libgcrypt20-32bit-1.6.1-48.1<>,\/=„UwTBCv&ϋQ_wLɦ:Y{LRfW›HѴ8y(I9D`Vk~,A^*2# P:6!-$ wg3 2X6c'b~q:.>^Fs"wD߱6vEe-dޑs*r:tn+IcBQ@_6_OFAڥ}VL稨ؔo$|eM[-16wAM~iCak3ib_*>=J?Jd  6 (PV]lt x |   h*(O8XI9|I: I>GBGGGHGIGXGYGZG[G\G]H^H$bH.cHdIweI|fIlIuIvIwJ4xJ<yJDClibgcrypt20-32bit1.6.148.1The GNU Crypto LibraryLibgcrypt is a general purpose crypto library based on the code used in GnuPG (alpha version).\cloud119 openSUSE Leap 42.3openSUSEGPL-2.0-or-later AND LGPL-2.1-or-laterhttp://bugs.opensuse.orgDevelopment/Libraries/C and C++http://directory.fsf.org/wiki/Libgcryptlinuxx86_64/sbin/ldconfig \\38c17f06f186cee8df88628b1aba3e55libgcrypt.so.20.0.1rootrootrootrootlibgcrypt-1.6.1-48.1.src.rpmlibgcrypt-32bitlibgcrypt.so.20libgcrypt.so.20(GCRYPT_1.6)libgcrypt20-32bitlibgcrypt20-32bit(x86-32)@@@@@@@@@@@@@@   /bin/shlibc.so.6libc.so.6(GLIBC_2.0)libc.so.6(GLIBC_2.1)libc.so.6(GLIBC_2.1.3)libc.so.6(GLIBC_2.15)libc.so.6(GLIBC_2.2)libc.so.6(GLIBC_2.3)libc.so.6(GLIBC_2.3.4)libc.so.6(GLIBC_2.4)libdl.so.2libdl.so.2(GLIBC_2.0)libdl.so.2(GLIBC_2.1)libgpg-error.so.0libgpg-error.so.0(GPG_ERROR_1.0)rpmlib(CompressedFileNames)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsLzma)3.0.4-14.0-14.4.6-14.11.2[@[*AZ@Z@ZYx@Yg`Y[@YV=@Y:Y1S@W:W;WW@V@VV@U@U@Ug@U_@U_@U_@U]U>$UT@T~TTfT|T@T->@T*@T)IT%U@T%U@T%U@T$T!`TT&@T&@T_S0SS,Sr @ShShR>R@RƦ@RƦ@RRQdQ@Q@QQo@QLGQGQ O/@O7NN@N@NR@LfL0wK,@I@@Pedro Monreal Gonzalez psimons@suse.compmonrealgonzalez@suse.compmonrealgonzalez@suse.comvcizek@suse.comvcizek@suse.comvcizek@suse.comvcizek@suse.compmonrealgonzalez@suse.comvcizek@suse.compmonrealgonzalez@suse.compjanouch@suse.depjanouch@suse.depjanouch@suse.dehpj@suse.comhpj@suse.comvcizek@suse.comvcizek@suse.comvcizek@suse.comabergmann@suse.comabergmann@suse.comabergmann@suse.comvcizek@suse.comvcizek@suse.comjmatejek@suse.comvcizek@suse.comvcizek@suse.comvcizek@suse.comvcizek@suse.comvcizek@suse.comvcizek@suse.comvcizek@suse.comvcizek@suse.comvcizek@suse.comvcizek@suse.comlnussel@suse.devcizek@suse.comlnussel@suse.devcizek@suse.comvcizek@suse.comvcizek@suse.comvcizek@suse.comvcizek@suse.comvcizek@suse.commeissner@suse.commeissner@suse.comvcizek@suse.comvcizek@suse.comvcizek@suse.comidonmez@suse.comandreas.stieger@gmx.dedmueller@suse.commvyskocil@suse.commvyskocil@suse.commvyskocil@suse.comandreas.stieger@gmx.demvyskocil@suse.comcoolo@suse.comcrrodriguez@opensuse.organdreas.stieger@gmx.demvyskocil@suse.comandreas.stieger@gmx.decoolo@suse.comchris@computersalat.decrrodriguez@opensuse.orgopensuse@dstoecker.dejengelh@medozas.decoolo@suse.comcrrodriguez@opensuse.orgmvyskocil@suse.czjengelh@medozas.dejengelh@medozas.decrrodriguez@suse.de- Fail selftests when checksum file is missing in FIPS mode only (bsc#1117355) * add libgcrypt-binary_integrity_in_non-FIPS.patch- Apply "CVE-2018-0495.patch" from upstream to enable blinding for ECDSA signing. This change mitigates a novel side-channel attack. [CVE-2018-0495, bsc#1097410]- Suggest libgcrypt20-hmac for package libgcrypt20 to ensure they are installed in the right order. [bsc#1090766]- Extended the fipsdrv dsa-sign and dsa-verify commands with the - -algo parameter for the FIPS testing of DSA SigVer and SigGen (bsc#1064455). * Added libgcrypt-fipsdrv-enable-algo-for-dsa-sign.patch * Added libgcrypt-fipsdrv-enable-algo-for-dsa-verify.patch- Fix a regression in the fix for bsc#1043333 which caused libgcrypt to leak file descriptors (bsc#1059723) * add libgcrypt-fips_avoid_clash_with_gkd.patch * drop libgcrypt-fips_no_static_fd_random.patch- libgcrypt stored an open file descriptor to the random device in a static variable between invocations. gnome-keyring-daemon on initialization reopens descriptors 0-2 with /dev/null which caused an infinite loop when libgcrypt attempted to read from the random device (bsc#1043333) add libgcrypt-fips_no_static_fd_random.patch- Avoid seeding the DRBG during FIPS power-up selftests (bsc#1046659) * don't call gcry_drbg_instantiate() in healthcheck sanity test to save entropy * turn off blinding for RSA decryption in selftests_rsa to avoid allocation of a random integer * add libgcrypt-fips_dont_seed_drbg_in_selftests.patch - fix a bug in gcry_drbg_healthcheck_sanity() which caused skipping some of the tests * libgcrypt-fips_drbg_healthcheck_sanity_bug.patch (bsc#1046659#c4)- dlsym returns PLT address on s390x, dlopen libgcrypt20.so before calling dlsym (bsc#1047008) * add libgcrypt-fips-use_dlopen_to_get_hmac_path.patch- Security fix [CVE-2017-7526, bsc#1046607] * libgcrypt-CVE-2017-7526-1.6.1-2.patch - Hardening against local side-channel attack * libgcrypt-CVE-2017-7526-1.6.1-1.patch - Factored code for function (secret) and added new functions (secret_core_std, secret_core_crt) in cipher/rsa.c- Don't require secure memory for the fips selftests (bsc#931932) * prevents "Oops, secure memory pool already initialized" warning - modified libgcrypt-fips_run_selftest_at_constructor.patch- Added libgcrypt-secure-EdDSA-session-key.patch [bsc#1042326] * Store the session key in secure memory to ensure that constant time point operations are used in the MPI library.- Add libgcrypt-CVE-2016-6313-1.patch and libgcrypt-CVE-2016-6313-2.patch (bsc#994157 CVE-2016-6313)- make the -hmac package depend on the same version of the library, fixing bsc#979629 FIPS: system fails to reboot after installing fips pattern- Add libgcrypt-CVE-2015-7511.patch (bsc#965902), fixing side-channel attack on ECDH with Weierstrass curves- Update libgcrypt-bsc932232-avoid-drbg-crash-with-fips.patch (bsc#970882). Fixes crashes with GPG key generation.- Add libgcrypt-bsc932232-avoid-drbg-crash-with-fips.patch (bsc#932232).- fix for CVE-2015-0837 (bsc#920057) * Fixed data-dependent timing variations in modular exponentiation [related to CVE-2015-0837, Last-Level Cache Side-Channel Attacks are Practical] * added patches: libgcrypt-CVE-2015-0837-1.patch libgcrypt-CVE-2015-0837-2.patch libgcrypt-CVE-2015-0837-3.patch- don't drop privileges when locking secure memory (bsc#938343) * added libgcrypt-secmem_dont_drop_privilege.patch- the RSA decryption needs p < q for CRT to work (bnc#929919) * added libgcrypt-fips_rsa_p_less_than_q.patch - minor changes to the testsuite * modified libgcrypt-fips_testsuite.patch- remove obsolete drbg_test.patch added Aug 22 2014, now covered by libgcrypt-fips_add_drbg_cavs_test.patch * removed drbg_test.patch- update local cavs_driver.pl copy to the latest version- enable DRBG reseeding * added libgcrypt-1.6.1-drbg-reseeding.patch * added drbg_test-reseeding.patch- add possibility to specify salt length for RSASSA-PSS verification * added libgcrypt-fips_pss.patch- perform selftests if the module is complete (checksum files are installed) (bnc#928740) * changed libgcrypt-fips_run_selftest_at_constructor.patch- updated %post and %postun scripts with correct .info filenames- fix CVE-2014-3591 (bnc#920057) * use ciphertext blinding for Elgamal decryption * added libgcrypt-CVE-2014-3591.patch- handle priming error in DRBG continuous test (bnc#905483) * added libgcrypt-fips_handle_priming_error_in_drbg.patch from Jan Matejek- fix a bug in FIPS 186-4 dsa generation * changed libgcrypt-fips-dsa.patch - testsuite adjustments to make it work in fips mode (bnc#899524) * added libgcrypt-fips_testsuite.patch * dropped FIXME-temporary-hack-to-make-some-tests-work.patch- use the RSA keygen generator from Fedora that supports KAT tests * added libgcrypt-fips_rsa_keygen.patch - add gcrypt_rsagtest binary for CAVS testing of rsa keygen KAT * added libgcrypt-fips_KAT_keygen_test.patch- merge in RSA keygen RPP and KAT tests from Fedora * fixes bnc#900275 and bnc#900276 * added libgcrypt-fips_cavs_rsa_keygen.patch- all the drbg patches were merged into v10-0001-SP800-90A-Deterministic-Random-Bit-Generator.patch - update drbg_test (libgcrypt-fips_add_drbg_cavs_test.patch) - add libgcrypt-fips_fipsdrv.patch- address a potential integer issue * changed libgcrypt-fips_PKBKDF_missing_step1.patch- enable HW support in fips mode (bnc#896435) * added libgcrypt-fips_enable_hardware_support.patch- fixes from Jan Matejek: * make DSA selftest use 2048 bit keys (bnc#898003) * added ECDSA selftests and add support for it to the CAVS testing framework (bnc#896202) * fix a bug in fipsdrv * changed patches: - libgcrypt-1.6.1-fips-cavs.patch - libgcrypt-fips_ecdsa.patch - libgcrypt-fips-dsa.patch- hide most of the fips patches behind a conditional, so they are not applied- fix condition for minimal e_value (bnc#896201, RSA-FIPS-186-4-adjustments.patch) - more testsuite fixes (fix-test-suite-for-RSA-in-fips-mode.patch, FIXME-temporary-hack-to-make-some-tests-work.patch)- don't apply libgcrypt-fips_run_selftest_at_constructor.patch * the system currently doesn't boot with it in FIPS mode (bnc#898253)- update libgcrypt-1.6.1-use-fipscheck.patch to not require hardcoding library soname - FIPS 186-4 RSA adjustments (bnc#896201) Added patches: * calculate-fips-checksum-after-build.patch * disable-algorithms-that-are-not-allowed-in-fips.patch * RSA-FIPS-186-4-adjustments.patch * skip-GCM-for-FIPS.patch * fix-test-suite-for-RSA-in-fips-mode.patch * FIXME-temporary-hack-to-make-some-tests-work.patch- add missing PKSC5v2.1 step 1 to PBKDF algorithm (bnc#898005)- disabled curve P-192 in FIPS mode (bnc#896202) * added libgcrypt-fips_ecdsa.patch - don't use SHA-1 for ECDSA in FIPS mode - also run the fips self tests only in FIPS mode- run the fips self tests at the constructor code * added libgcrypt-fips_run_selftest_at_constructor.patch- rewrite the DSA-2 code to be FIPS 186-4 compliant (bnc#894216) * added libgcrypt-fips-dsa.patch * install fips186_dsa - use 2048 bit keys in selftests_dsa- fix an issue in DRBG patchset * size_t type is 32-bit on 32-bit systems - added v9-0001-SP800-90A-Deterministic-Random-Bit-Generator.patch - added v9-0007-User-interface-to-DRBG.patch - removed v7-0001-SP800-90A-Deterministic-Random-Bit-Generator.patch - removed v7-0007-User-interface-to-DRBG.patch - update drbg_test.c to the latest release- fix a potential NULL pointer deference in DRBG patchset * fixes from https://bugs.g10code.com/gnupg/issue1701 * added v7-0001-SP800-90A-Deterministic-Random-Bit-Generator.patch * added v7-0007-User-interface-to-DRBG.patch * removed 0001-SP800-90A-Deterministic-Random-Bit-Generator.patch.bz2 * removed 0007-User-interface-to-DRBG.patch - add a subpackage for CAVS testing * add cavs_driver.pl and cavs-test.sh from the kernel cavs package * added drbg_test.patch- split off the -hmac package that contains the checksums- libgcrypt-fix-rng.patch: make drbg work again in FIPS mode. - libgcrypt-1.6.1-use-fipscheck.patch: library to test is libgcrypt.so.20 and not libgcrypt.so.11 - libgcrypt-init-at-elf-load-fips.patch: initialize at ELF DSO load time.- add new 0007-User-interface-to-DRBG.patch from upstream * fixes bnc#877233- add support for SP800-90A DRBG (fate#316929, bnc#856312) * patches by Stephan Mueller (http://www.chronox.de/drbg.html): 0001-SP800-90A-Deterministic-Random-Bit-Generator.patch.bz2 0002-Compile-DRBG.patch 0003-Function-definitions-of-interfaces-for-random.c.patch 0004-Invoke-DRBG-from-common-libgcrypt-RNG-code.patch 0005-Function-definitions-for-gcry_control-callbacks.patch 0006-DRBG-specific-gcry_control-requests.patch 0007-User-interface-to-DRBG.patch- FIPS changes (from Fedora): - replaced libgcrypt-1.5.0-etc_gcrypt_rngseed-symlink.diff by libgcrypt-1.6.1-fips-cfgrandom.patch - libgcrypt-fixed-sizet.patch: fixed an int type for -flto - libgcrypt-1.6.1-use-fipscheck.patch: use the fipscheck binary - libgcrypt-1.6.1-fips-cavs.patch: add CAVS tests- Drop arm-missing-files.diff, fixed upstream- libgcrypt 1.6.1, a bugfix release with the folloging fixes: * Added emulation for broken Whirlpool code prior to 1.6.0. * Improved performance of KDF functions. * Improved ECDSA compliance. * Fixed message digest lookup by OID (regression in 1.6.0). * Fixed memory leaks in ECC code. * Fixed some asm build problems and feature detection bugs. * Interface changes relative to the 1.6.0 release: GCRY_MD_FLAG_BUGEMU1 NEW (minor API change).- add arm-missing-files.diff: Add missing files to fix build- fix bnc#856915: can't open /dev/urandom * correct libgcrypt-1.5.0-etc_gcrypt_rngseed-symlink.diff - require libgpg-error 1.11 or higher- fix dependency for 32bit devel package - name hmac files according soname - fix hmac subpackage dependency- update to 1.6. * Removed the long deprecated gcry_ac interface. Thus Libgcrypt is not anymore ABI compatible to previous versions if they used the ac interface. Check NEWS in libgcrypt-devel for removed interfaces. * Removed the module register subsystem. * The deprecated message digest debug macros have been removed. Use gcry_md_debug instead. * Removed deprecated control codes. * Improved performance of most cipher algorithms as well as for the SHA family of hash functions. * Added support for the IDEA cipher algorithm. * Added support for the Salsa20 and reduced Salsa20/12 stream ciphers. * Added limited support for the GOST 28147-89 cipher algorithm. * Added support for the GOST R 34.11-94 and R 34.11-2012 (Stribog) hash algorithms. * Added a random number generator to directly use the system's RNG. Also added an interface to prefer the use of a specified RNG. * Added support for the SCRYPT algorithm. * Mitigated the Yarom/Falkner flush+reload side-channel attack on RSA secret keys. See [CVE-2013-4242]. * Added support for Deterministic DSA as per RFC-6969. * Added support for curve Ed25519. * Added a scatter gather hash convenience function. * Added several MPI amd SEXP helper functions. * Added support for negative numbers to gcry_mpi_print, gcry_mpi_aprint and gcry_mpi_scan. * The algorithm ids GCRY_PK_ECDSA and GCRY_PK_ECDH are now deprecated. Use GCRY_PK_ECC if you need an algorithm id. * Changed gcry_pk_genkey for "ecc" to only include the curve name and not the parameters. The flag "param" may be used to revert this. * Added a feature to globally disable selected hardware features. * Added debug helper functions. - rebased patches * libgcrypt-1.5.0-etc_gcrypt_rngseed-symlink.diff * libgcrypt-ppc64.patch - add libgcrypt-1.6.0-use-intenal-functions.patch to fix fips.c build - Move all documentation to -devel package- update to 1.5.3 [bnc#831359] CVE-2013-4242 * Mitigate the Yarom/Falkner flush+reload side-channel attack on RSA secret keys. See .- port SLE enhancenments to Factory (bnc#831028) * add libgcrypt-unresolved-dladdr.patch (bnc#701267) * add libgcrypt-1.5.0-etc_gcrypt_rngseed-symlink.diff (bnc#724841) * add libgcrypt-1.5.0-LIBGCRYPT_FORCE_FIPS_MODE-env.diff - install .hmac256.hmac (bnc#704068) - enable varuous new options in configure (m-guard, hmac binary check and random device linux) - build with all ciphers, pubkeys and digest by default as whitelist simply allowed them all- avoid gpg-offline in bootstrap packages- Library must be built with large file support in 32 bit archs.- update to 1.5.2 * The upstream sources now contain the IDEA algorithm, dropping: idea.c.gz libgcrypt-1.5.0-idea.patch libgcrypt-1.5.0-idea_codecleanup.patch * Made the Padlock code work again (regression since 1.5.0). * Fixed alignment problems for Serpent. * Fixed two bugs in ECC computations.- add GPL3.0+ to License tag because of dumpsexp (bnc#810759)- update to 1.5.1 * Allow empty passphrase with PBKDF2. * Do not abort on an invalid algorithm number in gcry_cipher_get_algo_keylen and gcry_cipher_get_algo_blklen. * Fixed some Valgrind warnings. * Fixed a problem with select and high fd numbers. * Improved the build system * Various minor bug fixes. * Interface changes relative to the 1.5.0 release: GCRYCTL_SET_ENFORCED_FIPS_FLAG NEW. GCRYPT_VERSION_NUMBER NEW. - add verification of source code signatures - now requires automake 1.11 to build- update license to new format- fix deps * libgpg-error-devel >= 1.8 - add libsoname macro- Libraries back into %{_libdir}, /usr merge project- add the missing IDEA algorithm after the patent is no longer relevant- Remove redundant/unwanted tags/section (cf. specfile guidelines)- add libtool as explicit buildrequire to avoid implicit dependency from prjconf- Update to version 1.5.0, most important changes * Uses the Intel AES-NI instructions if available * Support ECDH.- update to 1.4.6 * Fixed minor memory leak in DSA key generation. * No more switching to FIPS mode if /proc/version is not readable. * Fixed a sigill during Padlock detection on old CPUs. * Boosted SHA-512 performance by 30% on ia32 boxes and gcc 4.3; SHA-256 went up by 25%. * New variants of the TIGER algorithm. * New cipher algorithm mode for AES-WRAP. * Interface changes relative to the 1.4.2 release: GCRY_MD_TIGER1 NEW GCRY_MD_TIGER2 NEW GCRY_CIPHER_MODE_AESWRAP NEW- add missing definition of udiv_qrnnd for sparcv9:32 - use %_smp_mflags- add baselibs.conf as a source - disable the use of hand-coded assembler functions on sparc - this is giving me an infinite loop with ./tests/prime (specifically ./sparc32v8/mpih-mul1.S:_gcry_mpih_mul_1. Fedora disables this too.- update to version 1.4.4 * Publish GCRY_MODULE_ID_USER and GCRY_MODULE_ID_USER_LAST constants. This functionality has been in Libgcrypt since 1.3.0. * MD5 may now be used in non-enforced fips mode. * Fixed HMAC for SHA-384 and SHA-512 with keys longer than 64 bytes. * In fips mode, RSA keys are now generated using the X9.31 algorithm and DSA keys using the FIPS 186-2 algorithm. * The transient-key flag is now also supported for DSA key generation. DSA domain parameters may be given as well./bin/shlibgcrypt-32bit1.6.11.6.1-48.11.6.1-48.1 1.6.1libgcrypt.so.20libgcrypt.so.20.0.1/usr/lib/-fomit-frame-pointer -fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.opensuse.org/openSUSE:Maintenance:9381/openSUSE_Leap_42.3_Update/56a3541f08ebd5cee17c177f20656398-libgcrypt.openSUSE_Leap_42.3_Updatedrpmlzma5x86_64-suse-linuxELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=37f845b9adb2debcf494b903e9037ce4599caaa7, strippedPPR R RRRRRR RRRR R R?0]"k%dJt[\)E/RF'9ϻpw2a7b$ς1*:/,@)lqlӡSV9ՉhcyMDE e* _*]#p_[3KH&nNj¢rEBQFZe[$H6k v{GR7[/=cţ>:c~zyH۞ĢᣇbC$p(5XǥP|-w ͬҿaMcRb~&DbII۟ ̌p|l#U$?+?DzbbOlg`؛lhB) 0G>%A#)IwYhJ˙j1.!Xn|*[zc.l+BJ8uXwYOp1Q c`W@t0Jsi F $; Rփ= Ⱥ'qXH*[ V5Cd?zʤ:1wUTKlԗ3V tXX IWy2cy7Oe ͱScAii*` _\[w,X 1XTs?Vݼ"Qgm̍R]wS/DU^Xߜyvɧ&lCG&]Cs;yExḄgRKhvM9dJhs4aayW ;G+˳N5l%72!Qm4|N W\Bw(hv 0>&&cy`}d%L}2v3fPapW~p5|ڽddO ә3+8c&`JڋPt6؄}?G$3u[TK/"߬#` ##A3JELz W])$\DrYXK[z4SHF*Q?/Lq`nAkCz%ßDzm:'~IJl^r⺤4͐<䚁T\_ک[Ӭ:L& R'7,$/08lUQ,aY/Od?8$j·RydagtE\.5wzWaNχ.䬵@ʦD- PP3. Q d_m^4@XB *98v:& z p4GhhȦIޑi\,{dc.*òK!#QϽ=Ts: j9U_T;`<yN{4P,˃F#?%Z6V CrF9"5}P>7ON9au?:y]8<A|]\%y= /T4-v V͊krhȼz1^4o(wjQVX#'nxb_6u{ me1b4-8Ep&Id+ 6{0Yi2[-{IX{􆰒8˶IZ+(𧡩Kw4!qN>lu]w:Ρ ceen*;@VFtM]jeQ}MQQJtz3UƗ9^+֌B,uq.cMbOw>/f;ܯ0A+wY΢% ϣ {B.+pKV^;|Zp*R_SCy8tMKh{8h ͝EjܷցGg孴] XH~zbI")u1 tC'ZLmK4}X^qq{oI_6Qs: xnʴh-Bğ%k5ߥ8h(W8| @~Edwe1xb˨aP^+.H9"8V' 5txޱ 0[4A6!ɍWؖ!ZKvTa'rؔ%}3Y =aw\L)@$b9H^i_{ OWq9@ޛ5OV Aox@3E]8ʘsnMu@L. Z}aC wH\...׉1QrPw/ 3(U MĄ=ϷɌc^.bp ((1 d 6 3n2"#=/qXprJ* ~2?8@ވ4V9%]]8: &h`/Y)\w9[CԬW.2S;lYSNjZ^u59\Σt ) ~k0;(0M\B,Ӟ#:[/W 9~-L=gV>b[a \N [E} ^MOIĸ%FݹӖS6qes9G#QVNʍl vz[Wti h#@.LN५ /H Fm=šrH"EGמ\2VX4hg$3x'rWʱb߂VʦhluYOZ5IOge‘]ޞŊv9.]r6xW^EgMA n#$"Px'ߖx@+"iӤM M7L_+q} Eֺ2xX?Dd!-ogJyZ3 2ayNK+.5@|J+Z&T8XTs@0{*~Wqȓ (D6I$|xtI,]58zٔ=F|+Qť2VRhPNT)"MaK:R5H4 `m]u- Su+eC>&[uv^D UEqÜm杢|XeƑWg)Y&_߾QE*cnAbBϋL !R[RB;M5dYJ[M_8HiZ, afUySf7l-t4gA2\5Y ʔԷL7@ d]H a9xs~f ]+l8pt݌ca rK/XUfYFϼtjyIm9# _cM 0SA͛㻮;6k-:%p=FAPs}HOtD,˛GFҘqq+H>ׇnBqX9{S W\}e~4wl [T凖-2)*B}@- Mi3:0QOLW*e ugsK[$u 4dZ.18&ʛWd5 Uw(Xe͍G!? M؉jh/:}k+}e`+ JXN3WҒWᯉ=V)U7_\pH)FϷ (M/1 8kK)/ޙ{ ğoX&քÇ0MbQ.IŪ*iwDSB ISN>Qҟ! sF7sTQݗh}wl,&LVޣVh!8ㅂ Sns io\iC3p=3iv?.2vqC%CٗZmI [_@@ #Y$!,)-F5Clm[cx 4_|f;أ8wڑ`{UYߨ?ǧ7TPpFz@[ %_xĩ g}8የփM BGv+僬|jZqأg@qoT1W'㎰t*vXZْ,A)>9Α+TrC 4ԬxE=:\sD%"Q" ywt"^I6TvE:Vђ>n K} :6ir8LW/ |}PNJփzVRQ mMwkILvĵd9aChcjIP;XVy2~iDȾ5W7%Ml\ϛ^&4(xCW$PǘU#hO1"5v&ZTll/AKu 1kKNky(.7)ўDoqmt,&մ !7fUAS(K( rߪl$!Pz?’H7/^ĝǐ?FcW[~6YoQ{]ߡՊG0wډiw*‹#Z RPXHVeSvWJU ?DmzBG{$66<%vScHV>LcŅD,`i#ǯW23Aۘ+R/#X\\>GJQև$!FWM)EOj)2WjOZnյSGn\HM9F@/ (ړl2O-bv -fJXIW/=} .J][b(ڟ/. V鬔NSwː _mrYz٠Yՙ]w2f}h!L ^!6_z4A&aBH'<@ c?1Tm Ess>w(ײȥ>}H"k/yH3B+bƒ뽉,RO' f`^mY7'l[Il,)J12~Cw~D/*Hl&e5AD+|>4IkN35:2fd~ץRڟ(-n۹ 9oVNW- Ҳ{ye'e2|ɾmQFORof>|TP<.W_vA zH@‡Y/>u/Vp<pŒED'#FtPīPO'Em露*Dq>Iש:>otS mZCkP4B̹'WBĭXa7u-~13PZ>LÚ,Ri@.zljl0,f jSZ$MD)ӡm':,l+z0oLD{6ADZBHB(p_4 {7 [&^׆o]7,= (<"E}Pm*nz~6 GB=m垷Y/Ʌ)#xm Xy aL*X[hj@LJ쏥rLJ%LU Ml{;$pz7O2^ˆ E#+CS^jT+"tG5b%钛Nv҅I3pm;mgA}^&M`OBM^b[+׋չ&{d]hvi.mXX4S@sg-̇|n=!-gϖz Y ZZZq[ \..5fg{"ъPføC:FW./cR;mG=7cw"ҵS 'ݔ5 }OIcd qe!Tf&6!du ex&k")VL&%̅}(sWnp>wBU:RG=ˋWf:3LY\AEkc<Űd׭BFEAX OOB"Jdkցg85MdޗKzȪMT?2YF\mw>ic.b a BmiP@o{D[aag[ ^眥}hs0"Z|ͅJQLkYHmK&Vq5/ֵ$LvEhwKfScᴙN[]mYTz&npFK̰ǀ@aǎ1)k:m]WGΞw@lY³͗ =)6pX4`I"߲peFaiZ|+ŌkC8JitM%;7Mj[ъN.^e롌93γ=XtQ[,1#sAAK[?=~LI4&~塀jN%G~.{Pp;v N|,bn۟hju Q%0 c0JEtbVLwAql˛ `&ʌVf;Ca5rFY؏WR0BV]IʉR:̏6='0a|b/_+Ʃr n<;>;ԌDK?<i1DT\\D dKޭ{tM%dda;إME>PmM:NT-Zf;J7,&J~!yY`\a[k0E @|k֩vGlH.P}[_d΃<٧.xd7uv^hr$~ƃv0Z<w?,rB 7`~ ilvYl+;ʤb:kkٍ,Aª(--(;);r m*JU>Ƙ4RLxRΤOO{{Ć ]۷ p%k gfa$eyZ~sTc# pқεWcD7v6~cмSdBo wnk7+5A_`54U4lA~vQq3n]f,@qɶkzv-҃ղtٜJޫk B ƌݨ\֨ju[V8}9@֯FTz~lC %d˦!HF(LJegwvIDU5tELx0K=j1p<1ZntzMZ3TQv7X7Tޚ^nfD[~p;OV4X')^*Tzj;UsqbYg7 G\Ԛ*M="8u 0bw ue<7Y9b7CہG&:zːQNo(veJ>-gV.>(7/o`qT] d5:A"KJ$qӑzL-h~QbNBԥ!#uBL}֥OSs[NTL~6c6"GG>;h*v]=& MppGű 7Oʰ/b(GFɩFOin!&s=SIg>!AG²0n=o8BȤr0G\ˌo&|@ydM4I7!ȺBṣ8}ݨV6 d l /6 hHⰻ>NXBəI*Jf1 B82I F7 5]B.L9$sL!4U0^HPp !Ҥ:+|1 2kF: K~TnpL$YSl|O9TGu=>ws:C$3CӔƋRH98۸|FO f>zVzt:tE[I[A2$rB4C8u+NOHbISSpd(BA 8k5\oIERbu,ZEy1qEѐ 1K OEl~q'?,s$W`Pb+]J#B\QrKZ֫rom'Ƨ;:m-2a))"c;8aģo+`u#yY9l W؋(ozZWy]g|}kSt(`Awa;lp!TܝT&@9o)Hn#LY4~J| X{aGTwO^33K;1NR@ .k\(637@2m6ȓ$╃ Ft>TOnGnX#SQI?ęk<6jǫ9U6V䎠c1Z7mNyh90Ub,,VZ/{톌j>FAACz@Tț:ڒg΂D&B=@Kde>~I^U%\̵3ݴe?|Ob C#S7n^U"&8G>]D)r^6 P$o,j qY)#{qcNuUlngp|n4 7ZyZ4-{):G=RX:K'F(п(A^j]>BͽOga(x &U>{e^r J*x@ԧ*:#ˤФ xV˔,їEVeZ Cc{XUp?r*v)&+2TV26CҘdbt󝪲:/pϭ!؋xHzzNr/eс"z$U' Mp-|봗Gm(+)q{:f!y`L%@+;+T:΂BP.2R܃[]tlk&$ZLx>@ߍV#epLhuI\wW?0Nc Z-DTkRj=f؎(%byL,ff$w#Oi()Yk1H/x 84dh [\|qvSHjw'ce{D{IGm-EvK@e]ƏHt]hG'u0V]}E'2Y4W^9G :ZH_&'5yy^T(d:adƴnIr+s^}n1鱳Oo\ӓ%WEs9sk`ւz`;XPq/wnuZn`ԑ%V{3pF[eE%Z.Ttfp["2WRxƓ 6tЦyb3Ssߖci0-«Z+f|ud`b1.σ5۟qރ)?+飅X{IՓvY3g yA@È]2dz ,S8^&Ϻ=MYasa>}ٮ$ KЉ֨dom.HI|!qcn>f.g?=̰˰K9ac!-nyiVw>_[0 {5A7ψn ' -RؾgeP2uQ3!P|1e1`FK fl9uPQswnv | J(Ww#WMw6D%fKҤ i_H j)Vb?R ZY& 0RNLi8mJa4cY ly#B P^yҧx1΂|"‹>F=hjlI-+?R [N8~ kTqa#ܻh)Vtm: l ?Rڬ7iOF< *t D tƱ([DE|R9&RR(%; JrA_\JbP'&h`Dj%SrV,r&=At40([N,O`=k0uM`Ҍ75Qf ~]4w7)]8ׇkW,Hlq\mީX`Bul(9vL6_K,^-+,bcHf԰j: 2oƆ ,&lEG=q.opeX7X3;)x 12:;"odgdAn*a& QucI"L @KZ3x@21 p/à{$ó)ނ/{ g@2. }ޒ̉ÕEv=Jr$̾ 0=%{` C5V, <`y[x!,( @dkD>#?1pxGGk>yE/kv?ϣ4Ek6@ʢJ +)$ڶh@'݈=%5UZ(3|Vl<Œx|͝Ქ\<{@&cXjRUEc!!C=8BU#).;~('LIyqI#]F9a2UH;XP|@0f &g]_mWQbORz @gDϙYJ;0D߁-@H/PZ3 d+JXc aZŻrj;1 7d|I?#ϸ"2Y)z=  icbB -^SVAm~if]UICu2mQ(1<2>8o"2qF"LaV_ 0/qP ^e{^ب1%ˈlqƉpuL7[s(~H/Ʊ̲^b(VܬTd= ]nP2ID 61jKHhCc$?_󨨧֊HQϞP1 Dw¨c^o4;ML[ d>XJ,[ΊZye <}4tDy]ѕ`R)s >i%C'RB`ϔ.?g8%38Oo6ZPY;jEiD#|w/47w'G[ԴhZM"ZiҠ_ '۲YFPEMk6$C:yANIOႮ)ݑ/Y\h Ҷm#>XzTBL ŀvE}Zu]O7ǫ#$8`%dLofǜSրpp0eEዣ#>Râ%oj?$ur9saI Cps`hW:άX:]-8>PϡlH[oQ7ySE-Osl :+'%XQ+&gmLD{M7 {WkF,"Eh0qm)ڊgbs3&TuԈ%nA~Yö+r>Na8)$3՟l><[Ey6Fj8? 9 Ĭrİg``( `<1H -JFU㉙ KHֵm(X5õ4:tt#CS-RdK>hrjQ\dD- ;,xe2"H9f C?)nN} i!'t/޹;d9f!}YDZ8_5Ovr[#Dw&W!@IaǑ$]Η˙K54̏7q <%ACX؄ua9v¤L1rg`x~P^55L;+M 33Z^U[8bj/ဲJlidQnl.͏wA9O`Luv {pw XtW)!)Vݓn@_0[ |ٳxWz%esji-쏿r`Rt6UmDbl4^4_/$V|"OL2u6ZBQk5KYL: =Y^*?HL"1N:=N!!T&z/y3cAb_,;6R/oГTG 7Nժ>8,w~l_}{n"oݨ10B(T9lBNXB7XCFq*{ʻK߁2[?/5'rViD&Z |Z#,hřHoR۟Dcz\|q?1V21 UZ9 IWTW,bŻ47; j$[L$A ]˝Q5-ӏuͮr>XbPG#&Wdm£r:;$ ,qHv~n,+%-rU沎4%hI!:QCpz Ыs?/y[R"G rSCrڧ0h`cK\I̿qgAGy>'EjM&TĤ"O̙dޤU3"R* KubقELJ͗yӜ4kv.]B;^p8#1g|;]' >=b&ywi RER9I8mfR#-נ6~ᅴ3B PT]d%.ٌ`ׇFH4|"jsWo5L|4NiKj2 _=jD0? 3.FFLh{t>SPÐ'kT=JKRd_Eت[[3pǯ2'[ 9%ZQ'.oq&˚ʎ Pz\XngVL7?V躷9q(J gsP7yZ庆g&;vW+T{ $vnz+Dl~ؒσw-IzA5= ]WRRb,Dfp5gކ~s 1w [&ޘ|q͎>@gtKa 8H /2EiMz^>HY8$ &&p@}M!Kq;e¡\WyfEl5bl6|D d%ID#m9=e;eo,SESa3HC"YaDvtq,n'>@Dʊ(FG>J̳07ݢ 4H]&o݈E@h"|`xR'l,FƦ{%rυzz5bۋT" b;ݜ{T݀2>MOSiMMA}vZr.e}Ghf p DBQg~aMܝwt*vא~C{5Xng0xr2ibi+L2ϓR]]z!베Z(h7 ec(#Cw#GVz]wiu$'MVX<̉&<헑դ3;4o)B ~.iUP>騍 ,C(/w"Hj4Tc7,`{<a~kn%R/e6.3:˱Xt<_ 㼡 Ǹލ7WH#f (-gk sx TsoxŒżfe?xq$$~VyZh}yYm0c%5qDuIq76e2Դn4KeP=¡&8⥵sYR 5."O2=ǝ1rM4Ϯ !c<}FWY36ƿUDTc {~4ڲju0Ls=aVVq=yK]ZJdzg}F>|*[pl"ؚ91SQpIp(rUe'{I!%RԂVCJmTB߰.p#$w;nWbۑ ʣ2xm>͊g^}g uA>r{04`&~l; }4.]_TK ҰOc*+t`Ќj O8.|j:Mq>ߣRYgm>J3 ڐ\ )[L:+B?0`Gֳ/u|/q(;ht5 0/hf^yZ)̈́h TfQ+F5X{U.4 $'l[1f4vXZĊv&\bx/lzxm/1/4aA0e(S/s=:^T)Pl[;tiLENJ=KJx!kbGJvl<}mZHBiW juqW[htߏA hLTkbrӑB|H*TA*{:N)~_V2&8=TBB ʿǪǶAu,Eh|%th.6֎oEz.zDb ρFj&ߓ(,_Wᒐ 0:V4M~CZ>aviYXe1KE}$U $#oHh́c[⮨~eō>/=ORDPu [44+ћ9+nB$&FTCJO8 ?zZ @@CÍ5u81aXC R]=eH<|ho;OAѥ J1;u?eX=Ј4wY|~ A2eTS 0!>[:Mv@Za +-DYU:֯82H>dGLja3(ʏTV}|3h7k$]ѬHP>t~&,A Ottx=G& lt)_1kK*+;fG?sل(몎OF AH7m:Ի(8Z >bH7ېb͑莢ً 08ubH7[d9W>vE_'l[1G|%%5[ENilxyGHytڸ|<f* JJCn߈gfcc]_Fe+73׃mSLr@s/;#Ev2/ߧhPRjَuϩ#|g-xU8R{j&n KjwxF_uEc@.jL]" M͆ A')uݏ%cXȖA/~kgKRHl33Kٔ7{0[Ba׀*MrCsb;ڿs 5qxaM>Br&vT)$nF 򚮅 U>G5u܍Ι%M)WKb]73FTz:GFֈ5P,u6:iHYgNi4TL ԆFHsp`z/M\Om> JIZO"Ȗnfj~3%] v6sm9gp;5vY%)h{ $v'l}x{jZ'Oƕ±yۮ$bۥwү> a4TCj-2omAxW=>* FJ=ō[xhAd>VAجS46 土*@aIK6׆XOUE.4r84-&CU?`VWyy4U/r/8,n\f*L' py6y"MWv2 QzK39&j8AcW#W:2v dhzŭ:?Θeܭ>wzڡ0|}t;P TZɉᴪS0诏bs`^XI.yGS@4)^r>ODiyx6FSδY?T~!^6xjF"%#A7,ڇ#qgH3ëߨGX 2t)`g[xw |gaZ-|&IWv@zGHMt\AEb(J·+[r.ڛow ҊN@Mi9R㯠S*(cfuc}65F5mpV`5sh,/=Eh2C½cw}o' {ɽ{%;d1Y ޫc: /LChmU̎c!uCK o3v{RiSSskz=R ^wr`ƥ±n&Ig'XjkWe_6Nr*(z͢p/;& -}xtENcvB+߾%?u (L8hܧWdggCp7ϫSd3pNFYz@ʟwS`.xRHnɢAa`Y̒ʢ (.Iy4^