libpython3_6m1_0-3.6.15-150300.10.65.1<>,f~p9|U&:cc)i,gHu qKjI^,$=£m"Ca+2h5/?QuVU])|G u)1=GQ_:rd/;kJSoJ5S5ZɬM$˩C}U3k|x#uA=#&< mxVT,ȍ+|h83ߡv*ƀ\ Yj[lD+^*鎨=>Pi>@?d ) K 7=HL N P T  $|(89(:>@FGHIXY\(],^AbMcd}efluvw4x8y<z|Clibpython3_6m1_03.6.15150300.10.65.1Python Interpreter shared libraryPython is an interpreted, object-oriented programming language, and is often compared to Tcl, Perl, Scheme, or Java. You can find an overview of Python in the documentation and tutorials included in the python-doc (HTML) or python-doc-pdf (PDF) packages. This package contains libpython3.2 shared library for embedding in other applications.f~h02-armsrv3/SUSE Linux Enterprise 15SUSE LLC Python-2.0https://www.suse.com/Unspecifiedhttps://www.python.org/linuxaarch64/f~f9eff984b848190e992ab8401349446f6eee3cfffb1679f0de60783b7d6a819arootrootpython3-core-3.6.15-150300.10.65.1.src.rpmlibpython3.6m.so.1.0()(64bit)libpython3_6m1_0libpython3_6m1_0(aarch-64)@@@@@@@@@@@@@@@     /sbin/ldconfig/sbin/ldconfigld-linux-aarch64.so.1()(64bit)ld-linux-aarch64.so.1(GLIBC_2.17)(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.17)(64bit)libc.so.6(GLIBC_2.25)(64bit)libc.so.6(GLIBC_2.28)(64bit)libdl.so.2()(64bit)libdl.so.2(GLIBC_2.17)(64bit)libm.so.6()(64bit)libm.so.6(GLIBC_2.17)(64bit)libm.so.6(GLIBC_2.29)(64bit)libpthread.so.0()(64bit)libpthread.so.0(GLIBC_2.17)(64bit)libutil.so.1()(64bit)libutil.so.1(GLIBC_2.17)(64bit)python3-baserpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)3.6.153.0.4-14.6.0-14.0-15.2-14.14.3fz@fuk@f:f*Ee؈e4@d@dVA@dRLd>@d@c>@ccv"@ck@c[@c$e@cbb@b@a@a*@a*@aaaayay?@af@a]aLl@aLl@aA@a'@aj@```t`[``@``/@``U_T__@_v@_0@_0@_@_G@___P_P_m_O@_N7_L@_?@_>e_>e_=@_@_______^^g@^>^>^8 @^0"@]f@]+]@]m]y@]v>]8H@]8H@]1]]@\\8\@\E@\C@["@[6@ZZԐ@Zx@Z@Z@Z Z Zz@Zhu@Z`@ZLZ"Z }YYX@Yo@Y@YY@Y@YI@XӸXƉXXqX@Xv@W@Wx@W_W@Vm@VhV*!@VCV }@U@U@U@UU[%UT@UCjU@TeT;mcepl@cepl.eumcepl@cepl.eumcepl@cepl.eumcepl@cepl.eumcepl@suse.commcepl@cepl.eudaniel.garcia@suse.commcepl@suse.commcepl@suse.comsteven.kowalik@suse.commcepl@suse.commcepl@suse.commcepl@suse.commcepl@suse.commcepl@suse.commcepl@suse.commcepl@suse.comsteven.kowalik@suse.commcepl@suse.commcepl@suse.comsteven.kowalik@suse.commcepl@suse.commcepl@suse.commcepl@suse.commcepl@suse.commcepl@suse.comdmueller@suse.comschwab@suse.demcepl@suse.comdimstar@opensuse.orgmcepl@suse.commcepl@suse.commcepl@suse.commcepl@suse.comschwab@suse.deqydwhotmail@gmail.commcepl@suse.commcepl@suse.commcepl@suse.comdmueller@suse.commcepl@suse.comcode@bnavigator.demcepl@suse.commcepl@suse.commcepl@suse.commcepl@suse.commcepl@suse.commeissner@suse.commcepl@suse.commcepl@suse.commcepl@suse.comsteven.kowalik@suse.commmachova@suse.commcepl@suse.commcepl@suse.commcalabkova@suse.comdimstar@opensuse.orgmcepl@suse.comdimstar@opensuse.orgmcepl@suse.commcepl@suse.comtchvatal@suse.comschwab@suse.demcalabkova@suse.commcalabkova@suse.commcalabkova@suse.commcepl@suse.commcalabkova@suse.comtchvatal@suse.comtchvatal@suse.comtchvatal@suse.comtchvatal@suse.comtchvatal@suse.comtchvatal@suse.commcepl@suse.commcepl@suse.commcepl@suse.commcepl@suse.comtchvatal@suse.commcepl@suse.commcepl@suse.commcepl@suse.commcepl@suse.commcepl@suse.commcepl@suse.commcepl@suse.commcepl@suse.commcepl@suse.commcepl@suse.commcepl@suse.commcepl@suse.commcepl@suse.commcepl@suse.commcepl@suse.commcepl@suse.commcepl@suse.commcepl@suse.commcepl@suse.comtchvatal@suse.comtchvatal@suse.commimi.vx@gmail.compsimons@suse.comadam@mizerski.plschwab@suse.debwiedemann@suse.comtchvatal@suse.comjmatejek@suse.comnormand@linux.vnet.ibm.comjmatejek@suse.comdimstar@opensuse.orgmimi.vx@gmail.comjmatejek@suse.comdmueller@suse.comvcizek@suse.comschwab@suse.dejmatejek@suse.comkukuk@suse.dejmatejek@suse.comasn@cryptomilk.orgjmatejek@suse.comjmatejek@suse.comjmatejek@suse.combwiedemann@suse.comjmatejek@suse.comjmatejek@suse.comhpj@urpla.nethpj@urpla.nethpj@urpla.netjmatejek@suse.comtoddrme2178@gmail.comtoddrme2178@gmail.comjmatejek@suse.comtoddrme2178@gmail.comjmatejek@suse.comdimstar@opensuse.orgjmatejek@suse.comfisiu@opensuse.orgmeissner@suse.comschwab@suse.dejmatejek@suse.commailaender@opensuse.orgrguenther@suse.comp.drouand@gmail.comjmatejek@suse.com- Add CVE-2024-4032-private-IP-addrs.patch to fix bsc#1226448 (CVE-2024-4032) rearranging definition of private v global IP addresses.- Add CVE-2024-0397-memrace_ssl.SSLContext_cert_store.patch fixing bsc#1226447 (CVE-2024-0397) by removing memory race condition in ssl.SSLContext certificate store methods.- Add bpo38361-syslog-no-slash-ident.patch (bsc#1222109, gh#python/cpython!16557) fixes syslog making default "ident" from sys.argv[0]. - Update CVE-2023-52425-libexpat-2.6.0-backport.patch so that it uses features sniffing, not just comparing version number (bsc#1220664, bsc#1219559, bsc#1221563, bsc#1222075). - Remove support-expat-CVE-2022-25236-patched.patch, which was the previous name of this patch. - Add CVE-2023-52425-remove-reparse_deferral-tests.patch skipping failing tests. - Refresh patches: - CVE-2023-27043-email-parsing-errors.patch - fix_configure_rst.patch - skip_if_buildbot-extend.patch- bsc#1221854 (CVE-2024-0450) Add CVE-2024-0450-zipfile-avoid-quoted-overlap-zipbomb.patch detecting the vulnerability of the "quoted-overlap" zipbomb (from gh#python/cpython!110016). - Add bh42369-thread-safety-zipfile-SharedFile.patch (from gh#python/cpython!26974) required by the previous patch. - Add expat-260-test_xml_etree-reparse-deferral.patch to make the interpreter work with patched libexpat in our distros. - Move all patches from locally sourced to the branch opensuse-3.6 branch at GitHub repo, and move all metadata to commits themselves (readable in the headers of each patch). - Add bpo-41675-modernize-siginterrupt.patch to make Python build cleanly even on more recent SPs of SLE-15 (gh#python/cpython#85841). - Remove patches: - bpo36263-Fix_hashlib_scrypt.patch - fix against bug in OpenSSL fixed in 1.1.1c (gh#openssl/openssl!8483), so this patch is redundant on all SUSE-supported distros - python-3.3.0b1-test-posix_fadvise.patch - protection against the kernel issues which has been fixed in gh#torvalds/linux@3d3727cdb07f, which has been included in all our kernels more recent than SLE-11. - python-3.3.3-skip-distutils-test_sysconfig_module.patch - skips a test, which should be relevant only for testing on Mac OS X systems with universal builds. I have no valid record, that this test would be ever problematic on Linux. - bpo-36576-skip_tests_for_OpenSSL-111.patch, which was included already in Python 3.5.- (bsc#1219666, CVE-2023-6597) Add CVE-2023-6597-TempDir-cleaning-symlink.patch (patch from gh#python/cpython!99930) fixing symlink bug in cleanup of tempfile.TemporaryDirectory. - Merge together bpo-36576-skip_tests_for_OpenSSL-111.patch into skip_SSL_tests.patch, and make them include all conditionals.- Refresh CVE-2023-27043-email-parsing-errors.patch to gh#python/cpython!111116, fixing bsc#1210638 (CVE-2023-27043).- Add CVE-2023-40217-avoid-ssl-pre-close.patch fixing gh#python/cpython#108310, backport from upstream patch gh#python/cpython#108315 (bsc#1214692, CVE-2023-40217)- Add 99366-patch.dict-can-decorate-async.patch fixing gh#python/cpython#98086 (backport from Python 3.10 patch in gh#python/cpython!99366), fixing bsc#1211158.- Add CVE-2007-4559-filter-tarfile_extractall.patch to fix CVE-2007-4559 (bsc#1203750) by adding the filter for tarfile.extractall (PEP 706).- Use python3 modules to build the documentation.- Add bpo-44434-libgcc_s-for-pthread_cancel.patch which eliminates unnecessary and dangerous calls to PyThread_exit_thread() (bsc#1203355).- Add CVE-2023-24329-blank-URL-bypass.patch (CVE-2023-24329, bsc#1208471) blocklists bypass via the urllib.parse component when supplying a URL that starts with blank characters- Add bpo27321-email-no-replace-header.patch to stop email.generator.py from replacing a non-existent header (bsc#1208443, gh#python/cpython#71508).- Add bsc1188607-pythreadstate_clear-decref.patch to fix crash in the garbage collection (bsc#1188607).- Add CVE-2022-45061-DoS-by-IDNA-decode.patch to avoid CVE-2022-45061 (bsc#1205244) allowing DoS by IDNA decoding extremely long domain names.- Add CVE-2022-37454-sha3-buffer-overflow.patch to fix bsc#1204577 (CVE-2022-37454, gh#python/cpython#98517) buffer overflow in hashlib.sha3_* implementations (originally from the XKCP library).- Add CVE-2020-10735-DoS-no-limit-int-size.patch to fix CVE-2020-10735 (bsc#1203125) to limit amount of digits converting text to int and vice vera (potential for DoS). Originally by Victor Stinner of Red Hat.- Add patch CVE-2021-28861-double-slash-path.patch: * http.server: Fix an open redirection vulnerability in the HTTP server when an URI path starts with //. (bsc#1202624, CVE-2021-28861)- Add CVE-2015-20107-mailcap-unsafe-filenames.patch to avoid CVE-2015-20107 (bsc#1198511, gh#python/cpython#68966), the command injection in the mailcap module. - Rename support-expat-245.patch to support-expat-CVE-2022-25236-patched.patch to unify the patch with other packages. - Add bpo-46623-skip-zlib-s390x.patch skipping two failing tests on s390x.- Update bundled pip wheel to the latest SLE version patched against bsc#1186819 (CVE-2021-3572).- Add patch support-expat-245.patch: * Support Expat >= 2.4.5- Rename 22198.patch into more descriptive remove-sphinx40-warning.patch.- Don't use appstream-glib on SLE-12. - Use Python 2-based Sphinx on SLE-12. - No documentation on SLE-12. - Add skip_SSL_tests.patch skipping tests because of patched OpenSSL (bpo#9425).- Don't use appstream-glib on SLE-12. - Use Python 2-based Sphinx on SLE-12. - No documentation on SLE-12. - Add skip_SSL_tests.patch skipping tests because of patched OpenSSL (bpo#9425).- Don't use OpenSSL 1.1 on platforms which don't have it.- Remove shebangs from from python-base libraries in _libdir (bsc#1193179, bsc#1192249). - Readjust patches: - bpo-31046_ensurepip_honours_prefix.patch - decimal.patch - python-3.3.0b1-fix_date_time_compiler.patch- build against openssl 1.1 as it is incompatible with openssl 3.0+ (bsc#1190566)- 0001-allow-for-reproducible-builds-of-python-packages.patch: ignore permission error when changing the mtime of the source file in presence of SOURCE_DATE_EPOCH- The previous construct works only on the current Factory, not in SLE.- BuildRequire rpm-build-python: The provider to inject python(abi) has been moved there. rpm-build pulls rpm-build-python automatically in when building anything against python3-base, but this implies that the initial build of python3-base does not trigger the automatic installation.- Due to conflicting demands of bsc#1183858 and platforms where Python 3.6 is only in interpreter+pip set we have to make complicated ugly construct about Sphinx BR.- Make python36 primary interpreter on SLE-15- Make build working even on older SLEs.- Update to 3.6.15: - bpo-43124: Made the internal putcmd function in smtplib sanitize input for presence of \r and \n characters to avoid (unlikely) command injection. Library - bpo-45001: Made email date parsing more robust against malformed input, namely a whitespace-only Date: header. Patch by Wouter Bolsterlee. Tests - bpo-38965: Fix test_faulthandler on GCC 10. Use the “volatile” keyword in faulthandler._stack_overflow() to prevent tail call optimization on any compiler, rather than relying on compiler specific pragma. - bpo-40791: Make compare_digest more constant-time (bsc#1214691, CVE-2022-48566). - Remove upstreamed patches: - faulthandler_stack_overflow_on_GCC10.patch- test_faulthandler is still problematic under qemu linux-user emulation, disable it there- Update to 3.6.14: * Security - bpo-44022 (bsc#1189241, CVE-2021-3737): mod:http.client now avoids infinitely reading potential HTTP headers after a 100 Continue status response from the server. - bpo-43882: The presence of newline or tab characters in parts of a URL could allow some forms of attacks. Following the controlling specification for URLs defined by WHATWG urllib.parse() now removes ASCII newlines and tabs from URLs, preventing such attacks. - bpo-42988 (CVE-2021-3426, bsc#1183374): Remove the getfile feature of the pydoc module which could be abused to read arbitrary files on the disk (directory traversal vulnerability). Moreover, even source code of Python modules can contain sensitive data like passwords. Vulnerability reported by David Schwörer. - bpo-43285: ftplib no longer trusts the IP address value returned from the server in response to the PASV command by default. This prevents a malicious FTP server from using the response to probe IPv4 address and port combinations on the client network. Code that requires the former vulnerable behavior may set a trust_server_pasv_ipv4_address attribute on their ftplib.FTP instances to True to re-enable it. - bpo-43075 (CVE-2021-3733, bsc#1189287): Fix Regular Expression Denial of Service (ReDoS) vulnerability in urllib.request.AbstractBasicAuthHandler. The ReDoS-vulnerable regex has quadratic worst-case complexity and it allows cause a denial of service when identifying crafted invalid RFCs. This ReDoS issue is on the client side and needs remote attackers to control the HTTP server. - Upstreamed patches were removed: - CVE-2021-3426-inf-disclosure-pydoc-getfile.patch - CVE-2021-3733-ReDoS-urllib-AbstractBasicAuthHandler.patch - Refreshed patches: - python3-sorted_tar.patch - riscv64-ctypes.patch- Rebuild to get new headers, avoid building in support for stropts.h (bsc#1187338).- Use versioned python-Sphinx to avoid dependency on other version of Python (bsc#1183858).- Modify Lib/ensurepip/__init__.py to contain the same version numbers as are in reality the ones in the bundled wheels (bsc#1187668).- add 22198.patch to build with Sphinx 4- Stop providing "python" symbol (bsc#1185588), which means python2 currently.- Make sure to close the import_failed.map file after the exception has been raised in order to avoid ResourceWarnings when the failing import is part of a try...except block.- Add CVE-2021-3426-inf-disclosure-pydoc-getfile.patch to remove getfile feature from pydoc, which is a security nightmare (among other things, CVE-2021-3426, allows disclosure of any file on the system; bsc#1183374, bpo#42988).Update to 3.6.13, final release of 3.6 branch: * Security - bpo#42967 (bsc#1182379, CVE-2021-23336): Fix web cache poisoning vulnerability by defaulting the query args separator to &, and allowing the user to choose a custom separator. - bpo#42938 (bsc#1181126, CVE-2021-3177): Avoid static buffers when computing the repr of ctypes.c_double and ctypes.c_longdouble values. - bpo#42103: Prevented potential DoS attack via CPU and RAM exhaustion when processing malformed Apple Property List files in binary format. - bpo#42051: The plistlib module no longer accepts entity declarations in XML plist files to avoid XML vulnerabilities. This should not affect users as entity declarations are not used in regular plist files. - bpo#40791: Add volatile to the accumulator variable in hmac.compare_digest, making constant-time-defeating optimizations less likely. * Core and Builtins - bpo#35560: Fix an assertion error in format() in debug build for floating point formatting with “n” format, zero padding and small width. Release build is not impacted. Patch by Karthikeyan Singaravelan. * Library - bpo#42103: InvalidFileException and RecursionError are now the only errors caused by loading malformed binary Plist file (previously ValueError and TypeError could be raised in some specific cases). * Tests - bpo#42794: Update test_nntplib to use offical group name of news.aioe.org for testing. Patch by Dong-hee Na. - bpo#41944: Tests for CJK codecs no longer call eval() on content received via HTTP. - Patches removed, because they were included in the upstream tarball: - CVE-2020-27619-no-eval-http-content.patch - CVE-2021-3177-buf_ovrfl_PyCArg_repr.patch- Add CVE-2021-3177-buf_ovrfl_PyCArg_repr.patch fixing bsc#1181126 (CVE-2021-3177) buffer overflow in PyCArg_repr in _ctypes/callproc.c, which may lead to remote code execution.- Provide the newest setuptools wheel (bsc#1176262, CVE-2019-20916) in their correct form (bsc#1180686).- (bsc#1180125) We really don't Require python-rpm-macros package. Unnecessary dependency.- readd --with-fpectl (bsc#1180377)- Adjust sphinx-update-removed-function.patch- (bsc#1179630) Update sphinx-update-removed-function.patch to work with all versions of Sphinx (not binding the Python documentation build to the latest verison of Sphinx). Updated version mentioned on gh#python/cpython#13236.- Add CVE-2020-27619-no-eval-http-content.patch fixing CVE-2020-27619 (bsc#1178009), where Lib/test/multibytecodec_support calls eval() on content retrieved via HTTP.- Add patch sphinx-update-removed-function.patch to no longer call a now removed function (gh#python/cpython#13236). As a consequence, no longer pin Sphinx version.- Pin Sphinx version to fix doc subpackage- Change setuptools and pip version numbers according to new wheels (bsc#1179756). - Add ignore_pip_deprec_warn.patch to switch of persistently failing test.- Replace bundled wheels for pip and setuptools with the updated ones (bsc#1176262 CVE-2019-20916).- Handful of changes to make python36 compatible with SLE15 and SLE12 (jsc#ECO-2799, jsc#SLE-13738) - Rebase bpo23395-PyErr_SetInterrupt-signal.patch- Fix build with RPM 4.16: error: bare words are no longer supported, please use "...": x86 == ppc.- Fix installing .desktop file- Buildrequire timezone only for general flavor. It's used in this flavor for the test suite.- Add faulthandler_stack_overflow_on_GCC10.patch to make build working even with GCC10 (bpo#38965).- Just cleanup and reordering items to synchronize with python38- Format with spec-cleaner- riscv64-support.patch: bpo-33377: add triplets for mips-r6 and riscv (#6655) - riscv64-ctypes.patch: bpo-35847: RISC-V needs CTYPES_PASS_BY_REF_HACK (GH-11694) - Update list of tests to exclude under qemu linux-user- Update the python keyring - Correct libpython name- Drop patches which are not mentioned in spec: * CVE-2019-5010-null-defer-x509-cert-DOS.patch * F00102-lib64.patch * F00251-change-user-install-location.patch * OBS_dev-shm.patch * SUSE-FEDORA-multilib.patch * bpo-31046_ensurepip_honours_prefix.patch * bpo34022-stop_hash-based_invalidation_w_SOURCE_DATE_EPOCH.patch * bpo36302-sort-module-sources.patch * bpo40784-Fix-sqlite3-deterministic-test.patch * bsc1167501-invalid-alignment.patch * python3-imp-returntype.patch - Working around missing python-packaging dependency in python-Sphinx (bsc#1174571) is not necessary anymore.- Update to 3.6.12 (bsc#1179193) * Ensure python3.dll is loaded from correct locations when Python is embedded * The __hash__() methods of ipaddress.IPv4Interface and ipaddress.IPv6Interface incorrectly generated constant hash values of 32 and 128 respectively. This resulted in always causing hash collisions. The fix uses hash() to generate hash values for the tuple of (address, mask length, network address). * Prevent http header injection by rejecting control characters in http.client.putrequest(…). * Unpickling invalid NEWOBJ_EX opcode with the C implementation raises now UnpicklingError instead of crashing. * Avoid infinite loop when reading specially crafted TAR files using the tarfile module - Drop merged fixtures: * CVE-2020-14422-ipaddress-hash-collision.patch * CVE-2019-20907_tarfile-inf-loop.patch * recursion.tar - This release also fixes CVE-2020-26116 (bsc#1177211) and CVE-2019-20907 (bsc#1174091).- Add CVE-2019-20907_tarfile-inf-loop.patch fixing bsc#1174091 (CVE-2019-20907, bpo#39017) avoiding possible infinite loop in specifically crafted tarball. Add recursion.tar as a testing tarball for the patch.- Make library names internally consistent- Disable profile optimalizations as they deadlock in test_faulthandler- Disable lto as it causes mess and works with 3.7 onwards only- Sync the test disablements from the python3 in sle15- Update to 3.6.11: - bpo-39073: Disallow CR or LF in email.headerregistry. Address arguments to guard against header injection attacks. - bpo-38576 (bsc#1155094): Disallow control characters in hostnames in http.client, addressing CVE-2019-18348. Such potentially malicious header injection URLs now cause a InvalidURL to be raised. - bpo-39503: CVE-2020-8492: The AbstractBasicAuthHandler class of the urllib.request module uses an inefficient regular expression which can be exploited by an attacker to cause a denial of service. Fix the regex to prevent the catastrophic backtracking. Vulnerability reported by Ben Caller and Matt Schwager. - bpo-39401: Avoid unsafe load of api-ms-win-core-path-l1-1-0.dll at startup on Windows 7. - Remove merged patch CVE-2020-8492-urllib-ReDoS.patch, CRLF_injection_via_host_part.patch, and CVE-2019-18348-CRLF_injection_via_host_part.patch.- Fix minor issues found in the staging.- Do not set ourselves as a primary interpreter- Add CVE-2020-14422-ipaddress-hash-collision.patch fixing CVE-2020-14422 (bsc#1173274, bpo#41004), where hash collisions in IPv4Interface and IPv6Interface could lead to DOS.- Change name of idle3 icons to idle3.png to avoid collision with Python 2 version (bsc#1165894).- Add CVE-2019-9674-zip-bomb.patch to improve documentation warning about dangers of zip-bombs and other security problems with zipfile library. (bsc#1162825 CVE-2019-9674) - Add CVE-2020-8492-urllib-ReDoS.patch fixing the security bug "Python urrlib allowed an HTTP server to conduct Regular Expression Denial of Service (ReDoS)" (bsc#1162367)- Add Requires: libpython%{so_version} == %{version}-%{release} to python3-base to keep both packages always synchronized (bsc#1162224).- Reame idle icons to idle3 in order to not conflict with python2 variant of the package bsc#1165894 * renamed the icons * renamed icon load in desktop file- Add pep538_coerce_legacy_c_locale.patch to coerce locale to C.UTF-8 always (bsc#1162423).- Update to 3.6.10 (still in line with jsc#SLE-9426, jsc#SLE-9427, bsc#1159035): - Security: - bpo-38945: Newline characters have been escaped when performing uu encoding to prevent them from overflowing into to content section of the encoded file. This prevents malicious or accidental modification of data during the decoding process. - bpo-37228: Due to significant security concerns, the reuse_address parameter of asyncio.loop.create_datagram_endpoint() is no longer supported. This is because of the behavior of SO_REUSEADDR in UDP. For more details, see the documentation for loop.create_datagram_endpoint(). (Contributed by Kyle Stanley, Antoine Pitrou, and Yury Selivanov in bpo-37228.) - bpo-38804: Fixes a ReDoS vulnerability in http.cookiejar. Patch by Ben Caller. - bpo-38243: Escape the server title of xmlrpc.server.DocXMLRPCServer when rendering the document page as HTML. (Contributed by Dong-hee Na in bpo-38243.) - bpo-38174: Update vendorized expat library version to 2.2.8, which resolves CVE-2019-15903. - bpo-37461: Fix an infinite loop when parsing specially crafted email headers. Patch by Abhilash Raj. - bpo-34155: Fix parsing of invalid email addresses with more than one @ (e.g. a@b@c.com.) to not return the part before 2nd @ as valid email address. Patch by maxking & jpic. - Library: - bpo-38216: Allow the rare code that wants to send invalid http requests from the http.client library a way to do so. The fixes for bpo-30458 led to breakage for some projects that were relying on this ability to test their own behavior in the face of bad requests. - bpo-36564: Fix infinite loop in email header folding logic that would be triggered when an email policy’s max_line_length is not long enough to include the required markup and any values in the message. Patch by Paul Ganssle - Remove patches included in the upstream tarball: - CVE-2019-16935-xmlrpc-doc-server_title.patch (and also bpo37614-race_test_docxmlrpc_srv_setup.patch, which was resolving bsc#1174701). - CVE-2019-16056-email-parse-addr.patch - Move idle subpackage build from python3-base to python3 (bsc#1159622). appstream-glib required for packaging introduces considerable extra dependencies and a build loop via rust/librsvg. - Correct installation of idle IDE icons: + idle.png is not the target directory + non-GNOME-specific icons belong into icons/hicolor - Add required Name key to idle3 desktop file- Unify all Python 3.6* SLE packages into one (jsc#SLE-9426, jsc#SLE-9427, bsc#1159035) - Patches which were already included upstream: - CVE-2018-1061-DOS-via-regexp-difflib.patch - CVE-2018-14647_XML_SetHashSalt-in_elementtree.patch- Add CVE-2019-16935-xmlrpc-doc-server_title.patch fixing bsc#1153238 (aka CVE-2019-16935) fixing a reflected XSS in python/Lib/DocXMLRPCServer.py- Add bpo-36576-skip_tests_for_OpenSSL-111.patch (originally from bpo#36576) skipping tests failing with OpenSSL 1.1.1. Fixes bsc#1149792 - Add bpo36263-Fix_hashlib_scrypt.patch which works around bsc#1151490- Add CVE-2019-16056-email-parse-addr.patch fixing the email module wrongly parses email addresses [bsc#1149955, bnc#1149955, CVE-2019-16056]- jsc#PM-1350 bsc#1149121 Update python3 to the last version of the 3.6 line. This is just a bugfix release with no changes in functionality. - The following patches were included in the upstream release as so they can be removed in the package: - CVE-2018-20852-cookie-domain-check.patch - CVE-2019-5010-null-defer-x509-cert-DOS.patch - CVE-2019-10160-netloc-port-regression.patch - CVE-2019-9636-urlsplit-NFKC-norm.patch - CVE-2019-9947-no-ctrl-char-http.patch - Patch bpo23395-PyErr_SetInterrupt-signal.patch has been reapplied on the upstream base without changing any functionality. - Add patch aarch64-prolong-timeout.patch to fix failing test_utime_current_old test.- FAKE RECORD FROM SLE-12 CHANNEL Apply "CVE-2018-1000802-shutil_use_subprocess_no_spawn.patch" which converts shutil._call_external_zip to use subprocess rather than distutils.spawn. [bsc#1109663, CVE-2018-1000802]- FAKE RECORD FROM SLE-12 CHANNEL bsc#1109847: add CVE-2018-14647_XML_SetHashSalt-in_elementtree.patch fixing bpo#34623.- boo#1141853 (CVE-2018-20852) add CVE-2018-20852-cookie-domain-check.patch fixing http.cookiejar.DefaultPolicy.domain_return_ok which did not correctly validate the domain: it could be tricked into sending cookies to the wrong server.- bsc#1138459: add CVE-2019-10160-netloc-port-regression.patch which fixes regression introduced by the previous patch. (CVE-2019-10160) Upstream gh#python/cpython#13812- FAKE RECORD FROM SLE-12 CHANNEL bsc#1137942: Avoid duplicate files with python3* packages (https://fate.suse.com/327309)- bsc#1094814: Add bpo23395-PyErr_SetInterrupt-signal.patch to handle situation when the SIGINT signal is ignored or not handled- Update to 3.6.8: - bugfixes only - removed patches (subsumed in the upstream tarball): - CVE-2018-20406-pickle_LONG_BINPUT.patch - refreshed patches: - CVE-2019-5010-null-defer-x509-cert-DOS.patch - CVE-2019-9636-urlsplit-NFKC-norm.patch - Python-3.0b1-record-rpm.patch - python-3.3.0b1-fix_date_time_compiler.patch - python-3.3.0b1-test-posix_fadvise.patch - python-3.3.3-skip-distutils-test_sysconfig_module.patch - python-3.6.0-multilib-new.patch - python3-sorted_tar.patch - subprocess-raise-timeout.patch - switch off LTO and PGO optimization (bsc#1133452) - bsc#1130840 (CVE-2019-9947): add CVE-2019-9947-no-ctrl-char-http.patch Address the issue by disallowing URL paths with embedded whitespace or control characters through into the underlying http client request. Such potentially malicious header injection URLs now cause a ValueError to be raised.- bsc#1129346: add CVE-2019-9636-urlsplit-NFKC-norm.patch Characters in the netloc attribute that decompose under NFKC normalization (as used by the IDNA encoding) into any of ``/``, ``?``, ``#``, ``@``, or ``:`` will raise a ValueError. If the URL is decomposed before parsing, or is not a Unicode string, no error will be raised. (CVE-2019-9636) Upstream gh#python/cpython#12224- bsc#1120644 add CVE-2018-20406-pickle_LONG_BINPUT.patch fixing bpo#34656 Modules/_pickle.c in Python before 3.7.1 has an integer overflow via a large LONG_BINPUT value that is mishandled during a "resize to twice the size" attempt. This issue might cause memory exhaustion, but is only relevant if the pickle format is used for serializing tens or hundreds of gigabytes of data.- bsc#1122191: add CVE-2019-5010-null-defer-x509-cert-DOS.patch fixing bpo-35746. An exploitable denial-of-service vulnerability exists in the X509 certificate parser of Python.org Python 2.7.11 / 3.7.2. A specially crafted X509 certificate can cause a NULL pointer dereference, resulting in a denial of service. An attacker can initiate or accept TLS connections using crafted certificates to trigger this vulnerability.- Add -fwrapv to OPTS, which is default for python3 anyway See for example https://github.com/zopefoundation/persistent/issues/86 for bugs which are caused by avoiding it. (bsc#1107030)- Apply "CVE-2018-1061-DOS-via-regexp-difflib.patch" to prevent low-grade poplib REDOS (CVE-2018-1060) and to prevent difflib REDOS (CVE-2018-1061). Prior to this patch mail server's timestamp was susceptible to catastrophic backtracking on long evil response from the server. Also, it was susceptible to catastrophic backtracking, which was a potential DOS vector. [bsc#1088004 and bsc#1088009, CVE-2018-1061 and CVE-2018-1060]- As we run in main python package do not generate the pre_checkin from both now- Move the tests from base to generic package wrt bsc#1088573 * We still fail the whole distro if python3 is not build * The other archs than x86_64 took couple of hours to unblock build of other software, this way we work around the issue - Some tests are still run in -base for the LTO tweaking, but at least it is not run twice- update to 3.6.5 * bugfix release * see Misc/NEWS for details - drop ctypes-pass-by-value.patch - drop fix-localeconv-encoding-for-LC_NUMERIC.patch - refresh python-3.6.0-multilib-new.patch- Apply "python-3.6-CVE-2017-18207.patch" to add a check to Lib/wave.py that verifies that at least one channel is provided. Prior to this check, attackers could cause a denial of service (divide-by-zero error and application crash) via a crafted wav format audio file. [bsc#1083507, CVE-2017-18207]- Created %so_major and %so_minor macros - Put Tools/gdb/libpython.py script into proper place and ship it with devel subpackage.- ctypes-pass-by-value.patch: Fix pass by value for structs on aarch64- Add python3-sorted_tar.patch (boo#1081750, bsc#1086001)- Add patch to fix glibc 2.27 fail bsc#1079761: * fix-localeconv-encoding-for-LC_NUMERIC.patch- move XML modules and python3-xml provide to python3-base (fixes bsc#1077230) - move ensurepip to base- Add skip_random_failing_tests.patch only for PowerPC- update to 3.6.4 * bugfix release, over a hundred bugs fixed * see Misc/NEWS for details - drop upstreamed python3-ncurses-6.0-accessors.patch - drop PYTHONSTARTUP hooks that cause spurious startup errors * fixes bsc#1070738 * the relevant feature (REPL history) is now built into Python itself- Install 2to3-%{python_version} executable (override defattr of the -tools package). 2to3 (unversioned) is a symlink and does not carry permissions (bsc#1070853).- move 2to3 to python3-tools package- update to 3.6.3 * bugfix release, over a hundred bugs fixed * see Misc/NEWS for details - drop upstreamed 0001-3.6-bpo-30714-ALPN-changes-for-OpenSSL-1.1.0f-3093.patch- drop python-2.7-libffi-aarch64.patch: this patches the intree copy of libffi which is unused/deleted in the line afterwards - fix build against system libffi: include flags weren't set so it actually used the in-tree libffi headers.- Fix test broken with OpenSSL 1.1 (bsc#1042670) * add 0001-3.6-bpo-30714-ALPN-changes-for-OpenSSL-1.1.0f-3093.patch- fix missing %{?armsuffix}- distutils-reproducible-compile.patch: ensure distutils order files before compiling, which works around bsc#1049186- Add libnsl-devel build requires for glibc obsoleting libnsl- update to 3.6.2 * bugfix release, over a hundred bugs fixed * see Misc/NEWS for details - drop upstreamed test-socket-aead-kernel49.patch - add Provides: python3-typing (fixes bsc#1050653) - drop duplicate Provides: python3- Add missing link to python library in config dir (bsc#1040164)- update to 3.6.1 * bugfix release, over a hundred bugs fixed * never add import location's parent directory to sys.path * switch to git for version control, build changes related to that * fix "failed to get random numbers" on old kernels (bsc#1029902) * several crashes and memory leaks corrected * f-string are no longer accepted as docstrings- prevent regenerating AST at build-time more robustly - add "--without profileopt" and "--without testsuite" options to python3-base to allow short circuiting when working on the package- FAKE RECORD FROM SLE-12 CHANNEL update to 3.4.6 (bsc#1027282): * fixed potential crash in PyUnicode_AsDecodedObject() in debug build * fixed possible DoS and arbitrary execution in gettext plurals * fix possible use of uninitialized memory in operator.methodcaller * fix possible Py_DECREF on unowned object in _sre * fix possible integer overflow in _csv module * prevent HTTPoxy attack (CVE-2016-1000110) * fix selectors incorrectly retaining invalid fds - drop upstreamed python-3.4-CVE-2016-1000110-fix.patch - move _elementtree to python3.rpm to match its pyexpat dependency (bsc#1029377)- Add 0001-allow-for-reproducible-builds-of-python-packages.patch upstream https://github.com/python/cpython/pull/296- reenable test_socket with AEAD patch (test-socket-aead-kernel49.patch) - reintroduce %py3_soflags macro (and better named %cpython3_soabi equivalent)- update to 3.6.0 * PEP 498 Formated string literals * PEP 515 Underscores in numeric literals * PEP 526 Syntax for variable annotations * PEP 525 Asynchronous generators * PEP 530 Asynchronous comprehensions * PEP 506 New "secrets" module for safe key generation * less memory consumed by dicts * dtrace and systemtap support * improved asyncio module * better defaults for ssl * new hashing algorithms in hashlib * bytecode format changed to allow more optimizations * "async" and "await" are on track to be reserved words * StopIteration from generators is deprecated * support for openssl < 1.0.2 is deprecated * os.urandom now blocks when getrandom() blocks * huge number of new features, bugfixes and optimizations * see https://docs.python.org/3.6/whatsnew/3.6.html for details - rework multilib patch: drop Python-3.5.0-multilib.patch, implement upstreamable python-3.6.0-multilib-new.patch - refresh python-3.3.0b1-localpath.patch, subprocess-raise-timeout.patch - drop upstreamed Python-3.5.1-fix_lru_cache_copying.patch - finally drop python-2.6b1-canonicalize2.patch that was not applied in source and only kept around in case we needed it in the future. (which we don't, as it seems) - update import_failed map and baselibs - build ctypes against system libffi (buildrequire libffi-devel in python3-base) - add new key to keyring (signed by keys already in keyring) - introduced common configure section between python3 and python3-base - moved pyconfig.h and Makefile to devel subpackage as distutils no longer need it at runtime - added python-rpm-macros dependency, regenerated macros file, drop macros.python3.py because it is not used now - improve summaries and descriptions (fixes bsc#917607) - enabled Link-Time Optimization, see what happens - including skipped_tests.py in pre_checkin.sh run - run specs through spec-cleaner, rearrange sections- FAKE RECORD FROM SLE-12 CHANNEL apply fix for CVE-2016-1000110 - CGIHandler: sets environmental variable based on user supplied Proxy request header: python-3.4-CVE-2016-1000110-fix.patch (fixes bsc#989523, CVE-2016-1000110) - refresh python3-urllib-prefer-lowercase-proxies.patch- FAKE RECORD FROM SLE-12 CHANNEL update to 3.4.5 check: https://docs.python.org/3.4/whatsnew/changelog.html (fixes bsc#984751, CVE-2016-0772) (fixes bsc#985177, CVE-2016-5636) (fixes bsc#985348, CVE-2016-5699) - drop upstreamed werror-declaration-after-statement.patch- FAKE RECORD FROM SLE-12 CHANNEL Due to being fixed upstream (differently), removed outdated patch CVE-2014-4650-CGIHTTPServer-traversal.patch (bsc#983582)- move _hashlib and _ssl modules and tests to python3-base - recommend python3- Add Python-3.5.1-fix_lru_cache_copying.patch Fix copying the lru_cache() wrapper object. Fixes deep-copying lru_cache regression, which worked on previous versions of python but fails on python 3.5. This fixes a bunch of packages in devel:languages:python3. See: https://bugs.python.org/issue25447- update to 3.5.1 * bugfix-only release, dozens of bugs fixed - Drop upstreamed Python-3.5.0-_Py_atomic_xxx-symbols.patch - "Python3" to "Python 3" in summary * This seems cleaner and fixes and rpmlint warning- FAKE RECORD FROM SLE-12 CHANNEL Issue #21121: Don't force 3rd party C extensions to be built with -Werror=declaration-after-statement. (werror-declaration-after-statement.patch, bsc#951166)- Add Python-3.5.0-_Py_atomic_xxx-symbols.patch This fixes a build error for many packages that use the Python, C-API. This patch is already accepted upstream and is slated to appear in python 3.5.1.- update to 3.5.0 * coroutines with async/await syntax * matrix multiplication operator `@` * unpacking generalizations * new modules `typing` and `zipapp` * type annotations * .pyo files replaced by custom suffixes for optimization levels in __pycache__ * support for memory BIO in ssl module * performance improvements in several modules * and many more - removals and behavior changes * deprecated `__version__` is removed * support for .pyo files was removed * system calls are auto-retried on EINTR * bare generator expressions in function calls now cause SyntaxError (change "f(x for x in i)" to "f((x for x in i))" to fix) * removed undocumented `format` member of private `PyMemoryViewObject` struct * renamed `PyMemAllocator` to `PyMemAllocatorEx` - redefine %dynlib macro to reflect that modules now have arch+os as part of name - module `time` is now built-in - dropped upstreamed patches: python-3.4.1-fix-faulthandler.patch python-3.4.3-test-conditional-ssl.patch python-fix-short-dh.patch (also dropped dh2048.pem required for this patch) - updated patch Python-3.3.0b2-multilib.patch to Python-3.5.0-multilib.patch - python-ncurses-6.0-accessors.patch taken from python 2 to fix build failure with new gcc + ncurses- Add python3-ncurses-6.0-accessors.patch: Fix build with NCurses 6.0 and OPAQUE_WINDOW set to 1.- improve import_failed hook to do the right thing when invoking missing modules with "python3 -m modulename" (boo#942751)- Build with --enable-loadable-sqlite-extensions to make it works as geospatial database.- dh2048.pem: added generated 2048 dh parameter set to fix ssl test (bsc#935856) - python-fix-short-dh.patch: replace the 512 bits dh parameter set by 2048 bits to fix build with new openssl 1.0.2c (bsc#935856)- ctypes-libffi-aarch64.patch: remove upstreamed patch - python-2.7-libffi-aarch64.patch: Fix argument passing in libffi for aarch64- python-3.4.3-test-conditional-ssl.patch - restore tests failing because test_urllib was unconditionally importing ssl (without really needing it) - restore functionality of multilib patch - drop libffi-ppc64le.diff because upstream completely changed everything yet again (sorry ppc64 folks :| )- Update to version 3.4.3 - Drop upstreamed CVE-2014-4650-CGIHTTPServer-traversal.patch (bpo#21766)- Add python-3.4.1-fix-faulthandler.patch, upstream patch for bogus faulthandler which fails with GCC 5.- asyncio has been merged in python3 main package; provide and obsolete it - Remove obsolete AUTHORS section - Remove redundant %clean section- add %python3_version rpm macro for Fedora compatibility - add missing argument in import_failed, rename Novell Bugzilla to SUSE Bugzilla/sbin/ldconfig/sbin/ldconfigh02-armsrv3 17195688643.6.15-150300.10.65.13.6.15-150300.10.65.1libpython3.6m.so.1.0/usr/lib64/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:33974/SUSE_SLE-15-SP3_Update/6f1f1a38809847db8146066dc454759d-python3.SUSE_SLE-15-SP3_Update:basedrpmxz5aarch64-suse-linuxELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=fbf59dd9543bd6f18bb58b1e68450999832cf0d3, strippedPRRR R R RRRRR RRR RR, asautf-80a736097167481621ba9ade8b44e9f285d0337558b88d327a4023179e85df254?7zXZ !t/]"k%۫5B1we9rnf5%{%Ko+՞'"l*F%"l_#[9aGui}w5žY_X:5}y \qJ?q>_$ k\A^fu}q>a.aeϔܽ磛3JĜ8Ygyӽ]b#Nu 2z V\k4ܘ0(|Τóh`Y9JۡƏ:qxI2mP>e32єiaI@owxX}u>>k)^`Bʨp־NAkqbvpR uvJ6|FD) |kΫ1"w>Vˈ⢫dn捥@*} 홊 9d%#Rwhg5: v-u\^4҂49p3U/YGMW Q87<#>kJԟEw[psv&?N] *9{ENr"H:{t@;90U%[ٝH1d4)f#+?R]*t K(Dj:tf"@%%.\v;D֯ 7I>ǯT)YS9˯}ET(XUi=^ F̏LG!3. :2Wo# rڂi^)jP7 1eϺ)? #XO3O<4[c{W;L3v)%`$uG!a޸B3~IOTQɭxP-6z1Qe\jZ7C< B'i|˲DlwB]$_@^TͫP餿[m O ntA*#Fo{Nňt ,ˉ=d8rQaȦ2 \L)_Q8GAB+뙧؟Υp>jN8/K[.Wh]^K|`ƏDs -ZD" v$v<|*i4[ }|tHhsSf\6(Y]z[ϐ=NKݽѬ|hwZ',]ng3B*`x1d+fQf{_}d'[Z^㾑xT/sr]avhWr'A6Xҽ@bT)A \?/j-Q=v'v`6rtq~QNeo*>ww(tV7$FWzAvCY(tSٚK:GH @i;<| @X9o;׸  QSL[˅HDd=?@0.<mfc{|}uՉ~fz( o+倰ҭ X_.mљ29Q!^Sj:ozd` <#%. ףY(SOARs(dox ⮪$#A t[Rq"= B̒$GVLR7lNmV`'@fyS5wNFG7&MzO~N`>x4s c4REH-jxxLJuԘϣ}2DMcQ}K }T$UB&-jD <$(G\NȽF"e\8NS}S~Sq}gэ&E!Œҏ-}ֿg;O&]^"WS|!:H\k`Ӎ Sα4©t=Vl澟iUM(g$tL?ѥǓа0TfVHjrٟ8NA~ovWT6.(~E}z\QUm(Ax ýZed$L($fc|˭f=X}rT<3 jHy\>9>:UϯiLvH{X9+e9pH%"(u,1+JӎƔ>$+ 7BqZ3)1͔YS%E!VV}k?t-тl:֕®̀;Rsac ?raD{A̋niڿuB(04$h]r"Ɉ~5I3RJ ̔y=Cq,M5v.|jxflPk]Y4l7`9#عN#ݯDCD5{Qzae淇^q+||o}ebϔu}!A%~w.!OPzo_+grݫ巶 {2cZo @ofRoKVH0'&:nnX?zȌl,G,%P$WX"$MA Y5-Ԣm}BkMkiG:X⡙ wn-Z7{ΚY#N![3K&OnD%?_.|@DzQ:ʝ%8] aZe}V aޒҊCG8Gq Ԩ@@{Kuh:: H:%d:lE:!_0M:- V<;ߚ]Z\ĶRD^դY:fаsAEe5lY)l /Q tn+@W?\b]ނvy#vlH- ;(b`+{`2Z풰tjn 3ؙtkԤ"ɋW 9I54Td"qhB}}g_0[tY`ifZ,ŇeBm qBe62X_S1e#nwU*G@&,tnf+^PkH+ J/C6Ux}2o,&QHWb@s0U1Į\1s!=q6?ppqh۪nM(F7xb: P_|iY΁5a< V9,vvѨs|6{yGDs4VrPwNOIn$l.TbpW~#lLrqb U:EBՓd~JђvO8䴲w)|3Vɣxr#ጀ;3 ωԾ>7#lwAABZ}(0P5lJ uKMpg~payV|+,;Vzz6Ը4x?oow#9nA3рzM4Gd"sf *N땫%q1A\&ÔpGfQ](uV>"ԬY9~,X G{#uyqA#8Tz/ɾZgĹ!8[JI)3=0D97C޴':ܥr,ݖ_-[qpkm]ލǸ.E?!tDxU d0~85A`l39<τN dAM c!);c/>=ʗS|2Ҟfe&J  =!pv(e>c_" ILgІ6lM1_~>֋x#Oxٵ9X\eI@Sȑ6Fy ջM O3 jhcmx9P@Z(8DD$Û6rN/!SH_Dę UId2wx 0 WT8FKјًvx:cOoA$qlmSL*0/X"h}PwƜ`fѾf%w,@ǭT\iA oZ讁;:=77/>20W@(-]W^_v eWr -f+j!S:1Eg2ozci_ɶ IS ʡe a0+>0Xr6:@7ؘ{7pgקl_;o)殇E!}*2nl=NLʞg\>h<& q!o7ې\2Y#a 5՜1Q mY&31MA2Cnge½&E*wD|Q(}TMp'X}ӖQP`i8-}ߌBћ=Ғ&>#זkW4t/1Hg{<䃱Z2aZњ^*UvuY^,uܹ[#M(ɭ}J2$3[,PnJ!GƘ9]#3BbRdѯa2Ap-)2}kۣgB]Ԁ<~2QOjZV*a"8WLs1=3sg +-~$mZ8,D90}g(W5dI9[Ҋ%0bGȽf> eSJ_@>KNC;&LW(Z0_/li "~ц)K6#Y{ q򋭢<; e&ZlC3'Y lޣ3?{%dK%vfapdFf[L*L~2hv5h,q '7>?AZ-K &*B 0(|'D.xy"詻8lx8NHmC :+eL6{ JWrg$'QWpFHhyXÖ/,!9;wj&<)oϡ`!N0Tys>+baXnVPaxX%;7J1qLt2WXGd9giW΅vax"M`9}~f--zp/ Zظ^e`8b ^e!ƌajK>¡C|rsM 9QZ>ᾤyOb^^aB$B)p nnus hBbUXUJE h&,1b1ؒ=4vg.p0TǪTl FKX@!&kR33Ao\m`[}GMZo?aqb;lTXX _0[XzpmX 'H$l!vg>Wro74B: EHl+g0c',/^j=ikO.qc`{L$̖}siƝ޶SܺMvM6`ʤod¸&vjJ ZR-NS;:tOc8aP+tq':1áM۲AMC/<3>28G.BbĕHDL4c"(\sB5r y{>q -)Oy<v]}~hubYL̳1 0X,ևǩ"KSEpKA]p9(>*Cd6@ Aۯ.j: *RM^ZYfyBEk0kAVlRvP q%KV~8tk1dG4_ 5!\  }gKjEL!h&0BN\QOzt $V6uarnv-1 W2Q׶4/<>Ȯ+q?GEi &4ԩFwMd6)G͓i"05ݗ.KmM􅥞>%3_~1q##O¥$Ư!/eBO0,mvEG}blLtM>-ԉʘ̪ow@SO l.fI:B>S܉ J^#,ሴxgȳNy.@!<*E%qxA.s\u> " mh$oLNq][n2^\ڌ-vnԧӻ;OfrW%@7ny`sMXX`::h`sȁح?o7чʃ VQV fk~ki )qeQc͕0u- moVz慍Vxs*;( cl!+mLٯA+#S9X8v!]&Q*OpO.@ pi M+۷p;(]Rx"[;3'8Q *$ dNje-:\Wpl pywQ+- /(*tidkBӦ EdC'K{,|岈q:\"ł)l1@e6/q ,1rZɸU?ʰ!ƀq*/+&+VthiV:wsЪ$k5B/,d:YiM*S|&șm^z4R)'佂9?.|% kvamBſT%c @ 8YȒci[q02x \|¾G`yd^af{w-Ԭ;<9M^&Q2xMw9 fs]C_޼3yN5Xl|"NXYR$A%4۴p54(: /eo8#DR i PEH/߼|}BŚBc”N(Pis8|SbQm}5v-Eڗo)x݁y]NMֽ~-os_Y.#ulLnkz t!_.#;zU%uښlauDvp ^rY7`AўBy)&+q!ik.2[U !K{ 7buHqkͤl !zTS0d\7SY ||]bnEaʢo{|W4:H]--+%]MT0ʻ3g3 X^g6`}|g#RϢzYuVH( ?i {o)^ZO<$$._Iwǃu{z@ @m"O;2H v*lFQFܚi"1#}KTPGiqHGQ9bPZAɵ3!CL^lOx?CIg "w. ^-/-lJṡz67)t=Feϣ훞tOH9࡮KuG.XM8)rh"i!Sf1מ[`G7͢ 1fh2G;34H#9I:5,MK ;[kE3:$(( 8OC:]>iBZ~㾃o;4~@*Mn Whx'ݱ`Hբ>/{1fqjU왶|h2@{K}k4lcULZVX==."(#VI^VmdpTj4{7?>7Xo1Pd]'5$l/t˾73W4⣶WAR -|nθ@j+]9ΤH|1١Ip$0p TPqxadHZ`y* ,61 $w2S3-.XKQLW h@G;?/s5l?iP0 ILmFQkQ'fS-kiI'yԵ*Y.)ɢ`)8_jok-8pp5݂h[.Md`Maw[t! <(ъM5\ J&:A*cs~8s'FYQDZ,P=JxYxQpfa~틬NPh٨<~,HӚMOg*UUH>T=fsLAյ$#f:mu4[;˽]:ڟ>$.wa;%78GGe"f(Xi ;z#5 4. b*cHn /+JVLo1LOMr:%jIX茨E|5wH4P6ݷ0<0s33YrB~-NrgPT+)M,.#t^m] j, ৯Lj1;\NӦɎNaLKCvm6j`6Cŝ=3$XJ 8A@PP;Znd<4ޞ^W@Ub~GůħpبW&/an?fjևNw<.Udܐ/@m)V6E0K_ [2v/<\-A`)]87;ҵ^6, wgӌBϗD21w\MfU pg'ZmZ)(̎)+Ѳy90 9YgN\lP>T4-s,sӹ=>/B+`[:\~*1:1ɢ{#~R̤ "bx4|V)MIA xLppT]ULWIM&,:F=AwG.)hM[0Xb',RںOU0" ]E%EM.h/]aLJ 2Јxfa@'S 1 Kuw%fm_a&r% 1L?=/KX&)Ŀbڗ)W#h3q:BCG R٦'JQ6ŃPkvt2a_C -*W8UhC]b8[?%AHG5\{( l^ݙZf'&A-K|Rtv0#zΊOz$oG ӊkiksg)Kֻ=baV{pҊ8w~Si1I/_ ̐V*x1J1P$=xQdA2qQ`ߑ *5`^AV:-v ?o֮Od DuPM1lIĚJiun0v_ckTΚW^Gԭr1{:T}*95rd9[C*$Vr_\.==8J^64φ~*B0ݻ‡QӠ}V g@Jm9%|CwPVXGFK-ЧJb̔x]aL+0 "j,d  24 /n6yMv%v:C4K%?IWSƌ! S:gCv#t,BMR=a42QզpV.ߟaZqkܨyHMuO8 ZR?U p>A-~%et_bM|F.eלSt.|'rO=MB~a; ׮zLCw(?HCqzƺM<S4a1H@ ML XF~̡Iqsd<"vi:&;K?Oh7Tg+#hu0 L'kdPz5cg럟ڈ(!^J!Rige%'^jk=}:X69AEuin_C\ʧYIQ$w>]>EB۲0,?UW4}=X 4Xlŀ0nS F(%#b[R 2jN20n2p,칌DT%젿' C0 BOޘ.LH=΋C.0iJ?(klgbG30"RAmB Է)3J#!ֿ1?>͉lm 5;ATb,Tũݎl(ʷYwKɠP(/M~E/1!3#9A<0MDbZ2@ٙ 1.o|!o'pG]BM6)YFpO|1<72~cHa̗!#lIՠbjMbV XW28 ,/7 , aWZqG ,$R{FcԞVP62P>el~.SKIL~ hWO S80L7@,lvoçSƈ…uħjػր7;,Eyiɕu*J8}@t+>UStqJs * %vfjTl|ŕI1&W4g߯ecJ`?V v?I^[Xh; keb''dVXb|+0{4#Z{p;IQiw>ZXp9kCYeޞ'KRw;|S.rUU4wզ.4#E>`ψ4Ǭ RlFŋ8#D_TZeqow)!^?KDk8#2/=0õFOb~Ug5۹HYTd_$xyϭ jVMmBb3Emu(qV*Eo )3  `" 3K^wG'6&Qnw'ɐK9l(:y``]{1x2@Ychf8נ^ oh i(/nqߺYTv3&_#'2.@,w+ͣi֞2y^nG lڔu| .L@)S)C&FUj 78aT6cLm" 2g~"zBe(!};`I'K#RcT](׃ߚ_Ve Cb:3xQ|Ҷ%\ *21쮽gE* (n=^GL#!/'<\~VɄfޠ&NQZ-U~ ܯdJt[`j>>mؘRp+nt ,61fٳߢYAX*9So?j-lyKş hDjc*%!8+tٻSt%Ë^+W%(tMĨ-2ф\nt'=?Iu4et ^k,t7B_{鸂u N1gVTfxZŗзmev2PB;uj]P8r 5,.׷ A&z#/ך _*w&iA.2J<{ѧG,ͮۺ/83ȡINHIld2P[ժhB{+#(󒵎B5ibޕ3O#>7,ShـGeEPVtzzx b+YտrrUM'LKtqx3ưp,LNSyiA;&.q%_=Tpi~gԃ4o=}2RJf7PZ%Y|g[;AD"~N8 F f#-8 P5u1Y * :VeoCgL,Qa~#Nw{U>>R x^Iܼ> RN$-1rd:(D9*^j>9 L"B6J[VR|,spCoZaҌRUuZW3OL3j4m`t@G+c*0iKzA2ӣ1#EgVOLg;[{:q6$S)Tc+Eʃ!>nSm1N.G߸iֺNMB.?I3+󘥏-F J(C(R_!ۛWփ$g=)!(r|aRsLy AǙ`wZM_ztyY4ɺ- DxGZ%2;=w qb2Jz3A4˶І&o@>)VCG7ƨ$JP{ޥ1zl;w^9φÔz/i,FR!̠ Z!.Gf/ׁngh(y:d{D 6b{B.x[y&8\̾[$*tpȓt%ڱ(|U"ȒĈUcȘF3DHv&Sۚ1|ݸ ;s/HV!0z;\r1JUN 00pJ"uMW]ej„|n^Ѧk r+^ք9A`8x;ջi_ 'S_=ue ь`YA1{0;N$ fx]`%r>i[Sck) ^Ģ ,:!W͖6@KnސD,h);0Z Dt P9y:b =εj*^-u"ciY_iaeӼ$wM(JHNq v663.m4'~Oayd\+@(Lp34LO5 o&Gn.DNrNwiY:=p|u㝠Vߞ9ayz2g WSFQ}17% /4# +6hӽ*XEʕ%g`A#^LS1F;K,1UHoՎ=R~=BFXŻ6LltpEA2|2n^QkuU+sӬ<;,SQ? [˷"KE0rh 64Q)@͵; uISZ9^fаU޿hZ$򨹳LI5{;]4k=//1-lic/JO%Hx}/A R渙p2f{nIT6zYL4_ʍ cVMAB0jNx鏋tJUJ# 1IxHrá8]$[~%iQb ?԰$NJM:lUxǙG_e!lN@guXNhw-m.Q-t-J֎㍗@fW.,02hV?&q~_|L7:6}x}$9?}PrF1FBrFd fߘFЯDhyd\] M}YnN9 jf L""@I$Y XfOrCaϫ8׋]% aԽPpRJ?K7Bz V*%W4I:]k.k,f)r2p#4) rk„%Z cV18y"icJ 0)d. X|Ҿ=EK@VS7[э5pmbde궂(jdSYI {!Nn+*کhdlJe+/e%r٧/$`z(@TatKʫʤ >ʇ7 AAV @`%(NҦ*HbnU×G*Kt\&Q\$"ܞ[\4c3 e^$' #gRE恱5d9 Gr {Qo~Yf$Ddd9>CO싿HtFTF"^yy(GvB@ucݴOs䩥hSZνKO/WC/HSS7O+P62IuzF2T9ЬP~)<} %=cM(/Rkh502p?ybԕ ]x^2y~`ɜV0ULgGEm+5pQO$[jMee+2pvBCw ";31撝 $2kCj1rp5XmX OwHrH{DZLczj7ĎYգl,o&!yQώ&}g$Ppj%kӾi!d=|@dPQDl~^c#8,7&0cAEx2}ah~ch8Y־ pEj23)Q`̂pv6GFSR[-R.BU bܣp,*~Z^r[61zd;Ő|5i&ɩQ kNqq ԇuÊvṛV@e@[@,0w$ 'QO*B!plq|?F;sœ]jC _TѬ,rlevݗ /1-VyƈKރ' +Z+ngi`s5gs+M%y3rՇ̖tx%%|2jmTFH"윯My.OK԰7L:7Lu(ݠN͂x^ e^-Ŝy ;ycTQ60y7yކ?VeYށhRhc#Z .Tlra3s4К'gOg8x)FyDl 9NIo8؝'ޝMkq}f"Q҄e챊T+($C=[*%7̽BpIePvS]a}b.VRe+{D9vfl\(-~폺fØ 'r'J C_W7 1e93Vp.R]/z?I"_T>^[zҏpr!oC*X ERH%z[01MǷd2}ԑ0U?LmĐ0$~Vg 5|4q BTBx@rI} cMYRf5 B OϘt0yDpՊ)U('⍝WDN=o).CJC8I}!R5/擠Y9#T:FoB=ᬱnGwvjcƻn. \˯* {]Z ÄjuM|Ջ ) |zt;PVJ)f|y#T<$%=nϙ~r\.g,9r"iW.7(O9jp2[v(33jo[Tgeߌ[ kauKS#~og q:ozVuģMK4hcJ+{x#aLN5+"fxo:on;iEwZ9C*;/A}EQ5=¨g4bR#?_=s9D7u Fbq)]C)&',/17+u8r*ѷ~A"G)jMA|>WI4=46ރ-!0;#MYj!6 0@f1zv F@7 |V*K K,BE 6[FA 8n(|Oc>aILBԋk݆ά>;V?"1FG̦Mh΃kT翙Cuű Rl9{+<Ǩs3JZl!NJs ;1$%4`@3|mWj'UscI0N;5y6[%a 0ųx,yZP@r K|KܸN}~QZ!{ ] SUv3"oϟLEyE'ukZ,+`GUa@Kl#o,B36VhUUdm;n<<x[[uS |Py;6hVk[Dܙ6񝯷FOr`W6]LYq`!AB~ Zֳ6̼!Зc=\)o JƖFF]J% D ;$6u4_ \ ]ɨ*?'5 tYOlW47V0$> abT5d#AvbzҲki$2k]?P~ߔ#]vJ:^ͿSaFC:.$L(h *zrj .|ب/l~=>b'mS9L[UШs:XKkn頺r &XYL6un6q:i9щ !yQm-8&2IO˪Yߠ w ]AÃ_0Bq2#s^/MnX*, @B|KlAD s ijz%cWpNc򾂟Rx[q]Az ˌ8xW p?+hOٜ4mWX03(E뜰?$N1+W9ͅK 9Szn;xLEA huUnu[OoAEZe腟Eb3o 7;rk®G9IQFczlEnSa" to johybt@п&>ZG_q +lVͫ}=O$'?Mvf=/59J.3u8QYԻe/GNǽ45B8k+ˠ 2"FNG95x{^[e= s8ZcF8@z+Oy&cٛr xS\;ǪWg2z@3YQf߭\(~fL|z/{Ϡ =n Jm~zo! bfoQS6w%uQ Vyx#M֓_.1֡ث$#8OO"EyL@̤kb1uS`.fW=O1zM=OK.i,tl5`g 0+怆W@: 0K.$=)vv\˥CdһBn \P#mCМ V۷ں'?1JuGJ*Ҥk&%NwՁwcwqgj* .;xJ"PPh #a}OU-}$@-Q|ÖZ\ #_'Fgqۊ o& &="g{4hbj[UY Vdzi[c&vk_A~ǿa8ܱ^(+d(0_m\Sr'" 0C'FO !&.Da1{-RwSnp5niwatvX&/!5R@:1Z:4E߸㇫&34WG&c>Hp¨|.XɿĞ3J?2ؾ::<>`2"WnCcE"+vc8**I@;qQ-^/sGd69*o=*2DKOhzթ^>!ZAo( !20pTX.>RE X?- 46iA<o7Q7R&WE 5tMg ҟyNTt蜪6qIbԥY0Kċg 'ڞhɪ0B 3Y+ NG/@4̏1;ixncPv˄ @1 UH 9V*`9vxwI]ۼLI r^[(@Z+X^JUMxc= ǼgP3hE5xFLؕ7i";}ty 4;g '@4ZzeWy b.>Ʌ6L4L!YCش zA* _1h.%D(-PR⡭A+H׼M$P^+ W"|wELf[20a8x0eu!7P\J.;p.9H饰r?DTQM/e|X U #zk5tWC&٩9ˊ:W##NߝF+U^o!5fc BumuuPI8tKn hEoQGky&Cѣ@DR4b `S%O5܀75gR^o [$a ySZU&[T+^'֏$Rmm _h׋캸)3RXU1uH/ ]X\y;HչCS2x7%I^}<2.}$|œ??) 2ogC [~ڗq͂KYmOazH6B^aSAvL%hӃC&DָU2BW-є_N r!ȤB<6A%*4(mѭ)j冼}>#]x#_K̷m&ɻzQ_Ig!Ϝar.ؔC0(%tyy!X-%iM2A-#wBLeJSb䑅(58\,ȭ(Mx[aڪ jDAN3y@9_lx¶DXG4xX]%7z[8 9 % (8 ++m̴΋oKZ.BDLNw: 1 +хȠZ;Alx4aMB'I6QfSKxj`eG;`Dv뙺\3?nfo@'0l*v066{|b}6M%%\)BkaR{!D3\-GӲ|1J6sP2-gsb.g*Fef?{0!Ufe;-'1(n`~@`\v>KӾ=YL=D6pܭ3z hH?RxTp)e^yEO73t#\nfZW|QֽJ$On8(I3(@)=`/[ RF-˳̄0i:ť *ܔdRz6f &K? L˧7\f݇6/aBi`\F!ޢb A_҆ƶrb3K^pc~a}͒C^V`LӢ;lv PbNF2&_=-o\q\)iOE:& IE7y}E[DvT\SscCdd_jR9xsP,6\pq!Kdf.EDz!9p]6Gz`J1?=TZQD^FݦNp0L!2V_ v +$(k}%zsD"MڞpNeBpjks>%<`+) Mti)A:2r'H)l)V9: r )l}qtb BZ&S_8&tA4ǰ;[@tۗU"ӎPcudd=o.GѠ \F&̵{\ys<%t9CKz`qPM?t܏㩘Mmq}rڹ{j"_,qim!i5q`g=]TIV-ZxK <{}Oq |s$lukF5;j!/ .cَYt!wOX.Qnal,5O.gy@=+  `k\ O.kQQz;lS,MžeA"S lh $StL\ӗ 76L,'FTEFlRn(8nLNN7ºV)!%6!`M8^}K$WKxO/sTRѢZKesm4ȟC  \s]h~U=.m')a6)Lu5~ʼq+cw;rCfGr8ѷFh6ond&Mmx٧0=9DlBqމ鿡B섕jn7=c0q#mSZI.CkW6^`/x]li|٭yb$ Ri$DІ2bI\rEx* S35/4ƏTqn罹q0桰WLDx$9zi >PzK~"5zw諺Iz.Z8T2Hqn-Q'Il@]O->}̀6cx[,pRH^9M ~uʖ]1ޱ0jAxkZ- ]ZC5[am!kr eG0;̈dT|R|+? gjVuIq>˦v0≓ gz x~Cϻ4gߓ+MEA ے<*hõjjLȆFfO[DOc LLd@{|5ʯ}?k]8<8u6})kԹaY!0Cn6l$J ooj2dn6$OKLVJ^yǩlOe]P69e>/v/غ=6'AW 4h46y$ЂtA,[ jv71:KR6(dMqGN>[-Sa\Re>:Vj ͆IA kMrhF4k/Qr=,Or P7d`X<}5CH>YP"yt9 05Oć! VꇩtM:c|I-$t(4̈́h- \^;sMtb3nv_5d uѩ5|Єfz$H P"3sޔ%E-fۖ5+5 9A% a&_B r͚":VL@ӻd?&cFhDdi)Jzho$`.CH-T(o=01mW jtOėdžCEn!QQAF% j ֤!ׯ^z;-+ztf$W Zp>GZM;PsZoԊ&6=C1 ]c&zR"j $Y1TxB+[UeLB322fQ^-SK졇D_&%F1{`VبB1nEmb`Jc⨢;<:-S!R|NpLVlD1 Ie9(mdۣ!c "s>X1DVë( ёH2?.%<$\4h_ayT'gnOjF 㯐 F형ؐCp筼GL|ヶ (0qTegz{y!|i{k)_&\<͕Cbt//I6^^w2JQQןZ[?Bm}$tdJ{dnjMe ,\))V@؇ϔGN8,x|J#"}Oj1BpOƱ2k [E0SGDC."Ws \ӟ`ѩ+}T.Wy9r %FChJhPQ< 8:hNHiUׅmؤ8 zUM~<`#y3P,NfXO=>(P"I/>seZ03{2U-K&l #w*VQdZL|X=cY{a$@:X`OJ}J}}䀇Z(KoP} I } Hkd_kzȑ5[A-;8w9=T<$}ra?NM-ztd~EӔuÕK||m4I,wE@H@j ͧkET 䁟Ӓ1Ό08z(f Ly+HN+aSzT-+a,;ZWaxG@}Tg]4Uİl ܇$O,OʱDA*,`h]Mis5!` lm1q8i᠁PEgz!޹ˤn6;V[dL >-Mc/R60옂a7{7ly!)) 4(kQT+UrV,p@>o~o+<2U85^+Fb>[S5Cg/Z:d2Ҧ$F лDJLVro2JJDȁ 9 1ʴ oV/Zך4b2o̿(\ TsL~_Ӿc;Fb* 1ȝAL!֬\xo+VVG#C.6 d1UVJ Ŧ6uo>,x@&^}kPY&8TluM@L"җt~Т© )GmqL|A#G/(ѫɴz KvFNwq7M0@o ]sOJ6-<b09IC82 l/EEȄL.] j&Հ`Og6ʖmv7 D3Ռ<Ʈ匦k6=@хA3Ce0RU :2dqgŏ;VpIZH@(29GW1!j4%lcnep>,:ӋN܃؂.2%٣rֱ20\mǥ2,q(L2rm%q/`iOZe_KQjn5wiaWe0vdTj)>!e툂SRV1*J ˛^%Jyikczcj)ڢ(| %\p?X:`jM]4lss<%mr oFRF=ScLKac';U 2AvI;e<,7˲?9.]⓯S _k]W8jjZ#bC\~yP~Kq<` 7xs{%6RWJnMV(EЋm*e?B2 t%n[G>ikD]ladTi48(\"+PV<j5r84t"~Z ~_u#GE)̉e#X5?Gz"NeQxdPPQD-VU y~A}ѧ0 8zzt){q0T|chYv3Щo 7UGԓcKto;T~^se6i'Czˍ[3Xl *3B0"[2p&=)V?\?(Ue\!KwV._f3ɡJ o 3ymJi^a/Y3YN)]2~%(;+ ved[(7ajRL4_;>fCXѡoE$Q߳~ҷ2ʉΧ5EX ӵI)JrO%*| csq} w2sl/!efhK+a )"HohLU k);&+S:9}<#?aMds9H# k!_ N((nv1zȗ;1#0VR69{ SB6[ NQVg,U3 od`J% tQ*Z)`JL?7w@h1[،(*$ fk({qg,,'x}[mz#w1jes >p| \Ý@лc*npLa!I!UIN%C`{* >ʝszyt.[%WKQM`s5N^sêr|HmhW ^tMzy5A)3@>FU따 ox~C^'Em3?B8*Ŀۦ4jE* -&cY!A{ro2p}))#jJ̩NO뚂{^H E;CK;_CY\ʃ;^6Gi76傾|N>F^>t`VUm/3cKSUp[2"F?gֺ.G-A<#UR[I%i݆)e>jԀ5Ew}a!W*eT*F&Ǐ0sQ3٘MϘ`bHLHJ>XvBjkB9۾Z gm4>W*4YI0K57Y6l5V0i4V^1^6VB?\ Œ#'wLeǴp/]kBG?ЋA2mK+\ۧp qQ)Q#{9UOH'Qsf -׵¿;]&ha;>1;KAܚá5(Д#άq!GA8^&(Ma*'y4eҌd2w!M@5&:?daݣd^gXP3 vY'eQ`KT5fh Ӊ=7?x @ځ=ˎySC&=?V-7^t}9`Pi%@77ZhL3vSlmJܓ3PxJH-(~OLL&4S}]8VÖtW4&ĭDuT1sTHE5xm'ygϴYe* `TvllI}m&Dj{դ^R,|Žh &_>ex'|07M@vP=]7 }>5#dj4H<@]6{8Xon9\ Yطݶb}8x}{ڞI;nqn"PҞx-N݇rlQ)hۦ,jT.JQSAG:-Z|Q6uL+C*]nbQSv()9o1v>Jq#$ 㑣Dhy)041OuR)݋)hsiRR,+UY !^M%,`)bbh_2<6SFJF1شT{oFJzy'3Nf["tЊj"{o% u @Ex5͉M{[nSWO ZIL{: +sJ& SAPN Uvwpt' CϸhCN_ow*o,瞈9 uAus::{{~t:4kz oR)'&k8d7 > , Wg }]dGd3Iz{J^VgL%2{Pf6YN<ߑ Ag4(D-ٟ0`^$BO!r*D4,Hzd+$Yyd腗#oλ]X&mR-]FZZ㼇ͮeDD=?2mplAu2>p>OxX9Q\n'lkC^HIGRMkycb6Xk#tZ3Cy)Jp|E8 iW/^^%ߡАXQl?Qy6@jWygf3ZaAan8od/E8&=Kr?QyExV\WIVHN&̆d8V7A1ɡ5^%8p34 : _!޺peg<0+Gd0bJt94}5J euk֚3;S}b:9Mf"!昭y}~?I:~]c2 >r!X"i0fXu 4 3vk%eS#yZlճ1> o(rr܈Oɤ+Ox((0MU},tE|_))H TO û)J dxZ!1YͲi_vƕ]V[%|pBI XϜM:Db%Xsg$90 ;$$(pq .{e_;QYuY(Bk&фǥ5#Q܄m ܈?Y*E_`$!5bQVtSؐf &@ka m|t*]L m| q" 0Jp}Yd? 7w5n5e+&fJhWzRE:u]9JI"1\WIYJ^˃ͱ‹﬑RB w i3Rdem5}\(j׳R7ùn"K `$'Hk$NľpedY^vYGM{l{d!J"< CBӉ[EnuпDTK&'Gz\=ww)6a[vmC7{-,T`"\ :8׹#NZ)Aзe9*zőv=B)V?aG\%~󢐊W87HN̥M4Kls >[9/SC/BY*mDFPG!խXvDpF4D:i{]y-Йw$gBV?=Ӽ!3kyhA̐s@!hi2^LEӊ 3)oDc,&m(F 2tv! %NAx7'zM3ˣ924`Aw8627#eҶB=rD#5>AA\۟qи;t "(amؑ VwVC& + e+dSDeY3=e_gj-8PGnD-Y eoe [{ꬶeq>Y6v3e냌ޫG|7-;.-KVf56D+z3gg KONZ@hc"k*]F1Nm:‡4I~aL8{_ 㬋._fpDk=P6y#&M,s }#E?b`8._q!,iUdNE9\}|/bnBYO-INDɂߐ8FN2_RJ\$eJ-.0!a񸴗ұ|=YRZ,;Q~C\Q0xG`ŦњLڢ@׌2*C%L*N/Q1&SĄYɼJ+o2&ЏcR5JDO1\1^eq `8٠iE*qDu4XN[`xBWR: vGosaxپ qaA78Lʹ(6.UѿJ+Β^K gHEmYzva{`×]Y1* p1^$Y`2"^mT({ >VÃX1#+~(2h*xm$NϠCķ>* 0m. s-UfJY"LI[/~[ ?Ijiw%*v/*ɯvsm$&,㰚H́,}z5(/<⇮5eA&Q #F\\׶]D[aȳ%CxwE!oN@y*/ޣ{6<7RnC;28l>3ec˅ +Rzf%ɔL>풤& !tPINZ@CjK( @Ià}OqPj'[yУW$ӣl 2W- 3jW`AАnB/swdďa 0U6m3bc1y$k0^nlػ%aşm78m8E…'uv[:ʅB;xFHP7?b1$5wc%X^gž@?}Ļ~6^F9{k+|ՄS6]i-5\֤FĄ΍42w BKŷ< DT`Z_?)@ܟ1]Vp*l+RVПT1]`$i.݀}A1|XG Ar|y("|L"^qPi7fP(L-Q:\U_2;v6O"h,{` {*$l:`^ӁO^~zu3#n c= ICIh}1;ݽ > NJXd֯vyBxL!޽5=\y{JߝLhIGxU@<"N II sQ\xFYuXj#qs 3a!i"pjAVqyA"; U?i P_c>k": *^\Ջ3@[ia늿~O):oΩޣ9v_}sߖ=v\]z@28@a,ҼS_"g`b78o)\^ ] 2Ot+(6qLؓkT ?m!vc A~ƞ4g lXxaSʡ*9u!ϭfyb"쵮$҉K2lon[؝O:4?K('HZL$/{D߅|[1b8Z$)XWV?`zMqM"&J'7w֞%pgrw <>\*m=AaOɟ4pnɣhho얋NEzzeٮUW Da1!naN1\$.y܃y8I95OQHXT"۹4R!%ffm / 0?zV{tV Y0V5S:3Ej {J{fϕh^ c6Π rbz8J=7w&2]m' 0n1;g ksEVw,Sj?.T7pFŝXO/)+M4t=إ|T'+#g$:js`f3.d>9<&ͣ3 ,0YF1pI>4GNWJ >) RnE:mAw?t*՜+ \I 1c:; Uu!Ny5Uoa,&gMcDB&KmiXӧA@nDuOCB:Swc{; 6cDb*`d <| NwE|RaavW`.7&A{ʮV.U$tS2 RY瓝$~9j LkKխ턖Sb[' ԭoq_[]De!%!%4X5z?Q9PՄWeM_tQq#DDN<O]UyUC :!k[7C*kj  :B,Z:u(&C&P6[c;t8Q9IyP|ߝAXHs~Z-*O fp!<p,e{LM7 0Dp5 {*%kMlzӜ10q<52[MFZAA`StN,F urX/wgm*R1W9}ӝ~y" @n_ qKWtCyg2RE8{޼=4Nd9e{{&uI*ݪ+K{l›&~Qǽ )];ZenU&AnDWukSؕ]a(C)a3J6Ň{W ϖi;:Gagԍ_tD{}ѻ =ܐ8e7JNoR-͎bɤ-cB7}HzKreE}r~4&1</ʹBt@ݏNYn^Phn/d|j7ĸzbWb}7Jؽ)%PK'KS<`%͛Sx!,#c7&87Ͳ8|k4kb>r5tQ-]`T!ɔhOF@u!A'x|{W2CGMI48eseBYO  :'LC(fVl%옢=I6kN`pcakTږ&9Y0(.,)]4N"֟TrL_h3:QcN0J3UGSN~_їc˄=EDG/!>\՝<Ԭnrv5MR9V؏8쏸@UF3 a(kFE4<ꇁG|{jO|^q+;IBD;O釹 gڷMw X`*.IZNq'H83FA^MZApV2lF[eڌfO?e&~|h>evdíU?Wdg$8oqg-B !ʮ0/G(%Ut'Ƀ_ UKttmUuQseg+Ӄ*`D̓X#!ܽO7tb[ f JXn-Mjsie1`xrʫJFU9Te𴠴vj$Fu"5 %e~!73݊G\$Op@%dp[R\k 01^)i*تX[#' }3q8^?*@ƹXリAne xv\F&="͉^modBGYdF2y`R_ h W@圿5U&^@'Jxh^wN$8lFC"֒!e$'^Eq@[z_bˏjnui\) Crlb3W]s5hE%NkG,5r ^pJWxp=ᏈJstG۷Y@ȵ]I5SOl;% ] ҃S׺EPX!;dll`6~{䐄*/FBm]'eX5S89 ё/$#R59XO=NKwZV7937;ouWdmZi¬7>CQp~n؄^^>E{ɴN6сe&sJOuSF`O:(WMFp.RFlZ!j30oC&R|`PÑiK;bxOR=Bٷ.`7*7 O 4L,a'pY!e?B3&9Q]O)eE8I3_/zP"t$[`6(3qmct p/(dVw294:yL;f3 *d]F8Hh{C37 Ӗ"Q } yV?hYn{ǧ#d'.<4_fnp&*C. yLAdù][F)߆LP.K N<2"*Q\F]Sᬇ,/^V^H*N1ݳGNd,Q͋%X] vW7bqǀAޘaƕVf+ͱohڲt\*IPm10VC4Lu[#< mvv& EE֍ )i57I0Mݛ Znٴ#cDޮTk){$E"r("!/8Sm LuV= ɸU[6GE}ۼi~I6D2=Q!oJ ZRν-]$PMْ'Lӵv"@*WjM$î?VCMω~IU1bf m\++x$ݴ!KCɚkJb57f#D\ቇPd&?Mѥ}N68 ^̊fp80]1v YvµbԔp\?MDɺΎ@S o *M?&E/a Jt9)&:Ii_Q4X=SKjvJB{!c\C7QL \\8Jr'\A :>kt(څ@oRuO"b^$FV향{u!`3 {k]L(@H[|_]z=yp8eN S/<:ސ:շj^oqU3 %pxu~pQ*}ȏG@`SR7ht[4mwCjLa4E@NFd=BD_h0D@,EPZx$ vpUS?&"2?̤ ')d]PI$ KAEB|ޚ2hqhBE4ޗq.BL_h&,0# >&[#-NP#·0m߽n  }:R 7j7C~|93y9BU5" ƯpDΨB_!9ƺKeeOC"eELsZcld%5ЅMvCg}b^w'|}@p_ /z]/JV޵D~h?[)" ^tBZBJ*s:7u#W\"*H4h&lSrb?ާ`jRKb9#/70K}m;`UXB8E*刱nvєLuA0 ]6?C/f't'|WJ@$B' gXY.ɇ÷' ))?ׂ~sdO.vp-=#]27x7ģ5m?,DZ7hD<9zZY~f!O>˵0MDپhA,ݗYD#HtKfţ}|a\CPO1+Ʋ?0'ιRM 5E͈)K7a-NT*8d|Ɵ&DUFEzPDGkڱK}vyc$b0qc ƭJܯM6?י\J8RuFq')*붼̗jbEe4񉮜GIΡˮAA6Q(O{nSw&970+NNN.'\x߲Q^']a󺹰*Ufaӧ,Od!~X )BtL%N ^.EiS C`C@,յooC>`A|jF|V} (N?I5LIBQ݀8YT0CnEgc]*@R935^!\J)^|9\Dbuog곥:YGvmZs՟1HDwasrhV`\jq w 9ΨJZ3-S 5bnI_pL_Oa'y3Bڋln$`zŠ\H8q֊Q1U\av'X#P,e[ ։2܊Ϛ(8ĩ s7b[W5n؋ FB^qBw虚Ku`Gf* ]g5{VGS"/Y @kcqm5BinmWX"Yoh'JcmJU< +_1E|L&p9;~WzIV"o#-8Tws\9 -Szi+:2e4}MHn\,?q%+ ܸt\yApKݬ"'H"j}]rh>T8Dniڸ/HucBa6"@ J3 [M!L_N7m(dNkZYOo~j=$iFE]Ύ9Vkaw1zuv8TV'i.Bv4̀?HrO`s̈V&y| k\,{x Ajth &b?c{V9m Ϲ04l{UYܸ&m*BE*_ 1+ U ւ Kw- J#;Dz=ccAW_",˜}1|+xkO"y;MN0N L^:Zs\ʕ[}uظd&};9f=]S4Pŷ9ZosTS+݉M9LRVeGX}=eA("zcb:6`pN xX,λ ƘSGb3`A!<̧I@3\ 0v?OF3oR$l.WeT MIPov-iIŰB141%|5$X>b1}kQrs7M9QeނH}=0+!uM 68R^TXQǨ^dM^&ے6 J!I U_8Vv d{b|w,_K؉8`:·Sе5$(k;%0_Iȶ4)!*<~$_5;ƾi;vCcx;QwbHy]t _Y{8aFsG/)F碎ţ*߹i sMhv ֟o>侙1H4дmG,#4",[B_\9P,uj*t'ߌh:NY6]q -w_[@d;G\1|`Ӟ{a%X8~g}ڹqMhS*!g[DN `>-ߌYv+*"": Lt&P}mP2NWGafw>Sr]s*ֶؕWdjO+ksbʻZ j)uCK7 Ib=> kX-Y}s q䇯aVi=>+I>OcVWj=GV#Y2Ŗ!OAוJ4vq*["$dRiݰM.DnSM~wp mH绨,a"Da1Mk֫#jVfT**I䴛FPUK )ߝ0N^+_p=A^7x}WBԾz.-ݿۻQ,6q9/Y*v>޴wεc(B| (苴#NC Dp'h=t![034733N_- +U+?=}Zy*k5zE#S;>QG- !$ޣgib!3pO?߉hpOمF;/_ѩE5yTxg# 7T:jHmg4WA\vrk.wL^:a!K0E V @J!oF|}J,8}FiU}&P@OBub,zYӻC钰i5z`eT} )'i\u-O<ζ,K1Dih)5Ťvsu`ٗ@E⡂H[ށ*m:km}Kc-1iCPRe |1w=TNޱ/giubd/Я{x^6o)rg3 ^4vNV~ GN>jбe쮛֍o j۹wE`A5t'4Aŗ;MWCɳ?I_m3_/R8Ja&s8cϹC|ۜ'gSнfLSvk=UwjL}|s!tM>Xsn(0+_gRy_}PJR1 63’j@fC!:_$%=Dt"U@T'JGU&ZGܧž/gygo h$%YCN&H2BӜӊ`U햧p%&__;K\,t>9zoI l0QUr`ś*:;<ݝbyuz,JlLvC,]|6yşݍP}dpo_@Gb?΂ux&VѾmO}OEi"j‚N-BRJOXJLK 5A5Cl=>I?>ۃN`x/9Y"m]>h=Gvea̖/RŊ I%ِпlBYKBEdQľL)0:]A_/V! Q"0sOi0i'țß\5lxObV\;gw797U!{MyE$AMQ*9{rY/#77A` @Oߊֿ^Aui+}]ck,U!aFL`"CaX:QXe}NdU n/xYSW)@VmYlJ C`v (j)8RF u%AwP!*喝͔ژP!MR>E?Q fd]ҪAW' ޿[$H8yrP'K_j4϶ָl/ < |ޤt- uMFm/Kb~oW/hra{dpLqUOK&W5Գ/6qL?,)[뚙{'$ӎW:` Y 3]G: &'^F?8; *pNAˆ0d.q],۽ٲ O5c+`\ݰ#fWʧa2#fs<r_p.R׈0y9ʼnduԔhZ4Z]q}8)R^Zn.קfͯ-CtՆ\E2q[{׈*i2pWMPW/)Y>AQTJ96wԟ͙bmZjV|$eG.D; 32hk GA$S-4Xsd"ɠkFP:1iGЪۦmlxV ~u h&58.LֿR贒M'5^5^͠os9Z6E/1@)NueiFӑ"1bs\Eυ%o ʢ.3M)'(o2n{j9 ۲֏`K~:(|Fc]WNTW%EA^SDpŒ5Ia2΋y2g*^H3;\.ͧs"lDnPr* _7Xq{,CS'W ȣ0 @Tw^pbZ%$%{90Y`a"pIR-־J%v 0sc9)T kPQl_JcJGҁ]q®rp\lmIS\eԺr&%y%R\M QvjNAaa}]+eaº$m$ )-|Al6vAOw ͘Oj,}(a@]H,WI=jAyFU卿1=M1z'㐸PP;w [ "y㻀 ѺY[]\in9sT40*9^|>ɡn>{WY[OgL R67p'XཪB*%{bN񺬈[a*uq;rQ1X!c@l֑xznBB.T/&O# |K(\Mk?C|<Z^FaQhmG6ke4׼aڇ~A?QvKC*}sB@KzK#WCܱ$@`}~+јh b J.n@C' A%2C0{$nR|CѬ+Ҩۈ2\'gm =:0SDa72ɒA+|I! ׹yR1:b;aQ@GyadHR@fSd(h t@Lim9̈́55-PoTc4D a@ >V~+䨐r Ji!H,7l*(t 6!Ԯ$e&_5q$sʄOq=:'2`Wlr޻#M {shܴqaG QYW<(3-jm-' qa:qڜƛ,Ex~3/<,P ~U84#5/N6jXgH@׆b|(6'1"i>ÝG8qBǰDO]-M>b.] ~sҜ=>@ V%Z-7 ..{ e"߰{r+isM$"}p3X4rVg N1K -m14!rbN`[Y0DI*M%/qx11CH4w+RxCRD+66`{ض2; //Ή]ZnqUljsՖ6ြ19^ e+">` \ɭtU1W}J% FsvǼU-v֤Bg?aJ`=n[PDf. Yy. _v+vT8w{] ٸv Jl3}߳(-HWPNB!7Lt$ZEd0h!R#hnl^o&$ROCF wv7o9R1 ;L.)?=GdM\u;]=+A/,*C h Y_V^9?M^XObyZbUj=Ņs"aR)]opFG83y>|BL&c7X \,wQpNapb2Vx y>"O>'t :Gyi?ew#8tnzRE --ݡ1 tq5KA|= j?BQ,GY =d4y0I" dS:("wȑſ [Mnw3J+:=jR#CN.ns"O=FZE,FE\ ́[zވ #1 j6|J 3ЙzE"52mcu/4Pc "9QN8וf;q 1?TtrSaxSbꖭeň ڜvD}^}vɮ*sxAc2L̈́tҌP(: 9ya>9Lį1S gC.l5ܲ:/O޶:#m<#>qzZ[f/ԑ|ŸLd԰\?NAl#}SU{b{,:F2>!B>kSYq)Ԓv]%6{ 0o:nMp.T4MӉds^ v^?UKс3z8[@!nxu2g9D7apqSvb|O GzaD,Wϋ`c^:9r:cd؁ U'|})LE(%2?s'37%vM/NB 8tPt棬B Uɧ d9tp&BZ5Y7½p`0炭VuEW3S<_|~"cؖ OU_7#GeUXDiHeM.4Np h8dO/޸DgD"frUU,֧깏ts+4GB A ٟxW@"*o0txy N ]FI)AZT3Zčgby+q? 1E{PɧDFY)4nla $gng]`Eaգ?tx>m3 :9)Oc!'͇tFfH!˂2J7a93;B(77׈5,`eƟ aX!<-_("\qdg^SY/iAg@Ϛڑ!/WF@D z VI<8Q&̸pr?话ciѳ3󉐬ch~8qdoë/=m-?C%[kzҐ!Ug~ESZ3 `8ѱDs=38 Fj޵Ɖ uşXX0%1頼y+@ta*~M̰7u(5Di(3s܅ZItTfb[ S蹤!Y_ |*hx&`4 UtןsUMfpQOBnc=:KEQd,6&L2s[(kȈDnY\& Pq;FBkr:2(E-slmjY,h!]" p2i+w[;"}X.2&.bFW-әW +6r'j<:\(=sXj`&&#Qx׶|]{+Ik(|α ь;\(9(m{On Y (ɣlUN9 .[o(лzv6ATب\|N1qSLi+v2Y5 kV'/:xPªDQs8X:5]ӹ4isB ȤQ`[p-ujE ,4x]8rryuI=[E,S 1hѐa_Q1& "slv?C $\cdo}]9ndiW3auWTwP`*P Z|ʤ-u^JÖ 9p vˉY"SjQs!|L{OL(+EWYBFd'GO%藸sr4R;;2[Y̸^?B'yo AiH'F4s' =/⇨W*2Z=&W.ܣNX(.]s*rČ.CS{YN-C.'u0̥ೲ5K=+Cz^ hj2W)-9{IUuf s=h-4=8M`,#*Xά> i<{k5= tP8%֙k) -i#m19婲g8!H9$mW2KvӺGܘ.ē]uA' >0(jXaއoLZ.AH ͷѠLnPi.xy[W ܫU>odvm]U3xowp9CiVOS,PmA )HoKd浌4f`WVZO| )Ae@,a%p3̗U*Ӏ[F%O$zN]G֏i\&cUP84nzgγL:A|`rQ(]y$34.5I<+S|~səJ((Ҳ? '(Vt8PX4bI ˉ}awt^PLJ$U,<HH lwV\ B:d\?%u> eRS%Z ^ <nj> {?QO6q_^e8gpFK.bŧsW~Lփw*~s8&p?]7~ltwF-c}, :o qB{S0[-mM>o`ݔ$9v @Qć?xVHs]l=_r&sTT9&c,VvmAKz +?nh$ŌLcҸosոi^4r;QF$LE_5l0%u+}=#Щlp4R|ƪ^<``OՒ&?*RvJJ\-y ejeL@oTқ 8j!]㎗=J)@{#j,Nvєg&dtpm8e87Of(<„uHS)g3#ڠ*|<- áŨ@pl&J*"j 9![d[bԮļ:FJb/tlrq>??bI;Sx5:k}ɔ|.Y!FŎIVl0Be:nI[h Xy1f-M93W _D7R6&A۽dS Ζ;^RFRbZGiʏUu¬&|Q[ؚUh$r[mv,;m~Yw9ӓ),(DopgtB0HKqn ߫ / ű1r U5.)4;yF),~^@= F"0u]Hqǻ63_O>;KLV,,VT"3|Jp/apM,cSnCU%i4Z hkkpW.F/u=)o+BPEi+x%&W[G3T'CH"Ks8tf$ѩ UcHe4d%An+qc> c1vt2߂\чqVȀP?{On˄4 I!CH*ϣlMŪNH*@Y 8Mva!ЬUMzi@8VV%R OuHo_&)Ki#۹pk;'+ʰ7J |pՐL9lgA0:o [5Ȉysc5H~n^hx*2%!?o~aRFğÛ(P|f Fj4G2TVx,ڨd[vY!YvTR̀#ʔnwvJA0M`AiT'_.V8ZvaflNanM)Ed.m7 nh5T3GcIT_jUi02Mķl׫B Ķ wC+K>F6ߖ38 G >u 8BP/ -7(@1c+ݡ#Eo r$=$A^H0I.֜_]gtC :b;JJb[kVnwS{mq+tqL^BQa8s]KWNW_@# Ԭf̸ʖnU?eVyyQR)uB-]@7E[`ui'%[i^Z}"wPP eGKM' )K9F!]uo=-q+5L: |Rp7+Y\a+#"YH*M1J ;_ٙR\49rӯzz[' ['RPaѫD5=>Q N IZ2clVy q5fXc|{3~ӚgY-foj.U8ۨu~ fz/jRo慯ez9e! {ȒpFh4S$nQdzId4Ȟ\e9/zXG+ l]:Wcj!|iJ21_2|#Ȧ"`WrY2 G-iJ[ vbd䙋C~U $71^փ'>aEzjTq.7y?,z:1 |!IK/t|l14V3FxpY0*U;!8NPB$dp/z9۩ܱȹESPwZZޝSa<9թ⦐6w<>kDdT~g9= zbh*[vƿ- X WE*![jⳌ K6=qp*uJRCOykEۈ޻'m[lnKDAw=~yHGXygK=)&Q*u[_4_alv?.hSOOcJRQP qZ |v@E^vdB5;BܸlZK_9ac_ZI[^ 𰇜.2pA'1" ) DsiKcQ I3tH8N7}3kyE㗜cq,/P&OMFFNfLP^聙͌"(ˮS):2-"蚌jush_0pL4zs%LcrkcĿi rQh0ː~EL#|@Rbf>N4|~90r9d ԏov6UFZ 9 FL?Gc B"#ϳ'$ 6C1S7e@O[JB1ғ_q'"{C! C,̥bl T6_O y Kc,>8(U,F|n{@= ~y-]1HVC|iesJP'`9(]aAs =C#L|?hRMaK9O5]0Fa@.AJ=! 5G3A#dڳnw$mcuW%yZyApȡiҚd>a*p  "ill:MpͷGFNhO])qPMZr0KWѓq,*ed{;=cUhZ5:exK􂍇\0˔5\KwEb TȞUf]]iz1n^tMQ@idev ϛh~ HXGX~I}Nckd9@t9:d@f1 IΉ5f_%8FKT3L V|^C?y(v 1[U]=0F2Ex1 D1r~O[SE1H- $#RE?fCmM[cÇ)(7=͓;:xC:&ɾ̞n.?A+ɡE.4>X1>EZ70p "Oc@}^,k_kK1 go9DF &)a'Nax.g_'G}(q2G'tn[8. q&N !0iEsB$/}#۸(cKl,pΎj)ْ|sݕ]rYo[6/Cjx1V\FO #h累,!i3IC5,İx;s_Q;o}igByd7c[ -$Xű[kWcऺL`y-D0CԷLƞ䂅!t\]UJт0Mҕ$_yj]/LL':"N܊ˊ?]O`!"Fz©GD2Ht"i^>qM_ GAi2/mw/z4p!ccrHxAtd0&nz}sfu.4X ~$~m|d.eiycu-g&3">Ey+~^ߩ%' ߀/=9[O}ʬtH"y*"'1eabÖ@ [N`0b.zTA]FKIF2^ԓwvM`# %6q&9\k4 GC{:i>۹i$d2IP8ԗfr\hgF0t*!P*M-)_gAoBĺli`ylB.mi } t@ݸ[֏tsXc2i9bRi{YsFP)"h͆w_YXhr6Ve;莟.b(Ȍ5~%?f6U1ʝ@m 1ֈ Ho4D⑅"?\c5R\a9=L/9_#cR% ȳ8_H{O+ k2͟]~D&:0 EpN70Ksdl2a}`sKag,rt i2g |8|zGeHuFRZBdrv[*i\9 zOĝȯ]av !sOJ#X֣;ZӎxVfE(I2z2ɟFt6φK&,s';MkD^!q=tCbh{M/FbNǸ>I^ԙQ{ HThi0 E0'[tGA~ܺ+ V ;c ,.t%}ڶ%xKc6ɲuqup)0-Dxw-kK]l+O:Z~'8BWr0t&IgjͿ{ul2_L7~ 9=nqaFouUr@,JA!&9l}]+P~q`wQ\+e)%u6hOB3 wFڷ8yڣxqCc4ɏf8V"?(ڶ YZ