From 98e22fb96a16dcc182cd0bc0f940293d36d9fa41 Mon Sep 17 00:00:00 2001
From: Patrick <patrick@failmail.dev>
Date: Sun, 1 Sep 2024 19:51:52 +0200
Subject: [PATCH] feat: signald is broken use signal-cli

---
 config/basic/users.nix      |   3 +-
 config/services/blog.nix    |  20 ++++--
 config/services/homebox.nix |   1 -
 hosts/elisabeth/guests.nix  |   4 +-
 modules/homebox.nix         |  94 ------------------------
 pkgs/default.nix            |   1 -
 pkgs/homebox.nix            | 139 ------------------------------------
 secrets/secrets.nix.age     | Bin 5903 -> 5958 bytes
 8 files changed, 17 insertions(+), 245 deletions(-)
 delete mode 100644 modules/homebox.nix
 delete mode 100644 pkgs/homebox.nix

diff --git a/config/basic/users.nix b/config/basic/users.nix
index ab5a2f3..dd67e2f 100644
--- a/config/basic/users.nix
+++ b/config/basic/users.nix
@@ -36,6 +36,8 @@
       oauth2-proxy = uidGid 224;
       influxdb2 = uidGid 225;
       firefly-iii = uidGid 226;
+      homebox = uidGid 227;
+      signal = uidGid 228;
       paperless = uidGid 315;
       systemd-oom = uidGid 300;
       systemd-coredump = uidGid 301;
@@ -48,6 +50,5 @@
       printer = uidGid 2005;
       pr-tracker = uidGid 2006;
       blog = uidGid 2007;
-      signald = uidGid 2008;
     };
 }
diff --git a/config/services/blog.nix b/config/services/blog.nix
index 8514e0b..6bdc7aa 100644
--- a/config/services/blog.nix
+++ b/config/services/blog.nix
@@ -18,6 +18,10 @@ in
     client.via = "elisabeth";
     firewallRuleForNode.elisabeth.allowedTCPPorts = [ 80 ];
   };
+  environment.systemPackages = [
+    pkgs.signal-cli
+    pkgs.cargo
+  ];
   services.nginx = {
     enable = true;
     user = "blog";
@@ -36,9 +40,9 @@ in
       mode = "0700";
     }
     {
-      directory = "/var/lib/signald";
-      user = "signald";
-      group = "signald";
+      directory = "/var/lib/signal";
+      user = "signal";
+      group = "signal";
       mode = "0700";
     }
   ];
@@ -49,6 +53,12 @@ in
       OnUnitActiveSec = "1m";
     };
   };
+  users.groups.signal = { };
+  users.users.signal = {
+    isSystemUser = true;
+    group = "signal";
+    home = "/var/lib/signal";
+  };
   users.groups.blog = { };
   users.users.blog = {
     isSystemUser = true;
@@ -77,8 +87,4 @@ in
     };
   };
 
-  services.signald = {
-    enable = true;
-    group = "blog";
-  };
 }
diff --git a/config/services/homebox.nix b/config/services/homebox.nix
index bf1eb2d..488b7b3 100644
--- a/config/services/homebox.nix
+++ b/config/services/homebox.nix
@@ -1,5 +1,4 @@
 {
-  imports = [ ../../modules/homebox.nix ];
   wireguard.elisabeth = {
     client.via = "elisabeth";
     firewallRuleForNode.elisabeth.allowedTCPPorts = [ 3000 ];
diff --git a/hosts/elisabeth/guests.nix b/hosts/elisabeth/guests.nix
index 8a8160c..e90756f 100644
--- a/hosts/elisabeth/guests.nix
+++ b/hosts/elisabeth/guests.nix
@@ -185,7 +185,7 @@ in
       (proxyProtect "invidious" { } true)
       (blockOf "yourspotify" { port = 80; })
       (blockOf "blog" { port = 80; })
-      #(blockOf "homebox" {})
+      (blockOf "homebox" { })
       (blockOf "pr-tracker" { })
       {
         virtualHosts.${domainOf "pr-tracker"} = {
@@ -312,7 +312,7 @@ in
     // mkContainer "ddclient" { }
     // mkContainer "ollama" { }
     // mkContainer "murmur" { }
-    #// mkContainer "homebox" {}
+    // mkContainer "homebox" { }
     // mkContainer "pr-tracker" { }
     // mkContainer "invidious" { }
     // mkContainer "ttrss" { }
diff --git a/modules/homebox.nix b/modules/homebox.nix
deleted file mode 100644
index ec2804e..0000000
--- a/modules/homebox.nix
+++ /dev/null
@@ -1,94 +0,0 @@
-{
-  lib,
-  config,
-  pkgs,
-  ...
-}:
-let
-  cfg = config.services.homebox;
-  inherit (lib)
-    mkEnableOption
-    mkPackageOption
-    mkDefault
-    types
-    mkIf
-    ;
-in
-{
-  options.services.homebox = {
-    enable = mkEnableOption "homebox";
-    package = mkPackageOption pkgs "homebox" { };
-    settings = lib.mkOption {
-      type = types.attrsOf types.str;
-      defaultText = ''
-        HBOX_STORAGE_DATA = "/var/lib/homebox/data";
-        HBOX_STORAGE_SQLITE_URL = "/var/lib/homebox/data/homebox.db?_pragma=busy_timeout=999&_pragma=journal_mode=WAL&_fk=1";
-        HBOX_OPTIONS_ALLOW_REGISTRATION = "false";
-        HBOX_MODE = "production";
-      '';
-      description = ''
-        The homebox configuration as Environment variables. For definitions and available options see the upstream documentation at:
-        [docs](https://hay-kot.github.io/homebox/quick-start/#env-variables-configuration).
-      '';
-    };
-  };
-  config = mkIf cfg.enable {
-    services.homebox.settings = {
-      HBOX_STORAGE_DATA = mkDefault "/var/lib/homebox/data";
-      HBOX_STORAGE_SQLITE_URL = mkDefault "/var/lib/homebox/data/homebox.db?_pragma=busy_timeout=999&_pragma=journal_mode=WAL&_fk=1";
-      HBOX_OPTIONS_ALLOW_REGISTRATION = mkDefault "false";
-      HBOX_MODE = mkDefault "production";
-    };
-    systemd.services.homebox = {
-      after = [ "network.target" ];
-      environment = cfg.settings;
-      serviceConfig = {
-        User = "homebox";
-        Group = "homebox";
-        ExecStart = lib.getExe cfg.package;
-        DynamicUser = true;
-        StateDirectory = "homebox";
-        WorkingDirectory = "/var/lib/homebox";
-        LimitNOFILE = "1048576";
-        PrivateTmp = true;
-        PrivateDevices = true;
-        StateDirectoryMode = "0700";
-        Restart = "always";
-
-        # Hardening
-        CapabilityBoundingSet = "";
-        LockPersonality = true;
-        MemoryDenyWriteExecute = true;
-        PrivateUsers = true;
-        ProtectClock = true;
-        ProtectControlGroups = true;
-        ProtectHome = true;
-        ProtectHostname = true;
-        ProtectKernelLogs = true;
-        ProtectKernelModules = true;
-        ProtectKernelTunables = true;
-        ProtectProc = "invisible";
-        ProcSubset = "pid";
-        ProtectSystem = "strict";
-        RestrictAddressFamilies = [
-          "AF_INET"
-          "AF_INET6"
-          "AF_NETLINK"
-        ];
-        RestrictNamespaces = true;
-        RestrictRealtime = true;
-        SystemCallArchitectures = "native";
-        SystemCallFilter = [
-          "@system-service"
-          "@pkey"
-        ];
-        RestrictSUIDSGID = true;
-        PrivateMounts = true;
-        # System Call Filtering
-        UMask = "0077";
-      };
-      wantedBy = [ "multi-user.target" ];
-    };
-  };
-  meta.maintainers = with lib.maintainers; [ patrickdag ];
-}
diff --git a/pkgs/default.nix b/pkgs/default.nix
index 3fe047f..b3fd76d 100644
--- a/pkgs/default.nix
+++ b/pkgs/default.nix
@@ -5,7 +5,6 @@ _inputs: [
     zsh-histdb = prev.callPackage ./zsh-histdb.nix { };
     actual = prev.callPackage ./actual.nix { };
     pr-tracker = prev.callPackage ./pr-tracker.nix { };
-    homebox = prev.callPackage ./homebox.nix { };
     deploy = prev.callPackage ./deploy.nix { };
     minion = prev.callPackage ./minion.nix { };
     mongodb-bin = prev.callPackage ./mongodb-bin.nix { };
diff --git a/pkgs/homebox.nix b/pkgs/homebox.nix
deleted file mode 100644
index 5c7e06b..0000000
--- a/pkgs/homebox.nix
+++ /dev/null
@@ -1,139 +0,0 @@
-{
-  stdenvNoCC,
-  jq,
-  moreutils,
-  nodePackages,
-  cacert,
-  lib,
-  buildGoModule,
-  fetchFromGitHub,
-}:
-let
-  pname = "homebox";
-  version = "0.10.3";
-  src = "${fetchFromGitHub {
-    owner = "hay-kot";
-    repo = "homebox";
-    rev = "v${version}";
-    hash = "sha256-Hej/dM0BgtRWiMOpp/SDVr3H1IbYb935T1pfX8apjpE=";
-    # Inspired by: https://github.com/NixOS/nixpkgs/blob/f2d7a289c5a5ece8521dd082b81ac7e4a57c2c5c/pkgs/applications/graphics/pdfcpu/default.nix#L20-L32
-    # The intention here is to write the information into files in the `src`'s
-    # `$out`, and use them later in other phases (in this case `preBuild`).
-    # In order to keep determinism, we also delete the `.git` directory
-    # afterwards, imitating the default behavior of `leaveDotGit = false`.
-    # More info about git log format can be found at `git-log(1)` manpage.
-    leaveDotGit = true;
-    postFetch = ''
-      cd "$out"
-      git log -1 --pretty=%H > "backend/COMMIT"
-      git log -1 --pretty=%cd --date=format:'%Y-%m-%dT%H:%M:%SZ' > "backend/SOURCE_DATE"
-      rm -rf ".git"
-    '';
-  }}";
-
-  frontend = stdenvNoCC.mkDerivation {
-    pname = "${pname}-frontend";
-    inherit version;
-
-    src = "${src}/frontend";
-
-    preBuild = ''
-      export HOME=$(mktemp -d)
-      export STORE_PATH=$(mktemp -d)
-
-      pnpm config set store-dir "${pnpm-deps}"
-      pnpm install --offline --frozen-lockfile --shamefully-hoist
-      patchShebangs node_modules/{*,.*}
-    '';
-
-    buildPhase = ''
-      runHook preBuild
-
-      pnpm build
-
-      runHook postBuild
-    '';
-    env.NUXT_TELEMETRY_DISABLED = 1;
-
-    nativeBuildInputs = [
-      nodePackages.pnpm
-      #breakpointHook
-    ];
-    installPhase = ''
-      runHook preInstall
-
-      mkdir -p $out
-      cp -r .output/public/* $out/
-
-      runHook postInstall
-    '';
-  };
-  pnpm-deps = stdenvNoCC.mkDerivation {
-    pname = "${pname}-pnpm-deps";
-    inherit version;
-    src = "${src}/frontend";
-
-    nativeBuildInputs = [
-      jq
-      moreutils
-      nodePackages.pnpm
-      cacert
-    ];
-
-    installPhase = ''
-      export HOME=$(mktemp -d)
-      pnpm config set store-dir $out
-      # This version of the package has different versions of esbuild as a dependency.
-      # You can use the command below to get esbuild binaries for a specific platform and calculate hashes for that platforms. (linux, darwin for os, and x86, arm64, ia32 for cpu)
-      # cat package.json | jq '.pnpm.supportedArchitectures += { "os": ["linux"], "cpu": ["arm64"] }' | sponge package.json
-      pnpm install --frozen-lockfile --ignore-script
-
-      # Remove timestamp and sort the json files.
-      rm -rf $out/v3/tmp
-      for f in $(find $out -name "*.json"); do
-        sed -i -E -e 's/"checkedAt":[0-9]+,//g' $f
-        jq --sort-keys . $f | sponge $f
-      done
-    '';
-
-    dontBuild = true;
-    dontFixup = true;
-    outputHashMode = "recursive";
-    outputHash = "sha256-BVZSdc8e6v+paMzMYazEdnKSNw+OnCpjSzGSEKxVl24=";
-  };
-in
-buildGoModule {
-  inherit pname version;
-  src = "${src}/backend";
-
-  vendorHash = "sha256-TtFz+dDpoMs3PAQjiYQm1+Q6prn4Hiaf7xqWt41oY7w=";
-
-  CGO_ENABLED = 0;
-  GOOS = "linux";
-  doCheck = false;
-
-  # options used by upstream:
-  # https://github.com/simulot/immich-go/blob/0.13.2/.goreleaser.yaml
-  ldflags = [
-    "-s"
-    "-w"
-    "-extldflags=-static"
-    "-X main.version=${version}"
-  ];
-
-  preBuild = ''
-    ldflags+=" -X main.commit=$(cat COMMIT)"
-    ldflags+=" -X main.date=$(cat SOURCE_DATE)"
-    mkdir -p ./app/api/static/public
-    cp -r ${frontend}/* ./app/api/static/public
-  '';
-
-  meta = with lib; {
-    mainProgram = "api";
-    homepage = "https://hay-kot.github.io/homebox/";
-    maintainers = with maintainers; [ patrickdag ];
-    license = licenses.agpl3Only;
-    description = "A inventory and organization system built for the Home User";
-    platforms = platforms.all;
-  };
-}
diff --git a/secrets/secrets.nix.age b/secrets/secrets.nix.age
index 2837910cd053f8c1edc77dfd304af34c95e32d44..77e20035fa1736aa232e8663c59c2bf8afb42ede 100644
GIT binary patch
delta 5946
zcmV-A7scq0F2*j9AXhO(ICpJoN>)-iR!K%QZEkBgT4r`la8Y?rGgUQGaBEdaNOWm&
zcQaB}Gzw@}M|nYcP-}Q*OhIN$Q(|jJZ8dLGL3w&IWJxbgaCbLZWKL^ZHbFTzYm-j_
z6@PM9R%&)xXialTR&6+QM|M+EdPXZUSwwC(Z#a1|T4ZNVdU$s>dNosVYzksnQdD76
zRBSYBYDp_ta6(u{NMbNkS4&!CF?mNyVR=DvO>;SHad}BLYYHtsAaH4REpRe5HXvA3
zQEOE}AVD)PG<7sKQB7JwcY1VoN>N2oNkmmuW=?rYGiO0XFELq9Y;aR~Su0^hZ7&LF
zHD_%$MOZjFcS<isN?CF^F=sV&Q*25zIa+K`XfQK3Q8r0QX-;A}Y<H7S0Tq8}S6Nd`
zO?r4uYI#XxPB1t`Q*vrXPB3UTWJ5z%FKAanIcP{{RB}*qVt5K>QFK&xF-kFGL@PsY
zad~TPcX@SaGE+-XQ7|%SHe+U2PIxy-D`rVDaYYI(J|J*ub}eu+H8vnMc5P5}Q6NEU
za%n|HP%<!6T2p0COG06GaAtpLPDEotW=U^jVsJx4V@+}^HDYaKY;!aUNHkVSM|EaW
zMqx-RWJ*YKMrlrJRB%>MG)i(WS5HYwYd1+^Y;SFIVOBv3Ej}PSesgO*JS}H(Wnpt=
zAazPgd^<`mO&}x+V=*{MV>MY?c}z2NbvaEhWLZjhM`=qjPclhnOE7<PS~*TLHDWY2
zZCGP7Rbq2hXn9UIVm3BONn%(za!g}KMha_hQcqS|Qg~P|Vl{GDL@+o|MPf-SZcR#S
zP&Z<CQB7e(OhI^JNmy`ULUK7uGi*mgX=zzUdQ>kkY;7+$W=je$W>Q%SEiEk|Y-(>+
zF?dr#cXBvVVO3UdYeIiTc~5mOZ#6eqc2Hz`S1&MEd1PcuQ!z_X3N+e(!cK3PV1j4T
z**gue%Mr1}eCx-IeAhM!<xJ7>+`IL)&`v5LIhxJNDiE)@S<2K+rbijg&G>|)c@Lx?
z)!HQoZwj%H$YobW2%p8>DOtzW!>onReT#dCogW$OhIoXr_N;#;ZE79Bp~5lEmKiF>
z(Zeo%+kgUHx~k67^4&suu`Otd!BV;Q5H_C6|Kju?+~X;ioJGFFvh}z{;;fZ^06)8O
z&pe(xp139i5EVLdaFOr+>FH8KZd_1>?wqS~oATv7i&CXL(Anj9O1G0qmcIYvS3lKY
z?s{UcS{@qWX-9t-$%b~e-v*!5$#uKm&%S0{Nl8=QSIS-c15&e|<pYT6%scUqqXN2u
zQ5~+-iGbh#rolM0O=cB9UI%aQ{EcadK~;|$|1c8*|4&sc62Di&4={aS<p14*C`qrQ
z$%v>;Rz32%aS%IQbNH$0RP2MKJT(CBm($TZFDMZ~Q1yTR14=;RDx~IJC*}_-PMvtQ
z8$O^!mkHaEK~Rk^wdz-i@7iOzfmub>C!YdJ#x8C#1<j8wz`z(DFCiJ7EZj6i$0F&N
zox}egdPsVvKM^NRiJDbJt3T4TFWlw;jZ97U1Ud6aVdsZ--6}e}QPUI39OwVAhO}KO
zU!#-v)JcEd#KXjaOVx9aFR7+U&&&6*<p%&QwqUV>DP(M(x6$Ta$mpR|5{&uVLWk3)
z;mOsGuepS3l>a5%OK|lVBR921#S<+}Mc79Y6BcHSoJQpgN<o=%@X$5+($&o<gIo;{
zZGXJ6DlAOjg`k}r2hK-#PX;~whKwH@vdfQfNECmZJX^%Sbdd`F|BV#{E&Z<=f4dU|
zo>{V)0<zg?nQWKf2w^7=RFoEwA>?AT2Zv{Bg?Ho9%$%khY;u0U_>mA7Dq5P^I`5o=
zYxirF*&p>k?==Eey!LCasJgWg1~wRyrr8lAug4Zn?r1YTIODieBoa?0lj~67RO0u0
z$cul>*HFF&(w)fpr@X^T+4#ZiMhSs*D~+X~OV%n)y_5iJ3jfRmGEHaz<5hnw&+glM
zU>Z*vUw6PTjN8i-$n<p})g1c1>U|^cJZ>DK_zbcSlzrju$(Xs-@x-|{w^d*t3?AHl
zvm2i%FCYYr2SrD=6_u;U!;2%z`5XLLEFphpC{4w3kx>aT#z?6~IE4wX*Af>pDqpcP
zqZ99sU`VRLZys8#w2rfs+WFHd^(5K2(*o{89(AiUSX3o7;Hvp3ed%C!<}SC-ahnnx
zrP^nWcnEQckQe}AE5`h5P`NhEI@m*ktHN<SN1>2yV!I~bs|y@9MKk9bt^Nd|{WO2=
zHaPFM2Jo<-^hfboR<>T0qcG;vK06>-bLc~^Em2`h7Ay``V3Y<`)F3LMT2SJuQ2t2y
z+15xvKoN+%(&tK9dQsJv`6kJ)9k=OWw{xW!Al`8rQtJZ&eF3#q*R&eX6a483x?ik9
zj%fw?&duK)%v#KWo|1pVO%-$GgPDI*MWp6zzCyTt78~5%kxZ!90#_TE{yRvPQ{NTB
zP_)gDLSs8RYC=_eW>`7Os~&Ax3LP=k(wFXq-`#vt_{CJk4U|LbD!v<n5c%>f6MQc`
zeEWYVt-4EOPWng3+|*NxfYd;&7);++BjvGdoVB<I-8t9mCbJ-wHO~hrD=dFf2J=2G
zvne8iYeHiXSUS1T;K#tpWz)U}vAd+wax5Fuz|MK*G57cg&QKONDv*4e(iB#K5dBA~
zSzgA@iy%IeBO~eW3h5+|Wq0!lvX)?s=R3VMH@9z}diEtg6B|M|k7tIg%csn3Wl5&?
zW%yO;|6U3t-ASp|13%;T?uviL4v)TneTy=IhS>&q<M3yf_>k`J>ycS7>w(ru59=na
zR3QKB&dc)@!XXyR)dCsG8K@fjQPS)Ay41&N*skXGgLH`@n)~XQmsS|?g&~&VjR||v
zxYRL7_?GG|n&Aw0!e$JxBrZ0nEAlji$Jh+_{CZWYeXma3X<lkGN>YD%g<GFMh|BXA
zg3>0RqISu}HWttbz><Q3^O<=aiB~-gIJW*wGt?wFI}}3Gqt5U|MqX<MI4)0>x=c7W
zxz!CW`PL2-0QWA`+LG9Uc`fswc{o>GFon;TS0xhhq{mGMe_iLY0W*2;-xu5ZGwE)z
zNLqexzuenp*VNDni6Vb)G=rKA?3ldWqn|;_e*s+u1*1?x<KrlD?#xxb$h$HUe1Y~k
zzX2fNL}BqegB?sB0~8|VI?@5g*-^Q2DWa2HbvUe1z5VbS1TtbxVpLvRfY{he)wV4W
zTDjW31B(LeC)|l~pvV+R-(LJmLF!{=b+f+8QF~W{m~dI%t%84s|9YOJg}nyoB&-P@
z4Lx_GSqfJR<^jQwTPnM6Csoj-YPx!#<KHJ~2w*?ot(q%%IHSUC8Rg>2$f8-+W2v63
z)7USy7(Wq^c@WHW%~t6SZ#o6RkZR6F<W|dOy~?f?bz+9}u2!9-iV>Vdt~>bFo|Tj;
z76jb<{bHGF3if|+(gku{tugqL3o(ptnZsP&DjFn#aW>?=X#Jo*Q6yo`VC%V!5217A
zqV2S4iE$a%gk3i%{<A4n2{8|w+fo!f%yg`WFbn8qkEfUjU-6T*3{I-8k$i|I{FET%
zot^!-xE})DUy*-LQ?qk@0yA$?bFV0Mj4Hu=J4w=$X+eLdDBxx%3%bpuyK|G6_&lv!
zS%AtBqP9siRts`n;8*hd;A-(EHH-%d1CJ%zi1<h%C7(CI`UpW(y?F)SM;q^!lu8Ev
zPzRX)y6GnN4FUH&6SMjeka}@t!=vlY_b;JRoYEI{T#hrN!&Ewx#vtH1IE!o$=c>^N
z+Uzz6=yQLOhL5TAdYgFn&rbz0{{EVY1X$!sNIh}qA}yk=f-vIeKpZ@YG_S1K;sWC{
z1h0J$=L$QZ38OPO<HipW%aCz@37mP#?GM?9bL>yDwLS<aE}iI3R$$9{kZgIM#*Q?E
z-R)M1^&``*;MmT_c6lUo;y=F1bEB-vjR}>|C;xv`C-18~3sDP~(~s<e53w$J6gR?3
z2;w@R&4ID=6Y)*KQ?M6v<st~{O^*@#zlbKy$mUqvysT6;9J)$$MJ@fonw^_3Je_c8
z<5iyGK7kiQ{m{I#s`83TRR;iQzmEkg###cf4v%F~I6^GQ$c;;vtuDc00iu``X*_>`
zYAb(0KP&;|K9<=}eKz60=Nh1Mbc-A)!3O{=y~pMXEWiRCMMDMcLJZ-SKMQMiw3~Xa
ztmGf`buemP%}-!e7V#vs@v{NhMpx;s$paB71;?dPNV6mS6fk3CR>4)8NNR<dVLO^4
z8N4J89~8?i3rUwh7FUVqx?3H21@z{01zLaX^cim%0|3OnnH3d=E4lp$xdj5;5tr4Y
zN3GNYd3pSzU@K6fAem*77E~F1rwkgk1f)G`YS#<ixB#u#jHE_GH6d|ab2E!Qolao*
zh6Ii}oHH~SBGiQ*;~4FTilH29*L*np-XASMmX2xGI4p`%X}z0q=DkkrH(Pp3u|j{>
z$2J+P9*8OHQ$|NCk?gxd!PiI1PcXbzbd3!S|0+6F^#0Sm(y2Qg!l{g<2(A0Q5n)Hr
zP~2m7!i|n?Ud)JWyHb>UTWvBxj8w2{BGTgrjpE+}K;zjTeYi^>8ik`{bnLCR^mR9H
z5(K{Z%lqFOfBRPaX*J2)948ID)kA+;7uY?!H15y+_uD(bhaDZE(og04!8)X674srh
z!+M?soLgA?@3Pn2T_}1d=C}Zo@l=`m=E2BKxdB)&a+tgEYdiaH1aZ%7Ct{Oy%555O
z2m8cG`cM4Ih$p9EhxdTgcWz3+H|)~efo)Y2S)|-sXP&&ozMS(KEaq2(6zzZaX04b;
z(jyyF3vT0d@-%}oGd_1*7DAvHOb1Tg1j#XP-8&IyRcj&^a4gH@xCFZ-CTBn=jMIX_
z8Lax-vcS6Qph@lhOzh#x0PMF3+z6vve*1QSv6hA7*Q~~<Xi~G8yo_W`XPxE>-+f>V
zBhq@M_cHSyL_tbFKO)#p%`SfsYt#@5+v8j0o_g-Ch9?0fdf@%#A^9K{u1J&ol=@`>
zQw|xg)Eg11#oq7oF+-#*TLzA;x#B{9=qT%v?iz~esBKj@3sopH8S5uM&ie%?{l7k6
zbm&NYVq?2baQPEiO{%KrnFthP^<I~`TJpb{^c~Y$12q^c#kK3-R+WE=YY}ymvgn70
zf}7QpM1jq50pv&isa9mx#7mkL_pAqg=0E>WrxVjs+0nLEKxlX8S28p{Pl75xp)0@#
z=Iy6Sh+9A;I$vez<do!20TAPbGD7w;qnXdN!&uq1Vq=;lUpua9$0sw%-OjIlta3^{
z2*n0?DKTzvxXE}7muY`|Rkld9!&z@!$0``y*qZ!<WM}c58W_$8x3V*~Q6vENU3yb?
zw+c&#k6t)VS2|$*qADe`em@DF$sv5fIKH};x)V7s5MNVlC&mU{%p>`dvR25ZC`25G
zX0>sAq<M4OM9g{W-yCB?6rrsC_kM&l+76}#Y1=i%WjapS0~3G9%(BqzZYwNq$<1&9
zVS*y{*QLsGARM=bd;oOcuD-d<*A{e&3in~B?B{>|BO6AF$%-UqC21;{aMU6G|Idfb
zt6~I1&B+@K&k6m4_nr$5eYBp)zHPdJEM~h~n&Z$f9d#-Tf(tXVuG7ferK5)P8`7G3
zI}@_AhsdK>U+;ehJQe&Sbs%>034!G`XV<l0Zl0#l^^z6$Oe*F^33$v@teHc(c|wh;
ze{XJNB)v&>N#}kxixETCZX!wS^$+1TnyJ+%$g0Re!zSC1lUf|9q9PmTw!vypOrdS`
z%7@hfoC)&dG@Qe)N{|<q?LT~YAFduwrx>hHn*Y6y6&HU7XhTOMN2|a_etwLZbW(sx
z(AE!<+638hFVder?vVmy`$$+ABx5%M(a?@_s9(C>klMuSIFFUGSB6IKWmL_%OgLu&
z6n4K4nCh$7N^!-@^eFc)z*J$wtJr#V%p|exvL57f>b!a^`tKyMKM{-ikTl=7rJ&Y$
zqKo(bmRo<iGEla?U=I#HA^A1JrGNc=|2x|9vu@_^AHJ#r#iN=IG`0vc1@QlACvJRi
zWX+aF7hQrW1hBjUaL)+>f<!3B)H}Mt;x)HWZFg9GvbMy?@$WK_P{X_}2U&j(0)#z9
zKavfyv72lPBt?B=8^03dJ`D~QsSK=OeK3khnlFE)PyfA!ANR2sXgBcQS>e42k%9Rg
z-<7@!55r(Lrh8J{=<}g#2-N^4O=F%3att{VGOBg5F2_@-laupi>znA*?pwG>$z-y?
z^Bk`%9>uj#`2|7^KGg~}aeH>3dHn&<H2rrpPG&N^NL%P~I{%QXx}jnhMVOU1KGs^c
z&?bL|FuxNy9Yd@s9r>wiC3<S-`{4<jhapKg)~JaO-lU6&gTE2;uJkp4-~yFZ6^Cb*
z<`Ns`ct~n~6hD`7(8mD(V%$m>R{+0La^7)Zj_Cn(|BLC9DL;#*_a5j*IgIg!Z@kwL
zJNopKWDd0%7uI6>+alHP+M2v8I&od`EU$mVN4$r{?zMMBO4}39OPVzWS~^_=zMg6a
zv|5*u27UV!==LkOWfR!3$|F)nh~}~Z=y!U7CiVr#K*{;FQah3a8+6Wb+C+CsLqPn5
zYNN<X600e@NycTnr}B1AzgSSrMAJ8pIfd&u>`}s*)+GfJ0<+$|PLg;c4no&iREdAx
zY_OIEJ%>d9lWQ}xAgy1G5s4aL!k6#SE_z3B5w8O-K79$_2?1JCKLINI7pfDX^y_Te
zK!<?bG^AZsMdQ{VY4KHd<^Dw(kR1VA1()Fz$EmE4o3-(*YaO~qZ`-;b*I1XrJ$+#d
ztu#nU+c3k;cb}FQ_T%T{_ytZHh!uZ*nT#*u*NteVyoN=Ga|Bc4wSvUs(3pnxC}zbe
zOK*3T+NXMLC5k)3__wX<BMlBh4E3OE=Oy7rF8PvjYVO>|w(0PyI|RLocpKoFIkv>i
zQj(<<N;`;QWaN(TH#|MB!+P_A9=t0I{csijHSkU9PCR0`WRx#oazsh@*BE~=0!(r8
ziDI`=&KFG-s}Hp<)TOO1Y@t#BCyCZLt5Kh4LfbIKnNIwyEw!^xReysV0g!<T4<a-L
zJ8Lp=ExfXMG;)@9<pjK{!|r$|F(Uf!i#<B4IbJ$=ndgOC$ZUo{F+j<0)dN+xYpLhx
zM3}^pc#y0W9yiLT0n77DIjn!fzXEH^a23grJihi!@GOLTd=~%V2*yTv(dE-mzl6mL
z0t2VO(bbqk<fx{-daD!8_04*}!iX71mxkM<%<2Haaj8+)$;aYO{ts@sm*|J|?rxHK
zx@!tNwDnvgjXF#N7h-i&aZjf84%OPYj<TYAWj}jss{S4QBxB=P?F4^gwEc>*oAfCT
zluI{M71ZkJTFg#tK?fc6IHHqjc8Ap5E#w_>wUM%{{VE_1uK#vZ>N^`S*r@k$LZe|k
zG7`WM=g=j@Pnp!e*IE-%G#SONk8I1WKn0(}K7B>46ie^xI$s?r*@IHIY^(yW?vfg!
zYU4le26y4=-QZhbVK;xIwabt7{_5#(3)NDp&<F5T-?<ppj1cAPgu{tdhjVVS_B#F@
zplfLt#(`)<Gt^;#on`pX1*B|OB+f;?f**FqEXI|!9#H>P+WpVuq*cvv;9(178iR_d
zs8}O=YDI;3ooC*&4fsrFy}wGVzR_ewyiuxtC^Xz=z?)UrV1R#*bq)H03tQcFT6GpM
z@&tU5V}FVKd|u!w<JaenhD8P9duEZ@2XbRds;p`JJEq?w@nGJq!ZUM3>efZS>_85)
zMC@#e)7K8Uk#`en?NWG2B;g>>ed3zCj>JQs9J1~OrDFtuGpsS5_0<F|t{9=Vwfg+<
cE-@Zm_s~9Mu$>N`)>c&{28O?2ZIni@hTfVCZ2$lO

delta 5890
zcmV+d7yanQE{`sdAXhj!P<K=>QFd)jLo07?Y(y|IRYh?$MlWbuF;FX2G)+TBPf1Q{
zQ%z7aSqeyFW=uC(T5fH3acoy@QhGCKN=tWlNlH#Qb2Cm^N^4GWHbiV|LS<4nO_NUn
z6@PM2PIhK#RzYbnPisVRL1Q&SFKR0*Nn&PhN-ug?a79*SNp4PdICNq*V+w9^G*e?l
zXizzKcSJ=rY-mA8Yjj0uRWfpCaX58&NH}tENJ~gpLQ+LBZwf6wAaH4REpRe5HXvA3
zQEOE}AVFwIaB6u|N=tcdSWiY$D@$oISVT`TZFy%<Wou?Nd1Z7{S2S`>P-t&QGE53b
zd2TaKL@;eqGgCKsG-yI&W=D8uZFNg`L0V&ZYcer<GiPpWab;p`O-++e0Tq99O;kBB
zR#;V4a(7~4IYdY_G*owDZ7X9lI5<Z!QhHQJXiZmkYgb26Hew27WLQ&bQgcskMs+!M
zWl3m5Lv3+uc63BgX=`O<G%-_aFg9asc2QC*Mo9`SJ|J*ub}eu+H8vnMc5P5}Q6NEZ
zNOyTuLQF46P)}knSa)=GX>fmJFIF*gN=9x>dQwAhYfeOCY;a|AcTZ~yNq9v!bTw@^
zP-JFyLsLjhXI4mgH#cH*GgfOiQ!+(ZQ(8oFMPz7iM0!aIEj}PAaWFM8NNg=<a%Ew2
zWguZmMJslGP-GxMO(P}>G-7N_QFtp<G-^#kD|$9-Loj+YWHNAdNp^o|WJqo@Q$u-b
zWMW!TZZdXjH(7OdGHGLMVR%qPMMPt2Ffnd1ZVFCsGf#I-b4Yhl3N0-yAVFe9FK|*h
zV?<MRIYw_VL~L+KRzzWHL^dyIM^a;DMl)AtWky0wNH%IX3L<_#$JD|3vEdgrjm|*D
zuc;C9UT1XVKuBY~&Xs?%D=u}wN3CZaa*}upqhP!dL7S#RS7=q}y^xj`Y~oXXi)u6e
z0He0zAtRRm3s}WYVqaW^<u>dmK(yX5r;aobiUbvDKzDKF|3ARna=SFr=Tq<ZUI_BJ
zZ#7kKG)Pta*wS<=avj4DJ{M;|xET@?rFZ)^<mLVj_h_^Gg&BW7;|}t<L$NKxedg7>
z4fQ{$UZLnR+HK`}74r@J@K&u~IFfplX?-UwsAgFadl*s=&sij5i6QxQZEFFt@rAHf
zQsZ{XvuY?B_@rrqh$!2GR32pwIi7LTaOPO}a9R!3D^*;nVi)AG?z0LHXR(`&@0!g&
zm@YKr5*k?$Loa`M<!n9X|HFWZ1)%XNJeJDJjnFJDRfk#V%`mFiq7Vpgz(~}-6fwT<
z_Z9h^m6D$e-!vfEmyPZ#xN~b&NrY%mW>U$So^#q}hsCS=Zv?r+d1XE+(b$`X46**F
z0j<BReoP&}-faIy#z83K$@DiQLa7D1Uael%Y+ds7<QRW18#BJjoNV;wuhoYXpv_-&
zX%auftAK{ZB4Q5Pra+~VkOgBL>AU(SEOtcUT6Z$@@nU{J;So}S+-<4AGwlrs8IyD-
zXX#qi-9MrE*iXC#8Ul%2L==KM>YI}+091j_h@1R38D)^yNnBE{vA|{`c}3dVr6ep<
zVrS?>M+<*kWe^M0g$$1I6$2grAWJZct3;KBBW6|bAl5x1Utu3}3zHzzyK%b>B~P#f
z6!OPnE5D<vtxxRAR)V(tLT*|eq?jmKmSC@~pAj90?`2MX^IDV-nGIDT#kdyo%I1gc
z6QQ1iymV8U4$%1HOvF}BE~H+v1!0=@VSSxnLLPrv8v&Jz+qoABDn9RDIoLcL=@}R^
z)4gmd=N5auWOyAZ7yg$FpVsFdTU=`ZtX@9CTmiNTZY+uuu7f+&1$|C{^H7&tG*D{8
z@|@EEK@aKM7owQPT4(+tp2ysm{YyO8)MPCRE<tlYPi!v#E0fef_a>veW6Yx9<GA=%
zYD0e%n3s8&6SooRb|=k;V8^H?mCD@El#tT47-+JHMEn$}s_|{W&-2;_%q=tXjVA=G
z{sJi&NaDmq0YVq)nN(tn`4a^d5-4pTFk(5%TaF*vn(Ttx3rN-#Mh{{k>THO^UL7|&
znjS$@?X=D6duk;tQl?N_4q**&YJQuJ`}BV-u6rfxhdm$``~wLC4i}|bu@0*+EMd9}
zJZE{{RRyCPMb2EgJ3i8IwrNs2z4#d%WI(aQMO^Oy$=nL^F&v%JD-9d@+n72qdC5Y6
zUSC)}7c&Ugz#umPmUcENr;%+;pQ66F7{5^50W6Q9>`GDI=>XNeNhgJ{ii=ixn$v$r
zuX%k1>-pWBJC5XEx~-EYV`Lud%2hS(_tAmTJwrxA^8dqng+ISP>_*2M{$W)Fe{YQe
zBDMocRmZj=fF=G3*RadyEqnj5ktG59fwan$Et{s7(c1?O;roJih^f0NxBy-v>guu~
zKPGk_&8aP={*%_#M@f8?_-^p3BVvD3+^3I1c5pRhxN^wxzvsJg3uG}7G7wCmH)QI9
z8fh8`Q~9GQwnct&3OCX2kg`dYDs#_$YTTXqqQK+bz(~{%=}}6(Vvy#J`-M9PDs@$|
zAb=T;A3TnLny+}tN3Sy-G$~Q$`TMX^@3$zP-mS6GnnRL*R=Xz)#r!Ar0MCCPw_25I
zS2HWvU}Gn7Wpudxh+;=#F<tV5t=9!$4UqWSD-MO#wJ3;Z9f9?K@t;jP0J@jC9P9Di
zv;A3ku-i}XrxSIAphcOpid!f1g&JUpqmANjzXOib@sgiDzza(WzkN!~#LWw-6wU+i
z{_(inr#sG>$Su16R0MhYw-$c_rdW}sCV5IQYNPNFJoI`p5wl;uy&gFESA|+KZ0?4t
z6Mnaa?&#0j6+6ZuR}wM>EZ1b~$%P)4qvum)WGuhtyR*9U2OSyA@)hkC*I9Xpnc@4I
zg05&GOkTW)l<<tO=0s^AJUvm3-cu~UQ;WUl3Kz~<nq?AV<d_#6b7p^`Zf7AF04tcC
z_vVO1d2nRnwy{AOld#c|bZ(B|%|B$4Ky*qOe_FAl7Ikcu>A6MA?6bmJjJ`-*o$y6?
z=htJJmV+0Rs~kgHT=j6$PM6huflWaeAM;D@w8R40;iHAq-F5OLKI7PRrlT`(XLL|}
zHP=IIQ0Pr?udc(sT)2NciujHx)hUT?q%}i!H(F4hn=`;iNlt0s9+F6yd-bj5pDP+q
z60N7^piE|kyIaxG>#OIK_M^>zCoA!5=VrwrDZY`|=VVgdIbE>|T}1_cLTB6VzN@NF
z{`yuYs-f<uwIN$@F^NK!jPlaSF~))hUyl38M%(6LBF+B7)Y^ajm*Kl*%r-_()~I(6
ze3a(rEqm>f#hjx^@w3MHhPfEz_Th=FG57Cb_*%sHsO<)jABU%p6)a$v(f|u!rYOnr
z`&d5TwumLj1c_Bwj;VPAReW=~jKOQCNcbG#0exWJ@QitX_6MPC^JJ-nRzy+p+CP($
z1SOYuzTA|vH^6_nqKm<4&?{_s!v^Mu2(Zyu(UVe?rz=6(czf|5U}FZ$B|zNx6{vTl
z1bll}8FXDxli0)a5Lt6-5nkWp$GAZC>0d8eR@F3q;hR5K90s^Junx59)wpMhk5T%7
zboM7LQiO&d)=d2+hR<VO0c7`*Iw6>f9P=36E2kZ8xz~U5ft{Bcwi)@xu_EwDraQm8
zDxjNkNCvR{=?uDLA1EEqNFKc+1`e{AgYhJMz$9s5{x4(~UqsdAa$WLzT!2RCce>*s
z;Bn)LuVahxAdANMafKyzdLG}}xP571nx-nTxkzGKfh~O<#yXRU7LD2O)IvPjguoMj
z9uG8=VwisfO=hg_g>L;8zjpx9$lz=?I4-J*QUJldBR_eW(JVGjWZ*bP1$~#X8~ZWp
z@BsH=pmme#Sj*B$#M!2x;P~#qRoOn|!PlqQ@c{bMZXX7*^c}EXK7E;J@76XvUkm<#
z?B!_{fLg3EE!CnH-npRoE$}&Zp4qlIEcJnGsxg0EC-;#;6L)MD+sw<AqDX026$wlg
zLTl=gF1sba{K&vW1a61CfV*k8WWWjzY-TP+?z*;BvKZr7o0FIdKv?Q;hm7+gKb*iX
zd6ohtB4h-1lDs_BE9xwLR<hX1suaKpOxB8003=7<9Y0xl8fJC~auRGhvy|&G7)loI
z70-XLF?^o16moU_D$fcYlu$BjeABfj11F6@KK}v`Zvse!Rc3vJ*@lreaI@mBLW*|z
zqC|FNpu!2=x#e~PaeRqE&x?TwUMK&h#0w)v(A*$z$Me;wO3GN5q8PZp+v2DS16{CJ
zr+Hlb4jL}6%vnzNTG$Hlel%{Mnxx{V`UQVu8*s=qvZ{yQLSb}FLF)V{E2(O2ohv*@
ze`GG4&<=UWb>c-ffoD9T$_VBA8K?Jj3qt0jT2W__U0oGsd+9|f_oZ1accMt4P|zTC
zL3&R@c~Tu~5Y||`sb2U(&m>$5O+P5QX6&j4m5Sh=@YWo_zPxmXYbx`hrGQ1q%ejBQ
z;*(#%i^OyoPu4rllm(88hBXRRdr<u_Jy?859vABX9WhW0OoVy07+=h6rzz!x>UDzC
z4fT)Gl3+qRR(nkE=C&defQ5&6+t|cC#1QGwi_)Zk(~~Tht_IAqo`x|9v9|JNNVI>#
z6qT-Pc>KozPmDFgUd;{%3nv_DtABsOMwA003Niyt00?Tc(@x>J?$gbQ732}yV}1lo
zXzXCaTleaQ@MKVv3RRMfR#FzxsFn=Lm92<TWeDhlS)Q_*M_8p<$$jB;$071T(Q~r`
zEN(iS2~H=<MO{xVbb~&-7YpE<yY_ZLi8Sk8)cyx5(+qw^W2<BU6gx0@q2PbZ&SK?I
z9a(6p1pxy8+j3w>mKQ_=hGbY!u%z%F8enJz8GraSAOtw$ySz?{8t;=S^;-YEQCi9O
zdET3Vbu3z9G9KVgZvI}3q4Q*Kwov?o-n&C8Q2S(KK6pOADq5p}_Tiu8qyZh#r{Sf2
z$_Xm7&=}AVs-=5kh#D||FRXvSBST|}lcz^_{+z9}od6cWcbcnS((fJr;`D6X*qw7p
zU5-o(9&#b7N5i6r4(L8S;L=__VdD^_rFZRa68D5}d%5Meu8915iX!s@k^~8U(lR0|
zf(R`!755?I47emZbQyoOrJwfh%XD4dQZPlQq55_M0t{HqV6xAEZxnwoC+S{IOCq&q
zB3fImg$bFQ8bMQnYN2MkKo8QWgIKZFOQgi4gRL1I352^~3_zgtsppN#-1&2H6d@zT
zvC!->q&yGRENLMABRf`zn+CYI40xC)iROopVN817{3SQ|;DDYTuXJV<&5_1s&NU^m
z8CazS8!RY0P&I}Pn=pTTCz7paacaz-aUhs{H^Ly&Fb>l$-l`MTF}*Z^JA-PqMNG}f
z#G<g~NpwzGq!-p`@i)A?K-rJGT$b7X<bYp!ik9*E%Z!2vL0R7#de%a#PN%?gQ1scr
z%8zO=xW1t6aYLgN^^VO?ZiINQ!djgPDmR4XoBR-qsw(faf-!%DV%47?(QPI%Fk36d
zc+p34{jjMR>u^a>A5I@JhfZW@Kf=e9NYz!!!IT2Hc3a-JTBug*n4EpOjh=<aUIBJ7
zpH=m`&1b$#+`|Hlv2R$DO0kviarxctq44LvSq=x9+v_;lZ!>UQg>7+sK^U{*m<b(y
zj$+kT#E5@Kve<vW2y`;TEU$qmmtXabQE}w3<<LEIKLUoLRs4Os!aTFr`-V-+SUaF{
zV^gx@Wuy4Q|5XASNJr*~S&iYxVLHPOzgqUzeByUBw#_v$PH~!4(6v;q=}&4)Ttr7k
zbKx?3B#_oeQU2?><7@pMV)}n|_>n9G@$<c?A<9s>knMlPYgyh&=;ue5cs;XjvmVw^
zz;PF~<o38@eSrpjQHZa_m19eJU9e@6(rXvOR?h%V48`OAAp}Bs88?GnI&&N7d7>&K
zdq01iTS3C0Is=YGnj~pWiaVIMpVErBKCZg6)vC&Q>wuVE5%6p^*fUsDF^zoIu!&Ok
zhaLiZ9YlX`D)Sp#33bYcLb#_l+Ct8iEuu8N3p8LKV%pkqi&C@h-0+#+A=z<H@l6&*
zI3gEAG;M!M-79mCXKWO^yUXsS9x}L?)Yz~8K-h>M!Kl}TlZ#|qg)9~33hC6~f5#&T
zWw1j`2FS(^{0Ywej%Onycm|Os<F4YG#Eln`Gn9Yd+lARYT4uqlj;>EwY@C=aB4c#q
zk8ECOv))xZMS0+#pLqvO&YhhcmP{v1^wm+DQ!NgqN6lZXNGxeASfhtR6~yawqV3M@
zk6_+A5P@DYo7YXV0I_6#wW|et@YCi^{3qiNqo`D%pqLKg=0oAdBz?97`!+O-{;~hJ
zZSH@4K$2VIgQJ(h36qv1-{f0fT2fT}SU^QN+&Wu7N>j`-jz(zLKy=7bR~yIXqifhU
z=T*~T*0`&$lEvH7ZU_O7(s;a~qXD`Whcevy9aGVaT@{Q6fO2%!h&1R9z<9eW6UeU=
zNDXP~WQ2K^kZ%zPmVsdSR1|W2IvqU4gi?P^Jr{#YNt9|B+sYS$x`2dAkqw(dMB$t}
z$$ZI$kh)|H@*?R7s9GBi6u*NbIsv+WkkAWhn76E9I$vQ4n2WV>l!o1d0}&Ebrw}!*
z=@C~2aN)+gC%PKI>&|WqddPn?@8UQksS9?JE8&>L?8MjNmF!LcbME;%@Ob~h0JeYQ
zRcTZD6foKVL%P<?`}~No5m(O}jLt^vDD3cY_{I7}Xarx)w#60Vv0e%~P}ZYr0Ey(B
zB)tYX(JP^2*4*lB5!G}EYz*?H0uK<kFM4Cr%Ve^49@@=s#`AoTfF=AKeZQ&xPV+1s
zuT&{h1Ebeu{S_b^8!_k6I>9K#<4%7SVBy8ih{?wusWdjhV2luo;eNe(^x;Y(u|V2`
zu9lYl)<bt{q8>&F2QS@6X+WSaY$1MzUaGM|og4CyYIPqAuyOC2vB!AtKiAh2O%LQT
zjGc&e4Oj<Jfd??~qEBGP>};TuO()S!#$tAoG#$~&GmYkguo|%{n2@QS4$yzIm?I)K
zFs_6<I2QO8IwOL^36j8>Rh_7S6@EaSqFa8UT|{(ce*IlR?2STOnRf>#bknyDf`-x0
zP4JlKp@Ewyz<8#K?lx2Gdr&eZIE2RO@o7$xC(tHRd&1*C|8#OYw)u-)Y&zE<@ebR?
z%VU41kd3fE)2zOFf)A94g-L%Bb@*q1L6WVw7_Qp!!%c3i8o^HvhGv(vxd<;15)8{<
zqUT2{AdoA?J4(61#}K2#=NIq2TD#63QZiN6YuY_wq&gx7ZzM<Oh;eX=i|Etrojkxm
zdtlVP?aECpU(~!8$^F_@OC8G0#0Dhg#>dZvj=Ac2i^$<~e#;`+oZ5dDbU4{sbSI8e
zXVdsK<M!Rzc(2$Bl+DrrOAiIPB(4-gt(SaFe7x{mU`u=D^{ulAOJ5NMAu-3vc`o+0
zq@pjotAH<DLE^Zz4kuI=HCC2wtp*Q$j^#La#vd`>UkD7jK=k|gips$LfI&tZV^KW9
ztWqAnsTa4#ENQWlz5{<kM@aFW(rDlL^RLH?#WHsv4X3M5y8hPOQ!#;IY|pnem)#&B
zq#1&lUps#X^4qPBY_CVTy3+QY!30rXNHfRVgX0C+Ha~9fS0E0L;+=n~{ciiIlWH$`
z0#=7Pp3^6DsRcn*@5QKjobCTL^cXkch~I#0#c2d8Qe)f5ni5vTJ48_kEtF`0JvZIO
z-6C_Lvi!Zg4o&t<EvTmVSafq5wjm_JLeIP%(xFPj&KY4`%zy^BT4B@A-A&7$vw;x(
Yw-mCDfgH9xA}$7WQf$Lijea0CXScZWumAu6