From ed86223f3e41240812a20046248289c619de01e0 Mon Sep 17 00:00:00 2001
From: belyshevdenis <belyshev.denis@apriorit.com>
Date: Tue, 12 Feb 2019 16:12:03 +0200
Subject: [PATCH] NK-8: Implemented basic HTTPS server with stub for mutation
 webhook. Implemented script for generating TLS key and certificate. Created
 MutatingWebhookConfiguration.yaml with declaration of future service.

---
 crd/MutatingWebhookConfiguration.yaml |  19 +++++++++
 scripts/generate-server-cert.sh       |  58 ++++++++++++++++++++++++++
 server/server.debug                   | Bin 39386 -> 0 bytes
 3 files changed, 77 insertions(+)
 create mode 100644 crd/MutatingWebhookConfiguration.yaml
 create mode 100755 scripts/generate-server-cert.sh
 delete mode 100644 server/server.debug

diff --git a/crd/MutatingWebhookConfiguration.yaml b/crd/MutatingWebhookConfiguration.yaml
new file mode 100644
index 0000000000..455f7cb900
--- /dev/null
+++ b/crd/MutatingWebhookConfiguration.yaml
@@ -0,0 +1,19 @@
+apiVersion: admissionregistration.k8s.io/v1beta1
+kind: MutatingWebhookConfiguration
+metadata:
+  name: nirmata-policy-mutation-webhook
+  labels:
+    app: nirmata-policy-webhook-server
+webhooks:
+  - name: mutation.webhook.nirmata-policy
+    clientConfig:
+      service:
+        name: nirmata-webhook-server
+        namespace: default
+        path: "/mutate"
+      caBundle: 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
+    rules:
+      - operations: [ "CREATE" ]
+        resources: [ "*/*" ]
+        apiGroups: [ "*" ]
+        apiVersions: [ "*" ]
diff --git a/scripts/generate-server-cert.sh b/scripts/generate-server-cert.sh
new file mode 100755
index 0000000000..29ce790b23
--- /dev/null
+++ b/scripts/generate-server-cert.sh
@@ -0,0 +1,58 @@
+#!/bin/bash
+service=${1}
+namespace=${2}
+serverIp=${3}
+
+destdir="certs"
+if [ ! -d "$destdir" ]; then
+  mkdir ${destdir}
+fi
+tmpdir=$(mktemp -d)
+
+cat <<EOF >> ${tmpdir}/csr.conf
+[req]
+req_extensions = v3_req
+distinguished_name = req_distinguished_name
+[req_distinguished_name]
+[ v3_req ]
+basicConstraints = CA:FALSE
+keyUsage = nonRepudiation, digitalSignature, keyEncipherment
+extendedKeyUsage = serverAuth
+subjectAltName = @alt_names
+[alt_names]
+DNS.1 = ${service}
+DNS.2 = ${service}.${namespace}
+DNS.3 = ${service}.${namespace}.svc
+DNS.4 = ${serverIp}
+EOF
+
+outKeyFile=${destdir}/server-key.pem
+outCertFile=${destdir}/server.crt
+
+openssl genrsa -out ${outKeyFile} 2048
+openssl req -new -key ${destdir}/server-key.pem -subj "/CN=${service}.${namespace}.svc" -out ${tmpdir}/server.csr -config ${tmpdir}/csr.conf
+
+CSR_NAME=${service}.cert-request
+kubectl delete csr ${CSR_NAME} 2>/dev/null
+
+cat <<EOF | kubectl create -f -
+apiVersion: certificates.k8s.io/v1beta1
+kind: CertificateSigningRequest
+metadata:
+  name: ${CSR_NAME}
+spec:
+  groups:
+  - system:authenticated
+  request: $(cat ${tmpdir}/server.csr | base64 | tr -d '\n')
+  usages:
+  - digital signature
+  - key encipherment
+  - server auth
+EOF
+
+kubectl certificate approve ${CSR_NAME}
+kubectl get csr ${CSR_NAME} -o jsonpath='{.status.certificate}' | base64 --decode > ${outCertFile}
+
+echo "Generated:"
+echo ${outKeyFile}
+echo ${outCertFile}
diff --git a/server/server.debug b/server/server.debug
deleted file mode 100644
index f10ff30b84d57aef3b849c11f8e79bc6c9abf861..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 39386
zcmch=4RBjkwl28O*3rLYNp>9BNlX;S7!!hH%eLaAnM{66+M%7q*A9WpWdK<^ww1_|
zT9Wg_&26Q*=~PG{FU{knGQ2!)ilUfI7e!}Mc{Igi=u|qx&7~MFkD|ILUJt`COusbn
zD2m5WT|JC@zP0u_N0Q@kxvyT0%GNn&@3q%nd+oK>UVH7mk5=53ET*P6_#S?^d-O*?
z9J+gJOnrLHD_zvR`cCxsb51<5HZjO|kNBqYvHZjyBUO%NGr8FVvE)oT(I1=2_jdR8
zboa;ZUq4w)&KQM!CRa9!zKPjPHXX~PW9?h|l9`D;sp%iymoN41O+B#b&cFD}HQ7y*
zBSY)b6XQGL{fX&q+wQyXN88$ccjDvwFDvTn=-BMrXB11Bd@eTN^9iZ>OGXhX!Wpc@
znuL2gKVx`*JZqH7j;Xw}R7^EZWy;gD6Wyu&OfZ)z&Lqpp=Do8M#+`+HHj_FiBdUD&
zRKE2-V`4g=-#e}lHcKf*u=4(`-r%9}AMPC6xpSA#nKR1n>2kTy=vPqM5=YCD<}T^p
zluj38LI#JExpdYj27h&EJSLY4DI*LxyldB}BN$#fW|Ru~T*<hvm;wI);9BJ$Hj-&H
zKnqqny^DP<OCr;p0E#+gTPzZ5tTad`@XI0h^p#)r%Aiq7t?xOoPLKKb8V9fZDlSDV
zv@e;RHLm=sPYQgTLq=8(t+pV0WvoXgDE)^<Sz(FGgfxry$%Gc8%yG(GEfYGRMGRQ+
z@iL)uXua%~!OA7gz1Zi-<h_|ZsPn5vXq&ao)X<GG(ykSBp-U~Ni%zFeEb79&pJ~!M
zg+MEsxy1PFM2V^bPJQbRDcWM9$vBY8&Zg0TeozBo;Z0@pIYTm((1wV<DHNh-P=1$5
zb6Y82EF0+`83%V$`%B0t9`%7*U>!qSBEiagnkNEAnGnsobmB>(v;54ol8nTJ@bBGM
zBIb%{Fc4K8FiyCO5^~@~ri=^=7xl!5k(1GT+<*oXg+^?0j~JyA68E4&>CSMIrF##x
zMrg<v?(zM}f?28;&1N8Qn1Q&@ywi*ju$ALd->5~}g+q!?af{-ak`XDJO66pEwzMUm
zHmKrguyR#np=l}_EcNJ@;F!9V&8r*y+l}&cJ{=RwocE560Q?yzfjei5SwH>(eN@wq
zX^xg-T63fHkEf=M8G~4}vycQn+_~?Cf<%KGLUhgKCiAXlmkiC~AqPX?0z{~gES2`>
zi)ngjwjLl&F2NiNjhgu~I_jPUb6g=M!ST3o#Lx<Gf4mIbQzk&%^{ghe7}B{?ss}mG
zX?AkuIcL~CoG+D$zR_fP8rR@ha=&@ov^8H$8GkWr6b}lJhYY?4P-ts0IW=SCP_TvM
z@$OP8SuoO6PDXds)DR-<s$xp+R^)iMl{QVFqbUhp4+2H&_GGa%oy=~|<dVgM$T~~V
zdZayAHV%{_Q7+Nxhbll?zz*RZ1vpy6V9>y#F$pPg2}g7XIvavA3ZYXKSamY(c2cl%
zF%b4ES$2_i@Sz>6<d}OO)zuB%bwPKjD$y^;u7OS{KZpg7@6M%2Y#207^v94oD97Gn
zpu1ek3~W%PY7q(1WQx?iW7`xZRtGJILCa_N8DqwzQ8aQXY8sehny4h6R1^DL?`j&_
zD8xC<ZVT1lc5iNG9tVlJuq7q~`#=|QCJ38B{p3=`(JXg?WJz#t<y)=6J6g<_^XTO!
zzS*AKlP^NW%%@C_o;G(5i5B<feEMJzMSN&iGQB06hcxR;bs0?gDS;kf(A;znLWaqv
z-2;<0qKkC!2Yw44AYQ&VN%&MY1Yuwad8=^jqW%oGZpmYy%#~p@rpnVk(Xf11F_|lY
zS=<|tc^IFTFCa?GUeID9;D+eVjERQODCAGw`&zfpX3LpEvd9V0;ZI5B-7}dPBQj%U
zHBX{o8iN~D`WsD~(;VO83&zgNvO<yqUD=w+8n}%HyPD`$Srt#S4~l_Dl6OFL1}lwZ
zBqAii1>$K})AnuK?^e*-ap`C|&I6N&Mem{2J`y`0#LkC)g4iL2q|QfDHz*%kPfvIG
zEb*e;TKLLYxyU`9dDQR;J(yDL^1%GbV0or639>w(2{pNQ7Rd5G=$#}B@97qfVCAx0
zbVPcVdgN}5PA@ooA=Q1G%G`n6nYiaJ^f~jBlQlhAc|$G=R(`MfFp?X4tuCi~-RB1=
z#7&1C+&@iHtqX?_{aLvt7u_#dQHi3+m@$*zXKc!5W%L0z6gdv6lsF#K8-nO*P+uGp
zjS#b$eA!SwLf~z5bfa_E$T+(4f&{1isp7#xIqxiIOA)v!Gx;1ku?>=wgC7P@XB;-)
z&@M{H1$j|6x5(gb<pG6-TtWT@?9X0fOMa%1HOht%GBT7&Loa7%=%IN_rZ8<3$7kVi
zpuox<##FwX0m3wENh+TOd;4xo-B#K@Tb@m3fud=gJ)#{-JeH3dMsbT#EN3P&Dc~tV
zoGM>=(T)q!ePEzxU68)eg60|^?HW;kO*Y>zov_E$y(@6twRyY-h*IxFDjWpzKu2dM
z;Gtn`--c0#@|vo7^ccb8wo(aZ9#48?JTsNU*jO|uZ>9aTDLa*ivo$>v{2$yO$OfsS
z<6wjK1e3@>mo*51{=iU^DUFS98XX^Rkb8b7DHVyLa?}@FX%kY#^}o430xl8);L0j^
z!csZri$!esrAX0Vfg35KU|}Yi-7z~eL8EEq&^W6w?3r^SGv$Xj4Td?l<;vQ1>G-|8
zF3C;F8B<}f-<g~!g@cv#C_y=Xw32{v3B$WtW+sP{)JkNy@54|W4v5_#&Y4W7!?NIh
z6b%gvz2H6o)d`D&8*XENSZD<h=!66T=35yyhvnY5UYL{NMB%U_oL~??Kz8KI3hIc1
zv%9O=XaeOC@_0BQ136$00J9(IFnq{54ou2b@=hFt$S6!?<^2=0P@Fy#W1pxO4JO~u
zNEQhr=<Y>HqB1p8FcBdg<f|eWSGh<Oh6A&JGPRwsyMN3XzDWC?aH8m*;AYFFTsnj4
z06Z-;zUZAm@<3RCiJ!PkE;fOygbI8NrZf98@GrygcbpRw6XAl8-W-|){4h=?D%^`u
zIXRJq@0tjAvzzNgNt1do+g0#B8s{1d<o%$+0u9y)>W^~{dLrk5+8si<kz{eoK;f4i
z;Uf+gmjJB=|LnG$D*GCWm<3<QEnEhax=)obdzczWEJ9TZvZx@v#(~0)9RNjNgDmv1
z;7%;KXBe3Kx{ZOh!wyejDpfqV0QlRemtk8O_P$Imo!@VmLR5#?hNP<RBPywCy+~CT
zAzliNJ5$alkq0U1)`cHpuevKZku1@a0ASE*v~&h`PT@G>fV_Ys;4f3+p2?>PJx~Z)
zbf*=9;#uZU6D(?dYkW10CmM_Hz1$;=bFGQfiNV#P*oIftg^&enZnsD=lUr1z?gZzV
zEP@+L=D0_><%`@&CT$UkBsGjQ&<)pQ#%h;JazO5wS+&~M&Cn|`Bu_x#4vrS#0gTM1
zk}U9G1_=>ctu=KZ+cQ}VLu1K_45{L`Xf8aRqEUbvfPEqY&mm<f3FXp$cqr+-O^^%b
z>Je5CH)RCri_8q#mDY~xuvSO)W{>nW1_%7(`B~s<T#6dJFlLE9p<#~h#;BT>K6eS1
zMzpuzSxWRb23Ld>IPRB9c|c14y|9CcexWTAVihP%rs2CZ`h<(`;Sn|Jq8(PP>FxuC
zt=W7Murj*ubw?vc-6g;q<ix(Xo!DY0&V&41+AuVYB3k=;?IaJ9{G0@TgYiqxhmJ;}
zQN~H#h9h@};1Yc{oR8rs!;K6(S#mN})w~0Jy%6#4QKL9xRj1%1RNzzi%lk;C`Wi9h
zwUg7^-$>I;ba-#0=zL8hmYyQ2&Vm!t2S?d}{KqL-1jnamCnvLT%Q;t<-=ZC@n4)KZ
zP1^&QU<p%G!cJzEd!UAagyT%L!RQx3V^v>ouF)dZ<_rr4iBxwXl+Da!F!||+StmLz
zb#RwbNs>Xb>qv72D_=W&&6_bIj3XmQPMDOzXcMK>IO6QpQJQeH!}*deP50(VIyedb
z7I6pWRGRhz`U{~hCR011)PrH+DPRr)VaGrrN$sE}GL*{C=0G77z?_~z87V~Jgx_ar
zo+PbTN{1*@c{7i4P-8O8loOz-KFS3MtJTI3K~~2&7^+D7DQh4_u&Jzs+^%C0*+N!q
zn&I%+Z7RNGGs#)b(saEk3Q+vPvLDDbtp)5op$mMin>d}NA6r@68q?q))oi7xN%oh@
znbcmg_%vQu$8l$Ac0$o>;-^tVVOm}$Cl}M02aIAK3?fsc277V<+_P1~j*eC4oJ=;G
zbLWAZ8@We?lV{pFu-kG=Fq_PAheUJ0y$VmrJnqz0YBUF;x;4&oZpx*<BioN`xHI1g
zQNUz_aPXMKJ$T$HKcHqa?IFzf^E2@1Y$VY9u<+41LfxXs07Fa^Qrb=t65$l7bkiwv
z6X#S4O{^nDw9m^zWP>S=ZJ9w7iD*jT@(f+18shxOQ4Fie<k*yRD6<d1H)E9_+1vBf
zQg|H4ovvu^8rT@ky~*F?7$mF?7)(0QEY&htU<)aVP_Hom6VV)oQ?nQRG=EJJ2goz*
z#n>LKj39vMoSZ3#3W)cR8|zh*n+s0uf^(_x=p03ySVS}KMVN8p#(Q5TU7kjQbAKic
z3*^Y}MQUWUXrwX}2S$#&fCpr~=3FFP?ycG6l$070Fr4iP3;5b8nleJcS;K$0Wyqr4
zQ$ssiK!fuDHH8!!-kj>j$Pe=qLk7oAn2+6-MpIaVGR?pW<4Onzx{7jm0K@>r-9_Ud
zZ0)uZ4Hwl!q>0eBk}?T4D5W|_N(f2Sbz6W;sV!X1X5i_b@tr#WNL^r8ZRPF41m4Qi
zBkiwhuy(KE3+Pp!-%Ki+kiCr@YKm3aM7Y^61A9JjTD%DYa2&>@21*ITMY2FjR<_Sp
zwWOBcDm#R1xDr#<ihN&@CVfr1rVwCqYT-9qV`Ws8xGux7vuG7qz&f;I;#+l~07yD6
zG325`X8m8x=D(x3AK94C17abK`K=y4@3i&gxL!rH&tJ^3U#b|GFx#L|-K-;=V>gNc
zxNmaCJ&s{h)j-O%3d(iC87v_YniZi;)~-cMML>l{#%6Pda2*=gii<E7mJoC?mCPJb
zIUggcCo;Y_Qy4EKQwSk6dUxgb8i?sfN><_`(W)I9Cw6I*q>Sy}GJz;$u2-DU$ycF^
ztdJgfFp+jA=6N+*O~V%y(o{_nYN!l`-whVOaIM;UglK5=wen1hBd<fo0-xG~7F1AV
zNWo4Tc#D2aow*`Y)(C>eW($+0$t-6f<XY;<{ULoI!DKa-amrSZT6Mf0qfyox)iC^1
zuhWM>ZH-ol)F99K2z5=(v;MUTRM&2bm9lgSEe6C+1V${%7m#bWsqRXgkC2p5De~V;
z8$|wFs~vDPEe9whi}pV30>`eZ04Bcq0M7dnNv&E1rSH|jH<C4`F>!>I4c9<Hry=)H
zYSXB$m{EqK4+f;4XEL?Wwhb|%Z!@8HVNEET&5Tbcb9>=x%qOC1bl%h{m;B6rauE(4
z`U2W*^%Z<YC;CFNnO<5l%3F*1nQ`TTQZd$Rlp((oqAAb2s-0Uo<%{`M)G1i`M)OnD
z>ly~2y_o|+`l6W;1<JHHT~5k*)789K2Dgy6Sv(j)e?)f{r;@qMqe+VFQNqgFgk<*K
zT&9d<85+r_lG#j|3x!~^_GJ)=q?}gBp<$FMnuuj5LeWIg;$)Uqg$UpiEN+P=1Ozef
zRY5!5OV?5)_=DRwm9f+^F<Ulv9V{4dgg89B7~v*2B?K$4IxyD@A?TS;!>w~COS#@4
zeW78?cXC{ATN(jv1pkbpcHQOpz3aLw!cjHv-9JXWP#)8~dHBWgmIQ7?`7(l!P{Ec2
z+g3>QG3`rNi@Ewxc~cvF46C5@S&wNQyh%mqQB6>E`BsFbv(!6dLp#Q4Rf|^`j%b(k
z#oZF~(w@QQnw-Uv;7M)mn2`l<_ZdSOxU;#b*-UBLNE6oayLT;)0I?ahJFdO%SgaOV
zg2i+Wb|Q{PUZ6Oled}0k#syn<<!h>tW|lmzVNyZsJAe~SNp=?jS6Zwf60YN#H-quI
zZ}D+wBo^7n%aahN#ofm=e?EhOU|_M(juTTVPx)d&Gv;{&<VE0{ZZ<G0M{iu$VAI`Y
zO!R~FMbfnkSM8)5f6cBI_x@xyy9CDEiJ^W8))$=Fd};{?7*P-)k3wT;)ea?DqDbnN
zGzTy(14ouXSlk4$B!V^WbM7Swbv^5*)aT?91i8GK($M%Wnp%t79OVOm>WL6IuVE~~
zq~A^9aa0S)T-rFWq=Czn%4sTt(zE3hmtNkKN@8gdqfwEl#Po|E@6M&^A;J$25E;>@
zG!dwHD5x4erMa`{lO@(tQ|n}=SSk}3RwC0&2;gP+5(pBJx7&I?;()<EMQQ#l*79cy
zoI#ipOU#J`=C?k~=TcXGwRVXB>xmQS$R(ge#r>&P_+{L9^dNvjP_H6QXmRhy!~nfV
z?P^n1Y_$lph%nvyCY4RHXH(I)1dAVLmHkT+zTj*w1Me8<^lJ5>MR@a=N)R0)jk(TA
z&5i2gOE9WoOM-V}XlS;`7G#O90sQg~Bk)p^r!|UvQ6Uu%*^Vt7G}@ikK5|=$%{!7g
ztal;EnXYD#bLt&~kxHAegbKbt+OC}@W@2ouFF}N%mn_UNJcf1^XLGb7P{nZ_)iQ#Q
z9k@Bkm|(Yt2<W8t0dldHd=SB28l|ZNC{jl&;b623rjrM83)ZNT-c6IV9?#_xxSZ9N
zD5DbH#Oh~GH#ol=KFM>ACC8nyNH%#eKg)gBt>$iirCbXjqUF5QUStrn(L10nI1SD!
z>G02xLW8?fNe>9d6xVFaVUGf*#xQuWa!lXor8w&J5-b$3OrK$<a{qu~A#SXR5p87_
zV3Z$99yDnaJcIkfwE(FvI#pt~thTUkNw)^P;%%plnq0y%DlG~UYPF2|4wa+kA;F$6
zU@d*tVyvn&xNUsreOL<v@H5mhT^{#Pm+VKHk}%=emQy4^CZTaqH)s?I40kieND2uk
z2vbSDJfvBLOu)15YJyVSS2Uz>t=3fPcSJN&sxzDqZ%FYgVOPjZ1$@F|Kb|4kYpTk=
zok20S-`g}mbgQBYx08gv4iqx41Waf#l)Ny%Z&+JCUl^bB-d$T%X|htxCO3xr19k<Z
zh9OEJI_pw@3xjBP=^6A0yK0xP7=B~w%L}FksXHNMHrin2Lw)1R9$Pq{F^vQ@3v&IJ
z5M&#cm=vUx`LgLIdkipi&g*WW$F4x7<yA5^;!6x6iZ~AF3P0AOz))C1C4jw464J+Z
z3AI5;VIx(>05U{yayH9GTX<OX&S<Ad0H0zhJjmJt8^KmS1t*`%LIpvCt4hP7b1qg<
z=vkhtg~5SjaC8=XuoNjOjUu}U{naKB7=`^Hv|RWyxLy@>w#>XK0V=MrGl1_TD8wgH
zf}2&S%cEpA_ZAnb<W!#a#X=bN*}_3EWC+Wi_m+}VM({stA9@<V|HBma##RCfdBBmY
ze5?&d?1aS_xE<Tl$Ef5MtOH_UHY?i5ZCl@-FVL8u%(lzN;O2vd%1gdj8~a*z`BDU<
z?4p5tb8xJ&eJyR_r~v?Oy&2CIVUgfJXkRd8Z)q#<&F#(Q_vdP}0q?nebF!34Z2`d)
zCd`#fa5gh(0jFbIY0D<;d1%_6JV2W|C?F<$ORG<0JFs>dHQgdw1Wto^xpdPk_A{Y{
z2dyMm)6Om9qiThkoZs8YIfvg@v#yMtPss6w;6u__OfIurdiM+hm!=P`lA5=TR-c2F
zjc}k^yqN+#C&#u?twn2zw8!9+HV+w-No>2=o-FN^&%w(>^gO-{auuv>-Rj>qO6kiY
z?X=E(Qp)GG>uzLX#RZCj(X4kFO+$DMGQJF*0ekYicG5%TV|Ww-*8Vx|q!(b%X>)R!
za&OwUm428-(1K<MSnnyDAS$z$qe@0`60>!-u!yLT1Xy4|O^9#XRvO9V_I?M%${L8e
zicAbm$j|2s6G@DbibjRGnf3}SRAnndTe(sJfjZ0<(sgBEz)jxuq3xETcbiP*_CK!$
zXTVDgD$5eubJPYfi|aL+<=&O=O{f$ys0`xVmG7UIMD|b><7qCCQFyKmp~=)Vb@<lg
zOeTA9nTZ+~uw6M8mDB#18+)Fx#bJkV4bTcrri`5v5Tv0z<R@3M6a_MU>jK#%X)Etm
zdmC#?QSu5KeA_6;zjz<T$X4&R(H%y4875@My=akq!TY?Xw$VY4%2cO}zJU43GHUtr
zUX#)w%3urLUMo*%F|-l<GGWzo<#~T>xkXO3+80pGoi;f)D#jgFksGtBjRu=cp42tE
zF4=Yama!3<m+=e~R%w*>5tBaZD@J)cZgp;1iok*_gA%RSGHs;xqM*H{Lq@0F@HOHM
zJO{k)7;LLi_7R{bbJ%R|EurUN%gXwlCJHDl--b8+uKO<9SVG*zycS9h3wcx@#I}vz
zdIP#TtrUNKPrH0y2LBJot@eJ9D%muXj@apBkejgO4^{`RYbjWH-F+ABN90L&3-(>X
z<HY7jn0Mzc1g!xK!-$PM<cUM1&N|8FMYdun<ggXdb{#`i<+wh04Kqx@@0!k(?k&*p
zNyA3d4&y-Cdc5wDw~iV65SUBX@CRc@VC9X;#IjEi`+#MnOt|sr9-3+r+K)UKA5igi
zPl#`Spcqq5POa}*ZH+IhvBZ!4I+-$vy!8Y563Q*LyNnwgth^@giXf1O00t~{3s_~g
z5NQ|!utQD?vYU=gWqC>aP)7(s=2`@M!A)bCsp;~jEJe>ak5rx*f;djoaI%CIiA)hj
zCVF0LPGKhqbunaQG0hbG7@S~67PD4kw-p?VzJ_i#14~)DY&s!Y?|2)!UDo!Xz6KF#
zkCad;t*Q3YQ<R=~qY>sN4Ju}~vK|XXEKE$eM6h)al2xrUvIVP`WdkB@N-~J??Kam>
zQ3v87L9CBplL+ufE^2MXYA<34Ni=j@O<LO^PHGV_K2yZ>VX%QhvCU{7OA7{@28#DL
zfJYcrxMlEQroVDEDD&pWKC;XtHmy#d@nPl;pMrLyQPe7e&_8l8^tCFOo$N%E8W1@M
zn!_k;SS!M%u!%;R_LG$mb)d~iR6a^Q@NglYrya&2lD<*gH$cXgP8_Tq(;KiG5n}J3
zI7lP2`Q)Y2rG`j!TF~y+AdEDjkkMDPGU@zukO0U4pk-pEn*9+(i5Ne6_jZEZ14uBV
zV9an1aUYVxvudyfezr*l%qasym{^*yGOWyOgUTR|nf3LVe7kiL(GKPdMm1<RI=95o
zU+WDKwY9l-Fj*}(0D+3gCM5>s12l-}bQ3lO6J^{Ca}63KLb<QYdoUNzmrEdw_V3LW
zsRmOQ!x75?D@D#BSkeohsp?>n?Z7@T_7P!Jg3wLW2a(bv;ASK>P2)$6T!6bvRR>r1
zJCg!ntuyw3Dcj9_$YTo^MJriWTy2sNsxS^!kib)0N>R$7B)i?wmo<}wgvFS6Pm*c*
z2oh(?=4}WCrS?+)R~th7Btnij!cqB=-jI+3GYd5ot|hlG)|^9mieR$RSP_;4D^n|Y
zf{+o_fS6AM_CG+ws5{I=25LgTn{F!DCA{n&fX0yqOw`F$ApPn_!Dzv91FrmP9T$z7
zrx#!$dV5T+wc)hF_@*7U18s5+6BP1w=(BP<Sz5T!rn}V!fcYrE5;HfLQQox4D1<85
z>?szI*}9=a`fEF60J2POP_%TgR5oUm5ST<l<X_f4^flo01hCZfROO0XrsM^JuOxyX
zgd89PS~tv)xFTpaQz(&I$tXGL*pteKUyu-vVE-$8OoViq9hJBB2LF~M!n@h!vRS}c
zw}4?)Hp8mmlntWYTpT9lS-)&vhT{r+7y^c<N!?KZ9M<GR4M`ti)Q}(JYcaNbw|}DT
z5`nKU_49nK!QJqE0e7-7dM~2fGgvz=K@cz-`Gp)3zQ?rahzPtSqm#<`Y(W$;Ln}tF
zB3>*JFQ)CTT}%-+>rx)*@hd2aSpVB}3gR(D;PvxFhF>{FxC^Qgs>I_od;s$i#Q34Z
zo3H>1XiN>UgH>P}H;hw8J9Ak&!SFU6RzX}qNi4Zn&|C8DUen(35=k*ZA4F0><OLlm
z)^UO;)(y(}O&DBhHlUh-y+aUa?2U&>M3o^#wdmeDs<P2)soaXQIV>ZQ6z!0weeKvb
z^{RH3*nm&v6TQKiDj&eWfwhvwKDBxKK$$eD3_k>X!NLdMYH#@QhxL6=Xb2m3uwldy
z`bjO6HXm-GrNUdp2KNwVNkU^0XmH+L#HpxG@z7(EmIxlYMQFGPkwEJsG$t_jWpo4t
zL1ay4VCv1YPMRnp?+q6Y>9}Ie)`1nMC=NH-r&M5lVJCT1;A1#%`cVe`OhM<@Y0B{;
zC4i^c!v3yXCLE}SmyOPwfY8PWrC~s!_#<tjSG6KAr;cY0$b|C|5q*%0MF@zUAyp5c
z?6XWfhe98h)z&9fFZCt%x$6)(+Rz`Ju{QjJyVo^OGgyI@RaL?R$PMTSFH$o35Pvh6
z_NgC#fIaPskv2Mt>DX=|kGf)LytW_TawLY0RUtT|yg*7RQF@>SVcMIIgif$Mv>Cg}
zaL@y8))n|?F|-~SL=ZlGDp};z=NvI>4D3lt`GFIfAfssoKu%O|j0}Ga#jxcK5k_FD
zDHAu#STjP}{>A`*@?$u^s1vqJ_%>0z3*2V5+8l=NCuW$dyjIC}NE-H}LCRzHT$6W|
zVMdJpx}tq;Q#}|@3KznrB%@5MXwH<d*<_N!^l?=Do{wlh0*9)uSPzOF8b9lRb_Qu-
zy%v~B8i#Ytb)mI~1G4={0Bwo1AIHUP44+0(zOmgZ1qZBTti3RbI0T1^X@g2{tXuAW
z9a;Dw(tuPvm_70y^F{R#l|0VmR-c1>5^opwIan;(N=Nm;9^F^NUN_EPWMc$$CJ<w#
z=dGAfOilzoQWPc)R@5k4pcpyKo!#Kr?hEKId_wyXw=p0=3<WN9%dKb8dOlhKbMl71
zyV-OhMxh0e=AY^~-G#g6#>UQvgzlIrdZL#p4h3;4<V%Qi<#Tj8WJS$03M6Mrp0*ea
z>rt0yx6tqLK$@{Z0V|{)EH{mKAnE4<_zpm#zkqyQ)o52`91|;U3ZI3ck(qKX1w3GB
zjL0X|y)l^t^s4qd%|q@cEx+`8SVTS4s}xqe6DnOI*M_E-P!yYRtKweNfKOW?Uzo+x
zrFkl+<e_};1XBhZPfV^{(|6NsqFf>wN3(QCF3V?SmgcfU$<p*@nmFPd8mBE!*Q8J`
zr$%d2DTQ3@5X~Ej)e`)@po44&DrcEvHKC?kS<)AUE4CdcT4>IJ);gjOFyx(?l2t#>
zpVAIcqe%LNhFsRXGZ<sy9zNKmRI3jU;;@@o)Rrl2#re6cRh&!w7M!Pm4K8F}MW~22
z6Cs>SL`vVg0WdrIfcCJ(Y~oS`4JjFlWU}QZ^Hy@QZDecm>sy3zfSKJ&i|Pcmu(^KC
z8US?px*q~|8DC5%j$e|A#1;vv+!P+1|0vfEOEhHZwWAWwlGct&IFw5*p);58407m~
z8f4A);iQK-vRcE)>zW@!F%RkFzzDI?%CU#>Cf0d)1P3tXW5!g6_$z)G5E@8X$>|IL
z4&WdZfrb9uERNw?)dMlv!{PY7g{dM=%GKvYafZeyV8M;fL)2%r*#nmvt0>oWRiM$-
zZA-CAH-&i6lo<)I>!d(@)BYqTS$x{A9`9|OLC#Wd&yNhFfB?b1c~yJa?wG~8J;V>u
zI$J_b%nQh{6hmk-V$|x08>SQkvb&YKbLIYIhJ?W41ZLlG1<dIhJPG<#zPME<cNQ>{
znJJ9Hr=82-5Yj`SdC+%U-z_{(xq%LzpJ<5Eq|ZJ&75tOyEg3){=q*gB+C>0|6*K!_
z12D<M`V1}pU%>h}9}mMwembaKkoY4vsB$&1OohJ7NgVt_Vb^It;qc)!a&i)0xe!mf
zSCGNlm9MF@Ef&3|iN>WksaTWRs=?aIwk_EVgl!mmZ1QyID$pEuMQhHFl_J=1brs%d
zply7%P~fxIn4a#VohAPkyIkmY+fX1Z#1&bEFoS#zBCy<!v#5i{D3)xSmqw+_HHFE6
zr3hhQg<T~kD{2*lHr#^IxnSiZVpR){j*!=RDY$H@2&;W(FFTjP9N)7H6S-x=w-E-V
zF2#e10JPl|;jlPGgAvDHa|_Btt-V6S;BpQSF(KkFLcibBM0+z-*>YkLThhvi(RT`8
z8<I)1YqDMoa#q7~WU=num?y~6qCcPjm2aHOZlhk|KA6`x|5m%BCdE9BtGY<{wQfqK
zi~=7*+Omn~Tb>t#k$1=%S;(<QL#SCONu0S3boyHwK;Gc`m)x!<f%A^{wPF(39x5V0
zN&%LDpb6j7eH0$D=YRn=n7$wdEkFQ;EnFOl<k<&z9tn-7NmWapdGP;nEUiA#q%{C#
zI;uy^)+;RGmD^~Y4l^R!j;P2J!t;EP<Zul+WjNT#XA^6M6cBfeV@}5b%+y|^T*9bJ
z7725_Md*u~9H?1nW4rLIRMnb!TWE7i@W0nT4hA3xu0a`VDydR{4`9FvuBb0Svri*{
z*jTFxw+s8|jdCD@kdqs{DnY0*J+B_bq-Ttxn0bT#6gCnCpty1+tUaJ>I=U3#>Gj*e
z0MD~&y^*QM=K9y10UYWdoh|FJPl5pv{hj7Wp?icltv6vQ9LypHKtpJat@^Z_l~l2g
zc2kuiZzGB{Fmy17Rglye7QBmTIQ%e<Ri=4b#|#|G;$x%08T?Q3wz>pUF{uaVWE4Ca
z$xpGo7q<!>`|GGt+pw)|C+Z6XD=kn}cj;g*g(a~RZ)u_o?N|f;5E9mA4vhyZaR41_
z!1*c6B%#t?97Z(`92!Ty7h#36acCUlKTZ_QBoB=@B4~^qO;BOXCO+mp7QNV=N+18d
zxvZJ|OoN$LSvKKLW1dL`X(sI$f*TA2g43W>OtuPfULG2!0l4x<_cAZj0J;a6q^9D2
zi>Tn(eHK|h`KABR_{WIXMR>G9x1t$zVu!pI>SguVtR8tkAU6T;ZJ_-7FwD?1Ib&xK
zhWSME7U7Ru&G3$?#(kn)v|175ByuxM*!ZDw3W;M1IO!*7qj+eX%-9(O73Eocp*aYq
zj#(V3!F85vv{6?c^DJ9YC&}njh+;4t!MY*@o7AA$<qGaKIBXjT#UQ=@q*0;_eh5y_
zB<bibKOwY&n(x?5FN?WhJd!X!w3^c!VAq4T;Lw!p4TLrz%^Ge%_-(MD<4W|EY5_Gu
zGH+;aHUz+9=rGZOaXTKMZj08aS}9;6qnQfqh7ikPQ1%%$Do_Ujb$~B|=v|E(GQb&M
zz?#@5;}Vv0X{tI}!ifmj##S`JK{i#+!VN!=>TW``W#ODwNENnE)@Gu{gbW9vJrv{w
ze!@Uj(n3m2+D%xiI>uSd6>w(-R?4Tyu~vqk*h2`K>|V5)15QV-Q_D}fE#wGQsy!;r
zEYaXN)Y{6V{Z(zM{d5j6PkY5MHnd|^wQAIuXf<&;+^IK@LDDHK2tV&MY|aXLRt{H9
zYLpE}O+xcFY)Gg+H_#>lRZ7kA#o{P@FP^`UtI!r}bw)SPi&5gd7I6_Tb%2M!UO}Mw
z9^Fk(fp?*(*x#qDK6v6<N*f>e96f7v0GjM+wbQ`9bO0!6gZ;4vLdYi|DH$fogCp7b
zE&0Mh*sW9A@eq>OuAFJmqHr(hQ;BD_k>6wH3P?DA1X)>cniK2{22(&_lgguoE1>XU
zb0r%E7?G2}iHn;|*`e{pxSIy=$V5pumV~pWu^P+<Ih0PCADnDXfh1m+qUXhA>2MAP
zk@iF5GWr!X$25m71k8&0WIBbOlhMzs8GiQ6vUO>0GE{XbmEk>6n^6c11Tee)G)Mzn
zXgayiAbAFZr5{WqhZs^RTr2DXv|vGREdYq8$xek>LaWo(TMVfD=ZrF%Pn8M?f^Zy|
z$4ne4gjd2b=H-QXFDBr@(`5~wx~U~(fe>}@+^Rf_x{(Yu1#VYjjR`659NvbhDfXQr
z#|4E)92DDh(1WU_F6e-rG!EC95SVtsLJ$bGz&e`4U|phaLb98L7cqb;d55aqO4^F;
zy|mwgs&`~^f#3mfH9HB(%LVWz2mv|OM~LNYB``P><NeC~!Fd7WoG`=~yk1aCdl%($
zmH99>$zaV6V%H3St=PCp!4&d$uxo{)deXUl(-xecM>k9%l8>+r={NRB{g|$P5<sI!
zx3qUFNjEs-jVTnILHIHPZ?@R;VJHv^qwU^_No-h$0==huCrE}dc*u`K+<#{!^|c!z
zfxUs~AE9*+Qwpj45kbKKg;Xx;0Yt1X=>eMJgAJm!h^lF!?_MZQ76$2$h(rdub%dEP
z7JLA=h)oUxRcsX*;7kCxaQ2nT3px#o0Nsrll}mEZ(quZ#ait^zDri?|3EnNylta_D
zu=}Q%8l;5nVC*-L=H^Up$mS8XJqim~mqKswTAqS<PZ<i!IHuRA|7*=VO&b|7^eLLt
za0c-zkZKmJJ~i-DG|(lk_~@y?u}Dmk*_^9)wa|+}LP?zR<|B1{6KJ57bT8x-r#1eh
zxhWut=4&x<0BZ+-(w@LOBKWbD;W^5|RvhtMc!u?Kz_{z6<7?`Z<%kaOLjShiOvM03
zCL#VrmJY{m4P!HRvE4ch>}DSUfQ}ERu#=x#cqYuFwFu>m{nbKqkQ%j!ib$-6N>OSB
z8jZNueC`nfSGb7=NC+=C5HcT863%VG2@Qxh4@5viXFZr9>>s6>2vmm&{d-_7cR^DL
zZ7Wx)c`6+ElizGQRz<Ht#vDYGqO0-?ZI2VZ9r&6C6ikw~<qCMBOxhA}-@D1QK?~bq
z^G`Y`Vvm^%bkDEi>DoyL{xFc7c6HK3;H>O~QbZ<b5f~~}=nNg!kj&wE8Z|qEiy*|w
z^v*)3j+rU?`K(h$zl9!jvX=uH6wWQlf|+K<gxx<Z=J!+588R5q28z0f>3KjjlG?cF
zR9vT0Xg-MkEwr*zX=NvCWhZGR;h{i0=VCLLI{)|>*lWTg*4?RM-8Q@mEAl=G1`=}j
z8!iAL`fS5cjQv~4Tqjm=D6|f$PXQ4+i)wt@!k?fRIf}-PQ>G&4G-slr<PP#aDCUkC
zjl=$2#RlvzG1))?a|?v9Q^36T8R0aOPBKZIc!gUHp%Hdk$R9Ba3E6%IL^5YoCM~4c
zC=QKtTWe96ug2qzF*aQ6>-jZ3V>Oy%=kxgGHD(IsgPkS~Xe+hdJ%wJk($MYPp_r)&
zo|*8X1m~h-pVdrG(yD~bN*wV%NRqSpAO>Dq!?3`?ybqk6^qM;QR4!_JOu@$F5vB#p
zAUG*O;|4_96PciMcRWNQ29NbOo|v1@p2+@WF~^f4j0V1@BnG2>#ukiy6yJ5?Jy1N4
zSPwy`c>Sm5+<^KCF$E03%>Vj~ml5!@04D($8MZvUYC0i!C1^gw1|z(K^KuC6S_R3P
zv*3TK!5N22w!;F}4@WOr^;qR!wGkpZ^o+-}E3Yq@dU?Urk9`&eGKTX9w2uk)mxT#p
zSW8MbzatO<bmcYJO@x$KO`tY5*LW%OvRcg{$BbB*=t;$+<{-cupUCQ|Wp5g4%xNGD
zSk#;*nh_A6>G~;e?F)o0V77QOkQMP{SIyOg<=FJjY?@|>f_FE1ak?u>qxoUE2L>5t
zJQq-Le{2HfH|&{tU^DkhWY&6doLwl=eumhM2J@%YY{2}cp$a<BQ^ttcALzCg8oiU*
z+0ry~2VIS2S9Lt_R<hh#yp5tJ0K!0OdP>~A1GBx+<UzcUgd!)j@WA3|LD9+F-ODh~
zr_c&Vx*CMPe30I`0g0MFm}0=EB~?iJZ5S0*JVs4-c;K>;Vs&|@MCY*sd?e^i&mPRD
zsD@hLW?gq~FHOaSD_WZw@}XBy!||{@BH;!ot9TMoB-6X9mm`vV;UH&{TFU_oh0P*{
z_B#YA4qug1yyzmA-b4;b73fczJ<7J(+4e}R<Q0BNEf7VH>WQhc{b-O;Q)fY1&0{WL
zpV@J0)>=a-HA8<)D%JzeE;9fjP@TPEKdn%zGBt#mCC^8w&@Uo3_(rg!@@^-BmT<>e
z16m!JSq3l5mm+w1EI15D>!`#Y4b$%e_=lZ($aFzysUQu907v$waC&Bn`~gg{r*N+F
zVg!Gf0y<`9yC|sSS59A746gDdUT@F^_u$2F*H!_Kp$qB|L;TCT75-{gMvuXpMmVJl
zyJFC1Z)sf=SMhV^B;{U?bYZNdxBg&T6MUwwZh~`Tw_zWH1{pM)vtVn{c<J2=2)rDV
zFT1<YC^G&2owH>)I#wdaQ5-(VrV)^)mo9V(3}RhsuO(i7iS6qP;q`M)4S821imW$q
zMIAxTUzjF8MRIV6#wIF;0(ciBb`~#O73F+aRg}MQRdhn!<^b^#FEyd=ATFX(KKWhc
z1_SW2dNsF7E9b@{s$(q#QPnF-hr3MjyFJlJ`}2V=?D~Ah)0Kz?>7|IUU0rx3uUbkS
z;Myx6cj~kfPN8mlDXb(BCvD2)@E)Kt-qMw$$5xuX@C=gzuh=OC8*L{+I3@gwS0dOv
zg#j;%XasB@4i~lsE5CI<5~A<~C18ofrTf*&gCMcTTLa9+6l~PNNQzxtl`lJWYcPk3
z$hK(kU#*<O5sGCljG7y;?1Dqr*z&c7Hxa$&7;92nz-T&p3&OC#@RdV%7WbzlDhR;z
zSg%o}<%AI4m&jU2d$m07{RUHxMSq+Oe&0#EkaFZKBShL9mZ&xQ1QyKAb_KDwj{P<A
zQ^+-epCUsNc98-^X^L<_>oSZ0LN0^J3101@d$``T_h0(>9kMi8J%z}Mxt)r<LsSFT
z4kqO_R*>afb`%B?juBCWwwoo)6~v`9#fP7U#d|yd*+x<>cpqT~$0Nr_|C^ejoOios
z3Rr8$-aG51zl7TY#tuR?cqP+pb8JkKNaIN9bcR>0MrgUdN*BM`m});AvdYktxD691
ztU4hyqF&HcEru%D)rLbb4<Y49AG}Rs8U&r2bt?woB38t2+HC)<3f!B`;o2+D>be_q
zC&aw3VBSr)n9l?&XFT_BjbZl0dzj2EPWR9jCdd9_Y^zuVLmb((4{<VHmX1Cpt2>vz
zfwNcp3<C!*z)X8Ktemc^cqzbB5*t>q2MM#3d3$7Ns_~S>{+NW^`Uw^)@uA%~wOHY`
zS>;JSXb+P&2VV5rTYui*Dri4Vn5GUfRq?f&ifPV31<lPx)uM0K0KwMAtii1EqOLd5
z9xn9?XlRV?N8}rFf(?5y1V@iG_>*P4#3-d+9**JXF{!=L=s4E!Mk8K&t?gSyV?IR@
zu(SfHjXo{k(pEtMko=MpHv%v3!6|jhxP}Z$KklG(QMsh+AylT+^JytuO7DD;>C7H-
z{nPs(24SG4_k80eGo+kvHYgEa!Aa~xZOWxN;8>g81o2B|RX^3HM-^%{ZZkq!R>0c6
zz`KY2up!_#z23X>s{el8X~i`ZV^~rWBv1H$3c$}}27(zT?m%70BA4;0ft=dM%Q#hy
zdqSQ;0cq{QK%H14ti0sXv1diaDrIwzWrC!$h%Ue$4SEURk9k++E+G#$Qru0#Yr%_R
zmHh_^vX!6VU#NW;NLkJs9%?r`An~yvfb}m~m?8G5{WADJ;uysAY;Lb=rG$E*UJTu5
zqzHTz!cNz~7i3{vA%=ow!UF~0Agj-ySNOf{=6XjQo7oqzYwtCJD<&*nYEFE441N!i
z4mYVs<%5~6u`+<_5_pVH<sFyKL3a3wCeRQ~7vMe^rXNeq3X)fbF$V@$w!%8oJ}PsM
z2vYFUGI}GrM6*;dmd{YqHk5-X+;}T^Ouq&|d}eDk3_FJ)ZHP`JqF#RcyWXq}Ws$a@
zVn}aNda)U27Nm#6Xc<gh$v&Qi?Lcv!W6=BBaO9nY_bl`u$<(HkZk>ElHK44=fD**p
zOmjTEEW#7cg%Y{^?80V^)*5@hWm+zGp*NQz^1Y=RSH_TiXdFG$T$_e|{3Jq@Ea!S(
zYowl~EqrEAbkZ{*$c7DpF8?qq9;KcoQlS$cqW`0(WmVt>8M-qP`(xy8KYluawTB`y
z_D}}lp!~Od=)~tyecd>B=n&<eN8iIOqSs|v#-1#cSuBQ996Pa5Hcy~uHetgF-XIE2
zGSOz}0<mz|25V%a9=tnQM7Nqym<bZcmtqE+MQm`F>QK&QB4YG1HZ|Pf-4U=ECIn<f
zRRaXX8p=edzpBpM2tq9o_%+g{@mywd(kf)qhBG-VSG)3ger2m&Efu?+rZ?E%jXhL+
zj%q83nra;=BM5-t#R6Hh4Krb=xA~@Ls}i$mM}wR|40p*Uh!KUPxmU0ygTn5cX{Qo?
z{ekYsX>U>;Z>cWR2k~+&9N5^*R!x;+PY9B%Otl4|zpHt35CG&KwP(w`Lz>*WuP}+B
z6?7Z{$U$V0B%AP>YRkopkn1)GiKSr821pX-7E}>OFqSF@5|(|OHU<FTePRjct*Fn#
zx}KSht#T>MC24mx<`igg6PA0`6O1jF#hJD#a!rdntAtpU!|tn9edfKlwqki)zT-Ag
zz`X}W)mmLDueNT~R#P{4&vn!Cbk*a&JI9+%K>8<WnZy)~s}0%wQBB5h@ijD&5!}j>
zPS%H5Y7b!>%F3xy3s1BVN}@vYyI~LUj0EX6E^2w@IG{_TtAc>2(u_Tt&R2=6E8C1^
zZmUu|gE!wJ<X)3ki<AP)+~u?pu(~vB*NCNE5Jes$-i}D#EL&X)j1UO=8dTAaJ}hQV
zky4?Jczyg;m<5`K2J!l1EOz4uJOHv3ffY3_kgLwkR^^GGSc0K5n>iD!zzjhR@(>S=
zTzw(d(Ebv14TZFMx?`T)W=zyK^!dTffF4$2Vs;~et|+28iXd}Ay1v!Rp+>U>`l*+A
zwQyCsvEW#rO_HW~V#@zoWfagXES1g{4Mv4{l1+(fKG6~_LEGs4Mng2I0~T8#A{g0l
zUe;s{20I<xVAqA-z`*K*@~sSIi47qj$m7zRHGTB6i<m#I_7FnXn`pa^jNawlkIv~8
z)H#iAIDZACJx^~H1Hw0(Fm}^ZLf`yJL?mc`r@)-RyL$N!V}Jc`>j>>G;jKum?XDzV
z5sD422Hs|4q&K)pZh*}1@<Y1uYd^k+r}7VX=lREp_)GnAk$P75>f8D)quzM`;5yF!
z|M9nsd@CT)_>H7>*|gS>A`j(2*@d@Ux*+3W>`7chKN;kqWqvW&Z#{Pp^W?19&Am%q
zE#`WP=57FNuBPKtsl5;9^4Ql~7IVJtGLHI+xm5@q8r}1eh`B&F-WihX5p#p}00`RG
z{Nj)W*DK~$Gu$d0lR5s0xm{B*DR9Ej)$yLm)Zn_w#N^uKx`EzxNdr$tUvKZkKq5Jr
zN=(!NC)TBU*ADbeqz5Jkdk1=Y(<ssxPxlNaCwuz)@m}XSOfe{S(cL|-+r?bGy}i3@
zRh^LB-d!SdEanz7p;!omw2QfAfFvI(lftsV!)WhfFuI$=J=vU?)Axf%X43#!hY`Ee
z_T#@O<`#96+z|p$)yeq(>c2zSN4-QL_Sb(?3(_a%x)ez7O<@MCj#>3r^MPvExo%*<
zhz}SO={T5^?(6G`53KE7mq_-nOUBnG3?QiiPEGVpCI{B0;_>9f<m5y=J&{gNPE7U;
zOr%rm`qxd0xu-RYpKIu6uhy_bvSup32EN;x>d#)SF@N@IP0i0<tzq64%?tVka<fnu
zSh_FfVwPy8v3N;aOT^qg-&LY}5<#5aE58Drw^&7CvJ1t0s;-&6$;5!MHr|_zr&6iD
z_`pQpU_6nC8*8ydYOEbZ2lp&g4H+LX*I_DKcQukA<`T9@cdcUGD&F30jlCdxDi8S~
zS?X?AxiKp<h6qx=xIT94zIOCKMPym5(1M-?P;MdTv{p_MwGVMiXe<h0kjX3nhGmJX
z5_2wGEeT(R*OrtAYmuz2<5X&Gs(&)IcA_^vnONJi)<~}HPo^f<_V@Jku8Xfr)C2eS
zBnH=|CMSB<^-N4Ady_ru`UX?+$+*$CE}fhh1aK$VdV^uE@8(D8Ei9(R0rWg&YOm>5
z^_y{Mvz113He++LSj1}rk!<r1H8R(?&mItS)69xo9zVrFeKLz*o%`$9))?`jP%i!;
zHWphozuFj7bMrz1(S<}7>f7&}oI&eqx_J$@)?s)-r*5$6Fhv7o+-@3T3OYi}Ys#(f
z@9#sQ-AKw{cXfBwR$5J1ZR0bIxz+1-x)QM(#!!>fGX~zxNVaXY#jmLpPt<LWby^t~
zd@2h*x_(lGLby7~$aORGZlp=fJ*0B}860)ZP<PZApLi;<F1c<Z+20SD>mQ8w_N51m
zWFiHtMIu#isglOTL~39#*}ryOYHhqf-PhAkDXEFX;AA46fc^|E)MI0&U!g38n7hA*
z^|c1A8+#@*WV_a=RnG2Iv5ao{-r$%j0DRc)lB!j>VY(sa8cFSW1q4GS%M;k%&}rSN
z(RUux0Z|=LpujbJ?C<R#Nc8k2dj{97g#{l>tQ+X>8yr~I-#cOSB>T~swZO?93=bG-
z69cJ%l+l|Q?C&2)_Vi2|{a|b=DdudIv;6~%cu8Q<lNixG#ne8~QiE|_GTA?9q>_oX
z{c8u;_4W4}@pNLsNF;juQ+?~!)m!3t0v*?v8l3FuGy3BFy#w*V^kmZLH{yf6abprA
zWdpjAJ+!$c<{ixful%Zpu<|sv3MiNs%k-(oFpbmZEiu_dWOs{tZsg67>b|BSeSIlR
z^YJkzjKQA1_`1p7$@ByUh{=J$wf(6HF;{@}q+mJls!NP9=~>JdyT8{M2<apRr-C*u
z3%F(*ZUCC^S;Z}gs(9EwRgaZ7zX~z86<I~v8up#l-vuaZ*fQ-|EK`c9SlJ55_hzex
zg;b5j7haYHbAwq`Oi*Ne2ZCV>!9p;WKC3bI=D4bG8@~&k8sV2%Am)Hc&Ad5kRVHDT
z0hKq7aQ#+pwVT*T^N3{k6N=6o?gndXz7g#%3+;EY#xiwwHS=hI_QDsNCyY!Ta%dd7
zdDAVfT2+i$cow2(-e5_z-yHKi;9F`CD?Oz#(=M)(l#^pRG`7{6O3|Cox_e-&?%^@2
z8>dbT3SM=uQWmzJ>D{pM^Wn&?>{<}|_B+MgdNuSZp!t1xdyN+hmjlj85?-vDFWt1n
zIqmyXusTK)z3zI$usXKNOlAL^sC-J{T(xket7Ep2xB*j5j>0D9PAO#nRdA_!PIm@x
zpemLNcrjl$cnJ4*9t&()v%HX+eq=hRku5b{0nV#goXWMlq-rrzTvVin*J?5g1#lJT
z5uiBt{g|Dtp`(U<wX<S$QB97;*gag3DXz)=r^~G>T3h;+xc8=e;k8?{(s_+5+Cp2+
zSXDa{MSh2BL2W8VTuz*qHm~L$OkFoHTn+O2i7wEqPG41@F6K7gP_TYxi;_1ec3jLI
znqTZDZs<b#9{U?YIuF5C$i@7$F{CN^GUp0n?k>BJYF&G_ohr8S5ZNs{B#Eu&-_Mng
zD@tm#!SZNqNv+8v_hzAV@^ujQxdE3=uPqrh$k+=KfByZ>D~|BiSU5d=B5*53*@l0R
z4DY*l_-{Y&8h$+65gUGzzE1pQZ1`vYVfOCf6GI(6N5t@njV;3`Mmh$EPweX0IDF#4
zj^W|QcXfD%AAhhTOlhO^*fRWhpySW)44)tje|xp-H`fXOXa8#W$wM7I!|Q%9`#%jo
zzVfpd@%p;aou1K<kdF%eQ6cbmzaDTb7WE`mK+-gk^azpkNa()Hp~w&@c#^&zS7bfu
z<QCuw>GnMc<m}G`!3_`p{ZPj!g^=mye!h8J@1O^dl^UiSrk03*1jJ7(;{P!H=Rf~h
zHoc=g`j47l$TON))h4H;4=<Pycn}pmgxf0NAnx4o4>pDO%?$ta^N*;`$6xGtpRP}u
z*AquNs3PJi*f#?9fjce3PZsc$?f8<~`lU(9jQD%K;~E#X+vYLzOl&{B`VsO?T4#yY
zrI#JXuN|QEgeKy51iHN~fp8Gi;!$Mv=K0iKCu&1SA3-iCK0}p(;!|9yx|$V&V-Nrk
zIn;q(8R;ktqb276hn5gK!Ez*xs7wY6n<a-xo<>MINPtkD`)6?YXP0N4fB3(sCX_`Q
z=Z=tMp}z>YXZUCT0FeKgD$#~dY+|fEp9xbG?k7>WpP;*lo9J@Ffs&j$f^I|_vXmGc
z82<Ys9fyGmErlc;={RQHTY_WC1g$ht$pgbDp6EEt4^J~NAr2E=XvwaQnAy5oCU6p}
zJ7IG0r&o!gzxl(D&@rF=fph=xlR0$K@(c3c%U{yDd-pGC4f-*M7+NF8Wk~;bn!HtW
zIwT1gQpFm120zg)Z*kU1*^!O{P^zxmfS@|MjzpNcj%1pIjjw2C3$+)Y;U{0~h~Xa0
zTR_lk?a^5}nE}l1!4p9${j+}v{p{bNG#dB!^bB+dJPV`x%u*!q6C8`(6m{3|lZ<=#
zagW(kECVO7_NVaw?A_4M)~QM#ANCMm3EktsYjqh^nDjX8rV`ZKRAY<TGYm{p0f>zX
z=b?__g^8}gxRK!T1I-F!k4>a4TCa$&oU4edRM|9r9XO%%lSCL&J*7z9IQ+Oa{NzE;
z@RMZ{>Kl|>LBXVg(NAzcu@x};X@LSHSKO^Xy-L0P8=Gk2H0dVv0hNLuN)XQtKYmRK
z-4zI(-H-tHi!vmC7)6eP`8WSB1hf5|{)OZ3bnToz{C7G8^Z(Sv?g!;|*&z43e2xzM
za{XfLX>+>Q`u<yQhvsuEp@la9i7B~Rw#q+9t$V(O`ACWBQ=k}PdXD+_Vh39qh^e}o
z=54<44OfM4wUPs<<ax$`#vZ``rH%{ycoXJ=?F&dtjEYo6sD(N_Mv2S_k|VYxUBpz=
zoUkE!fyyE65wqh*z-`VrfsCq!+Gty-0`*9Npa+$O+DH;UO$kUHArr${kc7vTajG*+
z&|WgcXgTuH4v@LPh(%&#^6{rv&jI!~pB?_}^ZC6!{NxdnbC!7g;Xl}2Kf*TYvi#rW
zucdZb-tlX)NtYa=|7V&Ukv{o?rb$Py5J(d1<xk`VO%CG6H)~B2IT6Dcv3p2vyJ!^a
z8a}ZZl5MFhTFR}*2tcArQcA5KraMbxsnFkE?J@m^=Va3(TOP*d(uc%@58-8P-~vWl
zcg<)^l}@5kpj!>2u(~7kGE353+J5<&clZPn|MsfqH+E`Se&*&r4*B0;K#iXk`cnDQ
z#=$V39g$7pwvZOy5&~I=gnmc}{B4kHHMh8PN9@k5v|X?p<2~q_x{r329<>H@m5uvZ
z$e)K*0@zI*kAzr*TBlRbD0O47MlLiXXLp!T)P1a4@q>W8$|`@}(y-sY_cS05tTF(&
zAX;mtR)>`yEX;(V#Y|vlxwyb`$bzUj)-oTjiPlTY8ts(n`1zR%lexmI#N-FX)(Pzm
zfs~tJq?q>|3gfw-;GGNy#A@|)>?aKr6{nqv+^l~pbo`z9h!ro`Sc{KlbcL#_{aDSm
z;>5gn+41vp6=nqgAb{iN=PM0r(u2ivDtxm(tB<$TR%4c;vJHs(iaS+81A@Qm9s=p*
zATa01pHH(?a7gARc<f~Qsn^<%h8^4shFS172QzS?T2mjgx!q$Tv93)Yu3U!qKJw<^
zTKx0xEqLp?<u~WfNROv)KAiQ;`er@wb>nxC^}Ql9R@K(k`!9coS2z9hNgv<;zh3?>
z(qWkYiO;RyD{_s~(w1CeKaFbr4gCMtr)KHBoBwS7fAiX7-+Wgis0BEDuB-r#h0{{K
zxcz$vW-K0C*Kcn7$>@IxnLq#fU+dpRrrP9lBfG77t?R%4<?r6qz6YBK6ZK#CMwH(x
zrES??3*l0lbImOAih2Eqw&r);9uFIb?}N-z0qbg&>9THadJWcvm@FPx*PWr$|K|Jj
zh50^`Dl`7$edk)x8EQk&O)LMdjL^I=ltq$t{m=R{|MB~f#zPt^vdR_y<)>>vS@gT=
zR(aw1J2<SKwyvW;|EoU%Rpg&Wr68={u}HD5zjmA-_&!a61S2}W@ap(N7C81d*rB%-
z|6>-#*7d}H`d@JV=ljc-r90O3`?lDs&uXc4{lA}n{@C|v@%(x`uMFKpC+M&a@2U_E
zgx{c<2)3cqEx!(%$0?9T^pgj<9GfxKhpsefgvW+|?77Al-BDlRjcC@Ly5)JVxQs-~
zm`@3%wc(#W)KD+}2{pm7vg2xfD4h;j(&w<IbLCXt&38&rEOD9Bq{LeVzSdkmyy8?`
z(8OXPV4}i89~}j`E}?sTF+I?*Q4cq|TrSz5H$w5`Vlk(+hzk;bJ}x=!xkW5Ftl@jv
zVTt0mJWJpD#&=LtASU$oj<6o+?9szrYviicJ7ssz!!q9JY4iYNKZXs76>V+3I4$v~
zFg^z=F8J?ygK%#6fJoYSgmH#1qcxInHhLCQ`OQQTl^?<jbMe=}6g`3xTi>H{!_Vu$
zanC6y?nhpx?;T&!w;o0VM3^v*f~v8da@Xp-?C$y(n%sT=FY(p$YfV1z;6G|I9`kf~
zWQ+dLBW6t#;tenU;#|{tRPu!*{W?)P`3}`M{UzP+c^&j3<2@of`?W+;?x=&Z&pU8m
zc$dESJVV44-_wy^J`b`8lM_k%K;tdqz^g6-I^||&e5EeuJxF`>eGiHp`kcOha>R?2
z$#Y)ZAJ#6>ML*>@2T2G#hT(H^^j|pSqeryAbIA6tUpnMbt>@Pc{6yw)?H}nO=Gp9#
z%k(GsMNG`dQ<}K$!e0xwFHN=W1J3Ew+^lcVMD)ya)S#!dx9IY;_7yeqwDvAB_Kfxf
zQT^x@7ak7%mcBvGWn%U-Am`Bs!R;=Rfjk&Z+&-)QorbqzkAmqBoYTN{F#Hyx={XI*
zOQSlsAn^k1*Gxfuin!czfxchRdeAGb^FSQ<g%;DpFKQv#-k^l_B@H62%3svPAL&oE
z=`PTBNh7Jfr2Pa~UPj|Rw`iBNX9(vjs1}!3wU_Afn)V7^Ue~VB<+Ap+g8ZDGbRMG@
ztJ<yr0<}RoJXdKuwhuRNX!1=BDis(EW1IGH80sb;^sE<)AN351YxsFVT;A0165l~=
z;hyupt+sK`$#*nYhv)zToJo9%{sIXgXxSQ;7i7x=Kroo&l1HiJHSHW--UEW)f&zTz
zJnw4=K;X}F7s{<43Cq)R{UcOvp9%Sa2`TS!#Rb+>JipV>bNKW1qr}h<&TYGf?zd|C
z5Yl26{KzU;bTx<u>~-Ad^1v$1c|O*}i}V**1q2i8!}1O9#12A`=8`ZEgW?nIS-Sil
zq+Yl1Jf*odij6?@w0VQKY6{T*z7_z(#3}9mu)OX%rDX{hlkvIs0%7@3gRL4AUjW&c
zR=dB_Bwi|fRSSSsqOdy*u_^4Kf?WMI?F^N86FrR!F%12o7>2j(Y!;hcjVN|eYY)pm
zY8SNx3ND`WLU0%czmyeQ5|aWT?`U(bOE}L(Z={*SFG`0g5r3!f!%p97u=5hhFt0rV
z8)xKUDL04>xOq(a3ZmfY3FFlE5xEfszSTzY!sx^D5!@e@b2!TFJFG#AeSi`5Aot_N
z1CPl9(%a|cF$vWb_?yG&f`ySDW28?2=@Zg-PQx2Y8s;NCCJE_rh4ion)PYm<9iGEU
zF*zzmf&P?)NJFUQQ&KKMBmn(%lM0{W3Qwa#Sn-0Grgqk~;VG`}X#gOGt%T<pNxTEn
zvr^tK?#IouH^F|Ev7bZXbJ7PBbxI4&$A6abKg-PtaC6X*b`ON(ORXKi^-Q1Bi0P9B
z@c*PdrQvc4>p7ktj6u++9<d&l9p5lBK5<6E2vE*tx(r?8?{_HY8TmdvoWl`kTw3tH
ze0<O0$89lsy3m~GrEC<9xS0eI_-m{Z{hXw}pVRKgcRSH?k|@8dO`>|D=`wZ2^RNZD
zJUS;|kQnx2z;ym59D0E{^b2t4MQMuQFC^N6o+oiSCzU+C$ko2UygE-cp3|tzOH#7Q
zfrarcD5Nhj`c-ps73JR`pf54P3pNcGCC+$vg52(EZ`G4<kxRs><-g!Q1Mc|3bzfw(
z-E;Di)iS($WkO)ZTjEEw*#5{@t(zPa4k}f{=}X+?m$|-U8aFw2j@bGNLYKI_rkMOH
zIuTFpP%mv^I$mZv@U!s;By5&T0NNAA7sgb4zYaEDW`TwZNpWCKUa@rMs+0lvWpnZk
z>*kuJS8rOn&}iz{B2y*$&F6%9-E3YTG8OU>7^G!D`Gh9BL>F#OS~t&GmgjlRl$n<_
VvoJ!nN{g>(T+N^VtPT~3{}1ltYXblP