ntp-doc-4.2.8p13-31.9.1<>,yމ\/=„ ,or  ,1Gا\/E)2U<1D1|h<4?$d   C5 Nbv|  >  |  3 49T>DDI$ITI`I(I8I\9K@\:Q\BF0GDHI<X\YpZ[\]P^ bcedefluv،[wxzCntp-doc4.2.8p1331.9.1Additional Package Documentation for ntpThe complete set of documentation for building and configuring an NTP server or client. The documentation is in the form of HTML files suitable for browsing and contains links to additional documentation at various web sites. What about NTP? Understanding and using the Network Time Protocol (A first try on a non-technical Mini-HOWTO and FAQ on NTP). Edited by Ulrich Windl and David Dalton.\lamb0367xopenSUSE Leap 42.3openSUSE(MIT AND BSD-3-Clause AND BSD-4-Clause) AND GPL-2.0-onlyhttp://bugs.opensuse.orgDocumentation/Otherhttp://www.ntp.org/linuxx86_64gQ2K*1% ? vYfmf0mpIZ#h W 6<,O I&Q61S4iDv$:2A22}HNy-B4 4 y?<N,3%)> s -G_W;T(PNqWh fa) H Ire A ) S 3DQ,\y x- r4(yE35  YqTlL|BE)7!/\ wj @%hFS,fI6C#(8M*0s, +"G|?`!@-zE-TY(3#U L7$)q<Q",f< "V#:c' !|A@20H~IQI 52O BnOGs/O>.vO*a^;X(14LH!",wQ%/,5i*!~Oct*m)|DAAA큤A큤A큤A큤A큤A큤A큤A큤\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\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.2.8p13-31.9.1.src.rpmntp-docntp-doc(x86-64)ntpdocxntp-docxntpdoc   rpmlib(CompressedFileNames)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsLzma)3.0.4-14.0-14.4.6-14.11.2\M\n[ZX:@XۡXg@X<@X43@WT@WPW!@WVVVVO @V2 @VBUU@UU@U@U>$U#U@Tء@Tи@T@T@Tk4T%U@S@Sg}@S_@SRe@S=M@S9XS4S4S4S@R@RRfhRQ;$@Q/FQ,Q']P9@PPPkPO0@OD@O O O O N1N@NGNWM)MK@MM@MJM# M# M\@M Ls@L@LKыKK @KKD{@K@KJ@Jd\@J\s@JW-@J;}J{IA@Reinhard Max Reinhard Max Reinhard Max max@suse.commax@suse.commax@suse.commax@suse.commax@suse.commax@suse.commax@suse.commax@suse.commax@suse.commax@suse.commax@suse.commax@suse.commax@suse.comdmueller@suse.commax@suse.commax@suse.commax@suse.commax@suse.commax@suse.commax@suse.commax@suse.commax@suse.commeissner@suse.commax@suse.commax@suse.commax@suse.commax@suse.commax@suse.commeissner@suse.commax@suse.commax@suse.comseife+obs@b1-systems.commax@suse.comseife+obs@b1-systems.comwerner@suse.dewerner@suse.dewerner@suse.dewerner@suse.dekukuk@suse.devarkoly@suse.commax@suse.commax@suse.comvarkoly@suse.comcrrodriguez@opensuse.orgseife+obs@b1-systems.comvarkoly@suse.comvarkoly@suse.commhrusecky@suse.czbwiedemann@suse.comvarkoly@suse.comlnussel@suse.dermilasan@suse.comcrrodriguez@opensuse.orgcfarrell@suse.comvarkoly@suse.comlmuelle@suse.comlmuelle@suse.comlmuelle@suse.delmuelle@suse.devarkoly@suse.comcoolo@suse.comvarkoly@suse.comvarkoly@suse.comvarkoly@suse.dehpj@urpla.netvarkoly@novell.comhpj@urpla.netmvidner@suse.czadrian@suse.deadrian@suse.deismail@namtrac.orgvarkoly@novell.comvarkoly@novell.comvarkoly@novell.comaj@suse.devarkoly@novell.comvarkoly@novell.comnovellbmw@lsmod.devarkoly@novell.comjengelh@medozas.devarkoly@suse.deseife@opensuse.orgtiwai@suse.devarkoly@suse.deaj@suse.devarkoly@suse.devarkoly@suse.devarkoly@suse.devarkoly@suse.de- Update ro 4.2.8p13 * CVE-2019-8936, bsc#1128525: Crafted null dereference attack in authenticated mode 6 packet. * Fix several bugs in the BANCOMM reclock driver. * Fix ntp_loopfilter.c snprintf compilation warnings. * Fix spurious initgroups() error message. * Fix STA_NANO struct timex units. * Fix GPS week rollover in libparse. * Fix incorrect poll interval in packet. * Add a missing check for ENABLE_CMAC.- Re-add ntp-openssl-version.patch which was removed accidentally [bsc#1125401].- Update to 4.2.8p12 (bsc#1111853): * CVE-2018-12327, bsc#1098531: fixed stack buffer overflow in the openhost() command-line call of NTPQ/NTPDC. * Add further tweaks to improve the fix for CVE-2018-7170, bsc#1083424. * ntp-usrgrp-resolver.patch was integrated upstream.- Update to 4.2.8p11 (bsc#1082210): * CVE-2016-1549: Sybil vulnerability: ephemeral association attack. While fixed in ntp-4.2.8p7, there are significant additional protections for this issue in 4.2.8p11. * CVE-2018-7182, bsc#1083426: ctl_getitem(): buffer read overrun leads to undefined behavior and information leak. * CVE-2018-7170, bsc#1083424: Multiple authenticated ephemeral associations. * CVE-2018-7184, bsc#1083422: Interleaved symmetric mode cannot recover from bad state. * CVE-2018-7185, bsc#1083420: Unauthenticated packet can reset authenticated interleaved association. * CVE-2018-7183, bsc#1083417: ntpq:decodearr() can write beyond its buffer limit. * Obsoletes these patches: ntp-sntp-a.patch, ntp-warnings.patch - Remove dead code from conf.start-ntpd (bsc#1082063). - Don't use libevent's cached time stamps in sntp. (bsc#1077445, ntp-sntp-libevent.patch) - Do not try to set the HW clock when adding a server at runtime to avoid blocking systemd.- Fix systemd migration in %pre (bsc#1034892).- Enable experimental leap smearing (fate#321003). See /usr/share/doc/packages/ntp/README.leapsmear for details.- Update to 4.2.8p10 (bsc#1030050): * Sec 3389 / CVE-2017-6464 / VU#325339: NTP-01-016 NTP: Denial of Service via Malformed Config * Sec 3388 / CVE-2017-6462 / VU#325339: NTP-01-014 NTP: Buffer Overflow in DPTS Clock * Sec 3387 / CVE-2017-6463 / VU#325339: NTP-01-012 NTP: Authenticated DoS via Malicious Config Option * Sec 3386: NTP-01-011 NTP: ntpq_stripquotes() returns incorrect Value * Sec 3385: NTP-01-010 NTP: ereallocarray()/eallocarray() underused * Sec 3381: NTP-01-006 NTP: Copious amounts of Unused Code * Sec 3380: NTP-01-005 NTP: Off-by-one in Oncore GPS Receiver * Sec 3379 / CVE-2017-6458 / VU#325339: NTP-01-004 NTP: Potential Overflows in ctl_put() functions * Sec 3378 / CVE-2017-6451 / VU#325339: NTP-01-003 Improper use of snprintf() in mx4200_send() * Sec 3377 / CVE-2017-6460 / VU#325339: NTP-01-002 Buffer Overflow in ntpq when fetching reslist * Sec 3376: NTP-01-001 Makefile does not enforce Security Flags * Sec 3361 / CVE-2016-9042 / VU#325339: 0rigin (zero origin) DoS. * [Bug 3393] clang scan-build findings * [Bug 3363] Support for openssl-1.1.0 without compatibility modes * [Bug 3356] Bugfix 3072 breaks multicastclient * [Bug 3173] forking async worker: interrupted pipe I/O * [Bug 3139] (...) time_pps_create: Exec format error * [Bug 3107] Incorrect Logic for Peer Event Limiting * [Bug 3062] Change the process name of forked DNS worker * [Bug 2923] Trap Configuration Fail * [Bug 2896] Nothing happens if minsane < maxclock < minclock * [Bug 2851] allow -4/-6 on restrict line with mask * [Bug 2645] out-of-bound pointers in ctl_putsys and decode_bitflags - Removed patches: * ntp-openssl-version.patch: fixed upstream * ntp-processname.patch: accepted upstream * ntp-trap.patch: accepted upstream - Remove spurious log messages (bsc#1014172, ntp-warnings.patch). - Move ntp-kod to /var/lib/ntp, because /var/db is not a standard directory and causes problems for transactional updates (ntp-move-kod-file.patch)- Simplify ntpd's search for its own executable to prevent AppArmor warnings (bsc#956365).- Update to 4.2.8p9: * CVE-2016-9311, CVE-2016-9310, bsc#1011377: Mode 6 unauthenticated trap information disclosure and DDoS vector. * CVE-2016-7427, bsc#1011390: Broadcast Mode Replay Prevention DoS. * CVE-2016-7428, bsc#1011417: Broadcast Mode Poll Interval Enforcement DoS. * CVE-2016-7431, bsc#1011395: Regression: 010-origin: Zero Origin Timestamp Bypass. * CVE-2016-7434, bsc#1011398: Null pointer dereference in _IO_str_init_static_internal(). * CVE-2016-7429, bsc#1011404: Interface selection attack. * CVE-2016-7426, bsc#1011406: Client rate limiting and server responses. * CVE-2016-7433, bsc#1011411: Reboot sync calculation problem. * Fix a spurious error message (obsoletes ntp-sigchld.patch). * Other bugfixes, see /usr/share/doc/packages/ntp/ChangeLog. - Fix a regression in "trap" (bsc#981252, ntp-trap.patch). - Reduce the number of netlink groups to listen on for changes to the local network setup (bsc#992606, ntp-netlink.patch). - Fix segfault in "sntp -a" (bnc#1009434, ntp-sntp-a.patch). - Silence an OpenSSL version warning (bsc#992038, ntp-openssl-version.patch). - Make the resolver task change user and group IDs to the same values as the main task. (bnc#988028, ntp-usrgrp-resolver.patch)- Keep the parent process alive until the daemon has finished initialisation, to make sure that the PID file exists when the parent returns (ntp-daemonize.patch).- Update to 4.2.8p8 (bsc#982056): * CVE-2016-4953, bsc#982065: Bad authentication demobilizes ephemeral associations. * CVE-2016-4954, bsc#982066: Processing spoofed server packets. * CVE-2016-4955, bsc#982067: Autokey association reset. * CVE-2016-4956, bsc#982068: Broadcast interleave. * CVE-2016-4957, bsc#982064: CRYPTO_NAK crash. - Change the process name of the forking DNS worker process to avoid the impression that ntpd is started twice (bsc#979302). - Don't ignore SIGCHILD because it breaks wait() (boo#981422). - ntp-wait does not accept fractional seconds, so use 1 instead of 0.2 in ntp-wait.service (boo#979981). - Separate the creation of ntp.keys and key #1 in it to avoid problems when upgrading installations that have the file, but no key #1, which is needed e.g. by "rcntp addserver".- Update to 4.2.8p7 (bsc#977446): * CVE-2016-1547, bsc#977459: Validate crypto-NAKs, AKA: CRYPTO-NAK DoS. * CVE-2016-1548, bsc#977461: Interleave-pivot * CVE-2016-1549, bsc#977451: Sybil vulnerability: ephemeral association attack. * CVE-2016-1550, bsc#977464: Improve NTP security against buffer comparison timing attacks. * CVE-2016-1551, bsc#977450: Refclock impersonation vulnerability * CVE-2016-2516, bsc#977452: Duplicate IPs on unconfig directives will cause an assertion botch in ntpd. * CVE-2016-2517, bsc#977455: remote configuration trustedkey/ requestkey/controlkey values are not properly validated. * CVE-2016-2518, bsc#977457: Crafted addpeer with hmode > 7 causes array wraparound with MATCH_ASSOC. * CVE-2016-2519, bsc#977458: ctl_getitem() return value not always checked. * integrate ntp-fork.patch * Improve the fixes for: CVE-2015-7704, CVE-2015-7705, CVE-2015-7974 - Restrict the parser in the startup script to the first occurrance of "keys" and "controlkey" in ntp.conf (boo#957226).- Enable compile-time support for MS-SNTP (--enable-ntp-signd). This replaces the w32 patches in 4.2.4 that added the authreg directive. (fate#320758). - Fix ntp-sntp-dst.patch (bsc#975496). - Call /usr/sbin/sntp with full path to synchronize in start-ntpd. When run as cron job, /usr/sbin/ is not in the path, which caused the synchronization to fail. (boo#962318) - Speedup ntpq (boo#782060, ntp-speedup-ntpq.patch). - Sync service files with openSUSE Factory.- Fix the TZ offset output of sntp during DST (bsc#951559).- Add ntp-fork.patch and build with threads disabled to allow name resolution even when running chrooted.- Update to 4.2.8p6: * CVE-2015-8158, bsc#962966: Potential Infinite Loop in ntpq. * CVE-2015-8138, bsc#963002: origin: Zero Origin Timestamp Bypass. * CVE-2015-7979, bsc#962784: Off-path Denial of Service (DoS) attack on authenticated broadcast mode. * CVE-2015-7978, bsc#963000: Stack exhaustion in recursive traversal of restriction list. * CVE-2015-7977, bsc#962970: reslist NULL pointer dereference. * CVE-2015-7976, bsc#962802: ntpq saveconfig command allows dangerous characters in filenames. * CVE-2015-7975, bsc#962988: nextvar() missing length check. * CVE-2015-7974, bsc#962960: Skeleton Key: Missing key check allows impersonation between authenticated peers. * CVE-2015-7973, bsc#962995: Deja Vu: Replay attack on authenticated broadcast mode. * CVE-2015-8140: ntpq vulnerable to replay attacks. * CVE-2015-8139: Origin Leak: ntpq and ntpdc, disclose origin. * CVE-2015-5300, bsc#951629: Small-step/Big-step. * CVE-2015-5219: An endless loop due to incorrect precision to double conversion (bsc#943216). - Add /var/db/ntp-kod (bsc#916617). - Add ntp-ENOBUFS.patch to limit a warning that might happen quite a lot on loaded systems (bsc#956773).- add ntp.bug2965.diff (bsc#954982) * fixes regression in 4.2.8p4 update- Update to 4.2.8p4 to fix several security issues (bsc#951608): * CVE-2015-7871: NAK to the Future: Symmetric association authentication bypass via crypto-NAK * CVE-2015-7855: decodenetnum() will ASSERT botch instead of returning FAIL on some bogus values * CVE-2015-7854: Password Length Memory Corruption Vulnerability * CVE-2015-7853: Invalid length data provided by a custom refclock driver could cause a buffer overflow * CVE-2015-7852 ntpq atoascii() Memory Corruption Vulnerability * CVE-2015-7851 saveconfig Directory Traversal Vulnerability * CVE-2015-7850 remote config logfile-keyfile * CVE-2015-7849 trusted key use-after-free * CVE-2015-7848 mode 7 loop counter underrun * CVE-2015-7701 Slow memory leak in CRYPTO_ASSOC * CVE-2015-7703 configuration directives "pidfile" and "driftfile" should only be allowed locally * CVE-2015-7704, CVE-2015-7705 Clients that receive a KoD should validate the origin timestamp field * CVE-2015-7691, CVE-2015-7692, CVE-2015-7702 Incomplete autokey data packet length checks * obsoletes ntp-memlock.patch. - Add a controlkey line to /etc/ntp.conf if one does not already exist to allow runtime configuuration via ntpq.- Temporarily disable memlock to avoid problems due to high memory usage during name resolution (bsc#946386, ntp-memlock.patch).- Use SHA1 instead of MD5 for symmetric keys (bsc#905885). - Improve runtime configuration: * Read keytype from ntp.conf * Don't write ntp keys to syslog. - Fix legacy action scripts to pass on command line arguments.- Remove ntp.1.gz, it wasn't installed anymore. - Remove ntp-4.2.7-rh-manpages.tar.gz and only keep ntptime.8.gz. The rest is partially irrelevant, partially redundant and potentially outdated (bsc#942587). - Remove "kod" from the restrict line in ntp.conf (bsc#944300).- Use ntpq instead of deprecated ntpdc in start-ntpd (bnc#936327). - Add a controlkey to ntp.conf to make the above work. - Don't let "keysdir" lines in ntp.conf trigger the "keys" parser. - Disable mode 7 (ntpdc) again, now that we don't use it anymore.- Add "addserver" as a new legacy action. - Fix the comment regarding addserver in ntp.conf (bnc#910063).- Update to version 4.2.8p3 which incorporates all security fixes and most other patches we have so far (fate#319040). More information on: http://archive.ntp.org/ntp4/ChangeLog-stable - Disable chroot by default (bnc#926510). - Enable ntpdc for backwards compatibility (bnc#920238).- Security fix: ntp-keygen may generate non-random symmetric keys on big-endian systems (bsc#928321, CVE-2015-3405).- security update bsc#924202 / VU#374268 - ntp-CVE-2015-1798.patch: CVE-2015-1798: NTP Bug 2779: ntpd accepts unauthenticated packets with symmetric key crypto. - ntp-CVE-2015-1799.patch: CVE-2015-1799: NTP Bug 2781: Authentication doesn't protect symmetric associations against DoS attacks.- Fix slew mode for leap seconds (bnc#918342).- NTP Bug 2672, CVE-2014-9298: ::1 can be spoofed on some OSes, so ACLs based on IPv6 ::1 addresses can be bypassed.- bnc#911792: Security backport from ntp-4.2.8p1: - NTP Bug 2671, CVE-2014-9297 - vallen is not validated in several places in ntp_crypto.c, leading to potential info leak.- bnc#910764: * CVE-2014-9293: Weak default key in config_auth() * CVE-2014-9294: ntp-keygen uses weak random number generator seed when generating MD5 keys.- bnc#910764: VU#852879 ntp security fixes * A potential remote code execution problem was found inside ntpd. The functions crypto_recv() (when using autokey authentication), ctl_putdata(), and configure() where updated to avoid buffer overflows that could be exploited. (CVE-2014-9295) * Furthermore a problem inside the ntpd error handling was found that is missing a return statement. This could also lead to a potentially attack vector. (CVE-2014-9296)- ntp-fips-reenablemd5.patch: Reenable use of legacy MD5 in fips mode. bnc#898596- Re-enable the ntptimeset legacy init script action (bnc#893406).- Forward-port some bugs that got fixed for SLE11 (bnc#831311): * bnc#817893 * bnc#482349- fix start-ntpd again: service is now called ntpd, not ntp- Remove /var/run/ntp from the package: http://lists.opensuse.org/opensuse-packaging/2014-04/msg00046.html - Fix Provides/Obsoletes of package aliases. - Add /usr/sbin/rc* links. - Stay enabled across sysv to systemd migrations (bnc#875490).- fix "start-ntp addserver": start-ntp has no "status" method- Remove empty insserv call whic hhad only caused an error message - Correct 50-ntp.list to include ntpd.service- Restart nptd if failed or aborted (FATE#315133)- Service unit files are no executables- Use correct ntp-wait script from source tar ball (bnc#864193) - Implement new ntp-wait.service to provide time-sync.target - A few cleanups on the new start script of ntpd- Add missing systemd %pre macro- Add systemd configuration and start script- bnc#863815, ntp-sntp-recverr.patch: Get sntp to recognize socket errors, so that it skips unreachable destinations immediately instead of trying to reach them for more than five minutes before finally timing out. This patch will probably be obsoleted by the next major upgrade, because the current development release takes a different approach to get a quick answer from one of the specified servers.- CVE-2013-5211, bnc#857195: restrict query, configuration, modification access from world by default. Avoids that ntp can be used as a DDoS amplifier.- bnc#838458 ntp start script does not update /var/lib/ntp/etc/localtime file if /etc/localtime is symlink- Build with -DOPENSSL_LOAD_CONF , ntp must respect and use the system's openssl configuration.- fix build with automake-1.13- bnc#797351 - ntpd "listen-on" directive support is missing/broken; unable to restrict/secure listening IPs- bnc#793012 - NTP default to 'sync time on startup' conflicts with NetworkManager- disable Undisciplined Local Clock in default conf file (bnc#784760)- Speedup ntpq (bnc#782060) +ntp-4.2.6p2-ntpq-speedup-782060.patch- bnc#450196 - ext3 - recovering journal on / on first boot on new kernel/fresh system updates - bnc#774553 - ntp initscript: hwclock: With --noadjfile, you must specify either --utc or --localtime- logrotate is not strictly required for operation of ntp so change it to Suggested. That way the minimal installation doesn't draw in cron and postfix.- Created the correct link to /run/ntp- Openssl wanted but not properly detected, fixed.- license update: (MIT and BSD-3-Clause and BSD-4-Clause) and GPL-2.0 Properly categorise licenses and sync with Fedora declaration- bnc#758253 - L3: ntp fails if host has more than 1024 IP-addresses ntp#1180 - ntpd won't start with more than 1000 interfaces- Remove superfluous remove of acconfig.h while build. - BuildRequire autoconf to avoid implicit dependency for post-11.4 systems. - Remove call to suse_update_config macro for post-11.4 systems.- BuildRequire fdupes for post-10.1 systems. - Do not call autoreconf for pre-10.2 systems.- Update to version 4.2.6p5. - ntpd * Updated "nic" and "interface" IPv6 address handling to prevent mismatches with localhost [::1] and wildcard [::] which resulted from using the address/prefix format (e.g. fe80::/64) * Fix orphan mode stratum incorrectly counting to infinity * Orphan parent selection metric updated to includes missing ntohl() * Non-printable stratum 16 refid no longer sent to ntp * Duplicate ephemeral associations suppressed for broadcastclient and multicastclient without broadcastdelay * Exclude undetermined sys_refid from use in loopback TEST12 * Exclude MODE_SERVER responses from KoD rate limiting * Include root delay in clock_update() sys_rootdisp calculations * get_systime() updated to exclude sys_residual offset (which only affected bits "below" sys_tick, the precision threshold) * sys.peer jitter weighting corrected in sys_jitter calculation - ntpq * -n option extended to include the billboard "server" column * IPv6 addresses in the local column truncated to prevent overruns - Update to version 4.2.6p4. - Build system * Fix checking for struct rtattr * Upgrade required version of autogen and libopts for building from our source code repository - ntpd * Back-ported several fixes for Coverity warnings from ntp-dev * Fix a rare boundary condition in UNLINK_EXPR_SLIST() * Allow "logconfig =allall" configuration directive * Bind tentative IPv6 addresses on Linux * Correct WWVB/Spectracom driver to timestamp CR instead of LF * Improved tally bit handling to prevent incorrect ntpq peer status reports * Exclude the Undisciplined Local Clock and ACTS drivers from the initial candidate list unless they are designated a "prefer peer" * Prevent the consideration of Undisciplined Local Clock or ACTS drivers for selection during the 'tos orphanwait' period· * Prefer an Orphan Mode Parent over the Undisciplined Local Clock or ACTS drivers * Improved support of the Parse Refclock trusttime flag in Meinberg mode * Back-port utility routines from ntp-dev: mprintf(), emalloc_zero() * Code cleanup in libntpq - ntpdc * Fix timerstats reporting - ntpdate * Reduce time required to set clock * Allow a timeout greater than 2 seconds - sntp * Backward incompatible command-line option change: - l/--filelog changed -l/--logfile (to be consistent with ntpd) - Documentation * Update html2man. Fix some tags in the .html files * Distribute ntp-wait.html- Remove superfluously used NTPD_PID_NOPREFIX from init script. - Refresh patches to apply with no offset.- bnc#730374 - Hardware Clock does not get synchronized- add libtool as buildrequire to avoid implicit dependency- bnc#656509 - don't use --bind on /var/lib/ntp/proc- bnc#699724 - ntpdate was replaced with a dud script- The default timeout for sntp is to long. This can stop booting - bnc#689070 - ntp post install script always removes /etc/sysconfig/ntp - bnc#688529 - (ntp) ntpq and ntpdc command history broken - bnc#695598 - "Started sntp" in /var/log/messages- fix "rcntp ntptimeset" * never try to syncronize with local clocks (127.127.*), which led to sntp blocking until timeout elapsed (and probably blocking boot sequence for ~5 min per device..) - fix DOS line breaks in some doc files- fix/improve init script * related to bugzilla 688132 * "rcntp ntptimeset" could not parse servers from ntp.conf when IP proto was specified (server [-4|-6] hostname) * "rcntp ntptimeset" is now using ip proto parameter (-4|-6) if it's set in NTPD_OPTIONS and skip servers where the opposite proto is defined- replace remove-ntpdate.diff with sed script - don't effectively zap existing /etc/sysconfig/ntp - while at it, simplify /etc/sysconfig/ntp update - improve NTP_PARSE_DEVICE documentation for /etc/sysconfig/ntp - refresh all patches with offsets and fuzz- updated the sntp syntax also in our ntpdate script (bnc#658255#c2)- update to version 4.2.6p3 * main feature, it really ! updates the time, old version was miscalculating the offset based on t21 and t34- require $network startup before ntp. This is not enforced via $network_fs when no nfs and cifs is enabled- bnc#657194 - compile with --enable-ntp-signd- bnc#658799 - ntp init script makes /proc readonly, blocking login- bnc#658255 - ntpd is not working and sntp complains about unknown options- update to 4.2.6p2 * Major code clean up. 1. The protostats statistics files have been very useful in exposing little twitches and turns when something hiccups, like a broken PPS signal. Most of what used to be syslog messages are now repackaged as protostats messages with optional syslog as well. 2. Close inspection of the clock discipline behavior at long poll intervals (36 h) showed it not doing as well as it should. 3. Autokey. The enhanced error checking was becoming a major pain. A way was found to toss out gobs of ugly fat code and replace the function with a much simpler and more comprehensive scheme. 4. The interface code for the kernel PPS signal was not in sync with the kernel code itself. Some error checks were duplicated and some ineffective. 5. The flake restrict bit turned out to be really interesting, especially with symmtric modes and of those especially those using Autokey. * Documentation updates - New old feature: sync time on startup. If not needed NTPD_FORCE_SYNC_ON_STARTUP must be set to no in /etc/sysconfig/ntp- Handle /var/run as tmpfs- Set time by starting ntp via ntptimeset- rcntp timeset now gets the time via sntp inmediately- fix read-only mount of proc in chroot- bnc#574885 - XEN is using many network interfaces and stopping and restarting XEN instances results in ntpd error "Cannot find existing interface for address ...".- enable parallel build- update to ntp-4.2.4p8 to fix bnc#550316 - VUL-0: ntp DoS - bnc#557716 - NTP PLL does not converge based on https://support.ntp.org/bugs/show_bug.cgi?id=1219- Also fix multiple mount on multiple "rcntp start" invocations- Really fix the multiple mount bug in ntp init script (bnc#517222)- bnc#517222 – Minor patch for ntp init-script- Add ntp-4.2.4p7-autoconf.patch to fix build failure.- bnc#515629 - NM_ONLINE_TIMEOUT does not work with parallel boot - bnc#521044 - ntp init script: /etc/init.d/ntp: line 70: return: can only `return' from a function or sourced script- bnc#506908 - ntptrace doesn't work as non root user - update to 4.2.4p7: * [Sec 1151] Remote exploit if autokey is enabled - CVE-2009-1252. * [Bug 1187] Update the copyright date. * [Bug 1191] ntpd fails on Win2000 - "Address already in use" after fix for [Sec 1149]. * ntp.isc.org -> ntp.org cleanup. * [Bug 1178] Use prior FORCE_DNSRETRY behavior as needed at runtime, add configure --enable-ignore-dns-errors to be even more stubborn * [Bug 784] Make --enable-linuxcaps the default when available * [Bug 1179] error messages for -u/--user and -i lacking droproot * Updated JJY reference clock driver from Takao Abe * [Bug 1071] Log a message and exit before trying to use FD_SET with a descriptor larger than FD_SETSIZE, which will corrupt memory * On corruption of the iface list head in add_interface, log and exit * [Bug 1172] 4.2.4p7-RC{3,4} fail to build on linux. * flock-build script unportable 'set -m' use removed * [Bug 1167] use gcc -Winit-self only if it is understood * [Bug 787] Bug fixes for 64-bit time_t on Windows * [Bug 813] Conditional naming of Event * [Bug 1147] System errors should be logged to msyslog() * [Bug 1155] Fix compile problem on Windows with VS2005 * [Bug 1156] lock_thread_to_processor() should be declared in header * [Bug 1157] quiet OpenSSL warnings, clean up configure.ac * [Bug 1158] support for aix6.1 * [Bug 1160] MacOS X is like BSD regarding F_SETOWN * [Sec 1144] limited buffer overflow in ntpq. CVE-2009-0159 * [Sec 1149] use SO_EXCLUSIVEADDRUSE on Windows * [Bug 1131] UDP sockets should not use SIGPOLL on Solaris. * build system email address cleanup * [Bug 774] parsesolaris.c does not compile under the new Solaris * [Bug 873] Windows serial refclock proper TTY line discipline emulation * [Bug 1014] Enable building with VC9 (in Visual Studio 2008, Visual C++ 2008, or SDK) * [Bug 1117] Deferred interface binding under Windows works only correctly if FORCE_DNSRETRY is defined * [BUG 1124] Lock QueryPerformanceCounter() client threads to same CPU * DPRINTF macro made safer, always evaluates to a statement and will not misassociate an else which follows the macro.- bnc#468685 - ntpd causes 16 wakeups per second- bnc#492304 - ntpd man page refers to package xntp-doc (which does not exist) - bnc#495496 – ntp misses prereq: /sbin/chkconfigntpdocxntp-docxntpdoclamb03 1553771437  !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqrstuvwxyz{|}~     4.2.8p13-31.9.14.2.8p13-31.9.14.2.8p134.2.8p134.2.8p134.2.8p134.2.8p134.2.8p13  ntp-dochtmlNTP-FAQChangeLogConfig.sgmlCredits.sgmlDCFloop1.pngGPS167_XY.pngGPS167_XYZ.pngGPS167_Z.pngGPSvsDCF.pngNTP-FAQ.dslNTP-FAQ.sgmlNTP-a-faq.htmNTP-g-all.htmNTP-s-algo.htmNTP-s-config.htmNTP-s-def.htmNTP-s-refclk.htmNTP-s-related.htmNTP-s-sw-clocks.htmNTP-s-time.htmNTP-s-trouble.htmRefClocks.sgmlRelated.sgmlRevHist.sgmlTrouble.sgmlclockdrift.pngdocbook.cssent-defs.sgmlf-tick1b.pnghardpps.pngloopstat.pngntp35f-init.pngpps-delay.pngpps-distrib.pngaccess.htmlaccopt.htmlassoc.htmlaudio.htmlauthentic.htmlauthopt.htmlautokey.htmlbugs.htmlbuild.htmlclock.htmlclockopt.htmlcluster.htmlcomdex.htmlconfig.htmlconfopt.htmlcopyright.htmldebug.htmldecode.htmldiscipline.htmldiscover.htmldriversdriver1.htmldriver10.htmldriver11.htmldriver12.htmldriver16.htmldriver18.htmldriver19.htmldriver20.htmldriver22.htmldriver26.htmldriver27.htmldriver28.htmldriver29.htmldriver3.htmldriver30.htmldriver31.htmldriver32.htmldriver33.htmldriver34.htmldriver35.htmldriver36.htmldriver37.htmldriver38.htmldriver39.htmldriver4.htmldriver40-ja.htmldriver40.htmldriver42.htmldriver43.htmldriver44.htmldriver45.htmldriver46.htmldriver5.htmldriver6.htmldriver7.htmldriver8.htmldriver9.htmliconshome.gifmail2.gifmx4200data.htmloncore-shmem.htmlscriptsfooter.txtstyle.csstf582_4.htmlextern.htmlfilter.htmlhintshints.htmla-uxaixbsdichangesdecosf1decosf2freebsdhpuxlinuxmpeixnotes-xntp-v3parserefclocksrs6000sco.htmlsgisolaris-dosynctodr.htmlsolaris.htmlsolaris.xtra.4023118solaris.xtra.4095849solaris.xtra.S99ntpdsolaris.xtra.patchfreqsun4svr4-dellsvr4_packagetodovxworks.htmlwinnt.htmlhistory.htmlhowto.htmlhuffpuff.htmliconshome.gifmail2.gifsitemap.pngindex.htmlkern.htmlkernpps.htmlkeygen.htmlleap.htmlmiscopt.htmlmonopt.htmlmsyslog.htmlntp-wait.htmlntp_conf.htmlntpd.htmlntpdate.htmlntpdc.htmlntpdsim.htmlntpdsim_new.htmlntpq.htmlntptime.htmlntptrace.htmlorphan.htmlparsedata.htmlparsenew.htmlpic9400n.jpgalice11.gifalice13.gifalice15.gifalice23.gifalice31.gifalice32.gifalice35.gifalice38.gifalice44.gifalice47.gifalice51.gifalice61.gifbarnstable.gifbeaver.gifboom3.gifboom3a.gifboom4.gifbroad.gifbustardfly.gifc51.jpgdescription.jpgdiscipline.gifdogsnake.gifdriver29.gifdriver43_1.gifdriver43_2.jpgfg6021.giffg6039.jpgfig_3_1.gifflatheads.gifflt1.gifflt2.gifflt3.gifflt4.gifflt5.gifflt6.gifflt7.gifflt8.gifflt9.giffreq1211.gifgadget.jpggps167.jpggroup.gifhornraba.gifigclock.gifneoclock4x.gifoffset1211.gifoncore_evalbig.gifoncore_remoteant.jpgoncore_utplusbig.gifoz2.gifpanda.gifpd_om006.gifpd_om011.gifpeer.gifpogo.gifpogo1a.gifpogo3a.gifpogo4.gifpogo5.gifpogo6.gifpogo7.gifpogo8.gifpzf509.jpgpzf511.jpgrabbit.gifradio2.jpgsheepb.jpgstack1a.jpgstats.gifsx5.gifthunderbolt.jpgtime1.giftonea.giftribeb.gifwingdorothy.gifpoll.htmlpps.htmlprefer.htmlquick.htmlrate.htmlrdebug.htmlrefclock.htmlrelease.htmlscriptsaccopt.txtaudio.txtauthopt.txtclockopt.txtcommand.txtconfig.txtconfopt.txtexternal.txtfooter.txthand.txtinstall.txtmanual.txtmisc.txtmiscopt.txtmonopt.txtrefclock.txtspecial.txtstyle.cssselect.htmlsitemap.htmlsntp.htmlstats.htmltickadj.htmlwarp.htmlxleave.htmlntp-keygen.htmlntp-wait.htmlntp.conf.htmlntp.keys.htmlntpd.htmlntpdc.htmlntpq.htmlntpsnmpd.htmlntpsweep.htmlntptrace.htmlsntp.htmlupdate-leap.html/usr/share/doc/packages//usr/share/doc/packages/ntp-doc//usr/share/doc/packages/ntp-doc/html//usr/share/doc/packages/ntp-doc/html/NTP-FAQ//usr/share/doc/packages/ntp-doc/html/drivers//usr/share/doc/packages/ntp-doc/html/drivers/icons//usr/share/doc/packages/ntp-doc/html/drivers/scripts//usr/share/doc/packages/ntp-doc/html/hints//usr/share/doc/packages/ntp-doc/html/icons//usr/share/doc/packages/ntp-doc/html/pic//usr/share/doc/packages/ntp-doc/html/scripts/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.opensuse.org/openSUSE:Maintenance:9920/openSUSE_Leap_42.3_Update/f2e5b8b6df56abbeaffb39ba8c7eb14e-ntp.openSUSE_Leap_42.3_Updatedrpmlzma5x86_64-suse-linux    !"#$%#&'()*+,-./01123456789:;<=>?9@ABCD**EFGHIJKLMNOPQRSTUVWXYZdirectoryISO-8859 textHTML document, ASCII text, with very long linesHTML document, ISO-8859 textPNG image data, 640 x 480, 8-bit colormap, interlacedPNG image data, 640 x 900, 8-bit colormap, interlacedHTML document, ASCII textexported SGML document, ASCII textPNG image data, 640 x 480, 2-bit colormap, non-interlacedPNG image data, 640 x 480, 4-bit colormap, interlacedPNG image data, 470 x 275, 8-bit colormap, interlacedPNG image data, 640 x 480, 2-bit colormap, interlacedHTML document, ISO-8859 text, with very long linesHTML document, UTF-8 Unicode textHTML document, ASCII text, with very long lines, with CRLF, LF line terminatorsGIF image data, version 89a, 36 x 24GIF image data, version 89a, 29 x 34ASCII textPOSIX shell script, ASCII text executableKorn shell script, ASCII text executablePNG image data, 31 x 31, 8-bit/color RGBA, non-interlacedJPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, comment: "Adobe ImageReady", baseline, precision 8, 180x143, frames 3GIF image data, version 89a, 246 x 180GIF image data, version 89a, 146 x 180GIF image data, version 89a, 233 x 180GIF image data, version 89a, 120 x 180GIF image data, version 89a, 151 x 180GIF image data, version 89a, 257 x 180GIF image data, version 89a, 124 x 180GIF image data, version 89a, 158 x 180GIF image data, version 89a, 249 x 180GIF image data, version 89a, 135 x 180GIF image data, version 89a, 132 x 180GIF image data, version 89a, 97 x 180GIF image data, version 89a, 238 x 144GIF image data, version 89a, 197 x 180GIF image data, version 89a, 243 x 180GIF image data, version 89a, 625 x 335JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 330x239, frames 3JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 702x218, frames 3GIF image data, version 89a, 420 x 209GIF image data, version 89a, 185 x 180GIF image data, version 89a, 420 x 100GIF image data, version 89a, 250 x 195JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x160, frames 3GIF image data, version 89a, 238 x 207JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 141x140, frames 3GIF image data, version 89a, 565 x 212GIF image data, version 89a, 223 x 180GIF image data, version 89a, 301 x 221GIF image data, version 89a, 374 x 127GIF image data, version 89a, 403 x 303GIF image data, version 89a, 576 x 433GIF image data, version 89a, 445 x 337GIF image data, version 89a, 459 x 214GIF image data, version 89a, 328 x 160GIF image data, version 89a, 376 x 194GIF image data, version 89a, 480 x 360JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 213x180, frames 3JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 280x300, frames 3GIF image data, version 89a, 345 x 174GIF image data, version 89a, 140 x 180GIF image data, version 89a, 200 x 174GIF image data, version 89a, 150 x 195GIF image data, version 89a, 182 x 124JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, comment: "Adobe ImageReady", baseline, precision 8, 178x188, frames 3GIF image data, version 89a, 210 x 124GIF image data, version 89a, 174 x 180GIF image data, version 89a, 126 x 180GIF image data, version 89a, 553 x 303GIF image data, version 89a, 100 x 180GIF image data, version 89a, 381 x 180GIF image data, version 89a, 107 x 180GIF image data, version 89a, 72 x 180GIF image data, version 89a, 77 x 180GIF image data, version 89a, 110 x 180GIF image data, version 89a, 203 x 180GIF image data, version 89a, 93 x 180JPEG image data, JFIF standard 1.00, aspect ratio, density 0x0, segment length 16, comment: "LEAD Technologies Inc. V1.01", baseline, precision 8, 260x300, frames 3JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 260x300, frames 3GIF image data, version 89a, 122 x 183JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, comment: "File written by Adobe Photoshop\250 5.0", baseline, precision 8, 176x108, frames 3JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 141x180, frames 3JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 163x216, frames 3GIF image data, version 89a, 497 x 160GIF image data, version 89a, 530 x 344JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 606x412, frames 3GIF image data, version 89a, 513 x 123GIF image data, version 89a, 217 x 180GIF image data, version 89a, 248 x 180GIF image data, version 89a, 167 x 180V \?[?@]"k%jodgmI1&827o MOh]EBΰhO1㢂yhUV$mzid[Jn` թ!ignh6 F9hX<2^ !i_#+k,3/{P!+>mTͷπ|1j3ڬ-,|; \cK 您.LO$5zqHΞ1jq|$pE)/f&$J7u^4EXQ*qgzسmrK؎ z\.4obm5k[2W|Yl<>2}!P`_ޕV76}֤U~2B>7uڳoսyVݵx" 4˴<0 %P1+/S\pr%\-. S\H]' jtCɪ,.(9`2xwdDuʸ[BߡtjrC/|" 0a]kS^qĜ+2/IVܝt- %4N2\وt|6^鞝e~R^Hԇ>10LG% 5(0 yqR`! 9Ju*}IĴ&8&ArO?ê qZ8d U<5-~7*!׈k夓{oyy}[k3~>h, pXeHvxO~{ hyF8`?'J,h aZߖ+*:֖B)χ\B^e{ȆSՄ4XQC`f ̜k܌@yQcYk: /dFkн$nN(HsC?jbMY=8:VkRP^e' ,PgV&6c`;m tb!}:-Q}>rNmL^WkPT廣gܽ*–,y<.ƴm#>J1% gNG!Y5W`5Ë! & &%ӑwd-_r=c?c{LcnA'JltujE u?yi,To 6P,,ӈ+[˽u%JB*D ME[>*Zg$kiDq䓶0WĢ/NV雽JRB'}*\:YnWY䬋 R*M|VLM Z6vle۸/YDgl!p=Cܵ~6$_Td<ۏFLM9R`?+H§͍7SE;%rC\y Jʑx#]yNt* 6[?Ûx!剤sop3芀yHCjt6JM -Jeyi֦oShcpU0@B/hv*'-^ CƄ2$@G'gG%r5>ؒ@$֏wZ*wDf2-j )}%<\D'MTf,ҕQ5063GسzF]o+eXA"noų3/&_zHy[^&f<CIWkؤ]x >XuzSo M ;"m6|r 9VlsLs.r4's!Uε۹TY!U;]n^X)X?B[Zf"6ʾ3$IOp-Y&('X0WHE@sM1Y'ߝqk9< ULHD2/ɝ>OfBcG'۶pAK~m72V_ZQKg%.ohs~Eʄ f@uj:H7en?z,NuW1Ɛ [Ls qCÂnh7Qhͅe^ܣvy$6F{XN.um @ic\"EOI]:AP aEwb5t%FoX[.yPVJ Fy 7aE}-ծLlfWVQg.B ڧk0a(ߔF n'A㠔Iti܁jWl Vg=Og c{JTWxe@w[Y|*S3!oQYYw[smC'7JMLm=!`W%Av$ezOX/zH KNx烨Qn]{Sr5bMyo[EIVWc 3=:[j)'G(8yzZO {ꒈUBfw?@#["7;y1p$f-D m0AXRC>׷00S/иȆzév)'ddލZP>F |&9IoPb>+m1 xm:ԃ$U[KO vO-:H- Jw'1B>E'\b9'P,ʧDaR}{m2*;*PwZ2—~8T\ۈe5q0׼:)xx"ձB(N[{mWn-1;1LaC#BkxD",؎O=\L`b~R:On @\@eJ/s3}{#dxoJfm: VT#Gr it@|Չwr_W(wvgZ_+5M~w!.vʻg\qZqe X1.'Q?/lh]~Jϻ!bmB?kx6!D(/%@ w?^:/g F`=# %k+cUfs|'xYu餿(%{Jڬw*BRq'gu`^a3AJo{\:ay/% uY`P zu<(_[SփZug8)\#j=1$n(j,  zb7rw߄TdK7GPU˜Zr_^^f.hXګ3Ga|];]`34^`ņ}݆@ LluN!{X @IǢc79c0[ޖwȹN8qrj9Rҵ'\BJ ^fGw᱃DOf3C3KdwTB(|x0(e[n88u\{D]%ہ[ " PxG9( aF]kx[Ix}T3;Ǻop@$ E˞iMRmZ1`c |pSp<ײ2j8FxM dO'5^>c 1"eX,ұ*Ɋ2 ݺ[ ͪbd3wtФ$pE,w;ުGٻذO.{2] 9VTs↛@^[ #A{=fF>V@CKRшy&h5y8ξ檘g d">1=kO1طRx ;WghL &t5H^]Am褰Q,׆'W/ 9qV4}) EH|,sEL 6Wp0TP tmw43̖@qsj*dΣ9쩋zKb mrgn[B8k:ƥCNil19M;{^kv=fa(h@yB@ rW;%f%;ln&" C)oI߿Y']CrmAX_uV7 !e㼊sn"vmw>IqiA^,&4u=R޼A:gC?T+:K)LXXtvw$#Bwyr5~`xw!%0KI_HjSsl%GnCޚ(VA7HT~ oalH`Bvn m7^9=6)7;{@"ΏZ JYb<$r7񱜘o/;R넁=pz5˃<#yy0{R3hzjȳ\I͂de;Nʖf3VyF@p6w"+_PGH߁41\Pd352ʧ\o?ˌָ^6r@51:ʞ> >18^&`uZ*pH1xb_*tv1eU7YG9P-mzݕk*T*y)S2fR諣W6E]Kx I,-GyRjQէ[86quid7)4ZVp(6xa﫥 `D"MasSwG`KfIspƮ6rFGq e.JX<Z{z-̦䉙8|d!D ^S'cYb6.zߢv$"VFMT waƒ'6Y8TB:O;VXnND9~pb_ePIc/X'2<,{CܹL".OZ"TU9ɧSOC5Ȣ4aYZn&Oj]Q +6N{Ghv :1Hry;%ntцU#)RH.֪MJ}BfS\ Yɐv϶w8! hQ`tœh︆W`(MN>6'm-Tl ݀9խt U%"@2@ҿ{OrK*Z)QSJj[p6~!wCJXͩD#]9A@~pw/2m~Wo ϚW;(1TʋrǢjсvP`>}44޹xВ]}qi(~&N{!d)BBoBDs<+Sv:8ޫ]-3k-E5vfQ'KcQ=t TF+l&% ł׆BtSuIFk?㠍@Qh3=BT'L!:sXr.o 1Ӧ,J {$KȀH&+-!3i/bΆbv1!`e0EmSհW1c`^!4@ ru3PPAR-, m[ XtXu TE\Pdݞ * mf`J!eg-&ji:nUײsoxzV  8{S; [hTEa+集7Vyվ'Z& =o$CW +X9/Bw5G+'pcRcIjȮֿ#]T(\(fp٥k6|}:ϮB|c8ެTtv'r<hH*^ɟT6/64%?~nಌ0H)l&cLE>V n-.4'B" `laKbަ6BzDX%lj0@ow5+8۷q_@&V} qf`9㼗4f[Oᆪ b˖p(amh c57yr_|6+P9RWK \% 9] )XLU+Dj죳j,Ҁ^ BKE5fr4'.:-D/KDE;mdQ᷏5 ZvQIu вPC\΂uDՕɓGx?82?r0B] ) Ibl|BuS p ߄0g?vGI!Zke%>'6auN<F]An};~/e\ v4!/L_mYcxjz׻a _R^NCqJEc߯ɫ|DR*?E_Gbw;' R"ӓG~I>ݫ }e ʠO.? ,f t3;ʪEyk/[0%& :Yl$]5UC|L)YgM?A)DgóNxYvpV .M\֫ɨ1(cm8 `kt mDž?bxQ-t@%kعuwx/ϛuB}$U-6 gS^b8xb:a]T>֫jp…MX c`u*9 ̯7q5::tD](P wE; 2O})Y Pp{8t=X=sl |d|M+ge "3kU܂9 |T#zJh( ՗n} V8+(P\k4x!]^:~H1EH FhzO5ٔLɩzW[aj1|Oc?ӀS d7}{cgs2)9Eur+:Q[rnh.I:/H2J^G RޘYQߝU2yB>S9Z ?8Uǽ,oC{ݜHV־sӱD35s?AKuZ! ڸWA$UÁ[8T<-1 %`x9$) ]3-itu>K:6s!#_'mNM'Щjc//$G'_8Jd(}QmBE"C\֜#MG<\ =Wm5j&y[^9StGd&iVJߒ7FJ‚0{ S6P0ƎPJ< AMLj,C;lL,UBB/(GK$TVI%h9%^dN@?cr"X.cǸW I"ϼCX:u^nĔX.#2;aFn4sh#b_|nsx6[£b3Ɍ񖮖r<ņ\5߷jr4~SǢ+߷Nwr.1T#oWCa|\F*'?φUdTUvb±%P ~A\@3,QY>+KQڢ *XR1W2þ@A'SU0C /@=լKZn "[MɷpOn8܅l2_<Ӣj֏/;]/*-kSfj6%Ҙ0:ԺEl<0X*[>;F\ ?CqHodN\>\e>N.tNG/rR~d.:N;A:Z,rm3u~4瀚} 1ߛf#>¯6ԫMGV= 9Gȿ _yL/ LxGvBHS/ Sxk>f + qƲWbU%bl#"_;7Or{j1GT&0s  =lkvH9c[Rq-'|75#'7rNsfԄ$E@`Ն̣!}b[xM% Dql[N>Kw09- w^`IG[J5Нȡ$sĮ7Z}U37 ŕQSl-I~O5qE;|n$]ִ/b{\ +Y/;$e&5,v#Ʒ{[EYU1tn} q HɆoLMϔK<2 -MC0C٨p2; ACƨL=mOnxt䠳 z !lߎ¸f)p0Ub AԖ1L^GjLA:yXYS S fgmd =S>#]Exj xSsa.e2Qu㥾h _P/UGu9 řݩiȟ}.Y eq*BկվP8Ϣ&7nR/ jK*iW#>}ђ̝ bh : l?%§Uʾ^ *{]Vr1OGJx3%l3Aܹ!&fwoD/>_ `$2™`,FB6ab:=(^v~.œk0KG/X""HS 4RpI Mw,y f/Win~@NaR@Cnb<IeG~0ۄ or ly+8?EĮ nf`:ȕGu#{{&}Xl 2t\xKY׈wؔeV`g|2T$qC{iG _ʪU'[c0kzmhuN  bCM@έk Բ! ~cO] 7)˼61k݄;$h5tKLԒDݶRg7OzZ@pƱu4 !&1iymr;W.5z"c:L&*<}V~E%7dJĘo9> qY" 'CecP7F[QWrηhkD?[p|ˣ? !>]kHw/cY?#u7j kd~ZM ]X>E2 o_w v b~Ӳy3-:'i7&J͙Pێ8#JP)X;iy/E8NFl"$׊2dg/z|&g*w@ل;JHU~S*/ە>fVzh󷰯UK5 |iW&`D2@;+hR\1}jNg;cbD86 Ѵ!&yvWHj6*1^`gQ~r P^"=8.[~7G·9C=3XKKվ=RS,fuiJ-ƜIY$=+5Y[L~7bs'KpL8.ZFkC; ўCC9Pʖ)NcP?ktr3_*Gd!$9"$vj܏CF f/1ss8l0ǩ- 1 +@N;Զ1/ c2]bt<ܬrjZOlWg24x:"oN:-xV?1!IP exGBNH c$=QjWĆnbxyeJqr6ƵjxA{h{DV0U%]6tM=oKi?k\KjTRx &S V8yQs"Yܿq9 $wQST~PQ|2<ޡ|5F65KUn Ȯaj\T5]$$!bX:;:Fe++ha> -c꒵#zûbEP8RL E|iS^(|]Rs[Y蛮UՆd~C6GdAqZAK:woř:dA(^R6BEKBaۚ&lxMLya2 + (w(BpaJ*i'0[)xV,hm>SQq%lx"Qkf-a.ʫtRMυE5">?:K7dg)!r}**69AT{6Wo=x?oP Lk rTk}O&܅t nH4nY9H4P/'o]kHHiujW  $5,HM#uER.cշ?<7 3sX mѹD /膊k*4/fn";L*Fc{~|ʻco½(Q7Q|#O=Q}Yx[́^$w[Y'X bh3`F+p/➯v]"8s.Fy)hOBAԏ2nQf^CSJAo;+ݷrxBVRk6fS4{):EE<8漏ճe z510u/U-L6D-x}s jE6AC>0YwWa?UEP~Pa ^'{eH9['seMJ|0Eh<߈|i nn6K r 4S$ sڃV8LD"] .jNnh?ǒ/~ϲ9hώ#1`ӭ S>JMbZf4>N]60K]\ŊK8ޠШ6U_Ed4 ,֚l hO)E87ux v/HJ5ⴿ2X>W|F ݮ Fy9HBi{t eg "+8\MFD+/\^|*WN],+?6SA!Kh=5&a>Q^gc7O'ЭDvĥy[)OKo'.INh旜 )oxC⧔I%m'r:aV$.$*P}KtNb>RࡪՖ2iĠ mާ{&Fy`ޙC4n{,̰,ʰӮ7[<wJeg]!RVh OH od$"+cvm3+џQM^vbDזx#0&8V!z>ɄJ .}A;t"΢-P;_ݿ>go#|{XՔѩlu\ǁy]慫o(hY˷"/O'YOe `OJ}Stb<ʽҕvFLV9\G3O3繶n0/1mJ)lb3hekE Axw=vZ SAqf1ɻTy^44jMTدY6)ŀYWC3B>TPg1ߒ"5NJByJ)uWۙbƒ!wf|8|VmRS'{{0GPpgnꏆVS)Pj-8ls^dx +|I~ AAHVds&ѓ] Stwbt]p?,״,Р9Y%f]^{%R a8\Z25㤠R> Eq I=^}f.~96b,v:'@d{7 cz [#-fsɨ(eϗYIsn$EhkAh9"S`m~| it- :1#"~2^A qbvkSH'+.*?˛8VH`:R㜓~$* Pl3;U],TǡgJ !l#q @A)n,X:f"H~n]m FuLJ=_6+#GN˃K=$gj)VҸQS'sTF$7|!ffɂxGF 2cxYV V~'$/RV_ۢɉ~ ?a0]fIOQ?4R29p85HaMc'N-˾jY>ͻ0c;BL+[b(d-,MIO_V4 mbtDA ++qiY uKpo.82R.G@2;6 Iߌ{5H766óMd4- rst]~6c=xbF lF?w,i~[m+k+,W>2GSQ7&E*pvEOvjCHLYOetl&ߘ?"h=_z ȭJ[b< wG6Z8u_<m8SK:\o#̒V~6 Ԑd?qK#ƒ[{8*{piz-7A: ̓Risr^ _+ρ]V8$.~e0m0珸%hA\^ܢ0: TO[вA@!5g+'A)g/f[2"O͎GG:_e#[.}<_c"{T0}AW_eQˣ.0TOkt0cNy|nZU;vA#ȝ{Z햗i̛gQ-Jߚ1=<żo]Bh[ UJgyC\fg2ECd5ˑƗ[UUn)߱4[ *4Vέc {@ϯ 8 @Yt3&%YI0}-n([?J@[\,x\H΋I)ر%L nѭVNMfE=.aDtOgh>9A=KE@ӧQn+&UmD`_IR: jDj&[nwYoln G80+Yi'Tsb >OV!7t)A00NA% .Å[k"݀+j tճ:ZBYqLr$b&P8PtŘ#S"\W*Nk}|#WFÒ*6^! '6o٠^D;, vCs9l,\.o~e}܌c[^Űpa3}OB7"E-H>D $ʔNsjl pQt%sC(BlTI`{^PE*vg vsLCqTB4,;@oh*S)[ ?b@_°pL%]=V+`.ks#7Nˇ&"ۄp\i C7 r! WVpݏQ 0t:uj]#j'nG'MbWlt k zPQҵ>W36!!nY a=WBXKauNe)S[Sc,yJ,lx ш~ӌ+`ĶBSDioxxDIДw*aT4QUw(qIvRǤ9diYD^qq'[,߁m S2cq2Oz*Bj2" "<:Kw^:9 r5̌F[ 5,3Q+v>S"|& S#íO EAa/=O*6 05(!V/F>Ѫ ?tN~M{<.;fN8} | 2X<> P&]1H, D8)ϬճP?%#pX1LB>+sWO*{Knv莙5lCo GB! ) dҎ}q>f||}t%|WP/n $ `hi tU2 C] pWyQp7:Mbծ0ځ}b-B)hz1W42Bes006ѾVӄJ"a~x\0sX 2w[|,gIjHykhL^i4;'ܸ|AzlWR8,WpֿKiݒt=h*-:tL.}o|93{ZJ\Dc?O{Ag?>W~{w}iX n.Tcwl e6e%חNt ؅n.GHJ7HS#l KBÆ.EXJ$]kFGC!s*mu<]e![UOcFNSYcC;]_)-ɮ9'x.(F&haO00րݤB ryI,f=8L,8g%;pDRoq8m*2R0ģ]6 .3ԣ: cjae}G>>3MЮbژOZ82Sױ^ڦm|ٯ  /심=- +Rvy_1G_鯑XYykuZ##o\BhSaUsHlV\Xd`A*/b ϊqaqnh9Ŋb{[mWQX~e :.֧,iA1Dc>Ey7yՂDOkQVWi_hر/I>~ݰWokj3ݭBdV} v/LoL]Ho8a-q\Sgno}1 D$zth9ab_ͼ=J!%k>Rċ{է1b܎'ub0^ <BrLӳLzdqgLjvP ) ~Ku fB0B>d$C+ ݕ@ϒ$[p_-b͘Yo 1 koSb||Hi4p]ի~TNW:"[lQ?S-! 1"7.t pp0_ƻu{F>7uֹ]=09W8P|joj!Nc{.paj Klӄ|C :,7y".|Efa_v;ڍqd<\agU6~KvIy%A٫&rݲYyЃ3cI=S[e5X~Te`*ȯlPfF62c!KLo}F0b'rP6DB6CONK_/OSX#F꒏s@de6|nL=6Ԛk51fիi.;UzGh%hw5I\9AF$S2􉧆7-:9rp:F {S.Z4TTzR6cL̄PiC>3{qh3+$]{=S'Cnf+tC57.:^&J#lӚ%玀 y f^c7bYI5ڀ[YY9cM a i%~rߚ A+ҾG~1)jP 0v"%u.Lzf0mw P]Nd7ޚׇ0=V ]S$2[4\훻Y-J5p-~fiCRX6ۧo&BL+w"˜n;#Y&Eb.v9M'abnNЭR< (Rt R @VApB 1(~ִ7O5R}om0wܨU<-4^pȠy2'XfسLQ-;jo#z'N2RH35fTg%GbҜ_ֳGd6?VJwLf+,0LC.Nݕ\'cPb|єE^Y?ӴFOt|0=W:џ;Cj-=jQ, 6MggA#9{gOZWpnboVl@ݕ|q z2`fn3;JXJk(keXbs%lHHDc.VI`m\&g(ې y-js ̈wBօkkuG؇OD)m50FzRO9x(r.ǣ2M~(`vn>9:T:c|S+ah̙Σ)O<7(NiQFs#0VOEҁKH 1-vj&gM2]5iG=i jJ5D26Ͽ䯇|Jf 0nhnY4_v.'T/끅OII$]SdY0֠E˙jYqsJR`kY/vbN'A.[|_i*Wj3"uv%y#[k%qs 8LD9hM  *:+t "b%&?űw=,ec'!WM9"tъŃ< bBׯ+񜉅;ԶWJL%'M XV6]iMD^tAsҖ;Y%(ibUVW+¿Jek=/2x_~|M>DO"h'l}&GCݍ . ^aHB {#~4&߅-Ѥ9 0 -u %~P鼡rרE/GPw<-/&CnM0p,# ՋWx5g^=[X(;E$A m#Voj:cwy j2~w[ ϡi`_Vle ,h\] .⤹~AhLeAV٧oC-%w3S3&T;;!smXpȿLK<#nWILPY~j~7Iz\4Hj&mt!t~pWR/o%NSF㧇+&lcMg.#ALZD@'e#&k|olF`И -3o ;0LE@%)kIاG7~]L!U~yzںp42ku;g')+J6$8FLo]UGT"Gh xzs2^f~PP:~JqZG(<NI@@{]q(h@]?ѷtݪIX݃m؇->A~ʐn<_:C(scĜk QsO}{#(J(K5YR` s"!jDOiNAjqZcA*whgopF˹22XKM1̛wf" r5xБUh c P"qZ.0zg)D_eom]u{F_3Al>sPSƢn&t° >x7X$]f]w URl _o;f}5RSWd^^'(5(|O"^ "GPO %3 ps1nm4EkXv& ?pye{v" qߝy>B2Q]`T-(Td r)cm++)FY!K q-Q6HR6݁>9apYLJ@?+ߖKyғB\@ FIo'IRa(@PE."p6"Q'l=/iƐU򨄺$q0}ĵ(/P-Gᣵ_ 8# 1sIutK I{Xյe+51iGPȈL}F$ZZbځkbG7 /p3jhW"ez  /XX6j_0I剄#&Z/d7F7uv YSz!~~Ȏw MY;;`JԚ :kÆi)%C(kjz]u(=5>@2ǖ/8H O|9^vhELui5RWAWv<4w0S@}i9(JNjnK(ۄ9j/v9.Vx|1w$iJIVSj, =|:vO~V PטPR^)tЕƨ }_U ($M zmp1C$Q:"wkkP7oL ZͳEr5V =(L_=3H rÅy(P RhQu\e}lfWY3S}FP.ܐNUJ"ב(JQwtxs~L%C)z/*=JuojHqwLJR~^GVU|m`|xHXsޝ|]dam]U`nV19ͺrT ̈X:s¬$B𗁾T&# WXZ}}71tVt*>L~[ )$_RH5QmyVwsmtPZ/$-\mZM7E*pE; H+`$:`wfzA/x6b$r^(Hgui<֏[dZ P&a#$AdЗD7GV?3RFoXt”onv԰yGlN./D6<8)!N=H( x =71F^ 7d^<@@y3צ>5j]+f`#` .m&I6 z8ΖҴ"doxX m֫o}\5 ~K`O,,gLκ|m=> }wš*e.b>':;]v!o:9`Ѵ7O%Ds!<@̯Dx z|RaP/WRBR^pUTvs,h38r^ynvAԇVZ?z+!f{P(Sw?X ?轤?El+ QRLKW2$ ~ؓtcM[Xޫ V븶jd q{lٱoP~T[rx`3ou*@o7[( RJD12.q|e&%5;0lB;OBK:bHK SN$OM%"j(K#M>n鋚G\ ^g ӽc. Xl3 ׍` >?y3杭X@qkv")c[7H\{W0#~fvJD +S_ǎ~Q+/gӽ h_ K$G8H*^A#5Dј vf|0iv P$́Xks:b>fv&^ƔzdƑ"5x|AYy"z1ћ.۬0%7A1{ \ILXM}LekFYP+T1/}upn2 .lrb׉Fz]9@'{ի{g uaX;,NQr=*=z`ƍ^-iN!6o:NF%3ɋ} ׮G˲X$\MC)HLy,˧(ܮy>_\QR(Āy;յ4( ݍ~C<ǒeSeZ@]LD_h4M1 lqЉҜfrk\Y`HeH[8 :L{Og qXs Ҿ@)*OeKOE6KȞvMXqU~Q#)fig̈![ Bx+<mFS 5*<>"ƭ^-r2b#^y rcaO[J97ӀʽeCNރY/a X m\} 8*n^_+rj!#ϔde M߸SaMUS[|8VwmH<`Y"ro.ַrimG:c0(yÓ7[sKS}Z i$L̊h`HSNĀ/^=TҢt'Kh5%Wm1x[т-݄ruč_A+'ߊثW߷Dcac:M6U-- i<>߁aBbژ'R}tW/DMu"t;'1OWdx-:F&)oDek\c_j;b^3niJޚMio'dr$=m{]ddڼC.P6`YrM}nϾ:y[N-wҕh߇aALQ#0 1Ѽm4xyקo x| FV%g&L.F|].!^/h/lhd ղWin7!*ZTNqx+*JS 7Dr@K1N໪57t2_]8/`t܎aO~i/%oA@q':9rAAybͯR&d S#0ȀZwG&Mo@_߸h(-i)\h"Xuᆶm1F-"#"+h2("qHz8VWaMv/Ӵ+$hk5oT]4?=~{pu!gDҀ،\ҷWk!< X؇;.."bQ yDCfWzti1'L\\~c /+oe]3>k2aOP5Nۏ˪;l0s6ʅ@"smSdv[ˆ30 t1{~)-#q1Vk `N~KPV$ C `&9L}ѵ!#cߌ7ODwG沄Dn@^yCG1qc$;q'Z"Jm*ln~Î^wE 7 ;Rw;ޞtF+f.u'5'9-ˇl!..9kYxܟb95bJ=?G3'8.X&>`rKW:_2<%1MF)Αxƹ͟ %㘋e[WdEG_R o,K"[ Z,]On){U0C&y-V6_S Rw_7Dl0dsm`bOyP &/NO t߆ 4. =JwYVΧ ' a/uvdLP[i>o[FDiZ5yo׎S~c$Ope;DY2A ~ب3 6옷t rv?&'L+ (/ri4tw cLe|jbq] MOWE{kSWliX Ofʍ4$x AC֪O$XY>/уR%^eSwCw9!F ]o| Bـ6 ^a {'mR] :-ݸݾ#d|9R!b~5:,1e+5A6#?*l[3ĄLV&O l+:T.Qt%*[SD)hm֏ͳ&WxƬd&ĝûxSriw)gOo,k돽P#=\񘨔D͞W|6+a%\4u0UL֯i|CNEL1Hz ɋ.-ӯIJv:'䊣 d7ۥr|J޼rwrE\-@%a),l XM7+Ϡ++V! B cw@P[eL'pV vj 9(]JQ}QGJ jg$uI@@K JZWyRė8x/\22Q1gi_fq6jI^Uw&mzE%^r/W, 4- Z mg= 0I!".qXHraz:d@ il CG?pQGK"P>|NitW^@!z|YņB7v+$5K&|e j136G*%pS#0DHkxWnrnM}| _.j7wm 7.qԭRcj[ O<2O_CruZUOͽbbŠjt j*`!L#k2yLُtOѐjWD#+C&ÄLHzWE4G{ZOzI`yF=+* Ofd{}w##\yϳX zw)%'ՃlFFόvhdby^_`- ӤP5C-a3P嵖x yf>@DNæxR`/aiXuyO<Ǐ1y`r ":!d I-xh찞%D.oME!ߤz@* T~⫖* LxqBҎx^(ϔ+q]J}5S.(@ΘK8GԏoF7R9F6퍀—;IFT|_xuBk^C(E z;C hguEXcoi:R#eR.-pAMlGO׋o;G@/05c30zƦhh>je"\}㪫B4߃=3%0MҸrqC⎳ /B"!wb"j*:,|N-$ g R̗sN%W+eلO%,@]Fd0CVGdpIrt`R# [%Y 'rR97,oLqJ{xwdq6ak6O4,8d =α6=DG-i(:q(a!.$O-x򜳋m<CLO;DwXݻs9"U즊|P:7DWOn}]R $<{)$ #om :ϕ8%gpS=?4`rT ;MhKO$?:2AQh^ 5GM:158$ ޛEԉt7 Zj˕~rY\V,EaKuѸ8# MCp[jgh}V@&)bIՇΟ%m8]+fpgǕE CVߎ'%B_0ue*e@ւP68 6x8UAWhQg~y¥"ͣeQqΔo8!6NOdBR=~αtGv7ª1,,ˍ svlHlt).fLK϶=2j~Vx\j!)+R/02QK7 *vIQ9|7z*Hdn_n')p Y3 +%-LuW]."Q4u EuM/L)Ə#RЕ)K Cc7]HdHycto|}ש눃XaW`^iś,9m6x n,ҺGE0o_%VeE,쾟H|~<3WE=5 )r5tIO% 7pc< T&?:22P _ Z!߱=]: =o`.Fkz@< +=Vul%~(E ={-ZEGpvԳϣE|ZٷC)$_tvΎ!l~OU{At#=+V#F*ށ8:_{.݉h(s Cej6y_D`VJdtiz%aiZ0*d֍lys%+Ƌ9: Apm@/,a'8ߏ>68ec5ew}F`XB`Z FZd>@II ]