From ff7e42df1330a75298f6a7ee72e93d0c141ff2fe Mon Sep 17 00:00:00 2001
From: dlezcano <dlezcano>
Date: Mon, 8 Sep 2008 14:49:03 +0000
Subject: [PATCH] A little example to launch an isolated sshd daemon inside a
 container

---
 contrib/sshd/README         |  50 ++++++++++++++
 contrib/sshd/lxc-sshd       | 129 ++++++++++++++++++++++++++++++++++++
 contrib/sshd/rootfs.tar.bz2 | Bin 0 -> 21275 bytes
 3 files changed, 179 insertions(+)
 create mode 100644 contrib/sshd/README
 create mode 100755 contrib/sshd/lxc-sshd
 create mode 100644 contrib/sshd/rootfs.tar.bz2

diff --git a/contrib/sshd/README b/contrib/sshd/README
new file mode 100644
index 000000000..f89de28f5
--- /dev/null
+++ b/contrib/sshd/README
@@ -0,0 +1,50 @@
+This contribution is an example on how to launch a sshd daemon in a
+chroot'ed environment. The script will generate the files need to run
+the container. The script assume there is a bridge which is configured
+on the host.
+
+Check the pre-requisite:
+      * you can run this script as 'root'
+      * your kernel is configured with all the needed container
+        functionnality (check the lxc's README file).
+
+You can log to the sshd daemon only as 'root' with the password 'root'
+
+
+Create the container:
+---------------------
+
+	Generates the configuration files, untar the rootfs and
+	creates the container.
+
+	./lxc-sshd create
+
+Start the container:
+--------------------
+		
+	Launches in background /usr/sbin/sshd in the container.		
+	
+	./lxc-sshd start
+
+Stop the container:
+-------------------
+
+	Kills all the processes belonging to the container, sshd and
+	the connected clients.
+
+	./lxc-sshd stop
+
+Destroy the container:
+----------------------
+
+	Removes the generated files and destroy the container
+
+	./lxc-sshd destroy
+
+Status of the container
+-----------------------
+
+	Give the state of the container, if the container is destroyed, the command will fail.
+
+	./lxc-sshd status
+
diff --git a/contrib/sshd/lxc-sshd b/contrib/sshd/lxc-sshd
new file mode 100755
index 000000000..de55a7f79
--- /dev/null
+++ b/contrib/sshd/lxc-sshd
@@ -0,0 +1,129 @@
+#!/bin/bash
+
+SSHDLOG="lxc-sshd.log"
+ROOTFS="rootfs"
+CONFFILE="lxc-sshd.conf"
+FSTABFILE="fstab"
+UTSNAME="virtsshd"
+IPV4="172.20.0.20/24"
+
+create() {
+
+    if [ ! -d "$ROOTFS" ]; then
+	echo "Extracting root file system"
+	tar xvjf $ROOTFS.tar.bz2
+	chown -R root.root $ROOTFS
+    fi
+    
+    echo -n "What hostname do you wish for this container ? [$UTSNAME] "
+    read -t 10 _UTSNAME_
+
+    echo -n "What IP address do you wish for this container ? [$IPV4] "
+    read -t 10 _IPV4_
+
+    if [ ! -z "$_UTSNAME_"]; then
+	UTSNAME=$_UTSNAME
+    fi
+    
+    if [ ! -z "$_IPV4_"]; then
+	IPV4=$_IPV4_
+    fi
+
+    rm -f $CONFFILE
+    echo "lxc.utsname = $UTSNAME" >> $CONFFILE
+    echo "lxc.network.type = veth" >> $CONFFILE
+    echo "lxc.network.flags = up" >> $CONFFILE
+    echo "lxc.network.link = br0" >> $CONFFILE
+    echo "lxc.network.ipv4 = $IPV4" >> $CONFFILE
+    echo "lxc.network.name = eth0" >> $CONFFILE
+    echo "lxc.mount = ./fstab" >> $CONFFILE
+    echo "lxc.rootfs = ./rootfs" >> $CONFFILE
+
+    rm -f $FSTABFILE
+    echo "/lib /var/lxc/sshd/rootfs/lib none ro,bind 0 0" >> $FSTABFILE
+    echo "/bin /var/lxc/sshd/rootfs/bin none ro,bind 0 0" >> $FSTABFILE
+    echo "/usr /var/lxc/sshd/rootfs/usr none ro,bind 0 0" >> $FSTABFILE
+    echo "/sbin /var/lxc/sshd/rootfs/sbin none ro,bind 0 0" >> $FSTABFILE
+
+    lxc-create -n sshd -f ./lxc-sshd.conf
+    return $?
+}
+
+destroy() {
+
+    lxc-destroy -n sshd
+    RETVAL=$?
+    if [ ! $RETVAL -eq 0 ]; then
+	echo "Failed to destroyed 'sshd'"
+	return $RETVAL;
+    fi
+
+    rm -rf rootfs
+    rm -f $CONFFILE
+    rm -f $FSTABFILE
+    rm -f $SSHDLOG
+
+    return 0
+}
+
+status() {
+    return lxc-info -n sshd
+}
+
+start() {
+
+    CGROUP=$(mount | grep cgroup)
+    if [ -z "$CGROUP" ]; then
+	echo "Control Group file system not mounted, mounting it in /cgroup"
+	mkdir -p /cgroup
+	mount -t cgroup cgroup /cgroup
+    fi
+
+    lxc-wait -n sshd -s "ABORTING|RUNNING" &
+    LXCWAIT_PID=$!
+
+    lxc-execute -n sshd /usr/sbin/sshd &
+
+    wait $LXCWAIT_PID
+
+    lxc-info -n sshd | grep -q RUNNING
+    RETVAL=$?
+    if [ ! $RETVAL -eq 0 ]; then
+	echo "'sshd' failed to execute"
+	return 1
+    fi
+
+    echo "'sshd' successfuly executed"
+    return 0
+}
+
+stop() {
+    lxc-stop -n sshd
+    return $?
+}
+
+if [ "$(id -u)" != "0" ]; then
+	echo "This script should be run as 'root'"
+	exit 1
+fi 
+
+case "$1" in
+    start)
+	start
+	;;
+    stop)
+	stop
+	;;
+    create)
+	create
+	;;
+    destroy)
+	destroy
+	;;
+    status)
+	status
+	;;
+    *)
+    echo $"Usage: $0 {create|destroy|start|stop}"
+    exit 1
+esac
\ No newline at end of file
diff --git a/contrib/sshd/rootfs.tar.bz2 b/contrib/sshd/rootfs.tar.bz2
new file mode 100644
index 0000000000000000000000000000000000000000..327272e052886c9d0ea1ff53b0c7c284a92ee601
GIT binary patch
literal 21275
zcmYhB1yCDbwD7TF1zM;;@FD?Hpb*??q0pd(Hn<0OcWo)sB83o&)1rmou0;X~!QDN<
zDOMcX|HpeXZ|2+Cxp#MV@9f^Qdyo9id1YiTCH&G5_|CBRtV)wm_<h)a|NZx`<F5Jt
zwvLtmJ-NB-I{y1_)jjj)HHlOm!A0}DTb1Mc*rR)?!wbcl4zKBwiNa|t93T+xSL_7C
zxRUoJP=fCSt+f%lCA#6fG+XYvu>=J7TYb3sblJZXNX?Che<vXHlPRSvBp@Kzr@CvN
zRuK>oDjJ8g9ug3cgtLx!Qr-<PARr(L=fAr`04=&}2widC2?&TkD&8G)d}p0E7VkEA
zoFZ_a%GsEtKHoOO7A<;@4y^e0l7O3zoPfxJAYDjP2uMVNji6SEXMFca_3L9R+jsUE
z)IR|w_(zlHMR3gr6pV}ybc$0%ZND>3epCsU11e&#^R?f06RLewJ`F6=EC4&i<~xX|
zb87Tc|BzD>0}EvYesq-6$bh|jwj(;vPMQOMR>Y|>?f_R2jfh}~{~?}FG7r`i4FIN5
ztE5eyv1+Qs_0v*Q)W84p{_MfK$up{tN-v9|;t8mKj`k6Z5{Lps?TH-;81JS;Kox#B
zJ4HtO|2Zb$mQ$uBfAlObC!I+xFeA6r?cKX^7nQV(z_iJUN$WFWhoANY58f$S+fOKB
zixmHN$p1A&jz0;=Q{H@Ljbts-hGf2E@3SpRCw>|8zYqDpoBppSFCZtR5Ej+2CoCz-
zNJ|%{*4D^i1k-L87sx3o+Kald6NnPr?W7+k?|K5l@BcH7kYxRwRERLne-x+CO@PUJ
zl@V!1qM!?YFu~>7(c(f>)oBXVj|nkg<ju1!Dp?!ehcV<Khl~fW%3$=RrR~Rw#8LyO
z-tEc>tEUq&#lkKPXrV~un3&j!#<WL6?iHP^*~RX>Sp`&-0SfeRcXqr1$@|x@Uy;y6
zDtj_J_K;*N>39sDG))*yJ61a)jo-<UUWj@aG<(ilRKLsrVvE#h>OGVkIu@}iemqfl
zvZW@XS<KMjQiO_Cj{E*8CIX;lL_pp+uSVW+b<}6UA&}o8Q=@l#XdH-g81^#Eh+E-?
z-LtLEoS#lFGpmlXwRHjvWKx%lBTY~SXi#a~dZ|a|lv!yx6bdbb8f9&#qP;TBCPYNy
z;#p0JO^g_zpVX7+IFw1cV+nrnlH_d<JZ60TQ1R)#m{D$`vh~V1__wD+`#7nxMdXUO
zfYapr!67jyXPlPsmtlKyBFj4BH++<l-=CxiQ-(;*%2qpDLP{Qf7=GyT=)<;+eZe~-
zBqD;u;z2;vv&Y1u4+XyxF}`G>`*=J4Sg!M=<HzS`!64t4j!eIJ=5H4$9}M3ze^T)H
z!*exqwAHfpFW2cdL3@8@Ge}VGhMp;L;oK!WCPhATRx70A>c6GFG>v>>BFeD)e3_w@
zT{C_wjW@qph!c?T7eQ?17g`x}=XnWo!J?89oj7G!nz!$>gRzfFwIS*yUj6h`ue^EO
zWIi9e!8#&#UG&zwiu;Gp{jT#qMZQrY%6!CvSx)>KWXI<d*_!aWnZ{xw;=~4lX|mzK
zkbhFSc(x;hWL^^)6;IY-j@FpuU4Pj0jVi}|g`Y9!4ZQlpt92$i<wZZ`tThRWeh7zs
zX#S2?%FdkSsbk+TLVb(dy8iJHr_OUKtZ3bU^7zDa{=xY7P&(bgzP`x`zUSb0h-j_Y
zW2}JM<F|u@?}fqR^-5yz-`8kN)~VG^4h3qt#mwz^pM}xa?S0Uu;M{4o6Jrsq{y6be
z{`HH>pA+@2b`vw&rB{qS9A|;!Olke}mX<*sM#)LL*x|!+5gj89*W!;XELdk3phinH
z+I@yL;4zz=NX3ed{D$Xt)vx7?zIT+uJ9G5iL#*6+;-GhZSs^Pw&vW6Yf&VUI&t=WR
zR(`p4-EhFD)cub#?d1*mbxnhwV`p~+A1XeKym$QV6#)qWNl40H<qmZ)#`KlMN>1jN
z)S!F&$-RBofihu@71~{FyRpQC;lxmPna#r=Pl<>gKGPO`X-Gw2K_pFU5$ZupiJ~QW
zDsN%J6g)vx%jTS}5$f9k?l1{>C|IJjFQ35uY^nF=VN=_6^%MDe<r{{#V$`q7ciWUo
z<fGb*p^Ph}FR>^Q5k4u*ecwNP(odfQdABWT$9tZsb0tyEramm8(s{%vt*8E|gs;>s
z4pLFnGMqd=CCI-t*x3A09j9koKeW?O^jsS9UZngm#4U)sJjA<L(@6pioN&@SQFeIv
zM9=DLERnVAvgMoBXT<u<lJt3G_yk|-Ft^uWIC)dy>T0Vxd3S9yhL%Jbz`<pi_;G_~
zbvY<9YyVS(j^#bexBeQr1Qx>ggF&x2P*g&td8I-zWuUTGWkPu|&&fZRR(<&JnS=cE
zXWsK$6O$e@DiFnc@9QkP*5Ic_o*cl_uGijZ$@@w%Tytz;z+Ke23qVTfFN|vW&$%mM
z>LOg?p+5y3ub(#kl2V0JM7-8F=`uM|o`5*LUGDG_KJi?pF4u_x(nCUpHfEK8#rM^(
ztUu2L=oa#t`7*lRlp(*e@~aQ3pS1OL_C=|97pk)?9nUmc#A!`?c@KCLiYPSCt>Oh4
zGbx65ay_tL*AD(t;J(m{iA_s$?YsEXy}hX|#1KXHl{c>I;!<DoO8d!dswYy8?IV_L
z-#>4kb#``l7RfQW8Oje2G^7#y?!Ld|ztQuJ&Kbh-HuJ>Z-qVdKAso?ewYjwR$i-Qh
zEA>=4^K;sh9J-GjX{MZXf8r{+Hz40;-FGG{%9&%9?ZtUsQGYOeBHUI_L&tCS_Q$JY
zwL%Pnv|;awj~)L}k&2}X&IkWE>0?AJJ#7T+(b?-Aq4{JhU0A}Sz-tqJ%qya}v8suC
z!%4vwbX|4Z*q4igrZh@LI-XsNDUNR~=DE_uN!%}Cc7w^=x50@c#lKC?O(eEI1QC4B
zy$tx<KmH$^@~bP@Mwm?H#9xw|B>6`S9OSv~KR-}ZU%FxG+344}R=)hFaOQFL@5RP)
zy1iwouyYI5^H7PVRf>wB-CXVYyvH)~%qv?<;l}?=y_IkG*|d-UT_~6HEZa-5`iDG7
zHVIi_ok5?RGO^hd(&tGXx8Gm(8tJS|Ha5j4zIVIe>Epp}{7n&|9TnR9p7*_*PdM7+
z$Bz%Zqi<w-(W`R_4|H=@=0b{x2xXtmnsB@-Il%L0@Q|OpY>IP9MQ5fl#jM{J4?QZ1
z<4O$1^N=OvvohEwXjgK+iGOx6ZqA9f4=#59X?fEz8PHt`4NLyVW!jr5Fr9&sT1P5%
zghyObV+#V$C@MsY;#e@el2<>|U;v;qvKm+ak1YLPGg-?;9b2phio`ixK!h>_lW!kG
zJ{j%vN#N<5<8=;>*i1|5&E^FbX7g7r%o(~Q-x)$ut&7TM`qCG9-ifIVUMkzj)=TEu
zlMKaCzeB2*esR&T-l9k#eocwgZ&QAg?F!(Kw<(7;1pKl0s`R#uq>Fm9dcqiV_+@kN
zsD0Q>DzR?S<r78HSBl|ZIw|ujZR@)Zd3$jlQ~tQ}DxZf|5rpJD>^;;UUK+f7Eq&f~
zJ>GS;?9%-sk|BM7@9__?V4)SE%KP#ab%LH1rwWt|^HT=qA5Y!Or3a{fru}%@F}HeS
z0X-P_*qh`M0ua0$HCx=d<c$&k@Ut{r@!n(Q5|hMl=1=`#3S%Lm5TBX>^GF4XCeazj
zwI23}om(0P2ZMw_Dn()P?uX%A55Ka9qlmb;gdzzk$+a_+E<?=fWpeZrO6vo+%%|un
zzxWb~yOt#cam2phD66KYWn3NIa(h>H6<6oL*87LqCyIscKoj?N=>}6k@x{x%_Mu?V
z`<BcA@7b)qhSu2?rpEg`yc3_TWbU^a_xS!~dg+4#vVVNWz)iwY+AXArY*QqMh=BMh
z75PaNt0`%zlwUQi3mAr*I+!U*u0&D4HZKTj@bsPqQzr%F^SsP*A^09&LpuSBJgvXw
z6J%<LUFQtlFfPk_V$=E|Lj8b1BW9?6w>JBjH`cXJmFkIKzR<)0b-sXfoDp_(S7Ql-
z&uA%KUS&5_T;VUKTQJNRp|zSD%QE8NA(?cdDxtdn>1bHzl_QBrlVS>}=Z8H%y+q82
z4e_UXTXy}|#70};5k{mM+y;<7yR2Nt3RW!c(%%L1^grPh!#9Q_FJbo##dUJNx<-+>
zp7A7CyqYwa?-qL~vMliBSE_UjE-ivcrpHbeRMvWVEYrzidiqezi(W3$gZ%UBc^8Py
zS6ISah|NKUS{o`c#f_<+`4CiTbjacY!lEyQmNn0ggkf#&hkc`h{QUrSQX)~>KDWxZ
z{d2S9>7L6=qO|Q)tZGPp5DF`F13HJo?QzpL=Jmj52|uDcAh2n|R3_4NyIvcfXT<l2
zHm$^IEftrM)UU5A8g8A;9<|EY0Rm+_tOd&<DrW{=U*pR7)y3$PdvI9_5Q)Fmf0ceN
zP#7Ts;Ci~Ae_>TC0HI}RI6ioW#trJ>0J;IxFJ^e>{i4H!#b3htL)U<^Q50q>i3v3>
zsoBwC^=;k&wJOkoEO&{X<qB3B5mbaQ*qFXjjci}gQg~H<4KLE*x@wrwEyJISu3BdD
z$$>^??2xH7FxFZO!?JAbm*)~O^fb_H?_6pmyWzNic-2*^$GQ$TbF?LV5n>B?0%PMG
zsd4R>f%_`g!daK;ZmIHX%B|-`K<i*C*dO{JzbpqJql!)z^381m&HxYQ-qCYSkJ9x%
z&~z{^-PjM~85lRiPUiGiZ_3!Jcb=4@p^MH#`%b{Fv~wv(z!1!SsMQW!PFWk!WDWhH
zuUpO}m9Sw9Y2%+IB^=YEvt+G;G0#DeEY^Q1V0-N*Rn&9+ZHY=Q_!TmpgCG^ELNg&B
zX8B*LI^S%JR}TUDRMkum-@JHB`lCmYI4WK#lQxH&tiA1AzFTtIsF<rUbU=z=;Awo{
zle+oun<;@+fRmM<(s|Y4U0?Nj1!fqLHc*_KGTq_3ec1+Zv8&-$#G`VGM~47*<@*+$
zm-t`<rdH#>cFdA0mj33rc`J~IaZBHJbyv$R%R0$XuW}*ytw^@bGk<b={ak8+fRum_
zxYK=h(wSC-O)2@Kl-7ykFWHZM5T91x`#ilU9QQ%_R-Y1mxOe-8-J!@z=J1cQXGh5T
zsN&}>B8eJYhs^fy8sLkKF?tc)$VTYjP2zxg!B$J5uWJKjLb$ONwq>Jry{+?fXuhfY
zaCcw7^HTaG;YQoA8KK3^(Bd-wOQ=n;uIcAUBEX<amCR0<SV0McX1CxxOKigY?%?E;
zqltB3<2F*Ov5%;ve{$88@Q)eMR`fw~MaLQWo^s-=iO@r!{c8upPlE~k>NZ~+>PKNu
zF^uH90w`fBVF$*)a4MnZadG%Xp!B{1*Su`vd>lab0mG9J+bdv1S#R;qb?|~@MQh9&
zJ4f>8Hfo6&#`~5m>%HR`(Bnijpaq6{kfuL-gk%b)Cyd@@QVDQrgXKR6Q$+70_r4y;
z!sT;0_ef6;pqav6^kmW07#fC+Uz$hc#!{w)-QxkA25vjNbo2#lke_tnR0hP{bl{Jl
z(t!r13Wmb7X{yytp~LxSI(0s^G3zo^Fo51zl^2s<1YC9J+UXPU2fexZ3nOK3gtrfU
zoZ_6mw4^hCWh`h5SmqH!Pd@Nb$^ys9M7}~<PutPZx&iRsmJDL6E=!Bvk?Cy<0+y28
z7bAX2Y(pG^%y&L3W^I^#_~qp3+$l?xx@p=CTV(B^NbAj-o?w4<oS|CvxO74$_FRSu
zExEs}sTBOnrw6$tIuUieVu(rh7?4unG#7GXm6wL=brobz$*Uah<hHL!&Wp{eQaii^
z2(c^IKmEPiy6jYumM}{Wc#LA{C!yDO1b;H4O7eLK<g_j8@oe5Gt*}~moSOB1C>&=M
zS|Q3u%fUPsz4z7a_*~ZRNv6f0@e0mn{n6!kwi+QA0GqCtp;kN924hp;Y&*J;h=@eK
zs$e4Ztgv3zAXe-b?M=zRB6Z8Gm!t2QV8B5DRj@T$A`v!T!L=(2@0+KAgsMDSas*V{
z05DkLfxJq95S%pd&Qn;|X5+Njg!Ukd%V2qx$;iNOI(d2?=>mpyoyed2-+mk^r2P~5
z;=gePfK0^dos?~ubM6`3#x3{PAv~Am`>POESC``&S)AdW-*ARPaDy2j*n=&Rvf3L8
zU*2omHAKJMTeShcHtS=2NFGc6l7m8YZtcrzlo@NgR=zdg8N+^H!3=H(ef8*Gc9kfL
z(z?Zz=i@`Rl_0kh)%euK3vj{4z<q)G4<M8G!G%Z{7+}P4W@t-se5B#5HJg-7!WXHY
zu3}qcSX%l$4Ay=u-AjWvJ%X?XpniiV%w^i8j!Un*aRhlvTe9T~ChT^N&MGaMt^D)D
zdlsCLm9zzsHeVx7WlbvX<-L+nc|}UuLO#_)fQO$KTtf#!VJ7vS|5$xnRn03HK_lT2
zM4TMPDB#%UeU0qb!&Z`}d<<rsTF)<BR5Ew2cM`RmlSjp}(c(6yb|1xW<?V1%`gA@(
zPiHo6(<h<J!T&HJAt?5$gq<cMXmSLfHai{kp`eRQ)2GE3eG6v}Y`GCBcGqC|elD>e
zNn5<_VR>F%hkJ2Xq?*y+322`xg@<t0ul@M3PdPdj<CUW#g~9OcfJvm@*!3>*&9Oe%
zlE?B~gVE>ePnZ{OD^%RM&kWRft()pf-#GE{Yn+UhKw3ml&apMSOJzB?fr|YNuqJe<
znd)i@W!nyke)O|-fqWMUocW#7FyV_H<M^HJl+c6<?I-QOS6kSYEcW>e)^L@dcQuBQ
ze4Fz?I58>32?&><jhm;YtdHk>M(or@Rcy+U<X@X}o?Esi_fE|89^B^J4$sRqfim|A
znills$YOqj|4gB=VqC*hiWr=*ZNK2}K>8;ALOxt-6mJ5DP|6BfL^!s|s?lBj!B8Fd
zk+_Ya3b-uv7=#fh=+&D;o5SR-mwxFDZx}2K&1-<#5EcNnU-fZ~@IG|^-k*gbp^Z=b
z7S)~mLgP?;x(#R~<_hRhmgy83x|f=S!e^Yas60FUHseu{jp;Um&&<id0a91RX<GmG
z@_#N%>`CeAmPv#jGW^CF%u7@M=iRSef%|>}cB2nHhBc{O8yzzrmy@UTRW(4<C~Sv4
zniaS<E?)e|kOlS2tJP5z8rk=2<}$PgFt;H50YkAitSYzYh-hY)8Il^m6#wm1s@8<8
z?sYAEH}veCGuP5!21Xd3n(RA@wCEA>9zsIERQY5tVCk}nV|wMp$rU&o1I)0EY1CNi
z{&U|aeU{>ut@raP3JtC=8U6s&swEsim`(Z`iz`-HgaZI!Cuy(#a|ylyJwC3rA5js&
zF`%_02HkjUOoa-~nysKG(4%i8b?{e)DqU$otk_208ViICOMi!57`MqOfOl6YG4KzL
zJ_J%{)dTL$a$<YK-CS_LsYlg@?!zKy{)h4)wnt;TdncEFD`6|jgRs=imDvj@O~tMV
zH;n`(3$tOZ?U2BL?a5{&`8|_~C%fJ6SJP$0-UUsSNARH6Tns!!2od@iMq?o0q~Xw0
z%5JTJl_sHVG0#{fqyJ|8Ag*=f_2mSW=(I=tSQH|s&E&X6bi#*s*jBgjHIR!^F<^O%
zUTo@@?nvnDrbd(9By5w7n4w#8!Q_<2$L_ijG~KOP?Nd>m6MUE$v6%KRVv{+F+h{BF
zA6g5iy2~I<MJy!@KX1lyU!3RD)S{fhD5~niePmX_HA~bdLkS-qwlFE5TA+==5~lhD
zeBml@`LSyLxn~)teU~bxj1wz!!S6Big4<*jU}x~BF5kUXYr_;|&951|K=)zwyM|)X
zDtcm0pI_dA)ho`12Uk2<Ze#RS^r;rnjBH(Mm4h$1Py%fXAm8VdNe4|ZGzdYeNyq_E
zy}Y%W@+!B&Bc#g9RN1Jext#)}bJf(qaf+*Y6IM@Kz0i_CY<y?e$yBW6!^ATpLwf;)
ziw}oK5wk;%bGb)vA#^YeyYI!UN_*U-*j{+D6ke=$ufIvlip1f2gc>=MgT(zJcE#{V
z*%pec8=qYG!T~?w1#jiz0xeHO$9JK2t!JC!0r_c@!U3F3ilq@qwcn6K+x`lF-Vx7O
zJ{S6Gje;404!a`-*5nEMc@3^%?drv}?dz_rAf8XgWQnlT_{Ar|=L3Qb<1eODVyj#2
zq1aIaH%HDQ>f!VH0SY3iciV2oM;#Q!YXY|jx0IaV#7{<ae~rL_$9rr1OW3n5b1$?;
zFpZ6oTJ41YQn=NKhWJpD-m*-BBo$1v(9n<P$7H&SAlKTLUw)U9QX|=5(785oURevZ
zfoQz%i~)*a4DZA&0%!QsH}dve!)N3{y20!Xz==^sw;U!H=*ZZD@Bl`nz<BN)u9J#F
zqh=Q-PP_+Bg0@RwX?s}G2`JoO?0IL%A{lv8V3aZIf>z6`oHZ3?>}1ionGktV_zYbc
z?nINbA?cVV$ztmAFN{J8F3(Bd*ZYo71b({x&6Sg=oS00vEL(LOTIPjITUAi}$DO+i
zzz#akJk`u^oThW)$%NE}1YQ9(m>Loaws^<o;^&2})NeuocG21X45Xe`DEc))K&v+Z
zyI?<7m*xol^5zWJEEPMDG(01bIYl1!4j$C|@pry%!qgwRoJQ6}s(&F6Gr8UW&=R4Q
z`ynpDO`a!;suE7WWT+fm{^D5FOwt;JgzkN3r}|7pLfEfJXnUC@lBcoM5?fq#@#iB}
zdOs%S0r)@p&<MxIO@XDno#(<nGru@>>^?EkWkIKIa=V=v_b&tr=C#<$vLH8|o6z&W
zXyHy*XhB*&*%1p_^|Yizs@X>3BDbL_hP-YXnv;W@xD-BXq;nYbN_>e&8VfM`WnY8K
zKl=aCVt_Pyxn!%#La_Ru+lRGQYH7e1gR-v^WP{-{kq&$k_MDGX*X)G8RMGYset0ZQ
zP*rLNuwif>heqif{y5QMa^4mJ-7tyy0FPr|tb|$K-V7}R-nk7OaG=HVB0x@`>}1qF
z%=pK1$7PRw8b|sk5dCH=@Bl5ni!E>iVTw<d12#XmExec%#^l-<%;_gv^@w+4exiG?
zCALoC)6!yF#d|2~{OB2f^jPAihG)wj`?)-DoSKI&CPi%xP@6rkVT^G6@{HIm%&ElC
zoWn@>!?fnUi^X`JXn$&xiXr*K@4nd9ZUgWLvp;Ac;R?f}6Jv{5q5UXMXP48md}nuN
zg7MHP9>VC~qAIhHy6pB4?nw`}<cbw;Gt14FwGyV{2)B+Q@H{wP{&$6sRv=tF=!S>o
z;x0U04FGL5i^k=Ht^tq|ePchgL9pYw9HOY%rUw}dO*O)PKyH=aB!<c)%zFSmmdDGO
zq(H0Rqz*fbc5)Xz(ES$#YnYHW?lLC^x(UxRv+O;d3L7J_^dO*TIqs=vP?sRFfN;aK
z25VG&I<^d%s#|Uf$=vtjdBI6WEw%8irY7MMemw#%#|As_1lN2T3II)O)W$oSo=$7$
zG<oq<<l`+rKF#g<TiLm*U~s%|$ri_iJ;U1`&Q7Q<ZkV&lIJ1gT!5(hJSlq1yWOq4R
zvK<4$bEsNhAV2MQUl5b(YcrLk;(LZ<!kOJ=Tth2s`YdYzG!^Xrb64=WTtbejN0!z2
zMijWhpbmt}tFZ1CUY4Qqh!Yf=mv90as#P&pRep81cIFp-%KKfhN%B`m@x*nmd349|
zlXW@fzuG*#l{I$FS!a2kzvELGCMg8p8K$|T+Bg_Y-sbBTitAf5?mJ+NS=`hW0jh8M
z9J(aIo0XvL`gfs&%3O*)<joww6>HXSJEg}P{Dm@+!6?32MFhh8Fp=;aTBH-Lz%?xL
zm)ppV0ex9RZQbwlkjvWty?Uf~u(XF$O$36EQ-d*P8=6ZSZ5G{B1H!PSohNWscz~|h
z<fSeQ<q%<P!1}Zxz`>TaBy~S`SCKK@{H={iCefoF#ri@`gB+I^i%1_k9s6080OO|=
z8;})vkmEcFm9qVszxBpMo)M^91LDl=H3Kl6yGU*FXo-MKzj(;sSJgc7%#r<GRa5V*
ziel75#qftl9K2K4&5>saZ&#-R<kvXGkz`oTc-hst7R*7v+dK*7XFlwcv)w;`|7*Qp
zOy7F}1JSXv2^%6l-^RBuVE2f~VNVQfNKTU=>OrIiypMCJ9y0Vd%w78d1-Q<&`!A8o
zp3taP-Zwepqy3&70xqxXvog(%H?7!BKk+hNF>QE#f+gY%rE$jm0&?)X=w&I+vs>G+
zDlr~nwe_mfx-u!nVkalVNN;-L!>BDMXt>JgG32WiyJMb~Kd2|ZA|)->n$w0DYB)aK
zHEUSwDDcGHlV04Jd{X6J+OIHdOI^I!WOq{9@Sg2u9fqy1`<9Bnt7w=FhLf*O+-!)?
zRw1mQ3-ww|lY=i6{2s52x4v6szf_*qRG6SwUSuZ<Q}5S0Vou{*;mgNvSsA1PjUY?_
zv@9189A~h{j7>?eR%><`3;=eCP}y4X{{(bf=QG4~F_O<JW<@?Q#84gYiqlBP;W~%K
z`oZw<f#R2K{&>+Tl>NF!zT{t@LuQ!Da4r{G+KXj(Ud}>YaxAY*se#V%0Gg6(ec^uq
zJxf8_59kG<AFQ}_1h!#Oe)x<UCq`9%&YzcEhlM7h53(U8deyi$%g{jqb8a))2V2bt
z;(oel&1JG3HcmcaZ|3N}K`Ho}e&=D0sVHb(0yNULAdQCZiPMB4oS4;G6Z+fWyyw#H
zOzm5$YV`@k4*J%u4`7PRnh<-mNId63IV`!%dS51RA6cyHyexsRg*IsBQn-Nj)`eVH
zNS}SoE6YOI<G&@B&u#=GV8HQmiQkJzj*1*`J(Y2bB~L^toiGQNHt*h_u`Rzzyo_P-
zfY*Dz;}BWx*v&=M&8C!RSZ(pseE$yApMS62R%T)|#oq}@`6eG~J$BuHVk0j6kRk7v
z$j=WPfXNw63Zw&gN-VJ5Ea=Zu+1@|7U}eABY}?>?TBhSzJ;M#qKXUJp%a;k4(FSN=
zNtX+7S;5q6%Ugh61VTS?F-}R0$yHFx?H6r(X&Eet_aV`a?q;Fl-X`bb&95{+wi+;A
z-uRNm=1UyRP#6tu)8ZOL;@whpE7v%Kjn~*<euPA1nHX8nVW#^X&|dVSoe*ZK)H@D*
zB^3;(P%xJ47hW*#Hrz=UJf$i$-NVt34lzg3;zL(f+WcTM3@f2KGcV5;*cY@UM-;ad
zIAxujDeDjp1sQZJKo)sy&Pj!hNi^7thd)b{d&DzL;vmD1PygUU%ShAZOfGTfP)eFJ
zhGs!-Lock@-<vUcHP{Vm7k$3MnP*ZTz(c8^w-%|F@x(!}Tk<#U&xS7La_^m*7PW@v
zxsEXxzS9&p%7%;L;L}-ToLsl0_lV@CMy%cINo0I*rH#3f#Gz(b_F6(jEoN9L7}wsi
ztXavDe4AjsD=&?3?#W*JV{T&%Daa034bsKz4XL%ldFTG{=|8&@`GKlwt=rMJmkq`k
zh%u%n0Mz#_*}<>Q2l&aHvSmULZHR7epfbim{W=UFCmQ+3o5^Ll!<OyV(1Y=Si;;pA
zPwQ!+!v{%SFCvcQWqq#LjL|Pq0!xq?hP6LHk41}Pr2FM2bVuLQa}}9vf^ExacLMac
zKfg3DUaX>GttxIJebWtw;xiTa_wbpj)#pNReopfZk@$wdT`ABF@V5w!VFTzA)vT9X
zZoRCD+jk$8u#d;@Ld%en=NiNS1>yj`_C~Y}yhIYzzpKGD_tm4#vE*Ei8}3=D<QKPM
z>StV+!0DjZRR$~b00gi~SnVTUm1T*;fGd<$2hcjCl;~V9qpVxPxz=*MCp0(N8oFS{
zZGMMQEKCV~o*IeK3j?IJQJdMd<!%ZBGVP4HOydV3@#g{^%pd=APTy4$^K#X7_fiVv
zk(k=@pWMFuLO1)l@4-%W5w{<I=^rD3f>-!*n&%BA$L(MCKKIDwxa`ig4|OzJXNv7_
zUQVSi7#eHs!hLnmoR$ZZn7)1(+wg=AaS$xNHnhvi#MW6LNt4~zHAOSlsNEGO#Egc@
zxF6r|agfnd^;St%QxY?<-eMLKLCtoR=%rP*L(a8uz!z2b=VG2hH@74JrTF*3{qHo_
z!9L2ehS6+cu@iBuXoi1nc1X#71w|}<L{3LOxADJZTZRj#U)t7q$veA`!e^q_P^lZH
zYE^M&+f38rp+6?mc5;~O0$9DrrQnSL2F8tOZC?!ezn2q+dP%W@+4X*m)fQ`G{0JY(
z;|bsWotI2Cv@tn8Z}~tmbSOfb5&_;;uW5m*Huyo4G<?N+T9XTl)bW7M8n)YuUzwRP
zItywPaH7H!Uft4!D!jR#)@n+`Dli`NJQ&xguI-RoV4GUg8wOxEHIJZm{==HE7O~@{
z^t<H2q)Oh9z85v|GbUADM0oXYyl<aaVvDHVAkzOY%M+XZEJUdA17o_WFUjSwZx6Ow
z+HlOoZk^|voaNS6e0p;#&i^dbeRXaTqoE@aX`xR-<2hsXbZy`ilJhe>iydxv@uQ*s
zv<ZfAPA~tk74ppxTjh=0Je<fKIE%~ny*<}7aa)!S!tz_6iY0P&YoO3?R_62;RC1Fm
zP*k<&&>0(Z>ycy=x|zdi8cu^@ZE5)CSW)w7zc`#48te&BrE`RC24hb&yb`iiWr9Il
zRVTvm#$%C<OuS_rlKKj?r2pD*4>b5K5yq<E=3KMI>=jMB=sH)B)*PxrSHXM3#`#;F
zr`wz}+T&OC#H#;H+Dxoa1-=hSe!1tHY`+V|l?WjMnN^=%s$-Jvp;-=}fNT3Xq#l2P
ze`hcrA2+)eGpE3bm9WlXVVZdtWFtP;ocQNhP3gGggTDDYJS?5SKzdRRDrcyMOX%8O
z#K#7(qWOgr0unF}tmj4Ja296?%~$vwIy4xkz_s^)vgruyKQ9fxBZWRJ|Dz^ihGn@&
z80{GveW5)bpx>>MbNgX0yX(0Zkqsx#hZ1RO?e>h=ZHs}~VD_&%v>fEbwq}c0hGi>7
zIHu}__?pFk94l`J*+hnRb0!W(G=878RrtrAOP@YB(uHQlKK&e^*6{noBC-b=p711}
zh$I0eQNwPS@9ch0#)W78D=E=E)~TyqfeHEsf!C!GuZc;fiSkG!e{<@%^{BM!DQDg<
zjHJ}^H;O{^s2meTD^c~({Bw66)B6zR*c3xYZ$bBJ9a$BzdhRyhY|CyTNTZ=E=>fv`
z<p$5DE;ta!3PIbD%%$aFTqu=CRe#kw4E2mKNd*DGLQ}P7geUZJU1VT+?`t=Prh2B_
z`c!H*wcWJ8DR@95HcI2U!L&r8pB=Co9#U{F3y(R`LiG(8+b>J|usGCG$g4GD*av3!
zkz^i4NuT&}6kco{|MXVk|9g0Wm4hFHu1*;Dm{mU+(rqNB;W9J*R~V)yz%IZallHxB
zupPY$Mo;wvPs`=%OXz<3-a%5GO%^g53}aPmv%F$8Yjk61d|*g7i_DF`@F|W*HH*Nb
zhVmP<iPip$Zc0;KB&0$1)7+S4e4&+El+^=G%Nnu?3zj@OlO8;T#h#w15}9Ra+6)0&
zW?j;oQMGTa%o;lLtb)#QZ}iG=2CLU~s1r3_o~as&z5|U>i#|-hg8T+y$hRxaVpJuD
z7-xL%g6}wtCoB48nX`h;rZ_Ebv|DaFmCh5Il1?@(8rXZdgg=31lwR*bGaaOCX2Z<>
zF1L7$gyNT>xpaO&>8LnkNE}jfQ6fG#J~yeyzegT2r|*`K18MX9OW9h`tvz%_6YImO
zGL#jiTo2DqSB+S-#XFCExr5MSSpGI&b(dy1L-}2tn_r@rT$X`B$HP3!AJ<x|SE10B
zahaG;hOIRCu^BW?s9HP14b(f+V~owp{G+>*l{00y2^~bHN?|ePTvt3D_r@Jb79+iA
zk+yZt1Vf#Qr{x``J~y9Yv)CBXxTP$SqktW`V_*BQ|M-}ux*l!2>J&mh@;-MFA0P8b
zyU?L+GUE506N$2x`w<Wr|Jbvn*z+yt<E{~{%>Y~VH%kS+!a+=XK*<eO|HW^*p{H_A
zERRa`Xi>R@!_1CIw837S?{Vrueg)^7ky*T`H#9*!DVNR-w3W?SQ}z*aYS4?jq6+=Z
z(?mC~ap5qNhG#uT3r}czuJotsIx=ms!Ac|(xXpvykV4(iT(PKUe_Y%0Yszd)VX3Z0
zrpHsyqsPmoCq;n~tsS_W8+4-et|sS+$Y$wSW?p&QQZ13GO}c)@6BjmlnW>96<Ip-c
zV7rV1Xda5JF|OLw>~DY@icI&&I834MUdDML1YYiuaD%X6z57ya_(55RKZ3jE?g1<+
z$5l2!oxNr;`)+MweBfLb((FH*$Q&{a{|D_yEYem-$a0wYU+l$n23%h_%Ldek+yYn1
zOfYX4Lh`_NpgANx^>6&til=K2QW$P-pmKcH=Enl6WL8-_N*#t33n~QMw4+J|>QE2Q
z<<?eoL*m%P;m5`3-A3-#qQoH-K+0)(7+0)w(a?oQLL}oqx+(Q_$6v?afcmwJ=_XVE
z+JP1rZfVXRun~_=O67N(mou&oBv<%sob3lNB;!RBjvveg?+MD(4#+V3A^ZT4HYA^d
zd{tuSwL1HWa9nOuzA8R_gIP2V#&81~6}5mK(@UNe36J`A%M3#k2_rp!A9(a2r)xY9
zlMP8bX_>jUXI1r|xx6N(0v=T*d=TOvZwuTOabu&bzG8_6S0<NJHpf|yYvP=lexW}%
z`Y<J9JJ5_6w9A+~6Pa?u(xk)jN1YVgiD;u5gfChwfk8EKbq(*u!_^uRw<P3!hk=n=
zc$}{e-j4APPoP6i04X6J2IOrF_5v*(iNw#T)$PR1i(Z%hf*{$ap(m!V=adIuJpCX+
zj(<_I=NN1*vz2Y`G{Ng@(Iamcgv!gI1lANBkp2g15!Qb5wX>iQT9p61njv3JI4D(m
zHw9hhj~2`tES%uWbL>tZw-E;?zLyzc=@{GfmZeVr&2pJ`BAsmI;*6gw*a}jg_NfvJ
zf;RAcM_QEs0`9p8RLG)4j3pZ0IJogO3ADK^ah(PP4bLb_^F8z&YVq4yp0zm6nHvjv
zN169C547LBr~{nlFLPCIDdeiI7CPjXfH;V^2<htDN5$H8lSjQHclfCcNm-k}SbyBB
z(F6LL*HhD7`Z=amxK-77kU6_2%S~=WOApJc`9;X`#TZ6VI?$^AMSL|G51CS~w#?@y
zJ6VZw;Lm{GLjP<gDfd;TjALe|h1=cq3`u{wmegj;-3QE8*VNQ-xJgm8fs0qEYj)94
z$xjc@2<~Ri>R2*r`@*D+)?e+Wz^|5;lx0~YV8chfVNXz_^-PL`igIP)?$_a`LjLlE
zf%mZbtDqZ7vONBe;}2zD=^t?>Zc^5JvJE0Eb!SsGOhjE6RLYF7U&7~VJ&hHj*%H{g
zJ)tAuN*20{H*1S_jA%v`%P+H&NQQGL3Mg@QKUOj!&>s_hVzdpQJCXDQCWj>MtZ@F^
zr60P}r>(L2ZZ$Ty!!vBfM#1M)N`0H+aQ891WeTz=sT=yyeqJUXzxZv%dJ*|l4l--c
zg3S!8PRURkNY~#UEAUk>5epocp~fk0JpE+)#9~;+_s)w-(xaMBUVhF|X+0E|E|Hk*
z1HkUh$*Xu)MkH3`^W*yFg%Dm0WD%$l;?A8W-^*P&9^uX8uqUT-2pgWzS})LVIG=tq
zw!zcl&XM&D9=Zdhv$Bcbcg5fg{qny7lJJqFhH|B#@iH4j;=M+&AD{sq?df{OI&3|Q
zERppcdR`*DD*-iU#O~4HqEZ5<q4~w=c(q2juTFk+{3&;wPqP5G8RSI50(&Ctzb*`K
zIh&XrX$B+wcs%XcxXvbk>tIh;+6miZ7UBu9t6vz^k9kLmz4~t-?$`?2YWgEwyv)F|
z-z7Z;726csn|oCG;L*Ec2qysDrX*a~yb<&_L9NaT>E0<$b&d#~)AwkgE6<4<gA<j-
z`u}a3l!@nB*2E9BAw50Vj8$|7I>)~Cb+@~-s_u2^3AZ8fNPvE>^|-j>4YN2+uJux>
zzVs0r?4qodN(}D9x~iS*K7RUb+*H+Y;~Nd}jIPtRWg)Z<_CtU8DmYG<d*SPC+>7LZ
z;U7KrR}7FI7-KyQPL2uX>O``BOgsA)krnJqyZymdCYCSuOx0>jjx;VQN>Y<wHz)f$
zn_2v`)u0Kn$<=s@bp55k;Y>IW-9;1Y@5IcL=kFF6uh$eR<@j$D9+f=(-Iwl&K&?Ie
z+<yNlVM6V}z+P;yU+!DhGdk4QDqfN28jrUbnV3}Ow;tQuJ6l{PYo4<W$sh30m@%t&
z|3}mYt2NCI%63!pANQ%RX<$u^!FR}L-TwYG_oPg>NnhGWo?4OeKJ`Z$t{aBmJeG?{
zgUhjW0TlBMbnXRU8%6$4n@^vv%oLq13BtHu!%OtF0N9G4XuM4wGFrPnR{uvL-mii7
zll9t;-U}O}M(#n^4dm8I;~zupNdxFM9_z;Aae1|X+egmHI3?+Mda8dzmoK4Tn>;Ey
zsj%Mo;_JqVj##iN!-<<GyWd5AVe|(h6Z&S2@%T|;A4ZiyQ=wies12)VJR`ac*Jiz9
z@Yij<mU`?GafeXn^zk3Xi1IcCuEP=jpecQ$z_!2UgF(}@y>sC{Jac+(v*%Q-*y!I4
zi3=fA1xx9An)xRRE@jB#J)SdxLZjqm(L}C(=>*39dN`Y<1+-Ep|J(=YkMQH3%z=#Q
zjawXOC^$+7CvLe}FN)9@gvy@E!Rh<%GXJxksdSYPJI3hI1>H)urnq@kx(e%a=$KyV
zueQ5CKi<$8T9z%@FP>;nx(tm(HVPMM5~s_=!G6v|Go|znZOoOxddbdALfm!8ScQ0O
zl70e1^4TDgezE_T2sEe0it*NZT!Y)F4RmhxcWK{w<w(ATDmStNfW_zb3m&bw%7=7t
zod|)hm}{H{9hly?tXP$EZMFpf`E5+GDItqUUQA9aRSi5{I-UvBcPav?Lb&np*Ck{`
z(}hB^vN3&lq-5_QZGl~!J<Ag(V6PFj78ib{kXi-5bAD<18;3Pu45-dNWWtIuMk9aK
ziFrtl8b$WU&vb2NnX6m7@3u7919S^7(IdoX)KYOm<W*^-j{U6Jtpqt1XHBNu=xvDW
zH_oo)7xu4<MqUU6hirB_r9ucWoZ+Zq*GD1>`ZF%aStv&{_1CQF?&zA0k%5tgKhIOm
zp39FUuUXwhI;_&}k)QIiSP~8WB}}Bf@vOvK_ueE$+5zbTclttak>Ncu@MJ@^8uyKx
zqi)Uo3jiX-?#4G$I+5#KW5WQ{h4*2qio=Z?ksi+5cFX^I;srX_WG2<AP21F5#{QMx
z)U-a3OEe^dzQ9Bv)6TWy?>JQ!MF5Wu%CjP$LJ}UA@82mM|G5!ihr*bu%HPI)u5)6B
z%(@?c_u2D5mx7yJ#j^?_EYzo|P{(kBbvbG|c;6thZ!uNZjcxW9_KeA5S1jIoSB@$-
z6oO8+o|dy@?QizHOOd-pdQVFroH8Ne@hePsLFiPt8_$ex00U%Uc2o0@#kmk@6v?Oe
z@;eN80~ts*R0&jT{2eVBMHgbj9F<&#au9ouN1}(=+736z_Ey7;f5Ek2vGSOtyDAZQ
z>a$39M%Za;bsVzkCdLJ{DUn#+X2GcXvQ_9#_Z@auh}yBLKB=WDSQLWCEJNemn4_Ap
za{@Ld8$8s)anD2Z*$k}D#-Y3A`Lie56mA8UP-|!_vy#v)H}cH{*pRfG*!KX2)w^9E
z2ahUvb@rxq6(Eh|y@y3B@HarQx-?hR(|hJz=aFN|g%J$&G;4#mAcv@bMEl$9ZeuCE
ze_<*b{T&bqFQAY9HeNW6+vGM8EBpX}PA)U5bsBU79x(p~Iv3zbj}vqq63GW_dkq5O
zEGACGsPDwqV-xAXgm7YM^gY)q7+X&G4<ZM;@x<V|%eSwur)7aQ=B#SJ#9SCvj{gew
zeXAGbR9V|ks|!d$R_m?gM$|To9EngDnlq}d$63#7ybo~$j$6gKUIhR`T;oJ-nbm5?
zB`4CB_R{J@+8gM-d=6{-g5(!=+1M{1^BxB)#QERw#J=5oe7+xTP^6<o`Rh`%PD$eB
zckeBW)zQgjATF3trdz35&EwnrznSHbj@>{rVpJEGazo5B6IzK#4c>5b#TSLgWC+4e
zl?}S`ezJFi^ypD@c7Z3Z^vAPOGz|zC5C2DlO_>rW)<E?Vp)kS%t7&cG8QLslUb!_I
z><R7h{zv5o+6$1P#w8npY5e0Pt<@#_kU-jx2Gc@e$`;F_chK1K*7esOW=`B5x|pp}
zeXZ6(+__Ze_{UJMrqYnNQ`((Hb@~8?GZ<@g;Q^NcEZLGBW&}7(^aSdskj?s7;eGih
zJ^%zPjO^^fP=Aj#nzpsrx*9%iq}R2dgTWb!c<|7o?kt>CJlD+~&}p03fbmHqLiO$$
zOC=aex(_0g%M2{ki%!av?0b-J*G1h1%nI<bp&~ez;6LKvO3tkg&e<!5Cw7d@maT^R
zp3c}-i$&zB9jo=1nc-a49iBpiTR87FlH!h2vXb$eM0r*m*&jgLGD$1Aj*zM+vN8c|
zcbYBE@9cs#*GMu19yORhx+$KJ--nmBOns4b+wKLL{k9K3LK>_haeB0PA2zlhdY++>
zf}HD(r&x2CoB<7GeNElU+iUf7SwyJHCquL*6Z*Ab!=N<6j!A}^_-79y(gk!PU+>Pw
zsX7FEvz>~sdJx$NpLQweL^5>BOSoSF$16AfsS5ABh^MUQUKcFRQEM-B9M>!~0>fhl
zzj+MZ-{H?h(?(`DA*}lElFt4&sH0S-?pu54@o1>3VE*@Y$vAP)j-K!dP2QwwAXDP|
z-!`AtvCH4>zgr;T&+ea&E9l)bi=M%X!d3U~W`jvu_cs~S+wN1<nDR$>I_CLHx6fZQ
zd*G`hw)-Hqv0;$PkjF(ZcI5@loiE`v6M4x6jz{hXPWv^Glfd5@JI^-QIC<9PXFe=%
zDUDt#2W!77e`rqrCG5S~YGSxzlj@+3tRols<pR6+q$cpYHIs^3TfBrFD<smF1=J$}
z8Wjt@1qZSAw<JRB&$TJ+Kqrz2=aF=1>T!*}2DfPg473k+i|iK?s1oEP?n8xlS5aG|
zrQnbK(c(~C=O6L|?G?XoGGwQr{-86xYWOT#C{7ICkd%ciy0cMhJkynhX7YASYV9^?
zk~Rkx|H)K|q!GFbMjba`{?p$${n@qJpDS3sYSdj~2JgZ{7mTh^yJP+P*;;9gLK>VU
z`mfE%60ShKttw#G1kP#8NhCyqnzOhfzgfTAbX6(=M>+&!7}?6&IJm1<f(%4)wez@9
zHpAau=5v(6-pnF_I=5k+J0nvDQrt(9R4O!vDnD|BPoM!PTLIy2%^VeZFg*A?UebOF
zomgmsJ-eAbMOO4TJKSIS(aNV!dj-Ns>AMnV6n9q`^mjztUh(wZ!qdeQ6E@6~gBT^@
zWHX_^$mWDfTi~4+abvfCZ}wfU{whfIC~%gm)p$db1m>iv(#7LGzP<GV^+WUI^R5?>
z4<}?Zq{bS$Qjn5;QVE>w^BQ+jSVaEB_8`$D%UXrT*vX72x^f0g(t?y^0)A)VkAoZy
zF;)!Jtqq$!*R<Xg-gpWQ6-(sw?}leHl8y~r@Z%t&pN^0hFW5j8v4M<`#UMue+eGVI
z8{qMG$8HfPW>RyCyXE?=CV&TT2|VmO&}R6%lFijAX|?J*D6cYN0y&Wajmsu@_N6kc
zvC6_VqWM8h+=H+a#TaMg`re|K>Arr|g>hR{=+0CCtKaG=3%as(*~_*|Wd-1SuBSve
zjM3#TmT<vIS5-fOYJA#UbUtE;V*vp-eUqt2w{hfw%3Pw18TLo{(syzJy?fkE@wJ}v
z6{`HPnyC;Aqb*rjSDzo~nuW~MxknDvgY-WaN<?%CpvYb<J6$#FRkvDP|9kAgL{<~}
zSqS06;Lg@<qgqAoLGPZ}d0;Cjm`KQ+=I4UQCb8*CYgYBhoL>G1i4H`MU_zskgFuTy
zhXMNLnWWXN-DO6QS|2mDmH-})Sbfb!2`ZtxLdsf%>oMBKOakG-)DWz~Z7S-LSDvL-
zb5{)xnrnRlahcN#bOWCFZ;N;`pocb0qyr|RTnwXiD-$<76FD20gc1tQzS{A4oIrp2
z0hfQBqa^$9)S37)IH-sT5pr;sFp&+Wo`YmIAow{)$G(u>K+x1@4$P|F6)*?cc$oXT
zwpw!nWljF*v}_`0e9#K%FpS6q9Uu64T*KQ!3O<~lTsB8WyY07UTjK?29oNd&yb7Ta
zK{%x#W5zWlN5(4|A$J7;3)=&1p=7it&@uiDX-k%?vK)+{jX4vZ!4r`wRV~<-fMU7a
zm9^+Z21von{ovEOF4K&)i9s{+xV{yLzKv;g8BVe*(h3koSJ7XaJXGrdcAXa5Vi+*!
z`Ia2)!hA=ZNS82!C1Nn1p`+i&cNkCj%XxJIh40P@G;N@}oD+{^eeA=Qwm!7OPfWf!
z*A{%Dmu#7NIaKhw_wozFv>f8jP0=beFPI?fTo+0ll~-$}5~o_g-Y#YO9^j|%YDh~^
z{{7-KN_)0<i8y!&@tFfFnl9LR?G(AA7m<aGI&lH^)ED06qLOZ*$?*%lm*r!wQal3)
zeEaimKr$g?h+cnh&&h*F<BtuuEb=~^aBY>-{<j|TrR3v(69cBq0Gshnc^#?J??=NE
zKbLNrw~FI_;7F+<tUEK><0pT*LmfsvA2ud7ukUm)y54RV%)gdVeGrvnj@prd+v0(P
zk1x;V+$)hu8B)Ew^;%i>P14D<(U1Rp?fB``SW5Mcuc|jtg^&UAp5cx7H2;Z*ef@}K
zyC}7ifc7>fa(D{7I*eA@et$8$dAUF~Y_)qa$Esy@XjV}#jbHASWMq03_*GiX*X6$t
z4{6JY_8l!--Y0dt+HuZ*tKI)Qvc2y+O<JQOYx_=R?Ey*7MuB2iRPEHfBCAYV`I+>P
ztYj;o=KaN<LcVa<#ZBG4<gGI~?e=mH)MNIb7T1?EEly70!FQC*H2Q;m-nMtqej7|;
zRbyUBB;qGcgaIG<>`GvgBoeNmK=ohjmHdm5Z`<5*Pc?@~NiPhWrO2>PQEy^cn5D;A
z5!w~%=LL*0!ofXky0MkL*80`))-2hcU&66R(d=&Y=m%u^q@PG*z6!kj%QF(pG|~BZ
zZ|M$sd5q@sP)ta=(!JA~tV$b;t^C^<9E*3ISb2;JGyBQgMD?fSL}6vhxrx_LXy+SG
zALOaNKIcS;+P_wEDGz@s%Ky?)Yp0pBpI1ua=_o)g5Q{T@BP#{2j+V&(Xrgifs}$fm
z<?2q)cQX=!XRQl~q5+Z?S5<!;!hGysW@r6J-?w$01LIq7;doSxkWG}fx_)<&y!#UJ
z=7M8lfv&mJDaap|4!KVSw;yKED*r=!<qy<P8kJ}<Sj%^9Aqaz~3ULwi#YxLO{E)@_
zlWV+TM(SE3dOL9L=o$y>3g$??PjuA(L&IP8N@?>eJRmx9uN(hs=8!!4@$^R*aM{bf
zwAlOyQwK-wB;*Lbx1#U6R9mu^7}LB1SY-!#;o{57>4r$dVy=~T_0pFhYF1PVt{J2$
z5Y&rFuPzz5Wn(tC>)G|y`^7{l&jHLHrn|_~J}fTb&JPY8h)h{jPG6tPDspFUiQ8au
z;4tY6c6k)RmjB27;-qgPh*&vYN(TIv|L@G9!WRM2qGcs7+DpkR8#lMo?+OI_->Jy7
zGub*!`YH~OCJbN6y_DAy@wN02t7Rs)-IrT%L#=XySI0f8EakPQzF>MWxn;q(`{H<e
z`(Apt;eSx?!YM+q-2Pt8*ZyK{69SpB+AMoZY9<x9-`C&0cEhHAO-LrkR|QzVm$%}j
zW*l*f+e{1#|1VM!t?l_u84H<+xnPd^+vEn7X^a0KTl8h~d3Z4-i)fv={pCtb)<LfR
z*}KD*y*jCOs$2DC7eVuwd~PpY-x=OlJMqlOTolxzsOlFE0tb`9W?7U`=4ZA%u`y<$
zYp8%HUs7xI2eNo97hAETngnglF|n)&HYAl7roTxl$$B69%$}WhycMb#-e18AM%et_
ze9BJUd_01(q(|Ppgnuqi)!Z<r4l}S)sM81Wr^dylvi1np2#)xvo>LuG>boMb$C!yz
z70G(!{0g^@6#Wa$1Fk;wM#&ltaP!|-<cUPJ(36{=b|)M^2AuTsXxdueIAWbrA&%04
z4r~~_<V$5JS+Di~-%lo(-VK{hNu??zo=w2;J-EZopA);Lne&I`&zHxde>T5k`5x~_
zN6+{_ll4C%ifn{L4A+zu6f=VmO95<YMHCgWu~-=VpF{dl#6Sl(&k(z#8dG7B{2fl8
zAD^E2B$t0q<ToP)-d+-HVm1cj<U7tyyG&breptXoa!Awl7$~JQh!oJIc7rhVA2=ZM
z`<5iqa3)m|^TI<>dO2W40?LH{9{mH8<MJM|XI=p`=a8HWxspV}!+M8Id7qYJxx5G<
zh7hrOolbM-mk1zO>=hYxq3Aqiz21J32py9HP9z?)&#E(gl;psvw;_)KCvoyutWi)D
zQAp8_r~^+AJ%bqdn(^TlbhJ}>3uHue3JfdB1ff_UAb{%-L=rB5?<dsx>hJ-g11L-*
zi2#0+i!3L0lWu%ZmAsq5tWdon>DPiqk5t^G{r{RVPsixzqF6#X{5FVH#I>cgFxe1{
zJ}?Q9ilU$*;bu053aT`a2=t2r4~0SV4*Mnu=oa-19|si|WU44UA+V5N<NVv&ek^ki
zR}hvF>L{X$;HV(T98TNM>9T<gQC;%j^y-;fu6QRFs7EUmNbLwxtRNr{>~6SG1QYiH
zODt+Pz^H?!=)yn~)%beuWZ<DHx)P8y;4c<}AWS1>ia7vmVn0IpQP4~+l7$oNi>RUu
z1Dewo<0k|#Ed;QnY&$oqgrvbQqI9?omI7HA=j?f{e8*cI$2SjeX}uIoM4g0?KtYbl
zBu>&~p-UTz9rA>rsP_C_PE+9?3H7z=A4e{xdPJesqC)vs91jv~qK=2hhTd+v*=;*E
zFzFl!Pz9rqO=Qfr8e%k%FuBQ4#P{HG8L<H#F41^}lD-GCD~WjkM-s<w$nlR{ks#@%
zjDiR^eI!)*2p~Wy&?Rx}@!;8TFi|aCM0zFN{D?{n@SzhC_+q0)v<9`w{T@EK#3tc8
zJ>`zIC62L2Jt*O~eY3$g&Qj&;OU&A%CL<|JIlT4Awq%WB_<j7kA$MbuV?~0YnL=$y
z8tsg%QSfS5J^yEDxS{*4!gr27GjVRMkB91Z>{vEB8l`5ccDN*o4v0=EFni$e#gaTE
zJtcdF$@EbOkBkRcI@vmYWOJc0Cv<bDsq32z7ewh|4&*FsgHo+?G&VKxo4`H1la%hs
zHayL|JsLkydcDJY2Qe$%i5&cfh9oD1m~&9_C{GI>YC%)HM1tY-N4wUPGda&krX}=g
znc^XUfZ&w`U?=V3^?W?H@|NvvPn5v#fnG^>u?{n-zm&Zy(SlD&xs}&NrAi_+N|+P1
z!eTU!8bP3SVh+jAAlMe!69Kd)1CBafkUB_8LL?A~bc_#D_Jl}|yS#gXa&oNX8IvIG
zz-U9*IgJi<9mnUrA6R-5$ppC|Ae{kImC|6KPBxH8idJ-vh*JSk6$q>tD5S{(0s;MA
zeO}$E%PPpKfy9&rDE%q)4|Pz#auixn%4YmL<ny7jcZW;^-%LbLXFSw=rMNi>EtbGd
z(Fg0M(8K|>-Rj{OQ=<t10CcZ!fkuKKubx0ezNs~lhlbd={-b0NR8bK{A__1RR8eN~
zTximAZKrQdH`zBKg!zJxA6ka#f112GWfS`msZs1=S#Eh5Q5eU~2uy+xXXRILcaI#E
zc)Q_$4*#9+f{D9_2|4N5uJ%3SR38+5y1y^lc~uV(@VL;UC5;@e`pyD0po3?BEJekv
z>cLV=Q>$x^WnYgQ(yl#@X{GAR1Tl&_69g(U!ovo|QV8_>{<Z3w0&@@+E<7aD%pvB0
zMoTjiRX&Hx^YzTY&In=%PkL@X+0JRV72#u~MgsZ9B#&_sj)zG-`$RVbk6$D%HPi{8
zROp2wab6>a^hh@}kni}3t|>q~=rB3YG^itSUYUE`eAArlv>=t;?!YxV#w#b(J7&+A
zbj+aMt>+#SLzk)Q0qVxb%q&3=z;T>RoWrCy1<w-lJgjuiZ*+y?g?UIIASR&01j(}w
zuWWBTk^=CQ&YtV9<qOil^#MUeQA9yS5d@r2Z0UC`vhmRID)n3_AsJ2sLxf0H5rjrD
zz8GRoe^BNOPJ3NQgO|7Al>{2XPJ#-K3l*UzCw<5PaGwe2@IKNTd*l=5`jm#8y&UR;
z&|3P;8`@~khZ_C}<52p!G1WJVq&?{qcp(-}W8`SNUW|4cg@&`)o2Qdjl6Li2O0f!t
z`yFxY72lV@cU+C(d8(fY1US$s4h%|SjT<Z5c@901{=xXeRA;9fawHaw1~o^dl@vIM
zpjm>77&~N=Ma~a9=X)FeRQiqELvYBy+jD!vX*TwKPS>-%+*!TPtjNckl0n8?JnXI|
zI2Z^h$@T}TSF&PMxcMb1N7_025wMrlgG0C=fyu^hI2|m6-Mrut?~VbecZUK-`A8r#
zQh^51K>8nq?doFrrbGq`lmp`&gUKAF-rP3mkn9Ha1w{<Z5s{OL`o)G&9x3S<DG!Y8
zIG-1iE5ZAL)Q}i|L5LO=;I}+XPGNUe9@bfpMPiE6A&S99+H6+&OoTo*%@)dkrQToB
z#oHELo=aG@4V!=YcDi08y2c`KDP0R_(BVhi^g7UYYGY~K>9$tgxHkryPGT?D@Vf)U
zx&>9x%uPv!j{zGA=LLJ6V>{zT4P?llKQEgEMn<GLh0ED52^fX`x6|O@5fKoc)C(iv
zN<=WOaF`IEDj5)^2x%!3i7>j7B&-kzQU*jZ6(^Puh>&~h1nijsnI}n^l0uyT!Zt_P
z=;=Q0?UDJ~_toi-FA)ePz7j0}XAu~Z4k&|gBuWxT6$%~R!2)A**D|j`J*5r+I5Z{_
z5y=b0f=@nEnbW)usL&|_2pJ+jjyA}G2+dNZPRFtz80ZczeNcVgDKPE0lLQ%%vnD~5
z!?qBL(1TxCE*>=~_YJnFV;S-a3*puz0-1OG&-6)X!Re4l>5@W3K?D2g5Kb69(4QS6
z4R!b|9C7&VPRr;<M5||ihgJP@pi<^8X1s<BwCWj@P6E;sxkV!)qKY&MSp=-t8BtM1
zs)3+m^iNL{5P^kA1JdlA$9NwI`DyKODsz>mT0TKBKu$p8A%Ni+08k-3@u5UmVi<x9
z0_ARiF0UF=%KR}b-Qbw<0dNnDAp`<!WZ_gL{CwrjYhX;I5=e<PAos8uR0a(qo5%-9
z<#@vGs8la)$KPTI!5mC@#G%|VNCp9ffFOnA4bTJHE|Lfx7zP0O22wB3I>q#{wCrC7
z@V8v`C~>UAjBPr9cj^D{vE1NscKSvqcomcAI5au>s%)7iNtrsM<of3ykhbn!HgNFF
z%X+F9t~T3l4UH=m{KE}5{%HXOFVdux`peLL3XDaXOzRp3DAoG_s)t0!u|e81=LX=+
zB0MG}Bvfw(^Mg%@zXdwxzJ_efd%P0@Dgn~ivCEm(FFLt5rOWu3Pa*YJk-&H(;SuPW
zT0~$e0z!1amlXUj-TrT9HGZy+%`=><y?(>U@mi~Qj?t*%JGxygY%N^oXtP{isb&KW
z2L!g9j3uBT2v@9(!RrHICW2T-At;fO$axA81yB?f5KykvK}n?oM2?t|4LP4AMHNI<
z0%?;N(X3NilLfaTE3~xlKkARsN<T>q%#&3SDJ?D`q(%x<1GIA#f*}Y7vI2)@O{Pda
z6Lol##qgS(i!<#kdY+-HtB_I8$_(L<alm<S@douN2B>=8{2pwG!R47|J&W~!-n{fc
zssfM;3jiqyqKWtFh>Z5WeyL6Wv41<^PV4&Fzm@c!_b8u;sFQ>zJOxCSWMv?ls4Asz
zakGB30Q+2Q4|`=p493tmSoI1jjSUxws9Z~y-vB*9I+Zs0Ki=SV3K_)>ikpb0F`<Gf
z0la~AAP;{7@lUCH9?|s|Orwz^;)L7g&!^gxkxb5FQ)o^d#CmlmSh8ne++a}SBY_3b
zmcmE4LVEP6i6X?0xRO3T?G5)|VhL^RNFW7!0s-J)(enB6=S<sqmUI(!VrrVXPa)aa
z;F|KCIMlfM%E-TZNam+@+h-fXQi2GMWY4d1uFqJsa*6YS@l&MLIl3^os>2KfG$=wF
zh(pKua^vsEPZM_dP$dH6+q!C)l6-`vm$4iyRDj-u4kajjdFEVb5EzHUjp5xfeZwmA
z2S9NYGkaoKc|q>(D40N9=$YThu_6R0z_1WI;uw&}WVlQbBpLE(OoA!iBn*m@2O6M(
z($}R_p~i*Dp+h)ULCcf^e&^=<-$#cRl@f!fVhO%?U;FC!`B#kN=Hr8{$Y&h$NKTQ0
zwaJ6MF%^TuDDoC4OffNTixmpAB>|9^612`K`F@XF%Gg5?#pWUN@Fs0&HXl6W?0J`i
ziFAVSnbt8ZO!KABcwy|6m`AVtzNUcj9J%%AA_uBK8z9*%8F3vjwAVZ;GKRuZNr=Fa
zA!V>=QQaOH=r#~Q8w;W#gJF;X2q7Rsf=+E<7Nq?UxLl!8gf4)UgNxrBzXE1)1=<Ec
zFb@1feckY<G88@THv?)BxRcKT1RXY#C#p$0L7JJ6+<1&h8~Ke)a6a$LvRzb|Gh|6c
zRbSKnIopD2mg%mSu>jnvY}I!Kx)&+Kr4WJc2i#r)X!SFe3k4!`r64!$Au$T0BQ&Q8
zMe*S29E#nttkqC}h>d;r1H!z4z`S}R=|%&{RGZfGP@hVlC&HM%yAPTX+%X5}n~%y0
zk8iUeANA1D%plM)JL)|!g+&DsOidH4ag9Y|5~YWZ(hC$2K84Z~byP$Iv2HU}VN^95
z&Ej_!8C({~U2XNiko+%N5|RQcWQtM=Ej>jNP(OZ%RtLy~8)?L#g-3S@S#(_qmghqF
z9{-1{==`7hJd!SVXGi}w4UVjTiFZ<Kg^BHoL{DQWY3c8Z@JQGk4ybkuC?b<e#_4S&
zIQb;|+9P7@L4X%G-Xa|tU?2{aj4?-wBwlZalAQP+O<s@YW<L+;-NTstTKF!P;&<r~
z5QI|YqXu=z2hP9U$Uq*u4~)F>bz+cj<H_~|h?IQ0q!4ewrgyvazGI0Bdu<N1tPxLp
zNsR;DdSqIJulC59^2!%oMnmz)4@wUFX9qF87_hdq(hU4(<dr2a))=!wev>uJaF9rJ
zl+e(y5<UZMXKXwg(1;1@3#)XsA6-~<TnW#Bkcnum+o+Z!-HI@s*bNGzcMiTJUX2=G
zcjRsMeZME4t$Lv!uU7+Sn3G#|)9yF6-fsk0G-#c@*Xu=vM{P_;FQ`2b5D8p+i9JK!
zSm!3rovYp)vN95yz;Zm7z*|i6ElU6b15{hQME$|gb*M3*_UT^X``B|)C=jcKX~+4i
zp!UG}CeER?hvZSL!Y=SXDSyPZESmxUHG?yHd5Uf1+yY0Vv15vf7N&_&hR7vXZ=+<h
zWX-s*7jl(WjWL)6Bw{G0&}35Z#GJ^~2<E`ZJ+5<eUE4`nE^Xzv!5U8S=QV^N2to%M
zlu|8T;!X#AsrIrMOGuYyrR6@-3%j)Xp%d3KWbazY+(q*|3npA?+T3!GhwVu}DKn4!
zi@1X++BEF>VHqO$M=nvGhWT^Umm399$Y+U_`o#-zd5Q|HS%9Bde3{W@sl>gnmNe0#
zvAUk;JCCnEcoZ&hn6m77>rOh<n!KOzy%8!{Apk+&IcIXPrb&l2Ln?<Sv~+Caj4ko=
z(h&Mv63lXH!?eyQ>*=#3G*McSMAItCaL!W;YgG!rrDKeVZ-OAb8baQTTiPtE`ZP+`
zFvTSMMrix3=r9FLD7e+Dt$rbiCMlKBZ}r}oQD<qG>Z_iG(?hbC@iPZ5kgG>3tFwb#
znFRiH@jZ++TQ&P$_T74Dq@qQ#8LC7)xH4#CVdK`@q#v4lssw5oLI8jjW*2!c@mIAB
bSZ&qPCeKHYoo;;Gf5qI9P81|DeQXmzzFGYF

literal 0
HcmV?d00001