G`Nd; t"L/&b=A;Bo0EQ\^Fѷ~iI0>i*{Q1q]31L5Ubc S%qؼ1=BcB͠-79D̡8@Ǿ+[prڊĶ棤yL35FsZҥu@+THb6JOվ@1" Y2>,>*Cm=Ȧff{0덂:*ā]ђm\gf+Z%%O Fdla'ꎑBVC Óç$me 9["΄;i] o݋Oɺ(%,Vz|8پ!6=dkF[Gz.H٧Gv)K.qftT |}sq>κ}lX)i^?Fo 0={$A<S A?MN=xR n2M{_X9׫:akv27a#v8V3ޗ rq0&SC F`kc?V 2uB(1;*4Z[`>jr FC+Yc v<!h9 Q%t* b=C} )v?0?QlU0WB. ]pɴ돸>W!݂hWjwE~";V]. YUi1dsCb>MglC&dēz)$6ġ+p;ĥ=If ]knjE[ K,;[;z;;@'_I|'i ; |ė2iybd|.促 Y` BIvS7[>N4L-`(ר$A2TkV􃽾*? `L,f-?qOFSWGvx;MS%c~/y(-ݱh>7ĿK!s,f["Ե'U(ȵ4;4d)5$[ ;CƆ,? IEhޑۂg#)kRn u3;bz'g4wK !`o]f[@^sz_{TEAq9Ou>8Tde5}F`Cgzy1}g-́Tc=t_X4"%T[1˺ mDE4C@O86 9,zifIQY ip?4,X>۰@}vwk*;fK١mՑH3?GDs~Bftt>w|t,S mI,:r+kyU`ߛ3r^o'4#43&䶌N֙!(Bnк KkKs?}&hΚTY3 NX6AiH_h9FF$C8K&[R~Cb㲯 jh㣁+<6A?dPqzwx)aphu4c?x ~#*iLS5-TPmg!~LAUsiKqk.(AlG$ H so{[a:9]D`QDM[G(xS`g0dh9bU)Ӓ!)"6Kȕb`q-l7P./+9Rՙ5V}qC/Q>ZRNtl^NR+,gn^m5TDzƱ& va)>n,hiuu:Znz|&a9֋/b8tejUWI(tt(uIN{^%i|YyYS$Œ&< U1z4• L:^W鄨&spĔ s?<0w_O~:u-N'j0]fJB G0#J69? կEu0"&7ogmb zI!oasoI@z 7B?TYifm_ QQĿS n\tƱJ=; |Ef3U2҅Ɩ;<%3xPSٴе0LA"I|ގ,@,n&EjZ~C7Ѝ_ 78liкE3́_sA渱)# 9Tb8,5%/}3"QW;JĹl˶#7j6VQ*F'>.K$PFHSLY8T,y i4.֚,yr  ^Ɲ_ˬ15 'XM n[ۂaE)Yfԓ# P+PIn; {Ջ%d՚[i޴_USM$"CΨY\'ө%~Б})G>;[,zNp*<o(hv@F5)|ܚ88Gȁҕ $/̻N x:x  f2sé^ }о,'KޗmVUa(][Jp' ._~$%|t̺%jS|Nn&DgKc>CLCȧ2p7'ӿotRs\8o0KI4HcYCd P RI7̴eC2ؙa0YaJ1јB@nq=j/C94trh?W{miU 9oـC>m KOq~N'6!{TP+)ּj]:J<ܻuIζvhJ4$$$O9goK"&- cq,KAg*l[pSlzO1ñuO鎁7z#rQT"v-K_F,#'Ȥ)5S%