nginx-1.21.5-150600.10.6.1<>,\<hOp9|Zb n؋ drt.4vhRs7nJL%$ &eIV`^# I=׾z5H?֩͑Z<~Oڻ3+`3!ZK"Wd1tNHu_uT؏93cb-cƾ2i=T~sR>G*ţFp0P̄DUhH`WE+ܨ8lE+p KTLe`S:afZ>OKP?K@d  F>K a2u t 44 4 T4 $4 4 T4$4/4:`40,<,"j,("8"h9$th:+h=8>8?8@8F8G84H94I:4X:Y:\;,4];4^>gb@cA,dAeAfAlAuA4vBwG4xHT4yI$AzJ(J8J<JDJHJLJJJJJJJK<Cnginx1.21.5150600.10.6.1A HTTP server and IMAP/POP3 proxy servernginx [engine x] is a HTTP server and IMAP/POP3 proxy server written by Igor Sysoev. It has been running on many heavily loaded Russian sites for more than two years.hOh01-ch3a$?SUSE Linux Enterprise 15SUSE LLC BSD-2-Clausehttps://www.suse.com/Productivity/Networking/Web/Proxyhttps://nginx.orglinuxx86_64 if [ -x /usr/bin/systemctl ]; then test -n "$FIRST_ARG" || FIRST_ARG="$1" [ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || : for service in nginx.service ; do sysv_service=${service%.*} if [ ! -e /usr/lib/systemd/system/$service ] && [ ! -e /etc/init.d/$sysv_service ]; then mkdir -p /run/systemd/rpm/needs-preset touch /run/systemd/rpm/needs-preset/$service elif [ -e /etc/init.d/$sysv_service ] && [ ! -e /var/lib/systemd/migrated/$sysv_service ]; then /usr/sbin/systemd-sysv-convert --save $sysv_service || : mkdir -p /run/systemd/rpm/needs-sysv-convert touch /run/systemd/rpm/needs-sysv-convert/$service fi done fi /usr/sbin/sysusers2shadow nginx.conf <<"EOF" || [ -f /.buildenv ] u nginx - "User for nginx" /var/lib/nginx EOF if [ -x /usr/bin/systemctl ]; then test -n "$FIRST_ARG" || FIRST_ARG="$1" [ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || : if [ "$YAST_IS_RUNNING" != "instsys" ]; then /usr/bin/systemctl daemon-reload || : fi for service in nginx.service ; do sysv_service=${service%.*} if [ -e /run/systemd/rpm/needs-preset/$service ]; then /usr/bin/systemctl preset $service || : rm "/run/systemd/rpm/needs-preset/$service" || : elif [ -e /run/systemd/rpm/needs-sysv-convert/$service ]; then /usr/sbin/systemd-sysv-convert --apply $sysv_service || : rm "/run/systemd/rpm/needs-sysv-convert/$service" || : touch /var/lib/systemd/migrated/$sysv_service || : fi done fi test -n "$FIRST_ARG" || FIRST_ARG="$1" if [ "$FIRST_ARG" -eq 0 -a -x /usr/bin/systemctl ]; then # Package removal, not upgrade /usr/bin/systemctl --no-reload disable nginx.service || : ( test "$YAST_IS_RUNNING" = instsys && exit 0 test -f /etc/sysconfig/services -a \ -z "$DISABLE_STOP_ON_REMOVAL" && . /etc/sysconfig/services test "$DISABLE_STOP_ON_REMOVAL" = yes -o \ "$DISABLE_STOP_ON_REMOVAL" = 1 && exit 0 /usr/bin/systemctl stop nginx.service ) || : fi test -n "$FIRST_ARG" || FIRST_ARG="$1" if [ $1 -eq 0 ]; then # Package removal for service in nginx.service ; do sysv_service="${service%.*}" rm -f "/var/lib/systemd/migrated/$sysv_service" || : done fi if [ -x /usr/bin/systemctl ]; then /usr/bin/systemctl daemon-reload || : fi if [ "$FIRST_ARG" -ge 1 ]; then # Package upgrade, not uninstall if [ -x /usr/bin/systemctl ]; then ( test "$YAST_IS_RUNNING" = instsys && exit 0 test -f /etc/sysconfig/services -a \ -z "$DISABLE_RESTART_ON_UPDATE" && . /etc/sysconfig/services test "$DISABLE_RESTART_ON_UPDATE" = yes -o \ "$DISABLE_RESTART_ON_UPDATE" = 1 && exit 0 /usr/bin/systemctl try-restart nginx.service ) || : fi fi055  ||g 7F\kKx0`ԁa ugBAA큤A큤Am$AAA큤$AA큤큤AAAAAAA`)hOhOhOhOhOhOhOhOhOhOhOhOhOhOhOhOhOhOhOhOhOhOh0!^qhOhOhOhOhOhOhOhOhOhOa-,a-*a-&hOhOhOhOa-&a-&a-&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-1.21.5-150600.10.6.1.src.rpmconfig(nginx)group(nginx)http_daemonhttpdnginxnginx(x86-64)perl(nginx)user(nginx) @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@     /bin/sh/bin/sh/bin/sh/bin/sh/usr/bin/perlconfig(nginx)libc.so.6()(64bit)libc.so.6(GLIBC_2.10)(64bit)libc.so.6(GLIBC_2.14)(64bit)libc.so.6(GLIBC_2.17)(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.27)(64bit)libc.so.6(GLIBC_2.28)(64bit)libc.so.6(GLIBC_2.3)(64bit)libc.so.6(GLIBC_2.3.2)(64bit)libc.so.6(GLIBC_2.3.4)(64bit)libc.so.6(GLIBC_2.32)(64bit)libc.so.6(GLIBC_2.33)(64bit)libc.so.6(GLIBC_2.34)(64bit)libc.so.6(GLIBC_2.4)(64bit)libc.so.6(GLIBC_2.7)(64bit)libcrypt.so.1()(64bit)libcrypt.so.1(XCRYPT_2.0)(64bit)libcrypto.so.3()(64bit)libcrypto.so.3(OPENSSL_3.0.0)(64bit)libexslt.so.0()(64bit)libgd.so.3()(64bit)libpcre2-8.so.0()(64bit)libperl.so()(64bit)libssl.so.3()(64bit)libssl.so.3(OPENSSL_3.0.0)(64bit)libxml2.so.2()(64bit)libxml2.so.2(LIBXML2_2.4.30)(64bit)libxml2.so.2(LIBXML2_2.6.0)(64bit)libxslt.so.1()(64bit)libxslt.so.1(LIBXML2_1.0.11)(64bit)libxslt.so.1(LIBXML2_1.0.18)(64bit)libz.so.1()(64bit)perlrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)sysuser-shadow1.21.5-150600.10.6.15.26.13.0.4-14.6.0-14.0-15.2-13.24.14.3h0c@gc@aMaaaim@ad'@a;Ha/k@`@```8@``~@`v@`hX`KW`:4@`-@`+_1@__/@_ _w@_w@_ts@_3_)M_@^ϧ^@^1^@^@^g@^_@^6^&^C]@]@]@]]S]6]$\@\!\@\zp@\(@\ `[%@[ݍ[[^[U@[ZZ?Z̧@ZZ_@Z_@Z_@Z_@Zz@Zz@Z7YY@Yp@YY@Y@Y@YlY0X"@XۡXf@X*Xp@WW@W@WWPWN@W8dW8dW8dW,@VV V V Uyx@U*^@U*^@U*^@U@okurz@suse.comfschnizlein@suse.comfschnizlein@suse.comandreas.stieger@gmx.deilya@ilya.pp.uamimi.vx@gmail.comgmbr3@opensuse.orgjsegitz@suse.comilya@ilya.pp.uailya@ilya.pp.uailya@ilya.pp.uafschnizlein@suse.comdmueller@suse.comilya@ilya.pp.uaandreas.stieger@gmx.deilya@ilya.pp.uailya@ilya.pp.uailya@ilya.pp.uadmueller@suse.comilya@ilya.pp.uamrueckert@suse.demrueckert@suse.deinfo@paolostivanin.comilya@ilya.pp.uailya@ilya.pp.uailya@ilya.pp.uamrueckert@suse.demrueckert@suse.deilya@ilya.pp.uailya@ilya.pp.uadmueller@suse.comilya@ilya.pp.uailya@ilya.pp.uacrrodriguez@opensuse.orgilya@ilya.pp.uakukuk@suse.comilya@ilya.pp.uavcizek@suse.comilya@ilya.pp.uamrueckert@suse.dekukuk@suse.comilya@ilya.pp.uamrueckert@suse.decrrodriguez@opensuse.orgilya@ilya.pp.uailya@ilya.pp.uamrueckert@suse.demichael@stroeder.commrueckert@suse.deseanlew@opensuse.orgseanlew@opensuse.orgseanlew@opensuse.orgseanlew@openeuse.orgsean@suspend.netchris@computersalat.dealarrosa@suse.comsean@suspend.netmrueckert@suse.demrueckert@suse.demrueckert@suse.demrostecki@suse.comcrrodriguez@opensuse.orgachernikov@suse.comastieger@suse.comachernikov@suse.commrueckert@suse.demrueckert@suse.demrueckert@suse.demrueckert@suse.deachernikov@suse.comachernikov@suse.comavindra@opensuse.orgmrueckert@suse.demrueckert@suse.deachernikov@suse.commrueckert@suse.demrueckert@suse.deastieger@suse.commrueckert@suse.demrueckert@suse.demichael@stroeder.commrueckert@suse.demrueckert@suse.demrueckert@suse.demrueckert@suse.demrueckert@suse.demrueckert@suse.demrueckert@suse.derodrigo.oshiro@emc.commrueckert@suse.demrueckert@suse.demrueckert@suse.demrueckert@suse.demrueckert@suse.dedmacvicar@suse.dei@marguerite.sumrueckert@suse.demrueckert@suse.demrueckert@suse.dei@marguerite.sumrueckert@suse.demrueckert@suse.demrueckert@suse.devpereirabr@opensuse.org- Changed service to prevent "timed out. Killing" messages on service stopping (bsc#1243502)- CVE-2023-44487.patch: Mitigate HTTP/2 Rapid Reset Attack (bsc#1216171) - CVE-2024-7347.patch: Mitigate worker crashes on special crafted mp4 files containing invalid chunk information. (bsc#1229155)- CVE-2022-41741 and CVE-2022-41742: Handle duplicated atoms in mp4 streams, to mitigate out-of-bound reads. (bsc#1204526, bsc#1204527)- Updated to 1.21.5 * https://nginx.org/en/CHANGES * Build with the PCRE2. * Supported the $ssl_curve variable. * Fixed connections might hang when using HTTP/2 without SSL with the "sendfile" and "aio" directives.- Updated to 1.21.4 * https://nginx.org/en/CHANGES * Support for NPN instead of ALPN to establish HTTP/2 connections has been removed. * Now nginx rejects SSL connections if ALPN is used by the client, but no supported protocols can be negotiated. * The default value of the "sendfile_max_chunk" directive was changed to 2 megabytes. * The "proxy_half_close" directive in the stream module. * The "ssl_alpn" directive in the stream module. * The $ssl_alpn_protocol variable. * Support for SSL_sendfile() when using OpenSSL 3.0. * The "mp4_start_key_frame" directive in the ngx_http_mp4_module. * In the $content_length variable when using chunked transfer encoding. * After receiving a response with incorrect length from a proxied backend nginx might nevertheless cache the connection. * Invalid headers from backends were logged at the "info" level instead of "error"; the bug had appeared in 1.21.1. * Requests might hang when using HTTP/2 and the "aio_write" directive.- drop vim-plugin-nginx, now is provided directly by vim- Add CONFIG parameter to %sysusers_generate_pre- Added hardening to systemd service(s) (bsc#1181400). Modified: * nginx.service- Updated to 1.21.3 * https://nginx.org/en/CHANGES * Optimization of client request body reading when using HTTP/2. * Fixed request body filters internal API when using HTTP/2 and buffering of the data being processed.- Updated to 1.21.2 * https://nginx.org/en/CHANGES * Now nginx rejects HTTP/1.0 requests with the "Transfer-Encoding" header line. * Export ciphers are no longer supported. * Added OpenSSL 3.0 compatibility. * Added the "Auth-SSL-Protocol" and "Auth-SSL-Cipher" header lines are now passed to the mail proxy authentication server. * Added request body filters API now permits buffering of the data being processed. * Fixed backend SSL connections in the stream module might hang after an SSL handshake. * Fixed the security level, which is available in OpenSSL 1.1.0 or newer, did not affect loading of the server certificates when set with "@SECLEVEL=N" in the "ssl_ciphers" directive. * Fixed SSL connections with gRPC backends might hang if select, poll, or /dev/poll methods were used. * Fixed when using HTTP/2 client request body was always written to disk if the "Content-Length" header line was not present in the request.- Updated to 1.21.1 * https://nginx.org/en/CHANGES * Now nginx always returns an error for the CONNECT method. * Now nginx always returns an error if both "Content-Length" and "Transfer-Encoding" header lines are present in the request. * Now nginx always returns an error if spaces or control characters are used in the request line. * Now nginx always returns an error if spaces or control characters are used in a header name. * Now nginx always returns an error if spaces or control characters are used in the "Host" request header line. * Optimization of configuration testing when using many listening sockets. * Fixed: nginx did not escape """, "<", ">", "\", "^", "`", "{", "|", and "}" characters when proxying with changed URI. * Fixed: SSL variables might be empty when used in logs; the bug had appeared in 1.19.5. * Fixed: keepalive connections with gRPC backends might not be closed after receiving a GOAWAY frame. * Fixed: reduced memory consumption for long-lived requests when proxying with more than 64 buffers.- Fix race condition between nginx and logrotate causing mass reopening of files (bsc#1183876).- Updated to 1.21.0 * https://nginx.org/en/CHANGES * Added variables support in the "proxy_ssl_certificate", "proxy_ssl_certificate_key" "grpc_ssl_certificate", "grpc_ssl_certificate_key", "uwsgi_ssl_certificate", and "uwsgi_ssl_certificate_key" directives. * Added the "max_errors" directive in the mail proxy module. * Added the mail proxy module supports POP3 and IMAP pipelining. * Added the "fastopen" parameter of the "listen" directive in the stream module. * Fixed special characters were not escaped during automatic redirect with appended trailing slash. * Fixed connections with clients in the mail proxy module might be closed unexpectedly when using SMTP pipelining.- Update to 1.20.1 * https://nginx.org/en/CHANGES * 1-byte memory overwrite might occur during DNS server response processing if the "resolver" directive was used, allowing an attacker who is able to forge UDP packets from the DNS server to cause worker process crash or, potentially, arbitrary code execution (CVE-2021-23017, boo#1186126).- only recommend installation of vim-plugin-nginx if any vim is also installed or selected (boo#1183710)- Update to 1.20.0 * 1.20.x stable branch.- Update to 1.19.10 * https://nginx.org/en/CHANGES * Changed default value for "keepalive_requests" to 1000. * Added "keepalive_time" directive and $connection_time variable. * Fixed "gzip filter failed to use preallocated memory" alerts appeared in logs when using zlib-ng.- Update to 1.19.9 * https://nginx.org/en/CHANGES * Fixed nginx could not be built with the mail proxy module, but without the ngx_mail_ssl_module; the bug had appeared in 1.19.8. * Fixed "upstream sent response body larger than indicated content length" errors might occur when working with gRPC backends; the bug had appeared in 1.19.1. * Fixed nginx might not close a connection till keepalive timeout expiration if the connection was closed by the client while discarding the request body. * Fixed nginx might not detect that a connection was already closed by the client when waiting for auth_delay or limit_req delay, or when working with backends. * Fixed in the eventport method.- update to 1.19.8: * Feature: flags in the "proxy_cookie_flags" directive can now contain variables. * Feature: the "proxy_protocol" parameter of the "listen" directive, the "proxy_protocol" and "set_real_ip_from" directives in mail proxy. * Bugfix: HTTP/2 connections were immediately closed when using "keepalive_timeout 0"; the bug had appeared in 1.19.7. * Bugfix: some errors were logged as unknown if nginx was built with glibc 2.32. * Bugfix: in the eventport method.- Refreshed spec-file via spec-cleaner and manual optimizations. * Droped obsolete conditional constructs. * Removed pkg_name macro.- Drop nginx_upstream_check module, there is no support for dynamic loading upstream and the module seems kind of unmaintained. - Removed patch check_1.9.2+.patch.- Update to 1.19.7 * https://nginx.org/en/CHANGES * Change: connections handling in HTTP/2 has been changed to better match HTTP/1.x; the "http2_recv_timeout", "http2_idle_timeout", and "http2_max_requests" directives have been removed, the "keepalive_timeout" and "keepalive_requests" directives should be used instead. * Change: the "http2_max_field_size" and "http2_max_header_size" directives have been removed, the "large_client_header_buffers" directive should be used instead. * Feature: now, if free worker connections are exhausted, nginx starts closing not only keepalive connections, but also connections in lingering close. * Bugfix: "zero size buf in output" alerts might appear in logs if an upstream server returned an incorrect response during unbuffered proxying; the bug had appeared in 1.19.1. * Bugfix: HEAD requests were handled incorrectly if the "return" directive was used with the "image_filter" or "xslt_stylesheet" directives. * Bugfix: in the "add_trailer" directive. - Since we only target sle 12 and above we can skip all conditionals which apply to suse_version before 1315 With changes in nginx itself we will drop support for sysvinit. http2, libatomic support and pcre_jit will always be on now. and we build all binaries with PIE now. - Moved the last 2 path macros from nginx.spec to the macros file. (pid and lock path)- Update to 1.19.6 * https://nginx.org/en/CHANGES * Fix "no live upstreams" errors if a "server" inside "upstream" block was marked as "down". * Fix a segmentation fault might occur in a worker process if HTTPS was used; the bug had appeared in 1.19.5. * Fix nginx returned the 400 response on requests like "GET http://example.com?args HTTP/1.0". * Fix in the ngx_http_flv_module and ngx_http_mp4_module.- Update to 1.19.5 * https://nginx.org/en/CHANGES * Add the -e switch. * The same source files can now be specified in different modules while building addon modules. * Fix SSL shutdown did not work when lingering close was used. * Fix "upstream sent frame for closed stream" errors might occur when working with gRPC backends. * Fix in request body filters internal API.- Refresh spec-file via spec-cleaner and manual optimizations.- Update to 1.19.4 * https://nginx.org/en/CHANGES * Add the "ssl_conf_command", "proxy_ssl_conf_command", "grpc_ssl_conf_command", and "uwsgi_ssl_conf_command" directives. * Add the "ssl_reject_handshake" directive. * Add the "proxy_smtp_auth" directive in mail proxy.- Use the ngx_* macros from the nginx-macros package to simplify the spec file.- Moved all the modules that support dynamic modules into their own modules: * nginx-module-geoip2 * nginx-module-fancyindex * nginx-module-headers-more - The rtmp module is replaced with nginx-module-http-flv- Update to 1.19.3 * https://nginx.org/en/CHANGES * Add the ngx_stream_set_module. * Add the "proxy_cookie_flags" directive. * Add the "userid_flags" directive. * Fix the "stale-if-error" cache control extension was erroneously applied if backend returned a response with status code 500, 502, 503, 504, 403, 404, or 429. * Fix "[crit] cache file ... has too long header" messages might appear in logs if caching was used and the backend returned responses with the "Vary" header line. * Fix "[crit] SSL_write() failed" messages might appear in logs when using OpenSSL 1.1.1. * Fix "SSL_shutdown() failed (SSL: ... bad write retry)" messages might appear in logs; the bug had appeared in 1.19.2. * Fix a segmentation fault might occur in a worker process when using HTTP/2 if errors with code 400 were redirected to a proxied location using the "error_page" directive. * Fix socket leak when using HTTP/2 and subrequests in the njs module.- Update to 1.19.2 * https://nginx.org/en/CHANGES * Now nginx starts closing keepalive connections before all free worker connections are exhausted, and logs a warning about this to the error log. * Optimization of client request body reading when using chunked transfer encoding. * Memory leak if the "ssl_ocsp" directive was used. * "zero size buf in output" alerts might appear in logs if a FastCGI server returned an incorrect response; the bug had appeared in 1.19.1. * A segmentation fault might occur in a worker process if different large_client_header_buffers sizes were used in different virtual servers. * SSL shutdown might not work. * "SSL_shutdown() failed (SSL: ... bad write retry)" messages might appear in logs. * In the ngx_http_slice_module. * In the ngx_http_xslt_filter_module.- update nginx-1.6.1-default_config.patch: * remove geoip_module which is no longer compiled (bsc#1156202)- Update to 1.19.1 * https://nginx.org/en/CHANGES * The "lingering_close", "lingering_time", and "lingering_timeout" directives now work when using HTTP/2. * Now extra data sent by a backend are always discarded. * Now after receiving a too short response from a FastCGI server nginx tries to send the available part of the response to the client, and then closes the client connection. * Now after receiving a response with incorrect length from a gRPC backend nginx stops response processing with an error. * The "min_free" parameter of the "proxy_cache_path", "fastcgi_cache_path", "scgi_cache_path", and "uwsgi_cache_path" directives. * nginx did not delete unix domain listen sockets during graceful shutdown on the SIGQUIT signal. * Zero length UDP datagrams were not proxied. * Proxying to uwsgi backends using SSL might not work. * In error handling when using the "ssl_ocsp" directive. * On XFS and NFS file systems disk cache size might be calculated incorrectly. * "negative size buf in writer" alerts might appear in logs if a memcached server returned a malformed response.- Update to 1.19.0 * https://nginx.org/en/CHANGES * Client certificate validation with OCSP. * "upstream sent frame for closed stream" errors might occur when working with gRPC backends. * OCSP stapling might not work if the "resolver" directive was not specified. * Connections with incorrect HTTP/2 preface were not logged.- Do not arbitrarily limit the default listen backlog (NGX_LISTEN_BACKLOG) to 511, instead use -1 to choose the system's default (sysctl net.core.somaxconn)- Update to 1.18.0 * 1.18.x stable branch.- Use sysusers.d to create the nginx user and group - Remove self-conflict- Update to 1.17.10 * https://nginx.org/en/CHANGES * The "auth_delay" directive.- Replace obsolete GeoIP module with MaxMinDB-based GeoIP2 (bsc#1156202)- Update to 1.17.9 * https://nginx.org/en/CHANGES * Now nginx does not allow several "Host" request header lines. * nginx ignored additional "Transfer-Encoding" request header lines. * Socket leak when using HTTP/2. * A segmentation fault might occur in a worker process if OCSP stapling was used. * In the ngx_http_mp4_module. * nginx used status code 494 instead of 400 if errors with code 494 were redirected with the "error_page" directive. * Socket leak when using subrequests in the njs module and the "aio" directive.- Update to 1.17.8 * Feature: variables support in the "grpc_pass" directive. * Bugfix: a timeout might occur while handling pipelined requests in an SSL connection; the bug had appeared in 1.17.5. * Bugfix: in the "debug_points" directive when using HTTP/2. Thanks to Daniil Bondarev.- Use systemd_ordering instead of systemd_requires, nginx is useable without sysemd, too.- Refresh spec-file via spec-cleaner. - Add in service-file Wants=network-online.target (boo#1155690) - Update to 1.17.7 * https://nginx.org/en/CHANGES * A segmentation fault might occur on start or during reconfiguration if the "rewrite" directive with an empty replacement string was used in the configuration. * A segmentation fault might occur in a worker process if the "break" directive was used with the "alias" directive or with the "proxy_pass" directive with a URI. * The "Location" response header line might contain garbage if the request URI was rewritten to the one containing a null character. * Requests with bodies were handled incorrectly when returning redirections with the "error_page" directive; the bug had appeared in 0.7.12. * Socket leak when using HTTP/2. * A timeout might occur while handling pipelined requests in an SSL connection; the bug had appeared in 1.17.5. * Bugfix in the ngx_http_dav_module. * CVE-2019-20372: Fixed an HTTP request smuggling with certain error_page configurations which could have allowed unauthorized web page reads (bsc#1160682).- Update to 1.17.6 - Feature: the $proxy_protocol_server_addr and $proxy_protocol_server_port variables. - Feature: the "limit_conn_dry_run" directive. - Feature: the $limit_req_status and $limit_conn_status variables.- remove -std=gnu99 -fstack-protector from cflags as they are no longer needed.- Update to 1.17.5 * https://nginx.org/en/CHANGES * Now nginx uses ioctl(FIONREAD), if available, to avoid reading from a fast connection for a long time. * Incomplete escaped characters at the end of the request URI were ignored. * "/." and "/.." at the end of the request URI were not normalized. * In the "merge_slashes" directive. * In the "ignore_invalid_headers" directive. * nginx could not be built with MinGW-w64 gcc 8.1 or newer.- Update to 1.17.4 * https://nginx.org/en/CHANGES * Better detection of incorrect client behavior in HTTP/2. * In handling of not fully read client request body when returning errors in HTTP/2. * The "worker_shutdown_timeout" directive might not work when using HTTP/2. * A segmentation fault might occur in a worker process when using HTTP/2 and the "proxy_request_buffering" directive. * The ECONNABORTED error log level was "crit" instead of "error" on Windows when using SSL. * nginx ignored extra data when using chunked transfer encoding. * nginx always returned the 500 error if the "return" directive was used and an error occurred during reading client request body. * In memory allocation error handling.- update to 1.17.3 - Security: when using HTTP/2 a client might cause excessive memory consumption and CPU usage (CVE-2019-9511, CVE-2019-9513, CVE-2019-9516). - Bugfix: "zero size buf" alerts might appear in logs when using gzipping; the bug had appeared in 1.17.2. - Bugfix: a segmentation fault might occur in a worker process if the "resolver" directive was used in SMTP proxy.- update to 1.17.2 - Change: minimum supported zlib version is 1.2.0.4. - Change: the $r->internal_redirect() embedded perl method now expects escaped URIs. - Feature: it is now possible to switch to a named location using the $r->internal_redirect() embedded perl method. - Bugfix: in error handling in embedded perl. - Bugfix: a segmentation fault might occur on start or during reconfiguration if hash bucket size larger than 64 kilobytes was used in the configuration. - Bugfix: nginx might hog CPU during unbuffered proxying and when proxying WebSocket connections if the select, poll, or /dev/poll methods were used. - Bugfix: in the ngx_http_xslt_filter_module. - Bugfix: in the ngx_http_ssi_filter_module.- update to 1.17.1 - Feature: the "limit_req_dry_run" directive. - Feature: when using the "hash" directive inside the "upstream" block an empty hash key now triggers round-robin balancing. Thanks to Niklas Keller. - Bugfix: a segmentation fault might occur in a worker process if caching was used along with the "image_filter" directive, and errors with code 415 were redirected with the "error_page" directive; the bug had appeared in 1.11.10. - Bugfix: a segmentation fault might occur in a worker process if embedded perl was used; the bug had appeared in 1.7.3.- update to version 1.17.0 * Feature: variables support in the "limit_rate" directives * Feature: variables support in the "proxy rate" directies * Change: min supported OpenSSL is 0.9.8 * Change: now the postpone filter is always built * Bugfix: the "include" directive didn't work inside "if" * Bugfix: in byte ranges processing- update to version 1.16.0 * 1.16 stable branch * Bugfix: segfault may occur in ssl_certificate worker process- update to 1.15.10 * When using hostname in the 'listen' directive, create new socket * Port ranges in the 'listen' directive * Loading of SSL certs/secret keys from variables * $ssl_server_name var might be empty with OpenSSL 1.1.1- update to 1.15.9 * Feature: variables support in the "ssl_certificate" directives * Bugfix: the "proxy_upload_rate" and "proxy_download_rate" directives in the stream module worked incorrectly with UDP- update to 1.15.8 * Feature: the $upstream_bytes_sent variable * Feature: new directives in vim syntax highlighting scripts * Bugfix: in the "proxy_cache_background_update" directive * Bugfix: in the "geo" directive when using unix domain listen sockets * Workaround: the "ignoring stale global SSL error" alerts might appear erroneosuly * Bugfix: in the ngx_http_autoindex_module on x86- update to 1.15.7 * Feature: the "proxy_requests" directive in the stream module. * Feature: the "delay" parameter of the "limit_req" directive. Thanks to Vladislav Shabanov and Peter Shchuchkin. * Bugfix: memory leak on errors during reconfiguration. * Bugfix: in the $upstream_response_time, $upstream_connect_time, and $upstream_header_time variables. * Bugfix: a segmentation fault might occur in a worker process if the ngx_http_mp4_module was used on 32-bit platforms. - fix changes file for submit to Backports * see https://build.opensuse.org/request/show/653792- update to 1.15.6 * fix for boo#1115022, boo#1115025 Security: when using HTTP/2 a client might cause excessive memory consumption (CVE-2018-16843) and CPU usage (CVE-2018-16844). * fix for boo#1115015 Security: processing of a specially crafted mp4 file with the ngx_http_mp4_module might result in worker process memory disclosure (CVE-2018-16845). - Feature: the "proxy_socket_keepalive", "fastcgi_socket_keepalive", "grpc_socket_keepalive", "memcached_socket_keepalive", "scgi_socket_keepalive", and "uwsgi_socket_keepalive" directives. - Bugfix: if nginx was built with OpenSSL 1.1.0 and used with OpenSSL 1.1.1, the TLS 1.3 protocol was always enabled. - Bugfix: working with gRPC backends might result in excessive memory consumption. - Fix vim-plugin-nginx rpm group.- update to 1.15.5 - Bugfix: a segmentation fault might occur in a worker process when using OpenSSL 1.1.0h or lower - Bugfix: minor potential bugs - update to 1.15.4 - Feature: now the "ssl_early_data" directive can be used with OpenSSL. - Bugfix: in the ngx_http_uwsgi_module. - Bugfix: connections with some gRPC backends might not be cached when using the "keepalive" directive. - Bugfix: a socket leak might occur when using the "error_page" directive to redirect early request processing errors, notably errors with code 400. - Bugfix: the "return" directive did not change the response code when returning errors if the request was redirected by the "error_page" directive. - Bugfix: standard error pages and responses of the ngx_http_autoindex_module module used the "bgcolor" attribute, and might be displayed incorrectly when using custom color settings in browsers. - Change: the logging level of the "no suitable key share" and "no suitable signature algorithm" SSL errors has been lowered from "crit" to "info".- update to 1.15.3 - Feature: now TLSv1.3 can be used with BoringSSL. - Feature: the "ssl_early_data" directive, currently available with BoringSSL. - Feature: the "keepalive_timeout" and "keepalive_requests" directives in the "upstream" block. - Bugfix: the ngx_http_dav_module did not truncate destination file when copying a file over an existing one with the COPY method. - Bugfix: the ngx_http_dav_module used zero access rights on the destination file and did not preserve file modification time when moving a file between different file systems with the MOVE method. - Bugfix: the ngx_http_dav_module used default access rights when copying a file with the COPY method. - Workaround: some clients might not work when using HTTP/2; the bug had appeared in 1.13.5. - Bugfix: nginx could not be built with LibreSSL 2.8.0.- update to 1.15.2 - Feature: the $ssl_preread_protocol variable in the ngx_stream_ssl_preread_module. - Feature: now when using the "reset_timedout_connection" directive nginx will reset connections being closed with the 444 code. - Change: a logging level of the "http request", "https proxy request", "unsupported protocol", and "version too low" SSL errors has been lowered from "crit" to "info". - Bugfix: DNS requests were not resent if initial sending of a request failed. - Bugfix: the "reuseport" parameter of the "listen" directive was ignored if the number of worker processes was specified after the "listen" directive. - Bugfix: when using OpenSSL 1.1.0 or newer it was not possible to switch off "ssl_prefer_server_ciphers" in a virtual server if it was switched on in the default server. - Bugfix: SSL session reuse with upstream servers did not work with the TLS 1.3 protocol.- update to 1.15.1 - Feature: the "random" directive inside the "upstream" block. - Feature: improved performance when using the "hash" and "ip_hash" directives with the "zone" directive. - Feature: the "reuseport" parameter of the "listen" directive now uses SO_REUSEPORT_LB on FreeBSD 12. - Bugfix: HTTP/2 server push did not work if SSL was terminated by a proxy server in front of nginx. - Bugfix: the "tcp_nopush" directive was always used on backend connections. - Bugfix: sending a disk-buffered request body to a gRPC backend might fail. - changes from 1.15.0 - Change: the "ssl" directive is deprecated; the "ssl" parameter of the "listen" directive should be used instead. - Change: now nginx detects missing SSL certificates during configuration testing when using the "ssl" parameter of the "listen" directive. - Feature: now the stream module can handle multiple incoming UDP datagrams from a client within a single session. - Bugfix: it was possible to specify an incorrect response code in the "proxy_cache_valid" directive. - Bugfix: nginx could not be built by gcc 8.1. - Bugfix: logging to syslog stopped on local IP address changes. - Bugfix: nginx could not be built by clang with CUDA SDK installed; the bug had appeared in 1.13.8. - Bugfix: "getsockopt(TCP_FASTOPEN) ... failed" messages might appear in logs during binary upgrade when using unix domain listen sockets on FreeBSD. - Bugfix: nginx could not be built on Fedora 28 Linux. - Bugfix: request processing rate might exceed configured rate when using the "limit_req" directive. - Bugfix: in handling of client addresses when using unix domain listen sockets to work with datagrams on Linux. - Bugfix: in memory allocation error handling.- Add nginx-source package- Do not require insserv on systemd-only releases.- update to 1.14.0 * 1.14.x stable branch. - includes changes from 1.13.12 * bugfix connections with gRPC backends might be closed unexpectedly when returning a large response.- update to 1.13.11: * the "proxy_protocol" parameter of the "listen" directive now supports the PROXY protocol version 2 * bugfix in the "http_404", "http_500", etc. parameters of the "proxy_next_upstream" directive - includes changes from 1.13.10: * the "set" parameter of the "include" SSI directive now allows writing arbitrary responses to a variable; the "subrequest_output_buffer_size" directive defines maximum response size * now nginx uses clock_gettime(CLOCK_MONOTONIC) if available, to avoid timeouts being incorrectly triggered on system time changes * add the "escape=none" parameter of the "log_format" directive * add the $ssl_preread_alpn_protocols variable in the ngx_stream_ssl_preread_module. * add the ngx_http_grpc_module. * fix memory allocation error handling in the "geo" directive. * when using variables in the "auth_basic_user_file" directive a null character may have appeared in logs - Use %license (bsc#1082318)- Recommend to use TLSv1.2 by default (boo#1086855)- update rmtp module to 1.2.1 - just commenting all places where we fallthrough conditionals- update headers more to 0.33 - feature: add wildcard match support for more_clear_input_headers.- update fancyindex module to 0.4.2 This release contains an important fix which can cause Nginx to crash when a directory contains zero-sized (empty) files. This bug has been present in all previous releases, and all users are strongly encouraged to update to version 0.4.2. https://github.com/aperezdc/ngx-fancyindex/releases/tag/v0.4.2- changes from 1.13.9 - Feature: HTTP/2 server push support; the "http2_push" and "http2_push_preload" directives. - Bugfix: "header already sent" alerts might appear in logs when using cache; the bug had appeared in 1.9.13. - Bugfix: a segmentation fault might occur in a worker process if the "ssl_verify_client" directive was used and no SSL certificate was specified in a virtual server. - Bugfix: in the ngx_http_v2_module. - Bugfix: in the ngx_http_dav_module. - updates from 1.13.8 - Feature: now nginx automatically preserves the CAP_NET_RAW capability in worker processes when using the "transparent" parameter of the "proxy_bind", "fastcgi_bind", "memcached_bind", "scgi_bind", and "uwsgi_bind" directives. - Feature: improved CPU cache line size detection. Thanks to Debayan Ghosh. - Feature: new directives in vim syntax highlighting scripts. Thanks to Gena Makhomed. - Bugfix: binary upgrade refused to work if nginx was re-parented to a process with PID different from 1 after its parent process has finished. - Bugfix: the ngx_http_autoindex_module incorrectly handled requests with bodies. - Bugfix: in the "proxy_limit_rate" directive when used with the "keepalive" directive. - Bugfix: some parts of a response might be buffered when using "proxy_buffering off" if the client connection used SSL. Thanks to Patryk Lesiewicz. - Bugfix: in the "proxy_cache_background_update" directive. - Bugfix: it was not possible to start a parameter with a variable in the "${name}" form with the name in curly brackets without enclosing the parameter into single or double quotes.- Install /etc/nginx/conf.d directory for custom user configuration files- Install /etc/nginx/vhosts.d directory for default installation to house custom virtual hosts configuration files- update to version 1.13.7 - Bugfix: in the $upstream_status variable. - Bugfix: a segmentation fault might occur in a worker process if a backend returned a "101 Switching Protocols" response to a subrequest. - Bugfix: a segmentation fault occurred in a master process if a shared memory zone size was changed during a reconfiguration and the reconfiguration failed. - Bugfix: in the ngx_http_fastcgi_module. - Bugfix: nginx returned the 500 error if parameters without variables were specified in the "xslt_stylesheet" directive. - Workaround: "gzip filter failed to use preallocated memory" alerts appeared in logs when using a zlib library variant from Intel. - Bugfix: the "worker_shutdown_timeout" directive did not work when using mail proxy and when proxying WebSocket connections. - partial cleanup with spec-cleaner- update to 1.13.6 - Bugfix: switching to the next upstream server in the stream module did not work when using the "ssl_preread" directive. - Bugfix: in the ngx_http_v2_module. Thanks to Piotr Sikora. - Bugfix: nginx did not support dates after the year 2038 on 32-bit platforms with 64-bit time_t. - Bugfix: in handling of dates prior to the year 1970 and after the year 10000. - Bugfix: in the stream module timeouts waiting for UDP datagrams from upstream servers were not logged or logged at the "info" level instead of "error". - Bugfix: when using HTTP/2 nginx might return the 400 response without logging the reason. - Bugfix: in processing of corrupted cache files. - Bugfix: cache control headers were ignored when caching errors intercepted by error_page. - Bugfix: when using HTTP/2 client request body might be corrupted. - Bugfix: in handling of client addresses when using unix domain sockets. - Bugfix: nginx hogged CPU when using the "hash ... consistent" directive in the upstream block if large weights were used and all or most of the servers were unavailable.- extra modules were enabled on sles due to a typo- Submit nginx to SLES to become a http server for RMT(Repository mirroring tool) [fate#323994, bsc#1059685, boo#1057831]- disable extra modules on sle- update to 1.13.5 - Feature: the $ssl_client_escaped_cert variable. - Bugfix: the "ssl_session_ticket_key" directive and the "include" parameter of the "geo" directive did not work on Windows. - Bugfix: incorrect response length was returned on 32-bit platforms when requesting more than 4 gigabytes with multiple ranges. - Bugfix: the "expires modified" directive and processing of the "If-Range" request header line did not use the response last modification time if proxying without caching was used. - changes from 1.13.4 - Feature: the ngx_http_mirror_module. - Bugfix: client connections might be dropped during configuration testing when using the "reuseport" parameter of the "listen" directive on Linux. - Bugfix: request body might not be available in subrequests if it was saved to a file and proxying was used. - Bugfix: cleaning cache based on the "max_size" parameter did not work on Windows. - Bugfix: any shared memory allocation required 4096 bytes on Windows. - Bugfix: nginx worker might be terminated abnormally when using the "zone" directive inside the "upstream" block on Windows.- add upstream signing key and verify source tarball signature- update to 1.13.3 (boo#1048265) - Security: a specially crafted request might result in an integer overflow and incorrect processing of ranges in the range filter, potentially resulting in sensitive information leak (CVE-2017-7529). - changes from 1.13.2 - Change: nginx now returns 200 instead of 416 when a range starting with 0 is requested from an empty file. - Feature: the "add_trailer" directive. Thanks to Piotr Sikora. - Bugfix: nginx could not be built on Cygwin and NetBSD; the bug had appeared in 1.13.0. - Bugfix: nginx could not be built under MSYS2 / MinGW 64-bit. Thanks to Orgad Shaneh. - Bugfix: a segmentation fault might occur in a worker process when using SSI with many includes and proxy_pass with variables. - Bugfix: in the ngx_http_v2_module. Thanks to Piotr Sikora. - update nginx-rtmp-module to 1.2.0: - DASH improvements - OpenSSL 1.1 compatibility- update to 1.13.1 - Feature: now a hostname can be used as the "set_real_ip_from" directive parameter. - Feature: vim syntax highlighting scripts improvements. - Feature: the "worker_cpu_affinity" directive now works on DragonFly BSD. Thanks to Sepherosa Ziehau. - Bugfix: SSL renegotiation on backend connections did not work when using OpenSSL before 1.1.0. - Workaround: nginx could not be built with Oracle Developer Studio 12.5. - Workaround: now cache manager ignores long locked cache entries when cleaning cache based on the "max_size" parameter. - Bugfix: client SSL connections were immediately closed if deferred accept and the "proxy_protocol" parameter of the "listen" directive were used. - Bugfix: in the "proxy_cache_background_update" directive. - Workaround: now the "tcp_nodelay" directive sets the TCP_NODELAY option before an SSL handshake. - changes from 1.13.0 - Change: SSL renegotiation is now allowed on backend connections. - Feature: the "rcvbuf" and "sndbuf" parameters of the "listen" directives of the mail proxy and stream modules. - Feature: the "return" and "error_page" directives can now be used to return 308 redirections. Thanks to Simon Leblanc. - Feature: the "TLSv1.3" parameter of the "ssl_protocols" directive. - Feature: when logging signals nginx now logs PID of the process which sent the signal. - Bugfix: in memory allocation error handling. - Bugfix: if a server in the stream module listened on a wildcard address, the source address of a response UDP datagram could differ from the original datagram destination address.- update to 1.12.0 - Feature: the "http_429" parameter of the "proxy_next_upstream", "fastcgi_next_upstream", "scgi_next_upstream", and "uwsgi_next_upstream" directives. Thanks to Piotr Sikora. - Bugfix: in memory allocation error handling. - Bugfix: requests might hang when using the "sendfile" and "timer_resolution" directives on Linux. - Bugfix: requests might hang when using the "sendfile" and "aio_write" directives with subrequests. - Bugfix: in the ngx_http_v2_module. Thanks to Piotr Sikora. - Bugfix: a segmentation fault might occur in a worker process when using HTTP/2. - Bugfix: requests might hang when using the "limit_rate", "sendfile_max_chunk", "limit_req" directives, or the $r->sleep() embedded perl method with subrequests. - Bugfix: in the ngx_http_slice_module.- update to 1.11.12 - Bugfix: nginx might hog CPU; the bug had appeared in 1.11.11. - update to 1.11.11 - Feature: the "worker_shutdown_timeout" directive. - Feature: vim syntax highlighting scripts improvements. Thanks to Wei-Ko Kao. - Bugfix: a segmentation fault might occur in a worker process if the $limit_rate variable was set to an empty string. - Bugfix: the "proxy_cache_background_update", "fastcgi_cache_background_update", "scgi_cache_background_update", and "uwsgi_cache_background_update" directives might work incorrectly if the "if" directive was used. - Bugfix: a segmentation fault might occur in a worker process if number of large_client_header_buffers in a virtual server was different from the one in the default server. - Bugfix: in the mail proxy server.- update to 1.11.10 - Change: cache header format has been changed, previously cached responses will be invalidated. - Feature: support of "stale-while-revalidate" and "stale-if-error" extensions in the "Cache-Control" backend response header line. - Feature: the "proxy_cache_background_update", "fastcgi_cache_background_update", "scgi_cache_background_update", and "uwsgi_cache_background_update" directives. - Feature: nginx is now able to cache responses with the "Vary" header line up to 128 characters long (instead of 42 characters in previous versions). - Feature: the "build" parameter of the "server_tokens" directive. Thanks to Tom Thorogood. - Bugfix: "[crit] SSL_write() failed" messages might appear in logs when handling requests with the "Expect: 100-continue" request header line. - Bugfix: the ngx_http_slice_module did not work in named locations. - Bugfix: a segmentation fault might occur in a worker process when using AIO after an "X-Accel-Redirect" redirection. - Bugfix: reduced memory consumption for long-lived requests using gzipping.- update to 1.11.9 - Bugfix: nginx might hog CPU when using the stream module; the bug had appeared in 1.11.5. - Bugfix: EXTERNAL authentication mechanism in mail proxy was accepted even if it was not enabled in the configuration. - Bugfix: a segmentation fault might occur in a worker process if the "ssl_verify_client" directive of the stream module was used. - Bugfix: the "ssl_verify_client" directive of the stream module might not work. - Bugfix: closing keepalive connections due to no free worker connections might be too aggressive. Thanks to Joel Cunningham. - Bugfix: an incorrect response might be returned when using the "sendfile" directive on FreeBSD and macOS; the bug had appeared in 1.7.8. - Bugfix: a truncated response might be stored in cache when using the "aio_write" directive. - Bugfix: a socket leak might occur when using the "aio_write" directive.- update to 1.11.8 - Feature: the "absolute_redirect" directive. - Feature: the "escape" parameter of the "log_format" directive. - Feature: client SSL certificates verification in the stream module. - Feature: the "ssl_session_ticket_key" directive supports AES256 encryption of TLS session tickets when used with 80-byte keys. - Feature: vim-commentary support in vim scripts. Thanks to Armin Grodon. - Bugfix: recursion when evaluating variables was not limited. - Bugfix: in the ngx_stream_ssl_preread_module. - Bugfix: if a server in an upstream in the stream module failed, it was considered alive only when a test connection sent to it after fail_timeout was closed; now a successfully established connection is enough. - Bugfix: nginx/Windows could not be built with 64-bit Visual Studio. - Bugfix: nginx/Windows could not be built with OpenSSL 1.1.0. - changes in 1.11.7 - Change: now in case of a client certificate verification error the $ssl_client_verify variable contains a string with the failure reason, for example, "FAILED:certificate has expired". - Feature: the $ssl_ciphers, $ssl_curves, $ssl_client_v_start, $ssl_client_v_end, and $ssl_client_v_remain variables. - Feature: the "volatile" parameter of the "map" directive. - Bugfix: dependencies specified for a module were ignored while building dynamic modules. - Bugfix: when using HTTP/2 and the "limit_req" or "auth_request" directives client request body might be corrupted; the bug had appeared in 1.11.0. - Bugfix: a segmentation fault might occur in a worker process when using HTTP/2; the bug had appeared in 1.11.3. - Bugfix: in the ngx_http_mp4_module. Thanks to Congcong Hu. - Bugfix: in the ngx_http_perl_module. - changes in 1.11.6 - Change: format of the $ssl_client_s_dn and $ssl_client_i_dn variables has been changed to follow RFC 2253 (RFC 4514); values in the old format are available in the $ssl_client_s_dn_legacy and $ssl_client_i_dn_legacy variables. - Change: when storing temporary files in a cache directory they will be stored in the same subdirectories as corresponding cache files instead of a separate subdirectory for temporary files. - Feature: EXTERNAL authentication mechanism support in mail proxy. Thanks to Robert Norris. - Feature: WebP support in the ngx_http_image_filter_module. - Feature: variables support in the "proxy_method" directive. Thanks to Dmitry Lazurkin. - Feature: the "http2_max_requests" directive in the ngx_http_v2_module. - Feature: the "proxy_cache_max_range_offset", "fastcgi_cache_max_range_offset", "scgi_cache_max_range_offset", and "uwsgi_cache_max_range_offset" directives. - Bugfix: graceful shutdown of old worker processes might require infinite time when using HTTP/2. - Bugfix: in the ngx_http_mp4_module. - Bugfix: "ignore long locked inactive cache entry" alerts might appear in logs when proxying WebSocket connections with caching enabled. - Bugfix: nginx did not write anything to log and returned a response with code 502 instead of 504 when a timeout occurred during an SSL handshake to a backend. - changes in 1.11.5 - Change: the --with-ipv6 configure option was removed, now IPv6 support is configured automatically. - Change: now if there are no available servers in an upstream, nginx will not reset number of failures of all servers as it previously did, but will wait for fail_timeout to expire. - Feature: the ngx_stream_ssl_preread_module. - Feature: the "server" directive in the "upstream" context supports the "max_conns" parameter. - Feature: the --with-compat configure option. - Feature: "manager_files", "manager_threshold", and "manager_sleep" parameters of the "proxy_cache_path", "fastcgi_cache_path", "scgi_cache_path", and "uwsgi_cache_path" directives. - Bugfix: flags passed by the --with-ld-opt configure option were not used while building perl module. - Bugfix: in the "add_after_body" directive when used with the "sub_filter" directive. - Bugfix: in the $realip_remote_addr variable. - Bugfix: the "dav_access", "proxy_store_access", "fastcgi_store_access", "scgi_store_access", and "uwsgi_store_access" directives ignored permissions specified for user. - Bugfix: unix domain listen sockets might not be inherited during binary upgrade on Linux. - Bugfix: nginx returned the 400 response on requests with the "-" character in the HTTP method. - update headers-more-nginx-module 0.32 - tests: skipped the newly added test case that cannot run in check leak test mode. - bugfix: more_set_input_headers: skips setting multi-value headers for bad requests to avoid segfaults. - skipped check leak mode for two test cases using malformed requests. - doc: claims that we work with 1.10.x since it is essentially the same as 1.9.x. - bugfix: fixed a typo in an error message. - bugfix: when the nginx core does not properly initialize r->headers_in.headers (due to 400 bad requests and etc), more_set_input_headers might lead to crashes. thanks Marcin Teodorczyk for the report. - update nginx-rtmp-module 1.1.10 - support for nginx 1.11.5-style cache-manager - update patches to apply cleanly again check_1.9.2+.patch nginx-1.6.1-default_config.patch- Fix the logrotate script: we had a hardcoded postrotate action pointing to /etc/init.d/nginx. This does not exist anymore on systemd hosts. Replace it with /usr/sbin/nginx -s reopen, which will use the pid file passed in the config file or the compiled in default path.- update to 1.11.4 - Feature: the $upstream_bytes_received variable. - Feature: the $bytes_received, $session_time, $protocol, $status, $upstream_addr, $upstream_bytes_sent, $upstream_bytes_received, $upstream_connect_time, $upstream_first_byte_time, and $upstream_session_time variables in the stream module. - Feature: the ngx_stream_log_module. - Feature: the "proxy_protocol" parameter of the "listen" directive, the $proxy_protocol_addr and $proxy_protocol_port variables in the stream module. - Feature: the ngx_stream_realip_module. - Bugfix: nginx could not be built with the stream module and the ngx_http_ssl_module, but without ngx_stream_ssl_module; the bug had appeared in 1.11.3. - Feature: the IP_BIND_ADDRESS_NO_PORT socket option was not used; the bug had appeared in 1.11.2. - Bugfix: in the "ranges" parameter of the "geo" directive. - Bugfix: an incorrect response might be returned when using the "aio threads" and "sendfile" directives; the bug had appeared in 1.9.13. - drop nginx-1.11.3_ssl_stream.patch again - refreshed the following patches to apply cleanly again check_1.9.2+.patch nginx-1.11.2-html.patch nginx-1.11.2-no_Werror.patch nginx-aio.patch- update to 1.11.3 - Change: now the "accept_mutex" directive is turned off by default. - Feature: now nginx uses EPOLLEXCLUSIVE on Linux. - Feature: the ngx_stream_geo_module. - Feature: the ngx_stream_geoip_module. - Feature: the ngx_stream_split_clients_module. - Feature: variables support in the "proxy_pass" and "proxy_ssl_name" directives in the stream module. - Bugfix: socket leak when using HTTP/2. - Bugfix: in configure tests. Thanks to Piotr Sikora. - backport nginx-1.11.3_ssl_stream.patch from hg - refresh patches to apply cleanly again: - check_1.9.2+.patch - nginx-1.11.2-html.patch - nginx-1.11.2-no_Werror.patch - nginx-aio.patch - enable a few new upstream modules and move some from 1.11.x to dynamic: - stream_geoip_module - mail_ssl_module - stream_ssl_module - build fancyindex unconditionally and update it to 0.4.1 - New `fancyindex_directories_first` configuration directive (enabled by default), which allows setting whether directories are sorted before other files. (Patch by Luke Zapart <>.) - Fix index files not working when the fancyindex module is in use (#46). - The module can now be built as a [dynamic module](https://www.nginx.com/resources/wiki/extending/converting/). (Patch by Róbert Nagy <>.) - New configuration directive `fancyindex_show_path`, which allows hiding the `

` header which contains the current path. (Patch by Thomas P. <>.) - Directory and file links in listings now have a title="..." attribute. (Patch by `@janglapuk` <>.) - Fix for hung requests when the module is used along with `ngx_pagespeed`. (Patch by Otto van der Schaaf <>.) - New feature: Allow filtering out symbolic links using the `fancyindex_hide_symlinks` configuration directive. (Idea and prototype patch by Thomas Wemm.) - New feature: Allow specifying the format of timestamps using the `fancyindex_time_format` configuration directive. (Idea suggested by Xiao Meng <>). - Listings in top-level directories will not generate a "Parent Directory" link as first element of the listing. (Patch by Thomas P.) - Fix propagation and overriding of the `fancyindex_css_href` setting inside nested locations. - Minor changes in the code to allow building cleanly under Windows with Visual Studio 2013. (Patch by Y. Yuan <>). - added nginx-rtmp-module - make all modules dynamic that support it: - ngx-fancyindex - headers_more_nginx-module - nginx-rtmp-module - manually install the docs instead of using %doc - unify how we install documentation for the modules - restructure contrib file handling - moved vim files into the normal vim paths so we can use them directly - new BR/R: vim - split out vim files into a subpackage vim-plugin-nginx so we dont have the vim requires on the main package - perl scripts are moved to /usr/share/nginx/- update to 1.11.2 * Change: now nginx always uses internal MD5 and SHA1 implementations; the --with-md5 and --with-sha1 configure options were canceled. * Feature: variables support in the stream module. * Feature: the ngx_stream_map_module. * Feature: the ngx_stream_return_module. * Feature: a port can be specified in the "proxy_bind", "fastcgi_bind", "memcached_bind", "scgi_bind", and "uwsgi_bind" directives. * Feature: now nginx uses the IP_BIND_ADDRESS_NO_PORT socket option when available. * Bugfix: a segmentation fault might occur in a worker process when using HTTP/2 and the "proxy_request_buffering" directive. * Bugfix: the "Content-Length" request header line was always added to requests passed to backends, including requests without body, when using HTTP/2. * Bugfix: "http request count is zero" alerts might appear in logs when using HTTP/2. * Bugfix: unnecessary buffering might occur when using the "sub_filter" directive; the issue had appeared in 1.9.4. - the following modules were added: headers-more-nginx-module nginx_upstream_check_module - added patches: nginx-1.11.2-html.patch nginx-1.11.2-no_Werror.patch check_1.9.2+.patch - dropped patches: nginx-1.10.0-html.patch nginx-1.10.0-no_Werror.patch- in the sysvinit script use the pid file in /var/run- update to 1.10.1 (bsc# 982505) Security: a segmentation fault might occur in a worker process while writing a specially crafted request body to a temporary file (CVE-2016-4450); the bug had appeared in 1.3.9.- improve conditionals - merge the 12.2 and 12.1 based conditionals into 1 as both of them are out of support now. - enable pcre JIT - make use if libatomic_ops on Leap- enable dynamic modules for intree modules. The following modules are built as loadable modules now: ngx_http_geoip_module.so ngx_http_image_filter_module.so ngx_http_perl_module.so ngx_http_xslt_filter_module.so ngx_mail_module.so ngx_stream_module.so You will have to load those modules with load_module. http://nginx.org/en/docs/ngx_core_module.html#load_module The correct syntax for this package is: [#] For 64bit machines: load_module lib64/nginx/modules/ngx_http_geoip_module.so; [#] For 32bit machines: load_module lib/nginx/modules/ngx_http_geoip_module.so; Examples for all the intree modules have been added to the default nginx.conf - patches updated: nginx-1.6.1-default_config.patch - added load_module example- enable slice and stream module- update to version 1.10.0 stable * Bugfix: "recv() failed" errors might occur when using HHVM as a FastCGI server. * Bugfix: when using HTTP/2 and the "limit_req" or "auth_request" directives a timeout or a "client violated flow control" error might occur while reading client request body; the bug had appeared in 1.9.14. * Workaround: a response might not be shown by some browsers if HTTP/2 was used and client request body was not fully read; the bug had appeared in 1.9.14. * Bugfix: connections might hang when using the "aio threads" directive. Thanks to Mindaugas Rasiukevicius. * Feature: OpenSSL 1.1.0 compatibility. * Feature: the "proxy_request_buffering", "fastcgi_request_buffering", "scgi_request_buffering", and "uwsgi_request_buffering" directives now work with HTTP/2. * Bugfix: "zero size buf in output" alerts might appear in logs when using HTTP/2. * Bugfix: the "client_max_body_size" directive might work incorrectly when using HTTP/2. * Bugfix: of minor bugs in logging. * Change: non-idempotent requests (POST, LOCK, PATCH) are no longer passed to the next server by default if a request has been sent to a backend; the "non_idempotent" parameter of the "proxy_next_upstream" directive explicitly allows retrying such requests. * Feature: the ngx_http_perl_module can be built dynamically. * Feature: UDP support in the stream module. * Feature: the "aio_write" directive. * Feature: now cache manager monitors number of elements in caches and tries to avoid cache keys zone overflows. * Bugfix: "task already active" and "second aio post" alerts might appear in logs when using the "sendfile" and "aio" directives with subrequests. * Bugfix: "zero size buf in output" alerts might appear in logs if caching was used and a client closed a connection prematurely. * Bugfix: connections with clients might be closed needlessly if caching was used. Thanks to Justin Li. * Bugfix: nginx might hog CPU if the "sendfile" directive was used on Linux or Solaris and a file being sent was changed during sending. * Bugfix: connections might hang when using the "sendfile" and "aio threads" directives. * Bugfix: in the "proxy_pass", "fastcgi_pass", "scgi_pass", and "uwsgi_pass" directives when using variables. Thanks to Piotr Sikora. * Bugfix: in the ngx_http_sub_filter_module. * Bugfix: if an error occurred in a cached backend connection, the request was passed to the next server regardless of the proxy_next_upstream directive. * Bugfix: "CreateFile() failed" errors when creating temporary files on Windows. * Feature: Huffman encoding of response headers in HTTP/2. Thanks to Vlad Krasnov. * Feature: the "worker_cpu_affinity" directive now supports more than 64 CPUs. * Bugfix: compatibility with 3rd party C++ modules; the bug had appeared in 1.9.11. Thanks to Piotr Sikora. * Bugfix: nginx could not be built statically with OpenSSL on Linux; the bug had appeared in 1.9.11. * Bugfix: the "add_header ... always" directive with an empty value did not delete "Last-Modified" and "ETag" header lines from error responses. * Workaround: "called a function you should not call" and "shutdown while in init" messages might appear in logs when using OpenSSL 1.0.2f. * Bugfix: invalid headers might be logged incorrectly. * Bugfix: socket leak when using HTTP/2. * Bugfix: in the ngx_http_v2_module. * Feature: TCP support in resolver. * Feature: dynamic modules. * Bugfix: the $request_length variable did not include size of request headers when using HTTP/2. * Bugfix: in the ngx_http_v2_module. * Security: invalid pointer dereference might occur during DNS server response processing if the "resolver" directive was used, allowing an attacker who is able to forge UDP packets from the DNS server to cause segmentation fault in a worker process (CVE-2016-0742). * Security: use-after-free condition might occur during CNAME response processing if the "resolver" directive was used, allowing an attacker who is able to trigger name resolution to cause segmentation fault in a worker process, or might have potential other impact (CVE-2016-0746). * Security: CNAME resolution was insufficiently limited if the "resolver" directive was used, allowing an attacker who is able to trigger arbitrary name resolution to cause excessive resource consumption in worker processes (CVE-2016-0747). * Feature: the "auto" parameter of the "worker_cpu_affinity" directive. * Bugfix: the "proxy_protocol" parameter of the "listen" directive did not work with IPv6 listen sockets. * Bugfix: connections to upstream servers might be cached incorrectly when using the "keepalive" directive. * Bugfix: proxying used the HTTP method of the original request after an "X-Accel-Redirect" redirection. * Bugfix: proxying to unix domain sockets did not work when using variables; the bug had appeared in 1.9.8. * Feature: pwritev() support. * Feature: the "include" directive inside the "upstream" block. * Feature: the ngx_http_slice_module. * Bugfix: a segmentation fault might occur in a worker process when using LibreSSL; the bug had appeared in 1.9.6. * Bugfix: nginx could not be built on OS X in some cases. * Feature: the "nohostname" parameter of logging to syslog. * Feature: the "proxy_cache_convert_head" directive. * Feature: the $realip_remote_addr variable in the ngx_http_realip_module. * Bugfix: the "expires" directive might not work when using variables. * Bugfix: a segmentation fault might occur in a worker process when using HTTP/2; the bug had appeared in 1.9.6. * Bugfix: if nginx was built with the ngx_http_v2_module it was possible to use the HTTP/2 protocol even if the "http2" parameter of the "listen" directive was not specified. * Bugfix: in the ngx_http_v2_module. * Bugfix: a segmentation fault might occur in a worker process when using HTTP/2. Thanks to Piotr Sikora and Denis Andzakovic. * Bugfix: the $server_protocol variable was empty when using HTTP/2. * Bugfix: backend SSL connections in the stream module might be timed out unexpectedly. * Bugfix: a segmentation fault might occur in a worker process if different ssl_session_cache settings were used in different virtual servers. * Bugfix: nginx/Windows could not be built with MinGW gcc; the bug had appeared in 1.9.4. Thanks to Kouhei Sutou. * Bugfix: time was not updated when the timer_resolution directive was used on Windows. * Miscellaneous minor fixes and improvements. Thanks to Markus Linnala, Kurtis Nusbaum and Piotr Sikora. * Feature: the ngx_http_v2_module (replaces ngx_http_spdy_module). Thanks to Dropbox and Automattic for sponsoring this work. * Change: now the "output_buffers" directive uses two buffers by default. * Change: now nginx limits subrequests recursion, not simultaneous subrequests. * Change: now nginx checks the whole cache key when returning a response from cache. Thanks to Gena Makhomed and Sergey Brester. * Bugfix: "header already sent" alerts might appear in logs when using cache; the bug had appeared in 1.7.5. * Bugfix: "writev() failed (4: Interrupted system call)" errors might appear in logs when using CephFS and the "timer_resolution" directive on Linux. * Bugfix: in invalid configurations handling. Thanks to Markus Linnala. * Bugfix: a segmentation fault occurred in a worker process if the "sub_filter" directive was used at http level; the bug had appeared in 1.9.4. * Change: the "proxy_downstream_buffer" and "proxy_upstream_buffer" directives of the stream module are replaced with the "proxy_buffer_size" directive. * Feature: the "tcp_nodelay" directive in the stream module. * Feature: multiple "sub_filter" directives can be used simultaneously. * Feature: variables support in the search string of the "sub_filter" directive. * Workaround: configuration testing might fail under Linux OpenVZ. Thanks to Gena Makhomed. * Bugfix: old worker processes might hog CPU after reconfiguration with a large number of worker_connections. * Bugfix: a segmentation fault might occur in a worker process if the "try_files" and "alias" directives were used inside a location given by a regular expression; the bug had appeared in 1.7.1. * Bugfix: the "try_files" directive inside a nested location given by a regular expression worked incorrectly if the "alias" directive was used in the outer location. * Bugfix: in hash table initialization error handling. * Bugfix: nginx could not be built with Visual Studio 2015. * Change: duplicate "http", "mail", and "stream" blocks are now disallowed. * Feature: connection limiting in the stream module. * Feature: data rate limiting in the stream module. * Bugfix: the "zone" directive inside the "upstream" block did not work on Windows. * Bugfix: compatibility with LibreSSL in the stream module. Thanks to Piotr Sikora. * Bugfix: in the "--builddir" configure parameter. Thanks to Piotr Sikora. * Bugfix: the "ssl_stapling_file" directive did not work; the bug had appeared in 1.9.2. Thanks to Faidon Liambotis and Brandon Black. * Bugfix: a segmentation fault might occur in a worker process if the "ssl_stapling" directive was used; the bug had appeared in 1.9.2. Thanks to Matthew Baldwin. * Feature: the "backlog" parameter of the "listen" directives of the mail proxy and stream modules. * Feature: the "allow" and "deny" directives in the stream module. * Feature: the "proxy_bind" directive in the stream module. * Feature: the "proxy_protocol" directive in the stream module. * Feature: the -T switch. * Feature: the REQUEST_SCHEME parameter added to the fastcgi.conf, fastcgi_params, scgi_params, and uwsgi_params standard configuration files. * Bugfix: the "reuseport" parameter of the "listen" directive of the stream module did not work. * Bugfix: OCSP stapling might return an expired OCSP response in some cases. * Change: now SSLv3 protocol is disabled by default. * Change: some long deprecated directives are not supported anymore. * Feature: the "reuseport" parameter of the "listen" directive. Thanks to Yingqi Lu at Intel and Sepherosa Ziehau. * Feature: the $upstream_connect_time variable. * Bugfix: in the "hash" directive on big-endian platforms. * Bugfix: nginx might fail to start on some old Linux variants; the bug had appeared in 1.7.11. * Bugfix: in IP address parsing. Thanks to Sergey Polovko. * Change: obsolete aio and rtsig event methods have been removed. * Feature: the "zone" directive inside the "upstream" block. * Feature: the stream module. * Feature: byte ranges support in the ngx_http_memcached_module. Thanks to Martin Mlynář. * Feature: shared memory can now be used on Windows versions with address space layout randomization. Thanks to Sergey Brester. * Feature: the "error_log" directive can now be used on mail and server levels in mail proxy. * Bugfix: the "proxy_protocol" parameter of the "listen" directive did not work if not specified in the first "listen" directive for a listen socket. - removed patches already present upstream * nginx-0.4.0-no_Werror.patch - refreshed patches * nginx-0.6.38-html.patch to nginx-1.10.0-html.patch * nginx-0.4.0-no_Werror.patch to nginx-1.10.0-no_Werror.patch * merged nginx-1.0.15_docs.patch in nginx-1.10.0-html.patch - config option with-http_spdy_module is now with-http_v2_module- update version 1.8.1 stable * Security: invalid pointer dereference might occur during DNS server response processing if the "resolver" directive was used, allowing an attacker who is able to forge UDP packets from the DNS server to cause segmentation fault in a worker process (CVE-2016-0742). boo#963781  * Security: use-after-free condition might occur during CNAME response processing if the "resolver" directive was used, allowing an attacker who is able to trigger name resolution to cause segmentation fault in a worker process, or might have potential other impact (CVE-2016-0746). boo#963778  * Security: CNAME resolution was insufficiently limited if the "resolver" directive was used, allowing an attacker who is able to trigger arbitrary name resolution to cause excessive resource consumption in worker processes (CVE-2016-0747). boo#963775  * Bugfix: the "proxy_protocol" parameter of the "listen" directive did not work if not specified in the first "listen" directive for a listen socket. * Bugfix: nginx might fail to start on some old Linux variants; the bug had appeared in 1.7.11. * Bugfix: a segmentation fault might occur in a worker process if the "try_files" and "alias" directives were used inside a location given by a regular expression; the bug had appeared in 1.7.1. * Bugfix: the "try_files" directive inside a nested location given by a regular expression worked incorrectly if the "alias" directive was used in the outer location. * Bugfix: "header already sent" alerts might appear in logs when using cache; the bug had appeared in 1.7.5. * Bugfix: a segmentation fault might occur in a worker process if different ssl_session_cache settings were used in different virtual servers. * Bugfix: the "expires" directive might not work when using variables. * Bugfix: if nginx was built with the ngx_http_spdy_module it was possible to use the SPDY protocol even if the "spdy" parameter of the "listen" directive was not specified.- use libGeoIP-devel everywhere- replace custom "kill -QUIT" with the kill signal setting in the service file- clean up conditionals and use bcond_with* everywhere - drop passenger support for now * drop nginx-1.8.0-passenger-4.0.18.patch * drop nginx-1.4.2-passenger-4.0.18.patch- update version 1.8.0 stable * refer to http://nginx.org/en/CHANGES-1.8 for 1.7.x changes - enable thread pools invented in nginx 1.7.11 - refactor nginx-1.4.2-passenger_fix.patch * rename to nginx-1.4.2-passenger-4.0.18.patch * remove zero_in_uri usage - add patch: nginx-1.8.0-passenger-4.0.18.patch * fix "warning: comparison between pointer and integer" and "error: invalid type argument of ‘->’ (have ‘int’)" - drop nginx-1.4.4-passenger-4.0.33_fix.patch * webyast is dead, we only enable passenger on 13.1 and below, for compatibility. this patch will never be applied now. - drop nginx-1.4.4-passenger-3.0.12_fix.patch * this patch intended to be applied on < 13.1 machines, but 13.1 is the oldest one we still have to build against. - update fancyindex to version 0.3.5- disable libatomic-ops on SLE12 for now. the library seems not available there.- enable ngx_http_auth_request_module- update version 1.6.3 stable - Feature: now the "tcp_nodelay" directive works with SPDY connections. - Bugfix: in error handling. Thanks to Yichun Zhang and Daniil Bondarev. - Bugfix: alerts "header already sent" appeared in logs if the "post_action" directive was used; the bug had appeared in 1.5.4. - Bugfix: alerts "sem_post() failed" might appear in logs. - Bugfix: in hash table handling. Thanks to Chris West. - Bugfix: in integer overflow handling. Thanks to Régis Leroy. - no longer install the init script when using systemd service file - create rcnginx for systemd case- On OpenSUSE 13.2, it requires libGeoIP-devel/bin/sh/bin/sh/bin/sh/bin/shh01-ch3a 1750054172  !"#$%&'()*+,-./012341.21.5-150600.10.6.11.21.5-150600.10.6.11.21.5-150600.10.6.11.21.5 nginxnginxconf.dfastcgi.conffastcgi.conf.defaultfastcgi_paramsfastcgi_params.defaultkoi-utfkoi-winmime.typesmime.types.defaultnginx.confnginx.conf.defaultscgi_paramsscgi_params.defaultuwsgi_paramsuwsgi_params.defaultvhosts.dwin-utf50x.htmlnginxnginx.songinx.pmnginx.servicenginx.confnginxmodulesngx_http_image_filter_module.songx_http_perl_module.songx_http_xslt_filter_module.songx_mail_module.songx_stream_module.songinxrcnginxnginxCHANGESCHANGES.ruLICENSEnginx.3pm.gznginxgeo2nginx.plunicode2nginxkoi-utfunicode-to-nginx.plwin-utfnginxfastcgiproxyscgitmpuwsginginx/etc/logrotate.d//etc//etc/nginx//srv/www/htdocs//usr/lib/perl5/vendor_perl/5.26.1/x86_64-linux-thread-multi/auto//usr/lib/perl5/vendor_perl/5.26.1/x86_64-linux-thread-multi/auto/nginx//usr/lib/perl5/vendor_perl/5.26.1/x86_64-linux-thread-multi//usr/lib/systemd/system//usr/lib/sysusers.d//usr/lib64//usr/lib64/nginx//usr/lib64/nginx/modules//usr/sbin//usr/share/doc/packages//usr/share/doc/packages/nginx//usr/share/man/man3//usr/share//usr/share/nginx//usr/share/nginx/unicode2nginx//var/lib//var/lib/nginx//var/log/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:39261/SUSE_SLE-15-SP6_Update/ed77e27a7a863256b2465d811c09c01e-nginx.SUSE_SLE-15-SP6_Updatedrpmxz5x86_64-suse-linux  ASCII textdirectoryHTML document, ASCII textELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=68d5c6d4e1893bd592466ea5cd8deed61d7bbf83, strippedPerl5 module source textELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=5e4d225f7bf142a2a7769dfc1090e250fcdbeae5, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=b78b4fcfa86d65cce2a494f41db907514e531c5a, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=d185ac0def689c9df1b80bf518e523cdd0548b16, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=5834591250c4102acbb1290ec215a50d7c708464, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=c5bbe68e8e91a5b0b83b660f1bdef26ff3f0e416, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter /lib64/ld-linux-x86-64.so.2, for GNU/Linux 4.3.0, BuildID[sha1]=7bf7b95e2bbc910852d1b63b622207d22fd6d1c8, strippedUTF-8 Unicode texttroff or preprocessor input, ASCII text (gzip compressed data, max compression, from Unix)Perl script text executable "(?@ RRR RPPPR RRRRRR RRRRRRR RR!R R$R#RR"RRRRR RRRRRR RRRRR RRR R RRRRRR RR RRRRRR%RRRϪ`W="systemdlogrotatenginx-module-fancyindexnginx-module-geoip2nginx-module-headers-morenginx-module-http-flvsystemdsystemd-sysvcompatutf-86bd92991d2b34a482434e25c752c86c904a2512837d40166bf87989f88f61eed?7zXZ !t/ !]"k%LԴBެj`X2M+l .\'1H9;< UJS-(*8+F♦1ssظ@[X)F:fF#F%HTS.GHV✫$d^owF`S#2eߠ:O CAZhJ Ztw KMTݰuwnܞ[FjB(IWf#Rm-b6Zeaj *؝1А{5*QYz1H͇B'P=lT"3)H>G0BE=AמbNL&SU%  Ro-tM%.jL-{iyW#r!ަU0egꇉ^ .[q#ã?aAPctS/v8B˒誺*Fĵ],n1B)EhIc&65c$w#Xh,[J @$$LwƅjB͞v)B972n v3?LVI]Ut0Z) þ6롦MHԇaWupDbr]ZĭJ6C[(Y=埚ٲVTPD^R8z/-7݁:.^lA\#Lwdstސy9Хқ~\]=7n10I]JS4]l#\6.Bv([t@~{6JInqck}BҊ)AODO:-2 4Eɏstzmq`?X8b Ji#8+سn抱8G4bsTQ#8a⴨hdПkK3KtE׬$}okGqd9)h)- ej#'$I.-P[Z{NsL<3c|<0>s\vBic} N9X8\ɸ t]l&|,łBP^Of JR؜lY=*\:BBG(QCNxb3yl&4d ezs>Z3*)=5f>q:sUXPQ`6/)eDLofdZLhs feMk'z {|o[G#u. \LԀ, M}Ћ4U X[QOtm$\}1t\]L,T=A hu p 13SuF:wWꘀ]*CƤVDܗ|dI=ha]z&퓞&[y/&` 並9AM4(H>NiKPIs`ruhW]/]'*9R:jWծ436x3.Qkc+d˩D3::>L8Wy3u8XWgխ>0o2@=@TmiJ LIR9Fc9%(˲#_#l,θ&K]#ie #=71R[ m{ƴ ~e$8ɫf$L3ի9 /ԋ?m I#qƔ6HV_ 29ρNyFmb!&5t󡮏3@WS&_ٞFCϊh.З~K, M% #\wkC*x Y[h)u1^B;<į5<Ġf.=ȑDo}5rXN>^|ɹ :{wFl7YW30 F֥ gaKB(]VTAhMu]춷Gre;ңT&Acq>2u0_F"~ pdajxW.Gإ\#w7w k fm/l9N>X sfPiTw M)p݋oZ0Xr;`v) LDcF\bύK 0Fc?T EƳj{hD|2I"#ߦ$%~uƃ.lmj#}Oo]t.9bk{W~x 3GOJBlJ3ȠAZgBiz6A S_5b/lh5t QP})qJ+޼ſ%W.&!l'*oKredM;F;;nUhG`q$!x‚C]AT/])@ϟ>XYPg}$$25SƒJd~ܵl<2V?S耠0b0L^k-_Df54̀f#r"ow_)Yht9qI+H J&ta-Zm.DdDvتyءMƖwB `V "g/2e>P`3 s $=pN̬y2iBHz'a J[U*рE=)&҈go$گYq^*YA:xs33!3O0pRTXPĿPNk{v\tW`}߷BalGIdt[,ꖫlM8CJ4ITM0bB A,ݵl[Áy &CڲKH[~\?3}`j; {jRH,|RHALWz0"r!k=㦨ORxmj VcfW 6N^ç65@D/BZR?<) ܎ fv|VL[0 N cSz8k4S-*S9CGJQZp3ᡧN镠i4PT8?CMTN#9uKTXbe $3.uDwnf%ŸK5f)'$P\~ ftnJ ;.Nҙyچ s cX'M:KMY?\Xr< ]0:ŘV=X@AY*(9^X2O]@9&Rm7Y6,1{ u̕=0%ڤPD)Nyd;⪂5>PH@ c8!M_4Rг( =W-AUd{Eu_+&rIz8I"_d-$I:ۉ>? :X&8}c\В ޱi~@>akav <47{N)~;&|fӓ6#$3N fLH{+[|cÕ/|!Ҁy uF !z ;t"|ZR=ҐsdpQWٕxPuj?(NiF4@MWhB,뙦@4sݑ*cb` _ဲ $hT1xeZm8Aw>7[֩:U$aV}?W]7T 1VӵDJ%LĩhC!v<+>SoWj (oB^n#s_GE&#p̺Xܠ`JPLq)5O{"J(R)U7an--,.C0IsM+ \Mg."VX2@hNm| 2xJz1 tb#FjL5ʒqi>nE*e?x;-cw Xm˯"\T:$Q?mB`gOu/\Fzsnd4gșoLEQޅ R:? +{wۅZ▒*/n ~A3eI?λ 3FZm]$E#C,'VT9I&d]e &oھwR_$Wc(!zeZrT|"TrrYt> ["-nRS'pl2_ nFד701ow z%+ y;W@Y+G:hip5`nf&q%ij7'1z =1YP}G}(TC}U?_ibݷ+.ub2D-,E$UU`he]#vJNȃ6.O0L5;WP[J '@xf(~1ԥ'v.I$_'=RvZdr\sbMvcq]6B"`e=2N I{dxȍP?MlŴYzen.E93Epa')^; t1ЫOrg2p! :X GGŁ6DFS<|}@HED==擥0v0cPh(ygP_g7w,lGS5/ZejfwB} I. E2\GE*߈v~-/I-HJP1b? ܮ\4"2ӉTkOp8(b {E74[%NN PZHؠbJ吥[kԙջB؋.+4+*|o%&PQ&}b FJݨ!8AqɊ1%9# j`ĥ!2аF+)fqER˭@ &&_vt!*cޠ)qo%,q' yV7^^ {z5 *犙$ 2~J-R|`X7уk£;>j"q8Ba|j [ip(YL!XzӌB@Ɣ90uoQp{D :n͹dPwZȅ5sxFX]@o{v.rZf,a*B7@|*SzEYD{-?pB MeC3gkбx3UnëgIbxq(;y __o`Ўg 1,^p0Á`. Z(vkɊ4o_Vف6dudVA^_'e̋sӡq*H%̇Ok73ܧwe3䘘h3Q k5t}#հa%Oı r zϴЯVCOdؤPXJh5u]yw+EsYԽyjIvҚOY݉1~/^6.igMm| ɰ=ϕ ْGHhgEnpu@՟sƟ~vpPnۃgScbA#ďՔ"iG>k(Y$+ZKۘ?giرj|(&/:L=Efթ⥱Bot?]=B{!_dh}? $*λE_imw J$G_3NZrMRY/ڻc"/k>w@*Orr2ςپ@nܖW!zO—d=P'k%nA'lg؉g& 9QVE+4&| .V7n5ė^O#]~B'+mژ%K+(2X 63 J`:#`l ="NwHv3ލ:(~"¦;w9c[6NJ?a?ȿCix?Hj;j>ƫ,tCR=Jqܐw~&u7Wzi|CҽcI~:RM$Ì?l0MoOӭ( ?9,PqP/+);/i!A@r8A7:RtnÜ뛟\XY'B> n^q>]ںz13[^{Rȹ'MF_ѐ%4A[?wqy 0)*9F[M B.wv )!i߿L?PT$/5F\n|PZ7EMIO]aVls3B-UWK/5ǚi9hU WUv|S`*޶׭ flqr!%%lDL}U@_OԊ+mY})4K.^.c8clUBQ)|DhuE{I9_" C"~ጒDI Wck,-:.Tr#ZX(JZ<0X!orĒm?o(ᐻZ qsK['6%Mg%%!KDG2U)߮X}$n ɴ{|gRr8iqf䝠/AGY HhK*_1|8rR[[9{ۖ p;?t+]HJ){f n @aMAk@/œ !oM0_6IudWR MZcqٞQ t@yA^ <^>$bJYՋ:^AvLEuP_N:HD %]%nm/ee7XZrIDjߑԎ9zQS,j*Q 5c&/rm4s-!Dz Jп(oCnuwd/тiw䒧+yS:D~jޱcDV(e [U{2[f>gU($Zw֪E:U+>=+Yj&1_dz9P:}gɒ r})H4(97QVy"1apcNJI۲#AnER;l.xcG@Nxط1,B Q_᥊]ĵU5qMI* $&>X&LFBjTUո ^E^m>hjNz5K|+) XӴ5![$js)>46ଊDA[ۼqQh22ƒD"=mxLW,ڸhyU3ZC 3% ]>]_v5f7 gˋZ";F7>xHfmbjD"'4Drh{U=z>ߦh'`R+Q0ENlx}j*8b:1vj•_Wȁq8}A9AN6JAI?ȄWHW~_ P%Ot2s:ucv z"q6 TsmsxrK-C`YdѩPͽR1`_'o 暎}a;H5RvڝAt @/ERzߣρVunۘ@h7ϻlalrgYh%6\tlxf"K`UBpIֻ}G.ğ!6E/:UX! XkYﰯ[T2mFE<*Qe`-Ql#!&cA1}[hY<KAQWSLd4-['Kq HD|VX?Z&Qj'1=dQL Qw#Y-XEX_}wׁ+3_F =R0Aߴ*/-gPqEf~GJv' <[UwJHB*u&zRI`"XL5-`O6QЁnK `ECؗFCAJ7*[sNٽ6[PA|D?)0p}v.e"t2Xg$*e{缼pdh=sѸ8¹W:[ͩjAmR{] GGpd^Wb]^x)ށDw3"f[Fʁ˱Ta!T£ZlL2m9sS^plE@^Azi p:2+9;p~aKS@9 z<rAH q㏅16% *ۜO p! }<I,b\VX4_)yrAN[/vgŠ̲G ~7>>MUSR B7 'UTO(ёǨ9MEP:㴍? В SxyV]SgOSDn'dOߛp>&-e9 &d7x="R,I z'~沋ore.CDt3l bvj*ֵD*Yߞ{`K21W4L-ދ=G\vFbJFHXI} P^2OCfU?S%4=^z6w8 C|q.Nئ0ؽ!қfc8yIL?Q}L~u>SJyMM7<-|n²#V_*eż>̵#Μ*TS4tR6Z'x\Y1C e}5#-N}S?t#Asu'.sŊa"{۔;8Ɏljr'uVDeÂHzިl9(I8@h  ]džx씏T,e5߰ԱgU\Q&Sa!ąUxYn}E*[EFrrSCr6eMr$=k-ʘBRiV w?dCl@&)zy8.ڸ9NxM~P6'T. A?ŸW9Dz.JlYPװQ Hk].;J)5/)L|[2͗L/pM3kb(@J>ۚjNH59)3?B+'-Ƃ(ѯf.5A;pҔ]cBC 'xR{+NGq@l{LYUff% }$a9&_g .S%4?׏UE2;i %gG|սjuzf  izRկ`]:dU1aU+ie?"~%QPl_ha"_Q ^"nŻ|}:b5#뵻BC`&<% (gS'DuTǖly &7|MUSgy,V>A+!UCZvL3ΐ3uIs9a˞Θr9$p'ޅ9E*LS/G[#e>{ D`:\-E),¹m/Br 9c0 a1:(#8E9B72j{SAZ?͔s|-A80v(PPO`;~y>4"Tѕ&$.%ì:_݉M =cv&7aҡ! #7M> YaEDp(g\^}͌M40֩@b6MɄʑ6}`OPP)_,D'a?:srPOY\o,!.o?\Ѿlߧ 7r}G<}wq]8hnˑJ>I!}*$.uh\<քI &Pf >ɸ98"} {aYmWnEWmKaJF,eGtʵ5JΏt[,UNMGe7D/0jN@:3þ~;^(U=^Q9^}R/)fyKd]+T;>#̛c隅o ( ys ‹=P;fR[]*k+5M}q7q3SM^՟0o*hj9%ᣳ@e!Ye%4xU-Yjsdb 󶴡``v{e *ksuJݐK%*WE(0QQD%-+ 8PC7` 18*Mk+8yV_!bg#㶭pNIfz[}*n>Bo TcMaڜ .Q7Oy b VH6O{9(KcBǡɩ%uz>opeX/]4Y*4DtCO'<ܥ=/R0W CP)cj(DŽ (m[>"u%w=L&R@fbh Re9 wӢ<"D{ƀQ/M_. w5y#?I8橢' Z K<~*oe$8θm55uBh=Ԃ :ϡv Ҙz7:bF,@Ja<f zKR>SA3.j\V8ȶTsDgh)dmZxb (J0{;m)!RԼEps:ix\wby#ĺD@5muhE@ʟ2;W19.WX ºt+۬ߎ&A)Z O*V Ǫ" h?[ p%R7 0o|8B.-YfNY 3`\Dl"( -*<5 ʬDWV茿o ^]?}2><͆TvO+q$t!7Et H StAc/Uږ&z`\Y=k^ȜЏn2IL bAǜ2XѻD2ꋈS.) kKPh/[ࢩ|}ap i?[ێ}ޗ)eՀג*ԍߛRa Yj!~`MͬFw~¨z]*ߣZr,9 7QߐhL+]O25"s8Q+W]*}  ZبŹrHQ9܊~jr٢r^n3֟'U 4iWQfi_)Gm(Fك'uN0['^jo`5dU*m#mp;S{\ДD6=Me*,L.^ KP*#xb+W˩1 魶#_%C^vlN.:(}98f?r 3ZMH9$9Iw(99 1i} {M5bt0tPhuS^ gAD,𣅬8HHdyPC,r,Sӭ8lUJ/&臗c[^Cggjt.DBČ!e7m@K#6bꓚ 3uZ{&t~zƸa=Rq1 ~VM id*.Ml,ofD J%xVWH6wNuUXr9:T8tA+ b$(-ŶKa [J RW$ #HsxF'M,<U ?3+tT/ Kkovf-[ MN 1K밺#x@rD~.jsx 4, GQTGT<%+'@#BB({PIj }\{-w.lڧ`޴[XL]O'EVb'6ӿ52q=UjχRi \+sVݥ# kPFkK7LIi_3üGO;s*G4[-7iLy?[B?p_ΆHR?"ݭ1&gkMb u|c{45ry-sz&pϋ"oiJekvA [d{ cSIw.t7qrjz C$}׼Zbt#̉gGxQ`u^ ^!Hņ!zBlya4í `A/bhŠJMofSG'I15跟R) `:/aYf~sxMPw,5Ӳޢ"xx1SI7D;!_;sa)? O|%u!-pOo*.;CZMy6%pJ8m]V4srZF`N?P" W$ݤX/~Amt@f󫘝w*], ٜD'6Vsa>Z+2d%[m␠>uy}A%zwٟ9fc%I5\55PMŜV&ڦ5\tA3c WSGpTA\|L?^_x-q +3};9=:\_؞p+.3Ő }!jȘc)o\dkt乥Ue < ^Vc$ΞU !"q^wXu/Z+ _,L҃\h=5u*lзH}ϭ2%ƃDY1Bϱ|X\q/ga MWa8A j 3N-FJ"0>4n7 'ٹjc>9-&[Uܣl?a^j8 M5\n0%޽(VL6[r.Zy@1=&)nh6rzwTPS VoyqH=>0GHx "pb1X_H*(~aDEkpP* ^\9f[,#a9[SʩKcǃy8hYxu)h9 gwjaԊdu-LD (qbL]8NY]cFȌ #{-qŕAAe x+|z}࠹4_i7$vLi;,|BT xXe.qr"0Z+,(8XLC?j^ٗHIh^wN[UKv-Ge]da6QE&R'F&?,Ȉj?/c'wϯxXKVd(t5XjxNu^k+y?nT++4rxak%ӡNE̙Iס2cBBʄNo/ U+׹0TV!6i3 ɧ3  ak"ݞhO`R{\~_~ 0ct|ƪ'9j`57͔:WmšNcj3* zӫ~aOLEdb$bSĔB}Kjk*63寢}PH9_H>վ+*> w+OqA9>YH''s>NMd=(IjJt"$V_4G.r3UB:"l L{2Cp9rdAt?!flꞲF88도W+8Wİv^RIX_A$(0hOXvegUYB_ЬVطTۖF\w&C7ƒYG }]c L۸AF  C* i)qyJ{IFɔ1w4Z)iJnOk xmT|N1v%fQYb2J݃ sa-i.[klsoL; ̦%YRxj_SNjA.Ffŀ6S?QX(Os)`VoN2ʂFrv`#e 48b>C ]J(༢F!迗Nvac=\Ȗ6vCkA9OJGkdllFUXD- j`xN`j!||?r1 OB8z%7G$h︤'AS&GB m~$ܵWl]?b7R :w%tRwi4n;fӦDW:B?dž\IPC%_Jh)!^F̷ѷcPiV\hH}zAFmv.).xMBTY)$ a=iH4inU+&0c̪4M~B"!UQA5{Sx,xZZ,~P>[Ktmĝ5$ =ZT%Mw_0/2dCH j"eeZbJ-W6b5;8\OQ8֬ Mt$w20/.=-9Ls6J$x"TU&<Z$htdCfYּoQ?ki5V 0`v]&X5DV`<8m`(߁ UvD}U g,c,pv‚!UDڵՠ=1lߓEQI.4P\#_A*S*5Fx <j /Xt_5;)JNW9Lz ˶t~l^i [8)CgbGGtU3onBAtH̉yCU-RU!>t ɘGɄ쨦C щ]0 Poe1x}B sWb*&1\5SoNL0W?f֧$$ Z81=sa%*l3UR@p0 O;z#\XP,ÇAPn)w۫;Kٹ"lDD$g*'.6 Rf=tۥ! f\M#QE]+q720"t:>LGFA=?;ǫs]n"aXvRfO6oMk5pY/A-V^Il #ƌْJU@{sHϢ=f[ΧPhcaeOwhtp+ܱ9k̞3W8JP&3K*ME>/Qh*8 j%jdf2&|AS}B/YܚR hGCBnBf~x&%ܒ1710vɊBQF2 o VIRWUq,ody^9G+&ӆwyѿ5 IQ9@B16}MWIvrJVNbyK,sb2ݚ]>*Ra8Z>}yNF*>acգ/|ov* nW'ۙkK.CjIפڈ;ji ,so&Fk8'rW2H4ުCu{+b ٥^F5_\dMŝoN]XǠ2JYl=sAlD)H_R&Ty0pJ7QlAvb0cz2v `8'8*Og( ?xh;ug1zG_M(-7uhyVlk-Wq)[{NlLh^(\^Oշ5Si=qXسۖY,"b^,{q(`[2FU](XCW͠vYozYH.tj8ҺΗB.δI>Rc~Q* +H~cR4t5&*ݜC#w0=) 2 cx)}0MYq{YD/󺸃mJmr%f"0^:5fI'B')K[]?pnYbO|ߣ-*3XŮRku0#=vf psoH ܕѡ5giGZ0@yU) 2!r_LK<޵]|GxY{uU\pq܏С4B$'PWpA$kdY"@wY4V+*]~`CQ>ƪZd> =WbHZ΁cd)?1XeB aI{/R7D@)֥!X#S#ujb n-d=[v ZBTa O -EibVtY^݇G`;[O7Y$cy\`'rӿrXlstE,7_&v)e2a^e^xgAs2rm6Վ'Mܖ'RŇOzr cOģj)r_/.>ymb'9ior=頠,Z!;ʱ!f IJGjmI {ugF&g9-,}6NdำbUSmIS7IO3 |wmƘS}͵["6c5]<͕ij#oj5PZ8lrޣ̛]!Z;kP)p.;f]93&#TՃz4އDCg Lz.J}X@^y;6u>¿,EsReƒ T /Pn%Px@$kU|?![L6G_WE.L,|^_KEO~ ANtn@|d{tCт7k@ݠ -ϰ>{JDsWM.4:_sY|谋?Q nG1G{fLbF'Tkvه%"TxvL&Khiԝiר~0@m֍z"V@ҠC@3ɗA"[7J~k50F Ԗ7='RWc r @҉zI(rY_IWLq"HR.s{,Xޒ9,?=Et\b'k{oZGZi% d_.1v!P1=M`@h{2נtte`"ˮkő9 ob g8ڗ-=Y lP.5scX |Xh|y.m4-fTLvE1޵FOx+݇憭y{)U^l}a_#EwoWQhyLBUҎ:Or_Ri^RI-QZY)ÊHRG-v5G :]$*g F‰g^եgo*k@\Z{RZڭ[5Oo2s#f:qZD>J]ľoO?f7|oC5/mc#|Bm˻,%0iN^& {3 J*t(F6JTťL'a`9? ҫē79*xsuxxCw%߰x~{9^7y>gNDZ\5en4!ÿƦ?cH7/i^>|ĵ-d@ZGgO"_l/|(]oeE4q,yX #Rtw%i@ol2| tL BM28Zo'/۰փ0( pŷ8]KԼ;fow\M Y ^W;Ldf4e0 r"sP"86z1qRN0<  )0o@=R)L}Tu>&`K^+q8Bzv{ bȤM/rv(zc"0k92Gt>s)R-XfVs,ЯTA-]:V ǯlhxfA!>AoK{*MڼvE x_lBhi WI`2s9dDɸUl+n=]Vb 縠23"%#8,\T ^=OF#{Oِ&6ʈ? Ԝ>h|f)*1f Ģʢ[L=eGkNdi&L+<LN|w~xY* Pi9=O*8EniڡS؈4%ëfk[F6V FXS㬏 :~Vc|@3k5  S6`y}x¾HccYE |}z^m, Z#n٨ '+QNS6'>(苒wo5`U0dV/2*]1f*avIsvx2Bz_7[[;cÄ́PO^Giø 0&~TKg{,"Y5ZAsM[st""bϤym2sٜUmt})-[<uBT)K=Ш(5 9Bq궍&#}cv, }SysXL'Iypth5CjgIF߀[[ j`YF< hq\HpكLp.sM{g(b'wμWe6=v`ܦfKd;e+ 9VG'I(V~6ͺ[Y {t#O}u5{E"%'myZڝaPx;Ҙ# fyƀY,''< P7z|yt}p8YiyPd<1L^LUWF,(:Bn_y:-Ѡ)H;J9/g~UI"9 \%"9'_VUHc;%|xf#/1c ;s:Mmg[XzB R~jUsE2[P0;mh۟ʼe!Vy=[ԉeWaBEo43j"c*\K䫷#FWd5= 5GӌQ,;6t.Lg.kE)15A.l'-[]+kK,V> )j\><9Լ fTNk=wm j_' U{K纩cN(ge4?EZ67P1K_,& U;7xp)9˗mqghCU ND RY\A.MŒT{ W~`=RȦѠw]-b0#|KCN #.& Dpve\~P5l}u( *ꄶia:zES8j{gcGd{rϼ7TƇ#C<%.`GFVOX.PD:/%R > bž2ei7hT945CQIˆ^mڍ c{mhxs,WKCtjy=У2$g/[^ P!WTD p!Wx3:sUr~@ދ$(6@7AGa"90;#^ZR&R@V)2` &^u<)`V( m˦pK\d(_tJ@#Y_&=t1'W; T!)3,L9):px"|[IH.}y#iEP$kb1Eozu +|ƥ3܏;W K/ )r₩v2Ž&Alˑib8YfՎ]|_M7`<=etOrv)m;Wd<7&bWW2z1<>@՚36=Sedk+5QHEOp Mzv.YO3ȴcy7Ndw#E6я1!^IAOMĮ|/˵ !!XjטID/Bl؋~x-]nFŚe m$HԠEmB +ਜ਼]jTߌOH`DKx=هk/*Ud]զTikil[?-|l^ѨMz5B=G4wk2?+@"{8U4!?;%ֺ*Yb K aj}13 Ǜ}V&Ӟ(* N[" r8[-kѲ~WfH{ I21l-3bN[MVŠ3i|0׫aW!+ov l%;}gO~#n5{]Z>H-dIb׳~>lLeydުzY4ᨢFI 0BibtsX-U}* 4^'LIUwk@f@18j|^ЊrM/j @ ZD c}:1 * XJ8ҷf͙"r0Cd>Rw_g|ҿ@˿eG޳"00,s.%K;>"8]]9p%+i<+$prs\DnꀸXW'("˘QtE\';R' k:fVkÓ4FIUrӔƺ(m1Wx4‚b -oQG[ jh ͻD%5 o򂯱k uK0g<;[JEswیɤE/Tʪ;]!dT-h1Ժ`i:HykŠFPϕY3=a0lvd6`ⷨ 0ET?Rf0y{]bIlNV&A|@‚PbHjC]ÉԿ?5wd8zVv~|ɅNU;sR},a:>3ćCּI(]|ldWň0̩'A\D0wH`Xxh$49lYn>mހVFt@WO7'u4m>~i_2Sb%c3AE5y"IlLsҴWZRSo-g>&[ܬąiS7ݳ3+\|qAr؛i%P0P6U<ĉ ,?٪rX]<ɜSܯ6&f ("R/ Vx)[*ݿ ZI>q筹qfOR]6Ζ9`_'gVVes(N:}f/nΛO `%yG"z|ulŮúswnj ʟkr!8R`%YTsNÁNգzJzt ; }-a-GhrU%3Ʉ Dxe>O| u/IFKNߦȄ ޤQ0.]\T7Kk32 $Qᆽ^5r!L5>0)XTV pg?D;jYP Jx9E̾޹ꓺ.fq_t-1bt=5SDa82!OڴsH(W'i&p\:!SĉڗJzN. u0qu+;jfu? 9l`A8eoҾַĄ5ɚ Oȱ?n8_@|P6@tI0oDd%ާ+&U{y1I('NDirن#sB#mK}bB LӺ0ts)9OsrRڐ7g4#C# f͎bu4|bi{}ds-9p^{κ\jT$#0s 4+>5 'XD}9DncXI]3ߊ(q6J*z dK=KZs[fP ^nU#iQ\;j o=-k26#V?XWedsfFc^fҤ=KW|"m[%g:4A:EwNUc )z~Ag=_6Hf #&uo8A0U$sDAɀ2% 8<շRr`jp=AW"\7E3@e<ܣ#vȘFc=P0/~oe ǎNS {pxJ)&|?hݠJ!Si} ~jd@ Y4ra4$6$b ۟Izl;Gd1|>S8lb pZf}=5l-JK ]ﶹ'heOQk,|@28:OnJ딈fԌ4 yjԛ|D,XB2f,yIɮPՉZT4 Vm>|j479pdӥVQL MYOVV vugQAXgpjc,#c|C/͚= jsBG䏈isr;yW/2Hsy{1N@SZ <6$e9\Z)1ڟ:;~9A9pQp\X>ZU,sW^~4b`Gʕcۓl%QF&J%`S>1c eKu.`gr%Tl&JXTh9+´ZZ(:O%vѨ"̲әDd4kG$If-go6>wXҊ<^ Nb"6SF8=F2ĈCbЋ6cV+?QMf_AL(RC:Nc=On`.+gjr' .odaXߙW9P rW$DTDe"Ɛ*3{f7~οy,b̶/rBTEagCu}$8t@cNjP \Q9Eȴ@<p,KS)xuUT&5}'w =>[EHj\ے+ܧbU@JQ׉%9Eܼ\YommV`ܣ\eyR[9hzj=l# N'YEx7 &K楇W%KL&睁 eU|eĦX '#Qwu٘%Hw*$XbYiئLZ>Tn5{5%ś߁y:`>L1*\cѤL hL@[d/1iܖl¸yvBR0oW@$ć7 Hp_b@.jP,<Τ͍Hߕ 5ݐǚЋWIBՕ#wۏŨ.9 6UI"^YP7^ gJ3b{sf"cB .o۔lvjm>`/mA:}-{Ի{h?EQmz/ ą ~ 5jAVM7oGJb"Lڴ*ѭ5#(mDm'Oqa~]:go'Z^Ӹo|] n{<4#'6G-! ߺNz~$m`8ME\D:Q ϵ{M.㸆C&A%eSa2$pTy8)'f9s&P0gGÃy[9brvlQh\'sɏm0"nC]i|qgSщ!_Ֆ@agIMR =CZàQl c bQr Yp1TF6 #0QPw.bW`xկl>q? y!~ 4.`7,#!(`>348SCVǎDrx=Sr_괯~KNiW$MMNN |NU;Cc0Rm%.D_^rmUmMk+\1BQ0S5zzhα,5!NuW̆ (#Bh)rΏt4.U]+ZIq6;52W=[bLp=9?]Y;VLV̽&/<ҌX+ů7)B%5\cL^"1sBۛb쪳NX[,9z \Elsܮ( SpYuPfJn#FAiwgJ2uq+kHuShT-FEJGVE=y_bfr%c{5A["Fe/x/^pIY%0\eRjc\"Eu [ ;@gSrb3^KpGѩ@D}EI9,A<1=sðHv.QDOup]}/?dˠ3>E_-vpz'3aBQ !4#M6w-21Zvn % ~\.d?wb?HB cZ۪em`Tc`s_T[l$ ˱ `yPDB]` S6žY!ɥY 9 h*_ŁcAp&B M,968ec"nd> 0/{k v{䪸Dؿp)'ZOz1|ÄqËJ|k¶[rFRb7}}<$ I1?$[~W|#VspÆe= $(-"oyQ`̼K2,2f&Yp\F6;FNc]SKo8' M^!: SnF8%r(]dQ*?f8?w +!|²}׫e(Ps8WT +cW}BWLT eSBϒH3ԭne՗.e vK`롗vDd5`ȃ8p6lK̬o+,(zԴÊVN#eY*(LFH/_k˺r gHcd5|o"?# `c=Pdo?YQSKDuLIT"FEttb&L| oC0oY4+O]x@|oB)?vYfyy>soWOJ|5ꓩA~ZV«}b1+jƺ1l}GO$6W7ĂV.YY;;Ahi \+NJx,UfL-a8Q{W*jj+䒍&.cU2]]v6M)pIabE+ n@u Y0}:]ZiSlYui ɜrS tZzv3= = WeX[FgA)zLm.!z8||nЌҧW*r6ƚe 8VIkp b5_z>+׮d+wiDXM,4]7Z]jE kpy(406`]θ,r ϶ }'Rzw 5,|ܨ4!M9xVpR9ϊTgԦMn' !]̾N?I:-ZIlIV[[q VJKS.Q>2wƱВ9 wax!N5+ v#ȣZNhZpU S.4} =doS;+Wu$+Ȏv6=ewvpCN;t9I{3ϝScB Vy^n0̳U!W.UL;.J1cU*FO'd|':r\Czh "&0|d卟^ RFm^lRCY)Ϛ#=, |\OR:O+t|Se `(љN( RDVQaKr?+/@rQNA(}M=); 9-5a,W֌?>^b\ժ8aJ y=H֙dC6M'_Vy2^/-h y`2"Eꍓ#҆)H+wA5nZ {$TAÅ]U.~cNQsB-,]uF:Nf|@/A\@H9X; ~||E^11(B.);N4~ڪtd 7Qp * Rc2ϘJ_5fT2VɎvCnz;x C' /c!S@y%Lǜ'\ |5ƸZE0RjPl54c/2}0!*dSNQ]6{UU|AmtzeW4AOEKQ9Rg"E j?B,V#DG8ei t{f9l C)l 6w|ZuVg",/ 2^YLYZDM&!yOK̳ˬ__J%hGF Qh>d^U*"!ɃT޼=ɜ4&0e-5 e7g!f?n NoQ@Ϸ O6D JuT|_%3$Ɉ]nM-|kAn2gzlsk5h3:K1jH٪|r@Ujއ􂱝d]k.1)E@~#,#Eh!p[=S.>bNzp-Dӆȵ!eYؤSRIAU5au<C#)ָz#t -`t様~bxʲfTRVPGyIi1Yg_N]|[2қS73%y;`d@3.í8Q턣DlHDzO %^%7*Xێ:m@X1#T(s3-#P+フ~dp4DuR\;? z$٘`;N^n%xŬEtOzQ1x9v*YmIx4Հ9xkPRRB*TίyT^*ǘH%`{L{-l,,K/jiGP-Q*Kt4mx x4Iz-{-r,q^}럆7-o^y)Ϲ>Z8U^&9IKnȑ_a@Y%DѢTv`->Xa]-mUdYZJKPk awystl}brΕ,Mաa?CIKF!pfnBP|h§b>B8#%n~k<;q"&c%C.F/a1KT5V[D\+MO3<$,ЉfMqZ£hR=H%a?Qҷxuޗ6&Ł;*MHӞPlZiv*CET)Hv /Я.ajW_[1-:$*54٘{tQWuθ/ 8ܹP*G׻ȋ>Q+nzз5>V_$^^;->qP|3!V8u̎L^@yif`&[3_b$,Yy~<|&;/| b oQxQ˓*aI}_?9Q2j F ܜ6=3by I]ۑ+7/쬖b朝lSNfZjF˚m1Wd`nO3F |=f}PAW7$]&`&>Z$dY1HuJ.")5rym۶LtUS[X_@ pֹ7ZP"_F2C㣿=7[J0IgB>AeZD(wX?ny&*C{3G(;}y8{rjbglab`o+yB8OK^ws7#yR(ٔF2WB'fkx9¦_w IۉX "Q6&_E\X!B4a8-A(LLO6Lsװ)'v+B< (zsNrX }d˲ym4!wy\+iNCϒNevsЇ[ POƶNf.F `d\ưNty< ;z'a2Mci-UWy]_2 g`&&+"Mt .5klK9C64?#Un`C벵W%HwA֘y#'>IK]H.dp*iK cEņ]y#*>V/G"!/{VPL<~Oz<IY70'z][G>:49,Nef,TvCAiI9n7 o{i '`TSO;k?6RӁX{qR>!>q%o$8N~4 Me㨈s Ovٓs$5Lqv Ė%K3J@4o|u\;%j-l;g"&:jɋr]홈x; \T 80v|]/>Ĉg\vnę$ېӕht)ϣ(=>AҦ.!8e=|P>mq7X4?& T}t-L;WoXr݂B q# ^V}w8hҎ^TC(t>]0~(b>]72^i&p/)k5?-|("A)'9=eZ0#傧 a߬4:%[y"<~nΦ8Ҍu}fY4{Hd:VWkXyԊ9[nt@\; X}̠LUȂ~}?֮HCr0i-@$[ d{[E@.]$}y@KF&;]UUlcY!MJLٷ: qc{p/42[O+Mu?x-bZwWSǁ?I* ɒOU #g4n5 n+^$B*s0":*VOHiH_skD-zA¥-\wB!*Ƭr>g? +zma۹7HKIb~,yJ2Stwu 3CEʹV}J ޞ .w-iP2V@L>t%͔|TJIP4we>T)B!lIiDR=$~8!&ųEܰkjKCu+ZM:q푩& 9؆rI<Դ ,|Də{{\jTJg~`y2MU{0TlGPзܳ7 zB/S ڽ1#M"(z\{5h t*T#rUFGծv( 7չmffl"`R`Lh_Ϋ'[?!_aQ%> IvĈgbH[NhAYbP N Lg!xvAm!x+8`ϟ 84`iȵa!I՗⸊t.Hr;-2N5]#zskQD ?'ٍ0`/%_νU6 QV7~?Wg$b Fe#e7bjOAkYHJf#nB+AqK%FbB'3.7)ɵJY \HĕH=[evM:OE& չCQE¯?&sV'1:&je J PD^2!yܧ` Izڞ>`C`l<>ssc,pw^Ǚ"BbQ$8>JBkgST߬\{ 9]s!1J%iҒ-kح{~1tjEVg&oBI6i!'J6W>Q%0 u>1iRqf$V}Hǐ0 &c H9h=#a N#<(K5Mu$EBG_Sc>ai fAOo_b渪T7I^i{{/<ȫ/ ~w~9>R2;q5«lB ╥REt$i#Nw)Y 7]}R@9'>߭>) RLaΎ+&c^X7_ʷ,MX : g{!z0{lj3 iWBɺ"$O$=K՚B0/ژֳ TΡZ ؀οc@ѕSlH iYZBDQ%| l!N+5Ah! ) {>9,/EԬ"ދK";tDCMC c$Јe>sш,?Y+e@w,Cy<"bP$"5\Ė[{bօP%UשZp2A.Q!7}h{Bܿ4~#AĘ  I.v(*;Fs*LT+pSy{Ur#rmv ǝHȃG;€}k7"rRDٓ_G7s&7%a#;J*%XeܢFX70n69u{Ql͘jPɴʈ 5 8=#g80+Vs_Ke quj6s-. " a޷!iBGK#Y[@ְbTda:p1+QLsIXi QQ;';tv{#AN=,y8UMfJ ը?zd)1DlT gdI-kl~~Iy@8bi!'9a㭂nP*@΀7/PL)t-?0} Y*P*]_ѓ), J;Aqqa֍nN2\"~:2&QHZe8AYWgO$ZLm 86Zbv)ε)Yv۳͕ʀo4]rXfu\"2yha^J*}dX|~AN3oşTvhSq#V2N.$TB!x;˵_^r t褜<[ )qՅ.XxÂe4_e^ t=em{|sSӓ2t=_:G= ZӿS_i~P+ J~FJar|_l*)T:m~6^t}JbZH T͟~tCR}o_N6D./-ђ"SIiRtJK=(@O&uݬB'iQY.݂g`=omƠbVjcO g^L:^I7~k8 cca[r$6+]yNh4~ecN+6_1&oR ;e_1;aӦ^n``pC;Hàoޔ =nj9mSn$jqܻUS[KAV?5|y[习dBcStmNҷ S.'Y#bbm(uw,wp8fT/݌<틊{/T$CAGKrga^ kx6\P8ǜ J2P4F6% {Sl(ծlֺc$𒢽syS@ȑ DD~gbʫ%te,PEze.4U>t:u/ˏF}wFC7ht6ז`"e[#7Fi\mLR BcUB0c{i,kJN\;ތ{X&|8>WgjiV+9yO5+W50}<˖@$O';;4vs]v;(H%a|>,!FeVz!n!A$7QRɪ"ftV]U@+`&C^"(Bt:aXBLX[ M˩}_ =z]iy#|BH"s`#NX/OncjG7t+ գrv} &CyX=9V𥊳ü}E&?Ѱ*e39A"^w27qȐ>O;&˩RyL`vrg`)2i~u;ez[nɓIΎz~``@V2=iW΍^ۙ5àH[ĝ0i?zi `O)o:V+Vh80y`=9AϫU_,a*xTlYcw,|b`N3t&,7ŏQoAG 'N_ܒ/ kCMXFc0e2̈́XC?_Uu6S]ysJY%}ҷWh~]'nqP=7MGd{)#>O@C pC@i1\c֕hǀz4^;|#BhVy^| ;誖D<5 6sZ(In]M<-QM 7ZWfu 0JVo?NB Űqx%RV)l3Dܰ,4LZ4K8?0g?5ėǂ4PC &QI'~:á¯5h޾e{>wd_ggaq6ϸd2""QX`ޟ0뇄-Z%bk JBLJՅr̺/pg]SD>c7:_7Q᫻b~cqAaDiPt"t"{ ^w2&Գ˅gq$8~20 (ﺗg;ÞWvK+T%4b㕳;Jf LBn]⢻<9pb8Zݷ-G7xxĦ:5^Ǖ2|]*].#\(?N̊QK H 8gsŶ,یerҠ \YtcTlVFՋ^Pumh'LcĴW(~}Yvo_ۉmtBRxߔgЉ9 vQ^2 .TI}iO,'}".BŸ&p8˻ŕ;R^NG@tΧT8jb4} ɑ8.钿>g^U1^Şu$[xWo/!y*Fl1@{u{՞Uεt9j;1Tq:ֺ*(b'$DѧCFotH :~h]w«ie=rN .4e rkb)\ I&p7f}̮ȴ3>Քv9Y2] %;? IHiKY'&pRoo,_sJK=RJ ԇ2#xlEam[ 1Kb\|!@!hwgap.›|UP ?bPQEw('r3#;ZĪh S xNöN=Di;kXvZxPԔh@gO ~)I7rؤCE@^DaHN6NRO#E'D& xD a٫2:`BxPm鑄}aFR *#oW?+_y8fڭhZ6Tv-R,7݉OAXRi4;<(\HI_?Nyu1*^@s3N[zr42OeO-EEm*)@hjEՠ6a.y F7m7=;fY&YZʎ $"}4Ɂ`x'mz`z+MN1*jH2Ư]Ë_\uJ?Uqt 4Se#=sm6NAj8@ b"@]ۯ1H r\eǭNa9GZv*3&_.iuOp0hHH zB*"蜦|W18!}^I3[VGo \GugSQo03tA6Lx7 ~j-r# w)&[3$X>/U1L~ΰ˄pDea7\,1 Z+͉@Ϣgm2K%H^;$x ףlv#xl%]ryMpJ鵤`G/W/:|rlqK&DhkvZ s~h֯E>ƺ*̫v8 Yv('w[鯀{, n/l֝ƒi5圬pkȄ~toIã=3c8" ۆJ D%f ަ 8iXo:FǮ<YauEy.w@?:?.D UڒbdPG9e E1:=Cad^eU rz֊Mv4śJzF\ݯX|DD)cWznя:@[A4VU2ԭ<:;@ұ*lݥj k.~F=VA#)WucnYso p@R {6Y& ; ?MZY94 2[Q5KAq՛s/F b%ؚXj$.v-Q"״ ~[5l aы'3ΦAwƩ:5AV&wl~ztSrΈyJ> UgTCfk ~k/>9  ΡR#D(QGq[zKavUiCF0vkT.7"a2.w}n,n_˕\c?ϻ~&+(ĺI o|oI^kALeDIMoR6e98=P]H27&_%̈́.6ѱ> ]1\8h"o%) Kp@C;ӵď:704VZ>rK.B9ރµ4@"DۧgLא U\45_ x Puې&Xo4usIR]2fe,üje#*s6p_ T2)!-&U0^ӫsf:B}Rz90ȊY2=zdX.'J'w+>#wd㘃D9}x=}|aU)>a;JjDzpOhKv{rUE6&yN 9c4o/۬ȒFF7kZb%,ht :u.B+GhsUe,lL3%=uKvR쐞:&fz-;6|8ZVO#A5h*E\"Ќ\YMqF-$kh+v<]N'6A_^uq`jYRl3\?||jX pnۂ wп/\GK$csC{fjx.EZrNP'*N]G^lm^4d*&䯖qE˼񭺖̭h;q8+5QKt(+=hQReg?klg+n9;X$%+J+XntStw}ޓF4R[ʞJ9E>$bKu:ޜV ?h nteZUB\.,/pri^PҤIJ "{!QDYXpSK ]F~mmLfCg>U9U(wH|Daܣ%Oۏ$9r8,(#V@]jubtS~6zcẇc"/ b7OL?oX K[o7z6= ټ͟ز0 N3yr9 jK^d]T\td;d,ٗWݷHA¼ T|4[zdʂ &hֱ%0qZEB-p& , hkQeNRSs9r]3 (k?f 12{b>c>7}qE#׭9j\ ;rcƅė>Beɟ|Gy~xi?3d;пU Hu11 `c^ Ftw3Q μ . ͒PۙAtbI _8Η\l ؍s7XF|4 B{Mj[hN;bCm.0Bz`nzwrPWDDzx&ainmԯ=}P~k1?9:ؠd2h+^d|dE:+e]5!78=aŪtR :UatE(%5eY*q5x"I<D_R9RnYNo\S|氢iޒOVM̭! JA6/bՓto}0 ۢg(tݺ8+ś #A/\]C2x\춳?>s;vu7Jb"[\*Lm8l971u}]4ېS%#06Vo!f\A `cBg^wS-nzhptb)[<an@1 јH[Tg&+;0w h&7p|LD: ?>]Kзx-)*Wlj<.PǭĀƼsa)!{YNe^;KingmeN `%;45;eŜ|p{ Xo33Zp],{w9G w(GU <w^5)Dg fQ5 ,oLZeiܹ5"HiiaЎbbQ_ seϖ|ueфz꽲6mm \{wo7&)(x|'D~uK-MŨҥ]kߖ)J|5=*дw]tTҎ*X_*pUsj r|J܇_jNu8xuB/ݴL` 7|'v21LP ;j zDx$z20hx{oEk81gP/+AtoP3kX~+YxF.1*qEN |!5g G]W +vITB:6Yd1T,+rAgÿߏAAͮ +1 s0:3ldfd>a6Kv 4g-DY%n]fB10[:Ta]i3wɘpQkq24O]c{f2&\i;-:Qq l_N7MJ /~Dӻ "7NʹeҗSG1}OJuy ՅDkP#,qб8c WƘ|7)A݉)[ $-6/RR]8mb0%cHiN#oƘKzv'ʀ s*7V&ZaJoaGP0(Y𭾆~ĺT3o1$;9,Us wߙ묻6a~/ђnS'.gT.?YDB^wˋ{@M\&oe4ycQzQ$rWǙu֜BФOxGV@]zk1%KMr~OeS?`o Fs͈*ݑ2;X5/O]XOvM!*e[ p`~@%OԓtgPMs 1fzO;:ju[; [b?| O|>>`6Id.py`0cagP:,Tp R=Ep ޏiviZNϯeV}8=M׾U, ] g~E5kHw s֦.C*תqubijWq5ALFxg}\R!bߗmg^/t O%Sz:a2U"5Xi}V㸍AEPOp>w:&g i 2e4F@.$RZ]HuYNNؠSi594ux%4^9A$/!|*#M@/C|iV_z?0T<a'-QnUs{D\/}_4Ol:VW&+?QDn[}$ x$Ěc*FiĞ~Ǽ]@Rp1G-4sWoa-NL Ƅ!4"NXrvYbDKcͱ&m@悱q_WKjPt$ *bi}, YpJM*îKPȷo8Kmc"-mE /sh0Vڏ& A؜f(۹ە~ƭ╁EG<& 9]C#kRl.)|R==F SֽRmB; 蹁^VI5N``O4_Ov~.^>7ٖVe>Wga%t߭| JpI/z. pR7fX] (g79\~ࢬz? rtU%nx㍩ZjPFqB/rF^zMRU>}֌gIJ:ưqff\O)E`::G*ZJM9}};QP5VjMhZ+6Pm~Z [%ӕ1賄a$٤Y-zam)KU1 螙>Z'0&+%мB % 'D18 k/n켡)%!J*:FX*6<)H=!*7j=F1|'-Au >eu19;o-1PT2Р.ƲNL4) ?4c0,ư{~U5!rXR3eƁ!BدjkՑ$ M37q4]/e2Hǥx-qQ!4 #Clw.1x?,Ou@w522»^@ jl.CI[<ӑoXYâXfauU;ez'8sP98(P&]l!8ztץ36fbwB?p akvX\׽._<5Sl釚ETvN߆pol1@h%9`uq[<~- ,Vzv0扠 F!jz[(2j~ |P:_q +4xj:q6m{bW杛U6)t"ڱ\^;^ėvA>O^fFz)6 q--]ˀA}P눎1T}zlB.6x."zԯªۥU?Uv L/j5CGTUő0%ftb5Jb uɆWjlҨȘ.,Ǫ6P)A` rtN-o3}gU6S xT~j8w^t@gv- MvF+0,UTvH|:aM!sO:b%\Oz@r;>JO uu&-@0b$ 0?qQ)婣:$Bm~fbqB;[r`RA=S:{6soe(m7ƍ:ёNfH"p z A} ݘSi Y 9FlݦҤ5k얠GWS&T%%x_kmAZ)t*&i1|]a: Bfad(ҹ#a2]g 7ɨ  E٬IvyX>`"(nw8@20M 0Cf1/@TKI2>PBwt7g`2LZ\KlN0^6 W5F~REuhԀ[b YdҼVv» nBY>PJaX-@e>|ǩ'Xn8:pމfLbI,;ڂ+ Yh_`RMځYp;p1B;4m\}H9q+Юs5pADP- vւjVsQAdiDFVD,wzY!/4FAu$1Toa$e˵oh ﹫3r/?S8?WY: !l5-QQT+SXpӠ|Ng$,=,o/4s961,vZ5 oO)q:4(5+Q='U>>ޛV'H "v|DW02s|]OoXaQktPQſڎ|Gu[Ka9 6t'! jtz#WeUR+u6W3 DKg\!UpKkE{  c6g<5qS? [hrF~RF˒NSI;k˘N`ʊ qG'oH޿XiGDLeuz oI%4 ۥ ҋi+I87L/ÿբo-@*=,&_Q W۷2Y6Gz⮙?jN/W)ScWsq@7OJ!:e)#J퐡n[|ںZHAf[q!uTFIQ2Wԣh>f(@?AID+LgwٕXvR@%Q',3˜+1^_֓)X͗0/W^?$SR?b8_?.R ޶i!e9MhW;vY%0qKn H 4p*նsJ98鐥%w/dq~Q;hT*D'-,6E:5w/}?Y<hWڟIDUZGi$I,nd 85Bm[͹ϤKG!f۾jMt!Yχ|O`LPv_MHGl,-C]ƀ3.vPC*/GaΏ""\aZJyǚ@PlDlJܥǸӑʆM`Ia7!X𮠎oyS+HiMދK}$ga ( 4&kpz@m7K:t>'HH n*l.Qf(/BppUTٌlV tni8pcoeCp(9"dOMg5HTej+rN޺PGL!/z"Z$PoLF7׾7m}>U8Ir Z7If+h?*KXTV -L WTEϳSV55UZT CG6boʞ)hp܌NY)G6\gmy UO7 A;Fa-%0aXKۍ~pFx eAsCF3{opX/GB8ŀTiVTnʟҏBG{.l; lW=Gv?8g'=6Hr/\n{R/Ki' (Y9θQ$NSr@ -FnO2qWYr!>XAjRkû'$Lzy$P5y4Qìdzm5QRBWJ5 ΖXSۜ"s%XӔF s[@5 mM%4=~.v15`p/-k'E@c75hm@I{PQ[5=6ȩG~EUt$TAw~A!(9Q.YݨA]>^}Pjĕ+_G94l}/#b=5hƯd&tO Y)rh8m vJcT.1j3b}o|ѺLs&=dmcۺWrq >r).?8ʨb5̱:YӚ g"75"xoq<6-x2Y=;XDza>c*#5;K" 50ԅjyS>k?9*DcM#@3Q KJGlK@Jik G]}8<]&\\N2@*yֶ>' ~02(Ń)J6560NʉGê`$DKפk),\kۑ:Sivc,9#gxNmV"mXH@sŇ+)n_#mԺ:×"u&*Uv)>4;ǔh)gu.RŒl6]ԹajO hM̦mH0J@@ʼ$Odx#i6&=lQ|rL`hX\e%J͘n}:;JW w?M8+S0ιcKRG]ۤWCI^_L-lVE*k5K8@QqV5=8˴aꘞm_qeߋFeo`R7L%I?ۍ+]Hڢ rӟwZ74ˣ>8WWd11ZF #@M]:WSiMAeMIP'G($_v,9oߣx ]>rNK_"T-KzKf8O\WU|=aUڇ=P2$G<֛S[j(t@?j?lE[' OMKnmr^Ww̾#w2 l6u<[LZQt[K1ՕaR$ )f霎0uE{zgmF{m$>{ὀJf#.Ki?֫WV1""5J^DN|,hPX-2̄=֮馢mmnpT}眀g5O(,D,6~v`jP  SWy ]rݡyg&u 1s@*(pu"u7`9h%){2v3,Ok"2 aP3O} @71L;c6b3#fr(/ TwX*Iٻ5D v,(udEYnM9D BkIW@ Z :D(ۤv+ C T5(4"B`uMI<qWz0eƈ7.vvTa ~IffBGKZ=A%7WZ OPc0qY1haȖIgQGWQEӆO)̘f`X9/#\:d|q$=Mט?bs18޲;dH^ ]Ip +g-ra0IÃ76p酋 7߯an?/IvQwï|z#+aP w`0=f}#W܄QW"9KХ>SjGJ GUV2e!D⒈Ikɉstb /]ALjqǠ,g`}SD5^OG #{8-T^WpgwPhFtGp(D3TuvNޒgEV-زY(z?1Ȑr ]v߀9|,P}^L螉^≉h;6٦;6u0ᓊ8 L>zRԄPiga@_<@Zeգ@v\kefhժ5R/bALm掿hF%P!$|o.5rZTSkOj)wNNmNe,:Eҩ1q_3TtMV^raBAm 1Z=:&ކzWJ^HoS, |.ʖ@t׺CK7*ICU$~/b $&`+YI)'[zt  <]W)Q|JlΪձse;NC9)@`haʐ}F}!MF9%#^ ňI;plkkcѷd 1Ӵ4$k.\)į t|O2X 7$Wu >B/$랟9E OZVDp{ZJS.G?\jʷk(IyU.Qٺdz] ^XWiZ`ua(*R}#_w^{W].l>r7p. RBv`9>_KD71q"oiX{d~He籪V dۚDtHj"CCFCaƨggxX%6tp['8́"Տ~ zTJboa! ;j݀j2@:q|J);b4,wnjk*U_ͨsfFT|; Ajv3))-@iC0Tq)?5K42Y~\uh3zS}:Jj(C:e/>]E,,W<sUܟ+kb=x&rQb<܏K4AJמև3I>ОpD(i"V~a%B!f'(Qu0iY og֓Y*8/TKזJUvߴ_cx LdU ۫gN^EQ4L< ͅ w?jw 8 hSu`cEd .smtZqEf S8}#.l }/} &"eMȳ`tGKG"$tpr)VXq g^jПD&eUߵr ֓g䜏SAShjH/\^X =%0ضf9Dd`:fzU&Of/G"P~* ໂޜӸ'H <6O#]kԸ 9)zk>1dH)vs(5@JNlyb _>wZԬ_wj6R cV%g0Pw, ~;"L֪XƲu/Ph#[| 癭P]tԐ9X . ޫ) $gAmϒ~UK a|*XuU''|RVZ! jHEtŴRPKϺۏ)hI\h>];P 3]^LDH"e?$~|_* k]wߦqcUuL@a$K>[讣s?/-&`%$5l"3Ghyҡ,26E y !l$zFB^/羳ii!$3Ш'sY~9YQL򌗨]̶ndўGP>] +W,{W5F]aX8leHSJ@G8O:Ht!S!1=dplfa0p}wkpZ %)]Z*Ǟ||#M&ì,8@ITEXq$V:*#ތ+* 3c5Y=k7,rÓ W}Psf`UBdI1+a9<h !)AyuCMBf<pe2YrhVNGl{%p-q>|@`gӑ&}Rz@a?3&k,XK/IO60u=[G6% U2< ͅ3zݚȏl&h!1-_ւS|MI}O_\aNǃ:9OHq ڧކkbô_d'm~it`z탃xU)$HhyX\S&W)ce >;yb(PGtYgUw'^9B%ańPoNnw O7Ѕ2/VOJklL\oR(z 4+EYc3[Z_*'Kc 13A{eUdļEu$.KYO|K]8aж&e2\ᨎ{1S|=t !/Z *YJ͗.{ښjxQը D[4c܂mSq̹NҊJuÆQNvKƔ} oڶYgJ0G/e%2y(nWC=߿oeQ[1Җ /1kscf({ O/$iYAOAϵk'kdֲcp<_vi5k-VO%PWt`!O$G$ u[ǙV LE:2><S2>x!nʸIm%!@I.d{N;D#׃Ŕ1caؐ$E/B˂5;4#*Z/F?69݃>+v7$߼cҋsf3R*3Dw״.Kᖐ(E @ PnĈ0|Po*JJFD=eAvΦr?,7or͜1E#L;U#VKFkPI;%t_嘦RU{k{bc% s%Qn3^-|E迈Q{D$39 #;l 8zW|}kH"DC-=l3j{,l44Z_24On$A s[Ř-A@q;Ѩ|cNesd8_SiSW~ f";\1*Ea{vOP$U+4@Vz5r߲Sq;Y6r?kP"y0 \t|#5:gU.;Q?,x\w"2+ٲM¾&!w+i;:zײWD*5Ȭ *V3=d[\}-&?A\Aऀ|˯2g2?!뫒+u}R] 'M+/#]X02@* NzgDtZ`/^M`EiPJ}8&1C87!29due X;pͣ~٥4F 0oF4 DSQѼ?O@NRl_=hP~8g@[=5+ E@S,$4?܄ 2bhLQ}6͟4xeXmB29 jh%t86Pww9A)Isa0'neW4IJ6RdzͿ!̏e*AlDtT/!g jwVa?~`8=bjw-¨xBI6#",1Ⱥqi?*ޅlG*ײ,?t_ɮ٧ ?Pd8wuf >tkՕPH.pe `xt)z:qce @قOK =']pkv(+7c(;h-k:1}3΅y>;ߓ O ~O8S˜\yϹ9)|M}n-ёS='LxH^=/OBy>*N?jh¨a}ܯU>Y&(}a`6ޗ`([9M|@H!J_ 5RimYPbzlRx/HNck0C=K^e%gn_6vb1śa+bf0WG{OEaC4+\ .J' A HIsFP-3' ;Uc"E}g5D~˄hNHuF567Sm*,3UJu7VŸ`LW EA M>zn_ |nim¡)a zJ]{g7poKy§b)Uet*ͥLBdڷz v*݌f~@we/ ֈa$O1Ujb(XXsHJ', g1=Kd/z?U -.7u<E=1YHEM4ϟMVwoSهe nO@bj#w)!^?<lTN؉$~f]u5 dkk,J13@`7O a,uϫo'v`M<_`6ўiI/=pV%mʙR֫gAV5}9g 0=$Q(V5O`*o?FGDz,^Aw-0?qaR@֞u Ϛΰ[C)@jP +ct+{No(qP5P%%nַ?ழˊ&rkg8Vm t"]-H ,|$ fP(hw-:ehB3Ȍp.>1yCR,ITo^a~PH4j*k@ iٴ@6D%4/# \d-9R3mef% f=N,EVelT0@h ]D@}6GƊ+ms()Ck} Dyvx7{<*!)}fKڇT md7d!JqB®5 wru[Qh>< D3zR>G|Pl=9g 2". lcS㰯Dx;[3  s4HAgIvǟaRݲBDPA|n|1[J|]S`N_n 0ס*-;/j6Tq/&Q J"(%[i>xd*A~cVKڿnyDv!ILvV#6@)uTVn&MèRy,bhRiˤ 1hVwNs$l,E\=fdm$3eg3 Pצed v+x<:N}(!DBCL:nC*NnF Fy  _"'jDiuURUתU!`E1ugHi{sP} 4AE 65zڭ)ɼ`Ý:ŜXgȋ r_~jxB)no^jgˋ o /o\A#N 5m) .~Ӭ岹I侁jP>*lǼdԊ" 2hi;mZQ͊aJǦF-u1 ODH%}܁7pxDUh FhCD=H I@!Cv%+:_&٧^__=/-o쳳9^(jyރt :r6H nVo͸vj=aL*3~`)!ux3ٶ,t.z)%YikbeLɨ,֭YS4HMMG0@c'._g7oqK0{ iRLfF^T@ h:1X34(x~3,ؗpZhSgvЩcT.lz>a;FDPa - m#UW ցGJO8pRLuKS›sMQo\+QIBpHH*qy9լ$xH^޻vo6Zư Rٍ9QEb4B3<]i Y6Htn[jn#FV_5>'Wf.k%X8XȆ9CUJKyt `Tj`]r}*PSf$ſ XA6 (͸; /1q4jAIP?dlйOWUbpSyL] 6%P+p"7®h#%#'̦{AЄyN4`LevO\e]ֵHۦN1̵|~/`Jz14 >/f \w/8M5|Ϝ5~40nRTAsw8>=\Y^&OI2DEH6Ȕ&|{zsj:\a=d,uڭpg_3o#vM<9I n>D݊nI‡pEyg?v}c"wq)(ŢQS {Ř_n a?[EZ(FxT)˄8y&?zZ՘*6~H^7~Hͽ\ٛj`HU̇m̕08qEKz ]bL9o9d\8Z wd3|Ze Sr*8Hu]!;ɻ tE W #EwB2ػaIԵ-m6~WSKڮ\g@S6NQ;Gߵy'ΓF*{'3ϕEB”A8EڛxԿ#H4J(g DD"ŤeFsvw5"Q}tJlR10,0JC3ىAzLv&7-DTyE˞K~:ѪpA8ZM `+6ÛGbd|~+dkm$ B]% qf.W^m˳MuSi ͭi~@cܦ*<G/D2 @+t?qEב0f>tǬVC[75jyē,t5U@1O4&ڬ gʓXUo{t71Ԛ}[Hyyr Y%mhoL"3.#FH2Z;<(UZovWdoNY $k˒U'+&)P/PP!ƛ3b4Dlu. hv_4fۣ7DuOuΛ͝Ť!5**,\;O턕1EFYsY jgĝؠh~yެɂ|bOvmMos!OaY^h Qs5SD'^ x!<\U߇xo5WqY,L8Sع1 ̀r2da}lAN8 3dyCA'imxr/~W"0~k.զN%:{@24dީXBPt>-ۈrSuό5Rg;XQU+Ru4()u>=4ftF V8BUB ŊQF= %baU)HZ"re-<13hS=R(߿\쒮uV`86t}fWTEgC>1}˓kOY@204t#({V9Oޠ%(Apd;8Ԛ!MZQP:%CI g2 ,_L.S?Chg _3Id?lf𣷫?뤫ie=\w;k)X`uz.E!(o`eCgrŴT2l-{ y w.{0?1 =j6YQ䉌w^8<{d!elR5evb!=^2q*+U DeeQ]5u [Ȇ5(̈^wW*}DӘ v &~yDk!g],^5y[Of569)bk$ ymrlȬ>5y&~%I `r\IDdPht P'ZY ykmPC˿˸lwM"`]--årM|0POUDToO. c_39%҃.뙴\ І/RJf,ziM6Y`w屰r\,Ehe"Qb2w6N9`gRIdFcga#تTG;vL^PO 69 =lhRs8sPiiܶAH*G҅Hl%nN۳K_]PWS:9KJgaH9-/O$X`lU}OU)OF},|WtvGmoŠ QK9PrMsjzBU."@g w2P\ ‡ylGi!p *6i+*BOVu NF;:\ZjCT)\!~ekTUp~%_(}Ժ<^jSbqKYCck˘!d'myG8 NG|AF@c6&\ą+4I6Q$ yF-0qSxvSڕbjdVzΨM05˗ k=zx=e?1jch䁖-*@ ɀ4iڞ@ćw BN1͌pS15h:,ڍ3E)%*ܣя{Hf"WL%]yӫi}s\|7=,ʕ@(.5*s`^@EkIϹ\4]ђLQ'>)io@sVF|YG>4iaf~n J5g3CGcx2OS`KQcu7=)l$O7LO፩BJ>%zHЙ(@A,K%d4 OX$P?hؒb~Q"x^JѾv!jeӾz' Y]Jgm~Z |/pO/'ƤFs d3u^,xEW\fJ>`sGG<@ZwNeqd|A-W} N(*δĒ NW <o]&]d3sodnzJzQt%m? WEIE D薦GVل_YNuO77Ռ֠ɹM_;: /untY ]|)8!hF,XDQze& knԴ6%{D%=[k;I\C٤Mj1_ rSd8M7popoQ(B|6 +:Q? ؘ BA1 B;Eq-<»ుb6y=P/&x ɠfȹHn\V#ySvUg {ᅬ*+EXh.:5l:;2]>eļ-!ϹeIv|[TNzܫn#)M|#]"2&yI۠ 򗗧џJJ1"9ur-7*);-KV_Di?T鑞7NpsBFW Qgh~'o;Z2 "4~^Er#Q({d4ؿLۢboׁh$1@G~bkԷX1\'D|taP< C.h pIυYU!nYAuߴ3edn\W:ݠP%K " t)NJbPȢ2EaE$c9(rNT}i|w.del,cJ /AS3xmd`4M s.#Igh Β-)6|ŭ7Odz׵΀}ݾ$,'`l&:|oAkˆndǠ=g"jOFCkͣ]SR^oG俩cyId|C" ȿ%l#ekտ愪s}vDž7ŇCA%Qodv'6>5_1R+ /0x"mN2& :6Fc=5M/7 "VyOC{C p~kPjDrFIb}d3hWO'ե"bj/}m .RXj r!k=@>y!ِn{e'8Gh}_B(XM8Jxp0ewN8JzDˣݺ!\qoߊS47dfR#GA+G80uf'zUc|wpȋrMc<Z?iTNEjʹ] fXtVǘ׌.Ʉ6.>coT+kt2ٝFM媒+o4>:f1링'gŗK>+jXT ɇtmp|izxD`s3`}ԓ(j9҂L`tUDew}FwZ1 *U)oi--mpT渱Za#e=4cD>*uS2lH`-hZ~ :Uԥ։#} P V "bsdzy ڗ%G_۪;gMC bew'_T|d <± p {Q=HP}yoD`Ѐ[?- p?`Ôa|S㥣NyQ&TWә@m9}\Ցwh#.[ +Q# 6Ⳛdͮ4-/f{B?"tb˺oLZtz運eQv,C V FiP䛣u&(>7J4{KD8r.%b) x}F_Fb}Neẗnlt&=+&eG|Q!{-+'ly hQ%fѡS@d);dXw֝;dT6FYb< :+t^0}-brg8FO9VJPݮY93O]8j*9RUyj1ADS! dly +4 2߈-K+cA6Ԝr3iA~0)}c WM d<Ԇ IuVoK, +jP8vmfT%ȸ 'rB^)[d Gn fR1gmGyfN|5jUY%p<&? (509n񝚎%YnY9#yZf b!_6ncB2ikf$` qd\*hgu{C_Ɍ 7Z9iu`MK⯱U_p} =4,Ui=ĵa[{](0(K[ t*v)Y|7Sc':b&?j`l8ǻ$=u?Xpp* (G8j/v UVҵ:~5=]rpRG`%4A>ٸ Y|Wx&Tg.ـ& /1!X`:J̷Fl" 3Է"Kb#L[?3 |(O`2}r rm'MF|oie r6%\H=)W]5K_lD2"Q|mM1^M?t r\Nˍz'%MZ~TB:a<+РgيHg੭:KsI@둞{vT;;eƎ 9)gB|w,ZR=]Ng[NJ5@U\W% ПIVtMoY5m+CfլOsIfNF9O?g|) {w@&Vˍm  ޥmJƢMqWze?i͆z^ZӐ;5I'5,A^ή5OAn ;/.+_DcGqG.FuU+.Q%;4>~*A[+nڥXÓᇲtdnr^'x'n_HC>ń *9T_&ɤ5:>KS_+4W;s2VoA PڣVҴ(?ѝV9Dy\$rƉ"t.tK3*$R5Mf&znAQϙWGwZSV2mp=4Xg=K`Lt"pRvgՊo)fQO|TG|,v3"8x0%ruT0݇;%CtfcF'#͂W=dz%pcBGtJ o^ BkW"-xJİJZ)Sb/y:D5Nȅnov6U\zn,ӧD{.9AM(N7& l QsFH| |PqՇ m@DVö#z9Fύ4ctwmR`ȿ8ssVJ*g*۰tc# spgIn T։>_ҼD;IU>VpAk{heCŧ @yG"L >pލ2jnsD*od~K|2zNm6kf@b`cIʚțᚫ?ujϰ]#5t *&Z60vN)ȋ;p&oLVnYb@h8o-+Mc+*~)K gߔՋGTWָNH-qjeՆX֥19uW*rbd}oMD5pd Z\Hܩ5zc l[CoFH Qqρ9)Hu É?"<+hr>b8ah.vXdpZAzMP-Ufr}G`^bnίQaSJHp+uv:.XXˣz!yXc%f.q9nfӋGNT$gQcVCGƅBxJ,)!RAEAۆJƷ %YCh;F:${X*2.nS?(<-Pu$e/PiWE\%&D"A/ɑ6W @Gӯ>[ ҙbaKY^܅H4K[Ի¸G>Mvk= oHtؿ ^~<^ٖKW`2gUBsYt,e#f{34ǣ n5 '+yO 6Z:&{Ɍ,0zFNl]5 37=ix ;š!5mWj*1U{0Zums ϥsYi0M}خ'w>[?yâ!k F^W2Buin-J,!j8˰(;n-)EGio4bpE/yxS `WlvϩxNZD =NáJ&1}EzX9gbP§f%D _YtÉw+Y:FG"3/4&u[d ghs: 5$2{l U?8zIV]jIb8kq݀z۸hrY䥗CYT-4m tY!  BGFpS 遙:"(;TImDW^3lFch.C!po|Ƕ:O E/oӭ~|:pOG`iDF&厕v`$uD ><5nh_+X8~FoUIUNS~t3_Tւpj/shv-`m}RBA+JDS̊lзPN8F6>vR;Pt|VIP%"~T>HdT왈vȩVo=H|A'jEdT/vA>E2eW4:j,'o4Tlt*0%Vʜ_8?Wa'l}ғ7e1n@N;?Ks˦fQPuH {XǕ͒Xs"'x1!%$Q9}yWFM=5wUXƄR98|8Pdo#HIPm+R8331Y,w̼O_ oĽ|1 =>3dI >G=s; |*ۨ@O p(NyQ@oPʴfCOr[zܘ'x2ɸg3Vف_q/?-7{{vJ~5zMeXY;߭kGք&DlW'[D+f)uV8+)Ɵڧ;QhJ~+a7 ?9->t* '>f&\>RMPm\5 H,T_F+Fj LqН 7I0`q3@x-'j9 Kݧۚ|Rq;h~4{; xKYGܑ^U| f vqZ 18lvvęWc#ɰS!lNJfP9 ϕEsV+?͋nwØYF4Tn;V-OEv'd. 3FzXKʏ3s$O͞5uP h}Fx81nތ5} ūzeܚP֢WI6]a>LH5(_X-?B~iFʺ߂0Y*}4=ؔ}&Ǡtxg™M{r6=8A! Z bd"褯i_^U&2fMԚ~' /Eaљ%!ܑ)$_[4u?#Stۼ# mDL5N"*;OfS>S$/]~(7Fwb1%ԩȧJ ~+GPXxFsR8Cf{uZc9xȼʿnVF1`>ٖH-lœu>.p:c$_R^U4`*>Q /s@/h*_ULÕU|XLk=M qd8x RplD^~~8kJFJ! S^WqY3Fx9|CӠxp4G}R Yjn^_.:@_Jo>Ke]~LU" Kq& #&h:搁)CsC/`"=N;щ 0QϤ*vVr}bԌPc?t'ج (M,Ժ _K.nNt!Hl1G U-X15ݣ+9&hM|)Sv/hqOBVAr6-ͮi)hքVtє-l#4>ěJ$zz;\Q~BU%G=]Zɦk\<[Đ 8Ӿ-ȴRyаN_M7N<`I6z^`xa6!}/\;d9r˜!ɷm&CAyY]ԈI< ۿ^yy6[MH/%1[CH"5Vo&$o: r/#w;7/'q)G=!%&C`Ai#moY23]!Ew4W6[ҰDI\误b!L:pzF$u2vΘYg- ux>n6~Ǵ+ @k)Y ^\:v PlrlZ >,aqYҭsIaIޥs dV1v5jH|SBliewbוi =]w|i*z\{2[ jClt25_*H$ӭsx6[k*]O8V`eUD.(9Ț YF -Ϋ[kbC׷1 c5!5Y⁧V Oit`rd8v #>̱ن'"&"—AUi"U`$rYuGu7SIF+P.Vf(c&bAs˔JUw txSo2#]+PmNZQN[VSݵ~tM*PfK NQ1Ҝ*L7XsN>5|8݁Z'yRH3vZ#Lv2`ϗtwˤEcT pd "NfkEma!j>6Ĺ_Ddna_|]j#vJ!ƺ{k\ Ɯh7+h).-2x.5r.wa;BaH%ThqPUNYJ֞m Ju:LJ1>/FSkKG<]2D8ϮF:c~Ԍn VAJqR -ⓑRSAlA@&0ӰEfř\}yfe2e5g^'b37s0xUS \y@2NbGg䥌VzA^΅%\,RLxk9Wn ˅@ Y d[bOICfB(}_!zxuϛ#}Nr=}V,o:= Q]y|[5xI74--MM ܓ.*lV"[=(lxz!ɍ-L櫈ܑ%'V^:3BRv -Z8edvS_&{Y/3sƳ;3T޺qV@YTԀr=P\7,ZvYGqi#m[_v!*f /P[O|d'!gjF&XJQ{eIΓNwhu#ߢdWn%~g(!4;Wj[.#e*qsK%d~``}&i {SQ; aWZ%}ӒjrfPq<5+Moв@j}N!&_/'l5 w%<%v|/(?j0Ї2b{`% 骙u^^3HtXL&Qt m.Z,\cQ 8! ]O,3 lә8UDEMH(8i:w 7^#"j~ӝeW;qQv~mq#8ɂ-4\9zIy0inj݁SS =5Voz)h cd'?+9H<␽K»&잩==G(?MlevMB(]Է؍|!!,A+tLiK`Oi]^gAMvPE16֒$Cv,4>pom5i}C>6Oi6IP+g|?syZ)fE`}hQ\c0eU6'u"c4$۞ DU wx$[̎:A%Щ1FxwAq5&ŒFsκ,7&'Wm&C9C S=`%_WFFaύ^PA/} -.Ti'  O ҎT85#BPZ2 w.Oy:""`جH 4Ձr\@\"k!u5uo8/t1@S=ۼƯRֱb @ePPo˸&4w6sT*r8(R#pSƑ3$o1oLNi8T{jCLMG,x~BlmSW0<җ7D]@Cg0kW`Bp&O݁}`tt;h MvW^`m+*')fEzma-#GpIHn.{Ӯ oB7}1~&~ԡ<vpY讏5#elΤi/E}j%Lԁn ), 31}`0<${KtB"g#0]uAxs6hd Ĕ 7:ND櫮}FGt MV8 \ ЉsX2М<&]BAt9쭚.<;ryk>a!wg%iN2Tapqq5"-z3\ 9;gwlj)@g$tq떈ORwa)y!_@@$wfgn1U@Q P',hO|(Z4EeG,=UXՓɍx/i;M7aU*đQ 0VǢ}S7Qw `',%$Ӫ,1mjhlqI1GP, =w^z5>*Wh:~*Qu°z1WnԖ$<oM5 vNL4+p3A߆!K6RCȘWK\1S1Щpnmv䍟[Yގn (EkG71y<$*0 !\bC7ao,s6ўsVjC6 zwKF[;0}qf|>!B5wUWXfS(s#Jh89 Ż:56߼3~eʁ2nWžsB<`';(wVs=%}Mz6rkXݟ~[Wo+ .C(@k}H~L ~6'Ǚ['*XCCxAT-RJ|DDWMBE5h)׽FBa x-+O}? ??V-Y@n}K?'B(h_*Pm̂$懔tF^cv7P 6+ ߉z6ˌ<'CW͓)jo r^yvVOoag-I[1߶ osCu\/L  mZ\GdŮ¥]N Ⱥh{!g}uFj:?ϼZz}:$U [- s=9Awyc:Bq;W;F7060Utl@G̣"`p}?!Fij_R| 5F5AXsRFzYDYON{mia2˳%vhJRFd:u܌@wRp2s5.n,/nUyJN/0ezlr[5;['TYsG7 \`G7s& *PӁ(yd4ARՍ S`0`w }aq~`L*i+,:6,1 Qz2Wp S쓘= U\Bg"J #JX oFHe3dfiīXjLut=;^! ~YUB{Y䱌L_A`a.,hE2&oCE7u`ІPbtB@P"M_(r{YlpRndy ^L; F,.r(6^6yݼS*d*d5JH K>fɗ>VSt/@=jFo!Dk^ 2dD.W$8* DU?MKrN.Y ]x&zybO={qTg"DnYhsa!RS]pAPIj٥zAsjoգh:2^ 7&JsL,Nj0u}Q|WmS):[*N[SιÎBWeGúSE>!?= ꡕ&#jYwvl%ˢjg$Ɋec..aج'2W ``Ƨ$#yoc$@jcSHH7OHxԕ[8w7;ݭ,bx(tn# `6=1œCz7}[{ 1Ț5ZI:b0Uz4Nc^Qr1 BW=[Ĺ(lAs4c X8e'f "h{W5z>~2%*>|Mg"kFEҸgm(x{@1r4;mq9|7\=^mp1L|Zfc }٠V)\1/8 3f9xNTXeEI^1m(-#K!c")s~ZUncq.v}g}EVDH' ĴS#>j@Ab6ŗcta%J]H-D)@@=:.z^xɩU6AdqG V v+#3iTAG$$ qȟ?j(aENˊFS(SBן:Y$M1`| p/Y# !"G W"x^u"f]es,-G{yG` 38#c~!ը7 ؛4@!8,Ʃ`ե9<#dI,EHߦ-\dlI k Yݗ"K7:JZ``| mmlU#dM_s '=picIti+?Hnf`Oe@We93t0}@9`YˠaZtp9\)pJ)kib*9=:lX^ΡS>sjqF$~VFzs s'n&rL&yONeҲSk5bi>IZE7f#Pl%4 Q~ ;gv{}'G_< M\^MI O["{= |)d\eqMc*zjah(ʖw_Ygg-n)y9D@uV'nEnsq_q!aƸp2ab7Jѹ,ac&GY2?]VN6*/ Yk[Sal5x‚5Myu7BPd|`YD" ӷ= Se5iB@\ alCt]"G2H=fKpgg&&yO@5KK%UuK"4рȨշ0|gϗ0YWWEԱ Oʔ}/A;bjloP(ԡ0z/qs׷UZ{JΦEZ>:;jDUBWqϔ䭱Z@׳FDLj!G#0қ^NcCI?DN0*EM .QS{*>ndъ1K@ޘIm,r4F^Ѝi'/,y2R ||nuA 'V8Zmݷ1,ghaӵ)^R6Q IĆ{*I^ieM7>J6Pڂ#=黢!V_. .-iEHf^ py78Pq)ܢx̑MX6wwd?Te!CQ!Nb޼P@s|~,}ASzYA+± vge1"~ΤQ>QV9'wfdSmۈ[/HmҵDJ-f&I > n_b!׮?dI=u$MU Xx:q ;M&_Hi/v;E#cH"wghkOQ\k+-zyuZAex8TL. mfSdҏ];~9Bo} R&{םY٥8a"YM`, ~J C> +DD 71JS7nK 4CK ;Gn 1tW/ OrМu FsWzRMZ?[_8 '`|&x`/lμ!tg]{v]lI^iBAw82)y3BqX*BL:լ1ߌWw6&JЏ[=~Wy6o@l[O8{Sڬ֮or4tM_j-TӠcγ6bzO3M{P$jz4<:sxZ - *~ sG 7,xy59-B674, rUUJh'_ %7˂\8L- ~m3cAi͹%*k-3u^d oskM? 5a/Fm6A]l3w8r KzJEN|L  |ԮW'cU$QbJ-^KWZ)p5޾dTo,O/7qAmHzYS y![>;aVBua*{#nҵ^}غEB]ZAPO2Q>p;=(DyHH߇ fۤJh(~ϷҀD= ?r:h9˨0q+X; A]QRq83w [jϰE)}Oߨ>|٘vn~<4ڻ0m`.-ø0'_8=_Y/kzF8H}LZSve3!_S%Pw@BMs އ7xf1c9Sh҇>vw\pNV{M\dZڝq͛3%:08]EZymv`aCyOl!=[mtEM6h7E9Qw e(oEfc P75Gp.? W`cfB\5GH^ƺ}YW'Բ`+B=R ']2l-˷p/0fA0ߕ)5Bmgi$*ԩVp-;Zޑ\`,'2>N_>}wn+RmXaIшv[Kjv%ȯa*gkxGٛ!toa fBp\]B9FyyJ~*(N&IL$~Rx *I.G z@7lIٙt(Q *$yx˯f匱 =rKcv,S X -w$NeX"RƑ0a?(@#lQ[ GUJwQ6fY$b+xG\vjngڏ7L0">Ex[q[}wӳ Fg鎿=b҅^E *^%yP Xȶ(W; ;Ǜꨪ,c =0U[u\/2.`7]7X# dvr 9B!ѣT*D=phz{Nގ R~Vmu6o|S=]53g2[@7(x$~|}ГP!mǐփyԫT'9 'kdۍ^v&F^kgH@=BCSؼ,1!' n;h\&[j֡M5$Jry]NY.xy̹LŠiW9ۗev-OŋB pqzhJ1a8y`B:Sr=&9"PX->r6KV1`ʨDn42|3Y%S&BZTa$yi3UG!s&Lx&̝b+yOKE|VMoAݥ}axvP|}ݥ^Y 3vsW%&sdhu1 T&[?WOK ٛ)D;/j'8}JcrTy"[ ?ȏs;ӡd)[ilK0O9BQ^l{VA>{%֬el֠ 3/#G4]+1|jRtr=ld%q," x"eAڒ zo*ı]T x(s2?,oT"j7+cN5tҲ.H6WwC;5Z*zvFwl.Z}&usB>Mv"YbKe=2~K!nK+ۇɿ3k1i("dA+ygͨ*.0Vc6ߩ3,xJ 9x}3I@6$}pspD#ڸH=oYx,7="c-ʧ"=úU R$it*`(alx*)؞%#%;_i.nOL%&e bJ͘=^%O-(.*[1ptN昝T߫]ޚ`l=r÷U=|La/Kq߿*IKH9f{ȯ&C쳜NiL6~Wqu. T]3 GdFpNQ;^μf ^[я!GbDP6[0܉e8 D x`u<|zXpb9Z s=1꾂.**6gvL+o3]>#GgQ͇XmHg "tuzZ`o,j}r%m*$iCX;6=t̷q*X.L+ ?H E3^n@0mQeXluq:*ZyyGOoKD QPwTFSz1a@A/0 "mⅠ`J&`.C%݌a'33]6~)z)#ӂPcIa7,۴{L5Sͫ&H_!4G1I3P:cfr``E#tv7K`zz+b7{*tU;&LnVƸYYj~^cF2ɥ^uO X{( )mG]ZVŭ޾ƴ#bQgr `Ƅ$>]2.[`LUԤ[{b‹"̷"?z A<ڿKb{C\N)$F7!_MYpkMK_|EBv, 2 Y Y{w%о fTZcE!-& 9;. z`PM.~T"OspyrJMbԚUen8CC"nQ2ҌurXpUcJE1hFFH|7 Ea+HNrWg6#B˽\rySh~D?.h]r Y-`q`SGS,w!`d(aмчXgv]:bC@ ܒԊ6,9e_T9%.rG,Yʓcyp , +lObY>$MҞix1Z 4l0QFS,ehѽ?s(49|y_eǾhz cXd=2&P qim/ +MWuϧ>.`D\i˷=$Jvr?!ۿI4b pاw;1P s@|Zģv2SM(oxdԉs+Mo)i/J=>\w Kq`&ټ {֐d5cOgE;ފ3$(; ,M;Lj0jD,"n hW LK[ 0XLc_pt_0g`wDV'S[)kO 4iFO!aBh^V2-b iD9kV'xkS"=M-LJ"G{()t},d" Q 7v5IGWO-Zþk`қMDCQ O(s67{pb@On7,PU&%=4v ⼎d%鴘(/I-ِP{ELU[+|İgA rqhwPfx0xmU6x\o`_1#*0ձBTV,1,Ml;ޖa u*4qJqr'3a ޢ#\Py|3q`-o?!Nr,i5gX{%xBb|?5q3̙i0 U$"(zf8ޙ\i7Oe/OZlp9tuHhyԶ#ZY^&k}WP [ysi3_R,ɩZmPF甋6zfm. Xf]|sI=lvP͍`r7Cxu1:=Rݍ+VQW޺6N>,Br,ddJw&tfxٕ7mqɻ>#2-)xuYJR1\jKTс0-9VtaxWD\°P7|o,8l9FtX6P=G$ݰ4!isE ̦7Q%PcV\T.DH_&+sipIbM,HͦSсiTʣ^Frg2! g㼙s:*eecQ5)_84*Qdax3y\d"C"sO}Bx L[M\P0C{mAc6Č)jUq>0` ora"m葦 [M%xPϤgR!Zl~G\:H:-{aUMi b`wBr\+lfqoP^d/E%lZ@;cSPiPo'EU%_4A4l6S EKHG'=i##0vw_ 49+w%qIUYker.R&Tx՘Ҽh ˟8.ICtZDГ M6?﫧U_xc?G:ݍoUF3ŌOț#pѓ̓8a?:Ϻ>h&ټrNxwgn\JX*sF^z= LtPmLҟ@3RT b +T0$]5 }Aۈߜn2b iźycz3~r?fL67+C.ꔈh }˖^ሦ>{ҪX[28@'kgj/؀kcP}N~[#57Gn3p@蘿enȱ;9&iRE1Vr{ 1L#6ZN5147rNˇFEQ>- [HLRKӣؾ!韅z$L+KRYٴ^w;컇xN#ԖiX,zC@ ؜KKr[5cziht~ї> [; ۢi\95\(?ցN$U>-G{1d+ܜy|ƙEoq/͊sC|X}}NC \itIq \yB%&4Yw}C^rwk76|obrQ.IHDKf}\wh[o* Jh(g mݸ~Vz5(q^K\›j,Qc*ZzlAH65r \3Oug)86]HDYVxotwo7يE[sއR`ŠrUk_ϟ=Ɉ'QA2+vP5<:aL_]bi8w0!o%fΕT\z`Zsj'_?q"DnZtv y]B*MiJʊX l9*FHpCUt dU`&| ^[3<Цkӷ`_rv*ief .NLMǝv^;=[Rb*K_$={.dD+vx^Uݣ۝%:[4rB)3tOflu&>O@.C7qĨwקh=b`RzfںQAsD=a0Dpfz8TpE˾c35[Ƥ@vlk޸/l_1x3ٖO3RXkdT8 ǵy'FިN^mJ̢לFiGɟu{ ϲj})[yМ#n ϴ]Nِ#ґf<҉Po l(߾PBfU@EhkZ.ue5Pq{tC$:6Dh - ̄KD ġfܙγERVAOyؘϣm5؄74tu#ًkHhiDsV2rad{O* 1>Ogf蒦`:2TkR9%' ٸ '&}BI⧰іOQ?>XW ; #'%@N0 [liViy,L&S]U,crA]>tOVaweg&;7<0y (j,uýo[II!A"Aʗ.[jlDZ̓&޶Re<7@0&ð< ;||ۃȔPMf(X]WOrjcA`EY̹ jGJlR>r/9'"G%Agt&~eYl~ dH1].!kG^xl;:s_`G@0wIan#m-B*Ejo^oy+nC1O'Fe P&kAa_UZTSs20Z=ܼtQ/u/mc#M顅p5=t#>^_7 YbI'ipۘsTm4S>cMy<}\kufr>眇 ?2ύݍZb[X|{B+/T< vbd$vUh+pk̮F@i: _NNc? Оg@7fZf@^m)h8 ;ue*hEYwBmc ))XR2̕! T:hnh`cz()=A z0ր9I=$),!x|`B\,8PX7 ^[_KpJetۻ+b*%94R غR,Zt8h4Gh"jW#Zc8&X!bm|̃T^]bV4oZԜAiVw.qW a=fp.Qvݺ²_(}ߒ#*@'GE +? C sUNL:-*dBctҦǷi8ȏ pf5*Τ߽zviT@P5`d!XP ; _L#>a/~!2Pʙ ugl~ ObBkKRdNkrc]ic}$XF`1en6G 5e*1 >)aH}lQx !sg&UݻhSBL- &_ӱïn<&mwxߋƔ)PE MƹLTK( i vu/{u HҔ'扊ZNrL |9?q@"ۈ<99dtzrEmXН.eƂyݐrARCICʂӰcԽUfL{lFXl&흼 {+XV]1RlzmBIG\}}ؚ)$`툼0a[|k*2E(o#\zWfL0O#L kJD@&z`l[_2βqJ"p eݿwG{*hFis$8kȓ[ F=MA7KtBƭ~ո]1bEc?y}/_?wwؘĩ&`/ )ԖiiLu-5ȑZ7L"hn\"uD%E$ox1&_ٚ^(.c&"ʐ}`l\_rl8>ɺ3}8uRm⻬&YA& {|6Fvu3UνmX W&S Dv 9?[z;E;b5fW ~Y.BCij]"Huhq:;mS:dvFV4y zA#Ӳ̡srԀ`ɢc'(ؼ6;0Qmֳ}4 e]K&d ITy`E ʎJ̘|%(&_Q(4YLkuaَ\rNFW=q&x郗E!!vNQԿ7*ȮoHI7-w\$4G>l:"u,=ˀKkʇnEQZ%撿p28e) ^.Ӭȭi *ZTXLf6RGn8> ܾx:5pȟP*lW.;.>o75Y(nIam^ iEXJZ[~@`ļ{CIj7N8b*x2}`,OZj] }zZ)U 2.(VĒHL?tk|+y;'K`9e[(- $ԪÃ<趂2]㈴ǤP_PC|D x0fKZI[) BL8(pDݳK?$Jc i> kKI/|Kv5ǬQ*~GW.# Og(iۜ,09(sD:ƌ,PQ0$*V4)X*oZ`Ee]="n?(ZYJWvz;*ćx5U`&4#_\yg`=xIw,}ßklMCA1m$9媒_6B@uiUvOį%q2iiH+pؔEMӆ<}ᚳaGln膲KsUy>-d$V5K6"&v`H4"bx^p,-)۷K^>_¹,P d5T4V!xCz#cqUU+\۵!pJpGJk9uUӵwc lj* daV/8A#A@7t- ~U򦏼r1Y$Wd.k"yij(zJQd[H,A8t; p@̊3kFxK7mՓ]T1vHh3 hݲ5Jh->VK @ g 0Ec2#@q,۞!ų0_4yE{S!>S"x $b$L(Y}6zڬTS$ߩn,8dtQܰ,ܬH/pS< q4?9}gaho;nd$Mz\RUޕQ+ "3bYz.x7hTkER+rT<G0;~!G9s~Gu@lP  j;o$%`9"oOZV  -! -D?`nb5W᰸*0d~A#b&Oii*)9}/"r3Jq0x_ǤJDEJH:X%`n M"ϫ2IJE*U;(TfHC VS%]@H3!Ŭ𷜗/5n^4c+3RV/l>DjDo&=9CRW&xwBb%0~'iԡ>Gү K& QcŰ<.$&ôdv5$]N8HVݭTFA|¨AODDGa'x^x:)^4 /o@w#1.4ijCv{ .ONa(*rx/*LU쮍(6dv?4@Koak6gbPq%ƨ\,y"qK}FkLk8)f_/\*TU*#yXXQX#UJR@Ѣ4>M*/fT: Ҕ :.pǡ\0$Bq/"DB?w1FlWlPLȓJp g+xD2ޤr^GK45ɐUEBHZMji mޠ+Dn#ի9.R$K{&7\xM]mJrt.M[/0_a D14☮\~fZ` `#0/Vot [y K SP0" JLQH_} gl/Kɭۋ8>3Jy ^Q >cyOswhG*K(x^=ioLtH3W랋?7w)ruQ-z8aaPu -ytYD#?Gքr`eɸxԺV0p2'5(}_p$TC%㏾&rEfF:px\c${/|&L ]q!AYiH8)Ǩm5PF{kBĤ.Bevq\}Sx Jws~ؠB~vW`뻸Υ`jO&aVFڙQŻ;4st29? V/ G(Գ$ㄱ∩ٸ #&HULBW,4+wN>obm+_$bq/': T~NM(ná%I:MYhF :'qpz elPnx!XVM:GW.Tw^^fzc zMopzKܹ MTKpcB62F ~'g\ )ʶm:U|RF|mL:=OXs|^Q$F_4쳩0kr[PN7Ja.]>xuڗT0A%mQ,mAx=R0Ixo{a= %qSP[!ۖZ׵7֫v A:L=LÓDoRS!eVA?5-Oh/DU`xyޓd8M|.g ^#:3bPxz'=pڶW%lm$SCgFىEyl"ؔFӌ2-=kpW+Q/*x>":hɠmXVS)yT TS.#t{u<1O^9AȓcIZf: ) ocJS%k{ }P|S X8r61 Ÿ >5:u\QMah?nI\ĸ (J!yU.k t9fj\T[ˠAJ?)9QwBŸqބH7ՏUnI3>GOIC'Q ?&ǘ|ҹ_Wzc~Jw#av(ͱ TU[v=J,AwųdgēL\,'Aԫ5A7֗"BC_GV8y}2g9tm.%erG ^|<5$4,H5s9?%ݫ-()u]g9 F1o3 zrE^Yg `ijJ ]&1?U\::33jEBkx\kA*A_B6zmrmmиgT yðRiF5JK`5)g(%GoTbJ,~7sM ny%fpa}@$9Q}!efIΐ"\wPz );@eHD b6'@:CU)$^j-=;ʲQ[8̄ B1=w (xH|9VoT@fir3YQ?DT+loހ1o\#g$pty TеV8#2qD\ONڪҫ~w`_%p:F1,V,T;au%47b?/pUÂ[C-fU_bxr8 LJɝ ҳ6xe 6l;άǓ?Hi*d,\n@m;)nħPNcP{nJ;̢F;A aVEǰsV=^шLqnJw{DY>l#k_\08K%W0ĖOԲ5Fļ<zl6&C4~xu-BW`q VjHœj#Kv1]u?U`ձG~V@d0bL }wm@>$// bJ497뾉Zm@&t))ye], h;.9[#~j]hmʂA &Q*5&&SJȜk gf)OYuNMOl+_BKwF|L1^h[OOW(B",*w#鴵f2 DYi+aAXWϢ~DE5 -e}~Ѩ1% nC,߭D( |Ď%_4CGE({ȒӲ*!V@Wjk ALЦS "4Pi=|)Ԓ.xڦdu݋v"}#N乁˘"Fe'-M=`eO/p[ɶHCSDtp4R.fA\#qsɜO5|'27f,%ǑbaC2[(a<$A˜e[z@<~Ȉg?"x[YmTr~û]jxj#)NF@߶2jLjB:\--澋5-]kb`*? PFaܭ0S;@B۹ $3~Th4fT‚]oﱑA_Snb|_!,tF_+!,(LˊԶ 5HG#Bz'J/~{5N#7hhiaqE)>K jq9p ۽朒ga]wPod׉wG 2EYXԸڶP{!M=lZ'1])~Bq ᎜i 38 _pYuRad$ŚԕA1|f?ٲ\W?k5'\O(}8?SI_1ϵyVr˚t][˞hGQTpNe`Y5}gc<#RMU'e!5S ;v (wjUh~4nAg-rxkOKݜW ݕ̣ nUh<4z@͖d6 PU %(Mod7ʰ@iXdiB5tq5i[c߫){Z{}~<.A :K>'g2oY=QШ\?ެx m1~7pQ2ݧlګ|_$!:dOc[Ma^΁wC縉xքAkOŔj(`]Ree"ۮbV~_?@֦h-cf[OҤlJo/˲[Fp"e` O'O2OF6v/BՂU^QumBdY#K*~v6z:z˵zDZunp>x y!v2$b9Yőe1?R;po } ^zREǛݮG;khIONӓ6P?gz[1.=* 6yVp;eוy,L.5( 4( Jل}o4udD[vhH:jH^ɖs(DwXZNFA&Y;nZ3:\; ΪXJB=$Un%*9!KeT_&;NK&6qj|_ /g{/@wL3-ïŤ֫$wpGy냔6)Ħ^u#J?/`T )L֏C1fW`ST|cO(p.Y@^_Tn"&w>9,wxUpL)>J{6Cɑ=`}רBLk9PjYTvbbݾ3➢qG1~&wT'Jz~Gk5WBPP5e}M}\܅V h@9Fg,bb.aCqwU/$]0#p7AJ]k 1!ڦ_DYGD)/`L|xAD8ϗ&xC"gtu("_:U^>ǨlgqӣR^$@pw0Vq3M20uDen4Ɇ))Ky1f AWU`P&S*,034a #&k[QeqiE_LdhP2|Bʩ w~T8ˏ([xDvuT>*#TQ,hM*82V5J Z\8WLVRPI,QW;늁s#uuV{%%(LA 6w2 <0>v2R.Znr|A5.ZeyV = Dhx|[71+nibKȃAmmh wyy&Wk=qЫS]$oL$XV9QƂl+ud6kMKTĊ{{#Vȳ"AP$(*@'6:=IJTB~{:f#R?O&z6UAA6)H0T`f񪨘 )3ûW&W/Ew#-y%j"1qtY\WBa]omca'6R( bt,"g3v!/X.[5u>6YJ |t0r+Wh :Ⱞ ^ǜJD,`#vT/A_ ֛Wg#\ 1/R9||yukP$LdRn{)7I ܹ7V'W{AN"6+Z;j\ʏ%E8h hzQX)7ԭE4˄y)+moJmKoWf,%C Z-ڵܗ;X_rGCVZ1X"6S~`5RvJuJ͏$mF9k]f2$+f{![+ܸ c{(ăUn")*`16WO+HSZ^*rhZ2_(Sܵ K z`BZ>׻8zrƾYRdI_=nϞ4"|Me*\M@~iD:? i N;E䜹bt uQ\8/UFp?T.ɝ}OQeטp3xNItQٟJ:atNN'Pb,MaM"Hv ]{DC9 vI/:\BكJb2"^t[gAcCǝ:Jyؾ,#qna'mMxCG7&ى]W`C?B8^wd/mv>&H=ڱ%4I֓(yʜgYZ(/_3񊄴rṀLoJ߀W`fs7cZv#FKGJJWE(\zr7իoZ'$$QcC" BwEOR1,,BѨ^*,!@gp3X(MS %G R(*5817rNgͫ1tr! _;4lcB# ]㗷sq]OgC6up1YXTOPz~/{bp@>Ic2"ET*/Z# J}==ܜw77Wӑ ½W5%@20FY Y`M|Yi,oJBT;oX6i:>{fH/G(;40"ڥ#D2'Ӑ؛gjj$mO\5thGb\cQf=DhM8`G:ٞC<0199ߕ^iqFc~#O^ai\YĎj0޹~xqwZ:7ch3GqF7s8n Yĥ1*| DǸ(u*HBC4TNg" ˓0F1xʁQxtkYu Ƞ+-˥9 C;[߳:۵ULV;VmOe ~NՍbj}RH^46t!#֬8г,XY+W\Ӗ_.*/JJf]I57@n2wUhmAD_G֩ \w* ]gUؽ,oJy+}KcPYݒD%Wha^Θ'k.lYt'Qf%A )iyfC-_7^ z?rV̩.2̢2OJw;A./OBcq #>a2Bfs<'XW-=1UI݃ cڎ'xNP^U~.lMn}",NN#Dǔyf|"bΣGH rlL, Q#lGi _ZqVnvgd[V}&4& <-OۍaIZAd ^M-^]Cօ՟#dqq?û֫E/ ʮ ѮR4\4jm琡9Nx]!uЋKaRCS 1u0.o%z1QR%bɲ'dJR gn(}Uu6$ݥMU7rC, (aDx To4*Nfɣue$ x[aM5O=@L+2 4#Z]`mgh`]48KO'QB#_B'}*bq?n07@?M't a);6OG\a VXu]$)錞b{:aY5 B5Esgv"07U*rjdz7c~(hᾠF{y1u.wx0A]!!ٹ"RCC]kͳm75b1LSG *ٷ!y92GD6@=k'1+5BHblsc1uvaX{ں%[@,6[۸LR e·8(5\c]}=)))_$ t~EGF2 {BR_G3W8SpˋCY}h~Oh Ҭ0JDSJWx @vr=*d#"Kp9iKDFy"T~Bg7Uk4.7GF<`0DsY '+`fdpБzM:cl;WD-p&5_ 9z0e0P:S M+I6OPoj{ 6VDԐӉ AJqB}fC?YhM؁:X?xm=u,Mj z29{ی*,c&/a=ۃBeI& (dQ xyDʇ^! PG}0.Rpxw;zk7g{ɝr/TOu^zX`ܛN_sK<S!]4A+p q&svw!}̓ ⹯=$+R&YӺ⺹ۧxהK##;1&f6;F`o]Z bP5hI!(]ذBk4钒{0\~gVm猺ӦE(" |@#͎Qξ^Z%o}"2V,Av;I!S&\M0{jZܑJ,_lfco0 j1C zV^9K p#zpq ^/tF/ք+ȬR']y+oRV&cltLtbP=Aʉ)fmli.͜'}ZRzYg;rh&lo+BvoqLˢևD ^tGZ;.~W&yi+[8LKNII17I(=ULN%CD; 4. zcn,V >pOXGs/ !%?FS%#@!7s,q-0R&<"ngf" ~k/wgU~vl‰ςx ]gY)rƽPW#K,95IwGU& -lFϫl!tR<h'?klZG6p g tuWgq<6|˘#pIaK׷+\sX({&&0*'nDDTl1YSk}ww)Ta}'nJh #-HE.yqU1clUILfPSو[ 'wF )xĵГ} =|JH<ӎ~ R Lٜ`Ljk85;G86Y|YɄʕS14Czk"y-%JտmMe@hqM|jWV'OOg糪uՔ( kZj9uY]+whHx>g^W/Mzu_.7I]8, 4[&nq`4Z돱 1*qQkzB?.0=&PLb2? zsYEz.gL{)sߵh~Gi_+$ޤqbtCHMQK YF{_tڜ9ʤ"VpXQN՗[Vg?k'TO yLoɸE 䀃BC *#Ӂo /4qDOy.~QXId Twz[}YN=:f$ 0f~ULh Hm 4giu=%;MJf\f b-~"Gc_ip3 1ԨloD\rTHҚdPi;~IVt܁'BP,Gȸ4wCB-Qq5:7>x͞f#D?Z`^ǀCTZ|%wC5v m%ɤ:7֓ngϤC@&юrKd.V$FV y!C) 'kTW2;嘩˜P,{ڗzzIPȾ v 6_`bN$%Lڛ61\A ߘW|!0|;6 Czٞ0fwBߺfԗK2.ׂjif'ABX+Yz@DG BGqOljxD*Pu(5Qv03.B-~3K0a*[1e/+Z)(tuSN//:3I2\Z,6^J}Ŏ*k% (`hY8])?7a TBÿ^Vy{!/&oҽ2 ޕRwf+b9t(ʄ4¶ Z̔6 )~M j%|pNk U:~=ƼAo$~59BKv '|}KgNfE1jA%z)Ah|!Z(8iݫ-fC-YLat1BT:~D>LMHJDWq;mO~3< gO۶CX-xJU'nM <:Ą}-%?CtzE3>a[Ǘh]-$KW0湽8[Ig (wZ(Kkj1 pg7219]De)# QQ`p4~rzO Q($J嫜H_meg-e)Ҥv;vH DJJ'&tTS&Byf zѺ?*V%@,0YT{q DuL͒~gj4̰yV?yBsሽro{|ܙz¨D(g$]/~WaA52a;  /&(V;1$,Mj/O8&(h&nE&|A:*-kbW̍29B?S.eynqa"/S(B ϛ5pf1,Y"JXZs94J?mp~CgCT`~+%;NHC=2u#weGċA/>W ɖfgI"tQ_ٽOx>v{2.<`8N\h60N!6S)cH͛m*`ib-Zaz@[ŭݕ%*A $G}j:snhUXE)7M( #ksɑ%KӐd"^2IqUfVX vbЈ яQ[{?Fwku7**QV[?1&4hEXÏJJ!6Gdo]d.$]*M̰d'aNvӯ[5af%c#lNS l;V<{Rsi0Pg1iڅlC_JT y$Zx1yjN3Y۸= PWS0t-DG{pwB|fR5[4>X2̧R_/nVl Qq#TAH;kԀ)iwyEuƂ2v#[ ی.ޑ?_jtg+>HìK:K. &F~}f%fU8{`S!:lR(1#dAfͦj?|Wj]1P ΍Sѥc-x1!2D7e 1Ñآ2ki'Fݹ T6x1JkK\Iذ|Hr.`sϩxTߕ!s4TRͦZ(n< _SOM>Fx)${+PIc~Gتrw?GI#6Sa)[#L'7Kx#9E}c0HX Q"@c.@=]:)IcՊc@\%Uov c\6noMnFF\Je9[H,ु6%qbgπ[HI*L@x!"3~r7E>+4lM3ܧ. "Nd؃h$ d&V Yqz ? (Qpc=S"LD%/];=}JnwD K8-Vy5q-'la[-l֗a *>p> <5O 1o#.D ;[^\Xc/nL~ٯ6}1qԠ `'7-W [V1pCŷa!aИM~ߛCI*tT\n}$YX,8 -6ywwS'X^Pd>.@H]wEc:r"-kz,v.K*n#b>5biR=s&Oߐ_bJ/4Z8=إG,1LIзxC <3|vMl\/x)_q( {jPj?4$Hr7G&e͵+M< c~|CηXZf2м? kN'Mvg "> {p#ߊ)܂C&`w|oaͼt➷>6D3p8mk!ѵnc5r8ceZj0*Ǹ"0VD; 452}]BK|b7,s_u<ӋsYS~zRww$͹X>wuϊZ"i(MchdrGWq q ~H$=`7Mh^Js7yS{[;)^ $yh93{ç"tNY .@rYpyנaV@]&yeXv.vN)~0*[ĘbJ)Ӫ|Ji/+ 6q5"/$\}U:e1Hʳ =4% -% xcm6R';727lD'4(sxgcsfWlx"ߩqNF շܛ%GU >( :K( b1NHy59V4ӊɢ;rTRs$UCOVq/se)2,f`<<@х΂!@xxzJв_g0fS~&@˓,xh] Oա_S£-l}r1#5]+>c ʕ'|c1ԢUpQDim]ð/4r>|Ը^[jl뷂hpN+#PǫH.{:6p ]Th#aYrRXgGNe2]ט_gj`ŴPJƕ@Hy׳9<]DF3@ 3)Cq;&-h\a@A0I~7G#L(GRXIPObJ"H3-MpGXٽ?-IנA#7tHXOC9dz; .1'`*veSиn!f  B*!iX|VXsC|GD IRu #NKA㬁BUur;Tq/0[wyRvtfpxkc ?)]d'ϟK=\8(^ȏ[Lťd[Bt 2st)PR+9Q}ngtVn=yg"? xÀz;Ӌ)ke))?4@gs[h`[X=yQW=8*e,烽um~`OHAPE`5 KaW)Au::m[:;EhS$Ď7e# e%:<yHNt胼CAbRfpR}1m dzYNV2u, ]_:X)R-!%L<66#w^t YMv"~ՑBd9qdH菂CD@DPhGB9LN+/&bH< p Z a|@kQ7NJ@B3l{ EȒœCP^y^^SD񥝨\}]HgR{;cߌD$^ {af+{vAٜ]qLCQwіmd3ڮ; QeR'Y @ !&2?:q5/ r"&Lrڂ *xfoYn2y~ 3ܞ`p[BIԮnvFi:Ye*W:ځ-KJ_ 4|۶k;m|D weӺtv cȲ0CQ[j,=Sn8)e]J2Okg^/uCc؝V/Iּ> ɼs=ᝳX0 )KbOx{J{M.@5#G@;4i v-׍ooo!/6.GQxWt,uB֥r4:>e yoѤJFQ `Y օqmr1U[MN *6oi4?(XؐqR ȃ2t ?hT;ZyD@{wBڔ[C8ń0C vl*d GBp1 ܅;޲`K % Qt\O׬ kN9b3YtIlbY; =HH|C^h)Ęd͎78-,F4+F0"}* EV]zt;+PksNG|g\!=&~B>s"B\w5d=q6n]VٌAzr^|Gԧv_襞h4$ :V'Uȉ\HA V[f85sa83MT98.Z9>NQေ!q29l`ɜpOR+<^N2m͙JS!>HK*Q:-t`isjK5D!Ƥ/YuyxG}J#oh`3Ҙ~"ֶC 4g~r,@I)NB"!>Ɇֆ aB4K낛3,9MG.LkmD77zGmZ,Αy24ua}br=}N ;o9/7bJYP+]<ףr`Y7<:G@tk p0;Х?;,b"ч6 x6oWT%|HH1Y >/!8~ Ag٨ %xiub]+|H+zFEasC Wㅅ2'y[+NR~װ ׹N"%`tMKIF d$\Q VV>ȗyQ.J4Mh@ܜWS|6q8Q/2`t],T!/9)Qt_;~ٖ16/5&!(B58e55w+oNpv .&~2S݀9^^ XK8y8hu0{d|m8 4\`~ZݵSܣtyѴdR@Ә_+N(d3-:~)гy:NH4U"()ʵ|rxG`[R> 8%Ֆp*蒲{ Qs'Q!J3tס/.];ܵJ]a.;f6H5h.(%`HBjBؾwn;~;d@]?) (EGF^WvI;c%,_0Ci᧸i0OZKckQ'[V1'Ac^HL*:!2dIa/ꫣA&ȡiD vm45eŅܫ'G 7';c܂!7exɄF];)@mZJ^Rˠ +6^TR=QĔWr㨴wƎGmT c4{C7껹IKq]OR5u|g쩌1: w ; )4yXAېV_hu&gDsUg5i :M-&@S@ l~ռI?!V܋VvD529.!%Nmj vCȴbhwΫ@oJK88ޢm$GBuUބ ' =%j#a&fܸG:l)t-*Bq9Dׯs$[[$krz9PKɍ&d 12j#b}0L4!h#ws*}.Gӆh}B.a46i,0Ď@Cn_ VF9Мpfէ;GB>] ra+\/&nBg0KП<-rIs \GGЦi &8 hQ?JI=d(6demÆFkTe)y%s2ZX?cjTRPdčm$+9 "X$脔%\bZ% 49J4cy?WM[kMO; ~|Ɓ*9! S^+󷯳3u|oR3W7h%|-#\\Z? >?yNQT&,Rmy,{jE1E{_]g-uqOBaǴhm F1$@>(g-:_T>,5nb6Vο$7R!_ȩKC{B~ B(c wL!H'GnKpX>%U`kUV24G~חr'ijLj%1lA K}pq_$uX,GwU<} ..,ONu/!?:Y-7}^m]&,'0IĶbXc{ǜRNn΂5/gf5{YvEAU%RFP*"eG'ky mbQϱqZ*_iMЭ LL!ZJO;zB3.:J *I?xn_EV. +2#P}kfh[o۹*L q 퇪&C(P|d[ Iꔴb44J=R$^D` бN_ɏvY֘Q8UFr_| f%xhwwD4ooL*P "MuDʲ_H3v+!1pv'wXޱh5hY:y8cz{{ߚ±|{MnEErv]u|~0`&w.Y ԭ0RWa8c& |6-@AzR~K! XMQ[E@ L2_v\0M"Z "Ԝ^3k-n=bgR.^-ҁHzΦ qkzdsj! {tH~y~Q@tŎB&EJi R{kַ+Ӯ6 Zg[3XKX;Cl^kgUgGZV̺ӱӉ%7fIr.>ҕát]'o/J Kٝh4'dˣmi|bG( N\]H|ȪX KKd N45-ܛk.(8ؠAOwEi&r6TDFpZ^:L7`M Lv5ryK=^P\d(6:]Li#AiOIK U֖ڻ\1r,&X}Kqɓ'jpy؞*d)j}elRhiRB7FpuK 9n{h8)i9ҍQ4 s7/Z:oL, PWĒ~r[RM墸\ǵA/ꢴ5 v%΃ ?sT%M&:T ZDlװ5+raZ@4܍_/$vm+ 6bݼ?!<.¥'99TiPiu:O_'}}Tݬ-rI*$oáq 9^"70tġ_"yDq67:8^FO( G48jCt`x?z判K, Y3+QO?#[I#1­ڛt;$zLbO)]Uu0NêR~8Y„`dz#nFaN`U!- n;x^~ ]du~2*T9$D•"VcQnq8B.6=]e7NGUjת7]I,Ҹ:\:1ۨ1 B.64ʕ~ < JWZ*9 hޡun?E_[>o^iީSڬz%dR<ԦƦZy7^x{ X0+ 6oRvԃ&.0n?g XgHnrut:?{%}݀zLQ8|>\^1KAQz8F9-{4HiZׁ#TO ౛ُ^v(ԏL;,6Dw%Uޝ~bYhd SI@4rm-Z[(F}`Ic_eiiò4r .I ϟ dn|׹5I9& ΌiJm1_XԀ+CF1/  v?>{K7+JVj ?#bT#{BIEku\( hГX>D#I!SvفAaB! 9>GgEatað8x\m_ zG,&'4bsĔ{AE.m O۰^a6c|8C[@8kh i ":\뎁jN؍Q4*X|BFޮhў>j򤒧N0%(&a7o9kZ ֍q"h Pj/R7oW5rM.h| cY!Baӿ˪~Lb ό~c(giLYeW%[#HZk*QլDYO/k?#f+ 8F_&?p fuc.f@-U є; h-g0&NI='`ǀLsJQ Cs XgzK~կ G=s׳Al!)'C }Ppu~Ċ s|Q·'TEڄpYNa,(,%9znvH^$2"|aW r'B:(* :_EZ//݌LbiVه^, #"]*7r!.؀'zkw*R}pZ=xSGn6:#0ve3pk 6JD2FJrLa^\k1k4Y~&V l\;-95a犷eQ_ WSu_HV=fkw١Jqb>Ra%Hyg>u?o?`3 ޜΜ%֣4:ǩBf~d=Lc6RY9;{mc=DZQ?fe*4+HRO C,&dgL!ޤ86?4 kCd+[˘sk- oL԰%0gxEeW }kb򘦷(ʞ~1@]Ysj|+ 톌\ ?Ny5;ljCBw. &ּJgVe>elQ83tidN }F6檐T N'G^Yc4 G:WrR 삙\TьôP.O,K㑿nξ5`I.Ҟ9>:gٰADq'w4|[ꮕkc՗dy0Sz}xlsoP&ّp}tH$hqϲO*%y4u ?3\.[WV.^THI?]~zDNW 8:o"*3BSpaT!ӫ#o-'kF̷GDL`ޛv2]oS`oĞХvn LZ/41L8RdYJ?!\qE)8,Vu!h<ÈF3c :' I4"SN ~j? Xm&y.¡U#m *`G~O.b^j-1S˺t륑kh_֍Tpppۺ基 ee LRSwr/xZs~I̹^Y])Y92`=8ٕԁ{أVd_Ub\Kז_ayTpw-Pc 8dӬtᱶNqw.c9fD N%%ʕ?BMи}'/uR" MAD~t]u,)Pt{E9kMݛU#I cu7|ՅjB8\}KUu0;4s.N nj҂Y{ LApXMgN(ucUd&v5CZbv`ڝǩ~#@[֘BVU$ Qygl!2z9M>U x15[Ϲ%Ry&v*Tq(Y_ӊJ%zMM)*TJogo!,]ԓ%ˤF/S7 GK։ 1,4Ot:3k *n:epg KVE|)b@CsGHg"X)4TCEc%h M)s=#mulKWPSOi!NŔ! 6yÉS&g`c4no'N /\|z{ d-ӓ;D::rzmB~pEcZoν9zEYa-^_W\ms2އ4odc6t5$.wQfJeҔ@gX/|7S}"2IPg3DTsS^Xdvskvq#Cvd s(eb DXՑԇv;̂>˭XL<ȵHAù<2D9nVہdioBRv-zHZ~5~b`4LJ*^Lv 4̬l׋4xã%%ߩh 7E[G;fC 2X }Et-XLI“࿥fPa3CRүS >4IǕzg-巻kgXU% 痟c 㾿|ͅarHΖgoOg ~f9d|AHHľz6*pVWEDh#U:'$;"Ȟ:/9;wg_qӁG5>p{D!npit̥$t3>j<$fƞ zQȝ!jn]2jw,3[?;%@5N.x6y\Y_SɏJ(Kv 6sh.@AdP?p>=a zr$~s4G$Sh&Q%l.&BY'r- InU?̔>>b7;c<g$i+u.]~f>l`-UDrj-k0z@w܏'^& Ae 38>n٘ kȬ &Z#R5?E>M(Wvó0+V7ViaS.#s W{*GF9A:[I #b/ }u`Fg&&(Ѯݠy®O3C;6CQ6>8ՑSpEd}ߕz<;BWէSϛfjffQt}tx.#D>4!e:8St\^&h2W@GqDJXcO:)/LX(z۰bQhEҁþ]h ,S.5eX~WDL#D3ZD$ & ַW-݄6,1sZnW(.GFL<0e-+pw4}Vs(~xU'B5vmyO yă}Յ-a!X⸋y~ k$S@@y |d2 d&Px&O*_qrzw Df2 E(n lR[ 8RHueqF_ge/٘=N:rhVƬo'cRK2dԍlukI X`}6'aTD( ~1rLC /+"Hk2&BXHFL4'K?0wr}K.1TPT*ҿ،H,_ %'iLj=AzN!n}I)Mf8U}${%[ߐOaVcVdAOzx^Pcvhӱ#9BO˕~MYÀ\b:Di4I cloځ٘PpeRsWN1\n'\d0|XV>TsA&"*,5{d)!Ǭp]lHj[Orw2BbbpJ%-"ɴ}JƛhWfqRwGwƟ >A#aT_-]XfJG-G]"]tPOXИYjAIJC <.x*rST'i1iy>= EQ<7 4BX/5NBZ?_aQp>]p]f7;i8&Z{U}J.}3[su~۲3"Zx/緄WSHMq˙*%$VbKޭnv<|ySSlYR'OWrQ:mkDh pS#2+@t%h|ClEu2/(s{JZ+UutfT%8LPa.lgnܛd1Cg瑅N8V@8KLAPkp#}0="v)O~!qmH4`r*0Q os VZjV17VdQ~نI)d (2 0o&μ)#x¤=%~29IqM0$;K/HM|h_ 6y:Jie9>+q /PT ¤Egsbw{% =h+ ^f AHOǷ{viާ[iC,ZuaƱʢbA{25N%sdUQ@X6 ͋A0oWp5աQd1pgK+<\;xItk 5j8j8lWȫ 2gpxZBZƃ2s'ؽZKbIM޴2T*p};p~-450-,DN"mW>!'6YGlMid~8ea})_eN>4=$2݌h#ki$=oW:-ZwI Y tɂeEϙ};{`YPw\tK9$+OҌމXu{lƹd'w/Ӈ۠j{y{7U'Kੌ^Fn1mYnzYK&E_. Ӄ; dGcVk.WU@ Y[ʉm"A"ױ-̖U?KQ(ԁ(c1@t ( 1zOmi>4L~γFӯ|;tvCФ ;Γ҄N}̑\[8ok]G)6`.\pV6#RyƼo"Ǚ7Y<9r1ڹhh= USH8Ùa($1lۅkǤ)y?0H$R^݌]fG cD#!R9@+8mиVIok;xQ^I4Q9ۏߴm  ">Ia^gt5κ@){"Pp-5Eɨ &Hـu eDtLYy] hAONc)h yz Kx f^~Tb"sbsSqc i\g$ ezNLu qDNǰun.?ecdbǸF1G81$ٔ|_V U6MUJI44mZKEjcJ5L,\wdRA! ?;>+ߍ(v_Y؄"pr{ BNyX9LeNˍBItR>c}No5YTzsae(H՗z"i!kŦg`ls0ExM-鴱kϧQD,%:F_>}e1o /Y#zt% Gkn=s׾Hь;w<ݭ܂"GR|rсY]gR&IC2{~*}'W^BP t6u\r wJXB"=o#vʥoIwt3nƖ2;j%bMS̉xýæ$sɫf.Pj^SV(i0n6EC|@]թ)M ]Zݏ 'IwW16 EeiX<"|(l;i&X8"Zia俣:mU̳n7C\0Nd7/]ܤǍoTzpEi~p%Pˠ hjShD-}/F/ ] H}mnluG[)鐤c1'CXP"D#2Xt<8'h{S= oǭ`V۠I~Ц< #aVt&uhIeߜy ]礸8 +Rm6H0*d2f +RRK{nY7bk:!5p{1{aV眓E2׏Nx*.| h[n䫁E@' ~@PuU]p*F. 0nZKenag(Ɩ۩IO֊M. =u^ -A Db-cN0RsJ"3r8I1QUĚraW2rU/ۡ%'f܃"GHaoiAFZYTVxPS M}f+:,oAn;ݿOTkS8%gݜD0!}MܦTJ#;WIB/\?{/ Mܳ !0;*6y*w0H\qdN1ho8s'qCIW[(Ϳ̳ KKZAcG*4ꪱbwoVu4I_("9.\Ժͥ*$'dv?UbM|Bm 5-G>؝CY//n&I.jݶpF)<.]6w"zj^J·hnvb/e%_;px"6͋ф縌DOY*"G"%<-R^|r a^~@H+3LcvPq.v?3[x"=Յ@R%bA'jL?:ޒ!I.tKwҭc)&QRCyw)v"/,Az YX9$fկ&+}2#},*s5䩠z;CCA{2x:O.,j,tw5ՎpwH)f/vON˲jL*yY~c,f{`e7)j`4)7A0(9Iwet燼>_9#CW{֢z#-/l-xwjD܇*X_r Wjbæ9Ǫll &qY{ey@j("s7He+ӼO=y.ߊmRrد";K9<ù!Rruq8-#/$%snY6!5^De>+Yhژz% $;uC4XÏ]>3FgvR;rBpDn0 R2 ʬA{H" ~+n CCfѢ{i~q(k5`7ԓvK]*9#v:,WH|$bƖY/St*_ 0{~y 2یaۨ.ᾺAP4Kw5r_޴Of׏w281'w}3 L-SS dG `\e(:LAvǸUKs6zW-${_DłL /P'`0}Iu@Lq[Mr?+<,tMa3,c_ba{|68g8)k2ryREݦ<$u .4bK5!oQ{i,v7q5`,J$cZWYt ~ aW*?IA҇ k2Cs|1ǽ%ge3o{kx K: `Ea<8B  ږ4FUge@i ́KxC'.l? H6:,KҚ8l~u˴ =N4Y9OB0j_aWAWa\jqa="eSlygx\t´ǎ;혩rQٞ1*[0gqfE_R"[ O#[$u}_ٚY똥?x!~uO;Rl;-Tu}c#;`YRuODI);p0ؿYoH[e !>E|׻(mj.ˤ<*DD!W\ԲF-1[ D1&IFk\փ.vQt~PHdǥ]};ʆ\,mCÈa =dKя&{?{\eB(179j1DAv#9\RCe: `ТUYnzp*SWw"D MN0 S,4CպW1E*RϴH&mV uX-{7JJT*7L'm HcrP6؋y}f=NZPZ~=Qͭ0\c#?AȐg> $Q\ꤣ_{BrnF+%2Qݮ@ |NVL 羒dHMa|яBMl'Yuٺ#. q|qfהS߀hCCů%s[ &`N@91P/ |rv7Ԓ%Cɸh9 hFbWT n#̚j*e2~-D׸:Rۍ ,aJio)'RI"hGO¿Q !lVsO 1F!Kkvs^*JYda{7@]WkLjr/Jق )žya~1yg{ tvg:}5L\A:hrXMv&\'q]2XAtښyٽasg{͙TEAqS~ y3EfR! BumIqw&`I {,ؿh?ohb.С3z.R>o02ٍac;#Y." TM5Yڑ~Ka KorE_)3>sZ8QiinX*cidj&|[yoǙy3"PǮ@}i1FOʶ{g죇YS=3Y gûWG{>t?5=*@ Ojl$c\raT_˨z{jqUO9u^3EGp8.'J]Rњ/Dj|}fz@KA>t9V, 4B"HoٍBLq_!̎jzP%sc}-̈́=#$(gW5tO-*5Άw96ݑ h$`%pN)h4`Xޘvla8:)D :ߝh:?cF(<^!lA$WĖ G4ݹaF* QGF(UXr xR `wNI^&j_y{Xxl&aL=b^<"8 ZV Xgz?6o Ѷx%L+ 90qkKʹs0gyڙK@Jώƛ(6'J++W ;؈!?<]ӗ.Lеز/c$,5ۢWXq<{ɑYZLlrtWѾ}2-^3#Q!5g)<"v85ap j*6ͺ҉v(r;]μD.=fB2Ta̔kjr^R7nȼ.3{r=Ȉ|o9\zPS}|| Fm0zmOH (w֮gK„E[?fW{|2WJ]fvlI#g}}sʵS,a0ԪHg9@mъz0#w5@Op;jf,c2,tG+7{5 `렆ȬP=X8{VI]$0b g׈M.վL(FZ^Ű*pBV1P]=#I\m+B5;{ۋO&\B<8\6߅O`Lyg4w҇BD+:) ^0T+y10IqYX}{#c }D.5J_7Gox|0g1.+ <$ y-@bZ@$(6 hʂv(~7]de"XDW_ Z/jV I"_/¸7hxo0Gzwjwh}x3ܶTikSd-dvjʤ͝v;ޥ0A{-/aoˠO2YF\hi ċ,ܷCEf; #Y>qzvGwc?c)k4kB/d.iz'}eUVAow:*l\QzB*,K6#jǃ)jm(%*+u)G@B u;`{S sTHCoa}gh11NJi{Mi$s"ӳ &? Qk#m23<©C&׮ÇA^owrd#hIXFu>(y@JX{uTt*˖-r@:E+ļ{R*1ֈ&}3JL=NXUEv#At_i-\oJإjGտ"y5[`w%Hs8XbՃ/0շT@q9v(c5 ld7xjUL%W~C(k,&FiLqNɃchs\5z}>gF/1 g25HD-#cN@PSuP9{gU,ٶ齥wH48'/(%2ǖrBKC5"~cpiK0o='uУ4^ڠ!W$%i7ff]EV2O$kRO:bn857ۥi\ҐXvkAn7 .GFM-(QMyxܩk%,Q.7|~U숟;wNߐC i]|:BW5׈F-ÏO/kbdFK{ټ*H/1M጗Y+Jɸrtwa,y~}lFDvk+ u>kW$nGvPϿ^KVEOfu oڔèBCڱw֛Dih9MX+OT3Ug~Ը=I23;4{ XGPDt #{ MD Vs.7 -FbBO+$yyiURIi?cw?GIgN 9rv=@ئw-Yٓ𐞘$M*;^Ն`ꆬG "Bľڴ]VKaT =#Vt~)P¼o;b:0"pMpҒ~ɳSn/yz)?rBS7P bd@qS*uM6UkWWeTS]x3L/839iYUkff psehcE.)x`{,s](0d6qݏ Aq\x5 Kc s1s$WUW>!Howkgc%?{e(Z:#"$>I:Y AdA%i>,'Ӥ7~.)soR:NatI8F:.#S>2P=yq9ddvX).ytJxtJ%֩Zɮv=<WvF L\\nc!0cNج=qkX>)E޺,H-Pֻ U?yᓻ*osr!bTMߝk%KWqJUHc1tiVw07Y_Zu`f#$G_dV4+fnmƼc3g-A͍y0Ȯ;zVuJfE{P쵋K5 bHIkzb:_' l";[]$ͮ,FL9^Uկ ǕYdE.[$gbj)#< 4~P׬QSAQ_$/<1)+on 1 ل (G9װ~XFG4ǵlOw&-ʟްKy &5VjatI'G݈ bKM8T6ؑ%-!M >}^Hє6,qd 6m!NXZ\FS8 @pJcvSZQ,ޑH:#pX@NQjqB5}Q7]%-OѲV.u8 eIJGVd g,7vie\ڙS?YׇLP|$;j~% Q-Cr!AISiUEQQo*.xKS:q"U:iS]@V#-Lg1zpE @ۗ ϱH#6u[ztAZs)ϢM.wk5 ~yIxyI\\cUk2 ۅ8'D(l3uV<,IVN]jS`.'S՝ZH9Lpe(O#Aen&puD[#c᩟W#Şe0#G';ck7CɶOEe(p(2XxWGo ~%RaaIZ3TZBUj?ZcR܌DŇrww ǻ/̨*6%~Eɪ]MOM޽4h h azٰN T;X#l[̩5\ךxef z?r/Ȱ=vڂ5n8N`R8UDAK3ļ7_qJZꭸt6 饍 87W^z^T-Gd<ɂvkX[< ٭˵xnJiԧ\ԶԔKIhRvkV$jx#OY;6KVu(/Z2׃9FD%h\ք3$[X Rzt=FN~بOU G>64lb$#ePB#^Cp{?`-i@JY2x8l"pD,2{>p~[fP/S1{R_(-nAjY24\y$L9qaтNNS^O":t\#«TZػ6M]7t?dAB$o!Z) -J``,b?ÿnPYOaD7 88 k#vO64`2<ktyB,ƍu PY"=nZY9\y9 /${mz`$9!X77\Od່}{_l!zH${lڣ3{h𛥼"_ ~;Ko OmdaEg#v~sGXrWvy 88L*=G d7#֛Zy]}gV kNRRC _Ɲ)>uĹfM#W f;( G)M/j+g0ttpoe7IHkسw*zF\zWd+@TuT|d*`Uu3vk@ᴓɲfXESk./pjDHw`>7ONdB)6UT/cwS-ǼL󬶃w fK|(QcjL QF{*EF86mӔƲ{D[uBwaG>@A(X٤8t(Dy'Q]ێ~5TC')RG9!hv$RVf.ЖT-߱#`s 1Bҹ/5O,[+T&^o X8#N_>iSs'zm3AsŠ>]+1P`#cҖXwb%6C&G,6Jg4˲4U{W-1_Pq<i2QzH-i:z5'FTzjT}A#*KffԼmNkAk48>r$Lq"1zs^XջܓW{Eq iA7`Zbe׈{Xۄm{H2zN j.F`gqm 4@Z_=Uϰ1N6O E5ōS+tal!t% 76LbnZ<˖S&."|74C omS`Ffn2O=?F|uvu$0tx ny^u1pkfjITYBW:ݾⲉ*d3(<ǜІ; fpIOP3>ib/.qyҕ76,;\Gv剐CA33IJ>mCR?%fR#d(^XI,w|0]ˌk.D4te,x A-dpMtoPUmv"~Gw7;,?*SXtd]@(;qTGsLot..?xc7%2=iLS,p|d),y<>e:Q`z'X<E$-"e@"qZ%[aiEe&rv1o6ix;&bBʊo>W; &4Z_%"L}D" *SۿVK wS;6\8|j W/߽Eеկ]D0cK~#(l(ߓy-!h6&)h~Ka{[u8.zJ- fL v*68h.<ƃlyޥ.ndBݼoUi6i,T;]9cS[܊o,ETC r9`ttD_q_:q"0Qߠ58foZ.x RpiKD>vf;nw 4۸ r!KO=3S-.jzRe_QLNBaWxxk@/DM%زX&0}RBFȃ"t+(ۍ3(B4i\H#1'- sSńq`\̶x)&M9U8D;ŠmyꇽcRsVF .@mJJiyDߒEJ .,zQ#Hdd~ (n:E^vS DI%D!Յ_[UHΉ}q᭬WoXMgr D) ]'us#(ٱ]}H$ϕQRJ7^ո3?5omYNfک׍DGM*>2e!)MAF|/O񀦱;87 (pʙȾ@†Xs(Ղ3 8Kz(Kf^*;Ad=qݑݶg /AN=({[ ѱaZ{|.b{/FTl~d)Ы887hF쒀HNċǖ˶V˨2P.Ҧf^Ϩ~N6 "v#fH#dL`#L l-?t,Gx՗{ [-iypkE'gKinOi?ܓ_|oiLa4^;Te&;ga^v Go!9X-9Wm,{XŪ~q tFj2 buGE&s mu Qo0R-rG*RS3LO<]-fv_#@[ræSe H Vo$ yC>>* Lԭg7Ϸ(]J/Μ f;5>JX눒1vGN%G,Uy`h  7q'!g6e$Frtq/ˆ:űzMvh.8-yMmR * (XwγXXbѕ]B}uv'Zfezr Y/u>Xgh{x2]|tScr~?i鹘z4֔ŸHhOH޻ZOh#n6(StdZWDZ@k46<ƍlV|S ?VVJ:Dh@+!]?/@ 5tM٬4$@ h2/[JY6ԏ/^"+ 8z>밹LՍX[)FbQjx?n*H -`z uI#WL\pRdp|ү":EFAt^>` sz}B0yo4)Tx )n0/VCk6‚MVPߴ~Кs_R1)73/"-ZW*Ш>ތW.ybDzl p[ӳCXVZ{YlFL)jZTl\]H)2j%"238Z=,/iwN蔎b@W3$tsElY+tDٖ^ٯHb'Jpy۞,rAQpqe˪eܫoy򃔨ۺl4;;uC|vbDU3t c%k9Af#=nFcNAb߱S+Q^حȶ V TJ6IT"\*{b0;m?!L(QA(ie028_d.sIxn} hz&1Q@W=r6>ݼ q4{OsWZRdNɮ+P ~ԌƀQwO q+23%tyo"| x^#xIzgOoW¯U\G4K.z8 [חcegg]+]Mn@ۉtr/<…V2)z(vE|'[*NA_џw ^@ѯ3Qd4 ; t 5,/qS{ح+ mz+D;\CdIށXY-aķjt\zj_I|Mm=oEF "ը[=\ohFmZgK3X$,ժ8h< wT {WFvU! gxy{*lۓi ,&Q/SF=Ȭ Z kzPG׬ T-◶ς [iC~ϯ)K<<aP5/:;枠D;;Hզ~^oVv?sx&,UxωoYB>,3td>1^=^z{-T%Rmը┡ǯך϶Wa>J:hK!9˽sp9J1>ExmF94K|~^Vc,g `pL7ivT!ͼܢfӥ7r(.wOv\=t}HIëB.ؽXiŘ~kDKb6/jeZχ`i$Wi#}L}aʦ ,4[vwW'h*G mVCCyfv^%DCܳ9A6Xwf JQtvt}^hg]~hYWs/eJn==u[iت(3S=)'Z<ѲP[Zv#Ŧc ,DGC*j@F.z O_b.hX\=K 'i7!5J|%}pV&BrJ/ : 2`)rnF{̗50 x7vcbXctKMgr)I D&$)Df@U6 T:! 6D'R(˟uC2Ce7}|zl" ]l$"xW^g˅cb$xk;kKsf:LudF (cs #@O@Adl+clh깖/Hz<{P(M~JU%+?APzy?ٌ@mPh;~ґ:$>뻃Jɲt_%r1yxW,: x4BIj'edSDsf/gL$!1m1XL Em!nߎmwg~=c_2-߷Qߩ@c_֮=Ay1=~H 2L6E±`Nu`0BA?"g~EnDCw ޽7suP, Vg =fIHwoc'CW\ 5HȣKeyT?.u׿|Wd{GRKU?{ 5M"5 hS3Eb"UCRSF:)Rw4h"2@F>Nㄹ pWZ  y5yx[krᶋN更Iej"17|>rҰ,ÜdTl<%8r$j2aO6t _732~}֙ N,I?cXeXZ%[ꞛGQoU׻&.Gy6HWWx{'n"_I-[[gb2o~'&a!BX UDbO߁L(t - ?G\]H ,T+4?> 眄 p [A!)<9Bzw R+ 1vԆ51xNy\EIsE9LIE[{@OR 3<|ݕ-XXV覐 ;\_ ']HehD7#{>~SO\f!-8GtE\ŕVXbԠy\YFOsXu(N0k7њΓu!vkHM]oSI6&DֈJ5> ͒[ xC(f+qx'M~(<)h|rpdFyR ~ɴg&$aFt?#~W-Qh$.n3Z.UEZ- cR=&=RMeYvY-̪}x"i]M:QR'Ş G dI\@2t+{!X,,#foD4ʒlabTۊ]F2\-H1 $qeB:Ⱦ!lȨV?A~{LQ/W}"̴n]=h:nb iQ8K.;;WV΃2K0C/]1wzɖ ;qG0\TGF@Sk_]V`t oYH*W["=?2P)D/f LNGN%o7%eXimm|ՂT9i1zFécYpuN W N^@2D54S 7Qb{o9E4 "8CgAH/I[~^25Y1:@||M33i-z݋;b w.LRiGE.,DIS#ƫ.9K25x8cmif/-TnR¦`BCGǍaf6h ]t^1 }s=9 :mY= $Ӧ wܯfvbwsxZUj*w_BE>brM.ƛ Jj:H;Njd@?o${A/TSh\1 DLeID;dnA$*1A1Y g&U.N:̍DGyiiR:f21o $wf_z+&%y:C r0.r$Ajq^\Pfƞ2K~Җ:6-C+ TZK78sv߅EOD9⨖V/:'9엂VЦ_0 u *(upۍᅥӦR0>q_<ش/r5KbN`ZMK<:=F'y g;h7˃h Jg&B4Lao~);0dF_bMku~MߠpLےg~֌ubLJHbJh;A$fVM.)#{. ~ 'uoX4¿p(>^Δ^o& ƕMną'綞ybڰdZTz$P};b&oGq=u~)MfFa[1z d sߏ awa Qu=.Vk 0TF1lqn37>Ӷ4h)c{R\2 | }9>E(λ:CSrʐ}!Ȕꍬ&RKMPC02TzЈ 4 pݹuSf>?pZNE 4d/f{ c8i@px}VN ՑU67b:%L<ŨfyR,lS(' { WxNmLE~e;h@Nodл kE6 rǃIi$ Q oF>ZU lܖlx Mu^u;bGقtQ?bAppc ܏^B?v1 #| :*͖WTU}3e y6/GNh 7^Q33yֹQ|LyE9*Z'J ]JZOFRZ Y ywyY u(paS0ꍠ\-4 pZhwISXFz: ZL3Yj% uϛ(a"n1ۑ~niS7zϪGEܱ]5.J?dEƱ'*ag.g{WCpPS􌒄ϣ-z5' ,Jrr]g @Y{js"M^!Wj"oX7&Fg.&"gbjCXF}u]hiŸ6Njp xD]3(Ȑy_c)F̓ŒD[)uyG)M 53I;,9ZS&^R4 YhnA;=ĪbVB)\x!fJFsW`Pc J) r }wØz|Q$yhv]'e5>y gDK(s?Oپ췘˨XVKUj)W^5[e'3Vg7ABiPNhAu @MGe @'+x(nhކI,J/[ ¡(jI&L%TX461!}C! ԢU[*0d\Sa+5 Y <"it)p=>ߦ4kepȷL=$_n–/lx2pZ9|M$3Lc!ꓵ fUwdf&рWOZ}e_]Kf|+mVP0 쉰:$oꌷ c|y`lԝ!p]ѧ)ZXϑ?u Oba{mbv١S&sPIFfNMX%@QWTq ^bg:xu6k>µ: Ld~ՁZG֢7IQs?<[UL9~)^?/K="&M} X&t^e^MӁT\ߜ󚇒;h*y.t ˦k Zš=2 gY1=ѳ2e3HgngswpɓK,}MǞL@#&9acY!'Yac+?c: Jd|z*muX~~?4jF`AEqVn1.SYI5 FJRVZݲ=Nt4p57H#*%3sQl*Y؈jƙ !󸥖돖 I;«ͤ{5?;rl94:K\m_ᴳh(s\/A6r^EbB 6ՙ+Md 傛L؄ I9̇܍ CEW>%*)GZ>0Y؞OM 02(iZj2iGpFV;G'l>4OεV`b,SxI~ B5bw cx@ujuy,;y!7E8iu*m+kX@tE^r8:hkW곅KqnE%}/B(1xu`li~OƏ1BWWyeʝ\4t+(4S:Ə+f?AaE]^"ǠP&z(UVSP֮Mj]ʬM# c#ǘFٴH 2Nr)7A/nW\|c A?lXU =sDX(s::6°٦k)̬Jf#ejnQ5\y$y@eVHc_ e7zamG.s4(ݽ=)ABKmTx'~ڣ kB tĒQ.\Ȃ p |Hm0!>YN9"Hdj!/UpO~¯wYɺ}q//nR0vc ߘ?di}Q/C GrE~D;MB|HH#Z$,6u lcgD[$8L0SH%q!+px /O;!NU̟‡au}y9J5Ohsn!1bVݕEltp}H/'f[E޽,V&c4C 1`0UAw'ceV]v&F]2zKy/ d>b.L0lV/ 6V"Rz~`a:džauI ycYĤ 2~2~災n&)2$oV%*RFGhb1kh8L%`݆~qy9ؒ/{fd.)Kŗ2-ֶMENA; ?:7g$q<"#sz$>C(Æ֏NxPB820j{8 Z}rsTPBB@bY%;Is g'Nf8K=˭HiKE=~rca'n `e$WiFewLî:W)/,axѨi0 |+V* 481 4sIuqK7ܥTL> E( 3.;bY6).=TjtПE kARXd{XF̅ v(0$s^-ZS%:/H%Vߒ".Y`!{ 9ED%Q>Ȟ"@)>W;8}ڦ21޽}tݹGdaY]$BxՈjGN1G) m_sX[)6-TYk!VƠi i%RO}5icDžxXiuUxzvw:20`)q0/dW}JcW"{7̪XD6 T,j`>MfB \Q[NPkvhDNV5]OgijIcқ [QJʻA.E{T88Tiu5E6ؐt-5ɮ\jyHc*N]U)HU {h MEWGTE )g}I敌\0y(Su]QJCwչ I_8)P:SL=X#J(9R+B) aJRB?\-z+#9~rL2>UϵPDH3=B-5vμҙL2SY6c;?s>x6nX$'3骁M5^nhzُa<<]A/9o=+?+X2NX Ƽ AlSU4F!fUFk%3{d.c:=7a&4q݃4+V=FgbXϏ#Yp@e{'fR3`wnN܊@-Sm,QBWcL*q6 BOz)W@՛Λt"ߜmkZޯ*QdU&V+^TZK]4]-mř/RyJ92b-By %dV@#IйsGlb"abԫ@HGzP}D|q7GB<+Y?KG+=NpOknE(bFKfYkIg;sM=.:啒իꚟ~-l z@90'fH81u)oMFdW\?/sw>(+Mtx/.*)Tu4BAUxhG-:e2/o /S< TOP2:JiD@{odq6.8>Wy\Bbm5T`&m rMUւ*哔5x/gD0 h-C=>N+XgS|b<ȁb׹EIX/rlXx@+;FYֿ֫fٺ &G]-X+_^徭O '0^r؀PF;9h"J]%&MLa7"T6S:Fh!B?-1;?2h}o8j](maXŽo7ThǽS?&^ʉ5އT hjvq*`ش@tX@ Z+Y 0?R)S8-T Hiگxg2bf=pP/Gc΃ Ohkapm!F0\l,1Er'W ȼo5ìawQv"^0lz/ /vՅ&r|)꩝ťF]P?LZWq~j'L#y @Gۻ#cӲ{ EfU k͙^' aңK,{cدUw Ɔz,пx;;SUXkƜAkt0yydk,Y(P[S51^MC&SJ.QƳS,_Fy)ծS~U l@(=wts-5C[H&n3es-3[RWd *%q-(+T f\yS૿bsչ9ROnht9ӳP mn(Qqáwլl  _c/$籈gY\X-^ёwd}(&F1gtPƚCU. E%6a2 ]Oe?,KÏ` - p"O uL Ih%iX4ؓt֮mlCp'7Q ڇ ӑW۬=w֎L !2Ψj?c/Xw~GLeգCt^/17/Tyv"e:uLĄǠ/{pn:}49)L~[^I~y`OSlG]{J+ܵ@L^ ];8뼭г@W.gKf1+B>a9RF2;_)%^TʐOwƤۅ{DŽm°0P ?L$oQ/|{Ԩ\3H?::&<5v>86i//62كnŋ%m/5?;Ϫ){wwW4bW-3^^ZwCx'@Dk/${I4 ϴ⚕c~%rp?T!,s?{GgI+G٫j HkI i=NmbxJcu-!VS~>WM Dnj$0 l|Iz-y\ 4YΛ}$`64d%.>KIͫ'JӝÚ tm 8-ΎD s-!O}NUp]++f WޗLcXz%H}fA&1бC(3F"Jq]n};btխB d'|6g5_l^o;` 8+ 0wYjm$Xd`(u`[|s=1n[PsA裮R6Cy \ "ɯŞp{TJ7ѐbSt/{t^kE;8A.Sv"/g'1-i*a n+zkѬƘi4C@f}fM| lf%*70^&H*БLMD+%;k@\aeP2{?ਿzHCb͍{O4:T (}T; `*XiM1,=6b6T0~)wSHԁm<@7@9PuiC䝽2w]|+OKZkJqȞ9M/!@"D,"HG #JqU7KPJ)Pod{Ĥd4L)ZY oC×?6wB$F#];^73Lyw`tOB.^4OIh֐BNǤrp[͹1nP?\Uf/˩*F}={[ƒ+ =`?ȇD|nsЌƞ "_0•~ MWKJoM^Q)x2ۊKf@W=?h/t^$_+g"U#cשc#Z%/b 3ksa.')5wPlU񵏓\RUFL_TƎTU -ܥ/Q5^`Ep-SGjf;Ckr6- Y#J . f+dLͿ ŭY£E7k-BUiHfҚ4HyI۔;l/"(Ɣs3v1i3ICGs`1LsqhF_upwpyϿvdgE/fa=`F$pZq4 㮭Y0QgAy,N:$$u O1kW${߃#4g or*g.)Xֆ?T{Y,5sճ;!g3ۦi=cRADGLཌྷ*VG\ўBSp&;[K$ێ3 .VϦCh=*кtrL i7TD=JUGM]^7HEbs ‰INdie O=yUٺ<ѥ{y'L~4/xF&5$UL@,:AfeL6K@4#kLk\t Z^YălUkC/8 LԠ8ZlY3t$ƯC7Pۡ: G,Ԉh ;R P4Υϙp'![N^ &/F&IU؄̩*|nN$=i8bv5(5)V;bQ>զ 2Ԃ7P8Jf;d-a%)kaܺuDrs9/F YBAxMW|L\y0־ś I۝&s0Pĉ^duFRk‘߸0¶YkRGn5<6{jM$γCEYtlŵ2HE x[U<00rp&?Oh U3uiEzw`x %7r-24E_xMg;{CDQs@b +^؀Cnp3{ȂP4h%d>]}P{Qk%*]WKj䏧ThP<OcN8)h[ '- Kb$UF$x[V./ަO~ȭ'RsHgqT Y\; ➼DWʊ*%6p׫ߺI(3>my0:]- ֑eږ_l>ق"ؓS#' T]m]T}=g|^fdpr>.(=-EgcDc|>GA@.qnFŌXc20/~uVw+@Jj, F'6+XK(0^Xt`+42c ==-fWCH+D/i:rJ fƶF~nF@/*,C;;)SE =,SKϨ is ݈k7.Rě z1/i#"]ub2p5\a3yS\NRU-˙Ii 3NAXM kʓW>N _EFټaW-z :Txr,)mTGpFQ_}Y[ē> .%ݘV5cN*hvuM O|K2p]\[u0=%"}|IRdE}o_y%5'2Ò:f԰dh F9DžS }3M.`B(3ft*;3}GOh $UTCqۼ LNK&,8o>T_cZelRRؐ~尲V#^/Z,[FwЗҡGqMd+Y; e9qSw0pdFFKu\,[ )Db KNPLJ_gH0<ͿC9Y4A:r U(wp= .2 {(KDMdo[QYokkA{ؽlԹS! Dyg@S}AS {M[tNq}-s'em ȅ LXiXU$ɐ`~>T8^c T O~h( Jo&(3vB u$DhZ|RUx)GOXO,V"^ù(1Qs7{JZc!ۍ[0OÄs\yE $5dXFTQZϱxNېhfօ♂ZeI =aJ5 }U<0I#"4ya(q9H0xQ &|\,~\)XĨv .3++3nagG5#T `:k8ɲW紗D5NϔdKcg $Jl Σo#tvp!㎪{O哤 pWVzy9JY]F215![c)WS?Oڏ҇n|zF8 f)`j5ťyR`~YďѴ[+~6׍7E9TUlCnAһχd̜ , T%=鐣(|8BA\p)\/ 'uŒQ&iXdmʄ+{_/״~9JA :mՓBS[}.ܢaS\X]\6D^o GA R\r;Yo/d=M/*: KXapR5׮BZfmPTCkHGm9=ONPinNҿf #}ݳ4.Ÿzukޢc40"}bJ;K|x;Y;^O[O:G}%Boz?|SRɯ@TGT_ *Om -pN@ k!zMw$I4ZISҮ;W0K8~fxg8>];SpCtA 1FtU8tB;hNMOpĮ rJA-5~t y bt4N%k ˅]E;bpsAQ"O]DF^Ւ>p!֠C\&aM}G6Y*~3+j(n P%yOc& ɧ@9,| wNMsN+6}+$tšE#lB~sRd~_هe(J.YM{ix][=!g<--Vތ bqU ;"}|*߄d<_xeRBI_ fnu;[O5V]%"PhY r0FtJҔ@0#UP  +diTС]gO◨q FӚcN m(h{-C` e?G+ NA1' 3T(K=JhGM WWQRoʘ7Fna5M:zM u\(2w}bB pΩgʉl~H!CdIvanHzCSp]U=a=nsXS$h mb?1'LM«0֓lGXA2OW,IǭR;c|eC-> y/:wƚ9ߍ8i~ȮS*+ G"׻]?d20@GNf@'7 &ȂBI!gad"lz s!%pRfZ*hD,Zxy65?jb|N?Qf $e5mQҫvZx.?&+Ho|?szJ8 HiXL;ͧDy=@K>严ghm bqm*bdeC(%"Z5JQ>#ALB0"}lozWFt!)Ƴڛ Dp+bpĨ'(V;`~oX T~px]ʔ-6mvYE?_ѷ>C-1g(b~ߥy4`=:aMigK.n7APAMM]1\Nu>5PSg#Wj'!k]x^*&ޣ-SJA2l~y "Dd!k(_h׷ B;\_<5Q qo՝mnL4h2݇@!ZvgU>(PGbżp %֭QtQNE?% oyK\B^5gۋ xG xzŝ{p@k~?L)*Z]{94-TwEƥ噱[R@aT6 ic!l.##q\Q~1"~J)E}j9jOa3>GZ|P"tZȼi(tkC)vWʎgVD0A#kf7>iJ;#쉄[7'f]~!q])H~)U=ڶDg; E$SuaG>D,­&"\t[ |࡞*b%a/?C!bX8tn[./l d*jm'N3 d3ճm%7T2 =k줧 u&˒YAK  "al rɹ,^zg4*;G<__|zkh4Bد+R)#oYA -^Xbа(<̲M8PDMgSۜN   *n`^PY,kH/cpvV%Phk > y'\$9 0U=$DSbTsP+#Uh& 0*ZEMgPGOJNP{ /0d2rsA lZ  {pkMaCfFi $KytKr/^IX jܸHO]NJ֧@9Tʊ(Dݝ+FڂFwiOxK([,V;>x1bΠؕZ{+bZAD_%Qp#vGJW9^>-}6:FUj@x'!_ :˸U3[&> }l`oҺ*ԝxFa)F#gMa=hD֫|u twhWXkV_l ȹQk$.-xqCGE60[ Iz3E 7AS}VuKl s7gd''%!V|7ZYB:OAP,j`R 0kNr@P]׷J*P?kD!]{1HOyL5ꃴGU]+W ׻K@F>.H AͿʙ#LDJ旰nK::c$SCU 8pQ[ukGxN1< ei X4G@5:Ԡ{+\ .K.F7A)ѭx؂a>?P8fGq:{Yl=g8쵍_;NղYZ+̺1w3F$!2Ns3$Z!]2{pB6JOc~YxHIT!>SI c LP` 72`u3b+G*Q"iP\p'iAt]ClԲYl#9Ã7:dgB? &u!b-uJ9yEKx^X^jLFI\j!W.Bõ%ҦyIpv6:6xO6LXvE%굻aUӤz8/R̻7Ayf #Kԣ7L g"s$ 5Y=t]&px4P-#Ƨ7(C^3Ҕ6)ȹIRٕM斨~6\ikw ?Rh#f;VK,HBQz6[DGW$Bmv :Xp zorh 4Jm"<9OG(Dp NғwxbSw+NPTfle]fٸ~c똊Zb`fYcr#5Q@Sse 3;7~-NٴS\c;R[_oV"mE Q3I\x|0UC٨LlûMSMcR`g冥ܨ ؔ.86Bl09)>^< l;`EVC1=zTLu ׵W*JUe!; ,0gƒR$gU )=uE^b_!0k6{Qf9qV;e{$ Ģʟ6I?W^XYiC=}E.@he<\>5m^ J]ֻ$gey}:U2V'VS0a׷:2PoGݤ|.<܂I/d|PŴKawj(Z,bWI/yW݀*ՂIئ"`iJ JİBuBG} f"y!Pz`6݌Ygx9G>BnYD!/|&ۑK! 06ݰm %:TΎB,BƃEtm:j;Y3vĜlh1.{IaptZN$؊ ܯ# ( պyt.azLWy{ O_Ƅ;T,4#۱}~D *ʉ%BװIk&H>AHf5mb;JP޾B#e(tgxFmS( ú(DIYAܱOr;9gȀiFh؃Z_GV wph^g$^nvR __>ۈ1.- Fž^*i,`4) T+wšU˅d3dg9=Ԃ}BZO̻Ladgc 2Qid7e~pxԘZ{_Ƌ%tV-;J c.FaKG< {TMq{kj|}1ﶡBJG{p o]8jh,J4t&#h/?*EaDkwQ#QN"͸+V6 HCBU))Qm#H!iӨٟ]vd8/o {/&8Wj7";OxiGyuQALj"^~-MaPO.Hw&; -7πdVm={ҢD9 2՗"CI K_;ŏPp9  |qLw1핁86⋱ :aA>m=Q47 Zi*`!& z8•g7*F|k>0-1RWm*Y4蝋0!6]uK.YяR@ڋffblQ3",1ѹt֩\XPCa[@f];Lq!p9CO;9*~W˹?⿁ +d9˴Av_}ToXU?+JʁP^J+6+\B\, h`{Gv59s"%EQ!o ĻزvQ\72@Ttzs{uO?0m^o|}o whyR H4>7|*rxĶ\A|NؒqQ7/!GL$V `vcB14-Um>cqyO` ->/\6Zӱ8h]&PLZ44[2n|yc󹇾YR@upݢ8KZJS'UD?|te|9̷[% 1]tiah qǍN+Q+gh G蝲L{bRDo矬@%X.S?GhsJCױ*;uH 5tw%3EJ_7ҭI؉8?b5hrU}V?} jX+x|9zJfdJ%hI6AH'Rx\:.&VJHcѐY|)B48M/Jrށ<_!z=j箿9ηC:78uFr Έ}&@"-OH͖QkOeڥMJ3af_ap~{ "S߁Uc*52^N R8Q8egaZh1D-> aP)Ny#$5}IߧVd5Ҫ.gxc4` N+ }>sy.z=$cggcK؈ ?Li*o==KiWzȳtb8eߌ(AZ| *DClvY2G FԷljɴk~ODv˹/K;]d!U Cw@" =doz#F=gZ[ ݕ <69K~#H~p;YH1ݫNWm95AQ%GfL= "5[TN!ϯ-.EӾtoP) Km'[zנNFμяtWGRg??Z$߽7>ECEz +rI/ΦcHk}iր%[:8X`˼0o _y(U xWpO,5t,s%vV}Ys0qasI)d;ZCSY6Eo8o^;:4n .H!1=%;⒢yQjn)P^ y?VwH~xnjbǰ6}c\ i ϊyd Hݡ11Ml VjW)+ʋRj_ }H_pi7aFWO?8S_5P,#\BQp4>_'58oK Aifr($,N{ZNA8-)N~-&ucΆȏ,D=Ҵ4՚rYIB5OdJƓ0)^-O&N*蓎MRщ#cYul}dn3-b1Ib9h9^3alnIіz^ <^$a ]-PG:c4!*bF{V$!-=,okcHՎ|0C(Ap/a2y޾c藟p(y#BP 3ߓAKm:ub;>--ѕ'59j%i&OgY kd]ƒvBBK3\! VpR 3A~Qr%0jrX[]i'?H͆0ȡ*Mm PuɄÍB8%'k!CKjCfiؚlj yj;㰏4g>kn5QT)= LcB tcY2&5n)0tb~&pCߊ*"sث :o]MD"G"_$ɿ~{ךD8rK(|Ԏ8 ߃ J8i\ ؜Z$bCeDvDm$vgꢴO f¸#,Me4kYM֣41K  RglZNq򑜶.DrF73c.šKx}}j\y޶'GC f7 l S!gkW8g QTʐ;p&X D|E!t2MP?bFu3 %\d÷lPs_]%6I*52b;eܒ5"m<?x~R+DKy.3 tuYabgtMNZ^C±47,m%JcD.c;’0R-Rߴ7oG֜t:i(HᔧZX>[%}aL"15lVQ.S# ԮV;֯:̈ɢM띎G4XO`^ck8XYg˜*)[Ǥfm4KV;P{u놛Cߜ*۴/ݡ@KVXm_LX80 ^]\yoLߺݠ MЉ)$E/-pzE^J:KRݫv?,MiƂ?О"(e6Ԥ Tج\n4Esw둘s/WhGhf.'[s4s LA6N+h6 W!PgmgA W !- siQ ~6 f놼h|@~~GOwC3/uw@i FzB-wfQ{gpzh#v  -|?b}uPyVu,fs,h`UqJ>nБ: NdSO%%(d}Y؈vW^=XJgG=qS\BtVk LOpH[rB'#\j [3#A'a/*#$cPO4f/\6K>\G#]ްzLIs[?5_^Z]!O˦rǴq*yj1ub!ej㰫R A&]p P6.E%2}|WREG4OûBx5?/[rggcHmcgmxr?Va+γ*ɱ G#W"ָh3n_7kyl CnjB*֋3Vm8hBZ)xƂ-5C5:šMqJI QՅ#_?խ׿xX} ٮCԴԼzIA8Sٶ$nܓI/ۥ~25SNeڂG-`2 v4 "$F8*A[5}dUki)Bz((!%`PDZ.JWn$Bڣ sLL|YaRk;J3pӊhNzԥѰ쮫B+ U|n,w8~;6|{^ej1l:T߄rITGn&Ҟs~uVs, ^:mD9ˍ ! d?˺r !&~$G&BG4 OIP{:1ŧXS𲧿Z̮ëJV'9"RӾY6'T]N6"F_Z kT(uh'wX0qz]>11 >E7sʨXrܪ}Nmjڵ z1f)Of$-cbI/ w֥w(@Ĉ2XShBU=XLbĨ8RH'R0F&m1-[/үT/S Q7R-?p{[CgF_H'«VRMNz WV#?ËD܂^|ClL*(?/iv@`BԢC^}Q"NQw"{}խ>d7^gEཙYw5Id~t%R 7.xo/ y%+$<>&D7O gW?%w_ Q <`t S TwqA|%5̨1 >8;A_  2ys `FheV`q œcd(+& o~Qt_7]ר4c*1Vb_ֶ\j8,v"FыV"JbF᤯ڶJMq>ҋ+g-HU[YkG4 A a}\֘qnԣu 9×S[E2W^HGvN ^iI8›.$pRz_<f2^)K>iG]e*Y/76 h+Oc^$ 1=ĦάYo6TeqJ \/ sƷj31l%>  .N>gmZF;Gwuq9WV)\hX zg#re}ğ-1_(DMƛ&8Hmg掭|0/T,+t8b hE.)haBHHcݍM_<'}N Wy*IEeDlHq p.Hǀ&\ѡ=[?j_k#{<$DW/G2V>_>llm!puc'/?hH( *:!!V9tlɠ^[| yIy3kTe[x6PΟKfρElޔ" ,yV[xaƪU5(2*W_foYn kU;@#ץlq :ܳy:ܠۨ!]{\;?js𯳻k%C([<ꛐAߛLNOܩMW}\i/X?7uq怴c0PumZ1Zs(#SުO|TK!S$&uU K~uEh C \1xȮa*81fTŖB$7p.<=KUUϦ]ʰ{Nk4],囱5}q6*%`5s{}h-A\oJdJڽ<}KBgX΍XW/[izwSg>S Wl4}p ?|6Q0CͱTЂ>z/ p^V`4}-֟6) W 5o67J\-xG/Ͼ5oDQ'ս l`` _cĔt]~SʣB(:.^H!i?n|0?Icphŗ e۶ YZ