389-ds-base-devel-1.2.11.15-95.el6_9>t  DH`pZz F*=y壨w#&O 8(4jҶFƨhm>z}12 RT%YUaDv.Y ޼oX:.~(j2[lL;k܎KP[*I4!ZP 7Q8*H %Y ͼ(TeSˬ(+&-+LT-c2IĦIh#8Gy}6”OdBdfSdetJb@K-Y8 4q8H*AJ/ #[.UZ Wق{15m[ )݄4D6 uF%4GoRl :jI@GPHWS%`!onrL |s4T6yNS$~wk[Lo DsO.F?^0'j1uuF[203PZvqy8e98e6114c6fc2e0817338e6ead966139610cd28LZz FBx̳s -$#exkhd>+{rO?VrGz ^@apEF ̓x~Fu^^mtpNrpgEij_Z;O#T|BNPa~{Е.]G /dǡDJ CFA6gĚ%?2P' 23-/E&wf،L .@,!E5$4u6VyŠ["IylbMclaB<j`o7`]()r=!k|BsNrۡK sLje@{P?BsX/=(b礱ZC113?*zot,a]>e^y*L%SȰ+例Ŧk@L F`{:,T_dmrڧuO.~::$f@6%:7q6=(mC&2&$uQvDv%zK ,>8N?Nd ' V  #;AH t            W  $ X Q (8 9  :> GJ HK IKL XKXYKd\K ]K ^L\bLdM\eMafMdlMftM uM vMwN8 xNd yNNC389-ds-base-devel1.2.11.1595.el6_9Development libraries for 389 Directory ServerDevelopment Libraries and headers for the 389 Directory Server base package.Z1x86-01.bsys.centos.orgCentOSGPLv2 with exceptionsCentOS BuildSystem Development/Librarieshttp://www.port389.org/linuxx86_64]<&FLA큤A큤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.so.0.0.0rootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootroot389-ds-base-1.2.11.15-95.el6_9.src.rpmpkgconfig(dirsrv)389-ds-base-devel389-ds-base-devel(x86-64)@@     /usr/bin/pkg-config389-ds-base-libslibslapd.so.0()(64bit)nspr-develnss-developenldap-develpkgconfigrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(VersionedDependencies)svrcore-develrpmlib(PayloadIsXz)1.2.11.15-95.el6_93.0.4-14.6.0-14.0-13.0.3-15.2-14.8.0ZJ@ZZZ@X9@XӸXX*X~@Xs{@X lX@W - 1.2.11.15-95Mark Reynolds - 1.2.11-15-94Mark Reynolds - 1.2.11-15-93Mark Reynolds - 1.2.11-15-92Mark Reynolds - 1.2.11.15-91Mark Reynolds - 1.2.11.15-90Mark Reynolds - 1.2.11.15-89Noriko Hosoi - 1.2.11.15-88Noriko Hosoi - 1.2.11.15-87Noriko Hosoi - 1.2.11.15-86Noriko Hosoi - 1.2.11.15-85Noriko Hosoi - 1.2.11.15-84Noriko Hosoi - 1.2.11.15-83Noriko Hosoi - 1.2.11.15-82Noriko Hosoi - 1.2.11.15-81Noriko Hosoi - 1.2.11.15-80Noriko Hosoi - 1.2.11.15-79Noriko Hosoi - 1.2.11.15-78Noriko Hosoi - 1.2.11.15-77Noriko Hosoi - 1.2.11.15-76Noriko Hosoi - 1.2.11.15-75Noriko Hosoi - 1.2.11.15-74Noriko Hosoi - 1.2.11.15-73Noriko Hosoi - 1.2.11.15-72Noriko Hosoi - 1.2.11.15-71Noriko Hosoi - 1.2.11.15-70Noriko Hosoi - 1.2.11.15-69Noriko Hosoi - 1.2.11.15-68Noriko Hosoi - 1.2.11.15-67Noriko Hosoi - 1.2.11.15-66Noriko Hosoi - 1.2.11.15-65Noriko Hosoi - 1.2.11.15-64Noriko Hosoi - 1.2.11.15-63Noriko Hosoi - 1.2.11.15-62Noriko Hosoi - 1.2.11.15-61Noriko Hosoi - 1.2.11.15-60Noriko Hosoi - 1.2.11.15-59Noriko Hosoi - 1.2.11.15-58Noriko Hosoi - 1.2.11.15-57Noriko Hosoi - 1.2.11.15-56Noriko Hosoi - 1.2.11.15-55Noriko Hosoi - 1.2.11.15-54Noriko Hosoi - 1.2.11.15-53Noriko Hosoi - 1.2.11.15-52Noriko Hosoi - 1.2.11.15-51Noriko Hosoi - 1.2.11.15-50Noriko Hosoi - 1.2.11.15-49Noriko Hosoi - 1.2.11.15-48Noriko Hosoi - 1.2.11.15-47Nathan Kinder - 1.2.11.15-46Noriko Hosoi - 1.2.11.15-45Noriko Hosoi - 1.2.11.15-44Noriko Hosoi - 1.2.11.15-43Noriko Hosoi - 1.2.11.15-42Noriko Hosoi - 1.2.11.15-41Noriko Hosoi - 1.2.11.15-40Noriko Hosoi - 1.2.11.15-39Noriko Hosoi - 1.2.11.15-38Noriko Hosoi - 1.2.11.15-37Noriko Hosoi - 1.2.11.15-36Noriko Hosoi - 1.2.11.15-35Noriko Hosoi - 1.2.11.15-34Noriko Hosoi - 1.2.11.15-33Noriko Hosoi - 1.2.11.15-32Rich Megginson - 1.2.11.15-31Rich Megginson - 1.2.11.15-30Rich Megginson - 1.2.11.15-29Noriko Hosoi - 1.2.11.15-28Noriko Hosoi - 1.2.11.15-27Noriko Hosoi - 1.2.11.15-26Noriko Hosoi - 1.2.11.15-25Noriko Hosoi - 1.2.11.15-24Noriko Hosoi - 1.2.11.15-23Noriko Hosoi - 1.2.11.15-22Noriko Hosoi - 1.2.11.15-21Mark Reynolds - 1.2.11.15-20Mark Reynolds - 1.2.11.15-19Mark Reynolds - 1.2.11.15-19Mark Reynolds - 1.2.11.15-19Mark Reynolds - 1.2.11.15-18Noriko Hosoi - 1.2.11.15-14Noriko Hosoi - 1.2.11.15-13Noriko Hosoi - 1.2.11.15-12Noriko Hosoi - 1.2.11.15-11Noriko Hosoi - 1.2.11.15-10Noriko Hosoi - 1.2.11.15-9Rich Megginson - 1.2.11.15-8Noriko Hosoi - 1.2.11.15-7Rich Megginson - 1.2.11.15-6Rich Megginson - 1.2.11.15-5Noriko Hosoi - 1.2.11.15-4Rich Megginson - 1.2.11.15-3Noriko Hosoi - 1.2.11.15-2Rich Megginson - 1.2.11.15-1Rich Megginson - 1.2.11.14-1Rich Megginson - 1.2.11.13-1Rich Megginson - 1.2.11.12-1Noriko Hosoi - 1.2.10.2-20Noriko Hosoi - 1.2.10.2-19Noriko Hosoi - 1.2.10.2-18Noriko Hosoi - 1.2.10.2-17Noriko Hosoi - 1.2.10.2-16Rich Megginson - 1.2.10.2-15Rich Megginson - 1.2.10.2-14Rich Megginson - 1.2.10.2-13Noriko Hosoi - 1.2.10.2-12Noriko Hosoi - 1.2.10.2-11Noriko Hosoi - 1.2.10.2-10Rich Megginson - 1.2.10.2-9Rich Megginson - 1.2.10.2-8Rich Megginson - 1.2.10.2-7Rich Megginson - 1.2.10.2-6Rich Megginson - 1.2.10.2-5Rich Megginson - 1.2.10.2-4Rich Megginson - 1.2.10.2-3Rich Megginson - 1.2.10.2-2Rich Megginson - 1.2.10.2-1Rich Megginson - 1.2.10.1-1Rich Megginson - 1.2.10.0-1Rich Megginson - 1.2.10-0.11.rc2Rich Megginson - 1.2.9.16-1Rich Megginson - 1.2.9.15-1Rich Megginson - 1.2.9.14-1Rich Megginson - 1.2.9.13-1Rich Megginson - 1.2.9.12-2Rich Megginson - 1.2.9.12-1Rich Megginson - 1.2.9.11-1Nathan Kinder - 1.2.9.10-1Rich Megginson - 1.2.9.9-1Rich Megginson - 1.2.9.8-1Rich Megginson - 1.2.9.7-1Rich Megginson - 1.2.9.6-1Rich Megginson - 1.2.9.5-1Rich Megginson - 1.2.9.4-1Rich Megginson - 1.2.9.3-1Rich Megginson - 1.2.9.2-1Rich Megginson - 1.2.9.1-2Rich Megginson - 1.2.9.1-1Nathan Kinder - 1.2.8.7-1Rich Megginson - 1.2.8.6-1Rich Megginson - 1.2.8.5-1Rich Megginson - 1.2.8.4-3Rich Megginson - 1.2.8.4-2Rich Megginson - 1.2.8.4-1Rich Megginson - 1.2.8.3-4Rich Megginson - 1.2.8.3-3Rich Megginson - 1.2.8.3-2Rich Megginson - 1.2.8.3-1Rich Megginson - 1.2.8.2-1Rich Megginson - 1.2.8.1-1Rich Megginson - 1.2.8.0-2Rich Megginson - 1.2.8.0-1Rich Megginson - 1.2.8-0.9.rc4Rich Megginson - 1.2.8-0.8.rc2Rich Megginson - 1.2.8-0.7.rc2Rich Megginson - 1.2.8-0.6.rc1Rich Megginson - 1.2.8-0.5.a3Rich Megginson - 1.2.8-0.4.a3Rich Megginson - 1.2.8-0.3.a3Rich Megginson - 1.2.8-0.2.a2Nathan Kinder - 1.2.8-0.1.a1Rich Megginson - 1.2.7.5-1Rich Megginson - 1.2.7.4-1Rich Megginson - 1.2.7.3-1Rich Megginson - 1.2.7.2-1Rich Megginson - 1.2.7.1-1Rich Megginson - 1.2.7-1Rich Megginson - 1.2.7-0.7.a5Kevin Wright - 1.2.7-0.6.a4Rich Megginson - 1.2.7-0.5.a4Rich Megginson - 1.2.7-0.4.a3Rich Megginson - 1.2.7-0.3.a3Rich Megginson - 1.2.7-0.2.a2Rich Megginson - 1.2.7-0.1.a1Rich Megginson - 1.2.6.1-3Rich Megginson - 1.2.6.1-2Rich Megginson - 1.2.6.1-1Rich Megginson - 1.2.6-1Rich Megginson - 1.2.6-0.11.rc7Rich Megginson - 1.2.6-0.10.rc6Rich Megginson - 1.2.6-0.9.rc3Rich Megginson - 1.2.6-0.8.rc3Rich Megginson - 1.2.6-0.7.rc2Nathan Kinder - 1.2.6-0.6.rc1Rich Megginson - 1.2.6-0.5.rc1Marcela Maslanova - 1.2.6-0.4.a4.1Rich Megginson - 1.2.6-0.4.a4Nathan Kinder - 1.2.6-0.4.a3Caolán McNamara - 1.2.6-0.3.a2Rich Megginson - 1.2.6-0.2.a2Nathan Kinder - 1.2.6-0.1.a1Rich Megginson - 1.2.5-1Rich Megginson - 1.2.5-0.5.rc4Rich Megginson - 1.2.5-0.4.rc3Rich Megginson - 1.2.5-0.3.rc2Rich Megginson - 1.2.5-0.2.rc1Rich Megginson - 1.2.5-0.1.a1Rich Megginson - 1.2.4-1Rich Megginson - 1.2.3-1Caolán McNamara - 1.2.2-2Rich Megginson - 1.2.2-1Tomas Mraz - 1.2.1-5Noriko Hosoi - 1.2.1-4Rich Megginson - 1.2.1-3Fedora Release Engineering - 1.2.1-2Rich Megginson - 1.2.1-1Rich Megginson - 1.2.0-4Rich Megginson - 1.2.0-3Rich Megginson - 1.2.0-2Rich Megginson - 1.2.0-1Noriko Hosoi - 1.1.3-7Noriko Hosoi - 1.1.3-6Rich Megginson - 1.1.3-5Rich Megginson - 1.1.3-4Rich Megginson - 1.1.3-3Rich Megginson - 1.1.3-2Rich Megginson - 1.1.3-1Rich Megginson - 1.1.2-1Rich Megginson - 1.1.1-2Rich Megginson - 1.1.1-1Rich Megginson - 1.1.0.1-4Tom "spot" Callaway - 1.1.0.1-3Tom "spot" Callaway - 1.1.0.1-3Rich Megginson - 1.1.0.1-2Rich Megginson - 1.1.0.1-1Fedora Release Engineering - 1.1.0-5Rich Megginson - 1.1.0-4Release Engineering - 1.1.0-3Rich Megginson - 1.1.0-2.0Rich Megginson - 1.1.0-1.2Rich Megginson - 1.1.0-1.1Rich Megginson - 1.1.0-0.3.20070720Nathan Kinder - 1.1.0-0.2.20070320Rich Megginson - 1.1.0-0.1.20070320Rich Megginson - 1.1.0-0.1.20070223Rich Megginson - 1.1.0-0.1.20070213Rich Megginson - 1.1.0-1.el4.20070209Rich Megginson - 1.1.0-1.el4.20070207Rich Megginson - 1.1.0-1.el4.20070129Rich Megginson - 1.1.0-8.el4.20070125Rich Megginson - 1.1.0-7.el4.20070125Rich Megginson - 1.1.0-6.el4.20070125Rich Megginson - 1.1.0-5.el4.20070125Rich Megginson - 1.1.0-4.el4.20070119Rich Megginson - 1.1.0-3.el4.20070119Rich Megginson - 1.1.0-2.el4.20070119Rich Megginson - 1.1.0-1.el4.cvs20070119Rich Megginson - 1.1-0.1.cvs20070115Dennis Gilmore - 1.1-0.1.cvs20070108Rich Megginson - 1.0.99-16Rich Megginson - 1.0.99-15Rich Megginson - 1.0.99-14Rich Megginson - 1.0.99-13Rich Megginson - 1.0.99-12Rich Megginson - 1.0.99-11Rich Megginson - 1.0.99-10Rich Megginson - 1.0.99-9Rich Megginson - 1.0.99-8Rich Megginson - 1.0.99-7Rich Megginson - 1.0.99-6Rich Megginson - 1.0.99-5Rich Megginson - 1.0.99-4Rich Megginson - 1.0.99-3Rich Megginson - 1.0.99-2Rich Megginson - 1.0.99-1- Bump version to 1.2.11-15-95 - Resolves: Bug 1562152 - EMBARGOED CVE-2018-1089 389-ds-base: ns-slapd crash via large filter value in ldapsearch- Release 1.2.11.15-94 - Resolves: Bug 1544415 - CVE-2017-15135 389-ds-base: Authentication bypass due to lack of size check in slapi_ct_memcmp function in ch_malloc.c (fix cherry-pick error)- Release 1.2.11.15-93 - Resolves: Bug 1544415 - CVE-2017-15135 389-ds-base: Authentication bypass due to lack of size check in slapi_ct_memcmp function in ch_malloc.c - Resolves: Bug 1543798 - EMBARGOED CVE-2018-1054 389-ds-base: remote Denial of Service (DoS) via search filters in SetUnicodeStringFromUTF_8 in collate.c- Release 1.2.11.15-92 - Resolves: Bug 1543798 - EMBARGOED CVE-2018-1054 389-ds-base: remote Denial of Service (DoS) via search filters in SetUnicodeStringFromUTF_8 in collate.c- Release 1.2.11.15-91 - Resolves: bug 1437777 - EMBARGOED CVE-2017-2668 389-ds-base: Remote crash via crafted LDAP messages- Release 1.2.11.15-90 - Resovles: #1435365 - Unable to dereference unqiemember attribute because it is dn [#UID] not dn syntax- Release 1.2.11.15-89 - Resolves: #1421512 - ns-slapd crashes in ldif_sput due to the output buf size is less than the real size.- Release 1.2.11.15-88 - Resolves: #1413692 - custom schema is registered in small caps after schema reload (DS 47973) - Resolves: #1408976 - dbscan-bin crashing due to a segmentation fault. (DS 49104)- Release 1.2.11.15-87 - Resolves: #1391701 - do not treat missing csn as fatal (DS 49020) - Resolves: #1406835 - memberOf fixup task does not validate args (DS 49072)- Release 1.2.11.15-86 - Resolves: #1380435 - Backport request of ticket 48983 to RHEL6.9 (DS 49049) - Resolves: #1400997 - ldif2db.pl script shows wrong usage for -n as instance, instead of database (DS 49070) - Resolves: #1403754 - ns-slapd crashes during tickets/ticket48665_test.py (DS 48665) - Resolves: #1410645 - The "repl-monitor" web page does not display "year" in date. (DS 48220) - Resolves: #1399600 - ns-slapd segfaults during execution of tickets/ticket47966_test.py (DS 47966, DS 48987) - Resolves: #1402012 - Importing big ldif file with duplicate DNs throwing "unable to flush" error - Resolves: #1406835 - memberOf fixup task does not validate args (DS 49072)- Release 1.2.11.15-85 - Resolves: #1372420 - DES to AES backport issues (DS 47462) - Resolves: #1391324 - ds9 backport 47411 - Replace substring search with plain search in referint plugin (DS 47411)- Release 1.2.11.15-84 - Resolves: #1352109 - Replication stops working only when fips mode is set to true (DS 48909) - Resolves: #1372420 - DES to AES backport issues (DS 47462) - Resolves: #1380435 - Backport request of ticket 48983 to RHEL6.9 (DS 48983) - Resolves: #1382386 - Directory Server accepts a wrong userdn macro ACI (DS 449) - Resolves: #1382519 - 1.2.11 only -- coverity fixes (DS 49004) - Resolves: #1387022 - specific search with sizelimit=1 sometimes returns no entry (DS 47703) - Resolves: #1387772 - trace args debug logging must be more restrictive (DS 49009)- Release 1.2.11.15-83 - Resolves: #1327065 - After updating server, component nss-3.21.0-0.3.el6_7.x86_64, some client applications cannot connect to server (DS 48798) - Resolves: #1266920 - invalid message about write_changelog_and_ruv on consumers (DS 47801) - Resolves: #1330758 - add a nsTLS1.0 on or off new configuration parameter to cn=encryption,cn=config in RHEL 6 389-ds-base (DS 48816) - Resolves: #1369572 - cleanallruv changelog cleaning incorrectly impacts all backends (DS 48964) - Resolves: #1371706 - Server Side Sorting crashes the server. (DS 48970) - Resolves: #1371678 - Disabling CLEAR password storage scheme will crash server when setting a password (DS 48975) - Resolves: #1370145 - cannot reindex retrochangelog (DS 47619)- Release 1.2.11.15-82 - Resolves: #1380435 - Backport request of ticket 48983 to RHEL6.9 (DS 48983)- Release 1.2.11.15-81 - Resolves: #1368209 - Crash in import_wait_for_space_in_fifo(). (DS 48960)- Release 1.2.11.15-80 - Resolves: #1316869 - ns-slapd general protection ip:7f570c56afd5 sp:7f56dc7edce0 error:0 in libc-2.12.so (DS 48944)- Release 1.2.11.15-79 - Resolves: #1358560 - CVE-2016-4992 389-ds-base: Information disclosure via repeated use of LDAP ADD operation - Resolves: #1372420 - Backport AES storage scheme plugin (DS 47462, 48862, 48243, 48777) - Resolves: #1321126 - Replication changelog can incorrectly skip over updates - Resolves: #1373734 - EASY FIX : dereferencing a NULL sr_candidates pointer in ldbm_back_next_search_entry_ext resulted a segfault (DS 47858)- Release 1.2.11.15-78 - Resolves: #1321126 - Replication changelog can incorrectly skip over updates (DS 48954) - Resolves: #1361422 - CVE-2016-5416 389-ds-base: ACI readable by anonymous user (DS 48354) - Resolves: #1360975 - CVE-2016-5405 389-ds-base: Password verification vulnerable to timing attack- Release 1.2.11.15-77 - Resolves: #1157799 - replication delay when server is configured with multiple replication agreements. (DS 48636) fixing a backport error- Release 1.2.11.15-76 - Resolves: #1321126 - Replication changelog can incorrectly skip over updates (DS 48766) - Resolves: #1157799 - replication delay when server is configured with multiple replication agreements. (DS 48636)- Release 1.2.11.15-75 - Resolves: #1331599 - Paged results search returns the blank list of entries (DS 48808) - Resolves: #1332710 - password history is not updated when an admin resets the password (DS 48813) - Resolves: #1150817 - Running db2index with no options breaks replication (DS 48854)- Release 1.2.11.15-74 - Resolves: #1313258 - change severity of some messages related to "keep alive" entries (DS 48420)- Release 1.2.11.15-73 - Resolves: #1294770 - Supplier can skip a failing update, although it should retry (DS 47788) - Resolves: #1298496 - slapd process crashes on entry modification (DS 47964) - Resolves: #1307152 - keep alive entries can break replication (DS 48445)- Release 1.2.11.15-72 - Resolves: #1292649 - allow users to specify to relax the FQDN constraint (DS 48332) - Resolves: #1294770 - Supplier can skip a failing update, although it should retry (DS 47788) - Resolves: #1296694 - ns-slapd crash in ipa context - c_mutex lock memory corruption and self locks (DS 48406, DS 48338 reverted) - Resolves: #1297385 - Interpret IPV6 addresses for ACIs, replication, and chaining (DS 196)- Release 1.2.11.15-71 - Resolves: #1284791 - 389-ds-base: ldclt -e randomauthid Segmentation fault. (DS 48289) - Resolves: #1290243 - SimplePagedResults -- in the search error case, simple paged results slot was not released (DS 48375)- Release 1.2.11.15-70 - Resolves: #1259959 - perl module conditional test is not conditional when checking SELinux policies - fixing a regression (DS 48305) - Resolves: #1282457 - The 'eq' index does not get updated properly when deleting and re-adding attributes in the same ldapmodify operation (DS 48370)- Release 1.2.11.15-69 - Resolves: #1247792 - SimplePagedResults -- abandon could happen between the abandon check and sending results -- Fixing a regression introduced in 1.2.11.15-68 (DS 48338)- Release 1.2.11.15-68 - Resolves: #1278585 - deadlock in mep delete post op (DS 47976) - Resolves: #1247792 - SimplePagedResults -- abandon could happen between the abandon check and sending results (DS 48338)- Release 1.2.11.15-67 - Resolves: #1234431 - Man pages and help for remove-ds.pl doesn't display "-a" option (DS 48245) - Resolves: #1236148 - Slow replication when deleting large quantities of multi-valued attributes (DS 48195) - Resolves: #1236156 - Avoid using regex in ACL if possible (DS 48175) - Resolves: #1236656 - Dynamic nsMatchingRule changes had no effect on the attrinfo thus following reindexing, as well. (DS 48212) - Resolves: #1240451 - Individual abandoned simple paged results request has no chance to be cleaned up (DS 48192) - Resolves: #1244970 - Crash during retro changelog trimming (DS 48206) - Resolves: #1245237 - winsync lastlogon attribute not syncing between DS and AD. (DS 48232) - Resolves: #1246165 - verify_db.pl doesn't verify DB specified by -a option (DS 48215) - Resolves: #1247812 - logconv autobind handling regression caused by 47446 (DS 48231) - Resolves: #1253406 - wrong password check if passwordInHistory is decreased. (DS 48228) - Resolves: #1255290 - db2index creates index entry from deleted records (DS 48252) - Resolves: #1259959 - perl module conditional test is not conditional when checking SELinux policies (DS 48305) - Resolves: #1260622 - ns-slapd - LOGINFO:Unable to remove file (DS 48304) - Resolves: #1265851 - Double free while adding entries (1.2.11 only) (DS 48287) - Resolves: #1273552 - Deadlock between two MODs on the same entry between entry cache and backend lock (DS 47978)- Release 1.2.11.15-66 - Resolves: #1270002 - cleanallruv should completely clean changelog (DS 48208) - Resolves: #1267405 - many attrlist_replace errors in connection with cleanallruv (DS 48283)- Release 1.2.11.15-65 - Resolves: #1259383 - Fractional replication evaluates several times the same CSN (DS 48266)- Release 1.2.11.15-64 - Resolves: #1247792 - ns-slapd crashing frequently cause is unknown (DS 48192) - Resolves: #1267296 - pagedresults - when timed out, search results could have been already freed. (DS 48299)- Release 1.2.11.15-63 - Resolves: #1247792 - ns-slapd crashing frequently cause is unknown (DS 48192) - Resolves: #1259383 - Fractional replication evaluates several times the same CSN (DS 48266 48284)- Release 1.2.11.15-62 - Resolves: #1259546 - regression - COS cache doesn't properly mark vattr cache as invalid when there are multiple suffixes (DS 47981)- Release 1.2.11.15-61 - Resolves: #1251288 - Replication not working for "delete: attr"- Release 1.2.11.15-60 - Resolves: #1228402 - Individual abandoned simple paged results request has no chance to be cleaned up (DS 48192)- Release 1.2.11.15-59 - Resolves: #1211006 - start/stop/restart-dirsrv utilities should ignore admin-serv directory (DS 48148) - Resolves: #1203338 - ns-slapd double free or corruption crash (DS 48149) - Resolves: #1228402 - Individual abandoned simple paged results request has no chance to be cleaned up (DS 48192)- Release 1.2.11.15-58 - Resolves: #1223068 - Regression introduced by the simple paged results fixes. (DS 48146) - Resolves: #1203338 - ns-slapd double free or corruption crash (DS 48149)- Release 1.2.11.15-57 - Resolves: #1223068 - ldapdelete fails with -r option to delete a sub suffix (DS 48146) - Resolves: #1219990 - bind on db chained to AD returns err=32 (DS 48183) - Resolves: #1219208 - cleanAllRUV task limit not being enforced correctly (DS 48158)- Release 1.2.11.15-56 - Resolves: #1219218 - fix coverity issues (DS 48151)- Release 1.2.11.15-55 - Resolves: #1118285 - Lowering the log level of "Configured SSL version range" message (1.2.11 only) (DS 48180) - Resolves: #1211006 - start/stop/restart-dirsrv utilities should ignore admin-serv directory (DS 48148) - Resolves: #1219208 - Remove cleanAllRUV task limit of 4 (DS 48158) - Resolves: #1219218 - Improve CleanAllRUV logging (DS 48151)- Release 1.2.11.15-54 - Resolves: #1207983 - disable writing unhashed#user#password to changelog (DS 561) - Resolves: #1207024 - IPA Replicate creation fails with error "Update failed! Status: [10 Total update abortedLDAP error: Referral]" (DS 47942) - Resolves: #1211077 - nsslapd-ndn-cache-enabled returns 1 or 0 instead of "on" or "off" (DS 408) - Resolves: #1211006 - start/stop/restart-dirsrv utilities should ignore admin-serv directory (DS 48148) - Resolves: #1210996 - Disable SSL v3, by default [389-ds-base-1.2.11 only] (DS 47928) - Resolves: #1214074 - Need a way to abort a cleanallruv abort task (DS 48154) - Resolves: #1212657 - Password is not correctly passed to perl command line tools if it contains shell special characters. (DS 48143) - Resolves: #1218341 - ns-slapd crash related to paged results (DS 48146)- Release 1.2.11.15-53 - Resolves: #1202502 - memory leak in new_passwdPolicy (1.2.11 only) (DS 48135) - Resolves: #1202062 - Non tombstone entry which dn starting with "nsuniqueid=...," cannot be deleted (DS 48133)- Release 1.2.11.15-52 - Resolves: #1193235 - Fix coverity issues and compiler warnings - 2014/12/16, 2014/11/24, 2015/2/18 (DS 47965)- Release 1.2.11.15-51 - Resolves: #1193235 - Fix coverity issues and compiler warnings - 2014/12/16, 2014/11/24, 2015/2/18 (DS 47965) - Resolves: #1171308 - Don't add unhashed password mod if we don't have an unhashed value (DS 47752) - Resolves: #1167976 - memberof skip nested groups breaks the plugin (DS 47963) - Resolves: #1185025 - ldclt needs to support SSL Version range (DS 47996) - Resolves: #1183820 - Windows Sync accidentally cleared raw_entry (DS 47989) - Resolves: #1155569 - nsslapd-db-locks modify not taking into account. (DS 47934) - Resolves: #1145072 - Bad manipulation of passwordhistory (DS 47905) - Resolves: #1144092 - During schema reload sometimes the search returns no results (DS 47973) - Resolves: #1145374 - WinSync - manual replica refresh removes AD-only member values from DS and AD in groups (DS 47884) - Resolves: #1193243 - ldbm_usn_init: Valgrind reports Invalid read / SIGSEGV (DS 47659) - Resolves: #1150368 - provide enabled ciphers as search result (DS 47880) - Resolves: #1153739 - Add SSL/TLS version info to the access log (DS 47945) - Resolves: #1118285 - Disable SSL v3, by default [389-ds-base-1.2.11 only] (DS 47928) - Resolves: #1193241 - logconv.pl -- support parsing/showing/reporting different protocol versions (DS 47949) - Resolves: #1179763 - COS cache doesn't properly mark vattr cache as invalid when there are multiple suffixes (DS 47981) - Resolves: #1175868 - Incorrect assumption in ndn cache (DS 547) - Resolves: #1159124 - perl scripts not returning expected error code (DS 47962) - Resolves: #1115960 - Nested COS definitions can be incorrectly processed (DS 47980) - Resolves: #1175868 - Backport of Normalized DN Cache (DS 408) - Resolves: #1174892 - During delete operation do not refresh cache entry if it is a tombstone (DS 47750) - Resolves: #1174892 - Need to refresh cache entry after called betxn postop plugins (DS 47750) - Resolves: #1193235 - Fix coverity issues (2014/12/16) (DS 47965) - Resolves: #1193235 - Fix coverity issues (2014/11/24) (DS 47965) - Resolves: #1169974 - Account lockout attributes incorrectly updated after failed SASL Bind (DS 47970) - Resolves: #1169975 - Fix coverity issue (DS 47969) - Resolves: #1169975 - COS memory leak when rebuilding the cache (DS 47969) - Resolves: #1170706 - cos_cache_build_definition_list does not stop during server shutdown (DS 47967) - Resolves: #1167976 - skip nested groups breaks memberof fixup task (DS 47963) - Resolves: #1167976 - RFE - memberOf - add option to skip nested group lookups during delete operations (DS 47963) - Resolves: #1171357 - Bind DN tracking unable to write to internalModifiersName without special permissions (DS 47950) - Resolves: #1162704 - Memory leak in password admin if the admin entry does not exist (DS 47958) - Resolves: #1162704 - PasswordAdminDN attribute is not properly returned to client (DS 47952) - Resolves: #1145379 - Fix backport issue to 1.2.11 (DS 47900) - Resolves: #1145379 - Server fails to start if password admin is set (DS 47900) - Resolves: #1145379 - Adding an entry with an invalid password as rootDN is incorrectly rejected (DS 47900) - Resolves: #1141735 - ldclt: assertion failure with -e "add,counteach" -e "object=,rdn=uid:test[A=INCRNNOLOOP(0;24 (DS 47907)- Release 1.2.11.15-50 - Resolves: #1130990 - Problem with single value attribute MMR replication (DS 47915, DS 569)- Release 1.2.11.15-49 - Resolves: #1168150 - CVE-2014-8105: information disclosure through 'cn=changelog' subtree - Resolves: #1130990 - Problem with single value attribute MMR replication (DS 47915) - Resolves: #1136882 - default nsslapd-sasl-max-buffer-size should be 2MB (DS 47457) - Resolves: #1161909 - ACI's are replaced by "ACI_ALL" after editing goup of ACI's including invalid one (DS 47953)- Release 1.2.11.15-48 - Resolves: #1154766 - ns-slapd segfault in libslapd.so.0.0.0 (#47889)- Release 1.2.11.15-47 - Resolves: #1138745 - Memory leak during Reliab15 execution (#47750)- Release 1.2.11.15-46 - Resolves: #1138745 - Memory leak during Reliab15 execution- Release 1.2.11.15-45 - Resolves: #1112702 - Broken dereference control with the FreeIPA 4.0 ACIs (#47885)- Release 1.2.11.15-44 - Resolves: #1079098 - Simultaneous adding a user and binding as the user could fail in the password policy check (DS 47748) - Simple bind hangs after enabling password policy- Release 1.2.11.15-43 - Resolves: #1112702 - Broken dereference control with the FreeIPA 4.0 ACIs (#47885)- Release 1.2.11.15-42 - Resolves: #1129660 - Adding users to user group throws Internal server error.- Release 1.2.11.15-41 - Resolves: #1130252 - dirsrv not running with old openldap (DS 47875)- Release 1.2.11.15-40 - Resolves: #1130252 - dirsrv not running with old openldap (DS 47875) - Resolves: #1103287 - logconv.pl memory continually grows (DS 47446) - Resolves: #1121596 - Deleting attribute present in nsslapd-allowed-to-delete-attrs returns Operations error (DS 443) - Resolves: #1109381 - winsync doesn't sync DN valued attributes if DS DN value doesn't exist (DS 415) - Resolves: #1128759 - Performance degradation with scope ONE after some load (DS 47874) - Resolves: #1127612 - Filter AND with only one clause should be optimized (DS 47872) - Resolves: #1014111 - repl-monitor fails to convert "*" to default values (DS 47862)- Release 1.2.11.15-39 - Resolves: #1123863 EMBARGOED CVE-2014-3562 - unauthenticated information disclosure (Bug 1123477) - Resolves: #1123863 High contention on computed attribute lock (DS 616) - Resolves: #1062763 single valued attribute replicated ADD does not work (DS 47692) - Resolves: #1121596 Deleting attribute present in nsslapd-allowed-to-delete-attrs returns Operations error (DS 443) - Resolves: #1014111 Repl-monitor.pl ignores the provided connection parameters (DS 47862) - Resolves: #1115281 New defects found in 389-ds-base-1.2.11 (DS 47863) - Resolves: #1112729 paged results control is not working in some cases when we have a subsuffix. (DS 47824)- Release 1.2.11.15-38 - Resolves: bug 1080185 - revert - Creating a glue fails if one above level is a conflict or missing (DS 47750;Patch233)- Release 1.2.11.15-37 - Resolves: bug 1113606 - server restart wipes out index config if there is a default index (DS 47831) - Resolves: bug 1112702 - Broken dereference control with the FreeIPA 4.0 ACIs (DS 47821) - Resolves: bug 1080185 - Creating a glue fails if one above level is a conflict or missing (DS 47750)- Release 1.2.11.15-36 - Resolves: bug 1088171 - revert - 7-bit check plugin does not work for userpassword attribute (DS 47423)- Release 1.2.11.15-35 - Resolves: Bug 1111404 - 1.2.11 branch: coverity errors (DS 47820)- Release 1.2.11.15-34 - Resolves: bug 1109952 - memory leak in ldapsearch filter objectclass=* (DS 47780) - Resolves: bug 1109443 - Server hangs in cos_cache when adding a user entry (DS 47649) - Resolves: bug 1109333 - 389 Server crashes if uniqueMember is invalid syntax and memberOf plugin is enabled. (DS 47793) - Resolves: bug 1109335 - Parent numsubordinate count can be incorrectly updated if an error occurs (DS 47782) - Resolves: bug 1109337 - Nested tombstones become orphaned after purge (DS 47767) - Resolves: bug 1109352 - Tombstone purging can crash the server if the backend is stopped/disabled (DS 47766) - Resolves: bug 1109356 - Coverity issue in 1.3.3 (DS 47740) - Resolves: bug 1109358 - A tombstone entry is deleted by ldapdelete (DS 47731) - Resolves: bug 1109361 - rsa_null_sha should not be enabled by default (DS 47637) - Resolves: bug 1109363 - valgrind - value mem leaks, uninit mem usage (DS 47455) - Resolves: bug 1109373 - provide default syntax plugin (DS 47369) - Resolves: bug 1109377 - Environment variables are not passed when DS is started via service (DS 47693) - Resolves: bug 1109379 - changelog iteration should ignore cleaned rids when getting the minCSN (DS 47627) - Resolves: bug 1109381 - winsync doesn't sync DN valued attributes if DS DN value doesn't exist (DS 415) - Resolves: bug 1109384 - logconv.pl man page missing -m,-M,-B,-D (DS 47447) - Resolves: bug 1109387 - IDL-style can become mismatched during partial restoration - Resolves: bug 1028344 - Slow ldapmodify operation time for large quantities of multi-valued attribute values (DS 346) - Resolves: bug 985270 - [RFE] Add Password adminstrators to RHDS 9 as in http://directory.fedoraproject.org/wiki/Password_Administrator (DS 417, 458, 47522) - Resolves: bug 1070720 - rsearch filter error on any search filter (DS 47722) - Resolves: bug 1095847 - CoS cache re-scanning severely impacts performance (DS 47762) - Resolves: bug 1103287 - logconv.pl memory continually grows (DS 47446) - Resolves: bug 1106917 - managed entry plugin fails to update member pointer on modrdn operation (DS 47813) - Resolves: bug 1048987 - memory leak in ldapsearch filter objectclass=* (DS 47780) - Resolves: bug 1077895 - Memory leak with proxy auth control (DS 47743) - Resolves: bug 1079098 - Simultaneous adding a user and binding as the user could fail in the password policy check (DS 47748) - Resolves: bug 1080185 - Creating a glue fails if one above level is a conflict or missing (DS 47750) - Resolves: bug 1083272 - RHEL6.6 389-ds-base slapd segfault during ipa-replica-instal (DS 47448) - Resolves: bug 1086454 - ACI warnings in error log (DS 47670) - Resolves: bug 1086889 - empty modify returns LDAP_INVALID_DN_SYNTAX (DS 47772) - Resolves: bug 1086901 - mem leak in do_bind when there is an error (DS 47773) - Resolves: bug 1086903 - mem leak in do_search - rawbase not freed upon certain error (DS 47774) - Resolves: bug 1086907 - Performing deletes during tombstone purging results in operation errors (DS 47771) - Resolves: bug 1088171 - 7-bit check plugin does not work for userpassword attribute (DS 47423) - Resolves: bug 1090176 - #481 breaks possibility to reassemble memberuid list (DS 47770) - Resolves: bug 1092097 - A replicated MOD fails (Unwilling to perform) if it targets a tombstone (DS 47787) - Resolves: bug 1094277 - IPA Server Slow Performance, high CPU usage of ns-slapd (DS 47426) - Resolves: bug 1097002 - Problem with deletion while replicated (DS 47764) - Resolves: bug 1098653 - db2bak.pl error with changelogdb (DS 47804) - Resolves: bug 1103337 - find a way to remove replication plugin errors messages "changelog iteration code returned a dummy entry with csn %s, skipping ..." (DS 47809) - Resolves: bug 1001037 - WinSync removes User must change password flag on the Window side (DS 47492) - Resolves: bug 1004876 - idlistscanlimit per index/type/value (DS 47504) - Resolves: bug 1008021 - Self entry access ACI not working properly (DS 47331) - Resolves: bug 1009122 - replication stops with excessive clock skew (DS 47516) - Resolves: bug 1012699 - DSUtil.pm needs to check $res variable (DS 422) - Resolves: bug 1013133 - logconv.pl - RFE - track bind info (DS 356) - Resolves: bug 1013134 - Improve memory management in logconv.pl (DS 419) - Resolves: bug 1013135 - logconv.pl tool removes the access logs contents if "-M" is is not correctly used (DS 471) - Resolves: bug 1013138 - logconv.pl should handle microsecond timing (DS 539) - Resolves: bug 1013140 - logconv.pl -m not working for all stats (DS 47336) - Resolves: bug 1013141 - logconv.pl missing stats for starttls, ldapi, and autobind (DS 611) - Resolves: bug 1013142 - logconv.pl -m time calculation is wrong (DS 47341) - Resolves: bug 1013152 - add etimes to per second/minute stats (DS 47348) - Resolves: bug 1013160 - Indexed search are logged with 'notes=U' in the access logs (DS 47354) - Resolves: bug 1013161 - improve logconv.pl performance with large access logs (DS 47387) - Resolves: bug 1013162 - logconv warning - Use of comma-less variable list is deprecated (DS 47461) - Resolves: bug 1013163 - logconv.pl uses /var/tmp for BDB temp files (DS 47501) - Resolves: bug 1013164 - Fix various issues with logconv.pl (DS 47520) - Resolves: bug 1013165 - logconv: some stats do not work across server restarts (DS 47533) - Resolves: bug 1014111 - [RFE - RHDS9] CLI report to monitor replication (DS 47538) - Resolves: bug 1014351 - Coverity fixes - 12023, 12024, and 12025 (DS 47540) - Resolves: bug 1016717 - memory leak in range searches (DS 47517) - Resolves: bug 1022500 - Winsync plugin segfault during incremental backoff (DS 47581) - Resolves: bug 1024337 - Overflow in nsslapd-disk-monitoring-threshold on i686 (DS 47638) - Resolves: bug 1026956 - 1.2.11.29 crash when removing entries from cache (DS 47577) - Resolves: bug 1027496 - Replication Failures related to skipped entries due to cleaned rids (DS 47585) - Resolves: bug 1031222 - hard coded limit of 64 masters in agreement and changelog code (DS 47587) - Resolves: bug 1032315 - attrcrypt fails to find unlocked key (DS 47596) - Resolves: bug 1032317 - entries with empty objectclass attribute value can be hidden (DS 47591) - Resolves: bug 1034265 - 7-bit check plugin not checking MODRDN operation (DS 47641) - Resolves: bug 1044106 - logconv: failed logins: Use of uninitialized value in numeric comparison at logconv.pl line 949 (DS 47550) - Resolves: bug 1044108 - logconv: -V does not produce unindexed search report (DS 47551) - Resolves: bug 1049029 - Windows Sync group issues (DS 47642) - Resolves: bug 1053232 - modify-delete userpassword (DS 47678) - Resolves: bug 1053766 - ldapdelete returns non-leaf entry error while trying to remove a leaf entry (DS 47736) - Resolves: bug 1057805 - Size returned by slapi_entry_size is not accurate (DS 47677) - Resolves: bug 1060385 - Logconv.pl with an empty access log gives lots of errors (DS 47713) - Resolves: bug 1062763 - single valued attribute replicated ADD does not work (DS 47692) - Resolves: bug 1070583 - rhds91 389-ds-base-1.2.11.15-31.el6_5.x86_64 crash in db4 _ (DS 47729) - Resolves: bug 1073530 - Enrolling a host into IdM/IPA always takes two attempts (IPA 3377, DS 47704) - Resolves: bug 1074076 - e_uniqueid fails to set if an entry is a conflict entry (DS 47735) - Resolves: bug 1074305 - Under heavy stress, failure of turning a tombstone into glue (DS 47737)- Release 1.2.11.15-33 - Resolves: bug 1044218 - fix memleak caused by 47347 (DS 47623) - Resolves: bug 1071707 - rhds91 389-ds-base-1.2.11.15-31.el6_5 crash on paged searches followed by simple srch (DS 47707)- Release 1.2.11.15-32 - Resolves: bug 1074848 - EMBARGOED CVE-2014-0132 389-ds-base: 389-ds: flaw in parsing authzid can lead to privilege escalation [rhel-6.6] (Ticket 47739 - directory server is insecurely misinterpreting authzid on a SASL/GSSAPI bind)- Resolves: bug 1033405 - regression in ipa due to patch for ns-slapd stuck in DS_Sleep- Resolves: bug 1024977 CVE-2013-4485 389-ds-base: DoS due to improper handling of ger attr searches- Bump version to 1.2.11.15-29 - Resolves: bug 1008013: DS91: ns-slapd stuck in DS_Sleep- Bump version to 1.2.11.15-28 - Resolves: Bug 1016038 - Users from AD sub OU does not sync to IPA (ticket 47488)- Bump version to 1.2.11.15-27 - Resolves: Bug 1013735 - CLEANALLRUV doesnt run across all replicas (ticket 47509)- Bump version to 1.2.11.15-26 - Resolves: Bug 947583 - ldapdelete returns non-leaf entry error while trying to remove a leaf entry (ticket 47534)- Bump version to 1.2.11.15-25 - Resolves: Bug 1006846 - 2Master replication with SASL/GSSAPI auth broken (ticket 47523) - Resolves: Bug 1007452 - Under specific values of nsDS5ReplicaName, replication may get broken or updates (ticket 47489)- Bump version to 1.2.11.15-24 - Resolves: Bug 982325 - Overflow in nsslapd-disk-monitoring-threshold; Changed CONFIG_INT to CONFIG_LONG for nsslapd-disk-monioring-threshold (ticket 47427)- Bump version to 1.2.11.15-23 - Resolves: Bug 1000632 - CVE-2013-4283 389-ds-base: ns-slapd crash due to bogus DN - Resolves: Bug 1002260 - server fails to start after upgrade(schema error) (ticket 47318)- Bump version to 1.2.11.15-22 - Resolves: Bug 923909 - 389-ds-base cannot handle Kerberos tickets with PAC (ticket 632) - Resolves: Bug 928159 - CVE-2013-1897 389-ds: unintended information exposure when rootdse is enabled - Resolves: Bug 947583 - ldapdelete returns non-leaf entry error while trying to remove a leaf entry (ticket 47367) - Resolves: Bug 951616 - error syncing group if group member user is not synced (ticket 47327) - Resolves: Bug 953052 - DESC should not be empty as per RFC 2252 (ldapv3) (ticket 47376) - Resolves: Bug 957305 - DS instance crashes under a high load (ticket 47349) - Resolves: Bug 957864 - Simple paged results should support async search (ticket 47347) - Resolves: Bug 958522 - loading an entry from the database should use str2entry_fast (ticket 531) - Resolves: Bug 962885 - RHEL 6.2 to 6.4 ipa upgrade selinuxusermap data not replicating (ticket 47362) - Resolves: Bug 963234 - When integrating with Red Hat IDM/DS, an LDAP protocol error is thrown (ticket 47361) - Resolves: Bug 966781 - new ldap connections can block ldaps and ldapi connections (ticket 47359) - Resolves: Bug 968383 - Wrong error code return when using EXTERNAL SASL and untrusted certificate (ticket 580) - Resolves: Bug 968503 - flush_ber error sending back start_tls response will deadlock (ticket 47375) - Resolves: Bug 969210 - make listen backlog size configurable (ticket 47377) - Resolves: Bug 970995 - RHDS not shutting down when disk monitoring threshold is reached to half. (ticket 47385) - Resolves: Bug 971033 - connections attribute in cn=snmp,cn=monitor is counted twice (ticket 47383) - Resolves: Bug 971966 - 389 DS Replication failures due to Fractional updates (ticket 47386) - Resolves: Bug 972976 - ldbm errors when adding/modifying/deleting entries (ticket 47392) - Resolves: Bug 973583 - ns-slapd instance crashed with signal 11 SIGSEGV (ticket 47391) - Resolves: Bug 974361 - Account policy plugin fails to lock user when policy is created for individual users to lock based to createtimestamp. (ticket 47397) - Resolves: Bug 974719 - rhds90 crash on tombstone modrdn (ticket 47396) - Resolves: Bug 974875 - Attributes fail to be encrypted/decrypted properly when replicated (ticket 47393) - Resolves: Bug 975243 - DS9 still observes altStateAttrName as createTimestamp when attribute is removed from the account policy (ticket 47395) - Resolves: Bug 975250 - Changelog deadlock replication failures with DNA (ticket 47410) - Resolves: Bug 976546 - Attribute names are incorrect in search results (ticket 47402) - Resolves: Bug 979169 - allow setting db deadlock rejection policy (ticket 47409) - Resolves: Bug 979435 - Replication problem with add-delete requests on single-value (ticket 47424) - Resolves: Bug 979515 - CVE-2013-2219 Directory Server: ACLs inoperative in some search scenarios - Resolves: Bug 982325 - Overflow in nsslapd-disk-monitoring-threshold (ticket 47427) - Resolves: Bug 983091 - Memory leak in 389-ds-base 1.2.11.15 (ticket 47428) - Resolves: Bug 986131 - Very large entryusn values after enabling the USN plugin and the lastusn value is negative. (ticket 47435) - Resolves: Bug 986424 - fix recent compiler warnings (ticket 47378) - Resolves: Bug 986857 - Disk Monitoring not checking filesystem with logs (ticket 47441) - Resolves: Bug 987703 - memleaks in set_krb5_creds (ticket 47421) - Resolves: Bug 988562 - deadlock after adding and deleting entries (ticket 47449) - Resolves: Bug 989692 - Sorting with attributes in ldapsearch gives incorrect result (ticket 543)This patch is found broken and duplicated. Getting rid of it in 1.2.11.15-22. commit 2b3a50d55707ffa281c922ec188850576b757934 Author: Mark Reynolds Date: Tue Jul 23 10:28:45 2013 -0400 Add patch 0049 for Tickets-47427-47441- Resolves: Bug 984970 - Overflow in nsslapd-disk-monitoring-threshold(part 5 limits not displayed correctly). (ticket 47427)- Resolves: Bug 984970 - Overflow in nsslapd-disk-monitoring-threshold(part 4). (ticket 47427)- Bump version to 1.2.11.15-19 - Resolves: Bug 984970 - Overflow in nsslapd-disk-monitoring-threshold(part 3). (ticket 47427)- Bump version to 1.2.11.15-19 - Resolves: Bug 982325 - Overflow in nsslapd-disk-monitoring-threshold(part 2). (ticket 47427) - Resolves: Bug 986857 - Disk Monitoring not checking filesystem with logs (ticket 47741)- Bump version to 1.2.11.15-18 - Resolves: Bug 970995 - DS not shutting down when disk monitoring threshold is reached to half. (Ticket 47385) - Resolves: Bug 982325 - Overflow in nsslapd-disk-monitoring-threshold. (ticket 47427)- Resolves: Bug 921937 - ns-slapd crashes sporadically with segmentation fault in libslapd.so (ticket 627) - Resolves: Bug 923503 - cleanAllRUV task fails to cleanup config upon completion (ticket 623)bump version to 1.2.11.15-13 - Resolves: Bug 923503 - cleanAllRUV task fails to cleanup config upon completion (ticket 623) - Resolves: Bug 923502 - Coverity issue 13091 - Resolves: Bug 923407 - Deadlock in DNA plug-in (ticket 634) - Resolves: Bug 921937 - ns-slapd crashes sporadically with segmentation fault in libslapd.so (ticket 627) - Resolves: Bug 923504 - crash in aci evaluation (ticket 628) - Resolves: Bug 928159 - unintended information exposure when anonymous access is set to rootdse (ticket 47308)- Resolves: Bug 910581 - dse.ldif is 0 length after server kill or machine kill - Resolves: Bug 908861 - Error messages encountered when using POSIX winsync - Resolves: Bug 907985 - DNA: use event queue for config update only at the start up - Resolves: Bug 830334 - Invalid chaining config triggers a disk full error and shutdown - Resolves: Bug 906583 - DS returns error 20 when replacing values of a multi-valued attribute (only when replication is enabled) - Resolves: Bug 906005 - Valgrind reports memleak in modify_update_last_modified_attr - Resolves: Bug 905825 - PamConfig schema not updated during upgrade - Resolves: Bug 913215 - ns-slapd segfaults while trying to delete a tombstone entry - Resolves: Bug 913229 - unauthenticated denial of service vulnerability in handling of LDAPv3 control data- Resolves: Bug 896256 - updating package touches configuration files- Resolves: Bug 889083 - For modifiersName/internalModifiersName feature, internalModifiersname is not working for DNA plugin- Resolves: Bug 891930 - DNA plugin no longer reports additional info when range is depleted- Resolves: Bug 887855 - RootDN Access Control plugin is missing after upgrade from RHEL63 to RHEL64- Resolves: Bug 830355 - [RFE] improve cleanruv functionality - Resolves: Bug 876650 - Coverity revealed defects - Ticket #20 - [RFE] Allow automember to work on entries that have already been added (Bug 768084) - Resolves: Bug 834074 - [RFE] Disable replication agreements - Resolves: Bug 878111 - ns-slapd segfaults if it cannot rename the logs- Resolves: Bug 880305 - spec file missing dependencies for x86_64 6ComputeNode - use perl-Socket6 on RHEL6- Resolves: Bug 880305 - spec file missing dependencies for x86_64 6ComputeNode- Resolves: Bug 868841 - Newly created users with organizationalPerson objectClass fails to sync from AD to DS with missing attribute error - Resolves: Bug 868853 - Winsync: DS error logs report wrong version of Windows AD when winsync is configured. - Resolves: Bug 875862 - crash in DNA if no dnamagicregen is specified - Resolves: Bug 876694 - RedHat Directory Server crashes (segfaults) when moving ldap entry - Resolves: Bug 876727 - Search with a complex filter including range search is slow - Ticket #495 - internalModifiersname not updated by DNA plugin (Bug 834053)- Resolves: Bug 870158 - slapd entered to infinite loop during new index addition - Resolves: Bug 870162 - Cannot abandon simple paged result search - c970af0 Coverity defects - 1ac087a Fixing compiler warnings in the posix-winsync plugin - 2f960e4 Coverity defects - Ticket #491 - multimaster_extop_cleanruv returns wrong error codes- Resolves: Bug 834063 [RFE] enable attribute that tracks when a password was last set on an entry in the LDAP store; Ticket #478 passwordTrackUpdateTime stops working with subtree password policies - Resolves: Bug 847868 [RFE] support posix schema for user and group sync; Ticket #481 expand nested posix groups - Resolves: Bug 860772 Change on SLAPI_MODRDN_NEWSUPERIOR is not evaluated in acl - Resolves: Bug 863576 Dirsrv deadlock locking up IPA - Resolves: Bug 864594 anonymous limits are being applied to directory manager- Resolves: Bug 856657 dirsrv init script returns 0 even when few or all instances fail to start - Resolves: Bug 858580 389 prevents from adding a posixaccount with userpassword after schema reload- Resolves: Bug 852202 Ipa master system initiated more than a dozen simultaneous replication sessions, shut itself down and wiped out its db - Resolves: Bug 855438 CLEANALLRUV task gets stuck on winsync replication agreement- Resolves: Bug 847868 [RFE] support posix schema for user and group sync - fix upgrade issue with plugin config schema - posix winsync has default plugin precedence of 25- Resolves: Bug 800051 Rebase 389-ds-base to 1.2.11 - Resolves: Bug 742054 SASL/PLAIN binds do not work - Resolves: Bug 742381 MOD operations with chained delete/add get back error 53 on backend config - Resolves: Bug 746642 [RFE] define pam_passthru service per subtree - Resolves: Bug 757836 logconv.pl restarts count on conn=0 instead of conn=1 - Resolves: Bug 768084 [RFE] Allow automember to work on entries that have already been added - Resolves: Bug 782975 krbExtraData is being null modified and replicated on each ssh login - Resolves: Bug 803873 Sync with group attribute containing () fails - Resolves: Bug 818762 winsync should not delete entry that appears to be out of scope - Resolves: Bug 830001 unhashed#user#password visible after changing password [rhel-6.4] - Resolves: Bug 830256 Audit log - clear text password in user changes - Resolves: Bug 830331 ns-slapd exits/crashes if /var fills up - Resolves: Bug 830334 Invalid chaining config triggers a disk full error and shutdown - Resolves: Bug 830335 restore of replica ldif file on second master after deleting two records shows only 1 deletion - Resolves: Bug 830336 db deadlock return should not log error - Resolves: Bug 830337 usn + mmr = deletions are not replicated - Resolves: Bug 830338 Change DS to purge ticket from krb cache in case of authentication error - Resolves: Bug 830340 Make the CLEANALLRUV task one step - Resolves: Bug 830343 managed entry sometimes doesn't delete the managed entry - Resolves: Bug 830344 [RFE] Improve replication agreement status messages - Resolves: Bug 830346 ADD operations not in audit log - Resolves: Bug 830347 389 DS does not support multiple paging controls on a single connection - Resolves: Bug 830348 Slow shutdown when you have 100+ replication agreements - Resolves: Bug 830349 cannot use & in a sasl map search filter - Resolves: Bug 830353 valgrind reported memleaks and mem errors - Resolves: Bug 830355 [RFE] improve cleanruv functionality - Resolves: Bug 830356 coverity 12625-12629 - leaks, dead code, unchecked return - Resolves: Bug 832560 [abrt] 389-ds-base-1.2.10.6-1.fc16: slapi_attr_value_cmp: Process /usr/sbin/ns-slapd was killed by signal 11 (SIGSEGV) - Resolves: Bug 833202 transaction retries need to be cache aware - Resolves: Bug 833218 ldapmodify returns Operations error - Resolves: Bug 833222 memberOf attribute and plugin behaviour between sub-suffixes - Resolves: Bug 834046 [RFE] Add nsTLS1 attribute to schema and objectclass nsEncryptionConfig - Resolves: Bug 834047 Fine Grained Password policy: if passwordHistory is on, deleting the password fails. - Resolves: Bug 834049 [RFE] Add schema for DNA plugin - Resolves: Bug 834052 [RFE] limiting Directory Manager (nsslapd-rootdn) bind access by source host (e.g. 127.0.0.1) - Resolves: Bug 834053 [RFE] Plugins - ability to control behavior of modifyTimestamp/modifiersName - Resolves: Bug 834054 Should only update modifyTimestamp/modifiersName on MODIFY ops - Resolves: Bug 834056 Automembership plugin fails in a MMR setup, if data and config area mixed in the plugin configuration - Resolves: Bug 834057 ldap-agent crashes on start with signal SIGSEGV - Resolves: Bug 834058 [RFE] logconv.pl : use of getopts to parse commandline options - Resolves: Bug 834060 passwordMaxFailure should lockout password one sooner - and should be configurable to avoid regressions - Resolves: Bug 834061 [RFE] RHDS: Implement SO_KEEPALIVE in network calls. - Resolves: Bug 834063 [RFE] enable attribute that tracks when a password was last set on an entry in the LDAP store - Resolves: Bug 834064 dnaNextValue gets incremented even if the user addition fails - Resolves: Bug 834065 Adding Replication agreement should complain if required nsds5ReplicaCredentials not supplied - Resolves: Bug 834074 [RFE] Disable replication agreements - Resolves: Bug 834075 logconv.pl reporting unindexed search with different search base than shown in access logs - Resolves: Bug 835238 Account Usability Control Not Working - Resolves: Bug 836386 slapi_ldap_bind() doesn't check bind results - Resolves: Bug 838706 referint modrdn not working if case is different - Resolves: Bug 840153 Impossible to rename entry (modrdn) with Attribute Uniqueness plugin enabled - Resolves: Bug 841600 Referential integrity plug-in does not work when update interval is not zero - Resolves: Bug 842437 dna memleak reported by valgrind - Resolves: Bug 842438 Report during startup if nsslapd-cachememsize is too small - Resolves: Bug 842440 memberof performance enhancement - Resolves: Bug 842441 "Server is unwilling to perform" when running ldapmodify on nsds5ReplicaStripAttrs - Resolves: Bug 847868 [RFE] support posix schema for user and group sync - Resolves: Bug 850683 nsds5ReplicaEnabled can be set with any invalid values. - Resolves: Bug 852087 [RFE] add attribute nsslapd-readonly so we can reference it in acis - Resolves: Bug 852088 server to server ssl client auth broken with latest openldap - Resolves: Bug 852839 variable dn should not be used in ldbm_back_delete- Resolves: Bug 835238 - Account Usability Control Not Working- Resolves: Bug 834096 - slapi_attr_value_cmp: Process /usr/sbin/ns-slapd was killed by signal 11 (SIGSEGV)- Resolves: Bug 830001 - unhashed#user#password visible after changing password -- patch 0020 disallows users' direct modify on unhashed#user#password- Resolves: Bug 830001 - unhashed#user#password visible after changing password -- patch 0019 fixes deref issue.- Resolves: Bug 830001 - unhashed#user#password visible after changing password - Resolves: Bug 830256 - Audit log - clear text password in user changes- Resolves: Bug 824014 - DS Shuts down intermittently- Resolves: Bug 819643 - Database RUV could mismatch the one in changelog under the stress -- patch 0015 fixes a small memleak in previous patch- Resolves: Bug 822700 - Bad DNs in ACIs can segfault ns-slapd- Resolves: Bug 819643 - Database RUV could mismatch the one in changelog under the stress - Resolves: Bug 821542 - letters in object's cn get converted to lowercase when renaming object- Resolves: Bug 819643 - Database RUV could mismatch the one in changelog under the stress - 1.2.10.2-10 was built from the private branch- Resolves: Bug 819643 - Database RUV could mismatch the one in changelog under the stress- Resolves: Bug 815991 - crash in ldap_initialize with multiple threads - previous fix was still crashing in ldclt- Resolves: Bug 815991 - crash in ldap_initialize with multiple threads- Resolves: Bug 813964 - IPA dirsvr seg-fault during system longevity test- Resolves: Bug 811291 - [abrt] 389-ds-base-1.2.10.4-2.fc16: index_range_read_ext: Process /usr/sbin/ns-slapd was killed by signal 11 (SIGSEGV) - typo in previous patch- Resolves: Bug 811291 - [abrt] 389-ds-base-1.2.10.4-2.fc16: index_range_read_ext: Process /usr/sbin/ns-slapd was killed by signal 11 (SIGSEGV)- Resolves: Bug 803930 - ipa not starting after upgade because of missing data - get rid of posttrans - move update code to post- Resolves: Bug 800215 - Certain CMP operations hang or cause ns-slapd to crash- Resolves: Bug 800215 - Certain CMP operations hang or cause ns-slapd to crash - Resolves: Bug 800217 - fix valgrind reported issues- Resolves: Bug 766989 - Rebase 389-ds-base to 1.2.10 - Resolves: Bug 796770 - crash when replicating orphaned tombstone entry- Resolves: Bug 766989 - Rebase 389-ds-base to 1.2.10 - Resolves: Bug 790491 - 389 DS Segfaults during replica install in FreeIPA- Resolves: Bug 766989 - Rebase 389-ds-base to 1.2.10- Resolves: Bug 766989 - Rebase 389-ds-base to 1.2.10- Bug 759301 - Incorrect entryUSN index under high load in replicated environment - Bug 743979 - Add slapi_rwlock API and use POSIX rwlocks - WARNING - patches 0030 and 0031 remove and add back the file configure - this is necessary because the merge commit to "rebase" RHEL-6 to 1.2.9.6 - seriously messed up configure - so in order to add the patch for 743979 - which also touched configure, the file had to be removed and added back - also note that the commit for the RHEL-6 branch to remove configure does - not work - the way patch works, it has to match every line exactly in - order to remove the file, and because the merge commit messed things - up, it doesn't work - So, DO NOT TOUCH 0030-remove-configure-to-get-rid-of-merge-conflict.patch - BECAUSE IT IS HAND CRAFTED and not generated by git format-patch - if you must regenerate this file, - git format-patch ...args... to generate a file in patch format - remove all of the patch matches (all the lines beginning with -) - get the 1.2.9.6 version of configure from the source tarball - wc -l configure to get the number of lines in the file - sed 's/^/-/' configure >> thefile.patch - edit thefile.patch to have the right number of lines and have the - patch commands in the correct place - PROFIT!!!- Bug 752577 - crash when simple paged fails to send entry to client - Bug 757897 - rhds81 modrn operation and 100% cpu use in replication - Bug 757898 - Fix Coverity (11104) Resource leak: ids_sasl_user_to_entry (slapd/saslbind.c)- Bug 752155 - Use restorecon after creating init script lock file- Bug 742381 - part3 - MOD operations with chained delete/add get - back error 53 on backend config- add the actual patch commands for the new patch files- Bug 742661 - allow resource limits to be set for paged searches - independently of limits for other searches/operations - Bug 742381 - part2 - MOD operations with chained delete/add get - back error 53 on backend config - Bug 742382 - allow nsslapd-idlistscanlimit to be set dynamically and per-user - Bug 742381 - MOD operations with chained delete/add get back - error 53 on backend config - Bug 739959 - Allow separate fractional attrs for incremental and total protocols- Bug 739196 - Consolidate DS and DS replication bits in one package in RHEL 6.2 - There were two patches in ds-replication for RHEL 6.2 that were added post - rebase - the two patches for 722292 - these are now in the 389-ds-base package - and have been cherry-picked to the RHEL-6 internal branch- Bug 736137 - renaming a managed entry does not update mepmanagedby- Bug 735217 - simple paged search + ip/dns based ACI hangs server- Bug 733443 - large targetattr list with syntax errors cause server to crash or hang - Bug 734267 - upgradednformat failed to add RDN value - subtree and user account lockout policies implemented? - Bug 733434 - passwordisglobalpolicy attribute brakes TLS chaining - Bug 733442 - Ignore an error 32 in this case since we're adding a new AutoMember definition - Bug 733440 - RFE: add option to allow server to start with an expired certificate- not released internally- Bug 728510 - Run dirsync after sending updates to AD - Bug 729717 - Fatal error messages when syncing deletes from AD - Bug 729369 - upgrade DB to upgrade from entrydn to entryrdn format is not working. - Bug 729378 - delete user subtree container in AD + modify password in DS == DS crash - Bug 723937 - Slapi_Counter API broken on 32-bit F15 - fixed again - separate tests for atomic ops and atomic bool cas- Bug 727511 - ldclt SSL search requests are failing with "illegal error number -1" error - Fix another coverity NULL deref in previous patch- Bug 727511 - ldclt SSL search requests are failing with "illegal error number -1" error - Fix coverity NULL deref in previous patch- Bug 727511 - ldclt SSL search requests are failing with "illegal error number -1" error - previous patch broke build on el5- Bug 727511 - ldclt SSL search requests are failing with "illegal error number -1" error- Bug 723937 - Slapi_Counter API broken on 32-bit F15 - fixed to use configure test for GCC provided 64-bit atomic functions- Bug 663752 - Cert renewal for attrcrypt and encchangelog - this was "re-fixed" due to a deadlock condition with cl2ldif task cancel - Bug 725953 - Winsync: DS entries fail to sync to AD, if the User's CN entry contains a comma - Bug 725743 - Make memberOf use PRMonitor for it's operation lock - Bug 725542 - Instance upgrade fails when upgrading 389-ds-base package - Bug 723937 - Slapi_Counter API broken on 32-bit F15 - look for separate openldap ldif library - Split automember regex rules into separate entries - writing Inf file shows SchemaFile = ARRAY(0xhexnum) - add support for ldif files with changetype: add - Bug 703703 - setup-ds-admin.pl asks for legal agreement to a non-existant file - Bug 713209 - Update sudo schema - Bug 719069 - clean up compiler warnings in 389-ds-base 1.2.9- Bug 726136 - memberOf plug-in can deadlock when used with other plug-ins - Bug 725912 - Instance upgrade fails when upgrading 389-ds-base package- Bug 720452 - RDN with % can cause crashes or missing entries - Bug 720051 - RSA Authentication Server timeouts when using simple paged results on RHDS 8.2. - Bug 720458 - Directory Server 8.2 logs "Netscape Portable Runtime error -5961 (TCP connection reset by peer.)" to error log whereas Directory Server 8.1 did not - Bug 720459 - Update sudo schema- Bug 718351 - Intensive updates on masters could break the consumer's cache - Bug 714298 - unresponsive LDAP service when deleting vlv on replica- Bug 714298 - unresponsive LDAP service when deleting vlv on replica - memleak in previous patch- Bug 714298 - unresponsive LDAP service when deleting vlv on replica- Bug 706209 - LEGAL: RHEL6.1 License issue for 389-ds-base package - Bug 713317 - Cert renewal for attrcrypt and encchangelog - Bug 711266 - DS can not restart after create a new objectClass has entryusn attribute - Bug 712167 - ns-slapd segfaults using suffix referrals - Bug 709868 - only allow FIPS approved cipher suites in FIPS mode - Bug 711516 - Support upgrade from Red Hat Directory Server - Bug 711241 - memory leak found by reliab12 - Bug 711265 - Cannot disable SSLv3 and use TLS only - Bug 711513 - slapd stops responding- Resolves: Bug 705172 - 389-ds should only be supported and supplied in channels for i386 and x86_64 Server distributions - RHEL 6.1 0day Advisory - use ix86 macro instead of hardcoded i386 etc.- Resolves: Bug 705172 - 389-ds should only be supported and supplied in channels for i386 and x86_64 Server distributions - RHEL 6.1 0day Advisory - cannot use wildcard in ExclusiveArch- Resolves: Bug 705172 - 389-ds should only be supported and supplied in channels for i386 and x86_64 Server distributions - RHEL 6.1 0day Advisory- Resolves: Bug 697663 - memory leak: entryusn value is leaked when an entry is deleted - Resolves: Bug 699458 - windows sync can lose old multi-valued attribute values when a new value is added - Resolves: Bug 700215 - ldclt core dumps - Resolves: Bug 700665 - Linked attributes callbacks access free'd pointers after close - Resolves: Bug 701057 - userpasswd not replicating- 389-ds-base-1.2.8.2 - Bug 696407 - If an entry with a mixed case RDN is turned to be - a tombstone, it fails to assemble DN from entryrdn- 389-ds-base-1.2.8.1 - Bug 693962 - Full replica push loses some entries with multi-valued RDNs- added srcver because the version from the source is now - different than the source in the package- 389-ds-base-1.2.8.0 - Bug 693523 - Unable to change schema online - Bug 693520 - matching rules do not inherit from superior attribute type - Bug 693522 - nsMatchingRule does not work with multiple values - Bug 693519 - cannot use localized matching rules - Bug 693516 - Segfault on index update during full replication push on 1.2.7.5- Bug 668385 - DS pipe log script is executed as many times as the dirsrv service is restarted - bump version to 1.2.8.rc4 - bump ds console version to 1.2.5- Bug 690536 - Double free in dse_add()- 389-ds-base-1.2.8 release candidate 2 - git tag 389-ds-base-1.2.8.rc2 - Bug 689908 - (cov#10610) Fix Coverity NULL pointer dereferences - Bug 689895 - ns-newpwpolicy.pl needs to use the new DN format - Bug 689889 - RFE: allow fine grained password policy duration attributes - in days, hours, minutes, as well - Bug 688730 - Exported tombstone cannot be imported correctly - Bug 684349 - slapd crashing when traffic replayed - Bug 682897 - Allow maxlogsize to be set if logmaxdiskspace is -1 - introduce the concept of the srcprerel - with rc2, we did not rebase - the source, we are still using the .rc1 source tarball, so we use - srcprerel of .rc1 but package pre-release is .rc2- 389-ds-base-1.2.8 release candidate 1 - git tag 389-ds-base-1.2.8.rc1 - Resolves: Bug 680575 - Rebase 389-ds-base to pick the latest features and fixes - Resolves: Bug 681720 - setup-ds-admin.pl - improve hostname validation - Resolves: Bug 681611 - RFE: allow fine grained password policy duration attributes in - days, hours, minutes, as well - Resolves: Bug 681550 - setup-ds-admin.pl --debug does not log to file - Resolves: Bug 681379 - ns-slapd segfaults if I have more than 100 DBs - Resolves: Bug 680290 - setup-ds.pl should set SuiteSpotGroup automatically - Resolves: Bug 681351 - crash in ldap-agent when using OpenLDAP - Resolves: Bug 681332 - modifying attr value crashes the server, which is supposed to - be indexed as substring type, but has octetstring syntax - Resolves: Bug 680305 - ds-logpipe.py script is failing to validate "-s" and - "--serverpid" options with "-t".- Bug 676598 - 389-ds-base multilib: file conflicts - split off libs into a separate -libs package - remove old crufty fedora-ds stuff- do not create /var/run/dirsrv - setup will create it instead - remove the fedora-ds initscript upgrade stuff - we do not support that anymore - convert the remaining lua stuff to plain old shell script- 1.2.8.a3 release - git tag 389-ds-base-1.2.8.a3 - Bug 675320 - empty modify operation with repl on or lastmod off will crash server - Bug 675265 - preventryusn gets added to entries on a failed delete - Bug 677774 - added support for tmpfiles.d - Bug 666076 - dirsrv crash (1.2.7.5) with multiple simple paged result search es - Bug 672468 - Don't use empty path elements in LD_LIBRARY_PATH - Bug 671199 - Don't allow other to write to rundir - Bug 678646 - Ignore tombstone operations in managed entry plug-in - Bug 676053 - export task followed by import task causes cache assertion - Bug 677440 - clean up compiler warnings in 389-ds-base 1.2.8 - Bug 675113 - ns-slapd core dump in windows_tot_run if oneway sync is used - Bug 676689 - crash while adding a new user to be synced to windows - Bug 604881 - admin server log files have incorrect permissions/ownerships - Bug 668385 - DS pipe log script is executed as many times as the dirsrv serv ice is restarted - Bug 675853 - dirsrv crash segfault in need_new_pw()- 1.2.8.a2 release - git tag 389-ds-base-1.2.8.a2 - Errata Patches in patch files - Bug 666076 - dirsrv crash (1.2.7.5) with multiple simple paged result searches - Bug 671199 - Don't allow other to write to rundir - Bug 672468 - Don't use empty path elements in LD_LIBRARY_PATH - bugs fixed in released code - Bug 674430 - Improve error messages for attribute uniqueness - Bug 616213 - insufficient stack size for HP-UX on PA-RISC - Bug 615052 - intrinsics and 64-bit atomics code fails to compile - on PA-RISC - Bug 151705 - Need to update Console Cipher Preferences with new ciphers - Bug 668862 - init scripts return wrong error code - Bug 670616 - Allow SSF to be set for local (ldapi) connections - Bug 667935 - DS pipe log script's logregex.py plugin is not redirecting the - log output to the text file - Bug 668619 - slapd stops responding - Bug 624547 - attrcrypt should query the given slot/token for - supported ciphers - Bug 646381 - Faulty password for nsmultiplexorcredentials does not give any - error message in logs- 1.2.8-0.1.a1 release - many bug fixes- 1.2.7.5 release - git tag 389-ds-base-1.2.7.5 - Bug 663597 - Memory leaks in normalization code- 1.2.7.4 release - git tag 389-ds-base-1.2.7.4 - Bug 661792 - Valid managed entry config rejected- 1.2.7.3 release - git tag 389-ds-base-1.2.7.3 - Bug 658312 - Invalid free in Managed Entry plug-in - Bug 641944 - Don't normalize non-DN RDN values- 1.2.7.2 release - git tag 389-ds-base-1.2.7.2 - Bug 659456 - Incorrect usage of ber_printf() in winsync code - Bug 658309 - Process escaped characters in managed entry mappings - Bug 197886 - Initialize return value for UUID generation code - Bug 658312 - Allow mapped attribute types to be quoted - Bug 197886 - Avoid overflow of UUID generator- 1.2.7.1 release - git tag 389-ds-base-1.2.7.1 - Bug 656515 - Allow Name and Optional UID syntax for grouping attributes - Bug 656392 - Remove calls to ber_err_print() - Bug 625950 - hash nsslapd-rootpw changes in audit log- the 1.2.7 release - remove the ds-replication sub-package - there will be a new package for it - remove the selinux policy - dirsrv policy will be provided by the base OS- create ds-replication sub package- bumped the version to get it to build in brew- 1.2.7.a4 release - git tag 389-ds-base-1.2.7.a4 - Bug 647932 - multiple memberOf configuration adding memberOf where there is no member - Bug 491733 - dbtest crashes - Bug 606545 - core schema should include numSubordinates - Bug 638773 - permissions too loose on pid and lock files - Bug 189985 - Improve attribute uniqueness error message - Bug 619623 - attr-unique-plugin ignores requiredObjectClass on modrdn operat ions - Bug 619633 - Make attribute uniqueness obey requiredObjectClass- 1.2.7.a3 release - a2 was never released - this is a rebuild to pick up - Bug 644608 - RHDS 8.1->8.2 upgrade fails to properly migrate ACIs - Adding the ancestorid fix code to ##upgradednformat.pl.- 1.2.7.a3 release - a2 was never released - Bug 644608 - RHDS 8.1->8.2 upgrade fails to properly migrate ACIs - Bug 629681 - Retro Changelog trimming does not behave as expected - Bug 645061 - Upgrade: 06inetorgperson.ldif and 05rfc4524.ldif - are not upgraded in the server instance schema dir- 1.2.7.a2 release - a1 was the OpenLDAP testday release - git tag 389-ds-base-1.2.7.a2 - added openldap support on platforms that use openldap with moznss - for crypto (F-14 and later) - many bug fixes - Account Policy Plugin (keep track of last login, disable old accounts)- added openldap support- bump rel to rebuild again- bump rel to rebuild- This is the 1.2.6.1 release - git tag 389-ds-base-1.2.6.1 - Bug 634561 - Server crushes when using Windows Sync Agreement - Bug 635987 - Incorrect sub scope search result with ACL containing ldap:///self - Bug 612264 - ACI issue with (targetattr='userPassword') - Bug 606920 - anonymous resource limit- nstimelimit - also applied to "cn=directory manager" - Bug 631862 - crash - delete entries not in cache + referint- This is the final 1.2.6 release- 1.2.6 release candidate 7 - git tag 389-ds-base-1.2.6.rc7 - Bug 621928 - Unable to enable replica (rdn problem?) on 1.2.6 rc6- 1.2.6 release candidate 6 - git tag 389-ds-base-1.2.6.rc6 - Bug 617013 - repl-monitor.pl use cpu upto 90% - Bug 616618 - 389 v1.2.5 accepts 2 identical entries with different DN formats - Bug 547503 - replication broken again, with 389 MMR replication and TCP errors - Bug 613833 - Allow dirsrv_t to bind to rpc ports - Bug 612242 - membership change on DS does not show on AD - Bug 617629 - Missing aliases in new schema files - Bug 619595 - Upgrading sub suffix under non-normalized suffix disappears - Bug 616608 - SIGBUS in RDN index reads on platforms with strict alignments - Bug 617862 - Replication: Unable to delete tombstone errors - Bug 594745 - Get rid of dirsrv_lib_t label- make selinux-devel explicit Require the base package in order - to comply with Fedora Licensing Guidelines- 1.2.6 release candidate 3 - git tag 389-ds-base-1.2.6.rc3 - Bug 603942 - null deref in _ger_parse_control() for subjectdn - 609256 - Selinux: pwdhash fails if called via Admin Server CGI - 578296 - Attribute type entrydn needs to be added when subtree rename switch is on - 605827 - In-place upgrade: upgrade dn format should not run in setup-ds-admin.pl - Bug 604453 - SASL Stress and Server crash: Program quits with the assertion failure in PR_Poll - Bug 604453 - SASL Stress and Server crash: Program quits with the assertion failure in PR_Poll - 606920 - anonymous resource limit - nstimelimit - also applied to "cn=directory manager"- 1.2.6 release candidate 2- install replication session plugin header with devel package- 1.2.6 release candidate 1- Mass rebuild with perl-5.12.0- 1.2.6.a4 release- 1.2.6.a3 release - add managed entries plug-in - many bug fixes - moved selinux subpackage into base package- rebuild for icu 4.4- 1.2.6.a2 release - add support for matching rules - many bug fixes- 1.2.6.a1 release - Added SELinux policy and subpackages- 1.2.5 final release- 1.2.5.rc4 release- 1.2.5.rc3 release- 1.2.5.rc2 release- 1.2.5.rc1 release- 1.2.5.a1 release- 1.2.4 release - resolves bug 221905 - added support for Salted MD5 (SMD5) passwords - primarily for migration - resolves bug 529258 - Make upgrade remove obsolete schema from 99user.ldif- 1.2.3 release - added template-initconfig to %files - %posttrans now runs update to update the server instances - servers are shutdown, then restarted if running before install - scriptlets mostly use lua now to pass data among scriptlet phases- rebuild with new openssl to fix dependencies- backed out - added template-initconfig to %files - this change is for the next major release - bump version to 1.2.2 - fix reopened 509472 db2index all does not reindex all the db backends correctly - fix 518520 - pre hashed salted passwords do not work - see https://bugzilla.redhat.com/show_bug.cgi?id=518519 for the list of - bugs fixed in 1.2.2- rebuilt with new openssl- added template-initconfig to %files- added BuildRequires pcre- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild- change name to 389 - change version to 1.2.1 - added initial support for numeric string syntax - added initial support for syntax validation - added initial support for paged results including sorting- final release 1.2.0 - Resolves: bug 475338 - LOG: the intenal type of maxlogsize, maxdiskspace and minfreespace should be 64-bit integer - Resolves: bug 496836 - SNMP ldap-agent on Solaris: Unable to open semaphore for server: 389 - CVS tag: FedoraDirSvr_1_2_0 FedoraDirSvr_1_2_0_20090428- re-enable ppc builds- exclude ppc builds - needs extensive porting work- new release 1.2.0 - Made devel package depend on mozldap-devel - only create run dir if it does not exist - CVS tag: FedoraDirSvr_1_2_0_RC1 FedoraDirSvr_1_2_0_RC1_20090330- added db4-utils to Requires for verify-db.pl- Enabled LDAPI autobind- updated update to patch bug463991-bdb47.patch- updated patch bug463991-bdb47.patch- added patch bug463991-bdb47.patch - make ds work with bdb 4.7- rolled back bogus winsync memory leak fix- winsync api improvements for modify operations- This is the 1.1.2 release. The bugs fixed can be found here - https://bugzilla.redhat.com/showdependencytree.cgi?id=452721 - Added winsync-plugin.h to the devel subpackage- bump rev to rebuild and pick up new version of ICU- 1.1.1 release candidate - several bug fixes- fix bugzilla 439829 - patch to allow working with NSS 3.11.99 and later- add patch to allow server to work with NSS 3.11.99 and later - do NSS_Init after fork but before detaching from console- add Requires for versioned perl (libperl.so)- previous fix for 434403 used the wrong patch - this is the right one- Resolves bug 434403 - GCC 4.3 build fails - Rolled new source tarball which includes Nathan's fix for the struct ucred - NOTE: Change version back to 1.1.1 for next release - this release was pulled from CVS tag FedoraDirSvr110_gcc43- Autorebuild for GCC 4.3- This is the GA release of Fedora DS 1.1 - Removed version numbers for BuildRequires and Requires - Added full URL to source tarball- Rebuild for deps- This is the beta2 release - new file added to package - /etc/sysconfig/dirsrv - for setting - daemon environment as is usual in other linux daemons- fix build breakage due to open() - mock could not find BuildRequires: db4-devel >= 4.2.52 - mock works if >= version is removed - it correctly finds db4.6- Change pathnames to use the pkgname macro which is dirsrv - get rid of cvsdate in source name- Added Requires for perldap, cyrus sasl plugins - Removed template-migrate* files - Added perl module directory - Removed install.inf - setup-ds.pl can now easily generate one- added requires for mozldap-tools- update to latest sources - added migrateTo11 to allow migrating instances from 1.0.x to 1.1 - ldapi support - fixed pam passthru plugin ENTRY method- Renamed package to fedora-ds-base, but keep names of paths/files/services the same - use the shortname macro (fedora-ds) for names of paths, files, and services instead - of name, so that way we can continue to use e.g. /etc/fedora-ds instead of /etc/fedora-ds-base - updated to latest sources- More cleanup suggested by Dennis Gilmore - This is the fedora extras candidate based on cvs tag FedoraDirSvr110a1- latest sources - added init scripts - use /etc as instconfigdir- latest sources - moved all executables to _bindir- latest sources - added /var/tmp/fedora-ds to dirs- added logconv.pl - added slapi-plugin.h to devel package - added explicit dirs for /var/log/fedora-ds et. al.- just move all .so files into the base package from the devel package- Move the plugin *.so files into the main package instead of the devel - package because they are loaded directly by name via dlopen- Move the script-templates directory to datadir/fedora-ds- change mozldap to mozldap6- remove . from cvsdate define- Having a problem building in Brew - may be Release format- Changed version to 1.1.0 and added Release 1.el4.cvs20070119 - merged in changes from Fedora Extras candidate spec file- Bump component versions (nspr, nss, svrcore, mozldap) to their latest - remove unneeded patches- update to a cvs snapshot - fedorafy the spec - create -devel subpackage - apply a patch to use mozldap not mozldap6 - apply a patch to allow --prefix to work correctly- Fixed the problem where the server would crash upon shutdown in dblayer - due to a race condition among the database housekeeping threads - Fix a problem with normalized absolute paths for db directories- Touch all of the ldap/admin/src/scripts/*.in files so that they - will be newer than their corresponding script template files, so - that make will rebuild them.- Chown new schema files when copying during instance creation- Configure will get ldapsdk_bindir from pkg-config, or $libdir/mozldap6- use eval to sed ./configure into ../configure- jump through hoops to be able to run ../configure- Need to make built dir in setup section- The template scripts needed to use @libdir@ instead of hardcoding - /usr/lib - Use make DESTDIR=$RPM_BUILD_ROOT install instead of % makeinstall - do the actual build in a "built" subdirectory, until we remove - the old script templates- Make replication plugin link with libdb- Have make define LIBDIR, BINDIR, etc. for C code to use - especially for create_instance.h- Forgot to checkin new config.h.in for AC_CONFIG_HEADERS- Add perldap as a Requires; update sources- Fix ds_newinst.pl - Remove obsolete #defines- Update sources; rebuild to populate brew yum repo with dirsec-nss- Update sources- initial revision 1.2.11.151.2.11.15-95.el6_91.2.11.15-95.el6_9dirsrvrepl-session-plugin.hslapi-plugin.hwinsync-plugin.hlibslapd.sodirsrv.pc389-ds-base-devel-1.2.11.15EXCEPTIONLICENSELICENSE.GPLv2README.devel/usr/include//usr/include/dirsrv//usr/lib64/dirsrv//usr/lib64/pkgconfig//usr/share/doc//usr/share/doc/389-ds-base-devel-1.2.11.15/-O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector --param=ssp-buffer-size=4 -m64 -mtune=genericcpioxz2x86_64-redhat-linux-gnuASCII textUTF-8 Unicode textdirectorypkgconfig filesymbolic link to `libslapd.so.0.0.0'RPR?7zXZ !PH60] b2u jӫ`({MKﯓ:+!XZ Xr̐A.4S_3Tvvz|Ze i+"34,1hwRq.4[KB O'v!g9Sm? @ΦBjB<7&k ; b^6WWQ.40v'# %fKr=KQt.AߤԖk0Z-qDl=i@̧+''-55iyٵ/ŦOi]B6ԓTā(c>?.U{6 -+ 4"*8zk&[PQ= b-z}d$ux{4Ƣ@~`Ӟ?s#+ч3l4b[s/dGJ ú!9Z6D= D"?ۗO.j4= N'm;dk4%ڢ|k-*d-,qӟV[ 5XbM::̱0EP՝M F Jav`Ҽ.*3\F ]+3$9 Բat}8<9z@MZ]#-1Sgp Yz 8'> `mx̌$Ar[XuG= B y6;qbGA)l 3cCMJIALkpֵSvUwfpԸ8uDkh4\; dqEm%kD1vR[nbLSgpkMQ&ңA 6SE]& ,'E1+U}}B8P&tEUȓԟwa:mpU~ \k? ~Z x'uS N"r!}(g= (HVBԫO]K͆ n ZL W ZΏ3uP'jLdP.tSvpQѸluL(:E)mu?1OIʍ1wpBf!8jhbL$i8Zt3N"U7> p#vN>!p:1}>1Ѕ3~]Pp9/??]*a3∼rB-tJ;L iWKED> αOobӛ5ѻvPd 0%]i]lb[u'Q:29QK"eztm1̂ k;|Rj+̳dL.︋Gߚ]QYc5-q-1W=[!'{8H,LrUbzs|Vx.NZje@ B23Vl4|:t'Q~ @ *q Ϯ%C]Wg׷;,QX'xna.VE'S ʫ9Y:goD!1aj\'$6^ } t+XR,ApA:E`qČLm)/wם\  _!aXs'EX;Ji1 9chtr'AZIVsA릙(D8{nvDcb ?K Y OVߧ3moŮ8^7 TR[==F 1T.O\V`W G +tՐl039?St40i}fq)'4 Z"7; Ejy.ֳ ) Gvu+3t6wȷ2^B!GF")1C {Ʌ <8'f-Eid4#ti$fP^sDGeEC6T%L2LHp֐ntow`5K<:GygZWah?E<w! `]k1w)H̀8SAKgdĈ{zč] 670QJzi w!8N)؛ɺvk߻?3!.܅`6 6CT54pq25\V`F\j+ac|XDq)Rsyd( jC&os!(&- 7rKc) G1$D@N4mR1~ҭjCa<ռq0[ 3Z#jjH6P݊#ge^+W"J^ 5&hg:0]nG /nB!$|B*3K1գBӅrqolԠ5R~z^OOFrk3hĂp\CѡƪCzcwJJx7bj݁*| #F9YX|A"G $>+5L_̀3Ͼ ƯFJQw'.U|K[#Țvw#UxBl|.7 V+\\xئ{TR^|燩&=J~ƣyp:^,: ."f*03{LئcQ40gAY-Ki^[a%@~+ *zukc0[Xy=]y795sV.DQ/E||d؄C~KPX6mX5; VBDhIs0er1^QG;|o'"%=V:(!Aj6y2[{Go-3M.=Rͱ/7H*/L 3hxfk9OrkKKkFCꖏ"5݁.+hRM 7M0Q~.ȧ*?c$-L8R5сq&ŋdB n>?G{*a@5~Vsظ PdP4jו,!&eA_LtJpm!ڟsL{C!1 2`k# ӷtGb4I( =*xj.آ D 7V*:[,O.!pt]uBN`VU쥷KæB.3H_K3jw]guLB_E;Y#5$:ȋ0}۲iB\'Բd>We/`9>l)Of`'{Xz/xch|؍;?mpNre}]0dH*.ߗyےu7EK`0N?I{ů GVr&U; 'ɍ}ùX;?QЪx׊Gޕ7W=p6Իy]# 6$ "P]mp-h=( pz PΣ) M&G_@OOFЅH"[ xښ&ؗuqz:asݤB@vs&j区7&gO ,> $R6\.m |ܤt`|  S;jړC?kMnWPa?}ò{9LJxmgZn{YlV%Qm ?HkTmyȓTds +<>34WM̄<:|/# ,X$ >yȜijDDѪrnU3Cٶu=t8a'F>eOP-2lt~Bjh0 I+֨$B˵qV?\xX3Zvȡ }w;u_ ',fd $B=O9<B_+mT.Me``Ba, ud껚؎1Ib1<ƮE>7E %sWkj*rsO9びβ@tz*'AoAi^ ay=tq=XJH֖X=S<8 g*Vd^k#<.ffvš,֚%÷ Qn\g^Zbq'd5$sZq9]zt6-˝JX58Y9ɼJ .&;q𢡊b5[GKl_De 'Zz*{1Gs{>4yzya@\ūa.ԧOq~06jl@_H:_ üJG =ya`Hd R5pS%6ΤG (^y6B @;"i01ˌ!مOM66^  [gR닎5! }Qva1˱1p8uĵ7!8,;e?zshW){pJvr'̋1m Lچ^ L|ld˨no:-0</)SN|nrWÉ\O;ɿ='ei2== Y({3z[P~i9<n|C.]Fm8iv@]T` ^T$EK J,N׀`$ D[O)$E\h"AL7l"fm]OҍphJtIBdͳ#8şzo=|%Oί.^oBVq&F_K!-!xT9~[&Y1: 5 ̡/JM\hꌩCuecXQt }[PrV[%m@PV)d<6 }0eb8ۅ(&v@뱌 KRP\Q3>˹gn~$~$5]5L]דo'X H+I23CŪ2"hN",~#8><e|] /_J\Grg3Z0@~K Ť?JE{Brs|>*C(:Iqkg:,1k3vD$^k}ݐ6R X99ϩ_ꭳLHjW]l;ờ9x`d * mT^S2ؑ -̏" g< ҹ? {&1G`ŒX6B9\Tt,lP_g)-lIQ@bj^+py+9|M8]R3\Vrk2,?+G(w+"ȸ.s\HM/ . KfKǹzY=t4츆>\k*0ȶ(HqovkͶ֚Srs Q XsM|*v8[^BC;f M),] 2~S t#vQ^/v-E=h#".~3ilܔKi7CkTq?[N+aa5b=[`tsM`jf${/e*mEF K?Zp64:(_k#9Ej?;clEn{(! ܤYut@1eF"Ct3X)mw?Os_c{Ao5Nm|ݛo/*췕O'! lW5Yĥ(xzKl51ɖQQ)D@q? C,6N0PT~QdTȠ4 ȉ?7y ںux3HN!ԟ! ?|ѦO`blg2GRuMRE K_-dшakUi 7^Z=٦)K::KyCi߾ /g/lτN~y' ƨEx,ϑu`~N v9LIk0Ysql}&.m?ppɱZ( ȍVcQ5G 4)NU[2~}*]5&z{0oͱkcFb1;4 )IӸT\٣pji hi`@@EnJr`kxE4p/ѭp_9\>sy峎:nlI!ezFH!7kaq?`Ճ~ >%.1S VV;b{aѯ~6B*dS%AVʉ"LXE&" 3ޮ^@ݧЗw#nZ؝W#;k!FsJn6IR-\Wו ~ e 5n Wnjф[$ j'$2E',,` '`Cf[;To ;_|62+6 :1Szl Vؖ'WBL)u̶zR}DkSd9l^$h)T7 S׃u[r|@1-T<7WGI6kn[D1!P1x/65 l)j'ifc8?3c<"@LѦrUC@- ǤqhӘ#y˪Nz0q3Ŝ_R2]EEu_;Ё?{.' HmPN>bW~H{_`[Xd=q:g#@XԡuPNt-D L=gÒz'9x3D٦uIU'0XFv8Q F]C-ltOĄǛ˳J<(v5H6$I.HdL+420s&\.{S5ք`XʵI1`s FSUbrI-\>do)7\De*ni3&KFj9֯ioK$DɛcWTGѠKcpB4uE eyIy7R;XfhgjH&/#iE!INpJsN&!z#q>-28/jDI Pb/r tٰܣ"h!H  +x٨J^7y̳gE pc-~㍘at y7Vj|^Z:5[DH˦~йFHa*ZpCp@?}3a$=Fw[-U߭3yҒ%fgg\ID$}Wgo.WꏑpFEQNՓzGtY);UWXn(v!yW}^4 MmӪ+@em߆}0Mz2t,ƻd`hdd =nq"Ӓo is-x{ib[S,NKmHGb dݗOnD[=Ǵt5%=Pë@ #˯Ν Lc=!xJ&Mo?- \\(&ǶȎJ*G} ZSVhb%VZځH 䣔F^ʸ%Bn# zbqqma 럓Ix}]+KdЪ %ClB/L~CGj"w6oc %o4A즢=S:_aIQZa8갠 jV/MhvfyΓ%zFUSz=E=ؙ4ZیY1\ofaj (+QPϏN? isk߶s"M> Žumj<L =$!6f >Q J)p ޭiPy[/?iWLrn%*%NcAgZJ,&vI@vjdYHm"%fT8o?ǹlIL5Vdȿ?P$)JU_͔Bz[u`4 )eQ K"wOTmpj'esQ8̀',dDl, #{LicoР/ϋ7H1oj80M]^}+/ 6k%2&_.R4/65 %S#H V+ xOˍgÅkr!vJd9P[ Ny7Kg;ұPVd#؝qUXiO[&D,nJhf;ζe"8SGUQqoXbѓD /Xx|GC|^ۧq8+aOb$,W_^ƈk,F@A=DDY;6HDRdLO4ZVPbTq =zU"M|zRY::2 O+n;8EsH~e7Yg5[ɗ- :umo69&dV7%tlg S35BoWg^v5EC\X퍣^Mڹ(!-NW, K{ÎYG㑜YmJcsYQ*>iUKU&M-1\Zx DұM"U҇jVA " [0L~g8 K7rfCE_XDIP ߓ lFsW;ۛ(l[!sgqEװ՜Z_#|Y"#J 95T`דt0%@qiNc#%07m>6.BdX|vpPIlI|6Qvyih(V4o &^QQ/P (&0_7R*g.ZwQ!=q X VЁ{Ik_1_~Sܟjh2OjjBkō~aH^yVv !n~3IJR#@ -C8dpEih1lGpfDgFoLY?7i~.#s0)ub&Z+fZ-$$ )nm!g^!G/ҳF*.N惐BFE.k767tX6r`/E7k1^~;G*tL7j!~8tЄD@6'gk޸g\xm&~6cO nepLp&X=n[qY\@ a?+'-.˦F)Q% .P^qcugթʇFwϒƱ<@PA@?h\TB'Kn"O8OtgiU R}䜄 Y&{M"f.mQ } gar%!f|m%)fn GKouJ1^%TOGpl@yhb{hŅ10ys-A-6GؒyՙCuAs|Gw}e?6OXzԻ~!SlL񄻡KR(P'}@>H,c!ŧf]jU]wòUO9@8U钎rW;tD]g;G {٫Ya>-;'pv18j.QꂕMBda)*"}G]8܀oRq0_t%^x'˳SڔSZ'+nIYnO(kH'Y`J[1+ϞczxB:\^8˒~+WQ>n,ӭk?q ["c-询+hV,l>r>jj8#4,'2}'P[40(zԦg=&G(/}ѯHH4E/,?)z%{2 LP k],2֧5 >neRa2}(DR B`ewf瓥c4zböv|)_0=@[ږU%DISjfZpa4hD WOzY,IS] O؁[h&)F@F:!\GZ'ot '2?9Z@cTĂlxwUhipaz@iEJC%W6{q<&B|q$|_ȵH4 (Hؗ<`C[@v|*Qgg~tbw_' J\d=%9sv ,4] qM:bUQmw N+.C!ȊHd؀fG R(\(1e^GJҎguab[,M y잿v~_oghˏm>9*#xp5PiM'5ݻ3_UgXqWrު]l žەҙFd}K%(O-Ks/>$J ApXC6X-VBHSG~]ؘD}xgn*^`c2B-28DŴY%SR'<ǐX =0?Gl6fnuɂvR@Lu:ʔAiĂ@kPD5&f)E7H% ?ҜGV9cG5B{ \>%#׵V{i2W$jpybgR^"jnyY0\p̾$G%q8ėlx*׀JGrp cZlE8=݅SKi6¬7wNX2*,/s*=&W쉴e_=;,ZfaMl>PQy[?џO 4ogqJ?y\wwKZˌfMf݇&BK.F^uPz G%0 &iU C'ˍٝ`@rW^vmh9ʭSVyfsrQնY ]iA4Y:gmC,2*)cJ Hxӵ-~$pݡ |`}|G>zۃt`0>[}InM?J\S@;nhsyۉ󦜹)<kvm,=4-/Ґ&0GX>mRƲbb$ װzj%=?\Kmsu"~mڲ٘s}lpրgg(x{CJeO` S nUF>Gv$#JDվ,KwM۸ ,bG9?4[.ceYL}dĎv7fFї]E4iDl=%F8zG舯tI;7dAJ`w]`oZ&]FI1 X")ZĿVwloH7@( 9+~g~='A!` p%ǣ|{QTdKc%5?yg{G_{ T--xMwa?&Zc8#ocL3x2{~m=Z8婖 9/O}62hM4 B~Q+sREIc%XGNCO&Bx_ 'OF{ɯ2he~>X|6[v.ؐJ9@VaB^ecI]&.DxiɎn $tާMה^ mVf80:kyՍ`|𑄆7 8+SUa'}h:_fxeNњ;0HuŮD{[1"xf)meDmlց1=V`tԠ0mðb (~ 54'OJ8\Ŀz~<}|{smV J< ZfY:E00`tjKVvnfF?Le|I"Znў~CAt~H 8s XÐå!֔U0TC$ 9ԆRT#LjHA?Aձ8>c3F}ƭ#%[bB&  HW!jb{<@߯E_L+48WԦ̮,TYSF@Z@"9$NvVǕDP,?lO Ҷǥ=~ EE.d!J> z' *huþJK;(0.>SxFl}}dujvR)BByzz|>vk:K '!|a9H<v%NLx-,ٙXvHOd @5}'YgnBߥgy"'+glea 9LԋxGg?fȯ)P7ly QmYK!j߹eb ׵csS A5 Tm?y ʲ󉢉40_SBj~42©)^.|c5ҳ[R@3).RcTj/=5(h^mjc"_8XW(9xߤy-DgO< 7&A$+%tj8ĸl|vWR e?:.n)[n_ۼ~Юy)E:V_b*u{k:qIZ;IQj~@wszO=Ә|5lxxQp4a^GK.&Ht^XԶJehn?ɟ"6U,©^X 4Lx=\B=jՉ5\T  Kـ&;ICDkT!b)mOw!g=FaĹ2C 0*DK '6^eD!b{5TmoukN{v!=ʙi>QO^婼5ͤCVhL= oTOӎi+>+1 0G"\Bf<Sޫ^v!ķL"SA-N:\T:2iNo|vk޲UF6Pה?p,sA4.*B_h5rD٭oMW ůae/"N$߳i_+/rݯ$岺FiJ #=SPOaI_k%'|8'rx y0♋ s_؜EEl+:5_N$>Dovޒ–NJ<cp9ȜS4PAx$dR6X?ӱFR۲_r~E ޗG/B(H \ d/&*m|v]l>2}AǮv)[,Wi. {e.Vz=W$APE`0T{5lBA,&ߚM\-CIQj2?ck~y u|ӽNwaP9N-be|\4SX[}}qe'h'#5ޑn%cN.f]z0۬G7BʡXQ:M#=/yɓG̙.30ton6H}VEWzU`4A[O$}*Aj" 9{ HKҟ=ѭNT`2?='g"QO8bE:Ұ7TٚRm=Dq@W5cJА_ϷdAjNw 74+vġ>Vȏ51NL옔ܺIu tgcMv3Ch^f .0S(xq hHq$kDU)!O/+ݴbQ&h }4c\Rc}dY=A"k9bd(gwjm2 9fCax x pfR*]IK0wW ԸM%bIw9ib5yNːG- *g`O,(nLmzpcl߬43P'Ju+(?b9ΦV!e(h]>Zӌalg7ycR3,{\2&X, gȈ'Vܠ}Zg*~sf W_O&z#)(:I?k w(\WW4""B%TY9A$z+W t:>fթ|gs @ul=!(_^*Ve~uGW }MC75pN$fqhm˄vFOGyl4t™L ya^?o-~"l?42%=LJ`(66^rW45+L9<=V!⎋Lljՠ}Tl 1>űք4 !4!-+<Ҙ ;PUHHԈ'>M`d}NIt`fNr25xi߰&1F,<ƚ{/3ę1.tw.6~rW'װ1SK,½)V9}ervl/'}wKhz ά&Q:K?rNn"dmk>V-nUil؊`IM-D*Ky/H^ 'ZЀ”QyUyI-df_P8P7S^B0N+ZGb*Hn|i oAg[r1AʧJYVWm/qkvOIw2[ y5c̯*>{[キSS \1_Q @Tȓqc× %ۆ7:|#FuN5V7!Qkn ? [Q>UUvzO1rdB,݌?Jk@E ȣa(+]?} oUә٬[A-d:OCY{%t;`hq*NAP(s\$fUڬo>]* ?=e]f +aأ6foZ 9[uUzrNrx %mS2 !iwcFqy":#(sv0e@,r[7fԳ anT\s. /EQѐuظ zy|{6cfʳ"kBYٱUk! J+Њlab}&9õ0#j[&/!@GDj(e>Zl/M=" JQd1 \g;]e c7%ks! r&2=i{\2"5.а* ؊C("Kq%&ʴdZ(_mmYf $nG\~tTuN8צ(,G< ܪtU:"qƼԕDKnSb0 I/u6)j^.M2a{c3A/j>}pE"anKG\ j+#{!{)8Tp5RzwL5?#A.C)Ɍ` <{1.^ +N†ص"N$8aW]{]+b3u;'ј|RT~'kECh]UzS흞چBC^RFwrcHE3Sb,ʺ#0ԳҸ;mGrFDT&OQ+aԽ+X2c7ȱZ4[_*go=PM4K5)ĺXڰK:VӋӨ`ЎUfA{dق/j͖LŸp.WO DXv muW` ݻdY`y?O>$T*ɾo]ttrQS>bV c2b;z' D*DtdOf}()kxi}E<DOv5,r~ kyB%"_NDW #RPwU:UsG;j/FH.'&oVg8+I_{B*|LыIi+ml!0 (7_RXmyꅼ.y5b^y >mbX2by9 *Ji y6gLG ?d2̎,4.;Pn$AB.vgH)'Ȑ8}E9A-^YJXFt#:hk¸#_om1[Q8Yyf۠F0:jALj<5QMY-$~^p8ssa,/׼H1ۖv-%pN}i﯅^ ak ؜C2_#2G$d-;& i$w[e7FY]"~8Wkxse?.܍j!Xc(GqOp+J3z%* &+WHfh cOS^j%-:hI[ 芜D._j7pS2qjC&uTǘtDtAw靆E‰O/ (L t׷[j# fnvX얋"YdDLۂӲQhk{nai^i.4)࿜{q$X3-dLe @+,TcdaOCF\ 1]pzfixd~l $vDx#o?;PcdRzK%i@]Z4)`d: ( Ub3o}u),aMA),*H oɣ 2@l:eXAτAA_u:.5i p4ngi!jc^wx6 !,8ZTH}lv5urX3 u4[!gnS6b<'*SWaS2%UYMs5Ϧ6  }j]UiwΈjEm+! 2(ec b[WubIfx|{~EĄ}mV!z)*Tf]UYA\^˧8>zԎؚ7N9y~*@ב⛳͵':NgbXZ2-Ua Wh~2%'!`2:Kv0R f\ِ{r#@p},Q3ιh"}+*9LI8U"o\p69qhShoT@ ^-"^y2L;)q_}i5MJ gJro&)$apyYAEBmp;5+Q+, {:>wt#㘦㨟*âCpt{_)LCHiq)oȣBbjǟhogu%bhF]VXel{{r"^n \5}p2{>%7vQ P."c2S_9 ۿX Fp%zı7yخj氘8֧t{ ȅ_)~"4VuQ)W4zo;=J ǧ80m]kAgV :? NK'Ec9F]OH}֨{_,AK"@~G,6 s6v<ߋ(2`tR,ZUGJу܌\.9zݸBy#|g6O}X~381euSH' |;vn Xbtn21A \2)ނt [J D-[-zKDTc$}dfr|0+ 5 Ī]B{2`)d7[,SjbhVsc%r഑s]rEF"*w5HMh6X'>4(UJ{D ["ɠN 5YfcApn!y;bO|ܭ䉘ȫPxUs|]Ƿ0G%_6FM ω?\~TB9!p#­*,ϿIR,޹n@)`BâL#d(66쇼VVWrDڀ;[{%nɐPɧڅnu LCr&Po0IʊO_u٫/'зz/MV,[ .$h$lM*N>5/`ރJx_#p5%T''Y f5_@[1DG/J_jV0X*9*|oМL\SU%VfM^$u+-f5)|4󙹐4 xx%;4 zYs) HhlsTz=K7V{*6ů.ʋtz+?ՕXv.nlGCÆ}_]~0~ {LavNxh}USpmUuZW3p_An#vF@fZhً٬ZË0vyU24n~"a0Fm7^D1V26)`6nV ,HT ӡIػ*${b@8o\20&@}՚CI~)&Y-2#P`@Qus}/'o[x%֬W\VFiE#S@b2Y'T-j~[N}*/CEbBݞPݚeuNT=I+ڠ`~)\}rS֊lVvqr$mP Pټ4?6Xw1e_ESk]z=Pic1h$DcQqU76 TEv?G5`K>?b7 sv+A~ٹX3^KdO:uY1EN4I2 zqnk^ ;E1kɠe;cu?:^@Td)n: $3|=jċnǙUM@Dwxem[o[ z]<0A])jdq *[I:!q TaUL}L~#nn0;3ߌ~"LjFB0:x%S n 񥕇Զn"04֍ъ`=AE, ME"hOc9jEiY{ >7($䛾ٜP4g9VK GmlcDՐfEuDg1<!{T2e4bhalQL+:5goq\xp`' H2 Y2S CE֌#jB=%m}i#3]85j9tj~5U4ʾ6fVJfT0p'܋[{yTķYVՍ PMޛ:d<ЋTc곴W CH }5xlʹPN<80y67biSTNPeMͭp bAȠmz.xBKZ0+P?~)VvEިq#(B<3GV=q.z,AT3x䓠n>H ڕ `*|g-SnЙ/za6׮PT"<\PvRdFkQJD{GG,(s@af  ;,;#hKɺG͞lY2h,2BԣAoHb>&-6$ιPϘ]{Jd=% b3 ćGPo(fKN˞*::])xu*_e?(88"Q(d!~rGZ>+պU\%vyx*Wlo0oϦݹM`O 5^ʙOcG` &ksaR_&Oo¯Y#ZdBi{We^zֆvdgGy5PYAt[3'K99uH0!ĥ7!ӶVhU.2+KݖTq*ɽ^( g XggT$*_)+.}~:CX'H3Pf_jEzg]_{mwoxԛgt 4q^^'KAY769jUL(0f'"ap"F֓ O9}-+P~" .3U(vFP; lS|ͅPa^ K47Ux*h=ȝa-X𑍪a!(0bA%Ev$< ׯo #R}lߟ3x 5Ҽ~cGڞhb ľLPה;;e 1A*/yϱ}$nRZNT]LHآ#[́zs|QTW +R::k9oۼסz` ~. VXn~-t{:0LnsZyuu mxp 6۪w}h燐ӢK1QgQ2tôj^$4kZ53aSsVpJ칎 W%B"z q6K"yAFkbIX_4)Xi' 5b.O3 >3*/Pd:r[sVKYrSU}I=C3|Nn Fqr<]9 DoGsƽq֗ƓWÒzm+[\}#He<6vS.iOXS^G%C,-w1=~}o񧍈uhF.&;bJM3Uڃm& n9NIQ-P.|dzU# }'iLj?݇}0U0@oZ;\&m LP[a֖<~IrQ5!m, uuieۊWӦk?1}홶 2[!o}&UI:\gjE`}ζPYO$cG.ͫpUjb:ٶι==$rҚƼGHMJ۩/MƮ_,Ç ,}QkR}nh12 WFun ] ɭ=i,WWڱGiORF$4o0OO۔lA6ʹ۱.KQDŽhr'ؐ?Js~d3j :$!H.6f hX*Ao(F: xz]eg)UwYX_,d!p_lRlK$o폄Jd)AB&\LBNp*Ł ~h }V0kUbN.蛂1*NsEn%1yTqR6i+ -7|38q7>pݚUkwmT;Q&)WfzSW(hWa9-VX})PQ#,ȒmX 9巐l@5,gnB{'z)RnPZNPݕq?Q$ 7H$0fcY{Pu!1Dž8eCt7j/uu>B?EGodHFag0GĦi~KP /+i*e/n:Кl ;nTi) FW.X6cVUJ@JKV]yup'4)ėwc@Bd_jE2HbV؉hQ '&?{G!\F+=+;< ^y\E(7-T)dS?e@Cs#緖(_҆B qx A⏍]w K} ˀ(1_&zU0 u2̪ 8>0g)؆$k$&)U )${e r Xq<]#wkd{sRYT m4<S!&:-ѯ,Pi^7a>ӈ}|.I£qvj\kGnp/}b~i5@KлFyʷL\.~ iq6+bV~=Mػ~IR<7cVӡA@W]>|?4KBWA$Qd"s8~V'3 #ƒI$?E U%:o՝( eRD%DL~'`pQ s& ZM¸oBbTɂm@;ډ4ߦi)-""M7A\E_!fkalǭ?pDr9I5PYhg& xT= o4H`j2K$ lCǏ?1>' LtER;D# r:ͪ0pnBeUƊ968j3Ɵ`W &؇k Xf2z(-5E~ 46ßH^λF_ć㑆]P {X`VRO(Z` ӁS s2woȎoNJ'5'.AJVT]7dx {ӛI8MC$ú]/7> @qƐB/=_Jv0g*BOĢ8[ x* n^a!qmD.x ]ײ"[_ f [RtM.| .3;p NoU"y̘:e=>L?\HwOm{-DoN{ip ;V h~PMqfg)>CF|iuZڻ?ީߝԊ YbHtlR\*k2# bOɹ@ˠH( &df_ Q/ʛ:nLC& #Ù0o}8 $wjbP4Iݺmf(50\NiHޯҞeWD/,e@[16+9P]g6$'EE"JW!=L#q?86 x,T dOb>k17Dal !5lY(MDg>yKe^-rF&hpj1qx(<73f\9e\aN*ݺ#ɠ:)N8f5+[s ӗ9#m4ᘩY<#jYP`9JYm J}j`'’8nڴfP@eAcKtؘM? FtU,)b{g^ g0əaƝvO>+y<(WT?Cܭ2󹪜 * c 9U"_t&ockk $P$aOMDZ?mg-93l= y8Hd>FSKﲖ|ǵ]bHg2rx($bA)7vE%7kቢcX8cN-k'lōPX@2Р{(Ol\OtXmwv3]e -4Ozzb4Z_J0|4~׉y/vf1 :.VЀwGN 1 e%H žkz?ͱW9~a?&sسeJ$<۸={7^Q>Ĺ݉kc@Ǩ}#5XI#-5΁{W/laP= 0jQ^ ֌IHȶ᝚P@V(V: ׻luØE> VTH`uZPFhl ]Z{QaGCi{R{\Ƣ/T]g;EIHOٱ"t' ([s(%$Y\w.Zny Xڟ=)'5+iYH.)2qfk}y{,g%Bn~l##u|-} @^ŖDaU:Tk.`%0􊑞/ Jl[>E v-Yk=Zf_ {"-XUȔF]C1a Ι`{\mSonpjj,i[g-H LB0&~I ըP! 6jm*\.~7:%1VjqTnS}̚Sk;ZHӝzg}3V[&i݆Iog蠡IPd8.U{;w|3ccc^D3/Lt[QPsJq=2MHq:l$j\0G^w=J~&>H₳8-x @Jp׾Bř u4M]&+U6/Jjav~,˵Q߿+0MkZXznJ33CY͛ӚǵDj|AER!cHB༵/s CrZ8r y;BC{t#7QMN}$4.ŕg%PJm-$&hv,BFYbop,!ڐ6`B1 NQGRY,b`xIG#B#7oN'<\kKM*6l/Jc%Ir4RS t^fEpwE?{zu}0KMlF-2<; e9G5_pyJ:3^Ԙ)㕥Vn3,kĨ4[S޹L>J{WQ"tow/h@*yk:̠'_i4D(zPEݡ%t+B,8g짔 ΂n3w \+UU:};I|Cr7YN%xK6(1Ƥ#ʠփ/Nl’>3W)VtR2Lĸ_QqXݑ~n* %WC07bnT$x~i6R0VEQFY4Ani)9oI%8 0تŘh/֨1"FE$gߦ\4}Yg"HQHt[̞WzEVr5`(؞\0w8kR[ SE Q$Ԩe<3Ob?r Fn%B񭅋M-|iDLA+ЁEaJWu߿(>2ٗ w{inLY\= ~dZ_k;?7WT\8#׋{_aC}ڄTX3elk+|FƓ`*IMB>I}]')$nMߗs'SJ+KZ UM^38$Z6w2)o㵸.zED_~x4\gA3"dHx:h2pqsP!~?(a".=j,tN>l6rq#FvNC(OOX$Rx.Vi2X"= ~f#*C'"L3[/>䫣鐘y .c4,3u 碝0ӝz`)OŹuXNۣ.VBq Ła#/$CNHyyNɁ1[I'JFerLdJ*ˢb2>[ 0Υ,irC3ݦjΤ$iÄ پJ?=gA 1ܫ#+S&jH9+2co(/ecx3؆9RW;G8#b`WiخC0e; 6D77H;D;%,AVFph<Î<1#n[C*P~pH@:Z  .R /9˲аەf]  OUlwD5ȵsV˭I2.6[tL3dZ5$#lȱ]PtʝT`\0ZP0 ~ Y"}7Uh̔ :A0Y:{uskK+l؞h A+_ qItsG۹7QQ򺶄4p<|9Uܽƀ9ڗ<ƟLO@ٗ>dSrx8T T>`N<[AO+;lyiKh35p3.O͕4(PUJmdgqS?wtc&EtaAyxԬ;,AɽtWڄy7IE(a;]['ޝȒ"#SS)'Pe-Ruib:7=̲%-&B$cCkppdfcmXDfп*,ʑ,%ҢI>ZCJIe hJ-L~T $h"wz 5( 34w`J}Q@`p}VRLn=`i$khi6OpTA2' c=bOeu~|*f}0_kh!3cr]ֿ֥Hj-nho.x۟Ckק텳tQQQ~b5uGC3I'tKwlUS@h4!mtP*c]^(" fQUfoNԖ&' I<_g|L鳀NN:?D,W1|KX?F0jZ'~#m{:Kaa<}(/߲U+o,wպtb6I{d!ڨ6g2oAT煑 r3R]UN>i|mҺ \{R 7,>٫6b,!Cb$Y#@gUՑSjV7"1Z{#:nqݘ2wtk uzYrn GthbqAx`Z> UY|cD~vES+14[o[=3ԑer(^_2h7b}d%y7V=ׇWCn1B~ݷ0opR{~#~^me3zrb;0~k|zZ$ް#D pG.J^ڀ3+Io%nIH1d~BKSX1;++* ~ՃMǍ;/ r|]Tk$^vC1P&ϾXg;Rtsd107t75΋kc#Z}#+WF|"tMȣzxy$Kwk' .μ4 ݼeJd"esb âq/׺Ri!?EX wQ2 Y7`zXrjh*呭qY RxF]t*G9`N9!@7㢊E 6JZ?WnxJDTl= #pZtҢj%4YuX>9ɖ˽K-A`k}QCKE35ulMޟ[:G;"J\1~xp D7iQ1'QNi#!ceͬs1w-,3x qo6"!ftRB5kZqmmE4{nŎSkqr"wJM)n@xӂzڈJt䢺/&@=omVދv̿ Q&%1&)Jz$XdWB,Mp.EG`%`$Sh90ٴRn?Zw jsHuxjZCSةS*.0mv>/GvD3ƀWB+! SzH36"QCE(3llˋ:;/]ڮtVe9/|;y9o3A5@=Ғ5mXfLo)ׅXЦ\qsC퐦=u :xwl!PD`uP9`Rٖw,C:uFo-F3|)ǿNF}mHoy]c v1W> #Xh:k#0$dh:dYG2ph BLt+Y?5'dT#m: l8s`#`Wօ-'N{5OL_M U/ĤxmԿn 99 R{`g(N/j毮:dQZap(zeݭLl,P = 3 'PbpPMW7)tZP=W ~._U> M?å ]_ Y})!O .z9ӎ)ג?\*V(A!)ZrzUOzWdcK93@A1k?+ޡ M!Xq^2Ƅ~m*t3$l\9=|lT+xQNSDnﱣh^RDKB%:7jo[հReڝˬyսfRgVz͙Bt#Aj0p~TPOF7( >b$m,ݤ3Ɇ&iDC L=N8mwF9 u}(y|s.Ր2$~( eA dk.KN^ki18 KK_A֞  ~ e,0BT?7I:I[wc$7͒eh$^7!VnWk-^$Gn+ƿ%Ejv]AQ@;3~v~ ?)r{*M*9CHzav'18I9Xۦ!Nog*e9 6;2trr; VAg}<uLvi #7+i St\OEK-j4ԇC.a[G&ʥE;7ŋVkE[${8K[@GXFO FT>~"j[sk/[$ͼGH73 GQ ipϙjp}Ko3tICƠ/_rUȪ,hQ֍6_G8Ĥ}=ΠXo^9wW^q!뵾eVޱ(f4I(zVk#C|Ow*l%Ǘ_i12vziqC>t7.Yuӿ6?RX!u?jЫNDo¾5o,?$㿸<@L|e3WY=$,Ԩu(m._e <wi씦U)k`wlRh<&87g^ymXVoevMX~ЪO_6wNO3s– 7;wzIyu7lN\@rK]2|h*yE@s(Aн$#&-ICٱfm ^xtζOUK wn\Q1dFE˱VTѕZc6=7pW\A!+y[Pr6*k]Fߐ.vƷALk+0!%Pk*> ?N*qWD᦯Dp޴R[BI&|D찝DeȦMZO &}fs@I 2J ~=GD6Fovm? |jA/$նGDYQPKWľYҵ1 \Y{ ܟtk,%j\N]iaGaZ̑`w"܄0k6+itK`…IrfCC)έЬ._˂9u~a- hi7^o>#r݁tߎ8mx!H RAÕ#qə_,3(c%.{룰@4#_ @2NW)4Ӟ&kG# KB[Y(M3lH*O ·+qBbH(A6ʵB<L(>% " WH@0u]#'<{?-KN9c "Raij<đll82+Jo<8;c& ΍!';+?tK vyxsQQHr9~^ Y|GF֨/Kj[pݨE ,rg&Ϫ;zQ2H .Cj0589rq Bl(aI1 N̼eɵj3 .^,(cwʒBUŏ.ܴ k&^,eAIWAnL4<1jn0ScV&` L8%ʻי?& +<~eu֖.#,u\rqv|-E rOR-NZ"\,^ dwۻOR) |Ɋu/J:%2{XSϫ#+ 6KUqdxl7GyW#.\1!ՐoW$8QNNmVDZbJثϋnFgժM 4tXşrwFfd  uR5{q!ϕ/:_46<6C{ގ`82űpTO@_:) 6Z[GαM'=Y}flz{ȘRqQ\$ϾOix_e16I'+W<͌-Xbc,rCo)o$}nXMvF].wpmF`gϑ1^VHU-o(tm3:Us䣨@8Y\H0k`NN9 *.<7=@yxm/S8-IUM#A.%$b81'HhfJܭt)i3-[ŭ喐p]z~͜d{M{L(2JrSK|)S:Vc'9 0A"or6fc-h3Nigj^}cii/M/8B9;5YF ߣ).,*czyOD&l&Cn6Km^8|أx,HI;-Fxmr4/kN2y0Dm}1Yb(CJ=h}`~j!*N 2LJ9ߡ 5OsWԾV* H& ܘ.5yy;|h+ٙ/T͢g LH 0:]Xd76kDٰP1a,H/-ⱿS#* "n|Aj?| {1TZ_ps/쿚NvrF#WD;93m+45rCGUHҬ:$p'bM"Ls*77)Ja;dv &Pٖ E#NjknHEA/{mMjO?6fQl.P}QOí6}l6 Όe{7馿2˦g0U#m}5,eښ%1KXV3E[/L#DZ*߬j4l/}h}&ݧײ/&輍_h<7GI2<̛deG2Fo,ԩ=W 05gR >wWS oX&M]r5ЏkSM RzEJv; ԩ G; 81: ⿽'X9Wjt&5 flAnpUc ԓ)&);l5id3:콭ϺUi0K)]R.gN`VsQ;7(GW#BQpؾLOq];TU2iqU/_d hs+el5?Jsz³W<.}UA8gax}ڶun1 04XO2s;vC?m%y\S첻FY#%ٶ}͘I#Z&PLӌL ! l`KȉG@Ҟ=2٦$|(ݱH z%{2"_9j@M8nl!%:%Ҭَ*?7S˅>hwU!T>W)]ڣK[5 00JVV4(k+ŊF z om(3,峇+ *ND5d -vTn3xs(0 Ķ}YJ vY1e /hܦ\=C@Tg82"%k3O.__b-erQ#%~` ,&_[$*K,=`惼0%K*&jŵ}zW5ʨPxo;0Av2 @ĵs ';mNj%mD*% OVc[yg. PQ8wÂeW?*̅lϿp:{O/A>MIk h t x_ őo2k$ uTJuZ㋫QpSDpȀ[Å$ضk@(:;1ruZ=|b>t y5$3l *}<-+:!N7YFNj?iUFA9+Ug4T~ u޴)jY{*;[k =mt^҄@|i-{paF6EQ,5c4c@뻠5ɿ/C^(lזg!_$xk rF6^ UGqK!Vz+tAc ^#4bUwQUiӹ#;Z:eބx3A4!ESrJ} Uk](L2(72 ;dy f)C@ sy|? TôrRCi[|zz<4}ZڏmP!52Bfc0r`>(>uLc 7FZcq\%)}A{Z ;V>g&`<0,z}=ԻtBuYw<pщ9"uD9J&a#Є Sy *,Ci/<[/435tI؂H Z#6 : S:-V:kQ/[A#[ԫ1> .;>̭<^G?b\ ycRsM$Fjx<Yfɑ^QFƵAmҨF:Oh&[/J/3fڀm(E̐{; GU7޸QזfIJOT'b6F]e߀#&4/̤lW_ 3)^lT0AF?͈* XK{^K([D3=))-khH-sBׯ\ezTy?])/>^/AߟM>=8gQQO^Sr0y}˻KѦ#? ܽ ia 0Ʌnl k2Ft"? DR?k>G` Ngbm{X )^ ,LUg=#S=SXft(DM:ƌ'W;הhkayiNu9b%߫La~)bk Rυ1w(|Q_/"iSiO>FM4N>tN\PHPaA2ͨKD - F7jx=-Ob]pX]{4W$Nk)*?L$cmjYB)c@|dp伧6hPR l`Exf&;Ӝ1!G?"[D(b-9o#^5v6?)CL^2&yIXAZn%J.$NrBhYija:@NRR%}r4q*ʩXZiB:Ap;Ӫ;D\>`4i$ sV6Z*8$Օk %*=! 7KICyi ֈ4_5͸5vV#MMI\wFS74sj%iHh$.~|' TװArm|. 5E ,87L?`ɺ9#)>,u`=WqP3A듖 dy2/"reHج>NDqd!s<݂|cГUe7{j<@'pF.͆MmZ s`=*Vq#X|ʂX_NpBOlN 0n|HPJ0f[>Nķp {$rI?DtHh 8aw,&T~p{פg>{e&iNyC |cSFeg $N&dg!_O_ӰiQ#\Sw0쇂:y~>#Ib[C=:;|dQWW/Kp*QWL|Ð$@6y/T3eD r\]czs`d%yMr=Q>,)Β9o!H]gF7Fه{m3~-Q})Jjr"\ǗZ<Z7?>{Ccr T0 n!O$]z4K@Bm|z o?*甯S8\ʦ5M[VG# Q`.^$x &q lA$en#~ ۓL_.կʪvN䱖CM6Ϳ,݈V Vo+bJR|݄h3ol"T"DT,۬v.&QWTu Q:ѣ \1h*>zcrۉ׻O6CcK8]E琿ܶlb¼8Igb"Q;2]t^Ga;(>  -TU_JwUaEx  67AH {L=M@M5E/1Li)6ƥP3UFȓ4[iѲKq~5'$7'\ݽw;|c3B_FbXpkg2G fiΣE3U T - A %@'jc.qrВckr$3OѦ KxqU mx*P` 6W0G"R2oX߲ܱ0:o$@z.K!9vN/tXي, yٱ:UPMa͸, އWg$&5~P]GOUy8\ H>/vAqsIb>@ pgjŦHOѶpN!؜Qwxz]6"lު3صKVKz ?5^:16ߒMd! Q"f>Du-Yː{M7v'҈|>pHv$]l"@~ M҆s@hÜdK%)k :TW)R$Vflb`s|5y0S 05=p,_v[|tzZP)m `ͱ#h*Gob0w%ɡoxj=ҢՓgQgxf*,_Om)#Y\2ҝ\QpMXʐ@+ˡ`-DίǕ@0+LC4/ jb $`:uºצ, &`ɒ&ZeZ_'<| YhOMZi6s +Jx97̘*1)U+,6cePdEAm A<\Q5XpMJ8w^\~̹2B_bY-/T(cn6O %zAQJOY/NwmHT'4,itmku<1DO@ jjw}έI^*үZv pEe8bmVjۛ;'1'bok7qp\׸oؤ(N`yyjh'eg0kGjR܉զѠb,tEtmÐd)^q*vվwT}[e$j:9"}{]: EuD695m) GL*>m6=|ϫaBKJPZ 1knreug׾EDjW,DQoP;pazn(X-2jR4ʜl>)MR)Sq}$9:q^% x?2G99 #4ƿ3 xfq t.A%ׇl:Y , W[vL)֝Q1G,0#C=@]|2CP֤Ȳ0P-]ߠzc`Iq,K8ffx]a7BIK?Ot }hkѭٿ~eyNڽ\mf-$01Su$H»E+ $_ p Z|+&5r> ZCFA0 Zɠy (0o tp>\J鬌R,@ xy.dͲZZ`[}j~ԋs J {U\/]ճ\wCjBܘdG s_Sb/F *f*M٤ B!6>b%R=e@ZҳrYd^NLVSeqtطpaΪVwAn[}{sUS(1l]!t$90\Ռ#W,oH^ EST"f8l Ns2j @>My+VNJ/ޢfؿ=c4څ_t`^l4eUX{ߔ@RuI}B㯐VhѤPϝ7k>y-ʙn^T((oGKɄ"DW8nKcWvDMǷ8|.c3ÔT s 4R8h?>p7?!o`jEt!n|JIUiG,Y`kpc4hzTܽ?6% 5 1@-nۃ ǧui`W>V, +@~1q^ h 35[SK`⢼K]Í{pS~]"p$m˚[:hAG!QuQPDlqf- $Y}ST^Iv!!ݒ `C#8 D"NJ^4͆Q'h,[%'~}] ǖ?D] \LF3/5^PXOP2rvƢКpepq |e1΄/Xӌ52yi(ܶն/̯f20S̅؂ܖ]Y ~Lܚ%Kq8=0GnKPCr;p 5~;LfOz ]01jBΥqDӒ ߽PSDey _0|y^ ^OCydJD~;,]:L:e K1ӄCN 8p%0w]|C>5tH"^"o^cߘFW*Yls#ض[ētL?H88AcgVq`xKu^le3*RWNv/P M4YPMEҞp UWj?U!ΰw]k|_{1xT qoN|=!Tg[N W~Sr83l2*nG:Sffo@U J,B/E秄E <&0j IJ\G tdks51ЎػFRPK^$FhtAP)Gn"ׄp/26 ~~&}yտwQHB c+ut7 6[ a&rȤKYKpE_ZH&-+mk$"oX[/Y8ZCL#xHD nFasԲJ蟡y#!f*s([p[dcĦm1@zHf Z .2' hDE='J.+sWZ;m>^wRk^ɋ 3#AbʔeI}kd/~ަP?`C>mP?tÆ9.D1'eoGQfl%4)x6z|(zp71-G>! d3[&/^uߋz>Q;*u-K S,v+H,Q̓S $Ff V|vE͉-ckDHo@W! s 9O*4юO4#0SYrQ0^3/ ;p[Z7j1iI~W;^nUhBjcJY/Umlli ~K綩K;^I@;b-. _""n;eJyۏxY?^DpG׷E/x(D{MV75;Ɗ+.Y">X]Ԋ2,~pj{0w% 3N2 Ax[sȕ(X$7J'';>ު.'}P"Z\~W.k{)t!UJLs }'Y!e_85|ETO[7 zO0(}t> $Ab-j8haύ*a>/AWڤL _4n $78<@Mzb靲'kO)Ê J +i[>@2MĊkbO5 p&MZ˪=2MED`~2J<眹jtRQڕ^ ݺ^ "P l+ @I0JB>wa$Q:al d@O^b^p6yflDC"hOh(Hԩ{Lή_swV{H K6"IU=e:*B^eqMV鼱},GgD\duTlyae_5iȲ}Nfaokx&Pk54ugh; x`iBa8Tu+BmyՓƫ饀5,lI߷&A=6FE_zZU7_)<yeI@9(.8AىȊ0{C[ hK$3g>zLjHN"|خ ۪&X}1ta ݖPIuch/w Y'Q0 3W˞Sp_)/#X}gѩ4(PfBPf.* FveAv_$S>Ք 쇉o0ѮI ɡfJʳig†!.JVR\W;SuK1,`9СQ߹s[mx*0rW@{X̠t!>[3"TYѭ)sKO&>Qh C((6rDEaj} }|6|J8@>M:b]YǨv}:(V{Ɲy*KhBy2El~~6 EI\8> C0z&@\*V缆DH-h+A%̗{Ӎ=3D9"Oq ?L][HH1N=e Hq qZrk\)(?0G &"ӣxܒڪh]uG*.>Z{N.LS!xE3vπZ\n-rkta\fA&!E3KQ8ݕ}ZQ#}b'U]x"2K]&ZpnY2앂>UVй-0S6|1>Aw1FK潢nSMA>0e9S5'sIi;u2F7Ⱦ֮a,7㒜l9raG^n__s`Nذ 1>ЊZ]:nBDu 5=q3xsZ6xK_$?0y1 }<×Sw4{$Vd}ar mBDW4T)r^kr4̧;s (]xi$@.]'G/3!+ CD ꈪD4x~iKX;Fj, 9H񦩢vT^E@r:ANʁxpw|CrTe)ض s`ۥ3jx`pC!hDF1CRɦ˵"3" 44{8$\ OTuE9jOM{G1e V:e^7Jd`0lqRИ ҭ @Lڊ#(oTU.'ɧu!VMɹMLcdږ XiZ%I|1x]nV|Z> 9Mka৤A-ƥF8R|Lm;=d~׌V{]j[0k:5'sQA2UYІ>(^+Z0`j-m'_هߺMl4r*>?E/h4 Eh]Ux,d4Y(aLwsQ(}Р% R/\Iqkp+.}/D~m]ũc. c $Iܯ| 󽰝К2':\IhxV+,Vz{[u#yq?~"吐#~"!P{dTcLG$YHE#"/HKw05_v~%CƴwB#57d$0$@ /4)HހI_,G] cWе8b|΁=LyZ"U H9dT'>'_"`.î x5 MReb[ħh}f0&wPgSˀ_4Jp٦'G>:=ͰӾyT궣?j :C<4#*%zI:c){Ag=z7-G[P%U\"!=ֺCLi:QJEו)t1SzD޵ iULEKs%.AP^S<^?gB/_0;y҉]SU3٭0ۼs[*=(= $etI*}%ݭ~'V?Da0RJ".}&IM- v,IJO.9mqYPFu.& !K\kT C%]AX:77|Q($j6_+K 0c32QlbIo0<'=el2)T5hVNrV?)?fw*,D nur8dfLύ$86ƋX3z'3y1SE:7:cbhnf@i^Q#cB>}|?Џ8gG(B ~[qI$‰li5"H%q/Chs%g+ʙakZ.D4HV:Z,|18Ȣ5FIY#]dW7J Vφu']6GFcް_Hǭμ``OfQL ^)Zn<>P!RZBzZ׊45:vڠ1 }ga##~ yTh=8ۊg^ڒI?o _Eu{b@m'2۞Χ0l!pU-mwmi$ (dObkHفNGvG`+-Q!YÑ܎.oJZaEL JGԸt.Hka@mR@A%}Gy2A?^6 I& g-;oϮqȦX|Cd |PKJu4݅ 2RywŊKj:-줆,ݜ7 Hu{|t<5M{s:QVZ ]o5OF|)^ Q^I3h 3 Nƒ(TgхXFKS, ȼC^]dJbIGXE?uVO ;eO ^Ggi臯E@|KcX4{:ev `Hfz- 3%-ST#)?w90WJO(z'IcGEX&6O<BGHwW_)y Dƅgr= ~ l)$5\i0Y/fy"Cj#dbBzQ0#s)]VQ\-TnߒZ?7A8䝓dC|a^>ywaE]Q D#^m>vC7Qa%VgRo^~2( cjAqHLY%t𷊳.fIӜyy{F=W"KWI  VatGQ_L~Ms>EF:F ҙ5%:N+%ZA4t$ R xL\kZFIHҋp=^4ƔhkIS\to(̬Gщc<{VaXƔ~623Vq{gU:f :|syƚYbV1VB϶o}4w=w?{oן1P&$GH#/)Wή71oֿ~{ֽ6ËxG -4T1bƧw!ڷ=[*VA%Fm[*P?\?..'5gu'(ƵevhSInج4AYq93XwkVOkF=W3qʒ<%r_n^Ir^Q"CAzQ29"~ŸEkq&36 ]X?CFnn& "Xsyd6È6ZaWTa j1VOƽYWe 4P#_{ݛt춄?iX8<'FE2֓4SsGoNgۦLǰ2[xa _>N`aXcFgA5'Fo)m{a6u7A'Rx2a0Cq)E"ޭ>aڹ2t$3f1%#noJnA9Un6֬4hÄ|؎T 6xhC-Mpl-ς [B_24J* *9+r,ALѠ؍گyZ *Q *L:ᾔ|G9︙+vzؾ8yFKSbDݒXi5p\p.Xiq36ZVw֊G=G=¨-砳Cŋbb pߙv⍵ካr ¾ЌK]}fMW6 iFxzr`pΉ&cQ 'rY }N"! /.:+~|mGo2 + {F-5N"+\7']r`C.X*ek,#$bd W.Ǎ2 'VwjW|(5vzl#QYQy%Rf#F8xUSHidDj|7b-@Nzĸ %_6$ne a)*p?G3M ·A\kW׋W@f#ԗLjׯ=]ͯD"#ك]̻,_DKRe]In%|4